From 8107f32598cd1692f6cf915a6d267fe2f7a0c797 Mon Sep 17 00:00:00 2001 From: Nicholas Berlin <56366649+nicholasberlin@users.noreply.github.com> Date: Tue, 30 Jul 2024 13:10:09 -0400 Subject: [PATCH 01/77] Copy log.syslog.appname to process.name (#10646) * Copy log.syslog.appname to process.name Before the syslog processor was added to the default filebeat yaml configuration, process.name was set by a Grok ingest pipeline. However, when the syslog processor was added a condition was also added to the Grok ingest pipeline, `if: ctx.log?.syslog == null`. This condition always evaluates to false when the data is supplied by the syslog processor, and therefore `process.name` is not extraced from the syslog message. This commit copies the process name from `log.syslog.appname` to `process.name` before an pipeline processors which use it are executed. With this change, `process.name`, `event.category`, and `event.type` are now populated when data arrives from the syslog processor. --- .github/CODEOWNERS | 2 +- packages/system/changelog.yml | 5 + .../pipeline/test-host-syslog-processor.json | 144 +++++++++++++ ...t-host-syslog-processor.json-expected.json | 199 ++++++++++++++++++ .../elasticsearch/ingest_pipeline/default.yml | 6 + packages/system/manifest.yml | 2 +- 6 files changed, 356 insertions(+), 2 deletions(-) create mode 100644 packages/system/data_stream/auth/_dev/test/pipeline/test-host-syslog-processor.json create mode 100644 packages/system/data_stream/auth/_dev/test/pipeline/test-host-syslog-processor.json-expected.json diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index 61243a00df98..fd7680766ef3 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -328,7 +328,7 @@ /packages/sysmon_linux @elastic/sec-linux-platform /packages/system @elastic/obs-infraobs-integrations /packages/system/changelog.yml @elastic/obs-infraobs-integrations @elastic/sec-linux-platform @elastic/sec-windows-platform -/packages/system/data_stream/auth @elastic/sec-windows-platform +/packages/system/data_stream/auth @elastic/sec-linux-platform /packages/system/data_stream/security @elastic/sec-windows-platform /packages/system/data_stream/application @elastic/sec-windows-platform /packages/system/data_stream/core @elastic/obs-infraobs-integrations diff --git a/packages/system/changelog.yml b/packages/system/changelog.yml index ffe830be1232..a52e893f9039 100644 --- a/packages/system/changelog.yml +++ b/packages/system/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.60.1" + changes: + - description: Ensure process.name is populated from syslog messages + type: bugfix + link: https://github.com/elastic/integrations/pull/10646 - version: "1.60.0" changes: - description: Add caseless fields to process events. diff --git a/packages/system/data_stream/auth/_dev/test/pipeline/test-host-syslog-processor.json b/packages/system/data_stream/auth/_dev/test/pipeline/test-host-syslog-processor.json new file mode 100644 index 000000000000..cafcff6bd9f2 --- /dev/null +++ b/packages/system/data_stream/auth/_dev/test/pipeline/test-host-syslog-processor.json @@ -0,0 +1,144 @@ +{ + "events": [ + { + "event" : { + "original": "<165>1 2022-01-11T22:14:15.003Z mymachine.example.com eventslog 1024 ID47 [exampleSDID@32473 iut=\"3\" eventSource=\"Application\" eventID=\"1011\"][examplePriority@32473 class=\"high\"] this is the message" + }, + "@timestamp": "2022-01-11T22:14:15.003Z", + "log": { + "syslog": { + "priority": 165, + "facility": { + "code": 20, + "name": "local4" + }, + "severity": { + "code": 5, + "name": "Notice" + }, + "hostname": "mymachine.example.com", + "appname": "eventslog", + "procid": "1024", + "msgid": "ID47", + "version": "1", + "structured_data": { + "exampleSDID@32473": { + "iut": "3", + "eventSource": "Application", + "eventID": "1011" + }, + "examplePriority@32473": { + "class": "high" + } + } + } + }, + "message": "this is the message" + }, + { + "@timestamp": "2022-01-11T22:14:15.003Z", + "event" : { + "original": "<165>1 2022-01-11T22:14:15.003Z mymachine.example.com groupadd 1024 ID47 [exampleSDID@32473 iut=\"3\" eventSource=\"Application\" eventID=\"1011\"][examplePriority@32473 class=\"high\"] this is the message" + }, + "log": { + "syslog": { + "priority": 165, + "facility": { + "code": 20, + "name": "local4" + }, + "severity": { + "code": 5, + "name": "Notice" + }, + "hostname": "mymachine.example.com", + "appname": "groupdel", + "procid": "1024", + "msgid": "ID47", + "version": "1", + "structured_data": { + "exampleSDID@32473": { + "iut": "3", + "eventSource": "Application", + "eventID": "1011" + }, + "examplePriority@32473": { + "class": "high" + } + } + } + }, + "message": "this is the message" + }, + { + "@timestamp": "2022-01-11T22:14:15.003Z", + "event" : { + "original": "<165>1 2022-01-11T22:14:15.003Z mymachine.example.com useradd 1024 ID47 [exampleSDID@32473 iut=\"3\" eventSource=\"Application\" eventID=\"1011\"][examplePriority@32473 class=\"high\"] this is the message" + }, + "log": { + "syslog": { + "priority": 165, + "facility": { + "code": 20, + "name": "local4" + }, + "severity": { + "code": 5, + "name": "Notice" + }, + "hostname": "mymachine.example.com", + "appname": "useradd", + "procid": "1024", + "msgid": "ID47", + "version": "1", + "structured_data": { + "exampleSDID@32473": { + "iut": "3", + "eventSource": "Application", + "eventID": "1011" + }, + "examplePriority@32473": { + "class": "high" + } + } + } + }, + "message": "this is the message" + }, + { + "@timestamp": "2022-01-11T22:14:15.003Z", + "event" : { + "original": "<165>1 2022-01-11T22:14:15.003Z mymachine.example.com usermod 1024 ID47 [exampleSDID@32473 iut=\"3\" eventSource=\"Application\" eventID=\"1011\"][examplePriority@32473 class=\"high\"] this is the message" + }, + "log": { + "syslog": { + "priority": 165, + "facility": { + "code": 20, + "name": "local4" + }, + "severity": { + "code": 5, + "name": "Notice" + }, + "hostname": "mymachine.example.com", + "appname": "usermod", + "procid": "1024", + "msgid": "ID47", + "version": "1", + "structured_data": { + "exampleSDID@32473": { + "iut": "3", + "eventSource": "Application", + "eventID": "1011" + }, + "examplePriority@32473": { + "class": "high" + } + } + } + }, + "message": "this is the message" + } + ] +} diff --git a/packages/system/data_stream/auth/_dev/test/pipeline/test-host-syslog-processor.json-expected.json b/packages/system/data_stream/auth/_dev/test/pipeline/test-host-syslog-processor.json-expected.json new file mode 100644 index 000000000000..a261896b33b8 --- /dev/null +++ b/packages/system/data_stream/auth/_dev/test/pipeline/test-host-syslog-processor.json-expected.json @@ -0,0 +1,199 @@ +{ + "expected": [ + { + "@timestamp": "2022-01-11T22:14:15.003Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "kind": "event" + }, + "log": { + "syslog": { + "priority": 30, + "appname": "eventslog", + "facility": { + "code": 20, + "name": "local4" + }, + "hostname": "mymachine.example.com", + "msgid": "ID47", + "priority": 165, + "procid": "1024", + "severity": { + "code": 5, + "name": "Notice" + }, + "structured_data": { + "examplePriority@32473": { + "class": "high" + }, + "exampleSDID@32473": { + "eventID": "1011", + "eventSource": "Application", + "iut": "3" + } + }, + "version": "1" + } + }, + "message": "this is the message", + "process": { + "name": "eventslog" + } + }, + { + "@timestamp": "2022-01-11T22:14:15.003Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "kind": "event", + "category": [ + "iam" + ], + "kind": "event", + "outcome": "success", + "type": [ + "group", + "deletion" + ] + }, + "log": { + "syslog": { + "priority": 30, + "appname": "groupdel", + "facility": { + "code": 20, + "name": "local4" + }, + "hostname": "mymachine.example.com", + "msgid": "ID47", + "priority": 165, + "procid": "1024", + "severity": { + "code": 5, + "name": "Notice" + }, + "structured_data": { + "examplePriority@32473": { + "class": "high" + }, + "exampleSDID@32473": { + "eventID": "1011", + "eventSource": "Application", + "iut": "3" + } + }, + "version": "1" + } + }, + "message": "this is the message", + "process": { + "name": "groupdel" + } + }, + { + "@timestamp": "2022-01-11T22:14:15.003Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "kind": "event", + "category": [ + "iam" + ], + "kind": "event", + "outcome": "success", + "type": [ + "user", + "creation" + ] + }, + "log": { + "syslog": { + "priority": 30, + "appname": "useradd", + "facility": { + "code": 20, + "name": "local4" + }, + "hostname": "mymachine.example.com", + "msgid": "ID47", + "priority": 165, + "procid": "1024", + "severity": { + "code": 5, + "name": "Notice" + }, + "structured_data": { + "examplePriority@32473": { + "class": "high" + }, + "exampleSDID@32473": { + "eventID": "1011", + "eventSource": "Application", + "iut": "3" + } + }, + "version": "1" + } + }, + "message": "this is the message", + "process": { + "name": "useradd" + } + }, + { + "@timestamp": "2022-01-11T22:14:15.003Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "kind": "event", + "category": [ + "iam" + ], + "kind": "event", + "outcome": "success", + "type": [ + "user", + "change" + ] + }, + "log": { + "syslog": { + "priority": 30, + "appname": "usermod", + "facility": { + "code": 20, + "name": "local4" + }, + "hostname": "mymachine.example.com", + "msgid": "ID47", + "priority": 165, + "procid": "1024", + "severity": { + "code": 5, + "name": "Notice" + }, + "structured_data": { + "examplePriority@32473": { + "class": "high" + }, + "exampleSDID@32473": { + "eventID": "1011", + "eventSource": "Application", + "iut": "3" + } + }, + "version": "1" + } + }, + "message": "this is the message", + "process": { + "name": "usermod" + } + } + ] +} diff --git a/packages/system/data_stream/auth/elasticsearch/ingest_pipeline/default.yml b/packages/system/data_stream/auth/elasticsearch/ingest_pipeline/default.yml index 001765c3c10d..c321ccce5d33 100644 --- a/packages/system/data_stream/auth/elasticsearch/ingest_pipeline/default.yml +++ b/packages/system/data_stream/auth/elasticsearch/ingest_pipeline/default.yml @@ -303,6 +303,12 @@ processors: ctx.event.action = "ssh_login"; ctx.event.outcome = "failure"; } + - set: + tag: set_process_name-log_syslog_appname + field: process.name + copy_from: log.syslog.appname + override: false + ignore_empty_value: true - append: tag: append_category-iam field: event.category diff --git a/packages/system/manifest.yml b/packages/system/manifest.yml index 013cae27fa73..625b35cfc3ba 100644 --- a/packages/system/manifest.yml +++ b/packages/system/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.2 name: system title: System -version: "1.60.0" +version: "1.60.1" description: Collect system logs and metrics from your servers with Elastic Agent. type: integration categories: From 2b616560679835647a8be8c07cdc004700dc072e Mon Sep 17 00:00:00 2001 From: Mario Rodriguez Molins Date: Wed, 31 Jul 2024 14:35:48 +0200 Subject: [PATCH 02/77] [CI] Fix remove other packages parameter retrieval (#10662) Fix meta-data name to retrieve REMOVE_OTHER_PACKAGES value in the script running in the integrations-backport pipeline. --- .buildkite/scripts/backport_branch.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.buildkite/scripts/backport_branch.sh b/.buildkite/scripts/backport_branch.sh index c7a0c8f46638..f2210b372ec3 100755 --- a/.buildkite/scripts/backport_branch.sh +++ b/.buildkite/scripts/backport_branch.sh @@ -17,7 +17,7 @@ DRY_RUN="$(buildkite-agent meta-data get DRY_RUN --default ${DRY_RUN:-"true"})" BASE_COMMIT="$(buildkite-agent meta-data get BASE_COMMIT --default ${BASE_COMMIT:-""})" PACKAGE_NAME="$(buildkite-agent meta-data get PACKAGE_NAME --default ${PACKAGE_NAME:-""})" PACKAGE_VERSION="$(buildkite-agent meta-data get PACKAGE_VERSION --default ${PACKAGE_VERSION:-""})" -REMOVE_OTHER_PACKAGES="$(buildkite-agent meta-data get PREMOVE_OTHER_PACKAGES --default ${REMOVE_OTHER_PACKAGES:-"false"})" +REMOVE_OTHER_PACKAGES="$(buildkite-agent meta-data get REMOVE_OTHER_PACKAGES --default ${REMOVE_OTHER_PACKAGES:-"false"})" if [[ -z "$PACKAGE_NAME" ]] || [[ -z "$PACKAGE_VERSION" ]]; then buildkite-agent annotate "The variables **PACKAGE_NAME** or **PACKAGE_VERSION** aren't defined, please try again" --style "warning" From ffa063f0e49e1beea0d784e253354e1aa58793e7 Mon Sep 17 00:00:00 2001 From: Maurizio Branca Date: Wed, 31 Jul 2024 18:16:12 +0200 Subject: [PATCH 03/77] AWS Fargate: Add disclaimer that integration supports ECS only (#10613) * Add disclaimer that integration supports ECS only --- packages/awsfargate/_dev/build/docs/README.md | 6 ++++-- packages/awsfargate/changelog.yml | 5 +++++ packages/awsfargate/docs/README.md | 6 ++++-- packages/awsfargate/manifest.yml | 4 ++-- 4 files changed, 15 insertions(+), 6 deletions(-) diff --git a/packages/awsfargate/_dev/build/docs/README.md b/packages/awsfargate/_dev/build/docs/README.md index 64c7e011710c..b8e13e100877 100644 --- a/packages/awsfargate/_dev/build/docs/README.md +++ b/packages/awsfargate/_dev/build/docs/README.md @@ -1,12 +1,14 @@ -# AWS Fargate Integration +# AWS Fargate Integration (for ECS clusters) ## Overview The AWS Fargate integration helps to retrieve metadata, network metrics, and Docker stats about your containers and the tasks that are part of an [Amazon Elastic Container Service (Amazon ECS)](https://aws.amazon.com/ecs/?pg=ln&sec=hiw) cluster. +The AWS Fargate integration currently supports ECS clusters only. It does not support EKS clusters. + ## Credentials -No AWS credentials are required for this integration. The ECS task metadata endpoint is accessible inside the cluster only. +This integration does not require AWS credentials. The ECS task metadata endpoint is accessible only inside the cluster. ## Setup diff --git a/packages/awsfargate/changelog.yml b/packages/awsfargate/changelog.yml index 3c063599054c..d32d8e48485f 100644 --- a/packages/awsfargate/changelog.yml +++ b/packages/awsfargate/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: 1.2.1 + changes: + - description: Clarify that the integration supports ECS clusters only. + type: enhancement + link: https://github.com/elastic/integrations/pull/10613 - version: 1.2.0 changes: - description: Add processor support for task_stats data stream. diff --git a/packages/awsfargate/docs/README.md b/packages/awsfargate/docs/README.md index 6c2be18828ea..cc98d1d7cdf7 100644 --- a/packages/awsfargate/docs/README.md +++ b/packages/awsfargate/docs/README.md @@ -1,12 +1,14 @@ -# AWS Fargate Integration +# AWS Fargate Integration (for ECS clusters) ## Overview The AWS Fargate integration helps to retrieve metadata, network metrics, and Docker stats about your containers and the tasks that are part of an [Amazon Elastic Container Service (Amazon ECS)](https://aws.amazon.com/ecs/?pg=ln&sec=hiw) cluster. +The AWS Fargate integration currently supports ECS clusters only. It does not support EKS clusters. + ## Credentials -No AWS credentials are required for this integration. The ECS task metadata endpoint is accessible inside the cluster only. +This integration does not require AWS credentials. The ECS task metadata endpoint is accessible only inside the cluster. ## Setup diff --git a/packages/awsfargate/manifest.yml b/packages/awsfargate/manifest.yml index 5b1ee9030250..ba03700580b6 100644 --- a/packages/awsfargate/manifest.yml +++ b/packages/awsfargate/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.0" name: awsfargate -title: AWS Fargate -version: "1.2.0" +title: AWS Fargate (for ECS clusters) +version: "1.2.1" description: Collects metrics from containers and tasks running on Amazon ECS clusters with Elastic Agent. type: integration categories: From e3ec0768d70b31ea2b56f5ff4b3b15e10d7fd02d Mon Sep 17 00:00:00 2001 From: Paulo Henrique Date: Wed, 31 Jul 2024 10:08:11 -0700 Subject: [PATCH 04/77] [Cloud Security] Release version 1.10.0 (#10667) * promote csp 1.10.0 * update pr number --- packages/cloud_security_posture/changelog.yml | 9 ++++----- packages/cloud_security_posture/manifest.yml | 2 +- 2 files changed, 5 insertions(+), 6 deletions(-) diff --git a/packages/cloud_security_posture/changelog.yml b/packages/cloud_security_posture/changelog.yml index a394bbc6b248..8d1ac551693d 100644 --- a/packages/cloud_security_posture/changelog.yml +++ b/packages/cloud_security_posture/changelog.yml @@ -9,21 +9,20 @@ # 1.4.x - 8.9.x # 1.3.x - 8.8.x # 1.2.x - 8.7.x -- version: "1.10.0-preview04" +- version: "1.10.0" changes: + - description: Promote integration + type: enhancement + link: https://github.com/elastic/integrations/pull/10667 - description: Support conditions in CSPM and KSPM type: enhancement link: https://github.com/elastic/integrations/pull/10298 -- version: "1.10.0-preview03" - changes: - description: Change field type to password where isSecret is true type: enhancement link: https://github.com/elastic/integrations/pull/10208 - description: Bump version type: enhancement link: https://github.com/elastic/integrations/pull/10359 -- version: "1.10.0-preview01" - changes: - description: Add cloud formation template url to create direct access keys credentials type: enhancement link: https://github.com/elastic/integrations/pull/9828 diff --git a/packages/cloud_security_posture/manifest.yml b/packages/cloud_security_posture/manifest.yml index befea2f0b73b..e31c8a796d2b 100644 --- a/packages/cloud_security_posture/manifest.yml +++ b/packages/cloud_security_posture/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: cloud_security_posture title: "Security Posture Management" -version: "1.10.0-preview04" +version: "1.10.0" source: license: "Elastic-2.0" description: "Identify & remediate configuration risks in your Cloud infrastructure" From dbf3f74ac104019d7ceef99b82bcb2ea59170815 Mon Sep 17 00:00:00 2001 From: Krishna Chaitanya Reddy Burri Date: Thu, 1 Aug 2024 08:08:45 +0530 Subject: [PATCH 05/77] zscaler_zia: Add eurl hex-encoded field for url parsing in web logs. (#10657) * Add eurl hex-encoded field for url parsing. --- .../zscaler_zia/_dev/build/docs/README.md | 4 +- packages/zscaler_zia/changelog.yml | 7 +- .../test/pipeline/test-web-http-endpoint.log | 4 +- .../test-web-http-endpoint.log-expected.json | 22 +- .../web/_dev/test/pipeline/test-web.log | 9 +- .../test/pipeline/test-web.log-expected.json | 527 +++--------------- .../elasticsearch/ingest_pipeline/default.yml | 78 ++- packages/zscaler_zia/docs/README.md | 4 +- packages/zscaler_zia/manifest.yml | 4 +- 9 files changed, 127 insertions(+), 532 deletions(-) diff --git a/packages/zscaler_zia/_dev/build/docs/README.md b/packages/zscaler_zia/_dev/build/docs/README.md index c311f3191a23..c02d836f105b 100644 --- a/packages/zscaler_zia/_dev/build/docs/README.md +++ b/packages/zscaler_zia/_dev/build/docs/README.md @@ -216,12 +216,12 @@ See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output Zscaler response format (v2): ``` -\{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","url":"%s{url}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} +\{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","eurl":"%s{eurl}","url":"%s{url}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} ``` Sample Response: ```json -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com/index","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} ``` ### Enabling the integration in Elastic: diff --git a/packages/zscaler_zia/changelog.yml b/packages/zscaler_zia/changelog.yml index 5152d6a386ac..9f5a8b65cf19 100644 --- a/packages/zscaler_zia/changelog.yml +++ b/packages/zscaler_zia/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "3.0.3" + changes: + - description: Add eurl hex-encoded field for url parsing. + type: bugfix + link: https://github.com/elastic/integrations/pull/10657 - version: "3.0.2" changes: - description: Fix url parsing in Web logs. @@ -6,7 +11,7 @@ link: https://github.com/elastic/integrations/pull/10517 - version: "3.0.1" changes: - - description: Update NSS Feed Screenshot with updated Feed Output Format of Web. + - description: Update NSS Feed Screenshot with updated Feed Output Format of Web. type: bugfix link: https://github.com/elastic/integrations/pull/10551 - version: "3.0.0" diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log index 0242d0025e4a..2791ee5b91f4 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log @@ -1,2 +1,2 @@ -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"81.2.69.142","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":"123456789","reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"rar","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":"1300","reqmethod":"invalid","refererurl":"www.example.com","respsize":"10500","respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_1","cltip":"81.2.69.142","cltintip":"81.2.69.142","cltsourceport":"1235","threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"None","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"0","cltsslsessreuse":"Unknown","cltpubip":"81.2.69.142","cltsslfailcount":"100","cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":"16","dept":"Sales","deviceappversion":"81.2.69.142","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":"6646484838839026000","eedone":"Yes","epochtime":"1578128400","fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":"22","is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":"55","mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":"10","nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":"6200694987","ocpubip":"624054738","odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":"300","reqdatasize":"1000","respheadersize":"500","respdatasize":"10000","riskscore":"10","ruletype":"File Type Control","second":"48","srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":"5","throttlerespsize":"7","totalsize":"11800","trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":"2023","ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"81.2.69.142","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Blocked","recordid":"123456789","reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"rar","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":"1300","reqmethod":"invalid","refererurl":"www.example.com","respsize":"10500","respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_1","cltip":"81.2.69.142","cltintip":"81.2.69.142","cltsourceport":"1235","threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"None","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"81.2.69.142","cltsslfailcount":"100","cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":"16","dept":"Sales","deviceappversion":"81.2.69.142","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":"6646484838839026000","eedone":"Yes","epochtime":"1578128400","fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":"22","is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":"55","mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":"10","nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":"6200694987","ocpubip":"624054738","odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":"300","reqdatasize":"1000","respheadersize":"500","respdatasize":"10000","riskscore":"10","ruletype":"File Type Control","second":"48","srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":"5","throttlerespsize":"7","totalsize":"11800","trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":"2023","ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} \ No newline at end of file +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"81.2.69.142","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":"123456789","reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"rar","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":"1300","reqmethod":"invalid","refererurl":"www.example.com","respsize":"10500","respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_1","cltip":"81.2.69.142","cltintip":"81.2.69.142","cltsourceport":"1235","threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com%2Findex","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"None","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"0","cltsslsessreuse":"Unknown","cltpubip":"81.2.69.142","cltsslfailcount":"100","cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":"16","dept":"Sales","deviceappversion":"81.2.69.142","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":"6646484838839026000","eedone":"Yes","epochtime":"1578128400","fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":"22","is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":"55","mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":"10","nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":"6200694987","ocpubip":"624054738","odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":"300","reqdatasize":"1000","respheadersize":"500","respdatasize":"10000","riskscore":"10","ruletype":"File Type Control","second":"48","srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":"5","throttlerespsize":"7","totalsize":"11800","trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":"2023","ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"81.2.69.142","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Blocked","recordid":"123456789","reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"rar","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":"1300","reqmethod":"invalid","refererurl":"www.example.com","respsize":"10500","respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_1","cltip":"81.2.69.142","cltintip":"81.2.69.142","cltsourceport":"1235","threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com%2Findex","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"None","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"81.2.69.142","cltsslfailcount":"100","cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":"16","dept":"Sales","deviceappversion":"81.2.69.142","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":"6646484838839026000","eedone":"Yes","epochtime":"1578128400","fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":"22","is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":"55","mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":"10","nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":"6200694987","ocpubip":"624054738","odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":"300","reqdatasize":"1000","respheadersize":"500","respdatasize":"10000","riskscore":"10","ruletype":"File Type Control","second":"48","srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":"5","throttlerespsize":"7","totalsize":"11800","trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":"2023","ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} \ No newline at end of file diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log-expected.json b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log-expected.json index 535f77b3baaf..069c19cc37cf 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log-expected.json +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log-expected.json @@ -37,7 +37,7 @@ ], "id": "123456789", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"81.2.69.142\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Allowed\",\"recordid\":\"123456789\",\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"rar\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":\"1300\",\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":\"10500\",\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_1\",\"cltip\":\"81.2.69.142\",\"cltintip\":\"81.2.69.142\",\"cltsourceport\":\"1235\",\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"url\":\"www.trythisencodeurl.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"None\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"0\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"81.2.69.142\",\"cltsslfailcount\":\"100\",\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":\"16\",\"dept\":\"Sales\",\"deviceappversion\":\"81.2.69.142\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":\"6646484838839026000\",\"eedone\":\"Yes\",\"epochtime\":\"1578128400\",\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":\"22\",\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":\"55\",\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":\"10\",\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":\"6200694987\",\"ocpubip\":\"624054738\",\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":\"300\",\"reqdatasize\":\"1000\",\"respheadersize\":\"500\",\"respdatasize\":\"10000\",\"riskscore\":\"10\",\"ruletype\":\"File Type Control\",\"second\":\"48\",\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":\"5\",\"throttlerespsize\":\"7\",\"totalsize\":\"11800\",\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":\"2023\",\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"81.2.69.142\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Allowed\",\"recordid\":\"123456789\",\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"rar\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":\"1300\",\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":\"10500\",\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_1\",\"cltip\":\"81.2.69.142\",\"cltintip\":\"81.2.69.142\",\"cltsourceport\":\"1235\",\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com%2Findex\",\"url\":\"www.trythisencodeurl.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"None\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"0\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"81.2.69.142\",\"cltsslfailcount\":\"100\",\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":\"16\",\"dept\":\"Sales\",\"deviceappversion\":\"81.2.69.142\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":\"6646484838839026000\",\"eedone\":\"Yes\",\"epochtime\":\"1578128400\",\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":\"22\",\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":\"55\",\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":\"10\",\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":\"6200694987\",\"ocpubip\":\"624054738\",\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":\"300\",\"reqdatasize\":\"1000\",\"respheadersize\":\"500\",\"respdatasize\":\"10000\",\"riskscore\":\"10\",\"ruletype\":\"File Type Control\",\"second\":\"48\",\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":\"5\",\"throttlerespsize\":\"7\",\"totalsize\":\"11800\",\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":\"2023\",\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -82,7 +82,7 @@ ] }, "network": { - "protocol": "ftp" + "protocol": "http" }, "organization": { "name": "Zscaler" @@ -148,9 +148,10 @@ }, "url": { "domain": "www.trythisencodeurl.com", - "original": "ftp://www.trythisencodeurl.com/index", + "full": "http://www.trythisencodeurl.com/index", + "original": "http://www.trythisencodeurl.com/index", "path": "/index", - "scheme": "ftp" + "scheme": "http" }, "user": { "domain": "safemarch.com", @@ -409,7 +410,7 @@ "category_method": "Database A", "class": "Bandwidth Loss", "filter_rule_label": "URL_Filtering_1", - "name": "ftp://www.trythisencodeurl.com/index" + "name": "www.trythisencodeurl.com/index" }, "user_agent": { "class": "Firefox", @@ -460,7 +461,7 @@ ], "id": "123456789", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"81.2.69.142\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Blocked\",\"recordid\":\"123456789\",\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"rar\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":\"1300\",\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":\"10500\",\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_1\",\"cltip\":\"81.2.69.142\",\"cltintip\":\"81.2.69.142\",\"cltsourceport\":\"1235\",\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"url\":\"www.trythisencodeurl.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"None\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"81.2.69.142\",\"cltsslfailcount\":\"100\",\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":\"16\",\"dept\":\"Sales\",\"deviceappversion\":\"81.2.69.142\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":\"6646484838839026000\",\"eedone\":\"Yes\",\"epochtime\":\"1578128400\",\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":\"22\",\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":\"55\",\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":\"10\",\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":\"6200694987\",\"ocpubip\":\"624054738\",\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":\"300\",\"reqdatasize\":\"1000\",\"respheadersize\":\"500\",\"respdatasize\":\"10000\",\"riskscore\":\"10\",\"ruletype\":\"File Type Control\",\"second\":\"48\",\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":\"5\",\"throttlerespsize\":\"7\",\"totalsize\":\"11800\",\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":\"2023\",\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"81.2.69.142\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Blocked\",\"recordid\":\"123456789\",\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"rar\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":\"1300\",\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":\"10500\",\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_1\",\"cltip\":\"81.2.69.142\",\"cltintip\":\"81.2.69.142\",\"cltsourceport\":\"1235\",\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com%2Findex\",\"url\":\"www.trythisencodeurl.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"None\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"81.2.69.142\",\"cltsslfailcount\":\"100\",\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":\"16\",\"dept\":\"Sales\",\"deviceappversion\":\"81.2.69.142\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":\"6646484838839026000\",\"eedone\":\"Yes\",\"epochtime\":\"1578128400\",\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":\"22\",\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":\"55\",\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":\"10\",\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":\"6200694987\",\"ocpubip\":\"624054738\",\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":\"300\",\"reqdatasize\":\"1000\",\"respheadersize\":\"500\",\"respdatasize\":\"10000\",\"riskscore\":\"10\",\"ruletype\":\"File Type Control\",\"second\":\"48\",\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":\"5\",\"throttlerespsize\":\"7\",\"totalsize\":\"11800\",\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":\"2023\",\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -505,7 +506,7 @@ ] }, "network": { - "protocol": "ftp" + "protocol": "http" }, "organization": { "name": "Zscaler" @@ -571,9 +572,10 @@ }, "url": { "domain": "www.trythisencodeurl.com", - "original": "ftp://www.trythisencodeurl.com/index", + "full": "http://www.trythisencodeurl.com/index", + "original": "http://www.trythisencodeurl.com/index", "path": "/index", - "scheme": "ftp" + "scheme": "http" }, "user": { "domain": "safemarch.com", @@ -832,7 +834,7 @@ "category_method": "Database A", "class": "Bandwidth Loss", "filter_rule_label": "URL_Filtering_1", - "name": "ftp://www.trythisencodeurl.com/index" + "name": "www.trythisencodeurl.com/index" }, "user_agent": { "class": "Firefox", diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log index aae912a4435c..2ee6f1318f9a 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log @@ -1,5 +1,4 @@ -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 17 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.1","external_devid":"2345","devicemodel":"20L8S7WC09","action":"Allowed","recordid":123456780,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"http://www.google.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 19 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.3","external_devid":"4567","devicemodel":"20L8S7WC20","action":"Allowed","recordid":123456799,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"DNS over HTTPS","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 20 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.4","external_devid":"5678","devicemodel":"20L8S7WC21","action":"Allowed","recordid":123456790,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"www.twitter.com","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 21 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.5","external_devid":"6789","devicemodel":"20L8S7WC22","action":"Allowed","recordid":123456798,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"WebSocket SSL","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"www.twitter.com/_stream","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23%3A20%3A50.52Z","url":"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23:20:50.52Z","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 17 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.1","external_devid":"2345","devicemodel":"20L8S7WC09","action":"Allowed","recordid":123456780,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTPS","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.example.com%3A443","url":"www.example.com:443","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 18 23:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.2","external_devid":"2346","devicemodel":"20L8S7WC10","action":"Allowed","recordid":123456781,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"SSL","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.example.com.com/params?Id=1&ts=2006-01-02T15%3A04%3A05Z07%3A00&user=65792&version=10.0.19041.1266","url":"www.example.com.com/params?version=10.0.19041.1266&user=65792&Id=1&ts=2006-01-02T15:04:05Z07:00","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 18 23:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.2","external_devid":"2346","devicemodel":"20L8S7WC10","action":"Allowed","recordid":123456781,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"SSL","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.youtube.com/api/stats/abcd?afmt=251&bat=330.017%3A0.96%3A1&bh=330.017%3A121.264&bwe=330.017%3A7458601&bwm=330.017%3A2407754%3A0.844&c=WEB&cbr=Edge+Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017%3A328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1%2C23848225%2C137802%2C18617%2C204121%2C230596%2C222097%2C16229%2C133212%2C14625955%2C11684381%2C7222%2C14207%2C9859%2C12177%2C9954%2C1192%2C7913%2C18310%2C273%2C4147%2C2819%2C2%2C16344%2C1424%2C19204%2C9948%2C2196%2C9996%2C19%2C2%2C1082%2C6953%2C101%2C1401%2C9542%2C2471%2C3292%2C2716%2C1538%2C723%2C2575%2C9567%2C1375%2C3761%2C4162%2C8610%2C173%2C201%2C10406%2C321%2C148%2C2%2C343%2C1783%2C14%2C1322%2C50%2C621%2C702%2C1062%2C1769%2C1823%2C896%2C2291%2C2912%2C7568%2C342&fmt=398&ns=yt&referrer=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Disa90_67as&sdetail=rv%3Aisa89_68ad&seq=13&sourceid=yw&vps=330.017%3APL","url":"www.youtube.com/api/stats/abcd?fmt=398&afmt=251&cpn=FUB73SQWxSHKADxvJ&el=detailpage&ns=yt&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&cl=655399956&seq=13&docid=WVhG_sNVLasD&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&sourceid=yw&cbr=Edge%20Chromium&cbrver=115.0.0.0&c=WEB&cver=2.20240724.03.00&cplayer=UNIPLAYER&cos=Windows&cosver=10.0&cplatform=DESKTOP&vps=330.017:PL&bwm=330.017:2407754:0.844&bwe=330.017:7458601&bat=330.017:0.96:1&cmt=330.017:328.837&bh=330.017:121.264","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} \ No newline at end of file diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log-expected.json b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log-expected.json index f60cb69d0b4c..6e17e033539a 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log-expected.json +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log-expected.json @@ -25,7 +25,7 @@ ], "id": "123456789", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.0\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Allowed\",\"recordid\":123456789,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"url\":\"www.trythisencodeurl.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.0\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.0\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Allowed\",\"recordid\":123456789,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23%3A20%3A50.52Z\",\"url\":\"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23:20:50.52Z\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.0\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -71,7 +71,7 @@ ] }, "network": { - "protocol": "ftp" + "protocol": "http" }, "organization": { "name": "Zscaler" @@ -141,9 +141,12 @@ }, "url": { "domain": "www.trythisencodeurl.com", - "original": "ftp://www.trythisencodeurl.com/index", + "full": "http://www.trythisencodeurl.com:443/index?qtime=2023-04-12T23:20:50.52Z", + "original": "http://www.trythisencodeurl.com:443/index?qtime=2023-04-12T23:20:50.52Z", "path": "/index", - "scheme": "ftp" + "port": 443, + "query": "qtime=2023-04-12T23:20:50.52Z", + "scheme": "http" }, "user": { "domain": "safemarch.com", @@ -403,7 +406,7 @@ "category_method": "Database A", "class": "Bandwidth Loss", "filter_rule_label": "URL_Filtering_2", - "name": "ftp://www.trythisencodeurl.com/index" + "name": "www.trythisencodeurl.com:443/index?qtime=2023-04-12T23:20:50.52Z" }, "user_agent": { "class": "Firefox", @@ -442,7 +445,7 @@ ], "id": "123456780", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 17 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.1\",\"external_devid\":\"2345\",\"devicemodel\":\"20L8S7WC09\",\"action\":\"Allowed\",\"recordid\":123456780,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"url\":\"http://www.google.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 17 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.1\",\"external_devid\":\"2345\",\"devicemodel\":\"20L8S7WC09\",\"action\":\"Allowed\",\"recordid\":123456780,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTPS\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.example.com%3A443\",\"url\":\"www.example.com:443\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -488,7 +491,7 @@ ] }, "network": { - "protocol": "ftp" + "protocol": "https" }, "organization": { "name": "Zscaler" @@ -557,10 +560,11 @@ "cipher": "SSL3_CK_RSA_NULL_MD5" }, "url": { - "domain": "www.google.com", - "original": "http://www.google.com/index", - "path": "/index", - "scheme": "http" + "domain": "www.example.com", + "full": "https://www.example.com:443", + "original": "https://www.example.com:443", + "port": 443, + "scheme": "https" }, "user": { "domain": "safemarch.com", @@ -735,6 +739,7 @@ "reason": "Blocked" }, "product_version": "5.0.902.95524_04", + "prototype": "HTTPS", "reason": "File Attachment Cautioned", "record": { "id": "123456780" @@ -819,423 +824,7 @@ "category_method": "Database A", "class": "Bandwidth Loss", "filter_rule_label": "URL_Filtering_2", - "name": "http://www.google.com/index" - }, - "user_agent": { - "class": "Firefox", - "name": "Mozilla/5.0", - "token": "Google Chrome (0.x)" - }, - "user_location_name": "userlocationname", - "year": 2023, - "z_tunnel_version": "ZTUNNEL_1_0", - "zpa_app_segment": "ZPA_test_app_segment" - } - } - }, - { - "@timestamp": "2023-10-19T22:55:48.000Z", - "cloud": { - "provider": "zscaler.net" - }, - "destination": { - "domain": "mail.google.com", - "ip": "1.128.0.3" - }, - "device": { - "id": "4567", - "model": { - "identifier": "20L8S7WC20" - } - }, - "ecs": { - "version": "8.11.0" - }, - "event": { - "action": "allowed", - "category": [ - "web" - ], - "id": "123456799", - "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 19 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.3\",\"external_devid\":\"4567\",\"devicemodel\":\"20L8S7WC20\",\"action\":\"Allowed\",\"recordid\":123456799,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"DNS over HTTPS\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"url\":\"www.trythisencodeurl.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.0\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", - "reason": "File Attachment Cautioned", - "timezone": "GMT", - "type": [ - "info" - ] - }, - "file": { - "extension": [ - "exe", - "rar" - ], - "hash": { - "md5": "196a3d797bfee07fe4596b69f4ce1141", - "sha256": "81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c" - }, - "name": [ - "nssfeed.txt", - "nssfeed.exe" - ], - "type": "file" - }, - "host": { - "hostname": "PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734", - "name": "thinkpadsmith", - "os": { - "type": "ios", - "version": "Version 10.14.2 (Build 18C54)" - }, - "type": "Zscaler Client Connector" - }, - "http": { - "request": { - "bytes": 1300, - "method": "invalid", - "referrer": "www.example.com" - }, - "response": { - "bytes": 10500 - }, - "version": [ - "1.1", - "1" - ] - }, - "network": { - "protocol": "dns" - }, - "organization": { - "name": "Zscaler" - }, - "related": { - "hash": [ - "154f149b1443fbfa8c121d13e5c019a1", - "196a3d797bfee07fe4596b69f4ce1141", - "81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c" - ], - "hosts": [ - "thinkpadsmith", - "PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734" - ], - "ip": [ - "89.160.20.128", - "175.16.199.0", - "10.1.1.1", - "192.168.2.200", - "81.2.69.144", - "1.128.0.3" - ], - "user": [ - "jsmith", - "jdoe", - "jdoe@safemarch.com" - ] - }, - "rule": { - "name": [ - "File_Sharing_1", - "DLP_Rule_1", - "URL_Filtering_1", - "URL_Filtering_2" - ] - }, - "source": { - "geo": { - "city_name": "London", - "continent_name": "Europe", - "country_iso_code": "GB", - "country_name": "United Kingdom", - "location": { - "lat": 51.5142, - "lon": -0.0931 - }, - "region_iso_code": "GB-ENG", - "region_name": "England" - }, - "ip": "81.2.69.144", - "nat": { - "ip": "89.160.20.128" - }, - "port": 12345 - }, - "tags": [ - "preserve_original_event", - "preserve_duplicate_custom_fields" - ], - "threat": { - "indicator": { - "name": "196a3d797bfee07fe4596b69f4ce1141" - } - }, - "tls": { - "cipher": "SSL3_CK_RSA_NULL_MD5" - }, - "url": { - "domain": "www.trythisencodeurl.com", - "original": "dns://www.trythisencodeurl.com/index", - "path": "/index", - "scheme": "dns" - }, - "user": { - "domain": "safemarch.com", - "email": "jdoe@safemarch.com", - "name": "jdoe" - }, - "user_agent": { - "device": { - "name": "Other" - }, - "name": "Other", - "original": "Mozilla/5.0" - }, - "zscaler_zia": { - "web": { - "action": "Allowed", - "app": { - "class": "Administration", - "name": "Adobe Connect", - "risk_score": "1", - "rule_label": "File_Sharing_1" - }, - "bandwidth_class_name": "Entertainment", - "bandwidth_rule_name": "Office 365", - "bandwidth_throttle": "Yes", - "bypassed": { - "time": "2023-10-16T22:55:48.000Z", - "traffic": "1" - }, - "client": { - "cipher": "SSL3_CK_RSA_NULL_MD5", - "cipher_reuse": "Unknown", - "internet": { - "ip": "89.160.20.128" - }, - "ip": "81.2.69.144", - "public_ip": "175.16.199.0", - "source_port": 12345, - "ssl": { - "fail_count": 100, - "fail_reason": "Bad Record Mac" - }, - "tls_version": "SSL2" - }, - "cloud_name": "zscaler.net", - "company": "Zscaler", - "content_type": "application/vnd_apple_keynote", - "datacenter": { - "city": "Sa", - "country": "US", - "name": "CA Client Node DC" - }, - "day": "Mon", - "day_of_month": 16, - "department": "Sales", - "device": { - "appversion": "1.128.0.0", - "hostname": "THINKPADSMITH", - "model": "20L8S7WC20", - "name": "PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734", - "os": { - "type": "iOS", - "version": "Version 10.14.2 (Build 18C54)" - }, - "owner": "jsmith", - "type": "Zscaler Client Connector" - }, - "df": { - "host": { - "head": "df_hosthead", - "name": "df_hostname" - } - }, - "dlp": { - "dictionaries": { - "hit_count": "4", - "name": "Credit Cards" - }, - "engine": "HIPAA", - "identifier": "6646484838839026000", - "md5": "154f149b1443fbfa8c121d13e5c019a1", - "rule": { - "name": "DLP_Rule_1" - } - }, - "eedone": "Yes", - "epochtime": "2020-01-04T09:00:00.000Z", - "external": { - "device": { - "id": "4567" - } - }, - "file": { - "class": "Active Web Contents", - "name": "nssfeed.txt", - "subtype": "exe", - "type": "RAR Files" - }, - "flow_type": "Direct", - "forward_gateway": { - "ip": "10.1.1.1", - "name": "FWD_1" - }, - "forward_type": "Direct", - "host": "mail.google.com", - "hour": 22, - "is_ssl_certificate_expired": "Yes", - "is_ssl_certificate_selfsigned": "Yes", - "is_ssl_certificate_untrusted": "Pass", - "key_protection_type": "HSM Protection", - "location": "Headquarters", - "login": "jdoe@safemarch.com", - "malware": { - "category": "Adware", - "class": "Sandbox" - }, - "md5_hash": "196a3d797bfee07fe4596b69f4ce1141", - "minute": 55, - "mobile": { - "application": { - "category": "Communication", - "name": "Amazon" - }, - "dev": { - "type": "Google Android" - } - }, - "module": "Administration", - "month": "Oct", - "month_of_year": 10, - "nss": { - "service": { - "ip": "192.168.2.200" - } - }, - "obfuscated": { - "app_rule_label": "5300295980", - "bendwidth": { - "class_name": "10831489" - }, - "client": { - "ip": "6200694987", - "public": { - "ip": "624054738" - } - }, - "device": { - "host_name": "2168890624", - "name": "2175092224", - "owner": "10831489" - }, - "dlp": { - "dictionaries": "10831489", - "engine": "4094304256", - "rule": { - "name": "6857275752" - } - }, - "forward_gateway_name": "8794487099", - "login": "4094304256", - "rule": { - "name": "3399565100" - }, - "url": { - "category": "7956407282", - "filter_rule_label": "4951704103" - }, - "zpa_app_segment": "7648246731" - }, - "policy": { - "reason": "Blocked" - }, - "product_version": "5.0.902.95524_04", - "prototype": "DNS over HTTPS", - "reason": "File Attachment Cautioned", - "record": { - "id": "123456799" - }, - "redirect_policy_name": "FWD_Rule_1", - "referer": { - "host": "www.example.com for http://www.example.com/index.html", - "name": "www.example.com" - }, - "request": { - "header_size": 300, - "method": "invalid", - "payload": 1000, - "size": 1300, - "version": "1.1" - }, - "response": { - "code": "100", - "header_size": 500, - "payload": 10000, - "size": 10500, - "version": "1" - }, - "risk": { - "score": 10.0 - }, - "rule": { - "name": "URL_Filtering_1", - "type": "File Type Control" - }, - "second": 48, - "server": { - "certificate": { - "validation": { - "period": "Short" - } - }, - "certificate_validation_chain": "Unknown", - "certificate_validation_type": "EV (Extended Validation)", - "cipher": "SSL3_CK_RSA_NULL_MD5", - "cipher_reuse": "Unknown", - "ip": "1.128.0.3", - "ocsp_result": "Good", - "tls_version": "SSL2", - "wildcard_certificate": "Unknown" - }, - "sha256": "81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c", - "ssl_decrypted": "Yes", - "threat": { - "name": "EICAR Test File", - "severity": "Critical (90–100)" - }, - "throttle": { - "request_size": 5, - "response_size": 7 - }, - "time": "2023-10-19T22:55:48.000Z", - "timezone": "GMT", - "total": { - "size": 11800 - }, - "traffic_redirect_method": "DNAT (Destination Translation)", - "unscannable": { - "type": "Encrypted File" - }, - "upload": { - "doc": { - "type_name": "Corporate Finance" - }, - "file": { - "class": "upload_fileclass", - "name": "nssfeed.exe", - "subtype": "rar", - "type": "RAR Files" - } - }, - "url": { - "category": { - "sub": "Entertainment", - "super": "Travel" - }, - "category_method": "Database A", - "class": "Bandwidth Loss", - "filter_rule_label": "URL_Filtering_2", - "name": "dns://www.trythisencodeurl.com/index" + "name": "www.example.com:443" }, "user_agent": { "class": "Firefox", @@ -1250,18 +839,18 @@ } }, { - "@timestamp": "2023-10-20T22:55:48.000Z", + "@timestamp": "2023-10-18T23:55:48.000Z", "cloud": { "provider": "zscaler.net" }, "destination": { "domain": "mail.google.com", - "ip": "1.128.0.4" + "ip": "1.128.0.2" }, "device": { - "id": "5678", + "id": "2346", "model": { - "identifier": "20L8S7WC21" + "identifier": "20L8S7WC10" } }, "ecs": { @@ -1272,9 +861,9 @@ "category": [ "web" ], - "id": "123456790", + "id": "123456781", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 20 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.4\",\"external_devid\":\"5678\",\"devicemodel\":\"20L8S7WC21\",\"action\":\"Allowed\",\"recordid\":123456790,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"url\":\"www.twitter.com\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.0\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 18 23:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.2\",\"external_devid\":\"2346\",\"devicemodel\":\"20L8S7WC10\",\"action\":\"Allowed\",\"recordid\":123456781,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"SSL\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.example.com.com/params?Id=1&ts=2006-01-02T15%3A04%3A05Z07%3A00&user=65792&version=10.0.19041.1266\",\"url\":\"www.example.com.com/params?version=10.0.19041.1266&user=65792&Id=1&ts=2006-01-02T15:04:05Z07:00\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -1320,7 +909,7 @@ ] }, "network": { - "protocol": "https" + "protocol": "ssl" }, "organization": { "name": "Zscaler" @@ -1341,7 +930,7 @@ "10.1.1.1", "192.168.2.200", "81.2.69.144", - "1.128.0.4" + "1.128.0.2" ], "user": [ "jsmith", @@ -1389,8 +978,11 @@ "cipher": "SSL3_CK_RSA_NULL_MD5" }, "url": { - "domain": "www.twitter.com", - "original": "https://www.twitter.com", + "domain": "www.example.com.com", + "full": "https://www.example.com.com/params?Id=1&ts=2006-01-02T15:04:05Z07:00&user=65792&version=10.0.19041.1266", + "original": "https://www.example.com.com/params?Id=1&ts=2006-01-02T15:04:05Z07:00&user=65792&version=10.0.19041.1266", + "path": "/params", + "query": "Id=1&ts=2006-01-02T15:04:05Z07:00&user=65792&version=10.0.19041.1266", "scheme": "https" }, "user": { @@ -1408,6 +1000,7 @@ "zscaler_zia": { "web": { "action": "Allowed", + "alpn_protocol": "FTP", "app": { "class": "Administration", "name": "Adobe Connect", @@ -1448,9 +1041,9 @@ "day_of_month": 16, "department": "Sales", "device": { - "appversion": "1.128.0.0", + "appversion": "1.128.0.1", "hostname": "THINKPADSMITH", - "model": "20L8S7WC21", + "model": "20L8S7WC10", "name": "PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734", "os": { "type": "iOS", @@ -1481,7 +1074,7 @@ "epochtime": "2020-01-04T09:00:00.000Z", "external": { "device": { - "id": "5678" + "id": "2346" } }, "file": { @@ -1565,9 +1158,10 @@ "reason": "Blocked" }, "product_version": "5.0.902.95524_04", + "prototype": "SSL", "reason": "File Attachment Cautioned", "record": { - "id": "123456790" + "id": "123456781" }, "redirect_policy_name": "FWD_Rule_1", "referer": { @@ -1606,7 +1200,7 @@ "certificate_validation_type": "EV (Extended Validation)", "cipher": "SSL3_CK_RSA_NULL_MD5", "cipher_reuse": "Unknown", - "ip": "1.128.0.4", + "ip": "1.128.0.2", "ocsp_result": "Good", "tls_version": "SSL2", "wildcard_certificate": "Unknown" @@ -1621,7 +1215,7 @@ "request_size": 5, "response_size": 7 }, - "time": "2023-10-20T22:55:48.000Z", + "time": "2023-10-18T23:55:48.000Z", "timezone": "GMT", "total": { "size": 11800 @@ -1649,7 +1243,7 @@ "category_method": "Database A", "class": "Bandwidth Loss", "filter_rule_label": "URL_Filtering_2", - "name": "https://www.twitter.com" + "name": "www.example.com.com/params?version=10.0.19041.1266&user=65792&Id=1&ts=2006-01-02T15:04:05Z07:00" }, "user_agent": { "class": "Firefox", @@ -1664,18 +1258,18 @@ } }, { - "@timestamp": "2023-10-21T22:55:48.000Z", + "@timestamp": "2023-10-18T23:55:48.000Z", "cloud": { "provider": "zscaler.net" }, "destination": { "domain": "mail.google.com", - "ip": "1.128.0.5" + "ip": "1.128.0.2" }, "device": { - "id": "6789", + "id": "2346", "model": { - "identifier": "20L8S7WC22" + "identifier": "20L8S7WC10" } }, "ecs": { @@ -1686,9 +1280,9 @@ "category": [ "web" ], - "id": "123456798", + "id": "123456781", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 21 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.5\",\"external_devid\":\"6789\",\"devicemodel\":\"20L8S7WC22\",\"action\":\"Allowed\",\"recordid\":123456798,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"WebSocket SSL\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"url\":\"www.twitter.com/_stream\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.0\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 18 23:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.2\",\"external_devid\":\"2346\",\"devicemodel\":\"20L8S7WC10\",\"action\":\"Allowed\",\"recordid\":123456781,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"SSL\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.youtube.com/api/stats/abcd?afmt=251&bat=330.017%3A0.96%3A1&bh=330.017%3A121.264&bwe=330.017%3A7458601&bwm=330.017%3A2407754%3A0.844&c=WEB&cbr=Edge+Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017%3A328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1%2C23848225%2C137802%2C18617%2C204121%2C230596%2C222097%2C16229%2C133212%2C14625955%2C11684381%2C7222%2C14207%2C9859%2C12177%2C9954%2C1192%2C7913%2C18310%2C273%2C4147%2C2819%2C2%2C16344%2C1424%2C19204%2C9948%2C2196%2C9996%2C19%2C2%2C1082%2C6953%2C101%2C1401%2C9542%2C2471%2C3292%2C2716%2C1538%2C723%2C2575%2C9567%2C1375%2C3761%2C4162%2C8610%2C173%2C201%2C10406%2C321%2C148%2C2%2C343%2C1783%2C14%2C1322%2C50%2C621%2C702%2C1062%2C1769%2C1823%2C896%2C2291%2C2912%2C7568%2C342&fmt=398&ns=yt&referrer=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Disa90_67as&sdetail=rv%3Aisa89_68ad&seq=13&sourceid=yw&vps=330.017%3APL\",\"url\":\"www.youtube.com/api/stats/abcd?fmt=398&afmt=251&cpn=FUB73SQWxSHKADxvJ&el=detailpage&ns=yt&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&cl=655399956&seq=13&docid=WVhG_sNVLasD&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&sourceid=yw&cbr=Edge%20Chromium&cbrver=115.0.0.0&c=WEB&cver=2.20240724.03.00&cplayer=UNIPLAYER&cos=Windows&cosver=10.0&cplatform=DESKTOP&vps=330.017:PL&bwm=330.017:2407754:0.844&bwe=330.017:7458601&bat=330.017:0.96:1&cmt=330.017:328.837&bh=330.017:121.264\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -1734,7 +1328,7 @@ ] }, "network": { - "protocol": "wss" + "protocol": "ssl" }, "organization": { "name": "Zscaler" @@ -1755,7 +1349,7 @@ "10.1.1.1", "192.168.2.200", "81.2.69.144", - "1.128.0.5" + "1.128.0.2" ], "user": [ "jsmith", @@ -1803,10 +1397,12 @@ "cipher": "SSL3_CK_RSA_NULL_MD5" }, "url": { - "domain": "www.twitter.com", - "original": "wss://www.twitter.com/_stream", - "path": "/_stream", - "scheme": "wss" + "domain": "www.youtube.com", + "full": "https://www.youtube.com/api/stats/abcd?afmt=251&bat=330.017:0.96:1&bh=330.017:121.264&bwe=330.017:7458601&bwm=330.017:2407754:0.844&c=WEB&cbr=Edge Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017:328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&fmt=398&ns=yt&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&seq=13&sourceid=yw&vps=330.017:PL", + "original": "https://www.youtube.com/api/stats/abcd?afmt=251&bat=330.017:0.96:1&bh=330.017:121.264&bwe=330.017:7458601&bwm=330.017:2407754:0.844&c=WEB&cbr=Edge Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017:328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&fmt=398&ns=yt&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&seq=13&sourceid=yw&vps=330.017:PL", + "path": "/api/stats/abcd", + "query": "afmt=251&bat=330.017:0.96:1&bh=330.017:121.264&bwe=330.017:7458601&bwm=330.017:2407754:0.844&c=WEB&cbr=Edge Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017:328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&fmt=398&ns=yt&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&seq=13&sourceid=yw&vps=330.017:PL", + "scheme": "https" }, "user": { "domain": "safemarch.com", @@ -1823,6 +1419,7 @@ "zscaler_zia": { "web": { "action": "Allowed", + "alpn_protocol": "FTP", "app": { "class": "Administration", "name": "Adobe Connect", @@ -1863,9 +1460,9 @@ "day_of_month": 16, "department": "Sales", "device": { - "appversion": "1.128.0.0", + "appversion": "1.128.0.1", "hostname": "THINKPADSMITH", - "model": "20L8S7WC22", + "model": "20L8S7WC10", "name": "PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734", "os": { "type": "iOS", @@ -1896,7 +1493,7 @@ "epochtime": "2020-01-04T09:00:00.000Z", "external": { "device": { - "id": "6789" + "id": "2346" } }, "file": { @@ -1980,10 +1577,10 @@ "reason": "Blocked" }, "product_version": "5.0.902.95524_04", - "prototype": "WebSocket SSL", + "prototype": "SSL", "reason": "File Attachment Cautioned", "record": { - "id": "123456798" + "id": "123456781" }, "redirect_policy_name": "FWD_Rule_1", "referer": { @@ -2022,7 +1619,7 @@ "certificate_validation_type": "EV (Extended Validation)", "cipher": "SSL3_CK_RSA_NULL_MD5", "cipher_reuse": "Unknown", - "ip": "1.128.0.5", + "ip": "1.128.0.2", "ocsp_result": "Good", "tls_version": "SSL2", "wildcard_certificate": "Unknown" @@ -2037,7 +1634,7 @@ "request_size": 5, "response_size": 7 }, - "time": "2023-10-21T22:55:48.000Z", + "time": "2023-10-18T23:55:48.000Z", "timezone": "GMT", "total": { "size": 11800 @@ -2065,7 +1662,7 @@ "category_method": "Database A", "class": "Bandwidth Loss", "filter_rule_label": "URL_Filtering_2", - "name": "wss://www.twitter.com/_stream" + "name": "www.youtube.com/api/stats/abcd?fmt=398&afmt=251&cpn=FUB73SQWxSHKADxvJ&el=detailpage&ns=yt&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&cl=655399956&seq=13&docid=WVhG_sNVLasD&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&sourceid=yw&cbr=Edge Chromium&cbrver=115.0.0.0&c=WEB&cver=2.20240724.03.00&cplayer=UNIPLAYER&cos=Windows&cosver=10.0&cplatform=DESKTOP&vps=330.017:PL&bwm=330.017:2407754:0.844&bwe=330.017:7458601&bat=330.017:0.96:1&cmt=330.017:328.837&bh=330.017:121.264" }, "user_agent": { "class": "Firefox", diff --git a/packages/zscaler_zia/data_stream/web/elasticsearch/ingest_pipeline/default.yml b/packages/zscaler_zia/data_stream/web/elasticsearch/ingest_pipeline/default.yml index 25de51c1119b..2369117470f7 100644 --- a/packages/zscaler_zia/data_stream/web/elasticsearch/ingest_pipeline/default.yml +++ b/packages/zscaler_zia/data_stream/web/elasticsearch/ingest_pipeline/default.yml @@ -857,37 +857,11 @@ processors: tag: rename_proto target_field: zscaler_zia.web.prototype ignore_missing: true - # Set network.protocol from alpnprotocol - set: field: network.protocol - tag: set_network_protocol_from_web_alpn_protocol - copy_from: zscaler_zia.web.alpn_protocol + tag: set_network_protocol_from_web_prototype + copy_from: zscaler_zia.web.prototype ignore_empty_value: true - # Schemes taken from https://www.iana.org/assignments/uri-schemes/uri-schemes.xhtml - - script: - lang: painless - if: ctx.network?.protocol == null - description: Set network.protocol from prototype, if not already set. - tag: script_set_network_protocol - params: - dns-over-https: dns - ftp: ftp - ftp-over-http: ftp - http: http - http-proxy: http - https: https - ssl: https - tunnel: ssh - tunnel-ssl: ssh - websocket: ws - websocket-ssl: wss - source: > - String prototype = ctx.zscaler_zia?.web?.prototype?.toLowerCase()?.replace(' ', '-'); - String scheme = params.getOrDefault(prototype, 'https'); - if (ctx.network == null) { - ctx.network = new HashMap(); - } - ctx.network.protocol = scheme; - lowercase: field: network.protocol tag: lowercase_network_protocol @@ -1354,27 +1328,45 @@ processors: tag: urldecode_url ignore_missing: true ignore_failure: true + - urldecode: + field: json.eurl + target_field: json.eurl + tag: urldecode_eurl + ignore_missing: true - script: + description: Build URI for parsing. + tag: Build URI for parsing lang: painless - description: Add scheme to url if not already present - if: ctx.zscaler_zia?.web?.url?.name != null - tag: script_add_url_scheme - source: |- - def regex = /[a-z]+:\/\/.*/; - def url = ctx.zscaler_zia.web.url.name; - if (!regex.matcher(url).matches()) { - url = ctx.network.protocol + '://' + url; + if: ctx.network?.protocol != null && ctx.json?.eurl != null + params: + valid_protocols: + - http + - https + default_protocol: https + source: | + // Remap network.protocol to a valid value, if necessary. + if (params.valid_protocols.contains(ctx.network.protocol)) { + ctx.json['url'] = ctx.network.protocol + '://' + ctx.json.eurl; + } else { + ctx.json['url'] = params.default_protocol + '://' + ctx.json.eurl; } - ctx.zscaler_zia.web.url.name = url; - - set: - field: url.original - tag: set_url_original_from_web_url_name - copy_from: zscaler_zia.web.url.name - ignore_empty_value: true - uri_parts: + field: json.url + if: ctx.json?.url != null && ctx.json.url != '' + on_failure: + - set: + field: url.original + value: '{{{json.eurl}}}' + if: ctx.json?.eurl != null && ctx.json.eurl != '' + - set: + field: url.full + value: '{{{url.original}}}' + if: ctx.url?.original != null && ctx.url.original != '' + - urldecode: field: url.original - tag: uri_parts_url_original ignore_missing: true + tag: urldecode_url_original + if: ctx.url?.original != null && ctx.url.original != '' on_failure: - append: field: error.message diff --git a/packages/zscaler_zia/docs/README.md b/packages/zscaler_zia/docs/README.md index c7f0edc7075d..fb634ef84718 100644 --- a/packages/zscaler_zia/docs/README.md +++ b/packages/zscaler_zia/docs/README.md @@ -216,12 +216,12 @@ See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output Zscaler response format (v2): ``` -\{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","url":"%s{url}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} +\{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","eurl":"%s{eurl}","url":"%s{url}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} ``` Sample Response: ```json -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com/index","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} ``` ### Enabling the integration in Elastic: diff --git a/packages/zscaler_zia/manifest.yml b/packages/zscaler_zia/manifest.yml index 8c36888baf1e..5cd89f1134fa 100644 --- a/packages/zscaler_zia/manifest.yml +++ b/packages/zscaler_zia/manifest.yml @@ -1,7 +1,7 @@ -format_version: "3.0.2" +format_version: "3.0.3" name: zscaler_zia title: Zscaler Internet Access -version: "3.0.2" +version: "3.0.3" description: Collect logs from Zscaler Internet Access (ZIA) with Elastic Agent. type: integration categories: From c2cdf2c323e7a8bb56d32e7458aa278dd33a5e14 Mon Sep 17 00:00:00 2001 From: Leandro Maciel Date: Thu, 1 Aug 2024 00:45:12 -0300 Subject: [PATCH 06/77] [NetSkope] add related.user and user.name to netskope events and alerts (#10569) Co-authored-by: Andrew Kroh --- packages/netskope/changelog.yml | 5 + .../pipeline/test-alerts.log-expected.json | 158 ++++++++++++++---- .../elasticsearch/ingest_pipeline/default.yml | 23 ++- .../pipeline/test-events.log-expected.json | 100 +++++++++-- .../elasticsearch/ingest_pipeline/default.yml | 23 ++- packages/netskope/manifest.yml | 2 +- 6 files changed, 267 insertions(+), 44 deletions(-) diff --git a/packages/netskope/changelog.yml b/packages/netskope/changelog.yml index b5c411fbc380..6a8e2cd2b822 100644 --- a/packages/netskope/changelog.yml +++ b/packages/netskope/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.20.0" + changes: + - description: Improve parsing of the message to add the related.user and user.name fields. + type: enhancement + link: https://github.com/elastic/integrations/pull/10569 - version: "1.19.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/netskope/data_stream/alerts/_dev/test/pipeline/test-alerts.log-expected.json b/packages/netskope/data_stream/alerts/_dev/test/pipeline/test-alerts.log-expected.json index e11012106be9..3ceb2033b60f 100644 --- a/packages/netskope/data_stream/alerts/_dev/test/pipeline/test-alerts.log-expected.json +++ b/packages/netskope/data_stream/alerts/_dev/test/pipeline/test-alerts.log-expected.json @@ -109,7 +109,6 @@ }, "type": "policy", "url": { - "extension": "com\\\\/open", "original": "http:\\\\/\\\\/www.example.com\\\\/open?id=WLb5Mc7aPGx914gEyYNjJxTo32yjF8xKAcqIoN_klrGg", "path": "\\\\/\\\\/www.example.com\\\\/open", "query": "id=WLb5Mc7aPGx914gEyYNjJxTo32yjF8xKAcqIoN_klrGg", @@ -120,6 +119,9 @@ "related": { "ip": [ "81.2.69.143" + ], + "user": [ + "test" ] }, "source": { @@ -144,7 +146,8 @@ "user": { "email": [ "test@example.com" - ] + ], + "name": "test" }, "user_agent": { "name": "unknown", @@ -279,7 +282,6 @@ }, "type": "DLP", "url": { - "extension": "com\\\\/open", "original": "http:\\\\/\\\\/www.example.com\\\\/open?id=14WLYNjJxKgEyqIoNAcb57aPGx9_klcxTo3MyjF82rGg", "path": "\\\\/\\\\/www.example.com\\\\/open", "query": "id=14WLYNjJxKgEyqIoNAcb57aPGx9_klcxTo3MyjF82rGg", @@ -290,6 +292,9 @@ "related": { "ip": [ "81.2.69.143" + ], + "user": [ + "test_user" ] }, "source": { @@ -314,7 +319,8 @@ "user": { "email": [ "test_user@example.com" - ] + ], + "name": "test_user" }, "user_agent": { "name": "unknown", @@ -462,7 +468,6 @@ }, "type": "quarantine", "url": { - "extension": "com\\\\/open", "original": "https:\\\\/\\\\/www.example.com\\\\/open?id=o3MyjFxoNAcb514WLYNjJTI9_klcx82rGg7aPGxKgEyq", "path": "\\\\/\\\\/www.example.com\\\\/open", "query": "id=o3MyjFxoNAcb514WLYNjJTI9_klcx82rGg7aPGxKgEyq", @@ -473,6 +478,9 @@ "related": { "ip": [ "81.2.69.143" + ], + "user": [ + "test" ] }, "source": { @@ -497,7 +505,8 @@ "user": { "email": [ "test@example.com" - ] + ], + "name": "test" }, "user_agent": { "name": "unknown", @@ -779,6 +788,9 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "user" ] }, "source": { @@ -803,7 +815,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -920,7 +933,6 @@ "page": { "site": "examplesecuritycheck", "url": { - "extension": "com/tests/execute/9", "original": "examplesecuritycheck.com/tests/execute/9", "path": "examplesecuritycheck.com/tests/execute/9" } @@ -960,6 +972,9 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "user" ] }, "source": { @@ -994,7 +1009,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -1151,6 +1167,10 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "USERDTE471", + "userdte471" ] }, "source": { @@ -1225,13 +1245,19 @@ "type": "Compromised Credential" } }, + "related": { + "user": [ + "user" + ] + }, "tags": [ "preserve_original_event" ], "user": { "email": [ "user@example.com" - ] + ], + "name": "user" } }, { @@ -1507,6 +1533,9 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "user" ] }, "source": { @@ -1531,7 +1560,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -1648,7 +1678,6 @@ "page": { "site": "examplesecuritycheck", "url": { - "extension": "com/tests/execute/9", "original": "examplesecuritycheck.com/tests/execute/9", "path": "examplesecuritycheck.com/tests/execute/9" } @@ -1688,6 +1717,9 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "user" ] }, "source": { @@ -1722,7 +1754,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -1879,6 +1912,10 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "USERDTE471", + "userdte471" ] }, "source": { @@ -2060,6 +2097,10 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "USERDTE471", + "userdte471" ] }, "source": { @@ -2259,6 +2300,9 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "user" ] }, "source": { @@ -2283,7 +2327,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -2401,7 +2446,6 @@ "page": { "site": "examplesecuritycheck", "url": { - "extension": "com/tests/execute/9", "original": "examplesecuritycheck.com/tests/execute/9", "path": "examplesecuritycheck.com/tests/execute/9" } @@ -2441,6 +2485,9 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "user" ] }, "source": { @@ -2475,7 +2522,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -2633,6 +2681,10 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "USERDTE471", + "userdte471" ] }, "source": { @@ -2815,6 +2867,9 @@ "ip": [ "81.2.69.143", "81.2.69.144" + ], + "user": [ + "user" ] }, "source": { @@ -2849,7 +2904,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -3008,6 +3064,10 @@ "ip": [ "81.2.69.143", "81.2.69.144" + ], + "user": [ + "USERDTE471", + "userdte471" ] }, "source": { @@ -3169,7 +3229,6 @@ }, "type": "DLP", "url": { - "extension": "com\\\\/open", "original": "http:\\\\/\\\\/www.example.com\\\\/open?id=14WLYNjJxKgEyqIoNAcb57aPGx9_klcxTo3MyjF82rGg", "path": "\\\\/\\\\/www.example.com\\\\/open", "query": "id=14WLYNjJxKgEyqIoNAcb57aPGx9_klcxTo3MyjF82rGg", @@ -3180,6 +3239,9 @@ "related": { "ip": [ "81.2.69.143" + ], + "user": [ + "test_user" ] }, "source": { @@ -3204,7 +3266,8 @@ "user": { "email": [ "test_user@example.com" - ] + ], + "name": "test_user" }, "user_agent": { "name": "unknown", @@ -3340,7 +3403,6 @@ }, "type": "DLP", "url": { - "extension": "com\\\\/open", "original": "http:\\\\/\\\\/www.example.com\\\\/open?id=14WLYNjJxKgEyqIoNAcb57aPGx9_klcxTo3MyjF82rGg", "path": "\\\\/\\\\/www.example.com\\\\/open", "query": "id=14WLYNjJxKgEyqIoNAcb57aPGx9_klcxTo3MyjF82rGg", @@ -3351,6 +3413,9 @@ "related": { "ip": [ "81.2.69.143" + ], + "user": [ + "test_user" ] }, "source": { @@ -3375,7 +3440,8 @@ "user": { "email": [ "test_user@example.com" - ] + ], + "name": "test_user" }, "user_agent": { "name": "unknown", @@ -3431,6 +3497,9 @@ "related": { "hosts": [ "example.com" + ], + "user": [ + "user" ] }, "tags": [ @@ -3439,7 +3508,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" } }, { @@ -3551,7 +3621,6 @@ "page": { "site": "examplesecuritycheck", "url": { - "extension": "com/tests/execute/9", "original": "examplesecuritycheck.com/tests/execute/9", "path": "examplesecuritycheck.com/tests/execute/9" } @@ -3591,6 +3660,9 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "user" ] }, "source": { @@ -3624,7 +3696,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -3802,6 +3875,9 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "user" ] }, "source": { @@ -3826,7 +3902,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -3988,6 +4065,10 @@ ], "ip": [ "81.2.69.143" + ], + "user": [ + "USERDTE471", + "userdte471" ] }, "source": { @@ -4069,13 +4150,19 @@ "type": "Compromised Credential" } }, + "related": { + "user": [ + "user" + ] + }, "tags": [ "preserve_original_event" ], "user": { "email": [ "user@example.com" - ] + ], + "name": "user" } }, { @@ -4152,7 +4239,6 @@ }, "type": "policy", "url": { - "extension": "com/", "original": "www.example.com/", "path": "www.example.com/" } @@ -4164,6 +4250,9 @@ "related": { "ip": [ "81.2.69.144" + ], + "user": [ + "user" ] }, "source": { @@ -4188,7 +4277,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -4365,6 +4455,9 @@ "ip": [ "81.2.69.142", "81.2.69.144" + ], + "user": [ + "user" ] }, "source": { @@ -4389,7 +4482,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", @@ -4566,6 +4660,9 @@ "ip": [ "81.2.69.142", "81.2.69.144" + ], + "user": [ + "user" ] }, "source": { @@ -4590,7 +4687,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "name": "Chrome", diff --git a/packages/netskope/data_stream/alerts/elasticsearch/ingest_pipeline/default.yml b/packages/netskope/data_stream/alerts/elasticsearch/ingest_pipeline/default.yml index f09b3ca4892b..9f1ff4bedede 100644 --- a/packages/netskope/data_stream/alerts/elasticsearch/ingest_pipeline/default.yml +++ b/packages/netskope/data_stream/alerts/elasticsearch/ingest_pipeline/default.yml @@ -1312,11 +1312,13 @@ processors: } - script: if: ctx.user?.email != null + description: transform user.email field into a list and parse it into user.name and related.user fields + tag: parse_user_email lang: painless + ignore_failure: true source: >- def parts = ctx.user.email; if (!(parts instanceof String)) { - List l = new ArrayList(); for (entry in parts.entrySet()) { l.add(entry.getValue()); @@ -1324,6 +1326,25 @@ processors: List setList = new ArrayList(new HashSet(l)); ctx.user.email = setList; } + if (ctx.user.email instanceof List) { + def related_users = []; + for (def email : ctx.user.email) { + if (email.contains('@')) { + related_users.add(email.splitOnToken('@')[0]) + } + } + if (ctx.related == null) { + ctx.related = new HashMap(); + } + ctx.related.user = related_users; + if (related_users.length == 1) { + ctx.user.name = related_users[0] + } + } + on_failure: + - append: + field: error.message + value: '{{{_ingest.on_failure_message}}}' - script: if: ctx.netskope?.alerts?.quarantine?.app != null lang: painless diff --git a/packages/netskope/data_stream/events/_dev/test/pipeline/test-events.log-expected.json b/packages/netskope/data_stream/events/_dev/test/pipeline/test-events.log-expected.json index 97c838956a5a..ef6f4d0e90c0 100644 --- a/packages/netskope/data_stream/events/_dev/test/pipeline/test-events.log-expected.json +++ b/packages/netskope/data_stream/events/_dev/test/pipeline/test-events.log-expected.json @@ -143,6 +143,10 @@ "related": { "ip": [ "81.2.69.143" + ], + "user": [ + "userdte471", + "USERDTE471" ] }, "source": { @@ -276,6 +280,10 @@ "ip": [ "81.2.69.143", "89.160.20.112" + ], + "user": [ + "userdte471", + "USERDTE471" ] }, "server": { @@ -344,13 +352,19 @@ "type": "admin_audit_logs" } }, + "related": { + "user": [ + "user" + ] + }, "tags": [ "preserve_original_event" ], "user": { "email": [ "user@example.com" - ] + ], + "name": "user" } }, { @@ -476,6 +490,11 @@ "ip": [ "81.2.69.143", "89.160.20.112" + ], + "user": [ + "userdte471", + "USERDTE471", + "foo" ] }, "server": { @@ -611,7 +630,6 @@ }, "type": "connection", "url": { - "extension": "com", "original": "some.example.com", "path": "some.example.com" }, @@ -637,6 +655,11 @@ "ip": [ "81.2.69.143", "89.160.20.112" + ], + "user": [ + "userdte471", + "USERDTE471", + "foo" ] }, "source": { @@ -815,6 +838,10 @@ "related": { "ip": [ "81.2.69.143" + ], + "user": [ + "userdte471", + "USERDTE471" ] }, "source": { @@ -949,6 +976,10 @@ "ip": [ "81.2.69.143", "89.160.20.112" + ], + "user": [ + "userdte471", + "USERDTE471" ] }, "server": { @@ -1018,13 +1049,19 @@ "type": "admin_audit_logs" } }, + "related": { + "user": [ + "user" + ] + }, "tags": [ "preserve_original_event" ], "user": { "email": [ "user@example.com" - ] + ], + "name": "user" } }, { @@ -1151,6 +1188,11 @@ "ip": [ "81.2.69.143", "89.160.20.112" + ], + "user": [ + "userdte471", + "USERDTE471", + "foo" ] }, "server": { @@ -1286,7 +1328,6 @@ }, "type": "connection", "url": { - "extension": "com", "original": "some.example.com", "path": "some.example.com" }, @@ -1313,6 +1354,11 @@ "ip": [ "81.2.69.143", "89.160.20.112" + ], + "user": [ + "userdte471", + "USERDTE471", + "foo" ] }, "source": { @@ -1486,6 +1532,10 @@ "related": { "ip": [ "81.2.69.143" + ], + "user": [ + "userdte471", + "USERDTE471" ] }, "source": { @@ -1581,7 +1631,6 @@ }, "type": "connection", "url": { - "extension": "com", "original": "some.example.com", "path": "some.example.com" }, @@ -1608,6 +1657,11 @@ "ip": [ "81.2.69.143", "89.160.20.112" + ], + "user": [ + "userdte471", + "USERDTE471", + "foo" ] }, "source": { @@ -1746,6 +1800,10 @@ "ip": [ "81.2.69.143", "89.160.20.112" + ], + "user": [ + "userdte471", + "USERDTE471" ] }, "server": { @@ -1815,13 +1873,19 @@ "type": "admin_audit_logs" } }, + "related": { + "user": [ + "user" + ] + }, "tags": [ "preserve_original_event" ], "user": { "email": [ "user@example.com" - ] + ], + "name": "user" } }, { @@ -1895,6 +1959,9 @@ "related": { "ip": [ "81.2.69.144" + ], + "user": [ + "user" ] }, "source": { @@ -1921,6 +1988,7 @@ "user@example.com", "Introspection" ], + "name": "user", "roles": [ "unknown" ] @@ -2032,6 +2100,9 @@ "ip": [ "81.2.69.144", "89.160.20.128" + ], + "user": [ + "user" ] }, "server": { @@ -2061,7 +2132,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" }, "user_agent": { "os": { @@ -2126,7 +2198,6 @@ }, "type": "connection", "url": { - "extension": "com", "original": "example.com", "path": "example.com" }, @@ -2152,6 +2223,9 @@ "ip": [ "89.160.20.112", "89.160.20.128" + ], + "user": [ + "user" ] }, "source": { @@ -2176,7 +2250,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" } }, { @@ -2236,7 +2311,6 @@ }, "type": "connection", "url": { - "extension": "com", "original": "example.com", "path": "example.com" }, @@ -2262,6 +2336,9 @@ "ip": [ "89.160.20.112", "89.160.20.128" + ], + "user": [ + "user" ] }, "source": { @@ -2286,7 +2363,8 @@ "user": { "email": [ "user@example.com" - ] + ], + "name": "user" } }, { diff --git a/packages/netskope/data_stream/events/elasticsearch/ingest_pipeline/default.yml b/packages/netskope/data_stream/events/elasticsearch/ingest_pipeline/default.yml index 9fe79d17d0b3..709af059ae00 100644 --- a/packages/netskope/data_stream/events/elasticsearch/ingest_pipeline/default.yml +++ b/packages/netskope/data_stream/events/elasticsearch/ingest_pipeline/default.yml @@ -1069,11 +1069,13 @@ processors: } - script: if: ctx.user?.email != null + description: transform user.email field into a list and parse it into user.name and related.user fields + tag: parse_user_email lang: painless + ignore_failure: true source: >- def parts = ctx.user.email; if (!(parts instanceof String)) { - List l = new ArrayList(); for (entry in parts.entrySet()) { l.add(entry.getValue()); @@ -1081,6 +1083,25 @@ processors: List setList = new ArrayList(new HashSet(l)); ctx.user.email = setList; } + if (ctx.user.email instanceof List) { + def related_users = []; + for (def email : ctx.user.email) { + if (email.contains('@')) { + related_users.add(email.splitOnToken('@')[0]) + } + } + if (ctx.related == null) { + ctx.related = new HashMap(); + } + ctx.related.user = related_users; + if (related_users.length == 1) { + ctx.user.name = related_users[0] + } + } + on_failure: + - append: + field: error.message + value: '{{{_ingest.on_failure_message}}}' - script: description: Drops null/empty values recursively lang: painless diff --git a/packages/netskope/manifest.yml b/packages/netskope/manifest.yml index 284b4c7e8a84..382d87032230 100644 --- a/packages/netskope/manifest.yml +++ b/packages/netskope/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.3" name: netskope title: "Netskope" -version: "1.19.0" +version: "1.20.0" description: Collect logs from Netskope with Elastic Agent. type: integration categories: From f08662cc4a05f0bb90a6877794406717f1546c3e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 1 Aug 2024 10:54:38 +0200 Subject: [PATCH 07/77] Bump github.com/elastic/elastic-package from 0.101.2 to 0.102.0 (#10670) Bumps [github.com/elastic/elastic-package](https://github.com/elastic/elastic-package) from 0.101.2 to 0.102.0. - [Release notes](https://github.com/elastic/elastic-package/releases) - [Changelog](https://github.com/elastic/elastic-package/blob/main/.goreleaser.yml) - [Commits](https://github.com/elastic/elastic-package/compare/v0.101.2...v0.102.0) --- updated-dependencies: - dependency-name: github.com/elastic/elastic-package dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- go.mod | 12 ++++++------ go.sum | 24 ++++++++++++------------ 2 files changed, 18 insertions(+), 18 deletions(-) diff --git a/go.mod b/go.mod index dd378f5b0794..014895beeb49 100644 --- a/go.mod +++ b/go.mod @@ -5,7 +5,7 @@ go 1.22.0 require ( github.com/blang/semver v3.5.1+incompatible github.com/cli/go-gh/v2 v2.9.0 - github.com/elastic/elastic-package v0.101.2 + github.com/elastic/elastic-package v0.102.0 github.com/elastic/go-licenser v0.4.2 github.com/elastic/package-registry v1.24.0 github.com/magefile/mage v1.15.0 @@ -192,13 +192,13 @@ require ( google.golang.org/protobuf v1.33.0 // indirect gopkg.in/inf.v0 v0.9.1 // indirect gopkg.in/yaml.v2 v2.4.0 // indirect - helm.sh/helm/v3 v3.15.2 // indirect + helm.sh/helm/v3 v3.15.3 // indirect howett.net/plist v1.0.0 // indirect - k8s.io/api v0.30.2 // indirect + k8s.io/api v0.30.3 // indirect k8s.io/apiextensions-apiserver v0.30.0 // indirect - k8s.io/apimachinery v0.30.2 // indirect - k8s.io/cli-runtime v0.30.2 // indirect - k8s.io/client-go v0.30.2 // indirect + k8s.io/apimachinery v0.30.3 // indirect + k8s.io/cli-runtime v0.30.3 // indirect + k8s.io/client-go v0.30.3 // indirect k8s.io/component-base v0.30.0 // indirect k8s.io/klog/v2 v2.120.1 // indirect k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect diff --git a/go.sum b/go.sum index ad803ec181e4..08f661123c49 100644 --- a/go.sum +++ b/go.sum @@ -107,8 +107,8 @@ github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkp github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto= github.com/elastic/elastic-integration-corpus-generator-tool v0.10.0 h1:sx1lpZuTG5suJuvgix4FWQFCLFFbzkoOmPoHWYOPLCY= github.com/elastic/elastic-integration-corpus-generator-tool v0.10.0/go.mod h1:2/30n+2QRzRzus4TPVUV1T3U/j8g2ItUgvP0pcpjLGk= -github.com/elastic/elastic-package v0.101.2 h1:EvNM/1GlAx4OeLnGafYkNq5YTzi7B9Mo7Y++/2qpb/8= -github.com/elastic/elastic-package v0.101.2/go.mod h1:EnPSRXsuOXhdTbWGzTe3OF9qecCfIs84KrOwVz+2GaM= +github.com/elastic/elastic-package v0.102.0 h1:MYBU4KRjuZRiQt4JPYqCYH/fi4iOH79de2GkwQulKGs= +github.com/elastic/elastic-package v0.102.0/go.mod h1:FO+U5ZXOnvoHWGjHajQbUyerBZ7MQmp9+L/76cO1JT8= github.com/elastic/go-elasticsearch/v7 v7.17.10 h1:TCQ8i4PmIJuBunvBS6bwT2ybzVFxxUhhltAs3Gyu1yo= github.com/elastic/go-elasticsearch/v7 v7.17.10/go.mod h1:OJ4wdbtDNk5g503kvlHLyErCgQwwzmDtaFC4XyOxXA4= github.com/elastic/go-licenser v0.4.2 h1:bPbGm8bUd8rxzSswFOqvQh1dAkKGkgAmrPxbUi+Y9+A= @@ -702,22 +702,22 @@ gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C gopkg.in/yaml.v3 v3.0.0-20200605160147-a5ece683394c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA= gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= -helm.sh/helm/v3 v3.15.2 h1:/3XINUFinJOBjQplGnjw92eLGpgXXp1L8chWPkCkDuw= -helm.sh/helm/v3 v3.15.2/go.mod h1:FzSIP8jDQaa6WAVg9F+OkKz7J0ZmAga4MABtTbsb9WQ= +helm.sh/helm/v3 v3.15.3 h1:HcZDaVFe9uHa6hpsR54mJjYyRy4uz/pc6csg27nxFOc= +helm.sh/helm/v3 v3.15.3/go.mod h1:FzSIP8jDQaa6WAVg9F+OkKz7J0ZmAga4MABtTbsb9WQ= honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= howett.net/plist v1.0.0 h1:7CrbWYbPPO/PyNy38b2EB/+gYbjCe2DXBxgtOOZbSQM= howett.net/plist v1.0.0/go.mod h1:lqaXoTrLY4hg8tnEzNru53gicrbv7rrk+2xJA/7hw9g= -k8s.io/api v0.30.2 h1:+ZhRj+28QT4UOH+BKznu4CBgPWgkXO7XAvMcMl0qKvI= -k8s.io/api v0.30.2/go.mod h1:ULg5g9JvOev2dG0u2hig4Z7tQ2hHIuS+m8MNZ+X6EmI= +k8s.io/api v0.30.3 h1:ImHwK9DCsPA9uoU3rVh4QHAHHK5dTSv1nxJUapx8hoQ= +k8s.io/api v0.30.3/go.mod h1:GPc8jlzoe5JG3pb0KJCSLX5oAFIW3/qNJITlDj8BH04= k8s.io/apiextensions-apiserver v0.30.0 h1:jcZFKMqnICJfRxTgnC4E+Hpcq8UEhT8B2lhBcQ+6uAs= k8s.io/apiextensions-apiserver v0.30.0/go.mod h1:N9ogQFGcrbWqAY9p2mUAL5mGxsLqwgtUce127VtRX5Y= -k8s.io/apimachinery v0.30.2 h1:fEMcnBj6qkzzPGSVsAZtQThU62SmQ4ZymlXRC5yFSCg= -k8s.io/apimachinery v0.30.2/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc= -k8s.io/cli-runtime v0.30.2 h1:ooM40eEJusbgHNEqnHziN9ZpLN5U4WcQGsdLKVxpkKE= -k8s.io/cli-runtime v0.30.2/go.mod h1:Y4g/2XezFyTATQUbvV5WaChoUGhojv/jZAtdp5Zkm0A= -k8s.io/client-go v0.30.2 h1:sBIVJdojUNPDU/jObC+18tXWcTJVcwyqS9diGdWHk50= -k8s.io/client-go v0.30.2/go.mod h1:JglKSWULm9xlJLx4KCkfLLQ7XwtlbflV6uFFSHTMgVs= +k8s.io/apimachinery v0.30.3 h1:q1laaWCmrszyQuSQCfNB8cFgCuDAoPszKY4ucAjDwHc= +k8s.io/apimachinery v0.30.3/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc= +k8s.io/cli-runtime v0.30.3 h1:aG69oRzJuP2Q4o8dm+f5WJIX4ZBEwrvdID0+MXyUY6k= +k8s.io/cli-runtime v0.30.3/go.mod h1:hwrrRdd9P84CXSKzhHxrOivAR9BRnkMt0OeP5mj7X30= +k8s.io/client-go v0.30.3 h1:bHrJu3xQZNXIi8/MoxYtZBBWQQXwy16zqJwloXXfD3k= +k8s.io/client-go v0.30.3/go.mod h1:8d4pf8vYu665/kUbsxWAQ/JDBNWqfFeZnvFiVdmx89U= k8s.io/component-base v0.30.0 h1:cj6bp38g0ainlfYtaOQuRELh5KSYjhKxM+io7AUIk4o= k8s.io/component-base v0.30.0/go.mod h1:V9x/0ePFNaKeKYA3bOvIbrNoluTSG+fSJKjLdjOoeXQ= k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw= From af599736f4e02cf8f5cee714a648ca74c53a7392 Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Thu, 1 Aug 2024 20:11:00 +0930 Subject: [PATCH 08/77] Add a data stream name input field to bug template (#10673) Co-authored-by: Andrew Kroh --- .github/ISSUE_TEMPLATE/integration_bug.yml | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/.github/ISSUE_TEMPLATE/integration_bug.yml b/.github/ISSUE_TEMPLATE/integration_bug.yml index 86e15d7197c6..335db25d49d5 100644 --- a/.github/ISSUE_TEMPLATE/integration_bug.yml +++ b/.github/ISSUE_TEMPLATE/integration_bug.yml @@ -293,6 +293,12 @@ body: validations: required: true + - type: input + id: data_stream_dataset_name + attributes: + label: Dataset Name + description: Which [dataset](https://www.elastic.co/guide/en/fleet/current/data-streams.html) in the integration package are you having issues with? + placeholder: ex. nginx.access - type: input id: integration_version attributes: From 0b84690c419cc14b06378d3ad0ff532eeb72f0d5 Mon Sep 17 00:00:00 2001 From: Jaime Soriano Pastor Date: Thu, 1 Aug 2024 14:05:04 +0200 Subject: [PATCH 09/77] Retry requests to artifacts API from CI jobs (#10675) Retry forever if the artifacts API is not available, and assume it will come back at some point. If it doesn't come back, the job would fail in any case by timeout. --- .../scripts/find_oldest_supported_version.py | 19 ++++++++++++++++--- .../trigger_integrations_in_parallel.sh | 1 + 2 files changed, 17 insertions(+), 3 deletions(-) diff --git a/.buildkite/scripts/find_oldest_supported_version.py b/.buildkite/scripts/find_oldest_supported_version.py index 82662a84f6df..a9826391f9eb 100644 --- a/.buildkite/scripts/find_oldest_supported_version.py +++ b/.buildkite/scripts/find_oldest_supported_version.py @@ -2,14 +2,27 @@ import argparse import requests import sys -import yaml import unittest +import yaml -VERSION_URL = "https://artifacts-api.elastic.co/v1/versions?x-elastic-no-kpi=true" +from requests.adapters import HTTPAdapter, Retry + +ARTIFACTS_URL = "https://artifacts-api.elastic.co" +VERSION_URL = ARTIFACTS_URL + "/v1/versions?x-elastic-no-kpi=true" def fetch_version(): - return requests.get(VERSION_URL).json() + # Retry forever on connection or 500 errors, assume the artifacts API + # will come back. If it doesn't come back we cannot continue executing + # jobs in any case. + retries = Retry( + total=None, + backoff_factor=0.5, + status_forcelist=[500, 502, 503, 504], + ) + session = requests.Session() + session.mount(ARTIFACTS_URL, HTTPAdapter(max_retries=retries)) + return session.get(VERSION_URL).json() def find_oldest_supported_version(kibana_version_condition: str) -> str: diff --git a/.buildkite/scripts/trigger_integrations_in_parallel.sh b/.buildkite/scripts/trigger_integrations_in_parallel.sh index 72c468569ef7..071e8c97e953 100755 --- a/.buildkite/scripts/trigger_integrations_in_parallel.sh +++ b/.buildkite/scripts/trigger_integrations_in_parallel.sh @@ -50,6 +50,7 @@ for package in ${PACKAGE_LIST}; do - label: "Check integrations ${package}" key: "test-integrations-${package}" command: ".buildkite/scripts/test_one_package.sh ${package} ${from} ${to}" + timeout_in_minutes: 240 agents: provider: gcp image: ${IMAGE_UBUNTU_X86_64} From 1284b90e03724b4c90764f2bb1ffc37dbb012f42 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Steffen=20Str=C3=BCbe?= <118544452+steffenstruebe@users.noreply.github.com> Date: Thu, 1 Aug 2024 14:30:40 +0200 Subject: [PATCH 10/77] [Linux] Add processors capability to Linux Metrics (#10314) Add processors capability to Linux Metrics Fix predefined processors. --- packages/linux/changelog.yml | 7 ++++++- .../data_stream/conntrack/agent/stream/stream.yml.hbs | 4 ++++ packages/linux/data_stream/conntrack/manifest.yml | 8 ++++++++ .../data_stream/entropy/agent/stream/stream.yml.hbs | 7 +++++-- packages/linux/data_stream/entropy/manifest.yml | 8 ++++++++ .../linux/data_stream/iostat/agent/stream/stream.yml.hbs | 4 ++++ packages/linux/data_stream/iostat/manifest.yml | 8 ++++++++ .../linux/data_stream/ksm/agent/stream/stream.yml.hbs | 4 ++++ packages/linux/data_stream/ksm/manifest.yml | 8 ++++++++ .../linux/data_stream/memory/agent/stream/stream.yml.hbs | 4 ++++ packages/linux/data_stream/memory/manifest.yml | 8 ++++++++ .../network_summary/agent/stream/stream.yml.hbs | 7 +++++-- packages/linux/data_stream/network_summary/manifest.yml | 8 ++++++++ .../data_stream/pageinfo/agent/stream/stream.yml.hbs | 4 ++++ packages/linux/data_stream/pageinfo/manifest.yml | 8 ++++++++ .../linux/data_stream/raid/agent/stream/stream.yml.hbs | 7 +++++-- packages/linux/data_stream/raid/manifest.yml | 9 ++++++++- .../data_stream/service/agent/stream/stream.yml.hbs | 7 +++++-- packages/linux/data_stream/service/manifest.yml | 9 ++++++++- .../linux/data_stream/socket/agent/stream/stream.yml.hbs | 7 +++++-- packages/linux/data_stream/socket/manifest.yml | 8 ++++++++ .../linux/data_stream/users/agent/stream/stream.yml.hbs | 7 +++++-- packages/linux/data_stream/users/manifest.yml | 8 ++++++++ packages/linux/manifest.yml | 2 +- 24 files changed, 145 insertions(+), 16 deletions(-) diff --git a/packages/linux/changelog.yml b/packages/linux/changelog.yml index 57b2e2a9dce3..66b30df75c0c 100644 --- a/packages/linux/changelog.yml +++ b/packages/linux/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "0.6.10" + changes: + - description: Add processors capability to Linux Metrics. + type: enhancement + link: https://github.com/elastic/integrations/pull/10314 - version: "0.6.9" changes: - description: Fix list type for filters @@ -8,7 +13,7 @@ changes: - description: Fix typo in docs. type: enhancement - link: TBD + link: https://github.com/elastic/integrations/pull/3655 - version: "0.6.7" changes: - description: Update documentation with additional context for new users. diff --git a/packages/linux/data_stream/conntrack/agent/stream/stream.yml.hbs b/packages/linux/data_stream/conntrack/agent/stream/stream.yml.hbs index 505c888b43c3..0b902be3412d 100644 --- a/packages/linux/data_stream/conntrack/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/conntrack/agent/stream/stream.yml.hbs @@ -3,4 +3,8 @@ condition: ${host.platform} == 'linux' period: {{period}} {{#if system.hostfs}} hostfs: {{system.hostfs}} +{{/if}} +{{#if processors}} +processors: +{{processors}} {{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/conntrack/manifest.yml b/packages/linux/data_stream/conntrack/manifest.yml index 323452954876..e76153fc585c 100644 --- a/packages/linux/data_stream/conntrack/manifest.yml +++ b/packages/linux/data_stream/conntrack/manifest.yml @@ -11,6 +11,14 @@ streams: required: true show_user: true default: 10s + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. enabled: false title: Linux host conntrack metrics description: Collect network metrics from /proc/net/nf_conntrack diff --git a/packages/linux/data_stream/entropy/agent/stream/stream.yml.hbs b/packages/linux/data_stream/entropy/agent/stream/stream.yml.hbs index 0459906e23e6..d6c46f87014b 100644 --- a/packages/linux/data_stream/entropy/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/entropy/agent/stream/stream.yml.hbs @@ -5,5 +5,8 @@ period: {{period}} hostfs: {{system.hostfs}} {{/if}} processors: - - drop_fields: - fields: event.module \ No newline at end of file +- drop_fields: + fields: event.module +{{#if processors}} +{{processors}} +{{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/entropy/manifest.yml b/packages/linux/data_stream/entropy/manifest.yml index 4709fafb1b8c..311a122c2ab2 100644 --- a/packages/linux/data_stream/entropy/manifest.yml +++ b/packages/linux/data_stream/entropy/manifest.yml @@ -11,6 +11,14 @@ streams: required: true show_user: true default: 10s + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. enabled: false title: Linux host entropy metrics description: Collect Linux entropy metrics diff --git a/packages/linux/data_stream/iostat/agent/stream/stream.yml.hbs b/packages/linux/data_stream/iostat/agent/stream/stream.yml.hbs index a6b93e423cc1..ccee648539e3 100644 --- a/packages/linux/data_stream/iostat/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/iostat/agent/stream/stream.yml.hbs @@ -3,4 +3,8 @@ condition: ${host.platform} == 'linux' period: {{period}} {{#if system.hostfs}} hostfs: {{system.hostfs}} +{{/if}} +{{#if processors}} +processors: +{{processors}} {{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/iostat/manifest.yml b/packages/linux/data_stream/iostat/manifest.yml index 4f89721107b7..6f305cf4a4ba 100644 --- a/packages/linux/data_stream/iostat/manifest.yml +++ b/packages/linux/data_stream/iostat/manifest.yml @@ -11,5 +11,13 @@ streams: required: true show_user: true default: 10s + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. title: Linux iostat metrics description: Linux disk stat metrics diff --git a/packages/linux/data_stream/ksm/agent/stream/stream.yml.hbs b/packages/linux/data_stream/ksm/agent/stream/stream.yml.hbs index 5fc11ec4cb83..ee27eb04391f 100644 --- a/packages/linux/data_stream/ksm/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/ksm/agent/stream/stream.yml.hbs @@ -3,4 +3,8 @@ condition: ${host.platform} == 'linux' period: {{period}} {{#if system.hostfs}} hostfs: {{system.hostfs}} +{{/if}} +{{#if processors}} +processors: +{{processors}} {{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/ksm/manifest.yml b/packages/linux/data_stream/ksm/manifest.yml index 8ced17f0c8e9..a28344170e47 100644 --- a/packages/linux/data_stream/ksm/manifest.yml +++ b/packages/linux/data_stream/ksm/manifest.yml @@ -11,6 +11,14 @@ streams: required: true show_user: true default: 10s + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. enabled: false title: Linux host KSM metrics description: Collect kernel samepage merging metrics diff --git a/packages/linux/data_stream/memory/agent/stream/stream.yml.hbs b/packages/linux/data_stream/memory/agent/stream/stream.yml.hbs index 4b07884f7d62..9f751f3da9ba 100644 --- a/packages/linux/data_stream/memory/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/memory/agent/stream/stream.yml.hbs @@ -3,4 +3,8 @@ condition: ${host.platform} == 'linux' period: {{period}} {{#if system.hostfs}} hostfs: {{system.hostfs}} +{{/if}} +{{#if processors}} +processors: +{{processors}} {{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/memory/manifest.yml b/packages/linux/data_stream/memory/manifest.yml index 70620b202726..18d6be3042b6 100644 --- a/packages/linux/data_stream/memory/manifest.yml +++ b/packages/linux/data_stream/memory/manifest.yml @@ -11,5 +11,13 @@ streams: required: true show_user: true default: 10s + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. title: Linux memory metrics description: Linux paging and memory management metrics diff --git a/packages/linux/data_stream/network_summary/agent/stream/stream.yml.hbs b/packages/linux/data_stream/network_summary/agent/stream/stream.yml.hbs index 7d3d3661a1ee..4095254a8dc0 100644 --- a/packages/linux/data_stream/network_summary/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/network_summary/agent/stream/stream.yml.hbs @@ -2,5 +2,8 @@ metricsets: ["network_summary"] condition: ${host.platform} == 'linux' period: {{period}} processors: - - drop_fields: - fields: event.module \ No newline at end of file +- drop_fields: + fields: event.module +{{#if processors}} +{{processors}} +{{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/network_summary/manifest.yml b/packages/linux/data_stream/network_summary/manifest.yml index 6c1283f5a861..f6677a692597 100644 --- a/packages/linux/data_stream/network_summary/manifest.yml +++ b/packages/linux/data_stream/network_summary/manifest.yml @@ -11,5 +11,13 @@ streams: required: true show_user: true default: 10s + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. title: Linux host network summary metrics description: Collect Linux network_summary metrics diff --git a/packages/linux/data_stream/pageinfo/agent/stream/stream.yml.hbs b/packages/linux/data_stream/pageinfo/agent/stream/stream.yml.hbs index c64508c85ced..112631904948 100644 --- a/packages/linux/data_stream/pageinfo/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/pageinfo/agent/stream/stream.yml.hbs @@ -3,4 +3,8 @@ condition: ${host.platform} == 'linux' period: {{period}} {{#if system.hostfs}} hostfs: {{system.hostfs}} +{{/if}} +{{#if processors}} +processors: +{{processors}} {{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/pageinfo/manifest.yml b/packages/linux/data_stream/pageinfo/manifest.yml index 984f2edb7b0d..e130c0c0778f 100644 --- a/packages/linux/data_stream/pageinfo/manifest.yml +++ b/packages/linux/data_stream/pageinfo/manifest.yml @@ -11,6 +11,14 @@ streams: required: true show_user: true default: 10s + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. enabled: false title: Linux host pageinfo metrics description: Collect paging statistics as found in /proc/pagetypeinfo diff --git a/packages/linux/data_stream/raid/agent/stream/stream.yml.hbs b/packages/linux/data_stream/raid/agent/stream/stream.yml.hbs index 6a98edd6d969..9f4685368bae 100644 --- a/packages/linux/data_stream/raid/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/raid/agent/stream/stream.yml.hbs @@ -8,5 +8,8 @@ period: {{period}} hostfs: {{system.hostfs}} {{/if}} processors: - - drop_fields: - fields: event.module \ No newline at end of file +- drop_fields: + fields: event.module +{{#if processors}} +{{processors}} +{{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/raid/manifest.yml b/packages/linux/data_stream/raid/manifest.yml index 6ca396057f5c..5a62aba9a5ef 100644 --- a/packages/linux/data_stream/raid/manifest.yml +++ b/packages/linux/data_stream/raid/manifest.yml @@ -19,7 +19,14 @@ streams: show_user: true description: > Specifty a RAID mount location. By default, Any available RAID mounts will be selected. - + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. enabled: false title: Linux host raid metrics description: Collect Linux raid metrics diff --git a/packages/linux/data_stream/service/agent/stream/stream.yml.hbs b/packages/linux/data_stream/service/agent/stream/stream.yml.hbs index 7abc2373f3a5..394384666005 100644 --- a/packages/linux/data_stream/service/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/service/agent/stream/stream.yml.hbs @@ -20,5 +20,8 @@ period: {{period}} hostfs: {{system.hostfs}} {{/if}} processors: - - drop_fields: - fields: event.module \ No newline at end of file +{{#if processors}} +- drop_fields: + fields: event.module +{{processors}} +{{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/service/manifest.yml b/packages/linux/data_stream/service/manifest.yml index e4c50a8775b4..42e4e0e558b5 100644 --- a/packages/linux/data_stream/service/manifest.yml +++ b/packages/linux/data_stream/service/manifest.yml @@ -31,6 +31,13 @@ streams: show_user: true description: > Filter systemd services based on a name pattern - + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. title: Linux host service metrics description: Collect Linux service metrics diff --git a/packages/linux/data_stream/socket/agent/stream/stream.yml.hbs b/packages/linux/data_stream/socket/agent/stream/stream.yml.hbs index 7234f5e7b553..6b7b408b984d 100644 --- a/packages/linux/data_stream/socket/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/socket/agent/stream/stream.yml.hbs @@ -14,5 +14,8 @@ period: {{period}} hostfs: {{system.hostfs}} {{/if}} processors: - - drop_fields: - fields: event.module \ No newline at end of file +- drop_fields: + fields: event.module +{{#if processors}} +{{processors}} +{{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/socket/manifest.yml b/packages/linux/data_stream/socket/manifest.yml index 122db6ce498c..2f17a0f9a076 100644 --- a/packages/linux/data_stream/socket/manifest.yml +++ b/packages/linux/data_stream/socket/manifest.yml @@ -34,5 +34,13 @@ streams: required: false show_user: true description: "Failure TTL for reverse DNS lookup on remote IP addresses in the socket dataset (sample: 10s)" + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. title: Linux host socket metrics description: Collect Linux socket metrics diff --git a/packages/linux/data_stream/users/agent/stream/stream.yml.hbs b/packages/linux/data_stream/users/agent/stream/stream.yml.hbs index cc8646373fd6..91755c5ccbdd 100644 --- a/packages/linux/data_stream/users/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/users/agent/stream/stream.yml.hbs @@ -5,5 +5,8 @@ period: {{period}} hostfs: {{system.hostfs}} {{/if}} processors: - - drop_fields: - fields: event.module \ No newline at end of file +- drop_fields: + fields: event.module +{{#if processors}} +{{processors}} +{{/if}} \ No newline at end of file diff --git a/packages/linux/data_stream/users/manifest.yml b/packages/linux/data_stream/users/manifest.yml index 44195d5a830f..97ee41f5beca 100644 --- a/packages/linux/data_stream/users/manifest.yml +++ b/packages/linux/data_stream/users/manifest.yml @@ -11,6 +11,14 @@ streams: required: true show_user: true default: 10s + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the metrics are parsed. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details. enabled: false title: Linux host user metrics description: Collect Linux users metrics diff --git a/packages/linux/manifest.yml b/packages/linux/manifest.yml index b9fa6ec1ecd2..5f020d44c00f 100644 --- a/packages/linux/manifest.yml +++ b/packages/linux/manifest.yml @@ -1,7 +1,7 @@ format_version: 1.0.0 name: linux title: Linux Metrics -version: 0.6.9 +version: 0.6.10 license: basic description: Collect metrics from Linux servers with Elastic Agent. type: integration From 88a43594b96b515a71ba0490454baf5fab8abdb5 Mon Sep 17 00:00:00 2001 From: Panos Koutsovasilis Date: Thu, 1 Aug 2024 18:34:01 +0300 Subject: [PATCH 11/77] [cisco_ftd]: support usernames with spaces for message ids 716002 and 722051 (#10635) * fix: support usernames with spaces for message ids 716002 and 722051 * feat: update pull request link in changelog.yml --- packages/cisco_ftd/changelog.yml | 5 ++ .../log/_dev/test/pipeline/test-ftd-fix.log | 1 + .../pipeline/test-ftd-fix.log-expected.json | 69 +++++++++++++++++++ .../elasticsearch/ingest_pipeline/default.yml | 8 ++- packages/cisco_ftd/manifest.yml | 2 +- 5 files changed, 82 insertions(+), 3 deletions(-) diff --git a/packages/cisco_ftd/changelog.yml b/packages/cisco_ftd/changelog.yml index d51476115a73..09a048af23bc 100644 --- a/packages/cisco_ftd/changelog.yml +++ b/packages/cisco_ftd/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "3.3.1" + changes: + - description: Fix handling usernames with spaces for message ids 716002 and 722051 + type: bugfix + link: https://github.com/elastic/integrations/pull/10635 - version: "3.3.0" changes: - description: Add parsing for message IDs 113042, 210007, 305006, 305013, 401004 and 500004 diff --git a/packages/cisco_ftd/data_stream/log/_dev/test/pipeline/test-ftd-fix.log b/packages/cisco_ftd/data_stream/log/_dev/test/pipeline/test-ftd-fix.log index 703ab6c354f3..57a754369db9 100644 --- a/packages/cisco_ftd/data_stream/log/_dev/test/pipeline/test-ftd-fix.log +++ b/packages/cisco_ftd/data_stream/log/_dev/test/pipeline/test-ftd-fix.log @@ -20,3 +20,4 @@ May 5 17:51:17 dev01: %FTD-4-313005: No matching connection for ICMP error mess <164>%FTD-4-500004: Invalid transport field for protocol=TCP, from 81.2.69.192/44098 to 81.2.69.193/0 <163>%FTD-3-305006: regular translation creation failed for icmp src any:81.2.69.195 dst WAN-PROV:81.2.69.200 (type 3, code 0) <164>%FTD-4-113042: Non-HTTP connection from WAN-PROV:10.1.10.16/61002 to LAN:10.1.8.22/444 denied by redirect filter; only HTTP connections are supported for redirection. +<164>Jul 16 2024 12:30:30: %FTD-4-722051: Group User IP <1.128.0.10> IPv4 Address <1.128.0.20> IPv6 address <::> assigned to session diff --git a/packages/cisco_ftd/data_stream/log/_dev/test/pipeline/test-ftd-fix.log-expected.json b/packages/cisco_ftd/data_stream/log/_dev/test/pipeline/test-ftd-fix.log-expected.json index fa817d5f2bab..738a6c485fb3 100644 --- a/packages/cisco_ftd/data_stream/log/_dev/test/pipeline/test-ftd-fix.log-expected.json +++ b/packages/cisco_ftd/data_stream/log/_dev/test/pipeline/test-ftd-fix.log-expected.json @@ -1710,6 +1710,75 @@ "tags": [ "preserve_original_event" ] + }, + { + "@timestamp": "2024-07-16T12:30:30.000Z", + "cisco": { + "ftd": { + "assigned_ip": "1.128.0.20", + "webvpn": { + "group_name": "ADM-AnyConnectGroup" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "firewall-rule", + "category": [ + "network" + ], + "code": "722051", + "kind": "event", + "original": "<164>Jul 16 2024 12:30:30: %FTD-4-722051: Group User IP <1.128.0.10> IPv4 Address <1.128.0.20> IPv6 address <::> assigned to session", + "severity": 4, + "timezone": "UTC", + "type": [ + "info" + ] + }, + "log": { + "level": "warning", + "syslog": { + "facility": { + "code": 20 + }, + "priority": 164, + "severity": { + "code": 4 + } + } + }, + "observer": { + "product": "ftd", + "type": "idps", + "vendor": "Cisco" + }, + "related": { + "ip": [ + "1.128.0.10" + ], + "user": [ + "Test User 1" + ] + }, + "source": { + "address": "1.128.0.10", + "as": { + "number": 1221, + "organization": { + "name": "Telstra Pty Ltd" + } + }, + "ip": "1.128.0.10", + "user": { + "name": "Test User 1" + } + }, + "tags": [ + "preserve_original_event" + ] } ] } \ No newline at end of file diff --git a/packages/cisco_ftd/data_stream/log/elasticsearch/ingest_pipeline/default.yml b/packages/cisco_ftd/data_stream/log/elasticsearch/ingest_pipeline/default.yml index f7a6cb16d151..49d34d50d59f 100644 --- a/packages/cisco_ftd/data_stream/log/elasticsearch/ingest_pipeline/default.yml +++ b/packages/cisco_ftd/data_stream/log/elasticsearch/ingest_pipeline/default.yml @@ -825,15 +825,19 @@ processors: field: "message" description: "716002" patterns: - - "Group <%{NOTSPACE:_temp_.cisco.webvpn.group_name}> User <%{NOTSPACE:source.user.name}> IP <%{IP:source.address}> WebVPN session terminated: %{GREEDYDATA:event.reason}." + - "Group <%{NOTSPACE:_temp_.cisco.webvpn.group_name}> User <%{NOTANGLE:source.user.name}> IP <%{IP:source.address}> WebVPN session terminated: %{GREEDYDATA:event.reason}." - "Group %{NOTSPACE:_temp_.cisco.webvpn.group_name} User %{NOTSPACE:source.user.name} IP %{IP:source.address} WebVPN session terminated: %{GREEDYDATA:event.reason}." + pattern_definitions: + NOTANGLE: "[^>]+" - grok: if: "ctx._temp_.cisco.message_id == '722051'" field: "message" description: "722051" patterns: - - "Group <%{NOTSPACE:_temp_.cisco.webvpn.group_name}> User <%{NOTSPACE:source.user.name}> IP <%{IP:source.address}> IPv4 Address <%{IP:_temp_.cisco.assigned_ip}> %{GREEDYDATA}" + - "Group <%{NOTSPACE:_temp_.cisco.webvpn.group_name}> User <%{NOTANGLE:source.user.name}> IP <%{IP:source.address}> IPv4 Address <%{IP:_temp_.cisco.assigned_ip}> %{GREEDYDATA}" - "Group %{NOTSPACE:_temp_.cisco.webvpn.group_name} User %{NOTSPACE:source.user.name} IP %{IP:source.address} IPv4 Address %{IP:_temp_.cisco.assigned_ip} %{GREEDYDATA}" + pattern_definitions: + NOTANGLE: "[^>]+" - grok: if: "ctx._temp_.cisco.message_id == '733100'" field: "message" diff --git a/packages/cisco_ftd/manifest.yml b/packages/cisco_ftd/manifest.yml index 953eab019721..faeda2fed906 100644 --- a/packages/cisco_ftd/manifest.yml +++ b/packages/cisco_ftd/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.3" name: cisco_ftd title: Cisco FTD -version: "3.3.0" +version: "3.3.1" description: Collect logs from Cisco FTD with Elastic Agent. type: integration categories: From 5652860e13e2f5e9be5ab548f0b342917d768876 Mon Sep 17 00:00:00 2001 From: Paulo Henrique Date: Thu, 1 Aug 2024 08:47:14 -0700 Subject: [PATCH 12/77] [Cloud Security] Bump 1.11.0 pre-release version and update 1.9.0 changelogs (#10669) * promote csp 1.10.0 * update pr number * bump up pre release version 1.11.0 * update 1.9.0 changelogs --- packages/cloud_security_posture/changelog.yml | 15 ++++++--------- packages/cloud_security_posture/manifest.yml | 2 +- 2 files changed, 7 insertions(+), 10 deletions(-) diff --git a/packages/cloud_security_posture/changelog.yml b/packages/cloud_security_posture/changelog.yml index 8d1ac551693d..cb989adba35b 100644 --- a/packages/cloud_security_posture/changelog.yml +++ b/packages/cloud_security_posture/changelog.yml @@ -9,6 +9,11 @@ # 1.4.x - 8.9.x # 1.3.x - 8.8.x # 1.2.x - 8.7.x +- version: "1.11.0-preview01" + changes: + - description: Bump up pre-release version + type: enhancement + link: https://github.com/elastic/integrations/pull/10669 - version: "1.10.0" changes: - description: Promote integration @@ -26,28 +31,20 @@ - description: Add cloud formation template url to create direct access keys credentials type: enhancement link: https://github.com/elastic/integrations/pull/9828 -- version: "1.9.0-preview05" +- version: "1.9.0" changes: - description: Revert secret of textarea field type: bugfix link: https://github.com/elastic/integrations/pull/9788 -- version: "1.9.0-preview04" - changes: - description: Bump cloudbeat version type: enhancement link: https://github.com/elastic/integrations/pull/9624 -- version: "1.9.0-preview03" - changes: - description: Update findings ingest pipeline to remove empty cloud.account.id and cloud.account.name type: enhancement link: https://github.com/elastic/integrations/pull/9470 -- version: "1.9.0-preview02" - changes: - description: Fix cluster_id missing error in the Ingest Pipeline type: bugfix link: https://github.com/elastic/integrations/pull/9434 -- version: "1.9.0-preview01" - changes: - description: Convert fields to secrets type: enhancement link: https://github.com/elastic/integrations/pull/9331 diff --git a/packages/cloud_security_posture/manifest.yml b/packages/cloud_security_posture/manifest.yml index e31c8a796d2b..16e91be382c9 100644 --- a/packages/cloud_security_posture/manifest.yml +++ b/packages/cloud_security_posture/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: cloud_security_posture title: "Security Posture Management" -version: "1.10.0" +version: "1.11.0-preview01" source: license: "Elastic-2.0" description: "Identify & remediate configuration risks in your Cloud infrastructure" From 18721f6d0aa0d92df362ef17318ebf9b8432fe9b Mon Sep 17 00:00:00 2001 From: Panos Koutsovasilis Date: Thu, 1 Aug 2024 19:51:20 +0300 Subject: [PATCH 13/77] [iptables] invoke community_id processor only for supported protocols (#10676) * fix: invoke community_id processor only for supported protocols * feat: update pull request link in changelog.yml * fix: revisit on_failure error message format * fix: handle correctly numeric PROTO values * fix: update README.md * fix: rework iana_number and transport processing * fix: switch to a single rename processor for handling iana_number and transport fields --- packages/iptables/changelog.yml | 5 + .../_dev/test/pipeline/test-iptables-raw.log | 3 + .../test-iptables-raw.log-expected.json | 208 ++++++++++++++++++ .../elasticsearch/ingest_pipeline/default.yml | 13 +- .../iptables/data_stream/log/fields/ecs.yml | 2 + packages/iptables/docs/README.md | 1 + packages/iptables/manifest.yml | 2 +- 7 files changed, 231 insertions(+), 3 deletions(-) diff --git a/packages/iptables/changelog.yml b/packages/iptables/changelog.yml index ed25e1d4cae9..d75fd2d7bdf5 100644 --- a/packages/iptables/changelog.yml +++ b/packages/iptables/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.16.1" + changes: + - description: Invoke community_id processor only for supported protocols + type: bugfix + link: https://github.com/elastic/integrations/pull/10676 - version: "1.16.0" changes: - description: Update package spec to 3.0.3. diff --git a/packages/iptables/data_stream/log/_dev/test/pipeline/test-iptables-raw.log b/packages/iptables/data_stream/log/_dev/test/pipeline/test-iptables-raw.log index 5865099de8ac..dbdf371f00c0 100644 --- a/packages/iptables/data_stream/log/_dev/test/pipeline/test-iptables-raw.log +++ b/packages/iptables/data_stream/log/_dev/test/pipeline/test-iptables-raw.log @@ -19,5 +19,8 @@ Jan 5 20:17:01 MainFirewall kernel: [WAN_OUT-2000-A]IN=eth0 OUT=eth2 MAC=90:10: Jan 5 20:17:01 MainFirewall kernel: [source-dest-default-D]IN=eth0 OUT=eth2 MAC=90:10:20:76:8d:20:90:10:65:29:b6:2a:08:00 SRC=192.168.110.116 DST=192.168.2.25 LEN=52 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=TCP SPT=50093 DPT=1443 WINDOW=2857 RES=0x00 ACK URGP=0 Jan 5 20:17:01 MainFirewall kernel: [WAN_OUT-2000-A]IN=eth0 OUT=eth2 MAC=90:10:20:76:8d:20:90:10:65:29:b6:2a:08:00 SRC=192.168.110.116 DST=192.168.2.25 LEN=52 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=TCP SPT=50093 DPT=1443 WINDOW=2853 RES=0x00 ACK URGP=0 Jan 5 20:17:01 MainFirewall kernel: [WAN_OUT-2000-A]IN=eth0 OUT=eth2 MAC=90:10:20:76:8d:20:90:10:65:29:b6:2a:08:00 SRC=192.168.110.116 DST=192.168.2.25 LEN=52 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=TCP SPT=50093 DPT=1443 WINDOW=2850 RES=0x00 ACK URGP=0 +Jan 5 20:17:01 firewall kernel: [4276041.728154] IN=eno1 OUT= MAC=0c:c4:7a:0f:51:0c:d4:66:24:80:d8:da:08:00 SRC=192.168.110.116 DST=192.168.2.25 LEN=120 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=ESP SPI=0xcb886522 Jun 28 04:35:30 Abc-A1 [SOMETHING-1234-A] IN=abc.123 OUT=abc.123 MAC=0a:ea:10:00:f0:06:10:e1:21:31:61:20:01:00:41:00:00:01 SRC=10.251.1.1 DST=10.251.1.1 LEN=32 TOS=00 PREC=0x00 TTL=63 ID=12345 PROTO=UDP SPT=9000 DPT=9000 LEN=12 MARK=0 Jun 28 04:30:32 Abc-A1 [SOMETHING-1234-A] IN=abc.123 OUT=abc.123 MAC=0a:ea:10:00:f0:06:10:e1:21:31:61:20:01:00:41:00:00:01 SRC=10.251.1.1 DST=10.251.1.1 LEN=84 TOS=00 PREC=0x00 TTL=63 ID=6789 PROTO=ICMP TYPE=8 CODE=0 ID=98765 SEQ=30123 MARK=0 +<4>Jun 27 23:29:32 router kernel: [wan-local-default-D]IN=eth0 OUT= MAC=04:18:d6:f1:2c:20:00:00:5e:00:01:6a:08:00 SRC=10.251.1.1 DST=10.251.1.1 LEN=76 TOS=0x00 PREC=0x00 TTL=243 ID=37763 DF PROTO=1 +<4>Jun 12 20:26:58 router kernel: [wan-local-default-D]IN=eth0 OUT= MAC=04:18:d6:f1:2c:20:00:00:5e:00:01:6a:08:00 SRC=10.251.1.1 DST=10.251.1.1 LEN=77 TOS=0x00 PREC=0x00 TTL=235 ID=24392 PROTO=47 diff --git a/packages/iptables/data_stream/log/_dev/test/pipeline/test-iptables-raw.log-expected.json b/packages/iptables/data_stream/log/_dev/test/pipeline/test-iptables-raw.log-expected.json index cdcdfaf3202d..3850f654a27c 100644 --- a/packages/iptables/data_stream/log/_dev/test/pipeline/test-iptables-raw.log-expected.json +++ b/packages/iptables/data_stream/log/_dev/test/pipeline/test-iptables-raw.log-expected.json @@ -1573,6 +1573,61 @@ "preserve_original_event" ] }, + { + "@timestamp": "2024-01-05T20:17:01.000Z", + "destination": { + "ip": "192.168.2.25", + "mac": "0C-C4-7A-0F-51-0C" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "created": "2022-01-12T22:56:01.000Z", + "kind": "event", + "original": "Jan 5 20:17:01 firewall kernel: [4276041.728154] IN=eno1 OUT= MAC=0c:c4:7a:0f:51:0c:d4:66:24:80:d8:da:08:00 SRC=192.168.110.116 DST=192.168.2.25 LEN=120 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=ESP SPI=0xcb886522", + "type": [ + "connection" + ] + }, + "iptables": { + "ether_type": 2048, + "fragment_flags": [ + "DF" + ], + "id": 0, + "input_device": "eno1", + "length": 120, + "output_device": "", + "precedence_bits": 0, + "tos": 0, + "ttl": 55 + }, + "message": "firewall kernel: [4276041.728154] IN=eno1 OUT= MAC=0c:c4:7a:0f:51:0c:d4:66:24:80:d8:da:08:00 SRC=192.168.110.116 DST=192.168.2.25 LEN=120 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=ESP SPI=0xcb886522", + "network": { + "transport": "esp", + "type": "ipv4" + }, + "observer": { + "name": "firewall" + }, + "related": { + "ip": [ + "192.168.110.116", + "192.168.2.25" + ] + }, + "source": { + "ip": "192.168.110.116", + "mac": "D4-66-24-80-D8-DA" + }, + "tags": [ + "preserve_original_event" + ] + }, { "@timestamp": "2023-06-28T04:35:30.000Z", "destination": { @@ -1679,6 +1734,159 @@ "tags": [ "preserve_original_event" ] + }, + { + "@timestamp": "2024-06-27T23:29:32.000Z", + "destination": { + "ip": "10.251.1.1", + "mac": "04-18-D6-F1-2C-20" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "drop", + "category": [ + "network" + ], + "created": "2022-01-12T22:56:01.000Z", + "kind": "event", + "original": "<4>Jun 27 23:29:32 router kernel: [wan-local-default-D]IN=eth0 OUT= MAC=04:18:d6:f1:2c:20:00:00:5e:00:01:6a:08:00 SRC=10.251.1.1 DST=10.251.1.1 LEN=76 TOS=0x00 PREC=0x00 TTL=243 ID=37763 DF PROTO=1", + "type": [ + "denied", + "connection" + ] + }, + "iptables": { + "ether_type": 2048, + "fragment_flags": [ + "DF" + ], + "id": 37763, + "input_device": "eth0", + "length": 76, + "output_device": "", + "precedence_bits": 0, + "tos": 0, + "ttl": 243, + "ubiquiti": { + "input_zone": "wan", + "output_zone": "local", + "rule_number": "default", + "rule_set": "wan-local" + } + }, + "log": { + "syslog": { + "priority": 4 + } + }, + "message": "router kernel: [wan-local-default-D]IN=eth0 OUT= MAC=04:18:d6:f1:2c:20:00:00:5e:00:01:6a:08:00 SRC=10.251.1.1 DST=10.251.1.1 LEN=76 TOS=0x00 PREC=0x00 TTL=243 ID=37763 DF PROTO=1", + "network": { + "community_id": "1:FRJfyWaZVkG3e+uSp7d4BFAySFw=", + "iana_number": "1", + "type": "ipv4" + }, + "observer": { + "egress": { + "zone": "local" + }, + "ingress": { + "zone": "wan" + }, + "name": "router" + }, + "related": { + "ip": [ + "10.251.1.1" + ] + }, + "rule": { + "id": "default", + "name": "wan-local" + }, + "source": { + "ip": "10.251.1.1", + "mac": "00-00-5E-00-01-6A" + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-06-12T20:26:58.000Z", + "destination": { + "ip": "10.251.1.1", + "mac": "04-18-D6-F1-2C-20" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "drop", + "category": [ + "network" + ], + "created": "2022-01-12T22:56:01.000Z", + "kind": "event", + "original": "<4>Jun 12 20:26:58 router kernel: [wan-local-default-D]IN=eth0 OUT= MAC=04:18:d6:f1:2c:20:00:00:5e:00:01:6a:08:00 SRC=10.251.1.1 DST=10.251.1.1 LEN=77 TOS=0x00 PREC=0x00 TTL=235 ID=24392 PROTO=47", + "type": [ + "denied", + "connection" + ] + }, + "iptables": { + "ether_type": 2048, + "id": 24392, + "input_device": "eth0", + "length": 77, + "output_device": "", + "precedence_bits": 0, + "tos": 0, + "ttl": 235, + "ubiquiti": { + "input_zone": "wan", + "output_zone": "local", + "rule_number": "default", + "rule_set": "wan-local" + } + }, + "log": { + "syslog": { + "priority": 4 + } + }, + "message": "router kernel: [wan-local-default-D]IN=eth0 OUT= MAC=04:18:d6:f1:2c:20:00:00:5e:00:01:6a:08:00 SRC=10.251.1.1 DST=10.251.1.1 LEN=77 TOS=0x00 PREC=0x00 TTL=235 ID=24392 PROTO=47", + "network": { + "community_id": "1:VuTMLzzBad0b2D5gDo8qiZnYymo=", + "iana_number": "47", + "type": "ipv4" + }, + "observer": { + "egress": { + "zone": "local" + }, + "ingress": { + "zone": "wan" + }, + "name": "router" + }, + "related": { + "ip": [ + "10.251.1.1" + ] + }, + "rule": { + "id": "default", + "name": "wan-local" + }, + "source": { + "ip": "10.251.1.1", + "mac": "00-00-5E-00-01-6A" + }, + "tags": [ + "preserve_original_event" + ] } ] } \ No newline at end of file diff --git a/packages/iptables/data_stream/log/elasticsearch/ingest_pipeline/default.yml b/packages/iptables/data_stream/log/elasticsearch/ingest_pipeline/default.yml index 8ec58c0ba374..8879095e7d99 100644 --- a/packages/iptables/data_stream/log/elasticsearch/ingest_pipeline/default.yml +++ b/packages/iptables/data_stream/log/elasticsearch/ingest_pipeline/default.yml @@ -140,6 +140,12 @@ processors: field: observer.hostname copy_from: hostname if: ctx?.observer?.name == null && ctx?.hostname != null + - rename: + description: Rename network.transport to network.iana_number if it is a number. + if: ctx.network?.iana_number == null && ctx.network?.transport != null && ctx.network.transport.chars().allMatch(Character::isDigit) + field: network.transport + target_field: network.iana_number + ignore_missing: true - lowercase: field: network.transport ignore_missing: true @@ -188,7 +194,6 @@ processors: field: destination.as.organization_name target_field: destination.as.organization.name ignore_missing: true - - script: description: Enrich event with ECS fields. lang: painless @@ -250,6 +255,7 @@ processors: } - community_id: ignore_missing: true + ignore_failure: true icmp_type: iptables.icmp.type icmp_code: iptables.icmp.code - script: @@ -378,4 +384,7 @@ on_failure: value: pipeline_error - append: field: error.message - value: '{{{ _ingest.on_failure_message }}}' + value: >- + Processor '{{ _ingest.on_failure_processor_type }}' in pipeline {{{_ingest.pipeline}}} + {{#_ingest.on_failure_processor_tag}} with tag '{{ _ingest.on_failure_processor_tag }}'{{/_ingest.on_failure_processor_tag}} + failed with message '{{ _ingest.on_failure_message }}' \ No newline at end of file diff --git a/packages/iptables/data_stream/log/fields/ecs.yml b/packages/iptables/data_stream/log/fields/ecs.yml index 41414cb01d48..541e3d4c9e20 100644 --- a/packages/iptables/data_stream/log/fields/ecs.yml +++ b/packages/iptables/data_stream/log/fields/ecs.yml @@ -48,6 +48,8 @@ name: network.forwarded_ip - external: ecs name: network.transport +- external: ecs + name: network.iana_number - external: ecs name: network.type - external: ecs diff --git a/packages/iptables/docs/README.md b/packages/iptables/docs/README.md index 08719d90d291..26113b96dfc4 100644 --- a/packages/iptables/docs/README.md +++ b/packages/iptables/docs/README.md @@ -246,6 +246,7 @@ An example event for `log` looks as following: | message | For log events the message field contains the log message, optimized for viewing in a log viewer. For structured logs without an original message field, other fields can be concatenated to form a human-readable summary of the event. If multiple messages exist, they can be combined into one message. | match_only_text | | network.community_id | A hash of source and destination IPs and ports, as well as the protocol used in a communication. This is a tool-agnostic standard to identify flows. Learn more at https://github.com/corelight/community-id-spec. | keyword | | network.forwarded_ip | Host IP address when the source IP address is the proxy. | ip | +| network.iana_number | IANA Protocol Number (https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml). Standardized list of protocols. This aligns well with NetFlow and sFlow related logs which use the IANA Protocol Number. | keyword | | network.transport | Same as network.iana_number, but instead using the Keyword name of the transport layer (udp, tcp, ipv6-icmp, etc.) The field value must be normalized to lowercase for querying. | keyword | | network.type | In the OSI Model this would be the Network Layer. ipv4, ipv6, ipsec, pim, etc The field value must be normalized to lowercase for querying. | keyword | | observer.egress.zone | Network zone of outbound traffic as reported by the observer to categorize the destination area of egress traffic, e.g. Internal, External, DMZ, HR, Legal, etc. | keyword | diff --git a/packages/iptables/manifest.yml b/packages/iptables/manifest.yml index 3e95ded6fbc6..e6613d9433a4 100644 --- a/packages/iptables/manifest.yml +++ b/packages/iptables/manifest.yml @@ -1,6 +1,6 @@ name: iptables title: Iptables -version: "1.16.0" +version: "1.16.1" description: Collect logs from Iptables with Elastic Agent. type: integration icons: From f2aa1c4d1843fc14c8a8732726e2000f4245ea52 Mon Sep 17 00:00:00 2001 From: Mario Rodriguez Molins Date: Fri, 2 Aug 2024 10:08:34 +0200 Subject: [PATCH 14/77] Migrate auditd_manager to new Elastic Agents (#10387) Configuration for Elastic Agents is now defined in the configuration files for the system tests using independent Elastic Agents instead of using the agent service deployer. --- .../data_stream/auditd/_dev/deploy/agent/custom-agent.yml | 8 -------- .../auditd/_dev/test/system/test-default-config.yml | 6 ++++++ 2 files changed, 6 insertions(+), 8 deletions(-) delete mode 100644 packages/auditd_manager/data_stream/auditd/_dev/deploy/agent/custom-agent.yml diff --git a/packages/auditd_manager/data_stream/auditd/_dev/deploy/agent/custom-agent.yml b/packages/auditd_manager/data_stream/auditd/_dev/deploy/agent/custom-agent.yml deleted file mode 100644 index 531c24ced922..000000000000 --- a/packages/auditd_manager/data_stream/auditd/_dev/deploy/agent/custom-agent.yml +++ /dev/null @@ -1,8 +0,0 @@ -version: "2.3" -services: - docker-custom-agent: - pid: host - cap_add: - - AUDIT_CONTROL - - AUDIT_READ - user: root diff --git a/packages/auditd_manager/data_stream/auditd/_dev/test/system/test-default-config.yml b/packages/auditd_manager/data_stream/auditd/_dev/test/system/test-default-config.yml index 1c1a1d716c6c..f2afa63e3212 100644 --- a/packages/auditd_manager/data_stream/auditd/_dev/test/system/test-default-config.yml +++ b/packages/auditd_manager/data_stream/auditd/_dev/test/system/test-default-config.yml @@ -15,3 +15,9 @@ data_stream: -a always,exit -F arch=b64 -S open,truncate,ftruncate,creat,openat,open_by_handle_at -F exit=-EACCES -F auid>=1000 -F auid!=4294967295 -F key=access -a always,exit -F arch=b64 -S open,truncate,ftruncate,creat,openat,open_by_handle_at -F exit=-EPERM -F auid>=1000 -F auid!=4294967295 -F key=access preserve_original_event: true +agent: + runtime: docker + pid_mode: "host" + linux_capabilities: + - AUDIT_CONTROL + - AUDIT_READ From 4a3e9004184ec32a194e5a43738aaad6c34de452 Mon Sep 17 00:00:00 2001 From: Mario Rodriguez Molins Date: Fri, 2 Aug 2024 10:09:08 +0200 Subject: [PATCH 15/77] Migrate oracle package to new Elastic Agents (#10388) Configuration for Elastic Agents is now defined in the configuration files for the system tests using independent Elastic Agents instead of using the agent service deployer. Updated system test configuration to use placeholders for host and port values. --- .../memory/_dev/deploy/agent/Dockerfile | 16 ----------- .../memory/_dev/deploy/agent/custom-agent.yml | 28 ------------------- .../_dev/deploy/docker/docker-compose.yml | 12 ++++++++ .../_dev/test/system/test-memory-config.yml | 20 ++++++++++++- .../performance/_dev/deploy/agent/Dockerfile | 16 ----------- .../_dev/deploy/agent/custom-agent.yml | 28 ------------------- .../_dev/deploy/docker/docker-compose.yml | 12 ++++++++ .../test/system/test-performance-config.yml | 20 ++++++++++++- .../sysmetric/_dev/deploy/agent/Dockerfile | 16 ----------- .../_dev/deploy/agent/custom-agent.yml | 28 ------------------- .../_dev/deploy/docker/docker-compose.yml | 12 ++++++++ .../test/system/test-sysmetric-config.yml | 20 ++++++++++++- .../_dev/deploy/agent/Dockerfile | 16 ----------- .../_dev/deploy/agent/custom-agent.yml | 28 ------------------- .../_dev/deploy/docker/docker-compose.yml | 12 ++++++++ .../system/test-systemstatistics-config.yml | 20 ++++++++++++- .../tablespace/_dev/deploy/agent/Dockerfile | 16 ----------- .../_dev/deploy/agent/custom-agent.yml | 28 ------------------- .../_dev/deploy/docker/docker-compose.yml | 12 ++++++++ .../test/system/test-tablespace-config.yml | 20 ++++++++++++- 20 files changed, 155 insertions(+), 225 deletions(-) delete mode 100644 packages/oracle/data_stream/memory/_dev/deploy/agent/Dockerfile delete mode 100644 packages/oracle/data_stream/memory/_dev/deploy/agent/custom-agent.yml create mode 100644 packages/oracle/data_stream/memory/_dev/deploy/docker/docker-compose.yml delete mode 100644 packages/oracle/data_stream/performance/_dev/deploy/agent/Dockerfile delete mode 100644 packages/oracle/data_stream/performance/_dev/deploy/agent/custom-agent.yml create mode 100644 packages/oracle/data_stream/performance/_dev/deploy/docker/docker-compose.yml delete mode 100644 packages/oracle/data_stream/sysmetric/_dev/deploy/agent/Dockerfile delete mode 100644 packages/oracle/data_stream/sysmetric/_dev/deploy/agent/custom-agent.yml create mode 100644 packages/oracle/data_stream/sysmetric/_dev/deploy/docker/docker-compose.yml delete mode 100644 packages/oracle/data_stream/system_statistics/_dev/deploy/agent/Dockerfile delete mode 100644 packages/oracle/data_stream/system_statistics/_dev/deploy/agent/custom-agent.yml create mode 100644 packages/oracle/data_stream/system_statistics/_dev/deploy/docker/docker-compose.yml delete mode 100644 packages/oracle/data_stream/tablespace/_dev/deploy/agent/Dockerfile delete mode 100644 packages/oracle/data_stream/tablespace/_dev/deploy/agent/custom-agent.yml create mode 100644 packages/oracle/data_stream/tablespace/_dev/deploy/docker/docker-compose.yml diff --git a/packages/oracle/data_stream/memory/_dev/deploy/agent/Dockerfile b/packages/oracle/data_stream/memory/_dev/deploy/agent/Dockerfile deleted file mode 100644 index be86b30b38f1..000000000000 --- a/packages/oracle/data_stream/memory/_dev/deploy/agent/Dockerfile +++ /dev/null @@ -1,16 +0,0 @@ -ARG ES_AGENT_IMAGE=docker.elastic.co/elastic-agent/elastic-agent-complete:8.3.0 -FROM $ES_AGENT_IMAGE -USER root -RUN apt-get update && apt-get -y install \ - libaio1 \ - wget \ - unzip -WORKDIR /opt/oracle -RUN wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip -RUN wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip -RUN echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig -RUN cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ -RUN export LD_LIBRARY_PATH=/opt/oracle/instantclient_21_4:$LD_LIBRARY_PATH && export PATH=/opt/oracle/instantclient_21_7:$PATH -ENV LD_LIBRARY_PATH "${LD_LIBRARY_PATH}:/opt/oracle/instantclient_21_4" -ENV PATH "${PATH}:/opt/oracle/instantclient_21_4" -WORKDIR /opt/oracle/instantclient_21_4 \ No newline at end of file diff --git a/packages/oracle/data_stream/memory/_dev/deploy/agent/custom-agent.yml b/packages/oracle/data_stream/memory/_dev/deploy/agent/custom-agent.yml deleted file mode 100644 index 107549f65693..000000000000 --- a/packages/oracle/data_stream/memory/_dev/deploy/agent/custom-agent.yml +++ /dev/null @@ -1,28 +0,0 @@ -version: '2.3' -services: - docker-custom-agent: - build: - context: . - args: - ES_AGENT_IMAGE: ${ELASTIC_AGENT_IMAGE_REF} - dockerfile: Dockerfile - image: elastic-agent-oracle-client-1 - depends_on: - oracle: - condition: service_healthy - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/opt/oracle/instantclient_21_4 /opt/oracle/instantclient_21_4/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 - oracle: - image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 - container_name: oracle - ports: - - 127.0.0.1:1521:1521 - - 127.0.0.1:5500:5500 - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 diff --git a/packages/oracle/data_stream/memory/_dev/deploy/docker/docker-compose.yml b/packages/oracle/data_stream/memory/_dev/deploy/docker/docker-compose.yml new file mode 100644 index 000000000000..6c2fc6b0fbad --- /dev/null +++ b/packages/oracle/data_stream/memory/_dev/deploy/docker/docker-compose.yml @@ -0,0 +1,12 @@ +version: '2.3' +services: + oracle: + image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 + ports: + - 127.0.0.1:1521:1521 + - 127.0.0.1:5500:5500 + healthcheck: + test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] + interval: 120s + timeout: 300s + retries: 300 diff --git a/packages/oracle/data_stream/memory/_dev/test/system/test-memory-config.yml b/packages/oracle/data_stream/memory/_dev/test/system/test-memory-config.yml index 4ef8ddde1829..d502bfd3e6bf 100644 --- a/packages/oracle/data_stream/memory/_dev/test/system/test-memory-config.yml +++ b/packages/oracle/data_stream/memory/_dev/test/system/test-memory-config.yml @@ -1,3 +1,21 @@ vars: hosts: - - "oracle://sys:Oradoc_db1@oracle:1521/ORCLCDB.localdomain?sysdba=1" + - "oracle://sys:Oradoc_db1@{{Hostname}}:{{Port}}/ORCLCDB.localdomain?sysdba=1" +agent: + runtime: docker + provisioning_script: + language: "bash" + contents: | + apt-get update && apt-get -y install libaio1 wget unzip + mkdir -p /opt/oracle + cd /opt/oracle + wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip + wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip + echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig + cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ + pre_start_script: + language: "sh" + contents: | + export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:-""}:/opt/oracle/instantclient_21_4" + export PATH="${PATH}:/opt/oracle/instantclient_21_7:/opt/oracle/instantclient_21_4" + cd /opt/oracle/instantclient_21_4 diff --git a/packages/oracle/data_stream/performance/_dev/deploy/agent/Dockerfile b/packages/oracle/data_stream/performance/_dev/deploy/agent/Dockerfile deleted file mode 100644 index be86b30b38f1..000000000000 --- a/packages/oracle/data_stream/performance/_dev/deploy/agent/Dockerfile +++ /dev/null @@ -1,16 +0,0 @@ -ARG ES_AGENT_IMAGE=docker.elastic.co/elastic-agent/elastic-agent-complete:8.3.0 -FROM $ES_AGENT_IMAGE -USER root -RUN apt-get update && apt-get -y install \ - libaio1 \ - wget \ - unzip -WORKDIR /opt/oracle -RUN wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip -RUN wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip -RUN echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig -RUN cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ -RUN export LD_LIBRARY_PATH=/opt/oracle/instantclient_21_4:$LD_LIBRARY_PATH && export PATH=/opt/oracle/instantclient_21_7:$PATH -ENV LD_LIBRARY_PATH "${LD_LIBRARY_PATH}:/opt/oracle/instantclient_21_4" -ENV PATH "${PATH}:/opt/oracle/instantclient_21_4" -WORKDIR /opt/oracle/instantclient_21_4 \ No newline at end of file diff --git a/packages/oracle/data_stream/performance/_dev/deploy/agent/custom-agent.yml b/packages/oracle/data_stream/performance/_dev/deploy/agent/custom-agent.yml deleted file mode 100644 index 107549f65693..000000000000 --- a/packages/oracle/data_stream/performance/_dev/deploy/agent/custom-agent.yml +++ /dev/null @@ -1,28 +0,0 @@ -version: '2.3' -services: - docker-custom-agent: - build: - context: . - args: - ES_AGENT_IMAGE: ${ELASTIC_AGENT_IMAGE_REF} - dockerfile: Dockerfile - image: elastic-agent-oracle-client-1 - depends_on: - oracle: - condition: service_healthy - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/opt/oracle/instantclient_21_4 /opt/oracle/instantclient_21_4/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 - oracle: - image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 - container_name: oracle - ports: - - 127.0.0.1:1521:1521 - - 127.0.0.1:5500:5500 - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 diff --git a/packages/oracle/data_stream/performance/_dev/deploy/docker/docker-compose.yml b/packages/oracle/data_stream/performance/_dev/deploy/docker/docker-compose.yml new file mode 100644 index 000000000000..6c2fc6b0fbad --- /dev/null +++ b/packages/oracle/data_stream/performance/_dev/deploy/docker/docker-compose.yml @@ -0,0 +1,12 @@ +version: '2.3' +services: + oracle: + image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 + ports: + - 127.0.0.1:1521:1521 + - 127.0.0.1:5500:5500 + healthcheck: + test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] + interval: 120s + timeout: 300s + retries: 300 diff --git a/packages/oracle/data_stream/performance/_dev/test/system/test-performance-config.yml b/packages/oracle/data_stream/performance/_dev/test/system/test-performance-config.yml index 4ef8ddde1829..d502bfd3e6bf 100644 --- a/packages/oracle/data_stream/performance/_dev/test/system/test-performance-config.yml +++ b/packages/oracle/data_stream/performance/_dev/test/system/test-performance-config.yml @@ -1,3 +1,21 @@ vars: hosts: - - "oracle://sys:Oradoc_db1@oracle:1521/ORCLCDB.localdomain?sysdba=1" + - "oracle://sys:Oradoc_db1@{{Hostname}}:{{Port}}/ORCLCDB.localdomain?sysdba=1" +agent: + runtime: docker + provisioning_script: + language: "bash" + contents: | + apt-get update && apt-get -y install libaio1 wget unzip + mkdir -p /opt/oracle + cd /opt/oracle + wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip + wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip + echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig + cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ + pre_start_script: + language: "sh" + contents: | + export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:-""}:/opt/oracle/instantclient_21_4" + export PATH="${PATH}:/opt/oracle/instantclient_21_7:/opt/oracle/instantclient_21_4" + cd /opt/oracle/instantclient_21_4 diff --git a/packages/oracle/data_stream/sysmetric/_dev/deploy/agent/Dockerfile b/packages/oracle/data_stream/sysmetric/_dev/deploy/agent/Dockerfile deleted file mode 100644 index be86b30b38f1..000000000000 --- a/packages/oracle/data_stream/sysmetric/_dev/deploy/agent/Dockerfile +++ /dev/null @@ -1,16 +0,0 @@ -ARG ES_AGENT_IMAGE=docker.elastic.co/elastic-agent/elastic-agent-complete:8.3.0 -FROM $ES_AGENT_IMAGE -USER root -RUN apt-get update && apt-get -y install \ - libaio1 \ - wget \ - unzip -WORKDIR /opt/oracle -RUN wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip -RUN wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip -RUN echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig -RUN cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ -RUN export LD_LIBRARY_PATH=/opt/oracle/instantclient_21_4:$LD_LIBRARY_PATH && export PATH=/opt/oracle/instantclient_21_7:$PATH -ENV LD_LIBRARY_PATH "${LD_LIBRARY_PATH}:/opt/oracle/instantclient_21_4" -ENV PATH "${PATH}:/opt/oracle/instantclient_21_4" -WORKDIR /opt/oracle/instantclient_21_4 \ No newline at end of file diff --git a/packages/oracle/data_stream/sysmetric/_dev/deploy/agent/custom-agent.yml b/packages/oracle/data_stream/sysmetric/_dev/deploy/agent/custom-agent.yml deleted file mode 100644 index 107549f65693..000000000000 --- a/packages/oracle/data_stream/sysmetric/_dev/deploy/agent/custom-agent.yml +++ /dev/null @@ -1,28 +0,0 @@ -version: '2.3' -services: - docker-custom-agent: - build: - context: . - args: - ES_AGENT_IMAGE: ${ELASTIC_AGENT_IMAGE_REF} - dockerfile: Dockerfile - image: elastic-agent-oracle-client-1 - depends_on: - oracle: - condition: service_healthy - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/opt/oracle/instantclient_21_4 /opt/oracle/instantclient_21_4/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 - oracle: - image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 - container_name: oracle - ports: - - 127.0.0.1:1521:1521 - - 127.0.0.1:5500:5500 - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 diff --git a/packages/oracle/data_stream/sysmetric/_dev/deploy/docker/docker-compose.yml b/packages/oracle/data_stream/sysmetric/_dev/deploy/docker/docker-compose.yml new file mode 100644 index 000000000000..6c2fc6b0fbad --- /dev/null +++ b/packages/oracle/data_stream/sysmetric/_dev/deploy/docker/docker-compose.yml @@ -0,0 +1,12 @@ +version: '2.3' +services: + oracle: + image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 + ports: + - 127.0.0.1:1521:1521 + - 127.0.0.1:5500:5500 + healthcheck: + test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] + interval: 120s + timeout: 300s + retries: 300 diff --git a/packages/oracle/data_stream/sysmetric/_dev/test/system/test-sysmetric-config.yml b/packages/oracle/data_stream/sysmetric/_dev/test/system/test-sysmetric-config.yml index 4ef8ddde1829..d502bfd3e6bf 100644 --- a/packages/oracle/data_stream/sysmetric/_dev/test/system/test-sysmetric-config.yml +++ b/packages/oracle/data_stream/sysmetric/_dev/test/system/test-sysmetric-config.yml @@ -1,3 +1,21 @@ vars: hosts: - - "oracle://sys:Oradoc_db1@oracle:1521/ORCLCDB.localdomain?sysdba=1" + - "oracle://sys:Oradoc_db1@{{Hostname}}:{{Port}}/ORCLCDB.localdomain?sysdba=1" +agent: + runtime: docker + provisioning_script: + language: "bash" + contents: | + apt-get update && apt-get -y install libaio1 wget unzip + mkdir -p /opt/oracle + cd /opt/oracle + wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip + wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip + echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig + cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ + pre_start_script: + language: "sh" + contents: | + export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:-""}:/opt/oracle/instantclient_21_4" + export PATH="${PATH}:/opt/oracle/instantclient_21_7:/opt/oracle/instantclient_21_4" + cd /opt/oracle/instantclient_21_4 diff --git a/packages/oracle/data_stream/system_statistics/_dev/deploy/agent/Dockerfile b/packages/oracle/data_stream/system_statistics/_dev/deploy/agent/Dockerfile deleted file mode 100644 index be86b30b38f1..000000000000 --- a/packages/oracle/data_stream/system_statistics/_dev/deploy/agent/Dockerfile +++ /dev/null @@ -1,16 +0,0 @@ -ARG ES_AGENT_IMAGE=docker.elastic.co/elastic-agent/elastic-agent-complete:8.3.0 -FROM $ES_AGENT_IMAGE -USER root -RUN apt-get update && apt-get -y install \ - libaio1 \ - wget \ - unzip -WORKDIR /opt/oracle -RUN wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip -RUN wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip -RUN echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig -RUN cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ -RUN export LD_LIBRARY_PATH=/opt/oracle/instantclient_21_4:$LD_LIBRARY_PATH && export PATH=/opt/oracle/instantclient_21_7:$PATH -ENV LD_LIBRARY_PATH "${LD_LIBRARY_PATH}:/opt/oracle/instantclient_21_4" -ENV PATH "${PATH}:/opt/oracle/instantclient_21_4" -WORKDIR /opt/oracle/instantclient_21_4 \ No newline at end of file diff --git a/packages/oracle/data_stream/system_statistics/_dev/deploy/agent/custom-agent.yml b/packages/oracle/data_stream/system_statistics/_dev/deploy/agent/custom-agent.yml deleted file mode 100644 index 107549f65693..000000000000 --- a/packages/oracle/data_stream/system_statistics/_dev/deploy/agent/custom-agent.yml +++ /dev/null @@ -1,28 +0,0 @@ -version: '2.3' -services: - docker-custom-agent: - build: - context: . - args: - ES_AGENT_IMAGE: ${ELASTIC_AGENT_IMAGE_REF} - dockerfile: Dockerfile - image: elastic-agent-oracle-client-1 - depends_on: - oracle: - condition: service_healthy - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/opt/oracle/instantclient_21_4 /opt/oracle/instantclient_21_4/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 - oracle: - image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 - container_name: oracle - ports: - - 127.0.0.1:1521:1521 - - 127.0.0.1:5500:5500 - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 diff --git a/packages/oracle/data_stream/system_statistics/_dev/deploy/docker/docker-compose.yml b/packages/oracle/data_stream/system_statistics/_dev/deploy/docker/docker-compose.yml new file mode 100644 index 000000000000..6c2fc6b0fbad --- /dev/null +++ b/packages/oracle/data_stream/system_statistics/_dev/deploy/docker/docker-compose.yml @@ -0,0 +1,12 @@ +version: '2.3' +services: + oracle: + image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 + ports: + - 127.0.0.1:1521:1521 + - 127.0.0.1:5500:5500 + healthcheck: + test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] + interval: 120s + timeout: 300s + retries: 300 diff --git a/packages/oracle/data_stream/system_statistics/_dev/test/system/test-systemstatistics-config.yml b/packages/oracle/data_stream/system_statistics/_dev/test/system/test-systemstatistics-config.yml index 4ef8ddde1829..d502bfd3e6bf 100644 --- a/packages/oracle/data_stream/system_statistics/_dev/test/system/test-systemstatistics-config.yml +++ b/packages/oracle/data_stream/system_statistics/_dev/test/system/test-systemstatistics-config.yml @@ -1,3 +1,21 @@ vars: hosts: - - "oracle://sys:Oradoc_db1@oracle:1521/ORCLCDB.localdomain?sysdba=1" + - "oracle://sys:Oradoc_db1@{{Hostname}}:{{Port}}/ORCLCDB.localdomain?sysdba=1" +agent: + runtime: docker + provisioning_script: + language: "bash" + contents: | + apt-get update && apt-get -y install libaio1 wget unzip + mkdir -p /opt/oracle + cd /opt/oracle + wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip + wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip + echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig + cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ + pre_start_script: + language: "sh" + contents: | + export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:-""}:/opt/oracle/instantclient_21_4" + export PATH="${PATH}:/opt/oracle/instantclient_21_7:/opt/oracle/instantclient_21_4" + cd /opt/oracle/instantclient_21_4 diff --git a/packages/oracle/data_stream/tablespace/_dev/deploy/agent/Dockerfile b/packages/oracle/data_stream/tablespace/_dev/deploy/agent/Dockerfile deleted file mode 100644 index be86b30b38f1..000000000000 --- a/packages/oracle/data_stream/tablespace/_dev/deploy/agent/Dockerfile +++ /dev/null @@ -1,16 +0,0 @@ -ARG ES_AGENT_IMAGE=docker.elastic.co/elastic-agent/elastic-agent-complete:8.3.0 -FROM $ES_AGENT_IMAGE -USER root -RUN apt-get update && apt-get -y install \ - libaio1 \ - wget \ - unzip -WORKDIR /opt/oracle -RUN wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip -RUN wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip -RUN echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig -RUN cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ -RUN export LD_LIBRARY_PATH=/opt/oracle/instantclient_21_4:$LD_LIBRARY_PATH && export PATH=/opt/oracle/instantclient_21_7:$PATH -ENV LD_LIBRARY_PATH "${LD_LIBRARY_PATH}:/opt/oracle/instantclient_21_4" -ENV PATH "${PATH}:/opt/oracle/instantclient_21_4" -WORKDIR /opt/oracle/instantclient_21_4 \ No newline at end of file diff --git a/packages/oracle/data_stream/tablespace/_dev/deploy/agent/custom-agent.yml b/packages/oracle/data_stream/tablespace/_dev/deploy/agent/custom-agent.yml deleted file mode 100644 index 107549f65693..000000000000 --- a/packages/oracle/data_stream/tablespace/_dev/deploy/agent/custom-agent.yml +++ /dev/null @@ -1,28 +0,0 @@ -version: '2.3' -services: - docker-custom-agent: - build: - context: . - args: - ES_AGENT_IMAGE: ${ELASTIC_AGENT_IMAGE_REF} - dockerfile: Dockerfile - image: elastic-agent-oracle-client-1 - depends_on: - oracle: - condition: service_healthy - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/opt/oracle/instantclient_21_4 /opt/oracle/instantclient_21_4/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 - oracle: - image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 - container_name: oracle - ports: - - 127.0.0.1:1521:1521 - - 127.0.0.1:5500:5500 - healthcheck: - test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] - interval: 120s - timeout: 300s - retries: 300 diff --git a/packages/oracle/data_stream/tablespace/_dev/deploy/docker/docker-compose.yml b/packages/oracle/data_stream/tablespace/_dev/deploy/docker/docker-compose.yml new file mode 100644 index 000000000000..6c2fc6b0fbad --- /dev/null +++ b/packages/oracle/data_stream/tablespace/_dev/deploy/docker/docker-compose.yml @@ -0,0 +1,12 @@ +version: '2.3' +services: + oracle: + image: docker.elastic.co/observability-ci/database-enterprise:12.2.0.1 + ports: + - 127.0.0.1:1521:1521 + - 127.0.0.1:5500:5500 + healthcheck: + test: ["CMD", "bash", "-c", "echo 'select sysdate from dual;' | ORACLE_HOME=/u01/app/oracle/product/12.2.0/dbhome_1/ /u01/app/oracle/product/12.2.0/dbhome_1/bin/sqlplus -s sys/Oradoc_db1@oracle:1521/ORCLCDB.localdomain as sysdba"] + interval: 120s + timeout: 300s + retries: 300 diff --git a/packages/oracle/data_stream/tablespace/_dev/test/system/test-tablespace-config.yml b/packages/oracle/data_stream/tablespace/_dev/test/system/test-tablespace-config.yml index 4ef8ddde1829..d502bfd3e6bf 100644 --- a/packages/oracle/data_stream/tablespace/_dev/test/system/test-tablespace-config.yml +++ b/packages/oracle/data_stream/tablespace/_dev/test/system/test-tablespace-config.yml @@ -1,3 +1,21 @@ vars: hosts: - - "oracle://sys:Oradoc_db1@oracle:1521/ORCLCDB.localdomain?sysdba=1" + - "oracle://sys:Oradoc_db1@{{Hostname}}:{{Port}}/ORCLCDB.localdomain?sysdba=1" +agent: + runtime: docker + provisioning_script: + language: "bash" + contents: | + apt-get update && apt-get -y install libaio1 wget unzip + mkdir -p /opt/oracle + cd /opt/oracle + wget https://download.oracle.com/otn_software/linux/instantclient/214000/instantclient-basic-linux.x64-21.4.0.0.0dbru.zip && unzip -o instantclient-basic-linux.x64-21.4.0.0.0dbru.zip + wget https://download.oracle.com/otn_software/linux/instantclient/217000/instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip && unzip -o instantclient-sqlplus-linux.x64-21.7.0.0.0dbru.zip + echo /opt/oracle/instantclient_21_4 > /etc/ld.so.conf.d/oracle-instantclient.conf && ldconfig + cp /opt/oracle/instantclient_21_7/glogin.sql /opt/oracle/instantclient_21_7/libsqlplus.so /opt/oracle/instantclient_21_7/libsqlplusic.so /opt/oracle/instantclient_21_7/sqlplus /opt/oracle/instantclient_21_4/ + pre_start_script: + language: "sh" + contents: | + export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:-""}:/opt/oracle/instantclient_21_4" + export PATH="${PATH}:/opt/oracle/instantclient_21_7:/opt/oracle/instantclient_21_4" + cd /opt/oracle/instantclient_21_4 From 4fa5bc0b8d103fe06fc617899007b1e820ef8269 Mon Sep 17 00:00:00 2001 From: Chris Berkhout Date: Fri, 2 Aug 2024 10:11:26 +0200 Subject: [PATCH 16/77] [qualys_vmdr] Fix CEL access to unset state.params in knowledge_base (#10677) When the `input_parameters` variable is not set, `state.params` is not set. The CEL program needs to account for that possibility when it accesses it. It was already handled correctly for the asset_host_detection data stream, and the user_activity data stream doesn't have that variable. Co-authored-by: Dan Kortschak --- .../_dev/deploy/docker/files/config.yml | 1 - packages/qualys_vmdr/changelog.yml | 5 +++++ .../test/system/test-1_invalid-config.yml | 1 - .../knowledge_base/agent/stream/input.yml.hbs | 19 ++++++++----------- packages/qualys_vmdr/manifest.yml | 2 +- 5 files changed, 14 insertions(+), 14 deletions(-) diff --git a/packages/qualys_vmdr/_dev/deploy/docker/files/config.yml b/packages/qualys_vmdr/_dev/deploy/docker/files/config.yml index ce97bbf9111b..1cf55e394bd3 100644 --- a/packages/qualys_vmdr/_dev/deploy/docker/files/config.yml +++ b/packages/qualys_vmdr/_dev/deploy/docker/files/config.yml @@ -302,7 +302,6 @@ rules: - path: /api/2.0/fo/knowledge_base/vuln/ methods: ['GET'] query_params: - ids: 456 responses: - status_code: 200 body: |- diff --git a/packages/qualys_vmdr/changelog.yml b/packages/qualys_vmdr/changelog.yml index f5fab85f3f00..b8159e068115 100644 --- a/packages/qualys_vmdr/changelog.yml +++ b/packages/qualys_vmdr/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "4.2.1" + changes: + - description: Fix CEL access to unset state.params in knowledge_base. + type: bugfix + link: https://github.com/elastic/integrations/pull/10677 - version: "4.2.0" changes: - description: Map cloud provider metadata to cloud fields. diff --git a/packages/qualys_vmdr/data_stream/knowledge_base/_dev/test/system/test-1_invalid-config.yml b/packages/qualys_vmdr/data_stream/knowledge_base/_dev/test/system/test-1_invalid-config.yml index 39cf85b091d4..6cddc287b414 100644 --- a/packages/qualys_vmdr/data_stream/knowledge_base/_dev/test/system/test-1_invalid-config.yml +++ b/packages/qualys_vmdr/data_stream/knowledge_base/_dev/test/system/test-1_invalid-config.yml @@ -6,7 +6,6 @@ vars: data_stream: vars: url: http://{{Hostname}}:{{Port}} - input_parameters: ids=456 preserve_duplicate_custom_fields: true enable_request_tracer: true assert: diff --git a/packages/qualys_vmdr/data_stream/knowledge_base/agent/stream/input.yml.hbs b/packages/qualys_vmdr/data_stream/knowledge_base/agent/stream/input.yml.hbs index 24e1bba9172e..f5a7476c1f1a 100644 --- a/packages/qualys_vmdr/data_stream/knowledge_base/agent/stream/input.yml.hbs +++ b/packages/qualys_vmdr/data_stream/knowledge_base/agent/stream/input.yml.hbs @@ -26,14 +26,11 @@ redact: - password program: | state.with( - request("GET", state.url.trim_right("/") + "/api/2.0/fo/knowledge_base/vuln/?action=list&last_modified_after=" + - string( - state.?cursor.last_modified.orValue(null) != null - ? - timestamp(state.cursor.last_modified) - : - now - duration(state.initial_interval) - ) + (state.params != "" ? "&" + state.params : "") + request("GET", state.url.trim_right("/") + "/api/2.0/fo/knowledge_base/vuln/?" + + state.?params.orValue("").parse_query().with({ + "action": ["list"], + "last_modified_after": [state.?cursor.last_modified.orValue(string(now - duration(state.initial_interval)))], + }).format_query() ).with({ "Header":{ "X-Requested-With": ["curl"], @@ -62,12 +59,12 @@ program: | }]) ), "cursor": { - "last_modified": ( + ?"last_modified": ( has(body.?doc.KNOWLEDGE_BASE_VULN_LIST_OUTPUT.RESPONSE.VULN_LIST.VULN) && body.doc.KNOWLEDGE_BASE_VULN_LIST_OUTPUT.RESPONSE.VULN_LIST.VULN.size() > 0 ? - body.doc.KNOWLEDGE_BASE_VULN_LIST_OUTPUT.RESPONSE.VULN_LIST.VULN.map(e, e.LAST_SERVICE_MODIFICATION_DATETIME).max() + optional.of(body.doc.KNOWLEDGE_BASE_VULN_LIST_OUTPUT.RESPONSE.VULN_LIST.VULN.map(e, e.LAST_SERVICE_MODIFICATION_DATETIME).max()) : - state.?cursor.last_modified.orValue(null) + state.?cursor.last_modified ) }, })) diff --git a/packages/qualys_vmdr/manifest.yml b/packages/qualys_vmdr/manifest.yml index 54007a24529c..86786e93194e 100644 --- a/packages/qualys_vmdr/manifest.yml +++ b/packages/qualys_vmdr/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: qualys_vmdr title: Qualys VMDR -version: "4.2.0" +version: "4.2.1" description: Collect data from Qualys VMDR platform with Elastic Agent. type: integration categories: From 9e3ecf27b8bf39d5a0948d9b029a909883c8c209 Mon Sep 17 00:00:00 2001 From: Chris Berkhout Date: Fri, 2 Aug 2024 11:42:39 +0200 Subject: [PATCH 17/77] [prisma_cloud] Fix null checks in host_profile CEL program (#10681) Requests made by the host and host_profile data streams sometime return successful (HTTP 200) responses with the body set to the string `null`. The CEL programs of both data streams did check for this, but the host_profile data stream was missing checks in two places. This change adds those missing checks in host_profile. It also simplifies the calculation of the `new_offset` value, and applies that simplification to the host data stream as well. The host and host_profile data streams both use APIs provided by the Cloud Workload Protection (CWP) module. This is the relevant API documentation: - https://pan.dev/prisma-cloud/api/cwpp/get-profiles-host/ - https://pan.dev/prisma-cloud/api/cwpp/get-hosts/ However, the `null` response is not documented. The alert and audit data streams use APIs provided by a different module, the Cloud Security Posture Management (CSPM) module, and have not be changed. --------- Co-authored-by: Dan Kortschak --- packages/prisma_cloud/changelog.yml | 5 +++ .../host/agent/stream/input.yml.hbs | 31 ++++++++--------- .../host_profile/agent/stream/input.yml.hbs | 33 ++++++++++--------- packages/prisma_cloud/manifest.yml | 2 +- 4 files changed, 39 insertions(+), 32 deletions(-) diff --git a/packages/prisma_cloud/changelog.yml b/packages/prisma_cloud/changelog.yml index 6d4b62adcb58..66d06bc14381 100644 --- a/packages/prisma_cloud/changelog.yml +++ b/packages/prisma_cloud/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.3.1" + changes: + - description: Fix null checks in the host_profile CEL program, simplify the host CEL expression. + type: bugfix + link: https://github.com/elastic/integrations/pull/10681 - version: "1.3.0" changes: - description: Removed import_mappings. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/prisma_cloud/data_stream/host/agent/stream/input.yml.hbs b/packages/prisma_cloud/data_stream/host/agent/stream/input.yml.hbs index 77ffb65148b8..d6729b80370c 100644 --- a/packages/prisma_cloud/data_stream/host/agent/stream/input.yml.hbs +++ b/packages/prisma_cloud/data_stream/host/agent/stream/input.yml.hbs @@ -62,21 +62,22 @@ program: | "password": state.password, "batch_size": string(state.batch_size), "access_token": state.access_token, - "cursor": - { - "new_offset": - ( - has(state.cursor) && has(state.cursor.new_offset) && state.cursor.new_offset != null - ? - ( - inner_body != null && inner_body.size() > 0 - ? - string(int(state.cursor.new_offset) + int(inner_body.size())) - : - state.cursor.new_offset - ) - : - string(int(state.offset) + (inner_body != null ? int(inner_body.size()) : 0)) + "cursor": { + "new_offset": ( + ( + state.?cursor.new_offset.orValue(null) != null + ? + int(state.cursor.new_offset) + : + int(state.offset) + ) + + ( + inner_body != null && inner_body.size() > 0 + ? + inner_body.size() + : + 0 + ) ) }, })) diff --git a/packages/prisma_cloud/data_stream/host_profile/agent/stream/input.yml.hbs b/packages/prisma_cloud/data_stream/host_profile/agent/stream/input.yml.hbs index 9679019090a9..bce7c73dc87b 100644 --- a/packages/prisma_cloud/data_stream/host_profile/agent/stream/input.yml.hbs +++ b/packages/prisma_cloud/data_stream/host_profile/agent/stream/input.yml.hbs @@ -57,26 +57,27 @@ program: | [] ), "url": state.url, - "want_more": inner_body.size() > 0, + "want_more": inner_body != null && inner_body.size() > 0, "user": state.user, "password": state.password, "batch_size": string(state.batch_size), "access_token": state.access_token, - "cursor": - { - "new_offset": - ( - has(state.cursor) && has(state.cursor.new_offset) && state.cursor.new_offset != null - ? - ( - inner_body != null && inner_body.size() > 0 - ? - string(int(state.cursor.new_offset) + int(inner_body.size())) - : - state.cursor.new_offset - ) - : - string(int(state.offset) + int(inner_body.size())) + "cursor": { + "new_offset": ( + ( + state.?cursor.new_offset.orValue(null) != null + ? + int(state.cursor.new_offset) + : + int(state.offset) + ) + + ( + inner_body != null && inner_body.size() > 0 + ? + inner_body.size() + : + 0 + ) ) }, })) diff --git a/packages/prisma_cloud/manifest.yml b/packages/prisma_cloud/manifest.yml index 3258649c944c..a0067b14e814 100644 --- a/packages/prisma_cloud/manifest.yml +++ b/packages/prisma_cloud/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.3 name: prisma_cloud title: "Palo Alto Prisma Cloud" -version: "1.3.0" +version: "1.3.1" description: "Collect logs from Prisma Cloud with Elastic Agent." type: integration categories: From e56a40c0b78e462c0f67eada335f3e30b92468d1 Mon Sep 17 00:00:00 2001 From: Nic Date: Fri, 2 Aug 2024 08:32:41 -0500 Subject: [PATCH 18/77] [system] Windows Security dashboard fix (adds windows.forwarded) (#10439) * Update visuals and searches with windows.forwarded * build, test and update changelog * update changelog PR * Update manifest.yml --- packages/system/changelog.yml | 5 +++++ .../system-71f720f0-ff18-11e9-8405-516218e3d268.json | 10 +++++----- .../system-bae11b00-9bfc-11ea-87e4-49f31ec44891.json | 10 +++++----- .../system-bb858830-f412-11e9-8405-516218e3d268.json | 4 ++-- .../system-d401ef40-a7d5-11e9-a422-d144027429da.json | 4 ++-- packages/system/manifest.yml | 2 +- 6 files changed, 20 insertions(+), 15 deletions(-) diff --git a/packages/system/changelog.yml b/packages/system/changelog.yml index a52e893f9039..cd61bec12c02 100644 --- a/packages/system/changelog.yml +++ b/packages/system/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.60.2" + changes: + - description: Add windows.forward where it was missing on visualizations and searches. + type: bugfix + link: https://github.com/elastic/integrations/pull/10439 - version: "1.60.1" changes: - description: Ensure process.name is populated from syslog messages diff --git a/packages/system/kibana/dashboard/system-71f720f0-ff18-11e9-8405-516218e3d268.json b/packages/system/kibana/dashboard/system-71f720f0-ff18-11e9-8405-516218e3d268.json index 628f4135a7bf..c83f459bd5c8 100644 --- a/packages/system/kibana/dashboard/system-71f720f0-ff18-11e9-8405-516218e3d268.json +++ b/packages/system/kibana/dashboard/system-71f720f0-ff18-11e9-8405-516218e3d268.json @@ -1785,7 +1785,7 @@ "description": "", "hits": 0, "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4624\"],\"type\":\"phrases\",\"value\":\"4624\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4624\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security\"},\"version\":true}" + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4624\"],\"type\":\"phrases\",\"value\":\"4624\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4624\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded\"},\"version\":true}" }, "references": [ { @@ -1835,7 +1835,7 @@ "description": "", "hits": 0, "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4720\",\"4722\",\"4723\",\"4724\",\"4725\",\"4726\",\"4738\",\"4740\",\"4767\",\"4781\",\"4798\"],\"type\":\"phrases\",\"value\":\"4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4720\"}},{\"match_phrase\":{\"event.code\":\"4722\"}},{\"match_phrase\":{\"event.code\":\"4723\"}},{\"match_phrase\":{\"event.code\":\"4724\"}},{\"match_phrase\":{\"event.code\":\"4725\"}},{\"match_phrase\":{\"event.code\":\"4726\"}},{\"match_phrase\":{\"event.code\":\"4738\"}},{\"match_phrase\":{\"event.code\":\"4740\"}},{\"match_phrase\":{\"event.code\":\"4767\"}},{\"match_phrase\":{\"event.code\":\"4781\"}},{\"match_phrase\":{\"event.code\":\"4798\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security\"},\"version\":true}" + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4720\",\"4722\",\"4723\",\"4724\",\"4725\",\"4726\",\"4738\",\"4740\",\"4767\",\"4781\",\"4798\"],\"type\":\"phrases\",\"value\":\"4720, 4722, 4723, 4724, 4725, 4726, 4738, 4740, 4767, 4781, 4798\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4720\"}},{\"match_phrase\":{\"event.code\":\"4722\"}},{\"match_phrase\":{\"event.code\":\"4723\"}},{\"match_phrase\":{\"event.code\":\"4724\"}},{\"match_phrase\":{\"event.code\":\"4725\"}},{\"match_phrase\":{\"event.code\":\"4726\"}},{\"match_phrase\":{\"event.code\":\"4738\"}},{\"match_phrase\":{\"event.code\":\"4740\"}},{\"match_phrase\":{\"event.code\":\"4767\"}},{\"match_phrase\":{\"event.code\":\"4781\"}},{\"match_phrase\":{\"event.code\":\"4798\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded\"},\"version\":true}" }, "references": [ { @@ -3701,7 +3701,7 @@ "dataType": "number", "filter": { "language": "kuery", - "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security) AND event.code: \"4725\")" + "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded) AND event.code: \"4725\")" }, "isBucketed": false, "label": "Users Disabled", @@ -4070,7 +4070,7 @@ "dataType": "number", "filter": { "language": "kuery", - "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security) AND event.code: \"4740\")" + "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded) AND event.code: \"4740\")" }, "isBucketed": false, "label": "Users Locked Out", @@ -4193,7 +4193,7 @@ "dataType": "number", "filter": { "language": "kuery", - "query": "event.code: \"4781\"" + "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded) AND event.code: \"4781\"" }, "isBucketed": false, "label": "Users Renamed", diff --git a/packages/system/kibana/dashboard/system-bae11b00-9bfc-11ea-87e4-49f31ec44891.json b/packages/system/kibana/dashboard/system-bae11b00-9bfc-11ea-87e4-49f31ec44891.json index b0978f46e9fb..e1d8ee486dac 100644 --- a/packages/system/kibana/dashboard/system-bae11b00-9bfc-11ea-87e4-49f31ec44891.json +++ b/packages/system/kibana/dashboard/system-bae11b00-9bfc-11ea-87e4-49f31ec44891.json @@ -505,7 +505,7 @@ "description": "", "hits": 0, "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":{\"query\":\"4624\"},\"type\":\"phrase\"},\"query\":{\"match\":{\"event.code\":{\"query\":\"4624\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security\"},\"version\":true}" + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":{\"query\":\"4624\"},\"type\":\"phrase\"},\"query\":{\"match\":{\"event.code\":{\"query\":\"4624\",\"type\":\"phrase\"}}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded\"},\"version\":true}" }, "references": [ { @@ -608,7 +608,7 @@ "dataType": "number", "filter": { "language": "kuery", - "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security) AND event.code: \"4672\")" + "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded) AND event.code: \"4672\")" }, "isBucketed": false, "label": "Administrator Logons", @@ -695,7 +695,7 @@ "dataType": "number", "filter": { "language": "kuery", - "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security) AND event.code: \"4624\")" + "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded) AND event.code: \"4624\")" }, "isBucketed": false, "label": "Logons ", @@ -1223,7 +1223,7 @@ "description": "", "hits": 0, "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4778\",\"4779\"],\"type\":\"phrases\",\"value\":\"4778, 4779\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4778\"}},{\"match_phrase\":{\"event.code\":\"4779\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security\"},\"version\":true}" + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4778\",\"4779\"],\"type\":\"phrases\",\"value\":\"4778, 4779\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4778\"}},{\"match_phrase\":{\"event.code\":\"4779\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded\"},\"version\":true}" }, "references": [ { @@ -1506,7 +1506,7 @@ "description": "", "hits": 0, "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":{\"query\":\"4625\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.code\":\"4625\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\",\"key\":\"winlog.provider_name\",\"negate\":false,\"params\":{\"query\":\"Microsoft-Windows-Security-Auditing\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"winlog.provider_name\":\"Microsoft-Windows-Security-Auditing\"}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security\"},\"version\":true}" + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":{\"query\":\"4625\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"event.code\":\"4625\"}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\",\"key\":\"winlog.provider_name\",\"negate\":false,\"params\":{\"query\":\"Microsoft-Windows-Security-Auditing\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"winlog.provider_name\":\"Microsoft-Windows-Security-Auditing\"}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded\"},\"version\":true}" }, "references": [ { diff --git a/packages/system/kibana/dashboard/system-bb858830-f412-11e9-8405-516218e3d268.json b/packages/system/kibana/dashboard/system-bb858830-f412-11e9-8405-516218e3d268.json index 878681a789ef..ecd7c6cbf000 100644 --- a/packages/system/kibana/dashboard/system-bb858830-f412-11e9-8405-516218e3d268.json +++ b/packages/system/kibana/dashboard/system-bb858830-f412-11e9-8405-516218e3d268.json @@ -1853,7 +1853,7 @@ "description": "", "hits": 0, "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4624\"],\"type\":\"phrases\",\"value\":\"4624\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4624\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security\"},\"version\":true}" + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4624\"],\"type\":\"phrases\",\"value\":\"4624\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4624\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded\"},\"version\":true}" }, "references": [ { @@ -1903,7 +1903,7 @@ "description": "", "hits": 0, "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4731\",\"4732\",\"4733\",\"4734\",\"4735\",\"4737\",\"4764\",\"4727\",\"4728\",\"4729\",\"4730\",\"4754\",\"4755\",\"4756\",\"4757\",\"4758\",\"4799\",\"4749\",\"4750\",\"4751\",\"4752\",\"4753\",\"4759\",\"4760\",\"4761\",\"4762\",\"4763\",\"4744\",\"4745\",\"4746\",\"4748\"],\"type\":\"phrases\",\"value\":\"4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4731\"}},{\"match_phrase\":{\"event.code\":\"4732\"}},{\"match_phrase\":{\"event.code\":\"4733\"}},{\"match_phrase\":{\"event.code\":\"4734\"}},{\"match_phrase\":{\"event.code\":\"4735\"}},{\"match_phrase\":{\"event.code\":\"4737\"}},{\"match_phrase\":{\"event.code\":\"4764\"}},{\"match_phrase\":{\"event.code\":\"4727\"}},{\"match_phrase\":{\"event.code\":\"4728\"}},{\"match_phrase\":{\"event.code\":\"4729\"}},{\"match_phrase\":{\"event.code\":\"4730\"}},{\"match_phrase\":{\"event.code\":\"4754\"}},{\"match_phrase\":{\"event.code\":\"4755\"}},{\"match_phrase\":{\"event.code\":\"4756\"}},{\"match_phrase\":{\"event.code\":\"4757\"}},{\"match_phrase\":{\"event.code\":\"4758\"}},{\"match_phrase\":{\"event.code\":\"4799\"}},{\"match_phrase\":{\"event.code\":\"4749\"}},{\"match_phrase\":{\"event.code\":\"4750\"}},{\"match_phrase\":{\"event.code\":\"4751\"}},{\"match_phrase\":{\"event.code\":\"4752\"}},{\"match_phrase\":{\"event.code\":\"4753\"}},{\"match_phrase\":{\"event.code\":\"4759\"}},{\"match_phrase\":{\"event.code\":\"4760\"}},{\"match_phrase\":{\"event.code\":\"4761\"}},{\"match_phrase\":{\"event.code\":\"4762\"}},{\"match_phrase\":{\"event.code\":\"4763\"}},{\"match_phrase\":{\"event.code\":\"4744\"}},{\"match_phrase\":{\"event.code\":\"4745\"}},{\"match_phrase\":{\"event.code\":\"4746\"}},{\"match_phrase\":{\"event.code\":\"4748\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security\"},\"version\":true}" + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4731\",\"4732\",\"4733\",\"4734\",\"4735\",\"4737\",\"4764\",\"4727\",\"4728\",\"4729\",\"4730\",\"4754\",\"4755\",\"4756\",\"4757\",\"4758\",\"4799\",\"4749\",\"4750\",\"4751\",\"4752\",\"4753\",\"4759\",\"4760\",\"4761\",\"4762\",\"4763\",\"4744\",\"4745\",\"4746\",\"4748\"],\"type\":\"phrases\",\"value\":\"4731, 4732, 4733, 4734, 4735, 4737, 4764, 4727, 4728, 4729, 4730, 4754, 4755, 4756, 4757, 4758, 4799, 4749, 4750, 4751, 4752, 4753, 4759, 4760, 4761, 4762, 4763, 4744, 4745, 4746, 4748\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4731\"}},{\"match_phrase\":{\"event.code\":\"4732\"}},{\"match_phrase\":{\"event.code\":\"4733\"}},{\"match_phrase\":{\"event.code\":\"4734\"}},{\"match_phrase\":{\"event.code\":\"4735\"}},{\"match_phrase\":{\"event.code\":\"4737\"}},{\"match_phrase\":{\"event.code\":\"4764\"}},{\"match_phrase\":{\"event.code\":\"4727\"}},{\"match_phrase\":{\"event.code\":\"4728\"}},{\"match_phrase\":{\"event.code\":\"4729\"}},{\"match_phrase\":{\"event.code\":\"4730\"}},{\"match_phrase\":{\"event.code\":\"4754\"}},{\"match_phrase\":{\"event.code\":\"4755\"}},{\"match_phrase\":{\"event.code\":\"4756\"}},{\"match_phrase\":{\"event.code\":\"4757\"}},{\"match_phrase\":{\"event.code\":\"4758\"}},{\"match_phrase\":{\"event.code\":\"4799\"}},{\"match_phrase\":{\"event.code\":\"4749\"}},{\"match_phrase\":{\"event.code\":\"4750\"}},{\"match_phrase\":{\"event.code\":\"4751\"}},{\"match_phrase\":{\"event.code\":\"4752\"}},{\"match_phrase\":{\"event.code\":\"4753\"}},{\"match_phrase\":{\"event.code\":\"4759\"}},{\"match_phrase\":{\"event.code\":\"4760\"}},{\"match_phrase\":{\"event.code\":\"4761\"}},{\"match_phrase\":{\"event.code\":\"4762\"}},{\"match_phrase\":{\"event.code\":\"4763\"}},{\"match_phrase\":{\"event.code\":\"4744\"}},{\"match_phrase\":{\"event.code\":\"4745\"}},{\"match_phrase\":{\"event.code\":\"4746\"}},{\"match_phrase\":{\"event.code\":\"4748\"}}]}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded\"},\"version\":true}" }, "references": [ { diff --git a/packages/system/kibana/dashboard/system-d401ef40-a7d5-11e9-a422-d144027429da.json b/packages/system/kibana/dashboard/system-d401ef40-a7d5-11e9-a422-d144027429da.json index 07565ef2cec1..05a5d3a8e11d 100644 --- a/packages/system/kibana/dashboard/system-d401ef40-a7d5-11e9-a422-d144027429da.json +++ b/packages/system/kibana/dashboard/system-d401ef40-a7d5-11e9-a422-d144027429da.json @@ -1605,7 +1605,7 @@ "dataType": "number", "filter": { "language": "kuery", - "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security) AND event.code: \"4625\")" + "query": "((data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded) AND event.code: \"4625\")" }, "isBucketed": false, "label": "Failed Logon", @@ -1761,7 +1761,7 @@ "winlog.event_data.SubjectUserName" ], "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4625\",\"4740\"],\"type\":\"phrases\",\"value\":\"4625, 4740\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4625\"}},{\"match_phrase\":{\"event.code\":\"4740\"}}]}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\",\"key\":\"winlog.provider_name\",\"negate\":false,\"params\":{\"query\":\"Microsoft-Windows-Security-Auditing\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"winlog.provider_name\":\"Microsoft-Windows-Security-Auditing\"}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security\"},\"version\":true}" + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"event.code\",\"negate\":false,\"params\":[\"4625\",\"4740\"],\"type\":\"phrases\",\"value\":\"4625, 4740\"},\"query\":{\"bool\":{\"minimum_should_match\":1,\"should\":[{\"match_phrase\":{\"event.code\":\"4625\"}},{\"match_phrase\":{\"event.code\":\"4740\"}}]}}},{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[1].meta.index\",\"key\":\"winlog.provider_name\",\"negate\":false,\"params\":{\"query\":\"Microsoft-Windows-Security-Auditing\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"winlog.provider_name\":\"Microsoft-Windows-Security-Auditing\"}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset:windows.security OR data_stream.dataset:system.security OR data_stream.dataset:windows.forwarded\"},\"version\":true}" }, "references": [ { diff --git a/packages/system/manifest.yml b/packages/system/manifest.yml index 625b35cfc3ba..1c7b43175d53 100644 --- a/packages/system/manifest.yml +++ b/packages/system/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.2 name: system title: System -version: "1.60.1" +version: "1.60.2" description: Collect system logs and metrics from your servers with Elastic Agent. type: integration categories: From 80b7d3385a1030a4e21081d91f35fe23882caee3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Kuba=20Sobo=C5=84?= Date: Fri, 2 Aug 2024 18:35:50 +0200 Subject: [PATCH 19/77] [Cloud Asset Inventory] Add Azure Inventory (#10663) * add Azure asset inventory streams * update the link in changelog --- packages/cloud_asset_inventory/changelog.yml | 7 +- .../asset_inventory/agent/stream/aws.yml.hbs | 3 +- .../agent/stream/azure.yml.hbs | 34 ++++++++++ .../data_stream/asset_inventory/manifest.yml | 66 ++++++++++++++++++- packages/cloud_asset_inventory/manifest.yml | 7 +- 5 files changed, 112 insertions(+), 5 deletions(-) create mode 100644 packages/cloud_asset_inventory/data_stream/asset_inventory/agent/stream/azure.yml.hbs diff --git a/packages/cloud_asset_inventory/changelog.yml b/packages/cloud_asset_inventory/changelog.yml index ec98656a863a..7a1dba8dd563 100644 --- a/packages/cloud_asset_inventory/changelog.yml +++ b/packages/cloud_asset_inventory/changelog.yml @@ -1,8 +1,13 @@ # newer versions go on top # version map: # 0.1.x - 8.15.x +- version: "0.1.5" + changes: + - description: Add Azure Asset Inventory + type: enhancement + link: https://github.com/elastic/integrations/pull/10663 - version: "0.1.4" changes: - description: Add Cloud Asset Inventory type: enhancement - link: https://github.com/elastic/integrations/pull/9828 \ No newline at end of file + link: https://github.com/elastic/integrations/pull/9828 diff --git a/packages/cloud_asset_inventory/data_stream/asset_inventory/agent/stream/aws.yml.hbs b/packages/cloud_asset_inventory/data_stream/asset_inventory/agent/stream/aws.yml.hbs index f696014c7290..8e3f554077ff 100644 --- a/packages/cloud_asset_inventory/data_stream/asset_inventory/agent/stream/aws.yml.hbs +++ b/packages/cloud_asset_inventory/data_stream/asset_inventory/agent/stream/aws.yml.hbs @@ -2,6 +2,7 @@ period: 24h config: v1: type: asset_inventory + asset_inventory_provider: aws aws: account_type: single-account credentials: @@ -23,4 +24,4 @@ config: {{#if role_arn}} role_arn: {{role_arn}} {{/if}} - type: {{aws.credentials.type}} \ No newline at end of file + type: {{aws.credentials.type}} diff --git a/packages/cloud_asset_inventory/data_stream/asset_inventory/agent/stream/azure.yml.hbs b/packages/cloud_asset_inventory/data_stream/asset_inventory/agent/stream/azure.yml.hbs new file mode 100644 index 000000000000..f984dcfb96d5 --- /dev/null +++ b/packages/cloud_asset_inventory/data_stream/asset_inventory/agent/stream/azure.yml.hbs @@ -0,0 +1,34 @@ +period: 24h +config: + v1: + type: asset_inventory + asset_inventory_provider: azure + azure: + {{#if azure.account_type}} + account_type: {{azure.account_type}} + {{/if}} + credentials: + {{#if azure.credentials.type}} + type: {{azure.credentials.type}} + {{/if}} + {{#if azure.credentials.client_id}} + client_id: {{azure.credentials.client_id}} + {{/if}} + {{#if azure.credentials.tenant_id}} + tenant_id: {{azure.credentials.tenant_id}} + {{/if}} + {{#if azure.credentials.client_secret}} + client_secret: {{azure.credentials.client_secret}} + {{/if}} + {{#if azure.credentials.client_username}} + client_username: {{azure.credentials.client_username}} + {{/if}} + {{#if azure.credentials.client_password}} + client_password: {{azure.credentials.client_password}} + {{/if}} + {{#if azure.credentials.client_certificate_path}} + client_certificate_path: {{azure.credentials.client_certificate_path}} + {{/if}} + {{#if azure.credentials.client_certificate_password}} + client_certificate_password: {{azure.credentials.client_certificate_password}} + {{/if}} diff --git a/packages/cloud_asset_inventory/data_stream/asset_inventory/manifest.yml b/packages/cloud_asset_inventory/data_stream/asset_inventory/manifest.yml index dd4694186229..1fa2dd073c71 100644 --- a/packages/cloud_asset_inventory/data_stream/asset_inventory/manifest.yml +++ b/packages/cloud_asset_inventory/data_stream/asset_inventory/manifest.yml @@ -7,12 +7,13 @@ elasticsearch: index_template: mappings: dynamic: false +# IMPORTANT: set all streams as disabled by default streams: - input: cloudbeat/asset_inventory_aws title: AWS Asset Inventory description: Asset Inventory Discovery for AWS template_path: aws.yml.hbs - enabled: true + enabled: false vars: - name: access_key_id type: text @@ -58,3 +59,66 @@ streams: multi: false required: false show_user: false + - input: cloudbeat/asset_inventory_azure + title: Azure Asset Inventory + description: Asset Inventory Discovery for Azure + template_path: azure.yml.hbs + enabled: false + vars: + - name: azure.account_type + type: text + title: Account type + multi: false + required: false + show_user: false + - name: azure.credentials.type + type: text + title: Credentials type + multi: false + required: false + show_user: false + - name: azure.credentials.client_id + type: text + title: Client ID + multi: false + required: false + show_user: true + - name: azure.credentials.tenant_id + type: text + title: Tenant ID + multi: false + required: false + show_user: true + - name: azure.credentials.client_secret + type: password + title: Client Secret + multi: false + required: false + show_user: true + secret: true + - name: azure.credentials.client_username + type: text + title: Client Username + multi: false + required: false + show_user: true + - name: azure.credentials.client_password + type: password + title: Client Password + multi: false + required: false + show_user: true + secret: true + - name: azure.credentials.client_certificate_path + type: text + title: Client Certificate Path + multi: false + required: false + show_user: true + - name: azure.credentials.client_certificate_password + type: password + title: Client Certificate Password + multi: false + required: false + show_user: true + secret: true diff --git a/packages/cloud_asset_inventory/manifest.yml b/packages/cloud_asset_inventory/manifest.yml index 8da5b56a78e3..c4dc913624a3 100644 --- a/packages/cloud_asset_inventory/manifest.yml +++ b/packages/cloud_asset_inventory/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: cloud_asset_inventory title: "Cloud Asset Inventory" -version: "0.1.4" +version: "0.1.5" source: license: "Elastic-2.0" description: "Discover and Create Cloud Assets Inventory" @@ -40,10 +40,13 @@ policy_templates: title: AWS Asset Inventory description: AWS Asset Inventory vars: [] + - type: cloudbeat/asset_inventory_azure + title: Azure Asset Inventory + description: Azure Asset Inventory + vars: [] categories: - security - cloud - - aws owner: github: elastic/cloud-security-posture type: elastic From 2df4877397e570afbe4433843b000a9daebc1ee9 Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Mon, 5 Aug 2024 06:06:03 +0930 Subject: [PATCH 20/77] google_workspace: add geoip processors to data streams without (#10682) Some of the data streams did not have geoip processors, so add them. --- packages/google_workspace/changelog.yml | 5 + ...test-access-transparency.log-expected.json | 18 + .../elasticsearch/ingest_pipeline/default.yml | 20 ++ .../access_transparency/sample_event.json | 30 +- .../data_stream/admin/sample_event.json | 18 +- .../elasticsearch/ingest_pipeline/default.yml | 20 ++ .../data_stream/alert/sample_event.json | 18 +- ...est-context-aware-access.log-expected.json | 18 + .../elasticsearch/ingest_pipeline/default.yml | 20 ++ .../context_aware_access/sample_event.json | 30 +- .../pipeline/test-device.log-expected.json | 12 + .../elasticsearch/ingest_pipeline/default.yml | 20 ++ .../data_stream/device/sample_event.json | 30 +- .../data_stream/drive/sample_event.json | 18 +- .../test/pipeline/test-gcp.log-expected.json | 18 + .../elasticsearch/ingest_pipeline/default.yml | 20 ++ .../data_stream/gcp/sample_event.json | 30 +- .../test-group-enterprise.log-expected.json | 12 + .../elasticsearch/ingest_pipeline/default.yml | 20 ++ .../group_enterprise/sample_event.json | 30 +- .../data_stream/groups/sample_event.json | 18 +- .../data_stream/login/sample_event.json | 18 +- .../data_stream/rules/sample_event.json | 18 +- .../data_stream/saml/sample_event.json | 18 +- .../pipeline/test-token.log-expected.json | 18 + .../elasticsearch/ingest_pipeline/default.yml | 20 ++ .../data_stream/token/sample_event.json | 30 +- .../user_accounts/sample_event.json | 18 +- packages/google_workspace/docs/README.md | 310 +++++++++++------- packages/google_workspace/manifest.yml | 2 +- 30 files changed, 624 insertions(+), 253 deletions(-) diff --git a/packages/google_workspace/changelog.yml b/packages/google_workspace/changelog.yml index 687dfeb719f2..b1fabdadfe93 100644 --- a/packages/google_workspace/changelog.yml +++ b/packages/google_workspace/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.25.0" + changes: + - description: Add GeoIP processors to all data streams. + type: enhancement + link: https://github.com/elastic/integrations/pull/10682 - version: "2.24.0" changes: - description: Updated google drive event schema and mappings to incorporate missing fields. diff --git a/packages/google_workspace/data_stream/access_transparency/_dev/test/pipeline/test-access-transparency.log-expected.json b/packages/google_workspace/data_stream/access_transparency/_dev/test/pipeline/test-access-transparency.log-expected.json index cbe4514f93f6..2d2bd26158b6 100644 --- a/packages/google_workspace/data_stream/access_transparency/_dev/test/pipeline/test-access-transparency.log-expected.json +++ b/packages/google_workspace/data_stream/access_transparency/_dev/test/pipeline/test-access-transparency.log-expected.json @@ -73,6 +73,24 @@ ] }, "source": { + "as": { + "number": 29518, + "organization": { + "name": "Bredband2 AB" + } + }, + "geo": { + "city_name": "Linköping", + "continent_name": "Europe", + "country_iso_code": "SE", + "country_name": "Sweden", + "location": { + "lat": 58.4167, + "lon": 15.6167 + }, + "region_iso_code": "SE-E", + "region_name": "Östergötland County" + }, "ip": "89.160.20.112", "user": { "domain": "bar.com", diff --git a/packages/google_workspace/data_stream/access_transparency/elasticsearch/ingest_pipeline/default.yml b/packages/google_workspace/data_stream/access_transparency/elasticsearch/ingest_pipeline/default.yml index 4ad1e162050d..e181850d0f6a 100644 --- a/packages/google_workspace/data_stream/access_transparency/elasticsearch/ingest_pipeline/default.yml +++ b/packages/google_workspace/data_stream/access_transparency/elasticsearch/ingest_pipeline/default.yml @@ -107,6 +107,26 @@ processors: - append: field: error.message value: '{{{_ingest.on_failure_message}}}' + - geoip: + field: source.ip + target_field: source.geo + ignore_missing: true + - geoip: + database_file: GeoLite2-ASN.mmdb + field: source.ip + target_field: source.as + properties: + - asn + - organization_name + ignore_missing: true + - rename: + field: source.as.asn + target_field: source.as.number + ignore_missing: true + - rename: + field: source.as.organization_name + target_field: source.as.organization.name + ignore_missing: true - set: field: google_workspace.ip_address copy_from: source.ip diff --git a/packages/google_workspace/data_stream/access_transparency/sample_event.json b/packages/google_workspace/data_stream/access_transparency/sample_event.json index d5529e7dfea1..b125659a2d27 100644 --- a/packages/google_workspace/data_stream/access_transparency/sample_event.json +++ b/packages/google_workspace/data_stream/access_transparency/sample_event.json @@ -1,32 +1,32 @@ { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "2fe6b5c7-2099-40a4-b604-3307a3659e18", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "e3f2296a-a4a2-4d03-9105-cee5b37c1408", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.access_transparency", - "namespace": "ep", + "namespace": "83912", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "APPLICATION_EVENT", "agent_id_status": "verified", - "created": "2023-04-06T05:05:54.066Z", + "created": "2024-08-01T21:50:19.274Z", "dataset": "google_workspace.access_transparency", "id": "1", - "ingested": "2023-04-06T05:05:58Z", + "ingested": "2024-08-01T21:50:31Z", "kind": [ "event" ], @@ -98,6 +98,18 @@ ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -118,4 +130,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/admin/sample_event.json b/packages/google_workspace/data_stream/admin/sample_event.json index 7a8c21968d24..8c6a46c54068 100644 --- a/packages/google_workspace/data_stream/admin/sample_event.json +++ b/packages/google_workspace/data_stream/admin/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2022-04-04T15:04:05.000Z", "agent": { - "ephemeral_id": "416ea592-bbd6-4286-8950-b30981d4e0dd", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "e64e710c-e02b-4997-bb7e-83b936dd6aa5", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.admin", - "namespace": "ep", + "namespace": "62273", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "CHANGE_APPLICATION_SETTING", @@ -27,10 +27,10 @@ "iam", "configuration" ], - "created": "2023-04-06T05:06:41.510Z", + "created": "2024-08-01T21:51:15.529Z", "dataset": "google_workspace.admin", "id": "1", - "ingested": "2023-04-06T05:06:45Z", + "ingested": "2024-08-01T21:51:27Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"CHANGE_APPLICATION_SETTING\",\"parameters\":[{\"name\":\"APPLICATION_EDITION\",\"value\":\"basic\"},{\"name\":\"APPLICATION_NAME\",\"value\":\"drive\"},{\"name\":\"GROUP_EMAIL\",\"value\":\"group@example.com\"},{\"name\":\"NEW_VALUE\",\"value\":\"new\"},{\"name\":\"OLD_VALUE\",\"value\":\"old\"},{\"name\":\"ORG_UNIT_NAME\",\"value\":\"org\"},{\"name\":\"SETTING_NAME\",\"value\":\"setting\"}],\"type\":\"APPLICATION_SETTINGS\"},\"id\":{\"applicationName\":\"admin\",\"customerId\":\"1\",\"time\":\"2022-04-04T15:04:05Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "admin", @@ -117,4 +117,4 @@ } } } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/alert/elasticsearch/ingest_pipeline/default.yml b/packages/google_workspace/data_stream/alert/elasticsearch/ingest_pipeline/default.yml index 41745fcb98ed..414dec524249 100644 --- a/packages/google_workspace/data_stream/alert/elasticsearch/ingest_pipeline/default.yml +++ b/packages/google_workspace/data_stream/alert/elasticsearch/ingest_pipeline/default.yml @@ -431,6 +431,26 @@ processors: - append: field: error.message value: '{{{_ingest.on_failure_message}}}' + - geoip: + field: source.ip + target_field: source.geo + ignore_missing: true + - geoip: + database_file: GeoLite2-ASN.mmdb + field: source.ip + target_field: source.as + properties: + - asn + - organization_name + ignore_missing: true + - rename: + field: source.as.asn + target_field: source.as.number + ignore_missing: true + - rename: + field: source.as.organization_name + target_field: source.as.organization.name + ignore_missing: true - set: field: source.ip copy_from: google_workspace.alert.data.source.ip diff --git a/packages/google_workspace/data_stream/alert/sample_event.json b/packages/google_workspace/data_stream/alert/sample_event.json index 2d633dfb4719..b56532c6e18b 100644 --- a/packages/google_workspace/data_stream/alert/sample_event.json +++ b/packages/google_workspace/data_stream/alert/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2022-07-01T10:49:29.436Z", "agent": { - "ephemeral_id": "c184a610-116e-4d73-8068-204b91173c48", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "245194a8-7787-44f7-ac57-201f8c49a9a0", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.alert", - "namespace": "ep", + "namespace": "62301", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "email": { "attachments": { @@ -57,11 +57,11 @@ "threat", "malware" ], - "created": "2023-04-06T05:07:37.780Z", + "created": "2024-08-01T21:52:26.588Z", "dataset": "google_workspace.alert", "end": "2022-07-01T10:47:04.530Z", "id": "91840a82-3af0-46d7-95ec-625c1cf0c3f7", - "ingested": "2023-04-06T05:07:41Z", + "ingested": "2024-08-01T21:52:38Z", "kind": "alert", "original": "{\"alertId\":\"91840a82-3af0-46d7-95ec-625c1cf0c3f7\",\"createTime\":\"2022-07-01T10:49:29.436394Z\",\"customerId\":\"02umwv6u\",\"data\":{\"@type\":\"type.googleapis.com/google.apps.alertcenter.type.MailPhishing\",\"domainId\":{\"customerPrimaryDomain\":\"example.com\"},\"isInternal\":true,\"maliciousEntity\":{\"displayName\":\"string\",\"entity\":{\"displayName\":\"example\",\"emailAddress\":\"example@example.com\"},\"fromHeader\":\"header@example.com\"},\"messages\":[{\"attachmentsSha256Hash\":[\"50d858e0985ecc7f60418aaf0cc5ab587f42c2570a884095a9e8ccacd0f6545c\",\"228b48a56dbc2ecf10393227ac9c9dc943881fd7a55452e12a09107476bef2b2\"],\"date\":\"2022-07-01T10:38:13.194711Z\",\"md5HashMessageBody\":\"d29343907090dff4cec4a9a0efb80d20\",\"md5HashSubject\":\"a3708f8228384d932237f85980ff8283\",\"messageBodySnippet\":\" hi greetings from sales \",\"messageId\":\"decedih843@example.com\",\"recipient\":\"example@example.com\",\"subjectText\":\"Sales\"},{\"attachmentsSha256Hash\":[\"5fb1679e08674059b72e271d8902c11a127bb5301b055dc77fa03932ada56a56\"],\"md5HashMessageBody\":\"d29343907090dff4cec4a9a0efb80d20\",\"md5HashSubject\":\"a3708f8228384d932237f85980ff8283\",\"messageBodySnippet\":\" hi greetings \",\"messageId\":\"decedih@example.com\",\"recipient\":\"example@example.com\",\"subjectText\":\"RE: Example salesorderspca JSON request\"}],\"systemActionType\":\"NO_OPERATION\"},\"deleted\":false,\"endTime\":\"2022-07-01T10:47:04.530834Z\",\"etag\":\"wF2Ix2DWDv8=\",\"metadata\":{\"alertId\":\"91840a82-3af0-46d7-95ec-625c1cf0c3f7\",\"assignee\":\"example@example.com\",\"customerId\":\"02umwv6u\",\"etag\":\"wF2Ix2DWDv8=\",\"severity\":\"HIGH\",\"status\":\"NOT_STARTED\",\"updateTime\":\"2022-07-01T10:49:29.436394Z\"},\"securityInvestigationToolLink\":\"string\",\"source\":\"Gmail phishing\",\"startTime\":\"2022-07-01T10:38:13.194711Z\",\"type\":\"User reported phishing\",\"updateTime\":\"2022-07-01T10:49:29.436394Z\"}", "start": "2022-07-01T10:38:13.194Z", @@ -179,4 +179,4 @@ ], "name": "example" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/context_aware_access/_dev/test/pipeline/test-context-aware-access.log-expected.json b/packages/google_workspace/data_stream/context_aware_access/_dev/test/pipeline/test-context-aware-access.log-expected.json index 3163116c983f..a166df83b52f 100644 --- a/packages/google_workspace/data_stream/context_aware_access/_dev/test/pipeline/test-context-aware-access.log-expected.json +++ b/packages/google_workspace/data_stream/context_aware_access/_dev/test/pipeline/test-context-aware-access.log-expected.json @@ -67,6 +67,24 @@ ] }, "source": { + "as": { + "number": 29518, + "organization": { + "name": "Bredband2 AB" + } + }, + "geo": { + "city_name": "Linköping", + "continent_name": "Europe", + "country_iso_code": "SE", + "country_name": "Sweden", + "location": { + "lat": 58.4167, + "lon": 15.6167 + }, + "region_iso_code": "SE-E", + "region_name": "Östergötland County" + }, "ip": "89.160.20.112", "user": { "domain": "bar.com", diff --git a/packages/google_workspace/data_stream/context_aware_access/elasticsearch/ingest_pipeline/default.yml b/packages/google_workspace/data_stream/context_aware_access/elasticsearch/ingest_pipeline/default.yml index 4f23b86e79c7..8e582f3efb7d 100644 --- a/packages/google_workspace/data_stream/context_aware_access/elasticsearch/ingest_pipeline/default.yml +++ b/packages/google_workspace/data_stream/context_aware_access/elasticsearch/ingest_pipeline/default.yml @@ -107,6 +107,26 @@ processors: - append: field: error.message value: '{{{_ingest.on_failure_message}}}' + - geoip: + field: source.ip + target_field: source.geo + ignore_missing: true + - geoip: + database_file: GeoLite2-ASN.mmdb + field: source.ip + target_field: source.as + properties: + - asn + - organization_name + ignore_missing: true + - rename: + field: source.as.asn + target_field: source.as.number + ignore_missing: true + - rename: + field: source.as.organization_name + target_field: source.as.organization.name + ignore_missing: true - set: field: google_workspace.ip_address copy_from: source.ip diff --git a/packages/google_workspace/data_stream/context_aware_access/sample_event.json b/packages/google_workspace/data_stream/context_aware_access/sample_event.json index 1fb51c3ae2a5..3f302ad47929 100644 --- a/packages/google_workspace/data_stream/context_aware_access/sample_event.json +++ b/packages/google_workspace/data_stream/context_aware_access/sample_event.json @@ -1,32 +1,32 @@ { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "71645243-c58a-4eed-b3ed-d42137115d43", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "6fde0a21-1448-4531-a5c9-42751772e3a7", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.context_aware_access", - "namespace": "ep", + "namespace": "14973", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "APPLICATION_EVENT", "agent_id_status": "verified", - "created": "2023-04-06T05:08:37.473Z", + "created": "2024-08-01T21:53:36.823Z", "dataset": "google_workspace.context_aware_access", "id": "1", - "ingested": "2023-04-06T05:08:41Z", + "ingested": "2024-08-01T21:53:48Z", "kind": [ "event" ], @@ -92,6 +92,18 @@ ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -112,4 +124,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/device/_dev/test/pipeline/test-device.log-expected.json b/packages/google_workspace/data_stream/device/_dev/test/pipeline/test-device.log-expected.json index 9bea93cfcbcb..43da800398bb 100644 --- a/packages/google_workspace/data_stream/device/_dev/test/pipeline/test-device.log-expected.json +++ b/packages/google_workspace/data_stream/device/_dev/test/pipeline/test-device.log-expected.json @@ -130,6 +130,18 @@ ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", diff --git a/packages/google_workspace/data_stream/device/elasticsearch/ingest_pipeline/default.yml b/packages/google_workspace/data_stream/device/elasticsearch/ingest_pipeline/default.yml index 680f72aa8e16..4c20e01adb43 100644 --- a/packages/google_workspace/data_stream/device/elasticsearch/ingest_pipeline/default.yml +++ b/packages/google_workspace/data_stream/device/elasticsearch/ingest_pipeline/default.yml @@ -108,6 +108,26 @@ processors: - append: field: error.message value: '{{{_ingest.on_failure_message}}}' + - geoip: + field: source.ip + target_field: source.geo + ignore_missing: true + - geoip: + database_file: GeoLite2-ASN.mmdb + field: source.ip + target_field: source.as + properties: + - asn + - organization_name + ignore_missing: true + - rename: + field: source.as.asn + target_field: source.as.number + ignore_missing: true + - rename: + field: source.as.organization_name + target_field: source.as.organization.name + ignore_missing: true - set: field: google_workspace.ip_address copy_from: source.ip diff --git a/packages/google_workspace/data_stream/device/sample_event.json b/packages/google_workspace/data_stream/device/sample_event.json index ee9ded46e997..6a8898ad3d3e 100644 --- a/packages/google_workspace/data_stream/device/sample_event.json +++ b/packages/google_workspace/data_stream/device/sample_event.json @@ -1,32 +1,32 @@ { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "a5e4244f-eef5-477a-a2e3-316e6db7b805", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "9875ab07-088d-4ff3-8cfe-daa3a497cf78", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.device", - "namespace": "ep", + "namespace": "89096", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "APPLICATION_EVENT", "agent_id_status": "verified", - "created": "2023-04-06T05:09:25.555Z", + "created": "2024-08-01T21:54:32.984Z", "dataset": "google_workspace.device", "id": "1", - "ingested": "2023-04-06T05:09:29Z", + "ingested": "2024-08-01T21:54:44Z", "kind": [ "event" ], @@ -151,6 +151,18 @@ ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -174,4 +186,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/drive/sample_event.json b/packages/google_workspace/data_stream/drive/sample_event.json index 829152117a08..359a852bd453 100644 --- a/packages/google_workspace/data_stream/drive/sample_event.json +++ b/packages/google_workspace/data_stream/drive/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2022-05-04T15:04:05.000Z", "agent": { - "ephemeral_id": "35ba02b7-1bc6-4100-967c-ea2fc9ea67d0", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "afd0c297-d853-427a-96bc-20af38e5b145", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.drive", - "namespace": "ep", + "namespace": "99832", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "add_to_folder", @@ -26,10 +26,10 @@ "category": [ "file" ], - "created": "2023-04-06T05:10:10.985Z", + "created": "2024-08-01T21:55:29.295Z", "dataset": "google_workspace.drive", "id": "1", - "ingested": "2023-04-06T05:10:15Z", + "ingested": "2024-08-01T21:55:41Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"add_to_folder\",\"parameters\":[{\"boolValue\":false,\"name\":\"billable\"},{\"name\":\"destination_folder_id\",\"value\":\"1234\"},{\"name\":\"destination_folder_title\",\"value\":\"folder title\"},{\"name\":\"doc_id\",\"value\":\"1234\"},{\"name\":\"doc_title\",\"value\":\"document title\"},{\"name\":\"doc_type\",\"value\":\"document\"},{\"name\":\"originating_app_id\",\"value\":\"1234\"},{\"name\":\"owner\",\"value\":\"owner@example.com\"},{\"boolValue\":false,\"name\":\"owner_is_shared_drive\"},{\"boolValue\":true,\"name\":\"primary_event\"},{\"name\":\"visibility\",\"value\":\"people_with_link\"}],\"type\":\"access\"},\"id\":{\"applicationName\":\"drive\",\"customerId\":\"1\",\"time\":\"2022-05-04T15:04:05Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "drive", @@ -111,4 +111,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/gcp/_dev/test/pipeline/test-gcp.log-expected.json b/packages/google_workspace/data_stream/gcp/_dev/test/pipeline/test-gcp.log-expected.json index 2dbf87c1fe47..9a310b0f7fed 100644 --- a/packages/google_workspace/data_stream/gcp/_dev/test/pipeline/test-gcp.log-expected.json +++ b/packages/google_workspace/data_stream/gcp/_dev/test/pipeline/test-gcp.log-expected.json @@ -58,6 +58,24 @@ ] }, "source": { + "as": { + "number": 29518, + "organization": { + "name": "Bredband2 AB" + } + }, + "geo": { + "city_name": "Linköping", + "continent_name": "Europe", + "country_iso_code": "SE", + "country_name": "Sweden", + "location": { + "lat": 58.4167, + "lon": 15.6167 + }, + "region_iso_code": "SE-E", + "region_name": "Östergötland County" + }, "ip": "89.160.20.112", "user": { "domain": "bar.com", diff --git a/packages/google_workspace/data_stream/gcp/elasticsearch/ingest_pipeline/default.yml b/packages/google_workspace/data_stream/gcp/elasticsearch/ingest_pipeline/default.yml index 3ce5cf69e0b9..d23927a1e6df 100644 --- a/packages/google_workspace/data_stream/gcp/elasticsearch/ingest_pipeline/default.yml +++ b/packages/google_workspace/data_stream/gcp/elasticsearch/ingest_pipeline/default.yml @@ -107,6 +107,26 @@ processors: - append: field: error.message value: '{{{_ingest.on_failure_message}}}' + - geoip: + field: source.ip + target_field: source.geo + ignore_missing: true + - geoip: + database_file: GeoLite2-ASN.mmdb + field: source.ip + target_field: source.as + properties: + - asn + - organization_name + ignore_missing: true + - rename: + field: source.as.asn + target_field: source.as.number + ignore_missing: true + - rename: + field: source.as.organization_name + target_field: source.as.organization.name + ignore_missing: true - set: field: google_workspace.ip_address copy_from: source.ip diff --git a/packages/google_workspace/data_stream/gcp/sample_event.json b/packages/google_workspace/data_stream/gcp/sample_event.json index fafa88203c0b..c5a5bf910ea1 100644 --- a/packages/google_workspace/data_stream/gcp/sample_event.json +++ b/packages/google_workspace/data_stream/gcp/sample_event.json @@ -1,32 +1,32 @@ { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "6a14d2e3-52cf-4cc4-af8d-ec081ca76a46", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "73bd4e11-03bc-40dc-a0bc-1d9ca1aaa853", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.gcp", - "namespace": "ep", + "namespace": "65228", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "IMPORT_SSH_PUBLIC_KEY", "agent_id_status": "verified", - "created": "2023-04-06T05:11:08.661Z", + "created": "2024-08-01T21:56:37.313Z", "dataset": "google_workspace.gcp", "id": "1", - "ingested": "2023-04-06T05:11:12Z", + "ingested": "2024-08-01T21:56:49Z", "kind": [ "event" ], @@ -83,6 +83,18 @@ ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -103,4 +115,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/group_enterprise/_dev/test/pipeline/test-group-enterprise.log-expected.json b/packages/google_workspace/data_stream/group_enterprise/_dev/test/pipeline/test-group-enterprise.log-expected.json index 252a25c10c8a..0afe90708366 100644 --- a/packages/google_workspace/data_stream/group_enterprise/_dev/test/pipeline/test-group-enterprise.log-expected.json +++ b/packages/google_workspace/data_stream/group_enterprise/_dev/test/pipeline/test-group-enterprise.log-expected.json @@ -83,6 +83,18 @@ ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", diff --git a/packages/google_workspace/data_stream/group_enterprise/elasticsearch/ingest_pipeline/default.yml b/packages/google_workspace/data_stream/group_enterprise/elasticsearch/ingest_pipeline/default.yml index 6ed2132aa58e..99dfa8f142f1 100644 --- a/packages/google_workspace/data_stream/group_enterprise/elasticsearch/ingest_pipeline/default.yml +++ b/packages/google_workspace/data_stream/group_enterprise/elasticsearch/ingest_pipeline/default.yml @@ -107,6 +107,26 @@ processors: - append: field: error.message value: '{{{_ingest.on_failure_message}}}' + - geoip: + field: source.ip + target_field: source.geo + ignore_missing: true + - geoip: + database_file: GeoLite2-ASN.mmdb + field: source.ip + target_field: source.as + properties: + - asn + - organization_name + ignore_missing: true + - rename: + field: source.as.asn + target_field: source.as.number + ignore_missing: true + - rename: + field: source.as.organization_name + target_field: source.as.organization.name + ignore_missing: true - set: field: google_workspace.ip_address copy_from: source.ip diff --git a/packages/google_workspace/data_stream/group_enterprise/sample_event.json b/packages/google_workspace/data_stream/group_enterprise/sample_event.json index a44035168709..ac732132417f 100644 --- a/packages/google_workspace/data_stream/group_enterprise/sample_event.json +++ b/packages/google_workspace/data_stream/group_enterprise/sample_event.json @@ -1,32 +1,32 @@ { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "21b5c2fc-c221-4241-ac4e-d15195bcd5a7", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "9405bd92-9ad6-4271-9f8f-10d1dc3bae86", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.group_enterprise", - "namespace": "ep", + "namespace": "26916", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "add_info_setting", "agent_id_status": "verified", - "created": "2023-04-06T05:11:56.148Z", + "created": "2024-08-01T21:57:32.529Z", "dataset": "google_workspace.group_enterprise", "id": "1", - "ingested": "2023-04-06T05:12:00Z", + "ingested": "2024-08-01T21:57:44Z", "kind": [ "event" ], @@ -104,6 +104,18 @@ ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -124,4 +136,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/groups/sample_event.json b/packages/google_workspace/data_stream/groups/sample_event.json index bb190208c847..b0adc585ea86 100644 --- a/packages/google_workspace/data_stream/groups/sample_event.json +++ b/packages/google_workspace/data_stream/groups/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2022-05-04T15:04:05.000Z", "agent": { - "ephemeral_id": "3682fa70-8865-4dad-a9fa-d2f1fc4ddd29", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "786aaf54-461f-4190-adaf-05ab3174ad01", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.groups", - "namespace": "ep", + "namespace": "35359", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "change_acl_permission", @@ -26,10 +26,10 @@ "category": [ "iam" ], - "created": "2023-04-06T05:12:41.726Z", + "created": "2024-08-01T21:58:26.973Z", "dataset": "google_workspace.groups", "id": "1", - "ingested": "2023-04-06T05:12:45Z", + "ingested": "2024-08-01T21:58:38Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"change_acl_permission\",\"parameters\":[{\"name\":\"acl_permission\",\"value\":\"can_add_members\"},{\"name\":\"group_email\",\"value\":\"group@example.com\"},{\"multiValue\":[\"managers\",\"members\"],\"name\":\"new_value_repeated\"},{\"multiValue\":[\"managers\"],\"name\":\"old_value_repeated\"}],\"type\":\"acl_change\"},\"id\":{\"applicationName\":\"groups\",\"customerId\":\"1\",\"time\":\"2022-05-04T15:04:05Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "groups", @@ -111,4 +111,4 @@ } } } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/login/sample_event.json b/packages/google_workspace/data_stream/login/sample_event.json index 3e94660667cb..5af8723bfb85 100644 --- a/packages/google_workspace/data_stream/login/sample_event.json +++ b/packages/google_workspace/data_stream/login/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2022-05-04T15:04:05.000Z", "agent": { - "ephemeral_id": "f2e19575-53b7-4564-ad62-e91a350870bf", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "8d5b6a07-b1e1-4397-982f-9223504ae534", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.login", - "namespace": "ep", + "namespace": "61171", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "account_disabled_password_leak", @@ -26,10 +26,10 @@ "category": [ "iam" ], - "created": "2023-04-06T05:13:38.847Z", + "created": "2024-08-01T21:59:36.067Z", "dataset": "google_workspace.login", "id": "1", - "ingested": "2023-04-06T05:13:42Z", + "ingested": "2024-08-01T21:59:48Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"account_disabled_password_leak\",\"parameters\":[{\"name\":\"affected_email_address\",\"value\":\"foo@elastic.co\"}],\"type\":\"account_warning\"},\"id\":{\"applicationName\":\"login\",\"customerId\":\"1\",\"time\":\"2022-05-04T15:04:05Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "login", @@ -98,4 +98,4 @@ "name": "foo" } } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/rules/sample_event.json b/packages/google_workspace/data_stream/rules/sample_event.json index 469564034a03..79dceb524d40 100644 --- a/packages/google_workspace/data_stream/rules/sample_event.json +++ b/packages/google_workspace/data_stream/rules/sample_event.json @@ -1,32 +1,32 @@ { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "76380d39-8099-428b-b019-cf45b160978a", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "5c6a871e-fa71-4f56-b30d-46922ca4e836", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.rules", - "namespace": "ep", + "namespace": "88921", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "rule_match", "agent_id_status": "verified", - "created": "2023-04-06T05:14:36.077Z", + "created": "2024-08-01T22:00:43.194Z", "dataset": "google_workspace.rules", "id": "1", - "ingested": "2023-04-06T05:14:40Z", + "ingested": "2024-08-01T22:00:55Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"rule_match\",\"parameters\":[{\"boolValue\":\"true\",\"name\":\"has_alert\"},{\"name\":\"actor_ip_address\",\"value\":\"127.0.0.0\"},{\"intValue\":\"1234\",\"name\":\"resource_recipients_omitted_count\"},{\"multiValue\":[\"managers\"],\"name\":\"rule_name\"},{\"multiIntValue\":[\"12\"],\"name\":\"rule_id\"}],\"type\":\"rule_match_type\"},\"id\":{\"applicationName\":\"rules\",\"customerId\":\"1\",\"time\":\"2020-10-02T15:00:00Z\",\"uniqueQualifier\":1},\"ipAddress\":\"67.43.156.13\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "rules" @@ -130,4 +130,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/saml/sample_event.json b/packages/google_workspace/data_stream/saml/sample_event.json index 3b3ff5cb0cd7..3d585255026b 100644 --- a/packages/google_workspace/data_stream/saml/sample_event.json +++ b/packages/google_workspace/data_stream/saml/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2021-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "94f52f68-1f24-47ca-8fa8-c3aa5a8c1840", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "21bc9c22-c07c-4d9e-be7d-d847757ace52", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.saml", - "namespace": "ep", + "namespace": "42924", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "login_failure", @@ -27,10 +27,10 @@ "authentication", "session" ], - "created": "2023-04-06T05:15:31.203Z", + "created": "2024-08-01T22:01:50.429Z", "dataset": "google_workspace.saml", "id": "1", - "ingested": "2023-04-06T05:15:35Z", + "ingested": "2024-08-01T22:02:02Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"login_failure\",\"parameters\":[{\"name\":\"application_name\",\"value\":\"app\"},{\"name\":\"failure_type\",\"value\":\"failure_app_not_configured_for_user\"},{\"name\":\"initiated_by\",\"value\":\"idp\"},{\"name\":\"orgunit_path\",\"value\":\"ounit\"},{\"name\":\"saml_second_level_status_code\",\"value\":\"SUCCESS_URI\"},{\"name\":\"saml_status_code\",\"value\":\"SUCCESS_URI\"}],\"type\":\"login\"},\"id\":{\"applicationName\":\"saml\",\"customerId\":\"1\",\"time\":\"2021-10-02T15:00:00Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "outcome": "failure", @@ -99,4 +99,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/token/_dev/test/pipeline/test-token.log-expected.json b/packages/google_workspace/data_stream/token/_dev/test/pipeline/test-token.log-expected.json index eca2524eb329..be072d532a26 100644 --- a/packages/google_workspace/data_stream/token/_dev/test/pipeline/test-token.log-expected.json +++ b/packages/google_workspace/data_stream/token/_dev/test/pipeline/test-token.log-expected.json @@ -113,6 +113,24 @@ ] }, "source": { + "as": { + "number": 29518, + "organization": { + "name": "Bredband2 AB" + } + }, + "geo": { + "city_name": "Linköping", + "continent_name": "Europe", + "country_iso_code": "SE", + "country_name": "Sweden", + "location": { + "lat": 58.4167, + "lon": 15.6167 + }, + "region_iso_code": "SE-E", + "region_name": "Östergötland County" + }, "ip": "89.160.20.112", "user": { "domain": "bar.com", diff --git a/packages/google_workspace/data_stream/token/elasticsearch/ingest_pipeline/default.yml b/packages/google_workspace/data_stream/token/elasticsearch/ingest_pipeline/default.yml index 0686154ed56e..8040ee285454 100644 --- a/packages/google_workspace/data_stream/token/elasticsearch/ingest_pipeline/default.yml +++ b/packages/google_workspace/data_stream/token/elasticsearch/ingest_pipeline/default.yml @@ -121,6 +121,26 @@ processors: - append: field: error.message value: '{{{_ingest.on_failure_message}}}' + - geoip: + field: source.ip + target_field: source.geo + ignore_missing: true + - geoip: + database_file: GeoLite2-ASN.mmdb + field: source.ip + target_field: source.as + properties: + - asn + - organization_name + ignore_missing: true + - rename: + field: source.as.asn + target_field: source.as.number + ignore_missing: true + - rename: + field: source.as.organization_name + target_field: source.as.organization.name + ignore_missing: true - set: field: google_workspace.ip_address copy_from: source.ip diff --git a/packages/google_workspace/data_stream/token/sample_event.json b/packages/google_workspace/data_stream/token/sample_event.json index 3fb871dcb8cd..0ec2828b30a0 100644 --- a/packages/google_workspace/data_stream/token/sample_event.json +++ b/packages/google_workspace/data_stream/token/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "8ae7e918-f372-4ff6-9035-9b1c94166ca5", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "22e6154c-9c10-4cb9-b17b-41f429c22724", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.token", - "namespace": "ep", + "namespace": "16418", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "authorize", @@ -26,10 +26,10 @@ "category": [ "iam" ], - "created": "2023-04-06T05:16:28.050Z", + "created": "2024-08-01T22:03:00.693Z", "dataset": "google_workspace.token", "id": "1", - "ingested": "2023-04-06T05:16:32Z", + "ingested": "2024-08-01T22:03:12Z", "kind": [ "event" ], @@ -138,6 +138,18 @@ ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -158,4 +170,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/data_stream/user_accounts/sample_event.json b/packages/google_workspace/data_stream/user_accounts/sample_event.json index 09714d754df3..fe65d4c6302a 100644 --- a/packages/google_workspace/data_stream/user_accounts/sample_event.json +++ b/packages/google_workspace/data_stream/user_accounts/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "6b64a6b8-ae63-4d23-878e-158d4a808a63", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "65179230-7468-4b71-9b2b-a2cd4f778866", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.user_accounts", - "namespace": "ep", + "namespace": "10103", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "2sv_disable", @@ -26,10 +26,10 @@ "category": [ "iam" ], - "created": "2023-04-06T05:17:15.116Z", + "created": "2024-08-01T22:03:58.977Z", "dataset": "google_workspace.user_accounts", "id": "1", - "ingested": "2023-04-06T05:17:19Z", + "ingested": "2024-08-01T22:04:10Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"2sv_disable\",\"type\":\"2sv_change\"},\"id\":{\"applicationName\":\"user_accounts\",\"customerId\":\"1\",\"time\":\"2020-10-02T15:00:00Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "user_accounts", @@ -90,4 +90,4 @@ "id": "1", "name": "foo" } -} +} \ No newline at end of file diff --git a/packages/google_workspace/docs/README.md b/packages/google_workspace/docs/README.md index d08a5fc059c8..e6a950836bc9 100644 --- a/packages/google_workspace/docs/README.md +++ b/packages/google_workspace/docs/README.md @@ -150,24 +150,24 @@ An example event for `saml` looks as following: { "@timestamp": "2021-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "94f52f68-1f24-47ca-8fa8-c3aa5a8c1840", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "21bc9c22-c07c-4d9e-be7d-d847757ace52", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.saml", - "namespace": "ep", + "namespace": "42924", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "login_failure", @@ -176,10 +176,10 @@ An example event for `saml` looks as following: "authentication", "session" ], - "created": "2023-04-06T05:15:31.203Z", + "created": "2024-08-01T22:01:50.429Z", "dataset": "google_workspace.saml", "id": "1", - "ingested": "2023-04-06T05:15:35Z", + "ingested": "2024-08-01T22:02:02Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"login_failure\",\"parameters\":[{\"name\":\"application_name\",\"value\":\"app\"},{\"name\":\"failure_type\",\"value\":\"failure_app_not_configured_for_user\"},{\"name\":\"initiated_by\",\"value\":\"idp\"},{\"name\":\"orgunit_path\",\"value\":\"ounit\"},{\"name\":\"saml_second_level_status_code\",\"value\":\"SUCCESS_URI\"},{\"name\":\"saml_status_code\",\"value\":\"SUCCESS_URI\"}],\"type\":\"login\"},\"id\":{\"applicationName\":\"saml\",\"customerId\":\"1\",\"time\":\"2021-10-02T15:00:00Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "outcome": "failure", @@ -249,7 +249,6 @@ An example event for `saml` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -287,24 +286,24 @@ An example event for `user_accounts` looks as following: { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "6b64a6b8-ae63-4d23-878e-158d4a808a63", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "65179230-7468-4b71-9b2b-a2cd4f778866", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.user_accounts", - "namespace": "ep", + "namespace": "10103", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "2sv_disable", @@ -312,10 +311,10 @@ An example event for `user_accounts` looks as following: "category": [ "iam" ], - "created": "2023-04-06T05:17:15.116Z", + "created": "2024-08-01T22:03:58.977Z", "dataset": "google_workspace.user_accounts", "id": "1", - "ingested": "2023-04-06T05:17:19Z", + "ingested": "2024-08-01T22:04:10Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"2sv_disable\",\"type\":\"2sv_change\"},\"id\":{\"applicationName\":\"user_accounts\",\"customerId\":\"1\",\"time\":\"2020-10-02T15:00:00Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "user_accounts", @@ -377,7 +376,6 @@ An example event for `user_accounts` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -410,24 +408,24 @@ An example event for `login` looks as following: { "@timestamp": "2022-05-04T15:04:05.000Z", "agent": { - "ephemeral_id": "f2e19575-53b7-4564-ad62-e91a350870bf", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "8d5b6a07-b1e1-4397-982f-9223504ae534", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.login", - "namespace": "ep", + "namespace": "61171", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "account_disabled_password_leak", @@ -435,10 +433,10 @@ An example event for `login` looks as following: "category": [ "iam" ], - "created": "2023-04-06T05:13:38.847Z", + "created": "2024-08-01T21:59:36.067Z", "dataset": "google_workspace.login", "id": "1", - "ingested": "2023-04-06T05:13:42Z", + "ingested": "2024-08-01T21:59:48Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"account_disabled_password_leak\",\"parameters\":[{\"name\":\"affected_email_address\",\"value\":\"foo@elastic.co\"}],\"type\":\"account_warning\"},\"id\":{\"applicationName\":\"login\",\"customerId\":\"1\",\"time\":\"2022-05-04T15:04:05Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "login", @@ -508,7 +506,6 @@ An example event for `login` looks as following: } } } - ``` **Exported fields** @@ -548,32 +545,32 @@ An example event for `rules` looks as following: { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "76380d39-8099-428b-b019-cf45b160978a", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "5c6a871e-fa71-4f56-b30d-46922ca4e836", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.rules", - "namespace": "ep", + "namespace": "88921", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "rule_match", "agent_id_status": "verified", - "created": "2023-04-06T05:14:36.077Z", + "created": "2024-08-01T22:00:43.194Z", "dataset": "google_workspace.rules", "id": "1", - "ingested": "2023-04-06T05:14:40Z", + "ingested": "2024-08-01T22:00:55Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"rule_match\",\"parameters\":[{\"boolValue\":\"true\",\"name\":\"has_alert\"},{\"name\":\"actor_ip_address\",\"value\":\"127.0.0.0\"},{\"intValue\":\"1234\",\"name\":\"resource_recipients_omitted_count\"},{\"multiValue\":[\"managers\"],\"name\":\"rule_name\"},{\"multiIntValue\":[\"12\"],\"name\":\"rule_id\"}],\"type\":\"rule_match_type\"},\"id\":{\"applicationName\":\"rules\",\"customerId\":\"1\",\"time\":\"2020-10-02T15:00:00Z\",\"uniqueQualifier\":1},\"ipAddress\":\"67.43.156.13\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "rules" @@ -678,7 +675,6 @@ An example event for `rules` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -754,24 +750,24 @@ An example event for `admin` looks as following: { "@timestamp": "2022-04-04T15:04:05.000Z", "agent": { - "ephemeral_id": "416ea592-bbd6-4286-8950-b30981d4e0dd", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "e64e710c-e02b-4997-bb7e-83b936dd6aa5", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.admin", - "namespace": "ep", + "namespace": "62273", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "CHANGE_APPLICATION_SETTING", @@ -780,10 +776,10 @@ An example event for `admin` looks as following: "iam", "configuration" ], - "created": "2023-04-06T05:06:41.510Z", + "created": "2024-08-01T21:51:15.529Z", "dataset": "google_workspace.admin", "id": "1", - "ingested": "2023-04-06T05:06:45Z", + "ingested": "2024-08-01T21:51:27Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"CHANGE_APPLICATION_SETTING\",\"parameters\":[{\"name\":\"APPLICATION_EDITION\",\"value\":\"basic\"},{\"name\":\"APPLICATION_NAME\",\"value\":\"drive\"},{\"name\":\"GROUP_EMAIL\",\"value\":\"group@example.com\"},{\"name\":\"NEW_VALUE\",\"value\":\"new\"},{\"name\":\"OLD_VALUE\",\"value\":\"old\"},{\"name\":\"ORG_UNIT_NAME\",\"value\":\"org\"},{\"name\":\"SETTING_NAME\",\"value\":\"setting\"}],\"type\":\"APPLICATION_SETTINGS\"},\"id\":{\"applicationName\":\"admin\",\"customerId\":\"1\",\"time\":\"2022-04-04T15:04:05Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "admin", @@ -871,7 +867,6 @@ An example event for `admin` looks as following: } } } - ``` **Exported fields** @@ -985,24 +980,24 @@ An example event for `drive` looks as following: { "@timestamp": "2022-05-04T15:04:05.000Z", "agent": { - "ephemeral_id": "35ba02b7-1bc6-4100-967c-ea2fc9ea67d0", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "afd0c297-d853-427a-96bc-20af38e5b145", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.drive", - "namespace": "ep", + "namespace": "99832", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "add_to_folder", @@ -1010,10 +1005,10 @@ An example event for `drive` looks as following: "category": [ "file" ], - "created": "2023-04-06T05:10:10.985Z", + "created": "2024-08-01T21:55:29.295Z", "dataset": "google_workspace.drive", "id": "1", - "ingested": "2023-04-06T05:10:15Z", + "ingested": "2024-08-01T21:55:41Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"add_to_folder\",\"parameters\":[{\"boolValue\":false,\"name\":\"billable\"},{\"name\":\"destination_folder_id\",\"value\":\"1234\"},{\"name\":\"destination_folder_title\",\"value\":\"folder title\"},{\"name\":\"doc_id\",\"value\":\"1234\"},{\"name\":\"doc_title\",\"value\":\"document title\"},{\"name\":\"doc_type\",\"value\":\"document\"},{\"name\":\"originating_app_id\",\"value\":\"1234\"},{\"name\":\"owner\",\"value\":\"owner@example.com\"},{\"boolValue\":false,\"name\":\"owner_is_shared_drive\"},{\"boolValue\":true,\"name\":\"primary_event\"},{\"name\":\"visibility\",\"value\":\"people_with_link\"}],\"type\":\"access\"},\"id\":{\"applicationName\":\"drive\",\"customerId\":\"1\",\"time\":\"2022-05-04T15:04:05Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "drive", @@ -1096,7 +1091,6 @@ An example event for `drive` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -1156,24 +1150,24 @@ An example event for `groups` looks as following: { "@timestamp": "2022-05-04T15:04:05.000Z", "agent": { - "ephemeral_id": "3682fa70-8865-4dad-a9fa-d2f1fc4ddd29", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "786aaf54-461f-4190-adaf-05ab3174ad01", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.groups", - "namespace": "ep", + "namespace": "35359", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "change_acl_permission", @@ -1181,10 +1175,10 @@ An example event for `groups` looks as following: "category": [ "iam" ], - "created": "2023-04-06T05:12:41.726Z", + "created": "2024-08-01T21:58:26.973Z", "dataset": "google_workspace.groups", "id": "1", - "ingested": "2023-04-06T05:12:45Z", + "ingested": "2024-08-01T21:58:38Z", "kind": "event", "original": "{\"actor\":{\"callerType\":\"USER\",\"email\":\"foo@bar.com\",\"profileId\":1},\"events\":{\"name\":\"change_acl_permission\",\"parameters\":[{\"name\":\"acl_permission\",\"value\":\"can_add_members\"},{\"name\":\"group_email\",\"value\":\"group@example.com\"},{\"multiValue\":[\"managers\",\"members\"],\"name\":\"new_value_repeated\"},{\"multiValue\":[\"managers\"],\"name\":\"old_value_repeated\"}],\"type\":\"acl_change\"},\"id\":{\"applicationName\":\"groups\",\"customerId\":\"1\",\"time\":\"2022-05-04T15:04:05Z\",\"uniqueQualifier\":1},\"ipAddress\":\"98.235.162.24\",\"kind\":\"admin#reports#activity\",\"ownerDomain\":\"elastic.com\"}", "provider": "groups", @@ -1267,7 +1261,6 @@ An example event for `groups` looks as following: } } } - ``` **Exported fields** @@ -1310,24 +1303,24 @@ An example event for `alert` looks as following: { "@timestamp": "2022-07-01T10:49:29.436Z", "agent": { - "ephemeral_id": "c184a610-116e-4d73-8068-204b91173c48", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "245194a8-7787-44f7-ac57-201f8c49a9a0", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.alert", - "namespace": "ep", + "namespace": "62301", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "email": { "attachments": { @@ -1366,11 +1359,11 @@ An example event for `alert` looks as following: "threat", "malware" ], - "created": "2023-04-06T05:07:37.780Z", + "created": "2024-08-01T21:52:26.588Z", "dataset": "google_workspace.alert", "end": "2022-07-01T10:47:04.530Z", "id": "91840a82-3af0-46d7-95ec-625c1cf0c3f7", - "ingested": "2023-04-06T05:07:41Z", + "ingested": "2024-08-01T21:52:38Z", "kind": "alert", "original": "{\"alertId\":\"91840a82-3af0-46d7-95ec-625c1cf0c3f7\",\"createTime\":\"2022-07-01T10:49:29.436394Z\",\"customerId\":\"02umwv6u\",\"data\":{\"@type\":\"type.googleapis.com/google.apps.alertcenter.type.MailPhishing\",\"domainId\":{\"customerPrimaryDomain\":\"example.com\"},\"isInternal\":true,\"maliciousEntity\":{\"displayName\":\"string\",\"entity\":{\"displayName\":\"example\",\"emailAddress\":\"example@example.com\"},\"fromHeader\":\"header@example.com\"},\"messages\":[{\"attachmentsSha256Hash\":[\"50d858e0985ecc7f60418aaf0cc5ab587f42c2570a884095a9e8ccacd0f6545c\",\"228b48a56dbc2ecf10393227ac9c9dc943881fd7a55452e12a09107476bef2b2\"],\"date\":\"2022-07-01T10:38:13.194711Z\",\"md5HashMessageBody\":\"d29343907090dff4cec4a9a0efb80d20\",\"md5HashSubject\":\"a3708f8228384d932237f85980ff8283\",\"messageBodySnippet\":\" hi greetings from sales \",\"messageId\":\"decedih843@example.com\",\"recipient\":\"example@example.com\",\"subjectText\":\"Sales\"},{\"attachmentsSha256Hash\":[\"5fb1679e08674059b72e271d8902c11a127bb5301b055dc77fa03932ada56a56\"],\"md5HashMessageBody\":\"d29343907090dff4cec4a9a0efb80d20\",\"md5HashSubject\":\"a3708f8228384d932237f85980ff8283\",\"messageBodySnippet\":\" hi greetings \",\"messageId\":\"decedih@example.com\",\"recipient\":\"example@example.com\",\"subjectText\":\"RE: Example salesorderspca JSON request\"}],\"systemActionType\":\"NO_OPERATION\"},\"deleted\":false,\"endTime\":\"2022-07-01T10:47:04.530834Z\",\"etag\":\"wF2Ix2DWDv8=\",\"metadata\":{\"alertId\":\"91840a82-3af0-46d7-95ec-625c1cf0c3f7\",\"assignee\":\"example@example.com\",\"customerId\":\"02umwv6u\",\"etag\":\"wF2Ix2DWDv8=\",\"severity\":\"HIGH\",\"status\":\"NOT_STARTED\",\"updateTime\":\"2022-07-01T10:49:29.436394Z\"},\"securityInvestigationToolLink\":\"string\",\"source\":\"Gmail phishing\",\"startTime\":\"2022-07-01T10:38:13.194711Z\",\"type\":\"User reported phishing\",\"updateTime\":\"2022-07-01T10:49:29.436394Z\"}", "start": "2022-07-01T10:38:13.194Z", @@ -1489,7 +1482,6 @@ An example event for `alert` looks as following: "name": "example" } } - ``` **Exported fields** @@ -1626,32 +1618,32 @@ An example event for `device` looks as following: { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "a5e4244f-eef5-477a-a2e3-316e6db7b805", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "9875ab07-088d-4ff3-8cfe-daa3a497cf78", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.device", - "namespace": "ep", + "namespace": "89096", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "APPLICATION_EVENT", "agent_id_status": "verified", - "created": "2023-04-06T05:09:25.555Z", + "created": "2024-08-01T21:54:32.984Z", "dataset": "google_workspace.device", "id": "1", - "ingested": "2023-04-06T05:09:29Z", + "ingested": "2024-08-01T21:54:44Z", "kind": [ "event" ], @@ -1776,6 +1768,18 @@ An example event for `device` looks as following: ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -1800,7 +1804,6 @@ An example event for `device` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -1885,32 +1888,32 @@ An example event for `group_enterprise` looks as following: { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "21b5c2fc-c221-4241-ac4e-d15195bcd5a7", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "9405bd92-9ad6-4271-9f8f-10d1dc3bae86", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.group_enterprise", - "namespace": "ep", + "namespace": "26916", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "add_info_setting", "agent_id_status": "verified", - "created": "2023-04-06T05:11:56.148Z", + "created": "2024-08-01T21:57:32.529Z", "dataset": "google_workspace.group_enterprise", "id": "1", - "ingested": "2023-04-06T05:12:00Z", + "ingested": "2024-08-01T21:57:44Z", "kind": [ "event" ], @@ -1988,6 +1991,18 @@ An example event for `group_enterprise` looks as following: ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -2009,7 +2024,6 @@ An example event for `group_enterprise` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -2063,24 +2077,24 @@ An example event for `token` looks as following: { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "8ae7e918-f372-4ff6-9035-9b1c94166ca5", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "22e6154c-9c10-4cb9-b17b-41f429c22724", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.token", - "namespace": "ep", + "namespace": "16418", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "authorize", @@ -2088,10 +2102,10 @@ An example event for `token` looks as following: "category": [ "iam" ], - "created": "2023-04-06T05:16:28.050Z", + "created": "2024-08-01T22:03:00.693Z", "dataset": "google_workspace.token", "id": "1", - "ingested": "2023-04-06T05:16:32Z", + "ingested": "2024-08-01T22:03:12Z", "kind": [ "event" ], @@ -2200,6 +2214,18 @@ An example event for `token` looks as following: ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -2221,7 +2247,6 @@ An example event for `token` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -2270,32 +2295,32 @@ An example event for `access_transparency` looks as following: { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "2fe6b5c7-2099-40a4-b604-3307a3659e18", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "e3f2296a-a4a2-4d03-9105-cee5b37c1408", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.access_transparency", - "namespace": "ep", + "namespace": "83912", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "APPLICATION_EVENT", "agent_id_status": "verified", - "created": "2023-04-06T05:05:54.066Z", + "created": "2024-08-01T21:50:19.274Z", "dataset": "google_workspace.access_transparency", "id": "1", - "ingested": "2023-04-06T05:05:58Z", + "ingested": "2024-08-01T21:50:31Z", "kind": [ "event" ], @@ -2367,6 +2392,18 @@ An example event for `access_transparency` looks as following: ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -2388,7 +2425,6 @@ An example event for `access_transparency` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -2440,32 +2476,32 @@ An example event for `context_aware_access` looks as following: { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "71645243-c58a-4eed-b3ed-d42137115d43", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "6fde0a21-1448-4531-a5c9-42751772e3a7", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.context_aware_access", - "namespace": "ep", + "namespace": "14973", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "APPLICATION_EVENT", "agent_id_status": "verified", - "created": "2023-04-06T05:08:37.473Z", + "created": "2024-08-01T21:53:36.823Z", "dataset": "google_workspace.context_aware_access", "id": "1", - "ingested": "2023-04-06T05:08:41Z", + "ingested": "2024-08-01T21:53:48Z", "kind": [ "event" ], @@ -2531,6 +2567,18 @@ An example event for `context_aware_access` looks as following: ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -2552,7 +2600,6 @@ An example event for `context_aware_access` looks as following: "name": "foo" } } - ``` **Exported fields** @@ -2599,32 +2646,32 @@ An example event for `gcp` looks as following: { "@timestamp": "2020-10-02T15:00:00.000Z", "agent": { - "ephemeral_id": "6a14d2e3-52cf-4cc4-af8d-ec081ca76a46", - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "ephemeral_id": "73bd4e11-03bc-40dc-a0bc-1d9ca1aaa853", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.6.0" + "version": "8.13.0" }, "data_stream": { "dataset": "google_workspace.gcp", - "namespace": "ep", + "namespace": "65228", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f7070b0b-fbce-4ea8-a8b4-9591ca3f2b72", + "id": "c43b6bca-79fe-44a7-b837-da9db4bf7be4", "snapshot": false, - "version": "8.6.0" + "version": "8.13.0" }, "event": { "action": "IMPORT_SSH_PUBLIC_KEY", "agent_id_status": "verified", - "created": "2023-04-06T05:11:08.661Z", + "created": "2024-08-01T21:56:37.313Z", "dataset": "google_workspace.gcp", "id": "1", - "ingested": "2023-04-06T05:11:12Z", + "ingested": "2024-08-01T21:56:49Z", "kind": [ "event" ], @@ -2681,6 +2728,18 @@ An example event for `gcp` looks as following: ] }, "source": { + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, "ip": "67.43.156.13", "user": { "domain": "bar.com", @@ -2702,7 +2761,6 @@ An example event for `gcp` looks as following: "name": "foo" } } - ``` **Exported fields** diff --git a/packages/google_workspace/manifest.yml b/packages/google_workspace/manifest.yml index 1bbfc62949b6..29f8ff9c9bae 100644 --- a/packages/google_workspace/manifest.yml +++ b/packages/google_workspace/manifest.yml @@ -1,6 +1,6 @@ name: google_workspace title: Google Workspace -version: "2.24.0" +version: "2.25.0" source: license: Elastic-2.0 description: Collect logs from Google Workspace with Elastic Agent. From d455c7960eaeaebe87431ebf2709023c66a56d69 Mon Sep 17 00:00:00 2001 From: Aman <38116245+devamanv@users.noreply.github.com> Date: Mon, 5 Aug 2024 11:51:06 +0530 Subject: [PATCH 21/77] [couchbase] Make changes to separate username/password from host (#10490) --- packages/couchbase/_dev/build/docs/README.md | 4 +++- packages/couchbase/changelog.yml | 5 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../bucket/agent/stream/stream.yml.hbs | 6 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../cache/agent/stream/stream.yml.hbs | 6 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../agent/stream/stream.yml.hbs | 6 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../cluster/agent/stream/stream.yml.hbs | 6 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../agent/stream/stream.yml.hbs | 6 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../miscellaneous/agent/stream/stream.yml.hbs | 6 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../node/agent/stream/stream.yml.hbs | 7 ++++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../query_index/agent/stream/stream.yml.hbs | 6 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../resource/agent/stream/stream.yml.hbs | 6 +++++ .../_dev/test/system/test-default-config.yml | 3 +++ .../xdcr/agent/stream/stream.yml.hbs | 6 +++++ packages/couchbase/docs/README.md | 4 +++- packages/couchbase/manifest.yml | 22 +++++++++++++++++-- 24 files changed, 122 insertions(+), 4 deletions(-) diff --git a/packages/couchbase/_dev/build/docs/README.md b/packages/couchbase/_dev/build/docs/README.md index ef47025b41ff..e33b07d9a596 100644 --- a/packages/couchbase/_dev/build/docs/README.md +++ b/packages/couchbase/_dev/build/docs/README.md @@ -33,10 +33,12 @@ You need Elasticsearch for storing and searching your data and Kibana for visual In order to ingest data from Couchbase, you must know the host(s) and the administrator credentials for the Couchbase instance(s). -Host Configuration Format: `http[s]://username:password@host:port` +Host Configuration Format: `http[s]://[username:password@]hostname[:port]` Example Host Configuration: `http://Administrator:password@localhost:8091` +> Note: To mask the password in the Hosts connection string, remove the username and password from the string. Then, set up the Hosts field with only the host address and port (`localhost:5984` in the example) and any additional connection parameters. Finally, use the `username` and `password` fields under advanced options for configuration. + ## Setup In order to collect data using [Sync Gateway](https://www.couchbase.com/products/sync-gateway), follow the steps given below: diff --git a/packages/couchbase/changelog.yml b/packages/couchbase/changelog.yml index c0bbbf8c174e..04af9ba385c6 100644 --- a/packages/couchbase/changelog.yml +++ b/packages/couchbase/changelog.yml @@ -1,3 +1,8 @@ +- version: "1.8.0" + changes: + - description: Add separate configuration options username and password, and enable `secret` for the password field. + type: enhancement + link: https://github.com/elastic/integrations/pull/10490 - version: "1.7.0" changes: - description: ECS version updated to 8.11.0. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/couchbase/data_stream/bucket/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/bucket/_dev/test/system/test-default-config.yml index 55501824ba79..fe8bc6e4c88f 100644 --- a/packages/couchbase/data_stream/bucket/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/bucket/_dev/test/system/test-default-config.yml @@ -1,6 +1,9 @@ vars: host_couchbase: - http://Administrator:password@{{Hostname}}:{{Ports}} + - http://{{Hostname}}:{{Ports}} + username: Administrator + password: password input: http/metrics data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/bucket/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/bucket/agent/stream/stream.yml.hbs index 8781f0256b46..cf432cac97ac 100644 --- a/packages/couchbase/data_stream/bucket/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/bucket/agent/stream/stream.yml.hbs @@ -8,6 +8,12 @@ hosts: ssl: {{ssl_couchbase}} {{/if}} +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} period: {{period}} json.is_array: true tags: diff --git a/packages/couchbase/data_stream/cache/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/cache/_dev/test/system/test-default-config.yml index 1356123304f2..7d903121221d 100644 --- a/packages/couchbase/data_stream/cache/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/cache/_dev/test/system/test-default-config.yml @@ -2,6 +2,9 @@ service: exporter vars: host_sync_gateway: - http://Administrator:password@{{Hostname}}:{{Port[0]}} + - http://{{Hostname}}:{{Port[0]}} + username: Administrator + password: password input: prometheus/metrics data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/cache/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/cache/agent/stream/stream.yml.hbs index 83da7e330502..e20b38266067 100644 --- a/packages/couchbase/data_stream/cache/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/cache/agent/stream/stream.yml.hbs @@ -7,6 +7,12 @@ period: {{period}} metrics_path: /metrics metrics_filters: include: ["sgw_cache*"] +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} {{#if ssl_sync_gateway}} ssl: {{ssl_sync_gateway}} diff --git a/packages/couchbase/data_stream/cbl_replication/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/cbl_replication/_dev/test/system/test-default-config.yml index 1356123304f2..7d903121221d 100644 --- a/packages/couchbase/data_stream/cbl_replication/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/cbl_replication/_dev/test/system/test-default-config.yml @@ -2,6 +2,9 @@ service: exporter vars: host_sync_gateway: - http://Administrator:password@{{Hostname}}:{{Port[0]}} + - http://{{Hostname}}:{{Port[0]}} + username: Administrator + password: password input: prometheus/metrics data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/cbl_replication/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/cbl_replication/agent/stream/stream.yml.hbs index fdf2dd04cb8b..890e7a2e7986 100644 --- a/packages/couchbase/data_stream/cbl_replication/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/cbl_replication/agent/stream/stream.yml.hbs @@ -7,6 +7,12 @@ period: {{period}} metrics_path: /metrics metrics_filters: include: ["sgw_replication*"] +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} {{#if ssl_sync_gateway}} ssl: {{ssl_sync_gateway}} diff --git a/packages/couchbase/data_stream/cluster/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/cluster/_dev/test/system/test-default-config.yml index 55501824ba79..fe8bc6e4c88f 100644 --- a/packages/couchbase/data_stream/cluster/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/cluster/_dev/test/system/test-default-config.yml @@ -1,6 +1,9 @@ vars: host_couchbase: - http://Administrator:password@{{Hostname}}:{{Ports}} + - http://{{Hostname}}:{{Ports}} + username: Administrator + password: password input: http/metrics data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/cluster/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/cluster/agent/stream/stream.yml.hbs index 9ea8685584cf..b622cb4e28c8 100644 --- a/packages/couchbase/data_stream/cluster/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/cluster/agent/stream/stream.yml.hbs @@ -8,6 +8,12 @@ hosts: ssl: {{ssl_couchbase}} {{/if}} +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} period: {{period}} json.is_array: false tags: diff --git a/packages/couchbase/data_stream/database_stats/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/database_stats/_dev/test/system/test-default-config.yml index 1356123304f2..7d903121221d 100644 --- a/packages/couchbase/data_stream/database_stats/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/database_stats/_dev/test/system/test-default-config.yml @@ -2,6 +2,9 @@ service: exporter vars: host_sync_gateway: - http://Administrator:password@{{Hostname}}:{{Port[0]}} + - http://{{Hostname}}:{{Port[0]}} + username: Administrator + password: password input: prometheus/metrics data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/database_stats/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/database_stats/agent/stream/stream.yml.hbs index 94b3971c0e6d..ccd696a2bc4b 100644 --- a/packages/couchbase/data_stream/database_stats/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/database_stats/agent/stream/stream.yml.hbs @@ -7,6 +7,12 @@ period: {{period}} metrics_path: /metrics metrics_filters: include: ["sgw_database*"] +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} {{#if ssl_sync_gateway}} ssl: {{ssl_sync_gateway}} diff --git a/packages/couchbase/data_stream/miscellaneous/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/miscellaneous/_dev/test/system/test-default-config.yml index 1356123304f2..7d903121221d 100644 --- a/packages/couchbase/data_stream/miscellaneous/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/miscellaneous/_dev/test/system/test-default-config.yml @@ -2,6 +2,9 @@ service: exporter vars: host_sync_gateway: - http://Administrator:password@{{Hostname}}:{{Port[0]}} + - http://{{Hostname}}:{{Port[0]}} + username: Administrator + password: password input: prometheus/metrics data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/miscellaneous/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/miscellaneous/agent/stream/stream.yml.hbs index 8ab677eec03c..a3c84ba7c27c 100644 --- a/packages/couchbase/data_stream/miscellaneous/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/miscellaneous/agent/stream/stream.yml.hbs @@ -7,6 +7,12 @@ period: {{period}} metrics_path: /metrics metrics_filters: include: ["sgw_shared_bucket_import*", "sgw_security*", "sgw_gsi_views*", "sgw_delta_sync*"] +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} {{#if ssl_sync_gateway}} ssl: {{ssl_sync_gateway}} diff --git a/packages/couchbase/data_stream/node/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/node/_dev/test/system/test-default-config.yml index ead7497e0245..74f1b0dd8e02 100644 --- a/packages/couchbase/data_stream/node/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/node/_dev/test/system/test-default-config.yml @@ -1,6 +1,9 @@ vars: host_couchbase: - http://Administrator:password@{{Hostname}}:{{Ports}} + - http://{{Hostname}}:{{Ports}} + username: Administrator + password: password input: httpjson data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/node/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/node/agent/stream/stream.yml.hbs index 2fcb2a46ca6a..77e25c9cf1b7 100644 --- a/packages/couchbase/data_stream/node/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/node/agent/stream/stream.yml.hbs @@ -11,6 +11,13 @@ request.ssl: {{ssl_couchbase}} {{/if}} response.split: target: body.nodes +{{#if username}} +{{#if password}} +auth.basic: + user: "{{username}}" + password: "{{password}}" +{{/if}} +{{/if}} tags: {{#if preserve_original_event}} - preserve_original_event diff --git a/packages/couchbase/data_stream/query_index/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/query_index/_dev/test/system/test-default-config.yml index 55501824ba79..fe8bc6e4c88f 100644 --- a/packages/couchbase/data_stream/query_index/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/query_index/_dev/test/system/test-default-config.yml @@ -1,6 +1,9 @@ vars: host_couchbase: - http://Administrator:password@{{Hostname}}:{{Ports}} + - http://{{Hostname}}:{{Ports}} + username: Administrator + password: password input: http/metrics data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/query_index/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/query_index/agent/stream/stream.yml.hbs index fad9d17e0d50..58e5eb257118 100644 --- a/packages/couchbase/data_stream/query_index/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/query_index/agent/stream/stream.yml.hbs @@ -10,6 +10,12 @@ hosts: ssl: {{ssl_couchbase}} {{/if}} +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} period: {{period}} tags: {{#each tags as |tag|}} diff --git a/packages/couchbase/data_stream/resource/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/resource/_dev/test/system/test-default-config.yml index 1356123304f2..7d903121221d 100644 --- a/packages/couchbase/data_stream/resource/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/resource/_dev/test/system/test-default-config.yml @@ -2,6 +2,9 @@ service: exporter vars: host_sync_gateway: - http://Administrator:password@{{Hostname}}:{{Port[0]}} + - http://{{Hostname}}:{{Port[0]}} + username: Administrator + password: password input: prometheus/metrics data_stream: vars: ~ diff --git a/packages/couchbase/data_stream/resource/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/resource/agent/stream/stream.yml.hbs index d53aa80bed1b..3ab6a2785158 100644 --- a/packages/couchbase/data_stream/resource/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/resource/agent/stream/stream.yml.hbs @@ -7,6 +7,12 @@ period: {{period}} metrics_path: /metrics metrics_filters: include: ["sgw_resource_utilization*","go_memstats_last_gc_time_seconds"] +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} {{#if ssl_sync_gateway}} ssl: {{ssl_sync_gateway}} diff --git a/packages/couchbase/data_stream/xdcr/_dev/test/system/test-default-config.yml b/packages/couchbase/data_stream/xdcr/_dev/test/system/test-default-config.yml index dc0dbaa5c845..ecfaea8bdda6 100644 --- a/packages/couchbase/data_stream/xdcr/_dev/test/system/test-default-config.yml +++ b/packages/couchbase/data_stream/xdcr/_dev/test/system/test-default-config.yml @@ -1,6 +1,9 @@ vars: host_couchbase: - http://Administrator:password@{{Hostname}}:{{Ports}} + - http://{{Hostname}}:{{Ports}} + username: Administrator + password: password input: http/metrics data_stream: vars: diff --git a/packages/couchbase/data_stream/xdcr/agent/stream/stream.yml.hbs b/packages/couchbase/data_stream/xdcr/agent/stream/stream.yml.hbs index b2c20173c71c..f47a2ce6f877 100644 --- a/packages/couchbase/data_stream/xdcr/agent/stream/stream.yml.hbs +++ b/packages/couchbase/data_stream/xdcr/agent/stream/stream.yml.hbs @@ -10,6 +10,12 @@ hosts: ssl: {{ssl_couchbase}} {{/if}} +{{#if username}} +username: {{username}} +{{/if}} +{{#if password}} +password: {{password}} +{{/if}} period: {{period}} tags: {{#each tags as |tag|}} diff --git a/packages/couchbase/docs/README.md b/packages/couchbase/docs/README.md index cb25f5e3519a..7a4c849217b7 100644 --- a/packages/couchbase/docs/README.md +++ b/packages/couchbase/docs/README.md @@ -33,10 +33,12 @@ You need Elasticsearch for storing and searching your data and Kibana for visual In order to ingest data from Couchbase, you must know the host(s) and the administrator credentials for the Couchbase instance(s). -Host Configuration Format: `http[s]://username:password@host:port` +Host Configuration Format: `http[s]://[username:password@]hostname[:port]` Example Host Configuration: `http://Administrator:password@localhost:8091` +> Note: To mask the password in the Hosts connection string, remove the username and password from the string. Then, set up the Hosts field with only the host address and port (`localhost:5984` in the example) and any additional connection parameters. Finally, use the `username` and `password` fields under advanced options for configuration. + ## Setup In order to collect data using [Sync Gateway](https://www.couchbase.com/products/sync-gateway), follow the steps given below: diff --git a/packages/couchbase/manifest.yml b/packages/couchbase/manifest.yml index df7ca87bea23..986217fd3020 100644 --- a/packages/couchbase/manifest.yml +++ b/packages/couchbase/manifest.yml @@ -1,7 +1,7 @@ -format_version: "3.0.0" +format_version: "3.0.2" name: couchbase title: Couchbase -version: "1.7.0" +version: "1.8.0" description: Collect metrics from Couchbase databases with Elastic Agent. type: integration categories: @@ -44,6 +44,15 @@ vars: description: "Hosts for Couchbase metrics (Format: `http[s]://[username:password@]hostname[:port]`).\nNote: For Couchbase `node` metrics, the metrics would be fetched from the first host only and the rest of the hosts will be ignored." default: - http://username:password@localhost:8091 + - name: username + type: text + title: Username + show_user: true + - name: password + type: password + title: Password + secret: true + show_user: true - name: ssl_couchbase type: yaml title: SSL Configuration for Couchbase hosts @@ -102,6 +111,15 @@ policy_templates: description: "Hosts for Sync Gateway prometheus exporter (Format: `http[s]://[username:password@]hostname[:port]`)." default: - http://username:password@localhost:9421 + - name: username + type: text + title: Username + show_user: false + - name: password + type: password + title: Password + secret: true + show_user: false - name: ssl_sync_gateway type: yaml title: SSL Configuration for Sync Gateway prometheus exporter hosts From 311be51ab6a3a39ccdd4f59391ed35458330125e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?R=C3=B4mulo=20Farias?= Date: Mon, 5 Aug 2024 09:55:48 +0200 Subject: [PATCH 22/77] Add related.entities to asset inventory (#10688) --- packages/cloud_asset_inventory/changelog.yml | 5 +++++ .../data_stream/asset_inventory/fields/related.yml | 5 +++++ packages/cloud_asset_inventory/manifest.yml | 2 +- 3 files changed, 11 insertions(+), 1 deletion(-) create mode 100644 packages/cloud_asset_inventory/data_stream/asset_inventory/fields/related.yml diff --git a/packages/cloud_asset_inventory/changelog.yml b/packages/cloud_asset_inventory/changelog.yml index 7a1dba8dd563..c7bea33657d9 100644 --- a/packages/cloud_asset_inventory/changelog.yml +++ b/packages/cloud_asset_inventory/changelog.yml @@ -1,6 +1,11 @@ # newer versions go on top # version map: # 0.1.x - 8.15.x +- version: "0.1.6" + changes: + - description: Add related.entities field + type: enhancement + link: https://github.com/elastic/integrations/pull/10688 - version: "0.1.5" changes: - description: Add Azure Asset Inventory diff --git a/packages/cloud_asset_inventory/data_stream/asset_inventory/fields/related.yml b/packages/cloud_asset_inventory/data_stream/asset_inventory/fields/related.yml new file mode 100644 index 000000000000..c1af043483ab --- /dev/null +++ b/packages/cloud_asset_inventory/data_stream/asset_inventory/fields/related.yml @@ -0,0 +1,5 @@ +- name: related + type: group + fields: + - name: entities + type: keyword \ No newline at end of file diff --git a/packages/cloud_asset_inventory/manifest.yml b/packages/cloud_asset_inventory/manifest.yml index c4dc913624a3..b52c34afaad7 100644 --- a/packages/cloud_asset_inventory/manifest.yml +++ b/packages/cloud_asset_inventory/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: cloud_asset_inventory title: "Cloud Asset Inventory" -version: "0.1.5" +version: "0.1.6" source: license: "Elastic-2.0" description: "Discover and Create Cloud Assets Inventory" From 8d5a1c37fe1c2087d3279a9558e81f45f91d46d0 Mon Sep 17 00:00:00 2001 From: Maurizio Branca Date: Mon, 5 Aug 2024 10:13:25 +0200 Subject: [PATCH 23/77] Azure Logs: Expand the integration docs adding a section for Event Hub partitions (#10583) Extend the Azure Logs integration docs, adding a section dedicated to setting up event hub partitions. The existing documentation didn't cover event hub partitions, leaving the responsibility of reading the Microsoft documentation. This PR gives guidance on the event hub partitions, linking to Microsoft docs for advanced use cases. --------- Co-authored-by: Dan Kortschak Co-authored-by: Arianna Laudazzi <46651782+alaudazzi@users.noreply.github.com> --- packages/azure/_dev/build/docs/README.md | 137 ++++++++++++++++++----- packages/azure/changelog.yml | 6 +- packages/azure/docs/README.md | 137 ++++++++++++++++++----- packages/azure/manifest.yml | 2 +- 4 files changed, 218 insertions(+), 64 deletions(-) diff --git a/packages/azure/_dev/build/docs/README.md b/packages/azure/_dev/build/docs/README.md index 99403032bde1..2adf555e4054 100644 --- a/packages/azure/_dev/build/docs/README.md +++ b/packages/azure/_dev/build/docs/README.md @@ -25,13 +25,13 @@ You can use our hosted Elasticsearch Service on Elastic Cloud, which is recommen Before using the Azure integration you will need: -* One or more **Diagnostic setting** to export logs from Azure services to Event Hubs. -* One or more **Event Hub** to store in-flight logs exported by Azure services and make them available to Elastic Agent. +* One or more **diagnostic setting** to export logs from Azure services to Event Hubs. +* One or more **event hub** to store in-flight logs exported by Azure services and make them available to Elastic Agent. * One **Storage Account Container** to store information about logs consumed by the Elastic Agent. -### Diagnostic settings +### Diagnostic Settings -Azure Diagnostic settings allow you to export metrics and logs from a **source** service, or resource, to one **destination** for analysis and long-term storage. +Azure diagnostic settings allow you to export metrics and logs from a **source** service, or resource, to one **destination** for analysis and long-term storage. ```text ┌──────────────────┐ ┌──────────────┐ ┌─────────────────┐ @@ -46,7 +46,7 @@ Examples of source services: * Microsoft Entra ID * Spring Apps -The Diagnostic settings support several destination types. The Elastic Agent requires a Diagnostic setting configured with Event Hub as the destination. +The diagnostic settings support several destination types. The Elastic Agent requires a diagnostic settings configured with an event hub as the destination. ### Event Hub @@ -57,7 +57,7 @@ Elastic Agent with the Azure Logs integration will consume logs from the Event H ```text ┌────────────────┐ ┌────────────┐ │ adlogs │ │ Elastic │ - │ <> │─────▶│ Agent │ + │ <> │─────▶│ Agent │ └────────────────┘ └────────────┘ ``` @@ -72,7 +72,7 @@ The Azure Logs integration requires a Storage account container to work. The int ```text ┌────────────────┐ ┌────────────┐ │ adlogs │ logs │ Elastic │ - │ <> │────────────────────▶│ Agent │ + │ <> │────────────────────▶│ Agent │ └────────────────┘ └────────────┘ │ consumer group info │ @@ -99,25 +99,25 @@ Elastic strongly recommends installing the individual integrations ("Microsoft E Before adding the integration, you must complete the following tasks. -### Create an event hub +### Create an Event Hub The event hub receives the logs exported from the Azure service and makes them available to the Elastic Agent to pick up. Here's the high-level overview of the required steps: * Create a resource group, or select an existing one. -* Create an event hubs namespace. +* Create an Event Hubs namespace. * Create an event hub. For a detailed step-by-step guide, check the quickstart [Create an event hub using Azure portal](https://learn.microsoft.com/en-us/azure/event-hubs/event-hubs-create). Take note of the event hub **Name**, which you will use later when specifying an **eventhub** in the integration settings. -#### Event hub namespace vs event hub +#### Event Hubs Namespace vs Event Hub -You should use the event hub name (not the event hub namespace name) as a value for the **eventhub** option in the integration settings. +You should use the event hub name (not the Event Hubs namespace name) as a value for the **eventhub** option in the integration settings. -If you are new to Event Hub, think of the event hub namespace as the cluster and the event hub as the topic. You will typically have one cluster and multiple topics. +If you are new to Event Hubs, think of the Event Hubs namespace as the cluster and the event hub as the topic. You will typically have one cluster and multiple topics. If you are familiar with Kafka, here's a conceptual mapping between the two: @@ -129,7 +129,82 @@ If you are familiar with Kafka, here's a conceptual mapping between the two: | Consumer Group | Consumer Group | | Offset | Offset | -#### How many event hubs? + +#### How many partitions? + +The number of partitions is essential to balance the event hub cost and performance. + +Here are a few examples with one or multiple agents, with recommendations on picking the correct number of partitions for your use case. + +##### Single Agent + +With a single Agent deployment, increasing the number of partitions on the event hub is the primary driver in scale-up performances. The Agent creates one worker for each partition. + +```text +┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ ┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ + +│ │ │ │ + +│ ┌─────────────────┐ │ │ ┌─────────────────┐ │ + │ partition 0 │◀───────────│ worker │ +│ └─────────────────┘ │ │ └─────────────────┘ │ + ┌─────────────────┐ ┌─────────────────┐ +│ │ partition 1 │◀──┼────┼───│ worker │ │ + └─────────────────┘ └─────────────────┘ +│ ┌─────────────────┐ │ │ ┌─────────────────┐ │ + │ partition 2 │◀────────── │ worker │ +│ └─────────────────┘ │ │ └─────────────────┘ │ + ┌─────────────────┐ ┌─────────────────┐ +│ │ partition 3 │◀──┼────┼───│ worker │ │ + └─────────────────┘ └─────────────────┘ +│ │ │ │ + +│ │ │ │ + +└ Event Hub ─ ─ ─ ─ ─ ─ ─ ┘ └ Agent ─ ─ ─ ─ ─ ─ ─ ─ ─ ┘ +``` + + +##### Two or more Agents + +With more than one Agent, setting the number of partitions is crucial. The agents share the existing partitions to scale out performance and improve availability. + +The number of partitions must be at least the number of agents. + +```text +┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ ┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ + +│ │ │ ┌─────────────────┐ │ + ┌──────│ worker │ +│ ┌─────────────────┐ │ │ │ └─────────────────┘ │ + │ partition 0 │◀────┘ ┌─────────────────┐ +│ └─────────────────┘ │ ┌──┼───│ worker │ │ + ┌─────────────────┐ │ └─────────────────┘ +│ │ partition 1 │◀──┼─┘ │ │ + └─────────────────┘ ─Agent─ ─ ─ ─ ─ ─ ─ ─ ─ ─ +│ ┌─────────────────┐ │ ┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ + │ partition 2 │◀────┐ +│ └─────────────────┘ │ │ │ ┌─────────────────┐ │ + ┌─────────────────┐ └─────│ worker │ +│ │ partition 3 │◀──┼─┐ │ └─────────────────┘ │ + └─────────────────┘ │ ┌─────────────────┐ +│ │ └──┼──│ worker │ │ + └─────────────────┘ +│ │ │ │ + +└ Event Hub ─ ─ ─ ─ ─ ─ ─ ┘ └ Agent ─ ─ ─ ─ ─ ─ ─ ─ ─ ┘ +``` + + +##### Recommendations + +Create an event hub with at least two partitions. Two partitions allow low-volume deployment to support high availability with two agents. Consider creating four partitions or more to handle medium-volume deployments with availability. + +To learn more about event hub partitions, read an in-depth guide from Microsoft at https://learn.microsoft.com/en-us/azure/event-hubs/event-hubs-create. + +To learn more about event hub partition from the performance perspective, check the scalability-focused document at https://learn.microsoft.com/en-us/azure/event-hubs/event-hubs-scalability#partitions. + +#### How many Event Hubs? Elastic strongly recommends creating one event hub for each Azure service you collect data from. @@ -140,13 +215,13 @@ Here's an high-level diagram of the solution: ```text ┌───────────────┐ ┌──────────────┐ ┌───────────────┐ │ MS Entra ID │ │ Diagnostic │ │ adlogs │ - │ <> │──▶│ settings │──▶│ <> │──┐ + │ <> │──▶│ Settings │──▶│ <> │──┐ └───────────────┘ └──────────────┘ └───────────────┘ │ ┌───────────┐ │ │ Elastic │ ├──▶│ Agent │ ┌───────────────┐ ┌──────────────┐ ┌───────────────┐ │ └───────────┘ │ Azure Monitor │ │ Diagnostic │ │ activitylogs │ │ - │ <> ├──▶│ settings │──▶│ <> │──┘ + │ <> ├──▶│ Settings │──▶│ <> │──┘ └───────────────┘ └──────────────┘ └───────────────┘ ``` @@ -157,17 +232,17 @@ For high-volume deployments, we recommend one event hub for each data stream: ```text ┌──────────────┐ ┌─────────────────────┐ │ Diagnostic │ │ signin (adlogs) │ - ┌─▶│ settings │──▶│ <> │──┐ + ┌─▶│ Settings │──▶│ <> │──┐ │ └──────────────┘ └─────────────────────┘ │ │ │ ┌─────────────┐ │ ┌──────────────┐ ┌─────────────────────┐ │ ┌───────────┐ │ MS Entra ID │ │ │ Diagnostic │ │ audit (adlogs) │ │ │ Elastic │ -│ <> │─┼─▶│ settings │──▶│ <> │──┼─▶│ Agent │ +│ <> │─┼─▶│ Settings │──▶│ <> │──┼─▶│ Agent │ └─────────────┘ │ └──────────────┘ └─────────────────────┘ │ └───────────┘ │ │ │ ┌──────────────┐ ┌─────────────────────┐ │ │ │ Diagnostic │ │provisioning (adlogs)│ │ - └─▶│ settings │──▶│ <> │──┘ + └─▶│ Settings │──▶│ <> │──┘ └──────────────┘ └─────────────────────┘ ``` @@ -185,7 +260,7 @@ In most cases, you can use the default consumer group named `$Default`. If `$Def The Elastic Agent requries a connection string to access the event hub and fetch the exported logs. The connection string contains details about the event hub used and the credentials required to access it. -To get the connection string for your event hub namespace: +To get the connection string for your Event Hubs namespace: 1. Visit the **Event Hubs namespace** you created in a previous step. 1. Select **Settings** > **Shared access policies**. @@ -201,15 +276,15 @@ When the SAS Policy is ready, select it to display the information panel. Take note of the **Connection string–primary key**, which you will use later when specifying a **connection_string** in the integration settings. -### Create a Diagnostic settings +### Create a Diagnostic Settings -The Diagnostic settings export the logs from Azure services to a destination and in order to use Azure Logs integration, it must be an Event Hub. +The diagnostic settings export the logs from Azure services to a destination and in order to use Azure Logs integration, it must be an event hubb. To create a diagnostic settings to export logs: -1. Locate the Diagnostic settings for the service (for example, Microsoft Entra ID). -1. Select Diagnostic settings in the **Monitoring** section of the service. Note that different services may place the diagnostic settings in different positions. -1. Select **Add diagnostic setting**. +1. Locate the diagnostic settings for the service (for example, Microsoft Entra ID). +1. Select diagnostic settings in the **Monitoring** section of the service. Note that different services may place the diagnostic settings in different positions. +1. Select **Add diagnostic settings**. In the diagnostic settings page you have to select the source **log categories** you want to export and then select their **destination**. @@ -219,12 +294,12 @@ Each Azure services exports a well-defined list of log categories. Check the ind #### Select the destination -Select the **subscription** and the **event hub namespace** you previously created. Select the event hub dedicated to this integration. +Select the **subscription** and the **Event Hubs namespace** you previously created. Select the event hub dedicated to this integration. ```text ┌───────────────┐ ┌──────────────┐ ┌───────────────┐ ┌───────────┐ │ MS Entra ID │ │ Diagnostic │ │ adlogs │ │ Elastic │ - │ <> ├──▶│ settings │──▶│ <> │─────▶│ Agent │ + │ <> ├──▶│ Settings │──▶│ <> │─────▶│ Agent │ └───────────────┘ └──────────────┘ └───────────────┘ └───────────┘ ``` @@ -251,7 +326,7 @@ This is the final diagram of the a setup for collecting Activity logs from the A ```text ┌───────────────┐ ┌──────────────┐ ┌────────────────┐ ┌───────────┐ │ MS Entra ID │ │ Diagnostic │ │ adlogs │ logs │ Elastic │ - │ <> ├──▶│ settings │──▶│ <> │────────▶│ Agent │ + │ <> ├──▶│ Settings │──▶│ <> │────────▶│ Agent │ └───────────────┘ └──────────────┘ └────────────────┘ └───────────┘ │ ┌──────────────┐ consumer group info │ @@ -268,7 +343,7 @@ The Agent will use the integration name and the event hub name to identify the b ### Running the integration behind a firewall -When you run the Elastic Agent behind a firewall, to ensure proper communication with the necessary components, you need to allow traffic on port `5671` and `5672` for the Event Hub, and port `443` for the Storage Account container. +When you run the Elastic Agent behind a firewall, to ensure proper communication with the necessary components, you need to allow traffic on port `5671` and `5672` for the event hub, and port `443` for the Storage Account container. ```text ┌────────────────────────────────┐ ┌───────────────────┐ ┌───────────────────┐ @@ -298,7 +373,7 @@ When you run the Elastic Agent behind a firewall, to ensure proper communication #### Event Hub -Port `5671` and `5672` are commonly used for secure communication with the Event Hub. These ports are used to receive events. By allowing traffic on these ports, the Elastic Agent can establish a secure connection with the Event Hub. +Port `5671` and `5672` are commonly used for secure communication with the event hub. These ports are used to receive events. By allowing traffic on these ports, the Elastic Agent can establish a secure connection with the event hub. For more information, check the following documents: @@ -325,7 +400,7 @@ Use the following settings to configure the Azure Logs integration when you add `eventhub` : _string_ -A fully managed, real-time data ingestion service. Elastic recommends using only letters, numbers, and the hyphen (-) character for Event Hub names to maximize compatibility. You can use existing Event Hubs having underscores (_) in the Event Hub name; in this case, the integration will replace underscores with hyphens (-) when it uses the Event Hub name to create dependent Azure resources behind the scenes (e.g., the storage account container to store Event Hub consumer offsets). Elastic also recommends using a separate event hub for each log type as the field mappings of each log type differ. +A fully managed, real-time data ingestion service. Elastic recommends using only letters, numbers, and the hyphen (-) character for event hub names to maximize compatibility. You can use existing event hubs having underscores (_) in the event hub name; in this case, the integration will replace underscores with hyphens (-) when it uses the event hub name to create dependent Azure resources behind the scenes (e.g., the storage account container to store event hub consumer offsets). Elastic also recommends using a separate event hub for each log type as the field mappings of each log type differ. Default value `insights-operational-logs`. `consumer_group` : @@ -338,7 +413,7 @@ _string_ The connection string required to communicate with Event Hubs. See [Get an Event Hubs connection string](https://docs.microsoft.com/en-us/azure/event-hubs/event-hubs-get-connection-string) for more information. -A Blob Storage account is required to store/retrieve/update the offset or state of the Event Hub messages. This allows the integration to start back up at the spot that it stopped processing messages. +A Blob Storage account is required to store/retrieve/update the offset or state of the event hub messages. This allows the integration to start back up at the spot that it stopped processing messages. `storage_account` : _string_ diff --git a/packages/azure/changelog.yml b/packages/azure/changelog.yml index fdf61cb6bc6e..0c33704cb411 100644 --- a/packages/azure/changelog.yml +++ b/packages/azure/changelog.yml @@ -1,4 +1,8 @@ - +- version: "1.13.1" + changes: + - description: Expand docs with more details on the Event Hub partitions configuration. + type: enhancement + link: https://github.com/elastic/integrations/pull/10583 - version: "1.13.0" changes: - description: Add structured log categories to Azure Firewall. diff --git a/packages/azure/docs/README.md b/packages/azure/docs/README.md index 99403032bde1..2adf555e4054 100644 --- a/packages/azure/docs/README.md +++ b/packages/azure/docs/README.md @@ -25,13 +25,13 @@ You can use our hosted Elasticsearch Service on Elastic Cloud, which is recommen Before using the Azure integration you will need: -* One or more **Diagnostic setting** to export logs from Azure services to Event Hubs. -* One or more **Event Hub** to store in-flight logs exported by Azure services and make them available to Elastic Agent. +* One or more **diagnostic setting** to export logs from Azure services to Event Hubs. +* One or more **event hub** to store in-flight logs exported by Azure services and make them available to Elastic Agent. * One **Storage Account Container** to store information about logs consumed by the Elastic Agent. -### Diagnostic settings +### Diagnostic Settings -Azure Diagnostic settings allow you to export metrics and logs from a **source** service, or resource, to one **destination** for analysis and long-term storage. +Azure diagnostic settings allow you to export metrics and logs from a **source** service, or resource, to one **destination** for analysis and long-term storage. ```text ┌──────────────────┐ ┌──────────────┐ ┌─────────────────┐ @@ -46,7 +46,7 @@ Examples of source services: * Microsoft Entra ID * Spring Apps -The Diagnostic settings support several destination types. The Elastic Agent requires a Diagnostic setting configured with Event Hub as the destination. +The diagnostic settings support several destination types. The Elastic Agent requires a diagnostic settings configured with an event hub as the destination. ### Event Hub @@ -57,7 +57,7 @@ Elastic Agent with the Azure Logs integration will consume logs from the Event H ```text ┌────────────────┐ ┌────────────┐ │ adlogs │ │ Elastic │ - │ <> │─────▶│ Agent │ + │ <> │─────▶│ Agent │ └────────────────┘ └────────────┘ ``` @@ -72,7 +72,7 @@ The Azure Logs integration requires a Storage account container to work. The int ```text ┌────────────────┐ ┌────────────┐ │ adlogs │ logs │ Elastic │ - │ <> │────────────────────▶│ Agent │ + │ <> │────────────────────▶│ Agent │ └────────────────┘ └────────────┘ │ consumer group info │ @@ -99,25 +99,25 @@ Elastic strongly recommends installing the individual integrations ("Microsoft E Before adding the integration, you must complete the following tasks. -### Create an event hub +### Create an Event Hub The event hub receives the logs exported from the Azure service and makes them available to the Elastic Agent to pick up. Here's the high-level overview of the required steps: * Create a resource group, or select an existing one. -* Create an event hubs namespace. +* Create an Event Hubs namespace. * Create an event hub. For a detailed step-by-step guide, check the quickstart [Create an event hub using Azure portal](https://learn.microsoft.com/en-us/azure/event-hubs/event-hubs-create). Take note of the event hub **Name**, which you will use later when specifying an **eventhub** in the integration settings. -#### Event hub namespace vs event hub +#### Event Hubs Namespace vs Event Hub -You should use the event hub name (not the event hub namespace name) as a value for the **eventhub** option in the integration settings. +You should use the event hub name (not the Event Hubs namespace name) as a value for the **eventhub** option in the integration settings. -If you are new to Event Hub, think of the event hub namespace as the cluster and the event hub as the topic. You will typically have one cluster and multiple topics. +If you are new to Event Hubs, think of the Event Hubs namespace as the cluster and the event hub as the topic. You will typically have one cluster and multiple topics. If you are familiar with Kafka, here's a conceptual mapping between the two: @@ -129,7 +129,82 @@ If you are familiar with Kafka, here's a conceptual mapping between the two: | Consumer Group | Consumer Group | | Offset | Offset | -#### How many event hubs? + +#### How many partitions? + +The number of partitions is essential to balance the event hub cost and performance. + +Here are a few examples with one or multiple agents, with recommendations on picking the correct number of partitions for your use case. + +##### Single Agent + +With a single Agent deployment, increasing the number of partitions on the event hub is the primary driver in scale-up performances. The Agent creates one worker for each partition. + +```text +┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ ┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ + +│ │ │ │ + +│ ┌─────────────────┐ │ │ ┌─────────────────┐ │ + │ partition 0 │◀───────────│ worker │ +│ └─────────────────┘ │ │ └─────────────────┘ │ + ┌─────────────────┐ ┌─────────────────┐ +│ │ partition 1 │◀──┼────┼───│ worker │ │ + └─────────────────┘ └─────────────────┘ +│ ┌─────────────────┐ │ │ ┌─────────────────┐ │ + │ partition 2 │◀────────── │ worker │ +│ └─────────────────┘ │ │ └─────────────────┘ │ + ┌─────────────────┐ ┌─────────────────┐ +│ │ partition 3 │◀──┼────┼───│ worker │ │ + └─────────────────┘ └─────────────────┘ +│ │ │ │ + +│ │ │ │ + +└ Event Hub ─ ─ ─ ─ ─ ─ ─ ┘ └ Agent ─ ─ ─ ─ ─ ─ ─ ─ ─ ┘ +``` + + +##### Two or more Agents + +With more than one Agent, setting the number of partitions is crucial. The agents share the existing partitions to scale out performance and improve availability. + +The number of partitions must be at least the number of agents. + +```text +┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ ┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ + +│ │ │ ┌─────────────────┐ │ + ┌──────│ worker │ +│ ┌─────────────────┐ │ │ │ └─────────────────┘ │ + │ partition 0 │◀────┘ ┌─────────────────┐ +│ └─────────────────┘ │ ┌──┼───│ worker │ │ + ┌─────────────────┐ │ └─────────────────┘ +│ │ partition 1 │◀──┼─┘ │ │ + └─────────────────┘ ─Agent─ ─ ─ ─ ─ ─ ─ ─ ─ ─ +│ ┌─────────────────┐ │ ┌ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ┐ + │ partition 2 │◀────┐ +│ └─────────────────┘ │ │ │ ┌─────────────────┐ │ + ┌─────────────────┐ └─────│ worker │ +│ │ partition 3 │◀──┼─┐ │ └─────────────────┘ │ + └─────────────────┘ │ ┌─────────────────┐ +│ │ └──┼──│ worker │ │ + └─────────────────┘ +│ │ │ │ + +└ Event Hub ─ ─ ─ ─ ─ ─ ─ ┘ └ Agent ─ ─ ─ ─ ─ ─ ─ ─ ─ ┘ +``` + + +##### Recommendations + +Create an event hub with at least two partitions. Two partitions allow low-volume deployment to support high availability with two agents. Consider creating four partitions or more to handle medium-volume deployments with availability. + +To learn more about event hub partitions, read an in-depth guide from Microsoft at https://learn.microsoft.com/en-us/azure/event-hubs/event-hubs-create. + +To learn more about event hub partition from the performance perspective, check the scalability-focused document at https://learn.microsoft.com/en-us/azure/event-hubs/event-hubs-scalability#partitions. + +#### How many Event Hubs? Elastic strongly recommends creating one event hub for each Azure service you collect data from. @@ -140,13 +215,13 @@ Here's an high-level diagram of the solution: ```text ┌───────────────┐ ┌──────────────┐ ┌───────────────┐ │ MS Entra ID │ │ Diagnostic │ │ adlogs │ - │ <> │──▶│ settings │──▶│ <> │──┐ + │ <> │──▶│ Settings │──▶│ <> │──┐ └───────────────┘ └──────────────┘ └───────────────┘ │ ┌───────────┐ │ │ Elastic │ ├──▶│ Agent │ ┌───────────────┐ ┌──────────────┐ ┌───────────────┐ │ └───────────┘ │ Azure Monitor │ │ Diagnostic │ │ activitylogs │ │ - │ <> ├──▶│ settings │──▶│ <> │──┘ + │ <> ├──▶│ Settings │──▶│ <> │──┘ └───────────────┘ └──────────────┘ └───────────────┘ ``` @@ -157,17 +232,17 @@ For high-volume deployments, we recommend one event hub for each data stream: ```text ┌──────────────┐ ┌─────────────────────┐ │ Diagnostic │ │ signin (adlogs) │ - ┌─▶│ settings │──▶│ <> │──┐ + ┌─▶│ Settings │──▶│ <> │──┐ │ └──────────────┘ └─────────────────────┘ │ │ │ ┌─────────────┐ │ ┌──────────────┐ ┌─────────────────────┐ │ ┌───────────┐ │ MS Entra ID │ │ │ Diagnostic │ │ audit (adlogs) │ │ │ Elastic │ -│ <> │─┼─▶│ settings │──▶│ <> │──┼─▶│ Agent │ +│ <> │─┼─▶│ Settings │──▶│ <> │──┼─▶│ Agent │ └─────────────┘ │ └──────────────┘ └─────────────────────┘ │ └───────────┘ │ │ │ ┌──────────────┐ ┌─────────────────────┐ │ │ │ Diagnostic │ │provisioning (adlogs)│ │ - └─▶│ settings │──▶│ <> │──┘ + └─▶│ Settings │──▶│ <> │──┘ └──────────────┘ └─────────────────────┘ ``` @@ -185,7 +260,7 @@ In most cases, you can use the default consumer group named `$Default`. If `$Def The Elastic Agent requries a connection string to access the event hub and fetch the exported logs. The connection string contains details about the event hub used and the credentials required to access it. -To get the connection string for your event hub namespace: +To get the connection string for your Event Hubs namespace: 1. Visit the **Event Hubs namespace** you created in a previous step. 1. Select **Settings** > **Shared access policies**. @@ -201,15 +276,15 @@ When the SAS Policy is ready, select it to display the information panel. Take note of the **Connection string–primary key**, which you will use later when specifying a **connection_string** in the integration settings. -### Create a Diagnostic settings +### Create a Diagnostic Settings -The Diagnostic settings export the logs from Azure services to a destination and in order to use Azure Logs integration, it must be an Event Hub. +The diagnostic settings export the logs from Azure services to a destination and in order to use Azure Logs integration, it must be an event hubb. To create a diagnostic settings to export logs: -1. Locate the Diagnostic settings for the service (for example, Microsoft Entra ID). -1. Select Diagnostic settings in the **Monitoring** section of the service. Note that different services may place the diagnostic settings in different positions. -1. Select **Add diagnostic setting**. +1. Locate the diagnostic settings for the service (for example, Microsoft Entra ID). +1. Select diagnostic settings in the **Monitoring** section of the service. Note that different services may place the diagnostic settings in different positions. +1. Select **Add diagnostic settings**. In the diagnostic settings page you have to select the source **log categories** you want to export and then select their **destination**. @@ -219,12 +294,12 @@ Each Azure services exports a well-defined list of log categories. Check the ind #### Select the destination -Select the **subscription** and the **event hub namespace** you previously created. Select the event hub dedicated to this integration. +Select the **subscription** and the **Event Hubs namespace** you previously created. Select the event hub dedicated to this integration. ```text ┌───────────────┐ ┌──────────────┐ ┌───────────────┐ ┌───────────┐ │ MS Entra ID │ │ Diagnostic │ │ adlogs │ │ Elastic │ - │ <> ├──▶│ settings │──▶│ <> │─────▶│ Agent │ + │ <> ├──▶│ Settings │──▶│ <> │─────▶│ Agent │ └───────────────┘ └──────────────┘ └───────────────┘ └───────────┘ ``` @@ -251,7 +326,7 @@ This is the final diagram of the a setup for collecting Activity logs from the A ```text ┌───────────────┐ ┌──────────────┐ ┌────────────────┐ ┌───────────┐ │ MS Entra ID │ │ Diagnostic │ │ adlogs │ logs │ Elastic │ - │ <> ├──▶│ settings │──▶│ <> │────────▶│ Agent │ + │ <> ├──▶│ Settings │──▶│ <> │────────▶│ Agent │ └───────────────┘ └──────────────┘ └────────────────┘ └───────────┘ │ ┌──────────────┐ consumer group info │ @@ -268,7 +343,7 @@ The Agent will use the integration name and the event hub name to identify the b ### Running the integration behind a firewall -When you run the Elastic Agent behind a firewall, to ensure proper communication with the necessary components, you need to allow traffic on port `5671` and `5672` for the Event Hub, and port `443` for the Storage Account container. +When you run the Elastic Agent behind a firewall, to ensure proper communication with the necessary components, you need to allow traffic on port `5671` and `5672` for the event hub, and port `443` for the Storage Account container. ```text ┌────────────────────────────────┐ ┌───────────────────┐ ┌───────────────────┐ @@ -298,7 +373,7 @@ When you run the Elastic Agent behind a firewall, to ensure proper communication #### Event Hub -Port `5671` and `5672` are commonly used for secure communication with the Event Hub. These ports are used to receive events. By allowing traffic on these ports, the Elastic Agent can establish a secure connection with the Event Hub. +Port `5671` and `5672` are commonly used for secure communication with the event hub. These ports are used to receive events. By allowing traffic on these ports, the Elastic Agent can establish a secure connection with the event hub. For more information, check the following documents: @@ -325,7 +400,7 @@ Use the following settings to configure the Azure Logs integration when you add `eventhub` : _string_ -A fully managed, real-time data ingestion service. Elastic recommends using only letters, numbers, and the hyphen (-) character for Event Hub names to maximize compatibility. You can use existing Event Hubs having underscores (_) in the Event Hub name; in this case, the integration will replace underscores with hyphens (-) when it uses the Event Hub name to create dependent Azure resources behind the scenes (e.g., the storage account container to store Event Hub consumer offsets). Elastic also recommends using a separate event hub for each log type as the field mappings of each log type differ. +A fully managed, real-time data ingestion service. Elastic recommends using only letters, numbers, and the hyphen (-) character for event hub names to maximize compatibility. You can use existing event hubs having underscores (_) in the event hub name; in this case, the integration will replace underscores with hyphens (-) when it uses the event hub name to create dependent Azure resources behind the scenes (e.g., the storage account container to store event hub consumer offsets). Elastic also recommends using a separate event hub for each log type as the field mappings of each log type differ. Default value `insights-operational-logs`. `consumer_group` : @@ -338,7 +413,7 @@ _string_ The connection string required to communicate with Event Hubs. See [Get an Event Hubs connection string](https://docs.microsoft.com/en-us/azure/event-hubs/event-hubs-get-connection-string) for more information. -A Blob Storage account is required to store/retrieve/update the offset or state of the Event Hub messages. This allows the integration to start back up at the spot that it stopped processing messages. +A Blob Storage account is required to store/retrieve/update the offset or state of the event hub messages. This allows the integration to start back up at the spot that it stopped processing messages. `storage_account` : _string_ diff --git a/packages/azure/manifest.yml b/packages/azure/manifest.yml index e2b5da98c78c..d1eed1b3afdf 100644 --- a/packages/azure/manifest.yml +++ b/packages/azure/manifest.yml @@ -1,6 +1,6 @@ name: azure title: Azure Logs -version: 1.13.0 +version: 1.13.1 description: This Elastic integration collects logs from Azure type: integration icons: From 3be250b50a42edee06a3e9caa9b87afb9d60de30 Mon Sep 17 00:00:00 2001 From: milan-elastic <118723373+milan-elastic@users.noreply.github.com> Date: Mon, 5 Aug 2024 16:27:53 +0530 Subject: [PATCH 24/77] [O11y][AWS] Add global filter for dashboards to improve performance of AWS Integration package (#10324) * Add global filter for dashboards to improve performance related to infraobs packages * Update changelog entry * Minor refactor for changelog entry --- packages/aws/changelog.yml | 5 + ...-3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json | 80 ++-- ...-4c404390-2724-11ee-a3cb-33de1feb08f6.json | 54 ++- ...-5465f0f0-26e4-11ee-9051-011d57d86fe2.json | 348 +++++++++--------- ...-98f85120-0ea4-11ee-9c37-e55025c0278a.json | 70 ++-- ...-9c09cd20-7399-11ea-a345-f985c61fe654.json | 81 ++-- ...-a096b830-4762-11e9-8062-c98a86cb6f94.json | 13 +- ...-fac28650-7349-11e9-816b-07687310a99a.json | 180 ++------- ...-30ccde50-7397-11ea-a345-f985c61fe654.json | 73 ---- ...-4f41d150-2704-11ee-81f9-fdf97c8e03a6.json | 42 --- ...-c1543010-2724-11ee-a3cb-33de1feb08f6.json | 41 --- packages/aws/manifest.yml | 2 +- 12 files changed, 389 insertions(+), 600 deletions(-) delete mode 100644 packages/aws/kibana/search/aws-30ccde50-7397-11ea-a345-f985c61fe654.json delete mode 100644 packages/aws/kibana/search/aws-4f41d150-2704-11ee-81f9-fdf97c8e03a6.json delete mode 100644 packages/aws/kibana/search/aws-c1543010-2724-11ee-a3cb-33de1feb08f6.json diff --git a/packages/aws/changelog.yml b/packages/aws/changelog.yml index b8a50d4bce7b..5645562611d1 100644 --- a/packages/aws/changelog.yml +++ b/packages/aws/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.22.0" + changes: + - description: Add global dataset filter for dashboards to improve performance. + type: enhancement + link: https://github.com/elastic/integrations/pull/10324 - version: "2.21.0" changes: - description: Fix route53 public logs grok pattern. diff --git a/packages/aws/kibana/dashboard/aws-3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json b/packages/aws/kibana/dashboard/aws-3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json index c2c37122486f..be4ee7c591f5 100644 --- a/packages/aws/kibana/dashboard/aws-3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json +++ b/packages/aws/kibana/dashboard/aws-3af47420-3e7b-11ea-bb0a-69c3ca1d410f.json @@ -11,6 +11,7 @@ "meta": { "alias": null, "disabled": false, + "field": "data_stream.dataset", "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", "key": "data_stream.dataset", "negate": false, @@ -74,8 +75,7 @@ }, "panelIndex": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac", "title": "ELB Requests Geolocation", - "type": "map", - "version": "8.7.1" + "type": "map" }, { "embeddableConfig": { @@ -178,7 +178,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\"" + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -264,8 +264,7 @@ }, "panelIndex": "26ebbde3-ee0c-4b4d-8ab9-404cbe5786a9", "title": "ELB Inbound Traffic", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -274,10 +273,9 @@ "state": { "adHocDataViews": { "66dc09e8-7c65-4290-a6b0-cb916af4a5f6": { + "allowHidden": false, "allowNoIndex": true, - "fieldAttrs": { - "user_agent.original": {} - }, + "fieldAttrs": {}, "fieldFormats": {}, "id": "66dc09e8-7c65-4290-a6b0-cb916af4a5f6", "name": "logs-*", @@ -366,7 +364,7 @@ ], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\" " + "query": "" }, "visualization": { "columns": [ @@ -399,8 +397,7 @@ }, "panelIndex": "48ecb39f-57a5-4805-a8a9-77385a996d75", "title": "ELB Top User Agents", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -409,6 +406,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_logs-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -512,7 +510,7 @@ ], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\"" + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -598,8 +596,7 @@ }, "panelIndex": "9812996e-ba10-41bd-b134-c9705a0973b4", "title": "ELB Total Requests", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -608,6 +605,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_logs-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -697,7 +695,7 @@ ], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\"" + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -771,8 +769,7 @@ }, "panelIndex": "bb25b36e-0787-48fd-aa22-7ba8c08a9c36", "title": "ELB Top IP Addresses", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -781,6 +778,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_logs-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -887,7 +885,7 @@ ], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\"" + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -973,8 +971,7 @@ }, "panelIndex": "bf43580d-cc26-415b-ae36-d678a232b544", "title": "ELB Outbound Traffic", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -983,6 +980,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_logs-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -1086,7 +1084,7 @@ ], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\"" + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -1172,8 +1170,7 @@ }, "panelIndex": "466e825b-6ee2-43c3-b221-21abe27612dd", "title": "ELB HTTP 2xx", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1182,6 +1179,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_logs-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -1285,7 +1283,7 @@ ], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\"" + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -1371,8 +1369,7 @@ }, "panelIndex": "d42994a6-922c-4f86-bf99-a46f87ff106d", "title": "ELB HTTP 4xx", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1381,6 +1378,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_logs-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -1484,7 +1482,7 @@ ], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\" " + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -1570,8 +1568,7 @@ }, "panelIndex": "f45aaa2c-c244-4d1a-8ad4-4794130b9827", "title": "ELB HTTP 5xx", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1588,7 +1585,6 @@ "adHocDataViews": {}, "datasourceStates": { "formBased": { - "currentIndexPatternId": "logs-*", "layers": { "a571fb89-07dd-4be0-8565-8436e6f7a816": { "columnOrder": [ @@ -1676,7 +1672,6 @@ }, "ignoreGlobalFilters": false, "incompleteColumns": {}, - "indexPatternId": "logs-*", "sampling": 1 } } @@ -1692,7 +1687,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset : \"aws.elb_logs\" " + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -1777,21 +1772,23 @@ }, "panelIndex": "72217af4-ec96-4ab9-958b-7a2645f0270c", "title": "ALB Inbound and Outbound Traffic", - "type": "lens", - "version": "8.7.1" + "type": "lens" } ], "timeRestore": false, "title": "[Logs AWS] ELB Access Log Overview", - "version": 1 + "version": 2 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-06-07T09:42:00.733Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-07-22T10:52:17.614Z", "id": "aws-3af47420-3e7b-11ea-bb0a-69c3ca1d410f", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "logs-*", "name": "2c97b32e-5548-429d-9ce0-1bbc3d2398ac:layer_1_source_index_pattern", @@ -1808,5 +1805,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "10.2.0" } \ No newline at end of file diff --git a/packages/aws/kibana/dashboard/aws-4c404390-2724-11ee-a3cb-33de1feb08f6.json b/packages/aws/kibana/dashboard/aws-4c404390-2724-11ee-a3cb-33de1feb08f6.json index 7fbbef07bf0c..2ebaa9dc4ded 100644 --- a/packages/aws/kibana/dashboard/aws-4c404390-2724-11ee-a3cb-33de1feb08f6.json +++ b/packages/aws/kibana/dashboard/aws-4c404390-2724-11ee-a3cb-33de1feb08f6.json @@ -147,8 +147,7 @@ }, "panelIndex": "67059371-5528-45be-b6e0-1525e0e215cc", "title": "Top Process Names", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -260,39 +259,57 @@ }, "panelIndex": "94471afc-1bf7-4bbc-8e33-1d234b4631a8", "title": "Log Level", - "type": "lens", - "version": "8.8.1" + "type": "lens" }, { "embeddableConfig": { + "attributes": { + "columns": [], + "grid": {}, + "hideChart": false, + "isTextBasedQuery": false, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset : \\\"aws.emr_logs\\\" \"}}" + }, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "timeRestore": false, + "usesAdHocDataView": false + }, "enhancements": {}, "hidePanelTitles": false }, "gridData": { "h": 15, - "i": "9d6500f1-b8a2-4b8a-a78b-32267bda7e45", + "i": "247a8040-3767-4c80-b878-a99c21cb693a", "w": 48, "x": 0, "y": 15 }, - "panelIndex": "9d6500f1-b8a2-4b8a-a78b-32267bda7e45", - "panelRefName": "panel_9d6500f1-b8a2-4b8a-a78b-32267bda7e45", + "panelIndex": "247a8040-3767-4c80-b878-a99c21cb693a", "title": "EMR Logs", - "type": "search", - "version": "8.7.1" + "type": "search" } ], "timeRestore": false, "title": "[Logs AWS] EMR Overview", "version": 1 }, - "coreMigrationVersion": "8.7.0", - "created_at": "2023-07-20T17:49:07.190Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-11T10:47:56.398Z", "id": "aws-4c404390-2724-11ee-a3cb-33de1feb08f6", "managed": false, - "migrationVersion": { - "dashboard": "8.7.0" - }, "references": [ { "id": "logs-*", @@ -310,10 +327,11 @@ "type": "index-pattern" }, { - "id": "aws-c1543010-2724-11ee-a3cb-33de1feb08f6", - "name": "9d6500f1-b8a2-4b8a-a78b-32267bda7e45:panel_9d6500f1-b8a2-4b8a-a78b-32267bda7e45", - "type": "search" + "id": "logs-*", + "name": "247a8040-3767-4c80-b878-a99c21cb693a:kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/aws/kibana/dashboard/aws-5465f0f0-26e4-11ee-9051-011d57d86fe2.json b/packages/aws/kibana/dashboard/aws-5465f0f0-26e4-11ee-9051-011d57d86fe2.json index dcff494a409f..7c2d4959ab74 100644 --- a/packages/aws/kibana/dashboard/aws-5465f0f0-26e4-11ee-9051-011d57d86fe2.json +++ b/packages/aws/kibana/dashboard/aws-5465f0f0-26e4-11ee-9051-011d57d86fe2.json @@ -1,12 +1,12 @@ { "attributes": { - "description": "Overview of AWS API Gateway Logs", "controlGroupInput": { - "controlStyle": "oneLine", "chainingSystem": "HIERARCHICAL", - "panelsJSON": "{\"8f39f203-e0d6-4567-bcae-8b2f875cf442\":{\"type\":\"optionsListControl\",\"order\":0,\"grow\":false,\"width\":\"medium\",\"explicitInput\":{\"id\":\"8f39f203-e0d6-4567-bcae-8b2f875cf442\",\"fieldName\":\"aws.apigateway.api_id\",\"title\":\"API ID\",\"grow\":false,\"width\":\"medium\",\"enhancements\":{}}},\"7acb90a0-4fc1-4ed9-bf45-2a00e082c705\":{\"type\":\"optionsListControl\",\"order\":1,\"grow\":false,\"width\":\"medium\",\"explicitInput\":{\"id\":\"7acb90a0-4fc1-4ed9-bf45-2a00e082c705\",\"fieldName\":\"aws.apigateway.domain_name\",\"title\":\"Domain Name\",\"grow\":false,\"width\":\"medium\",\"enhancements\":{}}},\"a9bf185b-ff91-4165-8584-6075e830a2b0\":{\"type\":\"optionsListControl\",\"order\":2,\"grow\":false,\"width\":\"medium\",\"explicitInput\":{\"id\":\"a9bf185b-ff91-4165-8584-6075e830a2b0\",\"fieldName\":\"aws.apigateway.stage\",\"title\":\"Stage\",\"grow\":false,\"width\":\"medium\",\"enhancements\":{}}},\"14595511-24be-417b-af74-625ad0e7319a\":{\"type\":\"optionsListControl\",\"order\":3,\"grow\":false,\"width\":\"medium\",\"explicitInput\":{\"id\":\"14595511-24be-417b-af74-625ad0e7319a\",\"fieldName\":\"cloud.region\",\"title\":\"AWS Region\",\"grow\":false,\"width\":\"medium\",\"enhancements\":{}}}}", - "ignoreParentSettingsJSON": "{\"ignoreFilters\":false,\"ignoreQuery\":false,\"ignoreTimerange\":false,\"ignoreValidations\":false}" + "controlStyle": "oneLine", + "ignoreParentSettingsJSON": "{\"ignoreFilters\":false,\"ignoreQuery\":false,\"ignoreTimerange\":false,\"ignoreValidations\":false}", + "panelsJSON": "{\"8f39f203-e0d6-4567-bcae-8b2f875cf442\":{\"type\":\"optionsListControl\",\"order\":0,\"grow\":false,\"width\":\"medium\",\"explicitInput\":{\"id\":\"8f39f203-e0d6-4567-bcae-8b2f875cf442\",\"fieldName\":\"aws.apigateway.api_id\",\"title\":\"API ID\",\"grow\":false,\"width\":\"medium\",\"enhancements\":{}}},\"7acb90a0-4fc1-4ed9-bf45-2a00e082c705\":{\"type\":\"optionsListControl\",\"order\":1,\"grow\":false,\"width\":\"medium\",\"explicitInput\":{\"id\":\"7acb90a0-4fc1-4ed9-bf45-2a00e082c705\",\"fieldName\":\"aws.apigateway.domain_name\",\"title\":\"Domain Name\",\"grow\":false,\"width\":\"medium\",\"enhancements\":{}}},\"a9bf185b-ff91-4165-8584-6075e830a2b0\":{\"type\":\"optionsListControl\",\"order\":2,\"grow\":false,\"width\":\"medium\",\"explicitInput\":{\"id\":\"a9bf185b-ff91-4165-8584-6075e830a2b0\",\"fieldName\":\"aws.apigateway.stage\",\"title\":\"Stage\",\"grow\":false,\"width\":\"medium\",\"enhancements\":{}}},\"14595511-24be-417b-af74-625ad0e7319a\":{\"type\":\"optionsListControl\",\"order\":3,\"grow\":false,\"width\":\"medium\",\"explicitInput\":{\"id\":\"14595511-24be-417b-af74-625ad0e7319a\",\"fieldName\":\"cloud.region\",\"title\":\"AWS Region\",\"grow\":false,\"width\":\"medium\",\"enhancements\":{}}}}" }, + "description": "Overview of AWS API Gateway Logs", "kibanaSavedObjectMeta": { "searchSourceJSON": { "filter": [ @@ -47,23 +47,13 @@ }, "panelsJSON": [ { - "version": "8.9.0", - "type": "lens", - "gridData": { - "h": 15, - "i": "124faec6-fedf-4a5c-b060-ab3f03a8cdbe", - "w": 16, - "x": 0, - "y": 0 - }, - "panelIndex": "124faec6-fedf-4a5c-b060-ab3f03a8cdbe", "embeddableConfig": { "attributes": { "description": "", "references": [ { - "name": "indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "id": "logs-*", + "name": "indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "type": "index-pattern" } ], @@ -157,26 +147,25 @@ "enhancements": {}, "hidePanelTitles": false }, - "title": "HTTP Method" - }, - { - "version": "8.9.0", - "type": "lens", "gridData": { "h": 15, - "i": "9a82e092-0e19-4f51-8879-680d1ed0ba44", + "i": "124faec6-fedf-4a5c-b060-ab3f03a8cdbe", "w": 16, - "x": 32, + "x": 0, "y": 0 }, - "panelIndex": "9a82e092-0e19-4f51-8879-680d1ed0ba44", + "panelIndex": "124faec6-fedf-4a5c-b060-ab3f03a8cdbe", + "title": "HTTP Method", + "type": "lens" + }, + { "embeddableConfig": { "attributes": { "description": "", "references": [ { - "name": "indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "id": "logs-*", + "name": "indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "type": "index-pattern" } ], @@ -192,9 +181,9 @@ ], "columns": { "03ad11f6-344c-43a3-91fe-b70024c79ead": { - "dataType": "string", + "dataType": "number", "isBucketed": true, - "label": "Top 10 values of aws.apigateway.event_type", + "label": "Top 10 values of aws.apigateway.status", "operationType": "terms", "params": { "exclude": [], @@ -215,7 +204,7 @@ "size": 10 }, "scale": "ordinal", - "sourceField": "aws.apigateway.event_type" + "sourceField": "aws.apigateway.status" }, "850d3e92-043f-4460-9290-10ca1311dc97": { "dataType": "number", @@ -271,25 +260,25 @@ "enhancements": {}, "hidePanelTitles": false }, - "title": "[WebSocket] Event Type" - }, - { - "version": "8.9.0", - "type": "lens", "gridData": { "h": 15, - "i": "245be50a-a099-4712-bbf5-2b6ce1368ec7", + "i": "92abd08c-7a30-4df3-bfae-31f101cd3f02", "w": 16, - "x": 0, - "y": 15 + "x": 16, + "y": 0 }, - "panelIndex": "245be50a-a099-4712-bbf5-2b6ce1368ec7", + "panelIndex": "92abd08c-7a30-4df3-bfae-31f101cd3f02", + "title": "Status Code", + "type": "lens" + }, + { "embeddableConfig": { "attributes": { + "description": "", "references": [ { - "name": "indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "id": "logs-*", + "name": "indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "type": "index-pattern" } ], @@ -298,17 +287,16 @@ "datasourceStates": { "formBased": { "layers": { - "e0c50ea5-82ba-4ee6-be31-497faf705f15": { + "06dccdd0-c0b9-4519-a299-53546adbc735": { "columnOrder": [ - "56bc0501-4f72-4b55-8998-f3aeceed9834", - "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b" + "03ad11f6-344c-43a3-91fe-b70024c79ead", + "850d3e92-043f-4460-9290-10ca1311dc97" ], "columns": { - "56bc0501-4f72-4b55-8998-f3aeceed9834": { - "customLabel": true, + "03ad11f6-344c-43a3-91fe-b70024c79ead": { "dataType": "string", "isBucketed": true, - "label": "Path", + "label": "Top 10 values of aws.apigateway.event_type", "operationType": "terms", "params": { "exclude": [], @@ -317,7 +305,7 @@ "includeIsRegex": false, "missingBucket": false, "orderBy": { - "columnId": "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b", + "columnId": "850d3e92-043f-4460-9290-10ca1311dc97", "type": "column" }, "orderDirection": "desc", @@ -329,9 +317,9 @@ "size": 10 }, "scale": "ordinal", - "sourceField": "aws.apigateway.resource_path" + "sourceField": "aws.apigateway.event_type" }, - "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b": { + "850d3e92-043f-4460-9290-10ca1311dc97": { "dataType": "number", "isBucketed": false, "label": "Count of records", @@ -359,46 +347,50 @@ "query": "" }, "visualization": { - "columns": [ - { - "columnId": "56bc0501-4f72-4b55-8998-f3aeceed9834" - }, + "layers": [ { - "columnId": "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b", - "isTransposed": false + "categoryDisplay": "default", + "layerId": "06dccdd0-c0b9-4519-a299-53546adbc735", + "layerType": "data", + "legendDisplay": "default", + "metrics": [ + "850d3e92-043f-4460-9290-10ca1311dc97" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "03ad11f6-344c-43a3-91fe-b70024c79ead" + ] } ], - "layerId": "e0c50ea5-82ba-4ee6-be31-497faf705f15", - "layerType": "data" + "shape": "treemap" } }, "title": "", "type": "lens", - "visualizationType": "lnsDatatable" + "visualizationType": "lnsPie" }, "enhancements": {}, "hidePanelTitles": false }, - "title": "Top Accessed Resource Paths" - }, - { - "version": "8.9.0", - "type": "lens", "gridData": { "h": 15, - "i": "92abd08c-7a30-4df3-bfae-31f101cd3f02", + "i": "9a82e092-0e19-4f51-8879-680d1ed0ba44", "w": 16, - "x": 16, + "x": 32, "y": 0 }, - "panelIndex": "92abd08c-7a30-4df3-bfae-31f101cd3f02", + "panelIndex": "9a82e092-0e19-4f51-8879-680d1ed0ba44", + "title": "[WebSocket] Event Type", + "type": "lens" + }, + { "embeddableConfig": { "attributes": { - "description": "", "references": [ { - "name": "indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "id": "logs-*", + "name": "indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "type": "index-pattern" } ], @@ -407,16 +399,17 @@ "datasourceStates": { "formBased": { "layers": { - "06dccdd0-c0b9-4519-a299-53546adbc735": { + "e0c50ea5-82ba-4ee6-be31-497faf705f15": { "columnOrder": [ - "03ad11f6-344c-43a3-91fe-b70024c79ead", - "850d3e92-043f-4460-9290-10ca1311dc97" + "56bc0501-4f72-4b55-8998-f3aeceed9834", + "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b" ], "columns": { - "03ad11f6-344c-43a3-91fe-b70024c79ead": { - "dataType": "number", + "56bc0501-4f72-4b55-8998-f3aeceed9834": { + "customLabel": true, + "dataType": "string", "isBucketed": true, - "label": "Top 10 values of aws.apigateway.status", + "label": "Path", "operationType": "terms", "params": { "exclude": [], @@ -425,7 +418,7 @@ "includeIsRegex": false, "missingBucket": false, "orderBy": { - "columnId": "850d3e92-043f-4460-9290-10ca1311dc97", + "columnId": "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b", "type": "column" }, "orderDirection": "desc", @@ -437,9 +430,9 @@ "size": 10 }, "scale": "ordinal", - "sourceField": "aws.apigateway.status" + "sourceField": "aws.apigateway.resource_path" }, - "850d3e92-043f-4460-9290-10ca1311dc97": { + "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b": { "dataType": "number", "isBucketed": false, "label": "Count of records", @@ -467,51 +460,44 @@ "query": "" }, "visualization": { - "layers": [ + "columns": [ { - "categoryDisplay": "default", - "layerId": "06dccdd0-c0b9-4519-a299-53546adbc735", - "layerType": "data", - "legendDisplay": "default", - "metrics": [ - "850d3e92-043f-4460-9290-10ca1311dc97" - ], - "nestedLegend": false, - "numberDisplay": "percent", - "primaryGroups": [ - "03ad11f6-344c-43a3-91fe-b70024c79ead" - ] + "columnId": "56bc0501-4f72-4b55-8998-f3aeceed9834" + }, + { + "columnId": "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b", + "isTransposed": false } ], - "shape": "treemap" + "layerId": "e0c50ea5-82ba-4ee6-be31-497faf705f15", + "layerType": "data" } }, "title": "", "type": "lens", - "visualizationType": "lnsPie" + "visualizationType": "lnsDatatable" }, "enhancements": {}, "hidePanelTitles": false }, - "title": "Status Code" - }, - { - "version": "8.9.0", - "type": "lens", "gridData": { "h": 15, - "i": "4df6f1a3-5307-4b0d-8e77-d2d1c1cfe423", + "i": "245be50a-a099-4712-bbf5-2b6ce1368ec7", "w": 16, - "x": 32, + "x": 0, "y": 15 }, - "panelIndex": "4df6f1a3-5307-4b0d-8e77-d2d1c1cfe423", + "panelIndex": "245be50a-a099-4712-bbf5-2b6ce1368ec7", + "title": "Top Accessed Resource Paths", + "type": "lens" + }, + { "embeddableConfig": { "attributes": { "references": [ { - "name": "indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "id": "logs-*", + "name": "indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "type": "index-pattern" } ], @@ -528,9 +514,9 @@ "columns": { "56bc0501-4f72-4b55-8998-f3aeceed9834": { "customLabel": true, - "dataType": "ip", + "dataType": "string", "isBucketed": true, - "label": "IP Address", + "label": "Route Key", "operationType": "terms", "params": { "exclude": [], @@ -547,10 +533,11 @@ "parentFormat": { "id": "terms" }, + "secondaryFields": [], "size": 10 }, "scale": "ordinal", - "sourceField": "aws.apigateway.ip_address" + "sourceField": "aws.apigateway.route_key" }, "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b": { "dataType": "number", @@ -600,11 +587,6 @@ "enhancements": {}, "hidePanelTitles": false }, - "title": "Top IP Addresses" - }, - { - "version": "8.9.0", - "type": "lens", "gridData": { "h": 15, "i": "e779f254-8384-4e2f-aea1-0dc375931e25", @@ -613,12 +595,16 @@ "y": 15 }, "panelIndex": "e779f254-8384-4e2f-aea1-0dc375931e25", + "title": "Top Accessed Route Keys", + "type": "lens" + }, + { "embeddableConfig": { "attributes": { "references": [ { - "name": "indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "id": "logs-*", + "name": "indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "type": "index-pattern" } ], @@ -635,9 +621,9 @@ "columns": { "56bc0501-4f72-4b55-8998-f3aeceed9834": { "customLabel": true, - "dataType": "string", + "dataType": "ip", "isBucketed": true, - "label": "Route Key", + "label": "IP Address", "operationType": "terms", "params": { "exclude": [], @@ -654,11 +640,10 @@ "parentFormat": { "id": "terms" }, - "secondaryFields": [], "size": 10 }, "scale": "ordinal", - "sourceField": "aws.apigateway.route_key" + "sourceField": "aws.apigateway.ip_address" }, "9afd9da3-ed66-4c33-a4a6-d9dc7f89119b": { "dataType": "number", @@ -708,26 +693,25 @@ "enhancements": {}, "hidePanelTitles": false }, - "title": "Top Accessed Route Keys" - }, - { - "version": "8.9.0", - "type": "lens", "gridData": { "h": 15, - "i": "df1c2d17-abc3-4e03-999b-4e8a082cb302", - "w": 24, - "x": 0, - "y": 30 + "i": "4df6f1a3-5307-4b0d-8e77-d2d1c1cfe423", + "w": 16, + "x": 32, + "y": 15 }, - "panelIndex": "df1c2d17-abc3-4e03-999b-4e8a082cb302", + "panelIndex": "4df6f1a3-5307-4b0d-8e77-d2d1c1cfe423", + "title": "Top IP Addresses", + "type": "lens" + }, + { "embeddableConfig": { "attributes": { "description": "", "references": [ { - "name": "indexpattern-datasource-layer-c7dca2ac-c8e3-48eb-b604-609a2a808cae", "id": "logs-*", + "name": "indexpattern-datasource-layer-c7dca2ac-c8e3-48eb-b604-609a2a808cae", "type": "index-pattern" } ], @@ -833,25 +817,24 @@ "enhancements": {}, "hidePanelTitles": false }, - "title": "Number of Requests" - }, - { - "version": "8.9.0", - "type": "lens", "gridData": { "h": 15, - "i": "cfe1a0fc-f948-4dce-bb6f-41ae6b018f0d", + "i": "df1c2d17-abc3-4e03-999b-4e8a082cb302", "w": 24, - "x": 24, + "x": 0, "y": 30 }, - "panelIndex": "cfe1a0fc-f948-4dce-bb6f-41ae6b018f0d", + "panelIndex": "df1c2d17-abc3-4e03-999b-4e8a082cb302", + "title": "Number of Requests", + "type": "lens" + }, + { "embeddableConfig": { "attributes": { "references": [ { - "name": "indexpattern-datasource-layer-8fb38a54-10e3-47e3-83c5-8853e0afe9da", "id": "logs-*", + "name": "indexpattern-datasource-layer-8fb38a54-10e3-47e3-83c5-8853e0afe9da", "type": "index-pattern" } ], @@ -963,106 +946,137 @@ "enhancements": {}, "hidePanelTitles": false }, - "title": "Response Length" + "gridData": { + "h": 15, + "i": "cfe1a0fc-f948-4dce-bb6f-41ae6b018f0d", + "w": 24, + "x": 24, + "y": 30 + }, + "panelIndex": "cfe1a0fc-f948-4dce-bb6f-41ae6b018f0d", + "title": "Response Length", + "type": "lens" }, { - "version": "8.9.0", - "type": "search", + "embeddableConfig": { + "attributes": { + "columns": [], + "grid": {}, + "hideChart": false, + "isTextBasedQuery": false, + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[],\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"data_stream.dataset : \\\"aws.apigateway_logs\\\" \"}}" + }, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + } + ], + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "timeRestore": false, + "usesAdHocDataView": false + }, + "enhancements": {} + }, "gridData": { "h": 15, - "i": "4bbea79e-625f-4803-8050-25d55e530dee", + "i": "90bc1970-759f-4d16-a060-4b75cba2db6c", "w": 48, "x": 0, "y": 45 }, - "panelIndex": "4bbea79e-625f-4803-8050-25d55e530dee", - "embeddableConfig": { - "enhancements": {} - }, - "panelRefName": "panel_4bbea79e-625f-4803-8050-25d55e530dee" + "panelIndex": "90bc1970-759f-4d16-a060-4b75cba2db6c", + "title": "API Gateway Logs", + "type": "search" } ], "timeRestore": false, "title": "[Logs AWS] API Gateway Overview", "version": 1 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-07-20T14:05:48.227Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-11T10:23:54.590Z", "id": "aws-5465f0f0-26e4-11ee-9051-011d57d86fe2", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ { + "id": "logs-*", "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern", - "id": "logs-*" + "type": "index-pattern" }, { - "name": "124faec6-fedf-4a5c-b060-ab3f03a8cdbe:indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "id": "logs-*", + "name": "124faec6-fedf-4a5c-b060-ab3f03a8cdbe:indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "type": "index-pattern" }, { - "name": "9a82e092-0e19-4f51-8879-680d1ed0ba44:indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "id": "logs-*", + "name": "92abd08c-7a30-4df3-bfae-31f101cd3f02:indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "type": "index-pattern" }, { - "name": "245be50a-a099-4712-bbf5-2b6ce1368ec7:indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "id": "logs-*", + "name": "9a82e092-0e19-4f51-8879-680d1ed0ba44:indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "type": "index-pattern" }, { - "name": "92abd08c-7a30-4df3-bfae-31f101cd3f02:indexpattern-datasource-layer-06dccdd0-c0b9-4519-a299-53546adbc735", "id": "logs-*", + "name": "245be50a-a099-4712-bbf5-2b6ce1368ec7:indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "type": "index-pattern" }, { - "name": "4df6f1a3-5307-4b0d-8e77-d2d1c1cfe423:indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "id": "logs-*", + "name": "e779f254-8384-4e2f-aea1-0dc375931e25:indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "type": "index-pattern" }, { - "name": "e779f254-8384-4e2f-aea1-0dc375931e25:indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "id": "logs-*", + "name": "4df6f1a3-5307-4b0d-8e77-d2d1c1cfe423:indexpattern-datasource-layer-e0c50ea5-82ba-4ee6-be31-497faf705f15", "type": "index-pattern" }, { - "name": "df1c2d17-abc3-4e03-999b-4e8a082cb302:indexpattern-datasource-layer-c7dca2ac-c8e3-48eb-b604-609a2a808cae", "id": "logs-*", + "name": "df1c2d17-abc3-4e03-999b-4e8a082cb302:indexpattern-datasource-layer-c7dca2ac-c8e3-48eb-b604-609a2a808cae", "type": "index-pattern" }, { - "name": "cfe1a0fc-f948-4dce-bb6f-41ae6b018f0d:indexpattern-datasource-layer-8fb38a54-10e3-47e3-83c5-8853e0afe9da", "id": "logs-*", + "name": "cfe1a0fc-f948-4dce-bb6f-41ae6b018f0d:indexpattern-datasource-layer-8fb38a54-10e3-47e3-83c5-8853e0afe9da", "type": "index-pattern" }, { - "name": "4bbea79e-625f-4803-8050-25d55e530dee:panel_4bbea79e-625f-4803-8050-25d55e530dee", - "type": "search", - "id": "aws-4f41d150-2704-11ee-81f9-fdf97c8e03a6" + "id": "logs-*", + "name": "90bc1970-759f-4d16-a060-4b75cba2db6c:kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" }, { + "id": "logs-*", "name": "controlGroup_8f39f203-e0d6-4567-bcae-8b2f875cf442:optionsListDataView", - "type": "index-pattern", - "id": "logs-*" + "type": "index-pattern" }, { + "id": "logs-*", "name": "controlGroup_7acb90a0-4fc1-4ed9-bf45-2a00e082c705:optionsListDataView", - "type": "index-pattern", - "id": "logs-*" + "type": "index-pattern" }, { + "id": "logs-*", "name": "controlGroup_a9bf185b-ff91-4165-8584-6075e830a2b0:optionsListDataView", - "type": "index-pattern", - "id": "logs-*" + "type": "index-pattern" }, { + "id": "logs-*", "name": "controlGroup_14595511-24be-417b-af74-625ad0e7319a:optionsListDataView", - "type": "index-pattern", - "id": "logs-*" + "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/aws/kibana/dashboard/aws-98f85120-0ea4-11ee-9c37-e55025c0278a.json b/packages/aws/kibana/dashboard/aws-98f85120-0ea4-11ee-9c37-e55025c0278a.json index 9f9f90eaefb0..e094b6d3198f 100644 --- a/packages/aws/kibana/dashboard/aws-98f85120-0ea4-11ee-9c37-e55025c0278a.json +++ b/packages/aws/kibana/dashboard/aws-98f85120-0ea4-11ee-9c37-e55025c0278a.json @@ -17,6 +17,7 @@ "meta": { "alias": null, "disabled": false, + "field": "data_stream.dataset", "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", "key": "data_stream.dataset", "negate": false, @@ -77,6 +78,7 @@ "format": { "id": "percent", "params": { + "compact": true, "decimals": 2 } } @@ -123,8 +125,7 @@ }, "panelIndex": "927fa50c-bf7d-4f7b-8679-518aa7f51262", "title": "HDFS Utilization", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -196,8 +197,7 @@ }, "panelIndex": "ef158595-61d2-4e7e-a55a-b6fd0fa8214d", "title": "Apps Failed", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -352,8 +352,7 @@ }, "panelIndex": "c3ce6c26-e55a-44e2-907c-1d2aab3529b7", "title": "S3 Bytes Read", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -386,6 +385,7 @@ "format": { "id": "percent", "params": { + "compact": true, "decimals": 2 } } @@ -431,8 +431,7 @@ }, "panelIndex": "9e85d781-6cf2-4e95-ac2f-385711c74765", "title": "YARN Memory Available Percentage", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -504,8 +503,7 @@ }, "panelIndex": "53377d5a-7df3-4634-9300-293ce2fbbd64", "title": "Apps Completed", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -577,8 +575,7 @@ }, "panelIndex": "19d0e843-0006-4b64-b917-42e38c5f7e75", "title": "Container Pending Ratio", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -650,8 +647,7 @@ }, "panelIndex": "b9e76ae0-d057-4ff7-900d-aee86b4b32ec", "title": "Apps Killed", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -806,8 +802,7 @@ }, "panelIndex": "fc0a7c7e-c30a-4777-b344-39bf15c70c45", "title": "S3 Bytes Written", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -962,8 +957,7 @@ }, "panelIndex": "dc9d2105-5101-498d-9b75-44e95382c477", "title": "HDFS Bytes Written", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1118,8 +1112,7 @@ }, "panelIndex": "c16dc181-d15d-4301-9bf3-95dddd75a64b", "title": "HDFS Bytes Read", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1274,8 +1267,7 @@ }, "panelIndex": "032f8c5d-1580-4b7f-b3f2-fc075533a51b", "title": "Memory Total MB", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1424,8 +1416,7 @@ }, "panelIndex": "3832f35d-690e-4ec8-bcd8-6c808b1fc277", "title": "Core Nodes Running", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1574,8 +1565,7 @@ }, "panelIndex": "fbe53db9-c526-4b2c-a2d5-0a76a301d466", "title": "Total Nodes Running", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1724,8 +1714,7 @@ }, "panelIndex": "d2541523-f58c-485a-9bea-0899d9eb95b4", "title": "Task Nodes Running", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1880,8 +1869,7 @@ }, "panelIndex": "1f421921-3327-443f-8bfc-01645f331bdc", "title": "Memory Available MB", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -2037,8 +2025,7 @@ }, "panelIndex": "a1f95551-a9a4-44c6-afa2-3b43e23df9e4", "title": "Memory Reserved MB", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -2193,21 +2180,23 @@ }, "panelIndex": "1785d7d7-8a43-4a93-a550-1590b005b31c", "title": "Memory Allocated MB", - "type": "lens", - "version": "8.7.1" + "type": "lens" } ], "timeRestore": false, "title": "[Metrics AWS] EMR Overview", "version": 1 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-06-19T14:28:24.447Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-11T10:46:47.652Z", "id": "aws-98f85120-0ea4-11ee-9c37-e55025c0278a", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ + { + "id": "metrics-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "metrics-*", "name": "927fa50c-bf7d-4f7b-8679-518aa7f51262:indexpattern-datasource-layer-775c326f-9e29-49ea-a6f9-aab9fb4ee280", @@ -2304,5 +2293,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/aws/kibana/dashboard/aws-9c09cd20-7399-11ea-a345-f985c61fe654.json b/packages/aws/kibana/dashboard/aws-9c09cd20-7399-11ea-a345-f985c61fe654.json index 4be514fc6d9e..cc4cbb5b20cd 100644 --- a/packages/aws/kibana/dashboard/aws-9c09cd20-7399-11ea-a345-f985c61fe654.json +++ b/packages/aws/kibana/dashboard/aws-9c09cd20-7399-11ea-a345-f985c61fe654.json @@ -67,8 +67,7 @@ "y": 0 }, "panelIndex": "85d26d9a-2a71-4b98-a026-5f513094d6e5", - "type": "map", - "version": "8.7.1" + "type": "map" }, { "embeddableConfig": { @@ -248,8 +247,7 @@ }, "panelIndex": "6b3eff90-3071-451e-a827-ca569e0ac10b", "title": "CloudTrail Event Outcome over time [Logs AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -409,8 +407,7 @@ }, "panelIndex": "952e456a-e9ae-4606-b838-e16019375336", "title": "CloudTrail Actions [Logs AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -539,8 +536,7 @@ }, "panelIndex": "3e617d87-3acf-4203-b03b-c907c9145fce", "title": "CloudTrail User Agents [Logs AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -669,8 +665,7 @@ }, "panelIndex": "802ad09d-5883-4e41-99ac-6c356144d24d", "title": "CloudTrail Event Type [Logs AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -799,24 +794,51 @@ }, "panelIndex": "d6f03440-c717-4f5e-928c-72ae9d450318", "title": "CloudTrail Error Code [Logs AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { + "attributes": { + "columns": [ + "user.id", + "event.provider", + "aws.cloudtrail.event_type", + "event.action", + "event.outcome", + "source.address", + "source.geo.region_name" + ], + "kibanaSavedObjectMeta": { + "searchSourceJSON": "{\"filter\":[{\"$state\":{\"store\":\"appState\"},\"meta\":{\"alias\":null,\"disabled\":false,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index\",\"key\":\"data_stream.dataset\",\"negate\":false,\"params\":{\"query\":\"aws.cloudtrail\"},\"type\":\"phrase\"},\"query\":{\"match_phrase\":{\"data_stream.dataset\":\"aws.cloudtrail\"}}}],\"highlightAll\":true,\"indexRefName\":\"kibanaSavedObjectMeta.searchSourceJSON.index\",\"query\":{\"language\":\"kuery\",\"query\":\"\"},\"version\":true}" + }, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + } + ], + "sort": [ + [] + ] + }, "enhancements": {} }, "gridData": { "h": 13, - "i": "2b82a2c9-3809-447c-8e95-52125acccb42", + "i": "5978c7e7-4414-42f7-80ba-180c784890c6", "w": 30, "x": 0, "y": 41 }, - "panelIndex": "2b82a2c9-3809-447c-8e95-52125acccb42", - "panelRefName": "panel_2b82a2c9-3809-447c-8e95-52125acccb42", - "type": "search", - "version": "8.7.1" + "panelIndex": "5978c7e7-4414-42f7-80ba-180c784890c6", + "title": "CloudTrail Events [Logs AWS]", + "type": "search" }, { "embeddableConfig": { @@ -934,20 +956,17 @@ }, "panelIndex": "40f0a89b-7ce5-498f-a0f0-5c7edf7f8b50", "title": "CloudTrail Top User IDs [Logs AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" } ], "timeRestore": false, "title": "[Logs AWS] CloudTrail", "version": 1 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-06-01T09:42:56.376Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-11T07:45:40.367Z", "id": "aws-9c09cd20-7399-11ea-a345-f985c61fe654", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ { "id": "logs-*", @@ -1010,9 +1029,14 @@ "type": "index-pattern" }, { - "id": "aws-30ccde50-7397-11ea-a345-f985c61fe654", - "name": "2b82a2c9-3809-447c-8e95-52125acccb42:panel_2b82a2c9-3809-447c-8e95-52125acccb42", - "type": "search" + "id": "logs-*", + "name": "5978c7e7-4414-42f7-80ba-180c784890c6:kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "5978c7e7-4414-42f7-80ba-180c784890c6:kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" }, { "id": "logs-*", @@ -1025,5 +1049,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/aws/kibana/dashboard/aws-a096b830-4762-11e9-8062-c98a86cb6f94.json b/packages/aws/kibana/dashboard/aws-a096b830-4762-11e9-8062-c98a86cb6f94.json index 5967e4b51e2d..42bf2d79efb6 100644 --- a/packages/aws/kibana/dashboard/aws-a096b830-4762-11e9-8062-c98a86cb6f94.json +++ b/packages/aws/kibana/dashboard/aws-a096b830-4762-11e9-8062-c98a86cb6f94.json @@ -23,8 +23,7 @@ "negate": false, "params": [ "aws.s3_daily_storage", - "aws.s3_request", - "aws.s3_storage_lens" + "aws.s3_request" ], "type": "phrases" }, @@ -41,11 +40,6 @@ "match_phrase": { "data_stream.dataset": "aws.s3_request" } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.s3_storage_lens" - } } ] } @@ -2935,6 +2929,11 @@ "dashboard": "8.3.0" }, "references": [ + { + "id": "metrics-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "metrics-*", "name": "38c1f878-ea80-4442-a455-9b669bd9b08f:indexpattern-datasource-layer-3a6b5560-57cf-4d5a-ab7c-fa2fc2911ed1", diff --git a/packages/aws/kibana/dashboard/aws-fac28650-7349-11e9-816b-07687310a99a.json b/packages/aws/kibana/dashboard/aws-fac28650-7349-11e9-816b-07687310a99a.json index ff6905b94318..b8d56c5944d2 100644 --- a/packages/aws/kibana/dashboard/aws-fac28650-7349-11e9-816b-07687310a99a.json +++ b/packages/aws/kibana/dashboard/aws-fac28650-7349-11e9-816b-07687310a99a.json @@ -38,33 +38,17 @@ "meta": { "alias": null, "disabled": false, + "field": "data_stream.dataset", "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", "key": "data_stream.dataset", "negate": false, "params": [ - "aws.apigateway_metrics", - "aws.billing", - "aws.cloudwatch_metrics", - "aws.dynamodb", - "aws.ebs", "aws.ec2_metrics", - "aws.ecs_metrics", - "aws.elb_metrics", - "aws.emr_metrics", - "aws.firewall_metrics", - "aws.kinesis", - "aws.lambda", - "aws.natgateway", - "aws.rds", - "aws.redshift", - "aws.s3_daily_storage", "aws.s3_request", - "aws.s3_storage_lens", - "aws.sns", "aws.sqs", - "aws.transitgateway", - "aws.usage", - "aws.vpn" + "aws.elb_metrics", + "aws.ecs_metrics", + "aws.lambda" ], "type": "phrases" }, @@ -72,101 +56,16 @@ "bool": { "minimum_should_match": 1, "should": [ - { - "match_phrase": { - "data_stream.dataset": "aws.apigateway_metrics" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.billing" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.cloudwatch_metrics" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.dynamodb" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.ebs" - } - }, { "match_phrase": { "data_stream.dataset": "aws.ec2_metrics" } }, - { - "match_phrase": { - "data_stream.dataset": "aws.ecs_metrics" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.elb_metrics" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.emr_metrics" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.firewall_metrics" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.kinesis" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.lambda" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.natgateway" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.rds" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.redshift" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.s3_daily_storage" - } - }, { "match_phrase": { "data_stream.dataset": "aws.s3_request" } }, - { - "match_phrase": { - "data_stream.dataset": "aws.s3_storage_lens" - } - }, - { - "match_phrase": { - "data_stream.dataset": "aws.sns" - } - }, { "match_phrase": { "data_stream.dataset": "aws.sqs" @@ -174,17 +73,17 @@ }, { "match_phrase": { - "data_stream.dataset": "aws.transitgateway" + "data_stream.dataset": "aws.elb_metrics" } }, { "match_phrase": { - "data_stream.dataset": "aws.usage" + "data_stream.dataset": "aws.ecs_metrics" } }, { "match_phrase": { - "data_stream.dataset": "aws.vpn" + "data_stream.dataset": "aws.lambda" } } ] @@ -327,8 +226,7 @@ }, "panelIndex": "3", "title": "EC2 Instance State [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -337,6 +235,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_metrics-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -513,8 +412,7 @@ }, "panelIndex": "4", "title": "EC2 CPU Utilization [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -601,8 +499,7 @@ }, "panelIndex": "6", "title": "S3 Total Error 4xx [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -685,8 +582,7 @@ }, "panelIndex": "7", "title": "S3 Total Error 5xx [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -852,8 +748,7 @@ }, "panelIndex": "9", "title": "SQS Empty Receives Top5 [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1017,8 +912,7 @@ }, "panelIndex": "10", "title": "SQS Messages Delayed Top5 [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1027,6 +921,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_metrics-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -1190,8 +1085,7 @@ }, "panelIndex": "12", "title": "Cloudwatch ELB Request Count Top5 [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1200,6 +1094,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_metrics-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -1378,8 +1273,7 @@ }, "panelIndex": "14", "title": "Cloudwatch ELB Latency [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1388,6 +1282,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_metrics-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -1543,8 +1438,7 @@ }, "panelIndex": "15", "title": "Cloudwatch ELB Unhealthy Host Count [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1704,8 +1598,7 @@ }, "panelIndex": "17", "title": "Cloudwatch Lambda Invocations Top5 [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -1714,6 +1607,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_metrics-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -1869,8 +1763,7 @@ }, "panelIndex": "18", "title": "Cloudwatch Lambda Errors Top5 [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -2030,8 +1923,7 @@ }, "panelIndex": "19", "title": "Cloudwatch Lambda Throttles Top5 [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -2040,6 +1932,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_metrics-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -2299,8 +2192,7 @@ }, "panelIndex": "24", "title": "Cloudwatch CPU Available [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -2309,6 +2201,7 @@ "state": { "adHocDataViews": { "tsvb_ad_hoc_metrics-*/@timestamp": { + "allowHidden": false, "allowNoIndex": true, "fieldAttrs": {}, "fieldFormats": {}, @@ -2568,21 +2461,23 @@ }, "panelIndex": "25", "title": "Cloudwatch Memory Available [Metrics AWS]", - "type": "lens", - "version": "8.7.1" + "type": "lens" } ], "timeRestore": false, "title": "[Metrics AWS] Overview", "version": 1 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-06-14T05:56:25.821Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-07-01T09:01:00.261Z", "id": "aws-fac28650-7349-11e9-816b-07687310a99a", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ + { + "id": "metrics-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "metrics-*", "name": "3:indexpattern-datasource-layer-19a92053-bd2d-482c-84ee-8391e43dea7c", @@ -2594,5 +2489,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/aws/kibana/search/aws-30ccde50-7397-11ea-a345-f985c61fe654.json b/packages/aws/kibana/search/aws-30ccde50-7397-11ea-a345-f985c61fe654.json deleted file mode 100644 index ad905298da35..000000000000 --- a/packages/aws/kibana/search/aws-30ccde50-7397-11ea-a345-f985c61fe654.json +++ /dev/null @@ -1,73 +0,0 @@ -{ - "attributes": { - "columns": [ - "user.id", - "event.provider", - "aws.cloudtrail.event_type", - "event.action", - "event.outcome", - "source.address", - "source.geo.region_name" - ], - "description": "", - "hits": 0, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "aws.cloudtrail" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "aws.cloudtrail" - } - } - } - ], - "highlightAll": true, - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "" - }, - "version": true - } - }, - "sort": [ - [] - ], - "title": "CloudTrail Events [Logs AWS]", - "version": 1 - }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-06-01T09:28:41.028Z", - "id": "aws-30ccde50-7397-11ea-a345-f985c61fe654", - "migrationVersion": { - "search": "8.0.0" - }, - "references": [ - { - "id": "logs-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", - "type": "index-pattern" - } - ], - "type": "search" -} \ No newline at end of file diff --git a/packages/aws/kibana/search/aws-4f41d150-2704-11ee-81f9-fdf97c8e03a6.json b/packages/aws/kibana/search/aws-4f41d150-2704-11ee-81f9-fdf97c8e03a6.json deleted file mode 100644 index b05c1395d7db..000000000000 --- a/packages/aws/kibana/search/aws-4f41d150-2704-11ee-81f9-fdf97c8e03a6.json +++ /dev/null @@ -1,42 +0,0 @@ -{ - "attributes": { - "columns": [], - "description": "", - "grid": {}, - "hideChart": false, - "isTextBasedQuery": false, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "data_stream.dataset : \"aws.apigateway_logs\" " - } - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "timeRestore": false, - "title": "API Gateway Logs", - "usesAdHocDataView": false - }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-07-20T13:49:55.813Z", - "id": "aws-4f41d150-2704-11ee-81f9-fdf97c8e03a6", - "migrationVersion": { - "search": "8.0.0" - }, - "references": [ - { - "id": "logs-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search" -} \ No newline at end of file diff --git a/packages/aws/kibana/search/aws-c1543010-2724-11ee-a3cb-33de1feb08f6.json b/packages/aws/kibana/search/aws-c1543010-2724-11ee-a3cb-33de1feb08f6.json deleted file mode 100644 index b3e3b7760fea..000000000000 --- a/packages/aws/kibana/search/aws-c1543010-2724-11ee-a3cb-33de1feb08f6.json +++ /dev/null @@ -1,41 +0,0 @@ -{ - "attributes": { - "columns": [], - "description": "", - "grid": {}, - "hideChart": false, - "isTextBasedQuery": false, - "kibanaSavedObjectMeta": { - "searchSourceJSON": { - "filter": [], - "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", - "query": { - "language": "kuery", - "query": "data_stream.dataset : \"aws.emr_logs\" " - } - } - }, - "sort": [ - [ - "@timestamp", - "desc" - ] - ], - "timeRestore": false, - "title": "[AWS] EMR Logs Search", - "usesAdHocDataView": false - }, - "coreMigrationVersion": "8.8.0", - "created_at": "2023-07-20T17:42:11.089Z", - "id": "aws-c1543010-2724-11ee-a3cb-33de1feb08f6", - "managed": false, - "references": [ - { - "id": "logs-*", - "name": "kibanaSavedObjectMeta.searchSourceJSON.index", - "type": "index-pattern" - } - ], - "type": "search", - "typeMigrationVersion": "8.0.0" -} \ No newline at end of file diff --git a/packages/aws/manifest.yml b/packages/aws/manifest.yml index b254fd553475..64152293c35a 100644 --- a/packages/aws/manifest.yml +++ b/packages/aws/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: aws title: AWS -version: 2.21.0 +version: 2.22.0 description: Collect logs and metrics from Amazon Web Services (AWS) with Elastic Agent. type: integration categories: From 0bdb9e4db2339199866444dba198b56c3b6ff354 Mon Sep 17 00:00:00 2001 From: milan-elastic <118723373+milan-elastic@users.noreply.github.com> Date: Mon, 5 Aug 2024 16:40:39 +0530 Subject: [PATCH 25/77] [O11y][GCP] Add global filter for dashboards to improve performance related to infraobs packages (#10398) * Add global filter for dashboards to improve performance related to infraobs packages. * Updated changelog entry * Updated menifest version * Minor refactor for changelog entry --- packages/gcp/changelog.yml | 5 ++ ...-6041d970-a6ae-11ea-950e-d57608e3aa51.json | 44 ++++++++++------- ...-76c9e920-e890-11ea-bf8c-d13ebf358a78.json | 34 ++++++------- ...-8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json | 39 +++++++++------ ...-aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json | 49 ++++++++++++------- packages/gcp/manifest.yml | 2 +- 6 files changed, 104 insertions(+), 69 deletions(-) diff --git a/packages/gcp/changelog.yml b/packages/gcp/changelog.yml index 6fa4ee83920f..268b66222b4e 100644 --- a/packages/gcp/changelog.yml +++ b/packages/gcp/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.36.0" + changes: + - description: Add global dataset filter for dashboards to improve performance. + type: enhancement + link: https://github.com/elastic/integrations/pull/10398 - version: "2.35.0" changes: - description: ECS version updated to 8.11.0. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/gcp/kibana/dashboard/gcp-6041d970-a6ae-11ea-950e-d57608e3aa51.json b/packages/gcp/kibana/dashboard/gcp-6041d970-a6ae-11ea-950e-d57608e3aa51.json index da58b26795d4..838664c59ff2 100644 --- a/packages/gcp/kibana/dashboard/gcp-6041d970-a6ae-11ea-950e-d57608e3aa51.json +++ b/packages/gcp/kibana/dashboard/gcp-6041d970-a6ae-11ea-950e-d57608e3aa51.json @@ -15,9 +15,10 @@ "store": "appState" }, "meta": { - "alias": "Only data from gcp.loadbalancing_metrics dataset", + "alias": null, "disabled": false, "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "field": "data_stream.dataset", "key": "data_stream.dataset", "negate": false, "params": { @@ -189,7 +190,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 16, @@ -201,7 +203,7 @@ "panelIndex": "da16e443-8524-47ea-83e1-6a16250ed61c", "title": "Open Connections", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -350,7 +352,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 16, @@ -362,7 +365,7 @@ "panelIndex": "e4fe30c7-906a-4878-bec7-7a78a06d98d0", "title": "New Connections", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -514,7 +517,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 16, @@ -526,7 +530,7 @@ "panelIndex": "305f8fc3-e763-4b2c-8998-9e0e057ce713", "title": "Closed Connections", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -704,7 +708,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 16, @@ -716,7 +721,7 @@ "panelIndex": "c2bec6ee-96e8-440c-bfa4-6e0def7b0095", "title": "Egress Bytes", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -894,7 +899,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 16, @@ -906,20 +912,23 @@ "panelIndex": "fbaeaa8f-262d-41b1-a621-d6dbff52ff59", "title": "Ingress Bytes", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" } ], "timeRestore": false, "title": "[Metrics GCP] Load Balancing TCP SSL Proxy Overview", "version": 1 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-08-17T13:12:15.456Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-22T11:50:09.037Z", "id": "gcp-6041d970-a6ae-11ea-950e-d57608e3aa51", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ + { + "id": "metrics-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "metrics-*", "name": "controlGroup_c2672750-bad8-40d1-99c1-9a94d3b18409:optionsListDataView", @@ -936,5 +945,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/gcp/kibana/dashboard/gcp-76c9e920-e890-11ea-bf8c-d13ebf358a78.json b/packages/gcp/kibana/dashboard/gcp-76c9e920-e890-11ea-bf8c-d13ebf358a78.json index 01b3b8814725..cc57c70b2e58 100644 --- a/packages/gcp/kibana/dashboard/gcp-76c9e920-e890-11ea-bf8c-d13ebf358a78.json +++ b/packages/gcp/kibana/dashboard/gcp-76c9e920-e890-11ea-bf8c-d13ebf358a78.json @@ -15,9 +15,10 @@ "store": "appState" }, "meta": { - "alias": "Only data from gcp.billing dataset", + "alias": null, "disabled": false, "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "field": "data_stream.dataset", "key": "data_stream.dataset", "negate": false, "params": { @@ -107,8 +108,7 @@ }, "panelIndex": "9eedb0c7-2089-4e0f-af98-721034203aad", "title": "Total Number Of Projects", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -205,8 +205,7 @@ }, "panelIndex": "b737e597-cc4d-4437-859c-6d491679599d", "title": "Cost Per Project ID", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -298,8 +297,7 @@ }, "panelIndex": "2d3d3b79-0656-45c2-b051-4489484b625c", "title": "Cost Per Month", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -415,8 +413,7 @@ }, "panelIndex": "f4d0ebcb-ac15-4c31-ab57-7f22e0c3e02a", "title": "Cost Per Invoice Month", - "type": "lens", - "version": "8.7.1" + "type": "lens" }, { "embeddableConfig": { @@ -579,21 +576,23 @@ }, "panelIndex": "991e60a8-68eb-4c2b-ac9a-b553e90dd49d", "title": "Total Billing Cost", - "type": "lens", - "version": "8.7.1" + "type": "lens" } ], "timeRestore": false, "title": "[Metrics GCP] Billing Overview", "version": 1 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-11-03T07:42:48.418Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-22T11:50:45.878Z", "id": "gcp-76c9e920-e890-11ea-bf8c-d13ebf358a78", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ + { + "id": "metrics-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "metrics-*", "name": "9eedb0c7-2089-4e0f-af98-721034203aad:indexpattern-datasource-layer-4cb00ce3-c62e-46f3-90ce-b69c876b9605", @@ -660,5 +659,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/gcp/kibana/dashboard/gcp-8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json b/packages/gcp/kibana/dashboard/gcp-8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json index 6822b6831637..cbaf867bb4e7 100644 --- a/packages/gcp/kibana/dashboard/gcp-8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json +++ b/packages/gcp/kibana/dashboard/gcp-8f9c6cc0-909d-11ea-8180-7b0dacd9df87.json @@ -15,9 +15,10 @@ "store": "appState" }, "meta": { - "alias": "Only data from gcp.loadbalancing_metrics dataset", + "alias": null, "disabled": false, "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "field": "data_stream.dataset", "key": "data_stream.dataset", "negate": false, "params": { @@ -222,7 +223,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -234,7 +236,7 @@ "panelIndex": "c38aeaae-69a7-4a6c-a35a-4bf5c8f70e86", "title": "Egress Bytes", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -412,7 +414,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -424,7 +427,7 @@ "panelIndex": "44d18a84-d060-4149-825d-eacc61f946f3", "title": "Egress Packets", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -602,7 +605,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -614,7 +618,7 @@ "panelIndex": "beaf5f45-5217-4aed-b663-69e5e9ca35c3", "title": "Ingress Bytes", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -792,7 +796,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -804,20 +809,23 @@ "panelIndex": "c5782327-dc55-466d-97d8-b79618f0b47a", "title": "Ingress Packets", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" } ], "timeRestore": false, "title": "[Metrics GCP] Load Balancing L3 Overview", "version": 1 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-08-18T06:53:59.299Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-22T11:50:08.027Z", "id": "gcp-8f9c6cc0-909d-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ + { + "id": "metrics-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "metrics-*", "name": "controlGroup_19b17b1a-02e7-425b-bdaf-789f36fb52b8:optionsListDataView", @@ -839,5 +847,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/gcp/kibana/dashboard/gcp-aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json b/packages/gcp/kibana/dashboard/gcp-aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json index 193e62d476b9..2daccfe9fca7 100644 --- a/packages/gcp/kibana/dashboard/gcp-aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json +++ b/packages/gcp/kibana/dashboard/gcp-aa5b8bd0-9157-11ea-8180-7b0dacd9df87.json @@ -15,9 +15,10 @@ "store": "appState" }, "meta": { - "alias": "Only data from gcp.loadbalancing_metrics dataset", + "alias": null, "disabled": false, "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "field": "data_stream.dataset", "key": "data_stream.dataset", "negate": false, "params": { @@ -220,7 +221,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -232,7 +234,7 @@ "panelIndex": "10490530-a766-4f87-824a-3fc18bf2e85b", "title": "Request Count", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -408,7 +410,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -420,7 +423,7 @@ "panelIndex": "8f4baaa9-6f4d-40fa-a77f-9f68f83a379c", "title": "Backend Request Count", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -598,7 +601,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -610,7 +614,7 @@ "panelIndex": "b90db52e-982e-4360-b5ed-71147ba79246", "title": "Request Bytes", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -792,7 +796,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -804,7 +809,7 @@ "panelIndex": "e737b020-eb94-4eb1-b53d-50fa551df648", "title": "Backend Request Bytes", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -986,7 +991,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -998,7 +1004,7 @@ "panelIndex": "2bf5bf09-e743-4c6d-8251-d12c9c70f273", "title": "Response Bytes", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" }, { "embeddableConfig": { @@ -1176,7 +1182,8 @@ "visualizationType": "lnsXY" }, "enhancements": {}, - "hidePanelTitles": false + "hidePanelTitles": false, + "type": "lens" }, "gridData": { "h": 15, @@ -1188,20 +1195,23 @@ "panelIndex": "a2a5c845-d426-425f-b2e6-e8df6038fd9d", "title": "Backend Response Bytes", "type": "lens", - "version": "8.7.1" + "version": "8.9.0" } ], "timeRestore": false, "title": "[Metrics GCP] Load Balancing HTTPS Overview", "version": 1 }, - "coreMigrationVersion": "8.7.1", - "created_at": "2023-08-16T09:18:06.384Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-22T11:50:07.017Z", "id": "gcp-aa5b8bd0-9157-11ea-8180-7b0dacd9df87", - "migrationVersion": { - "dashboard": "8.7.0" - }, + "managed": false, "references": [ + { + "id": "metrics-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "metrics-*", "name": "controlGroup_c535cbec-5efe-4b1c-ad48-fae93ef20ee4:optionsListDataView", @@ -1218,5 +1228,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/gcp/manifest.yml b/packages/gcp/manifest.yml index 7cd4b4e1912d..d090c75c8f9a 100644 --- a/packages/gcp/manifest.yml +++ b/packages/gcp/manifest.yml @@ -1,6 +1,6 @@ name: gcp title: Google Cloud Platform -version: "2.35.0" +version: "2.36.0" description: Collect logs and metrics from Google Cloud Platform with Elastic Agent. type: integration icons: From d1a7f31c73e4026964904d5574b6e9ce9da18fa4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 5 Aug 2024 18:23:13 +0200 Subject: [PATCH 26/77] Bump updatecli/updatecli-action from 2.62.0 to 2.65.0 (#10696) Bumps [updatecli/updatecli-action](https://github.com/updatecli/updatecli-action) from 2.62.0 to 2.65.0. - [Release notes](https://github.com/updatecli/updatecli-action/releases) - [Commits](https://github.com/updatecli/updatecli-action/compare/v2.62.0...v2.65.0) --- updated-dependencies: - dependency-name: updatecli/updatecli-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/bump-elastic-stack-version.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/bump-elastic-stack-version.yml b/.github/workflows/bump-elastic-stack-version.yml index c3182297576c..4e0e15a9ddcd 100644 --- a/.github/workflows/bump-elastic-stack-version.yml +++ b/.github/workflows/bump-elastic-stack-version.yml @@ -25,7 +25,7 @@ jobs: - uses: actions/checkout@v4 - name: Install Updatecli in the runner - uses: updatecli/updatecli-action@v2.62.0 + uses: updatecli/updatecli-action@v2.65.0 - name: Select diff action if: ${{ github.event_name == 'pull_request' }} From 6919f9f907f29fa50cc834d74a6f952e56d945df Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Tue, 6 Aug 2024 13:15:45 +0930 Subject: [PATCH 27/77] auth0: add auth0 v2 api input (#10656) --- packages/auth0/_dev/build/docs/README.md | 50 +- .../_dev/deploy/docker/docker-compose.yml | 13 + .../_dev/deploy/docker/files/config-logs.yml | 171 ++++ packages/auth0/changelog.yml | 5 + .../test/pipeline/test-pull-responses.json | 599 ++++++++++++ .../test-pull-responses.json-expected.json | 893 ++++++++++++++++++ .../test/system/test-auth0-cel-config.yml | 13 + .../data_stream/logs/agent/stream/cel.yml.hbs | 135 +++ .../elasticsearch/ingest_pipeline/default.yml | 7 + .../auth0/data_stream/logs/fields/fields.yml | 3 + packages/auth0/data_stream/logs/manifest.yml | 100 +- .../auth0/data_stream/logs/sample_event.json | 16 +- packages/auth0/docs/README.md | 66 +- packages/auth0/manifest.yml | 9 +- 14 files changed, 2027 insertions(+), 53 deletions(-) create mode 100644 packages/auth0/_dev/deploy/docker/files/config-logs.yml create mode 100644 packages/auth0/data_stream/logs/_dev/test/pipeline/test-pull-responses.json create mode 100644 packages/auth0/data_stream/logs/_dev/test/pipeline/test-pull-responses.json-expected.json create mode 100644 packages/auth0/data_stream/logs/_dev/test/system/test-auth0-cel-config.yml create mode 100644 packages/auth0/data_stream/logs/agent/stream/cel.yml.hbs diff --git a/packages/auth0/_dev/build/docs/README.md b/packages/auth0/_dev/build/docs/README.md index e7771cc7ea4a..90892e83eb24 100644 --- a/packages/auth0/_dev/build/docs/README.md +++ b/packages/auth0/_dev/build/docs/README.md @@ -1,29 +1,30 @@ # Auth0 Log Streams Integration -Auth0 offers integrations that push log events via log streams to Elasticsearch. The [Auth0 Log Streams](https://auth0.com/docs/customize/log-streams) integration package creates a HTTP listener that accepts incoming log events and ingests them into Elasticsearch. This allows you to search, observe and visualize the Auth0 log events through Elasticsearch. +Auth0 offers integrations that push log events via log streams to Elasticsearch or allows an Elastic Agent to make API requests for log events. The [Auth0 Log Streams](https://auth0.com/docs/customize/log-streams) integration package creates a HTTP listener that accepts incoming log events or runs periodic API requests to collect events and ingests them into Elasticsearch. This allows you to search, observe and visualize the Auth0 log events through Elasticsearch. -The agent running this integration must be able to accept requests from the Internet in order for Auth0 to be able connect. Auth0 requires that the webhook accept requests over HTTPS. So you must either configure the integration with a valid TLS certificate or use a reverse proxy in front of the integration. - -For more information, see Auth0's webpage on [integration to Elastic Security](https://marketplace.auth0.com/integrations/elastic-security). - -## Compatability +## Compatibility -The package collects log events sent via log stream webhooks. +The package collects log events either sent via log stream webhooks, or by API request to the Auth0 v2 API. -## Configuration - -### Enabling the integration in Elastic +## Enabling the integration in Elastic 1. In Kibana go to **Management > Integrations** 2. In "Search for integrations" search bar type **Auth0** 3. Click on "Auth0" integration from the search results. 4. Click on **Add Auth0** button to add Auth0 integration. +## Configuration for Webhook input + +The agent running this integration must be able to accept requests from the Internet in order for Auth0 to be able connect. Auth0 requires that the webhook accept requests over HTTPS. So you must either configure the integration with a valid TLS certificate or use a reverse proxy in front of the integration. + +For more information, see Auth0's webpage on [integration to Elastic Security](https://marketplace.auth0.com/integrations/elastic-security). + ### Configure the Auth0 integration -1. Enter values for "Listen Address", "Listen Port" and "Webhook path" to form the endpoint URL. Make note of the **Endpoint URL** `https://{AGENT_ADDRESS}:8383/auth0/logs`. -2. Enter value for "Secret value". This must match the "Authorization Token" value entered when configuring the "Custom Webhook" from Auth0 cloud. -3. Enter values for "TLS". Auth0 requires that the webhook accept requests over HTTPS. So you must either configure the integration with a valid TLS certificate or use a reverse proxy in front of the integration. +1. Click on **Collect Auth0 log streams events via Webhooks** to enable it. +2. Enter values for "Listen Address", "Listen Port" and "Webhook path" to form the endpoint URL. Make note of the **Endpoint URL** `https://{AGENT_ADDRESS}:8383/auth0/logs`. +3. Enter value for "Secret value". This must match the "Authorization Token" value entered when configuring the "Custom Webhook" from Auth0 cloud. +4. Enter values for "TLS". Auth0 requires that the webhook accept requests over HTTPS. So you must either configure the integration with a valid TLS certificate or use a reverse proxy in front of the integration. ### Creating the stream in Auth0 @@ -33,8 +34,27 @@ The package collects log events sent via log stream webhooks. 4. In **Payload URL**, paste the **Endpoint URL** collected during Step 1 of **Configure the Auth0 integration** section. 5. In **Authorization Token**, paste the **Authorization Token**. This must match the value entered in Step 2 of **Configure the Auth0 integration** section. 6. In **Content Type**, choose **application/json**. -7. In **Content Format**, choose **JSON Lines**. -8. **Click Save**. +7. In **Content Format**, choose **JSON Lines**. +8. Click **Save**. + +## Configuration for API request input + +### Creating an application in Auth0 + +1. From the Auth0 management console, navigate to **Applications > Applications** and click **+ Create Application**. +2. Choose **Machine to Machine Application**. +3. Name the new **Application** appropriately (e.g. Elastic) and click **Create**. +4. Select the **Auth0 Management API** option and click **Authorize**. +5. Select the `read:logs` and `read:logs_users` permissions and then click **Authorize**. +6. Navigate to the **Settings** tab. Take note of the "Domain", "Client ID" and "Client Secret" values in the **Basic Information** section. +7. Click **Save Changes**. + +### Configure the Auth0 integration + +1. In the Elastic Auth0 integration user interface click on **Collect Auth0 log events via API requests** to enable it. +2. Enter value for "URL". This must be an https URL using the **Domain** value obtained from Auth cloud above. +3. Enter value for "Client ID". This must match the "Client ID" value obtained from Auth0 cloud above. +4. Enter value for "Client Secret". This must match the "Client Secret" value obtained from Auth0 cloud above. ## Log Events diff --git a/packages/auth0/_dev/deploy/docker/docker-compose.yml b/packages/auth0/_dev/deploy/docker/docker-compose.yml index 8d744967adff..d4517f282a03 100644 --- a/packages/auth0/_dev/deploy/docker/docker-compose.yml +++ b/packages/auth0/_dev/deploy/docker/docker-compose.yml @@ -19,3 +19,16 @@ services: - STREAM_WEBHOOK_HEADER=Authorization=abc123 - STREAM_INSECURE=true command: log --start-signal=SIGHUP --delay=5s /sample_logs/auth0-ndjson.log + auth0-http-server: + image: docker.elastic.co/observability/stream:v0.15.0 + hostname: auth0 + ports: + - 8090 + volumes: + - ./files:/files:ro + environment: + PORT: '8090' + command: + - http-server + - --addr=:8090 + - --config=/files/config-logs.yml diff --git a/packages/auth0/_dev/deploy/docker/files/config-logs.yml b/packages/auth0/_dev/deploy/docker/files/config-logs.yml new file mode 100644 index 000000000000..c7a111344eb2 --- /dev/null +++ b/packages/auth0/_dev/deploy/docker/files/config-logs.yml @@ -0,0 +1,171 @@ +rules: + - path: /oauth/token + methods: ['POST'] + request_body: '{"audience":"http://svc-auth0-http-server:8090/api/v2/","client_id":"wwwwwwww","client_secret":"xxxxxxxx","grant_type":"client_credentials"}' + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: | + {"access_token":"yyyyyyyy","scope":"read:logs read:logs_users","expires_in":86400,"token_type":"Bearer"} + - path: /api/v2/logs + methods: ['GET'] + request_headers: + Authorization: + - "Bearer yyyyyyyy" + query_params: + from: "{from:900[0-9]{20}0{33}}" + take: 1 + responses: + - status_code: 200 + headers: + Content-Type: + - application/json + Link: + - ; rel="next" + body: |- + {{ minify_json ` + [ + { + "date": "2024-03-08T03:59:05.520Z", + "type": "sapi", + "description": "Create client grant", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "client_name": "", + "ip": "81.2.69.144", + "user_agent": "Firefox 125.0.0 / Arch 0.0.0", + "details": { + "request": { + "method": "post", + "path": "/api/v2/client-grants", + "query": {}, + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0", + "body": { + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "audience": "https://dev-fulaoenaspapatoulp.us.auth0.com/api/v2/", + "scope": [ + "read:logs", + "read:logs_users" + ] + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "auth": { + "user": { + "user_id": "github|32487232", + "name": "User McUserface", + "email": "user.mcuserface@company.com" + }, + "strategy": "jwt", + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + } + } + }, + "response": { + "statusCode": 201, + "body": { + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "audience": "https://dev-fulaoenaspapatoulp.us.auth0.com/api/v2/", + "scope": [ + "read:logs", + "read:logs_users" + ] + } + } + }, + "user_id": "github|32487232", + "$event_schema": { + "version": "1.0.0" + }, + "log_id": "90020240308035905601176000000000000001223372052035100532", + "tenant_name": "dev-fulaoenaspapatoulp", + "_id": "90020240308035905601176000000000000001223372052035100532", + "isMobile": false + } + ] + ` }} + - path: /api/v2/logs + methods: ['GET'] + request_headers: + Authorization: + - "Bearer yyyyyyyy" + query_params: + from: "90020240308035905601176000000000000001223372052035100532" + take: 1 + responses: + - status_code: 200 + headers: + Content-Type: + - application/json + Link: + - ; rel="next" + body: |- + {{ minify_json ` + [ + { + "date": "2024-03-08T03:59:06.700Z", + "type": "mgmt_api_read", + "description": "Get client by ID", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "client_name": "", + "ip": "81.2.69.144", + "user_agent": "Firefox 125.0.0 / Arch 0.0.0", + "details": { + "accessedSecrets": [ + "client_secret" + ], + "request": { + "method": "get", + "path": "/api/v2/clients/MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "query": {}, + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0", + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "auth": { + "user": { + "user_id": "github|32487232", + "name": "User McUserface", + "email": "user.mcuserface@company.com" + }, + "strategy": "jwt", + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + } + } + }, + "response": { + "statusCode": 200, + "body": { + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl" + } + } + }, + "user_id": "github|32487232", + "$event_schema": { + "version": "1.0.0" + }, + "log_id": "90020240308035906742643000000000000001223372052035101088", + "tenant_name": "dev-fulaoenaspapatoulp", + "_id": "90020240308035906742643000000000000001223372052035101088", + "isMobile": false + } + ] + ` }} + - path: /api/v2/logs + methods: ['GET'] + request_headers: + Authorization: + - "Bearer yyyyyyyy" + query_params: + from: "90020240308035906742643000000000000001223372052035101088" + take: 1 + responses: + - status_code: 200 + headers: + Content-Type: + - application/json + Link: + - ; rel="next" + body: '[]' diff --git a/packages/auth0/changelog.yml b/packages/auth0/changelog.yml index 108a91378662..89844fc18b38 100644 --- a/packages/auth0/changelog.yml +++ b/packages/auth0/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.17.0" + changes: + - description: Add pull v2/logs API input. + type: enhancement + link: https://github.com/elastic/integrations/pull/10656 - version: "1.16.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/auth0/data_stream/logs/_dev/test/pipeline/test-pull-responses.json b/packages/auth0/data_stream/logs/_dev/test/pipeline/test-pull-responses.json new file mode 100644 index 000000000000..5e009740491e --- /dev/null +++ b/packages/auth0/data_stream/logs/_dev/test/pipeline/test-pull-responses.json @@ -0,0 +1,599 @@ +{ + "events": [ + { + "json": { + "data": { + "_id": "90020240308035328208838000000000000001223372052034940964", + "date": "2024-03-08T03:53:28.106Z", + "description": "Guardian - Updates tenant settings", + "details": { + "request": { + "auth": { + "scopes": [ + "read:authenticators", + "remove:authenticators", + "update:authenticators", + "create:authenticators", + "read:enrollments", + "delete:enrollments", + "read:factors", + "update:factors", + "update:tenant_settings", + "update:users", + "create:enrollment_tickets", + "create:users" + ], + "strategy": "jwt_api2_internal_token", + "subject": "github|32487232" + }, + "body": {}, + "ip": "81.2.69.144", + "method": "PATCH", + "path": "/api/tenants/settings", + "query": {} + }, + "response": { + "body": { + "friendly_name": "[REDACTED]", + "guardian_mfa_page": "[REDACTED]", + "name": "dev-fulaoenaspapatoulp", + "picture_url": "[REDACTED]" + }, + "statusCode": 200 + } + }, + "ip": "81.2.69.144", + "isMobile": false, + "log_id": "90020240308035328208838000000000000001223372052034940964", + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "gd_tenant_update", + "user_agent": "Other 0.0.0 / Other 0.0.0", + "user_id": "github|32487232" + }, + "log_id": "90020240308035328208838000000000000001223372052034940964" + } + }, + { + "json": { + "data": { + "$event_schema": { + "version": "1.0.0" + }, + "_id": "90020240308035328377107000000000000001223372052034941034", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "client_name": "", + "date": "2024-03-08T03:53:28.286Z", + "description": "Update tenant settings", + "details": { + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3", + "scopes": [ + "create:actions", + "create:authentication_methods", + "create:client_credentials", + "create:client_grants", + "create:clients", + "create:connections", + "create:custom_domains", + "create:email_provider", + "create:email_templates", + "create:encryption_keys", + "create:guardian_enrollment_tickets", + "create:integrations", + "create:log_streams", + "create:organization_connections", + "create:organization_invitations", + "create:organization_member_roles", + "create:organization_members", + "create:organizations", + "create:phone_providers", + "create:phone_templates", + "create:requested_scopes", + "create:resource_servers", + "create:roles", + "create:rules", + "create:scim_config", + "create:scim_token", + "create:self_service_profiles", + "create:shields", + "create:signing_keys", + "create:tenant_invitations", + "create:test_email_dispatch", + "create:users", + "delete:actions", + "delete:anomaly_blocks", + "delete:authentication_methods", + "delete:branding", + "delete:client_credentials", + "delete:client_grants", + "delete:clients", + "delete:connections", + "delete:custom_domains", + "delete:device_credentials", + "delete:email_provider", + "delete:email_templates", + "delete:encryption_keys", + "delete:grants", + "delete:guardian_enrollments", + "delete:integrations", + "delete:log_streams", + "delete:organization_connections", + "delete:organization_invitations", + "delete:organization_member_roles", + "delete:organization_members", + "delete:organizations", + "delete:owners", + "delete:phone_providers", + "delete:phone_templates", + "delete:requested_scopes", + "delete:resource_servers", + "delete:roles", + "delete:rules", + "delete:rules_configs", + "delete:scim_config", + "delete:scim_token", + "delete:shields", + "delete:tenant_invitations", + "delete:tenant_members", + "delete:tenants", + "delete:users", + "read:actions", + "read:anomaly_blocks", + "read:attack_protection", + "read:authentication_methods", + "read:branding", + "read:checks", + "read:client_credentials", + "read:client_grants", + "read:client_keys", + "read:clients", + "read:connections", + "read:custom_domains", + "read:device_credentials", + "read:email_provider", + "read:email_templates", + "read:email_triggers", + "read:encryption_keys", + "read:entity_counts", + "read:grants", + "read:guardian_factors", + "read:insights", + "read:integrations", + "read:log_streams", + "read:logs", + "read:mfa_policies", + "read:organization_connections", + "read:organization_invitations", + "read:organization_member_roles", + "read:organization_members", + "read:organizations", + "read:phone_providers", + "read:phone_templates", + "read:prompts", + "read:requested_scopes", + "read:resource_servers", + "read:roles", + "read:rules", + "read:rules_configs", + "read:scim_config", + "read:scim_token", + "read:self_service_profiles", + "read:shields", + "read:signing_keys", + "read:stats", + "read:tenant_invitations", + "read:tenant_members", + "read:tenant_settings", + "read:triggers", + "read:users", + "run:checks", + "update:actions", + "update:attack_protection", + "update:authentication_methods", + "update:branding", + "update:client_credentials", + "update:client_grants", + "update:client_keys", + "update:clients", + "update:connections", + "update:custom_domains", + "update:email_provider", + "update:email_templates", + "update:email_triggers", + "update:encryption_keys", + "update:guardian_factors", + "update:integrations", + "update:log_streams", + "update:mfa_policies", + "update:organization_connections", + "update:organizations", + "update:phone_providers", + "update:phone_templates", + "update:prompts", + "update:requested_scopes", + "update:resource_servers", + "update:roles", + "update:rules", + "update:rules_configs", + "update:scim_config", + "update:self_service_profiles", + "update:shields", + "update:signing_keys", + "update:tenant_members", + "update:tenant_settings", + "update:triggers", + "update:users" + ] + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "body": { + "flags": { + "dashboard_new_onboarding": false + } + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "patch", + "path": "/api/v2/tenants/settings", + "query": {}, + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "enabled_locales": [ + "en" + ], + "flags": { + "allow_changing_enable_sso": false, + "cannot_change_enforce_client_authentication_on_passwordless_start": true, + "dashboard_new_onboarding": false, + "disable_clickjack_protection_headers": false, + "disable_impersonation": true, + "enable_sso": true, + "enforce_client_authentication_on_passwordless_start": true, + "revoke_refresh_token_grant": false, + "universal_login": true + }, + "oidc_logout": { + "rp_logout_end_session_endpoint_discovery": true + }, + "sandbox_version": "18" + }, + "statusCode": 200 + } + }, + "ip": "81.2.69.144", + "isMobile": false, + "log_id": "90020240308035328377107000000000000001223372052034941034", + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "sapi", + "user_agent": "Firefox 125.0.0 / Arch 0.0.0", + "user_id": "github|32487232" + }, + "log_id": "90020240308035328377107000000000000001223372052034941034" + } + }, + { + "json": { + "data": { + "$event_schema": { + "version": "1.0.0" + }, + "_id": "90020240308035905133220000000000000001223372052035100299", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "client_name": "", + "date": "2024-03-08T03:59:05.059Z", + "description": "Create a client", + "details": { + "accessedSecrets": [ + "client_secret" + ], + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "body": { + "app_type": "non_interactive", + "grant_types": [ + "client_credentials" + ], + "is_first_party": true, + "jwt_configuration": { + "alg": "RS256", + "lifetime_in_seconds": 36000 + }, + "name": "cel_test", + "oidc_conformant": true, + "token_endpoint_auth_method": "*****" + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "post", + "path": "/api/v2/clients", + "query": {}, + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "app_type": "non_interactive", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "client_secret": "*****", + "cross_origin_auth": false, + "custom_login_page_on": true, + "grant_types": [ + "client_credentials" + ], + "is_first_party": true, + "is_token_endpoint_ip_header_trusted": "*****", + "jwt_configuration": { + "alg": "RS256", + "lifetime_in_seconds": 36000, + "secret_encoded": "*****" + }, + "name": "cel_test", + "oidc_conformant": true, + "refresh_token": "*****", + "sso_disabled": false, + "token_endpoint_auth_method": "*****" + }, + "statusCode": 201 + } + }, + "ip": "81.2.69.144", + "isMobile": false, + "log_id": "90020240308035905133220000000000000001223372052035100299", + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "sapi", + "user_agent": "Firefox 125.0.0 / Arch 0.0.0", + "user_id": "github|32487232" + }, + "log_id": "90020240308035905133220000000000000001223372052035100299" + } + }, + { + "json": { + "data": { + "$event_schema": { + "version": "1.0.0" + }, + "_id": "90020240308035905601176000000000000001223372052035100532", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "client_name": "", + "date": "2024-03-08T03:59:05.520Z", + "description": "Create client grant", + "details": { + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "body": { + "audience": "https://dev-fulaoenaspapatoulp.us.auth0.com/api/v2/", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "scope": [ + "read:logs", + "read:logs_users" + ] + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "post", + "path": "/api/v2/client-grants", + "query": {}, + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "audience": "https://dev-fulaoenaspapatoulp.us.auth0.com/api/v2/", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "scope": [ + "read:logs", + "read:logs_users" + ] + }, + "statusCode": 201 + } + }, + "ip": "81.2.69.144", + "isMobile": false, + "log_id": "90020240308035905601176000000000000001223372052035100532", + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "sapi", + "user_agent": "Firefox 125.0.0 / Arch 0.0.0", + "user_id": "github|32487232" + }, + "log_id": "90020240308035905601176000000000000001223372052035100532" + } + }, + { + "json": { + "data": { + "$event_schema": { + "version": "1.0.0" + }, + "_id": "90020240308035906742643000000000000001223372052035101088", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "client_name": "", + "date": "2024-03-08T03:59:06.700Z", + "description": "Get client by ID", + "details": { + "accessedSecrets": [ + "client_secret" + ], + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "get", + "path": "/api/v2/clients/MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "query": {}, + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl" + }, + "statusCode": 200 + } + }, + "ip": "81.2.69.144", + "isMobile": false, + "log_id": "90020240308035906742643000000000000001223372052035101088", + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "mgmt_api_read", + "user_agent": "Firefox 125.0.0 / Arch 0.0.0", + "user_id": "github|32487232" + }, + "log_id": "90020240308035906742643000000000000001223372052035101088" + } + }, + { + "json": { + "data": { + "_id": "90020240308043029390629000000000000001223372052036013632", + "audience": "https://dev-fulaoenaspapatoulp.us.auth0.com/api/v2/", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "client_name": "cel_test", + "connection_id": "", + "date": "2024-03-08T04:30:29.321Z", + "description": "", + "hostname": "dev-fulaoenaspapatoulp.us.auth0.com", + "ip": "216.160.83.56", + "isMobile": false, + "log_id": "90020240308043029390629000000000000001223372052036013632", + "scope": "read:logs read:logs_users", + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "seccft", + "user_agent": "Other 0.0.0 / Other 0.0.0", + "user_id": "", + "user_name": "" + }, + "log_id": "90020240308043029390629000000000000001223372052036013632" + } + }, + { + "json": { + "data": { + "$event_schema": { + "version": "1.0.0" + }, + "_id": "90020240308043140198979000000000000001223372052036047895", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "client_name": "", + "date": "2024-03-08T04:31:40.136Z", + "description": "Update a client", + "details": { + "accessedSecrets": [ + "client_secret" + ], + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "body": { + "allowed_clients": [], + "app_type": "non_interactive", + "callbacks": [], + "client_aliases": [], + "cross_origin_auth": false, + "cross_origin_loc": null, + "is_token_endpoint_ip_header_trusted": "*****", + "jwt_configuration": { + "alg": "RS256", + "lifetime_in_seconds": 36000 + }, + "name": "cel_test", + "oidc_conformant": true, + "refresh_token": "*****", + "token_endpoint_auth_method": "*****" + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "patch", + "path": "/api/v2/clients/MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "query": {}, + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "allowed_clients": [], + "app_type": "non_interactive", + "callbacks": [], + "client_aliases": [], + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "client_secret": "*****", + "cross_origin_auth": false, + "custom_login_page_on": true, + "grant_types": [ + "client_credentials" + ], + "is_first_party": true, + "is_token_endpoint_ip_header_trusted": "*****", + "jwt_configuration": { + "alg": "RS256", + "lifetime_in_seconds": 36000, + "secret_encoded": "*****" + }, + "name": "cel_test", + "oidc_conformant": true, + "refresh_token": "*****", + "sso_disabled": false, + "token_endpoint_auth_method": "*****" + }, + "statusCode": 200 + } + }, + "ip": "81.2.69.144", + "isMobile": false, + "log_id": "90020240308043140198979000000000000001223372052036047895", + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "sapi", + "user_agent": "Firefox 125.0.0 / Arch 0.0.0", + "user_id": "github|32487232" + }, + "log_id": "90020240308043140198979000000000000001223372052036047895" + } + } + ] +} diff --git a/packages/auth0/data_stream/logs/_dev/test/pipeline/test-pull-responses.json-expected.json b/packages/auth0/data_stream/logs/_dev/test/pipeline/test-pull-responses.json-expected.json new file mode 100644 index 000000000000..87fb360049e3 --- /dev/null +++ b/packages/auth0/data_stream/logs/_dev/test/pipeline/test-pull-responses.json-expected.json @@ -0,0 +1,893 @@ +{ + "expected": [ + { + "@timestamp": "2024-03-08T03:53:28.106Z", + "auth0": { + "logs": { + "data": { + "classification": "Other", + "date": "2024-03-08T03:53:28.106Z", + "description": "Guardian - Updates tenant settings", + "details": { + "request": { + "auth": { + "scopes": [ + "read:authenticators", + "remove:authenticators", + "update:authenticators", + "create:authenticators", + "read:enrollments", + "delete:enrollments", + "read:factors", + "update:factors", + "update:tenant_settings", + "update:users", + "create:enrollment_tickets", + "create:users" + ], + "strategy": "jwt_api2_internal_token", + "subject": "github|32487232" + }, + "ip": "81.2.69.144", + "method": "PATCH", + "path": "/api/tenants/settings" + }, + "response": { + "body": { + "friendly_name": "[REDACTED]", + "guardian_mfa_page": "[REDACTED]", + "name": "dev-fulaoenaspapatoulp", + "picture_url": "[REDACTED]" + }, + "statusCode": 200 + } + }, + "is_mobile": false, + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "Guardian tenant update" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "guardian-tenant-update", + "category": [ + "authentication" + ], + "id": "90020240308035328208838000000000000001223372052034940964", + "kind": "event", + "outcome": "unknown", + "type": [ + "info" + ] + }, + "log": { + "level": "info" + }, + "network": { + "type": "ipv4" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.144" + }, + "user": { + "id": "github|32487232" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Other", + "original": "Other 0.0.0 / Other 0.0.0" + } + }, + { + "@timestamp": "2024-03-08T03:53:28.286Z", + "auth0": { + "logs": { + "data": { + "classification": "Management API - Success", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "date": "2024-03-08T03:53:28.286Z", + "description": "Update tenant settings", + "details": { + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3", + "scopes": [ + "create:actions", + "create:authentication_methods", + "create:client_credentials", + "create:client_grants", + "create:clients", + "create:connections", + "create:custom_domains", + "create:email_provider", + "create:email_templates", + "create:encryption_keys", + "create:guardian_enrollment_tickets", + "create:integrations", + "create:log_streams", + "create:organization_connections", + "create:organization_invitations", + "create:organization_member_roles", + "create:organization_members", + "create:organizations", + "create:phone_providers", + "create:phone_templates", + "create:requested_scopes", + "create:resource_servers", + "create:roles", + "create:rules", + "create:scim_config", + "create:scim_token", + "create:self_service_profiles", + "create:shields", + "create:signing_keys", + "create:tenant_invitations", + "create:test_email_dispatch", + "create:users", + "delete:actions", + "delete:anomaly_blocks", + "delete:authentication_methods", + "delete:branding", + "delete:client_credentials", + "delete:client_grants", + "delete:clients", + "delete:connections", + "delete:custom_domains", + "delete:device_credentials", + "delete:email_provider", + "delete:email_templates", + "delete:encryption_keys", + "delete:grants", + "delete:guardian_enrollments", + "delete:integrations", + "delete:log_streams", + "delete:organization_connections", + "delete:organization_invitations", + "delete:organization_member_roles", + "delete:organization_members", + "delete:organizations", + "delete:owners", + "delete:phone_providers", + "delete:phone_templates", + "delete:requested_scopes", + "delete:resource_servers", + "delete:roles", + "delete:rules", + "delete:rules_configs", + "delete:scim_config", + "delete:scim_token", + "delete:shields", + "delete:tenant_invitations", + "delete:tenant_members", + "delete:tenants", + "delete:users", + "read:actions", + "read:anomaly_blocks", + "read:attack_protection", + "read:authentication_methods", + "read:branding", + "read:checks", + "read:client_credentials", + "read:client_grants", + "read:client_keys", + "read:clients", + "read:connections", + "read:custom_domains", + "read:device_credentials", + "read:email_provider", + "read:email_templates", + "read:email_triggers", + "read:encryption_keys", + "read:entity_counts", + "read:grants", + "read:guardian_factors", + "read:insights", + "read:integrations", + "read:log_streams", + "read:logs", + "read:mfa_policies", + "read:organization_connections", + "read:organization_invitations", + "read:organization_member_roles", + "read:organization_members", + "read:organizations", + "read:phone_providers", + "read:phone_templates", + "read:prompts", + "read:requested_scopes", + "read:resource_servers", + "read:roles", + "read:rules", + "read:rules_configs", + "read:scim_config", + "read:scim_token", + "read:self_service_profiles", + "read:shields", + "read:signing_keys", + "read:stats", + "read:tenant_invitations", + "read:tenant_members", + "read:tenant_settings", + "read:triggers", + "read:users", + "run:checks", + "update:actions", + "update:attack_protection", + "update:authentication_methods", + "update:branding", + "update:client_credentials", + "update:client_grants", + "update:client_keys", + "update:clients", + "update:connections", + "update:custom_domains", + "update:email_provider", + "update:email_templates", + "update:email_triggers", + "update:encryption_keys", + "update:guardian_factors", + "update:integrations", + "update:log_streams", + "update:mfa_policies", + "update:organization_connections", + "update:organizations", + "update:phone_providers", + "update:phone_templates", + "update:prompts", + "update:requested_scopes", + "update:resource_servers", + "update:roles", + "update:rules", + "update:rules_configs", + "update:scim_config", + "update:self_service_profiles", + "update:shields", + "update:signing_keys", + "update:tenant_members", + "update:tenant_settings", + "update:triggers", + "update:users" + ] + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "body": { + "flags": { + "dashboard_new_onboarding": false + } + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "patch", + "path": "/api/v2/tenants/settings", + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "enabled_locales": [ + "en" + ], + "flags": { + "allow_changing_enable_sso": false, + "cannot_change_enforce_client_authentication_on_passwordless_start": true, + "dashboard_new_onboarding": false, + "disable_clickjack_protection_headers": false, + "disable_impersonation": true, + "enable_sso": true, + "enforce_client_authentication_on_passwordless_start": true, + "revoke_refresh_token_grant": false, + "universal_login": true + }, + "oidc_logout": { + "rp_logout_end_session_endpoint_discovery": true + }, + "sandbox_version": "18" + }, + "statusCode": 200 + } + }, + "is_mobile": false, + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "Successful Management API operation" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "success-mgmt-api-op", + "category": [ + "authentication", + "web", + "iam" + ], + "id": "90020240308035328377107000000000000001223372052034941034", + "kind": "event", + "outcome": "success", + "type": [ + "info", + "access", + "change" + ] + }, + "log": { + "level": "info" + }, + "network": { + "type": "ipv4" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.144" + }, + "user": { + "id": "github|32487232" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Other", + "original": "Firefox 125.0.0 / Arch 0.0.0" + } + }, + { + "@timestamp": "2024-03-08T03:59:05.059Z", + "auth0": { + "logs": { + "data": { + "classification": "Management API - Success", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "date": "2024-03-08T03:59:05.059Z", + "description": "Create a client", + "details": { + "accessedSecrets": [ + "client_secret" + ], + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "body": { + "app_type": "non_interactive", + "grant_types": [ + "client_credentials" + ], + "is_first_party": true, + "jwt_configuration": { + "alg": "RS256", + "lifetime_in_seconds": 36000 + }, + "name": "cel_test", + "oidc_conformant": true, + "token_endpoint_auth_method": "*****" + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "post", + "path": "/api/v2/clients", + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "app_type": "non_interactive", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "client_secret": "*****", + "cross_origin_auth": false, + "custom_login_page_on": true, + "grant_types": [ + "client_credentials" + ], + "is_first_party": true, + "is_token_endpoint_ip_header_trusted": "*****", + "jwt_configuration": { + "alg": "RS256", + "lifetime_in_seconds": 36000, + "secret_encoded": "*****" + }, + "name": "cel_test", + "oidc_conformant": true, + "refresh_token": "*****", + "sso_disabled": false, + "token_endpoint_auth_method": "*****" + }, + "statusCode": 201 + } + }, + "is_mobile": false, + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "Successful Management API operation" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "success-mgmt-api-op", + "category": [ + "authentication", + "web", + "iam" + ], + "id": "90020240308035905133220000000000000001223372052035100299", + "kind": "event", + "outcome": "success", + "type": [ + "info", + "access", + "change" + ] + }, + "log": { + "level": "info" + }, + "network": { + "type": "ipv4" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.144" + }, + "user": { + "id": "github|32487232" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Other", + "original": "Firefox 125.0.0 / Arch 0.0.0" + } + }, + { + "@timestamp": "2024-03-08T03:59:05.520Z", + "auth0": { + "logs": { + "data": { + "classification": "Management API - Success", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "date": "2024-03-08T03:59:05.520Z", + "description": "Create client grant", + "details": { + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "body": { + "audience": "https://dev-fulaoenaspapatoulp.us.auth0.com/api/v2/", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "scope": [ + "read:logs", + "read:logs_users" + ] + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "post", + "path": "/api/v2/client-grants", + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "audience": "https://dev-fulaoenaspapatoulp.us.auth0.com/api/v2/", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "scope": [ + "read:logs", + "read:logs_users" + ] + }, + "statusCode": 201 + } + }, + "is_mobile": false, + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "Successful Management API operation" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "success-mgmt-api-op", + "category": [ + "authentication", + "web", + "iam" + ], + "id": "90020240308035905601176000000000000001223372052035100532", + "kind": "event", + "outcome": "success", + "type": [ + "info", + "access", + "change" + ] + }, + "log": { + "level": "info" + }, + "network": { + "type": "ipv4" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.144" + }, + "user": { + "id": "github|32487232" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Other", + "original": "Firefox 125.0.0 / Arch 0.0.0" + } + }, + { + "@timestamp": "2024-03-08T03:59:06.700Z", + "auth0": { + "logs": { + "data": { + "classification": "Management API - Success", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "date": "2024-03-08T03:59:06.700Z", + "description": "Get client by ID", + "details": { + "accessedSecrets": [ + "client_secret" + ], + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "get", + "path": "/api/v2/clients/MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl" + }, + "statusCode": 200 + } + }, + "is_mobile": false, + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "API GET operation returning secrets completed successfully" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "success-mgmt-api-op-secrets-returned", + "category": [ + "authentication", + "web", + "iam" + ], + "id": "90020240308035906742643000000000000001223372052035101088", + "kind": "event", + "outcome": "success", + "type": [ + "info", + "access" + ] + }, + "log": { + "level": "info" + }, + "network": { + "type": "ipv4" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.144" + }, + "user": { + "id": "github|32487232" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Other", + "original": "Firefox 125.0.0 / Arch 0.0.0" + } + }, + { + "@timestamp": "2024-03-08T04:30:29.321Z", + "auth0": { + "logs": { + "data": { + "audience": "https://dev-fulaoenaspapatoulp.us.auth0.com/api/v2/", + "classification": "Token Exchange - Success", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "client_name": "cel_test", + "date": "2024-03-08T04:30:29.321Z", + "hostname": "dev-fulaoenaspapatoulp.us.auth0.com", + "is_mobile": false, + "scope": "read:logs read:logs_users", + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "Successful exchange of Access Token for a Client Credentials Grant" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "success-exchange-access-token-for-client-cred-grant", + "category": [ + "authentication", + "network", + "web" + ], + "id": "90020240308043029390629000000000000001223372052036013632", + "kind": "event", + "outcome": "success", + "type": [ + "info", + "protocol", + "access" + ] + }, + "log": { + "level": "info" + }, + "network": { + "type": "ipv4" + }, + "source": { + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.56" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Other", + "original": "Other 0.0.0 / Other 0.0.0" + } + }, + { + "@timestamp": "2024-03-08T04:31:40.136Z", + "auth0": { + "logs": { + "data": { + "classification": "Management API - Success", + "client_id": "xZjM1MjUxOGVhYzYxNTAxZmE3NmI1MGIgIC", + "date": "2024-03-08T04:31:40.136Z", + "description": "Update a client", + "details": { + "accessedSecrets": [ + "client_secret" + ], + "request": { + "auth": { + "credentials": { + "jti": "e01983470586edb819c8c5d9967a63d3" + }, + "strategy": "jwt", + "user": { + "email": "user.mcuserface@company.com", + "name": "User McUserface", + "user_id": "github|32487232" + } + }, + "body": { + "app_type": "non_interactive", + "cross_origin_auth": false, + "is_token_endpoint_ip_header_trusted": "*****", + "jwt_configuration": { + "alg": "RS256", + "lifetime_in_seconds": 36000 + }, + "name": "cel_test", + "oidc_conformant": true, + "refresh_token": "*****", + "token_endpoint_auth_method": "*****" + }, + "channel": "https://manage.auth0.com/", + "ip": "81.2.69.144", + "method": "patch", + "path": "/api/v2/clients/MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "userAgent": "Mozilla/5.0 (X11; Arch; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" + }, + "response": { + "body": { + "app_type": "non_interactive", + "client_id": "MWNhMmRiOGY5MGIxNjE0ZTVmMjc0NDhl", + "client_secret": "*****", + "cross_origin_auth": false, + "custom_login_page_on": true, + "grant_types": [ + "client_credentials" + ], + "is_first_party": true, + "is_token_endpoint_ip_header_trusted": "*****", + "jwt_configuration": { + "alg": "RS256", + "lifetime_in_seconds": 36000, + "secret_encoded": "*****" + }, + "name": "cel_test", + "oidc_conformant": true, + "refresh_token": "*****", + "sso_disabled": false, + "token_endpoint_auth_method": "*****" + }, + "statusCode": 200 + } + }, + "is_mobile": false, + "tenant_name": "dev-fulaoenaspapatoulp", + "type": "Successful Management API operation" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "success-mgmt-api-op", + "category": [ + "authentication", + "web", + "iam" + ], + "id": "90020240308043140198979000000000000001223372052036047895", + "kind": "event", + "outcome": "success", + "type": [ + "info", + "access", + "change" + ] + }, + "log": { + "level": "info" + }, + "network": { + "type": "ipv4" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.144" + }, + "user": { + "id": "github|32487232" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Other", + "original": "Firefox 125.0.0 / Arch 0.0.0" + } + } + ] +} \ No newline at end of file diff --git a/packages/auth0/data_stream/logs/_dev/test/system/test-auth0-cel-config.yml b/packages/auth0/data_stream/logs/_dev/test/system/test-auth0-cel-config.yml new file mode 100644 index 000000000000..8fc7d88219a9 --- /dev/null +++ b/packages/auth0/data_stream/logs/_dev/test/system/test-auth0-cel-config.yml @@ -0,0 +1,13 @@ +input: cel +service: auth0-http-server +data_stream: + vars: + url: http://{{Hostname}}:{{Port}} + client_id: wwwwwwww + client_secret: xxxxxxxx + interval: 10s + batch_size: 1 + preserve_original_event: true + enable_request_tracer: true +assert: + hit_count: 2 diff --git a/packages/auth0/data_stream/logs/agent/stream/cel.yml.hbs b/packages/auth0/data_stream/logs/agent/stream/cel.yml.hbs new file mode 100644 index 000000000000..5c2c4ec93db6 --- /dev/null +++ b/packages/auth0/data_stream/logs/agent/stream/cel.yml.hbs @@ -0,0 +1,135 @@ +config_version: 2 +interval: {{interval}} +{{#if enable_request_tracer}} +resource.tracer.filename: "../../logs/cel/http-request-trace-*.ndjson" +request.tracer.maxbackups: 5 +{{/if}} +{{#if proxy_url}} +resource.proxy_url: {{proxy_url}} +{{/if}} +{{#if ssl}} +resource.ssl: {{ssl}} +{{/if}} +{{#if http_client_timeout}} +resource.timeout: {{http_client_timeout}} +{{/if}} +resource.url: {{url}} +state: + client_id: {{client_id}} + client_secret: {{client_secret}} + look_back: {{initial_interval}} + want_more: false + take: {{batch_size}} +redact: + fields: + - client_secret +program: | + state.with( + post(state.url.trim_right("/") + "/oauth/token", "application/json", { + "client_id": state.client_id, + "client_secret": state.client_secret, + "audience": state.url.trim_right("/") + "/api/v2/", + "grant_type": "client_credentials", + }.encode_json()).as(auth_resp, auth_resp.StatusCode != 200 ? + { + "events": { + "error": { + "code": string(auth_resp.StatusCode), + "id": string(auth_resp.Status), + "message": "POST:"+( + size(auth_resp.Body) != 0 ? + string(auth_resp.Body) + : + string(auth_resp.Status) + ' (' + string(auth_resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + : + { + "Body": bytes(auth_resp.Body).decode_json(), + } + ).as(token, has(token.events) ? token : + get_request( + state.?next.orValue( + has(state.?cursor.next) ? + // Use the cursor next rel link if it exists. + state.cursor.next.parse_url().as(next, next.with({ + // The next rel link includes the take parameter which the + // user may have changed, so replace it with the config's + // value. + "RawQuery": next.RawQuery.parse_query().with({ + ?"take": has(state.take) ? + optional.of([string(state.take)]) + : + optional.none(), + }).format_query() + }).format_url()) + : + // Otherwise construct a next rel-ish link to look back. + state.url.trim_right("/") + "/api/v2/logs?" + { + ?"take": has(state.take) ? + optional.of([string(state.take)]) + : + optional.none(), + ?"from": has(state.look_back) ? + // Format a relative timestamp into a log ID. + optional.of(["900" + (now-duration(state.look_back)).format("20060102150405") + "000000000000000000000000000000000000000"]) + : + optional.none(), + }.format_query() + ) + ).with({ + "Header": { + "Authorization": [token.?Body.token_type.orValue("Bearer") + " " + token.?Body.access_token.orValue("MISSING")], + "Accept": ["application/json"], + } + }).do_request().as(resp, resp.StatusCode != 200 ? + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "GET:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + : + { + "Body": bytes(resp.Body).decode_json(), + ?"next": resp.Header.?Link[0].orValue("").as(next, next.split(";").as(attrs, attrs.exists(attr, attr.contains('rel="next"')) ? + attrs.map(attr, attr.matches("^'))[?0] + : + optional.none() + )), + }.as(result, result.with({ + "events": result.Body.map(e, {"json": {"log_id": e.log_id, "data": e}}), + "cursor": { + ?"next": result.?next, + }, + "want_more": has(result.next) && size(result.Body) != 0, + })).drop("Body") + ) + ) + ) +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/auth0/data_stream/logs/elasticsearch/ingest_pipeline/default.yml b/packages/auth0/data_stream/logs/elasticsearch/ingest_pipeline/default.yml index b9a561927c9a..f83dccef57cf 100644 --- a/packages/auth0/data_stream/logs/elasticsearch/ingest_pipeline/default.yml +++ b/packages/auth0/data_stream/logs/elasticsearch/ingest_pipeline/default.yml @@ -22,6 +22,11 @@ processors: field: source.ip copy_from: auth0.logs.data.ip if: ctx?.auth0?.logs?.data?.ip != null +- rename: + field: auth0.logs.data.isMobile + target_field: auth0.logs.data.is_mobile + ignore_missing: true + ignore_failure: true # IP Geolocation Lookup - geoip: field: source.ip @@ -1062,6 +1067,8 @@ processors: - remove: field: - json + - auth0.logs.data.$event_schema.version + - auth0.logs.data._id - auth0.logs.data.ip - auth0.logs.data.user_name - auth0.logs.data.user_id diff --git a/packages/auth0/data_stream/logs/fields/fields.yml b/packages/auth0/data_stream/logs/fields/fields.yml index 1a31be6c3aba..bc842a552a59 100644 --- a/packages/auth0/data_stream/logs/fields/fields.yml +++ b/packages/auth0/data_stream/logs/fields/fields.yml @@ -16,6 +16,9 @@ - name: log_id type: keyword description: Unique log event identifier + - name: tenant_name + type: keyword + description: The name of the auth0 tenant. - name: date type: date description: Date when the event occurred in ISO 8601 format. diff --git a/packages/auth0/data_stream/logs/manifest.yml b/packages/auth0/data_stream/logs/manifest.yml index 1d7a34d5d5cd..aa7760eef715 100644 --- a/packages/auth0/data_stream/logs/manifest.yml +++ b/packages/auth0/data_stream/logs/manifest.yml @@ -1,9 +1,10 @@ -title: "Auth0 logs via Webhooks" +title: "Auth0 logs" type: logs streams: - input: http_endpoint - title: Auth0 log events - description: Receives log events from Auth0 + title: Auth0 log events via Webhooks + description: Receives log events from Auth0 via Webhooks + enabled: false template_path: http_endpoint.yml.hbs vars: - name: listen_address @@ -72,4 +73,95 @@ streams: show_user: false description: > Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details. - + - input: cel + title: Auth0 log events via API requests + description: Collects log events from Auth0 via API requests. + enabled: false + template_path: cel.yml.hbs + vars: + - name: url + type: text + title: URL + description: Base URL of the Auth0 API. + default: https://tenant.us.auth0.com + required: true + show_user: true + - name: client_id + type: text + title: Client ID + description: Client ID for the Auth0 API. + multi: false + required: true + show_user: true + - name: client_secret + type: password + title: Client Secret + description: Client Secret for the Auth0 API. + multi: false + required: true + show_user: true + secret: true + - name: initial_interval + type: text + title: Initial Interval + description: How far back to pull logs from the Auth0 API. Supported units for this parameter are h/m/s. + multi: false + required: true + show_user: true + default: 24h + - name: interval + type: text + title: Interval + description: Duration between requests to the Auth0 API. Supported units for this parameter are h/m/s. + default: 5m + multi: false + required: true + show_user: true + - name: batch_size + type: integer + title: Batch Size + description: Batch size for the response of the Auth0 API. + default: 100 + multi: false + required: true + show_user: false + - name: http_client_timeout + type: text + title: HTTP Client Timeout + description: Duration before declaring that the HTTP client connection has timed out. Valid time units are ns, us, ms, s, m, h. + multi: false + required: true + show_user: false + default: 30s + - name: enable_request_tracer + type: bool + title: Enable request tracing + multi: false + required: false + show_user: false + description: The request tracer logs requests and responses to the agent's local file-system for debugging configurations. Enabling this request tracing compromises security and should only be used for debugging. See [documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-cel.html#_resource_tracer_filename) for details. + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - forwarded + - auth0-logstream + - name: preserve_original_event + required: true + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original`. + type: bool + multi: false + default: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details. diff --git a/packages/auth0/data_stream/logs/sample_event.json b/packages/auth0/data_stream/logs/sample_event.json index 142efa8f6468..93511e872422 100644 --- a/packages/auth0/data_stream/logs/sample_event.json +++ b/packages/auth0/data_stream/logs/sample_event.json @@ -1,11 +1,11 @@ { "@timestamp": "2021-11-03T03:25:28.923Z", "agent": { - "ephemeral_id": "d1c0e886-ddc2-44b4-903a-9bf026566c0c", - "id": "2c778b7a-e0be-4a84-8c7c-e0142f3690df", + "ephemeral_id": "667cd3fd-5cbb-420c-91e4-060bb1455023", + "id": "d45df655-b57b-4c5d-8017-17c41cca0d2b", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.1.0" + "version": "8.13.0" }, "auth0": { "logs": { @@ -79,16 +79,16 @@ }, "data_stream": { "dataset": "auth0.logs", - "namespace": "ep", + "namespace": "93795", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "2c778b7a-e0be-4a84-8c7c-e0142f3690df", + "id": "d45df655-b57b-4c5d-8017-17c41cca0d2b", "snapshot": false, - "version": "8.1.0" + "version": "8.13.0" }, "event": { "action": "successful-login", @@ -99,7 +99,7 @@ ], "dataset": "auth0.logs", "id": "90020211103032530111223343147286033102509916061341581378", - "ingested": "2022-11-18T20:59:34Z", + "ingested": "2024-07-30T05:19:59Z", "kind": "event", "original": "{\"data\":{\"client_id\":\"aI61p8I8aFjmYRliLWgvM9ev97kCCNDB\",\"client_name\":\"Default App\",\"connection\":\"Username-Password-Authentication\",\"connection_id\":\"con_1a5wCUmAs6VOU17n\",\"date\":\"2021-11-03T03:25:28.923Z\",\"details\":{\"completedAt\":1635909928922,\"elapsedTime\":1110091,\"initiatedAt\":1635908818831,\"prompts\":[{\"completedAt\":1635909903693,\"connection\":\"Username-Password-Authentication\",\"connection_id\":\"con_1a5wCUmAs6VOU17n\",\"elapsedTime\":null,\"identity\":\"6182002f34f4dd006b05b5c7\",\"name\":\"prompt-authenticate\",\"stats\":{\"loginsCount\":1},\"strategy\":\"auth0\"},{\"completedAt\":1635909903745,\"elapsedTime\":1084902,\"flow\":\"universal-login\",\"initiatedAt\":1635908818843,\"name\":\"login\",\"timers\":{\"rules\":5},\"user_id\":\"auth0|6182002f34f4dd006b05b5c7\",\"user_name\":\"neo@test.com\"},{\"completedAt\":1635909928352,\"elapsedTime\":23378,\"flow\":\"consent\",\"grantInfo\":{\"audience\":\"https://dev-yoj8axza.au.auth0.com/userinfo\",\"expiration\":null,\"id\":\"618201284369c9b4f9cd6d52\",\"scope\":\"openid profile\"},\"initiatedAt\":1635909904974,\"name\":\"consent\"}],\"session_id\":\"1TAd-7tsPYzxWudzqfHYXN0e6q1D0GSc\",\"stats\":{\"loginsCount\":1}},\"hostname\":\"dev-yoj8axza.au.auth0.com\",\"ip\":\"81.2.69.143\",\"log_id\":\"90020211103032530111223343147286033102509916061341581378\",\"strategy\":\"auth0\",\"strategy_type\":\"database\",\"type\":\"s\",\"user_agent\":\"Mozilla/5.0 (X11;Ubuntu; Linux x86_64; rv:93.0) Gecko/20100101 Firefox/93.0\",\"user_id\":\"auth0|6182002f34f4dd006b05b5c7\",\"user_name\":\"neo@test.com\"},\"log_id\":\"90020211103032530111223343147286033102509916061341581378\"}", "outcome": "success", @@ -152,4 +152,4 @@ }, "version": "93.0." } -} +} \ No newline at end of file diff --git a/packages/auth0/docs/README.md b/packages/auth0/docs/README.md index c6cd7a81b1aa..9690bf7d743a 100644 --- a/packages/auth0/docs/README.md +++ b/packages/auth0/docs/README.md @@ -1,29 +1,30 @@ # Auth0 Log Streams Integration -Auth0 offers integrations that push log events via log streams to Elasticsearch. The [Auth0 Log Streams](https://auth0.com/docs/customize/log-streams) integration package creates a HTTP listener that accepts incoming log events and ingests them into Elasticsearch. This allows you to search, observe and visualize the Auth0 log events through Elasticsearch. +Auth0 offers integrations that push log events via log streams to Elasticsearch or allows an Elastic Agent to make API requests for log events. The [Auth0 Log Streams](https://auth0.com/docs/customize/log-streams) integration package creates a HTTP listener that accepts incoming log events or runs periodic API requests to collect events and ingests them into Elasticsearch. This allows you to search, observe and visualize the Auth0 log events through Elasticsearch. -The agent running this integration must be able to accept requests from the Internet in order for Auth0 to be able connect. Auth0 requires that the webhook accept requests over HTTPS. So you must either configure the integration with a valid TLS certificate or use a reverse proxy in front of the integration. - -For more information, see Auth0's webpage on [integration to Elastic Security](https://marketplace.auth0.com/integrations/elastic-security). - -## Compatability - -The package collects log events sent via log stream webhooks. +## Compatibility -## Configuration +The package collects log events either sent via log stream webhooks, or by API request to the Auth0 v2 API. -### Enabling the integration in Elastic +## Enabling the integration in Elastic 1. In Kibana go to **Management > Integrations** 2. In "Search for integrations" search bar type **Auth0** 3. Click on "Auth0" integration from the search results. 4. Click on **Add Auth0** button to add Auth0 integration. +## Configuration for Webhook input + +The agent running this integration must be able to accept requests from the Internet in order for Auth0 to be able connect. Auth0 requires that the webhook accept requests over HTTPS. So you must either configure the integration with a valid TLS certificate or use a reverse proxy in front of the integration. + +For more information, see Auth0's webpage on [integration to Elastic Security](https://marketplace.auth0.com/integrations/elastic-security). + ### Configure the Auth0 integration -1. Enter values for "Listen Address", "Listen Port" and "Webhook path" to form the endpoint URL. Make note of the **Endpoint URL** `https://{AGENT_ADDRESS}:8383/auth0/logs`. -2. Enter value for "Secret value". This must match the "Authorization Token" value entered when configuring the "Custom Webhook" from Auth0 cloud. -3. Enter values for "TLS". Auth0 requires that the webhook accept requests over HTTPS. So you must either configure the integration with a valid TLS certificate or use a reverse proxy in front of the integration. +1. Click on **Collect Auth0 log streams events via Webhooks** to enable it. +2. Enter values for "Listen Address", "Listen Port" and "Webhook path" to form the endpoint URL. Make note of the **Endpoint URL** `https://{AGENT_ADDRESS}:8383/auth0/logs`. +3. Enter value for "Secret value". This must match the "Authorization Token" value entered when configuring the "Custom Webhook" from Auth0 cloud. +4. Enter values for "TLS". Auth0 requires that the webhook accept requests over HTTPS. So you must either configure the integration with a valid TLS certificate or use a reverse proxy in front of the integration. ### Creating the stream in Auth0 @@ -33,8 +34,27 @@ The package collects log events sent via log stream webhooks. 4. In **Payload URL**, paste the **Endpoint URL** collected during Step 1 of **Configure the Auth0 integration** section. 5. In **Authorization Token**, paste the **Authorization Token**. This must match the value entered in Step 2 of **Configure the Auth0 integration** section. 6. In **Content Type**, choose **application/json**. -7. In **Content Format**, choose **JSON Lines**. -8. **Click Save**. +7. In **Content Format**, choose **JSON Lines**. +8. Click **Save**. + +## Configuration for API request input + +### Creating an application in Auth0 + +1. From the Auth0 management console, navigate to **Applications > Applications** and click **+ Create Application**. +2. Choose **Machine to Machine Application**. +3. Name the new **Application** appropriately (e.g. Elastic) and click **Create**. +4. Select the **Auth0 Management API** option and click **Authorize**. +5. Select the `read:logs` and `read:logs_users` permissions and then click **Authorize**. +6. Navigate to the **Settings** tab. Take note of the "Domain", "Client ID" and "Client Secret" values in the **Basic Information** section. +7. Click **Save Changes**. + +### Configure the Auth0 integration + +1. In the Elastic Auth0 integration user interface click on **Collect Auth0 log events via API requests** to enable it. +2. Enter value for "URL". This must be an https URL using the **Domain** value obtained from Auth cloud above. +3. Enter value for "Client ID". This must match the "Client ID" value obtained from Auth0 cloud above. +4. Enter value for "Client Secret". This must match the "Client Secret" value obtained from Auth0 cloud above. ## Log Events @@ -79,6 +99,7 @@ The Auth0 logs dataset provides events from Auth0 log stream. All Auth0 log even | auth0.logs.data.scope | Scope permissions applied to the event. | keyword | | auth0.logs.data.strategy | Name of the strategy involved in the event. | keyword | | auth0.logs.data.strategy_type | Type of strategy involved in the event. | keyword | +| auth0.logs.data.tenant_name | The name of the auth0 tenant. | keyword | | auth0.logs.data.type | Type of event. | keyword | | auth0.logs.data.user_agent | User agent string from the client device that caused the event. | text | | auth0.logs.data.user_id | ID of the user involved in the event. | keyword | @@ -98,11 +119,11 @@ An example event for `logs` looks as following: { "@timestamp": "2021-11-03T03:25:28.923Z", "agent": { - "ephemeral_id": "d1c0e886-ddc2-44b4-903a-9bf026566c0c", - "id": "2c778b7a-e0be-4a84-8c7c-e0142f3690df", + "ephemeral_id": "667cd3fd-5cbb-420c-91e4-060bb1455023", + "id": "d45df655-b57b-4c5d-8017-17c41cca0d2b", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.1.0" + "version": "8.13.0" }, "auth0": { "logs": { @@ -176,16 +197,16 @@ An example event for `logs` looks as following: }, "data_stream": { "dataset": "auth0.logs", - "namespace": "ep", + "namespace": "93795", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "2c778b7a-e0be-4a84-8c7c-e0142f3690df", + "id": "d45df655-b57b-4c5d-8017-17c41cca0d2b", "snapshot": false, - "version": "8.1.0" + "version": "8.13.0" }, "event": { "action": "successful-login", @@ -196,7 +217,7 @@ An example event for `logs` looks as following: ], "dataset": "auth0.logs", "id": "90020211103032530111223343147286033102509916061341581378", - "ingested": "2022-11-18T20:59:34Z", + "ingested": "2024-07-30T05:19:59Z", "kind": "event", "original": "{\"data\":{\"client_id\":\"aI61p8I8aFjmYRliLWgvM9ev97kCCNDB\",\"client_name\":\"Default App\",\"connection\":\"Username-Password-Authentication\",\"connection_id\":\"con_1a5wCUmAs6VOU17n\",\"date\":\"2021-11-03T03:25:28.923Z\",\"details\":{\"completedAt\":1635909928922,\"elapsedTime\":1110091,\"initiatedAt\":1635908818831,\"prompts\":[{\"completedAt\":1635909903693,\"connection\":\"Username-Password-Authentication\",\"connection_id\":\"con_1a5wCUmAs6VOU17n\",\"elapsedTime\":null,\"identity\":\"6182002f34f4dd006b05b5c7\",\"name\":\"prompt-authenticate\",\"stats\":{\"loginsCount\":1},\"strategy\":\"auth0\"},{\"completedAt\":1635909903745,\"elapsedTime\":1084902,\"flow\":\"universal-login\",\"initiatedAt\":1635908818843,\"name\":\"login\",\"timers\":{\"rules\":5},\"user_id\":\"auth0|6182002f34f4dd006b05b5c7\",\"user_name\":\"neo@test.com\"},{\"completedAt\":1635909928352,\"elapsedTime\":23378,\"flow\":\"consent\",\"grantInfo\":{\"audience\":\"https://dev-yoj8axza.au.auth0.com/userinfo\",\"expiration\":null,\"id\":\"618201284369c9b4f9cd6d52\",\"scope\":\"openid profile\"},\"initiatedAt\":1635909904974,\"name\":\"consent\"}],\"session_id\":\"1TAd-7tsPYzxWudzqfHYXN0e6q1D0GSc\",\"stats\":{\"loginsCount\":1}},\"hostname\":\"dev-yoj8axza.au.auth0.com\",\"ip\":\"81.2.69.143\",\"log_id\":\"90020211103032530111223343147286033102509916061341581378\",\"strategy\":\"auth0\",\"strategy_type\":\"database\",\"type\":\"s\",\"user_agent\":\"Mozilla/5.0 (X11;Ubuntu; Linux x86_64; rv:93.0) Gecko/20100101 Firefox/93.0\",\"user_id\":\"auth0|6182002f34f4dd006b05b5c7\",\"user_name\":\"neo@test.com\"},\"log_id\":\"90020211103032530111223343147286033102509916061341581378\"}", "outcome": "success", @@ -250,5 +271,4 @@ An example event for `logs` looks as following: "version": "93.0." } } - ``` diff --git a/packages/auth0/manifest.yml b/packages/auth0/manifest.yml index f1108d1a8d22..089282509c97 100644 --- a/packages/auth0/manifest.yml +++ b/packages/auth0/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: auth0 title: "Auth0" -version: "1.16.0" +version: "1.17.0" description: Collect logs from Auth0 with Elastic Agent. type: integration categories: @@ -22,12 +22,15 @@ icons: type: image/svg+xml policy_templates: - name: auth0_events - title: Auth0 log stream events via Webhooks - description: Collect Auth0 log streams events via Webhooks. + title: Auth0 log stream events + description: Collect Auth0 log streams events. inputs: - type: http_endpoint title: Collect Auth0 log streams events via Webhooks description: Collecting Auth0 log stream events via Webhooks. + - type: cel + title: Collect Auth0 log events via API requests + description: Collect Auth0 log events via API requests. owner: github: elastic/security-service-integrations type: elastic From 3632d847f99d08bdca1c8a594646b820ef22c7ae Mon Sep 17 00:00:00 2001 From: Krishna Chaitanya Reddy Burri Date: Tue, 6 Aug 2024 09:34:01 +0530 Subject: [PATCH 28/77] ti_*: Fix ECS date mapping on threat fields (#10674) Fix ECS date mapping for threat fields. ecs@mappings component template is missing threat fields mapped as date. Example: fields such as first_seen, last_seen, modified_at are being mapped as keyword in transform's source datastream-backed indices. The transform's destination indices are not effected as they are not datastream-backed and mappings are explicitly defined as date. This causes field type conflicts. - Explicitly add ECS threat fields that are of type date into source data-stream backed fields. - Ensure fields are correctly mapped using system tests. --- packages/ti_anomali/changelog.yml | 5 + .../data_stream/threatstream/fields/ecs.yml | 6 + .../threatstream/sample_event.json | 14 +- packages/ti_anomali/docs/README.md | 17 ++- packages/ti_anomali/manifest.yml | 2 +- packages/ti_cif3/changelog.yml | 5 + .../ti_cif3/data_stream/feed/fields/ecs.yml | 6 + .../data_stream/feed/sample_event.json | 18 +-- packages/ti_cif3/docs/README.md | 21 +-- packages/ti_cif3/manifest.yml | 2 +- packages/ti_crowdstrike/changelog.yml | 5 + .../data_stream/intel/fields/ecs.yml | 6 + .../data_stream/intel/sample_event.json | 14 +- .../data_stream/ioc/fields/ecs.yml | 6 + .../data_stream/ioc/sample_event.json | 14 +- packages/ti_crowdstrike/docs/README.md | 34 +++-- packages/ti_crowdstrike/manifest.yml | 2 +- packages/ti_cybersixgill/changelog.yml | 5 + .../data_stream/threat/fields/ecs.yml | 6 + .../data_stream/threat/sample_event.json | 12 +- packages/ti_cybersixgill/docs/README.md | 15 +- packages/ti_cybersixgill/manifest.yml | 2 +- packages/ti_eclecticiq/changelog.yml | 5 + .../data_stream/threat/fields/ecs.yml | 6 + .../data_stream/threat/sample_event.json | 63 +++++++-- packages/ti_eclecticiq/docs/README.md | 66 +++++++-- packages/ti_eclecticiq/manifest.yml | 2 +- packages/ti_eset/LICENSE.txt | 93 ------------ packages/ti_eset/changelog.yml | 5 + .../ti_eset/data_stream/apt/fields/ecs.yml | 6 + .../ti_eset/data_stream/apt/sample_event.json | 16 +-- .../ti_eset/data_stream/botnet/fields/ecs.yml | 6 + .../data_stream/botnet/sample_event.json | 16 +-- .../ti_eset/data_stream/cc/fields/ecs.yml | 6 + .../ti_eset/data_stream/cc/sample_event.json | 16 +-- .../data_stream/domains/fields/ecs.yml | 6 + .../data_stream/domains/sample_event.json | 16 +-- .../ti_eset/data_stream/files/fields/ecs.yml | 6 + .../data_stream/files/sample_event.json | 16 +-- .../ti_eset/data_stream/ip/fields/ecs.yml | 6 + .../ti_eset/data_stream/ip/sample_event.json | 16 +-- .../ti_eset/data_stream/url/fields/ecs.yml | 6 + .../ti_eset/data_stream/url/sample_event.json | 16 +-- packages/ti_eset/docs/README.md | 133 ++++++++++-------- packages/ti_eset/manifest.yml | 2 +- packages/ti_maltiverse/changelog.yml | 5 + .../data_stream/indicator/fields/ecs.yml | 6 + .../data_stream/indicator/sample_event.json | 18 +-- packages/ti_maltiverse/docs/README.md | 20 +-- packages/ti_maltiverse/manifest.yml | 2 +- packages/ti_mandiant_advantage/changelog.yml | 5 + .../threat_intelligence/fields/ecs.yml | 6 + .../threat_intelligence/sample_event.json | 115 ++++++++------- packages/ti_mandiant_advantage/docs/README.md | 118 ++++++++-------- packages/ti_mandiant_advantage/manifest.yml | 2 +- packages/ti_opencti/changelog.yml | 5 + .../data_stream/indicator/fields/ecs.yml | 6 + .../data_stream/indicator/sample_event.json | 14 +- packages/ti_opencti/docs/README.md | 17 ++- packages/ti_opencti/manifest.yml | 2 +- packages/ti_otx/changelog.yml | 5 + .../pulses_subscribed/fields/ecs.yml | 6 + .../pulses_subscribed/sample_event.json | 14 +- .../ti_otx/data_stream/threat/fields/ecs.yml | 6 + packages/ti_otx/docs/README.md | 20 ++- packages/ti_otx/manifest.yml | 2 +- .../ti_rapid7_threat_command/changelog.yml | 5 + .../data_stream/ioc/fields/ecs.yml | 6 + .../data_stream/ioc/sample_event.json | 12 +- .../ti_rapid7_threat_command/docs/README.md | 15 +- .../ti_rapid7_threat_command/manifest.yml | 2 +- packages/ti_recordedfuture/changelog.yml | 5 + .../data_stream/threat/fields/ecs.yml | 6 + .../data_stream/threat/sample_event.json | 112 +++++++++------ packages/ti_recordedfuture/docs/README.md | 115 +++++++++------ packages/ti_recordedfuture/manifest.yml | 2 +- packages/ti_threatconnect/changelog.yml | 5 + .../data_stream/indicator/fields/ecs.yml | 6 + .../data_stream/indicator/sample_event.json | 10 +- packages/ti_threatconnect/docs/README.md | 13 +- packages/ti_threatconnect/manifest.yml | 2 +- packages/ti_threatq/changelog.yml | 5 + .../data_stream/threat/fields/ecs.yml | 6 + .../data_stream/threat/sample_event.json | 16 +-- packages/ti_threatq/docs/README.md | 19 +-- packages/ti_threatq/manifest.yml | 2 +- 86 files changed, 899 insertions(+), 605 deletions(-) create mode 100644 packages/ti_anomali/data_stream/threatstream/fields/ecs.yml create mode 100644 packages/ti_crowdstrike/data_stream/intel/fields/ecs.yml create mode 100644 packages/ti_crowdstrike/data_stream/ioc/fields/ecs.yml create mode 100644 packages/ti_cybersixgill/data_stream/threat/fields/ecs.yml create mode 100644 packages/ti_eclecticiq/data_stream/threat/fields/ecs.yml delete mode 100644 packages/ti_eset/LICENSE.txt create mode 100644 packages/ti_eset/data_stream/apt/fields/ecs.yml create mode 100644 packages/ti_eset/data_stream/botnet/fields/ecs.yml create mode 100644 packages/ti_eset/data_stream/cc/fields/ecs.yml create mode 100644 packages/ti_eset/data_stream/domains/fields/ecs.yml create mode 100644 packages/ti_eset/data_stream/files/fields/ecs.yml create mode 100644 packages/ti_eset/data_stream/ip/fields/ecs.yml create mode 100644 packages/ti_eset/data_stream/url/fields/ecs.yml create mode 100644 packages/ti_maltiverse/data_stream/indicator/fields/ecs.yml create mode 100644 packages/ti_rapid7_threat_command/data_stream/ioc/fields/ecs.yml create mode 100644 packages/ti_recordedfuture/data_stream/threat/fields/ecs.yml create mode 100644 packages/ti_threatconnect/data_stream/indicator/fields/ecs.yml create mode 100644 packages/ti_threatq/data_stream/threat/fields/ecs.yml diff --git a/packages/ti_anomali/changelog.yml b/packages/ti_anomali/changelog.yml index fe2cd13c3ae2..bbdef7327d53 100644 --- a/packages/ti_anomali/changelog.yml +++ b/packages/ti_anomali/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.22.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.22.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/ti_anomali/data_stream/threatstream/fields/ecs.yml b/packages/ti_anomali/data_stream/threatstream/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_anomali/data_stream/threatstream/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_anomali/data_stream/threatstream/sample_event.json b/packages/ti_anomali/data_stream/threatstream/sample_event.json index 049546c914df..2cde432bbb53 100644 --- a/packages/ti_anomali/data_stream/threatstream/sample_event.json +++ b/packages/ti_anomali/data_stream/threatstream/sample_event.json @@ -1,11 +1,11 @@ { "@timestamp": "2020-10-08T12:22:11.000Z", "agent": { - "ephemeral_id": "5f5fdd12-5b96-4370-aae2-3f4ca99136eb", - "id": "8130bdff-3530-4540-8c03-ba091c47a24f", + "ephemeral_id": "2f4f6445-5077-4a66-8582-2c74e071b6dd", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.11.0" + "version": "8.13.0" }, "anomali": { "threatstream": { @@ -30,16 +30,16 @@ }, "data_stream": { "dataset": "ti_anomali.threatstream", - "namespace": "ep", + "namespace": "44735", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "8130bdff-3530-4540-8c03-ba091c47a24f", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "snapshot": false, - "version": "8.11.0" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", @@ -47,7 +47,7 @@ "threat" ], "dataset": "ti_anomali.threatstream", - "ingested": "2023-12-22T11:03:22Z", + "ingested": "2024-08-01T07:49:22Z", "kind": "enrichment", "original": "{\"added_at\":\"2020-10-08T12:22:11\",\"classification\":\"public\",\"confidence\":20,\"country\":\"FR\",\"date_first\":\"2020-10-08T12:21:50\",\"date_last\":\"2020-10-08T12:24:42\",\"detail2\":\"imported by user 184\",\"domain\":\"d4xgfj.example.net\",\"id\":3135167627,\"import_session_id\":1400,\"itype\":\"mal_domain\",\"lat\":-49.1,\"lon\":94.4,\"org\":\"OVH Hosting\",\"resource_uri\":\"/api/v1/intelligence/P46279656657/\",\"severity\":\"high\",\"source\":\"Default Organization\",\"source_feed_id\":3143,\"srcip\":\"89.160.20.156\",\"state\":\"active\",\"trusted_circle_ids\":\"122\",\"update_id\":3786618776,\"value_type\":\"domain\"}", "severity": 7, diff --git a/packages/ti_anomali/docs/README.md b/packages/ti_anomali/docs/README.md index 2c496c354c83..02f9ef713077 100644 --- a/packages/ti_anomali/docs/README.md +++ b/packages/ti_anomali/docs/README.md @@ -44,11 +44,11 @@ An example event for `threatstream` looks as following: { "@timestamp": "2020-10-08T12:22:11.000Z", "agent": { - "ephemeral_id": "5f5fdd12-5b96-4370-aae2-3f4ca99136eb", - "id": "8130bdff-3530-4540-8c03-ba091c47a24f", + "ephemeral_id": "2f4f6445-5077-4a66-8582-2c74e071b6dd", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.11.0" + "version": "8.13.0" }, "anomali": { "threatstream": { @@ -73,16 +73,16 @@ An example event for `threatstream` looks as following: }, "data_stream": { "dataset": "ti_anomali.threatstream", - "namespace": "ep", + "namespace": "44735", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "8130bdff-3530-4540-8c03-ba091c47a24f", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "snapshot": false, - "version": "8.11.0" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", @@ -90,7 +90,7 @@ An example event for `threatstream` looks as following: "threat" ], "dataset": "ti_anomali.threatstream", - "ingested": "2023-12-22T11:03:22Z", + "ingested": "2024-08-01T07:49:22Z", "kind": "enrichment", "original": "{\"added_at\":\"2020-10-08T12:22:11\",\"classification\":\"public\",\"confidence\":20,\"country\":\"FR\",\"date_first\":\"2020-10-08T12:21:50\",\"date_last\":\"2020-10-08T12:24:42\",\"detail2\":\"imported by user 184\",\"domain\":\"d4xgfj.example.net\",\"id\":3135167627,\"import_session_id\":1400,\"itype\":\"mal_domain\",\"lat\":-49.1,\"lon\":94.4,\"org\":\"OVH Hosting\",\"resource_uri\":\"/api/v1/intelligence/P46279656657/\",\"severity\":\"high\",\"source\":\"Default Organization\",\"source_feed_id\":3143,\"srcip\":\"89.160.20.156\",\"state\":\"active\",\"trusted_circle_ids\":\"122\",\"update_id\":3786618776,\"value_type\":\"domain\"}", "severity": 7, @@ -178,4 +178,7 @@ An example event for `threatstream` looks as following: | log.offset | Offset of the entry in the log file. | long | | threat.feed.dashboard_id | Dashboard ID used for Kibana CTI UI | constant_keyword | | threat.feed.name | Display friendly feed name | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | diff --git a/packages/ti_anomali/manifest.yml b/packages/ti_anomali/manifest.yml index 0a24809b304f..df591d3e9e04 100644 --- a/packages/ti_anomali/manifest.yml +++ b/packages/ti_anomali/manifest.yml @@ -1,6 +1,6 @@ name: ti_anomali title: Anomali -version: "1.22.0" +version: "1.22.1" description: Ingest threat intelligence indicators from Anomali with Elastic Agent. type: integration format_version: 3.0.2 diff --git a/packages/ti_cif3/changelog.yml b/packages/ti_cif3/changelog.yml index 2fac90c48a9b..87c801ce8c8a 100644 --- a/packages/ti_cif3/changelog.yml +++ b/packages/ti_cif3/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.14.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.14.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/ti_cif3/data_stream/feed/fields/ecs.yml b/packages/ti_cif3/data_stream/feed/fields/ecs.yml index 5e8cd8465f71..b7bcdc243306 100644 --- a/packages/ti_cif3/data_stream/feed/fields/ecs.yml +++ b/packages/ti_cif3/data_stream/feed/fields/ecs.yml @@ -1,3 +1,9 @@ +- name: threat.indicator.first_seen + external: ecs +- name: threat.indicator.last_seen + external: ecs +- name: threat.indicator.modified_at + external: ecs - name: threat.indicator.tls.client.ja3 level: extended type: keyword diff --git a/packages/ti_cif3/data_stream/feed/sample_event.json b/packages/ti_cif3/data_stream/feed/sample_event.json index 17073fd07307..ad73d7b10a34 100755 --- a/packages/ti_cif3/data_stream/feed/sample_event.json +++ b/packages/ti_cif3/data_stream/feed/sample_event.json @@ -1,11 +1,11 @@ { - "@timestamp": "2024-04-10T04:46:58.281Z", + "@timestamp": "2024-08-01T08:05:14.040Z", "agent": { - "ephemeral_id": "94c530db-5c8f-407c-939b-cd1d21d547fc", - "id": "28f0e936-c71c-4f75-8919-506fed4d20e7", + "ephemeral_id": "b351d699-2fd0-49f7-99e1-a7a471a29a62", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "cif3": { "deleted_at": "2022-09-03T20:25:53.000Z", @@ -17,25 +17,25 @@ }, "data_stream": { "dataset": "ti_cif3.feed", - "namespace": "ep", + "namespace": "26457", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "28f0e936-c71c-4f75-8919-506fed4d20e7", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", "category": [ "threat" ], - "created": "2024-04-10T04:46:58.281Z", + "created": "2024-08-01T08:05:14.040Z", "dataset": "ti_cif3.feed", - "ingested": "2024-04-10T04:47:10Z", + "ingested": "2024-08-01T08:05:26Z", "kind": "enrichment", "original": "{\"application\":\"https\",\"asn\":8075,\"asn_desc\":\"microsoft-corp-msn-as-block\",\"cc\":\"br\",\"city\":\"campinas\",\"confidence\":10,\"count\":1,\"firsttime\":\"2022-07-20T20:25:53.000000Z\",\"group\":[\"everyone\"],\"indicator\":\"20.206.75.106\",\"indicator_ipv4\":\"20.206.75.106\",\"itype\":\"ipv4\",\"lasttime\":\"2022-07-20T20:25:53.000000Z\",\"latitude\":-22.9035,\"location\":[-47.0565,-22.9035],\"longitude\":-47.0565,\"portlist\":\"443\",\"protocol\":\"tcp\",\"provider\":\"sslbl.abuse.ch\",\"reference\":\"https://sslbl.abuse.ch/blacklist/sslipblacklist.csv\",\"region\":\"sao paulo\",\"reporttime\":\"2022-07-21T20:33:26.585967Z\",\"tags\":[\"botnet\"],\"timezone\":\"america/sao_paulo\",\"tlp\":\"white\",\"uuid\":\"ac240898-1443-4d7e-a98a-1daed220c162\"}", "type": [ diff --git a/packages/ti_cif3/docs/README.md b/packages/ti_cif3/docs/README.md index 6dee62484300..fd578fbd2d72 100644 --- a/packages/ti_cif3/docs/README.md +++ b/packages/ti_cif3/docs/README.md @@ -79,6 +79,9 @@ CIFv3 `confidence` field values (0..10) are converted to ECS confidence (None, L | log.flags | Flags for the log file. | keyword | | log.offset | Offset of the entry in the log file. | long | | threat.feed.name | Display friendly feed name | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | | threat.indicator.tls.client.ja3 | An md5 hash that identifies clients based on their TLS handshake. | keyword | @@ -86,13 +89,13 @@ An example event for `feed` looks as following: ```json { - "@timestamp": "2024-04-10T04:46:58.281Z", + "@timestamp": "2024-08-01T08:05:14.040Z", "agent": { - "ephemeral_id": "94c530db-5c8f-407c-939b-cd1d21d547fc", - "id": "28f0e936-c71c-4f75-8919-506fed4d20e7", + "ephemeral_id": "b351d699-2fd0-49f7-99e1-a7a471a29a62", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "cif3": { "deleted_at": "2022-09-03T20:25:53.000Z", @@ -104,25 +107,25 @@ An example event for `feed` looks as following: }, "data_stream": { "dataset": "ti_cif3.feed", - "namespace": "ep", + "namespace": "26457", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "28f0e936-c71c-4f75-8919-506fed4d20e7", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", "category": [ "threat" ], - "created": "2024-04-10T04:46:58.281Z", + "created": "2024-08-01T08:05:14.040Z", "dataset": "ti_cif3.feed", - "ingested": "2024-04-10T04:47:10Z", + "ingested": "2024-08-01T08:05:26Z", "kind": "enrichment", "original": "{\"application\":\"https\",\"asn\":8075,\"asn_desc\":\"microsoft-corp-msn-as-block\",\"cc\":\"br\",\"city\":\"campinas\",\"confidence\":10,\"count\":1,\"firsttime\":\"2022-07-20T20:25:53.000000Z\",\"group\":[\"everyone\"],\"indicator\":\"20.206.75.106\",\"indicator_ipv4\":\"20.206.75.106\",\"itype\":\"ipv4\",\"lasttime\":\"2022-07-20T20:25:53.000000Z\",\"latitude\":-22.9035,\"location\":[-47.0565,-22.9035],\"longitude\":-47.0565,\"portlist\":\"443\",\"protocol\":\"tcp\",\"provider\":\"sslbl.abuse.ch\",\"reference\":\"https://sslbl.abuse.ch/blacklist/sslipblacklist.csv\",\"region\":\"sao paulo\",\"reporttime\":\"2022-07-21T20:33:26.585967Z\",\"tags\":[\"botnet\"],\"timezone\":\"america/sao_paulo\",\"tlp\":\"white\",\"uuid\":\"ac240898-1443-4d7e-a98a-1daed220c162\"}", "type": [ diff --git a/packages/ti_cif3/manifest.yml b/packages/ti_cif3/manifest.yml index d5a258a9f2db..366b20a32ffb 100644 --- a/packages/ti_cif3/manifest.yml +++ b/packages/ti_cif3/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: ti_cif3 title: "Collective Intelligence Framework v3" -version: "1.14.0" +version: "1.14.1" description: "Ingest threat indicators from a Collective Intelligence Framework v3 instance with Elastic Agent." type: integration categories: diff --git a/packages/ti_crowdstrike/changelog.yml b/packages/ti_crowdstrike/changelog.yml index b9eaaa7ca890..d20bfde95637 100644 --- a/packages/ti_crowdstrike/changelog.yml +++ b/packages/ti_crowdstrike/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.1.3" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.1.2" changes: - description: Fix handling of timestamps with positive time zone offsets. diff --git a/packages/ti_crowdstrike/data_stream/intel/fields/ecs.yml b/packages/ti_crowdstrike/data_stream/intel/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_crowdstrike/data_stream/intel/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_crowdstrike/data_stream/intel/sample_event.json b/packages/ti_crowdstrike/data_stream/intel/sample_event.json index 243719823f25..fc45d089801f 100644 --- a/packages/ti_crowdstrike/data_stream/intel/sample_event.json +++ b/packages/ti_crowdstrike/data_stream/intel/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-11-21T06:16:01.000Z", "agent": { - "ephemeral_id": "ee250a38-ef6d-486c-a245-6d0dd0785a11", - "id": "803f2aef-a6c1-47c8-b64d-e484bb967db4", + "ephemeral_id": "6d3e7b87-a3f6-47b1-81a5-0264e901b3f9", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.0" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_crowdstrike.intel", - "namespace": "ep", + "namespace": "36922", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "803f2aef-a6c1-47c8-b64d-e484bb967db4", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "snapshot": false, - "version": "8.12.0" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", @@ -27,7 +27,7 @@ ], "dataset": "ti_crowdstrike.intel", "id": "hash_sha256_c98e1a7f563824cd448b47613743dcd1c853742b78f42b000192b83d", - "ingested": "2024-03-28T10:49:11Z", + "ingested": "2024-08-01T08:31:15Z", "kind": "enrichment", "original": "{\"_marker\":\"17005473618d17ae6353d123235e4158c5c81f25f0\",\"actors\":[\"SALTYSPIDER\"],\"deleted\":false,\"domain_types\":[\"abc.com\"],\"id\":\"hash_sha256_c98e1a7f563824cd448b47613743dcd1c853742b78f42b000192b83d\",\"indicator\":\"c98e192bf71a7f97563824cd448b47613743dcd1c853742b78f42b000192b83d\",\"ip_address_types\":[\"81.2.69.192\"],\"kill_chains\":[\"Installation\",\"C2\"],\"labels\":[{\"created_on\":1700547356,\"last_valid_on\":1700547360,\"name\":\"MaliciousConfidence/High\"},{\"created_on\":1700547359,\"last_valid_on\":1700547359,\"name\":\"Malware/Mofksys\"},{\"created_on\":1700547359,\"last_valid_on\":1700547359,\"name\":\"ThreatType/Commodity\"},{\"created_on\":1700547359,\"last_valid_on\":1700547359,\"name\":\"ThreatType/CredentialHarvesting\"},{\"created_on\":1700547359,\"last_valid_on\":1700547359,\"name\":\"ThreatType/InformationStealer\"}],\"last_updated\":1700547361,\"malicious_confidence\":\"high\",\"malware_families\":[\"Mofksys\"],\"published_date\":1700547356,\"relations\":[{\"created_date\":1700547339,\"id\":\"domain.com.yy\",\"indicator\":\"domain.ds\",\"last_valid_date\":1700547339,\"type\":\"domain\"},{\"created_date\":1700547339,\"id\":\"domain.xx.yy\",\"indicator\":\"domain.xx.fd\",\"last_valid_date\":1700547339,\"type\":\"domain\"}],\"reports\":[\"reports\"],\"targets\":[\"abc\"],\"threat_types\":[\"Commodity\",\"CredentialHarvesting\",\"InformationStealer\"],\"type\":\"hash_sha256\",\"vulnerabilities\":[\"vuln\"]}", "type": [ diff --git a/packages/ti_crowdstrike/data_stream/ioc/fields/ecs.yml b/packages/ti_crowdstrike/data_stream/ioc/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_crowdstrike/data_stream/ioc/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_crowdstrike/data_stream/ioc/sample_event.json b/packages/ti_crowdstrike/data_stream/ioc/sample_event.json index b6ce8f6728ec..2d1a7121be0b 100644 --- a/packages/ti_crowdstrike/data_stream/ioc/sample_event.json +++ b/packages/ti_crowdstrike/data_stream/ioc/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-11-01T10:22:23.106Z", "agent": { - "ephemeral_id": "ca4c5a70-0aa1-4cb3-867c-3c099798eef4", - "id": "803f2aef-a6c1-47c8-b64d-e484bb967db4", + "ephemeral_id": "6b69edbe-1d0f-4094-80d6-12915b7784ed", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.0" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_crowdstrike.ioc", - "namespace": "ep", + "namespace": "60867", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "803f2aef-a6c1-47c8-b64d-e484bb967db4", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "snapshot": false, - "version": "8.12.0" + "version": "8.13.0" }, "event": { "action": "detect-again", @@ -28,7 +28,7 @@ ], "dataset": "ti_crowdstrike.ioc", "id": "34874a88935860cf6yyfc856d6abb6f35a29d8c077195ed6291aa8373696b44", - "ingested": "2024-03-28T10:50:10Z", + "ingested": "2024-08-01T08:32:09Z", "kind": "enrichment", "original": "{\"action\":\"detect again\",\"applied_globally\":true,\"created_by\":\"abc.it@example.com\",\"created_on\":\"2023-11-01T10:22:23.10607613Z\",\"deleted\":false,\"description\":\"IS-38887\",\"expired\":false,\"from_parent\":false,\"id\":\"34874a88935860cf6yyfc856d6abb6f35a29d8c077195ed6291aa8373696b44\",\"metadata\":{\"filename\":\"High_Serverity_Heuristic_Sandbox_Threat.docx\"},\"modified_by\":\"example.it@ex.com\",\"modified_on\":\"2023-11-01T10:22:23.10607613Z\",\"platforms\":[\"windows\",\"mac\",\"linux\"],\"severity\":\"critical\",\"tags\":[\"IS-38887\"],\"type\":\"ipv4\",\"value\":\"81.2.69.192\"}", "type": [ diff --git a/packages/ti_crowdstrike/docs/README.md b/packages/ti_crowdstrike/docs/README.md index cb47ece75efb..63b0f4edb61d 100644 --- a/packages/ti_crowdstrike/docs/README.md +++ b/packages/ti_crowdstrike/docs/README.md @@ -94,24 +94,24 @@ An example event for `intel` looks as following: { "@timestamp": "2023-11-21T06:16:01.000Z", "agent": { - "ephemeral_id": "ee250a38-ef6d-486c-a245-6d0dd0785a11", - "id": "803f2aef-a6c1-47c8-b64d-e484bb967db4", + "ephemeral_id": "6d3e7b87-a3f6-47b1-81a5-0264e901b3f9", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.0" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_crowdstrike.intel", - "namespace": "ep", + "namespace": "36922", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "803f2aef-a6c1-47c8-b64d-e484bb967db4", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "snapshot": false, - "version": "8.12.0" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", @@ -120,7 +120,7 @@ An example event for `intel` looks as following: ], "dataset": "ti_crowdstrike.intel", "id": "hash_sha256_c98e1a7f563824cd448b47613743dcd1c853742b78f42b000192b83d", - "ingested": "2024-03-28T10:49:11Z", + "ingested": "2024-08-01T08:31:15Z", "kind": "enrichment", "original": "{\"_marker\":\"17005473618d17ae6353d123235e4158c5c81f25f0\",\"actors\":[\"SALTYSPIDER\"],\"deleted\":false,\"domain_types\":[\"abc.com\"],\"id\":\"hash_sha256_c98e1a7f563824cd448b47613743dcd1c853742b78f42b000192b83d\",\"indicator\":\"c98e192bf71a7f97563824cd448b47613743dcd1c853742b78f42b000192b83d\",\"ip_address_types\":[\"81.2.69.192\"],\"kill_chains\":[\"Installation\",\"C2\"],\"labels\":[{\"created_on\":1700547356,\"last_valid_on\":1700547360,\"name\":\"MaliciousConfidence/High\"},{\"created_on\":1700547359,\"last_valid_on\":1700547359,\"name\":\"Malware/Mofksys\"},{\"created_on\":1700547359,\"last_valid_on\":1700547359,\"name\":\"ThreatType/Commodity\"},{\"created_on\":1700547359,\"last_valid_on\":1700547359,\"name\":\"ThreatType/CredentialHarvesting\"},{\"created_on\":1700547359,\"last_valid_on\":1700547359,\"name\":\"ThreatType/InformationStealer\"}],\"last_updated\":1700547361,\"malicious_confidence\":\"high\",\"malware_families\":[\"Mofksys\"],\"published_date\":1700547356,\"relations\":[{\"created_date\":1700547339,\"id\":\"domain.com.yy\",\"indicator\":\"domain.ds\",\"last_valid_date\":1700547339,\"type\":\"domain\"},{\"created_date\":1700547339,\"id\":\"domain.xx.yy\",\"indicator\":\"domain.xx.fd\",\"last_valid_date\":1700547339,\"type\":\"domain\"}],\"reports\":[\"reports\"],\"targets\":[\"abc\"],\"threat_types\":[\"Commodity\",\"CredentialHarvesting\",\"InformationStealer\"],\"type\":\"hash_sha256\",\"vulnerabilities\":[\"vuln\"]}", "type": [ @@ -266,6 +266,9 @@ An example event for `intel` looks as following: | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | | log.offset | Log offset. | long | | threat.feed.name | Display friendly feed name. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | | ti_crowdstrike.intel._marker | A special marker associated with the Intel Indicator. | keyword | | ti_crowdstrike.intel.actors | Information related to actors associated with the Intel Indicator. | keyword | | ti_crowdstrike.intel.deleted | Indicates whether the Intel Indicator has been deleted. | boolean | @@ -307,24 +310,24 @@ An example event for `ioc` looks as following: { "@timestamp": "2023-11-01T10:22:23.106Z", "agent": { - "ephemeral_id": "ca4c5a70-0aa1-4cb3-867c-3c099798eef4", - "id": "803f2aef-a6c1-47c8-b64d-e484bb967db4", + "ephemeral_id": "6b69edbe-1d0f-4094-80d6-12915b7784ed", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.0" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_crowdstrike.ioc", - "namespace": "ep", + "namespace": "60867", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "803f2aef-a6c1-47c8-b64d-e484bb967db4", + "id": "36b03887-7783-4bc4-b8c5-6f8997e4cd1a", "snapshot": false, - "version": "8.12.0" + "version": "8.13.0" }, "event": { "action": "detect-again", @@ -334,7 +337,7 @@ An example event for `ioc` looks as following: ], "dataset": "ti_crowdstrike.ioc", "id": "34874a88935860cf6yyfc856d6abb6f35a29d8c077195ed6291aa8373696b44", - "ingested": "2024-03-28T10:50:10Z", + "ingested": "2024-08-01T08:32:09Z", "kind": "enrichment", "original": "{\"action\":\"detect again\",\"applied_globally\":true,\"created_by\":\"abc.it@example.com\",\"created_on\":\"2023-11-01T10:22:23.10607613Z\",\"deleted\":false,\"description\":\"IS-38887\",\"expired\":false,\"from_parent\":false,\"id\":\"34874a88935860cf6yyfc856d6abb6f35a29d8c077195ed6291aa8373696b44\",\"metadata\":{\"filename\":\"High_Serverity_Heuristic_Sandbox_Threat.docx\"},\"modified_by\":\"example.it@ex.com\",\"modified_on\":\"2023-11-01T10:22:23.10607613Z\",\"platforms\":[\"windows\",\"mac\",\"linux\"],\"severity\":\"critical\",\"tags\":[\"IS-38887\"],\"type\":\"ipv4\",\"value\":\"81.2.69.192\"}", "type": [ @@ -424,6 +427,9 @@ An example event for `ioc` looks as following: | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | | log.offset | Log offset. | long | | threat.feed.name | Display friendly feed name. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | | ti_crowdstrike.ioc.action | Describes the action taken when the IOC is detected. | keyword | | ti_crowdstrike.ioc.applied_globally | Indicates whether the IOC is applied globally. | boolean | | ti_crowdstrike.ioc.created_by | Indicates the entity or user who created the IOC. | keyword | diff --git a/packages/ti_crowdstrike/manifest.yml b/packages/ti_crowdstrike/manifest.yml index 835cd3f3e404..9292febf9a9a 100644 --- a/packages/ti_crowdstrike/manifest.yml +++ b/packages/ti_crowdstrike/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.3 name: ti_crowdstrike title: CrowdStrike Falcon Intelligence -version: "1.1.2" +version: "1.1.3" description: Collect logs from CrowdStrike Falcon Intelligence with Elastic Agent. type: integration categories: diff --git a/packages/ti_cybersixgill/changelog.yml b/packages/ti_cybersixgill/changelog.yml index 2947ecc9b5a8..a358f11fdd3d 100644 --- a/packages/ti_cybersixgill/changelog.yml +++ b/packages/ti_cybersixgill/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.30.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.30.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/ti_cybersixgill/data_stream/threat/fields/ecs.yml b/packages/ti_cybersixgill/data_stream/threat/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_cybersixgill/data_stream/threat/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_cybersixgill/data_stream/threat/sample_event.json b/packages/ti_cybersixgill/data_stream/threat/sample_event.json index 5bff494972c2..6306d3b4479e 100644 --- a/packages/ti_cybersixgill/data_stream/threat/sample_event.json +++ b/packages/ti_cybersixgill/data_stream/threat/sample_event.json @@ -1,8 +1,8 @@ { "@timestamp": "2021-12-07T13:58:01.596Z", "agent": { - "ephemeral_id": "70f5e8ea-8e32-4560-8e0f-3f3438fe9958", - "id": "d2a14a09-96fc-4f81-94ef-b0cd75ad71e7", + "ephemeral_id": "9c2e1e11-18ae-413f-9523-290c561a4b61", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" @@ -23,14 +23,14 @@ }, "data_stream": { "dataset": "ti_cybersixgill.threat", - "namespace": "39285", + "namespace": "78677", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "d2a14a09-96fc-4f81-94ef-b0cd75ad71e7", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, "version": "8.13.0" }, @@ -39,9 +39,9 @@ "category": [ "threat" ], - "created": "2024-06-12T03:26:26.797Z", + "created": "2024-08-02T04:14:26.522Z", "dataset": "ti_cybersixgill.threat", - "ingested": "2024-06-12T03:26:27Z", + "ingested": "2024-08-02T04:14:27Z", "kind": "enrichment", "original": "{\"confidence\":70,\"created\":\"2021-12-07T13:58:01.596Z\",\"description\":\"Hash attributed to malware that was discovered in the dark and deep web\",\"extensions\":{\"extension-definition--3de9ff00-174d-4d41-87c9-05a27a7e117c\":{\"extension_type\":\"toplevel-property-extension\"}},\"external_references\":[{\"positive_rate\":\"medium\",\"source_name\":\"VirusTotal\",\"url\":\"https://virustotal.com/#/file/7bdf8b8594ec269da864ee662334f4da53d4820a3f0f8aa665a0fa096ca8f22d\"},{\"description\":\"Mitre attack tactics and technique reference\",\"mitre_attack_tactic\":\"Build Capabilities\",\"mitre_attack_tactic_id\":\"TA0024\",\"mitre_attack_tactic_url\":\"https://attack.mitre.org/tactics/TA0024/\",\"source_name\":\"mitre-attack\"}],\"id\":\"indicator--302dab0f-64dc-42f5-b99e-702b28c1aaa9\",\"indicator_types\":[\"malicious-activity\"],\"lang\":\"en\",\"modified\":\"2021-12-07T13:58:01.596Z\",\"name\":\"4d0f21919d623bd1631ee15ca7429f28;5ce39ef0700b64bd0c71b55caf64ae45d8400965;7bdf8b8594ec269da864ee662334f4da53d4820a3f0f8aa665a0fa096ca8f22d\",\"pattern\":\"[file:hashes.MD5 = '4d0f21919d623bd1631ee15ca7429f28' OR file:hashes.'SHA-1' = '5ce39ef0700b64bd0c71b55caf64ae45d8400965' OR file:hashes.'SHA-256' = '7bdf8b8594ec269da864ee662334f4da53d4820a3f0f8aa665a0fa096ca8f22d']\",\"pattern_type\":\"stix\",\"sixgill_actor\":\"vaedzy\",\"sixgill_confidence\":70,\"sixgill_feedid\":\"darkfeed_012\",\"sixgill_feedname\":\"dark_web_hashes\",\"sixgill_post_virustotallink\":\"https://virustotal.com/#/file/7bdf8b8594ec269da864ee662334f4da53d4820a3f0f8aa665a0fa096ca8f22d\",\"sixgill_postid\":\"c0c9a0085fb5281cfb40a0ddb62e1d2c6a53eb7a\",\"sixgill_posttitle\":\"[病毒样本] #Trickbot (2021-12-07)\",\"sixgill_severity\":70,\"sixgill_source\":\"forum_kafan\",\"spec_version\":\"2.1\",\"type\":\"indicator\",\"valid_from\":\"2021-12-07T02:55:17Z\"}", "severity": 70, diff --git a/packages/ti_cybersixgill/docs/README.md b/packages/ti_cybersixgill/docs/README.md index ef1b83205a09..5292ce9c5dd2 100644 --- a/packages/ti_cybersixgill/docs/README.md +++ b/packages/ti_cybersixgill/docs/README.md @@ -44,6 +44,9 @@ To facilitate IOC expiration, source datastream-backed indices `.ds-logs-ti_cybe | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | | threat.feed.dashboard_id | Dashboard ID used for Kibana CTI UI | constant_keyword | | threat.feed.name | Display friendly feed name | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `threat` looks as following: @@ -52,8 +55,8 @@ An example event for `threat` looks as following: { "@timestamp": "2021-12-07T13:58:01.596Z", "agent": { - "ephemeral_id": "70f5e8ea-8e32-4560-8e0f-3f3438fe9958", - "id": "d2a14a09-96fc-4f81-94ef-b0cd75ad71e7", + "ephemeral_id": "9c2e1e11-18ae-413f-9523-290c561a4b61", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" @@ -74,14 +77,14 @@ An example event for `threat` looks as following: }, "data_stream": { "dataset": "ti_cybersixgill.threat", - "namespace": "39285", + "namespace": "78677", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "d2a14a09-96fc-4f81-94ef-b0cd75ad71e7", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, "version": "8.13.0" }, @@ -90,9 +93,9 @@ An example event for `threat` looks as following: "category": [ "threat" ], - "created": "2024-06-12T03:26:26.797Z", + "created": "2024-08-02T04:14:26.522Z", "dataset": "ti_cybersixgill.threat", - "ingested": "2024-06-12T03:26:27Z", + "ingested": "2024-08-02T04:14:27Z", "kind": "enrichment", "original": "{\"confidence\":70,\"created\":\"2021-12-07T13:58:01.596Z\",\"description\":\"Hash attributed to malware that was discovered in the dark and deep web\",\"extensions\":{\"extension-definition--3de9ff00-174d-4d41-87c9-05a27a7e117c\":{\"extension_type\":\"toplevel-property-extension\"}},\"external_references\":[{\"positive_rate\":\"medium\",\"source_name\":\"VirusTotal\",\"url\":\"https://virustotal.com/#/file/7bdf8b8594ec269da864ee662334f4da53d4820a3f0f8aa665a0fa096ca8f22d\"},{\"description\":\"Mitre attack tactics and technique reference\",\"mitre_attack_tactic\":\"Build Capabilities\",\"mitre_attack_tactic_id\":\"TA0024\",\"mitre_attack_tactic_url\":\"https://attack.mitre.org/tactics/TA0024/\",\"source_name\":\"mitre-attack\"}],\"id\":\"indicator--302dab0f-64dc-42f5-b99e-702b28c1aaa9\",\"indicator_types\":[\"malicious-activity\"],\"lang\":\"en\",\"modified\":\"2021-12-07T13:58:01.596Z\",\"name\":\"4d0f21919d623bd1631ee15ca7429f28;5ce39ef0700b64bd0c71b55caf64ae45d8400965;7bdf8b8594ec269da864ee662334f4da53d4820a3f0f8aa665a0fa096ca8f22d\",\"pattern\":\"[file:hashes.MD5 = '4d0f21919d623bd1631ee15ca7429f28' OR file:hashes.'SHA-1' = '5ce39ef0700b64bd0c71b55caf64ae45d8400965' OR file:hashes.'SHA-256' = '7bdf8b8594ec269da864ee662334f4da53d4820a3f0f8aa665a0fa096ca8f22d']\",\"pattern_type\":\"stix\",\"sixgill_actor\":\"vaedzy\",\"sixgill_confidence\":70,\"sixgill_feedid\":\"darkfeed_012\",\"sixgill_feedname\":\"dark_web_hashes\",\"sixgill_post_virustotallink\":\"https://virustotal.com/#/file/7bdf8b8594ec269da864ee662334f4da53d4820a3f0f8aa665a0fa096ca8f22d\",\"sixgill_postid\":\"c0c9a0085fb5281cfb40a0ddb62e1d2c6a53eb7a\",\"sixgill_posttitle\":\"[病毒样本] #Trickbot (2021-12-07)\",\"sixgill_severity\":70,\"sixgill_source\":\"forum_kafan\",\"spec_version\":\"2.1\",\"type\":\"indicator\",\"valid_from\":\"2021-12-07T02:55:17Z\"}", "severity": 70, diff --git a/packages/ti_cybersixgill/manifest.yml b/packages/ti_cybersixgill/manifest.yml index 14458999d3cb..c80ec32605d8 100644 --- a/packages/ti_cybersixgill/manifest.yml +++ b/packages/ti_cybersixgill/manifest.yml @@ -1,6 +1,6 @@ name: ti_cybersixgill title: Cybersixgill -version: "1.30.0" +version: "1.30.1" description: Ingest threat intelligence indicators from Cybersixgill with Elastic Agent. type: integration format_version: "3.0.2" diff --git a/packages/ti_eclecticiq/changelog.yml b/packages/ti_eclecticiq/changelog.yml index cf0d1667eb9c..3ca16267d339 100644 --- a/packages/ti_eclecticiq/changelog.yml +++ b/packages/ti_eclecticiq/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.2.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.2.0" changes: - description: Increase CEL resource.tracer.maxsize to prevent loss of trace responses. diff --git a/packages/ti_eclecticiq/data_stream/threat/fields/ecs.yml b/packages/ti_eclecticiq/data_stream/threat/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_eclecticiq/data_stream/threat/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_eclecticiq/data_stream/threat/sample_event.json b/packages/ti_eclecticiq/data_stream/threat/sample_event.json index 0f530dde5065..7575cf9c2409 100644 --- a/packages/ti_eclecticiq/data_stream/threat/sample_event.json +++ b/packages/ti_eclecticiq/data_stream/threat/sample_event.json @@ -1,36 +1,75 @@ { - "@timestamp": "2023-06-20T18:06:10.126Z", + "@timestamp": "2023-01-01T00:00:00.000Z", + "agent": { + "ephemeral_id": "cf201e4c-c043-4a07-baa4-2227c8fbb4c3", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "ti_eclecticiq.threat", + "namespace": "14085", + "type": "logs" + }, "eclecticiq": { "threat": { - "observable_id": "AyGp2BbK9uP5CeLPYv/uuQlDxC8=" + "observable_id": "OwWGOybxVeL+USaXvDQSNonD5eU=" } }, "ecs": { "version": "8.11.0" }, + "elastic_agent": { + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", + "snapshot": false, + "version": "8.13.0" + }, "event": { + "agent_id_status": "verified", "category": [ "threat" ], - "created": "2023-06-08T12:00:30.187Z", + "created": "2023-06-08T12:00:30.028Z", "dataset": "ti_eclecticiq.threat", - "id": "XugasX/Bvu/150lNyQjzIGR0zZ8=", + "id": "ZgAq/IXlrjc2J5AdLsDMWhENshI=", + "ingested": "2024-08-02T04:24:34Z", "kind": "enrichment", - "original": "{\"calculated.relevancy\": \"0.68\", \"calculated.source_reliability\": \"A\", \"calculated.tlp\": \"GREEN\", \"diff\": \"add\", \"entity.id\": \"5e814485-012d-423d-b769-026bfed0f451\", \"entity.title\": \"Example\", \"entity.type\": \"malware\", \"meta.classification\": \"\", \"meta.confidence\": \"\", \"meta.entity_url\": \"https://test.com/entity/5e814485-012d-423d-b769-026bfed0f451\", \"meta.estimated_observed_time\": \"2019-07-09T17:42:44.777000+00:00\", \"meta.estimated_threat_end_time\": \"\", \"meta.estimated_threat_start_time\": \"2022-05-11T14:00:00.188000+00:00\", \"meta.ingest_time\": \"2023-06-08T12:00:30.187097+00:00\", \"meta.relevancy\": \"0.68\", \"meta.source_reliability\": \"A\", \"meta.tags\": \"tag1;tag2\", \"meta.taxonomy\": \"\", \"meta.terms_of_use\": \"\", \"meta.tlp\": \"GREEN\", \"source.ids\": \"47ec245c-9e7b-467e-a016-77a22ff12dd5\", \"source.names\": \"Test Source\", \"timestamp\": \"2023-06-20 18:06:10.126780+00:00\", \"type\": \"domain\", \"value\": \"example.com\", \"value_url\": \"https://test.com/main/extracts/domain/test\"}", - "provider": "Test Source", - "start": "2022-05-11T14:00:00.188Z", + "provider": "Test", + "start": "2021-12-19T00:27:19.108Z", "type": [ "indicator" ], "url": "https://www.test.com/" }, - "tags": [ - "tag1", - "tag2" - ], + "host": { + "architecture": "aarch64", + "containerized": false, + "hostname": "docker-fleet-agent", + "id": "8269eab9370b4429947d2a16c3058fcb", + "ip": [ + "172.29.0.7" + ], + "mac": [ + "02-42-AC-1D-00-07" + ], + "name": "docker-fleet-agent", + "os": { + "codename": "focal", + "family": "debian", + "kernel": "6.4.16-linuxkit", + "name": "Ubuntu", + "platform": "ubuntu", + "type": "linux", + "version": "20.04.6 LTS (Focal Fossa)" + } + }, + "input": { + "type": "cel" + }, "threat": { "indicator": { - "first_seen": "2019-07-09T17:42:44.777Z", + "first_seen": "2021-12-19T00:27:19.108Z", "marking": { "tlp": "GREEN" }, diff --git a/packages/ti_eclecticiq/docs/README.md b/packages/ti_eclecticiq/docs/README.md index e49747ffd0e1..fdf398983415 100644 --- a/packages/ti_eclecticiq/docs/README.md +++ b/packages/ti_eclecticiq/docs/README.md @@ -179,38 +179,77 @@ An example event for `threat` looks as following: ```json { - "@timestamp": "2023-06-20T18:06:10.126Z", + "@timestamp": "2023-01-01T00:00:00.000Z", + "agent": { + "ephemeral_id": "cf201e4c-c043-4a07-baa4-2227c8fbb4c3", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "ti_eclecticiq.threat", + "namespace": "14085", + "type": "logs" + }, "eclecticiq": { "threat": { - "observable_id": "AyGp2BbK9uP5CeLPYv/uuQlDxC8=" + "observable_id": "OwWGOybxVeL+USaXvDQSNonD5eU=" } }, "ecs": { "version": "8.11.0" }, + "elastic_agent": { + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", + "snapshot": false, + "version": "8.13.0" + }, "event": { + "agent_id_status": "verified", "category": [ "threat" ], - "created": "2023-06-08T12:00:30.187Z", + "created": "2023-06-08T12:00:30.028Z", "dataset": "ti_eclecticiq.threat", - "id": "XugasX/Bvu/150lNyQjzIGR0zZ8=", + "id": "ZgAq/IXlrjc2J5AdLsDMWhENshI=", + "ingested": "2024-08-02T04:24:34Z", "kind": "enrichment", - "original": "{\"calculated.relevancy\": \"0.68\", \"calculated.source_reliability\": \"A\", \"calculated.tlp\": \"GREEN\", \"diff\": \"add\", \"entity.id\": \"5e814485-012d-423d-b769-026bfed0f451\", \"entity.title\": \"Example\", \"entity.type\": \"malware\", \"meta.classification\": \"\", \"meta.confidence\": \"\", \"meta.entity_url\": \"https://test.com/entity/5e814485-012d-423d-b769-026bfed0f451\", \"meta.estimated_observed_time\": \"2019-07-09T17:42:44.777000+00:00\", \"meta.estimated_threat_end_time\": \"\", \"meta.estimated_threat_start_time\": \"2022-05-11T14:00:00.188000+00:00\", \"meta.ingest_time\": \"2023-06-08T12:00:30.187097+00:00\", \"meta.relevancy\": \"0.68\", \"meta.source_reliability\": \"A\", \"meta.tags\": \"tag1;tag2\", \"meta.taxonomy\": \"\", \"meta.terms_of_use\": \"\", \"meta.tlp\": \"GREEN\", \"source.ids\": \"47ec245c-9e7b-467e-a016-77a22ff12dd5\", \"source.names\": \"Test Source\", \"timestamp\": \"2023-06-20 18:06:10.126780+00:00\", \"type\": \"domain\", \"value\": \"example.com\", \"value_url\": \"https://test.com/main/extracts/domain/test\"}", - "provider": "Test Source", - "start": "2022-05-11T14:00:00.188Z", + "provider": "Test", + "start": "2021-12-19T00:27:19.108Z", "type": [ "indicator" ], "url": "https://www.test.com/" }, - "tags": [ - "tag1", - "tag2" - ], + "host": { + "architecture": "aarch64", + "containerized": false, + "hostname": "docker-fleet-agent", + "id": "8269eab9370b4429947d2a16c3058fcb", + "ip": [ + "172.29.0.7" + ], + "mac": [ + "02-42-AC-1D-00-07" + ], + "name": "docker-fleet-agent", + "os": { + "codename": "focal", + "family": "debian", + "kernel": "6.4.16-linuxkit", + "name": "Ubuntu", + "platform": "ubuntu", + "type": "linux", + "version": "20.04.6 LTS (Focal Fossa)" + } + }, + "input": { + "type": "cel" + }, "threat": { "indicator": { - "first_seen": "2019-07-09T17:42:44.777Z", + "first_seen": "2021-12-19T00:27:19.108Z", "marking": { "tlp": "GREEN" }, @@ -241,4 +280,7 @@ An example event for `threat` looks as following: | input.type | Input type | keyword | | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | | threat.feed.name | Display friendly feed name | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | diff --git a/packages/ti_eclecticiq/manifest.yml b/packages/ti_eclecticiq/manifest.yml index 25b5407d4548..ac4ec5380a49 100644 --- a/packages/ti_eclecticiq/manifest.yml +++ b/packages/ti_eclecticiq/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.3 name: ti_eclecticiq title: EclecticIQ -version: "1.2.0" +version: "1.2.1" description: Ingest threat intelligence from EclecticIQ with Elastic Agent type: integration categories: diff --git a/packages/ti_eset/LICENSE.txt b/packages/ti_eset/LICENSE.txt deleted file mode 100644 index 809108b857ff..000000000000 --- a/packages/ti_eset/LICENSE.txt +++ /dev/null @@ -1,93 +0,0 @@ -Elastic License 2.0 - -URL: https://www.elastic.co/licensing/elastic-license - -## Acceptance - -By using the software, you agree to all of the terms and conditions below. - -## Copyright License - -The licensor grants you a non-exclusive, royalty-free, worldwide, -non-sublicensable, non-transferable license to use, copy, distribute, make -available, and prepare derivative works of the software, in each case subject to -the limitations and conditions below. - -## Limitations - -You may not provide the software to third parties as a hosted or managed -service, where the service provides users with access to any substantial set of -the features or functionality of the software. - -You may not move, change, disable, or circumvent the license key functionality -in the software, and you may not remove or obscure any functionality in the -software that is protected by the license key. - -You may not alter, remove, or obscure any licensing, copyright, or other notices -of the licensor in the software. Any use of the licensor’s trademarks is subject -to applicable law. - -## Patents - -The licensor grants you a license, under any patent claims the licensor can -license, or becomes able to license, to make, have made, use, sell, offer for -sale, import and have imported the software, in each case subject to the -limitations and conditions in this license. This license does not cover any -patent claims that you cause to be infringed by modifications or additions to -the software. If you or your company make any written claim that the software -infringes or contributes to infringement of any patent, your patent license for -the software granted under these terms ends immediately. If your company makes -such a claim, your patent license ends immediately for work on behalf of your -company. - -## Notices - -You must ensure that anyone who gets a copy of any part of the software from you -also gets a copy of these terms. - -If you modify the software, you must include in any modified copies of the -software prominent notices stating that you have modified the software. - -## No Other Rights - -These terms do not imply any licenses other than those expressly granted in -these terms. - -## Termination - -If you use the software in violation of these terms, such use is not licensed, -and your licenses will automatically terminate. If the licensor provides you -with a notice of your violation, and you cease all violation of this license no -later than 30 days after you receive that notice, your licenses will be -reinstated retroactively. However, if you violate these terms after such -reinstatement, any additional violation of these terms will cause your licenses -to terminate automatically and permanently. - -## No Liability - -*As far as the law allows, the software comes as is, without any warranty or -condition, and the licensor will not be liable to you for any damages arising -out of these terms or the use or nature of the software, under any kind of -legal claim.* - -## Definitions - -The **licensor** is the entity offering these terms, and the **software** is the -software the licensor makes available under these terms, including any portion -of it. - -**you** refers to the individual or entity agreeing to these terms. - -**your company** is any legal entity, sole proprietorship, or other kind of -organization that you work for, plus all organizations that have control over, -are under the control of, or are under common control with that -organization. **control** means ownership of substantially all the assets of an -entity, or the power to direct its management and policies by vote, contract, or -otherwise. Control can be direct or indirect. - -**your licenses** are all the licenses granted to you for the software under -these terms. - -**use** means anything you do with the software requiring one of your licenses. - -**trademark** means trademarks, service marks, and similar rights. diff --git a/packages/ti_eset/changelog.yml b/packages/ti_eset/changelog.yml index a8a539f1f0e4..31ce5b0186d7 100644 --- a/packages/ti_eset/changelog.yml +++ b/packages/ti_eset/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.2.2" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.2.1" changes: - description: Remove reference to a Kibana version from the README. diff --git a/packages/ti_eset/data_stream/apt/fields/ecs.yml b/packages/ti_eset/data_stream/apt/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_eset/data_stream/apt/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_eset/data_stream/apt/sample_event.json b/packages/ti_eset/data_stream/apt/sample_event.json index fb1a68be57d8..2110598b83a7 100644 --- a/packages/ti_eset/data_stream/apt/sample_event.json +++ b/packages/ti_eset/data_stream/apt/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-09-29T08:48:42.000Z", "agent": { - "ephemeral_id": "aca3c3ca-0233-4da9-aa4d-67883702e60b", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "bd2c939d-5911-4c25-b463-5e05b9c631d1", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.apt", - "namespace": "ep", + "namespace": "69523", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--a4cb9aa8-b12e-4141-ae33-509dfd9dd382", @@ -31,9 +31,9 @@ "category": [ "threat" ], - "created": "2024-03-27T14:17:00.528Z", + "created": "2024-08-02T04:59:53.515Z", "dataset": "ti_eset.apt", - "ingested": "2024-03-27T14:17:10Z", + "ingested": "2024-08-02T05:00:03Z", "kind": "enrichment", "original": "{\"created\":\"2023-09-29T08:48:42.000Z\",\"created_by_ref\":\"identity--55f6ea5e-51ac-4344-bc8c-4170950d210f\",\"id\":\"indicator--a4cb9aa8-b12e-4141-ae33-509dfd9dd382\",\"kill_chain_phases\":[{\"kill_chain_name\":\"misp-category\",\"phase_name\":\"file\"}],\"labels\":[\"misp:name=\\\"file\\\"\",\"misp:meta-category=\\\"file\\\"\",\"misp:to_ids=\\\"True\\\"\"],\"modified\":\"2023-09-29T08:48:42.000Z\",\"pattern\":\"[file:hashes.MD5 = '7196b26572d2c357a17599b9a0d71d33' AND file:hashes.SHA1 = 'a3ee3d4bc8057cfde073a7acf3232cfb3cbb10c0' AND file:hashes.SHA256 = '6c9eab41d2e06702313ee6513a8b98adc083ee7bcd2c85821a8a3136c20d687e' AND file:name = 'KihqQGHs7zYOxqqNE0b9zO4w6d7ysXUWrfDf6vLOAW4MU3Fs.mp3' AND file:parent_directory_ref.path = 'Comchit ltr no 4200 dt 23-09-2023' AND file:x_misp_fullpath = 'Comchit ltr no 4200 dt 23-09-2023/KihqQGHs7zYOxqqNE0b9zO4w6d7ysXUWrfDf6vLOAW4MU3Fs.mp3' AND file:extensions.'windows-pebinary-ext'.imphash = 'fcab131627362db5898b1bcc15d7fd72' AND file:extensions.'windows-pebinary-ext'.pe_type = 'dll' AND file:extensions.'windows-pebinary-ext'.x_misp_compilation_timestamp = '2023-09-25 07:03:56+00:00' AND file:extensions.'windows-pebinary-ext'.x_misp_authentihash = '6c744b262dbf76fb20346a93cbedbb0668c90b5bb5027485109e3cfb41f48d8c']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-09-26T07:00:04Z\"}", "type": [ diff --git a/packages/ti_eset/data_stream/botnet/fields/ecs.yml b/packages/ti_eset/data_stream/botnet/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_eset/data_stream/botnet/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_eset/data_stream/botnet/sample_event.json b/packages/ti_eset/data_stream/botnet/sample_event.json index f886d4a570b6..b0b51a20f0bc 100644 --- a/packages/ti_eset/data_stream/botnet/sample_event.json +++ b/packages/ti_eset/data_stream/botnet/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-10-18T02:05:09.000Z", "agent": { - "ephemeral_id": "29211d59-f061-4b27-a169-6db0193f8177", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "e3582713-6bf8-43c3-af56-ccec81f7e8f4", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.botnet", - "namespace": "ep", + "namespace": "22700", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--80dc09fa-563f-4a9c-ad1d-655d8dffa37f", @@ -32,9 +32,9 @@ "category": [ "threat" ], - "created": "2024-03-27T14:18:01.686Z", + "created": "2024-08-02T05:02:05.881Z", "dataset": "ti_eset.botnet", - "ingested": "2024-03-27T14:18:13Z", + "ingested": "2024-08-02T05:02:17Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-18T02:05:09.000Z\",\"description\":\"Each of these file hashes indicates that a variant of Win32/Rescoms.B backdoor is present.\",\"id\":\"indicator--80dc09fa-563f-4a9c-ad1d-655d8dffa37f\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-18T02:05:09.000Z\",\"name\":\"373d34874d7bc89fd4cefa6272ee80bf\",\"pattern\":\"[file:hashes.'SHA-256'='b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7'] OR [file:hashes.'SHA-1'='373d34874d7bc89fd4cefa6272ee80bf'] OR [file:hashes.'MD5'='373d34874d7bc89fd4cefa6272ee80bf']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-18T02:05:09Z\",\"valid_until\":\"2023-10-20T02:05:09Z\"}", "type": [ diff --git a/packages/ti_eset/data_stream/cc/fields/ecs.yml b/packages/ti_eset/data_stream/cc/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_eset/data_stream/cc/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_eset/data_stream/cc/sample_event.json b/packages/ti_eset/data_stream/cc/sample_event.json index 93ec62905b37..e8a18fff4bd9 100644 --- a/packages/ti_eset/data_stream/cc/sample_event.json +++ b/packages/ti_eset/data_stream/cc/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-10-19T02:00:09.000Z", "agent": { - "ephemeral_id": "f8b54ae9-959e-4ef4-b706-1bea093aaf7e", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "95cbae2d-d7d2-4290-85f5-52760bcda80a", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.cc", - "namespace": "ep", + "namespace": "98813", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--34e0eaa0-d35d-4039-b801-8f05d4e16bea", @@ -32,9 +32,9 @@ "category": [ "threat" ], - "created": "2024-03-27T14:19:06.534Z", + "created": "2024-08-02T05:04:32.167Z", "dataset": "ti_eset.cc", - "ingested": "2024-03-27T14:19:18Z", + "ingested": "2024-08-02T05:04:44Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:00:09.000Z\",\"description\":\"C\\u0026C of Win32/Smokeloader.H trojan\",\"id\":\"indicator--34e0eaa0-d35d-4039-b801-8f05d4e16bea\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-19T02:00:09.000Z\",\"name\":\"https://example.com/some/path\",\"pattern\":\"[url:value='https://example.com/some/path']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:00:09Z\",\"valid_until\":\"2023-10-21T02:00:09Z\"}", "type": [ diff --git a/packages/ti_eset/data_stream/domains/fields/ecs.yml b/packages/ti_eset/data_stream/domains/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_eset/data_stream/domains/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_eset/data_stream/domains/sample_event.json b/packages/ti_eset/data_stream/domains/sample_event.json index 77c5ae1097ac..f8e1ab633d95 100644 --- a/packages/ti_eset/data_stream/domains/sample_event.json +++ b/packages/ti_eset/data_stream/domains/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-10-19T02:00:28.000Z", "agent": { - "ephemeral_id": "6f2d8296-ddcf-4634-867b-00b524eb387c", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "76bad86d-2d9f-43d9-aa2b-f14fd7fc62ca", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.domains", - "namespace": "ep", + "namespace": "67132", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--dfb05726-f2be-43c8-a5b2-48e78cc05286", @@ -32,9 +32,9 @@ "category": [ "threat" ], - "created": "2024-03-27T14:20:11.664Z", + "created": "2024-08-02T05:06:46.514Z", "dataset": "ti_eset.domains", - "ingested": "2024-03-27T14:20:23Z", + "ingested": "2024-08-02T05:06:58Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:00:28.000Z\",\"description\":\"Host is known to be actively distributing adware or other medium-risk software.\",\"id\":\"indicator--dfb05726-f2be-43c8-a5b2-48e78cc05286\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-19T02:00:28.000Z\",\"name\":\"example.com\",\"pattern\":\"[domain-name:value='example.com']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:00:28Z\",\"valid_until\":\"2023-10-21T02:00:28Z\"}", "type": [ diff --git a/packages/ti_eset/data_stream/files/fields/ecs.yml b/packages/ti_eset/data_stream/files/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_eset/data_stream/files/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_eset/data_stream/files/sample_event.json b/packages/ti_eset/data_stream/files/sample_event.json index 9881c7e92bcb..b782bda2517c 100644 --- a/packages/ti_eset/data_stream/files/sample_event.json +++ b/packages/ti_eset/data_stream/files/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-10-19T02:00:38.000Z", "agent": { - "ephemeral_id": "205a7540-b015-4c5a-9534-191e2f7c11f1", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "dbb7a40e-8e54-45da-9658-416a3183fbab", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.files", - "namespace": "ep", + "namespace": "64810", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--5d7e9ad6-7b48-42fa-8598-d474e8da1b0f", @@ -32,9 +32,9 @@ "category": [ "threat" ], - "created": "2024-03-27T14:21:17.805Z", + "created": "2024-08-02T05:09:00.102Z", "dataset": "ti_eset.files", - "ingested": "2024-03-27T14:21:29Z", + "ingested": "2024-08-02T05:09:12Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:00:38.000Z\",\"description\":\"Each of these file hashes indicates that a variant of HTML/Phishing.Agent.EVU trojan is present.\",\"id\":\"indicator--5d7e9ad6-7b48-42fa-8598-d474e8da1b0f\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-19T02:00:38.000Z\",\"name\":\"b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7\",\"pattern\":\"[file:hashes.'SHA-256'='b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7'] OR [file:hashes.'SHA-1'='b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7'] OR [file:hashes.'MD5'='b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:00:38Z\",\"valid_until\":\"2023-10-21T02:00:38Z\"}", "type": [ diff --git a/packages/ti_eset/data_stream/ip/fields/ecs.yml b/packages/ti_eset/data_stream/ip/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_eset/data_stream/ip/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_eset/data_stream/ip/sample_event.json b/packages/ti_eset/data_stream/ip/sample_event.json index 7772317080e5..d572226f46e0 100644 --- a/packages/ti_eset/data_stream/ip/sample_event.json +++ b/packages/ti_eset/data_stream/ip/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-10-19T02:20:06.000Z", "agent": { - "ephemeral_id": "013ad9c0-d817-4490-a524-0b3f275d2f1a", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "960f3ac1-589e-4bc0-a8d2-ba6745729a1a", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.ip", - "namespace": "ep", + "namespace": "85610", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--905fad40-d804-4b89-ac9d-b616e0b8f6d3", @@ -32,9 +32,9 @@ "category": [ "threat" ], - "created": "2024-03-27T14:22:22.857Z", + "created": "2024-08-02T05:11:15.412Z", "dataset": "ti_eset.ip", - "ingested": "2024-03-27T14:22:34Z", + "ingested": "2024-08-02T05:11:27Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:20:06.000Z\",\"description\":\"Web services scanning and attacks\",\"id\":\"indicator--905fad40-d804-4b89-ac9d-b616e0b8f6d3\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-19T02:20:06.000Z\",\"name\":\"5.2.75.227\",\"pattern\":\"[ipv4-addr:value='5.2.75.227']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:20:06Z\",\"valid_until\":\"2023-10-21T02:20:06Z\"}", "type": [ diff --git a/packages/ti_eset/data_stream/url/fields/ecs.yml b/packages/ti_eset/data_stream/url/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_eset/data_stream/url/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_eset/data_stream/url/sample_event.json b/packages/ti_eset/data_stream/url/sample_event.json index 015da599a17d..42fe543e0ba6 100644 --- a/packages/ti_eset/data_stream/url/sample_event.json +++ b/packages/ti_eset/data_stream/url/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-10-19T02:00:13.000Z", "agent": { - "ephemeral_id": "47910f1c-df41-4011-adb3-74b1ad882384", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "9dbf7300-beb1-41a6-ab96-8fd3b1fa2108", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.url", - "namespace": "ep", + "namespace": "17964", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--8986619a-150b-453c-aaa8-bfe8694d05cc", @@ -32,9 +32,9 @@ "category": [ "threat" ], - "created": "2024-03-27T14:23:28.010Z", + "created": "2024-08-02T05:13:29.831Z", "dataset": "ti_eset.url", - "ingested": "2024-03-27T14:23:40Z", + "ingested": "2024-08-02T05:13:41Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:00:13.000Z\",\"description\":\"Host actively distributes high-severity threat in the form of executable code.\",\"id\":\"indicator--8986619a-150b-453c-aaa8-bfe8694d05cc\",\"labels\":[\"benign\"],\"modified\":\"2023-10-19T02:00:13.000Z\",\"name\":\"https://example.com/some/path\",\"pattern\":\"[url:value='https://example.com/some/path']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:00:13Z\",\"valid_until\":\"2023-10-21T02:00:13Z\"}", "type": [ diff --git a/packages/ti_eset/docs/README.md b/packages/ti_eset/docs/README.md index 84f68aef70f1..1c80d223ec40 100644 --- a/packages/ti_eset/docs/README.md +++ b/packages/ti_eset/docs/README.md @@ -109,6 +109,9 @@ refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-a | host.os.codename | OS codename, if any. | keyword | | input.type | Input type. | keyword | | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `botnet` looks as following: @@ -117,24 +120,24 @@ An example event for `botnet` looks as following: { "@timestamp": "2023-10-18T02:05:09.000Z", "agent": { - "ephemeral_id": "29211d59-f061-4b27-a169-6db0193f8177", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "e3582713-6bf8-43c3-af56-ccec81f7e8f4", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.botnet", - "namespace": "ep", + "namespace": "22700", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--80dc09fa-563f-4a9c-ad1d-655d8dffa37f", @@ -148,9 +151,9 @@ An example event for `botnet` looks as following: "category": [ "threat" ], - "created": "2024-03-27T14:18:01.686Z", + "created": "2024-08-02T05:02:05.881Z", "dataset": "ti_eset.botnet", - "ingested": "2024-03-27T14:18:13Z", + "ingested": "2024-08-02T05:02:17Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-18T02:05:09.000Z\",\"description\":\"Each of these file hashes indicates that a variant of Win32/Rescoms.B backdoor is present.\",\"id\":\"indicator--80dc09fa-563f-4a9c-ad1d-655d8dffa37f\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-18T02:05:09.000Z\",\"name\":\"373d34874d7bc89fd4cefa6272ee80bf\",\"pattern\":\"[file:hashes.'SHA-256'='b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7'] OR [file:hashes.'SHA-1'='373d34874d7bc89fd4cefa6272ee80bf'] OR [file:hashes.'MD5'='373d34874d7bc89fd4cefa6272ee80bf']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-18T02:05:09Z\",\"valid_until\":\"2023-10-20T02:05:09Z\"}", "type": [ @@ -210,6 +213,9 @@ An example event for `botnet` looks as following: | host.os.codename | OS codename, if any. | keyword | | input.type | Input type. | keyword | | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `cc` looks as following: @@ -218,24 +224,24 @@ An example event for `cc` looks as following: { "@timestamp": "2023-10-19T02:00:09.000Z", "agent": { - "ephemeral_id": "f8b54ae9-959e-4ef4-b706-1bea093aaf7e", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "95cbae2d-d7d2-4290-85f5-52760bcda80a", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.cc", - "namespace": "ep", + "namespace": "98813", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--34e0eaa0-d35d-4039-b801-8f05d4e16bea", @@ -249,9 +255,9 @@ An example event for `cc` looks as following: "category": [ "threat" ], - "created": "2024-03-27T14:19:06.534Z", + "created": "2024-08-02T05:04:32.167Z", "dataset": "ti_eset.cc", - "ingested": "2024-03-27T14:19:18Z", + "ingested": "2024-08-02T05:04:44Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:00:09.000Z\",\"description\":\"C\\u0026C of Win32/Smokeloader.H trojan\",\"id\":\"indicator--34e0eaa0-d35d-4039-b801-8f05d4e16bea\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-19T02:00:09.000Z\",\"name\":\"https://example.com/some/path\",\"pattern\":\"[url:value='https://example.com/some/path']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:00:09Z\",\"valid_until\":\"2023-10-21T02:00:09Z\"}", "type": [ @@ -307,6 +313,9 @@ An example event for `cc` looks as following: | host.os.codename | OS codename, if any. | keyword | | input.type | Input type. | keyword | | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `domains` looks as following: @@ -315,24 +324,24 @@ An example event for `domains` looks as following: { "@timestamp": "2023-10-19T02:00:28.000Z", "agent": { - "ephemeral_id": "6f2d8296-ddcf-4634-867b-00b524eb387c", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "76bad86d-2d9f-43d9-aa2b-f14fd7fc62ca", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.domains", - "namespace": "ep", + "namespace": "67132", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--dfb05726-f2be-43c8-a5b2-48e78cc05286", @@ -346,9 +355,9 @@ An example event for `domains` looks as following: "category": [ "threat" ], - "created": "2024-03-27T14:20:11.664Z", + "created": "2024-08-02T05:06:46.514Z", "dataset": "ti_eset.domains", - "ingested": "2024-03-27T14:20:23Z", + "ingested": "2024-08-02T05:06:58Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:00:28.000Z\",\"description\":\"Host is known to be actively distributing adware or other medium-risk software.\",\"id\":\"indicator--dfb05726-f2be-43c8-a5b2-48e78cc05286\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-19T02:00:28.000Z\",\"name\":\"example.com\",\"pattern\":\"[domain-name:value='example.com']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:00:28Z\",\"valid_until\":\"2023-10-21T02:00:28Z\"}", "type": [ @@ -405,6 +414,9 @@ An example event for `domains` looks as following: | host.os.codename | OS codename, if any. | keyword | | input.type | Input type. | keyword | | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `files` looks as following: @@ -413,24 +425,24 @@ An example event for `files` looks as following: { "@timestamp": "2023-10-19T02:00:38.000Z", "agent": { - "ephemeral_id": "205a7540-b015-4c5a-9534-191e2f7c11f1", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "dbb7a40e-8e54-45da-9658-416a3183fbab", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.files", - "namespace": "ep", + "namespace": "64810", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--5d7e9ad6-7b48-42fa-8598-d474e8da1b0f", @@ -444,9 +456,9 @@ An example event for `files` looks as following: "category": [ "threat" ], - "created": "2024-03-27T14:21:17.805Z", + "created": "2024-08-02T05:09:00.102Z", "dataset": "ti_eset.files", - "ingested": "2024-03-27T14:21:29Z", + "ingested": "2024-08-02T05:09:12Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:00:38.000Z\",\"description\":\"Each of these file hashes indicates that a variant of HTML/Phishing.Agent.EVU trojan is present.\",\"id\":\"indicator--5d7e9ad6-7b48-42fa-8598-d474e8da1b0f\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-19T02:00:38.000Z\",\"name\":\"b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7\",\"pattern\":\"[file:hashes.'SHA-256'='b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7'] OR [file:hashes.'SHA-1'='b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7'] OR [file:hashes.'MD5'='b0e914d1bbe19433cc9df64ea1ca07fe77f7b150b511b786e46e007941a62bd7']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:00:38Z\",\"valid_until\":\"2023-10-21T02:00:38Z\"}", "type": [ @@ -506,6 +518,9 @@ An example event for `files` looks as following: | host.os.codename | OS codename, if any. | keyword | | input.type | Input type. | keyword | | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `ip` looks as following: @@ -514,24 +529,24 @@ An example event for `ip` looks as following: { "@timestamp": "2023-10-19T02:20:06.000Z", "agent": { - "ephemeral_id": "013ad9c0-d817-4490-a524-0b3f275d2f1a", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "960f3ac1-589e-4bc0-a8d2-ba6745729a1a", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.ip", - "namespace": "ep", + "namespace": "85610", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--905fad40-d804-4b89-ac9d-b616e0b8f6d3", @@ -545,9 +560,9 @@ An example event for `ip` looks as following: "category": [ "threat" ], - "created": "2024-03-27T14:22:22.857Z", + "created": "2024-08-02T05:11:15.412Z", "dataset": "ti_eset.ip", - "ingested": "2024-03-27T14:22:34Z", + "ingested": "2024-08-02T05:11:27Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:20:06.000Z\",\"description\":\"Web services scanning and attacks\",\"id\":\"indicator--905fad40-d804-4b89-ac9d-b616e0b8f6d3\",\"labels\":[\"malicious-activity\"],\"modified\":\"2023-10-19T02:20:06.000Z\",\"name\":\"5.2.75.227\",\"pattern\":\"[ipv4-addr:value='5.2.75.227']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:20:06Z\",\"valid_until\":\"2023-10-21T02:20:06Z\"}", "type": [ @@ -604,6 +619,9 @@ An example event for `ip` looks as following: | host.os.codename | OS codename, if any. | keyword | | input.type | Input type. | keyword | | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `apt` looks as following: @@ -612,24 +630,24 @@ An example event for `apt` looks as following: { "@timestamp": "2023-09-29T08:48:42.000Z", "agent": { - "ephemeral_id": "aca3c3ca-0233-4da9-aa4d-67883702e60b", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "bd2c939d-5911-4c25-b463-5e05b9c631d1", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.apt", - "namespace": "ep", + "namespace": "69523", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--a4cb9aa8-b12e-4141-ae33-509dfd9dd382", @@ -642,9 +660,9 @@ An example event for `apt` looks as following: "category": [ "threat" ], - "created": "2024-03-27T14:17:00.528Z", + "created": "2024-08-02T04:59:53.515Z", "dataset": "ti_eset.apt", - "ingested": "2024-03-27T14:17:10Z", + "ingested": "2024-08-02T05:00:03Z", "kind": "enrichment", "original": "{\"created\":\"2023-09-29T08:48:42.000Z\",\"created_by_ref\":\"identity--55f6ea5e-51ac-4344-bc8c-4170950d210f\",\"id\":\"indicator--a4cb9aa8-b12e-4141-ae33-509dfd9dd382\",\"kill_chain_phases\":[{\"kill_chain_name\":\"misp-category\",\"phase_name\":\"file\"}],\"labels\":[\"misp:name=\\\"file\\\"\",\"misp:meta-category=\\\"file\\\"\",\"misp:to_ids=\\\"True\\\"\"],\"modified\":\"2023-09-29T08:48:42.000Z\",\"pattern\":\"[file:hashes.MD5 = '7196b26572d2c357a17599b9a0d71d33' AND file:hashes.SHA1 = 'a3ee3d4bc8057cfde073a7acf3232cfb3cbb10c0' AND file:hashes.SHA256 = '6c9eab41d2e06702313ee6513a8b98adc083ee7bcd2c85821a8a3136c20d687e' AND file:name = 'KihqQGHs7zYOxqqNE0b9zO4w6d7ysXUWrfDf6vLOAW4MU3Fs.mp3' AND file:parent_directory_ref.path = 'Comchit ltr no 4200 dt 23-09-2023' AND file:x_misp_fullpath = 'Comchit ltr no 4200 dt 23-09-2023/KihqQGHs7zYOxqqNE0b9zO4w6d7ysXUWrfDf6vLOAW4MU3Fs.mp3' AND file:extensions.'windows-pebinary-ext'.imphash = 'fcab131627362db5898b1bcc15d7fd72' AND file:extensions.'windows-pebinary-ext'.pe_type = 'dll' AND file:extensions.'windows-pebinary-ext'.x_misp_compilation_timestamp = '2023-09-25 07:03:56+00:00' AND file:extensions.'windows-pebinary-ext'.x_misp_authentihash = '6c744b262dbf76fb20346a93cbedbb0668c90b5bb5027485109e3cfb41f48d8c']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-09-26T07:00:04Z\"}", "type": [ @@ -703,6 +721,9 @@ An example event for `apt` looks as following: | host.os.codename | OS codename, if any. | keyword | | input.type | Input type. | keyword | | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `url` looks as following: @@ -711,24 +732,24 @@ An example event for `url` looks as following: { "@timestamp": "2023-10-19T02:00:13.000Z", "agent": { - "ephemeral_id": "47910f1c-df41-4011-adb3-74b1ad882384", - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "ephemeral_id": "9dbf7300-beb1-41a6-ab96-8fd3b1fa2108", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_eset.url", - "namespace": "ep", + "namespace": "17964", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "9e0f3400-1e85-4042-80cf-3bb8e2ffb404", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "eset": { "id": "indicator--8986619a-150b-453c-aaa8-bfe8694d05cc", @@ -742,9 +763,9 @@ An example event for `url` looks as following: "category": [ "threat" ], - "created": "2024-03-27T14:23:28.010Z", + "created": "2024-08-02T05:13:29.831Z", "dataset": "ti_eset.url", - "ingested": "2024-03-27T14:23:40Z", + "ingested": "2024-08-02T05:13:41Z", "kind": "enrichment", "original": "{\"created\":\"2023-10-19T02:00:13.000Z\",\"description\":\"Host actively distributes high-severity threat in the form of executable code.\",\"id\":\"indicator--8986619a-150b-453c-aaa8-bfe8694d05cc\",\"labels\":[\"benign\"],\"modified\":\"2023-10-19T02:00:13.000Z\",\"name\":\"https://example.com/some/path\",\"pattern\":\"[url:value='https://example.com/some/path']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"spec_version\":\"indicator\",\"type\":\"indicator\",\"valid_from\":\"2023-10-19T02:00:13Z\",\"valid_until\":\"2023-10-21T02:00:13Z\"}", "type": [ diff --git a/packages/ti_eset/manifest.yml b/packages/ti_eset/manifest.yml index 1b79fa1d80b8..2f734fa49645 100644 --- a/packages/ti_eset/manifest.yml +++ b/packages/ti_eset/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.3 name: ti_eset title: "ESET Threat Intelligence" -version: "1.2.1" +version: "1.2.2" description: "Ingest threat intelligence indicators from ESET Threat Intelligence with Elastic Agent." type: integration categories: diff --git a/packages/ti_maltiverse/changelog.yml b/packages/ti_maltiverse/changelog.yml index 0f30d18f9ef5..64a6d4de2ca6 100644 --- a/packages/ti_maltiverse/changelog.yml +++ b/packages/ti_maltiverse/changelog.yml @@ -1,3 +1,8 @@ +- version: "1.2.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.2.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/ti_maltiverse/data_stream/indicator/fields/ecs.yml b/packages/ti_maltiverse/data_stream/indicator/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_maltiverse/data_stream/indicator/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_maltiverse/data_stream/indicator/sample_event.json b/packages/ti_maltiverse/data_stream/indicator/sample_event.json index 17ff7ef192ac..afef34ae08be 100644 --- a/packages/ti_maltiverse/data_stream/indicator/sample_event.json +++ b/packages/ti_maltiverse/data_stream/indicator/sample_event.json @@ -1,34 +1,34 @@ { "@timestamp": "2022-11-05T05:37:57.000Z", "agent": { - "ephemeral_id": "b5733e23-446c-4102-952c-66874de0414e", - "id": "0b6be6e3-4e8a-4084-942d-124b48dc67d5", + "ephemeral_id": "c371b9d1-ae14-4272-9d73-3ef7bf7e46f9", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.8.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_maltiverse.indicator", - "namespace": "ep", + "namespace": "34244", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "0b6be6e3-4e8a-4084-942d-124b48dc67d5", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.8.1" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", "category": [ "threat" ], - "created": "2023-09-21T20:46:55.738Z", + "created": "2024-08-02T05:34:15.473Z", "dataset": "ti_maltiverse.indicator", "id": "NsHdp9tZZtzo6Kzlv6Z1TmPP47U=", - "ingested": "2023-09-21T20:46:58Z", + "ingested": "2024-08-02T05:34:27Z", "kind": "enrichment", "original": "{\"blacklist\":{\"count\":1,\"description\":\"QakBot\",\"first_seen\":\"2022-11-03 06:23:53\",\"labels\":[\"malicious-activity\"],\"last_seen\":\"2022-11-05 05:37:57\",\"source\":\"ThreatFox Abuse.ch\"},\"classification\":\"malicious\",\"creation_time\":\"2022-11-03 06:23:53\",\"domain\":\"autooutletllc.com\",\"hostname\":\"autooutletllc.com\",\"is_alive\":false,\"is_cnc\":true,\"is_distributing_malware\":false,\"is_iot_threat\":false,\"is_phishing\":false,\"last_online_time\":\"2022-11-05 05:37:57\",\"modification_time\":\"2022-11-05 05:37:57\",\"tag\":[\"bb05\",\"iso\",\"qakbot\",\"qbot\",\"quakbot\",\"tr\",\"w19\",\"zip\",\"oakboat\",\"pinkslipbot\"],\"tld\":\"com\",\"type\":\"url\",\"url\":\"https://autooutletllc.com/spares.php\",\"urlchecksum\":\"4aa7a29969dc1dffa5cad5af6cb343b9a9b40ea9646fed619d4c8d6472629128\"}", "severity": 9, @@ -97,4 +97,4 @@ } } } -} +} \ No newline at end of file diff --git a/packages/ti_maltiverse/docs/README.md b/packages/ti_maltiverse/docs/README.md index b78c32f1c83e..9b7e9cab645c 100644 --- a/packages/ti_maltiverse/docs/README.md +++ b/packages/ti_maltiverse/docs/README.md @@ -89,6 +89,9 @@ Both, the data_stream and the _latest index have applied expiration through ILM | maltiverse.tag | Tags of the threat | keyword | | maltiverse.type | Type of the threat | keyword | | maltiverse.urlchecksum | | keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `indicator` looks as following: @@ -97,34 +100,34 @@ An example event for `indicator` looks as following: { "@timestamp": "2022-11-05T05:37:57.000Z", "agent": { - "ephemeral_id": "b5733e23-446c-4102-952c-66874de0414e", - "id": "0b6be6e3-4e8a-4084-942d-124b48dc67d5", + "ephemeral_id": "c371b9d1-ae14-4272-9d73-3ef7bf7e46f9", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.8.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_maltiverse.indicator", - "namespace": "ep", + "namespace": "34244", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "0b6be6e3-4e8a-4084-942d-124b48dc67d5", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.8.1" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", "category": [ "threat" ], - "created": "2023-09-21T20:46:55.738Z", + "created": "2024-08-02T05:34:15.473Z", "dataset": "ti_maltiverse.indicator", "id": "NsHdp9tZZtzo6Kzlv6Z1TmPP47U=", - "ingested": "2023-09-21T20:46:58Z", + "ingested": "2024-08-02T05:34:27Z", "kind": "enrichment", "original": "{\"blacklist\":{\"count\":1,\"description\":\"QakBot\",\"first_seen\":\"2022-11-03 06:23:53\",\"labels\":[\"malicious-activity\"],\"last_seen\":\"2022-11-05 05:37:57\",\"source\":\"ThreatFox Abuse.ch\"},\"classification\":\"malicious\",\"creation_time\":\"2022-11-03 06:23:53\",\"domain\":\"autooutletllc.com\",\"hostname\":\"autooutletllc.com\",\"is_alive\":false,\"is_cnc\":true,\"is_distributing_malware\":false,\"is_iot_threat\":false,\"is_phishing\":false,\"last_online_time\":\"2022-11-05 05:37:57\",\"modification_time\":\"2022-11-05 05:37:57\",\"tag\":[\"bb05\",\"iso\",\"qakbot\",\"qbot\",\"quakbot\",\"tr\",\"w19\",\"zip\",\"oakboat\",\"pinkslipbot\"],\"tld\":\"com\",\"type\":\"url\",\"url\":\"https://autooutletllc.com/spares.php\",\"urlchecksum\":\"4aa7a29969dc1dffa5cad5af6cb343b9a9b40ea9646fed619d4c8d6472629128\"}", "severity": 9, @@ -194,5 +197,4 @@ An example event for `indicator` looks as following: } } } - ``` \ No newline at end of file diff --git a/packages/ti_maltiverse/manifest.yml b/packages/ti_maltiverse/manifest.yml index f9fe5f2ba49a..367033f23b51 100644 --- a/packages/ti_maltiverse/manifest.yml +++ b/packages/ti_maltiverse/manifest.yml @@ -1,6 +1,6 @@ name: ti_maltiverse title: Maltiverse -version: "1.2.0" +version: "1.2.1" description: Ingest threat intelligence indicators from Maltiverse feeds with Elastic Agent type: integration format_version: 3.0.2 diff --git a/packages/ti_mandiant_advantage/changelog.yml b/packages/ti_mandiant_advantage/changelog.yml index fc6f6a0b178e..c473e55e48ae 100644 --- a/packages/ti_mandiant_advantage/changelog.yml +++ b/packages/ti_mandiant_advantage/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.3.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.3.0" changes: - description: ECS version updated to 8.11.0. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/ti_mandiant_advantage/data_stream/threat_intelligence/fields/ecs.yml b/packages/ti_mandiant_advantage/data_stream/threat_intelligence/fields/ecs.yml index 3c8e64b475db..bca8282af61c 100644 --- a/packages/ti_mandiant_advantage/data_stream/threat_intelligence/fields/ecs.yml +++ b/packages/ti_mandiant_advantage/data_stream/threat_intelligence/fields/ecs.yml @@ -1,3 +1,9 @@ - external: ecs name: cloud.account.id dimension: true +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_mandiant_advantage/data_stream/threat_intelligence/sample_event.json b/packages/ti_mandiant_advantage/data_stream/threat_intelligence/sample_event.json index 6f5268c698ea..083df9fd2a37 100644 --- a/packages/ti_mandiant_advantage/data_stream/threat_intelligence/sample_event.json +++ b/packages/ti_mandiant_advantage/data_stream/threat_intelligence/sample_event.json @@ -1,104 +1,103 @@ { - "@timestamp": "2023-05-05T15:45:59.710Z", + "@timestamp": "2023-04-25T09:36:05.822Z", + "agent": { + "ephemeral_id": "3cf850f4-d7a9-4302-9745-cb0d0b408c1e", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "ti_mandiant_advantage.threat_intelligence", + "namespace": "99619", + "type": "logs" + }, "ecs": { "version": "8.11.0" }, + "elastic_agent": { + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", + "snapshot": false, + "version": "8.13.0" + }, "event": { + "agent_id_status": "verified", "category": [ "threat" ], + "created": "2024-08-02T05:42:35.442Z", + "dataset": "ti_mandiant_advantage.threat_intelligence", + "ingested": "2024-08-02T05:42:45Z", "kind": "enrichment", "module": "ti_mandiant_advantage_threat_intelligence", - "risk_score": 50, + "original": "{\"first_seen\":\"2022-09-06T00:46:38.000Z\",\"id\":\"fqdn--33bf4df5-3564-51e3-84f1-ca9d5bc2329e\",\"is_publishable\":true,\"last_seen\":\"2023-03-23T21:42:34.000Z\",\"last_updated\":\"2023-04-25T09:36:05.822Z\",\"misp\":{\"akamai\":false,\"alexa\":false,\"alexa_1M\":true,\"amazon-aws\":false,\"apple\":false,\"automated-malware-analysis\":false,\"bank-website\":false,\"captive-portals\":false,\"cisco_1M\":true,\"cisco_top1000\":false,\"cisco_top10k\":false,\"cisco_top20k\":false,\"cisco_top5k\":false,\"cloudflare\":false,\"common-contact-emails\":false,\"common-ioc-false-positive\":false,\"covid\":false,\"covid-19-cyber-threat-coalition-whitelist\":false,\"covid-19-krassi-whitelist\":false,\"crl-hostname\":false,\"crl-ip\":false,\"dax30\":false,\"disposable-email\":false,\"dynamic-dns\":false,\"eicar.com\":false,\"empty-hashes\":false,\"fastly\":false,\"google\":false,\"google-chrome-crux-1million\":true,\"google-gcp\":false,\"google-gmail-sending-ips\":false,\"googlebot\":false,\"ipv6-linklocal\":false,\"majestic_million\":true,\"majestic_million_1M\":true,\"microsoft\":false,\"microsoft-attack-simulator\":false,\"microsoft-azure\":false,\"microsoft-azure-appid\":false,\"microsoft-azure-china\":false,\"microsoft-azure-germany\":false,\"microsoft-azure-us-gov\":false,\"microsoft-office365\":false,\"microsoft-office365-cn\":false,\"microsoft-office365-ip\":false,\"microsoft-win10-connection-endpoints\":false,\"moz-top500\":false,\"mozilla-CA\":false,\"mozilla-IntermediateCA\":false,\"multicast\":false,\"nioc-filehash\":false,\"ovh-cluster\":false,\"parking-domain\":false,\"parking-domain-ns\":false,\"phone_numbers\":false,\"public-dns-hostname\":false,\"public-dns-v4\":false,\"public-dns-v6\":false,\"public-ipfs-gateways\":false,\"rfc1918\":false,\"rfc3849\":false,\"rfc5735\":false,\"rfc6598\":false,\"rfc6761\":false,\"second-level-tlds\":true,\"security-provider-blogpost\":false,\"sinkholes\":false,\"smtp-receiving-ips\":false,\"smtp-sending-ips\":false,\"stackpath\":false,\"tenable-cloud-ipv4\":false,\"tenable-cloud-ipv6\":false,\"ti-falsepositives\":false,\"tlds\":true,\"tranco\":true,\"tranco10k\":true,\"university_domains\":false,\"url-shortener\":false,\"vpn-ipv4\":false,\"vpn-ipv6\":false,\"whats-my-ip\":false,\"wikimedia\":false},\"mscore\":27,\"sources\":[{\"category\":[\"test\"],\"first_seen\":\"2022-09-06T00:46:38.722+0000\",\"last_seen\":\"2023-03-23T21:42:34.707+0000\",\"osint\":true,\"source_name\":\"dtm.blackbeard\"},{\"category\":[],\"first_seen\":\"2022-11-29T16:24:52.984+0000\",\"last_seen\":\"2022-11-29T16:24:52.984+0000\",\"osint\":true,\"source_name\":\"dtm.vanellope\"}],\"type\":\"fqdn\",\"value\":\"ru.wikibooks.org\"}", + "risk_score": 27, "type": [ "indicator" ] }, + "input": { + "type": "httpjson" + }, "mandiant": { "threat_intelligence": { "ioc": { "categories": [ - "exploit/vuln-scanning", - "exploit", - "spam/sender", - "spam" + "test" ], - "first_seen": "2022-06-18T23:22:01.000Z", - "id": "ipv4--af6febd0-3351-5b32-a66c-bbac306c7360", - "last_seen": "2023-03-23T23:22:01.000Z", - "last_update_date": "2023-05-05T15:45:59.710Z", - "mscore": 50, + "first_seen": "2022-09-06T00:46:38.000Z", + "id": "fqdn--33bf4df5-3564-51e3-84f1-ca9d5bc2329e", + "last_seen": "2023-03-23T21:42:34.000Z", + "last_update_date": "2023-04-25T09:36:05.822Z", + "mscore": 27, "sources": [ - { - "first_seen": "2022-09-22T23:40:00.911+0000", - "last_seen": "2022-09-23T00:33:09.000+0000", - "osint": true, - "source_name": "voipbl" - }, - { - "category": [ - "exploit/vuln-scanning", - "exploit" - ], - "first_seen": "2022-09-14T09:20:00.904+0000", - "last_seen": "2023-02-24T18:20:00.857+0000", - "osint": true, - "source_name": "greensnow" - }, { "category": [ - "spam/sender", - "spam" + "test" ], - "first_seen": "2022-06-18T23:22:01.386+0000", - "last_seen": "2023-03-23T23:22:01.308+0000", + "first_seen": "2022-09-06T00:46:38.722+0000", + "last_seen": "2023-03-23T21:42:34.707+0000", "osint": true, - "source_name": "sblam_blacklist" + "source_name": "dtm.blackbeard" }, { - "first_seen": "2022-09-14T23:34:04.312+0000", - "last_seen": "2022-09-23T00:33:09.000+0000", + "first_seen": "2022-11-29T16:24:52.984+0000", + "last_seen": "2022-11-29T16:24:52.984+0000", "osint": true, - "source_name": "blocklist_net_ua" + "source_name": "dtm.vanellope" } ], - "type": "ipv4", - "value": "1.128.3.4" + "type": "fqdn", + "value": "ru.wikibooks.org" } } }, - "related": { - "ip": [ - "1.128.3.4" - ] - }, + "tags": [ + "preserve_original_event", + "forwarded", + "mandiant-threat-intelligence-indicator" + ], "threat": { "feed": { "name": "Mandiant Threat Intelligence" }, "indicator": { - "as": { - "number": 1221, - "organization": { - "name": "Telstra Pty Ltd" - } - }, - "confidence": "Medium", - "first_seen": "2022-06-18T23:22:01.000Z", - "ip": "1.128.3.4", - "last_seen": "2023-03-23T23:22:01.000Z", + "confidence": "Low", + "first_seen": "2022-09-06T00:46:38.000Z", + "last_seen": "2023-03-23T21:42:34.000Z", "marking": { "tlp": "GREEN", "tlp_version": "2.0" }, - "modified_at": "2023-05-05T15:45:59.710Z", + "modified_at": "2023-04-25T09:36:05.822Z", "provider": [ - "voipbl", - "greensnow", - "sblam_blacklist", - "blocklist_net_ua" + "dtm.blackbeard", + "dtm.vanellope" ], - "type": "ipv4-addr" + "type": "domain-name", + "url": { + "domain": "ru.wikibooks.org" + } } } } \ No newline at end of file diff --git a/packages/ti_mandiant_advantage/docs/README.md b/packages/ti_mandiant_advantage/docs/README.md index 9cc42076a823..830c1f1c1db6 100644 --- a/packages/ti_mandiant_advantage/docs/README.md +++ b/packages/ti_mandiant_advantage/docs/README.md @@ -57,106 +57,105 @@ An example event for `threat_intelligence` looks as following: ```json { - "@timestamp": "2023-05-05T15:45:59.710Z", + "@timestamp": "2023-04-25T09:36:05.822Z", + "agent": { + "ephemeral_id": "3cf850f4-d7a9-4302-9745-cb0d0b408c1e", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "ti_mandiant_advantage.threat_intelligence", + "namespace": "99619", + "type": "logs" + }, "ecs": { "version": "8.11.0" }, + "elastic_agent": { + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", + "snapshot": false, + "version": "8.13.0" + }, "event": { + "agent_id_status": "verified", "category": [ "threat" ], + "created": "2024-08-02T05:42:35.442Z", + "dataset": "ti_mandiant_advantage.threat_intelligence", + "ingested": "2024-08-02T05:42:45Z", "kind": "enrichment", "module": "ti_mandiant_advantage_threat_intelligence", - "risk_score": 50, + "original": "{\"first_seen\":\"2022-09-06T00:46:38.000Z\",\"id\":\"fqdn--33bf4df5-3564-51e3-84f1-ca9d5bc2329e\",\"is_publishable\":true,\"last_seen\":\"2023-03-23T21:42:34.000Z\",\"last_updated\":\"2023-04-25T09:36:05.822Z\",\"misp\":{\"akamai\":false,\"alexa\":false,\"alexa_1M\":true,\"amazon-aws\":false,\"apple\":false,\"automated-malware-analysis\":false,\"bank-website\":false,\"captive-portals\":false,\"cisco_1M\":true,\"cisco_top1000\":false,\"cisco_top10k\":false,\"cisco_top20k\":false,\"cisco_top5k\":false,\"cloudflare\":false,\"common-contact-emails\":false,\"common-ioc-false-positive\":false,\"covid\":false,\"covid-19-cyber-threat-coalition-whitelist\":false,\"covid-19-krassi-whitelist\":false,\"crl-hostname\":false,\"crl-ip\":false,\"dax30\":false,\"disposable-email\":false,\"dynamic-dns\":false,\"eicar.com\":false,\"empty-hashes\":false,\"fastly\":false,\"google\":false,\"google-chrome-crux-1million\":true,\"google-gcp\":false,\"google-gmail-sending-ips\":false,\"googlebot\":false,\"ipv6-linklocal\":false,\"majestic_million\":true,\"majestic_million_1M\":true,\"microsoft\":false,\"microsoft-attack-simulator\":false,\"microsoft-azure\":false,\"microsoft-azure-appid\":false,\"microsoft-azure-china\":false,\"microsoft-azure-germany\":false,\"microsoft-azure-us-gov\":false,\"microsoft-office365\":false,\"microsoft-office365-cn\":false,\"microsoft-office365-ip\":false,\"microsoft-win10-connection-endpoints\":false,\"moz-top500\":false,\"mozilla-CA\":false,\"mozilla-IntermediateCA\":false,\"multicast\":false,\"nioc-filehash\":false,\"ovh-cluster\":false,\"parking-domain\":false,\"parking-domain-ns\":false,\"phone_numbers\":false,\"public-dns-hostname\":false,\"public-dns-v4\":false,\"public-dns-v6\":false,\"public-ipfs-gateways\":false,\"rfc1918\":false,\"rfc3849\":false,\"rfc5735\":false,\"rfc6598\":false,\"rfc6761\":false,\"second-level-tlds\":true,\"security-provider-blogpost\":false,\"sinkholes\":false,\"smtp-receiving-ips\":false,\"smtp-sending-ips\":false,\"stackpath\":false,\"tenable-cloud-ipv4\":false,\"tenable-cloud-ipv6\":false,\"ti-falsepositives\":false,\"tlds\":true,\"tranco\":true,\"tranco10k\":true,\"university_domains\":false,\"url-shortener\":false,\"vpn-ipv4\":false,\"vpn-ipv6\":false,\"whats-my-ip\":false,\"wikimedia\":false},\"mscore\":27,\"sources\":[{\"category\":[\"test\"],\"first_seen\":\"2022-09-06T00:46:38.722+0000\",\"last_seen\":\"2023-03-23T21:42:34.707+0000\",\"osint\":true,\"source_name\":\"dtm.blackbeard\"},{\"category\":[],\"first_seen\":\"2022-11-29T16:24:52.984+0000\",\"last_seen\":\"2022-11-29T16:24:52.984+0000\",\"osint\":true,\"source_name\":\"dtm.vanellope\"}],\"type\":\"fqdn\",\"value\":\"ru.wikibooks.org\"}", + "risk_score": 27, "type": [ "indicator" ] }, + "input": { + "type": "httpjson" + }, "mandiant": { "threat_intelligence": { "ioc": { "categories": [ - "exploit/vuln-scanning", - "exploit", - "spam/sender", - "spam" + "test" ], - "first_seen": "2022-06-18T23:22:01.000Z", - "id": "ipv4--af6febd0-3351-5b32-a66c-bbac306c7360", - "last_seen": "2023-03-23T23:22:01.000Z", - "last_update_date": "2023-05-05T15:45:59.710Z", - "mscore": 50, + "first_seen": "2022-09-06T00:46:38.000Z", + "id": "fqdn--33bf4df5-3564-51e3-84f1-ca9d5bc2329e", + "last_seen": "2023-03-23T21:42:34.000Z", + "last_update_date": "2023-04-25T09:36:05.822Z", + "mscore": 27, "sources": [ - { - "first_seen": "2022-09-22T23:40:00.911+0000", - "last_seen": "2022-09-23T00:33:09.000+0000", - "osint": true, - "source_name": "voipbl" - }, - { - "category": [ - "exploit/vuln-scanning", - "exploit" - ], - "first_seen": "2022-09-14T09:20:00.904+0000", - "last_seen": "2023-02-24T18:20:00.857+0000", - "osint": true, - "source_name": "greensnow" - }, { "category": [ - "spam/sender", - "spam" + "test" ], - "first_seen": "2022-06-18T23:22:01.386+0000", - "last_seen": "2023-03-23T23:22:01.308+0000", + "first_seen": "2022-09-06T00:46:38.722+0000", + "last_seen": "2023-03-23T21:42:34.707+0000", "osint": true, - "source_name": "sblam_blacklist" + "source_name": "dtm.blackbeard" }, { - "first_seen": "2022-09-14T23:34:04.312+0000", - "last_seen": "2022-09-23T00:33:09.000+0000", + "first_seen": "2022-11-29T16:24:52.984+0000", + "last_seen": "2022-11-29T16:24:52.984+0000", "osint": true, - "source_name": "blocklist_net_ua" + "source_name": "dtm.vanellope" } ], - "type": "ipv4", - "value": "1.128.3.4" + "type": "fqdn", + "value": "ru.wikibooks.org" } } }, - "related": { - "ip": [ - "1.128.3.4" - ] - }, + "tags": [ + "preserve_original_event", + "forwarded", + "mandiant-threat-intelligence-indicator" + ], "threat": { "feed": { "name": "Mandiant Threat Intelligence" }, "indicator": { - "as": { - "number": 1221, - "organization": { - "name": "Telstra Pty Ltd" - } - }, - "confidence": "Medium", - "first_seen": "2022-06-18T23:22:01.000Z", - "ip": "1.128.3.4", - "last_seen": "2023-03-23T23:22:01.000Z", + "confidence": "Low", + "first_seen": "2022-09-06T00:46:38.000Z", + "last_seen": "2023-03-23T21:42:34.000Z", "marking": { "tlp": "GREEN", "tlp_version": "2.0" }, - "modified_at": "2023-05-05T15:45:59.710Z", + "modified_at": "2023-04-25T09:36:05.822Z", "provider": [ - "voipbl", - "greensnow", - "sblam_blacklist", - "blocklist_net_ua" + "dtm.blackbeard", + "dtm.vanellope" ], - "type": "ipv4-addr" + "type": "domain-name", + "url": { + "domain": "ru.wikibooks.org" + } } } } @@ -189,4 +188,7 @@ An example event for `threat_intelligence` looks as following: | mandiant.threat_intelligence.ioc.sources | List of the indicator sources. | object | | mandiant.threat_intelligence.ioc.type | IOC type. | keyword | | mandiant.threat_intelligence.ioc.value | IOC value. | keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | diff --git a/packages/ti_mandiant_advantage/manifest.yml b/packages/ti_mandiant_advantage/manifest.yml index c34141887961..98ae18288773 100644 --- a/packages/ti_mandiant_advantage/manifest.yml +++ b/packages/ti_mandiant_advantage/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.2 name: ti_mandiant_advantage title: "Mandiant Advantage" -version: "1.3.0" +version: "1.3.1" source: license: "Elastic-2.0" description: "Collect Threat Intelligence from products within the Mandiant Advantage platform." diff --git a/packages/ti_opencti/changelog.yml b/packages/ti_opencti/changelog.yml index ef67ccc3bd4d..424ee6cd641a 100644 --- a/packages/ti_opencti/changelog.yml +++ b/packages/ti_opencti/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.3.2" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "2.3.1" changes: - description: Ignore missing createdBy, improve registry hive name handling. diff --git a/packages/ti_opencti/data_stream/indicator/fields/ecs.yml b/packages/ti_opencti/data_stream/indicator/fields/ecs.yml index f6d9a6523904..db67311babe5 100644 --- a/packages/ti_opencti/data_stream/indicator/fields/ecs.yml +++ b/packages/ti_opencti/data_stream/indicator/fields/ecs.yml @@ -45,3 +45,9 @@ type: constant_keyword description: Event module value: ti_opencti +- name: threat.indicator.first_seen + external: ecs +- name: threat.indicator.last_seen + external: ecs +- name: threat.indicator.modified_at + external: ecs diff --git a/packages/ti_opencti/data_stream/indicator/sample_event.json b/packages/ti_opencti/data_stream/indicator/sample_event.json index 234ba4a76cf6..9b056027f101 100644 --- a/packages/ti_opencti/data_stream/indicator/sample_event.json +++ b/packages/ti_opencti/data_stream/indicator/sample_event.json @@ -1,22 +1,22 @@ { - "@timestamp": "2024-06-12T06:54:25.854Z", + "@timestamp": "2024-08-02T05:53:33.529Z", "agent": { - "ephemeral_id": "de8fc32a-4eaf-4e32-97ae-bcdb93b8d8ee", - "id": "d2a14a09-96fc-4f81-94ef-b0cd75ad71e7", + "ephemeral_id": "a21855cb-722e-430f-8d9a-e6dfedf565b1", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" }, "data_stream": { "dataset": "ti_opencti.indicator", - "namespace": "66338", + "namespace": "82985", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "d2a14a09-96fc-4f81-94ef-b0cd75ad71e7", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, "version": "8.13.0" }, @@ -28,7 +28,7 @@ "created": "2018-02-05T08:04:53.000Z", "dataset": "ti_opencti.indicator", "id": "d019b01c-b637-4eb2-af53-6d527be3193d", - "ingested": "2024-06-12T06:54:37Z", + "ingested": "2024-08-02T05:53:45Z", "kind": "enrichment", "original": "{\"confidence\":15,\"created\":\"2018-02-05T08:04:53.000Z\",\"createdBy\":{\"identity_class\":\"organization\",\"name\":\"CthulhuSPRL.be\"},\"description\":\"\",\"externalReferences\":{\"edges\":[]},\"id\":\"d019b01c-b637-4eb2-af53-6d527be3193d\",\"is_inferred\":false,\"killChainPhases\":[],\"lang\":\"en\",\"modified\":\"2023-01-17T05:53:42.851Z\",\"name\":\"ec2-23-21-172-164.compute-1.amazonaws.com\",\"objectLabel\":[{\"value\":\"information-credibility-6\"},{\"value\":\"osint\"}],\"objectMarking\":[{\"definition\":\"TLP:GREEN\",\"definition_type\":\"TLP\"}],\"observables\":{\"edges\":[{\"node\":{\"entity_type\":\"Hostname\",\"id\":\"b0a91059-5637-4050-8dce-a976a607f75c\",\"observable_value\":\"ec2-23-21-172-164.compute-1.amazonaws.com\",\"standard_id\":\"hostname--2047cd44-ffae-5b34-b912-5856add59b59\",\"value\":\"ec2-23-21-172-164.compute-1.amazonaws.com\"}}],\"pageInfo\":{\"globalCount\":1}},\"pattern\":\"[hostname:value = 'ec2-23-21-172-164.compute-1.amazonaws.com']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"revoked\":true,\"standard_id\":\"indicator--cde0a6e1-c622-52c4-b857-e9aeac56131b\",\"valid_from\":\"2018-02-05T08:04:53.000Z\",\"valid_until\":\"2019-02-05T08:04:53.000Z\",\"x_opencti_detection\":false,\"x_opencti_main_observable_type\":\"Hostname\",\"x_opencti_score\":40}", "type": [ @@ -93,7 +93,7 @@ "name": "ec2-23-21-172-164.compute-1.amazonaws.com", "provider": "CthulhuSPRL.be", "reference": "http://svc-opencti_stub:8080/dashboard/observations/indicators/d019b01c-b637-4eb2-af53-6d527be3193d", - "type": "domain-name", + "type": "hostname", "url": { "domain": "ec2-23-21-172-164.compute-1.amazonaws.com", "registered_domain": "ec2-23-21-172-164.compute-1.amazonaws.com", diff --git a/packages/ti_opencti/docs/README.md b/packages/ti_opencti/docs/README.md index c8884ecc1233..a495c8269139 100644 --- a/packages/ti_opencti/docs/README.md +++ b/packages/ti_opencti/docs/README.md @@ -53,24 +53,24 @@ An example event for `indicator` looks as following: ```json { - "@timestamp": "2024-06-12T06:54:25.854Z", + "@timestamp": "2024-08-02T05:53:33.529Z", "agent": { - "ephemeral_id": "de8fc32a-4eaf-4e32-97ae-bcdb93b8d8ee", - "id": "d2a14a09-96fc-4f81-94ef-b0cd75ad71e7", + "ephemeral_id": "a21855cb-722e-430f-8d9a-e6dfedf565b1", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" }, "data_stream": { "dataset": "ti_opencti.indicator", - "namespace": "66338", + "namespace": "82985", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "d2a14a09-96fc-4f81-94ef-b0cd75ad71e7", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, "version": "8.13.0" }, @@ -82,7 +82,7 @@ An example event for `indicator` looks as following: "created": "2018-02-05T08:04:53.000Z", "dataset": "ti_opencti.indicator", "id": "d019b01c-b637-4eb2-af53-6d527be3193d", - "ingested": "2024-06-12T06:54:37Z", + "ingested": "2024-08-02T05:53:45Z", "kind": "enrichment", "original": "{\"confidence\":15,\"created\":\"2018-02-05T08:04:53.000Z\",\"createdBy\":{\"identity_class\":\"organization\",\"name\":\"CthulhuSPRL.be\"},\"description\":\"\",\"externalReferences\":{\"edges\":[]},\"id\":\"d019b01c-b637-4eb2-af53-6d527be3193d\",\"is_inferred\":false,\"killChainPhases\":[],\"lang\":\"en\",\"modified\":\"2023-01-17T05:53:42.851Z\",\"name\":\"ec2-23-21-172-164.compute-1.amazonaws.com\",\"objectLabel\":[{\"value\":\"information-credibility-6\"},{\"value\":\"osint\"}],\"objectMarking\":[{\"definition\":\"TLP:GREEN\",\"definition_type\":\"TLP\"}],\"observables\":{\"edges\":[{\"node\":{\"entity_type\":\"Hostname\",\"id\":\"b0a91059-5637-4050-8dce-a976a607f75c\",\"observable_value\":\"ec2-23-21-172-164.compute-1.amazonaws.com\",\"standard_id\":\"hostname--2047cd44-ffae-5b34-b912-5856add59b59\",\"value\":\"ec2-23-21-172-164.compute-1.amazonaws.com\"}}],\"pageInfo\":{\"globalCount\":1}},\"pattern\":\"[hostname:value = 'ec2-23-21-172-164.compute-1.amazonaws.com']\",\"pattern_type\":\"stix\",\"pattern_version\":\"2.1\",\"revoked\":true,\"standard_id\":\"indicator--cde0a6e1-c622-52c4-b857-e9aeac56131b\",\"valid_from\":\"2018-02-05T08:04:53.000Z\",\"valid_until\":\"2019-02-05T08:04:53.000Z\",\"x_opencti_detection\":false,\"x_opencti_main_observable_type\":\"Hostname\",\"x_opencti_score\":40}", "type": [ @@ -147,7 +147,7 @@ An example event for `indicator` looks as following: "name": "ec2-23-21-172-164.compute-1.amazonaws.com", "provider": "CthulhuSPRL.be", "reference": "http://svc-opencti_stub:8080/dashboard/observations/indicators/d019b01c-b637-4eb2-af53-6d527be3193d", - "type": "domain-name", + "type": "hostname", "url": { "domain": "ec2-23-21-172-164.compute-1.amazonaws.com", "registered_domain": "ec2-23-21-172-164.compute-1.amazonaws.com", @@ -513,5 +513,8 @@ The documentation for ECS fields can be found at: | opencti.observable.x509_certificate.version | The version of the encoded certificate. | keyword | | threat.indicator.file.hash.sha3_256 | SHA3-256 hash. | keyword | | threat.indicator.file.hash.sha3_512 | SHA3-512 hash. | keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | | threat.indicator.type | Type of indicator as represented by Cyber Observable in STIX 2.1 or OpenCTI | keyword | diff --git a/packages/ti_opencti/manifest.yml b/packages/ti_opencti/manifest.yml index 01bcb8a36047..fda5f4af8c98 100644 --- a/packages/ti_opencti/manifest.yml +++ b/packages/ti_opencti/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: ti_opencti title: OpenCTI -version: "2.3.1" +version: "2.3.2" description: "Ingest threat intelligence indicators from OpenCTI with Elastic Agent." type: integration source: diff --git a/packages/ti_otx/changelog.yml b/packages/ti_otx/changelog.yml index 1355341f819b..0c8afb896a8d 100644 --- a/packages/ti_otx/changelog.yml +++ b/packages/ti_otx/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.25.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.25.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/ti_otx/data_stream/pulses_subscribed/fields/ecs.yml b/packages/ti_otx/data_stream/pulses_subscribed/fields/ecs.yml index 34fc117cd80a..241dca2335e4 100644 --- a/packages/ti_otx/data_stream/pulses_subscribed/fields/ecs.yml +++ b/packages/ti_otx/data_stream/pulses_subscribed/fields/ecs.yml @@ -1,3 +1,9 @@ - name: threat.indicator.file.hash.pehash type: keyword description: "The file's pehash, if available." +- name: threat.indicator.first_seen + external: ecs +- name: threat.indicator.last_seen + external: ecs +- name: threat.indicator.modified_at + external: ecs diff --git a/packages/ti_otx/data_stream/pulses_subscribed/sample_event.json b/packages/ti_otx/data_stream/pulses_subscribed/sample_event.json index e96d8cc2c2da..7ec88c438b1e 100644 --- a/packages/ti_otx/data_stream/pulses_subscribed/sample_event.json +++ b/packages/ti_otx/data_stream/pulses_subscribed/sample_event.json @@ -1,24 +1,24 @@ { "@timestamp": "2023-08-08T05:05:15.000Z", "agent": { - "ephemeral_id": "98babf94-9cf4-45af-aef8-2d57d61d9876", - "id": "f29e7d89-991e-4f0a-838f-9c2eb93d876e", + "ephemeral_id": "c12b4f72-265e-41f0-96e0-103c81de7908", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_otx.pulses_subscribed", - "namespace": "ep", + "namespace": "32586", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f29e7d89-991e-4f0a-838f-9c2eb93d876e", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", @@ -26,7 +26,7 @@ "threat" ], "dataset": "ti_otx.pulses_subscribed", - "ingested": "2024-03-08T02:54:50Z", + "ingested": "2024-08-02T06:03:28Z", "kind": "enrichment", "original": "{\"content\":\"\",\"count\":2,\"created\":\"2023-08-08T05:05:15\",\"description\":\"\",\"expiration\":null,\"id\":3454375108,\"indicator\":\"pinup-casino-tr.site\",\"is_active\":1,\"prefetch_pulse_ids\":false,\"pulse_raw\":\"{\\\"adversary\\\":\\\"\\\",\\\"attack_ids\\\":[\\\"T1531\\\",\\\"T1059\\\",\\\"T1566\\\"],\\\"author_name\\\":\\\"SampleUser\\\",\\\"created\\\":\\\"2023-08-22T09:43:18.855000\\\",\\\"description\\\":\\\"\\\",\\\"extract_source\\\":[],\\\"id\\\":\\\"64e38336d783f91d6948a7b1\\\",\\\"industries\\\":[],\\\"malware_families\\\":[\\\"WHIRLPOOL\\\"],\\\"modified\\\":\\\"2023-08-22T09:43:18.855000\\\",\\\"more_indicators\\\":false,\\\"name\\\":\\\"Sample Pulse\\\",\\\"public\\\":1,\\\"references\\\":[\\\"https://www.cisa.gov/news-events/analysis-reports/ar23-230a\\\"],\\\"revision\\\":1,\\\"tags\\\":[\\\"cisa\\\",\\\"backdoor\\\",\\\"whirlpool\\\",\\\"malware\\\"],\\\"targeted_countries\\\":[],\\\"tlp\\\":\\\"white\\\"}\",\"role\":null,\"t\":0,\"t2\":0.0050694942474365234,\"t3\":2.7960586547851562,\"title\":\"\",\"type\":\"domain\"}", "type": [ diff --git a/packages/ti_otx/data_stream/threat/fields/ecs.yml b/packages/ti_otx/data_stream/threat/fields/ecs.yml index 34fc117cd80a..241dca2335e4 100644 --- a/packages/ti_otx/data_stream/threat/fields/ecs.yml +++ b/packages/ti_otx/data_stream/threat/fields/ecs.yml @@ -1,3 +1,9 @@ - name: threat.indicator.file.hash.pehash type: keyword description: "The file's pehash, if available." +- name: threat.indicator.first_seen + external: ecs +- name: threat.indicator.last_seen + external: ecs +- name: threat.indicator.modified_at + external: ecs diff --git a/packages/ti_otx/docs/README.md b/packages/ti_otx/docs/README.md index 31ce471790ac..8abed51a6771 100644 --- a/packages/ti_otx/docs/README.md +++ b/packages/ti_otx/docs/README.md @@ -38,6 +38,9 @@ Retrieves all the related indicators over time, related to your pulse subscripti | threat.feed.dashboard_id | Dashboard ID used for Kibana CTI UI | constant_keyword | | threat.feed.name | Display friendly feed name | constant_keyword | | threat.indicator.file.hash.pehash | The file's pehash, if available. | keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `threat` looks as following: @@ -166,6 +169,9 @@ The following subscriptions are included by this API: | threat.feed.dashboard_id | Dashboard ID used for Kibana CTI UI | constant_keyword | | threat.feed.name | Display friendly feed name | constant_keyword | | threat.indicator.file.hash.pehash | The file's pehash, if available. | keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | An example event for `pulses_subscribed` looks as following: @@ -174,24 +180,24 @@ An example event for `pulses_subscribed` looks as following: { "@timestamp": "2023-08-08T05:05:15.000Z", "agent": { - "ephemeral_id": "98babf94-9cf4-45af-aef8-2d57d61d9876", - "id": "f29e7d89-991e-4f0a-838f-9c2eb93d876e", + "ephemeral_id": "c12b4f72-265e-41f0-96e0-103c81de7908", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.1" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_otx.pulses_subscribed", - "namespace": "ep", + "namespace": "32586", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "f29e7d89-991e-4f0a-838f-9c2eb93d876e", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.1" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", @@ -199,7 +205,7 @@ An example event for `pulses_subscribed` looks as following: "threat" ], "dataset": "ti_otx.pulses_subscribed", - "ingested": "2024-03-08T02:54:50Z", + "ingested": "2024-08-02T06:03:28Z", "kind": "enrichment", "original": "{\"content\":\"\",\"count\":2,\"created\":\"2023-08-08T05:05:15\",\"description\":\"\",\"expiration\":null,\"id\":3454375108,\"indicator\":\"pinup-casino-tr.site\",\"is_active\":1,\"prefetch_pulse_ids\":false,\"pulse_raw\":\"{\\\"adversary\\\":\\\"\\\",\\\"attack_ids\\\":[\\\"T1531\\\",\\\"T1059\\\",\\\"T1566\\\"],\\\"author_name\\\":\\\"SampleUser\\\",\\\"created\\\":\\\"2023-08-22T09:43:18.855000\\\",\\\"description\\\":\\\"\\\",\\\"extract_source\\\":[],\\\"id\\\":\\\"64e38336d783f91d6948a7b1\\\",\\\"industries\\\":[],\\\"malware_families\\\":[\\\"WHIRLPOOL\\\"],\\\"modified\\\":\\\"2023-08-22T09:43:18.855000\\\",\\\"more_indicators\\\":false,\\\"name\\\":\\\"Sample Pulse\\\",\\\"public\\\":1,\\\"references\\\":[\\\"https://www.cisa.gov/news-events/analysis-reports/ar23-230a\\\"],\\\"revision\\\":1,\\\"tags\\\":[\\\"cisa\\\",\\\"backdoor\\\",\\\"whirlpool\\\",\\\"malware\\\"],\\\"targeted_countries\\\":[],\\\"tlp\\\":\\\"white\\\"}\",\"role\":null,\"t\":0,\"t2\":0.0050694942474365234,\"t3\":2.7960586547851562,\"title\":\"\",\"type\":\"domain\"}", "type": [ diff --git a/packages/ti_otx/manifest.yml b/packages/ti_otx/manifest.yml index 29fca1f28937..31def6b73cb9 100644 --- a/packages/ti_otx/manifest.yml +++ b/packages/ti_otx/manifest.yml @@ -1,6 +1,6 @@ name: ti_otx title: AlienVault OTX -version: "1.25.0" +version: "1.25.1" description: Ingest threat intelligence indicators from AlienVault Open Threat Exchange (OTX) with Elastic Agent. type: integration format_version: "3.0.2" diff --git a/packages/ti_rapid7_threat_command/changelog.yml b/packages/ti_rapid7_threat_command/changelog.yml index dcfbb2ef0b6e..5b7f78ab802f 100644 --- a/packages/ti_rapid7_threat_command/changelog.yml +++ b/packages/ti_rapid7_threat_command/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.0.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "2.0.0" changes: - description: Add support for IOC expiration diff --git a/packages/ti_rapid7_threat_command/data_stream/ioc/fields/ecs.yml b/packages/ti_rapid7_threat_command/data_stream/ioc/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_rapid7_threat_command/data_stream/ioc/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_rapid7_threat_command/data_stream/ioc/sample_event.json b/packages/ti_rapid7_threat_command/data_stream/ioc/sample_event.json index 5e95b750cecb..b491e057427d 100644 --- a/packages/ti_rapid7_threat_command/data_stream/ioc/sample_event.json +++ b/packages/ti_rapid7_threat_command/data_stream/ioc/sample_event.json @@ -1,22 +1,22 @@ { "@timestamp": "2022-06-16T10:39:07.851Z", "agent": { - "ephemeral_id": "bc74bf1e-3b49-4a4f-b121-ce54d80ad098", - "id": "34592ccf-10ae-4d24-a28c-97be832bde99", + "ephemeral_id": "f8dfeb31-2b56-4f8e-bb91-d4b94b8086da", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" }, "data_stream": { "dataset": "ti_rapid7_threat_command.ioc", - "namespace": "ep", + "namespace": "98425", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "34592ccf-10ae-4d24-a28c-97be832bde99", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, "version": "8.13.0" }, @@ -25,9 +25,9 @@ "category": [ "threat" ], - "created": "2024-06-26T07:01:52.941Z", + "created": "2024-08-02T06:09:57.917Z", "dataset": "ti_rapid7_threat_command.ioc", - "ingested": "2024-06-26T07:02:02Z", + "ingested": "2024-08-02T06:10:07Z", "kind": "enrichment", "module": "ti_rapid7_threat_command", "original": "{\"firstSeen\":\"2022-05-04T20:11:04.000Z\",\"lastSeen\":\"2022-06-15T20:11:04.000Z\",\"lastUpdateDate\":\"2022-06-16T10:39:07.851Z\",\"relatedCampaigns\":[],\"relatedMalware\":[\"remcos\"],\"relatedThreatActors\":[],\"reportedFeeds\":[{\"confidenceLevel\":2,\"id\":\"5b68306df84f7c8696047fdd\",\"name\":\"Test Feed\"}],\"score\":13.26086956521739,\"severity\":\"Low\",\"status\":\"Active\",\"tags\":[\"Test\"],\"type\":\"IpAddresses\",\"value\":\"89.160.20.112\",\"whitelisted\":false}", diff --git a/packages/ti_rapid7_threat_command/docs/README.md b/packages/ti_rapid7_threat_command/docs/README.md index 0128421f2fe4..25a60f99a853 100644 --- a/packages/ti_rapid7_threat_command/docs/README.md +++ b/packages/ti_rapid7_threat_command/docs/README.md @@ -216,22 +216,22 @@ An example event for `ioc` looks as following: { "@timestamp": "2022-06-16T10:39:07.851Z", "agent": { - "ephemeral_id": "bc74bf1e-3b49-4a4f-b121-ce54d80ad098", - "id": "34592ccf-10ae-4d24-a28c-97be832bde99", + "ephemeral_id": "f8dfeb31-2b56-4f8e-bb91-d4b94b8086da", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" }, "data_stream": { "dataset": "ti_rapid7_threat_command.ioc", - "namespace": "ep", + "namespace": "98425", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "34592ccf-10ae-4d24-a28c-97be832bde99", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, "version": "8.13.0" }, @@ -240,9 +240,9 @@ An example event for `ioc` looks as following: "category": [ "threat" ], - "created": "2024-06-26T07:01:52.941Z", + "created": "2024-08-02T06:09:57.917Z", "dataset": "ti_rapid7_threat_command.ioc", - "ingested": "2024-06-26T07:02:02Z", + "ingested": "2024-08-02T06:10:07Z", "kind": "enrichment", "module": "ti_rapid7_threat_command", "original": "{\"firstSeen\":\"2022-05-04T20:11:04.000Z\",\"lastSeen\":\"2022-06-15T20:11:04.000Z\",\"lastUpdateDate\":\"2022-06-16T10:39:07.851Z\",\"relatedCampaigns\":[],\"relatedMalware\":[\"remcos\"],\"relatedThreatActors\":[],\"reportedFeeds\":[{\"confidenceLevel\":2,\"id\":\"5b68306df84f7c8696047fdd\",\"name\":\"Test Feed\"}],\"score\":13.26086956521739,\"severity\":\"Low\",\"status\":\"Active\",\"tags\":[\"Test\"],\"type\":\"IpAddresses\",\"value\":\"89.160.20.112\",\"whitelisted\":false}", @@ -367,6 +367,9 @@ An example event for `ioc` looks as following: | rapid7.tc.ioc.type | IOC type. | keyword | | rapid7.tc.ioc.value | IOC value. | keyword | | rapid7.tc.ioc.whitelisted | An indicator which states if the IOC was checked and found as whitelisted or not. | keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | ### Alert diff --git a/packages/ti_rapid7_threat_command/manifest.yml b/packages/ti_rapid7_threat_command/manifest.yml index d969ad682afe..7612cb51f074 100644 --- a/packages/ti_rapid7_threat_command/manifest.yml +++ b/packages/ti_rapid7_threat_command/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.2 name: ti_rapid7_threat_command title: Rapid7 Threat Command -version: "2.0.0" +version: "2.0.1" description: Collect threat intelligence from Threat Command API with Elastic Agent. type: integration categories: ["security", "threat_intel"] diff --git a/packages/ti_recordedfuture/changelog.yml b/packages/ti_recordedfuture/changelog.yml index 0758329930c9..e2dfc99ef8cb 100644 --- a/packages/ti_recordedfuture/changelog.yml +++ b/packages/ti_recordedfuture/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.26.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.26.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/ti_recordedfuture/data_stream/threat/fields/ecs.yml b/packages/ti_recordedfuture/data_stream/threat/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_recordedfuture/data_stream/threat/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_recordedfuture/data_stream/threat/sample_event.json b/packages/ti_recordedfuture/data_stream/threat/sample_event.json index f39ff978bb3c..0c05eecf8485 100644 --- a/packages/ti_recordedfuture/data_stream/threat/sample_event.json +++ b/packages/ti_recordedfuture/data_stream/threat/sample_event.json @@ -1,85 +1,109 @@ { - "@timestamp": "2024-05-09T12:24:05.286Z", + "@timestamp": "2024-08-02T06:24:04.201Z", "agent": { - "ephemeral_id": "b0d47395-89bd-40e7-8018-57fdcc0cf1b8", - "id": "013c7177-2e5d-40da-9e17-9ee5d2249880", + "ephemeral_id": "25d7a936-2b7c-4476-9181-82d1296ce9df", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.2" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_recordedfuture.threat", - "namespace": "ep", + "namespace": "67234", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "013c7177-2e5d-40da-9e17-9ee5d2249880", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.2" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", "category": [ "threat" ], + "created": "2024-08-02T06:24:04.201Z", "dataset": "ti_recordedfuture.threat", - "ingested": "2024-05-09T12:24:15Z", + "ingested": "2024-08-02T06:24:16Z", "kind": "enrichment", - "risk_score": 75, - "timezone": "+00:00", + "original": "{\"EvidenceDetails\":\"{\\\"EvidenceDetails\\\": [{\\\"Name\\\": \\\"suspectedCncDnsName\\\", \\\"EvidenceString\\\": \\\"1 sighting on 1 source: ThreatFox Infrastructure Analysis. ThreatFox identified ubykou33.top as possible TA0011 (Command and Control) for CryptBot on December 26, 2023. Most recent link (Dec 26, 2023): https://threatfox.abuse.ch/ioc/1223634\\\", \\\"CriticalityLabel\\\": \\\"Unusual\\\", \\\"MitigationString\\\": \\\"\\\", \\\"Rule\\\": \\\"Historical Suspected C\\\\u0026C DNS Name\\\", \\\"SourcesCount\\\": 1.0, \\\"Sources\\\": [\\\"source:sIoEOQ\\\"], \\\"Timestamp\\\": \\\"2023-12-26T17:06:29.000Z\\\", \\\"SightingsCount\\\": 1.0, \\\"Criticality\\\": 1.0}, {\\\"Name\\\": \\\"malwareSiteDetected\\\", \\\"EvidenceString\\\": \\\"2 sightings on 2 sources: External Sensor Data Analysis, Bitdefender. ubykou33.top is observed to be a malware site domain that navigates to malicious content including executables, drive-by infection sites, malicious scripts, viruses, trojans, or code.\\\", \\\"CriticalityLabel\\\": \\\"Unusual\\\", \\\"MitigationString\\\": \\\"\\\", \\\"Rule\\\": \\\"Historically Detected Malware Operation\\\", \\\"SourcesCount\\\": 2.0, \\\"Sources\\\": [\\\"source:kBB1fk\\\", \\\"source:d3Awkm\\\"], \\\"Timestamp\\\": \\\"2024-01-26T00:00:00.000Z\\\", \\\"SightingsCount\\\": 2.0, \\\"Criticality\\\": 1.0}, {\\\"Name\\\": \\\"malwareSiteSuspected\\\", \\\"EvidenceString\\\": \\\"1 sighting on 1 source: Bitdefender. Detected malicious behavior from an endpoint agent via global telemetry. Last observed on Jan 26, 2024.\\\", \\\"CriticalityLabel\\\": \\\"Unusual\\\", \\\"MitigationString\\\": \\\"\\\", \\\"Rule\\\": \\\"Historically Suspected Malware Operation\\\", \\\"SourcesCount\\\": 1.0, \\\"Sources\\\": [\\\"source:d3Awkm\\\"], \\\"Timestamp\\\": \\\"2024-01-26T00:00:00.000Z\\\", \\\"SightingsCount\\\": 1.0, \\\"Criticality\\\": 1.0}, {\\\"Name\\\": \\\"recentMalwareSiteDetected\\\", \\\"EvidenceString\\\": \\\"1 sighting on 1 source: External Sensor Data Analysis. ubykou33.top is observed to be a malware site domain that navigates to malicious content including executables, drive-by infection sites, malicious scripts, viruses, trojans, or code.\\\", \\\"CriticalityLabel\\\": \\\"Malicious\\\", \\\"MitigationString\\\": \\\"\\\", \\\"Rule\\\": \\\"Recently Detected Malware Operation\\\", \\\"SourcesCount\\\": 1.0, \\\"Sources\\\": [\\\"source:kBB1fk\\\"], \\\"Timestamp\\\": \\\"2024-05-08T23:11:43.601Z\\\", \\\"SightingsCount\\\": 1.0, \\\"Criticality\\\": 3.0}]}\",\"Name\":\"ubykou33.top\",\"Risk\":\"67\",\"RiskString\":\"4/52\"}", + "risk_score": 67, "type": [ "indicator" ] }, "input": { - "type": "log" - }, - "log": { - "file": { - "path": "/tmp/service_logs/rf_file_default.csv" - }, - "offset": 57 + "type": "httpjson" }, "recordedfuture": { "evidence_details": [ { - "criticality": 2, - "criticality_label": "Suspicious", - "evidence_string": "2 sightings on 1 source: PolySwarm. Most recent link (Mar 23, 2024): https://polyswarm.network/scan/results/file/63212aa8c94098a844945ed1611389b2e1c9dc3906a5ba9d7d0d320344213f4f", + "criticality": 1, + "criticality_label": "Unusual", + "evidence_string": "1 sighting on 1 source: ThreatFox Infrastructure Analysis. ThreatFox identified ubykou33.top as possible TA0011 (Command and Control) for CryptBot on December 26, 2023. Most recent link (Dec 26, 2023): https://threatfox.abuse.ch/ioc/1223634", + "mitigation_string": "", + "name": "suspectedCncDnsName", + "rule": "Historical Suspected C&C DNS Name", + "sightings_count": 1, + "sources": [ + "source:sIoEOQ" + ], + "sources_count": 1, + "timestamp": "2023-12-26T17:06:29.000Z" + }, + { + "criticality": 1, + "criticality_label": "Unusual", + "evidence_string": "2 sightings on 2 sources: External Sensor Data Analysis, Bitdefender. ubykou33.top is observed to be a malware site domain that navigates to malicious content including executables, drive-by infection sites, malicious scripts, viruses, trojans, or code.", "mitigation_string": "", - "name": "linkedToMalware", - "rule": "Linked to Malware", + "name": "malwareSiteDetected", + "rule": "Historically Detected Malware Operation", "sightings_count": 2, "sources": [ - "source:doLlw5" + "source:kBB1fk", + "source:d3Awkm" + ], + "sources_count": 2, + "timestamp": "2024-01-26T00:00:00.000Z" + }, + { + "criticality": 1, + "criticality_label": "Unusual", + "evidence_string": "1 sighting on 1 source: Bitdefender. Detected malicious behavior from an endpoint agent via global telemetry. Last observed on Jan 26, 2024.", + "mitigation_string": "", + "name": "malwareSiteSuspected", + "rule": "Historically Suspected Malware Operation", + "sightings_count": 1, + "sources": [ + "source:d3Awkm" ], "sources_count": 1, - "timestamp": "2024-03-23T17:10:20.642Z" + "timestamp": "2024-01-26T00:00:00.000Z" }, { "criticality": 3, "criticality_label": "Malicious", - "evidence_string": "3 sightings on 3 sources: Polyswarm Sandbox Analysis, Recorded Future Triage Malware Analysis, PolySwarm. Most recent link (Mar 23, 2024): https://polyswarm.network/scan/results/file/63212aa8c94098a844945ed1611389b2e1c9dc3906a5ba9d7d0d320344213f4f", + "evidence_string": "1 sighting on 1 source: External Sensor Data Analysis. ubykou33.top is observed to be a malware site domain that navigates to malicious content including executables, drive-by infection sites, malicious scripts, viruses, trojans, or code.", "mitigation_string": "", - "name": "positiveMalwareVerdict", - "rule": "Positive Malware Verdict", - "sightings_count": 3, + "name": "recentMalwareSiteDetected", + "rule": "Recently Detected Malware Operation", + "sightings_count": 1, "sources": [ - "source:hzRhwZ", - "source:ndy5_2", - "source:doLlw5" + "source:kBB1fk" ], - "sources_count": 3, - "timestamp": "2024-03-23T16:36:02.000Z" + "sources_count": 1, + "timestamp": "2024-05-08T23:11:43.601Z" } ], - "name": "63212aa8c94098a844945ed1611389b2e1c9dc3906a5ba9d7d0d320344213f4f", - "risk_string": "2/17" + "list": "test", + "name": "ubykou33.top", + "risk_string": "4/52" }, "tags": [ + "preserve_original_event", "forwarded", "recordedfuture" ], @@ -88,19 +112,17 @@ "name": "Recorded Future" }, "indicator": { - "file": { - "hash": { - "sha256": "63212aa8c94098a844945ed1611389b2e1c9dc3906a5ba9d7d0d320344213f4f" - } - }, "provider": [ - "PolySwarm", - "Polyswarm Sandbox Analysis", - "Recorded Future Triage Malware Analysis" + "ThreatFox Infrastructure Analysis", + "External Sensor Data Analysis", + "Bitdefender" ], - "scanner_stats": 4, + "scanner_stats": 5, "sightings": 5, - "type": "file" + "type": "domain-name", + "url": { + "domain": "ubykou33.top" + } } } } \ No newline at end of file diff --git a/packages/ti_recordedfuture/docs/README.md b/packages/ti_recordedfuture/docs/README.md index d2b9b5769bba..752d82a9d4d4 100644 --- a/packages/ti_recordedfuture/docs/README.md +++ b/packages/ti_recordedfuture/docs/README.md @@ -23,87 +23,111 @@ An example event for `threat` looks as following: ```json { - "@timestamp": "2024-05-09T12:24:05.286Z", + "@timestamp": "2024-08-02T06:24:04.201Z", "agent": { - "ephemeral_id": "b0d47395-89bd-40e7-8018-57fdcc0cf1b8", - "id": "013c7177-2e5d-40da-9e17-9ee5d2249880", + "ephemeral_id": "25d7a936-2b7c-4476-9181-82d1296ce9df", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.12.2" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_recordedfuture.threat", - "namespace": "ep", + "namespace": "67234", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "013c7177-2e5d-40da-9e17-9ee5d2249880", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.12.2" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", "category": [ "threat" ], + "created": "2024-08-02T06:24:04.201Z", "dataset": "ti_recordedfuture.threat", - "ingested": "2024-05-09T12:24:15Z", + "ingested": "2024-08-02T06:24:16Z", "kind": "enrichment", - "risk_score": 75, - "timezone": "+00:00", + "original": "{\"EvidenceDetails\":\"{\\\"EvidenceDetails\\\": [{\\\"Name\\\": \\\"suspectedCncDnsName\\\", \\\"EvidenceString\\\": \\\"1 sighting on 1 source: ThreatFox Infrastructure Analysis. ThreatFox identified ubykou33.top as possible TA0011 (Command and Control) for CryptBot on December 26, 2023. Most recent link (Dec 26, 2023): https://threatfox.abuse.ch/ioc/1223634\\\", \\\"CriticalityLabel\\\": \\\"Unusual\\\", \\\"MitigationString\\\": \\\"\\\", \\\"Rule\\\": \\\"Historical Suspected C\\\\u0026C DNS Name\\\", \\\"SourcesCount\\\": 1.0, \\\"Sources\\\": [\\\"source:sIoEOQ\\\"], \\\"Timestamp\\\": \\\"2023-12-26T17:06:29.000Z\\\", \\\"SightingsCount\\\": 1.0, \\\"Criticality\\\": 1.0}, {\\\"Name\\\": \\\"malwareSiteDetected\\\", \\\"EvidenceString\\\": \\\"2 sightings on 2 sources: External Sensor Data Analysis, Bitdefender. ubykou33.top is observed to be a malware site domain that navigates to malicious content including executables, drive-by infection sites, malicious scripts, viruses, trojans, or code.\\\", \\\"CriticalityLabel\\\": \\\"Unusual\\\", \\\"MitigationString\\\": \\\"\\\", \\\"Rule\\\": \\\"Historically Detected Malware Operation\\\", \\\"SourcesCount\\\": 2.0, \\\"Sources\\\": [\\\"source:kBB1fk\\\", \\\"source:d3Awkm\\\"], \\\"Timestamp\\\": \\\"2024-01-26T00:00:00.000Z\\\", \\\"SightingsCount\\\": 2.0, \\\"Criticality\\\": 1.0}, {\\\"Name\\\": \\\"malwareSiteSuspected\\\", \\\"EvidenceString\\\": \\\"1 sighting on 1 source: Bitdefender. Detected malicious behavior from an endpoint agent via global telemetry. Last observed on Jan 26, 2024.\\\", \\\"CriticalityLabel\\\": \\\"Unusual\\\", \\\"MitigationString\\\": \\\"\\\", \\\"Rule\\\": \\\"Historically Suspected Malware Operation\\\", \\\"SourcesCount\\\": 1.0, \\\"Sources\\\": [\\\"source:d3Awkm\\\"], \\\"Timestamp\\\": \\\"2024-01-26T00:00:00.000Z\\\", \\\"SightingsCount\\\": 1.0, \\\"Criticality\\\": 1.0}, {\\\"Name\\\": \\\"recentMalwareSiteDetected\\\", \\\"EvidenceString\\\": \\\"1 sighting on 1 source: External Sensor Data Analysis. ubykou33.top is observed to be a malware site domain that navigates to malicious content including executables, drive-by infection sites, malicious scripts, viruses, trojans, or code.\\\", \\\"CriticalityLabel\\\": \\\"Malicious\\\", \\\"MitigationString\\\": \\\"\\\", \\\"Rule\\\": \\\"Recently Detected Malware Operation\\\", \\\"SourcesCount\\\": 1.0, \\\"Sources\\\": [\\\"source:kBB1fk\\\"], \\\"Timestamp\\\": \\\"2024-05-08T23:11:43.601Z\\\", \\\"SightingsCount\\\": 1.0, \\\"Criticality\\\": 3.0}]}\",\"Name\":\"ubykou33.top\",\"Risk\":\"67\",\"RiskString\":\"4/52\"}", + "risk_score": 67, "type": [ "indicator" ] }, "input": { - "type": "log" - }, - "log": { - "file": { - "path": "/tmp/service_logs/rf_file_default.csv" - }, - "offset": 57 + "type": "httpjson" }, "recordedfuture": { "evidence_details": [ { - "criticality": 2, - "criticality_label": "Suspicious", - "evidence_string": "2 sightings on 1 source: PolySwarm. Most recent link (Mar 23, 2024): https://polyswarm.network/scan/results/file/63212aa8c94098a844945ed1611389b2e1c9dc3906a5ba9d7d0d320344213f4f", + "criticality": 1, + "criticality_label": "Unusual", + "evidence_string": "1 sighting on 1 source: ThreatFox Infrastructure Analysis. ThreatFox identified ubykou33.top as possible TA0011 (Command and Control) for CryptBot on December 26, 2023. Most recent link (Dec 26, 2023): https://threatfox.abuse.ch/ioc/1223634", + "mitigation_string": "", + "name": "suspectedCncDnsName", + "rule": "Historical Suspected C&C DNS Name", + "sightings_count": 1, + "sources": [ + "source:sIoEOQ" + ], + "sources_count": 1, + "timestamp": "2023-12-26T17:06:29.000Z" + }, + { + "criticality": 1, + "criticality_label": "Unusual", + "evidence_string": "2 sightings on 2 sources: External Sensor Data Analysis, Bitdefender. ubykou33.top is observed to be a malware site domain that navigates to malicious content including executables, drive-by infection sites, malicious scripts, viruses, trojans, or code.", "mitigation_string": "", - "name": "linkedToMalware", - "rule": "Linked to Malware", + "name": "malwareSiteDetected", + "rule": "Historically Detected Malware Operation", "sightings_count": 2, "sources": [ - "source:doLlw5" + "source:kBB1fk", + "source:d3Awkm" + ], + "sources_count": 2, + "timestamp": "2024-01-26T00:00:00.000Z" + }, + { + "criticality": 1, + "criticality_label": "Unusual", + "evidence_string": "1 sighting on 1 source: Bitdefender. Detected malicious behavior from an endpoint agent via global telemetry. Last observed on Jan 26, 2024.", + "mitigation_string": "", + "name": "malwareSiteSuspected", + "rule": "Historically Suspected Malware Operation", + "sightings_count": 1, + "sources": [ + "source:d3Awkm" ], "sources_count": 1, - "timestamp": "2024-03-23T17:10:20.642Z" + "timestamp": "2024-01-26T00:00:00.000Z" }, { "criticality": 3, "criticality_label": "Malicious", - "evidence_string": "3 sightings on 3 sources: Polyswarm Sandbox Analysis, Recorded Future Triage Malware Analysis, PolySwarm. Most recent link (Mar 23, 2024): https://polyswarm.network/scan/results/file/63212aa8c94098a844945ed1611389b2e1c9dc3906a5ba9d7d0d320344213f4f", + "evidence_string": "1 sighting on 1 source: External Sensor Data Analysis. ubykou33.top is observed to be a malware site domain that navigates to malicious content including executables, drive-by infection sites, malicious scripts, viruses, trojans, or code.", "mitigation_string": "", - "name": "positiveMalwareVerdict", - "rule": "Positive Malware Verdict", - "sightings_count": 3, + "name": "recentMalwareSiteDetected", + "rule": "Recently Detected Malware Operation", + "sightings_count": 1, "sources": [ - "source:hzRhwZ", - "source:ndy5_2", - "source:doLlw5" + "source:kBB1fk" ], - "sources_count": 3, - "timestamp": "2024-03-23T16:36:02.000Z" + "sources_count": 1, + "timestamp": "2024-05-08T23:11:43.601Z" } ], - "name": "63212aa8c94098a844945ed1611389b2e1c9dc3906a5ba9d7d0d320344213f4f", - "risk_string": "2/17" + "list": "test", + "name": "ubykou33.top", + "risk_string": "4/52" }, "tags": [ + "preserve_original_event", "forwarded", "recordedfuture" ], @@ -112,19 +136,17 @@ An example event for `threat` looks as following: "name": "Recorded Future" }, "indicator": { - "file": { - "hash": { - "sha256": "63212aa8c94098a844945ed1611389b2e1c9dc3906a5ba9d7d0d320344213f4f" - } - }, "provider": [ - "PolySwarm", - "Polyswarm Sandbox Analysis", - "Recorded Future Triage Malware Analysis" + "ThreatFox Infrastructure Analysis", + "External Sensor Data Analysis", + "Bitdefender" ], - "scanner_stats": 4, + "scanner_stats": 5, "sightings": 5, - "type": "file" + "type": "domain-name", + "url": { + "domain": "ubykou33.top" + } } } } @@ -162,4 +184,7 @@ An example event for `threat` looks as following: | recordedfuture.name | Indicator value. | keyword | | recordedfuture.risk_string | Details of risk rules observed. | keyword | | threat.feed.name | Display friendly feed name | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | diff --git a/packages/ti_recordedfuture/manifest.yml b/packages/ti_recordedfuture/manifest.yml index 1224f15c1452..bfe0757fbc4c 100644 --- a/packages/ti_recordedfuture/manifest.yml +++ b/packages/ti_recordedfuture/manifest.yml @@ -1,6 +1,6 @@ name: ti_recordedfuture title: Recorded Future -version: "1.26.0" +version: "1.26.1" description: Ingest threat intelligence indicators from Recorded Future risk lists with Elastic Agent. type: integration format_version: 3.0.2 diff --git a/packages/ti_threatconnect/changelog.yml b/packages/ti_threatconnect/changelog.yml index a15a04a87c0d..a640c890cce7 100644 --- a/packages/ti_threatconnect/changelog.yml +++ b/packages/ti_threatconnect/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.2.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.2.0" changes: - description: Improve error reporting for API request failures. diff --git a/packages/ti_threatconnect/data_stream/indicator/fields/ecs.yml b/packages/ti_threatconnect/data_stream/indicator/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_threatconnect/data_stream/indicator/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_threatconnect/data_stream/indicator/sample_event.json b/packages/ti_threatconnect/data_stream/indicator/sample_event.json index 1e149b5d8f4f..56308a85c478 100644 --- a/packages/ti_threatconnect/data_stream/indicator/sample_event.json +++ b/packages/ti_threatconnect/data_stream/indicator/sample_event.json @@ -1,22 +1,22 @@ { "@timestamp": "2023-12-05T06:38:53.000Z", "agent": { - "ephemeral_id": "43b1a042-a9b3-4d01-b836-a9349883688b", - "id": "c3650180-e3d1-4dad-9094-89c988e721d7", + "ephemeral_id": "bfc8c3c8-d6ef-467f-a80c-6c75059c9a7c", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" }, "data_stream": { "dataset": "ti_threatconnect.indicator", - "namespace": "ep", + "namespace": "53159", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "c3650180-e3d1-4dad-9094-89c988e721d7", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, "version": "8.13.0" }, @@ -27,7 +27,7 @@ ], "dataset": "ti_threatconnect.indicator", "id": "test.user@elastic.co", - "ingested": "2024-05-16T22:35:04Z", + "ingested": "2024-08-02T06:30:51Z", "kind": "enrichment", "original": "{\"active\":true,\"activeLocked\":false,\"address\":\"test.user@elastic.co\",\"associatedGroups\":{\"data\":[{\"createdBy\":{\"firstName\":\"test\",\"id\":69,\"lastName\":\"user\",\"owner\":\"Elastic\",\"pseudonym\":\"testW\",\"userName\":\"test.user@elastic.co\"},\"dateAdded\":\"2023-12-05T06:38:33Z\",\"downVoteCount\":\"0\",\"id\":609427,\"lastModified\":\"2023-12-05T06:43:21Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/vulnerability/vulnerability.xhtml?vulnerability=609427\",\"name\":\"Test2 \",\"ownerId\":51,\"ownerName\":\"Elastic\",\"type\":\"Vulnerability\",\"upVoteCount\":\"0\",\"webLink\":\"https://app.threatconnect.com/#/details/groups/609427/overview\"},{\"createdBy\":{\"firstName\":\"test\",\"id\":69,\"lastName\":\"user\",\"owner\":\"Elastic\",\"pseudonym\":\"testW\",\"userName\":\"test.user@elastic.co\"},\"dateAdded\":\"2023-12-04T07:18:52Z\",\"documentDateAdded\":\"2023-12-04T07:18:53Z\",\"documentType\":\"PDF\",\"downVoteCount\":\"0\",\"fileName\":\"testthreatgroup.pdf\",\"fileSize\":24467,\"generatedReport\":true,\"id\":601237,\"lastModified\":\"2023-12-05T06:38:46Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/report/report.xhtml?report=601237\",\"name\":\"TestThreatGroup\",\"ownerId\":51,\"ownerName\":\"Elastic\",\"status\":\"Success\",\"type\":\"Report\",\"upVoteCount\":\"0\",\"webLink\":\"https://app.threatconnect.com/#/details/groups/601237/overview\"}]},\"associatedIndicators\":{\"data\":[{\"active\":true,\"activeLocked\":false,\"address\":\"testing@poverts.com\",\"confidence\":61,\"dateAdded\":\"2023-08-25T12:57:24Z\",\"id\":891599,\"lastModified\":\"2023-12-05T06:50:06Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/indicators/details/emailaddress.xhtml?emailaddress=testing%40poverts.com\\u0026owner=Elastic\",\"ownerId\":51,\"ownerName\":\"Elastic\",\"privateFlag\":false,\"rating\":3,\"summary\":\"testing@poverts.com\",\"type\":\"EmailAddress\",\"webLink\":\"https://app.threatconnect.com/#/details/indicators/891599/overview\"},{\"active\":true,\"activeLocked\":false,\"dateAdded\":\"2023-08-24T06:28:17Z\",\"id\":738667,\"lastModified\":\"2023-12-05T06:47:59Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/indicators/details/url.xhtml?orgid=738667\\u0026owner=Elastic\",\"ownerId\":51,\"ownerName\":\"Elastic\",\"privateFlag\":false,\"summary\":\"http://www.testingmcafeesites.com/testcat_pc.html\",\"text\":\"http://www.testingmcafeesites.com/testcat_pc.html\",\"type\":\"URL\",\"webLink\":\"https://app.threatconnect.com/#/details/indicators/738667/overview\"}]},\"attributes\":{},\"dateAdded\":\"2023-08-24T06:19:58Z\",\"id\":736758,\"lastModified\":\"2023-12-05T06:38:53Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/indicators/details/emailaddress.xhtml?emailaddress=test.user%40elastic.co\\u0026owner=Elastic\",\"ownerId\":51,\"ownerName\":\"Elastic\",\"privateFlag\":false,\"securityLabels\":{\"data\":[{\"color\":\"FFC000\",\"dateAdded\":\"2016-08-31T00:00:00Z\",\"description\":\"This security label is used for information that requires support to be effectively acted upon, yet carries risks to privacy, reputation, or operations if shared outside of the organizations involved. Information with this label can be shared with members of an organization and its clients.\",\"id\":3,\"name\":\"TLP:AMBER\",\"owner\":\"System\"}]},\"summary\":\"test.user@elastic.co\",\"tags\":{\"data\":[{\"description\":\"Adversaries may steal monetary resources from targets through extortion, social engineering, technical theft, or other methods aimed at their own financial gain at the expense of the availability of these resources for victims. Financial theft is the ultimate objective of several popular campaign types including extortion by ransomware,(Citation: FBI-ransomware) business email compromise (BEC) and fraud,(Citation: FBI-BEC) \\\"pig butchering,\\\"(Citation: wired-pig butchering) bank hacking,(Citation: DOJ-DPRK Heist) and exploiting cryptocurrency networks.(Citation: BBC-Ronin) \\n\\nAdversaries may [Compromise Accounts](https://attack.mitre.org/techniques/T1586) to conduct unauthorized transfers of funds.(Citation: Internet crime report 2022) In the case of business email compromise or email fraud, an adversary may utilize [Impersonation](https://attack.mitre.org/techniques/T1656) of a trusted entity. Once the social engineering is successful, victims can be deceived into sending money to financial accounts controlled by an adversary.(Citation: FBI-BEC) This creates the potential for multiple victims (i.e., compromised accounts as well as the ultimate monetary loss) in incidents involving financial theft.(Citation: VEC)\\n\\nExtortion by ransomware may occur, for example, when an adversary demands payment from a victim after [Data Encrypted for Impact](https://attack.mitre.org/techniques/T1486) (Citation: NYT-Colonial) and [Exfiltration](https://attack.mitre.org/tactics/TA0010) of data, followed by threatening public exposure unless payment is made to the adversary.(Citation: Mandiant-leaks)\\n\\nDue to the potentially immense business impact of financial theft, an adversary may abuse the possibility of financial theft and seeking monetary gain to divert attention from their true goals such as [Data Destruction](https://attack.mitre.org/techniques/T1485) and business disruption.(Citation: AP-NotPetya)\",\"id\":463701,\"lastUsed\":\"2023-12-04T06:44:44Z\",\"name\":\"Financial Theft\",\"platforms\":{\"count\":6,\"data\":[\"Linux\",\"macOS\",\"Windows\",\"Office 365\",\"SaaS\",\"Google Workspace\"]},\"techniqueId\":\"T1657\"}]},\"threatAssessConfidence\":0,\"threatAssessRating\":0,\"threatAssessScore\":281,\"threatAssessScoreFalsePositive\":0,\"threatAssessScoreObserved\":0,\"type\":\"EmailAddress\",\"webLink\":\"https://app.threatconnect.com/#/details/indicators/736758/overview\"}", "type": [ diff --git a/packages/ti_threatconnect/docs/README.md b/packages/ti_threatconnect/docs/README.md index 427b014914d4..5a7259da4124 100644 --- a/packages/ti_threatconnect/docs/README.md +++ b/packages/ti_threatconnect/docs/README.md @@ -89,22 +89,22 @@ An example event for `indicator` looks as following: { "@timestamp": "2023-12-05T06:38:53.000Z", "agent": { - "ephemeral_id": "43b1a042-a9b3-4d01-b836-a9349883688b", - "id": "c3650180-e3d1-4dad-9094-89c988e721d7", + "ephemeral_id": "bfc8c3c8-d6ef-467f-a80c-6c75059c9a7c", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" }, "data_stream": { "dataset": "ti_threatconnect.indicator", - "namespace": "ep", + "namespace": "53159", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "c3650180-e3d1-4dad-9094-89c988e721d7", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, "version": "8.13.0" }, @@ -115,7 +115,7 @@ An example event for `indicator` looks as following: ], "dataset": "ti_threatconnect.indicator", "id": "test.user@elastic.co", - "ingested": "2024-05-16T22:35:04Z", + "ingested": "2024-08-02T06:30:51Z", "kind": "enrichment", "original": "{\"active\":true,\"activeLocked\":false,\"address\":\"test.user@elastic.co\",\"associatedGroups\":{\"data\":[{\"createdBy\":{\"firstName\":\"test\",\"id\":69,\"lastName\":\"user\",\"owner\":\"Elastic\",\"pseudonym\":\"testW\",\"userName\":\"test.user@elastic.co\"},\"dateAdded\":\"2023-12-05T06:38:33Z\",\"downVoteCount\":\"0\",\"id\":609427,\"lastModified\":\"2023-12-05T06:43:21Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/vulnerability/vulnerability.xhtml?vulnerability=609427\",\"name\":\"Test2 \",\"ownerId\":51,\"ownerName\":\"Elastic\",\"type\":\"Vulnerability\",\"upVoteCount\":\"0\",\"webLink\":\"https://app.threatconnect.com/#/details/groups/609427/overview\"},{\"createdBy\":{\"firstName\":\"test\",\"id\":69,\"lastName\":\"user\",\"owner\":\"Elastic\",\"pseudonym\":\"testW\",\"userName\":\"test.user@elastic.co\"},\"dateAdded\":\"2023-12-04T07:18:52Z\",\"documentDateAdded\":\"2023-12-04T07:18:53Z\",\"documentType\":\"PDF\",\"downVoteCount\":\"0\",\"fileName\":\"testthreatgroup.pdf\",\"fileSize\":24467,\"generatedReport\":true,\"id\":601237,\"lastModified\":\"2023-12-05T06:38:46Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/report/report.xhtml?report=601237\",\"name\":\"TestThreatGroup\",\"ownerId\":51,\"ownerName\":\"Elastic\",\"status\":\"Success\",\"type\":\"Report\",\"upVoteCount\":\"0\",\"webLink\":\"https://app.threatconnect.com/#/details/groups/601237/overview\"}]},\"associatedIndicators\":{\"data\":[{\"active\":true,\"activeLocked\":false,\"address\":\"testing@poverts.com\",\"confidence\":61,\"dateAdded\":\"2023-08-25T12:57:24Z\",\"id\":891599,\"lastModified\":\"2023-12-05T06:50:06Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/indicators/details/emailaddress.xhtml?emailaddress=testing%40poverts.com\\u0026owner=Elastic\",\"ownerId\":51,\"ownerName\":\"Elastic\",\"privateFlag\":false,\"rating\":3,\"summary\":\"testing@poverts.com\",\"type\":\"EmailAddress\",\"webLink\":\"https://app.threatconnect.com/#/details/indicators/891599/overview\"},{\"active\":true,\"activeLocked\":false,\"dateAdded\":\"2023-08-24T06:28:17Z\",\"id\":738667,\"lastModified\":\"2023-12-05T06:47:59Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/indicators/details/url.xhtml?orgid=738667\\u0026owner=Elastic\",\"ownerId\":51,\"ownerName\":\"Elastic\",\"privateFlag\":false,\"summary\":\"http://www.testingmcafeesites.com/testcat_pc.html\",\"text\":\"http://www.testingmcafeesites.com/testcat_pc.html\",\"type\":\"URL\",\"webLink\":\"https://app.threatconnect.com/#/details/indicators/738667/overview\"}]},\"attributes\":{},\"dateAdded\":\"2023-08-24T06:19:58Z\",\"id\":736758,\"lastModified\":\"2023-12-05T06:38:53Z\",\"legacyLink\":\"https://app.threatconnect.com/auth/indicators/details/emailaddress.xhtml?emailaddress=test.user%40elastic.co\\u0026owner=Elastic\",\"ownerId\":51,\"ownerName\":\"Elastic\",\"privateFlag\":false,\"securityLabels\":{\"data\":[{\"color\":\"FFC000\",\"dateAdded\":\"2016-08-31T00:00:00Z\",\"description\":\"This security label is used for information that requires support to be effectively acted upon, yet carries risks to privacy, reputation, or operations if shared outside of the organizations involved. Information with this label can be shared with members of an organization and its clients.\",\"id\":3,\"name\":\"TLP:AMBER\",\"owner\":\"System\"}]},\"summary\":\"test.user@elastic.co\",\"tags\":{\"data\":[{\"description\":\"Adversaries may steal monetary resources from targets through extortion, social engineering, technical theft, or other methods aimed at their own financial gain at the expense of the availability of these resources for victims. Financial theft is the ultimate objective of several popular campaign types including extortion by ransomware,(Citation: FBI-ransomware) business email compromise (BEC) and fraud,(Citation: FBI-BEC) \\\"pig butchering,\\\"(Citation: wired-pig butchering) bank hacking,(Citation: DOJ-DPRK Heist) and exploiting cryptocurrency networks.(Citation: BBC-Ronin) \\n\\nAdversaries may [Compromise Accounts](https://attack.mitre.org/techniques/T1586) to conduct unauthorized transfers of funds.(Citation: Internet crime report 2022) In the case of business email compromise or email fraud, an adversary may utilize [Impersonation](https://attack.mitre.org/techniques/T1656) of a trusted entity. Once the social engineering is successful, victims can be deceived into sending money to financial accounts controlled by an adversary.(Citation: FBI-BEC) This creates the potential for multiple victims (i.e., compromised accounts as well as the ultimate monetary loss) in incidents involving financial theft.(Citation: VEC)\\n\\nExtortion by ransomware may occur, for example, when an adversary demands payment from a victim after [Data Encrypted for Impact](https://attack.mitre.org/techniques/T1486) (Citation: NYT-Colonial) and [Exfiltration](https://attack.mitre.org/tactics/TA0010) of data, followed by threatening public exposure unless payment is made to the adversary.(Citation: Mandiant-leaks)\\n\\nDue to the potentially immense business impact of financial theft, an adversary may abuse the possibility of financial theft and seeking monetary gain to divert attention from their true goals such as [Data Destruction](https://attack.mitre.org/techniques/T1485) and business disruption.(Citation: AP-NotPetya)\",\"id\":463701,\"lastUsed\":\"2023-12-04T06:44:44Z\",\"name\":\"Financial Theft\",\"platforms\":{\"count\":6,\"data\":[\"Linux\",\"macOS\",\"Windows\",\"Office 365\",\"SaaS\",\"Google Workspace\"]},\"techniqueId\":\"T1657\"}]},\"threatAssessConfidence\":0,\"threatAssessRating\":0,\"threatAssessScore\":281,\"threatAssessScoreFalsePositive\":0,\"threatAssessScoreObserved\":0,\"type\":\"EmailAddress\",\"webLink\":\"https://app.threatconnect.com/#/details/indicators/736758/overview\"}", "type": [ @@ -350,6 +350,9 @@ An example event for `indicator` looks as following: | labels.is_ioc_transform_source | Field indicating if its the transform source for supporting IOC expiration. This field is dropped from destination indices to facilitate easier filtering of indicators. | constant_keyword | | log.offset | Log offset. | long | | threat.feed.name | Display friendly feed name. | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | | threat_connect.indicator.active.locked | Indicates whether the active status is locked. | boolean | | threat_connect.indicator.active.value | Indicates whether the indicator is active. | boolean | | threat_connect.indicator.address | The email address associated with the Email Address Indicator. | keyword | diff --git a/packages/ti_threatconnect/manifest.yml b/packages/ti_threatconnect/manifest.yml index 78e06447a56e..1c53fe77640e 100644 --- a/packages/ti_threatconnect/manifest.yml +++ b/packages/ti_threatconnect/manifest.yml @@ -2,7 +2,7 @@ format_version: 3.0.3 name: ti_threatconnect title: ThreatConnect -version: "1.2.0" +version: "1.2.1" description: Collects Indicators from ThreatConnect using the Elastic Agent and saves them as logs inside Elastic type: integration categories: diff --git a/packages/ti_threatq/changelog.yml b/packages/ti_threatq/changelog.yml index c2553083e488..3bd585d79e82 100644 --- a/packages/ti_threatq/changelog.yml +++ b/packages/ti_threatq/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.28.1" + changes: + - description: Fix ECS date mapping on threat fields. + type: bugfix + link: https://github.com/elastic/integrations/pull/10674 - version: "1.28.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/ti_threatq/data_stream/threat/fields/ecs.yml b/packages/ti_threatq/data_stream/threat/fields/ecs.yml new file mode 100644 index 000000000000..e3ba6a4be1b8 --- /dev/null +++ b/packages/ti_threatq/data_stream/threat/fields/ecs.yml @@ -0,0 +1,6 @@ +- external: ecs + name: threat.indicator.first_seen +- external: ecs + name: threat.indicator.last_seen +- external: ecs + name: threat.indicator.modified_at diff --git a/packages/ti_threatq/data_stream/threat/sample_event.json b/packages/ti_threatq/data_stream/threat/sample_event.json index 3b393b34b8df..50bac054b361 100644 --- a/packages/ti_threatq/data_stream/threat/sample_event.json +++ b/packages/ti_threatq/data_stream/threat/sample_event.json @@ -1,33 +1,33 @@ { "@timestamp": "2019-11-15T00:00:02.000Z", "agent": { - "ephemeral_id": "b61f9d9a-97f7-4d8a-9ec1-535a1ca13e89", - "id": "8130bdff-3530-4540-8c03-ba091c47a24f", + "ephemeral_id": "9f1b0b7f-5be0-463d-9551-3d66aab12b6f", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.11.0" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_threatq.threat", - "namespace": "ep", + "namespace": "94389", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "8130bdff-3530-4540-8c03-ba091c47a24f", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.11.0" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", "category": [ "threat" ], - "created": "2023-12-22T11:40:37.696Z", + "created": "2024-08-02T06:46:26.556Z", "dataset": "ti_threatq.threat", - "ingested": "2023-12-22T11:40:38Z", + "ingested": "2024-08-02T06:46:36Z", "kind": "enrichment", "original": "{\"adversaries\":[],\"attributes\":[{\"attribute_id\":3,\"created_at\":\"2020-09-11 14:35:53\",\"id\":1877,\"indicator_id\":336,\"name\":\"Description\",\"touched_at\":\"2020-10-15 14:36:00\",\"updated_at\":\"2020-10-15 14:36:00\",\"value\":\"Malicious Host\"},{\"attribute_id\":4,\"created_at\":\"2020-09-11 14:35:53\",\"id\":1878,\"indicator_id\":336,\"name\":\"Country\",\"touched_at\":\"2020-10-15 14:36:00\",\"updated_at\":\"2020-10-15 14:36:00\",\"value\":\"MP\"}],\"class\":\"network\",\"created_at\":\"2020-09-11 14:35:51\",\"expires_calculated_at\":\"2020-10-15 14:40:03\",\"hash\":\"1ece659dcec98b1e1141160b55655c96\",\"id\":336,\"published_at\":\"2020-09-11 14:35:51\",\"score\":4,\"sources\":[{\"created_at\":\"2020-09-11 14:35:53\",\"creator_source_id\":12,\"id\":336,\"indicator_id\":336,\"indicator_status_id\":2,\"indicator_type_id\":15,\"name\":\"AlienVault OTX\",\"published_at\":\"2020-09-11 14:35:53\",\"reference_id\":1,\"source_expire_days\":\"30\",\"source_id\":12,\"source_score\":1,\"source_type\":\"connectors\",\"updated_at\":\"2020-10-15 14:36:00\"}],\"status\":{\"description\":\"Poses a threat\",\"id\":2,\"name\":\"Active\"},\"status_id\":2,\"touched_at\":\"2021-06-07 19:47:27\",\"type\":{\"class\":\"network\",\"id\":15,\"name\":\"IP Address\"},\"type_id\":15,\"updated_at\":\"2019-11-15 00:00:02\",\"value\":\"89.160.20.156\"}", "type": [ diff --git a/packages/ti_threatq/docs/README.md b/packages/ti_threatq/docs/README.md index f619f9c4e678..12e413466087 100644 --- a/packages/ti_threatq/docs/README.md +++ b/packages/ti_threatq/docs/README.md @@ -45,6 +45,9 @@ To facilitate IOC expiration, source datastream-backed indices `.ds-logs-ti_thre | log.flags | Flags for the log file. | keyword | | log.offset | Offset of the entry in the log file. | long | | threat.feed.dashboard_id | Dashboard ID used for Kibana CTI UI | constant_keyword | +| threat.indicator.first_seen | The date and time when intelligence source first reported sighting this indicator. | date | +| threat.indicator.last_seen | The date and time when intelligence source last reported sighting this indicator. | date | +| threat.indicator.modified_at | The date and time when intelligence source last modified information for this indicator. | date | | threatq.adversaries | Adversaries that are linked to the object | keyword | | threatq.attributes | These provide additional context about an object | flattened | | threatq.created_at | Object creation time | date | @@ -67,33 +70,33 @@ An example event for `threat` looks as following: { "@timestamp": "2019-11-15T00:00:02.000Z", "agent": { - "ephemeral_id": "b61f9d9a-97f7-4d8a-9ec1-535a1ca13e89", - "id": "8130bdff-3530-4540-8c03-ba091c47a24f", + "ephemeral_id": "9f1b0b7f-5be0-463d-9551-3d66aab12b6f", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.11.0" + "version": "8.13.0" }, "data_stream": { "dataset": "ti_threatq.threat", - "namespace": "ep", + "namespace": "94389", "type": "logs" }, "ecs": { "version": "8.11.0" }, "elastic_agent": { - "id": "8130bdff-3530-4540-8c03-ba091c47a24f", + "id": "8299ae35-ee0e-4107-9acb-1b6acfdda1fb", "snapshot": false, - "version": "8.11.0" + "version": "8.13.0" }, "event": { "agent_id_status": "verified", "category": [ "threat" ], - "created": "2023-12-22T11:40:37.696Z", + "created": "2024-08-02T06:46:26.556Z", "dataset": "ti_threatq.threat", - "ingested": "2023-12-22T11:40:38Z", + "ingested": "2024-08-02T06:46:36Z", "kind": "enrichment", "original": "{\"adversaries\":[],\"attributes\":[{\"attribute_id\":3,\"created_at\":\"2020-09-11 14:35:53\",\"id\":1877,\"indicator_id\":336,\"name\":\"Description\",\"touched_at\":\"2020-10-15 14:36:00\",\"updated_at\":\"2020-10-15 14:36:00\",\"value\":\"Malicious Host\"},{\"attribute_id\":4,\"created_at\":\"2020-09-11 14:35:53\",\"id\":1878,\"indicator_id\":336,\"name\":\"Country\",\"touched_at\":\"2020-10-15 14:36:00\",\"updated_at\":\"2020-10-15 14:36:00\",\"value\":\"MP\"}],\"class\":\"network\",\"created_at\":\"2020-09-11 14:35:51\",\"expires_calculated_at\":\"2020-10-15 14:40:03\",\"hash\":\"1ece659dcec98b1e1141160b55655c96\",\"id\":336,\"published_at\":\"2020-09-11 14:35:51\",\"score\":4,\"sources\":[{\"created_at\":\"2020-09-11 14:35:53\",\"creator_source_id\":12,\"id\":336,\"indicator_id\":336,\"indicator_status_id\":2,\"indicator_type_id\":15,\"name\":\"AlienVault OTX\",\"published_at\":\"2020-09-11 14:35:53\",\"reference_id\":1,\"source_expire_days\":\"30\",\"source_id\":12,\"source_score\":1,\"source_type\":\"connectors\",\"updated_at\":\"2020-10-15 14:36:00\"}],\"status\":{\"description\":\"Poses a threat\",\"id\":2,\"name\":\"Active\"},\"status_id\":2,\"touched_at\":\"2021-06-07 19:47:27\",\"type\":{\"class\":\"network\",\"id\":15,\"name\":\"IP Address\"},\"type_id\":15,\"updated_at\":\"2019-11-15 00:00:02\",\"value\":\"89.160.20.156\"}", "type": [ diff --git a/packages/ti_threatq/manifest.yml b/packages/ti_threatq/manifest.yml index f6ce83ca7a1d..d2f97c97b86d 100644 --- a/packages/ti_threatq/manifest.yml +++ b/packages/ti_threatq/manifest.yml @@ -1,6 +1,6 @@ name: ti_threatq title: ThreatQuotient -version: "1.28.0" +version: "1.28.1" description: Ingest threat intelligence indicators from ThreatQuotient with Elastic Agent. type: integration format_version: "3.0.2" From 9a0d73f916d819e378f9d47ecb23ee651f54e322 Mon Sep 17 00:00:00 2001 From: milan-elastic <118723373+milan-elastic@users.noreply.github.com> Date: Tue, 6 Aug 2024 10:53:35 +0530 Subject: [PATCH 29/77] [O11y][Azure] Add global filter for dashboards to improve performance related to infraobs packages (#10379) * Add global filter for dashboards to improve performance related to infraobs packages. * Update changelog entry * minor refactor for changelog entry --------- Co-authored-by: harnish-elastic --- packages/azure/changelog.yml | 5 + ...-0f559cc0-f0d5-11e9-90ec-112a988266d5.json | 59 ++- ...-1adf52d0-f50f-11eb-a831-732d3e9bbd43.json | 231 +++-------- ...-32aedb00-f524-11eb-b9f3-73fa29f35762.json | 263 +++---------- ...-41e84340-ec20-11e9-90ec-112a988266d5.json | 140 +++---- ...-5ad41d90-f50e-11eb-a831-732d3e9bbd43.json | 223 ++--------- ...-87095750-f05a-11e9-90ec-112a988266d5.json | 370 ++++-------------- packages/azure/manifest.yml | 2 +- 8 files changed, 311 insertions(+), 982 deletions(-) diff --git a/packages/azure/changelog.yml b/packages/azure/changelog.yml index 0c33704cb411..4128134b2c4e 100644 --- a/packages/azure/changelog.yml +++ b/packages/azure/changelog.yml @@ -1,3 +1,8 @@ +- version: "1.14.0" + changes: + - description: Add global dataset filter for dashboards to improve performance. + type: enhancement + link: https://github.com/elastic/integrations/pull/10379 - version: "1.13.1" changes: - description: Expand docs with more details on the Event Hub partitions configuration. diff --git a/packages/azure/kibana/dashboard/azure-0f559cc0-f0d5-11e9-90ec-112a988266d5.json b/packages/azure/kibana/dashboard/azure-0f559cc0-f0d5-11e9-90ec-112a988266d5.json index c14f40b1af31..0a6321c17344 100644 --- a/packages/azure/kibana/dashboard/azure-0f559cc0-f0d5-11e9-90ec-112a988266d5.json +++ b/packages/azure/kibana/dashboard/azure-0f559cc0-f0d5-11e9-90ec-112a988266d5.json @@ -9,7 +9,30 @@ "description": "This dashboard provides expanded alerts overview for Azure cloud.", "kibanaSavedObjectMeta": { "searchSourceJSON": { - "filter": [], + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "azure.activitylogs" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "azure.activitylogs" + } + } + } + ], "query": { "language": "kuery", "query": "" @@ -58,8 +81,7 @@ }, "panelIndex": "9d1a26e6-2ff0-4d3e-bab3-7bb3c50cd060", "title": "Navigation Alerts", - "type": "visualization", - "version": "8.6.2" + "type": "visualization" }, { "embeddableConfig": { @@ -143,7 +165,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.category : \"Alert\" or azure.activitylogs.event_category: \"Alert\")" + "query": "azure.activitylogs.category : \"Alert\" or azure.activitylogs.event_category: \"Alert\"" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -201,8 +223,7 @@ }, "panelIndex": "e5e45365-c81a-4f7f-b58b-8d2d781329a5", "title": "Alerts Overview", - "type": "lens", - "version": "8.6.2" + "type": "lens" }, { "embeddableConfig": { @@ -303,7 +324,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\" )" + "query": "azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\"" }, "visualization": { "gridConfig": { @@ -379,8 +400,7 @@ }, "panelIndex": "36fb5c08-80d9-4a1c-8fde-9c063381fdd8", "title": "Alerts Heatmap", - "type": "lens", - "version": "8.6.2" + "type": "lens" }, { "embeddableConfig": { @@ -460,7 +480,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\")" + "query": " azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\"" }, "visualization": { "breakdownByAccessor": "6674f0d1-fc76-4845-80fa-3797c6fcdcbc", @@ -485,21 +505,23 @@ }, "panelIndex": "162fb43e-fff3-4f50-aa9b-a713418bd651", "title": "Alerts Count", - "type": "lens", - "version": "8.6.2" + "type": "lens" } ], "timeRestore": false, "title": "[Logs Azure] Alerts Overview", "version": 1 }, - "coreMigrationVersion": "8.6.2", - "created_at": "2023-06-08T07:33:56.370Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-19T09:37:54.808Z", "id": "azure-0f559cc0-f0d5-11e9-90ec-112a988266d5", - "migrationVersion": { - "dashboard": "8.6.0" - }, + "managed": false, "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "logs-*", "name": "e5e45365-c81a-4f7f-b58b-8d2d781329a5:indexpattern-datasource-layer-c0e8cd55-a662-40d4-87f4-a889776f3a75", @@ -521,5 +543,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/azure/kibana/dashboard/azure-1adf52d0-f50f-11eb-a831-732d3e9bbd43.json b/packages/azure/kibana/dashboard/azure-1adf52d0-f50f-11eb-a831-732d3e9bbd43.json index 4f10df87292c..ed986658475d 100644 --- a/packages/azure/kibana/dashboard/azure-1adf52d0-f50f-11eb-a831-732d3e9bbd43.json +++ b/packages/azure/kibana/dashboard/azure-1adf52d0-f50f-11eb-a831-732d3e9bbd43.json @@ -9,7 +9,30 @@ "description": "Dashboard providing statistics about System Logs ingested from Azure Spring Apps.", "kibanaSavedObjectMeta": { "searchSourceJSON": { - "filter": [], + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "azure.springcloudlogs" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "azure.springcloudlogs" + } + } + } + ], "query": { "language": "kuery", "query": "" @@ -59,8 +82,7 @@ }, "panelIndex": "36cfd9c9-98e2-427a-9f99-3b4406d86841", "title": "Navigation Azure System Logs", - "type": "visualization", - "version": "8.6.0" + "type": "visualization" }, { "embeddableConfig": { @@ -70,11 +92,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-59775c31-6a61-4dd7-8004-05462a989a2b", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "52a6c795-a0fd-41e7-a644-83a6b04ac9a2", - "type": "index-pattern" } ], "state": { @@ -123,30 +140,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "field": "data_stream.dataset", - "index": "52a6c795-a0fd-41e7-a644-83a6b04ac9a2", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -232,8 +226,7 @@ }, "panelIndex": "dd3bc6e6-219b-46d1-a458-cf79faa14c22", "title": "System Logs Activity", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -243,11 +236,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-442ce462-87f8-44d8-8060-ae99c2af8ff4", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "002814ed-6273-4412-8cac-e594a9425284", - "type": "index-pattern" } ], "state": { @@ -334,30 +322,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "field": "data_stream.dataset", - "index": "002814ed-6273-4412-8cac-e594a9425284", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -444,8 +409,7 @@ }, "panelIndex": "6c53434c-d1f9-4210-a0fe-0e406cffb1a7", "title": "Log Level", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -459,12 +423,7 @@ }, { "id": "logs-*", - "name": "51379c8c-15c8-410a-9060-e5e48b17ea53", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "8abed462-4937-4c15-8ad4-8c3034ca4670", + "name": "84afaa4f-787b-437e-babd-1655920a3aec", "type": "index-pattern" } ], @@ -522,7 +481,7 @@ "meta": { "alias": null, "disabled": false, - "index": "51379c8c-15c8-410a-9060-e5e48b17ea53", + "index": "84afaa4f-787b-437e-babd-1655920a3aec", "key": "azure.springcloudlogs.category", "negate": false, "params": { @@ -535,28 +494,6 @@ "azure.springcloudlogs.category": "SystemLogs" } } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "field": "data_stream.dataset", - "index": "8abed462-4937-4c15-8ad4-8c3034ca4670", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } } ], "internalReferences": [], @@ -631,8 +568,7 @@ }, "panelIndex": "748eb38a-92e4-4636-87c4-ca8bde01e6d8", "title": "Operations", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -642,11 +578,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-a12fbd27-f613-4f5c-9a74-13239009bfa9", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "7884311b-8393-4fee-80fe-d645bf2b9574", - "type": "index-pattern" } ], "state": { @@ -730,30 +661,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "field": "data_stream.dataset", - "index": "7884311b-8393-4fee-80fe-d645bf2b9574", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -840,8 +748,7 @@ }, "panelIndex": "f10825d9-48e7-4c3b-b225-51ac95988c8a", "title": "Services", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -856,11 +763,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-a4f2e606-7655-45fa-be3d-de35dff5209a", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "d1fefd9d-6ebe-464a-a08f-bd2d4f412c57", - "type": "index-pattern" } ], "state": { @@ -1013,30 +915,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "field": "data_stream.dataset", - "index": "d1fefd9d-6ebe-464a-a08f-bd2d4f412c57", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -1144,29 +1023,26 @@ }, "panelIndex": "65014b13-0aa6-488b-9015-5dcb7b0dfe74", "title": "Logger \u0026 Type", - "type": "lens", - "version": "8.6.0" + "type": "lens" } ], "timeRestore": false, "title": "[Logs Azure] Azure Spring Apps Logs System Logs", "version": 1 }, - "coreMigrationVersion": "8.6.0", - "created_at": "2023-10-13T10:28:16.146Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-19T09:14:48.786Z", "id": "azure-1adf52d0-f50f-11eb-a831-732d3e9bbd43", - "migrationVersion": { - "dashboard": "8.6.0" - }, + "managed": false, "references": [ { "id": "logs-*", - "name": "dd3bc6e6-219b-46d1-a458-cf79faa14c22:indexpattern-datasource-layer-59775c31-6a61-4dd7-8004-05462a989a2b", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", "type": "index-pattern" }, { "id": "logs-*", - "name": "dd3bc6e6-219b-46d1-a458-cf79faa14c22:52a6c795-a0fd-41e7-a644-83a6b04ac9a2", + "name": "dd3bc6e6-219b-46d1-a458-cf79faa14c22:indexpattern-datasource-layer-59775c31-6a61-4dd7-8004-05462a989a2b", "type": "index-pattern" }, { @@ -1174,11 +1050,6 @@ "name": "6c53434c-d1f9-4210-a0fe-0e406cffb1a7:indexpattern-datasource-layer-442ce462-87f8-44d8-8060-ae99c2af8ff4", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "6c53434c-d1f9-4210-a0fe-0e406cffb1a7:002814ed-6273-4412-8cac-e594a9425284", - "type": "index-pattern" - }, { "id": "logs-*", "name": "748eb38a-92e4-4636-87c4-ca8bde01e6d8:indexpattern-datasource-layer-7574efe2-c9d0-4a05-ab12-0801f59f6aaf", @@ -1186,12 +1057,7 @@ }, { "id": "logs-*", - "name": "748eb38a-92e4-4636-87c4-ca8bde01e6d8:51379c8c-15c8-410a-9060-e5e48b17ea53", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "748eb38a-92e4-4636-87c4-ca8bde01e6d8:8abed462-4937-4c15-8ad4-8c3034ca4670", + "name": "748eb38a-92e4-4636-87c4-ca8bde01e6d8:84afaa4f-787b-437e-babd-1655920a3aec", "type": "index-pattern" }, { @@ -1199,11 +1065,6 @@ "name": "f10825d9-48e7-4c3b-b225-51ac95988c8a:indexpattern-datasource-layer-a12fbd27-f613-4f5c-9a74-13239009bfa9", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "f10825d9-48e7-4c3b-b225-51ac95988c8a:7884311b-8393-4fee-80fe-d645bf2b9574", - "type": "index-pattern" - }, { "id": "logs-*", "name": "65014b13-0aa6-488b-9015-5dcb7b0dfe74:indexpattern-datasource-layer-28eeaf80-51d5-41a2-bf3b-ca86e238a636", @@ -1214,11 +1075,6 @@ "name": "65014b13-0aa6-488b-9015-5dcb7b0dfe74:indexpattern-datasource-layer-a4f2e606-7655-45fa-be3d-de35dff5209a", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "65014b13-0aa6-488b-9015-5dcb7b0dfe74:d1fefd9d-6ebe-464a-a08f-bd2d4f412c57", - "type": "index-pattern" - }, { "id": "logs-*", "name": "controlGroup_5cbc2c45-1213-4bb9-ab65-8dfc0cfbad8a:optionsListDataView", @@ -1230,5 +1086,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/azure/kibana/dashboard/azure-32aedb00-f524-11eb-b9f3-73fa29f35762.json b/packages/azure/kibana/dashboard/azure-32aedb00-f524-11eb-b9f3-73fa29f35762.json index f25ee3146b6b..aa08fbbf7072 100644 --- a/packages/azure/kibana/dashboard/azure-32aedb00-f524-11eb-b9f3-73fa29f35762.json +++ b/packages/azure/kibana/dashboard/azure-32aedb00-f524-11eb-b9f3-73fa29f35762.json @@ -9,7 +9,30 @@ "description": "Dashboard providing statistics about Application Console Logs ingested from Azure Spring Apps.", "kibanaSavedObjectMeta": { "searchSourceJSON": { - "filter": [], + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "azure.springcloudlogs" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "azure.springcloudlogs" + } + } + } + ], "query": { "language": "kuery", "query": "" @@ -59,8 +82,7 @@ }, "panelIndex": "0be608b5-cbdb-49a6-a789-a4f2ede7e5bd", "title": "Navigation Application Console Logs ", - "type": "visualization", - "version": "8.6.0" + "type": "visualization" }, { "embeddableConfig": { @@ -70,11 +92,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-a1f77c61-c425-4827-add0-7ab9aa13b7e5", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "2cabd4e2-a977-4f6f-b679-dd0b5733d0fd", - "type": "index-pattern" } ], "state": { @@ -122,29 +139,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "2cabd4e2-a977-4f6f-b679-dd0b5733d0fd", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -230,8 +225,7 @@ }, "panelIndex": "a6dbf221-669f-43e9-ae52-95ca08285b90", "title": "Application Console Logs Activity", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -241,11 +235,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-ba4da909-01a2-43fc-9565-5001b0f66c23", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "b73fa430-76df-4553-9420-de47a93f1135", - "type": "index-pattern" } ], "state": { @@ -329,29 +318,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "b73fa430-76df-4553-9420-de47a93f1135", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -442,8 +409,7 @@ }, "panelIndex": "516b81e3-38d5-4858-bc21-780601523d46", "title": "Log Level", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -454,11 +420,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-85ed9b39-8f95-4f88-8992-14c4b66e9f6b", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "0c582686-869d-43c3-bb30-355d3f813315", - "type": "index-pattern" } ], "state": { @@ -507,29 +468,7 @@ } } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "0c582686-869d-43c3-bb30-355d3f813315", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -572,8 +511,7 @@ }, "panelIndex": "98d4b7c1-7a04-4075-a35f-913e310b71bf", "title": "Services", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -584,11 +522,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-2eef92b4-78be-47d2-b864-3607e49b2dd9", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "fd696a68-5be6-4e5f-937e-da9c177b69b6", - "type": "index-pattern" } ], "state": { @@ -637,29 +570,7 @@ } } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "fd696a68-5be6-4e5f-937e-da9c177b69b6", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -706,8 +617,7 @@ }, "panelIndex": "fdc7ed64-888b-438d-811a-567fc741276c", "title": "Applications", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -721,12 +631,7 @@ }, { "id": "logs-*", - "name": "f13e3017-30f9-4b12-a31c-33b8b017091e", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "9b2b8a04-717f-406c-b83f-4e373a545041", + "name": "571418ac-d85f-4178-9ec1-dbdf9fb2cac2", "type": "index-pattern" } ], @@ -784,7 +689,7 @@ "meta": { "alias": null, "disabled": false, - "index": "f13e3017-30f9-4b12-a31c-33b8b017091e", + "index": "571418ac-d85f-4178-9ec1-dbdf9fb2cac2", "key": "azure.springcloudlogs.category", "negate": false, "params": { @@ -797,27 +702,6 @@ "azure.springcloudlogs.category": "ApplicationConsole" } } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "9b2b8a04-717f-406c-b83f-4e373a545041", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } } ], "internalReferences": [], @@ -894,8 +778,7 @@ }, "panelIndex": "ee0da4f3-5c39-4d08-91ed-ba518d1ae171", "title": "Operations", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -910,11 +793,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-c27ba765-083b-409e-b4db-827c1855d97e", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "2e290440-16f7-493e-a8de-f0844baeb354", - "type": "index-pattern" } ], "state": { @@ -1068,29 +946,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "2e290440-16f7-493e-a8de-f0844baeb354", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -1199,29 +1055,26 @@ }, "panelIndex": "961f9ee7-5d00-4686-8ead-0538cef2c685", "title": "Applications \u0026 instances", - "type": "lens", - "version": "8.6.0" + "type": "lens" } ], "timeRestore": false, "title": "[Logs Azure] Azure Spring Apps Logs Application Console Logs", "version": 1 }, - "coreMigrationVersion": "8.6.0", - "created_at": "2023-10-13T10:55:09.673Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-19T09:33:00.417Z", "id": "azure-32aedb00-f524-11eb-b9f3-73fa29f35762", - "migrationVersion": { - "dashboard": "8.6.0" - }, + "managed": false, "references": [ { "id": "logs-*", - "name": "a6dbf221-669f-43e9-ae52-95ca08285b90:indexpattern-datasource-layer-a1f77c61-c425-4827-add0-7ab9aa13b7e5", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", "type": "index-pattern" }, { "id": "logs-*", - "name": "a6dbf221-669f-43e9-ae52-95ca08285b90:2cabd4e2-a977-4f6f-b679-dd0b5733d0fd", + "name": "a6dbf221-669f-43e9-ae52-95ca08285b90:indexpattern-datasource-layer-a1f77c61-c425-4827-add0-7ab9aa13b7e5", "type": "index-pattern" }, { @@ -1229,31 +1082,16 @@ "name": "516b81e3-38d5-4858-bc21-780601523d46:indexpattern-datasource-layer-ba4da909-01a2-43fc-9565-5001b0f66c23", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "516b81e3-38d5-4858-bc21-780601523d46:b73fa430-76df-4553-9420-de47a93f1135", - "type": "index-pattern" - }, { "id": "logs-*", "name": "98d4b7c1-7a04-4075-a35f-913e310b71bf:indexpattern-datasource-layer-85ed9b39-8f95-4f88-8992-14c4b66e9f6b", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "98d4b7c1-7a04-4075-a35f-913e310b71bf:0c582686-869d-43c3-bb30-355d3f813315", - "type": "index-pattern" - }, { "id": "logs-*", "name": "fdc7ed64-888b-438d-811a-567fc741276c:indexpattern-datasource-layer-2eef92b4-78be-47d2-b864-3607e49b2dd9", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "fdc7ed64-888b-438d-811a-567fc741276c:fd696a68-5be6-4e5f-937e-da9c177b69b6", - "type": "index-pattern" - }, { "id": "logs-*", "name": "ee0da4f3-5c39-4d08-91ed-ba518d1ae171:indexpattern-datasource-layer-13d30293-5fa4-48e6-8658-f5f42473b5cf", @@ -1261,12 +1099,7 @@ }, { "id": "logs-*", - "name": "ee0da4f3-5c39-4d08-91ed-ba518d1ae171:f13e3017-30f9-4b12-a31c-33b8b017091e", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "ee0da4f3-5c39-4d08-91ed-ba518d1ae171:9b2b8a04-717f-406c-b83f-4e373a545041", + "name": "ee0da4f3-5c39-4d08-91ed-ba518d1ae171:571418ac-d85f-4178-9ec1-dbdf9fb2cac2", "type": "index-pattern" }, { @@ -1279,11 +1112,6 @@ "name": "961f9ee7-5d00-4686-8ead-0538cef2c685:indexpattern-datasource-layer-c27ba765-083b-409e-b4db-827c1855d97e", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "961f9ee7-5d00-4686-8ead-0538cef2c685:2e290440-16f7-493e-a8de-f0844baeb354", - "type": "index-pattern" - }, { "id": "logs-*", "name": "controlGroup_92623f66-de82-45c4-b8ef-63131d89c01e:optionsListDataView", @@ -1295,5 +1123,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/azure/kibana/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5.json b/packages/azure/kibana/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5.json index c67e13d61632..d22d5a7b4f64 100644 --- a/packages/azure/kibana/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5.json +++ b/packages/azure/kibana/dashboard/azure-41e84340-ec20-11e9-90ec-112a988266d5.json @@ -9,7 +9,30 @@ "description": "This dashboard provides an overview of user activity, alerts and resource in Azure cloud.", "kibanaSavedObjectMeta": { "searchSourceJSON": { - "filter": [], + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "azure.activitylogs" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "azure.activitylogs" + } + } + } + ], "query": { "language": "kuery", "query": "" @@ -58,8 +81,7 @@ }, "panelIndex": "6b6e7452-979c-4f78-afc2-cc58fcf105ff", "title": "Navigation Overview", - "type": "visualization", - "version": "8.6.0" + "type": "visualization" }, { "embeddableConfig": { @@ -121,7 +143,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.event_category :\"Administrative\" " + "query": "azure.activitylogs.event_category :\"Administrative\" " }, "visualization": { "axisTitlesVisibilitySettings": { @@ -168,8 +190,7 @@ }, "panelIndex": "87da9826-48f4-4c41-b8f5-00d964ecfbad", "title": "Activity level", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -202,6 +223,7 @@ "format": { "id": "number", "params": { + "compact": true, "decimals": 2 } } @@ -248,8 +270,7 @@ }, "panelIndex": "e642e577-c00b-491e-b802-2cdf045843d0", "title": "Resources", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -282,6 +303,7 @@ "format": { "id": "number", "params": { + "compact": true, "decimals": 2 } } @@ -328,8 +350,7 @@ }, "panelIndex": "c0cae6bf-e96d-437d-ba5b-44210f181b4a", "title": "Users", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -362,6 +383,7 @@ "format": { "id": "number", "params": { + "compact": true, "decimals": 2 } } @@ -408,8 +430,7 @@ }, "panelIndex": "68ddf2aa-b765-4632-9298-b80fae0e7b80", "title": "Resource Groups", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -442,6 +463,7 @@ "format": { "id": "number", "params": { + "compact": true, "decimals": 2 } } @@ -488,8 +510,7 @@ }, "panelIndex": "b80ef558-c491-46f9-8a07-31834373f61d", "title": "Subscriptions", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -573,7 +594,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and azure.activitylogs.operation_name : *LISTKEYS* " + "query": "azure.activitylogs.operation_name : *LISTKEYS* " }, "visualization": { "axisTitlesVisibilitySettings": { @@ -627,8 +648,7 @@ }, "panelIndex": "1243ef52-3a6a-4c1e-a2c6-643a7231ab6a", "title": "Access Requests", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -638,11 +658,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-0244f8d2-e938-4d08-8107-efb64df49277", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "94d12b4e-1b4e-47c2-b418-25ca180cdc8d", - "type": "index-pattern" } ], "state": { @@ -704,29 +719,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "94d12b4e-1b4e-47c2-b418-25ca180cdc8d", - "key": "azure.activitylogs.identity.claims_initiated_by_user.name", - "negate": false, - "params": { - "query": "tamara.dancheva@elastic.co" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "azure.activitylogs.identity.claims_initiated_by_user.name": "tamara.dancheva@elastic.co" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -796,8 +789,7 @@ }, "panelIndex": "d7fbadb0-618f-4467-b6b9-962b18b968cf", "title": "Top Active Users", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -881,7 +873,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\")" + "query": "azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\"" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -939,8 +931,7 @@ }, "panelIndex": "f772277f-7e86-47f8-ae04-cdb002409342", "title": "Alerts overview", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1024,7 +1015,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"ServiceHealth\" or azure.activitylogs.category : \"ServiceHealth\")" + "query": "azure.activitylogs.event_category : \"ServiceHealth\" or azure.activitylogs.category : \"ServiceHealth\"" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -1082,8 +1073,7 @@ }, "panelIndex": "ec47f27d-acc4-410b-8951-3ec1f9661d3f", "title": "Service Health", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1216,8 +1206,7 @@ }, "panelIndex": "a6f36dfe-b6d6-4dca-b63c-81f5b4f7c8f8", "title": "Top Resource Groups", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1297,7 +1286,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\")" + "query": "azure.activitylogs.event_category : \"Alert\" or azure.activitylogs.category : \"Alert\"" }, "visualization": { "breakdownByAccessor": "4e4ae388-1045-43a4-bf12-0ee52548158b", @@ -1352,8 +1341,7 @@ }, "panelIndex": "644c6151-fd05-4b2e-b18e-30843697e932", "title": "Alerts Count", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1426,7 +1414,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" and (azure.activitylogs.event_category : \"ServiceHealth\" or azure.activitylogs.category : \"ServiceHealth\" )" + "query": "azure.activitylogs.event_category : \"ServiceHealth\" or azure.activitylogs.category : \"ServiceHealth\"" }, "visualization": { "breakdownByAccessor": "d07e798b-dad6-471f-b026-08dd53ea4534", @@ -1481,8 +1469,7 @@ }, "panelIndex": "3d5ccff8-6576-4a1c-b3ee-363ae665906e", "title": "Service Health Count", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1585,7 +1572,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" " + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -1670,8 +1657,7 @@ }, "panelIndex": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", "title": "Resource Deletions", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1774,7 +1760,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" " + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -1859,21 +1845,23 @@ }, "panelIndex": "1a6dce1d-d039-4d18-87c7-1b700da676c2", "title": "Resource Creations", - "type": "lens", - "version": "8.6.0" + "type": "lens" } ], "timeRestore": false, "title": "[Logs Azure] Cloud Overview", "version": 1 }, - "coreMigrationVersion": "8.6.0", - "created_at": "2023-06-13T08:41:06.687Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-06-26T06:51:29.592Z", "id": "azure-41e84340-ec20-11e9-90ec-112a988266d5", - "migrationVersion": { - "dashboard": "8.6.0" - }, + "managed": false, "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, { "id": "logs-*", "name": "87da9826-48f4-4c41-b8f5-00d964ecfbad:indexpattern-datasource-layer-b306cb68-041f-4258-bb8e-22b385bf3a0a", @@ -1909,11 +1897,6 @@ "name": "d7fbadb0-618f-4467-b6b9-962b18b968cf:indexpattern-datasource-layer-0244f8d2-e938-4d08-8107-efb64df49277", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "d7fbadb0-618f-4467-b6b9-962b18b968cf:94d12b4e-1b4e-47c2-b418-25ca180cdc8d", - "type": "index-pattern" - }, { "id": "logs-*", "name": "f772277f-7e86-47f8-ae04-cdb002409342:indexpattern-datasource-layer-fbf47563-00f1-4b20-bf5b-f3de5f04d69c", @@ -1955,5 +1938,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/azure/kibana/dashboard/azure-5ad41d90-f50e-11eb-a831-732d3e9bbd43.json b/packages/azure/kibana/dashboard/azure-5ad41d90-f50e-11eb-a831-732d3e9bbd43.json index 2354851ab079..ca8e679b7556 100644 --- a/packages/azure/kibana/dashboard/azure-5ad41d90-f50e-11eb-a831-732d3e9bbd43.json +++ b/packages/azure/kibana/dashboard/azure-5ad41d90-f50e-11eb-a831-732d3e9bbd43.json @@ -9,7 +9,30 @@ "description": "Dashboard providing an overall view of the Azure Spring Apps logs integration.", "kibanaSavedObjectMeta": { "searchSourceJSON": { - "filter": [], + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "azure.springcloudlogs" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "azure.springcloudlogs" + } + } + } + ], "query": { "language": "kuery", "query": "" @@ -59,8 +82,7 @@ }, "panelIndex": "5139d9b1-5d42-4157-8c19-9f5480da0741", "title": "Navigation Azure Spring Apps Logs", - "type": "visualization", - "version": "8.6.0" + "type": "visualization" }, { "embeddableConfig": { @@ -70,11 +92,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-0421bd38-ee0f-4ace-bab7-561904ed1950", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "cdfcef97-2dca-487c-8ff3-e9ebc8880e7a", - "type": "index-pattern" } ], "state": { @@ -122,29 +139,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "cdfcef97-2dca-487c-8ff3-e9ebc8880e7a", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -230,8 +225,7 @@ }, "panelIndex": "c9d5c763-5ee4-4fa2-8694-5678a33ca7ab", "title": "Spring Apps Logs Activity", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -241,11 +235,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-398c425f-92c4-4e6c-be4b-48fffc5ecda1", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "baac2222-068a-4ab3-b992-0b0181b833db", - "type": "index-pattern" } ], "state": { @@ -306,29 +295,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "baac2222-068a-4ab3-b992-0b0181b833db", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -416,8 +383,7 @@ }, "panelIndex": "8ed7ced5-a053-4d6c-99f0-09ec2c3d5933", "title": "Top Resource Groups", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -427,11 +393,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-0b4182ad-689e-4911-ac97-5a79c3a78ef7", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "e1fb1df3-7b3b-43c2-8715-25a0251843af", - "type": "index-pattern" } ], "state": { @@ -515,29 +476,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "e1fb1df3-7b3b-43c2-8715-25a0251843af", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -625,8 +564,7 @@ }, "panelIndex": "8a69029b-054e-4adc-b20b-b2052cdaed73", "title": "Services", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -637,11 +575,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-8f78ff58-39ee-47eb-8e7a-46a2bec850d1", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "f1129350-3902-429c-bb78-74ae8289d9e8", - "type": "index-pattern" } ], "state": { @@ -690,29 +623,7 @@ } } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "f1129350-3902-429c-bb78-74ae8289d9e8", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -785,8 +696,7 @@ }, "panelIndex": "08b8beb6-9b26-461b-9a04-3560916952d0", "title": "Top Resources", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -796,11 +706,6 @@ "id": "logs-*", "name": "indexpattern-datasource-layer-cb0ceeef-76e7-4d8c-afdc-af12519e45d2", "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "5998cb0a-a819-4be2-882d-1d841527a591", - "type": "index-pattern" } ], "state": { @@ -883,29 +788,7 @@ "layers": {} } }, - "filters": [ - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "5998cb0a-a819-4be2-882d-1d841527a591", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.springcloudlogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.springcloudlogs" - } - } - } - ], + "filters": [], "internalReferences": [], "query": { "language": "kuery", @@ -992,29 +875,26 @@ }, "panelIndex": "e0d96ed1-5839-4e7a-bf04-8757614b8503", "title": "Log Level", - "type": "lens", - "version": "8.6.0" + "type": "lens" } ], "timeRestore": false, "title": "[Logs Azure] Azure Spring Apps Logs Overview", "version": 1 }, - "coreMigrationVersion": "8.6.0", - "created_at": "2023-10-13T10:28:16.146Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-19T09:16:04.725Z", "id": "azure-5ad41d90-f50e-11eb-a831-732d3e9bbd43", - "migrationVersion": { - "dashboard": "8.6.0" - }, + "managed": false, "references": [ { "id": "logs-*", - "name": "c9d5c763-5ee4-4fa2-8694-5678a33ca7ab:indexpattern-datasource-layer-0421bd38-ee0f-4ace-bab7-561904ed1950", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", "type": "index-pattern" }, { "id": "logs-*", - "name": "c9d5c763-5ee4-4fa2-8694-5678a33ca7ab:cdfcef97-2dca-487c-8ff3-e9ebc8880e7a", + "name": "c9d5c763-5ee4-4fa2-8694-5678a33ca7ab:indexpattern-datasource-layer-0421bd38-ee0f-4ace-bab7-561904ed1950", "type": "index-pattern" }, { @@ -1022,41 +902,21 @@ "name": "8ed7ced5-a053-4d6c-99f0-09ec2c3d5933:indexpattern-datasource-layer-398c425f-92c4-4e6c-be4b-48fffc5ecda1", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "8ed7ced5-a053-4d6c-99f0-09ec2c3d5933:baac2222-068a-4ab3-b992-0b0181b833db", - "type": "index-pattern" - }, { "id": "logs-*", "name": "8a69029b-054e-4adc-b20b-b2052cdaed73:indexpattern-datasource-layer-0b4182ad-689e-4911-ac97-5a79c3a78ef7", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "8a69029b-054e-4adc-b20b-b2052cdaed73:e1fb1df3-7b3b-43c2-8715-25a0251843af", - "type": "index-pattern" - }, { "id": "logs-*", "name": "08b8beb6-9b26-461b-9a04-3560916952d0:indexpattern-datasource-layer-8f78ff58-39ee-47eb-8e7a-46a2bec850d1", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "08b8beb6-9b26-461b-9a04-3560916952d0:f1129350-3902-429c-bb78-74ae8289d9e8", - "type": "index-pattern" - }, { "id": "logs-*", "name": "e0d96ed1-5839-4e7a-bf04-8757614b8503:indexpattern-datasource-layer-cb0ceeef-76e7-4d8c-afdc-af12519e45d2", "type": "index-pattern" }, - { - "id": "logs-*", - "name": "e0d96ed1-5839-4e7a-bf04-8757614b8503:5998cb0a-a819-4be2-882d-1d841527a591", - "type": "index-pattern" - }, { "id": "logs-*", "name": "controlGroup_a71b2a03-663d-4897-a3c2-4a363a5cd13c:optionsListDataView", @@ -1068,5 +928,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/azure/kibana/dashboard/azure-87095750-f05a-11e9-90ec-112a988266d5.json b/packages/azure/kibana/dashboard/azure-87095750-f05a-11e9-90ec-112a988266d5.json index 2d4875ecf7c4..279dae6bbfcb 100644 --- a/packages/azure/kibana/dashboard/azure-87095750-f05a-11e9-90ec-112a988266d5.json +++ b/packages/azure/kibana/dashboard/azure-87095750-f05a-11e9-90ec-112a988266d5.json @@ -9,7 +9,30 @@ "description": "This dashboard shows expanded user activity in Azure cloud.", "kibanaSavedObjectMeta": { "searchSourceJSON": { - "filter": [], + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "azure.activitylogs" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "azure.activitylogs" + } + } + } + ], "query": { "language": "kuery", "query": "" @@ -58,8 +81,7 @@ }, "panelIndex": "675f172f-dbec-44fe-b45c-fe854a967695", "title": "Navigation Users", - "type": "visualization", - "version": "8.6.0" + "type": "visualization" }, { "embeddableConfig": { @@ -72,12 +94,7 @@ }, { "id": "logs-*", - "name": "46b00978-7a77-4b60-85dc-b53e334e2386", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "2e02517f-abc4-4003-943d-5f4ae7e3c07f", + "name": "17ae33ad-8c73-43c0-a98c-919d0136bc86", "type": "index-pattern" } ], @@ -200,28 +217,7 @@ "meta": { "alias": null, "disabled": false, - "index": "46b00978-7a77-4b60-85dc-b53e334e2386", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "2e02517f-abc4-4003-943d-5f4ae7e3c07f", + "index": "17ae33ad-8c73-43c0-a98c-919d0136bc86", "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", "negate": false, "type": "exists", @@ -237,7 +233,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" " + "query": "" }, "visualization": { "columns": [ @@ -284,8 +280,7 @@ }, "panelIndex": "5774219c-fb45-4480-bdfb-75a69bdc2cfe", "title": "Caller IP", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -298,17 +293,12 @@ }, { "id": "logs-*", - "name": "4c411ab1-7ad3-4a76-b7a9-1651024d677c", + "name": "15e44f13-fd26-4713-a210-a7ac113fa543", "type": "index-pattern" }, { "id": "logs-*", - "name": "d6f82592-f7c5-417c-9c6b-4baf98a14e1b", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "65122896-581f-4712-b370-c32b0f04e3f2", + "name": "9d1fd2ff-ed91-4066-860c-f9da2391405f", "type": "index-pattern" } ], @@ -371,7 +361,7 @@ "meta": { "alias": null, "disabled": false, - "index": "4c411ab1-7ad3-4a76-b7a9-1651024d677c", + "index": "15e44f13-fd26-4713-a210-a7ac113fa543", "key": "azure.activitylogs.event_category", "negate": false, "params": { @@ -392,28 +382,7 @@ "meta": { "alias": null, "disabled": false, - "index": "d6f82592-f7c5-417c-9c6b-4baf98a14e1b", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "65122896-581f-4712-b370-c32b0f04e3f2", + "index": "9d1fd2ff-ed91-4066-860c-f9da2391405f", "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", "negate": false, "type": "exists", @@ -476,8 +445,7 @@ }, "panelIndex": "97001cce-7254-443e-a12f-69b13fbd4811", "title": "User Activity Overview", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -490,12 +458,7 @@ }, { "id": "logs-*", - "name": "f0bae95f-7561-4f8a-b80f-54ea63459dcb", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "e4acd1ff-82be-4e50-9679-990da4074530", + "name": "e8da4285-166d-453c-85a5-a527cf5a6831", "type": "index-pattern" } ], @@ -605,28 +568,7 @@ "meta": { "alias": null, "disabled": false, - "index": "f0bae95f-7561-4f8a-b80f-54ea63459dcb", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "e4acd1ff-82be-4e50-9679-990da4074530", + "index": "e8da4285-166d-453c-85a5-a527cf5a6831", "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", "negate": false, "type": "exists", @@ -689,8 +631,7 @@ }, "panelIndex": "d4d708e1-d179-4688-8005-54e2162a82d2", "title": "Users List", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -703,12 +644,7 @@ }, { "id": "logs-*", - "name": "4cd4db41-bd1a-452b-b25b-63d014fe8c93", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "6b474125-fbda-410f-be57-c07b43690dc7", + "name": "98f5d219-7169-41fd-a0aa-5cf07fbfefb5", "type": "index-pattern" } ], @@ -788,28 +724,7 @@ "meta": { "alias": null, "disabled": false, - "index": "4cd4db41-bd1a-452b-b25b-63d014fe8c93", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "6b474125-fbda-410f-be57-c07b43690dc7", + "index": "98f5d219-7169-41fd-a0aa-5cf07fbfefb5", "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", "negate": false, "type": "exists", @@ -894,8 +809,7 @@ }, "panelIndex": "73dbda75-6315-4152-824d-9536650af773", "title": "Authorization Activity User", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -908,12 +822,7 @@ }, { "id": "logs-*", - "name": "1758cdb8-4b54-4d8b-8eb5-0d6147c7e2b8", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "03d0f507-3502-4bd6-a3aa-64a72908bffa", + "name": "496d9fa2-0223-43e6-8a95-983eefd1bd57", "type": "index-pattern" } ], @@ -983,28 +892,7 @@ "meta": { "alias": null, "disabled": false, - "index": "1758cdb8-4b54-4d8b-8eb5-0d6147c7e2b8", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "03d0f507-3502-4bd6-a3aa-64a72908bffa", + "index": "496d9fa2-0223-43e6-8a95-983eefd1bd57", "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", "negate": false, "type": "exists", @@ -1104,8 +992,7 @@ }, "panelIndex": "2fa13b32-c544-45f7-9132-620d09d121eb", "title": "Top Resource Groups", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1118,12 +1005,7 @@ }, { "id": "logs-*", - "name": "7e5984b1-1414-4782-8d24-907475f8956d", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "03d08e1b-1a39-4d2e-b1db-72919c126cdd", + "name": "a83a3538-d586-48e4-a46e-81cd72d0d47d", "type": "index-pattern" } ], @@ -1193,28 +1075,7 @@ "meta": { "alias": null, "disabled": false, - "index": "7e5984b1-1414-4782-8d24-907475f8956d", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "03d08e1b-1a39-4d2e-b1db-72919c126cdd", + "index": "a83a3538-d586-48e4-a46e-81cd72d0d47d", "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", "negate": false, "type": "exists", @@ -1230,7 +1091,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" " + "query": "" }, "visualization": { "layers": [ @@ -1280,8 +1141,7 @@ }, "panelIndex": "84583e62-1aad-4f03-a25a-c4f9eaace8c0", "title": "Resource Type Breakdown", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1294,12 +1154,7 @@ }, { "id": "logs-*", - "name": "127fec24-6d09-4344-8dbb-4ec60c80b71a", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "0210bb98-e504-48c4-86af-21ad053e219e", + "name": "fb5766ff-1474-4729-82d0-fba4b3e17835", "type": "index-pattern" } ], @@ -1398,28 +1253,7 @@ "meta": { "alias": null, "disabled": false, - "index": "127fec24-6d09-4344-8dbb-4ec60c80b71a", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "0210bb98-e504-48c4-86af-21ad053e219e", + "index": "fb5766ff-1474-4729-82d0-fba4b3e17835", "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", "negate": false, "type": "exists", @@ -1520,8 +1354,7 @@ }, "panelIndex": "1a6dce1d-d039-4d18-87c7-1b700da676c2", "title": "Resource Creations ", - "type": "lens", - "version": "8.6.0" + "type": "lens" }, { "embeddableConfig": { @@ -1534,12 +1367,7 @@ }, { "id": "logs-*", - "name": "a40777c6-7249-462f-92ec-2327b50aacba", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "eac9b696-62ac-4ab3-b946-9c0bbb43c359", + "name": "6dc8cbed-dbe0-4071-8154-d40d1f17eedf", "type": "index-pattern" } ], @@ -1638,28 +1466,7 @@ "meta": { "alias": null, "disabled": false, - "index": "a40777c6-7249-462f-92ec-2327b50aacba", - "key": "data_stream.dataset", - "negate": false, - "params": { - "query": "azure.activitylogs" - }, - "type": "phrase" - }, - "query": { - "match_phrase": { - "data_stream.dataset": "azure.activitylogs" - } - } - }, - { - "$state": { - "store": "appState" - }, - "meta": { - "alias": null, - "disabled": false, - "index": "eac9b696-62ac-4ab3-b946-9c0bbb43c359", + "index": "6dc8cbed-dbe0-4071-8154-d40d1f17eedf", "key": "azure.activitylogs.identity.claims_initiated_by_user.fullname", "negate": false, "type": "exists", @@ -1675,7 +1482,7 @@ "internalReferences": [], "query": { "language": "kuery", - "query": "data_stream.dataset :\"azure.activitylogs\" " + "query": "" }, "visualization": { "axisTitlesVisibilitySettings": { @@ -1760,34 +1567,31 @@ }, "panelIndex": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0", "title": "Resource Deletions", - "type": "lens", - "version": "8.6.0" + "type": "lens" } ], "timeRestore": false, "title": "[Logs Azure] User Activity", "version": 1 }, - "coreMigrationVersion": "8.6.0", - "created_at": "2023-06-07T13:49:21.273Z", + "coreMigrationVersion": "8.8.0", + "created_at": "2024-04-19T09:21:59.836Z", "id": "azure-87095750-f05a-11e9-90ec-112a988266d5", - "migrationVersion": { - "dashboard": "8.6.0" - }, + "managed": false, "references": [ { "id": "logs-*", - "name": "5774219c-fb45-4480-bdfb-75a69bdc2cfe:indexpattern-datasource-layer-7f7ccf49-4873-4a2b-b615-0a67f367774f", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", "type": "index-pattern" }, { "id": "logs-*", - "name": "5774219c-fb45-4480-bdfb-75a69bdc2cfe:46b00978-7a77-4b60-85dc-b53e334e2386", + "name": "5774219c-fb45-4480-bdfb-75a69bdc2cfe:indexpattern-datasource-layer-7f7ccf49-4873-4a2b-b615-0a67f367774f", "type": "index-pattern" }, { "id": "logs-*", - "name": "5774219c-fb45-4480-bdfb-75a69bdc2cfe:2e02517f-abc4-4003-943d-5f4ae7e3c07f", + "name": "5774219c-fb45-4480-bdfb-75a69bdc2cfe:17ae33ad-8c73-43c0-a98c-919d0136bc86", "type": "index-pattern" }, { @@ -1797,17 +1601,12 @@ }, { "id": "logs-*", - "name": "97001cce-7254-443e-a12f-69b13fbd4811:4c411ab1-7ad3-4a76-b7a9-1651024d677c", + "name": "97001cce-7254-443e-a12f-69b13fbd4811:15e44f13-fd26-4713-a210-a7ac113fa543", "type": "index-pattern" }, { "id": "logs-*", - "name": "97001cce-7254-443e-a12f-69b13fbd4811:d6f82592-f7c5-417c-9c6b-4baf98a14e1b", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "97001cce-7254-443e-a12f-69b13fbd4811:65122896-581f-4712-b370-c32b0f04e3f2", + "name": "97001cce-7254-443e-a12f-69b13fbd4811:9d1fd2ff-ed91-4066-860c-f9da2391405f", "type": "index-pattern" }, { @@ -1817,12 +1616,7 @@ }, { "id": "logs-*", - "name": "d4d708e1-d179-4688-8005-54e2162a82d2:f0bae95f-7561-4f8a-b80f-54ea63459dcb", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "d4d708e1-d179-4688-8005-54e2162a82d2:e4acd1ff-82be-4e50-9679-990da4074530", + "name": "d4d708e1-d179-4688-8005-54e2162a82d2:e8da4285-166d-453c-85a5-a527cf5a6831", "type": "index-pattern" }, { @@ -1832,12 +1626,7 @@ }, { "id": "logs-*", - "name": "73dbda75-6315-4152-824d-9536650af773:4cd4db41-bd1a-452b-b25b-63d014fe8c93", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "73dbda75-6315-4152-824d-9536650af773:6b474125-fbda-410f-be57-c07b43690dc7", + "name": "73dbda75-6315-4152-824d-9536650af773:98f5d219-7169-41fd-a0aa-5cf07fbfefb5", "type": "index-pattern" }, { @@ -1847,12 +1636,7 @@ }, { "id": "logs-*", - "name": "2fa13b32-c544-45f7-9132-620d09d121eb:1758cdb8-4b54-4d8b-8eb5-0d6147c7e2b8", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "2fa13b32-c544-45f7-9132-620d09d121eb:03d0f507-3502-4bd6-a3aa-64a72908bffa", + "name": "2fa13b32-c544-45f7-9132-620d09d121eb:496d9fa2-0223-43e6-8a95-983eefd1bd57", "type": "index-pattern" }, { @@ -1862,12 +1646,7 @@ }, { "id": "logs-*", - "name": "84583e62-1aad-4f03-a25a-c4f9eaace8c0:7e5984b1-1414-4782-8d24-907475f8956d", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "84583e62-1aad-4f03-a25a-c4f9eaace8c0:03d08e1b-1a39-4d2e-b1db-72919c126cdd", + "name": "84583e62-1aad-4f03-a25a-c4f9eaace8c0:a83a3538-d586-48e4-a46e-81cd72d0d47d", "type": "index-pattern" }, { @@ -1877,12 +1656,7 @@ }, { "id": "logs-*", - "name": "1a6dce1d-d039-4d18-87c7-1b700da676c2:127fec24-6d09-4344-8dbb-4ec60c80b71a", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "1a6dce1d-d039-4d18-87c7-1b700da676c2:0210bb98-e504-48c4-86af-21ad053e219e", + "name": "1a6dce1d-d039-4d18-87c7-1b700da676c2:fb5766ff-1474-4729-82d0-fba4b3e17835", "type": "index-pattern" }, { @@ -1892,12 +1666,7 @@ }, { "id": "logs-*", - "name": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0:a40777c6-7249-462f-92ec-2327b50aacba", - "type": "index-pattern" - }, - { - "id": "logs-*", - "name": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0:eac9b696-62ac-4ab3-b946-9c0bbb43c359", + "name": "8fddd3bb-c1e6-4533-b075-1ab7361b3af0:6dc8cbed-dbe0-4071-8154-d40d1f17eedf", "type": "index-pattern" }, { @@ -1911,5 +1680,6 @@ "type": "index-pattern" } ], - "type": "dashboard" + "type": "dashboard", + "typeMigrationVersion": "8.9.0" } \ No newline at end of file diff --git a/packages/azure/manifest.yml b/packages/azure/manifest.yml index d1eed1b3afdf..5c2cbec7c96c 100644 --- a/packages/azure/manifest.yml +++ b/packages/azure/manifest.yml @@ -1,6 +1,6 @@ name: azure title: Azure Logs -version: 1.13.1 +version: 1.14.0 description: This Elastic integration collects logs from Azure type: integration icons: From 11aa6d4577cec1c4b8a1906b14b7d9c6f4c5478e Mon Sep 17 00:00:00 2001 From: Krishna Chaitanya Reddy Burri Date: Tue, 6 Aug 2024 11:44:25 +0530 Subject: [PATCH 30/77] pipeline tests - Ignore url.extension for ES < 8.14 (#10685) Extension to #9623 Ignore the existence of an invalid url.extension field. Stack versions < 8.14 had a bug that populated the field with bad data. After a package uses a minimum stack version of 8.14.0 then this addition to dynamic_fields can be removed. This fixes errors like this which occur under v8.14.0+ +++ got @@ -1797,7 +1797,6 @@ "preserve_duplicate_custom_fields" ], "url": { - "extension": "com/page", "original": "www.example.com/page", "path": "www.example.com/page" } Relates: elastic/elasticsearch#105689 --- .../log/_dev/test/pipeline/test-common-config.yml | 5 +++++ .../event/_dev/test/pipeline/test-common-config.yml | 5 +++++ .../sandbox_report/_dev/test/pipeline/test-common-config.yml | 5 +++++ .../web/_dev/test/pipeline/test-common-config.yml | 5 +++++ 4 files changed, 20 insertions(+) diff --git a/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-common-config.yml b/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-common-config.yml index be41bb0d4766..36106b22efb6 100644 --- a/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-common-config.yml +++ b/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-common-config.yml @@ -2,3 +2,8 @@ fields: tags: - preserve_original_event - preserve_duplicate_custom_fields + +dynamic_fields: + # This can be removed after ES 8.14 is the minimum version. + # Relates: https://github.com/elastic/elasticsearch/pull/105689 + url.extension: '^.*$' diff --git a/packages/prisma_access/data_stream/event/_dev/test/pipeline/test-common-config.yml b/packages/prisma_access/data_stream/event/_dev/test/pipeline/test-common-config.yml index be41bb0d4766..36106b22efb6 100644 --- a/packages/prisma_access/data_stream/event/_dev/test/pipeline/test-common-config.yml +++ b/packages/prisma_access/data_stream/event/_dev/test/pipeline/test-common-config.yml @@ -2,3 +2,8 @@ fields: tags: - preserve_original_event - preserve_duplicate_custom_fields + +dynamic_fields: + # This can be removed after ES 8.14 is the minimum version. + # Relates: https://github.com/elastic/elasticsearch/pull/105689 + url.extension: '^.*$' diff --git a/packages/zscaler_zia/data_stream/sandbox_report/_dev/test/pipeline/test-common-config.yml b/packages/zscaler_zia/data_stream/sandbox_report/_dev/test/pipeline/test-common-config.yml index be41bb0d4766..36106b22efb6 100644 --- a/packages/zscaler_zia/data_stream/sandbox_report/_dev/test/pipeline/test-common-config.yml +++ b/packages/zscaler_zia/data_stream/sandbox_report/_dev/test/pipeline/test-common-config.yml @@ -2,3 +2,8 @@ fields: tags: - preserve_original_event - preserve_duplicate_custom_fields + +dynamic_fields: + # This can be removed after ES 8.14 is the minimum version. + # Relates: https://github.com/elastic/elasticsearch/pull/105689 + url.extension: '^.*$' diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-common-config.yml b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-common-config.yml index be41bb0d4766..36106b22efb6 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-common-config.yml +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-common-config.yml @@ -2,3 +2,8 @@ fields: tags: - preserve_original_event - preserve_duplicate_custom_fields + +dynamic_fields: + # This can be removed after ES 8.14 is the minimum version. + # Relates: https://github.com/elastic/elasticsearch/pull/105689 + url.extension: '^.*$' From bc2c24ab59dbf026965cabb13aadaeb13ccc5fe0 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Chema=20Mart=C3=ADnez?= Date: Tue, 6 Aug 2024 08:28:49 +0200 Subject: [PATCH 31/77] Deprecate SQS queue global setting (#10672) Recent tests and reports have revealed that using the same SQS queue for multiple data streams results in data loss even with a very low event load. For this reason, this pull request updates the affected integrations by forcing users to configure a separate SQS queue for each enabled data stream, as well as updating the related documentation for their knowledge. --- .../_dev/build/docs/README.md | 23 ++++++++------- packages/carbon_black_cloud/changelog.yml | 5 ++++ .../data_stream/alert/manifest.yml | 4 +-- .../data_stream/alert_v7/manifest.yml | 4 +-- .../data_stream/endpoint_event/manifest.yml | 4 +-- .../data_stream/watchlist_hit/manifest.yml | 4 +-- packages/carbon_black_cloud/docs/README.md | 22 ++++++++------ packages/carbon_black_cloud/manifest.yml | 12 +------- .../_dev/build/docs/README.md | 29 ++++++++++--------- packages/cloudflare_logpush/changelog.yml | 5 ++++ .../data_stream/access_request/manifest.yml | 4 +-- .../data_stream/audit/manifest.yml | 4 +-- .../data_stream/casb/manifest.yml | 4 +-- .../data_stream/device_posture/manifest.yml | 4 +-- .../data_stream/dns/manifest.yml | 4 +-- .../data_stream/dns_firewall/manifest.yml | 4 +-- .../data_stream/firewall_event/manifest.yml | 4 +-- .../data_stream/gateway_dns/manifest.yml | 4 +-- .../data_stream/gateway_http/manifest.yml | 4 +-- .../data_stream/gateway_network/manifest.yml | 4 +-- .../data_stream/http_request/manifest.yml | 4 +-- .../data_stream/magic_ids/manifest.yml | 4 +-- .../data_stream/nel_report/manifest.yml | 4 +-- .../network_analytics/manifest.yml | 4 +-- .../data_stream/network_session/manifest.yml | 4 +-- .../data_stream/sinkhole_http/manifest.yml | 4 +-- .../data_stream/spectrum_event/manifest.yml | 4 +-- .../data_stream/workers_trace/manifest.yml | 4 +-- packages/cloudflare_logpush/docs/README.md | 29 ++++++++++--------- packages/cloudflare_logpush/manifest.yml | 9 +----- .../jamf_protect/_dev/build/docs/README.md | 18 ++++++++++++ packages/jamf_protect/changelog.yml | 5 ++++ .../data_stream/alerts/manifest.yml | 4 +-- .../data_stream/telemetry/manifest.yml | 4 +-- .../agent/stream/aws-s3.yml.hbs | 4 +-- .../data_stream/telemetry_legacy/manifest.yml | 4 +-- .../web_threat_events/manifest.yml | 4 +-- .../web_traffic_events/manifest.yml | 4 +-- packages/jamf_protect/docs/README.md | 18 ++++++++++++ packages/jamf_protect/manifest.yml | 9 +----- 40 files changed, 168 insertions(+), 128 deletions(-) diff --git a/packages/carbon_black_cloud/_dev/build/docs/README.md b/packages/carbon_black_cloud/_dev/build/docs/README.md index a1a7c4b60b5f..4e68c872191b 100644 --- a/packages/carbon_black_cloud/_dev/build/docs/README.md +++ b/packages/carbon_black_cloud/_dev/build/docs/README.md @@ -31,7 +31,7 @@ This module has been tested against `Alerts API (v7) [Beta]`, `Alerts API (v6)`, ### In order to ingest data from the AWS S3 bucket you must: 1. Configure the [Data Forwarder](https://docs.vmware.com/en/VMware-Carbon-Black-Cloud/services/carbon-black-cloud-user-guide/GUID-F68F63DD-2271-4088-82C9-71D675CD0535.html) to ingest data into an AWS S3 bucket. 2. Create an [AWS Access Keys and Secret Access Keys](https://docs.aws.amazon.com/general/latest/gr/aws-sec-cred-types.html#access-keys-and-secret-access-keys). -3. The default value of the "Bucket List Prefix" is listed below. However, the user can set the parameter "Bucket List Prefix" according to the requirement. +3. The default values of the "Bucket List Prefix" are listed below. However, users can set the parameter "Bucket List Prefix" according to their requirements. | Data Stream Name | Bucket List Prefix | | ----------------- | ---------------------- | @@ -42,17 +42,20 @@ This module has been tested against `Alerts API (v7) [Beta]`, `Alerts API (v6)`, ### To collect data from AWS SQS, follow the below steps: 1. If data forwarding to an AWS S3 Bucket hasn't been configured, then first setup an AWS S3 Bucket as mentioned in the above documentation. -2. To set up an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). - - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. -3. Set up event notification for an S3 bucket. Follow this [Link](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). - - The user has to perform Step 3 for all the data streams individually, and each time prefix parameter should be set the same as the S3 Bucket List Prefix as created earlier. (for example, `alert_logs/` for the alert data stream.) - - For all the event notifications that have been created, select the event type as s3:ObjectCreated:*, select the destination type SQS Queue, and select the queue that has been created in Step 2. +2. Follow the steps below for each data stream that has been enabled: + 1. Create an SQS queue + - To setup an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Amazon documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). + - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. + 2. Setup event notification from the S3 bucket using the instructions [here](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). Use the following settings: + - Event type: `All object create events` (`s3:ObjectCreated:*`) + - Destination: SQS Queue + - Prefix (filter): enter the prefix for this data stream, e.g. `alert_logs/` + - Select the SQS queue that has been created for this data stream **Note**: - - Credentials for the above AWS S3 and SQS input types should be configured using the [link](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#aws-credentials-config). + - A separate SQS queue and S3 bucket notification is required for each enabled data stream. + - Permissions for the above AWS S3 bucket and SQS queues should be configured according to the [Filebeat S3 input documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#_aws_permissions_2) - Data collection via AWS S3 Bucket and AWS SQS are mutually exclusive in this case. - - When configuring SQS queues, separate queues should be used for each data stream instead of the global SQS queue from version 1.21 onwards to avoid data - loss. File selectors should not be used to filter out data stream logs using the global queue as it was in versions prior. ### In order to ingest data from the APIs you must generate API keys and API Secret Keys: 1. In Carbon Black Cloud, On the left navigation pane, click **Settings > API Access**. @@ -127,4 +130,4 @@ This is the `asset_vulnerability_summary` dataset. {{event "asset_vulnerability_summary"}} -{{fields "asset_vulnerability_summary"}} \ No newline at end of file +{{fields "asset_vulnerability_summary"}} diff --git a/packages/carbon_black_cloud/changelog.yml b/packages/carbon_black_cloud/changelog.yml index bc4b9e930828..ce49c66a74e8 100644 --- a/packages/carbon_black_cloud/changelog.yml +++ b/packages/carbon_black_cloud/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.4.0" + changes: + - description: Deprecate global SQS Queue URL to avoid data loss. + type: bugfix + link: https://github.com/elastic/integrations/pull/10672 - version: "2.3.0" changes: - description: Improve error reporting for API request failures. diff --git a/packages/carbon_black_cloud/data_stream/alert/manifest.yml b/packages/carbon_black_cloud/data_stream/alert/manifest.yml index 7521479232ae..e26492ade740 100644 --- a/packages/carbon_black_cloud/data_stream/alert/manifest.yml +++ b/packages/carbon_black_cloud/data_stream/alert/manifest.yml @@ -62,13 +62,13 @@ streams: vars: - name: queue_url_alert type: text - title: "[Alert][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true description: |- URL of the AWS SQS queue that messages will be received from. This is only required if you want to collect logs via AWS SQS. - This is an alert data stream specific queue URL. This will override the global queue URL if provided. + This is an alert data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream. - name: bucket_list_prefix type: text title: "[S3] Bucket Prefix" diff --git a/packages/carbon_black_cloud/data_stream/alert_v7/manifest.yml b/packages/carbon_black_cloud/data_stream/alert_v7/manifest.yml index d3aea7ba4903..4b57708a8115 100644 --- a/packages/carbon_black_cloud/data_stream/alert_v7/manifest.yml +++ b/packages/carbon_black_cloud/data_stream/alert_v7/manifest.yml @@ -62,13 +62,13 @@ streams: vars: - name: queue_url_alert type: text - title: "[Alert][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true description: |- URL of the AWS SQS queue that messages will be received from. This is only required if you want to collect logs via AWS SQS. - This is an alert data stream specific queue URL. This will override the global queue URL if provided. + This is an alert data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream. - name: bucket_list_prefix type: text title: "[S3] Bucket Prefix" diff --git a/packages/carbon_black_cloud/data_stream/endpoint_event/manifest.yml b/packages/carbon_black_cloud/data_stream/endpoint_event/manifest.yml index 17a921e34660..b258e250f875 100644 --- a/packages/carbon_black_cloud/data_stream/endpoint_event/manifest.yml +++ b/packages/carbon_black_cloud/data_stream/endpoint_event/manifest.yml @@ -8,13 +8,13 @@ streams: vars: - name: queue_url_endpoint_event type: text - title: "[Endpoint Event][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true description: |- URL of the AWS SQS queue that messages will be received from. This is only required if you want to collect logs via AWS SQS. - This is an endpoint event data stream specific queue URL. This will override the global queue URL if provided. + This is an endpoint event data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream. - name: bucket_list_prefix type: text title: "[S3] Bucket Prefix" diff --git a/packages/carbon_black_cloud/data_stream/watchlist_hit/manifest.yml b/packages/carbon_black_cloud/data_stream/watchlist_hit/manifest.yml index 7f859df620f2..717f0f38075b 100644 --- a/packages/carbon_black_cloud/data_stream/watchlist_hit/manifest.yml +++ b/packages/carbon_black_cloud/data_stream/watchlist_hit/manifest.yml @@ -8,13 +8,13 @@ streams: vars: - name: queue_url_watchlist_hit type: text - title: "[Watchlist Hit][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true description: |- URL of the AWS SQS queue that messages will be received from. This is only required if you want to collect logs via AWS SQS. - This is a watchlist hit data stream specific queue URL. This will override the global queue URL if provided. + This is a watchlist hit data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream. - name: bucket_list_prefix type: text title: "[S3] Bucket Prefix" diff --git a/packages/carbon_black_cloud/docs/README.md b/packages/carbon_black_cloud/docs/README.md index 409c00a07292..e89a57903b71 100644 --- a/packages/carbon_black_cloud/docs/README.md +++ b/packages/carbon_black_cloud/docs/README.md @@ -31,7 +31,7 @@ This module has been tested against `Alerts API (v7) [Beta]`, `Alerts API (v6)`, ### In order to ingest data from the AWS S3 bucket you must: 1. Configure the [Data Forwarder](https://docs.vmware.com/en/VMware-Carbon-Black-Cloud/services/carbon-black-cloud-user-guide/GUID-F68F63DD-2271-4088-82C9-71D675CD0535.html) to ingest data into an AWS S3 bucket. 2. Create an [AWS Access Keys and Secret Access Keys](https://docs.aws.amazon.com/general/latest/gr/aws-sec-cred-types.html#access-keys-and-secret-access-keys). -3. The default value of the "Bucket List Prefix" is listed below. However, the user can set the parameter "Bucket List Prefix" according to the requirement. +3. The default values of the "Bucket List Prefix" are listed below. However, users can set the parameter "Bucket List Prefix" according to their requirements. | Data Stream Name | Bucket List Prefix | | ----------------- | ---------------------- | @@ -42,17 +42,20 @@ This module has been tested against `Alerts API (v7) [Beta]`, `Alerts API (v6)`, ### To collect data from AWS SQS, follow the below steps: 1. If data forwarding to an AWS S3 Bucket hasn't been configured, then first setup an AWS S3 Bucket as mentioned in the above documentation. -2. To set up an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). - - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. -3. Set up event notification for an S3 bucket. Follow this [Link](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). - - The user has to perform Step 3 for all the data streams individually, and each time prefix parameter should be set the same as the S3 Bucket List Prefix as created earlier. (for example, `alert_logs/` for the alert data stream.) - - For all the event notifications that have been created, select the event type as s3:ObjectCreated:*, select the destination type SQS Queue, and select the queue that has been created in Step 2. +2. Follow the steps below for each data stream that has been enabled: + 1. Create an SQS queue + - To setup an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Amazon documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). + - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. + 2. Setup event notification from the S3 bucket using the instructions [here](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). Use the following settings: + - Event type: `All object create events` (`s3:ObjectCreated:*`) + - Destination: SQS Queue + - Prefix (filter): enter the prefix for this data stream, e.g. `alert_logs/` + - Select the SQS queue that has been created for this data stream **Note**: - - Credentials for the above AWS S3 and SQS input types should be configured using the [link](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#aws-credentials-config). + - A separate SQS queue and S3 bucket notification is required for each enabled data stream. + - Permissions for the above AWS S3 bucket and SQS queues should be configured according to the [Filebeat S3 input documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#_aws_permissions_2) - Data collection via AWS S3 Bucket and AWS SQS are mutually exclusive in this case. - - When configuring SQS queues, separate queues should be used for each data stream instead of the global SQS queue from version 1.21 onwards to avoid data - loss. File selectors should not be used to filter out data stream logs using the global queue as it was in versions prior. ### In order to ingest data from the APIs you must generate API keys and API Secret Keys: 1. In Carbon Black Cloud, On the left navigation pane, click **Settings > API Access**. @@ -1190,3 +1193,4 @@ An example event for `asset_vulnerability_summary` looks as following: | host.os.codename | OS codename, if any. | keyword | | input.type | Input type | keyword | | log.offset | Log offset | long | + diff --git a/packages/carbon_black_cloud/manifest.yml b/packages/carbon_black_cloud/manifest.yml index 3d0d9cb4c3a7..90a46f3f3785 100644 --- a/packages/carbon_black_cloud/manifest.yml +++ b/packages/carbon_black_cloud/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: carbon_black_cloud title: VMware Carbon Black Cloud -version: "2.3.0" +version: "2.4.0" description: Collect logs from VMWare Carbon Black Cloud with Elastic Agent. type: integration categories: @@ -191,16 +191,6 @@ policy_templates: required: false show_user: true description: It is a required parameter for collecting logs via the AWS S3 Bucket. - - name: queue_url - type: text - title: "[Global][SQS] Queue URL" - multi: false - required: false - show_user: true - description: |- - URL of the AWS SQS queue that messages will be received from. - This is only required if you want to collect logs via AWS SQS. - This is a global queue URL, i.e this can be overridden by specific local queue URLs for each data stream if required. - name: access_key_id type: password title: Access Key ID diff --git a/packages/cloudflare_logpush/_dev/build/docs/README.md b/packages/cloudflare_logpush/_dev/build/docs/README.md index 86bccd77cfc5..f5429f0cdccf 100644 --- a/packages/cloudflare_logpush/_dev/build/docs/README.md +++ b/packages/cloudflare_logpush/_dev/build/docs/README.md @@ -66,8 +66,8 @@ This module has been tested against **Cloudflare version v4**. ## Setup ### To collect data from AWS S3 Bucket, follow the below steps: -- Configure the [Data Forwarder](https://developers.cloudflare.com/logs/get-started/enable-destinations/aws-s3/) to ingest data into an AWS S3 bucket. -- The default value of the "Bucket List Prefix" is listed below. However, the user can set the parameter "Bucket List Prefix" according to the requirement. +- Configure [Cloudflare Logpush to Amazon S3](https://developers.cloudflare.com/logs/get-started/enable-destinations/aws-s3/) to send Cloudflare's data to an AWS S3 bucket. +- The default values of the "Bucket List Prefix" are listed below. However, users can set the parameter "Bucket List Prefix" according to their requirements. | Data Stream Name | Bucket List Prefix | | -------------------------- | ---------------------- | @@ -91,19 +91,22 @@ This module has been tested against **Cloudflare version v4**. | Workers Trace Events | workers_trace | ### To collect data from AWS SQS, follow the below steps: -1. If data forwarding to an AWS S3 Bucket hasn't been configured, then first setup an AWS S3 Bucket as mentioned in the above documentation. -2. To setup an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). - - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. -3. Setup event notification for an S3 bucket. Follow this [Link](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). - - The user has to perform Step 3 for all the data-streams individually, and each time prefix parameter should be set the same as the S3 Bucket List Prefix as created earlier. (for example, `audit_logs/` for audit data stream.) - - For all the event notifications that have been created, select the event type as s3:ObjectCreated:*, select the destination type SQS Queue, and select the queue that has been created in Step 2. - -**Note**: +1. If Logpush forwarding to an AWS S3 Bucket hasn't been configured, then first setup an AWS S3 Bucket as mentioned in the above documentation. +2. Follow the steps below for each Logpush data stream that has been enabled: + 1. Create an SQS queue + - To setup an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Amazon documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). + - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. + 2. Setup event notification from the S3 bucket using the instructions [here](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). Use the following settings: + - Event type: `All object create events` (`s3:ObjectCreated:*`) + - Destination: SQS Queue + - Prefix (filter): enter the prefix for this Logpush data stream, e.g. `audit_logs/` + - Select the SQS queue that has been created for this data stream + + **Note**: + - A separate SQS queue and S3 bucket notification is required for each enabled data stream. + - Permissions for the above AWS S3 bucket and SQS queues should be configured according to the [Filebeat S3 input documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#_aws_permissions_2) - Credentials for the above AWS S3 and SQS input types should be configured using the [link](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#aws-credentials-config). - Data collection via AWS S3 Bucket and AWS SQS are mutually exclusive in this case. - - You can configure a global SQS queue for all data streams or a local SQS queue for each data stream. Configuring - data stream specific SQS queues will enable better performance and scalability. Data stream specific SQS queues - will always override any global queue definitions for that specific data stream. ### To collect data from Cloudflare R2 Buckets, follow the below steps: - Configure the [Data Forwarder](https://developers.cloudflare.com/logs/get-started/enable-destinations/r2/) to push logs to Cloudflare R2. diff --git a/packages/cloudflare_logpush/changelog.yml b/packages/cloudflare_logpush/changelog.yml index 4b9deb70e057..2c78f69b49c1 100644 --- a/packages/cloudflare_logpush/changelog.yml +++ b/packages/cloudflare_logpush/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.22.0" + changes: + - description: Deprecate global SQS Queue URL to avoid data loss. + type: bugfix + link: https://github.com/elastic/integrations/pull/10672 - version: "1.21.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/cloudflare_logpush/data_stream/access_request/manifest.yml b/packages/cloudflare_logpush/data_stream/access_request/manifest.yml index d5ae3eaa5122..cb5a5473aac2 100644 --- a/packages/cloudflare_logpush/data_stream/access_request/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/access_request/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_access_request type: text - title: "[Access Request][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Access Request data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Access Request data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/audit/manifest.yml b/packages/cloudflare_logpush/data_stream/audit/manifest.yml index ef114fa92a86..6f67cad27a2c 100644 --- a/packages/cloudflare_logpush/data_stream/audit/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/audit/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_audit type: text - title: "[Audit][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is an audit data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is an audit data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/casb/manifest.yml b/packages/cloudflare_logpush/data_stream/casb/manifest.yml index c139ef7de991..89c63fee2b45 100644 --- a/packages/cloudflare_logpush/data_stream/casb/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/casb/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_casb type: text - title: "[CASB Findings][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a CASB Findings data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a CASB Findings data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/device_posture/manifest.yml b/packages/cloudflare_logpush/data_stream/device_posture/manifest.yml index dcd8f8bf94f9..d2ed18430ed4 100644 --- a/packages/cloudflare_logpush/data_stream/device_posture/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/device_posture/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_device_posture type: text - title: "[Device Posture Results][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Device Posture Results data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Device Posture Results data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/dns/manifest.yml b/packages/cloudflare_logpush/data_stream/dns/manifest.yml index 9019d23ef571..fb7da08a2235 100644 --- a/packages/cloudflare_logpush/data_stream/dns/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/dns/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_dns type: text - title: "[DNS][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a dns data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a dns data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/dns_firewall/manifest.yml b/packages/cloudflare_logpush/data_stream/dns_firewall/manifest.yml index 7c65520f2860..a597da67b7fd 100644 --- a/packages/cloudflare_logpush/data_stream/dns_firewall/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/dns_firewall/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_dns_firewall type: text - title: "[DNS Firewall][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a DNS Firewall data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a DNS Firewall data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/firewall_event/manifest.yml b/packages/cloudflare_logpush/data_stream/firewall_event/manifest.yml index 3d1e6621f527..fa3707c3473c 100644 --- a/packages/cloudflare_logpush/data_stream/firewall_event/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/firewall_event/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_firewall_event type: text - title: "[Firewall Event][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a firewall event data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a firewall event data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/gateway_dns/manifest.yml b/packages/cloudflare_logpush/data_stream/gateway_dns/manifest.yml index 47fbe386d74a..c6304d7b7572 100644 --- a/packages/cloudflare_logpush/data_stream/gateway_dns/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/gateway_dns/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_gateway_dns type: text - title: "[Gateway DNS][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Gateway DNS data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Gateway DNS data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/gateway_http/manifest.yml b/packages/cloudflare_logpush/data_stream/gateway_http/manifest.yml index 5fd0825bdcc6..278723a5c4dc 100644 --- a/packages/cloudflare_logpush/data_stream/gateway_http/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/gateway_http/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_gateway_http type: text - title: "[Gateway HTTP][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Gateway HTTP data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Gateway HTTP data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/gateway_network/manifest.yml b/packages/cloudflare_logpush/data_stream/gateway_network/manifest.yml index 6cbfe6b1d277..ec738e06bb7f 100644 --- a/packages/cloudflare_logpush/data_stream/gateway_network/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/gateway_network/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_gateway_network type: text - title: "[Gateway Network][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Gateway Network data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Gateway Network data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/http_request/manifest.yml b/packages/cloudflare_logpush/data_stream/http_request/manifest.yml index 3f2630a09987..9564efc18ad8 100644 --- a/packages/cloudflare_logpush/data_stream/http_request/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/http_request/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_http_request type: text - title: "[HTTP Request][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a http request data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a http request data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/magic_ids/manifest.yml b/packages/cloudflare_logpush/data_stream/magic_ids/manifest.yml index 7b0c4b82e517..fc03a581cf91 100644 --- a/packages/cloudflare_logpush/data_stream/magic_ids/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/magic_ids/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_magic_ids type: text - title: "[Magic IDS][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Magic IDS data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Magic IDS data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/nel_report/manifest.yml b/packages/cloudflare_logpush/data_stream/nel_report/manifest.yml index b1f2c0b24687..70bd1077bf78 100644 --- a/packages/cloudflare_logpush/data_stream/nel_report/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/nel_report/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_nel_report type: text - title: "[NEL Report][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a nel report data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a nel report data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/network_analytics/manifest.yml b/packages/cloudflare_logpush/data_stream/network_analytics/manifest.yml index 0da7590652ff..a322a4f39e36 100644 --- a/packages/cloudflare_logpush/data_stream/network_analytics/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/network_analytics/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_network_analytics type: text - title: "[Network Analytics][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a network analytics data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a network analytics data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/network_session/manifest.yml b/packages/cloudflare_logpush/data_stream/network_session/manifest.yml index f87aeb2847ce..5e13b2be0111 100644 --- a/packages/cloudflare_logpush/data_stream/network_session/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/network_session/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_network_session type: text - title: "[Zero Trust Network Session][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Zero Trust Network Session data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Zero Trust Network Session data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/sinkhole_http/manifest.yml b/packages/cloudflare_logpush/data_stream/sinkhole_http/manifest.yml index 49ebe2c59cde..3c6c364d8434 100644 --- a/packages/cloudflare_logpush/data_stream/sinkhole_http/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/sinkhole_http/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_sinkhole_http type: text - title: "[Sinkhole HTTP][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Sinkhole HTTP data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Sinkhole HTTP data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/spectrum_event/manifest.yml b/packages/cloudflare_logpush/data_stream/spectrum_event/manifest.yml index 6611fce51228..07862e88f8c7 100644 --- a/packages/cloudflare_logpush/data_stream/spectrum_event/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/spectrum_event/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_spectrum_event type: text - title: "[Spectrum Event][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a spectrum event data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a spectrum event data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/data_stream/workers_trace/manifest.yml b/packages/cloudflare_logpush/data_stream/workers_trace/manifest.yml index 5ef099094402..f872eaf9499f 100644 --- a/packages/cloudflare_logpush/data_stream/workers_trace/manifest.yml +++ b/packages/cloudflare_logpush/data_stream/workers_trace/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_workers_trace type: text - title: "[Workers Trace Event][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Workers Trace Event data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Workers Trace Event data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/cloudflare_logpush/docs/README.md b/packages/cloudflare_logpush/docs/README.md index 5acdba78f8bd..59b507b62d59 100644 --- a/packages/cloudflare_logpush/docs/README.md +++ b/packages/cloudflare_logpush/docs/README.md @@ -66,8 +66,8 @@ This module has been tested against **Cloudflare version v4**. ## Setup ### To collect data from AWS S3 Bucket, follow the below steps: -- Configure the [Data Forwarder](https://developers.cloudflare.com/logs/get-started/enable-destinations/aws-s3/) to ingest data into an AWS S3 bucket. -- The default value of the "Bucket List Prefix" is listed below. However, the user can set the parameter "Bucket List Prefix" according to the requirement. +- Configure [Cloudflare Logpush to Amazon S3](https://developers.cloudflare.com/logs/get-started/enable-destinations/aws-s3/) to send Cloudflare's data to an AWS S3 bucket. +- The default values of the "Bucket List Prefix" are listed below. However, users can set the parameter "Bucket List Prefix" according to their requirements. | Data Stream Name | Bucket List Prefix | | -------------------------- | ---------------------- | @@ -91,19 +91,22 @@ This module has been tested against **Cloudflare version v4**. | Workers Trace Events | workers_trace | ### To collect data from AWS SQS, follow the below steps: -1. If data forwarding to an AWS S3 Bucket hasn't been configured, then first setup an AWS S3 Bucket as mentioned in the above documentation. -2. To setup an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). - - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. -3. Setup event notification for an S3 bucket. Follow this [Link](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). - - The user has to perform Step 3 for all the data-streams individually, and each time prefix parameter should be set the same as the S3 Bucket List Prefix as created earlier. (for example, `audit_logs/` for audit data stream.) - - For all the event notifications that have been created, select the event type as s3:ObjectCreated:*, select the destination type SQS Queue, and select the queue that has been created in Step 2. - -**Note**: +1. If Logpush forwarding to an AWS S3 Bucket hasn't been configured, then first setup an AWS S3 Bucket as mentioned in the above documentation. +2. Follow the steps below for each Logpush data stream that has been enabled: + 1. Create an SQS queue + - To setup an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Amazon documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). + - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. + 2. Setup event notification from the S3 bucket using the instructions [here](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). Use the following settings: + - Event type: `All object create events` (`s3:ObjectCreated:*`) + - Destination: SQS Queue + - Prefix (filter): enter the prefix for this Logpush data stream, e.g. `audit_logs/` + - Select the SQS queue that has been created for this data stream + + **Note**: + - A separate SQS queue and S3 bucket notification is required for each enabled data stream. + - Permissions for the above AWS S3 bucket and SQS queues should be configured according to the [Filebeat S3 input documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#_aws_permissions_2) - Credentials for the above AWS S3 and SQS input types should be configured using the [link](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#aws-credentials-config). - Data collection via AWS S3 Bucket and AWS SQS are mutually exclusive in this case. - - You can configure a global SQS queue for all data streams or a local SQS queue for each data stream. Configuring - data stream specific SQS queues will enable better performance and scalability. Data stream specific SQS queues - will always override any global queue definitions for that specific data stream. ### To collect data from Cloudflare R2 Buckets, follow the below steps: - Configure the [Data Forwarder](https://developers.cloudflare.com/logs/get-started/enable-destinations/r2/) to push logs to Cloudflare R2. diff --git a/packages/cloudflare_logpush/manifest.yml b/packages/cloudflare_logpush/manifest.yml index 5297d180aebb..a1502d6f0f77 100644 --- a/packages/cloudflare_logpush/manifest.yml +++ b/packages/cloudflare_logpush/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: cloudflare_logpush title: Cloudflare Logpush -version: "1.21.0" +version: "1.22.0" description: Collect and parse logs from Cloudflare API with Elastic Agent. type: integration categories: @@ -125,13 +125,6 @@ policy_templates: description: |- Cloudflare R2 is an S3-compatible, globally distributed object storage. This parameter can replace Bucket ARN with a Bucket Name for collecting logs from Cloudflare R2 or another 3rd party S3-compatible service. This is a global setting which can be overriden by specific local bucket names for each data stream if required. Using non-AWS S3 compatible buckets requires the use of Access Key ID and Secret Access Key for authentication. To specify the non-AWS S3 bucket name, use the non_aws_bucket_name config and the endpoint must be set to replace the default API endpoint. - - name: queue_url - type: text - title: "[Global][SQS] Queue URL" - multi: false - required: false - show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a global queue URL, i.e this can be overriden by specific local queue URLs for each data stream if required." - name: access_key_id type: password title: Access Key ID diff --git a/packages/jamf_protect/_dev/build/docs/README.md b/packages/jamf_protect/_dev/build/docs/README.md index e76ec4f8f011..875d74401f3e 100644 --- a/packages/jamf_protect/_dev/build/docs/README.md +++ b/packages/jamf_protect/_dev/build/docs/README.md @@ -79,6 +79,24 @@ For more information on configuring Jamf Protect, see - [Enabling Data Forwarding to AWS S3](https://learn.jamf.com/en-US/bundle/jamf-protect-documentation/page/Data_Forwarding_to_a_Third_Party_Storage_Solution.html#ariaid-title2) - [Configure Threat Event Stream](https://learn.jamf.com/en-US/bundle/jamf-protect-documentation/page/Configuring_the_Threat_Events_Stream_to_Send_Events_to_AWS_S3.html) +### To collect data from AWS SQS, follow the below steps: +1. If data forwarding to an AWS S3 Bucket hasn't been configured, then first setup an AWS S3 Bucket as mentioned in the above documentation. +2. Follow the steps below for each data stream that has been enabled: + 1. Create an SQS queue + - To setup an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Amazon documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). + - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. + 2. Setup event notification from the S3 bucket using the instructions [here](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). Use the following settings: + - Event type: `All object create events` (`s3:ObjectCreated:*`) + - Destination: SQS Queue + - Prefix (filter): enter the prefix for this data stream, e.g. `protect-/alerts/` + - Select the SQS queue that has been created for this data stream + + **Note**: + - A separate SQS queue and S3 bucket notification is required for each enabled data stream. + - Permissions for the above AWS S3 bucket and SQS queues should be configured according to the [Filebeat S3 input documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#_aws_permissions_2) + - Credentials for the above AWS S3 and SQS input types should be configured using the [link](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#aws-credentials-config). + - Data collection via AWS S3 Bucket and AWS SQS are mutually exclusive in this case. + **Copyright (c) 2024, Jamf Software, LLC. All rights reserved.** diff --git a/packages/jamf_protect/changelog.yml b/packages/jamf_protect/changelog.yml index b9b6de3e667d..78499987febb 100644 --- a/packages/jamf_protect/changelog.yml +++ b/packages/jamf_protect/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.3.0" + changes: + - description: Deprecate global SQS Queue URL to avoid data loss. + type: bugfix + link: https://github.com/elastic/integrations/pull/10672 - version: "2.2.0" changes: - description: Resolved issues for "authentication" and "btm_launch_item_add" events related to start_time renaming. Added new Dashboard for Telemetry data stream. diff --git a/packages/jamf_protect/data_stream/alerts/manifest.yml b/packages/jamf_protect/data_stream/alerts/manifest.yml index 814137c17cec..3f6a18f7bb60 100644 --- a/packages/jamf_protect/data_stream/alerts/manifest.yml +++ b/packages/jamf_protect/data_stream/alerts/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_alerts type: text - title: "[Alerts][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Alerts data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Alerts data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/jamf_protect/data_stream/telemetry/manifest.yml b/packages/jamf_protect/data_stream/telemetry/manifest.yml index 4db1c2ec9601..a64e15eeba03 100644 --- a/packages/jamf_protect/data_stream/telemetry/manifest.yml +++ b/packages/jamf_protect/data_stream/telemetry/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_telemetry type: text - title: "[Telemetry][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Telemetry data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Telemetry data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/jamf_protect/data_stream/telemetry_legacy/agent/stream/aws-s3.yml.hbs b/packages/jamf_protect/data_stream/telemetry_legacy/agent/stream/aws-s3.yml.hbs index 4b6c9a0ff805..de3cfe2b624c 100644 --- a/packages/jamf_protect/data_stream/telemetry_legacy/agent/stream/aws-s3.yml.hbs +++ b/packages/jamf_protect/data_stream/telemetry_legacy/agent/stream/aws-s3.yml.hbs @@ -38,8 +38,8 @@ non_aws_bucket_name: {{global_bucket_name}} {{else}} -{{#if queue_url_telemetry}} -queue_url: {{queue_url_telemetry}} +{{#if queue_url_telemetry_legacy}} +queue_url: {{queue_url_telemetry_legacy}} {{else if queue_url}} queue_url: {{queue_url}} {{/if}} diff --git a/packages/jamf_protect/data_stream/telemetry_legacy/manifest.yml b/packages/jamf_protect/data_stream/telemetry_legacy/manifest.yml index 00798f14d54e..c9448ea7d1e8 100644 --- a/packages/jamf_protect/data_stream/telemetry_legacy/manifest.yml +++ b/packages/jamf_protect/data_stream/telemetry_legacy/manifest.yml @@ -62,11 +62,11 @@ streams: vars: - name: queue_url_telemetry_legacy type: text - title: "[Telemetry][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Telemetry data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Telemetry data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/jamf_protect/data_stream/web_threat_events/manifest.yml b/packages/jamf_protect/data_stream/web_threat_events/manifest.yml index 6e290893b859..df37b36aa513 100644 --- a/packages/jamf_protect/data_stream/web_threat_events/manifest.yml +++ b/packages/jamf_protect/data_stream/web_threat_events/manifest.yml @@ -71,11 +71,11 @@ streams: vars: - name: queue_url_webthreats type: text - title: "[Telemetry][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Threat Events data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Threat Events data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/jamf_protect/data_stream/web_traffic_events/manifest.yml b/packages/jamf_protect/data_stream/web_traffic_events/manifest.yml index 3eabcd2efc87..06505547bd6e 100644 --- a/packages/jamf_protect/data_stream/web_traffic_events/manifest.yml +++ b/packages/jamf_protect/data_stream/web_traffic_events/manifest.yml @@ -71,11 +71,11 @@ streams: vars: - name: queue_url_webtraffic type: text - title: "[Web Traffic][SQS] Queue URL" + title: "[SQS] Queue URL" multi: false required: false show_user: true - description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Web Traffic data stream specific queue URL. This will override the global queue URL if provided." + description: "URL of the AWS SQS queue that messages will be received from.\nThis is only required if you want to collect logs via AWS SQS.\nThis is a Web Traffic data stream specific queue URL. In order to avoid data loss, do not configure the same SQS queue for more than one data stream." - name: bucket_list_prefix type: text title: '[S3] Bucket Prefix' diff --git a/packages/jamf_protect/docs/README.md b/packages/jamf_protect/docs/README.md index 230987658bd8..45bc2e2d0018 100644 --- a/packages/jamf_protect/docs/README.md +++ b/packages/jamf_protect/docs/README.md @@ -79,6 +79,24 @@ For more information on configuring Jamf Protect, see - [Enabling Data Forwarding to AWS S3](https://learn.jamf.com/en-US/bundle/jamf-protect-documentation/page/Data_Forwarding_to_a_Third_Party_Storage_Solution.html#ariaid-title2) - [Configure Threat Event Stream](https://learn.jamf.com/en-US/bundle/jamf-protect-documentation/page/Configuring_the_Threat_Events_Stream_to_Send_Events_to_AWS_S3.html) +### To collect data from AWS SQS, follow the below steps: +1. If data forwarding to an AWS S3 Bucket hasn't been configured, then first setup an AWS S3 Bucket as mentioned in the above documentation. +2. Follow the steps below for each data stream that has been enabled: + 1. Create an SQS queue + - To setup an SQS queue, follow "Step 1: Create an Amazon SQS queue" mentioned in the [Amazon documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/ways-to-add-notification-config-to-bucket.html). + - While creating an SQS Queue, please provide the same bucket ARN that has been generated after creating an AWS S3 Bucket. + 2. Setup event notification from the S3 bucket using the instructions [here](https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-event-notifications.html). Use the following settings: + - Event type: `All object create events` (`s3:ObjectCreated:*`) + - Destination: SQS Queue + - Prefix (filter): enter the prefix for this data stream, e.g. `protect-/alerts/` + - Select the SQS queue that has been created for this data stream + + **Note**: + - A separate SQS queue and S3 bucket notification is required for each enabled data stream. + - Permissions for the above AWS S3 bucket and SQS queues should be configured according to the [Filebeat S3 input documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#_aws_permissions_2) + - Credentials for the above AWS S3 and SQS input types should be configured using the [link](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-aws-s3.html#aws-credentials-config). + - Data collection via AWS S3 Bucket and AWS SQS are mutually exclusive in this case. + **Copyright (c) 2024, Jamf Software, LLC. All rights reserved.** diff --git a/packages/jamf_protect/manifest.yml b/packages/jamf_protect/manifest.yml index 3925dbe4a476..b6d6ba28fffa 100644 --- a/packages/jamf_protect/manifest.yml +++ b/packages/jamf_protect/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.3 name: jamf_protect title: Jamf Protect -version: "2.2.0" +version: "2.3.0" description: Receives events from Jamf Protect with Elastic Agent. type: integration categories: @@ -97,13 +97,6 @@ policy_templates: description: |- Jamf Protect is an S3-compatible, globally distributed object storage. This parameter can replace Bucket ARN with a Bucket Name for collecting logs from Jamf Protect or another 3rd party S3-compatible service. This is a global setting which can be overriden by specific local bucket names for each data stream if required. Using non-AWS S3 compatible buckets requires the use of Access Key ID and Secret Access Key for authentication. To specify the non-AWS S3 bucket name, use the non_aws_bucket_name config and the endpoint must be set to replace the default API endpoint. - - name: queue_url - type: text - title: "[Global][SQS] Queue URL" - multi: false - required: false - show_user: true - description: "URL of the AWS SQS queue that messages will be received from. \nThis is only required if you want to collect logs via AWS SQS.\nThis is a global queue URL, i.e this can be overriden by specific local queue URLs for each data stream if required." - name: access_key_id type: password secret: true From 0e4459d5ccd7c66bc7de7d9a49015a127ca87f54 Mon Sep 17 00:00:00 2001 From: Krishna Chaitanya Reddy Burri Date: Tue, 6 Aug 2024 12:27:35 +0530 Subject: [PATCH 32/77] azure_frontdoor: Add identity field to access and waf datastreams. (#10689) Add `identity` field to access and waf datastreams. The field can be string or object. If it is string, the field is renamed to `identity_name`. Otherwise it is stored as an object. - User fields are derived from `identity` field. - URL fields are derived using `uri_parts`. - Dynamic fields config on `url.extension` is added to pipeline test config to prevent flaky test issue when running with stack > 8.14+. --- packages/azure_frontdoor/changelog.yml | 5 + .../_dev/test/pipeline/test-common-config.yml | 3 + .../_dev/test/pipeline/test-fdaccess.log | 5 +- .../pipeline/test-fdaccess.log-expected.json | 440 +++++++++++++++++- .../elasticsearch/ingest_pipeline/default.yml | 144 ++++++ .../data_stream/access/fields/fields.yml | 74 +++ .../_dev/test/pipeline/test-common-config.yml | 3 + .../waf/_dev/test/pipeline/test-fdwaf.log | 5 +- .../pipeline/test-fdwaf.log-expected.json | 341 +++++++++++++- .../elasticsearch/ingest_pipeline/default.yml | 145 ++++++ .../data_stream/waf/fields/fields.yml | 74 +++ packages/azure_frontdoor/docs/README.md | 30 ++ packages/azure_frontdoor/manifest.yml | 2 +- 13 files changed, 1263 insertions(+), 8 deletions(-) diff --git a/packages/azure_frontdoor/changelog.yml b/packages/azure_frontdoor/changelog.yml index 8ac051e2d319..e279810bc324 100644 --- a/packages/azure_frontdoor/changelog.yml +++ b/packages/azure_frontdoor/changelog.yml @@ -1,3 +1,8 @@ +- version: "1.9.0" + changes: + - description: Add new field identity. + type: enhancement + link: https://github.com/elastic/integrations/pull/10689 - version: "1.8.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-common-config.yml b/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-common-config.yml index 3876aed299ef..1b4ceabbb1b7 100644 --- a/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-common-config.yml +++ b/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-common-config.yml @@ -1,5 +1,8 @@ dynamic_fields: "event.ingested": ".*" + # This can be removed after ES 8.14 is the minimum version. + # Relates: https://github.com/elastic/elasticsearch/pull/105689 + url.extension: '^.*$' fields: tags: - preserve_original_event diff --git a/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-fdaccess.log b/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-fdaccess.log index d2235f2240a4..fc6ed2382a0d 100644 --- a/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-fdaccess.log +++ b/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-fdaccess.log @@ -1,4 +1,7 @@ {"category":"FrontdoorAccessLog","operationName":"Microsoft.Network/FrontDoor/AccessLog/Write","properties":{"ErrorInfo":"NoError","backendHostname":"samplev6erp.azurewebsites.net:443","cacheStatus":"CONFIG_NOCACHE","clientIp":"89.160.20.128","clientPort":"50382","httpMethod":"POST","httpStatusCode":"200","httpStatusDetails":"200","httpVersion":"2.0.0.0","isReceivedFromClient":true,"pop":"SIN","requestBytes":"2545","requestProtocol":"HTTPS","requestUri":"https://erp.testcloud.com:443/StockSetup/GetStockListByCir","responseBytes":"1205","routingRuleName":"erp","rulesEngineMatchNames":[],"securityProtocol":"TLS 1.2","socketIp":"89.160.20.128","timeTaken":"0.384","timeToFirstByte":"0.384","trackingReference":"0k1y5YQAAAAAWd0Uc6UcnR7WN8uo2prYZU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=","userAgent":"Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36"},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2021-12-15T03:10:11.6479719Z"} {"category":"FrontdoorAccessLog","operationName":"Microsoft.Network/FrontDoor/AccessLog/Write","properties":{"ErrorInfo":"NoError","backendHostname":"samplev6erp.azurewebsites.net:443","cacheStatus":"CONFIG_NOCACHE","clientIp":"175.16.199.0","clientPort":"6610","httpMethod":"GET","httpStatusCode":"200","httpStatusDetails":"200","httpVersion":"2.0.0.0","isReceivedFromClient":true,"pop":"SIN","requestBytes":"1984","requestProtocol":"HTTPS","requestUri":"https://erp.testcloud.com:443/saleInvoice/readBySyskeySIByRoleAllowed/2112140619239361392","responseBytes":"2308","routingRuleName":"erp","rulesEngineMatchNames":[],"securityProtocol":"TLS 1.2","socketIp":"175.16.199.0","timeTaken":"0.122","timeToFirstByte":"0.122","trackingReference":"0lWK5YQAAAAD89Q/jewlnT7dWvZNIh72LU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=","userAgent":"Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36"},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2021-12-15T03:35:49.9266300Z"} {"category":"FrontdoorAccessLog","operationName":"Microsoft.Network/FrontDoor/AccessLog/Write","properties":{"ErrorInfo":"NoError","backendHostname":"samplev6erp.azurewebsites.net:443","cacheStatus":"CONFIG_NOCACHE","clientIp":"175.16.199.0","clientPort":"6610","httpMethod":"GET","httpStatusCode":"200","httpStatusDetails":"200","httpVersion":"2.0.0.0","isReceivedFromClient":true,"pop":"SIN","requestBytes":"1971","requestProtocol":"HTTPS","requestUri":"https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892","responseBytes":"637","routingRuleName":"erp","rulesEngineMatchNames":[],"securityProtocol":"TLS 1.2","socketIp":"175.16.199.0","timeTaken":"0.064","timeToFirstByte":"0.064","trackingReference":"0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=","userAgent":"Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36"},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2021-12-15T03:35:50.0584922Z"} -{''"records"'': [{"time":"2021-02-02T07:15:37.3640748Z","resourceId":"/SUBSCRIPTIONS/saDFEEQW-JESSIE","category":"FrontdoorAccessLog"}]} \ No newline at end of file +{"category":"FrontdoorAccessLog","operationName":"Microsoft.Network/FrontDoor/AccessLog/Write","properties":{"ErrorInfo":"NoError","backendHostname":"samplev6erp.azurewebsites.net:443","cacheStatus":"CONFIG_NOCACHE","clientIp":"175.16.199.1","clientPort":"6611","httpMethod":"GET","httpStatusCode":"200","httpStatusDetails":"200","httpVersion":"2.0.0.0","isReceivedFromClient":true,"pop":"SIN","requestBytes":"1971","requestProtocol":"HTTPS","requestUri":"https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892","responseBytes":"637","routingRuleName":"erp","rulesEngineMatchNames":[],"securityProtocol":"TLS 1.2","socketIp":"175.16.199.0","timeTaken":"0.064","timeToFirstByte":"0.064","trackingReference":"0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=","userAgent":"Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36"},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2024-07-15T03:35:50.0584922Z","identity":"bobert"} +{"category":"FrontdoorAccessLog","operationName":"Microsoft.Network/FrontDoor/AccessLog/Write","properties":{"ErrorInfo":"NoError","backendHostname":"samplev6erp.azurewebsites.net:443","cacheStatus":"CONFIG_NOCACHE","clientIp":"175.16.199.2","clientPort":"6612","httpMethod":"GET","httpStatusCode":"200","httpStatusDetails":"200","httpVersion":"2.0.0.0","isReceivedFromClient":true,"pop":"SIN","requestBytes":"1971","requestProtocol":"HTTPS","requestUri":"https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892","responseBytes":"637","routingRuleName":"erp","rulesEngineMatchNames":[],"securityProtocol":"TLS 1.2","socketIp":"175.16.199.0","timeTaken":"0.064","timeToFirstByte":"0.064","trackingReference":"0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=","userAgent":"Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36"},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2024-07-20T03:35:50.0584922Z","identity":{"authorization":{"scope":"/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841","action":"microsoft.support/supporttickets/write","evidence":{"role":"Subscription Admin"}},"claims":{"aud":"https://management.core.windows.net/","iss":"https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/","iat":"1421876371","nbf":"1421876371","exp":"1421880271","ver":"1.0","http://schemas.microsoft.com/identity/claims/tenantid":"00000000-0000-0000-0000-000000000000","http://schemas.microsoft.com/claims/authnmethodsreferences":"pwd","http://schemas.microsoft.com/identity/claims/objectidentifier":"2468adf0-8211-44e3-95xq-85137af64708","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn":"admin@contoso.com","puid":"20030000801A118C","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier":"9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname":"John","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname":"Smith","name":"John Smith","groups":"cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name":" admin@contoso.com","appid":"c44b4083-3bq0-49c1-b47d-974e53cbdf3c","appidacr":"2","http://schemas.microsoft.com/identity/claims/scope":"user_impersonation","http://schemas.microsoft.com/claims/authnclassreference":"1"}}} +{"category":"FrontdoorAccessLog","operationName":"Microsoft.Network/FrontDoor/AccessLog/Write","properties":{"ErrorInfo":"NoError","backendHostname":"samplev6erp.azurewebsites.net:443","cacheStatus":"CONFIG_NOCACHE","clientIp":"175.16.199.3","clientPort":"6613","httpMethod":"GET","httpStatusCode":"200","httpStatusDetails":"200","httpVersion":"2.0.0.0","isReceivedFromClient":true,"pop":"SIN","requestBytes":"1971","requestProtocol":"HTTPS","requestUri":"https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892","responseBytes":"637","routingRuleName":"erp","rulesEngineMatchNames":[],"securityProtocol":"TLS 1.2","socketIp":"175.16.199.0","timeTaken":"0.064","timeToFirstByte":"0.064","trackingReference":"0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=","userAgent":"Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36"},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2024-07-20T03:35:50.0584922Z","identity":{"authorization":{"scope":"/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841","action":"microsoft.support/supporttickets/write","evidence":{"principalId":"redacted","principalType":"ServicePrincipal","role":"Contributor","roleAssignmentId":"redacted","roleAssignmentScope":"/subscriptions/redacted","roleDefinitionId":"redacted"}},"claims":{"aud":"https://management.core.windows.net/","iss":"https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/","iat":"1421876371","nbf":"1421876371","exp":"1421880271","ver":"1.0","http://schemas.microsoft.com/identity/claims/tenantid":"00000000-0000-0000-0000-000000000000","http://schemas.microsoft.com/claims/authnmethodsreferences":"pwd","http://schemas.microsoft.com/identity/claims/objectidentifier":"2468adf0-8211-44e3-95xq-85137af64708","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn":"admin@contoso.com","puid":"20030000801A118C","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier":"9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname":"John","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname":"Smith","name":"John Smith","groups":"cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name":" admin@contoso.com","appid":"c44b4083-3bq0-49c1-b47d-974e53cbdf3c","appidacr":"2","http://schemas.microsoft.com/identity/claims/scope":"user_impersonation","http://schemas.microsoft.com/claims/authnclassreference":"1"}}} +{''"records"'': [{"time":"2021-02-02T07:15:37.3640748Z","resourceId":"/SUBSCRIPTIONS/saDFEEQW-JESSIE","category":"FrontdoorAccessLog"}]} diff --git a/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-fdaccess.log-expected.json b/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-fdaccess.log-expected.json index 0bda1148f300..6ad63fb013a3 100644 --- a/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-fdaccess.log-expected.json +++ b/packages/azure_frontdoor/data_stream/access/_dev/test/pipeline/test-fdaccess.log-expected.json @@ -84,7 +84,12 @@ "version_protocol": "TLS" }, "url": { - "original": "https://erp.testcloud.com:443/StockSetup/GetStockListByCir" + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/StockSetup/GetStockListByCir", + "original": "https://erp.testcloud.com:443/StockSetup/GetStockListByCir", + "path": "/StockSetup/GetStockListByCir", + "port": 443, + "scheme": "https" }, "user_agent": { "device": { @@ -178,7 +183,12 @@ "version_protocol": "TLS" }, "url": { - "original": "https://erp.testcloud.com:443/saleInvoice/readBySyskeySIByRoleAllowed/2112140619239361392" + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/saleInvoice/readBySyskeySIByRoleAllowed/2112140619239361392", + "original": "https://erp.testcloud.com:443/saleInvoice/readBySyskeySIByRoleAllowed/2112140619239361392", + "path": "/saleInvoice/readBySyskeySIByRoleAllowed/2112140619239361392", + "port": 443, + "scheme": "https" }, "user_agent": { "device": { @@ -272,7 +282,431 @@ "version_protocol": "TLS" }, "url": { - "original": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892" + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892", + "original": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892", + "path": "/Customer/searchContactList/2107050813256062892", + "port": 443, + "scheme": "https" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Chrome", + "original": "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36", + "os": { + "full": "Windows 7", + "name": "Windows", + "version": "7" + }, + "version": "96.0.4664.93" + } + }, + { + "@timestamp": "2024-07-15T03:35:50.058Z", + "azure": { + "frontdoor": { + "access": { + "backend_hostname": "samplev6erp.azurewebsites.net:443", + "cache_status": "CONFIG_NOCACHE", + "error_info": "NoError", + "identity_name": "bobert", + "is_received_from_client": true, + "pop": "SIN", + "routing_rule_name": "erp", + "rules_engine_match_names": [], + "time_taken": "0.064", + "time_to_first_byte": "0.064" + }, + "category": "FrontdoorAccessLog", + "operation_name": "Microsoft.Network/FrontDoor/AccessLog/Write", + "resource_id": "/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD", + "tracking_reference": "0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=" + } + }, + "client": { + "address": "175.16.199.0", + "ip": "175.16.199.1", + "port": 6611 + }, + "cloud": { + "provider": "azure" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "original": "{\"category\":\"FrontdoorAccessLog\",\"operationName\":\"Microsoft.Network/FrontDoor/AccessLog/Write\",\"properties\":{\"ErrorInfo\":\"NoError\",\"backendHostname\":\"samplev6erp.azurewebsites.net:443\",\"cacheStatus\":\"CONFIG_NOCACHE\",\"clientIp\":\"175.16.199.1\",\"clientPort\":\"6611\",\"httpMethod\":\"GET\",\"httpStatusCode\":\"200\",\"httpStatusDetails\":\"200\",\"httpVersion\":\"2.0.0.0\",\"isReceivedFromClient\":true,\"pop\":\"SIN\",\"requestBytes\":\"1971\",\"requestProtocol\":\"HTTPS\",\"requestUri\":\"https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892\",\"responseBytes\":\"637\",\"routingRuleName\":\"erp\",\"rulesEngineMatchNames\":[],\"securityProtocol\":\"TLS 1.2\",\"socketIp\":\"175.16.199.0\",\"timeTaken\":\"0.064\",\"timeToFirstByte\":\"0.064\",\"trackingReference\":\"0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=\",\"userAgent\":\"Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36\"},\"resourceId\":\"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD\",\"time\":\"2024-07-15T03:35:50.0584922Z\",\"identity\":\"bobert\"}", + "type": [ + "connection" + ] + }, + "http": { + "request": { + "bytes": 1971, + "method": "GET" + }, + "response": { + "bytes": 637, + "status_code": 200 + }, + "version": "2.0.0.0" + }, + "network": { + "protocol": "HTTPS" + }, + "source": { + "geo": { + "city_name": "Changchun", + "continent_name": "Asia", + "country_iso_code": "CN", + "country_name": "China", + "location": { + "lat": 43.88, + "lon": 125.3228 + }, + "region_iso_code": "CN-22", + "region_name": "Jilin Sheng" + } + }, + "tags": [ + "preserve_original_event", + "azure-frontdoor-access" + ], + "tls": { + "version": "1.2", + "version_protocol": "TLS" + }, + "url": { + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892", + "original": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892", + "path": "/Customer/searchContactList/2107050813256062892", + "port": 443, + "scheme": "https" + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Chrome", + "original": "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36", + "os": { + "full": "Windows 7", + "name": "Windows", + "version": "7" + }, + "version": "96.0.4664.93" + } + }, + { + "@timestamp": "2024-07-20T03:35:50.058Z", + "azure": { + "frontdoor": { + "access": { + "backend_hostname": "samplev6erp.azurewebsites.net:443", + "cache_status": "CONFIG_NOCACHE", + "error_info": "NoError", + "identity": { + "authorization": { + "action": "microsoft.support/supporttickets/write", + "evidence": { + "role": "Subscription Admin" + }, + "scope": "/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841" + }, + "claims": { + "appid": "c44b4083-3bq0-49c1-b47d-974e53cbdf3c", + "appidacr": "2", + "aud": "https://management.core.windows.net/", + "exp": "1421880271", + "groups": "cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c", + "http://schemas_microsoft_com/claims/authnclassreference": "1", + "http://schemas_microsoft_com/claims/authnmethodsreferences": "pwd", + "http://schemas_microsoft_com/identity/claims/objectidentifier": "2468adf0-8211-44e3-95xq-85137af64708", + "http://schemas_microsoft_com/identity/claims/scope": "user_impersonation", + "http://schemas_microsoft_com/identity/claims/tenantid": "00000000-0000-0000-0000-000000000000", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/givenname": "John", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/name": " admin@contoso.com", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/nameidentifier": "9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/surname": "Smith", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/upn": "admin@contoso.com", + "iat": "1421876371", + "iss": "https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/", + "name": "John Smith", + "nbf": "1421876371", + "puid": "20030000801A118C", + "ver": "1.0" + }, + "claims_initiated_by_user": { + "givenname": "John", + "name": " admin@contoso.com", + "schema": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims", + "surname": "Smith" + } + }, + "is_received_from_client": true, + "pop": "SIN", + "routing_rule_name": "erp", + "rules_engine_match_names": [], + "time_taken": "0.064", + "time_to_first_byte": "0.064" + }, + "category": "FrontdoorAccessLog", + "operation_name": "Microsoft.Network/FrontDoor/AccessLog/Write", + "resource_id": "/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD", + "tracking_reference": "0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=" + } + }, + "client": { + "address": "175.16.199.0", + "ip": "175.16.199.2", + "port": 6612 + }, + "cloud": { + "account": { + "id": "00000000-0000-0000-0000-000000000000" + }, + "provider": "azure" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "original": "{\"category\":\"FrontdoorAccessLog\",\"operationName\":\"Microsoft.Network/FrontDoor/AccessLog/Write\",\"properties\":{\"ErrorInfo\":\"NoError\",\"backendHostname\":\"samplev6erp.azurewebsites.net:443\",\"cacheStatus\":\"CONFIG_NOCACHE\",\"clientIp\":\"175.16.199.2\",\"clientPort\":\"6612\",\"httpMethod\":\"GET\",\"httpStatusCode\":\"200\",\"httpStatusDetails\":\"200\",\"httpVersion\":\"2.0.0.0\",\"isReceivedFromClient\":true,\"pop\":\"SIN\",\"requestBytes\":\"1971\",\"requestProtocol\":\"HTTPS\",\"requestUri\":\"https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892\",\"responseBytes\":\"637\",\"routingRuleName\":\"erp\",\"rulesEngineMatchNames\":[],\"securityProtocol\":\"TLS 1.2\",\"socketIp\":\"175.16.199.0\",\"timeTaken\":\"0.064\",\"timeToFirstByte\":\"0.064\",\"trackingReference\":\"0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=\",\"userAgent\":\"Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36\"},\"resourceId\":\"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD\",\"time\":\"2024-07-20T03:35:50.0584922Z\",\"identity\":{\"authorization\":{\"scope\":\"/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841\",\"action\":\"microsoft.support/supporttickets/write\",\"evidence\":{\"role\":\"Subscription Admin\"}},\"claims\":{\"aud\":\"https://management.core.windows.net/\",\"iss\":\"https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/\",\"iat\":\"1421876371\",\"nbf\":\"1421876371\",\"exp\":\"1421880271\",\"ver\":\"1.0\",\"http://schemas.microsoft.com/identity/claims/tenantid\":\"00000000-0000-0000-0000-000000000000\",\"http://schemas.microsoft.com/claims/authnmethodsreferences\":\"pwd\",\"http://schemas.microsoft.com/identity/claims/objectidentifier\":\"2468adf0-8211-44e3-95xq-85137af64708\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn\":\"admin@contoso.com\",\"puid\":\"20030000801A118C\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier\":\"9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname\":\"John\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname\":\"Smith\",\"name\":\"John Smith\",\"groups\":\"cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name\":\" admin@contoso.com\",\"appid\":\"c44b4083-3bq0-49c1-b47d-974e53cbdf3c\",\"appidacr\":\"2\",\"http://schemas.microsoft.com/identity/claims/scope\":\"user_impersonation\",\"http://schemas.microsoft.com/claims/authnclassreference\":\"1\"}}}", + "type": [ + "connection" + ] + }, + "http": { + "request": { + "bytes": 1971, + "method": "GET" + }, + "response": { + "bytes": 637, + "status_code": 200 + }, + "version": "2.0.0.0" + }, + "network": { + "protocol": "HTTPS" + }, + "related": { + "user": [ + "admin", + "John Smith", + "2468adf0-8211-44e3-95xq-85137af64708" + ] + }, + "source": { + "geo": { + "city_name": "Changchun", + "continent_name": "Asia", + "country_iso_code": "CN", + "country_name": "China", + "location": { + "lat": 43.88, + "lon": 125.3228 + }, + "region_iso_code": "CN-22", + "region_name": "Jilin Sheng" + } + }, + "tags": [ + "preserve_original_event", + "azure-frontdoor-access" + ], + "tls": { + "version": "1.2", + "version_protocol": "TLS" + }, + "url": { + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892", + "original": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892", + "path": "/Customer/searchContactList/2107050813256062892", + "port": 443, + "scheme": "https" + }, + "user": { + "domain": "contoso.com", + "email": " admin@contoso.com", + "full_name": "John Smith", + "id": "2468adf0-8211-44e3-95xq-85137af64708", + "name": "admin", + "roles": [ + "Subscription Admin" + ] + }, + "user_agent": { + "device": { + "name": "Other" + }, + "name": "Chrome", + "original": "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36", + "os": { + "full": "Windows 7", + "name": "Windows", + "version": "7" + }, + "version": "96.0.4664.93" + } + }, + { + "@timestamp": "2024-07-20T03:35:50.058Z", + "azure": { + "frontdoor": { + "access": { + "backend_hostname": "samplev6erp.azurewebsites.net:443", + "cache_status": "CONFIG_NOCACHE", + "error_info": "NoError", + "identity": { + "authorization": { + "action": "microsoft.support/supporttickets/write", + "evidence": { + "principal_id": "redacted", + "principal_type": "ServicePrincipal", + "role": "Contributor", + "role_assignment_id": "redacted", + "role_assignment_scope": "/subscriptions/redacted", + "role_definition_id": "redacted" + }, + "scope": "/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841" + }, + "claims": { + "appid": "c44b4083-3bq0-49c1-b47d-974e53cbdf3c", + "appidacr": "2", + "aud": "https://management.core.windows.net/", + "exp": "1421880271", + "groups": "cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c", + "http://schemas_microsoft_com/claims/authnclassreference": "1", + "http://schemas_microsoft_com/claims/authnmethodsreferences": "pwd", + "http://schemas_microsoft_com/identity/claims/objectidentifier": "2468adf0-8211-44e3-95xq-85137af64708", + "http://schemas_microsoft_com/identity/claims/scope": "user_impersonation", + "http://schemas_microsoft_com/identity/claims/tenantid": "00000000-0000-0000-0000-000000000000", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/givenname": "John", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/name": " admin@contoso.com", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/nameidentifier": "9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/surname": "Smith", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/upn": "admin@contoso.com", + "iat": "1421876371", + "iss": "https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/", + "name": "John Smith", + "nbf": "1421876371", + "puid": "20030000801A118C", + "ver": "1.0" + }, + "claims_initiated_by_user": { + "givenname": "John", + "name": " admin@contoso.com", + "schema": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims", + "surname": "Smith" + } + }, + "is_received_from_client": true, + "pop": "SIN", + "routing_rule_name": "erp", + "rules_engine_match_names": [], + "time_taken": "0.064", + "time_to_first_byte": "0.064" + }, + "category": "FrontdoorAccessLog", + "operation_name": "Microsoft.Network/FrontDoor/AccessLog/Write", + "resource_id": "/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD", + "tracking_reference": "0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=" + } + }, + "client": { + "address": "175.16.199.0", + "ip": "175.16.199.3", + "port": 6613 + }, + "cloud": { + "account": { + "id": "00000000-0000-0000-0000-000000000000" + }, + "provider": "azure" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "original": "{\"category\":\"FrontdoorAccessLog\",\"operationName\":\"Microsoft.Network/FrontDoor/AccessLog/Write\",\"properties\":{\"ErrorInfo\":\"NoError\",\"backendHostname\":\"samplev6erp.azurewebsites.net:443\",\"cacheStatus\":\"CONFIG_NOCACHE\",\"clientIp\":\"175.16.199.3\",\"clientPort\":\"6613\",\"httpMethod\":\"GET\",\"httpStatusCode\":\"200\",\"httpStatusDetails\":\"200\",\"httpVersion\":\"2.0.0.0\",\"isReceivedFromClient\":true,\"pop\":\"SIN\",\"requestBytes\":\"1971\",\"requestProtocol\":\"HTTPS\",\"requestUri\":\"https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892\",\"responseBytes\":\"637\",\"routingRuleName\":\"erp\",\"rulesEngineMatchNames\":[],\"securityProtocol\":\"TLS 1.2\",\"socketIp\":\"175.16.199.0\",\"timeTaken\":\"0.064\",\"timeToFirstByte\":\"0.064\",\"trackingReference\":\"0lWK5YQAAAAAnKnstK4rwSovl+unjuKhoU0lOMzBFREdFMDIxNwBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=\",\"userAgent\":\"Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.93 Safari/537.36\"},\"resourceId\":\"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD\",\"time\":\"2024-07-20T03:35:50.0584922Z\",\"identity\":{\"authorization\":{\"scope\":\"/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841\",\"action\":\"microsoft.support/supporttickets/write\",\"evidence\":{\"principalId\":\"redacted\",\"principalType\":\"ServicePrincipal\",\"role\":\"Contributor\",\"roleAssignmentId\":\"redacted\",\"roleAssignmentScope\":\"/subscriptions/redacted\",\"roleDefinitionId\":\"redacted\"}},\"claims\":{\"aud\":\"https://management.core.windows.net/\",\"iss\":\"https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/\",\"iat\":\"1421876371\",\"nbf\":\"1421876371\",\"exp\":\"1421880271\",\"ver\":\"1.0\",\"http://schemas.microsoft.com/identity/claims/tenantid\":\"00000000-0000-0000-0000-000000000000\",\"http://schemas.microsoft.com/claims/authnmethodsreferences\":\"pwd\",\"http://schemas.microsoft.com/identity/claims/objectidentifier\":\"2468adf0-8211-44e3-95xq-85137af64708\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn\":\"admin@contoso.com\",\"puid\":\"20030000801A118C\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier\":\"9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname\":\"John\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname\":\"Smith\",\"name\":\"John Smith\",\"groups\":\"cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name\":\" admin@contoso.com\",\"appid\":\"c44b4083-3bq0-49c1-b47d-974e53cbdf3c\",\"appidacr\":\"2\",\"http://schemas.microsoft.com/identity/claims/scope\":\"user_impersonation\",\"http://schemas.microsoft.com/claims/authnclassreference\":\"1\"}}}", + "type": [ + "connection" + ] + }, + "http": { + "request": { + "bytes": 1971, + "method": "GET" + }, + "response": { + "bytes": 637, + "status_code": 200 + }, + "version": "2.0.0.0" + }, + "network": { + "protocol": "HTTPS" + }, + "related": { + "user": [ + "admin", + "John Smith", + "2468adf0-8211-44e3-95xq-85137af64708" + ] + }, + "source": { + "geo": { + "city_name": "Changchun", + "continent_name": "Asia", + "country_iso_code": "CN", + "country_name": "China", + "location": { + "lat": 43.88, + "lon": 125.3228 + }, + "region_iso_code": "CN-22", + "region_name": "Jilin Sheng" + } + }, + "tags": [ + "preserve_original_event", + "azure-frontdoor-access" + ], + "tls": { + "version": "1.2", + "version_protocol": "TLS" + }, + "url": { + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892", + "original": "https://erp.testcloud.com:443/Customer/searchContactList/2107050813256062892", + "path": "/Customer/searchContactList/2107050813256062892", + "port": 443, + "scheme": "https" + }, + "user": { + "domain": "contoso.com", + "email": " admin@contoso.com", + "full_name": "John Smith", + "id": "2468adf0-8211-44e3-95xq-85137af64708", + "name": "admin", + "roles": [ + "Contributor" + ] }, "user_agent": { "device": { diff --git a/packages/azure_frontdoor/data_stream/access/elasticsearch/ingest_pipeline/default.yml b/packages/azure_frontdoor/data_stream/access/elasticsearch/ingest_pipeline/default.yml index 76203e670864..458a030a62ac 100644 --- a/packages/azure_frontdoor/data_stream/access/elasticsearch/ingest_pipeline/default.yml +++ b/packages/azure_frontdoor/data_stream/access/elasticsearch/ingest_pipeline/default.yml @@ -120,6 +120,150 @@ processors: field: azure.frontdoor.access.properties.requestUri target_field: url.original ignore_missing: true + - uri_parts: + field: url.original + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: url.full + copy_from: url.original + ignore_empty_value: true + # handle identity field + - rename: + field: azure.frontdoor.access.identity + if: ctx.azure?.frontdoor?.access?.identity instanceof String + target_field: azure.frontdoor.access.identity_name + ignore_missing: true + - json: + field: azure.frontdoor.access.identity + tag: json_identity + if: ctx.azure?.frontdoor?.access?.identity instanceof String + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: azure.frontdoor.access.identity.authorization.evidence.roleAssignmentScope + target_field: azure.frontdoor.access.identity.authorization.evidence.role_assignment_scope + ignore_missing: true + - rename: + field: azure.frontdoor.access.identity.authorization.evidence.roleDefinitionId + target_field: azure.frontdoor.access.identity.authorization.evidence.role_definition_id + ignore_missing: true + - rename: + field: azure.frontdoor.access.identity.authorization.evidence.roleAssignmentId + target_field: azure.frontdoor.access.identity.authorization.evidence.role_assignment_id + ignore_missing: true + - rename: + field: azure.frontdoor.access.identity.authorization.evidence.principalId + target_field: azure.frontdoor.access.identity.authorization.evidence.principal_id + ignore_missing: true + - rename: + field: azure.frontdoor.access.identity.authorization.evidence.principalType + target_field: azure.frontdoor.access.identity.authorization.evidence.principal_type + ignore_missing: true + - script: + tag: script_claims_cleanup + lang: painless + if: ctx.azure?.frontdoor?.access?.identity?.claims != null + source: | + Map convertDotsToUnderscore(Map m) { + def out = new HashMap(); + for (entry in m.entrySet()) { + def k = entry.getKey().replace('.', '_'); + def v = entry.getValue(); + out.put(k, v); + } + return out; + } + ctx.azure.frontdoor.access.identity.claims = convertDotsToUnderscore(ctx.azure.frontdoor.access.identity.claims); + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - script: + description: Extract user fields into claims_initiated_by_user object from claims object + tag: script_claims_user + if: ctx.azure?.frontdoor?.access?.identity?.claims instanceof Map + lang: painless + params: + surname: "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/surname" + name: "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/name" + givenname: "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/givenname" + objectidentifier: "http://schemas_microsoft_com/identity/claims/objectidentifier" + tenantid: "http://schemas_microsoft_com/identity/claims/tenantid" + source: |- + def claims = ctx.azure.frontdoor.access.identity.claims; + def claims_initiated_by_user = new HashMap(); + if (claims.name != null) { + claims_initiated_by_user.fullname = claims.name; + } + for (entry in params.entrySet()) { + if (claims[entry.getValue()] != null) { + claims_initiated_by_user[entry.getKey()] = claims[entry.getValue()]; + } + } + if (claims_initiated_by_user.size() > 0) { + claims_initiated_by_user.schema = "http://schemas.xmlsoap.org/ws/2005/05/identity/claims"; + ctx.azure.frontdoor.access.identity.claims_initiated_by_user = claims_initiated_by_user; + } + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - grok: + field: azure.frontdoor.access.identity.claims_initiated_by_user.name + patterns: + - '%{USERNAME:user.name}@%{HOSTNAME:user.domain}' + ignore_missing: true + ignore_failure: true + # set user.email to the original name if the above grok succeeded. + - set: + field: user.email + value: '{{azure.frontdoor.access.identity.claims_initiated_by_user.name}}' + ignore_empty_value: true + if: 'ctx.user?.name != null' + # set user.name to the original name if the above grok failed (name format is not an email). + - set: + field: user.name + value: '{{azure.frontdoor.access.identity.claims_initiated_by_user.name}}' + ignore_empty_value: true + if: 'ctx.user?.name == null' + - rename: + field: azure.frontdoor.access.identity.claims_initiated_by_user.fullname + target_field: user.full_name + ignore_missing: true + - rename: + field: azure.frontdoor.access.identity.claims_initiated_by_user.objectidentifier + target_field: user.id + ignore_missing: true + - append: + field: user.roles + value: '{{azure.frontdoor.access.identity.authorization.evidence.role}}' + allow_duplicates: false + if: ctx.azure?.frontdoor?.access?.identity?.authorization?.evidence?.role != null + - append: + field: related.user + value: '{{user.name}}' + allow_duplicates: false + if: 'ctx.user?.name != null' + - append: + field: related.user + value: '{{user.full_name}}' + allow_duplicates: false + if: 'ctx.user?.name != null' + - append: + field: related.user + value: '{{user.id}}' + allow_duplicates: false + if: 'ctx.user?.name != null' + - rename: + field: azure.frontdoor.access.identity.claims_initiated_by_user.tenantid + target_field: cloud.account.id + ignore_missing: true - convert: field: client.port type: long diff --git a/packages/azure_frontdoor/data_stream/access/fields/fields.yml b/packages/azure_frontdoor/data_stream/access/fields/fields.yml index 60a2155dbbe3..69887ad7341b 100644 --- a/packages/azure_frontdoor/data_stream/access/fields/fields.yml +++ b/packages/azure_frontdoor/data_stream/access/fields/fields.yml @@ -46,3 +46,77 @@ - name: cache_status type: keyword description: Provides the status code of how the request gets handled by the CDN service when it comes to caching. + - name: identity_name + type: keyword + description: | + identity name + - name: identity + type: group + fields: + - name: claims_initiated_by_user + type: group + fields: + - name: name + type: keyword + description: | + Name + - name: givenname + type: keyword + description: | + Givenname + - name: surname + type: keyword + description: | + Surname + - name: fullname + type: keyword + description: | + Fullname + - name: schema + type: keyword + description: | + Schema + - name: claims.* + type: object + object_type: keyword + object_type_mapping_type: '*' + description: | + Claims + - name: authorization + type: group + fields: + - name: scope + type: keyword + description: | + Scope + - name: action + type: keyword + description: | + Action + - name: evidence + type: group + fields: + - name: role_assignment_scope + type: keyword + description: | + Role assignment scope + - name: role_definition_id + type: keyword + description: | + Role definition ID + - name: role + type: keyword + description: | + Role + - name: role_assignment_id + type: keyword + description: | + Role assignment ID + - name: principal_id + type: keyword + description: | + Principal ID + - name: principal_type + type: keyword + description: |- + Principal type diff --git a/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-common-config.yml b/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-common-config.yml index 3876aed299ef..1b4ceabbb1b7 100644 --- a/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-common-config.yml +++ b/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-common-config.yml @@ -1,5 +1,8 @@ dynamic_fields: "event.ingested": ".*" + # This can be removed after ES 8.14 is the minimum version. + # Relates: https://github.com/elastic/elasticsearch/pull/105689 + url.extension: '^.*$' fields: tags: - preserve_original_event diff --git a/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-fdwaf.log b/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-fdwaf.log index 2a8d72d97f63..ce739d5779cf 100644 --- a/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-fdwaf.log +++ b/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-fdwaf.log @@ -1,3 +1,6 @@ {"category":"FrontdoorWebApplicationFirewallLog","operationName":"Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write","properties":{"action":"Log","clientIP":"216.160.83.56","clientPort":"56094","details":{"matches":[]},"host":"connect.testcloud.com","policy":"waf2","policyMode":"detection","requestUri":"https://connect.testcloud.com:443/connect_v2/module001/serviceAttendance/checkvalidUser1","ruleName":"AllowMyanmar","socketIP":"216.160.83.56","trackingReference":"09tTJYQAAAAAV8VyBP8m1Qo+8A3qdd2DuU0lOMzBFREdFMDIxOABkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc="},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2021-12-27T15:00:06.6330668Z"} {"category":"FrontdoorWebApplicationFirewallLog","operationName":"Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write","properties":{"action":"Block","clientIP":"81.2.69.142","clientPort":"59781","details":{"data":"Matched Data: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\" found within CookieValue:w_db_ibp: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\"","matches":[{"matchVariableName":"CookieValue:w_db_ibp","matchVariableValue":"{\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\""},{"matchVariableName":"CookieValue:w_solist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRefNo\":\"\",\"custCodeOpt\":\"c\",\"custCode\":\"\",\"custNameOpt\":\"c\",\"custNam"},{"matchVariableName":"CookieValue:w_pilist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRef\":\"\",\"status\":\"0\",\"venCodeOpt\":\"c\",\"venCode\":\"\",\"venNameOpt\":\"c\","},{"matchVariableName":"CookieValue:w_ah_ibp","matchVariableValue":"{\"selectedAccCat\":0,\"showTrial\":false,\"showAmt\":false,\"isCc\":false,\"isDept\":false,\"ccSyskey\":\"-1\",\"d"},{"matchVariableName":"CookieValue:w_silist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRefNo\":\"\",\"custCodeOpt\":\"c\",\"custCode\":\"\",\"custNameOpt\":\"c\",\"custNam"}],"msg":"Detects classic SQL injection probings 1/3"},"host":"erp.testcloud.com","policy":"waf2","policyMode":"detection","requestUri":"https://erp.testcloud.com:443/accountcategory/getAccountCategory","ruleName":"DefaultRuleSet-1.0-SQLI-942330","socketIP":"81.2.69.142","trackingReference":"0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc="},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2021-12-27T16:03:09.8128356Z"} -{''"records"'': [{"time":"2021-02-02T07:15:37.3640748Z","resourceId":"/SUBSCRIPTIONS/saDFEEQW-JESSIE","category":"FrontdoorAccessLog"}]} \ No newline at end of file +{"category":"FrontdoorWebApplicationFirewallLog","operationName":"Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write","properties":{"action":"Block","clientIP":"81.2.69.143","clientPort":"59782","details":{"data":"Matched Data: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\" found within CookieValue:w_db_ibp: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\"","matches":[{"matchVariableName":"CookieValue:w_db_ibp","matchVariableValue":"{\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\""},{"matchVariableName":"CookieValue:w_solist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRefNo\":\"\",\"custCodeOpt\":\"c\",\"custCode\":\"\",\"custNameOpt\":\"c\",\"custNam"},{"matchVariableName":"CookieValue:w_pilist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRef\":\"\",\"status\":\"0\",\"venCodeOpt\":\"c\",\"venCode\":\"\",\"venNameOpt\":\"c\","},{"matchVariableName":"CookieValue:w_ah_ibp","matchVariableValue":"{\"selectedAccCat\":0,\"showTrial\":false,\"showAmt\":false,\"isCc\":false,\"isDept\":false,\"ccSyskey\":\"-1\",\"d"},{"matchVariableName":"CookieValue:w_silist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRefNo\":\"\",\"custCodeOpt\":\"c\",\"custCode\":\"\",\"custNameOpt\":\"c\",\"custNam"}],"msg":"Detects classic SQL injection probings 1/3"},"host":"erp.testcloud.com","policy":"waf2","policyMode":"detection","requestUri":"https://erp.testcloud.com:443/accountcategory/getAccountCategory","ruleName":"DefaultRuleSet-1.0-SQLI-942330","socketIP":"81.2.69.142","trackingReference":"0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc="},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2024-07-27T16:03:09.8128356Z","identity":"bobert"} +{"category":"FrontdoorWebApplicationFirewallLog","operationName":"Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write","properties":{"action":"Block","clientIP":"81.2.69.144","clientPort":"59783","details":{"data":"Matched Data: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\" found within CookieValue:w_db_ibp: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\"","matches":[{"matchVariableName":"CookieValue:w_db_ibp","matchVariableValue":"{\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\""},{"matchVariableName":"CookieValue:w_solist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRefNo\":\"\",\"custCodeOpt\":\"c\",\"custCode\":\"\",\"custNameOpt\":\"c\",\"custNam"},{"matchVariableName":"CookieValue:w_pilist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRef\":\"\",\"status\":\"0\",\"venCodeOpt\":\"c\",\"venCode\":\"\",\"venNameOpt\":\"c\","},{"matchVariableName":"CookieValue:w_ah_ibp","matchVariableValue":"{\"selectedAccCat\":0,\"showTrial\":false,\"showAmt\":false,\"isCc\":false,\"isDept\":false,\"ccSyskey\":\"-1\",\"d"},{"matchVariableName":"CookieValue:w_silist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRefNo\":\"\",\"custCodeOpt\":\"c\",\"custCode\":\"\",\"custNameOpt\":\"c\",\"custNam"}],"msg":"Detects classic SQL injection probings 1/3"},"host":"erp.testcloud.com","policy":"waf2","policyMode":"detection","requestUri":"https://erp.testcloud.com:443/accountcategory/getAccountCategory","ruleName":"DefaultRuleSet-1.0-SQLI-942330","socketIP":"81.2.69.142","trackingReference":"0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc="},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2024-07-28T16:03:09.8128356Z","identity":{"authorization":{"scope":"/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841","action":"microsoft.support/supporttickets/write","evidence":{"role":"Subscription Admin"}},"claims":{"aud":"https://management.core.windows.net/","iss":"https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/","iat":"1421876371","nbf":"1421876371","exp":"1421880271","ver":"1.0","http://schemas.microsoft.com/identity/claims/tenantid":"00000000-0000-0000-0000-000000000000","http://schemas.microsoft.com/claims/authnmethodsreferences":"pwd","http://schemas.microsoft.com/identity/claims/objectidentifier":"2468adf0-8211-44e3-95xq-85137af64708","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn":"admin@contoso.com","puid":"20030000801A118C","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier":"9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname":"John","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname":"Smith","name":"John Smith","groups":"cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name":" admin@contoso.com","appid":"c44b4083-3bq0-49c1-b47d-974e53cbdf3c","appidacr":"2","http://schemas.microsoft.com/identity/claims/scope":"user_impersonation","http://schemas.microsoft.com/claims/authnclassreference":"1"}}} +{"category":"FrontdoorWebApplicationFirewallLog","operationName":"Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write","properties":{"action":"Block","clientIP":"81.2.69.145","clientPort":"59784","details":{"data":"Matched Data: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\" found within CookieValue:w_db_ibp: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\"","matches":[{"matchVariableName":"CookieValue:w_db_ibp","matchVariableValue":"{\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\""},{"matchVariableName":"CookieValue:w_solist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRefNo\":\"\",\"custCodeOpt\":\"c\",\"custCode\":\"\",\"custNameOpt\":\"c\",\"custNam"},{"matchVariableName":"CookieValue:w_pilist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRef\":\"\",\"status\":\"0\",\"venCodeOpt\":\"c\",\"venCode\":\"\",\"venNameOpt\":\"c\","},{"matchVariableName":"CookieValue:w_ah_ibp","matchVariableValue":"{\"selectedAccCat\":0,\"showTrial\":false,\"showAmt\":false,\"isCc\":false,\"isDept\":false,\"ccSyskey\":\"-1\",\"d"},{"matchVariableName":"CookieValue:w_silist_ibp","matchVariableValue":"{\"refNo\":\"\",\"secRefNo\":\"\",\"crossRefNo\":\"\",\"custCodeOpt\":\"c\",\"custCode\":\"\",\"custNameOpt\":\"c\",\"custNam"}],"msg":"Detects classic SQL injection probings 1/3"},"host":"erp.testcloud.com","policy":"waf2","policyMode":"detection","requestUri":"https://erp.testcloud.com:443/accountcategory/getAccountCategory","ruleName":"DefaultRuleSet-1.0-SQLI-942330","socketIP":"81.2.69.142","trackingReference":"0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc="},"resourceId":"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD","time":"2024-07-27T16:03:09.8128356Z","identity":{"authorization":{"scope":"/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841","action":"microsoft.support/supporttickets/write","evidence":{"principalId":"redacted","principalType":"ServicePrincipal","role":"Contributor","roleAssignmentId":"redacted","roleAssignmentScope":"/subscriptions/redacted","roleDefinitionId":"redacted"}},"claims":{"aud":"https://management.core.windows.net/","iss":"https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/","iat":"1421876371","nbf":"1421876371","exp":"1421880271","ver":"1.0","http://schemas.microsoft.com/identity/claims/tenantid":"00000000-0000-0000-0000-000000000000","http://schemas.microsoft.com/claims/authnmethodsreferences":"pwd","http://schemas.microsoft.com/identity/claims/objectidentifier":"2468adf0-8211-44e3-95xq-85137af64708","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn":"admin@contoso.com","puid":"20030000801A118C","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier":"9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname":"John","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname":"Smith","name":"John Smith","groups":"cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name":" admin@contoso.com","appid":"c44b4083-3bq0-49c1-b47d-974e53cbdf3c","appidacr":"2","http://schemas.microsoft.com/identity/claims/scope":"user_impersonation","http://schemas.microsoft.com/claims/authnclassreference":"1"}}} +{''"records"'': [{"time":"2021-02-02T07:15:37.3640748Z","resourceId":"/SUBSCRIPTIONS/saDFEEQW-JESSIE","category":"FrontdoorAccessLog"}]} diff --git a/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-fdwaf.log-expected.json b/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-fdwaf.log-expected.json index bfc1a094e297..a192cb972768 100644 --- a/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-fdwaf.log-expected.json +++ b/packages/azure_frontdoor/data_stream/waf/_dev/test/pipeline/test-fdwaf.log-expected.json @@ -62,7 +62,11 @@ ], "url": { "domain": "connect.testcloud.com", - "original": "https://connect.testcloud.com:443/connect_v2/module001/serviceAttendance/checkvalidUser1" + "full": "https://connect.testcloud.com:443/connect_v2/module001/serviceAttendance/checkvalidUser1", + "original": "https://connect.testcloud.com:443/connect_v2/module001/serviceAttendance/checkvalidUser1", + "path": "/connect_v2/module001/serviceAttendance/checkvalidUser1", + "port": 443, + "scheme": "https" } }, { @@ -127,7 +131,340 @@ ], "url": { "domain": "erp.testcloud.com", - "original": "https://erp.testcloud.com:443/accountcategory/getAccountCategory" + "full": "https://erp.testcloud.com:443/accountcategory/getAccountCategory", + "original": "https://erp.testcloud.com:443/accountcategory/getAccountCategory", + "path": "/accountcategory/getAccountCategory", + "port": 443, + "scheme": "https" + } + }, + { + "@timestamp": "2024-07-27T16:03:09.812Z", + "azure": { + "frontdoor": { + "category": "FrontdoorWebApplicationFirewallLog", + "operation_name": "Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write", + "resource_id": "/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD", + "tracking_reference": "0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=", + "waf": { + "details": { + "data": "Matched Data: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\" found within CookieValue:w_db_ibp: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\"", + "msg": "Detects classic SQL injection probings 1/3" + }, + "identity_name": "bobert", + "policy": "waf2", + "policy_mode": "detection" + } + } + }, + "client": { + "address": "81.2.69.142", + "ip": "81.2.69.143", + "port": 59782 + }, + "cloud": { + "provider": "azure" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "Block", + "category": [ + "network" + ], + "original": "{\"category\":\"FrontdoorWebApplicationFirewallLog\",\"operationName\":\"Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write\",\"properties\":{\"action\":\"Block\",\"clientIP\":\"81.2.69.143\",\"clientPort\":\"59782\",\"details\":{\"data\":\"Matched Data: {\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\" found within CookieValue:w_db_ibp: {\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\"\",\"matches\":[{\"matchVariableName\":\"CookieValue:w_db_ibp\",\"matchVariableValue\":\"{\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\"\"},{\"matchVariableName\":\"CookieValue:w_solist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRefNo\\\":\\\"\\\",\\\"custCodeOpt\\\":\\\"c\\\",\\\"custCode\\\":\\\"\\\",\\\"custNameOpt\\\":\\\"c\\\",\\\"custNam\"},{\"matchVariableName\":\"CookieValue:w_pilist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRef\\\":\\\"\\\",\\\"status\\\":\\\"0\\\",\\\"venCodeOpt\\\":\\\"c\\\",\\\"venCode\\\":\\\"\\\",\\\"venNameOpt\\\":\\\"c\\\",\"},{\"matchVariableName\":\"CookieValue:w_ah_ibp\",\"matchVariableValue\":\"{\\\"selectedAccCat\\\":0,\\\"showTrial\\\":false,\\\"showAmt\\\":false,\\\"isCc\\\":false,\\\"isDept\\\":false,\\\"ccSyskey\\\":\\\"-1\\\",\\\"d\"},{\"matchVariableName\":\"CookieValue:w_silist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRefNo\\\":\\\"\\\",\\\"custCodeOpt\\\":\\\"c\\\",\\\"custCode\\\":\\\"\\\",\\\"custNameOpt\\\":\\\"c\\\",\\\"custNam\"}],\"msg\":\"Detects classic SQL injection probings 1/3\"},\"host\":\"erp.testcloud.com\",\"policy\":\"waf2\",\"policyMode\":\"detection\",\"requestUri\":\"https://erp.testcloud.com:443/accountcategory/getAccountCategory\",\"ruleName\":\"DefaultRuleSet-1.0-SQLI-942330\",\"socketIP\":\"81.2.69.142\",\"trackingReference\":\"0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=\"},\"resourceId\":\"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD\",\"time\":\"2024-07-27T16:03:09.8128356Z\",\"identity\":\"bobert\"}", + "type": [ + "connection" + ] + }, + "rule": { + "name": "DefaultRuleSet-1.0-SQLI-942330" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + } + }, + "tags": [ + "preserve_original_event", + "azure-frontdoor-access" + ], + "url": { + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/accountcategory/getAccountCategory", + "original": "https://erp.testcloud.com:443/accountcategory/getAccountCategory", + "path": "/accountcategory/getAccountCategory", + "port": 443, + "scheme": "https" + } + }, + { + "@timestamp": "2024-07-28T16:03:09.812Z", + "azure": { + "frontdoor": { + "category": "FrontdoorWebApplicationFirewallLog", + "operation_name": "Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write", + "resource_id": "/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD", + "tracking_reference": "0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=", + "waf": { + "details": { + "data": "Matched Data: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\" found within CookieValue:w_db_ibp: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\"", + "msg": "Detects classic SQL injection probings 1/3" + }, + "identity": { + "authorization": { + "action": "microsoft.support/supporttickets/write", + "evidence": { + "role": "Subscription Admin" + }, + "scope": "/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841" + }, + "claims": { + "appid": "c44b4083-3bq0-49c1-b47d-974e53cbdf3c", + "appidacr": "2", + "aud": "https://management.core.windows.net/", + "exp": "1421880271", + "groups": "cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c", + "http://schemas_microsoft_com/claims/authnclassreference": "1", + "http://schemas_microsoft_com/claims/authnmethodsreferences": "pwd", + "http://schemas_microsoft_com/identity/claims/objectidentifier": "2468adf0-8211-44e3-95xq-85137af64708", + "http://schemas_microsoft_com/identity/claims/scope": "user_impersonation", + "http://schemas_microsoft_com/identity/claims/tenantid": "00000000-0000-0000-0000-000000000000", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/givenname": "John", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/name": " admin@contoso.com", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/nameidentifier": "9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/surname": "Smith", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/upn": "admin@contoso.com", + "iat": "1421876371", + "iss": "https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/", + "name": "John Smith", + "nbf": "1421876371", + "puid": "20030000801A118C", + "ver": "1.0" + }, + "claims_initiated_by_user": { + "givenname": "John", + "name": " admin@contoso.com", + "schema": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims", + "surname": "Smith" + } + }, + "policy": "waf2", + "policy_mode": "detection" + } + } + }, + "client": { + "address": "81.2.69.142", + "ip": "81.2.69.144", + "port": 59783 + }, + "cloud": { + "account": { + "id": "00000000-0000-0000-0000-000000000000" + }, + "provider": "azure" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "Block", + "category": [ + "network" + ], + "original": "{\"category\":\"FrontdoorWebApplicationFirewallLog\",\"operationName\":\"Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write\",\"properties\":{\"action\":\"Block\",\"clientIP\":\"81.2.69.144\",\"clientPort\":\"59783\",\"details\":{\"data\":\"Matched Data: {\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\" found within CookieValue:w_db_ibp: {\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\"\",\"matches\":[{\"matchVariableName\":\"CookieValue:w_db_ibp\",\"matchVariableValue\":\"{\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\"\"},{\"matchVariableName\":\"CookieValue:w_solist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRefNo\\\":\\\"\\\",\\\"custCodeOpt\\\":\\\"c\\\",\\\"custCode\\\":\\\"\\\",\\\"custNameOpt\\\":\\\"c\\\",\\\"custNam\"},{\"matchVariableName\":\"CookieValue:w_pilist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRef\\\":\\\"\\\",\\\"status\\\":\\\"0\\\",\\\"venCodeOpt\\\":\\\"c\\\",\\\"venCode\\\":\\\"\\\",\\\"venNameOpt\\\":\\\"c\\\",\"},{\"matchVariableName\":\"CookieValue:w_ah_ibp\",\"matchVariableValue\":\"{\\\"selectedAccCat\\\":0,\\\"showTrial\\\":false,\\\"showAmt\\\":false,\\\"isCc\\\":false,\\\"isDept\\\":false,\\\"ccSyskey\\\":\\\"-1\\\",\\\"d\"},{\"matchVariableName\":\"CookieValue:w_silist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRefNo\\\":\\\"\\\",\\\"custCodeOpt\\\":\\\"c\\\",\\\"custCode\\\":\\\"\\\",\\\"custNameOpt\\\":\\\"c\\\",\\\"custNam\"}],\"msg\":\"Detects classic SQL injection probings 1/3\"},\"host\":\"erp.testcloud.com\",\"policy\":\"waf2\",\"policyMode\":\"detection\",\"requestUri\":\"https://erp.testcloud.com:443/accountcategory/getAccountCategory\",\"ruleName\":\"DefaultRuleSet-1.0-SQLI-942330\",\"socketIP\":\"81.2.69.142\",\"trackingReference\":\"0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=\"},\"resourceId\":\"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD\",\"time\":\"2024-07-28T16:03:09.8128356Z\",\"identity\":{\"authorization\":{\"scope\":\"/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841\",\"action\":\"microsoft.support/supporttickets/write\",\"evidence\":{\"role\":\"Subscription Admin\"}},\"claims\":{\"aud\":\"https://management.core.windows.net/\",\"iss\":\"https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/\",\"iat\":\"1421876371\",\"nbf\":\"1421876371\",\"exp\":\"1421880271\",\"ver\":\"1.0\",\"http://schemas.microsoft.com/identity/claims/tenantid\":\"00000000-0000-0000-0000-000000000000\",\"http://schemas.microsoft.com/claims/authnmethodsreferences\":\"pwd\",\"http://schemas.microsoft.com/identity/claims/objectidentifier\":\"2468adf0-8211-44e3-95xq-85137af64708\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn\":\"admin@contoso.com\",\"puid\":\"20030000801A118C\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier\":\"9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname\":\"John\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname\":\"Smith\",\"name\":\"John Smith\",\"groups\":\"cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name\":\" admin@contoso.com\",\"appid\":\"c44b4083-3bq0-49c1-b47d-974e53cbdf3c\",\"appidacr\":\"2\",\"http://schemas.microsoft.com/identity/claims/scope\":\"user_impersonation\",\"http://schemas.microsoft.com/claims/authnclassreference\":\"1\"}}}", + "type": [ + "connection" + ] + }, + "related": { + "user": [ + "admin", + "John Smith", + "2468adf0-8211-44e3-95xq-85137af64708" + ] + }, + "rule": { + "name": "DefaultRuleSet-1.0-SQLI-942330" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + } + }, + "tags": [ + "preserve_original_event", + "azure-frontdoor-access" + ], + "url": { + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/accountcategory/getAccountCategory", + "original": "https://erp.testcloud.com:443/accountcategory/getAccountCategory", + "path": "/accountcategory/getAccountCategory", + "port": 443, + "scheme": "https" + }, + "user": { + "domain": "contoso.com", + "email": " admin@contoso.com", + "full_name": "John Smith", + "id": "2468adf0-8211-44e3-95xq-85137af64708", + "name": "admin", + "roles": [ + "Subscription Admin" + ] + } + }, + { + "@timestamp": "2024-07-27T16:03:09.812Z", + "azure": { + "frontdoor": { + "category": "FrontdoorWebApplicationFirewallLog", + "operation_name": "Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write", + "resource_id": "/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD", + "tracking_reference": "0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=", + "waf": { + "details": { + "data": "Matched Data: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\" found within CookieValue:w_db_ibp: {\"selectPeriod\":\"0000\",\"fromDate\":\"20210701\",\"toDate\":\"20211231\",\"checkDate\":\"20211226\",\"ccSyskey\":\"", + "msg": "Detects classic SQL injection probings 1/3" + }, + "identity": { + "authorization": { + "action": "microsoft.support/supporttickets/write", + "evidence": { + "principal_id": "redacted", + "principal_type": "ServicePrincipal", + "role": "Contributor", + "role_assignment_id": "redacted", + "role_assignment_scope": "/subscriptions/redacted", + "role_definition_id": "redacted" + }, + "scope": "/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841" + }, + "claims": { + "appid": "c44b4083-3bq0-49c1-b47d-974e53cbdf3c", + "appidacr": "2", + "aud": "https://management.core.windows.net/", + "exp": "1421880271", + "groups": "cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c", + "http://schemas_microsoft_com/claims/authnclassreference": "1", + "http://schemas_microsoft_com/claims/authnmethodsreferences": "pwd", + "http://schemas_microsoft_com/identity/claims/objectidentifier": "2468adf0-8211-44e3-95xq-85137af64708", + "http://schemas_microsoft_com/identity/claims/scope": "user_impersonation", + "http://schemas_microsoft_com/identity/claims/tenantid": "00000000-0000-0000-0000-000000000000", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/givenname": "John", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/name": " admin@contoso.com", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/nameidentifier": "9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/surname": "Smith", + "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/upn": "admin@contoso.com", + "iat": "1421876371", + "iss": "https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/", + "name": "John Smith", + "nbf": "1421876371", + "puid": "20030000801A118C", + "ver": "1.0" + }, + "claims_initiated_by_user": { + "givenname": "John", + "name": " admin@contoso.com", + "schema": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims", + "surname": "Smith" + } + }, + "policy": "waf2", + "policy_mode": "detection" + } + } + }, + "client": { + "address": "81.2.69.142", + "ip": "81.2.69.145", + "port": 59784 + }, + "cloud": { + "account": { + "id": "00000000-0000-0000-0000-000000000000" + }, + "provider": "azure" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "Block", + "category": [ + "network" + ], + "original": "{\"category\":\"FrontdoorWebApplicationFirewallLog\",\"operationName\":\"Microsoft.Network/FrontDoor/WebApplicationFirewallLog/Write\",\"properties\":{\"action\":\"Block\",\"clientIP\":\"81.2.69.145\",\"clientPort\":\"59784\",\"details\":{\"data\":\"Matched Data: {\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\" found within CookieValue:w_db_ibp: {\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\"\",\"matches\":[{\"matchVariableName\":\"CookieValue:w_db_ibp\",\"matchVariableValue\":\"{\\\"selectPeriod\\\":\\\"0000\\\",\\\"fromDate\\\":\\\"20210701\\\",\\\"toDate\\\":\\\"20211231\\\",\\\"checkDate\\\":\\\"20211226\\\",\\\"ccSyskey\\\":\\\"\"},{\"matchVariableName\":\"CookieValue:w_solist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRefNo\\\":\\\"\\\",\\\"custCodeOpt\\\":\\\"c\\\",\\\"custCode\\\":\\\"\\\",\\\"custNameOpt\\\":\\\"c\\\",\\\"custNam\"},{\"matchVariableName\":\"CookieValue:w_pilist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRef\\\":\\\"\\\",\\\"status\\\":\\\"0\\\",\\\"venCodeOpt\\\":\\\"c\\\",\\\"venCode\\\":\\\"\\\",\\\"venNameOpt\\\":\\\"c\\\",\"},{\"matchVariableName\":\"CookieValue:w_ah_ibp\",\"matchVariableValue\":\"{\\\"selectedAccCat\\\":0,\\\"showTrial\\\":false,\\\"showAmt\\\":false,\\\"isCc\\\":false,\\\"isDept\\\":false,\\\"ccSyskey\\\":\\\"-1\\\",\\\"d\"},{\"matchVariableName\":\"CookieValue:w_silist_ibp\",\"matchVariableValue\":\"{\\\"refNo\\\":\\\"\\\",\\\"secRefNo\\\":\\\"\\\",\\\"crossRefNo\\\":\\\"\\\",\\\"custCodeOpt\\\":\\\"c\\\",\\\"custCode\\\":\\\"\\\",\\\"custNameOpt\\\":\\\"c\\\",\\\"custNam\"}],\"msg\":\"Detects classic SQL injection probings 1/3\"},\"host\":\"erp.testcloud.com\",\"policy\":\"waf2\",\"policyMode\":\"detection\",\"requestUri\":\"https://erp.testcloud.com:443/accountcategory/getAccountCategory\",\"ruleName\":\"DefaultRuleSet-1.0-SQLI-942330\",\"socketIP\":\"81.2.69.142\",\"trackingReference\":\"0vePJYQAAAAB9WgG3hg2gTY6gNVGplMGWS1VMMzBFREdFMTAxNgBkYjIxMTMyNi1mZTJmLTQwYWYtOTA4My03MGUyYTJmYWRmZjc=\"},\"resourceId\":\"/SUBSCRIPTIONS/49D1B571-1CBE-402D-B523-AFEE3C19B64E/RESOURCEGROUPS/WAF-RG/PROVIDERS/MICROSOFT.NETWORK/FRONTDOORS/TESTCLOUD\",\"time\":\"2024-07-27T16:03:09.8128356Z\",\"identity\":{\"authorization\":{\"scope\":\"/subscriptions/s1/resourceGroups/MSSupportGroup/providers/microsoft.support/supporttickets/115012112305841\",\"action\":\"microsoft.support/supporttickets/write\",\"evidence\":{\"principalId\":\"redacted\",\"principalType\":\"ServicePrincipal\",\"role\":\"Contributor\",\"roleAssignmentId\":\"redacted\",\"roleAssignmentScope\":\"/subscriptions/redacted\",\"roleDefinitionId\":\"redacted\"}},\"claims\":{\"aud\":\"https://management.core.windows.net/\",\"iss\":\"https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/\",\"iat\":\"1421876371\",\"nbf\":\"1421876371\",\"exp\":\"1421880271\",\"ver\":\"1.0\",\"http://schemas.microsoft.com/identity/claims/tenantid\":\"00000000-0000-0000-0000-000000000000\",\"http://schemas.microsoft.com/claims/authnmethodsreferences\":\"pwd\",\"http://schemas.microsoft.com/identity/claims/objectidentifier\":\"2468adf0-8211-44e3-95xq-85137af64708\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn\":\"admin@contoso.com\",\"puid\":\"20030000801A118C\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier\":\"9vckmEGF7zDKk1YzIY8k0t1_EAPaXoeHyPRn6f413zM\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname\":\"John\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname\":\"Smith\",\"name\":\"John Smith\",\"groups\":\"cacfe77c-e058-4712-83qw-f9b08849fd60,7f71d11d-4c41-4b23-99d2-d32ce7aa621c,31522864-0578-4ea0-9gdc-e66cc564d18c\",\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name\":\" admin@contoso.com\",\"appid\":\"c44b4083-3bq0-49c1-b47d-974e53cbdf3c\",\"appidacr\":\"2\",\"http://schemas.microsoft.com/identity/claims/scope\":\"user_impersonation\",\"http://schemas.microsoft.com/claims/authnclassreference\":\"1\"}}}", + "type": [ + "connection" + ] + }, + "related": { + "user": [ + "admin", + "John Smith", + "2468adf0-8211-44e3-95xq-85137af64708" + ] + }, + "rule": { + "name": "DefaultRuleSet-1.0-SQLI-942330" + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + } + }, + "tags": [ + "preserve_original_event", + "azure-frontdoor-access" + ], + "url": { + "domain": "erp.testcloud.com", + "full": "https://erp.testcloud.com:443/accountcategory/getAccountCategory", + "original": "https://erp.testcloud.com:443/accountcategory/getAccountCategory", + "path": "/accountcategory/getAccountCategory", + "port": 443, + "scheme": "https" + }, + "user": { + "domain": "contoso.com", + "email": " admin@contoso.com", + "full_name": "John Smith", + "id": "2468adf0-8211-44e3-95xq-85137af64708", + "name": "admin", + "roles": [ + "Contributor" + ] } }, null diff --git a/packages/azure_frontdoor/data_stream/waf/elasticsearch/ingest_pipeline/default.yml b/packages/azure_frontdoor/data_stream/waf/elasticsearch/ingest_pipeline/default.yml index 41620ef50dda..bbbf1721a72e 100644 --- a/packages/azure_frontdoor/data_stream/waf/elasticsearch/ingest_pipeline/default.yml +++ b/packages/azure_frontdoor/data_stream/waf/elasticsearch/ingest_pipeline/default.yml @@ -80,6 +80,151 @@ processors: field: azure.frontdoor.waf.properties.requestUri target_field: url.original ignore_missing: true + - uri_parts: + field: url.original + tag: uri_parts_url_original + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: url.full + copy_from: url.original + ignore_empty_value: true + # handle identity field + - rename: + field: azure.frontdoor.waf.identity + if: ctx.azure?.frontdoor?.waf?.identity instanceof String + target_field: azure.frontdoor.waf.identity_name + ignore_missing: true + - json: + field: azure.frontdoor.waf.identity + tag: json_identity + if: ctx.azure?.frontdoor?.waf?.identity instanceof String + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: azure.frontdoor.waf.identity.authorization.evidence.roleAssignmentScope + target_field: azure.frontdoor.waf.identity.authorization.evidence.role_assignment_scope + ignore_missing: true + - rename: + field: azure.frontdoor.waf.identity.authorization.evidence.roleDefinitionId + target_field: azure.frontdoor.waf.identity.authorization.evidence.role_definition_id + ignore_missing: true + - rename: + field: azure.frontdoor.waf.identity.authorization.evidence.roleAssignmentId + target_field: azure.frontdoor.waf.identity.authorization.evidence.role_assignment_id + ignore_missing: true + - rename: + field: azure.frontdoor.waf.identity.authorization.evidence.principalId + target_field: azure.frontdoor.waf.identity.authorization.evidence.principal_id + ignore_missing: true + - rename: + field: azure.frontdoor.waf.identity.authorization.evidence.principalType + target_field: azure.frontdoor.waf.identity.authorization.evidence.principal_type + ignore_missing: true + - script: + tag: script_claims_cleanup + lang: painless + if: ctx.azure?.frontdoor?.waf?.identity?.claims != null + source: | + Map convertDotsToUnderscore(Map m) { + def out = new HashMap(); + for (entry in m.entrySet()) { + def k = entry.getKey().replace('.', '_'); + def v = entry.getValue(); + out.put(k, v); + } + return out; + } + ctx.azure.frontdoor.waf.identity.claims = convertDotsToUnderscore(ctx.azure.frontdoor.waf.identity.claims); + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - script: + description: Extract user fields into claims_initiated_by_user object from claims object + tag: script_claims_user + if: ctx.azure?.frontdoor?.waf?.identity?.claims instanceof Map + lang: painless + params: + surname: "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/surname" + name: "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/name" + givenname: "http://schemas_xmlsoap_org/ws/2005/05/identity/claims/givenname" + objectidentifier: "http://schemas_microsoft_com/identity/claims/objectidentifier" + tenantid: "http://schemas_microsoft_com/identity/claims/tenantid" + source: |- + def claims = ctx.azure.frontdoor.waf.identity.claims; + def claims_initiated_by_user = new HashMap(); + if (claims.name != null) { + claims_initiated_by_user.fullname = claims.name; + } + for (entry in params.entrySet()) { + if (claims[entry.getValue()] != null) { + claims_initiated_by_user[entry.getKey()] = claims[entry.getValue()]; + } + } + if (claims_initiated_by_user.size() > 0) { + claims_initiated_by_user.schema = "http://schemas.xmlsoap.org/ws/2005/05/identity/claims"; + ctx.azure.frontdoor.waf.identity.claims_initiated_by_user = claims_initiated_by_user; + } + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - grok: + field: azure.frontdoor.waf.identity.claims_initiated_by_user.name + patterns: + - '%{USERNAME:user.name}@%{HOSTNAME:user.domain}' + ignore_missing: true + ignore_failure: true + # set user.email to the original name if the above grok succeeded. + - set: + field: user.email + value: '{{azure.frontdoor.waf.identity.claims_initiated_by_user.name}}' + ignore_empty_value: true + if: 'ctx.user?.name != null' + # set user.name to the original name if the above grok failed (name format is not an email). + - set: + field: user.name + value: '{{azure.frontdoor.waf.identity.claims_initiated_by_user.name}}' + ignore_empty_value: true + if: 'ctx.user?.name == null' + - rename: + field: azure.frontdoor.waf.identity.claims_initiated_by_user.fullname + target_field: user.full_name + ignore_missing: true + - rename: + field: azure.frontdoor.waf.identity.claims_initiated_by_user.objectidentifier + target_field: user.id + ignore_missing: true + - append: + field: user.roles + value: '{{azure.frontdoor.waf.identity.authorization.evidence.role}}' + allow_duplicates: false + if: ctx.azure?.frontdoor?.waf?.identity?.authorization?.evidence?.role != null + - append: + field: related.user + value: '{{user.name}}' + allow_duplicates: false + if: 'ctx.user?.name != null' + - append: + field: related.user + value: '{{user.full_name}}' + allow_duplicates: false + if: 'ctx.user?.name != null' + - append: + field: related.user + value: '{{user.id}}' + allow_duplicates: false + if: 'ctx.user?.name != null' + - rename: + field: azure.frontdoor.waf.identity.claims_initiated_by_user.tenantid + target_field: cloud.account.id + ignore_missing: true - convert: field: client.port type: long diff --git a/packages/azure_frontdoor/data_stream/waf/fields/fields.yml b/packages/azure_frontdoor/data_stream/waf/fields/fields.yml index f6cefe4fbaf0..142672f658e8 100644 --- a/packages/azure_frontdoor/data_stream/waf/fields/fields.yml +++ b/packages/azure_frontdoor/data_stream/waf/fields/fields.yml @@ -34,3 +34,77 @@ - name: msg type: keyword description: Detail msg. + - name: identity_name + type: keyword + description: | + identity name + - name: identity + type: group + fields: + - name: claims_initiated_by_user + type: group + fields: + - name: name + type: keyword + description: | + Name + - name: givenname + type: keyword + description: | + Givenname + - name: surname + type: keyword + description: | + Surname + - name: fullname + type: keyword + description: | + Fullname + - name: schema + type: keyword + description: | + Schema + - name: claims.* + type: object + object_type: keyword + object_type_mapping_type: '*' + description: | + Claims + - name: authorization + type: group + fields: + - name: scope + type: keyword + description: | + Scope + - name: action + type: keyword + description: | + Action + - name: evidence + type: group + fields: + - name: role_assignment_scope + type: keyword + description: | + Role assignment scope + - name: role_definition_id + type: keyword + description: | + Role definition ID + - name: role + type: keyword + description: | + Role + - name: role_assignment_id + type: keyword + description: | + Role assignment ID + - name: principal_id + type: keyword + description: | + Principal ID + - name: principal_type + type: keyword + description: | + Principal type diff --git a/packages/azure_frontdoor/docs/README.md b/packages/azure_frontdoor/docs/README.md index 45b6d1c7253b..cd180df3ef7f 100644 --- a/packages/azure_frontdoor/docs/README.md +++ b/packages/azure_frontdoor/docs/README.md @@ -62,6 +62,21 @@ Users can also use this in case of a Hybrid Cloud model, where one may define th | azure.frontdoor.access.backend_hostname | The host name in the request from client. If you enable custom domains and have wildcard domain (\*.contoso.com), hostname is a.contoso.com. if you use Azure Front Door domain (contoso.azurefd.net), hostname is contoso.azurefd.net. | keyword | | azure.frontdoor.access.cache_status | Provides the status code of how the request gets handled by the CDN service when it comes to caching. | keyword | | azure.frontdoor.access.error_info | This field provides detailed info of the error token for each response. | keyword | +| azure.frontdoor.access.identity.authorization.action | Action | keyword | +| azure.frontdoor.access.identity.authorization.evidence.principal_id | Principal ID | keyword | +| azure.frontdoor.access.identity.authorization.evidence.principal_type | Principal type | keyword | +| azure.frontdoor.access.identity.authorization.evidence.role | Role | keyword | +| azure.frontdoor.access.identity.authorization.evidence.role_assignment_id | Role assignment ID | keyword | +| azure.frontdoor.access.identity.authorization.evidence.role_assignment_scope | Role assignment scope | keyword | +| azure.frontdoor.access.identity.authorization.evidence.role_definition_id | Role definition ID | keyword | +| azure.frontdoor.access.identity.authorization.scope | Scope | keyword | +| azure.frontdoor.access.identity.claims.\* | Claims | object | +| azure.frontdoor.access.identity.claims_initiated_by_user.fullname | Fullname | keyword | +| azure.frontdoor.access.identity.claims_initiated_by_user.givenname | Givenname | keyword | +| azure.frontdoor.access.identity.claims_initiated_by_user.name | Name | keyword | +| azure.frontdoor.access.identity.claims_initiated_by_user.schema | Schema | keyword | +| azure.frontdoor.access.identity.claims_initiated_by_user.surname | Surname | keyword | +| azure.frontdoor.access.identity_name | identity name | keyword | | azure.frontdoor.access.is_received_from_client | Boolean value. | boolean | | azure.frontdoor.access.pop | The edge pop, which responded to the user request. | keyword | | azure.frontdoor.access.routing_rule_name | The name of the route that the request matched. | keyword | @@ -97,6 +112,21 @@ Users can also use this in case of a Hybrid Cloud model, where one may define th | azure.frontdoor.tracking_reference | The unique reference string that identifies a request served by AFD, also sent as X-Azure-Ref header to the client. Required for searching details in the access logs for a specific request. | keyword | | azure.frontdoor.waf.details.data | Detail data. | keyword | | azure.frontdoor.waf.details.msg | Detail msg. | keyword | +| azure.frontdoor.waf.identity.authorization.action | Action | keyword | +| azure.frontdoor.waf.identity.authorization.evidence.principal_id | Principal ID | keyword | +| azure.frontdoor.waf.identity.authorization.evidence.principal_type | Principal type | keyword | +| azure.frontdoor.waf.identity.authorization.evidence.role | Role | keyword | +| azure.frontdoor.waf.identity.authorization.evidence.role_assignment_id | Role assignment ID | keyword | +| azure.frontdoor.waf.identity.authorization.evidence.role_assignment_scope | Role assignment scope | keyword | +| azure.frontdoor.waf.identity.authorization.evidence.role_definition_id | Role definition ID | keyword | +| azure.frontdoor.waf.identity.authorization.scope | Scope | keyword | +| azure.frontdoor.waf.identity.claims.\* | Claims | object | +| azure.frontdoor.waf.identity.claims_initiated_by_user.fullname | Fullname | keyword | +| azure.frontdoor.waf.identity.claims_initiated_by_user.givenname | Givenname | keyword | +| azure.frontdoor.waf.identity.claims_initiated_by_user.name | Name | keyword | +| azure.frontdoor.waf.identity.claims_initiated_by_user.schema | Schema | keyword | +| azure.frontdoor.waf.identity.claims_initiated_by_user.surname | Surname | keyword | +| azure.frontdoor.waf.identity_name | identity name | keyword | | azure.frontdoor.waf.policy | WAF policy name. | keyword | | azure.frontdoor.waf.policy_mode | WAF policy mode. | keyword | | azure.frontdoor.waf.time | The date and time when the AFD edge delivered requested contents to client (in UTC). | keyword | diff --git a/packages/azure_frontdoor/manifest.yml b/packages/azure_frontdoor/manifest.yml index 2bf8e6c01d9c..2f55e18aa0df 100644 --- a/packages/azure_frontdoor/manifest.yml +++ b/packages/azure_frontdoor/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: azure_frontdoor title: "Azure Frontdoor" -version: "1.8.0" +version: "1.9.0" description: "This Elastic integration collects logs from Azure Frontdoor." type: integration categories: From ca5e7bf67c83218985fdbfe603fa9fc0ccb377f2 Mon Sep 17 00:00:00 2001 From: Krishna Chaitanya Reddy Burri Date: Tue, 6 Aug 2024 14:18:28 +0530 Subject: [PATCH 33/77] [Digital Guardian] Initial Release of Digital Guardian (#10617) Initial Release of Digital Guardian. New integration to pull events and alerts from the Digital Guardian Analytics & Reporting Cloud (ARC) API. --- .github/CODEOWNERS | 1 + .../digital_guardian/_dev/build/build.yml | 3 + .../_dev/build/docs/README.md | 74 + .../_dev/deploy/docker/docker-compose.yml | 14 + .../_dev/deploy/docker/files/config.yml | 263 +++ packages/digital_guardian/changelog.yml | 6 + .../_dev/test/pipeline/test-common-config.yml | 4 + .../arc/_dev/test/pipeline/test-dg-arc.log | 2 + .../pipeline/test-dg-arc.log-expected.json | 90 + .../_dev/test/system/test-default-config.yml | 15 + .../data_stream/arc/agent/stream/cel.yml.hbs | 78 + .../elasticsearch/ingest_pipeline/default.yml | 177 ++ .../data_stream/arc/fields/base-fields.yml | 20 + .../data_stream/arc/fields/beats.yml | 6 + .../data_stream/arc/fields/fields.yml | 39 + .../data_stream/arc/manifest.yml | 145 ++ .../data_stream/arc/sample_event.json | 69 + packages/digital_guardian/docs/README.md | 170 ++ .../digital_guardian/img/arc_overview.png | Bin 0 -> 633529 bytes .../img/digital-guardian-logo.svg | 23 + ...-908d6e88-1972-4ec5-95de-acdbca2659ce.json | 1698 +++++++++++++++++ ...al_guardian-security-solution-default.json | 14 + packages/digital_guardian/kibana/tags.yml | 4 + packages/digital_guardian/manifest.yml | 37 + packages/digital_guardian/validation.yml | 4 + 25 files changed, 2956 insertions(+) create mode 100644 packages/digital_guardian/_dev/build/build.yml create mode 100644 packages/digital_guardian/_dev/build/docs/README.md create mode 100644 packages/digital_guardian/_dev/deploy/docker/docker-compose.yml create mode 100644 packages/digital_guardian/_dev/deploy/docker/files/config.yml create mode 100644 packages/digital_guardian/changelog.yml create mode 100644 packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-dg-arc.log create mode 100644 packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-dg-arc.log-expected.json create mode 100644 packages/digital_guardian/data_stream/arc/_dev/test/system/test-default-config.yml create mode 100644 packages/digital_guardian/data_stream/arc/agent/stream/cel.yml.hbs create mode 100644 packages/digital_guardian/data_stream/arc/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/digital_guardian/data_stream/arc/fields/base-fields.yml create mode 100644 packages/digital_guardian/data_stream/arc/fields/beats.yml create mode 100644 packages/digital_guardian/data_stream/arc/fields/fields.yml create mode 100644 packages/digital_guardian/data_stream/arc/manifest.yml create mode 100644 packages/digital_guardian/data_stream/arc/sample_event.json create mode 100644 packages/digital_guardian/docs/README.md create mode 100644 packages/digital_guardian/img/arc_overview.png create mode 100644 packages/digital_guardian/img/digital-guardian-logo.svg create mode 100644 packages/digital_guardian/kibana/dashboard/digital_guardian-908d6e88-1972-4ec5-95de-acdbca2659ce.json create mode 100644 packages/digital_guardian/kibana/tag/digital_guardian-security-solution-default.json create mode 100644 packages/digital_guardian/kibana/tags.yml create mode 100644 packages/digital_guardian/manifest.yml create mode 100644 packages/digital_guardian/validation.yml diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index fd7680766ef3..1642e68e4cf6 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -158,6 +158,7 @@ /packages/darktrace @elastic/security-service-integrations /packages/ded @elastic/ml-ui @elastic/sec-applied-ml /packages/dga @elastic/ml-ui @elastic/sec-applied-ml +/packages/digital_guardian @elastic/security-service-integrations /packages/docker @elastic/obs-cloudnative-monitoring /packages/elastic_agent @elastic/elastic-agent /packages/elastic_package_registry @elastic/ecosystem diff --git a/packages/digital_guardian/_dev/build/build.yml b/packages/digital_guardian/_dev/build/build.yml new file mode 100644 index 000000000000..2bfcfc223b04 --- /dev/null +++ b/packages/digital_guardian/_dev/build/build.yml @@ -0,0 +1,3 @@ +dependencies: + ecs: + reference: "git@v8.11.0" diff --git a/packages/digital_guardian/_dev/build/docs/README.md b/packages/digital_guardian/_dev/build/docs/README.md new file mode 100644 index 000000000000..57c2de230736 --- /dev/null +++ b/packages/digital_guardian/_dev/build/docs/README.md @@ -0,0 +1,74 @@ +# Digital Guardian + +This integration is for ingesting events and alerts from [Fortra's Digital Guardian](https://www.digitalguardian.com/). Fortra’s Digital Guardian helps organizations protect data, performing across the corporate network, traditional endpoints, and cloud applications. Digital Guardian's data loss prevention, available as a software-as-a-service or managed service, helps to see that data, support compliance initiatives, and protect against serious risk. + +The integration allows collection of events and alerts from [Digital Guardian Analytics & Reporting Cloud (ARC)](https://www.digitalguardian.com/blog/new-dawn-dlp-digital-guardian-releases-its-analytics-reporting-cloud-arc) via the REST API. + +## Data streams + +The Digital Guardian integration collects events to populate following data-streams: + +- `digital_guardian.arc`: Collects all events and alerts from `Digital Guardian Analytics & Reporting Cloud (ARC)` via the REST API. + +## Requirements + +Elastic Agent must be installed. For more information, refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). + +### Installing and managing an Elastic Agent: + +You have a few options for installing and managing an Elastic Agent: + +### Install a Fleet-managed Elastic Agent (recommended): + +With this approach, you install Elastic Agent and use Fleet in Kibana to define, configure, and manage your agents in a central location. We recommend using Fleet management because it makes the management and upgrade of your agents considerably easier. + +### Install Elastic Agent in standalone mode (advanced users): + +With this approach, you install Elastic Agent and manually configure the agent locally on the system where it’s installed. You are responsible for managing and upgrading the agents. This approach is reserved for advanced users only. + +### Install Elastic Agent in a containerized environment: + +You can run Elastic Agent inside a container, either with Fleet Server or standalone. Docker images for all versions of Elastic Agent are available from the Elastic Docker registry, and we provide deployment manifests for running on Kubernetes. + +There are some minimum requirements for running Elastic Agent and for more information, refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). + +## Setup + +### Digital Guardian ARC + +#### Copy Digital Guardian ARC required configuration properties: + +1. Copy `Client ID`: From ARC Tenant Settings, copy the Tenant ID. +2. Copy `Client Secret`: From ARC Tenant Settings, copy the Authentication Token. +3. Copy `ARC Server URL`: From Digital Guardian Management Console (DGMC), copy the Access Gateway Base URL. +4. Copy `Authorization Server URL`: From Digital Guardian Management Console (DGMC), copy the Authorization server URL. +5. Copy `ARC Export Profile ID`: + - Navigate to `Admin > reports > export profiles` + - Copy only the GUID part from the export profile. + +#### Enabling the Digital Guardian integration in Elastic with ARC dataset: + +1. In Kibana go to Management > Integrations. +2. In "Search for integrations" search bar, type Digital Guardian. +3. Click on the "Digital Guardian" integration from the search results. +4. Click on the "Add Digital Guardian" button to add the integration. +5. Configure all required integration parameters. + - ARC data requires following parameters: + - `Client ID` + - `Client Secret` + - `ARC Server URL` + - `Authorization Server URL` + - `ARC Export Profile ID` +6. Save the integration. + +## Logs reference + +### arc + +This is the `arc` dataset. + +#### Example + +{{event "arc"}} + +{{fields "arc"}} diff --git a/packages/digital_guardian/_dev/deploy/docker/docker-compose.yml b/packages/digital_guardian/_dev/deploy/docker/docker-compose.yml new file mode 100644 index 000000000000..9cc3e6cc139b --- /dev/null +++ b/packages/digital_guardian/_dev/deploy/docker/docker-compose.yml @@ -0,0 +1,14 @@ +version: "2.3" +services: + dg-arc: + image: docker.elastic.co/observability/stream:v0.15.0 + ports: + - 8080 + volumes: + - ./files:/files:ro + environment: + PORT: 8080 + command: + - http-server + - --addr=:8080 + - --config=/files/config.yml diff --git a/packages/digital_guardian/_dev/deploy/docker/files/config.yml b/packages/digital_guardian/_dev/deploy/docker/files/config.yml new file mode 100644 index 000000000000..f88d51c2941c --- /dev/null +++ b/packages/digital_guardian/_dev/deploy/docker/files/config.yml @@ -0,0 +1,263 @@ +rules: + - path: /as/token.oauth2 + methods: ['POST'] + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: | + {"access_token":"xxxx","expires_in":3600,"token_type":"Bearer"} + - path: /rest/1.0/export_profiles/abc123/export_and_ack + methods: ['POST'] + request_headers: + Accept: + - "application/json" + responses: + - status_code: 200 + body: |- + {{ minify_json ` + { + "fields": [ + { + "array": false, + "name": "dg_name", + "type": "string", + "display_name": "Name", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "inc_creator", + "type": "string", + "display_name": "Creator", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "inc_assign", + "type": "string", + "display_name": "Assignee", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "inc_state", + "type": "string", + "display_name": "Incident State", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "dg_description", + "type": "string", + "display_name": "Description", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "inc_id", + "type": "string", + "display_name": "Incident ID", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "dg_comment", + "type": "string", + "display_name": "Comment", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "inc_mtime", + "type": "timestamp", + "display_name": "Modified Time", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "dg_guid", + "type": "string", + "display_name": "Unique ID", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "inc_sev", + "type": "int", + "display_name": "Severity", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "dg_utype", + "type": "string", + "display_name": "Operation Type", + "tags": [], + "encrypt": false + }, + { + "array": false, + "name": "dg_tenant", + "type": "guid", + "display_name": "Tenant ID", + "tags": [], + "encrypt": false + } + ], + "data": [ + [ + "test has attached a Salesforce data to an email", + "dg", + "test@dgdemo", + "Created", + "This file outlook.exe was going to [demo.digitalg@gmail.com]", + "230523-WIQHA", + "-", + "2023-05-23 06:56:39", + "1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e", + "Critical", + "Incident", + "279b59f3-02f3-44ea-a7c3-9bac2eb0224d" + ], + [ + "Demo 10", + "demo@dgdemo", + "demo@dgdemo", + "Escalated", + "-", + "230523-RG0AB", + "-", + "2023-05-23 11:53:11", + "c742c377-b429-428a-b0c9-515cbbf143be", + "Critical", + "Incident", + "279b59f3-02f3-44ea-a7c3-9bac2eb0224d" + ], + [ + "Demo 11", + "demo11@dgdemo", + "demo11@dgdemo", + "Escalated", + "-", + "230624-RG1AB", + "-", + "2024-06-23 11:53:11", + "a842c377-b429-428a-b0c9-515cbbf133be", + "Critical", + "Incident", + "129b59f3-02f3-44ea-a7c3-9bac2eb0124d" + ], + [ + "Demo 12", + "demo12@dgdemo", + "demo12@dgdemo", + "Escalated", + "-", + "210624-RG1AB", + "-", + "2024-07-23 12:53:11", + "a942b377-b429-428a-b0c9-515cbbf133be", + "Critical", + "Incident", + "128b59f3-01f3-44ea-a7c3-9bac2eb0124d" + ], + [ + "Demo 13", + "demo13@dgdemo", + "demo13@dgdemo", + "Created", + "-", + "200624-RG1AB", + "-", + "2024-07-21 10:53:11", + "aa42b379-b429-428a-b0c9-515cbbf133be", + "Medium", + "Incident", + "128b59f3-01f3-44ea-a7c3-9bac2eb0124d" + ], + [ + "Demo 14", + "demo14@dgdemo", + "demo14@dgdemo", + "Created", + "-", + "200524-RG1AB", + "-", + "2024-07-22 05:43:11", + "ba42f379-b329-428a-b0c9-515cbbf133be", + "High", + "Incident", + "128b59f3-01f3-44ea-a7c3-9bac2eb0124d" + ], + [ + "Demo 15", + "demo15@dgdemo", + "demo15@dgdemo", + "Created", + "-", + "201524-RG3AB", + "-", + "2024-07-25 05:43:11", + "da42fg79-b129-428a-b0c9-515cbbf133be", + "Minor", + "Incident", + "128b59f3-01f3-44ea-a7c3-9bac2eb0124d" + ], + [ + "Demo 16", + "demo16@dgdemo", + "demo16@dgdemo", + "Created", + "-", + "201424-RG3AB", + "-", + "2024-07-26 05:43:11", + "db42ff79-b129-428a-b0c9-515cbbf133be", + "Informational", + "Incident", + "128b59f3-01f3-44ea-a7c3-9bac2eb0124d" + ], + [ + "Demo 17", + "demo17@dgdemo", + "demo17@dgdemo", + "Created", + "-", + "201224-RG3AB", + "-", + "2024-07-28 05:45:11", + "db31ff78-b129-428a-b0c9-515cbbf133be", + "Informational", + "Incident", + "128b59f3-01f3-44ea-a7c3-9bac2eb0124d" + ], + [ + "Demo 18", + "demo18@dgdemo", + "demo18@dgdemo", + "Created", + "-", + "201214-RG2AB", + "-", + "2024-07-29 05:41:11", + "db21fg78-b129-428a-b0c9-515cbbf133be", + "Informational", + "Incident", + "128b59f3-01f3-44ea-a7c3-9bac2eb0124d" + ] + ], + "total_hits": 10 + } + `}} diff --git a/packages/digital_guardian/changelog.yml b/packages/digital_guardian/changelog.yml new file mode 100644 index 000000000000..907d98a571f4 --- /dev/null +++ b/packages/digital_guardian/changelog.yml @@ -0,0 +1,6 @@ +# newer versions go on top +- version: "0.1.0" + changes: + - description: Initial release of the package. + type: enhancement + link: https://github.com/elastic/integrations/pull/10617 diff --git a/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-common-config.yml b/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..be41bb0d4766 --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,4 @@ +fields: + tags: + - preserve_original_event + - preserve_duplicate_custom_fields diff --git a/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-dg-arc.log b/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-dg-arc.log new file mode 100644 index 000000000000..7ccb5e9cecf9 --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-dg-arc.log @@ -0,0 +1,2 @@ +{"dg_comment":"-","dg_description":"This file outlook.exe was going to [demo.digitalg@gmail.com]","dg_guid":"1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e","dg_name":"test has attached a Salesforce data to an email","dg_tenant":"279b59f3-02f3-44ea-a7c3-9bac2eb0224d","dg_utype":"Incident","inc_assign":"test@dgdemo","inc_creator":"dg","inc_id":"230523-WIQHA","inc_mtime":"2023-05-23 06:56:39","inc_sev":"Critical","inc_state":"Created"} +{"dg_comment":"-","dg_description":"-","dg_guid":"c742c377-b429-428a-b0c9-515cbbf143be","dg_name":"Demo 10","dg_tenant":"279b59f3-02f3-44ea-a7c3-9bac2eb0224d","dg_utype":"Incident","inc_assign":"demo@dgdemo","inc_creator":"demo@dgdemo","inc_id":"230523-RG0AB","inc_mtime":"2023-05-23 11:53:11","inc_sev":"Critical","inc_state":"Escalated"} diff --git a/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-dg-arc.log-expected.json b/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-dg-arc.log-expected.json new file mode 100644 index 000000000000..dd02670195ac --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/_dev/test/pipeline/test-dg-arc.log-expected.json @@ -0,0 +1,90 @@ +{ + "expected": [ + { + "@timestamp": "2023-05-23T06:56:39.000Z", + "digital_guardian": { + "arc": { + "dg_description": "This file outlook.exe was going to [demo.digitalg@gmail.com]", + "dg_guid": "1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e", + "dg_name": "test has attached a Salesforce data to an email", + "dg_tenant": "279b59f3-02f3-44ea-a7c3-9bac2eb0224d", + "dg_utype": "Incident", + "inc_assign": "test@dgdemo", + "inc_creator": "dg", + "inc_id": "230523-WIQHA", + "inc_mtime": "2023-05-23T06:56:39.000Z", + "inc_sev": "Critical", + "inc_state": "Created" + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "incident-created", + "id": "1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e", + "kind": "alert", + "original": "{\"dg_comment\":\"-\",\"dg_description\":\"This file outlook.exe was going to [demo.digitalg@gmail.com]\",\"dg_guid\":\"1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e\",\"dg_name\":\"test has attached a Salesforce data to an email\",\"dg_tenant\":\"279b59f3-02f3-44ea-a7c3-9bac2eb0224d\",\"dg_utype\":\"Incident\",\"inc_assign\":\"test@dgdemo\",\"inc_creator\":\"dg\",\"inc_id\":\"230523-WIQHA\",\"inc_mtime\":\"2023-05-23 06:56:39\",\"inc_sev\":\"Critical\",\"inc_state\":\"Created\"}", + "severity": 1 + }, + "related": { + "user": [ + "dg", + "test@dgdemo" + ] + }, + "rule": { + "name": "test has attached a Salesforce data to an email" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields" + ], + "user": { + "name": "dg" + } + }, + { + "@timestamp": "2023-05-23T11:53:11.000Z", + "digital_guardian": { + "arc": { + "dg_guid": "c742c377-b429-428a-b0c9-515cbbf143be", + "dg_name": "Demo 10", + "dg_tenant": "279b59f3-02f3-44ea-a7c3-9bac2eb0224d", + "dg_utype": "Incident", + "inc_assign": "demo@dgdemo", + "inc_creator": "demo@dgdemo", + "inc_id": "230523-RG0AB", + "inc_mtime": "2023-05-23T11:53:11.000Z", + "inc_sev": "Critical", + "inc_state": "Escalated" + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "incident-escalated", + "id": "c742c377-b429-428a-b0c9-515cbbf143be", + "kind": "alert", + "original": "{\"dg_comment\":\"-\",\"dg_description\":\"-\",\"dg_guid\":\"c742c377-b429-428a-b0c9-515cbbf143be\",\"dg_name\":\"Demo 10\",\"dg_tenant\":\"279b59f3-02f3-44ea-a7c3-9bac2eb0224d\",\"dg_utype\":\"Incident\",\"inc_assign\":\"demo@dgdemo\",\"inc_creator\":\"demo@dgdemo\",\"inc_id\":\"230523-RG0AB\",\"inc_mtime\":\"2023-05-23 11:53:11\",\"inc_sev\":\"Critical\",\"inc_state\":\"Escalated\"}", + "severity": 1 + }, + "related": { + "user": [ + "demo@dgdemo" + ] + }, + "rule": { + "name": "Demo 10" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields" + ], + "user": { + "name": "demo@dgdemo" + } + } + ] +} \ No newline at end of file diff --git a/packages/digital_guardian/data_stream/arc/_dev/test/system/test-default-config.yml b/packages/digital_guardian/data_stream/arc/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..fea3d18a5a83 --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/_dev/test/system/test-default-config.yml @@ -0,0 +1,15 @@ +input: cel +service: dg-arc +data_stream: + vars: + url: http://{{Hostname}}:{{Port}} + auth_server_url: http://{{Hostname}}:{{Port}} + client_id: xxxx + client_secret: xxxx + scope: client + export_profile: abc123 + preserve_original_event: true + preserve_duplicate_custom_fields: true + enable_request_tracer: true +assert: + hit_count: 10 diff --git a/packages/digital_guardian/data_stream/arc/agent/stream/cel.yml.hbs b/packages/digital_guardian/data_stream/arc/agent/stream/cel.yml.hbs new file mode 100644 index 000000000000..c1057dc7076f --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/agent/stream/cel.yml.hbs @@ -0,0 +1,78 @@ +config_version: 2 +interval: {{interval}} +{{#if enable_request_tracer}} +resource.tracer.filename: "../../logs/cel/http-request-trace-*.ndjson" +resource.tracer.maxbackups: 5 +{{/if}} +{{#if proxy_url}} +resource.proxy_url: {{proxy_url}} +{{/if}} +{{#if ssl}} +resource.ssl: {{ssl}} +{{/if}} +{{#if http_client_timeout}} +resource.timeout: {{http_client_timeout}} +{{/if}} +resource.url: {{url}} +auth.oauth2: + client.id: {{client_id}} + client.secret: {{client_secret}} + token_url: {{auth_server_url}}/as/token.oauth2 + scopes: {{scope}} +redact: + fields: ~ +program: | + state.with( + request("POST", + state.url + "/rest/1.0/export_profiles/{{export_profile}}/export_and_ack" + ).with({ + "Header":{ + "Accept": ["application/json"], + }, + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body, + (has(body.fields) && has(body.data) ? + body.fields.map(e, e.name).as(field_names, { + "events": body.data.map(d, zip(field_names, d).as(e, { + "message": e.encode_json(), + })) + }) + : + {"events": []} + ) + ) + : + { + "events": dyn({ + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "POST:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }) + } + ) + ) + +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#if preserve_duplicate_custom_fields}} + - preserve_duplicate_custom_fields +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/digital_guardian/data_stream/arc/elasticsearch/ingest_pipeline/default.yml b/packages/digital_guardian/data_stream/arc/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..aa2d36ccbbec --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,177 @@ +--- +description: Pipeline for processing Digital Guardian Analytics & Reporting Cloud (ARC) logs. +processors: + - set: + field: ecs.version + tag: set_ecs_version + value: 8.11.0 + - fail: + if: ctx.error?.message != null && ctx.message == null && ctx.event?.original == null + message: error message set and no data to process. + - rename: + field: message + tag: rename_message_to_event_original + target_field: event.original + ignore_missing: true + description: Renames the original `message` field to `event.original` to store a copy of the original message. The `event.original` field is not touched if the document already has one; it may happen when Logstash sends the document. + if: ctx.event?.original == null + - remove: + field: message + tag: remove_message + ignore_missing: true + description: The `message` field is no longer required if the document has an `event.original` field. + if: ctx.event?.original != null + - json: + field: event.original + tag: json_event_original + target_field: digital_guardian.arc + if: ctx.event?.original != null + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - script: + description: Drops null/empty/na values recursively. + tag: script_to_remove_na_values + lang: painless + source: |- + boolean dropEmptyFields(Object object) { + if (object == null || ['', '{}', 'NA', 'None', 'null', '-'].contains(object)) { + return true; + } else if (object instanceof Map) { + ((Map) object).values().removeIf(value -> dropEmptyFields(value)); + return (((Map) object).size() == 0); + } else if (object instanceof List) { + ((List) object).removeIf(value -> dropEmptyFields(value)); + return (((List) object).length == 0); + } + return false; + } + dropEmptyFields(ctx); + +# ECS Event Fields + - set: + field: event.kind + tag: set_event_kind + value: alert + - set: + field: event.id + tag: set_event_id + copy_from: digital_guardian.arc.dg_guid + ignore_empty_value: true + - script: + tag: script_set_event_action + description: Set event.action from dg_utype and inc_state + if: ctx.digital_guardian?.arc?.dg_utype != null && ctx.digital_guardian.arc.inc_state != null + lang: painless + source: |- + if (ctx.event == null) { + ctx.event = new HashMap(); + } + ctx.event.action = (ctx.digital_guardian.arc.dg_utype + "-" + ctx.digital_guardian.arc.inc_state).toLowerCase(); + - script: + tag: script_set_event_severity + description: Set event.severity from inc_sev + if: ctx.digital_guardian?.arc?.inc_sev != null + lang: painless + params: + Unknown: 9 + Informational: 6 + Low: 5 + Minor: 5 + Medium: 4 + High: 2 + Critical: 1 + source: |- + if (ctx.event == null) { + ctx.event = new HashMap(); + } + def sev = ctx.digital_guardian.arc.inc_sev; + ctx.event.severity = params.getOrDefault(sev, params['Unknown']); + +# Date fields + - date: + field: digital_guardian.arc.inc_mtime + tag: date_inc_mtime + target_field: digital_guardian.arc.inc_mtime + formats: + - "yyyy-MM-dd HH:mm:ss" + if: ctx.digital_guardian?.arc?.inc_mtime != null + - set: + field: '@timestamp' + tag: set_timestamp + copy_from: digital_guardian.arc.inc_mtime + ignore_empty_value: true + +# ECS Rule Fields + - set: + field: rule.name + tag: set_rule_name + copy_from: digital_guardian.arc.dg_name + ignore_empty_value: true + +# ECS User Fields + - set: + field: user.name + tag: set_user_name + copy_from: digital_guardian.arc.inc_creator + ignore_empty_value: true + +# ECS Related Fields + - append: + field: related.user + value: '{{{digital_guardian.arc.inc_creator}}}' + allow_duplicates: false + if: ctx.digital_guardian?.arc?.inc_creator != null + - append: + field: related.user + value: '{{{digital_guardian.arc.inc_assign}}}' + allow_duplicates: false + if: ctx.digital_guardian?.arc?.inc_assign != null + +# Cleanup + - remove: + field: + - digital_guardian.arc.dg_name + - digital_guardian.arc.dg_guid + - digital_guardian.arc.inc_mtime + - digital_guardian.arc.inc_sev + - digital_guardian.arc.inc_creator + tag: remove_custom_duplicate_fields + ignore_missing: true + if: ctx.tags == null || !ctx.tags.contains('preserve_duplicate_custom_fields') + - remove: + field: json + tag: remove_json + ignore_missing: true + - script: + lang: painless + description: Drops null/empty values recursively. + tag: painless_remove_null + source: |- + boolean drop(Object object) { + if (object == null || object == '') { + return true; + } else if (object instanceof Map) { + ((Map) object).values().removeIf(v -> drop(v)); + return (((Map) object).size() == 0); + } else if (object instanceof List) { + ((List) object).removeIf(v -> drop(v)); + return (((List) object).length == 0); + } + return false; + } + drop(ctx); + - set: + field: event.kind + value: pipeline_error + tag: set_pipeline_error_into_event_kind + if: ctx.error?.message != null +on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: event.kind + tag: set_pipeline_error_to_event_kind + value: pipeline_error diff --git a/packages/digital_guardian/data_stream/arc/fields/base-fields.yml b/packages/digital_guardian/data_stream/arc/fields/base-fields.yml new file mode 100644 index 000000000000..cda5f12d1f76 --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/fields/base-fields.yml @@ -0,0 +1,20 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: '@timestamp' + type: date + description: Event timestamp. +- name: event.module + type: constant_keyword + description: Event module. + value: digital_guardian +- name: event.dataset + type: constant_keyword + description: Event dataset. + value: digital_guardian.arc diff --git a/packages/digital_guardian/data_stream/arc/fields/beats.yml b/packages/digital_guardian/data_stream/arc/fields/beats.yml new file mode 100644 index 000000000000..d5fd38748bad --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/fields/beats.yml @@ -0,0 +1,6 @@ +- name: input.type + type: keyword + description: Type of Filebeat input. +- name: log.offset + type: long + description: Log offset. diff --git a/packages/digital_guardian/data_stream/arc/fields/fields.yml b/packages/digital_guardian/data_stream/arc/fields/fields.yml new file mode 100644 index 000000000000..cf6e0b86ba37 --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/fields/fields.yml @@ -0,0 +1,39 @@ +- name: digital_guardian.arc + type: group + fields: + - name: dg_name + type: keyword + description: Name. + - name: dg_utype + type: keyword + description: Operation Type + - name: dg_tenant + type: keyword + description: Tenant ID + - name: dg_guid + type: keyword + description: Unique ID + - name: dg_comment + type: keyword + description: Comment + - name: dg_description + type: keyword + description: Description + - name: inc_creator + type: keyword + description: Incident Creator + - name: inc_assign + type: keyword + description: Incident Assignee + - name: inc_state + type: keyword + description: Incident State + - name: inc_id + type: keyword + description: Incident ID + - name: inc_mtime + type: date + description: Incident Modified Time + - name: inc_sev + type: keyword + description: Incident Severity diff --git a/packages/digital_guardian/data_stream/arc/manifest.yml b/packages/digital_guardian/data_stream/arc/manifest.yml new file mode 100644 index 000000000000..a8a73a2e6e94 --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/manifest.yml @@ -0,0 +1,145 @@ +title: Digital Guardian ARC Logs +type: logs +streams: + - input: cel + enabled: false + title: Digital Guardian ARC Logs + description: Collecting Digital Guardian ARC logs via API. + template_path: cel.yml.hbs + vars: + - name: url + type: text + title: ARC Server URL + description: Gateway Base URL of the Digital Guardian ARC API. + multi: false + required: true + show_user: true + - name: auth_server_url + type: text + title: Authorization Server URL + description: Authorization Server URL to get valid token. + multi: false + required: true + show_user: false + secret: false + - name: export_profile + type: text + title: ARC Export Profile ID + description: ARC Profile GUID to Export. + required: true + multi: false + show_user: true + - name: interval + type: text + title: Interval + description: Interval between two REST API calls. Supported units for this parameter are h/m/s. + default: 1h + multi: false + required: true + show_user: true + - name: client_id + type: text + title: Client ID + description: Client ID of Digital Guardian. + multi: false + required: true + show_user: true + - name: client_secret + type: password + title: Client Secret + description: Client secret of Digital Guardian. + multi: false + required: true + show_user: true + secret: true + - name: scope + type: text + title: Scope + description: Scope of Digital Guardian. + multi: false + required: true + show_user: true + default: client + - name: http_client_timeout + type: text + title: HTTP Client Timeout + description: Duration before declaring that the HTTP client connection has timed out. Valid time units are ns, us, ms, s, m, h. + multi: false + required: true + show_user: false + default: 10m + - name: proxy_url + type: text + title: Proxy URL + multi: false + required: false + show_user: false + description: URL to proxy connections in the form of http[s]://:@:. + - name: ssl + type: yaml + title: SSL Configuration + description: i.e. certificate_authorities, supported_protocols, verification_mode etc. + multi: false + required: false + show_user: false + default: | + #certificate_authorities: + # - | + # -----BEGIN CERTIFICATE----- + # MIIDCjCCAfKgAwIBAgITJ706Mu2wJlKckpIvkWxEHvEyijANBgkqhkiG9w0BAQsF + # ADAUMRIwEAYDVQQDDAlsb2NhbGhvc3QwIBcNMTkwNzIyMTkyOTA0WhgPMjExOTA2 + # MjgxOTI5MDRaMBQxEjAQBgNVBAMMCWxvY2FsaG9zdDCCASIwDQYJKoZIhvcNAQEB + # BQADggEPADCCAQoCggEBANce58Y/JykI58iyOXpxGfw0/gMvF0hUQAcUrSMxEO6n + # fZRA49b4OV4SwWmA3395uL2eB2NB8y8qdQ9muXUdPBWE4l9rMZ6gmfu90N5B5uEl + # 94NcfBfYOKi1fJQ9i7WKhTjlRkMCgBkWPkUokvBZFRt8RtF7zI77BSEorHGQCk9t + # /D7BS0GJyfVEhftbWcFEAG3VRcoMhF7kUzYwp+qESoriFRYLeDWv68ZOvG7eoWnP + # PsvZStEVEimjvK5NSESEQa9xWyJOmlOKXhkdymtcUd/nXnx6UTCFgnkgzSdTWV41 + # CI6B6aJ9svCTI2QuoIq2HxX/ix7OvW1huVmcyHVxyUECAwEAAaNTMFEwHQYDVR0O + # BBYEFPwN1OceFGm9v6ux8G+DZ3TUDYxqMB8GA1UdIwQYMBaAFPwN1OceFGm9v6ux + # 8G+DZ3TUDYxqMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAG5D + # 874A4YI7YUwOVsVAdbWtgp1d0zKcPRR+r2OdSbTAV5/gcS3jgBJ3i1BN34JuDVFw + # 3DeJSYT3nxy2Y56lLnxDeF8CUTUtVQx3CuGkRg1ouGAHpO/6OqOhwLLorEmxi7tA + # H2O8mtT0poX5AnOAhzVy7QW0D/k4WaoLyckM5hUa6RtvgvLxOwA0U+VGurCDoctu + # 8F4QOgTAWyh8EZIwaKCliFRSynDpv3JTUwtfZkxo6K6nce1RhCWFAsMvDZL8Dgc0 + # yvgJ38BRsFOtkRuAGSf6ZUwTO8JJRRIFnpUzXflAnGivK9M13D5GEQMmIl6U9Pvk + # sxSmbIUfc2SGJGCJD4I= + # -----END CERTIFICATE----- + - name: enable_request_tracer + type: bool + title: Enable request tracing + multi: false + required: false + show_user: false + description: The request tracer logs HTTP requests and responses to the agent's local file-system for debugging configurations. + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - forwarded + - digital_guardian-arc + - name: preserve_original_event + required: true + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original`. + type: bool + multi: false + default: false + - name: preserve_duplicate_custom_fields + required: false + show_user: false + title: Preserve duplicate custom fields + description: Preserve Custom fields that were copied to Elastic Common Schema (ECS) fields. + type: bool + multi: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details. diff --git a/packages/digital_guardian/data_stream/arc/sample_event.json b/packages/digital_guardian/data_stream/arc/sample_event.json new file mode 100644 index 000000000000..08433b75133e --- /dev/null +++ b/packages/digital_guardian/data_stream/arc/sample_event.json @@ -0,0 +1,69 @@ +{ + "@timestamp": "2023-05-23T06:56:39.000Z", + "agent": { + "ephemeral_id": "bc19c27a-7a31-4b0c-b04b-b3be2ab95a02", + "id": "1edfb948-2ef5-4b96-8747-225d782bb6dd", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "digital_guardian.arc", + "namespace": "19912", + "type": "logs" + }, + "digital_guardian": { + "arc": { + "dg_description": "This file outlook.exe was going to [demo.digitalg@gmail.com]", + "dg_guid": "1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e", + "dg_name": "test has attached a Salesforce data to an email", + "dg_tenant": "279b59f3-02f3-44ea-a7c3-9bac2eb0224d", + "dg_utype": "Incident", + "inc_assign": "test@dgdemo", + "inc_creator": "dg", + "inc_id": "230523-WIQHA", + "inc_mtime": "2023-05-23T06:56:39.000Z", + "inc_sev": "Critical", + "inc_state": "Created" + } + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "1edfb948-2ef5-4b96-8747-225d782bb6dd", + "snapshot": false, + "version": "8.13.0" + }, + "event": { + "action": "incident-created", + "agent_id_status": "verified", + "dataset": "digital_guardian.arc", + "id": "1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e", + "ingested": "2024-07-30T15:23:06Z", + "kind": "alert", + "original": "{\"dg_comment\":\"-\",\"dg_description\":\"This file outlook.exe was going to [demo.digitalg@gmail.com]\",\"dg_guid\":\"1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e\",\"dg_name\":\"test has attached a Salesforce data to an email\",\"dg_tenant\":\"279b59f3-02f3-44ea-a7c3-9bac2eb0224d\",\"dg_utype\":\"Incident\",\"inc_assign\":\"test@dgdemo\",\"inc_creator\":\"dg\",\"inc_id\":\"230523-WIQHA\",\"inc_mtime\":\"2023-05-23 06:56:39\",\"inc_sev\":\"Critical\",\"inc_state\":\"Created\"}", + "severity": 1 + }, + "input": { + "type": "cel" + }, + "related": { + "user": [ + "dg", + "test@dgdemo" + ] + }, + "rule": { + "name": "test has attached a Salesforce data to an email" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "digital_guardian-arc" + ], + "user": { + "name": "dg" + } +} \ No newline at end of file diff --git a/packages/digital_guardian/docs/README.md b/packages/digital_guardian/docs/README.md new file mode 100644 index 000000000000..98fcc6256bd5 --- /dev/null +++ b/packages/digital_guardian/docs/README.md @@ -0,0 +1,170 @@ +# Digital Guardian + +This integration is for ingesting events and alerts from [Fortra's Digital Guardian](https://www.digitalguardian.com/). Fortra’s Digital Guardian helps organizations protect data, performing across the corporate network, traditional endpoints, and cloud applications. Digital Guardian's data loss prevention, available as a software-as-a-service or managed service, helps to see that data, support compliance initiatives, and protect against serious risk. + +The integration allows collection of events and alerts from [Digital Guardian Analytics & Reporting Cloud (ARC)](https://www.digitalguardian.com/blog/new-dawn-dlp-digital-guardian-releases-its-analytics-reporting-cloud-arc) via the REST API. + +## Data streams + +The Digital Guardian integration collects events to populate following data-streams: + +- `digital_guardian.arc`: Collects all events and alerts from `Digital Guardian Analytics & Reporting Cloud (ARC)` via the REST API. + +## Requirements + +Elastic Agent must be installed. For more information, refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). + +### Installing and managing an Elastic Agent: + +You have a few options for installing and managing an Elastic Agent: + +### Install a Fleet-managed Elastic Agent (recommended): + +With this approach, you install Elastic Agent and use Fleet in Kibana to define, configure, and manage your agents in a central location. We recommend using Fleet management because it makes the management and upgrade of your agents considerably easier. + +### Install Elastic Agent in standalone mode (advanced users): + +With this approach, you install Elastic Agent and manually configure the agent locally on the system where it’s installed. You are responsible for managing and upgrading the agents. This approach is reserved for advanced users only. + +### Install Elastic Agent in a containerized environment: + +You can run Elastic Agent inside a container, either with Fleet Server or standalone. Docker images for all versions of Elastic Agent are available from the Elastic Docker registry, and we provide deployment manifests for running on Kubernetes. + +There are some minimum requirements for running Elastic Agent and for more information, refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). + +## Setup + +### Digital Guardian ARC + +#### Copy Digital Guardian ARC required configuration properties: + +1. Copy `Client ID`: From ARC Tenant Settings, copy the Tenant ID. +2. Copy `Client Secret`: From ARC Tenant Settings, copy the Authentication Token. +3. Copy `ARC Server URL`: From Digital Guardian Management Console (DGMC), copy the Access Gateway Base URL. +4. Copy `Authorization Server URL`: From Digital Guardian Management Console (DGMC), copy the Authorization server URL. +5. Copy `ARC Export Profile ID`: + - Navigate to `Admin > reports > export profiles` + - Copy only the GUID part from the export profile. + +#### Enabling the Digital Guardian integration in Elastic with ARC dataset: + +1. In Kibana go to Management > Integrations. +2. In "Search for integrations" search bar, type Digital Guardian. +3. Click on the "Digital Guardian" integration from the search results. +4. Click on the "Add Digital Guardian" button to add the integration. +5. Configure all required integration parameters. + - ARC data requires following parameters: + - `Client ID` + - `Client Secret` + - `ARC Server URL` + - `Authorization Server URL` + - `ARC Export Profile ID` +6. Save the integration. + +## Logs reference + +### arc + +This is the `arc` dataset. + +#### Example + +An example event for `arc` looks as following: + +```json +{ + "@timestamp": "2023-05-23T06:56:39.000Z", + "agent": { + "ephemeral_id": "bc19c27a-7a31-4b0c-b04b-b3be2ab95a02", + "id": "1edfb948-2ef5-4b96-8747-225d782bb6dd", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "digital_guardian.arc", + "namespace": "19912", + "type": "logs" + }, + "digital_guardian": { + "arc": { + "dg_description": "This file outlook.exe was going to [demo.digitalg@gmail.com]", + "dg_guid": "1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e", + "dg_name": "test has attached a Salesforce data to an email", + "dg_tenant": "279b59f3-02f3-44ea-a7c3-9bac2eb0224d", + "dg_utype": "Incident", + "inc_assign": "test@dgdemo", + "inc_creator": "dg", + "inc_id": "230523-WIQHA", + "inc_mtime": "2023-05-23T06:56:39.000Z", + "inc_sev": "Critical", + "inc_state": "Created" + } + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "1edfb948-2ef5-4b96-8747-225d782bb6dd", + "snapshot": false, + "version": "8.13.0" + }, + "event": { + "action": "incident-created", + "agent_id_status": "verified", + "dataset": "digital_guardian.arc", + "id": "1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e", + "ingested": "2024-07-30T15:23:06Z", + "kind": "alert", + "original": "{\"dg_comment\":\"-\",\"dg_description\":\"This file outlook.exe was going to [demo.digitalg@gmail.com]\",\"dg_guid\":\"1dc3c1fa-5474-4fc0-a7c3-74ff42d28e5e\",\"dg_name\":\"test has attached a Salesforce data to an email\",\"dg_tenant\":\"279b59f3-02f3-44ea-a7c3-9bac2eb0224d\",\"dg_utype\":\"Incident\",\"inc_assign\":\"test@dgdemo\",\"inc_creator\":\"dg\",\"inc_id\":\"230523-WIQHA\",\"inc_mtime\":\"2023-05-23 06:56:39\",\"inc_sev\":\"Critical\",\"inc_state\":\"Created\"}", + "severity": 1 + }, + "input": { + "type": "cel" + }, + "related": { + "user": [ + "dg", + "test@dgdemo" + ] + }, + "rule": { + "name": "test has attached a Salesforce data to an email" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "digital_guardian-arc" + ], + "user": { + "name": "dg" + } +} +``` + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| digital_guardian.arc.dg_comment | Comment | keyword | +| digital_guardian.arc.dg_description | Description | keyword | +| digital_guardian.arc.dg_guid | Unique ID | keyword | +| digital_guardian.arc.dg_name | Name. | keyword | +| digital_guardian.arc.dg_tenant | Tenant ID | keyword | +| digital_guardian.arc.dg_utype | Operation Type | keyword | +| digital_guardian.arc.inc_assign | Incident Assignee | keyword | +| digital_guardian.arc.inc_creator | Incident Creator | keyword | +| digital_guardian.arc.inc_id | Incident ID | keyword | +| digital_guardian.arc.inc_mtime | Incident Modified Time | date | +| digital_guardian.arc.inc_sev | Incident Severity | keyword | +| digital_guardian.arc.inc_state | Incident State | keyword | +| event.dataset | Event dataset. | constant_keyword | +| event.module | Event module. | constant_keyword | +| input.type | Type of Filebeat input. | keyword | +| log.offset | Log offset. | long | + diff --git a/packages/digital_guardian/img/arc_overview.png b/packages/digital_guardian/img/arc_overview.png new file mode 100644 index 0000000000000000000000000000000000000000..5d3dd0d3be3be16aff220a967d9633db94e74c0b GIT binary patch literal 633529 zcmb@sWmsHG(=H4ICj<)+Ah-n&9$bU#;I4!F3~s?gaCZp7-61%^-QC^Y2Irgo?ANaE z{5j8i_PW-Z?&)L zg!0%84un;PhR`UW*fQL=AB0H^12ErQ2rk3n^bx0j-iRDCZlZmKDP$+R9T~|O4*7y> ztYbkLteHP1_b5WUWuIy(ma1#li>W^RRbLe@$bIwU>Gdl+@oV$;t`w5DW>;|{9ZE#P z2*K`&`t7y@fqKAijd(l)getsl(m=09f$mS#Duk&&Dp(M{2IgU>v#xJiW&`TbO{8$?!Wdgj=5&g)3 z83h07y2>9c?NB<|#=&jx&^DhhM@|a}h3uL4hR|OI)SdsnyxY*N9D>7QFjA6?=H@bX zVD=I*j5a>iY!HseESSD08^!pp7T!a*nQoCMV8`5#5_7SO*}RL}P1m;>dhZ}Ye|-UV z^Z~a}D71VIBf=~Dj%0vH0Yd~2hZx_pyC3BGBh#=00XrHNzC(H7ZKPBz z?;KQqcP`{74W^||$+oVX;+Zz#CV@%fQ4>E6Q7B_-_vz$gqc9aN} zGJnB=d`$0i_3Ts;McTmH;LVP6@QkgLx>Sib5vHBSP~W9E>C;`GRhmM_=@A zD7OB+SyYH|8N+;=#N zVzxHht0u(5=XUIc{LyPZ_|+zqsr#K_**x7bzsq}Tn77C9v)}8C`b^y{oCRVk%0=v} zF5RlLBhN`+5VJ}dL<-h1EsTUNVr7%Ji^CLy!4T@f(eeZ~Czg(7pxAvmli zi~*+lENt`UhDPFLMHsx)2D*BM>DcS;=;(+!)160wxpnV2@x9|S9}3KRrv@`hyemzO zfch>;5BZ!a`<-hl>}OcK4!qGmgx_!M*D?HsKYWL~AR~|qoG|ZnW`YYKI1Tv{wnK?zmb^(j@FrV1@zVt_TQX!n8S-mA>(FKB7Ubc4*EjI zjEr;f)jt}U3Qt-B5c5_%P%0*+-z)bmo#ZTeS`48nsnZ9Zpma&z=%s$KTqO4hFHu%i z^cjf=Wot0}ptzRB7s4n7VfJx43v%snW|6s{GyBZ7BmzPD;uSd=`)IYKZ<6Wr!%~bQ zKj4^{C~Kl7MoL#MXws?sshK!y;&_c}R4J6=KYqt?#V*(mS`o zcka=G(EdZH`|;c!p8n7Gb>VXg2V@fzg219cY*7Rwq7BTAx6876fv(~d%1IVt*WWx@ zQt^hwG<9xWu3j!qE<-N!BoeL~t_m)G zf?>jY+!&b{nV><1ge`gv)yyI<8tdq?e*NuFY+3vnE%7Z0%i?X~rxd>V766-1g7I!L zct8>$dS0Ycuv65fgqqrn?u-hjgjyl5hI7QB{tT!XLrtjIvS^{CYNoeDdM2^ZR)ep| zMdt)PL8dPMK}DtTewuok@X+$`%^?zD#;*9*_+2eet&Fz73F=86uhxo8MxLN@t5U1z z^S1};8-4WZ;5tN|fD%@n9Kcp(uY81$eABMf$fptAk)BjO&M|8j>zLZoI{(@`?H+BN zS_Nx?d=oGlZ`x?iSb=?BR<^4pPMvKn&!W~MaIv{=sqPV63)XeUcFsRgJ^VOzFx>+# zbLMH{X_9q@9IcK&=bD%HP2%h`O_oeG|AOfICbzY>3Ad~IM!h&cDcx6HC&0(Gef9c!+pbvn_A8xVDyll-DSw?^uhWAQ@9{IWsMSh(SlixOU>9W z*DlKL*Im!yGaV(yWV{1B2BuV|2S$0OKFv|+pj%A7)*EXBwaeOAaiO)^YdJDUD9 zElI2eo2Xc*ScAqAt&Yt3dg>Q%Q;8=cEt6~;R!^%1tj^4`EDbDu2Vk8YTrqh|UH3mI zd^qLNN`DccgG)hj?QpeR5rNTOtv%njER{N>!uZO*;-aj$IDRnjWr zEs+*SwdJ-oz9)XBY~E0v^0e}woZWD%k2ixef7I5S{@f%It=NVy!8MpQRGgBWVncW# zBp9+$s!{Y&X>zt^93a-KblN}c9iYfP<*_LJQ~i7W$JUoim+R5n)q@p*MYCGN>)DAY z?_uxXf@$8o-UMw$ZE0S7&%;l@eP(>3o|vBQUzVP-s*W|aO7%*UU`JtNzlp(~E$AO> z9mn};8cG>j8hS>nD~XOb{Y3h+`-k99-5+mqJ92hWgHyLL&GEon2#J9wy`(g7PPC300R~eFH`>Q~lG?ctoyic{4 zKZ2NmkG-BVl7ySi&V0G~?%Q47g)5E?PA4K2jkIhlelSGM_OVj>Rg(RHA`=PE_=>1gte^p*fq*?ta!A{yvN+60$1}p)6)L^f$O2t{$t$gprgQw zYS9`lv(~Z5!PQKG=(zYAS`BJ$PDrJcY&?@yiVd6l;`Y0$fZyWFJU!Nf#dO}W4g>Z4 zRQ96!CT(0#G4^qbGQKf_jOR>+jCY?o9S{91Q>VnI7W0=B4LF{)j2t%X+0O}D2u9dP z%tq7h9q_DYcNhAPYZpd9jJxm04pNEOT>JP3TaMk^@pZl|3n)*a` zCCN@xLYGF{#iViVl6WU|Cuk>1BV0?lJ+`VEytAYhr=C&aP&WTNwOYHW2_)a0+FO@s zomBQ*%?w((8T>XVpeCUfR=irVSJ7Vm$5(7cVk-hjBxH+i*Hp)23i7UVcJ9I3O!Q|` zY@o5TeU7--8R6=(1unJO;oF`qV>RdG_2%T86-a%R_ifYO+_xcT_JSS!O0MIFhBM?3*^?f*J|5l%VrF9ICQc@O82ycsBM<(^<-1Tk#Q^K3&!K9oPbF0mp{qiF5cO4KA9U z4z1Q_YUaMoG3!UQtU6L|^p>S<*}JT6t{t{zfF5Tu{Q0uZMq4F+Yj_xJ`SiTWL7MTM zf37N+YQ388>Ikuo+9X-=9`=0NlwOTv(d$txQe?1Gjx zBt8}0o6pEDB_X|DzLu2P+ZfC-43zlIg{^&PS$LVfu?6{pUjtkl&jj09o(<29`XqPz zW)-EgGQBe&g06uh8qF2*Yn|;YME%4cFhSJ1_Z2XR45^v#I*v|Yl;U82c3lww(>I@J zS-x)$(@U-k8TAk->o3C=2E3lJww|Bu(!h8&bZ+5KYmj0HbKrh+Q~VZ5$f=4nW_1b5 zE5+R4F;p3zt6kxYs$;_Go9Ea(7P{>outW&X_aUv)!C`Tt7g zRkCyg+GvSe+Ct|H+J+!2=Vvzle-Zp2S^wSS{~*=;Z&G#+4vzmx`aiP%|DN+dXZdUF|6?xxp6Gw2LT6eKm7nFmR!tDqK_BQ3UC57?;)<%! z5XxqMJ#c5xpHF{>&^SDId5mf5PZ$_s7-?}4RX5n<3Jt+ zGbp74azs~JecOE!D)g`}Hw>hq1;8hif1f-c5nU#oT-} zod-0QvLasrI*Z#dVCocwqZ0n-UWXAB)1TwcBLr74|6sM;Jbq#LEHb^}1VN&6@`9Ld z5C350MPkBTji11I@2p6I;HAF(V{f1+J`yZSG|WHt<|4wHK_OpEcM_`#S>5)2<(`YNh`X{#wtch519neELhbNvP?6I4;Ekj%ps8|fYe*BpC-8lDSi(QGd+adb`XzaN1y2!qh%zO#ar$GaRbpeCpqumtckAMxnZs}J zfP{`9G)Je4&GsS>Ig;aE>S$II#DR34DK$k*3i21_{U&;P^?!^nhaTQN>sfh=0EE^#B<=HJ+j#p{|6e2_auD-7IA5G|wf#;&kCkrbq0tYGln*P^X$6eSSRJf=U|hQu5;1r30Y_IIxys4?Hary?hB zq*BS3J7|bICivg);$?AYk5!ticcSw_Rm;inKLQb@$~%ThXz_7Cy5~`UD@L+s?EVbeY;Y8zknH&3i3Uk@7(%1nu8_P*n8Tq#xSdqq(} z+f$UabB%2=fY6!5wnPcJ-j!+b`Er>rYS-=M>T9-h4dg1vVRTi#Osh3H@F*U9K1XM(M*T1=y$t_uT zF=+nqW2M?grM5d$fFmR7!&JA%k#%sd^wo;FUuo>htAG*>fA!7~ki$KaJ z7Z2`EZ&#-KJ9IE1Cx_`1VM-G?2|Nk;zC@HDlcP`dT6vXJ8nfb=BS6?6&l<2jnjqHM zbtzS}iD19TGku`8uU%u5RyyNrL~qU`d%a-=iljhQ2-iox{ z9je(__)A8~@Z0uKnohBLc&uCsvoGW`(p~_0w3Vnv30KBbq*v!%jE_BgHln?Fw)M_w z97+cB+}byI(SRB$Qz@<}_JCo8A_jp3lO#Zw)81f;MZ+!W_r&E!kc=?b7)S&S3Fmm*E9P`W5%8zB($VXJOu?DhVsq={!<J{d1o;Dl}9@7^6 zs-1p)?#O6&n5ca6?xn$qy!~1SxZhR*eoSTWC~dmR2(5N__Hl>2JWOsRZq^fKv0!QD zZ*JyfDa3X4vAmMC;Ed`(Rw*)w;=$#cmz*@w+H>1V!*MYxl;h3>0kF3j;r!L_W{M;XLO|8&R)xXS>;*B*d|p zn3{%uF=B>+oQz^!*AF!E22@BGdYMquAw1lh8tG=d2C3Q71F_uI#>a2N1}zeBaMdy) zvo~9=a}^a+CF8)UM#8z0U8p#24W8O#jw>flZJJv^F!yE%$P+*O5!PJTr%f*zNzxE< z?lzillBd;0i2d>XepM!m_*qT~(r_}E8U1!3IySJ}KKN8Mo zucb9Ox1jk#q1#EHm^6L~q*grG)~cVQ$Q~jUoztL98jO5qJ-r$siB}tZkCHGMBt|Xs z3Y;+gv2>&pioh0DP0*pSn+G{eW2Wy7HIQDPlg zGtNNS_be36kmIEGK84t7pp48F&D<@Tu+!Mia^uzDoq5y>$Z}J$>Q_*%MT|e7&=5At zc8f+XE^kOfHli3e&v~eqWC`1o^*k-xX}h2GV79SLJV9oG^v0xDF~)YuRl4Go7$;#@ z!P*n85ZI&YI83uSm7&xpZjrNo@)fRB@83sdR)fD!uKXv_9rg+a=Gt`0Z);u!T2MeYs9ikp&ZILuer( zQscQYBA^j6+t!B_{;3kAMU8mcCRNTMI$T*fO73&9<|K)M#8y^7xfF>!Yf0{at~>Ck zZ7Wr^L7{^XxY0opE7nIYdx$ADV(oOittG-{)V3^g8dq}`T*?IRo$J#6ws%@j( ziBoBlYVEZ7^mOTSMVYj!{tTa;t`;qDo=io20>f&`qbA4w2TKcoh)+1(I*TpBpqz>FrD7#rvFZ8tQ?Ef^Bne$ zj(^4}md$1$XZ!aq7SW6F*N_0tBD3GpbRPAd&W#1~?orIkk1tdy&1PBGcKQ-3O;+wU zd{~|ec-C-pkDouU%y>a!_8jlJ&{c07TjQWY;yvO#oI%?Vc@X34^Woa9t zU4~K3DoNV6=CQM!VadB>tEGP(Ja)$Dlo7;CZ|b|MosP&U`Gh&HXavYM%uXV^s!h8@ zPzGY;4>iK4r_;jNd{2DhJf}}m zR5Edv+DU3;1Yb;2LcZ+1mnGC-{xrlz8b9J`oNK7*VyVhAd4w^W#S79`r(3EUAq<-&gF9S(Is$@?x)y(&?T_+E4(Q+#GQOH>#Rq(msThF%;BIy!Y6HHuY3&6lb zhUCb6ms3h7IUoo8+w*jnzg6QG=W~(Ui!LBrv#?p7(a>gtl&U9R4Xv?(+#TJ7;1zl@ zQ>tPdK5}z8Ti5J(Zhr1?)GD_$!SqA5#?}w`fzYDA^hVNT#5>?Y8381F1K9A05ZDXm zO;xz*$<>X+s7MF$GtdU=3eh0UegoY5gl5(1GC)H0$ErIZI zr#A!$@_-Q(536Yt0g90wLw$$=^1SU{Rc#fKKlaC@@D(yxh zDFI}PmFrC&XggAOa}SMww)DY+{NPvQqfJ(hdXljm$<9j zDPi0DRXBvZ*krbxts`1^%zDj=Kym5(&f2%cU$z&yKMDW99X(UH;KlWn zs6SgYKTM+2ns-BRF^AVFUHYweT_%Bg_+=>Js#?YAshbXW;N776jT^;fkW5<(c`vB) zF~7mwAdq><991t-oMKFUA9a+J+&09=#HzO_#=~NSSLu48X;AHPfZYRAm}8s*;S7*(s4Q~OZ$dwgH>%w$@J3Rx$?X4j(6X9M?M6#FO^ zu)B31bQa6>pSB(VeMxOO?_T=5l34b57Ju{ED9Y_$){$D!7EvoY;L&~9Bq&3@fCp$e z{lIOqvz-wyR=Z&0opt)o(&EPV0?aP?fvShzq9&c-Tto-f5`6i>I`l=SzVz}K2P2v0 z0=7;Kr&1y!rI5~YFE55ho3n85UPu|>acs>5_U68JUC1fY#q4bY+iWHFn+>Ph#}<&e z30&R1u?uC&+lw22addPfF~C$B(-#_AMb$&8+ZemCZ+l!&3o0k5!S65SK|@a?X>g6E z2%=OAZYHyywPm}cdYG!QMv4>N8*A&aA0leLb1n~=Q{NS3TaL`|>~2xdk0w&lhQcrL zWDwea2M9RFhehVyIU})3y`lkAgVPly8IweOE3W51mcosX`QMA-x zA2PmFoBvwED?*-zWS~e`iHM@3Mh2O<*s2anp_J4UJ8_3`wR_hGsZIt`>yUlA_A+TX zo^+3@|EZsa2iz{1C<*7dIx4Xp&JXA_-YN29AL;hi!5<6ibV4>I?KeEgCOddLpd8KG z=5=`}^xeJ(JJ;Qt&nE&a{@8te*~d%S*UO*>Nr$YH|7wTvaq@Y&M$6K@PSKX#92;Au z$J3W>>C|3BnJhMYz3B;Z+T?WWl`d@>FuuVU{TzL{8xKfdQt@;zlOfg9Co*|QWUwz& z$P#V)&~g)nBstyF=>4dRM%mzXzJyKitF+4Q&N@?w=CwmoC477`Pej`NN`Ef*?qJAO z_7zs8;>$K4WF{{1Mn<=4wGmEqhxj#Z{f6XmCxHtf^OaKPCB05dpMY(y4J;%ymlM3a z!t4Dcj?VVFrXIBi(wI9?=Rp zGQK~}svA`^bHCOhUN#1bn&h|V4-3pT4&pv8;*LJ!c};X}>32VNJ@UFxUcwK=V>It$ z47?t-js58xENjkDJWPJvLq%L6ltc+!k>f4+cvcXRdAIe$Cn~-5D_P#Jw;sQWIA#My z-b+P83crL`A0Mqs#Iv(}#JFXL1>lOe3Ypuv*fZ&U5=XT1jE-U@vGJ?r)?I7Q_>~st zR~BM!f1GH?`>FND#}%(X(WvoFMB$TCp9~G%gq>oct-&d9Ny3VsmIiFQ)Tp@23~nu0 zbFqHY;Kgoo>a+jt&zr#Ft>qOk%;|l~cCff{xJI0AYvleE z?=CTls!n$_yPGMh@zivC6R#DS&4Gcw-=;I}uI2jlcWP+FUfHR2!mwmN2)%qj*4$qW7JyM>W zj+m%#x<-Jj+Sx}t&4&X*R}F))H;+^r4qTQ+!7h6ez;OQE_f3n3ZS9JBv`E)UAFbj? zSWb>4rBf)9gg!W|qoCCfc5-@#2L=nOF%Xjz6NwiU#!ReKl-zhfOcJx%bXpxuRJSl{ zH)|x?&9gx7nPP9OX4DzveTpGJjDI z?Z+(2zxC-u%zMssQm5h&c0%wV9AjneLwJqVj->!IY1Zl{GU`|Y637~Bl~Inl<=;D@ zvXJ^bL||=Xdevq<3An`4NZ5i4kVGaA7K_TND#@?o>6PW0mS-j26@~}TCD6y?ewU5z zP&i6+b8BmH(s@*uc&OTQR>irZQOKlQaye!*pkat-u#FV*od6sxXV-}*(A$-G@E3^h z^MY;qm;M6^bnxw0O|gIU$M+^1mSX5Is_vQhxa% z64E(^kzy-Nyk z$Qwbap3AFO^&{PpD2?{3op~fC?x#=G9tvo=;#CxrYAVZ0E+?zBLa$r^)FU3qVIs%E zV%ji5jCJ4WijVZ+uW?`nN7lb(K%0EyN86s9eZavdr$HtnOeI1ecO^NN@%#iFM7%#6 zM>u`B7xg#2yN>XG&m^VN{#sCm1w%$UqEiC;LQ}!*G&{9YoJNJ4Ye!u_qOdA?sP2_L zbem&7H7PN9=Xt7LgBthn>XFl`B?w|xIQ4M-RXUGt`!H4JNH>tipyZR$G{NL%WZZ_^ zv^vf4@fwS*%iETLFdN31JfaQ?f35m{KJlqs&Sc5VSWZ)8pmMEer2Px1HS6<|f$QgkYBA6BTvy8mU*mb_eX zyvly3$7gGehTp2Qfh9Dlyf>w&MqBuH+((`qbWBoR_ePz(pfZODG9KWJySb&_XNgpy zs{-l#u4M0GYfel3*68hKjx0`}*IQyiYCQu|>qE-cgW1KeBh|P&rvSP`_k^6;qEEB; zv7ZoG5m6LBC2Lp*WuIl*(>Zg%z6;e|c|9_YbX1q08jq#`0)Izw5)ac%_ncwGetYo# ztfex3OLT#0@-ft^E5DQ*l6~dlfXel|9$gJt9Bzr*L?g{ivUOoKceO`I!m3^2kn{c= zlE1XuOetMjF5p4%@N1<8;%{c^8|z6#k4Z1$Dm z8SQ#1MfIuTqPkh{9t6L4bL1Kj3pmc|GDzuJ;KNOo2hhp^a7M# zM3wOC!BTZ;%X~?`mP9pK_xSD%+K_n^7uV6I(EJ#DGs#m-CUEVwiUh*CJ=MzF?wy|B zkS**GP#P5b-sSgbhCZ>0rpVha^G)|1ZijeTHW5$gps68ji!vjz$>W@!FEVlU+wu8$ zECwt@TxT45jF>SRdpC&vF1YQ?pD?Da7jhG~N8*NTUTt$nS!NrXVR=~^R6|A0+8~K1 zo)PP6fdcwjdZT<*jy^MLwC1s)NKbU#IR zl7(m~Gb&0cSkC?oZZ29tQ@5y|GaAUhI^nCeGwdDfK0tG}yQE`(ZT?9@B#0L2_w(H_ z@NB&J1(%%U6miPok482cXjUbD{N`r;?Aa$30%;yPv!$8-DHOFuB{z zLLH(&0;$ur7sVe%GoGCDWlDI-D3RT=`WmiubEq*jg0FzA@|`EMeGxb8{v~H5&%sS$ zq4*+|G@sdOE$6Um4!inNW&e2bj9ijV%?_NY%%+(9TIGF?4PfcnzY54GP7~rH z56~++!%;&eV)JMe$c<;f%fHm5`$L*tvG1NG==lfPrt&wr=Ynxix#Jbr5Qd2c;YNvB zBV4u7p3y=*Bzbu?w-l^)Fp@=Wo&Oda7i$}9?Z<7*Bm(Rwx*m;e>x;>R%duR7d`l^* zs;UA6I)zUP*+(ak_RmN99=AqXzcmpmcS?57H*zEl>7s>nqx}Q8XYGAIGWYy=AG<1G z7uWjuE_n{q;oK~NR?&`f`)Bs?Lcq>N$SIcz(jKB83IG>AWvd3C^`EsivmM_RG*=s5f4;r{b2EhA2-@L@#U33> zEFd{5V2$_7XDXE>KA&%KZkAp+%y;_1O~AyOjb{7$bYvir>b{<-FHx8(U>_4>o61>U zfUU^MPU2;>8((QCK9CX`OB$Jro~r zKg5RJmeYV2wrh1CdiEw>T#fLfoL-&~+#xw4!NlU6e9Vrd0@;9UrdywmXC%S6{80db zO`{Qjj6&Dtbk%xZozXyow;uHMaPjB|mxJCV6tr((J_(2CvhC%kq;au0Dn`?~c!o7d z=@Ni!2RQAYV?}wA5S6>gNkz3ky)@`3bO{Euzs`IQ{L+^2p+GK+@(PbJK?40yDnLiq z_bK~yMn;qkAA8KKI62fGQWF0jRgW&a&->p}rcd%Pmg*JWLSs_u^|r{unAE(pDq4~| zv^r$5s)u_r77vF-W|Nh%)@@WicOS8F;c?6-@w=I*WQ_n%Zt@Tl@6x%71dNV1{-XrV=jh7 zVQ@0U-4%i{-hMS?oKQMTI530?8sd^9nqY_;q>N^=X*}y1koeqGVT(X1!1EPD3Yb;= z&1m6ggg(93x|`JdL0@SzUiXKV>EkmQ$%m5}9f8>CW5>x&0&K+XEcDbCAew2$Z0aEV z1s$8cOY>rQ6bhPazh6$3ziJ6%3VW(8<_|JF9-KxSr|BVYE9tCVpq#*W+A&{&rO#Ox zjv5(?Ng|sybx1Xq;NJ}nQSJ=U-zCPD@{N!}wqq0$)P90OO>PMdNj-(aH5zw{MA-G% zraDMYS^c|nDS1bU)FQzJLhgL(R^_sToK- zrk2?IQs0Svxa7GNi3i-tTTR+a7x8(Ns$h={;<^YoUhArCxh~N+YjXme@*U&1f8=qL zI27PrF715|g^1`xi*jnP!9EMCM%5Q$sm?IsfV$zj+UG$89>+tSH~yz?2ss&Ik1V3PeJ)Zz6&H{ENuko zF<{sRJtG-8PZJR@TbilA?Pg6E)sQ&_)+VGvg)t8ZUUti)99&SdH%i1~cGFa5M#2rB z#x-*I!E$#lCQcq=rNKZ;9cJ)i^onI-)^C~7toO?zce+Ss~jj znGf=DoOE)HCFZ^>*KGn$+6pH^e;6a`Yl1+BisW zdg+4A?a6d~j1J}_Xc)|{*a#lz1Qh8?qbGh(Yz$LR@n9mF191PjaSw5Pgb3BhrQKMm zVIzkel-<#Tv)Aabo2+IWTeBZ=Iy&#Co)&a}+1|_UYeTLav~E_EimoPW0KbbE^w}rg z7%aL8pz2wxg?o7S%ULRyBwrsX&E%?%=+=wT$M@4VsDfLybW#paT@vz~GqBmLb|nb7 z9P6$v^(Ok2zIf-F6VC}j&ALoR6ij8~Y8p#!wbt@id05VEYAL9e`eQdmN95p@xvFB0 z3a#Pjj{=@?PuFAgMJnWg%wuI8=!ud}(TjhA%FFxC4Q)#BCEDv?$dZQoD53dC_Uj1? zc76G*D^$fY9ed;Uo`%bHuxsFzL2W{*5MJzv3Xlu-%X-Qpw1u6P24{{UpdJfo2*!!H@GNRm7Q;3)GsBqy3Dd_ed^F@>k(M+z?{cgV zySeFxQmq=)*crhO=XFIdm!PO*4EJWmR$k6r$1dJe7JL_PK(8wxDzuv`93%aRd+pgc zwo;qZem`c^g)?l$pI_TMZG+Za# zAniK12~zR_+3^DEG;z5A#V5#5>ExHhex$aRBT!Q2xxHy$GNLA^6h8w`BPGxevZPUXUyiBX*&i$cP1O=du z@2%M8phhcrX+1io_e}tq=*PH!$9Y*74Nl6mGuJz978o^=XC&?ZT;61+kR?y%KYl*M zka?xr%REnG5TU;llWY=%vS?`CCE_;}MJRp$ZQv23zJlt80q;E8ou5z&iG>W;8#1PSFE;g^>~{VyJ1@bL z9Gd*K;|OW3aVR@Fk~5P5qYmtwp?cwt#T+_rK2E>=IH9DJZd!Ya;Rbr=>6v&k9iK@K z7AiCmaSw^9`ScyAotglvhi-(Ypc?LkbV;6Vnk;buiMYFRKo$%O>-J!xzx;bZ>Swt99G`A|gqt*{3SK#m>{OIbZiDl3 zy(aim#gi6FW$iKA^l=JwQI#vbCX|YvD`g1}C#VL$3#z|ZLMA`4N1hzzqUuEhE_{L@ zo!n=QJ#QAWlc#o_rEXy;*{LCIH4!vaV4l9Wv8QBMi`e)DTL=1cZiGd~Dk-wYaVvIN z8PZ)7#x&Am>)C$aIqIVzyxO8O1+j6AJam@~10gwnWM(tiee&)F`PZ=g;{lv}P9XIj3y#E*^p+*c!-Vhs3g7>KCv zHfk<;2>>kSj_=59!man-6cdaNxJ!kO1EX9wO-mVd>L#f2MJ}tUWfOow{K60|9K)HAX)aJDdZ4XeQ( z;ow$z)P7>gAk@>((p)PWpDEMgIhgFeu}1l_D|Qw!*S|c)c6_sREt`Baho{h;8Rugk z^~bDAbncwadS}e?NdAWgQNr9W)DRg>xT+R2Ng;k!dbj%|avKmUJ@Q6Y1@web7{!fh zUZhe|%wY=-i*Y79fvzuSXGmF%#|dJBEDcTac#wxQR?}v|J9J_$Q8M-G!~Ax{pLELY zFRa>J_6v5VvBqD~7VP>9-n6S6J#KSiHTjV8C?MoBX?(njYVRF*K-XFJ_T208+ZF5k zp}qf6@TcI*Fm>KSVELF@tY0@mRi1VNsy_!=KO0Iy35p&U`QQ(ciyc~n6fLbiE2u*% z?I=0#L*++7Csnf%Jt`^FYEiwX`eVV{h3e)qZ`mTHQD1$f!(R7HFJ2* zV|McwW07Lq(<&$wYLY;wfzxEul)}z4bZVVNz9|yvx!=Yox41IQgC@WEo~oWE;xLti z;d?M=$q}h8eLU05`&LJseCY!>0C`}yK&sQM+SHaz68$M&lgIL^zD(jLD-83@cA|&o zA~Y0Klf}WzdOIlmHfOTvLS~<#CW5imsJj5Dc3GjJ?Au6ReY}%xNZ*|(g4fSY91iMI z*_Ts7-*YeQnYD5L-HtJR7y`NR2&il#u0end=*`m=Wa z_IFMi1rO9aez&+Q(j2$R2Rj55J;520z~#;piEgp>^dbdy#?UOU8fSy>T5rdA9&`q< z2=cwrruMxaH7hNWXL({X_e9sM2pn!~AvS|ln@4k&^`)=z&7|?th0303J*u);Z&_j; zUt}_~VfcI?Z@5Ok_C*hiYT&v>5OaYr!T{A5vYP2hFvWX@7MrOmmm@Ua6z5O@Ik$$m z_wU9w>QG~Q+Em?#R&y>Gc;X78DG;@$v_7ko94ko|C%y%hD`*U9G}9=er_*gYKMBp$ zrB2h~8&Of@vN=PIhq)Z&7Y7&2YAcg_%VSMM8?4!m=}Mv+5lFtQos)eS+)!r?mLa)S zL+YKjt9oBi(In6?BjL14HImuI{0fcU#!IL7Zdu14i<@+YnDIedfz=Nz4E5qeuPe$r z9$cW2rR&~4w)5F?J@cpt2r#XmQ?6$XH+2Z$cZU~TwkyC~ zq0*4ynff4Emk0rG2|Okp+KG@T_i%*fcHE|OkHceX-Zg#+(W~v){F{=Y^dJU#?T?e~ z+T3L(E-7EUvq!xJEnOiGA7lAKIPBec)F!O+I5ZE!#(~WV6xr5C^(Xbj?E?5L>eKeN zdS&FkD0*RnPpb71SyW8zFLF-!kk;3^oN-R;dxiU_s2(T#5c(x0rhMg%lIl{L#LIX2j|} zr~HCXkhR=Nfnr_tNSgT)1_QXq0+nF0%Z#2|hpbS*$rGLK*VqelcIr6pL0=$q+WB@_ z77>?i!kT0_XQ$+xLPJxD@S)$&?Fwk#stLyVp1~GyC3wWna&S=T`SB)Ze0+#hLcOV4 zG-hS(p5NkJ(Mj`b)?Sv!cm`vw-Lu&}X!?#}bf_^a!Ng`UW`)akmp_Hwz6xvAO0~o^ z7n|yR>-n`<{SS8^-wq84muk_8@)b|u_3r^EaVArpXg9EDL4B-%z9?b6f&Bi1JVKH@ zedB^@&D~{O#qg%ACZ>N2HCUvQD0>c}TKmcPzR#Y)M_!|3ajnz+5 z)i@hRU9*R1bc~+11iu@QC2f2pH(vzR&P}cs82IwZy(>S<<(Fb z@Chz~7IB0F4$YL-p4xgh+{v6l>FT)7(!(`hJsr?q%WC7jSQg+cRN)Ba5YM;n@ z)FRVL7|GnVPFKY-YT^XRu#g76NTFKml@#ioT!cH0iw31#>pDa>wDK(R7ZL~J5ga}AT3P_hQz(`BCG$=LHFw))Kf`B4O!_Xbl(lDf;APgln zG>CLc3q!m=&pGc|=R4n8-&&8)`u?!|Vj!Fj0%EQFq+_IDLiKEMLPJ{DY9hSuQZC>h`YzG<; z+FVqqhWZt0a&IlPJxEvj!~%HPDJ5B16ada2+r&ksritX1-&6IucW+uU=tzk!57O%~sV($a1;*)-_MS`6EnN3 z!w_WN-PhFAwx2CPyM%H%f;*HoDD?C()cR(J9XgRIGRmf{3+n& zZR++#Ff(?-Gz#2Eeu9%Qlhve`VC3v-(EhQ>XF<~UcEgv=7C+MHqkBV#KPh5#>iU)j z#LHPnfOcjlW&Pm!4&1RZ^j-gClioye2VSZ!7W=Jjveoj(Z2LM{5j_?%l7aTiy_&a~Vb>8ANUVeW5RuRtX8Co`QME z0o6nFdor&3&-I?Td5_k_8Rywg|9V;LIj7N5=S|6>^XYY~0!t!e-e55$BkO(G3x*7U z#4$c0=6jU%;P;AAokKX&T-Uw?+OlNeWfZ(hV9P8HvA;b&>EtB^07$Y%&!k!=Bv)yb z#1F%HU}<0BpDM7(QiNm0U7Vf0gB?hyzGMxMBUJ!+0H5msSK=2dz{MilkBhJiB^kft z{#*wt@^(jA8~$5i{rr~S6UaF?>tDPqiAHB`PfmuFMtG`&C{Iu!qm*PU9*prj$j?$4 zD5Ye%P#v4>dA3vhEytALtHVfI0C}$MHVE`IHo?PpS5n+7OeF^V)DzKi+G}{LL~#F0 zFZarczRydyoWyIFCz~u%*P>(5FLz`4f`9O(i90qjoR)X+#lYeiC_m~2nxRgwE{>0G zURPslneR}1SUadmRKuX%*G>8@3$O00KYt;qjw6rvxT8zr@Rx*HUxWJ2c2%iq(MnOo zSE<;Elopo&Jm_IH2J9bIH44c?eC^NrB@Q(CWCz}%=AiNSu+s2Jl9FF~(LH0V%%-pPz4T{>%RVmMHjNBSB!ZxK?(9u`U{{8vx;4JJ&$3*yUlK-5|fYJH( zdYelSv0jAuj!J>dwJYZ{*(o&g+jDpRy>vw%z$^B3R^%tetjvZy8g_ z^s52;*kfe7(0ik~VQ#n1^21LJ^v9^xW|lC<>yQ1~!RdAydHA7(H#0(v%_p}$Wy(x- zsHw&*y%FVhwoUdgsxI;&O7AQhln=a9LQQAZI*8cuS(sXH(wrvM?dZ4tNK-xmV8OUX z2IrZh{Ft52lS>rDb~mF0eB1Tgmi!VZ{M(gzRzSK7FMwNe-JV!ZmMkQ|6&aHTrgLUe z*X6AL+HZPBV$~b zR~^E6tmpaxOsh!oRGn}hejgpLRm8ognUm+;gJTWmq|DQgCH;(V()gA<_NLZ7bq8F- z8(t}7cH}HyKR!-$lyMt3$O6;G4V@a``C4!97Kz55r`i%JnYS7; zRf6fo5%LYaO*-vNrJxpB%Jt6J%f8dVGTF2hEupfH?epsw(kBnoM4Vd;oKUsd5y_c} z{rr?^C{KI6q|l3=`BTN{G^h1TQBuTHtLM>Krt6ZF+)1!M=+<795+fSKMqIT?r|y*F zyi>2Cb#ezo@JuN0z3-rQ3INGEi0%zc$`7kL!RtZ=73pk>Hr&4E3OF~9G--IAkMKz1 zyhdO6*=QdCeePf3mm9%)$S>hWr*Lf9)l)Qe8n_1hAd_?Mj4tu6W@FM-UKRMRoM61& zpu@Fpgeoqy4zim-AV#SAHsYmSI8K`Tt*mxOoZ+c{Q@U2QRvrsJbohiDufO?4%O`<}31%`7spaJ6 z*hY51Xob5Z3yTLWP__s{yGK73aT|R1jCQW&#wQx=!FW1AX?19s^^@A@Vk`F``rGk| z`FR=-qry&)W(V(Bj5<>f&LAc1`Xeu#eg03mBXi@;T66QW3$?@rh8^kd7O3`8#Y973 zpA+-ryv3iK`>WsRxIlW9{H0bcZtG7m9!>LTJ#^|Wr21$TR@Ja0-2V=UzpkN&p>DDY zRhsvLtW!uy5&szwlI}x;KV-k^mDm@Xk0q{pLHIa2g;DB(FwAGR-hpYd+~kIy=h0iG zuc4`)hUOZK?F(8Zh?x;QuSb2F;%?Pw)zQq0s8i~%D(dRF$O5vD>lW_7|gP&$l+l@^Fh+!-@6s?4qYJ7Km zsAIGD;p|elEW9(aR^p$KMMG9eTm~@X$W3;P`o0mTf}35g@A}#;s~yX2T#M=ODT7jP zr8mp8=MFBUdK~(rS%QQ+IFGd1fq4{3l%<}E+yn!M@ zII?@6Ew2n6+(#v(cX`O>mpX9y>A#96z8ArP_V{B(wOjK;a=az#E0byNuFtV#x-|{q zrAV*-o*Xs)1?jPQX!?`4EZp-%qyl>nY|WntwQnagrV9xG^u+J0HL-MdHjP=&0yXvn zoog#*y*Bak@aODKZzm_}h=2|&&&A_og-U@xtQFt$kV`GK#LgET|3w&~Dv+`l&D4&o zcbu`{j1Dj5^st;1(P|c6x|~V=_|{KvQ`T;Bxu#tGXm%8CNcEl26Ww+lOT{mdkwRfy zUC#pql*Y~l6ME~ayC!0ZcY-sUHEx6lSt(x4!JO-b-5#cpQuq19e)cC|DU{N68S>zO znueL6;hqn2ANUu2(BYt&3MrTl zADDbyA;4LUxmAA}NOk5$(?k})q<0YVmS+i5LwP@5vm{MGz8;&y^)sbJTa3Gd;^A4^ z>r=f)5vd~Uj;N~_6-|K(ZgWK7`Y)Wyc&)ILI*fk*CreUGT6XXcPtQ?`!Oi=u72W_g zp#}b3&n_h_3`o2SEPLlIi$Ubb&yEbTC!=TozJYFetzs5ax{_X0k{a_HS zAqv&fgW9kAof&kX9E&|hq4LvjvTAejAXt;!nv>E54FKxyI<8R2b4G^*_(GQ?&gjLN zqEadaN$A%R-VO`WF<&#|l=+PhS^lHl_?OPoQ>3%L`zFy{3&}~s=n%IU5(CpvsXmaH4_zm zyyftiQHxK^wO&T`I#1}>z$cZ~76P!#?6}beCp6>5$a30xGr?(Q?GE_y>o?p&G7jH1 z*FuFD;&h)pWTS~6Yp`pIAG#<0<1+u%xpKd|jSEHOgMKdsQZeuS4znyUsA3e`;NEQ} zc7pl=T~nHFV#yFMAIailRX8VOP5QeA$3C7q04cQd>V)y)(g+2PkY2Q1EbQng%}M-& zWfF=9b?lm=Uxo96JU-u{ySfHDwO|IyXpv&kzf%C>)~~yy@dvfE(LZspaR&C97C384 zG?9?>t1zsmg>;M@Ha*3a&)?U$;cm+fUaq5I>QcXE&-x|ho(!Z2mIsuDKAa6*PGR?U zN<8x9T5nDQ(^y`{24(@h0ewmXhVJ^<%Q&|eDgc32LPwyE%?&8FK&%!mXft|s0V?Xm zM-%0N6dn#Cf=Uk^T;{V%?fC87Y_a!i2bJ8~pAYZc-7RO7%FyAjxHrddJwh!*P;DgW z{6w%E(wiUjiyjiPk5dlapI*TclB9lKXt|CZ{fQ+<(74w$rUTv^o5pHd$LNQ>4?}85E-< zS)g?1Bi~Z3=i7L4`k-Zvx*Izb`DyUQwexuKvBX`_%F@pcI#RSonxx`7w@cv5y_tqL zRL3PcWmmtC8K=3z1x2c>**01A76Z=tnP19ohIZ)|x_q|hanF+i$hWPW^Uwc@L>SZj?s2!-b184cuIGqI_E{dJ1(*vuq$lJ{uH9^ef;h4)wo&aN}~FajNtt{aZ~`W z!RG9J&bL(?&Pht3CS$|$*#Fh1=Q4h9ZkXhZ4z(_ijR}yb$l%e8O~0VldoRF*tY3p~ z&|NZlm@dIe9LWm(@^XX8qrwNSJkdk;#{S>P(>%?B4JqHfCPr9QGzY{y+E8+?!$#4S zD#VT5yzJlU2OCQX5Z*0+(Xm@AJ%U_he}?)BJF9O^->?>Bb&4+jn)gN1s~cg?KB6)r z+=o27?mHa2Z_HaVjDU$%7nLsixUji0vR2!bJ~e1Ljq``;G{{o+@?p`DWtz`)`>H|b zyuXP|796GR*?&S&k6(7aW@4cCddX@6Y=(f`^$7r+9V9fN^K0WZ z(Q|OcCEOI#TJ3hjNoVuyAAATr*xO)CPd0_YT#U{}5cLT#*Yf(N5va*zfVt(C^vz+|~ z2F3Pg^CFccXAAO&PDHBE_@01XKpGhvbMD9G@kRw`mU;FesnMna8qQ?-cMl(C_$Be zbi1Jl)vNC$&WG^`)cYUEq&4|8w5p4NY0bM*?2=VfBlF|eSxK6Re}(uF|B9Q9*s)Os zoC1eK-Y|FiF8P+ySvO*>T)4lul1KRN9uqcUq}!7jk05s=bsS`p{M)|WfDiNmkhw(SX8W@XXW>`s=OOF9BC8pY)1e3uq*_?( zp?r~-V|qUTEQ!=!^g&;P)lUD^*7w;+O9m6dqo7(gEhFhr+ud2#6tmUD#1jCU@ux{0u;{xc5}%G=39qtn6kaRyV)(@eoJ z)CU#oCK1zSq;;b=-#XdvYlXjvKGDjnU~?68L-lpvV1DOp=T6K@KTCur7E#Y@X|t(i z+g@6S=P&r5?I5VuGxvtq29granuNxKT5f(d?i}utA$I*(7|8Yd%k<+zF-jkxx+w}d z)iZcU-no0)=?azynp%K@(sTIw{a*w=I>?F)84 z(Rs1Pph&DN~D@E>OI~ z@FVZ#u`CIF<{)zpVeWqvp?CIFDh|`7Xk6gM0=BMSQ zD~@xQw2DOsVpU(@GdW)Trxl}<%IvqDd#P8kNts99M1r0bU1qTackO16pnnv4G`fkB zgc_m-M6wd!36PhJh6}JNF^=oLnynS?-Hka8vH7LeWJeMwSm($$l*6d`VDy9yq&!0? zBQM99uD$-r4A&yYQl=O7byLQBS)XwapZ~p0+b|wJXgR`Pio!xy&bi8q zb_(?h{7{?eL8q&edKAm$naTcqgbv`JN{);0BQB2U^a4>}AEzOFwXb{JFmhCjMXBd-xwLgSkAn@Sb%;lu^P_#`XW!#12gvHbQ@H0c%?zT>-LQXa7 zx(>?sxA3?Z>Uq&>r#DIvdB(^nNt`8l7gN2tj)`ft5n#^aChV^u)1^vTE>i~bpG4g| zP1=Qr%DV*pshLg%S8Tn4sP46<1B(G5w2gpjrJ1CACeXo4A@ho>AN6M6utw;@0|)4j z%C$G$8nUkZXU@a~v)M=Vxp4Ah?~^nc3ZJU2zj+|wn!e+g%xUt%P8Vd2s5eIi85GM7 zaj477hP+7RSNs%#l@!+<|HF!wE}w`tkrgCt^Q_O6*~^r6JB7zUzYOAq8>|0z#XjR> ztM87JL9;_v>ktp8hs@@ocMDxO&r|*X)JalmOc!Bsv*!SJLL2Lm8yka0w*sU5 zTF0NFuQJ2lLMfEZV{(#gIn%SG4&2zD-ovB#X5EXuUfD+pG!{M{@}Ht-u$e7Aolw(4 z2ZwDyXJ)3uK1b{+miwxloEx46Uv%GzJ`kXy8A^#RA11YFm1`uf?xlV+`6G{IQ64OO z!Rc{v{t<4ZS}luOqr2?zPzhGX{GO#Wr&95FQpxZt1oJaz5jHGNV~bwf_awG54DY!x z$>-7P=)(^ss$v(j=V37q3+U(LzSMryPktdIMfmkgdeE2Kv4l~{jwrskl`P@cJ?cYc6`z@_nUA0C;o;(?qdn{H(|0V5|QaKcZw1a)`rbGOV!Y8_({%>`|DQ^o7T$wBz3+qVBx@!ejMmU5Eb$y(Q=wBey^)D=+Gk~LsXF)G^+liJGBY~gdm^c}4#nWr_S^xMG?LUD>$%sT0B4gJ58D+*XHE+lv6qh6kZPsZF-YKXXbqK- zCydayy4~zN%vyTqJ^&Z{)?$P(0tj%!@33E)JXPB`VKE&xF=NN9u|N2sT|89LpK874 zK(pmQtjKhVgC2M1byqt@(7zXPytFGKbqq=)oh?M@lwPFhaU0!6U8g z@~Wd{$7Q{2>!t8a}SdF(r3m<(!vFUg*Wz@M2TR3330d6zgDur}Tc31qQp0720Ci zd;dB>dD9KD9;%5I*DI(!zU;uE_3S7eY5a@=2&I|-ER?b=2V;m4Wyb+>WIQxpw8;lK z&K!Wg%A*TYK%!;ry7TAY-CK8S+O0*FfmN%~3U>;~8u~`Mj zU!4}@I%+zeYcU3se>7EJxfI*xcCOsn)PHZBJ)|Q2J_R{lVQ1Bkna&A~jU#ct**0qa zp!Zy`mZ_i1N@m;tK@e6E_nS6nm+E}ob-FP6gPL{weMiHP-0;?9WkFa38#lq={z2@< z$-p4}h8J^vNPXj1RmfIpvt&VNXlS9C@5uBF%@1+sUUxv%kl(~JoBto7%IqF?C5_(N zkf4CzJH!}27A{||Z9SZUQebu)hy~XlafEO+Tn_&HZ-LQ5+K>|-k7O{EYsQ6;PLd5k z9Q_e2V{0YYPxZh6iuIIW6M;NI4wX$6KhzkCPIEAW4Q-}bq+D`@gN=NRfIL4duIJAn z{4%h0OsPHl;JlOYJ{iH}^dcaLDbY@4$%D@TD1kYAUoD@W*2hKCaAF_5Rh8~a-m+{A zvXi72p)LrVGhJb2K3Yo#_|pPGrvpzGCw56=lC#r_gz)KNv9zM3v&9(!(NPyW+L%7Z ze}V*I2+4?%HlFW1LJz9*`A^cN)q221Zr^`BQrUBRIMx}+ii`Iv)7yLe?h5XI_c@z! z3n6)+%h8u?|O?52&sdd1(F{7t_pp9~kydZ?3<4b~qrp)OkrO_$ElP9T@5d zUd6S^ukK?ONo_9+vH^MALv&4SP76b8OlER(R65O|n;glvbddu2aGWjrwCoaZ{t|cJ zgk{j5+P+c_)~~N1CMM%riyzhEMI)duCh`9S=KkMS2E3V9`=hR^1`+cd{-drc!K($A zoS#_NG%WOhmV5AswVm0ipcsoi3?2*5yMG_O(@(X@f%#$`@q>q7^BtDb@;#O~W<@W+ zbq8W*Q)x#2!*%-~QqomY7(f{7v`<;|-;EmeJX}%ePv!kNlr?GzUY$cyetX~Z{cKGz zu<9{28(6nAP(9Xl{YpW^XC?D-RJ)6MY)`Lt&VTN#*c>^|VvGAZ`A&1_e+-A=n)p5; zVS;gso67oNwye|T7Nh^akc=0m1l*G_>Qv)H-KoN6?e#a8I(82O;?npD&&tG>-InEx zfcZ|6N-fGnM5a#F!P+0$&#hk!{c)d<#Z!mZ`rlOlk$z>607T23XJ_hg@W)!7xEGax zdOH5+zWk&2^SggGahJL4cHxh=3fT)46}GG| zS>UHioMEfU5f}I>I#qE=0`S$q@7JW(;BWo>u5Q~7nelBr#%ePntSzMTpPjMZN8D2y zmL9R7954>*K}P%;e3vs8gR3Q=k9=#H{Q9*6AdkG+)Hp-@PdwuPve(zafSm3Tkz%7; z+G{{Sqf$K&nXvqiT7zJGK2pb9($3|C1}(|A)wD-2D)IK+tvNYcOf)XLXikv5;sg zex>!nw1C;qg&u%XdX8qZ{=YbU{}0vk<>w4{vevIInrVLM_z-TrmQLYHW08w^0NKOs zrM&^F?YA?n2VGCfs$zdyYvYE|m4$QCaxk4efB2PW(;obqoD7==FF#kG_~A<(vKsu* z>zdq9vKs9o??O2Y#<;MFz=Iao6!j%_p*V+*bKh^n!vG~{gTHR(idRZAPsc<0&Rs0x zzkInb6f!udrmQ*gpmBU9Am)>_zW%$gu(02rIvCI(*Y8w+|72+feXM#zt>@2+Evyi4 z){>sZGP4kqtR#$%66bKbi)hzQwy3d!F`zN`tM4=`Oxop9ufO%>NAIe(s%+syk+UWdCAfe-qjM5z#t5pf|x_9UdQp>|92aZWPLXgbtFKuNKz*&XS@!xuqX_B`!)&y#nU>Ci_;qX zyQKt9!V_cZH-;h^=b|**m*7!y3JT7L4ysg{14+bVk`>X%n*;VZ zQ~&mu-~Y|FOuIbLqWBKiBl2QHMKVdnwklJ!?QgyH@_oGKp~UOUOeumtQHY@#s}0j+ z_~61Jq$&`dXz3h~Z((7f0z_(#AG&9E&c3iISEjzVbXrMEW7^uH>J^tSgH*BzmgDR{ z*3uedos7=PPGPj&N?Vz7_M`qga{`?GB|}iNZ-*q8xDHddEGr*h#b{u_UR-J>Ck`o5 ze_oORTHM!)ZNv|4r`WkndY^zGe(*t)ynNWqh=IpfJgrhQ`7R9s5pL}>_7YXCGAq!$ znb~6jtSgeyR9&A`RnF&ODw7|dM&gaowjB{VuSql;b<6gAu?#w#Tl&2t+^6ym$xY4~ zmhlwwapvRq#ahaP1yb)9c9YS==uFj9!=}Ovm^d|J3~brpJo`zn#;W3TTcMn7LT08F zreFLz9Np)%X)B zb%$7x5- zQc^qJGz(lLbGMc)`@&uXSA}RGRJ;Lvb%SaQoSbn@Jt9Q~n_;pVzMPM*FHOcPQX4Jl1M&fTb`a8COO~NZ# zHbVzF5Dq!(L{Z+Sg&N#qAH_0x2;Ybw&ZiZ~_mSPreS>zpq5`qIF(#bY0+5HT=eYzD zQ!%Alg(Df+(H~;ik;<7#BfBBBWht{1fH~NYRNj z3BO-hWc{tyf-(?(VTsoP6lD zJL@dv?5Xw2 z<|8O5xK^i{!m+c$GYibk$_hQp0RJvaE*)Hpq73}ITY4~7y%y>QlVd$?507L^F}(82 zs?JOeze#=p@YFp34r%meEfd4A)P64JTC3AZ(1;4Wadx%Ho`E5ju|l}kly-U_ODETK z2#-32(;P{zdB1;r9&4$H%b zrX)~~?v23BcYim;<<_pxUv!k!)rEg>E#bLtGGAph^+rl|!b+J&{QOl(H;<-XiGV}i z6#r7+U6i+Varn?Cw9(=e=ulf&yu%(FA>EHJAJ$T+tfr?g3~Ek3=LLX5EX>T>#;s=O zt@zui=lez8j-Rj*^G;2>AEa2+slWV=uDYiS${@)k4=p)LA7R&2{HyT0eEZiCMMNPy+ymq!D`R+2EJV!e*TZxDOVzj1@J_pvzYD7>datD+ z%K^9^*u#9OiiYjk(vYXHrB}~{VHi-e?cVUPFd&KCqs)|s*mlYe68%m3H&6iNd|gma zAfKswupWQk1N(TAAjbWedz2N}k?u9NQC*5E68FDJ0z!`1q;o+o5MX%ATyK1V``hOL z&o@8kf%&u;7e9v^eH_)D1&f4KjRl3L(*I4AOH%xkhqZ14$)PpXAoIgby!CRL#~bTL zxkyV4Xc`tm1Eq5?y^{j&~+_0roXXlVtF9>#qj3+FKc2NB_D(cKN}u`OGA|2 zsm`-;$>$Y~oDy?sM>~}^5p3e$L)*zeCY;0ke7X<>?h{g1iDv1V#D4y+IGKM_xN{*0* z-)mV6LQD9k1YXWtz{I>9z=>>@mG0e8tkyOsEQ-HLwi!NR$9Uu-eXAB^CeICXS*+c& z{k1@inD9asqCdmw)1H_{MO@4;0nkmXUdZn!71Q6es{s(^OWt=pJ-bsKfQ z?y#|SU3~lcbE6%^^t$bwqu-KSs>xq7bD}g0O_Y=%&SQ>Ka_3yz#RM{p_fNgRlbEjf z2Oe1xo5#i>Trfb;uYvL%$^RFOr{?XS{UAV_z{Ilv_qU^`-z{igaHyl6&)i?JL#p<`ly)l6b5mJ)! zekYq=@|vdCmmiK+-@SCZu%tvLLrnBGYt9ce2Bdo?bYQLdTf)LninjdevqYL?c?uvvaup!S zt1}SzR8*O}4GmFxN?$1r*G}6(UGN_>e{&Cfd5(1d^cW=UG|L3wJ5!)ER8;Zi_EU3; z_s-$ef@S?1ut0F##toYUB8yo9ylE!9csrU%qMH{QO?~*udg%vqpHjPD1Fo;H{FRZ< zk0N0UY^q}%vuyZC|U z4>Y|M(p&0^tG#-Y!#c}VrO~nIdZ^Q=5t)%Fl~AW~z_sBGGNf*=2lOESVYCYwV|6J6 zBI$i|alhbad$ZiArBO&iLPDWE+}-j={#T*; zWd6~jaNYW@fn}L_0=r5JxSv^(>Y$L&_jASd8!Kq+60kXImq> zcHagIk*Q)--FB4ku{$~px3$_S$g2XP*QN0cXl@w0jpNBg0?O$vVUbceUVOH?FE-+y zr#2)8aIGZOaFj)OR73M}a*I{k0qu-hct zoIvy7G$J~m*2n&860PRXpGVjzAROnsRq9Bok(QJ>;J%4!5F%&@@!{yRVvchDMZt?V znv~GdN%v2+k2is`Xkv7*V=ZpJr%*_Jl=#LMjDLC?dZC4($Oo(=SDkV#e17j`6%37U4Q*}*?8*yoA93V(lf}lNW?#`q#?VR<_ zISPhvxg~|PNbt3~8RXYUtb&dt8#b5~7Hq*GMs-$M^9#2@RH7%0BIlWPt5cHRvjawp zAyou4LIVWCXNkk?IV|AzlYmCk-ga@BVvTE^=Moae!xF*=`8fT>#9siezq)A>wXfb$ zy0CKxZW1ffcOz@h*J{o&6pu#8AweMuKJ8g))R4rcPHidHc-%|bYEZX6U1pXpH7Xt& zu{bP(RNQ&5!#-;~tBRN?eaKBM zIo2p~_PSyTp}Baw5BTX+vmRsh*h(jm2d#6N2lvt^#WOY*)u;&G{Bu-7Lo4f$c<17A zeX#*%YEI?#d3r`*!!>V?YbA51OgZ%Wda9jOz0*4;*#DxI61R#j@JK$UEkx5 zQa7jbwLsI!7LNz)A9Y{kBDWx!?h`}`Z7roVv>Ryn0Z(FPg`S`aXDZRlmxivG1{w^5 zOWP*lLxPW`hkDf_}Zq=Q6AvOj+<)|2Y!S9-Bv=bMnkEe&_ekZPnJs zN{ij!O-B`@ML$Zus=|@k60T=NR1!I)>2x=tsIr%;HwKLSL7B`rgO3GW$mr_o1eKz^Tse=no;K zB!fCD1ZCI-ou+?1`#Jw4!`$RN@u!d3TuQC$F@-^^SHTSX{5;OkZhOLB*ZPMb4%;rf zi}!--mo4%KA$F5x13AIqMwyD|>&+JpZTr`(w-rfEOIc>#Elt7nwqqYdtj}))g|&k+ zMIhU#a%Sq2fwW%KallzPMB#S%vG^}Se+kbGX)MIaY_*`JMN{gC{!sd4k!}>}AbtDW zVD_Dh;^N};k=g!r)uT@5^INMb)T@$j~SIxozi>{hoz~Rp^oj}ez5}1Qxn>Exs7lZ|6y-ax`m8kl)M>f zk`PkWpST1UUh-o{S+tiQ-zMY!Uo8OBtzJwV!f&LS(FsdIxBNy+;~INh1&Xn?BX`7- z>)XUKJ*TLS=IfZ-AigP{gAa}eof^t?_YiFuQ0-z3I2;zF9zhVO&(roRV59@_Dd4M0 z%UGDc0I zx8-QlT+>P{rGrD|Zh9@n=4EGIjVHdEb?x782`P&|>9W|A)c@*1f&<+i@7p+7Ou1*SQf1 z@pR;9AF<~Ub(Y9c9kFAB4H=m?`Hq-wYl2qmX3A^#s&&6)Z+bThR6vI6g7#9{`7Ylq zIoJ%=jd6K6>B8D62A!+p-ZjLG=7PS2pSL+)rr#0ANwTPr`SfB@I0 zkgD!7!!_)@&mUK?vfW|~W-*|CP8z>K8^(dY!2%f2Yn%s-+Wx1>yd7%1Ba$UK-*qoj zNfNH{I2hA5hA%1xK@$m@kTgO6j)03!`qfMOs;56^D^5zsdHMKcFBjY@EB#h0#$C%(yHviuf0_T8-Vt(+V1YbSLj?=}w7$6M zn;AQu=U>$#H9K-TXpsIF?i>--ZntR; z(#d|`qvCaNY0RDGBqjEDT=93?pDF1lhnu`YqxoSQcc_!T|H|+lw|hZ-f6P7TW~)zJ zrYSt?HvU{4`^m!kg22S&ZA`}AmEiBQ-a?`_;kh;Ry%SObp`vstP7~ifTGFoB^zxC{ zV$S^(gviOy6~8*B7U#0;{j57_iY%jwy~gQ-xf5cGgMKUw@hmN#``J2n8_XWH=9KA` za(UYIy%Y6s%0$6>Tt?cT%B-l{d~5X-J5amW+JHGUZ*7}U`a2IaW*#qkm%X$tnM0@g z`eDO8vh+4Cy^%t`W}6J9PO|2{4I;-u@R5!y4W9Ootsa8Mqk8keg^HCu)t~obG|%Df zuGzjf!Je)E;hONC=cK<(`CH#6Mf%`jJwlqB>1&~`64ZCfpD#yZn@q(IYN#IvS3E$R z3$+fw{rR{hpxFW23N%mK&Yei(>@&&Z#?j~&Ueeub3A1U;nVYUtNjl^|tT(*4!HTiS zRrQQIHbzi5e>Y?60HoL67tYTXgabd8A(SYN1g*@AWSv~qa&3vLZ$Gsb$l%TB{kb9c zCT{ic3c;hJ-zW~CV$j?1yW+gq0cj5N(=Ap?6t@H+P0x?+qY4X;#nX(BHO7vY0qHIQV`v2wV0i1Y3;e`tSN~-MN{z%?0(7@x9zA zuim#T|1epqJtuAsdx`Mav)wp8(e82dtRe?NkaZ(5H6t4uSx4EL*ixCKoT?!_C8DT_ zk}8kloE=?En21sNb6&nS=f%lsx3i(0K$#F80%O}>Ds$6lgz9zbfExpcZiIR!x0sr1 z(K>Be)(Vfvc6z&j3Mo#Gpibj7B2e?>2?XkWh{Ssh z!w%k=m3O=jso1{}1v|tk!@!L{ZI{da*6{d_57cWXb+E=e3id@uh84u-&&Puf0JyE zVeqC=rG*f9(Do+|9_WYM_t>ITF`ewq1k-FF**h73E3$?(LnEJB_@7c!1^QW zhS$OQ1-45*r%v2UW;zOjX`9osk{lZ6v0>f9+brRX1!(rR*zx+UEr#0C^wYtw#eR@> zM1w;4i46m2UMGl}_v&uxBXUck(mYZE@YW^&$R^jH?EH~-+7oMRp1rmaoeSUYu;=x7 zliHf%7Uw8>s^X+&Ou6jZgB*Xmca?-iGCTwxy1aRL_=p_lQ?-Vo;FQYRA50Qc%tU9x zeWj-7hr*+4I{}_9m7K+lv=Zy#62ttu@6)HtjB^4mr8I4jxE^~#<3 zvEvZxcd?+k{gJVgXCssGgZiCKB5f+Q4O+7^+SAn@5^~+ohBoh%K^YBCy{vOQ%Ou`X zu}yDaeXci5t`4b+0`IaF^mRD(wI3o(TFTzJR3L}>8OzrDtVu(w|VI@u;H~R8eHNy+cv2a;6JVh z^8a-swr96dr<+=%hZUo z+8SM{U!!ulFa^6z$9NKW&Gk9~l50QxDW1=L%Hd+=m_w`8i+kj87B+XI+m&nIdu>ys z!NK+RVCkRadG%Y*2=S5^TB0`K0&ip*7I^wW96cZ9w$ydQ=HvOyrckCK3cTfrsV{Z? zyMcC=UW|S8bZmN~(0xNAyY%{a#I5D$uzyiWskqRD4ugAoMBho;jRw1C{Ybpn4!%FP z>YotrPVQBuu&|GXDARkNv~ka)q32IOak%--(RU)G<^}o&!5SiZlR_528Co7mdDrthF-LB@TV3o zG*W@1jxV1JvM%Di#;{vrL4%)fAla;c*&kj?@cH(ZIb?Sfr`GMAEM*kD%mWcmHekG5 z1C_ib-5l%E%o3fcetR}qre~cdo!oeZ@k}EZ>BT1nB>VFb5fKu6qXw2RK_#I3#}-S} z0ybJf;Zj4*WK94H_1aeXXF3=rJ-F>8g5dlCozL3~v!Tm;*wKiJFM5Gv?Bf-yIXP`DYa1O6r+;q6E~)!$ z{nV@-;1&(xQMb0wMVS$uQA46Lj4~KC45N-N%J5z8 zeebpRdcJqP>xt+4{t7E=UC#Qe$8nsVhfuu26UUdD@BB5ug~VxR;MZkpaWK}qzrPVc z?Z;KqOcy%CWL!D5j;Jxku5y9Y(ZdWz17fHr{UpSXrEpWdh`bk9he&mU)aBp%#rlR5 zMUi9NI)>qe-k+Rm*}Gw0(@)969IVR>9UO`!CHJT#Ae5O@4l0T^f%CyTD@gwH+7_uC znTz*OScIHy-kne7``U?hK`3Fv1?xV&yR@hgoZ^blLlDKkp2 zKtiW0EITz)gmFa1A*&(Z4|~A+Hd67p?apDVQ_eD!gMrA540nTt%5LyDaPr1XNhSAMWjE5)KkBr>y5#hCJMutm zd;{hE3|r#Tr8lkGZbH54civQ+=Z3~OSxO3fyeAIEVb@mTDt{T6dx+M zry&NPAW%S?m`xqx!xX$yv;fhgrzwb!h98~=t6zNqQtiZ`4p~>mb23`O;k7NmoxQE` zsH4H1Qkw!37X?G<0)YU~H~iVL3H}U^sbq|q(Wko|hH0f%8zR;2Ja9%Y(fFY(?J)`^ zj30&P@8Vukj0K%ohCrAXX(dxcSL6+w-98rG^@t_@5=nkU7^JEq#arUlT=uO%w<-`CAJ$mA#+w{?a-dpDz`$*?7mM*- zzD0$m#O%;1wfs0tcC2tm(jBcwVV(YR7;LIleYZdoZ0K`{vp zu(KP|(Qm)CO7@p?Mj#N*`NG7_Lw^haaShoa#UOV3saD={B`b)L zzVSR!&}FL2{Q+o@(0n=FKO~Un9B57S)o?GTkw_;$BscZf&J6g)N0WX$*IvYL-ljmc zz4&}(Y(o--J6=2K>QGN}-%Q=WrIB~4u8kRnJTTi39Hg*pv-8!xlg78eMulq=rCCK> zwXZJUT=oX9K^u(rj)H=Xd~bTFr&S~3Osw(r6zzdBryrkTPE+2Z;6+I=-2Y&c2k|vX z2tHUFecBUNBgwgAFsPz$w5?)n9s-pp!#rBf7#TbmrLVl_6el8W20ZtLeCz%5+ia3+ zJW|H^le32SED)mqN_ppTqp#(2=u%*o_Y&)(h0Ml<{Us zCTmeN7(YiugI8ZrP-5_2W`y1mf;T$urbo5QsG1Abz3Fh?jeD806}YVXhi_SS&N{Qu z)WiNi`S#a(BAoCs2lOH}bx>IU- zL%X8fRzIFBc0~6`57X28dI{drr9XT6NF-UsiY+bDO5&7-b=0LhC~(c@E%qGg)elVSg<+lkH8o7__+~jl-f{U8p>aI41rC zyJ9OsAu?DUv|y8Rx~U`f>hVxa;rCu)NNQTPwTQO$<`(vw&=TE{zaD3^J-Swi_0iGl z8ur=1UzR~xkn|3}Z*TEHXH)UwiR7>m^o;(VAoyHkNb!$BZlBcW?5@Eo)Z02m1_aK4 z_IO*TRE762$IE!zQZmR$e%T~m3elq?S>#AjR!?0L+cU*or;Te;Fy+c6wk}{FQ!L0E z&?|*mlvvp$_m1AAvQK6~N9q?y1GEaR4($npDrLc!6H|ri-qmbiLtyYfQnEO!e zbWkj$ZGZ0F;fD|Lix1kGWp?|9ohZ12*9i$dRdD4Kj zc{|e9#aDy1vj?yner^a8nx`Bt*(EmMM=4u_p?a^*zu&FLO}MV_P%H~3Il^iWx@Jx+ z^c1-u<7nEw9goLEY{C$xkLN@ofB`?=&w}u~tY*~!-1DVz-|DSz&+9RJ1)1vMTEo@{ zZT%G<(=I~}wni*!C|!`T3U=2>#gN2fg$#P$*33uai+a;FmbG2 z_S#16Y`obre9s$JbKa(?YSsGYiM8!l)Xv8B#9-^ccHN2hy9RBYy5W?Wv^KSX zH*xC_J6s=Lj8x_Q7KlqJ)9duZl)uobb#bQJkv(_X9duA4x$UchP+NJyHi&-jP-QvH zN{oKb`Z3RIBemwoa-BZw5g^aoSNEY{YFU`Z&(Ri7t&>h$e|4mYdp8(2tmnnyki9m{ z+YGL6Ic4-dXn0{%BYH|CBX;!Z^!Q}9!mr=Yupua(*jty6u_%XR)=@S1n3{BCcYsRx z__P;meb6|&xN4d-PWW=N)Bd8sK0A<%cF*QyEeMmeDXy@8-a}Oz)Fi$$hx4{6F*@uc zD(e}@Xh2VVmS^VR;H*A7Y|AI3tko1G^_f7uN+eKbs~UR%rv9u6kog zb^_166wQh3iPUv;8s*Nw&V|&X798lCyu)t!>uIUI!XCYd?Y^sBq_$j0@zY4q@e9bQ z7i-#YUz(BO4{zAXIP?P@pfg8;u)%vp8L>Q$Z#Ku$&NM0Q|FDMjMpif^mjbiH^YY6T zNZZU>9$-lkeCf}V?n%|7PZPhCg*X6NPvlz5U6zR%p=_K^e>P7m3^Rx*0Vb5Xg#owWs#Je z+T1;yB|^`Hkn|iCIE<3F)AtJxG++anT^sq7uam&^{q|v8sG7!^DR=DEikIIXo^Z8D z4+pR0Q+6|vknDKS%A5%u`Sf@komR$f>`r77`*QuZ)PJ7MSy&X-Ku04kclLXM*VlgC z9Z~OIC>fJ^SX=>AXC}^P2jNbkk05u^n!`B1v{jRkTOKRhGB{sw0Ka=^M$h{jya}ng zx$8TQ1=NXQg;m9gddM9Yc2)xlsyj~O3BlmrQFIr(+~gHJhqGI~_8W18eX zQ3TU92!&SM#~|EC35@{=53^zsVl=q*<;vjvkB1v+!xJaC4t3+jeEpeLC?9? zCsfCacAEPPSh2-w;0iLAH4ngmu2T1!YZGsV`nAF)fCpio(5dG0)eDkZ6Qw6gef(p0 zqL@wWWU1Qu7mB`Thr%&$7J^hkjd7<#cdCo-?#CD1*By~fx}CTCOid+mh}DPOhC@!w z8DN?4`>n4XK*%wv;y6c|XvCXO*F)2n_WH}@k}6vcG*vWe%;_PI_kVnQLbg3i&jE8j zb&QATnuqW}-V}fbGpV*Cl!t8thcIX2W*Jf5*__MtH>o!f3r?tJ?Tb1`l_RRcfC6?A zw8hV+IlNP$HrR0)2pACEup<8r8~4|)K{sv&5^JoS0eG99dp!u+jJ3h?K;!zOuo*8d zwynEVRE+X;4;U;>{o3^qJI%IucQ88#BVroor^YGgC^NU?qKw6JKeJzAW$+gMC$;r0 z6Dl_1W=*wK78!^1tw(`1fVIx>^|P&C?TM1?e9aZm#D;Vo=i=4$G3HRxkBf-7`2p3y zi^Bb)O1}1o+1jH+JSEP-e0YO|y1Z^^6S8?gU`G)$h<;F(XR69E=(!BKYQ2K6<_|m$ z*J?2ZN#K6`V5WKnXP_x{1?w}0e z8fC_{Ph4O}HIi2iLXQ@K#&4fTuP1Wag3!VVoYeU-Q6r;5PU!rsLGgI638hzgY~GPX zMoSAC-{QCI&;)=lwt0U04mDd{j^w6s0OG;#AWh0PQ}P%?j)0(i`A@eQS#`)9YJdLx zsXQBm%LfWa{HrVT2VzEM8y;^?@j&8PL%h*I=&;612};n-RydK7K4mv9SLOU*ugGU+ zY)I%~pU>^wev-Mdw$fc?$Y~8b64@`}44h%J?VL?=jxX0fBL!~Lq>{WAP%?o8?%#IB zHNK2*JUfz;=!>t-VCs)8v(H?)XIRg!m+9jOC4TX-4)>tQSYYjJw^lBx+qRpwKz#h{ z$K4eRIZNce9TS-I>9eqUY}WalzG0(H5@f(r8%~bKf?0F7=3Q%2k*bGTyrW+#Bh%E< z>`j79?b}~c6LJFA63Cw!=sy#J1}GI6$m_&h#g_vaI6PJiX4tK5ov`{qPVy7iHk>B% z5A@d0_X2v`pU1+fKzDoA2R@yIu4QfFG|KOteV(*gYd56jd(lsN&`~Ds8)~#e(~68# zxk`VZXP)&L|8Yvr#9QWA>9ceKK9=s*D}nj1+ZUw5he&%|gSoy@eAE!De+SAk!~Ce! zrX!;E^Yy_z0-Alb6d!kr-{e2xAa=F)WPp$@3Kml9$GR*(gA>8VN6iAHM6Ng5&BSJ#kYNY~P1540LahpuAH!~y(#Nt;J1Ri`mwJ5gR zZ~pagNJV*a&tx{pyO@>~oF4}-N(y3lv|)m4B+SG*QvB;w#u<(y5#dtc!u03K zF@^@&y+zMQE0ri$hHww26%$V@5q*}CATK-+P^Mv=) zr@I#rcyA;b%D_KQHym~aUOnj@)wd0G+DjRxqcm}Or$-&V>Y;VRm_W7jQ7M`Ng9r>t zIZu<^8+_i-ptp)xHt@_e>R+Al$HqCH@s@PSn=d#TKu(Sf;Q>e}NLBh|&vIAN>tIz0 zE+wPae7s6Sqa}fDtVCz~9{7yG-K|d!XeT&Ajx3YRvK?D|XX^E_Ya6~Mua8)2R3?A@ zRNXkz6TBu12n~5?`ar+A4{!Vps9K-{y2X+$#U2#3;z`s%xQB4QK)A66HW^S_@4bP# z1xyz&iFwyH9}HR%l&Yq4vMxlB0Dnt6E%)Nh^&dl?4*1_F`5F;^5@Z1X`S z&*WIaYwn2(&hKH3U(`0yq5d#swd%;Yq6G9ZH!0W%RvpZ)yuVs zy>J)PB>?EjPo2uSEt}+RsK|zI&7z7?$_6S+cw#N~4rp#?AiL-(i@FO8^>zSIUh{Jb zmIo10a^K%jH)Fpd?ILPn{%873qSotRoHE-B&{!&OFOAEEj=M-uc1mKnuH;Cm% zp|ngTdS&r}+b8I8%hiT0yaIM`_6vGoGN&^BqXo! zoan}AnZ8o0kh4>#Y0K+Mw&(?X*acRTe8vYE_DwvMK?mJ4RDtO8ElkO(Ne_Wi$)vs+ ziZ=AhR8JLr3$*!ia`mg9(1k2j^7j7HJuN z>90np==p63E&|o?#&$in8hdun=<>{V06H?^?&GycIuxnbd>wz^$2at&9>mbKT>}Q{ z>=n#s6#8+OTwC74@-X#V`Z)#6gUh*BuQX9)_N;5*5U3pU9Xb#<1R$-Fo;Uh&z6@?m`|qW=)zjn=-%T^pm4?5@NC zG4$x`%vfHR?{RT31OPsj#_g$6?f&XL(pa8yhu44$1OxV0OUSKzMpiPLsmH}z{Pn30 zcisaGLXX`5?CyIQ*E)ym8f-71N(Bk@Qlvv+>CHcj2J$;kE$i76wqI`& zf?(X-Qrg#>Mdg2~4drNXuXVpe+EOSgi@<9&arU97)ou;z5mH}4`7dw|h$2O)`d{fw zthJ;T$d%YOJdiiYH!dB;cjCSP%hEeNc9@|ytn({uuGXy+7cAqX%$!t6O(}kZ~3_=Wpg+M6W%;vlcr+B+~1c#r=sq zZ7i|VMQph8>=}1eX&P979pl4OIpll>_Q@{ER!;a)b5WUb(YOzJw0lb-SvA&Q5HKeJ zY$KyN^8Nr?^zTA0bf8uYr}}UNtutqjDhSHB& z@nuflmgfZ;=i>U=oI>2{Gq{(jT*l2t-e8)tHI@wVOgm0B`)W2~b1_JLQDfdy;E9_@ zf&eh>3vY8OW92f=#v93i6tm56;P{f?-8Zp|cG3Q>+&Nqj^3}CDEoH-int50@mON%> zKM1kCLrAl743xrp@U)vW~2F3Md6g-)Mnh(5n+(N0J8HM~;& z-3OSue3XVZ5zbQks`cTNXNjOQVsL_4jMK+g__Q|r2{*(j$!z%5*vN`mci6{sKWH#Z ze0s|~j8m~B1np#`t5MQB3f0x7^Zz}Qp0?Yhzbh~{m#$~7s;pf7r1^8K%*)O_bY}EN z6ep8=kY2(Yz0HBxaoXn3@Fbw%qyP$Pp7b4%%I)(5A6Yq)r zf*99M*s3{>Nj{+Kc1_Qa@SbSZ?LUv?UPQVAFp#2`nXkueJ+6-4ejxfX^RWM$dBvCL zqb;V`-bUYDbbJvuW!1X#uIP_Usq!Vs_B?=ZaCESXOR~pOFH-sI~7FEb383UXHd8}@}_&x z=S&c;iA_qP;*TW_7MY$W;(-R-x4#3=jb*87ZR)R8o?pFwEA9d}XxSl2?m=hGH<(ZP zoxpR&4FJg;Tcm~6Rjt701K~Bjr;kt<+!{fFoN`h?jq(*FgSV{h;^{D^+VokiJ)!3i zLBMOn6@$O?nj}-K_wWwp<9aQ=_MS+p`WcomH3^<^Pr#hR_gZ%E*^gDdP^ORDj*WX0 zhA>V0-7IxH?LDcggS`G1SB8|YC(=9EBHe)!=Ex1E-XTV{NMad%)jzC zRkJw-1r_-D`F|>gLJ@&O0L6WCt$qEEJCQ(bDm#D>(8ZbZWE-Rq?R`o2;etUsJ@+?* z)~~=t#`&#RJJ@mvEW5;DM~?IruKc{C?#6H|G>s;lCNo|BG{))NAeF zQ6EYO%E!f#18bxoada6;6ItKCq30zU|L+58!a4{p3W4HWk~$jR=554CJ*u|+@@~;d z&~rJlX*)bm`Q81j0p+VN0Vxa>Fy>j&bH=H{K+O9;jAZ_~QFB?XIe>V_tH+8Cqk9`i z`+aJ)rL$E^9Qwj=Kc%oE?{5rP^=!^A-dBHV@N!GZ3p;;^FCcb2k(?~fP_}q@PY^#Q z;tgx1(Fg=HT;3)p|D)PjzfnSx>qjANk6htPB9Huh+n$*~WkjPgZPw9Y2b;2$Lb8H> z|TT+zvGPexiZZi+u-Hfsi zXV7X&#ggDoBz>qhpJkWaGHYad>{*NAZa8>A%E$6)^@q;(QG^7!mbIA{431lgkbR9` ztbZX?LP)X}_P$O5YmY4Ul$Zv9C?B9V!|tg8?0w+?u6LJjFDD)g$KW@cYajS2?h`pO@+8%% zh4ofjZ1B`3Iz>b8-np9t1q40plT|sL^Yd(ubu)VFw_vUnM@&!RQS;_G0}iH_T>D7I zPl=g~C%@uZdhX6{6^bXhKZ78^ujW4Kh?sx-_N|Tn%=>_7N&jztf0Vb2(U#5fCjJM( zE6;+9-NlshRg###J1P_YHp)<4p5qUJ_C?=%onK&GmsB>x2+n0%Pf|848=<%r0xf;4 zU;IEc`5`0?$%&AP-!^058a>@9CUZuhbXGaym?SP^A^yUP0Rj}2$8cYz!{mx^+0Q2(Y1K%bG5AN~6@Yjuk6GtSTFkliab<2nnj#~3J8 zf~RGZj1m3$&qVAuthApB3~$605L-qnretQahif66@}YpRpmEQzseb%Y?&aoo^EboG z%toYbQ?=Hou<|N?{m`y03tc4QwZ$QA!u$8~Ug;4L&xdTAd)MM;sK;^`vwyzk=NDiB zG+u7A79P zzyAgU7uSf#D_Bwna=cCfsO=T4tNm_Cp>`u*>Zvko1KusFKnq;;Bs&h5cW?-^vxip+ zYUPKxSwHy0Ceh#eZI9^jj09PxBrVInmps$X;C#;AefO%^r(~yM&wOQ=?-B_~# zz3I&l;Q`{W+(o$gCGFBbtDXITz%G=B*s~s>U8&^&S}cDW<^GGymsKXH>uUu*2t?BC z79IboLT3g3)TSB%F)`ENPvSqVll<#U5~|(+y;49|Q&~bl`ahiK%WG@PfBUJPP z5{bNbDFKeZFA764J|Iu@J}fNKalkcddWa%7&kI6rqxkG`2GjD}i=4tQ1keYVXtFJP z05t8F)M-dpIrjCV2`(8XF+3N%lGMwxbpFfen^pD6k1_QqVM71EjWxc)%at8ZGN9Ss zpZb9Q)AoJ*OIs6_tT%cqZq5_UouFE;j|dS7n~OL!fhi=T;jkyHAGKJe;oLi9=w5u; zy-J`D`9umCv_5m5rC5gQRvI0Nxewe0#``D~&;QpiYjmo*+gQil{#*`?1FzFcb< z3{Vhy8^;G+&5&Og61SQ3{(qd^|1-(w$JeH8B7p=7hx|bG@QrLeDZ`*H503!bhkv=S z|K_jHW3I{lBX|XTwA1@aVa#86`A-3frK0+~YM0%-5Hj*t4M6&JpXchuM9*%LVs@0G znlHUkQWwV!Fxwm+;3n11=sU6u_pbqKx}b|rzpQuJy7wyWB2naVB})WMZAdPQZ1$R6 zx4X$@-Ahb5AR5JF+yD7uoAH3*QFOIGz3j(&8sGG?{PH5Afc2b$7lE%ZJi-Si{L^}o z`LYx4(r>jU1G#v!hCl;C$4PbYl-b!U1cI^zq1r%2XR;}{Wy7q&LAT|AGd3g2!GsR7 zBW{Za@-4cwf^x_l*-av1_Mq&wqQcDhk7>faoC}@LbaZrH5rE4p=ZzjTzho-Z{QR-O zySoIpnea8@S-tzOk_w;Ur&P1cx5esL2*M@qee+-tGla!Hu<<_?b;{G>S;7S#8kZ>> zJp0->wS0gVW8@`#t*vf7-MJf{AgkX^J3R9jg(Ak#%(5o0WuSo|&R&78D#=#^DWZ+tEpo?!sN8D}1=q-3j)DRs_t`OUGe~ zK><_vQEA zk1MM6c+7n|Wd#a_o_X%SlIc4a%bJwN0odqyn~c@_)6GY6nNU4>Bb~1g7PgxuIGcw0 zT~bGzlCV(Y9e0!avvHI`8LaBrYvSMeFC7Poe2}%Xi%?Kd_yGmrrM-8)T(yg0SFq9~ zC7XaB!piQ=eONJ=E&p=zVEVqkL~V>W@VWs32}!IA=6HdN&oXSoHTYudzx@B$XHJ;SWNqV~sE&I<%iq95`*n^pM-xdqB zgJHP^xXNK-s&d1@^`-|%Jpy-G(=;`SCtPUGZ}>zPW7K4m5rEq_ND*-jvFb~HGATW+ z(h-yP3Mki!xi9r5un#N96BlY`CGMcHpS|GHEMm4NQw;yD1>j~C|Lz8f^6ow7#jek} zdXLppN8FY(yr0cVOKmJC#}K~{fM+)G+ifXTboA{5k|A!hfrrngVb$o(Ht!Cf&1USa z1VBt)wJ?UaXPK!b;Ump?f@^0WyJ4lxXIcrb9^gR<>w|P(uReZj6_vCx&1VDYVv^dE zRrXQQbW$2YpsF9HC|d8kabu8F)gmnxrz~fbS6AhRX~GRhq~MeC$0@(3Nxb}V$G`|} z)UCQcne*ccsp6QG$$Y!|YG35~#XUBcga2-JbxHIu_gEpM+Mal1*yIPP<}hncmqdJR zwi-z97C^J8CUzgnoIZ-W#|<7S(pIjo$j^61=^YqZ8j-MRqIbODlBlFGImSKfmp4a61ewlPdf3M)wuQsbLT7tEFgBc*to^z z6qM*Z!MtF)%GFKImiYAQv5JA+*MMC)rK7n{`o)I)sKvc{cP~PFHAUErdaCN@DPN~Y zn35xRt25U%YjBDtLg7Q6UOAZ;k1`o+1^`RHkBxp=22>_2@8@^ z*|F*4!b%Mp)ojeNIfn;70&jA0(XNf`4(^?sf9ZQX`r~?SfYFY1k5et&v_*q8ZClT2 z+No^5Sx< zNfzkM)CQ$Z>%X9$^>11BJ8i0;9OnbU58mCd>U&$ye||{pwzF=?o+?oWf$1@*>IE0V zEYgB%s~r#H0EF#aBSV^n z{x(j*W+2tFvl!G6MvPZ&cQ&pYtNw{$DbjEmo|TkZy^4A*^jCtUA%Duwf`>#BU#^l$ zGJ%$&_olwt8hd45dezDlws9dC0WoGX&gi-}2D~xG!t(>9F&;pdQd*5%^F+F(;Qs0exhm=DA;v9VYBbEs#c1B;S*+L zP!LXC`LpN;kCP=LV~}GNfem^fSy}kJTA%JDyJe%GGhf(Iv0Vy^J53cEc)!*tZ$M3& zT49k=I$mM8lgzi-lcGw;u5Y?yJ@7DB?Y=!`kKQ@ER4oMM^wlw(fLOPs;cMe|m!+2h zwtULh!Y>2nR^Q0CNrOUXqR!ZqG%^yLZycZ;M_(bIk&{kYL34}hZ)0~cSEf4yScdh> z5?&N&J^}uPw12%LY^Qg2Am=vsekQb|oo>SxOq2 zcboK=c|le8#Lx8M-dp%{jqqh`Q_Eapi}P8`e(guuBpHgDOO}5aNQ3d^)IFgQHwh#M z_fvtyHC@O!GqC2PPVIoxR@=|$7E-5!1}N{aOs-y_my3^ zbmH4^(mI!r88!8R<$qOgO<*=GQoNfBPO`y$rrn?#j_1fP9zY9YP%te zBGV>^=w&ZJi{R}(W=5AR<;{m0)25m7oNu)=0U(Z)!8l=v^w`>lH{_k4T{TyR{|B<4 zc`9ha8h8Y}`O|#6OcJG;6B{v&SldmwA8??-ynyJeE9A7hpeZ1B{rV)p0kmgJKt0Nt)VeH`~gM{k(Jl&7_N3*xO-$33#^t9RH{ZBG)jr1{=gobxbX zG)AD&*?(v-#l_!p$}XkGp&l|up_aYY3GQ{;FK6S_tu_~w+8AyR8=p%d3atMtL9gq0 z^8MDHZdxVbnCK^WSh>)rg3;Cy``>+8>%rBL-~=SKLJ)HNgAb0tY8?Yz?sru}z0B0J za(t0fLF?J}D|BZdkD!KQ9B^d#lZ{tR{M0;j8}O)NW%U_U_MZH&%F~}@u5)7)5fODx zmE?^62egr0pLq6l%NBFO>8ruurGXTl`T5V_iWoWxRw2i+%1)SU63w%c#~Xqnkm&-y z(XTJeqV&oUpTGdc@`z{)->-CS`NZ$n4}zkzR(UV?%FeX$Z=bGrnTYo8A9}k`VyO9j z-rNlVZC-Pv`{`QRH@V>88BNcL7;Vk3D5br&}1YUJV%Uw6XO6CGIV3j57Md8Ri3 zumP$X#BW{=3Mc8N+nue!oh;($gTJA2X?i!Km*6e}PjNv_`8sEBcfQ9vOEy&`F3NRxq6bJ?w zCg(PFlu2sV#c(wie#p}$qg25n^iRr3WiST?AlhQR(-u`$2hwj$^Pt^kNAXrS@$Uj{#JJsQ>?@YhD2`L3^?>9SVV$Ynt zw$rmdf5|}lG+87x9;JbuF)Gu|uGaubzHg4y zYtOdqq*|$gdk&=hR`ZJ1N11l&81O*Q)I_@Rqnztng09ltHgcBSGN-b_n-jDpvdB!P z@O%JMYIa92t--v><9Mf%6JU~>tG+XYN{Lt`b4~1pM>`yTx!aejo~~Va!l|4uL8J=3 zMP>biSEiTJJ*fVRT$1-+DxL0~*B#emqE^z&i9N3I*R%kP-hH(d1PGD;Y`)84f3?lT zC`Hw{!Hf4NOofsHX5mRBdh<`L^8YgCA;wP`9{#H6whp~Phglt2(M@TY(_a~b#E%pk zPMcy%4c!&qJ)aaDw0>y8I;X2tr81n*y|Cd0`8Bdsbg+YRrNIHptiOXwiTBebeL3bV zH(G6g zHG2=^J5-MMKF>oaIQ6=}{8UBH`1h#Hw|N`!1|KSv`L>76G8@;F0!G0B1wYgbf5BvR zhNW4oz8?DwV!^Vpnc}D)bv?975ujf_`J#kn=Y^D9^fez-iTM`<9P~zaEqo#H=r^i; zdXWlICpPJu25m8-4v{iJNt815JVKH8k^oi-$~jy!^HZv8%bf)SFI&Ojy-C2|>uO|4 zut`x1B^HN9_1qyBU6V3T=NkW=#y05L^?t=+KSmN>!!Yg2+%?729nzI%IPScdTd^5Mt6drA;7mNv83>H=Rf~7AGpNe53_s zm+b0i^{(%)XwXk3BaFT|3c@JU7V)^*6N7aC&QF`{UsB8 zus*>_Of3us5-gR44r29d6{JUJC+t8b67nd7D|k7EXK??dLuRp?4K-P*`}I{;Q8O56 zvUY2t+&yV8U_lq4zMsF#8T+Es{i{X=3GfuG5P97P$^S$LPlcT)ANHr#CcXr8J*5K_ z9Aw5@W6*LhM0%TEg-8n(ZOaM`Wuq{Bvrkh>jt^HPT4&-@g^E*(O+Hxt@|KARYphx| z%$%xs3IAq8Bs7+^*nmz1WoeQIgxhX)==BC z%I9ZI`A#Wak)jP=8;Q_@FQ2Yw@Z0n;%&I?dp6Lv53OPMmd{0pQ+YvDSaRRothdvF7 zh`ZFYgbfH(9sFr?BkyyNuWGG&@?+(W*et7eLC5tz+g}jBhpuP7%5vHD)~qTv?$v{j ze=?bs{tTY0Dsw&Y?FW=sIy^MrsL1Q~);h&e7z>-d04U(9WzV2{RO_V12RIfPE@O+U z&#BZDi+EubFbTN-f9 z{`g6-W+;!820V9p?0M4l7V3n0rP~i=SZBEnnSuMdJR>Fipyp(Y(ZATjcUM`Oe4YAm z4UcO43pjz>r$No&w4_nMJ|Lk-*TuA)@AhIk5OM^X-Od!{srEliAUoRWolDg0rP@`K zHs8=Wp@T z;m=y726s+yOJ%u1Yz{0iJ?^v<)P^@r2u}-_(`8<`xbV*mGdJzFIk-2;D{NS(M{`=>6K6UY4ep@*B~^AcBU3X8qj&&;7`e3AW(T zpy#Fn6l0jT78bFh#Ip9)#m{#i+YP_b9nCD8IQ%<_F*iSGYLQ9eF-s)3)kuqc+3mz4 zy5T47oc=e4D*qW+FrUu=-?=$@qmTr=zb( zMoU=6)V>ea9V^5Iek2)^7coy)*L-IBPH2n|x}Po{W;AZwx}0gUHeNW80p6wLnPf=M zTz)Ey2NKcBa=&cL@D=V_m0VI7%z^>~I~(2&4y$%V_5z0gbn}+LlUQ+*vAu@ak2il4 zMknuA77Yr594I&$V-q-eZPl+;eNYVo7jY)3{siJTENg!N$%kRMqqmcQZo$Kn@uS-h zTsS;N*$s^{sm^jB{9{1TfMyP{Y9x*&ZtzkG7biifm^63p9F0*h40^83NZ0_q#Y=fs zSq40#xJL@|pz@+YiY@}oyVicL>?_dQxzZF6AM`Y#HJs5^dQzt%|09aSac24E9u6vh zBY(g19lEPK{>AMg-O@Z_4;DU(ExT0&z zr3-{?q`X>~-2aMD|0J-TW4-&00w(u$(3553 zk@=;`y^#eTPNqr5zwALl>dKaQgsx9`KYAz+8$s?X-1__YlU4$K;^e^bsQ<&n{vFh6 zD};xXx)^}y2jjzB_Kmwwfo{0;#e$M}e|G#IoYSBE#9(uUW)(mp3y}F=G{b}CfyuYz z^od<|G3!3#-C0^JkV6hg-FV1vtLD#S+g5+^<@3f?vlEiu#Epi0rw>(hf zzt+|!heqW0l2rukcSN*#FUH0qyM!)^#iOInNnz6ncrZW4SB#sk?7WF}4D(C7-?rDW#XTS{RT z06GkxRg)CSnAI32`13w7e<1IORLI)S?bPgD5m@f`v5}?5Lo$%sAX=5LLHt2Iism8 z<(;%QdJN9kv)njI!-vXg9EJ?jEAM0n@xo&>;^GSjloO+iu1Y6*Qaz@iy%X_}bbYs@ z@?K~x3Gxx?`f)?Y@N3aOT{BW%pqxN)hmlNcd;jO1PPj>A5@oj{Bk3%@7ArygVX9Tq zIlA}3V7~KAv)Rt_z$1VRab>@d9Pc}!iD37fI_f~R*@Wt)ub?n=Jv}?IZ$UL?E_ZD zOM9xqN9e=LF|$V4E1v6rYC|HJu0RI!FJ8%ejocrp6>q_VF5aa^T0%pPD||)4MnMk|@690I0>EaGE~dpJqUazI`|| zQ>=e)o#d1tWvbXa)pzz5-gik?Nk@@(+9)&kn>M(gWt__ne`i+wN0Ol(!{>4RT za?=CnKbFq^IOJvUoMspEV|_oyInBQ()}O_If+{j3?|XAE&l~)ymtbfn947=Z>R=+v z4wKd*{|UUC6nVMF>3@^+*DJaT4mY#o1C1b`F_%c=du6P5`i`UYDF=T3v59{D=;aQ; z7L1hF43nEPyTdT}|M2$SK~1k)|L7J36+~1-1f(bm(vd1Xii&ilN(mk5AP{4N{A2w_v_jF%xpaOJ-_RI=Xd{Lh9TssYprM1&%(on+@je} zz9a?8UyEUXz8v}@0we?o#AI4lHn{%J9ih1_{`l=3u~OLtm7U%;d9)c$jmIOaBQlT* zp^GZEJ>`DeF8Yo0wf^#Ji)q97`m^C6ze~0HWZ+J{l8Yqg=1@$$caS%>SjUan=v96_ z`>5}bne5Zy$Bf8!s0H|W+_2)Gl(awb>S(L*Q%TcN1>Nv(Tfz6a&R@82&CJYfSg;q9 zZ+Ffmkl!CS8M>&pe8!80=$%lI;mI~-!WJm)dLsc1O^dH&5HQK0Gny@wa1F@fT=4ST zh^=t7xBT{V$bS1;HYo1hyZ7}#aDyCd@K%M_mEz)Hf2Lka z@hJHU^Xa=oqHl8t6uecR^2OayKhMJ;sMt2ev1r-7|7Ghic0KUy1vpU#%pX!!91T`a zYq&vZYMcu;Syj}akG?k=qw*>MW_eV;?V7VlXm$&lhmOXySD;(xmLnu4o@Xp^KIZ@q zDZB4OyzY$MK=A{JR@L~cW#(B>fQR~iK&WcEj2e)5#II3hvr?egl_IzA^_tJ5Q8W1L zhTs`G&iCcp-C$Inb&s4TOxNAJ&}sb&aY|V_1S+L`SKYhJ2Ac+_2C!%ibH9ZOo zuG~FDXpG4Z-}P7wjaZJsgtZC(0qmgChd(Q^I<+^z($ zX0?NDkQB^M! zsNMOoen#p0Uj8Ko(YJN(?QO(mM+?aehMQFwnUmRzBl4N6*X23*DdBN3oL!Kdv89BK z_|#=O6-0WcQ=3e3Y|nK;*+j#08TF=%&vUL$cte*oRVxzD8|NItEIS)Tww%#84CP+# zv+|vO>lxj>faL%Q7RE7TWGqi)2jw3otaW{rq-VZvIb>jgOnTKv4|zR+OrYi$WTt^q zs|cw%I*a!`*@=2`{p6A{Q9k z!qHa%Mjm-fAU}rFG#D!ILR0No2)}QE0|-+M+`Bl#H!9K7mnYTw?2NRK^aP$f|a_M|m46^FNZ_ z4U_y1)gw9e$s|4YUm`YZj<6F802Y|r5%V^4?~F$s{4tZa^Onb+>qh#mgc5=xxwC{D z>O!CZLszH(D923D@vztfy#CbJ^gMJZ;Hc<+TSeddpYN88z9 zpka)&7QkeB@+y|Jq_W{}nYyh5i^{NBa1WI?gP?J2f)peUXucS#o93JCt<@gGl|YiO zVfyaVpeV?^<8!d7m`AGApzvWV-ymRyE#^tIaSBU(rV0_M3})Kum-{5j z&?_0RpFJ4h8K3c~WT6pPW!>bOW$%Y9F~j*T<@q&(&CB^QMQUb z(2wqLm^~O+QE)w+nZM<4T$t8LiQk#h<4#rQnTTpB3G5UeeJVKa$ES?7-+RtM2G&U7 zF>DTi2%MLjZ{B|X8D*dR#2dPdX} zyAAtTv+0d=%Z&I_#GRwa_O_Lhgm3046zGwFNC}S$&`XkmhSSC-*C9#Mb#0{l1rNj# z+o&aeu#1Yl^`uMpl#yAt_foGJw?XcQOMHnY_Y^o_r+hSaw&pu49QKq)s~tm%c-+*t z7TWpql;a{#p7|_0S>H-SOC1BWJnYz*^mPcztFTg0N*rAn-;ok`9<@W$-BiBiIk73< zo+0QQ>*T_C?)2`dLzfG}bq1L#g1R^hRkbf%w@X(O!|{_0Ye<>r-y`|JNTYLXa@QYp zG1U!Bi}}Q8c0RMEr2GfM#Y+I1aUwp=5IZ}!$baX#|Intj^ z53Ha1QPvZ~h4#cB1nnN!<)Ni}buvK#B0X`gJ4?5@4XQqP58;#Eoei)x@${Rjue+($ z0@RkY3lk?~hjOECXr!y6+LlGE=Y~xZ+R|lx(ISZ-r|3!(7bdes2L9*)5=?G_kyQb_ z`RF9nN8PYu;Muk>yG;Kt;h#*vD-xzCZoNxFcFl0*Buw(oZ= zoe&15y27r`3u%5`h(Q@W?F9NcM1(o{s?M&+>FpJ_``XXZ()Df*BZoTe$)y$Y*CUr< z=aeH9w^SVI%=Bu~fV1l4x999>PveL6BXHF6!c zs`^Pv#Dus%=DgNyAk1p~P-Ls{jGKF5%(!ojKNb&@cMy6cZ}Ve$&!DbsDQ6naY9S6T zpL8rVzR|E_r}$JaGB_m~uh!we8PHS+eaX8|uoP5^Ef;a(H zG*}+5%CxzKMv?5u%-2JXo=NOUcjMFW50#kT@D96|bA21kxAOqH?D<0(p16RmuzlNG z-=%qFNq*$u#zm$0JE{vieDji11oX07!d&BU{0O>T4ZF$mP8oUWj2}v=$0fxvQI)q2 zjnml=B~=cwMys0~OzYEeSmWaF%5Qw%VIIqmjO}1^=TF2st1!47Ju8u%Tdt{c)|a$@ z>7%F`BuG=|U2~iI@M7sz28MO)IY=Fqp~_{_#q}Nd<)wadgvM$UtolAc@E)m6&+iuN zK-&(U%4Qwh*)y~qMW#6j-A!25;!*}w68IgTm8y(9--wzV2SL5+DkCJMol*+Ww4RZ3 zjZN-ecJa2QLsxq5Y(CW zhQ&I{NpAo|+je`$jdKSfp^WvxuRP+Sd+GM6V(IgVC+DcXD*#S|ha6H=g0JeWuF?}UVzzf4rj*5Wry0jmGYBXbbi+r#0J@ z(TBoT9X9aFl=6Pu37l@8D}{IEA}sxRSV{tXR7J45607D@PauSb=S?>lAecw2iR0xa zUbJj50^rwh*(`Y=p@ds3E8PnqlzJ5O6jIjj>>&-_sojJpNJA>GHE}Os$#6JboEzy5 zo=d;NvQB2-h8*SL4uHsxmooZu#`7CqllEBKI$L@)byln=kg`Vfx&Fpfak~G8T1djU zN=`8TtAB|7i`7--_GV~&qROB_fal3C_4q!+_r|){!^%?}9tdDR#_qZWmOSA6C}!8q zT8Gx=@GUkt=c@*fn7ScfcITVK>4om;aL>Rplv*5o+7VY}CO{KJGA-ls-T&I3Z7%M+ zZqhT(OCB)tjJ64QxM46EO@T`3IDbs!Q(|)6jleURwu!~t3DA*s6IqiH%5Bj(v6hJt zME+;pSHeko6YE9I(uH~>wH~56$ioELr1uhWZTZQo<8E`Q4H-^qUZ;@8_K`hPzNIbr z$!L-X{|Jv={^yi-LOb27;g0<@uJx-BmX!n19}?CiGyM;ng`zwuqunaxre#t_vDBf> zAyDbwyg0ooge~TC<35qjCUeyQb`70Y^H}sG{>N;DGSNCC+65b64TIPs%7STFLxmAy z`N_(>bU*sprtF{Qe+PSx73(k|U9)Hy>U)*-;SivPE>u12RIzfJl-SLry}P8P+p`bI zPmGb#Kx|D)$rkDZ(l_7viR_Qxn&zeXLuPb~k(m{?ZAw$5Ux_R&6rMT>;nYatq*)n` zQ)e;h&5|+u!yj%2l;6p-6V+@wb-+HmNkjeh`gD_yaF|ZYZiVf@Wnc7sN1S+EQ+MaL zYhN71^3Ms%Ta!`JjyE2DKH;IrcX*OWepGupsTP!=uJ`4}@R+FAMQ~6ZER3ZK3DF4> z9n2;07ZiDk0ToWdmP=f_qChtv4#kL$S@c-jA?cJu;&)@MQDqoq!_nbmjqgJFpak6$ z{VTHY#>4m$08zdr{BS}yL^(ygl;#9dER$;}Ggdc3+4^3{Xr)yg(C)akteJ|wLxmKw zIx?HDcBIc4ATg?)#mj@E^=qYT>jx#sX)$H5Y;~w`esfg{hDvGbrW6~EiQXR_IcW!( zgbMxOU^ZXd^kJynfQ^z44{Ph{zK2o||DXoYxaV>FTpBWc+B^E`Qg~}dd9!GnOoz6} z6Vbie4UOX}6Pbt5u$(c zsg|T>22R2Ug0L5~>WHo0Poaj`DuNZo?6ncot>aXeKlD89ksvAuR9?mtLA-PP#`S{% zY)ehx9J!+r%5(UqHMOpV`ph9%kT#e{Aq1};f5qWyn zSri1Mrh1Nn)X~PB7E6ro3Dme$IcG8*_(NT9S6R_Sx6y+oJ($wEq+hq=Wd^2XyU#lC zq{ukRa8}-o2cZi}+$;|doyg_JB<+*$Z}}&fS6_^yOfzze`^w{P!qckuy;F?AVT;B| z){vt>#_Z)|gVEynGf@wQDXVHHgFlPz0#?R>JWPVr6Qhi*L!jXE8a?JGO_({%~m zs}1er>te|A$>iri8vOu}?8ew{CkaWTajR?eXA`s`4_Ng`jlIk{n1`l7${ktNoK4@? z2!eY%$Hm_`qtHw-H*uxhzd;9RXFm%qeRFBN_q~tp&5Navgze^p3>_bQ;Sp1tXD(&R z9j`ZRRfmtghd8l%o@z4xOeqv{m92uq8V6TLQW5&_27nOmffHzfW^)fzUqL zZYi?%p_6OO=brmpY%~4oC7A(A2ReojCAC1=A$Wi@Fb0a#+bn( z4%k&>vA4nW3IN5j;?#sjql5H}YFhwnU>M(((L|7`k;+Ud*mh}MZDf@97v$E;@2#m$ zlXTNv=r%Mh6A9EV_R1J{cq!JIOWJ0c-^}L(jcstFCefY4s-9&M7_tnnic%XLc#YcW zF0s-N`GLrGYy{#iYmIC*{7?0VLRbU)7!G93D;Nj9r+<{u;CmE}q?M>X!A&zkG4@h_ ze9HdWO6(?3tYP5GM360IyUd?zb<~vE=xK)j%g+OeaomueAdU{P?Bi6LI}nbM&-=eR z0|kOmvbBA1CiV=P)tPTS-O-}e<)?bH!3fiVAtBJx%JrOo6)P6>r2e#16}>%VS;{um zfOr;@M)UOVI*LH`mwFFgEJWQ4^)#}Xkr^I3&>7mIv0k=z?37?*ScgvwPUdHTw`E%# zBbM>$;{$C(jVY%uQcPoKs_MRX6FPUt&qqqD^WF*b+EpL*UMhhQd4#Xd@9OYIt0zw- z==^2t%!>OOBX|;Y19+n3;|6)t+7F)U<>u;PJ^)7jJ7R3Pf5z2|`slATiNdzEXT^0I zL}PWTJFnO5g$|Eb+^jScDOGpJ+DA=SmEpIP8-$ZAvx+X_CkmQIEe`8w=pm zqZHjWgK~5C*d!DWpTT?^%3E&^IRqN+%W2IWBc~nZ0b#>QpWTudjhAlxtflWWfpU6p zFYG$Njc3i2qOR9@5in^#tD=iBt78EIy?Hw2Rm!2BH(4cmiEMs0&_XtwOcnBL{yt69 z=W5_g3%!p+f?Y*ZXU8Gx(DiYy6bZ*TR#{)gGsbm7FPz;ofK1f3hI!aq&)$D^>)hXm zY2365g_805GOe zr(3L@1QLb}JlpbKI4do?3YP;$YH}H_3G{DT%sn8{ zjwn9>thzZy1ztvs|I(Ab4hY<1b#8Qn*y8Drd>#g9>$+vDeGMwH*Wv|DxE(Y6+bPRM zBj>{j!^1=n&8W>|2;lVLoI~{LejX@R77(3Vn77Zj@Hz#8CP_YszNx~4@&p=2u1b{a zG|744Sa4d+`~H81QUX;6DQc_WhtioxoJJ}b6fDhcyn4NVsqb>NT^6n(VtK@LsM=7( zz)YR|{S=ynnq|?g2ejj1RGIIv(XCSB2C4o!twEkw2?F5g3W9by)_$Lqk1mxZu$1*Y z#WUd@*j2woVTyGcXM8`W@d}u{0v>yBj8YEjEn;dQa~U75wRX260f zCl1ZzaiN+;D!krx#m4EM%)Mq`is@0y?wy+kggR5q_>n3;b<1+zVIv1SY*8RM)*HSt z7^zva?|oAvKUe(YoIeOa-c4n^*!epAK?ChJu~FMv%SuJX_QAk2h#+@SOwhaF&qEIK z*F=0{W3@TY=VNlJLSx0DpGuOOh1*~>TcJ{R1Cq|t&ma2uqx5whrOj#pFUN)u^Z?LH zx`tY`mz6VwvsM?p!yJJokY*-wCL>I~A(ay!xno|x(?#=`7w6f&=&bQ(0~GpBokuBk zyOH%<&1{VdW1s|N+-)<|J5ERe(9L^+buSp_BbRJ4xF@1jXa7cTzKoah?DH>8EKB_# zR91D-vVlqV0BqzB&T5@VPSu0E`#UVAJHMjL!(or+1fA%)%p zy<^#g9<{trV>h7Zg&x+Ym*dd~drciGEXc9%p}|kH?FGE@?xsDYVGHkH|FKD@nPg>V6i`3#(|YO!^UegG>V>P`Nak><+jIizbbG|(ADXu61|N8 z+z2DRkw~uYz-v#kt}WWX%m5Uwe4oaY4f{fcR<{_mMpx*yri(2? z7W2$rh17>^YFlrY%?xDr&2kz+MznO$#20s8$;S&eUS;8;M;d{?h8+QMr+L7TZfD2| zZg-@hu0`)+bhvn+&XR^M>Jlqbsu^;QvEOs4A#t~!Xa}ET{l=*9N|ScT|Asm_81Aut z3+VE&ld6Eddgu9LJK2$5%6`$rh0l^xfkHU)sqiV1VDg$C+Z*<$Gpqmw4M$GzmJBUUb{)F2p=4T-dMqD+bjS}y=CZFG@)R+{o zFcG-ks)jFAhU!K1yJS;83rhK8Pz&SwXzwU5N`^7!Q6hI~-lwtz#Y3mocN=$D+|+wC zqxoDCV^@(Q#$R6D6n;c_xaXd*ChcQ9gp;{uK(Z$WR`z!$eg!~<@7ygEQ%=66%E><} z=$!l^$=NNgMf53t+^K=K!0Jm`O#j!!xz1EkU3z2{(>OK4tsM@%8n^p}1D5KY;rRq7 zT-^mOYJzmmp?bB)fdYDgYw5lnZ66OCnuGWzJ=J2BTDBDa ze6Pw=^B0Bm()x5<2U*Jfr(|9wOY~IvDgjP6+a_MIldEvs$Ii1Y@{U1OS4S(8+*y8% zh1;TQaXo-=#Lr>~SUH84?z)_7-!TXeI!7&%n*w`R^}oZL#tq2^{GS1G*ji7C3HO;pb@j$*R!) z2?>?AlnKf8H7&tq+0>BvM+rdRRZZ=m$p$q04|HQ{%|A9tR23$wjbYljrB$C6O`&*Y zC-14T+m)Xo+VJjqjwoVLy-(&@RUW|n>Z-r5_j6vle0?6tAAY-PexK-zSurxmTU`t4 z-0DPr0f2pcn2lFOT;3JmDV^uP864@vmSLf6jzeZ&(aRF$zGg4Y> z6IWgA%oi79Em#K@Za%pooTt7d(TfMNVYZr6Wz!oQ?XMe-eHAWpd&0ai@FCN4yGF2) z5^2;N7ZH4Jhx5(Wq0cGg1nnw-Iyb4?_}0~R`!0+gEslu@KD#1#Q{{3cO6*bAr^1W^ zjnIq1fTuM@W^C@vcxw=!d2wt%Vw_pnVqxtC(B`AHN73(!Rp>qkF+9y!Ebi%8$_f~0 zZ8~Gsf4J9He9r*fCRX}cuSnUE=(1bFy(^XoN`T32lRPbMxGlVQdfEi<3nD-8XzXbD zOPK^5XuP^5Z@yNE!-d^7fRf*=52nNOQ8|iv`{cAL6k4|HELtvTRGqR3(13k{v{M>8 zKlGMT5^%0_1REzF{DdajUQms>|Mu{V*ZmqwBONJd+^d6iR3FfT@<;B8 zYqHK>MtZOeHN^zAc z7cLHaf7JmBS>L_0UN=}Q?J1TkVDiA^o86`HY+gv(PJf4T?$ZGS2q*^gPK1pH;pW%= zB8e~3oA9eGJClp)&d^zub*o8cCn4!QVB_gH?GXIGIcG>0cmn!)$2H?=FiCxB0ujPz zP^As{;mTqKz@Nd!sST8shcj!rXMY=*{VT@_63P1h*ZJBrkfP2C&yJ1{8JPw-=1`>{JnqC8yW{Ras3TsZ;O`Mp1UJ4#zU=qxYW|9Se5%VW_6<7l=0rj*MY1OnEG_! z2XH6BWl|NH;?WLtZh+6R2!1)?EH_<;TgD+LwFE2vJrVydD9<$B5~#jZ=m%nGGUJGu zAr;z%>QBY-3d7#jiiCyna}RFR6n*#?=kMwAZPP$>kRqk^q^Eb8D_jMnJbDzjRnX>) zmT5(IhRnYk^ik<=`^HrlVD^?}5dJ&b*SMnu-fkK;Vgcc+gWC^@SZFdCM2=LL$CdgQMgYq_j7a5>fBq{GH;RjT%? z89DpQ@U7K6?_kAS$^{I$0S(A>;{<;Y_BA>&ZKD^Xxikb&gqsDZ5stl58sAA{|dr(;1fP+UL{RrGu4rnB-f4x_PVUQPk(H>Btk+ z`>EaY!w*#E_86`Y*ExHA#Tvb$fh_wJ>7xR{AyYlC2nMWsql#NiN0ZMqJb~mzskfWh z0B(aorEwtAp0^2<(gWV=uR+tmQ&>yoZ{VWJ8(}+;sfzW)R${LKR(!rXQ6EY0GOV)u z1}NE9BZ|0`Vw0ftT9-|(Kl2oq7S;|O-#9gmmre8IZ~=Ps8Vbf^q4X$e-Jb7&$vyWr z-f?|<$B0-k->0~u;^k#|6Qxz4-iabj)#$8=<`$UAI({lyPaJwrJlr`42_x=G`*u5l zr5{a7A=dVGB8W9v@G~yDqGsy21)kc5BV!Y8Lr!6KIC1iapv=*GQQL`L)|u)$P(oQH zpqFw9HVvw?mVm#Alu$C_Q3||YZS!htoq$kyt(?T{Z$n~jK46#O6WstpQ(%}HW~~|- zPg(6JFD(jS?tGvJLp>)j#_s^H2-E3-dlUvfYv0~(SFh**a(%5@WKmEhC1R-E8Kpj& zbr9q^A-U1SQMzOAks|9fU{YX(i*j>C6`jvB{1>LY&Z z{Tm+V{)#YVDzuC+#iDPdv31)Mm;6{aP{PVkETF-aRu$`Y@i3(hcuZ(BsMy>yX4>hu*LGuAD%O*Vfs|$pI~`f{a7((byu8#AWu(dZ_8`h# z2oU=nd6>E?+xhY@T!JHnjUMkxw9b2`cC4(pMQd??Qw;ItGD9UGDYUr)Q z$$06u9PTH)PjAvYC_PikH`KJZ?r}AZXrkBysN{_*(L&nc>Bw6MtntPf+LmEZ!oKa& z&3v{=6aGtdkKzPnBbq$+wycV_dvnB7Zv*-gbM*Ih&%@6YMY^PG%=P{3v6R^W;D^&a zRgG~rVuFCqz0k}2d{C#c>mq6heugT**UaMlSAHJ~ZWpHELuFkW&ct@gty%bYuq%C>>l?cm;pn4aSzB%^l&s0SHdq3 zSdV%8gh*Nd%C0`j*Z|>Voq-Bj8Hxt*2i^t?B=EmGkPsaKB?Q0a(G5Sl^Amlu$~;|n z<2~%p%tr&rb|di0rwx})`sOarmabRkU{kDAAMliRAqFR;OLg<;>9Fg>d;r*T%8e0d zE%k3+UiSQ95m8gITBsaHRXt`{p6%HRG~niWu2JnX)U7j|6nxQr-ErhQDwfyKV84MF z&y~CI6Q*e2*=RC^dE8=$GHc zc@OmBKMyFs_vq~3rsN0mI2uH$7;gG;KllO;6ot|^l1X->A}Gs|i7QVH%G(jtoG%bA z1a4aizgMX;zU_|j!^{gYQa439+D3scQ4!KIN2_0qN} zr5$toIwEoDK5_;hbx*mCFQo98-P|gOzCWGygbdtH7t-Fg>zVXH_u@EyAPF`1WjTr- zO=YRXLo%EY(AVVJdL1d6y7SY#UE1MYT1jy_Lbg=e8e76p8P0JbzJ%agse~5%nOv}XVb@4+3K(~q+7QaxN;yMJIHc6GeUN%Sk0r zpZdP>pCEJ}D>*JZ0|gjRqY@Q{rONJtPDA4LZnBJ zJAiKE_DWM?1^6Im%V-d!moY8P)R&jmNG zF#R|TDH0znoWAHN>Gq6)hP~S6Fwy#~zg9!b7x6##)<*^v$~) zqm@xtkYTrcMsrUZfC(-eiwb^Gwd@94?6Xq@ELg0!cf>Sl3U5EKf5sM5kwhr74`BN< zj~b!=G~;$@3ua7vU|_fXdsMa#stiBszCBj&4f8u_w@$|yO_tdsK9lD2)K)K7U(Z@y zH73^|zg^16P_}grvOI$13^_~sDhCtz$~@p%%bJ6|`4glV@Z@76Jk}?n*apr&CWa_0 z*B)-SmU8284m2#`SMdlwR!kCCRlw%$1E-G*?Tk=Nt7o6Qv^YH1YpTadH!+69RneUCCiGorZQjm{mRDO+<^_=q z`GJIA<>YNAaku_n9SDC?l5gnO>1s_Kh(81+@WC9&@m_rwDK@U*_1X9~3mpSdm|3qh zzuIiL{R&*6CvP~lwS=y;Kac)n*^p?hu8_Sjou-UOvp;IA+@_e(v+aMrllR`n6nK;4zlGTV>yu|>#OG5gC+pI$A6Q(F=P$xq#sxm%m7lqMCq zQNHn4q0G#^>ufYES601Ic*d^eaD4m0)k6EZiP7y76oOUPN7U(d0Ql!w_afx1wNJX5 zVgzdpHG`mX@XoT#I8d(K&BPhcLkJCM4mr((u+FJlZT@(PzobtlV6gxR= z;ka5^Z2yF}At*#qmy2dj3Xd%!KSevHYpn_l-as;ow|DI(k&G=1CSAJ;-2vtSsf$<1 zPM$u`4tnv&iNF2Aq?36Q!=SB+M!%qk%zrMazo%y$#Vg-4K1PM=Ap78_T34)>^U_Wt zFze!#vX^BOO%;W(c(PKTT^1hHr~2+<3h*oM(kPD&pHn|*??)-s-P02|x7;Hh$xDGR zU+jnbdWZ#s1w|DIi&F(^$8S;NRBu zpDR87myb&q+hUG9Js@XQ@9GiE%PNFmd_x^2b*8-Vk8w5DGTv6@dipzYgr1D?)8`A- zOz%)5J1(>CH_|E!ylxKyd#}oYj$pR*a93Z?{d%JHJQ4k)Fw;IK*?ARoDQRvdas!J< z7MyZy1$#~w{Rjw;$Jx}B`AVH8gC1_1%>JNLSBKq~HAp2XCIq0KdOK$d>S)|WgAU4Q zAjC9yImOD}p_qpTBK_D=AK$>Q9|_$dBSh{)+2B(eg?YK-z%$k)~|Oz zj1xhndt$L}WG9FCgf3DcU8&vfs@2VOP!zp^8FAZIU2Zq>M`z5uq!tLLW!;_fS`hKn z-&S*|&{$>p25-x4Z~OzPb=t^f-g%aYZ4ymC+$m_5Bd)P%kTMF+hN{XoIR^|=&R>4N z5;L?-V#Yj{(l|~g|8?z8!$62JMt**NlHgJYg<;)Om{F3w*zmUa2{Q5b;r}MBnJW2~6|ubIgV7 zk8yuMA8>Nawb(vXpc>pJE_jw+bKZR81OZs{!sLZ8j$h=)|8!_SWy{$Zkib&0uEO16 zp*<8|pd9tBr4^Ah@>5EgQzs5XRVkMr-dQg^U${s> zFO&ANlf@|m)9@_WMH2IpP9jfUg1A5N625nGT^8s1$yn?72Oj}b52dyMT&E?Rq(83Jnf$!b2|z56r*eVU-8 z`qVFH{zEALvWmaSYc=l2N)5$x*<~Dp`-=EtsDMp}`pTuiXLKX>sCJj{)DrI<#Z7AR z%Vh5m`<`0&*CyU}*Hj~pzXdgrZL=C)qGsR^3zJCH-Og%E5Yrls0?`KgKmi`Xf7{N^ zAj1b7?R!gx(ESG8CTsplx7CFckX3&SouIGKhOec!mWOu1Y0-BdpAEEreM@w{sxjp- znJ5(Cpf+jH-^j=6wbVDlL;oU-Svo)8V(osWZeU(#eCwphVhbm;I&4omsb}3+ABb0- zKG4e){CQr7tBd+aC-=8Vt5|v#wcij;HtK=qL1oGYS@ydV6d0nl{AFz2M%0h($#)iq z(cueg<;E9m9tU#M8O-V%s=b%k5SJC7G__Mr5iT!Fmyv?HbopDFIeeI!ORVUAZDa3P zwCW{I_f*I9fuePnN$rhi^7ZUPX^rYYvXq}3wo^x^fwLC{g8u77H&!OcPVN&)uyvl@ z>;Hw0fBopaK%jOHeVkRNbg?%@2yv0`&Acsw9>JQks*+j5VZx5-{+d{Y9LitSD6^-} z-H`2Un)QBs1O&~qb41d5A7-+VmGbl7cKJM#9SIx4%=n;EaaPVeQyjfortCk(Azl<; z>=79F;}8=d=6msXuG)kh-m9Z_beRH-#)4&U{JQY}uT=c;`x$K*#>UZ6r&r9c=40IN zkpJIV_X95E;b#>4q zFF|NS-JIDa8{m*C$BHuTuiyezen*i1{R)MY zPx2IHlsfVQRM<`$Qv0VH3x4wNjpZP>ivBT&o@W=jLdMS@SEvgER7vt-$$u&_*n7di zf)Ls~R7hlwm-;`x_)q8CnvGb}SpN5`f%np50Cke38PMzhegnTDTh9jnrF{RdSCbii zc}cSu1OEEISWNU!&2J7mmf)^^YMDu0<)5DM39^4F#MM6);zpW(dN${;H~>Of8RFr= zv&7_Jv&i)u=lXY<`~uijsNJolEuDWV0$+SIrLNNEc~YuN51|pS+Wx1k3Htd4D?I?m z?OL(eW(hF=mc%;t&u8O7#q*lIVoz(k|M4vavXWuCfk&e9o*wNb!GB1=0DGS%(_LaZ zsa^1obqbI(S=_<1{U^32Lr>NnPvL&Y^g6!mj~`FZ(Ic6D&>TiWuGp382{su zWCVKqHQ&|);|Q3X`NyN2tpFKk!Jg%Pp6;o|b2G zNJ)on7OgIfB>np3-cx~rZN6g$hS@neZdP~o0)%l>@m&O}L5l%&Wo}HCdPTVpqb@n&~19OveM5>gy zK8z8`NF}Kz$;drZH7U3fGce2x$^BgFy?yzs1$F$_MA5sEx8?lfAXksc1%OmD1AeY{ z%OHAAW>esWFW7ZLwnIM5D}{4&|@ z_6KX1Wbod!H?_s*ALZqTNUhLz&z1Q$@}N0ceDP?LJee!}a7i-$*jXj(us6%v&X;sQ zjjBja-Rnw136%~agty!2_=i#R*&kB(=G+)(wczQb$`@x_3BSy}qhZRvl^(Br)1d!G zPh1kMjAmNX2U${(|Gf;#(|9;<&ZJD@sA1Af1o&#gq4B9lIGJo|9Xq88_EEXFi1h8EW8JOSznxvWR;1j^_`jWc#ik z;|m+3z{W*cjCL>PVw~Y2$<%$zlGlxY40iX6HoVj4A`YQp5B= zY;-&PhV)ynWEh~=2=`AgcGIcV|8isdypNryw3Hb5sE~*LiwcYUNiJ&f7T6!;yOQIWhK$xL9J*Q-)IW<@rw$hW^*Y5lQQ2PlG2zoTFLMWQ>1=i z_qyU&o#63lNPeGG4OR>V`0u4R0&eB!f0Er|HObDp1RPdgwf(V;fJ9Co5W7Px<8;x<_L`u3OZfGO zz=L17<$mVShk`X=XPTd9A5*n81Z$2Xj*)C8n`uE=8>k)|A&leC%^2{| zQ-Bq`?Srl>6s;Q^<8@G`pSXFba|_u0SL z*8Ao+9~+_f4jE!Wwk{EtQwcalA5R%%wLP{&T|Q25Hs=BjzNA;wP$8AiL@02x6PT18 zhmU!V0-v3a+!Or*cBq$Yd(MPQx4nIA1krF%sker47H@G@ru{AF(#MwnvCPw=A)rz- zjZs4iaNg_I|A_$F{F0{y#Esc3?}T~wR3#qUD3fC5P<;X5tB#Kc96|qg4=k<<1Sl)l z8sYb%u2FhQ9-|)i-jigAU|B0YdPv+w)(}n5hFI)a*>UPXv$Jp82BSv2{3EADr(_4r zkBwk+HPB!?-KbZm{iw^&)YyHZwz_56jJ!tsR{uu{je+Av=0~A3gG{@zXsuoyWv{Es zfVBIM3lx3zqN{*$!+aKhH+aB{p!)9E2$?P??a;o(fVyn&sMRYLTLX~ue=PW9vckW} zx%7WW&I5pc*4?fCfBSmsGXH;|v^>qXb_nF|%QAnHa+B16mZI|6aOq1_utuk=$U!7i}O+V?L`-#fk;o`mSVtA*U_l?Ie5Y!c( zr;^ZY-7P67B_%!UkMp)Kk+$$DO+c_6W3BTxPXS@|WeOSWtywR(RALmQdnU%6uQlfD3tVA+}Ce-jv{+5&Sz7S?FI9w_Ja5(KRNohG~MHugwA zb^8OMQMP*2r;{rc%Y00FfL?&M|3!VWdI0qe9(n7Q! zucFfDbCeOS2wd1n2K>s$A$k%N<%;ZaKUk+HWXmOgqy}yx1B!w^;Ir) zncM06g9T;oP0vQN;8|?|K+{a&tVTq)sEW&!$E0_N*Z5tyu5Fty_|skjCyTn6r+V~1 z;VAVT`$Yw!G%~$mC6^(;m|D9#W>8(ZoZQ(lWudThQf9xgIcg&$f(T66$8pq1D%&|s9dRKRAAVhj6 zAS$3zq(xeSpkPFL4J8q=QdOF?0Mev}9%@h#kQ#cZp@m+P&;#LHJkNg5e(^nLU;FI$ zI={YOTo-F4nRAUf$GpcF_qdl`W&2yBgL9Y08U9%3Jbp1X==xZha}4GQKwWvku z!^cZsem8E%$U8V^Q?oO`v%n zLzS1K=Y9;W#dq_wc)}I%T7Ky^rD?o{k^3C)eLSOc(;E|YUN-}=wQHe2jEB~SmV5+S zWygbh<#G~{PBE@FiCCg@5;0fIwkO+@pfG$M5F8t3RYr?h-6b9OlODEwYM)QlR$!x% z;smGUR$n~5EBSH!^Ybz!Od`%_(Mm^Ff?Wj41@dj+aoUW4)GK>eUx(5Ql)TN{$z%NF zs8~8rtX;Y0i_dk!L+Yaz9qGjv9)0(y+!qM zk)r18GJ~G_58`Amq4S$Ul$5D|B))^5>^T`#^CVl~CG6zo8Ws;Z-j3{B8cU34dPZP@iER;>F((0SoLz#q1~5e8Zm~OmpwMH19L=$By{lMAG7UOS zDLK*NJ?fia{VpGGiCo)}D*<5Li+T$VSM!fYzxj{@VK+qA*E}k(Kyi5GPlbt1q7^rg z%l^FQmJ(b$H1mhEVCK>p^;X3uB9XyMWNQ%Uc^_ygtT0|NUu)gY4WT3Fm`?OlEiU4R zq1*@y#1eI0U&;P~fk3SDnZ8)!M%@?!y^82;krqZzRoH^<)OFX*GW9DJ#^04W8` zrl0m8Buq#4tNO)7l!cMcY~d7p*n?pN0Tpm4&-tCA(<SC;ICj+5IPVn< zAVq1TEU^Y2dD$x?GLFUqZ#Sz|26-Ekx8v|AWlCbw@GgD5HZiiYnfAj0Vw*ydRBfE74orVh_0(si$^m1Xq$tYk*lL`Ry;OdH+9bciF@zkr=o7u7MXhW zjuRHKsXx;RRrFQzn{c*ZAf<#{qbAh%J12$dD9a&Nn_%pAc#dWS{?a=xJ(BLzwUy#P z(Et(bV8JsyaJZcrrmtbgLs1)Qz^ia?qSv>>vr;Y>bEMFxa(d!2dJ$4!%4-df<|zcN zK?ilgR8hHt>VTrg{$6PDr8&i1g>P?=Yn2HwlJ}~|UbYshCjh{EKin!LMy;uYsxqVWJ#4Z)TfC&%SE;s?A;lw^4}K{4bS=9b&MQ@z`S!1=XS zK)P8x9Bk&I^(kpSZ#;y&R^&x08PJK0a-Cmch2NG^d?vBgJ9dMfQ19rdHwXFYetq)jIx$BIlx9 zuuk-@Ka+7xcuF^`=?!%Et<1TF8Tz==64GPPv4)wPDd~Ql7h+Fm{p z+OlMJ0Yz^b9~9#km%v$RiXQD1@a9zDqsn9vfcUzc0dm36M*!C@pD{Rd2_HSwCVb zcYaABo-5d1#h^rds46ky^Rn{H+6c9nq*BgG>P7)+2n=%gJ(KZhegcF-kStTwh*b3D z?+pnPerg^=ZjgM_va3EhQ(n|q;yLV~^L?imr_6gy9jaupk$qkrm!ak1{)Wc99u=+@S{CACHR!xd#$jr?6>n*_)a zeqN>RkCv0M+mpj|CtII|&r5Z!3icchsJXd{*16;Ru?=6I-bmmSG~8&WJpKA?zW|Vn zEIG*VR3$ugaqhtDPX=vnz`MTdkQgsRKPN3A*T%zMg~^(o}Q zz-120i6DNCS8l_U=ZlE6@yfF_K+t&H&cW9fBHiV?tGH|ffO*lQog{#4k2M>N2#oEC zWb&0ZpLz%9)9QOGpfsaNj&!Ypq|z0q$n!Ha_?vvi@7C6{Qv-UyyKghSO>rNu?eqZ< z*|s&i9P8FSl_d;N@t%M*7@i<#mL{9H8<&LzwE7py@WB|L31Q(~rS(CmU15_<$1io@ zjkciv@{*JG-6h?$a!?ro00CeC4NyB16Iwb(5+c@DKReJJwpS-nzkV=sbMA#Z5D600 z{2Y4!*~fP*Xsy|%`&I5`4~=LwhjCZuG)j$R!vpjqM7Lr(Ek{ryoMHw-G~5s1y3TRK zmvn{q!*J^59Ae2LgZWgPi?&(#wGXYP>m`*dsUWQ|{e*|-+#>q)*YQnMdNlzjtxP9} z*3UX85z_FGA?Gs$mfdw!AU0HKt=H2yM#E;d2(IMbbiQ{K{`ISK!L-jpT-eTZJvc

VZK%Ao zO|=S>3~ZT*g7K(xmpONTt4_Iv0d$64nKK(Cc1UbE%E{kLs9{=w#gnCT9X?x~2_dMR zIhfPv8;-hH3`}GCGjRY2_~2Z&!WFlDjX`yYsl3NE*C*80xW6)F=~lii?A9lplBfsXCOOkEac2{&nih|l`F7BuHMgTAzbd^1C%G8zuE=V*Kc8L zF}wGD))~Pch7xw?Js0T05H*F}pANMmSR(rpcx9y59cXN+QTmfqG<2l#yFhhu+T|R- z>ywQHPE7{$>IcGR6Kr1_v-z7ZTXg%!YEH(fLD%&<@ z2WaO`*3X_Orz}pWWD=?t-D;Z&h&+90i!ev@gwKujYOd1}>)`F>n(<)x=dX(TEBW&=%!8~S`hmBze>X;7cV!UT~G)W;KOG$lO!+#M}B zwFcI!3GQ1nwWSIA+H(BJm}|ogtX-rJ&l_DLfFo`!A&z5Wp$5*sR(a2;)koR0_i?TF zQ+p~NMVBCkUwhSR8ZF_L@L<{$K9L(Y6yB%b`a<+UEetW=E|_s$I27Etv_sZG3AMJH ziW>OjHHI1&TC=e-M%0>Yj{C$z<|`b;#B_N=4eS+`iuB1V+Zbf=?@CG_Y!$7 zaFVJd!aBh@l7vr+;fSq!YCJfeY0iGl`YX3$2${f_ngZ1BC6abWknC@_OQrq$V_Ki-G_Qq z%G{2#MN{l>9!ilGt>96Wkl?fNTPLm0_S!E&f!rIB!u}D*$Ls571bEF)-rDNTPrth< z4?5`ZC-cmUzBAG8vru1UWf|}aUXgbHMZl@ zc|s4bC9E0Y|C};kgJ2)4oY-;K@%M5L3A2$`zR4ys!InXp!=@ifNmpLYs6_%HGR)@^ zn_I*k0~w;H6-1T527#WR!&D>lVVhQ3WxAq|X6;7y+5`|c_4*<~sq-_Np_p(fAQ``RkRBq*LrlokY^J)FEEn_)8AsWDMmoh(W z)7YF7cPzuFD($2w=0Q(F4slSJW0%`)5dKNva$~L8czr0K+_aEgx3ueMPTuYcx5_DO zO&Kd2%mRDV=kJR=b+f+ri^muHLg(BlNFZJlEc7>IDo1aV1nN_x%#B=a0jx(J9C8O@ z!a*DCN@cUIwg#g8AS0Kq&swilXl=E9l~i3S`FfdbRx_yaRjzn~AdpX94#zqdBorjh zF~XbMGBRXe)EIECehNhv^$P5k-qgam4A^1WqC4iGyIZ;QGl|$r{t(%*_mJ2^tv>KW}QO5cS?+ zmZ|-`w&qzsKs>Fmuv|2@Q;=v&i1&DpAuX&0vmsP)H#8$z=_+ z%2JzqUGPd3N9)52uTJeyDU*n3sv?s%+D(9^w?Tp*w&wY!q_Kuo?r)` zsg7Ri8+;(4a`vfhWg5%=Q1*b|`|h0YQXf@y+;f2v)lvhu2l$-6K&VdEJ?8Br%80z? zxl?9xOiRoty31bLr1Aw>)_ZN;xPyfe+MctQX!Jt0!k`*ltp zk0Me7P6~0PP29pbpZ!`q@xWZ*(L}@EJ~*-JjhntxyNZi8D%&0B-F@`Hz6h^OyWQGM zF*^0WQMi37Ic&yr3FaQP2Wd+% zMLfWuAImTJn5~E+KV}B=c(1gVZU+dD&4)8ioXm_<5#a4NRfRzB%%|ue#pzpwYUR=S zA&EF55XbaS3B;9#$jr7lvWuFXtB>Evkb;h)&=ivA@Fii0c@{QtE|fr*!|m22)ZT{` zs8^1Z;R9H;=?}zC35C8Z*jL#+;OBRi6AqMg@AFfH%xg^A3{MRr%wyij;eS=mM%t8| zm$5g~^0yMLTIslay5UkYW9NKr#eBIfDLSm_yvK!{L}C1z%M%kZVZ7dUdku@`;gq_S zk+M;|Os!!x&1#;$ZBuW%K8)SSCi;nB>2o0)jSR!rji@nEfGuCh*K@D_=(X5!^EPW@ z+P`g75CJR#)ePMnu5#MB!Fa$r+O8b%>N3YTl`A6_YKo9K5vN`Y~n)A1eX^>@@Zv zAIMB|(A;+OCn8Pjv}A_5Y*is5Wx6>G=0IrW1~C!81lNDL6 zdFegJTd=!MFh%%#?q!)bS{#u2&9mE^l6i0dd0+2;=!KC_UM1IabAV}m_{*5zZrUcJ z*^wvh8^Z-_U#2+d!Z3*#Rg_hqwBL`_|!(kDHCQ$@5b$PIKCTp^8uxX0dQD< zBvvs*kRvBzfS&`#mEi5Oy6OBii3nU&KyC)YZUaBW4UfnJ!g$f#2U)(p^f(twI|g$A z!o1Lj@yxY2B7w3~Z76bU&a+Nbf&C6dDK}aiSJ_t90XQ zV8GNWyKBVbZaTaUt@!a7Uy0YPPpCl(#&V>w$5csBd4ukuI7*>%+z1LqQ93h5>|Vq< zQN%t)C1N}*?(--{sC}Afg4`D68+ew?Joe=Zard1(sIB4Sucq z88l1j4rmBXH~Kb~HKl^LAGcR^YAcAWc{SX>%;B{onRCQ#YbKpziFb>*epmEXqp94t zYaHC>A5WxE_~HQQpnM8}_YS~Qz3~t3=p*#dKy5w%^--gEztq~UYq%8Yyjj(T$}Pp>24}8M<0|2)7Lzz=S;ZnI&2aqy zKYcki}e$%dLm zxOg()If~U)A#kFvnO=_XB9Z8oKnNQpxg_}1$pOU(YCyv`Z147m&Gx-$deCva#p!z% zj0ZI6i!BGDHL2F!e(YEzipXx&-yblRC!r%JT^Gt51^&}-A7tZ{L+D89$q|-;xv2`v zJt|wm(N2&QZI{77PT(>p;s+D-G@@>FqA3deSXYa<`3`=dwE=!W`+T^Wa|1uQ438|4 z)e)U7UkC4gh;_h~dB&r<6xt>Ua9#XEbsl4`-4p>OL7dNGS?x$tF6-K;rc%;x1c#3V zeG@Y=!1xv9UD_Yz`cah5i@-7J{MiSWj;)NNIs>j1Nla^YS2K?w()!=B|V8-g~sT4{vO zOcSqifq3n&M7nay^;!ALE!%OB3KPJQETMM2D_2DvX8Ij~l5g$oqs?F-p{aaIarrxx z=?7&h%i3tOs@u*MNE@*(S3bd11!UhyxPp1&zS6Gl5ueL-+7OrDXB}I6B~-D)aC_B1 zJYnKi4iNEDkP%av>-p%xxpjgWM-+V{irj4O5rnOr*}E;dni&8xxOI;tx#GoBaa+rIX8vxYX`tPd#Bz(<7lNE03c({ zo&hgrZ`ci3oijFf^lcSfc~j0D_J2^sBCiRf!`?d z<5!lHyou(b%Mi4m99}Zc|0CBkQgj@3)~u@Kb6jY}4F-vX2mb!RA=c;!~2c;dosJX)I)r$iFG@j#*6lStrQeSP^IFZqMzNN039&qb^H zpqbUr1n6$m#v%*ytinR6dF6NxCUn@`*UoG$3|9LeF{f}%GUYo9?`Ff7@JMNxlm+7E z8<0)PGQR^N6?2@mF6y18S9KHDB^zbfmoicC->TV#k-S1S- z9Z1-$?-wu4<)&?<0E@aA?<2?Kxtt_>Bj*WL%cMOQYe%e99}i3S6}=Y3%WD(o95k3E zb9F!ATt$s3D5W_a1N`#Q?3g4{L_3S7FqYTx`@z~BL26(@qHuMzOSDdknB2q@WyIAUz)q{rbBRqby&iL?6XaET`9ReMwI5^~A@M+Da zti>AmMAqN%rBf4tSh>2=6U33d5M2-(C*cN~HW?~SG1)SUD-8wDHaH@;3!4Hp-T%QT zF>RT^!6ROIOt=Q#h)vaevGRyM`lgLsMP-e&8~MNOrOei*Q?7S>iCeg8!q&{nlU z=p|nXRVscIKc}?h4;*ygl@8$QR!%OAF-q<*ws6h0%KbXnx zj4`}ZxsMTh@Q^J#=S(y{#&q|Wj?3H6g&*RuUF8!yE{{7&4Z9+X#zXml-jwLIx1s_I z#zRP3?`pK!bq<>eF%2Nft9_C+KtUqra5_2B9YA`U*&v|;>wVQ)wyDEoVuW?EmrLQ@Z3#etS=dOA>|{RyPs5f_7Qd%)iEgEYM-6)^^8`;q6Ho zau$p(E{gJzo(j{Ea{el)1#R8Y}Lf#J9J zQ7cUwJG{ApQS+OxJiBq;p&bgz1N%(hcJfd$z`VA+HQd+?Fn9@)RxT2WLE*|lDY~S+ zt!=F&DL`pfs}gZh)@v^M1Jwq(`}NnLBlL=a7KPM|SGhQVQsl?-ONwBo&jrY8G1fWN z^X|T86`b}uq)C1|nB~E-v_FFRefHT(v&|FubFG|1SK#vzBR>F)wG6>MQiw!c>M{4PrB-TD*~60*@OH>D1Ji;Rj# z^Wag7g_eV*`OG)6X7x>WtbEW*0Fz2LK<$i@YC4pGqj@-T}tX z^B$lV$d&-!hZBtS!FUg&c6au;FJI){p1&w;k*->lFmPzBdV8A+=)H*a7sXK>vP~R#@$+OZ;ed~F+t;=7*@ zA_?=o)>+K9i$Sk)0X+!WmwR0Szg&g(ZGTR-L&c|-1;w5y0~~GovEPnc$y1N^-NBb< zy?0_hFP1PdG5PAebeNhsUSFKEnXSxy`e4%UmpA4AIAMWC17Ugj@mBB2F2gprsi8tE z3d!lx(s?OZ*qQc+WrX*o%op}^=$J3JwMUC5RPcu6VEYr(*wf`udUscJfo>w`q<+|! zcq0M68sqq&_5Hb3mE9w=4cQNw1B=0P=CJ=(0CKw9CDZs;J_caoxU$c;`i_h(B>lN!U3@4TEAuB zGtk2S?PiX@T2nhdL;q@VS!xW))dX5xSi|D?dAFAb{OTF3ThK5?Q&g3pRBSWC6A5U8 z-5@DRh4ncdI6{IRemQ+^pSRs>26}GF((-9DC?Hnpkb+>%c|VyuVf(%|ag<^9AN=pY zMv+})o;-pgd%u9?$6g!Ik>8^GAODe<+kdnH^+O=AN>5|Ojke@VOYqO2TmG(Ui`{%O z_aye2z@nD{K#n+Eb^(Q6rLz)G&MkIuvD$iwG1>y6Ce;u`dc{1J40iCw5-QxRu zwr?^^aCpXT8ygz~YvpAPH~P=DFUoGWic(Yi?ED4z&Yf2@wfO_7v|RlN=`BYY2{pz@ zD$g3nXG#9fa&7Rw#~iA539#LXr-c2syUYGtLJ9=Ovyv5o7P^qIO-V}2i;VEi8~X!+M$h>CqTl>NQ@-(2=@oFnbCf=c3JhD^cHnFqVM zkJ`_deVO~G&a*AagF5Q!Hov_utj)E3WRCKdBH495+qb7UpZF<$6Tp{LUVbViM+HRH z9}7*IL~j> zwZ-3OQmNqPBg#NO_f2!U@h50jhjJJDNN} z#SW-X-3jcsYUr4Ncdv&Oo&6%FeE8{{;(jXv`>%WNQHDJ)LqBROE@$#e*nhz7Kk4@^ znt!>pbxC*Ofp95y)hsECH{Ip>e|`794ZE*P=*Y3`yWdZkXZeu+rFb1{{Pvd{LjzwpMmb550CHbg^alSs!^Cje_r`xk^P^o1$15H6!Xi= z%m1750g0cF$pb1HKCJ)UvH!~mZ%!W)iMR(e=4H1@O?Qa?SM&at&;IkxetSABKnoe} z`2TP}9otiPxL5uXXlFNaNB&QD<*}=N_j0E*)9L|1g_$3JwhjHC4e~F~&!4~TvrxHw zRy?4?!PJY`cPRgt58{tCp?l&V;Y0)<&;R&aZaz8$oShDPG7;SoIy--+>HcN(|3@46 z{W$#$Kn2AnfLar0X{+Y{%~bZ8dl48=R;u2^e_QQDbaHljUiaS~&41wa#p~#OKkLK@I$HmM4#$Y}kaaM)!?{?y{ljSuCjwb)(9dTL%I2LS*ic18i zDR%n++#gHzpY8iEm-Ylt_Ou2I^;HQLY6{?gx#7S2q=8u(sQtUn^RG6-%tYI~r1<|i zocJ3xWfppGq`B_}6Ss~x=l$#tmcA176x4m#fn6t+wlQ(>D+=Kum{ zit*K>6D!*H{@y{ZtQzNGMXBJ<`e5$Pg&{w0ArP1BeVaWf+w@wzpmhDvb<+ln90Wax7@e+K_W}fs{O+=S&EU5AT|*sI5SMQM;sqPgo*|+Fh$*_Gd1-Z+>G4qc>FifEZNxNI{gJ6brb~q zbTlU&5!+*I%Y0Rocm8s|6zz*y(%i8oisi?*!5TrTKaJfqKFcv+d(A6@q-jT`}3PMz2E z93X+nc`;jo|4k@sa&2N$-S!$>>L2S;rG|-gIct+C@}x01GWC2D2gn$0H23^NuuNS0 z)LaP`6xhcC2BMZ!RZ{1*)V}8fTRx(Uf93o9tj~Ut@c8l3Ej>9|f*m_$C=U5`bWST6 zsF18~_EUZ;cgpQ4dNGUKoG;-nj=k&uX4rDVq# zPyS5ZDuWI+luO?yV1iowZSPS6Eixm3B!;GNY7x-cuVa@blgMzt(urF~3pH#7_!DoGU`?{?248{`C zg~U%eF8OO+f~=j{z6o|^uJ4Je4s&-m8efbq zw2BpoE_IY$jJ5^VvBlM6CkY3F2iE~nlg=-J&tDX&F5Ic5bbVURX+H|g;Uwl|rK9JL zdHmjw&ayr$61ze9xwVL?0*urabci{O!zc^rS-lXk!uvZ@Z zwyu0mXUKZ|BgfhjP9X;P{a~TCXTVDHAB!pi70N@Bk)uViz`qak-Hbad*>R+tyj;nU z-_3rpM^QCW(d~eJ`JNz1;tybnF(VI4?HvHg4^*JCjrOIBz|0em9|0_KqwYzH+`4dg zk(6JB=zrqAXD9qdPt`Ge<~ov^?&+?P(Ngf!eMk9%oM6 z8cYaEqb|QaXD{5>Aidn<%`O{;P2`b4u@heGkp=pN60>8rDvM&tz z4Bu4(?5kpTs76V}$|;7^DqfSdqk7!-d7fhN-})$k@FOr%U+=$UAGHMdKrhNoGu43c zJ@fLr+rVUMBJ>F|Q*aB?iQ;$rU!sSJpN`zU#o2>CQ7#Rr(P_Xg+U-TAerIm9c^;OG z1cHW{D~}91_cn{gO@<2#ODTnVssvX+hkP@_@vmdg({GeFF~9QqB%p3KRxNZvWAD>f z_&{7@*js9QpG!P?5b>BT-UIxH7FF;!OlaNzvOZ7&y3174d|jcxI$w!a zZSmvP7YQ5tP#J*goD4MCm7EXo=9=DXhmN`Z{Xp=wvQOphHhutG>Q{60`l>7vcuC)< z-QqKRHz`N<#tEn?5ET*5q6K_{kH6q=aGT$^8H!Fb0zN@aVH}4;8ctpf7Ra zAd2_mUiM748gLv)3H8&{Suc0p`yg`lXEuO+xLnPSKJ(1r;3hnoD7Ubfr7})>)2%UK z2K0$~BrlcEp)C`C+`Z_)xm&oPPX~KL4q520)`2C~s^;$;ThOD6+{$>85w3Cd%u~(l z{H8SMXCpg3%~ZW}mpL|}9YSt?sby$_}?6LQLZ#~XcA(t`~L(?pW={p`u#TAqoMbNF` ziw=oALzos95ku`;sboE;`DD4Yq_O!_Erxhy4QaF_`zdoMK>)M_xlGb5rXT2h$AgSZ zLvCyGcyfqr1a)+FQqAta3G-)U>4<`f8u;noYwNQ~7|puh9;e_db@jOTJAaqF#iSRq zkG^C8vR?+@PLJi^JHg;b5^MXtU@qRIukXYxHe6^Ub zI$D1lI!&hw{4|k3(IKuQ-w$TOcAsRLm3{WM(qGn=tX}f`!C!vg;dlCFZc@%v(!{;j zWkN-f@7BV9Gx?7n^>Y4Dz}=fXe;_1BKQ_}a=j?XUk>*RTPK${tV=|%?eFt7Mp^jTb zFSJ+L=R43xvP!|Hc$(K1+ul55*x6z^A#VwEiAoi}aC-dRhwp&HtVdRBCvIoL_0E8F z?j|EkSsRJ#tI*#6K3sU(4k7NxvtoZ#Sh>JW1^ji+nbh z4w8k8vN@~7C(B+UE;~_Iog6xWHxdbIo%am(Ua0lCgQF3z#)w%(;^>t7_`5z)8QSp` zwz%Xzgw`|CILky<0w@SY<=&bvEHfz8IOAnEPxX9^Fv!qztzT9xvYoQ` znw@DcZ}C4ml)aIrf3{$Um54~NZjG}mW?rhxFSc!mGtYKrFl#57NQLGv`gv3qX)*dD zX^98B$eC+BRThjoL0%!(aNy{BkvB98ZM2du-}&jnM`@Jt=SZM#DsC-S)UI^D!bq_M z;>>-V?hn;lEQHkVI8@X8?uH_bA*0=yzuPhVE052`mZIwx>UIlK5S@4EL9w@@8P9*kS2xS3<)hOil5tC9 zdPTK>oPy*o7ndmf=8xK+cR+ZO2G+HXM7b)XMZs&OXWiG49@#qeWo04R?IDJ+oH^QV%nfqCL!~r2HAGe zYp3ih_AN7h!kEYfu7l_{>JqNoM{QQv(cH@?A}?*}O|?ScL*Ed?if_*}N5Mo=9B?~+ zJ=w-toA^%cEFFl)tV(SlheToBg6Ho%?`Jhz%w2h-aLMJ!*y~(z{%&LO9$;NbUFc?O z1uHb_CFsXXCP%RGNy$1yz~2R zCV0q~P`RLl)9D45-9-8+CK$;w?pTdg(1nR(;7Mk{GPDPbxFhA9^m}}nPV~jA6)l_w_vF~x%noBb&fUGdb?0u3=&9n` zACn)S<-SAW$WKgIhDhlnh5B|%C#RIw?lB<{*qz@xVULwoI;L(nhTWjtdcD!uN*--{ z!;xh;R~aB8FjB=?@Z(G-BCu(7+}CS8@nY`Mq(M0D?R1XkL%d!8m%B>jJX@T`kmqP^ zzT{#s*3Idr%8Q}QHv#Me{4lcj+7n&y#K!6zrinUK!vK<%Rh}Nbd@f`ve%NGczMCpP z+g(`kE`8eufoPs%r*79)MjuZ$AP=)5Zk;}T)HYv~_a0FKXk>UmHB*L2XCb55B{auWuWNz_h>F@erMEZ%rncT(>A>ScKX3}|*>!#x3cSnzuT85PAyDV1N$eKHA-uGqtbn8;{ z!RlG8&U-Evzw_>*HK(jK2J%(;c55DWS|yd*U3TjE zns>e;;E{YTAnSe08wpTfzmP15z>~PDBHA_+h@Z2?`RqHHP|GAK`I zk{^3dk(>)NLyPJ>JtdGvZ_e;N6}nMQDk93WNm6CK11jaHBY7m6db2ZW(CuO}& zd-+DEle602gH@Va@DlR3d(YR4C$>GXf#V@BH zW+}MNXP$K1ZKs@A-WVO3?}AYK8N<@r#;+tugU$rKnfrE(m=Tv}UnRcA3^RYtvyEzO z5Pfuy{V?<5I~XEUQzrT35uF0YW+{XK>BH-sSMgKJg4QGO1J^;ZdmiLY5d41TUI z%Mw##m{#M&wA~g2=Oqm&VIfNgpUes`=Un}1Lj7=Ji}8w6k@sX!LszOT{`Ht3=fE?v ztULP0W6xE7g`N3GP}kfwJ64gQr$sXXx-@%KNc|v^duoIUhS)UDOm~HAjQXf)yXqFX zMWJ?9Wy}fVcOg|jzkOn9-=%w$FPbXu_WtE%tiiXTo}5D(O-w9N^FCcWTewJWxhLE^ z_OlD#5Vxt%$sXOoQ;uH)lL;r*Kl}HAmj^k6SKIJ1JPWHgxzN8ta$~n8*$6d`L@Nam z(ppY0*-d_32&@&k+LjSI3S~uHdT5e#D?HNZH|>=9mlTUfwa4EEd(NnGp5hk&2Tj-z&rjLAUE=ge1LSDv_2SN8EN!}Y>TdO&?$fYPqJ33Tu za@k(ZOxN9A`spHA!%#S4>i$90&ILY|1JzHPjLffvH&{Ut=DaZECV!;g-G{}jhSbR^ z)77J2hij6I{RIuHj)@LFgJ+Rv`E+SNF6KXs9FTColpoDfk9_8wUYVvxicVK=lM8Mw zfF$7$uln=8Pf?4~H!b6#uYRuAfx0w5?u}0STE3g?9=Exi3^zL&{dSs>g(oFDJNu(& zs(FRG{!B;e4dtMS%YLsz?01;!WRl|#J8-9cO+sO42h|IhTEP&xb1*(?l_Ww74{#JHddIg{G*3*XOOZjr}*%qIK?K4wCWo3XLJ;DFP#^Q~M9GpcRk z!DP?h{*{~@@^Y@5=2)>4$R1ypE@}IrJ8rfN!w(@v-Q z?rsIQ#{x&M{$>Hkubz1vj1_3(`Qq?te%L!vs!=&KX5#1;Q7&PiJd$%ol_>Qyqop12 zTaCO!jwI=Ena@XGj|S!RT~l7uL<XJgsQ={4rZtO@KZFe*V~+sDOg+>0>s7OmC$q zd<>0I({-^fmvLd}T z4VVB=`x!dXaZa0JGBWeFkR$sObH7 zH|G|RE|_rHE}$ky6<_OJ5294Is(-_GK?Xf`laH8lJc(N$RO%|Y5+tePC;j#_=YYxr z`ISzhqWv&-Gl+HP#aex{E!0Eaz0sC(*1r6H`czz_N2hs=ZO}#Y#~}RucqqlO3`*4J zarw>eI{!*^JJvYiK~KeJF>55se>J+P5YI5#E8C9rbDR_(Cks=4nsr?f0g>`uy%O9P z2k&qcHxCUS`C)&0rA{zi^iftz{A_AfaQ$)Vc%9YF%fRd7uNRk2A6iH<`+D2SJg)QC$u~rW zC8Ww}sO8N|MT)d+iElbfbB7l%zgdW}LCU{l7uhl*bf-97c|N=-E`P^PHIN(I?=fw8 z=EFBGU$xi;Q!q%s!g*B}+N~jCYNo+5h)RFzSuj24FcaygwyNafcQ-a)Y81l6-o8G( ztKrD$pY()-tvjzHDaSz_41TMOUOUchS`kSsKKb+Db;*~*-(wxVrfK1mCaN(86D$pc zRxyxL7WYhv!*G(v85M=^2WoU#zBu#dag&OLypDBn*Bov47zU;FCA1jceNUVI$<&%` z%1BIMzPE&1zZ4^78`Am?%ttrH;@-byE;Cej`R?hv)8etktwM{DmU|~!l@h^5{^6y2 z>K_R7Zy@S(X@t~PtahFk5Evr(Oguz(0(ol-gl7C#6vC17gM+ty*?8(_)23De~l@Y8&ES9nYfXf`wH{F;FE(Ve?@uT1-E^3HG@Sn$0~|ha|A9$9g=N8v{JUm-Hc|wJdj-4{H4C9W&vW?AD3EH=T*!SE zrmk8)lou+u)OhsLz51*Q+c?>=iUw0Z4hDx0q*S|R8r#DV=H7HE4bYXpPi1->T`yLP30S=!^zO!N_z2M4QnUk2dN7oDoc z4HvTGOHi~0kC@br`AwKlD)ZWzt`xO*?yj3p%PM$A6g)}!56ibl)f|!uP?WyaYwi<` zg7tcF_&6z3^;?WOUT?Rw<@Ds-r!)0Z3s#4sWoa4f4G%**E{+R45)aB!aO2~wk9q5J zVSRxGA<{-Z>hrr;7a!T{^F4hcN&Th^~F=clw1 zqg7C)Y-C*(xkTBfh8db5YCm*K*l9%4`_91q;-H|XMjJ#I=K^!W^>jod?yUvx?n>*y zovm-1Y1!S^=Fj?-!O>gq0Q6fw=SJ$<5}2cUb~0-FQvW}yzA`GxaBWuw1f)T_L22pk z5>QG6MH-|fg`rDw=#cL2ZWtP*JET*ZVHi3GIIr&Sob&B}tOaZF&M-XJb6<78r_Mt9 z(qdku(7on;=kH9>Hux7l(GR>H^=52SA zkdmXb$ug=yvfo>*aZ05Zd(k%ZD!R#E40*ST8{VHUSvm)o|+NhjYKg8{3%b2BzQR&~F-SO;O zdHA?9ugsVGJKShEf-Ao4WpRR)GPx8_&epzBk~(wQE?-;s8tY0EvQP}_jh;cxqB}v} zG@IBjP5QAQd?TBBl`z>r4C01^n$0cVBedv!dGHSJP7!YCrDj}){bA{*(>;amFH7;D zt{;Os>6Oo1X@dKw$6K>9QB*-S?y95BXW!~&9BI6atD2X?q`I?~;IEvIeH;-aid24= zm+GEO?WlRo)a^3AOFoTGizmb)YD`G6s2mcGBOuf(&pZVRfwuyVwZ}ZoSWMqCdt^%XDxuLKYU* z#ed#YzUTKI5r;>SKQ@%MVcwEkix~>zx}}3~iU*=law$iIUPYJVbIN=bX8*KZU(C+2 zbuvt;oFf-8mS>*nou)bnid+x7{ycIOa6{;b^?lmuJ1MJX#grA*A)(u7i^9T4{kH{O zbFSgWVfs!1UzN7w9DZ$LC@c5y^V4=ioq}gW8^Gpn@$+Sw`rqY6K9+UzX^pP1@4@|5FZWgn8 zfAriA_II7`P}jV}OqW72<`;+&ocM%A^E}n*P9=EX~71 z3!KQxjRsZp*Rc%t^?7X6WC$ab>PDF&Q<&3XG;2Hm(VNj}DKn>~PH%uaH6klN6s_8! z{i4FyD+AcOY1|3V;!~9@MpHV<+}&)Xb^K0{cUOQb-6?)If)Oz`Dadrw$i2k@M z&H#w%;PR@RKNBe9Gvs&JBeie1aojf@#~4W9$wTPv<`2@7$Mf`8`_C5{&6qgl#81Mx z<2=R}Qv=W1M0&v9=1Z1lCv)G4k$8b%?oJuQxUM-^ z3h)jA@$pELrsr}`^piheO41S+jeb~;pybishYca z#hjY_r%yqy{$(%`$IPMorCbkUKk06bsvoYLA?RDOb^ac3s)F1`<7xo{=Xb6eq;k^x zTpQ_EqdK=FLDkeM?mFb}w_2Eq{~P&5X>k=u`uc1SI|;{b&MkTH7qeMO?y-B(ohcl0 zwG2Eh+1kX}=YA|BQ-S!y-GC&y8R^_cd+f*G>`n8v=1~q7`$b_GvWoOFS(iQUP~?i7 z^-&{5?opR*-xkjjE<9wV`(9(jGX6PDUwrWzD?G_i^yJWyW4joI#0b1KELR%-pj19}()7b6yEdHQy1*Y)`b%b~-XzntWO{~nFR(~OKaf_{z2<;( zN7d_?I3AB5zS{oPBh8eY`_krZC{Z^3P@)The|_Tj)-n+!eLbd&)j!kP#nd*M$OCnL zZyG_QBu>0W8=!7q=b(7~nMJcC3CFzS!cP;0!MRyIIch3#DV6VlV8LPQ_xQvoEb z79`DAOY*GFFM@pC4~=C-)2q+J@U)Ni+2hS z!38Uav!_sfEmjm-hrRca&hFheFB0pd$>7Rxa=Xc<9!nDhx$(J*T-P~LLHMF4j=bpQ zj|3akT%0ru%WRx$R_sTC&!WtJKRH#c8pzIk$|xXJIv)U0i?ehN!~>te0J9%z^m@`v z-*Z+On-_}WPz!e*;o0|b?}E?3)M~!*mn+5cK6$f0V z2qSMF{kxtzG0&Xst!IBcu_p)hqCgWfFg{_BXKO?h1G!Mg$PV8W=6a`O{ z{kdq__Ed3rKfr@$KcLjOyqpNpjb#P%RbogG>3Cz#r=DdC5eWvRW6jQMtoM(2`>pxL z2Bsc$!QI#MJQVo6N5ayRgusHMDAuLF;H1;veJv!%Qo}p`ArMc$*%YeX{tua~4h{?N zVmC$VO&zW^f&wn2a@sN|i*_ATxqh1*Dw@6a*%wBW1iPtk(egAje$9^apx3*yKb(&g zn?!rT)Lu&TR6g2QPJdc9K@)G;$%%zN%sP&DDA~2&RE(kOQ7&3Ccn2*Rj~V!aXnjqr z3lMQ9X3ev=7v!Rotd4G`yr__MI?6HH_+&WfGN8VNbZ~{ts%OR!t@8jvhBig*0NG(^k`_)&~ zpPEu*GZ{OlmV%7cuT`af65q!3Z!Cc+)-tl}x)E6YVISsRBX=5lxQM_4+{ob)?QSYX zaCOt3AADRSZ6$PT%|ij7ADjD15-*18rr!@7x2d%xcCX z%*cE6aA<35hW**0)E2C_=Ly)RA!V5X?Rgm6U}W>$nYzU+nN6&bpOt#>T!eUQA%r{)9~>)FF3M8BHE zQ)TI0X4C6A)KUk?+ki`8m8YOrV8d?t z77m;$f2o^-DjDMNg=k`QPmJqC;<#MuoRgU%wRE`%Pua5q;ht=XOD=(U0kb@j^QZG% zcD?WMDs5^zJl0iFSNWC5-*l7QYMB}a>6OxwoSm|teW~>uJtT;Px54plWnr^^zeL$E z-z3e=2+UB+Qp^2%=W%Dh_Kx`(Sn}}nc^7nAH6qKwba*da+^`7;EFt)i+|7+<*VO?C znKB~Ix}KJ(dVCdY;(KQGj-Z6lk(;#F^UjWYr#c)jwdS81{Vw_a%TthifB$)r#Q#IW z=kiau84x}P%>yu1$L~T-7Tn@H>mQ4|_x*BEmGMrLP+I)^hCMhy=%WZL-zGz6Q(rr(~ zKaBJCLC|DRY*vL_f8XDp0y0vK^-7bEkjoY{GlwBj*tqH~Py!5+1OJ1Twsq`#vH!tK zM`d#ql6I^XnMC6IC$pXpt7^~VwkGH`K00>&9-^gY#`OY-luyz7NM$;~x`zq+fQr?q z6FFzx8_VD)lSu!h@2vp1!glVW;hLq4GRsT(o`|l^Sf0&s%%;E@L+%5*r(zigbh-sx zfA&Tby0vVau*vUYu#~T!fi`RZ02H+GDJLDbW6%1YN~DNNofRPNxu^-sBn~G6({pml z{k7|FRSy-_wc=n# z*?=3)p?676yI7l?6&t9Yv(PU29Nl|P>UcqKM&P3w?6^Sz_Tkr<9hy(M8tL8l8WIcpmd7u(zA6v?F593*dPt7V9%zj0dhL|)2Mxdk}u_u1-I zrC!@lA;aqayk)Q?+dFZA{Y763a+CaMu^KPb3L~*zPks&9L+CGu*Ir){c;0Lch@?St zU<8y@$$WuG@>&HW=HFe>Ad(!bARn$J1@2$a#nN+8CZe5c#}J!+>|13kQG=lw%VB#C zY@&LNW`-~9bSz)5< zcbQXoO`yk6jSRx%_Eq_?p*Pyi7b-Qy?Q($9!IlP7`p*kJcWdI5KG;Q|DKI>K~RB$x&QS!JtsyDG!s&v~hg>hqgMgarhDYhY^ zA{z&7HpFF6Df;QU2d62$1@*@~r^JbLY$}IF_9f-MLw?PDF#cZD07m09o~h!8g{jw~ z5uxv{09~c|NfNj?^rmU~Vr2oJ#4>W^Ug z@EcGTDt3iHFKb?Us&{P>M;kRSWR0si2v!ig|In`gwo~o(y`~LS)$laTB8HF~vO_{A}&jjFqN z(ld&7?hHbe0@ttGE_5xtuK=6fb;oC>tZC3u5No&@rJU{!jSWV&$`Iom_^>Q8w>oVc zo~{0RxA^YG6<`zziu@Qr#Pd41`^Ottw35+Qy34YP4Mzv>+AmSSN3b7A+<$<;mF>MB7l86aIz$r0PWV54hUSy8H|k8u(syfQ&aZ3uY!b3> z|3scu_LDp}{lXcz_u0EzG5f4%Qs3A?_N$OjHi;oC9b+OA0zU;A1lXz+kThN{0)`ZQ z))t|XS1%taMoDzIGF`jB&wfSn4U)MU1*dKJz-RRu7Ng*IUgo9AfKv@3{!15DIoN zefwP^!3Ps|c}Uc*4u{%P?7Mzy5#_BS(6b}fO?tlMYq8%k`(SfI-MF%tS#bnZ3d_@6SH9vj#U4<18UY!7s{JasULrBT`U8q`vdBqRNDieRKj|f zuEbiWA1_GCB`17=tM|NkT7+cQFF!S^m$vrStop4WwsTJ%17iZl`+?l zj3DmtD9dyF_~N-oqFb4Ae*cC(vkd9>y5M6N$}Rq!`DscTaZF3+olyPwJ7&M#D*tZn z3;jy1+Js|oiN|hM-8655Q5WpzBAQN3(rW@8jwG;7dwlevkB7^FTRRhh9^MCDl5cP9 zRu1Sy%?3%70@*5R*?zjgewkq}o+wnD>9&mNG*EWMJr{xCcl zDN#X{?sZ8Dp(3HC{|aC1c%1B;Y@Pjn2Q!6&!zKRjv{`HCyNASdW!U70yj#8*Sy~!p zbcjxGpK&#EDib3SBu$MdrSRf9Qb3bNF{aE@m_n_L@=zQ!F!;R<*+2$Y0E9K+r`s&8 z+Jaf_9;k!hxfG4Iz_QB%hnHc+zApvjoTf;^_Z(?{FnphBl@D#)EgvV10&?srm5=j` z)S{D#>V*a3Eahu&Y>H_4Lc^D%3Da39=x}S|x71{<^0-ZLZS5wi3a;SS;|bkdYDO@- zpgN_K2H#?X-U<7+{@1UNX?*bllGD;WTE|vI*9;>}3w36$PH1}`&*Hjho}HasfiGsu zCC*+-py-j{i-3BiQR|(c{NKFZdFXN6`to7j7EY7R%(=6A^=w3?Ny#mW%B ze6YQh(@VPDbYeGOjL7VP!&yInoU?7acpXd3yJkKHFCggi8u@-n39(-p7q%E8acxz5 zKKydzDzd{$WGos?b5ksUTOL@Wq^&>!`JrGN3J|1xLrK_{eh!E7HSh_-124V#Y>DdS zYz(O|L5r8|ZMnbMTeG0i$K^b#PeejlE1E`9S`6(k~BIJks z@rQ_{=~lq$QQJBjLEU415bunZXW;8Ej6eN7gszg%&By{E38GYWdtH1;1F|3f&;R}$NNsdLWy zm6MT@=Z9}KxM3wm<$TYg239j5g=xSbDpW;SQe3*B|y!9zoirYP(>KwOOiYTj@4 zNwfgE1tG?dXE|9?PUSvtP2a@qEQRf&$K8R7{l$7}_i9BXt%@E(`T=a}YN5n=6PT(r zPzK-?+xFgG?F4>9aC-ExVWH>u!0H@S0+b zO&8{?;^mI)GVtYP_A5pq%nH<0)M&<-k8G3>>3CFZb$&_(+woLa_jqEWk2v|nDq#Sq zF%*NT-MUYa`N_e?Ei%ON>z!h)^JO&q4$AV7?Va`;1~XS2A7`dh;f!iVCI%QD%U@qw zi0~HW-H?T8r%R1DX7{_usqrDqj6EbFkdc+K_4jaOvl741Ju?Pb3_<(#Cxpzp0VSWy z%fvF8N5hCb3+R{VB}65wqiHs72h_ejvqa76-^)TiFTE~gHuG=g+BV~5A6lT;j5 zj^EpRpKFcoT^MHJr4K7hq8O9OZf;YyHL)1t6jo2=E1tZ*A^b0s%W;S#&8Cot+H~RW zROI2r_OADIfinJV_At)J@v6qByUucV zfH}NAhtZ46u3#JV%a2eLNxX|y)r5n3{ISL)nGlwi8{R@X47kem;n)}b)TJjy@maja zUY2WunrFPt+#=FNIlJm#5NaafTlW19haNV#<*zm(rf~|S+Cq;3C^6- zp;fHxurY2*{sWZea$3mO&G8Yf%t>SVj3LHpX`;^*OT+wBa{yJ@4cZGu_A;zo`!|7I z@}CKXv&)HH=zclv|FGw8kBPR@H_NW+b)4PrKc!~BCmr|OVhS~Q$J(dACmWy{^}@|x zt(tb6`!1!7wTO4d;6InrKS#2C&sKTv8~ZeS0u_-Dek2D(xi^1BIVa$QY^XbNb5J^R zU|IIUp_ySp{f3zFcj9or3Uu-S{;c%Xo!4H>QA zL4%VRho-A#7%wko4^_v>A!=~_o4cMq8r^pF<|ZO$%9&I4KTIbFN z#+_8RM$-22zml8cQ6iRttVfK| zKfr!gNq#8{+Ae|qubT)0j!~j=3@``H+2`+q@f9Zi28nG~to`pjTwq0X2z|YtbWossp)d*{C{Aijcn0-2HsRAl22P^5f((g!h-%oG+fa>>}&VmmAnwO+~ z=|cFn;1M1ZGKg@iK(0spDvg-*mCo4@x^+Lnh6V$+*>EuCG_`Ok6Ut3U%@urq<$F20dNs# zcaXj=i!H|ZGrhvzVUPQc5PijzspivN610!{*72$hXR=Jou`FE^cAheLhPr7AbFkFF zQ(noxr+n)*?5(FVT`)T1jgea~48e0<)0@3c-H$i_+Bd}YrM$i>hBiuDmw^mx+FuJ^-g_yePZxP#a(|WW4 zdmCCz@9={ei$2$fZjxCQUQCP`KA>y}gOaU^yeht@&P}qbsH`>3T|{q(=qB6?d_0~0 zFe~$qm5jb4WWKSio0GZoz?A2$tkDxG|8rR$(1Vl=54@-BZIgs%w|Navmmpq_7dX5p za-*eyfId!slX=fFWjK~>o|!pab3y2qp(!G~4{f?S+)H$rnOzjJQ%$na(|NcHO-mPX z(cWcQ47h0JE~x<;`nu$AZwX-{P^(5Ph)iZ_Ij|<>n?MN#p%?$S1fkI!OB7Bt4y>z# zS>612JB=}u%tmjm$+EV+g6N}Hxm|}&x#y)n+~<1I{V0&wV9?QHd+5__+lI?>A-qj= z$3FGbj03Are`)2kTV?BkwigUwO0~zelV_eb>Y;O9m~M|+>#0wU0}x}|^v*!O*;&`V zf+&Szo7Y?{?EA)f-!=N|#T%W5gJFi*A;G}f1B38vhmXT*v2NIl<2GshUS=7d4s`!N zKm_DO)^U7C%I<~81>oUJ9a!XzyJa^niYhzp{uvK%^iC=}u*sUc$T=y601q}alKOTf z#7qyMze;tF-<<9E|C^CaVdbZ~R0YtFq?MwxyxBet`yO+oB!%Hw?9ucbBj^QzoO3Pwk-} z(+YK8n~bQ5h;RRp*lgc)fi~ESnOmV#$+@CqsIC5#T)-Gd!R5^On38nw;ld5MQvU8Wnrj>wd zzLk8jPXTQ<@X?D@6i&A3zP6WM&>jDo-y!VnvN0pFp3nvH-05l7Pe9?M9-rIR#0^G% zcA`6{CNTT05_-F1oMt+*Yhk(?DIqQ`(b`A_zyG5nnW8y=e^GM&w};jTCf`aT8?m(QzIMx zeI$>2{e7fb&jG|?jnv5G5YuwKkLcC&Sc#lb?|pxt2QBk9)Gx$>Z-0uD+#PIO;X+Xv zC)k!7{ZVUg98~J|kTeW^`rTHfMV?KvUslU&?X--ZE-17O?`R(eigV7LbF}OJ*x4@1 zGMg1ZP9Yo&^X`PTa4o$I7MB#W6$DEsqIo@$#VIt|eAm@+G#~%H2}vrFoBLAxtb1>_ ze{0yrJ8Xzch+6E$>W^JQ^^W{!9$)5uSNKA7YuRe)y!A;rk`gbfizPNMQCPvdwmZzn zl*ehP`b1F72b=k0gZ76c$03+MylxSxJ$|W}qU_v>o!YU~E4|C@mD7j!#g!Lsdm^_z zHcx%vaa5ib0b~BnT}n#3sh$aL)cs-}7jxr&b3NK2$YP{(LZ>0-4v27(443KbV#<*3 zBC3GQHg=uqMr3lX-21S(d`kl--LhJdhr+Pp}W~b$u_FP=?X$#6~e_G3Gsvxtu zs$9^8?b=mmZlt5Ysq3~-nuQ?8+8eppv+7aQ3M@+JC|m03n5H11#Jd1T5B&dO^Pbn# zzC-!z<=9*y@MgQhs2jHW{`)~0EF&_%&DdPOv&Bi7SaQ0kkw|=c&1KWeA0*me8;M?r zXV5c`s%`;kNtiKm}JIm0z_tqtlxiDs$K_77l!(B}o$nSM+hylX;^t~V{l4^(h^ z0}t4RfYYo(nWD;Bi)HEo0C z8)tu)xWMAlsGE!yPWtU1C$TLz9->qA4rq2NVrJNV;65r3!J7ijzV|w=rCMAQYqaYf zZaF+>KWQ24*jd~(72CSpAYXr3f{4ph{k>)qLwqC>ogQ2NXsAMqi7euBb3@5}NF}}H zX6+L3Mn|Z+ktTRmVv9D`@G6wH}V+&X4>rsA3&+t>Qo%}N+{V&rp z=3mqpe9&NZWeYj0Ks~QN8?%wtbb)-NKBMM=P|}$hw!Cwd!y$EVjQrMb^VU1^8?FVo zBD~F`IP4VkaJ6;;2_4gPnOGg0Z~urcU%t0R;pW}tSGhkc)#Icu>)X#i6h`Ew7@9OY zhwHmlA@W=&M$n!sT2p{-kYB7a-kWIBAKvbW7SF6MthyD<#UY_s$XBEaaO&?>MQ1J{@yHp{jd#1H_8&U!J20cPOYKaYf$t?YTzMTFL$Yavd zl9h-#gf^!O&|%T};a}57_JN;uF}iO5#U!^vCYRtpVQ;2laAAm{OPh-$!=B$q1E~Tw z1tq^rCho6R-&tA)vU#K9S?`P`%LTsBs+K-KvsF79;YWIW4p@V3Zd5OFqY5&;Z+i*W z0#<%jTXExGm(G@RErzH88g-{e$w{BB{4a{pu0t%5r)dPm1h?_!dBwMr@v zu#YqSi2iW#^IrqtPg_@@(W_)nDtQ-B=*U*Rjf&cq`vsNcd&_(`>pCpa)c|z3hkIgr zU&>v8fd~$U_-*T1O7zFeA_bSsiPJUBgTp9sPYymiZ*k_0*wt!MVmy?GKeKNv5Z5kc z=}j#qOfL7gmw<&U6}szc{?xN2vA%6_@#Z4QSbZF&hKnEqGBgBJI34H8Gq?gJy``Cp`UE%UG%Ph+aNwOs4}Jgpr7J z3;2X-#jeGDIntflig5o=Zi-n)cKETl$LvcM%?j)Giztsn-bzTh+NIk}TpQqlO|vDP z(5!R|zK-PeoTn)%oHdbs`PO~?L8REJGz>)UaW%N|hHg;=1aNGJe{GhB%gtfz-;x!5 zp7_%?u1SBXlox&AEx)mP^GV{CiEj=YOXq>)h1U~OmRXipjlstoQ>Z&4KZ3i&+;vMW z!e0N2!?j)e2Oqz8Bl&duFeNRCWLC$MZ9* zyzoCDwUfo{;WWEW)rL=y!tZuUG^QijODN(OTEeY|R_7-&qDoL`ie=N3g!YI)XN{s-2-0BtfL8(42;Jr=eBd{BipOa zK0AldCTL^0{b|2Dn0-Qer4p{#Q9_9sEqUd?*6lfU`}6XaY=`I2%y7(qT>M_}FWD;A zsFZn9{E%@(;Vtq;=aQUR#^YX>COMB_d}q7GW-3ojoQyQS*8$AF(J#H(UsH>tZKXsb zk_xz1(oB-NqlAX7UW{QLu5 zPE zPSCtv$g@FOa9kXg*J(RoZ?sw3NnMk^0g@OZQ93}3z@+hG8^o#3tB^QVHI^DDuLbjM z!;o=g`bsB(OyXsK$?woPpYcC8RZx~|b4K@w4lK|}B_@3eL~%PwS`TtrciiWJG~$EU zH-B5HQV$B8F7%R&XZaiqFpH&ZtLVFW?<0NP@-&L^-LD)8KLq!+o(jh^sY$~vu*L5Q zUpKO9*AFC~M?_ zancqDM3^myA-a_rOe*K%L{R>qr?q3$O{+k=%=A&fGY)hDkA4GGqp67mm zZKb{8S5MGdM5KLe=Hk*}9aa1BpZVZH)fOOS2FPTKYsT|M#{wZ&+!O8=g`bw&2@C3_ zCj+yw(hwD3{Vh)Y?ZOaGoP!jiEUcbi&TlziH6=66aJ8>;S?4Xjh(pKVM+ z!`_+*44*$$b(`MVPu1d&a~ELU#Cs9}(*t9+q*js46U4F3ht|klfKmXsN+AohMd7dpGh9%k8frFWlj_6ej8MWk`$@W2pgF z)n~YD#eq*``|iIBC9-Lwt@|7&?f0HJ=YT@%r!`lX$m+{3K!FV#N;&5evfRT5+^w*voOu!CpObp zaRPwXy7^*ZA#O|sa2CFE*oFE;WhWkE7u9SulbFa&UZ>>L$iF0eM2?(uG4EmzIYXhg zjtSGP2Muz`jtn~~k~IP&25?mh)%|ZOrkirQKo*;1_z6BN6ks1UZ#!270EgqPAzA9i zvXbcY%TuAK*ch%T!d+j)N&Vc~DbO-ClLhgX^O=|(ntcV%0xA~W}Wy_Urr^kui*+Y|L zM6;Y#8Gs~v@~3xTxXA_Tt}IEpIDm)qvDQpE;&Zff=Xw^Wn=OU#Q;CO?Z;WZRF(dU) zRrEO(fZ@~ChRJyk@7_2vDpiJ<`xMeU{k(2=0awhvipsl)y5x9gmNAgXLGthyof6 zzqA?F@r}A5*Be`cu588Y>P}!CHpW+qDol~+v{ab&M_+0nJ@>_K#OlZMOYZKdHc1u4 z7eUXg*mC@1Ghz10Eg(JjYY$mf)LTiXOQ_wZWh^1ma_q49y^AJ84z?b!&zAlImPp<@ zu_`@lDOhfrmKfoAcLh~mfjI9B&$d_q?!z zq#8(aZ@=|^QAoOj^QB@t-a9hz$N_LHdY$QXj&Hebh(77D$}<%1x^a|H^QFd+*Ki>X zJ&Nzw6*X)y1t z*289RHuPthj!AFtLQ+h5EMdQu-9HPF{2!H9rI{Acv(f`{8 zkU^ZR&PxetEdvWJEZkTh{%`-`SGMK93Q^C>w`t02MZ+}MU?t+El?uT56~g4&Pm3pc zAHyo^o{?gV3+<-m=bolJ?L3003ME`)@USA|B@D|dU{fLNt?Qz!A_QI5$QCR1g4cI& zpFN-vVxYm>NZi%qEEeHj45u&_oKB+9KMdKWZO&x-hT;6Xjr~}TN9=) z(yGGP0~F0pr8`6>%Yt8G8#7EiWchS)EDIkqu(I%qfSM=QmY=KJbJ-nXQqrdR(y**4&T2frvEgXZcuVc0CO;_P)|^}`p1V-Ht1SY!8V!YA zkKYiDhghYJaP3-gssz<8?1#?rV8NGNSvhPR-LLp}p>95(9;%YvZu(e9MM+xOjFMid;Fn8SMXsm0%Q-W9l z^bQfwLi+6&qG*ff&%)yo3YOZ6Vx5e_jA1=VJ0#XEsk!Y+B!suJD4}+PR#QN9Bt}`S2_EQG)u_%N}#Ptv8x(Z1_Zqq-~pYM`d!t8>ay4?AAm zKF7%@jylAJ)aLD}4E2wMR!vwz2v^`TX_OH9}$3Ai=)Wg=Q^iN>OqjS&{(1-KsV7@#qzy$U7;Q8pIW$@C*KHYV6R?mfPp4 zj@9HxRkV#Mzk$_D8vs)X&}3Y2u~KJ-2Nl>a%tcBlS9@%>j9vcEPzgsJyDpzi>a&R+ z@QR$vT5M@75LM&lB@!;mSM+(!6idvcABRLDohjhCXQNT6pDyZpf=>QwouWmB9;^M{ z4AP*(VYSQaHF@3Bm)LYZ-T~bs-B$S3WE5#N)fDr>eKPZXBD<;Bw(0Wy!Ndq9q=_zk zNz42`3b&USp5(XlmfgC#JBABXP%QC8Gr@f<=rNNv&8oy(S-qN|K7X2fx^udny zpC;O2aY)vmXT{y2qndTo=KA1@RK5-*-4jvF<0>9e{4I{8P1~mS)PmISqZt2C@ZL7v z!lXgKNEjdH3IwCh2IB2UmAa#PGpLas^ta9j$D)Kr|7OXD0%51xjNWV%;uC|P(cyX} z!&d5g`U7KXN;*bLw3%)f7Xrmj&@eV}rU`7l5g(y)T3ZPF>N|=W@mG7>+Ku0`XIm?@ zA2;d}XfvA~i7M-xB7ecZ9%-$1WFNn*BzcO1D~JaneRaebS)KZ&{@bVTNgUrj=Cg+_ zAG&2!Ah?W_X?os6Fhe(tAs`J#Z@>mhOtM2PvO)IQB~pHtlD}O_#|L5^iXjBH&Z(-R z@V5`Bi-VQc@%_uz^sf2Ss#cN_zuCDN$$hU@R=;z!mc<^@5UOibs;AnIAl~pxT=sO06z>x{XTO0`iLg!^*Td$LUA+Q6@2ef4X7{@z~LmLRcTEjY8 z|K`ESU>6hncTybylB(22PdDOQ-V_64Pbo#;uxRvwm1fNVMs`a9#S0*N{xG>Xjzb|R z*%GJ8fPAYzb+qCE(m-Nby3ZRO+QahmAt85Hra6kCMmEgDCz6xJVa{I1MldZ*yQ_4r%B|n?u5k5xA^tgB0Or0$aHY?Sv zq(zh0X|&D8s+~OgT)woQ1JE5oK{(`bg=EKtuEZ>#O7hNjn@PK3KP;M6QmJ9`a9^^> zx7W;ikVm+X!c8Z0-kwF&FHm`E0;{MeTb7gOVEvpgKV_1~vk;O+MVu^@V#ai;-@V(I z4TG#cuG5c7bO5zp<+^xab_seKw>G-ygXd(<6rAQZeYYN4F?i{YE3-@<_k#Uoer|O| zi+WSc*=1At?>&BQ3W-sNSOJw8y!RSSRgBtnUwoFgq5uJBIy(${;IWCdNE$re_5hhg z6>&MrA!L1+h*8B`F0o!%<_p9M#&sjca~+LSI`<_g4{Mjb)w`4i=7lX*JxJZ#()ARv zo8LHsVjSnbl=1UvjO3~ZbJ?u;Ox?b?j^rTvU0z{DVoS0miR(_izm;MN8iWp{+VXkl zp9xtsj_aw6^_eUELX*0v(#Y^IC|_E&hqycGftgi6HcoCEf@q0i}k-Q)EiT(vxIfJ?LV^Cw{T`N9HV zb4#jWdjESD(iec?gVU!96A5x5UBXdT*m+-f-n09;@aMYZR^SHK&ow9J)>~)f4z|ZZ>Tpw{;5nt#DRp|(e(adp5_U-Ab;3YM;o|$m`rx@?Vey=;SCis0=Kzg&Gb-)V5RiIdlM*{Pp>gSV6 z_xF58#f!f&)ar!t30Y)`_2=1&jLCMdPE(6EvHJ_j-Bj*Ab}ooRVkk{Eq5$nda}5dQ2AT`lsuqL3OqT=v+k(Z6>LI8o0;KGFJF2qZ3Tv0 zIDeJb5_B>`g{-!@zxuqH$7e+UVZtdfWN0`@tm>nr5+1Ibkgb(e*5VV>F&ch5~|rtNgR?e;;r(XfGB1zU>Up(NIqLB0LI56*kR`fdZpgh!c#0 z(;+okf~-GexxwOGU}2czs&6SSJ>AAB*KE|dsF@oP_XdihdaEzQe zbSLl7){AIP7wm2|vojX^O43E$8Ti~QBiWIcxJ2?y0vUlQQ4r4W5<(%yZ?&F6*jP_V zCOq#}aNMZcb8J$xT5@*XBvnpnqS>C4EnCDCa^s(-zDGloNO+%1y4L=mH}J%3JkME* zh79dh34$ZWZNVbkKaP|VSyrEfQa4{iism=2!WJK6%u>QPxKz$Lqt;fS{T@re164zF4CAQ}iVlbN&u z8=e$qFz_kIr3Y9UdO1l&KEEH*G$JD4*-C@ThkN<_;kbgKcov56?{yQXr=biO&j$Nq z|ArL%9ikRd_Q!u)Sv>k8X;e$202LDWgm1Lt?1t?^>7oZV+kqk|?UqYw7Tr9~PbFVs z09}G)?gu0D?F)rQd|Y1>t_j0E*^D8D0lN}f8pM~9h@x}G6tv)0&Xm3P3x1LaTm_RG z1G=-C6LPNN1=eSD9Ot2NTLi$oMH4+>r9#)JyqYmU7Y+0{r=?l5r0IX5fY6B`KBoMa zAsu*KR6t$7mzUv@(DjaRjlpJ zE;Vc~n6mmW;m%j~t>L4uf1Q`S+;Yn9oT~~Z?jL@QkJbNqiIP8Qs%-kHgzafWY|9D3 z6-`ncg#T)7qvOyHHODlTTo`avS+Moq-K4zBMfs}*1~WbL;I7dy4E4f$Gp%YwntWFb zD*khunYb&Pae(rAkpACee*62FGgJoq>HmIDanO$e40RjXe2ITADo^~`ARR}53~@0{ zSD=H&`+K7ps{bxaMSC{r`+vCl3aF^QXm2Sg=@O|C6r>T9?(Qyup}Rr48B!YQ?uMa5 zQd&Z~ySuyj2IcR2?^|nFtbu#a+2`!Nf4k1z_l3jJR5f+f#Xb*u+{<7A6%Fk;@joP> z!^*$*c0xw(%%JwuqTBw=$-u^+1;CblRkna%PqW;T~2pWWU!Ho-*R z&Xw6I|KR*D2VQzRS$;W$Y%FOnZv3P?JJsJi(Mh4FQp_e(n`~xtBna#I30a*b|1@KS z4te1;GViMWn#2|T?j(C<2o z398=J2Ax8Pj(KyKboQsoq_;K3PZvLXWMTjEg#rlGZA4tontxUb`Uc@T@EG2E zLPR;fKa0Ww?`gdBrMD5UPWadR-lGEH4#%U3|8G0xcUaKysD#<>w`is?^{V)!#v+VL zM&sh^TzojcGIkF`8;p0slDz|A0;-NOC2^AfF@@J0cJvGjoiGN64Bu_y)H{^NYfX^tQm|8_2`rsu>{Z3OrHkF0@sR~O&C$SKV~}ugrJWn zo_FtuG|G2Q(4&}dEk`B)ASzA|WY#M8a30}B1>QQCXZM#p%3gREyPf}nduG6xAmrR} zhEKHgbTsZTYAznFSZA*?d9lt#mBpqe6|k`G!Kh`^j_yQ}LUHY{;KJc~>&N05Qo66q zgmRc%F5HvS(bSceooPV!5a~7akd4lMkR4TWs_?o5UJj%9qJd0gG@hm0-K>8J{tRlj zW_a@R#$}U34=?@jQasMwRxH;*q{^INa6O@+@9)VyJ8P>Dh$G@<`?K+XdV>Bf>mxBj zb2uKpXTZr|x7+85kYZ}NkHWpL4|6cwqy8l;zWA&Yu-@^cvNig0?3>wH`R8A%3q+UO z`P&VsC;irkVt!np&D>mfSDkkIecTUMB!3pr8w6~gTsk5fOKK{|iECw}`;%-)*B^Dy z6pgoc_x3+8ls)zDMxS7i)?D|i5WpiN{|mSO+h@~$yQK2kP&gV`ZOPHZcB?Ye zs8_0#`X4DzU~G=Ti=7XqmCj@rSwE=34->#6{J|`ZPcn-tYVj(eoV@(KLWvK=cehcQrQ1v1`wdj z`2pWg_*re;uf}^-KLdB3lZGGC5k3{GB-Gb(`;A2BxU!zK?IjbwVfk8M%fFz?8yRi+ zEF2w3-VRc`Cf#&nn@XC2DfHtLagb$ONBrBBe=GliaE0Sv4%N0u;5a-Q<&j=|4-Y5) zSGxb;KNECkQ1<9g>PL~!RB;)yMD-mB)B`>r#{Wzt`xE_xySzZ*f{~Nz%QrkO~A6!XugJCCmPgnw^Hhz$Z@QLT~U&$s>e%Uhohpcnv_!)nRnVc8Rn zwG`+0C(h9#=?>$zpYm7n-?G^$&9wMUguF>Tc`XM2d<7=5cMzUqcBa(qP)&+!foaZM z3b{{pgyUAP>di-stD7e6>GkISfE8U1Hf)y@RHLtw{{4NB+_rotSIlozAgRnbY}|hi zKp+5m`4@8K=!nUh>!MKEXZh%VcN2O`3~8;e zWS?8oacoMFCuw~Wg(F|yYnM>Ursea6SD#R05Fj=6JQtA4enuOCEcMROtWr7C^k1r078clb}VGQTig5_c~TNJ^y6Il+1dkJSM;A80VhN zZhub9RTxFoLOa{>`2xgXUcWH+4_OWZS})&pGSlXweASYi;udRvmLz!sZzQ7Byze=E zH!~R$YXt@O(xQid{wJyr%MUq3Hq{iDntZ1~>L@YuANsW+*s(vdvghhjYMr!ICtVJ? zo+@WEP>pT~ zyZ_ao03xG|RM5-Szjv-|w|dp?srTLV1a<8N)&6*3UI1Bb^bfOj@Ar8w#UblDn}x5k z=qZNwiL_Jv%RfLldj62@>ln_RwRA{GVY)Z;9-@%~|1>g`_rpos_-@T8LE1g;Zmzid zea7s86s~R*EN0kc4ZF{D1hA&R+?oSaI=%59QNqN>;mXoH4@@TF-m#1Xxnh ztTX>@n0VFM>-0%!=O4*iRqQeOo!jH?J;+9nS7`TDrcvq7jurr+1I{~ab37}`Oz9OB zJ>+ptzi5RxR=ZAv`0RhPK3i14M-21;a0eltNz6a(rh@iB`BV{06#%}3xT}hd>uk@| z9HB$5JvxfY`ws!bdHoFUV+1CrA+*;SK>C)7{wjUmr$+Q6YI=zK=@c40_UxFxfbGbT zSb%vROkdz$_fZcFZ&D0xu3@$FgRkZMH|MjF$;O3-;FQ`bWz#=Rzk6dGC=l1k^gPe;6S*tjn#Z1RMMr|% zfrDgv67oDN=QANrVX^;R10nqc^?8PO1kjp9^+*L_2AdFfzaq4>O65P)dIqmRs;3c^ zoN}!Ht`*|oZXjHJ9)c_;9xYPw!(Um{20%uA`P%mRYXmj|WH|X(QJ>`h4)>GyXKAA> zVg0M4HQ8si+IYI8|7{%7Gh^EXA-qxf+pJmCVG9Y%%K6E)`%k8yfK-$c!cFQNe+Bku z-31^-Xu+V^Y<-UtejYXTX;jYPxccW&`S~Cl#Lp*{`n-dI6wn^)evlOn4uAjenkNbQ z>*v9GKTAlM?UpzeB#t4_HhC7V{|OAFo{0DpH$VT4cMs#pEd4Dc1|T6Tko!x>5(8x0 z>|Z0Z{TJDyKHbIEC8qW#(((dWzlLf#;kVgh4@n_>HYpHEg8%^6hJ4mD^PCWz?6;`0 z3o#%XP!{{22K=`p-q8Y(waM#=*4|fw94zjF!#Fntset7!rgq{kZ~yWI9rH=AFo!eD zW}D4#bQQ>BB{(&+nXLg5+{^w>62QI6=JJu((#UB7Khg zc}(FS#Ls)NdmOc%+7(>)B0L-P%BHMNGI96X49)wLVWk5AK)KcEXfUz@M>xgHed5)EX zM=OnEmR2~?t@~|=#zX+Z_=#R<#v#NpsXl3RW6nlnmDanDAuWp?au9MkGF+y@f!L!qllD=+sioiQB6LJ z?{|bJ@L6WHqvSBSalYl=7d&_Df|_aONh*vJ&126Amfe^4+wLa|mXG}O_);bOzQ)I6 z{)bl9!bU#kSh+Bz3>kwx@TL2adEZ3ON0iLEPegWZ-Su{saR2g#>|h-kI^@YVG|y=XPmAB5 z!5kZbcBYFz6SQ0$ZC+YTC2+)%sQh36+R7hjJgm(DtL|Fn>8dbc=km87&$e#&TVba4dR)TP0X3Bdc?9w&zX}ystC003@_lYAxAMYMGkk8pZs)EJ9!jo< z6=GFAoVU{qKrJ$BYwx%Nf;B~b;LwvveFx3x$?$F0pFDW=UX%9BVUV1FXZJPXf9>7<9NVbh*t zJWV|!icvmk2WE?hQ@oi^UdET=u$1X zY$e-q6*Jx5?{dz-@5a)mdwQf66+!*BwJqB9QQj7AhjW)@M1Z#81wh`WG@Nd)<5_O- zdxSG^++>6r=JNQE&eH|)tglfDnVovz-uz7;EnHUP(3A z%zRlr+kj(ckAVaIje^mkU?FzfcW1~CSe6Pbk5Z;KdRMEc!bUOgrtyX9uob_HW;Hcu z*5r4F?ef%Eo;1EY0f%+d!=@#*8PodKSN`et28yOy2Q(?IG&5Edqx{WivM^6a#v&&z zct^TvY3m_=5ZT~)wFJByF-Jrw(7lfSqF)48Dr+{3UZOji2J+Cbi$ttLdOO^n=0vsf z5_>T`458!$g%7jAIy=2KMIkcQPeepiAXoFedG#Aqck8`ir5iCeO73e{x=>$skx#6k zLL4+p1dgNb5*J5S&ed)VjBBz;kUL3azCbTJY^FCa4Pm{odvmad3aX4Kg$gx)?WaDV z%HF-R_6F*Wk?TRSlk)G(vD4%^=ZlOl947lUb8N(@@{=ql8^-4JB%9U@iTAGH;gxb6 zq|q|mg=DwnUJx2(Z&Jfa8AdkOBBD}|Y+6@Nfns?(^@^j}B}Vekh_YSP%}2jY#TqTC zIV%sxDVxHAnNTEDn`3EeX5w@TZXV7ww5EKT@q*V44pKL4K8E+P9LxqmdBa#1eXcXA z`defBRkUQ2e5@MqZL(c27JugTp|vOwNmKI~DE+DY{?viZgfzK``kcAJ7!#g>MZe=v zhf$NY{&hjo-_~>ehl_BYPIN5swKKihrNfQ$j&Tv4LlvTuun7)!0L<&Xl4PF9rLpzc zy_fOR@MuGcR(a~v)Z=VYp)yjtoREVX_4~4nn%QThodp~CCH$1+D}(WeNa>5U|{iI}0BfPT2O{n5=(kHCJszdw((Q#Kb`aeB`{RA3Nlc(fPl&))oLT-;!JfBe;b zva4l`<1Y97ml$mWHT>nygmV?zQeefyq)>e#X{W^S_WsM4^F1S>{=p9FzfZ7YHa^aN z=>GOcL`bD}*-I>VD_hs^A+IlK(!L<>GYnIbZY4OAP%3wDXTM0U`F0HYQ3cH*U3#aR zXE|G}#dU{mWVho}h|*-0f;j9v@8o^{KXVej$9o zYdYixC8=u`AMp=)In+gQ*}Va&^F^<^Zrxh^D&J?NEC zc`5J*G?OXRT098rn`e@R^py8c#-fd46y9)jNZq-jNvS(d=~z_N<5||runm?gXez98 zPToeGYSgX!pSm>?)kiM^T8H;psufi9s+m+zsR9=azf#%Q|bg6S{mUh z22Z#xWA~SywC#LOp9wq`gxj|Q*AFQ-M8Rf7cv5l=suxSCBamkrq#m7n zzbecA;$>ClI40a5>vSgNf*01CU$5~$C9nzrySq9T5Y=yBBqJ84*o76HW>0quT5pLf zCU$p-g<-*X>)UOC$j}Kv5oLO-!+EKt+mpTa1mrLC<&1?GT+v{MRBP8H+6Gd_#|H*F z#Yr&ylm)?}JgC45<(J)D3x9r-ko91EfxTn3%P^eIpsu)*F!}%U0`g?&kOwpvdf+dK z!uDR3l~uEgaQX3XZryBdw3ZovV^qu6)AZ%dj+k*^l|3nX_p24ROL&acb$S?5O&cMp zDSeguelJs%_EoZv8&f{W+ygptlOL zIc%DJyi6ILO;VpvvCN4o=I|s@ZK&noSZ8Wrab-G9QPE^85*Sh<=2+EM_YL34C~CA- zo2vmoN1iOp~f4un1#GFeJI8RCC62mHp~tL zmIT*2Ev4*&^6+LwC>S{mt;_8!l|P&+n}25+YaemK*@y=^1_s%_=@ev>g99Gq#n&Vh zB>vvPv=dtPu~iWq!ucGUzg)t7XTciw0R%p(_GsL`7zN@f4aLxb?VOj`Fn<|9t4j=x z*H1ERb5<2^=B71!NNjjKI^$<=!veQ&_Id@g;qQ*rT^Y;L;uxKUvSM@=my^Gx_4a=} zgq8c*hoBrv|AFTF`q#Xkv*A*>&Aah6YR2-$MvpDiggFiG=J7&YyPT3fFOQcTnoS}Y zb_TTfvbdF8(ilOhBx33Ou$dQlh60esI#9V+bX()otOzE+(H{pFH%M%6o70Q>du&k! z-BYvtYu9S?@qVkpEkKjp+@FqDvh?PnlzVWi*D;u3#Wx+Y^a5G@pI z*w3~|1KP=TVYae0x)y5@o%$2vk{aD|l#%XRMjRt>tXGdO=Tnhx1-UE=p^yxaao^eq zx&#z;G;QYL4=9W|rskhxN{6R?jpL<5s_$xYt1Sj%>=u~~TSU-tyBW_QiCz|GH5CAKq-QqVH-q^$9ojHFv(C zs{z~jsJ^<1VqFP>w+1{9oNgZ z!*`Ia&<3}g_4JGFIGfg|Gv(*km47msl~Tdqr9lUcQw2&1tFyZX^$gEzpS<8LvcxK|!|0fZh8=YWGr8p@V{^$KgmIU_#UO~Ojc&31ujM#xzJzLRqZzf+YvU(pu>AG(+wZ> z#bBKTc_)xt)SKK8<#amuV7**w+eYI&a|6mWzt%N3oG58G#;aMY5cDCu}lL_Cuy#_JqfR;oQQxmT#ST9m7v4q zn3;|yf=g{YrhNv7q5~+e2v9L?c1tQIj_abE2Q1R6A2!OrJ>()7k4zauR(K>gXfotY zerYq_u}+Z8!Wf<9+Ri`CclyJz$ORE=mI=qMM5%g&Ej6w@z!#^pntXL4?(){A#gWO1j{V^dO*`Q%(Hiz$5unY6|=|pZ=U%l93JOt$1 z0)~StX%x&86Fhyj$MqQ3svvwGt*V7@Zz4BdG&xEuwyvaovT_()ZSHb6^Y1yRL%qbD zA|pKbq3QC-SGM^TCGT;N@BK+{^7u(;EXL)#9b*x9I$^5AOnD_z&Y+k}Hvs+VS+k46 z;kH$rMZ}Ms%hxLeLsemf*=-W1{zlguv9N_cymScl2iL|qca3&g?H{Z3A_>_(Jh;Qt zOJ6^lhOy*_fVt* z$7^gX@P~_1_nLw8z7FJp`F5MP&ID_*mn)jl(y!HMTrUG%u{9c9Dm6}bDwZl%&)r&> z?brMrWBY<2jps{TW&1!?YE_w5HlDVt;d7WZ(Wv5^4K~z%h(4f2UXSoN&#}~z zTsR-8HCxj=$E* zDqSva{JO0C%@$Lulym79US~sv>$P)C#&AVr#OGEhg22`uV6N-}7aDc4RYQx2f}Kzl z$RlIEZevmGZ>!maRa+jMn5|LwBG zBuky!f*l@lTkb~6?R%%1o$5(M(6@zUZvNe@WR7E|^NO>WU}E=JR?8Zj`8TZ{R!nDD zS%-{-lU@P?_6yQOE#GWE?T(44T@r5Gh^x@1lAV6`IMc~&skPaqo4Nc^iXB%~ZX9Jv z(Rg0A>)9!GhJnU*GveFX!tlktHC%75x_Wmksx?6CU1e7jJ#uas%8lawOj|w57+IgT z$)uGE-okka)$Vmv3-%h?eaF@)4V}sQNhoLAk`m1IRGp;~KM^TS@uRm9Tbyu%M}w%%=!9CgR{brq zL8tpT-)$lRvz1n2)K%Af0FPN(%YwqzsYn{bP2;f4fh#@2Wl2C^=!5MT+=0m$#|@an zl866rdRWbBu@08tlNs4PDkpVn-GPuZYGy3cs7+94{fh+%ur))c4|OE> zQhFrcpxc-86b4b>hj;9u%^b0Q2{_nHP(pYliXbO4B{>wcbB#t)x)-l*GpcM^jJU}2 z5KnNj&huz&wKHY~_^O1^XnL%{;y+&4jY@ax?8+CHFb zO54(0dKRV1{R-^0eEan#uC&4ZZkuaGzhD+HffiI_G|*8uG|LmW6|%V8QAAdd^S!|+KWyOp4Jc<1|fo*qf!ApKv zf6`kx#3YToRvd?ho%%Uf|bQAU?e2DMGW<~+G0Zi6Q~$zb)kBF%ZUvN75G*LOJ_nSj?=0=GFP!qty=zMdG0#%5RoVVlqzPMeT(9gQdO!}QeGaBw$=C_-NGX{}P~kC&=+e+| z+q;wJ^COCQ=Sx=NoQKgE4jdK+^=wjFtT{h8V7RmvrBw_PK5bf!UwSWIpWi4?zJ)u5 za@A1{(NvWvozgN9P1L4dM$qL$ekN02R;Qji0&eMu%Xap;0GapBy9i_uxTU$d|6BD> zIQ}99|4#DZlIb!bOGR&NUkx3fqt43+`#y~KBeFu8&FRQ1^a$Sp14smdQUNG|wGzvx z=wkqjO3UBK>))H+h&8bnz)7Q%0Iyr>7$(5g`@aKN?AtQ&sZ#5&=W!4->5+YCVP)_N z(Mv*u28nOnV%#!8VEvj>q)~t@=))cuZPjAuJb*c717&3&@kBrKW5dg1_pG*p1|`Y3 zUcg?xU0N5V5U>CixO}%a*^r8*O;PR~iM+6Wl^Ejfijq7-4J$st%oZs1&U?_4JI2G+pWb2#P*+d;}%} zHY(h7Tpuh^3~o_{V!(Jj(g#tzV9cpR5E#ty(1sWgGS81wb%o3|ZDa1vr{e5hg5FlO zUs>t-V^`#}PKYP;3V|g0Cni3Xx^U~EU&!-owu?UTJkvyzS)M0Jj}K`=IqsF^9C^k!cYqusFHpT;(O_Ag#`inA`b*Jkxf8lSc6krcObCRA^8Y53{i zHYmjo!>3RYg8k~CNZ}=K2yaJ#J(*v-Yj{prr1dv0KU(Fvufz|Tzm(C94?#V>ZL1uv z-C^Qi{PC^x&f{xf8Sd{ZIuoL^`NvNtQ<**nN)vQi+0f0N6ez*GAMg&2K{I|-wi0{l zmwo%lA3(n(92t&@u)gT%@TrV#0!-Ny&O6EIm099h5lUIm{jwRIzIv&^zd_WGdNw`` z4{-EA@(}Mp!@Xd~m!v2yA>>=)=XU|&Mqm3;kWmsvk)2P{9&`6yStEni$4SzXIJS|m zw~JWjDLtY36tUuI!}Qfd{G?nCKi10XR-B^muees1S(ew3NL1g~F(FL2Pm<*%&=n)x z>WoEMmWy)ym>JDMb-I~r_CbrF?o4mF+12f-uM+V zC-2buqqNrxw&}YtVpqZ<-GxC+kM=KyA6as<^{g&2+VUhlyO%(c8?IM0>V*tdyGH^v zCKS-pv0BJOmtLbjaHLc>sOZ&_%ZEpHEtJ#BLASrZ4`2ZcFW){c3}mB}yXuY#yQ{dc zoHt;mV$ocLI$&(%wbzV%uvL$NWyG~Bh&PM6K#?6%im7g`6Z3is)1E(oZiF#GzR4S< zzPa9FRmxw*8DQ~m;|;}8NZl6Ju++o9-#p5dWfpo$HTg^B%npzl+$Z9k{6?;wrKEUi zI#Sc1ZjVxgo-mya*P(GI)8;5MjH z#Cpxd9O9s{N(@fy1im_$w_`_!Lee4Y-TTP(%?eh6Ecrt{EP+9W;IMALujrLO^(HZK zHZ(ZNA3R=U^Z{@N`(-ntoj>zCVTtJQDDdI6Y4X@4oR0arGX;JHgzT1N*4DhW!8`f7 ziG8k_*#=%GSRrO|G1k;+QNkeXkO(jELM86(w{DIk4&eRO-=TICc##>Du~gm5qA@Bi zq`ql6na>ZR3j}-I{$AnzA`b(_c; zF9&=5lAuWdDHGH3c+n29pHqFBEqhjt?UkIBAp#yQt^w(mTD4`c#<6XqTi{pG0QP~e zQ;uI(`sL!9MdjjWx^O1PPXUQyd!laHHViPLPWNem-PCJc^DxC<)UofE??N%GCKKwNP5U@5sL*m4pbo)%|6!?T|zpvC$MtG3*>iAQb}kNK@66`u<8jq*J! z1VtkP6#Z|D47^CU;W!7h-(R-p=Ox3dNWdS`AFUW3rn83G%1VSpUNN79_ao-MG zBJSjZ&p;I1scY$<*>!SpB~r;-XYo!X-4Yj>UVwUQoWf%u*`|TxCeyyEC3i1eZ`~2O zV^44MAVO{-SHDSWqQpc=2Q{zwEcO=w$OhGd?X9bP!=s3)kB6)Xgd%+G%N7Q^3BtrUOjyZT^d zQZ;MbqT|8doE~gp5YNbC6wKQNqLVD1%0!($hXb;F`afw@2-2b#e1qh_sf3v+Ur=A( zUk#rQoY#-fM`U^IDrdDD1;&|cX9?AMk67fj)5O!HaY)Vo^2|-)D$)?KK6IC{Aup{zFWW!ZgC%&*AQ+@8DIIJJ&0}jZ1{LmNd=>m_beGPjoj&dC6sfA_kiOohXfSP zGw4=WoYy;@Bz6^06v^$`-x3xZS9hAqEZu8eEbEn^Y*0d<>}$D)3 zZan57Ub!w^po=#8=v|Jd0!5-)F=-Z0h&pDV4XT`sXt%v7VD&Q%XJpCL>(e?rp)_*& z%r+u~P{0|Z9L|U^v39}9p0xi%znsp*IMpkpU@w~2@q6Qise1*FciTQPgBmza*&tb@ z)E{m>apVXCu_iwp%)YRoOE$51mTzDjp-|1Hm|t!H4N!Te_Ip_*2)T-li_T+vn1+ZNwbBnE-A-` zRZHRz&4(Q55=G{GcOv}Z%G5JDoOfU9HoL*GlN4PY)9B)@OmX;vTH)?L#A8dQN&6-& zW3^DN(ASn9WR!ci(sZxe?OC?%uj;*~b~86uXryP$y|H4yBcUIUBoJEq59Cc93D?1 z+s3}v8}e$MlcmDWugS7~(&=bc8}W{NdP^B*1HLj<^!xKmSC9nY*QoU&G**G8pm;|L z&*f}HE3RaQx8;v~Mq)N%1hq@J1J_Z(C5Oy&BF0gR@=}@n{_;{)sNH_eqhJn_9da1Y z#{o}F&IU+nBB^S(p{Q7mQH9)eq2CSaJJD(F(Yuew`y!wR{YS!!kIO~t4n9iR)mhTX z;rF?%HV8q@E*rvo?8vSPiMRKg;78l`nV6l7;)1iOQ`OC3*oA_w`$OUeNxZill4^ED zTijV5vN8;k&{axz$84O=!@g3i@Dk)(y~>NGkWHU+J<@y;xrDvnBGQzI!toHk^E->T z&HZ5m0|gXLNy1HV7LbHMt@LAf@UaQpYw7>scIKMp`FhW$CE<(4l}6;|PZAPd!h~q7 z<&jW@r3b${H2!$g-nTv~sH? z&GwvB|JHZ_Ic^rw^+|ze-O&}(TK?j8olaxo!z@b6Fh^d=w~fWNL*VzKO4%C!_WO>zrvB@JF|zMS>F&NXiEv|M zqh->n>oe`4FejwH!XtI-=5y^aY}DGxe9^bj0jKJ2?=6p2l;^tX4X@gmlyIH8=|Ozi zToGR^x$~pWJW>(4&*A|iUksxBi%{iTUf%#8yE9Kw;bC#GQXeD5)Ym*)-jcc*WtDVj zU^!8>-Ilf-!OUnmjnR%UTh46KH~5j$z!(QN6o}AsW;v0Zdk&&-@GVYCEanUgi(C_7 zJ%pWXx&ka(xIXi#TydbCO1bQ~LT_aG;?dLyvA4CLpgWQuzL4`w^79Osu~N&9>z`82 zwW3yNLi0P^mz;?>YWVKjp-Su-MPlVkx6@nMe!zNFv3 z!?rVMc=?*-f29ClAg(cZCw|yEfw#LOnfOUaTvm+;!y0E9@nX|`w$7u3;2nP+x<+@> zH5T4?dxkHpo{(^XnuhW8)C`7dx%C1U2+xY97falzpaVzoT2OQUW?xxY)__PtbsfEk zsEwhHac!%wiiwVygJo`6$46lK8(`j%M~#BMgTg`P@h(Q&o;|P!K!xmRejW9inR2r< zwW((v%F|6p*_p@!UNgl>% zC4-3nVbh1co_~m^K!xV?lR;cArbrG}@sb*kC6=9^A5BA{G2%jA|5C~?Skt2r`*;@z zq*TPLHu zKjMs2@rq}QNdf1nE6&}F%jj)J>O<9%efGFTf(2xrye>wDJuMbENo`l=Zaa1`krJ$w`fX{u+$+r@7b=d+h`|0+E zMH6v4$vao49u+cDoP&Jg(KFkuZEPl%m3(yk7V&2a7GHz|dtaq6ZT zWW=$%hW_Nl-LQ6D$BJSfRG*TeS^co#JPvwcu2O2L`MQ=|n@N@H8_Kq9wEU2LH#~JR z0OeYQ&61<=ov}>YrPq_uNvkyz*c|VB&B^W(v!v-olmp!ga}#|Y5-Y}LEr8$ZaGDytvXtn?pLb9~(`iZdY)=q*J%HCpsSFEy&dOg{L)caj%9uZ=Kw# zm8;nYw7SCUF#MQ3Bp`CQ!>JdvF7fq?Wr)OIA*d{4=)N&(clVtTNifC4S?N<8GB8<6 zJR(&-y7BsU&Y(rJ8tgpR^UjkY0X=HGoWB+ksjZa(qk)24ct_Am)fua=ebP#`a-_4# zX+yB~DkkN!Ng_LGjxe<`{#!b-iGG&VXDq%rtaKuqZw*!v2ZMTxUsq`N+Fz1*L}GPc zU+Sn<`EzeOM~Mr;uqQkvc?gX>L4`4{V7i%$C<^Niebq4x8XEA?Ar#NOWU7xETs0PX zx}lo%TKnN8S~#LFh5O1h?XXd?_l2`wh?g+5k`TbuQ^x=f=&tzF``fG{XiBi`|)zvDO}W>tslu8B8fMOg7Z%GU`-ZKZ4>ZnMXRrJC>2 zFRp2HsO3Mze`}S9E~~>QIi`2tMVpMymOOd12|1quDF*p>8@iVkh~ilkHRbX4!K|vbgF$k4mr-EmS`=h z5sr8ps%Ebk`IVYwf+%@SdI2k+5(NHm==GFgHewpB`EZwgu%E=wiQe`t7;cYft%TIMTK>HpXS)!N~Avg2pALi+u z4zvxD&58$vcvc7kAgQ9t$0XKs{$; z1;dH3>p14iVPj2Pr15aK4_^u-{n}MMh#&S$}u@4&ciLTP5WO25D3=r{XiV;Njs{h(&@L>&VH(%gx z-Tugr!{ClH115LfK_J_{RL5KNH_xE^|4F3TABI!Il76TZaWL0uz_)N8R$`=A2z(dA zTFBWNL{baMYQ*xn86NS%y_I#Y5pB}o(%O;h<+SxHEr107D>G%z!FOf4S#G7EbeWjl zJA0c}l(wHqqpehp-Vls#lkF5ip6KN`op`BPJLi|dqeQvIFW-Db8C`Xzgr*2@>im)= z)cFfyTK8rd0(A@oCO8qQ`iaxZ#Wm9!y4;H;?*rhJ$hX)<{1nNX2^NaME)_w@Ff68A zsUKY;4LY5%1)AmX&}71cU--NbbMTMG?s?Be5QkycicAb^YS_$xoI1Be`AT`=^tc}B z_9)~XQy>$@q({jvd?rYL*(n6J5X5VbTn|Y1X35sS7!IeZ@H6A8KH;=;PuF?OB7IX? zgl0;*pVW~y&N2ow@pT8W?&TlR0*D}DVnf|6gy@4)d4x| zaJs$gV>@+CePKoeOv0-VUxy@O(AFM<@platf;t>}R@!T*;DCXPc-+gCR!8hLTBR-n zSh1dSi-U?o=e1g&Vq#I05|mAk9N-1^LJ}LLi65yn7njY%>7}N!PloIxT^uTJ z&5gTB*;G2e80yGqkZ-wo_OfrX{cg*dMYYs=hqt#-76N%sRccfW)^RQ*0&_Fig|qns z$L1(}csDa{hYImWYckP?kV^4+YISCDx`Ys=hnAW1-Yt<+th6e9wAG`d6?#=)na>=l zlmlR|v$aFH;O0Zrxwo1I#EFq4^xwUEkdS02cIjWoO~J~ey*ehioF;#SqZr*cPW!~^ zRx;Fc9qgGJy_E7Q?s~zX?SAw@&_V(_#BdvFSyi#`#%Mp;qDXBhCbW565~9%$x7nB8 zE*z(a0#4)5wRX6vRVE-X3D0#YjeIL~|9A_X?n{i!gu{D49X!7tDlYRl?jRIcD&9+t zD!a<;du$~imLvN-tI*YT`Bhn`uZ|Ox>7u72#fRfTn>1J|iD#HS`m_~nK6^f^l%{k( zp|ZmTwcxT;y$LD&XaN+Zt?H)a^D&)_VcREh-^EC%#TdV*A}`o*Pkz&!L)=3WzTrC0uMmn0a?h zC7fuRBGQ2*RRf?cKzLM$%Z$+W*4OXa`FEG9h4Y`<$4^vErndlbL-g62QT9$%eJY4u zi|L8qzU$H2nKIW1#A_!1Li|0(_4kP%j!VGlVT-=WbvJtf3$~Nt=_nd<_454zr1*XuDgq|jc?KS0}2>l+jHrxuCO!# z(5X=6);=v$0uWaiS0|b=$F;lmO5S2xIre?jj{ArCrj$Ymd=^?aC@`;2Vek;Sw&HA+!6v+>*J7&K9txtqNjraRIq7`T0=s^9UOZKPTxk+yF`P?1V6FA^9R33v7 zmfi1R9BCsL>SS`MvNM2kal5#A0p!$Bl>OMU2E?UB@M(3n7XO^Do5|>#^S2h?f$+Dw zaGo5Ltf@FCZ|J$ds966gPzt?PZ))I6Ll0sLLkZHOgYiolUO%xW{lXFCeZuU^|p>;gBeB{#3U_qo|G|= z$Zlm(1Zy2!=BG41OQUQrIDJ5Ye#um)T%>ys9rl7`Io@~o9c7iy;Hf~Y*fS%(bY^zw9kFZYI`LA4$5C ziD;NfJ$z>TV|V{sDO$dw@kcxm?KlW=2e0+Cqmj4LDBzs1&>+W$=f3RGG#ZJ)z3HvVyDbe-1yd^!K<=DxCZYwcmzkBDc;+Zpck^LAo zxDa9&MZ~{K?s3_3Zf^bFSK@JcPZ%}|NFk=>S;(+7k|`6GP^hfko0gAdGofs)5KX^? zoo@M-Zqz|}dV)%&fyd#GOXX^FMaI)`8``=ZbXa6=w4w6?GW@S4-aDAOD#9@Js+xA6 zLNQ;FtI)k1trEKiWN!0<;n`}UqTc1XI~vU$l8MK-gv1Hht^t?_#lZb9wV3Ziw`37? z5SFZ!|0_K@8ABu*jqUa)Kg9F-YcUNLqI)r3>)#HN@MYV%nx8d!H}Q>x*2oK{jlKDp z$c`1h(8V6>aZHjw(xMmSvNH=Xfit1@&Rd8+3GeA#4Ru%hey%ay(n?+JZiZ0+{VEeH zqeX-jRoM!M3iTaXlT7*y`J*jO%^XSty*B!tqofMiUZM>gg=p69Y2G(|Wm?|wW_tKY zX(Z;+NL5lYy*}C;JgGF=Y@J*ttPq zr~0N-&R0(3%I|kSPm>L2Mni|5FIO&FuWT1RA6cA43-vtnn&RCk-h8wokx`sz)5MKg z*Xft+6uC}6E`M+D0~uGdRLM5J#mRyvRWlP!4Pnz1FV>9y-I2&jLSg&a#6!xfR8G8J z`Z@NQtPXG2U#b%gmi--JC22kJ;ox<1Y{Fh0klB*=+gt<%v1QL{wPW{&4^&t@84fr` z4NB)rtJ{9PV$sc<;Ig7LN)S38{9rR=U*@}nk5*+ERR}i&g+S&kf69ZLzJx$V>kTSv z>nYO5nj=r6a>n$3zxcjsb$%AjD9AsNcVW?|KcyqpU(TL6VwJ$A&|4}Y=-qX!Cb$@K zF_g+w%&n*yODOPJ9o;k-&gA0=bNvNey7tbC)&dsk{e+XqgbmGXe|R=+y+M2YW>}l! z#Qt-g)Xm!My29Z}cRJxvGNL;~l(Ey!Z6tO^JGb6rrbay)=lA%W(nnDi$$`H-(hinL z`V!8%%nh^pTpM@ls#ZJas5R2pTAGyHN%=RS!f2-+)*RRiQFSA|-B(5HcPYnoO5c z3OUuAf>{f#s-3r4e_7rYed0@C%J=EXYjNl*!YI0zJ=dMQ%r|jrTgPvI@$>-7X6tD^ zz_<67R1rm}5b?ui0}`)irKe5qnXWz4`b8cddBI^FE2~}Cc&lxFlqdW)5%GiFR3hMu zWM=3+&>X{mnKuZ*?>^IJ$Ub}neDdgv zQBMt4U6ugnh8%zRYVDEPeB;~g0G~E=@J6-*S^CTtR<2#|DEZz}C59>8twGxAXH%ls zNd;AR5K+U7dDZQ^N>Q0`v*4&*HJ1Eg%hIH-;y+@0bo-;0GvQ?JqS3w|5m}&OqD^7t zf%#hBp7$Y$aIAl#>AJl^#!o{0JZ+~pG5~;JFIl#CPz(cBkyz|vyMHyaN|FxaPGT>YuK}4-MEDcFKln_yu+#5I5A9fJ5pYAB@)Z7zeo)j zP~9{z*0Uy06#OJo*^;I6XOGP01M+8ROFJ=OWGWhW zLU)@4?_ngB66cOEtJjc|=$v@7cA(d&os}4V?bI%k`YE}pnsH|_uxQfGssG!$)Dy50 zS9Fh5rtHobJD(bk@M%`jKbbC+DHdBE{r-s#=>1cc&D_tMgW>m>6E2p6c-ki?gD2JL zm%I;3<0nJ7K0M8i#YPK{o48&S(AE7Ewbb*%8b(`Oqh?fB%Hf z5+mrlrB?QyN1pLkM|W6j$~Tu z`}uWYg;vQ}{L^vboj)M~!OhNjtfGiGqm{;)$O@7oLqeZveX}SY(#e`9kvxTCn>ate zo!s)-cL*QD!48^RHL<)&Ox&T-Tj~*_<5)Z$UIs#!#f|r0C)>ZC}KygwY-jJkN+YypE6azQ?Yo9&aK){>vqONuZ%O_ zVSKx3Udr85md1mmc?tu&QL1e+hTB=DqUuhaxpJG+7H+*eXumN9ykg8fKgct(5j`fSEXowEI1$gXd3t)f^I76F=OK>%@npc1X^?u^a_v{Go4a7n zHZ7;NFI;=|114TJ9c_~Y%a#?;{$k{~{&u1K>vG*SCQdaio$3>1j0rC0$sr3BOIY?c zEa&y;PvH=}XD&}kJZ>~`6u-l+YO;=<`rYT9Ub<)Y`m7B%uGBtt)-Zg4>G;-S{jT0? zL4mKoTuGQo(nk9Vrwy02T2;cgt?L9tqkno8!R6VX+~k<)(+po%Q4)2u`oixlPMr*# zh|O)3Vav!jUaUqS8hx=5zq}c<1FCYYU%B2p?=GHv@34DJ=_ogske5@zO2h=hH0>%A zH6$JP%ib{=Jnk!voIW5UtVqvd`w^3s*KCdZrz|T&g+1iSwX-`~e-AivG+QP>igNec z0S55?{XMh%MS%6;?ft4q^Mq|FB|DJO`}dds6m^0>L|AWU1bDONRQN8_5PL1FSALIu2B%-lYf_vV)ryxv?7;fNlfz8Mz6uRfo5@q?&E77 z|B%Q;_FkOgNLgij=B`soiFbsrX`g&3ZzCE?7CN@~;&%mUHs2ePd^bmAM)pR#FvM@P z2D9lpE*tbod?lvn$8Kk~sQ=o@w_?RQ*0`9j=kHZiIq69sZ%2)B?PcrpW?~BMi0J^z z+5=vxd*#cfZPqeSXm?b=D}(THDt1*b#VzYzS)%0_(K%b~^y_`EB-r{@=+M{{ExUq( zo>@`8rqR2GBjx&6bau=Swzq6lm8_tzV7Z;BJ*fUQJ3Yoo|kxD64Gqoz4Z`m8Uwp;&3?tF6WiHDno5MNKK?fmq|b-$p`RgIwS zE0+QqZ ziEC$nb>Lwl_5`h}qKH>#eRVGcSz;Uc5m4eTL{;w&@g%iu83xQUvn9hsAXE`wO!U;} zuX;X+ksePTR+wbhx(bDoVPS+eXBl z0X@jKZ*rSa={TN2X(eB$56V#9F(um{8yei14z=F=LcetEvfy%bytvnmLpnl;nQS$H{tmxww~r}%^FE!L9!Po{JN+q= z+lfZZ%#1_n&SpNMv^#bwotCn}>~jukzf^w9>XRnEK( zA2z@qf*c&3pU+yENV;uO(?%rr5?Zm(-fw-MbERnH-a7t(RR?xQywvY(#tKi&?cq?R znjhP&?+s9~eC1G@Z>^4)tPmA6lsh`aU@$HWe-g{4s*M?qiwDyWm3wHAU#sxtdea*`|ttEy^H#n5^FnRo3HVJ4RUJnZK%+ zul>C@AaqWFpO~XnD*G$zX;04CdqMPzH*}v_&=gN_ifNX_Cfv9EBGcrO6VYEAYN+B= zeZF3!l2YrF!qOZ=HX0;31J_pyfYGx4(MuZ8+TuD;^5rQfyp3*sFMtDHW@t| z-vg=N1Nqy;MlnN7gNBEJHO(yXyI*%@P3Qj#=1rg3u9&dl)YK6Z4?5EFIDM6g6qsG2N;{>7RqGQgy%oUc? zyaDSip{k)a){UY9h9@;W)3vOseD9b-o|F&M<4g4VHoiAk>n(l#6We*S7B9{HqXVbm ziRf`(ybX)jJA`88w)t3vqR{b@@-Tc<@L)(aFfg#a*6-^7)QJKso0<&WG!>4MZSH@E4flw_GPAV&=+OG_!_RtQ2m*bD$0?kN+>$Jot`qLEO z)4f0s=KVRB7Ss&p9)B&0&(X}+!&9}!9W5o26js#syY zi&$Y|93qnDfdr?=upc@BQ68wCa+KGh(apf@xM_4R2SJf4+l)qo6aLQ3J8$!GEm>Wt zg6ZZ&!OLAm#I~#ZM%?>ywjG?7k1K*_LB5UC?M_Q#bc(COk#KD0i{(gMYp}W3#pke# z2RHI7huzY0WIpb2%3Bkb$Y=t*hKJ#U7-y8_#d=bgRu4JEbPQe!=&6rP4otWvI zC22}5RK7NxDf1J!L~P@9p6-GkmW@Fg47I}YWD^Ym2u3Zo*83soHi->?Zrgd0(NE~3 zC28(PF9ms!_DXt!WU<^o{D4mt>b@?MAM{!0ye z;V-ZIf7o`%*!{^xZz#KWn$BktmL69^MrrF)ju(tE-Y4t2zi)KePqz=wasg#+0`dXw@ zGxAYbhRjQS&XyW4YunLbY_+FxHG6-m^PE~JT)(ZAjdn`~9S_YabeJUnR2vZ9iy$-{ zDxi^SHaeLCC-L~Yoo<`3j<{}AN%-9w7aEmPd0N+!>?CPXeP-c!#%q$yYLe(|>N`8* ziz@24{KWSak-K9@b1^;G&}1a`5l6sk*tF;=m5v-{%e!8OlsvUSq90#KuZ!duWYA+) zeQvR05PLewQclJU^P^g$*Z8)o5tl~DX1t6ZTrk`KOuGUvn-AhGhj^R9vAx>_bzq;F z;6d-;G`49vMa?h!%AO^{hjH7G!@NFYk0 z(G)(AsH}#LmT2e(mI9}YY;28A#`{ZR39Nc3Qw|1ADBg5z3sfxQY%ET5sR7-s?y z+8-K@tL|69hPImrKP_FJ5J#}Z8fo?VK299~B~m0aNBI-tJq*)coQ*m1?%?V7JlQX- zW_F&@e5i*1#rvQi{gCh}mrS&fH*jjEwW}6qaft>5pWJ7i5;-got-yaAv0bo~*9Gb`-W2?|X!?pu zk!PY+#P;aJNM<;d5|&nPb-sSk0z+3bAxnWDro z1)sfQa0=MIYQG}HqNTx3Qq8zeGE)gQe!p}nm7Yj41VuNZt0$lE)ad=wPfztO2J~?a zdGyZ;Dtk$NEeT`gVP6TC2yZUSg?7tyY#5}sx#dgnWDvRfY*B4R(XCg2=U&1ej{ zY}$U&Qo(MSCc4V>i7lR=o4ix5Nw=7}?uxjxH|w)09G_Fn-z@=c3&u}=^Ce7*-e-%b z!i}rY8{X>m_5b2bR_u1D^_Sv6)jA|C)VA%1p83fJGsTTiEBD@|AbI1Z@X~V)-QGyB z6>`z%6-=i~%LkUaZ6txy#z-B@lr=i^gpKtwYW7mmlf3I~Ir` z;&mxd;2oBF+(v?rRo)f34Pae}`Dmi{)R&uut!%w&mZs09ddLl-0zx@Ew>}>Jc92)O zS{V|p6?b0N46jXyRwW14cz2pvbARpb6y?SC*F}t^DkajUzeBT6iJa`@i9WRKeh{g{ zs(Q(yh|E&X$Q<1X|)JEKsZa0^vge^j?iUw>iOHyQtstn=VSY+ep#e4y$8 zl!|=Lr*EJYTbFyY9#2)W7h^xRhN&^WlqEQ9rA|+av@ZOJR}0!xwOk>bpri^;X7HxN z4A=Yl^XJYOSE%&vLRWjl?j~ZA`NEx}?6{d*U6cT1W&R_r@`?%wU&rU7B`M!5pHn*u}D=!dlS-Co@%CerM^Aw+FcxmmD!SXzO_yVo&2*RCB083&WdTCkHjoKmSe zsla`Pk~?xNC-G*Q8mz#Q2`fl$saq^NH_guEi(%Fo^;19K2vc;Xkm0I#R$q`k{2`%S zt{-rdZ%v&T?EM1!|I4w%>Ny#%&vP{Nmnpbi4Jo0Jsmf|u!=kDdb&r2@)oz8Ae&Bp~q6@6$M2<(C|WJs4wP(^^p9m#f~jcx3j+QxMjsHDfqy> znt5X!O()L*;U@OucDxux2S$yQXobPN_e0Z*CwpUUCMLho<=snzJzqB7V}>Qc-uEUO ztqd;9$<4BKg{SF@jyx=G9wF)IUNOp6VK7WjXkl?m*r_#zjpt{+OYfvvaCs)^)F>0B ziMLl_uU76igVUI&68aYZYphp?NxSVAmtam;D<_=jCs}*k^Jjf)cX2SIuV)@E#eDj? zvsI#cRR-AZE>1MA%CpY|k91nBSYi?fD!oc_;+=Fgs)lIgCdH!zg4MFrqj2h8-9Z;r z5PY?sN}1c4lvF8w&cjbn{3dOC@^Qrvd8vqF1%?bU0k-UnRpohZGr7)=dq2z<%@Hp* zURs*aXY69YTG3bTdN*w|uI$u0PuKBjYzjJcaOP_)_dVD4RO5jEU<490xt;)}>2eujmpI$x;#mNfe2vx4cwpoA92wUZV{ z^}_B)j3XRc#ri?mCQqJ*^|%p9@0r3{oaJ6s85fW3Dr&z|CGuvS(~nv>7{oFI@0rq^ za52-lwXDvTIfbQ@Dil*BU$-L=3@g+%Sk6i+n4(xMWK(~D>Ef`WG*=^ZG!eVOTNXRO z>YsL(5)G70#MdzkqxpjtBWy!fIV>1U%p7KJ(|6D9 zEWJHf4UNv(TYl$yw9`#*XG=o&`#Hm_IP@z*_8U{F?j*6hHLpzB(t9ulnaE-ut9NPr z_#U!q1oDKp1>E3yQ;kLw2fFCsH5*dD{mEz_%uytVEFt)4;uocq5!tHjgiI;pD-lsl7|d5N0 z#~s#Pc@oU>%y`>6J{j5!5*gwME5R)*xKdN#aIZ)=wmqPaIL);i-@58xzQC!kW_6mc zGtKKGGuQ5l#_vgvKMqIrWaf3xtM>0KcabI^CN3t~C*lmGc3gS%dosy*xjm3QbK+`h zRA$YlRYz#OkydOKv?PN~o{agpg(qFW&vEb1Fk(1}AN6FDI=ESw`xm^R6KqTado)hh zGM`N=@WtXn6ReEm#a@xxl&X8 zK3Nt#WNr^mNxSxGHG=dy$5y_y?CM>n6+Qe%n&<5Pg`zjq*+nrZ_A-R;A?y4_Y>=xU z*bTz_zSYPVJ3?)VZZ>MAEHh)^YeZsx*7}z{jvfNJAne;eH0IONhwYl;iCq$%)ubJ8 zKS%`qu~gDmW_g>ZpWRN~q?u!s`IVxg>oEm*gDR__ll!YI1bj_@BD>^0z7lt+21&&& z=SRPvHj8l%aC9ROgwwW}I{{{DD>;^P#VJ+TqBY!&oVgb}JJ^akDHCM4(zTfpBoo~} z+fDZI-vR4~yK0zM`*K&#+J7hvcZdqmA0$>=1TibqXf{`sek;Uw z<9z#R+TL_Ij-~IL2g~B4j@QrJ{Bh7y)o{&B?nJ|IILLAW7OqZm)zM50#`PRalyZI| zMCA0D;j^{>De>rfqd>i&Rpe4!V)1SAYh-JmP3=chGb8So^oloWt9)HHxii&e?s?ls z1aaNOnI`Rf_@~BqS6zAaL31j{T`ZMA5fBV#jI6xLRud8i}&jJtjsU6Q`5JJMoN}Z7jYxyfo)DpczLqPTu$#b6OXrjS#!qb&A$rWnEx5Q z=9XoR{UKyWy%B9sA9|CJk zDvFj5AN@dcV#5xq$o^)-<$uSZ*oiF@k>T9*)bV;WJ$mL6h=l0({_@5WI8gD8Jm@aA z9yfK5ezp87#NFCSbr4LCqDE$^L{N~ClC(&pW>+w%OA_hCunj!7Py6`KN^ zJgQY@sR`Luv9xqeWt?a^%oz5Y((ybirzwXspNInD%#9>6w&M)Z!M=llIxWN>k3`e$ zUL(@lmG+ML0`Xba0BZqIyk?vj@qW|T6XRx3Ib(VJlV!S)kxX@exhMyEXE}x?X=0Ns zgLodxC^Snk(=4m$S)y82ay;Si|4O#bk$5HG+s%{MMEz5SofQF{Wd{=Ds&BpS@}gu= zhY-rRt?X&d;jyvUdo!r?!uRdxwyyqEQqradXNRfaz2vK`9`Lhg{8H=~Ak;RLw-|*~ z9B^ZT)*GVgU9|0EsB?Q%xS_QB5%W?O^D2m*lQ=1lSwx5RY1jJqqD=iF8R|(4*l^m< zA=I@g8dRwBJtRv_l;le7*4S)co%`r}RX$O~=@HIcW_oh8nP7iVFW|q}T=;Nky>^P@ao={at2s~G`KM7)^R3a2-16}U zRBnfb{0{57d0)=YPC%L>R%n*N`Dh+7cZMhQCE4Rx^LT%q#U#NaFwehO%A$Ujl4K*} z{`2-W1_~1Ga48*v!`~MIkHBkym0nVkn+;~A4P+|com=lJpNMqbaKDm1_hB|P%pjDv zX??bbSe3P&XGNS;@Yw8VZI?}3pn9$5>rJvJ&-RB+6yA=0x5p>uPe0!w*DSP2i-?G5 zO>`Wi!xK8BIywyRF>H^>?8{WXLF&9jV>1)b@{Bn50bLW`e}|u(#ov49)nrN&f4EfK zApTK(_Fb7s{4BT9WQ^J*rtoQ=lr4WZ~yi@W~Y4y@^7L1SU9j zgTS-~g(y9<+pQYCzOqfzk=P%~R3!W?LHx}5G{B@CxC~n&l?NMI*YcIX1_kiK;3#DU zegsxl`?J&=)J0W`d0J^6XD&POlQ0@8&(l~Ohv77m4vyzkl-isIzhrqADwKVCzD~HR z2CgEaJ6P+bF|;^D5w!XyhH`-Dz!}!;8N7C1iuF0JvmF0WKjNZbp{pMx2Ob z1vMLV4u`0yy3WLP<~tCj=5Bgv6Wf`OFz?JEG9_RkD@3is{5+p0a#!bM-PymQ+L;Hf zWV=b;6h#rg7&6zs!LyAAscexP9lduIyQ-}8o{2M56-Ipk1w55FqBFi^ze0yCCObye z?5wPMJzY)3>A|Vdf*l-?&8J1{*w5ux9%J(!!p{;(vY7IZvun<}A3BoH_W`Kx#zgEBYoxWAN@xyEwbeUZh2%9EPW#~<6TBJ4US?>B4q3$fYB zG-)e&%cUJNGxM6%d8pCiLZa*b2Q6bznMBDdty6z$6D)hIUo>{^$)TX@zX=ZKR>FhX z8-|WMhJB*o|8~bt@Myr+rX$z!74aPW+Clg&ijfX7%Q}hzUqtSW3$V$Y&1|kI7T&?? zU0}BKx$&wN|M_2KJelb3#I^g#L>F>n9iZ9hLx>>115FB1hraAYLHg{D-TZoPgEv&O zEFzEJY9tzcRj1COxKp!EDk^_Gbrwb|w}SZceGliGv$fZqKfjj9k=xl{P$vU0M=F%I z6+!x|p-dDkH#8Wq(O>S3N>I^?h};7aQFXao(uE)tmx&;Cb@y2otlD7@vx@a>T%s>u zmx}i+c-O~G_&nKD=3rx-4$!PCt`u#%uQOJ-qg^$7E+3)&Xm4fE9wBrx7G%>LQeNqf z8Fy~eMP;-X$6bV&;Fun8(aUApbx>hlJ%R(5$WWZ5Z@`5di zEy*THF3PCTlqYW>@zb3%R_^M}ygJ(rh42@3Nm9rX)w z!r6!GQ)e){*5&|)WSU~*F6-n*^mlsT&=iu7iG)?vFc~-xY z3?5=S?4Yqz%Z zR^vr0L$b$4cT@j>pyTAqe*RI%-p-1dWz|{z`Mfmm)_ZrO?U@HQQ;pB747SSl_T$;4 z_4QLu5@dV#b}n?n&GM@o6R8B8;A4)P>lTye2~In)oJQ>`2fxu_4&7z3b42>?)@ooQ zJMXLgu;&R=U%W{2Op-kYzSxZ-CY`j--S#HOgfx73J4x(P1Rh4m_N>hWbw`KG3;dBs zRS=vjWLaM7kBJFv=DSG!few&vlNuKzgr4A0+gtj!pWdrsW&A+sv-Rw+8xuLFaUh10?6L2w?bfzA{?;kZyCw6YcBkre zZ^X08fFa2$SlebBqjA0s9mX?$>bXL(ib1kaW7}h;Q{jzcx7c015&oRgy@>*BIZ)gU z!~}&>6V3N;<4xc^HW!G7jUYCj<@6La#z}@Sk>Lw^{p3Dm*+h?oFaEbnG2}TGC8nhnaA&SE1_(iIX2WP*gom%^#EGo zytJtS^jHUO@1hp9DWGLL(i@Tcyr7#XAZll*E`&kE--!mKJ<=*?CPmVn33;e8Mk%^Z zRo0+530xt0JDl8gjP2U_`e=EiX7NHr4?^4Bm)x!QT>h;?cO^;Nko6?Sbb(KST-;+U zbbaW2i$eDUDpJgPA-4?(5F^Z!2Yc?)Q>`Nk<$q&$HY=;|e1e56eXkg)iO1=L-0WJ?Z2xP~Xvz?v{GnbCX) zA*@v&weq)5w;TUKt~Pj(a=Z}W?ekBNx~kJBb4fBfQ&H(fukJ$8+b5v?IV(M zJg@%U9wGWtl}6(z*|{dK$#W)BJ1AVubRuH30biUE`KM;?p?W(587l7%LL^}z3vPF`a) zps@Nn2CP!Kyz>!~-}ix>?G&nMBK1_OCBW9a<5`g%QmR6s!wQsoBSRgpc07ZWRwZPC zjb$<|M4-eLB1&{Cu_7Tx% z!TdP;6b}cd%B@gcN=jL?$S@Pfv3oeZL(?Q_Wq)0PQxx%yioWAfdXjbkvqGdKz_fYa|?arU%FaM6x;H(1#S1nP_WS?_zZAB@=t z-K40hJqfm5OmeiI`n`r%f00Y>{3B(990PWha|30pqdpBqz=Up6b71}h8vIMpq_i8U zp?N-R=zZ%~uHRv*&Mz;9fPr>aw}GhKDiT?48G= zRn{8zJedxxSy)Yai?QjHVcm)R^yJ{^iV+aTNU-nrs{{6_UUEq~^XqHB0}X+rLC+jw&mmVlM?s%6#D#osZUjeD4XYM}j3C zQo;R!MukXO3x&wm64{Z8BHL~M5nZqsA!!1WnHUK>Oh~mDR~=yIvtoj54@o=nf7-Vlh+)jF3#P3X7AWxJgh)D7AW)U^Hnfr&i6m4QM{%5 zEDoJ?0PygUFZtk6)bFmS=X zu}MNni|MOo@s|&O+fNEW-JNFDyUG$vM0e(HJ5JB;B_vQlc}WSz+J67XKi_@^hrS?z zQoa&hi3ExpWE|EFKI}l^>qr3rN653A(uc|zoqAl1WGvs6s^6VV<@2bgUMv2 z71)UNswPJAnf)QJ+_2j5yg5IK#^0N1*E3nofgB^hh=*XC%D)Yp0SQZ=r>mALk$>@2sDm)jiAdHu6 zlZ>?3JeD8yWhgd(TXaS;2h}b3w21`(tkibxI-#N)aAU$&m0pY+uu>eHhfC6` ziNHyT;Ft^!x2&gNvtRu~IZ)0Gya(EXkrW0B|MngRDD3Itic2lNCcm{ zg<{<&d@z529MCy=rn+%Ba?~hPf$94~)Ax=I_-Fd1m(w@RzDJLm{^t+i5h?f}l*Xv(Q)8i~|G=wN{Brt|VEU%wT^}x||BTu|G&->IiTT7cQT3<_u6rnzc=_3i z0||`;cM<+2Rq*jq^uI!J=|_}7y0i?v!KPxPN6vK!`%-F%7z3nG8V4QF z2m7TJ@^v6DsGnnkFbreHgCYq)<}eqdC;tKf{1u>;Doaf4KPHt5847+`Wm)=Ss3A!~ z3Jo0_54FpB;0@@1aA`$<0X4rb_$bM^?JsZ%7juX|PX=WDk(8#Efda?o!$q3d*w|nQ zw;d(_dzltNa~1{ks>zTf_P*o{8kA;%I5>;qV1pV^d<+)uCffMZv&FX1zXeDO@_fG7zDj8`eMlOD-O;3XjcsgMBbW(7U&|HtMA zu0K*U3@Wq9`l4pQ3m*AmJFSS)3~`V+#%b|%B0aFrP*w;TgzOG`jv8OqM+j5Rv6+`f zYbbKt{O^mh3?nw@UnnB|qr&MvcR=u;A2FD?|g6BH(8?D+f~Md2*Sn;vY5dxTVI$mP!asjM` z7^X9EsXl;E#G$N3Rr?Tj57eaXz$4PnKQ5yBG^GU;F@2rOeyO3BQ6k7hA%_au-p(+E zK+3KEO96@5&&ZRru(3_s7P{geEwwvfunYZL3XH(>^ET@oo0lVdc^NAEUuYG;g*7X~ zOJy<$C0{@^Y*3v?_EPULgE6*qP7_>mO^!McE>nhy0pqUbi{<}U?-@GKXxS{kOCm=r zf~G2miWg;7N!}Gk(UcE7lJ>RP7BxO@NX2p&s>Lw;Lmrgt^@+X*#UvGO2v%|IvkXWn zZGGYui~%b(ZHr>j0_^_3Gk*i1g;_GwQuAJAttdT*{eKS)O@RkFUcHnHkc~mYus#3S z_!q{kqG3{uiZk$ID>`Bb=>Rt1fQ zjLCRz&TSybB zAbvv--O^+Q51DvFOe(DEbt#~gZiUD4zl0la~y~- z?f1}2`<-&~CNnbEJ$D6+&j$V_Mgm0^bb$T`Q&TrkSLByLDe?>zV^mNo1{$7r<>ikb zLA^6B+*Y*#$10`spamg$g`yewB%%R>1u4aU7Q&3m%gHbNd0>ka!BOOr=ljYSNj2(v z2zk1DZG8~e8p=daR3B}EHF6>m(gg*+yK>1EQ0^`@FBB9@^{6yO2#QBf?L^^iHMqhEwbPyyeiS)8KthFsG=Z@=Qb#{pzv=KKip~-wq~j z_nn+M5?fZ%sqeF5&20#+id#4uJ2)%~9=L25RBqy;)lp9^?~0+p>e#c#?xSH+Pt~KL zSDiXqkdi_d`Dn)1V4}q40jzt%*=0ve*Js79Tt&whx%}us$Fy@^kT64iBVF}AovN3* zSGCV1;zS%ga;o)SB-*ow?JM#^5nKp&Ga5iGoN6`nFZzOxPR<&ZKyzMSSViF3-+J&5 zK3)O+e%5Vx2bbxvc^hP>iDfr`WA5(%bm}ESOx;V=THG^401e|*v7sOD4gS(ji{n*f z({9f}KbxIIj)721R%-7>NH)=t1Jotl`s+;N#i|>xzd-^T++w?m20Q0Y4!#a9Fww6T zd*#8YgECaBG*X!GCy0Ux{-@Kc;eaZ#V!v;qzM>-7`g`pjdX<~u>qlFOpJ80O*4-t6K!R5vIgQ?{kk3qADQ?7eZvj{->qmf|idgQa{RZe)w-yFuhPw&CO z0=I73Lbu*~Vgb_R9~nLd7b4V{F}QXC8WKUa1WVW-crXl}UGfoXG3SaGYq3%Z#42#b zgD!CP{<;_IWQ_X8ZD`o)5Uu!%gOPL4g)aEZgCTN&I||7px0iMhj%Y}9xQPP>SauRR z1|S(A4_L`W_w!d(caSxrz15|3B1x|Nbo)_4mv-sIT5DU^*RN#Ra_J$Q`2tB%dmW zfbU>RdiVe5B1wpiu6MrN663lbG_((3Xvs1377%4b8jv$=eH{j;#$mD>9xe>}pFTwz zaPXI~56iDyLGsCi{*sNuWbdaTh6&M&z&l##gGVJGir}NcYOs*Rag#&Ihnu-yr7qM* zJ;ZN>8z;nkYJBw0>s8NkUcs6CMbxQl9^Him_aEFC1N6m4rc$83s-wB=@mGyaGz5rx zYyb#EtdTZ!aRFUSRvHLSd=`nWuOqxm0?~jB5X8+OsX_)~n3pZ23W(S5purZ$ zhEOQEPrNlonlETfHk{7?EmciM2UmuUfKSi!fC09y44GOuRIYaWp+sv{g6cL1Z?4C zlHf;uw? zL#)4owuml(WtUmZtY*&d$mfdu>hc4>74RC(d7qRYg3WtjY?N%AAF}GnLSJlR0xl+2 z&d4LV*bT-vlZXV|lo=XIHq5v>&uGC{=MMm)>lea*Lmhfi1NBC9$B=+%o)(fv?0?Cl z6p%;ylsAw>fi6P-kw?x#q;8x_hvd=jH7PNK#TMwo$%gbEbdi49XSyZ2pD!ej{y-k7 zVjo%%BIOZ(i>{Z*un^F2Zbg zU^O?O|Iz<+bFP9U$ivv(|}Z+9CI|;{eXYEbo%IYlJiG`#g<`0vF_7!DPixwAiU#oyyzdf$b&r8BPWS+_+Ib!u_ z3y~tr8#i}2>1s_N+E*2I0A8C0?|2{>i5#X5X2xOw!@;{RYn^rtA7P~mk)#Tx6MT2yzt2qj>cma*K|uEJm$dB>Y)b6KUaWgZ5pXzs2FETFKN4HH zax}^L7;D+SL(Vxa_spPHKw#}rZO*GwM$X-nN6ssPyfKIMJ@frN^sDKAR|dtCNVhAj zkHOnh*_Pj$Tx^3nAO$InHyMhH%iSf*!mTlm!hH(WmP;a)j-OAahCo5VT-$VyjGLQx ze}~{{@5^ORb*lV}p5XpZL6xt69SFDae--Y{PZhIcl#Pyvprf!{($_vpr%GR$7W(?0 z0x4k7hZhbo`c}OauJRy}ZzY70qsE)!{`B?5@zIy?$mPH7xcvLkeUYZTxsEC+LQd9p ztM_d8*VLR)$8*Ot^C?T7 zkZ^F`b(wgmE|#6M>@SGTSI}6|<zdEjpS}XY#SAa(JY9MOu>i!}gAKekgk`1FR zS=r6e@UC$+26o>A78ERw(3J>3bu@+qm9itc-MG8)RN>h!{kLwb*Lv+rQVsyaEHh`< z8TbF8?5pFV+TMPTC@P?WNQfvP-6%+>2vX89G>RbIB{3i>as=s;?k;HJYb1O-tKSrfekX=vX?|T^SL|rq{8UbnGzx0j*JEANSTf zf_+(F{O5zN5)1UTCE=&Wo^4`}AK%(D$X*@DE&Aa0lVmhezKRdqK9f|h#Kn(Uw@^C| zRhVmUym4HQ880$L3mbdLbdVDOC-WwxkpMCLzeey~0;`$V#}#UUYqtJz0zt)`IUu zT|$-=GEOONeOEIr*~AmtSgv1%4OYjSSDJn+Q+hJ9`~EwY`QQ-#`%YaXRi!~^6mM|k z@=3*A&%CXBceOEqeY|Y#ITmBiyS>L=cK12riD5}U%CxLTQB+zSWjbHl5h4;HUVNG} zGGB^dyET;GwbK_8Ah|JW)$Iz5PT08XZcEe5Dc#DzvB~yP_fU6Fnyk#s&^I~D^=>UgKLg2wwxSa+8I^4o2SSoNCg_Qff*T+kPmnge_#2<3D0Qx znpJHiH7Lj5_xIJOqob2}{YFrx+Q`swW#IxQq4r5%jj$1jyZ0<6BZlo%_z`xqQo_Y> zFbH`c4Aoa6h=dM-na9uz36b0whuO*gkxSI!QDnt*o_V3Y5(XR^Om%kh zYh+)GR_Q6~?#L#zMc$i(wfMyaCA%E<@A)sKzO{1pYJ>1lKj}Io4UzlUs{x%s`KOXW z)#*jDI$k0X479iILNX>uu3I`jZLM+GqGl3o=u`dkpRh7&^LMS(DbjZ>xsaIu#?(_@ zuTNFuKn=49JT3N2b(MG z9w(I585%{j>^5K2k*9T^A8j@#*Y6xR`jNI|v(-N3m&I9CH{4yVDAb>0)F?gTR%G(f zv1Nxt767)wLek}yENYME?T`(*dc@4(KW_;2x2><*Rgy8Imsc`3>%VE(E_Pi{ zp7bGPk~B8{Ti|rnnnk@|n@wK6vum_HjzivYeJnR3({XK7hstTJTgFr+|3%D(RD#)D zYyaj~&YMpv`es-~7X0u}vcbn_Y#vO`B-Z9nb=bUiE zQf3XR-5QJYH!rmIsn;G`zRS_6)crnlLkx3#d9YH_WoP+rEWblvL}<}?d~SSsInP0D zKx6Ylya!8d?x9Y6dK722OlLGoYOZVxk9o-A}c z+sL`fHhfqlLUU&&{ve)^@0($Wf1bi4)^0K)&DXEZ#mQNlGEM4OAa(_5-M+E1%f*WZaCezs!?!e*tMNP#J8_4s)n_3e>q z)Uz5*44nfJ9ymqivBIEpI;BAmbnfl%J-vYH7$vZ|3$92(f$5lg*qxkEz@GyAgiQU) z;d^y#)>pIZ+NxF{u_jVi@+FDgBSfuUvYB1HzvOI3o@~6EW0HiSJX*RDcyj*T@?1oj zG3|`7`=l|)bchuD(pLV5=cE4E_;+}1Rd6vf3k_xFrNzX`d9XEy^T}TDPww&^#tx>8 zmmrqBlXcyd-6PT2xs09J*rdpVgA19e+3$4M7x|p!KJnk=UA`L0Z{?|LYnC6kx&3$3 zs%hsMnSi}IE_Y_|;v)T$eZ7NAYPMOX$Y9A@<>FeOAghjm#3Vxa#jyZF*Y)_$49{st zbbdgn|DDm5hF!Y^QHM&WjsEjbvwDaY`O>^fFOJ#8Kg)~XpTy;~TH!YD3s^m`lRN5o zFDh5FLPS(lbo)8s#}(JX>c=`Ku@hx`Js1}CAM~|^83PBjagtbc3&%2w)-ouDIH<_V z?rg%v66oMlJQW4$I~H{m9FFd%)BzJPH?%8Ug>q8%WX)DBWsYHPp}Y3d;i?f`zv-|B zqs~~XM#-oxhK}WXWB3A7VoxQM!mChoA3`*n8ZMx2S1Q0)SE#};Rn49t>A}ca;(-9n97R)ux6< zDOgEqFW?8P2j%+K-tX=yqTR_~W3lOH+g(jL)pW&Q#Lo^VEi#QpAZ+b|k;c-w%&BT0 zZHqI*!b>gr(Xv#fVOgv7V!NKKCG7n;Y&E9#y=e|IiqDb(4v=K}u2yQc$RNtWV>z*) zfZV@~GvX5Y&79mWLdHSUY-E3iqK;m}@|sge-n~@O7lN+#A?$|wvjBm16L`HJA=nQy z+f|!e%bPv;8Osf{ey*ev$A_B$J{9ARvyT^z(*C&8U$f&6<0aoU9DmHA$1x^3# z7nsYJ?FlIo;rmSqTxK2)Vx7#B-&vNvfU44;p@zjTioL3SU*|in`BoM&hK_E54Lip`$^@Jm4L%g+1mGlxwwQ_6TihunZn}P1mB$zPF z;@~W&QjukAvha{~lqdVaoy9_RG4Tr4mkBEs3wm6lJZu3jawx}&yYe5Kg}ON1zTy;` zA6Oj@xsLUz#(7wlmj*{_nu5^~dhR;&oq7i4<=FPaw@PaBqOS{Ro<&uKsx9(G^UVXf z{Igxt^_yRx<4UcKlx*{%!%|fKHa;0E@}xrCWlHWnbzIHoKWKa3^XVZnxg|~zUEKd^ z_h!>B{~bQ;yl#%0_%gN`Lz@k&|o>_D@kZ*V3a1g@@ zI=v{!xW)gLLcmJc0M&wr-d8{t;MFT)43ZYC&B2^gJD0S>o-rBAa;-1VTZxQABBSU} zzoEa)83|~P?S{U6>qX2nsN=aL5>a|Nq*YYshsa2VzXIHZg0e1}$acc(wx7If4mV%4S$sXZJ3v&(Ef z-@biYeno@C?{u^PmkKF7W0t8{9n~$ibL=rgdkaXEDWY@mylUQ;=iqqn9%mf)6+hs0 z+%7*Vn$vTh>o4o_DQ(f1^>l=!NVy*RuDq z>vFdQS)e=8mDFMNR|x@ZTsbI`|KoPgO%hrYEi!s2-e5p%DGiryk8Q;rCEJ&Y4o22j zYRBatRu;ECeb1=H>oIuvvpd(!;Pf5lwH0$O7FS`Ghj$Z8ANA&g;azem-TU&_#$mHTfM-p(nAN??ms>4<&0L_2LgM5aD8$!ZZi1CU z{I2zUv*mE9flqHy#b3I>W3U3clO6|za2n!9($^B*@qNqpU znJ0WYM&0}3TPT3J-FnDAgK@g{^2Q=6*U4kJ_B3JQ(aF=1h>-N=@_^HbQ})B3t%SAG zAXjet@e#NU&-0h&R;+45c1B*B4|aOomGERG3|C5IK(7H1dGJQsaRTwxJM0Q7#%=Cs z<1xC;euVN4C5I;~r^lpRENiw}ei#TCN1O~-`El%rwau^gJM{1LbFEIJQ%-e|=Biat zg$>@0%jMUBfG_@S3S04b!e;VCM#4LE4kPvzsQ#Lm| zHnpcAH)bH)C)c+o`0I0YOsPrNv>bzSYF@945#a??OpAg)boD98x-7z)oeh!$?)z+)dreG|4!mZm~g7C35 z!ZK9Qz?qDwe_*z=+;tFR^G9ZjXng0Hl4O-2`g`j7MEWTFP@q5 z(Mzb{Vi5#xeflTQyw2MF$Bpv)eT(vIUqKQMICOJmlkVKD)mZj|yZaoP)+T-vO>c0o zguAY<8*N8KMlz6)kQ~}bOGj;&A6!EUv$HFOv&JQFRB9$Nv9RcjI4o*T-F6Uk&_T=Y zIR9+eF+lIeHs0m|?nKmKccEsd1HD;~TeO|zO@52<{NbdD9!va_BW%N9l0C&?U$5QaOCsh4iZNg3Nao2Jec^Y^{%QeOQvvRoE3h_9;(a>B z6Dw)U3uE-l3#C|_{y1{`n6lMfh4s9ST6RwSeNEfK+a9Bp%jpL!0aC_d#mETEUHSDB z8OPHTJ5O7!hjZ^NQeOCyntP{#ib-Tz(p^}hw4aW|P;Myx;miiJh=x|zQT(}LqGj9S z>x;H2qENT+m52?_&?PV*a0Y#lw+=X1f+>Jn{u|;mauZNg3?;T(@U`F5x`crv!kIo zG4G&0HGCvmPg7-Ian#`KZ&%1}aJ=2^+`5X(x@MaXvQB+H1Jg*9Lk|Zsl*tM++%8R-qGXCUdonNDjVNBnev z2Jmp!$5E0XACsv@5id0b2yltIpC02P!E>y51FDpkRc(4a6saC8)>m20yIvH0no~T- z+Qo@%3}AQpHcVL8$J3vs*&d~vMsw}Wj%tm0w#D_uo{9s{e{2Rp_FtZP`g5svkT5)P z=s&q1^5b9El3F&dHSnQV7V3;0I;CWkZ}7O3hoQ41m2TMENzTtF%f_T!lJ~$ke$UtX zHfKl6lfl=|jN*xTv$(geD*1O%bG(xN)?iP*kfB8T{#>)L;LNry_B z488ThGw-!PD14^1MLbja*$r9`2`Z|cQ|zmFv|lqjTY*ea7uO&5C9G9-9buC)n=Ow< zE`7JM-}l?NfMPwmZF32>d<$?PZC;Polu3$fP%X4dPV@_9hpMUT1=Oas^;rf&g@NVm z*t}~v$y+_zW<}2WIdOp~!FJ@Ho)-uY_~c#vO$to4YJ_}df4nImZws|bUqK4)%u@BB zceOsa_hYNXyK`yO#0WIdyUs7sr3|ugFEs(jUN2Ea(H4H1R<<-&k^I4BNkecuSyZi4 z=(Lbo2lZvKvsYwLo})I5QI(OnyhfA8v~@6^TK!KBiXLW@mWrW>>xZEsHo8+mA1XWb!*baD9n8!aYDQYAhggK&0tedaQO564Z74(*)mdxbr6Sa9j<>IoQulN z@9R{ZS?YC4SRF2s7pCnp3@n6e%+OvDL_;c(ocjDsC71)lUn)`R7h645(z6S-VghNv zwr6gkUBd@A!8rb^MV~mOnhwJSZ0*%dcNLEgE-SK|_=~n_QoQi-clWg64>4%Z{BYE8 zXfynY!a3a}=B-J5AYIp7;NPOZlrAvSD=4HVSBaIed0Gd=na!fGd8xxBXnw*=^*NQ2 znuq$^|Mrd~fAVo0%Oo-Fh^4nkgzRestZsVO6;5f<=m>dgI;P%f770*nig4tuY!0r! z$cim{3DqZoD5f5C#bM#%9Ppa zB`aTS<4jr1n7-;!F4c+Dww*%PJzX$(A|zMcs@DGJ?c@D$Ep%(*Bcq5=QucjI!0Zmm z=&!1Y<)iB41uo9SWXaYppWlzLw-4J4iH^BygWPFXnbBPS4urm8e7Bfn@-$`AsM0Jy z7`;)62o4T580fS!1i_|D#UUte|FWh~LPpO8;_imWGG`$cje5d8&%FB6Bic)+n&0j1 z{rJYIy63X_bIbC1KG_u99xiOHq3?9>CBv1;TrASd2uc6aaL$vJm`4RJ8Q#Poy}>?L zZSlU*<|Ov|)i%i)_C%Nao_R-nx8VRU)E?Z72KlaB7}kU%;IcM-tv^7@ zrzcPg+mcxwUD9cIH2>gR>WJQmbD&sQwkdyqG6M8FEI8?qHrZQ1`#4_% zyV?Brbb!>${ffC}kW#4#_oj7*-rsOnPmm#eH&VPr{#=}i!!r-m2E%}trsioic`Hv#Xq=C&QrXw1Qr!U%E1VN33-2rCt{LvSC*+LgMmXyrp10WF zVyigyY}#~6Bp;n51tFB!SqKGLLvcos>qzo0!N8I_i3`{_7WqEe1nqvZD(Ma4s#to6 z6~M4kJW=y~ae%YXqaFjDB!G@^tUx5SsWNW5S3us=!UAl@%sQnL zSxoyZwOnSFDDHl>Fx10adM;8YwEE=gGplYW+@;006eugVqc}-{M#ja;wOw8?r?V^^=;gptA))YYEP)jzm z`)3vadx8f!l9`b{oeM2ywrRt!#~Z(KkW zg#btug5H1Uf_3T&II$No&p=5+6rfIYiT1q~l)qyrP@GIT4i~sZEd^cjekV1~WEC`I zx+5DulaUCD#Nl&2L`#K4dI@da?S!hs??cj4+&~3iF|+uzv>LrDv%$YU5TJ6?_~(~+ z8v4aCwwo4fG1XZ@Z%V+NlEyic;FuUnU`+!z=h~!9SOnCxqp`JP`5ZKRdU{e_cCsFK zwT$odIZH{kD5X7F5+Lj7X#4gpluE*X>285^7$cwAyiEmamNJYgfv1d=6Sd*F0G{q>G{I1qR}&lWpmTL%Polb%DM~b5YpN;0t0{(PaZ?3MANZb*!S6Pn~ToRsH^svm>OcaJ*wtR z_7x~8s}&HFh^KY#E8-qsA#p1k6HLelm;xzN)2yn!&peTwE5y|+c_XcQpu*KL+Gb4# z9qwPT-#I3c1g59yah{MVKF6Z)Q6%EBN)+M~)JW6R42 zr2QtnI*ff5;k83^_dQu71XQ4`?;K0ub3$hmyVtiR+Z`9JrIr+&=Y!d8*RyvzxIi2j z=zHem@tJ{9yC8q942E`0DFF5TrwkyS0pbmOzWZYkssnEdBklrX>E_#``O=k+hy{ij$c6nbWR3x7 zfUT7n4*aLn8;~UTHiX++#yxn&O&k{NMzWUY)q{AS+^$G}s4%|d1-1z@83nmytK5hqq- zV($aw>HoS;Lc)+=dzhr{pgM}-K=4~+KzOfQ!2w+NGlmsu$^*j-%l^(#xun0j#u`DY zbAD6FC8VO<${Lg0>Il8-z_(Ji)}qOTM|up(b4db*>(?&ZSKLS<1DkaDiRberUiPE> zm+5b6b04Q{XWUx)1Wx^Lsr>l_uUZ=?=HlJm{+@IOeEDiAIyb9 z=B!uyDPPa^w|%Gn`u&q8=x#YC5FbiRAD(vcG;RuEYDw+*>DZv5{W&i>==)iG; z5JnVJ>J*$OA8(&5aPwAs_|9BB4O6RJ)l~El7zfp+zWiz1T%lWwn*?6F{~kHeN|6Ja z&r7EXUwl6TGTiHG{ixZ)bNI>yX$+r^Nr{?4y)CBH!nXGfKAG}>N%bEZiJ>)B7DBSw zl1H6>nT?B)YUg>3#|#Cijo6>nMnV;Um}ubyCyeu!4?Z zm!osMmlGOt5peQHS^P zWa9#FVAPuZr_@JpVg@pOzUF90?38ZRm*|NKW_#7QdR44<))XzKS!RQj6 zzyXGy799weDb-lI2*ncGE;cd!VGl1GlYf(u3)%nrpqD&uv|=ygLp++z{_Ix!#gL?i zBTWjQHCD9$0fv-zoLkPU$UNS_rW4#?iQ41nZDP;~G;haQSGM?}ss&0LR9 zwU9&U&V(eW9i@tnzqq!tiX*>V=Yq{>DMc9on_c&{|{fiKI3} z*_|kNnl8gApLbv*Me0BRgZ(k{MFPC5rvQEWJ@@~iH&ddQXXg#tP#Y7rE=!<#Dpl`) z96K<|xSJEnLg#2ve23^IO9vt9H8W95$vpldV}jhdKQ!qaaCS_u=;9M$&&mu|jc8p; z-t4TB*TLpI+Z~SR#`{^O2DkyxuOavG)eg*2VkI^-a|3#37QMB_Qw>)L#Rz=qK-NfxsxNF&|sV z1&%WeFJMl2JvN;E{;|koBeLSDeQ#-SuVI2p9-diR#cjbL3SLrLsqY>AX(PRtAxTr* zgU;}L6$ezy24@%m8aG#MHXvb60r6p1@fv-FUP$2$p_{aMYo1rPX#wb)2(E*8SS}@z zOyJ-Bj7u#)Z2>aIR(~O$wNo{$-Bpk^aaz%GbeJ1pK~p=5)JxiH&hP&5=+JV(UDwAr z;I#*0`cQU-f!fDOoZx4I=KvYF#``QUC6;%o6sc}tV$ySbj_Shv?pwF3pi+5$8t#OM z$QjK`OFQNv@Oek9LUnsEo^_Nqv9hudN}JT;p{=rSk};>gW-fhH2D&F>_}$RC25@k& z(xi3r(LidPcj(|kJ`bLPXP&27?4{sI%Ug7+#dr~Az@}Nv@xVa+x-bB({iUdv zL&d=AX>8QW>A<7>b;c{WXYE@N-2`s3Z*r)axJL<%-%j1I1 zKjULp__GM`pV~_bXK|PkkYZS0 zQ~(6>?lxd2fVZa?L!1PxQ*{!fWG|q?)^<-XZR2yzvo$rH6#e7yU2)xw8;hG!{x{&I z-3Hdu_Lb-v8tgqW*s$;Ef0M$2Uo#!BMC6yffolGRL8A#w{`)vG%WIIOxarx8J`F>z z%u9iOFyeV$&mwl_$RZ=wHJrU=w^1qJbV2>*0w(75#lp`&|A_4V!k`4oN&HJWUsZ}A zX7V0Uv*!gjJy?354(X_^+rq`Ng)A!e^2v4O7(VWa1{&A9lF;_#VZ5B+G*GynI z3EoGHJPe)oZ10xy2npA#%6a4U_!{YcViJ+)gr<&a3B#i?kLnt-vvYCb-K%U7L~giF zN>9Ut2T3U4)tnByDy6YZUcdR{!x{5~=^O$eZ_)WgWmk!PAqcN;uEsdF?W3(_GC?q) zdg0-4`N~^j#LSsw^oW~*^1OXBN^>&BrFf3bNefDRN*_OZpFJTWEgp>?53LjeC%aG2 z4_FKnB`BykbMPSWhAiPHETeMxFAL%nOoAE!93l1C_O(F@wWQ+<)a(l*DdU%+Zy$@v zsAwC$&s0}temLRr*Tk?0VDda}oG%IHLBzID|}Wv5=p+Oz;M(0*j=c zF+KFpSOj_cvDf(EPg_#~KXetZAHKI7rmbBe4HbiKA-fVazo2T)h(}Vc522DYI_B}q z6wsvW-ld9(+pzGW^JMikKGi5`AN95QGZnqO9|3I2X_P!n^8tnrMu;}J!g#YOQ4o=% z0uQxGVRK0e49-M`4P2(G^CE!R4S6`cT4!(nNeTi1ZDE$RhV^BLH1zb0Gz6R6zdXM~ zh9CyD?Fa8?-2w3#^uOcuwv9M+WB|1VU=cJv!RqyYuwGz#gF}bEApFrSHUL>ZincrZ z$1hj_w+nJ~YHscb5yW&kFTCor+n)QA(E=Xk?4~a}VTo!>f(Ij3iZ_F||0T4)q?{cv z7NR`xjNRaH*U0zm?LR|bkS~8_gqRAiVP4R$TV3!0u_VG~xrh5qW4s9do@5$$TkS#@ z&bKD(Fb^Z#BlT0^bN))oGcr8NwhN!ZB8M)uWVdM?0Biq2JU6iXs73m1%UsDUY3NJ+ z1NCWx72^#t_I%7X7a{W8g8V3#u=L;Ovf!s5+W<(f?RhayXaOPxIO==M{rS&! zIc}u^(vYuut{SK_3%$|)XT6ZMCWjb5k3t%9VK;OkuFiQMFwXMoT($1&gS}4RfiyIo z6?vwi-atdYE2PT9QqaG_gA38z2uD}D?}Izy1p*0T*p84q057I`F&c;DjjYI!zR!5bOBtPc-UN0&XI2L=ad2`*Rf%(?cK`As&-4cIdiO&~=Zl*8PC2 zrQWZ*9*ji4Mnf1~=~A$$U_s$Am~18T(DOUCy@>`Zh7M*011!rkEBzly%3q%Ntkz^g z2@gRvq4rWaq*ZlIkO3chYf}j?5Uh?HUfnDCUwiJheCKmJv`aLg5{P&oPiYAUAQbT; zHkhcdQB0pd-_7X?>x_N`Z4Pv9zz+<_VvEQNzkyFM{SwB)G{jhxK8$_^b2Hs!KyGT) zPV5A;)&30{_QUI(UqXb%vI+b#7O)2jJ&=ptCi#8>Uw0FS0FmHJh}x8~gG=|2`G8dV z_o~4vABmiLshwy^$={P^b{HW==Q)xsy1ehp))`j4k<7|VqjTAw7p;S` zH{p`i8Gbt{#RDhhqe;=FVKJ=dQ*FJ}on&_olj-oOjq0hT#wtcsT+h(S6i;sq#cFDv z$odrBxs~tTo4kE|x1{u@VV+}aiK{y0N^#I)hBc!711i=vpmo3E^j6a^Xv|Z!DN#W{ zmPs=b0lM^G4KfD9IPHB4+ zDWH%3#SCX`B3L^pM1Vvw7r%0t!?y~iOAutXuZY|q5Ooj&r9L0H)OVR6u})LQIla2S zI8D+}%1+ZN`>EG&%s~T-wE&gqwKQ@5>L*YUeeD`;*PM0?#B=cgc=yZU0&S6R$dmp9n7Y7@VHY zCxqN^bn_z~IJ60D_#!oc;tBJqx$4K*fXt`#fC3zu3BfEgyvq=YQZrmeE2T|30g#Ld z{)1#(gfVdeMaweAN}|F0g6-ii{vRHXJVvVM8^f+0VwviZFj<}Z-~_RkT7-UO*oZcj zr#jmyA5DrhL;jZaAp|4hZ_fT5P(#rl-}a+6*D=i!JVWB)0m<0ji4SbP)lS35IHoel zzeh$GmmZb$4;$d}%dINwQO{m>!zD>OC2{<6#&O#b%UzVaa3_H zwinjOzdZHv7Dp33A7m&FtZjYyhd-TtlhzaFD*h7V57l$>=XEOg?u6)Z-3}I%=-gip ztgt$J^GGd0ZjRmdxv#0MVy<*r)>xXl}*InZD)vfim5>i9j(D2nXE?162`eFejH5v z5`B|vsW1G)wvYK`V;}t^JSB?t&x2yEs$oOyifJfWo)F3kDeu`K`OZHCtVB_$Bv?@D ztbNLjFqZt3ndcm5>hu0FtaT04Q(*TsJZ=XfoA7;?^8Q)i0tW6xpIB?dTi5NXA1X>H zx1%lEg;=Gt_P@w|tiCK2O_$=VXPeH6s>M9SAP9`YLH(wm0Q*9RDF8T0bks7YFG@c| zmq@V}+Pc|(8-x5TWNqjb7$2yUEq9Ai){9cJa*b@`;hK8pv0vhDY1yFtDC7;5WT5!c zOXNur6Lp1-UZ!Sd&RY`?kH}&65|02fAxBN=W3(SN;CRdvjKH6zP%ywy&2v=)OToJy z>jJvvq*JhkJ9j~VV6ivRQ-wjfwQuW7;1oqmOABBnB;Id_&F`5cf0#ikx=c=pz7`jF zgJGE6V%V{^^w}@dupcb4;Ycjwm4TP3TK)Qh87@Y9+&H_wX^Hc zhl*GmeE515DWxP67A{SwFSxui^!~#8W~tC*yT?*;F2NEDJ-_A|SYhg~=rIh?I>|h- ze|yqoE-WC=`HT1KnM6dty7h%7I-vR89k+Wm!0ewn;M+K2Uf!)pZmw{=HH7wr0Nb|? z!h_j}_Tb>SxqXb#Uz+fMn6>&O~2fWeyrLWQf@^Iv9 zipp{4?sEqAg}w2bt955+Op2*X7~>J>9-x3eE69xHa;wt>Jn~z@TRSpKl4qQj5aF4Tfc%` z1=Q{wzRleE;4q7w{Wo6AE&}p9k7MoN?Zc*0An3$-R4m_jx{Ve(FxqJOGKRhI>#(Yc zfO7Hjkb)>pnL;N{5w&EEZgH4GgqF>%Gc8k_>KT~>U(2l-oJ-@=elh3`m?eo_2sq@= ze)5w4abi92e}JAsBYAvaPX2sQU=S0|z(z!UdhqdkuYxljoVtOb+9uw1HDWMyNa^8W znNUN+V^`#)gnz>dldIQhg@_#6p<>Rk+ndC}k1_B-fhiS=v|&P}EF>FmBq?hcQ=_!l z%a6UKd5k?h9CM35FE9{?vob{2M7+I|t<9MZ`7U5T@-Hxdex_6~*B-1>8IloJnx*2i zl|}A=->F=kHX{aq1owi^jPrCF@@Jv-u~19T39G@GCr`-0j2i4!<2F%}W#?e`oppYu zo_SBBa4GPpB1Dze*ClTeuHT4IKj4wftE~!ukV&}EuqB!eB4f&~2GSO%3x!2RhJfQV z!X0ZU1A#?8-P>?4SmCFdKO=dA^?7cwLAZ!<6KPXa%m5$~L{rJ78?<@eXu*$IeI~%7U^6GL%t*;K=GtRX2^vcHDC$KTn=`(h~|&yqv204p31 zJ`Z^(PJId649`nO)oUhtKRyOG5pL@}91Z+RB7s_ty$MLMqhI zbH}9GnKD zySua`w|Q+Pt@bo%no1XslgLObAR5*BBb}_DjFouJ+c`!jpQnxPWWx@EdmPe0Y`M-4 zFROUiBqsl{kRl@31mX!y6w^0Wv#UB@0rO-E7B;5LbH>*D?ATg8g!@{SfVFS1qd7u#

>N1F9NXWIN5!u;32xhab1%`s8aTc6i?^zK?nEtduB zJtsYPp@*y$DGxnu(ISJ&@Ebd!H(Fkc3`rJdCtLod*817$ zlI&C!oA!$evoSD8HTs>ZxbHs;w^_#N48SYVL?~KRRH(5~q_O;*e<=BcZjlu=bWzv!69cKhRYRYky>g3v8~O)z%Y zPOw}qoVp$!?yWDcWLP?X7zG)Fp`%Ia18p}@~V&0NTud&uq5Oe zE}>h%(8#|G#r;A^m*WK2p{~_GLHPgVH|atVg+OtYi)msPQC!Ez0acr=T7{=|!-N?G zvsCr#5tWDIiqvU(NI_Mh!&>?68i<#Rdo(8a!~Ix2H*lwIl?4Cx?U)74-Oo8kO!k@Y z7+-DADjPjgBV4b_s{%Mptam_#ATkRubb)Hv)vs-=f|HynGnWB22o7TFxqM+)>$D znv@L>4JD{B>N$SJx-Bt47%!0Tox_ARgy0m?p?h@zjuwVY;(A2 z#K%C-?Z8hr;#8uS)^F~3ZvvvLvQT_vUE_<<$}}GiuE4*3JuhD0Lss>ZLHF(VK76DX zNCDebFfgrEk8CH#e$DpHh~e*o!x4mnn3QEW|3`1-SL*cNO3f3WG64e&ACqahVn6Qa zdMfaYH9E2~EZcl-ta<_>MMuC(bS zv))c zvrZOX_ewGgn9he;u7YtX$<C^nZA;te-4IcFeQMoq0?WAT+@_8y8_-E3|c-`mcJGP2+YBNRA(|d{dgt@ zbIT)`-B5a^>6c3y*t0mthgPlZ!+ufZ9+MTF`B=iAEF_M5uX{8*VGxk&6E^_Ur*EkC zaPx*>Xe#1l@A)tI?vlju#xj_(Q6oR8m+maI|KrA?J4F2Pm73W(HtF@ilVGxUSaks78ngU zcf1h_k$ZM$5Xfw^PrtjLCjeQ|re_px^ZPIVGnv$R0fxN&dsS)O1hb_=LiX=V5w{QR zm-`fTUFR?%i3msTSGaMR6i!sRma%U3_{y)K&tiv|s|1;U_2g^r(=juDTO0t|Nx(Ox z=ov5H=s|J+{{6z|O{`0U9-k(pF%#!IW0$6`boy$Rtv!v|uHT!K+%Z-4n>pgoufDJO zqWw^u&HejN@6^saWy|P)tVzvjYg;GyHlo3{rQV;1jH+1*B+N%UbXZteLC#ymtuj=4 zgQJW^p654u_AG?sJWdRU0ZiJx{N=Rydw+j?5JP~dwYlrA(Ho0WyS^2OL#JlJ$yK77 zqyF$kXH?oo?dfNp1IOhnNRO{Snr2J2I`eGj=>f5a9$@Qz+;|*|-Q(7poFBCj%v>~)KzCc#}UXydxq;N+#_oNGgP5C$@to{~P23tsN483q?98-SH zuD`C+M#8y6X@kRa!vCC{bHbo)H0K@C8uGRk!kR-B?t5mTna1K6d$atU#t;D!QT|NBd{?Td#MwkS>*WS{o;gS;}C3fgY<> z_cs&7KdhnZ38FEjOW7WJOaVfUT;B!?p1V44?F1c41OLlb!VnF6azwU%=Do1Uc1K~r zh1ZHq-r6A9eq}yfsG1+O*>0q?m&E6i!7L>7kS&^j!Ic4#ms7Jr-&Fz}yYu{TkUxr5 zAx+efQ9G@4UC@Pe(LkC6yu=}q$^_lAOJFOAC+o>~ubZ&?m@ z_7uB8-QcLGtie(5Adpzk9m)y%p$OaNTflq)Mwm1dyFJ|0v)?1LjU?QR5(K!at0gWG zMQdx^df{9an)4coX0J>2HGJn~@5Hg6F}l>N*Ap*!8!wawgMlCY0sW?$rm8HXK=XIn z*lJrd5EI3m-3TI%YnyA^E2CQPuGDC;A&s^#vCp96w~tTJ#vf`JV{C7Aor15nE(B3x z_F(4INm48S>soc@{jHdXS%wFwdAN}TdE*~YtJR$&?8=4Tiu^xu(x3_U@fEhcMxTe8 z1=F*=w8@Sr&J~01U_;F*df6!M${YnIyWz&YbyxBhr`~V54^lfcs;o=JBqWy7fk}>Y z*}T4lM6&m1wV(scO3T{k zuL|`0>^g-Qxc62qvsr)efkbP8_&>E=+zr(vKU^tS;lQ4^@d3c75 zla^ITOEL*jamW)xWGxtmwORkcYTG)JasR|Ses;}CsB1-q!nAqHbsLEgUPUb05-##N zEEn6aIc86&LSA7xJ1_A4DOy|DeJ6}K#V*~y(eO54n_SMbsx6vkB7BXW{2K6KH_uTm zN82!`*|A^M!tYfKwo^$}m6xM@^)?;?M8O{jJIn#cWI2NGA8S%K2!oG6)!Sq#GB`Fi zIrmN5*-X6u(pigiV;RT0_SOXQs#AWchcfqWhn$^IU{pf;>|2_fgJZ_D-3L`uQ1<_M zp?zOrJOB2GNvV4Kd#|m=j0{f9&d?3{ zw!}vg+nW&*f^<5SV+k98mYmrtK}P!Qt-A`(;;~a_?#(daAE~dO23)Ds`|{<>w!5;D zlHt)?dBc(I$isreXXMlz*lUh}gEX5Khy2iA62)monP0mbtU|BXVa(|?fkDE%Jm&M_ z{KgU;?wIgU27(`aWoOXCH{?BSfS}>0n(^)$2|XBm^R#%p&@g+9WAWT^Imm+9SDH48 z=f?YzuU`+lbOdtvU_i$O%sYaTLJf0sl3oy=3z4}Vk!XOqRwIOHv^wggTpVE;kk)4Y zYc4PYEeXS<)Z!%HcXraF>^;hgFr&z8EjUDZ7PW%&Za$nXmTr1Fb-OMGyJOgjt>&I6 zNR;|({{9V;t=oWzI!d);e6fK!rydO-GpvuvnU|xff5%<__d^6wNGvQxLzl8@6z=i! zBYH}@!c@`u=H|s>65<4hsO3HFpGHbz$8k)IluvN{FbPree*%4=^T^|Yp)nHCWn?r* zfW|D@zz70Cq*Q;+zEG9Q$51werf3Np+5O5)0lB>-_ebS&_c>R)r(Nty zvikG4Jo<#5-qM`1FX0QtrU%6Ej_v77Mu;y!+eb=~-rMB&`WDTOnl{?zSfWUptf~(3 zj`n-aXVksIRjM_S--rwfRVM)PKwx_cZ#1!Y5SqC}tn1dFfp~5@u+0uC4>{)D7*F_} z*148V2Xa{Tt3l7-3X@V{m%%#zg~E zbDHmH-jhXAwI5;n8VuyTbFUjsY!8q2`og^a$^h;y}j)@}nW6qU<6{e!wH9c#UqfPYD#9sfO#dEjsK*X@q-zPk0Q61ni?6^mX=61 z52KU)T#~ok_;JTP^2h9)gbO}uH`WPFh2}HOeA2D=$ly}=hP1twqe?E@PLag->k;hZSR>qAZ zni%PK$IJ9Gbhv&S$9zmcsidJzH9fs79j4jeYBH%}e4<5rbSwDte;YoZqqnX(uj8YR zWY{5Db5b>wmXI=!qz~v1h?NZN>Ux@~l=z`(!4~5`(;<*aW$C*tBTo)T)GshC@p z83urs-vTug7$^WFe0bP)uAlqn2EN3zyU9wU6>|eMjajOl!h50HtKBT}2`gtop36u) z<)v$6!CF?8ZS;JUkAi^+`&gl$3Cha8Zm( z*uJKeD#=DEix;Sy;&YiE8^cGRSWF~}fMMx4n)}&6MZ0ccgbdB8qNS6OQTow~U0Z&u z)2%4wUfQcI|BJV;4618ex=jcK3lcQA1q&7+xN8XR?(Xgy+$}(GXXEZ{EFrkNOMu|+ z4sUVpN$$zH_tf|5t5>gT|5yRC*P6ZN?AbkfjGjY7Qzo<YR46s*oItCLeVvH}+JdR(u zU0?5xS*#dn(*?$YGm4akEM;$VQOb=iXO0!@PdDkW_b$fXBqa#M5AGFwSbcuvXKQ$b z4_~WX58@Au;0kMEueK8KaDCYDmjHdmfaHDh=VzYk z{#_^Z-qWYZPyVNmwIm@8q=tHOe*P=)06a2A4>^|wTUq96;+G8R6)#fY)Fw`ElK=P` z?-%b0OCU8~gm5{)=Bdf&^X>~aR0PsGLdH=-Y6OpptU*$9gFWxquP!e|zRK955#Zs` z95;Q~-Fu_e!ik2A9ECf>KCpTno{Wa}>h(@Kmm725*650$wDenz=4+(2o|})#4&+9h zL`tgTum(O)U_Soq!z)bmy)a{Ea*r_NWhf?R0s$3W7vE1~{Ibg5F9<;}IdK`G zbEwpsX(wkrq78OebC!!8R4fI&X-|%a_T9gl&m|HO{k+k?@0f%lBF2Zwa+~X%UTOW6 z^T*!a=6v@HA>#&y$PBaA!!SVj((@rhd4yOVeEO{?k@Ohim&Lv9`Mv;$Vv{o4uJ!TF z+_{em-O0fIhbe#k`L7G_YLckW!08JWgpS6_uhD5^yD&a>=Ns#)O=Xk9&x%G05UaQJLw+u@zjewLs2cWRh=UhT6&Qe^vv zFYq6JS&aelsS=ci(a-})xcV*xPHQ$jlfKXX|KhmsZw)hu$Ag^_97A?WE)VXXTeD;=wV0 zGk0RZ6G)B3T%ffqaug)Qvu9h^XUT}~;LzWQczU)V+OYmltBwPbaI;bX)`XW(54GO& z?m5)+=WOq?^m_tvBW!+uwZ3 zo&9L<;*@`4gTiUwPYLcrhbc%@W@KdKbS+*Bo<4?v>t=VXKsL7_DkDRi-FZ{Y_0}s= z#`IN-_I0$T6K(ch>LJqnW_WLXlBiLi(in27k$#nvl*x-kqqJP^W;a%@ zbXoG}2>2f!ZtcR;+$%YoCt96E(e#;QQ;H6y%%O zj0(Mg4vqs$!6N2V!TXIZ5N6SEbpdLMVZ1U|s%AnjIUu~`1LAV2>hYt4uq>XTdm(|q z@MsgI5_R!NZdvw`op}jud^Z5B1fAh9%K^KX@zSD2ER$I;oPs@{QZPyfrQ7-LJNM}) za7{S+^F_~|H+@*^i?gXKptQY9s=+ZHO7jq2#MjNr)(;NM=fA3yFLlRq&3C3>oj=22 zDe&}NKX(59v1PncNN!bKm!oHaZr#&KksAm0!pk!%g5V(n(aRwg4y~JfPO;9Croq8c z!?crtRRll60oD0@%sWgsmlN>VgL%p8AIW~ZgQOG$t0!vhzO=$)%-wD~Z6T7wa zgtV8YnynSqoX!|QcT<@us@CdzR!)AM=m%DlNk=b}{dQpb=4oP;e6g{P>uvDEh}oX1 zOmrI(I7y>0X9_s?td~XW@4vZS;V+TC+nSai|r|^a!%8+T&Rf>xv@8iVR}R}@qw+mRuLXz8-p5A z%pf@QUfCVRfu5JR< z*HJaVXJl!}MiqU~p&Ln3L2r*VSB>qW7Uhk>TciPJWC8%P!SiPDB^Z+^)AuFu{r*rxjy`;doqO+Y?2kLsdrP%s-Bs2Rn@1PnYHCG*hny*480_wg?C&<$I*3~=unMQ**GS-u|CuL8* zLG|n!4FyH_wM0=XjxbdDv%eej*90W|&ign6DLKLgvTJ;6isDDUA;k~t%34jOx|lV8 z2Ik;Y;6-%2(lHHp-iC+vgJi|9I&-se-NoK)L+(%l3C8psaUX}{>BqUXB*t>Hjq95g zQWJRXIe)hDX4AzKlXf3U#QoE<@{gs$ z0|AnD&buR{@4OaYz`?*onG~A~O43bAD$js`lz*$k)Iq;+e}P^0!ZNj*3T3g`agUwJ zcv_ZhMTl<>P9|P~)%s8jn-~MR25!FAX$eot9}c6OJ+;urP>pe}RjyaE(PoS}iQVF} zz|H7!<7_7JzxNmsM+hvTVbW^#whv0wkQzPQ5K+I!G5XpN1(ch*L~VMJTr0dq<;n&T zO5BXlSBGsyvagW=nnlky5)%^?R3+9vH7rRK22s{VMXQjsPEMDSyj2g50Awznle2Bs z%y;J9(!y{+3HO>QctTF9XhWyQDo&AwdLZqLmP_d>(K%jK!$`6{<{@wB)kP*@R z)^wz);-yxNsKJaObB?pKYgC8X{hSSO|$7)Bcni;8E} zrc$+K%Y&KfldN{t@s0z%?YrMitVE}PZ&pooMU#X0=G%fcopmOAq+UgW1q z>D~m_sAvqG>98EQN>3#LKBc`d6V_&(bG*jYQ}G5CB)8;`Y_Ae6fcua8+H3LeiM@2> zDPLB0+n^Y?3PRAS2U&#;F!+@A=Np2A(AN(~LlvkuG6uGaBlf0oF4>Lj^7i}HcFsmN z7UMGdR1&Wp9M8|1QenZn(|jnpYyE>Dt(b(2zPNK$P>tS(t|ogVSvbyc)sP|zJjeY9 zvCpNktVOVMU&bj9x;>n(rz}0}g)60jT#<6KQZ5%=uc&b5LmoW%l4B1PUpQK#R=3%B z;Q1C~MsMx_f@oV;1`oO_T!fAzlVRW-MPqoPK#ya4qAEEpuEHuV505W?aVSM4@Z5qz zsWj!ZBVKFlVk!O8RU`OIflPrLhoS>x-tuZf!Yh-yv7xOg)tMyJ%CYUKZ5P!&4zVIS zV_3d;bhh?Cqdwm4mzU>_2L(oS@5>4tMeC|w2>`C~$Sq?wz6?r{g@RAWl zCHa)LbN;|ZD+su^srHO zJzZ`BwrPF@trDuT0*$)hg!$HzLVol5ovFIKWrU!eRx@1 zHUkGL#+-L^wLQOszLoDEt6{OFNKQecQGrzqv>3xy7;l@Zd7DzRP96xYovQWt8 zusb}73_fbV>e^u*SuTqh2HH*;Bua6ey*}H!V_)k}6j=Y-Nr(|%{?T+dL5E?`l8f!3 zhQR7|+KUb716h#hXw?v>MA^lrZn@$Wi`lI7I6aHSe03ZUjWoT3K*E|&$9K(VwU}*^ zcvX&plZDRw`NzP`$HSzW5N9S1jB4Dw^?Gyi3!{lQLo#=+H3ij&FJhIYg}0xd?F?_q z2;hF&p~mcYi?oFyE31iQ%z1%z``LVI1G**3VQUujtof23J?VZCm)-ii*c-*_w@fCZ zQP?bnRxlNoOD!bLz=6uH;;ssMGLi#InvTey61x_gu0pqB@ER$LkYg*lig#Enu^nD< z+dskMIl|k!+5L!2DkOatuZ5L8Lz8rhR8p&6$_KXkUkB1VFTv*~)VD@pP`GJc~zU9Hxbf8F!L=6z&P zSdPV);o+Mo9}LQO6hfL zo~yzL#+T(!kG8wWNl3EWMZ;~17;SOtX>d_)EXNLfbp#f34f>RN4yKwL>w*q~Q;wa7 z7CnyLLb|?>Wm%Xi2%HZqWbk_G^>3$WP_k4UFjzuEYKTAm=X~pv@W+iq4Ftz_^_0B0 z3^Slb`%#G5TxpH+kFw%0r;Dbvs~WFo1>*uxXB2rid|!3YP_QM1;MW|JI^FpPB*?0# zmpE3JKxKa6q2E4B6d}lT#}+X9ODw}9L0}S zt90g7g{e?-t?uJUtCDd(QYb-gLcW^+P0Q1inzj49CEe>P{MOyWWPW-%7U+9s7%$Sj z-?>J{{G2VEt)6O=-Q!w{ZGXnIsPm4hEkLnR5h0rbW34=#f9AFFd}rv=KvFYr?()qt ztj?6pgkwHDcsimN{<*ET&J1)GPh5f|&8z%t^_hLvl2kAd5DmSWGpAcV2=lyy?y91r z(|i{gf=QQ@f7cn2VfN+A%hR=G*17A#xX|z$AE5L!{dwH!p_az1M{Jrn4o|*rqgb;l zO|ew9Zy-kkhx?P`etYMuJcSF*1$HJ-Ni3$8ej_Ek*4}i|*#Z0gqK;HxX>4-TUgA#I zQ=d{+#7oG3<-Xph{JeL}HXv@tG%)~=aoV5H?1{p6>}+}Kz}MX-H+BFM^!ttDJNk&U_vwtH~hlg$uTDTy%1nk)f(?)2&Ze@`BF9jkarV z9JWWtbVfC$il(F@S#aRaDyQFmiMevs9zh9>pN65gxHc!sn9WW9d_(Q5BgL~D*Vo@> z$%WdRj^KVEkxnh7@y5$A6Mm(hSUu9gOlkNULCtt@UI_6_UuNp-kdr70a5^~-?%>hW zx>P7F(Hu;=ugx$MR*F8fscV6Km@;XcNHBcjVlE&B50wm%VwKz)jaIERb|eaRdMZav z%nDbF@R4-Uas|B-3*mMrRuMZuMM~}r!%otE*uGWZnwZ4nQ{wj+4Co^b-RMzxpw((2 zZf9AbJ|HiJ4!vI=OcYisy%(^Ub*vC)k%!q%f_s_4mVnSYQ`J=x+r8zSLXo|=$fZWX zKs>rB#f)ELG3KLeeKz@#bvcX8irbI`ALpe1E~_)zGaUSYNvq1=r&K&C)#HKx&CSum zu^vgjH5v89qfk&5XR;(VfRhU$bWFDcQd;q#IF>`H)cI_+ntHSFm|wyLs3Mertj7kO zl06BmQ{!0PmU6%|&jjsKmuFCUwKN^EHmX|kFBue?pJ~7#X@tPk{yWqTVF^IMlp9Z<8w-|uhUagenJ6)!o-Y{n3kZOf((^uk8(%)Q zh;eS+>^ZNANNv0dCBnA5RHrc;iHf6Vp02Z>8QZG6{ zGH^RTKmWYvogt?C1^Ul$cK!k~1r|J8Ye8_(V81a~FNCi=%p^`NsOxDdvB^o7#%-Rk zs=M-Hsx(84nv$1)5Q=ZggNJy8_csL7+WXN_6c;ji?Z4RS5!K=fBM+ImWYXV!1$Mk+ zKkB<#XmmiK%JHC3`mpNm?9;&K%U*3b@SO7bYJExal*o`OqtQ@aGRp&qK09!9tPN-4 zhtpDaYTGx|Ko7UN4@2^%J}SXf%F^vc6BRZVll@MVMiEc8Xf{ScRI=ios5`qJ1rKuq zpp39^M>|6)5*{9{2I4s}x-OR^U75*`Pd&CGL^!mEVJNkAzrn%toCehyQT z?d4ClYrQ~zYl|k4@>aD}u*avWcStGTrfH?OsbOqurK8Vh&$@Sg;xq*cGJN-fX30puO)`Jm-zpbFdb6xM8u##)+!rDQI=FuW!of+?qgE*#^D z!ukny$NgyvE@eu5)7`{yey~lz+&kNL?d9ga(8W~tzPE??cdk6CoL9ay_lC6lFyK@A zj@25Yp;B2wP$xc)$@8X#Dcj;Q)Qf50v>pS8Sm6G)oQtg1OAJ*|{J0%d$LKVweum=7 z`p(HQ!R>)Fhehz^6cZs@D%ADs5D<(m@T3aoeWD{7{W%^w`+oYNcbzMiGwytTPp z@7|Ez>=hPdHr(=7^8GRKX5eh~9pI)pmMp+u!@{*vIhx6!3;?(wVSCbwHgx0C``IE| z+De(`iPi?My*>`22 z)lQ>c61RA^?TC7`!fa!7V|7LkZ4P33KY#teMW=gx09$Rg;nH8qPFqdm!VQ05oUN8; zqEsO@>79v)x$lqf#a?^Uq-mbutg-89EZ;)SYhcg9tc#x;@V+U&6zK3Z@1! zMV0_=VO=g(v9Jq3;^XBuR5P@-ph^TX!Y^9WpgMBXjfY%}687$o?3;fg|MMyC=GKf+m7=NmvV^&izSznwM>s2#8+)ie&#D+j}Ryg zC_lo%3ER|}G?m?+r#`g7PYM3qqO6xtMMQ=TFpL}Qn(Vr0>mW5W)9_ao+F!wd_itVX zKmS!&c+5LL!b6URW|(!l*##qr<0@0M1rTZa@7NqgHapvFPHb4{^18mi-)TX?9{uR6toARQD-o%dOgMJPoOu=CQ$0w6bqB~mWHgJZrG(F zwe|Zm7X+{TiK%hFmX_lTOJ|*?}gu+U7BhXUg|@+@{6}&(rL=q(o{s|z=4$$zWESn_Ec=c*XYx$bK_vRbTop` zl10C!ZL`#55#uDfwu~s`BEi8iEApl=J3utQ?#y4&c|Q#5UG2B`U0z&JGoCw7t-b6E zF(&xK>3}#lY$gjOfF1sIL>;!kZbgCP0$C-Q=&-~0@A3TgY^t3{^#(Vm;EqOHTNK2PVI!BCjbr@?=cV}u;f?hjkwjr%G z3~?_=w&+Il8dzx~N!OTm(il5!j}LXO_^0pByxAi)J!)!Smn>N?Sx5yAD>5%|QDI^k zIQecd>kw_R(sAWHcmn{8KWw@XEeZg%%vS5+?GWHeO8s^T&5Pvh#;sZ>0#)lw$*R`a zJh;1b3xpANx{|%7EU@}M_mg8(S{qN~#+*iV-f)&#P7Q*Fx~%3ZKLgb)3QQNdb7+jM zris=%IS$NtBSfcz=b~;4g^`n3@c9MrV#vcm*b`cx0u}FyMoA6h%PSkVn9KY+wM*66 z6zDsd3w&ss#WC&^41a$SpXP~ccyfGElpx&@4&%ldAd(`MBE z`uK3lwYuU!eE4k6%4@iLWEEjK%I0e`9%({3Ly9>DRsK=CGru>KIs$fW6a-<7YPRSQ zF(yXiCIqTOL|w0PuAu%PS>4huPl7X4mu^SMaOYW(2o@q+B#D*>S##P^3tN7VBk4Pt zvk%2-uJ`MlR|(BDN6%{6ytwnqM6XJb?VD3RW`rV0`UZwY7!9x7&M0>mDUqRldb2r- zfb}L4IJc;~=whdm)qq;|F1ItU3f#1q&FHW3{=Ef#bJ^b9!vjDq@|bS;Q4wS}H4Ki7ucnV4=_3yH;a;i-4ePyAC*vNe{%A7<{gy zGz_{ZJ6`X6UIYan-#b6;rX(T~WaE|Gg+N}3Vn1_bX?LF5mL<{ zdwQzvz>-0w^igID{EQh%nL42J`o{$u^$z0pIHl@~U0>;QBcIYrgFbAPyUW!`{qy0q zK^GFeiWpUVu<|awiO=eMPNZ^5vB)wIBRP-IYBq&Fqw{2T-4)#O4#IR>6U68DeoAK50CX4ODo=UMw8nJR5}(Hl{)GNDKp1LZ}1yLvdKwXvqW;!!)m zdHCg7@a*exR_h7Jgs6!|s08 zO-CY4^(YHj-09qQ{t>ZwI+P?#nOoZ4m1fPd<~q2?%DW>QAJ=`Sy{i92ju0A*n$4~?N!r64tP-J zVz^^#X4qCdEcg-gMuaqu+efl!4GX< z^}Av247VVhZQ<2r5pR4=gE5;5KC$f7d;*QMeV{G=LjlQURD{K|u%hsqIP-w{#3Q3c z?v#D2D19*Xp+!g85l98{)K8qS7{6zz~UYVwE6qrp}yusYiwdnw`r5}{%BJF9x{QLq1vwdg!>UY;Q z0C`Jk0@PV6U+~GcWf3T=^imht9e|aJBsE+|=~{2eEYzUS4+t@^Dh`7-f?XD`CZ0PO zFI*3F>gpGodzht7)d4`|$%e`{a2Q2@h!8V%?eZ7qTq>o~PhRJ{@*vSQXGhHQkn^vf z&>8l6kub;fB0qn=!DBzqSn}kdxtQ5Eni`Bt@u9`oIl^Uyt|hNFo0Hu?32bp*oE$LQ z{0a@P0#w&#NsD(a9lNxdd3drlP01fO>V8)Tvyo}~Z~C99r*Sy#tLHb|Ue_sqISNm^ zTRTejSjw21t@(7L2<)GJRJGsyAT>A~_g{u0wNUlRh9V^0+&0GWOcy3o0U4SjT2-nT zY`MO{fd@q+Ey4a`L-6!uK^ssa2#11oq5rCUlvROZe>A;wVJMX-kI7PraMPdII$!Bg zz)ost#ypp&9F`=XoDBE@oV+<62e$@YKboH`YNIkwFGO4J9<9 zSOu>x-)G^(po187Z?<+Mrq83%hc-+3s3jYK*pFa{|C=YMD9?0v>6$pHgx7;FQ)e}A zX9e5bJx8aO|JWIhMbx3Xz2=d&Yd|v61Qm+#@~PAh7E|R&MfdsuMGv$K>l({FxFj~W z7Il*_p*Pfu%L?1iU*Pg-5nKtMR{~J|?D&!V)fM)!`=2F)QJ6#1?8yKn3ertk)M4sZ z%f}E9w*W{g8mrLgh=9#mp8ig^nZp4imBWj#HWJ|p_-m%v#(7(}LcC%yw7~gc2Onla zcaR%Fh%WSI+taQqm6s=w3y!BM$R*COo?M1mM}Ufd>31*M_yr#}uCn~+psFVbw;1fP^#_4bXH zI{++*LY2m7>TJbzg^6tzim%nRw6hae(0vKOh;@nivYq|A}VR9BUoQdU?GNm-D?7cHq>|u+A1n6^t?I z`4|%a1PRPrYcRWmW@dPDZO_Czw#?(<8ut!UcH7feLPA0#VOyvmXS4GZ|7zC(*F=IP zJ?f}2-$9q_>fj%1Ym{8(C2Flb$kzqv_$A8Q&*##t?6W_S5}*jr8Q8|j(~=V*X((Pi zBr)OWyIsxhsZGgz^|=b3tFazIiKwL6)b%xNoC5dO9y+-5G*c*Aa5?Qm>`hn9y=9>K z#uLgkGu`hUKJBnGo)bqkg}n%?GCa{}jw-fQJ2z>1!PL%>ECkBU!17Ny5}{aHtDA5KoaP4M(D-|a>*dnjLkhN z&Ejb<%?vV$?7cast-P&a?}Z;5m~|9sNgF?!*87v*2yrAcTcN^Zc)r2h$EG(YtZ;5G z1x_DabOj-+H!xld5*OTCooB@?JrG*Fn}5YrHgpqDs}Ws`xTwT8P*SAlQ8cteFx@IQ zJ>i2O13SkOE7D;O-IFvCYC0ZX~OQxb6>iCN!^^f6ZAT z5sm4Pa=h;*Tr>UXXbfss^TlKDKDcaFR@z;`Az8Wx1qXw+%ig`+jik18J&hi1!>~^4 zlu996ouLJrZ3yei#3?+?)`+ndMW)gxuvp{W&Lxl7pC_|-sSWB2zC&GO^W4pef9G$M;njuwI7j8Kag z;rjcM;dvIEsWM_s^_s`@SJkp>Gg@G?R9W7x zfBJ)P1oh@D*db4?maehZuqrjEi+b)ATfM1WRV9}l_q7KiA0{f$QtMwK%uUS4xC|;L zHB+VGI3amBpVIMNtXQbu;!&)Re;}#WO|K#0$8sezfH*rO4vwYoHK%v~bF8$S_2FCx zJJ%vFD=;mjR%+up!^&EZ8^Kx!+$+xDGAZOLn~n7WFMkRON#`#gfKm|kYZ?3iRs^?c zT{<0CX&+h-i1eXWjx{`274epxqPwlBqZSnH+p7(&@mvke6O&ce1}Kf_Xc=9DMw#|D zT03puo`5qd%JjG02?&56>3JUH?fYKzDc;7AOMsu>DYhj zv}udenYt8Nn9z#8bb#{_kp%LLPV;X4Z=dn*4c|IKYOI@GI`8kA$OET9<>`eS%#jlG zXJ-k)jqyCFXCtO+vM48<$OSA7A-VI3YImE|55-+DttAe*msnmhrLV3^;>~@K!8lN> z7+1>q@ecR2MON6zuGN~IDk<(RMPK*2P(3TrjA#L11Krg|jy3*a5Nap)&+X~2i~Eo3 z9NecE4dwB#5PK0n#f~zBX7pj<7`T1Hjr1~ej$6@NAbCmPbus|EJ!ge{(3>%|bBz0T zh>|0@ss>0IlIkMD!zIoeE>sxvy8U4lnj7tR_O!+3s*gxa2&6a8O1R4oLNa!qE?1az z1QwZmZL5bGKjm~u-@_Q7(bZT^@O|9@ur?`nhu~(UC zP!`lf#9_7snT#0$iicGh66ii5A~t@yY;zFekG6H;VG;%dCw zhRUuwt5&WLTyCu;saIA?GmNZ;J)?2em%jBKyYg^%_&RFVGYnGo<{aZtDsQwr`p#29 zS!qo$l+dY-+jbldRVem0p1sW7H@N4!v((N_24ONrwI);?O6rIa>ATSp788ozS2S1J zv~jNWIh+IVEJ+q!?0OjX9^`(O`_nDEvq=L>4pZ%oPd?C0^`7@51OTp2o)GcRP=6Hj z=~*LKtuA6bTP^Rk0_`8{S#+_(;kX>lPNCltKr_GC^jAAYx_rQ-CLZdN%cb zD^QN-!z`!Ee656?u9c#urY6JwL1?^j#Nl^4_2S`<6(Y%RS>;3mi=U__j{I)>Rp5jC ziQUt};RceK$j-07@nKDjw>O}~-raYZsGi<4=t10U<)!D0g79+zen;$7LC-b7j~I1h z+!%R8+TERw2xl}nrEQf-6*=cC%p&Qp?qiW#4|}b5x!yxDf9g+b96o$Lp67%#TXn(c zVy-mYVNms+5wS@&1x1TOAdS`!79KuN#SUZm=~n^RaOK-h{BI!`G{h%wtGA=?7MB?NpsuB+Pd0F6qRBd&`Ot|5>jaj!F5xY^GN{m$>_z=X}vKZ=XrHBU*_T3 zD#=vX`npeKQ-JG|#l40$9Ia?^>udifr3JI$a*+7(xtd2#AU(IVi@ouZaO|8wnvxHC z^OCbW1Cr)QWETO>$3obzGiGHq%r6oR7v=H>J}nlp%HbPLi}{qw}#62P4_(f(1I$ zW9_B@8SZEQ?AxkNx_qp%054H zx$}i~l#$ks0?~B#BDT4dha2CJH@>*Rp+oG#Z!c8zki^ibZM1$(m%;qOndW+Z8a6Rt zBhGHU-^5u@){%$95rfL@sZpW%`=)Lzx0n@egAE3^trdIoY-O-HNatdOwU+Yem3Cup z;QJJsFNI!vv!tw2MrR+)UmVx0XFzJ;E&=hUi|g>YSrMlWJI8lR;$YA?E>MSbIunX6{x zh%d}*SpZu=dt9x({I=M+8ay{uBKCfZR06aHCEpd6EVzph`fO<~lIuL*hR5rE262lo z49a|dF=w`AclyyI0lyLXWMMgIK7?#vkk<86p)*SN^bDsb)o3(~c=H(f;I_TJ6JYFn z29lUQ|84s(ka}bXe=w1;wubQ!3`8w!+Mq7y+kGqsq;a~u$PP$je)A>-!qZCIrp9!$pGaM`_F-?&Mgm3&CRO|(APEe^c85hxYS&}TSx02jY}5mJLB{hQu)dg z?+6Kbg=S{KYP6VbMRCVmK-TbHmKBaKp5{~p@;B@L)$bPwKk|h^Xd)P>{{H?lwDd#! zmgPxx>zpy{7lU>~z<{D135viaOXZ0GKbT4i0Vu(#zOyoqqgGjU9^@3mKsvq{vgFV* z?57ha)31_CoT;hGKZUhOooVQwD(8ybOEquR^Nz04o@gzdCQX^>ilYaZMDkpK$|14O zkA39%Wet)zpni{*7wY(^u~BMlk%_jA^gtleM+%u+bGiwz-C`4 zpJJ%pot~5-ZcuS)(5t-Yd^08xh&Yx(l>LLqtu?Pf8N(a2yP&_m=Ham8^n z0Y~GR4$LA{ikwS#2H0xC%DI%wEe^?6Nm5YhK$ynK#liW|3PGs-GY&%lC}czl?xL`3 zF1PZujK5^O>`Y;IJ5)UxVQ2_aHI0pA7>#&x!R5v+=iLl1Uv@8BNn?wNg(alXc$W2u zgLGIRY)`!mH4AuTE$K&-ilXHKY@qxVIfvx5ozI1Y4AMGgJc}ZXMgvay^pF~etkyr# z;R|%{u-BWqhbn$P8pSL?d->mN^8`W=*XeT-N$v+c=aa3WwO*R|)rEi!ZI20EN*jbV|*pR};v>Km+f;Vo$$a zd!O<>@hLqWK`M|5y}+c)1NABPW=;E!9%eqv7ftfFuXZ z$ytdk)M zu>}MUH|KcQ0OOaEnAqnr`q(~4HaIyEy9>z>{O3VFMehC%yyxEUc$@rZ&j1AE)%IeL%H2oVQKlQYIwhzDAy<7d!(CT;Llm7@t{IUkGEy{PyjY}wSH5@P!beGs)uH)xoFp(mB z^CoG39s!i_PSqFyAE=m_12{Q3fi-(WY&oKmL%A3neHbB9r2Xj_F(C$y7eTCAL7vLc=BVGg_9fmbO&eiiY|7E8rzuMg9&Y zeAy8DAoH2JK=vpj>Mb0~;#au!zBp|ce0-Il4lN+xA|y-slcoBvp?miW0luVvV#)Xy zn)_?Y{l^8c06n=quz>BUKwt#p_xA<34PMCI7Ox&3+7NVh#!Plpod58ogq1hEnaZhb zPH|}zcNy&MKf|$qG{he>a5N0ib(#d=L;YPK%9~5BeQ_s-v`ilc0)&_b*F?{r{5IbX z37$40p>4y#fYD&h|7Wv5fgDYGyw$=p3WC3zmx1nSn_mNlFP_-@|H70Xc~wyX@nwnIlePaC);j6qurk+tGN?`vQLAx(dzNC@X^#wP zC4pg($iJh9pDy6H(f{j*QIn6G_6|Pp)!%;^3rrW_6+QcZ_KMDj zh4_2^Kg@=kJF(^XzOgY>V5M@%58M7`-5{wi=g&Ht#egE(5HkJWU-EyO872b2lCNHl zkp0gk5d^H@t*^A;%LnC`PY@xCVN$M-i~t^HYrbktA;4FrEqWdFSKnPf1oJo@2Ldw0 zqQCs#EN8-!M<+bV_3`-cHzzznDZjY~4copHYmk)~cDO!G2L$rO*+#u_Za!eA9evy# zj?7G*cly)DA>qMgOnq@2FlN>0qNN{Ej$na#E#BXd5whQJjiaz zk`@55S%G>3!zrNq>iOnNUytE=zs3S^Y{`KTnhrR#O##RqB!xoJau8XE7kzy*Tz7$wN;&)kMWlY3~b8ffJ^K3`+qfjQnSQqF{MISu;Gx3 zNYPZW(`Mo$4ggdH16jH29d4K>O2=MnHnC+rqUEREM6&Xr^hVEBG6XF4B+u(DOs-j- zR$)LRZ2CjH?-&ndks}Du)L=2L4+9##V#&UGphen9aiUz#biYZ~3)_|HBdY?bCGW~w ze|XF+n&e6SsHE(qzfPfj- z?}em;oXOdV$wu={_2to^g#EC)Ov(A%jm}PU;QU3UEf3V~k575*msJU`uAHOm;`2nw z>NN53i5Fv0K3j!deJ@jzG=aBr`GtD(4JoIYO%R}e#%spMG@>h>;PEjyHxd%Wx&j z&3oLpVEc(|o^u4fTpVGxSQPexJ1`8#Van*jr%C;)`f>ZOA>V8Nj|;KDIHj#K-!uwBS|D_O#QiUYW%H9+fA-toyhYARU^;SfK@(+}?7k_cYwpi&LdZE|u znSg9B6!MPxJOu5)p{rdOM`5jcnK+fr`u5ojME+p5)QB(lmB~d#)#+U#V9hn6cIDeQ z*Iq=S(#8hpN17KaR|)>Aiz-~*?}J)b2CKe@uI}TVxY!J;smBkHQ>_i{k#}gh*k1PT zc{S)E{kdf^Jb!v~pw;;)$_^BfvC|$LGhQ?_cLdWSeddxx@1fh|T$QmiJ@QN#8^eL- zUK^@Jy=F3KuEhZlojO4aUn=2Uc&*ivLCVfj877m(XcQnE-0Yq3+62UXr;GhAoi692 zXQsa3&Wee_eXbj0p#0NW07&ViTUp#>0jc?q$drSY8*kw-*DmDZiuXl8*4@Vt9y&k2 zOdyBPAG|Lb6c$D-l^JH_WKN0oNwzMw80q-=UjjlA_NO;UXf_6bzp|gKNBM0R{_hbB zq06IlYvPQ?`NKy5+oAS>Dm7U5sp2NrkZK*j&t@&M`2q}>#$Q!ubWE}Su$EL%t!)mY zwU4SpZAG<(Tk$rurEbk5f@H<3)F0w$10JNtQfkY(>hlX(fR@v2>k@=?rpeg4*nflD zrTZ4c;R>cAK7AS}2Bge*1a)XoKj}mLF2>eQe^A96R=2wV|5L;^iu%VI*kn_69uY@J z(g1fCYRr9pEZzFf+E0YHIc_+*HS3QD17hgoLi zo$ENV?ok|@cshOHq}4QWc3-TEy6ZSY-bm!!qxL<8jVc?Px%fRvAkwH*p9e-Llj;0y zP&%j03!q1=#OJE>RRo56pg#i&eE;d;+Hx6!w@MER=?fs&a@LL1?viqU52)~?)4n_s z{iPHs-j}E{I~=|_zvvJyXt;Lbv&It+k!njjpGPZv6n$e4F3 z+Q}0pUk}i`9K4##*n#3O#@HT*Qy6FB$fXTQ_(_u;fOK8oo(S0QUe;COVpMR+ZBe>{ zI{V}cWQ9of0JZ)mKymC@rOytKg_7|?XLs28;3UX~D;$o?4-m5GE*kdmIGQDaqW!V+ z@~ujMwv_PqXMdR#gdKluh3NllU-^muqrY<9H~vjYt5n%412hX92;*DKx!CTDXKCW!fFCIs$pgmCc5nH%*g@zy>>9mb~J{%+!)EuGTHK0;;ozpdfHF-HII&3hZ=xDf1$?1B;L$@{3 z7g~8^NUBA2+8gsN@_6kuJLM_2JfV^!T=zOnvquFBos{!&Wm_=oAK{}n8sTG>u~xy* z!DWxfZlCZ-+)h?4l>Y$0d9t(3Mg-wl93MI>x^jW`GaMNr;=>?#&r5!cU_fyq2-ATv zoK$18SkCTfEY|Gi;MC1R2@SN~Wp~HGNWJGldwh&E;UF#1VF+` zsT0{`(Jot13BuG{!Vjqztl9Lbx3))&#bi)rf(_9j=rEkF^v`l|`TN)C?zhsKLVh4* z+_q)M*NFh9KK?6KqZImbe-mFZ>Y@+=4-N=__5S99Aa-vLQ2dxasG7mOc#(t6goFK} z*5WP!4xL&X7Z7rYLZZFI=Zh~>&r~4r5XYodkKMA{7!-1IvWmX>CZv+SK-JfK5-;-+ zo+G)=onLOzLrPQTkrTyZnKM@O*kw&3xrT9&fWwt{pH8hM1f#iCeBbUS@mU}$xuk3v zw++NwjbZslOH_gS4hU9^HXCgjC7?x5Sna_=l|N9cSR-s%v8VnH)W@E=xVfEVz95%M z%bIdKkNH2uy#-WNTiZ6Q2vRBy(%q$WcL*rmsR$xnn=Vn15|EY->6C6zluqgHPRUL0 zZ*Dx#^B&*v{ontOcYM$J$2fxxoV9SxHRpZJ>%Q)o7xLQe$lLrypwkFPis<+|Z85Po zk|}krPYH~{HWEswMDkMqVxy_wd^vajpvF28AG8Ew*D>3*TuI-#Ny%AL_}un1tb|nYZJ()d{Q?J}~e6aCvNg4j?J~|+7iz@#Z0p+{VTjrXUOc0DZn*=n}C*9uy@*9z5=Z?oQPDY}07)q=;^U@NWm z;ny%8^$)`hVG~^OxW1oVQCeYEBGH0hGc5-hSUw05)i)yH|Wp8Vw*eI>o| zXQ|NkfBj0s#e;x;RHzH11u`By)|Y|7_>3&!P9@5=CtmLiEyuc^nBhYR=~m|l5!xO`CUd+wQdZMa$uOg*`R?55^-(URB4-Uq_plhQskApltplN4 zDsIc4hHY#8so?;l*`a2A2}(eVXMloyP9+dSrxFeai6cLgCSY!*i+)?9*4dz6Qn%%+ z-Xy99JK-%bojCH*v^X;t^W@%6TfCfp#`03_4WEdS4brkat_G0|qUie5z>d*z)N|b# zys{$V;}_tsHU-kWUK*rjhg9Q(z6VU2g<>N{<`mL~(`^cI#T}Nf`aV4c-HYiA2An~Q zn64DzM4@nuzd66Y(KjCb2;%=aZt-6lzHbE`Tu6l8>OuxY&$ma8f=VEmZMIg|T@iW&o(LK#=xsZOx0b!Z_ zQc&Er#%tTh#iX`s-z4=Oq!po*swGtylg$XKRTq;E=h4`L4pD*c?~^l^lqjc@uo`kr znH%PKU&hxt?NRq{wXlY*4`yOTS*GBd* z0!>I7Og+9!eu}an{AolsDG5T6WvLTe_yM3-j!NhzyUJEo^2)y7{^xrohTDyW_Dgq% z3(qVMriYY7<5SY z*a+<8Oi8?N&{jIZ*}tZr5n7_+lr)tNa5q2;)Enydl?_ge-BF|oJT{-IU>Mk*kUy0T zC#%+g{uQJ9XxV| ze<%k%8mZTEaX*=mA5MRX5g!YRiFkG=X{GG;egvhS(!_1Bz!Qd1G6g_`xWQJf)h)ob zEnNrPPvUdTS3ROOVst|@b6D8S_I7(!-?WbL<3KiM%dzu`*Y-QB!Wk(j-W1Q($Q=`N ztuZhe72g95wxY71CNqXlB#!@(8_N0!GW4vcDn3$iicA1Bbz{L<{DatP+z{IsP^bJq z(Rk*sX)#$1>zeQ(0p0|LHN|&lGxR9G0Rezg$PQ^}XW)5oSWqoHu}?EvT~Bf=`{;$M zM`W{+W>?HizyX?ymiPW%1XV3#$*=jC8Qy|3Y?8m^Qn+w9*KAVzB?l8f=Tq9&d(8de zdiup6Erk%2lk8Tq9KKIT1_1jW6|e8hh{97A4o+i;MqUs8fHmlVgkE3Ws?FD#1_$4S zn6yq%m$Y}RCL2OQNv;CfYF~1Q^UnAa5YgJK_|7A9`88j!IetMdq*a?#u)^udcVr+# z4cC|xQ_swcU*)-#%gEG$V(FMOyC0zW7oD_8h^RJOe>g!(x5ZdKCA9yNQA%s4uFDHw z)a#3D@wC$V_xRJU%>+$rfuBY`$#FT^Psz+&?^sd^y}VB>@U`ZLPRe(g51+4E>WKpW zY7w^LZA@-$v?b5Nu=Lef5dS>y#CobpEx7KK1iiP3-}$YJIlTJ=l*jGOALyt~3D-L{ z?*0$a@gm@s$2c0^Y?Y1w-Jf&SwgdiCW9z!}q;**CaS~K5j2v{j0}E`lwo7Te651)d#~Tz)8ns5!2?FR^+91( z;gi?qM6kZx8th6X{9WK+%C;?o)@H5{U3%eHv^47i$4mXgMIPkTaVwzhERF<4mIRc{ z3!W0zDT!~{`-vx_3;3eR*&xRJ%=T!Ty;0SkCZt3AX{@q#8HAQ`A1~)$)X=^Y^j|Uu zz3JX#1}SaNH2T+g3Lp7cGI)6{6BD+soeDfa7M(M9T{PZ%(XZhq-FDa>`^+-eZb71L ze^v=PRMLE{*b~yKv^~-T=CJ0;l+N+bb}pCM3l5o*@1WUKP@_lQJWD^fCGSJSL82zz zIGM1Ag>30xzl!OC!v$Wu*f1$mi0-@L0lM@dmenZh!AjK{u|b|=&e%FAo*&MP|NJCu ztIBNb6+amXTg$&A!a)8O3%*ernf{05Q>=~tt3E4+MlDWYEJAUejsVPDO)Hoo9D_IX9dU^I0rJSR7ug4$53( ziw)|FBjvG1>MFalPCEiC#zEgo3Y+kQN3C-5(F}^F{>s~{&DHD6ooesJKJ@?9&91fn zfp4q!XBj2CzyiG-kkBGHO=;7TX(K*Vihz5Gp(C1ny+P`kOhKHLX|qicQ1IY1UA+yIGKvh3e051su+K&rcp^FP8qjcpXHS;hP*Qe3P4=G9+lu z2`7c6j7!?}60v^-6+s?^ix&U2CH{ST{QLJEe(-3pUvd~79OB+2B91p}nn0p4t^9ws z3i7VIP%hWuyC&M8U}@Qz@JXY}-hW*B*d{j8o;@IKtGUT>x0YED4>zUWvr%}VV^LIp z9In&*K9&2rdl7fZ+e)nv8;u3I^4iDdw!BXGdHWT+S{rI9=U>7lN4`dPHrM=4Q#63m zlIA`&I9a#)i+}NiDJAjA-SJ;%rlI)}$hn6Lnt8qI^^6O~^&ar-IyeQVL~*%xJlR<2 z=J?jw0XjB`msDDs#`|rl6}fu_IF`RsOkYd&7^P(6;0Ok^RNBbPX_(Sb^z~m})&~c= zroo}D3*p&yGn5j(CdmsPcw(in+*_*0t5ZNQe6Vr+4lZ0fP>vcuPC%Q^W?~;!4^Vwt z?K9_maC8)H4~nWOPOh_BKp{0K(`C<<{3F<>8UzaS=(lNhOe@zy!$;1U7SNM#Wdp z#@_7?9?uJ^cEk`0+w*@%7LViPkg8iNmT*JJwQJfwvP+*O(|D)@V?w{f8APEuH@GnC86<-~oM|=k1;uBfogDP+_`7 zU*Y}z6|$|W=L|D)NURZD0})pkJ>lNxzgsgT0(64{zp^BgYrX}1*B&T?tFPJ zaIwdIez=NPXRq`Fk8Sa@KYg)w=_BSAA7F~-;r`{qCuJ>*#kb}P)#rV;)rEW%-5=RH zGl4W{v|rtu+Z=!K{^@|5{me)3M}H(RGJvfhI}Wln%39~a`w_IJq%n*>QjFaM4jc$c z@pg{&#~rNnzGUo@k9{je2cip*<4w_M`n@~R%w~#`9WnZ6^-&lwyGFYODmPbm<=d1z z3T#cg!>D6_gbb2zRy8PJ50)CN0!JYoZQ159mbhl0?&lb7%oE6hs4tPc{-5Ox{~Ley z76PI;!QJ0m%^OYxajX|dTa^kBnZO#GfV)GL^HUDpvyU;8z@qQwCobSjS@g0HC1>x7 z@6~hNMoU{na!}rAsonS{G*J{u{X5-zUgX9N(x#+>{`yq|Lo$Hsz%uy%_@_T++z4j! zaKVhmix>}&6+iG-<`wdTAzw)&Nuak!|G(?)6j5+PjKa9ZbrY=TLfAHAW?_nila-kI zYQIlgRLS*M7&BPL#SD~-#sOHDwd;JxIaf1kj6~IMP(@M z=~WgSAle@E_4NWFi;xhL;iQ%KzA#aMzid~KmGI*dhLxqAEZI)4sTJ9f1L{b_rZ|SV zDVwvVjH^q;LVpGoZ@-y??@|~3X2!xbs!gdS)xXLLjh-#bpQXRRGGQ`Axg~wkide$0 zy${9lvS3Qd$dJ0A-r28an^TM4GiOV&irYhgDSt~9mfZS=cdhwy^6F%2ZO`V6G6UAj zL!)&rYT8vj2h&`UMZ>Z*F}c)uP&BApDO&K*L&qOwl%%jNRU?Hh#&$nBfodfrkt^}E z_z`je&wgY7%daGb;L6lJuO{T9uX8Gw2Br@*-Rkt3XkqHsJ{7N<%`a`&xx-- zZ)K`HJ=CJ{(Mpuuj3H<43g;qFid_k5ZoK4G#<1!+!tp8S{T9p!+u=Q2YySDdCc3{F z%hNixzuD`Q_aoW(cz<(D&$s-m%PIQFVejkEw&oG|k0Qq0N=l^?iDdd4K3fOEQfDXL zYT7Y-Xy6CXi*S?I+TuXz;-E28Tz1drx4bs@IGS`Qq!&k7c+&J5ox6`7N(f% zTQqB&6@y<3!T;p9!@N~90hd(sAJj3f+2vfn-^8E^FK;^@6y&X^U> zPBX!R~y z-S`vt1LQA$FlBO&`8QroR8z`Jxl~@42At?4@#M$`4Rp7+C9#qjD$+v^OkI$ z=bkxqv3+P>jY~cA_bwoiX6eSjUr98)hGcodwwv}5tzRr)K@L|*_YtbuO-KAxG*^)C z2B@$!>!cwywQa6A7MxsMgdCiq>Z9*gr5ZJrVH=IJrXrDQvN!8hi9V^A}qE2;$@!HH}`on-*0?dIP=xToy)6x;&T|Hmtv;fu~|>{4_?%?cEd(@2%ynR zzoLv~3gTcz=SJ*CkLTl*3V$HSuINnk?3mNYey$;co=WxX zt!~^TyW#p8f%5TJb|0jmW{uV72HsLa;->if2S#sB^~@h=UY^-v_#kij8l9jmHseuo zaB)c~@?D&rMQEH|>a|`TDlCG3>#^-bB8* zUVEKaP@d3BtYnj?3C>y#Ap!jrkHI6v1JAA8Y#nhFmAn6U7Wj$8KpMFnp^S4s*a%Rcmr z&&*zhTqh$gshhTl?8A1SS&<=E*X%N2`g2j!DU41R{azxg&x?qsAY)%3FSq_?* zBqfC31#_8Q8s+FS_Tq)Tt2PREu}&<}7=yx##XYfz(r*5~TvWI~co6kw_p+cL zesT#dZ!(r`;=jdwZy}-)-3HFZhz*KCuphK!7R{h^4V!_36zW* zjY{p(5W0#39;jSPgW~n5Ms=r_J~`}V>BXXmTw*mav|2xWynfiPEs^xt>Xo)@;SoY| za;2%NowS5S^4;!O*3Su9%|73Ty(Ad57V}^!Cwoq?RufGqYO>}@f7IR#CzqX@l67yA zatrJzqVm*r!Y3tnfo;QnCk46}D<}J7Un;p}90sy{RKv-H{hqI{X~52soKuy%FCp!z z)t86PuuBZfiFTveUD)D&9Pz~(S)J1Bu8mK+6R@^WVg?!-KhUVGWu!CfIhhZ+{q@$2 zTH(>$5O=F1jCI>+`eK^a;BJA(^}bZmJzlwZpS4(LSmSK-Cr{eRkJeaFh>IL;j>vxF z+-b7J$oH!?kM7w<4`~B$^&Cag@G(dev|j0&Y5U47VK?%D<3885(8(O-^`>_2*z`nm z&K@KKW=>$l>;$#l5nO3qvOP}V1`&JHeEq!0%{tHC9ox=r~g zJw3dLZ&QV>{Mg!t8qMr+fdeknNCm5YR*o4aTIa5~z=VBr4m@FpM^E#ne0D3^m-bdT zO=ovSeNxS}n;^~J3CF1`35SdBW4SLR`Bx!lhbaA_W<)brYh0Q_UP`=M&D#|V0oT{8 zo;kn>QvA&}jdGPSQ#M}N z8cByhZ5wm@`HNnwHxb?68%S)}0Y+Vyar|^iL1;L#?IEKWuSbKf$Lk}ErK@nDwA6|wXihK>6fB6>63=kGsbIKI z`@CVmOh0DbcBCXfT(V%8MqG@Y7$ebo~_D!JZ8 zx_L<|%)+JoYCB&e57$72S>I&4>ynnawp?}??Ix!7kpL00W^^!3o+9dh&%n(dw6^_2 z5MiJ}ga8G_g#x63&Nd5Bf&*!!Ls*ar%;Fzah557fJ=KVgJ6!7@nyj?UvtMchg~zQK z9}v9yB@yJ;51`GbyywFA4}Q5@5^+&nDsc~PqZkN8V=m!>PsIo+VNDdV^)d)3ixu==pTFGv)IGnK%QM3|-A;h)fZD({@Y z1%;fFsC!`S2Vvy$di1x_6~YPq*n|}YR50s$7{%A$4w#Bae8Gcn3}|s~W2Y%^r8B$Ktg17I7|_1GlWQEWoR4o9xv7Er`Fy17 zV{@vKqVyNCn=K~o7S=$rPbXoWr{6GAdciGHAugmp_MU@8_yk(eg9)U98Bszu$nT&S zoEKtlkbv3fE0ucY4xbHsiD*vn$^RXzQk(i#dN&cfl!q)Bo6Dv0BpJByq$WMu3yg8Q zTvE>C=7v9}4~$S2r3$V*h+X3ZDkx?a{gnNYD%sHy(;jd~LW}GU%+`g)*&p|iK&S3) zp81YlU4|x~1`|%CXy`Y?-;wMJ)b+k*Ts8tfHtT$pKdTR@B*Z|7V&M(Y0hVFRer#7S z!OKm>qe_N9DSvFPTsT-4!is?o@4=@TUk1JR{`;kEPwAI3hQ1K%6p77{)=Je0g~pkzSBS!dLP4 zKpB{QgxfpF!7w89^a2W!${rrE^+8d5@GLr%gZ$tXC%p_xI0DOPaLJFs417Agr?x1S z0T0e?7&NCOk6A|ni4VuLf-BIz z4fG$AV&$<)>CF|6UI;+W5v5Z^r8^~dTOy(0{uN1kn-tCa8P*G zk7!(Z0v(nw%NSsho_!b2X)GJp;GlV9p@H_9=a^afD&LfWVSqiyt`Hu}2Xp%pq3)2~ ztHxk4K5nF*BJx)TqT&?uGg#IEXwP z!0;sEt{($i>PL(CH=MyAnT%eFACA zbU6Lk66X)nK9!VUAR(Wt)vA8uP}3TkT*-BqPzHor6yqe!;P<1uQUN1U^+Y~6JbX8> zf=V^|ho&Z`LYsCawoguhVt{0p`JXqSX-YdvZvT^%51IGd9}Gs6)32Lc@&h~|9X1?6 zOYdg(bW{Dr>5PPQt}^1#x)H3qk}J8?g-e9{k^Z7h@%Lt3h68YVqnokr)F&cLoo2HI z;lJk*N!4NC2IKuh*7T+vQFUmDk#0d~2UDkZlx#xs@%|bkw=f<@T=^%`g8LG2FBu#g zsrtt8G#ftkjE-d3@QswHCLr9obnt2(|E&az;lr_^WhHXXivnU=`d#o(wsrt#Yq$(x zqm{aDmH;4k_df}8x7Sd9(9#c%u2Wago?}WU3rgqskNamm$9XfL@g+PwXSDQ(Mr~oo zs75&ncZpsKQw-`p?t7=-f^)4H+63Ivip0cy zJ4R!0*neYP4hq;%m+u*fEb87*?`Ay6MgD^qu-!ob>n*#NZe5U{tBQ;y%T`&lf$#7|usKWsKaoDrcS;V-kgWSJI>7;J|HdTb8UJTH5qKx2mxAuthHOWsjiTN zpXy@Pq4nkZg0Zmt-yh2hP4iDabb3=ID;rp-UmBg1U|fVPMeq>p253F$zv?J` zZ+mm-X|Ym5xJ%T+HZ|Fv-M(%z91B7F3*z7_?g&d-8v?~LSBR+Q3L*bMq)?AC}0@*hQ1xpc#aWT^#1JB zu8K`GU%!g4(p)=Ya z6gH6gMxm~mS7O#Wr}D`}tSM15$B|VbkOS)fm7GfN{?XxK%tRfWmTC<%$sQLhUVLQz z$Z*q9!v^ta&FB?MdN+YY9I>e9f1}vX#9+QuI5>XAZ#ngW?U1AY-**x|eYN_R1Jr{` zlauvxfs_8V^bea!kAvKft{A^U{nZY%5ls{W|4lm`3l_8Y3swe|Oz%~4vSadWVg_+Z z)@}11ApXwmGNFghiY)HCftX}ckv|MaEP@`s$i)7sMYjBuf{j0-N{T$YQuYMS4I*Ng z&D8y!(fx`gJk~3S$sW$j;wc0uMmdG)(*7PsKxpwjiTB0Zr@wCG z#NX=4&7jVQ!*+mFGlNJJX3*j^^ zlpv!K?(YbCGg!m@9FJ+`E)f9PCll$JH#gLX1K%PO2iQpxwjUb+>c42)yfMNCAt5d) zfr4e&cDnUXEC|yANmf>l5lJAoKXAQ^C45jS1-?$y$s-~wey~^lT<491b|38*Zt!2sfFBd?U8B}rUV2eNR=#2t{FQbMST6W4?Fse( zC~UQZ3sPq=v~&g7L%>DN{GY7B{kAY#i$O3E3gI{zNx-4+CJf7M1$p5Hqpp;bf?&oP zmI4Ohep^}l{j6<3Q%qAyQ4LDH0l;I^lRMN}97|MQ$%t&>Dn3b7@&~K`E zOJdB_`;9OJoOvGC755pu#-3E@aRi|vC8QSThuI%|fT87vds6)~+>>Dw zQPr;o&z|mmEa|MYhjEyyzC%XR8~x#0+?Z?0btWd+Nk`E;cP?`kR~~In7ov?6sV2O= zb0v&y{JV1G4GjRZNPjjXa&q8D`Tn;9Q|GDRlY;ioOp2Ha9gqs>Xo_D}EPv$*4ipym z?Ek7-0ahuKZu^v)t zmVt_3QXO}RB3`%OGH&oO+!s*Jgs&^WnlCHSB(x&P*w%&q*zN&fgUOKpXZ98`6&kxu z36i4VacaNfI}j?iSPl*f2fSAMuU_v5G}OZ{Tdz*ARJHc!Z$;!4usFR|58Bjdb;%83 zd~qKLaVqdFl7pH$8C1klLhz1nzq|g!+TTRLy&9%F|52fXjymzT2*n_eIOt!4$BI~t zN5wq0n)?nSvX77zg4(Vf%my$~8anQ=$**7_?(3~yE+Mx$kXaU854RD28|_+Oc8QW zY|(x}v(U06^Q^DXRJXx)!qCDs-~`8~4mg(thE9I1lqoJvHq7Gf`ls41odBPcw}}7I zIr+EvB<*`^4*eu0IKvd#C3x(Kyqp3n+Kdc2H?a1>H|kQ7VBzF?YNHs?ayV7mC`ZV@ zN5ogbUgv?odlR_o98bxSc7AaNVmlH6F26nLe}9FOVjx8R6PmOB?oISbZTN+*qX~v| zir|g3iGUCc$d5EaNeas8*_mqmVr#B_ufuTh3+a57^vs+`g*Tb6RFXHIf9d7kHqbat z-rp7Y9g4aUIKg1zZX6bixBm=qb;pRg%iK+F!juJm^1x=`3}9dlN!p&ZCj?hzzhy<~ zyy)<73?zcXoHp(*)wow9xw>bIR9hcxRV3at!Aa$t5D<)3z^`L?M**qrSO7@ydvpKm z>jrQt)&Ci%(ykVp56dU)n!h5sN}4od2-QB$lJ_S&JCF+wu%BZw^{Hw#GG%S#Gv@^B-_J z(x!=FR7;R}`z~Z4T}BI#Ni-(k%uJf#FcEQX3w7q)XGi%4@N8aEL6@JP1@myG9JR$@ zO}f@``Xdxve1y1*T7!?_lDfJ?)-zS_K)-A;Z*TA6bT8t3^*m#78;5k8MDT7lY5pO@ zvq9wJ92>l&XRfv^9;{GjSL=jvW&a77U4SpX@8$CoE#&ckj&MKz*{ojXBiyRNP|xOOwvyTI=h#(p;-Cyo?~R z0KexV{_WdfgR&1ew>vvKkCxTgKZZYA67htQ(&smrkov&NlV0^DJrnkD&LKWOsWlNo z_S|3LtuXE8A$n}gz-^_hRPa=2yIJ)@WS{p!VF;;_f7NUv;piGcRm23SgBcs;Wk^O}v{Qh*YnVCq-i; zbM73Ue$eqm>9b=_2E*#Qx8g%==)ZaaFsalbXyocV@}cyWSEWi07Lc+x3salus?3G> zZ`Ov=>0Qa>6^J`UeCD1L@jyCgm-wF#FZB-w#}sTtg}13qRTWiq;T}=YMhl&++tpdl z-;zz7DwgEcnG;nYSdJ%Ie~qlH(}eRxQ7%2D@f-^s1$vK+fi~9DHd^vNpTjc4%%so9 z!W|+?H6F~!*8$*cF7c~wN&H?^95cO(?ZZy>CQm+Lp-bPS7POu7>84bj#uAS^4s96a zug8joA?-WW7IF)kCr{r1Hwb!o$V4>Ab^!oOVZh}BWr_d5P@9v zGr`SBt>tVeZdsuE3%5&R$dM=4jEgIUm8=N8APlMYUd{LC~T0*z70?*gT9rHj3%@a!V=n8jopX1}|4d@)f z;5&?I=IiOtrO1A+3UGgC2l<~-ZqNjMxgu^;$(yX|5|)PWP;qL#5KVHMy`ILdqjE0J zqUCH;lQ*XF*T|J`ee0;WuA*yY>$!5Qo^2c|wAXy`KrNDOpm+q`d}2FDz1hiS(|(L| zmon}$iL$Sgx_&W@=!Z{_bYFQ6$w+PKlO}d+^!+ z(5KTrE``qf(C?O!(Hu#)zQw!E3=B&vLl$#$bE+bp)lexH1fl9=XhFSgd6PSK9oq=6 z5@B7>Nd!*H(a}Bodq-!4IxFfq_QKVSj~P2(YGUqE+iGnWDI)UjuBkQ%p&Dqq>4frD z_3wJnpLANChQ~ODw)>Y!?o=gr>yR30LQP{Z+Sja zcQ1Z`v(to6zIfnGrWTQ5>;y}vCD*ZYhZUh1IG^mzHaGAQgpR$Qxrp}=95LH1pYZA% z@-m3wZqhYvm*9ndXLzQIRady%KR&9^Sgl*V@2a0~Q#rFK!iHxnyOrp6emvtco5q%0qB^pAnqaqpfP}}qy6>IsSmanTUfBFeFg%C5miEN`Hv z{@M9Hv(7F$8l0|*y?{GPs`<}amYD`5v`kE*J1X{hi|`3+BqStqU$#3Rb$pl1laDD3 zIZOYJb##i;ulnx%czvhZu-CZ|ROZTtT^G(WMi`oA;mhCGN8jQeibA z9~=^r!;A!bKswpU;cM*h{-R~@``DbPEI7L=jnm9{<+0^hG57tZiwBF>#Bo!54RMiC zQ5)TIv45?SIK5|=*p}&U>VDATPEs2PLop2(%)96{u-X0O( zS8eMs(BkVYb{(H&XZ75bSb=6yx4aJd-<8oSmgUSHIp%g*F8CDG$g^Aod`DLQs{DN=@Er@6AZha)=irjdT@&SPoF z%T-FEZvEVJkoHhZda_x&8AqRFrRG5UZ#%30{UyY@g~PEfe^>|s25n#N&_@0P zNX+TySaP3pc;|09tsuw6JbH4C0)vt*UaJh=wkAnX0+&(JoUpD-?s$NEwclU{9N z*G0|p9ek_Z2FpMeUeg09G<4>b{FmUQ)T6=flJ5Q}5g5bNsp^z`9NRM^ud|?nr;4_a z@Nbiq#OuA)?LmjX3WbzvMVv^l*T37VSIVy>IWOq;tFot3!-B65wF?XznVhyJoNwxQrgQa0Ak59`M_WqF7)7z<@kQ%eYW8T6UYCU%%;;G>-LA&g%5ls^ z+sj(n@M4H`l#In#c8R{MO=^hqt{Fe~WS3Xp)Ad0@g6X?XC2Jn~&57rOCf_^&n;rfl zE}U@QOQZYcmy$jCRhLu$$`)u4pOx!eq|2cfx7nWkOmE%8UU;Ixtw1Q71=(r&LO0b? z7_Buw$^95&Q{c4Ma3x@keSE;TwuOzpt>v=$g!%^*-+Qmg4!;=*ouKoAym`%@^T{+j zF;AgVzX-3)Y`>A`3rLl*X0fHd@|wtgv&(FbM!{IkxV@gF#M@SxyI7MM-A) zAFHAE*NTtLcK3>_@|G+bW|^;Tn;yT9Wx3Mw+|y%Onj?nAZW*>%kJZlE)rXD+M$#$- z@9CDWKt=loT)?{DnDw|DyeDPPbyi@0AW#xE(+HiG9y1zK(3{u#fVNox{3{F5f5yMU z)kH{&-+Hnwr|bS)&|1{{Q>2=j+~p*+WsnzmarQ*}W@D!XLB>X?S!Fl`)1c740^iTnpqg=^ndDJxng zwe-741O$$pD<9nVyO&!pXZ##vdJH!!1HbLT;%Q~Gx# z2{$rWsR|4WbLkhR34d1MqTvxX$cOL*ypM@GCi0;%2qa+1U=ZPv>FHI>#Qe$L{6=iD z-1#x-Y^i_|CnV3gY*-^p-@a}$xNEr3*^P-TiCa{sb^a!wk_{PQ@{nD+3{f#!`MG~_ zu|Y|8ma#D#yO1w0CFQqc?>_b+|AvToUB~*5QSYaD_0c3{d>4AF+lIFJn`^s%5o@#; zln5z#xf?N8$6r0~eD#A`X>gTw%H&fiDa%%&Zlz{1Kz1Rw^Ao{rJjlD_F~Ynkhu|So7XP^ z@JjL&g49^d8JkFQ{Mcd*Q(QOQ3~32odI_bc(s!3nXHi3R2+{KmEG}ygSG;`AJN>M1 zs&q1H_pS@Aq}w=z#C^J!l?);$%~E}6Tf?Vp8iQm+h2@>XM@#0Oe3uoX6rFQja{5sg zsH>e#`1nAMG4hgQ%cFL(t48Ixra3z}pgbKzn2wgHvUl7$R;8`!x@?QDV86W#kKESq z!~W%24tcg}DACAi(MC&@r=jbH6Qvc~@k8izxsrTm5by3}rR)=-?g^Xa;>Fsyv1;dIdQXwBzkXGioM84-@B@*Eu6 zmjGrRvFi-IR*)=4D^Oe8=?8uV$ja?ULBAcW1>rolaM4|pGE9P_YO!KXW2t*;_lD;H zDM5n=z*Wo5&Zry%=u>j+Sr4Tv^ zb?(%%m#~|xw`Y{LGJ3YZ){k<=tkM&795=;0W-T5naFqGwSH47=d=8H6$v~B<d=6vHsBmtx+2nv!CK?Hjl8cF(GdB0q^#x(MUx);)4y!K-VFJH)9&Wb5-xfrvFGzEuOL@t-TgFz zUO%3st>Kboq(CnYyR|pE+f!g)p>~hf=V~>Q$Cc{1Fmn`W?R(%JGc?=05D zE6t%R=>6;$lAIU$bcBatZU<*e;h`UKMysu66!#ioK|S}r<0LeHI*KT;mS11QV=)#M zJVym3Yw6zu!Ux(@J=y3(%SrZoqx%^d7}Q9Xdi0eIo!#awAX8YSx z1E3$q5UTPO^zI$v*M;$i=Q&&Jb@SNa*ZR7MQe5;o5Gr}Eb^h`=+5Ly+*6;zB_@K$>(nd|&8vd5C>IF)zLh-&XI@p4r&Lv(qR!E~iNd5!d>Ic%%>)E7R$Y z_wJ{USGH`;7tNwpK6yHBcP|Q=GqNi6N%0<(K25i3gR12^?wNB`-7|JFbY2z{}x{P@&_YNMJ1R` zuw@T%c>RTIMV(KW*4X1E?S&5p;i2yDd52)L-p@=(EZI+yf_prtR-A%p74Xkar&s;Y z9_0|*u1mJD2(!qPqI?e#-1`Q-7h@cOO=zP0K(vtTPO%KCxzOm@<&aLsXQcsQ$@iUG zca5s~)n0T)(qcYu-M?KNwS7{{^;TEUpWQe#*NC&vAHqv04jj*>n|XT>yK zAKH|h$@8T>6mSTjxCy!bLf6CgDfEjB5Yj$J{b%AS{-L+bR)asr*H--uTf*w-(HMX5 z{I;d74Z6WMT6wj4Ll?DLi+D%abp77a5;GEQpG{2CC$S5^w8~f4>ZNR-@<(l-QPQ@U z&=urfO?7CQ2$&CU$XGZ#iDD5ed5p1R>3s3dsHjk9GWvYmKc+x}V6ktYv{A1^wnxim z^b9|ObPJzSQ98Irr^4ksHW0Jl=2mCn=JFM2EjJZO^wm-L6^jfPLubm04GIVb%O-IA z^+%H3r&|vtI2ktQAL#N!6(Uf#bH}x)^OcL5lIqDEtwg1RSlnJvd1!l3TG_`Iy_?b; zq}*Q%#AFKzh{?)7)>T%9L`njhVS{kj(xJyD#E{{)4&H)lG)A4^gHD6(COXl{x5@Ud__|a5;5HRw>1C_>El~3j6GYaaDVx4-f&ph}yQboVed@cK05A#T_ zgKW@LA7aGT@o{3AVHs}(5pZ{Y;*9>1_Vw*Y-Pk~@SN%d4WtTPXE5>p6G7(W?Nnc&_ zJwp@Bzo%r}a9DhirMzhw(sVwKU|@+++h;h0`o~ABz|nU)!V&*fhnM{d-F82mI)mAr>r5+mnr29Wq8L$pV!%L}T8eI$4Duh;@Pj$c5Up3bmzI ze(;%M4b%t;SXA_gnJqsj@tJm3+|P;K;Cv;YH!#GXV?1nG_C#`OV>9Jo>4(x>)L_zN zTS=-?f&@#;L({vJw$R7v%aS7WuAYZ2gmYvh0;*lSEaSQNTpB{@PemUcVKI&p_VYVU z3x~?GnVG^!N)YdSrrbF^#YVe`xoG z8RI+JM~1_t%a1<`hV=sH#iKd(TCK|Km-nDwV2@60LNJTrv}QSNb-#2yv^;6j>R4oL z!}E(ETg|i0Qx6Lx#YGGS-m#N9IsCJi->lHkyL%qBGi&oH$;-!%y>r4|P+qnzD_B_77O1Dv&^?b1Maq_XVAiN*ilgAz8ssHCOUS z@ewpelh~*O(m)WeK+XdmoM{cVa%5pA{a?Jjbx<7b_AUH|BoHJC!JXj21BBoJHe6S(733*Kod#|F%w;w~xO_(3jUYD4UfnG`JCH+K)$o&jORyN4v+%R~e=T3J_&R71h%%8|NSg zCNaX%oT99XovEfRh-%ihwmS4ttoqs7VT0L?7ZZU&rrt%1;WI62vCsXZbo84BnjmEffV|j!tTR2xcpg$&VTIp~8Ajc`VVy!f0~>QHAjb z3di^u_aju0GoR^?P>I@moJlbeO=O3s_BV+6PBZJFQVtUlg7_s{h=^;n}ha< zOGi1fB8o@wI{#O)(B=gsb-3jB@7LOuJ_U9E_}?#^mFt%@>17=zGYC@>rcK`AyJQVo zSm6Cg60NsdBV*DmH*2aZACVduCdxIVALy;*S-66I z@htO4yzjLbykz2fW|`4;o}!TU``65_A;4LnS#MmezIY0m3lH{Js8}ZHh^CErBKY?oOy>=7X@XNKM z9J*i5g7w-vS;vBF3STnK9Tui#r$x=O*N4Sf-aBoBI}jIBYE&*tNQ(r#M}#c5iAEG$ z?=$`ky8G%KkUg&Miy1E(eKnf9&DQIZr7U>fKK$cqi;z;Ci%Nte@~-)1%Eq{t(J|kz zozZ0S#VN#5$B1N6*snB7KHRAmPcAy+)-?#FfG3=O)M_?QT>s_|(sNT!U}H`Jrk21= zxfmadRb(VoGe8d`S}Z`U?7B{rA#{}vA=Cb&NWb4cl`)v^HJ3?rBXewA$DxwS1O>dV zl*Ulrf}EKib>nG%bx*`UYtJI*K!-jRmvNB{6{3#F+dM~S@HH~ivcC(`r61Sy$cIw``TuUrK z%+vZuHM4EPd>%&zhq=qD!4{Y~KUdw0)1H(rCxKV)zG08a8PU3hhsV0hhvR)nV&e35wy27Z3{0pQX2M$l(*W>Ur!dKVLYf6}kUs0*)oe8yM2WiqPyg7g1X#$l4tY`1Mud0&w}$5AgFZ z-@Z*Q(@?)d*~j7_%rvjjgeVoa%zZ;)a6A6=p{zoyC&5i|KYcn^kN7yvb>?4Iqb}tK ztC8_JufEwQd~njUkAk#JrqLXc(dnCqY@wy$!{vgOrn_#M(tFGMBo7uFy{wJ>G03f) zGFZyThpss zn@EG7pjFIN4|86w@_Y+Jvr;-R*Ly%?qt?hl8XvI(6(L|PCN%cR@;ToVtAX55 zlk<~_J$8UdTfDe7pS|o=fg+$r_ms#B1d7kr)(#B3&&kE=j2as#VNoYSc(14*e9(&% zfiS_-OcLG5mJO2(aS*y0#M0t3|EQX_0K{+(Uy^I%)Z1FJa{{yF9U-SiO$ve$*EOyI zxfu9^t~yPUirYuN{*FG^bV?O+ocfrS_Noa3?bjw<_Z5!lc}HSPyI>l7Q*ofP<0t-@bU!YvCsBWoJLYNzlgM$-xeQL5P0vMUB0Yj5Z z$Nb9;4h{i$`HN+wYda3swEMxIHJX!_a`3Q`<;ZPHxn>o$IACqb7d(=V!R}hf6_7DU zHM`!8>mTni6}MMMZaeq-bLk&YJQe_@@~2oFuG#l`C}+I?q7(9tq5xoOr83^z=hZs4 zD?p8=6tzl5W94UnA)`dBnfH-c>UAN>&UW-}wZq-In0(@~dOABgI zbb9HP3|8y3re6sU6!6$-#s3J_pBef}$Nn}t+`9Qvy5{;{FR*k|W7Pi8WfH2Yo- z3J1!tF4H9&Jk~UDycJ6gk{2}E-CC~HKQYZ(NvzH6sXK+MCB>&G`SP$8_pHX244$W} zr!GpV>0DRdB;w-2Zh_7gDJLcCAGZdeP-P7DS_W!ZcYFsPrLP)>p{z-urG(aZK&mP8 z`7#S?_eqLCzaAD6C*%=S%yiuWyvN6YIh0<{tPj^*J@^elAUtUprx!7Z2X;7p;})F6 zB9C~FR16G2ymCUWH=xF$e)GlR#4ccTawChEW5zg*WAK@ z6N7~*GLh*Av8atkjZ~v8v=C51Qt}f4q-ohq!n-+yUcWot;p<)x($g`>cnfD`)IR2~ zm+fsgRP4QYLdR6kmoTAWpUw~D@9m5`ogf(#-3@oi`W&3 zuO9E&0(9}TxeYcq;zb)X2fLcV(&++eZ6DhMqSk?LiqZAC9oHAUY36d~dTP39Iv&1T zGd!-DS2Y3-QHLCz#vMN7(S8TkP^J_LK&qE)w9zWbG9d$Gq!br%*gBRjKyJ#u=NO#{ zyI)!I+ZQz<{`u{x(m<%3hyK|Pjt@XXmHM~6Kbr_W0+)Z#jp=y~SKj>|*%ympH&fmU zTYY>|Fz>8=3`XpDdHxLIl3eE6q|(J761Er`Vi(!R0qfw9-2K_$ELgS7=~VWwh6E=h zB$%hv;ZobqDLU z#Q+qtJ7qb!$GtzzLJ@C@3U24uFq0@t*`LApO zQ10rnL4S~cs1qT$GTXA(w?O^UxySCdrIwQ>$E2sm;`Y#Bf4I{YC_hdZyQ3fm*PZr{ zDgU=2Bo|kP5E6CaWx&EJ(4P37Vo@2WH#;GmCOGpb@DKhX3UFL3tnTgBM4FW=<6PL3 zqaW6pIhC&mo&Divw1>Kvgpvn(^2e6S>T(I+DA~SNt``l;qi&C@q7M;2-BEU({&p?v;a=mp?LLtL+)LU6SSbv@CLjeMY=v7AF@8Vi?z zwpKmY*XiW+bP0T$_r<;BK2txdn5}a9U(a3*c1|CMAnH+i+D?JSDD?5f2e~lye{oU) z^G$?FFLl+l-Ocux-k?1_1QM-35kbI~O2e4?8ss-`0pnEL9OyxNK~bn%zdgx9rFeWY z^-{e|Dw<_+foSX~S!SYGQU2y^109}W4TX2SyUNaU>A(R;=|)hHUt^y`swnZ9Q<726 zI?<&1S!Cd#)Y_Al7B4-((Bpq`ZN}Jew(HN@aWiey!cBYhUcQ8pWA4owr|kxzZC}>1>i9ZsezH zO$Cm7ereCf11{mLHVX^P$yeZ(xN;E&CFR%vRXHE6uWa)~#~W&&_^-Q~?XItC zCa3x-Dk>J)`mE4OR)yzuGHg|6Lp@4(y1jdc>>s15N_4BP+i|e$v|2I^Tcdfze$vc~ zyc`3O7%K;69&^uB>e7_Z8#Wk)<7OJZWx8p>vvY()Q?q?9WVH`a;B8NMS_v+*0;eRtD zFpwDmQuoZufaq6hw3ep`o5AK2GT-CtlHFd?8mFh`(?i3h-p5*%1M&~?hV_3l-pIxMJ!~NV(ymA`9*vQ07bND$wxHer zY!f`L2^KV*apcvkOamI9^fJ@1M&o?_;dNn#NB2xM!n{&F9wD(^UgbswXPE)#(=@_n zbMjvv<_22$vxwA>Tw*p%kZvgsc3m1b#ab;_R>6TzT6-(4!GhB)8S49}#CRI`r5qn)QYhEJtX{v5W zH2^x+mp3AkTD8uAdsNZJW$PS|iI!VgJ}z$Rvm`?2^0(FAZ@8S|o8HyY582qY`24a4c=EV48x20;N%a-q(fbf#K;D0x?keB_ho zDm%jtPwrRuJ>)tQz3co5OJERHR?j{_H*$h&b*y-`Fg zi{7$H5le*2S+C3YJUBCS%#xV7qM7OeQyt?e(LQH}+3?o1nVm97`xokY7?&t9A;C-3 z=K*mqCALqf zrzoOqbn;D)c%yBRod|cpU44o5t{o=U0djG5sI3^ke!S6fySBw|WlRDF0Z>ZkQHu zs+DzV^+hvT`f*$Ir*WSyMvmfg6N>0kyYGky+p@7BLL zor&*x;)P-Ti@Za+PEK*m3dcjTM2ijH6;~&OqR%A>_~9EJTyfcZVZqx+;LGgDtz@8I@Ak3Y2yqg?wxsa7s+nmtw9}W_mK?NSIp6tZ_A7XN z8UA{{pGge(6ww=HJ1GE3m0Gg68E8+arlL}8VCzB7?V<{Gua-eK1cp0NcTy4&uAmts z+T0Hh7SJ4bWY;sfqf>Q76cdRtx6qm?y`9+>T60>tr_SRMHe14dPlf*KbO35`QIi}Q zvkbaI=ui7vCG!oHyNL`Z#}ij#rXD3(!ynHs+t;( zb$DC>)3lY0_Uc7gQsI?KVM+0`0qe*1cRQ9$`epBD99F_FBBG4jph(6QW5q+Cmjv_e zT@sV*B69erm6z4`k$1=~^>V#t$rzCK<{j%F1yt2|Pt4>Yn?85hPx7~`#gai~00Bvv`0GPJq^TY%C*FqEY zcuyyvPzff#Q8kdNHfRi?AWf!YD+|B3ndCzA=i1`3nJ)blr3{oJq#6Ze5wKrN2WY8* z+|JO!wX26N%K$&9sO^ErV^sU+Nf_Wdm4_fZgR0?fbkUSNfQbwMphq^GO$>RF&7@mo z4pR&{O8J1*nASXu528?_R>XOD3TQ(>hv7hKs4GD=(8tonIU-s}J~o0yl%?p8gm?Da zvB-3*(fQErd*LB&KB4VR#`s|KB)oK9C2g2m;&SV-zGEloAwQoLP<9K12WwjahRycy zzls+SpB&S=0YiZj;cfRH=P5?h-4tUTPP$FfA{iR$|55MsYXO*Izv(W!>LcHbn{SHQ zrmZEm&6O-1V=)1l4y|bLa zQR4em4^BK7^?PYQayyu7)frXLXgH<~>*^>JK&R=%-+5P>HAcz39Revfv!!gdTc^mL zRHG7+dp)MUL4fq>PZ`-|ugwNzGa_@$jn=NklE6#+nOD>mqb55ZD0g9CKpQ*Q&}Wkv2O@gV%m%74GHp4 z#1Sb=kEp33U-ZUQ$(YK~zC(N-{ILCc_LB?c7qn&B*r@*Dh5k=+3!A3_6J30G*uNc@ zG@C8~RMP9nF}KZK`!a(dBh>7JJ@{;ZoXFfBFcAPz@g-YlC~+*`(I3FWyXD>6w^2e_ z0{%*uQiZnSpCcF&8%rYQxf1VgnDX2mu~x>OJzHk7cV~qMzB0OqYvDOL4+DmEPy~K0 z*Qf%if($bMtn|4Er9$?~U#K;0UuxCZdcbjSkzo)9;+p7oMskV!*PZ+S{?;%5=?{sgfx_Zi6*Z@5+noaxgg$Ldv(lzw zh+6~^TITJIUkWoB3+(_ctAsn(Q@zo~Ymph&^JBQ-T)z$<&#?O$Cafc%y2@hWpK1h+f5#`n{)f%P0x|; zW~qM3`@^M1efSr?RZ26VG2+n zrIYFHG$)gG9d_9>xyeUmQmgPIvLwo~U06s+TrO@e^VV)1@nEN4NwQztxcl)X&4eg6 z2bdqOs-O^+^olR8Z#*?o7{~Yz7aeK+hC`)}=e=COTMQQXj%LPt)~&nf9cs%zA3t`r z5IrRkRst%`<{SBR1>d^uEy)LL2iyTx1!$9eN3AQ?!86097o%@`O;ZRv1HOiaPQitI z4WYAbs4wDn>apJ5{$}xDkvi^jp^(>s%NrO7KKF;I@}*qeOo7ZcO!5+H+S>ns9ZUSz z2A^1ZkdFYer%%)lv*n%-a)xlLV-vc%J+<%H{)>t;(KN9)+6obqRefsJ-{Fa#cJZiH zsN~=A)7G?6#U-Ee&SR*(xd9Br5U_(3#DfHZLXB_>#fRl}6CY6$bi% z3p&N?8-aN&ijBuNtLr#R0Dof;4$wE%L!^Lk**JPY@+dDdHst>pAW5M39j>rEi52hWu&dMIoBUR zk_K0E^~H|g1g}nhvL7n5+v2Yq{b54ob}|>hPf?q=E@8N9U8Yg>k<`Y=U8MZ=W@A4x z19p@~8GgP?-C1B~yv08P8;_Z3*uG>0y^t>^0eB>@8E_K)imQIi!MqHer165GXHC-l zXpXRw{@r!3M`fmT-p94N!*-zyv%-FzCaKO4Ja$8?uWVYUpChi-H%QFOe1}Lh3P2Wh z&y-D3_Wy=lxep=NReCBr(6_YkF*k?LIsE272J*u4XSFTIz!<9j0hmou zx|!hFPpY#YNW#eHa{#lz~ZOR^ft)mM^D#>ko6J%DABIkOqF=r}U_LYcBM>M7lYmkl(t6*4u) z(>IYT<~iQ~>Q~)iM9){_U@wy-86DboMD=1>cwDF;>#73M$V?Ui8dPAJAx?cLbLx%0 zmx*~?@T0&4KsU|asR|PHUi&ZbPH{6`%woU^Kaet`*yBSIn7LIf-z;25vT^;P5{eYE zWJH_{)oc+7xYBDmY&)-Z=o6ZtOPSBOuwQO%mett{QV5ybsU7?zgGLhiVc%gf8-?#wiw9YKZ+U5KGW2~%OAp=yW=`)P-|4yN#+G2d-R zgKP?9e*5Satt7GO@~XZNDrERBdd0_AaDJXJGWK*EDdzWF0~0fj#Tp>>a-@HzjFqgt z6k+@IR|5-Yk;*23qZyZ^vg+?9bo0h+wMa_~O90*2-SO)MV!SC$jfnSgG^3%E@Wrm+ zzyaH;g;%l4@Wl~ix8wP^jz(Klo>ESv){$jz6Va-E$Jmyeuu~RzgSy1GqtQOYhy5(q^ zAN20s%4&~wB@iF2>m`<7hSYyM-tqWjvZYrtDye+Q@6LJ$aGu?(dDC6~_N%pRw=IA~ zUrcy6H|Gt)^B zUcn0oeJZ(YwGU3)x07|6dn&;s&lyen^!T04cxJ4YJ}npssKE7sdP}f+?56_BWmz}3 zF;qSF1$C|^KUJLw`48JvI-vwFIE413}Tmzop`b+ba) z0ABphd(C@H5)Er^RBJ5cbGPh=ILDTzF{-uWIQfp&N!jTN=1epBQsg(!t}C+MsAqC^ z->6T7er>tnI$S-A9aie4CLS_fs>zL0i4byDuy|v;a9u3#!uIA7mDt^Mxsl}Fd@+48 zqiSXDJIn_<{GUgxe_K$`!El5Fvdv+WHvVi+oTakD!k#gf8Ze!P%)`A+&H(Azyf=2e zM|=dd^?nrl7jAiIEp@hr*R5AnSPe)_tkw1LI{MnS3{3otQ$efPTf1>iOe*MWXdi@m#^g8J)b;ld>r>cc-Q1a(|#kyB~p{pz3BO~6t zmv}`QfhQ*F6Tjjcge?Q|8561Z8dx@WO=FcF>_FVR_zJ8J9|&`KHv7)+2&c_g3oQ9KB*g#)*)0s<92!;0**#)Ph-F&`%<9eh@c7 zaE3?S!hNNm)Zrq$)$sLp3(rn=iK#%GlgiK){Z909q+ll!f!okZLzfYUebn9*1#eE` zGb`rs9$w*fC_rqCa5$|HUa!3AEATj60OeZeo~^(PAo=IN*3VN}jY8E%RlRGfONB07 z7|{o!MAU4OwHi*TSB)>>^CjlqPA`#<;-*Ln@)>OR}jXsbSym(af88K zjZ0JoHC%1NeeNHLmVk5ivEW+CnA#n=P6xcfY-r(wfraBm!l)-5su3^9`Q1c;pwUNC zDk1183Lco{hpDFelQ(W@UA=Pj=>7XifPFiRlJ^-fT)|MGsmq4;L)1TjDA!J89}OIB zZ*>;Q9$^@6x74P117{D{n<}~jXO}q_j2HFF(nSFIn;aha0Ak$3<(!i64|-gXH_EkS z@SO7*_V$5JXjb2gywY!+sov?8WuPDWAZ;x@&V&m`@y>o>%?TVbvIrlJkwzBX>(+T* z538367xt2RgRc}fF)!9he>bC9mHDH^l$ITYvWphr&ga^%USl*aJ29)+rGfRZFNKMex3LLy`|!Vja2P91yv<+JiMfj>b6v~dX%^yBqJz^?GX z#^Bh<#6_R-=5tKE`JT_gwDerDyR5VKO# z!ADTy86~OmfiYw6`~8wM&g)03bh$qFMSeUlv5)NWz4Mx5oivgP4TQBc5{Zy});W_tll zViNcAYPs|b5{e5#`};NN-?;I~BnfYCZ&5Ms5}io!Bf=IMCvpP}uMqns0qk$ybWarY z#bqUa`ThHY1b1m{T-@);UaU%0m|Cc0o_rQQ%^?l&C52P$WFJtNTPdn86gc|w*5R81 z`;~a3$I2Es>TdKcY(HG3zUanbT;S?tliQ{PC(1{YKAgm)iU$@{&mZr}_#!lh{eaFI z?>|Mgld*_=Cl5T-iQV8!OYRUjSnUJ;#7XU=8k5ldot;n>DtGs&*sgI3XRD=LE&N4s z_zUzn;L6|tR|fD1-K`77fKr)7glYaR2Vh0~edW+U;7gE1-jLXOx2cj6TfqG(`@y{L zKi42wxgj&zpBgU$Y7`Xs`WEFZ@CVeJ9*>Y9U({?A^BLCXK+z!A_%ipj z+NapM`nOE*MGdr>%7i4aP3Y5n%f()zrGlr_UBgHf7j6MNI2(GLDED80NNUB1#9(yO zoO0fFNCX~{|9J&zKPxp-;pHy@_Js4g^UU7)x4Y9LSfCF(>*8$4bA6{je_kzdUf4|6 z5bommyzA?i9yTOB62u6T8P#i2e4S1$C5HfqczP9di!8~9~?n+<PjXeLxL)2KmDVv23(n!; zq%sLr*oi_oh%lIKjO%L=u-B6%bHBGdTTFbh4rQ%y`t5}i@ou1??ji(v!}Q4b6&T~h z#rfGe zk&~9uVV#Z*$2~U0UcODjp{h{nH!2H9#DCu~E~KNxS$sVHx{1z2(m(*MI_idQRAX4#ki zu&>oNq=3DgD2E5!fTTBWz}*lO*O5b^RndKdBPms_yEywnu}ev&H4+nD1ND(HHrPz6 zvRf#l_GGLk-t7ak3+JQ?ZGG_-+Us|MAQ{7vaj0$*yIj9D_roo1Obqq`*Z`7gd@{anXTdQEF+ z3;V;$z3*#haGNnlLCxtR8F^sbDx)lmcfMC}N=!3h|C=bjap)zwz(LiKxRuWERK+S;*%aiFVEEgT$FA? z`4~wDgv}n-0ltZLRzH7#f4_v2)7#!vKm0uj3Er+GN=7%v0vyxi7mWOFu<=L0Nbo&; zVp$Y|hu!f{tft}v7-5hyr_lntgO*pTUIG9kI=@Q0H~@^k{2+3`1a?W&2QwN}-~`Tp zBJ-MnD77dg{{IuPARhZ?;|KpOI?%v%&KnBQs|?`obk2 zA;&R!T#F~>EbG;)w7yvCa#{H^{!0=nd&#w&9Fg9M$BPsB;_Pm`{=AbhSDU+CbA z^mSh6KZ7EVK+YdO#dQaCXP@8ao(5r#x8A>@`jWh2y3YAV_>LBcM-J0x`aZ;$F?Tu_ z#!mfS1D+Hb+$iOj#&UT>%0TDd@WLkJ8L4=L`2Q7{~7Wg)g(w%E+ z7mg=8{dv1ds68sL@*(KLmLkS};`u(NGs}}!@9P*vy4a6-Kk4>kl9$?1SP|bgTK$qt z^qf?3PwDN21Q=?Do5tgQb3(#2-gIJ*;2wh6eULk0yw^|5PfZ%{4-V`O=2}UkNqSyW z=X=Ob?IF>U)>udPX72cBk8N-R%~8cJP}M=srZ|pMLzDWO$^_y;QFV zEw4=GRO{Vv;TMS7{d%Tc0IC4H)D2W1paMy{R^xdKjE)4^O>LLzL(gLyZ*GT1MJkX( z-j2JOdcz_EGyW64%E_l1@S0OWvnuq z0zO}O<*>+d7U42Y9 z0u!otqYTu)-75X$F!Jeh+{|3q;|^Zo&dT{@i*b2ZH12-&=i}L~FL(o6p5lBvXXeg* z%vv&*kAKyA@7(b^UCLl;;AkdbrGd=V<5u6L62FQUsLO>Wf&18%_O^T*5&40)<~3zX zz#kpuE&@J~_pN@j-9&(272v8~pdtkqPqY^EOhQ)ps^VSwul>OY?yRl59&Z2YmSRs9 z?{$I5Sgp~nPaCo^iul4tlUrE!!VH#0so|`ncso?V)vK(7xv#Q(KFUBT%sYA5r-Fi? zlQvUI?DIBKx(@XZi)neVrE?dLn?K^K0OIvIh1ZZ$?8Sr^CbJifbIhDqE%#NU+weIu zbPbu@VoXCIl$yIfTGhGOw_NCW9II$DE9D(G>@EY&}i54e7UE-;(#u^a;PnI%$$ z0ri*kDYx%b=}$pZ?+u-MgPZfjHh2qZ;lBn&AYDzGr(gSL{xL+20wro0e)sAP<;_mY z4L9x>ZF|8OdinACD6!Uaiu0Z0D(2(frD9p5``Z)7uCD#xXA{j~2L`N6WTeK=<5p8< zF)%?#9*S=pw8^^M?`F3u?7Ws9fJ*rx4D%Mz_#pZ^xO$M16aMJ`76}7bNB%c)5-J8_ z;YWudodR%gl;)T=0&;=OeEj~5S!3@FaS5r}F8hsYX7m(ea3JS3DU~z%FL&+e2~Ib2 zbBm9&nNNA$uAWig=ypc2sloW;oJyl$>j9@Fc;L^UKgU;{hTbf!QJI5B1_^kqha9Q0 zQbe6kb5=%HiFI3*R2j5>^*mpO^H2_DjGZ~)jUO5>sZia2KWvvt6Fu7Yow;*$aj8A} zAvRs1ukA-nVl>&{a1ZWt%)Ni>eCxntOu`=!iG<=Hhe&-h3HjK!6tm!wE60`*B4%yR zA@BRn90H&lHBdLggd?L z*WX`Dbp7FejN50dbvLoU+JC%%UgLYaE~M6}-O3K&++~=;vC&$mS5Y9x{gqoU9us)J#~l`94NO7;vnj$Z*n7(kMq>Anq2YIc=WsOA?x;KZW>o)tb!toTB-ml6 z;nDilxkJ*7KmcPW7&AGcWRI^S;QlWEz7AAjbicw|k}622eJR-(NYhsnsA&2-(`b0A zl0`djXq>O(Ti^+@%e&S`k;V}=HgO&QqT`w!sP2YpJYZw?)c$F+hobdnI;iI1WP$tW zKhV}<^+ORFA@OI1w$7uuVxv>i0y*lP#glEtuWCdXnSdu@jY!8akBbuf7;cr}RJbiu zvn>kEMvbRJ`7Iq~$Ho}pPD44=%?GL9Sv)ROGJAhJacFEXwTIrp`JR>aIRGh%rLd5N zvvFT#4$eC;Qop0P!AsFR3({!2hn?l>gRUQ&OcB`OYC{A3k%!M&b_idkayvg*R?cu8 zy?;Xq`D6=LIi^8}i%gnsUa{s(-FqsUYQgH3AftSZg3>BNB~a49A?Q2Q8>mpgV<_Iq zlIy+}a5egmhg<_MZ82ze&Q1^qoKQD{SYsoaQs5$-v)8C*2C7h(yr#^l&W`@tP%z3a z9lHNxf%i}unlO;$$F=MsG+3?8Q>*C=ui%h7)LB&tXVj_BEEW8Hci zLwA6a)P33OzDEPrCAIfoO~D8CriV=zBEzC0BrmB_3%uL1sS{`2D$@is5&C`xI|00i zIs~>}#S52uE+ArdyprxW`kA+uemm2&^MU1BQ|99$6kWE0IK2TL(SCqMHrFI&b|NR` z2jv>Kh0V;>-6|if)~T88kOX^lgiyc!esIY{5K`N#nGB_QPW{WtBDI*eL%s5fw0z(5 ziW?r}Eec@QOi0ikGWEo<=;TOxcwEyyBt-zo!v4j<{(WCz_{**WncoW>28va`9o*^2 z$}h}pZK6wLxKaKH+&}QpM2@S2J0d}=f7H~bx+!(UC3LZka^9-?;ln}&96F4KET|l1 zZr!)-0DYQ-T@Vpw`wL^NaNPaR_(x~;!hOZsll3uOSUgBuM#d^lM0kj8={}dGc>w7G zxt0sy*k-dH(7DV=+IrvdzUcMlUEk4(iFsy}r%~la4r74f{i^%^M7g>AyRZl*YduF} zX5>{z7o=tQc@Iw4fIz_N0kB@4KBJmMhQJdCj8|@t0>mA?k^3FRTeilXsLO;MIvsp~ z^DUCpe2Gq%=5{L@G+er?a@x^d_GhaWZtZ~n*l^2;nQQ60yU#Tnn#MP!mwM-;x6QMV+k?c@ZtwWM4K~IB zmk!eeXLujPZl05M!)D52Br{_sD{uv7Oc5=p?Ph#-wVyQw;4PJL%S%YN^;V`{Kz2Vg z8Ij*-eDtkc^ZtFNx}}*}iy4g5xcUQ z#l5{h#wo@f8$AEnj!MS!x86$oK8nC2zPno@b0RQk2w~vux^TlSIqxbrpSl9Hbh#(k z$uYeh!7!Y;zv}q0`kT84@Esd)xrHBVi%7NAsNrtOi(3N(&)0CVhlTec?1yUnxf6WUT?g!0(Q@I5{PbS@ImfprcC-&!PPm+f zEF-}xO+TG>zgD;}&qgjbGw!9s&o!ZpU<3RhfejUsxU zq(NfZLWSr$l24z`fo<5f{gF(!lC#O`K3E{gE7Mx&qwai3e`BIQPaO55hGLjz3M!uLQ_QgjA7t-Egk6?2!1BzUa140izJ$dqpPCmtI z$L09=cvB3;h~YPzn|Ft}hbYSD9|2TQyM+dH@lcZcn4o`Te_(wg7w~vZNB307_u`#; zmb=W4w~s={xt)HC{&KHyeOeFFb{F0*uRA(%zq8?8Kd7`nWU19$JkwPV^PRQI5Fy8(Zvf{|PV{I7 z!M+uHKS1eJFs|8y8rSy!N^)iYCb@uU@IcX7n46pa>?)dTwXM0T9#y`rQ+s`L4*wKG zt~8-W8+bK<=VrG`@EGk(5{%tKz^)rk-gaSS+%{l*<+xP(YLsl8RQ35@+xyBtQNTdY z!h6vF7IJ8Ru9UC$ym+ZXYRL70t@C^1Hgk#<_Q09a{x(Os4i27+YkA4lTn$o_VlwkE zV53#he0G&So=hcCK0@tUhWEX0GBG|mCEtAAX0GA6&xVJA1nUorMSeOeBw`_i9y4|EM!6{ECKipqTN>o z4ra7_Gm+DSQFr2i{z3F#yzzvLOPo0i`B2jkfMlU7?}o%PcX}*`FH> zBTw+J(4MR(QCOOeeP5;F7Pij#*IBtaKCABA4HeVEMHAn0?ybFJ4AQ;kL?VG zw1NVS8+`f^5^*W+gC0I_l=J{FOSN6L3RFvwm|mH0_6T5BX4&U zVE#x9;;8MHda1mwnAjr%7M-ug0m#P!9&k`d%Wl0sbQHGK`dCS%gMFdVegnstJp1-` z=;)h}F9jPBH`y1|=hGh7W>KH;-+Oy|d;Q5{Xw0x@@AP_y8pfx);2HpJxdQKTPq$fr08Dzr_iC460goSXRF(ztEfdfKYQC||Ylg0_ zUw#)jv3dpXT>1YlvU7=>x;3bT+rG z9Scln+m~vw6hV}?uK@TX>GPa6isU1jIa*=2KT=Gq3e76k4-;Yd(Y*FvTT z!JXk-a{bgX0t9xnh5i5H?X9D#UbnVkLK+1{K$Pwhqy(vjfTV;VDGO9ex}{4%x=Xq{ zq+?M^cZzg(ch`F_&fe!a=X~cK-#?G<7>u#jSX*{67kbSzTns601=HeJV;4CVVlXVM>0X`Jki4Rg$T7bXm<6N ze`uneG!MV_4nh9%up-g**dpFSOskD{Yp=#&Xm5OD=hH^1{*`C@jZ57$jl`U!{T8vH z(;YIGLx$9}C-cAexEadcy0o{-yfeSLyFj7)O){xg#U)v>gKZD%@HMk!J>7-$2Oyc@puvRJvW*{Le*o6xR*Akyi0_xL z;kbLStjoh9iVH#lKE^NW6sChyHVWk{_oqyHO?@+DJ+d$EI(wGkKYZZVcs9WT>#$?gyXWUk>XCp}IW{x4q2~4(k`qpB82ihsB=6K%8T0LiMJD7*q<;fEfXxPTgIIH zyrCL>ox6`Gkdg#J|7mOw*U3a;O_^mkDHZgeHL0;isA?gmB?{vQlNAe!ADb-knqcqh_CFsW#0`yl8} zc4l5GkF$x2wWKQEgnnWXEkfqIhBpx@sgCH^+nQ5Wit+}|e{pnS=RGX1DEOA9 zyXd#`i%{UJW?-2%TCu1O5+D8er-5Q_hr2bXFJf{iJw{kZk9LGP@#j@<{I`X`)Kq6# z+g&>JQw+Y;m!kB&o4>L3t^HofCqo9{KL3X#sIzY}k|sI!f`Q>lx-Yen)w3WA`^lKq zT?uB&-Ka4gP!C4rT+V!LY!nXFV@|G}x2$}E592@5e!F@OtYdd<@q3xG<4(fJKS1gIxAx-VG9^EA{%eckq8{C9ZR|tOLiWhc zvG>*uIvgctt{pb83#Y}TWn3LF~h>&mg;R?d9pD6BrWoT4QW9$|&Zyh;EW8X52Fjz}sYW&qb{lR@Z zPw+{8)iNaeQXCVyt__Ak{+FjofG7LQg>j>&uPndco9_8mr~Pyv3$u0rWr7;<9XfDg zc@mR1HLhJ!%-8mm3io#KV@ew3D?cdy%2gy&Bg&DGob-3vb0`?euEzad*vK%|M-WqW z?>gGoh!!k}fQL@X^;cM-Op;~AI}P2?EZ=TurBO^xJen}AxFqiP3z`Nezy4j`Rla>a z(Uw*!swH%IES1oN7>?CF=JXX0wKL=SY=;99t^Va-r55KPAQCHgRlg{#xsMK}xeiv* zu{VgkgDl>dW;opfIdJ^uCZoIGYaR?UQe!gw)NnYnQLo5-QrPggGN9%qRhj;d;H1?~ z($VN{bcgwH}^y}v>*`H0p{9f>wvk)wxYRXsA z@axxtIsqjSbqhhY1V)zQiDJ181EVC{a^ClbCa~|HQ&PN>$D{9sbhtB!r-l~$WK_Z` zi4t`$bXHN+9fJie$ygrQxJdH#GAUrf7E3nF7bPB;k~#{Q!uB2)*e&n4&M(N(F3hu~ zS+pz>@~Qj;lSR)yPm=f;{6Z(Iy~&i0c{r*=kd4ozV$}AO!{caum}CUqRDs-5lRBxk zmfwke4=V9S!ZPZD!}hq($H%8%IQqM)m%Zy%U_-Mj14GX0cn01!%!;4jrW89#_FVW~ z!@i$%nW~(&fnG!X**b^Q<(dw&T8Ty%JqHE**88vP`oXgprMOK7pt;UA%_?FCrOlKE1xdf|k58OtBZ}x+FIg5s z8A@!gYTomHE_~;f5s&b)_)zeQsOO#yFrizb!+LyMt$m@i69RY{lAF#lHGG zU6j<2E~EMF!yABuONAeDVrO^E#N=<)xGr=)?RYED0{_RJ#-oLD)2$I2>n? zTXk4oYwOP_Jx#{zs@aigCRD5+_`L+_y^?T$-6?CcA!fMb;2iPR`kh*ZG0k?>2BOIZ z#9xo!Ory6Xr(J;eYoHqB~R52SUA(r_q9o=H}0v=<%4;O6qKqbuEe?mz_7 z(NfS0SL^J(PdSX0DpSo<5_Pmaj0`TB$*m};bp>Od%*$4o>XoKmt!#mvSXN`#ePO!l z$ILHSGkj<{rt1zn<5<2UuVCV1K-rJ$FUXo2U){`3JDRrXMr)=kfr+r!p&Nfy*Yc$p z^jh+l-tNLG!!bA@r)>N3=O!l+YcQzOX|$K4lt#(fZzK>s0idJ{2b3hQ71pJAi|)4F z+kWM+PoYCBCnllFLzxzv{PHz%YHWoVNF?X7GTtKYTa{QG_OlR=Ro*qA)K>ZIfZ0g7 z?zgGg)1Pd>B+6|^%U6GUd#sR9bZ~LA!;*Pz+L-k4SDq3;Lx>{js z-vU^~zyQjT!6Hhu!TiwfoCw=-tIxk<|b_Xy&?-Bc4EZzeTahR8W-KykNIp+bb^7Qjl;2 zTMf(d-&=0KPB<6wb>cQzCmfFtxsV?y(eKlIiWM7h;do7ke)ldzN0H4M4dHyf;|~3h zr$=C7KaG}HP`7e0zZ035mO14`Z1-cj(io`gROBPqE*ahNGT5ANR^rI=b-{vJqs@qB z4n~kjA4vfh-@(Yvef;4c8UB8n(fdc%zmw*fl6M*x;*p-S2l9=X)Ue#&H%wl5r3(3o)UyA<5ucKk5!y?L&R9BAj zaR}@zW18s3b6#1}GaUBNy`lJ^PQY4sTqTnvB;*De=gjfHf2E%CDvkI2<>YO8p-G<1 zXpIpqjd#HWU1els6iaf^H==im-7AQSk&r{O)T#6fGznlxat#2x7b0hw9+GKlvs6FE z!0^^!$6G6>VzPe#D~rSVT{x7U^+BYMVNIm)bMdGy7?_wE_2 zMMftMH@~RvDSmx<%Hg!XMmYXiZM#+?XCswO#UPIH0Zb=k?8;$#tc}gOJvprK-~j8H z-72_baA;yBOsEoHd^!KX8>cB;jz2w;w^gCj*tIv-{e2~8*1hMDzHfeFfsYMs_V@SA z!BQIuwH*K{l$-Q^9J|Xsh1zl6LYUZ^T-s+nfn_AOB$Lga_f5m)^jezJ=y6^_SAa1) za;(+Yrv*Zn3y*BicrAMuX}gw;_DVYx%kn?&pItWSQSxt!=Dxv%hM^Pw)jim~3##ti z9UjG11u{O60p~w5AOl8sT&yE)2u3S&EIvjEfY-66(1J(s(bq?;V(;Luk0HOG!w1S= znC9yyfA#uc1LQIBqk8|!!80xw`LskfGEogz&d zD-scN-K6sA@q{S1$jFM8Q{c(;%_HvMI#TW_I~gKMEf+3)uw^twHzn_N(?=08F$I__!nyRB1Bl>RZyu;uZ%V%?3; zwMWa+t0R?_@5;)v8ZOWI5*@GctNQ97`h86ca{O6w?!6S&9f{xT*Gs}kBqSyAzt{B8 zsQpfK-NwKsauP0!co|e|JEJ*>@OO#rcE=F=*3r=ac}FwKRI=YaT18wFhGRfPv}qW< z72?K?0S4-6p%q&)NbEUMX%2J3t9~MV6>QU+ekSk%a3Kstr4(ts)qOk#l?*H>Lr%^k z-c3(W4%cb3kg?E1>Kw4k4fEjo{0VE_DR!@*kx&OBpE4Y=1?X5KLCVJI9%uKtRUxfF z0pVC=Nr{Fl#?Sozqa*GiPT$VzdhMG^(}^Iy9f$tCx8Z?{czMFn-S3Z1X8fP&Pb1}P zHQX2X>|Uy0#ell@-5{r=WIQj4Na%fRUEexisnsCfl#ROGGYjs@`T1)nlL-U*c`JGn zgW+6qPL7pIDJJ3J6J_53-37B66()y;azatVq2#cl@AYT0;e(6B;Z{BN7U)pRAYOu% z>b(IpJoEJ&DDkWD1?LmUS1j8++W5#RRrRhr+?P_rQHN8Nu54zL%9_TbiVYy5_o9 z51a!h!~pb*MgO(Gno(=jvYksI43rxhhn_49+1&|zWDYUmItdNStj!`g5CgTrZ9(l)u$tBGqT-E6 zO@+yB%L-okvow&7{?0=qb9ivWtd=<(9WYVJhtd*LS z#<52i!66!x(Ur8dI1B|-HY;`-_ANB(#nY*nk(&Vj9wh$|e*sD7=J`Y7o#wBGi0aOun3W7k--e950K}q{a)B@(9Kg2T{unBRdUgygqsf zM|0dQ{EH+Z)I%$jl6M}&>cw(Y4ETndW9LviAjX^?+Z@Xay_t{|hDL2c!F!RAFPO$zZLDe9?~% ze#6VENq1x!;cCX`<|~bH>mF2M;zX~T;BE~eeOhJ{SM%QL7DpErQd-5t-WC7w;mr~j zbiu3+El>G-%Qt_qxu0m;fQ=xB6bpbHyOpWnXV+12=2telucA7VT)j>pr_Ck(M|0xg z&(=yA)RoiplkBkz-jy>W);hH?PP(*RWqPsL56ve3q$)oK7bD47LkiwWPHZ!=)}Hd} zT^=&^5^>_PUhXgyjE2r_g!zjvTwiQk=ahhzbCVV$$UY#OAagxcXR}{~YC>)J#t>YPcI(Nr#AWDhjeYyP&#zGLPxSQghPf(;pd` z5a_O-Kxa$1fdhAr?qY7nNHL^9r&Ejn{vD^BB}`QNJv@ ziPVl44!_HPH&weYi`o^So5l(g-Z&}X))EF7ne=%7yEEhc=u-g24b<8z9p$6xMN+foVvKqw@BGWrY*WEzC_}4!IV8GB1h2wyzqkZ@ceeNHD~`Z@!*hLO z2b`gwItlRx@(uE>2*=N1M^7ws0do2-W z8lHs=ik^2)rp3oC+7~P|(?#iYd8@O*Ey~l^2<+0|66HT{sXrm zkU}4yeZi9RQHR!8H`eUbehmo;3A1eT>%KhRXELMUg;BVi@5Mbp?0U0(sj8t7fYqkq z>**ys{T=xqJt-V-Kf2Ha>92;1cOgQ&s-y)?&sxvgSe)&&iw^nuzmoR zA!)Dy?yhJBSJ-myZ2%NNJU=7_p678-JE=^tJmI-I6tp`yA}p^s91lh5=wNvCdD=@o zpj(e-iL`A##N#|^0OxzdF{Di|U#;}sLhDS1z|O$J+uED$C*uzGx0s3~uLCxrmSrIA zc)QC^)fK^0MR372NqRa>E`!mZ{@q~#=Z$AeZc7jTakox-t?qSC(f z*{=i-_+`pmA%QJXL%+N5U^;W%F|PA#`f}YhYY-=|%wm}`-hDFhD3)rLm0^4pjey<+ zUUD9uM{U7bbN;Li?h%uVmN(9}=pVM5Cx1N$f1LTU=f;S(v8mBI)ooG`LLWQmz@uEaInKHx#d?G z3GZUn0>)u9;arIU6a*XVV)L|UUB?;K5X1gC|E7!x=82ZUZY zj~h&dn3E&Et1yj@D{JxVr+E@0+?!x4u-YiBr^jnay(Wq_KjY%;xR61Z^zu`-(eo_6 zZ6}1TsPD|aR{0WdKFy`NYQTrH^|i~|@6m8XOXlR&@I-CK8|Q0Ox4w~ae2Wj$DWa;0 z(uls8geggbonT5EB6?+EjnG%Z(Nh;0jMg*&8ri*1*ah`2&CW0}zi6Xy39MV=4X9gF zFZdPSuSD-3#zbNPtI+P=DZ z#0yCM@%hBKhAlyPd>6?^ua*6DycXA4UvZDxrB$<|L&V4AhkNlHU!1RcIBU7)oC{(f zUZN&AXJ*l=iv8__5Z4amJ zeoxVDB88g=g7>QmI7OFF;d!{gM(UB*=wy8V!c4Si}yE0#93QjE!St;4>1pNobec z+ZP7HDr?&>@%&@C{oyW^&FNIWx%|_%Mt%XGXQAm7>^VK zni%~Q9wDJIz7soDS}Lo9M&f#e4(n?-k?k_QV+rZIhog9XhGAi8Rt&0vJg(oO1f=Cw z2READsO+$@?V;D79Xm=ewA!x?WzjiULzKEWX*hVQS=pP$Hq7chzy@x^R|?%k&#jA2 zcZfBd*0@+eGQwlcb3d5>+}gL6wvx+i`k|cQ-ZRt3jx|o00x3oVGo@wN3hHh{5ca8^ zXf4^69ng1a3xcZqMzrYY8wzQV3OAHVao zX#zA1n8yk$_bdS%gpxJtnhF=aL5`&w1Y^^5`FwQGZA-9^VO(K8>nC(mdm zXlhKMd<*+stv(~7!C_lV1?_R#y@L9lw8-_KYK=Wr(aa~#yPw7~Ec(*hM>ng#+-Bl) zK+TdV;Q46#%`%{XNC9TRZhwZ8glzC(>F-%@hWNY-uhUXL-+_CA4nR@BIJXdr}v$?!=U0v_6|&SxTd$<*sePfUMvRI zzC$7qi!fEH-UlQ|y??DEQ9_N0jPwGtTb!TdwKyi@nWWaF^yCc()7jR4`I@tonABxw zKkDe{2yw+W9_J)*cXyXESy>^RJ>6UI@iR<*$ZDp_Z$3-DKJq=wm)m7uv16Vxqbfe0 zxcRw(!UyG?eb|1hOXP@((wL^ae6pnSe&k5HB=+Vb|4!cL_RN+y$Vf?D7MY0Nc)K^-yG&1jWdyEmHU2exO*}* zQS{FE3-IEo_vP_nix+ZlEZ!X5hb_v)CCOZ4#yvOt*~KadtnXs~t9#9k^CRi#Lfn`v z(#EqU@8M*Mr4)Fg@z0+h9aQopo`nsBECfXAS+jPAvF)T6Y?^j^T+FIP==`=MTcLVi;h?<>S`RsZ-qp%XB^c#|6E153&`2pH#}3o9!JH zBB$>sOIUdF@z+|xK(cK1-KQlO@Zd{N1Mt$0!`F!OSJ~q_t5QPZf!akM7HGGYd!D|lGIhYiN+ z?pxwGhB1TzzxDYs-qOIK%fV0PTASqLrPhEw-BzS&u{!p=HHdZ$6|U$A+-H>59a6)9 z&BN!oJ4-S7xy@NZf`>W@#yl`^cQ34cayUoZF?#D?w^qP?PqJ)sE*8|lU=7~6pr)Z& z2=(51sjB*D+jW+$xwUov=f%zsz8z=Jr|&AX*SV7@1O;WUei#W+gTnhISS9qw3U74x z!%1W2=^CQa${YX7MkFdFB55S0Fi>bQzF?kY@W1oL1IgTQ8*K?s-pR_5}HR|Jd+1e^38A6KxWdvk7ZYC3-=lwg#QlK@8 z*krCYg&?jwAO69@Q=Uei+O%^jHo}dJo26y$@Zqpw02NqZ0Q_|%Dd~2+Bod`0Vd}c) z+~$yavYdA-I_56-*n>QHw0C1d1T|ZO9Y?M*5ljOo@^*goZ+U^#o3!%7UWK6FKk0CB zHCkrC0q#llyh3{rVoi-;iXEDGWxgqYTGpHkH)we&A+^;9?9u#M>HSKb zK}P?KvG6yu2X}H|{WL?^H_xv0YfrA}+B-T3h@7wncxX}0>WtUL}CRvhm~zV3)6Qg)CrTXH&vcD!BRo^9PKQ0Yi=^c3WJ0*sWEB zZgd0n4hg|M+?vAEPqar(bXs@y$%a1BW+4syT`&)Jc~z5=f&EodcJ=W;Lh01HRA_NulvDynsnOEBd7gJksV;$M3&qAOB;W#eYv&G2N|06O7<< zLE!ehB|?Jiw;!-E-eSR>Tgx*GI++LPxN5Liaq;(`f_bd{g4xF~Z%z0%Va=cf#AwYm#fZNH))C;|9LZFZ0vxUXY!~q!d0t z14W(`wnyI<2#HBg_N5^2L53}ON3aqZWNBaH|0{HuOo{Xg?DUIDNB%}pVnre=mqQ=F zL@i$cuMhyCG=b|SIVTUol$`I+c9#NqCeC(Ito+-JLK*Nb5F|9&Us#2KyYQbg&Ho7I z=(kY|;45)>(}Zd;1&a}qO7iCw#a&eb`>Py0QSkvQiO$4Yj|VDg#<|Sir=lp|t}atR z67yt%_}t+8XO!{&rwew95mLg3fwo|=<&q(VWyb7~q+&>{12OlcITz?GNq=SH;<}4B z?Lvlfc6PcPC+P$3fMYoD!Uwrq+Uq|z(i2T>5|cp{J2o@+w>~ShG8i zAuM*iK_nK8_xbV#i8ILerM$U8u2oFkMt@2ZXvzPSN!{p> z)+qT#=Ii3v-s!A#vNG>J>|}qC9R*L$x;`w(KB1mvEwSb@QGK#N$Anm>Mrdm#LL<6p?Yyhvw@+CKxgVJzN> ziVu{a;MR;g0bWb)(mY{@7tx5S*yUcphrN4NavvFd^PHcl|GJj&pNKAfu+SR|whC&J zAK2gu3Udc3`wx?{NW-xp(J&NnnzTp0BkY0Pe--g4U~>eMU7PT>nfy%ThflxPN6zjg=1solH|bynv5a$Mo7aN5B5uZ?m#E0`i1%6mRR zrmJOB+{*BTlH(6Xm!cw^NB+hd+DDEXo<-zWfp5)TfS`=)hj4^qw20bK?M{qU(T z=r6Q){;SY)$Hbt=g3b$Msb2CRa9At(L?HfqAmzK03lMGb&U0R0_v==vwZd!gOl8OLBN zmoBSZMdtslb7KP(ozJ0z1z-E7umF~U{kO$Or0!E4zTa3%thS^D=J#zk_UEe;?&MOz zU6IAFsy;o8Upe>z95tLx{fQQOaqk7dK_sI~X0|@Ncz4L5x|Hq zVxppgK>hf>rISnIK2eS6@*I1YfNh|-ot<6G7MDFT$b<(#yYWwD!a~79aGzthqt{I^ zR=tmfbtqgFc*pP#5RB{NBYRvw_&UCU3N_~d-a4+2X@(5HKR&uG2p)j4(X;DSO5VdK z|LJ0>-Pg&jpK8@(Cdnp#nW{OaWa5*yopnjvD`=lydgtl{njd`l*4zrKgDs7LnxNIz z)#WzkL&Fq0sr7t6A~-@WTIpnmk5Io7)6^A;(%sLi0I?;z>=Oq z%=-q2{|akHn_bCt92mccQynnfQ|Bp-C8d4@$aIb8I8J)pnO@16@7H%m)%Ir^H- z;40PfVsvzDQPHh&Tu8`5$?L0SE3hoWVoZ4`30M=^hd)^IPhzC|Zfani7&j7!Cgc@m z_t$;vlS~!^NUu`b*Ko8nA@UzHI3((#bEzD1FW)ABjl$S}g~wcBLJsRl_Jzm)Qp1B( z{)a0(eT@ta^|e^oX+GYn>Cdvo!G7}m6k^eJL}&p}`XC_+$Fo6UkeinQzw)P+c$(7{ z?VP^3EHOZ-AdwNWuqbw9O9~eXqy%t=*j+jtF?YA5BIeYMuO9$u?a=s1n!E?aKU4EC zrRJx>F7rBJ`r#RuRsV!eZ(%S&8F(glc6L^Eu#Hx1IIPZZelzvR`KNgjUS(%oGO#u( z#m{_Rg(a`6S}uT7w@+eoGzTzvS0q}JeKb5{-PhgtzhVibP*##Ouju&+Y8&C@x3>{Z;)*{n46}Z#{CEsKty6+SLBcqW?_edog&P!=oun z?)K#5W+HyMcwem?%7kW)Wts&fGEQjhvs)?QxeL6HDNB7H7gs37-|FkXojg!{3n>x8 zEUm2I%&_;plV`C-!>RUGqN1KyNnJ|Q4%^jqAjT`Nxu5-b495>L|D4zS@sj*|5yB1W zxJMEoz^XFrh&B)PNWcD^4%6J4n(%h0&NjG=W~t^h<==AMQl{0UxmTyg75- z!#bgS^N(=*x-3E!8#=0P;Yj%2X94U|L>0~>=!gJ*eBkFuh!iaC1+qF0lSO*bsZ~Hv#Z(_ z>ANJ7Tj7jDX>F%FTMm>H6X?s62xq|RSL~V{Xi$BQT zgInq;#WJD;Ij$PhBjlRrO|zsHq^YW+a5Vk4d;-i;hz?jH7(w#yq3_2E##@^d>3i~) zmYC_IO4KeXlvD!9FRH73e6pXqmLR2k_`r_G_V{_gmxhK0xj;H#rE`DKN`)TqB*uAp z)o{;!PuK|6QWc`7p5*}2ops9}2-%?D@o@|uf1c<4CaY4+7%YbN#ezGUw?bgFBxcP~jTW2{#Z}9UHvNB3ITzr7eq@C8!*IyWW7pn9@9yr`q2KZz$qAl4 zbGbUQ-JGZ-TQIFh1VbsyR#b2w+WrT9XnSv8Q_0oD-bNIDJ5xK|zYB+id^u2{#Mz3? zk5Vq;VNF?eE8lH>v|pD|ROCbS-%t#ow{XF@FW>7EzdG$@*n`C=MSy?HfAot=wZa(X z`c(Vg{JYi<`&ne<%*?;CP(l1UHwVM4e`>fPBqS`VQY`|H?@NYtnhANkT@lrE=!An1+T`(qph!c)dyH&z1E* zD$>x{Y^Erwb&2V)AMC=3xlX3-_CI*<82WZ=0E%IYk4wSd2KtWzSD4`FYAXjr0c=Jac2 z`d$}Ud&&Pg?)*h8XVBjNkCd12Yav2nN1IN`cpUK3nFiCD{C3lQ9rKOG?+tU_BH}-uK#_UIN9n@;e(ZTL4 zH>>T{ql#|sERGHq#xoD!CwFmQ@s!(QKI>mfFpckYM0vEjugNF7mVkt9tu_?s&SJ!? z=G!6^tsnVl^<#3^0s358zR-In^Wzz#vcpwVUaJMm_gFs*a8$uBVvZKBe2sf3k;uam z*&Y{!xhNrmP|H(q41= z)*$e&ofH)x&IR6-Wa72$2ZQf_CNAFFk_g_64f$(dWFjC#>(|fqAvSTDStX8Iu% zeKKw#wF7?)v8Hf=JEWLVVf=Z`LWIcBL~(R7T@)l0ckjl~jUO2thYQ6C)+ax&e&Bz3 zN7@gb7=Hg$Um!OeRfc6SS z+Z6C*-oU@EtGcD^@7wP!OWXy4tB;K21)(E&qbtW6v=s*zKa(u$SQZf#Ry!1^X#X9E zKW)^;a4WtMjICc+hK{KiJhuD?$WUx+dr}Ig2z+!6l){-BnJ2Pjsn8YK!SF0OBo%a1 zdm-?oRD^6H+|$WIoO7L#&tD1WYCOZ!m5KXh?#ZnNS0y@J!6;dfNi8u)MqyRU>5u=W zVj#7kMaH3>_cik)h-l$ z#G;?v1yd#-a)pZrdHRCR2rixsUCRTa#^kScGZ)GnwhD`L%X3(`&x}kEBSN?%9~u zQ&koofc=fLLAIyv*Ct1*DABGBv%0v~;`_w=W1AlhspUuc!%qVYO1Tk(!yBfeL zI}+6U^CD*=;gEUv*ZaF-CL7VAK%8*DQJUweA*KMa`LR{qpP_sd4VJCu$Vwh>DOF@f z{Ahk_vOn_ONRqJ(h*sH|+GlQ6{!dF*bw^Mp&qaa`>364ycn7O*5bd4&O$*e>H{RJR zXmOSN2#l?cifFZ@5Wnp(32vEk(!CwA;EmdlulAWZP~Bx3)yhXX@Md$ZrPvvMLT3&a ze%-3h7G}Y?gAYvJaf>Gd?x=KSxKUyGYdSOp;EXDLO!jwY>7()tEJoyg}WVMM&-`Zc52a4u_u( z57!jIKh#z=XZjE65REWJm6A6m3hO={EEoKK{8G+f*zZ*Yr@{NHg(t{R0&j1h)<1SK z-H*(q62*~$BT_}A-xXyp6tLJrdWyfTp<*_p^G4O(P1()8&~4krv{uZ$s@Nl2C}<>G zD&_S(ggx^v5{Z7vKdtj0#}Ww&H`b?`CGkN?Jow`R^KAz`5VN$2 zO49+O?-?oaFG>fz4hYv4bA}#L(WBxsTq4@6O}fvw_!G)cbpV6i{(oSwiAc6&0?8!6 zA+3jB&@Wm@%wqg_s)vFNw*_1e;D1ttu;+5asiyMY)=3ZmC(L5h2vnQz7LF9<&Vpzq z;IjYCorUh`6pQHx{Bs1RT_pM#xVL%JCez5#HV|5^{!QAhV>{)<|MnzaX86<4F>#7$^#kJ79nE^L)N9p=>0h@%+ zMHuPT3oE^>_!lLw;&J<4tN`O?Q2XNHkt5P(TIM=~_*l>w0iS-io|hW*FEbe5%s2ZQ z{0_i~U{sQ7D{dbjEnh(>(5Q14q~C@3C6SX}!JJt$q(TD#dcUTCB2k&0o@u=ORIzK05HRHWbJ`G;~ALEuqYH0Yu60?Hu__H2I(j%xec zxGn`?xET?%eeLq_59DLIp22mccK@1m0Q?vH0ZglFJrLK}nNn{+$k!w^J7(`+QsY8} zfuP4Pd`i!RYlj(sy~6&Kza)WW26o>raD|{0i5C7V7>!!+<1l|(oW06tkfSqwn2&aA z^s<<$D6m97!U^rWcAkh(H!0M+kLTXLaPlRCkk%b3-*b>=_Uxe`Xl(Vv?_%hU-r`ei zPs4ruyez4UEz1Y-ckKK8!kjD93@-AP8 zN!t}nTcr_cIJ-aC=yze(aGq;w)!zKzkL$YTAB3C>R+#q%0E3-W;6kz1Ztv69I?Y2m z+0B(-gDYB_{U6fSCaW8=oiBbz2u?jAWm+_?Z@i445?5x^T1vK^w�)xH;j94)FO{ zLFTveiA|&}j`z@5wW_70qnNV<98a)zH(8~km>HHFE}q&$8B_|(q#+3qS9eq#A{vBp z?re`oIB#f(AueI9fl05&O7$aU-zjf!*>}E<osE4?OBsS&~ptHNi6g{r-y{gBi{V2wRk(Pl5Q%LWB(cT|WQq8Xkae3_4z@!QUA1 zS}@-LClc*yy{NGX&!zF2#EYG?#y;PMYc~jlBSXb50vX~p zG;Crq98&&tF!`kR+2+g8$O&Giyx+r)a&qCf>uu^uzq2^>dpnM0FI^tiU6`_nPf$5F zk-_W+uf4sb(aG@|&uzLq`Cg^An|_R7z&XHKPBB1o!|r?4(&>bPU~`!Lv+*U>hX{i- zR{XJYBUVI&?r2ul$ft^f3`__yfG?JJM;tLkEF(Gjm90%@6c@+c$D?ryPY8C&1U`Rx z%xTOrm!1>e29tigc450SCSIU!n~WpaE=T3r6cA~?(hJR%XZSUzJM=Zu6mi(~y85MV zmx`@UweEpo<-tY%*nz>}H;kYvSm63FPiNP_*T>+bv>=nMCtB4ObtA zx;;yuDA8q-Nnn?4v@_)>vO~bNm`l~w*_`6ze)qa%AfJBLpuQ+=IVyh#i`fL~osgSLX=gMS@t(Nf_(AW8 zmU>-HFQuErWRoe$ma_(F{CRUdUiGE5$q^n{88d3;<0c5$x`)-pik8uYx*aSi_$?ko z?TG+^@X0nRGIUO=`938){i76m+dG&BH_r%foO3ns$t5$rzP==Q!`#svdYKNwsmp_~ z(&7y8reblv-354NFo@BvHmU$W0G9ukYKa-e^v+C5U>45MZw_(fytzqrU#9reZINNv)=br$NPVNxZaoa0s-;&-F6!Qc&f{ZpHqpkg>{I|KNTw?TogTpkelAF#XMncvsSIv(&<=^LALO zX@+!ka;?1;o^RJE+uUaqaRLpMS^1Nu%e4nQuNI>*R%7|hD1O@KIh_suN_$6_<-*}| z_F+x|(bi>UbU4dag%O%twNPUrf(UIv$xeN*HTifF7ojmlMEq0ts4u%i9V|&9FDm6d z+h>IOoOj=Sk-rsOt+hSCb>aZmQb;2_bK99c{Q4f%x7chgm(vL;HQDqSA@|XS^JR5q>s}U+&iz*6Y1oxUgBl-W&~+D zzhr3f$HAQ?=lQhCBgHgXy^cl4f=|kCCxqPM!t(`bQ5gMRy_{q?b*A5vG=^%ApeQM( zH8i8jA|4vjbFZ8sj1IpK*}@#d2E!Da=xLktoBdkH6PB%sN;&>M9fFhI91`Bu@$W`> z4^#v5{JjrhPBs<=t)<~v301KDP{ES*TqZ4*iiGE5zIjYD6UR^7S)lc>&uW4CSu&sJ z*E>%tt|YR)u*|d@HWV8FVk+qrS1Yu!W9$t6DkA%nE3rONBHbS>Y$82#ir~AI}cZj(LZ`vfo&wpwEMK3DIDL4iK}HzZ#C6a8z!A~4?7dG){*qeKa_EGLrwC26RQ z?u0>jLRI~*p#<5_og*zv$0GP6@3-@?2wD0;+K~-zw`U3MvAF*-D{t6Ng6zHp6{Q@X zjq~&p#C{&E$T|v#%WPD6wbGlA(eV97#(w`RZ`*~sO3hN5N$dMMCzXUyxy8tv+P((D z$}7xOMuqh3;*F)_uF0FO;H}KNSvb{YV^jC2`gKW1e%lNND@GXf;$1lPa8vI88Xh(k zun~$LhON(64@nV@m_kDfz&uL-WB$`KVM=&)j z7C0_GFd`Vtj7xCrcQb5W_giS5%2LdT*DN_iWja4&T*ce z{u~^~ku(qRxli@AkkK+Ja&PPTUMX^-TjB0t?!xCXrS2@HyKjk>`*zFN+S+XSjzl#E z6ocX@&D>aQ4-LejW+gLEyIeY`LmY${<**SS6PLcWTD;8 z>6}IT81i|BN4yUNQJT37o8S8pakMk6xgtF>y;$P*+>lQDdX%j;gt}j)l-wozE*`UD zuf>kkZlOP8atJj3g>~=rFS8(2wN#-nmja>*q22g5SwtwfpgL8Sq=Az(Y{D=f!A_%6 zFK6L2y@P}LwL3|g_}$QF(F?Psfx|{Fsfl&MQ*GV-&weDVa|woHy{uwD*J`1Js-N9_OWMm;F()FQEfoQs9=_R~reLI`q87H)N z_up)xm5mmfU_pNeIZsEp7yCP+9mFrUAHFcIMHd=bXp>w0wUf2hourQ<>X0~_9>uI? z>97zuvKCnOU9q>aq{fCeKtj@$&ml~&TTKG+Z@kP$F`X}D0l0){8kiBm5dJ0{wVb47 zhM>@2^l%$GYmNXeuBL(klKdqGvzr9Rr931GnKQ@o*R)|H&>W?O{qMyN2tj)WP z7=rIsn4GL?y>l%R9gj!jvrw|5xhsNsKlX`8ck&}7Vt<24no6^&>YWnSm;93+JTr3M zJ{QZ5KZ7-ZJ85v-aqsUqBXibn382_Esbz(z#yf%=awE6%EaqEneu=1Dle`fuBx!x0 zceVHGLZ%NdxVZ|wp6tbz+#^U(7ZNt#(#E)%_>E`k)v~^?c(CXNnX1uELXEKNkQ9pJ zlF>Ms@6waD2qf6E_-zO}+dYPAlYqQ?>*Hj6%D8h7tNsL67{BxI%*Z~OA7QAf$&CqH z7Eh8h^~ARH1sOj!#ijl|-U92`Rsu+8+j9Yba#pAYG!eGXCPMqGy8*_}b}~o&3=KLN z-WFVi00p0m)8MY;zF6H4VCoDuD0a%*YNMfa|CZPNQl&oOc%!p{bve=d z1T~NY5EXx!6z{eXTQ5OymmtrgS?~NPA0)Qk8d(c|@xaRK#cJnB#fBLRMH9jlq z&pMOTX5S9OGd9t)y@CoYMZv;>D&-iDLMIJJi@Thtd`oS3{Z8^B2hLFm`!?qjjF3Y5 z8S5ndEGOtis1|?d_ZO?JN#D0dqFB!%i7nUS0zF$ZU~O@RYoy6>~JO78aw+@Ob z{{MxSk`$zo4n-R2ZUO0TmJku??pnILd+9EbS{enE?p3-wq#K^Y_jiBy-e>0d^ZCs% zb9R_HJA2Nj-tmgc2m8{8ll8s=k`n)7~bD{g?ktmZowopMgTiK{JspgzyRNfifLS5D~8?4 zE$CzhwLTp$w#mxIkwe$|a*Ss;&qO*%{Oeg`#TEt3D}6?|8fPx0sK7UFxs0@H85mbd zEj3v|H8m|N+#-{MomZO~y~=loq8f|%?A@*Y#_bL}GpgGj;4GIhg7o}qu_@#Ti_Cum zV&^ld?756o>AB^HDfSN;@&=t-8Iz-2(&UauS@Tcrd5q9T&qv3~uA_|pFbjDQSf|D? zU-*d`LYot)?GL``6rBoJcdSVV#=`h`cZMscSv+lQ^X^)4)A|NxfpLEnW!)&Sb3Sk! z(emOo(ow>Cl()I_c#Ng6Mz)}*#vAp#a_%wira5-MF@J(JAC=c{=BUO# z-K|HRnzaaPh~kb-n_f-h^kJTtQ0l4>+dbH(P9M6zfGx=XKn1d$6%_52PLQFy@pX>F zh#y0fz;oFO7bwtT=pu9=UM~vD!gR{L5?GR1)c(xj``RoGJ=Zb|fIS~`f46RnyO#n6 zn9u6|GpLrKfH4q}WADJF?#(`^{gpj}5V!YG9Bz;ke@P$yiGgWW=*I3%m%sI6aD5Ep{Fx_cOLREbq0$S|#fl91R|Yo_ zXdr7yorga?hWXuE(g6jNcZZAKkh<}QhpV%3VkNTQPKJ2tZr$cvJN4_+-{p{)3`&Z2 z877AH&OR?j5wLCO3LEZE-JZUDI@?xGvTxIhz@`*dblzr9RAz!uMiM+iFgE=229sHL zzsD2W2?OfeC6tRoQvg?9DduHcz4m6+>eHAOo<6E{a4BwEvLp1#sARU zy?juu`f6&W+7-*&NmD*Vzc4JHT)~16pTR{h&qvEY@OmJN1GgKAU!;42#ZgdnrV#nW@4U%7*v& zuc0Ogd*huvA*Bz0o&6`$j9m+=^f;%w5jvu!lRSqDmX`?a>|gHt)05K~xkpB^JIv|< zT_OtHOqyf{qhJi8VHGMuW|pq7E7Wa%YM6ktKXm<_@^8Ox5~(LMpJI@B^&K&kVPuVF% z$1fT0d_WBm(x5tQeT(UL`J9z<`}`znRrQ}sc62&vJZYH=)ldMGG0lZ$Ym8_Y(L@ly z@V+d1c+EWZw#@LRgDJD>iZ91fRO_@{X%y3yy`$3C$ts>=`HaN=II?`Vp|J*wF}at~ zXZjtmMxZ}KFkRt_ik@9yUlmNsvp;F<4~7yB5uv@O4&nX1D;6B|DMv;<=xx*&jSQ!m z&+S^wMCzv&4gnmd9^%B=FilDY6llx|B42l6vD7wPdD%yLrb3(h%kKBZB1>yQmuo&x zRsh&0%>Zty$mScVOB1ZQLvBGGc(Z=dEE&S7X*|5xr=XoE=XShskVs%c*1yW@=-Wz1 z9T`}VcebvtR}wrVf`FGbcKD~>Os%HbSzT*lHW1}hVDtFsHu@v~7`(+n5)BZKJ^Y^4lAg;=Fwkrv8XVrSDEr(!TsU)Fx4)8Zms z`3=JMqQq)JdNgiBr&|@H8kQQUn zXF3+zpMChSWRbrAuf0S6uZ7 z@lRIFd=oKrgEx_xi|>3Mu9j487RJt?v^UNtw$w(f7=+T2!n2=sZaFd-%LLjYDS=+#fQ|$}m7H z%|gTzn*OQ2$?hb>PJ-t#{}0x=$w{%@Nm7juOD8vyNM~xCp8$KVbW#M0e0_*P21bIG zU-)&Hd*!X{hdTt)B{+yRb)KE*X%9l``-HTkjuGZJ$3zwNl%1rI-s^Rfd16ue;KyQ& z0AB0(s}KEH*;V4hBFe-582CZ(!PWEANj3J@$-cfoQZ7~VQlG^esth1j3hs;h0!6*u zUEAYsobr1PW*j4TAVlDs^r?|E;l0`@@B1Co8$%P9ozup9enfg?kO?;IG|&Ccb<^x1 zD}a)va~gpa#`||-+3F^p&NXVxWpf~ca0-Q?_n2J}`qS%1_kIiGd}ql0&|mhZfYSdd z2E}-SA;aTxIwj7!>owj$+_WH6%Aix%!|sI_`DWIO;>}arb1{e{{8Vn|7?6F5i?OitA*;C)ERkM~|9-x0Flf zA|BJ^gFu-PK+DpJHQWBC$LfYe1(rszGdSS+$xkj2h={Jv-3ABv9Z}|hFj1I0$M@E{ zqIMHWm`ijDstQtvr6KQ}Uv>DLNMhlSn{Q|IQ*CD50nrz5d<#9)lKFS0QfWl{Q>Ye^ zJ+-JfiQdT>s(_|jByVAl@J6u`kc(LqU}T}oN)=U3rR!62S$yBN#@9<1hNB*VM-Lr> z1JDUEVuiCrw93QgGa$4fFszNCNsT#m^^IIE9f=n{h4)=tWXPnwGYLd3z}|vJk#TI^ z&G~_(Z@q5;YldGa$iEXqI?F!7>5cOk{|Vds$svB9juB&9CRCpgnObq@tGqfFd~gf} zW=qcF+^MwJ(Af8qM;&qa(<$N4_YN4TL(MaO?L|Ls-o6APC70(PQJ!1gfdcbkUv9RL z&&%889{Ya1NDP;E9>45rxfH{@0`;40XK>bBzkJ;Iy{;^tR{aQ1j202V^L`?=`VTadl|!X@8g&V7fr zJLk|T;p|;w#n31x68oPBDqNV`z7iR)U4mnsF1~%SM!sw17fqdRE+!LGiz)Uw`E;p6 zt`bJ0c7}`nsl^isU(y%h!P4WPa?SMj zegvDNISRfrexvxH+3*B2bY-sfek}LMAgUN9?V7jy@4uSZBXIjN#O;6YDR9{I3;fs* z)2Yx@megiCW1n|Vg^Z+6NWJC$^a2)7bo8pxO8eam6;t)e6ouw=r3G>89|}h;a8xAB z9#=d<&7T~#h0E^1p)@2%2G0AFV=waX=Bz|5QOBrFq9zVs@Wiy-D0565knosm zL(+NwMa+JDxITPISLM6oKj@M&wb~QHkDUQ?X7dIIa)})04llpTkXPn!e&lhOy_0{h zcF38E{@(QTC&&39bHt{pmVGyObDx+h;yHJ}>>I9+A-;tJ7^qEpXZ4Ihd+a=^32|MJ znl0AO(g~=>CDkq@7BZ>xK@fr zFWj9v-b#?B5JPFY`T1)gY#S(0MEmhv5$A8nP)!k6HXXM+v~{v|LliCdb2W8GBc$=V zN!dZiYV#<1yjzW%T~SA)HPn=L&n5h*$8|K1OJtr`vGE`lN9798`$mbvt=Kck86^r- zw8+Z}=#(@?o5Km77C!c;FAV=Ci-$Dt8v0|;2L3EVPC@5A65|--DEu|usQER9Le2Ir zdOr*HINcWBWO6vO&D^(CfF$O}o55bc_bujmN6@hqwq8+=6O#MnMG`PGCm}G5rgMle zx^o;XblP?xvkc!<96PKbPNxccI=vHdB!^px|K=)Hfdc%=vNv{ORH8l~Sq&Q9qpi*I zHi5!7dLV86>mB`;9a&ONmt@}M$>J!DT1qha6>>PiQ7bFR7{t$%zU|gXmDh2Hl?c*b z7F{gU{2jMJ!;>2A%3Ff)v)%uRMph_h;P&E>tw*{=&kw7 zy;tlhheQxx0eqo|OLzYXTakBCRIsuvnpOcgmxqe0qp<%942GXvOojA@sC ztp*ht6gHosZP9iAWO{BtIy~LP=_+#C{P}vLjx=nWR5I)k{T9r`a=y28NG2ao-Ff5? zeE5SbTFCV^_13)Ad6#fLdk(~G_TMqR`p6z3Kd>P2jeHXq0Z=#utrQpKMjCE}JLjuQ&Gk*A?(F$}bSe0BF8o*wjTl2OIg zkXR?}-K>)YlJj`q%;v834afp$$$ZfJ8TD%As6_HJP^z0B+Z4+?DTUOK^s+s8#`+&U zl}h@%&W8EQEZtCfZXVA!!%=p6|D07nw3GzzmNdCIH!5o^4_#f{u3O*bx!;T#_+M?V z7YhxKo6t7bu(Jgex?9uqUElKP z$>k(Itftn*@h$Xt`_%ntLAqR{l!(1jzA}?ej5Uq@1p(1YX3z{TP0mcq+@vLFg)7(Rw0coVt-$aNsH;= zt#i8f##<$44GY)%4u(Tn16SKMZ+YWm%f;oX906yUPMd?n=H<|P+@h|#Q}g^#G2E#q z!_KYCfm4x~=Kz=WmzOSOwb zefQS(PR|=3e<*%Y?B_({c{sSiAnw)?}g*hqvTd?=Fl~ni67JL{Y$cal>&M5UaW| z%ez~%;2}bA%G-zIDE7|}t&>&aAD(dqAIb(jJ6SN^#8O2?b|$6DZz(-}GmQy>gbjGMW(A$ zK6ld$t+S0vmS|SLznCd6-RlX-@Qe}d^ zN!}3VsSD8;Vj zSd*rRnof|}Er77u_XoT?bX~#dXCaRQDS@bWCpwaBgiPM?Cn8`V6Cmrp6f2NC!$^_L z$2rG^rk5hd{-vkRs1nz;sii%BM@?~Vc;P)wcKq1yGzU%S1Ee^UAX%B;z z{ZG{3=~8#TU8CS@vjLSvYFeVlT7w1xwa@Q+qmgc}ig1FxNwQg2l4nn{j<6y97%T+2 zQt+8d_?yoWfyBdE%C9+#l3eSAo-@Z&62T&>V!~KGlB_5q_N0e^=$Nw%Tr|XJq(6A? zr^}aB6hOFVq@dqGzTha%vu7x41Ol{Ai&XNIA4#hH?qxh3dL?o}zR?mh8mKNbxig~r z^-eD@c7=4myd2-CKAqVuiLjlm^#bbZDNr=0pVJP>B?zvUVkQV?jyz|Cx%m z(cXG>g6t3$KMjwh^Gd`@6BJBI6V@QX94N|{|6%SPyeKO&KcmM3^<3C@cbiVS;_X%= zg41dZiw8fAa^zuFU|%DjYbhHVyf2|wB4@qZORJtQ{{aVYwDeu`g#ClCxyJnT>9qVI ze-p=v5kE+?a9n~(ENqWth_TwaJ1Q`dZNKanRE$q>gnE0vC(l3?^}=7bW!lkJf|PC? z#ep0ofVdJ{AT63K{tKZ#yeq4vQ@k?t<=!Om21aGxq5Q_c9GbI2%Psp(Vr5Fel*=Vz=Ygcw-BM*K4E^ zcSxK1p$}*ke*NCa#@iB=hgj7C`^N5vSLT#J+pAARQfW2#I@Uo+TJ@~q{xtjPgLD|1 zcx+2v58`TTuNvN!XQ}eTsv2W{l*N{4jw}ZbeOjDonhKFf2r3?lvC7O^zWrA;kE^9eHdyJy`zxk6c`hf*{}Wm z03%os1a`!#(S-4{-*wJ6+fU_+cz+Pvcm=;z1Wfr|kcFG(#8ng5EXq5ZZktcUOp zWmr6IO5(8><3l{+_E=sT<`}S{Q%JmZXsUuVAeO4+5p`ueDLmaRKV{?m5bfTFeyV7oQrbKUrf!tq)>(TrQ1)j`~;+^6-wgR|yNpOgBnwLj+K{ePEk1?6t zwyeaDNRN>eLQQnu-zy!bv?m=AFuS7&7&rJ!=2fFoS2;ltITRKmRDS4!*0f&(ukH%? zn~S;Ub!nrR;6iNO`bPQkZck8HvIdJ=*co;p(^$(#(mOi59nQVzZ?CMTtC#}-F>9Mm z2gEEgnd zGsHID_<4f-GtG}2A@|({| zB1MJZb(xDdf5OeCO2%*@d!KjLc(>Y2l`$U?ko^oBa)aT~hnnm6Qz}*;p~@+y_b#Xm z)Ug$%LeL>ADn=dF>?!`{7}Jrti|IlO|JEU0cQf)vTbJ<3o^+<%HWi-EXmNOtlx&%0 z18+X0UL;i-;1DJ-@@+sv^0}+2+u?T^^cUd^g|HKKN#b=M<-mv~$v?GRUNqpGa zPc94~;+wvJN1kOmk`Jd}b_7>N_c8pzyo(msiPARyeMa0()Xi$9>SekdYs~k{lPX?0 zA4h80Lr7MfE`!U0lRn`+Wxt9U!bvKNnj+=Y$RSh0JLnMF6m4gHZG~oy__CW_?Y9JK zfow!vx5Gah7s5qbVF02^bz9l=hR%31+bUP+zjim(STJ-b&2wB?NR1Ed0QWQA!UYvI zAg5cj!^cw|+ApQ0p_mRlxfE*yaqOdAUff#k-K&8PpmPE*bTl!Ez`9nrhM_-Yo69Z+ zE4Wje#jo}4Ex#a2g!IVUDF2VgTZ0mDeUjUv4>GEcKAvTYV{`2S?Q?}fNyDs$7*;zW8!CBhB8iHTBXLV8d+O;#y(Rzd`Wg9 z@6(XIj&K1ad>!JLRDc0apyhr>;rG>Znj8DJu|jM^dgfPz&*&_sOAI(;1;Zh1YBouZEtjT`oh%8 z6R8AZvxudU6rW*PE)KxqUrU!e$M1JvSPUKaCD|oK z4*!i%&qRg9!`NqnMktv*tKDJ+V+xy=B+FxTZK9BGZ-Dhq-2@)xk3b7&&~*^XUbQ}N zv6rhD50%?3wmSxk6))Q;AFNU_M_3ycRQ}KH zjW6=3c!gZAvhzS=J-aB%3|s%S!t9F`rZ(iv7}7uoy_kcqf1x>0zsxpSK`V47(x?l? z%T+KscJi5Dej$=^g~b{#_!)!hCKbgV(id^qCQg9nC_AK4Y|S zAUW`dpEZBl)SncvnH`Qu=27^9{)6C}nt)(RV2vao`kx6+az04d#v4P1@3s9FJx~9_ zhz_J5l-K>+Y9l=08`Iu`!?q#{KX&{AAH}@dg;oA|vLGB`m+-L;+9Y=bLiwP50jz25 zyI*MSws+<^KP*+X=-<2nS_~K=u0Qta*3%c-9aD6NsZ`9(b~R$y*L|R)mga33^ zKcZ5sLXoZ*kaO6WIy323$QxZw3|kEX)Rjo#rSvgkI%*Vo4gtXpg}~$hSFXgrxMBtG z{I!N4la3sc@_Qh&0zOzU3C3%^Vx0@kW!Jo&tCMvZ{uSM6vWo%ofc>0iiOs^G>S51{ zvuW@h4wZm>OxE|r-_yb|C?PkPL}_<^OYNaRd)e2d;>uIQ)A+snD1jG%0BVi#b>I#@ z%SnM|&1(s&h^JwPYk)Fu?s=Lv;nn*n*SK$1ZQHIsTKSD5z$+mhUE;%V$>&>XkS`GU^2EOy@v*`&;P%)GQ( zg3UkX%_2Ne2|6iuvd}8+sX`u_T4Zn6$DCcRj==KNkVg1q5uROzTn8!k^Hu2@OihgaU?oOwzQTfU zRHoXA<$8P>Gw}85SS)^21AxOiw_E@a;P{np1O||@M4g&OPu0sy`^6@(pj8?Fc)m%G z&$(KCujWn=qVnzx?a?n}m`mMDC}KBCf8Q{m)k?_rf=`QU!B0}-E1A*PTWN#cnxIE! z19}2d3DWyQW}-y8;T%??<0!|nz<0XqfIzNhm51kRtpLPp#IKua#!VBUN@7#E2>6Eh z@6!Z=QC&>Q3D`*I=r`wz`UC!Upm@%sz+e|U3IGw{4ReiS#S#8HrKFXd+gL9X;Z>iJ zRMx1u!xMaLr+vRUhSeszHS(YQe4zkBE(svjAoBIMKzQRQgd_&RXro{ArtPT5@KMG{ z*3AqAdO}b!X=)Iq>t5DrplDfS>okODsGNSTt&rMyjt_LJGiS;kbgC&l%U|-_J!iMG zrb8uKPR&l^2K6=phTS!56)GquB-`Zf+c5bc6?X_?Y`NDSgssxIsGqTa6sSnj7^JBJ zO<266m$h+q??sIRRR0lE<8N6ANuauvpY>u9R{9V^&D)!HTsQ{!fO9;u^-B=Q9U&M2 ziz{rzplOmX2WIdBHku=(LItmQS1Tv8EtXR2m}@n4i#d4zCB0!fx8v?DB;=%HwbUHD z3}hK2o@RHC^q!o%E-i^}6R2^%{ceTorGCNfce%$EuU)M#D-sfgy=ARp`g@X)+hN>c z_wtLI(+9!AtisIFvD~{TtJ&Lyb;Eo}W$vOh#b8PSfP7W!dX&nkQOn&6F@x>?o`C{iG@ zymMGu>jD@G225OUHtN&!%yc97*#KJIQL^LW*#F{XJRhQKJX?6#z=t6{oJXSiXRLqy zt<#YgaBxrV_j=RG0OvKWjLzsx!}AF~8y0tK4E*Q5mT`OM8M7+9Ul_{?RPO#g0Bpc9 zQqFPU4By7>mDLMKGY$xgliFF?Z1}!*ZFkFleKfReVn@SlA_d%L6W*tWq#nRuAH-nX zG_83P#K))|-{>ldz(~NCNr?6er3w+8um#XB|AE_l4&%i-J@$pk-4+C@(ut)jrPqIL z1JEO(Qx5x|F~soIaX{7F$ZCQw|W_&2KTE)z`2PBeCrz1U(PUN^fK$cN9~c8KN^RfePPsQQMtvHzSuC z)Iw91br9wZGY(EN4g(5pFJSMt378D^zcg46(7!VQyfJHWkK}vvncGcrF$u=Cs`cOQ zO`j;po-%4!Oa@0xZ7jTi4DT4WS_0LAa%UV*8vu)rs2#rb(PBvzThQ^-fTLlYCOHbb z9>PU3Sz_B6>VwfYmokN%%u5D6+t|Z-%p7&c>vW^sLGSEXc&8@k=ync#H*+y#d=}nznm6!BjIbl< zxySvIN;K3@$SpdOkX6yw+no@8_~Z07b+H4X&0JCEP!wHmSZV^89*Bnt|L57I?e`c9 zzUL6PY$3Tym7~H}2=0#0MA-Mhg2$K&Y}Q4{L6qPqm;&(O8Zkfu?|82ZWB3m{8u25- zkT@|n?oe%EM03Ab44N;1=2=ZKHzKHpL_YTv@{GVg6xibUY!=iJNk5)xwP_=#e?VbT z9-wtClu83)Xev>!53<-#^h^K5bb7%byWB4DT0M+d9iEz;y(`pP1LfB)wrSLqlS-;L zKb`&MdNIcd+OZ;_MQ9Z3P?o}v!_uLO|lri*XY$dn)DYlWm3xFRS<*%W|ARG!^so4 zgf*THKhIEh5UEd16I6A$HZ|87#BE4uB#eQ+RQV`bi=7A&L$FlTj7oo(j>p|>A^OIyY~4`GH)i$Vue0V^(ybF5Ac-(Iu6-y%f=vrg6nL6d zJb6->5jlASZr{`Gn>xtu6$x}N27NJd%WoXD07y`b1}P5}NdVgn-%$-8hH4<$8)|0e ze97WWykt#Vt`apflp4L=$qrNDH_a-!!qP2Upvyyc!ylRss4lDenl-%xr}~pEY9a`- z+^TXrfMug*`)BE!hr1KH-HwH0{@4t@)Or8{kL$(Q`i}%1%~>93tT(k?dUM6?Z0VTkshJA_j3y7C*Zg0D9fl009s7Jq zjDl6c;^hvT*30?K;1&m?1&!h~yDII)`hv*I&eOCfG4-AATXz3E~z;#Ux4FPHAteJ^&~M#EIGezuZNN5K3=agaVcvxSd#eVGk}ORP`7NB|!%LB$0{B5Z5g-uCZa<`&-x` zykUpij0khVoQUxxZ6?(G984TNFyhKX$tC2n`X{{}-*T(UQyq!I@B|>bF_@KLu{~H0 z6VJ{jw~(3TeuoDzTMhS)SS@9jE3cmd$bI#@dG{mLMZvs}ANK*4=RE|dS!yKP#$f%-*os%!kxHv2!kc~3{5rAPMEnPA!8z>?`R?T+$!3XEdJ|c(Wn?2 zHpL~yL!Co8as%iqjfrx)s2TQ5nNfzIAH^OKJx;h7q+oB_R?+{#HK0F^LfP|lBQDL8b2BS=Q^*4EV~^)_hph3f z(@#^7`i7fscjC7tX3l8$7r3<<%& zH2D{DDJ$~cVw?W&=mbDiRWJx?#qbR~0Zu&i?bN^K`==?DnyvB-2s^H>C5G+AKvIzmrTgUbF=C5Msf%|2EK1?AI2ng^}m=pAGmZJzgzm zX~Jx@Uh8c0Z~fZ%+h1+a+_ymCrDO#2s1Y`fag_1pGs-plQwm|Tsl1Wm)5#Wc&lRm9 zoa@?~s~EK{0@vFh6f5px&9Ldg0%Iw}B&0Ek3nW7@s7V>eYo_>&)fy}Ep=6h2`!?MBmU%~PUM|q> zF%|+)F(xk}YW)6p5I*xL*l4W|H0deS+B0N@FFNSf8R~Fn0%}%POb~jTlg{)TN?vY= z{I0B}Pl5L>dS7ak+Iy@2Dhvy5rB%wDRuiB2Rf+h_X#Ah!sBd48<<6`XK2yp$nH)|o zU+TO1P*HR^DOXhzGFv~Rb|KF(IJx@27tAZ#0n@eprA{|o>PL#B`!5&iSCF1>oMbW~ z+`+>PD&|m2Mum-QSUIv2ks!TNQza&n_g{i$1m~|vqVO>xH+qm^KGy#;M%k0K3$VYwZdNo-Uf4b^SYoG9 zxhm`BWKEMu<&KvaFCXF2N*mkE-DA2EVUFVhpiv3WC2t+OC%1Ec9vcD-b_6s=wf1z# zX~A#leUL7QwCH1kA#7d(6IqM>td$K%^sd2tNPF*3d7DcJlFjE}JuMMm6d14F?cWLd z=(YlB4D@JzQrksXj!Z1+c3EtSsO0BtDt?t$d$SM0gUL)18NqjC=b-c`&rjQ2+70z3cM|YPed{3-Zd6Hp6MUHC_ak=^XtfpNCiGS(MZI{KdD#Zxo z)#)FAU5D(w;)lBZmRSNp@*|gFOXgd}ba8qOlbFFDXf7jJUEwm(1&Y?mXVTl+2*UplFxUz9fF=Q zZu}zO8oAUX8ZLqhjj?N|K~9*a&myqbSZ_T7`NN-%ZONPosvY9>4zf$SoxSa2&vCGj zl=aFjoMIdWioKnjy;1yv$QVNZ{i^jp&at{Z76)TfLCnZy96i`{3VDk zL@h!@2bdnTt&{2*S5v5;?^-8-eFYF80+dZ)x*96iT_AMY4Ohff1UyqMx24GdaRA3c z$cAHEl!OimaStIQ&bGWf6l1_Q%bTG1iDuXH`Yjm7xAQY13A-C90%!+CrdXG$EcbA- zv-FQ;&`zt>Iz??Y!A?X7Ug zfxQd5C*UR;-xH#GtY%pi+aRh z$gt9z41lzN9MFANKVZZeI7kaLN9(Nwm`VOE8k8bXv|G63oc7*O8UNK`e z6tXZ*iun|Dj5@W{ff`>;2T;tTl{r2hpnr5O?Z7saFp^0lkJgKxkm^;!jvB`mbhlE` zs??01Cs}UX=T4messki3Q=3CNMN&j=1#zW{q;xIh96>GUGQLTGtkDwwoFM_g2qudk z)`4PTHVU~M$Ul?lW)Zh7U}16BNS zRCoWV1KNguv^{lM`h$sx%?nLzM_MiFOem_Yz8g^!C5rWS+ z`h3D|aH9So_D&%+c?$!Tj~}bT>lVW$pPWB-wVfL^n;k$;rkM50Q_+YlT!dnf;5&z7 zlnM2AcwcS2>%78WA){s_T*xI3Z6$Z)2+Jk-7bD0HT1WvJYvy!fDc*@w$|oogN)YuK z$uo`Ig;COHnpLMJ+hupsT!7b+5)rux$z|2B%J4#?)XCv>*bqT~8}2kG9CtaT0g792 zitIuYgIHVlGObIomsJhr>z&r!DE3Gl6=}DtdPrO(VTm2MEC2dL>Q4SphwUq z8$<{7XD`<|VxkKbF26SdWFly{)r%Oxu$J~MQ!)fk9?Lnw^Qh}6Zjz*HWbse|dH^`n zb{1cH(?hYd0r1_u$50a74(AlAQ53@*xk)qU8^9(&oT}nU$ft= z5QO832yXsw>4gGR!@Jg=|K3M1-@KURm(_z>&$I6r8AMu<8pZ*V6>{@UhYl-90f2!z4~wh^3_jN*#0|1}}(M=+bip$Z?g(c9MX_Apj}?AOq5Q(-mxH zyL%Oh>;|2Yw-;1Q`Gnof{SZIhj@x&r$w6iy-EkZ$c-a~*ZEtTvoV;f81BcU3aVA~r zJPzwpTdYT5@B3X}MD(|kV+tTISuK?1YWTF|5;79)eKA8u0o`_Mp{s^sfFfY-`x_4A zQwZRGQO(_d<>IXT+n`|w;swjvZbETvd=#h&7AgvW5c@_E%7OW>0GvgnSrqP|%!$ko zv>et~0gSC{w0-n$B;nx4Fn0deA;h32*WKB9^mFk%>bOy`mnA^o?odj%LCazI*s2}U$j+dX(`TRQs}x$ge#7rVnW!cfc;*|;2PQ<5F%!f@U4=rf9--x)y5 zkyA6CBE)MqxyTWxV-CCm3D>-;36O~=tXs5jwL(YZG5A_!;lG%(ubl9c_n zlx6Xrr7*E@4C}^zO`HSP<^k@yX&1x+A5HdcH`z?3P6>NvbJ74%MgE0}VE3hAnMB^0rqy|yc3R+YzqWkwbV_59V|JC`voJe|OuI%iS3ZsDC>f`-d&crl_{6DKz%hxv z`G>9^B^*`4&L48)B!0NDpU;R{oQ6~QUpO>HLjs{$GXgrB<>Cy*^FaP1;kp+pIY8#8 zf8>y)eiD-h`CWnbiqN$08w%d_OPrlRYdzo9P;}i2kCTGWF5e_YTd+-sS2Dk1LHYrG z82YWF3N~lH(M60DEBW|;VK-dCLzx$->0*!kbjPT?XkqMx;}$^a(3xMBbldVL0v5mP z9LwD4882#bh_z3?BuW{8z1yA9NvfzK&(o#Q~{K$jNQpX&TYj`q#by!GWb;{Meb6gzMS)seR0Gg5%cJ_Zv zEhvGC%E3}YoPOgGlp^V93p2TPF36Tpc+r_=bdpL3&+r9dbSqE}E-x>=y|Jb|pH|lL zUw^kJXtMIY*`yVSVJywFjbnfo<>B*Q`?5Mx@5DS_-P-7?w$CO4F)hg$^m?W5yrr8 zMCAZ1pv-d7tH7?rziR0N&EkHv^~f{H6hS? z9O&8=0j$XKiPc^asA+ysRjVou)E#s3(k9r~QyyEous_yCP&;_gJa|c1d_~K89{i@r z-s{xgzD0>Q>-UDz-_KlkIYPgW+LyiU{qp$!9=tjGYpfgeXZ&|lc6Lr#S(&(uj36F9 zzP`xq?X4H!x=Gl`)3`HJ`R8 zFxMe*Ma6mN?}F(gp$mpR#ozEcq-$_-aZ6+?tE;8`9@&bDT_s#xzB~EH4FsJ!;lSLK z@X32q?p~v4YiU^;;^X7@3A#5X$4y)-H>aege%hZs3BrQVVox7&PMlmC7_F7asY63O zu@TOdvVIy4?=(Ci{Zp#KKG4aI5fuqKNuuUyj2fijCvu*==BjtLpj`5Ie{p+xXzR5Q z87aSUv=H&;M3BbV|G;MHII5~j(Xn%&NkB8^x>eoKkfk$jdaU`|H>Zuw%|eS>%JA4o zE9cl*L|)suK(0|is<2qnh|*l2mc}}_Wp-nB47Wo`PrZywE1;ybnr>o+msD z&R5m^tJlDYa9PD$*Gb<;r-^yTEMZ>9CFB`H_V%m}d46|QH*N#R)_CXgw{NgUqRAHH z&ZXaQ#gr@Zm>hDS@!9?O#d3Y`j=Ixag-*AjH$?)jd_^+-<;pOj8O&%k}o=nTbm$@IwKjJ4dBvcKBhxV!Q^+cE`EhQ9^} zt*&kaOuyn?-|p9P09i6ghYE%g=dhqE^2UC)Pc4tj&bYWzkE0wk0n$#d`~53!!Ox2$ zKpdI$>I?xLIk7ui!1?=?)5F~r&IUJm7BV-Y`I@_tMyaxNm*2yCzk3gLngBPNI`bhS zz+Dz^fWqCdZFoTLqsb!7bd`%es_l!uLxmET8%s&exod(iMN=f_?`cd9QrJ6 zGTKg*=C{9i>B?#^C*+wIi<>AoB8VFE;8eQVp@+C+(4nW($7du*uA|0?$EDk)^SC1s)ht?iVYyKUs8Yvg z5=1%PUG@A~-8v3?i6T0jfGimTX@C0malt?1Z~sHuBriHXwt9L?M$_hubJ_T(+#1?{ zfcv<6g-<_)>xYK*l!2!_gJU8-D))h~KF$k(Bat3y8fQrY&ri{$rEu<$u2hOr?)RdG?M7{?>8!yPv9oA_Uhp8 zG^Qa4wz9o7!;Ng>K%R#-KD4&=_LS&T!PR{|54sRwVfKf1{BT&74jrIgERaer_w1p|qa5uN3S2Gt zod}!(;q;94zOUZE_3!$?((JPxP=8EE)w8#54u!WqaHB#D*?$|8MKh`arVr*mp>-+9 z3kuMhd`e~~-t`}Z&Z;|%&h`bv(a1J{a=tkdWm_mgz)l$&IX44lDMcr70bLGbJf1oz zg9W`M_}LAivK}obN-|AhHpdbT(SFp2cue^2Q>iJ(RUB2LSq`snNf}E*5McRW=>53R z5VyJ#B(t(26??$l`cFIt-2<+#vg5Qa=zZpEyNA_&e#-rFRKOxH;2{i0Dy1y?{O;I) zZAfqV>)n{J8LeIWD(PW8nI1{rYnzLA4ySSh>#_6pm&+sDz|=WZgf^gowX|mbz--Cn z6$Yu9M?#}88oyc9G=DmX??4SPBqRs4w3k`_OKtjD=sMf%cfx<$w^;yh%PEvjmO~aW zPZBVSZhF3o_#N0jzh>)&KSP3m_V?`H`cfX?#_1NoEp@#J4{!`f#|vS@0QXy<8OU{a zATvpa^tKwnR~u6N3-pDz08Q}mXXA`i#g;JSbF>dK!GO>CF8@Qg#7DXCSYJnDc~ z)X$Ed@Msv!3j<8!pd73islKC6!!+xXdYF%TEMsm?h)w0~vrc2|^;^tw_bu_)G4nN9AqsJReEL@b6i&+8qUVYA0O1yD8YO!!H)mqJLuRlgR zOFRB~=;2yBW8$bpHFD*Aed3A}2oZ!#cTF(8}r9ZTR~7@HrH+c%m`?##HOc{oFC4Ud1EgiJ=}$12PxMn z3V(PO{r>vq)q!MMyPgN&?Ea}g+Feykj}ZfB-@c*q`jw?+{>1YeI91<$<062z-yTyeSL)UY)}*c9pspQc7jg{C&qj5LG+)BE z$3OMj$aUudU*J#cql|cq+}qnbE<}gBjzbaN<2!jC)RKn$vHRlLYt7*#lSWz<16(8a zHl6za<(^Z9kLH%Iu=K(GqLD9Zu!=b$a~5TQQUqJX+YOF<)6eoFAOc@m(#7R#3VZ4J zjK_=bH-NcjRyfHk5HLcBpcE-mz?aB8JS+zL*+1sJDt74yV8rq0UkE&3rKkm>pWO`< zS3lJ~`;7^J5~R|BM^|`B{Qte1HLt&gZo z@|TM4au}<;9oT5%#qkle@-f$bAou?G!RW%1zfSi&X8-3ez=Rk!C_-uI*Vm}q@P&en z|A{=?ZO`M)yLWsB{3ok~;Zaf6P3#1@fa8&|`G4#lcFBS98Li*=Xa)S(a>q}}&%P4^ zKN1SlpXW0DiTw$L_#92YCJa2Y;qWfg7zBo^Mi*05(v?2ua`x*SUhL z->euR0>@ULfr6ieqjalx(&sO4Op<`RvOs@DiqPKl%dUp|dRwdOe0)3l8L-+S{g2%P z5n#X*GkyJkIXFEVv53?C*L1wzwJ`oUZ{HQi{LZ*S4r~ZpeEzw4=>L<>Hp#Fy~C;g-}v#8>^&lT&k(X#k-Z|E z$U%g%XZ9+Ry~&732-))(N3yrf?3umyJiq7ZJ^Oq=-@ksJzSrftM91Ov9QSzKkNa_x zdUqNG^g_BF&0lr}qf&tr+DRWt#qtybXJv$RiCO}+eW#y3hMySBlX=DfEOS6$Kze<8 zsx*XHRFdJ}NA4;SxK4Q)87M9j2Xr^O4Bt3JpergWDk!`Otg7Gn-gw*OG(q%KtKEp?nVz+v(qx ziiEyh>p@K<#T5S2u&A^VM8;L)(GF9#(oXO^buh~Sf3YfR7Y4Kh0&=$`*dF08mM-!x z+aI>>R;|Mj1(?ehT0w}8Bd?_utMO)S4BQ_c_TT5@X#HTX-EU16W76I_!~LjDx~Uv_ zGs^cB(z;;8$ONGN5=+S*P}?BGURkgsSorv_w5r*h0)|h%Sp7PQFY;~?78G<-1jO1c zu<$$`JJkxN_rRA1gQcDn*jR!w)b$y^&mefAa#&j4c3Bhktk_l83Td4H_DK)iwmfG+ zEBdPvC{cv7qm@3QYEs4onnW1~(p3?_7d0byXZFbx5}3Xx_w8S2kKb0MdlXPWW|$NV znBAO9d&u~Mon1p@3fB*50HS{1MTxkp>&)!kZ4gw5&V>lhI?EQu|8ZRic2QqyFT)lqJhtcY zr8o*+oFIq+(CC0*MiCgW=)y-Z|W+{dY?C?=yj}9Sc$;1~G$H;=; ze(R-)&|`2yzBjh^umCs6hZ#B>jvOk8A%|!D68r#h5&0?x((jOii9Ub(9mq2Lr-vummf1s4}LJ?c&=)7230p1P>5HuTDLDhd={{4u=t`*+v-OO@Lk zjOLgKa#3RgxaobQYjHpJneM54hgsLW`0&hAKczeB3Vo@T&p=v^raNX8vr}e zYJ?KYfQdxxy1y@pkvEdpC9K!0BM7M|bTM@3dV@-Z9NqZjJry?-hLgH-!!+Ja-wX5? z*g>9&On=4{dFkmiv$L}#u%y03pF3-Lw)P{F_zaSgG=^R$QJ*R0ga9tFRsg>Vkc4OA zkvx}Yl6-vMDAQ^#zFgo-2KP#y5e0^ckVHrw`i>8ndjDfc31X4Qf`jMieO8uSP~!1> zN)U_4c+aV_StHMQ^6xz3FJ{#|YmK=DH!Wa>175m(j6`;S=7_O<43VisfhKtCA^kEQ zuXX0S;!zc@Ck!Vn@gA#&d}A{&FTPF%>@4BjE*Y|&h{KFQ2p=Aq4544GWKWfyZZJu zcyz7*y)WGYNrVhYA~qR|7|i+2Ze89a9g5pj4hJ6SE7Aku#C`=H=$W{l`o$d#$O*84;?$7Ut6PW63%FO8>HF+advio6BgFL zVQQ)}>8JPoyNgeW0R1p2h+0Vd2z@wsX2WX(8*a$#w921+q6Z~Src6ULkJ_wO%L zzpUt0ShgsSF?-{j<(3g)Q1KvqV*Ny(hta22gkf(2MNkYjNm8X;HMVJmGCkZ zKoCj6_FrSch=%Bm?{Dk3JqClOtsTIi=G#bH@fQEFA{aR9zs)R%)6sO&iqmiT10?BJ z$%w%)*-U(9L=O${#D+bmp!G+Tnk>Z!FFGa$c?yg!&t=Jl?XHB2oU)zoy>z5QTsa&Y z6uP|>Q4M$z#DF==e3%wOjCeuS*qDULeLp+@s!vuof7{O*F# zW)34o;7PCbk7DR_wh~mr64+Jc4=sP zh2KOUNab%5K^+*nUl3-$>zD7#oG9svfFAE;e?LB~p)K1<^E{^yi>rjv?12If`E@VyvXh2LRU{bASD zFF$wglM-e#$ya7FUiKWjpytx-OZB6WC@~<&Tu|QaIjSapidt1)X@B** z%!-89!yoSugka{O00^nTJmVhZIigYy&-|HFu*!+Zfb+ypB@&DTkGgh@%Ot?(^&Jyi zOQfHjZ!s7~rm#KX63C?FV+)vgNx>Qij$cbGo0G=!pEr}?fi~ooNHU^PzSG+UV%+r_ z6$OO35Z?xeMmbc6Y{~oBde)qKiaTG+H_a@nTl0 zx4AJux#;PN1A+xuqjyOJ3)YcBs1q+*y^b%>(rRmxye@jVgq|_PyDSCA<=M~5LY}>R z`z^kYZt5U1gwAv~hAG2AtMVodozq+YB)Iab85zC2NkTAy?=kS{xKGD61Je}8miqUQApIFI4n z(l0AJ`BJfa3+IXJ_LrI{CP`F=SV3Tr^ZuB%_ghd_+4t`=aHb0%2OA0%*!}0$FDEC4 z2AQB48>!ciI9(X?-y_vO+P!5=Xh{S~?qpB9B%V+xVY_kp;vxJ59;(1)1_vNCHHIA<0#t$C^ z_SZw|U|h-)-jm!l0q&C3VQq*(R`V?)p+Pm+oZiL`yr4!iFP|j>szXq-I9yZYwx=`U zuy-KrJlC!ldfv+UtzG|VGtYFlN6#@9^u=Dnn(J;m>-&-trM#vWM|JqmA5M9X!+8zX zm;ODixi1Bol$Dfx&VQ5#>pq>6$@~~F%yS?3uT*Lfu{-O8{x2a^&a%s_r=EgHtX|#7 z<2k+AX9HhmF+rG=u9*S~9x_$9avzT{8ui=5IlC^ui`(wcA|kue6l3n@5CMF~e}sf3 zv%nV{TB0;?w$<}2|AjUb8fFramV>F3ts;zBdAanurChJbj1dGne667KYaMN6o%hknkh16q`0@F*r`4-h1HloJ?|m{ zX{xa2Tf(d-cxby$Ot>@Ghu}cO_v~=r%=%KjcCU=Z$?LRTY&kXV`>6H7D%|c;iuHN# z$3Es}?ycdZJ^|}f6;R{TrgELRblpsB6`=1NXXSxkF;8);Z*fS<5f{|bqKip}jEbIZ zWy=KXTqajubn&wUa~O@>5j>-rt~;7|Js%+kE8Z9yF?+@^MHm>-@*!dZh#uPvKB^^g zb35raHvK>XCM>dk6lT|U6DpNXcz4d4>JY7C-6d9e&cT_X_`FC!u)f&yUxQ`S6_9yN zgwzF<&qcYx<7hOEFGpe;b(NW!sCDiKM6}YkQIiF2{XC^O^CoG4pF2KMMG(d5%}ZNg zf{cwv=zo47{>IeF{8R(nj-M{-=ktti7Bs!Z#YBAru;?p(i$w*jpg{JDG4SY%#@Ug* zSAj|-nD88gtl8)n91_CLKhnG9l#IpX-#QrmfIqYS70+7S{Ui_}gGZe$fv`TT9P56Y zHx}j z8|CIE9+uJx`Q$8lW)f%nAIL>^8(LhquGt=xBqO}2)x?}%R*Z96o$MVP?o>$a&rFiL z3=&RFhFLA(wX-lYR~K9FM4MJweG|wK9lKq7J~t3{c0n5(7iZEMPE~u+gMNG-Qh0}O zBVZ}@84f?E)Ax2nYK`qsZj68$H;w1XqEMtZtR-9mC*sYj6%yh2`y+`MLnqyGq(E9r zM>`!%slPZ6(bZd=CRP{6lc%vKhnbqazpr%;tv41(b$fw@CuVgA7~B{35`;tIA_-Dp z;B|e&@55%Gs5(p5U&ocrKJ-0Y{m;!Opd=2`@HlEDE#3|QD9+x>z3{dwjQEnpmOMqFiYmg-}>7TqO}Gz#yF?N>tmHIQB%liJ<*EphiV zPxRv@S%}eM$I#oI(@t{n9P9K>PWOwW0hg%6@7*qJ8^w?ZqAN}F_Dj@4mS?q%!;Za@ zuV3L)^k=ABZXC@07?r`B>_#lnn$vT0R}^o3Gv%~v{|G53fCV>)l^Xi&NtpFsQg_A| z4(0|3ydc7VYRW4noiK2MkX%yNKPr4Y^Z0q!k?YCZe>PP59nx@5Iq$e~*nL&4eA1us z(RDQ_(7ugcmDc@%o*s+j`s`DXt0ooB;ESBOh*z zESWjhl3PcB&mQNa<4Ej!xT-k88H9=Xr6%ggF!7T;I1(+2%)!zLyv$fo5?E+2K}EE$ z2gYEChZdRj^c$Ci9ywFhat|UC7AAtb;3rWq5@c$U?rPl^KAh$!Hm4E6DAxE)_SRki zl|>$fUI8G77L~wl1#s)Gth8sRwj#@?YX$G}Ych$|#n1t8(eRkx@N0tv8aWm;Pv`TO z>tqH6VWrbWUQVrho3(pAk43eXcS-Z>PgaSYR-)%5%32D+oGao>$8iaAA)8w??lauh zK9-H~l@Bd9>i0eY(3NQ9V}?aSzA#JW;2`&?$2J|Zq&74paJ>CN-5L{G-#V{#Ndl`i zzY71S8sIDWXN^V$cCMEXt)U@qNqh4ZpEfK%--eCjR!cBom!I$PSO$3=wu>1{1#s7C zZ^lQx9v#iXx9tN(en~8-jp6J}SA;agt{@~i0<2#$MCjPzLm#Q9B@veV{d7(e9T8WD z%sx_aOF|`i>2%Im9Wh~tk3jNqjX+8MUb?b%`M<%lzl%0BC_~QWZ{f}opc;j)Eg-O| z7@8P)_X-H*vFP;iHY`vymnkG4U_m|TxkbMXRr87b1qrS*1Rn(iv5-}``0-uwv#t+ZctyFnSb@~`wG}=+w$ni+CWIjU7m@@hlhnnw zY{*X6dS714$I4z8l~Pg|i=nf`k6uH6h=KPFca*Wb!tRF7LY1#W5Ykh#-n%iAn`c|b?9^VI(vv2g;1X~g_s{v? z$3(5^(+0euvrQjVkjl#CH8GnOG-ck`a^;9hOAD;6MZqEO!{^U}`!6p)y8x0I38b(= zviRQz)&$;_wZ^@i*d>!R6u}>ICV@?qmUJ;ig4=REn!EJ{zn=oV)5f?IbvA7=nI@6( zL<)x^NZ5ad$C!!OjSE=r>3OviuNYh3<$OH;!!+TiIr-@tdWF<%dJ}+=Y+pNhBtMsz zGi$%|`C|I0&g^pm)8eO`23nu4ua{@|G8PHk-9L7HGK3?8!(-i8&=LJ3+pwW`E)$_KY7<;T zZcE$2X6Q6kQU<65=&h}ufpCyBkqT(j+OJohuKk$iNT7mFEkwjD?MIl+E7f7$TnLw@V-r!<%bN)+% z4h!KXX`V1t?+osvtmIB>r(mcEV=9qH& zP52g`y~%161{u$`=8tI7zDzpih=V$pEEyf@n8)Cv3_t6$(OGuC41jE(hE^gmmYri0 zeAmF%3|VE~m0-*ArAz4%b*b(axNS8tpiecg4H!sUS;g3|L&>IdZPbflIo?5EdtaOi{%A!1JELSGus{`k)yF(tS!f6+1To;3EY;*DbSf(uIXSe`qqQ&^ z2@m7#_Y#C;WRw=l=pe&XR{MPrxXk-97*VNEK|`fw!ux{y9*H1cVj>JW;D@gIccw#C z>GXv$JPwtH{0mZ7f(m-#+M}*u-XR3o)`BJK0)nz>cyO{>-rXVGW&f{W-aO5lgi)Sm zd6J8%6fKm>Iri|p^7}Lc2ZyG|tvn~F=!%7cpR&yv?l?O0$BzK&iaDHsyK6tzj7wSa z3#9pKp62!GAmN+F)2B@F+|cy)Ck{&>7>{7Yqy1c7c^EN;3=qzeNnuY7ZAtk~gaH7B z7DTCKO3GWU7-V@`#vZ1bG%;cTwtSJ(zMmP=!CpQuI^#P#TH&0mbD=WMez`*iTL_Dp z55HL`&}pKsuKx8ge>Q_C2iE6z{AxdtyN8AE09|IXBif6wE1RAT&W)4g< zGQjN_W9G=nt)*1s<)G;A+J!aRb2`Z+}OzQ zxfAIp2BYL>8hujp;wbmR=i_o;HKJmnuuZ z?~QL(RobgA93z>aG3uf;i0X~h8{knAPNwZgE|55-=U7`Kr_&19;6*8yDHMI@gRrE0 z){hd^+B!P3wR=2-anu!a?X9$p%l(1R&i-@58JvI=70!Tc`6D;$2M-^=jbDdhhn0Z9(3_wj4GEGKU={viaBw0yW0v1bNL>%B6N;U_BP0b>YqM+5 z3J^0NA`qOC`LjGJe3wiUb{E=_aB|F#0Q5Yy0Bl9`W`!l>?FeU<*ZfI5B>s>>4-od7 z;Z)5?>dg;V-Z2{R`S7^75=k-3w>RNgL&B)$t*J=nqUO9DU@OKbkpys?C;{eKHG213 zzQ>?w@Y3&YJzzUvrmwlsJ0X43gFoM10RZ>C`}aeoobYir5(-AT{`O1lVw7L~2Zun> zpR9oL;V&!>zxQ-VqD}s)$Mi+SGg2$lgHcdfZ%pQ&ZkBMF4qjcQ5Z|8p07{@=YHZaV z*RRpNG=4&Y_fk3mB@+<<{>uOHV*)Z*8od?s)gyvY4V^cIIy{XT8*7s>BuI+@SXZP* z4OCM@s3qTs>>ArH$&1ai^7fuO0AHkvOzU)SDlY3IE15h0Nrx!HhSI2CXMx&t30ifv zKwTzYHuyIpummibHYdcIJ&(u!|1=`(6Ck_j%IIN1Wwed7i^85FdgTTLz zANE*|0+gi>lBCUO0}3K_SKlkeN<$uS$tzIdfUh6@c&`{O4e7fjt3ZtbzSi5sQ;(O1 z1oGTdpaHiuQvVQ7H3@t@hu_`~k_s-d|H^Tb`Ge!eOGfFkVW+Oy<&TP@f`t07I=VuL z6_kUUHPH9Jj9$3ch^m8B?hjrL7BO^{lFdmV>OU!NSCLUW^x><=Hr15y%R@0_)m6e{ zzd@eX=QZZM`h68E9Le(;;!LNXM^#=)$wA>W8`6&bM(hdS54Xl)`^&D#s9x+=Y9`W% zy#>p2<=T(!0+z^V@>h%jUC#S&>I-^e{*E*nzcv!k&;aB>b@}+sKUoQKBk4v1xT~c@ zZg4eA97+1Wb30K`QMs?7LHO;PriQk5*y*XLzT}GW`9=N!0SmXg^m8P*GWPqx6$xOD zs?E6)70*C9XUIEWB<2i5AzfK#Nfe}SXEzdVM&0E^-n;kr0M!MMSZCXi6!w2U2%?dZ zAu`hfyz(%RjRdBoP%V&=(DBj}-n_X&Zr|W7JRcgg934&MuqF@i1>{lsZTLcd=d_VwDb{Evx)*;12VrNza8iz;Ma8gjH=j{C*^ht{ND!UMB@OMldAtTC%$w@+Isba z5{i*{uE!dhdT0^ZRJ{GX3JNNBD{WR3w#EdQMxucQDfyii`)Zu;W5-&;Ap;vFCKjU5?Zw}ObPJ0!WP-_sF+t`Tkcmr znwq}lyVJ>nBR%yD~3;ledr>PHFc-UNc+OL_*9mBn>Y5I*fq< zkbKLp$8P*{myo-pgsj>|M-M+#uk*DYcQHE1g+I`S27GyiPERjcVeh8Y*->mUL~&nE zZtesA)O`@inLK6_2bI|Rj{mnt0)#!&Nq~0qEX4O_x^g(_FkM9jnyJ`dG1VWz)!k~R8D1Jev0lIM7KBB<+*kRfAyrk=fbYaDx5@NxMz3EV69Kp~=XZjk0RcHA z#v|EjUO~V(tGu-%f@KLHu06K0x&^+bUo3bq4v^eJ;s1Gtkasej9QwQ%pmp#0LA*DV z2#IK&(f}94nZ&JU4Gm@Y@*|;#>0DYXuCt72mmlDX`}vmiF&ogXuCB2;vEMeu_~nrK zeePOHT5lwr{w66C7++Q7Dl*I6Q2;RzW?gtrhBD zCA_~mNxWlUY^??bMZ&P}j|qs0UwM0Zl;12Q1AP97;7fqT0zSA<5z>Lg^T^wR>=&ZU zGC?d1?lwwmJYywj1%a$tjn0XKbJfGY_{JLfEP{-3!ph*pm5Ph#je{R8?^cjQ#`*t8 z8;t~N{E}4*Wr&ZotTWIdFa|id5lC$F)TM9KC#Hpoa8{tZ%HgS_Y%&xfQWL9={kp#A6#}X_PPT*%&P!-tuS9g|-QTw5l%Hv~+g{?c)AUDe)Tqa8J zjq*a9Z=kuR0VRALR^9xlf*wCla6^;QSA&UQ4!m!`F=oTQOgO0a4fQ>U*xt4S-9;|1 zZ$J5EO>QGyc|nBaC62np1quh}fs_CjhbTpw&ncef!||gCTM-elosPjuUOOYHbpg98 zSXeHz3EzDzq(`ovZH;prG-eQ~B=2wwTD7&LW=s#o@CuvNYT?5b8u)Gd#`?Y`? z6y$MeAaq2L0_Wr0cl-HWWUS9-fH#E&&c|op*-c+iz$PWgrz*n*uNb@1WY!8^;XuWX zZUxw~1%g*D3PD%EKU|vft?AfM$g9u5J@_#dJv)4mk%4`-mSaGs_?UBZ>SWHNNpNS%Cs-2Tx;0(P~d4sx+Y-&lMJBzuy^pox% zgaT?Zq9bFw&;B8(Aw$y{RFGsu#}(RC?dWv9tGv=m<;AqSi(TZpqp5FqDKc8(ObN!K z3ib$_Fcef<5CNVVN>8WD%Oj~%6wdgEx&Zg{*&2}6B}{N3-N z6g1?RsQ$piapKJRfX1x0D7y#094#fEH9oF~K^Qh}B|Kqm(72nzd_7;Sn%JZ8VSi^GSXKEin zINwa1&IlH26=OABf;FI^&j1nLmI~Gj0Db?ZapbS{S`kJmp8M)tN;D7|H+Vf!@zXMQ z{R?#^8BHfDEZMk%6sTz%J6r1^lxBg{?SZ~QP~*4Ua51AE6%=X(ItFnZ#>0-rlUBTy zh7U7?;OuTFB5QZga^y1!vOv7Ev}(uw%lctBpdbxa@^WThT-|eiK)jg-o#^NVuv59v zn_d{3)k}gZ^}A@d9#>G=c6;JpoE=yTjR^>pAH!P>3F4~x>~^GjZBksi4cB(|9Sdip z&~0Unjg9BMPu^D);HgXQakw9}HTv(g&MiXB8B_)}>)m$)V7rjg9#QpRCGpW>Ms&;_ zUhmHtlBK=FT#UHI#l?~y(p%|}WeQOzHa>oS8T>2!n*`v-ilTZbs4Jy&W+uQVV?ctw z*(Q=scQ-vG`<@55T|=p5A_)oL#PMKyTl1hK^_Axlpi_H3@K9}clTHEOFDFKx)IXVW zxoZ|X6I+H1HMd8E`?3$Zo|tS;!k9-F*=xs?jQ-LBIQU+3_C&@Fmts}VyXCn3j4IUR zNbJFxheC)N-o~Ti7h-6KothM%RVIu!f3_Esz+!!Q-=ON>1-}UUMie_LuHTz&45sEL z271vO?b1Iw&J7m}>OW0B(1iwSstbr`yo5v@yVcms2OSrZe-~*U+o|+SAh`2<=dMD7 z21>sMq43kKO<~7%I{DT`Be0WSl)+A7ku_$Yi-`pk%s`cCZvNtj%f$Tt?1O4}6)_va z18;eM&tvY(*;eC1UV*%}vp`Ge%>YC5-g_X~o$@kwufc*kOZT`R7n4OsrM~XumaMd& z1YFF(Z2!K41x6Qo?gGV(XfhM2^K(kTgTg2Dp>aQ24bM*X8mj0kw;sm>A@H3Z9@?h+ z@`A)opdw028rG3JW@f*uDDCMK;zc?~mVa>2?emU;knr{B+j!Exj%G0ItFo$!%^zE% z+a)hAPl(s2{Oxq5P*Zk{KYdHfd0d?KXss!wrlzLoUdFh8a*+~cvQqrbBv%OT85UireVIJ(Rk(LZR2LK$}ac7(Ab7^;6CcwWh~}_nr)RjgA1Fl$3h17~_ZJ z&EDADTnhR!As=mlIG@lN+Wr*y`AznvqiLtTkwn8A+F>EuVhCfW9|>Dg3m(h}F7l;9 zl9Q2>9ibSX{5Gk^2)L*EV~tOT{7_r(lTWe5b9K>(tRsn!LWq~wvHMFQw17t`L@5nk zw#7O9>eOaeLN8_R+`hPb`eCPiSH90jVfEGZ+U(&(xY~AM+1KeV5BKCfh*pKCy7g*O z;|~vu$&=@x`~I&K#!)Yk@$nGh~GS;AkJVmpsekt#%64e48}QcpL&$ zo+}dP3LRC=S0&1O&R-O+SoPZeNK(>g74nh4CHcO&OCX>};N7Y~-1+V3#ZI#MW&8Q0 z&xYo(tN{;INVg%&=c6Q>&7`cwGylW7td-@HZs)H_UCDVxWp6Zg6CcN@F|be+sS*$;5}VbpZ`dbGZ?riH!DA`yNi1`ZYzab{RzBo zrMrukbLydd8=hox;>p2rGA!%cJNStJR2zzG06pfaxUp4Ve#qSU;lb{+mdtvAXeF}@KfiY*k!7_kG-bj9baNW-(zw-;uW9I&WZSD3saW`tN z?<-z&Vz`3%&g>rS!J z+YTR0E_BzrONZ2I^!tQ_J!dCrPY#M(A`_w==@i5EtWfv@Q6jxezC72UfJ~19bre7@ z_NSTjpp&F8C{`3gTZ|weOqGr2%LgRwL6L>h&2A({cOoI+n>($Zb9@?xfD7EjdEW$(ug5 zo$~gDP~G{#+p%uL9xhwogK4d$2%^Ffcj<_!;?=NEQtW{n6IUv%VN$!Bbc|f$y_?=VUE3ClfuDb0;~8ul!8p;I z1%KhlV+3f@X0o-|o8CWO>&54VlL$~0d5sI+mz94$#51%sl2F#&v*mMclQM1iEkUG{ zmM|KQ0JgLCLFE2orMB%g zyYRcH_U}s6B_5TX?yV`0!IsjhvUXxY4G`AVUFf3vQ4)TB8&|jcJMx7?yGhdC?j^Al z=V0}mm&giPcb%KTG9#R)2a>9@h=tmPdTGW^^4(QUUA*g3z=gXMh#M17)zBy=fW^n-ta%EO)iWDTBO>7q*SBe&wU9Rr44pSWN{MTDOYKHEsyyO0NKxLe5&PwD0M z;oN&n3PXv4KYd@R<9@z~j@mwgG2N|lc{*}ubt!G?{71oahGKVT$MigC;iqPSIFcey zA#fazBzGlzx6FPdvFMq5BP?MS_TBs6&TT>6VZeprYbyy1XQwC%*`CXGQg~$-0 zCAqF!{BMo6krC?E8WuiA<1q5Uf!#%G-7xk@I-QksICodZyc5GT&Tm1cTJZ*sBfjt z5l?X5wr=qlQ)P(Z7QqMb4;$MkvrTZjw815J*Xb(yMwTXfM!WS%hrpPsyA0Y^fKQ5t zUWodd)mqiZzH$@!aDwl~NdX;Fgq>3P9zyI+%`Ghzk@uh0*ro^>7zkHPG;J)Y$_NUs zHLr%Ti{-SeHn&r1uXpiCEqcy2%8q($)kQ@`O}U=Cw^F=0>0T_96{4BnL_gdW5`v!% z!$0gEVL>%#2E__r?wvb&U%0?C%cv^rcEMSnvQHArE_-&OUaD%VKeTrrFO!T@79D{F zrGDpQ3Eu4dpruR**1ciJ$c{l2_Dvr)gGmN_jKdF);Z6@)+Q24sG$I68*Jv?jesU{1w$ ztN>b%Bz{!xh;7Dwd7U{fl}<{Nh6b}L@UGK+5?TZ1Uj?x)2WmiFfcoy0Ejcan7HTE(4`Yl zfG4aqqWX!|shV4n5>tC<_?a~11wH65CjX9v5Qzb-GK6^}C~#R11z45Zs%%C@t&L!^ zp&D2dv$4_0<|yX}RwBmvvJNP-sWw|)eoOp2(?{i>eB)~LJp}#LjDvPGgpH@Cgr6`W z;t56bdQ@cIA=%?nT`AI#oHVYkv|m8sa}3a2b8v~CW;B!wKM$`s$QGKii+e%ru}0|k zT(@|a=hmY#5+J8GhU$T{%$XZN&4yaab}ncxIb1OAi#Z=5pGyEcuhca}2&wv^p`j-u1q@o+kPz$w48Y9|ts0#qE$!%(U?bLU z`Zh37CJ2`qK5h4U{v3M#zg?_fxEEsxTcs9Gpx;C1cb9Oqh!dUmR@$r2vL}8?FXsWl z_bn3v&5iK4Ic!XFt-*-7J^@M0I#}ih!vvgtB{eeA8Ve0QgD@iXk2=+slNHidJ)ERR zrh`{;ai855q5Z1(UIGbVsgI?EpuT(s4p%c4^h>dUIM%O72nWg+4ySIopUH zHY%t5o0?D;U4>AQq7<_K`$pQo6kYx*S2fk4K3xO^`$w6r+3(F0?rd0Y#TF<8soqt2 zgoCBTQCylsHNMvw#aVAd>;NeysJB>Kox~1Ebk;+{BOBj#8WbD&u7VO|4*|>NG@W2) zX))t32tlN89`g3YB_{{&?(W{me|(nz(c9~6S?7xduW!f;WKmA#cRpou$llKP4!2`Y z+q|EM`-~>iVrV@@CCV_4B#H4ItU}#a?i}QBIZ$i&%`QPRB^6*h&|=IkqT(#YE;50L z1b5^gkQ4+c+QjxvGJ@xY7tZa}RG zX!dXg2ZvlFmn~(hQALc7l1~a&ZX$IpN`7bMt|ETDkt~nQNLH=lk1_)Ts$Ski97V#L zsyB}oNIfDA_5D7(nU2kKi79L7X#{lS!U*V_?z}<*{6_kuG{l&w@!-f_*GS-GV0bAF zF-my#;g@Fwm@*PyPf5|Aa6Xa&!BRl(suHxpw)PSWv`hC}JFcmLP38QJ!fr?q7+K=; z=e~;QfGYMEFAp(Ozv6e7*4fO>$(60nnbOuX2uNYTkGE|zUo7a8fQpLm?Z*mJIT{&; z(u|dUjR-&owO7!&545GWZ);>IU&8NMZ8$zl3HZhK1MUWrR?f_0nCi93Tr08%{fq*! zwx+hQw2X=y!o6ODr2%;uc-3RSIfO?%Y+)hOsC8o*)HpO-e`kFYDF^{N<=!-pkJPZT zn@OY4tKG#i*y-jZQf2)+nS-4K0Ct=cFjxC){vC=e66|Ve8SO5t6~DM}SE--Vv>Jy|(|R6b zvKV?}euHJr`k~V{gAsDuZC{V*`1tt93DMWzf@0!_kH4`p8o9*YEM!SG->aJUlT3D% zs1L(GNQpISHcElO0ivlQuG!>M;xN)spu3zJ`}#G^PNO|*x<>0ut^9@^_frp1yXv&F_8-5OGJzLo(-!d&D4IlVcPA9$2Y-$Sk8@*Qw z3_QB}Z>)hEL1aa|AHhigYr2nvp^B9s922G)^@hjQoC4g6d1FIRt&I*6?HcziCs`|3 z9N_CU^mT%$YdTyI35Ku5HNNDPzxG72>~1+`1kl;hy=3;?+BV28q%F z=`v-Yjzz2qD(O9yE#k(%`ZjVTHq3E9pg<9#ABYs1v}L6V8BhmW$B?Nv5@`EhK{spg z8I31SGEfEhvy}%m^x{`}+?j`c%(2XIQ8xw*Hid@ByZ2rF zb0$a`FGFM4hX=GoJl+6$^oITyTLlk%hPRu}JBqjK0N!MRUPlE|pQlT|i&lHJcqV zObbddObpLlc-rMTPpU6@;=Zu7^rXS}^4M}i6m%ubPgZ7s@Ho2Vaa&Z^7T8s65XHPB zW&ACz+%oU;VMK7V!ln@)E;*<~-gcF_X(A@(TSfxnn*sa&PoFliT9Velf;*sIuuMit zJ~Yy}gEms_nin_RA3V?tnrL*eA|0yf5Fh%%^2Di)_zgjv3)<02@I(A@;>1ro^u4dH zD9~vkDHwmT9!WV^(e{3!D_kZ0SstQtaCDjb>>}B)1@CPh=QkXpQFogq-AN>^sRXpZ zrZ6G>S2;Othz-mz9^gwyextlvpl@~-mZKmdfCthmuL}MAvxV(0N<2ne2XsfH{|(4H zG>wV+xY)1D)EwM1)8v?AG}h37Vn^gmXwQ9Wtf=MdLU2N2>YjQ@>1>wxi)V_q<7d*0 z6>_SHdGa`^hU0#k09t_leBeHDs@%;bBQ^Qjgio^N6_MT*R{e|Ly@HAH6X(E=W6UfF z1C8MpgI|!|*U;xohPaL>hUm8YApP=qrAymqR=`SO{;l0KTucRSk4NU`;~XDAAI_&X z0hVN>FC%JgT+KHGq?+@>C$1*iWbT0>AKN$!?)Gp;92eqcBjvYi@d+edG2)|37>EGlb0MB`3GUA{w^-d-yO>MS9LFpR>G}n%NNKr+_F1< zHl@&AmB%d02jeC{NGW@?aED2@HN6(Zm8lf5;L?b_h%;$F6@R)!5~9SJKe4zh?X>$P zgMrbm@BOV5=LNd^7|&lJ#Y3MF0EgV9jzjMh@NgL`Y~ZEtKOKk27?T3o;ISCIs$Zz~ z&ac{$%xJVIy=p6Uycp8D--rvWQkhfZ8X_^SSwZnZY9UvA~416&)bo{)elQEjjBP8!7^|jVG$c!Q15gaZ-t=CQS zCrGOnm+vqtr&}&eP44{3eaD~%Jpl=W;_Ob&FZYaBN=P5Uy%}4=sb39pLq)$3?h*VO z{S)O!u7+yjF2$4=f>BFH%lOS#s^*-*?pI_{2##o(Jv(f{WIS_@X8iF4Y`pNjySmHKatS%>rXD}J*Uw8;y5AmX=KoJSujNuhX;P_L@9wXeJkR5 zM@V7$TQ-&0msEXl+QUh6j6*_%so4ul!mrf-c1mB=k+Do}E{96}s$Bk~dZO$U2O<_V zam-hTW5mtP%*PJHLasj&*)fPezL7fHr_OZQpg3=!7MBKI>GtnDURLZqtw6K;iRzS& z3v-JV2tUT&-F@ncsyRp02i00vQdg1F(~s6E&x0t5W;ABJfNXNyk}t@aiF>@)IO#vcFeUAzM;@xfeJiKD4PV)TuBsWJ zzo3U!0$TYE-tOiO!y$#KRSR=_ToI&J)YBda69q*jo27RiH_-5?`dr^QE^!fPquC6m z9<6_;ru8}2F?lR6aeT65Xg|>HQYLa?5+UjP6<@5ZTNv%1Z1D;vDj70P3JwVYeS2#~ z&TB8kxu+b%soabh@3OC?h|g|qyNbKcA0+TT>q`x@PTvNJ&nd_6BOtpFwy|?ILM(4Q znXPc%R0{nL{#GaQtGd;kqI^X5QNY{9!C*}-AIy~?>(eGz_~sryFwp+#>I^i(sOVj} zdbt~tx@+i^O9s)ixRnEoXPQ(|VJ@moiXYI7;8$;|ik$#<{7+3^Zr%5s41BeY7|^v5 z+otbJ2AN!``ImPNhL)hEk(E;~@axYmS-H}dQoV4{Y42q4R-T@sc^>y?KY~ADR7vV9c3HO&3ur)Z7>-7}EAC`TD8W_Jk9VQ`%E{8flQ#Mr&W_LSq$73 zotapeGa$V*Z`9w&I6LDyI5-sZ^WcNh40(ivgB0MGNn4zN;Q#;5N8gng%a9EzJ2L$G z8rRY6LAW%EH4+a-qZ1TU0+-{1u*h2mz`qNAPyT}(d=5`vxEl-@QlI=X{w+{Y+dlk< zcy7oa;<=YThdtMBhtJuZMQjdwR4z<;2yLQ`kGAYjNpCS@Do&vuM-!khl?g>gqR|u3 z)$SWN+!^>%H#6mtpnWTEO-udMY&G$(zRmIqC80mJ7Xjp|a@$uNNy4k?T({Pu=deRn_s zkafgeBqasCU4C5(2j7$nk^XbE&V$GOa6KHmM+_YTbxxFzgdL5*TVLZQCq4D~27iu- zOGuOV^h{}y^M2;Fx53~Ecjp4S;&|+2is{d~mZPfXc0&j$DaS)+FR!8R^vh!x0g-Yl zaaVGgK)e=JA%hS!`sWuLw1{tWJk`f2`i=*rV-?<;yu7@}oiP!!Y3c|{L(h}2Wo14| z!|nPT524UkM^gv_TA$s-Vb*GXe*SCxS!uzX1y$q{FqeV3;m_l5q{PpK!Qm($*$otL zjg4jEq8vFGfdXYjP&??YuXV$ z7-T1BIi0H$KN!iDUDvc8;a8Um_^1rQFu*Q$KM>tGH&;n}op!k($i&3tN@iKHp}rjb zrDO_mGGr^h7|(Oj;mEZp;I_7LRQBS)`)FkVdnrYNj120U`b=!Uns$vE(utWEd=n6+t~PH|@H?3^b?QIyzwR6SMRd)5Y8&Ju|e#6RX4gL~<$b zeAaNve>>i8Oed#w<KlzE}Rf+S(YX+3;rJ&DjRSVUzW&H0P7<7+{&7G%8f zMHQ%0E)t|+TXQ?9zPZ0n5^}zbwm$CCAavj3qS>65 z4iK5gy?+=YzW5k=ci*-dY@2mm<%#fE;JF!_0P$V3t*r}U%OXn^b&h6XX&=$thRq)) zm&u$~canW*t_D5q8sl4BP7=p`CdW=+$i}>M`wk;yNSKmk5(}A7ArH0SCq9PyApSTfy33QcS43z z3%bhbY8@JcgtMt$^^~l{Fnw+^vlQ>}?9o~m!yzWYY6OhZW~51^_g*0``@n_r8#7+s z{?xkO%QM;9<8Pd)Bd4!JySuyh^lJj9xwm7*9GJ+2rp`@z!7#~s?}gcElb-eYqxba@ zmj6On{D^<{=l2Ri6reRPHojclVaBa-*}9j|rLw;^jql}tbbq?ui-5*P@@x|m>zyMA zPfwjeXBp7{I|K*7lva88Fa5voNHkS~N;l+B{XZuoBrCTi;v@2;01U$K1caEsydvE(hE=zeKV*dGzO1VDwsW`y=to`NMs3>nQkZRJbA)WgstgXoG<2cp z5NC;Cj@+Un1$MlJxLKqBkGHpus&f0Hh6Pap6_Ex-LK*=932BaW3J6F`w{*t=>F$!2 zl9q0e?vie4q)Qskw-4U?yVv&{?|-j%3xJao*x5-ex&J! zMv}PCcY(!$@wsk!E|Ho;b~#;%erJ!wPVG5DlKsBfBoDP@=cdB@Fx`zrySZau?peqi zH8t*ns%@MQDvEAEb)HZ@JtcBQr6&3zE)I!ty%;u>L&wJU6DD%FaWESn0=pd2D0{Wf z#Q-Gu0b%XC$7!;Cu}$wsmYX4d;~)qcPn7XotjYB|sM|dOYQ1e)Ztl zA^XnHPEY!@dumK_O)d@R9;*c6B*xqLC9jo!7+D5w*RA4yG@+P^i0gN?gAs8{cJp*S z)0O=cvAS8e22m6h%?_>FKGflkcb$AgCqCtmJ?Esusk4Fk^GL3;%srv4p%c+uCM zL1LUU`}_OH>c7vg4MH~Opy&_7!te$f7^PXH8P&4DNsSHrXzQTj~XaBz>RFsHc)0~ZZf;k$uh6ooCLm128+PqyD6yNii* z58gzYb~06eFi0+K5pxb02!o&ViBxYzr-~n4Ok4G}xHQx~lFGuggv{iD)a&hVh!JTEzW8fUdT;L$MB<(Ry4x|&G7 z9pOYw^p=2tVDIaz5c@L*51Z7DS0szv7i*Zx4r&QQ>b^v?A7YabBzfCd{?+IDih`JP z6Sb~o`_ciAH6{0|SaS5|&z~m^inCv5>(2LfiFSOP(PA`uUV}N&JbE?rF|~>`{g7=_ zOM1fWhoD|m^tcw@nS>i6xI9ye_{$JM_W?Myj?8uF{x(E#2Qdg6k2m@+zlvvn`Bl9A z_Pbxja`Lrd&D9S26LRA@syM^^!`mypla$1d4S~dnETvhuF zoUwcr)~l6g6COCD})g8C3Skfl)|VjDlwY5EFfT>y~iYezNNYJ?NPq=FIoL z@>kiZzx225Q3=b6!Lc#@e=KDl`GVvHRTZi5cL+M45G5pRHr z0g?4ppY|ZbxRg09sLu-L6n7nkj5T0!ri7$ zB#OEkvV|tYn*)W$vUj*%C1C)_&KTo$B9wZTW>RBKx%lL+fRKQ_eeHf%{7L%|Y*c;j z=g^eJ7E8Mz9TYOgHb?)h7~(*)S7I@h&$bX9U)UT0y{ZYVogE|Hsl23+oZP2B>d#6( zKz<9Bf;cYJ&)0WRHrj3ibWs+z?B?1h%Qm=`nrlP4xA;5@nwqrP&!@%9XtcGp_h#6V zUu3JJ(NjqA%#`eGFz^aMAdrZAYV}N$E4?ZfLv*}@U295ZT-YZjKogY5hnoSmzmyis zYFfNn))P(9%IHwX`hFTQrhEBirr8>h*dkgkYQ4+*3V2LBp(w7B_ceLH>Y%;>8Ow;# zn3AA5Ksq%!8U0}u%kZy)PY2~Q8kIGlDV;T#5noh}%^e>eS>c3Pr!v7DI4cN6v@jldNmkI@m$i4U@jdO(^bNx)+!}no??swr4 z&Dt7KDy)^9l@t|}-o7Xy5M>j@vn>5IsIp>np?Us5D` zvJeQU3d(;h+i)~J|13;H&tpSeEDJ=POi!|)s4*DX6<{P1g7m~l8Ld!7r4*{SO8Qa{@48GdsX^B1w9 zW`fYERX3H))#OdwQ+xTcs&Xwnx3pSkCYgbqKGT5)_Yt!cZ~IdT7g8pBUEh1^v-s6X zmtz`?wmp8E^6toLn3M^hSO_V2oNpiQWc{@9?3j#-b08H=kL-D0bE!Z6WzT*T=~7i! zs4P95%w(ooZ7Sogny^=?ZQp}$AGyA))%2qiZqZps-A&zat|O54rr*g^zuLa3w3~Kn z`N8Z%7TWuNgISL$Q#euv9LmZDrg{$U{sb7X1Ip-wnQ{{oO<}VW?L-^qCQIU@1-zG+I$%2XIu(H2RjPAf^pWa=( zo%~CRF!C=cLec+2iVzAUR;a8`8(!H1-+~Z6c^5i`C)0i*<@rL1D(RK;*CPIjfqa!i zeoJfYVMVmJ;!s38!Z#|(zzhuu$1~Jht@Mwna|T9VdM#5?S)^9hW=8xhwn{39-0}V? z)!dqOU%*kzdUX@2|075{m=H!zV}hD0@7sCXxuzN)C)HK1ug9~zOA|tCKj^<)OyAYX z{LIU9k%iN(YSY^bO7cS6T5$Z&%0}Od#Q&VGldhk1Hlb$sZhLy-qXc<~WDm~T}a$nt%Zcv^KeMT-<)nQc! zvpd$>Pv4s?uaL+Dj(>eBeU4{D(6*C3?dA8TN}yWau3zQ3%n)8X>vefBzfssQbaWoQ zhh*jPFZ#n*280m=FLhBB@C#Hnw(PDRR|)T1?9??3B*Ad#)cvjck^+)1P86mcr_?%L zh6jvkI3a*(tr2NvvQe;!8JMpz_EPxp_4(Uk3iw7H299fR?$PFahw|T!Yd3+=4efK+ zXMb7Jz3t)vPajy)rC-0`A4@vkYhB5UIT9{0#75zig2o^gpJT1rXx-1*x%cbQis61g zB(J_cT;T(C>H=w6YcdsRwx>xO;T}qe30JgOR~oI$%;$LI=HOHbMvd1NqWhrIzNS0s zZcz(b;H5vpK(^y}o}+P_KAs18kMZG=Lf<63&&>sYtY~4cMXxxWvbqPznR#6<=BJYG z&eMw5@$T4k^hlrWpWV)JTok;@HLSE zoPey=*qni7HGSBX%idWogZ=u+%9P;APqQbxweLmO9M>A>7V?-^?H6h{4xu=@#36ft8e{wi}W72|U4O=h^n6chwNJ0I=ptU|x^ay8iw z$JK7GE(!0Y=7C0ky<21?7GUO~I3!$0$iMbDpVf8Frvny*jm^)>9Xse(AUFp&!DdS< z*g#ks;{mrlQTh9+V21-9K1)lCS?9$Dk$Xjfd05qlHTz58P^Z*yK|Tk}xZ-4L<3nkX z`ayZPj2Pg%eP74)|GL}ZgSOxADS5!_(_#Dn$&LNKAoyI1u0}sJ+dBC_ zbMbr~7@=`B3trPvPvU(GL=8nk#08{DY%^Ngp0?rV>u%CeAOqHF- zUspq-6E`ul=W9;c_Moc?oB2*7wdZ|$u(p7kkGR&~1E6t!o;LO4bb_W@~tRPDNO zj9+KG3zuwPa|n++=*qm|oCUVB7bkrxUX>AnKR4JGlBIc9sgL)?`?Wek`9BvHw$m-d zpI4wdh->JfoQl#rdQ)zBoutxO6Vh>cTlLkwVeoDzazeg&=cqjgXeTZ}H3az^W%?P- zQpHh4WCg+lxQ@l?d5E;z1HB`glrgH8UW#RlY82G3Tizq$!HQ=!-5Vwk;XZA7%Dy#B zt^C#r$ilAD>ek#LI-y%wTp$*#ScM&EY+WopFiSO_Zz8W;h0W}|q;RE9we6~$)8%uTG((}V9VR#VL6wa?A(Ice*bq+;>{f_ zN568MYMq+gdJT^`-d$uJTV=+)M&z*U<2_-bmO9wZ@p!#9<@?$_qiOr*GIP()wA2zn z1Z;rE3?;^If8^k&bgvUUwYNL4d`$n6v4WZ1sY@Lcn4Y8vaaH2}f<+HyL<0QpB`+#`#hsw&g9cDioj>nF*e|*E1 z40dX$yeJMZKQ44#nII=GQt=wL+5N8B&*Sn+ul!6*M9xwMs0VI_K+nYU)a#_)pQ+V) z6+}T!;1%EtzlQmWTszo0y{hX(Ym(X)80i_sRdZ%h zrH@&4J`5Tkf7|a07SI#udE&94USY#VYSPbi(M90Aj3fOL%zz_=H`Joh(G}OlsM`xg ztSbA@yZ-ZJk#*raKT*aBS*@(hCRF3b7vtk6o<2U>O(zz3+>S^|(5nV>e+{8Tr@lC4 zZ}rQ^uXKUoz@^x)M%5od3=)t~X}Wh?`)uCY80eeZhSpsRpfSK91ILTdDq2=90xxoT zs%KX79fM+6k=5qJ4fk{l2mlCGXEdLQ>Yg{up1@M{pzZ$JCyYKkP~Z{63p`mpIHO51 z9$5{xGppg-BZq77nNs585B_@RAByJw!@+0!U9=Ec$Fs_G>oIAw_Odb6Y@%;Ws-k{B z!2Bz}g@s=^Ops*d9ucd+R6#*OV*o?l2W(meKeOezW$Ku?xKvRk03sKRYW5=(k!&ax zTUQ<3hdET8lF};hsyYukOjex1;00kSya-&S_t15b<~n5yxkqu_*(2LYh$PGZo&Inxno1@{*6-M;$loNxTaI z1g`pgx6hyA+#2XuFM7vs4|jpW!EzNSp6*?)vjELm?r;pu=kKTSR2@5Sv9H#4a~-=^ z43Kv_!!DI;fhWV;a_1=Fv+(oPzC^F7_f-f$rZ0w}>fcEt9{Ov-*K2}PVr!N)GohGX z%O{QV=DrLzpE;9K#hue$i;0Do!#cvaB-g}5rG#{JJYD_&JPw4g+n3WJ4m^g2*^&Zm(tLLx6%&D4exS^lmGmjcQOk&SyML))#Y~NzAdqUf%gs@A zZZOZ7e)q{Yp5d6wJ7^30v;|}8U4bgV@hFTnTamY*P#2XW&b@cuIwb)8ob>5wurS+)Y5nL&d)!Q}-GZLu8#Prcw?27YH4x9&4I_}>o zQn+BUTmc-3^GEt?Ip6?q5)|irvHaU}AP`wkBMU~zs_bTq#nVmzY@0RVGaTV@EHpB2aDtJf)T3a)Of z|E&e!!~%yMq@Mp&v1nVJAYV8!ax*#dIJm zd)l&?&kvF;0SD?_|7xro2gd0b_|CA@~1@d=nvB07L@NbPs@e{bCY+P#VTTXaI z?m@co{92I%{F+}16Y#D8u=SAagw1>fz^*cqE%uW}mH6mSDYay!9DTEJCX?F(ggE=B z)AItVI#>%J_d4k?uojhQ+wD>B5JT@5yN~wfRBxLmhtE)ujz9nrEzZ;9ZYXiFWg;s$ zaX${kvx9XAiF8}P5RcmtsXzAiV|%SK$Dc94qC1&@762XbHzT3Mn>Jr01c^q>Di^ch zZOW>S9_6!dAT6u?*#<3(!KCONwzHb)LRw-`uGPVJwK;Z?R3_ju;EOP(c)+vQ0Bx}* zaZ;+{p^bKtOwC2ntpCT87Xc1wl^D^cZj3d!pwBs%ptH@`(`^IXrlY6O?&1WO-Fgi< z$?3=p@1`KS}y9g1hOHG(>^hRCzQ#rp93hkgTL^+8;X*3(a+ScCx*B=+}vH{I#? zsC{uPV{&uQuot8?y&;IXJjRn6tWxyD4?;{LgEPx7X4CHkH zXLt)Nt8Sj?Jke`2bE&{$xB`q5dod2&m@aOyb?qzI)2M+&;(xiHNB`x1{><=q_w#+} zYj}P>jomR5zFs95U&7parlWusKwzZ+2)6z<;T_Xa z!Ii!SVE_)+*~x+Mi(*@b$fFkJV)z6{r%lTnFXCJG-zzHa+&3qCvmdSWqILr<`s#Hv)4KY4dWNkvQB zd6FFRAY2^-Pp`f|7ap>hlGWt^lA^T>#Oks97lP0|4&gT$i`gc#oT=WRip~0 zD2S-STk3Um-7<2x7sdPrYHCNop)#cmrK3lU@nIM{Xr!Yw*BlO$6;|#Vyiphn;I*O3 z&ug4dBSq*gaF#r@WP4#SQKNi*FHsz=ZncLscno){&`E3wu&N=O zA1bWufY#5!E#$!!YHP1GFSGXdz=T=&gk9{&c%G9bKku@#+JKBSk8L8_|kSEI8;ONE6MucjFT}i!dUpU-~XSC1$=+f%Wd5a!dq32QN0cQuIYR} zqg6K%QNZgAlhj)?at9400BO5#0)Fg;fc7U` zvI^{}o8VtsbML%HxGLOAT#>-v-Sb|c4wumu`0o%61_6HYEZ!rw=g{o_+zxtMY$k4Q z7g_h~x=G(fR*46j7GugjB*G8MAz-7)S$|E>WG7k#QcK8YKLe&x4Z-*KYqbtW#j=a$ zN9px=Q@kZXA|?3Xt_6$0*Ff{b+i@9SR86?npNsOhMPNV)ui-8aC&kv3>ud@4fmN8E zbTyB5-w)rwKrTbo=eHswt3tt~UgcZZLj|=p82O2n0u>MZnP-Cs{XLZVH>Ru zW`v$8(p2_=6=1H`A3XaA44hx0-da5cujt#D4094p&3&qo_??Rla2)M}v*<2`ef*;Glb6qP7@rm-Jxx12O8Rcf^nvwNj9 zf{qojHOlAy1{2Q#xV`pvepAwK(*gjkTfgbQs0#`!BiGF7MYu>ILs&FOJ&fY+hm^uq z%JbW!SssC9s@vn`qyo-@g3Ut;lkgYRaVf?B-J1O!mH!`|?l+J<`RnW_ z=bourL?1EK4-F-oB-afVbi{cyN{lq^P>cv-COdNfK(*{OjAYLzqCb3*19o+`Ih0ks zoWmM7I*L%SA}cvMCfK-xPR2zfhz1GuB{zo-Z)m{Ln#b_%Juh`zvc#0wvau&y!gA+ zEW%`zj|xCn!CG3Zxnq+@8K-c4^7b15DK*J^sFK*4a=!K?^zk1Y81TIvrYobTY|<~d zve+dS&^!@wrX|tPbHs&R4qB-L2*_|)X@~HB5D36u$rq{rcgVv(;A3mOO16GNnZuDLPynl{l;O3h(V0iyEO1b3Bhx`5I>!r zH}_QDnnp}+qtTUk_Zy(5AC^n1f#;-GpoXunGtE4u0na~4t!s4K&} z2r31S3d*~tvA3GVA9e(a z<4n|qbH#xQV$VUJqyBnNE%A`!p!A>SIQ&`5U!Ov4|IP9x zK$;G^|2Dn^*X;e1M82!E|ZvefXhk|gK1H2fQ96iAtMTv6-rTVk5{u7Hr2Cy z3`@l-)3}-hv^zqFlI_^cxB2zf7p~i-aB5Z4nh|<`vSyGL3F~h=6J(m9@CV2NzyJ=v zBXH8lHr)PmsJ83RbgHkot2`q1d`OF!B;wK>zHI%6QG0P&UcO8qf{r%qXE_|qQ1j#7lur6 z-T3PNZz@ni#M7vZ6X#XOyqC3id!o=e#uB;7fzYoMJjj}RKYhyjP|1&4#LrLoWw)A|>f-lil6uYA{NK>4 z{z4ZyxDlu&*&m|`cnK3zK;Xd@TTAhpkD+12y3m{^qcZ1)sz?an3XA6rk2%q>=LZH+ zJD@kM*j^AYnX@-N|KfxSXJb^O76n{4FGa2cj+5^NBFK1Z&3^qa|9j5`U$BngJO9ms zRkq_EUD|A{?d@(|x~d-d!R`c`sO~BjdDLs?&c?9qT z;xPpC`LST)#qe{EMYFv89Ysk(%K(}p2Qv~h+-T!-IgC%wjZGLN2uJ00ZbUeIg(K>r zZhrUFAS;$^mDJXInLs7`UkDurI{-7sP;e4W0YG+!{RdgkrN~(F^4~YO9~If}L=UX9 zJBeT4>>F`av?MgQvl&s=K1TW6ML?H9*#fb=^KY_^8S zj(2vV6schH<5cJ$hJ*TlBJ@oQid%G4_lRiBnsk5C^fURUBpd<0dvtw7+ zH0gm1NC%K8;Snh)NUJ_2mJ)B2D*C%XBfK^H?<_YKoTw=S8*ns>z23Ge=Zp2}F#uV8 zLrd4gl9Id)pLT=i;|_eA|r zDz{dQiSKC6iUWg>q_g(B9oymVfKUG2K=UCGz6*F%Q1=+v4(_ALPXfHuQ}iyV*8Wt& zc!>NsH|MJ&;8LDmZ5g0XU|w%e_=+YYX0{Xb_JI@W5}0)o0O~CE9Dd{sT+3@qES+h4 z7f_s>eE1EefyBd4p{$mBY8)sj_4Q9+=S$3Ma}5vrc=gdfrKOdcsO`9Xxxrhvc>C~Y zSSi|*u0~@sXE$*M9u>^WE?Szs5PkKg&tb33XD6(r-sDw+)9hg+@*fNVhseWKGj9`1 zRCInQ2Tz_=58V9vIKb~ji0SANvW_2lW!K#f2vpPbW}FrU30gJ0eZcWpbJCd~blYc~ytpa< z9lqW5u8(AXa3rI=n+l$>pU+@3-(lDh(9^57g=>6=@b2AnwC-*S8q=^K9oNsTpA91K zR+#TD#5J_2Mqj~PInJQBZWRz@^}CDd(eS)bgIHHD9auXOytjK5!G220H9csOtm3P; zaF_q%Gqi^*p}fw~XO78y7So^mgo@_!@r;M-JKjCezpENho zT_Cj8jZk*6SVMKJapUz0LxEfx(n=XpR|Ef>@$X03Z-(a-F3r#-*{EirKbiVg-*D1G z)z&Q86T2>^YGC<;t{#;LOGI<6Ygfj{NB3v55bI#~cA$H<7~5~0q-}iJJt~O8$csG z8X9HQu_@N550FW`I-4VYf&=)K^h}XLX=cgw-pSPNM|0F?JC_n^$t8nTIs0q}67yL7 zqP@JAy3qGjIJ8mkJ8L#FIwDJ46sn%`wJYRycqS*ljge z6>ZG&-^X~rFlNLtN;)0$h8`X4AAB+0!0Cw_dJ#}Dub*Qt{oD~20hNvqp}tuIn~ZOm zXSTU}$+l#+5I5;-`22v^`2-zU;XF54+hg>!g!KkeD| zBAsREE`~ph806k-amIx1alswWmEoJn$g00(9EcVg%n)tT{dQ)aT%Vb=sqh%WYBu8@ zqv3>me6fJ0qxTq=5rkFt1iEhs2!6pTX0_`AU;0PeB&T+_os!=*oiMU%9~lBfc-N2p zRGiwHu&>jULb+8)_{9X!6w$XwQZ1O&i=rTBmA<7hpJT`>!$R8RHy)e05Sy1*nwO)L zh_W}>yOiZv@hB>4bSfn9o^aq=%#PN$>j#55{e34J8#-Vw@er5Dr^6TX^7S?}eGPi( zXL;s;SC$-$K4h{FO{`>ia~h*K`XVBkRPdb9e~S|Du%W!*iM+hcnW59D&?N&dEOv_) zDky{k6xA;<1<&gvb~e@pV7bEuP$j`KbkybHU`+8y1777a7YpeChx?Mz%7d;^TIb83 zTwW@*I5CdYgHcj1`X8U=6?69*E& z+&RWr=NjrGCi~g7NBaaP^j%v4SGoIaIn2tn#{z!G#B;4wqhDaRx4J8+PSxjY@J0+X zFB3Ug*)XefZovqMu4FGHv35r4#Z$H({nSu*a(H0Rpf?$_bGgs_)sB%v5zHwbYe*T0 z`^s%V15Y*su#(+p1Dt)Rm`^U4-}8RCYHt%FC7sT4*|RH^xKR747C2dmabfIoa%U2H z`htvU|viQ&t`l&7k%ps%ze)ED=_K!Kuv?H~Jxbi;XdghUOcIi3MME4_J$RV#n z5o~XPXD^Y;ILBoWI_LLE?~I6nhcbajs3@;cc6g%(Z!gB8ek&ed4)3Q%a2bt!`-=sh zsM=awIdFRwt7!HX0vJBo?aZ>nE)Gb@!^B$8=gcK^wInpzGf}_5+=H`w0u7hW1(>f8 zjvAx_4OQI(4J87pgW6u`wP6YMALeN1tba5znXLqQQ}2Ggi>8qT?rv=6X>6awxzHsW zb0(9cboRsKEKAj$8oXA5aw596$lDEejAs{YIVEl1ovj`%p~S> zEd7o*92t2;hj$5nW-A{ywAo2ex4jVU(*7vIm}zttNB>A}#q4?JJ!=W__PU(@VfPTj zmRM4^t2@)Kfp~I)F9_x0HW~(F#V+Gm+p=7!$Cj3tH8(3oC%IQIn|H4;kCQGq*Xm*k z|_%b}Sr}RS5tU&O|nELX5U6VfJg4r;X zd8?u=woCO~X1vPE2{ScUvi;3%Z35>0LjXkO8lOoRuf(Yb*L@5!bZ(0*+jgw2oTpui z#6FvTNY{`)Fv9fc2`HeD(Gd5Q4CQ7KYU?c+RkZ@!{+7biB29Z<)XtZ{d4eUt5g%M6 z>H|;M$l!^)B~QHbZ2Ca!x%Y25oXFQ#*MmO*yodvx1hgX)i;T|dVaHtIW*GR`I|(^_lV6OTRnQR^G94vSk4!_epemaP5}ty!|HJ084+;VvFS3i`k8n^BHcu#(1jbs zL;X!+k8Q0Xfr^;&`zd|fR)Cod_Hp*{0#?MtQx}TT?nR-oxzBxkQ!x=gT)e!?O?g#I z=Pu%Xq({L?|KVg^=Ox039itXGrP1j=2ricUMMmecSLl=jOK+YwHOEU{J#TK9nZk|e z-)KP+oNM)M7-YF$2{RqPT9JJ85k*Z_FBJ1dJiVrOxQX$hhSXIw=58Hsn3brGjS;;c zK{*4@kaL5B+7)3KR1xe>W20f{DZU|@U%A*hL@!LXl!t+pCPYtM1O#?HiLJ zyUiN)@=GgE24_pEZ8r2y;wW@;Rxa)E#6AgK+}vu=JSP>DEp;a|7_N_e>B1cOao%ja z{zT$=xK7YiOt|Y%7C{_ItKzrF;}{SS?JsX`HpJ<30R4~7A(3#FZK%~%u3{m7OkRPA zwAtDHSfR@YwJtZWD3T0=CS#zaZK;7v?LaD@(f6=s{}I<;=(5E7^`7{Nk5jBwC7NM7SpF~n7sg*2z2pCGVq78 zw#1;{nVGd@FV_&kzT#uKsK`jI?v?wo+)lO;Ds%%!H;LpbTVp@{U=HHqf2z>lAo1x( zEa~^7)`N8CfL7A)*atHlWy(mrY6YVEvgZqUs&Tk=9}%DbiB+^ z_+=1x4zDij)L3KrBS8?g&dW3_)0!jB<5;nMW-Z;8Vc&*0#-N>82yQinWD<>ZTBp`{ z{b1~;`|Xk5{lhqIkqTb)Y5E+@7dHvz@Q>y|DA+xU=N<_H`R;FHMAZ#CP7-iuMSXU&wtFC-jqfDvCE9g0`32;*u`k3XCw zvwev-M0s;(4vJjZz^$QkDAww=nn+ENmYMW(7Kh~b#`hg4`W7#+EjFG$%=zS`8a=GsC8aEIBK66VODQ?%;|Mhe??g60v)s7sdu5Grf(ZB z(k^rA)5yd5{ruN4TLe3}yL*2OF`9$j#JzpvQR#AbgFDy&H35h6R8Uewihr< zzwc}0PW;!9R|@1SN&TBoP-WIWB31K zRQ$yxl>BGx3yE>p94RT_=;By*7Zr7HFiV59 z@H^h)1>+Z5UaB^2c|Y)&DtVU#R)t}Q(h}^tSbeeFgaI)HO?QY~GF^s*9F=ocZ8ePQawW96@-rkr6PKYqxg$M5LoMWuE- zr3b6z}58Y zr~yuuD1(gb`Tfs(2%l3RIrYu|NAcwz20o~@SZ&z+#}YQ|Bq2HZ=k#x8`E4)RXZ`5qWOoTkotzfLa5_FQ->NZF8G(b0wvuv7= zgeI7Ka^C;s;jH-T>C#SLv%pc%^Q^R=9JyJCp(Rc537ByyzAM5fA17`q2J>J89!2?B zKPq@UA41@l>GO(;A*{*hMJjL^Wu$uPiGm@qj z#2(^EBU^3557GPBrp_=&m0sMnAp3YK*`s=$fXuEJ3tCOgMI-xQZ&=Bh{Xsk03UQj< zgY={I$t89Ta5i9w1p74yx;`~`oO_t+?{*1H#-5A936jn)LX&~5y#%5j`)`OD5;J_- zxetW)|A0wFmV!x@o81(Csj|0RaNnHmB*y%Zsj}!6=qgzSwYQiDWNOfeq%A9-@ zddPA+iQ@@o0lQ-Sm#rzGzUaiar;|RP^Kut$ zcqg+E?io_@z)+6~n?4@%jMbLxDJIb_eaWL({fbM5?ho(u9!ht&oi9K@b)zs0uAKg17q#PI#1@$-7ZXcHaR33e!pcxSQd9=3X#w$I^#^DVH z(1SV3pLAnLa^zoJ+d=w-xyb0eZ5V5QTE$-M!lux#;x?UMGhdKzEGyAv=|UOQSQ)Tt z1W{<*zWMg3>m0H^>D_i)bK>#~nNGT9&#e+KVpdE|sXOVB6 z{OZ8{M~Ch%g?VZ5J&m0S&*eLwWJC6l@V#J^s4eX~A@7zq4lK-P6s#XHBB%Aod%YpC z5%f2aK?_UFl|mNQJ@p#jn?W_Xa(>8kcJ#F+m!2;q%p>G!_=ye$Ly^e*=OTUyBbTfa6wLi4*1>cnqVu?jjSp6SN#i#@eUc+oBZHExq@fs=E94YiSNqc!~eV znRRYRwJ4RXEmQfYK6{O$*zC$O>n>F3FfyfVjUI`y2yaUUnL`;V8E`9oJO#zO1yRVMryXNb7ibY6Wn?B)x_NG} z)e)QKg!Zm~zihlrhowmnC#OC_C~a!DagEW)m%_f2dSv-lduWL+B~5^sAWohmUD{ir zhNMY{mraS1lleHSu?$R_QIGpZ1n8-yTY+-y+G~1N=fko&pwiZ?B&hjtX=l7HWKsa%MVGFAquLJ6!ie)G%=M;L1SUyIVh|3OF%9jPZI8ki6XIR^b<+5L zD2hp0ohrrxtcCQSU~*=aSfUg73kmguOgXwo8{|v*0bvt`6%^B^CxHS*nQk_-z}wHyQd-%G)Nmjr)$KZKG)ayA)l?hn>CG_G${RealGYhBJW)tnuON1lKVeUukAn-u&!5$YA4R5qD8B z!9Bz5@fu4)h5mDih$<}%%+ROBdV(zi+9yiP&rL?LB3Fo7M+>9pzfMXjSKTJ@_Ty6j z$VI{I9K@xc`I%Pkm73gq)2#fXFM>JvV&<(hhv5=>d?^{jHJYLOQ{H_TRrJc zOlYfP;NuUXiWL)&5 zJzDki8-{f?+D*%=#2Lcn6xODvS`UkFA7iiDWTTH76}{=Ol?{!zUCa>qk+cj$a)?BN zxViOU#o{M>GT#nvJ$Zi#Non6C1u;JnX?RuRDpWEO5|elWC#wF7V`KgPdQ#vLv;r&& z*#69!8&l-=J((Z`kPtnY+zITs6$mH2PE`~?mDkgg$#mqsk>v=-FTE|9>>0;fPayl@ zwbHt=QIYn%*fYm@Q#xirYt_dX0?`F|{Fej9o6jZBCXYsBMfPYoc%-H%TXX%jTS+6v zY%4uWS)8}618a2Xo6<;G8Vy^GiAe3v-&+$gBF}i=|Im{zAFb$nY0PRgQKzH#g`b(i z@18p8tFhuTfGpA*jVbr+XcmuY4MK;OJu91R6GV(lY(Vd zdogelCRyH8^#zi+_lbR_ChJR$}+sT{x?f@$8QcQT~W*<{gY_VrxL<-lx z7e12vzc)T%vg?roKuP*965;RSDKhEMN%`0Shj>Neip|)a`A~b8cUw5lKaXPsH6A^e z?ciHv;8v-cs~#ZNeM&8Lh$B0)cCboJ&myB!;g88QjPMMjecgCNKrdfujnm-;Dd|%g z6?t-I)zcFEt|~x3Bnx2yLZ70Kdm!;E@b7ezIgkPHQ=7sloyB_ z#*%d_T45I5LCvI(#=~P~`30US1N8j#dnDy=~pBG{{E0brhT~87FlSh}VO~aK{D;(p+p!g_5NsRnsx)1oN zxvDLNur*qfGwW3LWJeOy`|XEQ&~!gFjP0u(wuSD7dS9cku)O}3!Ps+Nwg4Vs!)ZGP zHIM!zXZ3EW=+Tl#6jy6pI)@wXHU|w&<%Kb+^#y2}3%t}Oy8f4oEkFIS@CTzW?2_I+ zp*yoCm#wkG-l{H>&_)Y0d?s-L1g}y>h`H$>mYj#Qr6)nw)0go4D{h=iAR@paf$X}v zj=)bn1K8+hIG|kmr{Hu?xgPiD1hW?Z1q}0?^tHO2SH_+4#cs7nuUFCPo~fOCsvfp# zs1Gn11XZow3*>V0en`>mG7C|x?l59mt_~Q~UV2BTAg0Rc`L=9#f-RK0lt^#Zf(3*5 zTdB5IUrDs4xR|1s(*w=%xGY22n4W3!jDpXVZzcOI0X=IZDvF9HGJsBl-Yc^Ib}|o2 z)~tP1$Mo`m7B0`RH+uD_=UbWG0&%X&I0e{d&YuY%aX8VmY1pDQJ#7j}j_7DB6GxUS zmWa8kd;YUcT!y6B!R5Sg?8Ssp*UyCu;roMH%OOl8PWeg4FTpkqN-e==wq{{n2t{wi zxy!gU?*5o0!lv1?yI-(DRGUj{WHxGJ?=%^9vlHv=TfyI20MgsM2iq$1C-aYw3*LtG zUtQF8bjefdR6LWYT;K}xGJYmzc@S1&m{lIF)Vd%WAxPx-l%5WMs$R+4W20QFWrBIo zu1SP0_if|s%}-YxEflR!U$y8yz_L{J92#PKAIkRy)7RWv+Zy1C?AN&Bhq{_gB2XOB zqQlvVUW1_O0KldB{kP=*iW6XzL;0E&@9`hu5Kj@A#K&f}Ph%TQSzt8Ao9tdp1;@(S*~$qY?r59(XcNqi*ht}r}b3fMm5 z6&I92VRgNr8-<=kQH0L0i3zpl0fqh3w`~4a`TRlMF#c% zy9DX(?vhlxyF^qyPzc$nVj+Kcb+i+8q(8SLY)VhcuXwQG`YZQS@huF(d)fnXiCbd;Uh?7(wx7h{`b?Z7I1n zxOz3gTCV{M*Y|MKbg8@JxkYH%t^JzIoJ*$l3`@3_Vi`eF+~lY*jHqY|+zy)uy16T? zt+cbKeA};1*dSm2oBQ;I6|A=yU5>g#(Qx@iNGH*q3Jr>%rhavg_{gHj>-JbvI=Yx0)fh4etqED@3vFF5$4&lksSS26wGcczkxULiN4#uPFV&u zE_c#c)V`IUi{0E?B6GW7Gxo@6&*HVyb1PvrS~Yzp1thQ;O#8(B=qS~3Q3NJ4F_y;k zYS#DZ-a6i>y`>^yIuefGrh*L_1z67j%7R{3NteIKzWOOQ55^Y#YdSrEB2=bo`KIdn zyI@?I^%rXuEvuz#HJzv=hg?^`p+TAL4#(xlH18%O&t$sFk38N5PUdL2B&y(@RZPVu zK`Mp>Uhx55T>D8%Oh(MybvEmUU4b@Akf zg7|c$bSE^j@%Fy)Q(7}4c>ZeR?e(YS_LtVe$jF^&SF}MI6GAaYmnFv0EO&F+(n+<( za~{S?WYSefL4z$uD5%n(7wYQER{R6g37~@^Dv#W@G?Ov-+!`#G2#&91TZg?_ua;QP zl9Cb{e%vhn5Kv@uu9{HRk{1tPIm-4$!_HsMu5j?96O04yu~tF(;AAG%tcyHalvow& zeCraUBZib?u`Ic_9P@xLG46RrebFGFv0kmWtuARjAVMyvV$A>kK<9**@m55iYj3U< zQOl|Of{HU?G`D#Cifk;Al{aT0D`A4PkyX0>0c*EwpPC(84T3S!oXF082VWfHao1(2 zWwOb_{=(K?pV@G0Zg94@vxU+65b@S0nowC`;kifiiNz$=BcZP;pqs4(Y{S{N; ztKlIC!2W$oLcI>XI@oBSwO$2n>IiO+@j@Xro~vbK+d~rAsdb~!?jU=O;9I0G1J-s-VC7W#IG}{Tdaid&iBBwTp=4&N$>Qpml#820^K=}>} zcqRPi`fiGIs6)}2hT1&+`shR9zU&(NyyBJjXe{trMV5eyus9}Z@q(D?@=a)mF4V{b zlt)43XUwoo+gD}T(wqgE^`RXBmxcw@-}Fn5D4oyff)n2f1WC2cPOMT+IAZI#8GVx1yv1w7tbaxr_4Oti>Y5F))McMtoA0?Kd4AB!ltT8eyGINq5b5&D|#XR zGoO%ZFWwqQYI|4obD2_(G!);xeF`uo~YolU=W~M|**cBdIOp(oXT1~CSBv1xV zJg?-eC95Nbo$1!Ue-b$B!D3J&t#V~DhS624lSnnY@7?9v)25=>v<%Z~Vgl3gDomHf zM|cQ2@wWaSF`t_*bJ<^X%SA?{N#YSBz(Vq^+#`*IwZ6%aT$hK|+S>ZQqQM6S`R|ji zj5LBP_ZI3!MnA#mJ#eh)?G~`7Jk+t(;lQ5msb-RL1Dk%%mJ!PgvWg$bC2S(V59ofE zn_~w)NL~w=+l1!ZX6S~m89?hnY==6Og@2SL^FNS<6C%bH z^}&WHZRTr*#3?ped}0FDgk)?SXwN7b-ngT0JQF!xrBT-x?zGdp!<&2T{7f}Oo$e7s zDmYzpzo;Es!5cKy{E#r${hn2ezu6x#6Smi;#^#0j&AA3COIY&_?2r#yL0>YDhtF!O zjx?plDy7N7yTrCJMVT(^x%*y$J}I%xp3w?7O-3~?IOPMJC3H~@-ly=Zx^J)EMWmrN znh2MasZGp@@+7O7wN=AtZY5Tcl+W$!QyWjS_B$nU)*LM*2t5{-7H+zS5JxS>Zrk?? zVc8!@B}E$8bt^2Ty(nTittei#W%d!#@x*j?ah693F`?G>Nc-;YuI!pZplQd* z4Z`o@KzPj(`BRBU7ekhGF@GBxbbW;!@&L-TaMTwg^$9r@HWHi{&|Z9uC?FF_C@O4( z6;NSJrFLV6_5%C&sb+&{d;zQ5O=yQnlIRJaA^C*Ew>@U)7d-{wfIhBdbv6hG@W^8; z{Q;XXWy?hC228>x6hnd&^nvZY+&l;vHtRFuoB^8|s1lU61&nFO`U?Or;(2d;>F#0) z?D)4Umj%nw0E^v%UXTAe()c5}Vn>ck+2*5#h8mTc4@d12Qm1EAG{Yq>31VChfQL!~ z@p{=P;FR$>WxIVQyFV%?(=kygnKC)Wn{8pVI!e8&M1d~^qkJgNYm>n(nD?SMy}Zg> z9lweF8Yz`S;{Xp>!H-QTV&pay70cYgG}`t3kB?ME@s?I#Xek3Z-v`#dBRXrAd2v{g zm9!_1QrVm%UCeeNwr1`N7ECl)LSEo;hGx>^Nar!imS*I1seUfjEo!QvjlyO!g zr?AyQ>DL9PDpFpCAy!+UQbd{Dl*N$OH^w~D)frlv3=*zH;fRWsaK==VXvDHQ8HUs9 zMnM>DbljA8u%W8a6_?a2evIi(nG7rJqo#DXBr=@2jSDBoBa_+72v1-WR5#{FcD}im zD?|RGI*}-h>uS$i3D6A-~zFDcrmH%psX6%y9+ zi{YZd+6{i1sI$cLNs=_y?-C*JJ*#FZNv;3Jx+8Me*cDDX_xB@m1YG%IJ$zDXwJnb* zCbLVX-9A&tA)^nD1r)S~oAbuqDv}gFIc2~%+gIbts1&p{CAw96=Bw;*%VOTz!rwsN zQnJ%sR#KAO`M!kIOyD!(dnbL!=-cIcMQVvCtHPs%gAMJ~=1c(CgxZf`=Fp7s?kAkvF1eZci@6AfRA5|(p*eBeM9_2NnSZau~WZqLP=Rse#w~Qt4pYm zO`%?I2-iXnYg-xwNA1?Ws+Ji_EKW7FpdWj3^PUmeO$}V`h&H$C42P~4rV^X3U-j3N z=v)SOXT|1wKgBr`Y+|dl(au^v#IPEc zm@H=%aUevsn1$@?dU#W5M5YKTfBm|S{g$siMbP=6dpSzbJL5oEOCv?ZBQjJiPk~Ws zli{W`JXv~xe55rhx&}W;D83)FO~z1P(OLfeouW8N2XKYN5HE{+(&ZLHJLYNejw`?s{|yg(lBDUJ>F+M_1>*TLZ>9mi9R~NM zbN@hLj0<@BRE3bF%QMysP?`cBU+GV*ZXF7Ec(+qVH7E$McO%veg2G5Rwn+jx00mr} z6HL$HgcYEY$#xPzSdfJgzyM+dH>3tX7^EGDK;ZJ&`=FDVWf3>1QQ5}IaH~)$Dk^6A z=2H!olSW68hX}(n3bVU>Ckj!nC|6ci7RJNFllTx#qhm;Wzj)fLQ2WazT9Ay14Fn|E?pP4gJ3$^%+|U#sE%M{I?t^o=;vF(_BJ2 z8z057wt+^gF;or#L=n|t!4c!wp?oj0i=ZO%5In$X_3O&V!RjM9ZV!*dWKUgs2*L)4<*s~3iQL!B z0B>ii8J5GEXG~lmRYrJT?{Y8DCU6=ed~K}~+^z)UNc=ahfi^*f5MkIcSw54Hd?PeYSX2l%#&C z>tBH%a6qy6y*9-Gh^`Ht2%3XDG-1tOeG>+t_`?XyAWzNdh6jaVdBN{-WprX$iG=|z~dNE%R{F0vL_gW6h@~sCwrnrnS3zEr^Kc#Oj6YhgUdwKOE z1H^y5AK8~Kp7V~4;E$nOMSB7Az%|xik_X;Nu59nboNIMBa73oaFf%h7B=K|q9#9B$ z^%-2cxV!&IY!5$rO`rkDvD10L53c(YO-@&6yn9BJ)9^iB{6kBDzj(7q^SSa_`=j`l z#*J$M$wnI7|B{$~Bb8H-m(d6(vyLk@SJGDdREs(BdprQl1T;Yj2RLM@y(ca(6w7}} zn+XG&7h4iwI;0GCDT4@U|Ate*U-**9L4M1}zs(@V^n@i4|Huw_-7qX^3CKM;;*7*2 zKonVqLLVL!VXcIy!$Eq?Tl!cB5O?0X&Zq^Y<^$G(v}YjyH4I1urRZa8uYj~XMurk# z)0F(%0JUxn_(%;Hff@v}l3>EihU)tji@B&Mz5g0IA7Wg+!393QyV~yQW-*)U^TJa? zZ+Gc5_Qs#__KZxvF$6dNlMhfo^8p0Jzhv^sgmP+H(svQ~Il?d+lugG>)Y{BLOaYC* z4Icr;N>`VtZ9bsu61XrzB!Yk*5fMs*&l(0gwN^2>|Z> zl})IEw2=%klJ4VCkFSg`EG$YkN4Nmk4zS=j1S^M|GC*#YLH$|egk!)vkpdP3k>RK# z;jP65gox-;gm&yhZ<#@x^Uu?!4`YN#F$82?lQxYIAnXVKUt+%@jFN5Jq4)l4^?FY@ z{mm`5d7Rzf*w4lX(kFAzF(tBo+(oli+OqQ@2m>=40LfBz@o%(FJ(<6MyCIqY0@{BE zU@PwDETZQxi4JYB5HB}!s@V?+N@T+GIw}>Y6NRvU+Yql{TmSffl(jB}$cUri*sf=k zw@L+haFZqp6+ln760%wQwf<&zm(D(ZBOT7PJ_eEqNEJ8r}OWs^eBqy&d zd>4+N(+TA$_rW7vc`y_Ad0D+hpdoLrM|}g|CZeNBYUAOB#kPrpHs~Wa_~Nx>@5n}% z0pv5J-+%A*N)~Xc5*Q5 znMW9nLqfRU8<`DzB&V1{zjV5({$mDVj?zCp>aetjo-9_ee*kO23aJtCX|uzlnWqy$x;v8V`a3ELY{_Rg2m zCul~fAaI|<0jHOh#X_2jsj`L7vf#&^TR2(s0!Evd_B)wDwR3d*GBSCe_uBQpc{CUV zZ2*YP&FKCmHfKZyF-v0u3}04b9HpSJv9X}#)d7en@FhKmGwyl6(c;G+1(rsvC~6SD z{lN0s4`}Qf1h+Ys$)T5_{womxCXnFu=#_a%L10&tTm=JY(3<~C4LZF5TB-7<{k9Sr zEq8rLv~$?Y=h)iDf@PaFn= z)QkeHJe$McT6qZw8~CNDD1l{ii#(sP)!cik-*rErKoqt>0Z^gOO`>D#Jc9W#o{^Gx zLMdUT!0{8%S|vwsbf2T!KiiPL z1HFwv5y}k+O@AX7_Rb}f>umonY9j+Gb^-}asgG;YE$1i?2=MEHzAqwu;b+IB+# z5+z{B$BcK{wPHPP*Ke*R+@L^{sCI!kxQ8%uD|-v_2L7d%l1C>iFu)T^o{T!~a1PqW)}HAJHz>A_P{BCWyUMkW z95R`zCEr?wvybovsE_nUnbFj1V^NA`N(Yb41ke zw||5PzV!FcdqMY?I1&?-cjhTWa6gwok)ng5L%VVKm2keLZ8DS_IS`@y30Fic-mDx5 zRxA=5qx5TLJo1xZT9ktzh))t!4^;c1rV986p@q@i6RJO7xHRrvCgsbfK?h*_j^sqV{$I9;42q`* z=al})3m->>avaT2?1m<69du?nUIbuxkiSh@uha{v@tq9;{1Li15O@YFu&-r6kTCMw zHiw;3@luf*tMfCF{@p=fE31(~KK23%w28WVg@ql2=BAuD**_ z_7K+A*6YKV1X)>GS`Tv8ZnR!r&{}tw2c)v}^ypK%>TP(RFy*1Efap?!6VPt=bcc2>%vnTEt(RCKU@{aQ* zA|996*W^V#z5y`KoVi0Xz?s3xJ$Vg0HkNFBs0q-2}p% zEt*dsZDX*J_uA$;P@6#D9pb&2&43#W49@|CB!aEs(v-gpJ`mC1Z*QJ8j*X7VY0d-HA6rB{ z4^AnZfIEo7a}z?0<9$FXk)6ohxja8xTfWRVU`VT^Vgqmk{A z(9(iJ!U51YJjnv&m9phD-2QqZtF@J}N^y#qA&iY7TH2R=xIAv(B%CVg zfySp~1?EXPphzA>k=}Ie#m29<7khaS47f#MV+0?=+xosz8!yybuOA&*mV!?}fJ4EUEw`lH zv#}Yhw0R>;30WgqCG!DCTz7VMMm05Y_7_!zvwC3>eDv|+8n)ja0bebIamZg~1IH8` zNa2jHVn5HEtuo|X0yFXQf`Jf?z{~OVg-qmeZw#8thXCpnVlpzh$;mizrXuXxn9O`_ zkl+b#h!`1T$Yhf9yHLmy`OuK80{K3FCPKr&7%%_y1E(;cqXejNl}sy~34w!FffXGc@7%tk$Tb0u@5Z zRJqO{KTrW#W4yPs<&OpBQ$!uXlS`gO1{Aqrv91cK#JeT8Au1%Hlnwz(>OD5#gu7AP zy5$}p711;Jtj%E*uaS$YK)G}nK=d<#$Tu3J1GGGclaE=QfY_(@`puv*s5- zjR2cUBT%mGMirx{Apcyx9Z7@{%T09f0Jr1+3Dy|+v<$_dV#<>;?d;d#aPnt5{q`p>b%;-7@+ z4SOKR?Ms&bXFqLkK$va%k-JAkie3ax=h0r$8 z);A7>`MtquY@NTEzOJbTMmr|r=YtMxoj#!yQ;sko&!UsPsSE^09m1E182}nBGzKiE zIPgIXnEc`!U?FnLGon#J`Ykx3vNUJ`V6my#`GFrmJyus!2Gpf}-%pMJM@t5xyu8Rs zf~b-7DISORw*V%BtJ|RZn7JuvO zLM4|elrl3h_{x~`aQ|R5Gva-*yNWSQHu7!6o{Bs^8UZ&WdKG1NG^^;=Qc3#*wxoTH z-l=4|B0Kv;sTL;|1BE{q_nu^$u_z-2H*w4>`0e3`(>%34o9oua>})+MO4_V)8C>=| zoi`0l#CK`!wY0_9sEt%qR67J$A^ZD^>-b1~51GW2zGa48L}xstq`0}dYTdov-AS43 zwtC$N2VsLIT0KOkOAkR4jNdu!_vRATwJYsiagR93;&tnnYb@~)^4n?7i=X1*AMUhoMw0aaB_KBYu=4mDx3a3qo}wz83Bh&h&|5+7$@)hQTg?) zEe%AGzF$g*w%zruPV$~hOBsSqF7sz_u#|*^K^%@dLde{%Gqt_$ob2phVQE^oY>k8YjATK=+v!j)TLYF_?Bud)gHQySz797 z-)o?sk{(NJOmcOi{cACwJl@*zX(yq=LhXKE9W>vZ+??@W#G=Z%mJN=5%ms(hokw5@ zr1+a#)mVr0i+fuA*_tv45opnh`PtdAjlTAoMjm9voF5|Zt`6OU);m#$UgIEXS!ygE zwGWqy0+W>tLuPAoLyth_x^^z1*Xafh^4!Dy{vAqOS~}0fqc$XXUwE<6zM$@5y%*;~ zJ3IDHb2xP|AF?3=^4MZ?oc|>&`;idMedJ zj^dZAuQrykj)}^ewW3#az{NT$++sDleo9oEEt7uBC*s)J+Nre+o%eW~d&g=UL6pz&B zF}oiB3_++U&mjm3T1(oAA=ykF!s0{mZPe-w;!l(X0&ve14u^Ep(nNhYxtUsb){+P7 z7^zD_%;X!yNq)PFNr{D-kAfx!sZ|;}%mv$gX=L3xx9R}Vd+Kpbb@L>fQJ^wGf8nvHk zmoX3~w6AVD@Voe}Sv6Vb$|##a-4+{98rdb#W0zx8O|)u1N++^~f9a>*o@C{fb054utQ@nUqNdJCvZ#-KF@N_KU-zH`a=n3&j!tHgQCC-Y zGU~&rz3EA`GS1uh;@e~?di1_wqUqDBz`)H)oE7sBPt}}MWxXauI5m}1#(+SLF#{J7 zbl&0OEMn0y<5gkZNuX^eXr1{eL^w7nX}HFuXK^s)^X*lRTD(lupz0j7x4%GqqoYSt zD1t3tgZecG#t?YRsT*}=nr64d;apLvtxZ|U=EngqFy18(OsHG`LLSF&UjpJ!Yfhb} z#IfFgey8=`w9!Pu$A63dI(+?>Og4CIDw6-f__hTS{Vi1Ki z$0lA*w=htf+vsv*+}vkp>fogMuzRp@x#t@-8%bno!zn{ttBIc>rtCwx8FMeQB04@g zd|AC27SO-m|31}Cx4i>DHk-aR#Ljl-yqAd}x9mQ+vlHZM2bpE$TO6lai@)eJ#;x zmFG8>)bF?)DP_UrsaN|+1kPG-WiHejJo{!GJL;pD9L}ve-?JVux$}4u@-CwlE$8T5 z9xaP%?QwB?qF8C7yI}K{clnk|YdDN_4bI;H2(zm~w54OaA+sORFO$P!)A-~)?g zS;{w|pEG-tjv(Q{s)zdot`sU+PX)CEa>GMLpIV9FVo-TCDdH z-i}F653{g*T7(2B3p2P96Ht#FS%vA*$`8ybT}&vb=Fmq>;ma*W_Z%w!0&tU48D$3B z8#%Kp9;P5hTfbYV6HZ!ZPOsmLnI1&D?3>pl@c{DeT3WFMN>~1QKC**I*GVUcbkSPU zR`wKGwutJA!si8Q|5EB{e@zsi*$G}kEc#mBdxXCEls7myIKBPFUBSn)4eIHlgod(J zzFnr&6W8`k(&X7ZRP*`TkkSU1I27q!yaGu1)~6FU1TVHB{HD>Wr+dZ4LE6hLU~~Ki z47P?AnRMrbU{`5G8K_O~58cmavaYBy_zhk?9%s?324l)Jvnl?d9D*hK{1Yu+Ixp%+ zz(_7Fr}6j{?nIK>Q@I`U!N{9^C$IClH zFVnl(ghg-lA2oP9I_q}@?WMIK?^D&vQ z71&K=`$K_`r%t6?35uyj%ZWta8ecym?_)HhMUCRaPREJv_Nf|15y8hDU6BzKa-Wr! z2DQQRr#xP+bc30)CY|e9W{|g%TEFUOz;_c_yIz{DleM%zy7&3wY}vHIfyHBn1l9C) zq{#BS>;b2*RYH^mf@Xuu3wwk;vAP92W?r3SIe=CT$-QlL<-J;bPa{4c2gYhPC$juh z9=&;d^q5S0Mqx;;*+2bL6u+_G;mKZljIFQ{5(`!>ilos|cJDc~Y+6Us^l(Lk^uXJAL#7UcR3$ zH&PT&tKy>o-(zIAV)Qzir=&E#zpqOAK<06;Svibe%8^ta`<+o4uI3O6;%K;$v zN=@WKg@2W3ivDwyGDH7@(*urub7H@4U`Hkjx(vM%(a(szy2AGzi;fEenLhD}N~>TY zzT>K5Xa&j)D2Kd}LY{8>;AnP_zyZN07Zpn4zLg&PQLf4&g7IHMUYNx4=?YA@KAmA1 z${iF}hK9H`hLRUY(Tub&eI~pb#b>qn z<$8d&-aQ*vYq6YD>HM(S&Z*3zlVBvao`kJt7AX~QcZr`(>sI2rvNV6=J|&yLfW7$1 zZDtpS=}qIh^M0qwvhuKDg&-7_u_Vc)I8BN+gL^cV=g`B)RF`3P`!Prx+pBb3&eciP zwWxqYx#^0pMbkwv@j_mgXJ?9-@O1})S-elb_zz=R-e9ywkp3iP`cfBg%*oeKMyJ){ zU%Ix{K129IgIf{D%N^tly;e`F)JIkZZ5|RH=!9}hUqj#WD2d+7GNS(kLt@v4MMwY9J?m?Y4Jefa!g zLdQci+Hb{3B=>gh6i~Q(XJK+vfYjwxc@5Y6eI)<;>M;HMDH=QXCMS01ll~4$oY$+J z3C8P)d!DYl&Mv3J5mtOw6wOz^+zg_nua?|H5>u2J_y&?%0~sRH(s}PMc}SNbA@{O4OyBOZxs;gXsqAr?o+N0Kl+@&mkf$3dl?1IWdg_mHGo`K6%X-jTf zx^c*d*)8(T$}3I+9sDk#cPa!>X2I9T9sNhgp%W?Fmpa;IJ_~wj{cP`?4x!Sjv~@E#s=X8N;b)~djooq5Cz2aJPk|F zz}VH&h2&h*5t#c=hIGgShy4)%>|;&W=Ik}Lha-6N4SMFAc%w2KJX_9MhsAvMgtkrU zV{OWTn!xwY2R5Ior2&NlR+=x%S`i@k@%|}@Q;uC`&>ugbImY^Ultw@D5>;e;08>#+ zDDVoXr25k1{gY(qJDPNv_3>>!GK!oEH6M*?y>Ho< zpk2KEg9BmF@rY5+`ekmrr-L_Wn7>@StcAi*07~53Y;iWlc1S+nllH|?{}gl^Q2Z+^ zt6V*Q&bH_&Y)ki_9go}-%^Db!TO`==daCa0?M<=Q1n#9!hJklp!jDVHza*Zs_TkoR zbohv_7t} z4{0)Li2LrTTA>F$@w5y}v_`+5hDBh|=~Zae+;Vew7h6xT))kdoPYBgCWrG`H4T&4= zAAZu}e&W9I93HKq;SbfLl&`cUwc$m7e}ciPozwE8hGNYK>v?h)Vhn`6-0yQefs70IkZba z$87N>K(9VMUO;f4Mer63*hs3Hyk#Otbg&Zn@kP8BsSzvn4aQUR`;5I8sT2HUtx=A| zlU%Mp?#o(~J0?S(Zm?z1m4rMu_9kA?B#4~9R=HA$!diN|hMS-Hzz`=%#@?$$>~4Y0 zi$CQ4#F%Qe&cmGW^VN_^YJ#&5UF-hmixwe`Lg=)BkP)-@~;m8kI3zf2=pAfoeV{u++x<>lG~na%ZSNJ+G}o6|mleM*cY@zKyjES|^lv@ zpxQk-L3`VcerGi|cfu6Ok-UP+U;<4vt^0C?C&2N{0|3nmCBgLLR;r!#GT{VsKDYDn zPnhQ(4B*9aP|JT)Q-SznWJW*Q5J&iP1@9lYqj{F5TM$4EVjCrrY~RWw4Ugi|-C#aP z&Kl@Ao6`-Ga0Jo4~^%*tSpaCk9n99V~j_CJ34UISRaqG#Gn&C3QDo6*k;y|s+&`?A*Ce- zj*#b5_Zg1w>{k!>`LJEYD+MENN$a#hou2l%CsARVdC23}Hw-f^ci!E5Fj}(Q4=9Y6 z86zW?5`oZb1o`3^VTuBNw+#2=WY9p!6Dmc9;rH>>S8FlB9WHH6emuvoV^!^TC-?yI zAqffO3K8RtG-CwBHmA)q$FHh99{XZL9Q6YFlehhAi1P22P4(Ho#z;QhUs2N-JOr0{ zf1;ApVqgy(A;64#oncCE_&)h+g9t4f6X%VPC>!Ir2SVW;EnHALKRBHXc7P!$3kTGa zaxle0GR8=T=nBcoHsIdwc)hyV*96om=IO1xHyZP2$>)+$a->;;Y;de&@zm^A*EjJ? z3Yc*ug7JiQoi<>3DCZ3aHgR`P*YSo%6F_eBqekUzlWz?iDgb2BuEsA7t@dUznmJB| z;&hf0?l42fTGM%G;w5S)W0GgDKDFfb)=QxGnouUhl1hqA)1|QY+(TZ?hErXuZ0fj0 zRE4jvZ;T&#*kTwuh~;7Er1tAZ-+dJ$ybw-xx}8<2KkA&j&2kIx1nBUa#_ZOV)z^g4 zonl=m3_CyexV*)X3|}+=_k%e_2STDB@d8MC!&*yIFjn?>K5e+&wP#S&t11+Cyk;$A zC713)HXBQlG>GcyrW&SkRFm%#5})nzol=-QX;U>#PLBTh{+Z>7>QEaMsz&d(j_!F4=~9w;R*NMW zxEuFA)Ck^Uh6)MZIN{0<_~P7!hjkjYhYCmcLfhS|bI)u(Or_EibDF(@OuVb~@!@vt zVp_YDOf34O!!ylUq4!!qluX6t{K_+r)59Ls&>owQy}^06*#>D@Bgd0=O`P~c$zpcu zmQZe-{`e;D?wM(6qm({JY*0Ia9VL_WC8BRBnP7-NpsA@Ndvgs9)x5s|1HIl2p|@)y zY>3bV3t|4nt4H&J^CCSY%U@3DuDsTIgiQiO*91X*155dh*2$Q@r7YvjR_Xs{uRt1m zdh}1;9)9t%e~*IB0-tu3h7JIxN?e+!$YdK|o?AU|Va6|e z*Ae?f@9x9=O1+a8e;K5PO{zMahHh9s9qHa4wWeizF)D;Z_5%Tjpf=uSJ#*vJvVce5+?uDq> zzRNjZPs5YG_DMq3va_r({U!a&-NfIf>$`=)Ns_Dcyg%D+hhGePhk=4p^5Nh6bqbZ$A)lQkNwQ?oBI9Q(88&%CTfCZ{7X2tEp<9lA#G^Q@L zyAMTF{S@EiUus(aB-BNcM@@PDu+&kMeRXQ(bI%WRh!R(#R`0DCa zfpxMTWE>4brI=@|S%CZPd9H@1we+G^+c2FNfbPmyNE=H{CW9{Ojh}HBZN?`hrcjK3 zeUWX+j(L<2c`r`^c-KQq!F&r) zKj_xBNlgb=@jr}~UN_r8$vP0D`imJjAw%egn$YO$qn)p0$>#5W8_(6&a~rtQ%M_#x z*a2la1HM0YRw*$GE6Pg1o(MXAX~unOs+gfi$wZV5|I%3lg1ue55-Ew(gR6da-4zRF znS()y=?JcdF^C~1iWvD`U-3#MC8e?cvZsiREt%x@)4VH($^)dj(s_ZzJInh2U57wMp0_D9MYJLjCJDOhk7w>hJ>DlE1oQj z)H{vEOo{Di>msS-502s-cHek5dB|to^-*x>(NQI(~YV+c$~51~dn|@s?jh z5Li7zZ+GiVt*zhj|<}VAR}0P9l%87J}z>pB47o;R%FytZKd%7W4e&w z=LL3cL+HrYIFHa4?RsAb=gsYecp3SsP05jUoivx!242FBBGfnRkRJbG zt|u~XyCZWZ0y1@XGk}Sy<+o~lk7i_F_!4UM>L*KOEx8>U8pe2sWxPC~dJiVQ7l#=m z;_y6~yuwMw92S^9GD|Q$J%dvta`SufzATfUMgdz=Fk^2|n77<3r3-xfJx=*ycjllt zM~}Dd*kfdSjr&}FNX;G!TRcFIeocqO$@TqWLVIlys2&nuoY|b*dvKL}@|voT=M07wQSS=wj#?&JHltkugdfUTwwfwkvS%1JTdWNs!QQ*JPG*lGh3ah~ z(XGGYNtX4zUVNZBt3--hxy(!Ti28ghJSuHZmSkmqYksv2)Yp35RVooI7OKB=mFL_4 z@_oOn-RQh0Gi1h;_IP)$<1`kP#_*v}4_T2ctSsJMqjHR9rNR;_?xmqNLnoQY+iFlJ z+uYP#>PU^tfymcS$_(|gsjAdahcgYLy`G*={g&qG>)JO--H*8ps=@UiX`;~{v0Hd0 z9Rzx-^`t^|&Eg%&PX{Q1T1s1N;%GI(D{xJxNv!BHiYhCE<7jlGo17SO3fy#X28lwy zL(Nv}lMezSz~k|Z`$D{lp%upLF==YLgm0N?>8n2Eqrr3?L=`v2yNvvoB!qRd%O=`gI& z0ZlqPZEFf3&|km+S&EBGy`r)*GlSh^cfj&L2@2>h>E@`QQz?L>rZ7p=H`O0M-Y+6j z8xJo*B3PwLRB$oo$E%b;G8~0iPU0uvyKl>AAPrj3T>&9+T+#CZ*WPG($w3Z)w$`)I zV`t}^g(WaFsi?1Cr2`bljmG@ecA|GsDc>FEwY}FMrrm~u>52tg@p!nEud`S*b0uqE zIcvF(D`aCk#7eEHbG<69O>lj>*f*V^Bk?+HTth!S&qrH{JCoW5?)}Q$N^>9kQ2IWD zI$rJN%UkLXr}}s7@6N*Nc(O(DT4IRUXCNi#2|$GrOar}F?&3hx8M8`0jryxFK*I^N zEozE_bbT8Vs1A^>^LJ2SuE{$AfSb=XijdIbpTNpzu9cjT3*Wz0R|GR{_<}{PLwR zm+9>mP3NnTX2%DG!jHxPD?)7)lKLv885Gou^V);bFy+9s2`{LJiobdIeoeM^tJ2+V z*)9HVDC=GmeJSg*p&Yn#%Ybn+REOPdnU0cjZNFp^ClK@JEHlQ4Zw2vCpVRoOk-A<% zE)ei!^k^oikvl_#?M%coHajQx2HvtmC6inGL+$8*bA9rqIdQ#=(K~kE?d^^op??tX zf?_D})q`wtI)zMHp`XP`y`7faLA^OoE&xM`9MTcT@Vc=P`#`wFNi z*S1|jKu|{s0Rg2$q+}@R?ojC(K$xMsyFuyhZmFR`La^wRPLUW|I;77#?7ctP-~Rt| z&R)xfvu0r4C$77%`*~QDqy6~mh!n*j(SUFa8uJQr0a2!dX?x#?v+3GsHnXrytOdzk zj$U2i&gb#smvdO;7r+hmwMX*NLE9Pq%_2_UJ=wyDS;gYI1zds!eyzwdF9?t6@}4qk z$inlYnH18|tv(!^27hdf<{VlDRyVi56ww)}3ZD>)VJ7Y#TvMMy!v??ZWw1JX0Xq*{ zCChu>iH7^aj`p*xk=$z=hujmn&8!Uf3y{m6+W@zkcJ}wWj$GWzMLShJ7s02#z@_fH z?nkY@R`k5QZ%CIb%66K?@!JHMuZRR_pUJq)vp5*xIz36~;^gdLv|#g-9=o!k*>vYv z5mDYJq`UB=elL%}_Vl_)s7f3S+d7)ZMJwgO-a+a}oz__2+VTQjrAoYA=f!A?F4;v- z+M#v6Y0{Y)YRFl1>mAu4WSW;<``c3>|FKR@zE!JWmk)p3F+9Tag8YyeP22wl*si`K z=<92MGHHxF3?sHqWrPD@k7xcjdmJChI`%`d$Hls}S+wfoJ+)in{LYy(cMK#aeGg$) z_igm%)~!4~5}_|yd-uNN7&^U0R>c_YleKr8xk@|%Hu zq>*Mbv<;fON|-tGOU_53rg-H&EUC5x{6@%RHNS6laZxpnAvd2=!^4%qtq;h_cWBB z1vpTUWePM`Aa6k*7q2paUzMLuqsgSv92j50{%gRaB^xLVOZhVEy8na_v*|yCw0_RQ zc{}`arE7_N)~n<0*`r0b){@n=mJz1Zow+@ikQEljHTxeLz7;@sA@KZqQfcc!#bz$K z44zkzvUQ9iX)?FD5vSEj?kZz;qc_DxMcMURUJ67+N&CMH?nk1Lb=op#$%<9<@@bs_ z1V#n$9gg@~aUoykh5319f`RdIb%$+JRgX==9XH(PAzz*ovzotU!dAMSTVPc5v34Ti zg;Ld~?Cgo{Cw-dK%blb9p+a%k)yA8w;Gcm=`o}e> zYbOYa0%t~MF(c%Bcr`Tfzlnn(4H-CQ{-3|)5ItoZG~eXf)u#QNg%)9CEfFYre9W~i z$C(1GTSqy#xS6oq57&AXfhcVjO@F*~av*;Io@!vWc%)$1O>EYiyU(cLq~x>mc=B?;gm$d8 zfZO{ym@*Y{*&X*5S>26q@ywhRu&tA?ZJV%xAj|lT^GDwX5oU!fceJ9V^QmS}L&a%B ze~q!R484o`qH?Hv?0#J2P#w-D*1e}~{gNC}k;${wEw0?R5DB=V`2ruPa>q69_`|Cr ztAp+XQVs=Uc9K7dK?@Qx4!wi+R*srlkGJZdci!M=SPZ`g85#$Q_gjk+<%tesCkc{rk}m0ZYhg3 zswHoBB$7qx_Ie?B3I>I)_D@8?mC4F&NfW;C*pAsKsd6TK?#{Upt}Y^z7(hvIEI#-TfJPNQ1pT(Sd*0Gj$b+ zI2&{N*9E`y+I4m2Stm8?C6*-e9#O-YB_}q34Uk3>p|r?jk}go*uz}G!I{^ z4LJu6e#Y(UWyxYrn>3k2vPKIvZcA_P8|^h`f$zbI9u6g(otql@-@kn?yW2=d4i~tD z)kwF3+Sb?4q(RBXhCZ(4>ILCz<$`H-ktS9z7e(vwL{U)qe_=f3cVuObrlAu{U{)eijQC(=lve&XvwC&pFZnwz*v0ciXhvq!lV{_nGDO zrfMxxOFv~`+)vJKcNQu({SfeDG70z%8N@I#lq2 zB|Wdne{eAT8zMnoX}%1l7@)5iPG4@xS`8&eeOc+6NO&k-VJV7sH%k^e^!iI+Ar;}L zt>OSmpT<{m_GD9cmu<Ky5u+J$@0uDK1jm}|b|s-JDMr{1AjBH?*T?%`RcmXDSr|8!bStB9l)=?fa5X6Emx)r>VOculaVdGYWyARSOFh!y@qa^ zHVt@bp7FljbE?5-&4eMCJF^MjDLM_QG$h1i;*v~Z_0SV&+$Xb{lV0j1A2&O_@`MD! z$I^(4Zp!`|wO&P$#BS7fANs56tPb_(575rdF_!2_;DBEKwv;j_wVves^z(!&sjAlt zj`(t$eLf4)Z|)66e!8iQp<-gcd75EEuyu1dj_r;A(TZvJ6S|m>V%z8A>PT07a#YhF z4z$mF1MUGI@d;r(-&)pDTKJYFs{hVIs?`2znLqr8jR^KE9-&7|YOVQ<^taTkmjv~a zzyC^&uilXG&<8NO$O-A(kUh+G?^a3(>ZwQz*+r~aU>kB68 ziQz;PZdkMB%PSMbXydZq>yi-iXLf;;2)MsLVWa|x`p(OuxHhui$B1M2&@eFGvHC;p z@O;dMmXH-hVOuMCAS*KVBuP(<04EQ@Gak_10LDpVg}>K3Gxj{1j)PLN8Whe~v|b7% z7NoCx9(1oOFXKSSUJ=l-trNXH&tPG}6@CMVXZp&2ZwMKq$rQ|d2fL9~j5rLq znaV2bTg~S@>Xd{std4qiE(Lb%r1X_K+dNlR*3R~&YOvqTH4HyGDDC~MKdjMYj}KZQ zZ2bh`4~tkU6~`S%80elC;7<1jCn{N_oPtnc?-7Yto1E0z>> zs#8J#oBWi|g@AQ1!hOD?Z3sTvwpYvGN)6Dxct}aq!<@$2NpOQaDbc^G2YaK9t+?8X zuq3zs(7|w4P1oB?J6T9k5%<>a;keRP7 z^XWb{<9=lDX}Wn!Z0yvECj~ta@Jm&aOcz^TYfx{SwD--#_EyP`ZD0C6#}xOCr}n-l zJ4F$hoLqFGH3qL)K7Vp6(&~GIZ0|Ppd8ay`v+7FHBXfGMm(t4>ub zs>RLFhTmj;QPDv&%QQAv%%# zB(0*_fcr#*pmvc*?dVtyl}Y?#LZ+RI1Sdh1_2|X>pvj6StkHFylz7BnTYu&)xX;E3 z5IkHdLkog4;v@6P)NXI2{2%i=R(B4Pa9SwgLD}8Y*T2`?345r+D=oou3#)x=q94yV zmB`K}Bgzx8zMexZibDat`x^5tMsE;d=qvpezOl})cm=k5%Jn}oZ*at~*cj^g^sUx+D95ANTwbTknebc{k*-GRw_0B+VHU3WF8)EbzMy8{UcSj2SJR?K+Pb_85LXf5S_+ z51UJZKc^Fo67U<}nI%nYO$DG8UQiln5%Io-CVuHR1s5vL1ocVS#;;lOeNvnehZpRU zzNmDNf5=s|Nqc6_3b;H3H^uD$kA_)X2<%|-LQqUAoHTay9JiQZS%aIWp7_<6;YF^errL>q zk2XudYyuIkMpN>3P>wOw_encS-gmm+%om+W#3C3v2Jrp)W+FS(3_R2aSlw2es+RM2m&?m8;Loag+KM)Ww z__SDh#R|}!s}Q)P$G9=X*NO_Yp|-kT2en+kO9@K3!*e`ey9~ACM!> z3#~tM?xE>7tn8@e>%;gqPKg_C^CGTU?eozDu_tHjI{Ar?!B_1)w$5gTiC1AZ4LckC zkb>`&zC|4aZF|l8gq@gb5G9Y%gEe*|tSB3aFXHewwt^f4^$M!nPGcWDiKogPA*lHH z_-m6;zW%g5o>qgm4MdY>vrHq+e$j45Gft$G`Kr7AG$2ARPZr7}y+W-%5wS0=5oJye z8Rx{7?OSkRA-IigDI45wnYgZD@3be9ZHo=j0Xx&s)^0nm(LBg$SO~F$EUz8X6Ya^U zj>>HAfeqt5wT_5ai0y42gy8`D#@N<~yXuD?P}Bd*p*zHy=16GjL)@t>s}VTCtz5fh z(IbelZCto54@BsqHa6b4Akw_qIVH?D#6fNN6JYn3Ac95#glmU*%b}^O>qxkPl}zNj zfW{zo-k?yk$28#>Knk)RtE0-^yN(64MJi2rKq{7o>N`B^lkC>AeGbSOxwQb2XdzRA zA($+@!b3)fK8tdVe+wM05^&WWL<)2VVU_$%qOMEVwb#ihKpWkXz|CKt$Yung%<`sK zM^f3W1Ia@rRROR=O`u(%2b#~Qm=M^m)iEUZ4i(1Bu}t8qm9dI4Q90L3C@9$0kFQ#>-y##(y<#ZM<^?5Ao|Y1 z=MY$pNOV5pr7rodNQ=N1kv2*7(U0&57YQod(6EKbolz~zTK1hO%>$Hy36U@yhW?(n zPzIj0o6sD4s!#&er$;EjuiyCJevpr&qBZ#Pqi&F)pozT7q!@U@&=rE%%WLV3a0$t) zgwsA~6i&erBF991)htC6&m)w7|1sS{6^3-EfRPCBtw1Zv&w~Wo0YuPSY*fhHnMu~x zwfR=#BF9l8@h|t~>A*wGj-nz(ki$8%u4#Gks4iI%Bx?qfd_WdeAVN(d7Zm$gQa&1I z^(OVCY+`Z3$^;15nb#SpC?Cl;CYxXmmxAA1s8z z0IKX-E9Uxvze$o4fEA{HAQB_;K*))U3dv$EsmA@i`aa)rkV{e>_%F8x^3lIR#;ka8 zS*3gNPU&cznhvyB(%-ek7!WA?2qAyfSn1&Kn4pO-&??~^8ZK^m${IyNJR}M~5+m1z zlLP(h!VdPzydM(9|C#mW6;Miq|J??ii)Xg!vh1lYcP`6%#nhvBQ)d!BW~1;Ha=w%J zOijW)S`|S|7h@MFt7+ckOvN`BCbESibi+p#3E5#UMJ)T8$_4ssqj=4NlpG(*0ff{u z$^R9q$PX}UZ}`CVB5s^Y-tf7gemOf%ekWuXvCwJ<)A=S-xObW-eQ6+a!)F`!Z6qcM z&%@MI`l--yp*ASgEDk=tEs|LWOx;`d3MfJe$44C5(sT(^hOE~mWMvuE^8S-Y7^skN zG`s5`{6mO*^zLA<+&;uC_d>&7u|mBN%2`x-(4DH%jhMo}L*0^{+u{&)LGCSd3l-}d zD_Fp;+#GBi8!FQu|D>$WkHeV+IUn7t%`rJp${3T(WN;UJx_?bxeFX0y_1Y-)zg(Cn zdTSEOqhnn!isQR(-SLW6!Os(63c7ecxR2#igU*LTDjggY*U3!^=`thTh{_yPfA@*-OV@uh`z{w*5T_ zOn*P5D7X9mI|(|e^476qJO~3t>uONyGN;k$vSiTJT%24?!%hN))NhNqdVndJv}zx- z3QOb}$yT!{vO8W`9`YX|NEMg<7E^17U8Flbc}rdH+GqegA@}GVrad=q4}kLDqW+Ip zzDz=y4C7QEF93b|2#q)eRq>?;tzelZt=&QY=XrOm6*J(Au_sY+h?%9rgJPt)zrYqY zaKO|wqW=+QZ?`M#-i9pALQo-_78=)8i{~F=ME>v4VvU1o%oIfImBz?SANv9@gtKa8 z54=SE*jK%f!*NB`iIA+sRfO(Q7{C+{pGk*>5#D#G7qKEYVMWD6gCN%?89_OKzyB>8 z<=VRJv!c}9dZ18+_3zeY8f}e)1PXJhILnS}@a)i{2Hb-=2_Y{WOc$Rgy1Aip-SJFs z!sDV=Z_-darCmG~y9F3GA3d!1%@>NrDXt#`p4y|EWsb94L#@ZFj|V8NWMOmzBZQJs zoD_ed`PyKABb*-CBEI%C9V%}jYjn99cyI%8l2*BhfCiuBE`w}t^Cz-ti3%q`-d}#i zn~SRcC6*M;CPHhb0{79(Vo>~o{s%N5gaCSJ@EaN|dy=m`W?u`rCiiaqOAnz+D6B;% zKCX1s6e5c#28^?!s1ER)0WNfXsvMZIYq)tVn>L{1WNqcNXU(6KBJHw>9CBlD@^w$B zvZV{K*Qt8NuR+s?^vW=Ar2jh^`V9G~y#BNZ9!a*B(80w(Af+Q-!OqDU$b08pGP55u zu}GV~!Uil|Y%5Q~t_faR9_F~6@L;I6EBk)gOE9n3!=AT)-qP4@Dv;tnbVQfDatf7kz;_~Zj4AJWZ1 zfT*jJp?GD!0!*|;=K4^p9ZgH6*c!>%dX@C3II!QywUMr<0Nea{Ho@*x4W*%$)rKk) z)_#3@^iVg&aFoO9K<1djDk^P^i(M+_q8(WH83ybu8eKlph}<@s zj`1Gtq+~WljJ#agSgyebey@>G#$FLdDm_=e6RR54Rmy=8Kfh1;*EB6A$CajO`L}~| zxby2~SY>vJx+lH5sUPGRL9?#o^%_HP9K^Cwq-{F)BX%o~BJ z_W;fO_D-THgadR?*-)fS@Bq-@mUWiueb{`?^~Y-tA<5ASggbH$b? zZDfWnx!@(Z{m^vMP>F_>H7nyFa`W2s2Ds2L?GM6iGVy^?2&ti&o*h&+nb-6%X;aL? z6Ip0DR6f)6L872(7tDH3ZE3_>J61xqi4r)Z{uJGd?-nO-fF1Przf!WlMi+vB5C%6# zhUyv&R%ouo#O@zrl39mtYPP=Ep5YlEA$Y7!z@*K{QB$L+tIHx#rlzlN02NY=H|OxU zlf-H9b6buaJ5o*8O$pV9mWcg{8fOxCg7dtErTMATv`dDVS>*cMt*vO`dhQQ1d7MXe z_N(AypsuvxrX@eCJvcNpsU1#u8t9Eh;Q8xYK`kqZ75l5eyF}(>UKhva^$tUKv_t`bxoUk>-gsJ89OY8HxA>+>9NhBch3T0CTBEBQ z`M7SzgJ;6b8Dn%4SSFP=o7PFs^vZKvzskn4D8B0)p?ec50fZ?JZ@+K3sFc15Aw`9} z{za74eQoor8Gc-N>-W-P+SkZ-l3e?Me83MiE>2~4%S(`s%wx9@$bo7T-wY#;B%+rN z3R2Wip*cP-&dtpg!vK*|D{-bXwv&1!LZQ%cf+X_stT&I1SWqWC8%r0fm0nbq^=GsQ zeRp2x4;p$l?sIE{4hw6CfBfcAis$LiBgFSpvI+)mr=Kve<%aPQLlv~_PNIwzp|*YA z%$7;PBbF(vmQs(izDBZ+07A%XGQr&eez48Fzm63Nuh?%R54f0^_5oj>3`qiE#x0bV zi)JeoSRo?=Q?!dX17ge z2O0fzFj(GhXMt|lEiz9^!{ZsJSq%kVgqVr3ab&;1r3`a3RQ`uyPG`*GfaqZYy%J~i z{JehB`G}L_`HbVtt7VmXQlast%pTa;#5XB z39kf$=XqI?TFiHO=hoo3O1(KsdX}=-)Ks77lo%!rjif`gunFMW5h389C0G`-Qg&P# z@Ei;A0t#ZWkP*G4!oGvAF)zAhSy~LIYzBkcJ1|H>6HHR%Yx-royDU;}-@g5|IIh#y z{`5=Wy{NBW(M~-*J$=qj)~#yS#>ZK6EZpK*bm>Lk+^h94Ha3n$zeCVfiD00n;nv`s zw)Ul_p_!C1n)N)&86F)TKTIrwwV1r@oThMz)lBR%Y^y&|R)H|huDXIeTS7^=B#Mg7 z7LQ!^YIJSD`oEra_VyCk5o#ELyDu+J-OaFbP9O3>-!86zD_B__aSZmRtoF=LCBq-R zK5b}tCv`Y!P*+o@bkOceat1aT4Ad`zo(ov{B(f40qdec6P=|Y@w&+E{>kLam3dd;w6OJ=HPsEw)_f0hl=aRl$I7XTmzfL0aN~dCAe+Na?Dl{pa z-*bh|W#@sR)^NVd&)uA{cHO;WQrQ@8%pW$0k5xoP41*&g5`1n}Efz7bL}fUTTzW2X zpPrO*>6(3c4bYU~9?h%6^3cw~Jk8@`q3j$=*z~Uou<&KmUf(T6_4k_nwPNExhNS5p zF;Q`BLlr)_UmPdwPVceE>UgFPkDPEo@mZ3Hmw2|lJzztHN*j(XgOLL*7YAgWx-~Li zlpN+m_DwM9#W|MuJB&laP$jM{-Q~T~m(Fp0vz?#7OWTszUA&AvwMxK33XLF2GAx1mZ zKjcz`e=1i8Da)sDs)Tc&ShK41z?;@EPA~j-7IH=EtUkk*LKO`q8bBRCo2UAEKe10e zKd%r=s6R5tDL@vb}Ev@1`m3|Ko7}pnapy{x+^ul$CBjF{Zz2ka;X6vGiC10 z%t50f3R^&|TQ{-6u%+!5V@%lL=5k$^(lS|3OZk&jhJF}IBay@QJmS5S5$$} z@cyj+;C|YBq?oyYOG3hwBNCvmcDkI9V@7QKSr$JQ}26XSrq#yU+;b}ge zJaP>R506FB&;T18L7>ZNb#*9pA=O?3$0 zx=^|44fH@dO&gq=*P8k2N=r-ce!b);C-dAlvCCZ7gE(G%7O!-5h~i*JsaG;2rTY>H z;wb*Z8~M`{_~?p>y`p)aPZjBfpOkxJ*_1M}#OvOU@6;|GRndkBx55SZbl5G<(Nlx9 z7jE5+k1D)r9?8JODcposKT4Lsg!~@a72SItWFH zel=ffGkQ7wv`j9Y?-g^y5A)-#kh0FkEe~=IT5QCgF-IOPs8j6i>@0bm>D%?F_Vm~Z zT~8)SQ>hh}(+&Fj0>9oholI)g)=y|!nCvcs5Wg0}qw8ipbvM0!;GCXR_45__FlTI3 zZBZQ77Z$;us>PXXcPhhzBSI4Hf;f{pb#<-2!18&xwih zYnD?j(WbaO`Xvb4oSxlimiuAallTg}zPJEbSkfp$U03;HcaDyICax;s+z5eVxp{qk zM54jHm@oHv$D6%+Yq+Fy0|&rtU=C`0gJS!U(NWX5Qen-%C0LB0hmnQrMjekVBm1e;1*D1zTO_i0b;|d1Tcqk10KsAd4!iUsv(Wr z*$f-&w26eJui5Z0*?ffT5@ybiX4U$53=CxzNdKno36a_!B}@gWo3U}8jVv&%o8`SL z(!Ral|H4HU>S>cc{A>N)I6kF;6x$dR;O@E{I0evqDK93!!>_N588jDX&S>ttir5E^ z(5H30h_WE8%WdxlMvmHJ2`GODHv?u@u_^}6iY@iu4UQFNqKtAux??(qrDsf4AD=j_ z{Nzgo-g7<>`Y}uwWCk}27>w64r{$V)u4y_vnbJpv&_1)T#>kZ$DFJk$xDL=d(fGk* z*!*b5F?yn^rS=nR%yz>u~MnQV9g$`xoMw8!0eY+)Y z7DW^A)LxABHdEuD3Ks2dJmIthu>224=~=W|W(Ortk{UYOOrZ)6rAe9?4S?|~3Y@rC zDNL^f>ygXh@OGRuq3eG7xP^DKVK#hL_oA{u+xcQ*_Z`LsplMz;PP;6pXH9*V@*Fg^ zsQd0&Hf*fk9a>RXw1n2sdUwhTnL*s0*rL64k?^X;SQ{GCJa~Eol4%tp-fi zJ!SNom<*I&VK)u;f57eoV~(5{qjY-l;*dp7kP(x1xs+woF=weJho)uIg^aY6TzOfV z_2B9uyoq)|<(*2bg5aLJR{d(ga(eXI8u5hX8=~5JHp30d1YK7jkFynnOJlBqn*Q%@ z9q7v$G{vg;led-gU59)Clh!9-7thYl-r;lWah^|UTxFK(yzBPGl*Pl92_xNsrwUQE z^D$Up4)$M&ZkCoPAtfQX%;nLPvN*QB2BGGQ6Rn`|;OK9}`Z6*ymBLx8Lj|3&VO-IP ziN-D$0SSl`63ZG3_g`6!uxQmt)4?AqIy%knC&%Wc-w%qFRaB=U2f1cFt!CNcvVenw zR9*H;oh&jLbc(fR?3U&AMU2ZnT*Pa8wmLYvam`rQm=}MluxdFM?&CW}B~fTR&Nnk} zWuzP6aM`7v8D*-K8J(_g={7M+HDa)S?A9}9JCD^q{`0vY0Iz$)rZA&4hhS%R=YuGW zPkk*vY(Z5VT{XmL-JL}5@N4?wy1H%?<$o#@)>P?6tBz;VWe(x6PDoGB4|nR=C~L0q zfj=+paoFos>uw{Fubrbe^6G1XWv<(UzCQ*QOS7Ux)p6RzidUdyK?Qbtrc& z-E{mFMQ4&hI8~&d;n|dLn+owEyB5Te56}ShaEQJE4d5n_Q==zWk9dL{<3?3Gv*&#; zRW^#of*~hlc&Hwbk2ze2!Mn%QG@Qaf*5QFt6ayW%JZ_GDK(Mxl$G$Nckm4Emqjuz) zBWl+iA*41H-UJlW|9TiuVnNnPtpAyQ;6hV{_awv^rZdN>jM#2L>c($Nzu-G&A?d4M z3l6b((%}!Soi$<6I_^Si=#r5|ENU2au6(27c)MqvfC`Z$wRzW*?9%iAAAkL#f4ECg z7V+L7;(?M$x7?evpXwUrdRZ6^v>ibE0)-mH&aY{wjW;?|xG0PraA{nA+V(}f{_>`) zQ}cMWoy;r#sCsa;U$8eWAcVkVs>tGj?d zM!~XHbp%j+ou0A2z9W@Bsyhuwn_7s{y4flpc=yufvn?q z@PNZ~h2*>bZ-)m~&BwwDynEV@@mjP!CjvCXo=P&5rkUM@(msoeO?*GP$6~QRv-d94`_CCzW~qL1x{FgB(hPxI}6OzXvO=y3*A z{A0&c!HfM6)eD{%z-@+zQ7w2}X};Cm(*cK&z@^&nuCk3`IpOK_c1wLV5k_7+&1ri# zuP3(~n1wQn*BwiOkol|1kDB<6s%EY5&j^uL_)F4n7c-7_cE!KmJtT^WV#pb+qM>3I z9>j~Lk@th>ctl_!zlhu(=>?deLYDI1qBV#(m6%*7U(7HgOO_L?|0uca2YMGq!cbKL zitixql@4$KiG+H@Xd`rYG01iSq$X{vmHPr?Z0)Bj_(_SD_sJQLj$RMFca#y#|@iFtpQpg^8B))U-JuqshZE?&t%}I;~g)yN7jGg405WzEQx^(AckIQL0g)tdzH^9j# z8E}|l8tdF&O__p)b8kL4K3>+{FhGUG|4o;bBmmrigLwlO5)`@Unra&-5I;!q({88= zkQ?UsCE8%c-t2|x%&&tie+vV(A(J03iIS6P3M+PS3(HbMPLi&2jv~5O$>G`aHX$lx zsmk_mrK+Q=Qq|!#T%d%d?_=S@SwI@7 z^K{D#no`v-;MV0E5VAN{-_ki@lxF&c14JA@`Ffc@Pt^}nUteF_FjgT+Mhhg+i0UtW zBsX091@>}5ls}QtlZz3sNauX*s-H~F%?BKRJ~3zy`77fE0Dvv1J zn*a%eDK7uJm+W;B&9p+4XJT)XVMNQo)275;91YrUjFf81qCp2 z{N7!($P^Ry1Hd-}>U4P}`HJze@OWKvF0{to&uKlkU@G;@4B=xD#&%M~3d(YdrJv`P$mPE>28IC2==~fw@J<)~?cm zt?d1-tIK-Y5%s{s$gf|;>W|X37IPv5%(w;|hNHYRJScM@3P+>CQ_yg9L&eQ!=P7cG4H5

wJ2aP_}&i5S#jX|>FD&dh^ z&8M$!D%o&$5Ez>elB=hc3?n$l^_r&Lj!Jh&r?xsd#=cVniNM_-9(CR2uSF5Su^?5i z*@m`Hw;DzB&H1Dm-kd+JQs9>a?kHVcN`c4QX!37-jp-loD64j?;c!q?Qp?#=lU0Vs zZq%+TfX$X{aLbyR3gUg>HpHP%nV4cGCwYLIf~vboJ;#M@w}riG=1R%D&csi>>Pi*k zBO~>S)m2oL*AiPhUr9cCdTIhI1~LE^@|g_$@}#am6o@vmMaJUPw4qZ*lQjpmjfF00 z8;x5!wx4GED}Qny{!*&0oUonHxakdqDktWj-TMWOvLBNzXsBsf6$kYuR)mD_MB%RP zowE$o1gWkx6rA6NaPah1DR4_J^_-6cqADpyBLpu!MT%2AUf*=jhghID$OV+M2)KN@7hPyB!V502%TX7QbXPO`QH3o z5}Czr=M%*Lan5d_Qe07cR;mAKC*waR=z171sE!!FH{S9%jAW`CSC*0Kf+D)yK`+pu zAH5lgz|ctd!jX)p?Bwj~#k%r|&lLP*V}1tV4D}rYiSL38cZ%YW;A;JNwR^wTb*p_< zvwAL0NT$L>?@i7!pANUASM>Kbq*ycrVZcon^VD?4^j;RqrBznQr8QJ|TnhGIs09ay zzMX60X zdV1-=dyh-9YH2kpZ1Yq<4?1qtr+|_?w!hKglHle1oD@}5im5pnRxEWt2%l*&F;h4c zqG!}*Vliu3JNKNhNO)`^)q`dKlhr_NLQGWd4k0rq*X>wgZtlv}e5I0#8L1F5rkfDD zH2cs)x>xbckgTbYsA*wtut$hVt(PJG&}do9v8v~25ww`&i4m%ci3vTiK8Y!VeiC^s zRv_Kl@?kbn7Sb1xbhTkTIBmqJSo*P%$Fo}5jk_^GGx1$GOx)4 zC4AVPO~@;0(v}E&M8W&>eHx@Mbi{~9mG+%c+jE8XE@i7J_dR)7WbITLbAQWrW$em( z;JT&`9k&g`v2I-z^0E(yOT=8D`lK7_NzJL}HQ~MeimIy2tgPQS&w%mKiW%nOQ8p|_aO=8@NQ)S<`U!{aez1#c#t1F3?6GG>t@zKWXEYgiKF6AhX@wPjgp z`2c0p_aRt5o4C(fmb>4+i2g>z4JM}$x2>jBb5ty%7Hb8X9>?z?F)KtyfK2Kyc_Mk9 zHh<%JqKRLnIG_JB#mR)Cw6oe-kRDH0gBstz9`h|nap&LoP1&MGYm; ze?}Gd?FbKdo&$=ou*}A~pH!Zp(Kk&$Qexz*q%tz%m^2*wfR_t}lr2fN^s=b3_a&ZhpZ!}9$ zm#V**R{>{y^5N)AG2^k@)xv5mP!$!7OPZQQP>J8l4hF+$Xz~ERTuz)xDXpi;igu{h zxiouZbQlOBCIHLnIAuwLPi)9``gW{Kt*smZoisarsb#<<_p8%?QqHRfT4Y8fXour( z10-;lf0medbsvO;$g=y7LIHT~#_w>RKU**=N~5WM_sp8uWRJU= z%yB*_a$lkG&6 zS8o5@$v^ljE(O94`(h-a(5T=a+~9!})cov05~~kXEFbn8RJ}C~i*0F4I%rk>)WV2I zi$=T$)<#-wr)?yG0>H*tiu^j^DY#i7fEjOvXT3*B`=Hn%vs?K{|BA%&A7-Gd5->?C z(<&C^xc1TIM&O^*kp8HoA(R#QO$waJk+-Cmr-lfADs&d^9sxjwmLH$)q9( z{Delnaz2Je#!3uH!vNTM=}1bg`CtlTGKm`Q%I*GstPfWlj6a^1DUU4q_W^P9f03Sn zi7B+^&U$9h*)5$tZCS~n1X-&X2jq1~Wt6^U2l8PPu;s_lvtJb-CaOIvSd=E#Cf6B`5*$u^-8 zA7rm-miDRWXfd^p;8#}L*D$g$M7QP@=T7RfXd+Wdk(4F`uf5cC|>)2YkfnK(Z=2UY5Q5?N15N}}MNxCuGP ztF2WX)1n5s`gBKr^4oa$UNb7-ns*5(G)r872qqtC4lvKKF%5i#lwtzkujS_E%j`19 z9>BXAlApz6&B7&3Y2ZEYsfkJ`;B$oCu|gD*IZ2OX5{o9QT#*2{Rd)y4emNYSt!#B>(@b>I6#|G)KOy!h(mDx zfIW3$Vq%EYY|&k-E+SOA#C<#99Z&a};gvvH>DRcFRA#C{jE;}~52S;`Vis4P2j$|b zT@u^7A{k-!IagE@^7qoBi^?l&67HM7MEYNnp!Rir+VZ`D{J#Z)8E^Ax zaWO95re>Cxs#=09{~SD$)V-{oifE@3OzDvcvdH_|HYKCosTsgPL#vR@{F#*t7}|cfKHD6Y>rtet+=vT;i+jcOa-u7 zjD2-`pNqh(aUagYK*8T0kdjl3$tndfh-6by0nAiY+vq{4xdi;KlvI4|d$gd@ZPieg zXl%8PFa{7(Kz*+$WallwCVnDg*8I!&L)y04D{5wS^1q{IVq?DWaRph$0o@WM`7)|% zak3UUy1_*Z)vjt4flV^GKqm*^>l5`dDvsPZq6F&tPLt@uIVQX%nW5X-g_>au{LE1| z)W}F!u9{r@v%S~XSvVeTj@)3yZxFGGHDUXYZ~-Mo>K`ZG^AYEGD{EOkdR2c(-S6$c z{wfVccm5TP?+()%Y+8Sz3+G!wC_qYxKK0F(9nW!jB-N znbsf~AXkyG=)b3djY)>o=i!+DaMG`7hd-bswa_kAS+Lf4@dJ= z_j;7EZm#NVaBS|%bC6|gr?)>8_)l8GJ-g4~XU3DV7w(!K-RnUE>xiGQy*UM`%PRs} z1G#lOe?-^T9$_bG<4=PPPWn6$6A{<6qmXlPhanaQP3TbxlbAMA!_# z)-LAdm>@u+Q%IN47?WKlF0j#*eMRM!Rw+uErbkKt`GH~<{s%dZGRku$9W@$`g9F9c zm92G%X4zpB z-mqh!o)o+yzIe9+D{@J)R!hTZCMG7SE=tf1Htouj`=UE?;tGR=#g3?~yM^f&c~2Z% zCf>5wLh*Ri(^*&!duo_e9$%OaLseg@D6Eac#VbQ8eNqa?H()Rqcgvw>;{2|<5X|Po z1hQ^jA+!3L?7&~EPZ(F{%bmY*)q--%C;c`+JSJm9r!E}8zn4LI^7i+*fo2(02y>SD zU8I2hB~Sl&l_`m28$4klx$54*v_Zj}1f#Ghed|VRS|cIecL8R!UxDR|PW;tsiFg}q zhj*`d2qA}HY3XBdu*~O}Dm1H`PrwQsF?B9+5HIJzug<0(RBa6|-~0Mby-^--ICxAi zKFPgyP&GEN!d?Spb6iavl$3%EMC*%WSpc``Uh9$&`NuIO|2N0S^v+(_F7DIN*Z7NYvfuPzqK1$ z`l=i5I*%#OR7M=|lPnIx#*|lsBRNKDMoY{XV#jNK`CKi#&@A3cp-_S(gKF~SeLy^p z+ENLw^(SH#mNHJw|oM{$C1E{>ow;?#hYXI?@g8t66r(g?Q z`5{rqA$u^tZ`^%K|Bt>pOnXf|2w`7R7|zNXJ3Yg-Z$e78y@(#9J#Xgm3YY`T(I=i+ zjJNP5``R4$-H?Lg`F553?*sk~RphGyD|8?yXZ0pN{MwQMU+E%13)_<5MHSKOMmV6 z*OR*=?b<5PVHrW^dmA!$`YLPr+RB^(Etn_)RkZ&fR-qi7his)N?$dlIRRz*z%*)!>=l2g5b2KO(680dIH{=NnO zrKSh!(1?kNVV?#?h&Z2jt9&svUC+y{Rt&t~XI;bhhh4pfgmPw|`N5}!g$J?{u7eE( zF_<0+LSsBZ&UnAokIy#V3Q*f>$rMwJo~Pz!|S3U|@!>1(Bi)fKj)U>>jx>1iIY&#{O#tvw$0)LHbzwYD7JTM`YFsB}+ zMqSvsb3zBtSRdfOhVK8K9uTiIKY6LB%0vTGiB6fRPr)7?0d5>9(kJ4kR?4RI@Tf4W zzN)NULm(QO-2b8MJ)oLe*KT1&5Rj?}CbO_Qy4?REv0Ro|fz`s21vyc1S``z(>V`MNgfUKdRaH%6-|zE+U%nRozb5A#QPa(* zde7K-^b;LZcr*YAq*PPabE*hky|Lc;bR9*LjBzWHe?CokW1GTAjPTLhp|K*nap9AxI=x<&c z9TQV|=8&l4aE*tD-N4fFOT!Ek-3B**(Wl})4pogfI<1!=f0Jafp11$?XawVynHyir z>z_B8##45yd(0Zeb1JHTijhxt5@PrRoSl6};UzL;W8HuLk%z-K9i8!s3!e&9vXtE` zi_Svr*KYm4*7Hyd(Q3L*6I21PWgk;$f6d9Pr)FX4puo2kr$X-^j^h1DtbG}o&;H_2 zCC@*G?j{E@QFz$s#{I7_Wa4s%c%buCYE+thGWY`-Kx8SX;Qix!3C8BZL?(O=8yke- zp`n6XWl3ebe=NKITCcxHZl6x@fbId~z{AH6OA%3122!;4S3sqG#GU`g9<%2&Co=dD z(2iG;5#8*yZZnPze*^##TCIL%3jV#Sj*H}dNg9reXbAtzD*Wd^{>OI>+~!0UU&Q+I z74`K=3~2syx8Wi80H=|Sn%m@mdChRyTSKE)Y2&+;vWv9dU5x$vE&-H$Jb>KXV85Us z{6F5$|NRfy2y$inaDL!mbA7Q+`^Vs;0Je)0;pD|H2knn9`uD*6&%d+RY9Vg8-5;tU zSyM+__J`#L$l2roTe)l}?-vL9|6-p0$KMSF5@~3h-|-J7ZU~4^m-*vh1ps(}+ef(n z<<5yrFM5yoGGmIELbct#(;$Nf3F|33y)-i%(5zTx(R zQTm+k{CuN-FKUz|cjaSA419?X3RNIF zPu&neoD%y7<`FpR7`Fpta4CJp#PHb!iE$w$P$s%C+vHIDiy!pIybsY3_gC0kf7QCZ zA7rk77sUTTUSEIt1?hiAJv@ZBTsE8^RQ7st_{sNz;>(~bd{1az^ed45OIG0T%MAg7 zrR>Buaq%ZqO!bb=9}f?&^{A+!la|;)jkrR)3I=|#^($C9A@~(G|0zC0-qeS zZr7{Xr@F$($mh^Qex;;K1tm2$cJ!^f@dwNBa50mE2taIYVf~ z_|V*UP=D+v;6e&?f?^x@%8EB@2x&`ZApW6zu@)F>%4z^qXU$XNN5mg@`4Yfb5t(@J zhZua&=asnde9zi|6Z7D*Z1vvN|I8wQB!4aMcCjIyAHLp`eo4mvQ$hwe(D-<;uN3KD z^kmN!E88=u?$bm~@#iu+N7PEYHXxroA_o$t0<~s>j~?nPn%wQTDfFZoR81^UaW!14 z7y76FsHl-$cfll1OV_)Jc(0TlJh`Q4Qp-?%nyr}3-u;KD!Fl36YyH?ypWxjs{a4{k zJiBlAG+*uDTwj&yTPplxecV(bY9;eZEgj#OJyI`sa(8`{A7E;1$OUW>p%?Aue`Qeq zTGT-JPX_3Wq@+C6SM^U^rdEeDTPio$3NhkKUg+`y-s+WA&yvnR$M09J?J5}np|<~| zKl;SW`IB`+0jo=lqSF`vCJM%al#BkbBxG;@e%!N+4vX*eeh zw%lG<6qf5OE`7Npb4OO(9Q|J=FngLf;`*A97!wzNS<*seRmW0=Nc|KhSr5A#&_vuY z#klzA+1aL*4ZzS&BCa%DyRZ3?Zr0@8wU94+|2V*pKg$bVFv(NYx4L=rf{CfIz3Z1} zxr`joGm6TB-`dmsX)mfdY5V1qf!i!nRgr7TkB1J`YNpr`w{>87<``_oq zaoE3}48PiW&A~x6fR}zOCkh@~SJRkykU zXHplP1@QywFHyvdJL>x2;V4ln>R`6>F8CY^xu<6yJiMF&oSI@n3*_&ujRf?`QtFc-)C;l9a`>i{ttJ5ivQ9R zIQIK#`1cn86j41OOoAO(?$?s^zX}FWAgNKGEN!N$zq<%r%`0oh9UFNb(Zfr|@T3^1 zlIWEEuwmJLGN;^`^kco^{)ElCX+wbeVC)MtXLurexNVgx7?S?(+Wr3hfQ1Hg{ft?^ zF*sc9=Fn(k0Srl>1%scYlm1>LdnDoRURjpw&q9K~JS%=W;7l=}F z2*42Hmrp48t29D(-;mm%Q+~=!oj8?29)=M1>%6zvB_$03TxzK|{|K{NEhRvjkOi#X z(n=e}VA9*&-c_iYT~_dC^~`Duw+Hzn_<8^eX1zXaGl04drxLv;Kqr=dGl5g<)4O+j zs|T0#ft+&SmRnX92>0D{{ybg;3jZ0I<_1;+*j!k^so->j9(_@MRB9HsHiP9)(k;4V zy%fvYmulDV=zFmG684MVWEQ+%612O{C}b|5=lqp06?|ZVZk(kL+=-nu3ugC45W;4c z0B8`$4mr7rkIx8tKok*D^22A!Lkf)hED{QZ2SjrIUI0L59ZK4uo(MO{Pv?W4io&=t z1!ti_`-zM(a8wNp*?**43SH2XSbl%O8X#M^f;di(%Feo(-5O_C16O~r$BXOq`zZNu ze76zNN0wfd5=)V1ElJpo%|A9B?!bOm@`-#Wno_+(nsjW>ga_g87 zijbWgOUk0l55G|3Sa~!D&B0kI$u#fyNe>zgk69(`ORzcu?Pf`{Lhl=GK`<8hw-VIX zM4jzpe9sQbzkgSCi`#j_IugWg%R*-@6r3g-jP*GSK15749jrBC1rmd(zH6pden|H? z?&p_+IP5?(L-gY7Fa}OP^Usd1iP0FSz5Htsij95^g5lX5q^48k7(dh+>1hPL@f>Ev zN+*k33m)i7nEm-C|BR5{h?`3D(WaRR&7VUH};&U zjpY0mdqR7pFpUDu-75Zj3pLQQ8q->_OaY^2MHnI28YXt~RSe23i0%X26kuUg9* z`4W3ov+I+q9JEA^W;VFAMvg@rkSOnQ$j@@>ImOjQTEk6z&_Atut6*Ri0B%^ddP@jO zaWvngpO%IF_t_9&dJ~XVyZq#`J&^juW|86k_VWPGfsFjuW=YVJO|BXQmz#VrH$6OS ziHz?7K+_h}xSynMYZ>U=X%}R}oc&}MfN(R(v%mROiW5{Z##i@wyO+Yn)#nVl#SQ>P z1F{-HUM?;f&Q-InwXCgS-@1j}j zs{kl7w^S;fE&$H-dD&!^}uH+(BJLjkd zURiaTa%>(Q9i5_+mpeHGrD4);PTV3bBQK}{%L_CeZUwUSk}#UO9^ls44|=arrTUCb zY9!Q6ThM$jEp;`0kaAWkCKmDAKHlQmo^L`Yw_*nE7(VlO zL(ue^tx4{S1JKl~Qb!h#Z`cWR1}>hl($dwtIW?$VSkO9MTCbg}EXxR;ORYqN1lHk0 zw3;hq5m>|8q7~nbEomPofJV+&=O}d#?s>*yVm#qFX)e9RZ#UwDT$IA5-p^tYPMu$f zlPWu+ObweaPVJh89~S!X=k^lD`t!lNuD#(Vm+?OH7N;2GY)zVH!n66+&+%G=WpE;0F(%$VRcCftfzMnU*Ksur1h{s5Z}*3GctGr5o9AUi*b&Q- z5{=y4ch?jI%I(W}R9xOE>zW}P(-f;A2$k}J9~>riz03;Utvw7v`O?)SWu+!fhn&so z??3YK;6s>Vy7Y~`n;MTd(mVm)KsR|8+w2z3wRvT5733o0AzL7fKx&-ZT(hz(-G_MR zFRU5^ye8x6O(b*1W}OH|eR|pu3NfR|w|Y{Sg&6O2$#62s@<3~KeJa|I`Y3!_pR??c zpUDyJP*B7f&n3{fcF7+(OY=GUwY-Af5}=I;P$K1%cPs#y$UmJ;hrdE{-E z-8UdR%WGA!7oBF4K{x&VJD2C)v*^i$57-Cu`&(?BLj4F~5K;}493q?w(>5_NNj^Q* z)zNvPs2GH`gGqSEShR^B$u&jV1K%6Gc5ldL%D*!e*_RA(@zQ4Pb5$z|K1NPt&fglp zaK6ouPXMbl>_b5=HMvdjDJL`3%JgyITJbahismLO?wfR;HmKVVF_bfddk#*}tvQx- z{?@Up`<1&-O%Pv&q+^3!P4EspL;Fiwas-D&RXR>lXl*k_%uR*u>Q(*j0*kG!(hRc~ z+}~9zK7OK|_M}4v1p$!Z?tDX;JwVW$kAji+3U&tket_J~OXqss3W?9%p`XWb>v=-Y z^fBVlX2d2O8EC3jpDF1hOb7(HTR$X3j{u&*%77T61|muiPUo(mgR}3j@|JDM4NV!54YA1q(?X;Z+rZ=L~ zVlb>B%WqbfEU@@j!MHgk^>Va#$)H_a;y`t?SfPE9i<8J{JZHGPdC3#I)s-YvEwxwb z!8FLVsnox@^!rMPAwS#`9qIqfr%!a}cSIGwb#-l19zOg{?T3!4gN(-K>eYHw7u#8o zx^0pP9Iq5b`Qg*2_cA-2lkmB{*4>*|A7tfHqXx-tBswi<=uk4ugat4hDo=;h0jZ-lQc&Lo8nw#3eax z#gJ9MUM>%Ph@Gx%8eAGj8p7>v;79J;7=`m&jk9!pLLJxj9@Pz=5WXoUW4Ua8#}h46 zM4anXU@74ex9p;lB~4_?NOf)%CT-~%$apHiaTMVTKVr5qw|#=DGn5g7O9s4@*XLo# z{4=~6BmxMHhNkQnB&D-o=H5PGc&By5AT{$a323|H|@e2(0$%=Yt$w0 zj#^R=IcJ6~8(aBVGcH0Iv7yHVV zBWYyEFH|U0j_vVT$6tqt>N8YI;g=rw$(n{tlI)HfVcvkl+yGS@OUY7^;b8r zF_v`ZkoC@@&8gMoW>U6*YMJj6K4^O|7RPMlI#pWtV=n{kl*bY;hm*%}OM$CR>rqA4 zMzg2*4Qx)ct*O|^OLD7~uXOP>!6*B5{+`Fzks?{|g)nIe88maD`Mjo$%B4-G4A_tV z3Q>HUGR54&Pmq&mhS1(#?n$qW&dP*1Oeq9ypX@Ew?6cq#a)QH4OPsu>LqmRXN&5j1 zeDKMlT3K(?fs8X7!kv&<`Eyx>GjZUR%j)eH!Y1A;Kb~uwjLhJ81fVLcp}SeTfT~E3 zI199C-%=c8ktLj(;CL2rY;Zs8GN^JU=x&~isII2;LW&Q@uemv#zY6xtX9WCoWUWbi zG))cT`BM#yY;x*{tp^(Yhtj*JZ{|>?CNyPm$If+Aqct*ddlwx z#W!z8f~~$v+?R2g%46c4!D_Y2Rz-j;A>IWW0E0D2TT2e^Is#S;?b~^97rzNf4n~}0 z1h1wdf9SLcO{aSA?s)EebJ}_k`im9?$oBB~BCy$w0Ehd^cLizfo_-0iomjS9zuo4Z zwpQ(u5$2#TMxfbIPJdO=4m+2po&OrllcjyWBv(G!LogK4Z%w2Ikj7N8Kca0<>@q!* zf??_DknM=7vr$=W9w4(2xD^~`GPu{e_d^|oJhc@#=fh7clJ$+Sk7#TNJB^bF zHRB(ODbi>ed51_VgWl}v>A@W_yEVI<@d=&{YK%2Y_$G_dH(aFbc0Bd1_y)4W1)})i zlc8$;&^Mi!`AA&dnO+^`n530fb{{qKZ_TCS6nUfYQW@L}ZLR_v?J~$I6M-MH8fdOR z7rH-|Z0K5g#PZ4imHx3bt(fpUb|z{4o3NAZ;iZB5zr7tFP8u1}e1(qlCHjW$ip z;k!~*N6l+5*9}ALL=hkIHPX0O1M7}l&wenPy}{0&o+D6KPv)gfG}WE(*Oyw=c?ZLI z060Amr00de()bXeXSpS#4J%0_dx4{rs#;ojZGqVvkQ!-O5np%Nlk&(-AE2Ege^-Wk zVerf@WG2h!i$Kao@2aALu*}(vwvdXO^{}T9;=Ad{(mR0JULkf*P&Wn8DA`_ZNynP_ zc5GYVq;konKA)yqwFzscaT&SPJjAXxprmFS(xn2`&6$wSu%j(EQ(?vz4JAWkKPz%3 zGr{i%gT#EADcthKj0MF^4nuK+7X%9}DcYmo&)p=?VZS#)Tb^^<@*(lV3U-F8S1BwN z%EKm5Rh9}Q&aa8Syng$DUb#Z-X^SQ%=hfb$HmS1?1I|9zN;O55Bcx32jO0NY!~@{c z%XLk;rL?nt!72MY2OUUUBwBHW5cst|k{Ugmj7zT37^>Ubqx5$jwFfw*pdb;S+v8fn z&_lNlbgH&Z%w3iWn1G-b0$in%$tE(Mz)J+rU!!k_Uf=W-Pe&3Z9vDk|@}fcU!HW#<4D zH%(e(UiJ;l&{!YJes68pe1Y`J&GWxrWUs@@E}77AHuKTlRp+e;4Xmj<&G%uPDz{*_ zuF(GyTRARwTrlN)cByUVf__qVA0Avc9Zkv_q~3hGDpj=>TysG%O9_uyVz-%VJX*zm z^6gBMcwvD1h*z(#wyW})bD=I3*aGdCBX>$Q$e;rwuy;Zs^>G{d;Vz>`6IT7cC>TYj zsb@S@ps*BYmoOv$0BbdzgtbcKO(&qP|4{j5U(N;;ywThIE4`4Wfi|WizdWC>gw0H7 zk5BoK%B7vp0PAsiRVsfX?!#~RITklJN~4wmOVcFaBP8~#VDy~d+SB(=u%}p_RxJ@g z$H-Rg@XA6$1sv(bZ<3TnL(1(mXRL=986LJdF-ll|Tw}427UsrKj5qc9kpI!hA(#?p zs+_gi)C3Xzb|3>XMrwAFzOojnC2`bFLQX2(6#ZtSKSiKGkEHpu(x=aq z|H(J2;%E7^+huVVA{H}{xtzc$u?e%N^QS6U(*$}&kB(XN1kf-uvqLdrZOJRyr&+C;W=MCtJ0n~G2y^u2^8FTycZfEm@q z%4s>v%Qf^7GLzQ&P2=H5o?utIu8u7$L`gwcvemR+Tv)gB?pKdHog=53H|yJcPN%X_ zWul6=#am6fP(L#?=WH0Q`=b+3-+q>Lqn6&XWN$sXCP(~y(Xbl@gi>8pM)y z2V$^DT4Ev|Gh7bzNabcNGq;)%el%l5F+J)?h6$~mcCL+gJHW%mz)c}pst)8ENjNTy zyWU~8Wem?ao7_aCosljs>1AijYQF@YR9 zT=B7(i-?88dc?7bK@ehEnRCnU*1fAlmCUXU1FyFm@z&7LvrW5*mizbbdj^*%a(?z$4-vCg+juZFi95fg3T2i4XCi z=C9EPUg4LwIoA}!(s}0Fe)eJsAJvZ0x(bXRJ(>XJ3fita7Xlq{U7+R6z?dw)rR&0( zB1$^(UoV!&&NGIs5iRakqVK?6?`=*xKO9^#NgHYs#b3vwaNJRoEP*{TqQoW!1_qhn z@-qL=`zs4G{1nrS_&6kDlUl+r8HuMAoONF+`8L>d-&bHDfAQF323#PORYM4ijRJp# z9yQJmHXA|dN`qJTxbC36Iob~Q5FNDJF^XZ<1ja4!{p3fxNtGu-;&ujDTMn6R_(5^8 zbHb;QlUCh8R|#G^zg~PDrM zO47AOT|TPu^D*S#ijmlZ+Gi{xhHm0!-DtS7DUfW+30`YiR2v3vphmyA~locV2D2=W?;WP)iQ&JmPS!|ZMK(v&6DS0>!hIjyl&o? zskQrMsUt0|(WecXg{Dn|?}cG&{0TL0TV}vnX`98_6s;d77^t8mCwEPCJgy2c1KJ(N znE{KJy+;=u+CvB42F%RsLl_A17lR+XW&%B+$Y;@FzUc>)ol+>{CssR|OGR`C=Fe3e zoZsRh+iGMH=q?ua>lUOlC(l0y!DMrwNEL5NyS@^p8OnT$5Vm?TyZ#epRsup>{M98C z>wS7^G^SIszyAr6q)nCV-cQ;fgU2K>?u82>?#x2?oGF5y2k_R}OH( z>}&}EJ05vgCK|k%`)icWtNAD11csg;^^s~$_?JuYUfzIM(5?+iLJ_hLULU(qx~&tn3l5KeC1Nu4N-gtj zMGTPT)aTZV7aEJc#h)c>ReN|P7caj|F1b@f-Pe3#S!=5pzuljD>!sgW(;HjO(Uq55 zwspdqas$>%(A9=Cjrkj^eFe*jDJkY1JLMR3i0e~IADkUT!Ftgt^8k)evuPO7hh=qxQg8b+RvozGXK1U!~5azkILl^lPvC9fhvL}y_5aR zWk}};jKzo@=m`2mmLW-11S6G&?Y9CZd<%5uYw5Js7Dr6mMYpPm$r{X& zfazbjR{qK&T2w{zqn2C-^75(y{;F=iizU62Z#|U4{gG~kIV^@ll4Ytc;l7m_b|OQR z>>9!I?9tO9lG}foC6Ux~g)PTb;5hNcr{G7yw_2;GZm;eBAO^|y%REax{G<(gkk%p= z*{c@AaJE`uwAGCAkwEp2+@THZ3BGGQRW(mBRP;f0g+I!3R7zot)M%)bb>70^8+_olm$e_W|7zSD6 z2Z#Dk@1S+}u`fceT#^6syb>xKaz@ZfbkuGTW!}1esJSEMzx*?w62u{=ygT^rU4NMK zlf#H!EczC0+Hhsn>34aTUI~!er3Tz=T_VDR5_c5tBy5TPSy-rXwB4@dhn6x6d5EX{ zL10-rI9rORuwJeb=+-OA493W`zdOVK?8+2{nYlM*g`DK<92m*nO*+CG*${?tZW;UZ zR&1hwd&UUjdD3c+i00aBghdsz7y^G0e?%#5h8e>q@0aX8jEX18U!M1G|9e!CNcZ7T zjq~Is@Zm7e09p1%9~WoVO?Uh3$(!GqMcVfdZ@4Ot%b~oBSN)Gc@ z+V(=Q$Ayp?ZX;X{U#*f)Gs8fdztDX{ySWyW+x^zU<_-Z{Ir>29qfyY|J-WG|hd;DS z2JG;Qwi8kBiw|BQ1Jdu-vl8py68_4}`{s#$LFrXqt#>_VtWAhapnYO}6neb~UYvMG zErgL6pVOMNUoYw53BoSFObAG^aUJ7+s6JEOlGj1!{Y` z?ZeL(4*j?^hF)ds&+ypOGL#xX2CePdeNkQ>_y@~L%wJ&-kyhSs0@1lNoXk707=b3s z@!7)g&!S6p^dUKp%*yI>CDIZ6Iys7Y4V%ab}T7YX}E}?44K9@9}W{6Sh8UdvEC^b8PiX9 zh!O>c=GPQJq58Jr%`Z4(@nT)B7`35Sg!gYk_cuf;Jy#qJzF`C!4=ZKTC6WVStro#K zo{IPt_zzD&nKBjT{=7Byt>|tlqxuSe5RP-Lt-*W{-$G#j`uIS*A`KZ*+4i{VsTq1g zd&uU^b_TIZ7_myWG;!&OeKlsIz(>BZ0wgtP+9-(~D8=#8G1mZrL!>5Zw zR?iLgWtI-Dr1u6@V>$a-sO1_XPqy1(l3H(udtY=t@r>la3=H_fLw0Jy>Ak=pTaIrN z^|yXlqdH|%gxP8P2RA?bJgIj5K`zX|cRWDWUp~uOB`2sTD8wb;8z`Zfw4ga*$TIVRKVvp)VNZ9V!JvbGqK z$8C1keJ<_7lpHk` z&}V637f?+kCI#o>7zzeR(#XR-RGK4K`((XC5#yqJtIj^-$?`CYa4u(WV(SJ`hD?+B z>lZ)c#Udj3BVP*qb`C{SmCASCCC=hwTps<5-e=sW!sE}r$3nFD&G(sMQBvxOZva9J>J^B7B1 zlRRS;NYU`5igc%OM)ra);eNS)1$7V2;MUj(wtq?%;TwGCbagoe5+7(4LA==If&B7q z(*D~3a}k!w@i1C46yr0vC6i3u0rLfP^itaaJB)+-N||+m<| zC#|__7FxE|TJB=uUA?tjCQ$M#c`dj{pf1{G?U^oG{V$2O+HG}4f4Skap$Bf}K&m2} zqDPnz%U)V_ck0uYFtL-=qM@Ar+1xsoo^=DPU;{fex@%-+!Cha1-)Rch?j@Ugk*egvuK^M3g>e<178z=(l5Om27A> zce~`C4AAQLV&seXiOhv|%)~dNS4;;9`cLo0CIsX2(bV31O0z?>ml}9!|Lytw_J4q^ zi0dnUYj$b$5cQpMF^8!MVseWdDp$oJJ*@$>?DDwOK&_v70FW+X4rjb^<8-P9z9%+G zwHc`^Hs4+HfS8j>r~^;uwP10u={vLZz0?Lqs&sjf3yl&Ln#y_glp<3uec`T~l-J-5Tv>U>6cq5f%fWNPg2fuW zW+#(2{VsGIY!3|--9CQGq~$D$Uy|5`c0Jl^BS#g}aX(dH?9kL3ik?>?R{c`)qM~<( z@sRQsjnFBnWb;IqK99!G%Ej260C=x%QLGXT%^WglH>c-hEe^GoocXL3k+b^1RiuXT zu?(L!BFpwhUGs66O?{T>?uTc2fPF>rcJ4f*r?!-RARhA5?E$acQa^<{$vI+%wp52S zs)p(a{&$EAG^a46x4fUfEzGhabCwM=4o0czcpo&;^mMVo_6-uxL*Yx3z8@(B8fI>6 z0m|8MbsS*;>1|kYiJGt49N1q$ugssEP;HN)-C)xet4$?%G3zM33(7Yi+{hMa*11ve zX2awVZ(SwTFxWawYyz|wsGISIMY589IPkA13xt8gQ^`((0rAuU{(@|uy=RXiBTJF1Fy(Z7T69 z^vv8Wg7D7Y3u~)!A#)mk>1oG~yXoFEBu8j-K#b}E*4NiWur{qm>ppUGeA622?_Lo( zIF-NU(If{fAF!o3CK&C@VeIF)jE!*li8j8H6~E;rG}oawSF$FNAutHBqRWmSuPrBk zSWbyWmd*w&j&iY?dcG%hRU=20R#(fNQ{+0KEdu6q^CzC$AI2dn>Jdl0we`2Xe zOV^!#qc#bpz2j|+>hie$$u>9fZk|Ux#_7gpKtBjxlo1=H%s{@6!gvPzOv|4HsnlNU z4w^MXY)TX(y74nUU^zB5o9R!bvo3_ZH7uS@9nK-EmAbWLYFOi_(IRT&pD9CZsU1*7 zv3&YU^P9x+02UTmRHdDE@aE{ZO8|HUzhBut zR|@(snat6YG`)e)bbMI36s}on-Xi&JUXa-X=`sgVOX!RxUe(NwU<3S{8`r{Zw*I&xnm)2jr{ZPk9DR5&QDMR1;^t<_Lzm_!p{LR`o?|9c$ z;$mV&bj$h&2V;0TQ)M?<6c{`n9LQo1jM@k<=OwFsIpYs>602GZa0k{r?G}(>ZZ8WN zrW-Qdj`b=$mu^A|T-adaj=me}UTNOWz&UH2{{)sfyD|rfPAm{Q_qhAWP-burBWh36 z{f2eg8qHP= z6LPG}5PAL07XG_;rv$#V)=?$^&@)p(JENL_nquwq%^9RN$YsA(T*^U4;GhBI2C1mB z?IYV3P@ogU4|djadgY9sn%a?y0PPI9twvydMmyGXOML-iJq^*c?mDp#h# z3T55SP_Om3o|DD}hS3||hb5ETOY7^`JvSVFEXp}C2mG>bj};gneT@BUD{&`<2`K3Q z$jsTx)dh-G$r_6|O4*F9{46{4l|y=S=4=CnCMg8pfN8|0C6Cu;Ty`IhE9I9Zy4@39 zqkn87@$^^NDr}Y}=G*YykEyt6nN{kV0({t}Plnz(dNw4crCGi`h`QF?S^b@Ar9Ht? zZ|GH_J&-^gbe1}et@wq2OoRCh#t5W9AR%qTC*pIUXCT4g9nFS?DZrcb-IVq7P2i9| zL(_To-)E62LZlt%{K_7#LYizbs48Y7=F$hy^{E=vh0kSp6eOc;x)4<0hdRDda@KFg z=3*8JW~_j10S=n?jL4!-IP|*9vamq+*Sh=^*mh5;L6zveG*92GzYN)E9_6DUU2T^q z@WGlk1Ik^vStw^6B_B>?+V0{UbO~-6s{JS)0Cdr911aPFpSuTgY6Bn=-mlqx*$Wi^ zu0SypH4~d8P9Dkgc)fZ#dcPv}s+aES+P3k3lBqx{`{@sI9bhfDy-}iZ(T`AhCu!uo z+P04p>y|*$>n~I=Q#EdJuLBuH?3nlAyRnwsc4`*^S{0e^icHqT=s*WHc5`x_?IlUC z`E<$oFwshHl<2Q)0SCLVc0)!$~a&c)6nKRd-d)Y2Owp*GQ6 za~+Ja@h!q~@blNcyw@wqUcyeLU>xrtQpv#gxhIlFhW}nwEN%gxpk8i}z2xMxyYn1a zhV(jj~le50Fw;VnXoPj*e?f(S{U#hh$Ag2xrkFR(`FKnXZfFed!*z)s-4q|(;&`(JquTYc&u z=QSSW^!U7?+LR$zSgb=3Zc6!}X?0Q~{ZNxg(~snIi2Ge>(hf8HUmoymw7OXwmgjs- z$Y6JGXg(UZ)^aZ?ajtb3Sv869+YAn)qil2yL)V${co#O?R;E}Q0QL=D@w$1zG);WR z1k^O)J4KrC&0{I*kv)0q9mDJhe(@=RCNwu)@jHTGCa1mLSR#*p-`;wa`aFA*QCB0% zJu=~Fk98K%wNlMg4|S)eV)Co;+L)n-^hnrcarsiSId*)t%b4wIFMObo%)_DNz9Yl^ z@q(Lmu!hF0Ya9v)&he$v$Zx>fT=~5=F{Z`h*yF@?O0N&O)xivnh)q*U#eoRSxn5g zMyjtETLUW3D6$)!{SRR>NOkOFGqDw<1XS2DMc6bR4LLa2(i&QMtJC0%;r^ATB!8=1 z&RTe(T{LQbP^!B-vx|zM@nISG3(~7uJYL_z2uN`r8|iJcpx?*vOTtV)`#&Dz(`l;_ zRdA@iB{VkeXhz2SasYrD@xWx{ri7EDSm1(S1+a6Fbb@{0wnC)?*7nG2P`WiZdi?vy zvt4v|m%3olfgd>BN~M1odS>HT#3$+lo-{B6Qq418sS1RmiEl3~SgbHP1!^`<7xo-d zLdtwGAgVg8nlHkIs@aoa{U;Gb>z*eLw%4yAa%@WYOg*I&9RVW3+33sj;Z|TcwDSOA5YzooA zcAD8LiZ4lk2C|vW_~T4kRD1<<$bGjYJq7;S3ZjZ+2Hq19a|Qi}13-OiyM9TsXFjbo z`4#lUado7g8YR|(G~c{)FwsiZ(AK6XgAL)h=s(|l`3eKWUHv`iU_ZVDHhBD_IJ-~d zO0*5F*Szc*!b&R_pSLgxabize?b^x2PFvNBP7U1>ds}uC^i|It>sp$131yC`acIig zscJp@n33V)Q_-{7SO#N-t!%(xq_^mU6oH^Tjj$g)N?{e75l2`sLx)U#UzHe;!f5`u z4a1TG`3x30x;O|#)W%x59+??_j*gsT0og=|gTx|;Rj)1tf_PMtZMAP-*ZAAz9L?Li zv$iV|Co-Gom5|?J7Yn72m)j}kyj2JkWcR%%1Bu3Vw$;hW-woYc6S{V&_*eZfQPI5k zu2q;uzrDQi{pfp7}?mj zcV1o3*JR?+k#|q_cAQ^8*TWz8;YK&llae&F-AKoLnL~abS-uG5K2P&LQYR^V`uO?t zssxNKUgjQW<^)NR^nmxFAA=+tAZ&i+x))(A^Nwq$9PeK8EyUKjXQL%dehwG9(4Kf| zPNojgg@py%55e1Ra0tfziMk(_-XUATb7f)O7SS$VJ$%Wid&oYG-U}$-h61S-ZaG4u zJEPq)tigFcd$CXzCytxd6W+aZu1&N#LUyxx4pW+omZe8zcs%k5`#j69lp$;aA?QCm z*Ka$JQkeL2BSoVT!wks^uDh*_@c?1;ou&4h$XV~_&N5=c$r@%hH|?xFq!rnmXJpZ? z@k6lEcB#^(#N@}Rl)GG9Y0JAI@PH6CK)v6Yr7CM6O`tsrfij@7t0~bVz0a(yJvShk z+mt+wVb2N}weIimHCtM@)vCtVqn&9>1V{@Zlz3SjlvMqp6fu8p_<3bh98)V!ALpBQJ>YK6Is1ng`k1CZ&6Bgj#-Il)wgNI<^52uY?&tY^ZMHtp9uZ zn8VK$ixbVOIGkiTD;2i!g2=7tG+JV;wsEdYbKy-=C&;8T5|>hYJAtr;na#?kn1;N0 z*mzLabAAT(BWOqzW8V5Ua|De1A<=qWw>+|jyxh&8)pw#3qRl27;0^w!LeC|~@l)=-Vd(%l5&PSf}d zP_kX|X2mwO6#aQe#MyQNWCDAgs5(C@KzTDyyo!=s$@%tm$cI3d(ic}zzFn(^wa%~N zekS6!A&o$|t`JrWsbvLVGUltlVKU){n)3}nT3z)4t#}=z6;$(ZXa%FEFn<7h@FZ0J~_=H+1Tie|q?aj@Z0}a?`&Q%cXVWqPo=8014gxXd`smOZg0PahWGz6E!b7Q;j==N8b@I@^6_&<4v%pA0W&t=F4)VZPq|(&LI`Wi*JTF2aZq5qq2DAu`{n_pr8(adB82t$rO{;$Ebyj~wK74t)i<1ZK1D}*b#f?KuE_fTCr z0jhv`!?Z#!t#4kUcm3pJTJ8`BwMv9j`k4h2N**7cw}4YcmL`_wr?0KY5autE#MNW< zN|g6%Cu!mms%mausdS8f`Ep`FA2V-}ku9Gx9 zwDF+T7ggUOk>$VjFg4$j7vZ_{G9A*)-EE zZp2-SG`eUeKqI&Nbv>#syU)nl5$}j-rGj$J6zN@yLX7tSWirMCaLY`-&-8&@iYxc$ z1vmP11tlH9OCA8QvEVpL0Zv97mAijn5y{c&cqUq6Gd!)`Z{hAz&uRu`bPg*%GQV#( zh+M4~rzvD=(vu@7X*{9vAMqsmH4Az1hXRTo;Z`!)zZ95`M zvQ=2i2<(|Sm|J?lQ4mJ8vq+((Ry}yXDUI12*+h-lZ0sq8Xe0YUry0W2;8>Gr-+nh* z<$ctbJGS>%xw^c!tP3M=P4pp*hmto}oid}{@T+7zdp@Y#B}sZds5fWL1q=`Nt1{&`?7)a{Gv)y1vIUd0i+K^!sTZF`2> zQaU~lu_8bviDxZBo^5i8CqNS!5BlZ!IYwg4M_9&oRJ6m7iiHFHguYoZV{A!GUYI7i z*dP3m4m~|_BOY^-Vi|eHLsqw|^YD>k4D}`rS8}WyEYgnXT0ZsWw5nLij7t%Zc~jYr z;yJED6803v13Z_bK+9?8M6N$Y16rB|<*tDP6E(xmf@+Hmn;MLLF2q?eAB$SFN$p0y zZ9rq_mb{$vb8Y5Z&fhteoj>YsI*_yErZPV>waefqW%0^J`tD4ouLBKsOF(~37>OZ=7*dh$?vRiUK|uPusYPp-CX(@HX#bNup`dj;_)gcy zq02JYqNDSgz+vBCcLy-{vIf)47?`uBi)-Je^AMaEJ<_N8y;I=HK58JMcO8nQ4?z%H zMCx7X?;UvtXOJoie3Uc(xIS^bHU4`1Q$^e{BamD9nHiQEw-r_!5xCa;;;Y6exXuD}%O6{$r?>*Z2l3C22 zHbT%KXxZa>)O@hX^BlEJUMsCv*gvU_{Rqxoqlq2KjLP zwxcYF1PD0#T$WaPZy#t~UsgSL`hE7dmW)~f6Rk)&fMuEqFs zg@B01LL=6nRq+q#GhMS16XW6d&8oUJSw`o$J;7}I#&AVA`zdMTy-{3Q^)hV_Op2uW z#ZufgtgM~$$_0BnI}RDQ7@*Dd{tf42J#FnwbRH8>ZQFT*xTRFVX$lx$5-?0v@L^b@AabtTYMFEdp{wFP!i}9D9V{n8JIrU zSp%KIkO%NR`rO^shKwd7NUloANA=2aBInSW%0xtDBKrezh>Xq-6BtTll1TXwDP9J| z4X1A=(@}h@zPAM?zL}3C;gNMhtgfyql~sL{Z}^Gc5(R`2k{3x(u!fiB#Eo65?~~QZ zAhIULJx)%2OH!w&-~Qk-ZFl^jxqO-)AFnR#u(toqhbgG)e!@>mO3F*?$P0Q##^SL> zGN-^Q$p%wjiYwBRc+j&fVw^rE8R9L^;KNLUPLWo&>%d0-J?6)fazaU5MqYG(D$<}> zXy$&|y<{eR8ps@M-)nN|$^_3VE1lt9Mmy_$K%`vj!-BFikXe9T{QYglekb?!`Ok-| z%7bYT>xN_F`U7A4MrYPZ=WsblM)3vy6uSLVXfj|~9d*8amez`e*s+bNyVK3*YjwRx zM$P&AXt2cys7u1+sR83@biER!2~NWB}3Zn@EB*dE^# zMoInsd)ZtqNyj!qDtowGuTnPaMEZ_E}uNw1h;Hn&$C_zH^_J|Cuz4o4Cdnh?@liXsqi|1p3*y4p7SF?+A3v>b_Pc$y7xDg; zhiA}WyF35B1rJkOx)b&#f%#~l{}Z|gziLZc){M^1d{el902!Zz-~6wt9h|h0srjvo zMl_;BK(>7|cHymO#gYrgq-8_U(NX#z$uE<)6)Ut8xT>{uc3-O?3a1Q~9KF zBPWNAz(27jlr(V~%l&sBm;+;qDX)g>iGv2d$3ILbjb>hzUCa<6;<$-jY4fPb%D6I zJ1p%@_suKU_;g-gv=#7N%!L7&I^qw&Am(0Rjxw*Rt5pD8H?rI6ll6hTf0K+)J_QHnjjb2N4-ZrQW zV(s4n4Ev~GJ$L=k1|+KuBKKZA;&Z75P7|r^J8Z<9{ciW5^$)jG-a1y+efJ92k4r3N zC4(5}q8zX+FHQC3_zzyZdE@m6hqpD~?7XHg&^nr42?22*UJ|ouJF-o;o{-G_%RlwH zK+IFs2Y8vP-jkwtWF6t2z#J^A#?6-u0`s58EoR}s$WWH-#9t2MMI3A{T_gox%iO!4 zRY{N{B!C>#CJStA(0<*EQYL??7-U# z+0yf*C6;BA|0dIwFcgMVvC;`^LQj-%h=w#h-d59F{9IBy$ZvCQblT+}RBWsM>bTf@ z?$Uhpm!#3HnRE&nXb?xyn@%i<`*p$6^V=Z-1TL^mhvMd)k;2o}W>t7S?B-(%(T)c1 zs^J!sGG8K5eC`w|wypBnh7!8>RaZMqXC~6(#Km11FAnzfB+8|65#5tZV^0hY4mR)o zl$|ZOR6f(p*N;}jF?K=2$yp%%{#~N+q)vrL{z5NLo{&;3yLmhl5C%}qwb?=YTV^GA zOeH9!c1%>&G`*6Z{(idBs5sPGpRrnLZ=tau)nl(ztG0V<+=7OkNhOwuJsQvgJ8(1* z%X)5ZMx|ccy{jb33O7~`S!+R`Xzbvu|9UUxPwrwN%*Q??y1lASl5THH7>~YV)nop~ zbcgNlo9|${;6Z`vuMD0r>T2s3=n(Cd&a&H4?P9>W1_m8x5xn~+;POwANah_;ke2f6 z(=A8qnM4XJO^%1qM?_pUN&dfIghWMPnYvqx-ns#}%{@)fO+0dSZGXyQzH6X+($Gi| zm}sJ5OvYAaN5ez+PLo}aV}MQ17WMCz|7CyZJv7~@uPpOgrR7k`LoBR(Te~Zz23&k4 ziBJbE@CF0uv0Cik!U&|Y7u=-;2)avXqs{!kF9j})iKEOaRiO>UH;up8n9*8w)xP~E zpC0n)gp5MU&zC)K5(e!RhSnZq6Wn?-^5LcA3gw>^Y6^|^;TAaJLo_@AzOW`vCEi!J z-lZah0vI7*g!GbbG2BNqhWOTnhb(#7#lk^x_x~kTq55ct*wHwAYEFA&UDZuMq-zFy z$W{9GD(~V$DbawCthBf>td(<~h#3eEW^i{{8wbFeUP<%P-Cl+wav8%udbR&vM!2A! zUX1N3xya&z=@W-toUMP|87*jp-__R>mp<2|oF4{A9%8f1u)o>bzaDZCsn6UTN_SV! zJR=FV`VdG-Vhaide%!<+%S(TIA#%ut^xNu{{d*yaf?n4Taafq97^lww!8cX0I{dGn z6p`Mg9{Jdxkfx@vnScO(<93Sb{{OL8f?VrN9uLFYF9tv)e%wxRNOhVEeNf^S7pi6; zMVF`ll)!D8`h-%J+po)aE9&W1&&=UtiEe zcQ7lkO}|m(vBOJsi}cZg%oOFuB1NJSV!&CJ=}1eGx-G5yervWaElMtPR z|9g4n+&+TnkX*<5t%*_@AvL)c3K!4+5JgP4l;tlLz&~WdeE<;DH>cg|zvB8Io+oz! z&I$Tpxce>N1u1v3(Ozs|#XqUN^#y-;18R!mgM|>@G7Vw5^e(Ik-9wAI&Gys^d`L0Q z*BQ}7`+vC!*bIK)sYUz-?V10Qb1DMJ^V;&tAnM;M%r3yiP#MbCWMLkG$N9oi*$x^X z-r8d*2J%)kF;c&Olj!nsc6P4-5sc#YBFKFXk=7D0MPA@GwSmuW-NOgo1_ETgLVg$s z;grOFdW!%)gp$A(625^pQr}txxeo*Kq%d$0?>xBuP(d7|y2T+<(0+LP0#H>)g(Rdx zPH|)?Qp||^^}=qEr8N`jvuD!wt^Cu704(s&pD`!klgCeZK2F|NlhoyO0O8?un}<{X zIv>D4^YMT$qp4I@84wdvGkaMdd5c`;L;#1F&jug4{c8gl(g1ExkV{{`MF(Ij<&aw` z_o?6Fmc&2`jUq8}1tB%ld0cuXpvJq{9EZ$Z%SlH@gPdseyNzDAH{>q!VU420aSL{?o35n+b^kv1Fs~2$pJV$WM6LI{AOiRw01L z7$tS*(r=L&ICj3|06*ZC*WFfFe+-ELB=ZHJeWRdA^-uPNVXY1N#r)m#KR7z@dDl6Khl>(8GvYb`3$4B2iPOOjHNS8CqkIU zX3ha@Rnhn-By=&FYk)r2&rz$R7VmUx{xoR&eHfn%lrP_jfx`s~nIs2ev`+oApjJR1 zB+2+8&F&Kb0&?-Yj%62EEES5(1rK5xlk@L;sP7#3ciiF&0P>;U0vD*r} zK*ypYqNloEVg{AVpkCnq3iAA_x)ZREhmcbdO`aC`O4`f#aws!w|G%;Zj?|@ai$+&C zQrt@7r;liOUORN=?NSX6d1R&5C=ZH8kbl-p#AKZUnswy5~OV)!~fMRO!$( zTW(|NlK1P)futGXu!8Yb`TN9@IR;xrz07{{IbR%%pA+7tkuxEVG~%^>O=<$P!g22Y z=7&+Zn5tTM`YcmH>i54Sot1D>;`_If`g?YX|4-(qMhF5{8t?PM?Bb#b(u;pdqZFhx za=qi?h7=A^W3=!OG8vv-b6NRcvY*#aGb}O0moiNBs1`2GRF@W@Ocw00KYkF3^*#V$ z)trT;HNJBw=iDaJMxAS2VTvsb6MuC~Efk<_+P_Tn>?eUg#5QKQAeVq4fFg}LK>Hrv zpNMQW7^#844|!Nq(HIgwmWGBgZT`M*`_%Wu?(nFe*Rz3EyKBswK4sJREt+~g&r3B{ z_E~})!lZ%iep~kPM;bGJRzaNeW&YU~D>Ws$k8lroq zvE`eaBFZbZ_wlq^!BO$*kicwyG)(br0hI}{JLD)g2ii*9PaT}={_DL8a!>%Q%<=q% zQyjp_Uom#ZsJ>YH;h4lZ8n)e2$$GHU#C|-#baXN&JDr+f_D$>g*>uOXNIUaX#KGy# zkTY?i!fvas)~7mud|w#)jV0CzE^W+x22PR7fIL#@Ir{KZOT-6|7fpL{nbluyVp zWqu}BEBPUtldd7O@GF6(B=`i2P{8?r_7pkNo;qmNq_YEzQ=ui-XSc*R6ced}Fh6x! z{5gnx60P8cnbf!(pX{?(n0%{)8C zAh*R+s1HYJQ!@bA^%21UZ5N4bojj~Y^1VZ} zvn$4v&Dsw5oaf!tv4#Fp0E%pR>9%V}~g zd)2XgpWNv!a;CAqh_0nBFsDyluw*~Ob3j((jqtKap~|$$(Ueh_Zh;7%=P$!dg+Q!^ z+25T0Hrqu3$BV;8)>VvJAq5Qp>BzwZ9Xe!Y#*`)0IAk`zWfVa@sg!FkWe3^lz4d=T zRiNAXaODZCkAL~SyU5U*XM|)X?$f7~c!aA21<&WV+r^W^_oN69lG1T$Fe_5$`Dowk ztNaQm*@xZ{k4WMY`zIa@_&XB725xZ~?*N|iM{ksZt;BO(1y}5v1t*ZX(PtZDE%}1a zb#M(v)=yY!PC~Hhdz7qG;R*96fdJwLq2f3;C9BGTZ-klvr&20)d-A^2@h55xMvr!A z7vsJ040xrQt*R+4fUDB=Kk>Ilg`{;=G=keCC%f3Av7YNTv0osG4gJ2_{)gB@XqM=( z_`Y3+r5?^{;##w(H;%Kl-7~*RY10gb?yo((izm1S`|(q=yVxt1TD)Ca1qvnz4vB-7 zV;u2i`+cDLa}<2ckzqRXSF$_Qm@4!rl9lC<_4SlgRT3Y!O@`%}%rtr;wi=6sIp)~J zIICDDm3(LZhyUXPp^1_|6C!vhDWoQ-UXSS{D)s6R)hTk3cNgUuTkS|s(RsDR@)L#6JjfDe6z+>H`n z4}dq!v$X;AsKHneVRfzI`VPi2R!!6e^0;;KC52{HokSOZ z#BzSjy)!WjL7i&wfp9|Ehtdaf*_>eB{oQ;tODqtmdnVEp$nO zjn@^HyHuI&q7o8Prl!!v?eC#mNFQR0LwkoA6EN|w89q>SFBFaS)22vpqPSCZV0IeH_g;;0w z8(4uXwYRKwA3}Mgl;dx0?s-@-8YBtFfJ8hb%9ESq)N&h+K<4D~&>MkvSLL0Kb+IARYDZqVMPaoNPg%carq@j)o5DDxFR1&);K`Qhh6fznis z7Ozj1GmX<|&YkTY(pAQC`Pxlxz8`^383Xq%C$o{f3Scf_M@BqGc^DAG5~@nFuRy#V;!^8IT2i{nK&iD zMjEIxF0`Du_*PRBM9hTaSi)Eg7^fO}uB3qKny2|F zN_sGAX!+k4KRat^$bmRCNenYZkrV{5~YCJS^kG?{5E+XrEe4YVznTMpyzhHK5#SjEv zqRIXc$9XCZOtVWN46o$0DrTBTC@NJdjVmToo$+A#z9p`m4?|mKk7jJNPG%30i{|W> z%XbB)=8B6;d5BhrHhiUK&-;D%M0wHuOu}EpQG6X3Y2=*etE2UY7i8WtfmjH3j{&sGjEUVRW|MomA>rZdofpTG?QF(77MeMX z@7fI`^4?`(=Xo~NRO+`g%-_7$Kv>q-b6$D|w0^!YgXD``I3c{Jb6J9`z0@jjVOBtL z<_9psSTDz}ZCuBhk?MVuEXP3d-}{qdE!}g2{7J`z zxXE#8g-pV$t*9qJ{#ia@;$n9luOX9-=%dz3$wCTk;k4=9&z%S{M{Hxi-XwG3CJ zvaO+Z_x2`i!EChw?;t79i54(vbvZ)gXK->JKw`qZ(Mqny3=Yq+ z^au7^|+KpGLWiI>pKBf0DR07dNNI)!0pVsJ5yC?q!lRj2z`Uf|#=Bf<3MFRQ?{pE)6Esum2?R(tkFcrj zK4n|fzO<*iZDgk)ZPb*No??Jj&?YptLpy3nhTrx`jT!icSEJ}|?lxOZHy8)ssQ5Wr ztp0Mo#`|3MvLtF8gKe3nE>p9DEQ-B<(z(!7I65^xFVf4=(8aDX++)Y6_{ z+jzPHG{5?6Ns+6?E$s{~rH-Y`CXj_l0TIwUA>9alhZoL~X$T=DST@clTZeaN6P-S@v zRkBs)_5SQMU()owY}EDn9O~%0D6{GSBFm{9o3(it^A1Qc0?38|4kK79*MumeNHDH1 zi?yGkxRsXE&9yO-EygPYviHlP(z3tUElO$io6mzU5>rzdj#@6o8Chv$ZmyFEzd!z_ z0szn%h{}4pWzo^4e@F-8giT&yuLTh3Bmx!K3=$-c{>0_pM9OfiW%xwtX~NwZ35>}e zb7&^VR(pkJw|NBdVt&=V1&)|3FQ(=bpqhR0Jx`HmLdWx)rluR8n-p{Pt8)lL5Xp>u zu7SR+5iEvECwgpm7G5-ETfi_w#-M$18FuD2H<}03qvs1LeMs3NV7->RxTs`OikYoo z2q$`Tz%bn+w+&%=Jb8Qx9cI`%9}eCMTzpkM_G)(Rj;iIC1H9AX);&=mfh)D_1uL;u z`mai=#F&zPZ&t5SN&gyBv+1GlxMe&Yox(u>{BuF2q(&!{W!nPS@id@7L@~9`poR80 z&vDeP_p5`x*FUxs`|2i#NZOU84w8+DW-rI}V9MFV4w7 ziZa`?V-9?Jv}h4q0~Aei&QpZ}C-3{)O2i*Kw5`?eR`^%&m>O`$kBPZXQjyU9Gjj7vM^2k~PqXG!c!5oF zu^It|EIH5J_f!KlC?g3-WGToY!}D_YBj;&-=E*;vxn|yLrK^Oe%~$Xo@-4=T*E7APip9kw$v||wRqyPTKN|qOR^}XK0_=~^#_d*Pf_l^69<8pa zb@bM+XVN!SSE@KT#9v+wD!CqZuN&Q5Y4sWvenr%j9mlY9K%8*H@ zqKI+^mVsaR`a9mUbO-P-fI)MtB&2xBB62b)faq5q>~1dAOf6Z5mZ0m6Ig~maCt}r| z|9Y!~$n?m?(`@2%4F!MKq~NPQoX`s*D@rKUOkvu1OxI+=5R*emP-$RrQz#J`yYKy5 zBk%#~ljx6TK&z$U$f|Sx`t$j%oHPaHcW_cRxA|fKFyG{X?_wfh@W}7{=K)>aN z-7it7_KKqY?tcKV0Z=}ElLMIXGoxDuWChz91kRSy_5=#il30%>TPB?5aw7vPhCX?r7PBBQ@Z|%>;m~4$(NOOTA?Ll zh6-kHrz`pSRPl2S@)Rxk-qx%MRW<;IM1Htu4(Gic3~HEqm2n1EUO_yrLk`x2u^d~a z*Oj=k(Od9iz1F9eb9FHlB9+xB94CHO1bBEbP#zbQEkAOGp+BP3cVAKo#T~6%N;gPz z7EP62@3mf9^)L1i3;>tX?fs=lY$UT*t$F^+;3^s1aTd-aiX6*Ooy=g+tD-#5u8ML5wyOVdC$m;f4{Hk(+jxB2 zuel_MTMRgo|Jws1n2Eb4q6AU}t}!Fq4m36DI8aF8vT4>Hd>WPAJLwcb#KqqEQO*gd z_a>5;jP~u(E}v8g;o;;IXM0^0eubF{9y%tAJ9fKfHv-Yh#Y+Ib4UW!KfCW62-QOG& z^VleZ^ieLm$}`m3-5IrX)J~zp$0~i1=e4m@-km4?4U~J6MGg-z5GBkAm!JEwxgnP1 zdqpKrq1hJe1C+`nkwD6w@Ofs?t!zcnUBD17`a)h2hV%}W{O%C@r?HJvLr^0)x7^L; z1DO`;G;7N7lOAcp4HVPz3P#9j!86nxG0-6lGq8ZvGF7fD?avvZk7|E1z^cfskE*lf z)N6dGB#H*Z#7y?MEthF-Kt#$c$8Y^O%vHuA2FQn#$zNb1z**_QRYjbbJ!54iYL~IQ zdSRxn<7ZhNs^*W?f((Wi5!?-~Z-yKfdNiD~_WM4J>6d?;9(L-vMQ6d5fSM<=l89ee zee->@Q|5<}`G{4hnEAA;7RMzOBWraA`39X-vL8t*)40szcQCKd z&(ro*(T+pYovm3x${EJzf!mzItRO!UCw2GD;ilrgbC*bu!=LYQx_T92RFpS|a+=;} zQ&x0D5T%7`zaqTzjDVo60|7LfLZ+@%;RL*Lj&lYzISZ~e>1-ajg(03J7b3X67CfuyZO<0 zVOnK(JV^oXs5WExb2n}FE zZ8U`tY)l>nAB(DUBhKP18I+~nf)4Rt`y9K)hy zxNbC)QHi1;mkMM$P0$rXu9u8vkm)+c=63YuMCMG|$0uK|IoOLOivd?w%uI zux}#MnTT=UrTT6dhf+4>s(1w9=PLy@FievfS!X}>937o!Y~WJDc<@>UT%vCFO-(Pg z5$f6Cl&Ze!@K!J`E?asc?ePMqe*O;zZcT(kKx={TORR(pZ$&Mew(}>-KkFe4escN` zr*gzJ9WDE395o}(U(Xv?%mhx;e(&N3x?8*HGO|@OqQ*SgeRd0&&BMe@$*>LQh#vR5 zS_ZI`_`NBrIPsjRey$m@X&;r14a)VtcFk%0`9oBWeOTdKd!kb%GB6|fTFfjr$`lk3 zuzf73emu~yF9X0C)dQ7$24%US9FeC0W2ZC+1O}KJZQWz2oUyhP0U(Vho#a%85;Ec} z&iOp16hgp4>BIdZfB-Y$1jA$M4|n5!RX=FU z4xrt9BNLZGY%eR}^TDdeo$T4qnH+NqR!EI(fX(NQ1)k+#5mn+^?YJhUIHtAAsF{#L z$L*r=LY_2NNsY#~UxXG)T8*pDLQ2nPXUOcz-{+1GGZv#WZ1|>-=61URMJFXO-(CO7 zi2Wx)oK1+VtRsAY-yn(fz;5tgDBY(ZU8PiTP~D={sPhWA7it|>Jx2^)UWP1F;1)jm z)wUfdH7m|+xacoFqVT$grgIDkt$rBf{3n5{P>=Lg-Y@VHVXDyjcz`VO&1qnzgsruj z#UHMk%}T**GX<&$cGL#$H4Ek9QePIH4!s;l8g4d~RF2@d8s^9Ou72uL!BMd;{d1&6 z&u1A~^A=8mk+I@0_{p^%754_1IYCc7cf;-=GVhb*-*qVUgN+5OP!OHBF+4FJw5-zTL0Y( zI6{+XIJ(039D>Vdsuu=TLeGDXzSVsDIpf#(gVlc3A%Aj2k`75(r_{^w`sf@!#VSwd zEr;sRPu!_}i!CggOoO}^v0xat_<+DZF$6q#S&Q?0uru6KZici(m<=b=_qXX+|L%e< zwRbq&JnzxPnAu-E5@wl=RwUMF!+Y}kY+a|@=YCC0m|K=fWh7PfqvuPC@E*?Kf#@}2 zlv*AMUR?%*Z2ZaQi<-(bj7pm*&o!L-A|0Jg0PTg!<*T&Kz^hbD&;Bj=;g0<$xrFxD z)gx-NevjBvdTl+}(FkDb71FQ!%M!%Gyhn8rG=vz=mFWwg(lAj(aY@*^sd^DsZ>;V7 z?gjEB=3q@#X8& zy=2ET3>%fa^pzPa}c`YFN%Xi z0HXc!W}2E-qk4lYE_y`)egq?PN%#yqUY23)W#a>L$;H|p2;J}b8W0xl8Hl9>fR%n# z*}VdSMn*u0B0r7PBpRG4FDDoGs8B8`rHY?JN`~BA7@d*&vmlu@v4d5}Ru?XJy)VrF z{Fqmkyz5-yu^9koLu_%#qdab{`NGeJ(6mU+GuLVVlC|ZPYK)>ScE!{3nETM(o2mNXoTb-#GHSTFq>* z9z`SP@m=2a>3!57hs;Yb_yXEz7FvJ1%x#PpnV4vNwFUxo%9t!l*CEDzJ*>*B?Ur`> zV%d|u7 z#-hTaU*MdG43Pmz8^Lj^k6Z8Ko(?1laF#K{?eEia#Z|GpSZBF)=UcB^CZCAt_ zENhH>pI_kb15$J(WuPibxjQowqb9wxaf^>tj)iHh44(r?^i=4=g{Y6F z77bl$d|{;X?>Kxv-%GV6)|gQIxed&F7`xM0yasfNrz~*&XILGU#Y&X6|`WkNH2oo+emdu%B>c=mVKPPl94Be4J z<2l)#l|X&M(*tx2R{#z58Y?CP=jy22#y!sqvuNkxU#A_6jy@avI-^6no(ceE{mLY} zZvedbFkXLMDv8LE?FUIfXi|xg%ZwV=kH*xo0;sNrPL(J`$6Su9Exr`;YGUP8tHpW! ze362widpIPXzfVfE;JP!gR{Pnw_|BBxrf^yPIkHfZI5h+2OaVSe+8N8{et^Zl2OL5 zs@5<+#h=t-gtIp`o@1*_s?;%r_q{b7GPG7HsM=QteQ7qzD|BL^G)Vnha$>807%zuA z3B#6a?N7GoKFHN%8Z(3-}BeVPW<)SWOPj zH02I`SPkSTTrGeWwq0id0I($`H63-ia2NrZRF;oFs@`G~RY+q$>xic(GerqYU^DC@ zR|Y*xNZ%gAi~$h7X+uIVY3VzVCp5as%G|r&|p1|ayF(8hfN$gmS z)%VcMVn<#j$$CcAs?R;J8>@6Kz+4`JFdg5bdNkUj9rqw^HgLgkN9@DJR`LES0A(8Q zH+JHe%?LQ!9Z^|%oa^HCyAx?fWTkmVHOd#ihi~}uXGwHx{9a%KTx|XVXtfnmz~Rx_ z-QHwaAmjrx+E^SW!~ACbxSD&04cW!7d4~8@GU-pTvgo0;+X83XiOeY|d)6!H>fWlh@`zs3 z$O@QUz^gW-zzA109^Vi|hw!MX2XD;){TzXze;d>PR?5BDSmyiFJE0l}_-kETS)Wr# zYmH30a^n*Y-Fr0SXxt-1>jJf&T zbCO1atW@wx6$WyIscf;0ku$Q{k{Q3D9SM-=Ld>U1atEZ9KPZ0+TMIRJA84kXEzQtx z%p5-yRM088cMP}I)ImL8&NKS-#w<6XAy;)Opa_ENg|xs`a8R%(S(7xpuPkFX;wPw7 zHW54JkKqhXQbG!57gLVS{^Cv~3$+#>rX(2l&Mfx`>`Fp26aqefZ}CkA`bWrDI^HP^ z%f}e=2#D&#xu5vfUY}chPS4RV24JgS`Z(Y^2>s&F6%^QnrA$&>3SR)O7JK%N>Zbkh z8G{$MDln^6i4Lt@@A6ehxaX zcT2dpVL?7Mta-e(Q#CLotsPvd7X=F5%t((Ba?&KH#MPmlj%~n%%BYSD996M@5Sh3Evysy zWJ17r`)#T(lVU5URj{;jiSIvZUikHiGLoe06;LYdk6#Pa*Rz5DrdZXEzqd~eQ@H!Vdaj6a3WFc`%JzhtQ5uBzeRLWX4K~LxlFZDcsmgK#+P#m zHdg14CV2<#pwV_h2OF)%%nU~r5ovAv@t3vtd$TmxiM1a;Qu2s#AJ4n2INE*t9+c{6 zTo3k4eYr_OwZUDgrB*f1m`aWU`lto%53Ko=J*2WTlN?JqsXf0qC4o!PZs8m3uKFyX z256#F=BtB&%Y9w2y|LAbpquc?4vTy!imPbSml_W-My5~the!ycleXSPZ`K60YBz_b z^PhI>y=i?odG@SOoiR~SMiVe#OG&Ns z-t3neFR{4Hbk`r7c3;j+X8UFJ;|nuMjTo$ih63^^sIpvz7z;RJ9-1#s*8tGDrEVw1 z=>RC1xc_}2f+G852T7 ztp*_(i;C?RDJI%uMMgm`mdbNc3FF8KC({I(ia?N9gR1QaS*`NlKY|>{az~D5)J`!# zLC6GN*L(~skPGUW`DIn9y%_V;yO{gIv}86VhQDb?wSndiYbgYJtr==59Q-x%(t9UA{A=?w zjNeLtpm}+sS-vd4h;HWW$x$zm@QAJT^mg6(1U(vrOHcDbpDsCO=~QSM_7KIgG;9sb z3|oF*J0mJxA>Jjsq*c(*qEoKLj}JooR`j)-*UQAu2U~Q zbS|-by2-6b(n=tX*QC+dWpJRIqfs%UB-0ookzWni^{;ZdRoL3zcyQV@Up6ig#N}TB z1Jfq&bc@qATqNC??DO6!E*gPfNxSXy2{LfxoGuho=DyHx=T1zqO|Ku_8@qUCGogqF zQbc6uqA2B`%0ureNwMasEqS*D&iaM(rHh``I6Or|d;bO{G!~LP3oEh?Vv%-XItRM(r;3b$zfTISqwSuwQC7mn#MH~3 zuup_N50MsS)#wa`(zFXKxLrWd(9xIIWjA8sFk;G(kPX%DEVAo^2A%JBCY?DV99gm9 zjU7*R_U3bCg(qnX;;t5NE*dnHYl{;pcb9a7?g9yF-X>XLH4hIIucI`b*0gOK`asIh z1Dz2=$I1oP_t|2$fl2`%&(hD2CRZRF8^)I*7?5oZa)|{$HSYy=k)p7n_L%_&2abtv z8;9HqSW*d zw--KvHrK!jrWrW50rNib1n8)jnB4kKOz)%FP?@ zH$q5sZA|h7!Y0vV$&^tdM3<-^bAfG--Y*CA5m{$q8!sR8Df;1dpzR zhZ?R|ibuaG3Y4VS)C@(RiIT?}+%FCu%&2X}kc>SsdPh-Q;14^ZzdVgg=sS4E2Z5_DlhfN7G zWp1rVx^BI>Da9YDliMq{SO7Q-bFO;Q12r{*0=xH8SYb3Pm6cdvk4GI;j|SOu7eMlz za>uR>Wv-|pqu zuF(Ci)T8A`9~{APHK;r8nj#|g=y6W(;^MyBJnXbnZ28b2_q~Gy!HLE5GVdr_hjAVw zD+Pcx0;xazJfwLNpFmk09Kegkvh>9J9TmQstt)+)>wEJq8LrtH)s3S0F)93@j0jKw zi@Sr_euVrk@6!I}H+B;(xt$^sVLlnmYAh6uCm~$veBtvU70^Z@JbJZjFJ~9iCmrG^ zP!NF>m3D*mC%kl0&(*tC%`pVhSVxCZYA+KkO7Rf1Y-g_Xh_V-I{cXQCm0tz43$DK0 z96(2x-6}F9EMvt_se7-MBZH54_|kR@m@_Yt#n1Qi*=Q28nD|3tUf;qm%*6& ziJxG?NqMUM28t2E2QOtCwjWaQN}W&cdtKN+Z9fq8@MxqjkLg4qjh&$}>%^vaINqFp z+~j`R+Cc2Q*52!}=benZYlx`Gik)h?z6zD1d7Q%-M45o`f%2V{a8gOFA*9*;lwY!^ zGWdht!lrT|1--GS+v(SpC_cjuhNE(y%3*Ky2ZnRWih$gq-kVf+$+s_*cL_w7rPkB3 z<{?o0%E-jT7BX(vB8ZRJqIS5t?CcsCD1B^$efr~4k(#AfQw1wS@~}qirDeG7xaP+4 z6@lxbsj!+sU#PaoKl0!o;lTbFklh?{AtTldcWH)lF;|tAxwDem%%i5G`*SNU#d56i zt%j8sR`0FvuJ(+<9%9%X=T5C*K9bupx3kY9Q9_ZLELEs-%cArd7P5KC{CE>DGpE{0zgPD8$lA#$&MiX7W zVmBs`H>7#xxw7n-4~zM(`0V)t&fbX{r^|SL6i0}-(x&^x2_(6#-#|VxGG4cUikGrc z`oO{2xlqz*(4n-p!t98%>Xp?{DlloL}37Wpk4X3+eO?1_e8wkc^MN#K!n7US1q> zbnFjXBl9-q?8G7CeD?LrczcQg(<*H_%^Q0bQr63Z=MSC@or=$k(9#q??tDiXTbC|g?UK}+2fnIfr zb#+azH*wc=mNS{&>Z-zeS55u88>^YFKzC|Lh!)4{bykw}ZY;*cl<=f*kC8-u$cSBE zqc_5}OrzO)BPw-he8?Z}Ni$@J8Qewlxo`cb5-%yu$6zz$3Bt}1M?H*QEvNWtbWsK+ zep78RpPTq^3icrozqR}a+iIVMBg@`6i;fpNq;tN+`yaj7k5{9#OA73k=@MhI?Jn?#wjZ2M`rnr0!J7 zxEmDiF zDEL!^i-5WpDR3AmOhjhE|5N?Qquw9>5ew39`L((Mun4N3p(ts{jMT0s`AdvG#*Irf z#lOSyGbsqr{#rtU);n%*-casVt!NpYqmoS3eb6+7gBN&&eJg zxq4V5@ahdw>qy~LfN`<=X51msFM|W6Fs(2z6 z*ykQgTTjnS-fCCDeb-C3#jILeD+8nP4$H{sqdcriOWs)NPOG{KiHCT)p`lpQnGrEY zdHtymU9FCN8Ak#W5)$4*GUM#?_*`XU{b1I`{)f^OYq&&2M0E;JVkW`IA(QdcWHMSD zki|oF8g#1q$VTlB+hdMZVwtqq>;K2qSBFK}ZhI?=goJe0&{6`@rAQ53N`t`A-3>~2 z3^{ZoE!`pA4FgC?NO$-5@b0tsch3Hoxp=Ob>sj|&>lbU?R#rF1`wq-j)0>j87ch#3 zME&ko6a}|sO$;z@(RvH!ADZbp3*uryH7~&vcW_=~a!uZF;9WiEAKVMtjE|c77@-WB z8VBQj?$;cTo5qL1u*IOPSeqj`ryRO*hLCN=M`PMUosz9Z7Jk(Ic|^TVv%C87t(j7$ z$ez^9AE)ffFn2tuj{{31MBpTQL~Wc1moh8nnEh;>&18l1Vp*7&iCdPo8b_LMc|U?jr{uG z4A_VjAh$BC#C+ST49l;vmo=nn{$+-);VIMZ&QaV^c(}^p+3#zecAe|1Y(B~&3=T4_ z)Wp8QCpT9v1~HaH3X)1Kfjsw#a4_9iqcm!*O^yFO7ggl>V z5mw#G1xwtx2=5m+dNIAZt4)Hfu_S0lIC;6LMpeX~#5^yT_>4djN^fL>6(F>?*Am2G z!Qt=lPDi5$%?7ON6w<$n)%C~%W6otg51IjGJ#=Mo6@=l8541j!jF6iz(%u;IKa+Yx z!XfLpoZtP;hTW$kftasZQ=Qb{p0Qfl*!lLAf&l;0RzC*Q##Q;O^6%&rTqAjEDqJ`p zXpdi0N5>@woEKnHv$IY1^(5r7YH$udTDpzue`t!tZG1Ijw$8`b02oHe#Bf`SY7qLAFO71CU9!kLBDQ zfIPLgM_T0^-&LN`e1rxsVpTt$lO`1=?c{PMaq#&#)1d*IV}5JUd!E~(;UjW4cCU>j zK>c^t&a>UWTsu?^x`MW}8N8Ov#KnaNtjLv^vbS?yHAKnp3n^)7_G%uwPx35VKGC=n zLyZU?Gm^phU3>T*XS|>?jK6&WmA)9%d%*qm@jD%tEUNe3oWrxWucB&S zKYU1Yg>R$h(Zi)OfxBey1Z-Lh+&;;Avt6sBL#A2`ZS3z<287mBz2PRT(n142+6bOR&+PPPmfr+eWRGQdpkA>fBQX?Fm8W;_=G)CP$=^M8-6GPu= z#GLjBQM5*~NX5mwXB(}Mcmno$3bn1RS?S1%Y%-RN4AaHXZ7gilL36TK=021?q>s07x3!y*qtvp&7jbx7a1oA-{( zWuD9AF+M}CsyK8n|6Sq0W1tS!PU>66OZWtBTjwKk_~@MlYXTO)W%;x%{XJyI5&}j& zy07O#mxr_8^4*WxkYxj%G-frwhquq4BA$mjm~G>5JebIykTiU05y(DF(@jQ)TBQtsLM79XRDp5u_wT_4%u3u}(Pw+H+BnimvAELOAOj~zWnxKp zSpV+Q_N44b$_9D!x0?)qlNu;i+iwZUnLDV=^a6lOlG;S>=9|A9SnMtPy!qXbKS(9n z@Q6c1^vi>)Tf3kk1=o@&>Rn82tsP57kMlm+-jEY59<%SIGlY!AUj0>=$AZ^rnsLip z``O4ekD>d7ru-%SnV<>a&MOb9>^a;e$>OB8ToKMrq%(=1%dHo^%1v)o%_>g+P)X!L z=X~8L0O|w8@K1u{GjO~zj9OeQ_0pCH*2!Eg=s=IMkUKq3Yo9Suj2vV#3>g)80iEAp z1Px2%dRj+UkZvrDQHOl^#Gt>xXM`=EE*Rmo5Uir4WG#j?cSH^9on@zP=+A%i_%ON) z=xd0R2aT22-4l@;h9FwZLVlL%Y%;R4V2P6jNIof81mZ9bY-eNON?W6&B8gL3fuf75 z9Hv^*un=|1usy<6za*e@SB9(uM1{ur^~=o(RHM8N(@z>U17tYtmRl=tKMvY^T{EOO zwyM|6SUNWjp;LhJc=>sgr!rf;JdVQ$7o=+Da&P;t*pv-$l!|yZ(h5~<3f?(5fR)uQ zv+_rcfMeG8IA*|01E+BTrXe6DAtN`6}Zu!Jr)=#ys6IDag6|XWBi*9%FP`XQX z&%(mO39nbuYc1B10WD33cr2eM&kM6z4K8z?ke4vZmDTP~UAirI>)vQFGX6@vCMb=k+w@r zAxkWwH?pD^H?yvGjy}&V!87ur31HtjjgE6L(}GqpcZ==h+%GH$F1cu!9K?t@?OQ^B z-oZ}x+AE}=qiIki+WQ2?#&U*bdaA6i?N|)X*Mt`uC@AHUH^q5T;RRyL?)^auH- zl=M2Qd`lU8&jHSUIA`;59!|aPzi`^;@yciqMnd@?m4~4aJ4dw*$(w zZr!2r!4Qy|$bh=?`At~7g>1lP0bl+|nt=DNT(!leuCx(F`|{}TU@TCc*TuDY{x`&x zEF=>}5K}Kxd8-+;v?q!Tk;J-szQscXqiXen8gsb)hf?RRlS5pdAC&a0+^5C7tNwUR zf|G23EC{prE2m1Nm?=r;E~|PyE&X7j>zyD#3)$td_iXTTM9mlvf=16a+Zb6JLHwIQOLHs+HK0E9C;5Si9Pk{O>7B0grOnsGGb1xWP`ca2xSq$|(O$qWx^ zDDf_mya#&dVsGA=sZb*oJ+YrijX}4RpuSET=b9;sZXHu%Eoe^*#7?WoKA~9khPuu(^7Sftd9SRbw(=?$`4H9SWAmIQ#K^S%2crfyqc- zyVbauddQ@Fx$ffe-;~4l&=e0bi2?oj1U!`>u^!@nTsE`Ku+J8=BOk*lL|*;T&!Vf4 zoUf>=GJ5-&>f!3~0mFn|awz#cGbSoDOy&qcR}AcF9W?ohc_t8pjUqOf@P?ss`^4lV z6%?L^J0gZ1dsaGUGujEOGNBSx18&tSgL#90-Pk@DSmV#jy6t+SQE<JNJPr zF2o$_i0`n+OYUt-2aIOFp~&bv#_&xoenLaTe&3|Dz3+6RA`e8f9Ef;0mvT^ah7EUs zRgjt8*kfX4ff<@W0*|bqaps%*-99)?KCUmkwJ`GfdAhtd=GLJhab#m{2>@?ps3^f| z$HyqVu1D`)-$E#v1b*ih3Gnk$GBdyQx;YculwW2oQb{>3$j`4x8kHdBbq&4@43&i@ zA{{b;Q*c}#e^4F#n#$L6$4L6xR%p)Rezs-jpjTE%=V-?igQ|0r|M|a=+seO0K~WKv zrw^tGo`cr`VmV^{jM^LjmBASYYb;8vJCn3r0tw+g8ZKY zkjx7NYVy@fvrA3E?&L;UYYLAYaniGKQ>)7+d|3CCd8td0ZyR+mi|d_FQF53kmu&3~s zgl2rN<#IDeGRoR?5OubgaXo@asN<|NWK~Q40I_-CeZ?wN8P$|pt`U}&mgaU(-a0cp zJv}rCbb;eF7LsVBW6QaT(~>?l=s=z!PHz{@KOqxx&fXE_Jj{sP`oa2HkLQg3KkRWc zGA?KLdn%sJJL|vd?w|=&`{7ZhVGCTjwmLwN7$KdTQ_uROrGU0W+|HHxT2NFlM@fs(+YoXnY8C_3oRwRERDI>IRceMLVDZwOF9&I| z5#%TI2iz~yRmNT8l3!Hgy2i$4KRNiPQxc0H@k3$pT@St9xn;`l`An4p42ewW`j19Z z{O!u@Y;2f@#%$B!voGbkCfxmkH+`~V{z0F)>Y^AmPhpVhay<&5_>fy$m(4afM8$;B zpvZL5A$fRM&NVL5_y9XtxXq^kleCVxSgA%8`3Hy?uW|#{<}}>cL9d$@RW&Nf;c{;- z>f1As`o=~|dU`mGgIt5*36CftZH1Z3qCR%Pgz{vC>$bgpXfI~Q%Z;<4oW$?R`zoVc8=WbiQAA>#Ig~?O2f}aG z#*K8DepFvc^_Go|qE{hx-Kh;SF^5RKke6rjb-Jh~a2Rkl=qo&2BL=wMw^haTn9oEB zUA#NFZe-DNp}Z6&zvegG+lrBr=C|n)fE+zLB?j->+u0d+B(h!eP32p-M*?rPG!A&H zrH-pkv(hVX5l+^?8b*j5VJB}=;zRE@N2zKkk>c-KBFND{0WUW2kETj7z&xribUr6z zbapZ^NNh{QN!_!or)vI=|DDT86i~kZO?Q>a09=?F38OphBm77JStgr%HO11%bgOTY%#=xU1{CP%_;{;adaS2tIj1}V$9yV7v{ z>OQ^vcuavt#PP;uL3ljZAG{3Q8voO9lQous?*8=1kq2AV*_r#|P^7D?0;I0>`zy0b z$xPWTYPT#UPFC@!AY?Z_z%1em*Y&`eJZP9i*1?nA;I}(@FD8srA?;s_B1^bCT_x!! zt!UJIK!j=q`VG!bE-ht|h$4>s{^C}De?CHDt1-xnRLI;P#s(XOGdLPSAS;FR##s)V zk)8@hgjs_@4m6CG#YsEUH8Lis=JB$U0t3CMyszld$oSs~HA#QZ@GvML^KNg&1h)4USNTq{4!{3rlzEJ5LST!y_vF5IXQB_th6Sz{DZnxld1P2Yb^3=xtv3PiRQUF!8 zJprjmT&C^{$)z&etDoT_HzWcG2e&9F+L$-Rc=6EGRgkD3kNd=_nknf zAt%jtojm}vT{YCZ>SslgcdCk(kk_<+d7Ig5$kte3cwU&U*3F zC^V7$Kk?OGN~NfkB@=1~mQDl+D&zFCqW^sM4+hEvV*_amEFb194Me{2hfFAn_I3b4 zv@6vMBf{5zvS*w28JiQJqm42ReXxiq_I!3G{7y~^1~!h zvYq#RQjW1YgE(jhdbDZNPp1A*vm>KhMMcWiVp9P|8xr1hw&V68j|j{2D4!NIOc$3Y z`%gN7?|VAemYaDk!8&w0IpV0UE(qt6_q}`P;xIa20|7(Su(&4zVsS6U$E5(ld-SHDVuT$|PY-ce7AL-;$F z!?UI&gXz+@Ekhk(v6|O=#Xt{-RqU_x9I;xI&ZnWVKFMOh5R?ZdP6{@gxFjJfl(o8L zD^G#N`!yY;hCh$n&-HR^0&4-A(azs)l#WHe8A|0N`~Lia*M6OF^GxXMVA^l3mU(~;Hd*EWO@sC1Kp>S#N>Hf%gK1<}I9OBOJ{D9d z{}f=yH*ruNX2Y-$)}r`~P#XI!tp@#7^=`1~qcgJOxo=KHTH*U?ezUC~|1^id*S%p? zL;%_Znr{eS^h5w)lyoMRIwUJ0Z%0*Jp=X)&+Ps*D2C&beAHScE<(~PnH9PYnZQecm z#p6}Iz`|6ZFjmk=dPHZF!zMr&QK&HPSEFMTIZVt9qiL7j|M8`j_0bf+E)dAhX;S># z2r>tIj4SD2;o^S9F4Oh!;ud3d_x1gZi&Mqi3m8URJw~*zTs;hF@+i$tRR&Z*uZ8Yb z(9~llmmeOml}8HxT>S1O(cfcM>8rK=-7i*Xw>4cw@>dCeaA+u3_5DJ)PP*QxBlGs8 zj>=*C$p(|{`WAaQ87Jx=+-eLmVPBo5OCk-kt|Kam>`G)EfHv-h<_%U@^;)Bm&tmE{ zIZJ@;P-aRNr7DWvM7^shA`qwFEuQFwFne5*e-*(euCVM|`Oc7SOKYHcX|3a$#yH#P zgp^Q0k=EoWR%bnK`!zdhBRCvc^7g_iCOQc+F(Q_`^DB-G%=Ej}kRXy=DAN1>CfdZL z)8+R?8n5>qt_1rpW{}{}glq%_t&r8hEd}Ts_$#QIPe9;v8UZe0@XE>uX7&2G5F>U% z;naTMWMuiLmEy9e*jVz)E36gYB7+^c<4ys0QPLEr9$l4O z8pm9?>~ zWyGf$uFGtzy(vFjSy3z)oX$J!0MT;c&CNAPFrS~Em&TarV{M$|o-(j7|6TSwX(ACKP6Wa_V(`{oE!NSP zaci7g1JlDpRFC{~-A&2xU9Oxcrhm++Pg#B0@9DHHHRyk&0Vr4`bFaexd)Q3f zo_Y>9ha&1HlbJqBs!>fZ@DSc*Q4(q z?3q4#)Q&9LXILr)sqZ4q6dJ`g0Aj^>*(5GPmxBeh6&$`D5j*E)}XjIJ0cZ_dAAT*#c zW{39~OUIM_#wVhG+gJ?dc%7*jGbmP$xydHMBg}29=tG_5IbxS4i1*qflneTe4n>Pv z67AQ@#}{QWBFt-m@3f%3hCHRta`PH*;o$j|G99c#*f|)DM|2inS|=c28UH(tlH9!f z*NNEzrq=eKS$^!%U`7ROM2T$nDbdY^~S{h5Mb`$ySB?ZT79I^=y|4jL^KYHA6 zdp7N>8MAwsDIFZYVFMUlglNKv93s=wgf{B4qN^*5#S^=7A(l(cY4=-Z*!5zqziYh+ zYAqM7As{vdg-P8yYo+{*<;JhCT|W>qKe{50C}lU_FfcNH0wi?UVSg|q3`@fR;^dv z&*(NxW^4_CQ1!LmsC;!s!TkvTqz?a9A>4O7)(c|Cl`ls{9^=3{u@AvRH2~*r`E@@1 zE{(e5dsr3DQxTBGP7L)%? zLzZMN8^}*^MY3P!e;8e$CCju!p8B#?S-UDEh3`J@U)BR7XbJtV1BL%|pztSi)1HtZ z${Pk|CVgTxe(qGhj?gGRy1Zf(N0}y|TM~R;_a-MiCaE3Vt5)n`cA7638otZq(Y zQVd{@>_u66znK$*&|vwO6y<4wca%=9adY$XbI>zhV_-BwiwrF+AVnp6mdC1!%9_4= zCEC2a{7JbKfE}7TG*~_E*ZZ_nTrRObTNejTGb8Ib^AZNA6jasSoemlsD`%fjP=GYg zjx`uj8TPZhq}lXlbA8=Z*%d;{QHGoUI>eLe9^$vONS2c4 zSR$>Zwog9GyZJNXEv+{&I2a?xDAz-K%HY-XL8&|%A(^C?W?S=f6drzsRn(!Z0Q5md zSy>KL%84j|iRlviG9fm$laEpa)mcqB@J`k@T6@$!mmRSv{E$yiFQaG|RiHrv3})}$ zGyQwH6URMhp*0{0iz3V)=uaxfXyv&)_#NdHw@2=|A}rfrnC-T#CZyL%eC_TJL_jraW$XJ2YvCZowy^TJXFBiU!Se9z}#$pQ)Mjl)n6Ly ze%nd$XzpKDknV{KMTUg~mTgFQtiRVq5v05B={xQbnoUe6_}md0MC!mgQ6ExI1~b~E^er;C zM?-K5j&^o!vMN_W6eM4lCPAvw2=GY=Ph4dldhb`h^~3aOy|Ug8aT!=6UKH$dIgIFX z(JP|boDY7Y1gR3a-#&a(aqvKN*&Y?H`8!Kg%_7B)%*KM6vQQf=Yb=~Z9Fzoz7@P!K z#6MA*QGjSih*d0oed17CoP(YXo0%5qAo#vC^25R|%3N+I@joEr1IyFlfeIKX{{X6n z=7(vOe={!sGdp2H1=t%cU}j_mz>(sS$%Lk4=gzm?L2b{s{kW{ZG|ttYJ4t79VMU`y zQFmsKO_!7TE;Q@g=+yato9UA7EdmJm!6%30V2TRacqtX7fh4~Vw@6xiXc`KA^p|L@ zoIN`W_X4%gS;gC}NG0`vkpGsvFx z_#YdVfmIrBwC}Y6P&AMAhFxmCeSIBwonT!h)8Yl#2-R$P1lftJ29&)7Xm}EyqM&rQ z8@sc;IdrIQVnTvEm?;fpz=%^wI-YK&jdeFq_+3$XH+LTp-%_IN_aB?j8o|Haj{`Q} zePguZ;eQfXnwB5uXi9`Ghj4;JcMSa7s3i@KPMB=6)yfa*4_nQSjxV@Hfg5<)4{|N( z7@fuM7N)xcP+UIJ$qj%sq}$4+Ld;|bnF3iG$M~;*ic*PUnQvEC}87y`a06C%<*#U9VVCLq=sr`^YuzF9eP2 z_cVsMg_DucBBs0C!x4ny%4mvO%Tol-nI%QWnmzq zQJyh+JsTfBJtuVd)olJ4&;AP_2qwJ2HkZJ3+eyaJH(e7N>+3K9#ZdV#rY1tg!dy%i)19_y{D2WL(A zcR$H@KEJRB5Uphq8ws+gsNmeWdcapwG(kW?0RwhP7GSVqsJaeY+n_O(rg712bDxkm zGXtxth^Nu*lzYg_M|d*jmD0<`7p$^c0=6q}xGiV>b8{h~N_lj7r7nl$NrG;IIJv%Z z&?i^dZwG_7sWiij68%NUHpA&*ok3A6*PH1QBB9AV{4^*BDiO)Qu9;dbQM>(*ZQme?6M@gR=H)s z1p#X<|W#_%T`(oo(Eo zjn3Pu@s)TK8Q3;2hbsor1!ph6f|ICjieE7f}*0W*!)j=Dr67^K8Bia#7Ipbp|c)Y~01_Vz3ngxwGtUBUv%HqeBC#D3-da^_tY*uTtK zHe_d9DD*@Hg=V9Fvh#(4&^ZHu{#zHrg-DPhaOd_~wE&YPOq@m8)Q=7k!Rez+*bd;1r9`E-b zm2xZDy>MUy_5fTy(-KYG;2V_u!y2NK;nf%TKzRTzz7t&)Y6oaTQOY>rviM-3!N7S8FmWs!6psH7FS7e z$*(1m1b6{5kvLzgcNP^HxAI#rY)_R`E~58OwQF2edl0!?6wsB**~pvk#7Jppd0TH` zZHM(yVqUQ~{O=yw8wDuy28$$kjXMM_wSepUe>*IaMV?r~N75bSCq_vRA;5@Ms(T* zl1y#NLT=6^M@~rJhv1ce+|bJz-=rj;@G>vZz;<{1dJZOi?Iw&h~&3qTS6kRjZn zE_lPi&CV{XyVe6K0cKXHfmUJ|S!V(c-1$nr)*Hd@HJ~p#>!a(QHldD^?tP-<9~89u zzMQ@g0=SHR*4A>HX+OGcb5+{*Oezc;+$6nzxZCt;4+N_uoUv^K9?2%VyDM-wDf>{h z%Cv?zNO^((VsjFYiP8GJQ)iuql!i(MQfTHP_s129a9jH34Eq*h=#Y2c*LS3Oe!thi z+sxx4obL74E}Wceb!Tu*?eSJJj=g3NMj?n{Hfryg2xL$rP+iOAlBcwqaMJnK3uJV3 zb~Xil{`unaQSK6QpF92friMSGKKGkkqH3C&{1mqY8+@36y(HRAp+8JK`1Yu?JMKR4 z$5@_dqMOLJ4=_?ot7x|ksti5B>O5aA>r(l9I(X+I6_pPL0wJG|jq6-`=37}LcQD4K z_#v|1OLqZ1m4%#qIKZ0!XDW9eWlD1kJ10zJ$y`)ze{Ki%pO5~zNMQ zTnUQyYGBL41SnNXp{Mq0O^T_nJ8v*C`8-MU(_+}n1I&=tY4Q~UjP??{wnvm=A>5CETbt@ zVdG5O6~w7c&yt#|^58k05_z~rl~3gjpb&n1?|!~x&3E5O5k)E#2<+_nvj?jRHfj8F z>kO>Zcx;gn24;MFm>l+#k0LBm*1EXWE%1*r*!Z(u2hveb{%p82;qus5p zmVJ43t7zbk0Pu(0%2Vv9Y9fzwQDceQ>IrLp*I_@61~CM$yQn4J0~BQkA6-CRUVaMu z=DK$K#eUP(rR=kGp999p3t$^H_<1qKL955x@@-?YqMj%tBcs_K_^95`v(S=@qZi1p zU$bvMoGzCe9Hzg(9m)RF+r>V3JgufRT)@_P5 zq%`NJQFMY}-{=mbz&Jgt&iR>qyt667{n~AJ10=uoF1UYt<@-1LlU89&Yx0mJu0$qy5a z0J;55_xm4Y=TqN^`14B(MZMCed}?a&RIUwhvKP%JUgm;4P68}RrG$d03+?I^mAk&a zDeYUzrQhEjDIA+7HQxU1Rb5f*+Z4-^{Yg+?2O4ReCORIuDoHY+`(%MTx<`=$#nNb% zLd;d|>=?CS5*vG~{_DA?aVhr4VUKQqh_iN!<+P3-ni1oQ0}Xc4pd%Y}&o!>r9`Czz zJ%t|kR3!3?3Qa(0{S-`0Oaqc?dpRd3_MRu(1nSkMM8?AJ$XtS7LVUy#iVD%MdFm=p zKu~BbmctqEh~k00v$L2>s1cJ|S^jS)5^^`weDKf>fRaP~{b`!p<0=jobBdBV88rYC zoQmx7&Js&9{BeQCvwxWh6bXjTD%Fy`Ss6SlrnjSF!?bB;M|!eL$1%pPY;CDee>qop z`}XZmlTmNacRuX58ndzvmqEiXmTpgDM&e2VD9jB^ zGG915|E=kb%HZfXu65>4lF}F)g~Nk=UgNVERccW7L=t`174lf2QCVDab%?~Wp@$~Y zf{%yh9IiG+^u#wu$W*tKvx;}_e`El{+ox|9?Sprh9Eqavzx9NcVFKSn!|;alZ%Z3; zfc|cDuCCVHZ)Csaos;cLPo4eidlwWd%X1fwVF&ISI53ohRc}j$3B}!8+eN3aIXr}` z3$<#_j6ZMmM5DV{$-bEYWu>tIs8j#E3k)yyWzmufA?Xm8@x%^5~|e z&5sVGp$6O63cSB;(R_|;5pY%&dTed&vHUeIaAY26BI(!o>=Q^XaXdQvdTF0 zUa}}t@!xWp@BchL1Oh_SxN8Ck-?8;hH;&A{49^1mtAk4S*7BTH_8&DLmi~cHyLj8XQF(!ma(V?g% zeB!lQYJy~EdJNC;MCu<|XV#c~1ptwJP?Ly{$&i<|C z2I$C7+MXaD;(4Xa*ZQk-ImVM&!CKG{-1q5CD;pbT$+OjFOva-y3+!>AD~)m!QJ=SF zp@>y>Xn;*(0J}D75*XojwQmp-2V|6zNu$C7+-%VfL;Wj7nWN?c)|;7G_Quivst1%A zzXMM_Y)dXA-G-Um07QA}WmR5d#jHWfEngV*KtHrI+HFLn2&XDHm zaWA>S$$1UDVP{Iy>#fD2LjA+wz)+8ZuIojhxSaWPW;z79kF@3Pgd{lhAQTvgE(`NI zf{Q%1j&Dr?go?Zwz(>eM=t}*Usm|*O``zI(xdoFL3`&Dl5xyp5$ zepzlQ@R1?`!U2XnA;sKlGOrhZwpWHoc9YQ*3B29QfMY2a`_$e$=vJ%A1$|q$=^y=z zqzoWdWoDrFvW0XBl)!n8 z74qc0w2g%c883M7`1-wo4aNJpEZsk&mrv~~_dcF{n`N=qGwk~47eL6jn&QYRlLDwF zodSnLpMVzlo!f+K{k!d5=E8IXQ8iCj+yrYb(BpG8GP+*5M>PsML}e zCVJ(nj&+8jiGAk%xThobvHB>*Jz5xr32pY%#8=9qvG2dN=k-s2{mdx z5wWpj6-UZDJ39eN^d6i1z?zPBH^(T$09ZZpE-64B)bVMU*zxh<1@i?~1kn4w7*N76 zCY<;pJ7ia)*^*!}Ors(thMi-TB&9A^QS5JF#CXN-K4lBIA0|so%6Yss3cPx7%{8HSNG+A25PFw0ciODX9#>A6D;7OfSwA5#^T!GHJbN+ z9tC96f5VI?EK&MoNG&x;c8Ui6JoSO{Sd`A0Cbd0l$`u%AnYIlS&V3ozUJ6<r!w!u^TAZpoSo)CBH%4vUv!YyP%~+klam3S2OZyFD%lXgNVoN0ZB;27{argd`y)|!8nepj*IwxrzaQ`HjX&V{g z0k9QD_%4%8xEa#u{-L=_hW)gKpddE9b-T>>gFON3M=l*zs+tw^7goTBLii9MY%I7g7HHSHr6!~y} z3lb5baA3#=+p7m*#KhI74)rw0(ks}V>JZY{l>iRh*(wu}-a68H&wgzc8fNhI&SDe& zfqqdEfl9Zo!2~>+4NlF#+itnz@UyK_Nr8VdXcL$kOG(N8)-98uBK+GB+DB8$EFh3F z#A&w~7ed%Q><;pt&Od~%I~|QFUF=fR1?YSL5E8?BYM$~K_OBgteEeuG6rI-uEZy1S zgF}C}SatY+Ek=;!wF%GH*~t8|AVg?2Hh0q&Mtv0F>}U3!UN%_}7`Eh&>#bAP)T)FK zvD*FA&&raRm)W@ed$!G)G*oo<*0FGm_7F!1V6EwFuP4M+|3b1>X1&+<=YuQbURGCB z1bpf>y^^iR4A5Pgb-iG?ph=sV`kOBpvzG!SWl!HCr_uQ$bkTbq_ADC)(bUqI#_MMj zb>v;$fb?C@-`V71a)lP|Yxs?)jlK>1p>!tPyAWW=sj(PX+JYB4lpVOPADrxd21vnp zJc3tf0;rU)C129ou(7FpFg%_xf+Oo}FdM|cU?FjF?{O9Dot^D{anWO(GI6V-ol0<* z-cX6p$Zn1nB-cciB+`6TZyj0Lr3E*zgoR5bSJQsJ2B`ppsccCOCnu+0O)M~pm zzn(ZC!}~XQi5<`Yae)sN6*cJtccj^5OmjjTcn!)O<*<0Wk?hnbHQG^a=JIuD3+r!CbV~zwDMJAO@VD= z`})CpE@a(y?~7GQxatLfHv1ThrMFhiWZy7BJo>de|B9+#U*9Bk&{Reyc)Z>wwEz?p zc;kVT$#I;)NI+d3!6rR2o-9+Ci91YOHTL$ovY;5ow%?Eu$0kb(<7}lZ{@)Wx)T-*Z zPc&tSuM_`#hh460jjuuC=4fyl*M*B|x&dsayyV7@@uU#^e}+sE6DYAoNWt^|Kr$H) z{Xk@695PgMJfxJ`C(DsSkv#pZx=K1T{!M)Z4~Kv|lD;LxrP}E-u%*U|iKqeNX@^LH z6hKHM@D}su-%u(JWDF~qr1vhZR|OBte+1@NuMr)*s!Ofj3j@tFafaI`9VKu4OXnI% z$0Rm)@f%QIFA?{GVD3|5=8>f2;vy?<(;gHnn~Y0iC8ipT^;Kr&aRXN-STX~{lF%N2 ztOy2X&vmKq)yv-cjsgR?wpU|V);(`IQmQ1v2|LVJh13HU##8AGX7N#VkTA*FNtOYB z9HU5p0j^5ce2tYB(?=EV$o=0wZ-847c}Oz%<|N+pOo9P>Ur!aOjL41uwj!SK+F~KF zyQ%VH(TjiY0titS7S^S+E0Mgkri+jn5%RvHnJM`l3^@24?tu}Ag%9cjn`!Ud&usf7 zIOo37!53OQGW6|23=(aL1dMTcej>uqgMg>w7BB=(JE9q%%#2a_p~cGPXYYR{o}u~^ zr)SEIcd<2&et&z;4NYurt@TQjbCQfCrJW>O7)wO3AYpRcpMVJl!G>+7Z!6emviV#Qp(RXHinNQ*a0q5D++o4vn(r=Y`DD z8amnAubjTHjYQF_46#32`Tm*YvZ!tj+9oeO{Qt=M%7Coerdvgjl1@o!kZuH|ySuwf z8k7#{j+^e5?i2xOknZjVL6DL>7e4QEzVm+PrwaGI-Fx<2v(~Ix6PWjzkTV_d4RO1g zeKU9PIy-n(bnNhMw+-39`iWF_%my=!oHX7wcNB~=eTqu)|IKSRUHpQp%O$svlXKY( z%bt(H}_r*H+^4IYq)-mDY_f&r4 zJs|TF*u+4MrKSIh>R{=%6Ycr9z^eMTe=$X=5WhW%@Q}_`vcyhi2)=d)vQ-)u=BR8V z0+1|?W|)wKP!c)EkJQ5-jI$&R3@iQW91R?lSndcI={(LM9j~!huI;}YNr}IM+qthZ29-mWKg1EZHyOLnOHvNw$>#najiHo`<%?L*8kFaH=n3$K#! zLyNuC>U4mF+8_?}If^)~n2)s1o|%63DRU9RX)oGdi2*2^kHY=Gx|jeFcmj3HwC9eL z2WXOaTv5enD+R>AmYnN2hxmt03$^l~_w&88@qSASqdn5|hJrsh5SyVsz_9*+8GQIz;c8f#LQCKu1C6UU0oTpn zd$kHG5;=cx=k}7mNt-T+YYve{jzW%!bmH{r@8y`cpqd60ue)rpO(Jlv{u~*J^thzc z>0d{(kwDM+OOl6^JAdJ}Cp@WQk;<|(JA2GVC?3hQX5goLuzlRHRZX)z2jj{S2|k=C zSG;Rkx%CeD2Oss-ZGx2c2{0p5nYK;yb81&H=}+I#NGGI?c6XK9U|UR&I^zAF`Tq+4`5Zl%y;*zxd`p`Yd!Wd zlS|RKyh`krlFYjs3>sI5qd9obU+YF(N{7ADj0^N@;Os&}b?Qt2WHjf2NWrFSHX5wV_uT1uijwZS1&&%{5u@-{s zKEvti(jZ7`U3i>$8O#jkr5vle5N*>-8YTWF<;skd+0d#ofCqMMvS@J#70MJD)<8ol z<9%!wz`#?{TwoB~FA>*I55J^TX37dvW)x<}fBk)PZ@!jC&7tk#_k?vwAum;rp~)~~ z+-!5LLwXi9cJON(lX4f}f^kLkuv^40q>X(a(@8cFEP$>2x)bURDaMD@YW#hfTleer z*J58vN7ULYc>J^wb!GOTPCzKDe(b$L`0rDB%;>4`HY!qseKIj(hk8d5I5#w$`!!xJ zuc@_cq4uxSnrzBnIdc6;K2Qo(Plvf_BvxuC}!9L(R%d)hhD zU1srzr*A+h=hVAQSZL;{fr+8vB2zXF$Q$m)E0NWx2RIbx;PB6I*oo#BPiCTj@j;>B zQ`3VPWdV^wf$Vw3b6UjT3eFo$jvs9W+$P@Xl+ab4PAxVKEHH4rTG>2#N!nsyH~6kB z{Cx;%SXYwiZYhy$*b~OL;2kixXEg1>pouPpYKK9`aJuq%Qm8>pWLF*R;^$7Kt|}0Mf+mn7csY`Q?}q$A+=Mo5<`#i`D^g4 z(O|ayC$2?RpO)Urf-n6$!;8Omjy}q2%>amQo?kdM#Wtj01sPEDcq26XGoC8hWTWv@ zX20wtHK(Sc=V1R(ca3S*#?kzz*6R%?%#55`JHRwF{|)gw_g9SH&h?v` zxHo-#E?DD_=yIpQz&ngQBg);yXglY?@I*sW5)SC`I#H@>#C5eT)L{{OH}!{@q3}EV zOyjmm@5ODEZEcwpGWrajS8vK}v_!*?k;SB>1OlXxCQ_4ie-wO8fXA?7=I=teh!v?}c860ciVu{tnKit})D z<-`2F6m%XDQtT;}v~+Z!;yW`14Fr58UoO^uBwk5UaU;5RLt(f*yJ;VB5AlgX zz=VoJej}uwwFU>>@`+=R{etvwK;Mu8!0Qz|<(kUlhoJTtF*?xE_S@W^?mZfeDa8&> z|FDwgqKKg9Iai*5Vm`cVMCzD4UY;BfD6_5451d*#8;W_`Cc_xpLO z2w`p;a(P)Vc=}d)dy%7b-8;=Ey!xFSa>iV6Z-IbEQ8}YMUe`DaT!Jx1;-4bUafk@TacOfHDe$jSmtGlv?nHRw^$s{%x1t#;1+6qo-~KV_#p)c`3n5Z5Pg zl}7s1tuwEkq;|~csE){g99?ni5Opi?x|Jt%Klv6SfgxC>ek2w-Zhn<+EZO2Wnc?8ug z$SI>eBAQrD)DsQE0Ln^GASOtn6ct~cU-sHVw+xH z8^*<)Qnhb!LV3g9Y?>o2OKIe53zyTmq(NMJmr+gL4Rb;BuK)JnmDZ0E*rtu!;Q9*} zLyqrQQE2ODYT`L4A#;pRS0BOU7uJHE9yTECYy~f(H7g*R?<`w%VoIdB#xq9KNN8tc z)d_~)(cE?jyzlbV(bi6=vT#_&;N$%GmTrIxDk=6zm%4LiOvTc&uAx`(8d-jR55$*3 zgnw#alGNU*8C+W8wJC5F zJs%%^_}#|^Yz`Q7qbO7MsmSx@^Gc;7c;e!|wLyfE$l!IqO4y)J%#hODk>jXu>%txpq^je;;A;#g2otyrd-YLhmaP?I^}0 zv3J%MCkhJ6fS#JzBN}=F>NgRg6x5cp&}lF?#6jVfAkeQ(T3uHZ^0@u-rA+6|g|$PN zNcjs`WJzW_t3Aj`07KlF2;MA#)ET;Hh^$dmz?iAI^`afIh<;CUfam4!ta~_MOLwLv z`w)$LRXnM9#y)q|R?^FcnIj$Uonqx6lvGj}v}g$RZ?q&o0}**34?^Z5i|m*L{Gp5N z4R!=&;tt7Mp4V>m+g+srl}1o90`%}r+H;0&>d*WMmU7+6=m*@jJyW`8=U|Y(f^)pQ5x@6CN?!8-CL8}ii zK;)m@TAiqzc>>KI7OlC5CwhHlp#}HMNH|J?*kcIM-k-*cQQ0xbJBXoYb#w59zg#qw zhqB_bDhnS0ksoDGJJtJMwfcx_Xh`zO?8oNV^mIb|q_G`&jPC`!C)Ldw zEac6M@=NplZ54YFKY|8lU_ZOoc(Lboz&-sNm7MiUYIqck% zMd~pjiU^v~24BKRkU*g#T3p*wXGxE!Tat`r`x)d$klFr?7z;QMF>EHeO=%!}UWE$K z4(PyBG;=xs#8iG#tHAAgpV(TrDT!(Ww+sbDcPG&i#z`&h_*4V?Fo#d~8 zl~0q&Eh#`_7S(Ku^TC)Nj%>ZQebr71{<$mOqi?LvGI$++1Us2^{&gFJ8WYRdrtHFr zK{rau)B7SLP!B#wiQdjO68@FU8g{_Ybb5mSL2dAOYDU!Y$fcir`wv#q459U%7mKh& zf<K-to++PUg)7&;`7)-yio3s9yL(cNjG--2x*Xa{~ zbS_e0B+QYSY|w{K&t8?$z>8~J7(cx+xHM1{)3RLN?63}+SRZBgSXjn-(x2g!rQAo_ zuq9s_OTM|e;vw$n>4A^7bB8vAQ~>MW&+k3j1W4c&v@=&Crc2e8h5?Btj!*?6Ib^>)& z6D7P$%S?7FHd5c;_6#VSzdIN@^*6ZrK}QpE5Q*KQ1^iPeKz?P8lmFVTa)5m0w`Ku`}!}gP0ZOE6{ET zubV3yJLY=4BwD6@^+rgTQrhsB)VYh)JDxC2)}qZGoQ89Q*}cW?e9WVTd(jhIf2g}E z%gNrAzQHzDjU4GTZy(o>A8W@7j^NjC{)v#Mg$u-8Rq9L;mxB0%h@s)>70A)S z-)>jb_73(hDM`1t6-%c776QnzW7C2YN^FuMSzgsy6QRx$3{HZ=#-C-T5Hbm<;~UE8 z=skj`vc@O^G8$KIIBT5F)(#I}eB_*6`Az?&eUgTTw!;SWIrE63|#IE^T z922Q|`lYyC{I{5AdLAA;L&HM`HZ~&09?)RMu|E&G2AFsX)v=G8Lx~KkF-zJR@d^cC z2&pS5JOfgt(0zEFrcW@1g@t29)r}3_@n0zNogFgU+lk}il-)79JiVx(AR`dreGLi< zieHzPaY9M(^^D#0vAJpr8qo6cALkjz3xy1QhtoJav&d_@rdIqak=I?MSkmygMGM0S z`Mp!g3r9~Uq(_ZLj#3;wNsFc6j2U?!*|3MQ7PUW0O1}1_^d^Jai8t7_u#;C>BAY@P z)r;~pzlIJXbq>XOL*#OSrxN~x+ zj8R!Z8AD3E1ud?W!-p8F?rAz_%Wk$v3#xkR;ve(9&}bwTaOYLAlDcFI&(wSWb1?=n zPidN*nlBQbI#z)5-m8#=CMd2MIp-Ufoe1BHu&XrpnM_f(~WLJ4HBx@p-)ODwT zJEx$8bD!=ADk1|DxL4#Zp(4bDH=2{<<3b_P@73h4{0j!gI9f2FlrRg}D9Fikikmel z)!aPXl!VmL3OHnAixrG8g&tbmFSw0tyYmWL)C!ekQ_urmlS|Lf&*wHZVG7~0u&{LA zxL9v>h*~AZd=bg@kSC3^U_2Xo=d46JO^M#yeR96DgH29O`J=mJqQ)^97oU`x3ANT- zKKO;CnOC^P7&pGlb0j3BxvF&%TxAc-{nzAHUZMkf!(Q?USAnlMd>(94%o1W#0#W$y zpvym$f4WG(F%S!Nq72i^)61ez>9sby2lX1Qr<=1TaY-?~ zwuPqshMncsL$^C}khF~BJ8Z5blXtP;#3xT&?eNpcwiTJ5 zQ)Y*P5S-}N+~iwD@!JTp(ixHNirk=++i4+=!E*(52_A)ED?1TIpg%Z<96`rKv93}3p)y(72$b)Yyy_FIk*)T*xzbW*0+r%^7QD7*USZ53vJ zNj`mFlz^lv#s~#AX=6Szmdh|?$^{X-_ok|rDd=+ovyj)(+P(zKHdDC7pq1Up8)ZGcmIR0t&(Mjmb_t{Io4E^|-mRwsxMM*sJ(}Di$;Zk@FyA6x zlhsu&9TH^s?Scb}MzFlB%zvl1fs@&`$pv}4MG#T<91qo>3{h7&=f^I~|62?)`7r~) zTfxltotKxA2^r2=na+#-=iMhZdTdbJ)qU5w;=*M|iG^qKIBDL zxA8w`r3(p2SuI1*SHknqEqf@F1(Ee3xl>C46TEfKb*B~kgFzKy7vOLgi_h7pI45@* zhIbT;DMA{Gz-*QL8n)}3X8iQJ!h~SyFUXOQ6|i z&2Gr#i?}Q7FzX@v!pSPGV#|{Idvbhbp4m!xHwZlasYBK5%A(Kka@ZPNJy=AAH(%N^ z{c|zY$L7Bf{85~pd#3ii%|0R-feaSkV*lU^4(c%y#+U&VX)!H(B|3%bu!ZfR@3%lS zPaV1w>8%L^g02I1VPUe|yvp^xQ)Se%#H6HPnLZYUy}bH*T}mG}<+rmz!Luu>Hiwm` zwo<$i;nE!qKY8+T+08FsX^IO8)$q0%eAj6`-(V##JAK5t-7G3I7TV($g*W$k*t9bZ z(;4+Lt^a8L?K4(O|F%)iq1>mtDv1`9J73k`z2wFjQ#!8g{5dtb_x4*H!VWDW7SVQ0`v6?5|fKhw;{C~AtN-7PCwebxEX@pJ$sN0wxv zrP<7B;~Dli%R}>|{qp z_F6f2CSMYx+U!EAsku3dJ{gY*kHq=sQaw%@=lh86ZcNCyCt|a-s%e!Fj>TsyLPA}+ zJ*DYxdma#c{|`J8zyK^!0eo$@mkE?iHb2xxw6o}i>RGhwenL= z)V(sx4`c1#Wil3iAMj^RnL7#be6Tde=NIq63H=7-cX*R3Z<6UyKio4C1~nQD1AUq zL{S&Zu8zrDAE6Gh2?wO6+`2MC@rteNx)w`Plk~sQHs#xq9mp`QPU2EMR`9a6SNHD`_&I9enL6%Y^@3*;U~T+2csz8_Hh5;O-C2rZ>p~yUEk9S7$_WetWtcr z(Jk!k#FgVUG%8^*l#Orx%&PX;4)R$l=}%+lraDLbb4k6)RQBN$R9cRcieAUmsmiw5 zUu$)Nf8xY=V5~k9&=8457Slu(^^sI?X;X@pwz6)v3IdMm5hgpY9L9V>#8@+#=kBMB zf-5soU>`%yR~I&Kj(WpAgBQUt%7*wmu!O=rdoMPK{=FFrXnx=TBX{!4Z3h3n@osz8 ze{bSH(e&T1EF*X~DINrplrmSZm{$Kr-nn$g>Il*gO1bs?3h(`2f*|NrM8WMnf#ki)J2y5k1j&D#-9CWVgi z@6TOb8^&fIqXKJg7Z6R;mn3DR1l`=+PAp!$cwymf<3UV&i~OH-^qh2TIdI0GKqd15 zK{j;OA)F{0Y(=RG>Pa_c%BaUpiLB=mrO^dBkItp|lMr}h%)h)-YneH_{b?$a4=f`u zkAyI@n*4)~a=k}X#z}65%#Tc9i%eM!36EZU@VdadRTT+H`-funa}Y8B`Fih!dcy+~ zAgcky&%yr-a=mXR{`LkEwOZsg#a zNLgE*$|$@BEg_?OKxgx|z)iK}RAj;N8j16UZ2Upk5pkQME#>OH@b)2%T(xV(1Ef4-Mq^+Q|G?+#isv6KZ zpWNNgrF8X)dHqNERvDF>1IB8-m#t{Ld-|x>yNe|-v9Sjlx;H4=CEGq3Y%5uHg&*9? zAsp^^Wi$dl)bU6?w=yrTo0%lCB^I;MW}XyU9+}+Xhk%}vfQO8vg8c2aYa7xy+_FO-?-{KuwMAF%D zOe7_+oPcUkrsZR$wr9!2?BsV9eb}zAfjxpexgM+au+z7QQl@;?DKm za==+b=FGQYgC|FCK-THv-}E3B*fDW)a zvw$$!*WRNVQS2L~W|8g4Qx^Xi#7&>-VSFX~MqzR;Xy#IGUiF0(HWT~Q z=TGz~Mfrt=>%@=lI2nYx*nR+&~qMr7i5QNOAbLNKc`NxQ4E1^DB>mnq1=>w%4-Bxh#`Odqsxfz&G| zBR>4gmv9XxpD3HIl@&RLY@gp(K7!ufB$?h|tq?S9XaAf=)K5F$dSGQ`%^clpWp4g? zYRWl1lADU6G!mcKKeFCMe)4`LtmjWKGI3tDk0g3h=}~3OGAY^U_ud)2(f7Z}J-xif zBu|w2ZuT%lGQJ7`_zZP-ub`*s7f&_%hRuW})6)?{M>joTVb&X#2^kq7$NDt)kJ840 zhra4lWU1yiXE;du0`xqj>UE3@S{?SKrNSSWaGTt^T!%3%oE-Z8EUD=9%Zh0S-<->T z5TGe0qjRQ#KYCN58Z*THeI6arUw7?8Ve|&;tSR^G8wS;3n!4EF(9##_>LWn~SyWUm z#X;PSpvCc2uH;F89F!DO)ANxaeT+RUzDJhzzYx@OmnYJuWf<-%_%BQf(G3qjC~;uA zcsubn%=JGk@Tr);x~MS9MA#%s#?<_Q+HNV z91TK8={B}yzQK9#bZle|Epu^e=3F+qEosQgJuHymby;bcrEpH+B|jaWoG6s2aS`dY zV<#qJuNudsr3F7etTq~m3(c@wbd;wn26j= z2yI)pifUm0A_fqxviw-Ee8_He-}>)lklk<%0j9P7(80!)tQBQHtV8%z=^7XS zNQg8Plr>HVHDC(k=%*w20miN_TT{6xZlz|d0DTB=IV3X*+3Y133F#CPhuKTK_t?jG zbL4MKDt-*~G^HyAqy}-klZYLpFrjuL^MdwRG}No2J)(OR3@t$JoRFZdpf#1hQddT# zDNQZ`5C3Ck=Mu9VIKCe({dp&s8P$!EM%>dG_*+3yGm!sryAm*1*R#bKMJ}CJ)`cI$va^Fk;wE{CmxQH;yy8JZQ4xMY zFkx2;>#juhK_ZPtI1XdS1O-}+Tx_AKsiow;NsvC?HZ(Exi|7&X2A zzgX-q`pt$1$YCNtbAyk??^IHNPN>+*wxc?&x=9bxgDBRw`@>g!7+NeHlt>6pm%V3_ zIaM6Fx&!;f|1dzNpjwum4`}u_#Xv=zm&UhtVA{sBJ+s{%>@BZ;qJFBCizcGN^YcW> zodac^vjanJAn5rMJI&0LOmF;VE*a9LsXP9NNRj+e+iCf2f+76AEOnn=zx^eIn{#PG zj7ABZBVDtw(FXS|u#)at)XJqdGr*ccdSAz+YWTWP+VrquKFwfrYGp-X>>U@}9-VkDQKM z0=iAQd#DDgD>d4ncXrGiJwYLc%AzgLObIXBZ=1v@zWEKMLDEe|!UzEHGe}gF+}*)! zdlBFMdb4?EKrn3NW>lQ~&-=}+6CuG}-r8-+x%tK1H|+|RUSKQR$=-8*6__VBR4`=` zS0CCo=UW->w4yjo%3=Bfh12po90XV#4Mq=K?gx?(n&B?VxRwL0v}4{#;%FxDTVl9- zZ%Qx*`r^MGRe6^13@vCYIG?>8Wb8rN7#!yjrF3!Q{_gf#QuiSpY&s=;#FnAayESMdJUCh~Uy0{Q8dX^Qb z5iU`NfQXoYJ~RIX5t5As?<7_3zS+m`TU(ol*^Yo1ewxL9Pf{qKCMA@F4HowNYJa>! zxt2T238;)@VrTw7qMJoRu}!JFDKntDLrq5~BxA$dS$tfSxd8oc7&-hbVOhl4M-LnB=*;&I&^%h`lz zs6`d$e4i8YpWYgHJ~j!w&k&OwPLEJ=>8Y_{skrKk7rJjeB zfq^ds(SwNgHZhRF6l3S658rR(25(A-*DrMvc6|9%)~bM;b!=ubcszfgO1BN|LXCqf zKEbyX=C#Gik;1O6wdX2;faFwOEGrmTu-Swvp1GBkabzehTqs8 zA0l4`V|UKEc($qIz2s;M_$Q9oLY`{*(_0<#G>}jPC%65Z$Ob7v5mp25bPuZk zSHS|X^tSIZ(ZZEq!>13i6Zm=}fphSR{7qboSWT7K{T~6 zdU~Exqwh)Xgbm3EY&5bYX~>KO!k>!+c=_<uNTy=M9egzEZxLs5S7n4xAT=a!T z7bgl>>0u#@o0GM-`k7?;`OJnwDyR~#$vV2s`Ux@NRfRHde&zkNplFuNw}CH~Ofo5K zqez=*eh|-hiv4x*Dq~VTVsLQqd*42f!|H2`!=g{?e~Ki3 zY0ae_Q>`Sy2$M6HG!b|k{`|Too^2k}GjN=wI5!`kimqXEOO};KH;1Ht>Dnu! zp&Hj@h1!kDKE5qgwfr=Xgy9Y>XOK^41A3YfcpE?naO_%DW*RM>iZ9_zrmr;)` zKeuerJpsp=nvw@O^&iIEVlS%@GU0Z6CJpv1kjm{a)Te7|muUWtBVlqTAV~;6_}SJY zG>dwAw*N1h{3p>F*gR1~HlvKuQ6Q)JaV#)17qb!Tlj{mOeZ4t(TNE16JPLlpQ@BH7 z^;s#UtY}j>3TBIYMBq~xXS0EvMuSAJUSGY~KOB)eynYKWkB=MTBN% zqCaMr)kVZL67`g6vKnM7EU5*ehVtEWWE>9g?dxoiD~g+&;~*d)#zK<)W#Ycd$V8wL z@V*8vFcgi_(u1m`G>0fYH~Jddno^cSkxC8jVO)C3y5YN$5oZ}(ey)MX{v7m$SdW(w z+VR=bOP&+s=@&n$-KP;!kY|>b{I|AL$SEn}&!=Aj4^(REQ0vvU%F|yru+@N1&=mKH zgIEZk>xzquQwD~*0#@YLv4^(gMp$2IWvlNzxlU-{;EM$5q`cD+9%3Ux3cqrlW|f9z z<@6yNG@;ExQULa@2fuOL|!IdCr%pyegPG+d!VpBaj06x6-qztrofUN zvGl*PfR{iPaMIGGo8qT&8AMI0JYWHPk=Y)%2wwo=^mrMxRybX+lqjYhbelX=(N+@6PhZHMaBh$dgT+E~ZUW#sd621F9 zemy~h>~`MDM5X$byL zASvqTS|$`io}8YJHJS(ckn~_ll=pTBBboWVr-0;vnbylNgzz=#dnZT7y@Wo#M~lpJ6^)EGe~tRIh0oWT$7nRDh3SG-mLa@O z$iODs7kJkZ75(n{pl@jNCdZom<}D8g@*^2JgNKv=BEnhUh^|Mq+hiBO`^fsRye3GL z0_{94)Fjo+?_RQ-qvVxysgv=)u(CW9Sl>ZPD>!^+$FD;_5~rlDj1Rwfj*=8h(IGV3 ze|A*Kk@Gbi35K#sgOqd*CUXY?q8lQ-J|5mQU7WJ-ab-s<%&NKZ>a`*VZc?Z8((4m`^h~07rsi{dHN_TlVgmIu} zz3vcbqrR>lT)RKzw2o}}xzyy%=c`Q6JnjNTqZM19D}3ca$pzZ^PfEJ0XWjCpgnm{F zI)eQ=vj{8-s|#hW_nXMYR3Pf6ob=do)GJ&IzbPfnxjiwWNMPE>B_!g9xR@bQ>LNER zq~&g@yvl3`I%M{zfwZCnyzB8DK@yFr)&2w=oemdqA!YBGBMgOeN?MvAcs7JUdU3OF zo6d(3NR>4g5Qw;=$UXCM--VDcgIw!FS0w(a#y58uA>q&CqH(i8<>v5bkX>rm9n)!N zBn~POwFUT`OEkEnBkqjGvcz-kcFYD>nK(etl<7$-sTD!`K-p96z5JOx;7@jn$(Q@v zb}=PK1U;`mFkt0Fx6hmeeIRJlyD^yc3(uiz) z_A9cvCfD$tJx`8&8oV@nQoxm2;H0L(aY>?5buh8~Nb5H3ZBIJr`!)v$XwO+D; zrEl0_F?D2^sI_Lo8NRv^qWcbIRT}&2sNX_4cJHpQrlpS1)rbF6#jmx&fv`hgl?#D5 zW49b5a_awE-~Xpa+KUZ>qIbsg%mOI$F#3xbx-RD=RFu)5{X=Dyz-zotF;M=+D^us9 z<}$fN1d6UrUl3%Q26263sG?TKfvqYcrc?t{IxAF;uVgFYf;)wh;+{vZAM}ul+EFc- z_+ityztbAa4YKPFXXZ5_N=-#aRhmt~hml|`X_Gyem>d_w`I!cIu4t^uR@4LI=$!uG zudY6Fk}4iFUIK^@5Ag;-R2|R;! zsTnJMgNt~$7Zw#&RQ&fRyG(KuUrdu_VgSYQv7=*6kqJEt4fk?u%1cW^ zl;(v4B8rrkPDF1t-n~F!Z}W95!_G0~*Nmhj#=r^)BuynNLuUMKLEHi{=J2ikQh2n>zRm^Y8(ahIsL~Q6rIqvr~yGg2=xwB2A}29 zk3@z}fB_s&A*d~o=~<7+z${|7CkVx>T;V`~ws$P#bSbMsa8FRKS&Wx5MrlM5Pi3VJl?EtE}-) zDW&E|FJ0B_buf`V(7)DQaFsU)Bd)SMS4Bsq8R+1ux zYZg}T?zwFOnfGkTG-7HIkdyK8Z&Q^P2v&gy{13v?NT<6kd;fl0uVRzLozG&HpI6VqBtOiT=&Y2avT;Raqm zp?oWKxW{RtwLi%NbXzfH_YKt*b(Mt&3@PCd5IUCLu^LKmsL9jN(o*HnBGAwjtEj_< zYI10_T095meLg0|2uApp>(2+F8A8E0t<}T8XCT*$9!S3|@U2Illau$jUsk$!+Gpj? zFuw842uMu(FGaQA3nj<&MG?IB^NgFnp|zGI!Wb|!x*I&Q_W2NfVH^s9qcZ8pM3<

`nzkZ-$67Z*y>)Mk|$?anbr{xa;byvU4*GqT!j!ew ztCSS>$H_@X0JX{WJvOk8C8kYe?9B~<*%sb=O8G?5VN=SL$O)AD9W55Q) z2NmfP+z=H`MT7*7^bazqYlf^QvC=7CIEeGz8|+?Q?^B{&8XL5!2=6ex)7W^$-_&^^H0({gC7t;GN}K+URGeC@I8aKCnKnt6MVw0PL6P;y9lPMLC=Nvj{BU*IX50gZTLLsn;eeRNO$&; z5^sz4V#4em^%Pw`11qt5Q$;e2G9yk%-;*xqI!FNLzO`|7>IdwGx$x)|E_Yo{p9FTb zW^XXqxQm3sPmYl)UUR%YMZss+J0V5|3QYk$@8=8q)xaUe`*&Ja*F+})Qk~%dATx~s zN@DgB!=;?0L?^x1j1W%qK6%`VoLvWUP!4*&Ml}@`QkFA?z4AW`BfJ{>gFauqW0&@KBYOQ81;xSxbGJRf&=0}bn?bCj%;Y3Pg=Jmd*s94I6cnt{T~E((!TS3 z8Wgu{T&J2c*-6j5ULJj^5cuFseo!HjTU$|hRqS_Mrwk>gYYmIZO>Tg@hvdBA+t;%@ zk~qTP?7Hj^A9}|PksDKPkx;Rbxv=UCj)(dwGf3W;X zP7)av{#$fH&_}dy3>P$X4C{|bFkL=w;C?WOQ`8(vL%f8w#_a=q*tEHEL(MW6bTHLhh3R_pi6@9)i^$Rq?pbcQLg zEczLQ$nK>R(VSl)8En}|^OKD*Rn_7p&QX{YPfV~t#@dZ0QShy;F%@b~Ge@shD4pvY zKgPhR`hkT$Y-}8z-E+7jBT+0^nl^*uBBYQeIXGp6K)$drDHG!5WgP=qN%f8Dm@<*K zHKpOTGI7U}A=s8$fLuOHZ@J+PkrfwNsJT`b9MDQoRpoLZMSl$$qd@n;K#x<5zl7Y(?uy|wj?TdebR!)=yZ6~jg|F0XJMdOHrW|RDieg16x!0l=`4>SeAzaYS z1CLYb1(SSXN-y2qI;+#x;IFhI2Ws+XwR1~(B_&#v!qP7(do65iI%oBXW9i%j7##E{ zGSo%jCxkdahc7qZ%KAY0tH~yqRMCHZ(9w3%8upHjmGw69+p;fyd;f^_m`^}=J!r4lj{r3Hezd*#M8&4390DUQ zAsjj}Xr&pbz)?G2R4p(P)Gpn-NPw9R2beIpR{2#L30xGU;*%}T653WHI z+=9EiySpcW;O-vWU4lEo-CYwPI5h6=?(*->IrqJH|Bull=|N+?_gb}P&6+hUYThq_ z1GH&o{t129zPmLsdj6aGLl`Il7Dw|Te)FUMi+KT*-~%bVQPWr} zrWoUMO41^R_D*%y4j|xze&FMgLbar&DSFT$s8QbLl&+^;MSCEXS9QSSTuKANLH~Jc zXBWBZrdoPp!$gh-l9noA1ig3d1c1E+Lx0)9jx$-J25EauCi~0b02D2YtaFurc{K#h zj|Ef%?ZB`dY|d0XVqfg)MO@nPxmhvLbapCs#@KmPFh3pRX{Ff&i7TH4Y|5A(%+#6N zFSD}#oM{Ux>*A#F_Q%$sXrxR4mVY;8OJFINMPiI*Z%$$RO=RWPPsNWL*;2!G%v=R4JV!qb?VhCmA<6ixKK z@{4kEY&BX0)lZq|fEu9JHTACEwwnN$g_*fULANztO)4S(k(w*9!h-VtH&hUrMPg!7 zyx9&cv7=M0Dt!f?@MH>SWu$U`q|{SQU7g@tDKp~{fOjXD_G?F-1NOY_)g1NbFT2^z z&A5frAb5U^v#zj$v-5MJ$;TGr_B&Nqdw_p;j-3OkfP1Dw`vlYyyD1z)K`E#tK&Ce{ z^8d(J--6Wy5b=F_pCL^WeCMFgpGzqM_XXF;rWnvwBf2`2Z__ z8l0b*Gr}(gLcp`uH?AAM$m!-sVw-E@!SY6D0i-#YWN3#wzx+=A5gnVNMcde}n5Qk{ zQ+Cm#o^Y?>;o9ZD6`*=3=i>*0(7KrFB1?D6w{%Zer*6epIsk$OmpDbBtS3lL3M0r= zGv}gb)9ZwyKjqZnWeu2iW#yL?70SM6#45E36y8GbQHLRaN1ixi=p&7MB#U^S22FfM zVpp0|j!{$-R&_0oC#9Xin1Aaftfh5&8d`vnjwS{<|FT8k7>bFiM_Be_FDUpepOPjh z#EaVPtd4PjRA}Y)D7@!45U5nI)9# zoS{|<>?a-_CEG2Ml8S<*&64W#I{s&YZf|`!g54lN(44I$VwglXRFL2rc7f(>!ET-} z`n@Q(hL2d<7R@25K~tsP8!wru7y13$6x8Sdf}y+jL&~VSZ2g6zaQ5X0X&0`zAJu z>~mq&&m8;s;H|ARPL~ssBt^c;jtAb~Moye(*Tm@A^2P&Kw$$RGm}QqZ^uPJrUJk;Q zKONu-5?^o2=alYp5%;R9fj(vo#Kgx3AA(GzT9^~5b%3^lUqJN%_JfrK4%72*{L10{ zYLVb5;@JEK`nZAok45F*zpdv0GzX3J?LzobI>8gD@x6!HFK^K2#Hfol43oP}|pPDVM zXz6swbI4ze0Ian4@!-l| z{M68QV@Pv3!6%5y;tB)yuE4pBH`WyfEd<^bGJ)yhSV9lBn>POHh> z2*M8FS-e8fn`gUr-8H8%4lAwt8i#*GooJyU%pUQr`(Y@QK4ge45Sh+ZZ*M;YW4b|d z>0zQw@U!}iO0EW7W(GGrd%~PkWo~&93h68AT$wA>b>UZ48*sk_SI&d}+Q~UDnDt}r zE9y5TVvun7loLtEJAzdl+A6iLt1+Rk$I4su$-=*yQ-pl1GbZ1WmKO|JEPfFqD|#lS;0^%Vv1!D+3kY3R#(z0=9h zUrKP&(b3tI5b(qT>gvqx2P5;BWcbHPx%2S~yt9kXt?+ul2btY+%=0fYsXwy|Fwy)i z`h_95$``X(=!q}amA3%hJ!iH-D}Bl>bIdDf;%HkX0yKgHa{z*IS$cpf?>$NgYi0W* z^4c{>KV}ns6T<{>!qLwoqs5S}Gw;q3kvKnjTnt%PrgkKsOnH4C4FS zM~a^&%FC}Xz``Z5S(HTGTJCMs7fh0j$@++^t8t-s3gHJos;38`51)8#3#t%f=gIBy zKdA&($SyK-j1RKpbX0LL#kh*{anPCy0po#I%2@9LLg74(v>iPR^ZW*n#O) z%?Wm?EFj68?E2a|pBM6(xdgIy>DVrFtD@pWM^osSGC|EGsI)zyL$s&cFf6K?dZcHk z+x@pTri;tQ;g&@LfqEZ)8Y0Zfn_VCaev@KEfL)UtnF@g&+-%Yk%tm7}rRYh6SN=t< zw^;5wL(Z7zfV{JpEhx1s2EI;xI(tu)b%=pdFy9GDRa828dF1z*yXC%M z(UNmpeSKtHQa9+};6&5wAe!8>NId z6xQKkGE$#vyLt~nB%h@je`_nbzV=2->APcgbnpXiHz?$;sha}cXXuWOjxj(}q}8Hx zjPKVlgQugxCfjpnXGP|D6MWFrd&i$yA53OSuvAySw?DVpo+G?GyuJi-)fUO*96kjO z->vmpCG^!_G@M`Yoz7_JzjwOnyuTi!(mTQgs=|;=uPP!%S5f z+Cx|6G$f(vFA*XHK}B2ok$OzMgGh}n6KDX~c$9PZ83t0x!Ee z2~vXjTS>|!AipiMd^PNe+$QTU?1N6x7~teKK2-gj5$l0F1%J=KIbP3D?j6BD-wvEf zd(ptT@~pIOBAdm&UHx|;E*R= zU3;c5$eJm&N}i#Ur0`q8*jDD+>_U}_S>(WF2IZG1r)ML{58-o_Kj<&PxMv1d`29jW zZbJPKfppF21YUlQOZ>;d#!5uM$1AM7oDG{n`=b~=F+^wpUF*O^ft3A4Y z)TrzqcRMwfKKl$vHdyjTUy>72oMR^YPttw5g(9Rzw#!nd&aPC_`iUdyfu=wwZs`t~ z#}$p4Y(PS_+%f|w-vE)G`PZiZUwqGo07qkAsSSE&KPKVq_!mPQgSc?gZy==!O%8GK z{$8-slNYs$jcHK&Z?*5281$ym2(LJBOo%4|OO$jt-lEk9a$D{?VFXL!bj)GgJvz|y zb`=lAs1I()(*LS`y@^Qzs`-`)mud(rqTMz8SGEAIB4z-;yCoh@;49b-!TOuH$c58% zI#O=!`f<4eK4Ej=X*%-@YoAcn^NrkzPa9e*Y&Q0!v zwfUQxKVe{7TFP*ns@Nj?aKuoy<~6WQS+=g>qn`}ye8L0y1NM<&Bq}BCd*zaWljTc(`5O)^JN7 zv~80YIy_3^y_2&zaYG4t1mY)00d48U?}Y{KqeUNI^n7{A9GQI93|_aOt&-!pDkD0e zWJx`CcyJ)@CGwV=hnxERmpp|rlG+|Ryk0fO#`(+Rhj>RUf71qDWW9$BI;iqFeE7MR zV~jibt8Nr3p^~C2O2Con>_Ua;q+b)mepwrS0M3a-4J@u%tl-G7Pk~c0S2H_qV2_nY}As2J6t$9}g*vWXWOz z<&gRTb4}t$>i3xxN_(%*&jy+;oB%mdU44GH+qv2+`oRW$TmQRoPBv?eGuRU9^={WA z!M#2Oy<49Mi1a>}8X*z95|^E@3VhA*G94MOQBla$ZpVNp1U^SaJhdL*5!aDSHUOd^f+KYA=70uuuprLy z8#fwKA{=`arPbL_ueKHGNlmlo;Fj2P_RSLfO7?QcGpE|VFk1#!&XkE<*p(bTr>kc2 zFQ{hL) zZVI+GI(HQO@X4)b6myd$C&Q>KvQ3B^$sMn+iUo2GwUx+UT-mXA$ZVe6g+eS9LOv(I z8_NH5v-g?7tr;${;^Vg?TX%?(v_;150mQ{`-K|MU?A&HK&EctN`dMhcZ+M0?cVOCP zCMUlCZSk`aXM2v~%A{xK`MtAs01=Ax1ockuZ7uE*3-{Ih0ANfZBe{cM&nUFt?}|y( z9&j?-TC|7M;4R0mU}OPbB(`3aMTlsH&Ist6s^zmY$hK?3?Wj7_LvC6IAPVT;KFr(d zvt!&i_`^nu{*rk0-hF$2e{e1r-4)SSR8~fCl%rbGlZ#I6Sgv0W$st*RPOS<|dLw(~ zg#qZu>Dd|LBq*w|;k?h~U#RHFyFEhS^@R6msHpk?jmwm2$G?_5X?S)A(^}|N6>*-| zDY9=4aaDbUH4gqbqF3{Ov@3Z#X6*(U6?L=sasJ?9yOdea@+3W#IY%a9bMu%7+$od9 zpcBE+$sMw{_nx=TIgy}MvXI;P2$SOeVa+bCqe4GYNM4@E`(ofQ;ch0V{KKgrP}Rxw zxRC;;jAgeJVjCzC4l0NmUzcnvga5Q1N*-rY78clO{u*RpynG8wOa^>~1J??KE4?ZM+KXuV!adO^3jq zi7yx`N!3& zMIcGuHkQ!h@JRTxJUo#87=|{!BX?%o5dDfqgnZ_^XW>Xp*HYL~mb&HqC^D!L{;0Ap6S%SodY@@QwBP~-lh7jhGM(G0Vy=>#6)9P%!-n&aRJf|=8tq{m zA44jkpbQE61`I9-IzNd>j%nia>8njgO`@$nDt!w~Xp~p}0b1`JG_p2ACf1t)fpUtA zF-t>F# z#W9`;J8`hGD=w4671q%atB1<*xl8*14K7ey)BClYj(b#B*I3Gm78Vxd)a5B#^b%kX z6k-*Ba1)vW|2%ZH)X-sNdw}!;>u1o(n3OS1-r?2fnq+UE3Sj15p41FMe5#dIi%#RM9`f3C0s;kaS0bV57tfoYO*t@wlg6>S znG7xrgjtxb(?eiahMHgY?R-#(SS=wb8$t7APN}&2w*)&n6xm8p(%(2Pd|nRqbXz6H zd~ljNqs->@zQY}8gOuUh@$<;>hH5#mP;|J*G#@1t(J*<==Alxqx&c<*e7Z63)-E!K zgG%}^t&pld_3Y!+Ybjy*`8Qpd5u~f?@hSLwGR(`M*%oc->KZ#wxx!KLnpmu3WXmcj>a!{sCR zJt}&M?rw)-nXx=oqOkl;5_rIV!Z;3AS7R(N^l^Drg_)UxQ5~)hQzMs*CTMHaxK3R? zueBZH0lSc~uF*d>kFKofA@1ld@{BiuDO`>8Y!lCS&fxYEx9*sV z51Fn7_E{EtEF%T~SZLh=lyrED?K-pczC(U!HL*YBTdBAo$gpuE57@Cwo=N-|fP&2s zAO{R(k3*FWR(&l%Cbru{PSdlqQbNPMy+{sU#{#mlDtRS5GqEA3{N74b0WLz+boH^C zfOsToCkgvb_ACe*-a`0STdH>GWpSFflpE~Jp%bWkqA z*xJR(*ayd|g?X(khdhs~sq=*M--F>?-%H`sPb&@03Pw|aq=0n zkj>fIZwPnY=Lc{1F~YOj9&*hKZ?BgB==Zywtr^Yt4!0n1s0n^a;7p0c=aH@~$Sh9v z`OQF;;Llk^FM)=N`th{#CE38`2E*i%!Aex@C&Ac0;B!aY^CIO7CHX&(t_ZmItvQSV zqC&}jP#=JoBFJOZ6T&+`tOT?Sz?j$=@t}W%Kxfo~L?+pCXSPOwfw^X#=dw2@6ND_3 z@b#yk(!sDuS8_7pyUF1B&ZlgaQ`azrhsL-gPa!CzLHYLU?GM4?Ec_E9!boqlj;h95 zVk~qT8Nd$vvxyKLFJe3fl{55h7*nux z%2PFOWBmxyko`MAG2RBN;0kEV;IWlBV6k~Zbl%eV`f>POGakU{^6u~mH2 z@S*elbJhIel+g>8b+goX^dI-lc(>1g7#WH}-a{?5!a3#eRrAo|dTc4Qd%kWN5dd!{ zVsl!ZmdEaUD8fbG$X({%_HlkcK9|L9!_4%-*nDd%iQ$rA!03A<9u3OUU7u{;7X>CYzZnw6! zp75eI{RBHdyz)B-iirlB9MhsS`f{FYf$z{#x}-@jT10nA(KS3|7#Kb2VW)+ZFgF4M z!JeF0wPyT0On%R)yPH&gb2YRs+pI!65p$5&0$79hEPh$-6z0jKmZ+sgQ8DzPE);)G z^^JT={~{HPj@NOsp!1&7%-0h}DWpsAbvVjS53Q*BK3RI4T;M`^d~8N`a(I+5gqE+qAw8k9fZJD@Dayn&DLrN*d=g$i8h=+@-4L~qN`lXELc z#|J(SkCvT19Dv;`U8KCaL?vaPI+q#i`!vLyfofVn_1>8hJv+M;W4-2Z7|N1-{g&tm;%Q!`>VdkHsZ>$i`4WqQF6EvwNg2n>O$AvI z+kPLT+Wu4bBaSZl-q5dKJqu3wu|JY3O5;E>xy!yUUe#+W&3lU+>Xd0e%{PJROfl@Z zBm?G2r>}I{pPXL3E}3i%J9QB96H;W<*jC#;Dpk+u<3$@NIKxqaUi+UZd=}hKPo9-; zGZUSVUmpiSsB5ReMOoSbnacaTdOI!hJ3o>#{SeTssEKv5<}~$YbpNQ4$6^5k-qZ=+ ztNLdE9}zPlYNa5f`HMu?r|MuPhXK|MN!MjxULnX;jO^@i8))>VAm0#Mi?O0S*F_pt zNu2TA7NEiYKv%1v3GPid$)tUpPbneUy*B+fCAGY(!~MOF#+4M7(qj`F zm9HrTuncw!EjPunrxt-TPF2Z1x6jK2+Y{;>-xBhzonCUAoTygn4Zn4%%Yqg`z|f0uBjKjG-S>hI;@n^r0>qTV8F9QXRz4P)Xis2;Q5ulOKjgk zWXLX^Zbayk@T_Iq5PQzozk)|c_1eL(Dw_6dNQ#AG6|8i0me5H9Y4I>aM=dhlGrg3j z3-X1?uLz~H=u=qy$0)2MO>X`H3CLM#!DGL%tg(Ryq%=F4dqiG7-n9>FmA7^57c3z( z5gR)@LDcb-dwf^N_R7e{w4FNN^=b@&*_G+eh4iSwRNF@d>4I6Y&u44hZ*3ZN8f;)8 z$oCd%oQkmR^zPdT^;Txf2X+h=evLtt7(x)XSifVyj|Ud&|2%xZU@$t17-b9oXJuQ9 zWq15UOH)xWjDK1ef&^lFlDOg5)0`AyAA*8OP89GF(1Zm<2Wznq5Ko$*wjI%II{zoE zsY@qjUDN2nm-6^G(0a4YC(CH{?PTZ*1O!39MS9oies}Rob`iiOBqVJty9i)5mg%B# z(+#9fnO3W%w^U#`0>FFo&_>iHjOPQQ zcqBoTq+Ok~oE#{zOQLVk=sZ^f?PI8UmQOXN1X-%(-kMOz@f7~Na?Vq$+99J-NxZL&o#q80_+enqOC8H z71bNG&B;v(RE*Fh0phf;qZ|hLj=f96U_keJ3Y{2D!dr#e#znM&{?F2T1Fwk=VZwnKltR779J59WAJbJ1 zM=&bY8c^8R26DK|sJLJxq1z`v8Xt zQa3UcN00h7wySonK`Hn;9yTVK{R~C5XD%ReW5^3(fI>M!fEL=M?`P}$Ina6Ycl8$+ zR5Nq)ftG9h`jmqTE*2(>S=KVGcA_+~X~**H!@E$Zw#!l2JxXhx=#aVnr+b37``Oh> zbVouids!aWNJ17omsK{5larGLze5|F&fs{;__Oe=PXD|0-WU>+N^CnmczF293Jo!_ z{=3f3HV6$3j<&NW6~MVzY_|DQIkjzr=F@~yEFgVB1C3XXql0y=d+M^_YYy0nxyR3OJN5; z@P2;gSBKIP3Zl?}k3*gYvn8PTd&%sRAqe&=-)Bp3`r z#4XO~sNfyjofQMn+o86NxQ7EIUHwe4EN?_yd8uMnve)H+i)(#u2O4b6Wi<;eirhu} zfWB_)1FWl&^C{e2-TJ6gaIfQUt0A#orhH1z!m(hh&K%CTviw zbJBBpHq1~PEy*!e`lWPr)1Bp!)a4n3zO`NbmyZE)^E%RAB+Y4Z?WGDaueiYDYFHk7bRy0eG)N|0{Zp(^W;G>T@ zzXxI=HzGL?bDZFqAj%RS4PN#7N>x0WF%g+z2^64uIs>;S}!DoAW*C}^?vNCCNWIkcotC%vH!BdlRY^#g@wnACa8mx60$ZPUP@W+F@e+VOYc-KAxfBv)>0L5aitCF zZq4$q(cjGn4c}BKNgG^bgUPq_X1EMekbsLb^7SX@ggnLgf@X9H3#C$<5!Zn|Gq)RS zw*1R8L#dT-9%r#T7uVj_wETxU44A5F7hjoG;|q=F;?k|2Myp z4fLJ3PcEmsm=7T&Y?1x4{?AGFpS6L`2n{K2L)DS>30kkP$~^rod(%VdS<-pH+Y8bU$Y^5waVEa0i8ur<*@6=N{F-Bxgo6VGn7#`f$9^UJ z6;OsiqyCnfKRr3Y<9GXAge#CSE4jAHU>y0X;h&c4jlJu-KE{eaqQHPA83%{j%%U9W z7I&|!J$NcmbvKEnhir*CpncrqzYm03AOVs>9aYy+Jb2bE1JU)u?PBf**z#2#MNQIR zp3wQ(8A2jbif=^~M+4ktJPw#Y`*CtQ6wb}k0CZvH@a?e7e&g)Yv8S#n^F8in@I^l2 z=gQ^CmbQ(CAD2s!aC29_I-;mOyK(_8uf?U_$Q=`Oyb54213dJEy5^o_xE-DP&216? zCpv(iFtR`nSW_VyDUE;m*e!wn(GMSulS=Jfa^_OxPSOrO+qxV0tE%2Z-Y5$l#&%;c zlC&lF_w@+^xdL}4@OKf8CGf5M5EOEPW>4n}>TCNnU0ZTj4p@A)0_XpXb->XYGMsBO zm$A4fnRp*ecmMAbWcM{XvhijpzykbyAPw-{CC1IvC$e>{0=?bQ{UxHLMC^WpIM~*@ z8B*u|ksz$G$#oHf4g;cGc@vkjuOM_Jy*^^u!YA(hynT z-sewzn`}RX0Cy&#?GB^w@k|#G2xIc{O>9((8KLj#4f7z{=@JO<6f6@QSX}aNL)8qFZuFr{l8MOrIiv zb34-dj-Gy$n~9(25fTp%UsM-6V5jgaSqN!zZ7s_~-;ICTB00{HFxrpj#u3o`Z!IVz z1rl!Vi^9uou|r@}Cp%RNtG(!z^SYrzm-36KxKURxK|sL18s3dIp&;9t*fO8; zvKJDFR3DYQ)yV-f(P>;P{RMg#0w-bDoPPp zp|FlKJq;C?1Yi)ON#ci!^5Mzs%F>lfPnx^7?>#OCfJ+|XfIH3a-S&6`3=#rGji}7U zCq`T>94wyty2Nx5qGo3wB4?i`Arp_YjK6gtXJTewf^AT)&VYqaLHB!jfU#@gh9{SA zxtMD`{RsH*z1<#Va~cx8!j>qXo<>Bo(GwiTilUKjtM?kDM~ucV6jS>ij0o5zQm=Sk z>T!m1ngj0cA)%rE_K=If++@rA>C3I(7`99tA8gvrk%Le^(Danf+d4T3nQL>ec$}J` z$u_S863otm?88QqLTM?vUW{;T^W-wXdjHd_GZug>{C6`w4r;P#0ig|Gv~~!GjL@Z` zKKhcW}75N=l)A=kd z*Oy8KAb03RMFbgdcJl#{2U&7>I6?Dz-t+_5Z5o$N6SS}%I#&qiJ#|LwA?V2!PwkX3 zweq@GKeVkK-;J&M`+iU6@uxtM_*I8i6`Kpq`|oYeZiRoJ=JQi-c6(47;A}klIr;w! zm!_cp#ii6L|A_+@@WuHPV^PO~{+w^l{+<~Yq>QxARE4*A2okL_GqdG%-UBiKrgi|o zrF4`^XI{Un4c;<-ulHI7_hv>JgHf;}M2loV$V=07t$7DGH@{#w;;Sed9qwB>NM4jn z|2|11Mz9s`)3bTAbEW%DYX5sa^FE|UZpS;Smz&1UO~1!o3l4e@DNQwc-NRX{zJq#v zBNLPFDM0HE$26%(fEua9K)9_ry`_~^J&U@uG>x%|hXttAVYk+9XGH5NEOa1T!2Kr4 zzakR9aU-1EAe1FJ3p)}R_z}vZNx@t@8v5}Fnr^SAwzi)#i@qChcRugi7_1Zgv+jYz zjHMdiWK*8lT%lD9vBJLs_YPj%c@!G03ClcZJ_1)|eSJOZRJ}Y=;Ls2d?m-&?a~L>% z_+hP2tbr_F0+peM)x+bY(dJHk9a?d`pTn;n!|W5a=NEga=JgWQF(gji*r0Z zU%D8fmaZA4``8>d=P@|Fne=XEF;{ip0e`hcsP1b^@Mo*w`{s3PYQYK6DpsI`0;$U* z+VnP-!D@3KpFD}7<4eI)hq%{Q5rBuJgK8!J z7ZLsw{2j;)uYxun*QoZG2i11crLryH@-g+gR#B|Pzr(e<{^fP*(QF-Td-6mm3>9tj z>jOt!!R+WqAatR{%;opOB}}UuNdPH`H2L|^!vgYQGGQ!`%P5XJ(F(V%q(UXc9A?_J zGja}nxN&CB;KF>Q@Ixl9vUwFEBPS2%0g+uDV0rcOCqB-=*!AJD(Gc|pAqnaKFR$#pR}UWn+~%Uj$72rN zl}%2PU1xM{2+rKLN&tjvm{L4X<6q1pJ-^_t1g9WSoIPFeV4nQhTKS zb+lr}Afzq~vX4NnwXxXs1HNv0Hk0(S`3~& zpI|WX!Z@s@f>>4v#3oqb_Onlyi2mmNG6QC9kVG~&AO3FVa@0ZklZE!hb_Qw{kR7~+ zK#&~#faB5F<=OYY{g=8B3`S#Qe^urx6?tBzkqC|)jry+;?h7^Y!?zkAK_mv#5m)jo z7D{qW8nU2%M$=;l4*5%wuG^0>F!kM40@wEtxG^8gvL>2LU#jf_BLg`A#OUGo(w0+b zP(Sj~AHgA<+`oeP9v6twj^qHIZHZ$aG!GZlJ$*Cso+wn&$0fu$5Efn&8Y1yUMMb3) zTEU7-v%an_yQW5($AF86=bJ?3B6J><7BG|nfKk@TRnmXN{s4U<>p|8!G-*H8`^<;j z6#DbfbKGKlnSd+F9E858Nd|FkW8uz>pw1w)+^iaoSk2>qU}W-cunL$Hp8*@(@jX^o z+t=xWr>f_`eu9AIdbWxJ{7&nh_clHU=P>!DFmqxODce%o3@UA%a!oj!WVVw+j&^&) zW$DmCU9EBcsGRE_EHKbi!jsCo`x4q__YnoZyBZXMfMx7~enu zJ`W4yBpEHo2|B1jOW#@v{T|ph`)1zs#ee-`PYZ z{yam|RR*A`+PWH)jYw$bFkGU;#GB%g>>CM%UOF($er~Q#;j6Sh)AAizuFr6wuU}I1 zl$(wpyL9pV=a~5Z_refNs}Vr};0`Kt`G0vcaH>d-3Z~9N694zQY$f1qMtWH&F8(qQ zexCwfc3tl9oQphbgC@HqBU2!EVn%x)A{~N510j0m9u(wETE=i<^XaY@z#SWO@n6>8(Tv4Z2JX;t&g={r%N|ktT zJTV=OTz2xGhm?lUqzl}wJ#=8MaydACN8D1D%Wpb2Tv@PS9wE2WDFoB8{*NSAB#djT z;Zv7lM8vs>m@!_B#;LfMoz^19nPn^79Kh|{ZZHP?AreWhaE{&j^AB)7CN>1voQJxa zV9&2oLK+@sm-_!i(0~7}V*Cd_|L53*5X-J^#vP8kSzo)ytgD-Z@I6HUe`(de(RU@Z zYFEQG&AG(|bU5(YYX-cd^T_deDD8=`JRIgKIy#8vL~_U717KixryTHNeP|$MYl?3< zC$%gAIzTD*tRJpV_vblq{{7{CC*X9#C3d%ISt|QQ7(0yJC;T8k&&;U1U0y4UXd~0` z6bGsjzIL76m_+$YXZynyTKlQBmDO+g_+c`@#;%!mf!rkV;~}*@5~fHZKM_(BS9ppti_1)rnWTE)w4l`OOzjo`dtpajq@K2*Vlz>w7LoRyzqAsW z;XL>*99@5L1fj<88OlB2VwSxKFZn1p!?wXFn6}l~*#;c?a^C&%hTFEbo{LS55Sgbo zGXv%&ua6WeAhcBI(B)tE5l*Unqo@1k6tP2K*pY`35fv{+%x>Any09z`kx5j;tSwty*H^MDTscB zHO2`?^C2~Q_fu+WW2guQPp=W7KALiwd?&$APnWZnvv=t?UKqxj{M9QMVT+j+Q zOrR8fZz}%Gu=L1B#bk{q5mNp`Rmh=&;Zg%Kl9LQXP?fJdVR%NoZviS5U^m(y-h75~ z29&z9eh17fEk$f>pzAipywl*o5tR_@mVb#d@L*+UCl(O+0AP)?+glM)*SUH*`c8E# z3v-L{xp6preEg=Cmad73yRmR!swOL~lY(ep^db5XdnT>T{$yBf%Cl8iWB+@bqe3bNm zDq1R}0I{9;Zs2wxn@XVA{QloV_fs-(;geb$B96=<%m2s~OLO}_*$4!oJD=}qLn1>E zpJjBsY4{$r`FS1Ma!eAn=m?<{%Smbcy7zHxW}c|m1J>vuhLJNViNxcWC?R9$E(apZ z2_8ZR2Z%(t5g~3EhKF0@s0x<*-Xc z!0QP0{CM51pzj3_bjN}IoG#s4dOlwxq;t9f`VhJ9cm;lMJ$&*$ZkH2Y)y1|pPe4i0 z-Mxa$&(9ABhbZ`Y3@#u5>RT+xiNnB-gpQ8Tz^fLrTgVTXf+?n<+gw{z`0Hhqgejx7 z!FtgTr0?`+voGg)fb6mx$(QFVfAP4JQ0m#IwV+<|JoB%l!i}18_J(B z9aCR^*awjT$AjwRp1Bm>a^ks&Q`#s|{4=mo+j4SX=uFAy z)>OtMIR#k;<3@;q5$W@KYtXwmd|5)RrUpom9_U<8pQEqtxg5T(nF_ew zm#`-$s&U$`p|V>pz-)(XA05HDaJbA3?TT$0TcY9^aZW z4VWo{LxLY*@P64W9cYfnDI9o_H)gE&NXWJrp3TtibK1VF_yI1Q^L-W`B9HQ~sL;lZ z68V>B`R5G!D%drL6iAHuZ_uBW5p1^ivNNWXHZLi|fh7IQ(38TuayPFPFgc(eotSJ9 zT8cxG8HR!*b)VYtOUe(iu6m|z&YQ0p;$QgU16q87!@6#t6EgDXMi{US2vSnkBOC?C<-9gfP0gyJkzEB#yrQiLLKDS;H)a`p!Q%{WL5O z7;(_t>_$aHKOtr1?cKpG^k@G5MidwbuLWqIV~2LSZS9)x+nt=8nrxYH?$Il`0sBxi zA|eD0Q0a1cWQLBA5MU(#PElVUf|63=X9`gOFtl50pwr{vE2h*j|pW794C`kc_&96 z9v2O$2*QY})I7so_sc999(T(d2}nXALHOn{`!89}6^J;s(pTOSO1f{Jzb~T^?7y`U zNajIzrmjw~FCLnqSF1m}ycTo5f&TRDKCk9q5fmg2j8xdz=;u{cSL>F$`IeK@4To+@ z12i70hQ~-Rg8(yX2?j!=oPY3QXO9-57(fH)6SL6!^K zatWeHvX!4p1frs%Y8dDSD9{WF!bCt_es5!9Vxa07+SJDj9=Pn7;j_FNpqgt8YBB6& zpF)~Sq4d<4Zz)ztiopqeJrhe zvr0iYexjQ(A@E4%w@40Py<>Ef#|jcu9Q+Wi^H{iZhhFk|S&hgMJIOV42y#Pi+cidj z!vB7h{>}_tC^@|J-9QvkC@xFk!4}(${huF5bB(VbiQM=25eb=#r_O(hwpcB?7-O~dO0cRm2e9SewNNISQmdhO~l!MoMMsICw z6lAlwaW@AdTRv4VJ6q4sb7^)Oy+cQjcZ39l9B`%=wt)$lcX|Gx)d{AErm_Q&}9 z4~T^Lp~c=197lQO?|@`nQkpxm{*c{#w{&0t22C5fM;=OBYj<>WLV{=FC}9vqM$iW%dY*Y&lWTh>qmnD&1uFZfA;PVq)$K z6Gqn9yxhf;yQf<~>q)0HT$OGEr8*dlfoLp^%FR7oTsy7tnd#|>Jc;N{3^Y$@7%0Pu z&FH;c8eCj0_li+@d3S}1Fkh;iS)+kU_4H9sfIA;E0>UQiSMTo{lEZ2;Nv7dx4SV~82n zS(87hq?~c_LEQJyyeQx*9e@RTXl#+K&}`$SXDCp&3>J_%kx zvh2BIitE}9S#G_}DQhDb5ivN9T3`jJob2>Zb^ETi=%#I+O!=IRty4c_~5 z=QsqP{XO8vKaI6snI0kiM;lXClcs?ys|W_I*V-Y>Vc& zB5J;(?BN9U?+*Kjf3<}}@vur&2M$z5IMFBM<04_MTtQa>V^{aK1gOCQ{saK;47csX zwosk#VG44}(`n5f7P|RcDOqjOHyfc7yg68=67WDSCm~y#Xos>SI9g-LM)Lx8nu z1W>yKB?KuvD@W)Wb^H5A_Cj532R)C{_O?b36okIJ*2nJU;r)eS4$txc32B1F*jQ?L zwW;g?P3fk3by1lisY9S}JOz{po3v}TEYi8+0l&c_K`u^8vh*G)v~Nhb%)r3fF*BF) z#uaar{mEn+#mP#W4+H}LA7gJFl~vnq4+GNOASvA?A|2A*-64&1cS?6kr*wBC-6h@K zDc#?`eV+54^L~H*#&9?o-io^STI*VCt~uwG3AP)R-z$CDv(0QK?~~5u1l{U<+J|^3 zhBZyiz%T%8#zVj?SVg1pa)K0wp)Bt*z1)%cy&s^i&t7_TKZ@;5CuK`v!7X+ev3ER} zP*BPdMUw=;Z01Gtw@L!X%FEHQjh(Qt4!_rph>oyvJnWG3(3;Y!jipg36kEGtt}*dr zAY)mL@rd&ak7A&~NT*K0oiD%$?G->PreQz5!T-G3#t}c3#;t|WGJ`vkRGH9z{8@X} zdfOzOKg*#xgR`b{6F(HkS`xHeqF`;n@}q>(VecCX|0fsz{aIfJGGbL8w+IMu(1Njw z58`Gl^8RE&mVC!VQ|}@o1vHr~N$AVVlVc;N!K!%-IN$az11;%jEYOecHCg=R-B)^8 zRQI{XwI2?@X3CQBXh_ef2Mr>cs!PvX%86ycmdO>=kPl5MdSL0*ix{rQr+0l=M_`%W zf9#}Fm}P~fZwDusy53%PZR8v5BnR__<)OdK3vEGS5fB8TOQ1S9+lhwopkPiV1_T6{ znC%g!q`pc@k7j2J%qdu z>QH^gOL9_$0&DI(gB?b8T()JY1&>O*r2OgL_1HTB>{tiQfsn^hxE7b)8c`YRB2P@t zELO$SlYj_2n90Y7KX30RZOhwDWMe(`No?@Bn6Pk)vV={)p00;f9E{vHmINMvU#FyI z@*Ne_w4j@Q!*F3v>@7@rz8+xGp*T?7cW}7ck>kTlOGW+Qpm3!U>LY0;1}y)69`Y(q z8oOI|zjvbd`|hue`As8qxQBacNw8XcV7mQkEj{mv^rE9sejCSE=f}`OTB4N-6k55) zq_L@Gz~BdzQ^=K(0k~%FC{okYHEti)%W-6?4Rk!;s@8!XrV6>>yD?;mY*yGARkn@Z z4u^$K8j+6q#x+}5xd&~dojP1ZA_pVW9XcD;r-6(u?3deCVzb6FpvzHjWi9oZ0N82_ zQDeb%*_LOkwKpC6gy!tuj>uPB)_FDW^TSN&Zv?lD$lzH=J7kN;Ck(w;f?wBFERWd)%hL3H#CkXqx{tU=C^(YR2>2iSE=S}`L z?e@MhOn5YC^ST^$dEBVeC$TC`iajbVUqVj=_}F0~r8wJByI zUJRdq63w4!*CXASu$anDbAiq+!egrn1$SV_|9Y>Bi%tmUQS3hw0NE1eE6MRR=JSFA zEc!3>~SsY4BOOqupL*q~n^5V}32np-&Pk@Sy zGhg{KJ+IXArxm=(q7?n?@iuhUzad{~NUb@C?ek|zW1zER^shWQ34i=dkx*J$DP&*} z3)`y;lsT~9ki-C8@R!JD0#}4U_%pZi4_jD~#_n8Z}+Xuh`Q=ajtZv-8rW`p=L)UT(s}zcPMQN@ulOXUhzv4 zG+(BpeV)nM#gve)AL{Wh`;zr6zs!%m|Lxd%XUxwbd0V)t$Sg!C6FIh2O~=Gf%*1n- zz{vNf0ux37isx0RSN=#`Y9eNfkT~=>rX1U**oUfiJYyi3*gFgu!JcISH3Y})>r>W7 zMXSl?FPOdKrRea7?f~s{uVC-q=It>WxSD9@iFV-7Vn!p?I7zyI3 z-&*Vu(0m74V)Ho2KG?UZPYtBBHl5v!m=bi&1D>MFq4)!J%5o=#Is1H#j-- zR(7|4ZZ3b>p~(|+*s7zi>}{-hoPpRMuXoXv1}PzJL~TBNZG9}Gw$Cr^(RN$C5N;=d8vzA^NJ^xby#5Ek*p@L$m;3t0=P6lFVX{CXWe*3wMcP4!qZIkW zhwhD~t3&FgCdApH0j_Kz=cy^klNbLD5NjC)Kb$qOU?IjH)9p`@H+0o?4<3|Gu7YoC z?K?_D_<@sqSmpc-vD*^fBJqia>)p>I_vryIbyCSb+Ij-$2f$vG2BRrOB`l*fKGvh+ zzg58zp3=S5Xc-9gBND0PKgxR{CsCD*p-;zDGnP z#jfqfx0iE8Mg!bX5-j2yvNVeQ!~OS0(S2wu-2yGh;aaSAVBmqJwS_SU^1pkU zf3}zaK5hh%ujK(e3PiqE$MH)KGi>WHWji_?H`YOzFaz37t^{BELwEPyPl$*S2b12Q zO^@#(i0gPgKd5bzLPc6}V;Z%k{L77NKXoKmV~U67peDEP^Kbc8@=N=*1>D~7s*$O+ zIqAHOy0KVabS|&g2Sr389#|#H=-}{hgt)jk3Jq(dj~^#C-(KcBk9wObJ2V+*r#h#i zR8jaHi4(Y$jf^l7wr6DRmfa8g_5t*R8qF<3%==4@bJNEryJGl5(~0~IDtqW+2>WesrBVUg|a6gW-Es>&lA%@SAReEDC)qf&CY|3 zg$2kPI%da>PvGqzB22-IMUNX%gw1208V!GyC3>Ca{#)E^Xto-xZWuKZv$uQqYj`t6UrvZadN}C%mJrkMvLJ&X2vpFi^VLlgrU}HH4GEkNg8JC9= z0^ZLfdlpIEUclaVcG#8x z1QGt{2lKnXyYrm?nGA{kGZ_vt<@^ge)fHCwEn z6jfFZWVXYQ|2nrU7ANwj!r}jZa3JnA0*v*N##a=IeeF!SMvNIsIOrI1;n{R(ov#B~ z2K^B<_mL4UfGXM)e_e4H9vyxM=NT$>bdXT)#@rz#!D> z{P6T-aJeN`k7|85Z9EUx@_L8j1DKzXWF|M?9?y%dmyW8u-WSdrpCWH3^ZO+FSJ368 zEjR%AXZ3|61DQzkL}lF%Y;cFEl|`TWNfB2~Ig_ zmgI87EuAYN;Apr7Kdhx~XFW&Zw;{7_-DMwH;=MT5uKd|B!1%`{+NuEhI2y*O^$+`k z71)k6rn}pu6^e|?7U$Q2CmF!@;zsv)frUc*lw@49HYQokR?NS`%1-HZ=QmSqT5{z8 z0t&+K3JtA>lP>=7YI?UHC=nkf6-*bJ{Pfx4~6Z~KKAHIFx^ z0f6$v^YIX!dg^Av`_D(iK_7hC+UNfcU@dW#oV;r1krayL1GfJ{l3!gH52JyhuVjLXB#RBenh&MA!T)9Q z{6lBz^8Bmf6#iG=+~p3NkFC?&8vI$~nJKf(ROCGkK;U&jx2>ujKp->CZPXKYkqs~c zKzm0P5bX=MDF|6jQ7dRS^eIL=h5?H}i~f`3cjIx;MrVJvHnZ8||BQXy_{VVRvCeeh zDr2opO^}7M8KQB|)v@_CucWw=@sKSTR2Ytlj=Q-9!lJ;+R586N^H*JQydyW;C7D>% zwv63SDizkWO5!T-0#e_QhLO(%rc#+Erxzw)kr#yu(W{)Cf(Jq*wr1Ff7bEKddLQm| z7?VZtuqy>cKgk4uUQKNXfA8&>qRX?d~Z{9^Q%&f#lX|LN+DIjtB zVVWrbD46b<(BxE9mA9tE&IXv>PB%A6&NQW*f-co`JwZ~@Iw7^7Ce?Oe*{iveU!*+9 z>!ygbDuuoY&|{Uqn4Q+#Obul9sG=_c?tMjl>dwx|>Az-pwHnSQhurVPvHmP78mufn zC{F83Nc@o1S7KBjb~@qrx$-D3@mA+{mPzN3rJ`c{^hpxyzLQLcpeEDfj3$%?Zy2hy ztxZvvzc|Q08};p_mEXc{sdk+^jE#+b-QL>5yS~0&eya>10mKWpX39(W9x2?E zB4b_Q+jIm327Z+gzxK`Rp=dlIkPxS*rA^51v>k2rK>jJ0nqM+o2@k z?c{U=6p~k8K;8v{?EL*1WoAEh0*RM;+^ta`;EQ=#B*D*crY$A!64jYy4l~5qKKqLw zvV#?;%U}UFeUvvivUs4+pfy)&e=;#ZBR+d%>X+(@cYrOxDX0q*I(krPm3OAiqqB1; zb4IlV?d?{#H;LzQG~1`6I$Y`C96$SQwb7<8qy>fVODgCpGYA%8H-%@<&`n}_1I)ey zcv0~klx`}c{k)YtWxE*2#bs)kQgJkaK4Gy?p?Ro9Q{>qv@!4eb4}@HfkYdqU!o?>~ z3AKMFa{`#%XJAkLJueN300IihlK{?&&pNNW>+Vv$@v-y6@$7aDSsb3+>1@JH5V9g;74*#0N6np$BlD#JrwLn9Q1SQ||3ePy{2r}4Mt z4yD$xRW{R~*30-N3k_sH{wX2XnwN zFZCss&&%*KUQKW2iiQ2wecI%nLXS@i*kU@l?EzdTcO9mzgB=j;SrSb*vyTLHnScDN z{w|{blbp;{f4fYUe+5oe$Pk=ZeXd>;7BlQ@nqplMaiIM}i?4592Cw%=Z=!A<&sP0U z$N+gxA0Bkd1*tHfb7G1^EDS5b*lD&pu%)>$r?>Zk__>D3b6XG&4$fU|)hr=62FZEt z<$ZkvzS7aY_Q9Huv-Z;I%*aZVa=rl}VNqG)U13<3%ntpSqluCS0PP4+cn=dEZ3dtJ zhI6L3s%&j7HJ@TmT1;sBHa z^v6detvY6_Klztj8VA|rb*Jk-unv3D$zR)Iw@{P(Q23sO)wFyL{Gf1&_%V@hlOg3Q ztSf9?9E6gTReY|-TsG-*%Yg}nl#)_XO?AE2v{QC2js6l+D#!&Gr<=^_h~k8~RTg#n z@&G*KZL^R|!WL*2Da;u$fh|!`BAuF1+^G5RPH0s!{25^J7vF5%-F~;i5T#KoJhkaU?ofLD(m&CR#)Vi&+*{8o9##Ah zQ;RfY@MnZsWCf{cW&jlpnpirZqKR#HM$t^We~?ydpI_pRiVPt1{C@jo$G_P2!r9Ws zr7a7RE5q0RXqZdOck7vUMuokby9;TPh0le2r^UHum_`a~T|S5tF^IY1Tb?faP^TTR zZ+CxlH=c@aSXw)4-rK`oZL}Xz6f7O*kdzv!HrO`N$^W|H>%F8wN6jpM{_WK2G~ZP$ zljV_5DZvy3O~zk$|{NF+p|y%vM(J;!ZCD0IgOqMs67^vmET5(1{=f zg{JMzk0u@p3o&XcF{=E60y0uk0y%nY7e+LUVk2NCQNLW(Ok505x2yegbtNP_F2W$1 z>TyRun!=)jPyiBgS*_ROw;SbBe4#;gdw39+8Jiq30*z2#;9AB*QIBgUI=h3yanP{d z7h~MWW=LY2GU@@)pdsfxhL76|gB9kKnwfePY<=$L$&Tj_$>$3LTsDiQik1%RRnaot zR)z3xWvIKy@9tm4x0VKDFV&fSDk=;sAaw@v{aY)eQQU9B(5aYkB&?;xYB@%EZU+OV z=V3XxxI$d%arEdPG$FNyLSRvTOW4sAAEu4~ZD~cuu(Dw~ivu0bT{-{TL**8tGh_e^ z5@x1>W|uLnU}z0A3X!eOR)z@!1otlA?FnnRQ-PaPMSdM-miH}%EPDNIY?ngXFeSe?1vBOMEo z0xw%tFgrV2oICgwqmaSFE*CkTlx$oPvG)snxU!nc@%h;BjV9KY=2aoikn(41B8-u zYAPXX4vScYacBiePN#BpyqW}6{5d-~2&pwylBaaIyt|v-s>u<8KK4K~0#K!ZZ`{r# zBK_7DR-zMwwm;?_g%L3DB|L$9qggDhjg5`v&rJ749B1cP^awh)w!ViTEKtl>(=8VT zcI4-OwcAf6hp0OkNlw_1rr61l<^4Vy<0TA@IPl&7;AGGkSA@P8*JX#fci<)UV?8flh?ny#6FyE((n)5cP+g9F2xBCAANCHQaCBtA`7pWsxtUiG4E>D1VLL1PemDED@grlyPPhh~Y?j zx?_SUDe$d~FeIatsSoFVAqQ4F;-1sf*{kq?}BbEz`8Ub+oh!bvg+O zszR2+*AAy>1LkICj+z@O;yzw$>FGrSht27ru}8dHv2%%ib4fx4`cIidc}9aHc{tZo z0~1LWjYn;uKwo1uRNSWyhbgofAxSn?R#$W}P%jbvXXTg7lZZ}%8xntmsVm0k$6+@y1xPaH5p68IXfci zZ(A2D;G0IJ``&}SEnU0S4x1nqs0wtz&UzLrfx#i-agP!tR}HRFlBbfz1H5_?fP!H> zT-wuIFVdx@-9nT)4fBrlMZZTntpWA&uQcm_-5s=0%@TR_Ri@D}%kFU_3;G((#zuZh zX9t(_rW-zX`Ru(bLO2f1_)%Cz#ri(7ra#GEy(W7^HLjd2fQQA!@e`@GRcz}v^&e+K zp>Ph@Kg@c7f`CqcMnIU4gYdI6J7b7`2b%pJP}x8Stq6!=bMrnQ9sB=5tOnQ{Eo5ef zU=<>(JIDO<9Hf1_()sLCew#MIjRq6f&iiW=%~kdTw=5 z(_2vA`$SRK0!DE1jm1=$ydM!UC@sEywr|20L>2Ff18w~!O3hcRKP6)4sHZm%-&zS+ zI@CJ#RQVo!%h1{6^W*_cqXe9l$N>Gin1vlz+3stFw%xlL2`2SI=9$SOVY58iHHD&f^?v7WjMDtryaO9A%V?B{wK?Z(*-kAiNfadR7J;7200SdWmq`UqV7M2j$ zYXOu}vaWxgf<5Rda9Wzr#)=obrbe(*tKUE!)r@Ph!ArsEzOH=+X-vRzZNWg!?=^ZnVml6cjEEce@L=0`#C`y)G1M*=8 zln+OAy$?V>4E@4(iHzt!cqOs5tFbJFn*dqI03Zf9P#{P3V>$Y?(9J4}1s`HpsTXU| zWp*hVttOy>7KG*#y0-(dh@~_?!Kg&v?KPzG+-#~G7<)=F1$;|F__=SUcM4}N)pII- zOuIF47&67GFPK~!nIDmJ!vzs48KaI8U}j(xMPfVtPcl%7cO5)S(d?MgJ%BrcSP?r3 z|LGJ!Uu3t!;Uo|o!bH3$Cg-> z*f30}d$YN>f#{>$SYE6k7{K#dDqO%^=ohs~rm$z|?a{T>5SifLCs6aZDvY!a<8V1@%ssN={a0-? z!}(hmz5o^d@5Y-5T&4Zn>LS?!IdKsv>_KONCWMes?xphcr^&oh%Vvj9=m)f*(*etT z^~{m z2)G2yGk{&z3}Kj2H-+TNtmpn2WIO|x@vcAf^hfqHxX5thw|YY9n|i)lNOgt)c)KR8 zdr9O6_D&50Rcjz2HzMP%@t|%ij*+CM$NJ_f2AJkT9BLFtu}a<7 zq8^3nx7SoYyLhIG%`dQ>E~K8&{VVxcO#js97+<@;N=#Dw8<{MB#_gsWtp7eZpg;iv zjr*?@kUm<#?i&0h(UmEoa!( z&b2DnOoRdG7zekAnpA@-a>Vj~vhq#f!^}DoLjR4RRZ28DLd|G5%Gdk9=kaI&sHj%U zrte0=DQC$DuT8s5smJ+ji?$iwLRy^=ZeG7FawFVRS317Eg)H~3@(Nd>uIMZ&9x)`A zd$j7bmb&b|&YunI99yqyEh%bdtJ}FmgOLFCbZ_ep2l)xmunB?E9Kmv~RIKOecj@at zM%yO1C+;4Ckb;&+Ma*syx{3NX?P3W4NtTQK6H^KVw>RN7TFw znc0{rS901l3>VRgLcj5Gb8$@x2iL!QFu!nd?D3J&h)7KmO{X7I6LH&tTSI2VmBgWK z-pf)@@J~Ndgb+`HU#qRI^DQkWOI_Afm{UiTU zeRvcA>!Q~!D-@%t8X~87yX9yOPVnvI;y#5F{(!ckl5*4ubyvpeh|iM9a<({NA@hfS zVgE#r**f!%O7eDiol#YNU3bJJN4G}MU^z`dZDasMQM#3tfvI`Gi>J&QHapR;z^)_B zG}lpxo$7@cVR4nn8xE0dD@mZ(2S@K*(Jjbzv^Z0|ENE%<1TDk55G()T-jAnnL)~Y# z>^68{OGHg(1aIkuqAx7bZVqBofbnPv4Qh2Kn;Ap6aV(RgW7=64W=&nzni?F?`Gyp@ zU#1{@$1>G7vJt^?F2JF+oR^=2N5dmaF+e$)UKoH;e-}{L9uLtm1EIUYFBQPs_A}D| ztqqQOyXD{~)+D?cR2_t-pG}@X9TUH1Qc3SRE3DnQ3PhF0pS5tIBqTJ}VFc5J*^YklV5@8&Jv<*!0{j>iJE4MF<2Y4(V! z30^MXLznGW@v6E~7oDu8`|CEAu(RRqE zys)?#K4T>YblN+UXyo1^0kwoPIl=Ma(*rAO6((W32re0zcH<$( z6ANqK+VXc6uyn>MiH3sun3-9&?{3kDm8ueg673_@8Z*>Q-S31zBwrT{t2*u;te_nq8*7kLTO$gSplwn79NogN|(C{O`?x8z{b#B z^zZNO62=U%zw2Sez)2l6yJ4;e0(e9Lh>zsFxtn$y4^t}VuLb%r7Vt5Key z=~=0%bg#Xwrz0_#NQlbRfz|)<0!U&!v(0P)L&h*6jYOUJUbpQ?|B=_F;TM==Gv|{2 zQV1A%U`rlvAu1F;tg`WrOXnQk!FWB*3#9X<=2)D95}E{iIWK47#aZ~I)3p1WI&YOAA}9c_5@>)tlsjvB0RTE#)MLc|b3qFc5~8rIppu`OWd)+_7|(d8IAPl&i|_>a zhZusejGEv&CPJeZ8TW@pA9(K8rcNEnYx~IHYNy2Sk82YGVC|g;sMk^3T&!ROwRsoM zrDy8dj5M~0zD`S=F2W(q5=1O%n^_(nfSn&+US#p33DqfG1$~{qv-~H}1eh=nzP%Q7 zjp#gE%?PM53D36vt$_bG1S@c$-0|gcZzlgI1R0?u@hvX)3F*`q%f8vlNKc6VjhK`e z2y7GV``r_6m03v)yau8YAe1H%fH0axh`nZ%^s`V^d8K#DqOJRYmErUoJ|zwU@8Dy> z?6lFT1UQTq-3kv4;w74HRl}!qa~!X%|A|9+P#g;2h@u?F!8=a*6&`IMCse+IWk6y% zw(?=(3c9FUcIr2cX&{y!xRNLB8Qc^HIC@(MAe|@`$%Na{kGsnBsRX+l0mkjRWO)I?5NiyiNJx2Xm5u27h`D zEX1c>Wr8qg3k6l!b8V!oI-j##9U}6PM-F(HkWCu`FLVpz&nWK`ZK(XP3k%A; zuXc1pA6v|!q$NO=Zrb9o`ZnK}Tv-~Q$oI#kpRHZh*}oBHiw2e7?I>hKmYSxeZ)1u8 z*j*qR#7zrW{roiNSF|ob5D(n~y;X9+awF<@TVk(lr4?|rs+V25O&5~SJ~8{0(gD$s zBedys++*f=_dz*ckiAfeQpI&D!H*Haffdq?(@iRM#_x|U z7NN^CR~Xh{a@H}T*~h13S_avc$`FLbuPvta_C4@+x5^VX6joo23<`Yn99wJ((Bd99 zchcOlC{)o_xFwk-SE_kVG7glT0_9acVv9u!DVj6-QM2-}XKvs|lL^c}IkuoDR}ss! zzh`VfUbj8K6NxEnX$H3^5EGP(CF%$qZn3TUKuDaq5K8lc$%hulF+_aP;7a-yy;EU-J=`-@0k!0obEWQYezMkP zW|j&c=I*GN{L?Zv=_f@RSrGiqdfEam?53?-zV&T{p>uh(eQc3eJ^{HLF6CU0U1@ zWk>Ml-mSNV{yBBqYTKiTBZ4N|@tTG0i}l0oM@-8t<}K!aP1bl^AJFvV2L6C=N8DW2%(zY;A4*a$8+ntJFE-b1I!J z!|MetF+`=Hp%Phbw8cWt2t7A9cl03A*9UB$0^i3c=;&zAT%DeJocmAydPP78CwZxB zsO#P^6VMj`OV8*`ZH*ApugT3NO^}}$kCH7=5b)(kgbucjd~`4Sh-_qOWhE$U%{Z{~ zJtn3Lp(1pYiJM!jT+G%MRoG}d74He}KuhCkdV2cIpuexLJG^r9)dKI}h^gSluA%`# zX3?Bl;}SWwR;ki?zJ(t{zH4P1{CgnHa4}uhnfS3%^p>=S-w>uNi%PZ>pAm1ml?q94 zbi7`FlHPZX_W9D{9tw? zL_boy26UM6x-i3=j8ZT$Zh-WzUFprSYodGA$vj#AwO2WPZ^_hteIM2%lx$XltC4}X z8o@iN!qwy%LLCE^dp$?Ww}N$7#Dbp+!UV8CCsj6$ z+VT>Lm4m7N+!7Vk;!dM49Yvu(x8MuA+e85s%(qj`Fh+lI-^4jA@zq9_mas2MUs@o= zzfKm@czY^v5!JMOJ8*`NyP3E;6CC%LI0`TZ@~g~4$RuhMXf`h=IjK*UU-TmTnUh^X z5d4SrqBo@(awxq>g)Iul^w-Fm#+Vb^T|4IF?8;OaB+-5zMk`B{LtD^=+Bc~@+BkCk zmD+7=(lA>so7DO=R?q#2fC)z(vr2aNLoeuLkaK-RZP>=Un%2y*m^E<+$3j8@2C`=AjW(6O+A!j>vWI7bzke&~Bp-C-McZ8S zz12u@dIPB&jU((*`QMXRHWo7llsmC}dPX8Nz-V*2QLl$+R}v^`X!q2Ar@6fBeh1l} z{BI?={sHl);AFdu=>6teD--^c)rS@%&^%Q_3yfT)wENkoWwEo7{Ds`}vCoe2C4;Zn=ceUGWGDGr$5Tf2oGh|#obDEHQ290A5_1GHXf>4fb}~lIZse3dVOp!qMVsk z!k8}vaFly`H)4MsUaYnRU0vx9hlpEnc3xE8&~uqw5u+vO5hVKLPg%v(fu-f(2zgu8 ze#naL;4PU1+$d~gGU|4JeErM((^q4)bSm@&lS-_3ZEP!0e!v-KUcITxN2_S5&w!ja93`FzPtvuPzr&W;S)9j z>2`J86^9TNt6%wON`rSul!5)~@#a+RB;ZMgMf0@z&Gt)EDZ4#f@~%TgZFg`j6Z@{A zGjO1mm%c-ABe0XBE3f>O5M$G?OU zH5Rkw{`jivVPfOPCbRT^Wf;HDEKe7P`NSK8?IIk z2YwgG`=?rQ$*y_$V%#i`GgZSe2CYV;`HFVeoy{jSG&JwCo@6gAz;Q~wUbJs;-Dt(p zx;kOxOqxGO3tS_w^X-K{1Rr~uFzt2IrSr(UtCYn6|OtXY43ouK{k?IdMt_;R@Ed@@I&%!&w1N~%TNvjaPe zUay#-2OV9sSO;*!4Ov=p=eeG2$K|(}QRSais}c#QSn>B);L5Y@Z7>Ccnbp+^_)SrxZbs5#S!FU=%_T`(c_Dr}=NI z4*X8ESZ|(}#@*J0fld9T`AzR&km_gdpb$ zE`AfgWe>2KTUqtCo_mEj9kbJ#otg4KknFMMC|WVKgo59%?{0f6wL{x34YOML5{Of)AcS`CD z3x`KIC`t(`2--0uVsNGwxzh>mfVf8s`mjAtjMWNcJFi+;pH*hZPXvq69Oea+gqB}+ zs29*umwtGm!?+Phu{uDJQ``p`d42%*xvI@pFjb>c90{{6qsG91$c1Hc%gvD0(g3ub zsXy}jNx?eeBY7#IMM!?JBYsXY^@H&n>-}-eyjkMk0xzhm1K&_XDtu@x@N6Vwv^$~;XN);+J3THPvz^KNA7{cm-yBUo%?fVIB z6crho8&76<`8$F`B9rm?$GQ!UrbX@zfwT9!3ls~v?FIGz+dmnYe0n(9JXiZL~QusPs~4n!+>vVQ% zv+i*2{uf!<{o_{QSFv_jayR`C9Q?n~iZ%}X_2+EnupB?eJaqR`EL;NkPrnn7nYh)8 zj*J70MBTCff%mSlE?n#fuHvl&kva+HWB{-Q_?>3imbPU^dgHnEc{*4c3(09=qND;0 z<$?v6)LS`pu@`11CqvY9y$~22IYXj}L*@9N2oz#BR|V9*eItB*s7zKzTfuX|kcCIQ zHZ9mgevVWrP=clBl~SVu&w)%@s&(Nf^1k4Mq6`&M0q$GTX?R6SCE5V&ow7^S)Y&JU z_6Zw-AqPJZE3vA+Hi*f_V`^wPY^Vun{#h^fJD=l`^^6XF))y_CAFtFW4Igwq&z^rk zHk#nMq2AguR5mPYigLIx4T?wvZMQKwG#3Fk#*K_QT1KBmmwqs=`NL$ z7(hfyLJ$Ed>6)Rt2ZrtjX^@ca?q)!`QM#nNyCu)|exCb1@8_Jq`2YiZ@3ntxt?T+; zfRq^jBZW^UoY)@b*duTR7I%maW)j>eB4g&U%3gvhiKMYzY@B; zCYZ0VrM7O?6QZP~q{XoHTAL3_#BMi;^pyDJvDU+;UVVu*?>hJr1SKFebzB_;c10X$ z^-Fc6MjIO*{HocWiWu6ub)|ETBJ-1U8hZg-X%A>4^!;N^SNok!N1pzUY0oiHF3)2l zJ+ZfAJidlXPa1G@bIXX-yjoI=0tL1*v-loKI)1{>mcG3mbm1bGkcpD~i;@K9SBJF*dyT!9qh%hw{UfnJ8xB zC}+PA80oOu`cr8vR~@cDUT|*Q(hByvvAIYBpAWi@n%mFd=OXUjSf8KMz4H1+U32Ds zpeUPCNsi8n@qWY5Du0=7&3@fpUAJ&{ioy3wsx5Lvs%CsbT!v}HZb3+!DX2YFAW|+Ov$9rP z&{|%7ur1x5=FuF5q?O)2dQEv;@24+rO0{P4AbW?dwF&a@NhhB3xM3ne(x@zpEgKPT zRB>e%8h5u!0ZZBP5?W{&y7JB;iiC~Y48H&bZ-(AGwu?gi4o{>%^@%co5ERm^yR#5c zv#_ARlKuAKYxKnAbf-^%7!bIpJc zFv|E z<(my4_V`reg@(YEb|Bn!8Yu^u{-KTNZ)du*ptA0CycK>y8XNehyeQpSg8i{Z+>aHCH8EQJ&NyQ2L;Ns`(>?{DGER89l<2=0by2Dy12eqQX zQ+cCv@Rz!}KgZ0_t?ZT7FZGr|Z;!hOo`0aM@jMgu%3)Du1I*WWA35=U%{<(vPul{? zuz-+TPn;RQQ0OWDfD5DKX3k7{o`$Z z>kA-LWcd9V@23dTsr%zO8!zwhsrB{5pMuz@pE4RR)fZI1g9DUTQ-o zAb`22$8`gAbM5^}56QTTBL$LiDJdy-RT9%RFMZ7(Z?0HO4Pur#K=#S?mYr1f3#Z%} z(%Qln(^g+_wYdq9wKTORDQz16d?KCZ3L@IdJ-r(>U~CYQH9vqtp|)IC-#I*4_YV%j z#P+HW#&QRvKBAA#bn(e;PUy%YL+^8IgoY*+GyJUIsJQWD+jZt|(=}u!tG3OzKk4Nh zU-?|Xl7Rbjc3dJ#K_h1f3$2Jh4+W0FN{7?TwbLa4o~NqKuTrS6eolTWjaJl*><9tD zshIoP7(?8at&b!b-c$=Hty1kz5KAe?{e9VbpD3{*RmP`A>IkKit zi>ioj*}%L$A*HMY8}J@g>=N~U&Git@ciY%$qRs^IYqiVU{gtRmCI)0gD8d4GbpW5( zo0cHlZ_e<6h9#+O{$Yb$5K>Pwa&MkRYS&59YRUGQ1c|3RqkcwZ#NqE zkJ|cYk7D(JlvMl+=k01Re}u3q%O05hjVPI3*&2P&@IE zHm{p2zk_GpF89^!>oP2A7*pGeEQlIbsYtj6ge39yi+ipH0I5 zY626zK|h`|4at2HfPZhx+I?Y;>RRYc_qD~|kRpP_=<<}zmFK^UjBR$*K-cTF5ZGCZ z>P~fQL}_I9-!9POZx?vMO=T%a4Q#Umxg@@bR!9TiQwR)}z)Da)!NW5m4im+0e|4Il z##Q-E;~EtkcOK_Qe)2vMo2rCX!eOga5>0w#XC`L-MKeA;@;WOnH4hVj)^w4|o zc z`C1a;+kPMjnOhtQO2gqJwOmL+JS6U{&V+LLyTXhswszH4_yse-bBp_UHA``XPiL=i z2vN*jh{Ld5!*~p%NY02^p?iH$-}+eX>qGrAgNPizBrtgprA-*W$~@0_$zUuw8?fU_ z7OQ#rP*^8QNK`r>QsfjRQfx8yd!nKS^cm4#$;!Mm`23REZT|((6=kJ+%f=WwTA!Vq z00FgBo)4jq`I{_qkQXo77n&q54ghTS)5!PE!ka(8kES-8%zr4V3N=W0VpzZ6%C%BS zR+QB!qU6D;D$!d#IZTgt6sNZ6Pe(CulgeOP7a#|X6g*8W=YvZH+!>{p=*C?wG@M0r zW9Iw?K4QSx4$%ize?^vU4jdK{84ik>&9p{a?+Js-%4azfqkNL`lCzA#$H1OOK> zf?r8=y=GG@fpl^^w68@92loZrX0!S^7WX5C1oZDw(soH*!HQyJX{?j)Os!GX{1jrf);hkqeMwS5=O?xdWZ8Gm|gg` z7HnAdlKa;qepk#H(%vkuCv0!d$^Pb?5iv-~$h2dKYQ6#%hU4;rS@X3IXJZz9x;plo zKR=$2Fi{G`qlXNm6yY~WLfn)TSq6SyruG%0l73N5FY{7UI*fJG+_QrP?`*5w%$ z`D#G<-kC6&%nudyDRTx(d`1-ExO41DGJSi6Ms=Q7EzL?PkosP$!@E@-CkLT%Kjs8j zvm8dJANkE{S)9Ny^E6&q3J5`Wxm4?x?i&r#NHKb!T0>7fUun++Z6H5ckB!tNOs&Y} z?FR<5I+$Hay$;{>SwJpE#)dGD)o;m8BuF)~T6M2!?<9nssTFw{zGsXl+x!Sp^(_0D z#7BkJb6jPNZ!(m|jqJ4GvPX|qN;)lW!(Q^w=1NHs8A>vxAe{C8ov6S>+g2iagc8Wm zPxR-iEV?(C%I_xE*acKGT55lvGiICoS4i?51g^WhK3o^Kt#u$Z(hW8hOM{9zuA`J;XQqzg5myex0J@Ison_~&7|r&D(Y3NrCF-3Vk2rZRJ7rRdLf ztM9UtRdq9%Y0C|;Iyi}m#g_GLkQv=r{Qn?yWomflpS?qNm~n-uY54SX*cr0T`6o?S zs%YGbE(km~+IY}PEFoIA&xC@Vy==U}h0j{{V~1_GM-)Vb>X{{_na!~(&H%Wf-u1Cw ziMEi2k6g^RTDwVdL*tF*$NORS#9(eJ8n3(8DBDTGHg%r|Vg}|Fji8jRj{7s+D9ybb zA=awEZSmzxg0kS%)m2cNIHPPO+j*Aq9|6h?`alGsJWB%4@B9>u*ey?n+Z*T3*a-72^Zbtp-^Uzs zS2HuSE3UOw{hg`J(R(+Yr4bP|9hQ>Y)>+INm2X)$BRFsK=(Dry$f+)Bw=Gwkxczy~ z3(qE1=ioOK9Vqs5eZ0<#6)0@f+B50tfd^z#yP7_{1~@gw%pwVKxqQP%sT>xDv>g!3 zFI874r&If%NETGfRAPq>{&>EtqunM*}UcW-18o z!A|58MyHFE@eS0z@~4LyfUi@ox3}Uft}Z!uTi~j=UVk_ z;cdfSH)0#t-$bt#ftR&WLsf7ejpr3hPjdbXkET)CJva9E+4}EcICFI#B!J^o3^hrr z9n)YBV|&2BCu-7S3XfsXr|S(4DN~G_xu)FHMG}aXcu>`~8qKMuyeg68-#?(|y#dENeuYhj zvbTgWfRtB9i16{lh{C#gM*3xRSzs;k47Bs1a9wLlbJbgnhR)g-D(s9$ItDplT}U0>g}C1#Uzod-)(%vjP6ZeeSBg6n|LctRUzv%B z4Kil7;(zD-NaJd>wIxr=spkudYQH~Nows@F?HA#I@|IGN$rDZ*NG1W4vuet#5v) zV9G%$-r*LCjuSFvDVy%65phUj4yexBPsgVyR-;en2Y~~hxJ+KF?P*E_JV4kP8M4|^ zM7gNt07iwYOizpeqRBez-#!>66F;suDbVLqQ1!dm_6Qh8sd$|eITF|`ORT<$sbR%F z4h{^SWYc((jOV91Y{#tEO3--VDpt;+@9zI@N|$o7!OcO)wrf+BJZNiaVF`2yJJ!`< zj>yW$^ejD|;QMMg+OVC86g-gp#v+0j z&D(DBMi3c4>znp_{RC<^bhKt38L%dXyJaNuXLOut)|FJYd&2_}L9z=OdXt+N`9#Bv z2z4gP5kwU3;LPEPw)rVcxzgUw45zhq!T;xgBJc0n(e7fZSidZo*1U609EqOB81+QW z+xCd#cG5@Nc>#T9KuTTt`rhBS_;Brr7^MWhr-8)PnM7yUIQP5IC^D9y-Bne`Swlk80EJR^G+9syjJ58@NQUJqxs;+FtimtPtMkPV+4d zZeb=vIb4ozByx96cVz7^UCL_Gyuq)n6(oYC>cB%om@+J{U*~pCF~WcH4_%+*p;YMh z1FSXgS%jkZGL^$I7>twEdF+#}1%YabdbT$h2#x1AWmAG(oDB>4{3YbM zpmcfuSrS&QND32=sQlI|`I)a!ge~NXt|f*Oz$1E=q?Av3h8@LwHbA<6fILIo5(tG( zj%}4jzU{waIAbxzi)C!@nwON@pg-u?C+0 z^&71y!bnZI9Zy=IS?RB>SESeU(_ zsQfB2Qw^7pmfT+0>*uZWX&_2y_`lmxOqm&-()vFMc5FXlY3qQ^sD;rv?Elk6F=YI$ zm}@{UW27unX~!x{GOU$&FUQ%+=S;cU`D=s-bWi2ULFEN+RIRAsm_ritJvT zhRPkJzbfd2^1q@!o$9?EvRk`hU4r3XgBXrGc|@e>n35Mz7)#ZgdS&a(%lLOivvq#q zZ1a}bwv}AAdl}50$%BnI2{_O?8PST$3PmDAiewj@2cuIdfqHzWx;IEUHFx#(V#;InP7GjifW)>;B>4ZsK@l_Bq&D(vUzp7K7f=px%{v5!Mj+}osjfa;Y z=o5+rRn&0n>?xJ0x&?8r&U`#(_U4GKtmTTX_dWcqxbgnGu%dz>1OL}DRSjOxm(hnR zS4I9{pCF+J!`vcPu*#&7uvyS^8l|`nn=F>8aGsw^wz0}+JSJ7;oO*Jej~6zc^5_Mh z`CP=Ghx^k7W0=OJz!j+m+uL#eHfXc8d;N~s?M{a}z7-Ww)IQ)HdHe&zXFagKBZ&w~ zH5{c*49 zWU1}ry_3Oe*9ppU3nF5IV8nsDhdIP2Cb%I&3bq>c&V1cA_iV~a07H>V4Mz*K@aNjq zU~u!m`KF9KKO5^6s19C}5s;5uY zPasXzm1!bsWaNsmBbq6p?+&N6)xyCYO;9TT)^oGdTJI zLL1YzA{7g=>VvMU)~hg(`+5leo)z7*bN);g*me@10rNuP6!SK)4S8aX@0Bu+@)=*v z6sb}BRU$ojV0DE47dl)6_Z=7Lt>VO5c>SUnOQ_}DVSQ^?8Px3rh=LfE+LhZtGv4Rt z;*#!G*i4zW@w`7foT+5YD9&$?z4=||!3YcyD42yllM2REPPy$i@AN)icx-Ib<4h`U zcl7p3cNb8Qxv^&#$MM4d;BIRU@M>n1nxwfZ^BGAYMLhobHN5RuSJ;?8Am9fl^$ns#_2woR(IxtodAwMh93m|GTl_ zm25Jl*KK+4LKCrWg6nBUkyAY}{stAbi%NN@Gu3k6rNzoyFjXhT8BD#hi^c9YuHkIa zr@^#r{wqJLj*J`Izo}?gRC_YKw4lUF6xEA)FNx@hV{Jt4ZDR{j6bdSo9@1$uF?ujd~N`i}eUT+X$Qpl_SMe9zSHFenTSh+3uv;u@gl7AU3b zBKdN;Sp^NGqhdj#%)w_y;b;t-_iO3w1gmCUPA%0acq@9i8GFd0av=YZ&IGy)sjnkj z@Q0i0wGHR>=%a#Kg+H*cH z<^cjpnMgT9$Gkt0f9(BOE$Kj6D7Q#JM~|!eGBxS115ezx&*#v1Y+zvEWNzt^tgiX; z6^1b|*4=%;y1%-iuo0VYpmsg>lu3K*6ZMS``a|=$oJ6O4XF~b?{klPLK5|0M{yt@# zdP3*!+Uk>c4g+-Nx>vPjx8@~pmb`vkzX1TRMZ2d{GL-T0I$y$0Pv1x?uFLYUwgF1M z%G5GLoJ$$zIzcQYDPO4PhiE$^U_STE`iDcb-KW@(&Eh;my?1}?8_L6XtE;M# z`rQu9b&&c!?}fcSQbl?VFVyQ1LWhBNk>+qy=ruAI5McAohQW$-x1<97AV(>R=MA~A-YOOUF z;^3`u%10$_hW0Z38kP9$RBJ&hRusERI-7A-iO9u*He62BAtB&`a_Wr^tTFDAkw?HZYrG&{|Ez2e2mQnY`R5B{7a2lV=XR>B5XW>AJ z-K}nW0$(~ST9)IyfcfFgM~l*~j8`m>Ko zc1~r**_EaO3(kVk$;nQ?MG|=7RDzD6@|K%AJ73qt!@<=I)}s)KNP7G>*91-jl(c-m z#L5d4c;QP%xPc?>Ghuz_66P;2b(5Yzk6P*p>*wvbdcw(m&Cz553FnQPQYCB|v%u-M z?5mz~W$Du&Kuka1E52wkbjuJt6>Kh>-;Kf?7q_A^m&FQ?{Mc|=)#(~~8|`dLX)a|)aEvbV-H z*~_fCqX4jEsuOuU`ybcJzuuG(rja@C4qmGNI#ayOSia1D@e{Vb4O8hYTSy?zE6t$3 zpHyrMlggZG*0tzHQMB>HT4-QRC?D=|QYadMjYwvL2aZ~MuPmP~WOsJpQQz!!E zlDVKvgrJpDSS2P>QRKLSo%t*VMtq z-r#5g&y=3{sV86pUi%{@p+o)os+8zD5VYE5)NK!wu+T!`cPlzOp*4B#JR?wKZ_6h^ zGClHO&IUg&qMwLUQw^=TGbdD=V5ums%!Rf?sYnXt=5-7vdO5LCQGEHPLk1T{iQ5+= z(9axHITA`MLVlH+>fy`VYhatBEDx}39@TEsj&$gLk)2415+7mXTIK}fY@)QnDdsUJ zj5f1P2Vb;MZwHUfOx*MHdQA;gzCcH~@b4r481~wZX}v;$ONk!}x?QeuGr0Vo`;F(@ zh^&WF9d^_@G$bQbTit!b{_by-l#2IQ*p8B}xcc_Y$;T4)%0LVkF59(mEL{#>I5IRE zZ>3?cObd^auz(rX`s?ewLv1a*(Uq`sRbM^VUC<}pC{f4?-}qNj*>Vw=nVIwBeI(~s z+ld9I#XLwR9oYdX!I3q>%*Qv6Kk->Z$f4rxB~6yV^g`l$qb%l*aRNG(f%QV+#|;`8 z!jkTT`lS-eZaS&MkNTKG+Lx~x!f1+_3*7KQ2z7#j{qD!+&y0n-^Ia|o1Y#_Jh3ZW{ zz@hxi1u(ecAXi9RHIb9kTSKXTvjf|Y=|39F27wD{ZKQbmTgWZ2ScYi?JVlWJovg|5 zA~MRUoYLNF%)Ho~wwfB54lPu8?%nQeEZw8j%hl~`1^7;q{|azYEGp^%#&jU97Bu3Y z>BaLSD9bVHVlLq_TNWQS&jEHl#?-ra<_mZC9x9;BhJb#U*UcKuIo3!meCG|_sNm2{ z{JedTYblx6(O#+J_O3;M!=swC&s5$g!~LZYgW~wiRNJDrT#Z83()C}|c%1$HJ4Xje zzz;qZjLSyiOvJxrP0PU&2CkS%XH_GrswJsSWmCS-mOTSUIDdoR5L06veaa3ZsWZvb zb-I-DbmFvanWpFyNg%^|gW|%kztVu~Pge4!VGaH3pYeX)WlbJfh4mJ92CHb&UtdPb zZk2V$p0b&c_IzuaIL6$`ynjHj@n}8UPRRB6p^D@&R%gvJX$h|bZaDm~I#29Ua!J>} z$@K)Gh-6Kf^yE3h1A}%&q(GXoro8x*6HPWj0(PkV%pd1APUc|R1c9IE-SwT%uxr^0 z3hCP7HXh%saD=XZGX-9WPGYU8Luq!7A%hdLlM@*jIA^40adyvX42uso6$ zqa58zzVII({xrh=s2OMGwUVqX{hpe+Z^)OwLWzs`tmo>m40^hXvzS2MQn0W>C5GyP z9!nydkiql6ocT6pq}r^Vcs9=8$u_OMb7Gai9^&EwcIO-e>X@I05M6KVZFMGk)XrYX zAy^`FLaVzbR%_@D$cII#LGW6x9xbUYHl(gD6@eFege9dVQ3HR{0BUF>thYy82XBNM zSfp8+v>yF<#A6u!p*f#ZI&)Pxo=>#RVBoRxCts!6a$-@r9xx)sh1SFFI`y+F{mYi` zCxN>BdW-2)qZFvjnq(f7|6gUs_)ldf`oERA;-!&rU1d_bwWg0nu6IBq-wK<(uh!wQ zy`2gea^jg;WS4QkeH|l}0rqJ+wP4;}SIJy1i@9M|IXTrd%ZV%|!bK(i6y9@J;LH{X zoXmAs|0*iGNGhHOrE6*jbLZo{Nazu z#XfN*%F3hOHNMOn%PI=v{vePx_k~F)*LjfK4QXC}TR=*Ks7H#P^g9Lb(#_AX)gn

--eKNL+%Bck9DNx{R(s*h=RrZr|sn&1PeL%d^d)4qH{~a{91~ z8;T>mz|V?u^6%h^GV;UA4@fdK*#grEah=_n7O2IMT+=wwCCvwihY@#oqNrpG&Ykan z>Tx?FB?E0Hvg!+YJqLSXh6@at__(;i&s&bn?edT`RyMY8Tr+b=tO0Er?Jqu*tjbVNj55ZsqE4@>gwY3l>disLX(SjtYpdx)A+1A{+ zD&gCUl^H$t|JE!0LC3@!h0`L6C@J|MW_ORfS;D#W*^tNVcQ@#2Rk z62dh}$!jqmxDS=JX!hoqzUXLwU6-|ps&h-evD_(Sw`cgx?{d>7$ckU)iB#caALLj3 zbRPoIo61XVavig*STwQTd(yexZ=33dWv7v0-T8e@vYd&W162==d4&E;M1D0}kHoFM zOrn71xP5fJBTv$Hhd`7jgHIU`j*Ti<>r+tKdd&MfgCp{d*^31X9@>rt36J#K{DpJ_ zQ4zWq<*0oHtRFs0fg!*sEWgtcGZaOmnpV0Y`MF#I0jWu)C{p{XN2l&G-s2mjy8EGvdUa+<;WB)f$2W(OUkcPl`_x zm!L+Q3PWZ0Sf(a6z|D|eE|pEL(`Q?I&S=7j3Z0yq;y`0%aR1h(PwrH7t*A>E!s2yu zMpKA~PRWoFhiZ^0JQ6OgDTf0sU37h3%If|C2dbF3`ebb}QuvPy5$Xx!h>Ds{{^}rJ z=h`==+Tzeq*Rs25f)V<%J}pu$sT4B_Mq^=N;%cUHWornRu}nKvJ-hL|;n1}OMLfGs zfWT3+cz4-c{gEoz=u?8UR!@u_y*6eE@92U$B=v}Xo8fSj4^A7~pt(%@`rAveRzR4K zkr1c@V}#pMz2s}y?0_%uA2dQp%BM(oy!vuN9jO-;KS@>i(&~M#aQBWXxjDo8H zzXP)9^xGr8pu+i%uR+#7fQ<1d3zQdOKa3!DG8Qe7OKwN0MIr;5)Hag?+|Chl#=y9N zS*;SAqOL&wx}T9oAz~^kl~<*oJml4-3^9K+sWt?WqaI4B^tGq&edGDW_B&tgwRJOu zhcxQnswt8{XgUheO9&yt(0>g2|DI)mn#Pd``2I!oQmWAqVV}24Romc1xK3HECmmie zXxxsRXym*hQ55r|T%9Aj-K8(!R{C^}(wSflA#SdCZ4E`voUDJBU0I5nKZqHn{H>Jo z$H2BZqn7~SxW3W)*B^TkVChApMI--rhT!^FXRvF=H{&{+7UyeKQUjS(7M{t=+u~{? zjIy_)kY-_UVOZi#$@q-K1F8SQIy+aY| zdTOmD7FrBk5R;}xQhWap`JtQ+AFOd!WAwxYo!@+SR8vbnxR|_l$HladUA&kV#+li- z-Q`dj%`g7+mFdYdUKD5x#d!D4WF$5Obs#e3Q}?KnX&;*cZU&wHZ&yUe>|_S>T~n`w z4(BpsKP=tjlCL<`O?TiM1}1L|3Y!#YkY0CE2?%CH+X$lv%b1M4No=n3TUM!?Rf%av zxyHo7QLc!be{HQ(XflL*dh&h`)NRNi(V>)`xKA&ospv5`vpzFdceLtBCR1i%@+KwH zF6!&ouV09ojD%qm{O;?dECEL!Fn}|LujT4jda$0hc3MxFa!iu4YC5;Y%{1gYote$j zgC8$^JJD4LA zsIYUlu+X|{2;+H)UjHkZhr+W($U{hVjWc}i2mG0|@tX{~u>gBY67v|8Kiz@9m{)8G zS?Vd;g`_a&>yKzJsd#gW`lPEe>4-5i7|xcdfvhYIK(+n#u-n6(rkKK=L< zXeWD%km@k_D<;rez2-kb_}^+?4XLdF?yEB2U__{=LIx`fl|;Ok_t;Oag!gIgXc{9P z!$bY3Wk~JE&%(W9%Z2wTQ@`0Kki|yLY2=h}u2F84-H^ja{}hKFN0yPEKE`R|Aq4eLw4HF0{mou*8ZOWqc}2aIGeY+v=JF*Ve$QA1dmIQEoa&_# zvn&~%;zX&P3^y$>`vmi3!>nfB8JP5E(3arfhe2hqP1FR!zLR}jA@Bv)C40)SjF@1) zRh`J>c#T{u9%s7B9WK{nICWW9Vejaj%2K|Ew{3S0YuaA}{IdqVLxKQ3)>vk;fU-D8 z*Pr)kZzOpkrjcYm$cyT|GpPjnqq2%Bi&|0itDwSF!qqZ}x_XKC3jt!(#)BzwbIR3O zdfYe>=1&rId}$3(sc1~tQQTG5ryjcyDR@dwlL}xxr{pcygTWHtno)*zi-r*t7ZfN1 za#9C}hP4PSWjuTr8U4=tu<*-qZbVCqPgER|0siXmUT6Nd0tNZ`mDl}y<*lK{#Dp%J zJH0#W8$-POLApvWQVUW6qi&@lrXGt0Kl#^N73Z1X>avT#yV>H^N`1{a>qavX5n0bn zPb{vokhMCm8j))B{l{WM1ffaw5e`2)+VySW8s&R9q44!X^+3OLM&)>+*+5816mCM7 zJwBFn*ixSZp!d_#V*&e4ynY3YneTq1w4khFJv&xH^m<{~P;Dep>Mvmt|NLMo2|Nfw za*S^paX1pXwdmp#7%IPe+f8U9CS=o#~ibHf@CLm99tlW|A7HNCdF8?!bVK%)F9;79CX zy(q!FXDyEOl;6gM41%}38lk8CfwgQI=XH(l*V3pmC}Z_tw1%?ZOMXWcf^+j%$GLMC zx!!Vb;hsH$Ksaah-JVqBH1mE#W4cn1TouU?!oo_4aw*X8Y7%*`n`?H ztugCUqoakJ<7!eSY8E94NrM|gU<|*QC$IMw$I1H|x}&8ptBtxHLhVx)!B^^PRgdys z4-^100q^`w!0^Uep4aenoO;8b}$eZ+3o$Zl}9}FBejA)=K zP0tR~Y%$QY?A2(WQEOLh@wK#f5*Sk*m=3%T*z~mov`{DcgjOm>+XbaLcqmJ>a4s`c z%R8}U*qWdzc0|`=%J>~$03trmLMYz{@FADr608R{VzeJ`TZ%8<{9qD}a{pDkYxV?S z!icl>{877hEPJ zLdPGK%4?=Z04l)X#L1joOb$;{kJR%MHDee5}5F@-<~e*o4Ug4bJ)k0Bw2m_ z9W6?tQfE(ldfBg$l6v?d4&mJ#VfQs(s(;*Gj>p{)`0A$>*@is%0?L$Pr6)&!#!!!p zE_*RSSB9Uu&YLyaC`--qB8tKG8zFzRKFiopid3%~{I|L85|Fa0-L9yP0&AKC#5@jkxj(Y8 zxKSF%PK%=wH3H|yG!JGbN!T-xCi3|Rs90Hl>Y7+#Jf)BZ-d)RE*7CuF-^*dr>d$xd ztL%P&8qLSM0z#$a#fePUJW^#2cftv#1M*lx{E&F${jS!dD=MlRN33r=|M@T2F0jyw zBsAn<{B z5{WgXsYrr1QoDA9f1@w%rg`YDK_Sx&{0ZB}B(hz*8!!@C93Q^>8J2LgCpJxp+b5Y8 zrV38lfanj=Z#Z758x3`!C>nP5bcU4m3sqnp8&{&r!%ti#w4Q!Z6Wb2JRnvB*FG9Cd zQF)tHTAQsV2O&vndIJ6seV8bfG1%StAlkHZ`bJd>OO`Ed%(ia2yqjBgUaqJEbAR-M3dA<9v1F!Ks4GC&R zO2W47m+^E4!L9O&8$}?0w}TVKaQ&AxnE>{MMdnSL@McWqLMLhJv;G=Y17ejor&%` zp!niv8Mt#RA7|CjjCvMBm!DuWiIkU+2b&6;h1d+wB(bDOaUVc};gYb+U`Kq?mgQSO z;JnJEla~?Zm={3j`5128E`H_1y(1lFjJ{OOihWt(=-?mT#8o1gveUJJ;l{tI$t#eF zsKRql2`?x!6%~h3eYGnp1Kzj#Vz4vEwj7t}VA4bT%7t?SK;qc;L`?)z2{aL~bM=>} zr>6>6nj;>26u?z5Jaf82brF>+b{dxE%Bh%Pc&%3gqQd9CgDU)bP(=z#wmbbMG;0cV~XYpQ3K zY8xHV_PY2(>mj5Nyq~;|a-Q+D85Hw=*L*7@MuOl@lxW1rNRM;5*P{{nEx)7Hprn3o zC*{V}WF||pc3GI~qc-#M&a!{{uLfjey8yMnW*guq0>n8fuvR(_qBI+sMcs4-cR@J! zrV1#R#lUUuOQZ${^uJ-}SYni^jSvh+>`VLL%LuuYq0+9=b45cUmGK|NL{({C$J z%uBW|W`agTq#+F{lqEYIMj{pUuRskBRh8cKEHibJ69mgeFWOYRXV2fG!fScnj#*_L z=?bxsNcb;uk$_<ElyxMcLIDy45F(Z3_PR zV%dSb6h(NpcwlsN#=EQzaAR)Iocng*L_IBOzF!eK!b$86>w1BBXC*7_lVqHRb=K5s zF^YyiVl+&uuk24^{Ol^oLyQXZ-M&P3bh%JMS%6Rizp;gcKv6OUtrm%e+swFzbdvkD za_24Jp&XS_6I9beZoa1SNsX&@g|zIkS(L1-si4!3Yyhr%rB%6L3$+ij^w$YEIudFd zyY$l-Xz;b`Zv+Y9+$AZ`DlY7NJkX&%+dW1Ho4(+d{Mr#%aUiXl3tno&n*jxF^`K8Z z_oZxbgTrj&?rSc`8sR*)uYr6ESpf9P6csH9bn5atD#6#Rtm8HtI4Dj{F`JgeZ7Et? zmmS+W1#$auF5Kw&fh$Jf$Y42&b1m+<*A-AB=~#tJpe?PSo_~v$FEIk^BFG z4F4io|6_Cjq+_Lj6>A2)vzh-PdC4dtH8wm3Sq;kCAG=NmE5GQ6$H1h@)=X&LOpFP=*zCi9e_J3-}3%L=jke*>Ium53UU z>dxj7;``qX-G*_64-2$m$QOcx(wMS*p#L;pP8A2TAP3P1z+B%o-4>R>;G$qbVM{{; ze9n49b3i@*=k{xBQvyB$vW@I{a7&qpw3y)7rDbPGZF**Q?Zw{n%M}|EyThugx=&gf zc;sX9nQ?QD+Dq|Eb9?3^3gyt8TU)6Xm1*PnsfzHgez*HtBikzh3#|C|-b?Zm1nZ5& zRvAyAo14bLIPmUODLmU9OR<&9PNunpXRq%v=Gv4+QW{E9D8FGP#8o3rrGYv8uiIa= zVbL}?wh#cXPt>9TiW{pp#_qBK-Ojo_zbZKzW-jMokHT(SNQ>)nxsTJbst(a^-KoZ| zM?V;lL?tC9(`%%@BLu3e1s+p>e^0IBYKoPS{!S=Lo`a81>oZa;%l?kaNegTjTVmXJ zH~ixx4lV^sgXCr7umPR)lG9OR>+OrZ&s&1*&%00(0aGw&QMzs6Zcr6p?{<9al6CuZ zv39fX``<6fcw=xNF|?s1isTd6I*F~2C!#{Z`0j%!&9UCL1e(do8>#K~6V$S_GTEKS z+lFDECFv!+Z6hOUS$vBb^rqA9lz7ei#KLPcSpt`ZZh3uf1LeE@yB<7JK=SDr&g@9U zaF?T52bJ}$Fr(}Ji4S%|rMs1%XQA9YhxNA@OodURISi!P1Y?|U`7vI6b|`n+KoD-%FaICStEt!fOmmooIez+P9}oVDJ6FH{YlEzhH3vlE^ijCI>wtk>zEOZz`p@X0?H@MSlU1%uII1X`5H z_%1}K?%*sC5xwkBL9opV%5wdpD2ei^Cs)^QEMsVQ%HsBSniD=Fb^sH%O0`zPbXk@O zTG~fz3gJY!0KNLPtFbpF5pa)8)3y1QS*-5F${(`54`m~X$V^H>G;sQ8y~t2u;-rni zpT_5kA|(I41!?5hXH+zdOet?WB%o(1dYe7^dww+Y&Y1__mJb#XL!hQ!fmx|%ZrHWg zA2LP5rYf+nQfoUg<~sRZmw^#{7NB2LwB#WNnHI%+&w+7&n1W=be_o5Tw)LMsG$RPT zBBMB{?X1F@pa4A38!bQGX3O7uV2?NzNw7~4dV#0ufl`APJ>nnuA$K&Zu#EgNE3|?* zs-n0hFtrI`_rkjB$a@6cUk3W*mp>UV)S`=I3nzPC**^Bi!krm#;^{!(MQz zDJhVB<}vE`==wGMb$DL}q{a&iK$Cir0Oli3>QaCEuC@bWA|^;=WX8drg_sXp4PEb2 znf&|FlPrR@!#TN>IN+kK7F0dMoc}ysPY9w=<^iCwFL)$qnss{>E9k$E-M`PE&pXhe zH4}ufB4be8*XFzT6<$Fl_p+B$nYdWC37wb=&4-9m_zCM< zGfQjVQS*+WW=cwyK@)}PNfPWw&+-4m)mKMF-EDtMN!L(HceiwRcY`!acL>rk2t#*w zOAH}McZ+mNNJux*{eHR6?^*A<_itDXu+BMq?@w)bsk*C9l~x?@wb9%fkVVViIzBJvYE2??73@#d10*IYU&HEz0y58nG` zWQ=!sZ&JZE{GNc<+j$}`_J}~W>%%tLN=&Kun(qR9E=n5-rPI9SsL0kiVjg0?bJyn5YgMviVXCyBzsuXGZ}&PoV) zq{GCCfqRjNKiVC_5dY%*d*{LfTW?c0-c8TV>EOGcY4`r~*#7&~v@Txw zNcdGwm=h{zXgO{*@d6qhvdYT^qRB(mif7VgEGhm#X;{@dd+fb(D^sB#(Grtn4E|+y z;Bo#3*+Vqwm20n$?V;fZsXmYAH6cpiN;WD5A{aGB)#!SddI+3e#ghzG(eG=YZw$MW z!K^R5CBOx;Lge2_pA7fvo%$)?l%iI|`+X8r)R>&bdQk9}GS-|;HIL@Lgj zNv}exOyxEjM>mfwLkYcx=s>1#MP(Tj}hg9GK40L@7~mRM9wOi5o~<{4X$C16`1g0-WgxV=4^Fx1wkjp-!KTIIDQ zf7C4ZY2iE(wk~mWwZ_WA4KJwGRNaz2ucakru8T}PKK|&heT|-)h9OF8Z_s9uKN1Fp zt)y9_AiX0TBV)yc#LqrAWaP7ny?PQ_B!bkWg7T^G@bJ?EXy^2v6p%9GqBd2l?r6m1 z(0!R82;31G)L)9FlZW}i`1&i1IAIy3Bz9im(k}b1#%{ZXIojbBewu9+yY_o^ zU5k*~pYT-8F0)?YIP)Lh-OjBfiO1{JnDZr-A9P|q&kaBP-%E1A0DHV`f)d864j)O< zayPTpo%r$pSNWH3nx|bm{?apxirQjGeUpOhMHZBO+pL%QEjMw#&1p}F(R>{qO9oF+ zwy(t0@eYYz?n6(NA8b#RqE^3ur$u(O@Tia}lWt4#d3||` zwQ>h%a;8!=MEM2nX;WE6)W{ZS$mmh2k%}QB$nGod(^RNpc=Hrc@8zL}2Cln*J-7X`t(P&nR~C$z>*_EYAVVPeaBipH z%xH;1$rrrE2p>PbCg$@3Hys7`oAT!mSw`@ zuq*!xu38g1MA%uYq%za>V=<6xn_G+qJT@?k(m{8Vp4=_!n!{i1kQFkB&ia29V)c`> z9<+w%fZQR}*0non9F*99rh3eN3`?GU5w1y&yk=Q$2?=!G0EMzXa5K^edrb7nO5hO$ z<<-OABy_d)v%Ny!mYI1=WJ+I7#S0Z^aSF|js0c%wauZ( zU|?ph(Y=-JeLwka&aa8$fyRJWqCemr6U2=Cgk4=##KT<|32jI)Nd=-L!(!Ki?o%x$ zNl^1~x?C){FgX8^Q%!W#$>ed8wzcI1l26QvsOcI!_wiz@?(N}3 z9(FbRq+~5FcCr69S60GNv)XkP#{P~y`!mp$n{fMlpxc=m45iEUg5R_Gs(Ues*BSn~ zO_H*7s7x-3NRSZ2wdWhvJTB4420feF^5&OnfKqT3GH1?o>G(!>p9)d(`6}4TrW4ZT)(6(TnJt0s{rBs7 zSDC91vAA=9l!j9ZyRc(UZ(?>{XSsFzy^&TR)xlhs^L~*hg1>&ffBiL5OoaFcg8=x+ zDgiA_BQIR7i^k#V;&ial&ZerSA9@zGsa-i;kZ#D^Dy@sC_wyh%uq>7PHi=qv7I--W z#a>8}a`SZ}E|%xfkeDiRi@Pnt0A_gq&vh5;sxpb;0l%`5(S!Xx*XK?8jcRpCc?4E) zoFXpZ1&mW9!C}pAvj1-Bx>nbv;UvofX+#TcC}ZaCRY1^bYp@APdc#43YysFIe2knv z_PM5^a+yOE@pOT ztow%R%uKg|rPSjuiO&aI@7u;86;zZce(XT&5#rB&1d--90zOI^cB7%BE+HXW@rNAN zhk}to-4;%oOGWBS&YS}dPLkhvrl8{Qh}!3eht=Yxx!8akW?-AQ+h|#p4w3)a$ZA2idG|L} z(U_k<#p_%zAUOP9>uhXhn?q)L9li{dJ-x+w72W3j=AcZ5VMw>cb%?tFb(~_7bK+kr zPl8FQWuSvm82MpFBg-cJ3L^H$9Ehdz3ANBuRz@GK25Ar2?seed;RW3^@qxs?eh_{3 z^`IHc5{{K6?I4p3GXy#LwK&4*v|p0ukk@87kAf_CczFCXHO+(Ft6cl3;f>}a+f%@w zI`3DWyUiNc84NzK>W2) zrhGUp*i7-nkeUp~yy=h0c^01;TFOcTe11NKYs^Nj5Xj|mtD3Fb@>{Rin2DPWOEtbb zumP>!Lr(dJ-~!(i?_hqbRYM{}wa0HJILoj*~aP zzL8ZpWY7-!zL-HIvNEl5nty`)uFhamoS5+?eS>wbC1=CXEH z*g%8^=+kUrsPXgr%A=)TDc zT=#d1bkIeGZ|)n6!_`5_SHe9VID(l*4ya2(OGe|r0uhW~J) zUl;YI?EH(JycC*M%9k4BLHTcuA%O8o#OeH9_Zt1;BOx!X^E>z{`p@qE14uv@zw&d> z7XzD5S36={l}y6Si00fBmRDM=LT!WK+ezq@=vv9xPT~t%@$b;aihT0;@^1t1J}i$~vpqUG$`VjmzVZWlv&L)wyxVwF8k=9tQc-V_Ob|Nh zI=4f6RgJ~-YHHpPbuL6v$;S4oY~*|^pKVLd)!KFg{Y4>#q)E3%f-OIFax}IvlGqSt(vH#5F%>)~rY214q-pJdNi%;L8e#Sc1th!i? z&ziyXWHF+YR)e8FKN0@x_j@e^62LkW=icWCC(WR_T$hs3}7N_U3BD@mOBa1Cgt+pe~xB)fLF&raY)N zzQ&f2--FJNr4*)8Lxb(IRMf zeIKMs;%Y{=mhp&#UrmX~?LZTJ`9>7iE8q3#zn9)%MKvIPFw(YyCRb~qJ8WBnM~$QI z^04gNyS@YsMhz@_utpu}Dn8s4;u6>onVdtO%4M>)%-3()JO|GgsX3MQ{(y>aH zVf-j#w;qBhA~pN&`h|@^D)Q&P>?@!mH`|)gm&t0f;m$$|Xl>Hf(_E}*XAGq2B(|ad z2l6!j2j%(^vPTA}?;UhsjsFi+vJ4C3$%_l607?;MccW5QD^k|Gl#P>n9&gigPI2Z} z0not?S^$jbz%_)AP?o728BQ5%W~OveUtc=FmYb8cAjQ*_!;BSwCFo{^nfiV_vnqPQ zr4k--EGd6%YDfhpRUJpg5QdeG732ggkc-DBh}u;{?-@#0+(WHTh}%S=V-3NMzN{Z~ zi90uC;}JebK9%ipNW>EU4FAxON*uxpfO+X+VemZhl8IREGzp3`r)KHY{&nI_LVJ>u zFY!s_RKiCQZpuB`kzlF*{^A=}eo1sP5%|!}nafxL6RK`ixDwS|%9WCs_+2`tgFIY# z7V1*^27{G3Re76qclZ&y#!?c&tGs|`E(Y(2$jIb^{PJ=}zP{&Q)tOk@(z3D&>I+W( z*K`b=J{R$batq1SvGk0L17uG(Lc*)zWRItB(I|FUDI!2_L{bvPx0^9ESv@fcUW$Fx zeVUO3EMSG=9>Ei6H;{bJ;k%3V;X*YvxZWezp>O7EVv(A>>aiACz~8qVi&Ct5aO~bQ zNHd9QHmHzvFyGPHiICJ;X#mL{FYo0gZJT&OVK$f zv`9-C5cvY6V6PvyrkW3LEETbjWG{q@?c=#3_}t{lfVE&a zc_>O;8$4I<*WL%S&bvY1cN_72^1Hf~0X49cbXdh{rfWR0ECR&e@6T4~v`TLxAvgnn z`cqA$y$x(L^Awx1kqKUcY{}hDO`{08l?0;w&iZwShJ`~v&X5VZ*XE6QRGn2>VObZ= zAD!QST3fh_om7II_`N9LevE?hMS%#c19EOi8)`0%lal#j&Zi)^X~&W1lX{!rri&V& z<6klVC08d5P;2GqHoTGE9BX*`NwGPbbYqghs6H|o*|%?`HiZOA~4mx`E! z7t$eE_*GkW|A)Gz0SD~`i^MS6IM>8?_XtnO{hwOq7aQ10ghKEZ-@RGxlm+LM6&Bbc zUGumhe}a-xc!>lXzi9eXg(wCXib%0loscLiPKi5&0^V>_?{5siJ0^Agtf$c9w0?-r z85jiG)rnr9ZJg~zT@&vmO77<%`C%hzO)zhC_@;FGJT0ULgw`hCRw6A--@t#`bgAtmA0;Rpy2Y;Q}&n9rn_6*Va50AmOz8u z{pkTnX^-fq!W0dZ-~3Gtud`7*YT_W7-aYZDEr(b;g}GT7rRnK*Jb9triVUz=#Y`5; zY80q5eTuV4;t?-2`>5oU zl?V6r;&R7`w63h)3W71r!XBzG_=H5BxD0!WQ1c59z$&J5{E{Vv2mD?<`P z$&Zg3=i?TfI8j>`@)eC$A7Xc~YG&TVw_c)Vt<=7)@{_A~Z*WVEAa1Q+2SEJYuX3T7 z_M3}a?6}?PS+TT>WV||W7n&<@Sl>%)3H9u-g*?Yi@)>4?IS|BXy70TvT`c<(tT60q zz~7jCkikt+QV3D~$c-Yp1Zl}?yMp^8yFw-QOaQmr{*_Y*9t9BkOYi5)hs&r5@Mkc> z7VA|&2ZB4+`er%U$@*wRP4|!Buu>~eZrJ_5`~z0s3Bfc1JC@(!um2qlhKd9Xv%mU> zQ~LMvoT9@t^5UB0_5?$n7S4oe*I3}CTnvD<+!Z1KQrdjYM$WmqcW=+SJ^K*VdW z1{_^JNYm6G$v7;iWSLA*;5Kc2f?l_I*_Zb6*CpSiYf^N3ZN6W4(?RW6-tSIuQL|>q z;2ls^d%O`Hgol!w^6=&b5`R}vP*B&mkuowO!5|R`29{ty430nH0gtt{pmCE*yV$W| z@n+2>7cxW!jfgS#{!i{x@XPq_GcFtosBIfaRwuJ@=-ga3q*z&vo5EpT=l4_J#Nu7A zQ1#39_tPw>vKkERJBcu%VW9L}*d$_;k%dJPoY!tY#=5LakV*_C2kpxg#*1{)vsFtd zxx+)!NC(%t;fm=QQ{i<*ALmaj(3&lp7vG;$4*VyJ_z$LHzP@%c_UBDp9mldbHzRn=Kydzay`()?}+n z@}+?{QdU;hMVjb)H4k!ch>Md%nlbkA!#muZq9LA;nKVF&&rD0iIyzctCb<6n4R^Xk zIk*WQ{C;r@!)S0AM%j=Ib!WW$XfwD(!^pJ|WcS!(V%#^8AEG}2aC@Jt&P8)1^Gb@4 z21TB+Xy{_RRMb}9Kt`IG;+6}83(c|Ov%Z8Up_PS5=1=XdNd}l?j9%7k=YHIQs^}4{ z28xv-Vo2UBx0<3xihUYJI4l~cV2;MvH}ZWq*<95MZv;cVtq_Sm@N*p^H(jAtd%_nX zx*9!K($Nrh5H)M(wm~`1ve%c46`B|2k2HhW8%Eqh9D|>B;J}`eu5M%|BkzxX7mPFC zu<+%J9lPTv#@Dg(P5)sF{&Pt#Twbv0i182o1djmH{)Ye!Ac_AAt20#TT0svzApW=V zkizPe!gVfPQ7B<#Uc-;ZU-7|EY!edY#w@*#`SK$-`;~x?xV>`pg7X~~MpBlQx~^64 z(bgjZLis7#yA#^5m@Z=x%^XskU89#0)H-*rV|o5-4{qVT^J^aO*s*A2!^l9H{JveV zyOJVllry&=j8Wulm5Ar}rq@K@&ehc%CEVCNl~41*K>$$#wuZ$nKz~TV(XIFj6TR89 zRWD%5QUMMzY*r#rTw|ZhPhR$Dg87l=T=bilpgZYeC>ps*QjCui*{TA4lkj81BDR#H zmVrVZ3j-^Sizds{5uIq8#6*MNAZuImz7a@QxjUi1C!0y{&4+c}&ZlhmTkqp^y5h9* z_S#TWxrZTzag&NzLL#EttLaO<_B*P|rf0`x3MsK4ij;X*cUb1dv)^WoK>@|s$j>MO!I@aqubQf@0>oRM* z93zZSWFmpSMnA-yY>b>f7S`YNo{b%7)_6m!_uK6{dkDZA&Fc^PS?_%Jisy%p>^SgQ zvzSPR`lyv@zX_S}l?wkoeWYfLw9E974QB1u<|}MJ+ZHS%Ppv{6wsD~34`+a5J33O$ z7GTOA#SMbd6Em+W8$qS9@QXL7;ksgCfyDPc z{X!3Wssa67L2sFXgje0A%OOvp5V70l=^^9C*ZU(QLR5LAF+E|+NZ|LWSf8Y6OC|9@ zC@jdaT${Lis*oxSNe)5Jl?_5<^;B9nTuOXa*#-mY{;ik|J^dV9>Q(dkRe^Rvc%yyC|Lu%MN84p?|@_TEmm~juCiu{&${XRr4D|LAl6}sSitN%tkjHO=gs+|J!u50|-d)hT&cobWvv)D(X zb!%5|)d^yoSe!Sx3uK-jRmAe1i~Hh8G0O;ElRv3K`8yE96xl9%ew`(?LjU#M!>GUJ7hOxnH19$u|VMYh;)2ba^t5aD4T9yl09qO)8PsSJov z^c%i~Slq6^r<<5rj)1d5U-(@4W-DoEE>p@#MC*8VkU%XiTv3@aNG%&Q>5Z;Y*5X%b z9Env-hMOccrS~4QbyAAe5TPb6Zp7yM+Gg=O-lJQBH%eV@HcpbaOKo+7P#F7fc`!tP zj`cK$CKbb@!Fr0+wFna;9E^+_0*={&o}@0+uM`ya5kohotOO7-NxN4~d=YTyq6Sw+ zQpBn;kJxS31w1x~TwF(8%}?`!G}LG@SXo*7fmzH7Z8tZ_Cv`P6JlvVV_QwyA@Z84> z*)#!Q2o!s^$4@F$GAkc z`8o&^BS2qPxAB`}bZ!nGmo&eC)Tuq#(tC9K(_5Ik`!(5u8L?>mmQy)!ViyxL1+w^L zty($vDb**IZ2>*hv0iD8J$X_t;LvVN$ElN%3es@qmZDR47dNEtF zl0>}EF#Ro2&YIn^3In9E6=jWysIUCEoo=`kbSb zr;7#98P$3N?{lQGS0ZKyKdrleJY%`;C%JHhg;1zBxt;12fu$3P!`^#hVG)iv$VS#Y z>S6B_wylbvxY9vu$Z7apzOo`Wn+Ib{Ujyti55T!3-ly!@Q`m1Mkt-t89QJuUGO<2= z9}Z6!L4j#;>U%RU8X3D=0S}Jb<$amA81k=v`y5LEiUoeR*|moG)tjE< zsKe5yjnT&6y-|CsO>WIiN6QU})$QL=3T0#a98h<}WmQZF7#JLS2iU%DxYKTrW=n76 z!ZL70P@T;jZT8`jk;xX23-UNDMjRy_UUfZ=a0L8jW{sq>3Y6i*1k`4k) zZr4zJFa3HIvWdg5Ab?*U&OR_!%HhO*(i%48b4R8~aBc^UnNW7C^j$0xIZ-6{>0=7J zlQA+ybC#$Ve))5?w5^B@;GzU)`xQPwIw09Hy^Hvpq5QN;qFka-FVKU*X5-)?zQvJ>~}cp z)LtOufYwh(G;~#7uKk2`Mm@_A;S4EPwudd6&CTr%6;L5E{+JA%$kXOKP)asAV%^CQ zxO=3crEzCMTLJH6)$bbaa5Xo&+0Dv)Aj$^!pcv&aXmf(5&z6SzXKR}7DdD8og35A|}MAcMSO#ngz{1ccAYEB+8=Mr$1bv`=)qA?3Z0fMF1 zkt8~qaL61akwiv=e_3#v@L;3oUS}<}qsxl;J?pgWz1u-?(UnpVxPZt5bYQ3f+3PA1 zLzL9_yKe4wPx^d6A||xnBUpLhW$fEcOj)12^L6}CAae1xj`XJ;ier4N^w3)l3% zAE&HQ-?1q3fOKg#m{mJZ^h>df`F4#L0C$xw_@UwX#7?)k!Hitt4~C(9zM1wx_^8JY zyC;iROh=)MR)6saa0iq%=9m14DA&MI_-i{3p?b{8$Otxh*swxENB-h$4=naX zb!u;aZQjY_JtL=Ai4T%FDitmw85cgs9f*3%P)gBfc&nxNXN0YB?FK^3po309V3n*O z?*l_riO)2n^}%9)6Y@sXEXrNJW9~sPF?r$IPX;;@ojgYMNvV%=F%~mFV(o!Gf@Xh6qlCAQt%+<^fDuHTq}9wn(42Mr3mr37Wd=p2JqP~W-Abgdi}f(;8d$`-x+gqvA$38-ke z-(rf^!~Tb%9->K9>SuJiGj zioM1l=2JSqPcx1**i4fE(-?NhL=y&m+yoY>L(RvZx1{Y0KD0I6yh)!aE$B>#@?^vi z@jBwt?7`UmeopJNLM*~bcV?=9LTR_P_1dgqEXQ!o8LMy$jo3b|Z+cuT$VVJVx}sD_ zcJ_I3O=P^4%cFtUN&V*BKbezv&^}9MdbuA(}*HL7TJ zWdpb}hogJd;C3gyLq>fsW z2!@9A?-czhCMs?9kkdtJ0sBas7hwRS1UZWwOfQs*-Ch)oFW9=$z!F2o?;F>&Vp0{X zQB8HtLW0~>kgpgcD@M=n5+7MHI|puIL}eUNq93geYM#Sz%O)8eWjXAdef{^&vqyf2 z`?LRRjdz9B0qkVm@B$Dq#cw1kvQ>wpgM(yGC?vj*j!)ktC{jS76lfPz@Y3sMW_5uB z8JHq15)-p>1-}5IASpSycX>h#qlqxQfWn-NK0-g-uhQAsvG_53;T@#CVBsMAF~J!N zzf*VWwnv^nC?X1p*Cw^14oe^KFbrGlD_uL$Dsw(#XQB;^V zYnvQ1N4X6K^D$`QV2qpFuk+!P5y<)svF~NDuojHWYggunpM&n@_Uu>WQypSIQAruT zq`M!R)S}U;=1|6HlkQE>h=B2Ow}25!mW_Zk>%ZX+FZ>s=+?=;Fmr@=RQk&wj=r8G= zmIAxuZv>zwzqL0%<;hgYC|nL$VJV$l|D;PUxF1`4q7VP^;tygN4spJYlQ$MY#mGgz zV0jst-XE+?+Fwul{AJmR?U9360t1uJe+DMjT2adq470}Nt5+Vq7IfzoHG8Ho5lloy z30RSi(UB<8pgW{se8BkE9_4ew@SWOQ@LBgXiBMlrdfDr~WVt0`#A0Pe1I1kATS zfJ;CS$)HJVNO9+aP6aOlB#L#NS{g&L8FeVO|o&|pphe6unD(W|RNhy&!d$-~2K4J9> zCRv1wg{*vhD&Oh~z(XDOK@$7ibCt5rF;9Ef#Ni-2TImm;JeXVenhLp&m#gQsg`R)y z5V_n8aSZS8|CyfFV0Zd$KfJcTBek(Hm|H2Sq{P+t;NGGbgJtelH^ich)Y@mrO^7Ef zO8R;8lqP|mPC0{|-*Cmm>A8JD4Yh$W4y00@yZIv+`rDt|YwY32c&^OVesURalDCSQ z@f(QqF^Zy+j59M$L}HC19w=gM$eMn}pvzIb_ZNF={yd(5j z5>fdcb|zfvT?J~6mxR4xeLLLjKS`|P3Lo=;vlJ@R$Hyw3x?qPqza0ekT5iys!WpD| z$kK21!4}l?B`j=s<4un~KhyoI;}*AC<^qbV>Ee$c`x>PM$n4~hXy9#u=P?o`O6aD` zwYl0gHJR_2nqx)o-m7*VPl<|(is3a4@aL z27Qz^!(i6h9bw;_H_aAKiNR2BMpw!{cg-P+_r8wgR~rRgBL_}x(MTDE3-40ny;L^e zhQrcr+#bS(u~xl>>P3dWlW3& z7sZ%^{L)9!>o{8#irXv^oV(?c&HGs|XJ%i|*bAND-H6@F@8=>Kf~C>83C zJwN*Q(E1_M??Gm6$8zwrQ$p-A`GXX09m*m3oK3t zih7HZH64~QqDaAVbXaK8KX!TH9T|2(!4=oP?*oaG$IY$|-)azh0JKs}qMY3u zydy6lTBWFUE|RUCF;pB_yG8Ay9iXo!)kK9X`*pHV#(XGFd}vfS#HjU3BR=M>*VQjN zIcu$0kKC%k0k#gx+Q~PrYlQUu2Eex3L=NARU!_GgL);we)*cOcintTNviAA1XC>Dn zjbS~5vb9iW5&Te=FX$x9*FzFF7k`CHcl*nWtQ&e zAXXEAEW*FQy;lwRD+#i~Ywc(3%zNe3am$Llic)Rbauzv?8zKrny(Fhb6H(RH@t5WH zZJ=rSWZ7{39nyFEUormj5UgNmH?`1@Vc}?PK#`hH$v*uxEh4u%7qal_|MVfehWdVJskg$;gGy%F6D|&_1&x0e~Pvdoe z#Lee%$F)6{BMqIey?Bt`KOyJ0ydK1f6(eGVh7`Gx}2{Cy}=%DPljEt0FY}9xN>`wWvmO~JeA3=soK$yx*jXDE~jX6y@BBxptAt%R{Hh>hczp%6Gjxf8gWG1d4N`pBpd$kcEXsUwmzK` zzmC%(AdW>yFjagj<7nt!5rIrc2lbyy9$8!q{5m(FVz^RYQ@|(oyv~vKdB+qK_t%PN z1>8Q4KE1dIuXx0-g$s4UaWg{ip6A69$L__>Zi9yj%GVWLIX)>U8yd^@kwdy{!F?m_ z{Oqc4+G|QbD0t#8W}XM9;Y%$g*^_?rQNVHTr;T2Vdps_lwvINCFe}pEABk{t7Mn|B zmLO{Eeaj7!zTJ3!e4x|Na^LvCniKFuHi2Msb{_DoyN8mj2wU9waQSh!SK{n`^+`j3 zH?pI*r{}bgOoYiOG<0P4ilkNEzTP0B0LbgkJP`r3q@i&{=P6Z!r>mW}WT1>tMYzy&9F1zYZ8j^nh zOOxlAti;mO9fGHzvp<7th^zNd!$F57&-DO6CUq%{{QUHdY~&Vl>3>FJaI&;5!M-Bj zBT#F3zB5WmSBF=(264VNzTexyI``T*la<5bHICUEeb$OYeXpY8xP%L~$Z$qFfxdtx z&Xjn^dq6`EO8W{L=N7W$K|(;%cIh4us~t?-Zo_7BeepN@6S zU&wibI)UZF(+gzT%aJR$rQYl)q>DsIH=1}I&pEBIgwlDu;1LeM&L9Smqy4Gk*(<@S zu653JZCIm83xfbRs?wDTB9|E~HFF$rma+|I3y3(meiekT;LfkD7L885&-m4LHy%6= z_~)iJB(P)(SR2?gYIzglDoAxgu(uiHG`gUPXX?7?b|9Lqk z&R;m$bGt5VL-{V7#&z>KQeu7C)$zDqvPLMCbAy|%GcLbIf4?M7f$S@O&-i}I4BHC1 zwPZM17gFT5yBxPvr#zI!d<$$IPlo*&+ry#p{-BNXMnmV4ZwN;I{vC1=D3lz!qDA}K zWrE%q#U>xS%_BQcIN*FUbJb49u;5tgi zZFPr_bWle<$$$WpB1}k66wM||k+yqpxR8_y^~9mQn8z^uR#?U!8! zVfh{L`86Sfmg5;gp_}eBH%MW%Wd6@@fyU6oNTdB z7mRRRMW5@mBhG-cXT;R|=fBhk>@aNPYfoP`ral1u7DD6?3eKPrBx07)!5_WvS$)7K zoIy@F6BP|!jvGfvx(6MP)S^>W@PErk&gLeM4yR_TX4>6qN(aXWyN2LT&~gebVg2G> zp|;$u6_{{u{r%!yNdws3ERYQh44~dA0Y?Y$5?X}JWCCwP3P8fjsiXrWSoszTGEHHy-fDQX=l8Gj#qB*>WK$q5UI#2?rmpSm% z6TfulCfGLp<2M!?#{sC4@oE@ZXBwFGA0Gaz7{n&e92vuY!SAoJPc`YWKqQf;N$%i* zgg3N8umXO3Gt{U1BV$JX1|-1)DzZ0~z!EN9odFQh{HgFQAuG+9~TE*pRq{d-zcVrl=o4X-+WcV8U@JDTM(tgH|Yy}MM5 zi_uNJCc?&+fi2t97^0C9>)uSGA#Ra!LvDG1dsu?!3Z>rl_S;&rcIVn??7T%luDptW zV?(2}?1>51OsUw~+EOH7q}YF)4R|y}G3o=fnk~SJ@>-v9|A*W0fWgXN)2GYtR9jl& zj!j-92b4p_2luN1gk%AA7=tmn)Pv;#-Je~X4KA+;g>G+p)7Z@_g?1+Lsl4u2xYKw% zBHUS)Zu%{K8$M8lyTd;lze!iXwLaa#z&1{lz*ota4dYdT#LB3$Dmfuiriv|qa=SE)*p#q z(A1;_O~op0mU5ApxMYO1l_=$ehmp3pD~IzVajXEg#=d*UJCA0?McGi-rdzn>Uy%E#r}`Yxh?2LEjn-buOM3x z$-dng_CV#Mk8BO`$5^b>Ld-~fOv11|hIC<05lnBIAWMbQ-$u?Tx!EFtCEGC-)kdH3 zpXUgWmqnb>wo3vurK{LD*ZAMTI8g%Kq?17v6v7>wP$Ysktl^O?ya8k@e%mk>jO-d} za{qZE3Oi}=X=k6gBzscTF$nwMTgzOrB6TQ4I9+E8Gg>1^&4K(*8bOlJWp5V68rFBh z-ZpUhLr_(D3cMkWHGR35Mb+C;t;hl4z_2ZU&kW82nh1K%of(?y`}}Z|6*3*;&qG9%h7wU?n}c;gFEd=2Hur= zIxL}^%VUeO;ojbLuQdXFOsXHk)CP51xAq` zvgv{mhC`c(37@|S$nQ*hJKi68i0m$`R1u~bc6f0ma0FowSwFs}w^kY8LJPRx>2^jQ3FRib$D z7IBmOtBS*bt%yD8dFuK08=G177ZtpD$i>ZYz2N%JpCzh4=XtBN6U&RiJDvew0PD4r z=x{81P&G0dr6=?xL6LwL5UsX_0A;DoBD;n22hJA>dp;ke*P6<@7`=Wz6fn^e5NRz_ zvk!(Su#XSz&ac~fH)X8ebqJ{iwwEfH)p{7dy|qN5hkeMyxR8~qA*5&#>kG5P#wn5R z93rRBigwPZs?nb7QMU@dl|W{uNv7T?x1xh)2CYc%NU0Eixw*wDv-P(oi0)be8c!gS zr7IfX^yi}|HY{30#6oI8bi4sE=dFz%gU&)$5x;_j239q2=~;@=kaGmOmp6tfae|OsE1KtAhp_ zq^Sp6Y>e3wRlcmZid`$7*2WIU09WXEC?%4C+$7&+ z#+_H-O!X7keX=*PwNw2?Fw=TUQu0o9y_TgvRTQExwVzdOS8+!${O#e{pBwT zzp;d`P;(f!oQt;36$}6<`c1+7#TgXP@ss5BCjTR?oHOtg2C?M%8@Hesp?R^IDbxIAb#5 zR$|kfuja<=8zLojP(aLDXRfL$`NOfZt9aVXThA@b8z0Z~TT&g)fvbo+Q`@HL;LD(0 zOEDo?Q*=Uef1RQ^zImdq8K)%qAok$MW8`(UKe9+TDx=@rAbkUi5oZ$QBKE*?25M6* zlM3+738uf^mVsGr=>z^r(4WM_`00;MHbtNW+%E=n9cl)eY74&wK%4Scr}nu}qf;~# z`A4SnxiFxT2s-zIdy7dvha9+KvUa@j7Zg%_Jd-?C+69l(H~l%lTD+wIZpcW;YHUp6 zE4|t{L0c_hH@gz8(sEK-z0~&`1k)3SK-YR@VR)pL7H_Gh&;P5=-je!TWiILa4?&Tm zB;esy)%d3vi`{k=z$-dub!UA ze2z}B{-iISP=D$+y$o)4Uj%MkYJY+y**b(R?qnD1mGICna7Jdn4B*aMi6WYzN|Q^* z?o>4{qxFtkUQNB|16{{nOmM5vuMVmmL^4{I&zO!dYE@_IVkyDxZ)$C`^*~I+zquWFLFx#JwH=zuuEx7UtZLD3I6kzPu$=I`F%wY znfVTF4Ty3)a{(j@I~7?#ZBMUKZ^;ZV0sw8O6oVjqOy1DG0kO)s0AOV>TC)q+;$oME zBWgo*>9k}4$lOIJ(@JFXgz6E5d+GiWvw%h6;G-l{8=m?eZ2k3^@ty|uaNmx*vHouN z1iCB2Vd0e#j(LoHU*DIHY9zd&L2(Uv{r)Z#-)%xx+m)uB58~(Jy-f!S#@1}KxL*q;n5(Xh3N;dQC(U$b7cyP2Vc9)usf<{=?>nC z$!|#`@DkUTv7brlKl^iX0abDrO59tO=_t_?c+pX)ASHTSyeai-bt z8d>=frA@h5;>)6i>w5ei*HOriFn6kJhQ@7r!xZ3A5yH^*GvxQMwRB>ycV&|Bk4V6i zaQ)=KDidSY&KuZ2D3K@u5otKo`Y%cp2dipi%D_b;&)>aDTS|(d*K>`{-SU2fY_^s( zB%Vfmcln#x<5o&j^OB%anUBce3)uzcYOsdse@;yq1qNn;!jSWYFFN6-IUAwi(Byc& z)tbsA4xO?Pi8x_`3(@TTQ^+DOzAVc5qDFa`11HuYp`i)7>8!XDxzWQ(v>(}11*$^g zZ6Copoh}^Fnn!R|c4>*KS*J<^vy3@S9w|CXmiG}OWQmSa2!)^;_7kT?w+#F#_<|`5 zx`*z*eEAkvVnJ8@YlQ2Fs4vM?r`D&Ai!)MGH<`gzRl%FMuG4yker`A=%4cW^@JgKI zkUqg#ZDE+2Arw%7157{S(1NYiR#OE|{SIh`X+b@E&SCpH$mY#s40MzR9#zTrC{wNLgjR$M!bO$=USVRC9YtQ9jV zQ@L7V!xuvLD`z9Jdvg_tbERc9Wo9|5Eq2>ig=gCn-i#V?seQ*vOViUAJC6L=Vgvg_ zw$=cXJ$(4@_^|cAI`YLuLJLi&Z6?%?PDC#1&<%Y5+-N>!!jQ5rf$*1U$aY#(KSO4f zpm9E31sDE6Zt?sCW-Hi>1`iKt_Ux_o96=CH&Lb8behGXb!*mKIizo7%XU9+; z{4-aJ4y-I@Thvj}w3Bf2f*L9Ji~#EZD*H!aY;)?~>Ep{NmmwCG78~^?7qJk9wqBe< zuSn|SP@OpYQl8vglV8If4f4Db!=S`SaTS1s?8Fdh?yasEiO6n!*y)QTg6~dn^aCi! z(u9M6Ux?U=z>2o`b@=PWK&WuXrz5Aig*jQC((T@GBk+}FKxC?{><0T)h8*vYr*b?kVZIPiQP&Sbo#sDBXPgqfL}%oI5R zBix<^D=KY<>aEen%s*Uoyee8+3QnK7!-WVeG}yH&%bHrw0gy?+eJ`}JX{cs9=_4Zy zzM?&~g@cMa3E`JAG<;m@NuF|uOK-jj38{eVC&0F9VQ(M=6bGB5(Qj^*q}HmCbor)G zuoxEt$DQnvE}P3lF{ri*XXeguj*q zjC0xTR;UvU#l*;KHzWNcBh$HTS_BoVY}_Bjh=j#Y0qkL6ut|hVmhzdrilAb_q0!&v zd2W-#!**Y#s3Ld5%uuag+bb`@i5NXta1JKmG2wot{jZdO4dQPDI!yHcnHm>@_%DaW zQp>9y))c|qx<~1w!&9W~2`(Y(Ss&WzQOeJkPb@@q{GU}**nRj2a!4?yRQ8*46&u5EOfrq`ExBAP6N8UEfMjuX!)R!Gd!88YlXLyRUNR!ls*~SvfF9 z`0Nd5+wwbbtxcY4izAycsJ#MJ zL2bUVzWll6=Pg8zglImR^hz)iItSabOVG~8zs#p!`X2`6YRBhjZd5V1ufxM2w7z6T zf^zTM3gwm@%LpJF6|Cr$v_KBZfi~dB^elH3yDAPjONC_^QU<=W+0f?HfDcT=80Yq8 zRRU2~kMkJ3D`>}W*<~kv@uy>BC&su<%crI%hC_K?^55=TgrU$~N8Q$d(MMzmV5bm5 z^iY%!Wu;C_v!4jNo}#~8Axsbz<9AXiXs7rHMUBuTISr@p%mgXhHBW&4F1+ylJ=G2- zBnZ=ar-F&ATN;ujywLBFxDhV^?MwqQaO9m?tX$Wf6jZC59!b?DhNIS~5z{Jyt{(}3 zo%D|%oQa;%&;=)SFOg!7eRO5PKzo8Ojw9AoJf8JB)KVJ6ZgY~ks$AUM;`#7oaFr9x zEX!+a6tB2DG%(Gd*5z9@NW~?oB@G=w-f=`|U)fy-)R2j$NOh`l0mVV-4e`onGl#z5 zE4%H)L6y5rxQt1|@;#MEz&>tA<`QIe}sN-T6$<; z?mAW-T&ei)1fD-AB_Qn|?i%%9?pio-hoACSg9Fr=g5Lc2t!CvbCH95hZ$2Box3U*( zo=GZYtMb9nj3oVb*`K#ZfsW?77}CKrTcRhavFpNU<06_lT(_EwE9+kM50 z^u@_ak%!N09NXE#X{fEw<+NQ>O9&g z%uy5n*x%Gw1hBf4rv~IPQT^0se5U!5r=5(WYlTGL*Goc^VCCZta)|2P~J5j-L zytH4%kyqXwV*YX+c0h;@f8S*cpX75q@#KTZE;FjsO*cgoop!EPV>@U<_knC&)Y9wWb9nMoX({8gzdA z7^n0F>L@+{JqH;dBYGKp>840Pr|vmAw#YO+cuK^d;wx$;#JGY6bVWfvf@~)>xn?Q! zfmAjxQOuB#8!REWKYezMiK#3yo_x*X9RV}6KKO6^?fK_LW;$3fE$z-|4VFZ92%!CQm|9$v|Urk8AwJUqP?(unFXID8Xi zPm~gV;|d8yiRCnyHywe7czdV(>g&s_#_skQiD@gK6JkAE9I`f=-P9AL7BOQJk3kxh zj?NXN_Uo#!D4_(FkzhDx^sOE|^*6i8d%b?n0X#NCi2zna-Kgd(p;E-3ld)w7h6?+3 zj0>&1cI0C61`h_u;0`p46%X^p1eY|&+Z#&cYHp;nPodw^4tjGwqbkriZ&%mcdmgfg zfSVM4Pj2Xn4!RW|uhcXF#>VQ*&@(dV8+O^;5*166%(F5sx>sG`zzUN~okv3t^9yCw zmf1kXnPWEI*o=(6)c!Fwh7>i1?%x;ZA8WBBhH=$oH;0`o)GTt_JAa-rlmqxDz3^%z zhEm~_M22@QvKq8a^5#nX_KOi*`2*%nwMdT+Fi*>KeI4t5KV>@0uo zpvT_cbIIx%K=`vshj!7DWB#Iday*oM>y`g@%)V;G{wRx?wp+E*q?yPjfc+?#3e%aV zTYCECwQD9H9Uam`KCitUim%yAr@`7JD7AbQ*@K5CBqWS1T2@gGmo=obb2I%_vuCMa zj_>KHP-$vr281=(mhPRBjvi;X%1tT2xSNV#X-cAu+QbY&?ez0kedE=gY8(Y?4Z6ZO zb8N;`|0DKE&u0qPb$8j~K=2QWi^9W0kdr}&1fZw$K}&*f>$YM3knIJ1L%?vodJ9Jd zV|2jWuK&T`e%hQVLbk55nlqCh67Lyq3vcrBYYU{ASvd99!AaO5o}Hw*T0!puT_^$s z`4t}oMvJfoJJ#jATjOr^8Wx?6O?u>P8sBC>09^l>!uPsw{7xiq?R!*tgk;W5;r!zo zZBADlfKz_-Js++}#=Y-Upyk?b_-pq=*({B_8)#IU@b{^iG+G2YMj+c{Dwc5F@oPr9 zhmH9NolbZX|BcLxaoSXR@RE-fV++4|B!8LOD4iO>`Zzn6fA4_w7kKGw5#aU;$x5{mBc zf&M1#s)~(-d?%x&h41Up9f({9YvX;cJF4o|4f0)6pW9-{8hA>wIWW zSEDwCtHNE>$KU_YR)Y7nD-wR`HPFNikT}I9E^Z$hu#3g3?gvwINYu?%L&NeFy(v{R zpqucw-z?VEUSv@nA9tXJ9M7-aJ{il#bmCU!a{C#CvdVPfjCS17-B}tx+xN=g_10pc z=i8i(mCR!FGv7bu9dTOo6F&iFXAzpP#;8X`@Z-#@M6E4h`o$UedwGR5s-L+^w9~7YhvIJ_wDg* z)R-opAzwKJRQn;7^6zQ=@1Ax2pfr51pSb9u=BHLHrB9AjrSP( zLRL4x=a4Dq&goN^0A(I1qPg{HC!3f_M!^OWZA`ahR;c8j>XWm$Q6@Tgi!zz^h!rVI z^Ak0jgyUdUUx^>c!WDQRqj!P%8%f~FNMmA$ux+d_>nC2Kd=GTB9EuX{YA3!n5=*3vSMaS9wx# zXQKkbrwO}jui>K;{>mQ{ehDNYOczEF&TqTTxCS}h>~Nan*R<@*USRqzkD_?^3M*2=7dDTA6U-SG4tX zgtz0PJ{n>UY;K7(Nka(s(-`oOWq5GabMQIX6JbP+jI$4MC@4B#?v-2l>$YhU!B5AM z)qEjg3~V?-)bqS__&u07G*faij813&5VXdFZ-qIW-r&@^1>K=A_3tY-<9s1aQ zw=Q#Q#hF4y<4|e#=cSnpo6pbP}M_xS;^*^1Xcx*%x@i8MXMJx5r-YzPP zHV+qtbh%QJi7&e9PS=hfCNbhU{U~^6o`X*P75&Q5r8K^sNG^S5zyGz44=s?q#3iMp z1<4MN<(5j0FL2UJ!+wY1ULit!X7}rM8m53#@W;u2mTQCu4uxkuR53J>qAt%kS$?-T zKh#r{W+FJg6k<8v-bosnA@>03+@&PD@$sR5fBWe93?`}_MdkF{Q>gLt=D4PoQFV1G zVSUEl*4Wv~Rd1srq=p(~wo{w&Eo=a_rF%QfpVQcJ^GB104VQC1nQ+V{1-R;10n)56#iOH zvg8o~IeFtBzx{S|S4wAD;r@^1d=oV0&KWZpwfQx4AP>DU#21F8p4fCKZ^Qk*zC@;P zS77ua<4e97GT0I?{+wzLgsDh0(xUXA?!OSS%IU>^2aHErP!z}E1*Qim3#K+h4tFQ) z&KKW(h=jKG$d&93borJsmc(0uyk7<_C;`cSTDgkB%QLMam)!E#)qV&AKlFondA3Qx zy_6U4^DExe?7|85Js=@TMwHrvzIk-02$YxZ8PZ2h!Ni9mEh2*N>l^sXpT@1e7pMVk zqYv})^@MF{Jv4t~Lss^}`Ti>CaqStt{Sd`8zTm7 zXSH|StPz7%=#-gC`}qgGh4?4APn$_ijRfv z?fN8b>V{`Mx@yF&J#BM5_^pUtX(PH6W#=>pN4lV0 zEDTT|Xfm-C`4_~MJ?58;}Y@rpZ$ z@^S%;`yf^tCoVOQy!<*W?$xajr>mIr9GkNiN*42=ni6-BZ_^*3OJ?!_TnLK**?1m}!3Bvj zo|YDRHnN97hCcTpCELEBM^lC9<*H-+kf+z!tCgeq1#pfH%3$dXf&Zeee8*jaB zfW@Cv5y*}Sj^kgtik|y0i~ueQ8!%bE_b_*EUoR|)+`AhyHTyAncpB-i2g0@by0*wp z@lArd*ybWjFF^K=n)hox#`xv>fQ1ZdQfdW%jA}Qi1AP<#vF>1i=zez90^WFTZJgR42LaZB-|K5DHb_`8P~Y_Oo&-E6wI_ zLv#$-;qTqb*xB1(`1<*Djrad7!K-ZYUL!Lkgt9#?e_eoEz3xmf4G)LAuXQKdiB}L5 zTw}8kQFRNrLcGSZMP92E>d^&%!M#n|)Qd?|7 zX1aMX@OKV7Dv(N@UeH+cJ4+8^z0Xe@^E*_Bje0*KBQ=*pyUJv59*|K-Xz}?&4LTfi z+jval=oNhO=C2^KYv-L0m#)0E=(GU+B$9}`1P}K1!6; z#HHHtFKbeg#v$KH#5X?PCv^;K8p>aAJi+y_aw2btb<1BsdRLAb*_GulsYgPn3cTnN z3~)7%hT7PD%#4}xA?a7v8mcV4oh3R?Z@5NXc`PXdT&#@Pp;sqJ? zi;Ze|i`Kv7M}WX|B;=fp2vmijT!$;mSDQ<^;o9Otl5>59j}bX24#AuCtqxv>2#(d+ z_sVO)ojUvFg#-_Ve4B?iI%Zd|n`h?#=Rmq6>7N9>duwJCUxept#`%M;{@>^x!s3Mr z_CoSow50735Wi*&xXIbXjqE*%IvRafhtix+&7l3=ywPsHR%BIK(|b^W2OG5P=6VS8 zBuISR1V8Hw)*nZYP=w_^J8#h~fZcLKQ2Dg+c7n5z?MMK;;l=of7~3OpEJw}mk>#nV z&T|hpneV^({;ttYK^=hu6pZfp$nMYLy1rLr4o9y(@(=p+fduEhuhj0D2&gNzWr7}% z7MtEUKe4?o%xt(Gx1LfEnN`oTL>$IsH9a^=_@yJ|aVv48+{WoD9A?&`Z+^y3_v$0* zFqR_L_VwMtw@SMm4O&PqXnn$~mK>!95H@1As8#6tHjy^4Do9)B;St1U$$;?@zRAh;y6qyZ6O2JppAc>I&AL<2EIB0V|BU*#*5;o1TkG&bYvCe^<9g z^3o?d{xRmImN(g_*RU_KD*(zoTKCOpz_ifaZL^mi|T+HB{n5)(sPZ?}N?!QOC$F_EKGk4V0 zUaT<=DywJ)$ng9=!eu7*No&PysjETMH;~UwQuxmy?ShB!31zvzRSyASfCK9vXz`D$ z{U;F9{7tO&ic?}fDrK)#%Ex?RZv1m7W4hu*p6-`W;}>Rgx`K~Kzp?jw)%fz9;~jBh z2^x64|2!n*{Z*sRrv&3kM4$sTxOGteYr~i(JTEc$G-ufl4^(ft8??Wyx2fukbUYN5 zIuVNUJ2OCPtH>^~TVNFY49cpor+@HBv!Z)$kl3yn%!0U71 z*$d`ta{uH1)A|1#XkwrD&)$#?8wSbQ!cj<rj^*YwJ(} zW1f~yG;8Z?(}Q=1+%Bx4$>h*iLJ_&sc}mdgky@$0{5^pzJoh>osQXdx3h`L!I6`7` zgqvpgD^4$k(}AVS}7E zp^{e6cpAOliJ1oDtMy^qoLh<4Q0Q9KV9b$WX!`Est?Y1>$A5x0;CnagsTQOrn z>)u+XPNp9woPMR9W)9WhF#@sf1m`?uSkrdfU7jNl9%ML^nn&pJ=#ef0rH(USbxU2) zC$K@?-Q*L)LD@*N3HStGDEo_BF3z=GT!j{6`4(Oo_(lcTB7lobA-A~+!}=Ry;c?I<9J93I$j>hT!_mW=jP>C4qI_=>Z981oj8)fY4H|WQCjJO7 zdbwK13+X5gDEYpVJpB1;tnY6b&c&EDbC*Fc=^@1rm5V^7+{j5dQhbz-qw^1igDcgY z8t3cu)8&gnp>b}&0brz-zp$9jl5??qIZ2IGQ_xH%5w^OXDBEl|$;Oiq^hSqMvs z{jms-|V+^Z~-U8JQpHN5dd#bo8w(X<+b} zlQ}b6*hR<*2oEM^?)T~zaKC48Lerj5!ECMCO6H`%#SyFl1Fi*>@4&N zztOib1ES_-P3(kl%lt<&>3C3(DdsluGO}E(Jpi9vycbP&$>wt~FoH3{S4apFo+m`mgEU9jticI&1WMQ>2QIa7L1}=?6Njp9QQH0t zk`G~UFZBH=%j!{pxGVS=@vRo0?N&3cDE`cA|LON59yBB(zN-17i${Se$LvdWWT@OA zr}fg(DX->4(^Yyc6(Z;SFNYI-%#-g7@hRwzs3f~t=?QWIA@DVB3@*u9bbO|Is6Zz( z+*&Qw@;fJ_k5nu$09g$h7sjYcmi(4{c$Va$C$gk(1htkMux4XAkt-!YJ@cCsz~s%1 zNut9YQPIG7c;XenOHW^pFW139e#kl?*MqDl$Yg3@cU55=z9=g>y9IH2o8I!$R#IhO zdyYHRBtFr=(unGShGhY$f!1Hqmbi;u=sdk<5PY?@bQ;348i4bO%PYCz!G?S+rRFO} zzFefXCIf51w;klv5{Ck_{vXUV=Jdm3!8;mwv&}uhCfd5_02|ir?)%Na#%VMZ<`g<6 z5u_x{&bGGtw&IyKchD=1loBbk$9#SA4cAFA3_Eo(b$<~h2NQ%_mV|M?Ho%^S*(Sq> zpDy5GclcanJ`1FbT4}{_a5^JRQu|RZJ#J_UnzKRUn7y4YtUe)b++2!j+0z@JE(FIK zf+@xB`;5l%rB{6nwLFSIj3Ow3a8T3k12C16j;sfC_^d_H3`|tWB#c6NETtq%hWu*# zFLoBDG`f6F^Ytk%HpOV!E2sQlR}#`i2jL^4{DlZ?x9|vH$Q`SYSI~|Cre>f9S%4K^ z)gUk43a5WB|6-~cI_CaEU+&5n1$=gV9aS>eNg+CaD?EHcVHV!U&C3jtGEon%z4;1By*aK(nQb48 zz^b)1q zu?QSYN_e?2{&KuYRGbA`>7r!Q%-tG_e?;$rdYck&mMvBjsx^U-s#Fw;1$>XPa86!X zlvlBG)4@!g1mq2=jdGSF3Vvggpw%a4X6UU;hK8=))K5+kr>CVirZ25P?I8L*erCpO zdTxH6Qza*>P)+k8icsgrliOwx^4Vx-k9SKvK5o%|OYme89;T9^nCjLGM;LG}{K`!8xe zcv5X2KFxbR%3qXC6{mN8W>KO|7HZ;!(sr8W6@NaL02ox7(^^?woXnDX z)Jx|_m)of5!GU>72*5BID6fCoojE+lV?242R}~-{H#Pk2_A@KDAbmIZ@{w20xuZ43#VWaaDOW0j-OND(Eb{Mu}|1 z21z=UC8bDR%Uyc0-e|&`sPl|#_4~>YxUiLKYSB*oI>B#f^`~%H`kZTPb!$x= zQ1v|)h~WBZ#+F%_p8O<9PAUQkq0a=M-^zlUALl33MkR+NhDUFpUs1KVlLSCmQKCPI z+)qvt4{|DLBY;B$To292kHsPn_K)af(N!0`aitZge?X*D5o%#V`cBdF$DsPiC)gl$YBG=45*xmgE8XnhTRji^cg=^pI*jT{{xAk zupzB-%5BplopAXbYf5~5_+WKLQdMy+Dvi;3>DIjQMgK(T?T@i}^Na4q1tzg~Ftsl7 z(67nP>41J9#|qrxEqku4adgs7-puz{0~Q&yq#hEztVqEUVRg3bv*8r%Q+g$06CDk{ z*}jezbBs6M2Pc5uCk4BuR3XAv7nTny!!VN|197nd;zLGjx-uMN=A?Qx%ydjn(7IaB zLMO|yF>2ye9v-k^!IoYtiZzlea|!(b&f0maP(7;4$FInd`5Dn^d41_ z3f&dH38rl1k_BaI_i{HbAb+d>oDE}B>njL5tj*WY%~=ynMFbU?qGNxBXLWF(VQ)5` znhX6^qNA0u@yV_%tUC1AT8IXjz1Hf91~18_xNGlgJ$AP)sd#vI0A)%juc~g8Q6X!? zxIu_zjiaw~2~iqA7oGGX{CqSq9@9+HVgd(Iztp(6%A+^tbZ4Z9-Q(dH=d6^PrE?G8 zb1_T|Q$ME3#1Xcb3}f#ER4+hv~*N@K{_@DK=`Aj4`_*i>MSr))#!@R7sUniM}g$ zsRwsvjdHUZJI2nDyP9a_VQqm$!MKB19in|+0E_N~ySWQo=dX7$=jvKH&BUMTz2p~M z`h^&C4{XM8V5n)GQiC)f&bV48zGp2;BRaTX;yL|_;r0Ec4>0!A>O2xV6TbH0kCoWF z#qk7Mt0L$=f1<6mI>yQzPC&XOj~=#&p5Zw$V^<$+Oa7ERak1a@%$xF^@HR2+Xz_A6 zsC}vF&dI+$*~&;idG>*gy&4+L?v3TmPr{XX_g(}{;zbvMC!m1|mURC=WprTY{oX4Q zMoY=2i>Ud31UUcVpNsUr1rS(pr6D9_4H06HhD8X06M2&!kN9`{r!@s6>&%zTTi2|!cQti}FRf_PIlBDBrL-;tP=DygcXFACe>@{i`kxXxvQ|su*DkG4 z5chYOR+s4X)cIfs2Q6ug5hRBEQ)OcWDFnRio4f93$SA!wQo{1t7>sBz?#%-LY1 zsfaN{7xnxej9vF#Vr#E>2#gBbW{39J`z5JOQa&74h8~+#T;z9?6InoN%Bmve7`CeY zMvht~3x?z#!DkcQ9^1!l?6#asV z6 zvV122kQB9Yi%qSVp?_a~PKMP|2h_abI*az#?M%%_mOnJ$^?(A<%V}2&H97p`p{LGt ztx$LIK_OYaF%=eh`2npy@JqvdbF`?YF@q%~6h)3?{wG7T_3vYz`my3Y#(F=MqnmpK zai@JRBL3f~6hXUm%FIRSDZL>e->R{d?&NPU*eEeNN5Ea`L9?R}7Sck}!OXbPltVgk zH%b9J9EMXw`iM{?s{67;yk^&Cm>4e#)sjTE_I*q2hv!_A?ku;Vygl^+r#Sr=e1-%$KP9^A3F=h`Wi`1l zyS!YJRgCP22Gj9HjB&M^>oqW#P|BQ1qeMS4i!%4~gX-y#z`!Lqfu}wufPK!%udXI` zb3?f@23k4;F^Szf@GQ+t3?+6^PVaVKbHI}WJynf5+*RLy{OMa`l1~IG(osTFYGCi_ z?cH55Z*1F~HJ#3CdlF_A7Jf*zJ6}F7TRSgbPgv#TY9tfsH2TqZb>(PgK1TS{yWn!k z?-zA$5?}>4-=;uQ@&ym_Usv>(5LT4zxJg)AQjS3sNtd_`f*D!1f=A`stT58eosyi&)8Cvd2dN7Mejf(^r=r~yB8^xjYHe| zlXYTFMssIwPXx-aF*$bG7{AlWv)d@0F8h9zcp4xUSguJf2%%GK9|NzSMwmJEk^J}+ zyCul4jXw0AjlB|oUB2Dhd!C{UyCOKbGnp6n;xc--A4dmxW4x21kgcU~JQgPo)bQo3 zdsd44bmE!Pc8?tQxGg&Y@O-&45#Eo1V0O(e(7JzzRe#VgdE&}UEvC*{qBr19l~W?+R5)Evx0_B+UXuV8dXIcS3Olhsh&vCo0Rs6Ss4U zK5~7`KZWkEohi}q&A!#xnTwdJ4+XyoUi7DxSqbb>%Xl`~N)l52p+QVUC*8UO-(v?F z9?TZ(!#FwzdU|^SYPJ+2_w<={V??LZ!xHD%_bsF?BHlTGI@Oys+bCO7XC{vl{9@_Q z<9gs5iD5&4n_}Yh{qm_8IFX7RWeuS{pUjNOE2|vVhb{5)@_f%WHyab!V19>vnAcg0 z+wfqHoX*c~R?pEqTHSp8Ev#nQfUf%^fC3_;RoE(d&e4wlmej&h%!%JZ2|a zJS{=i3Z}T!F(@%8ZA;WD&{i6}*;4(DnrD%4h8;3=j;^9bEJ!1QUeb(@1Ayyl>K4cxp$ik5#zWDPk zdyyYo*pA#p0|Cylv8iE`a2QO8FOLG9Y^`wM+yF@^ur zPvBi2`V)!Nc=NUs)@<_~16a4&^hdY3rp&J|Gp}FGpI_P5F7|tR`Iv?bCXO(WZBtY* zp&rpHf7gd&x(SDlI3`l`9!_S;^N9l1Gt^+&oCOT0%r90($G{2~M?r8N$hVO>HWxL( z;Ciq1nz5%g09|TrE3edFHKeR(44lV^5_h3%XZo5FA@rO^AGmad-cN^SFy5&Zshu3E z;h2lrJ)uIHzupUr-^Kdr@IfpT!E31XZG?M3g5RH_=#XIc1F#a_ZA5n{x{g^Sh z+(<5Q*ELhi-;Po+TRQ5?%xv=j<=aDIu$cJ&u}ZOUJQ)HK$r%Yu zh*XOz2cUe#!HBA1(u_1veQnHSrS^bfZ)QBRc21M)#1W!?KB{CXT$;aG?lebMy|~Fq zikxDO%cB*`J@=f{Sy zLST~&VRIUdx|lHdbs7xVu`d6RFHP&DO?_$$lm|mGP=9sf8Z5mpjHqN+rsu{{^LElKUrnCwJb z7b51BHI|FiuRPd{8wnFnA1Bt~RvqShP97Pdi(gVf=MkA- z-E0eznw~6?*83KFdIQgZ&e}FI#JCfy0q!G~4B*a7aZP|8tncuzr(*r&g#{CX8KA3c z;}+!M(aA|zc5+)XCwI!y-WR%A3I%vl)SEc_*K}=km<-)d2FDWP9`BC z$NYC4M#5MaJXKOaaEFMF$mP?EPpDMd@bM?`&E(sqBG1$J0+(BiGQ0k8s*Xbv$y4f{2uDXu@RKQ&2xb2WgDyO)LW(>d5i>dIRSYWC^ zD{)_#?5JBfkRGtFTlKbK(*U@v#poiArKLxd6_T5imEF*&D;QCjb$Yz5_rl-Mu z>O-Dix`HuN0N2*+*G0}byxH0467=-)jWyQiT^DN<>CJ|bhQw#zGpsZKIxE7TNn%x} z7!Kbcy&&CKRr}SfQvhq;-s2R^vBY#ukWkc>Ml?xW9vRa-Yyrje*B>naOU8(5IP$kq zCm=@rI&kK_4d?x`j^aIBy!GHM>K-0#?J3|hBIfaC&K_t+T?MFps&Z*>_5^JV?t z(Qj1g&0~mY8K%%4*|Hhq>4^>3UbK7Z0oD$=9Yw`VDel}uZVXn|1B3E%Hd{n%UYJcU zetrb~yj+tsy2NjFKA3mh9C$MJ_%vIXRh^HpFCcJkiL z`GS2IDBy|?T5_<9mM#4z0HW8g9skJ4S0l&81^#GIY^G9H1fP@r~~fSXt#j+G(Zf5?$kker2$Cyd0W z84El*89dlm>N4S?JiJl)p@O;Ed_gFGRJSv;Pgz#MI)`Au*FPAq=^TWqP6Z$gLa0@PtYmfwo;56>;E`i`~!GgQH z2M-$D-Q7L7yUShtviCXX-iP~!eBJb7&N*h)s2Vl&%!P%-xUrbpCBl}4Irin$>I$e#1x=!CsQz)Lf+S0#O0?N;L)uj48oqCc)j%?Wq7vDMipso@Wh z-E!h)l6fA(`e>?s)FQ8iCL)%6JPCKtctAUupT`1ahQSE2^k~d;d7QxHxE7gfcZXwI23)wLyA! zzaVsRV&c0ig^6Rz@afgr7fDGB^itB>s-gEhu~}0#V6ij(U=uAZ-?EP+yjUcXjq*C5 zFPxp8-6KN6^uY3UE#(wthDG7w(#!dSQ^GDw3OB{~*ZLDC78-chhaBE$6!u1jxn!R| zXY6S#tM9_YBi^DldgjLya@%8+H{El7vQiD)X?a#!&i9|Vr_4C?K`W@-G0`2~k86lu zTO*#k^%N4`{9XA9SzAGwVJZ67o_eb;ws;lCgVjx;eFi9T*lv}UN z(!YI1p?~pB5ZU%5(D;#U?Umf=?5+b4v@y~7!EKdwtlTxar67B$X~@vdx_#uXaxL!f zlWZzIS)cdx8&I67JUBk(8cHYZ^>O#<)!-VQO<}`?~lf^Z93eC3;2XM7|gXW0tp){c8KU6H!uODkJDwO0LQ>I;~g< zibe6!neu8fOcr=%rSi=*)bd;MpsF*_*BVA|hk6BVu)*T__NS>@r+tr>*d)$j6{8vx zW%`Y83{+d{CLF*(KoefbMN)gIneeKu*MOQVL$%s_b#6t9nDAv!G+*6S`t3OVAJ!IjLch?2+6w!jb*-_ zT)$uJ!FDue5?^P_6d1|#bw}*9EipELX-ucG(erTu#n(!_~<(&CHx0voE$&;y3 ztv%fln_RMg=U7>l&@<6s>GhkzZj{QHCdN00Lil|9bD==)^xi&YEhZVM{AaPH$Tsts zg@0i+mh!m@p#EHM-~IS8Xs`=ZcCB6gTXjsavnFdO53M29OyRq-kroL!DR*oA*#B21 zRld|6Ngp2~YP$_ag1MZcXFTPL)2WcBHK=>2v!u=vUc=+3HA6ucllPS0on%KgA5oAPVtkf8!xc?z$jx!ZzJz?zse_YJ}N4z zdS6LNQBRDHiz21{{4Gn>Ef~)6WCd`U0n_WaIJ*+FkU`z7{w6RptCCe$4_EPg35ZYE zPYPC2S8tDPvobWwH&|)nsEdsWfyq~*S*Ip5U^rg3LEat`pWO3ht8tiXym_;@DJNUm z7IVV5@kjrc-jh0=TIG*k+2?IHD5$rVv*T1-sMEoUy|1ZIiJ-5m}Yzy?KWagg!I-HhaV4i`@$$tO20 z4^nf3T5yg#qdFZc9`CBhrl+U#gd5l_lsD2#Q>rnX3YIW?H#X4RE8U0&255D&nofGv zP4Y%MniqeQvat#C^&WaKaM(6BJqk2k-xG;S3`u5$6r{VlUmgUt7yum)`yM$685RH{ z{r}LU8UP&JV8yHnO_4%JAR3>cofRZ_O0nD;P@lj8N$1~!70cI*^ZH)W&;fW;kk-z= zo0T)S6Z;z_N1 zNl`ubv5Sl5Xj{D=9p);3G^Gj^Tdnw& zuqZzzv~YojL~!~z-`pT@Kan|~6rX`c5Hwl5Ek|Wx)X?2s#0jLbWNu~Y1?El;+G9F8 zf8yjo4}i{*xiR^s=AnM^_=wZ<^O}XVsLBp!iABpe=g%%SHlpEm7HzVNF?VNy=d_Xb z72Mw9G=vO1LKrgl@83~T&;ujqgrLu7_~;;E`1tax>pG|ZxPJVqI^62@#$)D-y@P6X zmy*i(7moJam^xQC%X`r6S&@zW!@9u!Y*(Zd^1<=8%`)8SemyrUci-LoZ5?gK=g z=_VODZ(M?kF6~1A|}*8u5era=uc326D~j>xGm$_dEDc)+^p)V<`ECn8bn6 z%8rg$EicX1yY{6o_jlzr_|-;(B7n;p9ya5)Kpq)&mf2ahf8S7Q;P>x?z^Fs^+Fuz& zk82vSoeihY?}+5SFNACj#+!10$@K_$90g{9VchPbgTiDnKaJ>LTd2`y+66^VX|^hd zQ$DTDm-FPcGA6_+t0GygU~0O;BqPc~s-MU@X8;hZbg7??22>kRzOp`Es4z zA6REKWkY&BRJBg62CjJSKpj5Y6MeE&4MBuA55uVEoo{|OElJ*Jz4M7GOJe#7$P?EU z@`JQyk0+admX#5FH9>YFZ=$9?Brl6_MJmy06={tCM$jW}Rhl0*IpL){KkCs>EW_RG zC#yG|58wfAW*q>Nfr5@V3|-Bf%IguoF>mR9kTSY&Sc7_O>$U@Z$oFEK$d?bSh~0#3 z?*HnLMoA2SK78S~aX1G~SSO{Aq?!7wKuDe8KugNpZr^>0PQisYRPj}LP2h`vsL zULm6p%{QFagE=HGMk25l5A*~ykf)n9D*!^J<|cz=O=Ck+$00309PMHCPdk)A>F=U^ z-FfI$k&;Q}@mKiN69^=Re>&w{>)jv$b^Y>FU-+zGRevZtd7SA!^T(ROO!T7I-AY$S zG(he_Iq>@%H_Bu#sS3O%gxp6lwF)eoB!o3|e0Y@sn^`Mx$zIiEPFd6Yw>$f?I`ez> z;+nG~qQ|SL-eJ@NMv}CRvi3j3Ia|IJ?B-4M8F!nIa(z8=s9YR&vuWW09%40_L!tX= zMtdq&OF+C`oIY};#4*SEP4o_(u)FQdaI)r2U9=oBz#V41oPXw|KPZ;r%j(Vx2mn%1 z>y6Dq7NCl=F&33Wd5TcGSZzZPQ+hnBFJ~u#u;O~a6C0lzyt2}!_88{&CO=Na8ovg&?*^|4+$mL@az^5yvm_$^$=%X2}isNTBKvXht??DL_F zm$&yDuQXkU(=j=C(Q=FNLyJ*v4)up4zp~=WsS}6bxs2!jo2b~>pAkI5a(jHwe-b#; z4hkuWI^9mZLIv^vXpb;5Gvn_tYId~yivDuHLwnrHc!5()p4G5!jUakDU38T;w*n?B z-u7oaMT#r8NLKH6ixPPN?s)sc=ZgRr%RO?#=k*MkolPpTSQuN1OdbBTkC*bV>HrjnS}=QE<`fI^cngYD{jcWkzt_tmD=h+`lK+G$IGFfHYz>gr&*>y{ zh4X+_Mx+5zqlwO!La+Q+;e39{Wx|fy{P_1*2BR|PEZ*zK%X!p!pFLS5VU)KUwS6}j zh|pElftq(W^U4(n*!F+`>i^Zx0)+89Z{n6F7gr+yU2XmfFAnz-%Kk|pvGtz>v_4)w z@G%D>gh)`mi*sA&AZ$(spSz2^{WnW)g@z5(^i&u|Yn?jg>8%ARai}K`s9npN%!ZQp zH5iR_6tr~9PrC;-?K56%M#l>Vo6lXSvSv2T%@hN%&8JsL-tB{;$oXhjC7%%JnwKRZ z@x0q7VXb}nxR-bw7PNJ|kV}*i6y~_szUG#6U(#KFyj-kB*rznpMlJL&>&m*|1;pAtf=~CFIj`NxwtH z&6QeG*HvMBwC82ciT?U`%Vr(E=d*&_rvq#AEQ^D9sfJ|)$=~X=_NW^h1`dr7i<#1g z=9cCiPAymXe-c{VQLSSAW1I4{Y2%cpZ;z~Xwr}3! zJ!2CoY|H^e%l!x>b6pR|--%k_qb5Km?%u6F-xuTv?3Vg5041n|#Iv!BZ&k(OQfP~fAC0Tj(0Bjxixbq~U=k0RO?*_dx z8%p`nJa@NbC97#{&q!QOR=qh9+)V0!D*hCldcEB7{c@dVrnd*~4YXFzbzusdqdF^w z+1iKpo7S(`PUPR3f!N6AaE?0Pt~9@GtF-s%__&>%BI5&f_sg`-BXuj|O+?be>eEfD ze#0EEyO^G2=~K4Dsc zvJs=LTtwzzS1%+W65eB4=qDNkUVN;O1ZCIa#(IZ@2*3Wwbd#p{NR#DIo`f_SUoKk znp9x)E~Xwcfp#>fVV#-0lo$Fg&_G%9Q?&lh8P0Jrd&tZP3|PD6{%mtj5)tvb%Htzv zqef&>Exa~ik4@>U8Yg<$bgu&($gcE zYcgxbs*i=uMXOa5NLUc@V{k&gk@Lw97MQixc7OYX5%nA-E+?Awd_@bEmEpN#SHzv` zQ`Xkbiut*esD2soa>|lMn18(t-j(0eWPCnWvUhY`U$8IB%F;Vrc6w7TyK%qb)EdM; zbGv}&)dlz|WJUK+DQn9GCFpp**M{-MYLHH451XCejuNFxI&<3zGv{_YhI~#d)R|ZN zpuWp#zl-x6Qm6vHZ%_{4w7ceBe1g2Fsya4ULC-cIJ+{*Ap9^=XdU+#7yX3abp327 zH2{>rw5W+18XCj|W)0~>L;p{QbgIu^{X^TN|7nn3`z8#rGQzb!Ck%Fo0qe>Q(Yb#e z2deKBard`K`F>>yqeLBd4HIWas;+kCkP(JuT@AVR1?j#RjL^oAz+N`)pjmYe2L!B% zgOcv7L!VJ(P9YJ@vc_3#?kBBAfY7Iryg3IhXv{%$Zj<k7^}|X@`|H3?#&h#9agPOhDj?i1Sm>6~`f&+o{2)i} z9LD+4-VRa6(r=L{F5~+NyE=9%D<>PG1-1Q<76pcn$l2LVPgfVmn8JZ=)*-tk8~v!% zIBh9!v+TZk1?aqG-l54poj85#bTukD17awM{nTfe*Z(JUqF2uw^8H+4o+Ko^Sjgi zlb6iyv{H>v`+s7AredxW7Gd)UtOiB-$(81J)GEz>y@YNkKn^YVTVXXrYFY9!ry4LC z2;bkwrH2d?-j#>b!e-cBQ)#^?z+%+)-pP2NSxO4X+nhv@%(_1cVKi`5r|}%ZD2zHX z7D$*jf1*n}K%ULB3&VHXJ^k2pIbk8W>k4^>G3hz#@^JU?2QZky;-*SXYyAfIa&@sv zOimspFe_toI)>VGb?tWhX|gu}=A8rl%!V++S=dg-I2(=U12x>!#mfV-<#Ll80`Orr z*H&LH62v5=vOqV2&Mqz=gGz`R`IZB{9&U7)ugqD{+gnVqZ>h7yHoBt7$dxE^P`{!q#t=H^51`R4c-D-|%jyi6)+KGb zaG&>$gh}DG%~nDAe((Y#>tImQc%KZ|>g93e?gwv@!*x1z%N<;$fZ6mEKr|l)m%xez z2_(;wRKR(mz$mxpg?arkL_BMnJR}XEYUcN$1>vu>lfZ_C8lwS*YUm1UW@|xvfVkvj zn~&VKMsBl++B>dLO4|pcrSdl!l>y6;Rw+h}B`oZvppFbrQ&Z>s3Y1a-!npP%8QQ*Uh?`WCZv;;GYq zJM4J)X-+4S0H}*v+H(XFf^>+QZy`po4m;(`)|)o-)YoW=`#YC5$#FJaKh>(}32!^H zDy-2K)3yb4BVVLOJ1(!rZ^@8wv-iw@T()@v@ZcjS#~2c%NAvPe`cc8JfgGY>lJbE2e@#%!j4*@L51uke5p zO%M$oT`c5S%xipaqJqsJ`yG-Iukm8VZES9i+qeSg)c__jOJ=(gybqIdZK|77O>`TY z`+b5UoyIE&aUh=d<`Z*a3Y-?EOq@0Krakbw(fwr`5_)gUM`~BzBzN?elwaA0+BF5H<%??`=RVUV>vg6}!D(&|mDy%DoRR#_S9U;<-4$|bwG#X&0wi<;vQyY-PC9dB6_ zJ*udv=qv?W=Syo15fJkf$^uT^okY*KNK4e$J(VX`cAp=t_#Kr4;)}ogeizxXCjBuX8oPHawk71rCLtd5Xw?F`c z2abQZIsI0n^e?>pb$ZI=7vPtfl@-O;D^+K5K*9a(1t|^k6TJ5E(nkol(bmnu58OwB zKq!5M{hCILgA90es?Bt+F%To=(*ob*9}IA=HUX-T7PgdQ%tof5!QD|%*;o{) zjLHv`3;2NhQ=%ca^=y(`m^4doRI#V@qce0n`7U?9h4K7!fl=&NYpG++QRP7*sHu)bw7mYsk-*{I3Q z%`0)dZ)mGh0CMs$!|b`{7qr0SDVOv%s{eL2joWB;Q=1sJK(A{L$mj1aW0{+RYv?q1~bD#-!09U=<$6yeXw z=N{#ls^7r0t$CF(j{VOm3$jYKaA`+Z7@Cb#4)be9m;MpfDDF@KHDj0aN1cZ$+9c697l9F}T zC?2aF^+#E;*Ut})zg#X{>FL#|<1n#xeDZ!{7goumh^a}zshOA2K+vX%OViYYzkL`rv6}%rSu&2)!gR*o<(fnv2x#y=u7>L8> z>(-UG!E;@%v!bI_+Esn8dKu`xlE@$X20=>>&3zCWEd}^0h=YLFLW{vO zZb>RD0Zp=Ouf{nV?1GumO0Tx4myy=F<9FH!1PH8#jqg!-dXRwqMwdVEYMb`Hur8n1 zFTDGtLQ~&JpqAKfU)DSph1sh%}smO1wGqgaMf&}Lb>bkx#TbabP888LY-G!qJ< z!a3Nm@6%m-D>@E%*Bq2}phRLn?l{>{p4kRe$fmWM>K>=+v!l(@znCJUSIFlV}7*SAM@dsgy2=^EA=CcfWjY<4?Rs@JuzwTx~T9_UaT~ zBqfl@lNXlx@Ov?T8;hDpqEBvCs}VN@o6*l7#1JNOQK7mWC&W_Bh9Cki#5YGLUATKL zrkXz3cz&Svm&i?-r~V=VE13O0qSx2S>A0tAw3#X|Er_*B#;U?L!l6~Bmf+xK=K+Hh z$sFt^(ab?60JzLrpY$%d*p1E4hb=9oA_Un~Fyjt;R*bY_FjQ-j7-U(n{<>4807ixX zcW!v3IkbLr=8x+X|1v7L79+?YDR2L>F2anUpVB#s>$9KTk>HcuNu@`3LZN(o#BlgL z9zNa*wzF6FNaexeL1(|a74Cb`W@Gc=@!NRs&yjfzWVF9Z53yI!;Vz zb+asPhi-q2qxWTs&ojGP7m>6N7!LaO#0CvDwNlzdwfkr0Abe55hP-wZ-#mAil_=D# zNYyf+7CH`I)JttZODo-xRq?>Fibg~U zD9TkoHkJrzM9jkx2DFA+-RbXm;^B3gZwqhgB2graRV$A3Ieu;9%9r~tkx@jFLU*h) zB_}7JZEFB?QtdH^D9~*!ImW=GG5AP>-Ti+^zGgA_Y`3t%WryYuBsKV;M2{)=tE z613ozIr*Ah803-8F4CM4aIuzqikUlj<(9H+%u5E)`#YZl-ixaE}!{J zr`9_a$_;vQ{pX~qbv7KL8B#(g{PKqe+V4|#+G4vyTyqEO?D%35ynFw2Cl#5e0uP&$ zgW%!F^~8Xi+r)%LHJz5t zOSG!YC8K)-v`mu;h(Tq&8O}&ID|YV&24!+$K#ecA(~P}g0wouWMwh&zO)7dovv@#& zOxOR!nKo#&4DY(kUtAu2IdNtB^QybS{%9wi&=l$3%O~xOt1kK*2e_P!?^1 z9|MQSC?5J>yIv9>*r*iYJQ;WTkR+`{SAl$OQP>$>-m6Y$G42s?q0!!APqKTLOsaO7 zgP?Kh-`;2?RAIEOupBW3kWkvt_gtvFnoF6T(~Uu^mcxX(5W2gB{v|}3NNB6 z0koB0;M5;q!yTFGv2XxV8(X4G#^Wh^3+V6vs!RA z_q{z66dcsWkS2|Qm*;IXak9gDuKCC3qt(|~mDC<|8D6)nW*0l-^>jB!%{soB)h^B# zd0=RjYZQR*Gh`h{ED-9qds#j*F$PM{09#}C{__BdNv54(uBr;u=31)TdI zQIL?E(fN`;K@Zqc=sg_fQGGHgkjhY~$RT(L&$&ACg}uBi(7&mZ=_DpDP%MjH1e#Ud zKMAR0TmKD)Og7M}yUFa=K-WK24cb+sp~Kb8?#Um9J}*K zHC4Z+%6gEbn%F+G!8c;>U!xGM%}U@6+uzE%ZC@#~#{ApmV5I~ICl~UGt-I4?0src# z18Ce)LQyJ=y0MT!I4%8mY5|Y|CG&kL?kuEGNv0g?Vc{%NIEWFNm1zB10>|=utX&<5 z9<^%V6Zwe;zzo%2ml(02Gh*A$W7oQkT` zJW7z*1%V{78uUd5x&AgI{5S0InWB7M>saW2qt%QynN?SeX?YlZ@k8kaDKZHuC1;oA1+;%(N*7OaE`;`DB?c44(_0r(v=0mG5L_Z#tqQ1 ztS)^r#mam-o^N{94^Zx%-yX2;aXQ(-LcXP-waRdNpKr87X7FR@E(=7A@e*2fer;o~BVRy^j$j64&Z3yZN}VU}X%H`buy!00;l^@E@O1Kj;nW9{?? zn1Q`!dO$KBT9VCfDR4ZIcnNY!(#^drGqp`XX@cp)vnV|gR4GP(S|+SZ^=u%wYC#b< zYg!ABtc4`W0PUKwx>9X<$>3v+-a!#Uf9J)yOp@&zWz;5#{@V31s-3Bt#uwz(t%nm+ z1eYftUg>`qJ(ed=8(rkc5dU`=&=b!OAiJ;t_HHQ(kV|k8E^+=1m;YugVlJr`<-w8VIb2 zYhdRPlWy+vf!dh8Ajn2( zf)pK)B5vRY=L#5j8(q6@GPDv%CqP{(5oP_Zk^{%wZa%A^H!z!0qu0#9Sd7CY+9|iK zOaw4cg^iOWcsyuWvJ+58hJSa9-mHOVY4h| zHXwn&Id=0;c=HDR2igyZ=dCqeq3CS2-Qegy8vhe3UxD-W0AXPM_W-@jT|lZ6GzaNW zsj!zp^ZqvFiI++KRJOAj6PE5RcIAA#TQ>f=i#`{_N1zJx#di5C^)%%%BD$Cou(R{_ z`?Q;NpsHQZ>_GMeW*i}F{JZ<_P6?@H)|A1!4f%D5xZQV{WeP2w)H7dnOc?jYc5M|u z=c|s^agmW^vf_O_YWezWD2X|`^A6|l&-sJwHJ^lyNx{YR`O*Mm$?1UcF2flGBEdrO z>sfoD%-RHqA%-4V&A+=Z?IXH*bRCR467&%Ptm^|+P%-_nxTYX#JoPja#z?@|{^3Xs z2~bjT;k6%Z^zD=*Tb2YqaXimh5(Sy{K0zcI5j~~(xb{51nLbp8IiohRP)sADGFhmL znk-(;STdsQhiZ9S6*mPwSFywWtV;&z<6!KoOH-}0e(e=Y%s+WcztWs5ufR#INZQxVW`$4GHz|(FYS0NJ zuuEr6by{jbTC|Hmr-50CiofU>%qD`hvWR3cV`*w8nL6frtMYIQj`(nn`16W0@thvy7{y;OD`uN8W64j2XkYzfli_#l z($*F9`r(D#%M)x6rHcWi5Wk76Ui&^;$pW{p%fA?2_v01h-@PM~9di@JYGCN-b^1Sh z-xd9J?}LN>yZ7&ckt+(yn9mTl;Ctiv<43%S%IZHDhgoTk4pQQAKv+|G>zsHZNw+#} zhMh)Hi|d+=vo8I1_5fdpadkt>hrJ$vPuZOZqv-*Yb6Rd_9@;mjNSnLGy5u!02GPFhkj&yh`8olE^e#3GqxzmV7uA@*=oi8x1$^&| z$V@G`J-P?e)?u~ugT92dys3@G%VHb)VxklhJB4{3T3$_Yl@^TJuLTblnoPE5!rpF+ zGzb{c_mj*6`5>IS2m&_&KQPMAwtbq2zYSY}3a5vdzN1&e6^%*5UbWUU803&g331H! z_Y-M`zpjr_C87|OLmWV|L~Zu|A16>;wAb|s4*2i-4DaVSSKX`rbxOE=Mj2E?l*n0n zpPJk|qEOja)FT4JkMZZ*-4(&;bLzD?8iVn<_C)n|lEg|tAQeYL#!>0%KBwrLW)hLp z`v+eQ%3W~)RaKMyy~Y3*$!KJftp^|l^w-p8KUiEdv-E8p4Cjx4f+)ZvxyRj9T2%13 z<(qCT@n?~3dQ#stg{1m7kgj+Qq*b5YuS4K2Ke4Ud4$5R5+23``oHoZ&5~~zu4p#FU zFbQU)y;qQCD9KZZ($a(nl=kD|6Uv{1G}B@`rV*Va-jaH%)9I(i)G-kJKup5#*|?)p zy>LO?r!y_$@tL^?Lqn=)8(Oggpj9B5Pnz`=%d%U;46W+@SIUtrU^r+;wR4Y4- z+nqKn<%4>NPjr)5&mgNVlVCuL6|y?s;qHNbr`b)runwVt%n;y3yv>WllULl`X{-;;rlB%qSeo$1%J0r;@?2O z&CG%yjXl|k+d%XB+0)!%HskK@aA$1FfvUSSk9^~|-VXabx{@${xclKatH~=EAitEf zorW}gr}OAc@^5ABZsh%dvqQ}sNp>hAY{H_=b%DB&+DvBYgDk-Y>A!8c#Op-f^#mMmesoX!n_W2dq-jjdEcn3K$;+X1sU^GRrgdI3j7bHXxNfIM2u1S+d z=nBlEsXLGS>_M@--I*Bo)?YqAY|M=p7*-B(oDZ*#k`1LtL=XG%i@0XOIfj>sa*|zC z)h&gpu{FP&9b1uflMJ84D*zp7#8`kL7#n>|WISDoiT zkjDc+{VEi!fX(Dq5eKI)|^{?L4>-|5!FZ*R;;fcPMVb=#5s zUR9BuL#tuv$q-Wfl~~OsY>~rW)jjD!z-&<<(*hW1ZU=9fa}2C)A1fqa6<+XQC2&UdPGB-<8O11B3-I`-1absnKt zB|bm`!Ef3;skmnTlKUon)L^n8nhMPKCn8FltKXfJLS^w_L}voHc`yGNA<|jSIe^Ju z+!0+)5(Lpq2d(`mwjx7q5Xzwm!<^}O-#4W8)=hy37dhQ0p)3o{M!{U1f3S)_LAcO@ zBOd|4!5TC|8Q8Gt{*9tLd2alGC%ish2tBL_u@xa_q{^5?W98V@=DRBQd ze(IR&#!3}h86!b&^3wm;o>V7ixKla~WbY#GsqrwXJ^PV7ggKZC3r)qw7%6y2jq1}* zTlVL++=(xQIQ(5lIh$oxb>_)yKqlao0R=?}K1Q=u`Ch`!_YtIUP(tox$-lDiA2|t< zS^0mfCyzNI)!vsl+ z@dA|mLrVb8gg|R|ZfGhj=yw-;g%)6m^ee}ynaSa#*CduRO)i6-cU6@%62}|UDjD1_N6PVv~RwW(}cTFoh z=S64z%H9aXE@2{x>TmROk@NaQS6VK8+i}OCU+7|tr#1Y0)ojRLlYiTKARe8KT95gg zu>DW!52W3%g)Q3uuG#x*hR5eNJXl1~aiDOJ%tr@Wx{>Pj6k2OO-Msw<3!olRg)69xigu z?u;fA{eCquu2{k1+eHZ`aDTluN2_s>(1e6g2W=fC8?cY5zLy!}Gt8$8J2xG{Pn73mV>=s(AG6nv=#S6R;*L-fVhmE4*Q9-g zd}1SD-Qp?*Q(_4a0tJ5ZJwhPyUZIdeHLYpOBW?5whkzJJzI~{)%N!l}V(gg}+ZC6j z;|-C4PNKs2{n!e;^TZxh3?L|XP*NA$6uW7aL}cqdp((s^PU#uzei5&L_e7AvvIvcR z(6teBbbsYe)RY5y2QPhcxN=To?fWQM+s7fz6nmCMM?kR5(Enj? zBlw4~F^CdI1XMP{NL0F@8ARKTZ`QnyTp-HY#?VI?obdV5386QcIbKPYnb;9<1QMkl z$}c~REt zLDO7^YL#^UwJ>@pET4gc2UrUXXEZ=Y*nE4fe?+Zs! zgEau5Ub8A(T>aY~SfpuwiuMa|73$>iBFtbawYV&OLf`B2hev=roe_guu2HzHkcSuZAvf)x$>@|6VBqhur7zOEz>a8qNSH{h`{}Y zWDX-NNOhU?Yh)gJaYAEkaWbGt!EMdvQvY-!t^Au8t3ZOOa^ZlG@-wdLdAa{@${+ci zO1lNQf7(G{wr~n3xU9j%6gY(zOwJHg^BklPtZIuVc>G=&fzXWLWAp9JGTNq8!1psw z-KTz#Lhq@x3cW>{Arh_&oY}hSQ(Nn}Iae7a7!(s!>EEe$d3~K#Q$yhDi=;py6Yw2t z236y-K0f}FbCb3ytNG^kf^1}lmtKa%18R`a8Zz|msv!~SC6@?(&a}CB5y$Fw-UG4& zUwVlU&+;3YX`LaWCgfGG`!-H2(BTR;+1IMBYL-wZHLvdan9*?-8U!r@~GG-399Osz3f@8dn6z!IuHp za=OQEp0#B;$u7=%-lg3pRa59@PX%U_HKKFIah7s?+ezZDL;-e(nuz(~zWd#fp8K5Y zTcT#soiI2dxL8$No5fVj#MC%Ej~~|Pq27r@b&X|^CmCG+o*5={(;vh(X(}S;gbRx} z^gD8ukz;PNb2nuRUUN|?RvV+97>w4J*}p`SJXM zl>AjUm>kr4Pz5H&ros7UbfRC8bLII1)ZEp|1JHRW=zd4U8?iT8Ko0$2$SA<{^xqn^ zRJIP%^BcdTBf`yL8q1 zYxC$qw^Z7rZ)3+w&)wa138J%)D@U{v&U0MGJW`<(Ln@;&zby7N5~B|~pS^-g$1A9; z2bvBcxVM&}HHyPlJVZOmPb3P0JJEN=_UCymIO4ISeblog1tEi0x1=MWtj9Ndg2P3i zMWTKcWQu2Vf>noSQshhr1fu4HxdkbhYhZqMwq-6NpY--?wUqJRy4{<7rz*w8N7Q4& z7k8I6Q_XTQrUqMSAq$FY<6fsX{)L`m+yL5;uO#NW317!kq&i=HV9nr6Kc+$}f4RI- z{Lsv&@{?^0SA3(=n5@{4nfW3_m!8H4EE+^m`30@cRcy^XurUt}0_gV(NAiOr6cVw~ ziiBknf=|jaC4?`3fP`U7`U%Xjik9Q(i1N`(z(&rZB@={6bAdkxTT>hhoAS6Iecf{S z;TNDY`iqMx;GLmta*Af2-$JH8uSVbZq%jStvBdW%6Dn;)BCX33hex}X$AQJGqB@?4 z&}2Bo^WML^$aF_0^ycrWReu4TnOM`f_;4`kmyF9su}f(Yug{96!;yv6Hb;lrXu;3t zYn^o$;TjcBEE<0nuElT>WP@jbzM`|G3&xy^!Vg~>_#E~z9yhT0e8?y1$km%qH)x%& zraxEMZrO@oo10s;zat_PGBbnoyzD$7rrdF#NQ|uC$HP6F(crQr7oZcyJ~lx|cFrrsf|vOGnl|=-3_or++|n$7`$R^V#)c<7wxK7s7=Y|Hju#Xuq)< zyIDfs%pKz8bGT= zf?lcYXdm28W|^AL8&~^ercT#k>uPm-h9IUG&jM>&jnL>Je8XQq(_{s4V3F7U6O0he zE*P?!*`S5pZPMWdX<-@4nJ1_f1S%N_bsdYmB)Q%$xQQKBl8xcv#X_RS!N zOjo1kjj%?UPml2jEkSqIzfahI8+oFv7 z6w-v&-yhPiah*Af`tFIpD1P<+loFkLKCrub)`S|QB@n;AyDP-y0hdL!XfAALN1N`t zT_56CMoiBzwY(fwTZ>e;WQB9-ih;FF#>l7wZasJAp0E*!lrL6_b)ROKR+X33uV#~I zSQYN2#ekQjp~;N}rCc_96N6|Qn{^g?*X{XB<;9PJYp2cGTwUGHMz~Ja>B#Me)41Lh zh;`X=YGM18HQd8I-uVQs=U|j)yd3sMH%%`t2AZUMpaxP8A2hB$!C*0}6Q>mbZDs<` zMci6p2cNYAffl~(NVIxH7@n)u|A(!&j*7Bvzd)rK=|KT0iJ74h5RmTf4rv7GM!I{X zySqdL1VK6_MY^TCQ@T74`o7{M`bf?&3lZw*j4I zuCuYe5T&`9^=}`w27IH_!wO!2)=tvll86nV$T2MWNd41N1-=} zxeB8&8w%(-R!n;`|Em@G)4Lo~0tM8I%aK8jLK(zo;PA+EhaOzRSI&TdZk|Bz<!5Vl`v;ILXr#bjafc#pRx%3C5LpY*UVl&BH#CjTm}{0 zP)Ya2unEor%QfvN=jl2BH zhH&gzv8OR2A2f}Y?H&Gm08N^(?FCbS8Ty(V};r2I!`HEpx*Nd&6qxfgRb z2?@KBK?H76HS(s_9X!4mRU5iEq5TTmx{||VBP=Vn-LhL?6k2td*2z@I>(AI(%!0(& z86o-2uAMc|J%5M`JcuhX3cMo6lk(VUt0ol`sjRroOCPsOWzXYfZuMCfpsxJZ${!)N z;EJ@f{Fb-qKusz~pfNL^KiBSku`JFHvnCo{>J-^<UMXh&6T2k9o9G9?BkP@%OgG6RNEh-3vv+~3~-A3gRc_UI6Tkg zGPv9y@7rW1aB>N$Oft^Z?W6w4;6{p-3Nk6wXu3J@tX8ataFNoW}lx5DZ+i_Z; z6C>hOL%&`$1q6m-ub%7Jbzh%NsWi@;+vG1EFQcDA-fc?w0c>CACphv77pFmpxD!`rxhA&suBO+fd|dN*nJ zMVQ$)4`t}m;QG_zN-f?({e4tb=Trh3J9ZSBHqev-GtU6aT^d2+U<+bp8h=MWzB~F zt>w(Jz_rnzw@d>I^IO~(8MxQuI_s8AV0)65LqGbfnhGxahNazbpa@c6okAPg|C$el zyKpQAjNhp@kFIp0F+79i`y8611WuL`kv^lVVS6pr!R`(^skmZ9T_YaXAQ$s=n)omo z7FIkAEf1b(@LEgqLFHNHbI!03`4wv!2Mx7^yMcl*D+EpCwJv&WRk1|IBJhsLkvbwM5vNSK-?LTGIATw3n-E8@)8+WIS+LS8L+C7a}%#_d51 zK6~E?CRkn`)V4+eEr9-3pj35(+LmMe+;sgf@20Es#uU*LE$tcSkHwLr^--ghV@EX= zK6n!O2qIqBtJ(MOuYPT=^#49`2jaw5CNvi*a^=wVj4WbjfBcZMrc5oVt`35fv{Hs! z{@#54+i&gDMvB(NEB2-3(C0MAWye%Sc1>5pm3nMG9{Su4M+4J9^z>zSL zTHB<8PZt+nen@CIM%UFPTCV%VK(l?^j)q3J{t4UQ>cpEpYFBE5H?mdWls4cr%Xu~A z9hh2qYWt;ng8o->*Zn#ydhmrC37NmvrosCQz7=m8488o-0m=W-IwkzoI*t8Hf?*@- z*`oP0-*9KKr;&c+$W>q9GehB2$P~=wIO_Ai!%}zK7#EOeM=qBVk~_UC-nA9RE95$Q zXmuPPI%Mu{3&zsDQ?6r`E@8EIuc+lpV^6w~1*Ch||}Jm|u-fpQH_0>%;`UUmx|t+0jU39_Hj z`M_&e5U#UoSs_A)nd>sKorQsu=5cX#RkBh`X>3R#jHM6eT`cLiA`8Ecd3ztNLO$no;RVM5EklD4IakkvoyjTU~#|8J9ltu@xtvA$OYK>A`Rj9r_b0PY@S=*W%RB`BgK{CqKQtSER zzUTKXR!wu7O8>p`PBziu&2OPq@71?+?mbM9(Pn>5DRcae^bgY3RO)-Vq0i$-JH>u# z8yU5ny0QJPh*z1Wr>B46EDR|cNawxjxU0N}0b@G0xFB&ELO{gCPc1CF9|9j!3yD{WK-0heR93DW#Rwo)!YE)LH?G=9)%D;Y}oUAcYdh-*0v<> zsRy%9++kO+pVZ1|+7FhuvpLib{Tb;vvdVo=XnkpR5OeGTbd5QA zEcD(M$14lh8$~tm20jT27KwWH%c=5yvVM4rs|z;LO{2a8;^7%~KQ*0Za8-RjzAmm2 zJDSMhN%kIyCn+k&Sl&K+wa{%<(F{L~L#}okLEPrrKAu|aUR4yJ?vqS^Ws`7z(;paZ z*mVL;QPYL&zY>D`QB{`af5A8Sy^|c1ogFI3e}pTS06yzCxE1?Ze6CA&FSZh!;iD1M z1SO!iG`H?B03fZD%0b08D`nK(`ip2ol0pqoA8iBt^iwO}<*SsJ@|SdQ@fEE~EU0r$ zP0i}InL%5ws3eQ;g6>D;yEPfwZ7~?YJ=oSs>!Ru;cLX_sa$kk4pD3j}nRF z*78AH`0S4=HsebSI{4m@uY1Z`Emqx4Id8$87|%?$1>fYS7F2@*HI_;;LE#d^PUrT3 z`Z|jnPU2Owk@4w>-{-%4lh#-(6z)~Q5scl^_Ci-Bgc3axe=>CZ{vrd?ZD!~@@ z{AmzNI}nzkp{~c|cJ@Qk+~HKto+De}PN`3ivl*muJ^HpcH%EOIiOl=R`LsiQ)=U3j zWvyH>kaV5;VR|6Y`ZTFtRdNRWeDE)VKBfXX+$JeU-eW3?IF2+0^7h)&Lgb?e98ikPtpmuRRMGZjv%bigZK@B^9!Z~w4ewEAxJU)Afq z+Ftm#v6vZUe0~d2sGZbfu8cv<4$x0(Iz~)CABEdsd5|;=+b?0>k&cMC9n)T`NWp!w z{eUr#X)lLp{*-XZl+t6qC1`AE-DXY$+So@RI3 z7?2cl(>{m!{0(|jCWodRFj4(dxcB;r-Mxa`+8jBKeo+E#>>5NRYvV^2lx^VdnraHEI$CNP49JzkAL~7SeJTM+ zVXOcXmaxp|W7L4liPql%$fY>Po2`67o(BsEu?bJ-cXoE5xw6d3%ZvBf+0rGdEA_I$ z<#IfW_jhPVjf=mZm1Y?-%{J%{GD+#J~QolmPySFL-@dF;w3)SZD9G8l_H zKR#b(1igt?x}KP7IYH5N8gSgMmW(3(mLDw`yj!lvP?*##Y&_P;yZ8-A2;z_qY2Yc{ zr9Inu2VZn;{q>Gf+fhFR3^KNBZpQE}^uZ_!Cm8IZ_60OZ-Y&NnzBhEI9?i}^4!>uB z9ulyxLvm$rTkZ#bH)pGi{iIwg!<119w_VB3sCRn10*Kp}wnp$r-9X$-^j)CbU4*!% zNr0HVIpA$2`heRIB=^eqUe|iQD%H|$MU^Ay8~goX3r(Nd;^j|4!~LFZqmf^*)iT@$ zmxG_w&8UJ`cW!6U^Q+{*(Zzf1E#ivU}rP< z#7W(mlPUq(!o#>jGHEcZDnn%L8B=f3p?F$p-9S#_%pHF+#PzHZHxC|@F~`v`mCn-> zU~ysV@BVgsi+CmfuV{(F7HAjWlgQZ8Mj`VIX0_+iJP*ik=7=gQGEfzTI)GyPIo*j( zp5X<}B`D1@NvK zlD9-rnKW`=DF&CVNzkgt54#tkF!fmCo;X}5#K50eKK*f}&GOVl)Mi{oB{R$RU9S?o z5r7M`G=Ra|+FH4+FS&%1LB6{2!gpico7B{Ni;!qjL`}%jp^Ze(^5)Vfe&? zPxa}_pEtaS$DWcD(gd44dFtA78SF`iU>WEv<=cuh)Ou8vKnq>V2ck}-jT5A{8h#Dx z6qwLdzDfC^3=kmx!;hfkGsENKa)={GK)oD(2bjfguZD1BrImgk6%GmKDoK^3_C&>d zoenQ5alUCtaDhIR{N1Rw#g-lc(cABS{`-~oB5NA1x*S0%~*DhYHnp_6Mb0d{dir&Kj+@MkMnhvfb z8J*b{?R&~Em+j+YloNs)H!oFZS=d?m+~>E>Fv)2`)fqY;`K$Z&9>D@ggBDZnp-^=BUSSAXa>Mg0*;&5QC(znYp}7#d2RY?mr4p_t z0Q0(@(!3&|LG)&dUub5yg=h^GeLNbX|tm1_)0YRO9MyDxz%u;^NMWq5V z=|1{tO~=%j(4o^173qT>ntf3k)@91HkF_ zws*-Pba?FG*3&VW_YqE^D;6^KsF-6n5if#M5_bQTV*9N+wDNhUC!4)h zyV&(j+nBF*iR?cJH1iAV#!GbR?F(PGN8;irmvj8C?P3<1n}ZXpCB<3dvQ~|d=Qh88 zXpqv>@BF@*&yIQH`VUF%^?F0WqR;>LcD>VNlE65Rhbasz>k1ufHN1>#BFD>zPwyW~C z>)g*BQ`j5eOc1QW0}Pbowq;g@~;>=I*7?-EMB|J*ITHntz?el4j}m#CSo9Q695P;74%R z59?GJ(J=}#@;A*Ru#=YulZHc@oN1j1-$MqnYJLJ712>9*9V)3TE61aCtNXG{%u~)k`}~8YLymc0ff>-I_x9 zt%-+e;SD?TJ@dO}MU~{cfN>~9FIGQ=QnQ0^m3Xb92}353V?*`qZ05K-{ZIvQig|5) zlTz>nAwPff2WW|`giGJN>mrEK8RWhT{NvkhMJv`zkeWz?vi89{%xYI#n5m z6mX*$@$|`hI9=baO9r2MRB^UXmL>Yw4c4Vs%KV{y3~DI zm7h;yq`uny4vlLAl=YNB<%ae`D?7&?(p-(Q#y_RtZx#8^NQ11|-(0iPMV3ZhGhU)s zDxm8*N%4VKCf`I0Ms6f&$YtqL)zF;dy<6}+#AeiGu`|yNzrKD{=vh|y^N<>(Xx*cz zwDSz=K0s4$aQB@M+D%m`TM#3k$%DcZHzlSg!uV6z3n+|~WIezC@_*mAywf6ljsQKC zbJLai|FlLbe_Nxp|FlLqUyI3nxlTDnmX%JP3?wRW`R{*8dh>1EJ!b5Am^%pxqEQ?p z4!inls_IS82J)Px3|L7;rDrPHt{YQEZz&QGFRnd|-%cVXv@~`Ay z`9qz+{8>ioge`v0RAV=%$iAGVPj_LGyv{Oxd3Q@#2;%DQO@xVcv~wYfsTrahQj$Fz zlCkb&PW9B_1&)8%^FJa^IrN9A88UA+@FFQxM1*mG6^zdE#Wa!$T-wJ66qp)mKgyI! zb8~i|XL94GqKJQf^7I?04XoOOjGtL_dNV1mu8C}O$)ZAJctkk5-aLS}Id*-&3VDqf zsp@T+=)rql^QxwJlk#s{`{rU?A|uTXbKS4Ez|x(Tdd#1KcZ~+M5j<62>|AJeY})r! z5|&J=(CAJ>;3|R zSQdC+cf28Gu57Xa=iV<@*9*g;1swYwHIyKGH9%`qq6$+L(PRK-!nB1VaEajCcb7+a zq|mFLg{c>XQcSvBI1HMMfdff_!0dX@)6?4Corx%*4uAp z)`}=@;-{OtJ|{C!*sq%>H{V|Tx($&5^5z5pWnOIlZaIgR=34)!oEdal!_ zHx005egG}jF5dF_|5z!&cwu(|D_+IGNGq>>T_v@x2YK(*f6Dj39q%9~JC(&h1!OX^ zvtK)?4d<@!QtG`#dY{tXRk!-c+y3>;Ob{UhPTo-ebAj%#NLOk^)U>6e)m__Q@qUX( zw*iKTePRGDXhK|8S$3AH`g}?0m$tsOku__v*e>TASa~`hVK@d%RI&B56TL|@MeqGkw^0eh#UuMs-eQ{o~7CY#! zS_l(v*Q6{X1gmVcBVqhP^Ah{-{Ub#IAV%o0p*XhYq3%!#6@$6=Frq#Amrtj zK}-BGItrfmauVpj8nl+g%+dmyN?e6P_^Qb(#Ba7y#mo^NFBnr(0P_VH(kVAAg|=C? zkOm$%8e&Qhy=_7NnGT4L3ZHBWEMA>5H=LH}sRp z&+}cRvajbGr3?A?zpK+^k#$@=+_s_3IKJD)_A zfh0Y1m2pU2xQCd?WFlv~-cjpMA5F_u$00beSZh#>Yw&XG+%o8{4tLh)A0`b*UIoIP zHbso*+@6pFn(1Rz8VC>2S-erZB>jt5{^LcE{_91+{>O_D7wV^Fql>OrHn^}xm&PEE zjwrIz;Iu#=*DzS|HW636Pzuj@{Wp!`foUp(c()T@BPDG9-uheSC>rvryS@M+Kz`>x zAh4~=!qE}W9mUmVr|JeejQJAwPj4oZMVvUH@0bcMR^xN>`an%x*+PDCpB77*de9=x zmQFoaeFKnfm4V5Txrjnmdw_0WDsqJvxJj(@lZ3plLZ3ndu!4YaT z)3~^$;uX71B+LWM!@Ju%_@gA&9HY6P*3BXydCrxcp2Wp#!3XD*emQpzSfam_*i(6m5A={ z!73!J8_2$#Ryz#}gJ1p3=<98Ki^lH$Wq4-9?|O&&C}LzYaFx;-zQB-xYO=vB=`sSl z+{a^o&L7^=tsrJz#cNlIk8AP5F^*gurb5ZV zO&*Q>N6L-eMe-bgD{yzVfM^sK zHywa8T4Ody){{AUe1k+(0Qa`|G6IC;OkgNGf0HqHWV9HwIiP(Q+E6@uFsNbXCuDIn zH1I0lpO=2PJGwiS;R7V}{VACkfC*nhhq>x;xKTPA5`C-;CDh>^)z-lSl*rs%vZ)Z^ z!U8+>oX`m8a!$(5VA9S`LX|^ZDR4|+hWoexw6heg_RGoo1~`1qjO~C#tPDM z?3O5!fu(!?`hGb;eEyuq^;z!tN8Ex()sxry&NcPJipI&a%c8zGP*-wGCxlPjVj@=Oh|h2rax)7((qnarmevX@#km7UNqfAKimd#-xcmT z&ml6}7lM(4TX7@1RBS{>xw{{!zw`bNd&vGkU=w3;x^k3(NX>zl+0dL9aUdPs z_M-P%jGAk^P}-(8>b|b`HYqz&Rz_^D9^Lv(QqHt#c%;sMdvneTL& z4#Z`+&4hv@lR|L!;$a20tv5z$A`({Q z!v>c{*Gb3qAqkSsew2sgQxta0QZ_rMkfbq1=54Ta~$C0-KeRE@rkXX^0(*U ztXPv|in+3K@Tn~fBZhjs*Waw2vn+}V%83D;2Ww8MzPvslD+9)KyEJi)6Ydnw=B*XQ4!6D>J5*UbX@H%evs!~aI9G!@4(m;hGhGe7&A|2gcbe~Se^ z%|GFB%!n?nXun%_p9OW$-TE6jVo8sxH-0kb0UGT9>-i(i4>ApdQOfQ75T|AX&8X&g ziEo@yZ8;}EwCj&=y;iZc%-NV8{F@L$0L#Z&HFa106v&nYH_-EtXdjTv4%1D3b;J2w zRfkzB`<7}d1>`Q_1tTpWDoSa@FW6oAndKt0!2=JuSGd+TN!^t>0?ZrnOq@XOgR{Ij zaEV}ad5$U-lVv3_*OAQ9X}2TzzNc~RtFcU&Yar)l*bq{{C;8XO*7?xktVEz_IR=xYkEy`eByAj)P()7%i+vkS4umSyCa^c1ZSaR@2guFPK?5RIVssga@a- zFq=|vI4o(EV~a;Nd=o`PlRiG11m+Jo+Gb!xj!b`222Pbos!zFJ4lkHXx;B#VLtG0z z9FujKzg5@QYx(w*ZprT$#jVZ%Lw;wX14%e+X|qYJQaU^cD=q)m)P?}FcmFer)&T}x ze=MUXc$XI!S>nl!f>)0>-{S}P$>jRQG;k{Dw5d#?OB7^|a-EN&eRy7zAqgL@8ptHJRUk2u=e2ehkY)bxp}lIT8^`(ElZ}-X6V(e-xAtdL9Fz7b;USnkm@U z(&53VhfMUECz>yWC<;NGCY)=HH23MoXM=xqmDE?NB!u@hJccs9MtUr-A@^lt%xWY; zj!AxxI^x+qf?GPzvh?yAb77xfpQ}y4yJcq+B@gm{OusQ)5C3~c<&q3Dj72IOjXjeu zKva<*vvthjIKIy!(;NcPuEroE#PmEcV(s~)=98I|iarGX&v>dgFn;x^=?H+EI0yVWUjgDA=8rLz# zteQeKKTzFHgaBl)T<#-tuoJSmx>j!3is4U=Cck!O#FEhz?}i1vN@-g4ASx#Cevc;j z4=BZdfB^9IA+uIC|EMo!_FH|SOXhaXCsCl=PZ27C6R1d-+B3suvpKaU%3w{<2`yZ< zP=jh~4+byA@$qC3A?KxWh+Ng8uLfMedT6t8=}X5~4&^(z4YNBeUp46YJrTMISi&ksXyR!ku8tiA{QEeAN5;J39sYBWLyt1F3_P z1|<9QE82DjKY#xtwP`txoNOD5NGxr^~S|Hud#;wz~i7`ZZ9%?XowW z6h3EDFZJ~!RC^!}`o2Ic*7z{<5qiv{-rAwWT&?$oLR28#N4r1A#p^FJnt$J@G@x_``pVe#8z^JTc6sObrev2ZB1MkI>t>^FkvTpmi${{baKRJ^ z&3HLEvUX2FHhiJ4caIg$gsXARgE?`}$&-*1RHwjr?gkos_}`nyAQzi+%yL5VCeEG` zO7rvYZEAXkhZp-ie_>EJZn+K=aY0g6loQh6qt(_9M>3MHjln+zQgc}Lf{V>?&wsw< zBAH#@*$XrqhL6PJMSO&N8&${oOnyY6tvhB*`7+9!hNnn@06Y#jMHlgjvploGR{;UU zJDY*at%2l`%jK41jwe692)eAWr4D@7Qstmw*6CCGkZqy^lY>!rH!)-4IJeD@Axo;( z!*+-(UEzL$TQGg zF(s{l^Y1WrvX3EC{9wq*o&+~RI-|qMg(#KEW471?3vm(PwG<98hftDl!!c-?14w{V zK~%9ADaz+nNY}*7?z1j)BJMNOb!~@rrkBcW4B_H5e?AO_KL!}x`MwbBbY-G!__%>N zEZ#2e5h&(AKSIuU=*~jR#UjGV*~k|VTp#4`vpdH27A?2ihWsu`V?HYJ+gAO8umAEpHh4L~ zUScr8&%I_g7`8#^2aNTS;tNNUCN0K6y{nbI4B~8b9Tm3G&ia1Z_-oSQ*W%L?A$Z!t zz9wyy2Uti%+s`{wB!8EFCG_4PUem2XuLQm2Uw+F7JPhz7;upZIkLm$ia%fckV#bTz zbd-?wZQS@}H(ZDs`ZQ@x4f1wctTz!wrxLyXv25qlzM$oM>Wt+BJWNs3q$DD$()KowsW{az{GJq=M_2Pfn;SN_~Xcf2m{^UeWm;e|fGD zg=&i)1I+It`e$Wv2aypoeM`DgQR~r)a~Lv82d1U{kfr|fV;JyfXdc2}Q0lS-(~9`ohsu z?kr1H*V~aDKF&TIs7JM-VmlFq=PjRc=aevVM$5}B@3c=3cF=5qUPU-1bHfM*LpU+B zEJGU0(7t_dE*=Cs~^i=tr-ec5Rg%3V&Omuj>S* zqzj;@Fs>9N#l!N-pEw*=WjP$Mb*FZgS&5a;GdtICvkdP(5nf^0yJN=WKCNUa;TQ-g z)KqNGV~{;Xh*$o5@V3%~a)2DVWJTfRa)!R8|E?FXa1_YMh-6BaqWL-fiUFQrbVbAp zwY@IRRKD+#$gs3Fc0A{@%of}(3+@0U+A@t2Y*7THG!x>h~v30ekVWh7o~{`GiOlSoUuGcutLg2wKK@yIlhyvCNMuEdLT-mbIDRq{ zK4?2t>M5mW5_@tthRj0W+^F(X?GfV|P2pa9>e(aD)H6s3DAHvlMOoQqhs)u)I8grsb6O=R zhOd&}yvYwsM46%8y0#L#68L|?oJSxrJbxjyCq9rT&R5d*iipe7ZPY9A**5w(n^H%b zI~a<_5!c3`&c0AZndx`x+kA{a82q7}*b>^TY@?hU#|@eqG-bQ{ow-S>AGR%m(}W(* zZ=he=@bwptiw=mvv=i_k!0CSC9BeiZduf^c$^KrZOQ1gbLs!_;%T&F}eOfBRFxEEu z3oMLZvXzX!#8vSsMk)r_l3anx+Wl(W8MjuG+W&*!$pkU5fqZ|$3SsC^bJorY=~X~4rzBxA(?17ZJJ;V*xRU$*!^#jgdK ze5UqU4-aw2D+CF00_21bR^rQ;17!??>MbS-6BE>?PVN%+Ri#hY$OsFwkPAO26ZlpgaE--Fxe&pxYh{IwkC{WsxnG~)TTl*x^8jgjM`o~sOKbwyQT12n093WxN zqjy$wc~n?DqOHoG`>dNNlBLf(j+^f4MP{9&<1*P!AZ(?|)u^r&s~j88@m)sT)HRG9 zo0GF18MDYuOO}xOqUvUeBTZSgUXwH;>W#HyW3%C|2cB~Y#e@iKqm$3%=^~=+37@kX zN8a`l$W2#w=_EjWd?sB&TZnq(t+-4%*2cJ4Cp2yS@GEks4n7MXA2Iu8Ii&PicsXPH z$!^h31nxJ=KkG5f;4idkKrfu!;Gdr(Tajp@`xj&X^BWft(I1=kHdlFgou-{16!gNM zi9_;8VgliV`j7h9HWPfM4rY#2XCK=VIoJTYP7iZUN9(mkQePeu()!ux?q5KUJuTvz>}sPpHtF3jYMH?a1IIu^FII z)~Uz&W@{$3IvSrN>(4^8YFNW0-M9Jn zmfc)BE8Bn9a75(cMn$bpejZ={`iZl6e_}h||AC_vkN&K&{D0T@XBOwJ%ONcF(W~Q9 zjnEfQB?M-W1-7TvW8RJh=@F>TnYi*EoHyqSRP$bocTO-MmJ9D$eJqNxnp2x;>%vuv z*KDnF<^Z6J-VY1DBxETeGvHW^Y70Aq2V?5IY`GdpB!BL7Dx2TN%R9#rd>f`jSfA$5 zB+yQYSC7!OqPJejA}Np3JI8y~K#JrTE#S9PPH<%rBC5YipobiRO8r>%rE*$Ua7F=p zfi^gnUU2&uPPFfoQ}Ge|fHSpiZa#EbpH~8v?5KXO?ukRPG7LA#%a(~Pc`!s6_QdgT zof)P97W-72P~sgYLUshgE{>0%H%V5|l=tz)=ijF;+S9qz$M;*g-=bQ9@pp*j0c_lkR1Oh?y0W0+}GiO5#Dx zX6`HDWJIu)jELpn-nDHskx_)8kmL|$elkrGcx?fMWA~!ct*)}E^s#v zff=golCGS>796H`-k&cT*>k6cm(W8psE<6D?|*UT(;62K4Ylv^em7KLiF|3FrGR)1 z8(tLjo1Ek{c{>wh@nxG$D|;xEGFevly3;{f!yR~$j^B*+Bta)8WJwus#P!{~{MuR^ zK?WzSxx|?aquq6=+)1C@1KW#%So!{TZe06BcGdhI(Y3lSkH8lE5=~@ zp{@W)ft;5PTo)sHzcEZ(x7Q@6wOuh?YIj9KkNLqVxQN;-=4vT%@YJtf4tw7NIP_sc zecvZf&W?ks1+^nTh!gBN`Y!B~j+5?3xqi(NCD60)51JmSbl@V9(`d7PWsW?)h89jo z-giu}rai{WPmROfNB7fhjPGq*$~=mzCr-uy8Ik2dQ0W((Ea74#+g$PLwfcAXv6{%P(E_V@no1>I7QsvkzW{l;9 z9W|n0Ycl-|0c9qS8RqZ*=~-p@ElR69G?mHDNnxcr$eT-WpV zjeJxG#1o{-_r$qkf9u8j-J<&%Q2>So@%sb5)#WR!7pp}iQ-){nrncy_mzVLXYigFq zOFXK>wtg(zi*S<^78O#-BAW-Jpiq6F7t@^!4ooXo z13ii#^&-_@H1Q9n_yBp>ggBx9Y{DiGpN~BTc5T+2gjh_OG-v?+7bA0J9;B^cO zSws~Rsw}V@kR})}#$VN;8Ge1@X@dOjj!a2}x!6oAotAjdZTdOr62$mDGvEc2&c5$= zet0UdnYCQ{Wkr?@VHXhaoKqLb!ZmB&T>E0o{sW$Q-@`|_x^ z9W&nm`Tf_NTqHWIbI^b`0Pr6Y2Tg7B0C-I9bFUT~T5zpyRFJNBxf+=%^lih#LA2Kg z@J}Wo*5dFp1W!%0@2{Gp()fABbWgV52(5RTD#%EvNEC66glP!}={^&O_R?okiX_&( zRM7o)&Rpl2#!i{s*r=Sg>RmPXo&Ufd)8Va_EI~N$6d6&CR#)%`5#2C));*V~#(lWC zP;>xuqNZE~9-K}!R^1Upu1LgLjWhqso`bJE7A}=;vjz8ym{|c2tfk{wcJt9CGr@@woZW$B9q= zcn$>1LDoC8naPFM30%1aG;-THAq=%9c)H{(6KKc32omsSw_jks1n9H>u&odLTmcx} zP3V~Q(c=cHGZ{nu5s93ZT6~;CpTN>oNuA|)DHUn<$rR5!eu7n$W749$O0ll!wpsd; zC%?0{K@LmRrzU>E?Xiz|?cK$j*75MBmX2aJ!bV=M`Sq_7HXBHi8HUD74pC4zvYba$s9-Hm{B z$M+l1_ulue^{q9FKbV1;IcJ}}pZ)A-@1q%2$0#1#CWk^xd?GGfRNM9t;r=4*Pk~G1*i<7y&=KiIx2;c*Nh! zHum6UMVOQoj;vEnw!4YE{piM>>!>8!IpH@JgT`7_m5r3)8l&5pIw`Q05w5O{`|`nd zU{eXq@F%D6(;1d|>ma$0mPBVRq~4_Fh1)vPp(h(^R(eyJI;auCOjG9@a5q@(VrTro=5)oJuHsCnI3?d$qth}-$rvkPM>SX9 zTuV@w;Jav6O#6Byc=GD17{r7%Tj(J^SFxb%)$)2V2y-&_!5w@y8MGWDvVB^yqcoa# ziHk@@VH`)Af697@tUBtl%u#QqJ_1}~ruv{e9r0Y>B-K^lc69tLA2}{UqNusLlc7=t9ji3?OvpeNC(Dk5XEWS6=d2u)?`0 zt4dN5;hLcXXP`eiCs8V^2|B8Lm=O*(bd4IiDtaEG9Iz2s=bpM{ON4_#*x8G>%LFHLAsFI-(Y)ei2^ z{da|`VyOko=jSa{81l`(>nS;!B&eO8o||5HdKuxMSD5w*&k##?R^2D#9JSs#XE!#Y z6Q*lAY=>5u`|SL8&0`wkkS(NoS|xPm!S|lO5w;ypqZ$a=`9T;mI`ywm5~exU!&(QJ zb|vps=HnSKj`cR6CpfNj&SGV?u#>}gmozdel~oCjBZF0>(yG@x6ew2}^hyM-a@0fW z)UMsxluL+`nE{62RFp&}4SYX!cCqt{p&KB1fhq~jc0JhSyQQ2Lr0>Xnr* z4!uZ~n_%nA+|}67rl_N~^wDcSfV_w51|}DR+G1r=>=UH|w8){IY@2P`Nid3}_?&qx z!i-6&*e_+r6H}N*Ac)r2gaRnhy!pt(ZBGXe%K} zC*<+4E~Ns86ln$`47C1dqR+Vms7nru&s=goB4Bpr8IXG(n0*4F4Un>98hV=IXp5 zzjmVHe8clG#skfBftvIAjnh`H)sDfyy4v$fdo=6F^zDLaA~>)xKV04QoZ6`4?w50D zH2iMWb^Ce`H1|Z=AU67&oIp)Ud51j}tVIuV41D}lVFGS4!6J)&u8ZqWqVvvwG*g5U z#lZ5^g>tLu&Wj?NnoU&Aue*|&ON$X}zBjd z%%MG$%!&X^GYqZ%g)D=p^pX8#&AbP+(NK!-d)3}=5&<9oG&d+k(oO{^+X9q6-C$4E zlt!T8KteEva`CTw47rjZbWYFvHg^`|1B;2Nw>b?B>Z@#|w47+R$F31-p<7i`i*Zx# zhfxogj%aaMW_m?UH^?Sd8lIk><6B8o6UT0zDXjy4Mki?nGcT$wdVrZ+RUCSGOB!en zNOkkfscT1T#GWW{WCevq)~)K+mfhu{bm76HgJv>*l%!CE`|0v^v;tEFuqAOmdrcSB zrmjf+#*$j4F9Oj=>ea0}L$RdB=mm>$wB4|7&IvpHu1@3?)#;B;v%l2B0)l5$Uv>II zxnJ$H?cZ}&1&f=!*h=c{;;Xm6zjN*xUYM@4$9XP1`1KxXU|^)JA8Wv7ze?HEufd10 zn1-W3Lt`Ps^*oR@c{tX5>;C2s=ZQxJF&Jo#Q|Fht&k~w4P!9N8*7+MH`Eef$l5!!) znqKJhvHX`9F6AC5fZ8~&>!s;B;r(RzJR-xffK_oVX0puDF=aK>RUcl8z7M($WoL%g zHz~tRD*Ep?Z>v%ssB4H437aa8O{3I5Y9ykBO}^+B(n@|qN2~>qbxr8<+Owq$DIqu5 z8sDZ+@o?axTSZW_vVN24h|Fa7^PGOi2r5%Q7$EF8pc%;6*^TEn6ut})y$v*bYa2U9jB-UcI`+(seMPbyXuR{C{EwsL{He1h5u z5Q3BKvK?~6C^a9?YV#z$Rh^kHOanu0mKVx)XWkS&`R&^40trvM{p<9GuZHVnTr4m< zA$?`R_R7W9hzGx{5UU(JwC0LsKKHeF!F-mq>)>-Wdd#TMWPSWfV3}+J@}?GS;Cq}K z>4&q(ducNK_Dm}~-&2WnQrqGZR)+;k9f-X%UpX*sm*+~aB`dy#%F};CP3n0*xjO8K zvv<7E{cY`L?B^nhKBea?a4v9sLElA-j^Ji`ds~oct2egI_XHLW;A@`~Ku!9-5P1f5 z6}}p7uUyFCyfG`h93Of~5mxJ(+=V1I??FJmZGp#coa&J{z0w+|nylg?A_1lt!EBH5 zLAS5^Kp--iP&2CPtRO`yiv3QhBtlf5!S3rwdw9{WtSpN$kvwIl_Ak`;r--uYg&n}$ zj_d#x$=b88!SQjizY?1-eW)_w+nk!fLFYG!hQ5+s5OkPujd>g4sv; zNDjh|XL1>?%`m9TTCQ%JwqvJ$Ni`OgHsCui+NNUn03AHv;3hxZhJ?UPw>(5sRnsxj zjuX^>l}YvcKIbG!JR-!?yn3v37>qH+?rJ%8fKp~Q34i;0#2XYfNba(;G1UdP$0Ng` zM5R~dgl5-tH*EBVy$ZJUC7Xb9OXp#CcTM@#!mH0ycG8)=SV&}_73=b)(v}_$YTg)^ z8)v$syIs5_~%lo|RTMbVuS%Il9@qS28)!2W> z_VV%Aj)ebBrEcN&OgSQPgeSWC>{hg;AeM^i3XThFO-#@Tx~ij$NhDw;^QD1=A582! zG6h~*dJF5~cfp^UWzm|$wK|izJDQTt=puF37?fF11pj- zWoq^G<9OQHIHa_bP_8cGyo1@$q68$wkr&|%9(|nD(Tgb=F z+B~kf>W1S$`%!WtUMJme-qg9jbBEvu0dGiks9SibIzkN%1qrcsQm1E6N-85CUa(ws zE17Sn}r}@2CT59`-AtY6Ma6J_a}U$JUmEZ1N4VQ+IRSU zt2$>ReD}?@-i9GrMeq-2-d@x>U*Fsw0{S7hX7Y~qd$HOLBnpk;=lcbL$xc`YpyourPXSXEdtX)p)xss6%r?Zd&wE{IyQ_f>p<#Na$c{h z>)XM)$}!p!4M%F^cFt*gBM-;-NV3OmDTPPZHy$S3HUv#bgel~I zD9H6r+$c%f87bqKRR@9X?@I_>C$Oa+Q6wt`H;E3_lBM~~u>@lPGc{srwAzv?qPRv9 z3@~E)XXlvL`hO4Gcg`?1i1eOrs;9mo9e>+$g`(1E;_KvdUe6)=-P_5ZYFo|y&TPL{ zjQ9rQBZIbIdk$!yqqHZV)2YhYVY$frf^vOx(*#6iZuc5863et_Vj`pckM~0@ha?`` zQNr~_u@?Bf_w8CN+3fN11GYdSdL+;FcBakA(A(vM23~ur-rZe%?(6ATafzzcwwpg~ znZg!qCeF(}eAkTUdoy9m+MbGF9c{5>SbOf{nX9=!jbX}KGX-$xPXjS@orxgSXl96<%kDrCnzXI43x9 z>6|6a&F=|1B9|*ORrBF?;ciV4#8zoY#{RQq5#Sav#Tb%OQi7ieoFY~PhyxyXaiXBH8q5y%Y=jZ2M2KzCPyFK zN7POB{vbXWBtbpeA+GQ01cL`4YDqZ}3CQbq5GSF71FDGehAjnOoPR0ns_(x)MV@i2 z+dUVd?C^(_F-SnLgCpsFsm8BFGdP_8){#f~ApE{Ixu^>}l(QVh>_v-@Z>+n>2fKTT zIpfSO;}}_zUwR_ljlW}>R*6m>*w%phcG-pV4*R|hnggwmtknp&I#+gOWE_+G6BfsE8DIXsSA8HWeM%EXah{+lp&EHixM9H{M=RFed|Vf=c#R zna`~srXJ{XiX1Spa7-<)9?Dc!%k8dSGpJXqVCYOvyAC|@nNhf+K8LpOeq(Vqi2f=gtKgyeLZb@=-ana zV|J!XQ13^viu=omA#U_P4_N5O+SWJur~0MvbKe>{k6@WeV%w_IUK(nMJS3O|_@7b(e}y&L#r#y{zL29c{huLdsBV1-$FGA9hudX&&_DiKgDVfwG~p+P z4^=rAyUb(tn;8n=1yY^`TaXoixreo+47n2i%>r=nJY}y(ZenC4Sj;*f8a|b1)p^~a zR*yR~@TW7069!8fYP8$20JwtNy9pO5{6M$ZXuiu@yCue{9juzZ3TW( z{EX3Y^N4X;TF;C2>SFk5U>znWmzTqSk4?(k3j{IxbA%@{st3|HAEH17?wq*+(DJ*B z+uaFSlG`)$QojAYNuXK;jMS6SsAC841SGHnNv}+&l6U)pv-fi#e^xbL+IorA!@$)@ zRLVhQm|b4JlLMpKpZzEq?*$sYtcspIMJaI?F|ju~tFd%Xy7N3^ zPOme&w(;G%{M>Hy>o;hmvWa>aF(0sfxVtz!Ipf1dO+Vb$*yUc0GF(vDF7P`yb^+ghoId=0oingzW zu;n;G8rc_nj$^nnd#KN!WxYl7?A&fc@|oA|*0vsw zb6HDYI0y(I3j7~ZYSmy92lqMoK2Sf$?<7^Ia{vr5ys!-Af2n2dhG0H$NCvJUpxirKAqS)JT>n!pH744EiV_{pdniDMiCQMqH~Zgyxvg zfZq5r5b>xZByj*U*ztMw%ny`tc*9G7`bp0g#E5?`{UpJF1)Lu!yHo#ESZ88Qa4BTL zWbOp9QOE&qT+vbxO)7leo@#xNf4JWrHIWT#D8GM9{sisQ1{XJv^$Nwd0s&ID3xqyx zxcnH7Obuc7-vN;J?cj*+sYf~tIlI0FLxmBxUjN2P7Lh%(KT@%9T4_oBt{qUAT3fiN7U2A_;59d- z<}p{@RLZI2xp}Vs2B#u_iZ7_Bq!ILXu~xKGiOS=0Ma*SY?ze6g6>us5>|il}85ulP zy{cwQsSb=lnLp6ASSptS>y|E83?u+A(Xt)AUc-C9PI7qt?c6PsA>IU*W0KGiq`IP#L^OfDIP(Bhdro*XRFE5t7 zM;@^!5PBsIh{$sofr>x_nMLNKmHZQ&wg>ZPLBo4X{*_F{2rbJITXkgrQqwFw#^L;t z3kUBA))fJuXBnNcxF2Ec20O}|NxhRkp=}47*V^Kt zt+J5tyQ~iabiI8RXfK)e9wjLXo8Yvsr2XxNqVIVPbJ9nW>DZGrDoH+0X~+^8>0 zGRep*H@GCl&+d!3{Fe4-%?Zq7ARI+B3& z+Y%d1?3)-lIk|YbT1-+BiLECx(1x2OFyE1Zu@Z-VKA6Od6tZeENw;655*NG=DPZ;Y zZ)TM=L%n2g^h-%mEHgARLDu$Poz6?^wF`{0+YXJ@aN57;2MaQpdB!Eg1+OItB~7;L zI}>RU#*sr5%6h!uPdsma@4sF|5>6RK^8eM zG~Dfv;(@G~pJ1kODYgv<=6$e}W<-Op7u04E{RaY{5~6oxsFyyg4x^Y3I|VL?K)Elt z_5N$D%fa@|tfT4F@o0$gUY*AJPdct28S5yJF#8x;i7$r063V}Q@G9a)$0OP zi=!R^i%F_$Gqe;UmuhUvCh}vpUFb zfLSaWYDsyG?><^q125!x&P+0lO6|`dKIRh+Osv;pAx?`5 zC@+xWpWDaF6FgSu|Xgrgp_+kj2FL_r6jKSdQ+}YV4)3-rJGS$odrYPB!T_lp0 ziLJLYE~4fxd0XZEAmHJ03485!!)9C*h_I!*5o*}m-!BYQkRZkMfB-NstJZRsv%g9T zt{jm};hc-?+kLgw99-#C*o_GDSMZ>a5F-KBR-tACFTcAO^=I@~Ny;CoRtvCt(PENk zWq(bqj)`RkxKBp}HQ!(KqSurG{orU`Rb;PTVddp@ZT}`lCH+9T+NJAhHDe*2`c8z) z*}_5^L%|YzWwtNn9qz`3``6&CipmP%y~%KOE3Ggx+tK3?{{(dLc;cdHk69g-)EFu& z1NVyqoGE6U`+aTioRHc*ryvdw!tMi<^K4}mgV}Kw%>X^dDO3do1-3-S$?|@wsw(pf ztshbiMpBKZT$;i*13#vpzt~UVC{~yL_tkyx?09VyccB0c(Z5x%hXE0Fx~S8 z#YC`j&ZT{or#Qv@=YqcB|M|HBc9P<($|e4K3Rq4A{5&9fY z4`dr+w9b?i+MdTML;%-7?fVn_d^W|_qsM*wog=!x=Kf(wrIMf-zCwk4%;(ss&y@5r zoQBtwYYMWe*7OS!Bl&~35lybm_7e}=mp)zPaMVYtTH=iqy22FPfuu4Of>MYZ(UlJ<0y8fsc z+6>X8=*|4OU4Vi;FvFS7lwsno35P`Nb@`Si^(_t|S;oNdF!vfR4k9+B#b(v6DoZ;Y zlZ^m;+osdQ`=r$Q`;%n%QI6`L^LK|CKvBf=ejVTQ$>?c~9y3^7ah>-Em>#AxyUgKf zq`>BC1Vc1FIUN_g5?O_nFfR?+4mR6}4u3bweO}RrxSAvn(DUT!IvQ^}tE6&RPO`mK z(I;TW3uFiInQAQKm2lyRKe9a^2DXdlyIGcJOmbF}pBj;VX*@m8_JR6yvvwRjHGDz0)2Iw;M796hP4A zWi`LYZ){`OPL=&66)fRim(Jv2B%Kn0L0$EaXZ_Xe`Qq^W>qTc@KOp0feAB~V?~!)P z#R+Oyi2SzN?|7k^S(in#|8v|X?B!QGXm+@~?M?rh7xH+m)+Y3A!XJ$WKS9nydyvnVPUjM%raz!}SiyKhP6NDZ(007Cq+u=6cfq=4^iPmPiUjCOq2ynqttVNw z=Nk3g<8j#YhRP+k((LRcp~~bBmtJQ}iH%{uF++1$2wFT~C*Z4qj`Xz(h*cEgK&X%7 z`b5i%1*oJ+crNe}f1Ku8$-#Vbd%?nvFRPSv`$}=ZqkoY;Kz7%oYq-2A_acgZ)yaLu6B12483SW({)Cp%5ajBM$0=K8O zPEX^;^-5v12Q#}hrjBe0ImYa*++C!(^3I?@`m;*3AYd8)|AOW4N3aYiWgq(sV#JoyF^E^wccZq)v0U>EMIoq| zzm-Ircb?lE?w71K=JT=F!axN+j1n-gF7&X2HI(YK_RZL!QQbd5*EuOKA5Fh?9fP^Q zzjh$ZNN?x|Os}+f#x3#;^wU!TfQrFf(6*wS1OssQ*`7-XxCM(HEIQFMK{*Y$b$_G> z(<2(`iF`;YQ6k9J&5C*8ql`H)SHg=%#8Dl(I&ou?USo0Q)pVf7hHZAR0rNQnS%@`% z_Bh%Gbo9N>T}(-jq)kk0OR+`>3dSRUd`q85!0A0G{3P$6;$=DBKxw%fvlYMt;MIQ) z=`%QR?BhB}|7RVth8DxL_uc$upT#Jv838?vsL#QJFyn z=NQ3ID2Mx5LZeifur+9i4fotFCk5uQ55QLkO}v~Ulxqr}q4$+<$bm*%`>+?p4t3gr zgqKa1W=0+sHr!2&S-t_~`yW2IsNA<;w6XymwBVSV!OJ)T1BOPl9Ygc68HKQ2{RZas zZIq9&7_)K|u=SYHkhYY{1X6NqHjQKY>DmX5=dqOzdBoK%Z2|?Tm1AXR9;} zc3pJX6_ zfI|Rx^94{l2dEn{3HY*+i#Jugd^$lPKp|~Pc-%len`HUGN_cK@i&?&s33H)xganP5 z@++z5BL4K|Qh>nCvt3yNVP$vCXt&HuD>9(o;*XoO`ZGGA0p4^*xnuEQLRizEYVz+i1pL5`ovaf$UR}@&+0dQGAwks-7EpVS{Z*^(S;CJm2n2mK|6C;VV;k-TfmyE5 zlqvFU?0@aQI6o|;3%BDRJdg$vB{N(%pe#PND?B5s?1ZcYe-PNn7<<(`aiO527Z)9n zAP57^@a8$zth-S-!WL2rNi9 z5%Ls2C{Y?nx}`*WFdPMS2DjSy7X*InyWw}-?Y|2N)s@DC5-Ns+<7ADlav>aawIBVZ z5i#5EiR;8gT^JVq0|Vf*U`BPqgC?nR8de<->jzCZ6~ZFdWN^=H&<3M5bYiE!(UKCm zo_x(RnPH%@#d-4FQ0TZ!kUkLn^`&%{tNS3ok|Xr3tEZ3i_a~~rBNSHr`WGl^fZXwA zmjjO%96-VI=&Y=ORS}{wcjDTtg$LH!ZlV*4bjbrtOa<`=7&33(&2r5we2VBn$;mFo z$kopsi+NK?0Z}fIU@+r{*BY7Ol`y^%D&!>XZK~w@dltwbXCcObE1QD(^>oOvkabqR z2dieiplYzhHWx43%Va6Ou!&^l?8-AtS;8fh8~zK5Q_OiPa+%S*?MEJ=0loT`&F1V{ zz9t`ZH>BAHGq6Y%56RemfL?|w4+_}HUVl07`rAI36ZF(RIDkqnB^gpk@8PMIn_n^* z_h0tl2Q*Va1@hs-*WXgqQv3E&j_%;LdhdHdpX(~GQ}qo(jEbKctY9#{EmUMBDyxtp zOQwelEMcqwu&I4n_*a(K!kuTbXS#c6iHv|))2k_&6o{xMum%)gmn-d+b*!97!~a)A zg%s9Zenq^`6yoppIq$anvF8Cg$mq6TT>n`{LDJ1ve$-bct6oxPAJH0sZ@al`@m+vI zdO1Q^Ao18NR0}l--J?OlPg35B0vH7g<@|VNTMc zuC}fI3sS2dU1Fz3^Lt_#&G+tk%(jo)@sCu$#C#+)^A-Lw>g>KfC>Cui)rv9c6qS$N z6@;iNs&Ak#m>Shy#4v+_E$)LjHG}bpy=uAhA1e`b8{?BuB~!RFRYp$0%Cu2u&D-H@ z$aNvHV)ua%XxmVHc%Ec_(zp4(5B9COxvv#n7N5t+c%wxf16^KE&lf9OH#-Nl~i6G;r&-!6lQzuKNSBL5o7?_ zFLcXN3*2zbO0R6(%p*X8g`;sUDJ^M)g88Tpo2xSg`I-O#Rc59UGa^1m!_nfbMge+Y zmXBP?StX1fJLdq|Af|QqcVHx|MB9hXmvyh*gZo>pAfHJ`5E2&VZ*Puw~MZx zeV==PEgdNF55{fJLl0)b)hWj!H=iLCXHW~+1g02-awQsfdVZ7HJ!llia-bc3?hn_8 zcM`4W#>I_XS?i#bo!_h(kdRwn1Pu+J=0p062FMVk>-31?6#wH7l4u~SK!BmFGoTy=b;|ETj+vgQfJP#jCpCE|#!h0u@8ALIDbUYt{d8uBpwk@dMt)`nyi~wshpzwBHYf;!vpuRc z>gO(|%YZR&qzs5DGym%YA!&=SyunL1Qb^jOSdK+_!`@0=GBn>F<-;-@K7pr9a&i1( z*#Rm0s~NG|?5?3SvFh+#48yj9vS#=#PG)ojq%EXR<g#L3 zy{jl3umIlMPo@=Bzjd!zaQ?MB+=M6Rzl4Gsl2A-Vy6f`~m-jEScnfF=0wQ_9x zKDiAu>Pw?)ubLg#YQ@*w@^kWuj|Uyw(*+0mEz{4)HAnMY3gD)I{5G0(LpIqZ-G8%# zdQ3|->OB+AeBJbK$}c?w>sMggEjo>N&@+``Liq4pPmQX<(vPMe>)x)S&j6ztfwgZQm*KnOUl;ho*E0gRhdBn+Y(ls3LhXyn|su;yO~@wY)f zB|%R#3PBdY=^Ubk`^HJHGoX#&oC(Y~iVRa%e$g#TUS3##cZRR5!}1CD3znfSP|b;n zj^Qq;c6t5xlzZU+1q5Hl#@@r%^CFRHKYI6n2H|T$2`T80{Oh@KgT39on|ePrg~kKN zst9=%(3G2JI&(Q3Un673WC3)i^UDD%Fs{hf4qPkc(N@z`0^*X3&t2L;9HGEvgS_o_ z0RMY4Y^#haT-MhoX!KT^^G{~ko(X`66>T9S8)PWex}`CVkm?1wjv24xw6|9uO2K-s zJ{kUbw=br3phjFD^~3x%@I>Co3Af162cTQm~eAGYIge-5OU zrS_omO^)?JI>DoUPUh~eU2e5cVxTti|7xa#Db+t01{641xs?b#kxFT%ob>bvC;glM zNg~0Tk~_q#RC5L|y3YRwkbk*DJ1~y`D7&!#jTB=-I^I7exZML7HOCZfjU+)7%*o(5 zt|?E1lFnnndV3iv<7yd@8#%u~;vyY-#*xFj7e{JcydRv{$MWd8rFsh>nK^%}3A4`G z5186Q2gc$fY(n8q)W0X!4}!Ae{gOup*_F)N~Mlghw24o>f{hLD~Vq!QIm8?g= zy;vTNL(e_DfXNI!6svB)!6Iq^s1>n{FN}dTEm6ee*PiXo7(v)kTQRrjIiY&q*4|AdX zU&T?!4HJ$lv`-5$`(=bOKz-^8FZ`&?D2}w~sW`d=T=!mV)m<=^zg85Roy>3qK~#N) zZT6<5j_66Spj<1Q#=8YIMV4|Z+*k!2X1TrgH(WpuoEWh?$a(2ZwYcHzYY1$rWi)>; zERDdFySfuFYDSJ1`6K_+Xdo7{-JC3XmH7WlOFw_Y;{RxAMiAF7-C=)u6Hp0>DCtao z1vyO8Bv2c}j-|Es-?O-;zzT+n6sSZH4;1w-P$=%zxmKf-1#w}6x~nx2GK_vW;A!e1 zKC2`};gk6~^-x+t(KIgNqc3Q^goI#TFK+b~aAS$UX1tD zQdUCO^K9ED-?~C_xmKJw$ucB=z}0^c&|d?pc@6N@^K3Rw_3v9s(f#+Ea9}N6ep#QDudqWdcEwvs0_jHzf+Ty{<`==ro@{`y%m)`bJVCf~3yVD4;kk5mniRSd z5(-LgQxml1@tR$o&Ok3eaBXe|P+wE^E0N_`DFGu*xA-F~`{-qXuiplN+RUbvOz5!MAkT`><{Lt$*2nJ77JrII9e(wos!*&IyL%P3G?2r0r9WxW>wz z@weh;`T$uCiSx$R^0A9eg$K$zb#oS~2a#*+2tUST|A@-~f@%0tu^dNIx8L=n9@`Y3 zuJ>ZJ4$20Z82kLVZMXWhIk37p6je4`vvR`#p*Cj`ui&3^pc*Y@NK78~lZIM6SW3Bl zVn)0{?-lwMLo*FCP=(}hDu%aiu7X2~kU4Y_6;6teP{~C*LyD;Vv)J$^h|y7_j^HAJ zU}}20m@qLuJ}>~xT3=spJ7-z5{HdylsnD888q`K6?^TRG!hO@8e6Tr`9&z)hWoz)H z&kObNR;sS$Ex!KFDBBFo|5ZiGKB*!x3G3Ux)rZG}sS;Yh#s(dpA9Xl@l2nQ`03W-p`Wyq~ zlJs{dI|*NC`ch0GhoAoxXbzxvGb4;hzMe-u{a_)|(~NW&VWW$}qY3?7k^3{k7ODAF zda%rp*vYrtg75Q8`i`X;?P)($a^8>T>2wFH%lcJe0;Aq^Lg_`_MaWZ7G6SY~UYi!r z9Cl$acjCuv^QL_~*u?aNY%BgBTa?d9Hq$1+t%io3cR^Tr#d;@1Mx z!vXl^0z0}e1 zX`v%S4Fo?eU1KsCSRd2)zY1`kegz`4Qi0zk)GHR>)^X*`QK{Uq&Q0Y&C*pvE;AORcVU;%@SS=ACZP#&B408;Af@ZJxKA&QT$?zq?s`s%o5d?pT?0E;5>o z1GFAE=1RY{ImtZ+;rI`G%02u90K={^G zEG&cjF*Fu6MSuP?kKTf=n;&pIf)bFj2EF9g^6q$@I4kw1*O=#j)n*ca14^MNv-tS- z$uV1t_V_9@@7n&RDltK#5G}?E-!%9#)Qn$ObRc9c#}!FDgDmF#Hpf)Y>J38ugn@;k z2mbg;ses$?B(BMh7|;}gc!m^;N}f^z^1Ocqe8kt1_VV?Gh?|&^P-m)?qK=GEa?V_C z)s2yDcXI%-ns#%Zyw#saZ+OMl+k9g^(&&`^!s?=o!`8CBJHmP`b?Np6gVqmzE)Dm) zAsLm2z2`Coj&~{Mcu`o~yrXFh^0s()ZhYT4QSZFXT%ND;s2 zAIjE2U?CYl^P8%%H`{Mm;<#d?09Zd5GVn@7f$c0NO!=eff|fHPmmHx`%fPp&EL<4K zf8UO4{SnSxoL-Ll)1odof@S-SN7grikVXsbRn3RhJaQ?Uo1QKN|1^=GE21M7av&ma-FI$njG@MUNF+iyY01hW@c zoDrFF1?Sj6I-t^$9b10=0wx>rL&L4|e zKR(`jOrVyAwk42F_P?5+IaH3o+z$#Kb>YYE(gMn5bRCb>{69b|P6CvZxU()fZ~&@2 zs{mm8sgfZ*$J|bbJV1FUb{-=Yl0o?%QtPmHt&~(KsmMB)95PX{lK9#JUe}!9&}G*Z z?tgG?+uL2PKeitJ5XY61%x~8S^A?yFod=@`NYlfNFbC5iPmnF zd_C(*9!V`Ky*3$_X!6#YrX!2wwXCsZlFAiD|Ha6k`F~WGB zP@;gU!?%YX0|YFFbE*IGCXgAC01;6{6#fa^?%P^6<)4pi*)w*2{SV3lLn49kuxpEf z%B}bh50w{-D@vNC^;<=`Y4*dgP-HJKke;U^vJZ3487gnX*EG~$%Pw)TI&VfLdu4Df zT{-^;^Zf zw5jF7{jU25AvY&Lazom0%`L7Pj%P07*Y#?^k&_{{VNnknu3u(={M}cbR0r*C$;^?d z3iW{o3lwRM0!-ACvd0D;_*$HO{N>3tGFg?)nDIeNLW+w}B~aF>n}_r^m9-sQ9M5%s zDw8_Q@)Ue$6w*59{ZYe?-0~WS!w;aw{kK=87co!|J&B(uDN2JVHLUUqkHDPy}= z_)2F_2n-i&5(_x{ubwL(474&w0o{Fc!un#0T1wv|nXKAo_?CfN(DyawwdG49*K+`F z>TrPD??6Xowe~Vm68OWq^NC>bRv17rvf<~yOQKo$$E0h^RkfFn>5G4fe>hyK0El9l z1AN=)VWZs*0%*=>*3NQ0rnu^Yk0!>v3d9b4+b_kV0&u4n4p}SnULOctVgXi$Sv2FG zlx$NiB3SkJ*!XOCyS4|QPpR^pJ_ z-RU2~!qwEx(RE*2+{o_D*CDW!vjj(kh+0|_9*ayEqB-`(%JGKY9B4)XA$$)wR4ri$d#5;6*yz5G&`7 zyxu9FD*G8nmP55fQNjNe@(*B6H!vD30V08 zqX5w#Y4E$>j5)`>FHGKf!$NyD4No}aTNQQveCaE}irTdNzUrBvfGkzN$`66Y+ujGdKhYhASR9<5a7BKoY79K;DEt0oiL$ap-JX%9wr|YxIoB(2; z9uC55OQxD1r3z){)>Wo6KfSDk40U}is71XIs@ykQ*|Vbtz@uw1fcsywoe(P>@%*f_ za?*$~t)1rot3(#D_dx~nXFA*%Hn9vf7#(Y6R^t}Zuu;AZ6zV#E{fs5B19j(@70$|N z(QG;cT^4csSLF4(j5aVXSVZoPRpJ%TTDBd8hZ<0LZOMMo4v4kQbO0P$dCyMTS6TS_ z5(2ughPQrXMx^hq0J-mpz)YXVhje-oZ7pG+-5-Rj? z;pk9~yJlSO=$d2)yXMwdEXoA8@4EJ(nejKPtS zoh`R~5Bd|c#_qQpJ}&M6MQ;Y(f$`rpTvpUFPXXI+Zvki9QBV;*7K01rt(vuj+ymWVsebf*~w{k%EY7Sfjrz3a}kL6hb=MkP+l(mqz z_6XL}(NHhOA#$YXIw3I8s2~1AB2M<6u{Mf8*W{Ow+{3d!6!M}$3fqh4#VPtI6Uh+UO+}Kbl_rL=|L(8kE zgzNXn>a+)7dR$E6pkZNgW<-~j$_n$tXlftK>I-Wmwh(=1oW}RwS+Nq(*5)Iu7d6*$ zA^IO50r(4>=b&mvnqp6YU6J%t2cDuF{k0ItM{tFHb%uqDn}zYr8w*$>3Z409?RrP! zw@Qda8za7eB}N0L>Q8goE(@N>`)y)M+B`TS=xB~nI<()JJP9P994~wWmSMR$EYYY$ zJCnj|hR4jRKR+H3AVLAkKdw`kVny`mEf&j-x`OEks#!X_y5~QpNJ4Exf}BbG#<5Av z4m`J=P6V4d?3EJJ^I21v^Rs@>5@)zAxZHG+kl7-Egtl@@%HS!J>$WYdpuOKr9plHy zf$N=pnDp}V$c`fWffXMwF4VXkC`YR-My4sS<%xt%-uju6>@1nSbYl)iXxb905zV@ODJm;IUtw?1xmy& z|B-NJoGY+pg6y7+7X(r~;8wiopdMYCi}>m%M6-1B+)eG}CvB*xT3V>Eptqn{V^X)3 zTpw=^Nd&pvA2csD)5(T)fvW-EwLrani*gzCh4h^(IX5@De6l@Sp6b@v+>B>B`Q_0* z>fz~`sDT^zs(l0yZWl1{U^^ni$>21e9NC zfB0+e4@$Ld_YXwwvk86wKl^v>zb>W1QeQHV@d8Ek|G$Go*8GS*4=kq&-0Atn3R6!@ zcVDPptVH)UC&VFAFfYQ^s?W2~awC^AXdt1u4m}3+kHFVgm9R0l2IbQ;>9{Yl#Ia4X z2sJe6R(b);6GXmjRZc?w8tvulO;S>t`IXt8=TEL;Itnn_bNzu7!c=}`A-uv!kMM5$ zo6(Uk?&R-Otn4gzFj9Pax!6f{+6Chh*Rx2d73U@2iJo!~Yv2*qm+-k^hv5MJk%a0D z%Av|7d))?kH;kTTRE{a~w_-z}b>}7p2Nl6LXIU|Mf+?RG{^+150|`fknpndkevFB@PELMc(KP;C1M=H0-x2wRS&mi5Ne)Z{=AYXWg8i5evLO9q3A&0)y|>X*9{ap5*Dl5P!3VIvxn&(KS70)_JnnIAruDi@PNTknK^#%<2YpVem6nMsYckgGrOP#>UMS^b3XKUA0Ugvz{<&qCNe}z8mo#S?X^Q zSHem>sj{w(lj2@ywIK(-Ff;x7TJ0s02*2My91hV_{OU4^V@Ur>%p$GUcBM%p?B@HA2t=G(7$->tQdvPH-NNgYy3!M@DTq z*+I%&;BJ0YLGz01qcu3gqlqnFE@V2O9v|6VHI?}Sm!%!(A5I=79zkZQONx03>d}?H z7c~;Oy>fDW<;)4Z^D1tMEKSF54QFApAPP{Td|NcA0y@{Qw4wvZthrWXwZBJ$wsK$M z#}_#c>DnvId0wX$o_!nF4awoTHOzVOWr5B~CTCTA`Q`I9QgM-5Jq{H>pU!tJ32V;4 z+w(VKhk_HK<((=+{~wu8O6=FJiC&w;TJ2Y&KFfFQzL6EyPpL*%0_|unfL_L<`PXB^ z3WWp1bF5Rfp-=Iu2HCJH|KDTj2ckJxMXO#$EIt+y<_#o33`NClW-?zhvkMG!i?1HJ z3NA6B z)DA@dkBZl%eGny|>cAX3uC!l&|13ff;9SB`rQfY|AR@ce4{Id^1-n~i*4NGixxTJa zbc}wYvj}-E$?AgGWHYJ)c7T)G{Fd=6PbuuVRuSwvYKR6n70{9Hr@^5HY5PGg$G6P4 z+Wo0(b6N9nj%YnKBwmznQ!9&DNh&MhI2PGEUENICKXd$7;m;KZIFb=v5+^MnZ{IX1 zvHa%-{dE`C+>gQf4oEp4gS9slH1#U+>BaLjF^Y0LJuHw207+O=!sGLVKx&OcNLmC5 zcJS%}m&rB)D}YQh3kUJxoh$J!btS?6XR)>x1AT*4Y^%b+*$&8vBI&v?H!+yv+;%E@ z|HW4g++gK^+cyDMcUtfL4aPCjhv#Q}^~00>KU_6OO7~I&t+3m2ip5XcWK{KazS-qm zWY&7a*FuN0GN3L-MR#+(^zb0Gix)I5>`6@TRWAEYE5^CN_0%G@FX4C`(c7Z4BJ1pt z-6Y^G>qH#?@rd5TFAU6Xv!B*g)L_Wgo<=+uEQ!J}31sSbUjZ3TKiEoZ2? zBrVC>t|}^;riE?A)fBKpcmb#RA_AX0q}yaZD8Wlba|`nZmc-BlpY1f-tAa*K?5cb1ku>Xq(qk)BOmo+VkaNsJ}k zvsjXjJ7zYJ>dTAPZbvF$*HY%`rSqx1J-Cv7aUsG>vh@b>n%YK>|D%aQ&2rK0-&Dy9 zQ99b|*HJuvNOG-GPKFt$OyK6frtD@K(bvNosMOOCJXXrku z3%v)>umyhW&Ho7?g0J?KX3)9+A*#^8x@0)dwF8;3w+Kv%0!~m=9Javr)nm2d@zU8? zmbT2>B#FUWNLcNxHpqX1?Nkz65y7bzS+*V~LcmmfI|(1G)@U<%!T*W+njgXDXp2uh zomI+{6+CW1yS=|21gX%XVNHNfH>k6l{u6fdPy9}Y9R}l8SxwMbGA8((;&~d7iUJPo z-$#nS*Dv&^W}g2Qy~c=5F)hP;o8Pi>iZ6`okNdB`U>1Lsf zt^o2N3SSLVGtx2XrUr+#JgH00SFy82*%{mw*Vn8sa2R5_J9-){xwadIn(D%{v%?sf zZug`ggA0hOOd3F3J(L+8Wy1bmDi0#B#$ndjW8jOSo<)9k3MC_rBLTr;2@NHDklhF< z1=~3bd`0$8zzF4s(^+NJ=o_D0lmTS2!m*YAx5bC4&@zGKUy1&hDgjWNH3xkE3i9E3 zPb06I!}9+*i_y&J!?nUsut-u@RSt9p;j>^gjA4@j4n4USYNT~deInlZaniCY-Av7E zk9 zTJs+N!Ft|#{PUa;gOpde74blobfZ{b>UK%QDz#(0>LgQV1h7E0Ar z-#ZZ_@db8reZSzBIb7|9%}4QJ%mTTFbBl-*d}b6++b9Pbp2-`PuT&I`sqlOafx)dYbX@&pwq}%IzB8T zV5)z99>qJd96QyG)#ZJIN>rlnj88D-`I^kW9yufdJ7f)s=nxI<#iPg!5Id}8VOiIk zeXXZ;q_&9D4F7uy5|5{#_~YLKSO<;Mv1&DJRiC=K2>ve0BH%F=ro?*Hcaq_@8y=-z z6)f*9FBi@m)B|p#%M18`4WFduH28?Rx(ehMm|2(BBLy-Zt4`>4o1HMB9$^3`#DRSn zV|J*`o=3Hn6qewHZSwi`?BCnU_68Q2X@>;EMzOcHx5dC{s;A*kRi~D)9URfK(DY z5D>GBEsJmPRq${cW~4WZGx70+kla#>W2ca#Us&r)N=da24o+TkJr-GjwJfnAnuj&3 zi^V73TZsm@SEOP51(p7byo73hjpg5C@?OSf$S-b_nGUr1o=4ok%uZ_ih|xx({_vAt zZ8b%YB*x#9?f<9)+=CR@87Z;Jvdl^1*^&u-g*UOawb?wT&Ap&#`5v-4L=!~th;Fqc zq8drkejM*e+;Ewbh+_WFRAPbOe=HM+CMH;*&E>{qgg9&AT<9Z1)*nd#;DB9JHU287 z=H`;xsm)EYZw3O_j17d}pp}#Es}mwRSebxk4w-jHzyYO}p*7u`<}wwD^?cX0=dQ*m z-Mqa0P0#yecr;3NcpTy$_?q2rgY%WH6N-3!Lvumj~k#Z{Du4iy7nwG%KqErf;R>X5qi+o)6h!#cH(}t;Y##%@%9--CSR1FUFZ& zXIqT&7vAVCyj%b93wk`*eO&oXOxu~S>Gqh3bdW!&0xi$!(EDbIfXD}Ym1CV>hMGFE z2)98&(feVg7BF)27a5-V67C2zwQW=i;YvO?8YfX08rB4VFA@R$(ymX@{yuqyV@3OH zFM3mxAyhEatQC+~adOeC9T+`5a;HKbaR?abziuod2xJs06W;lJAXXhzmVJz0g>PHrk3lX_rBp3W)Kv(b zoni3Wa-!FNb;k%PG~+4K_oWTl_21wyV=8 zT6$=FzTZT%>VBf|29`kDKy`R{91;C~Q1d(BzCvJ!l`hU-ze8AWtQy}E@Qt+3;ts1t zMbub7eZvy>@q|7-v!d{sJU(m3Ty1$|REp6Cl?=3KfqLvpc{ADT$pgDZTH@$>TJAz~ zquc%H;F;d`dZ&y2$qt|51$1jGMz}KB!qbz&&CPA;;DFWA)MKORVEt_BrgA%4H%F_Z zQE_vxH^d`n^5tv043k@e11DzGRSw0`l| z*Z=d(_U+LKss458-pe>!F@c#ngT^ab+Hf=V^#QKD7msaAcIu_g^)Tln(;8MoI5$DT z?m{v_fF%KxpVrc1nx>|F`T6;gQBi(}hb3Z{7#Lv;46no;6q&DSL@C)`JlWnhg?tO* zZiQ1+?B`9_f8yXjg0d_Y#qJp8MuCSH)YU~tDrhgcqtLM?w~b@Z&hM#aW(HMJQGrZU znQ@Tbym=z-axLlS@Bcyzy4?A%`kJaCX8w4;$~ zQQVpwth>Qf0jmWW85uB7t_}7IL&IlF%hu^RyQ#Zzp4|Mxu0rk6QsXnBk#w!mjg_}%@vv|kQz%WBBrTURoyP2M2m(<@4sgfISsYytOIH^z$tz0O`p^{p+O zOs5797Z=jW#sG1->Iheg12eB-*O-`1qKBS_hT()uf7yoGcNKN@=X8MZJ16H_@cB*> z8xPN5VKJvlX?Z!YP0`i$re(65q^FErK|c9Kv3n8kfSy&w-ugOT4TITSknKWlE~*{l z`oho@U^JDNWaifw=A@gScuyJ77;~z3rd1IE+Gl0h)Nx^L~nj+}G zVfL{&GCgw!$bv0fI3+dOC2XcR+(8Mw`hMWYg^kush$+CXA*^bysiN9iJe_I_nGYX8 zKto9tkh>hW*P&QBxco?P?$)SWmU<4s&Q&H~bNsOEBT%y4bOs3xZQ0b{?HXWpl<%65 zhrcIxo@%zA{y0}{L-t;0_OMsKF@V;Qr7ggrKp|r8*CFXX`?Sfx%4+|t^-(7B3Yd|2 zEXO-wco^ig-Dv`1_5oVt4;_#UH@5}_ZcU7@H3v-&3A{G&1DorHy%U2p3>o62T@58} zSE*Vqn>c8C&$!_{W~&c6QusL7P0stw%G%!#@)7G`@E1lHgx%d>B`$#+B-AJ;Zv{4z z3<%6fuGik*8cCrwG4h6u(1AAPzJl>#0l``lejmra;A2t!+Z@UfeZPuhk;kvYu3*yR zJ+rV~5~aJp?V8p4I*B9ru#2ndIJkdMi9uF|Ux+_EaX#pnnVE?ra$SG$$K~Z8M6vjw z7hh(p$Y5%y4N@`LXsivLe4p;>#O4506t#X}*CPMCh>9Hy* z^mdQjQs@tO*6!Gd`&`yj-H%&S(i=Ka^g2ib85(`Z|3zNK;na|GodV~A!hwy*vvZVH zt3#Iw#O_M{e&)TZ{XWANrr^tl9emHHKnssz({vo_p)F_kG@&N!~jH3OEJ zour}}yOf4lT74CJ!YBe|DOop~InKko*^%jK|J80~gOfOA+DLVgcMEp$H0(+23^kSe zJaMz-CWFh4#m(NoAu6}06ds&Ac9PAvjR$czl}TFio3*}yuaAKCzv2CDEpo^JkqgC1 zR(LhBYE_-1sT_WHc_77%kzfC{-e%9LHvKyBdWlVxDqMMR)>v#oX`bBv_l+Jt;_L-y zE$0hc(8RQIE;BgFEZov=p|8(y>gX!I#;%7-@T!A)MxB~ljs4_?!kqh~1>UW5jcbB% zv3~Om4do~_I#u7pB1Ho5fS=NIgAzG%NHj;NWx|tP+px@MKJQy4zqxvBdJxjV>RslQ zuZ5F`&+RdA*&H8np8t}0O*$A7@&{EFsu#Yb}gh1a(n)KJ(!xR16cTwn=2IGJ5=yVGBB~7cG zF_6{ci}dfV9ZuNX_fxdDVwT`3dN%SC+Yt~DLhWLNkin^4wzdO*5bicwcetpbaA==@ zCkUbq3f}Q5nQSgaGp8r^HKF78aU}LvTRp(b$Fp=HV9kYu3(tJ?)7jzvNi@S%qugn! zwszT1g%6DqZ5^jddAnIu%1B3DZ^Sf_@oaCfk7!iUTKvnGV}q{gg4wFSuyAHkW2c~G z!?kPEV=7QelL3brM5*fZ`LVeW{z=X0AJ`Fve#so*f!C@y(qqJ(V^gXwT)_j zb)%?t>IT`~Q#<0{+kPA#s`$zHC3_h)?rYMc@n9gv*qG*8v9*pzMlMHLX8~O_4QbA7 zG@h|W@et%^`F2vy&e=3GpLvQX*;lynNJ)*FCb^=u(bM>SB@$&idKfVt&P+tu&A1dd zN;i}5obIr!UVuq!_aiF}6cx#uVluX{<*bjeJRc-FAcyj}PP_NlByP-TqWgNKeTCG$ zOpFRT5)u-f^V9mIVvN@3z%+*5#c$%{Jf^t}MG5Ic{W@a-2S%N1hrZK(ohY!|!%eY4 z&kEAUtJ;;a+d9NK#|!%pt6i1SocI1T48t_^BA54$Lp0sZ0L_K2H88mGn5L(@!MXfs ziyDj2W{SrZ%OH`4b$E@4AKy^*)G^bi5@E%!QAgJd9v;5brk!|>a&OG*=KC9+E4~=_ z6BK)OywG~C41f;-ho%N{@0PGe|0dNsP0heGK<-Eya1EZ@F#+5FW35@Znrgh20Zyix zB+ZThD3*_wK`1RS%?g(e?CKZdLFK8`cL=Yf*ksL|;|CF*CAsD@MvPq5R{ol=k?xd~3Gtd4wO8I`#M9^b)2O6u z!=X0WC!2WUApEv<;$`AsI9adw&$&&F_%4dyx7C-kSIXe}1=k0|&+xDC9CCVH&80sNYkZnR9T41r`$^Symfz*!>tMz{ns|Nf|pF>j>=>a6Sps8^j@pj=0SnwMRh1``ArN{`lLNeI< zQL7cfJ1ht(pRCnl1sn_%7jQ7~{O|Ij$AP4kfsv7Yy2tZ)^#A~Fg>kGD2k0T@YwBLpESarr(q%YSOH+=3;V!Rv) zyl-l1!dX&b_F_44wQ160XG=I;`y(Ag6345@^1C;{#8Sv?Ofy zZg%)y13LBTQ)-Jx&#u0P2Cc$DMBlMv@{B!UUYij{&kb5hn`88c0KglTElB`0CP z-;&@!(4KbwsnAX!N`9t~RZOzq%L-JKz*%+iz?t9xOa7SXH&bl-bMx{dTlSxMg{uw%>4FB56tjjypwaSaR&gFbC;-{dXqXcd)gc~gKt}k-%nFEC9jEuk%P^z3hYHcbbCY~Ni zJ@+$OV9khk^3$^W)6MEok{)E6gCQH$Zd1Go3v5;O&z~WMp3N{#=3pCdRUSg{fzauY zd)YpJD5e}FQ%<-`Tri_=ESpY0;b7iz2$h6W3!GY>qmXFib5Yz~SzLgj=%1J?e2rGO zBj4RmJVezj2BY~5G!h7x66NA(7WtG14!`VC)Ur&4VUYutxzx=23#h>f{#$FV!?Vl2 zWrYCGryg>@V6&26^pOR`F7>mU+VWiT68Q$p-}I2`d?ZbNn`Wzbt+ps8DxLG#&A48)t7)d z#i|2*ojMQ_bQHhw7SCESox8Kfh+M>Dq;GkcN@e86t=y!aGqc37yZkWhRHqoNp`js? z((^|1l|JK2f%;gFQ2%`W1tfY}E=Dtkr1f~+ho#Z-vR8i*^xE=rKz=azMIUaHaMK~) zhxoImpTQ%-H@kMAd@dr#UMjwglR?MCn<{>hcfCSjhm|qzPpQ2AkP>Ub%caJzS-&Q! z7zH29Z{kZ$EZ0JA^xW5xIIxWWa1BD6AJBg)rTPHcwjT>n zpHRg702A3VSGofle_D&~XHw7c@kxfySHp!k8T_hsWVB!fwftkbVJ8Mq7e_>pzCOB% ze;^|-!~o?-jNbS^*8+yuCrE3JOHlyW5DS(Xf&di~XicPe1$H7N|72+iMjMrGuzUwV zhivz#ydfF#GSVDrU)b98?~gId>}(H5LIwec!r78hQK(DqGbsM{ZDx;d(Z`=y!na!R z-TScy4Wa^@JO%nkrCUg zoG~Ll{mNrYP$WjGl-myvu0|Y0J5e8+1=j z=B^&KZfqL59-r2JR2WS+TZAmTM)3U26KVAQdPiThif4xx-Kp~Ua)+{87CdSkyI<%Q zmY-uR@Y-K8V1}$}X*ty(sui*ser*ih)tm&6PlU3bC@-lygZN$Qitm#i`2YqAsF$u+ z2K_(yqI4Ac)>(~6 zIu|DepXdWnbz$nt&$A%ZsJCiSAQA#<_?)L`qO9$PW_|Pn#H&o~oj!^@%nFPiw z&$Z?%Qi&S-6oRTOWgAT+`Y^U_ z9z8~5A--e5qd)0che@h5Z1BKgVjH@p?8yTtHE~&fNTTVC8=0K;321Pq+L`g$-}s_~ zX>;w~;M>_~yl{uwqvgF5{PFpQab|XD*Y*w91R2mOUXy77T3M9rAs|rm)4fU|hMDxR zpTTvJB9RCaTg!Vvzk_UK6L^T4DB-v(Rmh5!f=O1tkx`vS)^3y6PV(qS;8)asR zw(D~@z%x}$j{6X$YYNZmaPZcV1ur$5hMu_l4c^bj>r?_&J#AA`mK>$jXLw?HD!*!L zwKt|rP->@E{RiUt7hD>T1_UUGn%)H#xl>tsNbG+q*t#BR)JrhSn$&wJ*R4k+Y`tXx z)n0{sW)_o#@|g@$svvGM#j)b@l#j|Lv%xveS9Xy18>a%O#VW+B|0uq!%G&V)*h<5D zZBbJ2KUjvf8ay{EL({JyK>3(z9TWH-H_q1XUaO9_t99KD{PlIW+*dx5X=@mPy_9yz z(x$uPP^&@E6VHvtmFba0Gsgl8(%LuI-6D5*^h#-6A*_NNfN%8TWxjsWSX87(`dvv5 zdv3Gq6SR{cO*$A6#p80A9?$>}L~O@M@baCQz%Ojrv=ltL^rc(9YQ8JhC#0MlRTc?Y z`+Q>=p7&5sgQFEBr^9cRZZE|mKH*&Q4lP>wtoy9BJ|uF~YSkQK;&M*EV$mi> zC8E~0L!i}Kk{-~KI2%r~s1k?g2~e}8bpn1!!g}qy0?Ai)QpGnuegEmUh3?qW{bJ3jx9Mxu-$ux@Y$&$x>StXiS<# z*qixZ&2b4rEoM8Av{Js)K}aSk9xgRsfvX5fCVp{azFCBf#`4P-M%@tvlN2K}n0*XR zzi$txb(%v@=CR^96Tbe9Ko@Z}Rr=~yY{I^-OPe`}W5MOdy+YpLLfPZiT{6TlzQ`Nk zCkm}L9F3;mquP|RZxE<5K?N;lYwb2sfHfePuYj!S2gN~>9~lU=OsAqdDX=qfwncqG z!V^_|vCCDYS=@9?^{t2h4Z>Ku^A7uJTO}BN?;=ENXFWdMzq8*5tnY3(!HT{ySboE* ziZEYoIs2{ne79Y`tO-n|KrD%Pwk(rO3%PlAeL9oc zDq(K?3rk&-IT_9;p1j%h*~nbl>6!bdN~agklvTJ>PC~DmEUCs0F-28o;3fMTvF7nX zIw^Q2&=J8aR>=BSSgW)iu~2l0b+MVNu3z^S#31cr`%{wmo3vBeWvzQ9o zG9TBtnH*$_b5So`L+hnuiU9pPPcqlWiK_)i{kR`G=!zU;LA!%19n-UuAqT%3!45=f zGSw`gGO6Gtt5V){Zf@>mvrLqZ+5#CTQ+?lca%+3_7+z~kE4@m`MQsrv=K+{z0K^)n zYQJTByKIF1H{bs!=`pZJgHhwFfE~JjaT;kKQ3)BQ1>sTx=gRf1cm>W!9F=VXku%rm ztt9D$avDHd*($Zf90W)!OH_!u0KD1`%xVPd_Iz~Fnya&=6)<ISN#aSUS*qh(^R?>2N2R3?_+h?wPw!7kS{~v{s?0 zGb`~G3NiNagzjOLddxGT+3TV?l)hD+ZoV&0H=G`!by~U)qpNQ~=Dl5sZ*I3iTX4O~ zHYt@QKjsNCkms03LB1qejzi`T2%&zbpb*3Bye?ioT_1w_;aka2OV2X@S5vwV{Zq;5 z`kb#2o1*R$7w9G!0_3@`BI4LdWMZsgniTUk^UhNav4dX99fwPj!jbNEv zWujB)Myw^jh%iEbJe$9LpaH6_{9-HYz*XfA#WhZk^HB;3-1nc`o?$56m-EVh#{T;G zGu!?3M!m6nrsaEL(_czG#9qH9Z+km5ps9``&*4=4Q0qJx_FI2-Nf{0<+&M|j`ESZu zpG8u41GVR^9(>;?3o3`ElYN<$2KG-wLRlIU4iq7%<_8PDmomU|_5w)UcSP_Gd8Ok4 zT*KKw;7Ap=!khFLfK+%&uK<=6tCibDJ*#*suohix(gW?IX5eaH-|AH34U^4-%NSyD z^TmQpm-p`afneb7DBp_GJL3*LVnNG;*D)FLxG@d%aOZVDHN-SyAafPD(No2qCrLDW z3E>9~rwwR0#m{rfg>9@SnhH2HHzHrXinU>gX79m6c41`~rktp8Q;=00{$kFu^EI=G zML>A*(+PWBR$z@mPSBy%S-$HUPYh?FA&O(%Ci`COrYZopONYX%?Nftt|Vu ztZ75^E(zyu+g0D&6BD49(`M**u)nHS1V}Nn(!54UmX_p)SaK5f$I@2^LU6GrEE%Vg z!Y)#fmEcZANtOE#Vvy9AEYWIF83$I`xrFp;8_i&>hr+7F^_n_)2jtXVCb}YU_i_TGKTYQM8$Pg|49*fhP^7aWUa?RaI6-$!}DsddYb-u;s6{wKX@ti2H8XwMrw3RK9b|1xp8Mno;^- zZ(A(EdibW$u`gL@*9d&RF9HQXNo(^*NXChTaVIKJg{5%(>u&2u=znDs>_yA)W2>_& z`9D7rENUacwIEQ5wcd~M+#&3_`UGrwr92|%6A52w9!0QM%uudQzAp-lOV*Nk-uom4G56F-5m6!_V#tS+%I6A))*RJSook@y#pmaS_x66mVl?O$TgdMxM6)@ zB>J3_&{s=5l#zJya3|uyypk{8aGbhH%V1k&Lt6grfD-L=bSZ?d+~h;GQM@L5d~nU5 zUZzO;X|HtGbF}E}iMnQH9gH_B!wJZ`&vKkxT;8aNM}USfHfstl_I9AHA3zR!F9pM9 zs*I!k?|0lUAM3_lInhoXwM?ASFDuVzde3U=b<@lLW#2GAwyB`V7`zjH*dlj<6hSxA z`MffxM3gaf-6}aD85vI+C|8QMM{}s?`2P@=efBC1xam)0wljL0iTKqj&X1@x>iH^d zw7ubMj(`H$&NnW*t_mhZ@X0|!h$G;k_unduoF%kQkBs<)b6dq4Vv?v%0nOlz6ToTI zy&E;cC*CT=q$oF5;=lwG3*I+DGRZ-jY~aN_`5qITXC4QQBpLhd6mJe|`3)qcq?dlw zh+LeXkpvoHDDVt?z`5O{L}T9t0~TCaRk;jI&H3|N=asN9Gmk^6)oae{5IdkQ?|fHS z9p~ztO2=y4kdP5&KVs|KT+T2;JG4>JG1`~gWqw%Uh9Ug6PD$cIZC0Ea$s7=9XV`g? zh4$87(OuwEMl-=4-lnSiu3<$?iez(5Ld{#7a;+sY;_zJOWbA}0!gT_>NY9NIb@jSx z4cz#K089BUSLc-;0IUQhjNJ^6?*>Knk&Y2)2AMUO`FqrB&n=MS1^1uWtx23HjE1kf%iV=%oRRK_%V8{yAv{i}g@6FMTI8wl z>pEnGNa4nZR{E7bJipqNim#HSBMp*XIlEjS!pHh!>J7kQlXut}ks?O|S4FLR{7-$u zhWY3NG68ePB)i?%cFfnYEl*J7TBK|#rhHJHOtyWXvKUk=G^12_RaVCR_$ZiKb7^E zU&l8$Q4@8j(L@}o0@BzVMS8?j*vw*>u-wq*=xt;?@&FPNQqmI=rxE zV`4RzHdlt$DK}k?{7oX#(zvy%jmIAjvy>Hv^pg+`?v>!lITMbT1G&GiiRZCh;{qLK zP`d$dtD7%9VLL%T&eZv*dpXiZhE}5aRKqEpG=Rkf40p<+hj-4LPA3q8E)fjU zVY%57_al~skXsFC8Vy!?T22r-7T5G5zO!09%C0%HY|W2l!lp0MwQ4#`v+1nSObOFC zReNg-s;zaV`}}@V!m9bCX_tUrj$N-od?;J)wJ`*H*EX;S&yktyo1QmL%^k3pNk&o> zj)9S-m4xbrS!~9B`u!c&cRBtFAZq027qtqk3}kKaLospskInd_q2=GM(Q=Lt{LFYw^8}!n;iz<{1%;X9rtboclz= zE24Ast=s+m{VRGCCMn?#?zu|Fi~}RTkWKVis$S!PH}zpgx*)Xj=SXweZLtx$p6;-5 z3v}wc0Tljd4L96iuNrRoy+t4mkLvKdv>Jh8o$^1B$)+o5(qWn_nUWfs=BtUD&j+8o zAMQNwPw;|7i$-Yzubo73Tr1*?vvz)We=gt+gd@Ola7GHCHt+i4r=pPE}o>vi>-B2ksKf|d^bKR0NFhsc}^y`SBBo5^w@D$)_ep}Bji z?&LJf^0SP>dDd*=$}GIkzxjTTqQr9Vjh(*Q0Rnl{l{mPTF63st@pbd)RqBd37A+B@D9=Z+d{V6(71DPy{X z?_A*B$4wR+q~3NHo7TK$X zc#2Gm455x_$o?8I;y1bebl*}OGvsFS+kk-vRvjcKMx)V#aisB` zrM&J^ShQ>DN1Y<|eCdhcz$_s)*$?^40SEd%e;B+@n_3>-iC$Xk#GN-wo}}&{tE@Y~!yQ zHi`J|Tg@lE#VRUVq2p1idcN2Xr(HU9TB-I zz2GrO2eio)x86fX_w*Ca`s=uuBB_*!cd)BAlM%FNy!!?PPk3+L+%finM1t75arFdz z>2!i`Q`lZu^ocUrCZsf|JY_n=M?ZGQ~QOESt z`l6x*UJp*Wh|5$*me-g@E^omI5Os`kOg@W;BcNbOM4Ot|S@~**Z<}Gf zv-vKJ~mEk`En5=p_x%}0RSly;^GZ?`rQiP zgz-r86+g6lg@lHN4LfN{xeh7Bcy0uoO_~~2jJEVz+0|p?Ghw}{_b!%#E_K%t75#t zOb3R~>fMzE-&7WOF@3S6dW)~??IzNAPW;GY-Zn_3O0x&weKtbz>4)tx7Tr$PGK$x){yys z4+DlrwpjOnY%y8fttgTloq>M|m(q1E6OSV}leGU3E~jEjpDd6M#3CKnrLGVF`3$C1 z3lS1nfJWl>$_Ktszj{VceG+AZ!fJs|3@wq)?rPkN>xtz(nVmx1IYN}iyAXbT(_ycU zGaLwm>Ia~gp{(HLh1_dOv~|#4VM;`G_?`(asB|cBCkc;B@^w`axO~J&e0+(|ok2vo ztb+wy*I`sCgRz-qi+{{{E^#l7@qxtxsbzn~^ z96YTVAnps$FhLHf;+FkVTMqnx)46ETl5mQ+A4UeiB>k4zzq~L)0A&VPf6eNJ6`RTK zmpcWGB@hVTix#X@GH_YdAvZL&GlT$Qum$0ja<_ob;%ceUoG?70O?aRBL!B_&k{m!f zr6E6*2HkWGKuGpPMb*PRxa>* z<(2HB%bk9QR+yxD%%Qe(I(K~=Z1&^l7h!Ilo>*0+<++T1x`9dB$7xAJGFjZEZeuht zvamqex**fZY>@*RcYaewugFlQ=d{f~`kr&^_Ha21CnGIThP-K!Eib0U1_OBz2QImY zD`)U`#Og$Xfg{vrplZ*eKxRI%SjF`VipzUw>aQ!!ipiC2jK|inHrC>0A_KE<*zK;w zb33q@snLSU5Z7x`EAN)lPL1Bc(TZ zk(Eyql!1Mu<*ygF?}i#0facCQUsN=1Xhgl-hH|5&O7%b>`Hay<>Y(tA_{Oy$HSbQe z^UR>~=GrH%GNl<)k((> z$>owZ-h@Qo%STFENhEA=Y2zyTb~!tvSGr{GuV&)E4yFqMCgJi9|KABN11xyPwd+?0 zgqU$D63P@Dv@^c!P++3DCdw-u(F~Zc=?;)P$!KGFyjDQ(0^kvuMtm?ap%)jISX$k) zcwIgrCw$bA?p2vaIavt&rr?*LQb)`GiM_6)Bl+(52b(~pxGKx9rjutDSKUh4wSX8#i_vMmp3=Pb&S7xHPzMC zF^UQ}4|P)6Ilub_=h-)YHQfV!ocO}Ll9}C>&8D5@)O-C)V#2nrXxJg#(L@vdxlufu4$NVI~V6d!E4?a9hRJ(TuvsoU0+sa;boQ8*y=06q{MC(vhK1 zVa7M|ii$*nRpsTqZ2QrJ4tKfk4d&atHR&e}grbgWv8Z)TqIcRL+$tVE^n9I63K%GA%wb*Se9QWBi}+>KWUFkWGI#|9_jZdQ& zpA&MpA9YP&too8`<(IB2u+^y1sA-DFV%q2e{?3wISDe}vEz{Q{7azix5)ovZne z@(=248e8aVO=Z_EzV8mJdf)uCtkOdSlpFZx>X%e8*%vctzq?N3yI@?p;Sr@qmNNWL zdF~VEKa>?n*0L|MG}wyl>IXI{DaCvjwZqo|+w?-Tl!gHoA*hDq*&#sJ_5W``1I`un zdB?olxF^mjKi@Bt#Z}C>5l9IFymIPM@adG=X5{R)5L*@zfu;%=jW;W!w@6g0b`+ae zQ!PMYps64EOa;9V!LL@Ua#}{gn0nw~)f$;3U3D5xB!hBFRrJq8J!4cv>fI z^`pT(3zS$v4A)vdY^~ZMCNuE8vB>$9m`&WI3?j;-MOurqsVpt~aSV0*&zFBPBZFPo zv{c?l3kQK80Hv-wl=;7U>+wY(7%7|>{?_YU~>t|9R(42^W$T<32GXatc{ z2RfEZBPd|Pms%@L%mM`%yfrZG$jKMWC`#fP$|-fnoq5pSTQ!E1Hs6xBmij!Ja$(F>h;u1Db{FUcPN~eDvPl!uDg&v-qKEoCM@} zs+!58r|ncd@G$8V<5oj2eTLvclV$OHG#jD=$0T819SPuOG=l8x>;m;w${=+UAt57@ z>S>LTknWSA*;%LQQImNob>pVMpSSIVThRJrc@(!zx*m8pYPHTp zDCH&XfTXq!=2N@yjDk^TL{m)2*-ypH4CqgYv^~mS%_u5BOXiyY&SrUwZ!CpX!n1hw zfrrrsii(QGJ)j%8jYj>)KlbkocZ3%;O!i@ z!3Nut*`U=t-f8#3ZfY^U?l{jUhZf$b#y5Hc5;4{v00L($A!$%7u8F}Lb@+yPA>Eql z-M=fLT0XS>xFk-vZs(D&*jogzluL3ax&;M6pJSGE{VUH8cd;ewvZ0`}r^32L1 zb@@8U($E+|*!VI!F61d{7XsBr5_$A)Tcgn=@E)XLz-{@)O=Ug^OtC=s+nSC zsK#DJLh6p$h87>HS;@9y0Ty#BE&-LtwB6R$cIVZuZ!XK=W|G76E{IQ&s+ZgN%eju7 zKiwkuk#c6sBy41rR~j`=udu+(dzyROFRXyA>z%snqi;bx)Oh5=dYB_@+<%qn0Lok3 zqwIm4uo582n?D4vM2sn%hKqA zgA(v8(xR!gfRtbVbzPi5p!hUdly z%R8tD>+$(m(Pxs_GI*%4F!V10aJPUfNB|c`{u?5+(QH!fmvFS zmEFJR@b7cz3%FT==kZE_oB(Ru|3}q#$5Z*g|3{RFs8D2-qK;LBA|n|kn{$qJkdkcS z*jrSDN=9U7o#Pzy7{@N7D4S!C>|81mtx?zR8Dm35s{pe4LRQ3n^Hy()9|0+HtS zq@B9L^*;542z$e@7%{L+gK6}uWO5QgOJ}P z#w&kXWHBdEMO<6P#oH}yfIN!C$2s-$>&H#ySm?CMIqO-%JGFIRGpMe0jCQ;W+`F}x zufQ?OHTOFH#!uH7Z2g6`qc?2e4hRO5CPh&LU>Q(38};VDjRr^NKMpzQmFNTZXdZ6B zd8!t3<5fyTgP4X z+274`bc_t~+_!e;b>6H7_L|g(>_%Ug^WSaa8ZYCc?7U!6mCmCd8NN5p{w3(gE6m?j ztp~n35qIFz>BSZH284HWZD$3j37~(w0KP6y&j!c8dv^7g#_QKnxHpjYmZPKA=^P*i z;$zauof~t`J%P_E|34pSE_7J#{oi_A~nLyN8X9 z-=eSI^*=i@!sR9-AjnNw;QPSk;%_Z*4=Zy*fsEcjscA^ks5#qB4y?5xK6#3q8y=&g~yC+f8g?qn^4HK47hr6NtEc?qVTCZ zB2?jtw5#P)oB6{mAu_n%Xx>_{A^zSA*w50YGZ z8E3~QC+5e6pRXS(ph+Obx^9Lo28*-IE!ZhPeZr5|@{8OYw0LtQo zi)4BxiV@fbm0p_u#-TGqaepuxXiF20F5GI+$SbTOTQDa(oeBCjlRlw%JnYO&YDOVk zKVkCuhxL;?mu+;f{CTb(01ar*`4T7aZ})=gAp<$15#y}WG5s*3x%9vK@V@TCK@ha( z{}%-B&{Hv9k~MHZCtN+u!SH7@LJf9C&w!I zsiff*Gv!6lt2ZxEk6sy7V~S`RxiX`6CMq~iCR*_HYo4QRUFC234;*>1a@hmWX!URMol5m`2j6EN20WwbKx;-k7n$k+FD($h?j!gvnXLH37J;>ML$uSereG$(ev zI!wX9u#{P9#oUFR#tPfXh>8>Rg zT|vz}b||KIf(Lyw@yPtzD4?E2STMKx|C;Z{`45(7A^%TGd`{RR8ndY+g-1^@84?jo zlx>x?)ITrl7>HX-K5w`h^=-g|o+9H5+>|vM&EeiMQWT_RWEwDO8FJkgq3rG$<>LMZ z1%Sr#8-ct$^6KH5XRXi|fp*!7`Mu$Pn|M?xj*(B}6X8SMUpm*`xO8b-!32h=^la2i zkCQ_MWwZP3qrP=N;eE5*{%$*Mo2FmEaYB!mX{GE=a>_7CR@0QHT@5_1M*Zp|vwAu6 z!ynVSijTf9E7HBXYN9sxDxf~VJKEl`dfCQ%EGcPV;PU{aBr=o_1=gO4%o_r94u&z)c z2qq&998FFxkD@=IL(a(UJfH$g;tn-Z;7i~({gl`J53)>w=scPzI^Oq=)Su_yZEnEvwM2*Ri3vFkF{j&O znk-BA&2?y~A#ZIhEm01#v%2u=R4dj=izmgn)qLt~kh zOm?`@KoJIb<|6mB#jkGDH_{~+1OKo%#Z-X4vB0p-8EC_5L&i?E3ZlW`!x-2A2Yf8t zw#t0xe%*4rI+J_u{@eY|zipMDinMV-CRBsaR)untm<3Vj_eRlCdN_=cL8+GYu-0u7!Qd*PcX-X5D@>?z?N&zRf@0&(C5Z~dKU(7!UL02kS{)s7{T6U6e zXTHXMun(?%4#E`x$TSSf%Rz7J@?8y9>lWVEC&})pI)9Ox?tIm;Ky;9Nh^u)dwG1h8 zZk7bgK}MfqpLy})Io(uo0P+|7XBYwNumtH<6I#<^1Q(4}$eD5#K zL&i#ZY&>wHY+rTbM45FP5ez*(je=j-yx^BSOqNb2cRU;Zc0Img=#(&W|SEv41{;U9n1gX+6|F8-)5KH4(^fDm2FG4JAKq-l8 zL(B@m5kHt~w;NSFl5(ihmiSO~cRA!YAmG4E7Tylb?Y2wT_G!8F+R+zmgjuG{CNn6h-VE*$`pnEURh#Al2y~x{AK^z4l_jWTdLRuWRe_yTsp#cV&Sn}sj1PEDds{nEl z?%%dhJy3uUQHl|<&pES7JYH1!d1>FQ;&0&`)uDwQsmS>Q6=D6SA}iEh(h~EcC zT@1ee>Wg2=4&S`&q(a@BX*oDpqE=>yRRTj;DVoFl!yVB5ZNJbLV-^gq@0jM&B7ME8 zX5XK%c&cXA74G|RGwK+1_|c%yTUxVG=9` z^ntnksiAIrU4DM(2J_ch-MQj&b~)*qnAwr92`>3KgL~-XmE1iF#LF5({swCg0IB+Y zc|BnCbC zR{-Zi$6Iik)|t!yuKhV)nqA-!t$*ELiSQl#S9&U(EO#;k@*A>u*3^){Fgm!r(YzwQC6(B)Ea!As*g*w*Iq- z;{ND(oi+heN+P=`Ffhm8xQQwOcX6zEnD|ERDx4dsjCpj;3hf*Qtx zI7W0_ere(l-&5z1KaY{1#XU``;qjk)4pUtaV<~&7kL1gho-yCWl0HNDlVasB{CKi- z3Gy=fJ=-yBCfT2!tSL$CQXU%vwxx5sGhq6Y&c*H9$MW6)q7zC7T$gf#C64ym&08@& zWG-*ll{6TBRS~9-2j!f5_%sfqaQl4U&LErUFAN%Ocpur*7(@|yfI^X%l7R=KzQ z9Zl`}TyacP&#Rw*_zIheN^;9}Z z$Ie5EuXN?-YWxyXJw^i#jD;Fq^BXH93`ZB%P{Egm^RZw-{W2`P$*OVZ8<_e95`nW% z6zvY(iM3ebCo3Kcyu!xY0d5e8Lnjs1J+o;6!MXk-=G=e~XdS#ZeD#_l#>|l1ra@7)NIG-wgZh zU{S6O59bi|tU*Y^GWJF_mxer}nnHJm%b~IN&H*04O5j=SOnK$AK=TlUFjgbv(2a?JY`>c8%`Gk}lI= z>G!{MAOGL2Qqi!f^Wqr77O76TT3+)|Iu@vSzF)o{B}0@=t3D13yLK+5Kjfml-?)5j zzIW}K@Je;r9!~z(mfbDW-GxL4+}{t}BWvif?j|cUx4{R)tN5}T7ZW>d0XKt4;MA<# zQ_L$MH`jLQ-$T3jEvdyoVrNSqSDvd{w<6-3Q+9*O{95}oyarT9x8K>r?zArLk3Sgt zoz}|mBBV9Lw7_N(6K7k@)lK`es&R9mtQMxV*Dl(#x8)Gwy6M4+P4A6C7#AxVCzI?% zFT|l-`-+JLo4ad%73Z7Dzx>&6%PU159d zvSG8FV4r|x+M70egIue8S?Gd|7SB~7$jP0MW7HwS3aQ9~b{>?ON8pV_^NF|1-@Wok z?>9GiI{UwZgRb>p{&p;~1bWh!Q(=VJ#<8x`Ua(S&U>mj8nF>`&)dQn3e+eKw;YdMm zW%J9lU63T(7c12q9vdgsPG3qUaNN{3N*hE;A-2QfY@a>rK>q3-b8)(ySYN}Y4FD2q z3z0SSw@!YEl99YM1cQXf3+>lD{h3=GLaggTRBR%G;1OvCh=YxurR~U-vUekg(L?*v z!CkXrhsR7#xw1BUX0sp0*#oC8^hN>AetsaBWv)f-FW{;|KsPV&;ACIB8G!?;IpQy* z5VD@6ZP@1?hskgMiaXDFp(|6=I~ig(;$f6k%mU0buGF@JV2lf_{_CT9ko=afT?rSs z)%q=oL_1?S(VNdjzg*zx)siENO51^J#d1HC0n0#Y;tw!U&(b9%O&7U5N7^EEB%E*rrweF3XRA1IY$x>fDu|07Qn*>MfE0AETFM!ZuB&-LB_Kt$|kz*$?meVcb^qpmL0Avx4M z7{W5yT<6wndTyQae3bBoY`_xOc-CpG@q1t@0I+O&?@HHNVp@VG8l^9hC=d$(aHBx9 zozeKg#B6YuiXG1}x*rgly!G}^FjvdfMeg5vsv@h~;7+$>BlNcL4I^Z*H+ScRZqC)T4{f!;qn9MNLAu>RxNJZ=*riuxk7qmECgdx z0GU|pdYZCIbL5*fg()D5R4f>X*3(cqs}{wy^G+XOEA2Vz+Iw4H0SE!S z9{GEMS~h)=Oz{cq;<6QglH86eZ>`p{!wa$G0vp|ENu=q9!Oa(?OxdU%y?bokCH6c* z!r%sk7FTVT5QzHgvo(T`iP{ejki6eS?1m^Ac?) zy)Id*ln48`nw;eB&w3^MJZ^v*Hd1*8Z@aSd(2X_8d$Jdildnfy_63v$GYq_*EFTKY zQHJR&VMy#}=2Uq|sw=)wjP1G$TK5hInDkVpr`oobxQBn-PE<6^s3z~=hxWP{oKS^C z4k@(G%IE{>t?{R(B>(lND`4`VBtxj>hP*#Xd8vYQe`GCE>IJzs&VzKL$vfRP*3 zR}A3DOh#VI`@qf91DOLfE#>}TZ9FxwJ4x2(SuJ;A%H{_-4PfQKy3- z4a>5b_C@spphTM%$$J2~(guSiKdKN}JNOS&~8u@i(j^qC22v@=li5PuPSOfN9iN~OtQw}3CJzw}Ex#(SC4E^7(m_juTkkIPRIU`L zc<)Hu63arwp6Jbc0aC2kfZjh z2}9Yl)w4v*a!WXTe6M+9>bg-l97htZh%-oeO#`o z7iqK;3wn2eP96)67u$YJ=n{hsV>R1thQ2lxfk<+G8#{K^#@{**LEjy5K+UXX8VBjV zz^N)n6E7`y)t%eVm>8+meJh`XUH6Ac7&~@!C`4__d6ub!dbN9rTi4}M(uP3+9(l%4 z5V+eJg*QshC`^uL8Yz3QIuVb6_8~o6Ilw5pc=%eQ&mx1p;(-U{O`$-~M~=I%Wbcju&h`D3oAm5m^yK&Sp7$OATdWY0Cx zszB)a>A3iaKa*| ziQBlE@5rDTQ!|oGen*ICxsI9tN^=ikikldlOtkXPA+U8hx5jf3!yR|US1OR|ZVM^3 zhW8oVeAme-e@83VdPO@BkK6P}l1N^ne!yZMvBpq15jU^OvoF9{;*Rf=_l*u2>+@J( z@0M@NkTi0LIR?SUYQ*J$#EKP7ZV_T?0H$jVz_FO!w!5;)i3-hg0i|%Ro~N7LGIHsz zO<-HVl?G-q)6oVQ85-t?L-L9h;uxnG)_r|$4BtILaZPpKfV9Zyg6d{aoi4-G=AGLm z3vtfiN_<=GPmp9bX7;Uj&rk)9e>>h3KjTy-exA1j9%}Ac;PqDR{0&?1B!2dW(aRc* zzWz*){dkUcYdymUVD6Il{D*N;JD!4=HnQ4^{Bt_M@w1;H|H;D(u2WZ-YCk)pnJOq) z&j+wl(F#JJJF1r|33DHgI|n~xupFPurG`m{B=6p@g}_RBskIVs-<3>*xsS}!7IF0D z_qFct$eLOTLJb!x{kJbRhK6F+s$5ETy4KI5uj8H|n}DE2G_FHJYPSpJF#-B9djyR# z+pULD4uuLh6$V#J-HYU@ZnGXu25GP{CXWC$Sq!N=!Q_trn=vFYYBd2ej-!nWwz@CY!Mb*xWPEfn*x*F~P$pl}O+4rn<%lm^{ ztu5~UY;Ekg)^F_YKfl0cBV(kqa4}HCmRKggVa??=_tKG^IJ#FkxN8f&G_;9y+<#11 zkzcH?*_|%)>aDL?Q{}n2AhJ@8+n-d;Gcu?q4%61j5!a-+hBlkzy{cz7F~r>%cZVx6 z(}=QEquPu7LIJa&#OlS2l@G|s&1kLt@V3fnY4YGo?N0w@<647bZ9b!A4AyVS6Z_*t zRBT9C@s2^^7tx)-W7Jk63aJafe)n5!)2nA?ZM^ptttI`{B)nq;ebzKIO$qdAB}xS) zi=DS);Z^= zrcz^07_?9CdNq&@ifZjmIgqCuYve!`I( z6%fPd+8C-r_)YZv#UKLP_s;L4Et6|D9wWQVr3q||MEOAcIPYwUF(mfp!*ZVnijaI3 ze&goxxN4;jYZ=82@@pubg}D7)2{7jNJjQ=N?J4OcYqg1GKGb)OJSrFI>y#ki?z<;n zvLqwF+Ls{QLBPn9ZQ(1!E53W_XR0*pwZL~=9DQbkQ#$KkbFa%){w?LK0>MPy%pl%W zOrO~!chkp)R?jY{v{!ANxt;XWBR_>aBwF@&K*Q@#t$&(;khbLTzyfVo(1!v7N@te5 zLl|@&nci7`Eswm+P%!em7n{&-h@4VV1RzL07TQ4V5pr)(3}B<}HGmgM7T%9TnfU*D zD?lM;ZUKorD69C9S*)UY3&=&b)7Kyh&eN5=$H$TQ?i}8T-XpSbk;dnm94ZG<{D`#= z9~3KL^9Ir~8v!zKJMVhofL^JikkebIzHZaS*L@m^o|h|9eNDWVUN|8q)fRKD9r)?= z_NjzSPqZSGS3fNbyRP5ugGrC!d~O(Cc0|LBtJ6Aj`&%FP-1UQA7;oq z%Mg~$4E&XK$K$>L5iM|(-{B|Pd^x_nnTBJ~dbHSYmX=<<*`xVlNV^!A?%S`+Td1-d z;xS!Fc`{Wm%BFXpRJ@;o79h@b#mQ016=!A z&9(dD6~}tQ_lZN*VP*qdr`Z~@0Iv*H6yLA%!j<9 zfA%kr@&1bG9$V%|RjUitYh|WiTg~?FRk(ClJk4jiw-s+ee&EddvoGEoIk1fJ9V0~T zqfxbfsANJ5`-_5VJz2;HyApTp%wAR-gQ4e_^9f=4ml!L#WVDmzUxF)aGAywMsXNLj1noQe()0x@7QzKhTNvWmEdgKf z9wse*n;pxsMdAC{{cs>xLuIkD-96|&ByFyH0@Gfzq0!QB{;bS|BqNGb7Onc}olF*p zR^yRz{0^($$tU{j?m2ac&kwm9obg%mZbpPu*aIXJc9*qmes`?g^qL%L!Hh}>4Z<}I zLhS7wx?_-SHv-tYl_(T|AB6&#ZSJF6T$D*aDZOd4Z(bHUxh*?SZN(7i!+uA)P_d%T z-mV*CTb7f%IR8jtt$L~C%s~zx7)>d{eLlUy2Y`{){x{N0_Z%kB#}h7aLO^iWpptKk z8mpxV3eYEChR$x=r8la@fE{(=-!mae3*WxIxPwwUfY7M{2kfnii@I@)2sMn>)!7>K zpTsU4pb2P|OSx#UMQ86_2~a3xc$Ov3p{YJ6;9X{&ICA@)p>n1xe-d;=4xEa7Nw%rp z$RFcN8I#KRo#MZga$Qc$O{jxV5m##n@ad*&6Ye&Ro{7)%7WUpx1sPtuCKt2y_&H<_ zJ0nIWBljNaK|=79U|u@xL3n3B5^m?Qh;jEZ0RLv(X#>1(FwwEtaQ_OBC;Bz*3`p4w z8o74!>~8`$pIEb5agntyG}3^!Kx(AsSs;4FXHHyttK+HZImd!M2U&FO{$?{zPhCCJ zN^z_Ix+HA1Wp+W(e}hVNac0!#_n7a)UX;e@Z0^smd&{hjtI3>s1J#YSI6PKm++jIOZS=)y6uWW`Zv-`uM zjsk?a$N`)kps7Zyu?M0nt`{@@M+uZc2TDLXQi3{XmJ6Bh&d}`B zuJ#5QaeKX$TAXt`*|=)GbKf(h3-O<1YDX&VHe1tJz-6})Zt#U)3b_7H)RHQzX(>(@+DR8bn(=*doQ2Rmji~lzxKx25lmCI+F!V*)R5D( zDrFqJ>X#fhclH~lc0XHT2{Q|>6YGxJBt9)XyV;hOV>i;2cow$#(O7d>W3~a89p81pOee<>!!=J0A|vjTU#KH;xB>roNc?;Rav*F=c)Oy zr{8@ojG{iPSgixa(BfQw{L{)GvGN9c`e5|qDul^3x#gcr7fu%UL{CJDD5WlNu8?b`i+tnI zyD0YgqPV?K%h!=@zoagPFP!vud2Ql^N9+?6Mc;4aLs)G4O~)uCKah`*cX?_M%{A`X zcpSPXTz*4S8I+tnQtd+G_9eH=&)^$*7+jag)4@9v`{XLc&Nq9wZ28opLHyHNl}8LJ zvRjxH;{ZFr_18d9vkvjbsSEC-OZLQ;s4;XX!M=IZANzlR5Mnz}q$5f~y8rHWHv^{-%XWpu2s+#BBD*{4m6b)kdl~i7ium(~X&cVG&v-v@(8eQWQZ_J4^ z?s!2*asX|Wn(OyOvkVusckBrnEP-cb>#?H?`(NxbWB$FDP%AP9NE%ooU-%}0O^2M) zj0A1ly%JwgLT^D25DH?AzD%-KDmdEpAbSYUv|fW3ICRAbgpo&qdc}wCvdpgOw$;pP7T`~ z{U13@$*W&dSD0yE8hN9Dd+Bjc86b{s{0$G*!gsbEmll&weLK~OP`6^RxC}5~yUj$` z73ltB4M^t#0#~iyi(>3cI?Ltvta5pGF>XmkOG$KJ-v9ZElx&6~?gIcFU;C4Z2^TIF zx9I2hCA5};n3)6}@_F`V{CSWs2!k?md5D=45oeg@6IV#DLV%a{W`;DhRqPp>{2%`Ns<%Y)+CSkqmqCS4|vXSiRIEoDsi=@WF& zD?uB{?9H;{2Yfrc{eN4s&y^Bu9swo7PC_IJNBgH{n>|H;VTNEzxNTOK-O&Hao#|}G zQ=|2~@RA99cyAf;Jy@2M3$|Ea$ST_}m4uPFD>d5!uU~l95a@(l};{?&7jKm5+1`dz`>wG zyx#r}K)&^Z6fFf^EAYl>HC$WD2vXr{IwsC6RgB>ofd{XhPaC28_R+N_feozxRskr{ zL|ff!E>XVgyV?E+nO6WW_ZFHdcuNxPOSIP$W9zN}T3Z(Ua0vB**~0oKz7u6*fYX`D z-%s)h%s$D3ReOTAFt~1n7~98ZSHXwn$9BTCa><=bHgZ-;;5nn|rPh!%&9W~d9Wk0& zuCrWboq^sw7`etgVXDN5o9RDKC7$ZJWa6~AHddu!oJV$edAW?o|4&K}=4ndSuX-MO zkhy&H%mgA8AfNjp96gf~r1HI0y2Wx!{MP3EJGmJ`WQnMJT-JgJvF~%6`a*UJsc3We zk6&h95Y*bTf=eE4O$s*aZj!(*`8p=)TwA&*WBN@Bs73&##uAJtfJwY5m;_1fw6k9D zN@Gf!V%Z-leE_-+Or`H=y1Fk$T>UfnJb0VCWMx)%5~%zbV?-Q6L^8&xv0haHi6gy^ zI0sfph^@VSF?f0~6~1X;Ga+(BeuPnq6t_}fJE3*m)XPSq5-}ax{&C=i!Q2mN4vkCF zH@{1acRzf*1z@+c7Ab$UuU+%oKAuS*Cy7X3rUpyF9Ecf+=~1hHx|hiU=w2pcaN!CX z@R2ilPUruVztSsF>Q#2`bcdyADw-)Ub-ByfIsAnsoPwR*&qpTjZJML}uRU&=0}_ST z?z^VQs|2K|FAT$Wf#Q}+@LJ1Sidv#$BxJ2#m!h&%6+r?bf$Suuc7yC?SA#2WcXem~ z?0@AWSF325iGX1g*+(`ndD{{CNUH+1sjD@YVS9+75`dtqB8JL%Z~XNq8<0s%f^uxd zi7I{!tTCRfwOwrL95yRmzgK*MTWkVY}(G z+_q4Q+t0!1z0sj%WgZ{WJ2l88`2kz}P7v)+MX$XjM?&Ar{d;@gE2~<}tr_lBF!w&* zTT5Cyspa2|FI*YP^>vqDT*`J>qHkaB*G%#H_)ZI7<4+RJ2SL7l0XkYxL5BJhVL5&B z3l=bQNVDi9IT%YEt3ge)nIh4a^`e|6mqbL@eIx<42;42r(If50NgM`WAdRZ-*MED- zirv;4O?~LO(GNO)GHUL_%5GFBle_PhcRUs{?pzponwzRmqwN-VJ@*0FG1r9|!y|&sE_cO@96cABxzNky5$oUdVLtf}QSt{tW|W z6SqS|U3Za=!n2W4eO8m+IUVp5<#}O8Nikp?KTvVZ)I ziZ^MgxfFxfvm{^;*7ilmbmt4$o2{Q(7Hm*rkg0wWnjQz_EsTb}dFEH`db1Ps z2ZqgKa?d7&3Fwb>*`=Yfk>VBf`oU})&h{^T>G~x_0%mrccKu+}xoK?krGoq=dhU*1r?`o=e@G&R~eU*3?`L51J?daV$KC zjS+fjF)Ed$YLH1xX)=R8_;$|?X1^JYqEpCF$x(SbdkGna0I*~)vZ_WUhLIqy9w~27 zYv^V-lp8C|S=D0P>_3w%@axxhgfVUL8`=gNNPk{9q0f}`eQdzw8{4oAI;S(nes*p* z7K}J8&!r@jxb&x=B565FKhx`C1P(Gv%9rLfnRfK}4T0du{(EU39(73?X=c}17jMQr@Kgk#D zw*MU=33TMKnE`?C4`;g@jk~~)kW%V;XQ0Fj)#zs3EZ33S?fQgnkfbLV7#@hgK7yHm0NadGhs*IQ1)(c#E95^&xzB|30 zyZg(K&8hey2GWN>AxxopgJ0not&@vw&fRzJ0Rj8H6!6q*Gx{CxEw9|XC6P;#*~Gs^ zKQNUTDF^>em?3S8-6gdm6GeXYYMW+CKw=h#o4|v^9f%@r56{aT#)ocEJwSoI_5_`f zBNh7}j>Y1z-$2jmkB9mEi`$zGa_cCvwng*LWBR4 z$+s|AyB*64Z-EE3Uy2#)#2biy&-@PDxEBI*3|9S2<-FQ3AP&?={@HQ0HZ8y24Y(og zNOR>G8>m_K34WF7AlPSXkQ*!hZsv#u@F$Vgak8k@L^CrqRwG1}0RC(JW4gIs>mDp!}Imxo?gG#Bk^O{fJ zs!cH{ofom!^<1hz*pw?xya-oQqkfE|i+put`~s|$=tG<}PV@w{<O<>9%XKlSo|Wz(I1AAqFR<`l-Yw0NOV);-FCeYvG2 zRRLZKdO#8un8^-2@y5(0mcU6`H=;ZK5ogb=-%gWiOlhE>5Z(Fo0FsEQL-h6A&>kDO zMsS<0(KNV)afckz&o%h&;34aR04~VrrkdL;1s%Gp{7pS0g^zt97*CH>ypL-y zNtB*otA^P##_y3jod^s9QLALxn;17!cj;f@)R~QP&cyev8q%t%f>uV5Lx$*(CfYja zNmlz;W}y3GWZrV(t)>wi4K#hBM}WI`w=j5{dqYEO$W;b-=F|YrdmN`uV6w1}*l*`| zR%i%%RwzbU%oOPJ^zV&Njj%l`pn#q7qu#=1d)35 zxlE6weCp*&k6iGSjS#Z)ZUky@u>W})nj_@+{lx5~e-BRQx+(*FBJeq3Fuq_}{GGqR zY`=`e-CO7q82j`1@ku4b-CF(*2`g;3!yI_3h!=X(WRkW5WFx9?*eksq?BFbmrq*Kk zK@Vs)AWoq|N|rpbA5J3J0Q?0#@1qtzR=|kE%;_Up@yQ`z3DP z$~rmdZrq3#Aq+-*e+B-VZh`xJw`jBLRC#^Ign~lML{6VU{6Yn%s6MPDs6OMdJN=!r zfSrE;BJmaJ&#sx*Dfp6c=vWOvb1%*oNDKF~CaQsAGzFig6!JQi()!4yq(eR+<&01g z7{Q+v*<@OM;Q&UEtQ}B3uU@r=RrzqZSR&ce6j%5y1a8BLjKV*o3`T-eY z|G!WlUkRL=kON-Cf3?63vkW-v(59yqKp=g{!t@qkroe9>%T+8>Y->{Ek2| z1Kr^c$o^?X7=WJf7cTzg&bCYCIVUOO^~NE}{FGtg!(Z5liabX9|>poO;m%bo84GA5@sIt-TmP5L)L?r9$XG}){w=qzzv zx6p{SSAVMILqzXky!s({Fkqk%*S>c`JykGYlPBT`PE#D$_~OAViv6|!Iq+SYoPG&; z`BGC4Dk+cKXXy}yc}9sGMy{Si{9x5|nhLh$1lcPAbz(rB9CKPr8YXg`@=RheUBKiC zrG*K+$k8!3_3Esip8g^zN8GSH0?t~YhPna`22V+67lMsBhlF~-Pgz}p)2~1$lA%VC zl$$7Ur9|nr1is7Kr>Wa>`g^<4U%@YvOH$PN!KYy+ALW3uh|IdUpffDB2timo*=nC{ zLfZz5J>stJ$Q(2-K0&+kYosnLe&LV&FJkjMJfrOY&iL(=cA@Qr&_MTRhH_r0eTfM? zGsXsm=vDr0TY^S!|8j3&J5YWBAcDYkIph?0S7=Nc(ciz5ZFuI3!?4GtEhf-g`X9q! zp6*#;8TT(U*ntPG(!)E|fC8QjYYl^mf3NvwWc`A4qzSj&X6&SQ)94VdB+9H>DIHhuw zhhJkmXl)TXYHc|d7{Yp|&;qB_;&6rkj~dWHwyChl7?@47D_08)|6uxm?avy&v3=kh z&Uh82-Eovt85jV*gJI$4D6@fGpj{){l(T{8LA<}jIR`PbQ+i2qSbpB_T3k`gdlO0} zm8RIiqYcc7K%i1KdcH^q1ee=qs`tSbjj%g_1O>xD4N{mmc5ElAZkIMo{9>bk%I%IJ zbTXeeD<@~yvwJh(#XlTQZf4Z5;>s^uXk;1q4}({4*|*LUAsHx8{-`=&nQ0zCW?O^Y(yp3{3}~0oI5hWziD zHm2^`6(B14axBZId-$l|LJr^i9B%+QQQ;b^fXj_hn<{38>Zf&`pyk7aLGpBzM?C4{ zO22qLkUQ)HJr)>rjuLr)6O>bt<83002k!l_f!_SX!GR@%|99Y*v|^It?G5_6Tx@e# z;$H`X);pW)a?91T2d9?WRY@p9?B-Gua*G^Tswl?$*$vUA6pjGP# zjhuo)w6aJCn1gP>{iPIC=7?aT`vnCg;X^yXO+}-5KE9N6Q%^5CZ0IX@HH;+jVnT!+ zuhy@`^LgV_&X5qxob+m06X<2dez}cF;2Xsc(lNbu5ar)&4Den-=DZTt-S*)(?ni(- zb(}KoGQW3e(buftY=KXT&{ntR$)g`0M8FFNep;39h_q%lFbb?DCk;yVqc$g~fH;-f z`LjH$D>u`gMpf`mV5)p7(5?nHbV61X8O=(e`n)(5S`MXBLh(XTmM)}@+*#!2EUnM@t~N9*`v}Qa7Zh;rFKL(lB=zXAE(r+@ z>{mF7qXoqQwbs9HcI+zUQv-{EKEMT`RF{V|u?oD_!8@-Z*h=iYT5Fg1Y|KqnX2 z&g#=1W%9v+I;uxemz;O(*p;0}O852k6`%4Q=UBAG6=*a_$w}tis1#AJM8I0}+P*oT zapgiau@=~vxUF0>$#C*Sf^0>#KZlg>);p7~WnFRc+Y|i^Ic$e1_t5W-*@WL~w!xj(`ZxjW1bpA}e0SxWbrA^3jU04J+KdjZLx{0XY zif4MKaquh>~S>cexgR7jT@WQgI`6^C$9R#?4#Qpjg}bs;l1TP`p2%f ztZQZi(~~zT4JtF98NGDBz`U_v^od&qP_TRc?|wP+dUTe~+@zr9yW*rHr4aA~c&=%kF0iHD1=X5hp{90$Rb7VJ9988q_KZ zB5X?1i_mwZABs|J>I#6Gz^?>iL@vM22w-r7M=&k?b;^fo;C!`s3VDcJvX3(kis zl%9o#Xk=-#h9S^Zy220^oCcypS7#}toIXRKZKoe?UF^FS{HL zkIMGwAJ{M!2jicRuz~=Yfl}wGCpvo7kD`&i< zG4xLU5t6A+_X40Z&^yf9p4Za{yXaAQXgyoyq`txN&P7s4=eYwHDP#tqk5=Mvw+l@X z^(oRGS6NDZe|+S-0r!ngzr=ti`oWNDTMHZATy>Rs^#nZ3u%LK%4l#0K*Ds$Q+QYA( z6Zt8(qNs_)J!+zpIrt((?f7M6n6Y!Lam&OJimwCG;Xg#+5NkTT(VDi-Vp;wD?@xF$ zS-U<{SUm-;5PTj}soQdXOTzpXE!NHe!-(EQHh^Ak2kS7r9BANT`vY(yIS)$=pO9|c zI5jXE=(7vX&^YoYPO*n!>5DqxCR2o%fN{~Ip8%71rzlEeFZB;`Dm*!Lx~Umcmj9S5 z!|i*=iFe$Es!~p_P8L-K(nabcJBrMK}tLs$TUe0wHj7xl2A5snw z{QBo^Kx1S}^?M8~he0T`^*=e0h!%(z)<`z&V& z;T9oy_imb!g^AwJS6Pe2?=&`a9zISxiB+3gr#1;R|E!pa#zR7=)94u-G1rYMV%1DS zHd-GV9}4|WEA`!|+AnQC9G~6?*wa|83$Oo!+$gQuHK`tmPJrH;U+kpR34l50kCHcg z$R%fpxsDdn`oEyKPFlKrQ*z(h08!@HdpOFf_#Xq?y@JUTlkzqeaLY zU#)C<+-~*2@xxpGSIU-eY<)Y$hxh+@sl17VA2@;EElD3jR|_N z>ZUHt)0-SNXMNWL_&X4Ti$rdfO)xdv+#0Rg()tg@WQWZIcLzA{Rt1VR>dzUS zs6FipOz{5C8;P@0P=6%=p%2C=j{(#D{Zbv4!K%%@x4KpsFTlZ-D$(aSG}Jxv!?Uxu zd!xI|=l)+SPaY2S8Z{HLq=lFyrG@O&wUo$E-HK4zjTuUa>`P*h;Sy~sjXnE17@4dy zXp)o=itKAfiLsPSX!N~fsnK`;;C`Ry;Tg~Te(!tEdCz z6vj|~E0FIqEf-A#={(!VLLi`8THbxUVCLHYKJF|~YE@O5?7|ZdVFw>gW3PU@8`eI^ zWw|{hOhVDi9TGfBow{VFDNuXbx$RC7m*12zk%;$R8N)gnUpfI@9xH4DO>iw%*z zfQfy1lH#%_g34F+MYT}@#fo#~a%mAi{~mk!g(*m#$A5e(Air4u1Y)eF!WUYT$B=!E zuQKhh5`|Z_J8fg>ZB65{4bz+W2s&D?mqI#ACIBhp=o~Ah2L&shpLLrmgF7B_IJwYj zAF?dv6Th?ITZq-+E+8GD4{FZ6tAiEnlz8-_AFAqHe$5t1h+%SM60aR*?XsU2QJlL@ zvYy{GOH+i&=P1Y0)cU?=XC<3TN{$pH6AZ~o=Y#D1v*s==xZSUu(Brg;jM@3Hv8nAd z?Ycf<8P&iR2@S=7i?9z!!7-uYT~yWb&WeOx0s?1yzlT(h7G{rPqGI&lT3^$(Ij9&o z_XRgdmT>awm!6xaNH~{r!ub@@8W@8ftc0{4+#}_4ieadv88*{b$+Pzq5%aF6xkjG?E`?v*5mQj`%(Yhz&YI^!+;|(_Ch5=`JUsRAf#PoS zYKgMDui{vQn<_l|!pG!*R>?O!8 zflqk(iXYQddkEshwAQg@2Z^qv4rM&^6pUC_4o4B%`NB zrL_iM9R1!^cJ2<8%wtS$8JX=~ z5lGZmf3Yh?r>CJeuRC>%4E6T|`C&XgPCa^^l?f&+3nZtLk&EYBKQo2yEwQ=2q)Oy5 z7wGKvuN4U|?VS@q2;se(dY(Ays6#L1-BsRp?S?)q%4+mmLHSX*R#9cdk%~DSh3fS+ zx3+vdz!d0}<_h@9(Tqy0BPM9?v~o@`ULu>sS2#YHhP)>^u*o}Is$_hixknjp6aHbb zAXQEYm=TL%6JsP~j38~9l=~3zv-IU)s`i&Hf(AYpt59c*6=b0ku6*U`l=-@c+Ee#k z8YpT4u?4cI?vFT*u=%(dk3J0+LKj~G<~{y8rKuY=iR^re{6_XSasU>AGpkeq2v(TD zvd{FN3JkcfoLy${F{t>iA^B#TqG49;`-O(S1t~qW_i+?jCPA`^Jb%T!`pu8dRv+&d zMaz}}UEV&vME5dp$E;gWS3CCK%N-;`5P_3XgqOk6QwsgL2QDaaA}~x)HZASWJI4fJ zF|JCRDd|ZlS#zk7ZLM^ZMVp|?=Xv~4k7Qvh(!ZAN9^2@UMR-tA^0P!k{T4khNpoFM z3cWLGsTCLx0!qdQ(e@`~q0`%+2y`MEYki@fz4g4)@m$`eAIDUooLcR=Ls{_GHMhAp z7c@M%#r2QXekbSNVcod0-SES;tazQGe{z!@8X=}*s6xTVP<*SSD+~2gk>{;!Z}@gR zGitgc*IYo{=vBq_)|0i;Wd`Y=Pc_4TUV7QLTwyLoAEguI)pHpHH3uVM9f)34gQi-P zqk3Md_KyP;91X87OB~W7ULh286TLpGD%G4+#>BJ>P~*AKLY|1Ie3VKW8Pichwrgp| zWPfb*ROl$KhZvt6&%Wf@Ct)}9qkmM33sKs7vh}d3gCv#* zM+6E}Z1y5I#h}#Qm+NZ&lJyU2@7d z%x)$}oF>jh76|OQk#mq#)%;NOe7NBjQc&3gWFeE2u&pSWwXAElozmrIbeJTKZ1Fc4 z5_26-u%Ar0#AMr-#hko_%i0QRq+Tm6Q%2^8c46-rUTf&K%muppx>_ z55*>Xo~+X;$IPs!tN+AImM-mB-bkXK*VD1t7T=!E1X|S%ogdfUw{}w9?ViUBnW!C^ ztRJhm(4rrK#g|Q0g)Icqq%!@9E^&CYm&`*l8>RFl^u23uL$~J_`?FW-ti5$RsNY5p zjv+g}9YakpNGQt@KNt0!kU5+^b8fgapCP%Z4r_Ztx|v*|8+k*MkJI>7ZIMe$N!LI; zk=m7$CNoN|M|$Ihz8qb$e7B~O8YeP&LaS~UjklGa93x~qS)6@3H*56y0ax*x?>CNT!1$e)JTW1<*xWSh>bWwy!xa(ePu%FvS6()viW<`}m6=e$6pWM| z?}~>P=3VL%i?5&#RKl}T5qmpq+C?0w-adX$V>%VHa#WJ-&vLCj{jOBx#Npa=Eew8Wi0%c<;(rI{GA~!C_z%mtXrW%g$eI(3_1nppRFIstN9l z&L8n3@|TZ9Qip3Ep~^?jc_O?CR_-deq^1%u23fZh+h8<6dlU<66_5VDnZY!x+~VAy z%NyB^+H}pSdv>Iu>8oRDe^pq*q%tT=84X5lx_V`#`u(UDn0`SQ*ipqK3!g5wJEp9% zK(j@lL)-FwH=2@}iqDh^2Jhdn)nlCaEPX#5&sU`LqsySpRm)+xi4=iCLZ#g{@ekky zLnFGd(!R57DOBd43(PE~g}y#J@Ki0O7oqC=nysAOT{ZBA(z4~a04O?+)o=ER`7r6( zw7|%wJGZ@C%^WR+&^Q741?n?AYYb!dRQ-(83Nz;k5ARXPiuJG3mc!pe%P569hXxVY z-GyY|tW@BA^-fP|sk!?X1LkxL#bD?HgAJ!T&)nZH)Bc)if5kYGer4=yYkCqK5IqZ% zj*NRC8H6F%gFqls$JduLI0{VY8IF?E@;iHqXsJhb|6X;;FQ-#5!=JeGk%Q~YQAen9 zBN>}$8g~n3#2*DlCH;Dc6VW%P_G9=o(Rpm>jwvynlA2(nmZ-5fQ0doGAQYTV%5oei zQE-dKG~^ZoTVFB9_NuNf(VfbjosQSXkkc{{k-$Wys^u+WlbU zd#!(OhP(2y#1Z#IpM{LbV#JE%x-d883Z80FT;yn9Uoptw4bWlflLrz?XI<4xMh)Xn zQURf<`gLL24B0F?*h3<~EUx7_qG=riYb|@+zR+2;h!cp-EhH42mR$=5OzEjC@=%rO z%00~Jdz`rAuuPDp7x*>kzDvaeo*5qz;K8uFPXp6(`At|p`-U)`%TkJ2)w9?*Lc!0o zVQ)-YM-gU&1`I}muR=xMP)+pZWPXGEu* z$W>ukFc^4ef{g5~I%(Ry0ifbCle%sU{v$u_`p+(=k)qpY`VqDy11mU)+5MK3Yi>A0TW@Lw?{azv=o zeYOuD@!LV?%nH7U%OXXC**dI*AIu4wJT+79Mh*9r1TX3N25CGaMemIL#t1>8KWkUr zX43QC4>Om1VG_d$7;v3g`%mvP!n{HwU>XMZy?DCj!my#0db^O(@2bx2;8OoATt zLue|+()gQ#mHy|LaA844!ol)6_hp>_JiJQ}3_jA*tB)hrd@nuxE}uRP>^IDhb6AHC z&c6k7ItIXRxVoVKVR@dfY~~S|V0&xd1XS#DFnd8H+&l{|u;E2l&ApZ`vQ-9fJ(p@s zsm`TP?R{k#`BtjIx}cV@1Hq>%%U!2|WWS zPW_%v2_DFYMOwNY@d%XL?_go09Dcvs=@LU~oF1*6FnRl$6$hkxkOmh#&2!JuVQ#rI z?H0#y;x{KEZ^$rGkYvkhRwuD}0>yi|WCRyv_Mqlrmq#SmZ7Va^+bhVj+1MH~7E?R^ zRotEzQBw04zbl>#T(~FZqJxT8+pq5^QTM@}cbt8GWev!&X8h6DM1G^_iRvBh~Q zM=r19vsf~;V#_rxT?abPR?&%2FaEsJ>#!0Gd@6>efUF}tsO#A z8LOryDC_FEIl8PP{!mh@{`VDVwIFDAU8mp9jU!JuSKNpHg6IxbfGFqpb)fg+(@X0W zL|8kbus4vS=Aj3pH=uEGFO2^%4c3f$6v#=q+nWA=K?Y0!ZCzd7Pp?gGuN38sdTMnC zfj-Px!if;!|15EO-#f$1h4wi{TWrlMTI91x)q;YceCKxA|KpL$9kT$_aMZw@R{^m< z&FD45$gl3tiMZweT82^bulXQ>dTVFV?24V%J-sJ7KHh8Nc$Wf!@TAI@RGw`J4&I1O}*9aaM*Y#K` zGCh~x0QrK)`YGcTo%q>FwA>neVVi&QgO0g`;;lPc(xnF>9mwEA;gC&vyS50!{F#^` zEbNv#$w^Q6=;wHF5Ym(C_pgNpjBCLh1F~5Wj*$P1Mm4L%U)Z<7I2T(r#&y?3T-ek` zf@ULGbX6z#Z@XBS3R5?+Al|(m;{CU;SHm9`T!Z2S?}R*R$Bi3n0)EBA=`40ogpqjw zPTazcE_+b#r%&h{$7xsu{10d2oAdwx literal 0 HcmV?d00001 diff --git a/packages/digital_guardian/img/digital-guardian-logo.svg b/packages/digital_guardian/img/digital-guardian-logo.svg new file mode 100644 index 000000000000..7de58c56144b --- /dev/null +++ b/packages/digital_guardian/img/digital-guardian-logo.svg @@ -0,0 +1,23 @@ + + + + + + + + + + + + + + + + + + + + + + + diff --git a/packages/digital_guardian/kibana/dashboard/digital_guardian-908d6e88-1972-4ec5-95de-acdbca2659ce.json b/packages/digital_guardian/kibana/dashboard/digital_guardian-908d6e88-1972-4ec5-95de-acdbca2659ce.json new file mode 100644 index 000000000000..cced16493f65 --- /dev/null +++ b/packages/digital_guardian/kibana/dashboard/digital_guardian-908d6e88-1972-4ec5-95de-acdbca2659ce.json @@ -0,0 +1,1698 @@ +{ + "attributes": { + "controlGroupInput": { + "chainingSystem": "HIERARCHICAL", + "controlStyle": "oneLine", + "ignoreParentSettingsJSON": { + "ignoreFilters": false, + "ignoreQuery": false, + "ignoreTimerange": false, + "ignoreValidations": false + }, + "panelsJSON": { + "486bc723-61b3-49f3-b385-5bcb57ac469f": { + "explicitInput": { + "enhancements": {}, + "fieldName": "digital_guardian.arc.dg_utype", + "grow": true, + "id": "486bc723-61b3-49f3-b385-5bcb57ac469f", + "searchTechnique": "prefix", + "title": "Operation Type", + "width": "medium" + }, + "grow": true, + "order": 1, + "type": "optionsListControl", + "width": "medium" + }, + "5668de50-91d0-46bd-a551-bb7a90b40a14": { + "explicitInput": { + "enhancements": {}, + "fieldName": "digital_guardian.arc.dg_tenant", + "grow": true, + "id": "5668de50-91d0-46bd-a551-bb7a90b40a14", + "searchTechnique": "prefix", + "title": "Tenant", + "width": "medium" + }, + "grow": true, + "order": 0, + "type": "optionsListControl", + "width": "medium" + }, + "6580796c-3ad9-4c87-8a2a-4e567bef1a61": { + "explicitInput": { + "enhancements": {}, + "fieldName": "digital_guardian.arc.inc_state", + "grow": true, + "id": "6580796c-3ad9-4c87-8a2a-4e567bef1a61", + "searchTechnique": "prefix", + "title": "Incident State", + "width": "medium" + }, + "grow": true, + "order": 2, + "type": "optionsListControl", + "width": "medium" + } + } + }, + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "digital_guardian.arc" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "digital_guardian.arc" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "syncColors": false, + "syncCursor": true, + "syncTooltips": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "description": "", + "enhancements": {}, + "savedVis": { + "data": { + "aggs": [], + "searchSource": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "description": "", + "id": "", + "params": { + "fontSize": 12, + "markdown": "**Navigation**\n\n**Digital Guardian** \n\n- **[ARC Overview](/app/dashboards#/view/digital_guardian-908d6e88-1972-4ec5-95de-acdbca2659ce)**\n\n**ARC Overview**\n\nThis dashboard shows an overview of events and alerts ingested from Digital Guardian ARC API.\n\nPlease visit the [Analytics and Reporting Cloud (ARC)](https://www.digitalguardian.com/blog/new-dawn-dlp-digital-guardian-releases-its-analytics-reporting-cloud-arc) documentation for more information.\n\n[**Integration Page**](/app/integrations/detail/digital_guardian/overview)\n", + "openLinksInNewTab": false + }, + "title": "", + "type": "markdown", + "uiState": {} + } + }, + "gridData": { + "h": 30, + "i": "2d44dfbc-c643-4e86-b9a5-910be15b3f9e", + "w": 11, + "x": 0, + "y": 0 + }, + "panelIndex": "2d44dfbc-c643-4e86-b9a5-910be15b3f9e", + "title": "Table of Contents", + "type": "visualization" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "6d8ec553-3bbd-45f8-bf1c-4c7511034647", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "8f970611-854c-4daf-aa51-58eca8f13db0": { + "columnOrder": [ + "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + ], + "columns": { + "ae019aa6-d57b-4ca9-a65e-01818279bbcd": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Incidents", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "6d8ec553-3bbd-45f8-bf1c-4c7511034647", + "key": "digital_guardian.arc.inc_id", + "negate": false, + "type": "exists", + "value": "exists" + }, + "query": { + "exists": { + "field": "digital_guardian.arc.inc_id" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "a8e8a858-d038-406f-97ab-04bf77e95bfd", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "digital_guardian.arc" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "digital_guardian.arc" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#6092C0", + "icon": "empty", + "layerId": "8f970611-854c-4daf-aa51-58eca8f13db0", + "layerType": "data", + "metricAccessor": "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "2d8d38bc-2a64-496a-9d1e-84b11a90e6ac", + "w": 7, + "x": 11, + "y": 0 + }, + "panelIndex": "2d8d38bc-2a64-496a-9d1e-84b11a90e6ac", + "title": "Total Incidents [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "8f970611-854c-4daf-aa51-58eca8f13db0": { + "columnOrder": [ + "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + ], + "columns": { + "ae019aa6-d57b-4ca9-a65e-01818279bbcd": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Critical Status Incidents", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "992d8b43-3a20-47fb-96ec-bfcf59b87600", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "digital_guardian.arc" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "digital_guardian.arc" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "event.severity", + "index": "03dce9b5-3b4b-44cd-9e73-5a30f02f0e1f", + "key": "event.severity", + "negate": false, + "params": { + "query": "1" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.severity": "1" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#E7664C", + "layerId": "8f970611-854c-4daf-aa51-58eca8f13db0", + "layerType": "data", + "metricAccessor": "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "47646300-4be6-43cd-b078-907b2e4630cc", + "w": 6, + "x": 18, + "y": 0 + }, + "panelIndex": "47646300-4be6-43cd-b078-907b2e4630cc", + "title": "Critical Incidents [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "8f970611-854c-4daf-aa51-58eca8f13db0": { + "columnOrder": [ + "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + ], + "columns": { + "ae019aa6-d57b-4ca9-a65e-01818279bbcd": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "High Status Incidents", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "a8e8a858-d038-406f-97ab-04bf77e95bfd", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "digital_guardian.arc" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "digital_guardian.arc" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "event.severity", + "index": "c76959bd-3d79-4d06-aa36-4bead612c2a0", + "key": "event.severity", + "negate": false, + "params": { + "query": "2" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.severity": "2" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#DA8B45", + "layerId": "8f970611-854c-4daf-aa51-58eca8f13db0", + "layerType": "data", + "metricAccessor": "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "030c90dd-a365-4a3f-84a4-437ea63cbcfe", + "w": 6, + "x": 24, + "y": 0 + }, + "panelIndex": "030c90dd-a365-4a3f-84a4-437ea63cbcfe", + "title": "High Incidents [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "8f970611-854c-4daf-aa51-58eca8f13db0": { + "columnOrder": [ + "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + ], + "columns": { + "ae019aa6-d57b-4ca9-a65e-01818279bbcd": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Medium Status Incidents", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "event.severity", + "index": "b02819d3-50e2-4198-84aa-ad7a458848a8", + "key": "event.severity", + "negate": false, + "params": { + "query": "4" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.severity": "4" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "a8e8a858-d038-406f-97ab-04bf77e95bfd", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "digital_guardian.arc" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "digital_guardian.arc" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#6092C0", + "layerId": "8f970611-854c-4daf-aa51-58eca8f13db0", + "layerType": "data", + "metricAccessor": "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "392bcd1c-7012-4e94-961c-0cacdd0ccbe2", + "w": 6, + "x": 30, + "y": 0 + }, + "panelIndex": "392bcd1c-7012-4e94-961c-0cacdd0ccbe2", + "title": "Medium Incidents [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "8f970611-854c-4daf-aa51-58eca8f13db0": { + "columnOrder": [ + "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + ], + "columns": { + "ae019aa6-d57b-4ca9-a65e-01818279bbcd": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Minor/Low Status Incidents", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "event.severity", + "index": "1b631c92-5ba0-4b99-a76f-c980d3413b8b", + "key": "event.severity", + "negate": false, + "params": { + "query": "5" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.severity": "5" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "a8e8a858-d038-406f-97ab-04bf77e95bfd", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "digital_guardian.arc" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "digital_guardian.arc" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#6092C0", + "layerId": "8f970611-854c-4daf-aa51-58eca8f13db0", + "layerType": "data", + "metricAccessor": "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "de2a1a38-5692-4167-97cd-a3060075896d", + "w": 6, + "x": 36, + "y": 0 + }, + "panelIndex": "de2a1a38-5692-4167-97cd-a3060075896d", + "title": "Minor/Low Incidents [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "8f970611-854c-4daf-aa51-58eca8f13db0": { + "columnOrder": [ + "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + ], + "columns": { + "ae019aa6-d57b-4ca9-a65e-01818279bbcd": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Informational Status Incidents", + "operationType": "count", + "params": { + "emptyAsNull": false + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "event.severity", + "index": "5b05a079-4242-4ab3-857f-ea8f0ac30e13", + "key": "event.severity", + "negate": false, + "params": { + "query": "6" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.severity": "6" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "a8e8a858-d038-406f-97ab-04bf77e95bfd", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "digital_guardian.arc" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "digital_guardian.arc" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#6092C0", + "layerId": "8f970611-854c-4daf-aa51-58eca8f13db0", + "layerType": "data", + "metricAccessor": "ae019aa6-d57b-4ca9-a65e-01818279bbcd" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 5, + "i": "32ff9e46-6eb8-4342-84a5-81cddd541066", + "w": 6, + "x": 42, + "y": 0 + }, + "panelIndex": "32ff9e46-6eb8-4342-84a5-81cddd541066", + "title": "Informational Incidents [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-0312b5a6-bea5-4294-8a62-ff3ceb288a9e", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "0312b5a6-bea5-4294-8a62-ff3ceb288a9e": { + "columnOrder": [ + "062a9d08-2f75-4dd7-8dee-fc3c7b43b072", + "c56f8fb9-f365-4d7d-8733-7dcfd18f428f" + ], + "columns": { + "062a9d08-2f75-4dd7-8dee-fc3c7b43b072": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "c56f8fb9-f365-4d7d-8733-7dcfd18f428f": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Escalated Incidents", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "fcefe5a7-5f07-4ed6-a5d5-d2a6807b4e01", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "digital_guardian.arc" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "digital_guardian.arc" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "96fabe3f-973a-4e1a-9af2-09951ab45907", + "key": "digital_guardian.arc.inc_state", + "negate": false, + "params": { + "query": "Escalated" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "digital_guardian.arc.inc_state": "Escalated" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "c56f8fb9-f365-4d7d-8733-7dcfd18f428f" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "0312b5a6-bea5-4294-8a62-ff3ceb288a9e", + "layerType": "data", + "seriesType": "bar", + "xAccessor": "062a9d08-2f75-4dd7-8dee-fc3c7b43b072" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "4eab877d-596d-403d-9848-c3a9d48c1431", + "w": 24, + "x": 11, + "y": 5 + }, + "panelIndex": "4eab877d-596d-403d-9848-c3a9d48c1431", + "title": "Escalated Incidents Timeline [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "ad429d17-44f4-4649-a8bf-11c5196bfb4d": { + "columnOrder": [ + "0836ecc9-6fde-4107-a90b-6d31e07ec827", + "dc17bbd2-102f-4dd1-b149-7b32b418b615" + ], + "columns": { + "0836ecc9-6fde-4107-a90b-6d31e07ec827": { + "dataType": "string", + "isBucketed": true, + "label": "Top 10 values of digital_guardian.arc.inc_state", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "dc17bbd2-102f-4dd1-b149-7b32b418b615", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "digital_guardian.arc.inc_state" + }, + "dc17bbd2-102f-4dd1-b149-7b32b418b615": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Number of Incidents", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"digital_guardian.arc\" " + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "layerType": "data", + "legendDisplay": "default", + "metrics": [ + "dc17bbd2-102f-4dd1-b149-7b32b418b615" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "0836ecc9-6fde-4107-a90b-6d31e07ec827" + ] + } + ], + "shape": "pie" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "eab72de8-8cd7-4c40-a315-2da0f44958ab", + "w": 13, + "x": 35, + "y": 5 + }, + "panelIndex": "eab72de8-8cd7-4c40-a315-2da0f44958ab", + "title": "Events by Incident State [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "ad429d17-44f4-4649-a8bf-11c5196bfb4d": { + "columnOrder": [ + "0836ecc9-6fde-4107-a90b-6d31e07ec827", + "dc17bbd2-102f-4dd1-b149-7b32b418b615" + ], + "columns": { + "0836ecc9-6fde-4107-a90b-6d31e07ec827": { + "dataType": "string", + "isBucketed": true, + "label": "Top 10 values of digital_guardian.arc.dg_utype", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "dc17bbd2-102f-4dd1-b149-7b32b418b615", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "digital_guardian.arc.dg_utype" + }, + "dc17bbd2-102f-4dd1-b149-7b32b418b615": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Number of Incidents", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"digital_guardian.arc\" " + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "layerType": "data", + "legendDisplay": "default", + "metrics": [ + "dc17bbd2-102f-4dd1-b149-7b32b418b615" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "0836ecc9-6fde-4107-a90b-6d31e07ec827" + ] + } + ], + "shape": "donut" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "8abb96fb-04fe-4d50-8e2d-6580d2298430", + "w": 12, + "x": 11, + "y": 18 + }, + "panelIndex": "8abb96fb-04fe-4d50-8e2d-6580d2298430", + "title": "Events by Operation Type [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "ad429d17-44f4-4649-a8bf-11c5196bfb4d": { + "columnOrder": [ + "0836ecc9-6fde-4107-a90b-6d31e07ec827", + "dc17bbd2-102f-4dd1-b149-7b32b418b615" + ], + "columns": { + "0836ecc9-6fde-4107-a90b-6d31e07ec827": { + "dataType": "string", + "isBucketed": true, + "label": "Top 10 values of digital_guardian.arc.dg_tenant", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "dc17bbd2-102f-4dd1-b149-7b32b418b615", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "digital_guardian.arc.dg_tenant" + }, + "dc17bbd2-102f-4dd1-b149-7b32b418b615": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Number of Incidents", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"digital_guardian.arc\" " + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "emptySizeRatio": 0.3, + "layerId": "ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "layerType": "data", + "legendDisplay": "show", + "legendMaxLines": 5, + "legendSize": "large", + "metrics": [ + "dc17bbd2-102f-4dd1-b149-7b32b418b615" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "0836ecc9-6fde-4107-a90b-6d31e07ec827" + ] + } + ], + "shape": "donut" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "f927a83c-5a0e-46a3-9977-b9f51c6417d3", + "w": 12, + "x": 23, + "y": 18 + }, + "panelIndex": "f927a83c-5a0e-46a3-9977-b9f51c6417d3", + "title": "% Events by Tenants [Logs Digital Guardian]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "ad429d17-44f4-4649-a8bf-11c5196bfb4d": { + "columnOrder": [ + "0836ecc9-6fde-4107-a90b-6d31e07ec827", + "dc17bbd2-102f-4dd1-b149-7b32b418b615" + ], + "columns": { + "0836ecc9-6fde-4107-a90b-6d31e07ec827": { + "dataType": "string", + "isBucketed": true, + "label": "Top 10 values of user.name", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "dc17bbd2-102f-4dd1-b149-7b32b418b615", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "user.name" + }, + "dc17bbd2-102f-4dd1-b149-7b32b418b615": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Number of Incidents", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"digital_guardian.arc\" " + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "layerType": "data", + "legendDisplay": "show", + "legendMaxLines": 5, + "legendSize": "large", + "metrics": [ + "dc17bbd2-102f-4dd1-b149-7b32b418b615" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "0836ecc9-6fde-4107-a90b-6d31e07ec827" + ] + } + ], + "shape": "pie" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "38d98d04-d962-4647-b33f-84e9aee76aea", + "w": 13, + "x": 35, + "y": 18 + }, + "panelIndex": "38d98d04-d962-4647-b33f-84e9aee76aea", + "title": "Events by Incident Creators [Logs Digital Guardian]", + "type": "lens" + } + ], + "timeRestore": false, + "title": "[Logs Digital Guardian] Overview", + "version": 2 + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-07-30T14:15:15.054Z", + "id": "digital_guardian-908d6e88-1972-4ec5-95de-acdbca2659ce", + "managed": false, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "2d8d38bc-2a64-496a-9d1e-84b11a90e6ac:indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "2d8d38bc-2a64-496a-9d1e-84b11a90e6ac:6d8ec553-3bbd-45f8-bf1c-4c7511034647", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "47646300-4be6-43cd-b078-907b2e4630cc:indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "030c90dd-a365-4a3f-84a4-437ea63cbcfe:indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "392bcd1c-7012-4e94-961c-0cacdd0ccbe2:indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "de2a1a38-5692-4167-97cd-a3060075896d:indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "32ff9e46-6eb8-4342-84a5-81cddd541066:indexpattern-datasource-layer-8f970611-854c-4daf-aa51-58eca8f13db0", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "4eab877d-596d-403d-9848-c3a9d48c1431:indexpattern-datasource-layer-0312b5a6-bea5-4294-8a62-ff3ceb288a9e", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "eab72de8-8cd7-4c40-a315-2da0f44958ab:indexpattern-datasource-layer-ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "8abb96fb-04fe-4d50-8e2d-6580d2298430:indexpattern-datasource-layer-ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "f927a83c-5a0e-46a3-9977-b9f51c6417d3:indexpattern-datasource-layer-ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "38d98d04-d962-4647-b33f-84e9aee76aea:indexpattern-datasource-layer-ad429d17-44f4-4649-a8bf-11c5196bfb4d", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_486bc723-61b3-49f3-b385-5bcb57ac469f:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_5668de50-91d0-46bd-a551-bb7a90b40a14:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_6580796c-3ad9-4c87-8a2a-4e567bef1a61:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "digital_guardian-security-solution-default", + "name": "tag-ref-digital_guardian-security-solution-default", + "type": "tag" + }, + { + "id": "digital_guardian-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "dashboard", + "typeMigrationVersion": "8.9.0" +} \ No newline at end of file diff --git a/packages/digital_guardian/kibana/tag/digital_guardian-security-solution-default.json b/packages/digital_guardian/kibana/tag/digital_guardian-security-solution-default.json new file mode 100644 index 000000000000..99af92a3468a --- /dev/null +++ b/packages/digital_guardian/kibana/tag/digital_guardian-security-solution-default.json @@ -0,0 +1,14 @@ +{ + "attributes": { + "color": "#D36086", + "description": "", + "name": "Security Solution" + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-07-29T10:37:18.043Z", + "id": "digital_guardian-security-solution-default", + "managed": true, + "references": [], + "type": "tag", + "typeMigrationVersion": "8.0.0" +} \ No newline at end of file diff --git a/packages/digital_guardian/kibana/tags.yml b/packages/digital_guardian/kibana/tags.yml new file mode 100644 index 000000000000..47f20a8f5519 --- /dev/null +++ b/packages/digital_guardian/kibana/tags.yml @@ -0,0 +1,4 @@ +- text: Security Solution + asset_types: + - dashboard + - search diff --git a/packages/digital_guardian/manifest.yml b/packages/digital_guardian/manifest.yml new file mode 100644 index 000000000000..f0e7a3d96f6e --- /dev/null +++ b/packages/digital_guardian/manifest.yml @@ -0,0 +1,37 @@ +format_version: "3.0.3" +name: digital_guardian +title: Digital Guardian +version: "0.1.0" +description: Collect logs from Digital Guardian with Elastic Agent. +type: integration +categories: + - security + - network +source: + license: "Elastic-2.0" +conditions: + kibana: + version: "^8.13.0" + elastic: + subscription: "basic" +screenshots: + - src: /img/arc_overview.png + title: ARC Overview + size: 600x600 + type: image/png +icons: + - src: /img/digital-guardian-logo.svg + title: Digital Guardian logo + size: 32x32 + type: image/svg+xml +policy_templates: + - name: digital_guardian + title: Digital Guardian logs + description: Collect Digital Guardian logs. + inputs: + - type: cel + title: Collect Digital Guardian logs via API + description: Collecting Digital Guardian logs via API. +owner: + github: elastic/security-service-integrations + type: elastic diff --git a/packages/digital_guardian/validation.yml b/packages/digital_guardian/validation.yml new file mode 100644 index 000000000000..d881e142a0d1 --- /dev/null +++ b/packages/digital_guardian/validation.yml @@ -0,0 +1,4 @@ +errors: + exclude_checks: + - SVR00005 # Kibana version for saved tags. + - SVR00004 # Kibana version for saved search. From ca538b2f4636582b0575de0c102636ec6de2815d Mon Sep 17 00:00:00 2001 From: Jaime Soriano Pastor Date: Tue, 6 Aug 2024 11:25:55 +0200 Subject: [PATCH 34/77] Revert "Bump updatecli/updatecli-action from 2.62.0 to 2.65.0 (#10696)" (#10703) This reverts commit d1a7f31c73e4026964904d5574b6e9ce9da18fa4. --- .github/workflows/bump-elastic-stack-version.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/bump-elastic-stack-version.yml b/.github/workflows/bump-elastic-stack-version.yml index 4e0e15a9ddcd..c3182297576c 100644 --- a/.github/workflows/bump-elastic-stack-version.yml +++ b/.github/workflows/bump-elastic-stack-version.yml @@ -25,7 +25,7 @@ jobs: - uses: actions/checkout@v4 - name: Install Updatecli in the runner - uses: updatecli/updatecli-action@v2.65.0 + uses: updatecli/updatecli-action@v2.62.0 - name: Select diff action if: ${{ github.event_name == 'pull_request' }} From d4411a5d25f0519e55ed7f1e66cf2f2d78e2a393 Mon Sep 17 00:00:00 2001 From: Alec Carpenter <57996746+tehbooom@users.noreply.github.com> Date: Tue, 6 Aug 2024 07:54:46 -0400 Subject: [PATCH 35/77] [GitLab] Added application, auth, and audit datastreams (#10644) * Added application, audit, and auth datastreams * added auth dataset and more application example logs * added more example logs for application * added application and auth dashboards with screenshots * updated pr number * bump version * updated migration version * revert back to original and removed showApplySelections * change typeMigrationVersion to 8.9.0 * docs:updated path to URLs and spelling * chore:removed ecs mappings * removed quotes from fields * fix:added client ip with geo * test:added assert.hit_count * fix:updated url.path and url.query * fix:syntax and add geo ip processing * fix:add geoip processing, related.user, related.ip and fix syntax * fix:remove processor handled in fleet --- packages/gitlab/_dev/build/docs/README.md | 34 +- .../sample_logs/test-gitlab-application.log | 63 + .../docker/sample_logs/test-gitlab-audit.log | 2 + .../docker/sample_logs/test-gitlab-auth.log | 5 + packages/gitlab/changelog.yml | 5 + .../_dev/test/pipeline/test-application.log | 63 + .../test-application.log-expected.json | 4058 +++++++++++++++++ .../_dev/test/pipeline/test-common-config.yml | 3 + .../_dev/test/system/test-default-config.yml | 10 + .../agent/stream/filestream.yml.hbs | 27 + .../elasticsearch/ingest_pipeline/default.yml | 263 ++ .../data_stream/application/fields/agent.yml | 200 + .../application/fields/base-fields.yml | 20 + .../data_stream/application/fields/beats.yml | 12 + .../data_stream/application/fields/fields.yml | 272 ++ .../data_stream/application/manifest.yml | 87 + .../data_stream/application/sample_event.json | 111 + .../audit/_dev/test/pipeline/test-audit.log | 2 + .../pipeline/test-audit.log-expected.json | 128 + .../_dev/test/pipeline/test-common-config.yml | 3 + .../_dev/test/system/test-default-config.yml | 9 + .../audit/agent/stream/filestream.yml.hbs | 27 + .../elasticsearch/ingest_pipeline/default.yml | 215 + .../gitlab/data_stream/audit/fields/agent.yml | 200 + .../data_stream/audit/fields/base-fields.yml | 12 + .../gitlab/data_stream/audit/fields/beats.yml | 12 + .../data_stream/audit/fields/fields.yml | 45 + .../gitlab/data_stream/audit/manifest.yml | 86 + .../data_stream/audit/sample_event.json | 74 + .../auth/_dev/test/pipeline/test-auth.log | 5 + .../test/pipeline/test-auth.log-expected.json | 539 +++ .../_dev/test/pipeline/test-common-config.yml | 3 + .../_dev/test/system/test-default-config.yml | 9 + .../auth/agent/stream/filestream.yml.hbs | 27 + .../elasticsearch/ingest_pipeline/default.yml | 202 + .../gitlab/data_stream/auth/fields/agent.yml | 200 + .../data_stream/auth/fields/base-fields.yml | 12 + .../gitlab/data_stream/auth/fields/beats.yml | 12 + .../gitlab/data_stream/auth/fields/fields.yml | 208 + packages/gitlab/data_stream/auth/manifest.yml | 86 + .../gitlab/data_stream/auth/sample_event.json | 105 + packages/gitlab/docs/README.md | 692 ++- .../img/gitlab-application-dashboard.png | Bin 0 -> 112493 bytes packages/gitlab/img/gitlab-auth-dashboard.png | Bin 0 -> 137765 bytes ...-6b62c186-77b6-49f2-a820-ca377575bb96.json | 1618 +++++++ ...-8af75511-17ac-441f-a8e7-b8bd6a341629.json | 918 ++++ packages/gitlab/manifest.yml | 10 +- 47 files changed, 10689 insertions(+), 5 deletions(-) create mode 100644 packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-application.log create mode 100644 packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-audit.log create mode 100644 packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-auth.log create mode 100644 packages/gitlab/data_stream/application/_dev/test/pipeline/test-application.log create mode 100644 packages/gitlab/data_stream/application/_dev/test/pipeline/test-application.log-expected.json create mode 100644 packages/gitlab/data_stream/application/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/gitlab/data_stream/application/_dev/test/system/test-default-config.yml create mode 100644 packages/gitlab/data_stream/application/agent/stream/filestream.yml.hbs create mode 100644 packages/gitlab/data_stream/application/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/gitlab/data_stream/application/fields/agent.yml create mode 100644 packages/gitlab/data_stream/application/fields/base-fields.yml create mode 100644 packages/gitlab/data_stream/application/fields/beats.yml create mode 100644 packages/gitlab/data_stream/application/fields/fields.yml create mode 100644 packages/gitlab/data_stream/application/manifest.yml create mode 100644 packages/gitlab/data_stream/application/sample_event.json create mode 100644 packages/gitlab/data_stream/audit/_dev/test/pipeline/test-audit.log create mode 100644 packages/gitlab/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json create mode 100644 packages/gitlab/data_stream/audit/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/gitlab/data_stream/audit/_dev/test/system/test-default-config.yml create mode 100644 packages/gitlab/data_stream/audit/agent/stream/filestream.yml.hbs create mode 100644 packages/gitlab/data_stream/audit/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/gitlab/data_stream/audit/fields/agent.yml create mode 100644 packages/gitlab/data_stream/audit/fields/base-fields.yml create mode 100644 packages/gitlab/data_stream/audit/fields/beats.yml create mode 100644 packages/gitlab/data_stream/audit/fields/fields.yml create mode 100644 packages/gitlab/data_stream/audit/manifest.yml create mode 100644 packages/gitlab/data_stream/audit/sample_event.json create mode 100644 packages/gitlab/data_stream/auth/_dev/test/pipeline/test-auth.log create mode 100644 packages/gitlab/data_stream/auth/_dev/test/pipeline/test-auth.log-expected.json create mode 100644 packages/gitlab/data_stream/auth/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/gitlab/data_stream/auth/_dev/test/system/test-default-config.yml create mode 100644 packages/gitlab/data_stream/auth/agent/stream/filestream.yml.hbs create mode 100644 packages/gitlab/data_stream/auth/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/gitlab/data_stream/auth/fields/agent.yml create mode 100644 packages/gitlab/data_stream/auth/fields/base-fields.yml create mode 100644 packages/gitlab/data_stream/auth/fields/beats.yml create mode 100644 packages/gitlab/data_stream/auth/fields/fields.yml create mode 100644 packages/gitlab/data_stream/auth/manifest.yml create mode 100644 packages/gitlab/data_stream/auth/sample_event.json create mode 100644 packages/gitlab/img/gitlab-application-dashboard.png create mode 100644 packages/gitlab/img/gitlab-auth-dashboard.png create mode 100644 packages/gitlab/kibana/dashboard/gitlab-6b62c186-77b6-49f2-a820-ca377575bb96.json create mode 100644 packages/gitlab/kibana/dashboard/gitlab-8af75511-17ac-441f-a8e7-b8bd6a341629.json diff --git a/packages/gitlab/_dev/build/docs/README.md b/packages/gitlab/_dev/build/docs/README.md index 78ac5915b4e7..695084d48233 100644 --- a/packages/gitlab/_dev/build/docs/README.md +++ b/packages/gitlab/_dev/build/docs/README.md @@ -4,6 +4,12 @@ This integration is for ingesting logs from [GitLab](https://about.gitlab.com/). - `api`: Collect logs for HTTP requests made to the GitLab API +- `application`: Collect logs for events in GitLab like user creation or project deletion. + +- `audit`: Collect logs for changes to group or project settings and memberships. + +- `auth`: Collect logs for protected paths abusive requests or requests over the Rate Limit. + - `production`: Collect logs for Rails controller requests received from GitLab. See the GitLab [Log system docs](https://docs.gitlab.com/ee/administration/logs/) for more information. @@ -14,7 +20,7 @@ The GitLab module has been developed with and tested against the [community edit ## Setup -Refer to the GitLab documentation for the specific filepath(s) for your instance type. Both are provided as default in the configuration setup, but only one will be needed for use. See [API](https://docs.gitlab.com/ee/administration/logs/#api_jsonlog) and [Production](https://docs.gitlab.com/ee/administration/logs/#production_jsonlog) for details. +Refer to the [GitLab documentation](https://docs.gitlab.com/ee/administration/logs/) for the specific filepath(s) for your instance type. Both are provided as default in the configuration setup, but only one will be needed for use. ## Logs @@ -26,10 +32,34 @@ Collect logs for HTTP requests made to the GitLab API. Check out the [GitLab API {{event "api"}} +### application + +Collect logs for events happening in GitLab like user creation or project deletion. Check out the [GitLab Application log docs](https://docs.gitlab.com/ee/administration/logs/#application_jsonlog) for more information. + +{{fields "application"}} + +{{event "application"}} + +### audit + +Collect logs for changes to group or project settings and memberships. Check out the [GitLab Audit log docs](https://docs.gitlab.com/ee/administration/logs/#audit_jsonlog) for more information. + +{{fields "audit"}} + +{{event "audit"}} + +### auth + +Collect logs for abusive protect paths requests or requests over the Rate Limit. Check out the [GitLab Auth log docs](https://docs.gitlab.com/ee/administration/logs/#auth_jsonlog) for more information. + +{{fields "auth"}} + +{{event "auth"}} + ### production Collect logs for Rails controller requests received from GitLab. Check out the [GitLab production log docs](https://docs.gitlab.com/ee/administration/logs/#production_jsonlog) for more information. {{fields "production"}} -{{event "production"}} \ No newline at end of file +{{event "production"}} diff --git a/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-application.log b/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-application.log new file mode 100644 index 000000000000..44c424c92810 --- /dev/null +++ b/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-application.log @@ -0,0 +1,63 @@ +{"severity":"INFO","time":"2024-05-10T17:49:45.825Z","correlation_id":"01HXHSYJJQNY08JV4JF2B69ZDR","meta.caller_id":"ProjectCacheWorker","meta.remote_ip":"67.43.156.18","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"root/test_1","meta.root_namespace":"root","meta.client_id":"user/1","meta.root_caller_id":"ProjectsController#create","message":"Updating statistics for project 1"} +{"severity":"INFO","time":"2024-05-10T17:49:45.887Z","correlation_id":"01HXHSYJJQNY08JV4JF2B69ZDR","meta.caller_id":"ProjectCacheWorker","meta.remote_ip":"67.43.156.18","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"root/test_1","meta.root_namespace":"root","meta.client_id":"user/1","meta.root_caller_id":"ProjectsController#create","message":"Acquiring lease for project statistics update","model":"ProjectStatistics","model_id":1,"project_id":1,"caller":"refresh!","attributes":["commit_count"]} +{"severity":"INFO","time":"2024-05-10T18:00:02.756Z","meta.caller_id":"StuckCiJobsWorker","correlation_id":"0efdb7c92a2e15a1933b08f030c4033c","meta.root_caller_id":"Cronjob","meta.feature_category":"continuous_integration","meta.client_id":"ip/","message":"Ci::StuckBuilds::DropPendingService: Cleaning pending timed-out builds"} +{"severity":"INFO","time":"2024-05-31T14:32:44.108Z","correlation_id":"01HZ7H2EJ8HC6DDJRA73B7G325","meta.caller_id":"SessionsController#new","meta.remote_ip":"192.168.65.1","meta.feature_category":"system_access","meta.client_id":"ip/192.168.65.1","message":"Failed Login: username=test ip=192.168.65.1"} +{"severity":"INFO","time":"2024-05-31T14:46:28.737Z","correlation_id":"01HZ7HVKDWB6XV6A0WC0G88SAM","meta.caller_id":"ProjectsController#create","meta.remote_ip":"192.168.65.1","meta.feature_category":"groups_and_projects","meta.user":"root","meta.user_id":1,"meta.project":"root/test","meta.root_namespace":"root","meta.client_id":"user/1","message":"Administrator created a new project \"Administrator / test\""} +{"severity":"DEBUG","time":"2024-05-31T14:34:02.607Z","correlation_id":"01HZ7H22HVZQ8KK0RD1NRN9191","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"instance_resiliency","meta.client_id":"ip/192.168.65.1","meta.root_caller_id":"RegistrationsController#create","message":"SilentModeInterceptor did nothing","mail_subject":"GitLab Account Request","silent_mode_enabled":false} +{"severity":"WARN","time":"2025-05-31T14:10:57.307Z","message":"Skipping fixing column default because connections mismatch","event":"partition_manager_validate_and_fix_connection_mismatch","model_connection_name":"ci","shared_connection_name":"main"} +{"severity":"DEBUG","time":"2024-05-31T14:10:57.320Z","message":"Switched database connection","connection_name":"main"} +{"severity":"INFO","time":"2024-05-31T14:10:57.306Z","message":"Checking state of dynamic postgres partitions","table_name":"p_ci_finished_build_ch_sync_events","connection_name":"main"} +{"severity":"INFO","time":"2024-05-31T14:09:53.519Z","message":"started","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":1070,"worker_id":"puma_5","memwd_rss_bytes":1124024320} +{"severity":"INFO","time":"2024-05-31T14:08:21.437Z","message":"Created partition","partition_name":"groups_visits_202411","table_name":"groups_visits"} +{"severity":"INFO","time":"2024-05-31T14:08:18.589Z","method":"with_lock_retries","class":"Gitlab::Database::Partitioning::PartitionManager","message":"Lock timeout is set","current_iteration":1,"lock_timeout_in_ms":100} +{"severity":"INFO","time":"2024-05-31T18:06:02.612Z","correlation_id":"01HZ7X8YS2Q15SM7R3W5B0BBE0","meta.caller_id":"ProjectDestroyWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"root/test","meta.root_namespace":"root","meta.client_id":"user/1","meta.root_caller_id":"Admin::ProjectsController#destroy","message":"Project \"root/test\" was deleted"} +{"severity":"ERROR","time":"2024-05-31T18:06:02.725Z","correlation_id":"01HZ7X8YS2Q15SM7R3W5B0BBE0","meta.caller_id":"Namespaces::ScheduleAggregationWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"root/test","meta.root_namespace":"root","meta.client_id":"user/1","meta.root_caller_id":"Admin::ProjectsController#destroy","message":"Cannot obtain an exclusive lease. There must be another instance already in execution.","lease_key":"namespace:namespaces_root_statistics:1","class_name":"Namespace::AggregationSchedule","lease_timeout":300} +{"severity":"INFO","time":"2024-05-31T18:31:54.810Z","correlation_id":"01HZ7YRD22BX48SC2QDM2A6FD9","meta.caller_id":"SessionsController#destroy","meta.remote_ip":"192.168.65.1","meta.feature_category":"system_access","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","message":"User Logout: username=root ip=192.168.65.1"} +{"severity":"INFO","time":"2024-05-31T18:33:33.869Z","correlation_id":"01HZ7YVD5VY6ZNVA6NHF1T9J64","meta.caller_id":"SessionsController#create","meta.remote_ip":"192.168.65.1","meta.feature_category":"system_access","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","message":"Successful Login: username=root ip=192.168.65.1 method=standard admin=true"} +{"severity":"INFO","time":"2024-05-31T18:42:57.560Z","correlation_id":"01HZ7ZCKYQY435AGDMF9VNPQH3","meta.caller_id":"Admin::UsersController#create","meta.remote_ip":"192.168.65.1","meta.feature_category":"user_management","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","message":"User \"test23\" (test23@elastic.co) was created"} +{"severity":"INFO","time":"2024-05-31T18:50:04.450Z","meta.caller_id":"Users::MigrateRecordsToGhostUserInBatchesWorker","correlation_id":"5f93baade8799c76894a6a0d7f58b17e","meta.root_caller_id":"Cronjob","meta.feature_category":"user_profile","meta.client_id":"ip/","message":"User \"test11\" (test@elastci.co) was removed"} +{"severity":"INFO","time":"2024-05-31T18:55:47.496Z","correlation_id":"01HZ804435TCFSRHNFSDSQRCH7","meta.caller_id":"Admin::GroupsController#create","meta.remote_ip":"192.168.65.1","meta.feature_category":"groups_and_projects","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","message":"Group \"elastic_group\" was created"} +{"severity":"INFO","time":"2024-05-31T19:00:36.255Z","correlation_id":"01HZ80CX760HXSEX1V1EV4EQ4Y","meta.caller_id":"GroupDestroyWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"groups_and_projects","meta.user":"root","meta.user_id":1,"meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Admin::GroupsController#destroy","message":"Group \"elastic_group\" was removed"} +{"severity":"INFO","time":"2024-06-18T20:04:15.408Z","correlation_id":"01J0PF6DFMXRC0JJK70AG21DJD","meta.caller_id":"NewNoteWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::NotesController#create","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.001575333000801038],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0018065980002575088],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0014997659982327605],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0020050060011271853],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.0001678970002103597],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[9.616500028641894e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.008831993000057992],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0005924709985265508],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.000158753000505385],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[0.00012483899990911596],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[0.00023518799935118295]} +{"severity":"INFO","time":"2024-06-18T20:04:15.498Z","correlation_id":"01J0PF6DWC93Z5FVEERX1FD378","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0017553299985593185],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0012755800016748253],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0015011419982329244],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.001014463001411059],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[6.801499876019079e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[5.135600076755509e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.013831343998390366],"mergeability.check_broken_status_service.db_count.values":[4],"mergeability.check_broken_status_service.db_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_count.values":[4],"mergeability.check_broken_status_service.db_main_count.values":[4],"mergeability.check_broken_status_service.db_primary_cached_count.values":[1],"mergeability.check_broken_status_service.db_main_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_duration_s.values":[0.002],"mergeability.check_broken_status_service.db_main_duration_s.values":[0.002],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0002177500009565847],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.001341789000434801],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[5.1011998948524706e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.602499939210247e-05]} +{"severity":"DEBUG","time":"2024-06-18T20:04:15.509Z","correlation_id":"01J0PF6DFMXRC0JJK70AG21DJD","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::NotesController#create","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"INFO","time":"2024-06-18T20:04:15.524Z","correlation_id":"01J0PF6DWACBH5ZE9YQ0MCPMZ6","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[4.907000038656406e-05],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[3.750399991986342e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.9150000045774505e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[4.881899985775817e-05],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[4.986400017514825e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[2.3741000404697843e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0003986040010204306],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00015108200022950768],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[3.758799903152976e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[3.20229992212262e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.526Z","correlation_id":"01J0PF6DWACBH5ZE9YQ0MCPMZ6","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[0.00012831700041715521],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.5898999815108255e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.537Z","correlation_id":"01J0PF6DWC93Z5FVEERX1FD378","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[5.116199827170931e-05],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[3.682300120999571e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.8738999390043318e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[2.336200122954324e-05],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.00016594299995631445],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.409100099815987e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.00035759400088863913],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00041308000072604045],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[5.018800038669724e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[3.627899968705606e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.539Z","correlation_id":"01J0PF6DWC93Z5FVEERX1FD378","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[0.00013433800086204428],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[7.304500104510225e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.638Z","correlation_id":"01J0PF6DXATSY1WKG14E5AY9DB","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.001290085001528496],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0008277010001620511],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.00081826300083776],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0008911850000004051],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[8.318700020026881e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.480300074443221e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0035558199997467455],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0003265769992140122],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.0009492770004726481],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[7.20330008334713e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.640Z","correlation_id":"01J0PF6DXATSY1WKG14E5AY9DB","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[7.920600000943523e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[8.410800001001917e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:20.079Z","correlation_id":"01J0PF6JEDZEGKKZS7SY9AS8JB","meta.caller_id":"Admin::ImpersonationsController#destroy","meta.remote_ip":"192.168.65.1","meta.feature_category":"user_management","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","message":"User root has stopped impersonating tehbooom"} +{"severity":"DEBUG","time":"2024-06-18T20:04:24.903Z","correlation_id":"01J0PF61DFHJATBZ07DXMPSN8P","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::MergeRequests::CreationsController#create","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"INFO","time":"2024-06-18T20:04:30.662Z","correlation_id":"01J0PF6WKVTZ6YN6YPTCC80MN5","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.001599693001480773],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[6.21839990344597e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0015851940006541554],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0014673860005132155],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.00011068899948440958],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[0.0001012800003081793],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0012806729992007604],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0002553019985498395],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[4.7080000513233244e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[5.6508000852772966e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:30.664Z","correlation_id":"01J0PF6WKVTZ6YN6YPTCC80MN5","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[9.064599908015225e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[6.149999899207614e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.358Z","correlation_id":"01J0PF6X4HH2Z330PTK51PS030","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0014578239988622954],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[7.241299863380846e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.001503667999713798],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0014367000003403518],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_duration_s.values":[0.0009999999999999974],"mergeability.check_external_status_checks_passed_service.db_main_duration_s.values":[0.0009999999999999974],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.0001878160001069773],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[4.656999954022467e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0010910850014624884],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0003392040016478859],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[6.757399933121633e-05],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[5.148000127519481e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[8.443600017926656e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.363Z","correlation_id":"01J0PF6X4HH2Z330PTK51PS030","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[4.356899989943486e-05],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[3.6804998671868816e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.8280999686103314e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[2.5719999030116014e-05],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[5.3206000302452594e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.860200013150461e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.00034041499930026475],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00016758599849708844],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[4.1155000872095115e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[3.1416000638273545e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.364Z","correlation_id":"01J0PF6X4HH2Z330PTK51PS030","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[4.923599954054225e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[3.406599898880813e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.532Z","correlation_id":"01J0PF6XH047H0DMNR5C15JM6F","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0016625400003249524],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0013739850001002196],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_duration_s.values":[0.0009999999999999974],"mergeability.check_blocked_by_other_mrs_service.db_main_duration_s.values":[0.0009999999999999974],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.001382516999001382],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0010394329983682837],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[6.348400165734347e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.4071001209667884e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.014927479000107269],"mergeability.check_broken_status_service.db_count.values":[4],"mergeability.check_broken_status_service.db_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_count.values":[4],"mergeability.check_broken_status_service.db_main_count.values":[4],"mergeability.check_broken_status_service.db_primary_cached_count.values":[1],"mergeability.check_broken_status_service.db_main_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_duration_s.values":[0.0020000000000000018],"mergeability.check_broken_status_service.db_main_duration_s.values":[0.0020000000000000018],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00031323000075644813],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.001169152999864309],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[9.540199971524999e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.1372000850969926e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.613Z","correlation_id":"01J0PF6XGYHMX44MYYBPECQ4XJ","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0016400109998357948],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0011764890004997142],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0014940889996069018],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0018368189994362183],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.0001535620012873551],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[0.00010275899876432959],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.01897949699923629],"mergeability.check_broken_status_service.db_count.values":[3],"mergeability.check_broken_status_service.db_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_count.values":[3],"mergeability.check_broken_status_service.db_main_count.values":[3],"mergeability.check_broken_status_service.db_primary_cached_count.values":[1],"mergeability.check_broken_status_service.db_main_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_duration_s.values":[0.008000000000000007],"mergeability.check_broken_status_service.db_main_duration_s.values":[0.008000000000000007],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0002660650006873766],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.0017408149997208966],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[6.467099956353195e-05],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[5.495000004884787e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[3.759500032174401e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.779Z","correlation_id":"01J0PF6XH3HYG6XME2AH39QE41","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0012163039991719415],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[4.1994000639533624e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.000906862000192632],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0008365939993382199],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[4.9557998863747343e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[2.762300027825404e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0005591429999185493],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00014914600069459993],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[4.152400106249843e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[0.00012162100028945133]} +{"severity":"INFO","time":"2024-06-18T20:04:31.781Z","correlation_id":"01J0PF6XH3HYG6XME2AH39QE41","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[4.9434000175097026e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.3714000639738515e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:33.932Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"Projects::MergeRequestsController#merge","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0010096620007971069],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_approved_service.db_primary_duration_s.values":[0.0009999999999999992],"mergeability.check_approved_service.db_main_duration_s.values":[0.0009999999999999992],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0009103609991143458],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0007107120000000577],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.000694705000569229],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[6.712700087518897e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.21039988193661e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.007473622999896179],"mergeability.check_broken_status_service.db_count.values":[3],"mergeability.check_broken_status_service.db_cached_count.values":[2],"mergeability.check_broken_status_service.db_primary_count.values":[3],"mergeability.check_broken_status_service.db_main_count.values":[3],"mergeability.check_broken_status_service.db_primary_cached_count.values":[2],"mergeability.check_broken_status_service.db_main_cached_count.values":[2],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00016434700046374928],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.0010808520000864519],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[4.348999937064946e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:33.934Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"Projects::MergeRequestsController#merge","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[6.230399958440103e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.3760001062764786e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.064Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0011207629995624302],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[4.454400004760828e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.696599949558731e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0007448630003636936],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[6.319600106508005e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[5.0784999984898604e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.007911978000265663],"mergeability.check_broken_status_service.db_count.values":[2],"mergeability.check_broken_status_service.db_cached_count.values":[2],"mergeability.check_broken_status_service.db_primary_count.values":[2],"mergeability.check_broken_status_service.db_main_count.values":[2],"mergeability.check_broken_status_service.db_primary_cached_count.values":[2],"mergeability.check_broken_status_service.db_main_cached_count.values":[2],"mergeability.check_broken_status_service.db_primary_duration_s.values":[0.0010000000000000009],"mergeability.check_broken_status_service.db_main_duration_s.values":[0.0010000000000000009],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00027316600062476937],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.0014669819993287092],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[4.982100108463783e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.065Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[6.718099939462263e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.944399915984832e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.090Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","merge_request_info":"elastic_group/rag_ai!1","message":"elastic_group/rag_ai!1 - Git merge started on JID 779486dd8ab4b2eb1d5cbfa0"} +{"severity":"INFO","time":"2024-06-18T20:04:34.129Z","correlation_id":"01J0PF701WNF519WV5736X2JG3","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.00012764500024786685],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[3.566899977158755e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.824200055329129e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[2.299699917784892e-05],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[5.679499918187503e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[6.304999988060445e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0003532209993863944],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0001927679986692965],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[3.909699989890214e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[2.9288999940035865e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.130Z","correlation_id":"01J0PF701WNF519WV5736X2JG3","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[3.984900104114786e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[3.255299998272676e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.512Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","merge_request_info":"elastic_group/rag_ai!1","message":"elastic_group/rag_ai!1 - Git merge finished on JID 779486dd8ab4b2eb1d5cbfa0 commit 6a5801b7a22ebbd513530d7ebebd981e0164c083"} +{"severity":"DEBUG","time":"2024-06-18T20:04:35.138Z","correlation_id":"01J0PF6DFMXRC0JJK70AG21DJD","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::NotesController#create","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"INFO","time":"2024-06-18T20:04:36.211Z","correlation_id":"01J0PF7237HS2JMQP4WG4KE0DP","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0018615320004755631],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0018126659997506067],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0018034589993476402],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0025557059998391196],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[false],"mergeability.check_open_status_service.duration_s.values":[0.00011969099978159647]} +{"severity":"INFO","time":"2024-06-18T20:04:36.310Z","correlation_id":"01J0PF723CH5SVZQE6KKCEHZ3T","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0023665389999223407],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.001277446999665699],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0012936309994984185],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0011912619993381668],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_duration_s.values":[0.0010000000000000009],"mergeability.check_external_status_checks_passed_service.db_main_duration_s.values":[0.0010000000000000009],"mergeability.check_open_status_service.successful.values":[false],"mergeability.check_open_status_service.duration_s.values":[9.387899990542792e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:36.355Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","merge_request_info":"elastic_group/rag_ai!1","message":"elastic_group/rag_ai!1 - Post merge finished on JID 779486dd8ab4b2eb1d5cbfa0 with state merged"} +{"severity":"DEBUG","time":"2024-06-18T20:04:36.365Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"DEBUG","time":"2024-06-18T20:04:04.467Z","correlation_id":"01J0PF61DFHJATBZ07DXMPSN8P","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::MergeRequests::CreationsController#create","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"DEBUG","time":"2024-06-18T20:06:33.573Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"WARN","time":"2024-06-18T20:09:53.073Z","memwd_max_strikes":5,"memwd_cur_strikes":6,"message":"rss memory limit exceeded","memwd_rss_bytes":1283977216,"memwd_max_rss_bytes":1258291200,"memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":861,"worker_id":"puma_3"} +{"severity":"INFO","time":"2024-06-18T20:09:53.078Z","message":"stopped","memwd_reason":"successfully handled","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":861,"worker_id":"puma_3","memwd_rss_bytes":1283977216} +{"severity":"DEBUG","time":"2024-06-18T20:09:54.202Z","message":"ActiveRecord connection established"} +{"severity":"INFO","time":"2024-06-18T20:09:54.212Z","message":"started","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":2559,"worker_id":"puma_3","memwd_rss_bytes":1110011904} +{"severity":"WARN","time":"2024-06-18T20:10:53.053Z","memwd_max_strikes":5,"memwd_cur_strikes":6,"message":"rss memory limit exceeded","memwd_rss_bytes":1291018240,"memwd_max_rss_bytes":1258291200,"memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":859,"worker_id":"puma_2"} +{"severity":"INFO","time":"2024-06-18T20:10:53.055Z","message":"stopped","memwd_reason":"successfully handled","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":859,"worker_id":"puma_2","memwd_rss_bytes":1291018240} +{"severity":"DEBUG","time":"2024-06-18T20:10:54.038Z","message":"ActiveRecord connection established"} +{"severity":"INFO","time":"2024-06-18T20:10:54.047Z","message":"started","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":2604,"worker_id":"puma_2","memwd_rss_bytes":1110065152} diff --git a/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-audit.log b/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-audit.log new file mode 100644 index 000000000000..7091af742f6e --- /dev/null +++ b/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-audit.log @@ -0,0 +1,2 @@ +{"severity": "INFO","time": "2024-05-10T17:46:49.065Z","correlation_id": "01HXHSTQ5A02PJVVW2H8FZZ77A","meta.caller_id": "SessionsController#create","meta.remote_ip": "67.43.156.18","meta.feature_category": "system_access","meta.user": "root","meta.user_id": 1,"meta.client_id": "user/1","author_id": 1,"author_name": "Administrator","entity_id": 1,"entity_type": "User","created_at": "2024-05-10T17:46:49.058+00:00","with": "standard","target_id": 1,"target_type": "User","target_details": "Administrator"} +{"severity": "INFO","time": "2018-10-17T17:38:22.523Z","author_id": 3,"entity_id": 2,"entity_type": "Project","change": "visibility","from": "Private","to": "Public","author_name": "John Doe4","target_id": 2,"target_type": "Project","target_details": "namespace2/project2"} diff --git a/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-auth.log b/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-auth.log new file mode 100644 index 000000000000..47ca1c46c66e --- /dev/null +++ b/packages/gitlab/_dev/deploy/docker/sample_logs/test-gitlab-auth.log @@ -0,0 +1,5 @@ +{"severity": "ERROR","time": "2023-04-19T22:14:25.893Z","correlation_id": "01GYDSAKAN2SPZPAMJNRWW5H8S","message": "Rack_Attack","env": "blocklist","remote_ip": "67.43.156.18","request_method": "GET","path": "/group/project.git/info/refs?service=git-upload-pack"} +{"severity":"ERROR","time":"2024-05-31T12:24:57.330Z","correlation_id":"01HZ79RFQ9K41JQBXF49J73B49","message":"Rack_Attack","env":"throttle","remote_ip":"192.168.65.1","request_method":"GET","path":"/api/v4/projects","matched":"throttle_unauthenticated_api","status":429,"redis_calls":1,"redis_duration_s":0.000269,"redis_read_bytes":1,"redis_write_bytes":81,"redis_rate_limiting_calls":1,"redis_rate_limiting_duration_s":0.000269,"redis_rate_limiting_read_bytes":1,"redis_rate_limiting_write_bytes":81,"db_count":0,"db_write_count":0,"db_cached_count":0,"db_txn_count":0,"db_replica_txn_count":0,"db_primary_txn_count":0,"db_main_txn_count":0,"db_ci_txn_count":0,"db_main_replica_txn_count":0,"db_ci_replica_txn_count":0,"db_replica_count":0,"db_primary_count":0,"db_main_count":0,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":0,"db_main_cached_count":0,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_txn_duration_s":0.0,"db_primary_txn_duration_s":0.0,"db_main_txn_duration_s":0.0,"db_ci_txn_duration_s":0.0,"db_main_replica_txn_duration_s":0.0,"db_ci_replica_txn_duration_s":0.0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.0,"db_main_duration_s":0.0,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.006771,"mem_objects":3752,"mem_bytes":368312,"mem_mallocs":1283,"mem_total_bytes":518392,"pid":1162,"worker_id":"puma_4","rate_limiting_gates":[]} +{"severity":"ERROR","time":"2024-05-31T12:24:57.729Z","correlation_id":"01HZ79RG3N4NP8RY61SVCKDDND","message":"Rack_Attack","env":"throttle","remote_ip":"192.168.65.1","request_method":"GET","path":"/api/v4/projects","matched":"throttle_unauthenticated_api","status":429,"redis_calls":2,"redis_duration_s":0.000666,"redis_read_bytes":1,"redis_write_bytes":81,"redis_rate_limiting_calls":2,"redis_rate_limiting_duration_s":0.000666,"redis_rate_limiting_read_bytes":1,"redis_rate_limiting_write_bytes":81,"db_count":0,"db_write_count":0,"db_cached_count":0,"db_txn_count":0,"db_replica_txn_count":0,"db_primary_txn_count":0,"db_main_txn_count":0,"db_ci_txn_count":0,"db_main_replica_txn_count":0,"db_ci_replica_txn_count":0,"db_replica_count":0,"db_primary_count":0,"db_main_count":0,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":0,"db_main_cached_count":0,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_txn_duration_s":0.0,"db_primary_txn_duration_s":0.0,"db_main_txn_duration_s":0.0,"db_ci_txn_duration_s":0.0,"db_main_replica_txn_duration_s":0.0,"db_ci_replica_txn_duration_s":0.0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.0,"db_main_duration_s":0.0,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.00834,"mem_objects":3823,"mem_bytes":418584,"mem_mallocs":1694,"mem_total_bytes":571504,"pid":1159,"worker_id":"puma_0","rate_limiting_gates":[]} +{"severity":"ERROR","time":"2024-05-31T12:24:58.112Z","correlation_id":"01HZ79RGFQE862KRM3SVDZ3GSE","message":"Rack_Attack","env":"throttle","remote_ip":"192.168.65.1","request_method":"GET","path":"/api/v4/projects","matched":"throttle_unauthenticated_api","status":429,"redis_calls":1,"redis_duration_s":0.00033,"redis_read_bytes":1,"redis_write_bytes":81,"redis_rate_limiting_calls":1,"redis_rate_limiting_duration_s":0.00033,"redis_rate_limiting_read_bytes":1,"redis_rate_limiting_write_bytes":81,"db_count":0,"db_write_count":0,"db_cached_count":0,"db_txn_count":0,"db_replica_txn_count":0,"db_primary_txn_count":0,"db_main_txn_count":0,"db_ci_txn_count":0,"db_main_replica_txn_count":0,"db_ci_replica_txn_count":0,"db_replica_count":0,"db_primary_count":0,"db_main_count":0,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":0,"db_main_cached_count":0,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_txn_duration_s":0.0,"db_primary_txn_duration_s":0.0,"db_main_txn_duration_s":0.0,"db_ci_txn_duration_s":0.0,"db_main_replica_txn_duration_s":0.0,"db_ci_replica_txn_duration_s":0.0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.0,"db_main_duration_s":0.0,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.007194,"mem_objects":3821,"mem_bytes":368312,"mem_mallocs":1281,"mem_total_bytes":521152,"pid":1142,"worker_id":"puma_2","rate_limiting_gates":[]} +{"severity":"ERROR","time":"2024-05-31T14:39:59.837Z","correlation_id":"01HZ7HFRAEYXN6YYZ45FKBF9B8","message":"Rack_Attack","env":"throttle","remote_ip":"192.168.65.1","request_method":"POST","path":"/api/v4/users?private_token=glpat-xxxxxxxxxxxx&email=test@elastic.co&name=test&username=test","matched":"throttle_authenticated_api","status":429,"user_id":2,"meta.user":"test","redis_calls":1,"redis_duration_s":0.000288,"redis_read_bytes":1,"redis_write_bytes":73,"redis_rate_limiting_calls":1,"redis_rate_limiting_duration_s":0.000288,"redis_rate_limiting_read_bytes":1,"redis_rate_limiting_write_bytes":73,"db_count":3,"db_write_count":0,"db_cached_count":1,"db_txn_count":0,"db_replica_txn_count":0,"db_primary_txn_count":0,"db_main_txn_count":0,"db_ci_txn_count":0,"db_main_replica_txn_count":0,"db_ci_replica_txn_count":0,"db_replica_count":0,"db_primary_count":3,"db_main_count":3,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":1,"db_main_cached_count":1,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_txn_duration_s":0.0,"db_primary_txn_duration_s":0.0,"db_main_txn_duration_s":0.0,"db_ci_txn_duration_s":0.0,"db_main_replica_txn_duration_s":0.0,"db_ci_replica_txn_duration_s":0.0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.001,"db_main_duration_s":0.001,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.011389,"mem_objects":5166,"mem_bytes":448024,"mem_mallocs":1444,"mem_total_bytes":654664,"pid":1068,"worker_id":"puma_4","rate_limiting_gates":[]} diff --git a/packages/gitlab/changelog.yml b/packages/gitlab/changelog.yml index dee57e4dbf53..277f149e1cff 100644 --- a/packages/gitlab/changelog.yml +++ b/packages/gitlab/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: 0.3.0 + changes: + - description: Add application, audit, and auth datastreams + type: enhancement + link: https://github.com/elastic/integrations/pull/10644 - version: "0.2.0" changes: - description: Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/gitlab/data_stream/application/_dev/test/pipeline/test-application.log b/packages/gitlab/data_stream/application/_dev/test/pipeline/test-application.log new file mode 100644 index 000000000000..44c424c92810 --- /dev/null +++ b/packages/gitlab/data_stream/application/_dev/test/pipeline/test-application.log @@ -0,0 +1,63 @@ +{"severity":"INFO","time":"2024-05-10T17:49:45.825Z","correlation_id":"01HXHSYJJQNY08JV4JF2B69ZDR","meta.caller_id":"ProjectCacheWorker","meta.remote_ip":"67.43.156.18","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"root/test_1","meta.root_namespace":"root","meta.client_id":"user/1","meta.root_caller_id":"ProjectsController#create","message":"Updating statistics for project 1"} +{"severity":"INFO","time":"2024-05-10T17:49:45.887Z","correlation_id":"01HXHSYJJQNY08JV4JF2B69ZDR","meta.caller_id":"ProjectCacheWorker","meta.remote_ip":"67.43.156.18","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"root/test_1","meta.root_namespace":"root","meta.client_id":"user/1","meta.root_caller_id":"ProjectsController#create","message":"Acquiring lease for project statistics update","model":"ProjectStatistics","model_id":1,"project_id":1,"caller":"refresh!","attributes":["commit_count"]} +{"severity":"INFO","time":"2024-05-10T18:00:02.756Z","meta.caller_id":"StuckCiJobsWorker","correlation_id":"0efdb7c92a2e15a1933b08f030c4033c","meta.root_caller_id":"Cronjob","meta.feature_category":"continuous_integration","meta.client_id":"ip/","message":"Ci::StuckBuilds::DropPendingService: Cleaning pending timed-out builds"} +{"severity":"INFO","time":"2024-05-31T14:32:44.108Z","correlation_id":"01HZ7H2EJ8HC6DDJRA73B7G325","meta.caller_id":"SessionsController#new","meta.remote_ip":"192.168.65.1","meta.feature_category":"system_access","meta.client_id":"ip/192.168.65.1","message":"Failed Login: username=test ip=192.168.65.1"} +{"severity":"INFO","time":"2024-05-31T14:46:28.737Z","correlation_id":"01HZ7HVKDWB6XV6A0WC0G88SAM","meta.caller_id":"ProjectsController#create","meta.remote_ip":"192.168.65.1","meta.feature_category":"groups_and_projects","meta.user":"root","meta.user_id":1,"meta.project":"root/test","meta.root_namespace":"root","meta.client_id":"user/1","message":"Administrator created a new project \"Administrator / test\""} +{"severity":"DEBUG","time":"2024-05-31T14:34:02.607Z","correlation_id":"01HZ7H22HVZQ8KK0RD1NRN9191","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"instance_resiliency","meta.client_id":"ip/192.168.65.1","meta.root_caller_id":"RegistrationsController#create","message":"SilentModeInterceptor did nothing","mail_subject":"GitLab Account Request","silent_mode_enabled":false} +{"severity":"WARN","time":"2025-05-31T14:10:57.307Z","message":"Skipping fixing column default because connections mismatch","event":"partition_manager_validate_and_fix_connection_mismatch","model_connection_name":"ci","shared_connection_name":"main"} +{"severity":"DEBUG","time":"2024-05-31T14:10:57.320Z","message":"Switched database connection","connection_name":"main"} +{"severity":"INFO","time":"2024-05-31T14:10:57.306Z","message":"Checking state of dynamic postgres partitions","table_name":"p_ci_finished_build_ch_sync_events","connection_name":"main"} +{"severity":"INFO","time":"2024-05-31T14:09:53.519Z","message":"started","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":1070,"worker_id":"puma_5","memwd_rss_bytes":1124024320} +{"severity":"INFO","time":"2024-05-31T14:08:21.437Z","message":"Created partition","partition_name":"groups_visits_202411","table_name":"groups_visits"} +{"severity":"INFO","time":"2024-05-31T14:08:18.589Z","method":"with_lock_retries","class":"Gitlab::Database::Partitioning::PartitionManager","message":"Lock timeout is set","current_iteration":1,"lock_timeout_in_ms":100} +{"severity":"INFO","time":"2024-05-31T18:06:02.612Z","correlation_id":"01HZ7X8YS2Q15SM7R3W5B0BBE0","meta.caller_id":"ProjectDestroyWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"root/test","meta.root_namespace":"root","meta.client_id":"user/1","meta.root_caller_id":"Admin::ProjectsController#destroy","message":"Project \"root/test\" was deleted"} +{"severity":"ERROR","time":"2024-05-31T18:06:02.725Z","correlation_id":"01HZ7X8YS2Q15SM7R3W5B0BBE0","meta.caller_id":"Namespaces::ScheduleAggregationWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"root/test","meta.root_namespace":"root","meta.client_id":"user/1","meta.root_caller_id":"Admin::ProjectsController#destroy","message":"Cannot obtain an exclusive lease. There must be another instance already in execution.","lease_key":"namespace:namespaces_root_statistics:1","class_name":"Namespace::AggregationSchedule","lease_timeout":300} +{"severity":"INFO","time":"2024-05-31T18:31:54.810Z","correlation_id":"01HZ7YRD22BX48SC2QDM2A6FD9","meta.caller_id":"SessionsController#destroy","meta.remote_ip":"192.168.65.1","meta.feature_category":"system_access","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","message":"User Logout: username=root ip=192.168.65.1"} +{"severity":"INFO","time":"2024-05-31T18:33:33.869Z","correlation_id":"01HZ7YVD5VY6ZNVA6NHF1T9J64","meta.caller_id":"SessionsController#create","meta.remote_ip":"192.168.65.1","meta.feature_category":"system_access","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","message":"Successful Login: username=root ip=192.168.65.1 method=standard admin=true"} +{"severity":"INFO","time":"2024-05-31T18:42:57.560Z","correlation_id":"01HZ7ZCKYQY435AGDMF9VNPQH3","meta.caller_id":"Admin::UsersController#create","meta.remote_ip":"192.168.65.1","meta.feature_category":"user_management","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","message":"User \"test23\" (test23@elastic.co) was created"} +{"severity":"INFO","time":"2024-05-31T18:50:04.450Z","meta.caller_id":"Users::MigrateRecordsToGhostUserInBatchesWorker","correlation_id":"5f93baade8799c76894a6a0d7f58b17e","meta.root_caller_id":"Cronjob","meta.feature_category":"user_profile","meta.client_id":"ip/","message":"User \"test11\" (test@elastci.co) was removed"} +{"severity":"INFO","time":"2024-05-31T18:55:47.496Z","correlation_id":"01HZ804435TCFSRHNFSDSQRCH7","meta.caller_id":"Admin::GroupsController#create","meta.remote_ip":"192.168.65.1","meta.feature_category":"groups_and_projects","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","message":"Group \"elastic_group\" was created"} +{"severity":"INFO","time":"2024-05-31T19:00:36.255Z","correlation_id":"01HZ80CX760HXSEX1V1EV4EQ4Y","meta.caller_id":"GroupDestroyWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"groups_and_projects","meta.user":"root","meta.user_id":1,"meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Admin::GroupsController#destroy","message":"Group \"elastic_group\" was removed"} +{"severity":"INFO","time":"2024-06-18T20:04:15.408Z","correlation_id":"01J0PF6DFMXRC0JJK70AG21DJD","meta.caller_id":"NewNoteWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::NotesController#create","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.001575333000801038],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0018065980002575088],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0014997659982327605],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0020050060011271853],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.0001678970002103597],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[9.616500028641894e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.008831993000057992],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0005924709985265508],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.000158753000505385],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[0.00012483899990911596],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[0.00023518799935118295]} +{"severity":"INFO","time":"2024-06-18T20:04:15.498Z","correlation_id":"01J0PF6DWC93Z5FVEERX1FD378","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0017553299985593185],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0012755800016748253],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0015011419982329244],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.001014463001411059],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[6.801499876019079e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[5.135600076755509e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.013831343998390366],"mergeability.check_broken_status_service.db_count.values":[4],"mergeability.check_broken_status_service.db_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_count.values":[4],"mergeability.check_broken_status_service.db_main_count.values":[4],"mergeability.check_broken_status_service.db_primary_cached_count.values":[1],"mergeability.check_broken_status_service.db_main_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_duration_s.values":[0.002],"mergeability.check_broken_status_service.db_main_duration_s.values":[0.002],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0002177500009565847],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.001341789000434801],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[5.1011998948524706e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.602499939210247e-05]} +{"severity":"DEBUG","time":"2024-06-18T20:04:15.509Z","correlation_id":"01J0PF6DFMXRC0JJK70AG21DJD","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::NotesController#create","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"INFO","time":"2024-06-18T20:04:15.524Z","correlation_id":"01J0PF6DWACBH5ZE9YQ0MCPMZ6","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[4.907000038656406e-05],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[3.750399991986342e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.9150000045774505e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[4.881899985775817e-05],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[4.986400017514825e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[2.3741000404697843e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0003986040010204306],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00015108200022950768],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[3.758799903152976e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[3.20229992212262e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.526Z","correlation_id":"01J0PF6DWACBH5ZE9YQ0MCPMZ6","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[0.00012831700041715521],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.5898999815108255e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.537Z","correlation_id":"01J0PF6DWC93Z5FVEERX1FD378","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[5.116199827170931e-05],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[3.682300120999571e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.8738999390043318e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[2.336200122954324e-05],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.00016594299995631445],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.409100099815987e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.00035759400088863913],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00041308000072604045],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[5.018800038669724e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[3.627899968705606e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.539Z","correlation_id":"01J0PF6DWC93Z5FVEERX1FD378","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[0.00013433800086204428],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[7.304500104510225e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.638Z","correlation_id":"01J0PF6DXATSY1WKG14E5AY9DB","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.001290085001528496],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0008277010001620511],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.00081826300083776],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0008911850000004051],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[8.318700020026881e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.480300074443221e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0035558199997467455],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0003265769992140122],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.0009492770004726481],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[7.20330008334713e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:15.640Z","correlation_id":"01J0PF6DXATSY1WKG14E5AY9DB","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[7.920600000943523e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[8.410800001001917e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:20.079Z","correlation_id":"01J0PF6JEDZEGKKZS7SY9AS8JB","meta.caller_id":"Admin::ImpersonationsController#destroy","meta.remote_ip":"192.168.65.1","meta.feature_category":"user_management","meta.user":"tehbooom","meta.user_id":34,"meta.client_id":"user/34","message":"User root has stopped impersonating tehbooom"} +{"severity":"DEBUG","time":"2024-06-18T20:04:24.903Z","correlation_id":"01J0PF61DFHJATBZ07DXMPSN8P","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::MergeRequests::CreationsController#create","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"INFO","time":"2024-06-18T20:04:30.662Z","correlation_id":"01J0PF6WKVTZ6YN6YPTCC80MN5","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.001599693001480773],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[6.21839990344597e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0015851940006541554],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0014673860005132155],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.00011068899948440958],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[0.0001012800003081793],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0012806729992007604],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0002553019985498395],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[4.7080000513233244e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[5.6508000852772966e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:30.664Z","correlation_id":"01J0PF6WKVTZ6YN6YPTCC80MN5","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[9.064599908015225e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[6.149999899207614e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.358Z","correlation_id":"01J0PF6X4HH2Z330PTK51PS030","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0014578239988622954],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[7.241299863380846e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.001503667999713798],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0014367000003403518],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_duration_s.values":[0.0009999999999999974],"mergeability.check_external_status_checks_passed_service.db_main_duration_s.values":[0.0009999999999999974],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.0001878160001069773],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[4.656999954022467e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0010910850014624884],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0003392040016478859],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[6.757399933121633e-05],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[5.148000127519481e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[8.443600017926656e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.363Z","correlation_id":"01J0PF6X4HH2Z330PTK51PS030","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[4.356899989943486e-05],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[3.6804998671868816e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.8280999686103314e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[2.5719999030116014e-05],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[5.3206000302452594e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.860200013150461e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.00034041499930026475],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00016758599849708844],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[4.1155000872095115e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[3.1416000638273545e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.364Z","correlation_id":"01J0PF6X4HH2Z330PTK51PS030","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[4.923599954054225e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[3.406599898880813e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.532Z","correlation_id":"01J0PF6XH047H0DMNR5C15JM6F","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0016625400003249524],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0013739850001002196],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_duration_s.values":[0.0009999999999999974],"mergeability.check_blocked_by_other_mrs_service.db_main_duration_s.values":[0.0009999999999999974],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.001382516999001382],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0010394329983682837],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[6.348400165734347e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.4071001209667884e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.014927479000107269],"mergeability.check_broken_status_service.db_count.values":[4],"mergeability.check_broken_status_service.db_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_count.values":[4],"mergeability.check_broken_status_service.db_main_count.values":[4],"mergeability.check_broken_status_service.db_primary_cached_count.values":[1],"mergeability.check_broken_status_service.db_main_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_duration_s.values":[0.0020000000000000018],"mergeability.check_broken_status_service.db_main_duration_s.values":[0.0020000000000000018],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00031323000075644813],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.001169152999864309],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[9.540199971524999e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.1372000850969926e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.613Z","correlation_id":"01J0PF6XGYHMX44MYYBPECQ4XJ","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0016400109998357948],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0011764890004997142],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0014940889996069018],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0018368189994362183],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[0.0001535620012873551],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[0.00010275899876432959],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.01897949699923629],"mergeability.check_broken_status_service.db_count.values":[3],"mergeability.check_broken_status_service.db_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_count.values":[3],"mergeability.check_broken_status_service.db_main_count.values":[3],"mergeability.check_broken_status_service.db_primary_cached_count.values":[1],"mergeability.check_broken_status_service.db_main_cached_count.values":[1],"mergeability.check_broken_status_service.db_primary_duration_s.values":[0.008000000000000007],"mergeability.check_broken_status_service.db_main_duration_s.values":[0.008000000000000007],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0002660650006873766],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.0017408149997208966],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[6.467099956353195e-05],"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[5.495000004884787e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[3.759500032174401e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:31.779Z","correlation_id":"01J0PF6XH3HYG6XME2AH39QE41","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0012163039991719415],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[4.1994000639533624e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.000906862000192632],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0008365939993382199],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[4.9557998863747343e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[2.762300027825404e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0005591429999185493],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00014914600069459993],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[4.152400106249843e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[0.00012162100028945133]} +{"severity":"INFO","time":"2024-06-18T20:04:31.781Z","correlation_id":"01J0PF6XH3HYG6XME2AH39QE41","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[4.9434000175097026e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.3714000639738515e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:33.932Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"Projects::MergeRequestsController#merge","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0010096620007971069],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_approved_service.db_primary_duration_s.values":[0.0009999999999999992],"mergeability.check_approved_service.db_main_duration_s.values":[0.0009999999999999992],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0009103609991143458],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0007107120000000577],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.000694705000569229],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[6.712700087518897e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[3.21039988193661e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.007473622999896179],"mergeability.check_broken_status_service.db_count.values":[3],"mergeability.check_broken_status_service.db_cached_count.values":[2],"mergeability.check_broken_status_service.db_primary_count.values":[3],"mergeability.check_broken_status_service.db_main_count.values":[3],"mergeability.check_broken_status_service.db_primary_cached_count.values":[2],"mergeability.check_broken_status_service.db_main_cached_count.values":[2],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00016434700046374928],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.0010808520000864519],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[4.348999937064946e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:33.934Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"Projects::MergeRequestsController#merge","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[6.230399958440103e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.3760001062764786e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.064Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0011207629995624302],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[4.454400004760828e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.696599949558731e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0007448630003636936],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[6.319600106508005e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[5.0784999984898604e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.007911978000265663],"mergeability.check_broken_status_service.db_count.values":[2],"mergeability.check_broken_status_service.db_cached_count.values":[2],"mergeability.check_broken_status_service.db_primary_count.values":[2],"mergeability.check_broken_status_service.db_main_count.values":[2],"mergeability.check_broken_status_service.db_primary_cached_count.values":[2],"mergeability.check_broken_status_service.db_main_cached_count.values":[2],"mergeability.check_broken_status_service.db_primary_duration_s.values":[0.0010000000000000009],"mergeability.check_broken_status_service.db_main_duration_s.values":[0.0010000000000000009],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.00027316600062476937],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[0.0014669819993287092],"mergeability.check_discussions_status_service.db_count.values":[1],"mergeability.check_discussions_status_service.db_cached_count.values":[1],"mergeability.check_discussions_status_service.db_primary_count.values":[1],"mergeability.check_discussions_status_service.db_main_count.values":[1],"mergeability.check_discussions_status_service.db_primary_cached_count.values":[1],"mergeability.check_discussions_status_service.db_main_cached_count.values":[1],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[4.982100108463783e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.065Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[6.718099939462263e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[4.944399915984832e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.090Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","merge_request_info":"elastic_group/rag_ai!1","message":"elastic_group/rag_ai!1 - Git merge started on JID 779486dd8ab4b2eb1d5cbfa0"} +{"severity":"INFO","time":"2024-06-18T20:04:34.129Z","correlation_id":"01J0PF701WNF519WV5736X2JG3","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.00012764500024786685],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[3.566899977158755e-05],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[2.824200055329129e-05],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[2.299699917784892e-05],"mergeability.check_open_status_service.successful.values":[true],"mergeability.check_open_status_service.duration_s.values":[5.679499918187503e-05],"mergeability.check_draft_status_service.successful.values":[true],"mergeability.check_draft_status_service.duration_s.values":[6.304999988060445e-05],"mergeability.check_broken_status_service.successful.values":[true],"mergeability.check_broken_status_service.duration_s.values":[0.0003532209993863944],"mergeability.check_commits_status_service.successful.values":[false],"mergeability.check_commits_status_service.duration_s.values":[0.0001927679986692965],"mergeability.check_discussions_status_service.successful.values":[false],"mergeability.check_discussions_status_service.duration_s.values":[3.909699989890214e-05],"mergeability.check_ci_status_service.successful.values":[false],"mergeability.check_ci_status_service.duration_s.values":[2.9288999940035865e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.130Z","correlation_id":"01J0PF701WNF519WV5736X2JG3","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_conflict_status_service.successful.values":[true],"mergeability.check_conflict_status_service.duration_s.values":[3.984900104114786e-05],"mergeability.check_rebase_status_service.successful.values":[false],"mergeability.check_rebase_status_service.duration_s.values":[3.255299998272676e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:34.512Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","merge_request_info":"elastic_group/rag_ai!1","message":"elastic_group/rag_ai!1 - Git merge finished on JID 779486dd8ab4b2eb1d5cbfa0 commit 6a5801b7a22ebbd513530d7ebebd981e0164c083"} +{"severity":"DEBUG","time":"2024-06-18T20:04:35.138Z","correlation_id":"01J0PF6DFMXRC0JJK70AG21DJD","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::NotesController#create","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"INFO","time":"2024-06-18T20:04:36.211Z","correlation_id":"01J0PF7237HS2JMQP4WG4KE0DP","meta.caller_id":"GraphqlController#execute","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0018615320004755631],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.0018126659997506067],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0018034589993476402],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0025557059998391196],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_open_status_service.successful.values":[false],"mergeability.check_open_status_service.duration_s.values":[0.00011969099978159647]} +{"severity":"INFO","time":"2024-06-18T20:04:36.310Z","correlation_id":"01J0PF723CH5SVZQE6KKCEHZ3T","meta.caller_id":"Projects::MergeRequests::ContentController#widget","meta.remote_ip":"192.168.65.1","meta.feature_category":"code_review_workflow","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","mergeability_project_id":1,"mergeability_merge_request_id":1,"mergeability.check_approved_service.successful.values":[false],"mergeability.check_approved_service.duration_s.values":[0.0023665389999223407],"mergeability.check_approved_service.db_count.values":[1],"mergeability.check_approved_service.db_cached_count.values":[1],"mergeability.check_approved_service.db_primary_count.values":[1],"mergeability.check_approved_service.db_main_count.values":[1],"mergeability.check_approved_service.db_primary_cached_count.values":[1],"mergeability.check_approved_service.db_main_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.successful.values":[false],"mergeability.check_blocked_by_other_mrs_service.duration_s.values":[0.001277446999665699],"mergeability.check_blocked_by_other_mrs_service.db_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values":[1],"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values":[1],"mergeability.check_jira_status_service.successful.values":[false],"mergeability.check_jira_status_service.duration_s.values":[0.0012936309994984185],"mergeability.check_jira_status_service.db_count.values":[1],"mergeability.check_jira_status_service.db_cached_count.values":[1],"mergeability.check_jira_status_service.db_primary_count.values":[1],"mergeability.check_jira_status_service.db_main_count.values":[1],"mergeability.check_jira_status_service.db_primary_cached_count.values":[1],"mergeability.check_jira_status_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.successful.values":[false],"mergeability.check_external_status_checks_passed_service.duration_s.values":[0.0011912619993381668],"mergeability.check_external_status_checks_passed_service.db_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values":[1],"mergeability.check_external_status_checks_passed_service.db_primary_duration_s.values":[0.0010000000000000009],"mergeability.check_external_status_checks_passed_service.db_main_duration_s.values":[0.0010000000000000009],"mergeability.check_open_status_service.successful.values":[false],"mergeability.check_open_status_service.duration_s.values":[9.387899990542792e-05]} +{"severity":"INFO","time":"2024-06-18T20:04:36.355Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"MergeWorker","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","merge_request_info":"elastic_group/rag_ai!1","message":"elastic_group/rag_ai!1 - Post merge finished on JID 779486dd8ab4b2eb1d5cbfa0 with state merged"} +{"severity":"DEBUG","time":"2024-06-18T20:04:36.365Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"DEBUG","time":"2024-06-18T20:04:04.467Z","correlation_id":"01J0PF61DFHJATBZ07DXMPSN8P","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"team_planning","meta.user":"tehbooom","meta.user_id":34,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/34","meta.root_caller_id":"Projects::MergeRequests::CreationsController#create","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"DEBUG","time":"2024-06-18T20:06:33.573Z","correlation_id":"01J0PF6ZXPA5NGZGY6PW89JXYE","meta.caller_id":"ActionMailer::MailDeliveryJob","meta.remote_ip":"192.168.65.1","meta.feature_category":"source_code_management","meta.user":"root","meta.user_id":1,"meta.project":"elastic_group/rag_ai","meta.root_namespace":"elastic_group","meta.client_id":"user/1","meta.root_caller_id":"Projects::MergeRequestsController#merge","message":"SilentModeInterceptor did nothing","mail_subject":"Re: rag_ai | Added a test file (!1)","silent_mode_enabled":false} +{"severity":"WARN","time":"2024-06-18T20:09:53.073Z","memwd_max_strikes":5,"memwd_cur_strikes":6,"message":"rss memory limit exceeded","memwd_rss_bytes":1283977216,"memwd_max_rss_bytes":1258291200,"memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":861,"worker_id":"puma_3"} +{"severity":"INFO","time":"2024-06-18T20:09:53.078Z","message":"stopped","memwd_reason":"successfully handled","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":861,"worker_id":"puma_3","memwd_rss_bytes":1283977216} +{"severity":"DEBUG","time":"2024-06-18T20:09:54.202Z","message":"ActiveRecord connection established"} +{"severity":"INFO","time":"2024-06-18T20:09:54.212Z","message":"started","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":2559,"worker_id":"puma_3","memwd_rss_bytes":1110011904} +{"severity":"WARN","time":"2024-06-18T20:10:53.053Z","memwd_max_strikes":5,"memwd_cur_strikes":6,"message":"rss memory limit exceeded","memwd_rss_bytes":1291018240,"memwd_max_rss_bytes":1258291200,"memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":859,"worker_id":"puma_2"} +{"severity":"INFO","time":"2024-06-18T20:10:53.055Z","message":"stopped","memwd_reason":"successfully handled","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":859,"worker_id":"puma_2","memwd_rss_bytes":1291018240} +{"severity":"DEBUG","time":"2024-06-18T20:10:54.038Z","message":"ActiveRecord connection established"} +{"severity":"INFO","time":"2024-06-18T20:10:54.047Z","message":"started","memwd_handler_class":"Gitlab::Memory::Watchdog::Handlers::PumaHandler","memwd_sleep_time_s":60,"pid":2604,"worker_id":"puma_2","memwd_rss_bytes":1110065152} diff --git a/packages/gitlab/data_stream/application/_dev/test/pipeline/test-application.log-expected.json b/packages/gitlab/data_stream/application/_dev/test/pipeline/test-application.log-expected.json new file mode 100644 index 000000000000..283464f6b07f --- /dev/null +++ b/packages/gitlab/data_stream/application/_dev/test/pipeline/test-application.log-expected.json @@ -0,0 +1,4058 @@ +{ + "expected": [ + { + "@timestamp": "2024-05-10T17:49:45.825Z", + "client": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HXHSYJJQNY08JV4JF2B69ZDR", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-10T17:49:45.825Z\",\"correlation_id\":\"01HXHSYJJQNY08JV4JF2B69ZDR\",\"meta.caller_id\":\"ProjectCacheWorker\",\"meta.remote_ip\":\"67.43.156.18\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"root/test_1\",\"meta.root_namespace\":\"root\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"ProjectsController#create\",\"message\":\"Updating statistics for project 1\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "Updating statistics for project 1", + "meta": { + "caller_id": "ProjectCacheWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "root/test_1", + "root_caller_id": "ProjectsController#create", + "root_namespace": "root" + } + } + }, + "related": { + "ip": [ + "67.43.156.18" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-05-10T17:49:45.887Z", + "client": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HXHSYJJQNY08JV4JF2B69ZDR", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-10T17:49:45.887Z\",\"correlation_id\":\"01HXHSYJJQNY08JV4JF2B69ZDR\",\"meta.caller_id\":\"ProjectCacheWorker\",\"meta.remote_ip\":\"67.43.156.18\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"root/test_1\",\"meta.root_namespace\":\"root\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"ProjectsController#create\",\"message\":\"Acquiring lease for project statistics update\",\"model\":\"ProjectStatistics\",\"model_id\":1,\"project_id\":1,\"caller\":\"refresh!\",\"attributes\":[\"commit_count\"]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "attributes": [ + "commit_count" + ], + "caller": "refresh!", + "message": "Acquiring lease for project statistics update", + "meta": { + "caller_id": "ProjectCacheWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "root/test_1", + "root_caller_id": "ProjectsController#create", + "root_namespace": "root" + }, + "model": "ProjectStatistics", + "model_id": 1, + "project_id": 1 + } + }, + "related": { + "ip": [ + "67.43.156.18" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-05-10T18:00:02.756Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "0efdb7c92a2e15a1933b08f030c4033c", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-10T18:00:02.756Z\",\"meta.caller_id\":\"StuckCiJobsWorker\",\"correlation_id\":\"0efdb7c92a2e15a1933b08f030c4033c\",\"meta.root_caller_id\":\"Cronjob\",\"meta.feature_category\":\"continuous_integration\",\"meta.client_id\":\"ip/\",\"message\":\"Ci::StuckBuilds::DropPendingService: Cleaning pending timed-out builds\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "Ci::StuckBuilds::DropPendingService: Cleaning pending timed-out builds", + "meta": { + "caller_id": "StuckCiJobsWorker", + "client_id": "ip/", + "feature_category": "continuous_integration", + "root_caller_id": "Cronjob" + } + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-05-31T14:32:44.108Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "authentication" + ], + "id": "01HZ7H2EJ8HC6DDJRA73B7G325", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T14:32:44.108Z\",\"correlation_id\":\"01HZ7H2EJ8HC6DDJRA73B7G325\",\"meta.caller_id\":\"SessionsController#new\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"system_access\",\"meta.client_id\":\"ip/192.168.65.1\",\"message\":\"Failed Login: username=test ip=192.168.65.1\"}", + "outcome": "failure", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "Failed Login: username=test ip=192.168.65.1", + "meta": { + "caller_id": "SessionsController#new", + "client_id": "ip/192.168.65.1", + "feature_category": "system_access" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "name": "test" + } + }, + { + "@timestamp": "2024-05-31T14:46:28.737Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HZ7HVKDWB6XV6A0WC0G88SAM", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T14:46:28.737Z\",\"correlation_id\":\"01HZ7HVKDWB6XV6A0WC0G88SAM\",\"meta.caller_id\":\"ProjectsController#create\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"groups_and_projects\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"root/test\",\"meta.root_namespace\":\"root\",\"meta.client_id\":\"user/1\",\"message\":\"Administrator created a new project \\\"Administrator / test\\\"\"}", + "severity": 1, + "type": [ + "creation", + "info" + ] + }, + "gitlab": { + "application": { + "message": "Administrator created a new project \"Administrator / test\"", + "meta": { + "caller_id": "ProjectsController#create", + "client_id": "user/1", + "feature_category": "groups_and_projects", + "project": "root/test", + "root_namespace": "root" + }, + "project_name": "Administrator / test" + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "Administrator" + } + }, + { + "@timestamp": "2024-05-31T14:34:02.607Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HZ7H22HVZQ8KK0RD1NRN9191", + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-05-31T14:34:02.607Z\",\"correlation_id\":\"01HZ7H22HVZQ8KK0RD1NRN9191\",\"meta.caller_id\":\"ActionMailer::MailDeliveryJob\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"instance_resiliency\",\"meta.client_id\":\"ip/192.168.65.1\",\"meta.root_caller_id\":\"RegistrationsController#create\",\"message\":\"SilentModeInterceptor did nothing\",\"mail_subject\":\"GitLab Account Request\",\"silent_mode_enabled\":false}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mail_subject": "GitLab Account Request", + "message": "SilentModeInterceptor did nothing", + "meta": { + "caller_id": "ActionMailer::MailDeliveryJob", + "client_id": "ip/192.168.65.1", + "feature_category": "instance_resiliency", + "root_caller_id": "RegistrationsController#create" + }, + "silent_mode_enabled": false + } + }, + "related": { + "ip": [ + "192.168.65.1" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2025-05-31T14:10:57.307Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"WARN\",\"time\":\"2025-05-31T14:10:57.307Z\",\"message\":\"Skipping fixing column default because connections mismatch\",\"event\":\"partition_manager_validate_and_fix_connection_mismatch\",\"model_connection_name\":\"ci\",\"shared_connection_name\":\"main\"}", + "severity": 2, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "event": "partition_manager_validate_and_fix_connection_mismatch", + "message": "Skipping fixing column default because connections mismatch", + "model_connection_name": "ci", + "shared_connection_name": "main" + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-05-31T14:10:57.320Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-05-31T14:10:57.320Z\",\"message\":\"Switched database connection\",\"connection_name\":\"main\"}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "connection_name": "main", + "message": "Switched database connection" + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-05-31T14:10:57.306Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T14:10:57.306Z\",\"message\":\"Checking state of dynamic postgres partitions\",\"table_name\":\"p_ci_finished_build_ch_sync_events\",\"connection_name\":\"main\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "connection_name": "main", + "message": "Checking state of dynamic postgres partitions", + "table_name": "p_ci_finished_build_ch_sync_events" + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-05-31T14:09:53.519Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T14:09:53.519Z\",\"message\":\"started\",\"memwd_handler_class\":\"Gitlab::Memory::Watchdog::Handlers::PumaHandler\",\"memwd_sleep_time_s\":60,\"pid\":1070,\"worker_id\":\"puma_5\",\"memwd_rss_bytes\":1124024320}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "memwd_handler_class": "Gitlab::Memory::Watchdog::Handlers::PumaHandler", + "memwd_rss_bytes": 1124024320, + "memwd_sleep_time_s": 60, + "message": "started", + "worker_id": "puma_5" + } + }, + "process": { + "pid": 1070 + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-05-31T14:08:21.437Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T14:08:21.437Z\",\"message\":\"Created partition\",\"partition_name\":\"groups_visits_202411\",\"table_name\":\"groups_visits\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "Created partition", + "partition_name": "groups_visits_202411", + "table_name": "groups_visits" + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-05-31T14:08:18.589Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T14:08:18.589Z\",\"method\":\"with_lock_retries\",\"class\":\"Gitlab::Database::Partitioning::PartitionManager\",\"message\":\"Lock timeout is set\",\"current_iteration\":1,\"lock_timeout_in_ms\":100}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "class": "Gitlab::Database::Partitioning::PartitionManager", + "current_iteration": 1, + "lock_timeout_in_ms": 100, + "message": "Lock timeout is set", + "method": "with_lock_retries" + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-05-31T18:06:02.612Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HZ7X8YS2Q15SM7R3W5B0BBE0", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T18:06:02.612Z\",\"correlation_id\":\"01HZ7X8YS2Q15SM7R3W5B0BBE0\",\"meta.caller_id\":\"ProjectDestroyWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"root/test\",\"meta.root_namespace\":\"root\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Admin::ProjectsController#destroy\",\"message\":\"Project \\\"root/test\\\" was deleted\"}", + "severity": 1, + "type": [ + "deletion", + "info" + ] + }, + "gitlab": { + "application": { + "message": "Project \"root/test\" was deleted", + "meta": { + "caller_id": "ProjectDestroyWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "root/test", + "root_caller_id": "Admin::ProjectsController#destroy", + "root_namespace": "root" + }, + "project_name": "root/test" + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-05-31T18:06:02.725Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HZ7X8YS2Q15SM7R3W5B0BBE0", + "original": "{\"severity\":\"ERROR\",\"time\":\"2024-05-31T18:06:02.725Z\",\"correlation_id\":\"01HZ7X8YS2Q15SM7R3W5B0BBE0\",\"meta.caller_id\":\"Namespaces::ScheduleAggregationWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"root/test\",\"meta.root_namespace\":\"root\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Admin::ProjectsController#destroy\",\"message\":\"Cannot obtain an exclusive lease. There must be another instance already in execution.\",\"lease_key\":\"namespace:namespaces_root_statistics:1\",\"class_name\":\"Namespace::AggregationSchedule\",\"lease_timeout\":300}", + "severity": 3, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "class_name": "Namespace::AggregationSchedule", + "lease_key": "namespace:namespaces_root_statistics:1", + "lease_timeout": 300, + "message": "Cannot obtain an exclusive lease. There must be another instance already in execution.", + "meta": { + "caller_id": "Namespaces::ScheduleAggregationWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "root/test", + "root_caller_id": "Admin::ProjectsController#destroy", + "root_namespace": "root" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-05-31T18:31:54.810Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HZ7YRD22BX48SC2QDM2A6FD9", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T18:31:54.810Z\",\"correlation_id\":\"01HZ7YRD22BX48SC2QDM2A6FD9\",\"meta.caller_id\":\"SessionsController#destroy\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"system_access\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"message\":\"User Logout: username=root ip=192.168.65.1\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "User Logout: username=root ip=192.168.65.1", + "meta": { + "caller_id": "SessionsController#destroy", + "client_id": "user/1", + "feature_category": "system_access" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-05-31T18:33:33.869Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "authentication" + ], + "id": "01HZ7YVD5VY6ZNVA6NHF1T9J64", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T18:33:33.869Z\",\"correlation_id\":\"01HZ7YVD5VY6ZNVA6NHF1T9J64\",\"meta.caller_id\":\"SessionsController#create\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"system_access\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"message\":\"Successful Login: username=root ip=192.168.65.1 method=standard admin=true\"}", + "outcome": "success", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "login_method": "standard", + "message": "Successful Login: username=root ip=192.168.65.1 method=standard admin=true", + "meta": { + "caller_id": "SessionsController#create", + "client_id": "user/1", + "feature_category": "system_access" + }, + "user_admin": true + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-05-31T18:42:57.560Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HZ7ZCKYQY435AGDMF9VNPQH3", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T18:42:57.560Z\",\"correlation_id\":\"01HZ7ZCKYQY435AGDMF9VNPQH3\",\"meta.caller_id\":\"Admin::UsersController#create\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"user_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"message\":\"User \\\"test23\\\" (test23@elastic.co) was created\"}", + "severity": 1, + "type": [ + "creation", + "info" + ] + }, + "gitlab": { + "application": { + "message": "User \"test23\" (test23@elastic.co) was created", + "meta": { + "caller_id": "Admin::UsersController#create", + "client_id": "user/1", + "feature_category": "user_management" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "email": "test23@elastic.co", + "id": "1", + "name": "test23" + } + }, + { + "@timestamp": "2024-05-31T18:50:04.450Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "5f93baade8799c76894a6a0d7f58b17e", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T18:50:04.450Z\",\"meta.caller_id\":\"Users::MigrateRecordsToGhostUserInBatchesWorker\",\"correlation_id\":\"5f93baade8799c76894a6a0d7f58b17e\",\"meta.root_caller_id\":\"Cronjob\",\"meta.feature_category\":\"user_profile\",\"meta.client_id\":\"ip/\",\"message\":\"User \\\"test11\\\" (test@elastci.co) was removed\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "User \"test11\" (test@elastci.co) was removed", + "meta": { + "caller_id": "Users::MigrateRecordsToGhostUserInBatchesWorker", + "client_id": "ip/", + "feature_category": "user_profile", + "root_caller_id": "Cronjob" + } + } + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "email": "test@elastci.co", + "name": "test11" + } + }, + { + "@timestamp": "2024-05-31T18:55:47.496Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HZ804435TCFSRHNFSDSQRCH7", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T18:55:47.496Z\",\"correlation_id\":\"01HZ804435TCFSRHNFSDSQRCH7\",\"meta.caller_id\":\"Admin::GroupsController#create\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"groups_and_projects\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"message\":\"Group \\\"elastic_group\\\" was created\"}", + "severity": 1, + "type": [ + "creation", + "info" + ] + }, + "gitlab": { + "application": { + "message": "Group \"elastic_group\" was created", + "meta": { + "caller_id": "Admin::GroupsController#create", + "client_id": "user/1", + "feature_category": "groups_and_projects" + } + } + }, + "group": { + "name": "elastic_group" + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-05-31T19:00:36.255Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01HZ80CX760HXSEX1V1EV4EQ4Y", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-31T19:00:36.255Z\",\"correlation_id\":\"01HZ80CX760HXSEX1V1EV4EQ4Y\",\"meta.caller_id\":\"GroupDestroyWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"groups_and_projects\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Admin::GroupsController#destroy\",\"message\":\"Group \\\"elastic_group\\\" was removed\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "Group \"elastic_group\" was removed", + "meta": { + "caller_id": "GroupDestroyWorker", + "client_id": "user/1", + "feature_category": "groups_and_projects", + "root_caller_id": "Admin::GroupsController#destroy", + "root_namespace": "elastic_group" + } + } + }, + "group": { + "name": "elastic_group" + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.408Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6DFMXRC0JJK70AG21DJD", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:15.408Z\",\"correlation_id\":\"01J0PF6DFMXRC0JJK70AG21DJD\",\"meta.caller_id\":\"NewNoteWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"team_planning\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/34\",\"meta.root_caller_id\":\"Projects::NotesController#create\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.001575333000801038],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[0.0018065980002575088],\"mergeability.check_blocked_by_other_mrs_service.db_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values\":[1],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.0014997659982327605],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0020050060011271853],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[0.0001678970002103597],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[9.616500028641894e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.008831993000057992],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.0005924709985265508],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[0.000158753000505385],\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[0.00012483899990911596],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[0.00023518799935118295]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001575333000801038, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0018065980002575088, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 0.008831993000057992, + "successful": true + }, + "check_commits_status_service": { + "duration_s": 5.924709985265508E-4, + "successful": false + }, + "check_conflict_status_service": { + "duration_s": 1.2483899990911596E-4, + "successful": true + }, + "check_discussions_status_service": { + "duration_s": 1.58753000505385E-4, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 9.616500028641894E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0020050060011271853, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0014997659982327605, + "successful": false + }, + "check_open_status_service": { + "duration_s": 1.678970002103597E-4, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 2.3518799935118295E-4, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "NewNoteWorker", + "client_id": "user/34", + "feature_category": "team_planning", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::NotesController#create", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.498Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6DWC93Z5FVEERX1FD378", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:15.498Z\",\"correlation_id\":\"01J0PF6DWC93Z5FVEERX1FD378\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.client_id\":\"user/34\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0017553299985593185],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[0.0012755800016748253],\"mergeability.check_blocked_by_other_mrs_service.db_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values\":[1],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.0015011419982329244],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.001014463001411059],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[6.801499876019079e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[5.135600076755509e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.013831343998390366],\"mergeability.check_broken_status_service.db_count.values\":[4],\"mergeability.check_broken_status_service.db_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_primary_count.values\":[4],\"mergeability.check_broken_status_service.db_main_count.values\":[4],\"mergeability.check_broken_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_main_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_primary_duration_s.values\":[0.002],\"mergeability.check_broken_status_service.db_main_duration_s.values\":[0.002],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.0002177500009565847],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[0.001341789000434801],\"mergeability.check_discussions_status_service.db_count.values\":[1],\"mergeability.check_discussions_status_service.db_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_cached_count.values\":[1],\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[5.1011998948524706e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[4.602499939210247e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0017553299985593185, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0012755800016748253, + "successful": false + }, + "check_broken_status_service": { + "db_cached_count": 1, + "db_count": 4, + "db_main_cached_count": 1, + "db_main_count": 4, + "db_main_duration_s": 0.002, + "db_primary_cached_count": 1, + "db_primary_count": 4, + "db_primary_duration_s": 0.002, + "duration_s": 0.013831343998390366, + "successful": true + }, + "check_commits_status_service": { + "duration_s": 2.177500009565847E-4, + "successful": false + }, + "check_conflict_status_service": { + "duration_s": 5.1011998948524706E-5, + "successful": true + }, + "check_discussions_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001341789000434801, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 5.135600076755509E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001014463001411059, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0015011419982329244, + "successful": false + }, + "check_open_status_service": { + "duration_s": 6.801499876019079E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 4.602499939210247E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/34", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.509Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF6DFMXRC0JJK70AG21DJD", + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-06-18T20:04:15.509Z\",\"correlation_id\":\"01J0PF6DFMXRC0JJK70AG21DJD\",\"meta.caller_id\":\"ActionMailer::MailDeliveryJob\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"team_planning\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/34\",\"meta.root_caller_id\":\"Projects::NotesController#create\",\"message\":\"SilentModeInterceptor did nothing\",\"mail_subject\":\"Re: rag_ai | Added a test file (!1)\",\"silent_mode_enabled\":false}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mail_subject": "Re: rag_ai | Added a test file (!1)", + "message": "SilentModeInterceptor did nothing", + "meta": { + "caller_id": "ActionMailer::MailDeliveryJob", + "client_id": "user/34", + "feature_category": "team_planning", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::NotesController#create", + "root_namespace": "elastic_group" + }, + "silent_mode_enabled": false + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.524Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6DWACBH5ZE9YQ0MCPMZ6", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:15.524Z\",\"correlation_id\":\"01J0PF6DWACBH5ZE9YQ0MCPMZ6\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.client_id\":\"user/34\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[4.907000038656406e-05],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[3.750399991986342e-05],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[2.9150000045774505e-05],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[4.881899985775817e-05],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[4.986400017514825e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[2.3741000404697843e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.0003986040010204306],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.00015108200022950768],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[3.758799903152976e-05],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[3.20229992212262e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "duration_s": 4.907000038656406E-5, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "duration_s": 3.750399991986342E-5, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 3.986040010204306E-4, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 3.20229992212262E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 1.5108200022950768E-4, + "successful": false + }, + "check_discussions_status_service": { + "duration_s": 3.758799903152976E-5, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 2.3741000404697843E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "duration_s": 4.881899985775817E-5, + "successful": false + }, + "check_jira_status_service": { + "duration_s": 2.9150000045774505E-5, + "successful": false + }, + "check_open_status_service": { + "duration_s": 4.986400017514825E-5, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/34", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.526Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6DWACBH5ZE9YQ0MCPMZ6", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:15.526Z\",\"correlation_id\":\"01J0PF6DWACBH5ZE9YQ0MCPMZ6\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.client_id\":\"user/34\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[0.00012831700041715521],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[4.5898999815108255e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 1.2831700041715521E-4, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 4.5898999815108255E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/34", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.537Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6DWC93Z5FVEERX1FD378", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:15.537Z\",\"correlation_id\":\"01J0PF6DWC93Z5FVEERX1FD378\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.client_id\":\"user/34\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[5.116199827170931e-05],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[3.682300120999571e-05],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[2.8738999390043318e-05],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[2.336200122954324e-05],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[0.00016594299995631445],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[3.409100099815987e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.00035759400088863913],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.00041308000072604045],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[5.018800038669724e-05],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[3.627899968705606e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "duration_s": 5.116199827170931E-5, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "duration_s": 3.682300120999571E-5, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 3.5759400088863913E-4, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 3.627899968705606E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 4.1308000072604045E-4, + "successful": false + }, + "check_discussions_status_service": { + "duration_s": 5.018800038669724E-5, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 3.409100099815987E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "duration_s": 2.336200122954324E-5, + "successful": false + }, + "check_jira_status_service": { + "duration_s": 2.8738999390043318E-5, + "successful": false + }, + "check_open_status_service": { + "duration_s": 1.6594299995631445E-4, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/34", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.539Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6DWC93Z5FVEERX1FD378", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:15.539Z\",\"correlation_id\":\"01J0PF6DWC93Z5FVEERX1FD378\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.client_id\":\"user/34\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[0.00013433800086204428],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[7.304500104510225e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 1.3433800086204428E-4, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 7.304500104510225E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/34", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.638Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6DXATSY1WKG14E5AY9DB", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:15.638Z\",\"correlation_id\":\"01J0PF6DXATSY1WKG14E5AY9DB\",\"meta.caller_id\":\"Projects::MergeRequests::ContentController#widget\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/34\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.001290085001528496],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[0.0008277010001620511],\"mergeability.check_blocked_by_other_mrs_service.db_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values\":[1],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.00081826300083776],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0008911850000004051],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[8.318700020026881e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[3.480300074443221e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.0035558199997467455],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.0003265769992140122],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[0.0009492770004726481],\"mergeability.check_discussions_status_service.db_count.values\":[1],\"mergeability.check_discussions_status_service.db_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_cached_count.values\":[1],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[7.20330008334713e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001290085001528496, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 8.277010001620511E-4, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 0.0035558199997467455, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 7.20330008334713E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 3.265769992140122E-4, + "successful": false + }, + "check_discussions_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 9.492770004726481E-4, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 3.480300074443221E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 8.911850000004051E-4, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 8.1826300083776E-4, + "successful": false + }, + "check_open_status_service": { + "duration_s": 8.318700020026881E-5, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequests::ContentController#widget", + "client_id": "user/34", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:15.640Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6DXATSY1WKG14E5AY9DB", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:15.640Z\",\"correlation_id\":\"01J0PF6DXATSY1WKG14E5AY9DB\",\"meta.caller_id\":\"Projects::MergeRequests::ContentController#widget\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/34\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[7.920600000943523e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[8.410800001001917e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 7.920600000943523E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 8.410800001001917E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequests::ContentController#widget", + "client_id": "user/34", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:20.079Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF6JEDZEGKKZS7SY9AS8JB", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:20.079Z\",\"correlation_id\":\"01J0PF6JEDZEGKKZS7SY9AS8JB\",\"meta.caller_id\":\"Admin::ImpersonationsController#destroy\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"user_management\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.client_id\":\"user/34\",\"message\":\"User root has stopped impersonating tehbooom\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "User root has stopped impersonating tehbooom", + "meta": { + "caller_id": "Admin::ImpersonationsController#destroy", + "client_id": "user/34", + "feature_category": "user_management" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:24.903Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF61DFHJATBZ07DXMPSN8P", + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-06-18T20:04:24.903Z\",\"correlation_id\":\"01J0PF61DFHJATBZ07DXMPSN8P\",\"meta.caller_id\":\"ActionMailer::MailDeliveryJob\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"team_planning\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/34\",\"meta.root_caller_id\":\"Projects::MergeRequests::CreationsController#create\",\"message\":\"SilentModeInterceptor did nothing\",\"mail_subject\":\"Re: rag_ai | Added a test file (!1)\",\"silent_mode_enabled\":false}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mail_subject": "Re: rag_ai | Added a test file (!1)", + "message": "SilentModeInterceptor did nothing", + "meta": { + "caller_id": "ActionMailer::MailDeliveryJob", + "client_id": "user/34", + "feature_category": "team_planning", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequests::CreationsController#create", + "root_namespace": "elastic_group" + }, + "silent_mode_enabled": false + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:30.662Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6WKVTZ6YN6YPTCC80MN5", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:30.662Z\",\"correlation_id\":\"01J0PF6WKVTZ6YN6YPTCC80MN5\",\"meta.caller_id\":\"Projects::MergeRequests::ContentController#widget\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.001599693001480773],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[6.21839990344597e-05],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.0015851940006541554],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0014673860005132155],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[0.00011068899948440958],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[0.0001012800003081793],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.0012806729992007604],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.0002553019985498395],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[4.7080000513233244e-05],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[5.6508000852772966e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001599693001480773, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "duration_s": 6.21839990344597E-5, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 0.0012806729992007604, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 5.6508000852772966E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 2.553019985498395E-4, + "successful": false + }, + "check_discussions_status_service": { + "duration_s": 4.7080000513233244E-5, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 1.012800003081793E-4, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0014673860005132155, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0015851940006541554, + "successful": false + }, + "check_open_status_service": { + "duration_s": 1.1068899948440958E-4, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequests::ContentController#widget", + "client_id": "user/1", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:30.664Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6WKVTZ6YN6YPTCC80MN5", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:30.664Z\",\"correlation_id\":\"01J0PF6WKVTZ6YN6YPTCC80MN5\",\"meta.caller_id\":\"Projects::MergeRequests::ContentController#widget\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[9.064599908015225e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[6.149999899207614e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 9.064599908015225E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 6.149999899207614E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequests::ContentController#widget", + "client_id": "user/1", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:31.358Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6X4HH2Z330PTK51PS030", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:31.358Z\",\"correlation_id\":\"01J0PF6X4HH2Z330PTK51PS030\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0014578239988622954],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[7.241299863380846e-05],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.001503667999713798],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0014367000003403518],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_duration_s.values\":[0.0009999999999999974],\"mergeability.check_external_status_checks_passed_service.db_main_duration_s.values\":[0.0009999999999999974],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[0.0001878160001069773],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[4.656999954022467e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.0010910850014624884],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.0003392040016478859],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[6.757399933121633e-05],\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[5.148000127519481e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[8.443600017926656e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0014578239988622954, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "duration_s": 7.241299863380846E-5, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 0.0010910850014624884, + "successful": true + }, + "check_commits_status_service": { + "duration_s": 3.392040016478859E-4, + "successful": false + }, + "check_conflict_status_service": { + "duration_s": 5.148000127519481E-5, + "successful": true + }, + "check_discussions_status_service": { + "duration_s": 6.757399933121633E-5, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 4.656999954022467E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_main_duration_s": 9.999999999999974E-4, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "db_primary_duration_s": 9.999999999999974E-4, + "duration_s": 0.0014367000003403518, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001503667999713798, + "successful": false + }, + "check_open_status_service": { + "duration_s": 1.878160001069773E-4, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 8.443600017926656E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/1", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:31.363Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6X4HH2Z330PTK51PS030", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:31.363Z\",\"correlation_id\":\"01J0PF6X4HH2Z330PTK51PS030\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[4.356899989943486e-05],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[3.6804998671868816e-05],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[2.8280999686103314e-05],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[2.5719999030116014e-05],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[5.3206000302452594e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[3.860200013150461e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.00034041499930026475],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.00016758599849708844],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[4.1155000872095115e-05],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[3.1416000638273545e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "duration_s": 4.356899989943486E-5, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "duration_s": 3.6804998671868816E-5, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 3.4041499930026475E-4, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 3.1416000638273545E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 1.6758599849708844E-4, + "successful": false + }, + "check_discussions_status_service": { + "duration_s": 4.1155000872095115E-5, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 3.860200013150461E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "duration_s": 2.5719999030116014E-5, + "successful": false + }, + "check_jira_status_service": { + "duration_s": 2.8280999686103314E-5, + "successful": false + }, + "check_open_status_service": { + "duration_s": 5.3206000302452594E-5, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/1", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:31.364Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6X4HH2Z330PTK51PS030", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:31.364Z\",\"correlation_id\":\"01J0PF6X4HH2Z330PTK51PS030\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[4.923599954054225e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[3.406599898880813e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 4.923599954054225E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 3.406599898880813E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/1", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:31.532Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6XH047H0DMNR5C15JM6F", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:31.532Z\",\"correlation_id\":\"01J0PF6XH047H0DMNR5C15JM6F\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0016625400003249524],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[0.0013739850001002196],\"mergeability.check_blocked_by_other_mrs_service.db_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_duration_s.values\":[0.0009999999999999974],\"mergeability.check_blocked_by_other_mrs_service.db_main_duration_s.values\":[0.0009999999999999974],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.001382516999001382],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0010394329983682837],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[6.348400165734347e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[3.4071001209667884e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.014927479000107269],\"mergeability.check_broken_status_service.db_count.values\":[4],\"mergeability.check_broken_status_service.db_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_primary_count.values\":[4],\"mergeability.check_broken_status_service.db_main_count.values\":[4],\"mergeability.check_broken_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_main_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_primary_duration_s.values\":[0.0020000000000000018],\"mergeability.check_broken_status_service.db_main_duration_s.values\":[0.0020000000000000018],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.00031323000075644813],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[0.001169152999864309],\"mergeability.check_discussions_status_service.db_count.values\":[1],\"mergeability.check_discussions_status_service.db_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_cached_count.values\":[1],\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[9.540199971524999e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[4.1372000850969926e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0016625400003249524, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_main_duration_s": 9.999999999999974E-4, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "db_primary_duration_s": 9.999999999999974E-4, + "duration_s": 0.0013739850001002196, + "successful": false + }, + "check_broken_status_service": { + "db_cached_count": 1, + "db_count": 4, + "db_main_cached_count": 1, + "db_main_count": 4, + "db_main_duration_s": 0.0020000000000000018, + "db_primary_cached_count": 1, + "db_primary_count": 4, + "db_primary_duration_s": 0.0020000000000000018, + "duration_s": 0.014927479000107269, + "successful": true + }, + "check_commits_status_service": { + "duration_s": 3.1323000075644813E-4, + "successful": false + }, + "check_conflict_status_service": { + "duration_s": 9.540199971524999E-5, + "successful": true + }, + "check_discussions_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001169152999864309, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 3.4071001209667884E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0010394329983682837, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001382516999001382, + "successful": false + }, + "check_open_status_service": { + "duration_s": 6.348400165734347E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 4.1372000850969926E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/1", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:31.613Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6XGYHMX44MYYBPECQ4XJ", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:31.613Z\",\"correlation_id\":\"01J0PF6XGYHMX44MYYBPECQ4XJ\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0016400109998357948],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[0.0011764890004997142],\"mergeability.check_blocked_by_other_mrs_service.db_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values\":[1],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.0014940889996069018],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0018368189994362183],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[0.0001535620012873551],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[0.00010275899876432959],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.01897949699923629],\"mergeability.check_broken_status_service.db_count.values\":[3],\"mergeability.check_broken_status_service.db_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_primary_count.values\":[3],\"mergeability.check_broken_status_service.db_main_count.values\":[3],\"mergeability.check_broken_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_main_cached_count.values\":[1],\"mergeability.check_broken_status_service.db_primary_duration_s.values\":[0.008000000000000007],\"mergeability.check_broken_status_service.db_main_duration_s.values\":[0.008000000000000007],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.0002660650006873766],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[0.0017408149997208966],\"mergeability.check_discussions_status_service.db_count.values\":[1],\"mergeability.check_discussions_status_service.db_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_cached_count.values\":[1],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[6.467099956353195e-05],\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[5.495000004884787e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[3.759500032174401e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0016400109998357948, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0011764890004997142, + "successful": false + }, + "check_broken_status_service": { + "db_cached_count": 1, + "db_count": 3, + "db_main_cached_count": 1, + "db_main_count": 3, + "db_main_duration_s": 0.008000000000000007, + "db_primary_cached_count": 1, + "db_primary_count": 3, + "db_primary_duration_s": 0.008000000000000007, + "duration_s": 0.01897949699923629, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 6.467099956353195E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 2.660650006873766E-4, + "successful": false + }, + "check_conflict_status_service": { + "duration_s": 5.495000004884787E-5, + "successful": true + }, + "check_discussions_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0017408149997208966, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 1.0275899876432959E-4, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0018368189994362183, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0014940889996069018, + "successful": false + }, + "check_open_status_service": { + "duration_s": 1.535620012873551E-4, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 3.759500032174401E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/1", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:31.779Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6XH3HYG6XME2AH39QE41", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:31.779Z\",\"correlation_id\":\"01J0PF6XH3HYG6XME2AH39QE41\",\"meta.caller_id\":\"Projects::MergeRequests::ContentController#widget\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0012163039991719415],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[4.1994000639533624e-05],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.000906862000192632],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0008365939993382199],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[4.9557998863747343e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[2.762300027825404e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.0005591429999185493],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.00014914600069459993],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[4.152400106249843e-05],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[0.00012162100028945133]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0012163039991719415, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "duration_s": 4.1994000639533624E-5, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 5.591429999185493E-4, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 1.2162100028945133E-4, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 1.4914600069459993E-4, + "successful": false + }, + "check_discussions_status_service": { + "duration_s": 4.152400106249843E-5, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 2.762300027825404E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 8.365939993382199E-4, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 9.06862000192632E-4, + "successful": false + }, + "check_open_status_service": { + "duration_s": 4.9557998863747343E-5, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequests::ContentController#widget", + "client_id": "user/1", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:31.781Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6XH3HYG6XME2AH39QE41", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:31.781Z\",\"correlation_id\":\"01J0PF6XH3HYG6XME2AH39QE41\",\"meta.caller_id\":\"Projects::MergeRequests::ContentController#widget\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[4.9434000175097026e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[4.3714000639738515e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 4.9434000175097026E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 4.3714000639738515E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequests::ContentController#widget", + "client_id": "user/1", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:33.932Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:33.932Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"Projects::MergeRequestsController#merge\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0010096620007971069],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_duration_s.values\":[0.0009999999999999992],\"mergeability.check_approved_service.db_main_duration_s.values\":[0.0009999999999999992],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[0.0009103609991143458],\"mergeability.check_blocked_by_other_mrs_service.db_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values\":[1],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.0007107120000000577],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.000694705000569229],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[6.712700087518897e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[3.21039988193661e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.007473622999896179],\"mergeability.check_broken_status_service.db_count.values\":[3],\"mergeability.check_broken_status_service.db_cached_count.values\":[2],\"mergeability.check_broken_status_service.db_primary_count.values\":[3],\"mergeability.check_broken_status_service.db_main_count.values\":[3],\"mergeability.check_broken_status_service.db_primary_cached_count.values\":[2],\"mergeability.check_broken_status_service.db_main_cached_count.values\":[2],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.00016434700046374928],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[0.0010808520000864519],\"mergeability.check_discussions_status_service.db_count.values\":[1],\"mergeability.check_discussions_status_service.db_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_cached_count.values\":[1],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[4.348999937064946e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_main_duration_s": 9.999999999999992E-4, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "db_primary_duration_s": 9.999999999999992E-4, + "duration_s": 0.0010096620007971069, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 9.103609991143458E-4, + "successful": false + }, + "check_broken_status_service": { + "db_cached_count": 2, + "db_count": 3, + "db_main_cached_count": 2, + "db_main_count": 3, + "db_primary_cached_count": 2, + "db_primary_count": 3, + "duration_s": 0.007473622999896179, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 4.348999937064946E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 1.6434700046374928E-4, + "successful": false + }, + "check_discussions_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0010808520000864519, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 3.21039988193661E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 6.94705000569229E-4, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 7.107120000000577E-4, + "successful": false + }, + "check_open_status_service": { + "duration_s": 6.712700087518897E-5, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequestsController#merge", + "client_id": "user/1", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:33.934Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:33.934Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"Projects::MergeRequestsController#merge\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[6.230399958440103e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[4.3760001062764786e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 6.230399958440103E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 4.3760001062764786E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequestsController#merge", + "client_id": "user/1", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:34.064Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:34.064Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"MergeWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Projects::MergeRequestsController#merge\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0011207629995624302],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[4.454400004760828e-05],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[2.696599949558731e-05],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0007448630003636936],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[6.319600106508005e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[5.0784999984898604e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.007911978000265663],\"mergeability.check_broken_status_service.db_count.values\":[2],\"mergeability.check_broken_status_service.db_cached_count.values\":[2],\"mergeability.check_broken_status_service.db_primary_count.values\":[2],\"mergeability.check_broken_status_service.db_main_count.values\":[2],\"mergeability.check_broken_status_service.db_primary_cached_count.values\":[2],\"mergeability.check_broken_status_service.db_main_cached_count.values\":[2],\"mergeability.check_broken_status_service.db_primary_duration_s.values\":[0.0010000000000000009],\"mergeability.check_broken_status_service.db_main_duration_s.values\":[0.0010000000000000009],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.00027316600062476937],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[0.0014669819993287092],\"mergeability.check_discussions_status_service.db_count.values\":[1],\"mergeability.check_discussions_status_service.db_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_count.values\":[1],\"mergeability.check_discussions_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_discussions_status_service.db_main_cached_count.values\":[1],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[4.982100108463783e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0011207629995624302, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "duration_s": 4.454400004760828E-5, + "successful": false + }, + "check_broken_status_service": { + "db_cached_count": 2, + "db_count": 2, + "db_main_cached_count": 2, + "db_main_count": 2, + "db_main_duration_s": 0.0010000000000000009, + "db_primary_cached_count": 2, + "db_primary_count": 2, + "db_primary_duration_s": 0.0010000000000000009, + "duration_s": 0.007911978000265663, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 4.982100108463783E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 2.7316600062476937E-4, + "successful": false + }, + "check_discussions_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0014669819993287092, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 5.0784999984898604E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 7.448630003636936E-4, + "successful": false + }, + "check_jira_status_service": { + "duration_s": 2.696599949558731E-5, + "successful": false + }, + "check_open_status_service": { + "duration_s": 6.319600106508005E-5, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "MergeWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequestsController#merge", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:34.065Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:34.065Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"MergeWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Projects::MergeRequestsController#merge\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[6.718099939462263e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[4.944399915984832e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 6.718099939462263E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 4.944399915984832E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "MergeWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequestsController#merge", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:34.090Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:34.090Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"MergeWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Projects::MergeRequestsController#merge\",\"merge_request_info\":\"elastic_group/rag_ai!1\",\"message\":\"elastic_group/rag_ai!1 - Git merge started on JID 779486dd8ab4b2eb1d5cbfa0\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "merge_request_info": "elastic_group/rag_ai!1", + "message": "elastic_group/rag_ai!1 - Git merge started on JID 779486dd8ab4b2eb1d5cbfa0", + "meta": { + "caller_id": "MergeWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequestsController#merge", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:34.129Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF701WNF519WV5736X2JG3", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:34.129Z\",\"correlation_id\":\"01J0PF701WNF519WV5736X2JG3\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.00012764500024786685],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[3.566899977158755e-05],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[2.824200055329129e-05],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[2.299699917784892e-05],\"mergeability.check_open_status_service.successful.values\":[true],\"mergeability.check_open_status_service.duration_s.values\":[5.679499918187503e-05],\"mergeability.check_draft_status_service.successful.values\":[true],\"mergeability.check_draft_status_service.duration_s.values\":[6.304999988060445e-05],\"mergeability.check_broken_status_service.successful.values\":[true],\"mergeability.check_broken_status_service.duration_s.values\":[0.0003532209993863944],\"mergeability.check_commits_status_service.successful.values\":[false],\"mergeability.check_commits_status_service.duration_s.values\":[0.0001927679986692965],\"mergeability.check_discussions_status_service.successful.values\":[false],\"mergeability.check_discussions_status_service.duration_s.values\":[3.909699989890214e-05],\"mergeability.check_ci_status_service.successful.values\":[false],\"mergeability.check_ci_status_service.duration_s.values\":[2.9288999940035865e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "duration_s": 1.2764500024786685E-4, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "duration_s": 3.566899977158755E-5, + "successful": false + }, + "check_broken_status_service": { + "duration_s": 3.532209993863944E-4, + "successful": true + }, + "check_ci_status_service": { + "duration_s": 2.9288999940035865E-5, + "successful": false + }, + "check_commits_status_service": { + "duration_s": 1.927679986692965E-4, + "successful": false + }, + "check_discussions_status_service": { + "duration_s": 3.909699989890214E-5, + "successful": false + }, + "check_draft_status_service": { + "duration_s": 6.304999988060445E-5, + "successful": true + }, + "check_external_status_checks_passed_service": { + "duration_s": 2.299699917784892E-5, + "successful": false + }, + "check_jira_status_service": { + "duration_s": 2.824200055329129E-5, + "successful": false + }, + "check_open_status_service": { + "duration_s": 5.679499918187503E-5, + "successful": true + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/1", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:34.130Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF701WNF519WV5736X2JG3", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:34.130Z\",\"correlation_id\":\"01J0PF701WNF519WV5736X2JG3\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_conflict_status_service.successful.values\":[true],\"mergeability.check_conflict_status_service.duration_s.values\":[3.984900104114786e-05],\"mergeability.check_rebase_status_service.successful.values\":[false],\"mergeability.check_rebase_status_service.duration_s.values\":[3.255299998272676e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_conflict_status_service": { + "duration_s": 3.984900104114786E-5, + "successful": true + }, + "check_rebase_status_service": { + "duration_s": 3.255299998272676E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/1", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:34.512Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:34.512Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"MergeWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Projects::MergeRequestsController#merge\",\"merge_request_info\":\"elastic_group/rag_ai!1\",\"message\":\"elastic_group/rag_ai!1 - Git merge finished on JID 779486dd8ab4b2eb1d5cbfa0 commit 6a5801b7a22ebbd513530d7ebebd981e0164c083\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "merge_request_info": "elastic_group/rag_ai!1", + "message": "elastic_group/rag_ai!1 - Git merge finished on JID 779486dd8ab4b2eb1d5cbfa0 commit 6a5801b7a22ebbd513530d7ebebd981e0164c083", + "meta": { + "caller_id": "MergeWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequestsController#merge", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:35.138Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF6DFMXRC0JJK70AG21DJD", + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-06-18T20:04:35.138Z\",\"correlation_id\":\"01J0PF6DFMXRC0JJK70AG21DJD\",\"meta.caller_id\":\"ActionMailer::MailDeliveryJob\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"team_planning\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/34\",\"meta.root_caller_id\":\"Projects::NotesController#create\",\"message\":\"SilentModeInterceptor did nothing\",\"mail_subject\":\"Re: rag_ai | Added a test file (!1)\",\"silent_mode_enabled\":false}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mail_subject": "Re: rag_ai | Added a test file (!1)", + "message": "SilentModeInterceptor did nothing", + "meta": { + "caller_id": "ActionMailer::MailDeliveryJob", + "client_id": "user/34", + "feature_category": "team_planning", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::NotesController#create", + "root_namespace": "elastic_group" + }, + "silent_mode_enabled": false + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:04:36.211Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF7237HS2JMQP4WG4KE0DP", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:36.211Z\",\"correlation_id\":\"01J0PF7237HS2JMQP4WG4KE0DP\",\"meta.caller_id\":\"GraphqlController#execute\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0018615320004755631],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[0.0018126659997506067],\"mergeability.check_blocked_by_other_mrs_service.db_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values\":[1],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.0018034589993476402],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0025557059998391196],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_open_status_service.successful.values\":[false],\"mergeability.check_open_status_service.duration_s.values\":[0.00011969099978159647]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0018615320004755631, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0018126659997506067, + "successful": false + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0025557059998391196, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0018034589993476402, + "successful": false + }, + "check_open_status_service": { + "duration_s": 1.1969099978159647E-4, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "GraphqlController#execute", + "client_id": "user/1", + "feature_category": "code_review_workflow" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:36.310Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "id": "01J0PF723CH5SVZQE6KKCEHZ3T", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:36.310Z\",\"correlation_id\":\"01J0PF723CH5SVZQE6KKCEHZ3T\",\"meta.caller_id\":\"Projects::MergeRequests::ContentController#widget\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"code_review_workflow\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"mergeability_project_id\":1,\"mergeability_merge_request_id\":1,\"mergeability.check_approved_service.successful.values\":[false],\"mergeability.check_approved_service.duration_s.values\":[0.0023665389999223407],\"mergeability.check_approved_service.db_count.values\":[1],\"mergeability.check_approved_service.db_cached_count.values\":[1],\"mergeability.check_approved_service.db_primary_count.values\":[1],\"mergeability.check_approved_service.db_main_count.values\":[1],\"mergeability.check_approved_service.db_primary_cached_count.values\":[1],\"mergeability.check_approved_service.db_main_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.successful.values\":[false],\"mergeability.check_blocked_by_other_mrs_service.duration_s.values\":[0.001277446999665699],\"mergeability.check_blocked_by_other_mrs_service.db_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count.values\":[1],\"mergeability.check_blocked_by_other_mrs_service.db_main_cached_count.values\":[1],\"mergeability.check_jira_status_service.successful.values\":[false],\"mergeability.check_jira_status_service.duration_s.values\":[0.0012936309994984185],\"mergeability.check_jira_status_service.db_count.values\":[1],\"mergeability.check_jira_status_service.db_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_count.values\":[1],\"mergeability.check_jira_status_service.db_main_count.values\":[1],\"mergeability.check_jira_status_service.db_primary_cached_count.values\":[1],\"mergeability.check_jira_status_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.successful.values\":[false],\"mergeability.check_external_status_checks_passed_service.duration_s.values\":[0.0011912619993381668],\"mergeability.check_external_status_checks_passed_service.db_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_main_cached_count.values\":[1],\"mergeability.check_external_status_checks_passed_service.db_primary_duration_s.values\":[0.0010000000000000009],\"mergeability.check_external_status_checks_passed_service.db_main_duration_s.values\":[0.0010000000000000009],\"mergeability.check_open_status_service.successful.values\":[false],\"mergeability.check_open_status_service.duration_s.values\":[9.387899990542792e-05]}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mergeability": { + "check_approved_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0023665389999223407, + "successful": false + }, + "check_blocked_by_other_mrs_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.001277446999665699, + "successful": false + }, + "check_external_status_checks_passed_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_main_duration_s": 0.0010000000000000009, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "db_primary_duration_s": 0.0010000000000000009, + "duration_s": 0.0011912619993381668, + "successful": false + }, + "check_jira_status_service": { + "db_cached_count": 1, + "db_count": 1, + "db_main_cached_count": 1, + "db_main_count": 1, + "db_primary_cached_count": 1, + "db_primary_count": 1, + "duration_s": 0.0012936309994984185, + "successful": false + }, + "check_open_status_service": { + "duration_s": 9.387899990542792E-5, + "successful": false + }, + "merge_request_id": 1, + "project_id": 1 + }, + "meta": { + "caller_id": "Projects::MergeRequests::ContentController#widget", + "client_id": "user/1", + "feature_category": "code_review_workflow", + "project": "elastic_group/rag_ai", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:36.355Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:04:36.355Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"MergeWorker\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Projects::MergeRequestsController#merge\",\"merge_request_info\":\"elastic_group/rag_ai!1\",\"message\":\"elastic_group/rag_ai!1 - Post merge finished on JID 779486dd8ab4b2eb1d5cbfa0 with state merged\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "merge_request_info": "elastic_group/rag_ai!1", + "message": "elastic_group/rag_ai!1 - Post merge finished on JID 779486dd8ab4b2eb1d5cbfa0 with state merged", + "meta": { + "caller_id": "MergeWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequestsController#merge", + "root_namespace": "elastic_group" + } + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:36.365Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-06-18T20:04:36.365Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"ActionMailer::MailDeliveryJob\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Projects::MergeRequestsController#merge\",\"message\":\"SilentModeInterceptor did nothing\",\"mail_subject\":\"Re: rag_ai | Added a test file (!1)\",\"silent_mode_enabled\":false}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mail_subject": "Re: rag_ai | Added a test file (!1)", + "message": "SilentModeInterceptor did nothing", + "meta": { + "caller_id": "ActionMailer::MailDeliveryJob", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequestsController#merge", + "root_namespace": "elastic_group" + }, + "silent_mode_enabled": false + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:04:04.467Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF61DFHJATBZ07DXMPSN8P", + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-06-18T20:04:04.467Z\",\"correlation_id\":\"01J0PF61DFHJATBZ07DXMPSN8P\",\"meta.caller_id\":\"ActionMailer::MailDeliveryJob\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"team_planning\",\"meta.user\":\"tehbooom\",\"meta.user_id\":34,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/34\",\"meta.root_caller_id\":\"Projects::MergeRequests::CreationsController#create\",\"message\":\"SilentModeInterceptor did nothing\",\"mail_subject\":\"Re: rag_ai | Added a test file (!1)\",\"silent_mode_enabled\":false}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mail_subject": "Re: rag_ai | Added a test file (!1)", + "message": "SilentModeInterceptor did nothing", + "meta": { + "caller_id": "ActionMailer::MailDeliveryJob", + "client_id": "user/34", + "feature_category": "team_planning", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequests::CreationsController#create", + "root_namespace": "elastic_group" + }, + "silent_mode_enabled": false + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "34", + "tehbooom" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "34", + "name": "tehbooom" + } + }, + { + "@timestamp": "2024-06-18T20:06:33.573Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "id": "01J0PF6ZXPA5NGZGY6PW89JXYE", + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-06-18T20:06:33.573Z\",\"correlation_id\":\"01J0PF6ZXPA5NGZGY6PW89JXYE\",\"meta.caller_id\":\"ActionMailer::MailDeliveryJob\",\"meta.remote_ip\":\"192.168.65.1\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"elastic_group/rag_ai\",\"meta.root_namespace\":\"elastic_group\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"Projects::MergeRequestsController#merge\",\"message\":\"SilentModeInterceptor did nothing\",\"mail_subject\":\"Re: rag_ai | Added a test file (!1)\",\"silent_mode_enabled\":false}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "mail_subject": "Re: rag_ai | Added a test file (!1)", + "message": "SilentModeInterceptor did nothing", + "meta": { + "caller_id": "ActionMailer::MailDeliveryJob", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "elastic_group/rag_ai", + "root_caller_id": "Projects::MergeRequestsController#merge", + "root_namespace": "elastic_group" + }, + "silent_mode_enabled": false + } + }, + "related": { + "ip": [ + "192.168.65.1" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "root" + } + }, + { + "@timestamp": "2024-06-18T20:09:53.073Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"WARN\",\"time\":\"2024-06-18T20:09:53.073Z\",\"memwd_max_strikes\":5,\"memwd_cur_strikes\":6,\"message\":\"rss memory limit exceeded\",\"memwd_rss_bytes\":1283977216,\"memwd_max_rss_bytes\":1258291200,\"memwd_handler_class\":\"Gitlab::Memory::Watchdog::Handlers::PumaHandler\",\"memwd_sleep_time_s\":60,\"pid\":861,\"worker_id\":\"puma_3\"}", + "severity": 2, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "memwd_cur_strikes": 6, + "memwd_handler_class": "Gitlab::Memory::Watchdog::Handlers::PumaHandler", + "memwd_max_rss_bytes": 1258291200, + "memwd_max_strikes": 5, + "memwd_rss_bytes": 1283977216, + "memwd_sleep_time_s": 60, + "message": "rss memory limit exceeded", + "worker_id": "puma_3" + } + }, + "process": { + "pid": 861 + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-06-18T20:09:53.078Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:09:53.078Z\",\"message\":\"stopped\",\"memwd_reason\":\"successfully handled\",\"memwd_handler_class\":\"Gitlab::Memory::Watchdog::Handlers::PumaHandler\",\"memwd_sleep_time_s\":60,\"pid\":861,\"worker_id\":\"puma_3\",\"memwd_rss_bytes\":1283977216}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "memwd_handler_class": "Gitlab::Memory::Watchdog::Handlers::PumaHandler", + "memwd_reason": "successfully handled", + "memwd_rss_bytes": 1283977216, + "memwd_sleep_time_s": 60, + "message": "stopped", + "worker_id": "puma_3" + } + }, + "process": { + "pid": 861 + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-06-18T20:09:54.202Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-06-18T20:09:54.202Z\",\"message\":\"ActiveRecord connection established\"}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "ActiveRecord connection established" + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-06-18T20:09:54.212Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:09:54.212Z\",\"message\":\"started\",\"memwd_handler_class\":\"Gitlab::Memory::Watchdog::Handlers::PumaHandler\",\"memwd_sleep_time_s\":60,\"pid\":2559,\"worker_id\":\"puma_3\",\"memwd_rss_bytes\":1110011904}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "memwd_handler_class": "Gitlab::Memory::Watchdog::Handlers::PumaHandler", + "memwd_rss_bytes": 1110011904, + "memwd_sleep_time_s": 60, + "message": "started", + "worker_id": "puma_3" + } + }, + "process": { + "pid": 2559 + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-06-18T20:10:53.053Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"WARN\",\"time\":\"2024-06-18T20:10:53.053Z\",\"memwd_max_strikes\":5,\"memwd_cur_strikes\":6,\"message\":\"rss memory limit exceeded\",\"memwd_rss_bytes\":1291018240,\"memwd_max_rss_bytes\":1258291200,\"memwd_handler_class\":\"Gitlab::Memory::Watchdog::Handlers::PumaHandler\",\"memwd_sleep_time_s\":60,\"pid\":859,\"worker_id\":\"puma_2\"}", + "severity": 2, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "memwd_cur_strikes": 6, + "memwd_handler_class": "Gitlab::Memory::Watchdog::Handlers::PumaHandler", + "memwd_max_rss_bytes": 1258291200, + "memwd_max_strikes": 5, + "memwd_rss_bytes": 1291018240, + "memwd_sleep_time_s": 60, + "message": "rss memory limit exceeded", + "worker_id": "puma_2" + } + }, + "process": { + "pid": 859 + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-06-18T20:10:53.055Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:10:53.055Z\",\"message\":\"stopped\",\"memwd_reason\":\"successfully handled\",\"memwd_handler_class\":\"Gitlab::Memory::Watchdog::Handlers::PumaHandler\",\"memwd_sleep_time_s\":60,\"pid\":859,\"worker_id\":\"puma_2\",\"memwd_rss_bytes\":1291018240}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "memwd_handler_class": "Gitlab::Memory::Watchdog::Handlers::PumaHandler", + "memwd_reason": "successfully handled", + "memwd_rss_bytes": 1291018240, + "memwd_sleep_time_s": 60, + "message": "stopped", + "worker_id": "puma_2" + } + }, + "process": { + "pid": 859 + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-06-18T20:10:54.038Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"DEBUG\",\"time\":\"2024-06-18T20:10:54.038Z\",\"message\":\"ActiveRecord connection established\"}", + "severity": 0, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "ActiveRecord connection established" + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-06-18T20:10:54.047Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "configuration" + ], + "original": "{\"severity\":\"INFO\",\"time\":\"2024-06-18T20:10:54.047Z\",\"message\":\"started\",\"memwd_handler_class\":\"Gitlab::Memory::Watchdog::Handlers::PumaHandler\",\"memwd_sleep_time_s\":60,\"pid\":2604,\"worker_id\":\"puma_2\",\"memwd_rss_bytes\":1110065152}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "memwd_handler_class": "Gitlab::Memory::Watchdog::Handlers::PumaHandler", + "memwd_rss_bytes": 1110065152, + "memwd_sleep_time_s": 60, + "message": "started", + "worker_id": "puma_2" + } + }, + "process": { + "pid": 2604 + }, + "tags": [ + "preserve_original_event" + ] + } + ] +} \ No newline at end of file diff --git a/packages/gitlab/data_stream/application/_dev/test/pipeline/test-common-config.yml b/packages/gitlab/data_stream/application/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..4da226416540 --- /dev/null +++ b/packages/gitlab/data_stream/application/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,3 @@ +fields: + tags: + - preserve_original_event diff --git a/packages/gitlab/data_stream/application/_dev/test/system/test-default-config.yml b/packages/gitlab/data_stream/application/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..3007386c5f5d --- /dev/null +++ b/packages/gitlab/data_stream/application/_dev/test/system/test-default-config.yml @@ -0,0 +1,10 @@ +service: gitlab-filestream +input: filestream +vars: ~ +data_stream: + vars: + preserve_original_event: true + paths: + - "{{SERVICE_LOGS_DIR}}/test-gitlab-application.log" +assert: + hit_count: 63 diff --git a/packages/gitlab/data_stream/application/agent/stream/filestream.yml.hbs b/packages/gitlab/data_stream/application/agent/stream/filestream.yml.hbs new file mode 100644 index 000000000000..ec554604ee9d --- /dev/null +++ b/packages/gitlab/data_stream/application/agent/stream/filestream.yml.hbs @@ -0,0 +1,27 @@ +paths: +{{#each paths as |path|}} + - {{path}} +{{/each}} +{{#if exclude_files}} +prospector.scanner.exclude_files: +{{#each exclude_files as |pattern|}} + - {{pattern}} +{{/each}} +{{/if}} +{{#if custom}} +{{custom}} +{{/if}} +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/gitlab/data_stream/application/elasticsearch/ingest_pipeline/default.yml b/packages/gitlab/data_stream/application/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..21d73fff5a76 --- /dev/null +++ b/packages/gitlab/data_stream/application/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,263 @@ +--- +description: Pipeline for processing application logs +processors: + - set: + field: ecs.version + value: 8.11.0 + - rename: + field: message + target_field: event.original + tag: rename_message + ignore_missing: true + if: ctx.event?.original == null + - remove: + field: message + ignore_missing: true + tag: remove_message + if: ctx.event?.original != null + - drop: + if: ctx.event.original.startsWith('#') + description: Drop if logline contains header(s), which startswith `#`. + - json: + field: event.original + tag: 'json_decoding' + target_field: gitlab.application + - date: + field: gitlab.application.time + formats: + - "ISO8601" + target_field: "@timestamp" + timezone: "UTC" + tag: date_event_created_time_epoch + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + if: ctx.gitlab?.application?.time != null + - remove: + field: gitlab.application.time + ignore_missing: true + - set: + field: event.severity + value: 0 + if: ctx.gitlab?.application?.severity == 'DEBUG' + tag: set_severity_0 + - set: + field: event.severity + value: 1 + if: ctx.gitlab?.application?.severity == 'INFO' + tag: set_severity_1 + - set: + field: event.severity + value: 2 + if: ctx.gitlab?.application?.severity == 'WARN' + tag: set_severity_2 + - set: + field: event.severity + value: 3 + if: ctx.gitlab?.application?.severity == 'ERROR' + tag: set_severity_3 + - set: + field: event.severity + value: 4 + if: ctx.gitlab?.application?.severity == 'FATAL' + tag: set_severity_4 + - set: + field: event.severity + value: 5 + if: ctx.gitlab?.application?.severity == 'UNKNOWN' + tag: set_severity_5 + - remove: + field: gitlab.application.severity + ignore_missing: true + - rename: + field: gitlab.application.correlation_id + target_field: event.id + ignore_missing: true + - rename: + field: gitlab.application.pid + target_field: process.pid + ignore_missing: true + - script: + tag: "removes_values_from_key" + lang: painless + source: > + if (ctx.gitlab?.application != null) { + def fieldsToRename = new ArrayList(ctx.gitlab.application.keySet()); + for (fieldName in fieldsToRename) { + if (fieldName.endsWith('values')) { + def newField = fieldName.substring(0, fieldName.length() - 7); + def value = ctx.gitlab.application[fieldName]; + if (value.size() > 1) { + ctx.gitlab.application[newField] = value; + } else { + ctx.gitlab.application[newField] = value[0] + } + ctx.gitlab.application.remove(fieldName); + } + } + } + - dot_expander: + field: "*" + path: gitlab.application + - rename: + field: gitlab.application.meta.user + target_field: user.name + ignore_missing: true + - convert: + field: gitlab.application.meta.user_id + type: string + ignore_missing: true + - rename: + field: gitlab.application.meta.user_id + target_field: user.id + ignore_missing: true + - append: + field: related.user + value: '{{user.id}}' + if: ctx.user?.id != null + allow_duplicates: false + - append: + field: related.user + value: '{{user.name}}' + if: ctx.user?.name != null + allow_duplicates: false + - rename: + field: gitlab.application.mergeability_merge_request_id + target_field: gitlab.application.mergeability.merge_request_id + ignore_missing: true + - rename: + field: gitlab.application.mergeability_project_id + target_field: gitlab.application.mergeability.project_id + ignore_missing: true + - grok: + field: gitlab.application.message + patterns: + - 'Failed%{SPACE}Login:%{SPACE}username=%{USERNAME:user.name}%{SPACE}ip=%{IP:source.ip}' + - '%{USERNAME:user.name}%{SPACE}created%{SPACE}a%{SPACE}new%{SPACE}project%{SPACE}"%{GREEDYDATA:gitlab.application.project_name}"' + - 'Project%{SPACE}"%{GREEDYDATA:gitlab.application.project_name}"%{SPACE}was%{SPACE}deleted' + - 'User%{SPACE}Logout:%{SPACE}username=%{USERNAME:user.name}%{SPACE}ip=%{IP:source.ip}' + - 'Successful%{SPACE}Login:%{SPACE}username=%{USERNAME:user.name}%{SPACE}ip=%{IP:source.ip}%{SPACE}method=%{WORD:gitlab.application.login_method}%{SPACE}admin=%{WORD:gitlab.application.user_admin}' + - 'User%{SPACE}"%{USERNAME:user.name}"%{SPACE}\(%{EMAILADDRESS:user.email}\)%{SPACE}was%{SPACE}created' + - 'User%{SPACE}"%{USERNAME:user.name}"%{SPACE}\(%{EMAILADDRESS:user.email}\)%{SPACE}was%{SPACE}removed' + - 'Group%{SPACE}"%{USERNAME:group.name}"%{SPACE}was%{SPACE}created' + - 'Group%{SPACE}"%{USERNAME:group.name}"%{SPACE}was%{SPACE}removed' + tag: grok_message + if: ctx.gitlab.application.message != null + ignore_missing: true + ignore_failure: true + - convert: + field: gitlab.application.user_admin + type: boolean + ignore_missing: true + - convert: + field: gitlab.application.meta.remote_ip + type: ip + ignore_missing: true + on_failure: + - remove: + field: gitlab.application.meta.remote_ip + ignore_missing: true + - append: + field: error.message + value: '{{{_ingest.on_failure_message}}}' + - rename: + field: gitlab.application.meta.remote_ip + target_field: client.ip + ignore_missing: true + - geoip: + field: client.ip + tag: geoip_client_address + target_field: client.geo + ignore_missing: true + - geoip: + ignore_missing: true + database_file: GeoLite2-ASN.mmdb + field: client.ip + tag: geoip_client_asn + target_field: client.as + properties: + - asn + - organization_name + - rename: + field: client.as.asn + tag: rename_client_as_asn + target_field: client.as.number + ignore_missing: true + - rename: + field: client.as.organization_name + tag: rename_client_as_organization_name + target_field: client.as.organization.name + ignore_missing: true + - set: + field: client.address + copy_from: client.ip + if: ctx.client?.ip != null + - set: + field: source + copy_from: client + if: ctx.client?.ip != null + - append: + field: related.ip + value: '{{client.ip}}' + if: ctx.client?.ip != null + allow_duplicates: false + - append: + field: event.category + value: authentication + tag: 'auth' + if: 'ctx.gitlab?.application?.message != null && (ctx.gitlab.application.message.contains("Failed Login:") || ctx.gitlab.application.message.contains("Successful Login:"))' + - set: + field: event.outcome + value: failure + if: ctx.gitlab?.application?.message != null && ctx.gitlab.application.message.contains("Failed Login:") + - set: + field: event.outcome + value: success + if: ctx.gitlab?.application?.message != null && ctx.gitlab.application.message.contains("Successful Login:") + - append: + field: event.type + value: creation + if: 'ctx.gitlab?.application?.message != null && (ctx.gitlab.application.message.contains("created a new project") || ctx.gitlab.application.message.contains(" was created"))' + - append: + field: event.type + value: deletion + if: ctx.gitlab?.application?.message != null && ctx.gitlab.application.message.contains(" was deleted") + - append: + tag: event_type_append + field: event.type + value: info + - append: + field: event.category + value: configuration + if: ' ctx.gitlab?.application?.message != null && !(ctx.gitlab?.application?.message.contains("Failed Login:") || ctx.gitlab?.application?.message.contains("Successful Login:"))' + - script: + description: Drops null/empty values recursively. + lang: painless + source: | + boolean dropEmptyFields(Object object) { + if (object == null || object == "") { + return true; + } else if (object instanceof Map) { + ((Map) object).values().removeIf(value -> dropEmptyFields(value)); + return (((Map) object).size() == 0); + } else if (object instanceof List) { + ((List) object).removeIf(value -> dropEmptyFields(value)); + return (((List) object).length == 0); + } + return false; + } + dropEmptyFields(ctx); + - append: + field: event.kind + value: pipeline_error + allow_duplicates: false + if: ctx.error?.message != null +on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} + in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: event.kind + value: pipeline_error diff --git a/packages/gitlab/data_stream/application/fields/agent.yml b/packages/gitlab/data_stream/application/fields/agent.yml new file mode 100644 index 000000000000..3c8ad89f032a --- /dev/null +++ b/packages/gitlab/data_stream/application/fields/agent.yml @@ -0,0 +1,200 @@ +- name: cloud + title: Cloud + group: 2 + description: Fields related to the cloud or infrastructure the events are coming from. + footnote: 'Examples: If Metricbeat is running on an EC2 host and fetches data from its host, the cloud info contains the data about this machine. If Metricbeat runs on a remote machine outside the cloud and fetches data from a service running in the cloud, the field contains cloud data from the machine the service is running on.' + type: group + fields: + - name: account.id + level: extended + type: keyword + ignore_above: 1024 + description: 'The cloud account or organization id used to identify different entities in a multi-tenant environment. + + Examples: AWS account id, Google Cloud ORG Id, or other unique identifier.' + example: 666777888999 + - name: availability_zone + level: extended + type: keyword + ignore_above: 1024 + description: Availability zone in which this host is running. + example: us-east-1c + - name: instance.id + level: extended + type: keyword + ignore_above: 1024 + description: Instance ID of the host machine. + example: i-1234567890abcdef0 + - name: instance.name + level: extended + type: keyword + ignore_above: 1024 + description: Instance name of the host machine. + - name: machine.type + level: extended + type: keyword + ignore_above: 1024 + description: Machine type of the host machine. + example: t2.medium + - name: provider + level: extended + type: keyword + ignore_above: 1024 + description: Name of the cloud provider. Example values are aws, azure, gcp, or digitalocean. + example: aws + - name: region + level: extended + type: keyword + ignore_above: 1024 + description: Region in which this host is running. + example: us-east-1 + - name: project.id + type: keyword + description: Name of the project in Google Cloud. + - name: image.id + type: keyword + description: Image ID for the cloud instance. +- name: container + title: Container + group: 2 + description: 'Container fields are used for meta information about the specific container that is the source of information. + + These fields help correlate data based containers from any runtime.' + type: group + fields: + - name: id + level: core + type: keyword + ignore_above: 1024 + description: Unique container id. + - name: image.name + level: extended + type: keyword + ignore_above: 1024 + description: Name of the image the container was built on. + - name: labels + level: extended + type: object + object_type: keyword + description: Image labels. + - name: name + level: extended + type: keyword + ignore_above: 1024 + description: Container name. +- name: host + title: Host + group: 2 + description: 'A host is defined as a general computing instance. + + ECS host.* fields should be populated with details about the host on which the event happened, or from which the measurement was taken. Host types include hardware, virtual machines, Docker containers, and Kubernetes nodes.' + type: group + fields: + - name: architecture + level: core + type: keyword + ignore_above: 1024 + description: Operating system architecture. + example: x86_64 + - name: domain + level: extended + type: keyword + ignore_above: 1024 + description: 'Name of the domain of which the host is a member. + + For example, on Windows this could be the host''s Active Directory domain or NetBIOS domain name. For Linux this could be the domain of the host''s LDAP provider.' + example: CONTOSO + default_field: false + - name: hostname + level: core + type: keyword + ignore_above: 1024 + description: 'Hostname of the host. + + It normally contains what the `hostname` command returns on the host machine.' + - name: id + level: core + type: keyword + ignore_above: 1024 + description: 'Unique host id. + + As hostname is not always unique, use values that are meaningful in your environment. + + Example: The current usage of `beat.name`.' + - name: mac + level: core + type: keyword + ignore_above: 1024 + description: Host mac addresses. + - name: name + level: core + type: keyword + ignore_above: 1024 + description: 'Name of the host. + + It can contain what `hostname` returns on Unix systems, the fully qualified domain name, or a name specified by the user. The sender decides which value to use.' + - name: os.family + level: extended + type: keyword + ignore_above: 1024 + description: OS family (such as redhat, debian, freebsd, windows). + example: debian + - name: os.kernel + level: extended + type: keyword + ignore_above: 1024 + description: Operating system kernel version as a raw string. + example: 4.4.0-112-generic + - name: os.name + level: extended + type: keyword + ignore_above: 1024 + multi_fields: + - name: text + type: text + norms: false + default_field: false + description: Operating system name, without the version. + example: Mac OS X + - name: os.platform + level: extended + type: keyword + ignore_above: 1024 + description: Operating system platform (such centos, ubuntu, windows). + example: darwin + - name: os.version + level: extended + type: keyword + ignore_above: 1024 + description: Operating system version as a raw string. + example: 10.14.1 + - name: type + level: core + type: keyword + ignore_above: 1024 + description: 'Type of host. + + For Cloud providers this can be the machine type like `t2.medium`. If vm, this could be the container, for example, or other information meaningful in your environment.' + - name: containerized + type: boolean + description: > + If the host is a container. + + - name: os.build + type: keyword + example: "18D109" + description: > + OS build information. + + - name: os.codename + type: keyword + example: "stretch" + description: > + OS codename, if any. + +- name: input.type + type: keyword + description: Input type +- name: log.offset + type: long + description: Log offset diff --git a/packages/gitlab/data_stream/application/fields/base-fields.yml b/packages/gitlab/data_stream/application/fields/base-fields.yml new file mode 100644 index 000000000000..9db6484d18f8 --- /dev/null +++ b/packages/gitlab/data_stream/application/fields/base-fields.yml @@ -0,0 +1,20 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset name. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: event.module + type: constant_keyword + description: Event module + value: gitlab +- name: event.dataset + type: constant_keyword + description: Event dataset + value: gitlab.application +- name: "@timestamp" + type: date + description: Event timestamp. diff --git a/packages/gitlab/data_stream/application/fields/beats.yml b/packages/gitlab/data_stream/application/fields/beats.yml new file mode 100644 index 000000000000..0aa6abd92e14 --- /dev/null +++ b/packages/gitlab/data_stream/application/fields/beats.yml @@ -0,0 +1,12 @@ +- name: log.flags + type: keyword + description: Flags for the log file. +- name: log.file + type: group + fields: + - name: device_id + type: keyword + description: ID of the device containing the filesystem where the file resides. + - name: inode + type: keyword + description: Inode number of the log file. diff --git a/packages/gitlab/data_stream/application/fields/fields.yml b/packages/gitlab/data_stream/application/fields/fields.yml new file mode 100644 index 000000000000..6ebcd23afa21 --- /dev/null +++ b/packages/gitlab/data_stream/application/fields/fields.yml @@ -0,0 +1,272 @@ +- name: gitlab + type: group + fields: + - name: application + type: group + fields: + - name: class_name + type: keyword + - name: lease_key + type: keyword + - name: lease_timeout + type: long + - name: project_name + type: keyword + - name: project_id + type: long + - name: model_id + type: long + - name: model + type: keyword + - name: caller + type: keyword + - name: attributes + type: keyword + - name: class + type: keyword + - name: connection_name + type: keyword + - name: current_iteration + type: long + - name: event + type: keyword + - name: lock_timeout_in_ms + type: long + - name: mail_subject + type: keyword + - name: memwd_handler_class + type: keyword + - name: memwd_rss_bytes + type: long + - name: message + type: keyword + - name: login_method + type: keyword + - name: user_admin + type: boolean + - name: memwd_sleep_time_s + type: long + - name: method + type: keyword + - name: model_connection_name + type: keyword + - name: partition_name + type: keyword + - name: shared_connection_name + type: keyword + - name: silent_mode_enabled + type: boolean + - name: table_name + type: keyword + - name: worker_id + type: keyword + - name: memwd_cur_strikes + type: long + - name: memwd_max_rss_bytes + type: long + - name: memwd_max_strikes + type: long + - name: memwd_reason + type: keyword + - name: merge_request_info + type: keyword + - name: mergeability + type: group + fields: + - name: merge_request_id + type: long + - name: project_id + type: long + - name: check_approved_service + type: group + fields: + - name: db_cached_count + type: long + - name: db_count + type: long + - name: db_main_cached_count + type: long + - name: db_main_count + type: long + - name: db_main_duration_s + type: long + - name: db_primary_cached_count + type: long + - name: db_primary_count + type: long + - name: db_primary_duration_s + type: long + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_blocked_by_other_mrs_service + type: group + fields: + - name: db_cached_count + type: long + - name: db_count + type: long + - name: db_main_cached_count + type: long + - name: db_main_count + type: long + - name: db_main_duration_s + type: long + - name: db_primary_cached_count + type: long + - name: db_primary_count + type: long + - name: db_primary_duration_s + type: long + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_broken_status_service + type: group + fields: + - name: db_cached_count + type: long + - name: db_count + type: long + - name: db_main_cached_count + type: long + - name: db_main_count + type: long + - name: db_main_duration_s + type: long + - name: db_primary_cached_count + type: long + - name: db_primary_count + type: long + - name: db_primary_duration_s + type: long + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_ci_status_service + type: group + fields: + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_commits_status_service + type: group + fields: + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_conflict_status_service + type: group + fields: + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_discussions_status_service + type: group + fields: + - name: db_cached_count + type: long + - name: db_count + type: long + - name: db_main_cached_count + type: long + - name: db_main_count + type: long + - name: db_primary_cached_count + type: long + - name: db_primary_count + type: long + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_draft_status_service + type: group + fields: + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_external_status_checks_passed_service + type: group + fields: + - name: db_cached_count + type: long + - name: db_count + type: long + - name: db_main_cached_count + type: long + - name: db_main_count + type: long + - name: db_main_duration_s + type: long + - name: db_primary_cached_count + type: long + - name: db_primary_count + type: long + - name: db_primary_duration_s + type: long + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_jira_status_service + type: group + fields: + - name: db_cached_count + type: long + - name: db_count + type: long + - name: db_main_cached_count + type: long + - name: db_main_count + type: long + - name: db_primary_cached_count + type: long + - name: db_primary_count + type: long + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_open_status_service + type: group + fields: + - name: duration_s + type: long + - name: successful + type: boolean + - name: check_rebase_status_service + type: group + fields: + - name: duration_s + type: long + - name: successful + type: boolean + - name: meta + type: group + fields: + - name: caller_id + type: keyword + - name: remote_ip + type: ip + - name: feature_category + type: keyword + - name: user + type: keyword + - name: user_id + type: long + - name: project + type: keyword + - name: root_namespace + type: keyword + - name: root_caller_id + type: keyword + - name: client_id + type: keyword diff --git a/packages/gitlab/data_stream/application/manifest.yml b/packages/gitlab/data_stream/application/manifest.yml new file mode 100644 index 000000000000..27a391cca8ef --- /dev/null +++ b/packages/gitlab/data_stream/application/manifest.yml @@ -0,0 +1,87 @@ +title: "Application" +type: logs +streams: + - input: filestream + template_path: filestream.yml.hbs + title: GitLab Application logs + description: Collect GitLab Application logs + vars: + - name: paths + type: text + title: Paths + multi: true + default: + - '/var/log/gitlab/gitlab-rails/application_json.log' + - '/home/git/gitlab/log/application_json.log' + - name: exclude_files + type: text + title: Exclude Files + description: A list of regular expressions to match the files that you want Filebeat to ignore. + required: false + show_user: true + default: + - '\.gz$' + - name: custom + type: yaml + title: Additional Filestream Configuration Options + required: false + show_user: false + description: >- + Configuration options that can be used to further change input configuration. Check the [Filebeat documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-filestream.html) for more information. + default: |- + #encoding: plain + prospector.scanner.recursive_glob: true + #prospector.scanner.symlinks: true + #prospector.scanner.include_files: [''] + #prospector.scanner.resend_on_touch: false + #prospector.scanner.check_interval: 10s + #prospector.scanner.fingerprint.enabled: false + #prospector.scanner.fingerprint.offset: 0 + #prospector.scanner.fingerprint.length: 1024 + #ignore_older: 0 + #ignore_inactive: '' + #close.on_state_change.inactive: 5m + #close.on_state_change.renamed: false + #close.on_state_change.removed: false + #close.reader.on_eof: false + #close.reader.after_interval: 0 + #clean_inactive: 0 + #clean_removed: true + #backoff.init: 2s + #backoff.max: 10s + #file_identity.native: ~ + #file_identity.path: '' + #file_identity.inode_marker.path: '' + #file_identity.fingerprint: ~ + #rotation.external.strategy.copytruncate.suffix_regex: '\.\d$' + #rotation.external.strategy.copytruncate.dateformat: '-20060102' + #include_lines: ['sometext'] + #exclude_lines: ['^DBG'] + #buffer_size: 16384 + #message_max_bytes: 1048576 + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - gitlab-application + - forwarded + - name: preserve_original_event + required: true + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original` + type: bool + multi: false + default: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details. + diff --git a/packages/gitlab/data_stream/application/sample_event.json b/packages/gitlab/data_stream/application/sample_event.json new file mode 100644 index 000000000000..89a16027171d --- /dev/null +++ b/packages/gitlab/data_stream/application/sample_event.json @@ -0,0 +1,111 @@ +{ + "@timestamp": "2024-05-10T17:49:45.825Z", + "agent": { + "ephemeral_id": "c6d67ec9-17b1-4f21-851f-01582fac9c04", + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.14.1" + }, + "client": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "data_stream": { + "dataset": "gitlab.application", + "namespace": "47114", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "snapshot": false, + "version": "8.14.1" + }, + "event": { + "agent_id_status": "verified", + "category": [ + "configuration" + ], + "dataset": "gitlab.application", + "id": "01HXHSYJJQNY08JV4JF2B69ZDR", + "ingested": "2024-08-05T14:13:26Z", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-10T17:49:45.825Z\",\"correlation_id\":\"01HXHSYJJQNY08JV4JF2B69ZDR\",\"meta.caller_id\":\"ProjectCacheWorker\",\"meta.remote_ip\":\"67.43.156.18\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"root/test_1\",\"meta.root_namespace\":\"root\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"ProjectsController#create\",\"message\":\"Updating statistics for project 1\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "Updating statistics for project 1", + "meta": { + "caller_id": "ProjectCacheWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "root/test_1", + "root_caller_id": "ProjectsController#create", + "root_namespace": "root" + } + } + }, + "input": { + "type": "filestream" + }, + "log": { + "file": { + "device_id": "30", + "inode": "224", + "path": "/tmp/service_logs/test-gitlab-application.log" + }, + "offset": 0 + }, + "related": { + "ip": [ + "67.43.156.18" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "tags": [ + "preserve_original_event", + "gitlab-application", + "forwarded" + ], + "user": { + "id": "1", + "name": "root" + } +} \ No newline at end of file diff --git a/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-audit.log b/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-audit.log new file mode 100644 index 000000000000..7091af742f6e --- /dev/null +++ b/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-audit.log @@ -0,0 +1,2 @@ +{"severity": "INFO","time": "2024-05-10T17:46:49.065Z","correlation_id": "01HXHSTQ5A02PJVVW2H8FZZ77A","meta.caller_id": "SessionsController#create","meta.remote_ip": "67.43.156.18","meta.feature_category": "system_access","meta.user": "root","meta.user_id": 1,"meta.client_id": "user/1","author_id": 1,"author_name": "Administrator","entity_id": 1,"entity_type": "User","created_at": "2024-05-10T17:46:49.058+00:00","with": "standard","target_id": 1,"target_type": "User","target_details": "Administrator"} +{"severity": "INFO","time": "2018-10-17T17:38:22.523Z","author_id": 3,"entity_id": 2,"entity_type": "Project","change": "visibility","from": "Private","to": "Public","author_name": "John Doe4","target_id": 2,"target_type": "Project","target_details": "namespace2/project2"} diff --git a/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json b/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json new file mode 100644 index 000000000000..560e48127a9b --- /dev/null +++ b/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json @@ -0,0 +1,128 @@ +{ + "expected": [ + { + "@timestamp": "2024-05-10T17:46:49.058Z", + "client": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "web" + ], + "id": "01HXHSTQ5A02PJVVW2H8FZZ77A", + "original": "{\"severity\": \"INFO\",\"time\": \"2024-05-10T17:46:49.065Z\",\"correlation_id\": \"01HXHSTQ5A02PJVVW2H8FZZ77A\",\"meta.caller_id\": \"SessionsController#create\",\"meta.remote_ip\": \"67.43.156.18\",\"meta.feature_category\": \"system_access\",\"meta.user\": \"root\",\"meta.user_id\": 1,\"meta.client_id\": \"user/1\",\"author_id\": 1,\"author_name\": \"Administrator\",\"entity_id\": 1,\"entity_type\": \"User\",\"created_at\": \"2024-05-10T17:46:49.058+00:00\",\"with\": \"standard\",\"target_id\": 1,\"target_type\": \"User\",\"target_details\": \"Administrator\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "audit": { + "created_at": "2024-05-10T17:46:49.058+00:00", + "entity_id": 1, + "entity_type": "User", + "meta": { + "caller_id": "SessionsController#create", + "client_id": "user/1", + "feature_category": "system_access", + "user": "root", + "user_id": 1 + }, + "target_details": "Administrator", + "target_id": 1, + "target_type": "User", + "with": "standard" + } + }, + "related": { + "ip": [ + "67.43.156.18" + ], + "user": [ + "1", + "Administrator" + ] + }, + "source": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "1", + "name": "Administrator" + } + }, + { + "@timestamp": "2018-10-17T17:38:22.523Z", + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "web" + ], + "original": "{\"severity\": \"INFO\",\"time\": \"2018-10-17T17:38:22.523Z\",\"author_id\": 3,\"entity_id\": 2,\"entity_type\": \"Project\",\"change\": \"visibility\",\"from\": \"Private\",\"to\": \"Public\",\"author_name\": \"John Doe4\",\"target_id\": 2,\"target_type\": \"Project\",\"target_details\": \"namespace2/project2\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "audit": { + "change": "visibility", + "entity_id": 2, + "entity_type": "Project", + "from": "Private", + "target_details": "namespace2/project2", + "target_id": 2, + "target_type": "Project", + "to": "Public" + } + }, + "related": { + "user": [ + "3", + "John Doe4" + ] + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "id": "3", + "name": "John Doe4" + } + } + ] +} \ No newline at end of file diff --git a/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-common-config.yml b/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..4da226416540 --- /dev/null +++ b/packages/gitlab/data_stream/audit/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,3 @@ +fields: + tags: + - preserve_original_event diff --git a/packages/gitlab/data_stream/audit/_dev/test/system/test-default-config.yml b/packages/gitlab/data_stream/audit/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..8a224e18afb1 --- /dev/null +++ b/packages/gitlab/data_stream/audit/_dev/test/system/test-default-config.yml @@ -0,0 +1,9 @@ +service: gitlab-filestream +input: filestream +vars: ~ +data_stream: + vars: + preserve_original_event: true + paths: + - "{{SERVICE_LOGS_DIR}}/test-gitlab-audit.log" +assert.hit_count: 2 diff --git a/packages/gitlab/data_stream/audit/agent/stream/filestream.yml.hbs b/packages/gitlab/data_stream/audit/agent/stream/filestream.yml.hbs new file mode 100644 index 000000000000..ec554604ee9d --- /dev/null +++ b/packages/gitlab/data_stream/audit/agent/stream/filestream.yml.hbs @@ -0,0 +1,27 @@ +paths: +{{#each paths as |path|}} + - {{path}} +{{/each}} +{{#if exclude_files}} +prospector.scanner.exclude_files: +{{#each exclude_files as |pattern|}} + - {{pattern}} +{{/each}} +{{/if}} +{{#if custom}} +{{custom}} +{{/if}} +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/gitlab/data_stream/audit/elasticsearch/ingest_pipeline/default.yml b/packages/gitlab/data_stream/audit/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..9e7419f8ef1f --- /dev/null +++ b/packages/gitlab/data_stream/audit/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,215 @@ +--- +description: Pipeline for processing audit logs +processors: + - set: + field: ecs.version + value: 8.11.0 + - rename: + field: message + target_field: event.original + tag: rename_message + ignore_missing: true + if: ctx.event?.original == null + - remove: + field: message + ignore_missing: true + tag: remove_message + if: ctx.event?.original != null + - drop: + if: ctx.event.original.startsWith('#') + description: Drop if logline contains header(s), which startswith `#`. + - json: + field: event.original + tag: 'json_decoding' + target_field: gitlab.audit + - date: + field: gitlab.audit.time + formats: + - "ISO8601" + target_field: "@timestamp" + timezone: "UTC" + tag: date_event_created_time_epoch + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + if: ctx.gitlab?.audit?.time != null + - remove: + field: gitlab.audit.time + - set: + field: event.severity + value: 0 + if: ctx.gitlab?.audit?.severity == 'DEBUG' + tag: set_severity_0 + - set: + field: event.severity + value: 1 + if: ctx.gitlab?.audit?.severity == 'INFO' + tag: set_severity_1 + - set: + field: event.severity + value: 2 + if: ctx.gitlab?.audit?.severity == 'WARN' + tag: set_severity_2 + - set: + field: event.severity + value: 3 + if: ctx.gitlab?.audit?.severity == 'ERROR' + tag: set_severity_3 + - set: + field: event.severity + value: 4 + if: ctx.gitlab?.audit?.severity == 'FATAL' + tag: set_severity_4 + - set: + field: event.severity + value: 5 + if: ctx.gitlab?.audit?.severity == 'UNKNOWN' + tag: set_severity_5 + - remove: + field: gitlab.audit.severity + ignore_missing: true + - rename: + field: gitlab.audit.correlation_id + target_field: event.id + ignore_missing: true + - dot_expander: + path: gitlab.audit + field: "*" + - convert: + field: gitlab.audit.meta.remote_ip + type: ip + ignore_missing: true + on_failure: + - remove: + field: gitlab.audit.meta.remote_ip + ignore_missing: true + - append: + field: error.message + value: '{{{_ingest.on_failure_message}}}' + - rename: + field: gitlab.audit.meta.remote_ip + target_field: client.ip + ignore_missing: true + - geoip: + field: client.ip + tag: geoip_client_address + target_field: client.geo + ignore_missing: true + - geoip: + ignore_missing: true + database_file: GeoLite2-ASN.mmdb + field: client.ip + tag: geoip_client_asn + target_field: client.as + properties: + - asn + - organization_name + - rename: + field: client.as.asn + tag: rename_client_as_asn + target_field: client.as.number + ignore_missing: true + - rename: + field: client.as.organization_name + tag: rename_client_as_organization_name + target_field: client.as.organization.name + ignore_missing: true + - set: + field: client.address + copy_from: client.ip + if: ctx.client?.ip != null + - set: + field: source + copy_from: client + if: ctx.client?.ip != null + - append: + field: related.ip + value: '{{client.ip}}' + if: ctx.client?.ip != null + allow_duplicates: false + - convert: + field: gitlab.audit.author_id + type: string + ignore_missing: true + - rename: + field: gitlab.audit.author_id + target_field: user.id + - rename: + field: gitlab.audit.author_name + target_field: user.name + - date: + field: gitlab.audit.created_at + formats: + - "ISO8601" + target_field: "@timestamp" + timezone: "UTC" + tag: date_event_created_time_epoch + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + if: ctx.gitlab?.audit?.created_at != null + - append: + field: related.user + value: '{{user.id}}' + if: ctx.user?.id != null + allow_duplicates: false + - append: + field: related.user + value: '{{user.name}}' + if: ctx.user?.name != null + allow_duplicates: false + - append: + field: related.user + value: '{{gitlab.audit.target_id}}' + if: ctx.gitlab?.audit?.target_id != null && ctx.gitlab.audit.target_type == "User" + allow_duplicates: false + - append: + field: related.user + value: '{{gitlab.audit.target_details}}' + if: ctx.gitlab?.audit?.target_details != null && ctx.gitlab.audit.target_type == "User" + allow_duplicates: false + - append: + field: related.user + value: '{{gitlab.audit.entity_id}}' + if: ctx.gitlab?.auadit?.entity_id != null && ctx.gitlab.audit.entity_type == "User" + allow_duplicates: false + - append: + field: event.category + value: web + allow_duplicates: false + - append: + field: event.type + value: info + allow_duplicates: false + - script: + tag: script_to_drop_null_values + lang: painless + description: Drops null/empty values recursively. + source: |- + boolean drop(Object o) { + if (o == null || o == '') { + return true; + } else if (o instanceof Map) { + ((Map) o).values().removeIf(v -> drop(v)); + return (((Map) o).size() == 0); + } else if (o instanceof List) { + ((List) o).removeIf(v -> drop(v)); + return (((List) o).length == 0); + } + return false; + } + drop(ctx); + - append: + field: event.kind + value: pipeline_error + allow_duplicates: false + if: ctx.error?.message != null +on_failure: + - set: + field: event.kind + value: pipeline_error + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' diff --git a/packages/gitlab/data_stream/audit/fields/agent.yml b/packages/gitlab/data_stream/audit/fields/agent.yml new file mode 100644 index 000000000000..3c8ad89f032a --- /dev/null +++ b/packages/gitlab/data_stream/audit/fields/agent.yml @@ -0,0 +1,200 @@ +- name: cloud + title: Cloud + group: 2 + description: Fields related to the cloud or infrastructure the events are coming from. + footnote: 'Examples: If Metricbeat is running on an EC2 host and fetches data from its host, the cloud info contains the data about this machine. If Metricbeat runs on a remote machine outside the cloud and fetches data from a service running in the cloud, the field contains cloud data from the machine the service is running on.' + type: group + fields: + - name: account.id + level: extended + type: keyword + ignore_above: 1024 + description: 'The cloud account or organization id used to identify different entities in a multi-tenant environment. + + Examples: AWS account id, Google Cloud ORG Id, or other unique identifier.' + example: 666777888999 + - name: availability_zone + level: extended + type: keyword + ignore_above: 1024 + description: Availability zone in which this host is running. + example: us-east-1c + - name: instance.id + level: extended + type: keyword + ignore_above: 1024 + description: Instance ID of the host machine. + example: i-1234567890abcdef0 + - name: instance.name + level: extended + type: keyword + ignore_above: 1024 + description: Instance name of the host machine. + - name: machine.type + level: extended + type: keyword + ignore_above: 1024 + description: Machine type of the host machine. + example: t2.medium + - name: provider + level: extended + type: keyword + ignore_above: 1024 + description: Name of the cloud provider. Example values are aws, azure, gcp, or digitalocean. + example: aws + - name: region + level: extended + type: keyword + ignore_above: 1024 + description: Region in which this host is running. + example: us-east-1 + - name: project.id + type: keyword + description: Name of the project in Google Cloud. + - name: image.id + type: keyword + description: Image ID for the cloud instance. +- name: container + title: Container + group: 2 + description: 'Container fields are used for meta information about the specific container that is the source of information. + + These fields help correlate data based containers from any runtime.' + type: group + fields: + - name: id + level: core + type: keyword + ignore_above: 1024 + description: Unique container id. + - name: image.name + level: extended + type: keyword + ignore_above: 1024 + description: Name of the image the container was built on. + - name: labels + level: extended + type: object + object_type: keyword + description: Image labels. + - name: name + level: extended + type: keyword + ignore_above: 1024 + description: Container name. +- name: host + title: Host + group: 2 + description: 'A host is defined as a general computing instance. + + ECS host.* fields should be populated with details about the host on which the event happened, or from which the measurement was taken. Host types include hardware, virtual machines, Docker containers, and Kubernetes nodes.' + type: group + fields: + - name: architecture + level: core + type: keyword + ignore_above: 1024 + description: Operating system architecture. + example: x86_64 + - name: domain + level: extended + type: keyword + ignore_above: 1024 + description: 'Name of the domain of which the host is a member. + + For example, on Windows this could be the host''s Active Directory domain or NetBIOS domain name. For Linux this could be the domain of the host''s LDAP provider.' + example: CONTOSO + default_field: false + - name: hostname + level: core + type: keyword + ignore_above: 1024 + description: 'Hostname of the host. + + It normally contains what the `hostname` command returns on the host machine.' + - name: id + level: core + type: keyword + ignore_above: 1024 + description: 'Unique host id. + + As hostname is not always unique, use values that are meaningful in your environment. + + Example: The current usage of `beat.name`.' + - name: mac + level: core + type: keyword + ignore_above: 1024 + description: Host mac addresses. + - name: name + level: core + type: keyword + ignore_above: 1024 + description: 'Name of the host. + + It can contain what `hostname` returns on Unix systems, the fully qualified domain name, or a name specified by the user. The sender decides which value to use.' + - name: os.family + level: extended + type: keyword + ignore_above: 1024 + description: OS family (such as redhat, debian, freebsd, windows). + example: debian + - name: os.kernel + level: extended + type: keyword + ignore_above: 1024 + description: Operating system kernel version as a raw string. + example: 4.4.0-112-generic + - name: os.name + level: extended + type: keyword + ignore_above: 1024 + multi_fields: + - name: text + type: text + norms: false + default_field: false + description: Operating system name, without the version. + example: Mac OS X + - name: os.platform + level: extended + type: keyword + ignore_above: 1024 + description: Operating system platform (such centos, ubuntu, windows). + example: darwin + - name: os.version + level: extended + type: keyword + ignore_above: 1024 + description: Operating system version as a raw string. + example: 10.14.1 + - name: type + level: core + type: keyword + ignore_above: 1024 + description: 'Type of host. + + For Cloud providers this can be the machine type like `t2.medium`. If vm, this could be the container, for example, or other information meaningful in your environment.' + - name: containerized + type: boolean + description: > + If the host is a container. + + - name: os.build + type: keyword + example: "18D109" + description: > + OS build information. + + - name: os.codename + type: keyword + example: "stretch" + description: > + OS codename, if any. + +- name: input.type + type: keyword + description: Input type +- name: log.offset + type: long + description: Log offset diff --git a/packages/gitlab/data_stream/audit/fields/base-fields.yml b/packages/gitlab/data_stream/audit/fields/base-fields.yml new file mode 100644 index 000000000000..7c798f4534ca --- /dev/null +++ b/packages/gitlab/data_stream/audit/fields/base-fields.yml @@ -0,0 +1,12 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: '@timestamp' + type: date + description: Event timestamp. diff --git a/packages/gitlab/data_stream/audit/fields/beats.yml b/packages/gitlab/data_stream/audit/fields/beats.yml new file mode 100644 index 000000000000..0aa6abd92e14 --- /dev/null +++ b/packages/gitlab/data_stream/audit/fields/beats.yml @@ -0,0 +1,12 @@ +- name: log.flags + type: keyword + description: Flags for the log file. +- name: log.file + type: group + fields: + - name: device_id + type: keyword + description: ID of the device containing the filesystem where the file resides. + - name: inode + type: keyword + description: Inode number of the log file. diff --git a/packages/gitlab/data_stream/audit/fields/fields.yml b/packages/gitlab/data_stream/audit/fields/fields.yml new file mode 100644 index 000000000000..9eef146ea892 --- /dev/null +++ b/packages/gitlab/data_stream/audit/fields/fields.yml @@ -0,0 +1,45 @@ +- name: gitlab + type: group + fields: + - name: audit + type: group + fields: + - name: change + type: keyword + - name: from + type: keyword + - name: to + type: keyword + - name: target_id + type: long + - name: target_type + type: keyword + - name: target_details + type: keyword + - name: created_at + type: date + - name: entity_id + type: long + - name: entity_type + type: keyword + - name: with + type: keyword + - name: meta + type: group + fields: + - name: caller_id + type: keyword + - name: remote_ip + type: ip + - name: feature_category + type: keyword + - name: user + type: keyword + - name: user_id + type: long + - name: project + type: keyword + - name: root_namespace + type: keyword + - name: client_id + type: keyword diff --git a/packages/gitlab/data_stream/audit/manifest.yml b/packages/gitlab/data_stream/audit/manifest.yml new file mode 100644 index 000000000000..d6c35687a7d3 --- /dev/null +++ b/packages/gitlab/data_stream/audit/manifest.yml @@ -0,0 +1,86 @@ +title: "Audit" +type: logs +streams: + - input: filestream + title: GitLab Audit Logs + description: Gitlab Audit Logs + vars: + - name: paths + type: text + title: Paths + multi: true + default: + - /var/log/gitlab/gitlab-rails/audit_json.log + - /home/git/gitlab/log/audit_json.log + - name: exclude_files + type: text + title: Exclude Files + description: A list of regular expressions to match the files that you want Filebeat to ignore. + required: false + show_user: true + default: + - '\.gz$' + - name: custom + type: yaml + title: Additional Filestream Configuration Options + required: false + show_user: false + description: >- + Configuration options that can be used to further change input configuration. Check the [Filebeat documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-filestream.html) for more information. + default: |- + #encoding: plain + prospector.scanner.recursive_glob: true + #prospector.scanner.symlinks: true + #prospector.scanner.include_files: [''] + #prospector.scanner.resend_on_touch: false + #prospector.scanner.check_interval: 10s + #prospector.scanner.fingerprint.enabled: false + #prospector.scanner.fingerprint.offset: 0 + #prospector.scanner.fingerprint.length: 1024 + #ignore_older: 0 + #ignore_inactive: '' + #close.on_state_change.inactive: 5m + #close.on_state_change.renamed: false + #close.on_state_change.removed: false + #close.reader.on_eof: false + #close.reader.after_interval: 0 + #clean_inactive: 0 + #clean_removed: true + #backoff.init: 2s + #backoff.max: 10s + #file_identity.native: ~ + #file_identity.path: '' + #file_identity.inode_marker.path: '' + #file_identity.fingerprint: ~ + #rotation.external.strategy.copytruncate.suffix_regex: '\.\d$' + #rotation.external.strategy.copytruncate.dateformat: '-20060102' + #include_lines: ['sometext'] + #exclude_lines: ['^DBG'] + #buffer_size: 16384 + #message_max_bytes: 1048576 + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - gitlab-audit + - forwarded + - name: preserve_original_event + required: true + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original` + type: bool + multi: false + default: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details. + diff --git a/packages/gitlab/data_stream/audit/sample_event.json b/packages/gitlab/data_stream/audit/sample_event.json new file mode 100644 index 000000000000..16e3dd97c883 --- /dev/null +++ b/packages/gitlab/data_stream/audit/sample_event.json @@ -0,0 +1,74 @@ +{ + "@timestamp": "2018-10-17T17:38:22.523Z", + "agent": { + "ephemeral_id": "88cea3d2-b910-479c-9a11-035ae92ed5c0", + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.14.1" + }, + "data_stream": { + "dataset": "gitlab.audit", + "namespace": "33114", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "snapshot": false, + "version": "8.14.1" + }, + "event": { + "agent_id_status": "verified", + "category": [ + "web" + ], + "dataset": "gitlab.audit", + "ingested": "2024-08-05T14:18:18Z", + "original": "{\"severity\": \"INFO\",\"time\": \"2018-10-17T17:38:22.523Z\",\"author_id\": 3,\"entity_id\": 2,\"entity_type\": \"Project\",\"change\": \"visibility\",\"from\": \"Private\",\"to\": \"Public\",\"author_name\": \"John Doe4\",\"target_id\": 2,\"target_type\": \"Project\",\"target_details\": \"namespace2/project2\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "audit": { + "change": "visibility", + "entity_id": 2, + "entity_type": "Project", + "from": "Private", + "target_details": "namespace2/project2", + "target_id": 2, + "target_type": "Project", + "to": "Public" + } + }, + "input": { + "type": "filestream" + }, + "log": { + "file": { + "device_id": "30", + "inode": "235", + "path": "/tmp/service_logs/test-gitlab-audit.log" + }, + "offset": 507 + }, + "related": { + "user": [ + "3", + "John Doe4" + ] + }, + "tags": [ + "preserve_original_event", + "gitlab-audit", + "forwarded" + ], + "user": { + "id": "3", + "name": "John Doe4" + } +} \ No newline at end of file diff --git a/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-auth.log b/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-auth.log new file mode 100644 index 000000000000..47ca1c46c66e --- /dev/null +++ b/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-auth.log @@ -0,0 +1,5 @@ +{"severity": "ERROR","time": "2023-04-19T22:14:25.893Z","correlation_id": "01GYDSAKAN2SPZPAMJNRWW5H8S","message": "Rack_Attack","env": "blocklist","remote_ip": "67.43.156.18","request_method": "GET","path": "/group/project.git/info/refs?service=git-upload-pack"} +{"severity":"ERROR","time":"2024-05-31T12:24:57.330Z","correlation_id":"01HZ79RFQ9K41JQBXF49J73B49","message":"Rack_Attack","env":"throttle","remote_ip":"192.168.65.1","request_method":"GET","path":"/api/v4/projects","matched":"throttle_unauthenticated_api","status":429,"redis_calls":1,"redis_duration_s":0.000269,"redis_read_bytes":1,"redis_write_bytes":81,"redis_rate_limiting_calls":1,"redis_rate_limiting_duration_s":0.000269,"redis_rate_limiting_read_bytes":1,"redis_rate_limiting_write_bytes":81,"db_count":0,"db_write_count":0,"db_cached_count":0,"db_txn_count":0,"db_replica_txn_count":0,"db_primary_txn_count":0,"db_main_txn_count":0,"db_ci_txn_count":0,"db_main_replica_txn_count":0,"db_ci_replica_txn_count":0,"db_replica_count":0,"db_primary_count":0,"db_main_count":0,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":0,"db_main_cached_count":0,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_txn_duration_s":0.0,"db_primary_txn_duration_s":0.0,"db_main_txn_duration_s":0.0,"db_ci_txn_duration_s":0.0,"db_main_replica_txn_duration_s":0.0,"db_ci_replica_txn_duration_s":0.0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.0,"db_main_duration_s":0.0,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.006771,"mem_objects":3752,"mem_bytes":368312,"mem_mallocs":1283,"mem_total_bytes":518392,"pid":1162,"worker_id":"puma_4","rate_limiting_gates":[]} +{"severity":"ERROR","time":"2024-05-31T12:24:57.729Z","correlation_id":"01HZ79RG3N4NP8RY61SVCKDDND","message":"Rack_Attack","env":"throttle","remote_ip":"192.168.65.1","request_method":"GET","path":"/api/v4/projects","matched":"throttle_unauthenticated_api","status":429,"redis_calls":2,"redis_duration_s":0.000666,"redis_read_bytes":1,"redis_write_bytes":81,"redis_rate_limiting_calls":2,"redis_rate_limiting_duration_s":0.000666,"redis_rate_limiting_read_bytes":1,"redis_rate_limiting_write_bytes":81,"db_count":0,"db_write_count":0,"db_cached_count":0,"db_txn_count":0,"db_replica_txn_count":0,"db_primary_txn_count":0,"db_main_txn_count":0,"db_ci_txn_count":0,"db_main_replica_txn_count":0,"db_ci_replica_txn_count":0,"db_replica_count":0,"db_primary_count":0,"db_main_count":0,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":0,"db_main_cached_count":0,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_txn_duration_s":0.0,"db_primary_txn_duration_s":0.0,"db_main_txn_duration_s":0.0,"db_ci_txn_duration_s":0.0,"db_main_replica_txn_duration_s":0.0,"db_ci_replica_txn_duration_s":0.0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.0,"db_main_duration_s":0.0,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.00834,"mem_objects":3823,"mem_bytes":418584,"mem_mallocs":1694,"mem_total_bytes":571504,"pid":1159,"worker_id":"puma_0","rate_limiting_gates":[]} +{"severity":"ERROR","time":"2024-05-31T12:24:58.112Z","correlation_id":"01HZ79RGFQE862KRM3SVDZ3GSE","message":"Rack_Attack","env":"throttle","remote_ip":"192.168.65.1","request_method":"GET","path":"/api/v4/projects","matched":"throttle_unauthenticated_api","status":429,"redis_calls":1,"redis_duration_s":0.00033,"redis_read_bytes":1,"redis_write_bytes":81,"redis_rate_limiting_calls":1,"redis_rate_limiting_duration_s":0.00033,"redis_rate_limiting_read_bytes":1,"redis_rate_limiting_write_bytes":81,"db_count":0,"db_write_count":0,"db_cached_count":0,"db_txn_count":0,"db_replica_txn_count":0,"db_primary_txn_count":0,"db_main_txn_count":0,"db_ci_txn_count":0,"db_main_replica_txn_count":0,"db_ci_replica_txn_count":0,"db_replica_count":0,"db_primary_count":0,"db_main_count":0,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":0,"db_main_cached_count":0,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_txn_duration_s":0.0,"db_primary_txn_duration_s":0.0,"db_main_txn_duration_s":0.0,"db_ci_txn_duration_s":0.0,"db_main_replica_txn_duration_s":0.0,"db_ci_replica_txn_duration_s":0.0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.0,"db_main_duration_s":0.0,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.007194,"mem_objects":3821,"mem_bytes":368312,"mem_mallocs":1281,"mem_total_bytes":521152,"pid":1142,"worker_id":"puma_2","rate_limiting_gates":[]} +{"severity":"ERROR","time":"2024-05-31T14:39:59.837Z","correlation_id":"01HZ7HFRAEYXN6YYZ45FKBF9B8","message":"Rack_Attack","env":"throttle","remote_ip":"192.168.65.1","request_method":"POST","path":"/api/v4/users?private_token=glpat-xxxxxxxxxxxx&email=test@elastic.co&name=test&username=test","matched":"throttle_authenticated_api","status":429,"user_id":2,"meta.user":"test","redis_calls":1,"redis_duration_s":0.000288,"redis_read_bytes":1,"redis_write_bytes":73,"redis_rate_limiting_calls":1,"redis_rate_limiting_duration_s":0.000288,"redis_rate_limiting_read_bytes":1,"redis_rate_limiting_write_bytes":73,"db_count":3,"db_write_count":0,"db_cached_count":1,"db_txn_count":0,"db_replica_txn_count":0,"db_primary_txn_count":0,"db_main_txn_count":0,"db_ci_txn_count":0,"db_main_replica_txn_count":0,"db_ci_replica_txn_count":0,"db_replica_count":0,"db_primary_count":3,"db_main_count":3,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":1,"db_main_cached_count":1,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_txn_duration_s":0.0,"db_primary_txn_duration_s":0.0,"db_main_txn_duration_s":0.0,"db_ci_txn_duration_s":0.0,"db_main_replica_txn_duration_s":0.0,"db_ci_replica_txn_duration_s":0.0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.001,"db_main_duration_s":0.001,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.011389,"mem_objects":5166,"mem_bytes":448024,"mem_mallocs":1444,"mem_total_bytes":654664,"pid":1068,"worker_id":"puma_4","rate_limiting_gates":[]} diff --git a/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-auth.log-expected.json b/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-auth.log-expected.json new file mode 100644 index 000000000000..711f12be3584 --- /dev/null +++ b/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-auth.log-expected.json @@ -0,0 +1,539 @@ +{ + "expected": [ + { + "@timestamp": "2023-04-19T22:14:25.893Z", + "client": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "web" + ], + "id": "01GYDSAKAN2SPZPAMJNRWW5H8S", + "original": "{\"severity\": \"ERROR\",\"time\": \"2023-04-19T22:14:25.893Z\",\"correlation_id\": \"01GYDSAKAN2SPZPAMJNRWW5H8S\",\"message\": \"Rack_Attack\",\"env\": \"blocklist\",\"remote_ip\": \"67.43.156.18\",\"request_method\": \"GET\",\"path\": \"/group/project.git/info/refs?service=git-upload-pack\"}", + "severity": 3, + "type": [ + "info" + ] + }, + "gitlab": { + "auth": { + "env": "blocklist", + "message": "Rack_Attack" + } + }, + "http": { + "request": { + "method": "GET" + } + }, + "related": { + "ip": [ + "67.43.156.18" + ] + }, + "source": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "tags": [ + "preserve_original_event" + ], + "url": { + "path": "/group/project.git/info/refs", + "query": "service=git-upload-pack" + } + }, + { + "@timestamp": "2024-05-31T12:24:57.330Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "web" + ], + "id": "01HZ79RFQ9K41JQBXF49J73B49", + "original": "{\"severity\":\"ERROR\",\"time\":\"2024-05-31T12:24:57.330Z\",\"correlation_id\":\"01HZ79RFQ9K41JQBXF49J73B49\",\"message\":\"Rack_Attack\",\"env\":\"throttle\",\"remote_ip\":\"192.168.65.1\",\"request_method\":\"GET\",\"path\":\"/api/v4/projects\",\"matched\":\"throttle_unauthenticated_api\",\"status\":429,\"redis_calls\":1,\"redis_duration_s\":0.000269,\"redis_read_bytes\":1,\"redis_write_bytes\":81,\"redis_rate_limiting_calls\":1,\"redis_rate_limiting_duration_s\":0.000269,\"redis_rate_limiting_read_bytes\":1,\"redis_rate_limiting_write_bytes\":81,\"db_count\":0,\"db_write_count\":0,\"db_cached_count\":0,\"db_txn_count\":0,\"db_replica_txn_count\":0,\"db_primary_txn_count\":0,\"db_main_txn_count\":0,\"db_ci_txn_count\":0,\"db_main_replica_txn_count\":0,\"db_ci_replica_txn_count\":0,\"db_replica_count\":0,\"db_primary_count\":0,\"db_main_count\":0,\"db_ci_count\":0,\"db_main_replica_count\":0,\"db_ci_replica_count\":0,\"db_replica_cached_count\":0,\"db_primary_cached_count\":0,\"db_main_cached_count\":0,\"db_ci_cached_count\":0,\"db_main_replica_cached_count\":0,\"db_ci_replica_cached_count\":0,\"db_replica_wal_count\":0,\"db_primary_wal_count\":0,\"db_main_wal_count\":0,\"db_ci_wal_count\":0,\"db_main_replica_wal_count\":0,\"db_ci_replica_wal_count\":0,\"db_replica_wal_cached_count\":0,\"db_primary_wal_cached_count\":0,\"db_main_wal_cached_count\":0,\"db_ci_wal_cached_count\":0,\"db_main_replica_wal_cached_count\":0,\"db_ci_replica_wal_cached_count\":0,\"db_replica_txn_duration_s\":0.0,\"db_primary_txn_duration_s\":0.0,\"db_main_txn_duration_s\":0.0,\"db_ci_txn_duration_s\":0.0,\"db_main_replica_txn_duration_s\":0.0,\"db_ci_replica_txn_duration_s\":0.0,\"db_replica_duration_s\":0.0,\"db_primary_duration_s\":0.0,\"db_main_duration_s\":0.0,\"db_ci_duration_s\":0.0,\"db_main_replica_duration_s\":0.0,\"db_ci_replica_duration_s\":0.0,\"cpu_s\":0.006771,\"mem_objects\":3752,\"mem_bytes\":368312,\"mem_mallocs\":1283,\"mem_total_bytes\":518392,\"pid\":1162,\"worker_id\":\"puma_4\",\"rate_limiting_gates\":[]}", + "severity": 3, + "type": [ + "info" + ] + }, + "gitlab": { + "auth": { + "cpu_s": 0.006771, + "db_cached_count": 0, + "db_ci_cached_count": 0, + "db_ci_count": 0, + "db_ci_duration_s": 0.0, + "db_ci_replica_cached_count": 0, + "db_ci_replica_count": 0, + "db_ci_replica_duration_s": 0.0, + "db_ci_replica_txn_count": 0, + "db_ci_replica_txn_duration_s": 0.0, + "db_ci_replica_wal_cached_count": 0, + "db_ci_replica_wal_count": 0, + "db_ci_txn_count": 0, + "db_ci_txn_duration_s": 0.0, + "db_ci_wal_cached_count": 0, + "db_ci_wal_count": 0, + "db_count": 0, + "db_main_cached_count": 0, + "db_main_count": 0, + "db_main_duration_s": 0.0, + "db_main_replica_cached_count": 0, + "db_main_replica_count": 0, + "db_main_replica_duration_s": 0.0, + "db_main_replica_txn_count": 0, + "db_main_replica_txn_duration_s": 0.0, + "db_main_replica_wal_cached_count": 0, + "db_main_replica_wal_count": 0, + "db_main_txn_count": 0, + "db_main_txn_duration_s": 0.0, + "db_main_wal_cached_count": 0, + "db_main_wal_count": 0, + "db_primary_cached_count": 0, + "db_primary_count": 0, + "db_primary_duration_s": 0.0, + "db_primary_txn_count": 0, + "db_primary_txn_duration_s": 0.0, + "db_primary_wal_cached_count": 0, + "db_primary_wal_count": 0, + "db_replica_cached_count": 0, + "db_replica_count": 0, + "db_replica_duration_s": 0.0, + "db_replica_txn_count": 0, + "db_replica_txn_duration_s": 0.0, + "db_replica_wal_cached_count": 0, + "db_replica_wal_count": 0, + "db_txn_count": 0, + "db_write_count": 0, + "env": "throttle", + "matched": "throttle_unauthenticated_api", + "mem_bytes": 368312, + "mem_mallocs": 1283, + "mem_objects": 3752, + "mem_total_bytes": 518392, + "message": "Rack_Attack", + "redis_calls": 1, + "redis_duration_s": 2.69E-4, + "redis_rate_limiting_calls": 1, + "redis_rate_limiting_duration_s": 2.69E-4, + "redis_rate_limiting_read_bytes": 1, + "redis_rate_limiting_write_bytes": 81, + "redis_read_bytes": 1, + "redis_write_bytes": 81, + "worker_id": "puma_4" + } + }, + "http": { + "request": { + "method": "GET" + }, + "response": { + "status_code": 429 + } + }, + "process": { + "pid": 1162 + }, + "related": { + "ip": [ + "192.168.65.1" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "url": { + "path": "/api/v4/projects" + } + }, + { + "@timestamp": "2024-05-31T12:24:57.729Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "web" + ], + "id": "01HZ79RG3N4NP8RY61SVCKDDND", + "original": "{\"severity\":\"ERROR\",\"time\":\"2024-05-31T12:24:57.729Z\",\"correlation_id\":\"01HZ79RG3N4NP8RY61SVCKDDND\",\"message\":\"Rack_Attack\",\"env\":\"throttle\",\"remote_ip\":\"192.168.65.1\",\"request_method\":\"GET\",\"path\":\"/api/v4/projects\",\"matched\":\"throttle_unauthenticated_api\",\"status\":429,\"redis_calls\":2,\"redis_duration_s\":0.000666,\"redis_read_bytes\":1,\"redis_write_bytes\":81,\"redis_rate_limiting_calls\":2,\"redis_rate_limiting_duration_s\":0.000666,\"redis_rate_limiting_read_bytes\":1,\"redis_rate_limiting_write_bytes\":81,\"db_count\":0,\"db_write_count\":0,\"db_cached_count\":0,\"db_txn_count\":0,\"db_replica_txn_count\":0,\"db_primary_txn_count\":0,\"db_main_txn_count\":0,\"db_ci_txn_count\":0,\"db_main_replica_txn_count\":0,\"db_ci_replica_txn_count\":0,\"db_replica_count\":0,\"db_primary_count\":0,\"db_main_count\":0,\"db_ci_count\":0,\"db_main_replica_count\":0,\"db_ci_replica_count\":0,\"db_replica_cached_count\":0,\"db_primary_cached_count\":0,\"db_main_cached_count\":0,\"db_ci_cached_count\":0,\"db_main_replica_cached_count\":0,\"db_ci_replica_cached_count\":0,\"db_replica_wal_count\":0,\"db_primary_wal_count\":0,\"db_main_wal_count\":0,\"db_ci_wal_count\":0,\"db_main_replica_wal_count\":0,\"db_ci_replica_wal_count\":0,\"db_replica_wal_cached_count\":0,\"db_primary_wal_cached_count\":0,\"db_main_wal_cached_count\":0,\"db_ci_wal_cached_count\":0,\"db_main_replica_wal_cached_count\":0,\"db_ci_replica_wal_cached_count\":0,\"db_replica_txn_duration_s\":0.0,\"db_primary_txn_duration_s\":0.0,\"db_main_txn_duration_s\":0.0,\"db_ci_txn_duration_s\":0.0,\"db_main_replica_txn_duration_s\":0.0,\"db_ci_replica_txn_duration_s\":0.0,\"db_replica_duration_s\":0.0,\"db_primary_duration_s\":0.0,\"db_main_duration_s\":0.0,\"db_ci_duration_s\":0.0,\"db_main_replica_duration_s\":0.0,\"db_ci_replica_duration_s\":0.0,\"cpu_s\":0.00834,\"mem_objects\":3823,\"mem_bytes\":418584,\"mem_mallocs\":1694,\"mem_total_bytes\":571504,\"pid\":1159,\"worker_id\":\"puma_0\",\"rate_limiting_gates\":[]}", + "severity": 3, + "type": [ + "info" + ] + }, + "gitlab": { + "auth": { + "cpu_s": 0.00834, + "db_cached_count": 0, + "db_ci_cached_count": 0, + "db_ci_count": 0, + "db_ci_duration_s": 0.0, + "db_ci_replica_cached_count": 0, + "db_ci_replica_count": 0, + "db_ci_replica_duration_s": 0.0, + "db_ci_replica_txn_count": 0, + "db_ci_replica_txn_duration_s": 0.0, + "db_ci_replica_wal_cached_count": 0, + "db_ci_replica_wal_count": 0, + "db_ci_txn_count": 0, + "db_ci_txn_duration_s": 0.0, + "db_ci_wal_cached_count": 0, + "db_ci_wal_count": 0, + "db_count": 0, + "db_main_cached_count": 0, + "db_main_count": 0, + "db_main_duration_s": 0.0, + "db_main_replica_cached_count": 0, + "db_main_replica_count": 0, + "db_main_replica_duration_s": 0.0, + "db_main_replica_txn_count": 0, + "db_main_replica_txn_duration_s": 0.0, + "db_main_replica_wal_cached_count": 0, + "db_main_replica_wal_count": 0, + "db_main_txn_count": 0, + "db_main_txn_duration_s": 0.0, + "db_main_wal_cached_count": 0, + "db_main_wal_count": 0, + "db_primary_cached_count": 0, + "db_primary_count": 0, + "db_primary_duration_s": 0.0, + "db_primary_txn_count": 0, + "db_primary_txn_duration_s": 0.0, + "db_primary_wal_cached_count": 0, + "db_primary_wal_count": 0, + "db_replica_cached_count": 0, + "db_replica_count": 0, + "db_replica_duration_s": 0.0, + "db_replica_txn_count": 0, + "db_replica_txn_duration_s": 0.0, + "db_replica_wal_cached_count": 0, + "db_replica_wal_count": 0, + "db_txn_count": 0, + "db_write_count": 0, + "env": "throttle", + "matched": "throttle_unauthenticated_api", + "mem_bytes": 418584, + "mem_mallocs": 1694, + "mem_objects": 3823, + "mem_total_bytes": 571504, + "message": "Rack_Attack", + "redis_calls": 2, + "redis_duration_s": 6.66E-4, + "redis_rate_limiting_calls": 2, + "redis_rate_limiting_duration_s": 6.66E-4, + "redis_rate_limiting_read_bytes": 1, + "redis_rate_limiting_write_bytes": 81, + "redis_read_bytes": 1, + "redis_write_bytes": 81, + "worker_id": "puma_0" + } + }, + "http": { + "request": { + "method": "GET" + }, + "response": { + "status_code": 429 + } + }, + "process": { + "pid": 1159 + }, + "related": { + "ip": [ + "192.168.65.1" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "url": { + "path": "/api/v4/projects" + } + }, + { + "@timestamp": "2024-05-31T12:24:58.112Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "web" + ], + "id": "01HZ79RGFQE862KRM3SVDZ3GSE", + "original": "{\"severity\":\"ERROR\",\"time\":\"2024-05-31T12:24:58.112Z\",\"correlation_id\":\"01HZ79RGFQE862KRM3SVDZ3GSE\",\"message\":\"Rack_Attack\",\"env\":\"throttle\",\"remote_ip\":\"192.168.65.1\",\"request_method\":\"GET\",\"path\":\"/api/v4/projects\",\"matched\":\"throttle_unauthenticated_api\",\"status\":429,\"redis_calls\":1,\"redis_duration_s\":0.00033,\"redis_read_bytes\":1,\"redis_write_bytes\":81,\"redis_rate_limiting_calls\":1,\"redis_rate_limiting_duration_s\":0.00033,\"redis_rate_limiting_read_bytes\":1,\"redis_rate_limiting_write_bytes\":81,\"db_count\":0,\"db_write_count\":0,\"db_cached_count\":0,\"db_txn_count\":0,\"db_replica_txn_count\":0,\"db_primary_txn_count\":0,\"db_main_txn_count\":0,\"db_ci_txn_count\":0,\"db_main_replica_txn_count\":0,\"db_ci_replica_txn_count\":0,\"db_replica_count\":0,\"db_primary_count\":0,\"db_main_count\":0,\"db_ci_count\":0,\"db_main_replica_count\":0,\"db_ci_replica_count\":0,\"db_replica_cached_count\":0,\"db_primary_cached_count\":0,\"db_main_cached_count\":0,\"db_ci_cached_count\":0,\"db_main_replica_cached_count\":0,\"db_ci_replica_cached_count\":0,\"db_replica_wal_count\":0,\"db_primary_wal_count\":0,\"db_main_wal_count\":0,\"db_ci_wal_count\":0,\"db_main_replica_wal_count\":0,\"db_ci_replica_wal_count\":0,\"db_replica_wal_cached_count\":0,\"db_primary_wal_cached_count\":0,\"db_main_wal_cached_count\":0,\"db_ci_wal_cached_count\":0,\"db_main_replica_wal_cached_count\":0,\"db_ci_replica_wal_cached_count\":0,\"db_replica_txn_duration_s\":0.0,\"db_primary_txn_duration_s\":0.0,\"db_main_txn_duration_s\":0.0,\"db_ci_txn_duration_s\":0.0,\"db_main_replica_txn_duration_s\":0.0,\"db_ci_replica_txn_duration_s\":0.0,\"db_replica_duration_s\":0.0,\"db_primary_duration_s\":0.0,\"db_main_duration_s\":0.0,\"db_ci_duration_s\":0.0,\"db_main_replica_duration_s\":0.0,\"db_ci_replica_duration_s\":0.0,\"cpu_s\":0.007194,\"mem_objects\":3821,\"mem_bytes\":368312,\"mem_mallocs\":1281,\"mem_total_bytes\":521152,\"pid\":1142,\"worker_id\":\"puma_2\",\"rate_limiting_gates\":[]}", + "severity": 3, + "type": [ + "info" + ] + }, + "gitlab": { + "auth": { + "cpu_s": 0.007194, + "db_cached_count": 0, + "db_ci_cached_count": 0, + "db_ci_count": 0, + "db_ci_duration_s": 0.0, + "db_ci_replica_cached_count": 0, + "db_ci_replica_count": 0, + "db_ci_replica_duration_s": 0.0, + "db_ci_replica_txn_count": 0, + "db_ci_replica_txn_duration_s": 0.0, + "db_ci_replica_wal_cached_count": 0, + "db_ci_replica_wal_count": 0, + "db_ci_txn_count": 0, + "db_ci_txn_duration_s": 0.0, + "db_ci_wal_cached_count": 0, + "db_ci_wal_count": 0, + "db_count": 0, + "db_main_cached_count": 0, + "db_main_count": 0, + "db_main_duration_s": 0.0, + "db_main_replica_cached_count": 0, + "db_main_replica_count": 0, + "db_main_replica_duration_s": 0.0, + "db_main_replica_txn_count": 0, + "db_main_replica_txn_duration_s": 0.0, + "db_main_replica_wal_cached_count": 0, + "db_main_replica_wal_count": 0, + "db_main_txn_count": 0, + "db_main_txn_duration_s": 0.0, + "db_main_wal_cached_count": 0, + "db_main_wal_count": 0, + "db_primary_cached_count": 0, + "db_primary_count": 0, + "db_primary_duration_s": 0.0, + "db_primary_txn_count": 0, + "db_primary_txn_duration_s": 0.0, + "db_primary_wal_cached_count": 0, + "db_primary_wal_count": 0, + "db_replica_cached_count": 0, + "db_replica_count": 0, + "db_replica_duration_s": 0.0, + "db_replica_txn_count": 0, + "db_replica_txn_duration_s": 0.0, + "db_replica_wal_cached_count": 0, + "db_replica_wal_count": 0, + "db_txn_count": 0, + "db_write_count": 0, + "env": "throttle", + "matched": "throttle_unauthenticated_api", + "mem_bytes": 368312, + "mem_mallocs": 1281, + "mem_objects": 3821, + "mem_total_bytes": 521152, + "message": "Rack_Attack", + "redis_calls": 1, + "redis_duration_s": 3.3E-4, + "redis_rate_limiting_calls": 1, + "redis_rate_limiting_duration_s": 3.3E-4, + "redis_rate_limiting_read_bytes": 1, + "redis_rate_limiting_write_bytes": 81, + "redis_read_bytes": 1, + "redis_write_bytes": 81, + "worker_id": "puma_2" + } + }, + "http": { + "request": { + "method": "GET" + }, + "response": { + "status_code": 429 + } + }, + "process": { + "pid": 1142 + }, + "related": { + "ip": [ + "192.168.65.1" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "url": { + "path": "/api/v4/projects" + } + }, + { + "@timestamp": "2024-05-31T14:39:59.837Z", + "client": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "web" + ], + "id": "01HZ7HFRAEYXN6YYZ45FKBF9B8", + "original": "{\"severity\":\"ERROR\",\"time\":\"2024-05-31T14:39:59.837Z\",\"correlation_id\":\"01HZ7HFRAEYXN6YYZ45FKBF9B8\",\"message\":\"Rack_Attack\",\"env\":\"throttle\",\"remote_ip\":\"192.168.65.1\",\"request_method\":\"POST\",\"path\":\"/api/v4/users?private_token=glpat-xxxxxxxxxxxx&email=test@elastic.co&name=test&username=test\",\"matched\":\"throttle_authenticated_api\",\"status\":429,\"user_id\":2,\"meta.user\":\"test\",\"redis_calls\":1,\"redis_duration_s\":0.000288,\"redis_read_bytes\":1,\"redis_write_bytes\":73,\"redis_rate_limiting_calls\":1,\"redis_rate_limiting_duration_s\":0.000288,\"redis_rate_limiting_read_bytes\":1,\"redis_rate_limiting_write_bytes\":73,\"db_count\":3,\"db_write_count\":0,\"db_cached_count\":1,\"db_txn_count\":0,\"db_replica_txn_count\":0,\"db_primary_txn_count\":0,\"db_main_txn_count\":0,\"db_ci_txn_count\":0,\"db_main_replica_txn_count\":0,\"db_ci_replica_txn_count\":0,\"db_replica_count\":0,\"db_primary_count\":3,\"db_main_count\":3,\"db_ci_count\":0,\"db_main_replica_count\":0,\"db_ci_replica_count\":0,\"db_replica_cached_count\":0,\"db_primary_cached_count\":1,\"db_main_cached_count\":1,\"db_ci_cached_count\":0,\"db_main_replica_cached_count\":0,\"db_ci_replica_cached_count\":0,\"db_replica_wal_count\":0,\"db_primary_wal_count\":0,\"db_main_wal_count\":0,\"db_ci_wal_count\":0,\"db_main_replica_wal_count\":0,\"db_ci_replica_wal_count\":0,\"db_replica_wal_cached_count\":0,\"db_primary_wal_cached_count\":0,\"db_main_wal_cached_count\":0,\"db_ci_wal_cached_count\":0,\"db_main_replica_wal_cached_count\":0,\"db_ci_replica_wal_cached_count\":0,\"db_replica_txn_duration_s\":0.0,\"db_primary_txn_duration_s\":0.0,\"db_main_txn_duration_s\":0.0,\"db_ci_txn_duration_s\":0.0,\"db_main_replica_txn_duration_s\":0.0,\"db_ci_replica_txn_duration_s\":0.0,\"db_replica_duration_s\":0.0,\"db_primary_duration_s\":0.001,\"db_main_duration_s\":0.001,\"db_ci_duration_s\":0.0,\"db_main_replica_duration_s\":0.0,\"db_ci_replica_duration_s\":0.0,\"cpu_s\":0.011389,\"mem_objects\":5166,\"mem_bytes\":448024,\"mem_mallocs\":1444,\"mem_total_bytes\":654664,\"pid\":1068,\"worker_id\":\"puma_4\",\"rate_limiting_gates\":[]}", + "severity": 3, + "type": [ + "info" + ] + }, + "gitlab": { + "auth": { + "cpu_s": 0.011389, + "db_cached_count": 1, + "db_ci_cached_count": 0, + "db_ci_count": 0, + "db_ci_duration_s": 0.0, + "db_ci_replica_cached_count": 0, + "db_ci_replica_count": 0, + "db_ci_replica_duration_s": 0.0, + "db_ci_replica_txn_count": 0, + "db_ci_replica_txn_duration_s": 0.0, + "db_ci_replica_wal_cached_count": 0, + "db_ci_replica_wal_count": 0, + "db_ci_txn_count": 0, + "db_ci_txn_duration_s": 0.0, + "db_ci_wal_cached_count": 0, + "db_ci_wal_count": 0, + "db_count": 3, + "db_main_cached_count": 1, + "db_main_count": 3, + "db_main_duration_s": 0.001, + "db_main_replica_cached_count": 0, + "db_main_replica_count": 0, + "db_main_replica_duration_s": 0.0, + "db_main_replica_txn_count": 0, + "db_main_replica_txn_duration_s": 0.0, + "db_main_replica_wal_cached_count": 0, + "db_main_replica_wal_count": 0, + "db_main_txn_count": 0, + "db_main_txn_duration_s": 0.0, + "db_main_wal_cached_count": 0, + "db_main_wal_count": 0, + "db_primary_cached_count": 1, + "db_primary_count": 3, + "db_primary_duration_s": 0.001, + "db_primary_txn_count": 0, + "db_primary_txn_duration_s": 0.0, + "db_primary_wal_cached_count": 0, + "db_primary_wal_count": 0, + "db_replica_cached_count": 0, + "db_replica_count": 0, + "db_replica_duration_s": 0.0, + "db_replica_txn_count": 0, + "db_replica_txn_duration_s": 0.0, + "db_replica_wal_cached_count": 0, + "db_replica_wal_count": 0, + "db_txn_count": 0, + "db_write_count": 0, + "env": "throttle", + "matched": "throttle_authenticated_api", + "mem_bytes": 448024, + "mem_mallocs": 1444, + "mem_objects": 5166, + "mem_total_bytes": 654664, + "message": "Rack_Attack", + "meta": { + "user": "test" + }, + "redis_calls": 1, + "redis_duration_s": 2.88E-4, + "redis_rate_limiting_calls": 1, + "redis_rate_limiting_duration_s": 2.88E-4, + "redis_rate_limiting_read_bytes": 1, + "redis_rate_limiting_write_bytes": 73, + "redis_read_bytes": 1, + "redis_write_bytes": 73, + "worker_id": "puma_4" + } + }, + "http": { + "request": { + "method": "POST" + }, + "response": { + "status_code": 429 + } + }, + "process": { + "pid": 1068 + }, + "related": { + "ip": [ + "192.168.65.1" + ] + }, + "source": { + "address": "192.168.65.1", + "ip": "192.168.65.1" + }, + "tags": [ + "preserve_original_event" + ], + "url": { + "path": "/api/v4/users", + "query": "private_token=glpat-xxxxxxxxxxxx&email=test@elastic.co&name=test&username=test" + }, + "user": { + "id": "2" + } + } + ] +} \ No newline at end of file diff --git a/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-common-config.yml b/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..4da226416540 --- /dev/null +++ b/packages/gitlab/data_stream/auth/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,3 @@ +fields: + tags: + - preserve_original_event diff --git a/packages/gitlab/data_stream/auth/_dev/test/system/test-default-config.yml b/packages/gitlab/data_stream/auth/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..ccaf249f15a2 --- /dev/null +++ b/packages/gitlab/data_stream/auth/_dev/test/system/test-default-config.yml @@ -0,0 +1,9 @@ +service: gitlab-filestream +input: filestream +vars: ~ +data_stream: + vars: + preserve_original_event: true + paths: + - "{{SERVICE_LOGS_DIR}}/test-gitlab-auth.log" +assert.hit_count: 5 diff --git a/packages/gitlab/data_stream/auth/agent/stream/filestream.yml.hbs b/packages/gitlab/data_stream/auth/agent/stream/filestream.yml.hbs new file mode 100644 index 000000000000..ec554604ee9d --- /dev/null +++ b/packages/gitlab/data_stream/auth/agent/stream/filestream.yml.hbs @@ -0,0 +1,27 @@ +paths: +{{#each paths as |path|}} + - {{path}} +{{/each}} +{{#if exclude_files}} +prospector.scanner.exclude_files: +{{#each exclude_files as |pattern|}} + - {{pattern}} +{{/each}} +{{/if}} +{{#if custom}} +{{custom}} +{{/if}} +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/gitlab/data_stream/auth/elasticsearch/ingest_pipeline/default.yml b/packages/gitlab/data_stream/auth/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..06cef75d0574 --- /dev/null +++ b/packages/gitlab/data_stream/auth/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,202 @@ +--- +description: Pipeline for processing auth logs +processors: + - set: + field: ecs.version + value: 8.11.0 + - rename: + field: message + target_field: event.original + tag: rename_message + ignore_missing: true + if: ctx.event?.original == null + - remove: + field: message + ignore_missing: true + tag: remove_message + if: ctx.event?.original != null + - drop: + if: ctx.event.original.startsWith('#') + description: Drop if logline contains header(s), which startswith `#`. + - json: + field: event.original + tag: 'json_decoding' + target_field: gitlab.auth + - date: + field: gitlab.auth.time + formats: + - "ISO8601" + target_field: "@timestamp" + timezone: "UTC" + tag: date_event_created_time_epoch + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + if: ctx.gitlab?.auth?.time != null + - remove: + field: gitlab.auth.time + - set: + field: event.severity + value: 0 + if: ctx.gitlab?.auth?.severity == 'DEBUG' + tag: set_severity_0 + - set: + field: event.severity + value: 1 + if: ctx.gitlab?.auth?.severity == 'INFO' + tag: set_severity_1 + - set: + field: event.severity + value: 2 + if: ctx.gitlab?.auth?.severity == 'WARN' + tag: set_severity_2 + - set: + field: event.severity + value: 3 + if: ctx.gitlab?.auth?.severity == 'ERROR' + tag: set_severity_3 + - set: + field: event.severity + value: 4 + if: ctx.gitlab?.auth?.severity == 'FATAL' + tag: set_severity_4 + - set: + field: event.severity + value: 5 + if: ctx.gitlab?.auth?.severity == 'UNKNOWN' + tag: set_severity_5 + - remove: + field: gitlab.auth.severity + ignore_missing: true + - rename: + field: gitlab.auth.correlation_id + target_field: event.id + ignore_missing: true + - dot_expander: + path: gitlab.auth + field: meta.user + - convert: + field: gitlab.auth.user_id + type: string + ignore_missing: true + - rename: + field: gitlab.auth.user_id + target_field: user.id + ignore_missing: true + - rename: + field: gitlab.auth.request_method + target_field: http.request.method + ignore_missing: true + - rename: + field: gitlab.auth.status + target_field: http.response.status_code + ignore_missing: true + - rename: + field: gitlab.auth.pid + target_field: process.pid + ignore_missing: true + - set: + field: tmp.url_orig + value: "https://tmp.gitlab{{{gitlab.auth.path}}}" + if: ctx.gitlab?.auth?.path != null + - uri_parts: + field: tmp.url_orig + target_field: tmp.url + keep_original: false + ignore_missing: true + - rename: + field: tmp.url.path + target_field: url.path + ignore_missing: true + - rename: + field: tmp.url.query + target_field: url.query + ignore_missing: true + - rename: + field: tmp.url.fragment + target_field: url.frament + ignore_missing: true + - remove: + field: + - tmp + - gitlab.auth.path + ignore_missing: true + - rename: + field: gitlab.auth.remote_ip + target_field: client.ip + - geoip: + field: client.ip + tag: geoip_client_address + target_field: client.geo + ignore_missing: true + - geoip: + ignore_missing: true + database_file: GeoLite2-ASN.mmdb + field: client.ip + tag: geoip_client_asn + target_field: client.as + properties: + - asn + - organization_name + - rename: + field: client.as.asn + tag: rename_client_as_asn + target_field: client.as.number + ignore_missing: true + - rename: + field: client.as.organization_name + tag: rename_client_as_organization_name + target_field: client.as.organization.name + ignore_missing: true + - set: + field: client.address + copy_from: client.ip + if: ctx.client?.ip != null + - set: + field: source + copy_from: client + if: ctx.client?.ip != null + - append: + field: related.ip + value: '{{client.ip}}' + if: ctx.client?.ip != null + allow_duplicates: false + - append: + field: event.category + value: web + allow_duplicates: false + - append: + field: event.type + value: info + allow_duplicates: false + - script: + tag: script_to_drop_null_values + lang: painless + description: Drops null/empty values recursively. + source: |- + boolean drop(Object o) { + if (o == null || o == '') { + return true; + } else if (o instanceof Map) { + ((Map) o).values().removeIf(v -> drop(v)); + return (((Map) o).size() == 0); + } else if (o instanceof List) { + ((List) o).removeIf(v -> drop(v)); + return (((List) o).length == 0); + } + return false; + } + drop(ctx); + - append: + field: event.kind + value: pipeline_error + allow_duplicates: false + if: ctx.error?.message != null +on_failure: + - set: + field: event.kind + value: pipeline_error + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' diff --git a/packages/gitlab/data_stream/auth/fields/agent.yml b/packages/gitlab/data_stream/auth/fields/agent.yml new file mode 100644 index 000000000000..3c8ad89f032a --- /dev/null +++ b/packages/gitlab/data_stream/auth/fields/agent.yml @@ -0,0 +1,200 @@ +- name: cloud + title: Cloud + group: 2 + description: Fields related to the cloud or infrastructure the events are coming from. + footnote: 'Examples: If Metricbeat is running on an EC2 host and fetches data from its host, the cloud info contains the data about this machine. If Metricbeat runs on a remote machine outside the cloud and fetches data from a service running in the cloud, the field contains cloud data from the machine the service is running on.' + type: group + fields: + - name: account.id + level: extended + type: keyword + ignore_above: 1024 + description: 'The cloud account or organization id used to identify different entities in a multi-tenant environment. + + Examples: AWS account id, Google Cloud ORG Id, or other unique identifier.' + example: 666777888999 + - name: availability_zone + level: extended + type: keyword + ignore_above: 1024 + description: Availability zone in which this host is running. + example: us-east-1c + - name: instance.id + level: extended + type: keyword + ignore_above: 1024 + description: Instance ID of the host machine. + example: i-1234567890abcdef0 + - name: instance.name + level: extended + type: keyword + ignore_above: 1024 + description: Instance name of the host machine. + - name: machine.type + level: extended + type: keyword + ignore_above: 1024 + description: Machine type of the host machine. + example: t2.medium + - name: provider + level: extended + type: keyword + ignore_above: 1024 + description: Name of the cloud provider. Example values are aws, azure, gcp, or digitalocean. + example: aws + - name: region + level: extended + type: keyword + ignore_above: 1024 + description: Region in which this host is running. + example: us-east-1 + - name: project.id + type: keyword + description: Name of the project in Google Cloud. + - name: image.id + type: keyword + description: Image ID for the cloud instance. +- name: container + title: Container + group: 2 + description: 'Container fields are used for meta information about the specific container that is the source of information. + + These fields help correlate data based containers from any runtime.' + type: group + fields: + - name: id + level: core + type: keyword + ignore_above: 1024 + description: Unique container id. + - name: image.name + level: extended + type: keyword + ignore_above: 1024 + description: Name of the image the container was built on. + - name: labels + level: extended + type: object + object_type: keyword + description: Image labels. + - name: name + level: extended + type: keyword + ignore_above: 1024 + description: Container name. +- name: host + title: Host + group: 2 + description: 'A host is defined as a general computing instance. + + ECS host.* fields should be populated with details about the host on which the event happened, or from which the measurement was taken. Host types include hardware, virtual machines, Docker containers, and Kubernetes nodes.' + type: group + fields: + - name: architecture + level: core + type: keyword + ignore_above: 1024 + description: Operating system architecture. + example: x86_64 + - name: domain + level: extended + type: keyword + ignore_above: 1024 + description: 'Name of the domain of which the host is a member. + + For example, on Windows this could be the host''s Active Directory domain or NetBIOS domain name. For Linux this could be the domain of the host''s LDAP provider.' + example: CONTOSO + default_field: false + - name: hostname + level: core + type: keyword + ignore_above: 1024 + description: 'Hostname of the host. + + It normally contains what the `hostname` command returns on the host machine.' + - name: id + level: core + type: keyword + ignore_above: 1024 + description: 'Unique host id. + + As hostname is not always unique, use values that are meaningful in your environment. + + Example: The current usage of `beat.name`.' + - name: mac + level: core + type: keyword + ignore_above: 1024 + description: Host mac addresses. + - name: name + level: core + type: keyword + ignore_above: 1024 + description: 'Name of the host. + + It can contain what `hostname` returns on Unix systems, the fully qualified domain name, or a name specified by the user. The sender decides which value to use.' + - name: os.family + level: extended + type: keyword + ignore_above: 1024 + description: OS family (such as redhat, debian, freebsd, windows). + example: debian + - name: os.kernel + level: extended + type: keyword + ignore_above: 1024 + description: Operating system kernel version as a raw string. + example: 4.4.0-112-generic + - name: os.name + level: extended + type: keyword + ignore_above: 1024 + multi_fields: + - name: text + type: text + norms: false + default_field: false + description: Operating system name, without the version. + example: Mac OS X + - name: os.platform + level: extended + type: keyword + ignore_above: 1024 + description: Operating system platform (such centos, ubuntu, windows). + example: darwin + - name: os.version + level: extended + type: keyword + ignore_above: 1024 + description: Operating system version as a raw string. + example: 10.14.1 + - name: type + level: core + type: keyword + ignore_above: 1024 + description: 'Type of host. + + For Cloud providers this can be the machine type like `t2.medium`. If vm, this could be the container, for example, or other information meaningful in your environment.' + - name: containerized + type: boolean + description: > + If the host is a container. + + - name: os.build + type: keyword + example: "18D109" + description: > + OS build information. + + - name: os.codename + type: keyword + example: "stretch" + description: > + OS codename, if any. + +- name: input.type + type: keyword + description: Input type +- name: log.offset + type: long + description: Log offset diff --git a/packages/gitlab/data_stream/auth/fields/base-fields.yml b/packages/gitlab/data_stream/auth/fields/base-fields.yml new file mode 100644 index 000000000000..7c798f4534ca --- /dev/null +++ b/packages/gitlab/data_stream/auth/fields/base-fields.yml @@ -0,0 +1,12 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: '@timestamp' + type: date + description: Event timestamp. diff --git a/packages/gitlab/data_stream/auth/fields/beats.yml b/packages/gitlab/data_stream/auth/fields/beats.yml new file mode 100644 index 000000000000..0aa6abd92e14 --- /dev/null +++ b/packages/gitlab/data_stream/auth/fields/beats.yml @@ -0,0 +1,12 @@ +- name: log.flags + type: keyword + description: Flags for the log file. +- name: log.file + type: group + fields: + - name: device_id + type: keyword + description: ID of the device containing the filesystem where the file resides. + - name: inode + type: keyword + description: Inode number of the log file. diff --git a/packages/gitlab/data_stream/auth/fields/fields.yml b/packages/gitlab/data_stream/auth/fields/fields.yml new file mode 100644 index 000000000000..f9b8cf492f3b --- /dev/null +++ b/packages/gitlab/data_stream/auth/fields/fields.yml @@ -0,0 +1,208 @@ +- name: gitlab + type: group + fields: + - name: auth + type: group + fields: + - name: env + type: keyword + - name: matched + type: keyword + - name: message + type: keyword + - name: meta.user + type: keyword + - name: redis_calls + type: long + - name: db_write_count + type: long + - name: db_main_txn_count + type: long + - name: db_primary_count + type: long + - name: db_primary_txn_duration_s + type: float + - name: db_primary_duration_s + type: float + - name: redis_read_bytes + type: long + - name: db_cached_count + type: long + - name: db_ci_cached_count + type: long + - name: db_ci_count + type: long + - name: mem_objects + type: long + - name: db_txn_count + type: long + - name: mem_total_bytes + type: long + - name: db_ci_replica_wal_cached_count + type: long + - name: redis_feature_flag_calls + type: long + - name: redis_write_bytes + type: long + - name: db_ci_replica_count + type: long + - name: db_ci_duration_s + type: float + - name: db_main_replica_wal_count + type: long + - name: db_primary_wal_count + type: long + - name: db_duration_s + type: float + - name: db_replica_wal_count + type: long + - name: mem_mallocs + type: long + - name: db_replica_count + type: long + - name: db_main_replica_duration_s + type: float + - name: redis_feature_flag_write_bytes + type: long + - name: db_main_count + type: long + - name: db_ci_replica_cached_count + type: long + - name: format + type: keyword + - name: worker_id + type: keyword + - name: db_ci_wal_cached_count + type: long + - name: db_main_replica_wal_cached_count + type: long + - name: db_main_wal_cached_count + type: long + - name: redis_duration_s + type: float + - name: mem_bytes + type: long + - name: cpu_s + type: long + - name: db_ci_replica_wal_count + type: long + - name: db_ci_replica_txn_duration_s + type: float + - name: redis_feature_flag_read_bytes + type: long + - name: db_ci_txn_count + type: long + - name: db_primary_cached_count + type: long + - name: db_main_replica_txn_duration_s + type: float + - name: db_main_replica_count + type: long + - name: db_replica_duration_s + type: float + - name: db_replica_wal_cached_count + type: long + - name: db_count + type: long + - name: db_main_replica_txn_count + type: long + - name: db_main_wal_count + type: long + - name: db_main_cached_count + type: long + - name: db_replica_txn_count + type: long + - name: db_main_replica_cached_count + type: long + - name: db_primary_wal_cached_count + type: long + - name: db_primary_txn_count + type: long + - name: controller + type: keyword + - name: redis_feature_flag_duration_s + type: float + - name: db_replica_cached_count + type: long + - name: db_ci_replica_txn_count + type: long + - name: db_main_txn_duration_s + type: float + - name: db_replica_txn_duration_s + type: float + - name: db_ci_replica_duration_s + type: float + - name: db_ci_wal_count + type: long + - name: time + type: keyword + - name: db_ci_txn_duration_s + type: float + - name: db_main_duration_s + type: float + - name: redis_sessions_calls + type: long + - name: remote_ip + type: ip + - name: redis_db_load_balancing_duration_s + type: float + - name: redis_sessions_allowed_cross_slot_calls + type: long + - name: redis_sessions_duration_s + type: float + - name: redis_sessions_write_bytes + type: long + - name: request_urgency + type: keyword + - name: redis_db_load_balancing_write_bytes + type: long + - name: redis_allowed_cross_slot_calls + type: long + - name: redis_db_load_balancing_calls + type: long + - name: redis_sessions_read_bytes + type: long + - name: redis_cache_duration_s + type: float + - name: redis_cache_write_bytes + type: long + - name: redis_cache_read_bytes + type: long + - name: redis_cache_calls + type: long + - name: location + type: keyword + - name: rate_limiting_gates + type: keyword + - name: redis_queues_calls + type: long + - name: redis_queues_duration_s + type: float + - name: redis_queues_metadata_calls + type: long + - name: redis_queues_metadata_duration_s + type: float + - name: redis_queues_metadata_read_bytes + type: long + - name: redis_queues_metadata_write_bytes + type: long + - name: redis_queues_read_bytes + type: long + - name: redis_queues_write_bytes + type: long + - name: redis_rate_limiting_calls + type: long + - name: redis_rate_limiting_duration_s + type: float + - name: redis_rate_limiting_write_bytes + type: long + - name: redis_rate_limiting_read_bytes + type: long + - name: redis_shared_state_duration_s + type: float + - name: redis_shared_state_write_bytes + type: long + - name: redis_shared_state_read_bytes + type: long + - name: redis_shared_state_calls + type: long diff --git a/packages/gitlab/data_stream/auth/manifest.yml b/packages/gitlab/data_stream/auth/manifest.yml new file mode 100644 index 000000000000..18c607e3b1f4 --- /dev/null +++ b/packages/gitlab/data_stream/auth/manifest.yml @@ -0,0 +1,86 @@ +title: "Auth" +type: logs +streams: + - input: filestream + title: GitLab Auth Logs + description: GitLab Auth Logs + vars: + - name: paths + type: text + title: Paths + multi: true + default: + - /var/log/gitlab/gitlab-rails/auth_json.log + - /home/git/gitlab/log/auth_json.log + - name: exclude_files + type: text + title: Exclude Files + description: A list of regular expressions to match the files that you want Filebeat to ignore. + required: false + show_user: true + default: + - '\.gz$' + - name: custom + type: yaml + title: Additional Filestream Configuration Options + required: false + show_user: false + description: >- + Configuration options that can be used to further change input configuration. Check the [Filebeat documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-filestream.html) for more information. + default: |- + #encoding: plain + prospector.scanner.recursive_glob: true + #prospector.scanner.symlinks: true + #prospector.scanner.include_files: [''] + #prospector.scanner.resend_on_touch: false + #prospector.scanner.check_interval: 10s + #prospector.scanner.fingerprint.enabled: false + #prospector.scanner.fingerprint.offset: 0 + #prospector.scanner.fingerprint.length: 1024 + #ignore_older: 0 + #ignore_inactive: '' + #close.on_state_change.inactive: 5m + #close.on_state_change.renamed: false + #close.on_state_change.removed: false + #close.reader.on_eof: false + #close.reader.after_interval: 0 + #clean_inactive: 0 + #clean_removed: true + #backoff.init: 2s + #backoff.max: 10s + #file_identity.native: ~ + #file_identity.path: '' + #file_identity.inode_marker.path: '' + #file_identity.fingerprint: ~ + #rotation.external.strategy.copytruncate.suffix_regex: '\.\d$' + #rotation.external.strategy.copytruncate.dateformat: '-20060102' + #include_lines: ['sometext'] + #exclude_lines: ['^DBG'] + #buffer_size: 16384 + #message_max_bytes: 1048576 + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - gitlab-auth + - forwarded + - name: preserve_original_event + required: true + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original` + type: bool + multi: false + default: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: > + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details. + diff --git a/packages/gitlab/data_stream/auth/sample_event.json b/packages/gitlab/data_stream/auth/sample_event.json new file mode 100644 index 000000000000..b0f5df3fdfa4 --- /dev/null +++ b/packages/gitlab/data_stream/auth/sample_event.json @@ -0,0 +1,105 @@ +{ + "@timestamp": "2023-04-19T22:14:25.893Z", + "agent": { + "ephemeral_id": "8a41758c-b013-476c-b333-58bb2ce2be7c", + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.14.1" + }, + "client": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "data_stream": { + "dataset": "gitlab.auth", + "namespace": "58237", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "snapshot": false, + "version": "8.14.1" + }, + "event": { + "agent_id_status": "verified", + "category": [ + "web" + ], + "dataset": "gitlab.auth", + "id": "01GYDSAKAN2SPZPAMJNRWW5H8S", + "ingested": "2024-08-05T14:23:51Z", + "original": "{\"severity\": \"ERROR\",\"time\": \"2023-04-19T22:14:25.893Z\",\"correlation_id\": \"01GYDSAKAN2SPZPAMJNRWW5H8S\",\"message\": \"Rack_Attack\",\"env\": \"blocklist\",\"remote_ip\": \"67.43.156.18\",\"request_method\": \"GET\",\"path\": \"/group/project.git/info/refs?service=git-upload-pack\"}", + "severity": 3, + "type": [ + "info" + ] + }, + "gitlab": { + "auth": { + "env": "blocklist", + "message": "Rack_Attack" + } + }, + "http": { + "request": { + "method": "GET" + } + }, + "input": { + "type": "filestream" + }, + "log": { + "file": { + "device_id": "30", + "inode": "251", + "path": "/tmp/service_logs/test-gitlab-auth.log" + }, + "offset": 0 + }, + "related": { + "ip": [ + "67.43.156.18" + ] + }, + "source": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "tags": [ + "preserve_original_event", + "gitlab-auth", + "forwarded" + ], + "url": { + "path": "/group/project.git/info/refs", + "query": "service=git-upload-pack" + } +} \ No newline at end of file diff --git a/packages/gitlab/docs/README.md b/packages/gitlab/docs/README.md index e5dd1b129bf6..3d6104f903bc 100644 --- a/packages/gitlab/docs/README.md +++ b/packages/gitlab/docs/README.md @@ -4,6 +4,12 @@ This integration is for ingesting logs from [GitLab](https://about.gitlab.com/). - `api`: Collect logs for HTTP requests made to the GitLab API +- `application`: Collect logs for events in GitLab like user creation or project deletion. + +- `audit`: Collect logs for changes to group or project settings and memberships. + +- `auth`: Collect logs for protected paths abusive requests or requests over the Rate Limit. + - `production`: Collect logs for Rails controller requests received from GitLab. See the GitLab [Log system docs](https://docs.gitlab.com/ee/administration/logs/) for more information. @@ -14,7 +20,7 @@ The GitLab module has been developed with and tested against the [community edit ## Setup -Refer to the GitLab documentation for the specific filepath(s) for your instance type. Both are provided as default in the configuration setup, but only one will be needed for use. See [API](https://docs.gitlab.com/ee/administration/logs/#api_jsonlog) and [Production](https://docs.gitlab.com/ee/administration/logs/#production_jsonlog) for details. +Refer to the [GitLab documentation](https://docs.gitlab.com/ee/administration/logs/) for the specific filepath(s) for your instance type. Both are provided as default in the configuration setup, but only one will be needed for use. ## Logs @@ -286,6 +292,688 @@ An example event for `api` looks as following: } ``` +### application + +Collect logs for events happening in GitLab like user creation or project deletion. Check out the [GitLab Application log docs](https://docs.gitlab.com/ee/administration/logs/#application_jsonlog) for more information. + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| cloud.account.id | The cloud account or organization id used to identify different entities in a multi-tenant environment. Examples: AWS account id, Google Cloud ORG Id, or other unique identifier. | keyword | +| cloud.availability_zone | Availability zone in which this host is running. | keyword | +| cloud.image.id | Image ID for the cloud instance. | keyword | +| cloud.instance.id | Instance ID of the host machine. | keyword | +| cloud.instance.name | Instance name of the host machine. | keyword | +| cloud.machine.type | Machine type of the host machine. | keyword | +| cloud.project.id | Name of the project in Google Cloud. | keyword | +| cloud.provider | Name of the cloud provider. Example values are aws, azure, gcp, or digitalocean. | keyword | +| cloud.region | Region in which this host is running. | keyword | +| container.id | Unique container id. | keyword | +| container.image.name | Name of the image the container was built on. | keyword | +| container.labels | Image labels. | object | +| container.name | Container name. | keyword | +| data_stream.dataset | Data stream dataset name. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| event.dataset | Event dataset | constant_keyword | +| event.module | Event module | constant_keyword | +| gitlab.application.attributes | | keyword | +| gitlab.application.caller | | keyword | +| gitlab.application.class | | keyword | +| gitlab.application.class_name | | keyword | +| gitlab.application.connection_name | | keyword | +| gitlab.application.current_iteration | | long | +| gitlab.application.event | | keyword | +| gitlab.application.lease_key | | keyword | +| gitlab.application.lease_timeout | | long | +| gitlab.application.lock_timeout_in_ms | | long | +| gitlab.application.login_method | | keyword | +| gitlab.application.mail_subject | | keyword | +| gitlab.application.memwd_cur_strikes | | long | +| gitlab.application.memwd_handler_class | | keyword | +| gitlab.application.memwd_max_rss_bytes | | long | +| gitlab.application.memwd_max_strikes | | long | +| gitlab.application.memwd_reason | | keyword | +| gitlab.application.memwd_rss_bytes | | long | +| gitlab.application.memwd_sleep_time_s | | long | +| gitlab.application.merge_request_info | | keyword | +| gitlab.application.mergeability.check_approved_service.db_cached_count | | long | +| gitlab.application.mergeability.check_approved_service.db_count | | long | +| gitlab.application.mergeability.check_approved_service.db_main_cached_count | | long | +| gitlab.application.mergeability.check_approved_service.db_main_count | | long | +| gitlab.application.mergeability.check_approved_service.db_main_duration_s | | long | +| gitlab.application.mergeability.check_approved_service.db_primary_cached_count | | long | +| gitlab.application.mergeability.check_approved_service.db_primary_count | | long | +| gitlab.application.mergeability.check_approved_service.db_primary_duration_s | | long | +| gitlab.application.mergeability.check_approved_service.duration_s | | long | +| gitlab.application.mergeability.check_approved_service.successful | | boolean | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.db_cached_count | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.db_count | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.db_main_cached_count | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.db_main_count | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.db_main_duration_s | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.db_primary_cached_count | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.db_primary_count | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.db_primary_duration_s | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.duration_s | | long | +| gitlab.application.mergeability.check_blocked_by_other_mrs_service.successful | | boolean | +| gitlab.application.mergeability.check_broken_status_service.db_cached_count | | long | +| gitlab.application.mergeability.check_broken_status_service.db_count | | long | +| gitlab.application.mergeability.check_broken_status_service.db_main_cached_count | | long | +| gitlab.application.mergeability.check_broken_status_service.db_main_count | | long | +| gitlab.application.mergeability.check_broken_status_service.db_main_duration_s | | long | +| gitlab.application.mergeability.check_broken_status_service.db_primary_cached_count | | long | +| gitlab.application.mergeability.check_broken_status_service.db_primary_count | | long | +| gitlab.application.mergeability.check_broken_status_service.db_primary_duration_s | | long | +| gitlab.application.mergeability.check_broken_status_service.duration_s | | long | +| gitlab.application.mergeability.check_broken_status_service.successful | | boolean | +| gitlab.application.mergeability.check_ci_status_service.duration_s | | long | +| gitlab.application.mergeability.check_ci_status_service.successful | | boolean | +| gitlab.application.mergeability.check_commits_status_service.duration_s | | long | +| gitlab.application.mergeability.check_commits_status_service.successful | | boolean | +| gitlab.application.mergeability.check_conflict_status_service.duration_s | | long | +| gitlab.application.mergeability.check_conflict_status_service.successful | | boolean | +| gitlab.application.mergeability.check_discussions_status_service.db_cached_count | | long | +| gitlab.application.mergeability.check_discussions_status_service.db_count | | long | +| gitlab.application.mergeability.check_discussions_status_service.db_main_cached_count | | long | +| gitlab.application.mergeability.check_discussions_status_service.db_main_count | | long | +| gitlab.application.mergeability.check_discussions_status_service.db_primary_cached_count | | long | +| gitlab.application.mergeability.check_discussions_status_service.db_primary_count | | long | +| gitlab.application.mergeability.check_discussions_status_service.duration_s | | long | +| gitlab.application.mergeability.check_discussions_status_service.successful | | boolean | +| gitlab.application.mergeability.check_draft_status_service.duration_s | | long | +| gitlab.application.mergeability.check_draft_status_service.successful | | boolean | +| gitlab.application.mergeability.check_external_status_checks_passed_service.db_cached_count | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.db_count | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.db_main_cached_count | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.db_main_count | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.db_main_duration_s | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.db_primary_cached_count | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.db_primary_count | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.db_primary_duration_s | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.duration_s | | long | +| gitlab.application.mergeability.check_external_status_checks_passed_service.successful | | boolean | +| gitlab.application.mergeability.check_jira_status_service.db_cached_count | | long | +| gitlab.application.mergeability.check_jira_status_service.db_count | | long | +| gitlab.application.mergeability.check_jira_status_service.db_main_cached_count | | long | +| gitlab.application.mergeability.check_jira_status_service.db_main_count | | long | +| gitlab.application.mergeability.check_jira_status_service.db_primary_cached_count | | long | +| gitlab.application.mergeability.check_jira_status_service.db_primary_count | | long | +| gitlab.application.mergeability.check_jira_status_service.duration_s | | long | +| gitlab.application.mergeability.check_jira_status_service.successful | | boolean | +| gitlab.application.mergeability.check_open_status_service.duration_s | | long | +| gitlab.application.mergeability.check_open_status_service.successful | | boolean | +| gitlab.application.mergeability.check_rebase_status_service.duration_s | | long | +| gitlab.application.mergeability.check_rebase_status_service.successful | | boolean | +| gitlab.application.mergeability.merge_request_id | | long | +| gitlab.application.mergeability.project_id | | long | +| gitlab.application.message | | keyword | +| gitlab.application.meta.caller_id | | keyword | +| gitlab.application.meta.client_id | | keyword | +| gitlab.application.meta.feature_category | | keyword | +| gitlab.application.meta.project | | keyword | +| gitlab.application.meta.remote_ip | | ip | +| gitlab.application.meta.root_caller_id | | keyword | +| gitlab.application.meta.root_namespace | | keyword | +| gitlab.application.meta.user | | keyword | +| gitlab.application.meta.user_id | | long | +| gitlab.application.method | | keyword | +| gitlab.application.model | | keyword | +| gitlab.application.model_connection_name | | keyword | +| gitlab.application.model_id | | long | +| gitlab.application.partition_name | | keyword | +| gitlab.application.project_id | | long | +| gitlab.application.project_name | | keyword | +| gitlab.application.shared_connection_name | | keyword | +| gitlab.application.silent_mode_enabled | | boolean | +| gitlab.application.table_name | | keyword | +| gitlab.application.user_admin | | boolean | +| gitlab.application.worker_id | | keyword | +| host.architecture | Operating system architecture. | keyword | +| host.containerized | If the host is a container. | boolean | +| host.domain | Name of the domain of which the host is a member. For example, on Windows this could be the host's Active Directory domain or NetBIOS domain name. For Linux this could be the domain of the host's LDAP provider. | keyword | +| host.hostname | Hostname of the host. It normally contains what the `hostname` command returns on the host machine. | keyword | +| host.id | Unique host id. As hostname is not always unique, use values that are meaningful in your environment. Example: The current usage of `beat.name`. | keyword | +| host.mac | Host mac addresses. | keyword | +| host.name | Name of the host. It can contain what `hostname` returns on Unix systems, the fully qualified domain name, or a name specified by the user. The sender decides which value to use. | keyword | +| host.os.build | OS build information. | keyword | +| host.os.codename | OS codename, if any. | keyword | +| host.os.family | OS family (such as redhat, debian, freebsd, windows). | keyword | +| host.os.kernel | Operating system kernel version as a raw string. | keyword | +| host.os.name | Operating system name, without the version. | keyword | +| host.os.name.text | Multi-field of `host.os.name`. | text | +| host.os.platform | Operating system platform (such centos, ubuntu, windows). | keyword | +| host.os.version | Operating system version as a raw string. | keyword | +| host.type | Type of host. For Cloud providers this can be the machine type like `t2.medium`. If vm, this could be the container, for example, or other information meaningful in your environment. | keyword | +| input.type | Input type | keyword | +| log.file.device_id | ID of the device containing the filesystem where the file resides. | keyword | +| log.file.inode | Inode number of the log file. | keyword | +| log.flags | Flags for the log file. | keyword | +| log.offset | Log offset | long | + + +An example event for `application` looks as following: + +```json +{ + "@timestamp": "2024-05-10T17:49:45.825Z", + "agent": { + "ephemeral_id": "c6d67ec9-17b1-4f21-851f-01582fac9c04", + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.14.1" + }, + "client": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "data_stream": { + "dataset": "gitlab.application", + "namespace": "47114", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "snapshot": false, + "version": "8.14.1" + }, + "event": { + "agent_id_status": "verified", + "category": [ + "configuration" + ], + "dataset": "gitlab.application", + "id": "01HXHSYJJQNY08JV4JF2B69ZDR", + "ingested": "2024-08-05T14:13:26Z", + "original": "{\"severity\":\"INFO\",\"time\":\"2024-05-10T17:49:45.825Z\",\"correlation_id\":\"01HXHSYJJQNY08JV4JF2B69ZDR\",\"meta.caller_id\":\"ProjectCacheWorker\",\"meta.remote_ip\":\"67.43.156.18\",\"meta.feature_category\":\"source_code_management\",\"meta.user\":\"root\",\"meta.user_id\":1,\"meta.project\":\"root/test_1\",\"meta.root_namespace\":\"root\",\"meta.client_id\":\"user/1\",\"meta.root_caller_id\":\"ProjectsController#create\",\"message\":\"Updating statistics for project 1\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "application": { + "message": "Updating statistics for project 1", + "meta": { + "caller_id": "ProjectCacheWorker", + "client_id": "user/1", + "feature_category": "source_code_management", + "project": "root/test_1", + "root_caller_id": "ProjectsController#create", + "root_namespace": "root" + } + } + }, + "input": { + "type": "filestream" + }, + "log": { + "file": { + "device_id": "30", + "inode": "224", + "path": "/tmp/service_logs/test-gitlab-application.log" + }, + "offset": 0 + }, + "related": { + "ip": [ + "67.43.156.18" + ], + "user": [ + "1", + "root" + ] + }, + "source": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "tags": [ + "preserve_original_event", + "gitlab-application", + "forwarded" + ], + "user": { + "id": "1", + "name": "root" + } +} +``` + +### audit + +Collect logs for changes to group or project settings and memberships. Check out the [GitLab Audit log docs](https://docs.gitlab.com/ee/administration/logs/#audit_jsonlog) for more information. + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| cloud.account.id | The cloud account or organization id used to identify different entities in a multi-tenant environment. Examples: AWS account id, Google Cloud ORG Id, or other unique identifier. | keyword | +| cloud.availability_zone | Availability zone in which this host is running. | keyword | +| cloud.image.id | Image ID for the cloud instance. | keyword | +| cloud.instance.id | Instance ID of the host machine. | keyword | +| cloud.instance.name | Instance name of the host machine. | keyword | +| cloud.machine.type | Machine type of the host machine. | keyword | +| cloud.project.id | Name of the project in Google Cloud. | keyword | +| cloud.provider | Name of the cloud provider. Example values are aws, azure, gcp, or digitalocean. | keyword | +| cloud.region | Region in which this host is running. | keyword | +| container.id | Unique container id. | keyword | +| container.image.name | Name of the image the container was built on. | keyword | +| container.labels | Image labels. | object | +| container.name | Container name. | keyword | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| gitlab.audit.change | | keyword | +| gitlab.audit.created_at | | date | +| gitlab.audit.entity_id | | long | +| gitlab.audit.entity_type | | keyword | +| gitlab.audit.from | | keyword | +| gitlab.audit.meta.caller_id | | keyword | +| gitlab.audit.meta.client_id | | keyword | +| gitlab.audit.meta.feature_category | | keyword | +| gitlab.audit.meta.project | | keyword | +| gitlab.audit.meta.remote_ip | | ip | +| gitlab.audit.meta.root_namespace | | keyword | +| gitlab.audit.meta.user | | keyword | +| gitlab.audit.meta.user_id | | long | +| gitlab.audit.target_details | | keyword | +| gitlab.audit.target_id | | long | +| gitlab.audit.target_type | | keyword | +| gitlab.audit.to | | keyword | +| gitlab.audit.with | | keyword | +| host.architecture | Operating system architecture. | keyword | +| host.containerized | If the host is a container. | boolean | +| host.domain | Name of the domain of which the host is a member. For example, on Windows this could be the host's Active Directory domain or NetBIOS domain name. For Linux this could be the domain of the host's LDAP provider. | keyword | +| host.hostname | Hostname of the host. It normally contains what the `hostname` command returns on the host machine. | keyword | +| host.id | Unique host id. As hostname is not always unique, use values that are meaningful in your environment. Example: The current usage of `beat.name`. | keyword | +| host.mac | Host mac addresses. | keyword | +| host.name | Name of the host. It can contain what `hostname` returns on Unix systems, the fully qualified domain name, or a name specified by the user. The sender decides which value to use. | keyword | +| host.os.build | OS build information. | keyword | +| host.os.codename | OS codename, if any. | keyword | +| host.os.family | OS family (such as redhat, debian, freebsd, windows). | keyword | +| host.os.kernel | Operating system kernel version as a raw string. | keyword | +| host.os.name | Operating system name, without the version. | keyword | +| host.os.name.text | Multi-field of `host.os.name`. | text | +| host.os.platform | Operating system platform (such centos, ubuntu, windows). | keyword | +| host.os.version | Operating system version as a raw string. | keyword | +| host.type | Type of host. For Cloud providers this can be the machine type like `t2.medium`. If vm, this could be the container, for example, or other information meaningful in your environment. | keyword | +| input.type | Input type | keyword | +| log.file.device_id | ID of the device containing the filesystem where the file resides. | keyword | +| log.file.inode | Inode number of the log file. | keyword | +| log.flags | Flags for the log file. | keyword | +| log.offset | Log offset | long | + + +An example event for `audit` looks as following: + +```json +{ + "@timestamp": "2018-10-17T17:38:22.523Z", + "agent": { + "ephemeral_id": "88cea3d2-b910-479c-9a11-035ae92ed5c0", + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.14.1" + }, + "data_stream": { + "dataset": "gitlab.audit", + "namespace": "33114", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "snapshot": false, + "version": "8.14.1" + }, + "event": { + "agent_id_status": "verified", + "category": [ + "web" + ], + "dataset": "gitlab.audit", + "ingested": "2024-08-05T14:18:18Z", + "original": "{\"severity\": \"INFO\",\"time\": \"2018-10-17T17:38:22.523Z\",\"author_id\": 3,\"entity_id\": 2,\"entity_type\": \"Project\",\"change\": \"visibility\",\"from\": \"Private\",\"to\": \"Public\",\"author_name\": \"John Doe4\",\"target_id\": 2,\"target_type\": \"Project\",\"target_details\": \"namespace2/project2\"}", + "severity": 1, + "type": [ + "info" + ] + }, + "gitlab": { + "audit": { + "change": "visibility", + "entity_id": 2, + "entity_type": "Project", + "from": "Private", + "target_details": "namespace2/project2", + "target_id": 2, + "target_type": "Project", + "to": "Public" + } + }, + "input": { + "type": "filestream" + }, + "log": { + "file": { + "device_id": "30", + "inode": "235", + "path": "/tmp/service_logs/test-gitlab-audit.log" + }, + "offset": 507 + }, + "related": { + "user": [ + "3", + "John Doe4" + ] + }, + "tags": [ + "preserve_original_event", + "gitlab-audit", + "forwarded" + ], + "user": { + "id": "3", + "name": "John Doe4" + } +} +``` + +### auth + +Collect logs for abusive protect paths requests or requests over the Rate Limit. Check out the [GitLab Auth log docs](https://docs.gitlab.com/ee/administration/logs/#auth_jsonlog) for more information. + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| cloud.account.id | The cloud account or organization id used to identify different entities in a multi-tenant environment. Examples: AWS account id, Google Cloud ORG Id, or other unique identifier. | keyword | +| cloud.availability_zone | Availability zone in which this host is running. | keyword | +| cloud.image.id | Image ID for the cloud instance. | keyword | +| cloud.instance.id | Instance ID of the host machine. | keyword | +| cloud.instance.name | Instance name of the host machine. | keyword | +| cloud.machine.type | Machine type of the host machine. | keyword | +| cloud.project.id | Name of the project in Google Cloud. | keyword | +| cloud.provider | Name of the cloud provider. Example values are aws, azure, gcp, or digitalocean. | keyword | +| cloud.region | Region in which this host is running. | keyword | +| container.id | Unique container id. | keyword | +| container.image.name | Name of the image the container was built on. | keyword | +| container.labels | Image labels. | object | +| container.name | Container name. | keyword | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| gitlab.auth.controller | | keyword | +| gitlab.auth.cpu_s | | long | +| gitlab.auth.db_cached_count | | long | +| gitlab.auth.db_ci_cached_count | | long | +| gitlab.auth.db_ci_count | | long | +| gitlab.auth.db_ci_duration_s | | float | +| gitlab.auth.db_ci_replica_cached_count | | long | +| gitlab.auth.db_ci_replica_count | | long | +| gitlab.auth.db_ci_replica_duration_s | | float | +| gitlab.auth.db_ci_replica_txn_count | | long | +| gitlab.auth.db_ci_replica_txn_duration_s | | float | +| gitlab.auth.db_ci_replica_wal_cached_count | | long | +| gitlab.auth.db_ci_replica_wal_count | | long | +| gitlab.auth.db_ci_txn_count | | long | +| gitlab.auth.db_ci_txn_duration_s | | float | +| gitlab.auth.db_ci_wal_cached_count | | long | +| gitlab.auth.db_ci_wal_count | | long | +| gitlab.auth.db_count | | long | +| gitlab.auth.db_duration_s | | float | +| gitlab.auth.db_main_cached_count | | long | +| gitlab.auth.db_main_count | | long | +| gitlab.auth.db_main_duration_s | | float | +| gitlab.auth.db_main_replica_cached_count | | long | +| gitlab.auth.db_main_replica_count | | long | +| gitlab.auth.db_main_replica_duration_s | | float | +| gitlab.auth.db_main_replica_txn_count | | long | +| gitlab.auth.db_main_replica_txn_duration_s | | float | +| gitlab.auth.db_main_replica_wal_cached_count | | long | +| gitlab.auth.db_main_replica_wal_count | | long | +| gitlab.auth.db_main_txn_count | | long | +| gitlab.auth.db_main_txn_duration_s | | float | +| gitlab.auth.db_main_wal_cached_count | | long | +| gitlab.auth.db_main_wal_count | | long | +| gitlab.auth.db_primary_cached_count | | long | +| gitlab.auth.db_primary_count | | long | +| gitlab.auth.db_primary_duration_s | | float | +| gitlab.auth.db_primary_txn_count | | long | +| gitlab.auth.db_primary_txn_duration_s | | float | +| gitlab.auth.db_primary_wal_cached_count | | long | +| gitlab.auth.db_primary_wal_count | | long | +| gitlab.auth.db_replica_cached_count | | long | +| gitlab.auth.db_replica_count | | long | +| gitlab.auth.db_replica_duration_s | | float | +| gitlab.auth.db_replica_txn_count | | long | +| gitlab.auth.db_replica_txn_duration_s | | float | +| gitlab.auth.db_replica_wal_cached_count | | long | +| gitlab.auth.db_replica_wal_count | | long | +| gitlab.auth.db_txn_count | | long | +| gitlab.auth.db_write_count | | long | +| gitlab.auth.env | | keyword | +| gitlab.auth.format | | keyword | +| gitlab.auth.location | | keyword | +| gitlab.auth.matched | | keyword | +| gitlab.auth.mem_bytes | | long | +| gitlab.auth.mem_mallocs | | long | +| gitlab.auth.mem_objects | | long | +| gitlab.auth.mem_total_bytes | | long | +| gitlab.auth.message | | keyword | +| gitlab.auth.meta.user | | keyword | +| gitlab.auth.rate_limiting_gates | | keyword | +| gitlab.auth.redis_allowed_cross_slot_calls | | long | +| gitlab.auth.redis_cache_calls | | long | +| gitlab.auth.redis_cache_duration_s | | float | +| gitlab.auth.redis_cache_read_bytes | | long | +| gitlab.auth.redis_cache_write_bytes | | long | +| gitlab.auth.redis_calls | | long | +| gitlab.auth.redis_db_load_balancing_calls | | long | +| gitlab.auth.redis_db_load_balancing_duration_s | | float | +| gitlab.auth.redis_db_load_balancing_write_bytes | | long | +| gitlab.auth.redis_duration_s | | float | +| gitlab.auth.redis_feature_flag_calls | | long | +| gitlab.auth.redis_feature_flag_duration_s | | float | +| gitlab.auth.redis_feature_flag_read_bytes | | long | +| gitlab.auth.redis_feature_flag_write_bytes | | long | +| gitlab.auth.redis_queues_calls | | long | +| gitlab.auth.redis_queues_duration_s | | float | +| gitlab.auth.redis_queues_metadata_calls | | long | +| gitlab.auth.redis_queues_metadata_duration_s | | float | +| gitlab.auth.redis_queues_metadata_read_bytes | | long | +| gitlab.auth.redis_queues_metadata_write_bytes | | long | +| gitlab.auth.redis_queues_read_bytes | | long | +| gitlab.auth.redis_queues_write_bytes | | long | +| gitlab.auth.redis_rate_limiting_calls | | long | +| gitlab.auth.redis_rate_limiting_duration_s | | float | +| gitlab.auth.redis_rate_limiting_read_bytes | | long | +| gitlab.auth.redis_rate_limiting_write_bytes | | long | +| gitlab.auth.redis_read_bytes | | long | +| gitlab.auth.redis_sessions_allowed_cross_slot_calls | | long | +| gitlab.auth.redis_sessions_calls | | long | +| gitlab.auth.redis_sessions_duration_s | | float | +| gitlab.auth.redis_sessions_read_bytes | | long | +| gitlab.auth.redis_sessions_write_bytes | | long | +| gitlab.auth.redis_shared_state_calls | | long | +| gitlab.auth.redis_shared_state_duration_s | | float | +| gitlab.auth.redis_shared_state_read_bytes | | long | +| gitlab.auth.redis_shared_state_write_bytes | | long | +| gitlab.auth.redis_write_bytes | | long | +| gitlab.auth.remote_ip | | ip | +| gitlab.auth.request_urgency | | keyword | +| gitlab.auth.time | | keyword | +| gitlab.auth.worker_id | | keyword | +| host.architecture | Operating system architecture. | keyword | +| host.containerized | If the host is a container. | boolean | +| host.domain | Name of the domain of which the host is a member. For example, on Windows this could be the host's Active Directory domain or NetBIOS domain name. For Linux this could be the domain of the host's LDAP provider. | keyword | +| host.hostname | Hostname of the host. It normally contains what the `hostname` command returns on the host machine. | keyword | +| host.id | Unique host id. As hostname is not always unique, use values that are meaningful in your environment. Example: The current usage of `beat.name`. | keyword | +| host.mac | Host mac addresses. | keyword | +| host.name | Name of the host. It can contain what `hostname` returns on Unix systems, the fully qualified domain name, or a name specified by the user. The sender decides which value to use. | keyword | +| host.os.build | OS build information. | keyword | +| host.os.codename | OS codename, if any. | keyword | +| host.os.family | OS family (such as redhat, debian, freebsd, windows). | keyword | +| host.os.kernel | Operating system kernel version as a raw string. | keyword | +| host.os.name | Operating system name, without the version. | keyword | +| host.os.name.text | Multi-field of `host.os.name`. | text | +| host.os.platform | Operating system platform (such centos, ubuntu, windows). | keyword | +| host.os.version | Operating system version as a raw string. | keyword | +| host.type | Type of host. For Cloud providers this can be the machine type like `t2.medium`. If vm, this could be the container, for example, or other information meaningful in your environment. | keyword | +| input.type | Input type | keyword | +| log.file.device_id | ID of the device containing the filesystem where the file resides. | keyword | +| log.file.inode | Inode number of the log file. | keyword | +| log.flags | Flags for the log file. | keyword | +| log.offset | Log offset | long | + + +An example event for `auth` looks as following: + +```json +{ + "@timestamp": "2023-04-19T22:14:25.893Z", + "agent": { + "ephemeral_id": "8a41758c-b013-476c-b333-58bb2ce2be7c", + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.14.1" + }, + "client": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "data_stream": { + "dataset": "gitlab.auth", + "namespace": "58237", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "e6f355cf-f8da-4049-b560-1a42e0dc21c5", + "snapshot": false, + "version": "8.14.1" + }, + "event": { + "agent_id_status": "verified", + "category": [ + "web" + ], + "dataset": "gitlab.auth", + "id": "01GYDSAKAN2SPZPAMJNRWW5H8S", + "ingested": "2024-08-05T14:23:51Z", + "original": "{\"severity\": \"ERROR\",\"time\": \"2023-04-19T22:14:25.893Z\",\"correlation_id\": \"01GYDSAKAN2SPZPAMJNRWW5H8S\",\"message\": \"Rack_Attack\",\"env\": \"blocklist\",\"remote_ip\": \"67.43.156.18\",\"request_method\": \"GET\",\"path\": \"/group/project.git/info/refs?service=git-upload-pack\"}", + "severity": 3, + "type": [ + "info" + ] + }, + "gitlab": { + "auth": { + "env": "blocklist", + "message": "Rack_Attack" + } + }, + "http": { + "request": { + "method": "GET" + } + }, + "input": { + "type": "filestream" + }, + "log": { + "file": { + "device_id": "30", + "inode": "251", + "path": "/tmp/service_logs/test-gitlab-auth.log" + }, + "offset": 0 + }, + "related": { + "ip": [ + "67.43.156.18" + ] + }, + "source": { + "address": "67.43.156.18", + "as": { + "number": 35908 + }, + "geo": { + "continent_name": "Asia", + "country_iso_code": "BT", + "country_name": "Bhutan", + "location": { + "lat": 27.5, + "lon": 90.5 + } + }, + "ip": "67.43.156.18" + }, + "tags": [ + "preserve_original_event", + "gitlab-auth", + "forwarded" + ], + "url": { + "path": "/group/project.git/info/refs", + "query": "service=git-upload-pack" + } +} +``` + ### production Collect logs for Rails controller requests received from GitLab. Check out the [GitLab production log docs](https://docs.gitlab.com/ee/administration/logs/#production_jsonlog) for more information. @@ -581,4 +1269,4 @@ An example event for `production` looks as following: "path": "/" } } -``` \ No newline at end of file +``` diff --git a/packages/gitlab/img/gitlab-application-dashboard.png b/packages/gitlab/img/gitlab-application-dashboard.png new file mode 100644 index 0000000000000000000000000000000000000000..407827566640cc2ec1b2f996edc052663163afc5 GIT binary patch literal 112493 zcmb4r1yo$ivNiz{APF7_?iOGmKyVN4u7d>E!QBa(;O-LK26qqc1RG>HQm+KU(FYJSuy07crRgKV2~xmg%x375UgQf;KC7KJf%>h zXlOh=p4lskeS|3;A=r8PqHm-wVJss9L;LiO2=gq+34t%Uj}C-EczR+y z-SU~wVBnsf&wk}+!v3oyf^{a`zuw`(pYmY@m4qZDo}Nkuc1A{4_NLYjA{kBJo(QMS zl+_*7Wu&UnDR*E?iHqAR`Ao5*LuAl|7dWFWEmza6P^MN@gS@ z`9~243tlpH8F>;RYda$nHiq{M@5%UHl8}(_*clpgDGH1JllgAErWqqDO! zgEI?*wVeqg6DKDp<9lXCW@f-s34pz;m4luOz{;Ndzbg4xJ;Fxz26kpP4rbO?B){s_ z)3~l=p7* z7Em=y-)}t8_i=HpYIZj1=yo$@>2(#~?TEWUylB*5bv7EE4^!dAeg5of zN6T~>eC7LRg?-?8d|zZHul2j%v28ZX3 z!*d>UBIdstRTs8r#G~mtJ0n&@iyXLby#*kY)Dk^Asbt89YW-4k@XrSw6>8SMG=_bh zoKEX0OyZ1Aj0Z^Iaz>}712`vD=D%;MrUVc0DYhkNw16}<8@qamE4(*hk(7mD7Z(>- z_x8x2J$t6uV3&DyrCd_nQXMW6)VUStD-g-&)zK1@{XDz-1WESbb+tb?hy5FgsMNCAb@vt3CA@7U0 zEEpI=9YaY+R}4$YiW>Jfip~?!{yc*kvoKm}(00$|<~>ypgV{@?9Lc;jNR;I)y@_E) zyyurB*Kum0cB7m1%9UY-QGVFM!ouC=^O(rU*ok?vK~-O6IP+H7H?~XNWdFM*{fv#*!!YT z|5*P?8D|i4a&yt2|DMg07Gn6=+^(#Wzp;|qnHPXTkh3xRrNKV===ICpP{)1=qn_pu zJ+hlhibhUeC-{jwF{jxbjufBB+qr%;WBh*JXlFrcw;iPMgk9IXk>(^riWKNaiglY? zA6a-2YpOb!Fhr~1y)}ZHKR7b0iD$qatLK=`#h>uZcU&^#Zo;3R!Ycouumoz={Bd`( zbO&M?ks%&yt|GKx4jdOvO45k7*{{d#86B1DC`wDY-()}Pijlxj&aHHDci*aOP~RKS zAJUh}dCjHW*Q@%Xo`d4|J=gjPpGezaDQl}?tBv8Tj6#{7w!uI)qwB`{h5qc*re%1- z#EtIb=F~6;P8l#8u@D_k-c*;Z9KBER*l6m|pwejx2?^_OtVVt9d>FXs#m>8w?HAe5)Vn$-JvGcw49fXyOsq&;_e4o4)b#wx$uM&C^uMfQL zd%ze?<}K+VLV+U1*fK-5>(jOLkhqPCxNZ+ls^1I!mu3s-z?R8DDKOOz2b&c6kxdn} zAH1?`;O5Esd+-DS7XhS|TF>k07Bd)?h!3cRp!FtXTo%1pmLebR8s~rZlO;8*$fuJ( zUSfgPGdfis$6T(0)C>2w$U`y+6Z3}yey;T9Hf@OVdi4gsM2h4m+96NF_fMJ9Wt<_k zzH88s^{}b&e{sXb#%rCB0G>-dns;|H10e6ErFe6{iU-F`ronf= zOWklAz8AJUBhWo16?m4g?dC|q%?<2%;7|xe*`-V4nt4E{&d(9gx?q%CeiuDC`GFjp z`?6SpSMlL`(vNwi&dgY61PUId#*iBrS*SJ8tugj{P4HuIPC4r`MxsBu=&|+g{@$?b zr!TGXG|iX`CiQ*c;YyL{9Rrvtjk?;Z6Z`rgA_=ylNp5t+ZuwL5PtYR$qvxo#9WjW-(yxA)(l`Lm91@Uu{?v=md6NFF;-pmGW) zOd!7g8545r5L;4WIa_lXX}Q>{hRpzEbhHrtT4r4+m1Qz)wDdhYEAJXZY<9G|ONmDe z?)5$bY7NLlTVMF$*g7g*Tjb`FPYjc0&dTjWA%iDyrmK9fi8WTROeR6j7!*&<2(oyg zS#er0G-o4#QgAifs#8BdSrv6v#L7cXC+4MDDFiv-rK%}XiT@7T6(5{aIpAJ$rO@aB z%)UdjWsE4K2JOviWt+l~p2ta8P`m>uF_^0iHkX7CIupdTIePaug2iHJaOX-(mATfc z8BG~NY6;^5fNQyFhieg2?i;g%bA_rp5>)iicTkkH*ayHVACkh%Jh-9$ROe~Z0($~9 zS|!5?#YDA}KN7J$9G&o!wFS1hvvxI@<(k20ubK_oYzqcd;gYRhm?s>vp6_~UMe0Ojh=u~&7DVWk@4flCoK1- zKE1TZmudXra9jDhWu<{jJ;P9=QwRsvp@r1`E;6$+;jH~8V;qsT0sK7rCs_3RIl7=U zN6VQPTTY)c+ic%YPute^9$;%Zn?_X6NF|iTA0!Xlx;Z+nr49q@rDY4tQJq~}pZi1I zkB9-p-dD!1GQPKzzulMkz7+a&u^?k~7`_f00QB)G5Ao^SqhD5ib%xG=Bx$EHScI{> zMrn2fti&2EDh~lo`SC1$L+C`=#KTp7I1#)5*{s3vorRNEDzKST%xYg#_mKEU7s;Z- z&z$+|4MkTg7rKTV(BV-lwzt}mdqi5a_kF8ud>5s-Uob7R^zG7g+n4*x>tU`7YWvz( z!Yz$@aT_4kHKppXyX^6OwD!q$GsgtV$D^9Gy;&Ju{0}uhdk3u2 zcX7l4p&$-fErXC+;<(-(aI_eM6)k_kgyZ9}5^R1o9h+?!fQ zX*gK3m~Sof>`o1LnZ38mA~K_M?DJU}BP!X;yZ4o95k{W|@iuQPac~Xi!tcxr;mzhY z!pHOi-^Pnwm{F)XIvh1}SOghW!?uN~Ay*7@lF=(G%I5Z`-yc^#{!sW*3hXqc8C11~ zES*H8;7%5yGc0h|GJBM-cJ&)-RD1YQ6n&!;VD;ysy>YTy8sdYJBT*Zk2Xah_$rjlT zt0l9Qkb{#&QVuZl0cf#R!l4--#JH-h=w%$-Z9A$gbGtb|S8h)f`UQVgsx*_*2-Vp& zAk(%hGoE7gcK?iv|8ciPmmzjC)Dp|Mxc`=gec-LVrJRuG&uP(Xj}dGcZvv|0Wc$a( zGVB2+&)u%CYAUJS!%k}tYj#^Er<5XX;w4w3*2R=etU`5a(fMAQ4Bn+R4Xkgs!+!D+ zB6I*YPwp7$Hdq!AI;ONPb`l0Su%egJTLrDj1Zhjt;)8k_;``|?lShy48x%y0q5LGF zDl_wAc{ILf{k=+62ihfP{TEmw>N8cBJ`xocNOjwqtRIBai992;y!yM1b0#Mp$VUW& z!Ja(U`%Oc_(NWC&qzfAu16;Cfdx0z7 z%n^Zm(RV zJ_-0t@+#@h*h&Ylus94YFOx_}NU$1M&DM6Fbu-=ZI!9T`uMm(iC;}NZ8^>M0ing^IaP&5OZvR?=W&np1Dpt#lc*sd3&=sx?E^#q)k zExJ52hOmWXRw$$#8Q9*W-k{0k{(v#uYkfVRE<}LG{IGPt((Dm2;ylCD3|%6=>sNr2%%NmRhseuP%?iwXI>_t1+zk zLqYuYFz&706l340lvi6#RHHF;;Lbe-H~**-AqASxQEwJZ-&~e7yF^^aj$K{18lPx0 z`@S)5-#rf;s+dqtjUX-gs*W&<_vW@9>kDmQR_Q?$#qb+V|Gu#$Gxug5B`=*;HHL|~ z-0#T`7rsZTIJU^0`w|?Kp1QZd#q6Fjy>2H4=uAR2h zsn|SFlzrEg_wCHxX@<7c;{%t`>sXU>4=+N zPz5&ZQqy;%>RR6r;mmwwI8tA#w+w1yQi`{VsB5w=Qwlo5Oqfx;%iDdf4DMyx6V5zA&NtwKT6JWW&0o+<2nl$zXqH-=FK9z~nOs;#Xp<3lknE&J|WVDm%% zR7raS6#tFEij7@f%LSnEEwv}}%{L;taZ+G~dO)>M5QzQy6WGk%_Awnobs8SqY-7)6 z4G~YPY>)%3n>lR4J$#G6;S&!K(|3Y~A0;DNUj%7m{S*qDGRxd|*%XibBMwKhDCOUR9cr+3A!weL(9kSLL zcF+>hTjb{u_Q7JjeJ*v2P%f=RxdNxukmKW+$!5v(9@3X9w|RRE33$mJc&7ru;BIm2 zAEl1=8aetD<5YfW2APBeo$5(V|f@%w}mC63-^z`&3_JyJz-gIYK^6qu4 zU!T_&V0xzaD3ifR3oh|7DjP|Z!+^;W7Mo|jhK{3WRQfA<7rx-6*u*W};38)fsP!gJ}#OsU+ z(q0r2%4fT`&@!KgQb=H(RzaKkXs|BP#2G{RntHWLH9s2JA3`53 zlABo#LTvYCb)5x_L0t5hMB7Hr+F7WzZLXfBOfOhf>ssv!Z3|noSC1d>>lHV5y-5Az z9oq$8UB1_<$|ywC5bN$qX%rjG_DhyfDyd)z;MwbS2|22~TW;BeAy z%mSa8VVl*G0}Ge5*QB|gHdm_iGvHPaZ)eog<4cuWt;%(E3rDx6Vn0jA3ojA@_3!(+2K-je(lHbxH ztVI-xMls+fCG~v5!X=`;cc1gR)M<0gSDqM33C1d}!;vw#$~<&(K9Xx2W-CmB77t=O zTCMyPnOlG09eG%of4#byq4?H%VZO|S-46&laEto>*7bsi(74WO$+j^6P(^)dLb?3j z=$gTGwRgiUrlx@fJlR)wZcZi_0n`&7qjD2!Y?Oj~auId$VWc(&C#!%SgY}N;K?COCAe#`M$WT*F^2uhg?HKx+ z;@Mg~5j}hMw69maoWo*ST<=0KSM*e-T+N!8vbhWYqJEOjM+EUd`)h3id5EW->s+9??pZ4%Ux4m`oWFlNMWzNsj>S` zuFVMB@nIZ~yu@?uMeqR{>Z`9;N3<;EO(OVNG z_S$qI&Fa{BHRcY6um)P-!X7=q1r0Up5}kgVnrbHIFoeE^*A~;O_k?0^@{oF->F~C3 zh=zo)`Z!uDJ){C$G%DmS1AI7|WVDBC%vIPwT5ToPCcppGBw+!9Hw@bA*ad1Hp;>`r z`@&%v0-)n$L$<$nu4bCTO9P-Ruz=LEd#80st>YW3VK%TkP`Er3=XgdH$rVbK8}ng)?U1I zI}hPGhPV~iU-+g*hpIi6L@#QSq)Id<5r^prH1|SoQEXZByjWunojQGmamO3;w8l&0 z7qnl#eW$p6VTEVr83O) zv}%?Msq*m8Fz9D7(E9`7;jM$4#p6PK@SO!hcBu|dp|sLv+*L&3z}|LSO$D43LGXZT zeW~WGD(%ml^!zOUjr5jWvFaA!FE_Abx%z|<@R<&p6?(ki?5fIQuhlSmV8I4$rREBl z%%kn_Ak4{WJNRI3q2kuZb}37y()dJ}Kz^*o)^Dz-%ZWm8P+2y;ShVWB*&A&sbCo(X z9h>!!ChE-{s$Vhg?PRwKuw%*5!t~ndz%-7>5c1S2%G@fws)8Yg@%eb`)|}2b$44b| z12IqNV6`Y<)vt{WNfEcr14JFO2@^gKKmf55OqQp8xY3`@VLwUQyG+5WWj&{QLu7b6 z&XH}s!EIFU1P+#yWYuTlW1sXc5hEPuR3AjsjlyWiY*07QI5Le8FgKnzT*h1U=5fw= zK1_J-9fFB|BaHKP8u)Cbwtf|$c-;XCIja{Bfi{VmtQC0NAINnx#Z}gnWi?Y1aF=#0 z5coD-+!QmivIj-*J@SpBsY>dX@Dvt0DqPl-`|LS_b@o&ybCU|3yoGCuNO!lx*b5_o zY}S?#Qr2>;0?rTtLQOi1@U-%f@GoC>*CCVL&qc(`!AoP=z5AZ>)YuJcr21Kl2bs@W zasm$Bi}Q5T+3c+Zg=VM8pEIqlCmFmSvV7nK((ToN5B>N23+6A9PR*iIy=n}6;aclxbkf@j^6s3)LD!&8 zB&EGm;)zQONdxFn!1he7XlApmg!Y$`)$BI2*}%{87TqVFwXyAJnlT^ZEb1SyLud+g zA6fKIssRmcB34r3F~+ppWST0d9~>=7x4C*KhlO%om3;_Q#;`j8tG!dbT}oZhM;#;k zPOgz_b;(k_0ZnVpQ1GaTYsO=QuW0kV%3i~R{i^1vo7x_PFQ-NwQ;CIjp{%VX&_Zyn z!^ph5BG$oIe6QHi4_q!Rmea#)J3#e%wHXM~G;1_!mPeTSN{ccWz6OMjcDuu|Hir?- z&o{RMo29I-Eh`GIZzjv*jW5GbyI=By&n>$x!I!VL-udr;1DOxJ_XKfUvSez2ejaXp z;;~BzGk6@=3WN!}W`IW7K+4h5ymcz3a~cmPCaLm(VY0i9p9}UA+#h~&DvSJ#p`8b= z^u5|5zOBq^j#x+*`{a}HdK-%zmo{%iSq(r&J8nEbAP+$HU0MMztwzn^FdEhfYq6Hp zb(zzyw`fv3PcI5>PE{)q?#z7)KsWnVtnN9+C(Vil|N0XVU@=)EJ;EDeg;rDgWe!y& zMDnYHqLlrT4v{+r5S3Cgb2F3QW;OP%oJO{z=xVUwfz6g$$vRV|_)5YPAljm24|!~` zYAYlS@pIiy>BcBvAMOpRiLceXyg>M(gkSF-^yNc8nz>%tqnBQ)ghgn&XUcSB*(NAP z7MWbx;XEP21Qd_5+uF^qrDkutXkj698hW)9>u9{cWZ=AIrWoC@g)7dV`N=cw$2|V4 z+P7-;BDy(0M7WmA+8&=y6OM8iB#Fs|J7nfs!3QBQ2PNggtcdY8104+^eagKIyJ?yV z8Y1e}ImeI!A}qc6IB}MJf&w5=sLntu=gjfVO)69~qk?!|zLdx|>Vw%E5IBB%@urI) zgmN(pxl1xQ1WlkZ&n`y(>2EiNufpVuSW_giym+e|w>7CFIM~Br$78K}T9q`BUJu5B+ zEN&f^Coz|_)JvwNg4rPalM38fMk+C|oP3;8n@2;?$6|{tN={xet1H_e=_NPCaJ~$+ z9ANAgq-DFgoN%cA}p40MIkKk+%o!Iaj-gOuxbf2zxt+a-Hs7vQIIXb*) z3O>zomVyCR-v@hY4mzg;YG>IS)qS>Wtui3yQ*Y`X*~^n8oaZ;M%}#ErWkj0~#%RVT zixx^X7y-TOi90FMwCmJCn|Tk8^UrTARf6_kCDfr0zH3&!Tq)}?uHQvV!=Fj5QR|tU znk#aYR?D#x-PJ~{@847gweq>&hL_#9agt?Yb zsG3u8(@mPE!|Y@9G+(WZwYigSi z74Q633Gerou*B@otp4U*Bia2_l=`w)U-Zg2IePp1`vEqImoqof)QPALvM zKePtrRbx8EBBVNRYH~zk-11~r``<`N$i(cTPf-APJ146^3-p?e-PP|)=a=#rV-L7d zagNzOMuZ&HC=v zVD^$?2F!*Pb1ZxNHUdlh!N;=PZSO4Dcd+`jy9L&&Fx&xSYJVpLN=+umV$GKX^lG05CUa10NaDfSz>)g`GbgGDGus_`Sll#7q!{QdUih*?> zQ<}705QiXxL*x+OF-9XOU(oB$wUQM8KE|U(o%aku$1oYzrgza;OA<9fdA8%^t%m+a zq1ZU~HU9i4ebWtG&^s&I0>?cZ5RjF<#(3gfG@zY;lXWloa+cE*OD$Udby$POcy{t1rOcsjyEp|zO z6kg|UFSC&K)g?HNYSwObq_wHgcKKsb(Ab_Vd^7qd33sjxTTJl4<-j=8PxJf;?_1>&Nt493+zPc(rr!V{lXl}+*!lw z{dFD#L)Xl04?}`)@`>}!w$~e})uz?9gip|vu3 zF>=7=?u0k5l~H|PmcvMq%AhTwwyNTtC5o!&3~|C?JW&|Av^Phz_H&#DeLs*9q4?Vt z<0GVo8^7m)LdA36m<>8fH45HUH?e+={06c}V|~sM%j6vV@P0$2nCT}NmkoK>jlCNv z$KkXEw>RI~z-59u2qC=90fhw8&Ou@wH9MVhxh&*NsYaJ+eJiadWcyVy7lTQ8Wrm@y zQjlHin}_jMBXZ7C5J{J2howE1$J?h9(g|ZgoN?G*@_unj?LpMQ+=Ha!{wn+Zz_W+w z#8`brIw6u$JWZQC#jR^DuhJZDh6eck_xf8_a0Glkl&p*^ zH7nq`7Wj(VbSl=3`{?rMtH+?V0#D}DFbjKp_< zrTOJb-8CEUq%2rV2Uc&+)Ks(77WJ*meMy!P{}lY9Os(O`@56n30P7KcdhxB$L~m=B z9V`&0gzB#KArtL>>o+KIM&+ob^LekzOEa~5Es&qhi>W;k`<4qC9%T~J*YU|@?FngyuXG&n5;w?MH z#MSS4pOVODbd9i+l|j%pmlIQa;pYY>o}cg6v7e5rn93VdiV3s1zQlxEFUZ4f-Ryk6 zD_RrR2X8|OGF*JYGgQHuPKJ6gqF^yTc`y`Nscx^+wDds?TLWD^VVL^HLRsuPk>A4=4#RM=DrQ^&P3e@x>jdTI##sskA^h>2j%yJHr?FYgY+>Nb`atK_2F1cBWUI^Xmi( zneMy6n>FL|HOA_<9HSjNT4^RfU+6tlo~pa0J6`$N!g;hv-$Sd|8r2oBSHU3*8?*jz z+RzlF$d@}rB#mQ%LyRP%fd$3m6{Qwl2L#ikYsNM{5s=z*J1vl|XpdYfIUQEDr(Y0# zyQR}l;beb=>n{e#i&@gBujQfB6|KeG_q@Kyp>`Zc1@8M+J{r-G24wCSb8g&$bQcWS)zN^(ze@)aj!bdO*kKskB2_mkY*FCqt=0VSuCvxo$q)2)*A_(%J)C4eT(VsDF4h+; z>o<;7e|fDVKXTIciGBP4I=Ky5-S{TqzCiHJWq3fT8L${S8v-xB{E^zm=@9yAKNt%C zT*@*Upej$KLu)(*>ybHQ-XLah>a%tHpMQPyO2gOnO`W(xYW&(R=8Vt{+UH(|#otTU6t0~Z;TF&@)Mdo<<$-^Io#n{ocd7&PWr|8RS&Xey zLqqsU_M&4b)*NJ`oYtOj$?|L1Png#~R2$NB1a zL-adU+*s~^3C8(>hvI)zre!%4}xV4c$!5w$n~=2?;X5TX9`rK*%e z9h3>ZQKx0#QpcwmYV7C*{b^_9x!~!;u#b9NL-a^zH1TN`<55h*KmM8G3c!{ks^bCX zaJIlzHhVMeQv&m%e@aOq&kP&Sx96u zUmrs~Y2Cm1{?$wDyJzHCS1w=LGV0)8Tw!bU1$=V9Gc2OW&q-OjOJhx7PUAti?5* zogKuu;#>6BunQ&Nk1+CgoZ2Wv64A@FUaQ6I?~WAR#=H2cFzCC8Wugj#X(@5OIW(;r zzg{{2F=l9{#i;e!?`~mEP}I0KC(pRZhXDg;+XDU*JshG7{7B za#5>tzUDPMVo^sc4sUkMHQ;ql)Vh8qS~ruHWG3c$BhN}9KWJ(!m1W$9T(&zm8>-xo zcJD$Y`EkMirh_-kemC{wZ1OiXy;W*OSQ2C(gzaib>S&5{PNEa_632rrnF{k?TWSAP zj;An_WoM7XikGh@>qUwTUm(?!eS+5lyQh>SX}k)-)O?DE(L=X!ls#~c_&j+73&x~Aw_ zmwg1TPlxQ$!v-AtWphIBva8&Frv2SI**<}|e0et!kOLLgR;t!xQmHhp2zulF0=jjkr zo1-h7A*sXMY&0%e@=-nAykIHkEi0+&Q<*42I zyD-7X_6ACr73`1uUAJzDgj-vcj#@#lvs^R|Mh`5tj{r|$9oP(-v|wOOWO=!HDSpBV zWPSZjcGw4V96*i5G;JrZcA}6smqk_Ap=9Jtn%M9&CrdO^=SyoU7e?6Eq%>=9 zI=-L}G3jQ@5~)~KrO|PR1ObI8evKLr= zNRI_Woh0)U*;Y5YqZb+s>xKW?z_4jW7kD8rwm`~{nY6}LZ?(Xb8;20|6m7U(n4gj0 zyyVp)-38V4N~3s+Y_vNTxqr#ioI9x67xL((5>CudnoaB}U)ta%>~3~5{n*RU#XCS z@35BkvneFPQ028wqrNLjh4XQa`z8mAn9c%dbwGPc{C2yGVr6l{OTtx;`cQ1pu zDX!kR+JJ*j3{aH*tR_Q=oEOv^=dy{S5N2yH<}$kB+9lA2xT758zLnB z(;SHE#?69Un?w^EplfMqluySMpj>Uy)XZVu_Lp|1%{Ppn%1n?67e=jm;oa#nV5ZCM zR%qLXE@LZM-GW>89nT88TuN*2=#%ApMD&AaREu=R%dW@KqQUm`gUx9taRlo4(w*F3 z&pkE#=ffrzHp#t4J&bI9TfK@6fh@C=?H>^4YVEX+WL-4qDXnd;hxp;V0}=7$x#aeH!MS`r| zy`!3huy8%k{ZO0XakNpT@qwF0n^!i^?GPpgq4ww^>MKE&qP_%O4;nx+JL@XwnO(sC zOofz=>p8OP;Vg9+PH1bsTt+-~x`(XW#XglBA2^U+J~)sPOJpi(B9q(&&zw4LSTOF;U3a{k3lDf zQCa{{8Yio?hA<=QV*`i6S}3qqwPpYVW1H^MyG2~p%*|M;S-X-~C$DstIt4W~aHOApVz`X=2C&02JjJg(P5Fp8KUh3nB|D>WQ>rIjX(nVYw@x3iZn+FVUx}1--70Ni-o4oSfMta&laNBC^kM2G zFbo*hiIKJNL(sEZEUm>YBQ`^Hk5JH>(a_-NI_}%gTWU)Wmc*#|V@KXc z9<&G0+DKnGx2@TrjEu5s(87FhfQ_T(ZT;qeRF3O}sPX<4Ig%*7$JGNgS93}p_qMYP z16@aELZG)ehE0~Jd5f)3x6CQsb-A+=%fj#>YXgJWdy?a08a_$D*^&3qhaI0|Ly6*e znRU&DvW$$3J2uxqdacTj;}b0F-H)y0Z!eGD@v2ZbPxZQbgmhy@ECS--Ks&JUy`^!_ zx$?z`E4AO@9Bt|5_Z{-y$_#ux)aIV)cIdTd_g-Pnsys9NRvxT>R7>N`ST_4&A{Grsis`VQYeTu64x;*%9w2)c!RZFNJ5$*)4Ma>P9FA(Gvm_CG zF8SAFqeBDHbxV(muI!P6jD+g3o%+E4%Vg3v`X5 zDoM9Bq)jr)cWK>lHcrZHIYW}fZT*es>c<-M^`)(7rgphag@h}QqLd({P)Vxikw>A{ zQXy!QyKHbH0XgRW7FFC(*#9*#-(^t7=Xc*TE z@B=wT5W%QkRq7&8`JEhwC4S}Dw5pv<55A%V;TH&rH?{8JR8rXmpUf1=C(jnV_hU2D z53`p5aU;m&If91ehK3t`G5icM8{B6%N6NY=1pJgoqw_RP;Z*%?rJ+&0Nbl^Xw_fGw z2uHp)Qvzb|c}0a^=Of%gEw=TC>aSSG^EHq)u$_g|?>SY;gkY5o`RW{P29=uu!!a7k z2Ap5(u91eq_Xw2exi9F3uiu!^tJPSg_4>^KV=qST7p`C1vbEvm+}}9F_%F%fP#b0F zXos2xI@BL|GpmLZ@lwIvoJaZvtr~5XT+_Zxk4-6S>)1aGw(=thZmj4G(s6*iF`q7C z==;{@GE3WJz$%-OINNmOqvd-2$==WNXw7=PZw!71+LV%$pS#D0jR-%-ZPn1z8u13} ztVDc*4ap6zXZWqJ!RJJ^Vq-^K2L)^Jjz!Zu^@C%gCiAqfQJ5+?R-}Mr*67(}GMtZ= zhQf(v@wux6!h9ur(5B+`ZR9(~G=x?T66IQ}Dd{#El>YEEcf+4g!Qt9v;cpwDMeUo2 zSSZ_Km86onmMX2cEQf#bB9X~t6qq&WE2<6%74e#83y0IEzX-5+F@3RK=$*1hgi7OZ zgh#HVLXe)bSE_J)Gn!;SeBCRA{Q9qdh`wK?+U+JkX3&_lc60P^VzZqf9Q~^|>h9c)5n94LXn?2fA z9TM?EzJvDqhIjk!fxY1U1U1_Gi^Wz&-RFy*y^4liKyR}YzqffV77L~Xa(1qHQauwC z@o0NI?7jHeYaSII3>hD77wgtc5G!1wvng0D3486GU85R_*-hPmbdhAs4f#Zse4Dq6 z-?Zt-lgU7Kbt8n*Dd+fgI8o;TCPWp}%-t7-yIn1tFH^{|kjJJmG}91zk!ua4@ij_I z)rwX3qc@7B%@;(GcLy7hQ^M9RkHrolDWwO*W)AmUC&QO*eUw5k3hFgoh#dDZ3*9pC zJTtrmIY!$ra94Go{)-?C4#(m}(WlFq3C3A`p&z0}I|Y63mGE)!Wm7rcrPTE#vDp+^ zjpOsfD~F)^%d2_r`!zL0rl(u^TTN0227mE+g`4Fdc>II6PSTN=IygVweQNT3pv$ZL z5B}%gJYH?+4i)ziJ5{0CZw8+~_jd|z{eP^zcUV))+6SsAiXxyQAkq|6q$|CHh2BL$ z>B{(7_CA90TK%t2S4*Xv%2Z0stn#{l z-_iYa#r4e|Zt+L6JoWP^bY(bpa~`YmnOK(tHpo(7?T|#D2fcp%It+WI(jWQRSz#7O z*#FXao@*^r;BS&L8P6{|i^eikm|PN$le9lmy=X7xRP3n4T$=6pY%u?Ed2SdBxo~9? zW?1Ejbb6;Lo#-%0+*-S4?k8p7RJ}pVEW7u7X&@&nDcvZ>4NBPI5Osd(M?~o;OFE5b zmuV);>pL~HTYm{eLccCkC>)A5PD&iM>6O=m&;hm+)t{_K9G(qG>LiIi{^GRp5o1TS zSq^Qzmlq)}cfD7g?rXUaCcmLIg=(zfB8G=6HnOm zJO9M=x9%f;42L9wN`#g=yC z6=erISh`K@4>e)X;XT3%zEmp&V?*Ak9?Bk^y!LHI%zju_ZHPa*Rg4SsEz~ieBU+SA zm_nJ2&u;j$pajaR_~gkwEC|LU>@s-bRW0G&{?U;n*QzOJT%?dwV)Vdc$5!8R7=XALx<|wn zJl;GzGc4ZfIha$)$s>lS`dnDFO(QlWZ00;-P&gx`pMIHNL164!D3mR3jD@ZP%X=B( zZ3wb8?v2x`+)RAbGn~*cNog--ko?t4fqTaBsb>9k%b9mps3LV?ZSQUOqG!elL`I(I z3vU5H#gi+a6+<3KKV>jL8(Dwo9Db;)D2~NzNli%4*Ws+L* z_nF14*iI0es2%a4D=8~}228S{Mf}FTgKyo#UMj)@(=UK@Qq^P0_4{dRjuV+rEu$I7 zbdVrq1ENeL4KuUVF7h&<%|rE5m?K?5G^4w-o(v`K(E(Q`CXA&of_f> z*XjfJ*>_6Ib2BI3Y%P#CzH}Y<1{UeN#Wz^KwKbDxvsQvNB8|GSXe6ErBdQ85JF-dd$55E@N z&V{6Y`lYDd72tr2_Fhl6wlX(W_kycin1_&le&KlaTQ*3sU947g(5cE8JtI%X$`=4) zREhJ|iR+q5k0ItlgjTDX7A2~BgY@q$RaMXeeXT#1w3++9=7I;G`yaGFl1lsd?BoQO znr-gk>Io+3hah+MLQn358cnmxR>4Ul%h+9_RBYJB9F<*LoafZ3$9-BI>Uk@&t($(F z&EA50VVNk^Ye2P+P}x{J;DTZlZK%UW366xk>vz}MpSWf;%fMs3QLC=sY9^cwzv}Oz zN8$d|a_COY3)`Z>lE+O{fs1tgwA=P<_T%5ry!U>96{oU3e`)tck_q2ccE%g)F*FZq zi)rui+l@J)8#?8?s;W&tW=ibXq;u-b@(o>2B|ju=$RXHz4XVe7QiZ@F-z$ zZZitBoUFrTxUG#EuzOF@dSjZohuW99%jfy4lB!9QioI-hE1ccs4E7_SDn@F*ptcBa z&bQma)33wumzF|`UyNp?9f~@z*_%+bU*)-m zY900smJ=XURns8D8gO+;(TM1v*PXwqeesGPU*wJ>R%Kv5p66Ai=V?zMY@^tr_lJv- z9~Rzvd}gTw&sx6^McNMBgl{ghc-KPq#|$^WoygMSorU@Cb}kQLyLS5e&f_B-qBP=5 zK2#=QF6K~ZT=}d*-MR{bBOh4V%f=MHc@jn_ep03m!J)79lJGZbb{ohdEnk-P^m3Q# zy{T`=9|q?mi5NrlQ&exKr=*jm=Z(v|j(1NVvk}a!?lHEX*x7E%(ZOG7**+V{2=?E7 zchh~-HL2&a)2JtT;wqOya;X@|u@YR|@D}DdRMB?+l{wim)enAK+qwuTv>Q;V%D!)1 zc0I?cgIBJFxQ%DgA8G$u%_Zy#)8eo@Z;N$HR+?uD3 zN$oOcv_#2@j9U;+skn1zHB6HDR{M|a0OhHcnafYe-(E*1R`noRk+B%ziMPg8Yq#AM zu1!?EnEWB>0N=B&2N2FW_g=lWnh=7hz8dCy`)z*FkKe%zRoBv1!R-3z9Fl*;TyA2r z-U{Dh&B5V+2s7~>vuJPYis5J>IoYjz?|=Uy&s~j)-^6Kvz)ATX6m2s~tgGv*boJE= zs&C7_pzJe82#sSo{bfku9_mLh1K-Hm@s`z5$2S^Otp<OJtFChyHw^mU@R5j-?Qtz5MCGkJ86di`3IL(?j7CLZ9*hk)?0~fT-LiC>IIM*k$L}al zy}4igHcewN)IF?t|Lu}js^aZRI~JKLB4LDQe*CpF`{m0PrD6^_VLSc!^N5B@wc@Zl zNuqXBqp&`!1$!2EmT!!j>yL)N-{1?=HIeJs8DyN8HusllluQFP9G>;BzWTU(M#1)diKKgmT;G;y!UwkKJ{RCy8{D!VbKfSEVO2_vV!D>**p zTZ7qT$KhnIdro-6pFY+qXKEk~7w*eI;RL_cO2dv#3?C+q$R4#j*)Qy!D*ePXbep{d zj@eo1fBdtK0rTDd5_z0!z!z69C-JvWpte zD*EDOVzU1Syz_Ll3{YXM`fTg#Nw)Tg8ouawZ7owvFYBRvJ~z&A0bAc46sAgi3tSeF zrK8{8))8eMkNdb}zsr1lr-eOyE-o#+du@~XyF86hP`L9(K#{8-VRvYAcxyXX>oh~C zd3EM%W>;Mn|CfsP=zEvgOKDAih?!nVxYRxW`Vh?8Yh=idt2z77dj*!V`<~@$$~SVd z-WNQLPL|^0_K%mBS@4G}E&kL&#b<(RX(V37@X#N=_c zvp&GZMm4hgQ>uiSWbo#gp+chV1EqJJBv177lPcAQC>pBw?$|-$e0Ld-7nV52?B}_a zkx+%bfubN?uhI}NgDX=&>W{hcGR3tY^%_C6AJp^@zeY~?e8~|jNT3)t&eL+>{oZ$<-6Hc?OqNI&ETL{bXD)rcopUF&3 zHe_a)`$F+Z2i)A-aFV>o;ys?Rew$_Hwn;|opT%)9N;P&Iv0#b;gze$d}_eB{Kub#n|5 zZRtWf!wnN2OPGk5q(PPh5+w<}vUD6zRtehw-8*oezWDO+Son8S{N?d9zSE9+`S*XA z)PI>mk6?!i`DO$5jUw2!ZgalS)%_s%R(R(vdJFA03vYQGda3zx@0}|TM&i#XK=C)K8niEF^N)kYJr?xt`pi9H0AFw(=PY&szcJo|0I|7OCw+KfP+JI~QO!@2 zwkJcAl1Iws-1L)&??%T?cH7O_Mn;e&vSYo+PD_=)+^;(SMqlJBrs6Qj2pSO>5P8n& zhDtQzx`}D68E_p5#4iJGsb79TTnz0s@)R_9)X_G``%Q30(JwRi__lk0rk_OfFC0kH zo7fI!o@h3F!|c1K11!%9jLPhl-qxm|r@7i6a&>HXw_uJrIXv*eY+iD{qclMUj&?mz z3ED5OCNwfUo$y+!+zlhT4X%zX$ULyKOS<4d?INC=XESPAK%kv!QJ)*v=@*LmFm=$& zwOpMxcyHme`?438C+ijb79L;8bk8#{(h|bYR3X4GI&#BUHyLk53K@O;)oVkTFx{GNH4$mfTvjE!(C}1$Pu%|UlFM0p zy1bf+p6~_kz^WnqNJ~iRR7yJQW@=@fPUReuAp6u-%Gt2QL|<^t*y5E2LTYM`-$~K! ze!(=5s;A(#xvQ6O+vLM%<32A!vC25+)f?jql@RmnL3f58yjxx*-s>%!MrA<>$8~4+ zUIM<%l6!7QLjGd5&RSN)%CKv>0bnJUHn$f0uTI6OjL&_2_0^*P?5s76G+&69yxVC9VKuzY zUsRBr)}VISw*?1Gb}IM+7u)uU-HCz-yKYBk_T~Wh^S#E^U4w%#yB{C$FXmHt|GRzq zNfr2v>~2wUoFkZ6&T%G23_vkWx&knTH88>!Ht^<&U--X8i^5Avz_(6nu{=*yb(Vgv5j^pbRkobh^jdOurMGhM~ zF8*4dY_G+$d8Y-PG)YC=Yeo)M@V5^q(_}54bdJ{UZF3pBz}<>OYOK@6-2GpZn@T*n zF4GVhY5%lYtU8e^5$+sTc`0cpC!LEDAvcK_g{yAYq!ufBwz4O-8p&7h~6qc;7 zPnuk4YwL=mSF^qNXsq|KNO^Gq>u7^>-IIZSkJuAJ)qX zwf9w`bIghh-g=x}-@UUoAESTCnfh(>ssCE>{^x2sN1U13^^H+GcWzz4t#{}ih1T+% zzNjNZM?t3e%TO7;x5%Ou#6vO34Bc~4kNvLqL3Pzi`@o~$M5v}rW>Oe0Ii)ToMK!uy zl~=PsEAv_?H=g|PTv{vrvzn%Qe9QKCYNy37l(x}@i_r|{{pfXa&!kml=&l_L4*lO` zC7eqh#_c58mb+w>UKMb87AUUw?C!_n?-Oc6XV;Mm5WG;>_**#J{*?#FxfnO8qIvjW zg=RiG`ycA|wXR#+_x*XMYEN`DAr-5eYup%OAKh{@4oA68y{Y+fAV#i=H~v~$Xd2&B z#dRj{x^TVA(m8|gdh3HU53gMv5@qdF3jZgl(qKcpQ!+JlJbm?l%A9(T;tf(6hnQ0o zFEfCzePi4zcfUv`KzJzFeTnxlE%y~RIPbgQ>BY)7kJ_ClzE2nqN`Cx!gL~kyPDjV| z{o_h+4YgN4v1GOgJiJloGGT<^`{-rwJ|pwD>gV4DMsexlt=eq!TH?Zs|H0gUlVbo~ zE+BN`zZWk4jOAKC2B;Oesq4;X|IZ_A#Etwrk$?N_bqr9S?9LY@DgUno0k_ZF{~rM5 z|1`h<-*2Daa~ShZxb!#1`#=8Fk*Jtc5w?QB$evzH`|s(=KU2&rdpuXGWIg`a@&Bm^ z|JlHc;^!FxXGY1>zu2?~*;zZG`7zVsn6oJ-n+okmsaF{pb8avH_>iLaHRD$M%i|Bu zoIT{dm3j5n)kf8rTYBw!nR9+~DN<|I^$>{r*4Mg~uAa%3L|?48hfQwY{cWT^YKY|i znEtBb%VWnWPEwu!(?g)Gnc})f68X%rKmGil4Koy|s3v!Uim%fBX9s_3sfnj}1w|a_ z0H3?~e~t8SzmV=Ku2(5IP*g!Y;Z z-Qi4ZmWV%W3&d1%8(VQ1y-qh^8o=NE5#5eM~k@@T|IKNCQ$ zZ19)}srk{ZNnf1S&=ue=0dtLHr&@12z)>z(vdnx>&zg0?)5bKrfk$hV;d`><<*I-LnY;MQcNdCkRFj?HuhkBG zcM%{%=GphXtuB$?>}O5ya<+$!CBj)G#8X{5@@;$Nc9VF6IY^5tOHjC+Jk90X76rMH z@0G)^#CnWA%i9`(AG#MTJiGU6THh-8*GDZQa}3SAa~SRpmSs*#I89U=H2MEtv&CA) zlTNrg+@V_wv%b+}i@l%ViCRbn>AOoeoO z7g9ZQCD4B5FNVqj4iDy{b#g)lYbE7KTl!1*bh6)mhv5!?E^`t*)Bw(8?g#cc*l0!A zC=kagM$F9H@6G{JZzT{RWFoqT689`fi;!}9U*$;N`UEI0OvufKi6F{*<&)z~J;o{s z^T~NP;-1L%);(ksTn=``zT+#ccY)5eY98&oZQk?8$6wg`&YWrWf6kD}g4sj*mdeR* znA)74@Ln(_?3+x4K@r+Ax%eI#1;?-LH=EHdOTK90T_g9Q$04nWu$ajJV)0g|`5~uL zs$dCBZhKH)=`c>{ipI)^`6T<289ZX?2fdD_46feQ$bWli;53Kdhk%3Grp;}b0Ca-0 z*FN^K0q>P3ejfmSrd7;@@Xg!%i1bKW7V-myIG)J5VI%u_vxBt;;#$SwJ~l_7YLv6N zI+|NYJKn^_wiXj-yeT|v4k4xBUTkd;(djWQVa(CkPw}Q6PxrfQhq`-`ht?pxj&=JT7~iScZ!kVVaMmMiE9e$Xf4MbFaKd+Wt_| zV`X#;m_l}^Akpy9*kjBpL@=B?hfIX0=au*DyBgUSS8ndwr2A`2uT`7pIYLo4QQ%g# zn&)1FdJ5f46i}oSQMUB+4>r#U&;X6ZL_&|$0>{!@CbL^DXu)uHIcfiCYI`Pz7Ia== zNiDBw00BO*h3Nf|$1M87ImxMZ$;i6f_qUunoex$qae$K|YFeXLq3Dw8v9(M$fO9$I zg9Y@`_K3Mg?6ULf5KY}R8SA^hHpXY;z^~1YW6M&_&zO-kCZsi*p(u~o@ys)TWPeCnsVmd&?!P9}29r05^ za~wLm=<%?aKRPeb?%AodUS%bXtEYBx-l@eNMl(LK2=u$V9?TWNZ#1nOiUdyNFQoZ; z7+J+W4yjug9H!8f4(!iZL(kQieuR3M;ZVwqE)cJ~I zc2K)41RP<(yv?=5Ac&92beN{I*X*b(>ytqZca*;Ej9NlsOJPc1#EmM=oEsHFu?|6((CClz36>FY(UnB` zSKoj=f8XgzSu49a&lMAssDPdFEd8;?EX;!o)v&c%d;F|a+|zm2r4GK*u0|vktx$Q_ zSKDqemFysPpIeUQ-5ydFER9HEQ*R7L>3+mg=+)J;HI-{ahUSmGNTt>N&OvT~jO8>l z8uOoa@|*y-J}0O!&}iIbq`5n+1?*7;N|45b(toOZMbk5Yn1z3{Jx~f^tW@D3Aw*yF zWz5Hh$CXE=`E9lz)XpdA%d2#bJ~lKJGdz}67#+vMYZV1ZdsE!&&=MW?ZicGMmr*4T z#(l8Gc=LJ)pj>B^IFAhP;wwd@4N^Ph_9t&AkzQHX{T(PgHek1oejxaQea=t$TdhJm z*bpOo!Bt_=xaK=hLez-}q4bos)yQbW1<3+iuo_T1+xLqM;B#u06 z3_`J1hd-l}+j4e#%MyrGEi4ko=rQ%bv|Ozm>1iq;vD|qc&Z-#>=G^lE><3e^cX~TY z2nuLQ8d_G#+mRe{yRe;ctar@rq^|;LBQh^rZudYPf1RE?z=S*8!qsh-mFHD6hD$b+ z(mDI9;WsZp+7=ezUK~qlzH6zQEs$TDK{53oybSduu9WM5^N?=Euc|QnE#^Y+pWTu!`M4?|H^FDwDnK-iQ7w4`kSyOKU)?m&vy8j2233E;p#eesFX)liU5 z;XqZ-+k}rU64JjN^5D0T@eZth;W1+BiAkQZPWRuDeGMTmC=lE~Q8IOuo@Vz_?9Y5w zxApA=T`s_LKGMMgTvbD$@=<|7Q0N9{tb5Zzqr#DO7QNXg?95VVcIt(t*BAxV0gRk< zbI(9Zi%FN`ad`dXCV7KY4VWP7AO#_8}n{dL7xPVdTP!HqOvFoB6}NRt4VL zX92waIA635z+LT)gAhdMu}#gId%GwcdraozwL>Du`g_8aBTaBs*L2F>oM;EWutscl z?PiwVTa9B++C#lEL0*=y-9q+`LziolzsK5mvU*Oryxg5d`yzfV>B`p zj8i+!>TFTMq-=US?HY^33LE%G%oNDYz8=^nn5UI1rdHu%!>XQ>-Zs)3KhO(PO91cF zSe$@ABbNXr%~yhfnL2LN1h!oZVod=Q{!&E~tqdmlbe8>GPi`9meYg{!g1b*ERq+Ie z%Lx}B|5BZ{hwAC+*gJBm1Fqe+SlLsP8{S<9mNelM9lMEJrSSFAmA#EwL<=r0|N9$Hv_i&ZWyiVAQBNzUqqEaA0vIJo3 zzl6vY)f1ik6f^>~pCS_<6*N_{_1YYXcm=1fz*S^bv!iE{EcpPx1dOL{elT+rIFYlU z9dEi*IuVL0Yd!o*6|trZ)&sAuzNV9JGv$V|*$!l@dG}@9eVqgk!GhBdw+5PJp*pSX zzM2hAOzzEbJS8KsBPWb$K{$VYt~65_u|Q-MK9umI+?{KW|H3c-e)(~R%4?{jUe(ym zw8R}nCrlYSfLKKuKO*n{sjTm7R9CS z#>9HJubIhQ*8Fv-L3O-&z|$m~G@jnKj#7t%4Iq~K)Nw*W#8HnK{()vRlV*UwTSFav zBi`gIY2vc_kqZ62EfrsWdvvCLvx9F5&?jm@aAUI8AzAw{&9Q1M*Ul{VW=Pyu@?Ps$ zvslA4V1h@AM3bg}t?F?KeV)F;Mr3|hR{N1B|NBpWdgxoHIKdJ?Q+)L(^gJT*&(tg{ z0--Xk_(%SuK<+Pl?b`!l;Ba_&@wLD0&Hd_CFXPiJYK%vI%%3Pan*IyFz{bjwnQXOa zgl|?$Za+ta4t?eglUf`0iA4Npy5^yXE!`)!JS=Woi1g*Qh0-V*{kvv zbI>pL_Yo;l^U>~?>%$qD5j0B^YymKMN1W=fMM?0W|M z@auBF$>^nadjv1MQXjq&&L;C|!PWN6?>%D5nBdelm9*@%>}i@Se&T4EO3!F2nCi8% zNR%~UfZl>c?oj;hE%H}yY)`h4?7elAN5+QA?cUW|ow(m*UeU<_zMR(-TVRz!YxDf% zuda^;nqBy8;7Omh8mnb-?Kd5N`S4i~*xIPpUrhdMSpsrJ496RhX3wh5AB}KC>7QSC z1SFn{*Jh3XzSUO9%PGgw+s0IX-O15h3#h3k4R$vK{=Suu5+LV>2?B5aOvzCvN1Pf0 z@=k@sy|}+`1>@{nZA7+5bLYw68Wdn#n}x8i6pZ(dG)o_zB2sq$51*CydA_rKoIO;&`S25|&zz2Abm3aUfoh?(Oq7W_y22@DXp?bDU8 z)rugeY0Gby0+?MeNxD?{cLqc^`J33tWJ>9@sb`a8rPjZ_X?9_8XKGadicUR6%bH*o zfT`S?HwNu?s6RPkYsTcsG{60^r1FVGuzi{>w{kr;?Q~LW!$Lz)6599v?@1YDh-_E& zgdu%+Ov#tz7Es^?f5Mf?RWeLMOw8RsZT@JQFCGN;430^QIEfYB4PpzJ(I`4 zFmXLsEUu3Cw3I)%o$7jMWs58pSJPo&x_+AGN=)4T*7I&O+7Fw$gdRbCl;5*(b4v8} zExAssN-ZD>NfNbvxZhl=qy0M6cE&YPuzE4Xt#j2gC)QxkM5>MN*V1Q{P-b#^&T#Z} zV86`Ggc_K}^Oe?IBatRT5f_`iTzl>q4}oVpCD6>#^C>VNRI$i*U4qS4fv{iy+X29% zOG*ovCsfQ|;cJ~rNrOydwvf?1s;<3aDkW&s$8(+z{nDO|1clgl=a^FtHzTPLO_8!u z^3at5%=M);Uk=qgGGU@(pSLrw@%3p5y4`obwvcWw#rC6C-?=hwMC$HD`p$$q(L}-+ zIHMX;JHL{sKvAP0Gyg`^EteUQ6Hn$gbz2$&vKeS~e2<9X6=}CzH+`@_ZUrx-#bsd5 z1LXa#>fl?FL3!rnoxzH4et7ZTyfkP|{ZaDyUPkG%Cu)3i2Oy}+*mWp2UW2cAujZ2H zTBRlkhIjIr`lNyo1N^vGWqQ-07C4b!*oPCa@-AV1Q_tB})5@^)+n=Z=CQ})22_CBb z(gT6Y7lL1|=CYI~bKYiw#6BeWhavSoKnG-Nr4K4c(3++24Fe;~N(Mym46Zre4ER=! zd#$j)q=$nKcGYvh{4n5|(I3;40|OcYX(LN5#)ru&iI4{G0X9!my!?T)gOpnBVXn+T zm`G1TZhFA}{Ikg;nOru_NL%)TGL9f;=Ia>Z&BeRLvHXO6V+}G@%i(HDD8dav)4u)9 z7YDgTg6*-|md)fgEP`=St!Z{?b8sbpT&gEpBb5KE1^zbZNWQlP`wX}1oMIz(FZN;gjblrW^9;9m+r*0#Er!|gZ>aMLE1Q!fWms8 zB~LB*y$s>{FWFS&I`crW%IFx>YD&BXTj+*_;MDGi43~BK%_ElZO4u47AJ7k z92i#7B%YjW>M>q>87Hz-l6gZVd&s~{9zN+wZX#@xc2#ni%>1N^#b#!Q>j>23BbsTh z>e9K_gO!AM=osX(esp_B&1@f@=FsX7&a^VxM}+3Vc1L*}%a%^rA_XMc!-XrdTr(SQwI{XGICR*@JMfAdjf`jx%!cVplkIjz!$n$ZwBx zsVdUvkN3$toX6^CTslP~aWqE)9d&Zwm#x&{LD?cFbx!p=rpVUd7J70WIm#gU837}Y zJdk3azOWQ7G1*hve{A-X3cC*A^=Jyg4(vi$ww@;(1@C}Lnk+%ntO@?uAZ*y^;&6OpLu1Tc#3JeS{V3B zCOq_+J!7#0d2<(%tH%+h4Mlr{j7q4sw1J!yX7P8{i-x-|9qY9b{8g1Z#m|~=cTrD> z{jEXnix|D!z!Q10$f|?-{Q|yhh^f1&5Adx_M4L^TP+FvnKJSTojO6cL!msxwZ`VcI zKQp~l4|@??wqm1@>M`MjpO=Dd56djQQAmlcGkb3{G5m4Z#2<4>07Q1jRB}{yJgJIn z4?9x#KL& zAurb+lN;_di?|sNGa;E#SO2xqVzz6l)k@)m8|KNY=`vxkij31fZx?J3y=r1)8kcf$Z^i&p~~~Qr-w})*7VS;Fl3w)V<0Jv7-Fa z6y^Kujo18BS)xN~rSS;vd4FNi9$|uJvq#41slN6prebjelYlWdS3P(#_#JadXnd1> zQjhA9LiAx;1i9BEL(FtJi);4PZTFY*K=Y=Bi##`8K{r;$!-vi5yuB(V>?5DtAOU)6 z^A=YK;kP!my_+Gi?8&kFbb_)U8ETWDWXP)_P&3LsFZ_I)0fFe%JhK)s(|Pv9@ZRU| z(4C~hN0*x{e)|Dwm%K8lCR)mSho87N>+oA|KY!x4+sCEjH&ds6qJ!GU{*rss@nT<8 zq3HX6MNBCE^O3y7l>v>avlA_x9Zr$6SImof(%!Q~-cJTJF~Y>PM-Tf)3)hhWUsSaC zHo6g=R1l7z69HxCFs0Xx-$EUtD49&7)@m05w>q;Ri!)|WY|^i2sIQG8QjVky2=#WY zvH2j5-DhsYZJF67uL-hOEV^qVxF)s<>Z|<~ouY*LIIvz>Dv@eI?A{LJwnTveBm1HW z5}#wl5ra=Lel`G>+9|rOQ!uRtj6M-LCm8KH>LC({Tze(PakRBK&iL(3kGkO|(dC9q z9NgRgo>ZufXE}Z3`(;d0n)zTV{VXSK;>u3Ow0JMc-UR!cB`HTL&dc#37O zR0$EvBh9Bk{iqO4v(n2PFLAW`f9>FE^8G9ccf?ht{hHceH`}rYJo5mU_aDDQ^&`jb zXxV?}4gzffH`&8zY+yM0h_b(I79gN2<|X6p0`IBoI!ZcFRh)leXSdP#+p75xd6*k5+5) z(q)N;&$C(z)lEvn{}uzKj2r47-30*9ulTQc$WI0zhS>JHDe#;A3@iml7`wSXN{dv2 z9scdEE(!$dWwquc+EvRNc1prxZ90Dw^O?U-k5po}E^aN;`GuLc7bWp~3jTuUQ8!d_ za7|!(yPw2v6K+NyF=xU$k&tOt|#nq}WgLbw~ zu8P81^N2>>ry2Rdb#p++tF^^ed;o)Ohng`yi!-5pJ~ z-$_JFHL{tf7h0vH^*{+njv!TqP+#IdBYFl$F=_4Sn_Akq@GHs65J`EhTf85lZ;psQ zZ50tebwo6fkU4in@+wWDlk*iLw=4^Z;#RhSj8y&ExH zkxJ8{&F{44OMYFZ6pGrgU8#Q0NHoXsGbP5%e-_57nq)bgIG`zVPOa?f z`(uG=^ua9GTf$O5Oa_278=lSRyY?o%JIDSAK@mHalo0kH!djlPIN)od9BO!&QMl z#f-5(6Vs=V12STXtLur-ew30Miq{!wiEIx$<96#jMyTUiOl!nPVPw`961_}ZX^5QRQ>U!qH4mv(AdK9yS@@LFop zyi&#jr5#T>+bPg2GqnHl*9R{Z(Ptk>g>8=NJ+zj&xG5Jn`IG$Cv4>P{@xUvlALs99 zcmgy|f~zi3pl;~eCx&CB@>T`i@z?sq0*yM0g^^-5`t*x}0Eg?YcLyorsN5b|%bc5x zU{ScEFk9vM)t=`h)uW5SHd-p)E4P55&k)jpMz_jgvkp8bYc&)TR|VC8&SU`o;UtaE z2CiNFT-nvKnS$_$uO*ycOj0ZcHp*&JdH$Jyr%0OjACtIN3*=Q7Qzwkh9;aZS%w$#m z|9=c$?&P@NS)*U_?Dp7V@Uz|$P*eLE%PcP!Y3lqI%ZxS3!ANWXy>>KTpFkthGJ@o8 z&SC7};A0v~5alX$vwqjwsYGfF`#AO(@KOXC+{8FX^oS?CNqtCp<5mLYr$t-e{ zoYskTMLIw&_X$D~T9s*rhPCsJfCiifx`XvR?onDiCI8B{4@LyHThb-40z0#1k&U|08qYnl}dba(s-X! zZfA7X7P;!FZjXWoQIGM2-zPcZnOseRxP`+bXo0w2uu}1x(3OYY_Q*^V@YK2+q}gyXl%8wN1cHy|#I&Q8V*z^QA^6tQLfF zfZLj6Y`2FDRtF3c#`mo%97erIXW=S=W_i_LeOs6b!)ZUscxGb`V-DiHKuY0#GpF?7b8Bc=3h3@ z$|&u0m@8(-wt__-#VqZjAqr$uw~ZX2a4pa2@0d=qtL4G3M&@#e_-IykN5fqkkk|S} z#qI&yTe*-Uek9QnX67~h_R>fqya9K7sTzGy(u96I;c%H4Xp@fJ%bl)fWGt(?5ApK~ z!UKB;&<+wp_Jg14#);!!%os0Euyx9;zx3BXP%^Uk)VzspW(r^p^Ctp{yPAd6biN1x zq^COm9Iu54;Vb#T?mgG<20$s>XU$!ftZe%-0+%vyetZCkug#6XUL&R(};87geIQA_7g6fy9ZfN4|-hXc|P89#;nQf|2QS8D9?|u36i>H6;s#DE` z1+oa+;p}~UI1~7U@(T5MZuK*+ook*<#aosfUl9>VCM(Z;(b~^`hf`Dc@n5_bQn^iC zyCDPSWEbUHLYy()FX&vNpkw9Gd^3?6ah8wYFa`s|7nRl>zH`$8ALpS}wJ$028PB;j z^7<5wUESybA)6kOyvtFRF1c8DIuBs#b^p~uUyRct@2X7ZL;vyg9!)y=EnOoB%suq% z&gXi#%*^_IgncPIN?Qt}W1H$etZhDS8*~Zlv3EhC8|%DI*I+CL0beVE`D-SaniuJ3 zFD71%gD>SKU&8LCyCJlom#|MKK2-uI0y+i6bpS-ljmxPjJEcx1_w^Ht-!L|2*uiVm zF@hca08k-C9K8~{v}}Kv3LuPN6+>~!hN*^$K}{iF@r|dm5R<;Ei2>`R*PG4LAO?YH z!Mc@A&S2kXdIq~ro*Www^dzbmXEX+)b>vg!$pkAzn(s>7KkzX~b@vaSb)j-=LfcC> z^mDdD5>Z}=?rvh{kRfiIa?2$ZHXQU*{HS(Tpk%1<@CIB;+!4B3)qDs4x?;)Ncwtxq zoMPgg6FV-%p(7tFSTi@U^#bhr<7}r;d==UWSuypBT9m_e*2{P9f$+Egqf4u1%)NRXT88SMt1o(^aqjgLi1>0rNVkR zBX=3NXdh|bqh46_^l;4#vffc^tN>qJvt)m`?Tpu6<6^&U z@df+2*~8gLh5j{f)f{P+x$@NwnAIe#6cpGXSe|3%EzjaUalyVgS|~+!Z>q_5PJ|0d zLaE%o`6?3xBYDsc1`sr47$t7^Ca_nN8~wsUEsat<4T+{I%u?i65JtJKi8yQ%wiNC( z?o%k>np*Eja>38Y${Vc%ri(`ER^4&|U*6@azE{+7g&)jkty^Ef%Et=|vu7j8kBz)O zy&YJxNr{a(XzyR5%S(ytg?75Gu2!L>Nvj+-c^vGUuYt6TYo+l*WMWG*wlgGI&xvQp z9DL`_@*cLhPP^H!g~lv4Vp~UU+f5qV3+a}C;7m@|=Imcu6v9*`nVAnpaw&jWVT2ZY z{S*Z=laoFHPb${N9Cu*@h0oO*x_}DxtsUbsX{}yAO$11(sQ?SA<`F3SF>^grcy8e!@p zLtFK27E^f>=fg4EcT0Iff^W2!&hqlQls4=e$@3tcf`l;C+2F>T+RDAMSfQo-tX-5dD!-gBpSp|qNtr&TXh*X*vz7`fvQCR}?LWHRCAC!;dmn>IWB8=gdZ z;+ykCv=wfcr*zO0RWfK#`jmII$Y1LiRuHPc6Gh_l=J-1L zya_Kqhij%x(-5k;-7U6|(v7LhhQX?D)oXzBAc-?mmuy`Sa}_!pKF{>t!3o8$H@^@< zSOhuS@O@2@*_HuMVSI>08}_(7<~^Y9Gv2@@n4qF0{cxqJ!>#Wwn&0Sj!$-VqD{J|} zl;Z@7wQ*z=^kBWp=#Y06xJegBnwJr@RM>awPi-*|Jpq~sXU0mR{qPtkE5I1M--_m< zN!i7zJHYf>C%<^dmHaBQ7VEDL?()j|I zzg{9;DWXIX6f;)+`HF4STP8s#ukmZ}bO7^%fE@ZOtqnZ~Tq&2^RYrthOE7CwrmR`O zn3C=K)U_H}r5c{sP(xFHEvN0nLQ6>0cpT=*3sy@VGJ*p!ZeJX0JfTEQa33MuYv{Yw zI9i9R7vRWqITZ@oWsq=E9``^xx=e{rwr*^EhomJdGf3Ri;y0?UGSyxYDTr-WU<}MO zKiC|-M2M(M$tqzt?N{#0TlH40lvbH2(p%bNC&XMa%#i4CFoxaAqGrNKI9&;G8W<;{ z$oTJ}2xx;GrUibhbORY-vBnIM7L(g*858Rm2^rwCI&4watf~eyd;W#yAy!3 zN>A^6&rvL8GFyDC>m2D^iN zi#SB)n<_{V<~>zWQJtmLcIxjAK(_)LZb4U%8x$f8WIQSj=L@?FVOFhQo+)L$LV2Pq zUr<7fd`cGYa4$E8(r}n<9MrD*b&&2Ou~to?ECp=$k#>X$hQP^NKh=m6cE6@qAelu< zsdL|JOEm%!(vOIDWF) zn~*j$-}ZUdKzgkN|F+Ut+pMgMJlEEgWNDx`sUk0u!yTcH58oS6<4*tB8*h310yKI* z{@b^-o}O@}LHV`X@Zlml1ut{g3I&R4zM?OFv<45@J&T|a!{$B`uHz0fDHSW82cLDw4h^AJPZy$1 zyF*qz&HBZhR$GN{%6mRdh7KPIK>D|=6HyKbExc)C|6`Y}cF1r#`J(~^937rqZ_4Iapzf5Um#rJQ2oWTZ^Inb%tWOvC{XX3rQsp&+;06>S?i^GBr>Z+fCX za6xUJJ=xzXBm{>(4De_OM!D2)`n!o-=si2WfF)w?CI^6L{o(_1{8da6BEC7A4A$N zRUqz4wyH|ftVEksqTQu>0ifSixt+xmHQbSQc;42?V|Lj*61V&cSW}Ew9jd4IYa;q( zzj*1darMX(C+g|m&w8!s?-0f(2@yYh*J?^XGd(JKUEw)VT4mOs`ZycJUTr?fq$Cwf z_2wT+q3@#YkKiG^eT8u7aG?xiZxqV17v^d>O9+iTtQ6n?+mN&9(CHpX_XXAz*wz3~ z>u?<6kq^9?F&Psl2cEgS^om-rgUM@l@3Q;CeOf|*o~OJ}GuZav%|@}czI?n*EC9I{ zlQqIA)kGX~OEg;hDf_(v9!qW$rIBierr@V|8qI#9vhTvRp=DN6xrTVcjuC_crf01Y z3tZ;Q3#CGNl0o7MS;7H@R(6Cs@+wZd>vdLZA#v^hVedVon%cIoVMSCB6%-WdC<@Z0 zOGgoqE+8eeph$0q9;(<-dPjQi1Vjj-qtb)`p$7;}I)o7EB?P|BDff8pz31HT9pnA= zj`N4H$=-YIxz?I(&GpQ=_MBw&LtiX5DNI#b6ap#~klFRU=L1G8Ug=e2K5e|>!}Rsq zaQ()RA+g9C&j}l8EV12tZQ%X@0zRpgMoh6n&11q%|L_`ZMu)KHk8~gP^p&|nM!#=g zCXsFJi-|Dp6j{gCAeR8yl|^#J z)iS(beG`kh1A*n?!LVB1y!Sh?9X?Vr-#djgy0S_?b*Qw6|Hx6$1UczSrMA60y8YBV zGLr+@#^QU&cV0+!0d=@V8NloWCG<2=E{KHIl24bsT-ONj4Ab@I)L>+jgDi$$L~1$0wnrmoLH?2`XcZKF>TzhEp!HYF|0n$4l&`+vORQnRT1+`%>*xgE&TdKkW7jeti+!T9eiaA3pD-%q=nt#+Y>%vBZb=FfbjmKjZ zQm?E|K10_g8qONVFdDZXciE-)26XoBUJK|EgzL*>Vt_sIv$<};=&CQA9c}I{U2^bj zPh+_O#0=snI_w)8=?FOf}gcKwRQ zN~Mw0x293T&YS7FyOX=dWBGTVcDZd_pj&&F9ryh#ejh4yOWQSFJ*~iYi9E2LK zP;Ss3iU0~N4s-ZewxnV$^Nne?0xjq!abc8GS{|-HB(qa(k!Yob-TLHA($=H>6+1w- zsh9vm??b#(=RysUeC29^=xRd^Ff6%}vD62Q^IY~pJWdn^djmcH6sj%Dht8YBo}!fb zAgf5MS%x4MFIKBDr5tq&v@y=*@4-iXX6D-$6WID_hfF2W?K3_Nbp;as-@$3;Ha&m1 z2khk;8}s^;@i%O0n|{A_)oDD?-Iz3NGdxp4ZET#D*8T>S_i{m=m`6^GQvN!BYA|N~ zzNWY>sTSL9M&9+e-NM3+U~imAKd`7xQhJ|`2U5o^GIgjm9hhR zv6oUCT4GlO%pUgQo@G0O4ORo68o&>DK@|sJ=k{B+6Ky=TomMXBJ~pK=KsiG_B(^I0 zU9jIdn7#8oHHOv7?iK)EGcY0JjICujqWJ{Mgk}sWlvsNyQUq@!`r>ZF9u*#bRNbN|a<=Bnsc_GnEz37Mam2Uuk# zi+WEVJ7!2e$+>B}WY?Ap(OR@JxPjO`gEgjZlW>?z23YfQ6oXd>4iIO4M`wAUu4v3diYw+EQFuYP$aD7B;dQEul;R0_X+D(f1f(jD7hWAKk|1t4EgHhK)+9 z#9_n(L`kFU((Gmtm?cdQ1f8n@azcf}t5q)1g!!VN3q+x_Z?jhE#GHJ95T7%}_r;TW zYI9HzxKFEkQZErYMzx2TJdi+_&&)@t6pWS~CfXfFb9e(eo$GehrG>)$O;{aZJ>cM9 z%z_ve8niwsRXJKRdby?YAWiydl{ca3qL`*M(`gpKj-f!xq1$Bsw4VgXA$R;NLcC|Odb zUy=8FhP#rDyJk-cOJr8DWH1!&3>;oVcT(Ppn87*(70)tN7 z+dH2urG56ukz0eR5s2&whr@r(X|=-ppg+gEj|!ytwStzqHuY9X_*N%Et)8_gWK=zL zn}E{JN;+i`3Klz-_^nbVq|#KJ-co{vJ*r)2HN(1TQ{4~x`1W2JNICKIDJmq|byu$! z`I9ayq>CZ#KQyb;LbSyBel)xM==h}L6?(fNn1=AKN>z4sHOOkQW#fql#x35tVjjH} z6l~h-t6EW5yO^n}3MFQ9Xo+()aYW!O{kOiST;$$C;4pxO>9zemaLT~2)B_5{^loVbAzvWYl1CX- z>xxlb_S%j`c10uO} zC-l~_oX{lsZjU&RR~;BHiTLdpIl(O&mY@jfZLaRD`0hFOWiQAV4zFY`ovq0&zv{C| zk!)%00fPV_e1Rb%D|q^$12$fhcBaL}JuWa_o}Y7ajk z%@{-DFMw|f-?c%Ghyh0l&sF+_?!^_{1=%w%3>i6bpB0lPjJc>AIn~NiC z9vu*Cunx(Av>fmDHYh2jdHnfa^6hQF(I%5L&=8AO0Zj4NW{0atPmxx8qv{lvab`Dv$!%@w9h2 zub_%7r7ak5n439hqO+peP`9zFu23`~)h)Iyc_&=kINJs&NO7^FDRV_}k3YWOnK{X! z!HqeuYUVa2Urlg(nmNn%VZN5`4pYm?Pd1^Ku(NCChYa==HbBSMk{8^7g?!=;lR&BL z!P>xq$;!?RT_hOp+ZoK?Fi@9#MA#D;nJ)rk5S($BuylLXOSwSBfCH>_fFfu4^=%*n zUQ|Jx%U=g_Ai1sIXp?vs^7KsTy1|l|KF-5;Rx`Z2u@{Kg6hfOGC+TlIWT}5oY~Pk# zOMT;~(F?@1uoX+Y{JRA(Wc$uxaA^+Ea8tgdH@OHB?oNN#WPkdovN7^Ct68a&(8R zCFX}`5_d%AoPS+g=TpZJV0b_Llrb|KOXO&3VDrb@3%Eh?>DtP+olhk{fHD**=Xt})XiL2v8jFxc3qJ*O)xmhfubSh68M4i&exb2qNltIbQ% zHVJi2Z^?jV@=5?^p7`|%uw9Ab9#U9_1{ikO*C+SC)$=c6X@kJWIGXJkRgbsy)Oo`b zBJnB~Fq{a&7L8<-2PE?$JO*scScIxoHp zg23;tN240z;!K**CNLsd zgsmT~D#C>*I4i;3Se|kp9|Q!_%UNpfx^(*z05=It^|{4cy%@8Qub1e=7C$n~|Dfo= z)+C`VMWJ_8bd@CdY-8FkK{h+{Q_@8#vq?RaPbeQ_TR4lpYxD%1?{yJQ@@X0^>PLv4 zCd6a*0va40$76V)#Kl#!C$cSx%K>6gmEksaG#hk6madKhgA>l@v7i7&p7LI5BBT{&Yp1e&SYBOX;%!SaPZ!!_N-MWs-U12&Ba1KOy0EV){lTxpmPuEf*=^+wh>!uJ%VC0j#>4z%&-9&?vVPdGRu zbwgPda|YG}X=XMpr$pn>?t22oaWt}vm9!sg>CYDe6}W-;5D5|1IrItq&Wg0T9HA}I zP(68A^#R^BWCXv#U@XPq@nfpww4?dk!EL6&1Fq8!NHx7a}DQAErwB+eHC*$_s4a44Lq5w{N~Hq@hHhq4mYz1xVk*ej@^H~?q_ zxK#|ulFDQiXc0|SC}3deo~R^zSU(Z zX$;_WLy#>&vT&PWS)*Xr7jd9|IQ;><@EK>UAU0`N3b!m$&_(Ka-@`ahZ|B-!a8Pka z47zg9j^OK^hA}b?0TQwqClS9*6UMRpL*RfX5EXPJ*b%F;U?ZjpHcpAQ7CH6!!Y;(z zVPU-mo#OFk!EJpbjU3n`7&FFbYeoec{GDkKYNTOQkX-4}z|gNNkt#9iP$1#ZP^uR< z%FM<^T&*!GaUhmA4u(qtMK>H{TTAukv!2LfS}zRFW3;4ewVBW3LC5L6+be}1Bmp>| zc90e2xc3gOMTp%=T{D~!Bqi?=Sus%q{)R&0xYJ5~x43PByTsHtI;B0p7GIoy$>Ed> zKWD$+qTZL;BH)o=A%n?63b>Gv7E;*5TP$smU1C7OQpNqX5CiFZy6E*^llm6LPj1bm zmWx=Cq+EI=yBZP)Aw&bIf&QcP>-S&CA;>y`8apaj(t-(Vig_{z(_@Qa?8B&mDiPP2BmcIPQL>|18kJcwAbn^ zelL&k6Vy^J3rIH<-M?Dt_Z!wT;0)EZ$5KvzWQ+cRlI&R|DS0XK)3d)rCI1YQ9C!nC z#>AdI;pR`@`ST+HhBLkQ^cfHL(@7=L(jw#D3btN*YccHViz~CO9CGPb1MbQ9z1WLa zIi)wob76R@2(G3DNmfM>oN92bZG9VTlMewfS>fGOeln^LUI9Rc8c+u$Nix*HYN=vS zqez_?62!^xyMO44MQY|PDAlL1d$n4{^Qfz(M}3~kq?msb*cCaH?7vnqIE~b$hvk0% z4Vicgfaa+iEh_GGe~)S=wY~hv((b9?!9V+fVC zLBMqDyW4haV(C?&r&FeFdBW(gDTd={Q>YlzQMqd0Hx5(WfU6?AT>1tH#QZ@Fd^b4h z)tT5iE+|5?8G!!aJoKHQOlG6fA|Py^vct{cDr7VyZqKIT!ltgu40)=s3$$ zrUeB9_{eXUn@kG{1enq;h6yqxq;9qrEsghwDO0C<7oyQ$NXXUf{`in3W+6h@dR5ac z=w1SjCO(qfRT;n?UQT;YzFG5mAZ8@7R{d%fZVP7A6J^m*2Sn<)91yI$umX^j#q zNtM>2L=vf^B)6px$v7L;$+6r1De4{eRxKf#K)Emgg$WU+C8@u42W}y{&hZ>$WYq3V zR&n*+3CEbmZgz{x@~5pFJ<9Ry>9>2@abxzCFD%3H%z zDgrFN49A8FEu=`s`F{a^!Z>S8LMe=Z3~67sUw=?efa!L4l6olu9iY>9xz(dXlEPaa z8NTQ)!e@UhL!ojpjkg2gz=!oXXD%($0kdyq+!ZUQNj{)$X-6?}b-YsLS5dR88KU|9 zAFGZht{ARMtUU;l6wbgDI)oFtqmNv;L=L!N)#_j@V5gYw1mIRLW?}RI5N^YjMK$r2 z&MMzpy*Q0@$Y}|ki;_Z)GeICB5?}5fE%9PrPr~|)Z|&7MjTdsZ%MZkT{AL-Nf!t$r z0HWFiFzsx!Q* znf~OrFEzac36S^#(0}n_PR}Gj#AXIR{@NUeMlxy0Z?7fag*vk=3{8_${o2Me;DYX$ z03btFs9FTbvjaK=y!~47g&YfoYc8X^<(P~qZ!kyC$KOWb$(Q15$0X!44qdIo&BPvm z&@@=zc*9J6RNy#KFMkpG4`e?$u;s<@RUJd64d-S#hlE0BSr2;_!4 zZ1UO@|86X(@+p8kfSO@7LFJ#`{SPAlLs|dF6Tgu1|62i*Ix+ZC82w&&=D&Ai`93hR ze4^26zn22|ul)c_15i++;SG%CzmxRa0J>cVvhHblgZ zvfLl7{hzW~4bPA6*8xjQ0`h&s?Wc0ROtaW8sj`syt%ibnnqpH5*N}SPmA!QepOrJbbX=t&JTxT zwl$jvKyg;XPVpC_lCx@7~7n90#!@{JdP)kj{ zGlmy70)Vg_?T6jf#mynzooooIae_;T!q)>MZ1y8vugM39PUC@;@rKDW&T{EOKseH> zB1ARapR7)%Vd-e3mh#8#!jga)j{2Tc5Bd8PNbg1Paoy&6din|tCa)prg7=rO`rzR* zGx?SYt;D_uS|?B5i(a*u{RG5T}_P3`K|sCHQp6H@L@P4J$Z+k$?2 z?h&c_WEGBNy zwKhC>=Vow2t5YEl3O>PZQdF%uRfj11B-L1%h!zwUICvh+Db>3W;JeSpMz}~Uu1qEJ7BOP4 zQwaooeHvMcz(toath4Ez6%9E-a!B#KYu~9Q3ZPT2sst2;=zU&MAU{CX`7t$aE2fGU z)Q*iGiqh)x_(m>b5?yLuoQtP`CgSk=w!f7OZ(prK5z&5`%nk0T~F z<@N*Uc>$3YHY%Ec1NDSYI4oFUl8#D_b^mmgW!BL(EqT&p;3`Grno_zC*+DJho7V?c z&CQgPCrLBGFYHA3!!LX4D%14tozM-w3T z;q*30b1ZDPZR_N#JNf}#*I&q;0G>K&R(6|2iDcuSm*7o!otIm_LQu&fVt2b4de3jnNU;mLNSGI+F{Qi257VNUl?zn?|M3fg_qlDQp*X zC{{-1i6QbTVv%+2DkMUzFXT4Ko>}2y1+p3<8vTsuq+>JL$ylefSnDlL*?8jQ3i>h< z+AKZxOk+!`Iav4 zu8Od&4tr{t9qVVSnPkN${_JM&GiPOL88#~NfTvjUS7{AKtdl->+w2=KWq}Hr^!C&z zNe?c)3yyxRQlPytn{~5Zoy~v94B+B-*?`#G+!_%j2>{4BF1V zlc_n|J)B^xDT6o;N!}CdpNm0)jn+Np@A>K7oA2Z)# zaG{frL2-s%w`9j{YqJfzI0=&W<%vqn^|^`2X(hwQ9!yguih2b zIpF>R4KE#*pmg6f}Y+7kO2}f=!V?+jT zxl9IFz{zJ@yrZ&xE%55M?54NRa6@XxxSF6<1^VC?irCRfs}NufMu*sdb^>U!h7^sH_)q zQKLC};L6pv{?1V*>}XAh`uuX|o7(8P^+vmRl`+$ih-MfCGs|DjS&vMYk^;?xvVMCr`~n#y7SO=?`-I(49H&k zz2p-Yi#8wcXJ)WdzEj;}30z`Co&MCh^%BjQi3Xk~i$r3Ee5?=M)2%Y(U-Qi|Ls8WN zeKOw}E?>AsnwWg6rL+_+dMj^^PI!Da;Nsh|*vj@M32Via1l#Es*%ueAx=Wdo-5Ek4CRl*!sesfD#y7}R5t_c@ZP1%)$4^KlP1%m3EUl)(@X*9xF0<> zc>H81lu17Q{<-Gr?R((sJCP~(({GSJ@6yZ8YHw(M2`B>|MvLvTm*mYGc*tqV%oPm< z+Nng?qS6Oqku}Me8cXPUWo8Q9ismEIQQhu%0f)->xz?f!x4u>Sl52~UJ-n#Q6;tv0 zX*i~;_zPbz?I{wn$L9km+cc-Pp>V2uLUI`DWL1o0IJCp9AjR zu07F?`GhHB|0@;pFWo{V3{2U*tZdf5nbuz!IDG}+9He7g;{TXKU{HEUA5NSJje7al zobsDY1bm{1sN=0=vb*v3TnpU2N6iXl5LP*N|8JGRal0LSQ{Z*c>jf)DX6k^g2$MU3 ze)9C`{pXd+oMfzzECb|9nwmY24jJRC1&aaqMdma~^~F=5p@p}guan|lrr zW8>uJK_{kBLv0BXvR#@U?4wd8@GHLlDv$#>Sb*gu>3yDbbjBpwJ~o63{dW42+~;^X zbF9Q{;#N+x4{4?n;OlvXoff(GndPK^DTr6~h?zswep$1O=hX?4>p*iolSkpzmhzsg zx9LyH0%nc)`l$eE=7Y~@5v&k2DJuE)8zzmQsPPPXvgVQ(rh#74`}D2}CH2+czs6H< zTq1)5zxjd7-4fr_NW_E#y(g_PL|;c2Q{J>>qf!8zG%eRV`R7Rd$acNEY_;}x?iQG9 z%Bomg0tPY%c=hnmzf**vgYDi3*)GRt5o{W@>UAn!l7!#y1hHYS13pgFrxdT^Y~X2E1q_2{0}<%srIuULMwrO04+dLCq5gFvZnhn>mu5 zPrR^xGW{+o3C&dE1*(viOYc6ukVO}xW*tIpV{h^|%6&R3twJL9^=wR6TkZ>X$F2ST zUuVX*%hb!)|8iBs#}DChWTe87A~ZN1y>bL!Rv-~0ZF_a&(vMr|;M>@(w*N+yX}Mtu zQ-5oUhcvmde+KAc0PDF$+72(`>HQ-Cv^^CiiNbZN7eFsg81Mwi(HswI>)br;RYD=Y z;pP323K67mtd_?YQsoav^)yZfT-sGAbYZ8`iGWXJH*Y31_wyU-Cy-nkRK)}oBez{P+llC!{sL%RhW;IbU; z4YF1$Uutx z#n}y&&cf=`5&FohS4p z8JB?h3gynZLB$2o@~B;#@8_Qa%z#-Jdpi1v>3WAkdWGDb5~Grlz7n;2z{0_}JR>T{ znDjmy)uIT)qjgbX-Q36jQ;D58ndUoj|MkDr-(RX7Dlb4UW{6o*{7-H7LKApW=DorH z)Js%k^?+9HVJJWSKgs-@ccR@W?E%kUlJ~D0uT5XfIxL2cko-?gKc(|x7N&XQ>Tjy| zZ*0hY{)lVe*ageCzpW-qwIlf>rl+Un^ejOCPId=h1-=3*EXYEr6DQqp8I5Q1$ zk^q)UfBFy^;)U!Qpm$)~kRtV4z&h#Ayap&s`aIjZWe3*Ot=uN5KM!fZL$ci|fPmGubAGO+ml z(<3k5>xh_ciBh4w`kyfW`Ig*GQepfuZ|YV;-35yrigV{I<~v6|*`Z4wIkMljK!Jb6 z7lUd=Z(As+UjP2Xe=ioDz0oV(iLII;5bCkmAy_br z6zEd>eN?s*uz$aI10eHdR2|WxyR@%Xb5gt1D$RQWE2Ewwq24Wy_km8gTixX5Mi$Gi zd{wP4nQ@%2LQINa{q_dYeC2tXX*RjC8!OiFO96i0Iy+-@&Ls0KfS*Isixdafi}YZk z_v#F>Q!6ZmL6%ndIN+F3Wvm`7+yBTftm|NR=Goq)F8U$1DJ;T|BlSkO%=YWq`FV+X zu+P$*pxIQyCky1&5rk7(0Z^=rAJXYRH&`}5>_^-}gxMU1EQ)R!k5|}4Bd2R{@<|9t z9Z)geH-7I=tFV9|?sVl=?m#d%lZ3kfKNH$!&S7`9AEh4Rwx96o*}*Plz22nG`Bj@5 z^jE1)*D$OU&*iOXgwy1cX)S^eS=-L3)ak`rs&O3-h;Y|2R_W89{ z1;*7;jP3>uN|CYL`tBjM3`?W%;4$Zo3(nd{)C%~X0l^Nzm9gsn;-Zsb8y`8W!V^lq z41GB-VmlBK$Xo}e7qxzVr{#gqxRp|PBssNAB;|y^lGn~EXZK-7$=Jsy@?DT2oOKkj z@H;v|eOWw98RXlQycO)THbVM7JUm_!U!{9U^msE+Vq&CMYRa}hCm+wJ)V`3WaR+Pj zxp*OX0>t?3qa#kDd_o4hYPN7)KtNeh`gv*R-j*1-@bwkri!;Bo&oLuCY9JL(#d&{K z&eSZfv>oYtd{|W45IIurA6ebl9hIG(?OZOuePMu7cJl?J|3R547RPyJM|j-s3A3d{ zn;Y}h_xtV9d1{fssa(2_*B~ilKK*3m3p=N}A)B(uxP&SLln#?{+|ce}ExsY1Gn!rH z)tRliF_*K-IVwwi6si}sY*glo~2O`7(8O=-UN_V#t0 z2etbBwPtEUJ6#?njV7OaeYeDhD|Cmr=1g!vJWLvbb*IO87Vi?kePGULM#bcs-&5FA$hnX zi&}x{j0TeLCTR-DC%)^0@!O0p6S+gUB%p$0nt$r`+MSh1Q|TJXZYJ;Q(-c=b*utfr zESI#En76Ub^{Mg+PTX{IxHa)ph$(-U#Q#756Ff8X_Dy=>u7y&(1>42Abv-bxka{`CYPA7qZkk=L=Tr zy|xDwi1cGEC5h(;zUVOe?pef3OiP5yZrK3!+Iy}q7_O~99%=BcJ9)htoOj}E*ruiPe;W64St#F#u;H&vT68&zlN)IbC z6%(z-1k~lYOYMObrR6^~n(*9kD2Ij?P+y*&3qta{5Qv{!Xepx+FugB=f`YR(cBPeJ zxW{|n1Ka0wm##0Q*hRqr^8qLE823#R*W4n+7&%q<23c^ozhiLxw7sMX#SmI>MgY<9KMXn*V?a8)6T)%ak_1$1iwn25O8hEq*Hg`I-NV5l0@?#k6GBb~&x5)M z_B0n>2nyQ9s7(0nkI*{f+{8X)0;0+7wXpG3A$YD#i6sg+-$a2Kx(N|NIbQrWk&D;? zrrY5qeZ9OcUXSVMi<0v~qS4&)cl{tyqSWR=Fk_M3i9C5NNMx*;RMS8?s9b(-!dtOp zwp~X7?=>j-99L^9TfR(a8w0C-b)Q1VT|tn|jgKk2=DmK6igvzH-E{dRq~DxKW`z|CXfff#T0z8Y?^LXoZc# zwvKrnVb#A!r6ZMHmZ+VCW{`lNP=_@tR4NIkI z_wJP?LA!b3@Fo5+S&t*V}1L|s|gzi%BEtX_}(lLENV?+oF?ifW_tO7A zbkU*JRWxb&wtSJtw(Um=hYrg1rk%+T(8QP>5$m2}`S7Deh@oQ&+bIoc`7=iMrr*$- z*j`@lwpgU@b81*COvr9O!Z#B8_AlT10*%z3allkY=B4^{8g6q}qa=1*dpN36&iZme zw>tcv^^900wg-%nPW^|&a@uyN^Uhj0J2{wv@b)~t)Psw%nORWVL3FBkTLJ~`0bk>x zVAEKBAukOyDR0gz80ue^nmqV@xu`TMoFhbROR{-cTao%bgP5b>+IQeca-KBb^~k#2 zuP#xI{NUDx?I`8CC9lLzz=ewrW8R$Nb>~%O^zCTpNHS0}f6OF&bpyyol}zV-Zqr$~ zHU{W57e$1NRZdA{0kfdG-4y6~p^Cjy{s(g22&$$6MlWb_La6oGv`^tO8>Utv{ADR1W5u8W6Ghredb;KUYM{bMbMe&bIO~*+G z-2D}c^h@IuhIHyBl6y)^l`q!VwT|#iZO#nK)T=iNnA9>k@(so}hSt+-{#S7}I352Ud zs9Pp+d?tm_UFk^MmpX*73$8si=mH%jL&WGLS|@N@=|k>oTy5``@{ocalUtAZKnYQ+ zFAH5ZUoPrh>_O_ykSJ<25T|ype!-UG@lL| z=le$|1uZ&+3moB=G(lggQ&*p&KQ;HZF?oc%Z>f=N={;PH7o{j}g0wN4Pmi0!JeUp* zt9r~CVP$3Ysm%RN7iIfyF5$M+P7Z|&q3)^|J}xoN1vKsAvs+#aM&p;3(lt-pp_O5n z6@068xSI@<8ly>G_w`(3^)c+uMG0%hl&Gku(~EGs9S)DK5W&NTz;-^^XASO(?`^v@ zW2d#ZM_{~lSxNHtwR?Z8$XT;V?m38p2xWumXsGAXoPL*1q6D!|l|K%s$1yG}Fk7eA zzSa@Tm0+fHY93$A!3&?%cgVag!#A#9LmS}KJ z({(-8foup{|3V?VA)JNHcSod3HO#i>;QOwJdPM1${SUOJF+kP3)@7&savKs5(se@C zVN@Ca7M^sf1l*WvL!wLw?X~=5>bEDNbAh;0XQ~{p2irdTrsm^z6Lm*M>R@*4#l&L& zj^%j$K-^IL+0h+XsRP2!qY7l&NZNboTH}FdFRkCt1d{dV*y)P5Q{R65dPB3Ev41P~ zMKFK;STdUz;<-9f51-60UJPF~mRb2I8b{y~QYAe6Q#2=FnA+2BOp;xLNz^`n$t%|b zpPGB5>p-XMbVprdbn+(d?FEJl-RpBmribqK6)TN4qry0#{ilxCRwrOZpziUyV1D}f zcXq0+?!2(L6vImUC(|%pJr@K$?Q(wsVp2d`=5X;8bb2jN0S&fs;}q(yvC&Pk8Jf*= z5fgAfT|YQ(+KQ=lIls(ztjkiU(jM7H)29*2!J)-fCgJThTUZ5iRY{wINeXM7udCD6 z;|5KN7rMMq(i_q}}&qbCLF0Ye<415X_i8ctYFW z;7gdTI#xr%AF7;p;p`D2)O82ey>->lQ9bI)QB7nI1)s30o$Ng?512{r#CyqSi*MFH z=Lgou%tMFt^~_)%ijC`|2K~ueT_MCS8r>qj!Lq2;$)&st!fE^;w^b1Z;PZ>))$|cd zW~j6ctW)m9K54NSt&^r;5($hY6!t>*ERNcJqHfQ!jz_kFlGUM5`BYoD%>MAEl212u z0V#x%c3NJ9b#mzzeq%yR+Fk`1O5@Y&Rs2A8l3Id9msDACmwG&71)UJnX8S}hQ1eBQ zKwM+#c*o!bsS|Y^o&5kdcznCGe*5iA`Nq5LJfHq9M7w#otPQ&duI6aTX2If`(jOvt zA|QzWxhJMF*DdcXi`Qem+5@iY&7(uBX`%5AnYPVJL#JgMD&P=LIw4KM2l(00&_rQJ zd&dWZZl&~oDN=g_<+&CdP8)SC?&9L&&Ow9l&d>cQQC@1Br+R^gB6c7mu0#mvbk&+= zucagIwOJ^=$O>0=op(_!@+Gs(Zji~VD@ue~Fh^<+YGAVxqtqe2Bg3jGO)TE?Ie@e! zcz8f6y61yR3g{ z?ls&sVRI70cy5+)WE+J~a=BEGfam5br z3Iw@6Nf#FH+3QLPx0L)2AfIeH4D#$)fV1Ge<43HZ=`ZSrf@y0Te|KSm}=AE@XnYluB>PF%aHj|gl#_k@iA+g*R`A9X6C-xE= zZ09c1ZA;f7-aRm^iyr*2vs%0QLqe0{2MxxCx_bY0eruh_q)TJn{wS8v1`|v&)C`i@ znl&G~@J+W<{j(SKO2kHYq{|sfXK%T>!ExLX2F^un}c>ATZ!t1`S6Ocl$HrMbi$#-OOuNchF!zE(Z*=rBiDi#;tmF zv`AeQykD{EQ$)dqse8tlQqG}NQtMt-ed$T|p#N&|h)eUTWkq+I49!*Z8bj*SLkYx|?1~MeOuA4h5VA(HGU(DNJOB8kz2BVzV^I&j@gJYi=#ru~Y$3Fuu5Mq;+&};@IH59mvw8zc@;ic%=7f-*G*UZ+`$j zaiO?v3_TSdE@}gmENyUt8~ctLCe;ivkT84w@av~ZD8=0Yc6R^pkZy2%d_JORGcw>p zdpn@Dd^9t%HC|a+Imcba{7fj5)CGFVOu;~(pg;0!(CEjAJv>A zYVh=BX-&Mr7*5Hf%B)*6|6bwcjh_Nca-T2%xQcqq z3uVA5Jsm6@>?_|n%zG))p6{WHB^*aqHH#FziCJ*JH*el(KYl!$pIXa*k5P#2Zsy5+ z-vc;3V!}DAtrpE@pe`EvM|A!e>^Je!#Du437N*l1vVUEU5qDOb?kXogq+&Hulvc*+ z@X#?~e+$bUE+bWV-n*0Q4_ipqocaRc88-{--}?wG3=?F0a}R2tz7e+RYZk74oENrG zTa}_`LG$xi18~mHf@D zl@dYpDfv&c2((NUuq$`f@;`RI{+Q|CuL63=BIb|G@>nT+PXueXrd5^w|s7fr{O1ekNWIJzEeLrFYR*O6_-;E@U_$bRM5A;l*Gc1?S4;5y&N?k}=I#dvahWa_T=x!*d{ocehZBi7-q z>K7X~i2c?Q=;3kFAjRR98*OI<`OyL2Dx*R|hhu6ZABD zFa8G&R6p21TCK-NJ*xF9Xoi(U4}UCp+_=m)BIzA8+kG@>B=GCr_wB3`YxZ>C4KDmP zV^2+|l42=x9CK`QE+fwMXRD}J!;$aT`)mB4tijx+fFEM^MYp~be6w_;A2c)cvh~s7r+0_ z@RV_X6bI_^j5gdW`Ty8^@1UmEwr^A-2#5-Th;*cP1f*9*dIzN!l_p(!Z=wRyyGWDX zLFpY-q!*=kkQO0?Kp;S<--_?^>}}$HzcXj%{B>rJGYrA3b>Hi{ull>nvI~fie_7mP zJzOkjjP&WUjPARG%0c5LT^L}-RUT%yQdi4RwoV+@Hj?D0r3I6`*bRn!LHaHpTx_FF z8^ZOM+CKh-^kwB~qrE&{7W>jWvP|Bt<=iJ_I6ru0Fnw$CE4(tm{Z)fxu#ew#c{4+x z^a{?QU;lZ|pw;aF*o)(XC`dT)4-$Bx&GhipdC@L312&=yo#eh+G8*%Mme7@2v!u0u z`orgs1SkH{&;?i&Nzird`*iKgdH3#*nT{S`e)HlX#n%L@pfbZcC3kmsuX&senqZKu ztSo$YNUCcwqpEN9(PJchHJj%Wc5iq)kV(k<@Zm%A!(?yzK&kEn-VlC+t-cgA%0NABa;_kyz5P@gF-E0udlhvJzjn_nJUSh48+Hu!a zWUXo5Yt2qK!&e777}xPKt_FPQ>@RRg+wQIm}Wa@M@WCt}A-^%Z`)J zk24`&Be49FFP)Ws%M`IMKo#l>Ydk4D_=r^DVyf~Z5x}QmG@4mxw8*(DHtNmS&_PrV zO`a@WHp{Jp72*L{9g!2Tzq8D5@iCs`r+K&5+mh`TjuDFDkhzduT-t-SseSd;lgR-8 zyNT~A{WbG%=n)Ee`W)?7*i+`lB3_nDbiAS6DfR2{lBe?piF;8>+SdM6=JQZ5=;gE< zQv>399Aa>n=HMf%m@-_KGd3Y9#K-70Io?a{$734;mG(3H!P6^12BPxWPFyg14t>SR z#-x+;>Ne$oau?7x^0!J73=&;`wEDb6aV44TWaXnx6a1i8DkU|~e!!b1`N<{Fs%GHZ z@mwhaosdhP3ruEue7bL0XxgC@I_jXy=lGmnMGRs_eUj_ zdEA~Q-`y$Ev{EKpr40SHVLY?Cv)~^idDTz}EQ)Io$6iB6Lc|&Z>ZqP4G{{}jf2X?d zZ}c|&FZXS+K-xL{3!v&s7=2FqDwo4%7`X*hiHpZ$K9^EgI-c4n+6PoWlynQt%=>r? z)QYn|n8GZg-5R$vOT{*w$`E#yFtNJ4>s@k14UlOeNfB}kvYY(y-P=CSw!GEoO?dcf zsv}EpzkZvNjm?`YlE+u9XKHKM*j>PCUf?-Gi?L#X;Z{E}k>mcLN)MQcmw!J;TzotO z1I%Azkd|-qV{-+xYxrcMv(?_cPP^dR$Lg6)j=%M{2=TLcOdb>ycv4ut>S*_b z>Co1Vakt)ED$(JQ2`haO=!2y?yLEO#%{Ke->qqHUw;bsooi%G!%uX#=sl{sRKogm{ z7JX~O1?uWmKU0_I<6$gnNy^+5?8-^p@!{MpO3c2%3*PL9^|tDFv5GWv8q>Twi{M|A z7kV4rAgi6%zpUQk(91aObL86|jn6eX6`dC(kKZk?-^_kH>*)S>;ne#R{JUj3+HweC z)te56JOrg@_CQ4a9TWIU4ot=vkwR9MWb(>0AtE#{* zXMWsvw&tVX}vOIYwfmT_o> z(jXUB$&|gl--++6xB!($+#*E*rcVvJuCq!I_W*%`{rd8!8-MxeLBTf^tVc}tz6MGc zV&CDqRP9}t*bWzB-(G6;+8|1+fv~d2G zrR|(|K}Dq38@^wtCNDbhdoU98ljNChNzl)5tRM~ilV*no<)!iYC}tM~YD0!T$m6XR zV+z4S$E7J<6CdTymYuj9fx^Vp!TOv zUng9vqq^2|{Xn6!YR}8?$ny@)UupzUO4&y5+c)H=M&1vw;)<5my;C3m@glrDL9#2; z#so;u#?(Lr->wVIJ&$Zgj{7*n1FKedSmc#;bdpjA31J}jC7onvnuFGxE`OO{6n#;Z zNT;km6xHMw0YHj!<8fD&{WR4xXJjbDbZ@q-a{o!&nSr^3fgo)u?Q|Oa2tjFauqCn2 zI6sFc-1T8_+2Q8ZBgTy8tDsWW*|KMW7k9@J!Q;)7ojpRwcLw^7bLY;#4a?M9FE5$BB z&jr8TGfW)5-Dh*TK@M?htYh6)?*@UwrVD}+SH_0+V^SJMs_F8|6nGyL0F63wV5cmd z|9Ee|{HR4)I_@!-n3TzF4IW#Xw|PMuZ5%pE4h|XkMm35HKw$_sPz9o;r^i}1?;j16 z6?ybbHR%qLJBOXLtk7E9BgkAIG<_+1FFbQ2At{L+z!NJ!c{}S)Jb6y~Ek6$W$!j(P zRS5fg{eUgVI!uwqqd{@(9Szv)U2H}Yv$3d00-34zTt@{(W>n2lJ9H|iL_bfr!U0}9 zRtm4RpRv$&uWdf;h3J^p%`r(zs)brh6ulXPs;?{oy;T{}1TMeXDQP+-oZ)C%R($f1 zgyM9y-LZwTmSKIX40h9i-QYBjvpmb;FNE`4lx6-7>J)brju28ZHeYXj8t+NvFn^jSQ+HP9st>*S)rbn#`d9Iz61Up8)Xx-BdeT9CXxe7H<-Ny2T|w zY(Jo6fE6-Q|8BGfjGRsZWY=vYx1vA3w$bkOm}{kAYO{x9IU^&pg7a`tQD!%?GgD$RlHaeD1{&|~Dnit=1vOY4Pbc3|CP>V>sHi|pF0SR} z|92LEsMZc=kKsXAaMAB<2^`!#B2W9xnfx1m@FYy6BnVDVRD@E*ULrDuENJ|!F^K() zxgm}EPVwLF#4pKuj7?8I)ai2Nw`cp?nL_`Ko<|xk2=5A{K<6Zk{r&oQAD$HdmrI6z zm){l&1p(2P=5wM#jH=|n9G+i0{PjZ`p5*fH4gY}x|I!eR&;RC_f7#}DKjb&5`z4P5 zvdzD2gGPb>&lPOUEnDmWE(3PRxMPC5y`f^xYlJfNY#i{C=1;zA6=^lPZjG7%0i+Vw z7i=`^2q?MFTtMjT;8Y8=k^N>}UYgS7XEdL>FFo{HukkQHeXR;#G&3_tz8T|QdRO0a z@X5-2W?v;m0!-)yc=1MSyMNe61w5i5x%=t%zk9tGKtISri&z}31~WK37W~skOMF7_ z+D_~Fr;3>x+_hcOFsgFxmy`T1(=3*PGpT?sVO8q_LsYq{<}!jg(&?MgKco~O-%M7-M9qZYKOGJlFno}4WngzPSmln=qZ`~+==jrP|_m5OZ< z)NLM6Gb-DziFrrB0c>x&u*13IT7O2%m@yZ?)j7Se{5;)s-?8!WG4T*F&lEVR75Dgr z9X5fB03YFXBJPPdnSNY>ky#mbUdOAI?q_rax;>s|G;^`C#&mQ%&~I@MepsBawS+|K zN-0#(q_0+Eu_yp-5)sWXMg3;;1}c9&<>XayKLv%*P%0O6Gj96?-T= z;Zh<#W(wJGSUf4c1ukeZD;bF+UbfiDZd(a;x1Zzwyi+mRmATxv{W(d`q z7uQcZ$xPM3uhj@AkoUwPP}VzyK(5I197^`iUM_dkMh7m)kkhF0PEkZ4Bkdo`OMJ?5K^LO{;gSaploo-P!&~u#N zS{0hX3cAd=csd?;xjLtjW1zIawoCjpa0L)2C8bI;n2Gn+y|Czo%&yk+a!N)XsRi*@ zw(2gN-FUz24%9N&QNnpaH1#ha|JNGybVS-chBFf)P9-Bs%+}g*gpBS`H&2XUR+?@Y zz-nV9L3U`#WFovWX%&G~Dgz}Y%nSbX)q1(5;lIP;zo|A1DqyPuorC{&lcOoSe~2Rf zCFq~+`5o`uA&#va6Or`;7DEMUsoWRU#B?hw-5XTEz<307J`2KQyi|Fo58WC9XnzR^ z)%_&Y)xy%&pTc1~UK-DmK>>aLR>U^SZmROp(sG0RbkJuE`I2r2W)NItHpA$k4br>O zJ>Oy|`EI+xY$CnO?J3M;E>9`3Hwqbnz8PTMLZAm%`l}u=Hs^Qgr(?$17%yT_my`ss z)02jinr%m~#a1z@YXY{G3Mi!4*Ag533RI6aFuNd}0)nwbN1C*OLGhkQenGX}ca{B> zO#v8hNc%Mg^r+$GLqPfzyx6GF@A^I)AJyQNA8?i^4*xk)Ikf>E_d0xbl8SO>b{T&! zoB747+lD|>@4`b)V2%MA-2=NLQmR&a3Nk#DHI0lm-9<^zz&&8mZF%5I)D$F)E87D= zRhH*Aoir3~$$OjMRhO2QsRY-pt)raKS}ahS2k#-BY^asRKC1jkY63q9WkvNS&1uM^PeLPsP6QdI1T13>F5q6bgczqf=lGSlFd$u#i#9V56gMK3-m7t5)E$=AjaiX0lutE01_RQV2zNr3mOBl22S&s#eW0S>8M9NAT z!DYToW}kaPq^G_~z|lJ(1(mp!-!l*KT4S zWG@|&>1($amA(HJ>b%mTk^H{Ek-@~$Qe*BBB*qa10!_x%&*oLU5u0nC>HLRR)+g$s zy9%6g^5#d;n|)D});^!DKmpuxb-)SM!{f5n`%VC|5>_B5mS8#fj=`|jF7fa%bTxt6 z?FpuUVR?Xd*Up&$qwdr{UF+7Q^6n&lWo1Rdecz$Tq~)C%4W?s^hfPnkzhb|?H3$Fx za){c^m1ZIgg(b5;Vi#NE2ZoTL5g(XQb|P$DtZZaE0ZoWkr*pD3+s5Eg4d$Q^ERK+W zQVgUO`usA})c$Xm`Ty9)gVex%4?`f!AYVgFLYxcaseqSKj`K#MfqSUK>;1J~Ol@IN zB#fz3=!o#Kn%ZV&XT^~oUzK_aHI0FsFJ)Nq2VlU-?=~ywGBZGdGN^8oyM4+TQWxHx zquys(l4%J3k+b8d1k^hY#-mlwqO=d44feb*M8a!lb%GjUJzJj@L4Nvjw8XIMA9f5P z4b_9YclJ-gSG0$k${d}XKF+MGpgTLj9fv_9R{idb4r0}gER;g_NdmUxJ!N%s46q0v zrr|NOW3+>~09w_fd)hOjUlkx=M;O_t?7jb!*=fh=TIXK%-7euj$s6B3yKsJY47nNa zk@qC{$nxY&GrDJDK_wwwtSZ+VVe|c=F>2)8?~7g=au{dk<5ODnUxg;f@KB;XRvlPLgGV9II$@scI)l}gx{CIRUfz>j{ z2IIaT*}vtvuy_TWbUBZ|fAUl)wb`Oi$9kkO?_rq%laBtRBgPtZcvRhQFJ*m@eskzD z?>iL>^i>0iMs@CzdG|g%2!D?u*$vD9?!hbRij29HjS}v7G7}1pT{6zQZZ^Pqil0qh z)YOz>N9*neTA=-L=#!cyV6#-Rnp0^381KN$93hftK zWp19-XpC1Zu!@>gS-$=Ut@*%!PV)Br!`ppI-==#E(>08YI1Njg6Wv0i7uq6_?Y~!% z|57%f8-Nbj2h@23bhlRK7!dP|;-Q=vs*}h&s9fG739x{@RXQX+$tKRNfID=*)^3V@ zK|PI;L$|zEQYaqiuYK7{Z-;@Qy#IXp0jJl@dw)NX;*r>ElN}w{>%)2RX|rvaW)y#_ zgYb5Jt1Ah#{%Q2u`Db<}Oc1w$G2Mi;4l7Jf1`(r_*Uy-H*%cU?RAW{D7CP@;2zrh` zTILhlyx;qb{Pd&`UNY7OMR^hJr%<^JyK=hpbag2cgqe| zz9yS`gbF&$YIH{U-`^N3TYh_UGq&v}SE8FvTO)M3Hcsv;B$?g6B2nece#@7Ql{1E0 z-Ytebkt5OIH9p3DKeA~6DRgqTbA_ticgMAB&(A>X|gMM|6XIu z=O;PRYmEx%O0yyNS|Eu_&V*H7!E}^}G_dUNu}eydKM~mB1XH1DSt3f5z`Ae20w{hA zNqXs02u_}3Z=UAR#8r*fAph8wnGFj#QRL&V%5_MejJD=45qIDohyC%!LP%B+@jNnw^0-Nw5P4^6Ap83JCnc;UpQnl9>9TOuyb zjD*d2Y@xD)Yq~0#25uBez*MomkK=??0fPbHc>3w`b7LR4#pG9A;lYt-CA1TS6Y6(O zrP4CfGSAX7%dXk-G#%VjuqoahJ_%SX{=|aa8{OXOhXY>+oAz{s#amR7c8Lxs&YR1sXM^)e?|9|2FK+l|qBCmC}7BYepE zq-d1&CyJiwL@uF)otWmm+2FXhZ&}07OqeU8k2Ny<_qe;5=gH5D6t^?H3y6j+|UX{ilcg(;HogF9>b;k$$UhL&|8jEJ4ZYHD9G8;ebvS z(ZT4cDl6pzwRA?V0RbOMNLLrq$bt$8?>LQWH4Ow2R8p_mGtx!v8)v?~A_VW{3zo)8g1aa(bE+I+0Ez>A-+xG%Se zf3@DMu`j{8YNdPMeqb}NPe)-_hEh3IhYP5q(N=ZoX&8^M>pL@MyNJ726TZFNQvdLN zr&nIwd9(1)h|^lrnTxiG-`^#`~;iEN}U@m zTCOju9xdd_tU_SSeF8%B4AYwll1~hQdJOew8jg~QQeYfRO>(17X8pvxYsD-d{0XY; z?ru%SB})twDc$}nKqZHIn){4AsART-Cby`3SO~KU=2G%PS0}EQU!L~Nl<5rbz2T@x zrcM!C{mD%o`9_fNjy3%5F2(6)&Tz}j_uJoXEG3M^*4A+!q-q0w9`1HBsajFL;KHTh z+khVB3B$*ad)#sh%~=Nw&hwiJN=iu)6k`_O8pxERw~SRL#P?5PJ!b73v}&brA?coi zdT|NpA^L+l>B-DyzvZ$6m8JdMGrzJG=vk|Ie0==s5v2UCmb#<_^UBk~FvGdG>Gd^2 zX-~&OI?Bq>8V-R+46H(h#;Ns!EG%7(_(&F{|I*626-;t5hjsr#)cJ_aGsT~>-qP#C znz>=d53ufi%MLS;z=%_swYx(TU< z5QWr1fBbOqBZ9CfN%|*Go;d81+`92oF#Qitx{_gWXVHGDGS6a9H?t3HdZMdCu{+b5 z_GS!eHfIM?aR=1Qs`8WjMdY`+a`YikqVd+gySUSpE0@T9Iwhe7#Ksm451 zkQkH3^>Kk+!FB91c}ht!9=I*}yZJBbvc87%4nY%b-as)(luvYM@i{>yL{*3Up%6>J z(GKns7;N?CBo4h_=K>Z4@6cPU^I+m$Y02kn(a6^wi8DF-f=)og^%Vlb+w{$prkq$qBfV$Tt; zfWV_cQ(+$E zp!nnS?e$?#j5s(jkQ{qsw490GaxjU8a6h5MR<=7R_IcU z#|ZBp^I}!tI3_>fj(-Y5)jy8#+^y^!h6Pym!TG;lCR%P_g=BW7GoFUld!;w;;}^Zd@H*6J15Ov||@?;n7hxx*`Vp zC(3b}Z#G}W!%Nuyps_xEs@YI(p}lj^mXHX%fmicIaImv6s|hAFEA5X@CFX8K13^X< z%6Dah8q}o_FU9wNUW{V=Ll1R-Y|jg|jxs%hnS5|Ky%Z)wTC!k1eFS~W@H>JfQpAu$~E&4iAz6A`8KQ?m2zk>G-^8LH~O3C+yzVA6*xy`&V zE&@!|({O$J*|s1PlkC}B30(@IRvopBh}es`gbf2Or`~R}`SF7jynd7~!o|v9%S1^yknQ8Gmp7n!B z8~7~0x>AV_*MqBUq&IJ_362Ea3vw9wQwU~2K=vU4)<(`Yl0Os&gaOJuaZI@u;rWeZ z<#oHAI~c04lxy+(V%dK*Cznox78Afn{B_=~t*!rb_bVXwz?t2!kaT_h8t?Q7N-4!g zw-$L2NPK$KeJu!6Rv-kPWwOYf0#kEQJ7-V5Lh)}oselgm8z;-h#!#}gWO~F6D*iN5 z`l4>l>5FAh+f)#`Y#><{Yq-k+&E}w-H*BW%wU>;cE$LCoc;j5iALPXlJ|MU4fa0)X zWZ)?Ltf``}k}05fZ^1w5GHEZlgaa(mx-DvCX54- zM)otgiVT`AKax0fb&4OA0T_Tvyom&DET9Y&eSMqfPT6QN*hLmw@^n*qsty)7GrKk2 zGGQ-@XvI=AB%XNnu@OjMN7jfULAFa@3VX=5( zim9C7s*n4Upp{RS*L-~f<}q;vl$H~7YgSzwI#5jW`=EB1s+W!fb!(ux{Pscw&Fxe{$5`X0eWjkb zA6gX-_7cAEqDj4mkA8-14_SpvnydcXto7F^MdJg*Y{tyGmZUM(#?eO6;wv>U>J=Cr z6pP~KFybG8`7H>pdyi+MFZR?dGolW3c%wyvt**4gA?;4yFRrkw;a0Ovuc}s{Mh58B{`G|P$y-naT<*pKs$AGy4 z1G{i^%8eK(1sw+A^*n?>t?XDlQ<;bvgSeBtMRrl80J)Tzr^XYN4L8`dCjZ&r15S|L>_5uO%Lq+*HNO+E z%Fx5ip|wAHZ@nx>Oyz6sxdIrC9@7A>ST&D1?w}y7@}^46vyhI$Rw2D@{JRdbk1CE$ z$2bddrf;?O9GX()eW{KCtU%z%|DrCayr&c+LrWLKfTfM&=#t>#{yVyc;>UIZ5MWdj z>JL4^vFd<5i%b<%cHO(K31L!tDOUFp)8~>_!^WFmdl2r2v60Ko?H*DQE@EK&;3GHu z*_($|7cZc3<>CT95Lg_qTbcH@`r*#5c~5M${F6oC1d;Y8CwBtVE~}PdFc#HR!MGWR z^+gpkv^Ehy)PrVGkxG+ApZnAYCl?2JukBy*|DT1o-$=ueyOriWeALw~yMu-+`Ki;2 zMR82cab(vpQjCvHQDK#-S3_HxvP!?!UB+CEq?xHd>^Te0HCjn}o;G-G^WKt6rQ$uvJ{3!;*ZH?hV?XfD6!yWUz0qqY!>~u2~j*dw0JwnmvC6za8Y=d#Hq#}PEh#T<3>_2E_cNVI9e!S+t< z=T|br1v^*Jy{rpCRHzdWgG4ttpLB$&RQ+U-bUybpW&*lD_51Fs|Dge-@e6A=AQi22 z1y9Xnx!=4D3F!k8sEkYkkKPG3==erl;QrI)BHi|Uxi_)kpA0lOS*0ut9=I}krsff0 z>ZE3-=Wz1~@xAVNxOqhv;~3ubHJYQ8L8a*9CZ+RMbsr8xDl+ulw_gIaW^f1F^tXz? zuMnRpNS1VMX{^Zul+AFSi~MP`{frI}{j99pIsHB{@E40!GJRllZs>2~2mL@+SQAh|&YQeCBH%Ck()5{dH!Dzn9~4HyRX>u+^qn5`fX)3-_sZG1w4L^p^K zFkP55&#S5vg_txH$r$eJ?)H%pOjjX4_okv-#e9^pt3_O$=xGWzAr$}vQE)Oh6KYVE zFR!mcD;*Ova}Ol=bx)`2jKxu@7koX`kzZmEo(NfK`WO#Xz#6A)eL-)Bxe)Y%?fq-n zjQtr;r0=0T-&WUm;#;>^FPd&Rp6vCJ5&h#XZfqZ>)s*t4v zhDdtVv@+O4KNu}!_sjHG0R|E0Ehxi6Z7$&A;^v7x@b!IhBJT9g$hgY8(KX|*fcQVk zWRWOzy2kMHmoJP+-^!E25gu>X0$?`L#@#MSFNA`RU&0(v^xsFj?5!kM-AiAO=^YGBf-xM1WuwL~E>DW4S zE}P?hnT&h0S5{yvv+aJAus?}y~b$|NYSITScxMx91dbCDxS?k*=zxOs3RtX-b zVXJ{v&66)j!&MV5T4T>_$BXpT6zAsI*pfN4#0e5dK0GUoaWy89fx zOlG$NqUm$`_v{%*;1iFQ3vZ#j0fM*nMHh|(cf|z^&kj$vk-WP=ZEE~3zZlr6Ce)Tu za_7Yj_LWAVHrm{YMRL&i_0T9uJC#0dRS@We>Gth=Tg|68i_9aoa$nRrbyiDzQ8(vF z^dW||+Z?}Ts5V{uPE$F)VEb$ceq0Z6B=YqyLm&~O2dT?cKTf*mkoSDXPhq%GyKm&N z;WF(kydq4eP<`?!;u=`tXe4X$ZN!4qsrjJ-`FYZ zgf_c%m;6}2f0z3*Q|}{E;WJl!@ve=Y?s(}8XGOEX1KJ9o39-Dlya{8ls=i z6_Dx6CI+4IeX^>G?(S({M)~P7B}qU}xjMOsO~h->pqa~Zu!$!!^8;k80ulBVU9jYp zmGUJR%&Pw&S&+rLYsN7_%+WSrikG$-meDt?fEgc1&pj`lE_ZU;@#aR3j@}>_a<3kZ zD9qpyuD05Jl_-Rsv{YdO;IFb_&%Ib0XVU}jN~>F^LQ%Z=L&KGh!o$Wsbu(3$;G{AT2X%Rqu6~rlW@2{nll%O z#1^M%J_VGX^Y&sECzFZKs;rshowcX|;;=}xZvp`Ib-fy!vgXr4dGA5P#Gu_CumxnC z8a|IJvl`+k@5Q7}g)#D}od!fhIA3nmASY-yo0d1R zK0dDAab8wUXKcUqV|^9N&tm)A(8}IAfA;G~mY7iooe=8g*F1Oh!=lx@`6^yr#<6Nh z$J{fXr!pPlX|ZH=TV|&JL+zck2$9vY&F4lK#G}Obyz7}77e}wD*_7wBY`Y3L7bqvV zE&*^zoKn^3(H(>fp!u86rgLK>&Mn@|j;!8GPy8Pimf!QO+iOI)L!bMiEzmvxx-%q>897Vq6F79ouT0USX3qQ$4%{RIz`^l_1ydUD4^7M^26>g$jjgXx=xAJA z+%T``+Eu0GZuGWRfE!il@9Y=g^SK?Vr10&?1MMdZ7T=c?yu74M*-Ts06rB|WF@l;> zRusO*p#gXe;t1D(saA$w0sRV|w1XyIJLeyL!-|+<)jk7a*EmLoR-l|zD<;H}tbU_i zUi0BFC45)iT87O>EE+Sj(Ebk8I^VmWU|IlaFU$F8SYu<6o(Q1pp&MC!nDJmBIe-}$ zWV((*CSa|nT3Po+kY;O)s)!9BOGc#4 zTkw?WPK<~nm-AT+dTG=9c6?z6VMz~e&E&Z*c}8wYlZs;`l2n-RGVre5-)|q|fr|Ha zN(^MPbD|aYvc8ChiUIf*;OvgMEYe80bHbFm#crdW8XjFt2uL;c?l5e;=9mHH060US z#^(EJ$ZWYdcEB*x(1g`tgj=l7P|KJE7`xcFSVFz6$E!c8q}_caNdYf<8S+XgWjK$( zKtjU=jkPaeh2x?4VQ+m-8|?n2b0AwTrubn|_7&u_7+EE0L3H(s-Os*Q(_>NcsDxg- zAR?aMYN&TWs3tif;YQ0@`{}`(iVEJf8-K(~%%p#*L!TiNKN9B#XA9ML+Lf=+sq~l$ z6-JVAMU4hc1IP{JN1QVAtMGR`KO-kD>Gec5qdV7lHy#H8-gr-%6u757`KT|hdzCNX z)6@0oym)L}T++v+Z!nOHZATn&NjvytCUbYUrkQK22W+0BY=H^t;K?_z2*TEgZG< zH)E6(0yghym4S3jiS5`Z#A>LsA>ew^?<|L6CUcqgWtaJ4@pR$q3^s==BrNJ1oZQBZ z_v7N@5RK8%(XOy@eGsTQP9Pok3^NHq#~*YF0qGvK=3gzEKh0B3)p0)DzMcYL!Kg5Z z&qB#+pKlmr*F^Q%fx7g$Hn)m~sO|Dz4_K{-oRR%9!yr`V+7sRA;Gcyqt6{8Gp z8wx5+vY+u#3fsP8J^7(Efy1!V)@!L9gF^d6+n(F|z*y4C5UM;3{lpprayc`i1DYP6 zC!K!FdPd#-2>>;Xt^6xQ9 zzo6px?+Hp5J}B-(r54SFolbK5Q`;1Pgwe|8lra8PuC3Y5KXRuc*XcY{Nx1gWT_hsb zZIBC?D*-T|CTq`+?S-z_x2U|rK!bwP@Q9iR!fqa8O1&qRz=FM=-rJE+3q$IF7|^*v zM&0u;9ED2^j0%St?Ol+#wuR#3dr}m&$^vTmgpy_lHnTDAo!ggj~ zOdTQnAcb}$0KIWE7n@*RJ%9q!%6VdG!05D8CL>YCw)bh%tSm{4QgSbacctelQ=?BVj{zpMC@jleb@hKI=)hPvH+*jk>RqS1+w}=U<(2YC zZ;v0jDd3~;3|pL018^hO-5rnUp!|Mk%UL-tw=j0!L~zHha?bWG9MkZlMDTa64P*jX z*&zE}HzWGrF}?;0qj8SEMF~kjL-s7kK3p|#)0-vgwPsmx+>!)*b|+bJ+Lo7 z9GdC2C|QjR8d7Yi%*!)KRI0Q=Tq@EmtJFR_47-&+580s+g(B{KF<%J!>3S^eVToaI zFJKYkf6G7+-3>txE1Nkr9(&I-GcolQO^yKhhJFT{hp}8U?)l3+hWQENbCBEV?rU~w z9T}1g7D|ZEAYa%xA)ytf?G|9XzX3rc zL6KI2k^opB0unD#p&ms*f>1sc9mGL&AH-X=X1=*ekVwErX1tE@zIV`elhDyTv_99nlAxKS+Jru)$o-pMIg6F4}jM0mNuzpLyZ-tU0y>BAmr_s zvl(WosK;>!oI0h2TV5q=9}ouz$)~u4%0T^6@+vn_2K74nLg!PEA{V%=W-wrEvdp+3W0ykiRKMixaxY?Rhq@oxgIpIT z8_jt%c>e7JadvqPIa$fdLM*KL>_lWfSst6H+aPei)UEs=>Rmqsl2_2m^K2-8?ENFi z&<5DlVOQNJX|Zg1Rx{ey-p>?(+lnggBRK7= z3Yy1JN^_yk+-&2T!RvOcJ-(`by?S^)L?|54uT$AjsI!AR5)S+kzI4|B(4Eo9&V4kq)2;==VfQo~_-QP* z6z{tVB7`BomfJTW&v_Mb1m z-M}jkGEC%^UmSm!!pM(#wK)+0D`LGYK>K^(0QP0`?Qu&t1t&}yL^JZh_JNETwxhj9 z*bR&pmS0{e+K>Ou9RIPxzqkCCmY8hzUrzd$iT)6m|B~iE|M9Q%{3|{GN)LvV{Hr!F z2=d3r|2Jx5(eadi#UB5udS>jHt&mdI;$!Ri>a4?KnS{E}&6MbYu(Utkw~PV8NAo0T zpxJimg;+&0SVsq=m*2NLMLKzLR1*I8lgjltE*>GAr-C1$c}9SW>t~Vn8TWO&ABDDa zpqz`S*-dlidW}52&BMf2bt&eeqM~6~p2q`$z~JCuqy49(XzK!!;Q~Y_0=j-NlxR!P z)q(oGAoO)^J_)053iGvrDvUg(yf>9D6DG+LdKe&?bh|I8+G;?TWd#rI?%k0WBpi)L zqo_of$4YeE^8v)8_XmS~p8s4)y0v~8BeQADE}2$(6ZT<2bYzo*w%EtH49Tn?c}#S4 z(n}<9Y2X(IS!XVw!h%5xZH)PFHQB5g<-%4$DEicJORqJUpBNMY8 z_ku{z_79n3rnQxwwC0Y=;|x)^`&!&aAMDPm;&-%p<;b-+jpbIKOCp<9GDSti7?T#j zpI_|~Q~C_USD)(!-pH|YvLfg_2x}aiJ~g1E_2_)tdK>!svIoMxpt_!)x3+D3D{Pv% zN3qAfSg_7QQ#-mNO?=Ir63Fz$v;n8HJE7YGq@hoQ_E)Y0VYHT5K(wrnV1SyV3%OAB0+cf*JS=8vJ+T2%icnj6qy27g zfoi?1Qjc!)lIYy-R|GwAGZR+u+I*EL0q@kp+eP84!@UWwdSlp3O=A+d-E%FCzH#~5XiE`PySPu8coCLELh#v*m90mYn~`M_&R^W?KA&&V z=Q)0a%$vJo0T!c)Cq9jUl(gMoi)&io;d_^Y^m_Ut^9DYC!h1TOgKka(;crP3G!rfy zK!3s0NFRmGlPOm&9thrB#lU^Lvx!Up&(F^i4LpDRG!+5X^%r&AR`+sVyIBl04#0a2 zWn66z$~}}mW?O&ZYuxN)N0;jhpnT%@61K$~bm$=k&=G<+-}nuAc&PAqHow3pw9(G; z4@uO%3`n9yO$-~lBzA!sQga2mLOzZYfG%ECxn6(jv(7H!BRFW_DbjBr$9pg{ylQK{ zpBZirYYi6ht#Nag^4@&eZ+eTZWWpiNB}{R=$Mc#qh2LSJ-PFy*Ez)8&LOEK+WXn~S z;)nn)ll%Zd`>7}WverY5{d)3!I;DxbV5k@j7H3hCjws&nIGDdkj-NI(CPG8$(}|qj zCzX!1L?k5QpP6-nDzR zIv?zI$Eo>d3%>v*#bPDTzZN4Zokj$~E+rL(e1pax9z>;w#}Rb|SNB zb|ix|O9HahPj@wF6aS8#^M0Cm>%`L>u*R}2B+R=R5|z5QGnW3|XMZc1vfMF0^IXs` zYS!Jw5dYe>xEhEMrIcZ=_n1=L^R2Y%hOAdN*r=9ve8DS$$JeNcO=(TNY7cUbEL17S zJT9Froh^L%nVG|qYq2Y*1%8Le@HT~h#PWnq_YtQfc7Lrhw8XaCjf(=j5<|0au$NNB z_XG~(`-wQyDmKUWJ0TC~PyW7eP7heQxNtI_4N;wdw^4;AvIccF%mIVvhH7aM-?2iQ z#OCRLJoze-0h^`KNOxg4I}Y}}^DK~e&-17+JV)&jPrIcmWv@VuP3VTPNxrLMk$z6G z-m*Ejv(yy(&n6JQGcva7c%J>zbTU^zd2NzQM6a?2Y4G(QxDH~KH%oLgRSk{lE$ z=Pg&Rb~5WZX-lHezQm|(xZITU+KEd`XsnP@p%yyHWp7vq41Hj4Z0)FqgeRYzH|@em zwQ>wB($yc`G&MD4IIK|yMX+6;uCXqv=+fa@PV)*+U+~)yGyh~7J9wm^s+#yp?v5@_ z#aInuaAq2!$rW|tVieF;NUeJ-sGVN+%}>}PFag(xY=7KCw<9|+LKpF#RkyravjFSJ zg8|{^bEJ|c8N!jkV-`egobk2af2he=FQQ9wl$^J||Sa%FnKu#+xw|< z*L%9upz5A~hOp}SZTBzvW!a#|;D`(5Q)Hx9G?27X){Ru+u6o5f4ZV1xLK9d6S(*M! z_;N5I(r;7(-lbV~YBcd0nnTCX#?T8@)Vo?bB|W zSg$|PMh{CwF+?naCl*dhL-h7}-QV%rw$2MMGmqmL@g&_Lz$tkYQ{uUkEh?Pty;wXC zXJ;*=kjW%(i5aW>^waAk@_K279kx(3wG>-s^pQz{;f|C5cJ0PT{W^Cppb$4c*7UqE zJnOY&=Fu?~^~+2FFc0-?jRA7>+uAvmM0vo&7}lzzhpSpbj|)>31}PXWUEzIkU}?HB z)-WxS@L}U#S+9Gf(|~3;#kJ$*p)LjM<+ZpHTb<;rFKvP^>cJ>XkzDLdh~b&xz0Yq9 zmoE{!$!KhReF)4?i!U{)(_Glj=`HN#J8Ie?w(->=AibPK_&VZ-Kt~p7pI)mGxriAy z8{uhyu(yD(kKQvUW9~;fr1i#)Pa}6uHPwM;POcHlK>>#gmj%ju{ttWa9o6L4{Er?B zVnw>;7@?UBBg8u8=&>F0*IPo;~xKnLc?6cl28O=ZQ=MO_zz6Y4<)($`B-8 zF%FCs=ajICINEC0Gv#6i7NOeXvKy<|43-*$6~WSpbzc2TcLD4Ph1sjkW%+a|W$3_J zy5l3IWmYz*kJuO`X#4?-t$VY!o;m)4`j@b>!jG1l$Izt(54TIiZ@V@SROKmbN{w!W ziCtiu_eHFv@3c;AlRC{-7a+pO9>sAJ)PFSoyusz@LLt@YVdCFLLk5Ppst2^VXs0s zgeytJ@#)Dq;)0n!_s{N6hV0rMqPPxE5xuqqK6W^ajzNn2QKS%jQuFoas-9AV3#xgq zpZYO0RKhXqaD+KZv4$xXtv2kb@3P{o`_6f-t|!lkB0q$N&*Eg{p3{pmm+Vp3ag48> z1j`q9$1gwHJV2ZaNoV`RC>9xG4SnEKu6MjfE5OhcNmoCsAfU{_6)*6E$Z{j9@c|x^KPSBgNP4pF@|RS zrfmgAB53Rj`DqhV#Iq0=eK$}m3!)++9O2O|rG?fAw=FheaD$B^dK(aVZs>FR=pvA& z)VEZ~BDK`o13}QqS7gdhgvX~Wl@oeJJ93;U8Kw5oos{lI{dg6`M6a6oI3#AzQCIXt z@t@XPPxV&^Trg6KA??m?{3x^PYXlU9jgHl^y)rBL13)ohj5D15`m0wTPWDFF*=8lv z{H)DM^ZzKi@c}#Gx*4naK%hK_H8lL@>^{=E|7BVDbz3ys6gonemgdK@Gtps3kvvI; zX6R3l$5)~`KwD~PkS3q)(9^-|5-f7Dw8CB&o0?jZs&lv}{1mfNTl6UcbbculE^9p) z>+ZIwK5zS2yX8w(7Jom@-R##7kx*&tjl{ht`>%5s7dnRTOT~Vf&V*+hoau;C7v=(QhDht$g z`Q7%!Y2Bo>u!s+VJB79z0aRzt$Kn*!RfMfv_N`b&1FFq(LN3wK34m+Yi!aXQ_E7bE z1WiM;9#gweA@MmU2svFnvpj=~9Ktu=R9C>6IQuWq*lHrxSwha*!o;9@GUZwfEZh2h zH)=OVD4mr9MHF6cMoR84U-8?oKDN<`Ue4014@2z#GxFVAbQAR-rH>s{=<_J_m4B+su#a8VrSG z0@5LV)4o~#okwaPaLNF(q9*kl4@=7Ca@^aYaM=}#c}Nnp#v77(wh{ic`&T-60U}h- zya$Wr*VUrD3)IrJWvv13)|w4A_xEn+1yt)a;F^=g3j$Si{K_i6f0`@sA(1Dm6GGdH z7|oO^U_4C6P_eN(RfH^&YAfT}JZ{EQHtS7rvR=MX5$gshu1$Zzt#mIt;F7f6NyUEV zn8kLL3ls%jo2C<=f-YjA?owd6`f?s=hs-_f4} z&g(UJi+jn*Gd3(Q!hD-WXdY|GLE$?d7kZcIK5oef_Y*~BR3ZWF!hze7AenA^v7ZuO z(=tzXD_t4Raa7Zg)6B($!}rj3b!4YcLCSIQI+Xd=5-p*7&~cBaNhjh@W{ssE|w$1wpo!QmaF^Hh|g}oVE|iNeF{9z zYIz>-xPlMQUzEL&`8j}}ZF6|AcW38?*J+oQJzLv%imc1r5t7~VR9A41!I;nK_9G>x zdW@oNCKDw=>_A9BL)bH{2T(J(o=yk+%njsUeeA)wNt*AzW`kdzSJ`6pu&@YlYUCTK ztpTNFDYX9-3@snjp##^Sbt#UN>UJ0kLSlJFN+Bl~(h=!WNvBky19F^W^^)gt!+vLe zv{V1^f8|zfJ(s4ThjGiKzFOH#&p%X7nYA;W&nR9saZjDz1vwB~cj6QS@^jmQSqMDe z!=tuozF55V^jlwUz<$x|QfK%r&DRt??VM4&v7_kRbJ~8J{@5p9AJ#!jeLqj%C8YYz z`}Yk{BzVA8y^ymvIzN_b+*0{){o8{FYm2X>v-sgVa_e~~VDSR=j6C%WF0bLU)pKEC z;x&dvdDmkC8C+E0kYIEjpbPgdaLbDP3X2HEsxQhIEj^0a$AZpR!2?X)c*kqpV+qa7 z9kypgylC>$=92I}H;yTY>2~h`o#%uPa3i;$OZb{L?O2-F8-9>)DXQA&+8N4PsomU(ta#6 zZIt1q=&|CO$FHmmGFYMt2#>wc+`R(#Fy5Kf8YgX;8L8JtKvEah2X8_@ptI@awWZ*? zK5+SzmKSU|**Ku)oSo&^+uYu!oOb1q2p!?qiMBP26_~*sQAI=V(ARK3JwsZCiKqf& zVUHL3DTwl-ph!!e!3810?mK_{qMI8ivig)^K`8fn__~g%z#zl=`@Cn-EFmNA+9amX zYh;x8wW8N4+-U{0ZWrpZ^xjf`RqJn1k}v}eC)w*e&=1t__IF54vzU;_4+EwS$x zJvjcMnY_UEO%3}1-r#aK8&p<`2VgoOZBJXDPBc6S$Y>&ay6&Ug`s*^ZM8EGMgF8Z# z2O-*W;zlnuyS>*Q9Q@#BI&0pEUs_QfGKJ{KYEx*9;lKlT&A80rYPu-t zyyPT(?uZ)PqKTgWr%*!Hipn|nn3WZ&+NdnA=!>k924+y4Fm_T`z*pEjuG;2%agMmo z;D=Am$q0&Pt@+Ydx>EW?BP&M?hNtrdH%hCsMlvM}-B#BdZM-%DmSx;Qbrk{8?b4Xk<5b$Wz@0q*s{t9hgy+D z1`WCIXT7Fi*#D6am#3&__8$#JKQ9L^0`-d&al=!Ek_`J#Q- zl)4Oe5U}&_7CtKK22$L7nFR1})tBY6t8c}1MRl*fmG^Npm8n@&NTW0NF^}lz`K&3` zeksQ;tOoy}=A@&peC0rlUDNYjDU=)20X*>)%gMWDSZkC~h91BoW1Dw04NliuV9F6oh3MD=0}i#u&_L% zD7*;EpcAO&aRM%8tb3w7D2mm#BPy2`P0|U&`AyAm*=XPyv6uX9N9Xt?W?l*EzX-F9 z%Y5-jIBv#W%;~NIrEZC>PL)skyUXbDI(PomcktKwBPw6VQ`$6}lVdcSYtzx8lSAmS zk#PCWh%(5Mn$(~jQoNkG^^=#X{ZN^z`Cz{QngQzMI9k`f6%t6_fEajL7eI4z%~+Pu zujBtU6btfY8&ts;`L^8tF)ONV8c7ErD4_oND>{0L8CZvv4ja^57fz|@lN9vk^$PY# z3Bc%6G0lR&2O)lOTw3d>6x z=J`bz7;oABsMjvGvYeWk$b2Ixkh1e>duv^=#BrK7C_*`st8cFx`5bMMol(yuuoMR2 zI2ZVK9&%=hVf`Des8_Grj$76)f#@tXGd(l$VxelW5N;sdK-~v}WAgSy7?iplj)gs{ zNf0P?jtQ6bJ(u%S?fLW1Wsc)UY)YN)gxq(*S`{i>AEfPItZOyFf-;K$#Ar6-S;j_k zOg+;A_ifr|=ZAf_erQ7cew^kqygOFuWEo>G__{`wN%Z9l8Fh8k3?OhtGwUIkO zEzBTZ?X2ixZ627N_1Zq?Jg)72^6cxc#fkU1s6TGIUM#b6@udYgqsq|T`~mdONMl)` zniguVBLrE%E(;ZL=s&U4PcL?0iFdvgsSAyN7US~bLjf`(^?j7BF87n77U(?LT=aMq z>Ea{hrZr1>f&r8Cj4I0y@^U-=IdD51@6#hx`lRFi9$heX?%6_g&A)>JcMPx719V}o z!k;aRE#zG_W~yn!O5^?!iR;Ys^4HI23xpxE^T9PLVjq5YI)b9N!c7@SJMzXA@0?u* zTs4@tv5BEucq(TSAMSa*Q!dM7+iOGQZK}OF6`37Oh4D_6{-Dbcg$<*wx z2?W~k5Vvr6ve zl0N#^Wq^00EB%}ugWNSh7s(_--DFeCz83TtdyvA%r{+yZS2r(u?d#f!w2f^me}48x zoL})zU&s$Oe^SkO<_W~&IKp9qFRoB&X|>*RR4pUhfySrX*;1J)<6QEPwuk;1?xhzD>j_JYM%{%I>t zGyuTL(t2vnYY>K=1^rLQzreBijCw+nlKqgz%gsAc>@9$ywN1T#H!D!NZs6u)={FV|!!^oquB^XL^NK*ceis4~1P-oB&tU@dt(`Q3SW>kQV# z4Y`9Co&Jmk5f{qtgA!-XXur6hD&g_`FKF7=et_1hrc%!@0OEWdd)aj6B#_#d)?t;Yxh*s^NBsVE_OJ?@QjE*u8UoT;xxj-S*8dK3K=?z3kRCt$ohSmy?%#=n0h*^jd~|bo?gW zQec+B;=XKDTcDg`8#|S2)S@oWg3m2R|52@G$;u?ea-?b!qFqKYqP>EpW<%r<`u|Qg zfPZrtI9K)X5C3I=>Ya5o(0@X(fmkyDCaj&}P3S~vHJ)~s9Lp$OKMiOX-7b&d*X2PL z7V;O~c{{ur@ghy#H62=Igc+&ppNWZ%nO!z4v{bvM_ZPz)nEjt+M&1M%rs9BMw2S{0evqhhpjOOU z=s`k8JaiTnV%z@|hC|Oc?vQrd@f_E_PKedx0BDtE2XW{TEw2$b;Hv2^vi5e6+Kvz` z%V7*(1n$B8B=}%Xre;I++E&B(^Cr04T0xmRa4)Y;^^&XDT*B zK=-$Rcuu?C;OoZ!L|#Q^0&p|K*9gPjS(E}gWAppFt5#H_%gnPT7SVvysI9AT`5^n& zOpUCTR>{3DNqEZXKmG;UlD&1@P}m)ZrOI8h+l2DNui(hNvekp+Oe?1F8tUHQj@ zS3Ujn0Vm+N;bl!-LXN|3PXIW-e3M02|z5BYddJs zo;;fcEY)j6eC$7~_qIj2NGe;q(9S0R8^LGLU6rpw3OX z_210$`xF2C;r}%Ge~Xs>CTHwNE98JYB++?;Yd3x;YVA$Hxo*7n?`#)qT3=-ZCPImS z#<1N9{QBXZl_d~<1~`dmhs$j8V);##76r)=7 zu!*zrt#BN_4z2}?t-kb828t?pWRZ%G!g;XTK*H}tfW6MWKx*3p zX|amGrq4I5JwjP=G@pJC&$NlLb5kFYd4WQsCcMcv7d){AUQ&0RtIm6Qyx;JidInjO ziBMXdYMRNUON}W}xHhQWj+h{G0NDYfqRh|70d5xP;ulsiHEZh}j$60HBg#QoN1%|! z7m7hzFCWjd^22h!h#e{?ZUMK%)+`B4y>@|X-sEbPwhz2nD z31qaGX~mG;er~Q$vbE~!>&Ajw!j%cOy0c%u$^DroA%z(5SVJRCr$Ec_mddWG-L9C2 z|JL@7QUoipZRbK#rp^X+6%fR_?cJ#FyfN=og|OrNu(sq1c;`)6q00{pt6i&jcc8gK zwnMVw<8Dbn%9wfLK^!OVo<#5bH>lo6p*p=4KwnxF#)txmK4|v{hfobT;;SR|3EQ==48-#06@cq<3v!4WFQ7!0$QCvqS-5_YZ9ZPKw^?a>&GI0* zONq_89*(KpE<#Ai%XDI>u6)u^WE{GFG;`FQgTVZQTXW~HCmjC>^nG#Znx|cW(Y1rW zWLeMbia2Cl9PnKozBCL}B#|5hKdtugC3X6*p=1QQ*9&*w)j2NHoiq7=76ec%M{5dLcV4MM1U zufrtV6a|k1QdOBSh;m>V>|j@zYDR%B0oh3WMQBs zEcJ70o>><>uym=!k$ekMfmiPO%y7?2Vo<=W*1EDzpgq2*_rbzAbdy0U&Z<3uT{`~N z*FSKYNG}?eT2uRz{kjlc0b9%c%AOO(6a!5CMeM0QtL7ipvEJL0HJajSE0TX4g-E|T z16(754-6c3uOn_4{wXr<_`fPTvnEUX=V`L`_$hfOOgz#M$k)oSjx%7l*4L+0M`suT zNh~tsdNSNQM+jP_FD@*QXF%de7i`Uj?@mzC{wbueMiyCI4Gd&4Sg0rSrk;nI%jh4I zD-RX%@`qbaZQ-BqRtf@Fhtu1gr=8)j0=q%S?on2s%0O?zZ1yLw&v3JXgJRd4IN)oY zNaBi`$B!zPpx*k4K82sIZ>0myZo%aVH{5vR3gOqH{7^llJR$VD8)U{LgVK?YrGLEE zG6|$FHG$ui$!?8M=+@#p$Rw1TOP4Zgs^2fo{VVS^irb*Z3U9_Dq`L$pB{i+vpHtrc zMMi80&UG2j11ZG}ayk+>L(cEduv>jx3TFJiLt^tCcml_Qn=QLi*Ij!vA~w2bHTc7C zww`vJK(D$p?DR;8KZSZ^j}o$I6kZweEK(I}9PTYs9l#W?}57cSjzmS zfMk11?B{_*1VC2&hun;EWNC88IdN5rTWIH*Uoty_68mT%a4nYC@F5=VNE8K*nH}nt8=?+(*0K<4v|Jrsx{CiMlsl_n((Hlr5BQL`=)K zRmM}N=_yOF|6!V?vO{!P&Sv!!3GmWWE`mkO*UoeD@8g8#zUwM4F%|aBTD$ougAx}f z+>D++P0N9#-cp6Z*9)$M?H{DYrQwMkL^|m{C8Y`SZU%%Uxpmhn%_?b?J*FPlHXsZk zYuZm#FB37)h?+cChMeoWNgS>o04#48U&! zu_q{-ya54|$C^}^!5v~t25R&Tr}8p&7NWyBs6p14WPaQG<}E-z#>Z5synwrVtA4m~ z%48GW?K?k9za+_?O;-{~XP1w{glybm;rg`3^?KumywUAmif`XjZ`{827>|_C)%r}t zoP5V2do6NroM`_dQKce!`9(A&ynejOWvL3qB2u>wTT9q)4??G>`oRLRreF4Vo0v=1 zv%z#hJ;V@>=N(*3a#X3VZ66k1uXpjMeA@MDxPZu73Ykn5#aNR!8gK|T!LgUK-7T{$ z5|zIOM)5OJ8IDnvVR!pf$ZK}9MMJbt<`ZK?FQ;q1NO7CHN~E?7ys=t^j!&|jP!CQ| zu}X4?zfm>nz0xM;y52=of9e8b@}5`gETr?IguQ9;>{8R?U4`SDGV%|l=9YZ+W!Pdx zrT4#wEJXN;%Wzs!GP_wvsrcSYS*?+YM}TX4ytao*ef=EG=o~e7XwNLkkoPvOu8-I0 z?V9Lp>`D=9L!80OH1Xyl_-VRh$4{QVbWQfvAHWCO2eOi*YucAk!B)n5&w>2Oz?a%J zuV!%ldvC|tjvaSnzjUTCPS1qDDe_y*%36c>gd($>w~<{Zx)+BKrD`V;c?wkpt!z0? zLseybdW>B+YbR2gE`2@6SN7D%u?p|aUKC(4HR?8Kc#o)u{3Vc(H5*S>6UUB)tW_1( zO$pdUATM@Exlr+YjVge9Zr|&a1o@`eb&0JlW%|{WJWk$J%LtiqiN(l2+{#Qa|B%z@ zkj&{d#p?Y-Q{JLX?0WUGM*@HJs1&I0vj|lVScv_>E{zLsQxH{dK*1Nm95#SIKfBjg=b}}c-Tfu9in6o!bbX*Tp z6w47IPQ@sB-_)a_bJn5wOV^0qXKi&E3C_l8GI7xKo>{MyJWB-YOReBXxED!|u~!D7 zzQUdbNJDDO|03_{OF1;hR_)u>A4>AT9JXVg@f{Ff1$Vr2yew<8#?=paH0O#x-q&g& znZswYDWR{pg&9`IylDxW77ieWeYV_KN%q+s?xhYCrAlXRpi^`vrg&hK{g9OqwSoAY zEQY~6gtM_6y1L=wumCZh<^C`KjnRAi2IsfSo{E$Er$bobrCG-m+2V`X zr~gBaO_8cUF_2h!Oi>3PJ<;;Ax95b27e&h&9wjc!X$(3&RoW#fMpzi-B);;QpHy5o zLCWlDy1bUW2uqWmF1+LUE7G+!Q-8*+brf8Wt}MS&_b39Bh!u&>i>fS0UU&bHnb1)v z$g!r`l5BAP4f2;K=ljWgb{n>vFe{s_xiAqE0o+!DgVuRtpN?YA%h&69`)cpc}b01+zVOo-qh}!O} z^BIZ}{BzkXAF@(?s~6ip3)Jtz>6NO|n_xw$baE0c-qpoYO11dDY~o4m{Cx0`FTLv@ ze+Y#?dGtWXf8X;Od9gdAZ*$bau%oC3tQOk5o!1_zF8zebzRV5Aw)v4qz|pP#eqnVu z8vAjGD2VD4l0ROZiM`}5vRSV@H9AnpfD_GK((xg)s;Z*%+VI9DA=?q| zLpF$7^$k7#P7h;g>#^634(0EOhjvW=$5);e1kPT)WFv@M@h!7sosjdMY47nl+ZyYu?-j2ANZ8=SAw++V~H<`)geAV;N3sD z+vD_OjC){--N7FRBK^O&`hOZbL><}xU7Gp3#~?0TxL~t9RE$e*esPqz-9E>uvlVJb z^r%r4nINVkq*uAAs_&CXMVGveFx(x&S)fd-V3|&tMtCERxs;%+8rD|)@(J|bk>Bwi`o(;^<=xfasKjy{Sb(YrPUqi^nMI7oFaBGW{l)L|w*Fnsr721n zcemM;)c<)89FUm6-Mx~GAe^19JM&iq|7GWNryP$)jOXHvj!f_941k}k<$PNP>NAKf)BUNyn*E z6_OcOZH?t6N8`gCj&#yJew-!9YE%`|%#0A!DS3Eg2cNW+|KHf3TknCqqob{wkU@^4 zti^X`1E3blXSBDXSA5m}$#j{?2$7ziuD7Bnbz~V{$%bpQn>pmY zw;Js&4m(1_TY<7OrlY|J<5mk-Qs)|E7PfWu`t>ca&nneNFGiPD+||0!yx+w+)=z53 zz{s~rw_T>FZqq0bE+}R){gGWE^oI<)V)(L#6z8G1xlNsVtmdrHeRjXc+P+lR`rR0eOu>@?EeF>>$sQ2#n9cjw zv&GSD@Q8h%s#ZP2iytlZ8@=rd-3{TlDF;bxTY0tS3p40K^q_zki^pzIrkwbO*9wI0 z`Gmwut=($?X+xsQ-G3N@O{JhUv44%zJH&B!+|IfxN-~AXD+^lBE?Fj+_i!(ssTZsA zR%z5_;X_H2Ou{FcLm6VI#Fp}9W-7mA-p|Rv=8qL!)gK3nBF>^S=}C0Z6;rdplygyk zT*$Eg%3O@~UPmPeu${u1zkF7=-xO~k?ttvPxUg1lZdf=Hd0npeR?^-zTy4AhTJ>V0 zA5hVFo1u|-DTOODQCQj-eUtH30Cfkt)>Adk@>d23-!? zt^R(teRi-SMrjEMN` zZPRU6Ru0}LIv~bjD@anf5OK^!^{0^!Il8YUMa5R}DJu%;ifaolDxYJt$@=g@MUlnF ze%7}AkdRQBJw8s2y14yWj5cV?suk>4!#h&rQMBef`*4Fp3cKIMQ&f%Hl<0MoAvx*^z-`F=a2kx0>VP0|F_5}l@WM>Pq4FxB@Xw&)^x`sHy^KF zu>`oeqiE0^s_PqO{)Uq3iM|O$S51Nc%hz3b<)N@XVjaRB!&(ruzn)6v{AsnfogdZO z4BT1;`ARpmW~V`uRajX2x5XMfGGV293AR?j1g^fx={W7JZ{que5pax_O||7^ucPYk z;EGA8US^jLO$?&!WoP*ywrLxiB)~@c`i3ggZNMzAOl(~A7uz=DK50VHW_z|ip@=kM zSCoBD!1m&fW94d=5U#B6v)iC4ClW}=Z__1)RVku-^6l|iaLH#ybqT`f8)9SZrVuoG!Jm><3F)PpDuS_Y*dXJJwCi5Xeh*;EPwkRk3f*X;Yv_gN z6~(=20z{^?Fu__03xhr|vMUho4G}=beq>DQrLLDQGnshshBEtc|K7_$oO9$}M;|In z-`qzExwpeKEMY|5;_@ETu*zI9;h0pmHPwk!$*9ve^-&c}9*}E7sv3`tjx10b+ry^J zGC1vH@A-MSv)=IPo7yImCe&%AyeQ|Mx-`)ws24k8Aakvxav*PC#;KW^1$Dm?JMkHP zN?KZE-yS7%Y+=n_^9E4I5H^T3+}Pl&s@rYjxnfeU&tv{FwvY)~g0CiFHky;bS())B zcX4~`w+h6~aJ2hxjZ|0~XW0#1qC~!keoTRF7T@ zPhkP0!#ydWYPU^s6YUdf0Y75RL~ixeTQD1RHwYNb+wDxc{hRV9)`69jcBovPTOj(~ z=fqXDtmGEI&t>!3Sl!rM#y@XaOx(xHko>N|DlJqwO2FJ+*JOTueIx(6R(-@GM74$F z_^f}vXWK}9mo#D1L=&$rvp?)u_05@Mik&}Vrr@xO;BV{yB)Yah+Gdty9ahuFFQX>t zs(n&bP)GZGsVhM@AzN3^jEl$}hDnU#;Eh`XR|<|pTKKq*16R_8#w*Tv%xPI3<&)-` z1BTGf8#zmHetJeu@5VlgTuwl@j#lcOeC)Jxf@(|vhuD9x(98tpqBIyZ^N<^{nmDm0 zmQmO9UF>z$X-8!#DNy(*mCPkdB*edO(VNGyXBe* z|Jj}9Zrv#Fx?iu?dtC%-BZ(8PF=5URow00W4w*m-y5-c=hKb;(Tg^;`sv&&Uk9P>v zinBX$a3{CbSy}Jv-Tgy}OH51CFd42z>N!Dsoh{z_G3SM?D{4xE6EC%^XS0@^rx32; zi-V_oLGN>JL&?q&&JPJ4_tcbIF5VX>%n!4J^IXHK-|5Hp5=NCU%?Wg)j`iAw#`}9@ zm&<$plx!+-VQ07ljrlJSXwI0tJFF+g9gpFLu}E5LNaN1Q^D-9qW94K}PSblN+_=Sg zH!`7fbu~SZHFmmyK8hN14)uj_%?@5}2* zDVEMBmX!IojjMm5uyc)eT$}b>B6V08No$sPqGz6%_J*oc?uOznbW+|=RgimdIzn1U z=o9Qqy1OOv(>JHsf{Ky5oQ@z!Zf3lSfF$v`+BL-z;i=_c?@8kp>#CgZx2F>alr|E_ zp{XZ&zxwUo6OH$sjU%~e?X=bJ7kEDoy{pUJbDEsuF`>+v>gjD0r+@fzR(AW&let=l z)sAVsJ`jYuv}3IaObv|kL6}U<8&$izrRtez zJ>#1QX*18scg{uKLz@|^kH zv5RfbT-jHeymSn|EsapcbT1@E}Q8v(YEYhCi&BE zRJPb&{@ZZR%KoPw<8A}|jJu8>L?@i>TzDnESm!epn{wPsh0aX??haJz>gXFPsbo<4 zd%6r0k4~B^q1H6)x8$o_#;o-`Fm4{cY#EBCUJI6D3Zb6dm%sHW3o%N|tUhwNEQBBW zW*#BAR#b}xaMB+@OZ0||#-*JDlS5nGau=1r_1m@|!5E0kl*r0Lw;UD!%0k;lwhSyz zA(XktQ59I-rdrh5c7X(Qm*dbcx>- z?$_NiDK2I!=?pwKz6R@|1!Hw$=LJWH?mJMwCG$yb{QTOFpkK@_xZ5ezH*@`qMe1WO z1*+-Wf@~}6)32NF6SdlT_0PYnb;r;K4aXlxoNkP`effhZjod@U=zEKokWl5D(Yb;` z19S}maZ5~cdkUy&dMz;}E)71Gb$h{O*Vy^hn#O401RZk0@9yPh!@Bs2r#k`N@MEV1 zX1Ee-%`mQISX!x|_K5Dxq^`cP1P+PcTPPniS4Rf3Hao-(TkY#%cE3@w&83%3cP^Kr zV8(um%4;4WdOxlhXYoWMM8{sb7+Ipr+q#^(sGFEoGB3+LC(ie2cTJo`GY$WA~fd?2Pmg<+FEptGsB0p-Wk zmk-Uw_*hg}cy{tVyKhKO*a(l{aa|R$tAbXIq0}+_#f?)oQSa!~GM~>KqhyT+HLnX) z-bpRIs;rj^o%vA&%5R$;0@wQ_O?Rf^>#U5PWul###eJxY+=WCij-w9Fk{CdX-QKeh zf`^F?-zcb`%&JN!hLU%hEJt|BB!Ngog2GZTb@7e8&>`U|lxEWpy(`+E=+=#!Jg5$| zcO%c9o9q3mPIYaKYi&)|pq@)Ut4*|g5xlhPIPU-CCl{2ke%;^1eI7k(#9-RrzLNpH@(ncSfUzS`>5mQ}N^FVlACD zOmYhHA){MCZ};5~5EUg2(vL?OB*^Iy+qM%wrx6S>%Xs9B zDCrPh5o;V1cOusWKg-Ry2pp4ellnybZKd-CG*XeqOAO5ZYcvVwANlv%Q`eavJ@Xw| zu$mKl&s}7QWd7z%|0oFdBdRhSQ!ME5GB!@n=z6_cN6~bI3>VRBk1!ednY4mrk26Zq zhusTc3R&Bfz|Rdr=3o-_JMxE31xo%;Xi&}lBAhT+TQ$b!Z76Zk6!Kv;URmyz;(10v zyWD3l&vWjs@f6V(o4JIV+IsHJC4pxX2`e>t7QAEua=3z?g}W_E@xqUyQ7}T)H^mAA zSz9u+g26z|^FGi{v>$4HVeZ1TZ`{;!61Yk@jN#s`A|yFnVtwgGQ<*5W02qNASjb{3 zY}KY{VlMCTBz961!g0#?6!6`>Qo`{n1N?n?@XLdgrUI z-i$7rF!qfbYbR`ItE&kTZ8&H>_IlL&+IR{QuO#-62(QRQRTmUGc_w6_N13Pf@Kn%Acu$MbTOGavIw5;HrDz-z6-b!H5b8 z#V*yf7s~K0mU*(?6*IC{yu)mMDYgy%PBAtIS|$=cFw#>h8t`spDFHgC_mz5ge;Es% z`$Mws+WYHipE^YO-|yGEpai_G5uX&%k(wlHqI596H4c5e_fXNDBtp`4{KP;Jd>S z)D!3$S9WH-nfH?e>kF*!cKEP&sj9JL+0IU83M+TrA34b_mcyz${A01Onj}iDM#xSV49$ZHJQ%hk|@^?Q45ZEet9$n}!>Uj(@JAb`E__v)*r}!J)vO4z(0Cw-b65 z&h_p_0B@Y|pn;UAm+yfk4k(EZd$B)&XnV5I8SEmjQt?Dk(y1|_h0Q|+xDsuzrI&Wy zwG$k4#9B-zdRdhV545hjHWv2W5oc6F2({_u`eqIa>zVV(M_{)KpJwU~{Fo4owIDox zO2qYXUSO22EQ9(Mgl`Y>dzmN(J@T?#uJZ1ILRN3=gs+JmID&PG+NSybbbkHAI-rqy{E9m%x$$Du+uCKYUuVPe9$`wkFYVi# zUKn&4=Ep5it}7U!ezGLWQ*!rCk&wA$#6t!PjoTZn5rU z3>uXoPkKP=+sp?|pgz7eJpoJE^mF%pZ=4PzXEgrOp*B&tM)yGPWJ6Raa;Atb>v3#h zNt+Uv(FMgzJAt1lTyq;CN|vJzNydULBtr9rV=N5s9o`(+ZwQZd1gc*$yTKE`{=!Q-k6KlvKUZ)2^!=reg!=C({92&e_l zSKc4Zr$_pbo!V)x^9cX*OE^l7!xywQV=cwX-*c`?eAuiSwYZcp(6XveV}3i<7vn=5 zFT+dMcLdGTyYHk2CSm{J*M-k8K3N!btda6dFJ4t($^!1ph_a9)ig+vq?Z-!}%fURn zso0FLMpGgCa51po!Cn3vr7)`4sQRbrv=^$`T1C)JtxGhW zw2MXVtm5==tx017OIVn)n`v4i+ZG}_HJXXs{IZKk>tx^P((}GD^RDNQpUlu^jaI=9 zf|#GA1bKtAW^M+|;Rt%3Wxl*uI+dJV;ktEF(2px1G)39Ts#eQmkvM=thY_KnUzMTm^HJK9IJcbYj(;l7Z~n-M(d%76Z=nhCe>uP+5AwZ2%3Tz zI-dFnJNY}zE);H`%UsC=;UqwfTf^p-<9Z(YG`^>tfFmAjzxOrlD<7FxELwGHPs&0 zX0^J*1ip$42BY{&cm^Xpw7`cvDLKae15*u`A1h8LZCb?jZi}yt7=>O9nhdH^Q;cx1 zwQakQWSnQm5pT?s5>_*!RNGv|4MN2;awFWl-B={F5fv-Nu9!9hpC6Ix&dUs=7G9Z) z3yDfCo;Uxprl2oy)IYq={2BFiX62k|8D=keemx(3!p{xI`;m{ zs1H$Y{y5MlzpR_m|AHKPz_OQGY;yjW+5OeKEZqS@~2F-kyXk<0tLAw^kP%{G02Da=3su`GRr51yW-*_sM@wh+XbstjrlRcrSFf9OZ3 z!~+HYv_0nOF*0|B5W@e!ZT_f*7r}4LRDV zY})2Y=^f9P0IYJmcclgw>$@4lqJ_sGdyVn6=1>}4_9HxGtq-tFuyvuBm3oqWrJ8Nx zDOH-Vqb+K@IquRS4dg{wk!ceq+0SDaV$@}nOHm@q7Y20V4sq#$ggXYhUC!AbgflSQy>(QSDg zV1Os}r0I7yfPvvLQz7C-U{N1U@p2VvEOo^f+jMd8Tex=C*Vp71s@eI)gjmDv+{%Ge zpFQ0JyvDvt6JlW?>kt3JEu!VwN(bHi2mU>v=B%EKmd_Yr15sVLfWKgqmD3NahF;!# zJ3<44G5aq(cp#+CF(XOt%Lp`|J-3Iwo$<0h&nOckBX^#|2Y~&A1vGg4WQ^ay6Lu~L z)NyD56T5Tsj0(;#HT$zwdf^p;mn*3P%09tWjvnK=>#b#l;g+0xE6M5c6j__~nc5>{ z`L&7?6&pfPK9o0ae@kjOODMH)kJy9-we5Mk4z4pvTj&I*F7}!Z7S%Z}AeTtH@zUq` zkUQRGH1Npmt@BQ0Xfi_;hyo^4~Mro0NyMC4j(=l7Pli{uivF* znj>(kEX`@wXdW5z@8_qjAu#v&)bQ%V8pU5S`=32)hypU%Z9QlF_V3*sd9<7t5JBzg zisOGz3?_gW)sTM2*rW6Mi(ChT^f#i7tSy+$&iH%M_J;w)7?-paRXQ?~-v|h-B0$-- zKFy=+_d78b6#!y5vX(O)(#!s{*|c~-N3h#o$TuoLfEY=NIE5o;!|!AJe>0n<702_4-b5Fqr$1AI7gqm0Q9uAuV&?rr zStQ&qr?ehO%l}!k$Wa8?>B&Yv0T8&6YKM=l-+47n4OlqNo;QQ*?w22kU-#4I)ZsKft4 z#moYPf!(50&iTKY^Z_UmVA&#djL+Y;rlAe2jxgcAPQVdD{I*E`UH}OT208J653tPP z0*La_i<$fH7VecS5>QtMmSQ|6{%$Ew_s0UlKvn8u++mc`e+)9s3}AyLLTe59?9(UCk`eit9nLgK*ymv{Vqy+-`NXKrs~z2Fca#O zK$%=ISEwv(8Rj(|ADE_0FBSgMcE^A7tMH0eEy<%ANXv{t; zaN(`?UZfdx8n-IR?gZ^PW0e&_dEp7w{?f!k*+hy2#{KYZ`@d}VZr$T<==IHSfo$rE zEEV97F5%!z3c5rAsm-lEn@I|+z-ZmZ+LBGrJ5n|aV&X;^vlutod7r)SJvBR_j_=%I zzvzEbBQ5XbB2eM!*Ccx{5P{JdH2T%#`6NZ}xP^2gLQYp342WFKm0iZ~T4dE5X2I?XZ^H zN3%ZOyKn2S@AXNq!~aZP35>>sE}yt9oGBq<>2Hb}3|LX4U>lF&u@0X-U)n0viS#0*Yc$KK*OO)B>%!{jdxpm7Eq3)jT z@!9$NWbBM;LwPpGXl*|8qjZzSHQt{&5t+etYj3{YS0n%4veLQ1;Vrk1VSW7Zz-w>r z|LnZD?;E0ieP3KP_c?l1?Q@f3J;VSv*^D2*( ze6QtSR(dT)^{(}YgDHKrN{ zTmRRtb1Vu~LaSD839guJnSc19II#bcx9{z|E#Dj6mrJ-+uGTg40d<+u=hQmRdtLT< z(eby@`TM7TvwE;%%lm`Ompdf$6QlEg#JEg(TA0DgL5j`=!qP*HY{cH@UvQ zWk07d2DmoF1-L-beW%^?Ii*g9|8t7ve&0~$_c-j{b7F6S_v=&EQCPABlG7c;Ij@9% z+LjVAb4PFKRnJ@VZ1?%Snb!9aJ)lubvc`2HKmMEMo1DHXl+4Wl1fH&bF6*2UngC8% BgTw#; literal 0 HcmV?d00001 diff --git a/packages/gitlab/img/gitlab-auth-dashboard.png b/packages/gitlab/img/gitlab-auth-dashboard.png new file mode 100644 index 0000000000000000000000000000000000000000..064015e7925f936c4d270aafdb886373e0fd5a26 GIT binary patch literal 137765 zcma%j1z40#*FPnQ3MdFjgOt>QbcaZH3rmQw)Y4r`h=PK2N$1iFNOy>WOLuoHxpe1$ zpEtkn{d}MQv)6TBcg)N=XU^1_GrzN+)m7#29*{pkLqo$;kbkX-hKA#ShK3n&9~>)OCcd4PA+avZf*`#4h|PDdskCW4tp2+zZ3Z+!C3_7NKrwa{GG}HpJ3^9{mOBB_1^G7S~T?gl4ux@1JJPk#XG63y;Ex+RvF08+xH#Ah`mc{;(1Z~(@kDICk!vg63|ILA_q~t!y z-rrj8L^89ku8unOo+|pEwW6clLqS8Od@c}~PGwJT8a zvDiWhsQ$FtVrA$0x#9pz?w6+L-Mt*S&wrSfm{!_QvPkyWN@_DX7*9!AS~%kasrw*^^QY?JTeO9F(=dJMYf-MH`jYka%Q0*H z>YQkkm3yQ8=y0`Z{Bhz>^qC)Dd>ekW1FN>4+&^;4lPx{H>}T|3lQQJJKPrb#N@{s{ zc*tOBxqj*CEy(<5>?E6s>zKNk^gxTc^SFdq3F5`s3Y{DnwK{ax^^xbtqO82~miYJg zYnw2~UuEJy{6$IxFzU|D&OX$6R?w0EB}@8Wz3MkywmwQWmld->V~SZ<#`i;&GKM`s zN-vZO&CO@YyLAVSn!djaRU6>c5!c74dy!!%HosAQdat6gl0{;HYO1!{pM?wKH&kiW z88Ot@1*Kbem7$N)-3egM7}Wizu4=gi5TO>YHR12`e+=0osmyuH`EJVEv9Y3Tholt} zm<3i0C+XnNotV3C(ZdyoLD+$ptm>$ri5lMez26P>QWkXFSwCVo^uQU`hAl!gQZ*-; zAk+|h3&uDR_iW_k$(img&fZh@RVtb;jVz4N5TA;BkT9kf`2KwiC)?4@L zEG5ZpKU8FlR;uF=N==6r*!@u3YigCcIYie+TcoD6aP+oQWSv;g!~(2yY{!LHd@y*> zK#o;Z)ZIu8ZYkza_us=2kySCFUk)dIq zv5&W`oY}_#C5Id4I+pzgKF^8gRV$X4i9Y4XzgE4*UZW*|oHGvX-n=eTrmLugee$LA z2QMl+GtG_C$4&3oGWJ73BV{QOBiTll8&?W9@Zv13k1q}%hH1ARTFq9OS*(v;Ung0P z0AfAv4ZzPuADJj!n5$WmR^p$kY%un zbE_>%0LVNh!P>^!64$S%E^HN`tAc#x%&Kzdmi_?$?9)zeM6J&r-L0EMKE^6Oe#0V! zkIHxfSvNGXnK2Q<{8Ge2tG8e5cz^Y3t7CJK@^@>xWHaIUL^-X2$8+hMufpHjO{p0q z?hMjA$F}r>dGiFk?w}zf*2`tzpyO&=OL8VER;oZ%%i*ZKhy(*mFeiic`YbqYGd%wD z@$Kbsdt);7cA>REoN#WjS)VVH{#NG1Vwjp9l}_MHEt6|5&Si)OH;zkw@3ex$b#r9t z-fUb0f30|6Vd(*EHJ}>H9w=~{>EW=YY?tC0WA5C_>p*bg>%$23^&`5d(_xR$CS^A? zO0}A7vuDtHkRB=`7ZTYugg{;u>J#}pyOtbAZRju@SjK*iMX=2k`RB${zr%Cm@-1Ig z-^L&3iP>25Cpy`d;Wd}U!^`vy*_>gG!j|FH6`7kC`6AoYn%ZLI^3}MmCDwoh!ksiu zDWCfq-_PB8SIOf9tPqh(p020%;6SX>M;k&b6$PM9D0s;vf zUHv179EH)O$Zwt=l+E7KmJ#s+nO-w$!{1yIt>hbr7e2fI?@Yfb@hT}ggin8~*`1Ur zBpuN~6p;)fhhRjIi#dnXi~1n@CQ}BGxy5k1beH`5I;Dg%okshqhS*_FP=T#Fj8iKz zhPcTK{3z|Snl@SPjkiY*qVN52it(!1z>N>f+UlxC*D0(}iMc1K?2_sNUMhw&)>BT> zXFV|=1btr%7O-90o(#YySX{VgKh$_SRPRE%aXBPyjhL0ONjeacf2-Ti$;cNj>}DmM zCL&uPKH8~!>k?O)c;>th>~B;l<|0&r!JnPc2o~8_rHRx)zZzX_GWCnPyKxwCn;#tV z*`&x(HwBR!>raSh6W?^}cMgf1X5Ox4Z{1_N9iy|zz{ zt|1Xv0NA4R&6WE)@IyYUOtbBpH~w&~Uf1q;H71ofxsnP7W`To4i-%(@gx`KXD>b*N z=9$feQor3mi!_5Oa=Iq_7XYd7e*R%%NuJb=Pa!8(>hjymyaFq7{#+V`$Ho;k9{XSS z>Mpzi2kJg|LCk?Oax@vQ7JN^lh1ISxe`i0?z7@d$)7YzQtC=U`&34N(mb0n6Z|X#! zl`X|zHD3s@w^~;L;Je3lWH5q}I`})?4U!%+1B0<2sK|<2eUKp%uY8sC>Yonu&SH?C z3<)<>>fIL;uZn*z?s`fnCJ3Qu<}VcsM`|C|mmwTBUjk0JZ@}&1)8r|yIId@{9_`&t zM(JJ-tP{8_ER>3<5{`lqBT@EyW2w7)q=mdqYGn2bP0ID?buIye$QW zPxW2SMd3oTGqv~TW}B1zo>?azZB&lQ>14#vFm|O1v%Ug71h1b--jTR2zart7kChaA z1=(C`=cxBL8qaUZvGK0h{pB@w)MGYNSobOQERx_jTf%I)RCsw0s5V4E@ovnWaHF|e z&IK|&fezrf#+$KQ6bz0dNpN#cKct><7EMY|X%0&AGnRG#<{mZ-oD<(M*b+qZeM zKW*akE2!sn+1Kx%&9D8Um_V_Nr-zeYsE%kB`-|}%p4Gc7kxtX0F9b}jE2)Q!R zeJ1Q@)UvAVWDTx>oS6#yFJ+TUshgQ>jlh}@qwiTKa$EOAV8*3K|NQoh`2ix+ArfGB zoYNc?Bil&u!#Q=4P)I~XbG!Vl%>t7)?9OM3DQ1%$+NWO^(cpeRU$?2{d0)-2BAYYz z*f+Ja(jP>AEF)3R#J($(>o z7Y0>4s?E2)Kc(=wxBUWh%PKknGjaI}7pq}YA1{rn4&j&g);yh=02=WW;~2FS#aNfd z$%psDX+)Gy;?mNJF@gxAY{_#UHuZ>Bq5CD=y(K;}I!ctd&3@L8O@O#zm}D!1Dp!u{ z!se6{FPMHL29t0AbKZweH&jqF&gi~RY;N$-MVG-9wLw0$q*t;who!Bx!LVqcNg^Q} zGww0H$P|;PvQB6A)41vRX@7jj0H4zgCGExWxxVm(vU$lKJv;SAxxHDru#4+eQO0v2 zhg)Y*a$<(R&e>R5!G!lTUsczSyW80E?J(M+CI*e?qjz5&iG!V`-*PqXOmp+ z9RG_OwP`rNrt{_G=MmO01B`}gx71coVj-uRmN-bw%A=c;lv*bttT{a!hWn|Gr%m1j z&&a7oeGSu6CMYk=mY ze1QKpdjK&y(e<@*V$pUpxr`h;M!he5&#SW<1~@?wpg*b2l9qS3_!J@}<<-V&7!}LG znCdaSE(Wdt+q#G&wgXY9cN0gNUm<-n&vSVQf*qniJunB4Aeo(ssk9Io>Xe%)P+mZ) z)x^(fQ%p_A@=J`%QaK#lEHTW0k?Ha#!dy_XpRL26nOqXeIRq3mr+s%Y(v}9gsuTL# z)srSpUt#M#;E;>$4u;%Sh9Y)9;~1qjBZmZ%GV;zqWq$(F z_~y%@?hc#gIE#cEsAwgnG=dw@Ba3_!ekZSN)dkm1emtd3Q#Xcx_87-t;MzfSZcIcQ zsJ(R%e&MsJfxm0vbZ^|)w1x6lICSX_Se(%)bg5nRU{c}&_=s=qN1IAl%%+7O&5m$R z*wW}}eWEZ~5UH2m`@$GEU>mUp>0M>KYF7rchroqlD|(tBBq0Gd)a8gv`b8>r)OQQ5V@%sGAD>lSO zIw(4B&pO`!Bv)=PYmFjsXq;ceT_4ea91Rroe#a|31DWC&jTAR>l2qxOP3N)p_cEug zCa`~9FUsQf$a1MWvg&-4-KKvbj%-Be>+aS}jCmwbV-E#{%{lCz{f1 zyRO*dsoGkn;JqU=H%7n83p@#jD;Dx8mal#b&W0fLRu?4!w?`8Ai+(kSv?|M9HXPwH zcD;ALB84>mD_!9X(t6zX{{FsP)z-^09*5_$kn&eEy*ra96xxgMi(cQG+1d&pnQrDD zKW>wfIO%bNr$oF2IHlowXjW>`_}VuyDfH2(|18?Ejc$hkwrp&Jv;l|*fE8(yf315TOjWZo=fTC z-jA#+Z51wC%nLu+zBQK5|gAOPKOy>6^8-j=#nuqWn$7LvD(#d#oAwGz#p zpb#j8i|I|@(${#Cn9q&Qn&1Y&taQA_sr82B!12ROtn?!L>ENTMyW1t)K5BW07z&&> zCREcOBA~0ooG)3-ty{n5(-%}{JVYusDH{cmYu>4Q;Gb^BFkbR{9s`ENA7l^8kD1HPT&`yRp+G9Ft6ifUB8(wxSt8?%-C-j!|;+= zZ~r8l?#4AEc2B}LhTO}mz%IvwMg!MyMfP~e@~l6(RX5&Z_q%=#_W;cNTybiZ4pMfT zYDAI47pX(tRE@~wZ^e^asJCDn`n7HAS1^rs_R}O6k=o2El}m{~d0W5oR7}DJXTjWU zD#^fl_3E-VJJCX}IMa%)g>G)P^4>=rZ=1OSWh1YlAHXvuc9vU%*uzePutx_uk%^U0 z1mLA<+zmlBp$#84Ff1%JxxKQ%%#~)*ROHS!%~gt&l0#NhP;;<5hBDKnbg&+>Dno}?=Cx@O&(DzGcIGMo``@rKM=lh7? zZY8s!akybMVehEH8!H~-CY9wi&13_Nd4pJ&u?nqf(BVe^f>pHbn+|X`EV1ORiOC#I z86fR>T)a7v5~3KZtfS-Av7d?WRdG##^xa4F>58b)*9RE0Fqd$3b0iSors zE{7#|p%I#1ano=f`{x`BV?+Ij^{)8dS?PglJ#-!1dBxZ^yGfiY_*51;sFg~A;N)1V z9q4j(^CQp*cea1VBijDLC~+z2NHtg7>})}l8dp@YoWC~n4d}F6NI`c0VGub{S$2YN z(?k7xtdrN*ZEbAyu(=Qg%uQ2r&3oO>@H#$Q=X3+M9*fsk zTX=>(0;7E(pU-7lUdah!K57f%nGm1M41+ zQ99sL$`3TN`C*}HX^ojad+CB{1r-jUlwNkDM;y^XrAr*iMTO5ebN6}U!^X8%&}eMP z$X`nZHhfJqUsa?PWHk^VhVGbXv&V~u$-nQ63DDDlbqCe*M+*V<(=by{0gTpO;@u5{ z02lJcUI!n{0Sz`}&sd1OBH7*g_-;{ep!q7bP;ukZFUp#S`Hym>ed$fAC8YXHXFfQ* zYT0d&Air+mnPC9yffdN6Sl_Uhb(|;iO=YGAof^I`(z5CD53^T(Z3K{vEDlyvsm0a1JsQ@(8+^)uA-*n{-buqqvhf6yQx1@qcX2( zB=y|^3W;;<19&N4q_}MfC`Dz1Ja=tyyA@-(;oPKU2}pMRYV_1Jwxeyuq!m@FX;u?8 z0E`_O*y!+FEi&dV+HINq6b@$`x5;6dw)Rz!oMMa~YEf6G zz~4{=(`*zWzQqTWno`V+hfQPGsdMAlF*>r@A$GMZ;un$r4#S`h@(3ZmVg^%1U@7Ps zxUA=>?qF?+)$@vUVEyuP!Dnp1Qq%#dB}xkRb{9{)avL95vMDuzbB`I==mHd?#-rEq z#*;~0UXF4k@d3`*S|yy3|x3T?I&AnT9~MTj^AhEqV2{895nJb()V&k zQ_DCbtn=|51da6kH{J?O|dki>2#U)oDqK(+&8FH+DfSe zu7>PR3;yAKw7QeOO%>13b<%}Zq4_(UeC_(iYfUIIxcp3W`i);MVO~{A=cCMLfRB`2 zN2@3&Wxk(5?V~(nBYN#9-DTG4mWpPAF6~?ej06=Nhp`vi%Mv~WzZl|vY=*q%u^@C? zk3&e^*qtgzq$@G&G5aVgH!AzverBW*uuK-s4JUUHUyy8`OMUTyIY%7Mx2?CMr0(*o zyF1_S^K-oxYgMX|K;eU?T7PwROI!nwWKAZ0jOrNUyDP*So$)uPl%q8-Z>pA_xe*+# zWES&4DiK_6YdgS;pVho1D>?3q+yle6wdNUHK2p7#nkm{AJ5b?eQf^a7xgI=RW?YZg zk?rbqYe=Rq@{(sDRyaUuN7!)_NhNYt^r#n*=IVdnTm+_|TfhrHkK56JtH&n{kTrJI zo0pE8x9Iw?tn_hkwW)zTN)0L%fH40!FEGWC_ol}ldiqFR+HP~^Lfa1_p@>;^`*cUD z#2vgbhlAU$g(8>eMZ4mCb%Va6P5XKB9BwBwwN#BjnW@QHp$(CW<@XTRU5%TMeCcC#o2?@{Q4+=~WV_3yX>l=;bhMejfG9ld zm0G|_JhH4&j-a!pDmuYzE zu4~&(@tEh_WynD($fNN%QM;b?nh?yN%=M3)V`Ote%& zLztyQb942Ts+mzQSvAqLS25u)g`|5`2j-hM{tb+A+%91o5lPHe7eh*M*Rq?m(B7Xm zMM*Piii}FJn!O`AZb^Q0^9}5;^Z{m3=Beo>)ClF;m=-lCqEN`5@k$R2kyb1cvgxti z)OZ+RCuAJ+wPIy;teqd+$u3n3IS|!jORT$TU9!`zUx{#F&ml;l(rlk;;kX$ytnRAc zf+oBavb&(ud2sP@h!N_K7s+@*5@bjD19IAew}n!?jCq7U`c)lZ}+v^HQBuUSl?)U*-2Ej zzZs}UrBG1|g{`2@7>b~2%Kh4m^-$jmK3L5F%3x(syzulXNaRQsKnyGo4D~m66h9#o99C)WhcjkApb+By(FN-_3rQLl#&&Hw?0D|GZ*FYzA^I&vO6#))_jouhsW zqk23r^uQAiZR@WRfnQ%>QNXLmeD!n`O&nv=Kx2Q)s#e4a!|M?|3oa0j6<{2BOFUN|F){y zWJ)dNtJ6^JwSe_p&a5t`1!w}iR?4E^C>Jlxm)vWJh+rWHBN;p{7kzDYQy5;F`rh0Q zut?ZA%uwml`>TDc9_pWKUNNhUazS*A7eauc^VMp7cdSzxA(5R$E8b50MOa>-bVKXB zekoune_ciR>FrQLVHevo!X{o@PVuYze;m4Tb60K*-0K-*g=aQzcT+YHMsXnS@TorQ z?238y>*Ib+wn1&vVFD3r-yAgf32pK5ZIoBaXk-bWP9$SBB$iEQR(Ladvi6OPq&c9k zSl!0x9Cr*<#>ZlLF@9x*#;Wka>k??2%un4BkBmF=$bQv>ER1y5qCm}t3kPN)n*#B} zzX+S`=88TVj0e-`?AIhKF>T|tsXfB1yN`lFEDHS&I8<&ISgV_%-x=Z=z#vR$y5X66r6vfc#u` z?FQ*^>qq!NEYno<%?1%6Y4u3n6TCC6D<#poGLnznJI0$+9TCb#)780Q zP2pJYs@rUV_~-WXEg1>0DOtPkDTQ0bArWayofNHJ~cPb zhKGR0wy}K|yF&u-@W*n_)PwZa{0+uHi4-M3!&|91v&iN4iA1yQVu5glK}gQV7GFH@ zxtKaYnxj~Lccp?1Dicqas7_Y~X@Eq9|SCvT!A z)Qkwr#(|eznz+_VSNaCbfjn?u_H@4xc;D&Kbz#|ceFzCsb&Q4=eV{&>v%UN$Tcco5w&ZrqM_MQq=m;Z1o9voo<0UA6gzl^%s}ccEqW038eu0FL-w_1o5#fzPR?S7Tyg$4PbE z1Do`egYf~Gyh&PTMt~=CW$~?w$A^$DHE%Clk>PIHo(p$h2+P?}8a2hRB2p{uPQHGF z6tSbbmRr5@%NJ%cKW8MdUYhl-Mx}?8w6JYWVt@c@4&d=cIr9Z6_!M9X?7DE-_^+YR z?RRil5mh&dPA1UsOqk%Wy1kMI2&KXEn)JTSo0P_a&{AjL6)>m%Z0v>DiwWaob3kj? z3^=JSuSt|9BY!^Dg?c;xv=HfX=Qht;ir7>nk~`B|iT2Mvql8L#scIeNq4O4~S;l)c z(%F=CSHz#hq%!N*)3rBj3Y}4YfdA0Xa5IUW&b*?sx?Rd-RG_ojoF zj}pr{9Ae*QD!<}T!EiLN0C`;%_9H>mvl0k)?GP(!%GX4lcxC+^WAY1{p#~M^DcJW| zkIp~16y@%t9J!;v4z{PI9yh_jdXH8<{tmmDcdrC*K6$>;JE1{jDw<}%%V%qO%%#pi zIJ^F4cMqXNW*B-ga6>w_OS-W0o$tKPdk)yBFTED_+cQZTAFhk+nX0!j@!@Hu zm=daIYMNW8sMPeu1 zQ0dlFhhe)WI5@Q9>yuAm5=wHOrHilnyYcL&zfQ|(-w9OrKKh9urS}9MCEmyU@H_qL z;!eKXA1?|_G|Qpan$ZGFkj4;pqwnIc!a=dElQFN=IKHsSajq>?@dwqe(QuriaD}D! z0xQ7P<4zw@(9ox`S!|^0WBJb^dNuV&G?_|5ALEhOS3o-2wU{S$)fnBK0@ft6A69W- zw&*U<(w=!D;P3YDDC|I{#XVtv=TGUIq>?!^p2JzWl*yF>@qRP$29-f=Lw_K3CIcj! z3FhZX9&6jR12-Eh`ht{%Xgz`YKP%1>o#E}q5m5fP5+DlxX^Eb+PWoRa&fSNej)dy6 z_BW~+-7GJ%&n7aoB>3EZ{viG%e*g^kD?r;GoKy0{Gu>f4roqcoCmUy^QSlGhW=dk1 z*hEqn&8KeRglhltM6E(E`zLiAN{_a;8v=@p*@T1>Zoj`Wl3@Nq^Se3Quo&a)^`&8P zzAceCe_DbygCAaq{4}6T?S8KBBbEEVClb9f}#Q2>^{{UG{ zM6~e{H#NHh*!rLTPCx(AEegOG1%>((rO!Ga{t3~4Lit9OP@wYdHPBCm-|rd!H*q%= zwDy?>_n%zGzr)u4$I(!x@dH#RNmL8|E$T0CQ1-*FMTJ? ze^%sw3;MslN*WPK?$?wWz5GJ@R|H8!q07g6dO~C0|8Cg-FUn|GTgfQgx*IaowCO(* zevgoQiW0=wSU2_Q?+o|lcZf*ro6hm+$O;8GB>_+xH{Uix;|2FL12Thl972`?{#l= zg>P*a~R$j`~t^vT*PiKek1`q~MdamE7u5{82(lxsc<@3jaYf;t%xp$q z8WXnpE6Er>qjTfsHCwq`d)6}D)_5mdU0vSAw>h`N$&F6t=7`~`hh(cuh}RLmu@z<6 z4#^vGx}TX9;QCJ&*L6Qr7rE=zlPN8p7&lN|a#o%AHlfD$|s4aoMBN{ zH`b295j@aNrbb|SG9@8?#Hj?kElWI)*0y)^aLJRDAc*gSh%?4A$eOE2FOHKl&dkV$ z71~4!rE2*gGy}!Qi#R5z*B*60TF+2W>~q-9o(c?H<;!6X=L7M1HgCA|=6H^ga|b zR8$EGIkzcR7DqVem16yz6RITpy^ZlNd1nZt2KGiCx_EANU^uVD)Fv1h$krGbjk_mY zmRGygJSM2%i|zg**Yb1`x!FBpMWQLJ*LreNlRCu?jbYpf*;XfWo0-z9$X`n)PgEb5 zwbIkw*HXlgCqtw7G-6{`$`h&iZaUd}<*)}8U-CB#>HiMpe|CX#74!>AlbCPaHr!pX zI7Qi@07i7;wlyyYo_cPuK1cX^olLO_MnY-f?XD@nU~hTnO%`q}IJCTE(M2V^W7LVV zj^X`in}8+TmAs=KsvU)dX(jC+Jn8u-{r{Ns|GtLu)6!KOzXqz#(_>)Drm)A9?T}kj2v16?or1wouecu1nJEO^ zRGZ`;yOGuh3yxt^#=o$Hp`nhKP%EBAs?*cIU@)LzklaHBYyAp}|MMB|AB|-ri?RWd zojNuCRF(fE^#--{jz1^R{c|n+!-OdyLk~$7`eH`|QnG!Z0`z)~rU&tF7mLUrWwlXQwsJMyRZhvu`u$~A z!vBK$`-k-9EP+}q`o}w|V$kI$ge83T)7%Q8v7R4Av!ycmu^L)i00v+cq+ARb3t!j@Y#`ThszaZ82Q&CxPGQ8W_^u?Z(%i7@8^VsRMB~r$j^{^L~C-p z95-Ip32Awnso893x9qPbn5|pSpK8VV2}K&WWbvR7A6r)?Ma&{T}y@y7m=zzh+32$WVp>t26VYR0^bm zVl<#olkA)>Rn4=dzPyP2F#n18DrDQDhLoMlEX&_4aGJFukAU@>|# zr4U$9c6o8y?q`FEyX;qcdS9%!jFqr0?c3%vn3(5jQIMEeHr1R+rfctFQFtkPT~xHR z+Q6hD;d!|2l2V{?DS{t1dT6b58XcA+c5}Snrg)-7EMgMd4n*zC_+f<>rLzILic_=R zS`eKH?v8r99^qh;s(8Yl>7$C%m({nCQx9JRVLC?OLl?LOB4|)y0u%y!i*hE!O>@+h zA=w_gIUe(#s&3WJC)mzsjyWyO4M|%K^BiH*_JpzWo%39w6`;?xfa|**7aK_3u-3{Aub<#TLSZPm~V=I z^(r|DZ@%=+1;NcW%ww~~XD_$@2r)CgZ|5g!uz0$ZWv3LbgHf|!3~v~#a8j~+yB79S zOK#ut_NOZsT{uJL)l_%TXjT$|jB|Nii95qfBfG<$4Se1P7f1b+iLetWy_1fw;`pp< zUW66Qrb_Q1s~9Q*WRauQujNj(^O^>vDD{i=F9G*r{vRytr?AhZ{!%MHrJa|4ger;-NZBe@?=|ui1|xSPa@|?$&|mQ_NY7SDnrh8 zFn%`Bp+1_D%8jmiHBLME}w!*A({ z9h0^r?<+b3fn?=aZq+A;28u8Aa`{?fI4DpNJzfpM!z&UFSw@EG`VZ&r#nN9Zo&6YD z`oU{Mv8v*6Vy9r2>{$pxf$_8PFT^AOvtG$9ewj3VbAB-iyAe4!IMsQZ+mV`Ai?Y0K z%5vSm;Q9I*%<`9&D*{rjSj}!`wVy+)R}L$hb>a1f_V^r2nmsu9 z)H-AdgjEz`?;Z;|T5v8fZ>F6|yzY@Jq2+MraBSqP99>^Z0(nT&Br52Y-+oF;K>^N6KkA9eLf8EEfK>gyv?SZ*IMhebdja{h8JpVwAiVyjEaS?TK8u1mViKmQBhtW00@Zl_~( zP)85&R<750`iGhKDa)LQ%w@{e1R*LQQ!2h>W2CrP{Hwhu5)}f}zwRAl5E3$s?YFzJ zA&+@^GU&k8rMiAds+0iB3X+S6eQ4Plx|AwGIzm+&k-uO5cx5Tx8?wLuGG2&c3W_-= z>h#5LZXrxp{m4RPGhKvfs}<|1T>>va0fN&1On)zl(3 zpKdRO9qSPy4s1z=V&3b<1~tx9&HFp_TMY&kTxav*PFs&S3=Roe9XR*-+;eXsjm2j< zU-Y@%Ja&a72gENjFQwB>)Fm@~U#2w!2hX=d64$HBIsUs57mJZ%7CUwvr5Q6ND9Lv4 zB#B9raQn+d(oRVzNhz@PvoQp@;CgeCW7YfhNtIuRh4*1$VU<<8Epg^tm5^e*X!;K= zDQp~^q11Z+k!bqVtcy(?-rL}paZyq7w|;)S_On*i%?ITS`!t9;- z348Ac`iwG#;8STFov0?eW<2O@IY9VtJoWGQxk3tP85)X04%R&4lD(tTy$_#s4{&A{ z4zwyJiMlOw)GBKq;1&9^qA%uWc*o^u^k(1S;5!AJ)020tPd5W|3r#0SxphdUl+|_F zG7RG}`@1>R=jw$w^R(h5w_{shI}MJ9HMk_~y~FP=6>&}Q`#PI(EoL}+U1J%;QwR#c zskYgHo~p<60 zrSFcfCdR6`QQ&G-^pUlNgK$fFkGLi_Rz|D%US@~T-XH~-9hc<-r^raMSE|**O52jBKpH+fsaOm$4 zZH`znRn`jN`q$-H?{02XY~aYmOvgwat>6wIFHtaJqSB49v&WHIhggj*(MP3(P;raZ$ELNG*9RAc;a<* zjkXN-L~42h0-CP~h6;HOM$0?|Lf4$&H7evd>JM*om|TYaPRG=)`*J8_wpnHr+)E5c zD5*oBOo1zVc>}8s;vYvK9&@=1+AT@0>0Jy`Z&!BgBur>xXiLurAKw6UB|amzdG_|8 zlmWX6f#`n61JixSeFUG6hg~9%-0(6#D(Q~=ppcCzE)LsrK?cLFXLauB_Ed14%qJX0 zy)B_sn&&y3H?BISIcZ7cd~v)?EA-kHjwNL&8_xah4@+e_#5*!7KP5i#EnP{jM0PUKxmBNCbb zFe)UNzpbEp$+h_Nq3k>b}I5527pZ&*#`-q)!l^CAYm zQWT%Cq<&^QLXy`M4v48phdkmnG_M@cv4ABl!VWS)GoihZ#-)8BVj7_zN!4NQorU&3 zA2xj@3~Eg7+2>2}Mx|2jSPd`o^B&%;rRr0t-3b(lf!2u!lQBQD(t=YNucki$c(YOf zg|;_YF077M?MN{zt1DW!N1H%yyL?CZnlvuyScTlVp`81Jyhb7VGn(DnEUiuT&9X@R z?8o@~o%t3+A0qXR_${|B_jMbGo*A!BvnR4IFb!dR>ontOdPyFkmp-vttNta@?%V+5 z+o4KCcdsdUGNXE+*70-&9pF&R$MR%s8AvG>w z;w3AQSXg4xom5w=JPOL~4z4I8vEth`v@f4~E;5YY?>&YHoog^lWQEOC$lOPYIKBa0 zt3nW_Et^|@3ewW=Hxn1`a=+ySJ3ChI2yZznvy5FW$90_(d^ou8TE=*e3TUnFMoVDq z5PEwytF*TvkPuK4myExErs0Cw6IxZJDqhiS>#DnX@*zIt7`-!k8N%pobpOe{_r1USP2Tr=@A|LxEX-p)&+K!~KKtzb*`KoyYaL)F`yWBt z$-FnF8p-wRi0I+BRr*qmY7N^g z{MK?NS~Pi^C5Q6LL!MXBPSpmsJEH(TUjR0`l9W6%Tw|LhHu$DnX}VzCR6EA!JMa_c zo2YMnWajjW7#-b*G%Rij5iC21=7kB%b(OwIwyU*LH0+bAw9#=L(tg`r8F0&L!dAKK zDViVNF6z)U5Z~=74>UB7%I)YGchl{lQ0Aq|mT7>-FM@Rl<`eRJDC-e(-I_Ns5EcwT ziOumGbaFy8U4T5l(k+qAxM%^f-05~~pwO>yW?(}lIAmFHjGRlWaak*|04bPwOzzw^ zu+>AAP~pJ6>l!!EfPPfC;oI8$Q^I%9b|8zhJ%tJ-cCL%&K?0dx)X+V-xm*N%qt9W(ak4)_B&dM_s5B3MsZOU<5&=A~d2qsbS= zj^q=ciHP0xn(|e;WApPrh&lm~!ZjdM867h;_w6mf`}BIfH=BUnZjUpn-B z8}nKvbVF*JRtvHQFMACb^?Z-dbh5OR53Z%Od#(8bay(bY`bP9?z=jKT-gzhYKjBrG z{&?0QmccldU4y-VOl%uQYd{HK>?Vm*=3z5RESn?k%oVP(ZS(CtQp?+P`?G#6LH=35 zl|;Z*^Cv$0S*3-Wy(-p<%gx@`Q02lcblp?r@&SesOO(tWt;n$grrE&avbk^J&!tTbz57A zwzP!DFV5Qrnh>2<<_im}Mwp@p-=CqeCOVae9pcZ>5BGVS9hsI7y*oH^m-2b~_0X-& zF#{cC=u*7KfPO~g$(p$!oNs(zm%e>wlgtZr9!HVjQB|lU28EU_QPzM!3kp3JHXyK7 ze|`1ht%A6>CFsz}Ef|yl@pjNV2eNpxVSGc!_yrMFXV5+t zyQx*L1Nxa1+aT#6CX!SdX^B7w-(=E>^7^_1{7Z$slLLgk&qec~md(mXzNJF8N@B-= ztyB39Lxq=RKSXnd7DZuQrzhsKR-#fnC^)YA8m(aQ1 zf<^e@*Gkh|Hy7y?tdRw;GaLQmK_+;|bR&`<{5p9gN~z(s`()I5PFg$0)&1*t6i`Th zO4ZaJ#Qc{!TC@Pso2Vof_)0o7%XP1lDEMhOZXOP{8?tm7CSHG}$hd3tj}?-%=uMKa ztaiMmBN_G|oJHGyfhK3xm@E-J5w>J#KG{6nd|{!`;d#xY9H0<`MNg9;dh*laxXNi* zgV%9ON`$aPyG2(tqqNYYqmJunbg)%jM&{1(=6KrW)s^NXc&28}<~C>1nf>juIOT-N zgZgF~oujyeA6CoD8)e?D1tUF`u~;cc7bJq>(AwM4{|Lgn-)!;wsfO;y~a z+ttE8F&Q85&YaZ7r-vias2qc{I%X4G6m(ot;z%?5(RxPy3A{7}_B9?MpIEtJrk#$v zX!PTU`r(2o7u(zPHRmnSwCt`*>q&BSnjcwILu2>Cf^C5^TF}C-u?HVEtE>RXw-@Px zU&@5;>#jnT;OvZ8)r-XiU<*Ah&|C^~0glk%(6KYk>eoD*RTt?lic5;mNUd|*no^gN zgFQ>k?`bOL`pi`iLhrQ2w=KpDtZc>Fwz$^s5Ck(4Yjiz?AsI}VFgke*m~`xjMA%eg z9jE0!?R=G>)n2Q7>3@|wG>oeW8INK=h4)Z4YOLwm`J!kh z(o-ODw2k4f6?9d}_$5K<3iW0sK~QUzqDhDB>LW$gpBxbX(+yO$!-_VqV{sf=sa$Mk zaka2RbKv#W`J)u4t9u+*5Y1+O3-83phpYn4pV!ml*{1y=4ZX`Qyd9_$4~~^>*g~bx zdjI;*>qf`C=#D!Hxc-XWvQcSjhq$P%`Q#Hw8~non7ggpx6b-Zihx=0P0Hh=sWRiO_r6qIxKjzZ-)LZ z0#QJntG`+U91;RFvpR z04o>Ub6Rn5gK3AQflV=U8Eta?2y2RW(eVu9_ryCj z;NnUnMsdLQiKuCz+ku_I0D27;13JH9g0x1jH;wm46m0`1%sDy2*a8;`Np^D<_`647 z5S*i*s=%KG#@WpD&oVsr1w{wS#0(muYPyXwwJzNEvq-KR$Q1RiCRfj&^f&Qd*2pQR ze|E{W9YT|6Nh&`7#l>J}+&9-~g*W}r4=akDkI^wh zuXgE*$&_is)td8p{|ppgr~B6qrj0HN8FZFb^oq+jFvVPlTPW9k&0C%yJf8(SQ^0wD z7N)(4sy&e}qc*IgJRs4M(S^}F&Q?l+ZrNR2IP+Ch|4j3huZei+tdGsX=u`}q*`mjo zN1M19EZLH2*%=*b#zl6F~i=4b8Q3mUuWhFVP9Pt!-CBH*8yEp9*eoVC8`bK8O_QS;vP zSDtX47ZDd!-;lnjt!&KCF;6MmCpFf>cXhQ7KFnTX@$6T+U!{vN}H^p~trB$F_YOPF>xUUy;7 zP_yfBu2yxGlhk6gEZ{PC9tA&UJNUuY>Q}(SUfd z5$OB#jMONVL5Bdns63GU)1$n_7#FdDL{lwT-C8CAaZ*}T`|H_cU!iVgY3bwZy*IF35X zd30IynilrRZmLZ9Ax(a*@I1iXu!YZ4TE~Lf^Z|iy)?4B;_b3O3;yn}xNeW+8`Ly4V zo#e9@MRdp9(*RR8Cq%LEi}zq%FDM))J05@^;T*xuVomISC62a$J>^=;ZyWAl71*xi01AsymEbamQme}0{>XG?~0-Ewr=f%^I; z$D&MshT+o`n}A&W#P$R<$DiMmz|yw+bhUTGwjK+Y20@#yeaGu`=$h4p4MP%V%}~sT zncbjLf8hhKYL~H?0Vqs?+yuQrbN`25C5}#|2_uDog!);2|q~)F^A2f_1-s*=(`JbYyUYAJLaxSrUyl0YywkYN9wb1ret$n*d4{# zgYPkq_2-$Uy9S-lR-}8c)iHGWYlB~$UC)e()F3vH?Y@q=0j(G0ko|tnqcye7HeZ{^nkh?us9+#uY-$HU`U~_wcj4T?4d0ksxEm?F=nE_L7ORSXdfySCrPu zFz4zs?g_`%>-XrAj0H)zNrELTr&VH*JM|ZQ3W|z4hy-ZTyJF;2MYHtX=`QV5EGu&r zrr0>y$R*m+7ii;O344q)3%jP7otL6kfbNN_hWh(9`6qujrfDuMIhXJ6({des^4-El zJhdygCXwpKQPcN0XLl7woV=io`EA-eNVD&z$DlS?`NY@K!dGFS@2T;?2$Uy@$8(KX z>OQ~LAgL0$$9QFm?hq|!h80H55K-(%{r#^wLF~4kS{g1S*r)Ycwh#1KtXPumby0>6 zN%74OEnQhX)ZQd^?x(eWl8?B}wqVcZVbZC{|aLK#4((ojm_B_!rAQdpyPB%)f(tVDRPDgC3FZ z@!$jhPpHt#iUeQbiS?iHoP-S#3=L)K( z&lT9Vi-R-&&(Zd=?4p4N6ZU!PHKnd_Fa0wP-N&^8@iEea1JgOnMDUgbYDOdV$If_) z-Op{YZfs7?36P!1vy>hWdVe-e7&V68xbj>+ATYZM zq#3m|$$*Hx>msw?dE}Uua*ke?8HZz>P~(7eA42_2s<6QcQ8?W3Fj3Xj=O% zLSxNm`xNRv|?Snq1)dR<=Cd2*$-_iH#?$)bhtp5NM{(=uRH5Z{e z?yl3?ZUI|&12;*~9E^sb;Q%O(h|pQ7Es}yNmDHMaICNEZjj7apAFlE2F*S+gZqvR& z0muvEe<9e}zHTe!BaAdh$0qJNnH+Z=kflO01poFSamX(TM2!tUQ~VpD|6)w2S)ohz zmhdFv-u{P_>%Tyxn^kB6=JDC)^6cN^rvGv`P>5d55>0FTI`BD6nV_1jb=i#0_u>vi z)c?YuM^#{u%ZvQ(CHyiL-3Iz{!aRLu=;$<%@O~O$3Y0x&sB!G&*%KboOos3sGt*2O;>52nghgr+9>#`$UOOJ zGxtUNotme#lNzN3^_JuD4$Hd|A@bx58#5ZXWc^KV;*tiI9LK&`t!j9=8Xr1#cVnN%;)CLz!GMFCdy&@%@%yR?V2c{ zO`CDG!gEtOwt3?dQYJsd#{)!c(~dn;u;bM*tgJ z_UBnif_aj!O6vzZQQLo4XygA)gRf5l?_8R;_BjL4^tY9Xl(v$kXhvPneT^F2353gD zE!jf@sdT%Odc4-eFPfDWvkET8-ZMePmk}0 z@X@|mEWtOxy8ln)g@1j++gdNezr_Eyf|p~U8TH^rI+J_<`htI$gp`q=MF_F~$w&Ji z9fAJyD=6@eAbPVHROAjN^*@n={%0Sy@p8VY?3ug--n#XF5atd0Jz6h2JRJ=4|M`x8 z8l6&abUVw=YH!{8Yd-(Gr+~le#*>s{cKzGF`>!_`9HRBZ=+F@ZU8(nImnAMigECYqdU=OvHn&bH z%Q_6WcXP><4BB-`G?09YKppgK@APeL^?9PuX0qQm3QO+Ie_XU<#F+?dQe7YX@Gfd3Q&{d4gp(}Ssn8Pg^jF+4TAi`5OD`h#8Ym6WJM@mC^V7p(Rm z=0648y^Fy%1X;X#fqniQ*(BYMe|!t=Bcgj-yWps}T2hXM zPg7jka+d-UKnNA??(IgU-+N$}E%3%+J`w0iqj2!u`Q_&A03M(BAwmDub^k5-8!Smd z3{`)}yJUwX4rPl%VWBf>*DoqAeiJt<_?G|8k|(V{;T;BaCp>t%7JCcl({I-s!vA>F z*Cy$3V4XtV@BhAq^PU>>lN$@-qxHK^|{pSu7l_? zqW%fIIW+P+rd)D2bZ-z zy%6e`DHgD!EGvquWi^^4xC8_k>6@^fW`HSc^`;=T~aN9J+v1&;kAbRQ3T6bs> zz47B9|JR}8(^c!RzKz$pa?z4zJI4VxSL=Q(0a0jUO=*$Lw^@%ij~I7f>Dp z%Uu6D;%&a-i$guVyAqsJ*nemX2GL%)_{34jOTf=;&2nZ(T%lb=^^43=$AE;aQr_-nMJH~%i&yfo{KvWa$UtirF zsaNEe&k!xKkjpS4Vb^1wu7WTeZ%#y$ab*KTMRn)>hx3|Sc5-_YEjmNBDj^ptJxN^6 znJ)!hEIh3V2^?nYSONx8*c&~zqcsaOSbN8CV*olT1<}} zvKUkolqTy{^twwm6eiJ+%4cDo<(hV!6LA;_q^&RXz7L6oF7p}Bixe7*DZ(DHSZt2j z94MoxF&Ww8YOUgPw?l~Y8PEgda`_!6kdXt+eo;Ztw)*S&)Ld^3cm{Nw;_kAxrPq_f z80H5r4ElZqJ?|7$JNKW=NxUqo@nR~}DxsqZ_^fzy^J0(GId|6GlRfV@Th&B?WrUDL zHV#YG#Qb4o-(bD{AYRVucyomklPK1rw;BBs{hfv(CMb*q?@^K3{LW0R@!9~8R*hCB zgh;xZ}5?Bpbr3q2v4rEm>O!wv{U+g*Ul(s2v}*6jMi7lJ4ZJX4|qu4iZJ8u zih0rU+KrEvz6~PY4LJeKF0+bJ<&bYRLa6-)TeG>g0aN zBbJyJ%LX@_>I09?(DCzAq>6D5m%E|v`Ld7A$QP2&wXaxmN!gQfO1oq-10qwLYCW7 zu51^FyVRhbwKfiEaT8aohNl0{sJSYq2|=}AInGyhwsXUG9LQ0`nAjXaf7920+IC6d zK$8$}J6ea?YCV8j)~n8&hGQfY0f-A%+iKT%q#!R>qA$8{lvNkRJ!Ut@ss}YI7)TYc z37ucYhK)oR*;yb-IMev7cKpB~A?I(q=VT7CI&46O+Bl%mcdsC#I=jg-(Dkeyx6Ahj z-j}Nt99BkrUf{7%pl&j?Xx(7tqhQS1n98=Gw!(3%Mj6K}x9gRtjRy920aVP2q=Sjt z?7*L1jlL(Rb+j@P2ELP#?A-1!EC{txW~PUO-RWLwi3P=rug}&8C?`cS>!`T=K3+lx zWyuLZT*Y3d7cBS#%RDWZ*{xsD0`mx?>d8g9*@|D~VLRws|_s7cWxdo4xMq-ecMrXZ$Pn);7 zL@#?Rx{R>wPXOYQaFj+pj6E)>)D3EbI>M`Mjz}&Zd^dDYh+}zeo!G19qy1G^3l>+z zfSmA_-_ot145b$G)1^sdHd6Zbfv}9-FZz~e>sOjkWnBcdI#^2hK?gsi!3}Okh7fYw zqD!t^{Zz5y_o(_VA(dn$3A0cvgM9IY{Rn1Nf2?q=3q6&DG2uF>Cq^FdJ_51VpIYlS ztGgP{tf#_lb!-EOjG_^XjA)HvbhS()MD>4~sxY@n?7O%TqCF)f-5IC;@I%47(P@c@ zMXfx^ozpq3J1WB@2YZ%YCY%}6n=sM6=6`DGD)qYu^|z~aR)TnWgK}^TRJ(uE--Ir2 z%TX%WMyE@S^4lh_QBxf(w=zoDoEdT#|H;?E#?rX5j}QtK7Rb}3S>1w7rQ?IGY1ig3 z-3BqjOZ609Fq>681)_&F0Z{CgHMTvK)y%>nAImU&5s)EPR(oS`_IVX zrUd45Tojqco~OqRiqS67w?>ZN-xvk%JK0U_sqf{zCMhXr4H{oB)^n{6GiCP9nxzu? zX;nn6Bdm5UnQ2WWWdB~XL_-hvF-sN_IZ~gaeP2qQ@|gji%3 zFCU*(`zvjg#LSYl3SywIQio*wvLg_Zqt%M zxSQ<8f110$xkFn`yvOATk;Zk3xG&K+J*`k+b6pEwFda8&^uV`kt=4!i`QXBR=X3Jg zI_O71yiRsDzJSezU*`ImOgP!EMPBG4Kkyxc!>j=J&%_J{nIkedbYCc!(q65#RHJ&r z<16Mw`)I!Mgfr-w>X}sOLLEnm*p22*j>)(8IJsUG+2^1Aybt9@zKA9?Kz?%{mJNl@p@*8K z=%+{Cz1qK>uD{=WP>Az>-~VzeC;&?(y^&RK^w~+7T>0wLNU#9HgRJz;ZF<#okztYy z_3T#_Dvgkfnpa^YhJX(xuSkVGcjscQ)pPW5Otm?X}g@K`D(qVsAEwnYJmtKN61 zKf9x7SV%|J4M}FIZNkPJr>0=QMxT1WQ&Sn_X>usbr8rmA!>e50lK2g?^_{uKP@5M~ zy4c_EPWoS-R@78?<^Ec(Dfk>>_F;wOF8klen-O@wd8et2PCr*c@)@krtr1>^t>jl= zEFSs)5zGCTHZ4-oEiUYCo4BW5vMO!CCfmk{pGso2w;GythJwW08g~npN9x~ZGCQb$ zD5?>f+}_|SPU!gHSyCrW6@*6`=V}!R91kMg^(x9@CRDmHeYsVDg%-1BVRzJOfVpV? zF&qJXIX8-|p!`?yehUZx`q)H>Mak>4D-|_$SNWDhXj(kn5s;z^yi(m$efqC4H*KIV zYNt28NCz>H))+(Q%^gA`mfo#KKqblw@h4**FVc<)#;26}>1BX}*FqFX!S4VIeD`5) zLcK}XwAQ=t&qYqn)Cwo?Z`_Xg7lBpl*9p-%-C>E7mLKvMl#;{`)_NHGQ(nZyvBUzs ze+5!KudRNrL{h;OULm44eh#m=oNO&rI$U+}7dBma52;DiC84K>T*`}rV!jW-X|MAK z<j0eb%U`mj|WHiUMmduP4F+|N#oYh*q@DNt{&)ZWWe%{bwO&K`p- z`;9VrLP-H;&`I|m6esWg-HT!HoC2mOKtinTII9iPP}ApNj9jnUI(cil(U^$gBc~eEWT{qvCD|O*uFQVE!LSCr zkQ?8LeSnBoc-*@=#GB!N9Y4;YyGX)rpa!qKFj!Ranm!m;Aa7ROwdzZf(66y(laFPZ zKmh&WDzzJjgDFKGrJqLg2Nk#wW@Ml))k`TpFr1Z~`%7$td!b_2{SCzI!g{XiLg4vq z4OqWt*Zf)U)ddP2S-wp%eSa@f4E2(oFl@>DkhB+VnGnmly)nX89tFVK;4doiBUx$q z6l2lS=%Y~3p4;j=2BcW@nNDeGtNmetd-%ESI5;~hmH*lUYx@`G&47_0$6=B;jLbP+ zG03?RdPRHISW{NTA!h$W{H!2=v)%>P?MC>YqVHWD(Xvb4$!-pV$r3IVoMTM zc3FpIjb?>knZw97MvGEKgC)suwHn6?^`sNnlfj*5hF^<=mt5d!b$|c`y^ANE+haZE z7QK1#o1$@(A|xCJYid;IV*Xpt$)^@%Ly(^~eD{tvUY|i`86a4A%V<}*p0(@6pZ!FE z!RiQpUZ?nnSG;$APsHzMiFsC61Tm0KI^24DFkMjI=j10V#MiU-Ni0J}lFAM@L+lC6&m$!{~r$LMZOmaw4x&**D0`~=IJi*K-C$tjNb zI6SL54GyEed_%S6Z^|yy+>9k=A5nIRcaCipF+qZ}Urh}GXGaB96D^04jR&$?H{s!$ z+5^U(*D3@wf`zdsJD!@{^rhgMs7kr)S2+DF{xwcOaPe2PQ-XMwf%Cg^iDUZX41p_+ znUsECzA%Wq@Ub`wk_tZ^ZH&SY0G%WMQiEys+HN(UC*J2rA@dQ%X2o~3>7);QRqFPZ z+<40qcrj63PD}THVPx+KcMoIh<(4po*zKpD!=Wy%EejjE4NmU&!wfG6jmuxJWWpDH*)u$XJcm`*53^r|6vsXYnD~gIcdSBMAxlLJ z_RG10s_jg55bU$*hha9XHgg@a?Ux!{A6TAB>B_fjK{ut{;xi>JNEVT&T zZ|gL=p~_e>0Mw69RqF%4K%65{He<(ymYjG<7mS3YVV(1oS@?CnLP77eapu<-xbnU} zCa8x1{=sfR(BuvT25}ZWE7sznD)Sg#Mkqv6sC4^DU(Pgo?kXY&fy}+5#g%A6E%|A$ z8dcQENG zim6?2&v|DZQH3~W?cw>Cjq>4S!&-ieu`Z{3T=GfJ1LN0w1`ZwuF$Ui4UWG9PILUHup?PH5uLc%E%-myuCwu5Cmx(K8jcUc^q}IMM>; zK;zk?#hN$?R?dy9Q_qn>Q?yfW$|Bs(8X)CIS(Xun`rg70myf1vci)Jh5n=*rq3rlX z#!ynNP{a(k$)X9QWD{NYG$b}3-LbYy!Q>j{;zofnwKs2!-TmO`*lEK}caeacPu~N( z{kW>Mt-rUdHR6+eY`&g$hZ@l{xd#i%HV-`!=3U`ghT`-C4hY+0_shAG84sH-Lt)$;RxQyeYT>6k zWk#>V1Y+(jOSa;fr8_pME*V|BE6B}#n4G?A1n|P4wUEf5xubAg7+)-~Q(9`0o@T#! zNRZKbjnkyCHD9Gl%A)xkjf3u4=69egva|6!%*IvQXviO|iiS;H+TF~=S?QWp0Eg+Y z-<8F@r#s+rl4pThayF9}?rrIgi|LCO|5Y?OXG_Cci*u2-f>03nQ5AWH{ ztaJQ6e&|@VNgERlla5ZlJGLF%ZBW?I=!8~2sL-e|uGbJuBlPTI2fnB=8~Zj=V>mN- z^o1Qpt;P}F5$t>!g7mZB)kS9vj!en+r&F3nazhKe8VwnODsktlJX^JA>9lt;GXg$Y z4`(ZQKL(%z`YGf$$5`UWw>7BpNnsylBjvb*1SfO5=aqU+S8BEEJIZNWrte1QbbVL_ zeIMs}pn-b&O86U0D(;q9S;otYT7*1ZCTg$Xb^dMpL9}Ond_lB(_JNS*j;^QxUSE2Z zc)%Sm@RYq)*dS3g_HHvj%g)sKWM1o_@esJ%mtO!Ij1kN49QC$}rWmFu@U;wlatAFlk%OGB(eh(>lFi z$r{slaBaK_M=_bM(rsk1-_{Eo1LK<+Vt@{7SzH%FtJyPNc#WArTd1yUJp(#)gT}nI zCtB4R&;kC*C^l?XkB4dVFl$fRU``ahLBii%Ggg|@pux+-L1#{A9Q($jB2mz9H7Q=J zOhp+(Ru@Og^vS1F9Z`=h-Gkn?7Bud|Q}2pCHZEk_df3A8T_X|=Xh`hQq+ktx`{m0g z&IC;Bk4fdAtkCXzZD-iy=oc^;Yc(u&d2y%Z{lvu{)5TR@dLaL_m67ls)?RWtH^}8z z+CcQoFo4i;rbUr+IkaTCi13I^`?cEUCgeGRAsr*dEYDu zE8%K=@Px;-QSN;ZJuo={fXeH_I>)oCT(Z|Ptyl_fUIk@Mk z%(ccu6}x`T_?39LR^9qL?4KXVM|;sOhrtP9LXnz4@O!M)9sW$DPzGU;o1FaV-jbGq z(O|&xT}^6SE2~bh929*P5NUWnFH@NgbhbAiB`=Rl6436mrKGB#&O9#Hg*&z56Dvo+QQWz)HPK(&Qoj|c3isbuo zLe+Tenq;h(s-qdkvD_W?>{sMbO3LX$pq;%t;3y@7GaE8d1biJy`7&?jGovfhnF9OI zsTv4+6PR%xiNdR)NoXVTy}PiPoVf;{YhE}UMpfE7Y`K0hQtnU1qEqw5eFHh^_=6CA z_FfsD;?1TOKp(YucDTMt&7n~$g8G>>Q}2rS^vmm%)#CxKcen%6@75`B0BhnD0!$Ij zJ5-0^Zktoul@`}(I|~7{#x=Xysl)l6o@g(m;Alfwt$X+Si>YCt-Kh&=$npkz5HmeQ zDVh78nayBot8RBksbB=;OGdg#LlULV9evv0mrSl2n zvOEu;#_R+weZ#JPhVPltk1`O;{i_y$*I=efc*ecxPx?W2ZKv<|pAZfC?hJ~p7jPYN z8j`GhpN9k#)S;w~xQxo>Z2NYJK^;6OgwLYy3 zK;sFsBFM3s7N1)BflwOvvw5*q4%@PB3R!wGh_3^j-awcM_&(qc9Xa#WkPF*9f z@iA&QdGb`tXN%AoB>vrB) z`bom}Jn(31&e(U?diHC29JA5)Cxk8NNRLggMq^R>R>r$=&5!Y3o6Rd5o=*)0jpf=B z->kQ8eGLB_a6Vv-W4%8pswUDlvdPssh~n+mYvqmtso;W}CZ7vu?hGg8B z9dK+o9)Z1B&51ZUkrF)1&@fu2{LcBpWn%=CX34~^3P8Mwd!#Fe(f&p3Jd#gJ{T^zu zUvt)G)jVeGV%WT7b*^BU^c#Myjqm`}wXMQ%F_IW8;b-c~UQO|(razu}{TMI_dqd;9>DP)v)M$|i3rrf=ZPoSoY>{(&y+OkXl6S7TzgOnT=#60q zb=56=um#2TaZieADF4 z8CY)>ZY@mHGAcZ(cvLHJy*0XKCRrn*L2Z{V=37cCG@aq?H(z2@Wz=;esz-U!T>n4d+?_d;1`vkM4@Xu#^tAkD((j%+|tf5X!PgO}8&l6WWbQ_V0;kb`yC4q(31_LOW<*QMj%dO1^GGd|FTn9tlyA1)`nF4R1>;|7uHyivApGgkmp2!lr z>Rxw-HaOW%Z`!UR8Z2=0K8%rOX?HG}$fzBXS5xRPyFW43h0kYZQl^3XSeHU782`r5 zG2%jMHg-BdWyHC{y-Rpc!$@!T8`SsRIpmEUcXMgUJDfwlc=c+dDh&O5bzt;$wJ`i?ey(>-xfoXQl8EbhW7>;!U_R3(zT5 z2)=KVn^O7tLnX=a6Rw1^HL|A<6WG&#p`1hVx?6#J_XjYgt7`R+-W-q}KJQA=Jx=9w zbm!PPAX@+_-CXCh>7+gGiKdqxGk?@2eXmQM&1X+lgo@_2ZL4t2-km@$Qd}oC75zLC zn7A`!8{P^poSx@k~OV9e8fH_G&wDWx2B#E;+emK}aA9OOapePp4zQnS7OaasV%$pCP<` zNqLlMOM(-G^|c8I)bJ+} zJq;G)(rPl$-ac`@J>%sLos26w>bKVM?;<)t@46aMtlvcrS7n&cycN+6A}i3T4fflU zki>yW-pf%74(l5*Y}JAFa^>lRSsXnN^|D;3HV*nxKFd`SSNd?XPS&j@f+@N+(8fq- z2@k6dYkob2XKuOKyKh6x5tGIHBV1Jx2e(3E9T-SeLzj3~g zEz^mMsK(p3)neVGD=$T7r$Z<;cXXbr?R-&4mTVjf4nuiLv{=t+XymJGm_$5MYs_lH zc*g*{s&S?W!EyW!FV%*|toB}1co@#@6qRCziQSuh>Pv^#lV|IdeT`CW-b!!XTd$f) z$I=&*i_2!opDCuiV*g22EP~-@sueVK>``D`7Tk91o1?m^*HgaZNx~*%J$y-wcq@|Q zvLa&aOY_E^Wpzzi7SDg(_2tVhvPAiMpTV-?v%V?QM=Cp;dv1RBZ7&EZk18fO(a@De ze~dg4^CapXa6jKg_@bh$(R#Ed*mnP}Xh+}FM`zN52GLX{;W|bPD@@%7wyRzJsg{$7 z69i9&PAkn4b+cwqcEgr&z?oNplXrIND?d>t)pR9JGahLU!xnpwdd5KUhnX|0;!9?x ze_~few1Go%ZPd2~6jpzfh0|7+M3N2XAkUkco3BbHsa^L<%d+{JDx3KBBdfmlc*vo% z)p6rVs)lOfPilYcz^_&}h>;ERQARZwJ91gfL9~&j^^p}!?~uyOk|rhG{>wCQX`b09 zD*+>M1Y&kQP;fm*fCgq`;BafsJIHlzNokkzU9s^~auinzzak7Y+|E?^^!w1K@I zAFqrS$+Wp29FarbzlvBR?tOS6>hO`qT!+QWI8Qcgjo41tsws<9cUFR$g}-O#`!!o5 zVC8eJ)u2#(O-WG(+en;5E!U;Cw$!G$5CVupJCB)V3$aSO3;Fj=r*0Q^ix zm4MQ1TPZYBop(KH==bkS;xtT<4OyPH3SD|UbV`kax< zTXSZdS+@+{KtTA8r0?mUABflEcrsp!xJn1vNHB``&Sb`{c>f-Oh-0>^EG|ho?rT(x z??v^<;^H*fVQs-wM?G@nc)O>3z*Ao`_R$HQ8nXsVxeRU6KyI^uTO>42jrZj*CFr&* zQIp2!Heo-^r19ic9s`67g)$m4SKlMmn9U}O4@cIM60!DIkcPVGbEw$O;!2HMdn}MW z%I4ep<>I34y#C}6)vP3Kh;XIwiW-TNIHpsSQlZkum%5YbX(aa)z^scJoI=NDVG zg>{?wMl<@17sWX<6Dy4a8seSK>^W>`%Mfl_c|0)=ab`9Ve!io=#QNw;>i%p5MeQb0 zxo+nw8`}XbvYF3Dn#IiONn*Ls3U8};JLYtqO=@Jvea~`2iTWvluCL zsK=a)Aun53#|J_y76;k;7kb@T1BcEWwTU%iw;k}fR+QRU9&;X${169=Ll7TlbG>kY@EgB)GPXp&RzMB|AwY5JYLKBQqdb=yBaC@cX-QuMp#0&yQtl(dyoZTO(L zAAg{UQlLrn6N@l~?%lZCu){mEtar6e1<5pBvUWxE=Yv~(2dIA|aeZn7D&E3X76O)P(g@v&Cn|SzovEjUbRGLcu)C0`!r#0la$mJd^rUA!g3{ zIm?J|j1?93oo9ls7NgE)5s%5)^p~_p<9`J?z}jySj@v%U*rnI#!V%eF*Ib}*i@qck zprQoEaD%e!Hr=E_@7RYE@&fHc(2UZP8gv*tP6A!&QjLaO5LolqJB8tNN{1{y>f+yZQZ189DI~I%)-PTsl&JN#6A7Tpi_x`) zy0GJ;3+%K7s9~eL(P=aITXL9B;|rU4_>v%|x$g6C2!H{zYO>JlPBS9_I-^*gk%uyT zdD|bCYpI#(lRArIf7QrUV+-~1cr5DqvYk|>9~HNK^%fjD37(^ujY>=o7=U&eRzE9n zY4k%*fO~yNS2$)1D9DBE!#yw}D<(M7o7SJ_NqN6N9U@CDKkX#;9^W61J!v!pDnz6a z$IrO>X=|2h8$U3gWG-+4gsma@F+GB)DKnJQpPP{r?M2=CrX=2jn`=Mm(0uvmst{tA zW|{8or&Fj2O{XP+o}nXBNj<|mgGZOxibrIxt6xcrxqGLy4N9oWSA2dd-V2m^3;er< z0E5Vh?!m-lGy42+QNIltzRGI5i)3wk)9i~ky9@zgYY}et>PlE-30T$0=|?j$J=yOp2uBSlz?RHiPCKxXauBUeu4w^S8}hxn7_pI#KaHZ{kIn^v1h zk>A$mEz%uSpg{N#4emvz`Bn$L&Ixuu_I85Wqk%$`gW0*ev4h(e61PIHpT4^*hlatR zM5K7M=P2aHkl_0IFj|j_xA*PM_V34iksnVoD_&nZnKgPw5|(5|w!%olym+-Fvh(fA z<-#KaS%IzXLmF>|`F%e4J>EJ`+D?yeX^c>}7iSw;1Ye4C-?*;Te9?c}ART+I^r$DI zasj28C8r`CNzXm{9#HYm`B!bNe0=$mIYXIDikacTXRJNJ>(@8)=fZE#45Y5eIGMsJ zIJ&q=2QPm{x9SgyblnZ7p&!3!`<{I*;7MR}*2;8#NS$#uHJCWrT{-z)`#G3D!^+f8 ziX+L*{_29VI&no5hYa%ytgL0G@et z9=}U9sZgh@<2+ZR(`95ENRxY;&2edDt1BWE&c2RDlaBmw>A)O`26X;u)PyFTe-C{; znv&VQ;Us}4{cO4N+Z6*AhvkydNogn-8BcIdkl^ga%hwK(riPm#ZT&O@72Wn#8Fx{M zKZHGZn#Sy=B(0KBqy&p3WV`gflyVnmmNZx5O{4c78VI{|Scs9)Y8L}4T*XCa34NX* zhqWLlFT#nP*rfYObKbgQ(4Al)D! z-OVr{Dgx5oNJ@7NF(^HhbPUWOAM%hWCDE$Mk(c`$p+jpoiDY zWCeRt&!JK1dO$t)R_<>jGHIO0udb2#BH47TnmtitI`3mAI#Zq|$)&3{>O8Ars#>Hi zzxyi@a4%q<&8IIt&rbiiPf5n<_M2yPlH0>pXN*#CFrLQXRr-&6c#|RD>{f^7eYIMf zh=Egjh-(^jSIm=3N~!8S~868 zIZ+u3Wm`|ip$(-ia?ew(q=dWW)n-wV+@~vw$X9+w4mU)lvWHo8Jf242zJJ~xH(VH) zsdL%=t-Y2#n~(X4N7WWqCD1VriNf|HV*Ud1Up>~9bopI~bUuYs4b+xetK?Py{9=HU zF|i~4wbZEExu8!&X&Rbmn4)p&J%6eKTm0PwP?q0t+Q#VSIm?LT8MZukAxaVSC@nP< z)X_V8L($pW93ZhU?Qr_CEn51?y+A*`#@%4N%}q+(fyLPq^swl@M??6OpC4hT_ANbe z-cT|u>f^8N?dt}|^`wEUK^IcT@xC6mYb?JGq*`6GE@lb`6G{$4+NINmv#j%=62Br{Xw<2 zo!?ww6MJ+He0IYj;Wfot9BX;B9AE&I^@SSh(TC6B5-#=wT#7v1k>{cXi2Cj3x65mL z8Vxc;P5zj$R*s#&7Ii={w9~Lkuau#<0~e36ZBQ7%KwO#L8yhV_nr^#pMj#&x{*CX3 z(8O6E&7Y76p5QWk)Umyn>S0XWI$!HkA~}@FUBYD|Dh~lIP1TvFj552Y;Dsk{csHuw zr0UI*FZ>QcpM+|{o;Q3eHL1~MQMq3<<}wJvl5BwfiQn1|e-1<~2!$KpaAd2M_#97i zlHEZpfOqPmm4}{5X}5lkvp)E*fG&a)=K+5~9KbXECR=-{v?)l-?3h07y7ZenM3O;} z8<(>2#ixiwqvm7L<)wwCIgwhe?XK`7595^4E@q891z#!G_};5&Su50KOxx#lD+STh z4`BX!*t!2~<^K!0poXAp+)g0W^J4P8+Qs8J4EXKPnI)j-@K%g}ashXan!fqhBFUSV z@MXk3*-s=7*skW1=LZ3Yy0iWxu&))B*=6c&U)nW1Prr!7KGVBb;tz0#+-G(-&;}DQ zUW=!R+)Ear;RDNku}Vn9JhOEq(DKjTSzM{pi)B&a3J$oCA-#-y{tpS$iR`*QLUcZ& z436$S&cHGqgsiUs!l`?Y-&=p)k@8+v*R1^}S<<4yaM0HyPBgubS-^H&h&%f)oS1^? zge9H*E2T&t(j(6IzGEaDpwKy1K$!D5TGRt@qBV=3YxPshkv#|n!Aliy;ERKNJ>s02 zJ>EDbm?)52D%vFhg1=tI{6o+hjTF^nGcZM|q>9;JQQ8Ev1-_O)TpM|~@AG#}mNbqN z(e>eHaZbv1CNIROC(Bq)PzOt-GbM}kEB$f&?Iq^sM}1?fF#V)Y1J{4};uD>DEoG)Y z3S-M*0hE8cEQI2_0SqI%Tp9`sckX(htQFCbbbQ*Ya`k;NNRW`^(11~EI+%uU_|@a~ z<;k~&O}f0BY4TY8s(+2*HE8t~l|E!3AXfSt11Y1NI~Z#>_ehLN)MY>ZneBc`!d#Js z0U_1Uk#LZ1Bl%x97l;h+v@6!3pOiVUnlGvm`(s(x2NCr4_jvH>N&!YOVLn zgf6w+UtXCL2{(5@Jj?o~WcC|5wp#%2*@Vsyt2xipvpMZ?i7Go!pbRTStj@nKVVo*)Ti0M9Y<5Hqy>3lLdJ|0FPMKF-Qh zOOk8W*FT*y(G?ldkL=dUFt;C?Hol$~It7EL&(tXFq|>+JHGEe2 ze-RHrfI(hy?M={O<->O)OaW)!kQ-MsWj?tQ?V?>6t!p_Jd0E~cj3v2JKtXoy&@}WG z48oV2cTAxBb%@`$0_cVGj(5(Lh4^&JxAtxN3!L2CUgSB*-l8Hs)BHP6Qegq~=qf!K zeW4ZzbKf4CJ*-FwiI;>fKVf1o0?(=a`;J;d!x5^5MPeJ$It*ga@)kKby* z)F#Gl9$<}(n-AO=g(A_A3#?KM76rY;>#su`E9uwS=cG0E=!9bH8KO(@O1;^c}dUDkeS)y-mZX4K%vUL{!{KOrd0ob+!raqC;Y! z)6#*=W@)sDL+bcw3x@R`zufJ&ACte(3dv60={LCbhgJSh0ny&9@@T7h-oHNc&q??Z z6M?jg*!dcdh{vW$lQ$}H&i_#Q_|i|N@Gg zDxgYLs<)pnKgg~nIsD$~axiYR!V}AkzXN4g$>!(4p~~oL-JfX2fQeY;UY6#57Ft58>;-kH%Z=)`!Q{uSo#9kE zqlL#Xxe71mw9+krEYuRzW*)2SHJWUU0$2*TltdU*FPW1k^Q&9k9ho zh17BO!SaVvE=sP;C%vMPWMcJs+L%grm3X$V2|Im5z;wV8APz6qnT5aD112eYjxn@P z#f1YGDPtc6h_|-7Vaq$i9w<-xIV7%dYWD-o);bE8Wre#Q0Sc}6ySO)cBoi7Q%cdUv z@y7fg5=;B$W9gOc&0hm0|6#RUeP|bxePsLL^Q=~Ni5%mFgF5pU*OaYLCZ%L)(-b@0 z#8RD#3p;jY6$mRFD5(?yGSeHbxeD4a`EbgKU(*4k%(moB;LD(dLlpQ@54+>Jfa5zb zt@zYiU8*mA{Y8Ge#A74q`g*zdH>Ke?=-Y1_ykdVRc9KE}w`SXTdavC-5bRy^X86-B z)&j-N`4F{G@5XL%s+$JkUPuc%sVf{#pK!6e!LgYhmE1UHJrKhvAKAaes`hq&JOzhS zTNn8}eY1NH3C{BRtZBFLfzz^cK=$@5pcCyc7&OT57ee+QtPZQ(m4ZLVJLoH&IanFZ z@2@r;(GUS&(68K@0r|YyeObrvd-!g)jNg5{W|gaU19ZHV@+$c-q?{y_Q>QF0qxpEv zUw3^dv!kbgY3~=B1U>)aq>l6Q!AB>5D!is8Ohq=vXovjh{ zA`o(w#Gzb4AY<#z)^9Qx)bB(C15F?INcMPsYr*x|6;7M^`nX8i@aZPT5R%y4U!Z^= z!c#_-rp76Ppu~6%O_fBR)3GwIs^w>*|3EKb$K)^ie;@9zkkn`dJF=M%-K80U{cMa+KJ+jJx)5&h4l*O#W*DA%H<5SwQ*LSV`l2Tzo(8`~$ z_1_P)=Qo0$AfmEbcPnyPhm8_S*U7LtOyjHb;9Uj&&y)fh->ml}aZXU(5}{N=5L`#< zZ4lFU$yOVj%VKN3AYV#$rriPpL#U6*VrL|W+4-1ZOHp_0>eM;1nB8@?s$rtvo-kH1 z%AcZa>1Vau=Fp2!N`V}}*?_0k9TS0e8|#Xz1~Sq6lLqJ9+jfR*9^p(XC>MC96!>uz zox~_*1zpx#&d&#^c_=HNMQ3IH=@z6I3nYbEjwv;>glkj%>N(wC)-|c(3yhkN_BGu* zE3=sG5?_g)1L-F5$F!P^5TV!3Tmr#ehLd&vQm2lO2R;EKp0^9TBWfjvRqA-+z*kTF zV%>&lL)b0!SfYwiB9ZOl{{l9dL&z@|i)Ji;3jTlJsV9#CQH_H>;`DnL?q8}F(!f~3 zCt>0H(osq-;irZZchG%1xM3Q(jj|6KH4&ALq0Nh;^SY;}2EFWK0eAco zU(YcN&it6nw3h0LJJ;q;TQm3bPiV|c?|Aypd5#qzWg~~MKeYeaH3!P$c1Nb=^nc$^ z{HKbWY1a|3$~c~H1KUgd`O2i(SV-p_V_)zod1n0SuK0JPAa3E9A;YvQ@BZWY{KGFv zVL-V_1Eas@ne`8c`=@$p8>pwY;V$&kxBjxI|HqF(>Z*Y-z@*|@)VceUdSmk4T zJ!XGzsFWSRpaXIdeO#lZFw3_^F*0J7A!-W)g> zceg2Wj~4`a=9EW4Bjk|4l_C`nfcI@Nn<2}xdvtBCE2+yEVQU5BZngQVDwyzIXOaeU zIHu1}lkkd;d;_0E8Q>o?+fPT=S^LpoFAEwEAWXY$r0q@fHJqZe6KIA za354bZ#k&Xt5_D_Y(0FzjYqVckaddoJozOK(6b*11%zEG)5?voI*Z+*+`001632@) zPHkqOmlv!msi5+)B;J(mnEhju{L1sQaAMbsGpSex*{7`z6V*lj#TOB#u9a?6sG~X+ z>U#BplR^bS%NrXV#aecj0PVh@5#h`E@liZ%bBZf*Z6sG@d2eBY@ZaPr@t3~`43^dP z_7*?p>qI$~t{$>#-5h4g6l<=<* z-3&88r1QMguDo2#ph_){MGJ89Fq)u`A2NOYur1ADrtvwTr??-_Auh=(j79Cq>P6!! zJnAGc-LqOPmw1c32=@JYmvYqn`^c^t^aL|RpB@325DD8<^ZX@Kg#WQA6?N$Bt+Gw9 zeOjcS|6Ysbo7j-Yi?7EE7dI4Bo;H=c0)SbyqKYYa>U=ZXm_cEcR>aj%P5a{^hv8Tw zvPUJc)epoaZZ=_~^CWAmVhKIh3nA@y(&_@O?S=&iRu6~{Jm|2064W3fNIyp{9 zRshN3ep|WG)e{ZIQKo3;dB0}F7cf( zzpxNzh34&180H=TI_rI%oz7j2(#TT}u>6?zdex}ORqHa^q{%;1l6WAT6%@!odg-}- zHi&jThtj;6oBfKrba4_21|))6#`Ae^LvtWjY>(S^MqdOFpldn~CN%We1CDLnl60~} zeZC|h>I`@t&c}e(SDV^PVL^+~ezqETn+YHVo>)6jPU2wc3M-E#xNEFR|6}PI3%Arz z2BZ2EAXLlKo}J?N7un`)xFjOpXUSvyKmS1awUPmyVL;K{d?yGL!!Yom)~c2 zCS`G$NT1>C&ITdh0SI(FiKN0eDs$~(eKkrhLk8|tfm{0dbm>R?@Fe_?dLRCp?!}q^ z*zsrKaMmRAS@`-wpeyN{0FNneewv!O7nI-oQEO#0v4C5@KWmKj9p26+#Iqz(l2YpG z@n5kC`R+s8_~HVXBLb4#R%c$K5&#fZg7vmwl=EEk_w`-EpXs`ff74d98ccCwcjEi5 zQ}z78k%@M5^~VXvrt18+pInivT+VT802b$q-eLjTD6b(;pW9xIz~DF97zxg$XkdHO zW@u9uty}x{ql%B;puWOFH3RtGjWK-9JMj!_{h!S$c339H`?i&FDsP8aPU~zN*b%*q z(=2`Wc>P3+26NPK7dE;c=8A_6>RU|2MG#!~rU}#uoNEi40A$epSv9}=0T>piBqplb zDsd7v;S$Rf>VdsU@}Q{4fK7F(Xn5oblHMazGUx@MzkHKRnWumpt{?J{=a(6GWS2(2 zPHAF3?3P#W!u7=F<9^#cSOfAXL6sJ+za-FoLVtRm)3Xb2aN2}qm~0*Wpst><-p<#H zyIHO8V;~G@$~@I{8$1Q<(!1&|MV%EifYzLdk~`tkk)5)~QHt}gA5u6aLR{qvC6cVL z1a{`i=n(1kIdFRg@%i^A8bSM*@FX6)sp`s{2r_K`%2~OQpJiWl0uB`xFoU7w8fs_A z1*A5cn}I$=b@f@`UH7lIyt)UUkxvC7D2Z4UL*eJk?8{e=hL-`A>a z)QHH2EuR`w>p*3irgVSeI?(|J6-@XfbTM>Dk1HuMR#7?O>BlSsQ}CxnP92!X=6LjC zmw)DCsgEFlEO8|g>5DmM%<#qRQ()?QNS-=NJ8j247w%z?E=!5cz={Z?RHYj(O)KJT5?1ljrd%c2vZ-QkYj0nKK(MrsK=*#^=sk4)CReFFxv6H67_Q4CN%^6O>NqBMIo(*wcJBSIg^7XO&I>^UlZ=VC< zZu{UBs=4*YH}B$-6{vU5mKE>%za84LxNFA|>>`$(L zY)dmWkGKH%&`Vdsa)er;`>U#%=LD97m26z0cgXO4+^s0S#p(jMMx7~*FlCS zmB$0(gLU27`L=ED%}J+m*&WV&;%;L$_b*#-U<2lDVWlMeR_c8A=yyWzS-{(nJFfaZ za+N*284}h(=}_m_v*2|EcX_MvI9``M{!t1@CSyvP-3p)_KhA1c&y(PPbh%M?S)1@{ z4ilbdyK*a5t4ndpaa$|JLTO|++nAdc{Sf(hvUEOBa~ZG`BR&rzS`CmQj*XIpl_pHu zO?vm~&^Fsx-hrVss|KMb`*!Cdnhl;F6vL zn(_c3ROc0arD3jUL;AdKk3(-JltdyszNWW%Y}V(!F?-1It?O;H=!PEm>z2=m9w0@% z%6w|Xu1uu(v`)Ajn0F^mQL+v0%|9R_2Ov`JnQE)M{!z3dw&@;i;B8MYqc7YAWuMp$ zg*z;L0NpBW^68Y5*HMQDJ0cD6ub5owV9sZAn*Nqgk+=}6|7CA|mG(^wvSjom?)1Ij z0=9+qJ(7i1)FWxopg~#X=$!o4vCoFrEy~E}1C1y78nGSRULHq=4s$J9q8=F4%4s5V z6jXHqaHMD#Q+WiJ*E_@!cE@qMcar&`s!IAI>P4+dZOfh4Ev4yydL$xLaMVYK<~_B` zk)WdG7LUtMh7cbUuW!=bFE2c~tcUD>V3@H_ zl-9xLUo)>%JSn-N)zrS!pVem6o3k5LH|mQ(rBwoH69Pa`vQ-G*WBe`(mcrsUJSbL2 zb{4nSIurs;2GuX`O2~Nc%;Bxibj4WizGAB4N>e zc!mE+U_zcXD%UF;PVn$6h8`B$J|!pn=$%N${EF@1P5PV0Pnp7wAF3szzLJmOTdq~| z9dqQ_B^}4|1tafA@0^;deiFDp_hD>fl9ce`$}6qb&!J|PPA71)7Vfp9OBMVv!-uC} zIGxj=0ad$S8GJIxQeXDsCW*qM`-JUEcWzNLR=xy=qEcoqL;$)Isr}jf``vB^Mu4PW zWgcR2`_sxd7ZOL9DG{f*uAJuuq*b+hk%}u)ug0?#u-9?1D`CTn2xTW!o|6fdCoqgm zLw{~n)j3M_*ENm=^kMYcB^s|&1uqRrYieI$d0*XqAhD?9&=-R1-_yRB@fhGFDbeQ1 zhLJ1s-r}F^R0x*tdurc_n&lW}gFGRGf9tc>ufpr^x~mkVrQ6g=FTN%ZB5sj76Lilz z%O!`M@Zi`%Eqc^+OLu9nBV~8baa`U%{%o-ggJ@cRs-_a>92&Td^CfEGp`g7kdxf}F zJe!d$H~@|^Fx?So@j4T+%k)gM&$QIB@h;eYuYOz7VZ9=Ynaj2vC$LY`N+HJdb7*+I z`}Tf9+uI+wdv%NCO19p&_72Z&ohoKRj(9TlUK5dold~_FN<==DV&63J76@wh5a8N= z9Z;dKTj|s9sRvn8+w>!Uo^Hy=OxY-_5oYzd*%RO0C|yj4uj_sN1m|zPrRVo1jQ!Q# zpIqIj7B1ExOWNB+V1n+D(UoFO&NEBV54~p}l@loJ4IdmHkoeyIrd1PW98I{n7zniA zmB6c2?G$qsf70;cz1#FW0*&%i%3YWo$cYv?fA!ZW`^{?0*AGa2FIMi`^A3Zq24h+6 zSv9NuyuqK=BTa+U0Mz(JttNnMuo-Ks{%J0YVhM8SDHmaLRN>7YFglo$B~qx^coa?UUk&V41;&xbBpd_APaO_BbIY9(IGa0@v&4 zB5h}psXJ7VhInO#SFxh~vvtNe{R)lM!O~y9^vyWMSKp3b##(gP77(m+gtB%335X|4RnB-J+=gx?`emtIRb{ zXZjD9e1czoS<}2&A4}4HrvL^l-~=9rE@j~#e(%2bidwsDM7>FAj%lJ;d))EJ^p`nR zbDC=0PB{q+J-kXuPo~5`EM@`O^BhO_aLI>Xd!CHt{FkZOrRJq^A`YuxJ(mXHWhkie zGK+9`!HL$6={h}*I>eV94Q=%cuy`Eg>XEhop3i0UnF9vm1XcUu?k)5LX24dv}Z#{tYr&P7T1>;1goZcOuk@_$Y?C4 zvaGt+O@Q$Gn6N+4=_4=NX2GO>>j`5>d;;SviJds(34-q^O3I@dX#WA-+hmA(y{XKd zPPY9ENw5s3wVBp|13C$Gz0e8b{?pQ^bphg>ahnJVK7a%au>8iJ zJyBPS{V|w5^=VL4l4-xee*P=Pz2t??$@y!t`rLep~o^iAP z?yG$>jr%Zz#%CW5UR-t>(QmCj)E;Ix6p4KJd#M_p*>k?YXv&rIRiS;6gka8XiJoW1 zZqjD)36EJiz_PR56$liF3B<=$%@Qf0daw+`XjFxHBX)_eZ_0MsslwOA#&gI0AuzHaBR*|lzV_gWbLFvy%S-lG*=$dVCnI5%*;? z5iF@9g6V!P@r|LIDfrOE7cW)*obeF}&So21j0uNhj1~FV(CUMv7B(`Tx&Gnf?uZSW zsp=?@(Y#y~C9SMDrT1?(O-LgEZ)m$b$Qhzx089`k=fumI$SJ?9<=rPDkda2uUVORv zCQ0Hl(dm^HmOluUdlJ$>k!xC?wd8oY&Yu-ceC&_S;p;4_3kQPJ&u2?aYHA20>}f1c z-mRk;+0u;mZ$rVc;V3R|`eZaQ3^V1pjAd=q>6@5dQU&6XU+|alH2hA|K(_`ZPf11= zJ2r>d%RxqT7G5iBN3pZ`iB7C4nYWr+r=CLy=2>+h;~U@mdig8l%J_2OocY=??n#K( zoioaZ!1Oz)u>6VHj}Hok0A6vov^4(DHIoC*Ylcrr259=`tUxCc+HKzZ~uyt@~ zzvEcd`gJxgCdxGDtM>&Heu+S~{f19TPPAD4r1pJ=z~>HmwdXncOcmP!@A+&-JN0dT z<#W9=W4`g7X%TS1xa!4E@AG~J-|nYe5+oyQvmVYsyV$%-aD^_J&~I6vmz%Hu*qGD> z!4Deg{c)eHe?f~anqEGwtmt^V=bC>%`0YS6&k0X&s=^}z+~cj8LT>25k9+>AGA=|! zcljwF-)yY0pReziVfR>QH`|t+7`NahX&AtZ&o4JxxbEPErFt_I*=BuThHRZS@zI%mA>u|cb<)eA6RQ9OkinMzBI9|BFt;7og=v@_V z*IhN2@YOrRqH|VhvVj&k3==5?FKgbMg-ZbaKe=hGozo#6&4oIXG?;j=cS%^k;v)6tfk3#b!(n9YstJC=y zcaL1GE;8FaHY#}apf;fm#1$w2bO9ed@8eSrW;u4%(B~TVi4jrGm!x@-{;Cr%KWLQVA>rb z`+RRNpCZi7I=1Iv;1*sSXCZ(O&=SR*QU|!6bRIB#3y1Ms6^V9#G7sE0b z4P``$4B21wg(y;#LXZHJ&;9jY|C7EACDXgOfCX}}=e&^9#l4dI0eNOW)<^{IM$p?i z>y>nQxe}3i6{=>9>}bUVs5gZfWG_0(kn-BieJD!BXNhA0#NTDd?pCBG*^i!G4T@1P z%E?@3emwv_%YXKn7oV7J^0G%Qy%wSlHC8FRf4_K+!{WL7+zI<^Y>8R0sP=rO~lho8W(x58h3Z@ zHod620qKt%nkB+`Q|N`@^Qi0FS_5|CG;#|#W8xiF;f+~YT% zC~bM}&9FQD9#wxOvI}R<_TMSka5&Nvi-JP&-RE6bl-AMm6_Pg&(FIpreCsl?Ucwc~ zTwFkNG1PO=Ry2>Wr7pW-!6;XoQLotC@x?AJsm1m9^4=bSy^H~}AdUMtQ4%NRC;*lP zgS{lZV#9*J414>dP;iuWM#icIg;z2#z1>CJ4b-{Ui37NZoJnQ?Bd#lY(8mvK6y{+D z(*Bsu#nu-v;=c@laTBE1w-haR>T3cP5#8Z;6>s^krN9?c1vofm^{E`{s!exlr3ILQ zejD%y)ft62uu4?j=1hv|z}LHVZxupBIlwtKj;mVqbmHxLjudS3MVo6%)9}+X3uYxC%xxLcK4eyV$MYY)Gw@*ANo40 zyq46pv-}Vy(y*_=fjAn^NeJHGVW*Uq&Qpj(l(=8FVR(P|QwI0t3UBu3XGNprc?wPp zqc0SnE8q~aUt(0ArnL?te)D)WOttZ5^$)4~@T0I+)~Me?sMhpHju$;@F*$(y-cIqE zL+ulZmAtIqLT@b2eh?@<1T8;i?|#Cm;ok8;=;xAkR4Xx;)oMk<`B7AUl^qS&yWeTF zHRZTcLv;5(o4Vz_i}35RTovlY{tQO?sqaH{2dZhf0;&R~)3|%ky`F8BS zgwwF=Lw4%>iMtj@H{FJz(P|{LkmokWe0wW(pH`-pzjE>WPFi!hLzO5h1Bzi%d(zSxhSy`6q9vQGIC0j5GN&>-Ky`oj@iW-QI=h45#VTh zv7`?MW}G6=&SDQkE}QwJYTxJj2$LnC29VPJddm z`KIoyVcx3$8Q{I|?s4qADza)E@7H;h;~mWdBb8W7_qt&AX(-s6nfJA z??9hHh3-zpdna>U{I=^KUm6RIvpWXw?%OerhAH!oC-(eYKcEu|m>n~?fq%GpX!$xY z1yAz6h~S_QD!W?B!OFPjAjBc zIU(2xwa|Nr9WVT3Ix_)Z$`UqCE|icaI`pP)yC;$+?RTo%5KLCDetO?<5gY&ovHn z$MJx{3lI^|wh-0j8Aqbe#4xi4D}+M2BoNAF1t zy@?DF9g~X~_;%#OEf|W*5=O%MHMzp4bm?e+JVW1KL?=vFRv~ly(XSmK>_DVb3p+2o zno221Y_2wRDf_(hGnW}85Tz^0;df%O)3iEtqpQnBD4!=+JXa1Bk0#K(zy=uNGrsei zLSCdBIbnaxEPL;2GDv4{5E*P>aDn7(uDOUbfPUFB9I9NG9wti&VCqt%lx z$oomIw{Y&k!#c)o7|z{Z%=(B_$~u-6_7JH<#I1{coUY5;-B6m4!}?+E`q#R#(*1~~ zsB*`&G!7_hPFe>6xx5oa0&?3$qQVgB58lJd;f7EvPXwTU;#BaJ*&LLlOdxXh^6NHu z>Whyh3>}PD=s4&RaJylnQ64cTlP3L(2b@_mbJ;eSdKFBIw&aJ`ZJ<}fwmvJTUD)ex z1Fv5VP11MRNLxIJfld6+zs`=kRqH9#ml6Nnj12g7yFEc?ax^WUY=5G8%fX~* z8+Y}d05h=hwQm-b`+4R!rV113;Jf+-u?<7t&-!(+i(f_sF3C6e7iEtZ#2xO)`j9?)!g+lvRgX{)F@xuxHaBDUbMGn+{?AMO$qX!8 z^Gg8^-2ZbiuKqZ~C>!pcCTx4Mi#zp6#C*O*XW0c^|Vb*&Ft0x#Z%w=oOui|Nh|=QmxbH) z2(F{883*&({Qb25wk*=wAUuf5?(tg3@nAlq0`^Dvr6Lmfw&Ui$g(O{Cj@=5GnuHL* zi(z+Y`93uY*}QF687cH%V}(uAy6jmX7h)oXb#qhT*lN)_ZfvRMm`vZ!tCTMAGEOk zJsQ+`ewMv&05`3aACC54s`SwLNH@ty&O^b_TEt;u{R>GU6YBa?*m_rziG%BIy-r1D zkqNR}#Ev`sMrDgjbL7I9Pzjt4lcI4hbu?AASy3`R47^LI*q9Tdgee9?4C%!*&bxz^ z5{ejUO;)P9u;s4)64aP`8yqVo+FlbIs5mt#yGmPYUU2Xa?-zfM)kkFCXkFHyzXXF9 zVh-Coq6(I(+Z~W?ASLGTYui+bhT^U0i;(p%ZagYdmosL-+mDR(qR|s6`m2e8#ZN~{ ztfNweK8s-oWqWwN4OVJ-2VDck+v4jB)aqJ_2RXG=16}ck8#7pDF(Bw0<(<*&<^$8Duk`n3+RPy@c{ICHx8)BhO`xizl@8 z__pIc;{1O%CFOUJAoxLMMZ<*?)#dRd;#(ia3)N69E89OQ61N#}!est-=s z<#%|%`DuZ2h#JwXws!Bw)%0|H4~vUqxMODhjP00z!aES>e@%_j*~U2Y4BiGr{Q66Y ztTJ%dJ7a$g)o)Sld5UqPHN&mZ#y%@hn<8eZENxwvrtya1FOQuT*#LW=^vrR zEs2SM7i{gm5~o!MV&KeroAc5~Kmxl(WP|WoRphK_F;BG{5~1PlJm77Km;2()TXw!; zR%8MVh$z=-Gd(-mTi;{NRHFCaHPd%&vK+1M=Q3&&j(Bk3Qh$cL^Sdi;LffF}cU8QT zddY2G=)SG*W?4hO4zEf@!_I7x4lfB~lC-`V!%#Cm-I;uh~`8EBCaRk zi8-Xt>ipT+eR1#d+Sy{x{OdPv4%8YiV}6A57ABcs)KcAkX4n4M@6X4hN>4ES`baci#jj~>{8W1OU>mikXoj7+NS3pIo^-j}R>FN~?N<}pT!N=h8=GTOw* zQo?ZJP}v6jFjXp(cCFeeg*o@odgZ5G zxY||uUYyzp8mi+apqdVNZGL74-AVKrdm0o~ZF;6gEG0sJ9f9U<-dHi0Yy; zQJlKii2^prDf+j*XZMRI4RfyYv##NT)bP>~Op=j{7Gz@sSxE1AbnZU=^$xvnXoQsz zQqF5yiHIfOSWk4Zcj+KRIMF0vW{dyS{Nmj0)P}VH02(~6f+kMKo=oQ0+w^U)6Uf4| zhRp#T1-{^vh{Jp11^4I~ZP8Pi^FSjt{e_JD1}z12$`a9CNoS(mH3L**qu6adH~4R! zQY#G+UOJe_A>c3buZ}29;%q##C{u7{rSw@SsXr8P)oH>B?K&2q);#r<+nLHs43%pKdh|@7&psI4^DbZELd@ z)=xA?neg*wMPZib^PP)@^9E}Y$}@300j#Yj+3KRd+6V_KIV&@MxcO}Kp!(6N%6eO~ zlWGWEixXrwhjY}#v8~MgrO>>)9bIGV@rLr4iPPx|-?a;|QBU~AqYU3!J)7~h5u0rH-e`d=`#{bPSUhS=&Mu&2ra*%se#( z;4_1q_03X5vr-3J2i$!*wcDI}=LnZoiF|aK$Vj4(4xP0?ob3TegIxvssFt1AB3}{L zVad;?gx(+OUpJHKSm8RjbG^Y6V~rNJmk*Tgxi|gTZvh=6Pp_N?zV!1Dd-5F)c@4k& zr&{a{+2{7D%w|-2+wMo^gRXFHhytRxsAY4S#<4{NgleW)HKOTOQns9*bZndP8uI|R zRK;83wzVB>->J^JqX}q>_9#s2AC*rN$S1E&3~i5?v&M}NHz$5 zlp`eEG$2c|bZ+MY<$$0h2WXaBVU@&#@Ds8=yWrLUCa^h9Se<)RguVj z`Ss}~HAN@rxhgxnW~k|rlZ@*~mrfqNBX-HXS1q!SF1D$n_Dt#$<237r3Lb5A8PkvH zdA|mEMyDETH&@nh&b{r`ZswD8+$A@%jpk|IPVx#i83?yK>nlu;G3n45hD22)!VV%P zqno!~q!B7ERgUiRbQrm4A&r*IvjhJ9rO3oRa0!8++>wle7KO7A==}tQz>ju8mDHEriy`ux(JWFx{A=;|CFUd`^NxEhM7Wep2b#XfvZ6 z;0xPRB^SPG4rWb1?7vBJ_`%|#pFgS-Qq?k7uX{0jX*_%oart9m;YF0H(8c<1e`EI= zx|PrSFG0rOjxYF0i^+`1XN6M8Skx-C;+z-BqE9HRMqY)Q{+)_6PRgMQ*I$Pr4buY9 zA)A_qj(6c*9a^#+uR6HS7Mlx2inI|fk%qAn1a%#%egziQnS^xbQ)Kz2G$j>62ygxj zpX1%LhXiRSbX*!&!5ntfZ_BcwLR)pZ-16t`9NWOMlDWoRhbSBE~KKJ1&Q?x!{^nZhWO8u z;yP{0ImrL9E_)P?{z*9S@BZ0R{LUY1b?(+(ba&VHU zus#I833ee^B3xhmpnYWpP{?cpEtOP(H=DTsSRL)ADwe7m;^>3~f zi*>7%zM?6;JUWx}x%&+MF4*Zex6>sm3d}Jton;Yu!LGm9B|La9XolkRHI?*`aGq-C z%r2i*lh`4N%f-V4kGAxHma(Y)KxJIfaPpvxv1%U3<^B|W3@vo-C`svn`+cWv6@}qg zs$MWL^kY>^p&b9567^PQqypqH@9*;kdNwRi*YBs)YyI|8_UE!xMcbt5*{JZ833#c@ zec>X)E8HN{X_qc^#iNChE@lQbv7$^PGgJ9p<9*FtKvP ztwR!f$<(!K3wH>JMhxLV?_LXA@XWi50!8CXRY3O&YHd9EJ-h6`903B_{0y%d)}x&X zF>o>)4idYCjuX!&589|u<8{OJEN|Rz@R2MjZ_&7*?(ub|JPBarwAgY2_l|06>)J;ZDJo(Y zl&T;gARyADqX>vJ1rZ5NMQVW1La$;40TrnMf^?;qPy-Q_8hVwIfItX6kkA4o+|7B* z(R2Lpckj4k+%fKV{*kz|v)9^l%{Av-&wS=u3Jq%}v>3IpjSKT7UrLR#@dl((TiReA zhnj&k7lJ{N7`AM?^GNsWc0Z9L*Hw=$PZ~S6udd~mbcG0|xwchZ0Gy#ESt^XeGQyLc zUwV@>IRY7N>J>R@Y|^>J)$2qx=eU17u}xMniF33 z4I=;QD835>&U?cU3!%<(6b^mF>$He&Z`I)iXB6AMa9QO#E4BHn4^669Odn19Q@HbwM+zzZH5*Y|d$Y=!C3!Kf1j=+{s%~SR zHKUaZXf9#$^d)u9SK+RFdd`X*YsLD-u70=@cPZKi9IA#d(XZ`k`WzZ<9&h`2PmrT< z0V#Y)%JxNK-}TFr4q&_H(4UYK(D_TeU@y-Z(YBVVZH!wa1n*UMFXhc-T;_xO;DwwO z!?f~g&b^_{C-(-QHY{;DRAXZ)Wz%-mwt=J6w!=H^8}&(~4%kV>dtmOFbxB7UEbUFm z-Lkq3l2yYg;erqe0dV!P*}URakZlkduPZ(5q>uHU?vG*8b#0Zj#>V4@Ng2>GV|&-H z-x;iOE3DkKK`oG+Lv;WHkgdPd+j`wAlcgA0TBuBWase0$H?)JtWG=+Q16T~`rRt7} zR!kfpU=@In%N9Q~rmyrF%W?RQDo$@PifE$b$A^)p7M`*B@~8?eV5>11O@&+1#x$MB zw`R>ZZ`uM`(4Yb)=`Aa4x_3*0D5I0=YiBK~a95MikdvmLSS+45NUo>YAL_EhxT=p5 zsTc2ie$&lZxmPgp7T(SkUO~$9xrw>ZP>z84dZc#UE9gAFW@yc%%TJxlipxu^qY9CP zC#6?6n)u<9@XYZD1$nLr>Aujsl$iCcF*4s5(Q*j~(ih>b_s{2IP$Txh@&w|rOj*u^ zIoe)QB&&XD*HU@rD`L(MVpbcpCYb6kQ;%X|)XN(8F-WniY<-Q?ZTGpqPHt+L%#9fT z#=~T6(VK&#4~eODcBU89c@4=cy(;kxv-A8 z)%Z$%u%@aXOT#T>{TChdMat7z!Xg@Jp2#gf|W&TDd;LnCweUzxg(h?-J{l+sRr zOcwZ1h_o28Y30Clsylg(=QO;6_<|$1Hsv_&1oXW8RE028h|z>%9dz(=p$^KQqF2Hf z;n3Ga;}XT!J9%owaE|BM!&vu=nUmxO6{ce+sjUVm&Dq}5C&~cKX8O~|Zd3W=!z}wmUH8yafIyXkvH@v-)zyV%iC6sWVj0V7axNDR3Hd=d8 zXs-HD>>X}D-l6RX4~#TCsW(9E$=A4n)Ag!;xm61>q`L#hrnvO(K94c+bO%9uZI9gd z^FXya2kO6|tnRBE0kG(GpG5i#GN@$ECbE58*B)oL|5CTK{d9O8< z34=^dojHY30?t=2i#6~L3$z02uQ#W^Gl2r@Vgpg_jxOfjOELnLsNCoj%^_T7nN$dl z)G7_B0gcpj_rWD>)r3m!U0N!BnXasgjDXGIY|+9}8ZgHi(~!QiFo%uA<%;&!n6f8= z=GI9SnRF>=yyV?yMCd~#Cdv>b21(RY9C4dvoU7V?z;ro`?aSsuwXq^3Z|*^$G}bq} zmN=%pw0QLxZHTgV$5PrVR<$u-KNCXZ>%W*k52Ij=JsT(g^hvO7*nH$xbnAMIWJwblElpzDvDSJ$pxr!`5P-O|_DupJyV9=U)!bz-SN=M8sOxud(^3*|drA@XdR zON;eUMuC?&8(%ucK`K_lbI>ae#NJf@l&53!9>a+UJ1PV#>3&5NhVXT~sG2NT>9{>l zpyrp{>?B^vGw8$w=<7dV1o&^w!gxNO+8iyJgQBcP5jtkd4)kdYdlCSO~J*P2) zVJWUHq2t2&`PM~uW1aJWM0MJJ6LY^-E~2Z%jElS8R`{iJV5lFJF6N!o_9gH+w%jIg z`jypFhWA8fYc}9y6`Ib2a+O8lq`dSG(c1bEWxnil>xtj{h8FC)9-M*(v~-Fqb~`I_ zdac){&%=xtc2K68`5i>)19+1A1r^mla>FkZ=4Y9B2L1t8Q=;Xs7~>AI;P!6-T>(Qk zH*+=#<)z5wt`bU}iV)7W?qZ{H8nn+y9PUfTZKp{VF^HW9vKel)K++}r7GrqOPtJ%a z){s}RTIsehfVvRIzb)=QG+eCG1v!coZ?=Xx@&xT$9TGos zVY%rsRa3a)I_Lch?ugF^&6|zK>SdV6g<~=eGe)w^tm4jK0vm|?bFK>^*9Y8T!reRg zPz33;aKd?-)>AK%&0aZI4t^A`e-|cp4^lriejF+SdA$;tquEKk zBcFC0LvNVTP~^;$I@?S9^lf8g%MSaLkh<+HPneMgg)(EFH{5&Qx#5cP^Jw?k|6&Up zupKP_iPhq(TA;Wd!k0v6xvd>P?3B|NsdI&oG1*^%(FPkeznx&;>e^Muk`xsqCKY-g zM0+}P8IvRF)X7~GYe;21LK^n`0_lbqKfl1)Qdtw`=$o4JrPw(Ks8MMPTOI`GM(wj#=E5zjJb>^Q$ z&BP(XGA=z?^h1Usfp_ZGkAn)op>Kie<6f5sKYhilJ)?K5gqJC(&#^ z!ZZFIpRO7h#wEJ2U>>MH!?ig(io{b6GYil1L~*(1^!F%xzIx!-`~lTmbs<7|g&D9E z1Q&&Nw~c@$ig67gr9V_RGvc;MO`h#e1~LZ7#Q8K0iT-5L-_fQ>>bs?S%m_4C=VoOf z0xt-+@BzkUH1w`I?rOWudp1*p)j65*aL}KOP00Qc7$R91B&-@Z9*)99K4eehPD}^`pB~Th z^BHF%8aaPiLk(zeKls85fg0GevkVtpk zpaxDK?tt=S&w}%9>HCM(JnHHY7wY%qYaLP8vI$P^(brXgc@!H@=-2qWq1ne(qBEz| z6hZQ8MiKK8)}Ps)@iuR2NC_))Ec>!Bts77y137m3Y8xH%>9=D+q1@Hvz9C7jqPW*|4%qhk z&tVJ#WBi~w2gFL7S6NxzK80iNLWwa9ej!__LpUz`Lfa)Ng*b#~_<}hsGG%rGErJqM zMNdubO_^G_Qhzp_0H5_=o9(KBv{pLgYek~HpT39=`Chbg7iP^&!e`fSIuCrSRVj*o zS$q>0R0rhR-$WeY5{^I{JE?V4BTu<6RewuBS|c1S(5bvcR1qac>Cy?jBQ1_O4(s4- zZ|tZyVc=j^c(IVq33rhQ5B|x3S0*Z#aE7sg z#YzXZNC6^TjF%jbqt?67yrB-ISneZ-5@675cIl;YdJi`tB&O6js_!L?w8`Og&%c{$ zY~&ICMt$jo^x^UP+4(YT$0$C9F@w%IAGILOMDrzG3(c2eSzkIpeV9|dUrHUEWf8IM z`@+NXO8e*4{_zG{2ora()NC;MuNsnon6v_ z%$hx$S4aUDyK-KAMW94Mtx5)gldi($U!TH{4M9+m3^D$Sl=o4@<7!8F>dV8RV?nW} zM=pEs&(iAD_A_yPZXlzMib2>_1hmzWjbnUVMZ!~@XP&rl2V|>X8VAAi zzL@JRPb}86K_-VFHMrI3`~gp7So$W{y81?KpIkc1+G0a3=~zxk$$g{zgU7Bbtd{HF z6yAp>g;;uQ%`cqnUtIU!!1F{zf!d<;4Z+@&6;u*KmgAN_EnG@47l=xpIlQW6t1X%` zld0L)tWRshMa8F*SI*M_dB`L3s*BQ~vugKcXuhj+xIP^8Yv1?L{iSJ=p_?vyP|5S{ zr5ghGOD&mW!yPxqeS~Rj`?ppr=X@)q+0>!+&e8bJZ*B-An{ip+*3``_d5J8K@L<}( z)TlL?fqO(_hYBNsDUj`PvH?Is0;qnnIRVf~GMT`tD^GSCRP?ztS^`8HAOTM17bi_) z8rCQ~2&+id*i08+XSTYV1?M;hK>Q3RogHH`2MXgb(zDI7 zZG_ZtnR7nt^W9r(xsBO{E)7M^F0HVzNVfi<&|-#;v0{#q;4j5uqvIr&+WD!~E8apf zI2P2+2nFgR|C%}vu)epp027uhJuSwx*fJ^!MRb*>v)iO^dr z76HtYm6ILB(xk!FpUD;C2e!x=#zZe?l9GSO$y|kh(ME^wggVoYKeH=weAOqZ&gFGO zknm8d^82gkGfTw{W(>>&6MrF%I#LwdK&q#5ucS!!oQg>tIZIGEf)yn&FPFm;P%V&C<;+nnxG zR5H_8b`fbE1@Qhy|FV#uCl&y!BYs02O&sb5c`>7{RtE3YII}}gBuD?; zF!0n>hPkMaQCAa>0QccH(_QEQeLKu)+y!r|7tzJz^Jf)J)2RU3 zoU}Ty%}@SV*gBn=_)b^-Qw}KP+@3KXNf4FOspF098pi#m&m*PI#~v-}7F`2)lh_zB znlDNU8~jW)!Pz)NnS2m7YE}a0_o|q691V{N(`Ks$0`mKj7e}iBPHePPK9J5^`+#%2>fZ{X=E9+|*46HKaO)d@fz&96gXN-p-k{ecjX%*|{b9Vf9Z}0N0}1 zoEP&ZpoAtGpi_0kD!W!DK`usQv=Nr3zcxwc-w;Jfap#sVU(;^QH_nrG+-XWew z;|McPsrM(oNsJ(ao2ez!GrV_e!UY%o-9-*JwW+>T_Br5t#m)rCAn*NP?aWeGeK?J6 zhj&`E(9P!$5+vVLVb*TQlXMMz(RI+&?cs8)ZjlIjBSW#;2ikdDkU1!vf3XEkNK22g z@x9o8Wo&gFCg#X}m{ZYG0LQ_M(pU#wftPy1qt)@$d zzDTN*zi|dXHXO`=w|Er;G1pQDS4}mI4j1bRSs|Kd0is}DLujE^_WY&FdmO`!&gw_4 zCK_*(RgS54WP&(xq|dWo>|v+Jkw{JI!^HB{7!Mfx<~`T>m2M;JgtvW0*15h~Bl{0Z zLIYH5w7tR>-YLP>je?&)6)X#dj>YTMY?pId9{ZrTM+o$k(|y7@3N}gDUVlFFj#KL8 z-2pLo2pMYM{LX$oNQ}!efThh8x|z|I6YZg2mTMyF&%eVsWtvI%O|%1$nkaxi$z@qP z6SR-vT{BnEzzBu9(cJ6OzqwE&1Lr!T_lkApHa7Hz#Su))OhS?=ta&_fTG?96;x6Cq zwN&*8olZJ8GWpbiR63w@r{I|pN&qKmbHz@e4fA2ZKb5n&`$!qZc>~f1^|lNV8B5Jx zzu~MsJCbki@AxjCrIspJ0piNoP)$e-U-s(NqlrdqExFCFV zZ>bI4nInhpWb8ky3T`$^H%bicJaKI~uw&5nF1hdEaDCx*mh7&4;;`_l#{e%rLm)EqBt$dcZ?mnOzHft_h3y@jP$!=cWM!r< z09-|mbUyZ<5vYIB9jy*t@Be_qY)U~%=Tx3e2eD z&_L6tcbZP+WT*RKJpP?13aUK79x(SEI%H^wxm~g#TyI7AXn9A3##G~eXsfiw5)VKO zN={{5o||HrTHlq7dA5UNhY6@6EX4EoW`4NBVFs`G_TYnmoyQGrGgc2WXs=+LT6;`Erc>PSp<0 zh)n*>?G!rDBJQai!u3*Fof+VVP7FHRpBrU|a=Ov)#oJnE@iyE@CNY-xxlv{BJRYQ} z)Xtl?5cs*ff8{dHaG&)wX0ehxx7#2EDmwrY8&r(`sW*QUUa|yeUt8SY z!+aE(`%lOIpw#~(vHxn(|I0cyW$NR+29k9gUSIxpqCHJOpD(l5&{&{V#^(MS%`MQb zDmthQoMJb<3=~l7G{9Z%dVfzh>=MeaNeY)+GPLbV)0n?2=B~A?AzC|r6q#r?LI}8Y zSs3wk%r?TbRI_Rx2?feDl)dLy$}0N@l1p|qQYEm!(RsHGI+oLKR|hPfZ((8qHen}M zmDnff_0V=4qLg?^KzqyH#rCNe z{gDgW4PUb&>ZLs)UU=e}TxtT!l4hPv=7>uSB~{kE>wPv0RzR6&XeADQQpEPSZWp3f zx3&;?YIaA%cQ?6hP6h7?oCtOH5Z)XoW6WL!5ElOCJ$eCufxeTW75BD{(_eK1fM;*8 z`ORiqYFa4_ltBm*>f4H8c~|hs)G(1yx@Zr3_*El{B+_)aK(^PsArF zWzgKes4qF5NQ5S|_p4hd#@!a{&g{|ko5{RvV|3@b2Z>A0@!IX>Ektn)>gogJFKpUt zfUX~%NY7&K@4)&l3|ckrZv3v*VenD=#iITy!}01{{UBzaKd8!M`a+)BR9SyY@5XtL zjEz|XoNRYoI0~e2#UBp0!>fw5lW!+*iI;gF=23jA>s&A4J3pn!6wxR53jsVXOLrZe zwl>#_P$Fy1bZ2@DZg-56$U}|@+l}Ty@Vh>-UAet`f=Z8f5Zx>103xt<%;9ZSV;S_W zWfgmABrpcJcWnV;*7agi7j!eG!3G|7~1*eCb^D9H=t_1{v?J^31Hbzml>MsedfG$KfI?5 zGScO9;zvdMyOEm`p@AO30$Z){v?fABeOqonpRBiN2-mczf7O(k%7(kaC{lhu1b~=# zeT*ARP$dI|@tYV|K!T3^bj%JF@?MKzHL!P-`A)uElc4<@DP%L27%#4_4iN!$uY0gwy01J46!wz(UGj_}HI5lxIJEX}ew}>)ct7`v z=c!%mOXIHXV~9_Qmo4qYrlbBF%l`5M=Gu;mK4(WlWT!q=XLGMDU>u(tta!HUxC)a5>7!X3%P%U(Bo$+=># z&F=)J-vm(Pgb@>Cw$yVZ$wp#RW|C&Adcd9dvdIDi+Bcf4e1Dr`KMsVA=FX!RP=q8~ zfIVs=I3!0v!osQ38n!^aY8*Wi>%I7q_!ES1Po+eU?@`mi_DIZp8OAqbbl#vJ`}(f2 z*VCSS^AX>&daQ%CpVzLFcm86E8p=_*b%TaC6%juTUH@U*jz}ghIi6xDn z88die?&Umeoq;q2Y#4>WxtZcTZi&UAYLr~;ga0V(JJJIum1!j_D50E%ZQCgf!4!|Y zSwnEZ_B+3m#HPNs5wZbgEB@`uQ9WU(^fmy=O5UG3gv*!DWIOrkSM%`{je=t0m5L3_ zr)i;@t-%*1V_l2}_I<=M2$Fo)8z|4Yd1i<9CS29h#Z;*$B5aR)$tY4G%VfHwXcOjl zBA|-Iw0m6PtTB^uKFTu#UrrTb4N7M@4AaF3-wl#QHub6AEru{@o5g19DXNn$a} zTGbAjk%|AaDE@~~^uIAt&?GQp%bJdzR{&VyUHgtuQ)_R-eO5)g2F=ZiYmuei;$FlF zx1THi?wXzB@cee*gDxCv`)x)j^S#i;p}SSlKXV@bW_MWuJGQvmR<+QyuM91UvIlu2 zie?@oRKuyh-NMt>{9D`@|5+xc!$pXZx#EVy=@&)i@e{x)JSFsvLy#)3L91+Sl4Z3} z{T(5P`;UKVwEjEi9nN+*)(!#Vr%GK| zXfa|A8hZFL+2P#xT@7N8_ra2(*fPczrSqcreMb}%BE&ZVE0xy3x$U6{Ssblhkth)T zc^H52*nf1kq)NF8fi#6wBf9GV>P5H$70-0E20`uD2kPWlTS(7#f2Ez60fZF+RC)UI zcWa=`_DnomI~?&95+1 z;>@A4he^D^x65!?kaYkg<1n>K=wTTB6?kt_MBU zxcNVd;gpE$afcsGWOdrEKaEM}RPaelbpPg_fwTIX-uz^$l7$#|9>JB55?I@6dcT<& zCS{@oUl>7|Z>-?Hkfy=;6ja_^uKnNN{>Lj>g16R20pf!KoU0K?pi8XG$ylrjQ_CJS-`ZMt zBbh^VxBX`ZPFjqL)O<^^o$A1Kd(>1vU?op|7QIeq>KqJD_p}?`(zRztC+3K z+Rk5NVgosmCkTCxfN zwzy}_I9=Lx%-sxurTGGg)U5qOfB!b=l%E6G!u+k?@ArSw-M{{1Di6RGFo?-0*lx2X z=rAv^&VT>$OYM*S{p+*Nc9_xui4Jh9ko4cW^W)PwZUR7siox^XUDp`NRR;lS^v4@I z?kZZ@cRPuWkB1p{g*}u#P65)$lguC9U9=Z=5*-E{hj%rEK?{O_G)%!}6}u|O)UBQD z(nneLL%T`?V*p5_st@V1YY_d9qW!4G|C|>Yw~~0!HZDD8CV|emXZHyp3rv6_!A+-$tmUWa%(^Ou_xP$8 z-$s{NO7QKf>^2sAF?=z5MUfpe({gNnJS$T#(_ht{-?g{UqW}*n>UE};wr$shK>D!v zn%(I=BIe9OMp&}1_d7d7icG)|VJk7g)Y`kE=A9oao0*TP`4DxZXOEK4_@+a>N5D{0 z0B+=(xZV3Ia{C2x$%nRE)Mi3U^JP!nzZoaxWD{VbnWWNnpWxTI8Of(Dg1gi{x;K3~ zcHMI>lL>2#t?;e?sDy{aDf{^QD>b*(d6}9w+kII1~;E8|xS zL{}-k-fMMKrv2_l0RtsiB2#b~)7>c=h*|{sJQI6|^vX0QoAI66vHfm`gRIT``Gu>$ z(nuaD6$lXbm-_HPmrhc=Wwl=LB%;f0` zcs4I;Onukwf&!JRX-kl~F(s5;9glMIGr$Wlv4{R>B>wJdZ;1lh?X5BN8&KO0K*;+( z6~6eh`HJLACA0=@=T;}F)lLWc6mD=bbV@DLfspoX> zbZ*&*Hb30m-y7Gv-TKGAZjWj)9^IQ1@+u9K5IJLKI8KePNRYJymJ6H1cG>L4xNL;M462JaLZ%pd?^J_ z80L~ND(Ie9YM!sr+&AL0Of&VhxO>d8h5>CO0BfY)I$dFnutk`}2S|NYww#&jCjc9~ z8B7UfbNflz617OcE^yX@-TC*MaPjColGK*C zfW+4>hvnxbF4U~OFKNDs#;1qGL#O3R13{}G&&n4uLhTp zGuYCbBKb4L+p8~92rFe>z(y;t@1h?g7&zUp$xbbv=)SBe8ucu%z~1BgZJk~5gF&NY zW8e_4@${lT1Rn17FdkSq&GhF(UQ#~0>gXu==!8CipynrSVYyPRF{-o1FaJLNKVDfm zJ|$H2d>= z*>?CHdp};>JqYhG0Yc%)5F_}Ho&VE9|0j-i*x`53XBGV>F}rZz(H#GhC&eu4b7wIF{ydZF4fQ zpaECT{PygD?e7iq*oC>dg<@FskdKGeQRO{*Y5)8uMM!y3s`BB4`cGH?{Ql2RW6Hpc zU{BUNPqY7Q;GW(7IcmE1aardn9;MxG`r{Et8E9xB<9njGkNw=MKU@9Jr=Y2WN0DK9 zr^&y+^UBe)o@@+RCtvQ`$({DE8v?K7R@WHu+dIDo?WrBQqMUx?2hshfYd?zfsPfrL z;FVH^)ck*c=V99Y*!sPKs@%Ja6Zp3C6!1!>Vnm+b-syZ67|+AE1djjQt6z-ni#*_! zrb6Cu{r=8F~oDVP-QkJTlsI1gC^Cj zDM72-Ax%zO6GpC=B&;8Ww5~MNQ5z;#r#ZJ{@C^Y7Y9kK^nH59v*xn?SQfd?6HGTQ` zhc;uQ+f)l53dk&(q=~QMZ=Yo&jpw&pk}9C9!*moU7mkPF1Vp>P>dS1Bv69em_o?oi zFRZ&PTsK*Zq7bVCAT;*t^EEQI z@4J@kGclv>u;}j>@rN*Fwg0+jP?|r#I7i$qLr%rI68JOQ@vrORO0n`f13+6GZ4%Z~ zitW|*?b8c{M9akYWnK&2!wrd+K$G$uYmy2V?{ICrXqlgIezsug37d4N$@i_vP|rNn zIxC+rR>MBNWUSnNwO`{j%7Yi{K(WTb1{}hVv*-ExEnddX-;BI0A*SoOe4$d zyG1iif@X{q3BT0u7i7`<2fh|OTDnF=Pc`XP+tJAY$8OJU&=bgg!dhH*+UI*D7~?M7?om7d`EJpeaqc(vT$u*&WwXvlBhMco#eO#a zja2}g&jMYR8S7eo&fZ_@)sMg5e*th5XOErvwHNzg&IXmU0M6(C!)Lx;uhvPdT1P`C zzS&j?nFGu>gngdqodEk`4-QljAXTmSw#1lM9_b#IGM1$doo}Pw4%kC%#=hoFzxsM4=$kA{ zVl~BQ`>GMjx%g3g^gx^&W^t@8bTwh1$l>|0mo-Qu`r-$n_GjA0xNn8ylk%u9lC7>! zTs!s8Q)||s4kT#!6x6=%Beck!0$-JlZXSj zA03t5uUV9)ab9}{JR(Wm*bKDaaD_cW$2Z}NTFMc$rH(_kN?f9GB%x~ZE9l#Na9I9q zMsWh?w#xH}8_$;en_VVlR3LB^`fg5C?qp>-cujFLfMC9TBYe&%Q8nd|A0^Bt<9=T1 z?Stb?GzadDj=s@DGu!)+gTzoI~FUo0>>m7+j)6@N$nm&M_&*((?-r8-hekE6)@B zJB;&8D!A1n65qW^<<|(aJ7s^r3=Hh$Fwvxc{2`TzLrmvp)P*t0z|HocfOLH3$hT2& z-^IAOh}xPyJQHLn9Me_2CjC~>;9#7@iZq*jTa0u}j!~J0cfe92)BQVn_jEo-@~@R% z>2|yw^i7@x%Cch8>#Em2I~XB9>YA@aaS6-;RbADA%ko(8X+<)89ELPa&9 zc8nGn49P>)aK4D!n6*D+)t7&y_0?%fjRk>N!v!Qyu2#ZjeR`%dwvVli(bPo!<&r(8t**j=X*HRHKc3pspWL-w*8`s0%p45gnmO1ufS;@j*vB z@u{EL*x16@w841PBbwsGtu5QJD9gSCI>r2SELH7sb-3EVY3$k8pXjzQTC!C-i+#XJ z%Kx!{{|@Ap)0DLym-YMGs-6h)JYV3`Zmu``-EMW8Ogh#z*(xG+smg2iaA%;+P)rhY zu4!K$<+)UHHp0~fj|4W_#B?p-eE42hq2Il~`VEl4jqwf1`DLJ&Z^APAQmA|8cZ|O!_9jUt-Ro@i)r$ ziJ@Mu_yQjVuR+3OZJ>RTE$J@&AZtknX)@G|FvM_lW0~!|w}>4RLcW3!o${1~h8w%D znY72Mfct^IRGJYcVeiLLG; zNe3~>OJ%X7rSKBlEpNNlVI7X4Z_y{*xR#MUsNfTm58}fi$n({kzIYEWE37PykM`?j za;EW(S{kqO0W~Hm_}jhBxOuUa)e8J<<#b8%5+(VVUe1do-5T&Td1K43z?+w)#be*| zrZ18o%du4vUzcTP%$Uc286}`9k>Fun97M}hU$eY*!o8B7ULqDIrXs817$4vJ2|$0YY(}W^?J33dQM+C}k6=IL z(06+q%*2^X(QoOw<*HlLm$}!{+9>yGng;j{4h`!L2aC6>YZsTs=j*i2m<88K@rafo zcSfKx)w``FuIdIS*lYwb0x}+!iE+zn^|f=-YIn%ga8kgpn6$i=Nu^ZnuNb^j&YXg1 zPQA^{6!5e*(3@@02Mg}M5#e4hl`NgmNSM8Wcz_y=Q3ix20{miyz9W-JJ)7oQEpW{`Uaqr%}33#1T_bdE4{cP<>Da>^4w3_*BcXC}; zq5fRaV2nkBwE6Meb9l28!j>T?T^2`F@;<$6ZP7%YdJ*P&8&>SlnN#!Rxj9&Nv&73u z8FtORYdgtjIH}v)QBEN7Oh4;5wriM9Q*|@2$4xf~nX&50(WVNywd5O*M`-8!1hpM= z;4|Bd6E;E?V0<8Wc-tb9*{-A4aA5E}QYv7s=e)-~h4wF-1R=|K&6++`xf$CEt47EO z4cag-iZ|m3IWN(yOz!xUYdfj(0|m8x*{TS+?anqdQJDI^Rn*5n128mDMMA?XxZ}Pu zjaKV|jH!f%Ht#dP2%YwyT{Pc+UF`!kRI*ry_TdGmt#ys*2l1@_Gllhh_kGHQg%Jm? z&tZ#oo1+9AM+k$}x(6rQEgBGKaH1QB-yywR;;l{!sT=vEZ=yq}TndgKwGy^qCH^1d zki^fCw~3xU<6yt1geLx{BMvNcGwn*C5GdU=}yuRy`--z%7Na z<@8GYP*?1-;@!#j#@sKpII%y)R-rr7?2LfLV^ltL%5KA2>yh17TBLh^NhvAVYYCwU zLEAZ$n8E#k^G~QXl&j>GY;6S}G`eJ+=O_%H(rsQ$Upy&n;%ypcq^{a-t5D_xEV*<9 zO^dP=))L7<&k{m|o{Y8o{t;WeNHSJ=7J;DfdQA0nFJzfDfRqMWdd=6vk^%+^p51B) zQ%@m7NP*v_Of9cmuSfk_;>2sS(Zm76eUDn!ZKX#0XI}Cx6rYJurx{^l=d*54io}}x zT9<*q!~VmF)ZC}@^RDgv(Bc%^y>koleaEpJ)5^r@4UIyAECK0e=7Dle>F7Ta{lBN9$6tKP(1zg%s5SoA)eofq zruu&>@2DE>HOQlL(N}jam79%zeHmF~HScXyn-i>M#~Q@RT~ zEq@ams9F5hK6Z z5=s2*ntNV5zNd@YD)qLB)&+8x^@>fFRuVCLnKE-iz_4_=6*RAHq&rw*iyN+R&4W5% zi%i=RWKLMdgENL2$t1jGdy=2adJ>PL{+a(7P#v8-06@B4eK`jJGm!O(O4)8?-1cdu zcSLQaWIk$7(mu?&Wk{T8WD;KKLz&*Sa#b+Zd|sSyRHG_3zMfTj~6+8e@M2#UK21#DeuWQ z)c^eDi-QbsTy#_gi8+=P$)Bz@{kE&%s)NR(W(DX>NlTKrZnTK;IRU*VXg^%@&EAiv zRQs!(z8|le3*@3l0~Cg|jeQ1>))uNSgIBqV{3(1*2{Ne?;I3OP6OAH+X{3$^scAQH zn+{H{q&^2?qe^f3t@n?Kq;?+Ma$Ip&)&mX!P}*xD$UqSNv<5njKp|eqd9%{>CmvcAa^i6y3XHKng$(wF#9OFd;hwPebpLwA7 z@sXHy5rv_<;Jb%i~q8CFkDqYVvuJ1KOJ_ zSJ-k1eGYPIPd-3RDM8Kk;`;B3yn_F-O8@h}fzm)i274#=8F1;k%KhOd0#f%j4d7-) zR;{wO-FX)8(yNdox2a@&;42PkBQr0ujN$ySKA(*@u;56MRFq8q*vbcXttM%=4kyZa z4889=-75j9#Lcf=`${jHxxE2%n;FLF^jpOTh}YJ)8kaW9ahS(ADtHei z+q}OTLgLF1;WeINStNI#w6bh$M#sHA_px&6bxg zpJ-E{n{HJJ^PLWj@sh=0m_J;>(0>z(6w06UcpJTvZ`2NUFn8grSRIh8eYGX#5oB`- zIvQBx^8MPA65FAx)L~?A$uC72hUt`dU0UzRAH??huuL&#;A}CwfT^!Y~BDWl89nSD(z;I{Af)YkTx?@oEpB( z_lh#m*7<4vtMiwMVk~CPhv~H42DXQ$SHfle>=`O)kHEdN@K@qjb#ezPU2v>&`Mr_C z=>e#ARdAYJZeM-aO!K~8!2vJU35Q##(gc7BVg_D&dmzEzq5u6}b8S#)kA{bJyCCBv z#f~&9kxQ=htku%rR~E=LlQ&Y()MU50nJ8)T_>k09P3l$eSmOD6NJH=y+pcfIUP&>-a&3xA???YuV>+{CY-RI+!7eg!;Wq^ad(1Qr0t zD+LsCw86?64}*KM1cyrJOU7Bt=NIqF4P9K(uQ&J8_$6lY2aH8~JbBXL?77LE9H~Do zw}{En+*+f|)h|U4#^F+Up!^$1PvIl&Gd_&On0bBC>Hd_KK?&HlcwUPWxoW&?Y2FNxJC56)j+5eTP~>*Xf@mx&Q_G0=dRY=c<(`HwQiD?D=Cv46b3l#|`*3 z-#zdQncyo&s(JfvJIR}&$UfyPWL2o4a`lGgnb+cPcWZhvXR$=WreF%bJnv1Cf_nQr|7g@z# za{fpmTuiH{(+ULXOP&a9ixso;(oy6%EUv8p_NESG&Xs-}#`o_{4kYB@yQNVs6e6fMGE-+@62SVJ zA8fpCJ@-`W{<7$aCq0Umi0SW~Tmd5cYBswBK1(KCdhqd;bgNRo@5EKF5+k0@$!8dt zqPyiGmq+~z3R0PlFnUKxjI%ncoLfMr7weNgMK8&t9|in2s>}M~F|uu=lU%wNNzKtUFU)S#a9=?HEUUXm z2$giVrZJ-S_Eo9zDRcjKz_v)3z81gkp3>gIl=y{m@mvn8ri7-$&#CfVv^x5YyeEA7 z-hHNhvOSFCRSPl}RtJyO4Aev(c%?>vT{HTE-Qyt*XdiUCf@SbV^u;&_rn`x8qUM}K z$YKCHY?>BNi)qa`U^(BuR>uO;Od6JfMvqJ^L$fIz89GtTVC>~|&B4o6Yg<}7{{IBO zwkyu{@kC`SfK9$}KEYQtIei21F)GcFAnKrOGGZ8zTy*$R^uYhc*?UJdwXNO5M^F?M zQ90@n6i_Jw0xATgqlidXX-X(6oe+8v0t7@wML>$QP^A+>Pv`_hrPn|LgeJWtgqjE; z;kVUu?sxCG_r7Ah>_%8qN>D zD3h@)Y#LL7QQP!GF43*GFwbwBK(=anj;tl%O9Q}Quy=Rz_WI&{fMA+Kf0a*hQO+wz zzs2=HjoLt{{G*V>8gZy)K;LPTN7)P$p0m>8+ z5rgas(Bm@_rjGQbfTcIBzg0{4k5SFcn}L(4Y+8FQolrBjUECHaehgK}rlU$Fw;2Hc z!qO_gygiL68WC{M?H<#W8uHEjJ-zD@q}L*bS3h@qPJ_4Tf;cbq%7~NKJf~l4UuH|T zIdN~;wjvX-4fyX#W8I+_$zfHVC=NZzvzQfme)V-5>h;iH5n0rAYDUw6HbRuSODt38 z;@Q+rThY@zmo&70&3l+>2y$IY>`qaT%n;JIx9{Y+S>?GHy_iOQE});<=>c*Fto(7Y z?ym_+#ko4T?vb>jZbBBtAV2$FoI^SI&cB>oi|cYi5iWCeA*|c# zWG|5tB@<{P{vPWyZ|ZHgPWO6U_hWNZno!tw_FNEmT}EAjZ$E`06bWepS2{hSm+NH} z$UT+59e9~Yys`IAt(Ul`*Na9}?xFu&{Ql8U79a!Q5cur>BWXVr{JY4f*$zqNIKb?# zEe=I=3J05Cfl;qK7?no)*JdgDx@*#9iFYk<@x|C!#YgT4Nw1~vCQ?T9LxGeOSwS%7 z%7a4tsAb359iq$Jf3HId1zFczHHReG!UOUwf=h){p(wM0Hnd7Up@1;`~CZ6l?d=jm%~zGKl9GN zzWyI)|L&3Fbz78Xv;X+de{Rxb4uI#>i*y$5|M&a-?GCGwK-9-_di>9)4@O*6U8Uw+ zEkF4`Z{LVj&D$I9{Cj@LZwugHin8aVZpPjD*Qs1(zP~D@!8}5m{y({Ll@-7cfOl3) z-2Qv`{Z&nLtv$5===iG_FIqo{nK+-}q;mahXEYvK2uL62WYZdzVmtX%`R^PG!hV)9 zmxD*gg>+Af+I5>(8DF&e+a1|0R4J@mfmiQMrCxh~eBNi|Aq+PU1jm(%cF$^pQODDev$BZ_Fp3?Sd~WH7gFhyrFmigl003Z|e>~)>6!EF)&v)@tqoAJQhqGB%{|o?Cy8A!U&x_8Oea;TLKXl}b zWShz!Z>5UXM52({rI7&;8|2bBpb1Z#~W2X#Py(!E~(K1Hvn(&tJL4lgC zNcP&FtHu?_F;<9M7+r8fDlD;?PA@gg22lJen^z)zgzVa(h zsq*hrwqs?#_7Cc6l?8tS&!F0v20S6tGa>Y^nf>g{p-tckf!wu^gPncNLf+udNY#i83iMw3|MOFLSgFoG zqWj65#xG&<)>})UGLQM9XZ0b%`YF)|j+}n8qVL&X$-u^6pIxckLn^Jh_J)lw>^!#! zj(>MX(jxZt>qB&v8v0`P4FI%g6c=(8GmqR0gN%xM-xxagv)lGx>D@^@V@CV!{KVq# zo2e^AT713FVZY#qtqcBpgm2l}eYJ!)F9!|w|2b>a0h*ld6I;Pw>t(d6v8CQmJ6m+H zo=L$org2!pVN8#Z5^`u+_<%zH8Yg+0WX_9!zJLt`E-#=%`+Gjp;37 zVR@%GymYp8+DX`zx3aCk zyRXlP3}g5BMBb}l6?a`Z2xV|)^&@#tf5KL#UM*pwY&-dA>N2>}x&De}!-F3wYWe1# zbC6Ouur2aB&F=X9)1F0X2Ve=_F=dSyIZoS-rabzUd`}F_Vrb-M^_7F0R#rA3c z_=$SENQi0r38gqc|N81Q1)uIMh9!md)zR~(^KSe^Mh@{GmppLG$_hzv8RO&ma*yrT z7_Moh-)-oWwSgIA-4$8vA9Em}orVu9TmfS$&gW=-xNeO3)=|9khD|WpbFTA|LV@fg z2e%AY{jgq|a>_z@6;s7+J~os^qnCCTrf$s=vu+T*@7;NV*` z7}H4xr2gbh(0Q}J<+qJ#GJvoFZ4bc#@K`a>4RAWuaaYAIo={nZv=S%?N&|B1_#@L zRm5p=Vq%sw27dn=R#^kyl&$D9`&@uvSD*j6s{%~+Bl(7Jj6xXaaF9y?Sbkh}^6LTV z8%P39P3ZkXDm4Lif??s?H&Eu;U@%ujcdniWU@n^_Px{`sP~O;Jl}(?n$Q2(w+ScOt z0wd&?YFa!W`S{;xN!Em^;H~g2*y@#a$dzdHihCJk9~IGJ4}gTQ9S3T z{4A%p_v+%#6T8~;*Eo7%ab2)qvB_C5_#ylFcp+c0i{K5+fnT8yA-LM!A^Da`hy}r% z6+E3^ZFK=D<7|9XCMoiWoX6aIc{D^T|A8R1A+lyG7P~htDGrv7&uD(7oiva?TiRlJ zxAdbr$$#F4v9r~`vzTj5X$ZLPF?YqTOeb0T3!5{#&hi!KHI-NAV%%v)u@o%dWl80| zLhJU}wzrQqdsSJIGMzG43J0h9r8%ZfpggFmco)`(~gpvA>#AY{=uwc&KbOg}GQB!l>| zMcnFZt@YP;6V|Ph!T3k{1ALm%sOpMtS4d8&fb2&YVrz2*}vG}jLE%P z2Dq4q{(JulTGo2>`z?y!$9F+KrW+b+AWwg8xo4frkvSeKq|qA13|N58XEVSc4g)o1dB z`DAY{D3IL6Op2l(VS7qBJL1Gl?l>aoHKgIPVb~Qo?E>A30ONuy*zS; zNY~}4^6}ea1=lH)==~kg*$(BjZSxeisX<@n?t!@sTy@ z_iz{}X{d8}o^I;=X6lR6ssW)`e_}b3s<%F$t-`y&#YmEF%)eMO)G{2OQN4VICRc9LnZ#@Yr{~U9!QK!>2x;;}Hicx(4e*Tqv^^ zLkP<<7sWs*9C#DXcy$?QD~+ol(sw_zTj@%*Y>&#yw)=4*enZLEq#fkWns7p2{7 z`3}NsU~U4v*b*EPcoJ&TIuQLw-n%9ZN=)JKvIqciuWy;)6gERiv#i4H;bl*bUCR3fSbu(VNWVanzJWSUJxa`;w=S#gg z9(5@&ZfY)2FD5V!Qr@B0Pe-fFR<$dDZ6luoUnoaOr@N~f>k;V z2DqyRM{;@aD0ii?!hL46tbH}+3Npl`w|-KLTHlXECAqHawfZYltl6x62 zk~AuDDV00vw*n!KNyp=Atd-o>;$TeS@1lnHl*x=zoizEjQ&$FZn=@l7ykqd|1AOvx zyUJ>|I+2Bfz!6~RXKN?HqaBiaJ#58Wnv`0d4fB<@w0LDDi%MrG!o1Q5q35lSG$}^A zpih$`S+Vhf0rUi6Vh7Q|a&x==82Zj;!71&+c;@@kC)0Om7k4A}uKVYa#_GEieU&G8 z4LHsfTGl>b^WO{SsE~YEb(eV+14R3{U^Wjrd;`sJv!43AOh>I_t}|}hHP?K&?$y3u z0SvjP5YX?}QH-M|jtnJT48cc%Q0Tp4HV#C4j6OP!HoojMUyJp34xH(?Ds~u6uq;9@ zl2c7uVuZ9sYdSm68jzJ2r8yQ-6@4FQK>Krsy(yy?b-86LD4BHDfx)ML@E^BhVHQcQ zh|T()%m3CR*1I({hVw9kFc%{0{Wz9-zv+5#a61$ePMo>;yyn%Cdq>=r5)}WlIC7n3 ziE9SOXq+q>QQ`1i6%>{{`>VL~Ikl0K6&@>`>Li}semjtlKrj4uGcNgaJ4f#EgJO{3dyPy)>7k6ok3^Emb;Q-hR?2 zsv}k$xsLR{Jdj@s`EB$Y*e9JzX z;`moecj}lPUg&a47Dxmn*9DWq@%fe1oKFFc%5cL^RA^ekaDi=#^+lj38)vRe`T6ba z%I%@ArMRbjdxcctCk;JG8WcA+T`7Jz*xjG|3D`wqpcm8H16Q{9G>2hgL%9<%p`i+4 z#3v;d_fOaC+ThN(Ta^4PYb*-!ii)n@Ipv`5HV=S>)~x>K?ms5&+*Uk zLg8DQfp$C~{^AxL#4C%c#}SPC_9+hIrZLLHaQ$y5B{~L?grUV?3( z9J!+wi_PkigY^6BL9L-DC4hHinO~RbaINh1s^#K$svFUXKa4VBvUeFqW-UhXZ(dhT znpV78>-E@e;*Odhwl$az27qaS$z8Ie2iz=jn(9ZQRL!@#Rn|K@l82JeOKl;X1Pteu zY>=)3n+FH#(Z&g)S-nMMKsK=0haU~{m3y*+ z>#~Jf3p80_6I+z|#Mv5J)2QUatr4$xIY9bzm&RL9s%p@Y8Edq6XNd=^TN-1Sn_AqO}xbqiM!&hlEUKw&Cxa(SM(+I`u0siip=E59A$bPu_9$ELg#7m zhZC3xX>oJRC>4^`HBqy7cdDU~s$UTB-Z7?WB9LC6l1;hP87YY}Rk4F#?M?c)sDsK8 z(gjyZE^+IhJUzU>n2JL>5HS$h`9vvo{LX-FlnRKk7&r=vLK02L!_uDOu?-Y>Twf1Ls%+^xi$2opqHX!XZKUaQItg8XJ zH{c+oLr0EPd&G;k5rJc5du_v0VrQ4Gd9i$|siTG&724nDy7yXfe55CaYVNi5YE?$fS6*K`58^dO{$S(LG3RgrVAvSA4HI330HjM|gBxTGdN((^F~ zC=8BV_*HYf#?|^kDpy<;+mZJD`wMcB)sLjV78%&0mpEnGH8P&I85_!5_=K-ufYJr0 z?19%4CGPkO*5@4bz^3m5=eAix*Y4~oI3zoK{9f-f9_KV%K1}(#BbTnr4uSTa5;N99 znSw%+2=g1`4?YjfDcLy=rb^LF0B+XtfY!U12F6Uxc$)U`b(<{fwyAv- zwVcGHq7hEg8!lmi`*$zm=3#*ZrMKSfF(AlkqGfHlWbi9J%e5FG{c8bTm@@nb$L&OS z8d2Sg9+0gaFF{Y5O)BC{bF7p%MQ(@n_z{_Nwf?J7kcNl_r7&ehzxfoOq4ZL{+U24= zaj`||Khb6O`+#u%mSO?vCveyZy_Bx+1L>c0xzw%Enk?r*rkkR9OV#Gp=|@mTT3#=$Xr!s9^KBDvQ=5AZl+$$_i8KvqWex`usd+A3^Bv`m7 zyCdFA-$(&B8oG1aYa(z$i_)VUuby+(nwH~+#+pEDOhR5?(ulyIQ!1*TqB3@xX%kxF zxOeePSKL-}H&w$=TsEL)bL9&$_nX%({^H9=%mX$8=Q*L_CQ!ZV$-#6C8x)PtTd8D| z;e)R`ROddvNux@6)csccq^6nSIh$~@z%IqtJ&3^|5k ziqof~9ry6db1ivaAE0*BFqQ?WW3?mxsgjNa06zPiuZfxumT^0Mxt`{%K@^7eM5;sq zI8T(Jh{13}tXFl7*F{7U^~xoaqGXxhh}GIAi@i);0_jOJymUTP>Lx4Zj4p?*u1F`R zyOqxSFH)|^jS9(PAZu@XZFy%A%q1;h7h1>fiUgqI248{|JnhuT01QaLNb@fNSw|Be z+@H~OL6Bm?^$;u2!lXzItDlt*$z{Sqa{^miP@{6Gi2G6=%v3|Bjq`vheC&PS0 z3G1O!2kbv=b$Jl5@@w9f8j;)*a0J5%NGbB~Wz;1SZugHRcE=?O z={m0Y@J)?Q2W;C|R#O_>g(m5VpobNYiwu#*gX3ZgAyHr6o(Xq%nSH)~?PD5x=U(>s z!EtaybUl0krl>m-u2~Q(QVj0*y=(}+v$KwD=${*mH}|da+I#o_5zrSqvU$_8*!jFd z5$(ajJqAH~Z8t1{vi*_40dOpcUc3u#7k(8%T@?;}cRsS@Jp`lv06iZ^37Rs8MX zxBK|?Dqa<{Inx6eFH^Q~@SL86CXobVPH`EgS=$6iJhLG5Zvr3;fGr*=5`j&u5it{iZZNV0C1}{7W`XgW0 z#R2tDfjLfGL6*oenRU{=OJey5nI`}<=#Rx!Doo~v(qyd*bR&=ZDxUA!W@t`S<{hvk z+3s4n@AL5qWnXYSFD^rkZP-eFXy6ZAdI)b1+t#wyc%83Pnh`+0OEXMUf<-7ksk4w_ zJaKqzmZqlyo70JXIyk5~aweh1F>$B4#l$jjrL)F4Pi4T~fRN7R?KbQ*Jv zY@T^zReWShVHw8F~1(QKO>cEPO+{idfnVo}+ID!g}0yHXXL} zAZPlxQ8mfbV5E6S1(f!xzIb_;S&OkP#?s&O0$b>>;oPkii`ciy()nrkSr7W#L6Fo1 zYDT?qKkNn>|JBWlL^}4YZdcK%D&V+LZP51|O8iI8q9xV}AUm^K`?S%M)H4jx)l>*u zp0^U^iuK|h83?Muvv^1I^3Bt+)HLK+*Mhes81qRv>rvIJlAbZ)+CXUV7X8BtqKKY* zlT|=%Cy#T!=JeBFMeZNihr7g7|0y`V!i%s^BwDf@d!_TQimT+GS`CJ*{y9Wi`3TMN zFxO?Ty>E}`%KfUuf>UA8a;uDtCxM8;tume>%@KhTwtFCc-%FZ^vUjgYb*_{?q@ae+1&TMNN3QFPaIQ)9G}y!a`}kfK2`V~zv`zGLAosO*@ zJcofomtQYe_twy!-IulL7Ts`Wtc40~b7aPsBfLNWqvDk^hm`Y!p1)bk);l-*13CLq zZ#|P%zBAb=;sKwg)P4(3Itara*V*2AG`-Aholt~Nz#;))8~kq744zIuZb>t(!R|bo zm9z&}23qw6RSJ=J?$m0!=`*Qcl+q#~IGi7at8+fn84Td90fBf&Uq8wZbbTyPoYq`4 zW|QgrhY@T4nDS1e_lNZDyT8((&$9dA6B+({qTCbIX!5VR(xl9pRlMg11kr6R}Ws>u8J;_IF&{*2dI8~z8>S;;Y#TZ_2m zhUiM)ru~L!MN4Adh6NlIoJYN)&DE4p0SBNd{ySISV0$hJ^QryZFE1Qf zV0|0hz;g#X&?@-6-tth6KRgY@oZBYKLYF4MhdueGmMz2*7=y+kMP_eENMo?lx(?7^ zQZ5f4CP2@&dDK+Wnw${y`Y`1iAg>Wma4i1NG0ypYqAo?hBxJAmSeWp$_3ZS@z-FQC z)l7^2bPK4%@W(ejpzf5)dz<+{a{IP5ML7xVY5DBi$84&IJ=FVBh=b`gRtH8~i6JX^ z4-09(Jte+t>D&%2UvXAa27$UTniLDZZAB)80DTYaUXpB~Wr;Z=9&8oE6%OU+ZhSAc z?n+W$pY1w-6>etRn|mz2_@NC1Y*ge4H!E7gh=J)KaIJU9IeGtw>j)-jW3Fo!Z94%y z*nF%79PCZDhyo6VKCpGkt8PqFMloHriRA#vU=gSa9!f9?IWg|I!)CUs(yFRU-1{xX zXuJd{hVtZC-TYNYIR4ryxbQGpDOsQ z$ON3|@;cz6vc0L@C!C)I0?t|~s9(dw;>su{X?Ls3vRTU-7%QPUn$1${k0{R38Be!^ zwyngP^ZKTB)4g*?eOw;pn`VC$r*d*VTiKYcd{Fu+V0}Ax%nD)@JFTXQxR-d%1Ea*O z^(L1#fn8c`dLvajb`ONj4%?;1o^h{SzdwR*3ki*QKVi$b5LxLY1SQrzgWfq8=`itJ zh2yL}Km?D>Y}qN6#M z$-L2o&2o1s+z%FiH{XU6v@AE(-c8D+tL9{aD#OoY)Nr-&(B@OSkc*)2xKY#-7UFY~gt7sAhnG;tovtPTO zC<~9u0x|Xhz%JN7hHG@rVZ)*MmA?x_Pac#qz2PS3O{#i#R-uhI7gNmC*C9%=uOy5e zR@nR!&oB!n_GfD)C_^3)L$!`2jo`(3VaB#y36GPU*2nxEoG8u548WF=u)d2gUra)s zmLKr`0_}bcrXNZI%gVuaSi8-EGRyV9v4a@s1lVsaBVpP`T|x9>2urO}3$XKVw!KUw_tmX!%~T zv##&VH|}-X1bsGhr5;*3ro1GOC}mU8rHAdG6PNQ@sZ(S=l=20bv@Xc{*<1&XwkLqb zpfQOWybf%;+COXJNKEW*e>wHWvRj`mX5ty+RH8DYGN|RtumjW?wo-SX%xPN`l5>Y+ ziEyop%TnPE0LEpxU@7Vl!)3W2OvYNh+@n1i*y}%37R$Tv-05ZS`wUp`;%s|d^wJ zM#z!|HCg^RczWTZS_|Gh)3#K*#bO!RKtM8e7UcK*ih0eaq&NxlPi$N%${H1OyM+^b zSK(nDP`(eeF%x4)r3Y#iUkh?nH?|bhwuw%UtVw9g*#7Ld9XNfJm61?Y!ux^1osdoG z)h%XYa0pO|{zHKdm&C;3QM{GYJ3fZkJ}YlC@IiY(gK$30g|{~W1WT>vEsVcK`~AIE zj`yA#r}E?Z1M)eN4ZWtxkhaV&9sqt(AUB+mFzdB2IXu%NY>?CaKCMfx$N?Y=^zRIt zWZ`OEGyw#JB>jIds8#u&9RBREYK%~Jp2#TYP!>&NbE`-+6*jMX);18K_%wuz`$et$ z>{||AxeXd=SQw5FvQmm+n;rKpMk39~qZX{HF}XVNDuHQEEJ@#r)cvSCqoAT$2mZ|# zzMaH|y$3Zp3YS!v(mFfvz03e4V~Gi9Qy9hjhN1=Ej^sFk-n&!kZIackm+@rpF^!0G zF#&J}6tOgzsG+m>e7;+wYJIV_-3XFN!m@3#F?vnjCItE_;k>zeeW}|rMeCk>(pX@l zA@Dk9wJck`zDQNSZT23}b&LdhqZb#x2>pR-n$v|lm)_Jgzr%Wa4HU4~tbctn zw5h1eCusoBF07wih65eSU))^8?TZZSvbTsUeh3hgm+dE()-0bE#wP^Lu1yQiEE-4c zQ%qSLI7)EKZKGs_&|x4B!yNi{@vK9CPzG-c;51X#Vnq0s70x5uQ99j{x!=Vya7&!9 zM%V^q#ONkpyR&u+%gOh}$jv4_*K}19wj3Bp zTIRJf2i$3sl@So1d-!q)@5ClU=NMwy5FnkCJUP0(m;6!N9t=b>bNPy#=fZ2~j#BTn z!CMu>kTHGo5isph47WZ)xnp4UybB?>>6x&@xX0I|zX(zPDFU*C`R|*pjGyKj8c>bM zA&fK##0bAD0S)-0q}--HPmROpO#=MdT9j(c;u&f1V|SUmzFC3wrZNwav+`~E+e>wl zKcqR#Sz!}7Zu`EVWV?R;DEwWN0sX{T8PA|ydFYQ?Mx!l47M@|}T}(l%fKkD@i)Rfy z?y531XP}!R-xS-gvnXx3!@yCrJHZR9P|9f+L*Sefz=6J5T7bf3uyWW0L zR~I^3ni)EjR4uO-qU|`G9w?5`N4Vj$KyN_~QiZ9YSn|7Ps~>}5!mdae1L5$B0Q?Sd zQ?=#GBX7!h0LIp)vWPM~J+YJ@=N*SXyrnZirR%)f9hfkxHH0wzwEIMG#Pu&>r=prd z8r-^)6kr9?E+f5L78=s`id(RbgRRPOxq65bHVu`set{9^uC;EZhonkQe?5vuyMp#U zx8camzndDEg}n8dNa;%2r7k~HC~EpVD`wp0C*}D(QU#Gy08f#>lO$aryuC4t-q#8Q znhOV%B6?Klv7L#awoP%KM;#9#%8*{g1juV=D;?Y`0Qf&)T5c3Fx03%Z-(h!EjdKXg zgW4LKo|YszjrB~}>3OEW(`bu!Ec1OwN`$nNZnN!uNBKMN%;B@*xK{}yGk#qIS@2>% z^SYLSRl)zxVGdILbow=J5{1|Ddaz;30ljw{!3cNgA90OLntNAn)Af`^Bn^=SkGgqG zoFG;52q60tbBko)Nc0g9ble?vIwR$=h4iz*oyC@{6852pbD(ZK+kol2B!Hgc9C|IF z@3)~4P=RKuV)YM&qmvt;McXtjlxZr|M0^ea$nEQc1cv!`1-m^^V=cDri5rxeFT{aL za`Im}xSPbVxqz;c_h&!`YmCc#ZC`6hj@(Aa@IuFjWQ51o`-Hl){@_?9Ab(I^th$I5 z%lxKX;23<3r#`p9pitFTQ&4E<+CWxI8~89r$EAZ!L6>G331`$qHTmVTp|G<&(s|+| zGvzpeXGS=~GN#gC9&fb@_w51IY7dDNd0(xXgq%DyyZd=U)&}5PG=WY^@=DU8M^K1C z7@5daiLsP@^YI{EHG;J670au-am&8UU@%u7z(y+r5mQcmuX%NYxG+;2^`ro)E6I0b zwRp_M(#HPkIJ@yOS_iVa+{~r7?hSRD^X0+k-5=yOlI9Fp*t!{mZ~wnWtC1{nJhw|o zyvO{^R^^w9phkH8T!gQo5K`z!9CDq{x*oIIj&$?JfOHbt}O z8&LeuUd+@d2C8{|q)H;2es`I5oT$>1w@S+6kQs}TL5V>CJ4UnV)JxpbINNxT1NLJ^ zMpS59{^0WXo}+bYt5AB3Z)|?oH3&9yWOvC0sONLND>4==dzE8;QxW#2%C!moMN?-l zFR3DJVCXKNC)t6nh%c-7ij?_K@3>X7{8lfOWC}0)_AP3n~dm!mL1 zQ}L;P@_(`0owbAWqLLm8wWg^Qi{EFxSRR;miF+aW`W7LbFolfN$YslC8_Ll=EAHas z-({ER!Ay|kUd1u(Qv&a8%y(FAK#o7#N@|@<#wUC3BqW18p4%JLt~42&^Q*nu^sYXT zGhxAjN10dNWbQz)DRbK&1A^}etK;99TSJaP_ON>4t@Mrwv9v@XBN%N75KfIravCB9 z@v>)Pd6^pGI1%bl#DqUC+YZy|DBGg>Fp=x#@II*%@1>Ji~6gjiON z7_O3rH|mN^gzpHKAa!>oz?cWrm0Dx)uw9d~t$j>=(sjG`%V~k@QA%gfdow`u?zTmL zaq1cZq_v4jGaqcIE-^DL!3?KB27=I7iEp6ES|YyVH=UM+t!Gwm_7`dn2xWv+1MA8D zNKI4x^8@R(al6#on>l+U%~U^-AL%xcllq089YzJ1E>77(#_yr@A- zs5wo&=H9+Z{EHv^lPUJMKfy#b{xU7Qb7aUquDZb-8+1>n&-gO;rs;~LrQT@?Q&Ap5{aVSDRXMp}Q6B9+us{M$}m=`IZTNY!Xt`B!C*D z;og74^q6tr0qCp;Z#}SxG)AF8$I-qIQJP=?B;6+LkAJQ?h%|}X#~NCd6@;2 zcg(RLIf7=C0YTVe;NjlE7?$(#S(-65-GfbPcL3#J;(Rlv(pS(+ZGuQ@S29#yV=CwIkNt8MgendA(#Rg%@v|3@QCG|Ej)FCO}%WL@o#lfVo9E!d0DRKA6 z1W{VxJf!@aDc$?kqRIDxeB5=bIZF4G_aB|0&!v%NkEJKF?w*hsX`uo#W+Eg~W*<3q z^TuKbrzyS4CQOK0w>(JKJ`1vaUVq17Je1d8wL&oHaYR0BxZ!Kq>F}e;%b?XaxfUgy zu|E{8Cf+&!hh;F}F8LalRLOmOdBazq#|g(DM{OF(1kYb~dQ&8mOHu})?8q>gjDnlj z$;E?84jUcZxAV7KLu3-Nn`#S(%kEylnV^JvgkA#2pNbHsMvj)T8A#dGXn)cz5rW`5 zWlFLGJREzop@=hN*H54G*W>dK{LtfiKgtyu2IPRPYK`Mr{u(^(AM0(`_;zJ0y0EmPWT|!q=%E_wtW0A>0`CvY<^a zwM{puqDxG2$jd>Of);wel$tzEQPypdvaRdTYfqG_WtYD*cF?lphLGN)oqKB7Vi*_# zy=B(p0M)CZYouhUGW{{dV?}&*R=EtBWlq3ai)p^-o1_H81Z^Os3+(nRDo7_TwP;yY zGOf0%_Iq%+!B;;Gukf55_i;JP)94kE9hcEk4v4==%o|;IDg(CEeb?V;kk@(}3oMRs z%NB^GOi&)1@N{1DN>1_UAySv*jIkCoY8Q8Y>%@@9=`B>u72H2z6@S-E@CP3LsqyfJvrTTWJgCrT&;|oN`SRninnHPaJO14D{g1Ury-b?UNEA~Y`lKNV^)3<5d3e+E= z>HUk5IH^b(ZKQ6qqicsHpjCgHtmvinAXn>@AW_gjdo_B|62GWmWasFcD_!hxanPh+ z*#-1{3R3GS$5WvjJG4?>?5>y#DewQ*R=kzF)M*krV_SoluOExy)#g}$94~+Rh3@2f z5AoS~=)0S?)b|#bSzeqcs`&R#x4xXPt?vr^WGrnKw^OdGw=eVlvFd$}^+P^An^Egn z(r?o5u>lZGF?eV?)T6!EHW{7fF#nCkZYTUG`U(TF=KriwL>ubGgHE$`X`Apzc_9f0 zg;kfX@Zlh@4fH%icVvrN`ZkijJ?j3}tTEHAKw0%G+V7#G)UiReKm@3`kU*Dp-opPf zC)ycXP4MsD5l=|`nRG}13`~i`fBFc#_5$<^Rw=P8e<}hdWsa}X&Wq}01_OP|1(h&{ zgmds+yW^f<>NIk@KnV3{>1^Jb;%O#JUJ}7Fy`%mLho|q6Pxh;WQokW@7O5_CRE*U) zqr%UO&4{}qZT63(E))qX&l9Yw2L|3TYzA)hHE4#N5pzn~9DD4eiHOCIq%$8}Z4pcm zdgFC|yjvt?g?xie)PN?|yInYM3wV%tp1LW_@%pRrVMAknFnlB6fWMU=M|EES0qbVj zLa5h4p($bqJahuYmzB-=B;4SQp96UR;bz!e5iI_f7r`xMhu`z-h#>5Q=v2k<%z~4E?_Z)2KzYKaT_^eFXG4RBP6PBr;>Xy3s7U~= zPUis$#ABz=*=Ita7tiF?ESx$iggV>J7FKi~YIDFk58{OI{QI(zGioSPw2E?{)OeKAAjgqwup+}=WpGp+iyHWfagdxLiiR zo4~PPtHUF47AH_SJ>0L(=8YCAhON(iQ%-XOoQCRuJotD^TK(U3d;i~U`Hc^ZhQx$+ zr$&=onDyMrO5Y9-@G8NDj0xM8XS~-*2m1Di)U+yRgZ`YmQ->EuCX4b*5z9Z1Z7?tb zj%}!9Z67y~xxU{mBR&1%Tkz-&S4ur&l+`Wc;>YKgkDbfoKO_o!O{$m8{$1;AcJD21 zkzPg$P4$+kmWXb@?Jg%)TGl6dZImcIQ$L?Paw^;O<)PZ*l%)6*Ns;bW2Uwa!0ZXul zJ&NSNsXG5Ds5i2*$l0z=9am^A8On$ttc+iPa7|mM`06PpECrw3RS3%(@a)r=p^hqf zBa7#f2-TuE$TM> z<8RwX;Bqx9h+1HtQe}=Ozlp!RaaT)WvW>(lU#vv$w`T67P%}7CW_-<24&vH=Bb}=Ief(=wxoA-W1j6+tph8|p_$XGcUR+5 zHLCCXzWlej{ue|PggtC+Yp40lJ^|HmETHcC69mVIV~GstQkNxS)@KVZ=NaE3FcNCq zV0OETW5$s(iqElg_K+GV%jqn1V&}Y+2f6k=SoOC<&jgC{_!N2F6fCIML5zJ3Q&Kh;M z@7&ScUZ2e#le0U3I>o`MvyVyLKj)im^s~ptPqlWpMfEnP@mLvncYON($D^k#7@ioe zI`GwM*lm92p1{7A7lPod`(1}+-oxV9=VX)>O`I|8Gp|mzZoLL2^507a^w?nrh_XMo zC;XPdot-*~(!K>h4y1be^eOxJ9CAiQtR(^=K&hkm-9N=#Xy)yojSh=2rF5Ngb5od^ zZ&GtQA*r|*8!KVdj`$KK%OWUxoDZuFK%q9vt8>eHQu{{SH3scgMi2BaPdD_}Ju=v4 z5Gau&-G}$@8UGTY0(RU^ zJg?*(5EQfI>J1|4hp-K$Lj!}smPpC1n~er6yX3W4f$g8K*ZnoB5sNm+%yI$VA>kw5 zpNE3T>*iqA`r(_y4SD3YkCERzWV8^kjAoB=%*dcF42s@)U469E>v-%HY3_a46M)aW zZ0_5)zsz1-D}K1Qsbfo$fhv{#Z<}=+BW;5w7NTg!!3qV)q~rHAc*iGoZ2>7M?QUhd z&Z0NY>p`uzcr9Z?vLWu2m`MlPyf~J}Wx#g8VCjz@7#PfcI-=0dpp83Bx%j_m zTb>syrUz`HP+Bd=$l3Z78rdsf2}!AHv#~!%*ni^Kd>0Xan+H@D@ zuzO5(oMcscNc|mH)#h)3q_+9l2%<}rm<0B-NmZUk(4pVw{04KD=(B}#8`djzFZ=WE zvo5+iD^$-dbqHR(_(^Ml@;UGRwDnrF4b^Ar`9@ESv#g~H_OVCo30__ypK&*&|6a4C z`|aNA~i_vgY-|h zrtt{NBcTUpY%h9=EFOe5dcRqGg4`IgowbH#NSAG@2OE{bZu6L}~(gf83_GeJeQ?dg5sYaj~)iF!;|Dfl)a1-2p=VJ;vlI>J`(P0=e`KBwl| zK)s_+ukl)rv*pF<%H$!N&nfiZ;tB$nOZ2mO8yL_!0MdrL;c(a)Nhu{sl@Db$9XF17 zC@Zx0@uP%L@i`iN@Nwm3PH0DWO6~1XR>AGmAd46x=F9L~2i5iyt%UhV<%K83$k(s? zz3HzO!mEoea9r)W)?B^hOQ@FL;&wM<-AU8bh0$_`yk^_abFYhBaH|YBUw`c@lXobk zGZL_JYcIwgjSV@7b7~wa4eUy~tEr{uT{m-fUnKjFVGSa2>GSzf`Yjf5IbCI(^+J4A zl%mXWlk-@v(o!&4SG>sPiaDkqZ|*YWrdvc`poBMADg%yj6S}%dXV`;Pxh7ro(^Kw` z{PcXAWDnjf)Db!Fy@1^NvWBp69=*d;qVzs-b4gN~=@+6t} zNL?*iSw_5!Y#6|vPMx$4|El`U*Y?UFSY14;t2O7Pm@Y38;1e&B_Y ze2VLM`;AK@)SK@|;MYZVd&`p}Vl@=VObjkz%@$;I2$MIduGt zd1bZ4G9~7ct3u=Gjm%~o0jbdgHn|kXu>A2xfFE<%_v4KaG{3)Jr`I^B4rgI`x1#xG7@TZW`*b!V6)EozMH-8f8_XpZ1=L5pG)z5waB z(dBNe?>*`O9vWa^oFA0m@ludppr|n`Le*V{1ng40{GOCQ#y&ln_ptPNd6rVny!W7J zC`*3#2ZVwW0Z zL2=!r>fjE4dMj!3UI)B3zsbZpv*z4KaOX%=v08RR`(*y`#l{a(#y!DNd(p31aZa(R z*YMkIT}P;9;~=nRQsCh_l_au$rAY#m;StHSSx;JNxTs~m*=REiR>R^p^4>w`uTG?W zzt7my6=q3J7-tg`nlluOqd8hCXve``o~6utb`kLNep-YO9Uxs}7V~HH7dM?D31X{huBJomjVXT1sJR$)cx$htm}Z&b5a-7qSU96uxJIVm>6C zElB=!L;!!#J=e+QTO=fr1=z4rFBq=7F7I@&&IMjHiyC*YZo|`-W{e~F+{{wg#IFir z4P6>yBCne5GFNSq>EZ(b2I%Cpwp$EbDajr;IrB%mCSyA_+`}ie5#;6bGAO8{HrVr-Y_ibcLDf_x(__}U z%z_I3ty|+|#s$mrHHj6b>Z#LPou;Wi`oY&4a|e+<zx_!mHkh zpR0P0y{A^J+C5$d%>Hu^u^{P0f#F&hJr4R=$j5JwUfrbc+Rt}{=457e%!LV3I-1Bv z#$6n~>(&geo+&lVS$X9d>pfN4T6-Xf7?hiik|lD9mSSy^C*iS(x8-uug}++Ne$Ap) zy-+{(=t;9IlRAPPyt%`Y%5|UNCJ|k z-X%EF45GK(TdCmAj`uGvJf-^@xDtiRXlr0ZZ$*RQKbBC+ALGaT9) zcH)JQ8Epr^t7l6!jho;2t?bkTzX976h`BFQk{-2jwXm_XZpx*Y(|l4QyO;O&!=wE; z|H$ZQX4lF6a29b-eEuNkp5obFp$kc$VOWK+NYpuWc*_l(~-u~3I-rNLaJIK8}AXb|sa0nb%4k;CrlnckS*Hw|W1 zFu@Hf*yz$3zK}V@r1vczt?ZMQC5mdR|kya{vM$U~z&Z>y0UH zCN?U*U@Bf&Jk{Z~5Lcy~T|!0O2ttYdUn(!FF5)@1+V`DFdOP-|9}k9;uD17wiM0HU z_XVwtQ3N6_ClJ~ZglhBaLAJM2jOM)`%@&_9G5Az>3?sO$kC~T5(aw8~sY>B9FZ>mF6SpUc9tc zm6L(joaaB}vA;Tz0wWO_-k7;@B+UstI}_Pz4Tz}N(|jrTvWy+I)*Pk7*VC_UmFg{9 z`bou+HCiC>28mw;y>Or*J4Yl}>s2~NTZBFD*7JPt%`q#l|0GzRyzfFu%f)J4m9%D< zJb|L=BDTV+U%MkA{X->8GrOmEEm6C(e_u`zSpt$8W3OEWxzQ<&gGX0!Uw9)_DEJS{ zFta#U5HV^_rLA6TE;1gt`|CT2jX_n`A?0hFxzMzkoSs_2RNqZ({wu8q3xU$b^+&s@hXbv@IIH3-dT zsQ0~tX~#mu7ep%cc|=DHQ@e4T?s^xDx6}1*N5Ck0 z#kG;}bn5lE63y3!(_gD+yfk1N9$D~(#rb)O6Fi;FV&b2O037IT24UP&0RYA1zA|vp zIbFN^eaoZERtFX+yZvhV!}e^eTxWFqg+$idJ967*F5;AK7)}xf8=o=-FT`$~e6@b9 zqF_JJVE@UL#^dK!p{jCV4%92VCnjERfGTSLTV%u4D{W2CCF|G7Y++{RuG0Lz-u8CS zXJ|%XrlaRD-Y}+UznvYi6w8hHxhPXGS{QXg?)Dj$!e`xpE%|a>*9_*kz9<+p+C-P; zs}v<|+d9|Xn>QMs0$0r1rMN9toX*bbNKTZMb$n9lx}|%#yXor1!>BQaurbgzS z_94OZKz%C-1m^LF!)0x!$##OCnkkD>he4#H-cA~bLghETuiSOq$lSo8#BOku4Dr%S z>ilaF0<7D6#Eh<^=xhd74+X)EPHWTmj9(Qc9>i-`dRW7z zLds9IF%X|EAyDQi5C?A(e;=Ik!^g$+@}O7Gk*ZLiR@&n{}P)fXw!6dZkk}exMDe0;=ep82fg<(dx!8r2wpI} z@#qnSar<$5z@|w1TZ^Pu%Q0d&Bn+I(r&GR!C z*>4UO`}Mcx!h|U4lASV%ke^>k8FkgXF-d9MU(~dCv0I}hD^%OAz%rZy)jK#5d(mBa zC>y3029M(6a&86~+_5Kr7Dz71aHq~dTjrIiu+I0fQ-_MXEa={8dhmCTXHpvsaKXK&v!c2j23B~d{ znd&_V**)1@v6&$awKB+~LFdd(7fj=N6?CVw(S){Ny5rwB7E#9eh2DSEaU-lyl!h*g z?0e;VBCMlCkyzyBY4aVpaeokc?QY@mVt)%?cS!MY%rWJx97OkmyTZG^d||!Hbb`ue zs}7-RKAfL5xO7P6+hH*%b>Kl*A;T@YD!4Ng^3k77W{029=*#zh_MgQH4mzU+nKDVL zE_efNDP9UA3Hn-xaGO|*;rt1|q8>!f%D1(8NrZ{aLKnxx>sXa?Fxx zwyt#ysO;n8KHz96U8^X2#+5pycw z_S$RPfC4@!>l?fm6x2rUt6R|nW1uxoMb$5|t+98%w;tBoydb`cj)zmIL(0&MOUw#A z^+;g9vHuf?DCk^pG`(P7VQjj#N#1t#-<)+VZ>}3H8No#tt-@kQO)sdMVaal{2TyN~ zH$TNV*p!PiDCg-oX^s0HkgHS0I>GQ3Kop-5ZhQ2?M~bv0Ll)^e>%Q+hw0})@7%tNs zW<+JhCh^7cwY$5l4m(++9h2@j3j?e~e1|8C1-&RZ@ImFl!0?aOrsb2;WGy*03$`y! zdN)eioYwoM_p0tO06eEttcpA`^oiIx*92zV$-#;-qWMRirIq~Al3vjFSI<5mh9Y=+ zr*DqMB{D*b3osc+i)Sb^#KNjElI=Z6PYN4r*qTpo!RJ)flzIHmmo5&29AU-9P3O9- zycYtVXDbJ=QEi4)Up|p4oACz|2+gQ-^A&`KFR^Km$hprf(ZRPX^*?xp#ljNwJ>%B4 zGvjnd#sTs5!%QC5dutwDC;XAti+)}Q32h6Rb(P7Dul64Vx-TAzM)g>aToi20kLOU7 z^Dr*g9V}JE==oASsCV7!kK@kTl#1b*_RuRUFIy-$Pfa8xWaQ=Ed3OZ@tikQqheFFN zqk68D6@qIw-n^Ui!$l?X|GVHXZv`o3@H8?SQcNJNE*W0~wO`0b{25wp1UERx(?T&d!Y{sFz)>gYicAq;13bM}%84)B12+ zYIQN0pc<;QX~qXYMJb#-Je0Q|Y>bsEp>R5EjYsdkY`m@(bl$J~@X%Zmrn}VEDP?PB z=4iphapTBq(9!jS)g$XZs!yFyqpO0&tY2645^39|a4=aTv}_xU^laherm3mkKe*sQ z*oGI(%EbnzCd`xsPa&e`e^J4^wijk@ER#Mh%Fg?5p$ZA z228)Mk|p$3iTCOP))}_%$GNzQTbWRYvr097(ukA@gE*#Wwj&rtGLPDl*1f&K;>g(8 zMS-TYSI?s^%0Z-oRD{*1*K51ZksW*sXucq(gWh&9h^kuZ@g$E;F-g(fu!m3VO*n7V zZvLg);Dy}9FwrQoP^s5h>H&qGmVOA7;sj7_8`|E`EOV-r22kWC+jWlC_iJU-+mHY5 zH2>dCGXdIJtbx!l4VL1rdkh&L)d*_#Z?htgqWyX{c?{a`x-W&%vKxQp)~XiZI7cdb z=iPub(a2i?SdzM=>!5i~W$d$%xbbuc(I-!=T$oe~xdjKK$0dhuXTD0&O_@+pI@hnWSwM5OI?vl5*_H2g^x-_U!sBx$JQXGQ7z`3uAD zCVz3eikhy;p+<>asrLv4m`kX9JU;HY$RE5sGF_!~o@5X#HsV*5O_buPNWx`BIb~C? z=5e?}XWMixT;G&Naq*7aG+5VrFXAM*-rR1v=~_xS5<%2~5gh!ZXUoG$C#Ug~p<#7L zZnIAuDEp2zVEUY7aLAFFXbgfv@<={rr+31-Gg?Qx&9) zWPYYcASSy)TW@Z=`@d|wwlKOv+9ltC?NCH4S?e4qN*3zX^i!F@|JH5#*zcKm-i7|T z;7SwT=G$zNNzU;LC`|Je4n6a(MRhpSYKRZoLTpm8E2fU+D2&#zn`pZ(HKTfdr(?8M zp&Dd5h$OLR&yuKI)H-xrg_$W1&p*-+&&R*Gn+sZU0;heAE=_8JVa6TNl~>Q)5k&1S z99|`uPlP!i|266a0-TQcQo^T83e!eGtLNvzdh?Y$9vz=50(+*O$WS&bWMI0C&HHxs zeTDKkJT?b)Y0qTW#>MOXP(Cm?B=ohXk>BN%#?#Gb)NtCl(sH!o1d#G;aUStoPcS2W z`t(hAhP&=HL0=yE+4__q&TL*!n=P%c@9!*`m@SAl_B$_y_Yv@4Y?4jYx5KygBERn| z^a!YfrtHnLvk$yJMzG-NnsgrfWsk-c|36^tYnVzLec$fsam!36^Tf6k)yLo4ii50G z(LUd5R{MS!HQLTf*oQhbr5JCsmNqb!Qt8NgEa`d$4)bx#1Yba`pFM|OGusNAj`1b{rbd*h;W z(b+sMWIiS?#d)zaz!qoH-jfHparomw3o>NSZS4+nc8X{IeYJ47{Tvx za#xC9NiPz8V2R%}C}$bvTE0T&`O0hWxt{ykus2dS45^br5`MmpC|(yuH157-t;#8) zM!0%5v2Hcaz%i|zlkrFe(=Kup>-N&!?a5A7$`2UB-c3@noo>kxAH(q#OJ4x&Vm)~$ zI|M7bL8KnR%7B!VM+0S^mSBv#J^Y-`uc`~apOjX=YX8NF+Cqf!c5SPWttuHxH4F2@ zi}+xWy>Ph?j*ljnYv-aHx|fRnL7f{1g-t*Lesz&sqWcd|$GF@>nLJu>P>?(_4vq1#7g=8v~M zGOAiTXy_!7CS!McIz7yN#DCWONW6&6?Ab4ko$&PPO)<(-Dfsp%czcA;3x8dh62y&+ zxx7`NsE&R+<#oLvv(odzydfC7p=hY!-zQE|6EUB2tff%V;7%Iku zNYA?I#iFY_n&Y7=f8~${ij(!c^cVlwF~43cqeMK~i4eQ(L?pY*pk!(u(VfR&r>nN6 z+0NREVmo^a*{V}!hW1p51_=-QmJ^!P^;Tbs*kj+e+^(u2dB%t3CY7eG!I27c5C6N# z{!f$WKmS#`iYs6ZkE01x?KRQWQu{0RCU0mbW0(QH$T*)y{uTh|to}w+J+nQ6?${%YZqwK)y?K?9pq52L=+rS!TBlM_L`$NafWG01 zpe>H=*Obej!i&LPR!%c0;G@eSm;D9i2t(yfvf8uyVzD<;?izdi*o=a+nKAw_NLTC- zkibGu0$3t_{<(@v8Q@!}Aqt)@9dee79oh5fVe{e-uqY|n4V^z&O()!+VzYX{vZfM* z?w>|D8~ZAae}VH45SQPml(byPIN$g|pYO*wsj%7%?8&=#BIgL`MMOMjd^jBv-f1;_ z-Hb^tDwm8Rz{0!gF^$>go*i@PLT#=uKWxt=0iy__gt?;n`an)6O67#nvMe$^PU8(8~+ZKMHDb9s*AGIBSPk*o<(8(UZkBU zrO=9>7oSVzDHq$f#mEF_vm*zdvUz!QFIB&kY9UXH+<(!f|BrfzJil%>%l)H82-$uk zs=>(A>bdHxvYR3;Sno7z#t%Mk_!w~HsXhuYh^}RX0OoLOkrY*uOJO>*u$IqckGSpX z>8zXUHS7g|)=B8Qci9lO=scKW6VRC8DPBm|ZvU19F*i5Ab@S$r?)wl%TL5TseXtpo zT(1PV9`r5xgGiCZo!S)1P+@(k#k%WbN?I>)2QBke_pj5c3Ss;gfZER$11MsYt!me{ z4b^-o$lGp7NXo<&(-p=9u4oLb4AnjB$l%5A=<15Lgf*&&oe9pr42TB_O9T_FN#kx; z@_i~Qsxnq~$z$LBqP>eUSN~zXQin<}4!iIh%QJ1YGkwBh-#-PKJIpk?@{YQD8Xy)~ z26~5FkKc_ujDWBgpdM%eS?i%oY0v55)(jh3^U3oO*!$>%jot`LSd;eZNFED-O=NB@ z>G2;9z5?}7W{;HfB&g`;&!00LmvFM2@)TWC&-J|N!h{@}qZt<>N-SUw2+to8iutOn zbjOrbvkX^ZbaKxl!wRm9#uQ+7`ZK0cJawU^k<7v2Cm(*=*lN9>=v-!R_>R+JOr(cz ziTNa*Z7Y=YBTvWb@LHy3Wxm5VV(U!BuW#L5+Yg-|8?Rjj69bXPoobRUE>-P^oF|VN zY{eqhGK@Cr_7y87@9@p-aVus?E;Q8N+t*yHx7gRr(=F0$+8@R*IDS0JWe%4W-cTM@ zL9$X5%OJ_W0Eo@@>lTm!ulvSMRP)2Bk$2P{98(B-7f+QKL~&XVNXS|bb|6z5f99ht z{Lc8~!>^>;;|v&(Ld4O(*=U-3PLgZ10{r9A$Cj{*qPRd}4F_bxzIUld4-`;qDNa-g z&b@?Gd)O^>#LO=}*5hw(P2zJ5#btzY^q5kC3PHo(u9m|?7QxXGUobhUrsvK&3bk$i zYqu?RV153m4(h*&lh?^DcI(lDu1Nk3(%p9>F_F&^5pJ^3K6<@u;nY4H%aI3+& z>K(@4_&EBTR~thLQ)|)Idv9Kh?Gp8zu&D_~Mjdvvh6yqyaa+fNu0ThXwY`JQN%=y# z5XItk#^q$QnTzcZ&~F*U)GAOZx}13L5oHV)Pu+HkQ}e zrs^s-3Gmc=yh*nD)n2*I&|*6I8R zli0nFnQO=P=7%z8Oy8$I9B0+@8K>P{Zar-0EcXVjl}LT4vDNEonkn0Q4OEwj&u-Sw z>vUylcMu=V>Wb^KQ)q zqzk{Bhw4$k7mu3CX49bp@hL*2-u!3gg;6KCk+2WV6@Jl)cf6xkKT|Yi6P;vRH-ecY z9+p5Ue70L}WNh5-JgQ53IOUkb%tOZc?Ol?Y=dOj^$Xao;X4AT`yehLE?Wnfnt0Ld- zL@sG>#txP#oA7}wDX9!GT%)})>{~?Dq8{FpYO>J0Q0Zi-($MU*XC1t%;ow{SK%s^b z;23SNb~J#x@J__fAi$uDai8niyb+j(T+> zK{QK)Dv+Lg=AH`vzK#<^t@PQ#QRQph)xYN7o*?6dUFM0981l?B1TqVQS zc>@5(_F^v+bsnekHu|^D3}m)nj9;v;dKNZ~hMqc>EKd#3(Vef^%A_~_@}O7gfv#N< z$m49!fba!7o;YuKL8{4PXgSc|iq96iKVtXl5z~sFJFIn+6!KvhALnBqMmMeG_ylIV z=Zl-$#yqQa>x9LL=-EQ2SYGE@z4|tY+nstk!SxM-uu({!EvGX9^`Gfv>Sdzv07OWF+hH^e$BwYaI zJ&6z#y3W@>0%@5!m4nF6dv@B}C{Q#5?FSq7yAjCdrlygWWnfUdzx&}DkM*U_w|olR zZ7YeWlGKu+bpMDg-+a7_r~))MclR}#=d30wN(HrL_8-{elGsjF>71XNe)!;eZtP%r zcw+nxo6)jvBQ|M1&r~mxNc!RFh?dRmGhd%LDd_VA_OJYUY=X8ME3?;r#~bG?cGjZ> zU1Zig?eo4l6Zn3xqW1Ro2=_&_e(%F+1`sHhCGFXiYt`$p8Metr^ViS37+ulESJQJ& zaM!lknjh4Cp{70kEGQoN@VX>MOi`Q6Bhj+xH}ov{iTp>LE7~`~Y;nzpnH}vD1DUM` zxQS4UIrQQbvF=z~W}GD&d~kr4qZ82^2Edl%{0L~`8RyD&kGDs&ttSz`%c#K%P6B1n zGIZe|q1ZyYSwp9Hti-SQf5br*?Oo_Uo^CI0Y{icps>=Yn2SV?#w@%2g zQsK(rx?f;Q^jP3}(AK;LNP4du8JRxM>wAdw8D>uStNdGeLKGvmF0%~!4Udo`}E zHmt-NzLo1z`kf-IkW#7@oD%%Qt zY-8Nq>Wc9m)Oe0)lUeAG7*JXdIwHx5W)_1}E(b5Gur3TteF(tpwn z$o9iiF>xOz^D1umgi=7m)vIH6atc%ar%eUaw(8LSZ1;zF z>Uc^+Kj_&&2C06=eG)aEX;S8&v`r-5kVR{SHta5$3_;1>YM`}EbdGS<#_oVPr}G9! z4ouc}Bxg&l%C+R6;r;8^;Z_L2j}Ojd<#LQV*{dqMD=b4ZTLn@lE8cYRv^AY}zz;ly z#UHwCP2cXHZWZ=|_mFp1!LOdf%ghq2A;6ainE~aowB;f4nde{+{m{RL(U3z@>5;MLnG?`{RyAg$^YB&~? zBi>y*botB7bxpNzht3E7_;GD1?%xGiFIf?^OcDXIQ}{#AoCH-n5Y@83m^af>BOBpu z&J<-_BX|%d;H2l1gwx3CGs>D^7-ZtU6*xVR`xuSmofMZl;NZx*@Z0*}ZpJp#WO6>0 zZt^<1v$)~;ruVEpzYzj-9G55Qww?g^1iw{TPfYsbB^reP0XD)wTG$90>7zfKu0}}c z3g`2|zsF0@)_7d??sQEaPIiLoV9>IqHLC7=|2$rUal4+RDD2*GD93~{tFj>|%*h5M zZB_r~B1EbCQHn@5wwO^uf4*+=K9RrH48PzI762JChsuV#2D3ykBQDrC8sy{Wu_g~z z&ipw6L5qCY=lOz@WeImEB>4eZXwBd&GAp(*aP9K~$zz*0*yO7+Eyp@jL*^U{P>z8V zYI6dW=A{95LoStkWd+ua0gZ}jo_M5*vr#=<=8E%J_~Qe9?&L)2X2QWOcxJj#XTtg9&Hd>LJnO%Kv4J(R>VeB_*>(f> z`ULDS7r-3>;hNk3YiInhbS2Auuvae2- zB|p_f&ikGGqoBVty*chrfWV_`eDT#{#ZK3AuBkWFB=@nU3^8#+=v2djbgx!%f8?Xz z?y8A;dwnphojOdI4z#@Mao=uE)^;8UC4)eFnc%B?)b!1xb`SyAG6P=1L{|iMqpX}% z+>~czS8y9evMXVg*>qQrxqCBlhXxucDqTXDu)Ya_Cff$vOj`$qtQ-!z?vC(Ne5Y&l zfO;-NuaBg?evmw;x^%T4KjZk*S~sXvQuy4n5<+*afOF-dN@XtNJ9C3VXI6b`p5OUA z&Y@MmREI82w89qNB--@I@f`ih>ZorT5`WnV>AmgR!|#cfuJaq$f-3%C(fCKd3*6m( z7ZDj+8MX32`P;O27R4Fs))rk;_&mJ_U*xs(uQ{c7;uMpc`b&=H+ zJZBs%N9@q)l^_a(l2UReqV_v|X2y^zt=-Co)sr5@2`0=_cm`fRZ3rt<3_;nY!r_%} z?I=touI;?RH1mP2vAuK#LF!haHRTsjl4+Sm&xbO{WQllpyx?T`V_R5jBYD=NYvDZ; zN!6Xkqj23^kHGyliv4I0x@4NA#I!}3sm-$efh}x3Z=?pt(DrrD4|BoOug^XpZHf&7 zJwVGinN8p@(=dvd*fwtRVm6B1bdiQ%CelzeETz#XHDOn}dFEs<>hNAc_n~vovy~I% zl|j;~5T|;i2S3~PU~dyMfHB7YEv=0iY^pnXiFDfvkATAJ z4)(HdcGJ-=sV7}A9#xjP_YmeuDsS>!jy0TPyvxg0i@NxY-pPZbTDZa=NT3gb5kPEj4pIaRkD=mcwZVHci`K}~t zZ&)N4B3P0YLEel?*wZmmy>TV+~ z4*PJ&c3$?MqUJ0iWCC7c(2D7jf+_xL+Vg^N#VSbJUPeKo|A3V*x%YZ z*D}^5Db?1z=Pi|so-H8(J@&(wOv7hGnSF~z*faQf2}sCt$-R#n_TP0-J%O!qs}U;!Fsd8F|!C>)v46mU?e0k!s%$DZM9gU zzA;9FYI|X-1>;`8Zw#`_9q;+*X>WBoZpQb129p3bi`8eky55aBlfE;_2b+&^@1;5~ zn)l$F5jn5Y+cxYs?eU1x>N)iz%PiFbPzVv+#R{9@fyKn?b#HI-lI~rXja8mKSWYC<%y9gfGLpSt%6)C<7*Iraikl>I z4wQlcS8{j|%Wq*GC5xDusW&+{ot8>yPNRvKn||tJeMtlqO#++6`P*jDD4=j-^BEpQk(YPGIZbmkz?JI%&$jj+q_d& zexpcFQZoO>@roL01%SeT*bOrg(rP4CP?|1-f0&RIa@&$Yrj42&{6!|DfmR2sWA&7t zuNnV|_s*MyxR1rs@w{L0O1)}{xsh2Hf^(CgkKBW6@QlBXf=nM5gfItaQF~&o@zTtKuBnz(7J$z*H-mBR{^@ocIpw-9X^=JE57+KHH z6Su*%=S}%^dJS3ETTu$|G9SbAC5$^`OOv4i=|#`14N;A*4*__gzZzX@cPm1Sj7*4X zl2QF6@EzzMMe?@$AW4;sjIxP5Fr8VUS4e&>eN4KVM|5;;=+6%qNJ1CT%fkx`nN3CZ zpN0+d@pr`In}zBYBgvXayHXXZq%{~+R+l}ycA2!`6>aDr3Y7CAEyorb-0A4HV!%w> zlGfqrZnvjEF({V#VtDPGjrnrr@%;`vYB7%Zli-1BO-v8jE%I)>(O#~y8q5hWMSb^ib%QL?ilGx_j7iQh%T03~qu zqBqI^D&&v&2oIpc*HlIi9BjBpp)-Hg&32b6Zh`HNHgxub1~ouaN?Y%>|``WV08 z(N?&7F>yonNhGcV(~6zXiQ^3|C^DouuG@xBwhD z9Put6wNA@KU;Jhry`{QJ03dKc(_go+DP0;RBnpnWTjsMLyrz;rmjUx34Ke8HEA@y`lSii6tO|NIk- z;o#svV`BSp?*k7eA$WY6h`-#qCac!1gEvjK;RM@vK+^?Kj_3Yey7-?@{_~Tc7OEjs z23ipf+-tVgyFc`S29o=O2s|e9j5sn`<_eEnPn~Ub^lXuBDuug2=Z4Ld|x5VteZQ1uJdi}w7 z_!YGLTt-K(H1ER-)Wy=&!6x5j;(2u`&6}I#Y_&7a{LGkhN=K*{YHdspy`4Xt@&zY7 zsktX9M%iHWHtU}&Kj{lwdcJsU*$DTiEY(?lCQN zzU)-7CUq+&a1f)U0BVIyE4ltVC)K-^t6BSDIq;=lF<|yT?np=@|H{&GVs9U!L=Jiv zM{vh40ko)1@)w0DRX^>Rtwj7loq-0%hgJt-dGguO+GBO0YMoS$=-L>6agVD6qO9kC z^?85&F7=K?XGb*G8+&$rq*H1U^&QbG{w=ru;-po)Urj6JVdA3C^={;-@X9BxR6#D~ z8^2%hzn|7Z6;90;nH)teT$He;{*?o4zC1HT)Wjxy-3q}Pt;GCQK_VPnp^dwXh7C{nC|lN`m`TyXDxEHj=X2!K;emKszY?yXz0y!!`PE-MS_6{v(4B6ByqzmBR(^ zdC9xTU)`|h2OdEBjm|aHb+YpJAsni0?Y>Oa@WYH-c~@Rxz6b5$G`?X@5S0E=EZf5V z@79^e8+a6aba-Yi80FsI6roH*59*z!*Se)hOC5r=MO*!HtZoR*$ryGz^v{Y8)+dhs zq?m4C}m!ALh7#o}$x*U2VG~a5I z@rhApDuv+nWGr*5G(MQhn!W`FwplcG|8pJezgI(FCSu}JB|SqzYsgc?>_C1Gb?c0q zsQy4%5xc2QgHggE!!1b4UGNlhh22X9Y9}Rvb|3rNLA$MG!qNzf1h5`gi?MH{mMh#+ z8j!xi(`IQLZf|!TY;F%iw&0(*<=?VRy@Q2=8$+Si8zE?Z;$0Pr(xm_`N(L?+pVZRF zpPwXLaMu*0_g1IO7A?uN|L2b2f2(Z^u0Lo)8@2bS^Ek}PgZ%@uHJyeooqC8D4SEE$ z=rO3hg-&ta{rC6(z17<~{#_reH10KPh&^T5nUYlGKt1D`{?O;{GApI~t#tMACCe#5 z-49QBNiKPY2#Qi8k~(k2d>4`EPX7HpGwLkW4?q^XE+B7rwJbC<&7O5D?JZa+Cz znac!w`i%1F6Ql5iC2m%(alL%$Um+h8L8_C8Ptr{mDrw)&J3mmDSCfm-fOglv1@X7~ zAEKYX(Pee460eWL7DpLPTAC6{iyQzv$a*Q6GbRF5gjB*bs_H*3?q6EwLto;o7kOIe z(nK-xff4lpaiHkq^!A>Pd{8e zP{aTom~*i=-j}T(U4S+1(|h5JST_MZb`(lpQc-^>pnGxT_Qz^kcf8YDtAOfruY+9v z%iK{LB!inZZaGuOXA+W+@>=&;O3Y2)N~@RcFXI+IP9p$E6vzJyh$g`D{`61EoiRtd z=67#&SH`8=QB}q5oBr5R)e?#pbzwt67DrJ)nS7yILw7C_AQr(@GFCpmGZDXvAQRM= z)M6;&8GT=VmE>4Fe+TjkwEI}sPzs=^sUwkYo69qFKXRG4s-+X4(;XHZRJ zWODauwUEbKuQE;G-ghhH8UDPFB9sp?o`^m%emXSJVs)eB_BA-$)OVRL_v{L@smlvxw8mjX zQk0gcbA56U3P4-+>|N#>BPAo(0y;Hksp}@x6_loG*q*IU1{Y16+Km>Hrq&Y9a@c`LLo6J!!b+>$El8eoF*VFkD;lCS9gGMu&@UAE194`^^~e2m3KQ2AK$1Z)RDW z*H`^k>iPl)r44?W#zyVZ9y1QK^MKJM>DtSOg3b<1TKxjYgisyOJ%N4rv7vhGC~<@1Kplba?(7#+t%iBpK143e8J0H;-&O)`Gkpq7o2*`CHI`+OEk|94tZ{VV!R_8 zP;Da`iQ@H`y;M0=S`fa)WeoloG=fZnMP9tWV4;-NA|57H%x`1~IM@Xl zuuxzB<9SZ|WnW(pfu_-kKBzDFz61V5f|X($+ppYYqjvZaaAMFq%#Q?{M#sCn5Y-PWLF zqSJbDxEZVR1|IU^+O=Qj@t&Uk#t6-LVmzb9_>B}VucDUmz*+0r4^o<_u;ot&&rOGt znMV2Uw>G!Nd)I$$Hi3pkkSrdK@%Fra-CZE=!SU>(KYkS0!fWVvIgHA#-EM~fo5I`F zQWiheHuFXhB1tKbrYUN8=^<@+5T1}s3&_i87|nA=J17m&WtG#c+!)L?YqOQ#(o@Gs z#l>{oG|qbK4rbsRbYRML@20Ym)03rdw0%?spYw%Nc^;a6PZ{C_?RlFxCA@ncq2men zuW^*gR*}!= zKIO%#VICO%e$?{t3I|-mk|HXWg5lUiW2TANHLor{6N|pSaDtQXVHr+txyr@r--PbL z%e%ckLNjvlq)9#8+$O-Vi*X=!yfwG~WPI{TSD+uPHDu{0k$N42f-Foa?+7RR%PrtK zwC=Cp{)b5J->-C(b4B#Q$&x!_Ni$U|=gkL&@}>{kSwWon>Qh}8?zx8sRd0qY(ncbj zgiJ{NoeSyb%c=F(>O9{|8fPYA@1~4?jMYgthBRp1;(T2%r}}j>_G>>jtiJpmfSAQ5 z&01IE$uwwUCY*$V;CY6RXy`J!@okN(8%Z@#D%lrG@xJ}0a*9_}3cd2MYD;uER+Nit zIg2%=@b>e&?J;dC^I-m3wwz~nblPBg$6cY>!`)myBf!Z;1d9GxLOL z`V@hipr|Dy9Ruoy^U)qEUlx2YmR#;aq=3TfC(CL6;%EB92Dv?>{NiM;{TIdDuZCB! zNZ?x)nZBx8?a8!P%5UiD%r$}`8P7IU*1nGt_QDYFEhrCRA&Kpk8zdctT>R1mt~pll z%sAw!5*Km0~ADA6iWH~z`m#ANm zx3lP&I2?}98jf|(CfbbuT3Xh9!&&MHpsMo_+>m|F;rK}0jZtcMM*+mJLLM)2?_Q?x zOc1{8`O2FD_csuG`7M*@Y%Lt4bzAr)x}8wMBcZ6m`T{CYk5r ztQgjRtOvK)W8AN%YjpjjONvL1x5j7$%NP`47CAPruLJ; zz>ia$1N@MF{sRv>Lx+6^l%SlUxi>BolqaNp90{-q z(BM}uk7cH&^32qi)34gF31*~JSZnG8bx+gae5|?onQTyBh}*>U?Ydw%RZNG)jE!R2 zb@aA+!?YB^iOVqeZW^fAd4!gIrYJ4}4SK?gD;Kc@cZp!Uxe(w2lg0g^%BZGE-dq;r z1g*3YNwp>}6@34bID;mlDdi1Tm(9ZVcS0;}(=5=WmR% z_Ri}op;X}=T30j(e!_mJH}Hg2xZFoxtMBL|j@7#vrsF2*>)Jq2{+>4G#Fq)`raxEx zoB;4-=y4*|cdZwuN5}#S`d?XDAL7Wxu1)YT&QGrgwcG?H>2`75lH1|HGotNQ4A5WZ zlQ~edAhZ_vg0_Mg!~(Sf-XmWfv_c#May~sXTY1049V^Z%oP{OsAn_3A>DCz2wE>R6 z1j<>s>^AqT+#}q7Pxb#3_r86QhG2xvkm*$f@-doW2sLd#0M^XCuj=9{$#lB0^@_a~ zoRIIO_swuzd(VVJZogtQFbm@4U`}$`x@m$Mh$0!Mp_Vcf0ngf*2h{a(d zyhimI@zD{+rt#3~>ZadCQ&GoS(E5XHliWNk^&9%baaBI(vD!(UgtHblt1JXs-EA zteE7f*GY$0jPQ3Cf@*dHJlQ>W6L$mXE6d)Aju_sJMVu<{DmGbBIXjiE)-9qU-XeLg}_Xu zC{(~<;?-xXq?A4Z7xGolt*H42h>rFMiIi&42JqFR@UW)iY_z%guY`NA>wLw0enktfi zSz-k0+Lj$QwnkDZKCE`eb4m+)B>S1lX7Q=jUxf4Z7@3tdd2$(bWQ&(5?qtV)Wh@bl z=)d{)PDA{4YBw$EzT201^`j^e?Nwdhd{$=`O#g`m#*QMEUWTAZ`uoK#xZr#z#&pc< zbgxko=}*I38m@q7^gndC|E)rxIcT5PZbR1l$)C_MLG} zX5GG;0j10c3W$Ofi3o~-3{`3@fQl4bXi`Q5q=bOf&|-8{q$9nfG${dT351SPqy^~^ zAoLzeC?NsDeele^zxTc;zUTPK5A3zpUgf{a-q{cP`TTJ|Qo0T>Y>x=iLrcIC`<1-G z4zHlX>OkxWr}&Op|F)jrefZ=yqsRfCas&Dz(6O!wSq zjB=LckYYW`V>vioS9N0N501kVcgCcEi4}WBys+5|J~dq6?`JHJk995IvwKkSHtGaB z$CntYq3hju@9v~0@XREXoK+vH?M$NBS9&6GKo9Fvc;toDNk9_O2EG644;kokmF;l+ zP#K+W(|DQlFA#>e4=#25Puak-Cv0sN7yO)DK%>&G43USi{j zD@QcyAhK;r1{n>9i6t8 z524w>RL5*~g^CzRRxteBoZwsf4!&txj6dJw4j+Kbo{)(bB^W*~x&AK|L)RtK}zQRei zxL7suQU&6cFj$uGd-9VuFe2hT5}4v`t!~6xkbrlXvm2CuK}luAtTX>gatG-{ zIch!dSdh(2zvp=`05iqb{FGyZO=qUU4eqhd96f)Y)lT|+6vRt`&OpAQa#mJ@Gt?p^pyvB)+rpNo>soN&$K67KP^b!j8orc2< zWi0W?Q4kXgr!eFtM3%*kLdk@wR3?7Rqj_;N1JB7Wi)-=X#8IwLrCp48n@z}umnS^X zHN1?>B0d&lD;4th|6Bd9|8Zx}C)S`>&Vb~wb@P}|x0Mm#g<^?mhY*Rbo=S(MX{Fx` z^DuQ*guUa6)--m5D#;#4KKB1B#=jC`TIBZngw5_`ae{lG-f(4Q+(|aeDM42cy?d}o z_w*>uVztuBr1mt$cqbjB^n$`XcR3_eOmYwf234?>itdO1?Ck#|$#TveMeq*Aqfie>{)AvO~T@{%+@jYO6;!umu~)l3Y?!GTKW`D!jk{i zMf&7dk@%h8+Q{B}W^n*X(CBL=*u>?f4>glic;I1KtIo~PDgh@KJQ(uw--sNl{5N*h zzh+>+;XBvdV2#tpIn{mFa=)gV5g!f{OnQokxR%%_SF(7$8d?cisb5Err+HOYzNIi0 zsT`tj0dHi^RonXk6SxE&v+n?N+Kzd6h+`D-!92vClw@ctZ=v#wlRR+k&ap_=LzDlz zL|x9H(R~cjvHZ^2rW2P&PJlg7VS%6ms2OU-ypix{M-8ADn;xT|?(*+z4YDDC-jZK+ z`0aMz>3MiC4sqr9^t4*&%$a*Zw!wvipa1amLW@_gvUMRdVw$*$3*q{UCV+JB}@l5Q{hC@^$?zI%18gky=}e=Y0Tn)+a@Ul6XU z|40u!_1pn=hbzBEGO%P}(g;Ctd+5=10+1xCIhL^`F)wA|dGf@{Fpq}M1*6EVn(s`G z$s^CWpq8GMKD+F}7kh8Bi;snF{_dsDSdQCi*+k6uKjZ|y4oAOFPJg$B5QOH}WfXN* zOF~N#pSG4C0RcDUy_j-&OuZ~Zg0X{~MWxh?wFdV=DBNGj9{OQ6yRa%(cp|KoZK*IC z`{usFE#XGO+qh%N3_KHv6)ToOg$kM3zb<&o{1p|A1y7jw$~L>ZbMxFyy2#}`3yahp zeCUSVzf?n!XSfNLM~Ay;C9vsI1aBsHEwmHVAPLK{yvY?;8^g3-LRTe)vBvo{A zF@%HQ@|S?i0Y8WzMsI(c|Rcd%g_>;;qarZ@HG*&deMeH5G{6ApQ`0}@(m~>o- zm;_5!?b@9B+c@#>fhg2v9OfK=UnE-gl;z zu_~#uQaR&niLueR!Z<}V4g?*Gaaj4ETrvq^%4-=(^u^C^<)Aee(&DpZW+i~vD+>Sz zs+cuDCN<#8_Xk5mES~zZZ)4`G3w#sFR8e97Os>+A4QQkBL0_CUc1UKzkgwxFZyiIO z>tbQ-gmEunk?iS?t&q|E>IFKCt-M1HA!8u}H*seMtT!+s0f?_2@|L0dxU&YsgdPv< zJ30BIR20-d(2gBTKnnAmx!(S;Jr)W>xd@Ow;^`o6c$-{e(+x)UM=3KmiGzAC4enu^ zPgjx9t;ajAM#|`8?m4}USH}6BBm6+P2?^7_u(i~DZ6yJ>FBl}J=Z+{D=$OJb(;qii zR|vGhtE!FQz*AQ(H18Q1qK+xwK9)W{>1rVnH1G)s%Ef;aIzX#vmU<1C4cYdF8laet;r_T!9 zdha8+acYBWBjd3tq(+Lk2bdVH7ZUIb6SoVhd@R@OM zw&qX~f~XXF&1U4XV_(5`DEar?_u8j6I5$pid^*W;l#2639uLIMBt8T)L~Mu|C>chw zdunS4Ky0BPEQ)W z6|Vkme?cd&KtG-Py_TEuSB=^8vo{Yl<96-fP&3yGwKRXB8E)pqNr};pTCeG`&9A$w zxA$NFmdS4_`@8rEK;=5vfGa%P;na-xV*m(#g+FX34YXbK zYgWqI0L!wJu>NYn{S*qIka!*Nd4}Nm7pSCJPy9*@WQNnrZ5Okd>S=BoS}!*w-k`Q8 z52|Eu0eX|DIiNKCbsmkYt6G1^79?tbV3Mk)^t<)EE$cKB$hs7=0sE>lA`kKbi1-9W zO?fsFUbLs*X8<9>kTe5Syj2q~pZ*szi|<0g(gSS=Q@$(saK0B8Cipui&?g5|U#eDX zM9&`F`%h?E4&e^T3Klf=dU7<;VthL!EF)~x*V^8W{!wm|r9m<2t10*k7BW58(qlqp z`cGbagUKc=+35DU>#bsIuXmmB(7(+sYEbfB0RRzs&@NYaDkb|tC>|go6Q*^Yp?Mpa zp?b+?UiXf+f!7)<3v^>gk=lr3y$~?#z*-;6x!Vwb_3(Qe$O13Ip6hcahT$vzBn@sU zj86LGWvb-(9pt~6CDHxIlA!p|XDtt7tT>K{(&qJ__&k?(@tGox9zviy?1+7Ky#G<507^ zUh3WU_Cv_x{0XtD23@f8XHY~e7-;3Wfj)Y!ijRkJ?mqq8!A`gNp2rGoG@OThZCj%D zLxE9c?$dPj;)%Bpz3iAyXbY2HOxvQ9KsK194f{uot#r%sUi0TtUvluFUIb7aL}vtT z(rf@~Tc>@sdyQ2rq;7)cmU?JaezYNArYcv5XTPE|6E*ba+sOrT*560abV8xNiE3G2BPn+a=fW*A`f(9{v9#*QY zoQ>J+tAw|(m8;|`QnjAML8d2KnoTNzLc2|^R!f^<5Z+*l(N6(N(12&|uWwC|xv=KZ z1s0x2@5aC$i6Q~Yq9lJe?`oC8{)_$BeaT*6>3hQDFHrwOsqsZ8PcdpbfOI%W-iphA z?z~Wq?dNIkV7ej97QepnDN`&nR!T$O6h-);RTiE7q^P7;+SFJzuBK{{wz=iwZ`aMr zeUTHPM0Vl93QGT8#0rWQ<5xI}kz&l|Eb}LWFE3h?Y?g8AieDhy3RXN$j+wqIBi1=8 z65gRslOj&&0}bT#m~YVZaSY7f($CC63)S+K4cnpQ`fk9sk??in1>>IY@};X~4vq;L z{x2Sc=T2_|pMz^A_Plf2xlddF%`?k&PEvmkZm#5ZF@luV8ilWH~WA*PFc+48%_NK`woV-s;R*hq_6}$lHVgWx-D{6f z;!*v9nPwybyYJr?hVZ3(wvAEocHRR!s=Wn$6_+gHy_E8}tmLiszP)NPk@4COg)MZ3 zgk|-aDyULR)JgM8YQ0jGp^%RN6~xBZtom$S1~d`O*vWo%{griCHrIT4EF)!R<|V`onF&A*w1$DAZm!wF{874kmVKQvm46O{(hRg0Op5eR1(2FjM zTC(Hs>SF6p3158$B9mAq!@AOeaUjc>6+^CF!627{`LnXT@>T;|@qm_e#W<-7L*;CxWb80_(w>aN@Z7A2II_dZ@f329VoFl z4|lLEA&g&fc<@G_8=iNyt?4#H-~%xqD>1U|G*HaMV+lvKltjSG>{$WxI@E;3 zFg7oH>9dnIq4D8*$$xFZM&m$-D>Xn77GS(qO<%4kFknPe6-*eW9&QoNyn4M7_ZR15 zUj4(c5IVYoeh@P25d8YMB}d z_MMgY8AqQJ3ILIAJB(fd;r@|By-0B)FbU zKA=!Q&sOm>2F%6N&tZ1oG22g)(40%TDltb6trSl7<@;ao<3s^%irZL~72A7J7Jy@} z6em@VoC`HO^p?)*h+pk3dEakg57CA`m1p_@*d4Ge4+c)vGVjZk0IV=tq4{cz06C6Awq-AjzrOD;%7GS8M6rS2=bo(m6 zPuM^PrL?3#{;UOA?|eP9j-c+cv?NBy&E6Eum?WKlSiyKa$CPq++<3z<EMlQG*2~fh^c)VS%o)N8 zB+Uths;}Q%rZ(F&2880QSP$9#$$l#(*!L{rA&sxY3S%eJ&Ao(Jd&hVB1E=YtCj9ffmHcYJzbqq{Yy#B=u>@H;sc&VZ^j z)cfEs8bBEB=j;SCHU!&AukAe^prrn}wUgnzZGT2;+nx)=YBxWA#F$eHQ)jB@J>|a^ z&z=4m<*c{VgR4HDR0;=ngnH(y$Jo2xu&5%x_prSOABK2>8ARQ2`>ZN$->^!J)|A3n zfp^)H6kM-+_xnn8T;A8VTw`LHMqDL-)Ec)0>~*|nT>zkT=so|&5D4(AO5x_k%TaQ; z>hyo&?JQ6%X$l7W0&>Oya@M=~GAxIWg523lF{N2UR$^JagX$GdI!9SJpX;GokP*kh zLiS82E{;o2TPoKuJeE6xYG5)i-OP|f?oBsLvI5f{lnr17UaCIWSsW1g-KS~BCr_N8 zP18!yql*L_4>JHpLrhQmVAC2QbsvFBLoo1z1A|Q-f)*!=eYWs+cBhfS?JI}q&@~T= zSQS|XnzF~h1kfP!$uGC~`|l?*fKohjMd>H{on;asYL4}=oXZ7N^YLy)C}Usw3GzTU zm=d2->1_QEvVej33-aYf0DJrlqMMv}-0IHAC;)cF)wRW>CR_|%ynH1E0{qSM3#b-& z#GD-H9e~$9K7ecOm_l!* z?ca8K!NJ(+I6oVviI!#b*h<~A#hWMjZ?7eIf0ggsALYkpz^hka3nQMjG99Yc)}wyN z&9{W^=vA7f@+$m5wL^(o{?SXDmXsU@*B_v7i1j47>gfeZ`O*xkh6|tGe|qEyuhgAe z*B>RW?oU*9kJu(9=y{Pu%fi@@`#($%;P(7|DV<2XY2bS`r8tFAS0taB-HpWr1?m?o zr*iAZCL8;yf@?MF8#b9%7WAsky6Ax{?ScwK>XMf3nOHqqHL+cTNUQt0umY!xH}2ij zaM3iO@#F8JNwAxg5psNC=9uFNJ!<-a%x1h|$9Ycb6>`|xRFDxBUCjm{m zUolAn4-gXwx~3KRoL{$pB->4XLgZBExrQBXmtTV>wD2+Y;7?tntF~cY>upmUXdObo zdV)=|_ntbDhgu)E5c$wS+r>HlKUGH2fFFe(VVnm}09c&pSIgb_3*1OSCYo!hx39rL4ROlO(h`*5YBJcz) zVRF1ynjmVj*j%mJS(>p`A3-h0%I_@5Hz!A{`|RQ+tk$~lPWN2#*F?+QLoYvTe;8(( zAVphKp}cp$fPWvIPC1z7-Tjv9x3*TMXsbE-!)~!i$3aLSdZ2_zf17@aa{IN1ZhVwY zvPXj;mcxd5LK|MCcHp?2Z%1943d_e^Sov3G>G9!etQ-yL{vDo$Ef(PZ5l8C{_XF~f z+p4u;CYS%x2RZN7Z*EI-H4*40wXATSp_?2O8zUx>FirIymR>MWO@yWR{33yJqIf0M zE}_SY&zo&^slEB;FfHsisz%N2mmS+vK`8F}cx3t1Y(#FhlwmU@Dd-M%PuUa?M-$(5 z*@rp~4#Pz*uDJDdi`(qds$#J6nSxRUi9HOaEK?JY&{Cci<((ODG~b8d_SuPg&DCVZ z?hMh5jq9E`N8GZAy&Eut^CzS|j?Rv_;%88g1j%>bB!!JMIfs)(*{sGIq|E!uy+W zx+uY$n$%lur-R!yjm>r)TYrZTvRWEX)Bxsh>V(j8*dy%(cN*)$H=?(Td0p`FvAyqw z)26IK2MN40c%fyX+n&DE?#(W|e|&R-OLx&ioQ_m0^c-Gb(E{J!+@mXW@WAP8Uih5a zRB8LdLXKbiyj#bvMudguDo5d6ne7t#B;|o4hu^`B1|Fkaa}ieI2}{5|buqt{T;==2 zpnW*eI9ni<2Tpkc^CisH#Ph^ox~ zC_;%&76(Sd>w{UFu(U*%3H%6!VQ~z=mN)aU9!u~2 zb$xwcdY!NM=qs^yCDwD=FCV6IPP0{9X`8a0C5l&(mKcZW4IC`Zk!9~sHPi^G*^&Ab zGxF#w78?zuq!PWmupx!-ipWKYOPyLF{nd63{<`=W72FO9Gv{xX8olwkiD`V1e>%C!@j8aj z^Nxw%Li9qQr~g&WDo2x^^r6!~ig25;2XqVShLyy$_()TKJ^w0BQPQWL84)2L*r>5n zQmb1{sN5J_a>B_l&p)2ZFE+4u>Xk*8OPG^KHp^mbWz;;H7fXEy zKK1P3%IOUpd#iHxBXLzM-c$lzW|W$_I+Lfr!M;tioxc`&F{6=JO;&nS-GeY{N9%!3 z8#eW~6g_ntUT-54SE<`!8&93`X~D8?lmWqNI%aRmXbb0~vI-~0*)unb-y&}H2~9Wl znV@iRZBK8S#lA~|-)zqV9UUDUt@Qjymeblt-2^lEpy!< z7^aqrm>nFb$4;IbiY$r#l2;-bl+Gbmwf%uxB65{JJA)|NoYwHN_TMk&HIMTrhf=be zoodB8zO#KhZjbo5do%TWZRq2cq7Ii*@u~rne9M9|qmMpKiT+}ezS~2_MYN%X8X>df zexk1-oonD*+|wC2caJn}tJnU(g$0eD!V$;voQ&CtT@+55SzR<)cPa3(A&R;^dkT7>UCmGIInIx3;&yr{jze6 zz|=}!Pcf+k#Yg2KKBvt#gR8tM5gotfK&wI~ZD3_imP4Dka@# z&hXCk-Qm4hu>-_3&UC|5R!?1O)rV9$??9^D8oE3Be4`|~sqD1odO=QP&)?J%2cbWz zo1h&o9`JnMkV*Sshwg6b0&}V#u}l8AcZrllaX+*tWd|4gyV+@i-oWr=`}x2rPe0PT zp~Zz2w~piLK&Lx$bBMwE?3ZancycSbF)F+@L4En(Rj&Vr}v@bJ(Jv|A_dxWI{(&eY8PnBMOrRp)a zSQTz4@kk5%X~*lUwz@{?V>mZAWx!tIkpnR#QCk@{aiXFaIY*@4Ode@g% z=vI+(;Nbl$q?S%Bx(w5K|EA^yszxnn!X;%*_JF3p;fl0!nA%}&2E0P6=1;{HHG@hC zQxd-lo7JRk*WR8(9jaURH-%mZLj-(Ue#PDy7)CyA zYV>Yn2)?`TyEHwxQqljkv(t~l|FAuz-v|V>4dEgdc1(eX2S5)VUSZfu9X2Mw6n0XO{JqmIZB-fCtF)LW|7Gbhf?FJer=%(2)@Kr)6+Q zpK}tH6sIy7^R+Oz&hEDkjDeG#gD%MmM=o(o59hDd4thnx9QWXHCsb~avUv};S}#n7 z?dkekBo+A(!~A2Qe*49}{XZh~yhej4D_Zp3{$0UVtYWCeERgWk3Wk8PXE>fG+hIRM zy4l)xsDGFamD5JTshfryq^Qa)-Bx^k$Pyl?!MkVsIG))uAK2D-8?Ixr2G0~msx(g{ zE|VXdZVQ2)GX8Ey`{W;DMe|xdUM;#W8Whi20nx zR0%p9PTPqEk{-?8fApKC>&C!fK}G*c?cUtNapX3ZO06%$+ZPr+-lWji%!#;blhba!9RG|YJw4s5?oinlKbM)xKHg;i|zf*N8(yuEp-+#&VJ%sJj=`0lKD zDBN`Sx$?GRYAnwe&ug=`CsV(uN<3Q~zN_4XmXCoJ4wt9B+=rzw882kgAf%i8q(nVibKh zHOP~WNv=L=9?Nb1lC>)|B-OEIvXt^(U?_JSKOHOWKUT3ja{A4zQtUQvnWn_A6gZMs zyBq1)wqV+Q3AvfOM-#6pppHc^(2)DS-or~434%y3Kl4FSl9D>%6E)6J-pSN|G<^tB zR^n74p{wCPfay^5Uk`xsWMgZmC^uQIbe$>HN6dLFN3Wt1xW_Pao!gs^qGeqQ4 z88Skpmu;O&tu+4OO*yT(ny5jIE+t3f_0z@lTWSMKUQVfw3eks%nJc=Lv&b09NKae- zbxLi~&No$!5HD@Fv?!oy&rE{8W_8%^V>bN=U&=qh<3Cv1mbg-bj zfASoGN4iq!u%^izzB|k#jc^J?ze#8DTC%N82}LY4QfEr^RL+mm-@xZI*01M}t8Il@ zBqIm9hl`iw2{*iu`0ust^!KjNbjVrCirFUGtfYCV;L9awV-u#eGPTdN(y6OrV%J>rtkk%f?U)TQ}?4dBxGY?SR+VUT~Xp$As+ji`Nr#mPK^_ZgO`=qntZT3 z%T=|=hcv1N-N$?r?T2g^#oy6M@${!VaHruB%|aP@#9jD;*s2$jZtPg^JJNumc@M_H!>2323l>YQUv&Mw#+;ZeQf8uUOj93sh@-&{XnNKBz}YYYK}m#Kcx(EruaI@5&e3-AfrmSBv{j7{yv|c! zuh}L?h59uXa`>%ww6NtTDXVCjcLT5Ypkh{%_g^1puUQ<^?qO~7glRjcEqU+ym!a!X z1?$&-Hpb$K5bfQ1eW7yezOQ!FPw~eEFb66=27(sANzQmU)AZEMr!P+a{7WSf)C8@z zM7#Hz;$y8e&om9Sa@a%ffj;8BQNQX;0Z(o%tlG}=gm82XjK41;Ocol42@{M)+l82T;8l`vC+?MJD#$hMbsk*n#3ma5K;;Q)p|p>p3Qx2 zLR2PmHD!uF8|cgp*_HO$@No^Y-T!L(u3^S@&}N`Hu+PQSW(9jhfO!h$P~z&8tv5#T z9l7!#pR8-=+#+2-^cqMw>>H95Rj;i!cl{Q&rhC{i?A#2S-9MKYBGH7c#n|=v<&>pM zno_H5&nwY@DbycBJKEM$gV?z0S|fE88YrEh(p`y1Tu)F`-zC_OmVMZr*XZMF6?gt} zKr8}4D9Oc&v9sR+p2#eAZs^@iu)^Ox@Nd)C`7_t=U6F(4N`qR>XC4x8tHt5|NN{w) z9|OfawNoXoE*x0R`z5Y3#cEDLu1~EVJ8`?)s=^uti9iXt`fz?^>eX`W)j(Mnj$Y*^ z57PSMCqj8|f*kL^BvuMn*6u{cu3nofbNHlxzrCMNN0@9do!-B^Y6f;LWjaywZ2r00 zW8h^2hN;Op0CZox!s|z?+r%p?j`b6<@+EblTl_tlaId)nSV9RbOdb>>%t;j^hd02$ z?OGMPz*YH*xq*3x)C|~A^^S>z0ko>v;V1(A-9NYYDf5c#7*%ZOZfC_Gip#P@GVM1f zR^N=|L)g-&^jOYcu~{5Z43hHO!aHU(Migc z;YPrbr-2!&1stI-2Lb~>gi!fFOJR6L^>79c45+heugx*r)$d&Tc@&JYXS+oYP(4Mx z1-|;>kZI29&@Y%`Ar3k^i~MJ9uc}cR?Ox2q;iiC-B1jo<1opor5diUVaIkL+lv?$h z70szGLx;y5itmqV;f+ufLEaMl!4h2hvbG^2 z@e!@DfW40=pEDgrz7M&|PW$(xi+{?(H!R=Y0*`*)(><75p5r~G54@??D#3{mA-@Uv z(5BMdq4Z}X!6r%G?;^wXsMl;sS7CbI8+Q0>^YS$pAZa*Igpi2-bKtxmIFtKfa|_8Z zEDsM9Ty3Q9)FLNk*?%6z&YTRW;-p>&cLe|%4^fh!F}%PE_%VyB=S1sfE{`quDIGxA z1PfvE^=al1NIKxg3XARYyo|@I+#+iqX0kJgD)nq5H?A_D@A?LcI4&Xt2x<%n8eywV z{H35lyy$yyjj73>ZVcIA{dPbHa{vp?#t(iISGuUHAvv0R1o(GHQ}0&64a-;m2Xia; AHUIzs literal 0 HcmV?d00001 diff --git a/packages/gitlab/kibana/dashboard/gitlab-6b62c186-77b6-49f2-a820-ca377575bb96.json b/packages/gitlab/kibana/dashboard/gitlab-6b62c186-77b6-49f2-a820-ca377575bb96.json new file mode 100644 index 000000000000..de302f9745be --- /dev/null +++ b/packages/gitlab/kibana/dashboard/gitlab-6b62c186-77b6-49f2-a820-ca377575bb96.json @@ -0,0 +1,1618 @@ +{ + "attributes": { + "controlGroupInput": { + "chainingSystem": "HIERARCHICAL", + "controlStyle": "twoLine", + "ignoreParentSettingsJSON": { + "ignoreFilters": false, + "ignoreQuery": false, + "ignoreTimerange": false, + "ignoreValidations": false + }, + "panelsJSON": { + "1ce1f648-2317-4ed4-81b7-1ee1a14bc958": { + "explicitInput": { + "enhancements": {}, + "fieldName": "user.name", + "grow": true, + "id": "1ce1f648-2317-4ed4-81b7-1ee1a14bc958", + "searchTechnique": "prefix", + "title": "User", + "width": "medium" + }, + "grow": true, + "order": 1, + "type": "optionsListControl", + "width": "medium" + }, + "3a32a12d-ba8c-4a30-8943-d622d7b5a310": { + "explicitInput": { + "enhancements": {}, + "fieldName": "gitlab.application.project_name", + "grow": true, + "id": "3a32a12d-ba8c-4a30-8943-d622d7b5a310", + "searchTechnique": "prefix", + "title": "Project", + "width": "medium" + }, + "grow": true, + "order": 0, + "type": "optionsListControl", + "width": "medium" + }, + "c62d3832-d56d-47a1-836c-7af1fa832528": { + "explicitInput": { + "enhancements": {}, + "fieldName": "group.name", + "grow": true, + "id": "c62d3832-d56d-47a1-836c-7af1fa832528", + "searchTechnique": "prefix", + "title": "group.name", + "width": "medium" + }, + "grow": true, + "order": 2, + "type": "optionsListControl", + "width": "medium" + } + } + }, + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "syncColors": false, + "syncCursor": true, + "syncTooltips": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-feb8acb3-dc4d-409c-88f1-5dcdf5d6f73d", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "feb8acb3-dc4d-409c-88f1-5dcdf5d6f73d": { + "columnOrder": [ + "2edcd480-6f46-4294-ac31-138df41cda44" + ], + "columns": { + "2edcd480-6f46-4294-ac31-138df41cda44": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "3547e81f-2fd1-4631-b67f-b900c89b9905", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "gitlab.application" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "gitlab.application" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#fc6d26", + "layerId": "feb8acb3-dc4d-409c-88f1-5dcdf5d6f73d", + "layerType": "data", + "metricAccessor": "2edcd480-6f46-4294-ac31-138df41cda44" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "e6d48fc6-7f73-4fe4-9d0a-966aa4cacf99", + "w": 6, + "x": 0, + "y": 0 + }, + "panelIndex": "e6d48fc6-7f73-4fe4-9d0a-966aa4cacf99", + "title": "Total Events", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-d86c2773-fab5-4397-8800-159e1a4ca04f", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "d86c2773-fab5-4397-8800-159e1a4ca04f": { + "columnOrder": [ + "3fb1ff54-414e-4a9a-b86d-bee969eb4f25" + ], + "columns": { + "3fb1ff54-414e-4a9a-b86d-bee969eb4f25": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "unique_count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "gitlab.application.mergeability.merge_request_id" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.application\" " + }, + "visualization": { + "color": "#554488", + "layerId": "d86c2773-fab5-4397-8800-159e1a4ca04f", + "layerType": "data", + "metricAccessor": "3fb1ff54-414e-4a9a-b86d-bee969eb4f25", + "subtitle": "" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "26064602-eb5a-40a5-9911-a695befd2299", + "w": 6, + "x": 6, + "y": 0 + }, + "panelIndex": "26064602-eb5a-40a5-9911-a695befd2299", + "title": "Total Merge Requests", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-319bcf4a-8a27-4f6f-9c44-121dad568d4c", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "319bcf4a-8a27-4f6f-9c44-121dad568d4c": { + "columnOrder": [ + "08b1a143-e30f-4536-8764-8ec5cb578b16" + ], + "columns": { + "08b1a143-e30f-4536-8764-8ec5cb578b16": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.application\" and gitlab.application.message : User * was created" + }, + "visualization": { + "color": "#54B399", + "layerId": "319bcf4a-8a27-4f6f-9c44-121dad568d4c", + "layerType": "data", + "metricAccessor": "08b1a143-e30f-4536-8764-8ec5cb578b16" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "9a437dc0-45b2-46ed-ab2c-0fabe3f187a9", + "w": 6, + "x": 12, + "y": 0 + }, + "panelIndex": "9a437dc0-45b2-46ed-ab2c-0fabe3f187a9", + "title": "Total Users Created", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-44402714-6018-4bd6-ab14-85647cc068d6", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "44402714-6018-4bd6-ab14-85647cc068d6": { + "columnOrder": [ + "5b04e419-441a-442a-bb85-7419897729d8" + ], + "columns": { + "5b04e419-441a-442a-bb85-7419897729d8": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.application\" and gitlab.application.message : Group * was created" + }, + "visualization": { + "color": "#54B399", + "layerId": "44402714-6018-4bd6-ab14-85647cc068d6", + "layerType": "data", + "metricAccessor": "5b04e419-441a-442a-bb85-7419897729d8" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "e152d98b-a879-4467-9293-c80ded89abfb", + "w": 6, + "x": 18, + "y": 0 + }, + "panelIndex": "e152d98b-a879-4467-9293-c80ded89abfb", + "title": "Total Groups Created", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-4d9ac784-c8bd-46a4-a0e4-a71e2f1ec4b8", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "4d9ac784-c8bd-46a4-a0e4-a71e2f1ec4b8": { + "columnOrder": [ + "3fc1f0dc-4ac7-4012-becb-9d2f223c0be4" + ], + "columns": { + "3fc1f0dc-4ac7-4012-becb-9d2f223c0be4": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.application\" and gitlab.application.message: * created a new project *" + }, + "visualization": { + "color": "#54B399", + "layerId": "4d9ac784-c8bd-46a4-a0e4-a71e2f1ec4b8", + "layerType": "data", + "metricAccessor": "3fc1f0dc-4ac7-4012-becb-9d2f223c0be4" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "6486c31c-374a-4fe3-b44d-8a16a9cd7ed7", + "w": 6, + "x": 24, + "y": 0 + }, + "panelIndex": "6486c31c-374a-4fe3-b44d-8a16a9cd7ed7", + "title": "Total Projects Created", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-8bcc595f-c6e5-4df6-92a6-2da795a5176e", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "8bcc595f-c6e5-4df6-92a6-2da795a5176e": { + "columnOrder": [ + "9913905f-efbf-4b93-9e7f-829a5c84202d" + ], + "columns": { + "9913905f-efbf-4b93-9e7f-829a5c84202d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.application\" and gitlab.application.message : User * was removed" + }, + "visualization": { + "color": "#E7664C", + "layerId": "8bcc595f-c6e5-4df6-92a6-2da795a5176e", + "layerType": "data", + "metricAccessor": "9913905f-efbf-4b93-9e7f-829a5c84202d" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "eb8fe952-5b39-440b-8908-8e86e02315b7", + "w": 6, + "x": 30, + "y": 0 + }, + "panelIndex": "eb8fe952-5b39-440b-8908-8e86e02315b7", + "title": "Total Users Deleted", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-22bfdda6-2cb6-4166-98f6-23c0389b17a8", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "22bfdda6-2cb6-4166-98f6-23c0389b17a8": { + "columnOrder": [ + "e602729d-d835-4ca1-9487-462c790dc3b8" + ], + "columns": { + "e602729d-d835-4ca1-9487-462c790dc3b8": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.application\" and gitlab.application.message: Group * was removed" + }, + "visualization": { + "color": "#E7664C", + "layerId": "22bfdda6-2cb6-4166-98f6-23c0389b17a8", + "layerType": "data", + "metricAccessor": "e602729d-d835-4ca1-9487-462c790dc3b8" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "c380910d-559a-4688-ab75-1bffb0d1749a", + "w": 6, + "x": 36, + "y": 0 + }, + "panelIndex": "c380910d-559a-4688-ab75-1bffb0d1749a", + "title": "Total Groups Deleted", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-ed90d47c-420f-4f3b-a616-d818df9de1f8", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "ed90d47c-420f-4f3b-a616-d818df9de1f8": { + "columnOrder": [ + "56a8ff20-c9c2-4447-b88f-771b96213ea7" + ], + "columns": { + "56a8ff20-c9c2-4447-b88f-771b96213ea7": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": " ", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.application\" and gitlab.application.message: Project * was deleted" + }, + "visualization": { + "color": "#E7664C", + "layerId": "ed90d47c-420f-4f3b-a616-d818df9de1f8", + "layerType": "data", + "metricAccessor": "56a8ff20-c9c2-4447-b88f-771b96213ea7" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {} + }, + "gridData": { + "h": 7, + "i": "a885fe0a-7a3b-44b1-913f-9986e84d9fa5", + "w": 6, + "x": 42, + "y": 0 + }, + "panelIndex": "a885fe0a-7a3b-44b1-913f-9986e84d9fa5", + "title": "Total Projects Deleted", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-2a247f2c-1ec5-466d-b86a-2d1ab3fe9c1d", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "2a247f2c-1ec5-466d-b86a-2d1ab3fe9c1d": { + "columnOrder": [ + "41d952f0-657f-4ef4-960c-c87010e54bad", + "4e42bd08-7a06-47ab-aea5-f31ddb6055c6", + "b51fd895-d5fa-4a4e-9110-274cd053dd92" + ], + "columns": { + "41d952f0-657f-4ef4-960c-c87010e54bad": { + "dataType": "string", + "isBucketed": true, + "label": "Top 10 values of user.name", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "b51fd895-d5fa-4a4e-9110-274cd053dd92", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "user.name" + }, + "4e42bd08-7a06-47ab-aea5-f31ddb6055c6": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "b51fd895-d5fa-4a4e-9110-274cd053dd92": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Failed Login Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "d3e48fcc-a69b-4781-b26b-aac0984a8c0b", + "key": "event.outcome", + "negate": false, + "params": { + "query": "failure" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.outcome": "failure" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "562d054f-4b08-4cd9-a87c-009018b590c4", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "gitlab.application" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "gitlab.application" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "27f6dff6-3424-4e6c-9b88-2e82ad3db3ad", + "key": "event.category", + "negate": false, + "params": { + "query": "authentication" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.category": "authentication" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "b51fd895-d5fa-4a4e-9110-274cd053dd92" + ], + "layerId": "2a247f2c-1ec5-466d-b86a-2d1ab3fe9c1d", + "layerType": "data", + "palette": { + "name": "negative", + "type": "palette" + }, + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "41d952f0-657f-4ef4-960c-c87010e54bad", + "xAccessor": "4e42bd08-7a06-47ab-aea5-f31ddb6055c6" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "6c220227-2525-48bb-b749-eb62d3704ee3", + "w": 24, + "x": 0, + "y": 7 + }, + "panelIndex": "6c220227-2525-48bb-b749-eb62d3704ee3", + "title": "Failed logins over time [GitLab]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-2a247f2c-1ec5-466d-b86a-2d1ab3fe9c1d", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "2a247f2c-1ec5-466d-b86a-2d1ab3fe9c1d": { + "columnOrder": [ + "41d952f0-657f-4ef4-960c-c87010e54bad", + "4e42bd08-7a06-47ab-aea5-f31ddb6055c6", + "b51fd895-d5fa-4a4e-9110-274cd053dd92" + ], + "columns": { + "41d952f0-657f-4ef4-960c-c87010e54bad": { + "dataType": "string", + "isBucketed": true, + "label": "Top 10 values of user.name", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "b51fd895-d5fa-4a4e-9110-274cd053dd92", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "user.name" + }, + "4e42bd08-7a06-47ab-aea5-f31ddb6055c6": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "b51fd895-d5fa-4a4e-9110-274cd053dd92": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Successful Login Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "75da4c14-fd56-4096-b316-7a4005d28ebc", + "key": "event.outcome", + "negate": false, + "params": { + "query": "success" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.outcome": "success" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "index": "2a90d452-895c-4168-8f44-2ea44455b629", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "gitlab.application" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "gitlab.application" + } + } + }, + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "ab7e97f8-d190-42b1-bf60-f57accb1ff04", + "key": "event.category", + "negate": false, + "params": { + "query": "authentication" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "event.category": "authentication" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "b51fd895-d5fa-4a4e-9110-274cd053dd92" + ], + "layerId": "2a247f2c-1ec5-466d-b86a-2d1ab3fe9c1d", + "layerType": "data", + "palette": { + "name": "positive", + "type": "palette" + }, + "position": "top", + "seriesType": "line", + "showGridlines": false, + "splitAccessor": "41d952f0-657f-4ef4-960c-c87010e54bad", + "xAccessor": "4e42bd08-7a06-47ab-aea5-f31ddb6055c6" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "line", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "a5bbb54a-bd09-48ae-9b9a-8a407d845641", + "w": 24, + "x": 24, + "y": 7 + }, + "panelIndex": "a5bbb54a-bd09-48ae-9b9a-8a407d845641", + "title": "Successful logins over time [GitLab]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-5270ae79-952b-4a86-9577-b945699be0ea", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "f2134fd1-4e41-4c27-8c07-a0607860d161", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "5270ae79-952b-4a86-9577-b945699be0ea": { + "columnOrder": [ + "7984720e-1fcc-42aa-b50a-4375a9dc4ec5", + "c9d3d7ac-03b0-43ce-9364-e2381bd09aa2" + ], + "columns": { + "7984720e-1fcc-42aa-b50a-4375a9dc4ec5": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Project", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "c9d3d7ac-03b0-43ce-9364-e2381bd09aa2", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "gitlab.application.project_name" + }, + "c9d3d7ac-03b0-43ce-9364-e2381bd09aa2": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "f2134fd1-4e41-4c27-8c07-a0607860d161", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "gitlab.application" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "gitlab.application" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "c9d3d7ac-03b0-43ce-9364-e2381bd09aa2" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "5270ae79-952b-4a86-9577-b945699be0ea", + "layerType": "data", + "position": "top", + "seriesType": "bar_stacked", + "showGridlines": false, + "xAccessor": "7984720e-1fcc-42aa-b50a-4375a9dc4ec5", + "yConfig": [ + { + "color": "#d6bf57", + "forAccessor": "c9d3d7ac-03b0-43ce-9364-e2381bd09aa2" + } + ] + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_stacked", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "a41b1eba-31b0-46e1-8370-1caf792867a4", + "w": 24, + "x": 0, + "y": 22 + }, + "panelIndex": "a41b1eba-31b0-46e1-8370-1caf792867a4", + "title": "Top 10 Active Projects [GitLab]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-0183203f-2709-4ea2-b283-be3b0e207b64", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "06e5b4cd-efe5-4a67-ac70-bdb281380cfb", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "0183203f-2709-4ea2-b283-be3b0e207b64": { + "columnOrder": [ + "5932fcfa-b869-44aa-a83e-2324085333f7", + "adad82d1-7c65-4827-bb6b-f1b988551f5c" + ], + "columns": { + "5932fcfa-b869-44aa-a83e-2324085333f7": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Count", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "adad82d1-7c65-4827-bb6b-f1b988551f5c", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "user.name" + }, + "adad82d1-7c65-4827-bb6b-f1b988551f5c": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "user.name:Descending", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "index": "06e5b4cd-efe5-4a67-ac70-bdb281380cfb", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "gitlab.application" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "gitlab.application" + } + } + } + ], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "adad82d1-7c65-4827-bb6b-f1b988551f5c" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "0183203f-2709-4ea2-b283-be3b0e207b64", + "layerType": "data", + "position": "top", + "seriesType": "bar_stacked", + "showGridlines": false, + "xAccessor": "5932fcfa-b869-44aa-a83e-2324085333f7" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar_stacked", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "f3ffa811-7ebb-4f6c-9923-b31d596101b7", + "w": 24, + "x": 24, + "y": 22 + }, + "panelIndex": "f3ffa811-7ebb-4f6c-9923-b31d596101b7", + "title": "Top 5 Active Users [GitLab]", + "type": "lens" + } + ], + "timeRestore": false, + "title": "[GitLab] Application Overview", + "version": 2 + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-07-29T14:58:45.708Z", + "created_by": "u_mGBROF_q5bmFCATbLXAcCwKa0k8JvONAwSruelyKA5E_0", + "id": "gitlab-6b62c186-77b6-49f2-a820-ca377575bb96", + "managed": false, + "references": [ + { + "id": "logs-*", + "name": "e6d48fc6-7f73-4fe4-9d0a-966aa4cacf99:indexpattern-datasource-layer-feb8acb3-dc4d-409c-88f1-5dcdf5d6f73d", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "26064602-eb5a-40a5-9911-a695befd2299:indexpattern-datasource-layer-d86c2773-fab5-4397-8800-159e1a4ca04f", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "9a437dc0-45b2-46ed-ab2c-0fabe3f187a9:indexpattern-datasource-layer-319bcf4a-8a27-4f6f-9c44-121dad568d4c", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "e152d98b-a879-4467-9293-c80ded89abfb:indexpattern-datasource-layer-44402714-6018-4bd6-ab14-85647cc068d6", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "6486c31c-374a-4fe3-b44d-8a16a9cd7ed7:indexpattern-datasource-layer-4d9ac784-c8bd-46a4-a0e4-a71e2f1ec4b8", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "eb8fe952-5b39-440b-8908-8e86e02315b7:indexpattern-datasource-layer-8bcc595f-c6e5-4df6-92a6-2da795a5176e", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "c380910d-559a-4688-ab75-1bffb0d1749a:indexpattern-datasource-layer-22bfdda6-2cb6-4166-98f6-23c0389b17a8", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "a885fe0a-7a3b-44b1-913f-9986e84d9fa5:indexpattern-datasource-layer-ed90d47c-420f-4f3b-a616-d818df9de1f8", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "6c220227-2525-48bb-b749-eb62d3704ee3:indexpattern-datasource-layer-2a247f2c-1ec5-466d-b86a-2d1ab3fe9c1d", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "a5bbb54a-bd09-48ae-9b9a-8a407d845641:indexpattern-datasource-layer-2a247f2c-1ec5-466d-b86a-2d1ab3fe9c1d", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "a41b1eba-31b0-46e1-8370-1caf792867a4:indexpattern-datasource-layer-5270ae79-952b-4a86-9577-b945699be0ea", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "a41b1eba-31b0-46e1-8370-1caf792867a4:f2134fd1-4e41-4c27-8c07-a0607860d161", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "f3ffa811-7ebb-4f6c-9923-b31d596101b7:indexpattern-datasource-layer-0183203f-2709-4ea2-b283-be3b0e207b64", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "f3ffa811-7ebb-4f6c-9923-b31d596101b7:06e5b4cd-efe5-4a67-ac70-bdb281380cfb", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_3a32a12d-ba8c-4a30-8943-d622d7b5a310:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_1ce1f648-2317-4ed4-81b7-1ee1a14bc958:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_c62d3832-d56d-47a1-836c-7af1fa832528:optionsListDataView", + "type": "index-pattern" + } + ], + "type": "dashboard", + "typeMigrationVersion": "8.9.0" +} diff --git a/packages/gitlab/kibana/dashboard/gitlab-8af75511-17ac-441f-a8e7-b8bd6a341629.json b/packages/gitlab/kibana/dashboard/gitlab-8af75511-17ac-441f-a8e7-b8bd6a341629.json new file mode 100644 index 000000000000..c3b31cd45e8e --- /dev/null +++ b/packages/gitlab/kibana/dashboard/gitlab-8af75511-17ac-441f-a8e7-b8bd6a341629.json @@ -0,0 +1,918 @@ +{ + "attributes": { + "description": "", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "syncColors": false, + "syncCursor": true, + "syncTooltips": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-ba569b42-e746-4e2b-9bf9-df89230c15ac", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "ba569b42-e746-4e2b-9bf9-df89230c15ac": { + "columnOrder": [ + "c8232b8e-f857-4dfa-a4c9-1c105a9d41e4", + "16eeb965-5060-427d-affb-356e303d2c7c", + "9f880723-e9c8-47f5-b798-942f4ca895ab" + ], + "columns": { + "16eeb965-5060-427d-affb-356e303d2c7c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "gitlab.auth.matched", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "9f880723-e9c8-47f5-b798-942f4ca895ab", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "gitlab.auth.matched" + }, + "9f880723-e9c8-47f5-b798-942f4ca895ab": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + }, + "c8232b8e-f857-4dfa-a4c9-1c105a9d41e4": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.auth\" " + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "9f880723-e9c8-47f5-b798-942f4ca895ab" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "ba569b42-e746-4e2b-9bf9-df89230c15ac", + "layerType": "data", + "position": "top", + "seriesType": "bar", + "showGridlines": false, + "splitAccessor": "16eeb965-5060-427d-affb-356e303d2c7c", + "xAccessor": "c8232b8e-f857-4dfa-a4c9-1c105a9d41e4" + } + ], + "legend": { + "isVisible": true, + "position": "right" + }, + "preferredSeriesType": "bar", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "hide" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "028d9a6c-4368-46f4-926b-8ae455856d83", + "w": 23, + "x": 0, + "y": 0 + }, + "panelIndex": "028d9a6c-4368-46f4-926b-8ae455856d83", + "title": "Events over time [GitLab]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-9c1b0eb3-1e0b-44c6-ba6a-12c8b1048d51", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "9c1b0eb3-1e0b-44c6-ba6a-12c8b1048d51": { + "columnOrder": [ + "e087f3eb-55fc-4a72-8252-1e8941a279ac", + "42985816-2ce1-42c3-b0c0-5350a8f0e6bc", + "fef2b47a-b0e2-4d47-b862-c99cdc53e20f", + "e28a59a5-2805-48d1-b9d4-8406aa66a158", + "77b44cc5-1771-4b44-8f8b-128b59f04b09" + ], + "columns": { + "42985816-2ce1-42c3-b0c0-5350a8f0e6bc": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "http.request.method", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "77b44cc5-1771-4b44-8f8b-128b59f04b09", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "http.request.method" + }, + "77b44cc5-1771-4b44-8f8b-128b59f04b09": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + }, + "e087f3eb-55fc-4a72-8252-1e8941a279ac": { + "dataType": "date", + "isBucketed": true, + "label": "@timestamp", + "operationType": "date_histogram", + "params": { + "dropPartials": false, + "includeEmptyRows": true, + "interval": "auto" + }, + "scale": "interval", + "sourceField": "@timestamp" + }, + "e28a59a5-2805-48d1-b9d4-8406aa66a158": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "gitlab.auth.matched", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "77b44cc5-1771-4b44-8f8b-128b59f04b09", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "gitlab.auth.matched" + }, + "fef2b47a-b0e2-4d47-b862-c99cdc53e20f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "url.path", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "77b44cc5-1771-4b44-8f8b-128b59f04b09", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "url.path" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.auth\" " + }, + "visualization": { + "columns": [ + { + "columnId": "42985816-2ce1-42c3-b0c0-5350a8f0e6bc", + "isMetric": false, + "isTransposed": false + }, + { + "columnId": "77b44cc5-1771-4b44-8f8b-128b59f04b09" + }, + { + "columnId": "e087f3eb-55fc-4a72-8252-1e8941a279ac", + "isMetric": false, + "isTransposed": false + }, + { + "columnId": "fef2b47a-b0e2-4d47-b862-c99cdc53e20f", + "isMetric": false, + "isTransposed": false + }, + { + "columnId": "e28a59a5-2805-48d1-b9d4-8406aa66a158", + "isMetric": false, + "isTransposed": false, + "width": 283.4 + } + ], + "layerId": "9c1b0eb3-1e0b-44c6-ba6a-12c8b1048d51", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "8bcba5b2-cd71-4e1a-857a-c691f370d771", + "w": 25, + "x": 23, + "y": 0 + }, + "panelIndex": "8bcba5b2-cd71-4e1a-857a-c691f370d771", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-ab89d47e-8f95-4a96-8d6f-f00d47727ac2", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "ab89d47e-8f95-4a96-8d6f-f00d47727ac2": { + "columnOrder": [ + "99b4ad5c-be43-40d6-99d4-05012d82b33d", + "e42795da-383f-4dcd-8823-4e02e65e4c19", + "113fcfdf-35a2-4f04-9f48-8a2c2381df15" + ], + "columns": { + "113fcfdf-35a2-4f04-9f48-8a2c2381df15": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + }, + "99b4ad5c-be43-40d6-99d4-05012d82b33d": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "gitlab.auth.env", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "113fcfdf-35a2-4f04-9f48-8a2c2381df15", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "gitlab.auth.env" + }, + "e42795da-383f-4dcd-8823-4e02e65e4c19": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "gitlab.auth.message", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "113fcfdf-35a2-4f04-9f48-8a2c2381df15", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 3 + }, + "scale": "ordinal", + "sourceField": "gitlab.auth.message" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.auth\" " + }, + "visualization": { + "columns": [ + { + "columnId": "99b4ad5c-be43-40d6-99d4-05012d82b33d", + "isTransposed": false + }, + { + "columnId": "e42795da-383f-4dcd-8823-4e02e65e4c19", + "isTransposed": false + }, + { + "columnId": "113fcfdf-35a2-4f04-9f48-8a2c2381df15", + "isTransposed": false + } + ], + "layerId": "ab89d47e-8f95-4a96-8d6f-f00d47727ac2", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "bb06c69b-e0f4-4cdb-ac5d-3f5ed2741191", + "w": 12, + "x": 0, + "y": 16 + }, + "panelIndex": "bb06c69b-e0f4-4cdb-ac5d-3f5ed2741191", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-cf182371-876c-4fc0-9fac-f83aacd6bd01", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "cf182371-876c-4fc0-9fac-f83aacd6bd01": { + "columnOrder": [ + "dec722d5-724f-4ce5-a0cd-01a2c66edfaa", + "ef9bc90f-0b50-4e21-844a-44906cf1ecde" + ], + "columns": { + "dec722d5-724f-4ce5-a0cd-01a2c66edfaa": { + "customLabel": true, + "dataType": "ip", + "isBucketed": true, + "label": "source.ip", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "ef9bc90f-0b50-4e21-844a-44906cf1ecde", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "source.ip" + }, + "ef9bc90f-0b50-4e21-844a-44906cf1ecde": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.auth\" " + }, + "visualization": { + "columns": [ + { + "columnId": "dec722d5-724f-4ce5-a0cd-01a2c66edfaa" + }, + { + "columnId": "ef9bc90f-0b50-4e21-844a-44906cf1ecde" + } + ], + "layerId": "cf182371-876c-4fc0-9fac-f83aacd6bd01", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "a4ab2bd2-d726-48f1-89a4-d24ade74fb94", + "w": 9, + "x": 12, + "y": 16 + }, + "panelIndex": "a4ab2bd2-d726-48f1-89a4-d24ade74fb94", + "title": "Top 10 values of source.ip [GitLab]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-e54914fd-5fa1-466e-859d-f187f40db99b", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "e54914fd-5fa1-466e-859d-f187f40db99b": { + "columnOrder": [ + "a4f87dd6-ede2-4726-b5b4-6092e570d02c", + "5655516f-eb53-4dcf-89a1-8990eeb8f068" + ], + "columns": { + "5655516f-eb53-4dcf-89a1-8990eeb8f068": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + }, + "a4f87dd6-ede2-4726-b5b4-6092e570d02c": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "user.id", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "5655516f-eb53-4dcf-89a1-8990eeb8f068", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "user.id" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.auth\" " + }, + "visualization": { + "columns": [ + { + "columnId": "a4f87dd6-ede2-4726-b5b4-6092e570d02c" + }, + { + "columnId": "5655516f-eb53-4dcf-89a1-8990eeb8f068" + } + ], + "layerId": "e54914fd-5fa1-466e-859d-f187f40db99b", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "93a2c41a-b224-47d5-a1c0-44aaaa6a1852", + "w": 12, + "x": 21, + "y": 16 + }, + "panelIndex": "93a2c41a-b224-47d5-a1c0-44aaaa6a1852", + "title": "Top 10 values of user.id", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-b0d1c1ed-1f05-4467-8a3c-5ed01095a214", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "b0d1c1ed-1f05-4467-8a3c-5ed01095a214": { + "columnOrder": [ + "752eaba7-ed97-4a4c-83ba-4cbecdca89ad", + "b0b9414c-d1c7-49fa-9451-492b0aecf812" + ], + "columns": { + "752eaba7-ed97-4a4c-83ba-4cbecdca89ad": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "URLs Accessed [GitLab]", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "b0b9414c-d1c7-49fa-9451-492b0aecf812", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "url.path" + }, + "b0b9414c-d1c7-49fa-9451-492b0aecf812": { + "dataType": "number", + "isBucketed": false, + "label": "Count of records", + "operationType": "count", + "params": { + "emptyAsNull": true + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "data_stream.dataset : \"gitlab.auth\" " + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "b0d1c1ed-1f05-4467-8a3c-5ed01095a214", + "layerType": "data", + "legendDisplay": "default", + "metrics": [ + "b0b9414c-d1c7-49fa-9451-492b0aecf812" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "752eaba7-ed97-4a4c-83ba-4cbecdca89ad" + ] + } + ], + "shape": "donut" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "f906648e-a173-4ad3-b66f-cb46bd7c0835", + "w": 15, + "x": 33, + "y": 16 + }, + "panelIndex": "f906648e-a173-4ad3-b66f-cb46bd7c0835", + "title": "URLs Accessed [GitLab]", + "type": "lens" + } + ], + "timeRestore": false, + "title": "[GitLab] Auth Log Overview", + "version": 2 + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-07-29T14:55:38.744Z", + "created_by": "u_mGBROF_q5bmFCATbLXAcCwKa0k8JvONAwSruelyKA5E_0", + "id": "gitlab-8af75511-17ac-441f-a8e7-b8bd6a341629", + "managed": false, + "references": [ + { + "id": "logs-*", + "name": "028d9a6c-4368-46f4-926b-8ae455856d83:indexpattern-datasource-layer-ba569b42-e746-4e2b-9bf9-df89230c15ac", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "8bcba5b2-cd71-4e1a-857a-c691f370d771:indexpattern-datasource-layer-9c1b0eb3-1e0b-44c6-ba6a-12c8b1048d51", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "bb06c69b-e0f4-4cdb-ac5d-3f5ed2741191:indexpattern-datasource-layer-ab89d47e-8f95-4a96-8d6f-f00d47727ac2", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "a4ab2bd2-d726-48f1-89a4-d24ade74fb94:indexpattern-datasource-layer-cf182371-876c-4fc0-9fac-f83aacd6bd01", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "93a2c41a-b224-47d5-a1c0-44aaaa6a1852:indexpattern-datasource-layer-e54914fd-5fa1-466e-859d-f187f40db99b", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "f906648e-a173-4ad3-b66f-cb46bd7c0835:indexpattern-datasource-layer-b0d1c1ed-1f05-4467-8a3c-5ed01095a214", + "type": "index-pattern" + } + ], + "type": "dashboard", + "typeMigrationVersion": "8.9.0" +} diff --git a/packages/gitlab/manifest.yml b/packages/gitlab/manifest.yml index 7010196d1b2a..6badd6521ad2 100644 --- a/packages/gitlab/manifest.yml +++ b/packages/gitlab/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.1.3 name: gitlab title: GitLab -version: "0.2.0" +version: 0.3.0 description: Collect logs from GitLab with Elastic Agent. type: integration categories: @@ -24,6 +24,14 @@ screenshots: title: GitLab production overview size: 600x600 type: image/png + - src: /img/gitlab-application-dashboard.png + title: GitLab application overview + size: 600x600 + type: image/png + - src: /img/gitlab-auth-dashboard.png + title: GitLab auth overview + size: 600x600 + type: image/png policy_templates: - name: gitlab title: GitLab From a96e805ee5cdb3077444446847620e608dd98c4e Mon Sep 17 00:00:00 2001 From: Mario Rodriguez Molins Date: Tue, 6 Aug 2024 16:24:44 +0200 Subject: [PATCH 36/77] [CI] Allow github-actions bot user to trigger builds (#10705) --- .buildkite/pull-requests.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.buildkite/pull-requests.json b/.buildkite/pull-requests.json index dd0b53583844..8d5ecc1ba366 100644 --- a/.buildkite/pull-requests.json +++ b/.buildkite/pull-requests.json @@ -5,7 +5,7 @@ "pipelineSlug": "integrations", "allow_org_users": true, "allowed_repo_permissions": ["admin", "write"], - "allowed_list": ["dependabot[bot]", "mergify[bot]", "elastic-vault-github-plugin-prod[bot]"], + "allowed_list": ["dependabot[bot]", "mergify[bot]", "elastic-vault-github-plugin-prod[bot]", "github-actions[bot]"], "set_commit_status": true, "build_on_commit": true, "build_on_comment": true, From 98a4d8b42d56a725ea64541b89234ee0601f332d Mon Sep 17 00:00:00 2001 From: Eric Forte <119343520+eric-forte-elastic@users.noreply.github.com> Date: Tue, 6 Aug 2024 10:49:22 -0400 Subject: [PATCH 37/77] [Security Rules] Update security rules package to v8.15.2-beta.1 (#10712) --- .../security_detection_engine/changelog.yml | 5 + ...415258b-a7b2-48a6-891a-3367cd9d4d31_1.json | 87 +++++++++ ...54db96b-fd34-43b3-9af2-587b3bd33964_3.json | 100 ---------- ...4fb9d-90b9-4234-a411-82a546dc1343_111.json | 99 ++++++++++ ...1ef73-1fde-4a49-a34a-5dd40011b076_212.json | 135 +++++++++++++ ...f3da5-b5ec-47d1-908b-6ebb74814289_108.json | 106 ----------- ...b79f5c0-2c31-4fea-86cd-e62644278205_1.json | 88 +++++++++ ...b803267-74c5-444d-ae29-32b5db2d562a_4.json | 120 ------------ ...d35e4-925e-4959-ab24-911be207ee6f_111.json | 109 ----------- ...dd9713-0ec6-4110-9707-32daae1ee68c_10.json | 124 ------------ ...bf709-69e8-4055-94f9-24314385c27e_202.json | 108 ----------- ...d1aa9-ebfd-4cf9-a463-0ac59ec55204_110.json | 119 ++++++++++++ ...52c14-7883-47af-8745-9357803f0d4c_114.json | 154 +++++++++++++++ ...b0a495-4d9f-414c-8ad0-92f018b8e001_11.json | 131 ------------- ...92657ba-ab0e-4901-89a2-911d611eee98_1.json | 166 ---------------- ...d9aeb0b-9549-46f6-a32d-05e2a001b7fd_5.json | 87 --------- ...ab79b-239b-4aa5-8e54-fc50623ee8e4_111.json | 107 +++++++++++ ...1bafdf0-cf17-11ed-bd57-f661ea17fbcc_2.json | 120 ------------ ...05aa59-29ac-4662-afad-8d86257c7c91_6.json} | 75 ++++---- ...63481c8-1e9b-492e-912d-d1760707f810_1.json | 120 ++++++++++++ ...7071ea3-e806-4697-8abc-e22c92aa4293_5.json | 103 ---------- ...da169-416b-4bb3-9a6b-f8d239fd78ba_202.json | 107 ----------- ...9e96a-b67c-455a-afe4-de6183431d0d_109.json | 134 ------------- ...c8076-291e-41e9-81e4-e3fcbc97ae5e_111.json | 94 +++++++++ ...a1f1e-b6db-47fa-994b-1512743847eb_113.json | 113 +++++++++++ ...0b5bb96-c7db-492c-80e9-1eab00db580b_2.json | 90 +++++++++ ...0e1e9f2-eb9c-439f-aff6-1e3068e99384_1.json | 96 ---------- ...de489-94b0-4500-a76f-b8a157cf9269_105.json | 113 +++++++++++ ...8e048-d888-4f61-a8b9-0f9e2e40f317_108.json | 108 +++++++++++ ...57da0-1df2-11ef-a327-f661ea17fbcc_103.json | 97 ++++++++++ ...d3aa8f9-12af-441f-9344-9f31053e316d_5.json | 114 ----------- ...ef0d3-8259-40c9-a5b6-d48354712e49_109.json | 118 ++++++++++++ ...f0ffd-b317-4b9c-9494-92ce861f22c7_312.json | 123 ++++++++++++ ...c68e-d3de-4e96-994d-9e242269446f_103.json} | 79 ++++---- ...3617418-17b4-4e9c-8a2c-8deb8086ca4b_8.json | 109 ----------- ...02e45-3467-49a4-8abc-529f2c8cfb80_109.json | 132 +++++++++++++ ...3d186-0461-4dc3-9b33-2dc5c7473936_110.json | 114 +++++++++++ ...5f07d1b-25bc-4a0f-aa0c-05323c1319d0_2.json | 113 +++++++++++ ...2e9b5-4803-4e44-a0a4-a52dc79d57fe_110.json | 104 ---------- ...7bfa0a9-37c0-44d6-b724-54bf16787492_2.json | 109 +++++++++++ ...a72ca-d968-4f34-b9f7-bea51d75eb50_112.json | 116 ++++++++++++ ...c3638-40a3-44b2-855a-985636ca985e_113.json | 160 ---------------- ...29caf-6c15-4d1e-9ccb-7ad12ccc0bc7_109.json | 102 ---------- ...3e381a6-0ffe-4afb-9a26-72a59ad16d7b_2.json | 100 ++++++++++ ...83649-f908-4a5b-a1e0-54090a1d3a32_112.json | 137 -------------- ...70b3b5a-35e5-42db-bd36-6c5b9b4b7313_8.json | 94 --------- ...9c821-011d-43bd-bd5b-acff00257226_108.json | 111 +++++++++++ ...b9d57-e4d5-4357-ad17-9c334609d79a_108.json | 154 +++++++++++++++ ...130a5-9be6-48e5-943a-9628bfc74b18_105.json | 76 -------- ...12c9c-0dbd-4a1a-bc44-1467502c9cf6_109.json | 122 ++++++++++++ ...164081a-3930-11ed-a261-0242ac120002_3.json | 109 ----------- ...c8437-a581-4537-8060-1fdb0e92c92d_202.json | 108 ----------- ...64c9fcd-4c4c-41e6-a0c7-d6c46c2eff66_9.json | 129 ------------- ...787362c-90ff-4b1a-b313-8808b1020e64_1.json | 131 ------------- ...97b31-480e-4e63-a7f4-ede42bf2c6de_107.json | 100 ---------- ...b500fa-8e24-4bd1-9480-2a819352602c_11.json | 110 ----------- ...e9dc6-a2d7-4192-a2d8-eed98afc766a_111.json | 115 ----------- ...a024633-c444-45c0-a4fe-78128d8c1ab6_6.json | 125 ++++++++++++ ...1e506-6e82-4884-9b9a-75d3d252f967_107.json | 128 +++++++++++++ ...485b6-a74f-411b-bf7f-38b819f3a846_103.json | 114 +++++++++++ ...e91c7-d791-4704-80a1-42c160d7aa27_107.json | 125 ++++++++++++ ...4418745-529f-4259-8d25-a713a6feb6ae_3.json | 125 ++++++++++++ ...ee7c8-5437-49ae-b2d6-2960883898e9_109.json | 142 ++++++++++++++ ...c44d3-8dae-4019-ae83-298c3015600f_112.json | 123 ++++++++++++ ...0e1f6-52ce-42e1-abb3-09657cee2698_110.json | 119 ++++++++++++ ...b80cb26-9966-44b5-abbf-764fbdbc3586_1.json | 113 ----------- ...1699af0-8e1e-4ed0-8ec1-89783538a061_8.json | 96 ++++++++++ ...a09c2-2162-4df0-a356-9aacbeb56a04_111.json | 95 ++++++++++ ...44bcb58-5109-4870-a7c6-11f5fe7dd4b1_1.json | 120 ++++++++++++ ...05c3b-b304-4bf9-970d-acdfaef2944c_109.json | 129 +++++++++++++ ...c5a2759-5c34-440a-b0c4-51fe674611d6_1.json | 111 +++++++++++ ...d959eeb-2b7b-4722-ba08-a45f6622f005_1.json | 139 -------------- ...e343298-97bc-47bc-9ea2-5f2ad831c16e_3.json | 89 --------- ...8386923-b02c-4b94-986a-d223d9b01f88_4.json | 131 ------------- ...60fef-82c6-4816-befa-44745030e917_111.json | 134 +++++++++++++ ...c86a0-8b61-4457-ab38-96943984e889_111.json | 118 ------------ ...af89b-a2a7-48a3-817f-e41829dc61ee_110.json | 179 ------------------ ...e48a6-7f57-4ee8-9313-3d0024caee10_109.json | 90 +++++++++ ...08cac-337a-4f38-b50d-5eeb78bdb531_202.json | 107 ----------- ...8935a8b-634a-4449-98f7-bb24d3b2c0af_7.json | 101 ---------- ...150f0-0164-475b-a75e-74b47800a9ff_111.json | 110 +++++++++++ ...159cf-73e9-40d1-a9ed-077e3158a855_111.json | 111 +++++++++++ ...1e5e410-3e34-412e-9b1f-dd500b3b55cd_1.json | 126 ++++++++++++ ...3aaba-2e72-462b-8658-3e5ea22db3a6_107.json | 95 ++++++++++ ...3a5af-d5b0-43bd-8ddb-7a5d500b7da5_110.json | 111 +++++++++++ ...7733b1-fe08-487e-b536-0a04c6d8b0cd_11.json | 104 ++++++++++ ...b1f5f-7089-44f5-9fda-de5b11322e77_109.json | 107 +++++++++++ ...fda76-c92b-4943-bc68-04460a5ea5ba_202.json | 108 ----------- ...f042e-c590-4e82-8e05-41e81bd822ad_112.json | 133 ------------- ...904b3-0a8e-4e68-86a8-977a163e21d3_110.json | 91 --------- ...da94d-e54b-4fb5-b96c-cecff87e8787_109.json | 109 +++++++++++ ...01ee6-2d00-4d2f-849e-b8b1fb05234c_104.json | 107 ----------- ...aef8a35-12e0-4ac0-bc14-81c72b6bd27c_1.json | 126 ------------ ...7b914-eda3-40c2-96ac-d23ef91776ca_108.json | 100 ++++++++++ ...46686-6f3c-4724-bd7d-24e31c70f98f_108.json | 106 ----------- ...4315d-5188-4b4a-8521-d1c73093a7e4_112.json | 109 +++++++++++ ...8822053-a5d2-46db-8c96-d460b12c36ac_1.json | 100 ++++++++++ ...1d332-5e08-4f27-8a9b-8c802e3292a6_11.json} | 42 ++-- ...ddff193-48a3-484d-8d35-90bb3d323a56_3.json | 104 ---------- ...94edd-487f-4a90-b285-3ee54f2af2d3_113.json | 109 +++++++++++ ...ed87c-5e95-4339-aef1-47fd79bcfbe3_108.json | 109 +++++++++++ ...10d4d8-fea7-422d-afb1-e5a2702369a9_10.json | 157 --------------- .../security_detection_engine/manifest.yml | 2 +- 103 files changed, 6111 insertions(+), 5322 deletions(-) create mode 100644 packages/security_detection_engine/kibana/security_rule/0415258b-a7b2-48a6-891a-3367cd9d4d31_1.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/054db96b-fd34-43b3-9af2-587b3bd33964_3.json create mode 100644 packages/security_detection_engine/kibana/security_rule/0564fb9d-90b9-4234-a411-82a546dc1343_111.json create mode 100644 packages/security_detection_engine/kibana/security_rule/07b1ef73-1fde-4a49-a34a-5dd40011b076_212.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/0b2f3da5-b5ec-47d1-908b-6ebb74814289_108.json create mode 100644 packages/security_detection_engine/kibana/security_rule/0b79f5c0-2c31-4fea-86cd-e62644278205_1.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/0b803267-74c5-444d-ae29-32b5db2d562a_4.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/0f4d35e4-925e-4959-ab24-911be207ee6f_111.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/11dd9713-0ec6-4110-9707-32daae1ee68c_10.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/12cbf709-69e8-4055-94f9-24314385c27e_202.json create mode 100644 packages/security_detection_engine/kibana/security_rule/14ed1aa9-ebfd-4cf9-a463-0ac59ec55204_110.json create mode 100644 packages/security_detection_engine/kibana/security_rule/16a52c14-7883-47af-8745-9357803f0d4c_114.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/17b0a495-4d9f-414c-8ad0-92f018b8e001_11.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/192657ba-ab0e-4901-89a2-911d611eee98_1.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/1d9aeb0b-9549-46f6-a32d-05e2a001b7fd_5.json create mode 100644 packages/security_detection_engine/kibana/security_rule/203ab79b-239b-4aa5-8e54-fc50623ee8e4_111.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/21bafdf0-cf17-11ed-bd57-f661ea17fbcc_2.json rename packages/security_detection_engine/kibana/security_rule/{28f6f34b-8e16-487a-b5fd-9d22eb903db8_1.json => 2605aa59-29ac-4662-afad-8d86257c7c91_6.json} (54%) create mode 100644 packages/security_detection_engine/kibana/security_rule/263481c8-1e9b-492e-912d-d1760707f810_1.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/27071ea3-e806-4697-8abc-e22c92aa4293_5.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/2abda169-416b-4bb3-9a6b-f8d239fd78ba_202.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/2e29e96a-b67c-455a-afe4-de6183431d0d_109.json create mode 100644 packages/security_detection_engine/kibana/security_rule/2edc8076-291e-41e9-81e4-e3fcbc97ae5e_111.json create mode 100644 packages/security_detection_engine/kibana/security_rule/2ffa1f1e-b6db-47fa-994b-1512743847eb_113.json create mode 100644 packages/security_detection_engine/kibana/security_rule/30b5bb96-c7db-492c-80e9-1eab00db580b_2.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/30e1e9f2-eb9c-439f-aff6-1e3068e99384_1.json create mode 100644 packages/security_detection_engine/kibana/security_rule/34fde489-94b0-4500-a76f-b8a157cf9269_105.json create mode 100644 packages/security_detection_engine/kibana/security_rule/36a8e048-d888-4f61-a8b9-0f9e2e40f317_108.json create mode 100644 packages/security_detection_engine/kibana/security_rule/3a657da0-1df2-11ef-a327-f661ea17fbcc_103.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/3d3aa8f9-12af-441f-9344-9f31053e316d_5.json create mode 100644 packages/security_detection_engine/kibana/security_rule/403ef0d3-8259-40c9-a5b6-d48354712e49_109.json create mode 100644 packages/security_detection_engine/kibana/security_rule/513f0ffd-b317-4b9c-9494-92ce861f22c7_312.json rename packages/security_detection_engine/kibana/security_rule/{7e23dfef-da2c-4d64-b11d-5f285b638853_2.json => 5188c68e-d3de-4e96-994d-9e242269446f_103.json} (59%) delete mode 100644 packages/security_detection_engine/kibana/security_rule/53617418-17b4-4e9c-8a2c-8deb8086ca4b_8.json create mode 100644 packages/security_detection_engine/kibana/security_rule/54902e45-3467-49a4-8abc-529f2c8cfb80_109.json create mode 100644 packages/security_detection_engine/kibana/security_rule/54c3d186-0461-4dc3-9b33-2dc5c7473936_110.json create mode 100644 packages/security_detection_engine/kibana/security_rule/55f07d1b-25bc-4a0f-aa0c-05323c1319d0_2.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/56f2e9b5-4803-4e44-a0a4-a52dc79d57fe_110.json create mode 100644 packages/security_detection_engine/kibana/security_rule/57bfa0a9-37c0-44d6-b724-54bf16787492_2.json create mode 100644 packages/security_detection_engine/kibana/security_rule/58aa72ca-d968-4f34-b9f7-bea51d75eb50_112.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/61ac3638-40a3-44b2-855a-985636ca985e_113.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/61d29caf-6c15-4d1e-9ccb-7ad12ccc0bc7_109.json create mode 100644 packages/security_detection_engine/kibana/security_rule/63e381a6-0ffe-4afb-9a26-72a59ad16d7b_2.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/66883649-f908-4a5b-a1e0-54090a1d3a32_112.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/670b3b5a-35e5-42db-bd36-6c5b9b4b7313_8.json create mode 100644 packages/security_detection_engine/kibana/security_rule/6839c821-011d-43bd-bd5b-acff00257226_108.json create mode 100644 packages/security_detection_engine/kibana/security_rule/689b9d57-e4d5-4357-ad17-9c334609d79a_108.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/6e9130a5-9be6-48e5-943a-9628bfc74b18_105.json create mode 100644 packages/security_detection_engine/kibana/security_rule/70d12c9c-0dbd-4a1a-bc44-1467502c9cf6_109.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/7164081a-3930-11ed-a261-0242ac120002_3.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/764c8437-a581-4537-8060-1fdb0e92c92d_202.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/764c9fcd-4c4c-41e6-a0c7-d6c46c2eff66_9.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/7787362c-90ff-4b1a-b313-8808b1020e64_1.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/79f97b31-480e-4e63-a7f4-ede42bf2c6de_107.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/7fb500fa-8e24-4bd1-9480-2a819352602c_11.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/81fe9dc6-a2d7-4192-a2d8-eed98afc766a_111.json create mode 100644 packages/security_detection_engine/kibana/security_rule/8a024633-c444-45c0-a4fe-78128d8c1ab6_6.json create mode 100644 packages/security_detection_engine/kibana/security_rule/8c81e506-6e82-4884-9b9a-75d3d252f967_107.json create mode 100644 packages/security_detection_engine/kibana/security_rule/8e2485b6-a74f-411b-bf7f-38b819f3a846_103.json create mode 100644 packages/security_detection_engine/kibana/security_rule/8f3e91c7-d791-4704-80a1-42c160d7aa27_107.json create mode 100644 packages/security_detection_engine/kibana/security_rule/94418745-529f-4259-8d25-a713a6feb6ae_3.json create mode 100644 packages/security_detection_engine/kibana/security_rule/954ee7c8-5437-49ae-b2d6-2960883898e9_109.json create mode 100644 packages/security_detection_engine/kibana/security_rule/97fc44d3-8dae-4019-ae83-298c3015600f_112.json create mode 100644 packages/security_detection_engine/kibana/security_rule/9aa0e1f6-52ce-42e1-abb3-09657cee2698_110.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/9b80cb26-9966-44b5-abbf-764fbdbc3586_1.json create mode 100644 packages/security_detection_engine/kibana/security_rule/a1699af0-8e1e-4ed0-8ec1-89783538a061_8.json create mode 100644 packages/security_detection_engine/kibana/security_rule/a22a09c2-2162-4df0-a356-9aacbeb56a04_111.json create mode 100644 packages/security_detection_engine/kibana/security_rule/a44bcb58-5109-4870-a7c6-11f5fe7dd4b1_1.json create mode 100644 packages/security_detection_engine/kibana/security_rule/a9b05c3b-b304-4bf9-970d-acdfaef2944c_109.json create mode 100644 packages/security_detection_engine/kibana/security_rule/ac5a2759-5c34-440a-b0c4-51fe674611d6_1.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/ad959eeb-2b7b-4722-ba08-a45f6622f005_1.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/ae343298-97bc-47bc-9ea2-5f2ad831c16e_3.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/b8386923-b02c-4b94-986a-d223d9b01f88_4.json create mode 100644 packages/security_detection_engine/kibana/security_rule/b9960fef-82c6-4816-befa-44745030e917_111.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/bd2c86a0-8b61-4457-ab38-96943984e889_111.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/bfeaf89b-a2a7-48a3-817f-e41829dc61ee_110.json create mode 100644 packages/security_detection_engine/kibana/security_rule/c5ce48a6-7f57-4ee8-9313-3d0024caee10_109.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/c7908cac-337a-4f38-b50d-5eeb78bdb531_202.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/c8935a8b-634a-4449-98f7-bb24d3b2c0af_7.json create mode 100644 packages/security_detection_engine/kibana/security_rule/c8b150f0-0164-475b-a75e-74b47800a9ff_111.json create mode 100644 packages/security_detection_engine/kibana/security_rule/d0e159cf-73e9-40d1-a9ed-077e3158a855_111.json create mode 100644 packages/security_detection_engine/kibana/security_rule/d1e5e410-3e34-412e-9b1f-dd500b3b55cd_1.json create mode 100644 packages/security_detection_engine/kibana/security_rule/d563aaba-2e72-462b-8658-3e5ea22db3a6_107.json create mode 100644 packages/security_detection_engine/kibana/security_rule/d703a5af-d5b0-43bd-8ddb-7a5d500b7da5_110.json create mode 100644 packages/security_detection_engine/kibana/security_rule/da7733b1-fe08-487e-b536-0a04c6d8b0cd_11.json create mode 100644 packages/security_detection_engine/kibana/security_rule/ddab1f5f-7089-44f5-9fda-de5b11322e77_109.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/df7fda76-c92b-4943-bc68-04460a5ea5ba_202.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/e26f042e-c590-4e82-8e05-41e81bd822ad_112.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/e3e904b3-0a8e-4e68-86a8-977a163e21d3_110.json create mode 100644 packages/security_detection_engine/kibana/security_rule/e86da94d-e54b-4fb5-b96c-cecff87e8787_109.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/e9001ee6-2d00-4d2f-849e-b8b1fb05234c_104.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/eaef8a35-12e0-4ac0-bc14-81c72b6bd27c_1.json create mode 100644 packages/security_detection_engine/kibana/security_rule/f2c7b914-eda3-40c2-96ac-d23ef91776ca_108.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/f2f46686-6f3c-4724-bd7d-24e31c70f98f_108.json create mode 100644 packages/security_detection_engine/kibana/security_rule/f874315d-5188-4b4a-8521-d1c73093a7e4_112.json create mode 100644 packages/security_detection_engine/kibana/security_rule/f8822053-a5d2-46db-8c96-d460b12c36ac_1.json rename packages/security_detection_engine/kibana/security_rule/{fda1d332-5e08-4f27-8a9b-8c802e3292a6_8.json => fda1d332-5e08-4f27-8a9b-8c802e3292a6_11.json} (58%) delete mode 100644 packages/security_detection_engine/kibana/security_rule/fddff193-48a3-484d-8d35-90bb3d323a56_3.json create mode 100644 packages/security_detection_engine/kibana/security_rule/fe794edd-487f-4a90-b285-3ee54f2af2d3_113.json create mode 100644 packages/security_detection_engine/kibana/security_rule/feeed87c-5e95-4339-aef1-47fd79bcfbe3_108.json delete mode 100644 packages/security_detection_engine/kibana/security_rule/ff10d4d8-fea7-422d-afb1-e5a2702369a9_10.json diff --git a/packages/security_detection_engine/changelog.yml b/packages/security_detection_engine/changelog.yml index 674b62769b9a..d591b9f08e87 100644 --- a/packages/security_detection_engine/changelog.yml +++ b/packages/security_detection_engine/changelog.yml @@ -1,5 +1,10 @@ # newer versions go on top # NOTE: please use pre-release versions (e.g. -beta.0) until a package is ready for production +- version: 8.15.2-beta.1 + changes: + - description: Release security rules update + type: enhancement + link: https://github.com/elastic/integrations/pull/10712 - version: 8.15.1 changes: - description: Release security rules update diff --git a/packages/security_detection_engine/kibana/security_rule/0415258b-a7b2-48a6-891a-3367cd9d4d31_1.json b/packages/security_detection_engine/kibana/security_rule/0415258b-a7b2-48a6-891a-3367cd9d4d31_1.json new file mode 100644 index 000000000000..41a09fa5d32e --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/0415258b-a7b2-48a6-891a-3367cd9d4d31_1.json @@ -0,0 +1,87 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "This rule detects the first time a principal calls AWS Cloudwatch `CreateStack` or `CreateStackSet` API. Cloudformation is used to create a single collection of cloud resources called a stack, via a defined template file. An attacker with the appropriate privileges could leverage Cloudformation to create specific resources needed to further exploit the environment. This is a new terms rule that looks for the first instance of this behavior in the last 10 days for a role or IAM user within a particular account.", + "false_positives": [ + "Verify whether the user identity should be using the `CreateStack` or `CreateStackSet` APIs. If known behavior is causing false positives, it can be exempted from the rule. The \"history_window_start\" value can be modified to reflect the expected frequency of known activity within a particular environment." + ], + "from": "now-6m", + "history_window_start": "now-10d", + "index": [ + "filebeat-*", + "logs-aws.cloudtrail-*" + ], + "language": "kuery", + "license": "Elastic License v2", + "name": "First Time AWS Cloudformation Stack Creation by User", + "new_terms_fields": [ + "cloud.account.id", + "user.name" + ], + "query": "event.dataset:aws.cloudtrail and event.provider:cloudformation.amazonaws.com and\n event.action: (CreateStack or CreateStackSet) and event.outcome:success\n", + "references": [ + "https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-cli-creating-stack.html/", + "https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-concepts.html/", + "https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_CreateStack.html/", + "https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_CreateStackSet.html/" + ], + "related_integrations": [ + { + "integration": "cloudtrail", + "package": "aws", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.dataset", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.outcome", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.provider", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "0415258b-a7b2-48a6-891a-3367cd9d4d31", + "severity": "medium", + "tags": [ + "Domain: Cloud", + "Data Source: AWS", + "Data Source: Amazon Web Services", + "Data Source: Cloudformation", + "Use Case: Asset Visibility", + "Tactic: Execution" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0002", + "name": "Execution", + "reference": "https://attack.mitre.org/tactics/TA0002/" + }, + "technique": [] + } + ], + "timestamp_override": "event.ingested", + "type": "new_terms", + "version": 1 + }, + "id": "0415258b-a7b2-48a6-891a-3367cd9d4d31_1", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/054db96b-fd34-43b3-9af2-587b3bd33964_3.json b/packages/security_detection_engine/kibana/security_rule/054db96b-fd34-43b3-9af2-587b3bd33964_3.json deleted file mode 100644 index c361e1bad706..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/054db96b-fd34-43b3-9af2-587b3bd33964_3.json +++ /dev/null @@ -1,100 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Monitors for the creation of rule files that are used by systemd-udevd to manage device nodes and handle kernel device events in the Linux operating system. Systemd-udevd can be exploited for persistence by adversaries by creating malicious udev rules that trigger on specific events, executing arbitrary commands or payloads whenever a certain device is plugged in or recognized by the system.", - "from": "now-9m", - "history_window_start": "now-14d", - "index": [ - "logs-endpoint.events.*", - "endgame-*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Potential Persistence Through Systemd-udevd", - "new_terms_fields": [ - "host.id", - "process.executable", - "file.path" - ], - "query": "host.os.type:\"linux\" and event.category:\"file\" and\nevent.type:(\"change\" or \"file_modify_event\" or \"creation\" or \"file_create_event\") and\nfile.path:/lib/udev/* and process.executable:* and not (\n process.name:(\"dockerd\" or \"docker\" or \"dpkg\" or \"dnf\" or \"dnf-automatic\" or \"yum\" or \"rpm\" or \"systemd-hwdb\" or\n \"podman\" or \"buildah\") or file.extension : (\"swp\" or \"swpx\")\n)\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.extension", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - } - ], - "risk_score": 21, - "rule_id": "054db96b-fd34-43b3-9af2-587b3bd33964", - "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows\nthe Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click Add integrations.\n- In the query bar, search for Elastic Defend and select the integration to see more details about it.\n- Click Add Elastic Defend.\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either Traditional Endpoints or Cloud Workloads.\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest to select \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in New agent policy name. If other agent policies already exist, you can click the Existing hosts tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click Save and Continue.\n- To complete the integration, select Add Elastic Agent to your hosts and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "low", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Data Source: Elastic Endgame", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1037", - "name": "Boot or Logon Initialization Scripts", - "reference": "https://attack.mitre.org/techniques/T1037/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "new_terms", - "version": 3 - }, - "id": "054db96b-fd34-43b3-9af2-587b3bd33964_3", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/0564fb9d-90b9-4234-a411-82a546dc1343_111.json b/packages/security_detection_engine/kibana/security_rule/0564fb9d-90b9-4234-a411-82a546dc1343_111.json new file mode 100644 index 000000000000..d33c6b44c244 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/0564fb9d-90b9-4234-a411-82a546dc1343_111.json @@ -0,0 +1,99 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "building_block_type": "default", + "description": "Identifies the Internet Information Services (IIS) command-line tool, AppCmd, being used to list passwords. An attacker with IIS web server access via a web shell can decrypt and dump the IIS AppPool service account password using AppCmd.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.process-*", + "logs-windows.*", + "endgame-*", + "logs-system.security*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Microsoft IIS Service Account Password Dumped", + "query": "process where host.os.type == \"windows\" and event.type == \"start\" and\n (process.name : \"appcmd.exe\" or ?process.pe.original_file_name == \"appcmd.exe\") and\n process.args : \"list\" and process.args : \"/text*\"\n", + "references": [ + "https://blog.netspi.com/decrypting-iis-passwords-to-break-out-of-the-dmz-part-1/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + }, + { + "package": "system", + "version": "^1.6.4" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.args", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.pe.original_file_name", + "type": "keyword" + } + ], + "risk_score": 21, + "rule_id": "0564fb9d-90b9-4234-a411-82a546dc1343", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Credential Access", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Rule Type: BBR" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1003", + "name": "OS Credential Dumping", + "reference": "https://attack.mitre.org/techniques/T1003/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 111 + }, + "id": "0564fb9d-90b9-4234-a411-82a546dc1343_111", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/07b1ef73-1fde-4a49-a34a-5dd40011b076_212.json b/packages/security_detection_engine/kibana/security_rule/07b1ef73-1fde-4a49-a34a-5dd40011b076_212.json new file mode 100644 index 000000000000..0acb31210d53 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/07b1ef73-1fde-4a49-a34a-5dd40011b076_212.json @@ -0,0 +1,135 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies registry modification to the LocalAccountTokenFilterPolicy policy. If this value exists (which doesn't by default) and is set to 1, then remote connections from all local members of Administrators are granted full high-integrity tokens during negotiation.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*", + "logs-sentinel_one_cloud_funnel.*", + "logs-m365_defender.event-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Local Account TokenFilter Policy Disabled", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.value : \"LocalAccountTokenFilterPolicy\" and\n registry.path : (\n \"HKLM\\\\*\\\\LocalAccountTokenFilterPolicy\",\n \"\\\\REGISTRY\\\\MACHINE\\\\*\\\\LocalAccountTokenFilterPolicy\",\n \"MACHINE\\\\*\\\\LocalAccountTokenFilterPolicy\"\n ) and registry.data.strings : (\"1\", \"0x00000001\")\n", + "references": [ + "https://www.stigviewer.com/stig/windows_server_2008_r2_member_server/2014-04-02/finding/V-36439", + "https://posts.specterops.io/pass-the-hash-is-dead-long-live-localaccounttokenfilterpolicy-506c25a7c167", + "https://www.welivesecurity.com/wp-content/uploads/2018/01/ESET_Turla_Mosquito.pdf" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + }, + { + "package": "sentinel_one_cloud_funnel", + "version": "^1.0.0" + }, + { + "package": "m365_defender", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "07b1ef73-1fde-4a49-a34a-5dd40011b076", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Tactic: Lateral Movement", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon", + "Data Source: SentinelOne", + "Data Source: Microsoft Defender for Endpoint" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + }, + { + "id": "T1562", + "name": "Impair Defenses", + "reference": "https://attack.mitre.org/techniques/T1562/" + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0008", + "name": "Lateral Movement", + "reference": "https://attack.mitre.org/tactics/TA0008/" + }, + "technique": [ + { + "id": "T1550", + "name": "Use Alternate Authentication Material", + "reference": "https://attack.mitre.org/techniques/T1550/", + "subtechnique": [ + { + "id": "T1550.002", + "name": "Pass the Hash", + "reference": "https://attack.mitre.org/techniques/T1550/002/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 212 + }, + "id": "07b1ef73-1fde-4a49-a34a-5dd40011b076_212", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/0b2f3da5-b5ec-47d1-908b-6ebb74814289_108.json b/packages/security_detection_engine/kibana/security_rule/0b2f3da5-b5ec-47d1-908b-6ebb74814289_108.json deleted file mode 100644 index 02733ca23482..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/0b2f3da5-b5ec-47d1-908b-6ebb74814289_108.json +++ /dev/null @@ -1,106 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects when a user account has the servicePrincipalName attribute modified. Attackers can abuse write privileges over a user to configure Service Principle Names (SPNs) so that they can perform Kerberoasting. Administrators can also configure this for legitimate purposes, exposing the account to Kerberoasting.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-system.*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "User account exposed to Kerberoasting", - "note": "## Triage and analysis\n\n### Investigating User account exposed to Kerberoasting\n\nService Principal Names (SPNs) are names by which Kerberos clients uniquely identify service instances for Kerberos target computers.\n\nBy default, only computer accounts have SPNs, which creates no significant risk, since machine accounts have a default domain policy that rotates their passwords every 30 days, and the password is composed of 120 random characters, making them invulnerable to Kerberoasting.\n\nA user account with an SPN assigned is considered a service account, and is accessible to the entire domain. If any user in the directory requests a ticket-granting service (TGS), the domain controller will encrypt it with the secret key of the account executing the service. An attacker can potentially perform a Kerberoasting attack with this information, as the human-defined password is likely to be less complex.\n\nFor scenarios where SPNs cannot be avoided on user accounts, Microsoft provides the Group Managed Service Accounts (gMSA) feature, which ensures that account passwords are robust and changed regularly and automatically. More information can be found [here](https://docs.microsoft.com/en-us/windows-server/security/group-managed-service-accounts/group-managed-service-accounts-overview).\n\nAttackers can also perform \"Targeted Kerberoasting\", which consists of adding fake SPNs to user accounts that they have write privileges to, making them potentially vulnerable to Kerberoasting.\n\n#### Possible investigation steps\n\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Contact the account owner and confirm whether they are aware of this activity.\n- Investigate if the target account is a member of privileged groups (Domain Admins, Enterprise Admins, etc.).\n- Investigate if tickets have been requested for the target account.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n\n### False positive analysis\n\n- The use of user accounts as service accounts is a bad security practice and should not be allowed in the domain. The security team should map and monitor any potential benign true positive (B-TP), especially if the account is privileged. Domain Administrators that define this kind of setting can put the domain at risk as user accounts don't have the same security standards as computer accounts (which have long, complex, random passwords that change frequently), exposing them to credential cracking attacks (Kerberoasting, brute force, etc.).\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services. Prioritize privileged accounts.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n\n", - "query": "event.action:\"Directory Service Changes\" and event.code:5136 and\n winlog.event_data.OperationType:\"%%14674\" and\n winlog.event_data.ObjectClass:\"user\" and\n winlog.event_data.AttributeLDAPDisplayName:\"servicePrincipalName\"\n", - "references": [ - "https://www.thehacker.recipes/ad/movement/access-controls/targeted-kerberoasting", - "https://www.qomplx.com/qomplx-knowledge-kerberoasting-attacks-explained/", - "https://www.thehacker.recipes/ad/movement/kerberos/kerberoast", - "https://attack.stealthbits.com/cracking-kerberos-tgs-tickets-using-kerberoasting", - "https://adsecurity.org/?p=280", - "https://github.com/OTRF/Set-AuditRule" - ], - "related_integrations": [ - { - "package": "system", - "version": "^1.6.4" - }, - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.code", - "type": "keyword" - }, - { - "ecs": false, - "name": "winlog.event_data.AttributeLDAPDisplayName", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.ObjectClass", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.OperationType", - "type": "unknown" - } - ], - "risk_score": 73, - "rule_id": "0b2f3da5-b5ec-47d1-908b-6ebb74814289", - "setup": "\nThe 'Audit Directory Service Changes' logging policy must be configured for (Success, Failure).\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nPolicies >\nWindows Settings >\nSecurity Settings >\nAdvanced Audit Policies Configuration >\nAudit Policies >\nDS Access >\nAudit Directory Service Changes (Success,Failure)\n```\n\nThe above policy does not cover User objects, so set up an AuditRule using https://github.com/OTRF/Set-AuditRule.\nAs this specifies the servicePrincipalName Attribute GUID, it is expected to be low noise.\n\n```\nSet-AuditRule -AdObjectPath 'AD:\\CN=Users,DC=Domain,DC=com' -WellKnownSidType WorldSid -Rights WriteProperty -InheritanceFlags Children -AttributeGUID f3a64788-5306-11d1-a9c5-0000f80367c1 -AuditFlags Success\n```\n", - "severity": "high", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Credential Access", - "Data Source: Active Directory", - "Resources: Investigation Guide", - "Use Case: Active Directory Monitoring" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0006", - "name": "Credential Access", - "reference": "https://attack.mitre.org/tactics/TA0006/" - }, - "technique": [ - { - "id": "T1558", - "name": "Steal or Forge Kerberos Tickets", - "reference": "https://attack.mitre.org/techniques/T1558/", - "subtechnique": [ - { - "id": "T1558.003", - "name": "Kerberoasting", - "reference": "https://attack.mitre.org/techniques/T1558/003/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 108 - }, - "id": "0b2f3da5-b5ec-47d1-908b-6ebb74814289_108", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/0b79f5c0-2c31-4fea-86cd-e62644278205_1.json b/packages/security_detection_engine/kibana/security_rule/0b79f5c0-2c31-4fea-86cd-e62644278205_1.json new file mode 100644 index 000000000000..dd3173f45643 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/0b79f5c0-2c31-4fea-86cd-e62644278205_1.json @@ -0,0 +1,88 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "This rule looks for use of the IAM `AttachUserPolicy` API operation to attach the `CompromisedKeyQuarantine` or `CompromisedKeyQuarantineV2` AWS managed policies to an existing IAM user. This policy denies access to certain actions and is applied by the AWS team in the event that an IAM user's credentials have been compromised or exposed publicly.", + "false_positives": [ + "This is an intentional action taken by AWS in the event of compromised credentials. Follow the instructions specified in the support case created for you regarding this event." + ], + "from": "now-6m", + "index": [ + "filebeat-*", + "logs-aws.cloudtrail-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "AWS IAM CompromisedKeyQuarantine Policy Attached to User", + "note": "## Triage and Analysis\n\n### Investigating AWS IAM CompromisedKeyQuarantine Policy Attached to User\n\nThe AWS IAM `CompromisedKeyQuarantine` and `CompromisedKeyQuarantineV2` managed policies deny certain action and is applied by the AWS team to a user with exposed credentials. \nThis action is accompanied by a support case which specifies instructions to follow before detaching the policy. \n\n#### Possible Investigation Steps\n\n- **Identify Potentially Compromised Identity**: Review the `userName` parameter of the `aws.cloudtrail.request_parameters` to determine the quarantined IAM entity.\n- **Contextualize with AWS Support Case**: Review any information from AWS comtaining additional information about the quarantined account and the reasoning for quarantine.\n- **Follow Support Case Instructions**: Do not revert the quarantine policy attachment or delete the compromised keys. Instead folow the instructions given in your support case.\n- **Correlate with Other Activities**: Search for related CloudTrail events before and after this change to see if the same actor or IP address engaged in potentially suspicious activities.\n- **Interview Relevant Personnel**: If the compromised key belongs to a user, verify the intent and authorization for these correlated actions with the person or team responsible for managing the compromised key.\n\n### False Positive Analysis\n\n- There shouldn't be many false positives related to this action as it is inititated by AWS in response to compromised or publicly exposed credentials.\n\n### Response and Remediation\n\n- **Immediate Review and Reversal**: Update the user IAM permissions to remove the quarantine policy and disable the compromised credentials.\n- **Policy Update**: Review and possibly update your organization\u2019s policies on credential storage to tighten control and prevent public exposure.\n- **Incident Response**: If malicious intent is confirmed, consider it a data breach incident and initiate the incident response protocol. This includes further investigation, containment, and recovery.\n\n### Additional Information:\n\nFor further guidance on managing and securing credentials in AWS environments, refer to the [AWS IAM User Guide](https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html) regarding security best practices and guidance on [Remediating Potentially Compromised AWS Credentials](https://docs.aws.amazon.com/guardduty/latest/ug/compromised-creds.html).\n", + "query": "any where event.dataset == \"aws.cloudtrail\" \n and event.action == \"AttachUserPolicy\"\n and event.outcome == \"success\" \n and stringContains(aws.cloudtrail.request_parameters, \"AWSCompromisedKeyQuarantine\")\n", + "references": [ + "https://docs.aws.amazon.com/aws-managed-policy/latest/reference/AWSCompromisedKeyQuarantine.html/", + "https://docs.aws.amazon.com/aws-managed-policy/latest/reference/AWSCompromisedKeyQuarantineV2.html/" + ], + "related_integrations": [ + { + "integration": "cloudtrail", + "package": "aws", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": false, + "name": "aws.cloudtrail.request_parameters", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.dataset", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.outcome", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "0b79f5c0-2c31-4fea-86cd-e62644278205", + "severity": "high", + "tags": [ + "Domain: Cloud", + "Data Source: AWS", + "Data Source: Amazon Web Services", + "Data Source: AWS IAM", + "Resources: Investigation Guide", + "Use Case: Identity and Access Audit", + "Tactic: Credential Access" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1552", + "name": "Unsecured Credentials", + "reference": "https://attack.mitre.org/techniques/T1552/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 1 + }, + "id": "0b79f5c0-2c31-4fea-86cd-e62644278205_1", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/0b803267-74c5-444d-ae29-32b5db2d562a_4.json b/packages/security_detection_engine/kibana/security_rule/0b803267-74c5-444d-ae29-32b5db2d562a_4.json deleted file mode 100644 index 4bf6c953fa59..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/0b803267-74c5-444d-ae29-32b5db2d562a_4.json +++ /dev/null @@ -1,120 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule monitors for the execution of a set of linux binaries, that are potentially vulnerable to wildcard injection, with suspicious command line flags followed by a shell spawn event. Linux wildcard injection is a type of security vulnerability where attackers manipulate commands or input containing wildcards (e.g., *, ?, []) to execute unintended operations or access sensitive data by tricking the system into interpreting the wildcard characters in unexpected ways.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Potential Shell via Wildcard Injection Detected", - "query": "sequence by host.id with maxspan=1s\n [process where host.os.type == \"linux\" and event.action == \"exec\" and event.type == \"start\" and (\n (process.name == \"tar\" and process.args : \"--checkpoint=*\" and process.args : \"--checkpoint-action=*\") or\n (process.name == \"rsync\" and process.args : \"-e*\") or\n (process.name == \"zip\" and process.args == \"--unzip-command\") )] by process.entity_id\n [process where host.os.type == \"linux\" and event.action == \"exec\" and event.type == \"start\" and \n process.parent.name : (\"tar\", \"rsync\", \"zip\") and \n process.name : (\"bash\", \"dash\", \"sh\", \"tcsh\", \"csh\", \"zsh\", \"ksh\", \"fish\")] by process.parent.entity_id\n", - "references": [ - "https://www.exploit-db.com/papers/33930" - ], - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.id", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.args", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.entity_id", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.parent.entity_id", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.parent.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "0b803267-74c5-444d-ae29-32b5db2d562a", - "setup": "\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Privilege Escalation", - "Tactic: Execution", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1068", - "name": "Exploitation for Privilege Escalation", - "reference": "https://attack.mitre.org/techniques/T1068/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/" - } - ] - } - ], - "type": "eql", - "version": 4 - }, - "id": "0b803267-74c5-444d-ae29-32b5db2d562a_4", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/0f4d35e4-925e-4959-ab24-911be207ee6f_111.json b/packages/security_detection_engine/kibana/security_rule/0f4d35e4-925e-4959-ab24-911be207ee6f_111.json deleted file mode 100644 index 73bd245a71c6..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/0f4d35e4-925e-4959-ab24-911be207ee6f_111.json +++ /dev/null @@ -1,109 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule monitors the creation/alteration of the rc.local file by a previously unknown process executable through the use of the new terms rule type. The /etc/rc.local file is used to start custom applications, services, scripts or commands during start-up. The rc.local file has mostly been replaced by Systemd. However, through the \"systemd-rc-local-generator\", rc.local files can be converted to services that run at boot. Adversaries may alter rc.local to execute malicious code at start-up, and gain persistence onto the system.", - "from": "now-9m", - "history_window_start": "now-7d", - "index": [ - "logs-endpoint.events.*", - "endgame-*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Potential Persistence Through Run Control Detected", - "new_terms_fields": [ - "host.id", - "process.executable", - "user.id" - ], - "note": "## Triage and analysis\n\n### Investigating Potential Persistence Through Run Control Detected\n\nThe `rc.local` file executes custom commands or scripts during system startup on Linux systems. `rc.local` has been deprecated in favor of the use of `systemd services`, and more recent Unix distributions no longer leverage this method of on-boot script execution.\n\nThere might still be users that use `rc.local` in a benign matter, so investigation to see whether the file is malicious is vital.\n\nDetection alerts from this rule indicate the creation of a new `/etc/rc.local` file.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n> This investigation guide uses [placeholder fields](https://www.elastic.co/guide/en/security/current/osquery-placeholder-fields.html) to dynamically pass alert data into Osquery queries. Placeholder fields were introduced in Elastic Stack version 8.7.0. If you're using Elastic Stack version 8.6.0 or earlier, you'll need to manually adjust this investigation guide's queries to ensure they properly run.\n\n#### Possible Investigation Steps\n\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Investigate the file that was created or modified.\n - !{osquery{\"label\":\"Osquery - Retrieve File Information\",\"query\":\"SELECT * FROM file WHERE path = {{file.path}}\"}}\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence and whether they are located in expected locations.\n - !{osquery{\"label\":\"Osquery - Retrieve Running Processes by User\",\"query\":\"SELECT pid, username, name FROM processes p JOIN users u ON u.uid = p.uid ORDER BY username\"}}\n- Investigate whether the `/lib/systemd/system/rc-local.service` and `/run/systemd/generator/multi-user.target.wants/rc-local.service` files were created through the `systemd-rc-local-generator` located at `/usr/lib/systemd/system-generators/systemd-rc-local-generator`.\n - !{osquery{\"label\":\"Osquery - Retrieve rc-local.service File Information\",\"query\":\"SELECT * FROM file WHERE (path = '/run/systemd/generator/multi-user.target.wants/rc-local.service' OR path =\\n'/run/systemd/generator/multi-user.target.wants/rc-local.service')\\n\"}}\n - In case the file is not present here, `sudo systemctl status rc-local` can be executed to find the location of the rc-local unit file.\n - If `rc-local.service` is found, manual investigation is required to check for the rc script execution. Systemd will generate syslogs in case of the execution of the rc-local service. `sudo cat /var/log/syslog | grep \"rc-local.service|/etc/rc.local Compatibility\"` can be executed to check for the execution of the service.\n - If logs are found, it's likely that the contents of the `rc.local` file have been executed. Analyze the logs. In case several syslog log files are available, use a wildcard to search through all of the available logs.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate whether this activity is related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Investigate whether the altered scripts call other malicious scripts elsewhere on the file system.\n - If scripts or executables were dropped, retrieve the files and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - Check if the domain is newly registered or unexpected.\n - Check the reputation of the domain or IP address.\n - File access, modification, and creation activities.\n - Cron jobs, services and other persistence mechanisms.\n - !{osquery{\"label\":\"Osquery - Retrieve Crontab Information\",\"query\":\"SELECT * FROM crontab\"}}\n\n### False Positive Analysis\n\n- If this activity is related to new benign software installation activity, consider adding exceptions \u2014 preferably with a combination of user and command line conditions.\n- If this activity is related to a system administrator who uses `rc.local` for administrative purposes, consider adding exceptions for this specific administrator user account.\n- Try to understand the context of the execution by thinking about the user, machine, or business purpose. A small number of endpoints, such as servers with unique software, might appear unusual but satisfy a specific business need.\n\n### Response and remediation\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Delete the `service/rc.local` files or restore their original configuration.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Leverage the incident response data and logging to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "host.os.type : \"linux\" and event.category : \"file\" and\nevent.type : (\"change\" or \"file_modify_event\" or \"creation\" or \"file_create_event\") and\nfile.path : \"/etc/rc.local\" and not process.name : (\n \"dockerd\" or \"docker\" or \"dnf\" or \"dnf-automatic\" or \"yum\" or \"rpm\" or \"dpkg\"\n) and not file.extension : (\"swp\" or \"swpx\")\n", - "references": [ - "https://www.intezer.com/blog/malware-analysis/hiddenwasp-malware-targeting-linux-systems/", - "https://pberba.github.io/security/2022/02/06/linux-threat-hunting-for-persistence-initialization-scripts-and-shell-configuration/#8-boot-or-logon-initialization-scripts-rc-scripts", - "https://www.cyberciti.biz/faq/how-to-enable-rc-local-shell-script-on-systemd-while-booting-linux-system/" - ], - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.extension", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "0f4d35e4-925e-4959-ab24-911be207ee6f", - "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Data Source: Elastic Endgame", - "Resources: Investigation Guide", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1037", - "name": "Boot or Logon Initialization Scripts", - "reference": "https://attack.mitre.org/techniques/T1037/", - "subtechnique": [ - { - "id": "T1037.004", - "name": "RC Scripts", - "reference": "https://attack.mitre.org/techniques/T1037/004/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "new_terms", - "version": 111 - }, - "id": "0f4d35e4-925e-4959-ab24-911be207ee6f_111", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/11dd9713-0ec6-4110-9707-32daae1ee68c_10.json b/packages/security_detection_engine/kibana/security_rule/11dd9713-0ec6-4110-9707-32daae1ee68c_10.json deleted file mode 100644 index 2ce48024cebb..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/11dd9713-0ec6-4110-9707-32daae1ee68c_10.json +++ /dev/null @@ -1,124 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects scripts that contain PowerShell functions, structures, or Windows API functions related to token impersonation/theft. Attackers may duplicate then impersonate another user's token to escalate privileges and bypass access controls.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Script with Token Impersonation Capabilities", - "note": "## Triage and analysis\n\n### Investigating PowerShell Script with Token Impersonation Capabilities\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks. This makes it available for use in various environments, and creates an attractive way for attackers to execute code.\n\nAdversaries can abuse PowerShell to perform token impersonation, which involves duplicating and impersonating another user's token to escalate privileges and bypass access controls. This rule identifies scripts containing PowerShell functions, structures, or Windows API functions related to token impersonation/theft.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Examine PowerShell process creation and script block logs to identify command line arguments or hardcoded information that can indicate which user was the target of the impersonation.\n- Investigate any abnormal behavior by the subject process (PowerShell), such as network connections, registry or file modifications, and any spawned child processes.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the script using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (for example, 4624) to the target host after the registry modification.\n\n### False positive analysis\n\n- Regular users should not need to impersonate other users, which makes false positives unlikely. In the case of authorized benign true positives (B-TPs), exceptions can be added.\n\n### Related Rules\n\n- PowerShell PSReflect Script - 56f2e9b5-4803-4e44-a0a4-a52dc79d57fe\n- Potential Process Injection via PowerShell - 2e29e96a-b67c-455a-afe4-de6183431d0d\n\n### Response and Remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text:(\n \"Invoke-TokenManipulation\" or\n \"ImpersonateNamedPipeClient\" or\n \"NtImpersonateThread\" or\n (\n \"STARTUPINFOEX\" and\n \"UpdateProcThreadAttribute\"\n ) or\n (\n \"AdjustTokenPrivileges\" and\n \"SeDebugPrivilege\"\n ) or\n (\n (\"DuplicateToken\" or\n \"DuplicateTokenEx\") and\n (\"SetThreadToken\" or\n \"ImpersonateLoggedOnUser\" or\n \"CreateProcessWithTokenW\" or\n \"CreatePRocessAsUserW\" or\n \"CreateProcessAsUserA\")\n ) \n ) and\n not (\n user.id:(\"S-1-5-18\" or \"S-1-5-19\" or \"S-1-5-20\") and\n file.directory: \"C:\\\\ProgramData\\\\Microsoft\\\\Windows Defender Advanced Threat Protection\\\\Downloads\"\n ) and\n not powershell.file.script_block_text : (\n \"sentinelbreakpoints\" and \"Set-PSBreakpoint\" and \"PowerSploitIndicators\"\n )\n", - "references": [ - "https://github.com/decoder-it/psgetsystem", - "https://github.com/PowerShellMafia/PowerSploit/blob/master/Privesc/Get-System.ps1", - "https://github.com/EmpireProject/Empire/blob/master/data/module_source/privesc/Invoke-MS16032.ps1", - "https://github.com/atc-project/atc-data/blob/master/docs/Logging_Policies/LP_0109_windows_powershell_script_block_log.md" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.directory", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "11dd9713-0ec6-4110-9707-32daae1ee68c", - "setup": "The 'PowerShell Script Block Logging' logging policy must be configured (Enable).\n\nSteps to implement the logging policy with with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Privilege Escalation", - "Data Source: PowerShell Logs" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1134", - "name": "Access Token Manipulation", - "reference": "https://attack.mitre.org/techniques/T1134/", - "subtechnique": [ - { - "id": "T1134.001", - "name": "Token Impersonation/Theft", - "reference": "https://attack.mitre.org/techniques/T1134/001/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - }, - { - "id": "T1106", - "name": "Native API", - "reference": "https://attack.mitre.org/techniques/T1106/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 10 - }, - "id": "11dd9713-0ec6-4110-9707-32daae1ee68c_10", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/12cbf709-69e8-4055-94f9-24314385c27e_202.json b/packages/security_detection_engine/kibana/security_rule/12cbf709-69e8-4055-94f9-24314385c27e_202.json deleted file mode 100644 index af6277973378..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/12cbf709-69e8-4055-94f9-24314385c27e_202.json +++ /dev/null @@ -1,108 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rules detects an attempt to create or modify a pod attached to the host network. HostNetwork allows a pod to use the node network namespace. Doing so gives the pod access to any service running on localhost of the host. An attacker could use this access to snoop on network activity of other pods on the same node or bypass restrictive network policies applied to its given namespace.", - "false_positives": [ - "An administrator or developer may want to use a pod that runs as root and shares the hosts IPC, Network, and PID namespaces for debugging purposes. If something is going wrong in the cluster and there is no easy way to SSH onto the host nodes directly, a privileged pod of this nature can be useful for viewing things like iptable rules and network namespaces from the host's perspective. Add exceptions for trusted container images using the query field \"kubernetes.audit.requestObject.spec.container.image\"" - ], - "index": [ - "logs-kubernetes.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Kubernetes Pod Created With HostNetwork", - "note": "", - "query": "event.dataset : \"kubernetes.audit_logs\"\n and kubernetes.audit.annotations.authorization_k8s_io/decision:\"allow\"\n and kubernetes.audit.objectRef.resource:\"pods\"\n and kubernetes.audit.verb:(\"create\" or \"update\" or \"patch\")\n and kubernetes.audit.requestObject.spec.hostNetwork:true\n and not kubernetes.audit.requestObject.spec.containers.image: (\"docker.elastic.co/beats/elastic-agent:8.4.0\")\n", - "references": [ - "https://research.nccgroup.com/2021/11/10/detection-engineering-for-kubernetes-clusters/#part3-kubernetes-detections", - "https://kubernetes.io/docs/concepts/security/pod-security-policy/#host-namespaces", - "https://bishopfox.com/blog/kubernetes-pod-privilege-escalation" - ], - "related_integrations": [ - { - "package": "kubernetes", - "version": "^1.4.1" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.dataset", - "type": "keyword" - }, - { - "ecs": false, - "name": "kubernetes.audit.annotations.authorization_k8s_io/decision", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.objectRef.resource", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.containers.image", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.hostNetwork", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.verb", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "12cbf709-69e8-4055-94f9-24314385c27e", - "setup": "The Kubernetes Fleet integration with Audit Logs enabled or similarly structured data is required to be compatible with this rule.", - "severity": "medium", - "tags": [ - "Data Source: Kubernetes", - "Tactic: Execution", - "Tactic: Privilege Escalation" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1611", - "name": "Escape to Host", - "reference": "https://attack.mitre.org/techniques/T1611/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1610", - "name": "Deploy Container", - "reference": "https://attack.mitre.org/techniques/T1610/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 202 - }, - "id": "12cbf709-69e8-4055-94f9-24314385c27e_202", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/14ed1aa9-ebfd-4cf9-a463-0ac59ec55204_110.json b/packages/security_detection_engine/kibana/security_rule/14ed1aa9-ebfd-4cf9-a463-0ac59ec55204_110.json new file mode 100644 index 000000000000..3a97b8461f0c --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/14ed1aa9-ebfd-4cf9-a463-0ac59ec55204_110.json @@ -0,0 +1,119 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies modification of the Time Provider. Adversaries may establish persistence by registering and enabling a malicious DLL as a time provider. Windows uses the time provider architecture to obtain accurate time stamps from other network devices or clients in the network. Time providers are implemented in the form of a DLL file which resides in the System32 folder. The service W32Time initiates during the startup of Windows and loads w32time.dll.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Potential Persistence via Time Provider Modification", + "note": "## Triage and analysis\n\n### Investigating Potential Persistence via Time Provider Modification\n\nThe Time Provider architecture in Windows is responsible for obtaining accurate timestamps from network devices or clients. It is implemented as a DLL file in the System32 folder and is initiated by the W32Time service during Windows startup. Adversaries may exploit this by registering and enabling a malicious DLL as a time provider to establish persistence. \n\nThis rule identifies changes in the registry paths associated with Time Providers, specifically targeting the addition of new DLL files.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Examine whether the DLL is signed.\n- Retrieve the DLL and determine if it is malicious:\n - Analyze the file using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Benign true positives (B-TPs) can be added as exceptions if necessary.\n\n### Response and Remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Restore Time Provider settings to the desired state.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path: (\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\W32Time\\\\TimeProviders\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\W32Time\\\\TimeProviders\\\\*\"\n ) and\n registry.data.strings:\"*.dll\" and\n not\n (\n process.executable : \"?:\\\\Windows\\\\System32\\\\msiexec.exe\" and\n registry.data.strings : \"?:\\\\Program Files\\\\VMware\\\\VMware Tools\\\\vmwTimeProvider\\\\vmwTimeProvider.dll\"\n ) and\n not registry.data.strings : \"C:\\\\Windows\\\\SYSTEM32\\\\w32time.DLL\"\n", + "references": [ + "https://pentestlab.blog/2019/10/22/persistence-time-providers/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "14ed1aa9-ebfd-4cf9-a463-0ac59ec55204", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Privilege Escalation", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.003", + "name": "Time Providers", + "reference": "https://attack.mitre.org/techniques/T1547/003/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0004", + "name": "Privilege Escalation", + "reference": "https://attack.mitre.org/tactics/TA0004/" + }, + "technique": [ + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.003", + "name": "Time Providers", + "reference": "https://attack.mitre.org/techniques/T1547/003/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 110 + }, + "id": "14ed1aa9-ebfd-4cf9-a463-0ac59ec55204_110", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/16a52c14-7883-47af-8745-9357803f0d4c_114.json b/packages/security_detection_engine/kibana/security_rule/16a52c14-7883-47af-8745-9357803f0d4c_114.json new file mode 100644 index 000000000000..51fbd10f5b2e --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/16a52c14-7883-47af-8745-9357803f0d4c_114.json @@ -0,0 +1,154 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies Component Object Model (COM) hijacking via registry modification. Adversaries may establish persistence by executing malicious content triggered by hijacked references to COM objects.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Component Object Model Hijacking", + "note": "## Triage and analysis\n\n### Investigating Component Object Model Hijacking\n\nAdversaries can insert malicious code that can be executed in place of legitimate software through hijacking the COM references and relationships as a means of persistence.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Assess whether this behavior is prevalent in the environment by looking for similar occurrences across hosts.\n- Retrieve the file referenced in the registry and determine if it is malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - File and registry access, modification, and creation activities.\n - Service creation and launch activities.\n - Scheduled task creation.\n - Use the PowerShell Get-FileHash cmdlet to get the files' SHA-256 hash values.\n - Search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n### False positive analysis\n\n- Some Microsoft executables will reference the LocalServer32 registry key value for the location of external COM objects.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n /* not necessary but good for filtering privileged installations */\n user.domain != \"NT AUTHORITY\" and process.executable != null and \n (\n (\n registry.path : \"HK*\\\\InprocServer32\\\\\" and\n registry.data.strings: (\"scrobj.dll\", \"?:\\\\*\\\\scrobj.dll\") and\n not registry.path : \"*\\\\{06290BD*-48AA-11D2-8432-006008C3FBFC}\\\\*\"\n ) or\n\n (\n registry.path : \"HKLM\\\\*\\\\InProcServer32\\\\*\" and\n registry.data.strings : (\"*\\\\Users\\\\*\", \"*\\\\ProgramData\\\\*\")\n ) or\n\n /* in general COM Registry changes on Users Hive is less noisy and worth alerting */\n (\n registry.path : (\n \"HKEY_USERS\\\\*\\\\InprocServer32\\\\\",\n \"HKEY_USERS\\\\*\\\\LocalServer32\\\\\",\n \"HKEY_USERS\\\\*\\\\DelegateExecute\",\n \"HKEY_USERS\\\\*\\\\TreatAs\\\\\",\n \"HKEY_USERS\\\\*\\\\ScriptletURL*\"\n ) \n )\n ) and \n\n not (\n process.code_signature.trusted == true and\n process.code_signature.subject_name in \n (\"Island Technology Inc.\", \"Google LLC\", \"Grammarly, Inc.\", \"Dropbox, Inc\", \"REFINITIV US LLC\", \"HP Inc.\",\n \"Citrix Systems, Inc.\", \"Adobe Inc.\", \"Veeam Software Group GmbH\", \"Zhuhai Kingsoft Office Software Co., Ltd.\",\n \"Oracle America, Inc.\")\n ) and \n\n /* excludes Microsoft signed noisy processes */\n not\n (\n process.name : (\"OneDrive.exe\", \"OneDriveSetup.exe\", \"FileSyncConfig.exe\", \"Teams.exe\", \"MicrosoftEdgeUpdate.exe\", \"msrdcw.exe\", \"MicrosoftEdgeUpdateComRegisterShell64.exe\") and\n process.code_signature.trusted == true and process.code_signature.subject_name in (\"Microsoft Windows\", \"Microsoft Corporation\")\n ) and\n \n not process.executable : \n (\"?:\\\\Program Files (x86)\\\\*.exe\", \n \"?:\\\\Program Files\\\\*.exe\",\n \"?:\\\\Windows\\\\System32\\\\svchost.exe\", \n \"?:\\\\Windows\\\\System32\\\\msiexec.exe\", \n \"?:\\\\Windows\\\\SysWOW64\\\\regsvr32.exe\",\n \"?:\\\\Windows\\\\System32\\\\regsvr32.exe\",\n \"?:\\\\Windows\\\\System32\\\\DriverStore\\\\FileRepository\\\\*.exe\", \n \"?:\\\\ProgramData\\\\Microsoft\\\\Windows Defender\\\\Platform\\\\*\\\\MsMpEng.exe\")\n", + "references": [ + "https://bohops.com/2018/08/18/abusing-the-com-registry-structure-part-2-loading-techniques-for-evasion-and-persistence/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.code_signature.subject_name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.code_signature.trusted", + "type": "boolean" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.domain", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "16a52c14-7883-47af-8745-9357803f0d4c", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Defense Evasion", + "Tactic: Privilege Escalation", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1546", + "name": "Event Triggered Execution", + "reference": "https://attack.mitre.org/techniques/T1546/", + "subtechnique": [ + { + "id": "T1546.015", + "name": "Component Object Model Hijacking", + "reference": "https://attack.mitre.org/techniques/T1546/015/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0004", + "name": "Privilege Escalation", + "reference": "https://attack.mitre.org/tactics/TA0004/" + }, + "technique": [ + { + "id": "T1546", + "name": "Event Triggered Execution", + "reference": "https://attack.mitre.org/techniques/T1546/", + "subtechnique": [ + { + "id": "T1546.015", + "name": "Component Object Model Hijacking", + "reference": "https://attack.mitre.org/techniques/T1546/015/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 114 + }, + "id": "16a52c14-7883-47af-8745-9357803f0d4c_114", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/17b0a495-4d9f-414c-8ad0-92f018b8e001_11.json b/packages/security_detection_engine/kibana/security_rule/17b0a495-4d9f-414c-8ad0-92f018b8e001_11.json deleted file mode 100644 index b749db259728..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/17b0a495-4d9f-414c-8ad0-92f018b8e001_11.json +++ /dev/null @@ -1,131 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule detects the creation or renaming of a new Systemd file in all of the common Systemd service locations for both root and regular users. Systemd service files are configuration files in Linux systems used to define and manage system services. Malicious actors can leverage systemd service files to achieve persistence by creating or modifying services to execute malicious commands or payloads during system startup or at a predefined interval by adding a systemd timer. This allows them to maintain unauthorized access, execute additional malicious activities, or evade detection.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.file*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Systemd Service Created", - "note": "## Triage and analysis\n\n### Investigating Systemd Service Created\n\nSystemd service files are configuration files in Linux systems used to define and manage system services.\n\nMalicious actors can leverage systemd service files to achieve persistence by creating or modifying service files to execute malicious commands or payloads during system startup. This allows them to maintain unauthorized access, execute additional malicious activities, or evade detection.\n\nThis rule monitors the creation of new systemd service files, potentially indicating the creation of a persistence mechanism.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n> This investigation guide uses [placeholder fields](https://www.elastic.co/guide/en/security/current/osquery-placeholder-fields.html) to dynamically pass alert data into Osquery queries. Placeholder fields were introduced in Elastic Stack version 8.7.0. If you're using Elastic Stack version 8.6.0 or earlier, you'll need to manually adjust this investigation guide's queries to ensure they properly run.\n\n#### Possible Investigation Steps\n\n- Investigate the systemd service file that was created or modified.\n - !{osquery{\"label\":\"Osquery - Retrieve File Information\",\"query\":\"SELECT * FROM file WHERE path = {{file.path}}\"}}\n- Investigate the currently enabled systemd services through the following command `sudo systemctl list-unit-files`.\n- Investigate whether any other files in any of the available systemd directories have been altered through OSQuery.\n - !{osquery{\"label\":\"Osquery - Retrieve File Listing Information\",\"query\":\"SELECT * FROM file WHERE (path LIKE '/etc/systemd/system/%' OR path LIKE '/usr/local/lib/systemd/system/%'\\nOR path LIKE '/lib/systemd/system/%' OR path LIKE '/usr/lib/systemd/system/%'\\nOR path LIKE '/home/{{user.name}}/.config/systemd/user/%' OR path LIKE '/home/{{user.name}}/.local/share/systemd/user/%'\\nOR path LIKE '/root/.config/systemd/user/%' OR path LIKE '/root/.local/share/systemd/user/%')\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Additional File Listing Information\",\"query\":\"SELECT f.path, u.username AS file_owner, g.groupname AS group_owner, datetime(f.atime, 'unixepoch') AS\\nfile_last_access_time, datetime(f.mtime, 'unixepoch') AS file_last_modified_time, datetime(f.ctime, 'unixepoch') AS\\nfile_last_status_change_time, datetime(f.btime, 'unixepoch') AS file_created_time, f.size AS size_bytes FROM file f LEFT\\nJOIN users u ON f.uid = u.uid LEFT JOIN groups g ON f.gid = g.gid WHERE ( path LIKE '/etc/systemd/system/%' OR path LIKE\\n'/usr/local/lib/systemd/system/%' OR path LIKE '/lib/systemd/system/%' OR path LIKE '/usr/lib/systemd/system/%' OR path\\nLIKE '/home/{{user.name}}/.config/systemd/user/%' OR path LIKE '/home/{{user.name}}/.local/share/systemd/user/%'\\nOR path LIKE '/root/.config/systemd/user/%' OR path LIKE '/root/.local/share/systemd/user/%')\\n\"}}\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence and whether they are located in expected locations.\n - !{osquery{\"label\":\"Osquery - Retrieve Running Processes by User\",\"query\":\"SELECT pid, username, name FROM processes p JOIN users u ON u.uid = p.uid ORDER BY username\"}}\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Investigate whether the altered scripts call other malicious scripts elsewhere on the file system. \n - If scripts or executables were dropped, retrieve the files and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - Check if the domain is newly registered or unexpected.\n - Check the reputation of the domain or IP address.\n - File access, modification, and creation activities.\n - Cron jobs, services and other persistence mechanisms.\n - !{osquery{\"label\":\"Osquery - Retrieve Crontab Information\",\"query\":\"SELECT * FROM crontab\"}}\n- Investigate abnormal behaviors by the subject process/user such as network connections, file modifications, and any other spawned child processes.\n - Investigate listening ports and open sockets to look for potential command and control traffic or data exfiltration.\n - !{osquery{\"label\":\"Osquery - Retrieve Listening Ports\",\"query\":\"SELECT pid, address, port, socket, protocol, path FROM listening_ports\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Open Sockets\",\"query\":\"SELECT pid, family, remote_address, remote_port, socket, state FROM process_open_sockets\"}}\n - Identify the user account that performed the action, analyze it, and check whether it should perform this kind of action.\n - !{osquery{\"label\":\"Osquery - Retrieve Information for a Specific User\",\"query\":\"SELECT * FROM users WHERE username = {{user.name}}\"}}\n- Investigate whether the user is currently logged in and active.\n - !{osquery{\"label\":\"Osquery - Investigate the Account Authentication Status\",\"query\":\"SELECT * FROM logged_in_users WHERE user = {{user.name}}\"}}\n\n### False Positive Analysis\n\n- If this activity is related to new benign software installation activity, consider adding exceptions \u2014 preferably with a combination of user and command line conditions.\n- If this activity is related to a system administrator who uses systemd services for administrative purposes, consider adding exceptions for this specific administrator user account. \n- Try to understand the context of the execution by thinking about the user, machine, or business purpose. A small number of endpoints, such as servers with unique software, might appear unusual but satisfy a specific business need.\n\n### Related Rules\n\n- Potential Persistence Through Run Control Detected - 0f4d35e4-925e-4959-ab24-911be207ee6f\n- Potential Persistence Through init.d Detected - 474fd20e-14cc-49c5-8160-d9ab4ba16c8b\n- Systemd Timer Created - 7fb500fa-8e24-4bd1-9480-2a819352602c\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Delete the service/timer or restore its original configuration.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Leverage the incident response data and logging to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "file where host.os.type == \"linux\" and event.action in (\"rename\", \"creation\") and file.path : (\n \"/etc/systemd/system/*\", \"/usr/local/lib/systemd/system/*\", \"/lib/systemd/system/*\",\n \"/usr/lib/systemd/system/*\", \"/home/*/.config/systemd/user/*\", \"/home/*/.local/share/systemd/user/*\",\n \"/root/.config/systemd/user/*\", \"/root/.local/share/systemd/user/*\"\n) and file.extension == \"service\" and not (\n process.executable in (\n \"/bin/dpkg\", \"/usr/bin/dpkg\", \"/bin/dockerd\", \"/usr/bin/dockerd\", \"/usr/sbin/dockerd\", \"/bin/microdnf\",\n \"/usr/bin/microdnf\", \"/bin/rpm\", \"/usr/bin/rpm\", \"/bin/snapd\", \"/usr/bin/snapd\", \"/bin/yum\", \"/usr/bin/yum\",\n \"/bin/dnf\", \"/usr/bin/dnf\", \"/bin/podman\", \"/usr/bin/podman\", \"/bin/dnf-automatic\", \"/usr/bin/dnf-automatic\",\n \"/bin/pacman\", \"/usr/bin/pacman\", \"/usr/bin/dpkg-divert\", \"/bin/dpkg-divert\", \"/sbin/apk\", \"/usr/sbin/apk\",\n \"/usr/local/sbin/apk\", \"/usr/bin/apt\", \"/usr/sbin/pacman\", \"/bin/podman\", \"/usr/bin/podman\", \"/usr/bin/puppet\",\n \"/bin/puppet\", \"/opt/puppetlabs/puppet/bin/puppet\", \"/usr/bin/chef-client\", \"/bin/chef-client\",\n \"/bin/autossl_check\", \"/usr/bin/autossl_check\", \"/proc/self/exe\", \"/dev/fd/*\", \"/usr/bin/pamac-daemon\",\n \"/bin/pamac-daemon\", \"/usr/lib/snapd/snapd\", \"/usr/local/bin/dockerd\"\n ) or\n file.extension in (\"swp\", \"swpx\", \"swx\", \"dpkg-remove\") or\n file.Ext.original.extension == \"dpkg-new\" or\n process.executable : (\n \"/nix/store/*\", \"/var/lib/dpkg/*\", \"/tmp/vmis.*\", \"/snap/*\", \"/dev/fd/*\", \"/usr/lib/virtualbox/*\"\n ) or\n process.executable == null or\n (process.name == \"sed\" and file.name : \"sed*\") or\n (process.name == \"perl\" and file.name : \"e2scrub_all.tmp*\") \n)\n", - "references": [ - "https://pberba.github.io/security/2022/01/30/linux-threat-hunting-for-persistence-systemd-timers-cron/" - ], - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": false, - "name": "file.Ext.original.extension", - "type": "unknown" - }, - { - "ecs": true, - "name": "file.extension", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "17b0a495-4d9f-414c-8ad0-92f018b8e001", - "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Tactic: Privilege Escalation", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1543", - "name": "Create or Modify System Process", - "reference": "https://attack.mitre.org/techniques/T1543/", - "subtechnique": [ - { - "id": "T1543.002", - "name": "Systemd Service", - "reference": "https://attack.mitre.org/techniques/T1543/002/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1543", - "name": "Create or Modify System Process", - "reference": "https://attack.mitre.org/techniques/T1543/", - "subtechnique": [ - { - "id": "T1543.002", - "name": "Systemd Service", - "reference": "https://attack.mitre.org/techniques/T1543/002/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 11 - }, - "id": "17b0a495-4d9f-414c-8ad0-92f018b8e001_11", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/192657ba-ab0e-4901-89a2-911d611eee98_1.json b/packages/security_detection_engine/kibana/security_rule/192657ba-ab0e-4901-89a2-911d611eee98_1.json deleted file mode 100644 index 5451ad2b4f30..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/192657ba-ab0e-4901-89a2-911d611eee98_1.json +++ /dev/null @@ -1,166 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule leverages the File Integrity Monitoring (FIM) integration to detect file modifications of files that are commonly used for persistence on Linux systems. The rule detects modifications to files that are commonly used for cron jobs, systemd services, message-of-the-day (MOTD), SSH configurations, shell configurations, runtime control, init daemon, passwd/sudoers/shadow files, Systemd udevd, and XDG/KDE autostart entries. To leverage this rule, the paths specified in the query need to be added to the FIM policy in the Elastic Security app.", - "from": "now-9m", - "index": [ - "logs-fim.event-*", - "auditbeat-*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Potential Persistence via File Modification", - "query": "file where host.os.type == \"linux\" and event.dataset == \"fim.event\" and event.action == \"updated\" and\nfile.path : (\n // cron, anacron & at\n \"/etc/cron.d/*\", \"/etc/cron.daily/*\", \"/etc/cron.hourly/*\", \"/etc/cron.monthly/*\",\n \"/etc/cron.weekly/*\", \"/etc/crontab\", \"/var/spool/cron/crontabs/*\", \"/etc/cron.allow\",\n \"/etc/cron.deny\", \"/var/spool/anacron/*\", \"/var/spool/cron/atjobs/*\",\n\n // systemd services & timers\n \"/etc/systemd/system/*\", \"/usr/local/lib/systemd/system/*\", \"/lib/systemd/system/*\",\n \"/usr/lib/systemd/system/*\", \"/home/*/.config/systemd/user/*\", \"/home/*/.local/share/systemd/user/*\",\n \"/root/.config/systemd/user/*\", \"/root/.local/share/systemd/user/*\",\n\n // LD_PRELOAD\n \"/etc/ld.so.preload\", \"/etc/ld.so.conf.d/*\", \"/etc/ld.so.conf\",\n\n // message-of-the-day (MOTD)\n \"/etc/update-motd.d/*\",\n\n // SSH\n \"/home/*/.ssh/*\", \"/root/.ssh/*\", \"/etc/ssh/*\",\n\n // system-wide shell configurations\n \"/etc/profile\", \"/etc/profile.d/*\", \"/etc/bash.bashrc\", \"/etc/zsh/*\", \"/etc/csh.cshrc\",\n \"/etc/csh.login\", \"/etc/fish/config.fish\", \"/etc/ksh.kshrc\",\n\n // root and user shell configurations\n \"/home/*/.profile\", \"/home/*/.bashrc\", \"/home/*/.bash_login\", \"/home/*/.bash_logout\",\n \"/root/.profile\", \"/root/.bashrc\", \"/root/.bash_login\", \"/root/.bash_logout\",\n \"/home/*/.zprofile\", \"/home/*/.zshrc\", \"/root/.zprofile\", \"/root/.zshrc\",\n \"/home/*/.cshrc\", \"/home/*/.login\", \"/home/*/.logout\", \"/root/.cshrc\", \"/root/.login\", \"/root/.logout\",\n \"/home/*/.config/fish/config.fish\", \"/root/.config/fish/config.fish\",\n \"/home/*/.kshrc\", \"/root/.kshrc\",\n\n // runtime control\n \"/etc/rc.common\", \"/etc/rc.local\",\n\n // init daemon\n \"/etc/init.d/*\",\n\n // passwd/sudoers/shadow\n \"/etc/passwd\", \"/etc/shadow\", \"/etc/sudoers\", \"/etc/sudoers.d/*\",\n\n // Systemd udevd\n \"/lib/udev/*\", \"/etc/udev/rules.d/*\", \"/usr/lib/udev/rules.d/*\", \"/run/udev/rules.d/*\",\n\n // XDG/KDE autostart entries\n \"/home/*/.config/autostart/*\", \"/root/.config/autostart/*\", \"/etc/xdg/autostart/*\", \"/usr/share/autostart/*\",\n \"/home/*/.kde/Autostart/*\", \"/root/.kde/Autostart/*\",\n \"/home/*/.kde4/Autostart/*\", \"/root/.kde4/Autostart/*\",\n \"/home/*/.kde/share/autostart/*\", \"/root/.kde/share/autostart/*\",\n \"/home/*/.kde4/share/autostart/*\", \"/root/.kde4/share/autostart/*\",\n \"/home/*/.local/share/autostart/*\", \"/root/.local/share/autostart/*\",\n \"/home/*/.config/autostart-scripts/*\", \"/root/.config/autostart-scripts/*\"\n) and not (\n file.path : (\n \"/var/spool/cron/crontabs/tmp.*\", \"/run/udev/rules.d/*rules.*\", \"/home/*/.ssh/known_hosts.*\", \"/root/.ssh/known_hosts.*\"\n ) or\n file.extension in (\"dpkg-new\", \"dpkg-remove\", \"SEQ\")\n)\n", - "related_integrations": [ - { - "package": "fim", - "version": "^1.0.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.dataset", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.extension", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - } - ], - "risk_score": 21, - "rule_id": "192657ba-ab0e-4901-89a2-911d611eee98", - "setup": "## Setup\n\nThis rule requires data coming in from the Elastic File Integrity Monitoring (FIM) integration.\n\n### Elastic FIM Integration Setup\nTo configure the Elastic FIM integration, follow these steps:\n\n1. Install and configure the Elastic Agent on your Linux system. You can refer to the [Elastic Agent documentation](https://www.elastic.co/guide/en/ingest-management/current/agent-configuration.html) for detailed instructions.\n2. Once the Elastic Agent is installed, navigate to the Elastic Security app in Kibana.\n3. In the Kibana home page, click on \"Integrations\" in the left sidebar.\n4. Search for \"File Integrity Monitoring\" in the search bar and select the integration.\n6. Provide a name and optional description for the integration.\n7. Select the appropriate agent policy for your Linux system or create a new one.\n8. Configure the FIM policy by specifying the paths that you want to monitor for file modifications. You can use the same paths mentioned in the `query` field of the rule. Note that FIM does not accept wildcards in the paths, so you need to specify the exact paths you want to monitor.\n9. Save the configuration and the Elastic Agent will start monitoring the specified paths for file modifications.\n\nFor more details on configuring the Elastic FIM integration, you can refer to the [Elastic FIM documentation](https://docs.elastic.co/integrations/fim).\n", - "severity": "low", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Tactic: Privilege Escalation", - "Data Source: File Integrity Monitoring" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1037", - "name": "Boot or Logon Initialization Scripts", - "reference": "https://attack.mitre.org/techniques/T1037/", - "subtechnique": [ - { - "id": "T1037.004", - "name": "RC Scripts", - "reference": "https://attack.mitre.org/techniques/T1037/004/" - } - ] - }, - { - "id": "T1543", - "name": "Create or Modify System Process", - "reference": "https://attack.mitre.org/techniques/T1543/", - "subtechnique": [ - { - "id": "T1543.002", - "name": "Systemd Service", - "reference": "https://attack.mitre.org/techniques/T1543/002/" - } - ] - }, - { - "id": "T1556", - "name": "Modify Authentication Process", - "reference": "https://attack.mitre.org/techniques/T1556/" - }, - { - "id": "T1574", - "name": "Hijack Execution Flow", - "reference": "https://attack.mitre.org/techniques/T1574/", - "subtechnique": [ - { - "id": "T1574.006", - "name": "Dynamic Linker Hijacking", - "reference": "https://attack.mitre.org/techniques/T1574/006/" - } - ] - }, - { - "id": "T1136", - "name": "Create Account", - "reference": "https://attack.mitre.org/techniques/T1136/", - "subtechnique": [ - { - "id": "T1136.001", - "name": "Local Account", - "reference": "https://attack.mitre.org/techniques/T1136/001/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1053", - "name": "Scheduled Task/Job", - "reference": "https://attack.mitre.org/techniques/T1053/", - "subtechnique": [ - { - "id": "T1053.003", - "name": "Cron", - "reference": "https://attack.mitre.org/techniques/T1053/003/" - } - ] - }, - { - "id": "T1548", - "name": "Abuse Elevation Control Mechanism", - "reference": "https://attack.mitre.org/techniques/T1548/", - "subtechnique": [ - { - "id": "T1548.003", - "name": "Sudo and Sudo Caching", - "reference": "https://attack.mitre.org/techniques/T1548/003/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 1 - }, - "id": "192657ba-ab0e-4901-89a2-911d611eee98_1", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/1d9aeb0b-9549-46f6-a32d-05e2a001b7fd_5.json b/packages/security_detection_engine/kibana/security_rule/1d9aeb0b-9549-46f6-a32d-05e2a001b7fd_5.json deleted file mode 100644 index 4bcdf2f487f7..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/1d9aeb0b-9549-46f6-a32d-05e2a001b7fd_5.json +++ /dev/null @@ -1,87 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identifies the use of Cmdlets and methods related to encryption/decryption of files in PowerShell scripts, which malware and offensive security tools can abuse to encrypt data or decrypt payloads to bypass security solutions.", - "false_positives": [ - "Legitimate PowerShell Scripts which makes use of encryption." - ], - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Script with Encryption/Decryption Capabilities", - "note": "## Triage and analysis\n\n### Investigating PowerShell Script with Encryption/Decryption Capabilities\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks, making it available for use in various environments, creating an attractive way for attackers to execute code.\n\nPowerShell offers encryption and decryption functionalities that attackers can abuse for various purposes, such as concealing payloads, C2 communications, and encrypting data as part of ransomware operations.\n\n#### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Examine file or network events from the involved PowerShell process for suspicious behavior.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n\n### False positive analysis\n\n- This is a dual-use mechanism, meaning its usage is not inherently malicious. Analysts can dismiss the alert if the script doesn't contain malicious functions or potential for abuse, no other suspicious activity was identified, and there are justifications for the execution.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text : (\n (\n \"Cryptography.AESManaged\" or\n \"Cryptography.RijndaelManaged\" or\n \"Cryptography.SHA1Managed\" or\n \"Cryptography.SHA256Managed\" or\n \"Cryptography.SHA384Managed\" or\n \"Cryptography.SHA512Managed\" or\n \"Cryptography.SymmetricAlgorithm\" or\n \"PasswordDeriveBytes\" or\n \"Rfc2898DeriveBytes\"\n ) and\n (\n CipherMode and PaddingMode\n ) and\n (\n \".CreateEncryptor\" or\n \".CreateDecryptor\"\n )\n ) and not user.id : \"S-1-5-18\"\n", - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "1d9aeb0b-9549-46f6-a32d-05e2a001b7fd", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Defense Evasion", - "Data Source: PowerShell Logs", - "Resources: Investigation Guide" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1027", - "name": "Obfuscated Files or Information", - "reference": "https://attack.mitre.org/techniques/T1027/" - }, - { - "id": "T1140", - "name": "Deobfuscate/Decode Files or Information", - "reference": "https://attack.mitre.org/techniques/T1140/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 5 - }, - "id": "1d9aeb0b-9549-46f6-a32d-05e2a001b7fd_5", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/203ab79b-239b-4aa5-8e54-fc50623ee8e4_111.json b/packages/security_detection_engine/kibana/security_rule/203ab79b-239b-4aa5-8e54-fc50623ee8e4_111.json new file mode 100644 index 000000000000..4f43683ec44c --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/203ab79b-239b-4aa5-8e54-fc50623ee8e4_111.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies the creation or modification of a local trusted root certificate in Windows. The install of a malicious root certificate would allow an attacker the ability to masquerade malicious files as valid signed components from any entity (for example, Microsoft). It could also allow an attacker to decrypt SSL traffic.", + "false_positives": [ + "Certain applications may install root certificates for the purpose of inspecting SSL traffic." + ], + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Creation or Modification of Root Certificate", + "note": "## Triage and analysis\n\n### Investigating Creation or Modification of Root Certificate\n\nRoot certificates are the primary level of certifications that tell a browser that the communication is trusted and legitimate. This verification is based upon the identification of a certification authority. Windows adds several trusted root certificates so browsers can use them to communicate with websites.\n\n[Check out this post](https://www.thewindowsclub.com/what-are-root-certificates-windows) for more details on root certificates and the involved cryptography.\n\nThis rule identifies the creation or modification of a root certificate by monitoring registry modifications. The installation of a malicious root certificate would allow an attacker the ability to masquerade malicious files as valid signed components from any entity (for example, Microsoft). It could also allow an attacker to decrypt SSL traffic.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Investigate abnormal behaviors observed by the subject process such as network connections, other registry or file modifications, and any spawned child processes.\n- If one of the processes is suspicious, retrieve it and determine if it is malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - File and registry access, modification, and creation activities.\n - Service creation and launch activities.\n - Scheduled task creation.\n - Use the PowerShell `Get-FileHash` cmdlet to get the files' SHA-256 hash values.\n - Search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n### False positive analysis\n\n- This detection may be triggered by certain applications that install root certificates for the purpose of inspecting SSL traffic. Benign true positives (B-TPs) can be added as exceptions if necessary.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove the malicious certificate from the root certificate store.\n- Remove and block malicious artifacts identified during triage.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and registry.value : \"Blob\" and\n registry.path :\n (\n \"HKLM\\\\Software\\\\Microsoft\\\\SystemCertificates\\\\Root\\\\Certificates\\\\*\\\\Blob\",\n \"HKLM\\\\Software\\\\Microsoft\\\\SystemCertificates\\\\AuthRoot\\\\Certificates\\\\*\\\\Blob\",\n \"HKLM\\\\Software\\\\Policies\\\\Microsoft\\\\SystemCertificates\\\\Root\\\\Certificates\\\\*\\\\Blob\",\n \"HKLM\\\\Software\\\\Policies\\\\Microsoft\\\\SystemCertificates\\\\AuthRoot\\\\Certificates\\\\*\\\\Blob\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\SystemCertificates\\\\Root\\\\Certificates\\\\*\\\\Blob\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\SystemCertificates\\\\AuthRoot\\\\Certificates\\\\*\\\\Blob\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Policies\\\\Microsoft\\\\SystemCertificates\\\\Root\\\\Certificates\\\\*\\\\Blob\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Policies\\\\Microsoft\\\\SystemCertificates\\\\AuthRoot\\\\Certificates\\\\*\\\\Blob\"\n ) and\n not process.executable : (\n \"?:\\\\ProgramData\\\\Lenovo\\\\Vantage\\\\Addins\\\\LenovoHardwareScanAddin\\\\*\\\\LdeApi.Server.exe\",\n \"?:\\\\ProgramData\\\\Logishrd\\\\LogiOptionsPlus\\\\Plugins\\\\64\\\\certmgr.exe\",\n \"?:\\\\ProgramData\\\\Microsoft\\\\Windows Defender\\\\Platform\\\\*\\\\MpDefenderCoreService.exe\",\n \"?:\\\\ProgramData\\\\Microsoft\\\\Windows Defender\\\\Platform\\\\*\\\\MsMpEng.exe\",\n \"?:\\\\ProgramData\\\\Quest\\\\KACE\\\\modules\\\\clientidentifier\\\\clientidentifier.exe\",\n \"?:\\\\ProgramData\\\\Sophos\\\\AutoUpdate\\\\Cache\\\\sophos_autoupdate1.dir\\\\SophosUpdate.exe\",\n \"?:\\\\Program Files (x86)\\\\*.exe\",\n \"?:\\\\Program Files\\\\*.exe\",\n \"?:\\\\Windows\\\\CCM\\\\CcmExec.exe\",\n \"?:\\\\Windows\\\\ccmsetup\\\\cache\\\\ccmsetup.exe\",\n \"?:\\\\Windows\\\\Cluster\\\\clussvc.exe\",\n \"?:\\\\Windows\\\\ImmersiveControlPanel\\\\SystemSettings.exe\",\n \"?:\\\\Windows\\\\Lenovo\\\\ImController\\\\PluginHost86\\\\Lenovo.Modern.ImController.PluginHost.Device.exe\",\n \"?:\\\\Windows\\\\Lenovo\\\\ImController\\\\Service\\\\Lenovo.Modern.ImController.exe\",\n \"?:\\\\Windows\\\\Sysmon.exe\",\n \"?:\\\\Windows\\\\Sysmon64.exe\",\n \"?:\\\\Windows\\\\System32\\\\*.exe\",\n \"?:\\\\Windows\\\\SysWOW64\\\\*.exe\",\n \"?:\\\\Windows\\\\UUS\\\\amd64\\\\MoUsoCoreWorker.exe\",\n \"?:\\\\Windows\\\\WinSxS\\\\*.exe\"\n )\n", + "references": [ + "https://posts.specterops.io/code-signing-certificate-cloning-attacks-and-defenses-6f98657fc6ec", + "https://www.ired.team/offensive-security/persistence/t1130-install-root-certificate" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 21, + "rule_id": "203ab79b-239b-4aa5-8e54-fc50623ee8e4", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1553", + "name": "Subvert Trust Controls", + "reference": "https://attack.mitre.org/techniques/T1553/", + "subtechnique": [ + { + "id": "T1553.004", + "name": "Install Root Certificate", + "reference": "https://attack.mitre.org/techniques/T1553/004/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 111 + }, + "id": "203ab79b-239b-4aa5-8e54-fc50623ee8e4_111", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/21bafdf0-cf17-11ed-bd57-f661ea17fbcc_2.json b/packages/security_detection_engine/kibana/security_rule/21bafdf0-cf17-11ed-bd57-f661ea17fbcc_2.json deleted file mode 100644 index d40b726fbc59..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/21bafdf0-cf17-11ed-bd57-f661ea17fbcc_2.json +++ /dev/null @@ -1,120 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects the first time a third-party application logs in and authenticated with OAuth. OAuth is used to grant permissions to specific resources and services in Google Workspace. Compromised credentials or service accounts could allow an adversary to authenticate to Google Workspace as a valid user and inherit their privileges.", - "false_positives": [ - "Developers may leverage third-party applications for legitimate purposes in Google Workspace such as for administrative tasks." - ], - "from": "now-130m", - "history_window_start": "now-15d", - "index": [ - "filebeat-*", - "logs-google_workspace*" - ], - "interval": "10m", - "language": "kuery", - "license": "Elastic License v2", - "name": "First Time Seen Google Workspace OAuth Login from Third-Party Application", - "new_terms_fields": [ - "google_workspace.token.client.id" - ], - "note": "## Setup\n\n### Important Information Regarding Google Workspace Event Lag Times\n- As per Google's documentation, Google Workspace administrators may observe lag times ranging from minutes up to 3 days between the time of an event's occurrence and the event being visible in the Google Workspace admin/audit logs.\n- This rule is configured to run every 10 minutes with a lookback time of 130 minutes.\n- To reduce the risk of false negatives, consider reducing the interval that the Google Workspace (formerly G Suite) Filebeat module polls Google's reporting API for new events.\n- By default, `var.interval` is set to 2 hours (2h). Consider changing this interval to a lower value, such as 10 minutes (10m).\n- See the following references for further information:\n - https://support.google.com/a/answer/7061566\n - https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-module-google_workspace.html", - "query": "event.dataset: \"google_workspace.token\" and event.action: \"authorize\" and\ngoogle_workspace.token.scope.data.scope_name: *Login and google_workspace.token.client.id: *apps.googleusercontent.com\n", - "references": [ - "https://www.elastic.co/security-labs/google-workspace-attack-surface-part-one", - "https://developers.google.com/apps-script/guides/bound", - "https://developers.google.com/identity/protocols/oauth2" - ], - "related_integrations": [ - { - "package": "google_workspace", - "version": "^2.0.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.dataset", - "type": "keyword" - }, - { - "ecs": false, - "name": "google_workspace.token.client.id", - "type": "unknown" - }, - { - "ecs": false, - "name": "google_workspace.token.scope.data.scope_name", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "21bafdf0-cf17-11ed-bd57-f661ea17fbcc", - "setup": "The Google Workspace Fleet integration, Filebeat module, or similarly structured data is required to be compatible with this rule.", - "severity": "medium", - "tags": [ - "Domain: Cloud", - "Data Source: Google Workspace", - "Tactic: Defense Evasion", - "Tactic: Initial Access" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1550", - "name": "Use Alternate Authentication Material", - "reference": "https://attack.mitre.org/techniques/T1550/", - "subtechnique": [ - { - "id": "T1550.001", - "name": "Application Access Token", - "reference": "https://attack.mitre.org/techniques/T1550/001/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0001", - "name": "Initial Access", - "reference": "https://attack.mitre.org/tactics/TA0001/" - }, - "technique": [ - { - "id": "T1078", - "name": "Valid Accounts", - "reference": "https://attack.mitre.org/techniques/T1078/", - "subtechnique": [ - { - "id": "T1078.004", - "name": "Cloud Accounts", - "reference": "https://attack.mitre.org/techniques/T1078/004/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "new_terms", - "version": 2 - }, - "id": "21bafdf0-cf17-11ed-bd57-f661ea17fbcc_2", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/28f6f34b-8e16-487a-b5fd-9d22eb903db8_1.json b/packages/security_detection_engine/kibana/security_rule/2605aa59-29ac-4662-afad-8d86257c7c91_6.json similarity index 54% rename from packages/security_detection_engine/kibana/security_rule/28f6f34b-8e16-487a-b5fd-9d22eb903db8_1.json rename to packages/security_detection_engine/kibana/security_rule/2605aa59-29ac-4662-afad-8d86257c7c91_6.json index 0d2808a8dc87..54937f0aa090 100644 --- a/packages/security_detection_engine/kibana/security_rule/28f6f34b-8e16-487a-b5fd-9d22eb903db8_1.json +++ b/packages/security_detection_engine/kibana/security_rule/2605aa59-29ac-4662-afad-8d86257c7c91_6.json @@ -3,27 +3,17 @@ "author": [ "Elastic" ], - "description": "This rule monitors the creation/alteration of a shell configuration by a previously unknown process executable using the new terms rule type. Unix systems use shell configuration files to set environment variables, create aliases, and customize the user's environment. Adversaries may modify or add a shell configuration file to execute malicious code and gain persistence in the system. This behavior is consistent with the Kaiji malware family.", - "false_positives": [ - "Legitimate user shell modification activity." - ], + "description": "This rule monitors for the usage of the built-in Linux DebugFS utility to access a disk device without root permissions. Linux users that are part of the \"disk\" group have sufficient privileges to access all data inside of the machine through DebugFS. Attackers may leverage DebugFS in conjunction with \"disk\" permissions to read sensitive files owned by root, such as the shadow file, root ssh private keys or other sensitive files that may allow them to further escalate privileges.", "from": "now-9m", - "history_window_start": "now-10d", "index": [ - "logs-endpoint.events.*", - "endgame-*" + "logs-endpoint.events.*" ], - "language": "kuery", + "language": "eql", "license": "Elastic License v2", - "name": "Shell Configuration Modification", - "new_terms_fields": [ - "host.id", - "user.id", - "process.executable" - ], - "query": "event.category:file and host.os.type:linux and\nevent.action:(creation or file_create_event or rename or file_rename_event) and file.path:(\n \"/etc/profile\" or \"/etc/profile.local\" or \"/etc/bashrc\" or \"/etc/bash.bashrc\" or \"/etc/bash.bashrc.local\" or\n \"/etc/zshenv\" or \"/etc/zprofile\" or \"/etc/zlogin\" or \"/etc/zlogout\" or \"/root/.profile\" or \"/root/.bash_logout\" or\n \"/root/.bashrc\" or \"/root/.bash_login\" or /etc/profile.d/* or /home/*/.profile or /home/*/.bash_logout or\n /home/*/.bashrc or /home/*/.bash_login\n) and not (\n (process.executable: (\n \"/bin/dpkg\" or \"/usr/bin/dpkg\" or \"/bin/useradd\" or \"/usr/sbin/useradd\" or \"/bin/adduser\" or \"/usr/sbin/adduser\" or\n \"/bin/dockerd\" or \"/usr/bin/dockerd\" or \"/bin/microdnf\" or \"/usr/bin/microdnf\" or \"/bin/rpm\" or \"/usr/bin/rpm\" or\n \"/bin/snapd\" or \"/usr/bin/snapd\" or \"/bin/yum\" or \"/usr/bin/yum\" or \"/bin/dnf\" or \"/usr/bin/dnf\" or \"/bin/podman\" or\n \"/usr/bin/podman\" or \"/bin/dnf-automatic\" or \"/usr/bin/dnf-automatic\" or \"/bin/pacman\" or \"/usr/bin/pacman\"\n )\n) or\n (file.extension:(\"swp\" or \"swpx\")) or\n (process.executable:(\"/bin/sed\" or \"/usr/bin/sed\") and file.name:sed*) or\n (process.executable:(\"/bin/perl\" or \"/usr/bin/perl\") and file.name:e2scrub_all.tmp*)\n)\n", + "name": "Potential Suspicious DebugFS Root Device Access", + "query": "process where host.os.type == \"linux\" and event.type == \"start\" and event.action == \"exec\" and \nprocess.name == \"debugfs\" and process.args : \"/dev/sd*\" and not process.args == \"-R\" and \nnot user.Ext.real.id == \"0\" and not group.Ext.real.id == \"0\"\n", "references": [ - "https://intezer.com/blog/research/kaiji-new-chinese-linux-malware-turning-to-golang/" + "https://book.hacktricks.xyz/linux-hardening/privilege-escalation/interesting-groups-linux-pe#disk-group" ], "related_integrations": [ { @@ -39,65 +29,64 @@ }, { "ecs": true, - "name": "event.category", + "name": "event.type", "type": "keyword" }, { - "ecs": true, - "name": "file.extension", - "type": "keyword" + "ecs": false, + "name": "group.Ext.real.id", + "type": "unknown" }, { "ecs": true, - "name": "file.name", + "name": "host.os.type", "type": "keyword" }, { "ecs": true, - "name": "file.path", + "name": "process.args", "type": "keyword" }, { "ecs": true, - "name": "host.os.type", + "name": "process.name", "type": "keyword" }, { - "ecs": true, - "name": "process.executable", - "type": "keyword" + "ecs": false, + "name": "user.Ext.real.id", + "type": "unknown" } ], - "risk_score": 47, - "rule_id": "28f6f34b-8e16-487a-b5fd-9d22eb903db8", + "risk_score": 21, + "rule_id": "2605aa59-29ac-4662-afad-8d86257c7c91", "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "medium", + "severity": "low", "tags": [ "Domain: Endpoint", "OS: Linux", "Use Case: Threat Detection", - "Tactic: Persistence", - "Data Source: Elastic Endgame", + "Tactic: Privilege Escalation", "Data Source: Elastic Defend" ], "threat": [ { "framework": "MITRE ATT&CK", "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" + "id": "TA0004", + "name": "Privilege Escalation", + "reference": "https://attack.mitre.org/tactics/TA0004/" }, "technique": [ { - "id": "T1546", - "name": "Event Triggered Execution", - "reference": "https://attack.mitre.org/techniques/T1546/", + "id": "T1078", + "name": "Valid Accounts", + "reference": "https://attack.mitre.org/techniques/T1078/", "subtechnique": [ { - "id": "T1546.004", - "name": "Unix Shell Configuration Modification", - "reference": "https://attack.mitre.org/techniques/T1546/004/" + "id": "T1078.003", + "name": "Local Accounts", + "reference": "https://attack.mitre.org/techniques/T1078/003/" } ] } @@ -105,9 +94,9 @@ } ], "timestamp_override": "event.ingested", - "type": "new_terms", - "version": 1 + "type": "eql", + "version": 6 }, - "id": "28f6f34b-8e16-487a-b5fd-9d22eb903db8_1", + "id": "2605aa59-29ac-4662-afad-8d86257c7c91_6", "type": "security-rule" } \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/263481c8-1e9b-492e-912d-d1760707f810_1.json b/packages/security_detection_engine/kibana/security_rule/263481c8-1e9b-492e-912d-d1760707f810_1.json new file mode 100644 index 000000000000..90d37d5fec2b --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/263481c8-1e9b-492e-912d-d1760707f810_1.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies potential relay attacks against a domain controller (DC) by identifying authentication events using the domain controller computer account coming from other hosts to the DC that owns the account. Attackers may relay the DC hash after capturing it using forced authentication.", + "from": "now-9m", + "index": [ + "logs-system.security-*", + "logs-windows.forwarded*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Potential Relay Attack against a Domain Controller", + "query": "authentication where host.os.type == \"windows\" and event.code in (\"4624\", \"4625\") and endswith~(user.name, \"$\") and\n winlog.event_data.AuthenticationPackageName : \"NTLM\" and winlog.logon.type : \"network\" and\n\n /* Filter for a machine account that matches the hostname */\n startswith~(host.name, substring(user.name, 0, -1)) and\n \n /* Verify if the Source IP belongs to the host */\n not endswith(string(source.ip), string(host.ip)) and\n source.ip != null and source.ip != \"::1\" and source.ip != \"127.0.0.1\"\n", + "references": [ + "https://github.com/p0dalirius/windows-coerced-authentication-methods", + "https://www.thehacker.recipes/a-d/movement/mitm-and-coerced-authentications", + "https://attack.mitre.org/techniques/T1187/" + ], + "related_integrations": [ + { + "package": "system", + "version": "^1.6.4" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.code", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.ip", + "type": "ip" + }, + { + "ecs": true, + "name": "host.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "source.ip", + "type": "ip" + }, + { + "ecs": true, + "name": "user.name", + "type": "keyword" + }, + { + "ecs": false, + "name": "winlog.event_data.AuthenticationPackageName", + "type": "unknown" + }, + { + "ecs": false, + "name": "winlog.logon.type", + "type": "unknown" + } + ], + "risk_score": 21, + "rule_id": "263481c8-1e9b-492e-912d-d1760707f810", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Credential Access", + "Data Source: Elastic Defend", + "Data Source: Active Directory", + "Use Case: Active Directory Monitoring" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1187", + "name": "Forced Authentication", + "reference": "https://attack.mitre.org/techniques/T1187/" + }, + { + "id": "T1557", + "name": "Adversary-in-the-Middle", + "reference": "https://attack.mitre.org/techniques/T1557/", + "subtechnique": [ + { + "id": "T1557.001", + "name": "LLMNR/NBT-NS Poisoning and SMB Relay", + "reference": "https://attack.mitre.org/techniques/T1557/001/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 1 + }, + "id": "263481c8-1e9b-492e-912d-d1760707f810_1", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/27071ea3-e806-4697-8abc-e22c92aa4293_5.json b/packages/security_detection_engine/kibana/security_rule/27071ea3-e806-4697-8abc-e22c92aa4293_5.json deleted file mode 100644 index a911973541da..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/27071ea3-e806-4697-8abc-e22c92aa4293_5.json +++ /dev/null @@ -1,103 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "building_block_type": "default", - "description": "Identifies the use of Cmdlets and methods related to archive compression activities. Adversaries will often compress and encrypt data in preparation for exfiltration.", - "from": "now-119m", - "index": [ - "winlogbeat-*", - "logs-windows.powershell*" - ], - "interval": "60m", - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Script with Archive Compression Capabilities", - "query": "event.category:process and host.os.type:windows and\n(\n powershell.file.script_block_text : (\n \"IO.Compression.ZipFile\" or\n \"IO.Compression.ZipArchive\" or\n \"ZipFile.CreateFromDirectory\" or\n \"IO.Compression.BrotliStream\" or\n \"IO.Compression.DeflateStream\" or\n \"IO.Compression.GZipStream\" or\n \"IO.Compression.ZLibStream\"\n ) and \n powershell.file.script_block_text : (\n \"CompressionLevel\" or\n \"CompressionMode\" or\n \"ZipArchiveMode\"\n ) or\n powershell.file.script_block_text : \"Compress-Archive\"\n) and \n not file.path : (\n ?\\:\\\\\\\\ProgramData\\\\\\\\Microsoft\\\\\\\\Windows?Defender?Advanced?Threat?Protection\\\\\\\\Downloads\\\\\\\\* or\n ?\\:\\\\\\\\ProgramData\\\\\\\\Microsoft\\\\\\\\Windows?Defender?Advanced?Threat?Protection\\\\\\\\DataCollection\\\\\\\\* or\n ?\\:\\\\\\\\Program?Files\\\\\\\\Microsoft?Dependency?Agent\\\\\\\\plugins\\\\\\\\* or\n ?\\:\\\\\\\\Program?Files\\\\\\\\Azure\\\\\\\\StorageSyncAgent\\\\\\\\AFSDiag.ps1\n )\n", - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - } - ], - "risk_score": 21, - "rule_id": "27071ea3-e806-4697-8abc-e22c92aa4293", - "setup": "## Setup\n\nThe 'PowerShell Script Block Logging' logging policy must be enabled.\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "low", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Collection", - "Data Source: PowerShell Logs", - "Rule Type: BBR" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0009", - "name": "Collection", - "reference": "https://attack.mitre.org/tactics/TA0009/" - }, - "technique": [ - { - "id": "T1560", - "name": "Archive Collected Data", - "reference": "https://attack.mitre.org/techniques/T1560/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 5 - }, - "id": "27071ea3-e806-4697-8abc-e22c92aa4293_5", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/2abda169-416b-4bb3-9a6b-f8d239fd78ba_202.json b/packages/security_detection_engine/kibana/security_rule/2abda169-416b-4bb3-9a6b-f8d239fd78ba_202.json deleted file mode 100644 index ca3537ac5d03..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/2abda169-416b-4bb3-9a6b-f8d239fd78ba_202.json +++ /dev/null @@ -1,107 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule detects when a pod is created with a sensitive volume of type hostPath. A hostPath volume type mounts a sensitive file or folder from the node to the container. If the container gets compromised, the attacker can use this mount for gaining access to the node. There are many ways a container with unrestricted access to the host filesystem can escalate privileges, including reading data from other containers, and accessing tokens of more privileged pods.", - "false_positives": [ - "An administrator may need to attach a hostPath volume for a legitimate reason. This alert should be investigated for legitimacy by determining if the kuberenetes.audit.requestObject.spec.volumes.hostPath.path triggered is one needed by its target container/pod. For example, when the fleet managed elastic agent is deployed as a daemonset it creates several hostPath volume mounts, some of which are sensitive host directories like /proc, /etc/kubernetes, and /var/log. Add exceptions for trusted container images using the query field \"kubernetes.audit.requestObject.spec.container.image\"" - ], - "index": [ - "logs-kubernetes.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Kubernetes Pod created with a Sensitive hostPath Volume", - "note": "", - "query": "event.dataset : \"kubernetes.audit_logs\"\n and kubernetes.audit.annotations.authorization_k8s_io/decision:\"allow\"\n and kubernetes.audit.objectRef.resource:\"pods\"\n and kubernetes.audit.verb:(\"create\" or \"update\" or \"patch\")\n and kubernetes.audit.requestObject.spec.volumes.hostPath.path:\n (\"/\" or\n \"/proc\" or\n \"/root\" or\n \"/var\" or\n \"/var/run\" or\n \"/var/run/docker.sock\" or\n \"/var/run/crio/crio.sock\" or\n \"/var/run/cri-dockerd.sock\" or\n \"/var/lib/kubelet\" or\n \"/var/lib/kubelet/pki\" or\n \"/var/lib/docker/overlay2\" or\n \"/etc\" or\n \"/etc/kubernetes\" or\n \"/etc/kubernetes/manifests\" or\n \"/etc/kubernetes/pki\" or\n \"/home/admin\")\n and not kubernetes.audit.requestObject.spec.containers.image: (\"docker.elastic.co/beats/elastic-agent:8.4.0\")\n", - "references": [ - "https://blog.appsecco.com/kubernetes-namespace-breakout-using-insecure-host-path-volume-part-1-b382f2a6e216", - "https://kubernetes.io/docs/concepts/storage/volumes/#hostpath" - ], - "related_integrations": [ - { - "package": "kubernetes", - "version": "^1.4.1" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.dataset", - "type": "keyword" - }, - { - "ecs": false, - "name": "kubernetes.audit.annotations.authorization_k8s_io/decision", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.objectRef.resource", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.containers.image", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.volumes.hostPath.path", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.verb", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "2abda169-416b-4bb3-9a6b-f8d239fd78ba", - "setup": "The Kubernetes Fleet integration with Audit Logs enabled or similarly structured data is required to be compatible with this rule.", - "severity": "medium", - "tags": [ - "Data Source: Kubernetes", - "Tactic: Execution", - "Tactic: Privilege Escalation" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1611", - "name": "Escape to Host", - "reference": "https://attack.mitre.org/techniques/T1611/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1610", - "name": "Deploy Container", - "reference": "https://attack.mitre.org/techniques/T1610/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 202 - }, - "id": "2abda169-416b-4bb3-9a6b-f8d239fd78ba_202", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/2e29e96a-b67c-455a-afe4-de6183431d0d_109.json b/packages/security_detection_engine/kibana/security_rule/2e29e96a-b67c-455a-afe4-de6183431d0d_109.json deleted file mode 100644 index 980f69e3d1b8..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/2e29e96a-b67c-455a-afe4-de6183431d0d_109.json +++ /dev/null @@ -1,134 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects the use of Windows API functions that are commonly abused by malware and security tools to load malicious code or inject it into remote processes.", - "false_positives": [ - "Legitimate PowerShell scripts that make use of these functions." - ], - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Potential Process Injection via PowerShell", - "note": "## Triage and analysis\n\n### Investigating Potential Process Injection via PowerShell\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks. This makes it available for use in various environments, and creates an attractive way for attackers to execute code.\n\nPowerShell also has solid capabilities to make the interaction with the Win32 API in an uncomplicated and reliable way, like the execution of inline C# code, PSReflect, Get-ProcAddress, etc.\n\nRed Team tooling and malware developers take advantage of these capabilities to develop stagers and loaders that inject payloads directly into the memory without touching the disk to circumvent file-based security protections.\n\n#### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Examine file or network events from the involved PowerShell process for suspicious behavior.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n- Check if the imported function was executed and which process it targeted.\n- Check if the injected code can be retrieved (hardcoded in the script or on command line logs).\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Benign true positives (B-TPs) can be added as exceptions if necessary.\n\n### Related rules\n\n- PowerShell PSReflect Script - 56f2e9b5-4803-4e44-a0a4-a52dc79d57fe\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n\n", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text : (\n (VirtualAlloc or VirtualAllocEx or VirtualProtect or LdrLoadDll or LoadLibrary or LoadLibraryA or\n LoadLibraryEx or GetProcAddress or OpenProcess or OpenProcessToken or AdjustTokenPrivileges) and\n (WriteProcessMemory or CreateRemoteThread or NtCreateThreadEx or CreateThread or QueueUserAPC or\n SuspendThread or ResumeThread or GetDelegateForFunctionPointer)\n ) and not \n (user.id:(\"S-1-5-18\" or \"S-1-5-19\") and\n file.directory: \"C:\\\\ProgramData\\\\Microsoft\\\\Windows Defender Advanced Threat Protection\\\\SenseCM\")\n", - "references": [ - "https://github.com/EmpireProject/Empire/blob/master/data/module_source/management/Invoke-PSInject.ps1", - "https://github.com/EmpireProject/Empire/blob/master/data/module_source/management/Invoke-ReflectivePEInjection.ps1", - "https://github.com/BC-SECURITY/Empire/blob/master/empire/server/data/module_source/credentials/Invoke-Mimikatz.ps1", - "https://www.elastic.co/security-labs/detect-credential-access" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.directory", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "2e29e96a-b67c-455a-afe4-de6183431d0d", - "setup": "\nThe 'PowerShell Script Block Logging' logging policy must be enabled.\nSteps to implement the logging policy with with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Defense Evasion", - "Tactic: Execution", - "Resources: Investigation Guide", - "Data Source: PowerShell Logs" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1055", - "name": "Process Injection", - "reference": "https://attack.mitre.org/techniques/T1055/", - "subtechnique": [ - { - "id": "T1055.001", - "name": "Dynamic-link Library Injection", - "reference": "https://attack.mitre.org/techniques/T1055/001/" - }, - { - "id": "T1055.002", - "name": "Portable Executable Injection", - "reference": "https://attack.mitre.org/techniques/T1055/002/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - }, - { - "id": "T1106", - "name": "Native API", - "reference": "https://attack.mitre.org/techniques/T1106/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 109 - }, - "id": "2e29e96a-b67c-455a-afe4-de6183431d0d_109", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/2edc8076-291e-41e9-81e4-e3fcbc97ae5e_111.json b/packages/security_detection_engine/kibana/security_rule/2edc8076-291e-41e9-81e4-e3fcbc97ae5e_111.json new file mode 100644 index 000000000000..4fb6feb83a13 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/2edc8076-291e-41e9-81e4-e3fcbc97ae5e_111.json @@ -0,0 +1,94 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies the creation of a hidden local user account by appending the dollar sign to the account name. This is sometimes done by attackers to increase access to a system and avoid appearing in the results of accounts listing using the net users command.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Creation of a Hidden Local User Account", + "note": "## Triage and analysis\n\n### Investigating Creation of a Hidden Local User Account\n\nAttackers can create accounts ending with a `$` symbol to make the account hidden to user enumeration utilities and bypass detections that identify computer accounts by this pattern to apply filters.\n\nThis rule uses registry events to identify the creation of local hidden accounts.\n\n#### Possible investigation steps\n\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Benign true positive (B-TPs) can be added as exceptions if necessary.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Delete the hidden account.\n- Review the privileges assigned to the involved users to ensure that the least privilege principle is being followed.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path : (\n \"HKLM\\\\SAM\\\\SAM\\\\Domains\\\\Account\\\\Users\\\\Names\\\\*$\\\\\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SAM\\\\SAM\\\\Domains\\\\Account\\\\Users\\\\Names\\\\*$\\\\\"\n)\n", + "references": [ + "http://web.archive.org/web/20230329153858/https://blog.menasec.net/2019/02/threat-hunting-6-hiding-in-plain-sights_8.html", + "https://github.com/CyberMonitor/APT_CyberCriminal_Campagin_Collections/tree/master/2020/2020.12.15.Lazarus_Campaign" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "2edc8076-291e-41e9-81e4-e3fcbc97ae5e", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1136", + "name": "Create Account", + "reference": "https://attack.mitre.org/techniques/T1136/", + "subtechnique": [ + { + "id": "T1136.001", + "name": "Local Account", + "reference": "https://attack.mitre.org/techniques/T1136/001/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 111 + }, + "id": "2edc8076-291e-41e9-81e4-e3fcbc97ae5e_111", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/2ffa1f1e-b6db-47fa-994b-1512743847eb_113.json b/packages/security_detection_engine/kibana/security_rule/2ffa1f1e-b6db-47fa-994b-1512743847eb_113.json new file mode 100644 index 000000000000..6e793867a3f0 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/2ffa1f1e-b6db-47fa-994b-1512743847eb_113.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies modifications to the Windows Defender registry settings to disable the service or set the service to be started manually.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Windows Defender Disabled via Registry Modification", + "note": "## Triage and analysis\n\n### Investigating Windows Defender Disabled via Registry Modification\n\nMicrosoft Windows Defender is an antivirus product built into Microsoft Windows, which makes it popular across multiple environments. Disabling it is a common step in threat actor playbooks.\n\nThis rule monitors the registry for configurations that disable Windows Defender or the start of its service.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Validate the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Contact the account owner and confirm whether they are aware of this activity.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Check if this operation was approved and performed according to the organization's change management policy.\n\n### False positive analysis\n\n- This mechanism can be used legitimately. Analysts can dismiss the alert if the administrator is aware of the activity, the configuration is justified (for example, it is being used to deploy other security solutions or troubleshooting), and no other suspicious activity has been observed.\n\n### Related rules\n\n- Disabling Windows Defender Security Settings via PowerShell - c8cccb06-faf2-4cd5-886e-2c9636cfcb87\n- Microsoft Windows Defender Tampering - fe794edd-487f-4a90-b285-3ee54f2af2d3\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Re-enable Windows Defender and restore the service configurations to automatic start.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Review the privileges assigned to the user to ensure that the least privilege principle is being followed.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n (\n (\n registry.path: (\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\DisableAntiSpyware\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\DisableAntiSpyware\"\n ) and\n registry.data.strings: (\"1\", \"0x00000001\")\n ) or\n (\n registry.path: (\n \"HKLM\\\\System\\\\*ControlSet*\\\\Services\\\\WinDefend\\\\Start\",\n \"\\\\REGISTRY\\\\MACHINE\\\\System\\\\*ControlSet*\\\\Services\\\\WinDefend\\\\Start\"\n ) and\n registry.data.strings in (\"3\", \"4\", \"0x00000003\", \"0x00000004\")\n )\n ) and\n\n not\n (\n process.executable : (\n \"?:\\\\WINDOWS\\\\system32\\\\services.exe\",\n \"?:\\\\Windows\\\\System32\\\\svchost.exe\",\n \"?:\\\\Program Files (x86)\\\\Trend Micro\\\\Security Agent\\\\NTRmv.exe\"\n ) and user.id : \"S-1-5-18\"\n )\n", + "references": [ + "https://thedfirreport.com/2020/12/13/defender-control/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.id", + "type": "keyword" + } + ], + "risk_score": 21, + "rule_id": "2ffa1f1e-b6db-47fa-994b-1512743847eb", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + }, + { + "id": "T1562", + "name": "Impair Defenses", + "reference": "https://attack.mitre.org/techniques/T1562/", + "subtechnique": [ + { + "id": "T1562.001", + "name": "Disable or Modify Tools", + "reference": "https://attack.mitre.org/techniques/T1562/001/" + }, + { + "id": "T1562.006", + "name": "Indicator Blocking", + "reference": "https://attack.mitre.org/techniques/T1562/006/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 113 + }, + "id": "2ffa1f1e-b6db-47fa-994b-1512743847eb_113", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/30b5bb96-c7db-492c-80e9-1eab00db580b_2.json b/packages/security_detection_engine/kibana/security_rule/30b5bb96-c7db-492c-80e9-1eab00db580b_2.json new file mode 100644 index 000000000000..73dfed22d355 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/30b5bb96-c7db-492c-80e9-1eab00db580b_2.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies when object versioning is suspended for an Amazon S3 bucket. Object versioning allows for multiple versions of an object to exist in the same bucket. This allows for easy recovery of deleted or overwritten objects. When object versioning is suspended for a bucket, it could indicate an adversary's attempt to inhibit system recovery following malicious activity. Additionally, when versioning is suspended, buckets can then be deleted.", + "false_positives": [ + "Administrators within an AWS Organization structure may legitimately suspend object versioning. Ensure that this behavior is not part of a legitimate operation before taking action." + ], + "from": "now-6m", + "index": [ + "filebeat-*", + "logs-aws.cloudtrail-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "AWS S3 Object Versioning Suspended", + "note": "\n## Triage and Analysis\n\n### Investigating AWS S3 Object Versioning Suspended\n\nThis rule detects when object versioning for an S3 bucket is suspended. Adversaries with access to a misconfigured S3 bucket may disable object versioning prior to replacing or deleting S3 objects, inhibiting recovery initiatives.\nThis rule uses [EQL](https://www.elastic.co/guide/en/security/master/rules-ui-create.html#create-eql-rule) to look for use of the `PutBucketVersioning` operation where the `request_parameters` include `Status=Suspended`.\n\n#### Possible Investigation Steps:\n\n- **Identify the Actor**: Review the `aws.cloudtrail.user_identity.arn` and `aws.cloudtrail.user_identity.access_key_id` fields to identify who performed the action. Verify if this actor typically performs such actions and if they have the necessary permissions.\n- **Analyze the Source of the Request**: Investigate the `source.ip` and `source.geo` fields to determine the geographical origin of the request. An external or unexpected location might indicate compromised credentials or unauthorized access.\n- **Correlate with Other Activities**: Search for related CloudTrail events before and after this action to see if the same actor or IP address engaged in other potentially suspicious activities.\n- **Check for Object Deletion or Access**: Look for `DeleteObject`, `DeleteObjects`, or `GetObject` API calls to the same S3 bucket that may indicate the adversary accessing and destroying objects including older object versions.\n- **Interview Relevant Personnel**: If the copy event was initiated by a user, verify the intent and authorization for this action with the person or team responsible for managing S3 buckets.\n\n### False Positive Analysis:\n\n- **Legitimate Administrative Actions**: Confirm if the action aligns with legitimate administrative tasks documented in change management systems.\n- **Consistency Check**: Compare the action against historical data of similar activities performed by the user or within the organization. If the action is consistent with past legitimate activities, it might indicate a false alarm.\n\n### Response and Remediation:\n\n- **Immediate Review**: If the activity was unauthorized, search for replaced or deleted objects and review the bucket's access logs for any suspicious activity.\n- **Educate and Train**: Provide additional training to users with administrative rights on the importance of security best practices concerning S3 bucket management and the risks of ransomware.\n- **Audit S3 Bucket Policies and Permissions**: Conduct a comprehensive audit of all S3 bucket policies and associated permissions to ensure they adhere to the principle of least privilege.\n- **Incident Response**: If there's an indication of malicious intent or a security breach, initiate the incident response protocol to mitigate any damage and prevent future occurrences.\n\n### Additional Information:\n\nFor further guidance on managing S3 bucket security and protecting against ransomware, refer to the [AWS S3 documentation](https://docs.aws.amazon.com/AmazonS3/latest/userguide/Welcome.html) and AWS best practices for security. Additionally, consult the following resources for specific details on S3 ransomware protection:\n- [ERMETIC REPORT - AWS S3 Ransomware Exposure in the Wild](https://s3.amazonaws.com/bizzabo.file.upload/PtZzA0eFQwV2RA5ysNeo_ERMETIC%20REPORT%20-%20AWS%20S3%20Ransomware%20Exposure%20in%20the%20Wild.pdf)\n- [S3 Ransomware Part 1: Attack Vector](https://rhinosecuritylabs.com/aws/s3-ransomware-part-1-attack-vector/)\n", + "query": "any where event.dataset == \"aws.cloudtrail\" \n and event.action == \"PutBucketVersioning\"\n and event.outcome == \"success\" \n and stringContains(aws.cloudtrail.request_parameters, \"Status=Suspended\")\n", + "references": [ + "https://docs.aws.amazon.com/AmazonS3/latest/userguide/Versioning.html/", + "https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketVersioning.html/", + "https://cloud.hacktricks.xyz/pentesting-cloud/aws-security/aws-post-exploitation/aws-s3-post-exploitation/", + "https://www.invictus-ir.com/news/ransomware-in-the-cloud/", + "https://rhinosecuritylabs.com/aws/s3-ransomware-part-2-prevention-and-defense/" + ], + "related_integrations": [ + { + "integration": "cloudtrail", + "package": "aws", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": false, + "name": "aws.cloudtrail.request_parameters", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.dataset", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.outcome", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "30b5bb96-c7db-492c-80e9-1eab00db580b", + "severity": "medium", + "tags": [ + "Domain: Cloud", + "Data Source: AWS", + "Data Source: Amazon Web Services", + "Data Source: AWS S3", + "Use Case: Threat Detection", + "Tactic: Impact" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0040", + "name": "Impact", + "reference": "https://attack.mitre.org/tactics/TA0040/" + }, + "technique": [ + { + "id": "T1490", + "name": "Inhibit System Recovery", + "reference": "https://attack.mitre.org/techniques/T1490/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 2 + }, + "id": "30b5bb96-c7db-492c-80e9-1eab00db580b_2", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/30e1e9f2-eb9c-439f-aff6-1e3068e99384_1.json b/packages/security_detection_engine/kibana/security_rule/30e1e9f2-eb9c-439f-aff6-1e3068e99384_1.json deleted file mode 100644 index 9bf2caebeaa8..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/30e1e9f2-eb9c-439f-aff6-1e3068e99384_1.json +++ /dev/null @@ -1,96 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects network connections initiated by the \"sudo\" binary. This behavior is uncommon and may occur in instances where reverse shell shellcode is injected into a process run with elevated permissions via \"sudo\". Attackers may attempt to inject shellcode into processes running as root, to escalate privileges.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Suspicious Network Connection via Sudo Binary", - "query": "network where host.os.type == \"linux\" and event.action == \"connection_attempted\" and event.type == \"start\" and\nprocess.name == \"sudo\"\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "30e1e9f2-eb9c-439f-aff6-1e3068e99384", - "setup": "\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Privilege Escalation", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1055", - "name": "Process Injection", - "reference": "https://attack.mitre.org/techniques/T1055/", - "subtechnique": [ - { - "id": "T1055.008", - "name": "Ptrace System Calls", - "reference": "https://attack.mitre.org/techniques/T1055/008/" - } - ] - }, - { - "id": "T1548", - "name": "Abuse Elevation Control Mechanism", - "reference": "https://attack.mitre.org/techniques/T1548/", - "subtechnique": [ - { - "id": "T1548.003", - "name": "Sudo and Sudo Caching", - "reference": "https://attack.mitre.org/techniques/T1548/003/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 1 - }, - "id": "30e1e9f2-eb9c-439f-aff6-1e3068e99384_1", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/34fde489-94b0-4500-a76f-b8a157cf9269_105.json b/packages/security_detection_engine/kibana/security_rule/34fde489-94b0-4500-a76f-b8a157cf9269_105.json new file mode 100644 index 000000000000..321dc8141a1f --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/34fde489-94b0-4500-a76f-b8a157cf9269_105.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "This rule detects network events that may indicate the use of Telnet traffic. Telnet is commonly used by system administrators to remotely control older or embedded systems using the command line shell. It should almost never be directly exposed to the Internet, as it is frequently targeted and exploited by threat actors as an initial access or backdoor vector. As a plain-text protocol, it may also expose usernames and passwords to anyone capable of observing the traffic.", + "false_positives": [ + "IoT (Internet of Things) devices and networks may use telnet and can be excluded if desired. Some business work-flows may use Telnet for administration of older devices. These often have a predictable behavior. Telnet activity involving an unusual source or destination may be more suspicious. Telnet activity involving a production server that has no known associated Telnet work-flow or business requirement is often suspicious." + ], + "from": "now-9m", + "index": [ + "packetbeat-*", + "auditbeat-*", + "filebeat-*", + "logs-network_traffic.*" + ], + "language": "kuery", + "license": "Elastic License v2", + "name": "Accepted Default Telnet Port Connection", + "query": "(event.dataset:network_traffic.flow or event.category:(network or network_traffic))\n and event.type:connection and not event.action:(\n flow_dropped or flow_denied or denied or deny or\n flow_terminated or timeout or Reject or network_flow)\n and destination.port:23\n", + "related_integrations": [ + { + "package": "network_traffic", + "version": "^1.1.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "destination.port", + "type": "long" + }, + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.category", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.dataset", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.type", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "34fde489-94b0-4500-a76f-b8a157cf9269", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "Use Case: Threat Detection", + "Tactic: Command and Control", + "Tactic: Lateral Movement", + "Tactic: Initial Access" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0011", + "name": "Command and Control", + "reference": "https://attack.mitre.org/tactics/TA0011/" + }, + "technique": [] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0008", + "name": "Lateral Movement", + "reference": "https://attack.mitre.org/tactics/TA0008/" + }, + "technique": [ + { + "id": "T1021", + "name": "Remote Services", + "reference": "https://attack.mitre.org/techniques/T1021/" + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0001", + "name": "Initial Access", + "reference": "https://attack.mitre.org/tactics/TA0001/" + }, + "technique": [ + { + "id": "T1190", + "name": "Exploit Public-Facing Application", + "reference": "https://attack.mitre.org/techniques/T1190/" + } + ] + } + ], + "timeline_id": "300afc76-072d-4261-864d-4149714bf3f1", + "timeline_title": "Comprehensive Network Timeline", + "timestamp_override": "event.ingested", + "type": "query", + "version": 105 + }, + "id": "34fde489-94b0-4500-a76f-b8a157cf9269_105", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/36a8e048-d888-4f61-a8b9-0f9e2e40f317_108.json b/packages/security_detection_engine/kibana/security_rule/36a8e048-d888-4f61-a8b9-0f9e2e40f317_108.json new file mode 100644 index 000000000000..8cd0d2c07968 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/36a8e048-d888-4f61-a8b9-0f9e2e40f317_108.json @@ -0,0 +1,108 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies the creation of a suspicious ImagePath value. This could be an indication of an adversary attempting to stealthily persist or escalate privileges through abnormal service creation.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Suspicious ImagePath Service Creation", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.value : \"ImagePath\" and\n registry.path : (\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Services\\\\*\\\\ImagePath\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\ControlSet*\\\\Services\\\\*\\\\ImagePath\"\n ) and\n /* add suspicious registry ImagePath values here */\n registry.data.strings : (\"%COMSPEC%*\", \"*\\\\.\\\\pipe\\\\*\")\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "36a8e048-d888-4f61-a8b9-0f9e2e40f317", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1543", + "name": "Create or Modify System Process", + "reference": "https://attack.mitre.org/techniques/T1543/", + "subtechnique": [ + { + "id": "T1543.003", + "name": "Windows Service", + "reference": "https://attack.mitre.org/techniques/T1543/003/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 108 + }, + "id": "36a8e048-d888-4f61-a8b9-0f9e2e40f317_108", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/3a657da0-1df2-11ef-a327-f661ea17fbcc_103.json b/packages/security_detection_engine/kibana/security_rule/3a657da0-1df2-11ef-a327-f661ea17fbcc_103.json new file mode 100644 index 000000000000..a4e170e03638 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/3a657da0-1df2-11ef-a327-f661ea17fbcc_103.json @@ -0,0 +1,97 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "This rule is triggered when CVEs collected from the Rapid7 Threat Command Integration have a match against vulnerabilities that were found in the customer environment.", + "filters": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "disabled": false, + "key": "rapid7.tc.vulnerability.id", + "negate": true, + "type": "exists" + }, + "query": { + "exists": { + "field": "rapid7.tc.vulnerability.id" + } + } + } + ], + "from": "now-35m", + "index": [ + "auditbeat-*", + "endgame-*", + "filebeat-*", + "logs-*", + "packetbeat-*", + "winlogbeat-*" + ], + "interval": "30m", + "language": "kuery", + "license": "Elastic License v2", + "max_signals": 10000, + "name": "Rapid7 Threat Command CVEs Correlation", + "note": "## Triage and Analysis\n\n### Investigating Rapid7 Threat Command CVEs Correlation\n\nRapid7 Threat Command CVEs Correlation rule allows matching CVEs from user indices within the vulnerabilities collected from Rapid7 Threat Command integrations.\n\nThe matches will be based on the latest values of CVEs from the last 180 days. So it's essential to validate the data and review the results by investigating the associated activity to determine if it requires further investigation.\n\nIf a vulnerability matches a local observation, the following enriched fields will be generated to identify the vulnerability, field, and type matched.\n\n- `threat.indicator.matched.atomic` - this identifies the atomic vulnerability that matched the local observation\n- `threat.indicator.matched.field` - this identifies the vulnerability field that matched the local observation\n- `threat.indicator.matched.type` - this identifies the vulnerability type that matched the local observation\n\nAdditional investigation can be done by reviewing the source of the activity and considering the history of the vulnerability that was matched. This can help understand if the activity is related to legitimate behavior.\n\n- Investigation can be validated and reviewed based on the data that was matched and by viewing the source of that activity.\n- Consider the history of the vulnerability that was matched. Has it happened before? Is it happening on multiple machines? These kinds of questions can help understand if the activity is related to legitimate behavior.\n- Consider the user and their role within the company: is this something related to their job or work function?\n", + "query": "vulnerability.id : *\n", + "references": [ + "https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-module-threatintel.html", + "https://docs.elastic.co/integrations/ti_rapid7_threat_command" + ], + "related_integrations": [ + { + "package": "ti_rapid7_threat_command", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "vulnerability.id", + "type": "keyword" + } + ], + "risk_score": 99, + "rule_id": "3a657da0-1df2-11ef-a327-f661ea17fbcc", + "setup": "\n## Setup\n\nThis rule needs threat intelligence indicators to work.\nThreat intelligence indicators can be collected using an [Elastic Agent integration](https://www.elastic.co/guide/en/security/current/es-threat-intel-integrations.html#agent-ti-integration),\nthe [Threat Intel module](https://www.elastic.co/guide/en/security/current/es-threat-intel-integrations.html#ti-mod-integration),\nor a [custom integration](https://www.elastic.co/guide/en/security/current/es-threat-intel-integrations.html#custom-ti-integration).\n\nMore information can be found [here](https://www.elastic.co/guide/en/security/current/es-threat-intel-integrations.html).\n\n## Max Signals\n\nThis rule is configured to generate more **Max alerts per run** than the default 1000 alerts per run set for all rules. This is to ensure that it captures as many alerts as possible.\n\n**IMPORTANT:** The rule's **Max alerts per run** setting can be superseded by the `xpack.alerting.rules.run.alerts.max` Kibana config setting, which determines the maximum alerts generated by _any_ rule in the Kibana alerting framework. For example, if `xpack.alerting.rules.run.alerts.max` is set to 1000, this rule will still generate no more than 1000 alerts even if its own **Max alerts per run** is set higher.\n\nTo make sure this rule can generate as many alerts as it's configured in its own **Max alerts per run** setting, increase the `xpack.alerting.rules.run.alerts.max` system setting accordingly.\n\n**NOTE:** Changing `xpack.alerting.rules.run.alerts.max` is not possible in Serverless projects.\n", + "severity": "critical", + "tags": [ + "OS: Windows", + "Data Source: Elastic Endgame", + "Data Source: Windows", + "Data Source: Network", + "Data Source: Rapid7 Threat Command", + "Rule Type: Threat Match", + "Resources: Investigation Guide", + "Use Case: Vulnerability", + "Use Case: Asset Visibility", + "Use Case: Continuous Monitoring" + ], + "threat_index": [ + "logs-ti_rapid7_threat_command_latest.vulnerability" + ], + "threat_indicator_path": "rapid7.tc.vulnerability", + "threat_language": "kuery", + "threat_mapping": [ + { + "entries": [ + { + "field": "vulnerability.id", + "type": "mapping", + "value": "vulnerability.id" + } + ] + } + ], + "threat_query": "@timestamp >= \"now-30d/d\" and vulnerability.id : * and event.module: ti_rapid7_threat_command", + "timestamp_override": "event.ingested", + "type": "threat_match", + "version": 103 + }, + "id": "3a657da0-1df2-11ef-a327-f661ea17fbcc_103", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/3d3aa8f9-12af-441f-9344-9f31053e316d_5.json b/packages/security_detection_engine/kibana/security_rule/3d3aa8f9-12af-441f-9344-9f31053e316d_5.json deleted file mode 100644 index 68b7abcd2ddc..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/3d3aa8f9-12af-441f-9344-9f31053e316d_5.json +++ /dev/null @@ -1,114 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "building_block_type": "default", - "description": "Identifies the use of Cmdlets and methods related to Windows event log deletion activities. This is often done by attackers in an attempt to evade detection or destroy forensic evidence on a system.", - "from": "now-119m", - "index": [ - "winlogbeat-*", - "logs-windows.powershell*" - ], - "interval": "60m", - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Script with Log Clear Capabilities", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text : (\n \"Clear-EventLog\" or\n \"Remove-EventLog\" or\n (\"Eventing.Reader.EventLogSession\" and \".ClearLog\") or\n (\"Diagnostics.EventLog\" and \".Clear\")\n ) and\n not file.path : (\n ?\\:\\\\\\\\*\\\\\\\\system32\\\\\\\\WindowsPowerShell\\\\\\\\v1.0\\\\\\\\Modules\\\\\\\\Microsoft.PowerShell.Management\\\\\\\\*.psd1\n ) and\n not powershell.file.script_block_text : (\n \"CmdletsToExport=@(\\\"Add-Content\\\"\"\n )\n", - "references": [ - "https://learn.microsoft.com/en-us/dotnet/api/system.diagnostics.eventlog.clear", - "https://learn.microsoft.com/en-us/dotnet/api/system.diagnostics.eventing.reader.eventlogsession.clearlog" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - } - ], - "risk_score": 21, - "rule_id": "3d3aa8f9-12af-441f-9344-9f31053e316d", - "setup": "## Setup\n\nThe 'PowerShell Script Block Logging' logging policy must be enabled.\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "low", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Defense Evasion", - "Data Source: PowerShell Logs", - "Rule Type: BBR" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1070", - "name": "Indicator Removal", - "reference": "https://attack.mitre.org/techniques/T1070/", - "subtechnique": [ - { - "id": "T1070.001", - "name": "Clear Windows Event Logs", - "reference": "https://attack.mitre.org/techniques/T1070/001/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 5 - }, - "id": "3d3aa8f9-12af-441f-9344-9f31053e316d_5", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/403ef0d3-8259-40c9-a5b6-d48354712e49_109.json b/packages/security_detection_engine/kibana/security_rule/403ef0d3-8259-40c9-a5b6-d48354712e49_109.json new file mode 100644 index 000000000000..1998aff1a052 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/403ef0d3-8259-40c9-a5b6-d48354712e49_109.json @@ -0,0 +1,118 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies processes modifying the services registry key directly, instead of through the expected Windows APIs. This could be an indication of an adversary attempting to stealthily persist through abnormal service creation or modification of an existing service.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Unusual Persistence via Services Registry", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.value : (\"ServiceDLL\", \"ImagePath\") and\n registry.path : (\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Services\\\\*\\\\ServiceDLL\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Services\\\\*\\\\ImagePath\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\ControlSet*\\\\Services\\\\*\\\\ServiceDLL\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\ControlSet*\\\\Services\\\\*\\\\ImagePath\"\n ) and not registry.data.strings : (\n \"?:\\\\windows\\\\system32\\\\Drivers\\\\*.sys\",\n \"\\\\SystemRoot\\\\System32\\\\drivers\\\\*.sys\",\n \"\\\\??\\\\?:\\\\Windows\\\\system32\\\\Drivers\\\\*.SYS\",\n \"\\\\??\\\\?:\\\\Windows\\\\syswow64\\\\*.sys\",\n \"system32\\\\DRIVERS\\\\USBSTOR\") and\n not (process.name : \"procexp??.exe\" and registry.data.strings : \"?:\\\\*\\\\procexp*.sys\") and\n not process.executable : (\n \"?:\\\\Program Files\\\\*.exe\",\n \"?:\\\\Program Files (x86)\\\\*.exe\",\n \"?:\\\\Windows\\\\System32\\\\svchost.exe\",\n \"?:\\\\Windows\\\\winsxs\\\\*\\\\TiWorker.exe\",\n \"?:\\\\Windows\\\\System32\\\\drvinst.exe\",\n \"?:\\\\Windows\\\\System32\\\\services.exe\",\n \"?:\\\\Windows\\\\System32\\\\msiexec.exe\",\n \"?:\\\\Windows\\\\System32\\\\regsvr32.exe\",\n \"?:\\\\Windows\\\\System32\\\\WaaSMedicAgent.exe\"\n )\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 21, + "rule_id": "403ef0d3-8259-40c9-a5b6-d48354712e49", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1543", + "name": "Create or Modify System Process", + "reference": "https://attack.mitre.org/techniques/T1543/", + "subtechnique": [ + { + "id": "T1543.003", + "name": "Windows Service", + "reference": "https://attack.mitre.org/techniques/T1543/003/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 109 + }, + "id": "403ef0d3-8259-40c9-a5b6-d48354712e49_109", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/513f0ffd-b317-4b9c-9494-92ce861f22c7_312.json b/packages/security_detection_engine/kibana/security_rule/513f0ffd-b317-4b9c-9494-92ce861f22c7_312.json new file mode 100644 index 000000000000..039656ec3d73 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/513f0ffd-b317-4b9c-9494-92ce861f22c7_312.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Detects attempts to maintain persistence by creating registry keys using AppCert DLLs. AppCert DLLs are loaded by every process using the common API functions to create processes.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*", + "logs-sentinel_one_cloud_funnel.*", + "logs-m365_defender.event-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Registry Persistence via AppCert DLL", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path : (\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Session Manager\\\\AppCertDLLs\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Session Manager\\\\AppCertDLLs\\\\*\",\n \"MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Session Manager\\\\AppCertDLLs\\\\*\"\n )\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + }, + { + "package": "sentinel_one_cloud_funnel", + "version": "^1.0.0" + }, + { + "package": "m365_defender", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "513f0ffd-b317-4b9c-9494-92ce861f22c7", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Privilege Escalation", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon", + "Data Source: SentinelOne", + "Data Source: Microsoft Defender for Endpoint" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1546", + "name": "Event Triggered Execution", + "reference": "https://attack.mitre.org/techniques/T1546/", + "subtechnique": [ + { + "id": "T1546.009", + "name": "AppCert DLLs", + "reference": "https://attack.mitre.org/techniques/T1546/009/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0004", + "name": "Privilege Escalation", + "reference": "https://attack.mitre.org/tactics/TA0004/" + }, + "technique": [ + { + "id": "T1546", + "name": "Event Triggered Execution", + "reference": "https://attack.mitre.org/techniques/T1546/", + "subtechnique": [ + { + "id": "T1546.009", + "name": "AppCert DLLs", + "reference": "https://attack.mitre.org/techniques/T1546/009/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 312 + }, + "id": "513f0ffd-b317-4b9c-9494-92ce861f22c7_312", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/7e23dfef-da2c-4d64-b11d-5f285b638853_2.json b/packages/security_detection_engine/kibana/security_rule/5188c68e-d3de-4e96-994d-9e242269446f_103.json similarity index 59% rename from packages/security_detection_engine/kibana/security_rule/7e23dfef-da2c-4d64-b11d-5f285b638853_2.json rename to packages/security_detection_engine/kibana/security_rule/5188c68e-d3de-4e96-994d-9e242269446f_103.json index 4a7d2bed2af9..bd38c20c13cc 100644 --- a/packages/security_detection_engine/kibana/security_rule/7e23dfef-da2c-4d64-b11d-5f285b638853_2.json +++ b/packages/security_detection_engine/kibana/security_rule/5188c68e-d3de-4e96-994d-9e242269446f_103.json @@ -3,23 +3,25 @@ "author": [ "Elastic" ], - "description": "Identifies attempts to open a Microsoft Management Console File from untrusted paths. Adversaries may use MSC files for initial access and execution.", + "description": "Identifies DACL modifications to deny access to a service, making it unstoppable, or hide it from system and users.", "from": "now-9m", "index": [ - "logs-endpoint.events.process-*", "winlogbeat-*", - "logs-windows.*", + "logs-endpoint.events.process-*", + "logs-windows.sysmon_operational-*", "endgame-*", - "logs-system.security*", "logs-sentinel_one_cloud_funnel.*", "logs-m365_defender.event-*" ], "language": "eql", "license": "Elastic License v2", - "name": "Microsoft Management Console File from Unusual Path", - "query": "process where host.os.type == \"windows\" and event.type == \"start\" and\n process.executable : \"?:\\\\Windows\\\\System32\\\\mmc.exe\" and process.args : \"*.msc\" and\n not process.args : (\"?:\\\\Windows\\\\System32\\\\*.msc\", \"?:\\\\Windows\\\\SysWOW64\\\\*.msc\", \"?:\\\\Program files\\\\*.msc\", \"?:\\\\Program Files (x86)\\\\*.msc\")\n", + "name": "Service DACL Modification via sc.exe", + "query": "process where host.os.type == \"windows\" and event.type == \"start\" and\n (process.name : \"sc.exe\" or ?process.pe.original_file_name : \"sc.exe\") and\n process.args : \"sdset\" and process.args : \"*D;*\" and\n process.args : (\"*;IU*\", \"*;SU*\", \"*;BA*\", \"*;SY*\", \"*;WD*\")\n", "references": [ - "https://www.elastic.co/security-labs/grimresource" + "https://blogs.jpcert.or.jp/en/2024/07/mirrorface-attack-against-japanese-organisations.html", + "https://github.com/SigmaHQ/sigma/blob/master/rules/windows/process_creation/proc_creation_win_sc_sdset_deny_service_access.yml", + "https://learn.microsoft.com/en-us/windows/win32/secauthz/sid-strings", + "https://www.sans.org/blog/red-team-tactics-hiding-windows-services/" ], "related_integrations": [ { @@ -57,20 +59,27 @@ }, { "ecs": true, - "name": "process.executable", + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.pe.original_file_name", "type": "keyword" } ], - "risk_score": 73, - "rule_id": "7e23dfef-da2c-4d64-b11d-5f285b638853", - "severity": "high", + "risk_score": 47, + "rule_id": "5188c68e-d3de-4e96-994d-9e242269446f", + "severity": "medium", "tags": [ "Domain: Endpoint", "OS: Windows", "Use Case: Threat Detection", - "Tactic: Execution", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", "Data Source: Elastic Endgame", "Data Source: Elastic Defend", + "Data Source: Sysmon", "Data Source: SentinelOne", "Data Source: Microsoft Defender for Endpoint" ], @@ -78,47 +87,35 @@ { "framework": "MITRE ATT&CK", "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" }, "technique": [ { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.005", - "name": "Visual Basic", - "reference": "https://attack.mitre.org/techniques/T1059/005/" - }, - { - "id": "T1059.007", - "name": "JavaScript", - "reference": "https://attack.mitre.org/techniques/T1059/007/" - } - ] + "id": "T1564", + "name": "Hide Artifacts", + "reference": "https://attack.mitre.org/techniques/T1564/" } ] }, { "framework": "MITRE ATT&CK", "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" }, "technique": [ { - "id": "T1218", - "name": "System Binary Proxy Execution", - "reference": "https://attack.mitre.org/techniques/T1218/", + "id": "T1543", + "name": "Create or Modify System Process", + "reference": "https://attack.mitre.org/techniques/T1543/", "subtechnique": [ { - "id": "T1218.014", - "name": "MMC", - "reference": "https://attack.mitre.org/techniques/T1218/014/" + "id": "T1543.003", + "name": "Windows Service", + "reference": "https://attack.mitre.org/techniques/T1543/003/" } ] } @@ -127,8 +124,8 @@ ], "timestamp_override": "event.ingested", "type": "eql", - "version": 2 + "version": 103 }, - "id": "7e23dfef-da2c-4d64-b11d-5f285b638853_2", + "id": "5188c68e-d3de-4e96-994d-9e242269446f_103", "type": "security-rule" } \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/53617418-17b4-4e9c-8a2c-8deb8086ca4b_8.json b/packages/security_detection_engine/kibana/security_rule/53617418-17b4-4e9c-8a2c-8deb8086ca4b_8.json deleted file mode 100644 index 598fce90de9c..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/53617418-17b4-4e9c-8a2c-8deb8086ca4b_8.json +++ /dev/null @@ -1,109 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule monitors for network connectivity to the internet from a previously unknown executable located in a suspicious directory to a previously unknown destination ip. An alert from this rule can indicate the presence of potentially malicious activity, such as the execution of unauthorized or suspicious processes attempting to establish connections to unknown or suspicious destinations such as a command and control server. Detecting and investigating such behavior can help identify and mitigate potential security threats, protecting the system and its data from potential compromise.", - "from": "now-59m", - "history_window_start": "now-14d", - "index": [ - "auditbeat-*", - "filebeat-*", - "packetbeat-*", - "logs-endpoint.events.*", - "endgame-*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Suspicious Network Activity to the Internet by Previously Unknown Executable", - "new_terms_fields": [ - "host.id", - "destination.ip", - "process.executable" - ], - "note": "## Triage and analysis\n\n### Investigating Suspicious Network Activity to the Internet by Previously Unknown Executable\n\nAfter being installed, malware will often call out to its command and control server to receive further instructions by its operators.\n\nThis rule leverages the new terms rule type to detect previously unknown processes, initiating network connections to external IP-addresses. \n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n> This investigation guide uses [placeholder fields](https://www.elastic.co/guide/en/security/current/osquery-placeholder-fields.html) to dynamically pass alert data into Osquery queries. Placeholder fields were introduced in Elastic Stack version 8.7.0. If you're using Elastic Stack version 8.6.0 or earlier, you'll need to manually adjust this investigation guide's queries to ensure they properly run.\n\n#### Possible investigation steps\n\n- Identify any signs of suspicious network activity or anomalies that may indicate malicious behavior. This could include unexpected traffic patterns or unusual network behavior.\n - Investigate listening ports and open sockets to look for potential malicious processes, reverse shells or data exfiltration.\n - !{osquery{\"label\":\"Osquery - Retrieve Listening Ports\",\"query\":\"SELECT pid, address, port, socket, protocol, path FROM listening_ports\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Open Sockets\",\"query\":\"SELECT pid, family, remote_address, remote_port, socket, state FROM process_open_sockets\"}}\n- Identify the user account that performed the action, analyze it, and check whether it should perform this kind of action.\n - !{osquery{\"label\":\"Osquery - Retrieve Information for a Specific User\",\"query\":\"SELECT * FROM users WHERE username = {{user.name}}\"}}\n- Investigate whether the user is currently logged in and active.\n - !{osquery{\"label\":\"Osquery - Investigate the Account Authentication Status\",\"query\":\"SELECT * FROM logged_in_users WHERE user = {{user.name}}\"}}\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence and whether they are located in expected locations.\n - !{osquery{\"label\":\"Osquery - Retrieve Running Processes by User\",\"query\":\"SELECT pid, username, name FROM processes p JOIN users u ON u.uid = p.uid ORDER BY username\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Process Info\",\"query\":\"SELECT name, cmdline, parent, path, uid FROM processes\"}}\n- Investigate other alerts associated with the user/host during the past 48 hours.\n - If scripts or executables were dropped, retrieve the files and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - Check if the domain is newly registered or unexpected.\n - Check the reputation of the domain or IP address.\n - File access, modification, and creation activities.\n\n### Related rules\n\n- Network Activity Detected via cat - afd04601-12fc-4149-9b78-9c3f8fe45d39\n\n### False positive analysis\n\n- If this activity is related to new benign software installation activity, consider adding exceptions \u2014 preferably with a combination of user and command line conditions.\n- Try to understand the context of the execution by thinking about the user, machine, or business purpose. A small number of endpoints, such as servers with unique software, might appear unusual but satisfy a specific business need.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors, such as reverse shells, reverse proxies, or droppers, that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Leverage the incident response data and logging to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "host.os.type:linux and event.category:network and event.action:(connection_attempted or ipv4_connection_attempt_event) and \nprocess.executable:(\n (/etc/crontab or /etc/rc.local or ./* or /boot/* or /dev/shm/* or /etc/cron.*/* or /etc/init.d/* or /etc/rc*.d/* or \n /etc/update-motd.d/* or /home/*/.* or /run/* or /srv/* or /tmp/* or /usr/lib/update-notifier/* or /var/tmp/*\n ) and not (/tmp/newroot/* or /tmp/snap.rootfs*)\n ) and \nsource.ip:(10.0.0.0/8 or 127.0.0.0/8 or 172.16.0.0/12 or 192.168.0.0/16) and \nnot process.name:(\n apt or chrome or curl or dnf or dockerd or dpkg or firefox-bin or java or kite-update or kited or node or rpm or\n saml2aws or wget or yum or ansible* or aws* or php* or pip* or python* or steam* or terraform*\n) and \nnot destination.ip:(\n 10.0.0.0/8 or 100.64.0.0/10 or 127.0.0.0/8 or 169.254.0.0/16 or 172.16.0.0/12 or 192.0.0.0/24 or 192.0.0.0/29 or \n 192.0.0.10/32 or 192.0.0.170/32 or 192.0.0.171/32 or 192.0.0.8/32 or 192.0.0.9/32 or 192.0.2.0/24 or \n 192.168.0.0/16 or 192.175.48.0/24 or 192.31.196.0/24 or 192.52.193.0/24 or 192.88.99.0/24 or 198.18.0.0/15 or \n 198.51.100.0/24 or 203.0.113.0/24 or 224.0.0.0/4 or 240.0.0.0/4 or \"::1\" or \"FE80::/10\" or \"FF00::/8\" or 0.0.0.0\n) and\nnot destination.port:(22 or 80 or 443)\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "destination.ip", - "type": "ip" - }, - { - "ecs": true, - "name": "destination.port", - "type": "long" - }, - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "source.ip", - "type": "ip" - } - ], - "risk_score": 21, - "rule_id": "53617418-17b4-4e9c-8a2c-8deb8086ca4b", - "setup": "## Setup\n\nThis rule requires data coming in from one of the following integrations:\n- Elastic Defend\n- Auditbeat\n- Filebeat\n- Packetbeat\n\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows\nthe Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest to select \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n### Auditbeat Setup\nAuditbeat is a lightweight shipper that you can install on your servers to audit the activities of users and processes on your systems. For example, you can use Auditbeat to collect and centralize audit events from the Linux Audit Framework. You can also use Auditbeat to detect changes to critical files, like binaries and configuration files, and identify potential security policy violations.\n\n#### The following steps should be executed in order to add the Auditbeat on a Linux System:\n- Elastic provides repositories available for APT and YUM-based distributions. Note that we provide binary packages, but no source packages.\n- To install the APT and YUM repositories follow the setup instructions in this [helper guide](https://www.elastic.co/guide/en/beats/auditbeat/current/setup-repositories.html).\n- To run Auditbeat on Docker follow the setup instructions in the [helper guide](https://www.elastic.co/guide/en/beats/auditbeat/current/running-on-docker.html).\n- To run Auditbeat on Kubernetes follow the setup instructions in the [helper guide](https://www.elastic.co/guide/en/beats/auditbeat/current/running-on-kubernetes.html).\n- For complete \u201cSetup and Run Auditbeat\u201d information refer to the [helper guide](https://www.elastic.co/guide/en/beats/auditbeat/current/setting-up-and-running.html).\n\n### Filebeat Setup\nFilebeat is a lightweight shipper for forwarding and centralizing log data. Installed as an agent on your servers, Filebeat monitors the log files or locations that you specify, collects log events, and forwards them either to Elasticsearch or Logstash for indexing.\n\n#### The following steps should be executed in order to add the Filebeat on a Linux System:\n- Elastic provides repositories available for APT and YUM-based distributions. Note that we provide binary packages, but no source packages.\n- To install the APT and YUM repositories follow the setup instructions in this [helper guide](https://www.elastic.co/guide/en/beats/filebeat/current/setup-repositories.html).\n- To run Filebeat on Docker follow the setup instructions in the [helper guide](https://www.elastic.co/guide/en/beats/filebeat/current/running-on-docker.html).\n- To run Filebeat on Kubernetes follow the setup instructions in the [helper guide](https://www.elastic.co/guide/en/beats/filebeat/current/running-on-kubernetes.html).\n- For quick start information for Filebeat refer to the [helper guide](https://www.elastic.co/guide/en/beats/filebeat/8.11/filebeat-installation-configuration.html).\n- For complete \u201cSetup and Run Filebeat\u201d information refer to the [helper guide](https://www.elastic.co/guide/en/beats/filebeat/current/setting-up-and-running.html).\n\n### Packetbeat Setup\nPacketbeat is a real-time network packet analyzer that you can use for application monitoring, performance analytics, and threat detection. Packetbeat works by capturing the network traffic between your application servers, decoding the application layer protocols (HTTP, MySQL, Redis, and so on), correlating the requests with the responses, and recording the interesting fields for each transaction.\n\n#### The following steps should be executed in order to add the Packetbeat on a Linux System:\n- Elastic provides repositories available for APT and YUM-based distributions. Note that we provide binary packages, but no source packages.\n- To install the APT and YUM repositories follow the setup instructions in this [helper guide](https://www.elastic.co/guide/en/beats/packetbeat/current/setup-repositories.html).\n- To run Packetbeat on Docker follow the setup instructions in the [helper guide](https://www.elastic.co/guide/en/beats/packetbeat/current/running-on-docker.html).\n- For quick start information for Packetbeat refer to the [helper guide](https://www.elastic.co/guide/en/beats/packetbeat/current/packetbeat-installation-configuration.html).\n- For complete \u201cSetup and Run Packetbeat\u201d information refer to the [helper guide](https://www.elastic.co/guide/en/beats/packetbeat/current/setting-up-and-running.html).\n", - "severity": "low", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Command and Control", - "Data Source: Elastic Endgame", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0011", - "name": "Command and Control", - "reference": "https://attack.mitre.org/tactics/TA0011/" - }, - "technique": [ - { - "id": "T1071", - "name": "Application Layer Protocol", - "reference": "https://attack.mitre.org/techniques/T1071/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "new_terms", - "version": 8 - }, - "id": "53617418-17b4-4e9c-8a2c-8deb8086ca4b_8", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/54902e45-3467-49a4-8abc-529f2c8cfb80_109.json b/packages/security_detection_engine/kibana/security_rule/54902e45-3467-49a4-8abc-529f2c8cfb80_109.json new file mode 100644 index 000000000000..118eeb8235f1 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/54902e45-3467-49a4-8abc-529f2c8cfb80_109.json @@ -0,0 +1,132 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Detects changes to registry persistence keys that are not commonly used or modified by legitimate programs. This could be an indication of an adversary's attempt to persist in a stealthy manner.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Uncommon Registry Persistence Change", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n length(registry.data.strings) > 0 and\n registry.path : (\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Terminal Server\\\\Install\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Terminal Server\\\\Install\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Runonce\\\\*\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\Load\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\Run\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\IconServiceLib\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Shell\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Shell\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\AppSetup\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Taskman\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Userinit\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\VmApplet\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\*\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\System\\\\Shell\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Logoff\\\\Script\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Logon\\\\Script\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Shutdown\\\\Script\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Startup\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\*\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\System\\\\Shell\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Logoff\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Logon\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Shutdown\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Startup\\\\Script\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Active Setup\\\\Installed Components\\\\*\\\\ShellComponent\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows CE Services\\\\AutoStartOnConnect\\\\MicrosoftActiveSync\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows CE Services\\\\AutoStartOnDisconnect\\\\MicrosoftActiveSync\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Ctf\\\\LangBarAddin\\\\*\\\\FilePath\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Exec\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Script\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Command Processor\\\\Autorun\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Ctf\\\\LangBarAddin\\\\*\\\\FilePath\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Exec\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Command Processor\\\\Autorun\",\n \"HKEY_USERS\\\\*\\\\Control Panel\\\\Desktop\\\\scrnsave.exe\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Image File Execution Options\\\\*\\\\VerifierDlls\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\GpExtensions\\\\*\\\\DllName\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\SafeBoot\\\\AlternateShell\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\Terminal Server\\\\Wds\\\\rdpwd\\\\StartupPrograms\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\Terminal Server\\\\WinStations\\\\RDP-Tcp\\\\InitialProgram\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\Session Manager\\\\BootExecute\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\Session Manager\\\\SetupExecute\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\Session Manager\\\\Execute\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\Session Manager\\\\S0InitialCommand\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\ServiceControlManagerExtension\",\n \"HKLM\\\\SYSTEM\\\\ControlSet*\\\\Control\\\\BootVerificationProgram\\\\ImagePath\",\n \"HKLM\\\\SYSTEM\\\\Setup\\\\CmdLine\",\n \"HKEY_USERS\\\\*\\\\Environment\\\\UserInitMprLogonScript\") and\n\n not registry.data.strings : (\"C:\\\\Windows\\\\system32\\\\userinit.exe\", \"cmd.exe\", \"C:\\\\Program Files (x86)\\\\*.exe\",\n \"C:\\\\Program Files\\\\*.exe\") and\n not (process.name : \"rundll32.exe\" and registry.path : \"*\\\\Software\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Script\") and\n not process.executable : (\"C:\\\\Windows\\\\System32\\\\msiexec.exe\",\n \"C:\\\\Windows\\\\SysWOW64\\\\msiexec.exe\",\n \"C:\\\\ProgramData\\\\Microsoft\\\\Windows Defender\\\\Platform\\\\*\\\\MsMpEng.exe\",\n \"C:\\\\Program Files\\\\*.exe\",\n \"C:\\\\Program Files (x86)\\\\*.exe\") and\n not (process.name : (\"TiWorker.exe\", \"poqexec.exe\") and registry.value : \"SetupExecute\" and\n registry.data.strings : (\n \"C:\\\\windows\\\\System32\\\\poqexec.exe /display_progress \\\\SystemRoot\\\\WinSxS\\\\pending.xml\",\n \"C:\\\\Windows\\\\System32\\\\poqexec.exe /skip_critical_poq /display_progress \\\\SystemRoot\\\\WinSxS\\\\pending.xml\"\n )\n ) and\n not (process.name : \"svchost.exe\" and registry.value : \"SCRNSAVE.EXE\" and\n registry.data.strings : (\n \"%windir%\\\\system32\\\\rundll32.exe user32.dll,LockWorkStation\",\n \"scrnsave.scr\",\n \"%windir%\\\\system32\\\\Ribbons.scr\"\n )\n )\n", + "references": [ + "https://www.microsoftpressstore.com/articles/article.aspx?p=2762082&seqNum=2" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "54902e45-3467-49a4-8abc-529f2c8cfb80", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1546", + "name": "Event Triggered Execution", + "reference": "https://attack.mitre.org/techniques/T1546/", + "subtechnique": [ + { + "id": "T1546.002", + "name": "Screensaver", + "reference": "https://attack.mitre.org/techniques/T1546/002/" + } + ] + }, + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.001", + "name": "Registry Run Keys / Startup Folder", + "reference": "https://attack.mitre.org/techniques/T1547/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timeline_id": "3e47ef71-ebfc-4520-975c-cb27fc090799", + "timeline_title": "Comprehensive Registry Timeline", + "timestamp_override": "event.ingested", + "type": "eql", + "version": 109 + }, + "id": "54902e45-3467-49a4-8abc-529f2c8cfb80_109", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/54c3d186-0461-4dc3-9b33-2dc5c7473936_110.json b/packages/security_detection_engine/kibana/security_rule/54c3d186-0461-4dc3-9b33-2dc5c7473936_110.json new file mode 100644 index 000000000000..1ed5792bbc03 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/54c3d186-0461-4dc3-9b33-2dc5c7473936_110.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies the modification of the network logon provider registry. Adversaries may register a rogue network logon provider module for persistence and/or credential access via intercepting the authentication credentials in clear text during user logon.", + "false_positives": [ + "Authorized third party network logon providers." + ], + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Network Logon Provider Registry Modification", + "note": "## Triage and analysis\n\n### Investigating Network Logon Provider Registry Modification\n\nNetwork logon providers are components in Windows responsible for handling the authentication process during a network logon.\n\nThis rule identifies the modification of the network logon provider registry. Adversaries may register a rogue network logon provider module for persistence and/or credential access via intercepting the authentication credentials in plain text during user logon.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n### Possible investigation steps\n\n- Examine the `registry.data.strings` field to identify the DLL registered.\n- Identify the process responsible for the registry operation and the file creation and investigate their process execution chains (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n - Validate the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n - Investigate any abnormal behavior by the subject process, such as network connections, DLLs loaded, registry or file modifications, and any spawned child processes.\n- Retrieve the file and examine if it is signed with valid digital signatures from vendors that are supposed to implement this kind of software and approved to use in the environment. Check for prevalence in the environment and whether they are located in expected locations.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the executables of the processes using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process's `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n\n### False positive analysis\n\n- False Positives can include legitimate software installations or updates that modify the network logon provider registry. These modifications may be necessary for the proper functioning of the software and are not indicative of malicious activity.\n\n### Response and Remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n - If malicious activity is confirmed, perform a broader investigation to identify the scope of the compromise and determine the appropriate remediation steps.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Reimage the host operating system or restore the compromised files to clean versions.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.data.strings : \"?*\" and registry.value : \"ProviderPath\" and\n registry.path : (\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\*\\\\NetworkProvider\\\\ProviderPath\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\*\\\\NetworkProvider\\\\ProviderPath\"\n ) and\n /* Excluding default NetworkProviders RDPNP, LanmanWorkstation and webclient. */\n not (\n user.id : \"S-1-5-18\" and\n registry.data.strings : (\n \"%SystemRoot%\\\\System32\\\\ntlanman.dll\",\n \"%SystemRoot%\\\\System32\\\\drprov.dll\",\n \"%SystemRoot%\\\\System32\\\\davclnt.dll\",\n \"%SystemRoot%\\\\System32\\\\vmhgfs.dll\",\n \"?:\\\\Program Files (x86)\\\\Citrix\\\\ICA Client\\\\x64\\\\pnsson.dll\",\n \"?:\\\\Program Files\\\\Dell\\\\SARemediation\\\\agent\\\\DellMgmtNP.dll\",\n \"?:\\\\Program Files (x86)\\\\CheckPoint\\\\Endpoint Connect\\\\\\\\epcgina.dll\"\n )\n )\n", + "references": [ + "https://github.com/gtworek/PSBits/tree/master/PasswordStealing/NPPSpy", + "https://docs.microsoft.com/en-us/windows/win32/api/npapi/nf-npapi-nplogonnotify" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.id", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "54c3d186-0461-4dc3-9b33-2dc5c7473936", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Credential Access", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1556", + "name": "Modify Authentication Process", + "reference": "https://attack.mitre.org/techniques/T1556/" + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1543", + "name": "Create or Modify System Process", + "reference": "https://attack.mitre.org/techniques/T1543/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 110 + }, + "id": "54c3d186-0461-4dc3-9b33-2dc5c7473936_110", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/55f07d1b-25bc-4a0f-aa0c-05323c1319d0_2.json b/packages/security_detection_engine/kibana/security_rule/55f07d1b-25bc-4a0f-aa0c-05323c1319d0_2.json new file mode 100644 index 000000000000..297dd8855c5f --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/55f07d1b-25bc-4a0f-aa0c-05323c1319d0_2.json @@ -0,0 +1,113 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "building_block_type": "default", + "description": "Identifies the execution of an installer from an archive or with suspicious properties. Adversaries may abuse msiexec.exe to launch local or network accessible MSI files in an attempt to bypass application whitelisting.", + "from": "now-119m", + "index": [ + "logs-endpoint.events.*" + ], + "interval": "60m", + "language": "eql", + "license": "Elastic License v2", + "name": "Windows Installer with Suspicious Properties", + "query": "sequence with maxspan=1m\n [registry where host.os.type == \"windows\" and event.type == \"change\" and process.name : \"msiexec.exe\" and\n (\n (registry.value : \"InstallSource\" and\n registry.data.strings : (\"?:\\\\Users\\\\*\\\\Temp\\\\Temp?_*.zip\\\\*\",\n \"?:\\\\Users\\\\*\\\\*.7z\\\\*\",\n \"?:\\\\Users\\\\*\\\\*.rar\\\\*\")) or\n\n (registry.value : (\"DisplayName\", \"ProductName\") and registry.data.strings : \"SetupTest\")\n )]\n [process where host.os.type == \"windows\" and event.action == \"start\" and\n process.parent.name : \"msiexec.exe\" and\n not process.name : \"msiexec.exe\" and\n not (process.executable : (\"?:\\\\Program Files (x86)\\\\*.exe\", \"?:\\\\Program Files\\\\*.exe\") and process.code_signature.trusted == true)]\n", + "references": [ + "https://lolbas-project.github.io/lolbas/Binaries/Msiexec/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.code_signature.trusted", + "type": "boolean" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.parent.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 21, + "rule_id": "55f07d1b-25bc-4a0f-aa0c-05323c1319d0", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Rule Type: BBR", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1218", + "name": "System Binary Proxy Execution", + "reference": "https://attack.mitre.org/techniques/T1218/", + "subtechnique": [ + { + "id": "T1218.007", + "name": "Msiexec", + "reference": "https://attack.mitre.org/techniques/T1218/007/" + } + ] + } + ] + } + ], + "type": "eql", + "version": 2 + }, + "id": "55f07d1b-25bc-4a0f-aa0c-05323c1319d0_2", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/56f2e9b5-4803-4e44-a0a4-a52dc79d57fe_110.json b/packages/security_detection_engine/kibana/security_rule/56f2e9b5-4803-4e44-a0a4-a52dc79d57fe_110.json deleted file mode 100644 index 2adcb7812579..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/56f2e9b5-4803-4e44-a0a4-a52dc79d57fe_110.json +++ /dev/null @@ -1,104 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects the use of PSReflect in PowerShell scripts. Attackers leverage PSReflect as a library that enables PowerShell to access win32 API functions.", - "false_positives": [ - "Legitimate PowerShell scripts that make use of PSReflect to access the win32 API" - ], - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.powershell*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell PSReflect Script", - "note": "## Triage and analysis\n\n### Investigating PowerShell PSReflect Script\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks. This makes it available for use in various environments, and creates an attractive way for attackers to execute code.\n\nPSReflect is a library that enables PowerShell to access win32 API functions in an uncomplicated way. It also helps to create enums and structs easily\u2014all without touching the disk.\n\nAlthough this is an interesting project for every developer and admin out there, it is mainly used in the red team and malware tooling for its capabilities.\n\nDetecting the core implementation of PSReflect means detecting most of the tooling that uses Windows API through PowerShell, enabling defenders to discover tools being dropped in the environment.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics. The script content that may be split into multiple script blocks (you can use the field `powershell.file.script_block_id` for filtering).\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Check for additional PowerShell and command-line logs that indicate that imported functions were run.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the script using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (for example, 4624) to the target host after the registry modification.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Benign true positives (B-TPs) can be added as exceptions if necessary.\n\n### Related rules\n\n- PowerShell Suspicious Discovery Related Windows API Functions - 61ac3638-40a3-44b2-855a-985636ca985e\n- PowerShell Keylogging Script - bd2c86a0-8b61-4457-ab38-96943984e889\n- PowerShell Suspicious Script with Audio Capture Capabilities - 2f2f4939-0b34-40c2-a0a3-844eb7889f43\n- Potential Process Injection via PowerShell - 2e29e96a-b67c-455a-afe4-de6183431d0d\n- Suspicious .NET Reflection via PowerShell - e26f042e-c590-4e82-8e05-41e81bd822ad\n- PowerShell Suspicious Payload Encoded and Compressed - 81fe9dc6-a2d7-4192-a2d8-eed98afc766a\n- PowerShell Suspicious Script with Screenshot Capabilities - 959a7353-1129-4aa7-9084-30746b256a70\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text:(\n \"New-InMemoryModule\" or\n \"Add-Win32Type\" or\n psenum or\n DefineDynamicAssembly or\n DefineDynamicModule or\n \"Reflection.TypeAttributes\" or\n \"Reflection.Emit.OpCodes\" or\n \"Reflection.Emit.CustomAttributeBuilder\" or\n \"Runtime.InteropServices.DllImportAttribute\"\n ) and\n not user.id : \"S-1-5-18\" and\n not file.path : ?\\:\\\\\\\\ProgramData\\\\\\\\MaaS360\\\\\\\\Cloud?Extender\\\\\\\\AR\\\\\\\\Scripts\\\\\\\\ASModuleCommon.ps1*\n", - "references": [ - "https://github.com/mattifestation/PSReflect/blob/master/PSReflect.psm1", - "https://github.com/atc-project/atc-data/blob/master/docs/Logging_Policies/LP_0109_windows_powershell_script_block_log.md" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "56f2e9b5-4803-4e44-a0a4-a52dc79d57fe", - "setup": "## Setup\n\nThe 'PowerShell Script Block Logging' logging policy must be configured (Enable).\n\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Execution", - "Resources: Investigation Guide", - "Data Source: PowerShell Logs" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - }, - { - "id": "T1106", - "name": "Native API", - "reference": "https://attack.mitre.org/techniques/T1106/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 110 - }, - "id": "56f2e9b5-4803-4e44-a0a4-a52dc79d57fe_110", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/57bfa0a9-37c0-44d6-b724-54bf16787492_2.json b/packages/security_detection_engine/kibana/security_rule/57bfa0a9-37c0-44d6-b724-54bf16787492_2.json new file mode 100644 index 000000000000..d082b8e07ac4 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/57bfa0a9-37c0-44d6-b724-54bf16787492_2.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies changes to the DNS Global Query Block List (GQBL), a security feature that prevents the resolution of certain DNS names often exploited in attacks like WPAD spoofing. Attackers with certain privileges, such as DNSAdmins, can modify or disable the GQBL, allowing exploitation of hosts running WPAD with default settings for privilege escalation and lateral movement.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "DNS Global Query Block List Modified or Disabled", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n(\n (registry.value : \"EnableGlobalQueryBlockList\" and registry.data.strings : (\"0\", \"0x00000000\")) or\n (registry.value : \"GlobalQueryBlockList\" and not registry.data.strings : \"wpad\")\n)\n", + "references": [ + "https://cube0x0.github.io/Pocing-Beyond-DA/", + "https://www.thehacker.recipes/ad/movement/mitm-and-coerced-authentications/wpad-spoofing", + "https://www.netspi.com/blog/technical-blog/network-penetration-testing/adidns-revisited/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "57bfa0a9-37c0-44d6-b724-54bf16787492", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1562", + "name": "Impair Defenses", + "reference": "https://attack.mitre.org/techniques/T1562/", + "subtechnique": [ + { + "id": "T1562.001", + "name": "Disable or Modify Tools", + "reference": "https://attack.mitre.org/techniques/T1562/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1557", + "name": "Adversary-in-the-Middle", + "reference": "https://attack.mitre.org/techniques/T1557/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 2 + }, + "id": "57bfa0a9-37c0-44d6-b724-54bf16787492_2", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/58aa72ca-d968-4f34-b9f7-bea51d75eb50_112.json b/packages/security_detection_engine/kibana/security_rule/58aa72ca-d968-4f34-b9f7-bea51d75eb50_112.json new file mode 100644 index 000000000000..ff06e7f4eb94 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/58aa72ca-d968-4f34-b9f7-bea51d75eb50_112.json @@ -0,0 +1,116 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies registry write modifications to enable Remote Desktop Protocol (RDP) access. This could be indicative of adversary lateral movement preparation.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "winlogbeat-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "RDP Enabled via Registry", + "note": "## Triage and analysis\n\n### Investigating RDP Enabled via Registry\n\nMicrosoft Remote Desktop Protocol (RDP) is a proprietary Microsoft protocol that enables remote connections to other computers, typically over TCP port 3389.\n\nAttackers can use RDP to conduct their actions interactively. Ransomware operators frequently use RDP to access victim servers, often using privileged accounts.\n\nThis rule detects modification of the fDenyTSConnections registry key to the value `0`, which specifies that remote desktop connections are enabled. Attackers can abuse remote registry, use psexec, etc., to enable RDP and move laterally.\n\n#### Possible investigation steps\n\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Contact the user to check if they are aware of the operation.\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Check whether it makes sense to enable RDP to this host, given its role in the environment.\n- Check if the host is directly exposed to the internet.\n- Check whether privileged accounts accessed the host shortly after the modification.\n- Review network events within a short timespan of this alert for incoming RDP connection attempts.\n\n### False positive analysis\n\n- This mechanism can be used legitimately. Check whether the user should be performing this kind of activity, whether they are aware of it, whether RDP should be open, and whether the action exposes the environment to unnecessary risks.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- If RDP is needed, make sure to secure it using firewall rules:\n - Allowlist RDP traffic to specific trusted hosts.\n - Restrict RDP logins to authorized non-administrator accounts, where possible.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Review the privileges assigned to the involved users to ensure that the least privilege principle is being followed.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path : \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Terminal Server\\\\fDenyTSConnections\" and\n registry.data.strings : (\"0\", \"0x00000000\") and\n not process.executable : (\"?:\\\\Windows\\\\System32\\\\SystemPropertiesRemote.exe\", \n \"?:\\\\Windows\\\\System32\\\\SystemPropertiesComputerName.exe\", \n \"?:\\\\Windows\\\\System32\\\\SystemPropertiesAdvanced.exe\", \n \"?:\\\\Windows\\\\System32\\\\SystemSettingsAdminFlows.exe\", \n \"?:\\\\Windows\\\\WinSxS\\\\*\\\\TiWorker.exe\", \n \"?:\\\\Windows\\\\system32\\\\svchost.exe\")\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "58aa72ca-d968-4f34-b9f7-bea51d75eb50", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Lateral Movement", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0008", + "name": "Lateral Movement", + "reference": "https://attack.mitre.org/tactics/TA0008/" + }, + "technique": [ + { + "id": "T1021", + "name": "Remote Services", + "reference": "https://attack.mitre.org/techniques/T1021/", + "subtechnique": [ + { + "id": "T1021.001", + "name": "Remote Desktop Protocol", + "reference": "https://attack.mitre.org/techniques/T1021/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 112 + }, + "id": "58aa72ca-d968-4f34-b9f7-bea51d75eb50_112", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/61ac3638-40a3-44b2-855a-985636ca985e_113.json b/packages/security_detection_engine/kibana/security_rule/61ac3638-40a3-44b2-855a-985636ca985e_113.json deleted file mode 100644 index 49957d049c6b..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/61ac3638-40a3-44b2-855a-985636ca985e_113.json +++ /dev/null @@ -1,160 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule detects the use of discovery-related Windows API functions in PowerShell Scripts. Attackers can use these functions to perform various situational awareness related activities, like enumerating users, shares, sessions, domain trusts, groups, etc.", - "false_positives": [ - "Legitimate PowerShell scripts that make use of these functions." - ], - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.powershell*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Suspicious Discovery Related Windows API Functions", - "note": "## Triage and analysis\n\n### Investigating PowerShell Suspicious Discovery Related Windows API Functions\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks. This makes it available for use in various environments, and creates an attractive way for attackers to execute code.\n\nAttackers can use PowerShell to interact with the Win32 API to bypass command line based detections, using libraries like PSReflect or Get-ProcAddress Cmdlet.\n\n#### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Examine file or network events from the involved PowerShell process for suspicious behavior.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n- Check for additional PowerShell and command-line logs that indicate that imported functions were run.\n\n### False positive analysis\n\n- Discovery activities themselves are not inherently malicious if occurring in isolation, as long as the script does not contain other capabilities, and there are no other alerts related to the user or host; such alerts can be dismissed. However, analysts should keep in mind that this is not a common way of getting information, making it suspicious.\n\n### Related rules\n\n- PowerShell PSReflect Script - 56f2e9b5-4803-4e44-a0a4-a52dc79d57fe\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text : (\n NetShareEnum or\n NetWkstaUserEnum or\n NetSessionEnum or\n NetLocalGroupEnum or\n NetLocalGroupGetMembers or\n DsGetSiteName or\n DsEnumerateDomainTrusts or\n WTSEnumerateSessionsEx or\n WTSQuerySessionInformation or\n LsaGetLogonSessionData or\n QueryServiceObjectSecurity or\n GetComputerNameEx or\n NetWkstaGetInfo or\n GetUserNameEx or\n NetUserEnum or\n NetUserGetInfo or\n NetGroupEnum or\n NetGroupGetInfo or\n NetGroupGetUsers or\n NetWkstaTransportEnum or\n NetServerGetInfo or\n LsaEnumerateTrustedDomains or\n NetScheduleJobEnum or\n NetUserModalsGet\n )\n and not file.path : ?\\:\\\\\\\\ProgramData\\\\\\\\Microsoft\\\\\\\\Windows?Defender?Advanced?Threat?Protection\\\\\\\\DataCollection\\\\\\\\*\n", - "references": [ - "https://github.com/BC-SECURITY/Empire/blob/9259e5106986847d2bb770c4289c0c0f1adf2344/data/module_source/situational_awareness/network/powerview.ps1#L21413", - "https://github.com/atc-project/atc-data/blob/master/docs/Logging_Policies/LP_0109_windows_powershell_script_block_log.md" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "61ac3638-40a3-44b2-855a-985636ca985e", - "setup": "## Setup\n\nThe 'PowerShell Script Block Logging' logging policy must be enabled.\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Discovery", - "Tactic: Collection", - "Tactic: Execution", - "Resources: Investigation Guide", - "Data Source: PowerShell Logs" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0007", - "name": "Discovery", - "reference": "https://attack.mitre.org/tactics/TA0007/" - }, - "technique": [ - { - "id": "T1069", - "name": "Permission Groups Discovery", - "reference": "https://attack.mitre.org/techniques/T1069/", - "subtechnique": [ - { - "id": "T1069.001", - "name": "Local Groups", - "reference": "https://attack.mitre.org/techniques/T1069/001/" - } - ] - }, - { - "id": "T1087", - "name": "Account Discovery", - "reference": "https://attack.mitre.org/techniques/T1087/", - "subtechnique": [ - { - "id": "T1087.001", - "name": "Local Account", - "reference": "https://attack.mitre.org/techniques/T1087/001/" - } - ] - }, - { - "id": "T1482", - "name": "Domain Trust Discovery", - "reference": "https://attack.mitre.org/techniques/T1482/" - }, - { - "id": "T1135", - "name": "Network Share Discovery", - "reference": "https://attack.mitre.org/techniques/T1135/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - }, - { - "id": "T1106", - "name": "Native API", - "reference": "https://attack.mitre.org/techniques/T1106/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0009", - "name": "Collection", - "reference": "https://attack.mitre.org/tactics/TA0009/" - }, - "technique": [ - { - "id": "T1039", - "name": "Data from Network Shared Drive", - "reference": "https://attack.mitre.org/techniques/T1039/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 113 - }, - "id": "61ac3638-40a3-44b2-855a-985636ca985e_113", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/61d29caf-6c15-4d1e-9ccb-7ad12ccc0bc7_109.json b/packages/security_detection_engine/kibana/security_rule/61d29caf-6c15-4d1e-9ccb-7ad12ccc0bc7_109.json deleted file mode 100644 index b7b0ed00e1da..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/61d29caf-6c15-4d1e-9ccb-7ad12ccc0bc7_109.json +++ /dev/null @@ -1,102 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identifies a modification on the dsHeuristics attribute on the bit that holds the configuration of groups excluded from the SDProp process. The SDProp compares the permissions on protected objects with those defined on the AdminSDHolder object. If the permissions on any of the protected accounts and groups do not match, the permissions on the protected accounts and groups are reset to match those of the domain's AdminSDHolder object, meaning that groups excluded will remain unchanged. Attackers can abuse this misconfiguration to maintain long-term access to privileged accounts in these groups.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-system.*", - "logs-windows.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "AdminSDHolder SDProp Exclusion Added", - "note": "## Triage and analysis\n\n### Investigating AdminSDHolder SDProp Exclusion Added\n\nThe SDProp process compares the permissions on protected objects with those defined on the AdminSDHolder object. If the permissions on any of the protected accounts and groups do not match, it resets the permissions on the protected accounts and groups to match those defined in the domain AdminSDHolder object.\n\nThe dSHeuristics is a Unicode string attribute, in which each character in the string represents a heuristic that is used to determine the behavior of Active Directory.\n\nAdministrators can use the dSHeuristics attribute to exclude privilege groups from the SDProp process by setting the 16th bit (dwAdminSDExMask) of the string to a certain value, which represents the group(s):\n\n- For example, to exclude the Account Operators group, an administrator would modify the string, so the 16th character is set to 1 (i.e., 0000000001000001).\n\nThe usage of this exclusion can leave the accounts unprotected and facilitate the misconfiguration of privileges for the excluded groups, enabling attackers to add accounts to these groups to maintain long-term persistence with high privileges.\n\nThis rule matches changes of the dsHeuristics object where the 16th bit is set to a value other than zero.\n\n#### Possible investigation steps\n\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Contact the account and system owners and confirm whether they are aware of this activity.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Check the value assigned to the 16th bit of the string on the `winlog.event_data.AttributeValue` field:\n - Account Operators eq 1\n - Server Operators eq 2\n - Print Operators eq 4\n - Backup Operators eq 8\n The field value can range from 0 to f (15). If more than one group is specified, the values will be summed together; for example, Backup Operators and Print Operators will set the `c` value on the bit.\n\n### False positive analysis\n\n- While this modification can be done legitimately, it is not a best practice. Any potential benign true positive (B-TP) should be mapped and reviewed by the security team for alternatives as this weakens the security of the privileged group.\n\n### Response and remediation\n\n- The change can be reverted by setting the dwAdminSDExMask (16th bit) to 0 in dSHeuristics.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n\n", - "query": "any where event.action == \"Directory Service Changes\" and\n event.code == \"5136\" and\n winlog.event_data.AttributeLDAPDisplayName : \"dSHeuristics\" and\n length(winlog.event_data.AttributeValue) > 15 and\n winlog.event_data.AttributeValue regex~ \"[0-9]{15}([1-9a-f]).*\"\n", - "references": [ - "https://www.cert.ssi.gouv.fr/uploads/guide-ad.html#dsheuristics_bad", - "https://petri.com/active-directory-security-understanding-adminsdholder-object" - ], - "related_integrations": [ - { - "package": "system", - "version": "^1.6.4" - }, - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.code", - "type": "keyword" - }, - { - "ecs": false, - "name": "winlog.event_data.AttributeLDAPDisplayName", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.AttributeValue", - "type": "unknown" - } - ], - "risk_score": 73, - "rule_id": "61d29caf-6c15-4d1e-9ccb-7ad12ccc0bc7", - "setup": "\nThe 'Audit Directory Service Changes' logging policy must be configured for (Success).\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nPolicies >\nWindows Settings >\nSecurity Settings >\nAdvanced Audit Policies Configuration >\nAudit Policies >\nDS Access >\nAudit Directory Service Changes (Success)\n```\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", - "severity": "high", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Data Source: Active Directory", - "Resources: Investigation Guide", - "Use Case: Active Directory Monitoring" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1078", - "name": "Valid Accounts", - "reference": "https://attack.mitre.org/techniques/T1078/", - "subtechnique": [ - { - "id": "T1078.002", - "name": "Domain Accounts", - "reference": "https://attack.mitre.org/techniques/T1078/002/" - } - ] - }, - { - "id": "T1098", - "name": "Account Manipulation", - "reference": "https://attack.mitre.org/techniques/T1098/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 109 - }, - "id": "61d29caf-6c15-4d1e-9ccb-7ad12ccc0bc7_109", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/63e381a6-0ffe-4afb-9a26-72a59ad16d7b_2.json b/packages/security_detection_engine/kibana/security_rule/63e381a6-0ffe-4afb-9a26-72a59ad16d7b_2.json new file mode 100644 index 000000000000..6b94d4222ac1 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/63e381a6-0ffe-4afb-9a26-72a59ad16d7b_2.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies attempts to access sensitive registry hives which contain credentials from the registry backup folder.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.file*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Sensitive Registry Hive Access via RegBack", + "note": "## Triage and analysis\n\n### Investigating Sensitive Registry Hive Access via RegBack\n\nCollecting registry hives is a common way to access credential information as some hives store credential material.\n\nFor example, the SAM hive stores locally cached credentials (SAM Secrets), and the SECURITY hive stores domain cached credentials (LSA secrets).\n\nDumping these hives in combination with the SYSTEM hive enables the attacker to decrypt these secrets.\n\n#### Possible investigation steps\n\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Contact the account owner and confirm whether they are aware of this activity.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Investigate if the credential material was exfiltrated or processed locally by other tools.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (e.g., 4624) to the target host.\n\n### False positive analysis\n\n- Administrators can export registry hives for backup purposes. Check whether the user is legitamitely performing this kind of activity.\n\n### Related rules\n\n- Registry Hive File Creation via SMB - a4c7473a-5cb4-4bc1-9d06-e4a75adbc494\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Reimage the host operating system and restore compromised files to clean versions.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "file where host.os.type == \"windows\" and \n event.action == \"open\" and event.outcome == \"success\" and process.executable != null and \n file.path :\n (\"?:\\\\Windows\\\\System32\\\\config\\\\RegBack\\\\SAM\",\n \"?:\\\\Windows\\\\System32\\\\config\\\\RegBack\\\\SECURITY\",\n \"?:\\\\Windows\\\\System32\\\\config\\\\RegBack\\\\SYSTEM\") and \n not (\n user.id == \"S-1-5-18\" and process.executable : (\n \"?:\\\\Windows\\\\system32\\\\taskhostw.exe\", \"?:\\\\Windows\\\\system32\\\\taskhost.exe\"\n ))\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.outcome", + "type": "keyword" + }, + { + "ecs": true, + "name": "file.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.id", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "63e381a6-0ffe-4afb-9a26-72a59ad16d7b", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Credential Access", + "Resources: Investigation Guide", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1003", + "name": "OS Credential Dumping", + "reference": "https://attack.mitre.org/techniques/T1003/", + "subtechnique": [ + { + "id": "T1003.002", + "name": "Security Account Manager", + "reference": "https://attack.mitre.org/techniques/T1003/002/" + }, + { + "id": "T1003.004", + "name": "LSA Secrets", + "reference": "https://attack.mitre.org/techniques/T1003/004/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 2 + }, + "id": "63e381a6-0ffe-4afb-9a26-72a59ad16d7b_2", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/66883649-f908-4a5b-a1e0-54090a1d3a32_112.json b/packages/security_detection_engine/kibana/security_rule/66883649-f908-4a5b-a1e0-54090a1d3a32_112.json deleted file mode 100644 index 82b8411dabf9..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/66883649-f908-4a5b-a1e0-54090a1d3a32_112.json +++ /dev/null @@ -1,137 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Adversaries may implement command and control (C2) communications that use common web services to hide their activity. This attack technique is typically targeted at an organization and uses web services common to the victim network, which allows the adversary to blend into legitimate traffic activity. These popular services are typically targeted since they have most likely been used before compromise, which helps malicious traffic blend in.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.network-*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Connection to Commonly Abused Web Services", - "note": "## Triage and analysis\n\n### Investigating Connection to Commonly Abused Web Services\n\nAdversaries may use an existing, legitimate external Web service as a means for relaying data to/from a compromised system. Popular websites and social media acting as a mechanism for C2 may give a significant amount of cover due to the likelihood that hosts within a network are already communicating with them prior to a compromise.\n\nThis rule looks for processes outside known legitimate program locations communicating with a list of services that can be abused for exfiltration or command and control.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n> This investigation guide uses the [Investigate Markdown Plugin](https://www.elastic.co/guide/en/security/master/interactive-investigation-guides.html) introduced in Elastic Stack version 8.8.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n - !{investigate{\"label\":\"Alerts associated with the user in the last 48h\",\"providers\":[[{\"excluded\":false,\"field\":\"event.kind\",\"queryType\":\"phrase\",\"value\":\"signal\",\"valueType\":\"string\"},{\"excluded\":false,\"field\":\"user.id\",\"queryType\":\"phrase\",\"value\":\"{{user.id}}\",\"valueType\":\"string\"}]],\"relativeFrom\":\"now-48h/h\",\"relativeTo\":\"now\"}}\n - !{investigate{\"label\":\"Alerts associated with the host in the last 48h\",\"providers\":[[{\"excluded\":false,\"field\":\"event.kind\",\"queryType\":\"phrase\",\"value\":\"signal\",\"valueType\":\"string\"},{\"excluded\":false,\"field\":\"host.name\",\"queryType\":\"phrase\",\"value\":\"{{host.name}}\",\"valueType\":\"string\"}]],\"relativeFrom\":\"now-48h/h\",\"relativeTo\":\"now\"}}\n- Verify whether the digital signature exists in the executable.\n- Identify the operation type (upload, download, tunneling, etc.).\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the process executable using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - !{investigate{\"label\":\"Investigate the Subject Process Network Events\",\"providers\":[[{\"excluded\":false,\"field\":\"process.entity_id\",\"queryType\":\"phrase\",\"value\":\"{{process.entity_id}}\",\"valueType\":\"string\"},{\"excluded\":false,\"field\":\"event.category\",\"queryType\":\"phrase\",\"value\":\"network\",\"valueType\":\"string\"}]]}}\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n### False positive analysis\n\n- This rule has a high chance to produce false positives because it detects communication with legitimate services. Noisy false positives can be added as exceptions.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "network where host.os.type == \"windows\" and network.protocol == \"dns\" and\n process.name != null and user.id not in (\"S-1-5-18\", \"S-1-5-19\", \"S-1-5-20\") and\n /* Add new WebSvc domains here */\n dns.question.name :\n (\n \"raw.githubusercontent.*\",\n \"pastebin.*\",\n \"paste4btc.com\",\n \"paste.ee\",\n \"ghostbin.com\",\n \"drive.google.com\",\n \"?.docs.live.net\",\n \"api.dropboxapi.*\",\n \"content.dropboxapi.*\",\n \"dl.dropboxusercontent.*\",\n \"api.onedrive.com\",\n \"*.onedrive.org\",\n \"onedrive.live.com\",\n \"filebin.net\",\n \"*.ngrok.io\",\n \"ngrok.com\",\n \"*.portmap.*\",\n \"*serveo.net\",\n \"*localtunnel.me\",\n \"*pagekite.me\",\n \"*localxpose.io\",\n \"*notabug.org\",\n \"rawcdn.githack.*\",\n \"paste.nrecom.net\",\n \"zerobin.net\",\n \"controlc.com\",\n \"requestbin.net\",\n \"slack.com\",\n \"api.slack.com\",\n \"slack-redir.net\",\n \"slack-files.com\",\n \"cdn.discordapp.com\",\n \"discordapp.com\",\n \"discord.com\",\n \"apis.azureedge.net\",\n \"cdn.sql.gg\",\n \"?.top4top.io\",\n \"top4top.io\",\n \"www.uplooder.net\",\n \"*.cdnmegafiles.com\",\n \"transfer.sh\",\n \"gofile.io\",\n \"updates.peer2profit.com\",\n \"api.telegram.org\",\n \"t.me\",\n \"meacz.gq\",\n \"rwrd.org\",\n \"*.publicvm.com\",\n \"*.blogspot.com\",\n \"api.mylnikov.org\",\n \"file.io\",\n \"stackoverflow.com\",\n \"*files.1drv.com\",\n \"api.anonfile.com\",\n \"*hosting-profi.de\",\n \"ipbase.com\",\n \"ipfs.io\",\n \"*up.freeo*.space\",\n \"api.mylnikov.org\",\n \"script.google.com\",\n \"script.googleusercontent.com\",\n \"api.notion.com\",\n \"graph.microsoft.com\",\n \"*.sharepoint.com\",\n \"mbasic.facebook.com\",\n \"login.live.com\",\n \"api.gofile.io\",\n \"api.anonfiles.com\",\n \"api.notion.com\",\n \"api.trello.com\",\n \"gist.githubusercontent.com\",\n \"files.pythonhosted.org\",\n \"g.live.com\",\n \"*.zulipchat.com\") and\n \n /* Insert noisy false positives here */\n not (\n (\n process.executable : (\n \"?:\\\\Program Files\\\\*.exe\",\n \"?:\\\\Program Files (x86)\\\\*.exe\",\n \"?:\\\\Windows\\\\System32\\\\WWAHost.exe\",\n \"?:\\\\Windows\\\\System32\\\\smartscreen.exe\",\n \"?:\\\\Windows\\\\System32\\\\MicrosoftEdgeCP.exe\",\n \"?:\\\\ProgramData\\\\Microsoft\\\\Windows Defender\\\\Platform\\\\*\\\\MsMpEng.exe\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\BraveSoftware\\\\*\\\\Application\\\\brave.exe\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Vivaldi\\\\Application\\\\vivaldi.exe\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Programs\\\\Opera*\\\\opera.exe\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Programs\\\\Fiddler\\\\Fiddler.exe\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Programs\\\\Microsoft VS Code\\\\Code.exe\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Microsoft\\\\OneDrive\\\\OneDrive.exe\",\n \"?:\\\\Windows\\\\system32\\\\mobsync.exe\",\n \"?:\\\\Windows\\\\SysWOW64\\\\mobsync.exe\"\n )\n ) or\n \n /* Discord App */\n (process.name : \"Discord.exe\" and (process.code_signature.subject_name : \"Discord Inc.\" and\n process.code_signature.trusted == true) and dns.question.name : (\"discord.com\", \"cdn.discordapp.com\", \"discordapp.com\")\n ) or \n\n /* MS Sharepoint */\n (process.name : \"Microsoft.SharePoint.exe\" and (process.code_signature.subject_name : \"Microsoft Corporation\" and\n process.code_signature.trusted == true) and dns.question.name : \"onedrive.live.com\"\n ) or \n\n /* Firefox */\n (process.name : \"firefox.exe\" and (process.code_signature.subject_name : \"Mozilla Corporation\" and\n process.code_signature.trusted == true)\n ) or \n\n /* Dropbox */\n (process.name : \"Dropbox.exe\" and (process.code_signature.subject_name : \"Dropbox, Inc\" and\n process.code_signature.trusted == true) and dns.question.name : (\"api.dropboxapi.com\", \"*.dropboxusercontent.com\")\n ) or \n\n /* Obsidian - Plugins are stored on raw.githubusercontent.com */\n (process.name : \"Obsidian.exe\" and (process.code_signature.subject_name : \"Dynalist Inc\" and\n process.code_signature.trusted == true) and dns.question.name : \"raw.githubusercontent.com\"\n ) or \n\n /* WebExperienceHostApp */\n (process.name : \"WebExperienceHostApp.exe\" and (process.code_signature.subject_name : \"Microsoft Windows\" and\n process.code_signature.trusted == true) and dns.question.name : (\"onedrive.live.com\", \"skyapi.onedrive.live.com\")\n ) or\n\n (process.code_signature.subject_name : \"Microsoft *\" and process.code_signature.trusted == true and\n dns.question.name : (\"*.sharepoint.com\", \"graph.microsoft.com\", \"g.live.com\", \"login.live.com\", \"login.live.com\")) or\n\n (process.code_signature.trusted == true and\n process.code_signature.subject_name :\n (\"Johannes Schindelin\",\n \"Redis Inc.\",\n \"Slack Technologies, LLC\",\n \"Cisco Systems, Inc.\",\n \"Dropbox, Inc\",\n \"Amazon.com Services LLC\"))\n ) \n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "dns.question.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "network.protocol", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.code_signature.subject_name", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.code_signature.trusted", - "type": "boolean" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 21, - "rule_id": "66883649-f908-4a5b-a1e0-54090a1d3a32", - "severity": "low", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Command and Control", - "Resources: Investigation Guide", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0011", - "name": "Command and Control", - "reference": "https://attack.mitre.org/tactics/TA0011/" - }, - "technique": [ - { - "id": "T1102", - "name": "Web Service", - "reference": "https://attack.mitre.org/techniques/T1102/" - }, - { - "id": "T1568", - "name": "Dynamic Resolution", - "reference": "https://attack.mitre.org/techniques/T1568/", - "subtechnique": [ - { - "id": "T1568.002", - "name": "Domain Generation Algorithms", - "reference": "https://attack.mitre.org/techniques/T1568/002/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0010", - "name": "Exfiltration", - "reference": "https://attack.mitre.org/tactics/TA0010/" - }, - "technique": [ - { - "id": "T1567", - "name": "Exfiltration Over Web Service", - "reference": "https://attack.mitre.org/techniques/T1567/", - "subtechnique": [ - { - "id": "T1567.001", - "name": "Exfiltration to Code Repository", - "reference": "https://attack.mitre.org/techniques/T1567/001/" - }, - { - "id": "T1567.002", - "name": "Exfiltration to Cloud Storage", - "reference": "https://attack.mitre.org/techniques/T1567/002/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 112 - }, - "id": "66883649-f908-4a5b-a1e0-54090a1d3a32_112", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/670b3b5a-35e5-42db-bd36-6c5b9b4b7313_8.json b/packages/security_detection_engine/kibana/security_rule/670b3b5a-35e5-42db-bd36-6c5b9b4b7313_8.json deleted file mode 100644 index 98f3297d9a57..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/670b3b5a-35e5-42db-bd36-6c5b9b4b7313_8.json +++ /dev/null @@ -1,94 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identify the modification of the msPKIAccountCredentials attribute in an Active Directory User Object. Attackers can abuse the credentials roaming feature to overwrite an arbitrary file for privilege escalation. ms-PKI-AccountCredentials contains binary large objects (BLOBs) of encrypted credential objects from the credential manager store, private keys, certificates, and certificate requests.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-system.*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Modification of the msPKIAccountCredentials", - "query": "event.action:\"Directory Service Changes\" and event.code:\"5136\" and\n winlog.event_data.AttributeLDAPDisplayName:\"msPKIAccountCredentials\" and winlog.event_data.OperationType:\"%%14674\" and\n not winlog.event_data.SubjectUserSid : \"S-1-5-18\"\n", - "references": [ - "https://www.mandiant.com/resources/blog/apt29-windows-credential-roaming", - "https://social.technet.microsoft.com/wiki/contents/articles/11483.windows-credential-roaming.aspx", - "https://learn.microsoft.com/en-us/windows/security/threat-protection/auditing/event-5136" - ], - "related_integrations": [ - { - "package": "system", - "version": "^1.6.4" - }, - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.code", - "type": "keyword" - }, - { - "ecs": false, - "name": "winlog.event_data.AttributeLDAPDisplayName", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.OperationType", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.SubjectUserSid", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "670b3b5a-35e5-42db-bd36-6c5b9b4b7313", - "setup": "\nThe 'Audit Directory Service Changes' logging policy must be configured for (Success, Failure).\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nPolicies >\nWindows Settings >\nSecurity Settings >\nAdvanced Audit Policies Configuration >\nAudit Policies >\nDS Access >\nAudit Directory Service Changes (Success,Failure)\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Data Source: Active Directory", - "Tactic: Privilege Escalation", - "Use Case: Active Directory Monitoring" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1068", - "name": "Exploitation for Privilege Escalation", - "reference": "https://attack.mitre.org/techniques/T1068/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 8 - }, - "id": "670b3b5a-35e5-42db-bd36-6c5b9b4b7313_8", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/6839c821-011d-43bd-bd5b-acff00257226_108.json b/packages/security_detection_engine/kibana/security_rule/6839c821-011d-43bd-bd5b-acff00257226_108.json new file mode 100644 index 000000000000..74c07c5788fa --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/6839c821-011d-43bd-bd5b-acff00257226_108.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "The Debugger and SilentProcessExit registry keys can allow an adversary to intercept the execution of files, causing a different process to be executed. This functionality can be abused by an adversary to establish persistence.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Image File Execution Options Injection", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.value : (\"Debugger\", \"MonitorProcess\") and length(registry.data.strings) > 0 and\n registry.path : (\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Image File Execution Options\\\\*.exe\\\\Debugger\",\n \"HKLM\\\\SOFTWARE\\\\WOW6432Node\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Image File Execution Options\\\\*\\\\Debugger\",\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\SilentProcessExit\\\\*\\\\MonitorProcess\",\n \"HKLM\\\\SOFTWARE\\\\WOW6432Node\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\SilentProcessExit\\\\*\\\\MonitorProcess\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Image File Execution Options\\\\*.exe\\\\Debugger\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\WOW6432Node\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Image File Execution Options\\\\*\\\\Debugger\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\SilentProcessExit\\\\*\\\\MonitorProcess\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\WOW6432Node\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\SilentProcessExit\\\\*\\\\MonitorProcess\"\n ) and\n /* add FPs here */\n not registry.data.strings regex~ (\"\"\"C:\\\\Program Files( \\(x86\\))?\\\\ThinKiosk\\\\thinkiosk\\.exe\"\"\", \"\"\".*\\\\PSAppDeployToolkit\\\\.*\"\"\")\n", + "references": [ + "https://oddvar.moe/2018/04/10/persistence-using-globalflags-in-image-file-execution-options-hidden-from-autoruns-exe/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "6839c821-011d-43bd-bd5b-acff00257226", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1546", + "name": "Event Triggered Execution", + "reference": "https://attack.mitre.org/techniques/T1546/", + "subtechnique": [ + { + "id": "T1546.012", + "name": "Image File Execution Options Injection", + "reference": "https://attack.mitre.org/techniques/T1546/012/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 108 + }, + "id": "6839c821-011d-43bd-bd5b-acff00257226_108", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/689b9d57-e4d5-4357-ad17-9c334609d79a_108.json b/packages/security_detection_engine/kibana/security_rule/689b9d57-e4d5-4357-ad17-9c334609d79a_108.json new file mode 100644 index 000000000000..357786adb116 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/689b9d57-e4d5-4357-ad17-9c334609d79a_108.json @@ -0,0 +1,154 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "A scheduled task was created by a Windows script via cscript.exe, wscript.exe or powershell.exe. This can be abused by an adversary to establish persistence.", + "false_positives": [ + "Legitimate scheduled tasks may be created during installation of new software." + ], + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-endpoint.events.library-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Scheduled Task Created by a Windows Script", + "note": "## Triage and analysis\n\nDecode the base64 encoded Tasks Actions registry value to investigate the task's configured action.", + "query": "sequence by host.id with maxspan = 30s\n [any where host.os.type == \"windows\" and \n (event.category : (\"library\", \"driver\") or (event.category == \"process\" and event.action : \"Image loaded*\")) and\n (?dll.name : \"taskschd.dll\" or file.name : \"taskschd.dll\") and\n process.name : (\"cscript.exe\", \"wscript.exe\", \"powershell.exe\", \"pwsh.exe\", \"powershell_ise.exe\")]\n [registry where host.os.type == \"windows\" and event.type == \"change\" and registry.value : \"Actions\" and\n registry.path : (\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Schedule\\\\TaskCache\\\\Tasks\\\\*\\\\Actions\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Schedule\\\\TaskCache\\\\Tasks\\\\*\\\\Actions\"\n )]\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "dll.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.category", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "file.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.id", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "689b9d57-e4d5-4357-ad17-9c334609d79a", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Execution", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1053", + "name": "Scheduled Task/Job", + "reference": "https://attack.mitre.org/techniques/T1053/", + "subtechnique": [ + { + "id": "T1053.005", + "name": "Scheduled Task", + "reference": "https://attack.mitre.org/techniques/T1053/005/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0002", + "name": "Execution", + "reference": "https://attack.mitre.org/tactics/TA0002/" + }, + "technique": [ + { + "id": "T1059", + "name": "Command and Scripting Interpreter", + "reference": "https://attack.mitre.org/techniques/T1059/", + "subtechnique": [ + { + "id": "T1059.001", + "name": "PowerShell", + "reference": "https://attack.mitre.org/techniques/T1059/001/" + }, + { + "id": "T1059.005", + "name": "Visual Basic", + "reference": "https://attack.mitre.org/techniques/T1059/005/" + } + ] + } + ] + } + ], + "type": "eql", + "version": 108 + }, + "id": "689b9d57-e4d5-4357-ad17-9c334609d79a_108", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/6e9130a5-9be6-48e5-943a-9628bfc74b18_105.json b/packages/security_detection_engine/kibana/security_rule/6e9130a5-9be6-48e5-943a-9628bfc74b18_105.json deleted file mode 100644 index 1e194dad0f1e..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/6e9130a5-9be6-48e5-943a-9628bfc74b18_105.json +++ /dev/null @@ -1,76 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects modifications in the AdminSDHolder object. Attackers can abuse the SDProp process to implement a persistent backdoor in Active Directory. SDProp compares the permissions on protected objects with those defined on the AdminSDHolder object. If the permissions on any of the protected accounts and groups do not match, the permissions on the protected accounts and groups are reset to match those of the domain's AdminSDHolder object, regaining their Administrative Privileges.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-system.*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "AdminSDHolder Backdoor", - "query": "event.action:\"Directory Service Changes\" and event.code:5136 and\n winlog.event_data.ObjectDN:CN=AdminSDHolder,CN=System*\n", - "references": [ - "https://adsecurity.org/?p=1906", - "https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/appendix-c--protected-accounts-and-groups-in-active-directory#adminsdholder" - ], - "related_integrations": [ - { - "package": "system", - "version": "^1.6.4" - }, - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.code", - "type": "keyword" - }, - { - "ecs": false, - "name": "winlog.event_data.ObjectDN", - "type": "unknown" - } - ], - "risk_score": 73, - "rule_id": "6e9130a5-9be6-48e5-943a-9628bfc74b18", - "severity": "high", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Use Case: Active Directory Monitoring", - "Data Source: Active Directory" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 105 - }, - "id": "6e9130a5-9be6-48e5-943a-9628bfc74b18_105", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/70d12c9c-0dbd-4a1a-bc44-1467502c9cf6_109.json b/packages/security_detection_engine/kibana/security_rule/70d12c9c-0dbd-4a1a-bc44-1467502c9cf6_109.json new file mode 100644 index 000000000000..45bb485cacd2 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/70d12c9c-0dbd-4a1a-bc44-1467502c9cf6_109.json @@ -0,0 +1,122 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies use of the Windows Management Instrumentation StdRegProv (registry provider) to modify commonly abused registry locations for persistence.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Persistence via WMI Standard Registry Provider", + "note": "## Triage and analysis\n\n### Investigating Persistence via WMI Standard Registry Provider\n\nThe Windows Management Instrumentation (WMI) StdRegProv is a registry provider that allows users to manage registry keys and values on Windows systems. Adversaries may abuse this functionality to modify registry locations commonly used for persistence, enabling them to maintain unauthorized access to a system.\n\nThis rule identifies instances where the WMI StdRegProv is used to modify specific registry paths associated with persistence mechanisms.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate if the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Assess whether this behavior is prevalent in the environment by looking for similar occurrences across hosts.\n- Identify which process triggered this behavior.\n- Verify whether the file specified in the run key is signed.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Examine the file specified in the run key using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Benign true positives (B-TPs) can be added as exceptions if necessary.\n\n### Response and Remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.data.strings != null and process.name : \"WmiPrvSe.exe\" and\n registry.path : (\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Command Processor\\\\Autorun\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"HKLM\\\\Software\\\\WOW6432Node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\*\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\*\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnce\\\\*\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnceEx\\\\*\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnce\\\\*\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnceEx\\\\*\",\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\*\\\\ServiceDLL\",\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\*\\\\ImagePath\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Shell\\\\*\",\n \"HKEY_USERS\\\\*\\\\Environment\\\\UserInitMprLogonScript\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\Load\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Shell\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\System\\\\Shell\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Logoff\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Logon\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Shutdown\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Startup\\\\Script\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Ctf\\\\LangBarAddin\\\\*\\\\FilePath\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Exec\",\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Script\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Command Processor\\\\Autorun\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\WOW6432Node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnce\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnceEx\\\\*\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnce\\\\*\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnceEx\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\*\\\\ServiceDLL\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\*\\\\ImagePath\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Shell\\\\*\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Environment\\\\UserInitMprLogonScript\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\Load\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Shell\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\System\\\\Shell\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Logoff\\\\Script\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Logon\\\\Script\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Shutdown\\\\Script\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows\\\\System\\\\Scripts\\\\Startup\\\\Script\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Ctf\\\\LangBarAddin\\\\*\\\\FilePath\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Exec\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Internet Explorer\\\\Extensions\\\\*\\\\Script\"\n )\n", + "references": [ + "https://docs.microsoft.com/en-us/previous-versions/windows/desktop/regprov/stdregprov", + "https://www.elastic.co/security-labs/hunting-for-persistence-using-elastic-security-part-1" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "70d12c9c-0dbd-4a1a-bc44-1467502c9cf6", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1543", + "name": "Create or Modify System Process", + "reference": "https://attack.mitre.org/techniques/T1543/", + "subtechnique": [ + { + "id": "T1543.003", + "name": "Windows Service", + "reference": "https://attack.mitre.org/techniques/T1543/003/" + } + ] + }, + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.001", + "name": "Registry Run Keys / Startup Folder", + "reference": "https://attack.mitre.org/techniques/T1547/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0002", + "name": "Execution", + "reference": "https://attack.mitre.org/tactics/TA0002/" + }, + "technique": [ + { + "id": "T1047", + "name": "Windows Management Instrumentation", + "reference": "https://attack.mitre.org/techniques/T1047/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 109 + }, + "id": "70d12c9c-0dbd-4a1a-bc44-1467502c9cf6_109", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/7164081a-3930-11ed-a261-0242ac120002_3.json b/packages/security_detection_engine/kibana/security_rule/7164081a-3930-11ed-a261-0242ac120002_3.json deleted file mode 100644 index 51a01157a600..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/7164081a-3930-11ed-a261-0242ac120002_3.json +++ /dev/null @@ -1,109 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule detects a container deployed with one or more dangerously permissive Linux capabilities. An attacker with the ability to deploy a container with added capabilities could use this for further execution, lateral movement, or privilege escalation within a cluster. The capabilities detected in this rule have been used in container escapes to the host machine.", - "false_positives": [ - "Some container images require the addition of privileged capabilities. This rule leaves space for the exception of trusted container images. To add an exception, add the trusted container image name to the query field, kubernetes.audit.requestObject.spec.containers.image." - ], - "index": [ - "logs-kubernetes.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Kubernetes Container Created with Excessive Linux Capabilities", - "note": "## Triage and analysis\n\n### Investigating Kubernetes Container Created with Excessive Linux Capabilities\n\nLinux capabilities were designed to divide root privileges into smaller units. Each capability grants a thread just enough power to perform specific privileged tasks. In Kubernetes, containers are given a set of default capabilities that can be dropped or added to at the time of creation. Added capabilities entitle containers in a pod with additional privileges that can be used to change\ncore processes, change network settings of a cluster, or directly access the underlying host. The following have been used in container escape techniques:\n\nBPF - Allow creating BPF maps, loading BPF Type Format (BTF) data, retrieve JITed code of BPF programs, and more.\nDAC_READ_SEARCH - Bypass file read permission checks and directory read and execute permission checks.\nNET_ADMIN - Perform various network-related operations.\nSYS_ADMIN - Perform a range of system administration operations.\nSYS_BOOT - Use reboot(2) and kexec_load(2), reboot and load a new kernel for later execution.\nSYS_MODULE - Load and unload kernel modules.\nSYS_PTRACE - Trace arbitrary processes using ptrace(2).\nSYS_RAWIO - Perform I/O port operations (iopl(2) and ioperm(2)).\nSYSLOG - Perform privileged syslog(2) operations.\n\n### False positive analysis\n\n- While these capabilities are not included by default in containers, some legitimate images may need to add them. This rule leaves space for the exception of trusted container images. To add an exception, add the trusted container image name to the query field, kubernetes.audit.requestObject.spec.containers.image.", - "query": "event.dataset: kubernetes.audit_logs\n and kubernetes.audit.annotations.authorization_k8s_io/decision:\"allow\"\n and kubernetes.audit.verb: create\n and kubernetes.audit.objectRef.resource: pods\n and kubernetes.audit.requestObject.spec.containers.securityContext.capabilities.add: (\"BPF\" or \"DAC_READ_SEARCH\" or \"NET_ADMIN\" or \"SYS_ADMIN\" or \"SYS_BOOT\" or \"SYS_MODULE\" or \"SYS_PTRACE\" or \"SYS_RAWIO\" or \"SYSLOG\")\n and not kubernetes.audit.requestObject.spec.containers.image : (\"docker.elastic.co/beats/elastic-agent:8.4.0\" or \"rancher/klipper-lb:v0.3.5\" or \"\")\n", - "references": [ - "https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-capabilities-for-a-container", - "https://0xn3va.gitbook.io/cheat-sheets/container/escaping/excessive-capabilities", - "https://man7.org/linux/man-pages/man7/capabilities.7.html", - "https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities" - ], - "related_integrations": [ - { - "package": "kubernetes", - "version": "^1.4.1" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.dataset", - "type": "keyword" - }, - { - "ecs": false, - "name": "kubernetes.audit.annotations.authorization_k8s_io/decision", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.objectRef.resource", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.containers.image", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.containers.securityContext.capabilities.add", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.verb", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "7164081a-3930-11ed-a261-0242ac120002", - "setup": "The Kubernetes Fleet integration with Audit Logs enabled or similarly structured data is required to be compatible with this rule.", - "severity": "medium", - "tags": [ - "Data Source: Kubernetes", - "Tactic: Execution", - "Tactic: Privilege Escalation" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1611", - "name": "Escape to Host", - "reference": "https://attack.mitre.org/techniques/T1611/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1610", - "name": "Deploy Container", - "reference": "https://attack.mitre.org/techniques/T1610/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 3 - }, - "id": "7164081a-3930-11ed-a261-0242ac120002_3", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/764c8437-a581-4537-8060-1fdb0e92c92d_202.json b/packages/security_detection_engine/kibana/security_rule/764c8437-a581-4537-8060-1fdb0e92c92d_202.json deleted file mode 100644 index e2e4546f1688..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/764c8437-a581-4537-8060-1fdb0e92c92d_202.json +++ /dev/null @@ -1,108 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule detects an attempt to create or modify a pod using the host IPC namespace. This gives access to data used by any pod that also use the hosts IPC namespace. If any process on the host or any processes in a pod uses the hosts inter-process communication mechanisms (shared memory, semaphore arrays, message queues, etc.), an attacker can read/write to those same mechanisms. They may look for files in /dev/shm or use ipcs to check for any IPC facilities being used.", - "false_positives": [ - "An administrator or developer may want to use a pod that runs as root and shares the host's IPC, Network, and PID namespaces for debugging purposes. If something is going wrong in the cluster and there is no easy way to SSH onto the host nodes directly, a privileged pod of this nature can be useful for viewing things like iptable rules and network namespaces from the host's perspective. Add exceptions for trusted container images using the query field \"kubernetes.audit.requestObject.spec.container.image\"" - ], - "index": [ - "logs-kubernetes.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Kubernetes Pod Created With HostIPC", - "note": "", - "query": "event.dataset : \"kubernetes.audit_logs\"\n and kubernetes.audit.annotations.authorization_k8s_io/decision:\"allow\"\n and kubernetes.audit.objectRef.resource:\"pods\"\n and kubernetes.audit.verb:(\"create\" or \"update\" or \"patch\")\n and kubernetes.audit.requestObject.spec.hostIPC:true\n and not kubernetes.audit.requestObject.spec.containers.image: (\"docker.elastic.co/beats/elastic-agent:8.4.0\")\n", - "references": [ - "https://research.nccgroup.com/2021/11/10/detection-engineering-for-kubernetes-clusters/#part3-kubernetes-detections", - "https://kubernetes.io/docs/concepts/security/pod-security-policy/#host-namespaces", - "https://bishopfox.com/blog/kubernetes-pod-privilege-escalation" - ], - "related_integrations": [ - { - "package": "kubernetes", - "version": "^1.4.1" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.dataset", - "type": "keyword" - }, - { - "ecs": false, - "name": "kubernetes.audit.annotations.authorization_k8s_io/decision", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.objectRef.resource", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.containers.image", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.hostIPC", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.verb", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "764c8437-a581-4537-8060-1fdb0e92c92d", - "setup": "The Kubernetes Fleet integration with Audit Logs enabled or similarly structured data is required to be compatible with this rule.", - "severity": "medium", - "tags": [ - "Data Source: Kubernetes", - "Tactic: Execution", - "Tactic: Privilege Escalation" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1611", - "name": "Escape to Host", - "reference": "https://attack.mitre.org/techniques/T1611/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1610", - "name": "Deploy Container", - "reference": "https://attack.mitre.org/techniques/T1610/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 202 - }, - "id": "764c8437-a581-4537-8060-1fdb0e92c92d_202", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/764c9fcd-4c4c-41e6-a0c7-d6c46c2eff66_9.json b/packages/security_detection_engine/kibana/security_rule/764c9fcd-4c4c-41e6-a0c7-d6c46c2eff66_9.json deleted file mode 100644 index 27ea8045fbe7..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/764c9fcd-4c4c-41e6-a0c7-d6c46c2eff66_9.json +++ /dev/null @@ -1,129 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identify access to sensitive Active Directory object attributes that contains credentials and decryption keys such as unixUserPassword, ms-PKI-AccountCredentials and msPKI-CredentialRoamingTokens.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-system.*", - "logs-windows.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Access to a Sensitive LDAP Attribute", - "query": "any where event.action == \"Directory Service Access\" and event.code == \"4662\" and\n\n not winlog.event_data.SubjectUserSid : \"S-1-5-18\" and\n\n winlog.event_data.Properties : (\n /* unixUserPassword */\n \"*612cb747-c0e8-4f92-9221-fdd5f15b550d*\",\n\n /* ms-PKI-AccountCredentials */\n \"*b8dfa744-31dc-4ef1-ac7c-84baf7ef9da7*\",\n\n /* ms-PKI-DPAPIMasterKeys */\n \"*b3f93023-9239-4f7c-b99c-6745d87adbc2*\",\n\n /* msPKI-CredentialRoamingTokens */\n \"*b7ff5a38-0818-42b0-8110-d3d154c97f24*\"\n ) and\n\n /*\n Excluding noisy AccessMasks\n 0x0 undefined and 0x100 Control Access\n https://learn.microsoft.com/en-us/windows/security/threat-protection/auditing/event-4662\n */\n not winlog.event_data.AccessMask in (\"0x0\", \"0x100\")\n", - "references": [ - "https://www.mandiant.com/resources/blog/apt29-windows-credential-roaming", - "https://social.technet.microsoft.com/wiki/contents/articles/11483.windows-credential-roaming.aspx", - "https://learn.microsoft.com/en-us/windows/security/threat-protection/auditing/event-5136" - ], - "related_integrations": [ - { - "package": "system", - "version": "^1.6.4" - }, - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.code", - "type": "keyword" - }, - { - "ecs": false, - "name": "winlog.event_data.AccessMask", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.Properties", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.SubjectUserSid", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "764c9fcd-4c4c-41e6-a0c7-d6c46c2eff66", - "setup": "\nThe 'Audit Directory Service Access' logging policy must be configured for (Success, Failure).\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nPolicies >\nWindows Settings >\nSecurity Settings >\nAdvanced Audit Policies Configuration >\nAudit Policies >\nDS Access >\nAudit Directory Service Access (Success,Failure)\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Credential Access", - "Tactic: Privilege Escalation", - "Use Case: Active Directory Monitoring", - "Data Source: Active Directory" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0006", - "name": "Credential Access", - "reference": "https://attack.mitre.org/tactics/TA0006/" - }, - "technique": [ - { - "id": "T1003", - "name": "OS Credential Dumping", - "reference": "https://attack.mitre.org/techniques/T1003/" - }, - { - "id": "T1552", - "name": "Unsecured Credentials", - "reference": "https://attack.mitre.org/techniques/T1552/", - "subtechnique": [ - { - "id": "T1552.004", - "name": "Private Keys", - "reference": "https://attack.mitre.org/techniques/T1552/004/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1078", - "name": "Valid Accounts", - "reference": "https://attack.mitre.org/techniques/T1078/", - "subtechnique": [ - { - "id": "T1078.002", - "name": "Domain Accounts", - "reference": "https://attack.mitre.org/techniques/T1078/002/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 9 - }, - "id": "764c9fcd-4c4c-41e6-a0c7-d6c46c2eff66_9", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/7787362c-90ff-4b1a-b313-8808b1020e64_1.json b/packages/security_detection_engine/kibana/security_rule/7787362c-90ff-4b1a-b313-8808b1020e64_1.json deleted file mode 100644 index 59b3cf55f081..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/7787362c-90ff-4b1a-b313-8808b1020e64_1.json +++ /dev/null @@ -1,131 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Monitors for the elevation of regular user permissions to root permissions through a previously unknown executable. Attackers may attempt to evade detection by hijacking the execution flow and hooking certain functions/syscalls through a rootkit in order to provide easy access to root via a special modified command.", - "from": "now-9m", - "history_window_start": "now-14d", - "index": [ - "logs-endpoint.events.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "UID Elevation from Previously Unknown Executable", - "new_terms_fields": [ - "host.id", - "process.executable", - "process.command_line" - ], - "query": "host.os.type:\"linux\" and event.category:\"process\" and event.action:\"uid_change\" and event.type:\"change\" and user.id:\"0\"\nand process.parent.name:(\"bash\" or \"dash\" or \"sh\" or \"tcsh\" or \"csh\" or \"zsh\" or \"ksh\" or \"fish\") and not (\n process.executable:(\n /bin/* or /usr/bin/* or /sbin/* or /usr/sbin/* or /snap/* or /tmp/newroot/* or /var/lib/docker/* or /usr/local/*\n ) or\n process.name:(\n \"bash\" or \"dash\" or \"sh\" or \"tcsh\" or \"csh\" or \"zsh\" or \"ksh\" or \"fish\" or \"sudo\" or \"su\" or \"apt\" or \"apt-get\" or\n \"aptitude\" or \"squid\" or \"snap\" or \"fusermount\" or \"pkexec\" or \"umount\"\n ) or\n process.args:/usr/bin/python*\n)\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.args", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.parent.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "7787362c-90ff-4b1a-b313-8808b1020e64", - "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows\nthe Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click Add integrations.\n- In the query bar, search for Elastic Defend and select the integration to see more details about it.\n- Click Add Elastic Defend.\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either Traditional Endpoints or Cloud Workloads.\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest to select \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in New agent policy name. If other agent policies already exist, you can click the Existing hosts tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click Save and Continue.\n- To complete the integration, select Add Elastic Agent to your hosts and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Privilege Escalation", - "Tactic: Defense Evasion", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1574", - "name": "Hijack Execution Flow", - "reference": "https://attack.mitre.org/techniques/T1574/", - "subtechnique": [ - { - "id": "T1574.013", - "name": "KernelCallbackTable", - "reference": "https://attack.mitre.org/techniques/T1574/013/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1014", - "name": "Rootkit", - "reference": "https://attack.mitre.org/techniques/T1014/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "new_terms", - "version": 1 - }, - "id": "7787362c-90ff-4b1a-b313-8808b1020e64_1", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/79f97b31-480e-4e63-a7f4-ede42bf2c6de_107.json b/packages/security_detection_engine/kibana/security_rule/79f97b31-480e-4e63-a7f4-ede42bf2c6de_107.json deleted file mode 100644 index c624c7343ba0..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/79f97b31-480e-4e63-a7f4-ede42bf2c6de_107.json +++ /dev/null @@ -1,100 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identify the modification of the msDS-KeyCredentialLink attribute in an Active Directory Computer or User Object. Attackers can abuse control over the object and create a key pair, append to raw public key in the attribute, and obtain persistent and stealthy access to the target user or computer object.", - "false_positives": [ - "Modifications in the msDS-KeyCredentialLink attribute can be done legitimately by the Azure AD Connect synchronization account or the ADFS service account. These accounts can be added as Exceptions." - ], - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-system.*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Potential Shadow Credentials added to AD Object", - "note": "## Triage and analysis\n\n### Investigating Potential Shadow Credentials added to AD Object\n\nThe msDS-KeyCredentialLink is an Active Directory (AD) attribute that links cryptographic certificates to a user or computer for domain authentication.\n\nAttackers with write privileges on this attribute over an object can abuse it to gain access to the object or maintain persistence. This means they can authenticate and perform actions on behalf of the exploited identity, and they can use Shadow Credentials to request Ticket Granting Tickets (TGTs) on behalf of the identity.\n\n#### Possible investigation steps\n\n- Identify whether Windows Hello for Business (WHfB) and/or Azure AD is used in the environment.\n - Review the event ID 4624 for logon events involving the subject identity (`winlog.event_data.SubjectUserName`).\n - Check whether the `source.ip` is the server running Azure AD Connect.\n- Contact the account and system owners and confirm whether they are aware of this activity.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Review the event IDs 4768 and 4769 for suspicious ticket requests involving the modified identity (`winlog.event_data.ObjectDN`).\n - Extract the source IP addresses from these events and use them as indicators of compromise (IoCs) to investigate whether the host is compromised and to scope the attacker's access to the environment.\n\n### False positive analysis\n\n- Administrators might use custom accounts on Azure AD Connect. If this is the case, make sure the account is properly secured. You can also create an exception for the account if expected activity makes too much noise in your environment.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n - Remove the Shadow Credentials from the object.\n- Investigate how the attacker escalated privileges and identify systems they used to conduct lateral movement. Use this information to determine ways the attacker could regain access to the environment.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n\n", - "query": "event.action:\"Directory Service Changes\" and event.code:\"5136\" and\n winlog.event_data.AttributeLDAPDisplayName:\"msDS-KeyCredentialLink\" and winlog.event_data.AttributeValue :B\\:828* and\n not winlog.event_data.SubjectUserName: MSOL_*\n", - "references": [ - "https://posts.specterops.io/shadow-credentials-abusing-key-trust-account-mapping-for-takeover-8ee1a53566ab", - "https://www.thehacker.recipes/ad/movement/kerberos/shadow-credentials", - "https://github.com/OTRF/Set-AuditRule", - "https://cyberstoph.org/posts/2022/03/detecting-shadow-credentials/" - ], - "related_integrations": [ - { - "package": "system", - "version": "^1.6.4" - }, - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.code", - "type": "keyword" - }, - { - "ecs": false, - "name": "winlog.event_data.AttributeLDAPDisplayName", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.AttributeValue", - "type": "unknown" - }, - { - "ecs": false, - "name": "winlog.event_data.SubjectUserName", - "type": "keyword" - } - ], - "risk_score": 73, - "rule_id": "79f97b31-480e-4e63-a7f4-ede42bf2c6de", - "setup": "\nThe 'Audit Directory Service Changes' logging policy must be configured for (Success, Failure).\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nPolicies >\nWindows Settings >\nSecurity Settings >\nAdvanced Audit Policies Configuration >\nAudit Policies >\nDS Access >\nAudit Directory Service Changes (Success,Failure)\n```\n\nThe above policy does not cover User objects, so we need to set up an AuditRule using https://github.com/OTRF/Set-AuditRule.\nAs this specifies the msDS-KeyCredentialLink Attribute GUID, it is expected to be low noise.\n\n```\nSet-AuditRule -AdObjectPath 'AD:\\CN=Users,DC=Domain,DC=com' -WellKnownSidType WorldSid -Rights WriteProperty -InheritanceFlags Children -AttributeGUID 5b47d60f-6090-40b2-9f37-2a4de88f3063 -AuditFlags Success\n```\n", - "severity": "high", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Credential Access", - "Data Source: Active Directory", - "Resources: Investigation Guide", - "Use Case: Active Directory Monitoring" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0006", - "name": "Credential Access", - "reference": "https://attack.mitre.org/tactics/TA0006/" - }, - "technique": [ - { - "id": "T1556", - "name": "Modify Authentication Process", - "reference": "https://attack.mitre.org/techniques/T1556/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 107 - }, - "id": "79f97b31-480e-4e63-a7f4-ede42bf2c6de_107", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/7fb500fa-8e24-4bd1-9480-2a819352602c_11.json b/packages/security_detection_engine/kibana/security_rule/7fb500fa-8e24-4bd1-9480-2a819352602c_11.json deleted file mode 100644 index db337408b597..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/7fb500fa-8e24-4bd1-9480-2a819352602c_11.json +++ /dev/null @@ -1,110 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects the creation of a systemd timer within any of the default systemd timer directories. Systemd timers can be used by an attacker to gain persistence, by scheduling the execution of a command or script. Similarly to cron/at, systemd timers can be set up to execute on boot time, or on a specific point in time, which allows attackers to regain access in case the connection to the infected asset was lost.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.file*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Systemd Timer Created", - "note": "## Triage and analysis\n\n### Investigating Systemd Timer Created\n\nSystemd timers are used for scheduling and automating recurring tasks or services on Linux systems. \n\nAttackers can leverage systemd timers to run scripts, commands, or malicious software at system boot or on a set time interval by creating a systemd timer and a corresponding systemd service file. \n\nThis rule monitors the creation of new systemd timer files, potentially indicating the creation of a persistence mechanism.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n> This investigation guide uses [placeholder fields](https://www.elastic.co/guide/en/security/current/osquery-placeholder-fields.html) to dynamically pass alert data into Osquery queries. Placeholder fields were introduced in Elastic Stack version 8.7.0. If you're using Elastic Stack version 8.6.0 or earlier, you'll need to manually adjust this investigation guide's queries to ensure they properly run.\n\n#### Possible Investigation Steps\n\n- Investigate the timer file that was created or modified.\n - !{osquery{\"label\":\"Osquery - Retrieve File Information\",\"query\":\"SELECT * FROM file WHERE path = {{file.path}}\"}}\n- Investigate the currently enabled systemd timers through the following command `sudo systemctl list-timers`.\n- Search for the systemd service file named similarly to the timer that was created.\n- Investigate whether any other files in any of the available systemd directories have been altered through OSQuery.\n - !{osquery{\"label\":\"Osquery - Retrieve File Listing Information\",\"query\":\"SELECT * FROM file WHERE (path LIKE '/etc/systemd/system/%' OR path LIKE '/usr/local/lib/systemd/system/%'\\nOR path LIKE '/lib/systemd/system/%' OR path LIKE '/usr/lib/systemd/system/%'\\nOR path LIKE '/home/{{user.name}}/.config/systemd/user/%' OR path LIKE '/home/{{user.name}}/.local/share/systemd/user/%'\\nOR path LIKE '/root/.config/systemd/user/%' OR path LIKE '/root/.local/share/systemd/user/%')\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Additional File Listing Information\",\"query\":\"SELECT f.path, u.username AS file_owner, g.groupname AS group_owner, datetime(f.atime, 'unixepoch') AS\\nfile_last_access_time, datetime(f.mtime, 'unixepoch') AS file_last_modified_time, datetime(f.ctime, 'unixepoch') AS\\nfile_last_status_change_time, datetime(f.btime, 'unixepoch') AS file_created_time, f.size AS size_bytes FROM file f LEFT\\nJOIN users u ON f.uid = u.uid LEFT JOIN groups g ON f.gid = g.gid WHERE ( path LIKE '/etc/systemd/system/%' OR path LIKE\\n'/usr/local/lib/systemd/system/%' OR path LIKE '/lib/systemd/system/%' OR path LIKE '/usr/lib/systemd/system/%' OR path\\nLIKE '/home/{{user.name}}/.config/systemd/user/%' OR path LIKE '/home/{{user.name}}/.local/share/systemd/user/%'\\nOR path LIKE '/root/.config/systemd/user/%' OR path LIKE '/root/.local/share/systemd/user/%')\\n\"}}\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence and whether they are located in expected locations.\n - !{osquery{\"label\":\"Osquery - Retrieve Running Processes by User\",\"query\":\"SELECT pid, username, name FROM processes p JOIN users u ON u.uid = p.uid ORDER BY username\"}}\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Investigate whether the altered scripts call other malicious scripts elsewhere on the file system. \n - If scripts or executables were dropped, retrieve the files and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - Check if the domain is newly registered or unexpected.\n - Check the reputation of the domain or IP address.\n - File access, modification, and creation activities.\n - Cron jobs, services and other persistence mechanisms.\n - !{osquery{\"label\":\"Osquery - Retrieve Crontab Information\",\"query\":\"SELECT * FROM crontab\"}}\n\n### False Positive Analysis\n\n- If this activity is related to new benign software installation activity, consider adding exceptions \u2014 preferably with a combination of user and command line conditions.\n- If this activity is related to a system administrator who uses systemd timers for administrative purposes, consider adding exceptions for this specific administrator user account. \n- Try to understand the context of the execution by thinking about the user, machine, or business purpose. A small number of endpoints, such as servers with unique software, might appear unusual but satisfy a specific business need.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Delete the service/timer or restore its original configuration.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Leverage the incident response data and logging to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "file where host.os.type == \"linux\" and event.action in (\"rename\", \"creation\") and file.path : (\n \"/etc/systemd/system/*\", \"/usr/local/lib/systemd/system/*\", \"/lib/systemd/system/*\",\n \"/usr/lib/systemd/system/*\", \"/home/*/.config/systemd/user/*\", \"/home/*/.local/share/systemd/user/*\",\n \"/root/.config/systemd/user/*\", \"/root/.local/share/systemd/user/*\"\n) and file.extension == \"timer\" and not (\n process.executable in (\n \"/bin/dpkg\", \"/usr/bin/dpkg\", \"/bin/dockerd\", \"/usr/bin/dockerd\", \"/usr/sbin/dockerd\", \"/bin/microdnf\",\n \"/usr/bin/microdnf\", \"/bin/rpm\", \"/usr/bin/rpm\", \"/bin/snapd\", \"/usr/bin/snapd\", \"/bin/yum\", \"/usr/bin/yum\",\n \"/bin/dnf\", \"/usr/bin/dnf\", \"/bin/podman\", \"/usr/bin/podman\", \"/bin/dnf-automatic\", \"/usr/bin/dnf-automatic\",\n \"/bin/pacman\", \"/usr/bin/pacman\", \"/usr/bin/dpkg-divert\", \"/bin/dpkg-divert\", \"/sbin/apk\", \"/usr/sbin/apk\",\n \"/usr/local/sbin/apk\", \"/usr/bin/apt\", \"/usr/sbin/pacman\", \"/bin/podman\", \"/usr/bin/podman\", \"/usr/bin/puppet\",\n \"/bin/puppet\", \"/opt/puppetlabs/puppet/bin/puppet\", \"/usr/bin/chef-client\", \"/bin/chef-client\",\n \"/bin/autossl_check\", \"/usr/bin/autossl_check\", \"/proc/self/exe\", \"/dev/fd/*\", \"/usr/bin/pamac-daemon\",\n \"/bin/pamac-daemon\", \"/usr/lib/snapd/snapd\", \"/usr/local/bin/dockerd\"\n ) or\n file.extension in (\"swp\", \"swpx\", \"swx\", \"dpkg-remove\") or\n file.Ext.original.extension == \"dpkg-new\" or\n process.executable : (\n \"/nix/store/*\", \"/var/lib/dpkg/*\", \"/tmp/vmis.*\", \"/snap/*\", \"/dev/fd/*\", \"/usr/lib/virtualbox/*\"\n ) or\n process.executable == null or\n (process.name == \"sed\" and file.name : \"sed*\") or\n (process.name == \"perl\" and file.name : \"e2scrub_all.tmp*\") \n)\n", - "references": [ - "https://opensource.com/article/20/7/systemd-timers", - "https://pberba.github.io/security/2022/01/30/linux-threat-hunting-for-persistence-systemd-timers-cron/" - ], - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": false, - "name": "file.Ext.original.extension", - "type": "unknown" - }, - { - "ecs": true, - "name": "file.extension", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - } - ], - "risk_score": 21, - "rule_id": "7fb500fa-8e24-4bd1-9480-2a819352602c", - "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "low", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Resources: Investigation Guide", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1053", - "name": "Scheduled Task/Job", - "reference": "https://attack.mitre.org/techniques/T1053/", - "subtechnique": [ - { - "id": "T1053.006", - "name": "Systemd Timers", - "reference": "https://attack.mitre.org/techniques/T1053/006/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 11 - }, - "id": "7fb500fa-8e24-4bd1-9480-2a819352602c_11", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/81fe9dc6-a2d7-4192-a2d8-eed98afc766a_111.json b/packages/security_detection_engine/kibana/security_rule/81fe9dc6-a2d7-4192-a2d8-eed98afc766a_111.json deleted file mode 100644 index 51dbcb8825c6..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/81fe9dc6-a2d7-4192-a2d8-eed98afc766a_111.json +++ /dev/null @@ -1,115 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identifies the use of .NET functionality for decompression and base64 decoding combined in PowerShell scripts, which malware and security tools heavily use to deobfuscate payloads and load them directly in memory to bypass defenses.", - "false_positives": [ - "Legitimate PowerShell Scripts which makes use of compression and encoding." - ], - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.powershell*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Suspicious Payload Encoded and Compressed", - "note": "## Triage and analysis\n\n### Investigating PowerShell Suspicious Payload Encoded and Compressed\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks. This makes it available for use in various environments, and creates an attractive way for attackers to execute code.\n\nAttackers can embed compressed and encoded payloads in scripts to load directly into the memory without touching the disk. This strategy can circumvent string and file-based security protections.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Examine file or network events from the involved PowerShell process for suspicious behavior.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the script using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (for example, 4624) to the target host after the registry modification.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately outside engineering or IT business units. As long as the analyst did not identify malware or suspicious activity related to the user or host, this alert can be dismissed.\n\n### Related rules\n\n- PowerShell PSReflect Script - 56f2e9b5-4803-4e44-a0a4-a52dc79d57fe\n- Potential Process Injection via PowerShell - 2e29e96a-b67c-455a-afe4-de6183431d0d\n- Suspicious .NET Reflection via PowerShell - e26f042e-c590-4e82-8e05-41e81bd822ad\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text : (\n (\n \"System.IO.Compression.DeflateStream\" or\n \"System.IO.Compression.GzipStream\" or\n \"IO.Compression.DeflateStream\" or\n \"IO.Compression.GzipStream\"\n ) and\n FromBase64String\n ) and\n not file.path: ?\\:\\\\\\\\ProgramData\\\\\\\\Microsoft\\\\\\\\Windows?Defender?Advanced?Threat?Protection\\\\\\\\Downloads\\\\\\\\* and\n not user.id : \"S-1-5-18\"\n", - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "81fe9dc6-a2d7-4192-a2d8-eed98afc766a", - "setup": "## Setup\n\nThe 'PowerShell Script Block Logging' logging policy must be enabled.\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Defense Evasion", - "Resources: Investigation Guide", - "Data Source: PowerShell Logs" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1027", - "name": "Obfuscated Files or Information", - "reference": "https://attack.mitre.org/techniques/T1027/" - }, - { - "id": "T1140", - "name": "Deobfuscate/Decode Files or Information", - "reference": "https://attack.mitre.org/techniques/T1140/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 111 - }, - "id": "81fe9dc6-a2d7-4192-a2d8-eed98afc766a_111", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/8a024633-c444-45c0-a4fe-78128d8c1ab6_6.json b/packages/security_detection_engine/kibana/security_rule/8a024633-c444-45c0-a4fe-78128d8c1ab6_6.json new file mode 100644 index 000000000000..ae5d6d0a96c2 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/8a024633-c444-45c0-a4fe-78128d8c1ab6_6.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies the creation of a symbolic link to a suspicious file or location. A symbolic link is a reference to a file or directory that acts as a pointer or shortcut, allowing users to access the target file or directory from a different location in the file system. An attacker can potentially leverage symbolic links for privilege escalation by tricking a privileged process into following the symbolic link to a sensitive file, giving the attacker access to data or capabilities they would not normally have.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Suspicious Symbolic Link Created", + "query": "process where host.os.type == \"linux\" and event.type == \"start\" and event.action == \"exec\" and\nprocess.name == \"ln\" and process.args in (\"-s\", \"-sf\") and \n (\n /* suspicious files */\n (process.args in (\"/etc/shadow\", \"/etc/shadow-\", \"/etc/shadow~\", \"/etc/gshadow\", \"/etc/gshadow-\") or \n (process.working_directory == \"/etc\" and process.args in (\"shadow\", \"shadow-\", \"shadow~\", \"gshadow\", \"gshadow-\"))) or \n \n /* suspicious bins */\n (process.args in (\"/bin/bash\", \"/bin/dash\", \"/bin/sh\", \"/bin/tcsh\", \"/bin/csh\", \"/bin/zsh\", \"/bin/ksh\", \"/bin/fish\") or \n (process.working_directory == \"/bin\" and process.args : (\"bash\", \"dash\", \"sh\", \"tcsh\", \"csh\", \"zsh\", \"ksh\", \"fish\"))) or \n (process.args in (\"/usr/bin/bash\", \"/usr/bin/dash\", \"/usr/bin/sh\", \"/usr/bin/tcsh\", \"/usr/bin/csh\", \"/usr/bin/zsh\", \"/usr/bin/ksh\", \"/usr/bin/fish\") or \n (process.working_directory == \"/usr/bin\" and process.args in (\"bash\", \"dash\", \"sh\", \"tcsh\", \"csh\", \"zsh\", \"ksh\", \"fish\"))) or\n \n /* suspicious locations */\n (process.args : (\"/etc/cron.d/*\", \"/etc/cron.daily/*\", \"/etc/cron.hourly/*\", \"/etc/cron.weekly/*\", \"/etc/cron.monthly/*\")) or\n (process.args : (\"/home/*/.ssh/*\", \"/root/.ssh/*\",\"/etc/sudoers.d/*\", \"/dev/shm/*\"))\n ) and \n process.parent.name in (\"bash\", \"dash\", \"ash\", \"sh\", \"tcsh\", \"csh\", \"zsh\", \"ksh\", \"fish\") and \n not user.Ext.real.id == \"0\" and not group.Ext.real.id == \"0\"\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": false, + "name": "group.Ext.real.id", + "type": "unknown" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.args", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.parent.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.working_directory", + "type": "keyword" + }, + { + "ecs": false, + "name": "user.Ext.real.id", + "type": "unknown" + } + ], + "risk_score": 21, + "rule_id": "8a024633-c444-45c0-a4fe-78128d8c1ab6", + "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Linux", + "Use Case: Threat Detection", + "Tactic: Privilege Escalation", + "Tactic: Credential Access", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0004", + "name": "Privilege Escalation", + "reference": "https://attack.mitre.org/tactics/TA0004/" + }, + "technique": [ + { + "id": "T1548", + "name": "Abuse Elevation Control Mechanism", + "reference": "https://attack.mitre.org/techniques/T1548/" + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1003", + "name": "OS Credential Dumping", + "reference": "https://attack.mitre.org/techniques/T1003/", + "subtechnique": [ + { + "id": "T1003.008", + "name": "/etc/passwd and /etc/shadow", + "reference": "https://attack.mitre.org/techniques/T1003/008/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 6 + }, + "id": "8a024633-c444-45c0-a4fe-78128d8c1ab6_6", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/8c81e506-6e82-4884-9b9a-75d3d252f967_107.json b/packages/security_detection_engine/kibana/security_rule/8c81e506-6e82-4884-9b9a-75d3d252f967_107.json new file mode 100644 index 000000000000..c3ca609ec225 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/8c81e506-6e82-4884-9b9a-75d3d252f967_107.json @@ -0,0 +1,128 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies potential behavior of SharpRDP, which is a tool that can be used to perform authenticated command execution against a remote target via Remote Desktop Protocol (RDP) for the purposes of lateral movement.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.process-*", + "logs-endpoint.events.registry-*", + "logs-endpoint.events.network-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Potential SharpRDP Behavior", + "query": "/* Incoming RDP followed by a new RunMRU string value set to cmd, powershell, taskmgr or tsclient, followed by process execution within 1m */\n\nsequence by host.id with maxspan=1m\n [network where host.os.type == \"windows\" and event.type == \"start\" and process.name : \"svchost.exe\" and destination.port == 3389 and\n network.direction : (\"incoming\", \"ingress\") and network.transport == \"tcp\" and\n source.ip != \"127.0.0.1\" and source.ip != \"::1\"\n ]\n\n [registry where host.os.type == \"windows\" and event.type == \"change\" and process.name : \"explorer.exe\" and\n registry.path : (\"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\RunMRU\\\\*\") and\n registry.data.strings : (\"cmd.exe*\", \"powershell.exe*\", \"taskmgr*\", \"\\\\\\\\tsclient\\\\*.exe\\\\*\")\n ]\n\n [process where host.os.type == \"windows\" and event.type == \"start\" and\n (process.parent.name : (\"cmd.exe\", \"powershell.exe\", \"taskmgr.exe\") or process.args : (\"\\\\\\\\tsclient\\\\*.exe\")) and\n not process.name : \"conhost.exe\"\n ]\n", + "references": [ + "https://posts.specterops.io/revisiting-remote-desktop-lateral-movement-8fb905cb46c3", + "https://github.com/sbousseaden/EVTX-ATTACK-SAMPLES/blob/master/Lateral%20Movement/LM_sysmon_3_12_13_1_SharpRDP.evtx" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "destination.port", + "type": "long" + }, + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.id", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "network.direction", + "type": "keyword" + }, + { + "ecs": true, + "name": "network.transport", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.args", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.parent.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "source.ip", + "type": "ip" + } + ], + "risk_score": 73, + "rule_id": "8c81e506-6e82-4884-9b9a-75d3d252f967", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Lateral Movement", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0008", + "name": "Lateral Movement", + "reference": "https://attack.mitre.org/tactics/TA0008/" + }, + "technique": [ + { + "id": "T1021", + "name": "Remote Services", + "reference": "https://attack.mitre.org/techniques/T1021/", + "subtechnique": [ + { + "id": "T1021.001", + "name": "Remote Desktop Protocol", + "reference": "https://attack.mitre.org/techniques/T1021/001/" + } + ] + } + ] + } + ], + "type": "eql", + "version": 107 + }, + "id": "8c81e506-6e82-4884-9b9a-75d3d252f967_107", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/8e2485b6-a74f-411b-bf7f-38b819f3a846_103.json b/packages/security_detection_engine/kibana/security_rule/8e2485b6-a74f-411b-bf7f-38b819f3a846_103.json new file mode 100644 index 000000000000..dfa63c34a8fc --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/8e2485b6-a74f-411b-bf7f-38b819f3a846_103.json @@ -0,0 +1,114 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies a potential Windows Server Update Services (WSUS) abuse to execute psexec to enable for lateral movement. WSUS is limited to executing Microsoft signed binaries, which limits the executables that can be used to tools published by Microsoft.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.process-*", + "logs-windows.sysmon_operational-*", + "endgame-*", + "logs-sentinel_one_cloud_funnel.*", + "logs-m365_defender.event-*", + "logs-system.security-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Potential WSUS Abuse for Lateral Movement", + "query": "process where host.os.type == \"windows\" and event.type == \"start\" and process.parent.name : \"wuauclt.exe\" and\nprocess.executable : \"?:\\\\Windows\\\\SoftwareDistribution\\\\Download\\\\Install\\\\*\" and\n(process.name : \"psexec64.exe\" or ?process.pe.original_file_name : \"psexec.c\")\n", + "references": [ + "https://www.thehacker.recipes/a-d/movement/mitm-and-coerced-authentications/wsus-spoofing" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + }, + { + "package": "system", + "version": "^1.6.4" + }, + { + "package": "sentinel_one_cloud_funnel", + "version": "^1.0.0" + }, + { + "package": "m365_defender", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.parent.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.pe.original_file_name", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "8e2485b6-a74f-411b-bf7f-38b819f3a846", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Lateral Movement", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon", + "Data Source: SentinelOne", + "Data Source: Microsoft Defender for Endpoint" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0008", + "name": "Lateral Movement", + "reference": "https://attack.mitre.org/tactics/TA0008/" + }, + "technique": [ + { + "id": "T1210", + "name": "Exploitation of Remote Services", + "reference": "https://attack.mitre.org/techniques/T1210/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 103 + }, + "id": "8e2485b6-a74f-411b-bf7f-38b819f3a846_103", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/8f3e91c7-d791-4704-80a1-42c160d7aa27_107.json b/packages/security_detection_engine/kibana/security_rule/8f3e91c7-d791-4704-80a1-42c160d7aa27_107.json new file mode 100644 index 000000000000..bcf5bfc400e1 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/8f3e91c7-d791-4704-80a1-42c160d7aa27_107.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies port monitor and print processor registry modifications. Adversaries may abuse port monitor and print processors to run malicious DLLs during system boot that will be executed as SYSTEM for privilege escalation and/or persistence, if permissions allow writing a fully-qualified pathname for that DLL.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Potential Port Monitor or Print Processor Registration Abuse", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path : (\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Print\\\\Monitors\\\\*\",\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Print\\\\Environments\\\\Windows*\\\\Print Processors\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Print\\\\Monitors\\\\*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Print\\\\Environments\\\\Windows*\\\\Print Processors\\\\*\"\n ) and registry.data.strings : \"*.dll\" and\n /* exclude SYSTEM SID - look for changes by non-SYSTEM user */\n not user.id : \"S-1-5-18\"\n", + "references": [ + "https://www.welivesecurity.com/2020/05/21/no-game-over-winnti-group/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.id", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "8f3e91c7-d791-4704-80a1-42c160d7aa27", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Privilege Escalation", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0004", + "name": "Privilege Escalation", + "reference": "https://attack.mitre.org/tactics/TA0004/" + }, + "technique": [ + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.010", + "name": "Port Monitors", + "reference": "https://attack.mitre.org/techniques/T1547/010/" + }, + { + "id": "T1547.012", + "name": "Print Processors", + "reference": "https://attack.mitre.org/techniques/T1547/012/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.010", + "name": "Port Monitors", + "reference": "https://attack.mitre.org/techniques/T1547/010/" + }, + { + "id": "T1547.012", + "name": "Print Processors", + "reference": "https://attack.mitre.org/techniques/T1547/012/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 107 + }, + "id": "8f3e91c7-d791-4704-80a1-42c160d7aa27_107", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/94418745-529f-4259-8d25-a713a6feb6ae_3.json b/packages/security_detection_engine/kibana/security_rule/94418745-529f-4259-8d25-a713a6feb6ae_3.json new file mode 100644 index 000000000000..9e8fc2761536 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/94418745-529f-4259-8d25-a713a6feb6ae_3.json @@ -0,0 +1,125 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "This rule monitors for the addition of an executable bit for scripts that are located in directories which are commonly abused for persistence. An alert of this rule is an indicator that a persistence mechanism is being set up within your environment. Adversaries may create these scripts to execute malicious code at start-up, or at a set interval to gain persistence onto the system.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.process*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Executable Bit Set for Potential Persistence Script", + "query": "process where host.os.type == \"linux\" and event.type == \"start\" and event.action in (\"exec\", \"exec_event\") and\nprocess.args : (\n // Misc.\n \"/etc/rc.local\", \"/etc/rc.common\", \"/etc/rc.d/rc.local\", \"/etc/init.d/*\", \"/etc/update-motd.d/*\",\n \"/etc/apt/apt.conf.d/*\", \"/etc/cron*\", \"/etc/init/*\",\n\n // XDG\n \"/etc/xdg/autostart/*\", \"/home/*/.config/autostart/*\", \"/root/.config/autostart/*\",\n \"/home/*/.local/share/autostart/*\", \"/root/.local/share/autostart/*\", \"/home/*/.config/autostart-scripts/*\",\n \"/root/.config/autostart-scripts/*\", \"/etc/xdg/autostart/*\", \"/usr/share/autostart/*\",\n \n // udev\n \"/lib/udev/*\", \"/etc/udev/rules.d/*\", \"/usr/lib/udev/rules.d/*\", \"/run/udev/rules.d/*\"\n\n) and (\n (process.name == \"chmod\" and process.args : (\"+x*\", \"1*\", \"3*\", \"5*\", \"7*\")) or\n (process.name == \"install\" and process.args : \"-m*\" and process.args : (\"7*\", \"5*\", \"3*\", \"1*\"))\n) and not process.parent.executable : \"/var/lib/dpkg/*\"\n", + "references": [ + "https://www.intezer.com/blog/malware-analysis/hiddenwasp-malware-targeting-linux-systems/", + "https://pberba.github.io/security/2022/02/06/linux-threat-hunting-for-persistence-initialization-scripts-and-shell-configuration/#8-boot-or-logon-initialization-scripts-rc-scripts", + "https://www.cyberciti.biz/faq/how-to-enable-rc-local-shell-script-on-systemd-while-booting-linux-system/" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.args", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.parent.executable", + "type": "keyword" + } + ], + "risk_score": 21, + "rule_id": "94418745-529f-4259-8d25-a713a6feb6ae", + "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Linux", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1037", + "name": "Boot or Logon Initialization Scripts", + "reference": "https://attack.mitre.org/techniques/T1037/", + "subtechnique": [ + { + "id": "T1037.004", + "name": "RC Scripts", + "reference": "https://attack.mitre.org/techniques/T1037/004/" + } + ] + }, + { + "id": "T1053", + "name": "Scheduled Task/Job", + "reference": "https://attack.mitre.org/techniques/T1053/", + "subtechnique": [ + { + "id": "T1053.003", + "name": "Cron", + "reference": "https://attack.mitre.org/techniques/T1053/003/" + } + ] + }, + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.013", + "name": "XDG Autostart Entries", + "reference": "https://attack.mitre.org/techniques/T1547/013/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 3 + }, + "id": "94418745-529f-4259-8d25-a713a6feb6ae_3", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/954ee7c8-5437-49ae-b2d6-2960883898e9_109.json b/packages/security_detection_engine/kibana/security_rule/954ee7c8-5437-49ae-b2d6-2960883898e9_109.json new file mode 100644 index 000000000000..04ad81edc9f1 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/954ee7c8-5437-49ae-b2d6-2960883898e9_109.json @@ -0,0 +1,142 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies remote scheduled task creations on a target host. This could be indicative of adversary lateral movement.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "logs-endpoint.events.network-*", + "winlogbeat-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Remote Scheduled Task Creation", + "note": "## Triage and analysis\n\n### Investigating Remote Scheduled Task Creation\n\n[Scheduled tasks](https://docs.microsoft.com/en-us/windows/win32/taskschd/about-the-task-scheduler) are a great mechanism for persistence and program execution. These features can be used remotely for a variety of legitimate reasons, but at the same time used by malware and adversaries. When investigating scheduled tasks that were set up remotely, one of the first steps should be to determine the original intent behind the configuration and to verify if the activity is tied to benign behavior such as software installation or any kind of network administrator work. One objective for these alerts is to understand the configured action within the scheduled task. This is captured within the registry event data for this rule and can be base64 decoded to view the value.\n\n#### Possible investigation steps\n\n- Review the base64 encoded tasks actions registry value to investigate the task configured action.\n- Validate if the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Further examination should include review of host-based artifacts and network logs from around when the scheduled task was created, on both the source and target machines.\n\n### False positive analysis\n\n- There is a high possibility of benign activity tied to the creation of remote scheduled tasks as it is a general feature within Windows and used for legitimate purposes for a wide range of activity. Any kind of context should be found to further understand the source of the activity and determine the intent based on the scheduled task's contents.\n\n### Related rules\n\n- Service Command Lateral Movement - d61cbcf8-1bc1-4cff-85ba-e7b21c5beedc\n- Remotely Started Services via RPC - aa9a274d-6b53-424d-ac5e-cb8ca4251650\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- Remove scheduled task and any other related artifacts.\n- Review privileged account management and user account management settings. Consider implementing group policy object (GPO) policies to further restrict activity, or configuring settings that only allow administrators to create remote scheduled tasks.\n", + "query": "/* Task Scheduler service incoming connection followed by TaskCache registry modification */\n\nsequence by host.id, process.entity_id with maxspan = 1m\n [network where host.os.type == \"windows\" and process.name : \"svchost.exe\" and\n network.direction : (\"incoming\", \"ingress\") and source.port >= 49152 and destination.port >= 49152 and\n source.ip != \"127.0.0.1\" and source.ip != \"::1\"\n ]\n [registry where host.os.type == \"windows\" and event.type == \"change\" and registry.value : \"Actions\" and\n registry.path : \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Schedule\\\\TaskCache\\\\Tasks\\\\*\\\\Actions\"]\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "destination.port", + "type": "long" + }, + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.id", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "network.direction", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.entity_id", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + }, + { + "ecs": true, + "name": "source.ip", + "type": "ip" + }, + { + "ecs": true, + "name": "source.port", + "type": "long" + } + ], + "risk_score": 47, + "rule_id": "954ee7c8-5437-49ae-b2d6-2960883898e9", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Lateral Movement", + "Resources: Investigation Guide", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0008", + "name": "Lateral Movement", + "reference": "https://attack.mitre.org/tactics/TA0008/" + }, + "technique": [ + { + "id": "T1021", + "name": "Remote Services", + "reference": "https://attack.mitre.org/techniques/T1021/" + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0002", + "name": "Execution", + "reference": "https://attack.mitre.org/tactics/TA0002/" + }, + "technique": [ + { + "id": "T1053", + "name": "Scheduled Task/Job", + "reference": "https://attack.mitre.org/techniques/T1053/", + "subtechnique": [ + { + "id": "T1053.005", + "name": "Scheduled Task", + "reference": "https://attack.mitre.org/techniques/T1053/005/" + } + ] + } + ] + } + ], + "type": "eql", + "version": 109 + }, + "id": "954ee7c8-5437-49ae-b2d6-2960883898e9_109", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/97fc44d3-8dae-4019-ae83-298c3015600f_112.json b/packages/security_detection_engine/kibana/security_rule/97fc44d3-8dae-4019-ae83-298c3015600f_112.json new file mode 100644 index 000000000000..0f27771b9c07 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/97fc44d3-8dae-4019-ae83-298c3015600f_112.json @@ -0,0 +1,123 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies run key or startup key registry modifications. In order to survive reboots and other system interrupts, attackers will modify run keys within the registry or leverage startup folder items as a form of persistence.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Startup or Run Key Registry Modification", + "note": "## Triage and analysis\n\n### Investigating Startup or Run Key Registry Modification\n\nAdversaries may achieve persistence by referencing a program with a registry run key. Adding an entry to the run keys in the registry will cause the program referenced to be executed when a user logs in. These programs will executed under the context of the user and will have the account's permissions. This rule looks for this behavior by monitoring a range of registry run keys.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate if the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Assess whether this behavior is prevalent in the environment by looking for similar occurrences across hosts.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the process executable using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (for example, 4624) to the target host after the registry modification.\n\n\n### False positive analysis\n\n- There is a high possibility of benign legitimate programs being added to registry run keys. This activity could be based on new software installations, patches, or any kind of network administrator related activity. Before undertaking further investigation, verify that this activity is not benign.\n\n### Related rules\n\n- Suspicious Startup Shell Folder Modification - c8b150f0-0164-475b-a75e-74b47800a9ff\n- Persistent Scripts in the Startup Directory - f7c4dc5a-a58d-491d-9f14-9b66507121c0\n- Startup Folder Persistence via Unsigned Process - 2fba96c0-ade5-4bce-b92f-a5df2509da3f\n- Startup Persistence by a Suspicious Process - 440e2db4-bc7f-4c96-a068-65b78da59bde\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and \n registry.data.strings != null and registry.hive : (\"HKEY_USERS\", \"HKLM\") and\n registry.path : (\n /* Machine Hive */\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnce\\\\*\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnceEx\\\\*\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\*\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Shell\\\\*\",\n /* Users Hive */\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\*\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnce\\\\*\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\RunOnceEx\\\\*\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\*\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Winlogon\\\\Shell\\\\*\"\n ) and\n /* add common legitimate changes without being too restrictive as this is one of the most abused AESPs */\n not registry.data.strings : \"ctfmon.exe /n\" and\n not (registry.value : \"Application Restart #*\" and process.name : \"csrss.exe\") and\n not user.id : (\"S-1-5-18\", \"S-1-5-19\", \"S-1-5-20\") and\n not registry.data.strings : (\"?:\\\\Program Files\\\\*.exe\", \"?:\\\\Program Files (x86)\\\\*.exe\") and\n not process.executable : (\"?:\\\\Windows\\\\System32\\\\msiexec.exe\", \"?:\\\\Windows\\\\SysWOW64\\\\msiexec.exe\") and\n not (\n /* Logitech G Hub */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name == \"Logitech Inc\" and\n (\n process.name : \"lghub_agent.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Program Files\\\\LGHUB\\\\lghub.exe\\\" --background\",\n \"\\\"?:\\\\Program Files\\\\LGHUB\\\\system_tray\\\\lghub_system_tray.exe\\\" --minimized\"\n )\n ) or\n (\n process.name : \"LogiBolt.exe\" and registry.data.strings : (\n \"?:\\\\Program Files\\\\Logi\\\\LogiBolt\\\\LogiBolt.exe --startup\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Logi\\\\LogiBolt\\\\LogiBolt.exe --startup\"\n )\n )\n ) or\n\n /* Google Drive File Stream, Chrome, and Google Update */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name == \"Google LLC\" and\n (\n process.name : \"GoogleDriveFS.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Program Files\\\\Google\\\\Drive File Stream\\\\*\\\\GoogleDriveFS.exe\\\" --startup_mode\"\n ) or\n\n process.name : \"chrome.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Program Files\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --no-startup-window /prefetch:5\",\n \"\\\"?:\\\\Program Files (x86)\\\\Google\\\\Chrome\\\\Application\\\\chrome.exe\\\" --no-startup-window /prefetch:5\"\n ) or\n\n process.name : \"GoogleUpdate.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Google\\\\Update\\\\*\\\\GoogleUpdateCore.exe\\\"\"\n )\n )\n ) or\n\n /* MS Programs */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name in (\"Microsoft Windows\", \"Microsoft Corporation\") and\n (\n process.name : \"msedge.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Program Files (x86)\\\\Microsoft\\\\Edge\\\\Application\\\\msedge.exe\\\" --no-startup-window --win-session-start /prefetch:5\",\n \"\\\"C:\\\\Program Files (x86)\\\\Microsoft\\\\Edge\\\\Application\\\\msedge.exe\\\" --win-session-start\",\n \"\\\"C:\\\\Program Files (x86)\\\\Microsoft\\\\Edge\\\\Application\\\\msedge.exe\\\" --no-startup-window --win-session-start\"\n ) or\n\n process.name : (\"Update.exe\", \"Teams.exe\") and registry.data.strings : (\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Microsoft\\\\Teams\\\\Update.exe --processStart \\\"Teams.exe\\\" --process-start-args \\\"--system-initiated\\\"\",\n \"?:\\\\ProgramData\\\\*\\\\Microsoft\\\\Teams\\\\Update.exe --processStart \\\"Teams.exe\\\" --process-start-args \\\"--system-initiated\\\"\"\n ) or\n\n process.name : \"OneDriveStandaloneUpdater.exe\" and registry.data.strings : (\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Microsoft\\\\OneDrive\\\\*\\\\Microsoft.SharePoint.exe\"\n ) or\n\n process.name : \"OneDriveSetup.exe\" and\n registry.data.strings : (\n \"?:\\\\Windows\\\\system32\\\\cmd.exe /q /c * \\\"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Microsoft\\\\OneDrive\\\\*\\\"\",\n \"?:\\\\Program Files (x86)\\\\Microsoft OneDrive\\\\OneDrive.exe /background*\",\n \"\\\"?:\\\\Program Files (x86)\\\\Microsoft OneDrive\\\\OneDrive.exe\\\" /background*\",\n \"?:\\\\Program Files\\\\Microsoft OneDrive\\\\OneDrive.exe /background *\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Microsoft\\\\OneDrive\\\\??.???.????.????\\\\Microsoft.SharePoint.exe\"\n ) or\n \n process.name : \"OneDrive.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Program Files\\\\Microsoft OneDrive\\\\OneDrive.exe\\\" /background\",\n \"\\\"?:\\\\Program Files (x86)\\\\Microsoft OneDrive\\\\OneDrive.exe\\\" /background\",\n \"\\\"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Microsoft\\\\OneDrive\\\\OneDrive.exe\\\" /background\"\n ) or\n \n process.name : \"Microsoft.SharePoint.exe\" and registry.data.strings : (\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Microsoft\\\\OneDrive\\\\??.???.????.????\\\\Microsoft.SharePoint.exe\"\n ) or\n \n process.name : \"MicrosoftEdgeUpdate.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Users\\\\Expedient\\\\AppData\\\\Local\\\\Microsoft\\\\EdgeUpdate\\\\*\\\\MicrosoftEdgeUpdateCore.exe\\\"\"\n ) or\n \n process.executable : \"?:\\\\Program Files (x86)\\\\Microsoft\\\\EdgeWebView\\\\Application\\\\*\\\\Installer\\\\setup.exe\" and\n registry.data.strings : (\n \"\\\"?:\\\\Program Files (x86)\\\\Microsoft\\\\EdgeWebView\\\\Application\\\\*\\\\Installer\\\\setup.exe\\\" --msedgewebview --delete-old-versions --system-level --verbose-logging --on-logon\"\n )\n )\n ) or\n\n /* Slack */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name in (\n \"Slack Technologies, Inc.\", \"Slack Technologies, LLC\"\n ) and process.name : \"slack.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\slack\\\\slack.exe\\\" --process-start-args --startup\",\n \"\\\"?:\\\\ProgramData\\\\*\\\\slack\\\\slack.exe\\\" --process-start-args --startup\",\n \"\\\"?:\\\\Program Files\\\\Slack\\\\slack.exe\\\" --process-start-args --startup\"\n )\n ) or\n\n /* Cisco */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name in (\"Cisco WebEx LLC\", \"Cisco Systems, Inc.\") and\n (\n process.name : \"WebexHost.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\WebEx\\\\WebexHost.exe\\\" /daemon /runFrom=autorun\"\n )\n ) or\n (\n process.name : \"CiscoJabber.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Program Files (x86)\\\\Cisco Systems\\\\Cisco Jabber\\\\CiscoJabber.exe\\\" /min\"\n )\n )\n ) or\n\n /* Loom */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name == \"Loom, Inc.\" and\n process.name : \"Loom.exe\" and registry.data.strings : (\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Programs\\\\Loom\\\\Loom.exe --process-start-args \\\"--loomHidden\\\"\"\n )\n ) or\n\n /* Adobe */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name == \"Adobe Inc.\" and\n process.name : (\"Acrobat.exe\", \"FlashUtil32_*_Plugin.exe\") and registry.data.strings : (\n \"\\\"?:\\\\Program Files\\\\Adobe\\\\Acrobat DC\\\\Acrobat\\\\AdobeCollabSync.exe\\\"\",\n \"\\\"?:\\\\Program Files (x86)\\\\Adobe\\\\Acrobat DC\\\\Acrobat\\\\AdobeCollabSync.exe\\\"\",\n \"?:\\\\WINDOWS\\\\SysWOW64\\\\Macromed\\\\Flash\\\\FlashUtil32_*_Plugin.exe -update plugin\"\n )\n ) or\n\n /* CCleaner */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name == \"PIRIFORM SOFTWARE LIMITED\" and\n process.name : (\"CCleanerBrowser.exe\", \"CCleaner64.exe\") and registry.data.strings : (\n \"\\\"C:\\\\Program Files (x86)\\\\CCleaner Browser\\\\Application\\\\CCleanerBrowser.exe\\\" --check-run=src=logon --auto-launch-at-startup --profile-directory=\\\"Default\\\"\",\n \"\\\"C:\\\\Program Files\\\\CCleaner\\\\CCleaner64.exe\\\" /MONITOR\"\n )\n ) or\n\n /* Opera */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name == \"Opera Norway AS\" and\n process.name : \"opera.exe\" and registry.data.strings : (\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Programs\\\\Opera\\\\launcher.exe\",\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Programs\\\\Opera GX\\\\launcher.exe\"\n )\n ) or\n\n /* Avast */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name == \"Avast Software s.r.o.\" and\n process.name : \"AvastBrowser.exe\" and registry.data.strings : (\n \"\\\"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\AVAST Software\\\\Browser\\\\Application\\\\AvastBrowser.exe\\\" --check-run=src=logon --auto-launch-at-startup*\",\n \"\\\"?:\\\\Program Files (x86)\\\\AVAST Software\\\\Browser\\\\Application\\\\AvastBrowser.exe\\\" --check-run=src=logon --auto-launch-at-startup*\",\n \"\"\n )\n ) or\n\n /* Grammarly */\n (\n process.code_signature.trusted == true and process.code_signature.subject_name == \"Grammarly, Inc.\" and\n process.name : \"GrammarlyInstaller.exe\" and registry.data.strings : (\n \"?:\\\\Users\\\\*\\\\AppData\\\\Local\\\\Grammarly\\\\DesktopIntegrations\\\\Grammarly.Desktop.exe\"\n )\n )\n )\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.code_signature.subject_name", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.code_signature.trusted", + "type": "boolean" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.hive", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.id", + "type": "keyword" + } + ], + "risk_score": 21, + "rule_id": "97fc44d3-8dae-4019-ae83-298c3015600f", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.001", + "name": "Registry Run Keys / Startup Folder", + "reference": "https://attack.mitre.org/techniques/T1547/001/" + } + ] + } + ] + } + ], + "timeline_id": "3e47ef71-ebfc-4520-975c-cb27fc090799", + "timeline_title": "Comprehensive Registry Timeline", + "timestamp_override": "event.ingested", + "type": "eql", + "version": 112 + }, + "id": "97fc44d3-8dae-4019-ae83-298c3015600f_112", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/9aa0e1f6-52ce-42e1-abb3-09657cee2698_110.json b/packages/security_detection_engine/kibana/security_rule/9aa0e1f6-52ce-42e1-abb3-09657cee2698_110.json new file mode 100644 index 000000000000..e1026596f5c4 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/9aa0e1f6-52ce-42e1-abb3-09657cee2698_110.json @@ -0,0 +1,119 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies attempts to enable the Windows scheduled tasks AT command via the registry. Attackers may use this method to move laterally or persist locally. The AT command has been deprecated since Windows 8 and Windows Server 2012, but still exists for backwards compatibility.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Scheduled Tasks AT Command Enabled", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path : (\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Schedule\\\\Configuration\\\\EnableAt\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Schedule\\\\Configuration\\\\EnableAt\"\n ) and registry.data.strings : (\"1\", \"0x00000001\")\n", + "references": [ + "https://docs.microsoft.com/en-us/windows/win32/cimwin32prov/win32-scheduledjob" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "9aa0e1f6-52ce-42e1-abb3-09657cee2698", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Tactic: Execution", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1562", + "name": "Impair Defenses", + "reference": "https://attack.mitre.org/techniques/T1562/", + "subtechnique": [ + { + "id": "T1562.001", + "name": "Disable or Modify Tools", + "reference": "https://attack.mitre.org/techniques/T1562/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0002", + "name": "Execution", + "reference": "https://attack.mitre.org/tactics/TA0002/" + }, + "technique": [ + { + "id": "T1053", + "name": "Scheduled Task/Job", + "reference": "https://attack.mitre.org/techniques/T1053/", + "subtechnique": [ + { + "id": "T1053.002", + "name": "At", + "reference": "https://attack.mitre.org/techniques/T1053/002/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 110 + }, + "id": "9aa0e1f6-52ce-42e1-abb3-09657cee2698_110", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/9b80cb26-9966-44b5-abbf-764fbdbc3586_1.json b/packages/security_detection_engine/kibana/security_rule/9b80cb26-9966-44b5-abbf-764fbdbc3586_1.json deleted file mode 100644 index 21e7805394d3..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/9b80cb26-9966-44b5-abbf-764fbdbc3586_1.json +++ /dev/null @@ -1,113 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identifies instances where a process (granted CAP_SETUID and/or CAP_SETGID capabilities) is executed, after which the user's access is elevated to UID/GID 0 (root). In Linux, the CAP_SETUID and CAP_SETGID capabilities allow a process to change its UID and GID, respectively, providing control over user and group identity management. Attackers may leverage a misconfiguration for exploitation in order to escalate their privileges to root.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Privilege Escalation via CAP_SETUID/SETGID Capabilities", - "query": "sequence by host.id, process.entity_id with maxspan=1s\n [process where host.os.type == \"linux\" and event.action == \"exec\" and event.type == \"start\" and process.name != null and\n (process.thread.capabilities.effective : \"CAP_SET?ID\" or process.thread.capabilities.permitted : \"CAP_SET?ID\") and \n user.id != \"0\"]\n [process where host.os.type == \"linux\" and event.action == \"uid_change\" and event.type == \"change\" and \n (process.thread.capabilities.effective : \"CAP_SET?ID\" or process.thread.capabilities.permitted : \"CAP_SET?ID\")\n and user.id == \"0\"]\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.id", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.entity_id", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.thread.capabilities.effective", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.thread.capabilities.permitted", - "type": "keyword" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "9b80cb26-9966-44b5-abbf-764fbdbc3586", - "setup": "\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Privilege Escalation", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1068", - "name": "Exploitation for Privilege Escalation", - "reference": "https://attack.mitre.org/techniques/T1068/" - }, - { - "id": "T1548", - "name": "Abuse Elevation Control Mechanism", - "reference": "https://attack.mitre.org/techniques/T1548/", - "subtechnique": [ - { - "id": "T1548.001", - "name": "Setuid and Setgid", - "reference": "https://attack.mitre.org/techniques/T1548/001/" - } - ] - } - ] - } - ], - "type": "eql", - "version": 1 - }, - "id": "9b80cb26-9966-44b5-abbf-764fbdbc3586_1", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/a1699af0-8e1e-4ed0-8ec1-89783538a061_8.json b/packages/security_detection_engine/kibana/security_rule/a1699af0-8e1e-4ed0-8ec1-89783538a061_8.json new file mode 100644 index 000000000000..ddf863192bb2 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/a1699af0-8e1e-4ed0-8ec1-89783538a061_8.json @@ -0,0 +1,96 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Detects changes to the registry that indicates the install of a new Windows Subsystem for Linux distribution by name. Adversaries may enable and use WSL for Linux to avoid detection.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Windows Subsystem for Linux Distribution Installed", + "note": "## Triage and analysis\n\n### Investigating Windows Subsystem for Linux Distribution Installed\n\nThe Windows Subsystem for Linux (WSL) lets developers install a Linux distribution (such as Ubuntu, OpenSUSE, Kali, Debian, Arch Linux, etc) and use Linux applications, utilities, and Bash command-line tools directly on Windows, unmodified, without the overhead of a traditional virtual machine or dualboot setup. Attackers may abuse WSL to avoid security protections on a Windows host and perform a wide range of attacks.\n\nThis rule identifies the installation of a new Windows Subsystem for Linux distribution via registry events.\n\n### Possible investigation steps\n\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Examine which distribution was installed. Some distributions such as Kali Linux can facilitate the compromise of the environment.\n- Contact the account owner and confirm whether they are aware of this activity.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate that the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Assess whether this behavior is prevalent in the environment by looking for similar occurrences across hosts.\n\n### False positive analysis\n\n- This is a dual-use tool, meaning its usage is not inherently malicious. Analysts can dismiss the alert if the administrator is aware of the activity, no other suspicious activity was identified, and the WSL distribution is homologated and approved in the environment.\n\n### Related Rules\n\n- Host Files System Changes via Windows Subsystem for Linux - e88d1fe9-b2f4-48d4-bace-a026dc745d4b\n- Execution via Windows Subsystem for Linux - db7dbad5-08d2-4d25-b9b1-d3a1e4a15efd\n- Suspicious Execution via Windows Subsystem for Linux - 3e0eeb75-16e8-4f2f-9826-62461ca128b7\n- Windows Subsystem for Linux Enabled via Dism Utility - e2e0537d-7d8f-4910-a11d-559bcf61295a\n\n### Response and Remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and registry.value : \"PackageFamilyName\" and\n registry.path : \n (\"HK*\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Lxss\\\\*\\\\PackageFamilyName\",\n \"\\\\REGISTRY\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Lxss\\\\*\\\\PackageFamilyName\")\n", + "references": [ + "https://learn.microsoft.com/en-us/windows/wsl/wsl-config" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "a1699af0-8e1e-4ed0-8ec1-89783538a061", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + }, + { + "id": "T1202", + "name": "Indirect Command Execution", + "reference": "https://attack.mitre.org/techniques/T1202/" + } + ] + } + ], + "timeline_id": "3e47ef71-ebfc-4520-975c-cb27fc090799", + "timeline_title": "Comprehensive Registry Timeline", + "timestamp_override": "event.ingested", + "type": "eql", + "version": 8 + }, + "id": "a1699af0-8e1e-4ed0-8ec1-89783538a061_8", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/a22a09c2-2162-4df0-a356-9aacbeb56a04_111.json b/packages/security_detection_engine/kibana/security_rule/a22a09c2-2162-4df0-a356-9aacbeb56a04_111.json new file mode 100644 index 000000000000..6164f3908f9a --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/a22a09c2-2162-4df0-a356-9aacbeb56a04_111.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "author": [ + "Austin Songer" + ], + "description": "Identifies when a user enables DNS-over-HTTPS. This can be used to hide internet activity or the process of exfiltrating data. With this enabled, an organization will lose visibility into data such as query type, response, and originating IP, which are used to determine bad actors.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "DNS-over-HTTPS Enabled via Registry", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n (registry.path : \"*\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Edge\\\\BuiltInDnsClientEnabled\" and\n registry.data.strings : \"1\") or\n (registry.path : \"*\\\\SOFTWARE\\\\Google\\\\Chrome\\\\DnsOverHttpsMode\" and\n registry.data.strings : \"secure\") or\n (registry.path : \"*\\\\SOFTWARE\\\\Policies\\\\Mozilla\\\\Firefox\\\\DNSOverHTTPS\" and\n registry.data.strings : \"1\")\n", + "references": [ + "https://www.tenforums.com/tutorials/151318-how-enable-disable-dns-over-https-doh-microsoft-edge.html", + "https://chromeenterprise.google/policies/?policy=DnsOverHttpsMode" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 21, + "rule_id": "a22a09c2-2162-4df0-a356-9aacbeb56a04", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "low", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + }, + { + "id": "T1562", + "name": "Impair Defenses", + "reference": "https://attack.mitre.org/techniques/T1562/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 111 + }, + "id": "a22a09c2-2162-4df0-a356-9aacbeb56a04_111", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/a44bcb58-5109-4870-a7c6-11f5fe7dd4b1_1.json b/packages/security_detection_engine/kibana/security_rule/a44bcb58-5109-4870-a7c6-11f5fe7dd4b1_1.json new file mode 100644 index 000000000000..0a3aba44c3f8 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/a44bcb58-5109-4870-a7c6-11f5fe7dd4b1_1.json @@ -0,0 +1,120 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies when an EC2 instance interacts with the AWS IAM service via an assumed role. This is uncommon behavior and could indicate an attacker using compromised credentials to further exploit an environment. For example, an assumed role could be used to create new users for persistence or add permissions for privilege escalation. An EC2 instance assumes a role using their EC2 ID as the session name. This rule looks for the pattern \"i-\" which is the beginning pattern for assumed role sessions started by an EC2 instance.", + "false_positives": [ + "Administrators may use EC2 instances to interact with IAM services as part of an automation workflow, ensure validity of the triggered event and include exceptions where necessary." + ], + "from": "now-6m", + "index": [ + "filebeat-*", + "logs-aws.cloudtrail-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "AWS EC2 Instance Interaction with IAM Service", + "query": "any where event.dataset == \"aws.cloudtrail\"\n and event.provider == \"iam.amazonaws.com\"\n and aws.cloudtrail.user_identity.type == \"AssumedRole\"\n and stringContains (user.id, \":i-\")\n", + "references": [ + "https://redcanary.com/blog/aws-sts/" + ], + "related_integrations": [ + { + "integration": "cloudtrail", + "package": "aws", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": false, + "name": "aws.cloudtrail.user_identity.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.dataset", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.provider", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.id", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "a44bcb58-5109-4870-a7c6-11f5fe7dd4b1", + "severity": "medium", + "tags": [ + "Domain: Cloud", + "Data Source: AWS", + "Data Source: Amazon Web Services", + "Data Source: AWS EC2", + "Data Source: AWS IAM", + "Use Case: Identity and Access Audit", + "Tactic: Privilege Escalation", + "Tactic: Persistence" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1098", + "name": "Account Manipulation", + "reference": "https://attack.mitre.org/techniques/T1098/", + "subtechnique": [ + { + "id": "T1098.001", + "name": "Additional Cloud Credentials", + "reference": "https://attack.mitre.org/techniques/T1098/001/" + }, + { + "id": "T1098.003", + "name": "Additional Cloud Roles", + "reference": "https://attack.mitre.org/techniques/T1098/003/" + } + ] + }, + { + "id": "T1078", + "name": "Valid Accounts", + "reference": "https://attack.mitre.org/techniques/T1078/", + "subtechnique": [ + { + "id": "T1078.004", + "name": "Cloud Accounts", + "reference": "https://attack.mitre.org/techniques/T1078/004/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0004", + "name": "Privilege Escalation", + "reference": "https://attack.mitre.org/tactics/TA0004/" + }, + "technique": [] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 1 + }, + "id": "a44bcb58-5109-4870-a7c6-11f5fe7dd4b1_1", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/a9b05c3b-b304-4bf9-970d-acdfaef2944c_109.json b/packages/security_detection_engine/kibana/security_rule/a9b05c3b-b304-4bf9-970d-acdfaef2944c_109.json new file mode 100644 index 000000000000..1ba1e7f6d673 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/a9b05c3b-b304-4bf9-970d-acdfaef2944c_109.json @@ -0,0 +1,129 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies a persistence mechanism that utilizes the NtSetValueKey native API to create a hidden (null terminated) registry key. An adversary may use this method to hide from system utilities such as the Registry Editor (regedit).", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "winlogbeat-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Persistence via Hidden Run Key Detected", + "query": "/* Registry Path ends with backslash */\nregistry where host.os.type == \"windows\" and event.type == \"change\" and length(registry.data.strings) > 0 and\n registry.path : (\"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\\",\n \"HKU\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\\",\n \"HKLM\\\\Software\\\\WOW6432Node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\\",\n \"HKU\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\WOW6432Node\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Run\\\\\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Policies\\\\Explorer\\\\Run\\\\\")\n", + "references": [ + "https://github.com/outflanknl/SharpHide", + "https://github.com/ewhitehats/InvisiblePersistence/blob/master/InvisibleRegValues_Whitepaper.pdf" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "a9b05c3b-b304-4bf9-970d-acdfaef2944c", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Defense Evasion", + "Tactic: Execution", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.001", + "name": "Registry Run Keys / Startup Folder", + "reference": "https://attack.mitre.org/techniques/T1547/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0002", + "name": "Execution", + "reference": "https://attack.mitre.org/tactics/TA0002/" + }, + "technique": [ + { + "id": "T1106", + "name": "Native API", + "reference": "https://attack.mitre.org/techniques/T1106/" + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 109 + }, + "id": "a9b05c3b-b304-4bf9-970d-acdfaef2944c_109", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/ac5a2759-5c34-440a-b0c4-51fe674611d6_1.json b/packages/security_detection_engine/kibana/security_rule/ac5a2759-5c34-440a-b0c4-51fe674611d6_1.json new file mode 100644 index 000000000000..d968cbcfaf7c --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/ac5a2759-5c34-440a-b0c4-51fe674611d6_1.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies modifications in registry keys associated with abuse of the Outlook Home Page functionality for command and control or persistence.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Outlook Home Page Registry Modification", + "query": "registry where host.os.type == \"windows\" and event.action != \"deletion\" and registry.value : \"URL\" and\n registry.path : (\n \"HKEY_USERS\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Outlook\\\\Webview\\\\Inbox\\\\URL\",\n \"HKU\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Outlook\\\\Webview\\\\Inbox\\\\URL\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Outlook\\\\Webview\\\\Inbox\\\\URL\"\n ) and registry.data.strings : \"*http*\"\n", + "references": [ + "https://cloud.google.com/blog/topics/threat-intelligence/breaking-the-rules-tough-outlook-for-home-page-attacks/", + "https://github.com/trustedsec/specula" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "ac5a2759-5c34-440a-b0c4-51fe674611d6", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Command and Control", + "Tactic: Persistence", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0011", + "name": "Command and Control", + "reference": "https://attack.mitre.org/tactics/TA0011/" + }, + "technique": [] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1137", + "name": "Office Application Startup", + "reference": "https://attack.mitre.org/techniques/T1137/", + "subtechnique": [ + { + "id": "T1137.004", + "name": "Outlook Home Page", + "reference": "https://attack.mitre.org/techniques/T1137/004/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 1 + }, + "id": "ac5a2759-5c34-440a-b0c4-51fe674611d6_1", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/ad959eeb-2b7b-4722-ba08-a45f6622f005_1.json b/packages/security_detection_engine/kibana/security_rule/ad959eeb-2b7b-4722-ba08-a45f6622f005_1.json deleted file mode 100644 index 3f5e5da70cc1..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/ad959eeb-2b7b-4722-ba08-a45f6622f005_1.json +++ /dev/null @@ -1,139 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects suspicious process events executed by the APT package manager, potentially indicating persistence through an APT backdoor. In Linux, APT (Advanced Package Tool) is a command-line utility used for handling packages on Debian-based systems, providing functions for installing, updating, upgrading, and removing software along with managing package repositories. Attackers can backdoor APT to gain persistence by injecting malicious code into scripts that APT runs, thereby ensuring continued unauthorized access or control each time APT is used for package management.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Suspicious APT Package Manager Execution", - "query": "sequence by host.id with maxspan=5s\n [process where host.os.type == \"linux\" and event.action == \"exec\" and event.type == \"start\" and\n process.parent.name == \"apt\" and process.args == \"-c\" and process.name in (\n \"bash\", \"dash\", \"sh\", \"tcsh\", \"csh\", \"zsh\", \"ksh\", \"fish\"\n )\n ] by process.entity_id\n [process where host.os.type == \"linux\" and event.action == \"exec\" and event.type == \"start\" and process.name : (\n \"bash\", \"dash\", \"sh\", \"tcsh\", \"csh\", \"zsh\", \"ksh\", \"fish\", \"python*\", \"php*\",\n \"perl\", \"ruby\", \"lua*\", \"openssl\", \"nc\", \"netcat\", \"ncat\", \"telnet\", \"awk\"\n )\n ] by process.parent.entity_id\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.id", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.args", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.entity_id", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.parent.entity_id", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.parent.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "ad959eeb-2b7b-4722-ba08-a45f6622f005", - "setup": "\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Tactic: Execution", - "Tactic: Defense Evasion", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1543", - "name": "Create or Modify System Process", - "reference": "https://attack.mitre.org/techniques/T1543/" - }, - { - "id": "T1574", - "name": "Hijack Execution Flow", - "reference": "https://attack.mitre.org/techniques/T1574/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.004", - "name": "Unix Shell", - "reference": "https://attack.mitre.org/techniques/T1059/004/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [] - } - ], - "type": "eql", - "version": 1 - }, - "id": "ad959eeb-2b7b-4722-ba08-a45f6622f005_1", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/ae343298-97bc-47bc-9ea2-5f2ad831c16e_3.json b/packages/security_detection_engine/kibana/security_rule/ae343298-97bc-47bc-9ea2-5f2ad831c16e_3.json deleted file mode 100644 index fe0c05ad9e68..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/ae343298-97bc-47bc-9ea2-5f2ad831c16e_3.json +++ /dev/null @@ -1,89 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule monitors for a file creation event originating from a kworker parent process. kworker, or kernel worker, processes are part of the kernel's workqueue mechanism. They are responsible for executing work that has been scheduled to be done in kernel space, which might include tasks like handling interrupts, background activities, and other kernel-related tasks. Attackers may attempt to evade detection by masquerading as a kernel worker process.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Suspicious File Creation via Kworker", - "note": "## Triage and analysis\n\n### Investigating Suspicious File Creation via Kworker\n\nKworker, or kernel worker, processes are part of the kernel's workqueue mechanism. They are responsible for executing work that has been scheduled to be done in kernel space, which might include tasks like handling interrupts, background activities, and other kernel-related tasks.\n\nAttackers may attempt to evade detection by masquerading as a kernel worker process.\n\nThis rule monitors for suspicious file creation events through the kworker process. This is not common, and could indicate malicious behaviour.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n> This investigation guide uses [placeholder fields](https://www.elastic.co/guide/en/security/current/osquery-placeholder-fields.html) to dynamically pass alert data into Osquery queries. Placeholder fields were introduced in Elastic Stack version 8.7.0. If you're using Elastic Stack version 8.6.0 or earlier, you'll need to manually adjust this investigation guide's queries to ensure they properly run.\n\n#### Possible Investigation Steps\n\n- Investigate the file that was created or modified through OSQuery.\n - !{osquery{\"label\":\"Osquery - Retrieve File Listing Information\",\"query\":\"SELECT * FROM file WHERE path = {{file.path}}\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Additional File Listing Information\",\"query\":\"SELECT\\n f.path,\\n u.username AS file_owner,\\n g.groupname AS group_owner,\\n datetime(f.atime, 'unixepoch') AS file_last_access_time,\\n datetime(f.mtime, 'unixepoch') AS file_last_modified_time,\\n datetime(f.ctime, 'unixepoch') AS file_last_status_change_time,\\n datetime(f.btime, 'unixepoch') AS file_created_time,\\n f.size AS size_bytes\\nFROM\\n file f\\n LEFT JOIN users u ON f.uid = u.uid\\n LEFT JOIN groups g ON f.gid = g.gid\\nWHERE path = {{file.path}}\\n\"}}\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence and whether they are located in expected locations.\n - !{osquery{\"label\":\"Osquery - Retrieve Running Processes by User\",\"query\":\"SELECT pid, username, name FROM processes p JOIN users u ON u.uid = p.uid ORDER BY username\"}}\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Investigate whether the altered scripts call other malicious scripts elsewhere on the file system. \n - If scripts or executables were dropped, retrieve the files and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - Check if the domain is newly registered or unexpected.\n - Check the reputation of the domain or IP address.\n - File access, modification, and creation activities.\n - Cron jobs, services and other persistence mechanisms.\n - !{osquery{\"label\":\"Osquery - Retrieve Crontab Information\",\"query\":\"SELECT * FROM crontab\"}}\n- Investigate abnormal behaviors by the subject process/user such as network connections, file modifications, and any other spawned child processes.\n - Investigate listening ports and open sockets to look for potential command and control traffic or data exfiltration.\n - !{osquery{\"label\":\"Osquery - Retrieve Listening Ports\",\"query\":\"SELECT pid, address, port, socket, protocol, path FROM listening_ports\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Open Sockets\",\"query\":\"SELECT pid, family, remote_address, remote_port, socket, state FROM process_open_sockets\"}}\n - Identify the user account that performed the action, analyze it, and check whether it should perform this kind of action.\n - !{osquery{\"label\":\"Osquery - Retrieve Information for a Specific User\",\"query\":\"SELECT * FROM users WHERE username = {{user.name}}\"}}\n- Investigate whether the user is currently logged in and active.\n - !{osquery{\"label\":\"Osquery - Investigate the Account Authentication Status\",\"query\":\"SELECT * FROM logged_in_users WHERE user = {{user.name}}\"}}\n\n### False Positive Analysis\n\n- If this activity is related to new benign software installation activity, consider adding exceptions \u2014 preferably with a combination of user and command line conditions.\n- If this activity is related to a system administrator that performed these actions for administrative purposes, consider adding exceptions for this specific administrator user account. \n- Try to understand the context of the execution by thinking about the user, machine, or business purpose. A small number of endpoints, such as servers with unique software, might appear unusual but satisfy a specific business need.\n\n### Related Rules\n\n- Suspicious Kworker UID Elevation - 7dfaaa17-425c-4fe7-bd36-83705fde7c2b\n- Network Activity Detected via Kworker - 25d917c4-aa3c-4111-974c-286c0312ff95\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Leverage the incident response data and logging to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "file where event.action in (\"creation\", \"file_create_event\") and process.name : \"kworker*\" and not (\n (process.name : \"kworker*kcryptd*\") or \n (file.path : (\"/var/log/*\", \"/var/crash/*\", \"/var/run/*\", \"/var/lib/systemd/coredump/*\", \"/var/spool/*\"))\n)\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "ae343298-97bc-47bc-9ea2-5f2ad831c16e", - "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows\nthe Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click Add integrations.\n- In the query bar, search for Elastic Defend and select the integration to see more details about it.\n- Click Add Elastic Defend.\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either Traditional Endpoints or Cloud Workloads.\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest to select \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in New agent policy name. If other agent policies already exist, you can click the Existing hosts tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click Save and Continue.\n- To complete the integration, select Add Elastic Agent to your hosts and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Tactic: Defense Evasion", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1547", - "name": "Boot or Logon Autostart Execution", - "reference": "https://attack.mitre.org/techniques/T1547/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1014", - "name": "Rootkit", - "reference": "https://attack.mitre.org/techniques/T1014/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 3 - }, - "id": "ae343298-97bc-47bc-9ea2-5f2ad831c16e_3", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/b8386923-b02c-4b94-986a-d223d9b01f88_4.json b/packages/security_detection_engine/kibana/security_rule/b8386923-b02c-4b94-986a-d223d9b01f88_4.json deleted file mode 100644 index 93b12938bcb2..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/b8386923-b02c-4b94-986a-d223d9b01f88_4.json +++ /dev/null @@ -1,131 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects PowerShell scripts that contain the default exported functions used on Invoke-NinjaCopy. Attackers can use Invoke-NinjaCopy to read SYSTEM files that are normally locked, such as the NTDS.dit file or registry hives.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Invoke-NinjaCopy script", - "note": "## Triage and analysis\n\n### Investigating PowerShell Invoke-NinjaCopy script\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks, making it available for use in various environments, creating an attractive way for attackers to execute code.\n\nInvoke-NinjaCopy is a PowerShell script capable of reading SYSTEM files that were normally locked, such as `NTDS.dit` or sensitive registry locations. It does so by using the direct volume access technique, which enables attackers to bypass access control mechanisms and file system monitoring by reading the raw data directly from the disk and extracting the file by parsing the file system structures.\n\n#### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Examine file or network events from the involved PowerShell process for suspicious behavior.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n- Determine whether the script stores the captured data locally.\n- Check if the imported function was executed and which file it targeted.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Any activity that triggered the alert and is not inherently malicious must be monitored by the security team.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text : (\n \"StealthReadFile\" or\n \"StealthReadFileAddr\" or\n \"StealthCloseFileDelegate\" or\n \"StealthOpenFile\" or\n \"StealthCloseFile\" or\n \"StealthReadFile\" or\n \"Invoke-NinjaCopy\"\n )\n and not user.id : \"S-1-5-18\"\n and not powershell.file.script_block_text : (\n \"sentinelbreakpoints\" and \"Set-PSBreakpoint\" and \"PowerSploitIndicators\"\n )\n", - "references": [ - "https://github.com/BC-SECURITY/Empire/blob/main/empire/server/data/module_source/collection/Invoke-NinjaCopy.ps1" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "b8386923-b02c-4b94-986a-d223d9b01f88", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Credential Access", - "Data Source: PowerShell Logs", - "Resources: Investigation Guide" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0006", - "name": "Credential Access", - "reference": "https://attack.mitre.org/tactics/TA0006/" - }, - "technique": [ - { - "id": "T1003", - "name": "OS Credential Dumping", - "reference": "https://attack.mitre.org/techniques/T1003/", - "subtechnique": [ - { - "id": "T1003.002", - "name": "Security Account Manager", - "reference": "https://attack.mitre.org/techniques/T1003/002/" - }, - { - "id": "T1003.003", - "name": "NTDS", - "reference": "https://attack.mitre.org/techniques/T1003/003/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1006", - "name": "Direct Volume Access", - "reference": "https://attack.mitre.org/techniques/T1006/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 4 - }, - "id": "b8386923-b02c-4b94-986a-d223d9b01f88_4", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/b9960fef-82c6-4816-befa-44745030e917_111.json b/packages/security_detection_engine/kibana/security_rule/b9960fef-82c6-4816-befa-44745030e917_111.json new file mode 100644 index 000000000000..07d81f977002 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/b9960fef-82c6-4816-befa-44745030e917_111.json @@ -0,0 +1,134 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies a SolarWinds binary modifying the start type of a service to be disabled. An adversary may abuse this technique to manipulate relevant security services.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "SolarWinds Process Disabling Services via Registry", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and registry.value : \"Start\" and\n registry.path : (\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\*\\\\Start\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Services\\\\*\\\\Start\"\n ) and\n registry.data.strings : (\"4\", \"0x00000004\") and\n process.name : (\n \"SolarWinds.BusinessLayerHost*.exe\",\n \"ConfigurationWizard*.exe\",\n \"NetflowDatabaseMaintenance*.exe\",\n \"NetFlowService*.exe\",\n \"SolarWinds.Administration*.exe\",\n \"SolarWinds.Collector.Service*.exe\",\n \"SolarwindsDiagnostics*.exe\")\n", + "references": [ + "https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "b9960fef-82c6-4816-befa-44745030e917", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Tactic: Initial Access", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + }, + { + "id": "T1562", + "name": "Impair Defenses", + "reference": "https://attack.mitre.org/techniques/T1562/", + "subtechnique": [ + { + "id": "T1562.001", + "name": "Disable or Modify Tools", + "reference": "https://attack.mitre.org/techniques/T1562/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0001", + "name": "Initial Access", + "reference": "https://attack.mitre.org/tactics/TA0001/" + }, + "technique": [ + { + "id": "T1195", + "name": "Supply Chain Compromise", + "reference": "https://attack.mitre.org/techniques/T1195/", + "subtechnique": [ + { + "id": "T1195.002", + "name": "Compromise Software Supply Chain", + "reference": "https://attack.mitre.org/techniques/T1195/002/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 111 + }, + "id": "b9960fef-82c6-4816-befa-44745030e917_111", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/bd2c86a0-8b61-4457-ab38-96943984e889_111.json b/packages/security_detection_engine/kibana/security_rule/bd2c86a0-8b61-4457-ab38-96943984e889_111.json deleted file mode 100644 index 163c54aee5e8..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/bd2c86a0-8b61-4457-ab38-96943984e889_111.json +++ /dev/null @@ -1,118 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects the use of Win32 API Functions that can be used to capture user keystrokes in PowerShell scripts. Attackers use this technique to capture user input, looking for credentials and/or other valuable data.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Keylogging Script", - "note": "## Triage and analysis\n\n### Investigating PowerShell Keylogging Script\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks. This makes it available for use in various environments, and creates an attractive way for attackers to execute code.\n\nAttackers can abuse PowerShell capabilities to capture user keystrokes with the goal of stealing credentials and other valuable information as credit card data and confidential conversations.\n\n#### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Examine file or network events from the involved PowerShell process for suspicious behavior.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n- Determine whether the script stores the captured data locally.\n- Investigate whether the script contains exfiltration capabilities and identify the exfiltration server.\n- Assess network data to determine if the host communicated with the exfiltration server.\n\n### False positive analysis\n\n- Regular users do not have a business justification for using scripting utilities to capture keystrokes, making false positives unlikely. In the case of authorized benign true positives (B-TPs), exceptions can be added.\n\n### Related rules\n\n- PowerShell PSReflect Script - 56f2e9b5-4803-4e44-a0a4-a52dc79d57fe\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Prioritize the response if this alert involves key executives or potentially valuable targets for espionage.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n\n", - "query": "event.category:process and host.os.type:windows and\n (\n powershell.file.script_block_text : (GetAsyncKeyState or NtUserGetAsyncKeyState or GetKeyboardState or \"Get-Keystrokes\") or\n powershell.file.script_block_text : (\n (SetWindowsHookA or SetWindowsHookW or SetWindowsHookEx or SetWindowsHookExA or NtUserSetWindowsHookEx) and\n (GetForegroundWindow or GetWindowTextA or GetWindowTextW or \"WM_KEYBOARD_LL\" or \"WH_MOUSE_LL\")\n )\n ) and not user.id : \"S-1-5-18\"\n and not powershell.file.script_block_text : (\n \"sentinelbreakpoints\" and \"Set-PSBreakpoint\"\n )\n", - "references": [ - "https://github.com/EmpireProject/Empire/blob/master/data/module_source/collection/Get-Keystrokes.ps1", - "https://github.com/MojtabaTajik/FunnyKeylogger/blob/master/FunnyLogger.ps1" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "bd2c86a0-8b61-4457-ab38-96943984e889", - "setup": "\nThe 'PowerShell Script Block Logging' logging policy must be enabled.\nSteps to implement the logging policy with with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Collection", - "Resources: Investigation Guide", - "Data Source: PowerShell Logs" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0009", - "name": "Collection", - "reference": "https://attack.mitre.org/tactics/TA0009/" - }, - "technique": [ - { - "id": "T1056", - "name": "Input Capture", - "reference": "https://attack.mitre.org/techniques/T1056/", - "subtechnique": [ - { - "id": "T1056.001", - "name": "Keylogging", - "reference": "https://attack.mitre.org/techniques/T1056/001/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - }, - { - "id": "T1106", - "name": "Native API", - "reference": "https://attack.mitre.org/techniques/T1106/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 111 - }, - "id": "bd2c86a0-8b61-4457-ab38-96943984e889_111", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/bfeaf89b-a2a7-48a3-817f-e41829dc61ee_110.json b/packages/security_detection_engine/kibana/security_rule/bfeaf89b-a2a7-48a3-817f-e41829dc61ee_110.json deleted file mode 100644 index 965b47c5ef8b..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/bfeaf89b-a2a7-48a3-817f-e41829dc61ee_110.json +++ /dev/null @@ -1,179 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identifies the loading of a non Microsoft signed DLL that is missing on a default Windows install (phantom DLL) or one that can be loaded from a different location by a native Windows process. This may be abused to persist or elevate privileges via privileged file write vulnerabilities.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-endpoint.events.*", - "logs-windows.sysmon_operational-*", - "endgame-*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Suspicious DLL Loaded for Persistence or Privilege Escalation", - "note": "## Triage and analysis\n\n### Investigating Suspicious DLL Loaded for Persistence or Privilege Escalation\n\nAttackers can execute malicious code by abusing missing modules that processes try to load, enabling them to escalate privileges or gain persistence. This rule identifies the loading of a non-Microsoft-signed DLL that is missing on a default Windows installation or one that can be loaded from a different location by a native Windows process.\n\n#### Possible investigation steps\n\n- Examine the DLL signature and identify the process that created it.\n - Investigate any abnormal behaviors by the process such as network connections, registry or file modifications, and any spawned child processes.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Retrieve the DLL and determine if it is malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - File and registry access, modification, and creation activities.\n - Service creation and launch activities.\n - Scheduled task creation.\n - Use the PowerShell Get-FileHash cmdlet to get the files' SHA-256 hash values.\n - Search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Any activity that triggered the alert and is not inherently malicious must be monitored by the security team.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "any where host.os.type == \"windows\" and\n (event.category : (\"driver\", \"library\") or (event.category == \"process\" and event.action : \"Image loaded*\")) and\n (\n /* compatible with Elastic Endpoint Library Events */\n (?dll.name : (\"wlbsctrl.dll\", \"wbemcomn.dll\", \"WptsExtensions.dll\", \"Tsmsisrv.dll\", \"TSVIPSrv.dll\", \"Msfte.dll\",\n \"wow64log.dll\", \"WindowsCoreDeviceInfo.dll\", \"Ualapi.dll\", \"wlanhlp.dll\", \"phoneinfo.dll\", \"EdgeGdi.dll\",\n \"cdpsgshims.dll\", \"windowsperformancerecordercontrol.dll\", \"diagtrack_win.dll\", \"oci.dll\", \"TPPCOIPW32.dll\", \n \"tpgenlic.dll\", \"thinmon.dll\", \"fxsst.dll\", \"msTracer.dll\")\n and (?dll.code_signature.trusted != true or ?dll.code_signature.exists != true)) or\n\n /* compatible with Sysmon EventID 7 - Image Load */\n (file.name : (\"wlbsctrl.dll\", \"wbemcomn.dll\", \"WptsExtensions.dll\", \"Tsmsisrv.dll\", \"TSVIPSrv.dll\", \"Msfte.dll\",\n \"wow64log.dll\", \"WindowsCoreDeviceInfo.dll\", \"Ualapi.dll\", \"wlanhlp.dll\", \"phoneinfo.dll\", \"EdgeGdi.dll\",\n \"cdpsgshims.dll\", \"windowsperformancerecordercontrol.dll\", \"diagtrack_win.dll\", \"oci.dll\", \"TPPCOIPW32.dll\", \n \"tpgenlic.dll\", \"thinmon.dll\", \"fxsst.dll\", \"msTracer.dll\") and \n not file.path : (\"?:\\\\Windows\\\\System32\\\\wbemcomn.dll\", \"?:\\\\Windows\\\\SysWOW64\\\\wbemcomn.dll\") and \n not file.hash.sha256 : \n (\"6e837794fc282446906c36d681958f2f6212043fc117c716936920be166a700f\", \n \"b14e4954e8cca060ffeb57f2458b6a3a39c7d2f27e94391cbcea5387652f21a4\", \n \"c258d90acd006fa109dc6b748008edbb196d6168bc75ace0de0de54a4db46662\") and \n not file.code_signature.status == \"Valid\")\n )\n", - "references": [ - "https://itm4n.github.io/windows-dll-hijacking-clarified/", - "http://remoteawesomethoughts.blogspot.com/2019/05/windows-10-task-schedulerservice.html", - "https://googleprojectzero.blogspot.com/2018/04/windows-exploitation-tricks-exploiting.html", - "https://shellz.club/2020/10/16/edgegdi-dll-for-persistence-and-lateral-movement.html", - "https://windows-internals.com/faxing-your-way-to-system/", - "http://waleedassar.blogspot.com/2013/01/wow64logdll.html" - ], - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - }, - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "dll.code_signature.exists", - "type": "boolean" - }, - { - "ecs": true, - "name": "dll.code_signature.trusted", - "type": "boolean" - }, - { - "ecs": true, - "name": "dll.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.code_signature.status", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.hash.sha256", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - } - ], - "risk_score": 73, - "rule_id": "bfeaf89b-a2a7-48a3-817f-e41829dc61ee", - "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", - "severity": "high", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Tactic: Privilege Escalation", - "Tactic: Defense Evasion", - "Resources: Investigation Guide", - "Data Source: Elastic Endgame", - "Data Source: Elastic Defend", - "Data Source: Sysmon" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1574", - "name": "Hijack Execution Flow", - "reference": "https://attack.mitre.org/techniques/T1574/", - "subtechnique": [ - { - "id": "T1574.002", - "name": "DLL Side-Loading", - "reference": "https://attack.mitre.org/techniques/T1574/002/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1574", - "name": "Hijack Execution Flow", - "reference": "https://attack.mitre.org/techniques/T1574/", - "subtechnique": [ - { - "id": "T1574.001", - "name": "DLL Search Order Hijacking", - "reference": "https://attack.mitre.org/techniques/T1574/001/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1036", - "name": "Masquerading", - "reference": "https://attack.mitre.org/techniques/T1036/", - "subtechnique": [ - { - "id": "T1036.001", - "name": "Invalid Code Signature", - "reference": "https://attack.mitre.org/techniques/T1036/001/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 110 - }, - "id": "bfeaf89b-a2a7-48a3-817f-e41829dc61ee_110", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/c5ce48a6-7f57-4ee8-9313-3d0024caee10_109.json b/packages/security_detection_engine/kibana/security_rule/c5ce48a6-7f57-4ee8-9313-3d0024caee10_109.json new file mode 100644 index 000000000000..bc742d36a1ad --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/c5ce48a6-7f57-4ee8-9313-3d0024caee10_109.json @@ -0,0 +1,90 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies the installation of custom Application Compatibility Shim databases. This Windows functionality has been abused by attackers to stealthily gain persistence and arbitrary code execution in legitimate Windows processes.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "winlogbeat-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Installation of Custom Shim Databases", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path : \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\AppCompatFlags\\\\Custom\\\\*.sdb\" and \n not process.executable : \n (\"?:\\\\Program Files (x86)\\\\DesktopCentral_Agent\\\\swrepository\\\\1\\\\swuploads\\\\SAP-SLC\\\\SAPSetupSLC02_14-80001954\\\\Setup\\\\NwSapSetup.exe\", \n \"?:\\\\$WINDOWS.~BT\\\\Sources\\\\SetupPlatform.exe\", \n \"?:\\\\Program Files (x86)\\\\SAP\\\\SAPsetup\\\\setup\\\\NwSapSetup.exe\", \n \"?:\\\\Program Files (x86)\\\\SAP\\\\SapSetup\\\\OnRebootSvc\\\\NWSAPSetupOnRebootInstSvc.exe\", \n \"?:\\\\Program Files (x86)\\\\Kaspersky Lab\\\\Kaspersky Security for Windows Server\\\\kavfs.exe\")\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "c5ce48a6-7f57-4ee8-9313-3d0024caee10", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1546", + "name": "Event Triggered Execution", + "reference": "https://attack.mitre.org/techniques/T1546/", + "subtechnique": [ + { + "id": "T1546.011", + "name": "Application Shimming", + "reference": "https://attack.mitre.org/techniques/T1546/011/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 109 + }, + "id": "c5ce48a6-7f57-4ee8-9313-3d0024caee10_109", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/c7908cac-337a-4f38-b50d-5eeb78bdb531_202.json b/packages/security_detection_engine/kibana/security_rule/c7908cac-337a-4f38-b50d-5eeb78bdb531_202.json deleted file mode 100644 index d2bb64e13b49..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/c7908cac-337a-4f38-b50d-5eeb78bdb531_202.json +++ /dev/null @@ -1,107 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule detects when a user creates a pod/container running in privileged mode. A highly privileged container has access to the node's resources and breaks the isolation between containers. If compromised, an attacker can use the privileged container to gain access to the underlying host. Gaining access to the host may provide the adversary with the opportunity to achieve follow-on objectives, such as establishing persistence, moving laterally within the environment, or setting up a command and control channel on the host.", - "false_positives": [ - "By default a container is not allowed to access any devices on the host, but a \"privileged\" container is given access to all devices on the host. This allows the container nearly all the same access as processes running on the host. An administrator may want to run a privileged container to use operating system administrative capabilities such as manipulating the network stack or accessing hardware devices from within the cluster. Add exceptions for trusted container images using the query field \"kubernetes.audit.requestObject.spec.container.image\"" - ], - "index": [ - "logs-kubernetes.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Kubernetes Privileged Pod Created", - "note": "", - "query": "event.dataset : \"kubernetes.audit_logs\"\n and kubernetes.audit.annotations.authorization_k8s_io/decision:\"allow\"\n and kubernetes.audit.objectRef.resource:pods\n and kubernetes.audit.verb:create\n and kubernetes.audit.requestObject.spec.containers.securityContext.privileged:true\n and not kubernetes.audit.requestObject.spec.containers.image: (\"docker.elastic.co/beats/elastic-agent:8.4.0\")\n", - "references": [ - "https://media.defense.gov/2021/Aug/03/2002820425/-1/-1/1/CTR_KUBERNETES%20HARDENING%20GUIDANCE.PDF", - "https://kubernetes.io/docs/tasks/configure-pod-container/security-context/" - ], - "related_integrations": [ - { - "package": "kubernetes", - "version": "^1.4.1" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.dataset", - "type": "keyword" - }, - { - "ecs": false, - "name": "kubernetes.audit.annotations.authorization_k8s_io/decision", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.objectRef.resource", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.containers.image", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.containers.securityContext.privileged", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.verb", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "c7908cac-337a-4f38-b50d-5eeb78bdb531", - "setup": "The Kubernetes Fleet integration with Audit Logs enabled or similarly structured data is required to be compatible with this rule.", - "severity": "medium", - "tags": [ - "Data Source: Kubernetes", - "Tactic: Execution", - "Tactic: Privilege Escalation" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1611", - "name": "Escape to Host", - "reference": "https://attack.mitre.org/techniques/T1611/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1610", - "name": "Deploy Container", - "reference": "https://attack.mitre.org/techniques/T1610/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 202 - }, - "id": "c7908cac-337a-4f38-b50d-5eeb78bdb531_202", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/c8935a8b-634a-4449-98f7-bb24d3b2c0af_7.json b/packages/security_detection_engine/kibana/security_rule/c8935a8b-634a-4449-98f7-bb24d3b2c0af_7.json deleted file mode 100644 index a9e1b8a1b212..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/c8935a8b-634a-4449-98f7-bb24d3b2c0af_7.json +++ /dev/null @@ -1,101 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule identifies a sequence of a mass file encryption event in conjunction with the creation of a .txt file with a file name containing ransomware keywords executed by the same process in a 1 second timespan. Ransomware is a type of malware that encrypts a victim's files or systems and demands payment (usually in cryptocurrency) in exchange for the decryption key. One important indicator of a ransomware attack is the mass encryption of the file system, after which a new file extension is added to the file.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Potential Linux Ransomware Note Creation Detected", - "query": "sequence by process.entity_id, host.id with maxspan=1s \n [file where host.os.type == \"linux\" and event.type == \"change\" and event.action == \"rename\" and file.extension : \"?*\" \n and process.executable : (\"./*\", \"/tmp/*\", \"/var/tmp/*\", \"/dev/shm/*\", \"/var/run/*\", \"/boot/*\", \"/srv/*\", \"/run/*\") and\n file.path : (\n \"/home/*/Downloads/*\", \"/home/*/Documents/*\", \"/root/*\", \"/bin/*\", \"/usr/bin/*\",\n \"/opt/*\", \"/etc/*\", \"/var/log/*\", \"/var/lib/log/*\", \"/var/backup/*\", \"/var/www/*\")] with runs=25\n [file where host.os.type == \"linux\" and event.action == \"creation\" and file.name : (\n \"*crypt*\", \"*restore*\", \"*lock*\", \"*recovery*\", \"*data*\", \"*read*\", \"*instruction*\", \"*how_to*\", \"*ransom*\"\n )]\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.extension", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.id", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.entity_id", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "c8935a8b-634a-4449-98f7-bb24d3b2c0af", - "setup": "\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Impact", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0040", - "name": "Impact", - "reference": "https://attack.mitre.org/tactics/TA0040/" - }, - "technique": [ - { - "id": "T1486", - "name": "Data Encrypted for Impact", - "reference": "https://attack.mitre.org/techniques/T1486/" - } - ] - } - ], - "type": "eql", - "version": 7 - }, - "id": "c8935a8b-634a-4449-98f7-bb24d3b2c0af_7", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/c8b150f0-0164-475b-a75e-74b47800a9ff_111.json b/packages/security_detection_engine/kibana/security_rule/c8b150f0-0164-475b-a75e-74b47800a9ff_111.json new file mode 100644 index 000000000000..9aa03378f582 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/c8b150f0-0164-475b-a75e-74b47800a9ff_111.json @@ -0,0 +1,110 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies suspicious startup shell folder modifications to change the default Startup directory in order to bypass detections monitoring file creation in the Windows Startup folder.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Suspicious Startup Shell Folder Modification", + "note": "## Triage and analysis\n\n### Investigating Suspicious Startup Shell Folder Modification\n\nTechniques used within malware and by adversaries often leverage the Windows registry to store malicious programs for persistence. Startup shell folders are often targeted as they are not as prevalent as normal Startup folder paths so this behavior may evade existing AV/EDR solutions. These programs may also run with higher privileges which can be ideal for an attacker.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Review the source process and related file tied to the Windows Registry entry.\n- Validate if the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Assess whether this behavior is prevalent in the environment by looking for similar occurrences across hosts.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the file using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (for example, 4624) to the target host after the registry modification.\n\n### False positive analysis\n\n- There is a high possibility of benign legitimate programs being added to shell folders. This activity could be based on new software installations, patches, or other network administrator activity. Before undertaking further investigation, it should be verified that this activity is not benign.\n\n### Related rules\n\n- Startup or Run Key Registry Modification - 97fc44d3-8dae-4019-ae83-298c3015600f\n- Persistent Scripts in the Startup Directory - f7c4dc5a-a58d-491d-9f14-9b66507121c0\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- If the malicious file was delivered via phishing:\n - Block the email sender from sending future emails.\n - Block the malicious web pages.\n - Remove emails from the sender from mailboxes.\n - Consider improvements to the security awareness program.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.value : (\"Common Startup\", \"Startup\") and\n registry.path : (\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\User Shell Folders\\\\Common Startup\",\n \"HKLM\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Shell Folders\\\\Common Startup\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\User Shell Folders\\\\Startup\",\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Shell Folders\\\\Startup\",\n \"HKU\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\User Shell Folders\\\\Startup\",\n \"HKU\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Shell Folders\\\\Startup\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\User Shell Folders\\\\Common Startup\",\n \"\\\\REGISTRY\\\\MACHINE\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Shell Folders\\\\Common Startup\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\User Shell Folders\\\\Startup\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows\\\\CurrentVersion\\\\Explorer\\\\Shell Folders\\\\Startup\"\n ) and\n registry.data.strings != null and\n /* Normal Startup Folder Paths */\n not registry.data.strings : (\n \"C:\\\\ProgramData\\\\Microsoft\\\\Windows\\\\Start Menu\\\\Programs\\\\Startup\",\n \"%ProgramData%\\\\Microsoft\\\\Windows\\\\Start Menu\\\\Programs\\\\Startup\",\n \"%USERPROFILE%\\\\AppData\\\\Roaming\\\\Microsoft\\\\Windows\\\\Start Menu\\\\Programs\\\\Startup\",\n \"C:\\\\Users\\\\*\\\\AppData\\\\Roaming\\\\Microsoft\\\\Windows\\\\Start Menu\\\\Programs\\\\Startup\"\n )\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "c8b150f0-0164-475b-a75e-74b47800a9ff", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.001", + "name": "Registry Run Keys / Startup Folder", + "reference": "https://attack.mitre.org/techniques/T1547/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 111 + }, + "id": "c8b150f0-0164-475b-a75e-74b47800a9ff_111", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/d0e159cf-73e9-40d1-a9ed-077e3158a855_111.json b/packages/security_detection_engine/kibana/security_rule/d0e159cf-73e9-40d1-a9ed-077e3158a855_111.json new file mode 100644 index 000000000000..801bd28f916f --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/d0e159cf-73e9-40d1-a9ed-077e3158a855_111.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "AppInit DLLs are dynamic-link libraries (DLLs) that are loaded into every process that creates a user interface (loads user32.dll) on Microsoft Windows operating systems. The AppInit DLL mechanism is used to load custom code into user-mode processes, allowing for the customization of the user interface and the behavior of Windows-based applications. Attackers who add those DLLs to the registry locations can execute code with elevated privileges, similar to process injection, and provide a solid and constant persistence on the machine.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Registry Persistence via AppInit DLL", + "note": "## Triage and analysis\n\n### Investigating Registry Persistence via AppInit DLL\n\nAppInit DLLs are dynamic-link libraries (DLLs) that are loaded into every process that creates a user interface (loads `user32.dll`) on Microsoft Windows operating systems. The AppInit DLL mechanism is used to load custom code into user-mode processes, allowing for the customization of the user interface and the behavior of Windows-based applications.\n\nAttackers who add those DLLs to the registry locations can execute code with elevated privileges, similar to process injection, and provide a solid and constant persistence on the machine.\n\nThis rule identifies modifications on the AppInit registry keys.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Review the source process and related DLL file tied to the Windows Registry entry.\n - Check whether the DLL is signed, and tied to a authorized program used on your environment.\n- Assess whether this behavior is prevalent in the environment by looking for similar occurrences across hosts.\n- Retrieve all DLLs under the AppInit registry keys:\n - !{osquery{\"label\":\"Osquery - Retrieve AppInit Registry Value\",\"query\":\"SELECT * FROM registry r where (r.key == 'HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows' or\\nr.key == 'HKEY_LOCAL_MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows') and r.name ==\\n'AppInit_DLLs'\\n\"}}\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the process executable and the DLLs using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Benign true positives (B-TPs) can be added as exceptions if necessary.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path : (\n \"HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\AppInit_Dlls\",\n \"HKLM\\\\SOFTWARE\\\\Wow6432Node\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\AppInit_Dlls\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\AppInit_Dlls\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SOFTWARE\\\\Wow6432Node\\\\Microsoft\\\\Windows NT\\\\CurrentVersion\\\\Windows\\\\AppInit_Dlls\"\n ) and\n not process.executable : (\n \"?:\\\\Windows\\\\System32\\\\DriverStore\\\\FileRepository\\\\*\\\\Display.NvContainer\\\\NVDisplay.Container.exe\",\n \"?:\\\\Windows\\\\System32\\\\msiexec.exe\",\n \"?:\\\\Windows\\\\SysWOW64\\\\msiexec.exe\",\n \"?:\\\\Program Files\\\\Commvault\\\\Base\\\\cvd.exe\",\n \"?:\\\\Program Files\\\\Commvault\\\\ContentStore*\\\\Base\\\\cvd.exe\",\n \"?:\\\\Program Files (x86)\\\\Commvault\\\\Base\\\\cvd.exe\",\n \"?:\\\\Program Files (x86)\\\\Commvault\\\\ContentStore*\\\\Base\\\\cvd.exe\",\n \"?:\\\\Program Files\\\\NVIDIA Corporation\\\\Display.NvContainer\\\\NVDisplay.Container.exe\"\n )\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "d0e159cf-73e9-40d1-a9ed-077e3158a855", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1546", + "name": "Event Triggered Execution", + "reference": "https://attack.mitre.org/techniques/T1546/", + "subtechnique": [ + { + "id": "T1546.010", + "name": "AppInit DLLs", + "reference": "https://attack.mitre.org/techniques/T1546/010/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 111 + }, + "id": "d0e159cf-73e9-40d1-a9ed-077e3158a855_111", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/d1e5e410-3e34-412e-9b1f-dd500b3b55cd_1.json b/packages/security_detection_engine/kibana/security_rule/d1e5e410-3e34-412e-9b1f-dd500b3b55cd_1.json new file mode 100644 index 000000000000..2cb20c5c16a7 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/d1e5e410-3e34-412e-9b1f-dd500b3b55cd_1.json @@ -0,0 +1,126 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies a successful console login activity by an EC2 instance profile using an assumed role. This is uncommon behavior and could indicate an attacker using compromised credentials to further exploit an environment. An EC2 instance assumes a role using their EC2 ID as the session name. This rule looks for the pattern \"i-\" which is the beginning pattern for assumed role sessions started by an EC2 instance and a successful `ConsoleLogin` or `GetSigninToken` API call.", + "false_positives": [ + "This is very uncommon behavior and should result in minimal false positives, ensure validity of the triggered event and include exceptions where necessary." + ], + "from": "now-6m", + "index": [ + "filebeat-*", + "logs-aws.cloudtrail-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "AWS EC2 Instance Console Login via Assumed Role", + "query": "any where event.dataset == \"aws.cloudtrail\"\n and event.provider == \"signin.amazonaws.com\"\n and event.action in (\"ConsoleLogin\", \"GetSigninToken\") \n and event.outcome == \"success\"\n and aws.cloudtrail.user_identity.type == \"AssumedRole\"\n and stringContains (user.id, \":i-\")\n", + "references": [ + "https://redcanary.com/blog/aws-sts/", + "https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html/" + ], + "related_integrations": [ + { + "integration": "cloudtrail", + "package": "aws", + "version": "^2.0.0" + } + ], + "required_fields": [ + { + "ecs": false, + "name": "aws.cloudtrail.user_identity.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.dataset", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.outcome", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.provider", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.id", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "d1e5e410-3e34-412e-9b1f-dd500b3b55cd", + "severity": "high", + "tags": [ + "Domain: Cloud", + "Data Source: AWS", + "Data Source: Amazon Web Services", + "Data Source: AWS EC2", + "Data Source: AWS STS", + "Use Case: Identity and Access Audit", + "Tactic: Lateral Movement", + "Tactic: Credential Access" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0008", + "name": "Lateral Movement", + "reference": "https://attack.mitre.org/tactics/TA0008/" + }, + "technique": [ + { + "id": "T1021", + "name": "Remote Services", + "reference": "https://attack.mitre.org/techniques/T1021/", + "subtechnique": [ + { + "id": "T1021.007", + "name": "Cloud Services", + "reference": "https://attack.mitre.org/techniques/T1021/007/" + } + ] + }, + { + "id": "T1550", + "name": "Use Alternate Authentication Material", + "reference": "https://attack.mitre.org/techniques/T1550/", + "subtechnique": [ + { + "id": "T1550.001", + "name": "Application Access Token", + "reference": "https://attack.mitre.org/techniques/T1550/001/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 1 + }, + "id": "d1e5e410-3e34-412e-9b1f-dd500b3b55cd_1", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/d563aaba-2e72-462b-8658-3e5ea22db3a6_107.json b/packages/security_detection_engine/kibana/security_rule/d563aaba-2e72-462b-8658-3e5ea22db3a6_107.json new file mode 100644 index 000000000000..29cdc75234a5 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/d563aaba-2e72-462b-8658-3e5ea22db3a6_107.json @@ -0,0 +1,95 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies a privilege escalation attempt via a rogue Windows directory (Windir) environment variable. This is a known primitive that is often combined with other vulnerabilities to elevate privileges.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Privilege Escalation via Windir Environment Variable", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\nregistry.value : (\"windir\", \"systemroot\") and\nregistry.path : (\n \"HKEY_USERS\\\\*\\\\Environment\\\\windir\",\n \"HKEY_USERS\\\\*\\\\Environment\\\\systemroot\",\n \"HKU\\\\*\\\\Environment\\\\windir\",\n \"HKU\\\\*\\\\Environment\\\\systemroot\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Environment\\\\windir\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Environment\\\\systemroot\"\n ) and\n not registry.data.strings : (\"C:\\\\windows\", \"%SystemRoot%\")\n", + "references": [ + "https://www.tiraniddo.dev/2017/05/exploiting-environment-variables-in.html" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "d563aaba-2e72-462b-8658-3e5ea22db3a6", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Privilege Escalation", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0004", + "name": "Privilege Escalation", + "reference": "https://attack.mitre.org/tactics/TA0004/" + }, + "technique": [ + { + "id": "T1574", + "name": "Hijack Execution Flow", + "reference": "https://attack.mitre.org/techniques/T1574/", + "subtechnique": [ + { + "id": "T1574.007", + "name": "Path Interception by PATH Environment Variable", + "reference": "https://attack.mitre.org/techniques/T1574/007/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 107 + }, + "id": "d563aaba-2e72-462b-8658-3e5ea22db3a6_107", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/d703a5af-d5b0-43bd-8ddb-7a5d500b7da5_110.json b/packages/security_detection_engine/kibana/security_rule/d703a5af-d5b0-43bd-8ddb-7a5d500b7da5_110.json new file mode 100644 index 000000000000..796b1b07b8ac --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/d703a5af-d5b0-43bd-8ddb-7a5d500b7da5_110.json @@ -0,0 +1,111 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies attempts to modify the WDigest security provider in the registry to force the user's password to be stored in clear text in memory. This behavior can be indicative of an adversary attempting to weaken the security configuration of an endpoint. Once the UseLogonCredential value is modified, the adversary may attempt to dump clear text passwords from memory.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Modification of WDigest Security Provider", + "note": "## Triage and analysis\n\n### Investigating Modification of WDigest Security Provider\n\nIn Windows XP, Microsoft added support for a protocol known as WDigest. The WDigest protocol allows clients to send cleartext credentials to Hypertext Transfer Protocol (HTTP) and Simple Authentication Security Layer (SASL) applications based on RFC 2617 and 2831. Windows versions up to 8 and 2012 store logon credentials in memory in plaintext by default, which is no longer the case with newer Windows versions.\n\nStill, attackers can force WDigest to store the passwords insecurely on the memory by modifying the `HKLM\\SYSTEM\\*ControlSet*\\Control\\SecurityProviders\\WDigest\\UseLogonCredential` registry key. This activity is commonly related to the execution of credential dumping tools.\n\n#### Possible investigation steps\n\n- It is unlikely that the monitored registry key was modified legitimately in newer versions of Windows. Analysts should treat any activity triggered from this rule with high priority as it typically represents an active adversary.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Determine if credential dumping tools were run on the host, and retrieve and analyze suspicious executables:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - File and registry access, modification, and creation activities.\n - Service creation and launch activities.\n - Scheduled task creation.\n - Use the PowerShell Get-FileHash cmdlet to get the files' SHA-256 hash values.\n - Search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Use process name, command line, and file hash to search for occurrences on other hosts.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (for example, 4624) to the target host after the registry modification.\n\n### False positive analysis\n\n- This modification should not happen legitimately. Any potential benign true positive (B-TP) should be mapped and monitored by the security team, as these modifications expose the entire domain to credential compromises and consequently unauthorized access.\n\n### Related rules\n\n- Mimikatz Powershell Module Activity - ac96ceb8-4399-4191-af1d-4feeac1f1f46\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Reimage the host operating system and restore compromised files to clean versions.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"creation\" and\n registry.path : (\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\SecurityProviders\\\\WDigest\\\\UseLogonCredential\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\SecurityProviders\\\\WDigest\\\\UseLogonCredential\"\n ) and registry.data.strings : (\"1\", \"0x00000001\") and\n not (process.executable : \"?:\\\\Windows\\\\System32\\\\svchost.exe\" and user.id : \"S-1-5-18\")\n", + "references": [ + "https://www.csoonline.com/article/3438824/how-to-detect-and-halt-credential-theft-via-windows-wdigest.html", + "https://www.praetorian.com/blog/mitigating-mimikatz-wdigest-cleartext-credential-theft?edition=2019", + "https://frsecure.com/compromised-credentials-response-playbook", + "https://www.elastic.co/security-labs/detect-credential-access" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "user.id", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "d703a5af-d5b0-43bd-8ddb-7a5d500b7da5", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Credential Access", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1003", + "name": "OS Credential Dumping", + "reference": "https://attack.mitre.org/techniques/T1003/", + "subtechnique": [ + { + "id": "T1003.001", + "name": "LSASS Memory", + "reference": "https://attack.mitre.org/techniques/T1003/001/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 110 + }, + "id": "d703a5af-d5b0-43bd-8ddb-7a5d500b7da5_110", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/da7733b1-fe08-487e-b536-0a04c6d8b0cd_11.json b/packages/security_detection_engine/kibana/security_rule/da7733b1-fe08-487e-b536-0a04c6d8b0cd_11.json new file mode 100644 index 000000000000..ab0c0017a5d4 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/da7733b1-fe08-487e-b536-0a04c6d8b0cd_11.json @@ -0,0 +1,104 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies attempts to disable the code signing policy through the registry. Code signing provides authenticity on a program, and grants the user with the ability to check whether the program has been tampered with. By allowing the execution of unsigned or self-signed code, threat actors can craft and execute malicious code.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Code Signing Policy Modification Through Registry", + "note": "## Triage and analysis\n\n### Investigating Code Signing Policy Modification Through Registry\n\nMicrosoft created the Windows Driver Signature Enforcement (DSE) security feature to prevent drivers with invalid signatures from loading and executing into the kernel (ring 0). DSE aims to protect systems by blocking attackers from loading malicious drivers on targets. \n\nThis protection is essential for maintaining system security. However, attackers or administrators can disable DSE and load untrusted drivers, which can put the system at risk. Therefore, it's important to keep this feature enabled and only load drivers from trusted sources to ensure system integrity and security.\n\nThis rule identifies registry modifications that can disable DSE.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Use Osquery and endpoint driver events (`event.category = \"driver\"`) to investigate if suspicious drivers were loaded into the system after the registry was modified.\n - !{osquery{\"label\":\"Osquery - Retrieve All Non-Microsoft Drivers with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, class, description, directory, image,\\nissuer_name, manufacturer, service, signed, subject_name FROM drivers JOIN authenticode ON drivers.image =\\nauthenticode.path JOIN hash ON drivers.image = hash.path WHERE NOT (provider == \\\"Microsoft\\\" AND signed == \\\"1\\\")\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve All Unsigned Drivers with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, class, description, directory, image,\\nissuer_name, manufacturer, service, signed, subject_name FROM drivers JOIN authenticode ON drivers.image =\\nauthenticode.path JOIN hash ON drivers.image = hash.path WHERE signed == \\\"0\\\"\\n\"}}\n- Identify the driver's `Device Name` and `Service Name`.\n- Check for alerts from the rules specified in the `Related Rules` section.\n\n### False positive analysis\n\n- This activity should not happen legitimately. The security team should address any potential benign true positive (B-TP), as this configuration can put the user and the domain at risk.\n\n### Related Rules\n\n- First Time Seen Driver Loaded - df0fd41e-5590-4965-ad5e-cd079ec22fa9\n- Untrusted Driver Loaded - d8ab1ec1-feeb-48b9-89e7-c12e189448aa\n- Code Signing Policy Modification Through Built-in tools - b43570de-a908-4f7f-8bdb-b2df6ffd8c80\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- Disable and uninstall all suspicious drivers found in the system. This can be done via Device Manager. (Note that this step may require you to boot the system into Safe Mode.)\n- Remove the related services and registry keys found in the system. Note that the service will probably not stop if the driver is still installed.\n - This can be done via PowerShell `Remove-Service` cmdlet.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Remove and block malicious artifacts identified during triage.\n- Ensure that the Driver Signature Enforcement is enabled on the system.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.value: \"BehaviorOnFailedVerify\" and\n registry.path : (\n \"HKEY_USERS\\\\*\\\\Software\\\\Policies\\\\Microsoft\\\\Windows NT\\\\Driver Signing\\\\BehaviorOnFailedVerify\",\n \"HKU\\\\*\\\\Software\\\\Policies\\\\Microsoft\\\\Windows NT\\\\Driver Signing\\\\BehaviorOnFailedVerify\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Policies\\\\Microsoft\\\\Windows NT\\\\Driver Signing\\\\BehaviorOnFailedVerify\"\n ) and registry.data.strings : (\"0\", \"0x00000000\", \"1\", \"0x00000001\")\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "da7733b1-fe08-487e-b536-0a04c6d8b0cd", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Resources: Investigation Guide", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + }, + { + "id": "T1553", + "name": "Subvert Trust Controls", + "reference": "https://attack.mitre.org/techniques/T1553/", + "subtechnique": [ + { + "id": "T1553.006", + "name": "Code Signing Policy Modification", + "reference": "https://attack.mitre.org/techniques/T1553/006/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 11 + }, + "id": "da7733b1-fe08-487e-b536-0a04c6d8b0cd_11", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/ddab1f5f-7089-44f5-9fda-de5b11322e77_109.json b/packages/security_detection_engine/kibana/security_rule/ddab1f5f-7089-44f5-9fda-de5b11322e77_109.json new file mode 100644 index 000000000000..2621e74f9011 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/ddab1f5f-7089-44f5-9fda-de5b11322e77_109.json @@ -0,0 +1,107 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies NullSessionPipe registry modifications that specify which pipes can be accessed anonymously. This could be indicative of adversary lateral movement preparation by making the added pipe available to everyone.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "NullSessionPipe Registry Modification", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\nregistry.path : (\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\services\\\\LanmanServer\\\\Parameters\\\\NullSessionPipes\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\services\\\\LanmanServer\\\\Parameters\\\\NullSessionPipes\"\n) and length(registry.data.strings) > 0 and\nnot registry.data.strings : \"(empty)\"\n", + "references": [ + "https://www.welivesecurity.com/2019/05/29/turla-powershell-usage/", + "https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/network-access-restrict-anonymous-access-to-named-pipes-and-shares" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "ddab1f5f-7089-44f5-9fda-de5b11322e77", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Lateral Movement", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0008", + "name": "Lateral Movement", + "reference": "https://attack.mitre.org/tactics/TA0008/" + }, + "technique": [ + { + "id": "T1021", + "name": "Remote Services", + "reference": "https://attack.mitre.org/techniques/T1021/", + "subtechnique": [ + { + "id": "T1021.002", + "name": "SMB/Windows Admin Shares", + "reference": "https://attack.mitre.org/techniques/T1021/002/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 109 + }, + "id": "ddab1f5f-7089-44f5-9fda-de5b11322e77_109", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/df7fda76-c92b-4943-bc68-04460a5ea5ba_202.json b/packages/security_detection_engine/kibana/security_rule/df7fda76-c92b-4943-bc68-04460a5ea5ba_202.json deleted file mode 100644 index 0741e95b255f..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/df7fda76-c92b-4943-bc68-04460a5ea5ba_202.json +++ /dev/null @@ -1,108 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule detects an attempt to create or modify a pod attached to the host PID namespace. HostPID allows a pod to access all the processes running on the host and could allow an attacker to take malicious action. When paired with ptrace this can be used to escalate privileges outside of the container. When paired with a privileged container, the pod can see all of the processes on the host. An attacker can enter the init system (PID 1) on the host. From there, they could execute a shell and continue to escalate privileges to root.", - "false_positives": [ - "An administrator or developer may want to use a pod that runs as root and shares the hosts IPC, Network, and PID namespaces for debugging purposes. If something is going wrong in the cluster and there is no easy way to SSH onto the host nodes directly, a privileged pod of this nature can be useful for viewing things like iptable rules and network namespaces from the host's perspective. Add exceptions for trusted container images using the query field \"kubernetes.audit.requestObject.spec.container.image\"" - ], - "index": [ - "logs-kubernetes.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Kubernetes Pod Created With HostPID", - "note": "", - "query": "event.dataset : \"kubernetes.audit_logs\"\n and kubernetes.audit.annotations.authorization_k8s_io/decision:\"allow\"\n and kubernetes.audit.objectRef.resource:\"pods\"\n and kubernetes.audit.verb:(\"create\" or \"update\" or \"patch\")\n and kubernetes.audit.requestObject.spec.hostPID:true\n and not kubernetes.audit.requestObject.spec.containers.image: (\"docker.elastic.co/beats/elastic-agent:8.4.0\")\n", - "references": [ - "https://research.nccgroup.com/2021/11/10/detection-engineering-for-kubernetes-clusters/#part3-kubernetes-detections", - "https://kubernetes.io/docs/concepts/security/pod-security-policy/#host-namespaces", - "https://bishopfox.com/blog/kubernetes-pod-privilege-escalation" - ], - "related_integrations": [ - { - "package": "kubernetes", - "version": "^1.4.1" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.dataset", - "type": "keyword" - }, - { - "ecs": false, - "name": "kubernetes.audit.annotations.authorization_k8s_io/decision", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.objectRef.resource", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.containers.image", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.requestObject.spec.hostPID", - "type": "unknown" - }, - { - "ecs": false, - "name": "kubernetes.audit.verb", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "df7fda76-c92b-4943-bc68-04460a5ea5ba", - "setup": "The Kubernetes Fleet integration with Audit Logs enabled or similarly structured data is required to be compatible with this rule.", - "severity": "medium", - "tags": [ - "Data Source: Kubernetes", - "Tactic: Execution", - "Tactic: Privilege Escalation" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1611", - "name": "Escape to Host", - "reference": "https://attack.mitre.org/techniques/T1611/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1610", - "name": "Deploy Container", - "reference": "https://attack.mitre.org/techniques/T1610/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 202 - }, - "id": "df7fda76-c92b-4943-bc68-04460a5ea5ba_202", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/e26f042e-c590-4e82-8e05-41e81bd822ad_112.json b/packages/security_detection_engine/kibana/security_rule/e26f042e-c590-4e82-8e05-41e81bd822ad_112.json deleted file mode 100644 index 759059874294..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/e26f042e-c590-4e82-8e05-41e81bd822ad_112.json +++ /dev/null @@ -1,133 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects the use of Reflection.Assembly to load PEs and DLLs in memory in PowerShell scripts. Attackers use this method to load executables and DLLs without writing to the disk, bypassing security solutions.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.powershell*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Suspicious .NET Reflection via PowerShell", - "note": "## Triage and analysis\n\n### Investigating Suspicious .NET Reflection via PowerShell\n\nPowerShell is one of the main tools system administrators use for automation, report routines, and other tasks. This makes it available for use in various environments, and creates an attractive way for attackers to execute code.\n\nAttackers can use .NET reflection to load PEs and DLLs in memory. These payloads are commonly embedded in the script, which can circumvent file-based security protections.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Examine file or network events from the involved PowerShell process for suspicious behavior.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Evaluate whether the user needs to use PowerShell to complete tasks.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the script using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (for example, 4624) to the target host after the registry modification.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately outside engineering or IT business units. As long as the analyst did not identify malware or suspicious activity related to the user or host, this alert can be dismissed.\n\n### Related rules\n\n- PowerShell PSReflect Script - 56f2e9b5-4803-4e44-a0a4-a52dc79d57fe\n- Potential Process Injection via PowerShell - 2e29e96a-b67c-455a-afe4-de6183431d0d\n- PowerShell Suspicious Payload Encoded and Compressed - 81fe9dc6-a2d7-4192-a2d8-eed98afc766a\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text : (\n \"[System.Reflection.Assembly]::Load\" or\n \"[Reflection.Assembly]::Load\"\n ) and\n not powershell.file.script_block_text : (\n (\"CommonWorkflowParameters\" or \"RelatedLinksHelpInfo\") and\n \"HelpDisplayStrings\"\n ) and\n not (powershell.file.script_block_text :\n (\"Get-SolutionFiles\" or \"Get-VisualStudio\" or \"Select-MSBuildPath\") and\n file.name : \"PathFunctions.ps1\"\n ) and\n not file.path : C\\:\\\\\\\\Program?Files\\\\\\\\Microsoft?Monitoring?Agent\\\\\\\\Agent\\\\\\\\Health?Service?State\\\\\\\\Monitoring?Host?Temporary?Files*\\\\\\\\AvailabilityGroupMonitoring.ps1 and\n not user.id : \"S-1-5-18\"\n", - "references": [ - "https://docs.microsoft.com/en-us/dotnet/api/system.reflection.assembly.load" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - }, - { - "ecs": true, - "name": "user.id", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "e26f042e-c590-4e82-8e05-41e81bd822ad", - "setup": "## Setup\n\nThe 'PowerShell Script Block Logging' logging policy must be enabled.\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Defense Evasion", - "Tactic: Execution", - "Resources: Investigation Guide", - "Data Source: PowerShell Logs" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [ - { - "id": "T1620", - "name": "Reflective Code Loading", - "reference": "https://attack.mitre.org/techniques/T1620/" - }, - { - "id": "T1055", - "name": "Process Injection", - "reference": "https://attack.mitre.org/techniques/T1055/", - "subtechnique": [ - { - "id": "T1055.001", - "name": "Dynamic-link Library Injection", - "reference": "https://attack.mitre.org/techniques/T1055/001/" - }, - { - "id": "T1055.002", - "name": "Portable Executable Injection", - "reference": "https://attack.mitre.org/techniques/T1055/002/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 112 - }, - "id": "e26f042e-c590-4e82-8e05-41e81bd822ad_112", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/e3e904b3-0a8e-4e68-86a8-977a163e21d3_110.json b/packages/security_detection_engine/kibana/security_rule/e3e904b3-0a8e-4e68-86a8-977a163e21d3_110.json deleted file mode 100644 index b44bd881c83b..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/e3e904b3-0a8e-4e68-86a8-977a163e21d3_110.json +++ /dev/null @@ -1,91 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identifies the creation or modification of a K Desktop Environment (KDE) AutoStart script or desktop file that will execute upon each user logon. Adversaries may abuse this method for persistence.", - "from": "now-9m", - "index": [ - "auditbeat-*", - "logs-endpoint.events.*", - "endgame-*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Persistence via KDE AutoStart Script or Desktop File Modification", - "note": "## Triage and analysis\n\n### Investigating Persistence via KDE AutoStart Script or Desktop File Modification\n\nK Desktop Environment (KDE) is a popular graphical desktop environment for Linux systems. It supports AutoStart scripts and desktop files that execute automatically upon user logon.\n\nAdversaries may exploit this feature to maintain persistence on a compromised system by creating or modifying these files.\n\nThe detection rule 'Persistence via KDE AutoStart Script or Desktop File Modification' is designed to identify such activities by monitoring file events on Linux systems. It specifically targets the creation or modification of files with extensions \".sh\" or \".desktop\" in various AutoStart directories. By detecting these events, the rule helps security analysts identify potential abuse of KDE AutoStart functionality by malicious actors.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n> This investigation guide uses [placeholder fields](https://www.elastic.co/guide/en/security/current/osquery-placeholder-fields.html) to dynamically pass alert data into Osquery queries. Placeholder fields were introduced in Elastic Stack version 8.7.0. If you're using Elastic Stack version 8.6.0 or earlier, you'll need to manually adjust this investigation guide's queries to ensure they properly run.\n\n### Possible investigation steps\n\n- Investigate the file that was created or modified.\n - !{osquery{\"label\":\"Osquery - Retrieve File Listing Information\",\"query\":\"SELECT * FROM file WHERE (\\n path LIKE '/home/%/.config/autostart/%.sh' OR path LIKE '/home/%/.config/autostart/%.desktop' OR\\n path LIKE '/root/.config/autostart/%.sh' OR path LIKE '/root/.config/autostart/%.desktop' OR\\n path LIKE '/home/%/.kde/Autostart/%.sh' OR path LIKE '/home/%/.kde/Autostart/%.desktop' OR\\n path LIKE '/root/.kde/Autostart/%.sh' OR path LIKE '/root/.kde/Autostart/%.desktop' OR\\n path LIKE '/home/%/.kde4/Autostart/%.sh' OR path LIKE '/home/%/.kde4/Autostart/%.desktop' OR\\n path LIKE '/root/.kde4/Autostart/%.sh' OR path LIKE '/root/.kde4/Autostart/%.desktop' OR\\n path LIKE '/home/%/.kde/share/autostart/%.sh' OR path LIKE '/home/%/.kde/share/autostart/%.desktop' OR\\n path LIKE '/root/.kde/share/autostart/%.sh' OR path LIKE '/root/.kde/share/autostart/%.desktop' OR\\n path LIKE '/home/%/.kde4/share/autostart/%.sh' OR path LIKE '/home/%/.kde4/share/autostart/%.desktop' OR\\n path LIKE '/root/.kde4/share/autostart/%.sh' OR path LIKE '/root/.kde4/share/autostart/%.desktop' OR\\n path LIKE '/home/%/.local/share/autostart/%.sh' OR path LIKE '/home/%/.local/share/autostart/%.desktop' OR\\n path LIKE '/root/.local/share/autostart/%.sh' OR path LIKE '/root/.local/share/autostart/%.desktop' OR\\n path LIKE '/home/%/.config/autostart-scripts/%.sh' OR path LIKE '/home/%/.config/autostart-scripts/%.desktop' OR\\n path LIKE '/root/.config/autostart-scripts/%.sh' OR path LIKE '/root/.config/autostart-scripts/%.desktop' OR\\n path LIKE '/etc/xdg/autostart/%.sh' OR path LIKE '/etc/xdg/autostart/%.desktop' OR\\n path LIKE '/usr/share/autostart/%.sh' OR path LIKE '/usr/share/autostart/%.desktop'\\n)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Additional File Listing Information\",\"query\":\"SELECT\\n f.path,\\n u.username AS file_owner,\\n g.groupname AS group_owner,\\n datetime(f.atime, 'unixepoch') AS file_last_access_time,\\n datetime(f.mtime, 'unixepoch') AS file_last_modified_time,\\n datetime(f.ctime, 'unixepoch') AS file_last_status_change_time,\\n datetime(f.btime, 'unixepoch') AS file_created_time,\\n f.size AS size_bytes\\nFROM\\n file f\\n LEFT JOIN users u ON f.uid = u.uid\\n LEFT JOIN groups g ON f.gid = g.gid\\nWHERE (\\n path LIKE '/home/%/.config/autostart/%.sh' OR path LIKE '/home/%/.config/autostart/%.desktop' OR\\n path LIKE '/root/.config/autostart/%.sh' OR path LIKE '/root/.config/autostart/%.desktop' OR\\n path LIKE '/home/%/.kde/Autostart/%.sh' OR path LIKE '/home/%/.kde/Autostart/%.desktop' OR\\n path LIKE '/root/.kde/Autostart/%.sh' OR path LIKE '/root/.kde/Autostart/%.desktop' OR\\n path LIKE '/home/%/.kde4/Autostart/%.sh' OR path LIKE '/home/%/.kde4/Autostart/%.desktop' OR\\n path LIKE '/root/.kde4/Autostart/%.sh' OR path LIKE '/root/.kde4/Autostart/%.desktop' OR\\n path LIKE '/home/%/.kde/share/autostart/%.sh' OR path LIKE '/home/%/.kde/share/autostart/%.desktop' OR\\n path LIKE '/root/.kde/share/autostart/%.sh' OR path LIKE '/root/.kde/share/autostart/%.desktop' OR\\n path LIKE '/home/%/.kde4/share/autostart/%.sh' OR path LIKE '/home/%/.kde4/share/autostart/%.desktop' OR\\n path LIKE '/root/.kde4/share/autostart/%.sh' OR path LIKE '/root/.kde4/share/autostart/%.desktop' OR\\n path LIKE '/home/%/.local/share/autostart/%.sh' OR path LIKE '/home/%/.local/share/autostart/%.desktop' OR\\n path LIKE '/root/.local/share/autostart/%.sh' OR path LIKE '/root/.local/share/autostart/%.desktop' OR\\n path LIKE '/home/%/.config/autostart-scripts/%.sh' OR path LIKE '/home/%/.config/autostart-scripts/%.desktop' OR\\n path LIKE '/root/.config/autostart-scripts/%.sh' OR path LIKE '/root/.config/autostart-scripts/%.desktop' OR\\n path LIKE '/etc/xdg/autostart/%.sh' OR path LIKE '/etc/xdg/autostart/%.desktop' OR\\n path LIKE '/usr/share/autostart/%.sh' OR path LIKE '/usr/share/autostart/%.desktop'\\n)\\n\"}}\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence and whether they are located in expected locations.\n - !{osquery{\"label\":\"Osquery - Retrieve Running Processes by User\",\"query\":\"SELECT pid, username, name FROM processes p JOIN users u ON u.uid = p.uid ORDER BY username\"}}\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Investigate whether the altered scripts call other malicious scripts elsewhere on the file system. \n - If scripts or executables were dropped, retrieve the files and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - Check if the domain is newly registered or unexpected.\n - Check the reputation of the domain or IP address.\n - File access, modification, and creation activities.\n - Cron jobs, services and other persistence mechanisms.\n - !{osquery{\"label\":\"Osquery - Retrieve Crontab Information\",\"query\":\"SELECT * FROM crontab\"}}\n- Investigate abnormal behaviors by the subject process/user such as network connections, file modifications, and any other spawned child processes.\n - Investigate listening ports and open sockets to look for potential command and control traffic or data exfiltration.\n - !{osquery{\"label\":\"Osquery - Retrieve Listening Ports\",\"query\":\"SELECT pid, address, port, socket, protocol, path FROM listening_ports\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Open Sockets\",\"query\":\"SELECT pid, family, remote_address, remote_port, socket, state FROM process_open_sockets\"}}\n - Identify the user account that performed the action, analyze it, and check whether it should perform this kind of action.\n - !{osquery{\"label\":\"Osquery - Retrieve Information for a Specific User\",\"query\":\"SELECT * FROM users WHERE username = {{user.name}}\"}}\n- Investigate whether the user is currently logged in and active.\n - !{osquery{\"label\":\"Osquery - Investigate the Account Authentication Status\",\"query\":\"SELECT * FROM logged_in_users WHERE user = {{user.name}}\"}}\n\n### False positive analysis\n\n- If this activity is related to new benign software installation activity, consider adding exceptions \u2014 preferably with a combination of user and command line conditions.\n- If this activity is related to a system administrator who uses cron jobs for administrative purposes, consider adding exceptions for this specific administrator user account. \n- Try to understand the context of the execution by thinking about the user, machine, or business purpose. A small number of endpoints, such as servers with unique software, might appear unusual but satisfy a specific business need.\n\n### Response and Remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Leverage the incident response data and logging to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "file where host.os.type == \"linux\" and event.type != \"deletion\" and\n file.extension in (\"sh\", \"desktop\") and\n file.path :\n (\n \"/home/*/.config/autostart/*\", \"/root/.config/autostart/*\",\n \"/home/*/.kde/Autostart/*\", \"/root/.kde/Autostart/*\",\n \"/home/*/.kde4/Autostart/*\", \"/root/.kde4/Autostart/*\",\n \"/home/*/.kde/share/autostart/*\", \"/root/.kde/share/autostart/*\",\n \"/home/*/.kde4/share/autostart/*\", \"/root/.kde4/share/autostart/*\",\n \"/home/*/.local/share/autostart/*\", \"/root/.local/share/autostart/*\",\n \"/home/*/.config/autostart-scripts/*\", \"/root/.config/autostart-scripts/*\",\n \"/etc/xdg/autostart/*\", \"/usr/share/autostart/*\"\n ) and\n not process.name in (\"yum\", \"dpkg\", \"install\", \"dnf\", \"teams\", \"yum-cron\", \"dnf-automatic\", \"docker\", \"dockerd\", \n \"rpm\", \"pacman\", \"podman\", \"nautilus\", \"remmina\", \"cinnamon-settings.py\")\n", - "references": [ - "https://userbase.kde.org/System_Settings/Autostart", - "https://www.amnesty.org/en/latest/research/2020/09/german-made-finspy-spyware-found-in-egypt-and-mac-and-linux-versions-revealed/", - "https://www.intezer.com/blog/research/operation-electrorat-attacker-creates-fake-companies-to-drain-your-crypto-wallets/" - ], - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.extension", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "e3e904b3-0a8e-4e68-86a8-977a163e21d3", - "setup": "## Setup\n\nThis rule requires data coming in from one of the following integrations:\n- Elastic Defend\n- Auditbeat\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n### Auditbeat Setup\nAuditbeat is a lightweight shipper that you can install on your servers to audit the activities of users and processes on your systems. For example, you can use Auditbeat to collect and centralize audit events from the Linux Audit Framework. You can also use Auditbeat to detect changes to critical files, like binaries and configuration files, and identify potential security policy violations.\n\n#### The following steps should be executed in order to add the Auditbeat on a Linux System:\n- Elastic provides repositories available for APT and YUM-based distributions. Note that we provide binary packages, but no source packages.\n- To install the APT and YUM repositories follow the setup instructions in this [helper guide](https://www.elastic.co/guide/en/beats/auditbeat/current/setup-repositories.html).\n- To run Auditbeat on Docker follow the setup instructions in the [helper guide](https://www.elastic.co/guide/en/beats/auditbeat/current/running-on-docker.html).\n- To run Auditbeat on Kubernetes follow the setup instructions in the [helper guide](https://www.elastic.co/guide/en/beats/auditbeat/current/running-on-kubernetes.html).\n- For complete \u201cSetup and Run Auditbeat\u201d information refer to the [helper guide](https://www.elastic.co/guide/en/beats/auditbeat/current/setting-up-and-running.html).\n\n#### Custom Ingest Pipeline\nFor versions <8.2, you need to add a custom ingest pipeline to populate `event.ingested` with @timestamp for non-elastic-agent indexes, like auditbeats/filebeat/winlogbeat etc. For more details to add a custom ingest pipeline refer to the [guide](https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html).\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Data Source: Elastic Endgame", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1547", - "name": "Boot or Logon Autostart Execution", - "reference": "https://attack.mitre.org/techniques/T1547/" - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "eql", - "version": 110 - }, - "id": "e3e904b3-0a8e-4e68-86a8-977a163e21d3_110", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/e86da94d-e54b-4fb5-b96c-cecff87e8787_109.json b/packages/security_detection_engine/kibana/security_rule/e86da94d-e54b-4fb5-b96c-cecff87e8787_109.json new file mode 100644 index 000000000000..737aef254698 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/e86da94d-e54b-4fb5-b96c-cecff87e8787_109.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies registry modifications related to the Windows Security Support Provider (SSP) configuration. Adversaries may abuse this to establish persistence in an environment.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Installation of Security Support Provider", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and\n registry.path : (\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Lsa\\\\Security Packages*\",\n \"HKLM\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Lsa\\\\OSConfig\\\\Security Packages*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Lsa\\\\Security Packages*\",\n \"\\\\REGISTRY\\\\MACHINE\\\\SYSTEM\\\\*ControlSet*\\\\Control\\\\Lsa\\\\OSConfig\\\\Security Packages*\"\n ) and\n not process.executable : (\"C:\\\\Windows\\\\System32\\\\msiexec.exe\", \"C:\\\\Windows\\\\SysWOW64\\\\msiexec.exe\")\n", + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "e86da94d-e54b-4fb5-b96c-cecff87e8787", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Persistence", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0003", + "name": "Persistence", + "reference": "https://attack.mitre.org/tactics/TA0003/" + }, + "technique": [ + { + "id": "T1547", + "name": "Boot or Logon Autostart Execution", + "reference": "https://attack.mitre.org/techniques/T1547/", + "subtechnique": [ + { + "id": "T1547.005", + "name": "Security Support Provider", + "reference": "https://attack.mitre.org/techniques/T1547/005/" + } + ] + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 109 + }, + "id": "e86da94d-e54b-4fb5-b96c-cecff87e8787_109", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/e9001ee6-2d00-4d2f-849e-b8b1fb05234c_104.json b/packages/security_detection_engine/kibana/security_rule/e9001ee6-2d00-4d2f-849e-b8b1fb05234c_104.json deleted file mode 100644 index 75b6b32263fa..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/e9001ee6-2d00-4d2f-849e-b8b1fb05234c_104.json +++ /dev/null @@ -1,107 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "This rule monitors for the execution of several commonly used system commands executed by a previously unknown executable located in commonly abused directories. An alert from this rule can indicate the presence of potentially malicious activity, such as the execution of unauthorized or suspicious processes attempting to run malicious code. Detecting and investigating such behavior can help identify and mitigate potential security threats, protecting the system and its data from potential compromise.", - "from": "now-9m", - "history_window_start": "now-14d", - "index": [ - "logs-endpoint.events.*", - "endgame-*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Suspicious System Commands Executed by Previously Unknown Executable", - "new_terms_fields": [ - "host.id", - "user.id", - "process.executable" - ], - "query": "host.os.type:linux and event.category:process and event.action:(exec or exec_event or fork or fork_event) and \nprocess.executable:(\n /bin/* or /usr/bin/* or /usr/share/* or /tmp/* or /var/tmp/* or /dev/shm/* or\n /etc/init.d/* or /etc/rc*.d/* or /etc/crontab or /etc/cron.*/* or /etc/update-motd.d/* or \n /usr/lib/update-notifier/* or /home/*/.* or /boot/* or /srv/* or /run/*) \n and process.args:(whoami or id or hostname or uptime or top or ifconfig or netstat or route or ps or pwd or ls) and \n not process.name:(sudo or which or whoami or id or hostname or uptime or top or netstat or ps or pwd or ls or apt or \n dpkg or yum or rpm or dnf or dockerd or docker or snapd or snap) and\n not process.parent.executable:(/bin/* or /usr/bin/* or /run/k3s/* or /etc/network/* or /opt/Elastic/*)\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.args", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.parent.executable", - "type": "keyword" - } - ], - "risk_score": 21, - "rule_id": "e9001ee6-2d00-4d2f-849e-b8b1fb05234c", - "setup": "\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n", - "severity": "low", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Execution", - "Data Source: Elastic Endgame", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.004", - "name": "Unix Shell", - "reference": "https://attack.mitre.org/techniques/T1059/004/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "new_terms", - "version": 104 - }, - "id": "e9001ee6-2d00-4d2f-849e-b8b1fb05234c_104", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/eaef8a35-12e0-4ac0-bc14-81c72b6bd27c_1.json b/packages/security_detection_engine/kibana/security_rule/eaef8a35-12e0-4ac0-bc14-81c72b6bd27c_1.json deleted file mode 100644 index d76bee38a99c..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/eaef8a35-12e0-4ac0-bc14-81c72b6bd27c_1.json +++ /dev/null @@ -1,126 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects suspicious network events executed by the APT package manager, potentially indicating persistence through an APT backdoor. In Linux, APT (Advanced Package Tool) is a command-line utility used for handling packages on Debian-based systems, providing functions for installing, updating, upgrading, and removing software along with managing package repositories. Attackers can backdoor APT to gain persistence by injecting malicious code into scripts that APT runs, thereby ensuring continued unauthorized access or control each time APT is used for package management.", - "from": "now-9m", - "index": [ - "logs-endpoint.events.*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "Suspicious APT Package Manager Network Connection", - "query": "sequence by host.id with maxspan=5s\n [process where host.os.type == \"linux\" and event.action == \"exec\" and event.type == \"start\" and\n process.parent.name == \"apt\" and process.args == \"-c\" and process.name in (\n \"bash\", \"dash\", \"sh\", \"tcsh\", \"csh\", \"zsh\", \"ksh\", \"fish\"\n )\n ] by process.entity_id\n [network where host.os.type == \"linux\" and event.action == \"connection_attempted\" and event.type == \"start\"\n ] by process.parent.entity_id\n", - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "event.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.id", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.args", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.entity_id", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.parent.entity_id", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.parent.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "eaef8a35-12e0-4ac0-bc14-81c72b6bd27c", - "setup": "\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Tactic: Command and Control", - "Tactic: Defense Evasion", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1543", - "name": "Create or Modify System Process", - "reference": "https://attack.mitre.org/techniques/T1543/" - }, - { - "id": "T1574", - "name": "Hijack Execution Flow", - "reference": "https://attack.mitre.org/techniques/T1574/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0011", - "name": "Command and Control", - "reference": "https://attack.mitre.org/tactics/TA0011/" - }, - "technique": [] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0005", - "name": "Defense Evasion", - "reference": "https://attack.mitre.org/tactics/TA0005/" - }, - "technique": [] - } - ], - "type": "eql", - "version": 1 - }, - "id": "eaef8a35-12e0-4ac0-bc14-81c72b6bd27c_1", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/f2c7b914-eda3-40c2-96ac-d23ef91776ca_108.json b/packages/security_detection_engine/kibana/security_rule/f2c7b914-eda3-40c2-96ac-d23ef91776ca_108.json new file mode 100644 index 000000000000..c81ca910e64b --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/f2c7b914-eda3-40c2-96ac-d23ef91776ca_108.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies modifications to the registered Subject Interface Package (SIP) providers. SIP providers are used by the Windows cryptographic system to validate file signatures on the system. This may be an attempt to bypass signature validation checks or inject code into critical processes.", + "from": "now-9m", + "index": [ + "logs-endpoint.events.registry-*", + "endgame-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "SIP Provider Modification", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and registry.value : (\"Dll\", \"$Dll\") and\n registry.path: (\n \"*\\\\SOFTWARE\\\\Microsoft\\\\Cryptography\\\\OID\\\\EncodingType 0\\\\CryptSIPDllPutSignedDataMsg\\\\{*}\\\\Dll\",\n \"*\\\\SOFTWARE\\\\WOW6432Node\\\\Microsoft\\\\Cryptography\\\\OID\\\\EncodingType 0\\\\CryptSIPDllPutSignedDataMsg\\\\{*}\\\\Dll\",\n \"*\\\\SOFTWARE\\\\Microsoft\\\\Cryptography\\\\Providers\\\\Trust\\\\FinalPolicy\\\\{*}\\\\$Dll\",\n \"*\\\\SOFTWARE\\\\WOW6432Node\\\\Microsoft\\\\Cryptography\\\\Providers\\\\Trust\\\\FinalPolicy\\\\{*}\\\\$Dll\"\n ) and\n registry.data.strings:\"*.dll\" and\n not (process.name : \"msiexec.exe\" and registry.data.strings : \"mso.dll\") and\n not (process.name : \"regsvr32.exe\" and registry.data.strings == \"WINTRUST.DLL\")\n", + "references": [ + "https://github.com/mattifestation/PoCSubjectInterfacePackage" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.name", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "f2c7b914-eda3-40c2-96ac-d23ef91776ca", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1553", + "name": "Subvert Trust Controls", + "reference": "https://attack.mitre.org/techniques/T1553/", + "subtechnique": [ + { + "id": "T1553.003", + "name": "SIP and Trust Provider Hijacking", + "reference": "https://attack.mitre.org/techniques/T1553/003/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 108 + }, + "id": "f2c7b914-eda3-40c2-96ac-d23ef91776ca_108", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/f2f46686-6f3c-4724-bd7d-24e31c70f98f_108.json b/packages/security_detection_engine/kibana/security_rule/f2f46686-6f3c-4724-bd7d-24e31c70f98f_108.json deleted file mode 100644 index 9ec7370deb7f..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/f2f46686-6f3c-4724-bd7d-24e31c70f98f_108.json +++ /dev/null @@ -1,106 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Identifies the creation of a Local Security Authority Subsystem Service (lsass.exe) default memory dump. This may indicate a credential access attempt via trusted system utilities such as Task Manager (taskmgr.exe) and SQL Dumper (sqldumper.exe) or known pentesting tools such as Dumpert and AndrewSpecial.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-endpoint.events.*", - "logs-windows.sysmon_operational-*", - "endgame-*" - ], - "language": "eql", - "license": "Elastic License v2", - "name": "LSASS Memory Dump Creation", - "note": "## Triage and analysis\n\n### Investigating LSASS Memory Dump Creation\n\nLocal Security Authority Server Service (LSASS) is a process in Microsoft Windows operating systems that is responsible for enforcing security policy on the system. It verifies users logging on to a Windows computer or server, handles password changes, and creates access tokens.\n\nThis rule looks for the creation of memory dump files with file names compatible with credential dumping tools or that start with `lsass`.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n\n#### Possible investigation steps\n\n- Identify the process responsible for creating the dump file.\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Examine the host for derived artifacts that indicate suspicious activities:\n - Analyze the process executable using a private sandboxed analysis system.\n - Observe and collect information about the following activities in both the sandbox and the alert subject host:\n - Attempts to contact external domains and addresses.\n - Use the Elastic Defend network events to determine domains and addresses contacted by the subject process by filtering by the process' `process.entity_id`.\n - Examine the DNS cache for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve DNS Cache\",\"query\":\"SELECT * FROM dns_cache\"}}\n - Use the Elastic Defend registry events to examine registry keys accessed, modified, or created by the related processes in the process tree.\n - Examine the host services for suspicious or anomalous entries.\n - !{osquery{\"label\":\"Osquery - Retrieve All Services\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Services Running on User Accounts\",\"query\":\"SELECT description, display_name, name, path, pid, service_type, start_type, status, user_account FROM services WHERE\\nNOT (user_account LIKE '%LocalSystem' OR user_account LIKE '%LocalService' OR user_account LIKE '%NetworkService' OR\\nuser_account == null)\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Service Unsigned Executables with Virustotal Link\",\"query\":\"SELECT concat('https://www.virustotal.com/gui/file/', sha1) AS VtLink, name, description, start_type, status, pid,\\nservices.path FROM services JOIN authenticode ON services.path = authenticode.path OR services.module_path =\\nauthenticode.path JOIN hash ON services.path = hash.path WHERE authenticode.result != 'trusted'\\n\"}}\n - Retrieve the files' SHA-256 hash values using the PowerShell `Get-FileHash` cmdlet and search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Investigate potentially compromised accounts. Analysts can do this by searching for login events (for example, 4624) to the target host after the registry modification.\n\n### False positive analysis\n\n- This activity is unlikely to happen legitimately. Any activity that triggered the alert and is not inherently malicious must be monitored by the security team.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "file where host.os.type == \"windows\" and event.action != \"deletion\" and\n file.name : (\"lsass*.dmp\", \"dumpert.dmp\", \"Andrew.dmp\", \"SQLDmpr*.mdmp\", \"Coredump.dmp\") and\n\n not (\n process.executable : (\n \"?:\\\\Program Files\\\\Microsoft SQL Server\\\\*\\\\Shared\\\\SqlDumper.exe\",\n \"?:\\\\Windows\\\\System32\\\\dllhost.exe\"\n ) and\n file.path : (\n \"?:\\\\*\\\\Reporting Services\\\\Logfiles\\\\SQLDmpr*.mdmp\",\n \"?:\\\\Program Files\\\\Microsoft SQL Server\\\\*\\\\Shared\\\\ErrorDumps\\\\SQLDmpr*.mdmp\",\n \"?:\\\\Program Files\\\\Microsoft SQL Server\\\\*\\\\MSSQL\\\\LOG\\\\SQLDmpr*.mdmp\"\n )\n ) and\n\n not (\n process.executable : \"?:\\\\Windows\\\\system32\\\\WerFault.exe\" and\n file.path : (\n \"?:\\\\Windows\\\\System32\\\\config\\\\systemprofile\\\\AppData\\\\Local\\\\CrashDumps\\\\lsass.exe.*.dmp\",\n \"?:\\\\Windows\\\\System32\\\\%LOCALAPPDATA%\\\\CrashDumps\\\\lsass.exe.*.dmp\"\n )\n )\n", - "references": [ - "https://github.com/outflanknl/Dumpert", - "https://github.com/hoangprod/AndrewSpecial" - ], - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - }, - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - } - ], - "risk_score": 73, - "rule_id": "f2f46686-6f3c-4724-bd7d-24e31c70f98f", - "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", - "severity": "high", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Credential Access", - "Data Source: Elastic Endgame", - "Resources: Investigation Guide", - "Data Source: Elastic Defend", - "Data Source: Sysmon" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0006", - "name": "Credential Access", - "reference": "https://attack.mitre.org/tactics/TA0006/" - }, - "technique": [ - { - "id": "T1003", - "name": "OS Credential Dumping", - "reference": "https://attack.mitre.org/techniques/T1003/", - "subtechnique": [ - { - "id": "T1003.001", - "name": "LSASS Memory", - "reference": "https://attack.mitre.org/techniques/T1003/001/" - } - ] - } - ] - } - ], - "timeline_id": "4d4c0b59-ea83-483f-b8c1-8c360ee53c5c", - "timeline_title": "Comprehensive File Timeline", - "timestamp_override": "event.ingested", - "type": "eql", - "version": 108 - }, - "id": "f2f46686-6f3c-4724-bd7d-24e31c70f98f_108", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/f874315d-5188-4b4a-8521-d1c73093a7e4_112.json b/packages/security_detection_engine/kibana/security_rule/f874315d-5188-4b4a-8521-d1c73093a7e4_112.json new file mode 100644 index 000000000000..017f26494f86 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/f874315d-5188-4b4a-8521-d1c73093a7e4_112.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies modifications of the AmsiEnable registry key to 0, which disables the Antimalware Scan Interface (AMSI). An adversary can modify this key to disable AMSI protections.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Modification of AmsiEnable Registry Key", + "note": "## Triage and analysis\n\n### Investigating Modification of AmsiEnable Registry Key\n\nThe Windows Antimalware Scan Interface (AMSI) is a versatile interface standard that allows your applications and services to integrate with any antimalware product on a machine. AMSI integrates with multiple Windows components, ranging from User Account Control (UAC) to VBA macros and PowerShell.\n\nSince AMSI is widely used across security products for increased visibility, attackers can disable it to evade detections that rely on it.\n\nThis rule monitors the modifications to the Software\\Microsoft\\Windows Script\\Settings\\AmsiEnable registry key.\n\n#### Possible investigation steps\n\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Investigate the execution of scripts and macros after the registry modification.\n- Retrieve scripts or Microsoft Office files and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - File and registry access, modification, and creation activities.\n - Service creation and launch activities.\n - Scheduled task creation.\n - Use the PowerShell Get-FileHash cmdlet to get the files' SHA-256 hash values.\n - Search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n- Use process name, command line, and file hash to search for occurrences on other hosts.\n\n### False positive analysis\n\n- This modification should not happen legitimately. Any potential benign true positive (B-TP) should be mapped and monitored by the security team as these modifications expose the host to malware infections.\n\n### Related rules\n\n- Microsoft Windows Defender Tampering - fe794edd-487f-4a90-b285-3ee54f2af2d3\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Delete or set the key to its default value.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and registry.value : \"AmsiEnable\" and\n registry.path : (\n \"HKEY_USERS\\\\*\\\\Software\\\\Microsoft\\\\Windows Script\\\\Settings\\\\AmsiEnable\",\n \"HKU\\\\*\\\\Software\\\\Microsoft\\\\Windows Script\\\\Settings\\\\AmsiEnable\",\n \"\\\\REGISTRY\\\\USER\\\\*\\\\Software\\\\Microsoft\\\\Windows Script\\\\Settings\\\\AmsiEnable\"\n ) and\n registry.data.strings: (\"0\", \"0x00000000\")\n", + "references": [ + "https://hackinparis.com/data/slides/2019/talks/HIP2019-Dominic_Chell-Cracking_The_Perimeter_With_Sharpshooter.pdf", + "https://docs.microsoft.com/en-us/windows/win32/amsi/antimalware-scan-interface-portal" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 73, + "rule_id": "f874315d-5188-4b4a-8521-d1c73093a7e4", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "high", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + }, + { + "id": "T1562", + "name": "Impair Defenses", + "reference": "https://attack.mitre.org/techniques/T1562/", + "subtechnique": [ + { + "id": "T1562.001", + "name": "Disable or Modify Tools", + "reference": "https://attack.mitre.org/techniques/T1562/001/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 112 + }, + "id": "f874315d-5188-4b4a-8521-d1c73093a7e4_112", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/f8822053-a5d2-46db-8c96-d460b12c36ac_1.json b/packages/security_detection_engine/kibana/security_rule/f8822053-a5d2-46db-8c96-d460b12c36ac_1.json new file mode 100644 index 000000000000..1a90d3e7acf3 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/f8822053-a5d2-46db-8c96-d460b12c36ac_1.json @@ -0,0 +1,100 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Identifies the modification of the nTSecurityDescriptor attribute in a domain object with rights related to DCSync to a user/computer account. Attackers can use this backdoor to re-obtain access to hashes of any user/computer.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-system.security*", + "logs-windows.forwarded*" + ], + "language": "kuery", + "license": "Elastic License v2", + "name": "Potential Active Directory Replication Account Backdoor", + "note": "", + "query": "event.action:(\"Directory Service Changes\" or \"directory-service-object-modified\") and event.code:\"5136\" and\n winlog.event_data.AttributeLDAPDisplayName:\"nTSecurityDescriptor\" and\n winlog.event_data.AttributeValue : (\n (\n *1131f6ad-9c07-11d1-f79f-00c04fc2dcd2;;S-1-5-21-* and\n *1131f6aa-9c07-11d1-f79f-00c04fc2dcd2;;S-1-5-21-* and\n *89e95b76-444d-4c62-991a-0facbeda640c;;S-1-5-21-*\n )\n )\n", + "references": [ + "https://twitter.com/menasec1/status/1111556090137903104", + "https://www.specterops.io/assets/resources/an_ace_up_the_sleeve.pdf", + "https://github.com/SigmaHQ/sigma/blob/master/rules/windows/builtin/security/win_security_account_backdoor_dcsync_rights.yml", + "https://learn.microsoft.com/en-us/windows/win32/adschema/r-ds-replication-get-changes-all", + "https://learn.microsoft.com/en-us/windows/win32/adschema/r-ds-replication-get-changes", + "https://learn.microsoft.com/en-us/windows/win32/adschema/r-ds-replication-get-changes-in-filtered-set" + ], + "related_integrations": [ + { + "package": "system", + "version": "^1.6.4" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.action", + "type": "keyword" + }, + { + "ecs": true, + "name": "event.code", + "type": "keyword" + }, + { + "ecs": false, + "name": "winlog.event_data.AttributeLDAPDisplayName", + "type": "unknown" + }, + { + "ecs": false, + "name": "winlog.event_data.AttributeValue", + "type": "unknown" + } + ], + "risk_score": 47, + "rule_id": "f8822053-a5d2-46db-8c96-d460b12c36ac", + "setup": "The 'Audit Directory Service Changes' logging policy must be configured for (Success, Failure).\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nPolicies >\nWindows Settings >\nSecurity Settings >\nAdvanced Audit Policies Configuration >\nAudit Policies >\nDS Access >\nAudit Directory Service Changes (Success,Failure)\n```", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Credential Access", + "Data Source: Active Directory", + "Use Case: Active Directory Monitoring" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0006", + "name": "Credential Access", + "reference": "https://attack.mitre.org/tactics/TA0006/" + }, + "technique": [ + { + "id": "T1003", + "name": "OS Credential Dumping", + "reference": "https://attack.mitre.org/techniques/T1003/", + "subtechnique": [ + { + "id": "T1003.006", + "name": "DCSync", + "reference": "https://attack.mitre.org/techniques/T1003/006/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "query", + "version": 1 + }, + "id": "f8822053-a5d2-46db-8c96-d460b12c36ac_1", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/fda1d332-5e08-4f27-8a9b-8c802e3292a6_8.json b/packages/security_detection_engine/kibana/security_rule/fda1d332-5e08-4f27-8a9b-8c802e3292a6_11.json similarity index 58% rename from packages/security_detection_engine/kibana/security_rule/fda1d332-5e08-4f27-8a9b-8c802e3292a6_8.json rename to packages/security_detection_engine/kibana/security_rule/fda1d332-5e08-4f27-8a9b-8c802e3292a6_11.json index 25126f5b7cca..f2705211ac7d 100644 --- a/packages/security_detection_engine/kibana/security_rule/fda1d332-5e08-4f27-8a9b-8c802e3292a6_8.json +++ b/packages/security_detection_engine/kibana/security_rule/fda1d332-5e08-4f27-8a9b-8c802e3292a6_11.json @@ -3,15 +3,18 @@ "author": [ "Elastic" ], - "description": "This rule monitors for the copying or moving of a system binary to a suspicious directory. Adversaries may copy/move and rename system binaries to evade detection. Copying a system binary to a different location should not occur often, so if it does, the activity should be investigated.", + "description": "This rule monitors for the copying or moving of a system binary. Adversaries may copy/move and rename system binaries to evade detection. Copying a system binary to a different location should not occur often, so if it does, the activity should be investigated.", "from": "now-9m", "index": [ - "logs-endpoint.events.*" + "logs-endpoint.events.file*" ], "language": "eql", "license": "Elastic License v2", - "name": "System Binary Copied and/or Moved to Suspicious Directory", - "query": "sequence by host.id, process.entity_id with maxspan=1s\n [process where host.os.type == \"linux\" and event.type == \"start\" and event.action == \"exec\" and \n process.name in (\"cp\", \"mv\") and process.args : (\n // Shells\n \"/bin/*sh\", \"/usr/bin/*sh\", \n\n // Interpreters\n \"/bin/python*\", \"/usr/bin/python*\", \"/bin/php*\", \"/usr/bin/php*\", \"/bin/ruby*\", \"/usr/bin/ruby*\", \"/bin/perl*\",\n \"/usr/bin/perl*\", \"/bin/lua*\", \"/usr/bin/lua*\", \"/bin/java*\", \"/usr/bin/java*\", \n\n // Compilers\n \"/bin/gcc*\", \"/usr/bin/gcc*\", \"/bin/g++*\", \"/usr/bin/g++*\", \"/bin/cc\", \"/usr/bin/cc\",\n\n // Suspicious utilities\n \"/bin/nc\", \"/usr/bin/nc\", \"/bin/ncat\", \"/usr/bin/ncat\", \"/bin/netcat\", \"/usr/bin/netcat\", \"/bin/nc.openbsd\",\n \"/usr/bin/nc.openbsd\", \"/bin/*awk\", \"/usr/bin/*awk\", \"/bin/socat\", \"/usr/bin/socat\", \"/bin/openssl\",\n \"/usr/bin/openssl\", \"/bin/telnet\", \"/usr/bin/telnet\", \"/bin/mkfifo\", \"/usr/bin/mkfifo\", \"/bin/mknod\",\n \"/usr/bin/mknod\", \"/bin/ping*\", \"/usr/bin/ping*\", \"/bin/nmap\", \"/usr/bin/nmap\",\n\n // System utilities\n \"/bin/ls\", \"/usr/bin/ls\", \"/bin/cat\", \"/usr/bin/cat\", \"/bin/sudo\", \"/usr/bin/sudo\", \"/bin/curl\", \"/usr/bin/curl\",\n \"/bin/wget\", \"/usr/bin/wget\", \"/bin/tmux\", \"/usr/bin/tmux\", \"/bin/screen\", \"/usr/bin/screen\", \"/bin/ssh\",\n \"/usr/bin/ssh\", \"/bin/ftp\", \"/usr/bin/ftp\"\n ) and not process.parent.name in (\"dracut-install\", \"apticron\", \"generate-from-dir\", \"platform-python\")]\n [file where host.os.type == \"linux\" and event.action == \"creation\" and file.path : (\n \"/dev/shm/*\", \"/run/shm/*\", \"/tmp/*\", \"/var/tmp/*\", \"/run/*\", \"/var/run/*\", \"/var/www/*\", \"/proc/*/fd/*\"\n ) and not file.path : (\"/tmp/rear*\", \"/var/tmp/rear*\", \"/var/tmp/dracut*\", \"/var/tmp/mkinitramfs*\")]\n", + "name": "System Binary Moved or Copied", + "query": "file where host.os.type == \"linux\" and event.type == \"change\" and event.action == \"rename\" and\nfile.Ext.original.path : (\n \"/bin/*\", \"/usr/bin/*\", \"/usr/local/bin/*\", \"/sbin/*\", \"/usr/sbin/*\", \"/usr/local/sbin/*\"\n) and not (\n process.executable in (\n \"/bin/dpkg\", \"/usr/bin/dpkg\", \"/bin/dockerd\", \"/usr/bin/dockerd\", \"/usr/sbin/dockerd\", \"/bin/microdnf\",\n \"/usr/bin/microdnf\", \"/bin/rpm\", \"/usr/bin/rpm\", \"/bin/snapd\", \"/usr/bin/snapd\", \"/bin/yum\", \"/usr/bin/yum\",\n \"/bin/dnf\", \"/usr/bin/dnf\", \"/bin/podman\", \"/usr/bin/podman\", \"/bin/dnf-automatic\", \"/usr/bin/dnf-automatic\",\n \"/bin/pacman\", \"/usr/bin/pacman\", \"/usr/bin/dpkg-divert\", \"/bin/dpkg-divert\", \"/sbin/apk\", \"/usr/sbin/apk\",\n \"/usr/local/sbin/apk\", \"/usr/bin/apt\", \"/usr/sbin/pacman\", \"/bin/podman\", \"/usr/bin/podman\", \"/usr/bin/puppet\",\n \"/bin/puppet\", \"/opt/puppetlabs/puppet/bin/puppet\", \"/usr/bin/chef-client\", \"/bin/chef-client\",\n \"/bin/autossl_check\", \"/usr/bin/autossl_check\", \"/proc/self/exe\", \"/dev/fd/*\", \"/usr/bin/pamac-daemon\",\n \"/bin/pamac-daemon\", \"/usr/lib/snapd/snapd\", \"/usr/local/bin/dockerd\", \"/usr/libexec/netplan/generate\",\n \"/usr/bin/update-alternatives\", \"/bin/update-alternatives\", \"/usr/sbin/update-alternatives\",\n \"/sbin/update-alternatives\", \"/usr/bin/pip3\", \"/bin/pip3\", \"/usr/local/bin/pip3\", \"/usr/local/bin/node\",\n \"/bin/node\", \"/usr/bin/node\", \"/sbin/apk\", \"/usr/sbin/apk\", \"/usr/local/sbin/apk\", \"/usr/bin/pip\", \"/bin/pip\",\n \"/usr/local/bin/pip\", \"/usr/libexec/platform-python\", \"/usr/bin/platform-python\", \"/bin/platform-python\",\n \"/usr/lib/systemd/systemd\", \"/usr/sbin/sshd\", \"/sbin/sshd\", \"/usr/local/sbin/sshd\", \"/usr/sbin/crond\", \"/sbin/crond\",\n \"/usr/local/sbin/crond\", \"/usr/sbin/gdm\"\n ) or\n file.Ext.original.path : (\n \"/bin/*.tmp\", \"/usr/bin/*.tmp\", \"/usr/local/bin/*.tmp\", \"/sbin/*.tmp\", \"/usr/sbin/*.tmp\", \"/usr/local/sbin/*.tmp\"\n ) or\n file.extension in (\"swp\", \"swpx\", \"swx\", \"dpkg-remove\") or\n file.Ext.original.extension == \"dpkg-new\" or\n process.executable : (\"/nix/store/*\", \"/var/lib/dpkg/*\", \"/tmp/vmis.*\", \"/snap/*\", \"/dev/fd/*\") or\n process.executable == null or\n (process.name == \"sed\" and file.name : \"sed*\") or\n (process.name == \"perl\" and file.name : \"e2scrub_all.tmp*\") \n)\n", + "references": [ + "https://intezer.com/blog/research/kaiji-new-chinese-linux-malware-turning-to-golang/" + ], "related_integrations": [ { "package": "endpoint", @@ -30,45 +33,45 @@ "type": "keyword" }, { - "ecs": true, - "name": "file.path", - "type": "keyword" + "ecs": false, + "name": "file.Ext.original.extension", + "type": "unknown" }, { - "ecs": true, - "name": "host.id", - "type": "keyword" + "ecs": false, + "name": "file.Ext.original.path", + "type": "unknown" }, { "ecs": true, - "name": "host.os.type", + "name": "file.extension", "type": "keyword" }, { "ecs": true, - "name": "process.args", + "name": "file.name", "type": "keyword" }, { "ecs": true, - "name": "process.entity_id", + "name": "host.os.type", "type": "keyword" }, { "ecs": true, - "name": "process.name", + "name": "process.executable", "type": "keyword" }, { "ecs": true, - "name": "process.parent.name", + "name": "process.name", "type": "keyword" } ], - "risk_score": 21, + "risk_score": 47, "rule_id": "fda1d332-5e08-4f27-8a9b-8c802e3292a6", "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "low", + "severity": "medium", "tags": [ "Domain: Endpoint", "OS: Linux", @@ -105,9 +108,10 @@ ] } ], + "timestamp_override": "event.ingested", "type": "eql", - "version": 8 + "version": 11 }, - "id": "fda1d332-5e08-4f27-8a9b-8c802e3292a6_8", + "id": "fda1d332-5e08-4f27-8a9b-8c802e3292a6_11", "type": "security-rule" } \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/fddff193-48a3-484d-8d35-90bb3d323a56_3.json b/packages/security_detection_engine/kibana/security_rule/fddff193-48a3-484d-8d35-90bb3d323a56_3.json deleted file mode 100644 index a69fbfe02c45..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/fddff193-48a3-484d-8d35-90bb3d323a56_3.json +++ /dev/null @@ -1,104 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Detects PowerShell scripts that have the capability of dumping Kerberos tickets from LSA, which potentially indicates an attacker's attempt to acquire credentials for lateral movement.", - "from": "now-9m", - "index": [ - "winlogbeat-*", - "logs-windows.*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "PowerShell Kerberos Ticket Dump", - "note": "## Triage and analysis\n\n### Investigating PowerShell Kerberos Ticket Dump\n\nKerberos is an authentication protocol that relies on tickets to grant access to network resources. Adversaries may abuse this protocol to acquire credentials for lateral movement within a network.\n\nThis rule indicates the use of scripts that contain code capable of dumping Kerberos tickets, which can indicate potential PowerShell abuse for credential theft.\n\n### Possible investigation steps\n\n- Examine the script content that triggered the detection; look for suspicious DLL imports, collection or exfiltration capabilities, suspicious functions, encoded or compressed data, and other potentially malicious characteristics.\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Investigate if the script was executed, and if so, which account was targeted.\n- Identify the account involved and contact the owner to confirm whether they are aware of this activity.\n- Check if the script has any other functionality that can be potentially malicious.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Investigate other potentially compromised accounts and hosts. Review login events (like 4624) for suspicious events involving the subject and target accounts.\n\n### False positive analysis\n\n- If this activity is expected and noisy in your environment, consider adding exceptions \u2014 preferably with a combination of file path and user ID conditions.\n\n### Related Rules\n\n- PowerShell Kerberos Ticket Request - eb610e70-f9e6-4949-82b9-f1c5bcd37c39\n\n### Response and Remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n - If malicious activity is confirmed, perform a broader investigation to identify the scope of the compromise and determine the appropriate remediation steps.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Disable or limit involved accounts during the investigation and response.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Remove and block malicious artifacts identified during triage.\n- Reimage the host operating system or restore the compromised files to clean versions.\n- Restrict PowerShell usage outside of IT and engineering business units using GPOs, AppLocker, Intune, or similar software.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "event.category:process and host.os.type:windows and\n powershell.file.script_block_text : (\n \"LsaCallAuthenticationPackage\" and\n (\n \"KerbRetrieveEncodedTicketMessage\" or\n \"KerbQueryTicketCacheMessage\" or\n \"KerbQueryTicketCacheExMessage\" or\n \"KerbQueryTicketCacheEx2Message\" or\n \"KerbRetrieveTicketMessage\" or\n \"KerbDecryptDataMessage\"\n )\n )\n", - "references": [ - "https://github.com/MzHmO/PowershellKerberos/blob/main/dumper.ps1" - ], - "related_integrations": [ - { - "package": "windows", - "version": "^1.5.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.category", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": false, - "name": "powershell.file.script_block_text", - "type": "unknown" - } - ], - "risk_score": 47, - "rule_id": "fddff193-48a3-484d-8d35-90bb3d323a56", - "setup": "\nThe 'PowerShell Script Block Logging' logging policy must be enabled.\nSteps to implement the logging policy with Advanced Audit Configuration:\n\n```\nComputer Configuration >\nAdministrative Templates >\nWindows PowerShell >\nTurn on PowerShell Script Block Logging (Enable)\n```\n\nSteps to implement the logging policy via registry:\n\n```\nreg add \"hklm\\SOFTWARE\\Policies\\Microsoft\\Windows\\PowerShell\\ScriptBlockLogging\" /v EnableScriptBlockLogging /t REG_DWORD /d 1\n```\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Windows", - "Use Case: Threat Detection", - "Tactic: Credential Access", - "Data Source: PowerShell Logs" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0006", - "name": "Credential Access", - "reference": "https://attack.mitre.org/tactics/TA0006/" - }, - "technique": [ - { - "id": "T1003", - "name": "OS Credential Dumping", - "reference": "https://attack.mitre.org/techniques/T1003/" - }, - { - "id": "T1558", - "name": "Steal or Forge Kerberos Tickets", - "reference": "https://attack.mitre.org/techniques/T1558/" - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1059", - "name": "Command and Scripting Interpreter", - "reference": "https://attack.mitre.org/techniques/T1059/", - "subtechnique": [ - { - "id": "T1059.001", - "name": "PowerShell", - "reference": "https://attack.mitre.org/techniques/T1059/001/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "query", - "version": 3 - }, - "id": "fddff193-48a3-484d-8d35-90bb3d323a56_3", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/fe794edd-487f-4a90-b285-3ee54f2af2d3_113.json b/packages/security_detection_engine/kibana/security_rule/fe794edd-487f-4a90-b285-3ee54f2af2d3_113.json new file mode 100644 index 000000000000..42270356b71a --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/fe794edd-487f-4a90-b285-3ee54f2af2d3_113.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "author": [ + "Austin Songer" + ], + "description": "Identifies when one or more features on Microsoft Defender are disabled. Adversaries may disable or tamper with Microsoft Defender features to evade detection and conceal malicious behavior.", + "false_positives": [ + "Legitimate Windows Defender configuration changes" + ], + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-endpoint.events.registry-*", + "logs-windows.sysmon_operational-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "Microsoft Windows Defender Tampering", + "note": "## Triage and analysis\n\n### Investigating Microsoft Windows Defender Tampering\n\nMicrosoft Windows Defender is an antivirus product built into Microsoft Windows, which makes it popular across multiple environments. Disabling it is a common step in threat actor playbooks.\n\nThis rule monitors the registry for modifications that disable Windows Defender features.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Validate the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Contact the account owner and confirm whether they are aware of this activity.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Examine which features have been disabled, and check if this operation is done under change management and approved according to the organization's policy.\n\n### False positive analysis\n\n- This mechanism can be used legitimately. Analysts can dismiss the alert if the administrator is aware of the activity, the configuration is justified (for example, it is being used to deploy other security solutions or troubleshooting), and no other suspicious activity has been observed.\n\n### Related rules\n\n- Windows Defender Disabled via Registry Modification - 2ffa1f1e-b6db-47fa-994b-1512743847eb\n- Disabling Windows Defender Security Settings via PowerShell - c8cccb06-faf2-4cd5-886e-2c9636cfcb87\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved hosts to prevent further post-compromise behavior.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Take actions to restore the appropriate Windows Defender antivirus configurations.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Review the privileges assigned to the user to ensure that the least privilege principle is being followed.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and process.executable != null and\n (\n (\n registry.path : (\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\PUAProtection\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender Security Center\\\\App and Browser protection\\\\DisallowExploitProtectionOverride\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\Features\\\\TamperProtection\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\Windows Defender Exploit Guard\\\\Controlled Folder Access\\\\EnableControlledFolderAccess\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\SpyNet\\\\SpynetReporting\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\SpyNet\\\\SubmitSamplesConsent\"\n ) and registry.data.strings : (\"0\", \"0x00000000\")\n ) or\n (\n registry.path : (\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\DisableAntiSpyware\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\Real-Time Protection\\\\DisableRealtimeMonitoring\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\Real-Time Protection\\\\DisableIntrusionPreventionSystem\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\Real-Time Protection\\\\DisableScriptScanning\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\Real-Time Protection\\\\DisableIOAVProtection\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\Reporting\\\\DisableEnhancedNotifications\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\SpyNet\\\\DisableBlockAtFirstSeen\",\n \"HKLM\\\\SOFTWARE\\\\Policies\\\\Microsoft\\\\Windows Defender\\\\Real-Time Protection\\\\DisableBehaviorMonitoring\"\n ) and registry.data.strings : (\"1\", \"0x00000001\")\n )\n ) and\n not process.executable : (\n \"?:\\\\Windows\\\\system32\\\\svchost.exe\", \n \"?:\\\\Windows\\\\CCM\\\\CcmExec.exe\", \n \"?:\\\\Windows\\\\System32\\\\DeviceEnroller.exe\", \n \"?:\\\\Program Files (x86)\\\\Trend Micro\\\\Security Agent\\\\tmuninst.exe\"\n )\n", + "references": [ + "https://thedfirreport.com/2021/10/18/icedid-to-xinglocker-ransomware-in-24-hours/", + "https://www.tenforums.com/tutorials/32236-enable-disable-microsoft-defender-pua-protection-windows-10-a.html", + "https://www.tenforums.com/tutorials/104025-turn-off-core-isolation-memory-integrity-windows-10-a.html", + "https://www.tenforums.com/tutorials/105533-enable-disable-windows-defender-exploit-protection-settings.html", + "https://www.tenforums.com/tutorials/123792-turn-off-tamper-protection-microsoft-defender-antivirus.html", + "https://www.tenforums.com/tutorials/51514-turn-off-microsoft-defender-periodic-scanning-windows-10-a.html", + "https://www.tenforums.com/tutorials/3569-turn-off-real-time-protection-microsoft-defender-antivirus.html", + "https://www.tenforums.com/tutorials/99576-how-schedule-scan-microsoft-defender-antivirus-windows-10-a.html" + ], + "related_integrations": [ + { + "package": "endpoint", + "version": "^8.2.0" + }, + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "process.executable", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "fe794edd-487f-4a90-b285-3ee54f2af2d3", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", + "Data Source: Elastic Defend", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + }, + { + "id": "T1562", + "name": "Impair Defenses", + "reference": "https://attack.mitre.org/techniques/T1562/" + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 113 + }, + "id": "fe794edd-487f-4a90-b285-3ee54f2af2d3_113", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/feeed87c-5e95-4339-aef1-47fd79bcfbe3_108.json b/packages/security_detection_engine/kibana/security_rule/feeed87c-5e95-4339-aef1-47fd79bcfbe3_108.json new file mode 100644 index 000000000000..aae6ea134515 --- /dev/null +++ b/packages/security_detection_engine/kibana/security_rule/feeed87c-5e95-4339-aef1-47fd79bcfbe3_108.json @@ -0,0 +1,109 @@ +{ + "attributes": { + "author": [ + "Elastic" + ], + "description": "Microsoft Office Products offer options for users and developers to control the security settings for running and using Macros. Adversaries may abuse these security settings to modify the default behavior of the Office Application to trust future macros and/or disable security warnings, which could increase their chances of establishing persistence.", + "from": "now-9m", + "index": [ + "winlogbeat-*", + "logs-windows.sysmon_operational-*", + "endgame-*" + ], + "language": "eql", + "license": "Elastic License v2", + "name": "MS Office Macro Security Registry Modifications", + "note": "## Triage and analysis\n\n### Investigating MS Office Macro Security Registry Modifications\n\nMacros are small programs that are used to automate repetitive tasks in Microsoft Office applications. Historically, macros have been used for a variety of reasons -- from automating part of a job, to building entire processes and data flows. Macros are written in Visual Basic for Applications (VBA) and are saved as part of Microsoft Office files.\n\nMacros are often created for legitimate reasons, but they can also be written by attackers to gain access, harm a system, or bypass other security controls such as application allow listing. In fact, exploitation from malicious macros is one of the top ways that organizations are compromised today. These attacks are often conducted through phishing or spear phishing campaigns.\n\nAttackers can convince victims to modify Microsoft Office security settings, so their macros are trusted by default and no warnings are displayed when they are executed. These settings include:\n\n- *Trust access to the VBA project object model* - When enabled, Microsoft Office will trust all macros and run any code without showing a security warning or requiring user permission.\n- *VbaWarnings* - When set to 1, Microsoft Office will trust all macros and run any code without showing a security warning or requiring user permission.\n\nThis rule looks for registry changes affecting the conditions above.\n\n#### Possible investigation steps\n\n- Investigate the process execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence, whether they are located in expected locations, and if they are signed with valid digital signatures.\n- Identify the user account that performed the action and whether it should perform this kind of action.\n- Contact the user and check if the change was done manually.\n- Verify whether malicious macros were executed after the registry change.\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Retrieve recently executed Office documents and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - File and registry access, modification, and creation activities.\n - Service creation and launch activities.\n - Scheduled task creation.\n - Use the PowerShell Get-FileHash cmdlet to get the files' SHA-256 hash values.\n - Search for the existence and reputation of the hashes in resources like VirusTotal, Hybrid-Analysis, CISCO Talos, Any.run, etc.\n\n### False positive analysis\n\n- This activity should not happen legitimately. The security team should address any potential benign true positive (B-TP), as this configuration can put the user and the domain at risk.\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Reset the registry key value.\n- Isolate the involved host to prevent further post-compromise behavior.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Explore using GPOs to manage security settings for Microsoft Office macros.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Using the incident response data, update logging and audit policies to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", + "query": "registry where host.os.type == \"windows\" and event.type == \"change\" and registry.value : (\"AccessVBOM\", \"VbaWarnings\") and\n registry.path : (\n \"HKU\\\\S-1-5-21-*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Security\\\\AccessVBOM\",\n \"HKU\\\\S-1-5-21-*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Security\\\\VbaWarnings\",\n \"HKU\\\\S-1-12-1-*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Security\\\\AccessVBOM\",\n \"HKU\\\\S-1-12-1-*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Security\\\\VbaWarnings\",\n \"\\\\REGISTRY\\\\USER\\\\S-1-5-21-*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Security\\\\AccessVBOM\",\n \"\\\\REGISTRY\\\\USER\\\\S-1-5-21-*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Security\\\\VbaWarnings\",\n \"\\\\REGISTRY\\\\USER\\\\S-1-12-1-*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Security\\\\AccessVBOM\",\n \"\\\\REGISTRY\\\\USER\\\\S-1-12-1-*\\\\SOFTWARE\\\\Microsoft\\\\Office\\\\*\\\\Security\\\\VbaWarnings\"\n ) and\n registry.data.strings : (\"0x00000001\", \"1\")\n", + "related_integrations": [ + { + "package": "windows", + "version": "^1.5.0" + } + ], + "required_fields": [ + { + "ecs": true, + "name": "event.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "host.os.type", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.data.strings", + "type": "wildcard" + }, + { + "ecs": true, + "name": "registry.path", + "type": "keyword" + }, + { + "ecs": true, + "name": "registry.value", + "type": "keyword" + } + ], + "risk_score": 47, + "rule_id": "feeed87c-5e95-4339-aef1-47fd79bcfbe3", + "setup": "## Setup\n\nIf enabling an EQL rule on a non-elastic-agent index (such as beats) for versions <8.2,\nevents will not define `event.ingested` and default fallback for EQL rules was not added until version 8.2.\nHence for this rule to work effectively, users will need to add a custom ingest pipeline to populate\n`event.ingested` to @timestamp.\nFor more details on adding a custom ingest pipeline refer - https://www.elastic.co/guide/en/fleet/current/data-streams-pipeline-tutorial.html\n", + "severity": "medium", + "tags": [ + "Domain: Endpoint", + "OS: Windows", + "Use Case: Threat Detection", + "Tactic: Defense Evasion", + "Resources: Investigation Guide", + "Data Source: Elastic Endgame", + "Data Source: Sysmon" + ], + "threat": [ + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0005", + "name": "Defense Evasion", + "reference": "https://attack.mitre.org/tactics/TA0005/" + }, + "technique": [ + { + "id": "T1112", + "name": "Modify Registry", + "reference": "https://attack.mitre.org/techniques/T1112/" + } + ] + }, + { + "framework": "MITRE ATT&CK", + "tactic": { + "id": "TA0002", + "name": "Execution", + "reference": "https://attack.mitre.org/tactics/TA0002/" + }, + "technique": [ + { + "id": "T1204", + "name": "User Execution", + "reference": "https://attack.mitre.org/techniques/T1204/", + "subtechnique": [ + { + "id": "T1204.002", + "name": "Malicious File", + "reference": "https://attack.mitre.org/techniques/T1204/002/" + } + ] + } + ] + } + ], + "timestamp_override": "event.ingested", + "type": "eql", + "version": 108 + }, + "id": "feeed87c-5e95-4339-aef1-47fd79bcfbe3_108", + "type": "security-rule" +} \ No newline at end of file diff --git a/packages/security_detection_engine/kibana/security_rule/ff10d4d8-fea7-422d-afb1-e5a2702369a9_10.json b/packages/security_detection_engine/kibana/security_rule/ff10d4d8-fea7-422d-afb1-e5a2702369a9_10.json deleted file mode 100644 index b5073a186e27..000000000000 --- a/packages/security_detection_engine/kibana/security_rule/ff10d4d8-fea7-422d-afb1-e5a2702369a9_10.json +++ /dev/null @@ -1,157 +0,0 @@ -{ - "attributes": { - "author": [ - "Elastic" - ], - "description": "Linux cron jobs are scheduled tasks that can be leveraged by malicious actors for persistence, privilege escalation and command execution. By creating or modifying cron job configurations, attackers can execute malicious commands or scripts at predefined intervals, ensuring their continued presence and enabling unauthorized activities.", - "from": "now-9m", - "history_window_start": "now-10d", - "index": [ - "logs-endpoint.events.*", - "endgame-*" - ], - "language": "kuery", - "license": "Elastic License v2", - "name": "Cron Job Created or Changed by Previously Unknown Process", - "new_terms_fields": [ - "host.id", - "file.path", - "process.executable" - ], - "note": "## Triage and analysis\n\n### Investigating Cron Job Created or Changed by Previously Unknown Process\nLinux cron jobs are scheduled tasks that run at specified intervals or times, managed by the cron daemon. \n\nBy creating or modifying cron job configurations, attackers can execute malicious commands or scripts at predefined intervals, ensuring their continued presence and enabling unauthorized activities.\n\nThis rule monitors the creation of previously unknown cron jobs by monitoring for file creation events in the most common cron job task location directories.\n\n> **Note**:\n> This investigation guide uses the [Osquery Markdown Plugin](https://www.elastic.co/guide/en/security/master/invest-guide-run-osquery.html) introduced in Elastic Stack version 8.5.0. Older Elastic Stack versions will display unrendered Markdown in this guide.\n> This investigation guide uses [placeholder fields](https://www.elastic.co/guide/en/security/current/osquery-placeholder-fields.html) to dynamically pass alert data into Osquery queries. Placeholder fields were introduced in Elastic Stack version 8.7.0. If you're using Elastic Stack version 8.6.0 or earlier, you'll need to manually adjust this investigation guide's queries to ensure they properly run.\n\n#### Possible Investigation Steps\n\n- Investigate the cron job file that was created or modified.\n- Investigate whether any other files in any of the available cron job directories have been altered through OSQuery.\n - !{osquery{\"label\":\"Osquery - Retrieve File Listing Information\",\"query\":\"SELECT * FROM file WHERE ( path LIKE '/etc/cron.allow.d/%' OR path LIKE '/etc/cron.d/%' OR path LIKE\\n'/etc/cron.hourly/%' OR path LIKE '/etc/cron.daily/%' OR path LIKE '/etc/cron.weekly/%' OR path LIKE\\n'/etc/cron.monthly/%' )\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve rc-local.service File Information\",\"query\":\"SELECT * FROM file WHERE ( path = '/etc/cron.allow' OR path = '/etc/cron.deny' OR path = '/etc/crontab' OR path =\\n'/usr/sbin/cron' OR path = '/usr/sbin/anacron' )\\n\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Additional File Listing Information\",\"query\":\"SELECT f.path, u.username AS file_owner, g.groupname AS group_owner, datetime(f.atime, 'unixepoch') AS\\nfile_last_access_time, datetime(f.mtime, 'unixepoch') AS file_last_modified_time, datetime(f.ctime, 'unixepoch') AS\\nfile_last_status_change_time, datetime(f.btime, 'unixepoch') AS file_created_time, f.size AS size_bytes FROM file f LEFT\\nJOIN users u ON f.uid = u.uid LEFT JOIN groups g ON f.gid = g.gid WHERE ( path LIKE '/etc/cron.allow.d/%' OR path LIKE\\n'/etc/cron.d/%' OR path LIKE '/etc/cron.hourly/%' OR path LIKE '/etc/cron.daily/%' OR path LIKE '/etc/cron.weekly/%' OR\\npath LIKE '/etc/cron.monthly/%' )\\n\"}}\n- Investigate the script execution chain (parent process tree) for unknown processes. Examine their executable files for prevalence and whether they are located in expected locations.\n - !{osquery{\"label\":\"Osquery - Retrieve Running Processes by User\",\"query\":\"SELECT pid, username, name FROM processes p JOIN users u ON u.uid = p.uid ORDER BY username\"}}\n- Investigate other alerts associated with the user/host during the past 48 hours.\n- Validate the activity is not related to planned patches, updates, network administrator activity, or legitimate software installations.\n- Investigate whether the altered scripts call other malicious scripts elsewhere on the file system. \n - If scripts or executables were dropped, retrieve the files and determine if they are malicious:\n - Use a private sandboxed malware analysis system to perform analysis.\n - Observe and collect information about the following activities:\n - Attempts to contact external domains and addresses.\n - Check if the domain is newly registered or unexpected.\n - Check the reputation of the domain or IP address.\n - File access, modification, and creation activities.\n- Investigate abnormal behaviors by the subject process/user such as network connections, file modifications, and any other spawned child processes.\n - Investigate listening ports and open sockets to look for potential command and control traffic or data exfiltration.\n - !{osquery{\"label\":\"Osquery - Retrieve Listening Ports\",\"query\":\"SELECT pid, address, port, socket, protocol, path FROM listening_ports\"}}\n - !{osquery{\"label\":\"Osquery - Retrieve Open Sockets\",\"query\":\"SELECT pid, family, remote_address, remote_port, socket, state FROM process_open_sockets\"}}\n - Identify the user account that performed the action, analyze it, and check whether it should perform this kind of action.\n - !{osquery{\"label\":\"Osquery - Retrieve Information for a Specific User\",\"query\":\"SELECT * FROM users WHERE username = {{user.name}}\"}}\n- Investigate whether the user is currently logged in and active.\n - !{osquery{\"label\":\"Osquery - Investigate the Account Authentication Status\",\"query\":\"SELECT * FROM logged_in_users WHERE user = {{user.name}}\"}}\n\n### False Positive Analysis\n\n- If this activity is related to new benign software installation activity, consider adding exceptions \u2014 preferably with a combination of user and command line conditions.\n- If this activity is related to a system administrator who uses cron jobs for administrative purposes, consider adding exceptions for this specific administrator user account. \n- Try to understand the context of the execution by thinking about the user, machine, or business purpose. A small number of endpoints, such as servers with unique software, might appear unusual but satisfy a specific business need.\n\n### Related Rules\n\n- Suspicious File Creation in /etc for Persistence - 1c84dd64-7e6c-4bad-ac73-a5014ee37042\n- Potential Persistence Through Run Control Detected - 0f4d35e4-925e-4959-ab24-911be207ee6f\n- Potential Persistence Through init.d Detected - 474fd20e-14cc-49c5-8160-d9ab4ba16c8b\n- New Systemd Timer Created - 7fb500fa-8e24-4bd1-9480-2a819352602c\n- New Systemd Service Created by Previously Unknown Process - 17b0a495-4d9f-414c-8ad0-92f018b8e001\n\n### Response and remediation\n\n- Initiate the incident response process based on the outcome of the triage.\n- Isolate the involved host to prevent further post-compromise behavior.\n- If the triage identified malware, search the environment for additional compromised hosts.\n - Implement temporary network rules, procedures, and segmentation to contain the malware.\n - Stop suspicious processes.\n - Immediately block the identified indicators of compromise (IoCs).\n - Inspect the affected systems for additional malware backdoors like reverse shells, reverse proxies, or droppers that attackers could use to reinfect the system.\n- Investigate credential exposure on systems compromised or used by the attacker to ensure all compromised accounts are identified. Reset passwords for these accounts and other potentially compromised credentials, such as email, business systems, and web services.\n- Delete the service/timer or restore its original configuration.\n- Run a full antimalware scan. This may reveal additional artifacts left in the system, persistence mechanisms, and malware components.\n- Determine the initial vector abused by the attacker and take action to prevent reinfection through the same vector.\n- Leverage the incident response data and logging to improve the mean time to detect (MTTD) and the mean time to respond (MTTR).\n", - "query": "host.os.type : \"linux\" and event.action : (\n change or file_modify_event or creation or file_create_event or rename or file_rename_event\n) and file.path : (\n /etc/cron.allow or /etc/cron.deny or /etc/cron.d/* or /etc/cron.hourly/* or /etc/cron.daily/* or /etc/cron.weekly/* or\n /etc/cron.monthly/* or /etc/crontab or /usr/sbin/cron or /usr/sbin/anacron or /var/spool/cron/crontabs/*\n) and not (\n (process.name : (\n dpkg or dockerd or rpm or snapd or yum or exe or dnf or podman or dnf-automatic or puppet or autossl_check)\n ) or \n (file.extension : (swp or swpx)) or \n (process.name : sed and file.name : sed*) or \n (process.name : perl and file.name : e2scrub_all.tmp*) or\n (process.executable : /var/lib/dpkg*) or\n (file.path:/var/spool/cron/crontabs/tmp.*)\n)\n", - "references": [ - "https://pberba.github.io/security/2022/01/30/linux-threat-hunting-for-persistence-systemd-timers-cron/" - ], - "related_integrations": [ - { - "package": "endpoint", - "version": "^8.2.0" - } - ], - "required_fields": [ - { - "ecs": true, - "name": "event.action", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.extension", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.name", - "type": "keyword" - }, - { - "ecs": true, - "name": "file.path", - "type": "keyword" - }, - { - "ecs": true, - "name": "host.os.type", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.executable", - "type": "keyword" - }, - { - "ecs": true, - "name": "process.name", - "type": "keyword" - } - ], - "risk_score": 47, - "rule_id": "ff10d4d8-fea7-422d-afb1-e5a2702369a9", - "setup": "## Setup\n\nThis rule requires data coming in from Elastic Defend.\n\n### Elastic Defend Integration Setup\nElastic Defend is integrated into the Elastic Agent using Fleet. Upon configuration, the integration allows the Elastic Agent to monitor events on your host and send data to the Elastic Security app.\n\n#### Prerequisite Requirements:\n- Fleet is required for Elastic Defend.\n- To configure Fleet Server refer to the [documentation](https://www.elastic.co/guide/en/fleet/current/fleet-server.html).\n\n#### The following steps should be executed in order to add the Elastic Defend integration on a Linux System:\n- Go to the Kibana home page and click \"Add integrations\".\n- In the query bar, search for \"Elastic Defend\" and select the integration to see more details about it.\n- Click \"Add Elastic Defend\".\n- Configure the integration name and optionally add a description.\n- Select the type of environment you want to protect, either \"Traditional Endpoints\" or \"Cloud Workloads\".\n- Select a configuration preset. Each preset comes with different default settings for Elastic Agent, you can further customize these later by configuring the Elastic Defend integration policy. [Helper guide](https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html).\n- We suggest selecting \"Complete EDR (Endpoint Detection and Response)\" as a configuration setting, that provides \"All events; all preventions\"\n- Enter a name for the agent policy in \"New agent policy name\". If other agent policies already exist, you can click the \"Existing hosts\" tab and select an existing policy instead.\nFor more details on Elastic Agent configuration settings, refer to the [helper guide](https://www.elastic.co/guide/en/fleet/8.10/agent-policy.html).\n- Click \"Save and Continue\".\n- To complete the integration, select \"Add Elastic Agent to your hosts\" and continue to the next section to install the Elastic Agent on your hosts.\nFor more details on Elastic Defend refer to the [helper guide](https://www.elastic.co/guide/en/security/current/install-endpoint.html).\n", - "severity": "medium", - "tags": [ - "Domain: Endpoint", - "OS: Linux", - "Use Case: Threat Detection", - "Tactic: Persistence", - "Tactic: Privilege Escalation", - "Tactic: Execution", - "Data Source: Elastic Endgame", - "Data Source: Elastic Defend" - ], - "threat": [ - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0003", - "name": "Persistence", - "reference": "https://attack.mitre.org/tactics/TA0003/" - }, - "technique": [ - { - "id": "T1053", - "name": "Scheduled Task/Job", - "reference": "https://attack.mitre.org/techniques/T1053/", - "subtechnique": [ - { - "id": "T1053.003", - "name": "Cron", - "reference": "https://attack.mitre.org/techniques/T1053/003/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0004", - "name": "Privilege Escalation", - "reference": "https://attack.mitre.org/tactics/TA0004/" - }, - "technique": [ - { - "id": "T1053", - "name": "Scheduled Task/Job", - "reference": "https://attack.mitre.org/techniques/T1053/", - "subtechnique": [ - { - "id": "T1053.003", - "name": "Cron", - "reference": "https://attack.mitre.org/techniques/T1053/003/" - } - ] - } - ] - }, - { - "framework": "MITRE ATT&CK", - "tactic": { - "id": "TA0002", - "name": "Execution", - "reference": "https://attack.mitre.org/tactics/TA0002/" - }, - "technique": [ - { - "id": "T1053", - "name": "Scheduled Task/Job", - "reference": "https://attack.mitre.org/techniques/T1053/", - "subtechnique": [ - { - "id": "T1053.003", - "name": "Cron", - "reference": "https://attack.mitre.org/techniques/T1053/003/" - } - ] - } - ] - } - ], - "timestamp_override": "event.ingested", - "type": "new_terms", - "version": 10 - }, - "id": "ff10d4d8-fea7-422d-afb1-e5a2702369a9_10", - "type": "security-rule" -} \ No newline at end of file diff --git a/packages/security_detection_engine/manifest.yml b/packages/security_detection_engine/manifest.yml index b04c936c8b2c..99f54438ca00 100644 --- a/packages/security_detection_engine/manifest.yml +++ b/packages/security_detection_engine/manifest.yml @@ -21,4 +21,4 @@ source: license: Elastic-2.0 title: Prebuilt Security Detection Rules type: integration -version: 8.15.1 +version: 8.15.2-beta.1 From f75096f2c19cffe80e8f1f4257e0de606ce1bda4 Mon Sep 17 00:00:00 2001 From: Eric Forte <119343520+eric-forte-elastic@users.noreply.github.com> Date: Tue, 6 Aug 2024 11:51:42 -0400 Subject: [PATCH 38/77] [Security Rules] Update security rules package to v8.15.2 (#10717) --- packages/security_detection_engine/changelog.yml | 5 +++++ packages/security_detection_engine/manifest.yml | 2 +- 2 files changed, 6 insertions(+), 1 deletion(-) diff --git a/packages/security_detection_engine/changelog.yml b/packages/security_detection_engine/changelog.yml index d591b9f08e87..a48aaed9db85 100644 --- a/packages/security_detection_engine/changelog.yml +++ b/packages/security_detection_engine/changelog.yml @@ -1,5 +1,10 @@ # newer versions go on top # NOTE: please use pre-release versions (e.g. -beta.0) until a package is ready for production +- version: 8.15.2 + changes: + - description: Release security rules update + type: enhancement + link: https://github.com/elastic/integrations/pull/10717 - version: 8.15.2-beta.1 changes: - description: Release security rules update diff --git a/packages/security_detection_engine/manifest.yml b/packages/security_detection_engine/manifest.yml index 99f54438ca00..c2b657ed5b96 100644 --- a/packages/security_detection_engine/manifest.yml +++ b/packages/security_detection_engine/manifest.yml @@ -21,4 +21,4 @@ source: license: Elastic-2.0 title: Prebuilt Security Detection Rules type: integration -version: 8.15.2-beta.1 +version: 8.15.2 From 31ad9a67fa41fc3626677ab9fcd807acbc0d69c7 Mon Sep 17 00:00:00 2001 From: kaiyan-sheng Date: Tue, 6 Aug 2024 11:04:35 -0600 Subject: [PATCH 39/77] [AWS] update max_number_of_messages parameter description (#10480) This PR is to update the documentation for max_number_of_messages to inform users to be cautious when using a large value for this var. --- packages/aws/changelog.yml | 5 +++++ packages/aws/data_stream/apigateway_logs/manifest.yml | 8 +++++++- packages/aws/data_stream/cloudfront_logs/manifest.yml | 10 ++++++++-- packages/aws/data_stream/cloudtrail/manifest.yml | 8 +++++++- packages/aws/data_stream/ec2_logs/manifest.yml | 10 ++++++++-- packages/aws/data_stream/elb_logs/manifest.yml | 10 ++++++++-- packages/aws/data_stream/emr_logs/manifest.yml | 8 +++++++- packages/aws/data_stream/firewall_logs/manifest.yml | 10 ++++++++-- packages/aws/data_stream/guardduty/manifest.yml | 8 +++++++- .../aws/data_stream/route53_resolver_logs/manifest.yml | 10 ++++++++-- packages/aws/data_stream/s3access/manifest.yml | 10 ++++++++-- packages/aws/data_stream/vpcflow/manifest.yml | 8 +++++++- packages/aws/data_stream/waf/manifest.yml | 10 ++++++++-- packages/aws/manifest.yml | 2 +- packages/aws_logs/changelog.yml | 5 +++++ packages/aws_logs/data_stream/generic/manifest.yml | 8 +++++++- packages/aws_logs/manifest.yml | 2 +- 17 files changed, 110 insertions(+), 22 deletions(-) diff --git a/packages/aws/changelog.yml b/packages/aws/changelog.yml index 5645562611d1..4961d78dda8a 100644 --- a/packages/aws/changelog.yml +++ b/packages/aws/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.22.1" + changes: + - description: Update max_number_of_messages parameter description + type: bugfix + link: https://github.com/elastic/integrations/pull/10480 - version: "2.22.0" changes: - description: Add global dataset filter for dashboards to improve performance. diff --git a/packages/aws/data_stream/apigateway_logs/manifest.yml b/packages/aws/data_stream/apigateway_logs/manifest.yml index 33d87aaefebe..a406cf09daae 100644 --- a/packages/aws/data_stream/apigateway_logs/manifest.yml +++ b/packages/aws/data_stream/apigateway_logs/manifest.yml @@ -85,7 +85,13 @@ streams: - name: max_number_of_messages type: integer title: "[SQS] Maximum Concurrent SQS Messages" - description: The maximum number of SQS messages that can be inflight at any time. + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false show_user: false diff --git a/packages/aws/data_stream/cloudfront_logs/manifest.yml b/packages/aws/data_stream/cloudfront_logs/manifest.yml index 57b17d05c4d8..e75088bf2456 100644 --- a/packages/aws/data_stream/cloudfront_logs/manifest.yml +++ b/packages/aws/data_stream/cloudfront_logs/manifest.yml @@ -122,8 +122,14 @@ streams: default: false - name: max_number_of_messages type: integer - title: Maximum Concurrent SQS Messages - description: The maximum number of SQS messages that can be inflight at any time. + title: "[SQS] Maximum Concurrent SQS Messages" + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false show_user: false diff --git a/packages/aws/data_stream/cloudtrail/manifest.yml b/packages/aws/data_stream/cloudtrail/manifest.yml index e36aa8a155bb..f11ab284afa1 100644 --- a/packages/aws/data_stream/cloudtrail/manifest.yml +++ b/packages/aws/data_stream/cloudtrail/manifest.yml @@ -144,7 +144,13 @@ streams: - name: max_number_of_messages type: integer title: "[SQS] Maximum Concurrent SQS Messages" - description: The maximum number of SQS messages that can be inflight at any time. + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false - name: custom diff --git a/packages/aws/data_stream/ec2_logs/manifest.yml b/packages/aws/data_stream/ec2_logs/manifest.yml index 094bd1a9c807..419fa1014536 100644 --- a/packages/aws/data_stream/ec2_logs/manifest.yml +++ b/packages/aws/data_stream/ec2_logs/manifest.yml @@ -118,8 +118,14 @@ streams: default: false - name: max_number_of_messages type: integer - title: Maximum Concurrent SQS Messages - description: The maximum number of SQS messages that can be inflight at any time. + title: "[SQS] Maximum Concurrent SQS Messages" + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false show_user: false diff --git a/packages/aws/data_stream/elb_logs/manifest.yml b/packages/aws/data_stream/elb_logs/manifest.yml index af9ca884560f..210ddd9c3810 100644 --- a/packages/aws/data_stream/elb_logs/manifest.yml +++ b/packages/aws/data_stream/elb_logs/manifest.yml @@ -117,8 +117,14 @@ streams: default: false - name: max_number_of_messages type: integer - title: Maximum Concurrent SQS Messages - description: The maximum number of SQS messages that can be inflight at any time. + title: "[SQS] Maximum Concurrent SQS Messages" + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false show_user: false diff --git a/packages/aws/data_stream/emr_logs/manifest.yml b/packages/aws/data_stream/emr_logs/manifest.yml index ef2b598e807d..d495a5652579 100644 --- a/packages/aws/data_stream/emr_logs/manifest.yml +++ b/packages/aws/data_stream/emr_logs/manifest.yml @@ -86,7 +86,13 @@ streams: - name: max_number_of_messages type: integer title: "[SQS] Maximum Concurrent SQS Messages" - description: The maximum number of SQS messages that can be inflight at any time. + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false show_user: false diff --git a/packages/aws/data_stream/firewall_logs/manifest.yml b/packages/aws/data_stream/firewall_logs/manifest.yml index ab1734f48ed3..0ac8b8df7358 100644 --- a/packages/aws/data_stream/firewall_logs/manifest.yml +++ b/packages/aws/data_stream/firewall_logs/manifest.yml @@ -117,8 +117,14 @@ streams: default: false - name: max_number_of_messages type: integer - title: Maximum Concurrent SQS Messages - description: The maximum number of SQS messages that can be inflight at any time. + title: "[SQS] Maximum Concurrent SQS Messages" + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false show_user: false diff --git a/packages/aws/data_stream/guardduty/manifest.yml b/packages/aws/data_stream/guardduty/manifest.yml index ad84f1a251de..88f747274509 100644 --- a/packages/aws/data_stream/guardduty/manifest.yml +++ b/packages/aws/data_stream/guardduty/manifest.yml @@ -189,7 +189,13 @@ streams: required: false show_user: true default: 5 - description: The maximum number of SQS messages that can be inflight at any time. + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. - name: file_selectors type: yaml title: "[SQS] File Selectors" diff --git a/packages/aws/data_stream/route53_resolver_logs/manifest.yml b/packages/aws/data_stream/route53_resolver_logs/manifest.yml index ae61d1844701..37c44c0d2ef4 100644 --- a/packages/aws/data_stream/route53_resolver_logs/manifest.yml +++ b/packages/aws/data_stream/route53_resolver_logs/manifest.yml @@ -233,11 +233,17 @@ streams: default: false - name: max_number_of_messages type: integer - title: Maximum Concurrent SQS Messages - description: The maximum number of SQS messages that can be inflight at any time. + title: "[SQS] Maximum Concurrent SQS Messages" default: 5 required: false show_user: false + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. - name: custom type: yaml title: Custom configurations diff --git a/packages/aws/data_stream/s3access/manifest.yml b/packages/aws/data_stream/s3access/manifest.yml index 9bdce1f4abd3..7896dc078275 100644 --- a/packages/aws/data_stream/s3access/manifest.yml +++ b/packages/aws/data_stream/s3access/manifest.yml @@ -117,11 +117,17 @@ streams: default: false - name: max_number_of_messages type: integer - title: Maximum Concurrent SQS Messages - description: The maximum number of SQS messages that can be inflight at any time. + title: "[SQS] Maximum Concurrent SQS Messages" default: 5 required: false show_user: false + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. - name: custom type: yaml title: Custom configurations diff --git a/packages/aws/data_stream/vpcflow/manifest.yml b/packages/aws/data_stream/vpcflow/manifest.yml index 873a0855c305..dac914e6a90d 100644 --- a/packages/aws/data_stream/vpcflow/manifest.yml +++ b/packages/aws/data_stream/vpcflow/manifest.yml @@ -69,7 +69,13 @@ streams: - name: max_number_of_messages type: integer title: "[SQS] Maximum Concurrent SQS Messages" - description: The maximum number of SQS messages that can be inflight at any time. + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false show_user: false diff --git a/packages/aws/data_stream/waf/manifest.yml b/packages/aws/data_stream/waf/manifest.yml index 0b3710183866..ed172a2a0c28 100644 --- a/packages/aws/data_stream/waf/manifest.yml +++ b/packages/aws/data_stream/waf/manifest.yml @@ -117,11 +117,17 @@ streams: default: false - name: max_number_of_messages type: integer - title: Maximum Concurrent SQS Messages - description: The maximum number of SQS messages that can be inflight at any time. + title: "[SQS] Maximum Concurrent SQS Messages" default: 5 required: false show_user: false + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. - name: custom type: yaml title: Custom configurations diff --git a/packages/aws/manifest.yml b/packages/aws/manifest.yml index 64152293c35a..0c7c72f78f77 100644 --- a/packages/aws/manifest.yml +++ b/packages/aws/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: aws title: AWS -version: 2.22.0 +version: 2.22.1 description: Collect logs and metrics from Amazon Web Services (AWS) with Elastic Agent. type: integration categories: diff --git a/packages/aws_logs/changelog.yml b/packages/aws_logs/changelog.yml index cbb549954022..88c182368de0 100644 --- a/packages/aws_logs/changelog.yml +++ b/packages/aws_logs/changelog.yml @@ -1,3 +1,8 @@ +- version: "1.3.1" + changes: + - description: Update max_number_of_messages parameter description + type: bugfix + link: https://github.com/elastic/integrations/pull/10480 - version: "1.3.0" changes: - description: Improve clarity and validity of system testing. diff --git a/packages/aws_logs/data_stream/generic/manifest.yml b/packages/aws_logs/data_stream/generic/manifest.yml index 8839601c11e4..8072fedc9068 100644 --- a/packages/aws_logs/data_stream/generic/manifest.yml +++ b/packages/aws_logs/data_stream/generic/manifest.yml @@ -255,7 +255,13 @@ streams: - name: max_number_of_messages type: integer title: Maximum Concurrent SQS Messages - description: The maximum number of SQS messages that can be inflight at any time. + description: > + The maximum number of SQS messages that can be inflight at any time. Defaults to 5. When processing large + amount of large size S3 objects and each object has large amount of events, if this parameter sets too high, + it can cause the input to process too many messages concurrently, overload the agent and cause ingest failure. + We recommend to keep the default value 5 and use the [preset](https://www.elastic.co/guide/en/fleet/current/es-output-settings.html#es-output-settings-performance-tuning-settings) + option to tune your Elastic Agent performance. You can optimize for throughput, scale, latency, or you can + choose a balanced (the default) set of performance specifications. default: 5 required: false show_user: false diff --git a/packages/aws_logs/manifest.yml b/packages/aws_logs/manifest.yml index a0b3fae1d7fb..849b4e23fc1d 100644 --- a/packages/aws_logs/manifest.yml +++ b/packages/aws_logs/manifest.yml @@ -3,7 +3,7 @@ name: aws_logs title: Custom AWS Logs description: Collect raw logs from AWS S3 or CloudWatch with Elastic Agent. type: integration -version: "1.3.0" +version: "1.3.1" categories: - observability - custom From ef0bcefbffde014b6dab4db259c44d78dd145200 Mon Sep 17 00:00:00 2001 From: Brijesh Khunt <123942796+brijesh-elastic@users.noreply.github.com> Date: Wed, 7 Aug 2024 18:38:49 +0530 Subject: [PATCH 40/77] [watchguard_firebox] Add date format pattern to parse syslog timestamp (#10708) - Add additional date format pattern to handle whitespace padding --- .../docker/sample_logs/watchguard_firebox.log | 1 + packages/watchguard_firebox/changelog.yml | 5 ++ .../log/_dev/test/pipeline/test-alarm.log | 1 + .../pipeline/test-alarm.log-expected.json | 71 +++++++++++++++++++ .../log/_dev/test/system/test-udp-config.yml | 2 +- .../elasticsearch/ingest_pipeline/default.yml | 1 + .../data_stream/log/sample_event.json | 12 ++-- packages/watchguard_firebox/docs/README.md | 12 ++-- packages/watchguard_firebox/manifest.yml | 2 +- 9 files changed, 93 insertions(+), 14 deletions(-) diff --git a/packages/watchguard_firebox/_dev/deploy/docker/sample_logs/watchguard_firebox.log b/packages/watchguard_firebox/_dev/deploy/docker/sample_logs/watchguard_firebox.log index 89b4954e060d..caaf72a7ef64 100644 --- a/packages/watchguard_firebox/_dev/deploy/docker/sample_logs/watchguard_firebox.log +++ b/packages/watchguard_firebox/_dev/deploy/docker/sample_logs/watchguard_firebox.log @@ -26,3 +26,4 @@ <142>May 20 15:19:05 WatchGuard-Firebox FVE6035FD3AE3 (2024-01-10T11:49:17) firewall: msg_id="3000-0175" Deny Trusted External tcp 10.0.1.2 175.16.199.1 37930 80 msg="ProxyDrop: HTTP Virus found" proxy_act="HTTP-Client.Standard.1" md5="69630e4574ec6798239b091cda43dca0" virus="EICAR-Test-File (not a virus)" host="175.16.199.1" path="/eicar.com.txt" (HTTP proxy-00) <142>May 20 15:19:05 WatchGuard-Firebox FVE6035FD3AE3 (2024-01-10T11:49:17) firewall: msg_id="3000-0176" Allow Trusted External tcp 10.0.1.2 175.16.199.1 37932 80 msg="HTTP request" proxy_act="HTTP-Client.Standard.1" op="GET" dstname="175.16.199.1" arg="/index.html" sent_bytes="176" rcvd_bytes="517" elapsed_time="0.002265 sec(s)" (HTTP-proxy-00) <142>May 20 15:19:05 WatchGuard-Firebox FVE6035FD3AE3 (2024-01-10T11:49:17) firewall: msg_id="1AFF-0001" Deny 1-Trusted 6-Ext-access tcp 10.0.1.2 192.168.53.82 60654 80 msg="ProxyDeny: HTTP server response timeout" (HTTP-proxy-00) +<142>Aug 6 08:51:27 WatchGuard-Firebox FVE6035FD3AE3 (2024-08-06T03:31:27) firewall[10]: msg_id="3000-0172" Blocked port: Traffic detected from 2a02:cf40:: to 175.16.199.1 on port 513. (Blocked Ports) diff --git a/packages/watchguard_firebox/changelog.yml b/packages/watchguard_firebox/changelog.yml index a6643d050882..f6393b5b5f97 100644 --- a/packages/watchguard_firebox/changelog.yml +++ b/packages/watchguard_firebox/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "0.1.1" + changes: + - description: Add date format pattern to parse syslog timestamp. + type: bugfix + link: https://github.com/elastic/integrations/pull/10708 - version: "0.1.0" changes: - description: Initial release. diff --git a/packages/watchguard_firebox/data_stream/log/_dev/test/pipeline/test-alarm.log b/packages/watchguard_firebox/data_stream/log/_dev/test/pipeline/test-alarm.log index 534e5890146b..cbe4f31b2abf 100644 --- a/packages/watchguard_firebox/data_stream/log/_dev/test/pipeline/test-alarm.log +++ b/packages/watchguard_firebox/data_stream/log/_dev/test/pipeline/test-alarm.log @@ -20,3 +20,4 @@ <142>May 10 15:19:05 WatchGuard-Firebox FVE6035FD3AE3 (2024-05-10T09:49:05) firewall[10]: msg_id="3000-0170" The total number of current sessions (1024) has reached the high water mark (1024). (HTTP-Client.Standard.1-px) <142>May 10 15:19:05 WatchGuard-Firebox FVE6035FD3AE3 (2024-05-10T09:49:05) firewall[10]: msg_id="3000-0171" The number of connections (2048) has reached the configured limit (2048). (HTTP-Client.Standard.1-px) <142>May 10 15:19:05 WatchGuard-Firebox FVE6035FD3AE3 (2024-05-10T09:49:05) firewall[10]: msg_id="3000-0172" Blocked port: Traffic detected from 10.0.1.2 to 175.16.199.0 on port 513. (Blocked Ports) +<142>Aug 6 08:51:27 WatchGuard-Firebox FVE6035FD3AE3 (2024-08-06T03:31:27) firewall[10]: msg_id="3000-0172" Blocked port: Traffic detected from 2a02:cf40:: to 175.16.199.1 on port 513. (Blocked Ports) diff --git a/packages/watchguard_firebox/data_stream/log/_dev/test/pipeline/test-alarm.log-expected.json b/packages/watchguard_firebox/data_stream/log/_dev/test/pipeline/test-alarm.log-expected.json index 5d36653538da..8aa845c34326 100644 --- a/packages/watchguard_firebox/data_stream/log/_dev/test/pipeline/test-alarm.log-expected.json +++ b/packages/watchguard_firebox/data_stream/log/_dev/test/pipeline/test-alarm.log-expected.json @@ -1498,6 +1498,77 @@ "timestamp": "2024-05-10T09:49:05.000Z" } } + }, + { + "@timestamp": "2024-08-06T08:51:27.000+05:30", + "destination": { + "ip": "175.16.199.1" + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "kind": "alert", + "original": "<142>Aug 6 08:51:27 WatchGuard-Firebox FVE6035FD3AE3 (2024-08-06T03:31:27) firewall[10]: msg_id=\"3000-0172\" Blocked port: Traffic detected from 2a02:cf40:: to 175.16.199.1 on port 513. (Blocked Ports)", + "outcome": "unknown", + "timezone": "+05:30", + "type": [ + "denied" + ] + }, + "log": { + "syslog": { + "appname": "firewall", + "hostname": "WatchGuard-Firebox", + "priority": 142, + "procid": "10" + } + }, + "message": "Blocked port: Traffic detected from 2a02:cf40:: to 175.16.199.1 on port 513.", + "observer": { + "hostname": "WatchGuard-Firebox", + "product": "Firebox", + "serial_number": "FVE6035FD3AE3", + "type": "firewall", + "vendor": "WatchGuard" + }, + "related": { + "hosts": [ + "WatchGuard-Firebox" + ], + "ip": [ + "175.16.199.1", + "2a02:cf40::" + ] + }, + "rule": { + "name": [ + "Blocked Ports" + ] + }, + "source": { + "ip": "2a02:cf40::" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields" + ], + "watchguard_firebox": { + "log": { + "destination_ip": "175.16.199.1", + "log_type": "alarm", + "msg_id": "3000-0172", + "policy_name": "Blocked Ports", + "port": 513, + "serial_number": "FVE6035FD3AE3", + "source_ip": "2a02:cf40::", + "syslog_timestamp": "2024-08-06T08:51:27.000+05:30", + "timestamp": "2024-08-06T03:31:27.000Z" + } + } } ] } \ No newline at end of file diff --git a/packages/watchguard_firebox/data_stream/log/_dev/test/system/test-udp-config.yml b/packages/watchguard_firebox/data_stream/log/_dev/test/system/test-udp-config.yml index 098f324dceca..37983bdba814 100644 --- a/packages/watchguard_firebox/data_stream/log/_dev/test/system/test-udp-config.yml +++ b/packages/watchguard_firebox/data_stream/log/_dev/test/system/test-udp-config.yml @@ -8,4 +8,4 @@ data_stream: preserve_original_event: true preserve_duplicate_custom_fields: true assert: - hit_count: 28 + hit_count: 29 diff --git a/packages/watchguard_firebox/data_stream/log/elasticsearch/ingest_pipeline/default.yml b/packages/watchguard_firebox/data_stream/log/elasticsearch/ingest_pipeline/default.yml index 1af0541b28d7..27d8145b04d4 100644 --- a/packages/watchguard_firebox/data_stream/log/elasticsearch/ingest_pipeline/default.yml +++ b/packages/watchguard_firebox/data_stream/log/elasticsearch/ingest_pipeline/default.yml @@ -71,6 +71,7 @@ processors: formats: - MMM d HH:mm:ss - MMM dd HH:mm:ss + - MMM d HH:mm:ss on_failure: - append: field: error.message diff --git a/packages/watchguard_firebox/data_stream/log/sample_event.json b/packages/watchguard_firebox/data_stream/log/sample_event.json index e6825f5016d8..747ada66203b 100644 --- a/packages/watchguard_firebox/data_stream/log/sample_event.json +++ b/packages/watchguard_firebox/data_stream/log/sample_event.json @@ -1,15 +1,15 @@ { "@timestamp": "2024-01-16T15:19:05.000Z", "agent": { - "ephemeral_id": "d064e318-a25b-4194-981a-ac29f9146cbb", - "id": "0a23b9c0-d1c4-47ce-b003-9b5041aff6e9", + "ephemeral_id": "5a9738b6-025a-4df4-861e-1cc1eea5c622", + "id": "7aaba523-565c-4597-bc42-59135436336b", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" }, "data_stream": { "dataset": "watchguard_firebox.log", - "namespace": "69604", + "namespace": "76887", "type": "logs" }, "destination": { @@ -37,7 +37,7 @@ "version": "8.11.0" }, "elastic_agent": { - "id": "0a23b9c0-d1c4-47ce-b003-9b5041aff6e9", + "id": "7aaba523-565c-4597-bc42-59135436336b", "snapshot": false, "version": "8.13.0" }, @@ -57,7 +57,7 @@ "email" ], "dataset": "watchguard_firebox.log", - "ingested": "2024-07-10T10:21:38Z", + "ingested": "2024-08-07T05:26:04Z", "kind": "event", "original": "<139>Jan 16 15:19:05 WatchGuard-Firebox FVE6035FD3AE3 (2024-01-19T08:48:15) firewall: msg_id=\"1BFF-000F\" Allow 1-Trusted 0-External tcp 10.0.1.2 175.16.199.1 39398 25 msg=\"SMTP request\" proxy_act=\"SMTP-Outgoing.1\" rcvd_bytes=\"272\" sent_bytes=\"282\" sender=\"tester@testnet.com\" recipients=\"wg@localhost\" server_ssl=\"ECDHE-RSA-AES256-GCMSHA384\" client_ssl=\"AES128-SHA256\" tls_profile=\"TLS-Client.Standard\" (SMTP-proxy-00)", "outcome": "success", @@ -71,7 +71,7 @@ }, "log": { "source": { - "address": "192.168.241.7:39831" + "address": "192.168.240.4:51247" }, "syslog": { "appname": "firewall", diff --git a/packages/watchguard_firebox/docs/README.md b/packages/watchguard_firebox/docs/README.md index 78cfac6b599d..8f59b347aec0 100644 --- a/packages/watchguard_firebox/docs/README.md +++ b/packages/watchguard_firebox/docs/README.md @@ -61,15 +61,15 @@ An example event for `log` looks as following: { "@timestamp": "2024-01-16T15:19:05.000Z", "agent": { - "ephemeral_id": "d064e318-a25b-4194-981a-ac29f9146cbb", - "id": "0a23b9c0-d1c4-47ce-b003-9b5041aff6e9", + "ephemeral_id": "5a9738b6-025a-4df4-861e-1cc1eea5c622", + "id": "7aaba523-565c-4597-bc42-59135436336b", "name": "docker-fleet-agent", "type": "filebeat", "version": "8.13.0" }, "data_stream": { "dataset": "watchguard_firebox.log", - "namespace": "69604", + "namespace": "76887", "type": "logs" }, "destination": { @@ -97,7 +97,7 @@ An example event for `log` looks as following: "version": "8.11.0" }, "elastic_agent": { - "id": "0a23b9c0-d1c4-47ce-b003-9b5041aff6e9", + "id": "7aaba523-565c-4597-bc42-59135436336b", "snapshot": false, "version": "8.13.0" }, @@ -117,7 +117,7 @@ An example event for `log` looks as following: "email" ], "dataset": "watchguard_firebox.log", - "ingested": "2024-07-10T10:21:38Z", + "ingested": "2024-08-07T05:26:04Z", "kind": "event", "original": "<139>Jan 16 15:19:05 WatchGuard-Firebox FVE6035FD3AE3 (2024-01-19T08:48:15) firewall: msg_id=\"1BFF-000F\" Allow 1-Trusted 0-External tcp 10.0.1.2 175.16.199.1 39398 25 msg=\"SMTP request\" proxy_act=\"SMTP-Outgoing.1\" rcvd_bytes=\"272\" sent_bytes=\"282\" sender=\"tester@testnet.com\" recipients=\"wg@localhost\" server_ssl=\"ECDHE-RSA-AES256-GCMSHA384\" client_ssl=\"AES128-SHA256\" tls_profile=\"TLS-Client.Standard\" (SMTP-proxy-00)", "outcome": "success", @@ -131,7 +131,7 @@ An example event for `log` looks as following: }, "log": { "source": { - "address": "192.168.241.7:39831" + "address": "192.168.240.4:51247" }, "syslog": { "appname": "firewall", diff --git a/packages/watchguard_firebox/manifest.yml b/packages/watchguard_firebox/manifest.yml index 562f42994488..83fbafb5cbf5 100644 --- a/packages/watchguard_firebox/manifest.yml +++ b/packages/watchguard_firebox/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.1.4 name: watchguard_firebox title: WatchGuard Firebox -version: 0.1.0 +version: 0.1.1 description: Collect logs from WatchGuard Firebox with Elastic Agent. type: integration categories: From 2bb8b169f7e1f789d3fd97729fce4c0679f35447 Mon Sep 17 00:00:00 2001 From: peterydzynski <25185548+peterydzynski@users.noreply.github.com> Date: Wed, 7 Aug 2024 10:03:15 -0400 Subject: [PATCH 41/77] [zeek] Add source/destination port 0 check to community id processor (#10205) - Added a check on the community_id processor in the Zeek connection pipeline to ensure source and destination port are not 0. --- packages/zeek/changelog.yml | 5 ++ .../_dev/test/pipeline/test-conn.log | 3 +- .../test/pipeline/test-conn.log-expected.json | 73 +++++++++++++++++++ .../elasticsearch/ingest_pipeline/default.yml | 2 +- packages/zeek/manifest.yml | 2 +- 5 files changed, 82 insertions(+), 3 deletions(-) diff --git a/packages/zeek/changelog.yml b/packages/zeek/changelog.yml index 30a636f5946a..edd6b1be1d82 100644 --- a/packages/zeek/changelog.yml +++ b/packages/zeek/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.24.2" + changes: + - description: Add source/destination port = 0 check to community_id processor. + type: bugfix + link: https://github.com/elastic/integrations/pull/10205 - version: "2.24.1" changes: - description: Add null checks to date processors in ntp pipeline. diff --git a/packages/zeek/data_stream/connection/_dev/test/pipeline/test-conn.log b/packages/zeek/data_stream/connection/_dev/test/pipeline/test-conn.log index 73bf06d98171..9fccf6e0034e 100644 --- a/packages/zeek/data_stream/connection/_dev/test/pipeline/test-conn.log +++ b/packages/zeek/data_stream/connection/_dev/test/pipeline/test-conn.log @@ -15,4 +15,5 @@ {"ts":1617062400.703851,"uid":"ChUxTmYLG37oO5qUb","id.orig_h":"10.156.0.2","id.orig_p":44942,"id.resp_h":"169.254.169.254","id.resp_p":80,"proto":"tcp","conn_state":"OTH","local_orig":true,"local_resp":false,"missed_bytes":0,"history":"C","orig_pkts":0,"orig_ip_bytes":0,"resp_pkts":0,"resp_ip_bytes":0} {"ts":1617062400.704467,"uid":"CpeAOT3B11CTXJgzw2","id.orig_h":"10.156.0.2","id.orig_p":44946,"id.resp_h":"169.254.169.254","id.resp_p":80,"proto":"tcp","conn_state":"OTH","local_orig":true,"local_resp":false,"missed_bytes":0,"history":"C","orig_pkts":0,"orig_ip_bytes":0,"resp_pkts":0,"resp_ip_bytes":0} {"preview":false,"offset":0,"result":{"_bkt":"main~0~0758E7C3-1D0C-4B2B-8CF0-682BFEA86CDC","_cd":"0:12","_indextime":"1608752616","_raw":"{\"ts\":1547188417.857497,\"uid\":\"CAcJw21BbVedgFnYH5\",\"id.orig_h\":\"89.160.20.156\",\"id.orig_p\":38334,\"id.resp_h\":\"89.160.20.156\",\"id.resp_p\":53,\"proto\":\"udp\",\"service\":\"dns\",\"duration\":0.076967,\"orig_bytes\":75,\"resp_bytes\":178,\"conn_state\":\"SF\",\"local_orig\":false,\"local_resp\":false,\"missed_bytes\":0,\"history\":\"Dd\",\"orig_pkts\":1,\"orig_ip_bytes\":103,\"resp_pkts\":1,\"resp_ip_bytes\":206,\"tunnel_parents\":[]}","_serial":"0","_si":["b590508aafed","main"],"_sourcetype":"access_log-too_small","_time":"2020-12-23 19:43:35.000 UTC","host":"Lees-MBP.localdomain","index":"main","linecount":"1","my_max":"1608759317","source":"/usr/local/var/log/httpd/access_log","sourcetype":"access_log-too_small","splunk_server":"b590508aafed"}} -{"ts":"2021-06-09T20:55:13.160328Z","uid":"C2KP1V3alRLoxl4JB9","id.orig_h":"10.0.2.15","id.orig_p":46408,"id.resp_h":"172.16.9.68","id.resp_p":80,"proto":"tcp","conn_state":"OTH","local_orig":true,"local_resp":false,"missed_bytes":0,"history":"C","orig_pkts":0,"orig_ip_bytes":0,"resp_pkts":0,"resp_ip_bytes":0} \ No newline at end of file +{"ts":"2021-06-09T20:55:13.160328Z","uid":"C2KP1V3alRLoxl4JB9","id.orig_h":"10.0.2.15","id.orig_p":46408,"id.resp_h":"172.16.9.68","id.resp_p":80,"proto":"tcp","conn_state":"OTH","local_orig":true,"local_resp":false,"missed_bytes":0,"history":"C","orig_pkts":0,"orig_ip_bytes":0,"resp_pkts":0,"resp_ip_bytes":0} +{"ts":1718280877.013007,"uid":"CL0jWq3WeMU4py67t7","id.orig_h":"10.2.4.200","id.orig_p":0,"id.resp_h":"175.16.199.74","id.resp_p":0,"proto":"tcp","conn_state":"OTH","local_orig":true,"local_resp":false,"missed_bytes":0,"history":"R","orig_pkts":1,"orig_ip_bytes":40,"resp_pkts":0,"resp_ip_bytes":0} \ No newline at end of file diff --git a/packages/zeek/data_stream/connection/_dev/test/pipeline/test-conn.log-expected.json b/packages/zeek/data_stream/connection/_dev/test/pipeline/test-conn.log-expected.json index 4b37e85ce9c2..1f9748bd91e7 100644 --- a/packages/zeek/data_stream/connection/_dev/test/pipeline/test-conn.log-expected.json +++ b/packages/zeek/data_stream/connection/_dev/test/pipeline/test-conn.log-expected.json @@ -1327,6 +1327,79 @@ }, "session_id": "C2KP1V3alRLoxl4JB9" } + }, + { + "@timestamp": "2024-06-13T12:14:37.013Z", + "destination": { + "address": "175.16.199.74", + "bytes": 0, + "geo": { + "city_name": "Changchun", + "continent_name": "Asia", + "country_iso_code": "CN", + "country_name": "China", + "location": { + "lat": 43.88, + "lon": 125.3228 + }, + "region_iso_code": "CN-22", + "region_name": "Jilin Sheng" + }, + "ip": "175.16.199.74", + "packets": 0, + "port": 0 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "created": "2020-04-28T11:07:58.223Z", + "id": "CL0jWq3WeMU4py67t7", + "kind": "event", + "original": "{\"ts\":1718280877.013007,\"uid\":\"CL0jWq3WeMU4py67t7\",\"id.orig_h\":\"10.2.4.200\",\"id.orig_p\":0,\"id.resp_h\":\"175.16.199.74\",\"id.resp_p\":0,\"proto\":\"tcp\",\"conn_state\":\"OTH\",\"local_orig\":true,\"local_resp\":false,\"missed_bytes\":0,\"history\":\"R\",\"orig_pkts\":1,\"orig_ip_bytes\":40,\"resp_pkts\":0,\"resp_ip_bytes\":0}", + "type": [ + "connection", + "info" + ] + }, + "network": { + "bytes": 40, + "direction": "outbound", + "packets": 1, + "transport": "tcp" + }, + "related": { + "ip": [ + "10.2.4.200", + "175.16.199.74" + ] + }, + "source": { + "address": "10.2.4.200", + "bytes": 40, + "ip": "10.2.4.200", + "packets": 1, + "port": 0 + }, + "tags": [ + "preserve_original_event", + "local_orig", + "local_resp" + ], + "zeek": { + "connection": { + "history": "R", + "local_orig": true, + "local_resp": false, + "missed_bytes": 0, + "state": "OTH", + "state_message": "No SYN seen, just midstream traffic (a 'partial connection' that was not later closed)." + }, + "session_id": "CL0jWq3WeMU4py67t7" + } } ] } \ No newline at end of file diff --git a/packages/zeek/data_stream/connection/elasticsearch/ingest_pipeline/default.yml b/packages/zeek/data_stream/connection/elasticsearch/ingest_pipeline/default.yml index d71a6f883c6d..afd14b56cb8c 100644 --- a/packages/zeek/data_stream/connection/elasticsearch/ingest_pipeline/default.yml +++ b/packages/zeek/data_stream/connection/elasticsearch/ingest_pipeline/default.yml @@ -127,7 +127,7 @@ processors: copy_from: destination.address if: ctx.destination?.address != null - community_id: - if: 'ctx.network?.transport != "icmp"' + if: 'ctx.network?.transport != "icmp" && ctx.source?.port != 0 && ctx.destination?.port != 0' - community_id: icmp_type: zeek.connection.icmp.type icmp_code: zeek.connection.icmp.code diff --git a/packages/zeek/manifest.yml b/packages/zeek/manifest.yml index 024f5cbf8720..5399028a4408 100644 --- a/packages/zeek/manifest.yml +++ b/packages/zeek/manifest.yml @@ -1,6 +1,6 @@ name: zeek title: Zeek -version: "2.24.1" +version: "2.24.2" description: Collect logs from Zeek with Elastic Agent. type: integration icons: From acaff2ca9081f27d705d73d90b8adfd4945ee916 Mon Sep 17 00:00:00 2001 From: Taylor Swanson <90622908+taylor-swanson@users.noreply.github.com> Date: Wed, 7 Aug 2024 09:20:26 -0500 Subject: [PATCH 42/77] [fortinet_fortiproxy] Remap devname to observer.name and process url field (#10679) - Remap the devname vendor field to observer.name - Remap the url vendor field to url.original and run through uri_parts processor --- packages/fortinet_fortiproxy/changelog.yml | 5 ++ .../pipeline/test-example.log-expected.json | 84 ++++++++++++------- .../elasticsearch/ingest_pipeline/default.yml | 8 +- .../data_stream/log/fields/ecs.yml | 24 ++++++ packages/fortinet_fortiproxy/docs/README.md | 14 ++++ packages/fortinet_fortiproxy/manifest.yml | 2 +- 6 files changed, 107 insertions(+), 30 deletions(-) diff --git a/packages/fortinet_fortiproxy/changelog.yml b/packages/fortinet_fortiproxy/changelog.yml index 92d41de3769c..5cd61e64a2fc 100644 --- a/packages/fortinet_fortiproxy/changelog.yml +++ b/packages/fortinet_fortiproxy/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "0.3.0" + changes: + - description: Remap devname to observer.name and process url field. + type: enhancement + link: https://github.com/elastic/integrations/pull/10679 - version: "0.2.0" changes: - description: Add tags.yml file so that integration's dashboards and saved searches are tagged with "Security Solution" and displayed in the Security Solution UI. Expanded categories. diff --git a/packages/fortinet_fortiproxy/data_stream/log/_dev/test/pipeline/test-example.log-expected.json b/packages/fortinet_fortiproxy/data_stream/log/_dev/test/pipeline/test-example.log-expected.json index 3866c7f0a340..55f60d58047d 100644 --- a/packages/fortinet_fortiproxy/data_stream/log/_dev/test/pipeline/test-example.log-expected.json +++ b/packages/fortinet_fortiproxy/data_stream/log/_dev/test/pipeline/test-example.log-expected.json @@ -361,12 +361,12 @@ "name": "external" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "internal" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -493,12 +493,12 @@ "name": "port1" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "port2" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -616,12 +616,12 @@ "name": "port1" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "port2" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -737,12 +737,12 @@ "name": "port1" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "port2" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -776,6 +776,12 @@ "packets": 0, "port": 40946 }, + "url": { + "domain": "google.com", + "original": "https://google.com/", + "path": "/", + "scheme": "https" + }, "user_agent": { "device": { "name": "Other" @@ -869,12 +875,12 @@ "name": "port1" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "port2" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -908,6 +914,12 @@ "packets": 0, "port": 57748 }, + "url": { + "domain": "steampowered.com", + "original": "https://steampowered.com/", + "path": "/", + "scheme": "https" + }, "user_agent": { "device": { "name": "Other" @@ -997,12 +1009,12 @@ "name": "port1" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "port2" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1036,6 +1048,12 @@ "packets": 0, "port": 36834 }, + "url": { + "domain": "github.com", + "original": "https://github.com/", + "path": "/", + "scheme": "https" + }, "user_agent": { "device": { "name": "Other" @@ -1137,7 +1155,7 @@ "bytes": 290 }, "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1177,6 +1195,8 @@ }, "url": { "domain": "google.com", + "original": "https://google.com/", + "path": "/", "scheme": "https" }, "user_agent": { @@ -1270,7 +1290,7 @@ "bytes": 82 }, "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1301,6 +1321,8 @@ }, "url": { "domain": "google.com", + "original": "https://google.com/", + "path": "/", "scheme": "https" }, "user_agent": { @@ -1394,7 +1416,7 @@ "bytes": 743 }, "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1425,6 +1447,8 @@ }, "url": { "domain": "google.com", + "original": "https://google.com/", + "path": "/", "scheme": "https" }, "user_agent": { @@ -1518,7 +1542,7 @@ "bytes": 80 }, "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1549,6 +1573,8 @@ }, "url": { "domain": "adobe.com", + "original": "https://adobe.com/", + "path": "/", "scheme": "https" }, "user_agent": { @@ -1642,7 +1668,7 @@ "bytes": 88 }, "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1673,6 +1699,8 @@ }, "url": { "domain": "www.adobe.com", + "original": "https://www.adobe.com/", + "path": "/", "scheme": "https" }, "user_agent": { @@ -1736,7 +1764,7 @@ }, "message": "Performance statistics: average CPU: 0, memory: 29, concurrent sessions: 119, setup-rate: 0", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1783,7 +1811,7 @@ }, "message": "failed to send urlfilter packet", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1829,7 +1857,7 @@ }, "message": "interface port1 gets a DHCP lease, ip:10.0.128.2, mask:255.255.255.255, gateway:10.0.128.1, lease expires:Tue May 7 10:11:16 2024", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1900,7 +1928,7 @@ }, "message": "Administrator Admin login failed from https(175.16.199.42) because of invalid user name", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -1965,7 +1993,7 @@ }, "message": "Fortiproxyupdate now fsci=yes from 175.16.199:443", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2019,7 +2047,7 @@ }, "message": "Edit firewall.policy 1", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2072,7 +2100,7 @@ }, "message": "Delete firewall.policy 3", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2126,7 +2154,7 @@ }, "message": "Add firewall.policy 2", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2179,7 +2207,7 @@ }, "message": "Move firewall.policy 2 to 1", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2233,7 +2261,7 @@ } }, "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2287,7 +2315,7 @@ } }, "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2341,7 +2369,7 @@ } }, "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2388,7 +2416,7 @@ }, "message": "Attempt to add tag FCTEMS_ALL_FORTICLOUD_SERVERS failed. Code (-2147483646)", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2459,12 +2487,12 @@ "name": "port1" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "port2" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2569,12 +2597,12 @@ "name": "port1" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "port2" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2658,7 +2686,7 @@ }, "message": "Performance statistics: average CPU: 0, memory: 29, concurrent sessions: 38, setup-rate: 1", "observer": { - "hostname": "TEST-PXY01", + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", @@ -2749,12 +2777,12 @@ "name": "port1" } }, - "hostname": "TEST-PXY01", "ingress": { "interface": { "name": "port2" } }, + "name": "TEST-PXY01", "product": "FortiProxy", "serial_number": "FPXTESTPXY01", "type": "proxy", diff --git a/packages/fortinet_fortiproxy/data_stream/log/elasticsearch/ingest_pipeline/default.yml b/packages/fortinet_fortiproxy/data_stream/log/elasticsearch/ingest_pipeline/default.yml index 1177d6894d18..071c27e652ad 100644 --- a/packages/fortinet_fortiproxy/data_stream/log/elasticsearch/ingest_pipeline/default.yml +++ b/packages/fortinet_fortiproxy/data_stream/log/elasticsearch/ingest_pipeline/default.yml @@ -351,7 +351,7 @@ processors: - rename: tag: rename_devname field: _fields_.devname - target_field: observer.hostname + target_field: observer.name ignore_missing: true - rename: tag: rename_direction @@ -563,6 +563,12 @@ processors: field: client.ip if: ctx._fields_.clientip != null + - uri_parts: + tag: process_url + field: _fields_.url + keep_original: true + ignore_missing: true + # ------------------------------------------------------------------------------ # Cleanup. diff --git a/packages/fortinet_fortiproxy/data_stream/log/fields/ecs.yml b/packages/fortinet_fortiproxy/data_stream/log/fields/ecs.yml index 3bdec85a6d6f..c3a99e9bf5d7 100644 --- a/packages/fortinet_fortiproxy/data_stream/log/fields/ecs.yml +++ b/packages/fortinet_fortiproxy/data_stream/log/fields/ecs.yml @@ -208,6 +208,30 @@ name: url.domain - external: ecs name: url.scheme +- external: ecs + name: url.extension +- external: ecs + name: url.original +- external: ecs + name: url.path +- external: ecs + name: url.fragment +- external: ecs + name: url.port +- external: ecs + name: url.query +- external: ecs + name: url.username +- external: ecs + name: url.password +- external: ecs + name: url.subdomain +- external: ecs + name: url.top_level_domain +- external: ecs + name: url.full +- external: ecs + name: url.registered_domain - external: ecs name: user_agent.device.name - external: ecs diff --git a/packages/fortinet_fortiproxy/docs/README.md b/packages/fortinet_fortiproxy/docs/README.md index 5b1a74cf0305..1b60f01d667d 100644 --- a/packages/fortinet_fortiproxy/docs/README.md +++ b/packages/fortinet_fortiproxy/docs/README.md @@ -888,7 +888,21 @@ An example event for `log` looks as following: | tags | List of keywords used to tag each event. | keyword | | threat.feed.name | The name of the threat feed in UI friendly format. | keyword | | url.domain | Domain of the url, such as "www.elastic.co". In some cases a URL may refer to an IP and/or port directly, without a domain name. In this case, the IP address would go to the `domain` field. If the URL contains a literal IPv6 address enclosed by `[` and `]` (IETF RFC 2732), the `[` and `]` characters should also be captured in the `domain` field. | keyword | +| url.extension | The field contains the file extension from the original request url, excluding the leading dot. The file extension is only set if it exists, as not every url has a file extension. The leading period must not be included. For example, the value must be "png", not ".png". Note that when the file name has multiple extensions (example.tar.gz), only the last one should be captured ("gz", not "tar.gz"). | keyword | +| url.fragment | Portion of the url after the `#`, such as "top". The `#` is not part of the fragment. | keyword | +| url.full | If full URLs are important to your use case, they should be stored in `url.full`, whether this field is reconstructed or present in the event source. | wildcard | +| url.full.text | Multi-field of `url.full`. | match_only_text | +| url.original | Unmodified original url as seen in the event source. Note that in network monitoring, the observed URL may be a full URL, whereas in access logs, the URL is often just represented as a path. This field is meant to represent the URL as it was observed, complete or not. | wildcard | +| url.original.text | Multi-field of `url.original`. | match_only_text | +| url.password | Password of the request. | keyword | +| url.path | Path of the request, such as "/search". | wildcard | +| url.port | Port of the request, such as 443. | long | +| url.query | The query field describes the query string of the request, such as "q=elasticsearch". The `?` is excluded from the query string. If a URL contains no `?`, there is no query field. If there is a `?` but no query, the query field exists with an empty string. The `exists` query can be used to differentiate between the two cases. | keyword | +| url.registered_domain | The highest registered url domain, stripped of the subdomain. For example, the registered domain for "foo.example.com" is "example.com". This value can be determined precisely with a list like the public suffix list (http://publicsuffix.org). Trying to approximate this by simply taking the last two labels will not work well for TLDs such as "co.uk". | keyword | | url.scheme | Scheme of the request, such as "https". Note: The `:` is not part of the scheme. | keyword | +| url.subdomain | The subdomain portion of a fully qualified domain name includes all of the names except the host name under the registered_domain. In a partially qualified domain, or if the the qualification level of the full name cannot be determined, subdomain contains all of the names below the registered domain. For example the subdomain portion of "www.east.mydomain.co.uk" is "east". If the domain has multiple levels of subdomain, such as "sub2.sub1.example.com", the subdomain field should contain "sub2.sub1", with no trailing period. | keyword | +| url.top_level_domain | The effective top level domain (eTLD), also known as the domain suffix, is the last part of the domain name. For example, the top level domain for example.com is "com". This value can be determined precisely with a list like the public suffix list (http://publicsuffix.org). Trying to approximate this by simply taking the last label will not work well for effective TLDs such as "co.uk". | keyword | +| url.username | Username of the request. | keyword | | user_agent.device.name | Name of the device. | keyword | | user_agent.name | Name of the user agent. | keyword | | user_agent.original | Unparsed user_agent string. | keyword | diff --git a/packages/fortinet_fortiproxy/manifest.yml b/packages/fortinet_fortiproxy/manifest.yml index f75d6789bd91..0e307236d541 100644 --- a/packages/fortinet_fortiproxy/manifest.yml +++ b/packages/fortinet_fortiproxy/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.1.3 name: fortinet_fortiproxy title: "Fortinet FortiProxy" -version: 0.2.0 +version: 0.3.0 description: "Collect logs from Fortinet FortiProxy with Elastic Agent." type: integration categories: From bc599975a932b5acb398cc6d5e2e306bf1801817 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 7 Aug 2024 17:47:35 +0200 Subject: [PATCH 43/77] Bump golang.org/x/tools from 0.23.0 to 0.24.0 (#10723) Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.23.0 to 0.24.0. - [Release notes](https://github.com/golang/tools/releases) - [Commits](https://github.com/golang/tools/compare/v0.23.0...v0.24.0) --- updated-dependencies: - dependency-name: golang.org/x/tools dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- go.mod | 16 ++++++++-------- go.sum | 32 ++++++++++++++++---------------- 2 files changed, 24 insertions(+), 24 deletions(-) diff --git a/go.mod b/go.mod index 014895beeb49..179308577b6b 100644 --- a/go.mod +++ b/go.mod @@ -11,7 +11,7 @@ require ( github.com/magefile/mage v1.15.0 github.com/pkg/errors v0.9.1 github.com/stretchr/testify v1.9.0 - golang.org/x/tools v0.23.0 + golang.org/x/tools v0.24.0 gopkg.in/yaml.v3 v3.0.1 ) @@ -174,14 +174,14 @@ require ( go.starlark.net v0.0.0-20230525235612-a134d8f9ddca // indirect go.uber.org/multierr v1.11.0 // indirect go.uber.org/zap v1.27.0 // indirect - golang.org/x/crypto v0.25.0 // indirect - golang.org/x/mod v0.19.0 // indirect - golang.org/x/net v0.27.0 // indirect + golang.org/x/crypto v0.26.0 // indirect + golang.org/x/mod v0.20.0 // indirect + golang.org/x/net v0.28.0 // indirect golang.org/x/oauth2 v0.18.0 // indirect - golang.org/x/sync v0.7.0 // indirect - golang.org/x/sys v0.22.0 // indirect - golang.org/x/term v0.22.0 // indirect - golang.org/x/text v0.16.0 // indirect + golang.org/x/sync v0.8.0 // indirect + golang.org/x/sys v0.23.0 // indirect + golang.org/x/term v0.23.0 // indirect + golang.org/x/text v0.17.0 // indirect golang.org/x/time v0.5.0 // indirect google.golang.org/api v0.171.0 // indirect google.golang.org/appengine v1.6.8 // indirect diff --git a/go.sum b/go.sum index 08f661123c49..157f212cccbb 100644 --- a/go.sum +++ b/go.sum @@ -533,8 +533,8 @@ golang.org/x/crypto v0.0.0-20220622213112-05595931fe9d/go.mod h1:IxCIyHEi3zRg3s0 golang.org/x/crypto v0.3.0/go.mod h1:hebNnKkNXi2UzZN1eVRvBB7co0a+JxK6XbPiWVs/3J4= golang.org/x/crypto v0.3.1-0.20221117191849-2c476679df9a/go.mod h1:hebNnKkNXi2UzZN1eVRvBB7co0a+JxK6XbPiWVs/3J4= golang.org/x/crypto v0.7.0/go.mod h1:pYwdfH91IfpZVANVyUOhSIPZaFoJGxTFbZhFTx+dXZU= -golang.org/x/crypto v0.25.0 h1:ypSNr+bnYL2YhwoMt2zPxHFmbAN1KZs/njMG3hxUp30= -golang.org/x/crypto v0.25.0/go.mod h1:T+wALwcMOSE0kXgUAnPAHqTLW+XHgcELELW8VaDgm/M= +golang.org/x/crypto v0.26.0 h1:RrRspgV4mU+YwB4FYnuBoKsUapNIL5cohGAmSH3azsw= +golang.org/x/crypto v0.26.0/go.mod h1:GY7jblb9wI+FOo5y8/S2oY4zWP07AkOJ4+jxCqdqn54= golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU= @@ -545,8 +545,8 @@ golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4= golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs= -golang.org/x/mod v0.19.0 h1:fEdghXQSo20giMthA7cd28ZC+jts4amQ3YMXiP5oMQ8= -golang.org/x/mod v0.19.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c= +golang.org/x/mod v0.20.0 h1:utOm6MM3R3dnawAiJgn0y+xvuYRsm1RKM/4giyfDgV0= +golang.org/x/mod v0.20.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c= golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= @@ -563,8 +563,8 @@ golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug golang.org/x/net v0.2.0/go.mod h1:KqCZLdyyvdV855qA2rE3GC2aiw5xGR5TEjj8smXukLY= golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs= golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc= -golang.org/x/net v0.27.0 h1:5K3Njcw06/l2y9vpGCSdcxWOYHOUk3dVNGDXN+FvAys= -golang.org/x/net v0.27.0/go.mod h1:dDi0PyhWNoiUOrAS8uXv/vnScO4wnHQO4mj9fn/RytE= +golang.org/x/net v0.28.0 h1:a9JDOJc5GMUJ0+UDqmLT86WiEy7iWyIhz8gz8E4e5hE= +golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg= golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U= golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI= golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8= @@ -576,8 +576,8 @@ golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJ golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.7.0 h1:YsImfSBoP9QPYL0xyKJPq0gcaJdG3rInoqxTWbfQu9M= -golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk= +golang.org/x/sync v0.8.0 h1:3NFvSEYkUoMifnESzZl15y791HH1qU2xm6eCJU5ZPXQ= +golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk= golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20190222072716-a9d3bda3a223/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= @@ -603,16 +603,16 @@ golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.22.0 h1:RI27ohtqKCnwULzJLqkv897zojh5/DwS/ENaMzUOaWI= -golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM= +golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.0.0-20220526004731-065cf7ba2467/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.2.0/go.mod h1:TVmDHMZPmdnySmBfhjOoOdhjzdE1h4u1VwSiw2l1Nuc= golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k= golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U= -golang.org/x/term v0.22.0 h1:BbsgPEJULsl2fV/AT3v15Mjva5yXKQDyKf+TbDz7QJk= -golang.org/x/term v0.22.0/go.mod h1:F3qCibpT5AMpCRfhfT53vVJwhLtIVHhB9XDjfFvnMI4= +golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU= +golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk= golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ= golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ= @@ -621,8 +621,8 @@ golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ= golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8= golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8= golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8= -golang.org/x/text v0.16.0 h1:a94ExnEXNtEwYLGJSIUxnWoxoRz/ZcCsV63ROupILh4= -golang.org/x/text v0.16.0/go.mod h1:GhwF1Be+LQoKShO3cGOHzqOgRrGaYc9AvblQOmPVHnI= +golang.org/x/text v0.17.0 h1:XtiM5bkSOt+ewxlOE/aE/AKEHibwj/6gvWMl9Rsh0Qc= +golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY= golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk= golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM= golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= @@ -637,8 +637,8 @@ golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4f golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk= golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc= golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU= -golang.org/x/tools v0.23.0 h1:SGsXPZ+2l4JsgaCKkx+FQ9YZ5XEtA1GZYuoDjenLjvg= -golang.org/x/tools v0.23.0/go.mod h1:pnu6ufv6vQkll6szChhK3C3L/ruaIv5eBeztNG8wtsI= +golang.org/x/tools v0.24.0 h1:J1shsA93PJUEVaUSaay7UXAyE8aimq3GW0pjlolpa24= +golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ= golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= From 7025e89aea70ea32c86dd730c0076322ac0c0769 Mon Sep 17 00:00:00 2001 From: Maurizio Branca Date: Wed, 7 Aug 2024 18:23:22 +0200 Subject: [PATCH 44/77] [Docs] Add ecs@mappings migration guide for integration developers (#10079) Add history, usage, and recommendations for using the ecs@mappings component template in integrations. --------- Co-authored-by: Jaime Soriano Pastor --- docs/ecs@mappings_migration_guide.md | 318 +++++++++++++++++++++++++++ 1 file changed, 318 insertions(+) create mode 100644 docs/ecs@mappings_migration_guide.md diff --git a/docs/ecs@mappings_migration_guide.md b/docs/ecs@mappings_migration_guide.md new file mode 100644 index 000000000000..2f536b1d52df --- /dev/null +++ b/docs/ecs@mappings_migration_guide.md @@ -0,0 +1,318 @@ +# ecs@mappings migration guide for integration developers + +## History + +In the initial stages, our approach involved individually specifying [ECS](https://www.elastic.co/guide/en/ecs/current/ecs-reference.html) fields within each package. + +```yaml +- name: provider + level: extended + type: keyword + ignore_above: 1024 + description: Name of the cloud provider. Example values are aws, azure, gcp, or digitalocean. +``` + +As we progressed, the need for more efficient methodologies became apparent, prompting us to explore alternative strategies. + +**How are integrations handling ECS mappings today?** + +Today, integrations employ one of two strategies to manage ECS mappings: + +- Referencing ECS mappings (the predominant method) +- Importing ECS mappings (a smaller subset, approximately 40 integrations, opt to import ECS mappings directly) + +### Referencing ECS fields + +Define external dependency: + +```yaml +# packages/azure/_dev/build/build.yml + +dependencies: + ecs: + reference: git@v8.11.0 +``` + +Developers can reference the external definition: + +```yaml +# packages/azure/data_stream/activitylogs/fields/agent.yml + +- name: cloud.provider + external: ecs +``` + +#### Consequences + +Even if each field references the external definition, integration developers must list all fields in various `.yml` files. + +### Importing ECS mappings + +With elastic-package [v0.71.0](https://github.com/elastic/elastic-package/releases/tag/v0.71.0) and package-spec 2.3.0, we [added](https://github.com/elastic/elastic-package/pull/1073) the option of importing the ECS mappings during the package build to avoid explicitly listing all the fields. + +When we set `import_mappings: true` in the `_dev/build/build.yml` file, elastic-package fetches the static [ecs_mappings.yml](https://github.com/elastic/elastic-package/blob/a44250eda089f89cc820c0ba5492bef71857aeb1/internal/builder/_static/ecs_mappings.yaml) file and embeds its content in the `logs-azure.eventhub@package` component template. + +```yaml +# packages/azure_blob_storage/_dev/build/build.yml + +dependencies: + ecs: + reference: "git@v8.11.0" + import_mappings: true +``` + +With `import_mappings: true`, the package doesn’t need to define ECS fields. + +```yaml +# packages/azure_blob_storage/data_stream/generic/fields/iamnotneeded.yml + +¯\_(ツ)_/¯ +``` + +See [Custom Azure Blob Storage Input](https://github.com/elastic/integrations/tree/main/packages/azure_blob_storage) as an example of integrations importing ECS mappings. + +#### Consequences + +- There is no need to define ECS fields \o/ +- ECS field definitions come from one place, the static [ecs_mappings.yml](https://github.com/elastic/elastic-package/blob/a44250eda089f89cc820c0ba5492bef71857aeb1/internal/builder/_static/ecs_mappings.yaml) file in elastic-package sources. +- However, setting up elastic-package has a maintenance cost of keeping [ecs_mappings.yml](https://github.com/elastic/elastic-package/blob/a44250eda089f89cc820c0ba5492bef71857aeb1/internal/builder/_static/ecs_mappings.yaml) up-to-date with changes in ECS. + +## Why change? + +A new opportunity to improve our handling of ECS mappings appeared when Elasticsearch v8.9.0 [introduced](https://github.com/elastic/elasticsearch/issues/95538) the new [ecs@mappings](https://github.com/elastic/elasticsearch/blob/b4938e16457dc69d392235eaf404a6dad9ddb717/x-pack/plugin/core/template-resources/src/main/resources/ecs%40mappings.json) component template to `logs-*-*` index template. + +With the [ecs@mappings](https://github.com/elastic/elasticsearch/blob/b4938e16457dc69d392235eaf404a6dad9ddb717/x-pack/plugin/core/template-resources/src/main/resources/ecs%40mappings.json) component template, we have an official and maintained definition of ECS mappings template. + +However, Fleet v8.9.0 did not include the [ecs@mappings](https://github.com/elastic/elasticsearch/blob/b4938e16457dc69d392235eaf404a6dad9ddb717/x-pack/plugin/core/template-resources/src/main/resources/ecs%40mappings.json) component template in index templates for integrations. + +From stack v8.13.0, Fleet will [include](https://github.com/elastic/kibana/issues/174905) ecs@mappings component templates in all integrations, making it easier for integration users and developers to access logs and metrics data streams. + +#### Consequences + +- ecs@mappings from Elasticsearch are the single source of truth for ECS mappings. +- ECS mappings are available and out-of-the-box; there is no need to import or reference external mapping. + +## How to start using ecs@mappings + +### Requirements + +Before starting to leverage only the ecs@mappings component template for ECS mappings in your integration package, you need to meet the following requirements: + +- The minimum stack version must be 8.13.0. +- The minimum elastic-package version must be 0.99.0. + +#### Why elastic-package version 0.99.0+? + +When your integration package only supports stack versions 8.13.0+, it validates the field definitions using the fields schema from the ECS repo on sample_event.json and test documents at + +```text +packages/azure/data_stream/activitylogs/_dev/test/pipeline/ +``` + +For example, `elastic-package` fetches the field definitions for ECS 8.11.0 at: + +https://raw.githubusercontent.com/elastic/ecs/v8.11.0/generated/ecs/ecs_nested.yml + + +### Migration Paths + +Here is a list of known migration paths from referencing external fields and importing the legacy ECS mappings. + +#### From Referencing ECS fields + +You can start by removing references to external definitions and running tests. You should consider a few aspects while migrating from referencing ECS to the ecs@mappings component template. + +##### Check your pipeline test coverage + +Good coverage in _dev/test/pipeline/ tests is essential for catching problems. Consider adding more sample documents to increase the chances of catching problems. + +##### Existing tests may start to fail + +For Integrations that target stack 8.13+, elastic-package 0.99 also brings an additional schema validation that can uncover inconsistencies. + +For example, by enabling ecs@mappings in Azure Logs, we learned that the current "event.outcome" field value, “succeeded,” is not one of the expected values (it must be between “success”, “failure”, and “unknown”). + +##### Take underlying assumptions into account + +The ecs@mappings expect that logs and metrics shippers (and the related pipelines, if any) emit field values using the correct field type. + +For example, if you send a document with a boolean field: + +```json +{ + "coldstart": true +} +``` + +Both legacy and modern ECS mappings will map the field as a boolean field type. + +However, if your logs source emits something like this document: + +```json +{ + "coldstart": "true" +} +``` + +The modern ecs@mappings will not coerce the value and map this field as a keyword. + +We can consider this an edge case. However, it can happen, even if it looks weird. Personally, I had spotted cases like this in one of the major CSPs. I suggest dealing with edge cases from your logs or metrics source using the @custom pipeline or mappings. + +Each approach to ECS mappings has its own tradeoffs. If you want to learn more about the one we picked and what other options we considered, you can read https://github.com/elastic/elasticsearch/issues/85146#issuecomment-2031285084 + +#### From Importing ECS fields + +Integration packages importing legacy ECS mappings do not have field definitions. The transition should be more accessible. + +When the min stack version is ^8.13.0, you can stop importing the legacy mappings: + +```yaml +# packages/azure_blob_storage/_dev/build/build.yml + +dependencies: + ecs: + reference: "git@v8.11.0" + import_mappings: true # remove this line, default is false. +``` + +Good `sample_event.json` and test documents are essential. + +### Existing approaches to define mappings will continue to work + +In package-spec 3.1.3, we deprecated the use of import_mappings: true. Importing is no longer the recommended way to deal with ECS mappings. + +Since the package owners may want to keep the minimum stack version < 8.13, all existing approaches to define mappings will continue to work. + +We recommend migrating to ecs@mappings to reap the benefits of centralized and up-to-date ECS field definitions. + +#### package-spec recommendations + +Consider upgrading to the recent package-spec according to your minimum stack requirements. The benefits (especially additional checks that elastic-package delivers) outweigh the costs. + +### Override, if required + +The ecs@mappings can deal with ECS mappings in all standard cases. + +However, integration developers can continue using the field definition of specific fields to override the definition in Elasticsearch if needed. + +## Q&A + +Here are a few topic and questions people asked when we started rolling out the `ecs@mappings` component template in integrations. + +### TSDB fields in metrics data streams + +ECS field definitions in Elasticsearch do not include TSDB settings like dimensions. Developers can add a field definition with the additional dimension setting when needed. + +However, this will no longer be needed when integrations are OpenTelemetry-based. That’s because all attributes and resource attributes will be dimensions by default. + +### How can I learn which ECS version a given stack version supports? + +#### Question + +For example, if I am running 8.13.0, which ECS version does the 8.13.0 `ecs@mappings` component template support? + +#### Answer + +The `ecs@mappings` component template in each stack version supports the ECS version available at the time of the stack release. + +An automated test verifies daily that `ecs@mappings` don’t miss any ECS field. + +As Eyal explained: + +> “It fetches the current state of all fields from the ECS repo, creates test documents that contain an example for each field, and verifies that an index that relies on the dynamic templates will contain all the right mappings when indexing the test documents.” + +### Are new versions of ecs@mappings retro-compatible? + +#### Question + +For example, suppose I am on 8.13.0, and the integration validates ECS fields using the latest ECS v8.11.0. + +What are the chances that future stack versions (8.14, 8.15, etc) may ship with an ecs@mappings component template that changes the integration's behavior? What can I do to prevent this from happening or detect it in advance? + +#### Answer + +Since we based the `ecs@mappings` component template on pattern matching, we expect little to no changes over time. + +New fields in ECS should receive a mapping, and automated tests are in place to ensure that the `ecs@mappings` component template adequately supports all ECS fields. + +Integration developers should target new versions of ECS in the “dependencies.ecs.reference” in their integration to let elastic-package check for compliance. + +The transition to Semantic Conventions (OTel) is more likely to introduce breaking changes than ECS updates. + +## Scenarios + +Here are scenario that may be affected by the introduction of `ecs@mappings` in integrations. + +### A user clones an integration index template to customize the ILM policy + +#### Description + +Suppose a user installs the 1Password integration on stack 8.12. + +Fleet creates the `logs-1password.audit_events` index template, with the `logs-1password.audit_events-*` index pattern, and the following component templates: + +```text +logs@settings +logs-1password.audit_events@package +logs-1password.audit_events@custom +.fleet_globals-1 +.fleet_agent_id_verification-1 +``` + +The user has three environments (dev, test, prod) and wants to use a distinct ILM policy in each environment. They decide to use a different namespace for each environment (a common practice in enterprise environments). + +The user finds https://www.elastic.co/guide/en/fleet/current/data-streams-ilm-tutorial.html#data-streams-ilm-one, and at step 3 they read the following steps: + +1. Navigate to **Stack Management > Index Management > Index Templates**. +2. Find the index template you want to clone. The index template will have the and in its name, but not the . In this case, it’s metrics-system.network. +3. Select **Actions > Clone**. +4. Set the name of the new index template to `metrics-system.network-production`. + +They clone the original index template three times and set up individual ILM policies. + +They end up with four index templates: + +- logs-1password.audit_events (original) +- logs-1password.audit_events-dev (includes logs-1password.audit_events-dev@custom) +- logs-1password.audit_events-test (includes logs-1password.audit_events-uat@custom) +- logs-1password.audit_events-production (includes logs-1password.audit_events-production@custom) + +Then, the user upgrades the stack from 8.12 to 8.13. + +After the upgrade, here’s each index template's list of component templates. + +The original index template gets the ecs@mappings component. + +```text +# logs-1password.audit_events (original) + +logs@settings +logs-1password.audit_events@package +logs-1password.audit_events@custom +ecs@mappings +.fleet_globals-1 +.fleet_agent_id_verification-1 +``` + +The cloned index template is unchanged: + +```text +# logs-1password.audit_events-dev + +logs@settings +logs-1password.audit_events@package +logs-1password.audit_events@custom +.fleet_globals-1 +.fleet_agent_id_verification-1 +``` + +#### Description + +We couldn’t identify an actual solution to address this scenario. + +To mitigate potential issues from this scenario, we are currently extending the information available to end users: + +- The “Notable changes” section in the Fleet 8.13 release notes. +- Created the KB article [Potential ecs@mappings issue for index template clones on 8.13+](https://support.elastic.dev/knowledge/view/df0eaa25) +- Updated the [Tutorial: Customize data retention policies document](https://www.elastic.co/guide/en/fleet/current/data-streams-ilm-tutorial.html) with a note and instructions to update index templates cloned before Elasticsearch 8.13 + From df846beb3b79e0c6a9e4ebe30324ccf493f42384 Mon Sep 17 00:00:00 2001 From: Florian Lehner Date: Wed, 7 Aug 2024 18:36:36 +0200 Subject: [PATCH 45/77] Profiling: Update requirements (#10724) - Minimum supported kernel version is 4.19 - With 8.10 Profiling did become GA - versions prior to 8.10 are not fully supported. --- packages/universal_profiling_agent/changelog.yml | 5 +++++ packages/universal_profiling_agent/docs/README.md | 4 ++-- packages/universal_profiling_agent/manifest.yml | 2 +- 3 files changed, 8 insertions(+), 3 deletions(-) diff --git a/packages/universal_profiling_agent/changelog.yml b/packages/universal_profiling_agent/changelog.yml index d397b35de691..d889653927c3 100644 --- a/packages/universal_profiling_agent/changelog.yml +++ b/packages/universal_profiling_agent/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: 8.14.0 + changes: + - description: Update requirement text + type: enhancement + link: https://github.com/elastic/integrations/pull/10724 - version: 8.13.2 changes: - description: Add disable_tls option diff --git a/packages/universal_profiling_agent/docs/README.md b/packages/universal_profiling_agent/docs/README.md index d73a95a7e9f3..000f4ef5eebf 100644 --- a/packages/universal_profiling_agent/docs/README.md +++ b/packages/universal_profiling_agent/docs/README.md @@ -5,8 +5,8 @@ Get a comprehensive understanding of what lines of code are consuming compute resources throughout your entire fleet by visualizing your data in Kibana using the flamegraph, stacktraces, and top functions views. ## Requirements -* The workloads to be profiled must be running on Linux machines; with kernel >=4.15 -* Elastic Cloud, version 8.7 or higher +* The workloads to be profiled must be running on Linux machines; The minimum supported kernel version is either 4.19 for x86_64 or 5.5 for ARM64 machines. +* Elastic Cloud, version 8.10 or higher ## Key Features diff --git a/packages/universal_profiling_agent/manifest.yml b/packages/universal_profiling_agent/manifest.yml index 9f8d53f1db33..d51e0fcdb6f4 100644 --- a/packages/universal_profiling_agent/manifest.yml +++ b/packages/universal_profiling_agent/manifest.yml @@ -1,6 +1,6 @@ name: profiler_agent title: Universal Profiling Agent -version: 8.13.2 +version: 8.14.0 categories: ["elastic_stack", "monitoring"] description: Fleet-wide, whole-system, continuous profiling with zero instrumentation. conditions: From 80576ff924ad84e24dc6e9561d19673fca74387c Mon Sep 17 00:00:00 2001 From: peterydzynski <25185548+peterydzynski@users.noreply.github.com> Date: Wed, 7 Aug 2024 20:22:53 -0400 Subject: [PATCH 46/77] m365_defender: set network.transport to ssl for ssl type actions (#10730) Co-authored-by: Peter Rydzynski --- packages/m365_defender/changelog.yml | 5 +++++ .../event/_dev/test/pipeline/test-device.log-expected.json | 2 +- .../event/elasticsearch/ingest_pipeline/pipeline_device.yml | 2 +- packages/m365_defender/manifest.yml | 2 +- 4 files changed, 8 insertions(+), 3 deletions(-) diff --git a/packages/m365_defender/changelog.yml b/packages/m365_defender/changelog.yml index addcb64ae84a..108204c42ae5 100644 --- a/packages/m365_defender/changelog.yml +++ b/packages/m365_defender/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.14.3" + changes: + - description: Fix sslconnectioninspected event `network.protocol` getting set to `dns`. + type: bugfix + link: https://github.com/elastic/integrations/pull/10730 - version: "2.14.2" changes: - description: Fix `network.transport` and `network.protocol` processing. diff --git a/packages/m365_defender/data_stream/event/_dev/test/pipeline/test-device.log-expected.json b/packages/m365_defender/data_stream/event/_dev/test/pipeline/test-device.log-expected.json index 3732a6ba2f91..4a1b0016714d 100644 --- a/packages/m365_defender/data_stream/event/_dev/test/pipeline/test-device.log-expected.json +++ b/packages/m365_defender/data_stream/event/_dev/test/pipeline/test-device.log-expected.json @@ -3128,7 +3128,7 @@ }, "network": { "direction": "outbound", - "protocol": "dns", + "protocol": "ssl", "transport": "tcp" }, "process": { diff --git a/packages/m365_defender/data_stream/event/elasticsearch/ingest_pipeline/pipeline_device.yml b/packages/m365_defender/data_stream/event/elasticsearch/ingest_pipeline/pipeline_device.yml index 2859db7a3cfc..fe28885875e3 100644 --- a/packages/m365_defender/data_stream/event/elasticsearch/ingest_pipeline/pipeline_device.yml +++ b/packages/m365_defender/data_stream/event/elasticsearch/ingest_pipeline/pipeline_device.yml @@ -2389,7 +2389,7 @@ processors: override: true - set: field: network.protocol - value: dns + value: ssl tag: set_network_protocol_ssl if: ctx.m365_defender?.event?.action?.type != null && ctx.m365_defender.event.action.type.toLowerCase().contains('ssl') override: true diff --git a/packages/m365_defender/manifest.yml b/packages/m365_defender/manifest.yml index 6105247491ae..d5336220e2f4 100644 --- a/packages/m365_defender/manifest.yml +++ b/packages/m365_defender/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: m365_defender title: Microsoft M365 Defender -version: "2.14.2" +version: "2.14.3" description: Collect logs from Microsoft M365 Defender with Elastic Agent. categories: - "security" From 16b2eeabf9bc6c0b2054c27029c0ec203e8e850a Mon Sep 17 00:00:00 2001 From: Krishna Chaitanya Reddy Burri Date: Thu, 8 Aug 2024 10:37:50 +0530 Subject: [PATCH 47/77] sophos_central: Update docs for token_url configuration (#10720) Update docs for `token_url` configuration. [The input](https://github.com/elastic/integrations/blob/main/packages/sophos_central/data_stream/alert/agent/stream/httpjson.yml.hbs#L9) already appends the token url path `/api/v2/oauth2/token` to the `auth.oauth2.token_url`, needing the user to configure only the base url for token_url parameter. For example: `https://id.sophos.com`. The current README doc doesn't indicate that the url path needs to be removed when configuring token_url. This can lead to duplicate url path in the `auth.oauth2.token_url`, for example: `https://id.sophos.com/api/v2/oauth2/token/api/v2/oauth2/token`. The PR addresses this by updating the README doc. --- packages/sophos_central/_dev/build/docs/README.md | 2 +- packages/sophos_central/changelog.yml | 5 +++++ packages/sophos_central/docs/README.md | 2 +- packages/sophos_central/manifest.yml | 4 ++-- 4 files changed, 9 insertions(+), 4 deletions(-) diff --git a/packages/sophos_central/_dev/build/docs/README.md b/packages/sophos_central/_dev/build/docs/README.md index b6da4f09fdda..3a0e2b323f49 100644 --- a/packages/sophos_central/_dev/build/docs/README.md +++ b/packages/sophos_central/_dev/build/docs/README.md @@ -33,7 +33,7 @@ The Elastic Integration for Sophos Central requires the following Authentication - Grant Type - Scope - Tenant ID - - Token URL + - Token URL (without the URL path) **NOTE**: Sophos central supports logs only upto last 24 hrs. diff --git a/packages/sophos_central/changelog.yml b/packages/sophos_central/changelog.yml index be4a3c600127..cc4109e2e769 100644 --- a/packages/sophos_central/changelog.yml +++ b/packages/sophos_central/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.16.0" + changes: + - description: Update docs for token_url configuration. + type: enhancement + link: https://github.com/elastic/integrations/pull/10720 - version: "1.15.0" changes: - description: Removed import_mappings. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/sophos_central/docs/README.md b/packages/sophos_central/docs/README.md index 6e5d2c47554f..43700ab70564 100644 --- a/packages/sophos_central/docs/README.md +++ b/packages/sophos_central/docs/README.md @@ -33,7 +33,7 @@ The Elastic Integration for Sophos Central requires the following Authentication - Grant Type - Scope - Tenant ID - - Token URL + - Token URL (without the URL path) **NOTE**: Sophos central supports logs only upto last 24 hrs. diff --git a/packages/sophos_central/manifest.yml b/packages/sophos_central/manifest.yml index aef6d3a8b9e3..a20a1f484835 100644 --- a/packages/sophos_central/manifest.yml +++ b/packages/sophos_central/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: sophos_central title: Sophos Central -version: "1.15.0" +version: "1.16.0" description: This Elastic integration collects logs from Sophos Central with Elastic Agent. type: integration categories: @@ -73,7 +73,7 @@ policy_templates: - name: token_url type: text title: Token URL - description: "Token_url must be the same as used while generating tenant_id, follow this link(https://developer.sophos.com/getting-started-tenant) for configuration." + description: Token_url must be the same as used while generating tenant_id, follow this [link](https://developer.sophos.com/getting-started-tenant) for configuration. This URL should be without the url path, for example - `https://id.sophos.com` i.e., without the path `/api/v2/oauth2/token`. multi: false required: true show_user: false From a436aa74b23564c4710620cc08ad21f80b31821d Mon Sep 17 00:00:00 2001 From: Chris Berkhout Date: Thu, 8 Aug 2024 10:39:40 +0200 Subject: [PATCH 48/77] Populate `event.outcome` based on `sso_token_success`, when present (#10697) The `sso_token_success` field isn't in the API documentation, but we do have a field definition for it and we see it returned with `"event_type": "sso_auth"` (without the `success` field). --- packages/jumpcloud/changelog.yml | 5 +++++ .../events/elasticsearch/ingest_pipeline/default.yml | 8 ++++++++ packages/jumpcloud/manifest.yml | 2 +- 3 files changed, 14 insertions(+), 1 deletion(-) diff --git a/packages/jumpcloud/changelog.yml b/packages/jumpcloud/changelog.yml index 9e0f151bbb54..9194a366055c 100644 --- a/packages/jumpcloud/changelog.yml +++ b/packages/jumpcloud/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.12.0" + changes: + - description: Populate 'event.outcome' based on 'sso_token_success', when present + type: enhancement + link: https://github.com/elastic/integrations/pull/10697 - version: "1.11.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/jumpcloud/data_stream/events/elasticsearch/ingest_pipeline/default.yml b/packages/jumpcloud/data_stream/events/elasticsearch/ingest_pipeline/default.yml index dbe587d98185..f1f5eebf86a8 100644 --- a/packages/jumpcloud/data_stream/events/elasticsearch/ingest_pipeline/default.yml +++ b/packages/jumpcloud/data_stream/events/elasticsearch/ingest_pipeline/default.yml @@ -161,6 +161,14 @@ processors: - set: field: event.outcome value: unknown + - set: + field: event.outcome + value: success + if: ctx.jumpcloud?.event?.sso_token_success == true + - set: + field: event.outcome + value: failure + if: ctx.jumpcloud?.event?.sso_token_success == false - set: field: event.outcome value: success diff --git a/packages/jumpcloud/manifest.yml b/packages/jumpcloud/manifest.yml index 81ffd8fd3c6e..4ff6076c00ec 100644 --- a/packages/jumpcloud/manifest.yml +++ b/packages/jumpcloud/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: jumpcloud title: "JumpCloud" -version: "1.11.0" +version: "1.12.0" description: "Collect logs from JumpCloud Directory as a Service" type: integration categories: From 1c2a9f2445bdc32e27c87039d990d15c7fa25a81 Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Thu, 8 Aug 2024 18:51:59 +0930 Subject: [PATCH 49/77] f5_bigip: handle x_forwarded_for_header_value fields with multiple IP addresses (#10718) --- packages/f5_bigip/changelog.yml | 5 + .../test/pipeline/test-pipeline-bigip-asm.log | 1 + .../test-pipeline-bigip-asm.log-expected.json | 137 +++++++++++++++++- .../ingest_pipeline/pipeline_bigipasm.yml | 20 ++- .../data_stream/log/sample_event.json | 18 ++- packages/f5_bigip/docs/README.md | 18 ++- packages/f5_bigip/manifest.yml | 2 +- 7 files changed, 175 insertions(+), 26 deletions(-) diff --git a/packages/f5_bigip/changelog.yml b/packages/f5_bigip/changelog.yml index 0739ca0d9474..9f1240dbbd31 100644 --- a/packages/f5_bigip/changelog.yml +++ b/packages/f5_bigip/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.19.0" + changes: + - description: Handle `x_forwarded_for_header_value` fields with multiple IP addresses. + type: enhancement + link: https://github.com/elastic/integrations/pull/10718 - version: "1.18.1" changes: - description: Update event.kind values based on severity. diff --git a/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-pipeline-bigip-asm.log b/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-pipeline-bigip-asm.log index 52ff0f7582cd..8c8ad45d3df0 100644 --- a/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-pipeline-bigip-asm.log +++ b/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-pipeline-bigip-asm.log @@ -2,3 +2,4 @@ {"hostname":"hostname","management_ip_address":"10.0.1.4","management_ip_address_2":"","http_class_name":"/Common/app.app/app_policy","web_application_name":"/Common/app.app/app_policy","policy_name":"/Common/app.app/app_policy","policy_apply_date":"2018-11-19 22:17:57","violations":"Evasion technique detected","support_id":"1730614276869062795","request_status":"blocked","response_code":"0","ip_client":"192.168.0.1","route_domain":"0","method":"GET","protocol":"HTTP","query_string":"","x_forwarded_for_header_value":"192.168.0.1","sig_ids":"","sig_names":"","date_time":"2018-11-19 22:34:40","severity":"Critical","attack_type":"Detection Evasion,Path Traversal","geo_location":"US","ip_address_intelligence":"N/A","username":"N/A","session_id":"f609d8a924419638","src_port":"49804","dest_port":"80","dest_ip":"10.0.2.10","sub_violations":"Evasion technique detected:Directory traversals","virus_name":"N/A","violation_rating":"3","websocket_direction":"N/A","websocket_message_type":"N/A","device_id":"N/A","staged_sig_ids":"","staged_sig_names":"","threat_campaign_names":"","staged_threat_campaign_names":"","blocking_exception_reason":"N/A","captcha_result":"not_received","uri":"/directory/file","fragment":"","request":"GET /admin/..%2F..%2F..%2Fdirectory/file HTTP/1.0\\r\\nHost: host.westus.cloudapp.azure.com\\r\\nConnection: keep-alive\\r\\nCache-Control: max-age","tenant":"Common","application":"app.app","telemetryEventCategory":"ASM"} {"attack_type":"Test Attack","date_time":"2018-11-19 22:34:40","dest_ip":"10.160.77.77","dest_port":"80","geo_info":"info","headers":"Host: 231213","http_class":"/Common/Test","ip_addr_intelli":"host1","ip_client":"81.2.69.142","ip_route_domain":"example.com","is_trunct":"no","manage_ip_addr":"81.2.69.142","method":"POST","policy_apply_date":"2021-09-30 02:51:31","policy_name":"/Common/Test","protocol":"HTTP","query_string":"","req":"POST /login.php HTTP/1.1\\r\\nHost: 81.2.69.142","req_status":"passed","resp":"HTTP/1.1 302 Found\\r\\nDate: Tue, 05 Oct 2021 17:30:14 ","resp_code":"302","route_domain":"example.com","session_id":"ab32bda123","severity":"Informational","sig_ids":"1abcd23bdc","sig_names":"test","src_port":"49744","sub_violates":"Sub-violation","support_id":"5438760667957952540","unit_host":"hostname","uri":"/login.php","username":"Test User","violate_details":"This is a details.","violate_rate":"0","violations":"deny","virus_name":"abcd","x_fwd_hdr_val":"test","telemetryEventCategory":"ASM","hostname":"localhost.localdomain","tenant":"Common","microservice": "N/A","response": "Response logging disabled","sig_cves": "N/A","staged_sig_cves": "N/A","tap_event_id": "N/A","tap_vid": "N/A","vs_name": "/Common/Server1_DVWA"} {"compression_method":"test_method","client_type":"test_client","conviction_traps":"test","credential_stuffing_lookup_result":"pass","enforced_by":"test","enforcement_action":"test_action","epoch_time":"1665576701","ip_with_route_domain":"example.com","is_truncated":"","likely_false_positive_sig_ids":"12345678","login_result":"success","mobile_application_name":"test_application","mobile_application_version":"test1.1","operation_id":"12345","password_hash_prefix":"test","protocol_info":"test_info","sig_set_names":"test_sig_name","slot_number":"1234","staged_sig_set_names":"test_staged_sig_name","tap_requested_actions":"test_tap_action","tap_sent_token":"20334","tap_transaction_id":"12345","unit_hostname":"hostname","violation_details":"test_detail","telemetryEventCategory":"ASM"} +{"attack_type":"N/A","blocking_exception_reason":"N/A","captcha_result":"not_received","date_time":"2024-08-06T10:03:36.000Z","dest_ip":"10.30.4.56","dest_port":"443","device_id":"N/A","fragment":"","geo_location":"N/A","hostname":"f5qa","http_class_name":"/Common/asmpolicy_lampqa","ip_address_intelligence":"N/A","ip_client":"10.43.24.23","management_ip_address":"10.52.34.33","management_ip_address_2":"N/A","method":"HEAD","microservice":"N/A","originalRawData":"<134>Aug 6 12:03:36 f5qa ASM:unit_hostname=\"f5qa\",management_ip_address=\"10.52.34.33\",management_ip_address_2=\"N/A\",http_class_name=\"/Common/asmpolicy_lampqa\",web_application_name=\"/Common/asmpolicy_lampqa\",policy_name=\"/Common/asmpolicy_lampqa\",policy_apply_date=\"2024-07-02 16:43:55\",violations=\"N/A\",support_id=\"5410866668007843666\",request_status=\"passed\",response_code=\"200\",ip_client=\"10.43.24.23\",route_domain=\"0\",method=\"HEAD\",protocol=\"HTTPS\",query_string=\"\",x_forwarded_for_header_value=\"10.43.24.23, 10.43.24.23\",sig_ids=\"N/A\",sig_names=\"N/A\",date_time=\"2024-08-06 12:03:36\",severity=\"Informational\",attack_type=\"N/A\",geo_location=\"N/A\",ip_address_intelligence=\"N/A\",username=\"N/A\",session_id=\"7a60af492530220b\",src_port=\"50668\",dest_port=\"443\",dest_ip=\"10.30.4.56\",sub_violations=\"N/A\",virus_name=\"N/A\",violation_rating=\"0\",websocket_direction=\"N/A\",websocket_message_type=\"N/A\",device_id=\"N/A\",staged_sig_ids=\"\",staged_sig_names=\"\",threat_campaign_names=\"N/A\",staged_threat_campaign_names=\"N/A\",blocking_exception_reason=\"N/A\",captcha_result=\"not_received\",microservice=\"N/A\",tap_event_id=\"N/A\",tap_vid=\"N/A\",vs_name=\"/Common/vs_externalqa13_443\",sig_cves=\"N/A\",staged_sig_cves=\"N/A\",uri=\"/repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar\",fragment=\"\",request=\"HEAD /repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar HTTP/1.1\\r\\nCache-Control: no-cache, no-store\\r\\nPragma: no-cache\\r\\nHost: domain.gent\\r\\nConnection: Keep-Alive\\r\\nUser-Agent: Apache-Maven/3.9.7 (Java 17.0.12; Windows 11 10.0)\\r\\nAccept-Encoding: gzip,deflate\\r\\nAuthorization: Basic dc2VydmljZWZhY3Rvcnk6TE1YaHZwRUxhRjJodEFScWFQkkk=\\r\\nX-Forwarded-For: 10.43.24.23, 10.43.24.23\\r\\nX-Forwarded-Proto: https\\r\\n\\r\\n\",response=\"Response logging disabled\"","policy_apply_date":"2024-07-02 16:43:55","policy_name":"/Common/asmpolicy_lampqa","protocol":"HTTPS","query_string":"","request":"HEAD /repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar HTTP/1.1\\r\\nCache-Control: no-cache, no-store\\r\\nPragma: no-cache\\r\\nHost: domain.gent\\r\\nConnection: Keep-Alive\\r\\nUser-Agent: Apache-Maven/3.9.7 (Java 17.0.12; Windows 11 10.0)\\r\\nAccept-Encoding: gzip,deflate\\r\\nAuthorization: Basic dc2VydmljZWZhY3Rvcnk6TE1YaHZwRUxhRjJodEFScWFQkkk=\\r\\nX-Forwarded-For: 10.43.24.23, 10.43.24.24\\r\\nX-Forwarded-Proto: https\\r\\n\\r\\n","request_status":"passed","response":"Response logging disabled","response_code":"200","route_domain":"0","session_id":"7a60af492530220b","severity":"Informational","sig_cves":"N/A","sig_ids":"N/A","sig_names":"N/A","src_port":"50668","staged_sig_cves":"N/A","staged_sig_ids":"","staged_sig_names":"","staged_threat_campaign_names":"N/A","sub_violations":"N/A","support_id":"5410868666607846666","tap_event_id":"N/A","tap_vid":"N/A","telemetryEventCategory":"ASM","tenant":"Common","threat_campaign_names":"N/A","uri":"/repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar","username":"N/A","violation_rating":"0","violations":"N/A","virus_name":"N/A","vs_name":"/Common/vs_externalqa13_443","web_application_name":"/Common/asmpolicy_lampqa","websocket_direction":"N/A","websocket_message_type":"N/A","x_forwarded_for_header_value":"10.43.24.23, 10.43.24.24"} diff --git a/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-pipeline-bigip-asm.log-expected.json b/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-pipeline-bigip-asm.log-expected.json index c83658b2a37f..c477ce1c09d6 100644 --- a/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-pipeline-bigip-asm.log-expected.json +++ b/packages/f5_bigip/data_stream/log/_dev/test/pipeline/test-pipeline-bigip-asm.log-expected.json @@ -126,7 +126,9 @@ "direction": "Test", "message_type": "test" }, - "x_forwarded_for_header_value": "81.2.69.144" + "x_forwarded_for_header_value": [ + "81.2.69.144" + ] } }, "host": { @@ -293,7 +295,9 @@ }, "violations": "Evasion technique detected", "web_application_name": "/Common/app.app/app_policy", - "x_forwarded_for_header_value": "192.168.0.1" + "x_forwarded_for_header_value": [ + "192.168.0.1" + ] } }, "host": { @@ -344,7 +348,6 @@ ], "url": { "domain": "host.westus.cloudapp.azure.com", - "extension": "/directory/file", "original": "http://host.westus.cloudapp.azure.com/admin/..%2F..%2F..%2Fdirectory/file", "path": "/admin/../../../directory/file", "scheme": "http" @@ -561,6 +564,134 @@ "preserve_original_event", "preserve_duplicate_custom_fields" ] + }, + { + "@timestamp": "2024-08-06T10:03:36.000Z", + "client": { + "ip": "10.43.24.23", + "port": 50668 + }, + "destination": { + "ip": "10.30.4.56", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "kind": "event", + "original": "{\"attack_type\":\"N/A\",\"blocking_exception_reason\":\"N/A\",\"captcha_result\":\"not_received\",\"date_time\":\"2024-08-06T10:03:36.000Z\",\"dest_ip\":\"10.30.4.56\",\"dest_port\":\"443\",\"device_id\":\"N/A\",\"fragment\":\"\",\"geo_location\":\"N/A\",\"hostname\":\"f5qa\",\"http_class_name\":\"/Common/asmpolicy_lampqa\",\"ip_address_intelligence\":\"N/A\",\"ip_client\":\"10.43.24.23\",\"management_ip_address\":\"10.52.34.33\",\"management_ip_address_2\":\"N/A\",\"method\":\"HEAD\",\"microservice\":\"N/A\",\"originalRawData\":\"<134>Aug 6 12:03:36 f5qa ASM:unit_hostname=\\\"f5qa\\\",management_ip_address=\\\"10.52.34.33\\\",management_ip_address_2=\\\"N/A\\\",http_class_name=\\\"/Common/asmpolicy_lampqa\\\",web_application_name=\\\"/Common/asmpolicy_lampqa\\\",policy_name=\\\"/Common/asmpolicy_lampqa\\\",policy_apply_date=\\\"2024-07-02 16:43:55\\\",violations=\\\"N/A\\\",support_id=\\\"5410866668007843666\\\",request_status=\\\"passed\\\",response_code=\\\"200\\\",ip_client=\\\"10.43.24.23\\\",route_domain=\\\"0\\\",method=\\\"HEAD\\\",protocol=\\\"HTTPS\\\",query_string=\\\"\\\",x_forwarded_for_header_value=\\\"10.43.24.23, 10.43.24.23\\\",sig_ids=\\\"N/A\\\",sig_names=\\\"N/A\\\",date_time=\\\"2024-08-06 12:03:36\\\",severity=\\\"Informational\\\",attack_type=\\\"N/A\\\",geo_location=\\\"N/A\\\",ip_address_intelligence=\\\"N/A\\\",username=\\\"N/A\\\",session_id=\\\"7a60af492530220b\\\",src_port=\\\"50668\\\",dest_port=\\\"443\\\",dest_ip=\\\"10.30.4.56\\\",sub_violations=\\\"N/A\\\",virus_name=\\\"N/A\\\",violation_rating=\\\"0\\\",websocket_direction=\\\"N/A\\\",websocket_message_type=\\\"N/A\\\",device_id=\\\"N/A\\\",staged_sig_ids=\\\"\\\",staged_sig_names=\\\"\\\",threat_campaign_names=\\\"N/A\\\",staged_threat_campaign_names=\\\"N/A\\\",blocking_exception_reason=\\\"N/A\\\",captcha_result=\\\"not_received\\\",microservice=\\\"N/A\\\",tap_event_id=\\\"N/A\\\",tap_vid=\\\"N/A\\\",vs_name=\\\"/Common/vs_externalqa13_443\\\",sig_cves=\\\"N/A\\\",staged_sig_cves=\\\"N/A\\\",uri=\\\"/repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar\\\",fragment=\\\"\\\",request=\\\"HEAD /repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar HTTP/1.1\\\\r\\\\nCache-Control: no-cache, no-store\\\\r\\\\nPragma: no-cache\\\\r\\\\nHost: domain.gent\\\\r\\\\nConnection: Keep-Alive\\\\r\\\\nUser-Agent: Apache-Maven/3.9.7 (Java 17.0.12; Windows 11 10.0)\\\\r\\\\nAccept-Encoding: gzip,deflate\\\\r\\\\nAuthorization: Basic dc2VydmljZWZhY3Rvcnk6TE1YaHZwRUxhRjJodEFScWFQkkk=\\\\r\\\\nX-Forwarded-For: 10.43.24.23, 10.43.24.23\\\\r\\\\nX-Forwarded-Proto: https\\\\r\\\\n\\\\r\\\\n\\\",response=\\\"Response logging disabled\\\"\",\"policy_apply_date\":\"2024-07-02 16:43:55\",\"policy_name\":\"/Common/asmpolicy_lampqa\",\"protocol\":\"HTTPS\",\"query_string\":\"\",\"request\":\"HEAD /repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar HTTP/1.1\\\\r\\\\nCache-Control: no-cache, no-store\\\\r\\\\nPragma: no-cache\\\\r\\\\nHost: domain.gent\\\\r\\\\nConnection: Keep-Alive\\\\r\\\\nUser-Agent: Apache-Maven/3.9.7 (Java 17.0.12; Windows 11 10.0)\\\\r\\\\nAccept-Encoding: gzip,deflate\\\\r\\\\nAuthorization: Basic dc2VydmljZWZhY3Rvcnk6TE1YaHZwRUxhRjJodEFScWFQkkk=\\\\r\\\\nX-Forwarded-For: 10.43.24.23, 10.43.24.24\\\\r\\\\nX-Forwarded-Proto: https\\\\r\\\\n\\\\r\\\\n\",\"request_status\":\"passed\",\"response\":\"Response logging disabled\",\"response_code\":\"200\",\"route_domain\":\"0\",\"session_id\":\"7a60af492530220b\",\"severity\":\"Informational\",\"sig_cves\":\"N/A\",\"sig_ids\":\"N/A\",\"sig_names\":\"N/A\",\"src_port\":\"50668\",\"staged_sig_cves\":\"N/A\",\"staged_sig_ids\":\"\",\"staged_sig_names\":\"\",\"staged_threat_campaign_names\":\"N/A\",\"sub_violations\":\"N/A\",\"support_id\":\"5410868666607846666\",\"tap_event_id\":\"N/A\",\"tap_vid\":\"N/A\",\"telemetryEventCategory\":\"ASM\",\"tenant\":\"Common\",\"threat_campaign_names\":\"N/A\",\"uri\":\"/repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar\",\"username\":\"N/A\",\"violation_rating\":\"0\",\"violations\":\"N/A\",\"virus_name\":\"N/A\",\"vs_name\":\"/Common/vs_externalqa13_443\",\"web_application_name\":\"/Common/asmpolicy_lampqa\",\"websocket_direction\":\"N/A\",\"websocket_message_type\":\"N/A\",\"x_forwarded_for_header_value\":\"10.43.24.23, 10.43.24.24\"}", + "type": [ + "info" + ] + }, + "f5_bigip": { + "log": { + "captcha_result": "not_received", + "client": { + "ip": "10.43.24.23" + }, + "date_time": "2024-08-06T10:03:36.000Z", + "dest": { + "ip": "10.30.4.56", + "port": 443 + }, + "hostname": "f5qa", + "http": { + "class_name": "/Common/asmpolicy_lampqa" + }, + "management": { + "ip_address": "10.52.34.33" + }, + "method": "HEAD", + "policy": { + "apply_date": "2024-07-02T16:43:55.000Z", + "name": "/Common/asmpolicy_lampqa" + }, + "protocol": "HTTPS", + "request": { + "detail": "HEAD /repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar HTTP/1.1\\r\\nCache-Control: no-cache, no-store\\r\\nPragma: no-cache\\r\\nHost: domain.gent\\r\\nConnection: Keep-Alive\\r\\nUser-Agent: Apache-Maven/3.9.7 (Java 17.0.12; Windows 11 10.0)\\r\\nAccept-Encoding: gzip,deflate\\r\\nAuthorization: Basic dc2VydmljZWZhY3Rvcnk6TE1YaHZwRUxhRjJodEFScWFQkkk=\\r\\nX-Forwarded-For: 10.43.24.23, 10.43.24.24\\r\\nX-Forwarded-Proto: https\\r\\n\\r\\n", + "status": "passed" + }, + "response": { + "code": 200, + "value": "Response logging disabled" + }, + "route_domain": "0", + "session": { + "id": "7a60af492530220b" + }, + "severity": { + "name": "Informational" + }, + "src": { + "port": 50668 + }, + "support": { + "id": "5410868666607846666" + }, + "telemetry": { + "event": { + "category": "ASM" + } + }, + "tenant": "Common", + "uri": "/repository/maven-public/io/netty/netty-codec-haproxy/4.1.110.Final/netty-codec-haproxy-4.1.110.Final.jar", + "violation": { + "rating": 0 + }, + "vs_name": "/Common/vs_externalqa13_443", + "web_application_name": "/Common/asmpolicy_lampqa", + "x_forwarded_for_header_value": [ + "10.43.24.23", + "10.43.24.24" + ] + } + }, + "host": { + "name": "f5qa" + }, + "http": { + "request": { + "method": "HEAD" + } + }, + "log": { + "level": "informational" + }, + "network": { + "protocol": "https" + }, + "observer": { + "product": "Application Security Module", + "vendor": "F5" + }, + "related": { + "hosts": [ + "f5qa" + ], + "ip": [ + "10.43.24.23", + "10.30.4.56", + "10.52.34.33", + "10.43.24.24" + ] + }, + "server": { + "ip": "10.30.4.56", + "port": 443 + }, + "source": { + "ip": "10.43.24.23", + "port": 50668 + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields" + ] } ] } \ No newline at end of file diff --git a/packages/f5_bigip/data_stream/log/elasticsearch/ingest_pipeline/pipeline_bigipasm.yml b/packages/f5_bigip/data_stream/log/elasticsearch/ingest_pipeline/pipeline_bigipasm.yml index f99505635856..cdaf832b13a0 100644 --- a/packages/f5_bigip/data_stream/log/elasticsearch/ingest_pipeline/pipeline_bigipasm.yml +++ b/packages/f5_bigip/data_stream/log/elasticsearch/ingest_pipeline/pipeline_bigipasm.yml @@ -521,6 +521,10 @@ processors: tag: rename_websocket_message_type target_field: f5_bigip.log.websocket.message_type ignore_missing: true + - split: + field: json.x_forwarded_for_header_value + separator: ',\s*' + ignore_missing: true - convert: field: json.x_forwarded_for_header_value tag: convert_x_forwarded_for_header_value_to_ip @@ -532,12 +536,16 @@ processors: - append: field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - - append: - field: related.ip - tag: append_related_ip - value: '{{{f5_bigip.log.x_forwarded_for_header_value}}}' - allow_duplicates: false - ignore_failure: true + - foreach: + field: f5_bigip.log.x_forwarded_for_header_value + if: ctx.f5_bigip?.log?.x_forwarded_for_header_value instanceof List + processor: + append: + field: related.ip + tag: append_related_ip + value: '{{{_ingest._value}}}' + allow_duplicates: false + ignore_failure: true - rename: field: json.geo_info tag: rename_geo_info diff --git a/packages/f5_bigip/data_stream/log/sample_event.json b/packages/f5_bigip/data_stream/log/sample_event.json index e2f3be22774d..79cc2a7b22be 100644 --- a/packages/f5_bigip/data_stream/log/sample_event.json +++ b/packages/f5_bigip/data_stream/log/sample_event.json @@ -1,11 +1,11 @@ { "@timestamp": "2018-11-19T22:34:40.000Z", "agent": { - "ephemeral_id": "e5f59545-d8ac-4f69-9699-79bb945dff15", - "id": "5dfb7c6f-2d06-40bd-9835-16a8fd432357", + "ephemeral_id": "5783a7ca-031c-49a4-a74c-6bf741bd44a7", + "id": "7036eed3-e508-4a47-99a4-b144655eb291", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.13.0" + "version": "8.14.0" }, "client": { "ip": "81.2.69.142", @@ -13,7 +13,7 @@ }, "data_stream": { "dataset": "f5_bigip.log", - "namespace": "25415", + "namespace": "45148", "type": "logs" }, "destination": { @@ -24,9 +24,9 @@ "version": "8.11.0" }, "elastic_agent": { - "id": "5dfb7c6f-2d06-40bd-9835-16a8fd432357", + "id": "7036eed3-e508-4a47-99a4-b144655eb291", "snapshot": false, - "version": "8.13.0" + "version": "8.14.0" }, "event": { "agent_id_status": "verified", @@ -34,7 +34,7 @@ "network" ], "dataset": "f5_bigip.log", - "ingested": "2024-07-19T11:02:41Z", + "ingested": "2024-08-06T23:25:39Z", "kind": "alert", "original": "{\"application\":\"app.app\",\"attack_type\":\"Detection Evasion\",\"blocking_exception_reason\":\"test\",\"captcha_result\":\"not_received\",\"date_time\":\"2018-11-19 22:34:40\",\"dest_ip\":\"81.2.69.142\",\"dest_port\":\"80\",\"device_id\":\"12bdca32\",\"fragment\":\"test_Fragment\",\"geo_location\":\"US\",\"hostname\":\"hostname\",\"http_class_name\":\"/Common/abc/test\",\"ip_address_intelligence\":\"host1\",\"ip_client\":\"81.2.69.142\",\"management_ip_address\":\"81.2.69.142\",\"management_ip_address_2\":\"81.2.69.144\",\"method\":\"GET\",\"policy_apply_date\":\"2018-11-19 22:17:57\",\"policy_name\":\"/Common/abc\",\"protocol\":\"HTTP\",\"query_string\":\"name=abc\",\"request\":\"GET /admin/.\",\"request_status\":\"blocked\",\"response_code\":\"0\",\"route_domain\":\"example.com\",\"session_id\":\"abc123abcd\",\"severity\":\"Critical\",\"sig_ids\":\"abc12bcd\",\"sig_names\":\"Sig_Name\",\"src_port\":\"49804\",\"staged_sig_ids\":\"abc23121bc\",\"staged_sig_names\":\"test_name\",\"staged_threat_campaign_names\":\"test\",\"sub_violations\":\"Evasion technique detected:Directory traversals\",\"support_id\":\"123456789\",\"telemetryEventCategory\":\"ASM\",\"tenant\":\"Common\",\"threat_campaign_names\":\"threat\",\"uri\":\"/directory/file\",\"username\":\"test User\",\"violation_rating\":\"3\",\"violations\":\"Evasion technique detected\",\"virus_name\":\"test Virus\",\"web_application_name\":\"/Common/abc\",\"websocket_direction\":\"test\",\"websocket_message_type\":\"test\",\"x_forwarded_for_header_value\":\"81.2.69.144\"}", "type": [ @@ -135,7 +135,9 @@ "direction": "test", "message_type": "test" }, - "x_forwarded_for_header_value": "81.2.69.144" + "x_forwarded_for_header_value": [ + "81.2.69.144" + ] } }, "host": { diff --git a/packages/f5_bigip/docs/README.md b/packages/f5_bigip/docs/README.md index fc75332656c7..9710b00e474b 100644 --- a/packages/f5_bigip/docs/README.md +++ b/packages/f5_bigip/docs/README.md @@ -164,11 +164,11 @@ An example event for `log` looks as following: { "@timestamp": "2018-11-19T22:34:40.000Z", "agent": { - "ephemeral_id": "e5f59545-d8ac-4f69-9699-79bb945dff15", - "id": "5dfb7c6f-2d06-40bd-9835-16a8fd432357", + "ephemeral_id": "5783a7ca-031c-49a4-a74c-6bf741bd44a7", + "id": "7036eed3-e508-4a47-99a4-b144655eb291", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.13.0" + "version": "8.14.0" }, "client": { "ip": "81.2.69.142", @@ -176,7 +176,7 @@ An example event for `log` looks as following: }, "data_stream": { "dataset": "f5_bigip.log", - "namespace": "25415", + "namespace": "45148", "type": "logs" }, "destination": { @@ -187,9 +187,9 @@ An example event for `log` looks as following: "version": "8.11.0" }, "elastic_agent": { - "id": "5dfb7c6f-2d06-40bd-9835-16a8fd432357", + "id": "7036eed3-e508-4a47-99a4-b144655eb291", "snapshot": false, - "version": "8.13.0" + "version": "8.14.0" }, "event": { "agent_id_status": "verified", @@ -197,7 +197,7 @@ An example event for `log` looks as following: "network" ], "dataset": "f5_bigip.log", - "ingested": "2024-07-19T11:02:41Z", + "ingested": "2024-08-06T23:25:39Z", "kind": "alert", "original": "{\"application\":\"app.app\",\"attack_type\":\"Detection Evasion\",\"blocking_exception_reason\":\"test\",\"captcha_result\":\"not_received\",\"date_time\":\"2018-11-19 22:34:40\",\"dest_ip\":\"81.2.69.142\",\"dest_port\":\"80\",\"device_id\":\"12bdca32\",\"fragment\":\"test_Fragment\",\"geo_location\":\"US\",\"hostname\":\"hostname\",\"http_class_name\":\"/Common/abc/test\",\"ip_address_intelligence\":\"host1\",\"ip_client\":\"81.2.69.142\",\"management_ip_address\":\"81.2.69.142\",\"management_ip_address_2\":\"81.2.69.144\",\"method\":\"GET\",\"policy_apply_date\":\"2018-11-19 22:17:57\",\"policy_name\":\"/Common/abc\",\"protocol\":\"HTTP\",\"query_string\":\"name=abc\",\"request\":\"GET /admin/.\",\"request_status\":\"blocked\",\"response_code\":\"0\",\"route_domain\":\"example.com\",\"session_id\":\"abc123abcd\",\"severity\":\"Critical\",\"sig_ids\":\"abc12bcd\",\"sig_names\":\"Sig_Name\",\"src_port\":\"49804\",\"staged_sig_ids\":\"abc23121bc\",\"staged_sig_names\":\"test_name\",\"staged_threat_campaign_names\":\"test\",\"sub_violations\":\"Evasion technique detected:Directory traversals\",\"support_id\":\"123456789\",\"telemetryEventCategory\":\"ASM\",\"tenant\":\"Common\",\"threat_campaign_names\":\"threat\",\"uri\":\"/directory/file\",\"username\":\"test User\",\"violation_rating\":\"3\",\"violations\":\"Evasion technique detected\",\"virus_name\":\"test Virus\",\"web_application_name\":\"/Common/abc\",\"websocket_direction\":\"test\",\"websocket_message_type\":\"test\",\"x_forwarded_for_header_value\":\"81.2.69.144\"}", "type": [ @@ -298,7 +298,9 @@ An example event for `log` looks as following: "direction": "test", "message_type": "test" }, - "x_forwarded_for_header_value": "81.2.69.144" + "x_forwarded_for_header_value": [ + "81.2.69.144" + ] } }, "host": { diff --git a/packages/f5_bigip/manifest.yml b/packages/f5_bigip/manifest.yml index aee4b657014c..cbea470bfe46 100644 --- a/packages/f5_bigip/manifest.yml +++ b/packages/f5_bigip/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: f5_bigip title: F5 BIG-IP -version: "1.18.1" +version: "1.19.0" description: Collect logs from F5 BIG-IP with Elastic Agent. type: integration categories: From 7b5d67c96d2270c65ca5db4b7532fde1683d116a Mon Sep 17 00:00:00 2001 From: Chris Berkhout Date: Thu, 8 Aug 2024 15:35:05 +0200 Subject: [PATCH 50/77] [zscaler_zia] Update response format version numbers (#10741) Response formats were often updated without incrementing the corresponding version number. These have been updated to reflect the number of changes made to the response formats, as summarized in the following table. | Data stream | Was | Now | Note | |------------------|-----|-----|-------------------------------------| | Alerts | v1 | v1 | Correct. | | Audit Log | v1 | v1 | Correct. Pattern added in 78f3eae. | | DNS Log | v1 | v2 | Fixed. Pattern updated in 78f3eae. | | Endpoint DLP Log | v1 | v1 | Correct. Pattern added in 78f3eae. | | Firewall Log | v1 | v2 | Fixed. Pattern updated in 78f3eae. | | Tunnel Log | v1 | v2 | Fixed. Patterns updated in 78f3eae. | | Web Log | v2 | v5 | Fixed. Pattern updated in... | | | | | 3418fe2, a9783c8, 78f3eae, dbf3f74. | --- packages/zscaler_zia/_dev/build/docs/README.md | 14 +++++++------- packages/zscaler_zia/changelog.yml | 5 +++++ packages/zscaler_zia/docs/README.md | 14 +++++++------- packages/zscaler_zia/manifest.yml | 2 +- 4 files changed, 20 insertions(+), 15 deletions(-) diff --git a/packages/zscaler_zia/_dev/build/docs/README.md b/packages/zscaler_zia/_dev/build/docs/README.md index c02d836f105b..5986d3fb15b1 100644 --- a/packages/zscaler_zia/_dev/build/docs/README.md +++ b/packages/zscaler_zia/_dev/build/docs/README.md @@ -98,7 +98,7 @@ Note: Please make sure to use latest version of given response formats. See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/about-alerts) -Zscaler response format (v1): +Zscaler Alerts response format (v1): ``` <%d{syslogid}>%s{Monthname} %2d{Dayofmonth} %02d{Hour}:%02d{Minutes}:%02d{Seconds} [%s{Deviceip}] ZscalerNSS: %s{Eventinfo}\n ``` @@ -114,7 +114,7 @@ Sample Response: See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/adding-cloud-nss-feeds-admin-audit-logs) -Zscaler response format (v1): +Zscaler Audit Log response format (v1): ``` \{"sourcetype":"zscalernss-audit","event":\{"time":"%s{time}","recordid":"%d{recordid}","action":"%s{action}","category":"%s{category}","subcategory":"%s{subcategory}","resource":"%s{resource}","interface":"%s{interface}","adminid":"%s{adminid}","clientip":"%s{clientip}","result":"%s{result}","errorcode":"%s{errorcode}","auditlogtype":"%s{auditlogtype}","preaction":%s{preaction},"postaction":%s{postaction}\}\} ``` @@ -131,7 +131,7 @@ Sample Response: See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-dns-logs) -Zscaler response format (v1): +Zscaler DNS Log response format (v2): ``` \{"sourcetype":"zscalernss-dns","event":\{"user":"%s{elogin}","department":"%s{edepartment}","location":"%s{elocation}","clt_sip":"%s{cip}","cloudname":"%s{cloudname}","company":"%s{company}","datacenter":"%s{datacenter}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","devicehostname":"%s{devicehostname}","devicemodel":"%s{devicemodel}","devicename":"%s{devicename}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","deviceowner":"%s{deviceowner}","devicetype":"%s{devicetype}","dnsapp":"%s{dnsapp}","dnsappcat":"%s{dnsappcat}","dns_gateway_status":"%s{dnsgw_flags}","dns_gateway_rule":"%s{dnsgw_slot}","dns_gateway_server_protocol":"%s{dnsgw_srv_proto}","category":"%s{domcat}","durationms":"%d{durationms}","ecs_prefix":"%s{ecs_prefix}","ecs_slot":"%s{ecs_slot}","epochtime":"%d{epochtime}","error":"%s{error}","hour":"%02d{hh}","http_code":"%s{http_code}","istcp":"%d{istcp}","loc":"%s{location}","login":"%s{login}","minutes":"%02d{mm}","month":"%s{mon}","month_of_year":"%02d{mth}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odomcat":"%s{odomcat}","protocol":"%s{protocol}","recordid":"%d{recordid}","dns_req":"%s{req}","reqaction":"%s{reqaction}","reqrulelabel":"%s{reqrulelabel}","dns_reqtype":"%s{reqtype}","dns_resp":"%s{res}","resaction":"%s{resaction}","respipcategory":"%s{respipcat}","resrulelabel":"%s{resrulelabel}","restype":"%s{restype}","srv_dip":"%s{sip}","srv_dport":"%d{sport}","second":"%02d{ss}","datetime":"%s{time}","tz":"%s{tz}","year":"%04d{yyyy}"\}\} ``` @@ -148,7 +148,7 @@ Sample Response: See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-endpoint-dlp-logs) -Zscaler response format (v1): +Zscaler Endpoint DLP Log response format (v1): ``` \{"sourcetype":"zscalernss-edlp","event":\{"actiontaken":"%s{actiontaken}","activitytype":"%s{activitytype}","additionalinfo":"%s{addinfo}","channel":"%s{channel}","confirmaction":"%s{confirmaction}","confirmjustification":"%s{confirmjust}","datacenter":"%s{datacenter}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","day":"%s{day}","dd":"%02d{dd}","department":"%s{department}","deviceappversion":"%s{deviceappversion}","devicehostname":"%s{devicehostname}","devicemodel":"%s{devicemodel}","devicename":"%s{devicename}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","deviceowner":"%s{deviceowner}","deviceplatform":"%s{deviceplatform}","devicetype":"%s{devicetype}","dlpdictcount":"%s{dlpcounts}","dlpdictnames":"%s{dlpdictnames}","dlpenginenames":"%s{dlpengnames}","dlpidentifier":"%llu{dlpidentifier}","dsttype":"%s{dsttype}","eventtime":"%s{eventtime}","expectedaction":"%s{expectedaction}","filedoctype":"%s{filedoctype}","filedstpath":"%s{filedstpath}","filemd5":"%s{filemd5}","filesha":"%s{filesha}","filesrcpath":"%s{filesrcpath}","filetypecategory":"%s{filetypecategory}","filetypename":"%s{filetypename}","hh":"%02d{hh}","itemdstname":"%s{itemdstname}","itemname":"%s{itemname}","itemsrcname":"%s{itemsrcname}","itemtype":"%s{itemtype}","logtype":"%s{logtype}","mm":"%02d{mm}","mon":"%s{mon}","mth":"%02d{mth}","numdlpdictids":"%u{numdlpdictids}","numdlpengineids":"%u{numdlpengids}","odepartment":"%s{odepartment}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdictnames":"%s{odlpdictnames}","odlpenginenames":"%s{odlpengnames}","ofiledstpath":"%s{ofiledstpath}","ofilesrcpath":"%s{ofilesrcpath}","oitemdstname":"%s{oitemdstname}","oitemname":"%s{oitemname}","oitemsrcname":"%s{oitemsrcname}","ootherrulelabels":"%s{ootherrulelabels}","otherrulelabels":"%s{otherrulelabels}","orulename":"%s{otriggeredrulelabel}","ouser":"%s{ouser}","recordid":"%llu{recordid}","feedtime":"%s{rtime}","scannedbytes":"%llu{scanned_bytes}","scantime":"%llu{scantime}","severity":"%s{severity}","srctype":"%s{srctype}","ss":"%02d{ss}","datetime":"%s{time}","rulename":"%s{triggeredrulelabel}","timezone":"%s{tz}","user":"%s{user}","yyyy":"%04d{yyyy}","zdpmode":"%s{zdpmode}"\}\} ``` @@ -165,7 +165,7 @@ Sample Response: See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-firewall-logs) -Zscaler response format (v1): +Zscaler Firewall Log response format (v2): ``` \{"sourcetype":"zscalernss-fw","event":\{"datetime":"%s{time}","outbytes":"%ld{outbytes}","cltdomain":"%s{cdfqdn}","destcountry":"%s{destcountry}","cdip":"%s{cdip}","sdip":"%s{sdip}","cdport":"%d{cdport}","sdport":"%d{sdport}","devicemodel":"%s{devicemodel}","action":"%s{action}","duration":"%d{duration}","recordid":"%d{recordid}","tz":"%s{tz}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","nwapp":"%s{nwapp}","nwsvc":"%s{nwsvc}","proto":"%s{ipproto}","ipsrulelabel":"%s{ipsrulelabel}","dnatrulelabel":"%s{dnatrulelabel}","rdr_rulename":"%s{rdr_rulename}","rule":"%s{rulelabel}","rulelabel":"%s{erulelabel}","inbytes":"%ld{inbytes}","srcipcountry":"%s{srcip_country}","csip":"%s{csip}","ssip":"%s{ssip}","csport":"%d{csport}","ssport":"%d{ssport}","user":"%s{elogin}","aggregate":"%s{aggregate}","bypassed_session":"%d{bypassed_session}","bypass_time":"%s{bypass_etime}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day_of_month":"%02d{dd}","department":"%s{edepartment}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","avgduration":"%d{avgduration}","durationms":"%d{durationms}","epochtime":"%d{epochtime}","external_deviceid":"%s{external_deviceid}","flow_type":"%s{flow_type}","forward_gateway_name":"%s{fwd_gw_name}","hour":"%02d{hh}","ipcat":"%s{ipcat}","ips_custom_signature":"%d{ips_custom_signature}","location":"%s{location}","locationname":"%s{elocation}","login":"%s{login}","minute":"%02d{mm}","month":"%s{mon}","month_of_year":"%02d{mth}","dnat":"%s{dnat}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","ofwd_gw_name":"%s{ofwd_gw_name}","odevicehostname":"%s{odevicehostname}","oipcat":"%s{oipcat}","oipsrulelabel":"%s{oipsrulelabel}","ordr_rulename":"%s{ordr_rulename}","orulelabel":"%s{orulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","second":"%02d{ss}","numsessions":"%d{numsessions}","stateful":"%s{stateful}","threat_name":"%s{threatname}","threatcat":"%s{threatcat}","threatname":"%s{ethreatname}","tsip":"%s{tsip}","tuntype":"%s{ttype}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} ``` @@ -182,7 +182,7 @@ Sample Response: See: [Zscaler Vendor documentation]( https://help.zscaler.com/zia/nss-feed-output-format-tunnel-logs) -Zscaler response format (v1): +Zscaler Tunnel Log response formats (v2): - Tunnel Event: ``` \{"sourcetype":"zscalernss-tunnel","event":\{"datetime":"%s{datetime}","day":"%s{day}","dd":"%02d{dd}","destinationip":"%s{destvip}","event":"%s{event}","eventreason":"%s{eventreason}","hh":"%02d{hh}","locationname":"%s{locationname}","mm":"%02d{mm}","mon":"%s{mon}","mth":"%02d{mth}","olocationname":"%s{olocationname}","ovpncredentialname":"%s{ovpncredentialname}","recordid":"%d{recordid}","sourceip":"%s{sourceip}","sourceport":"%d{srcport}","ss":"%02d{ss}","Recordtype":"%s{tunnelactionname}","tunneltype":"%s{tunneltype}","timezone":"%s{tz}","user":"%s{vpncredentialname}","yyyy":"%04d{yyyy}"\}\} @@ -214,7 +214,7 @@ Sample Response: ![Escape feed setup image](../img/escape_feed.png?raw=true) See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-web-logs) -Zscaler response format (v2): +Zscaler Web Log response format (v5): ``` \{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","eurl":"%s{eurl}","url":"%s{url}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} ``` diff --git a/packages/zscaler_zia/changelog.yml b/packages/zscaler_zia/changelog.yml index 9f5a8b65cf19..3eda30168224 100644 --- a/packages/zscaler_zia/changelog.yml +++ b/packages/zscaler_zia/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "3.0.4" + changes: + - description: Update response format version numbers. + type: bugfix + link: https://github.com/elastic/integrations/pull/10741 - version: "3.0.3" changes: - description: Add eurl hex-encoded field for url parsing. diff --git a/packages/zscaler_zia/docs/README.md b/packages/zscaler_zia/docs/README.md index fb634ef84718..ed24eeb719d3 100644 --- a/packages/zscaler_zia/docs/README.md +++ b/packages/zscaler_zia/docs/README.md @@ -98,7 +98,7 @@ Note: Please make sure to use latest version of given response formats. See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/about-alerts) -Zscaler response format (v1): +Zscaler Alerts response format (v1): ``` <%d{syslogid}>%s{Monthname} %2d{Dayofmonth} %02d{Hour}:%02d{Minutes}:%02d{Seconds} [%s{Deviceip}] ZscalerNSS: %s{Eventinfo}\n ``` @@ -114,7 +114,7 @@ Sample Response: See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/adding-cloud-nss-feeds-admin-audit-logs) -Zscaler response format (v1): +Zscaler Audit Log response format (v1): ``` \{"sourcetype":"zscalernss-audit","event":\{"time":"%s{time}","recordid":"%d{recordid}","action":"%s{action}","category":"%s{category}","subcategory":"%s{subcategory}","resource":"%s{resource}","interface":"%s{interface}","adminid":"%s{adminid}","clientip":"%s{clientip}","result":"%s{result}","errorcode":"%s{errorcode}","auditlogtype":"%s{auditlogtype}","preaction":%s{preaction},"postaction":%s{postaction}\}\} ``` @@ -131,7 +131,7 @@ Sample Response: See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-dns-logs) -Zscaler response format (v1): +Zscaler DNS Log response format (v2): ``` \{"sourcetype":"zscalernss-dns","event":\{"user":"%s{elogin}","department":"%s{edepartment}","location":"%s{elocation}","clt_sip":"%s{cip}","cloudname":"%s{cloudname}","company":"%s{company}","datacenter":"%s{datacenter}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","devicehostname":"%s{devicehostname}","devicemodel":"%s{devicemodel}","devicename":"%s{devicename}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","deviceowner":"%s{deviceowner}","devicetype":"%s{devicetype}","dnsapp":"%s{dnsapp}","dnsappcat":"%s{dnsappcat}","dns_gateway_status":"%s{dnsgw_flags}","dns_gateway_rule":"%s{dnsgw_slot}","dns_gateway_server_protocol":"%s{dnsgw_srv_proto}","category":"%s{domcat}","durationms":"%d{durationms}","ecs_prefix":"%s{ecs_prefix}","ecs_slot":"%s{ecs_slot}","epochtime":"%d{epochtime}","error":"%s{error}","hour":"%02d{hh}","http_code":"%s{http_code}","istcp":"%d{istcp}","loc":"%s{location}","login":"%s{login}","minutes":"%02d{mm}","month":"%s{mon}","month_of_year":"%02d{mth}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odomcat":"%s{odomcat}","protocol":"%s{protocol}","recordid":"%d{recordid}","dns_req":"%s{req}","reqaction":"%s{reqaction}","reqrulelabel":"%s{reqrulelabel}","dns_reqtype":"%s{reqtype}","dns_resp":"%s{res}","resaction":"%s{resaction}","respipcategory":"%s{respipcat}","resrulelabel":"%s{resrulelabel}","restype":"%s{restype}","srv_dip":"%s{sip}","srv_dport":"%d{sport}","second":"%02d{ss}","datetime":"%s{time}","tz":"%s{tz}","year":"%04d{yyyy}"\}\} ``` @@ -148,7 +148,7 @@ Sample Response: See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-endpoint-dlp-logs) -Zscaler response format (v1): +Zscaler Endpoint DLP Log response format (v1): ``` \{"sourcetype":"zscalernss-edlp","event":\{"actiontaken":"%s{actiontaken}","activitytype":"%s{activitytype}","additionalinfo":"%s{addinfo}","channel":"%s{channel}","confirmaction":"%s{confirmaction}","confirmjustification":"%s{confirmjust}","datacenter":"%s{datacenter}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","day":"%s{day}","dd":"%02d{dd}","department":"%s{department}","deviceappversion":"%s{deviceappversion}","devicehostname":"%s{devicehostname}","devicemodel":"%s{devicemodel}","devicename":"%s{devicename}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","deviceowner":"%s{deviceowner}","deviceplatform":"%s{deviceplatform}","devicetype":"%s{devicetype}","dlpdictcount":"%s{dlpcounts}","dlpdictnames":"%s{dlpdictnames}","dlpenginenames":"%s{dlpengnames}","dlpidentifier":"%llu{dlpidentifier}","dsttype":"%s{dsttype}","eventtime":"%s{eventtime}","expectedaction":"%s{expectedaction}","filedoctype":"%s{filedoctype}","filedstpath":"%s{filedstpath}","filemd5":"%s{filemd5}","filesha":"%s{filesha}","filesrcpath":"%s{filesrcpath}","filetypecategory":"%s{filetypecategory}","filetypename":"%s{filetypename}","hh":"%02d{hh}","itemdstname":"%s{itemdstname}","itemname":"%s{itemname}","itemsrcname":"%s{itemsrcname}","itemtype":"%s{itemtype}","logtype":"%s{logtype}","mm":"%02d{mm}","mon":"%s{mon}","mth":"%02d{mth}","numdlpdictids":"%u{numdlpdictids}","numdlpengineids":"%u{numdlpengids}","odepartment":"%s{odepartment}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdictnames":"%s{odlpdictnames}","odlpenginenames":"%s{odlpengnames}","ofiledstpath":"%s{ofiledstpath}","ofilesrcpath":"%s{ofilesrcpath}","oitemdstname":"%s{oitemdstname}","oitemname":"%s{oitemname}","oitemsrcname":"%s{oitemsrcname}","ootherrulelabels":"%s{ootherrulelabels}","otherrulelabels":"%s{otherrulelabels}","orulename":"%s{otriggeredrulelabel}","ouser":"%s{ouser}","recordid":"%llu{recordid}","feedtime":"%s{rtime}","scannedbytes":"%llu{scanned_bytes}","scantime":"%llu{scantime}","severity":"%s{severity}","srctype":"%s{srctype}","ss":"%02d{ss}","datetime":"%s{time}","rulename":"%s{triggeredrulelabel}","timezone":"%s{tz}","user":"%s{user}","yyyy":"%04d{yyyy}","zdpmode":"%s{zdpmode}"\}\} ``` @@ -165,7 +165,7 @@ Sample Response: See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-firewall-logs) -Zscaler response format (v1): +Zscaler Firewall Log response format (v2): ``` \{"sourcetype":"zscalernss-fw","event":\{"datetime":"%s{time}","outbytes":"%ld{outbytes}","cltdomain":"%s{cdfqdn}","destcountry":"%s{destcountry}","cdip":"%s{cdip}","sdip":"%s{sdip}","cdport":"%d{cdport}","sdport":"%d{sdport}","devicemodel":"%s{devicemodel}","action":"%s{action}","duration":"%d{duration}","recordid":"%d{recordid}","tz":"%s{tz}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","nwapp":"%s{nwapp}","nwsvc":"%s{nwsvc}","proto":"%s{ipproto}","ipsrulelabel":"%s{ipsrulelabel}","dnatrulelabel":"%s{dnatrulelabel}","rdr_rulename":"%s{rdr_rulename}","rule":"%s{rulelabel}","rulelabel":"%s{erulelabel}","inbytes":"%ld{inbytes}","srcipcountry":"%s{srcip_country}","csip":"%s{csip}","ssip":"%s{ssip}","csport":"%d{csport}","ssport":"%d{ssport}","user":"%s{elogin}","aggregate":"%s{aggregate}","bypassed_session":"%d{bypassed_session}","bypass_time":"%s{bypass_etime}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day_of_month":"%02d{dd}","department":"%s{edepartment}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","avgduration":"%d{avgduration}","durationms":"%d{durationms}","epochtime":"%d{epochtime}","external_deviceid":"%s{external_deviceid}","flow_type":"%s{flow_type}","forward_gateway_name":"%s{fwd_gw_name}","hour":"%02d{hh}","ipcat":"%s{ipcat}","ips_custom_signature":"%d{ips_custom_signature}","location":"%s{location}","locationname":"%s{elocation}","login":"%s{login}","minute":"%02d{mm}","month":"%s{mon}","month_of_year":"%02d{mth}","dnat":"%s{dnat}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","ofwd_gw_name":"%s{ofwd_gw_name}","odevicehostname":"%s{odevicehostname}","oipcat":"%s{oipcat}","oipsrulelabel":"%s{oipsrulelabel}","ordr_rulename":"%s{ordr_rulename}","orulelabel":"%s{orulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","second":"%02d{ss}","numsessions":"%d{numsessions}","stateful":"%s{stateful}","threat_name":"%s{threatname}","threatcat":"%s{threatcat}","threatname":"%s{ethreatname}","tsip":"%s{tsip}","tuntype":"%s{ttype}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} ``` @@ -182,7 +182,7 @@ Sample Response: See: [Zscaler Vendor documentation]( https://help.zscaler.com/zia/nss-feed-output-format-tunnel-logs) -Zscaler response format (v1): +Zscaler Tunnel Log response formats (v2): - Tunnel Event: ``` \{"sourcetype":"zscalernss-tunnel","event":\{"datetime":"%s{datetime}","day":"%s{day}","dd":"%02d{dd}","destinationip":"%s{destvip}","event":"%s{event}","eventreason":"%s{eventreason}","hh":"%02d{hh}","locationname":"%s{locationname}","mm":"%02d{mm}","mon":"%s{mon}","mth":"%02d{mth}","olocationname":"%s{olocationname}","ovpncredentialname":"%s{ovpncredentialname}","recordid":"%d{recordid}","sourceip":"%s{sourceip}","sourceport":"%d{srcport}","ss":"%02d{ss}","Recordtype":"%s{tunnelactionname}","tunneltype":"%s{tunneltype}","timezone":"%s{tz}","user":"%s{vpncredentialname}","yyyy":"%04d{yyyy}"\}\} @@ -214,7 +214,7 @@ Sample Response: ![Escape feed setup image](../img/escape_feed.png?raw=true) See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-web-logs) -Zscaler response format (v2): +Zscaler Web Log response format (v5): ``` \{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","eurl":"%s{eurl}","url":"%s{url}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} ``` diff --git a/packages/zscaler_zia/manifest.yml b/packages/zscaler_zia/manifest.yml index 5cd89f1134fa..dde47f3d7b73 100644 --- a/packages/zscaler_zia/manifest.yml +++ b/packages/zscaler_zia/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.3" name: zscaler_zia title: Zscaler Internet Access -version: "3.0.3" +version: "3.0.4" description: Collect logs from Zscaler Internet Access (ZIA) with Elastic Agent. type: integration categories: From ae4f22f6386d9f948f87e5ca5317329d41a5ed59 Mon Sep 17 00:00:00 2001 From: Jaime Soriano Pastor Date: Thu, 8 Aug 2024 17:09:03 +0200 Subject: [PATCH 51/77] updatecli: pass the username to fix the issue with auth (#10739) Pin version v2.64.0 Set username to solve the issues with the authentication needed. Simplify GitHub action to use a folder with all the pipelines Restructure the folder layout for the updatecli, updatecli.d for pipelines and values.d for configuration files. Co-authored-by: Victor Martinez --- .github/workflows/bump-elastic-stack-version.yml | 14 ++++---------- .../updatecli.d/bump-latest-7x-version.yml | 1 + .../updatecli.d/bump-latest-snapshot-version.yml | 1 + .../{updatecli.d => updatecli/values.d}/scm.yml | 0 4 files changed, 6 insertions(+), 10 deletions(-) rename .github/workflows/{ => updatecli}/updatecli.d/bump-latest-7x-version.yml (95%) rename .github/workflows/{ => updatecli}/updatecli.d/bump-latest-snapshot-version.yml (95%) rename .github/workflows/{updatecli.d => updatecli/values.d}/scm.yml (100%) diff --git a/.github/workflows/bump-elastic-stack-version.yml b/.github/workflows/bump-elastic-stack-version.yml index c3182297576c..dc2957d8137a 100644 --- a/.github/workflows/bump-elastic-stack-version.yml +++ b/.github/workflows/bump-elastic-stack-version.yml @@ -7,7 +7,7 @@ on: - cron: '0 1 * * 1-5' pull_request: paths: - - .github/updatecli.d/* + - .github/workflows/updatecli/** - .github/workflows/bump-elastic-stack-version.yml permissions: @@ -25,7 +25,7 @@ jobs: - uses: actions/checkout@v4 - name: Install Updatecli in the runner - uses: updatecli/updatecli-action@v2.62.0 + uses: updatecli/updatecli-action@3a8785d88ec4fa03d86521a181f37c0e74627463 #v2.64.0 - name: Select diff action if: ${{ github.event_name == 'pull_request' }} @@ -37,14 +37,8 @@ jobs: run: | echo "UPDATECLI_ACTION=apply" >> $GITHUB_ENV - - name: Update latest testing 7.x stack version + - name: Update latest testing stack versions # --experimental needed for commitusingapi option. - run: updatecli --experimental ${{ env.UPDATECLI_ACTION }} --config .github/workflows/updatecli.d/bump-latest-7x-version.yml --values .github/workflows/updatecli.d/scm.yml - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Update latest testing stack version - # --experimental needed for commitusingapi option. - run: updatecli --experimental ${{ env.UPDATECLI_ACTION }} --config .github/workflows/updatecli.d/bump-latest-snapshot-version.yml --values .github/workflows/updatecli.d/scm.yml + run: updatecli --experimental ${{ env.UPDATECLI_ACTION }} --config .github/workflows/updatecli/updatecli.d --values .github/workflows/updatecli/values.d/scm.yml env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/updatecli.d/bump-latest-7x-version.yml b/.github/workflows/updatecli/updatecli.d/bump-latest-7x-version.yml similarity index 95% rename from .github/workflows/updatecli.d/bump-latest-7x-version.yml rename to .github/workflows/updatecli/updatecli.d/bump-latest-7x-version.yml index 697b7d75b98e..a5d83b4fa815 100644 --- a/.github/workflows/updatecli.d/bump-latest-7x-version.yml +++ b/.github/workflows/updatecli/updatecli.d/bump-latest-7x-version.yml @@ -19,6 +19,7 @@ scms: owner: '{{ .scm.owner }}' repository: '{{ .scm.repository }}' user: '{{ requiredEnv "GITHUB_ACTOR" }}' + username: '{{ requiredEnv "GITHUB_ACTOR" }}' token: '{{ requiredEnv "GITHUB_TOKEN" }}' commitusingapi: true branch: main diff --git a/.github/workflows/updatecli.d/bump-latest-snapshot-version.yml b/.github/workflows/updatecli/updatecli.d/bump-latest-snapshot-version.yml similarity index 95% rename from .github/workflows/updatecli.d/bump-latest-snapshot-version.yml rename to .github/workflows/updatecli/updatecli.d/bump-latest-snapshot-version.yml index 65267d2403c3..d4ca8b55c396 100644 --- a/.github/workflows/updatecli.d/bump-latest-snapshot-version.yml +++ b/.github/workflows/updatecli/updatecli.d/bump-latest-snapshot-version.yml @@ -19,6 +19,7 @@ scms: owner: '{{ .scm.owner }}' repository: '{{ .scm.repository }}' user: '{{ requiredEnv "GITHUB_ACTOR" }}' + username: '{{ requiredEnv "GITHUB_ACTOR" }}' token: '{{ requiredEnv "GITHUB_TOKEN" }}' commitusingapi: true branch: main diff --git a/.github/workflows/updatecli.d/scm.yml b/.github/workflows/updatecli/values.d/scm.yml similarity index 100% rename from .github/workflows/updatecli.d/scm.yml rename to .github/workflows/updatecli/values.d/scm.yml From 2db88f3f03b2488aecfac05af873eaa47923040c Mon Sep 17 00:00:00 2001 From: Mario Rodriguez Molins Date: Thu, 8 Aug 2024 17:26:02 +0200 Subject: [PATCH 52/77] [CI] Report skipped tests in junit annotations (#10735) Update jUnit buildkite plugin up to version 2.5.0, so skipped tests can be shown as part of the annotation created in each buildkite build. --- .buildkite/pipeline.serverless.yml | 4 +++- .buildkite/pipeline.yml | 3 ++- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/.buildkite/pipeline.serverless.yml b/.buildkite/pipeline.serverless.yml index 7c3d5c7bb919..f824c894ff4c 100644 --- a/.buildkite/pipeline.serverless.yml +++ b/.buildkite/pipeline.serverless.yml @@ -76,8 +76,10 @@ steps: - label: ":junit: Junit annotate" plugins: - - junit-annotate#v2.4.1: + - junit-annotate#v2.5.0: artifacts: "build/test-results/*.xml" + failed-download-exit-code: 0 # Not fail the build in case there are no XML files + report-skipped: true agents: provider: "gcp" # junit plugin requires docker diff --git a/.buildkite/pipeline.yml b/.buildkite/pipeline.yml index b43a25198ffe..3f09cfe326ba 100644 --- a/.buildkite/pipeline.yml +++ b/.buildkite/pipeline.yml @@ -80,9 +80,10 @@ steps: - label: ":junit: Junit annotate" plugins: - - junit-annotate#v2.4.1: + - junit-annotate#v2.5.0: artifacts: "build/test-results/*.xml" failed-download-exit-code: 0 # Not fail the build in case there are no XML files + report-skipped: true agents: provider: "gcp" # junit plugin requires docker From 920aa511332e242e0aae5cd0b3d9794badc5571d Mon Sep 17 00:00:00 2001 From: HaveSec <73357421+HaveSec@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:45:11 +0200 Subject: [PATCH 53/77] [goflow2] Add GoFlow2 integration (#10561) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Add the GoFlow2 integration to monitor goflow2 logs - Add initial sflow data stream to ingest sflow logs from goflow2 - Add system and pipeline tests --------- Co-authored-by: Christian Hilgers Co-authored-by: Mario Schäfer --- .github/CODEOWNERS | 1 + packages/goflow2/_dev/build/build.yml | 4 + packages/goflow2/_dev/build/docs/README.md | 60 + .../_dev/deploy/docker/docker-compose.yml | 7 + .../sample_logs/test-goflow2-sflow-sample.log | 9 + packages/goflow2/changelog.yml | 6 + .../pipeline/test-goflow2-sflow-sample.log | 12 + .../test-goflow2-sflow-sample.log-config.yml | 7 + ...est-goflow2-sflow-sample.log-expected.json | 1158 +++++++++++++++++ .../test/system/test-filestream-config.yml | 10 + .../sflow/agent/stream/filestream.yml.hbs | 34 + .../elasticsearch/ingest_pipeline/default.yml | 277 ++++ .../data_stream/sflow/fields/agent.yml | 6 + .../data_stream/sflow/fields/base-fields.yml | 18 + .../data_stream/sflow/fields/fields.yml | 14 + .../goflow2/data_stream/sflow/manifest.yml | 61 + .../data_stream/sflow/sample_event.json | 105 ++ packages/goflow2/docs/README.md | 184 +++ packages/goflow2/img/goflow2-logo.svg | 435 +++++++ packages/goflow2/manifest.yml | 29 + 20 files changed, 2437 insertions(+) create mode 100644 packages/goflow2/_dev/build/build.yml create mode 100644 packages/goflow2/_dev/build/docs/README.md create mode 100644 packages/goflow2/_dev/deploy/docker/docker-compose.yml create mode 100644 packages/goflow2/_dev/deploy/docker/sample_logs/test-goflow2-sflow-sample.log create mode 100644 packages/goflow2/changelog.yml create mode 100644 packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log create mode 100644 packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log-config.yml create mode 100644 packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log-expected.json create mode 100644 packages/goflow2/data_stream/sflow/_dev/test/system/test-filestream-config.yml create mode 100644 packages/goflow2/data_stream/sflow/agent/stream/filestream.yml.hbs create mode 100644 packages/goflow2/data_stream/sflow/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/goflow2/data_stream/sflow/fields/agent.yml create mode 100644 packages/goflow2/data_stream/sflow/fields/base-fields.yml create mode 100644 packages/goflow2/data_stream/sflow/fields/fields.yml create mode 100644 packages/goflow2/data_stream/sflow/manifest.yml create mode 100644 packages/goflow2/data_stream/sflow/sample_event.json create mode 100644 packages/goflow2/docs/README.md create mode 100644 packages/goflow2/img/goflow2-logo.svg create mode 100644 packages/goflow2/manifest.yml diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index 1642e68e4cf6..829dfcb759d0 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -206,6 +206,7 @@ /packages/github @elastic/security-service-integrations /packages/gitlab @elastic/security-service-integrations /packages/golang @elastic/obs-infraobs-integrations +/packages/goflow2 @elastic/sec-deployment-and-devices /packages/google_cloud_storage @elastic/security-service-integrations /packages/google_scc @elastic/security-service-integrations /packages/google_workspace @elastic/security-service-integrations diff --git a/packages/goflow2/_dev/build/build.yml b/packages/goflow2/_dev/build/build.yml new file mode 100644 index 000000000000..2ef4015ccd9c --- /dev/null +++ b/packages/goflow2/_dev/build/build.yml @@ -0,0 +1,4 @@ +dependencies: + ecs: + reference: git@v8.11.0 + import_mappings: true \ No newline at end of file diff --git a/packages/goflow2/_dev/build/docs/README.md b/packages/goflow2/_dev/build/docs/README.md new file mode 100644 index 000000000000..5fe541444ed3 --- /dev/null +++ b/packages/goflow2/_dev/build/docs/README.md @@ -0,0 +1,60 @@ +# GoFlow2 + +The GoFlow2 integration allows you to import logs generated by goflow2. + +The only protocol/normalisation of goflow2 that is supported in this integration is sFlow. +The normalisation of IPFIX and/or NetFlow is not yet support. + +## Data streams +### sflow +The Goflow2 sFlow integration collects one type of data streams: logs + +#### Sample Event +{{ event "sflow" }} + +## Requirements + +You need Elasticsearch for storing and searching your data and Kibana for visualizing and managing it. +You can use our hosted Elasticsearch Service on Elastic Cloud, which is recommended, or self-manage the Elastic Stack on your own hardware. + +You need GoFlow2 to create log files for sFlow traffic. +https://github.com/netsampler/goflow2 + +## Setup + +- Install integration and role out elastic agent +- Install GoFlow2 for sFlow logging + +Please use the following GoFlow2 mapping.yaml file: + +``` +# File: /etc/goflow2/mapping.yaml +formatter: + fields: # list of fields to format in JSON + - type + - time_flow_start_ns + - sampler_address + - sequence_num + - in_if + - out_if + - src_addr + - dst_addr + - etype + - proto + - src_port + - dst_port + - src_vlan + - dst_vlan + - sampling_rate + - bytes +``` + +The output sflow transport files must be stored in the directory ```/var/log/sflow/goflow2/``` + +Full command to run GoFlow2 for sflow traffic: +```shell +goflow2 -format json -listen "sflow://:6343" -mapping /etc/goflow2/mapping.yaml -transport.file /var/log/sflow/goflow2/goflow2.log +``` + +## Fields +{{ fields "sflow" }} diff --git a/packages/goflow2/_dev/deploy/docker/docker-compose.yml b/packages/goflow2/_dev/deploy/docker/docker-compose.yml new file mode 100644 index 000000000000..63ac0969a324 --- /dev/null +++ b/packages/goflow2/_dev/deploy/docker/docker-compose.yml @@ -0,0 +1,7 @@ +services: + goflow2-sflow-filestream: + image: alpine + volumes: + - ./sample_logs:/sample_logs:ro + - ${SERVICE_LOGS_DIR}:/var/log/sflow/goflow2/ + command: /bin/sh -c "cp /sample_logs/* /var/log/sflow/goflow2/" diff --git a/packages/goflow2/_dev/deploy/docker/sample_logs/test-goflow2-sflow-sample.log b/packages/goflow2/_dev/deploy/docker/sample_logs/test-goflow2-sflow-sample.log new file mode 100644 index 000000000000..3abe9e4862c0 --- /dev/null +++ b/packages/goflow2/_dev/deploy/docker/sample_logs/test-goflow2-sflow-sample.log @@ -0,0 +1,9 @@ +{"type":"SFLOW_5","time_flow_start_ns":1722384059314899647,"sampler_address":"67.43.156.1","sequence_num":44555,"in_if":563,"out_if":573,"src_addr":"216.160.83.57","dst_addr":"216.160.83.58","etype":"IPv4","proto":"TCP","src_port":10876,"dst_port":443,"src_vlan":1500,"dst_vlan":1500,"sampling_rate":1000,"bytes":70} +{"type":"SFLOW_5","time_flow_start_ns":1722384059333197201,"sampler_address":"89.160.20.129","sequence_num":27481,"in_if":637,"out_if":742,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":80,"dst_port":55319,"src_vlan":500,"dst_vlan":500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059333197201,"sampler_address":"67.43.156.1","sequence_num":27481,"in_if":637,"out_if":609,"src_addr":"216.160.83.59","dst_addr":"216.160.83.60","etype":"IPv4","proto":"ESP","src_port":0,"dst_port":0,"src_vlan":500,"dst_vlan":500,"sampling_rate":500,"bytes":142} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"67.43.156.1","sequence_num":1022,"in_if":0,"out_if":561,"src_addr":"216.160.83.60","dst_addr":"216.160.83.59","etype":"IPv4","proto":"TCP","src_port":19156,"dst_port":443,"src_vlan":0,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"67.43.156.1","sequence_num":1022,"in_if":0,"out_if":561,"src_addr":"216.160.83.59","dst_addr":"216.160.83.58","etype":"IPv4","proto":"TCP","src_port":19156,"dst_port":443,"src_vlan":0,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"67.43.156.1","sequence_num":1022,"in_if":531,"out_if":561,"src_addr":"216.160.83.59","dst_addr":"216.160.83.58","etype":"IPv4","proto":"UDP","src_port":1122,"dst_port":6097,"src_vlan":1500,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"89.160.20.129","sequence_num":1022,"in_if":0,"out_if":561,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":49031,"dst_port":443,"src_vlan":0,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"89.160.20.129","sequence_num":1022,"in_if":0,"out_if":561,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":31385,"dst_port":443,"src_vlan":0,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"89.160.20.129","sequence_num":1022,"in_if":561,"out_if":531,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":6097,"dst_port":443,"src_vlan":1500,"dst_vlan":1500,"sampling_rate":2000,"bytes":70} diff --git a/packages/goflow2/changelog.yml b/packages/goflow2/changelog.yml new file mode 100644 index 000000000000..5cc386f1d8b5 --- /dev/null +++ b/packages/goflow2/changelog.yml @@ -0,0 +1,6 @@ +# newer versions go on top +- version: "0.1.0" + changes: + - description: Initial version of the package + type: enhancement + link: https://github.com/elastic/integrations/pull/10561 diff --git a/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log b/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log new file mode 100644 index 000000000000..7f9b08df7497 --- /dev/null +++ b/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log @@ -0,0 +1,12 @@ +{"type":"SFLOW_5","time_flow_start_ns":1722384059314899647,"sampler_address":"67.43.156.1","sequence_num":44555,"in_if":563,"out_if":573,"src_addr":"216.160.83.57","dst_addr":"216.160.83.58","etype":"IPv4","proto":"TCP","src_port":10876,"dst_port":443,"src_vlan":1500,"dst_vlan":1500,"sampling_rate":1000,"bytes":70} +{"type":"SFLOW_5","time_flow_start_ns":1722384059333197201,"sampler_address":"89.160.20.129","sequence_num":27481,"in_if":637,"out_if":742,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":80,"dst_port":55319,"src_vlan":500,"dst_vlan":500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059333197201,"sampler_address":"67.43.156.1","sequence_num":27481,"in_if":637,"out_if":609,"src_addr":"216.160.83.59","dst_addr":"216.160.83.60","etype":"IPv4","proto":"ESP","src_port":0,"dst_port":0,"src_vlan":500,"dst_vlan":500,"sampling_rate":500,"bytes":142} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"67.43.156.1","sequence_num":1022,"in_if":0,"out_if":561,"src_addr":"216.160.83.60","dst_addr":"216.160.83.59","etype":"IPv4","proto":"TCP","src_port":19156,"dst_port":443,"src_vlan":0,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"67.43.156.1","sequence_num":1022,"in_if":0,"out_if":561,"src_addr":"216.160.83.59","dst_addr":"216.160.83.58","etype":"IPv4","proto":"TCP","src_port":19156,"dst_port":443,"src_vlan":0,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"67.43.156.1","sequence_num":1022,"in_if":531,"out_if":561,"src_addr":"216.160.83.59","dst_addr":"216.160.83.58","etype":"IPv4","proto":"UDP","src_port":1122,"dst_port":6097,"src_vlan":1500,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"89.160.20.129","sequence_num":1022,"in_if":0,"out_if":561,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":49031,"dst_port":443,"src_vlan":0,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"89.160.20.129","sequence_num":1022,"in_if":0,"out_if":561,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":31385,"dst_port":443,"src_vlan":0,"dst_vlan":1500,"sampling_rate":2000,"bytes":1518} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"89.160.20.129","sequence_num":1022,"in_if":561,"out_if":531,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":6097,"dst_port":443,"src_vlan":1500,"dst_vlan":1500,"sampling_rate":2000,"bytes":70} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"sampler_address":"89.160.20.129","in_if":561,"out_if":531,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":6097,"dst_port":443,"src_vlan":1500,"dst_vlan":1500,"sampling_rate":2000,"bytes":""} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"src_addr":"81.2.69.193","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":6097,"dst_port":443,"sampling_rate":111,"bytes":3321} +{"type":"SFLOW_5","time_flow_start_ns":1722384059483524068,"src_addr":"","dst_addr":"81.2.69.194","etype":"IPv4","proto":"TCP","src_port":6097,"dst_port":443,"sampling_rate":111,"bytes":3321} diff --git a/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log-config.yml b/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log-config.yml new file mode 100644 index 000000000000..70e5e766bdc5 --- /dev/null +++ b/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log-config.yml @@ -0,0 +1,7 @@ +fields: + tags: + - preserve_original_event + - forwarded + - sflow + event: + timezone: "+00:00" diff --git a/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log-expected.json b/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log-expected.json new file mode 100644 index 000000000000..09cf71dc0c86 --- /dev/null +++ b/packages/goflow2/data_stream/sflow/_dev/test/pipeline/test-goflow2-sflow-sample.log-expected.json @@ -0,0 +1,1158 @@ +{ + "expected": [ + { + "@timestamp": "2024-07-31T00:00:59.314Z", + "destination": { + "address": [ + "216.160.83.58" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.58", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059314899647,\"sampler_address\":\"67.43.156.1\",\"sequence_num\":44555,\"in_if\":563,\"out_if\":573,\"src_addr\":\"216.160.83.57\",\"dst_addr\":\"216.160.83.58\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":10876,\"dst_port\":443,\"src_vlan\":1500,\"dst_vlan\":1500,\"sampling_rate\":1000,\"bytes\":70}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 70000, + "packets": 1000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "573" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "563" + }, + "vlan": { + "id": "1500" + } + }, + "ip": [ + "67.43.156.1" + ] + }, + "related": { + "ip": [ + "216.160.83.57", + "216.160.83.58" + ] + }, + "sflow": { + "bytes": 70, + "sample_rate": 1000, + "sequence_num": 44555 + }, + "source": { + "address": [ + "216.160.83.57" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.57", + "port": 10876 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.333Z", + "destination": { + "address": [ + "81.2.69.194" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.194", + "port": 55319 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059333197201,\"sampler_address\":\"89.160.20.129\",\"sequence_num\":27481,\"in_if\":637,\"out_if\":742,\"src_addr\":\"81.2.69.193\",\"dst_addr\":\"81.2.69.194\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":80,\"dst_port\":55319,\"src_vlan\":500,\"dst_vlan\":500,\"sampling_rate\":2000,\"bytes\":1518}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 3036000, + "packets": 2000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "742" + }, + "vlan": { + "id": "500" + } + }, + "ingress": { + "interface": { + "id": "637" + }, + "vlan": { + "id": "500" + } + }, + "ip": [ + "89.160.20.129" + ] + }, + "related": { + "ip": [ + "81.2.69.193", + "81.2.69.194" + ] + }, + "sflow": { + "bytes": 1518, + "sample_rate": 2000, + "sequence_num": 27481 + }, + "source": { + "address": [ + "81.2.69.193" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.193", + "port": 80 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.333Z", + "destination": { + "address": [ + "216.160.83.60" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.60", + "port": 0 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059333197201,\"sampler_address\":\"67.43.156.1\",\"sequence_num\":27481,\"in_if\":637,\"out_if\":609,\"src_addr\":\"216.160.83.59\",\"dst_addr\":\"216.160.83.60\",\"etype\":\"IPv4\",\"proto\":\"ESP\",\"src_port\":0,\"dst_port\":0,\"src_vlan\":500,\"dst_vlan\":500,\"sampling_rate\":500,\"bytes\":142}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 71000, + "packets": 500, + "transport": "esp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "609" + }, + "vlan": { + "id": "500" + } + }, + "ingress": { + "interface": { + "id": "637" + }, + "vlan": { + "id": "500" + } + }, + "ip": [ + "67.43.156.1" + ] + }, + "related": { + "ip": [ + "216.160.83.59", + "216.160.83.60" + ] + }, + "sflow": { + "bytes": 142, + "sample_rate": 500, + "sequence_num": 27481 + }, + "source": { + "address": [ + "216.160.83.59" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.59", + "port": 0 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "216.160.83.59" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.59", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"sampler_address\":\"67.43.156.1\",\"sequence_num\":1022,\"in_if\":0,\"out_if\":561,\"src_addr\":\"216.160.83.60\",\"dst_addr\":\"216.160.83.59\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":19156,\"dst_port\":443,\"src_vlan\":0,\"dst_vlan\":1500,\"sampling_rate\":2000,\"bytes\":1518}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 3036000, + "packets": 2000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "561" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "0" + }, + "vlan": { + "id": "0" + } + }, + "ip": [ + "67.43.156.1" + ] + }, + "related": { + "ip": [ + "216.160.83.60", + "216.160.83.59" + ] + }, + "sflow": { + "bytes": 1518, + "sample_rate": 2000, + "sequence_num": 1022 + }, + "source": { + "address": [ + "216.160.83.60" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.60", + "port": 19156 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "216.160.83.58" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.58", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"sampler_address\":\"67.43.156.1\",\"sequence_num\":1022,\"in_if\":0,\"out_if\":561,\"src_addr\":\"216.160.83.59\",\"dst_addr\":\"216.160.83.58\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":19156,\"dst_port\":443,\"src_vlan\":0,\"dst_vlan\":1500,\"sampling_rate\":2000,\"bytes\":1518}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 3036000, + "packets": 2000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "561" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "0" + }, + "vlan": { + "id": "0" + } + }, + "ip": [ + "67.43.156.1" + ] + }, + "related": { + "ip": [ + "216.160.83.59", + "216.160.83.58" + ] + }, + "sflow": { + "bytes": 1518, + "sample_rate": 2000, + "sequence_num": 1022 + }, + "source": { + "address": [ + "216.160.83.59" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.59", + "port": 19156 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "216.160.83.58" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.58", + "port": 6097 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"sampler_address\":\"67.43.156.1\",\"sequence_num\":1022,\"in_if\":531,\"out_if\":561,\"src_addr\":\"216.160.83.59\",\"dst_addr\":\"216.160.83.58\",\"etype\":\"IPv4\",\"proto\":\"UDP\",\"src_port\":1122,\"dst_port\":6097,\"src_vlan\":1500,\"dst_vlan\":1500,\"sampling_rate\":2000,\"bytes\":1518}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 3036000, + "packets": 2000, + "transport": "udp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "561" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "531" + }, + "vlan": { + "id": "1500" + } + }, + "ip": [ + "67.43.156.1" + ] + }, + "related": { + "ip": [ + "216.160.83.59", + "216.160.83.58" + ] + }, + "sflow": { + "bytes": 1518, + "sample_rate": 2000, + "sequence_num": 1022 + }, + "source": { + "address": [ + "216.160.83.59" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.59", + "port": 1122 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "81.2.69.194" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.194", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"sampler_address\":\"89.160.20.129\",\"sequence_num\":1022,\"in_if\":0,\"out_if\":561,\"src_addr\":\"81.2.69.193\",\"dst_addr\":\"81.2.69.194\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":49031,\"dst_port\":443,\"src_vlan\":0,\"dst_vlan\":1500,\"sampling_rate\":2000,\"bytes\":1518}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 3036000, + "packets": 2000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "561" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "0" + }, + "vlan": { + "id": "0" + } + }, + "ip": [ + "89.160.20.129" + ] + }, + "related": { + "ip": [ + "81.2.69.193", + "81.2.69.194" + ] + }, + "sflow": { + "bytes": 1518, + "sample_rate": 2000, + "sequence_num": 1022 + }, + "source": { + "address": [ + "81.2.69.193" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.193", + "port": 49031 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "81.2.69.194" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.194", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"sampler_address\":\"89.160.20.129\",\"sequence_num\":1022,\"in_if\":0,\"out_if\":561,\"src_addr\":\"81.2.69.193\",\"dst_addr\":\"81.2.69.194\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":31385,\"dst_port\":443,\"src_vlan\":0,\"dst_vlan\":1500,\"sampling_rate\":2000,\"bytes\":1518}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 3036000, + "packets": 2000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "561" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "0" + }, + "vlan": { + "id": "0" + } + }, + "ip": [ + "89.160.20.129" + ] + }, + "related": { + "ip": [ + "81.2.69.193", + "81.2.69.194" + ] + }, + "sflow": { + "bytes": 1518, + "sample_rate": 2000, + "sequence_num": 1022 + }, + "source": { + "address": [ + "81.2.69.193" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.193", + "port": 31385 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "81.2.69.194" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.194", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"sampler_address\":\"89.160.20.129\",\"sequence_num\":1022,\"in_if\":561,\"out_if\":531,\"src_addr\":\"81.2.69.193\",\"dst_addr\":\"81.2.69.194\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":6097,\"dst_port\":443,\"src_vlan\":1500,\"dst_vlan\":1500,\"sampling_rate\":2000,\"bytes\":70}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 140000, + "packets": 2000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "531" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "561" + }, + "vlan": { + "id": "1500" + } + }, + "ip": [ + "89.160.20.129" + ] + }, + "related": { + "ip": [ + "81.2.69.193", + "81.2.69.194" + ] + }, + "sflow": { + "bytes": 70, + "sample_rate": 2000, + "sequence_num": 1022 + }, + "source": { + "address": [ + "81.2.69.193" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.193", + "port": 6097 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "81.2.69.194" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.194", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"sampler_address\":\"89.160.20.129\",\"in_if\":561,\"out_if\":531,\"src_addr\":\"81.2.69.193\",\"dst_addr\":\"81.2.69.194\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":6097,\"dst_port\":443,\"src_vlan\":1500,\"dst_vlan\":1500,\"sampling_rate\":2000,\"bytes\":\"\"}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "packets": 2000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "531" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "561" + }, + "vlan": { + "id": "1500" + } + }, + "ip": [ + "89.160.20.129" + ] + }, + "related": { + "ip": [ + "81.2.69.193", + "81.2.69.194" + ] + }, + "sflow": { + "sample_rate": 2000 + }, + "source": { + "address": [ + "81.2.69.193" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.193", + "port": 6097 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "81.2.69.194" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.194", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"src_addr\":\"81.2.69.193\",\"dst_addr\":\"81.2.69.194\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":6097,\"dst_port\":443,\"sampling_rate\":111,\"bytes\":3321}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 368631, + "packets": 111, + "transport": "tcp", + "type": "ipv4" + }, + "related": { + "ip": [ + "81.2.69.193", + "81.2.69.194" + ] + }, + "sflow": { + "bytes": 3321, + "sample_rate": 111 + }, + "source": { + "address": [ + "81.2.69.193" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.193", + "port": 6097 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + }, + { + "@timestamp": "2024-07-31T00:00:59.483Z", + "destination": { + "address": [ + "81.2.69.194" + ], + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.194", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059483524068,\"src_addr\":\"\",\"dst_addr\":\"81.2.69.194\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":6097,\"dst_port\":443,\"sampling_rate\":111,\"bytes\":3321}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 368631, + "packets": 111, + "transport": "tcp", + "type": "ipv4" + }, + "related": { + "ip": [ + "81.2.69.194" + ] + }, + "sflow": { + "bytes": 3321, + "sample_rate": 111 + }, + "source": { + "port": 6097 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] + } + ] +} \ No newline at end of file diff --git a/packages/goflow2/data_stream/sflow/_dev/test/system/test-filestream-config.yml b/packages/goflow2/data_stream/sflow/_dev/test/system/test-filestream-config.yml new file mode 100644 index 000000000000..5f96eea2ea7a --- /dev/null +++ b/packages/goflow2/data_stream/sflow/_dev/test/system/test-filestream-config.yml @@ -0,0 +1,10 @@ +service: goflow2-sflow-filestream +input: filestream +wait_for_data_timeout: 1m +data_stream: + vars: + preserve_original_event: true + paths: + - "{{{SERVICE_LOGS_DIR}}}/*goflow2-sflow*.log" +assert: + hit_count: 9 diff --git a/packages/goflow2/data_stream/sflow/agent/stream/filestream.yml.hbs b/packages/goflow2/data_stream/sflow/agent/stream/filestream.yml.hbs new file mode 100644 index 000000000000..87d16c529996 --- /dev/null +++ b/packages/goflow2/data_stream/sflow/agent/stream/filestream.yml.hbs @@ -0,0 +1,34 @@ +paths: +{{#each paths as |path i|}} + - {{path}} +{{/each}} +{{#if exclude_files.length}} +exclude_files: +{{#each exclude_files as |exclude_file i|}} + - {{exclude_file}} +{{/each}} +{{/if}} +{{#if tags.length}} +tags: +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{else}} +{{#if preserve_original_event}} +tags: + - preserve_original_event +{{/if}} +{{/if}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} +{{#if ignore_older}} +ignore_older: {{ignore_older}} +{{/if}} \ No newline at end of file diff --git a/packages/goflow2/data_stream/sflow/elasticsearch/ingest_pipeline/default.yml b/packages/goflow2/data_stream/sflow/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..fad545004626 --- /dev/null +++ b/packages/goflow2/data_stream/sflow/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,277 @@ +--- +description: Process goflow2 sflow data +processors: +- set: + field: event.kind + value: event + tag: set_event_kind +- append: + field: event.category + value: + - network + tag: set_event_category +- append: + field: event.type + value: + - connection + tag: append_event_type +- set: + field: ecs.version + value: 8.11.0 + tag: set_ecs_version +- json: + field: message + target_field: goflow2 + tag: json_message_to_goflow2 +- set: + tag: set_event_original + field: event.original + copy_from: message +- remove: + tag: remove_message + field: message +- script: + source: ctx.goflow2.time_flow_start_ns = (ctx.goflow2?.time_flow_start_ns / 1000000); + tag: script_calculate_time_flow_start_ns +- script: + source: ctx.goflow2.flow_size = ctx.goflow2?.bytes * ctx.goflow2?.sampling_rate; + if: ctx.goflow2?.bytes != null && ctx.goflow2?.bytes != '' && ctx.goflow2?.sampling_rate != null && ctx.goflow2?.sampling_rate != '' + tag: script_calculate_flow_size +- date: + field: goflow2.time_flow_start_ns + target_field: "@timestamp" + formats: + - UNIX_MS + timezone: UTC + ignore_failure: false + tag: date_parse_time_flow_start_ns +- rename: + field: goflow2.type + target_field: event.action + if: ctx.goflow2?.type != null && ctx.goflow2?.type != '' + tag: rename_type_to_event_action +- append: + field: observer.ip + value: + - "{{{goflow2.sampler_address}}}" + if: ctx.goflow2?.sampler_address != null && ctx.goflow2?.sampler_address != '' + tag: append_sampler_address_to_observer_ip +- rename: + field: goflow2.sequence_num + target_field: sflow.sequence_num + if: ctx.goflow2?.sequence_num != null && ctx.goflow2?.sequence_num != '' + tag: rename_sequence_num_to_sflow_sequence_num +- rename: + field: goflow2.in_if + target_field: observer.ingress.interface.id + if: ctx.goflow2?.in_if != null && ctx.goflow2?.in_if != '' + tag: rename_in_if_to_observer_ingress_interface_id +- convert: + field: observer.ingress.interface.id + type: string + ignore_missing: true + tag: convert_observer_ingress_interface_id_to_string +- rename: + field: goflow2.out_if + target_field: observer.egress.interface.id + if: ctx.goflow2?.out_if != null && ctx.goflow2?.out_if != '' + tag: rename_out_if_to_observer_egress_interface_id +- convert: + field: observer.egress.interface.id + type: string + ignore_missing: true + tag: convert_observer_egress_interface_id_to_string +- convert: + field: goflow2.src_addr + type: ip + if: ctx.goflow2?.src_addr != null && ctx.goflow2?.src_addr != '' + tag: convert_src_addr_to_ip +- rename: + field: goflow2.src_addr + target_field: source.ip + if: ctx.goflow2?.src_addr != null && ctx.goflow2?.src_addr != '' + tag: rename_src_addr_to_source_ip +- convert: + field: goflow2.dst_addr + type: ip + if: ctx.goflow2?.dst_addr != null && ctx.goflow2?.dst_addr != '' + tag: convert_dst_addr_to_ip +- rename: + field: goflow2.dst_addr + target_field: destination.ip + if: ctx.goflow2?.dst_addr != null && ctx.goflow2?.dst_addr != '' + tag: rename_dst_addr_to_destination_ip +- rename: + field: goflow2.etype + target_field: network.type + if: ctx.goflow2?.etype != null && ctx.goflow2?.etype != '' + tag: rename_etype_to_network_type +- rename: + field: goflow2.proto + target_field: network.transport + if: ctx.goflow2?.proto != null && ctx.goflow2?.proto != '' + tag: rename_proto_to_network_transport +- rename: + field: goflow2.src_port + target_field: source.port + if: ctx.goflow2?.src_port != null && ctx.goflow2?.src_port != '' + tag: rename_src_port_to_source_port +- rename: + field: goflow2.dst_port + target_field: destination.port + if: ctx.goflow2?.dst_port != null && ctx.goflow2?.dst_port != '' + tag: rename_dst_port_to_destination_port +- rename: + field: goflow2.src_vlan + target_field: observer.ingress.vlan.id + if: ctx.goflow2?.src_vlan != null && ctx.goflow2?.src_vlan != '' + tag: rename_src_vlan_to_observer_ingress_vlan_id +- convert: + field: observer.ingress.vlan.id + type: string + ignore_missing: true + tag: convert_observer_ingress_vlan_id_to_string +- rename: + field: goflow2.dst_vlan + target_field: observer.egress.vlan.id + if: ctx.goflow2?.dst_vlan != null && ctx.goflow2?.dst_vlan != '' + tag: rename_dst_vlan_to_observer_egress_vlan_id +- convert: + field: observer.egress.vlan.id + type: string + ignore_missing: true + tag: convert_observer_egress_vlan_id_to_string +- rename: + field: goflow2.sampling_rate + target_field: network.packets + if: ctx.goflow2?.sampling_rate != null && ctx.goflow2?.sampling_rate != '' + tag: rename_sampling_rate_to_network_packets +- rename: + field: goflow2.bytes + target_field: sflow.bytes + if: ctx.goflow2?.bytes != null && ctx.goflow2?.bytes != '' + tag: rename_bytes_to_sflow_bytes +- rename: + field: goflow2.flow_size + target_field: network.bytes + ignore_missing: true + tag: rename_flow_size_to_network_bytes +- geoip: + if: ctx.source?.geo == null + field: source.ip + target_field: source.geo + ignore_missing: true + tag: geoip_source_ip_to_source_geo +- geoip: + if: ctx.destination?.geo == null + field: destination.ip + target_field: destination.geo + ignore_missing: true + tag: geoip_destination_ip_to_destination_geo +- geoip: + database_file: GeoLite2-ASN.mmdb + field: source.ip + target_field: source.as + properties: + - asn + - organization_name + ignore_missing: true + tag: geoip_source_ip_to_source_as +- geoip: + database_file: GeoLite2-ASN.mmdb + field: destination.ip + target_field: destination.as + properties: + - asn + - organization_name + ignore_missing: true + tag: geoip_destination_ip_to_destination_as +- rename: + field: source.as.asn + target_field: source.as.number + ignore_missing: true + tag: rename_source_as_asn_to_source_as_number +- rename: + field: source.as.organization_name + target_field: source.as.organization.name + ignore_missing: true + tag: rename_source_as_organization_name_to_source_as_organization_name +- rename: + field: destination.as.asn + target_field: destination.as.number + ignore_missing: true + tag: rename_destination_as_asn_to_destination_as_number +- rename: + field: destination.as.organization_name + target_field: destination.as.organization.name + ignore_missing: true + tag: rename_destination_as_organization_name_to_destination_as_organization_name +- remove: + field: + - goflow2.time_flow_start_ns + - goflow2.proto + - goflow2.etype + - goflow2.dst_addr + - goflow2.src_addr + - goflow2.sampler_address + - goflow2.bytes + ignore_missing: true + ignore_failure: true + tag: remove_unused_fields +- remove: + field: + - goflow2 + ignore_missing: true + ignore_failure: true + if: ctx.goflow2?.size() == 0 + tag: remove_goflow2_array_if_empty +- lowercase: + field: network.transport + ignore_missing: true + tag: lowercase_network_transport +- lowercase: + field: network.type + ignore_missing: true + tag: lowercase_network_type +- set: + field: sflow.sample_rate + copy_from: network.packets + ignore_empty_value: true + tag: set_sflow_sample_rate +- append: + field: destination.address + value: + - "{{{destination.ip}}}" + if: ctx.destination?.ip != null && ctx.destination?.ip != '' + tag: append_destination_ip_to_destination_address +- append: + field: source.address + value: + - "{{{source.ip}}}" + if: ctx.source?.ip != null && ctx.source?.ip != '' + tag: append_source_ip_to_source_address +- append: + field: related.ip + value: + - "{{{source.ip}}}" + if: ctx.source?.ip != null && ctx.source?.ip != '' + tag: append_source_ip_to_related_ip +- append: + field: related.ip + value: + - "{{{destination.ip}}}" + if: ctx.destination?.ip != null && ctx.destination?.ip != '' + tag: append_destination_ip_to_related_ip +- remove: + field: event.original + if: ctx?.tags == null || !(ctx.tags.contains('preserve_original_event')) + ignore_failure: true + ignore_missing: true + tag: remove_event_orginial_if_not_tags_preserve_original_event +on_failure: +- set: + field: error.message + value: Processor {{ _ingest.on_failure_processor_type }} with tag {{ _ingest.on_failure_processor_tag + }} in pipeline {{ _ingest.on_failure_pipeline }} failed with message {{ _ingest.on_failure_message + }} - Source {{_source}} + tag: set_error_message_on_failure diff --git a/packages/goflow2/data_stream/sflow/fields/agent.yml b/packages/goflow2/data_stream/sflow/fields/agent.yml new file mode 100644 index 000000000000..a07e2ce0b2bc --- /dev/null +++ b/packages/goflow2/data_stream/sflow/fields/agent.yml @@ -0,0 +1,6 @@ +- name: input.type + type: keyword + description: Input type +- name: log.offset + type: long + description: Log offset diff --git a/packages/goflow2/data_stream/sflow/fields/base-fields.yml b/packages/goflow2/data_stream/sflow/fields/base-fields.yml new file mode 100644 index 000000000000..4241322b2f52 --- /dev/null +++ b/packages/goflow2/data_stream/sflow/fields/base-fields.yml @@ -0,0 +1,18 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: '@timestamp' + type: date + description: Event timestamp. +- name: log.file.device_id + description: Device Id of the log file this event came from. + type: keyword +- name: log.file.inode + type: keyword + description: Inode of the log file this event came from. diff --git a/packages/goflow2/data_stream/sflow/fields/fields.yml b/packages/goflow2/data_stream/sflow/fields/fields.yml new file mode 100644 index 000000000000..0708dda341c5 --- /dev/null +++ b/packages/goflow2/data_stream/sflow/fields/fields.yml @@ -0,0 +1,14 @@ +- name: sflow + title: sFlow + description: Fields specifically related to sFlows + type: group + fields: + - name: bytes + type: long + description: Original size in bytes of the sample packet. + - name: sample_rate + type: long + description: sample rate. + - name: sequence_num + type: long + description: flow sequence number. diff --git a/packages/goflow2/data_stream/sflow/manifest.yml b/packages/goflow2/data_stream/sflow/manifest.yml new file mode 100644 index 000000000000..2a4ad560aea5 --- /dev/null +++ b/packages/goflow2/data_stream/sflow/manifest.yml @@ -0,0 +1,61 @@ +title: "Goflow2 sFlow" +type: logs +streams: + - input: filestream + template_path: filestream.yml.hbs + title: sFlow logs + description: Collect sFlow logs form GoFlow2 + vars: + - name: paths + type: text + title: Paths + multi: true + required: true + show_user: true + default: + - /var/log/sflow/goflow2/*.log + - name: preserve_original_event + required: true + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original`. + type: bool + multi: false + default: false + - name: ignore_older + type: text + title: Ignore events older than + default: 72h + required: false + show_user: false + multi: false + description: >- + If this option is specified, events that are older than the specified amount of time are ignored. Valid time units are "ns", "us" (or "µs"), "ms", "s", "m", "h". + - name: exclude_files + type: text + title: Exclude files + multi: true + required: false + show_user: false + description: Regular expression patterns in [RE2 syntax](https://github.com/google/re2/wiki/Syntax) matching files to exclude from input. See [exclude_files](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-log.html#filebeat-input-log-exclude-files) for details. + default: + - \.gz$ + - name: tags + type: text + title: Tags + multi: true + required: false + show_user: false + default: + - sflow + - forwarded + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details. + default: | + - add_locale: ~ diff --git a/packages/goflow2/data_stream/sflow/sample_event.json b/packages/goflow2/data_stream/sflow/sample_event.json new file mode 100644 index 000000000000..25a24a15aeac --- /dev/null +++ b/packages/goflow2/data_stream/sflow/sample_event.json @@ -0,0 +1,105 @@ +{ + "@timestamp": "2024-07-31T00:00:59.314Z", + "destination": { + "address": [ + "216.160.83.58" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.58", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059314899647,\"sampler_address\":\"67.43.156.1\",\"sequence_num\":44555,\"in_if\":563,\"out_if\":573,\"src_addr\":\"216.160.83.57\",\"dst_addr\":\"216.160.83.58\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":10876,\"dst_port\":443,\"src_vlan\":1500,\"dst_vlan\":1500,\"sampling_rate\":1000,\"bytes\":70}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 70000, + "packets": 1000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "573" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "563" + }, + "vlan": { + "id": "1500" + } + }, + "ip": [ + "67.43.156.1" + ] + }, + "related": { + "ip": [ + "216.160.83.57", + "216.160.83.58" + ] + }, + "sflow": { + "bytes": 70, + "sample_rate": 1000, + "sequence_num": 44555 + }, + "source": { + "address": [ + "216.160.83.57" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.57", + "port": 10876 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] +} diff --git a/packages/goflow2/docs/README.md b/packages/goflow2/docs/README.md new file mode 100644 index 000000000000..d0d6923a090f --- /dev/null +++ b/packages/goflow2/docs/README.md @@ -0,0 +1,184 @@ +# GoFlow2 + +The GoFlow2 integration allows you to import logs generated by goflow2. + +The only protocol/normalisation of goflow2 that is supported in this integration is sFlow. +The normalisation of IPFIX and/or NetFlow is not yet support. + +## Data streams +### sflow +The Goflow2 sFlow integration collects one type of data streams: logs + +#### Sample Event +An example event for `sflow` looks as following: + +```json +{ + "@timestamp": "2024-07-31T00:00:59.314Z", + "destination": { + "address": [ + "216.160.83.58" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.58", + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "SFLOW_5", + "category": [ + "network" + ], + "kind": "event", + "original": "{\"type\":\"SFLOW_5\",\"time_flow_start_ns\":1722384059314899647,\"sampler_address\":\"67.43.156.1\",\"sequence_num\":44555,\"in_if\":563,\"out_if\":573,\"src_addr\":\"216.160.83.57\",\"dst_addr\":\"216.160.83.58\",\"etype\":\"IPv4\",\"proto\":\"TCP\",\"src_port\":10876,\"dst_port\":443,\"src_vlan\":1500,\"dst_vlan\":1500,\"sampling_rate\":1000,\"bytes\":70}", + "timezone": "+00:00", + "type": [ + "connection" + ] + }, + "network": { + "bytes": 70000, + "packets": 1000, + "transport": "tcp", + "type": "ipv4" + }, + "observer": { + "egress": { + "interface": { + "id": "573" + }, + "vlan": { + "id": "1500" + } + }, + "ingress": { + "interface": { + "id": "563" + }, + "vlan": { + "id": "1500" + } + }, + "ip": [ + "67.43.156.1" + ] + }, + "related": { + "ip": [ + "216.160.83.57", + "216.160.83.58" + ] + }, + "sflow": { + "bytes": 70, + "sample_rate": 1000, + "sequence_num": 44555 + }, + "source": { + "address": [ + "216.160.83.57" + ], + "as": { + "number": 209 + }, + "geo": { + "city_name": "Milton", + "continent_name": "North America", + "country_iso_code": "US", + "country_name": "United States", + "location": { + "lat": 47.2513, + "lon": -122.3149 + }, + "region_iso_code": "US-WA", + "region_name": "Washington" + }, + "ip": "216.160.83.57", + "port": 10876 + }, + "tags": [ + "preserve_original_event", + "forwarded", + "sflow" + ] +} + +``` + +## Requirements + +You need Elasticsearch for storing and searching your data and Kibana for visualizing and managing it. +You can use our hosted Elasticsearch Service on Elastic Cloud, which is recommended, or self-manage the Elastic Stack on your own hardware. + +You need GoFlow2 to create log files for sFlow traffic. +https://github.com/netsampler/goflow2 + +## Setup + +- Install integration and role out elastic agent +- Install GoFlow2 for sFlow logging + +Please use the following GoFlow2 mapping.yaml file: + +``` +# File: /etc/goflow2/mapping.yaml +formatter: + fields: # list of fields to format in JSON + - type + - time_flow_start_ns + - sampler_address + - sequence_num + - in_if + - out_if + - src_addr + - dst_addr + - etype + - proto + - src_port + - dst_port + - src_vlan + - dst_vlan + - sampling_rate + - bytes +``` + +The output sflow transport files must be stored in the directory ```/var/log/sflow/goflow2/``` + +Full command to run GoFlow2 for sflow traffic: +```shell +goflow2 -format json -listen "sflow://:6343" -mapping /etc/goflow2/mapping.yaml -transport.file /var/log/sflow/goflow2/goflow2.log +``` + +## Fields +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| input.type | Input type | keyword | +| log.file.device_id | Device Id of the log file this event came from. | keyword | +| log.file.inode | Inode of the log file this event came from. | keyword | +| log.offset | Log offset | long | +| sflow.bytes | Original size in bytes of the sample packet. | long | +| sflow.sample_rate | sample rate. | long | +| sflow.sequence_num | flow sequence number. | long | + diff --git a/packages/goflow2/img/goflow2-logo.svg b/packages/goflow2/img/goflow2-logo.svg new file mode 100644 index 000000000000..7203756394ad --- /dev/null +++ b/packages/goflow2/img/goflow2-logo.svg @@ -0,0 +1,435 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + diff --git a/packages/goflow2/manifest.yml b/packages/goflow2/manifest.yml new file mode 100644 index 000000000000..b2d8af2fe8a6 --- /dev/null +++ b/packages/goflow2/manifest.yml @@ -0,0 +1,29 @@ +format_version: 3.2.1 +name: goflow2 +title: "GoFlow2 logs" +version: 0.1.0 +description: "Collect logs from goflow2 with Elastic Agent." +type: integration +categories: + - network +conditions: + kibana: + version: "^8.11.0" + elastic: + subscription: "basic" +icons: + - src: /img/goflow2-logo.svg + title: goflow2 logo + size: 32x32 + type: image/svg+xml +policy_templates: + - name: goflow2 + title: goflow2 logs + description: Collect logs generated with goflow2 + inputs: + - type: filestream + title: Collect logs via log file + description: Collecting logs via log file +owner: + github: elastic/sec-deployment-and-devices + type: community From 0e5f903b6e5448f7045e0a3781a5f8dbc71bf5ca Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Fri, 9 Aug 2024 06:08:03 +0930 Subject: [PATCH 54/77] gcp: retain authenticationInfo.serviceAccountKeyName data (#10701) The serviceAccountDelegationInfo and thirdPartyPrincipal fields are dynamically defined by the protobuf contents, so they are stored as flattened fields. --- packages/gcp/changelog.yml | 5 ++ .../pipeline/test-audit.log-expected.json | 6 +++ .../elasticsearch/ingest_pipeline/default.yml | 47 ++++++++++--------- .../gcp/data_stream/audit/fields/fields.yml | 9 ++++ packages/gcp/docs/README.md | 3 ++ packages/gcp/docs/audit.md | 3 ++ packages/gcp/manifest.yml | 2 +- 7 files changed, 53 insertions(+), 22 deletions(-) diff --git a/packages/gcp/changelog.yml b/packages/gcp/changelog.yml index 268b66222b4e..646cd3e0d071 100644 --- a/packages/gcp/changelog.yml +++ b/packages/gcp/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.37.0" + changes: + - description: Retain `authenticationInfo.serviceAccountKeyName` data. + type: enhancement + link: https://github.com/elastic/integrations/pull/10701 - version: "2.36.0" changes: - description: Add global dataset filter for dashboards to improve performance. diff --git a/packages/gcp/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json b/packages/gcp/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json index be1f9bc5036f..1413c3ad0b94 100644 --- a/packages/gcp/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json +++ b/packages/gcp/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json @@ -1017,6 +1017,9 @@ }, "gcp": { "audit": { + "authentication_info": { + "service_account_key_name": "//xxx@xxx" + }, "authorization_info": [ { "granted": true, @@ -1835,6 +1838,9 @@ }, "gcp": { "audit": { + "authentication_info": { + "service_account_key_name": "//xxx@xxx" + }, "authorization_info": [ { "granted": true, diff --git a/packages/gcp/data_stream/audit/elasticsearch/ingest_pipeline/default.yml b/packages/gcp/data_stream/audit/elasticsearch/ingest_pipeline/default.yml index 1b71bfcf1c04..aeb43637671b 100644 --- a/packages/gcp/data_stream/audit/elasticsearch/ingest_pipeline/default.yml +++ b/packages/gcp/data_stream/audit/elasticsearch/ingest_pipeline/default.yml @@ -111,41 +111,46 @@ processors: # .protoPayload.authenticationInfo # https://cloud.google.com/logging/docs/reference/audit/auditlog/rest/Shared.Types/AuditLog#AuthenticationInfo ## -# email address of authenticated user (redacted) or service account -# principalEmail -> client.user.email - - set: - field: client.user.email - copy_from: json.protoPayload.authenticationInfo.principalEmail + - rename: + field: json.protoPayload.authenticationInfo.authoritySelector + target_field: gcp.audit.authentication_info.authority_selector ignore_failure: true -# identity of requesting first or third party -# principalSubject -> client.user.id - - set: - field: client.user.id - copy_from: json.protoPayload.authenticationInfo.principalSubject + - rename: + field: json.protoPayload.authenticationInfo.principalEmail + target_field: gcp.audit.authentication_info.principal_email ignore_failure: true - - set: - field: gcp.audit.authentication_info.authority_selector - copy_from: json.protoPayload.authenticationInfo.authoritySelector + - rename: + field: json.protoPayload.authenticationInfo.principalSubject + target_field: gcp.audit.authentication_info.principal_subject + ignore_failure: true + - rename: + field: json.protoPayload.authenticationInfo.serviceAccountKeyName + target_field: gcp.audit.authentication_info.service_account_key_name + ignore_failure: true + - rename: + field: json.protoPayload.authenticationInfo.serviceAccountDelegationInfo + target_field: gcp.audit.authentication_info.service_account_delegation_info + ignore_failure: true + - rename: + field: json.protoPayload.authenticationInfo.thirdPartyPrincipal + target_field: gcp.audit.authentication_info.third_party_principal ignore_failure: true + # email address of authenticated user (redacted) or service account + # principal_email -> client.user.email - rename: field: gcp.audit.authentication_info.principal_email target_field: client.user.email if: ctx.client?.user?.email == null ignore_missing: true - - remove: - field: gcp.audit.authentication_info.principal_email - if: ctx.client?.user?.email == ctx.gcp?.audit?.authentication_info?.principal_email - ignore_missing: true + # identity of requesting first or third party + # principal_subject -> client.user.id - rename: field: gcp.audit.authentication_info.principal_subject target_field: client.user.id if: ctx.client?.user?.id == null ignore_missing: true - - remove: - field: gcp.audit.authentication_info.principal_subject - if: ctx.client?.user?.id == ctx.gcp?.audit?.authentication_info?.principal_subject - ignore_missing: true + ## # AuthorizationInfo # .protoPayload.authorizationInfo diff --git a/packages/gcp/data_stream/audit/fields/fields.yml b/packages/gcp/data_stream/audit/fields/fields.yml index 52f5d6846069..2c7d5fd53641 100644 --- a/packages/gcp/data_stream/audit/fields/fields.yml +++ b/packages/gcp/data_stream/audit/fields/fields.yml @@ -17,6 +17,15 @@ - name: principal_subject type: keyword description: "String representation of identity of requesting party. Populated for both first and third party identities. Only present for APIs that support third-party identities." + - name: service_account_key_name + type: keyword + description: "The service account key that was used to request the OAuth 2.0 access token. This field identifies the service account key by its full resource name." + - name: service_account_delegation_info + type: flattened + description: "Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events." + - name: third_party_principal + type: flattened + description: "The third party identification (if any) of the authenticated user making the request. When the JSON object represented here has a proto equivalent, the proto name will be indicated in the @type property." - name: authorization_info type: nested description: | diff --git a/packages/gcp/docs/README.md b/packages/gcp/docs/README.md index bbc14a8b8cd9..e0bad49f0913 100644 --- a/packages/gcp/docs/README.md +++ b/packages/gcp/docs/README.md @@ -233,6 +233,9 @@ Please refer to the following [document](https://www.elastic.co/guide/en/ecs/cur | gcp.audit.authentication_info.authority_selector | The authority selector specified by the requestor, if any. It is not guaranteed that the principal was allowed to use this authority. | keyword | | gcp.audit.authentication_info.principal_email | The email address of the authenticated user making the request. | keyword | | gcp.audit.authentication_info.principal_subject | String representation of identity of requesting party. Populated for both first and third party identities. Only present for APIs that support third-party identities. | keyword | +| gcp.audit.authentication_info.service_account_delegation_info | Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events. | flattened | +| gcp.audit.authentication_info.service_account_key_name | The service account key that was used to request the OAuth 2.0 access token. This field identifies the service account key by its full resource name. | keyword | +| gcp.audit.authentication_info.third_party_principal | The third party identification (if any) of the authenticated user making the request. When the JSON object represented here has a proto equivalent, the proto name will be indicated in the @type property. | flattened | | gcp.audit.authorization_info.granted | Whether or not authorization for resource and permission was granted. | boolean | | gcp.audit.authorization_info.permission | The required IAM permission. | keyword | | gcp.audit.authorization_info.resource | The resource being accessed, as a REST-style string. | keyword | diff --git a/packages/gcp/docs/audit.md b/packages/gcp/docs/audit.md index cb377d50bec0..00194adda03f 100644 --- a/packages/gcp/docs/audit.md +++ b/packages/gcp/docs/audit.md @@ -22,6 +22,9 @@ Please refer to the following [document](https://www.elastic.co/guide/en/ecs/cur | gcp.audit.authentication_info.authority_selector | The authority selector specified by the requestor, if any. It is not guaranteed that the principal was allowed to use this authority. | keyword | | gcp.audit.authentication_info.principal_email | The email address of the authenticated user making the request. | keyword | | gcp.audit.authentication_info.principal_subject | String representation of identity of requesting party. Populated for both first and third party identities. Only present for APIs that support third-party identities. | keyword | +| gcp.audit.authentication_info.service_account_delegation_info | Identity delegation history of an authenticated service account that makes the request. It contains information on the real authorities that try to access GCP resources by delegating on a service account. When multiple authorities present, they are guaranteed to be sorted based on the original ordering of the identity delegation events. | flattened | +| gcp.audit.authentication_info.service_account_key_name | The service account key that was used to request the OAuth 2.0 access token. This field identifies the service account key by its full resource name. | keyword | +| gcp.audit.authentication_info.third_party_principal | The third party identification (if any) of the authenticated user making the request. When the JSON object represented here has a proto equivalent, the proto name will be indicated in the @type property. | flattened | | gcp.audit.authorization_info.granted | Whether or not authorization for resource and permission was granted. | boolean | | gcp.audit.authorization_info.permission | The required IAM permission. | keyword | | gcp.audit.authorization_info.resource | The resource being accessed, as a REST-style string. | keyword | diff --git a/packages/gcp/manifest.yml b/packages/gcp/manifest.yml index d090c75c8f9a..89a3f968d50d 100644 --- a/packages/gcp/manifest.yml +++ b/packages/gcp/manifest.yml @@ -1,6 +1,6 @@ name: gcp title: Google Cloud Platform -version: "2.36.0" +version: "2.37.0" description: Collect logs and metrics from Google Cloud Platform with Elastic Agent. type: integration icons: From e204834e001f26bf1a2a5c89062998968c9b57db Mon Sep 17 00:00:00 2001 From: Tiago Queiroz Date: Thu, 8 Aug 2024 23:16:45 +0200 Subject: [PATCH 55/77] Add search reference that was removed from Elastic-Agent dashboard (#10728) This commit re-adds a search that was removed by accident from the [Elastic Agent] Agent Info dashboard and add an exception to the lint so the package can be compiled. --- packages/elastic_agent/changelog.yml | 5 +++++ .../elastic_agent-0600ffa0-6b5e-11ed-98de-67bdecd21824.json | 5 +++++ packages/elastic_agent/manifest.yml | 2 +- packages/elastic_agent/validation.yml | 1 + 4 files changed, 12 insertions(+), 1 deletion(-) diff --git a/packages/elastic_agent/changelog.yml b/packages/elastic_agent/changelog.yml index 7306ae40fe93..89f32b0f7f5d 100644 --- a/packages/elastic_agent/changelog.yml +++ b/packages/elastic_agent/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.0.2" + changes: + - description: Restore Agent errors visualisation + type: bugfix + link: "https://github.com/elastic/integrations/pull/10728" - version: "2.0.1" changes: - description: Add back apm-server metrics dropped due to TSDB diff --git a/packages/elastic_agent/kibana/dashboard/elastic_agent-0600ffa0-6b5e-11ed-98de-67bdecd21824.json b/packages/elastic_agent/kibana/dashboard/elastic_agent-0600ffa0-6b5e-11ed-98de-67bdecd21824.json index 6203a23e2c45..c18925decbfa 100644 --- a/packages/elastic_agent/kibana/dashboard/elastic_agent-0600ffa0-6b5e-11ed-98de-67bdecd21824.json +++ b/packages/elastic_agent/kibana/dashboard/elastic_agent-0600ffa0-6b5e-11ed-98de-67bdecd21824.json @@ -869,6 +869,11 @@ "name": "5848c519-791c-45e2-b350-0740a12c3ace:indexpattern-datasource-layer-501c5bb4-5af0-46bf-99c1-e08ed2c31111", "type": "index-pattern" }, + { + "id": "elastic_agent-522c9e20-ad53-11ed-957f-f1c897630287", + "name": "9604578e-7da2-4575-923e-f15e51bca436:panel_9604578e-7da2-4575-923e-f15e51bca436", + "type": "search" + }, { "id": "logs-*", "name": "controlGroup_280071dd-16c7-4610-bae7-bc8f07cc6a1b:optionsListDataView", diff --git a/packages/elastic_agent/manifest.yml b/packages/elastic_agent/manifest.yml index 75c657fdfc42..f8e54d430311 100644 --- a/packages/elastic_agent/manifest.yml +++ b/packages/elastic_agent/manifest.yml @@ -1,6 +1,6 @@ name: elastic_agent title: Elastic Agent -version: 2.0.1 +version: 2.0.2 description: Collect logs and metrics from Elastic Agents. type: integration format_version: 3.1.4 diff --git a/packages/elastic_agent/validation.yml b/packages/elastic_agent/validation.yml index bcc8f74ac3af..99999428b3f8 100644 --- a/packages/elastic_agent/validation.yml +++ b/packages/elastic_agent/validation.yml @@ -1,3 +1,4 @@ errors: exclude_checks: - SVR00002 + - SVR00004 From 76c4c3f450ee4b3e41f14cfca8ebc039b216ce23 Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Fri, 9 Aug 2024 14:59:11 +0930 Subject: [PATCH 56/77] mimecast: add message release logs data stream (#10732) --- packages/mimecast/_dev/build/docs/README.md | 11 + .../_dev/deploy/docker/files/config.yml | 136 ++++ packages/mimecast/changelog.yml | 5 + .../_dev/test/pipeline/test-common-config.yml | 3 + .../_dev/test/pipeline/test-release-logs.json | 19 + .../test-release-logs.json-expected.json | 718 ++++++++++++++++++ .../_dev/test/system/test-default-config.yml | 16 + .../agent/stream/cel.yml.hbs | 105 +++ .../elasticsearch/ingest_pipeline/default.yml | 228 ++++++ .../message_release_logs/fields/agent.yml | 39 + .../fields/base-fields.yml | 20 + .../message_release_logs/fields/field.yml | 164 ++++ .../message_release_logs/manifest.yml | 66 ++ .../message_release_logs/sample_event.json | 165 ++++ packages/mimecast/docs/README.md | 234 ++++++ packages/mimecast/manifest.yml | 48 +- 16 files changed, 1975 insertions(+), 2 deletions(-) create mode 100644 packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-release-logs.json create mode 100644 packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-release-logs.json-expected.json create mode 100644 packages/mimecast/data_stream/message_release_logs/_dev/test/system/test-default-config.yml create mode 100644 packages/mimecast/data_stream/message_release_logs/agent/stream/cel.yml.hbs create mode 100644 packages/mimecast/data_stream/message_release_logs/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/mimecast/data_stream/message_release_logs/fields/agent.yml create mode 100644 packages/mimecast/data_stream/message_release_logs/fields/base-fields.yml create mode 100644 packages/mimecast/data_stream/message_release_logs/fields/field.yml create mode 100644 packages/mimecast/data_stream/message_release_logs/manifest.yml create mode 100644 packages/mimecast/data_stream/message_release_logs/sample_event.json diff --git a/packages/mimecast/_dev/build/docs/README.md b/packages/mimecast/_dev/build/docs/README.md index 0285f796f86f..089ae97f5749 100644 --- a/packages/mimecast/_dev/build/docs/README.md +++ b/packages/mimecast/_dev/build/docs/README.md @@ -48,6 +48,17 @@ https://integrations.mimecast.com/documentation/endpoint-reference/logs-and-stat {{fields "dlp_logs"}} +### Message Release Logs + +This is the `mimecast.message_release_logs` dataset. These logs contain information about +messages that were either released to the recipient, with details about the user that +processed the release. More information about [these logs]( +https://integrations.mimecast.com/documentation/endpoint-reference/logs-and-statistics/get-message-release-logs/). + +{{event "message_release_logs"}} + +{{fields "message_release_logs"}} + ### SIEM Logs This is the `mimecast.siem_logs` dataset. These logs contain information about diff --git a/packages/mimecast/_dev/deploy/docker/files/config.yml b/packages/mimecast/_dev/deploy/docker/files/config.yml index 951d8daf86d5..afe4709aa0a5 100644 --- a/packages/mimecast/_dev/deploy/docker/files/config.yml +++ b/packages/mimecast/_dev/deploy/docker/files/config.yml @@ -230,3 +230,139 @@ rules: - "application/json" body: |- {"meta":{"status":200,"pagination":{"pageSize":10,"totalCount":20,"next": "nextToken"}},"data":[{"clickLogs":[{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.com/alerts/feeds/00259755281018227146/14369994449842858162","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - dollar","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"N/A","date":"2021-11-10T08:55:53+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<11-0000000000004109b705d06b609c@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.co.za/alerts?source=alertsmail&hl=en&gl=US&msgid=MTgzMTU0Mzc2MTA3OTY3MzIxNw&s=AB2Xq4g-GUg7dJreWJN14pFdqYo0nYsyiVX2dK8&ffu=","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - china","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"Continue","date":"2021-11-10T08:50:37+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<12-00000000000079a99a05d06b4d20@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.com/url?rct=j&sa=t&url=https://texassports.com/news/2021/11/10/no-5-5-mens-basketball-tops-houston-baptist-in-season-opener-92-48.aspx&ct=ga&cd=CAEYACoUMTEzMjI3MjkwNzM0OTE1Nzg0NDMyHGMzNzg3MjBmODY3MWM2MGY6Y29tOmVuOlVTOkw&usg=AFQjCNG4_460IiZmbwJkDzkFkQC5-htSxw","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - news","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"Continue","date":"2021-11-10T08:28:18+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<13-0000000000005fa4e905d06afd8f@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.co.za/alerts/feedback?ffu=https://www.ft.com/content/4d61fac4-e3f3-401b-bca2-6e94ff47e2cc&source=alertsmail&hl=en&gl=US&msgid=MTM1OTYyMDAwNTE0MzU3NjA0NjI&s=AB2Xq4g-GUg7dJreWJN14pFdqYo0nYsyiVX2dK8","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - china","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"Continue","date":"2021-11-10T07:50:16+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<14-000000000000eb13ab05d06a76fc@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.com/alerts/feedback?ffu=https://www.fox7austin.com/news/search-for-suspect-involved-in-aggravated-robbery-at-family-dollar&source=alertsmail&hl=en&gl=US&msgid=ODM0MDY5Nzg2NzI3NDkxMjUwNg&s=AB2Xq4i7OaFz4ss3vFU-wNb0DTELEKxhyDdFl54","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - dollar","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"Continue","date":"2021-11-10T06:55:34+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<15-0000000000001ddf7205d069b36e@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.co.za/alerts?source=alertsmail&hl=en&gl=US&msgid=NDgxNzM4MzYwOTM2NzY1MDg2Ng","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - china","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"Continue","date":"2021-11-10T06:50:16+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<16-000000000000567c2105d069a0ce@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.com/alerts/share?hl=en&gl=US&ru=https://www.ctvnews.ca/world/judge-denies-trump-s-overnight-request-for-injunction-in-executive-privilege-case-1.5658613&ss=tw&rt=Judge+denies+Trump%27s+overnight+request+for+injunction+in+executive+privilege+case+%7C+CTV+News&cd=KhM2MTQ1MDcxODY2MDQ5NTY2MDk2Mhw1MzNlMDE2OWZhYWUyMDBkOmNvbTplbjpVUzpM&ssp=AMJHsmXlnSoHb_ZABC-riiVXrxFyWhlMpQ","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - Trump","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"Continue","date":"2021-11-10T05:11:56+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<17-000000000000e78cfa05d0683fab@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.com/alerts?s=AB2Xq4i7OaFz4ss3vFU-wNb0DTELEKxhyDdFl54&start=1636516479&end=1636520078&source=alertsmail&hl=en&gl=US&msgid=MTMyNTI1OTY4MzI3OTI0NDc4MTU#history","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - dollar","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"Continue","date":"2021-11-10T04:55:34+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<18-000000000000f2696405d0680583@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.gstati","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - dollar","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Unknown","sendingIp":"8.8.8.8","userAwarenessAction":"N/A","date":"2021-11-10T03:55:09+0000","actions":"Browser Isolation","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<19-00000000000065020205d0672f01@google.com>"},{"userEmailAddress":"johndoe@example.com","fromUserEmailAddress":"googlealerts-noreply@google.com","url":"https://www.google.co.za/alerts/share?hl=en&gl=US&ru=https://www.wsj.com/articles/u-s-tests-israels-iron-dome-in-guam-as-defense-against-chinese-cruise-missiles-11636455224&ss=tw&rt=U.S.+Tests+Israel%27s+Iron+Dome+in+Guam+as+Defense+Against+Chinese+Cruise+Missiles+-+WSJ&cd=KhQxNzg2NTc5NDQ3ODIzODUyNjI5NzIcZmQ4N2VjYzkxMGIxMWE4Yzpjby56YTplbjpVUw&ssp=AMJHsmW3CCK1S4TNPifSXszcyaNMwd6TDg","ttpDefinition":"Inbound URL 'Aggressive'","subject":"Google Alert - china","action":"allow","adminOverride":"N/A","userOverride":"None","scanResult":"clean","category":"Search Engines & Portals","sendingIp":"8.8.8.8","userAwarenessAction":"Continue","date":"2021-11-10T03:49:53+0000","actions":"Allow","route":"inbound","creationMethod":"User Click","emailPartsDescription":["Body"],"messageId":"<20-000000000000a02a0a05d0671c06@google.com>"}]}],"fail":[]} + - path: /api/gateway/get-held-release-logs + methods: ["POST"] + request_body: /"meta":\{"pagination":\{"pageSize":100\}\}/ + request_headers: + authorization: ["MC .*"] + responses: + - status_code: 200 + headers: + Content-Type: + - "application/json" + body: |- + {{ minify_json ` + { + "fail": [], + "meta": { + "status": 200, + "pagination": { + "pageSize": 25, + "next": "String", + "previous": "String" + } + }, + "data": [ + { + "heldReleaseLogs": [ + { + "spamProcessingDetail": { + "greyEmail": true, + "permittedSender": { + "allow": true, + "info": "allow" + }, + "managedSender": { + "allow": true, + "info": "allow" + }, + "dkim": { + "allow": true, + "info": "allow" + }, + "spf": { + "allow": true, + "info": "allow" + }, + "rbl": { + "allow": true, + "info": "allow" + }, + "dmarc": { + "allow": true, + "info": "allow" + }, + "spamVerdict": { + "decision": "spam", + "description": "", + "risk": "low", + "categories": [ + { + "name": "spam", + "risk": "low", + "subcategories": [ + { + "name": "phishing", + "risk": "low", + "augmentations": [ + { + "name": "body", + "risk": "negligible" + } + ] + } + ] + } + ] + } + }, + "attachments": true, + "messageInfo": "Expired in queue - rejected by housekeeping", + "subject": "Exclusive Offer - You don't want to miss this!", + "detectionLevel": "moderate", + "heldGroup": "IT Staff Global", + "operator": "admin@domain.tld", + "fromEnv": { + "emailAddress": "user@domain.tld", + "displayableName": "FirstName LastName" + }, + "rejectReason": "Message contains undesirable content", + "route": "inbound", + "size": 5043, + "heldReason": "High-Confidence Impersonation Protection", + "spamScore": 12, + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "to": [ + { + "emailAddress": "user@domain.tld", + "displayableName": "FirstName LastName" + } + ], + "released": "2015-11-25T14:49:18+00:00", + "fromHdr": { + "emailAddress": "user@domain.tld", + "displayableName": "FirstName LastName" + }, + "status": "released", + "policy": "Moderate Spam Detection" + } + ] + } + ] + } + `}} + - path: /api/gateway/get-held-release-logs + methods: ["POST"] + request_body: /"meta":\{"pagination":\{"pageSize":100,"pageToken":"String"\}\}/ + request_headers: + authorization: ["MC .*"] + responses: + - status_code: 200 + headers: + Content-Type: + - "application/json" + body: |- + {{ minify_json ` + { + "fail": [], + "meta": { + "status": 200, + "pagination": { + "pageSize": 25, + "next": "String", + "previous": "String" + } + }, + "data": [] + } + `}} diff --git a/packages/mimecast/changelog.yml b/packages/mimecast/changelog.yml index 1e9637341a89..eadfb8111ea0 100644 --- a/packages/mimecast/changelog.yml +++ b/packages/mimecast/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.27.0" + changes: + - description: Add support for message release logs. + type: enhancement + link: https://github.com/elastic/integrations/pull/10732 - version: "1.26.1" changes: - description: Fix handling of email addresses with comma in quoted name. diff --git a/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-common-config.yml b/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..4da226416540 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,3 @@ +fields: + tags: + - preserve_original_event diff --git a/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-release-logs.json b/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-release-logs.json new file mode 100644 index 000000000000..f2b7e0999a89 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-release-logs.json @@ -0,0 +1,19 @@ +{ + "events": [ + { + "message": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"inbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"displayableName\":\"ToName LastName\",\"emailAddress\":\"to_user@to_domain.tld\"}]}" + }, + { + "message": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"outbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"displayableName\":\"ToName LastName\",\"emailAddress\":\"to_user@to_domain.tld\"}]}" + }, + { + "message": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"inbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"emailAddress\":\"to_user@to_domain.tld\"}]}" + }, + { + "message": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"outbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"emailAddress\":\"to_user@to_domain.tld\"}]}" + }, + { + "message": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"route\":\"outbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"emailAddress\":\"to_user@to_domain.tld\"}]}" + } + ] +} \ No newline at end of file diff --git a/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-release-logs.json-expected.json b/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-release-logs.json-expected.json new file mode 100644 index 000000000000..ce44035374e4 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/_dev/test/pipeline/test-release-logs.json-expected.json @@ -0,0 +1,718 @@ +{ + "expected": [ + { + "@timestamp": "2015-11-25T14:49:18.000Z", + "ecs": { + "version": "8.11.0" + }, + "email": { + "direction": "inbound", + "from": { + "address": [ + "from_user@from_domain.tld" + ] + }, + "local_id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": { + "address": [ + "to_user@to_domain.tld" + ] + } + }, + "event": { + "action": "released", + "category": [ + "email" + ], + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "kind": "event", + "original": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"inbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"displayableName\":\"ToName LastName\",\"emailAddress\":\"to_user@to_domain.tld\"}]}", + "reason": "Message contains undesirable content", + "risk_score": 12, + "type": [ + "info" + ] + }, + "mimecast": { + "message_release_logs": { + "attachments": true, + "detectionLevel": "moderate", + "fromEnv": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "fromHdr": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "heldGroup": "IT Staff Global", + "heldReason": "High-Confidence Impersonation Protection", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "messageInfo": "Expired in queue - rejected by housekeeping", + "operator": "admin@domain.tld", + "policy": "Moderate Spam Detection", + "rejectReason": "Message contains undesirable content", + "released": "2015-11-25T14:49:18+00:00", + "route": "inbound", + "size": 5043, + "spamProcessingDetail": { + "dkim": { + "allow": true, + "info": "allow" + }, + "dmarc": { + "allow": true, + "info": "allow" + }, + "greyEmail": true, + "managedSender": { + "allow": true, + "info": "allow" + }, + "permittedSender": { + "allow": true, + "info": "allow" + }, + "rbl": { + "allow": true, + "info": "allow" + }, + "spamVerdict": { + "categories": [ + { + "name": "spam", + "risk": "low", + "subcategories": [ + { + "augmentations": [ + { + "name": "body", + "risk": "negligible" + } + ], + "name": "phishing", + "risk": "low" + } + ] + } + ], + "decision": "spam", + "risk": "low" + }, + "spf": { + "allow": true, + "info": "allow" + } + }, + "spamScore": 12, + "status": "released", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": [ + { + "displayableName": "ToName LastName", + "emailAddress": "to_user@to_domain.tld" + } + ] + } + }, + "related": { + "hosts": [ + "domain.tld", + "from_domain.tld", + "to_domain.tld" + ], + "user": [ + "FromName LastName", + "ToName LastName", + "admin", + "admin@domain.tld", + "from_user", + "from_user@from_domain.tld", + "to_user", + "to_user@to_domain.tld" + ] + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "email": [ + "to_user@to_domain.tld" + ], + "full_name": [ + "ToName LastName" + ] + } + }, + { + "@timestamp": "2015-11-25T14:49:18.000Z", + "ecs": { + "version": "8.11.0" + }, + "email": { + "direction": "outbound", + "from": { + "address": [ + "from_user@from_domain.tld" + ] + }, + "local_id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": { + "address": [ + "to_user@to_domain.tld" + ] + } + }, + "event": { + "action": "released", + "category": [ + "email" + ], + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "kind": "event", + "original": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"outbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"displayableName\":\"ToName LastName\",\"emailAddress\":\"to_user@to_domain.tld\"}]}", + "reason": "Message contains undesirable content", + "risk_score": 12, + "type": [ + "info" + ] + }, + "mimecast": { + "message_release_logs": { + "attachments": true, + "detectionLevel": "moderate", + "fromEnv": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "fromHdr": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "heldGroup": "IT Staff Global", + "heldReason": "High-Confidence Impersonation Protection", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "messageInfo": "Expired in queue - rejected by housekeeping", + "operator": "admin@domain.tld", + "policy": "Moderate Spam Detection", + "rejectReason": "Message contains undesirable content", + "released": "2015-11-25T14:49:18+00:00", + "route": "outbound", + "size": 5043, + "spamProcessingDetail": { + "dkim": { + "allow": true, + "info": "allow" + }, + "dmarc": { + "allow": true, + "info": "allow" + }, + "greyEmail": true, + "managedSender": { + "allow": true, + "info": "allow" + }, + "permittedSender": { + "allow": true, + "info": "allow" + }, + "rbl": { + "allow": true, + "info": "allow" + }, + "spamVerdict": { + "categories": [ + { + "name": "spam", + "risk": "low", + "subcategories": [ + { + "augmentations": [ + { + "name": "body", + "risk": "negligible" + } + ], + "name": "phishing", + "risk": "low" + } + ] + } + ], + "decision": "spam", + "risk": "low" + }, + "spf": { + "allow": true, + "info": "allow" + } + }, + "spamScore": 12, + "status": "released", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": [ + { + "displayableName": "ToName LastName", + "emailAddress": "to_user@to_domain.tld" + } + ] + } + }, + "related": { + "hosts": [ + "domain.tld", + "from_domain.tld", + "to_domain.tld" + ], + "user": [ + "FromName LastName", + "ToName LastName", + "admin", + "admin@domain.tld", + "from_user", + "from_user@from_domain.tld", + "to_user", + "to_user@to_domain.tld" + ] + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "email": [ + "from_user@from_domain.tld" + ], + "full_name": [ + "FromName LastName" + ] + } + }, + { + "@timestamp": "2015-11-25T14:49:18.000Z", + "ecs": { + "version": "8.11.0" + }, + "email": { + "direction": "inbound", + "from": { + "address": [ + "from_user@from_domain.tld" + ] + }, + "local_id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": { + "address": [ + "to_user@to_domain.tld" + ] + } + }, + "event": { + "action": "released", + "category": [ + "email" + ], + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "kind": "event", + "original": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"inbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"emailAddress\":\"to_user@to_domain.tld\"}]}", + "reason": "Message contains undesirable content", + "risk_score": 12, + "type": [ + "info" + ] + }, + "mimecast": { + "message_release_logs": { + "attachments": true, + "detectionLevel": "moderate", + "fromEnv": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "fromHdr": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "heldGroup": "IT Staff Global", + "heldReason": "High-Confidence Impersonation Protection", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "messageInfo": "Expired in queue - rejected by housekeeping", + "operator": "admin@domain.tld", + "policy": "Moderate Spam Detection", + "rejectReason": "Message contains undesirable content", + "released": "2015-11-25T14:49:18+00:00", + "route": "inbound", + "size": 5043, + "spamProcessingDetail": { + "dkim": { + "allow": true, + "info": "allow" + }, + "dmarc": { + "allow": true, + "info": "allow" + }, + "greyEmail": true, + "managedSender": { + "allow": true, + "info": "allow" + }, + "permittedSender": { + "allow": true, + "info": "allow" + }, + "rbl": { + "allow": true, + "info": "allow" + }, + "spamVerdict": { + "categories": [ + { + "name": "spam", + "risk": "low", + "subcategories": [ + { + "augmentations": [ + { + "name": "body", + "risk": "negligible" + } + ], + "name": "phishing", + "risk": "low" + } + ] + } + ], + "decision": "spam", + "risk": "low" + }, + "spf": { + "allow": true, + "info": "allow" + } + }, + "spamScore": 12, + "status": "released", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": [ + { + "emailAddress": "to_user@to_domain.tld" + } + ] + } + }, + "related": { + "hosts": [ + "domain.tld", + "from_domain.tld", + "to_domain.tld" + ], + "user": [ + "FromName LastName", + "admin", + "admin@domain.tld", + "from_user", + "from_user@from_domain.tld", + "to_user", + "to_user@to_domain.tld" + ] + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "email": [ + "to_user@to_domain.tld" + ] + } + }, + { + "@timestamp": "2015-11-25T14:49:18.000Z", + "ecs": { + "version": "8.11.0" + }, + "email": { + "direction": "outbound", + "from": { + "address": [ + "from_user@from_domain.tld" + ] + }, + "local_id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": { + "address": [ + "to_user@to_domain.tld" + ] + } + }, + "event": { + "action": "released", + "category": [ + "email" + ], + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "kind": "event", + "original": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"outbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"emailAddress\":\"to_user@to_domain.tld\"}]}", + "reason": "Message contains undesirable content", + "risk_score": 12, + "type": [ + "info" + ] + }, + "mimecast": { + "message_release_logs": { + "attachments": true, + "detectionLevel": "moderate", + "fromEnv": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "fromHdr": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "heldGroup": "IT Staff Global", + "heldReason": "High-Confidence Impersonation Protection", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "messageInfo": "Expired in queue - rejected by housekeeping", + "operator": "admin@domain.tld", + "policy": "Moderate Spam Detection", + "rejectReason": "Message contains undesirable content", + "released": "2015-11-25T14:49:18+00:00", + "route": "outbound", + "size": 5043, + "spamProcessingDetail": { + "dkim": { + "allow": true, + "info": "allow" + }, + "dmarc": { + "allow": true, + "info": "allow" + }, + "greyEmail": true, + "managedSender": { + "allow": true, + "info": "allow" + }, + "permittedSender": { + "allow": true, + "info": "allow" + }, + "rbl": { + "allow": true, + "info": "allow" + }, + "spamVerdict": { + "categories": [ + { + "name": "spam", + "risk": "low", + "subcategories": [ + { + "augmentations": [ + { + "name": "body", + "risk": "negligible" + } + ], + "name": "phishing", + "risk": "low" + } + ] + } + ], + "decision": "spam", + "risk": "low" + }, + "spf": { + "allow": true, + "info": "allow" + } + }, + "spamScore": 12, + "status": "released", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": [ + { + "emailAddress": "to_user@to_domain.tld" + } + ] + } + }, + "related": { + "hosts": [ + "domain.tld", + "from_domain.tld", + "to_domain.tld" + ], + "user": [ + "FromName LastName", + "admin", + "admin@domain.tld", + "from_user", + "from_user@from_domain.tld", + "to_user", + "to_user@to_domain.tld" + ] + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "email": [ + "from_user@from_domain.tld" + ], + "full_name": [ + "FromName LastName" + ] + } + }, + { + "ecs": { + "version": "8.11.0" + }, + "email": { + "direction": "outbound", + "from": { + "address": [ + "from_user@from_domain.tld" + ] + }, + "local_id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": { + "address": [ + "to_user@to_domain.tld" + ] + } + }, + "event": { + "action": "released", + "category": [ + "email" + ], + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "kind": "event", + "original": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"fromHdr\":{\"displayableName\":\"FromName LastName\",\"emailAddress\":\"from_user@from_domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"route\":\"outbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"emailAddress\":\"to_user@to_domain.tld\"}]}", + "reason": "Message contains undesirable content", + "risk_score": 12, + "type": [ + "info" + ] + }, + "mimecast": { + "message_release_logs": { + "attachments": true, + "detectionLevel": "moderate", + "fromEnv": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "fromHdr": { + "displayableName": "FromName LastName", + "emailAddress": "from_user@from_domain.tld" + }, + "heldGroup": "IT Staff Global", + "heldReason": "High-Confidence Impersonation Protection", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "messageInfo": "Expired in queue - rejected by housekeeping", + "operator": "admin@domain.tld", + "policy": "Moderate Spam Detection", + "rejectReason": "Message contains undesirable content", + "route": "outbound", + "size": 5043, + "spamProcessingDetail": { + "dkim": { + "allow": true, + "info": "allow" + }, + "dmarc": { + "allow": true, + "info": "allow" + }, + "greyEmail": true, + "managedSender": { + "allow": true, + "info": "allow" + }, + "permittedSender": { + "allow": true, + "info": "allow" + }, + "rbl": { + "allow": true, + "info": "allow" + }, + "spamVerdict": { + "categories": [ + { + "name": "spam", + "risk": "low", + "subcategories": [ + { + "augmentations": [ + { + "name": "body", + "risk": "negligible" + } + ], + "name": "phishing", + "risk": "low" + } + ] + } + ], + "decision": "spam", + "risk": "low" + }, + "spf": { + "allow": true, + "info": "allow" + } + }, + "spamScore": 12, + "status": "released", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": [ + { + "emailAddress": "to_user@to_domain.tld" + } + ] + } + }, + "related": { + "hosts": [ + "domain.tld", + "from_domain.tld", + "to_domain.tld" + ], + "user": [ + "FromName LastName", + "admin", + "admin@domain.tld", + "from_user", + "from_user@from_domain.tld", + "to_user", + "to_user@to_domain.tld" + ] + }, + "tags": [ + "preserve_original_event" + ], + "user": { + "email": [ + "from_user@from_domain.tld" + ], + "full_name": [ + "FromName LastName" + ] + } + } + ] +} \ No newline at end of file diff --git a/packages/mimecast/data_stream/message_release_logs/_dev/test/system/test-default-config.yml b/packages/mimecast/data_stream/message_release_logs/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..9947f43a0b86 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/_dev/test/system/test-default-config.yml @@ -0,0 +1,16 @@ +input: cel +service: mimecast +vars: + api_url: http://{{Hostname}}:{{Port}} + access_key: test + secret_key: dGVzdAo= + app_id: test + app_key: test + initial_interval: 24h + batch_size: 100 +data_stream: + vars: + preserve_original_event: true + enable_request_tracer: true +assert: + hit_count: 1 diff --git a/packages/mimecast/data_stream/message_release_logs/agent/stream/cel.yml.hbs b/packages/mimecast/data_stream/message_release_logs/agent/stream/cel.yml.hbs new file mode 100644 index 000000000000..8859bda53767 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/agent/stream/cel.yml.hbs @@ -0,0 +1,105 @@ +config_version: 2 +interval: {{interval}} +{{#if enable_request_tracer}} +resource.tracer.filename: "../../logs/cel/http-request-trace-*.ndjson" +resource.tracer.maxbackups: 5 +{{/if}} +resource.url: {{api_url}} +fields_under_root: true +keep_null: true +state: + access_key: {{access_key}} + secret_key: {{secret_key}} + app_id: {{app_id}} + app_key: {{app_key}} + page_size: {{batch_size}} + look_back: {{initial_interval}} +redact: + fields: + - secret_key + - access_key + - app_id + - app_key +program: | + state.with( + { + "time": now.format(time_layout.RFC1123), + "id": uuid(), + "data": state.?last_page.data.orValue([{ + "start": state.?cursor.last.orValue(now - duration(state.look_back)), + "end": now, + }]), + }.as(req, + post_request(state.url.trim_right("/") + "/api/gateway/get-held-release-logs", "application/json", + { + "meta": { + "pagination": { + "pageSize": state.page_size, + ?"pageToken": state.?last_page.next, + } + }, + "data": req.data, + }.encode_json() + ).with({ + "Header": { + "Authorization": ["MC " + state.access_key + ":" + [ + req.time, + req.id, + "/api/gateway/get-held-release-logs", + state.app_key + ].join(":").hmac("sha1", state.secret_key.base64_decode()).base64()], + "x-mc-app-id": [state.app_id], + "x-mc-date": [req.time], + "x-mc-req-id": [req.id], + "Content-Type": ["application/json"], + } + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body, + body.data.map(e, e.heldReleaseLogs).flatten().as(events, { + "events": events.map(e, {"message": e.encode_json()}), + "cursor": { + "last": ([now] + events.map(e, timestamp(e.released))).max(), + }, + ?"last_page": has(body.?meta.pagination.next) && size(events) != 0 ? + optional.of({ + ?"next": body.?meta.pagination.next, + "data": req.data, + }) + : + optional.none(), + "want_more": has(body.?meta.pagination.next) && size(events) != 0, + }) + ) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "POST:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + ) + ) + ) +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/mimecast/data_stream/message_release_logs/elasticsearch/ingest_pipeline/default.yml b/packages/mimecast/data_stream/message_release_logs/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..eeb86ca849f2 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,228 @@ +--- +description: Pipeline for processing Mimecast siem_logs. +processors: + # Generic event/ecs fields we always want to populate. + - set: + field: ecs.version + value: '8.11.0' + - fail: + tag: cel_failure + if: ctx.error?.message != null && ctx.message == null && ctx.event?.original == null + message: error message set and no data to process + - rename: + field: message + target_field: event.original + ignore_missing: true + if: ctx.event?.original == null + - json: + description: Parse 'message' JSON contents into a 'mimecast' object. + field: event.original + target_field: mimecast + + - date: + tag: parse_released_timestamp + description: Use 'mimecast.released' as the '@timestamp' + field: mimecast.released + if: ctx.mimecast?.released != null + timezone: UTC + formats: + - yyyy-MM-dd'T'HH:mm:ssZ + - yyyy-MM-dd'T'HH:mm:ssZZZZZ + - fingerprint: + fields: + - mimecast.id + - '@timestamp' + target_field: "_id" + ignore_missing: true + + - append: + field: email.from.address + value: '{{{mimecast.fromEnv.emailAddress}}}' + if: ctx.mimecast?.fromEnv?.emailAddress != null + allow_duplicates: false + - append: + field: email.from.address + value: '{{{mimecast.fromHdr.emailAddress}}}' + if: ctx.mimecast?.fromHdr?.emailAddress != null + allow_duplicates: false + - foreach: + field: mimecast.to + if: ctx.mimecast?.to instanceof List + processor: + append: + field: email.to.address + value: '{{{_ingest._value.emailAddress}}}' + allow_duplicates: false + - set: + field: email.direction + copy_from: mimecast.route + ignore_empty_value: true + - set: + field: email.local_id + copy_from: mimecast.id + ignore_empty_value: true + - set: + field: email.subject + copy_from: mimecast.subject + ignore_empty_value: true + + - set: + field: user.email + copy_from: email.from.address + ignore_empty_value: true + if: ctx.email.direction == 'outbound' + - append: + field: user.full_name + value: '{{{mimecast.fromEnv.displayableName}}}' + if: ctx.email.direction == 'outbound' && ctx.mimecast?.fromEnv?.emailAddress != null + - set: + field: user.email + copy_from: email.to.address + ignore_empty_value: true + if: ctx.email.direction == 'inbound' + - foreach: + field: mimecast.to + if: ctx.email.direction == 'inbound' && ctx.mimecast?.to instanceof List + processor: + append: + field: user.full_name + value: '{{{_ingest._value.displayableName}}}' + allow_duplicates: false + + - script: + description: Populate related.* fields. + lang: painless + ignore_failure: true + source: | + def splitmail(String email) { + String[] parts = email.splitOnToken("@"); + if (parts.length != 2) { + return null; + } + return parts; + } + def users = new HashSet(); + def hosts = new HashSet(); + if (ctx.mimecast?.fromEnv?.displayableName != null) { + users.add(ctx.mimecast.fromEnv.displayableName); + } + if (ctx.mimecast?.operator != null) { + def parts = splitmail(ctx.mimecast.operator); + if (parts != null) { + users.add(parts[0]); + hosts.add(parts[1]); + } + users.add(ctx.mimecast.operator); + } + if (ctx.mimecast?.fromEnv?.emailAddress != null) { + def parts = splitmail(ctx.mimecast.fromEnv.emailAddress); + if (parts != null) { + users.add(parts[0]); + hosts.add(parts[1]); + } + users.add(ctx.mimecast.fromEnv.emailAddress); + } + if (ctx.mimecast?.fromHdr?.displayableName != null) { + users.add(ctx.mimecast.fromHdr.displayableName); + } + if (ctx.mimecast?.fromHdr?.emailAddress != null) { + def parts = splitmail(ctx.mimecast.fromHdr.emailAddress); + if (parts != null) { + users.add(parts[0]); + hosts.add(parts[1]); + } + users.add(ctx.mimecast.fromHdr.emailAddress); + } + for (def to: ctx.mimecast.to) { + if (to.displayableName != null) { + users.add(to.displayableName); + } + if (to.emailAddress != null) { + def parts = splitmail(to.emailAddress); + if (parts != null) { + users.add(parts[0]); + hosts.add(parts[1]); + } + users.add(to.emailAddress); + } + } + if (users.size() != 0 || hosts.size() != 0) { + if (ctx.related == null) { + ctx.related = new HashMap(); + } + if (users.size() != 0 && ctx.related.user == null) { + ctx.related.user = new ArrayList(); + for (def u: users) { + ctx.related.user.add(u); + } + Collections.sort(ctx.related.user); + } + if (hosts.size() != 0 && ctx.related.hosts == null) { + ctx.related.hosts = new ArrayList(); + for (def h: hosts) { + ctx.related.hosts.add(h); + } + Collections.sort(ctx.related.hosts); + } + } + + - set: + field: event.action + copy_from: mimecast.status + ignore_empty_value: true + - set: + field: event.category + value: [email] + - set: + field: event.id + copy_from: mimecast.id + - set: + field: event.kind + value: event + - set: + field: event.reason + copy_from: mimecast.rejectReason + ignore_empty_value: true + - set: + field: event.risk_score + copy_from: mimecast.spamScore + ignore_empty_value: true + - set: + field: event.type + value: [info] + + - script: + description: Drops null/empty values recursively + lang: painless + ignore_failure: true + source: | + boolean drop(Object o) { + if (o == null || o == "") { + return true; + } else if (o instanceof Map) { + ((Map) o).values().removeIf(v -> drop(v)); + return (((Map) o).size() == 0); + } else if (o instanceof List) { + ((List) o).removeIf(v -> drop(v)); + return (((List) o).length == 0); + } + return false; + } + drop(ctx); + - remove: + field: event.original + if: ctx.tags == null || !ctx.tags.contains('preserve_original_event') + ignore_failure: true + ignore_missing: true + - rename: + tag: move_fields_into_place + field: mimecast + target_field: mimecast.message_release_logs + +on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: event.kind + value: pipeline_error diff --git a/packages/mimecast/data_stream/message_release_logs/fields/agent.yml b/packages/mimecast/data_stream/message_release_logs/fields/agent.yml new file mode 100644 index 000000000000..48f513b61aa5 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/fields/agent.yml @@ -0,0 +1,39 @@ +- name: cloud + title: Cloud + group: 2 + description: Fields related to the cloud or infrastructure the events are coming from. + footnote: 'Examples: If Metricbeat is running on an EC2 host and fetches data from its host, the cloud info contains the data about this machine. If Metricbeat runs on a remote machine outside the cloud and fetches data from a service running in the cloud, the field contains cloud data from the machine the service is running on.' + type: group + fields: + - name: image.id + type: keyword + description: Image ID for the cloud instance. +- name: host + title: Host + group: 2 + description: 'A host is defined as a general computing instance. ECS host.* fields should be populated with details about the host on which the event happened, or from which the measurement was taken. Host types include hardware, virtual machines, Docker containers, and Kubernetes nodes.' + type: group + fields: + - name: containerized + type: boolean + description: > + If the host is a container. + + - name: os.build + type: keyword + example: "18D109" + description: > + OS build information. + + - name: os.codename + type: keyword + example: "stretch" + description: > + OS codename, if any. + +- name: input.type + type: keyword + description: Input type +- name: log.offset + type: long + description: Log offset diff --git a/packages/mimecast/data_stream/message_release_logs/fields/base-fields.yml b/packages/mimecast/data_stream/message_release_logs/fields/base-fields.yml new file mode 100644 index 000000000000..0bbb944293e3 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/fields/base-fields.yml @@ -0,0 +1,20 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: event.module + type: constant_keyword + description: Event module + value: mimecast +- name: event.dataset + type: constant_keyword + description: Event dataset + value: mimecast.message_release_logs +- name: '@timestamp' + type: date + description: Event timestamp. diff --git a/packages/mimecast/data_stream/message_release_logs/fields/field.yml b/packages/mimecast/data_stream/message_release_logs/fields/field.yml new file mode 100644 index 000000000000..f600c661a2d5 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/fields/field.yml @@ -0,0 +1,164 @@ +- name: mimecast.message_release_logs + type: group + fields: + - name: attachments + type: boolean + description: Indicates whether the message contains attachments. + - name: detectionLevel + type: keyword + description: >- + Spam detection level, if held by a spam policy. Possible values are: relaxed, moderate, aggressive, cluster + or whitelisted_cluster. + - name: fromEnv + type: group + fields: + - name: displayableName + type: keyword + description: Display name of the user address from the "from" envelope. If none exists, this field will be empty. + - name: emailAddress + type: keyword + description: The routable email address of the user from the "from" envelope. + - name: fromHdr + type: group + fields: + - name: displayableName + type: keyword + description: Display name of the user address from the "from" header. If none exists, this field will be empty. + - name: emailAddress + type: keyword + description: The routable email address of the user from the "from" header. + - name: heldGroup + type: keyword + description: The recipient group of the held message, if message was sent to a group. + - name: heldReason + type: keyword + description: >- + Detail around the reason the message was initially held. If held by a specific policy definition, this will + be the name of the policy definition that triggered the message to be held. + - name: id + type: keyword + description: The Mimecast secure ID of the specific message release log. + - name: messageInfo + type: text + description: Additional information around the release reason. + - name: operator + type: keyword + description: Email address of the user that released the message. + - name: policy + type: keyword + description: Name of the policy definition that triggered the message to be held. + - name: rejectReason + type: keyword + description: Detail on the reason a message was rejected, if message was rejected. + - name: released + type: keyword + description: Timestamp of the message release action in ISO 8601 format. + - name: route + type: keyword + description: >- + Message direction. Possible values are: inbound or outbound. + - name: size + type: long + description: Total size of the message, in bytes. + - name: spamProcessingDetail + type: group + fields: + - name: dkim + type: group + fields: + - name: allow + type: boolean + description: Indicates checks for whether the message passed DKIM checks are performed. + - name: info + type: keyword + description: Details about the check result. + - name: dmarc + type: group + fields: + - name: allow + type: boolean + description: Indicates checks for whether the message passed DMARC checks are performed. + - name: info + type: keyword + description: Details about the check result. + - name: grayEmail + type: boolean + description: >- + Indicates with the spam was classified as graymail or bulk. Note that this + API uses graymail and greymail interchangeably. + - name: greyEmail + type: boolean + description: >- + Indicates with the spam was classified as graymail or bulk. Note that this + API uses graymail and greymail interchangeably. + - name: managedSender + type: group + fields: + - name: allow + type: boolean + description: Indicates checks for whether the sender has been permitted by a Managed Sender entry are performed. + - name: info + type: keyword + description: Details about the check result. + - name: permittedSender + type: group + fields: + - name: allow + type: boolean + description: Indicates checks for whether the sender has been permitted by policy are performed. + - name: info + type: keyword + description: Details about the check result. + - name: rbl + type: group + fields: + - name: allow + type: boolean + description: Indicates checks for whether the message passed RBL checks are performed. + - name: info + type: keyword + description: Details about the check result. + - name: spamVerdict + type: group + fields: + - name: categories + type: flattened + description: Spam detection type categories. + - name: decision + type: keyword + description: Indicating what the ultimate verdict was for the message. + - name: description + type: keyword + description: Description of the spam verdict decision. + - name: risk + type: keyword + description: >- + Identified risk level within the spam detection. Possible values are: negligible, + low, high. + - name: spf + type: group + fields: + - name: allow + type: boolean + description: Indicates checks for whether the message passed SPF checks are performed. + - name: info + type: keyword + description: Details about the check result. + - name: spamScore + type: double + description: The message spam score, based on the applied spam scanning policy definition. + - name: status + type: keyword + description: Status of the message. Possible values are released or rejected. + - name: subject + type: keyword + description: The released message's subject line. + - name: to + type: group + fields: + - name: displayableName + type: keyword + description: Display name of the user address from the "to" header. If none exists, this field will be empty. + - name: emailAddress + type: keyword + description: The routable email address of the user from the "to" header. diff --git a/packages/mimecast/data_stream/message_release_logs/manifest.yml b/packages/mimecast/data_stream/message_release_logs/manifest.yml new file mode 100644 index 000000000000..b2affb17c1d5 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/manifest.yml @@ -0,0 +1,66 @@ +title: "Mimecast Message Release" +type: logs +streams: + - input: cel + template_path: cel.yml.hbs + title: Message Release Logs + description: Collect Message Release Logs + vars: + - name: interval + type: text + title: Interval + description: Duration between requests to the API. Supported units for this parameter are h/m/s. + multi: false + required: true + show_user: false + default: 5m + - name: initial_interval + type: text + title: Initial Interval + multi: false + required: true + show_user: false + description: Initial interval for the first API call. Defaults to 24 hours. Supported units for this parameter are h/m/s. + default: 24h + - name: batch_size + type: integer + title: Batch Size + description: Batch size for the response of the Mimecast API. + default: 100 + multi: false + required: true + show_user: false + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - forwarded + - mimecast-message-release-logs + - name: preserve_original_event + required: true + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original` + type: bool + multi: false + default: false + - name: enable_request_tracer + type: bool + title: Enable request tracing + multi: false + required: false + show_user: false + description: > + The request tracer logs requests and responses to the agent's local file-system for debugging configurations. Enabling this request tracing compromises security and should only be used for debugging. See [documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-httpjson.html#_request_tracer_filename) for details. + + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details. diff --git a/packages/mimecast/data_stream/message_release_logs/sample_event.json b/packages/mimecast/data_stream/message_release_logs/sample_event.json new file mode 100644 index 000000000000..f287df86eca6 --- /dev/null +++ b/packages/mimecast/data_stream/message_release_logs/sample_event.json @@ -0,0 +1,165 @@ +{ + "@timestamp": "2015-11-25T14:49:18.000Z", + "agent": { + "ephemeral_id": "bd2896a5-8b1e-4131-8c40-5ce6861eda18", + "id": "b8a1f62f-c7d4-40fb-b0ac-ccb8b21bb57b", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.14.0" + }, + "data_stream": { + "dataset": "mimecast.message_release_logs", + "namespace": "98280", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "b8a1f62f-c7d4-40fb-b0ac-ccb8b21bb57b", + "snapshot": false, + "version": "8.14.0" + }, + "email": { + "direction": "inbound", + "from": { + "address": [ + "user@domain.tld" + ] + }, + "local_id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": { + "address": [ + "user@domain.tld" + ] + } + }, + "event": { + "action": "released", + "agent_id_status": "verified", + "category": [ + "email" + ], + "dataset": "mimecast.message_release_logs", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "ingested": "2024-08-09T04:45:59Z", + "kind": "event", + "original": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FirstName LastName\",\"emailAddress\":\"user@domain.tld\"},\"fromHdr\":{\"displayableName\":\"FirstName LastName\",\"emailAddress\":\"user@domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"inbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"displayableName\":\"FirstName LastName\",\"emailAddress\":\"user@domain.tld\"}]}", + "reason": "Message contains undesirable content", + "risk_score": 12, + "type": [ + "info" + ] + }, + "input": { + "type": "cel" + }, + "mimecast": { + "message_release_logs": { + "attachments": true, + "detectionLevel": "moderate", + "fromEnv": { + "displayableName": "FirstName LastName", + "emailAddress": "user@domain.tld" + }, + "fromHdr": { + "displayableName": "FirstName LastName", + "emailAddress": "user@domain.tld" + }, + "heldGroup": "IT Staff Global", + "heldReason": "High-Confidence Impersonation Protection", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "messageInfo": "Expired in queue - rejected by housekeeping", + "operator": "admin@domain.tld", + "policy": "Moderate Spam Detection", + "rejectReason": "Message contains undesirable content", + "released": "2015-11-25T14:49:18+00:00", + "route": "inbound", + "size": 5043, + "spamProcessingDetail": { + "dkim": { + "allow": true, + "info": "allow" + }, + "dmarc": { + "allow": true, + "info": "allow" + }, + "greyEmail": true, + "managedSender": { + "allow": true, + "info": "allow" + }, + "permittedSender": { + "allow": true, + "info": "allow" + }, + "rbl": { + "allow": true, + "info": "allow" + }, + "spamVerdict": { + "categories": [ + { + "name": "spam", + "risk": "low", + "subcategories": [ + { + "augmentations": [ + { + "name": "body", + "risk": "negligible" + } + ], + "name": "phishing", + "risk": "low" + } + ] + } + ], + "decision": "spam", + "risk": "low" + }, + "spf": { + "allow": true, + "info": "allow" + } + }, + "spamScore": 12, + "status": "released", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": [ + { + "displayableName": "FirstName LastName", + "emailAddress": "user@domain.tld" + } + ] + } + }, + "related": { + "hosts": [ + "domain.tld" + ], + "user": [ + "FirstName LastName", + "admin", + "admin@domain.tld", + "user", + "user@domain.tld" + ] + }, + "tags": [ + "preserve_original_event", + "forwarded", + "mimecast-message-release-logs" + ], + "user": { + "email": [ + "user@domain.tld" + ], + "full_name": [ + "FirstName LastName" + ] + } +} \ No newline at end of file diff --git a/packages/mimecast/docs/README.md b/packages/mimecast/docs/README.md index 5f8fd975e8d0..93fab55864ad 100644 --- a/packages/mimecast/docs/README.md +++ b/packages/mimecast/docs/README.md @@ -294,6 +294,240 @@ An example event for `dlp` looks as following: | log.offset | Log offset | long | +### Message Release Logs + +This is the `mimecast.message_release_logs` dataset. These logs contain information about +messages that were either released to the recipient, with details about the user that +processed the release. More information about [these logs]( +https://integrations.mimecast.com/documentation/endpoint-reference/logs-and-statistics/get-message-release-logs/). + +An example event for `message_release` looks as following: + +```json +{ + "@timestamp": "2015-11-25T14:49:18.000Z", + "agent": { + "ephemeral_id": "bd2896a5-8b1e-4131-8c40-5ce6861eda18", + "id": "b8a1f62f-c7d4-40fb-b0ac-ccb8b21bb57b", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.14.0" + }, + "data_stream": { + "dataset": "mimecast.message_release_logs", + "namespace": "98280", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "b8a1f62f-c7d4-40fb-b0ac-ccb8b21bb57b", + "snapshot": false, + "version": "8.14.0" + }, + "email": { + "direction": "inbound", + "from": { + "address": [ + "user@domain.tld" + ] + }, + "local_id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": { + "address": [ + "user@domain.tld" + ] + } + }, + "event": { + "action": "released", + "agent_id_status": "verified", + "category": [ + "email" + ], + "dataset": "mimecast.message_release_logs", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "ingested": "2024-08-09T04:45:59Z", + "kind": "event", + "original": "{\"attachments\":true,\"detectionLevel\":\"moderate\",\"fromEnv\":{\"displayableName\":\"FirstName LastName\",\"emailAddress\":\"user@domain.tld\"},\"fromHdr\":{\"displayableName\":\"FirstName LastName\",\"emailAddress\":\"user@domain.tld\"},\"heldGroup\":\"IT Staff Global\",\"heldReason\":\"High-Confidence Impersonation Protection\",\"id\":\"eNpVj21LhEAUhf_LfN2VnRl1RpclCN...\",\"messageInfo\":\"Expired in queue - rejected by housekeeping\",\"operator\":\"admin@domain.tld\",\"policy\":\"Moderate Spam Detection\",\"rejectReason\":\"Message contains undesirable content\",\"released\":\"2015-11-25T14:49:18+00:00\",\"route\":\"inbound\",\"size\":5043,\"spamProcessingDetail\":{\"dkim\":{\"allow\":true,\"info\":\"allow\"},\"dmarc\":{\"allow\":true,\"info\":\"allow\"},\"greyEmail\":true,\"managedSender\":{\"allow\":true,\"info\":\"allow\"},\"permittedSender\":{\"allow\":true,\"info\":\"allow\"},\"rbl\":{\"allow\":true,\"info\":\"allow\"},\"spamVerdict\":{\"categories\":[{\"name\":\"spam\",\"risk\":\"low\",\"subcategories\":[{\"augmentations\":[{\"name\":\"body\",\"risk\":\"negligible\"}],\"name\":\"phishing\",\"risk\":\"low\"}]}],\"decision\":\"spam\",\"description\":\"\",\"risk\":\"low\"},\"spf\":{\"allow\":true,\"info\":\"allow\"}},\"spamScore\":12,\"status\":\"released\",\"subject\":\"Exclusive Offer - You don't want to miss this!\",\"to\":[{\"displayableName\":\"FirstName LastName\",\"emailAddress\":\"user@domain.tld\"}]}", + "reason": "Message contains undesirable content", + "risk_score": 12, + "type": [ + "info" + ] + }, + "input": { + "type": "cel" + }, + "mimecast": { + "message_release_logs": { + "attachments": true, + "detectionLevel": "moderate", + "fromEnv": { + "displayableName": "FirstName LastName", + "emailAddress": "user@domain.tld" + }, + "fromHdr": { + "displayableName": "FirstName LastName", + "emailAddress": "user@domain.tld" + }, + "heldGroup": "IT Staff Global", + "heldReason": "High-Confidence Impersonation Protection", + "id": "eNpVj21LhEAUhf_LfN2VnRl1RpclCN...", + "messageInfo": "Expired in queue - rejected by housekeeping", + "operator": "admin@domain.tld", + "policy": "Moderate Spam Detection", + "rejectReason": "Message contains undesirable content", + "released": "2015-11-25T14:49:18+00:00", + "route": "inbound", + "size": 5043, + "spamProcessingDetail": { + "dkim": { + "allow": true, + "info": "allow" + }, + "dmarc": { + "allow": true, + "info": "allow" + }, + "greyEmail": true, + "managedSender": { + "allow": true, + "info": "allow" + }, + "permittedSender": { + "allow": true, + "info": "allow" + }, + "rbl": { + "allow": true, + "info": "allow" + }, + "spamVerdict": { + "categories": [ + { + "name": "spam", + "risk": "low", + "subcategories": [ + { + "augmentations": [ + { + "name": "body", + "risk": "negligible" + } + ], + "name": "phishing", + "risk": "low" + } + ] + } + ], + "decision": "spam", + "risk": "low" + }, + "spf": { + "allow": true, + "info": "allow" + } + }, + "spamScore": 12, + "status": "released", + "subject": "Exclusive Offer - You don't want to miss this!", + "to": [ + { + "displayableName": "FirstName LastName", + "emailAddress": "user@domain.tld" + } + ] + } + }, + "related": { + "hosts": [ + "domain.tld" + ], + "user": [ + "FirstName LastName", + "admin", + "admin@domain.tld", + "user", + "user@domain.tld" + ] + }, + "tags": [ + "preserve_original_event", + "forwarded", + "mimecast-message-release-logs" + ], + "user": { + "email": [ + "user@domain.tld" + ], + "full_name": [ + "FirstName LastName" + ] + } +} +``` + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| cloud.image.id | Image ID for the cloud instance. | keyword | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| event.dataset | Event dataset | constant_keyword | +| event.module | Event module | constant_keyword | +| host.containerized | If the host is a container. | boolean | +| host.os.build | OS build information. | keyword | +| host.os.codename | OS codename, if any. | keyword | +| input.type | Input type | keyword | +| log.offset | Log offset | long | +| mimecast.message_release_logs.attachments | Indicates whether the message contains attachments. | boolean | +| mimecast.message_release_logs.detectionLevel | Spam detection level, if held by a spam policy. Possible values are: relaxed, moderate, aggressive, cluster or whitelisted_cluster. | keyword | +| mimecast.message_release_logs.fromEnv.displayableName | Display name of the user address from the "from" envelope. If none exists, this field will be empty. | keyword | +| mimecast.message_release_logs.fromEnv.emailAddress | The routable email address of the user from the "from" envelope. | keyword | +| mimecast.message_release_logs.fromHdr.displayableName | Display name of the user address from the "from" header. If none exists, this field will be empty. | keyword | +| mimecast.message_release_logs.fromHdr.emailAddress | The routable email address of the user from the "from" header. | keyword | +| mimecast.message_release_logs.heldGroup | The recipient group of the held message, if message was sent to a group. | keyword | +| mimecast.message_release_logs.heldReason | Detail around the reason the message was initially held. If held by a specific policy definition, this will be the name of the policy definition that triggered the message to be held. | keyword | +| mimecast.message_release_logs.id | The Mimecast secure ID of the specific message release log. | keyword | +| mimecast.message_release_logs.messageInfo | Additional information around the release reason. | text | +| mimecast.message_release_logs.operator | Email address of the user that released the message. | keyword | +| mimecast.message_release_logs.policy | Name of the policy definition that triggered the message to be held. | keyword | +| mimecast.message_release_logs.rejectReason | Detail on the reason a message was rejected, if message was rejected. | keyword | +| mimecast.message_release_logs.released | Timestamp of the message release action in ISO 8601 format. | keyword | +| mimecast.message_release_logs.route | Message direction. Possible values are: inbound or outbound. | keyword | +| mimecast.message_release_logs.size | Total size of the message, in bytes. | long | +| mimecast.message_release_logs.spamProcessingDetail.dkim.allow | Indicates checks for whether the message passed DKIM checks are performed. | boolean | +| mimecast.message_release_logs.spamProcessingDetail.dkim.info | Details about the check result. | keyword | +| mimecast.message_release_logs.spamProcessingDetail.dmarc.allow | Indicates checks for whether the message passed DMARC checks are performed. | boolean | +| mimecast.message_release_logs.spamProcessingDetail.dmarc.info | Details about the check result. | keyword | +| mimecast.message_release_logs.spamProcessingDetail.grayEmail | Indicates with the spam was classified as graymail or bulk. Note that this API uses graymail and greymail interchangeably. | boolean | +| mimecast.message_release_logs.spamProcessingDetail.greyEmail | Indicates with the spam was classified as graymail or bulk. Note that this API uses graymail and greymail interchangeably. | boolean | +| mimecast.message_release_logs.spamProcessingDetail.managedSender.allow | Indicates checks for whether the sender has been permitted by a Managed Sender entry are performed. | boolean | +| mimecast.message_release_logs.spamProcessingDetail.managedSender.info | Details about the check result. | keyword | +| mimecast.message_release_logs.spamProcessingDetail.permittedSender.allow | Indicates checks for whether the sender has been permitted by policy are performed. | boolean | +| mimecast.message_release_logs.spamProcessingDetail.permittedSender.info | Details about the check result. | keyword | +| mimecast.message_release_logs.spamProcessingDetail.rbl.allow | Indicates checks for whether the message passed RBL checks are performed. | boolean | +| mimecast.message_release_logs.spamProcessingDetail.rbl.info | Details about the check result. | keyword | +| mimecast.message_release_logs.spamProcessingDetail.spamVerdict.categories | Spam detection type categories. | flattened | +| mimecast.message_release_logs.spamProcessingDetail.spamVerdict.decision | Indicating what the ultimate verdict was for the message. | keyword | +| mimecast.message_release_logs.spamProcessingDetail.spamVerdict.description | Description of the spam verdict decision. | keyword | +| mimecast.message_release_logs.spamProcessingDetail.spamVerdict.risk | Identified risk level within the spam detection. Possible values are: negligible, low, high. | keyword | +| mimecast.message_release_logs.spamProcessingDetail.spf.allow | Indicates checks for whether the message passed SPF checks are performed. | boolean | +| mimecast.message_release_logs.spamProcessingDetail.spf.info | Details about the check result. | keyword | +| mimecast.message_release_logs.spamScore | The message spam score, based on the applied spam scanning policy definition. | double | +| mimecast.message_release_logs.status | Status of the message. Possible values are released or rejected. | keyword | +| mimecast.message_release_logs.subject | The released message's subject line. | keyword | +| mimecast.message_release_logs.to.displayableName | Display name of the user address from the "to" header. If none exists, this field will be empty. | keyword | +| mimecast.message_release_logs.to.emailAddress | The routable email address of the user from the "to" header. | keyword | + + ### SIEM Logs This is the `mimecast.siem_logs` dataset. These logs contain information about diff --git a/packages/mimecast/manifest.yml b/packages/mimecast/manifest.yml index 3b5e974475f4..8627abf7066a 100644 --- a/packages/mimecast/manifest.yml +++ b/packages/mimecast/manifest.yml @@ -1,13 +1,13 @@ format_version: "3.0.2" name: mimecast title: "Mimecast" -version: "1.26.1" +version: "1.27.0" description: Collect logs from Mimecast with Elastic Agent. type: integration categories: ["security", "email_security"] conditions: kibana: - version: "^8.13.0" + version: "^8.14.0" screenshots: - src: /img/mimecast.png title: Sample screenshot @@ -67,6 +67,50 @@ policy_templates: required: true show_user: true secret: true + - type: cel + title: Mimecast API + description: Collect logs from Mimecast API + vars: + - name: api_url + type: text + title: API URL + description: API URL. + multi: false + required: true + show_user: false + default: https://eu-api.mimecast.com + - name: app_key + type: password + title: Application Key + description: Specifies application key for user. + multi: false + required: true + show_user: true + secret: true + - name: app_id + type: password + title: Application ID + description: Set the Application Id. + multi: false + required: true + show_user: true + secret: true + - name: access_key + type: password + title: Access Key + description: Set Access Key. + multi: false + required: true + show_user: true + secret: true + - name: secret_key + type: password + title: Secret Key + description: Set Secret Key. + multi: false + required: true + show_user: true + secret: true owner: github: elastic/security-service-integrations type: partner From d4f81cce45006c0bfd7989b43643dde7b1861800 Mon Sep 17 00:00:00 2001 From: Brijesh Khunt <123942796+brijesh-elastic@users.noreply.github.com> Date: Fri, 9 Aug 2024 14:28:42 +0530 Subject: [PATCH 57/77] [abnormal_security] Initial release of the Abnormal Security (#10653) * Added ai_security_mailbox, audit, case and threat data stream. * Added data collection logic for all the data stream. * Added the ingest pipeline for all the data stream. * Mapped fields according to the ECS schema and added Fields metadata in the appropriate yml files. * Added dashboards and visualizations. * Added test for pipeline for all the data stream. * Added system test cases for all the data stream. --- .github/CODEOWNERS | 1 + .../abnormal_security/_dev/build/build.yml | 3 + .../_dev/build/docs/README.md | 105 ++ .../_dev/deploy/docker/docker-compose.yml | 15 + .../_dev/deploy/docker/files/config.yml | 505 ++++++ packages/abnormal_security/changelog.yml | 6 + .../pipeline/test-ai-security-mailbox.log | 5 + ...test-ai-security-mailbox.log-expected.json | 434 +++++ .../_dev/test/pipeline/test-common-config.yml | 3 + .../_dev/test/system/test-default-config.yml | 14 + .../agent/stream/cel.yml.hbs | 136 ++ .../elasticsearch/ingest_pipeline/default.yml | 285 ++++ .../fields/base-fields.yml | 20 + .../ai_security_mailbox/fields/beats.yml | 6 + .../ai_security_mailbox/fields/fields.yml | 51 + .../ai_security_mailbox/manifest.yml | 79 + .../ai_security_mailbox/sample_event.json | 101 ++ .../audit/_dev/test/pipeline/test-audit.log | 5 + .../pipeline/test-audit.log-expected.json | 357 ++++ .../_dev/test/pipeline/test-common-config.yml | 7 + .../_dev/test/system/test-default-config.yml | 14 + .../audit/agent/stream/cel.yml.hbs | 97 ++ .../elasticsearch/ingest_pipeline/default.yml | 261 +++ .../data_stream/audit/fields/base-fields.yml | 20 + .../data_stream/audit/fields/beats.yml | 6 + .../data_stream/audit/fields/fields.yml | 42 + .../data_stream/audit/manifest.yml | 79 + .../data_stream/audit/sample_event.json | 98 ++ .../case/_dev/test/pipeline/test-case.log | 5 + .../test/pipeline/test-case.log-expected.json | 224 +++ .../_dev/test/pipeline/test-common-config.yml | 3 + .../_dev/test/system/test-default-config.yml | 14 + .../data_stream/case/agent/stream/cel.yml.hbs | 136 ++ .../elasticsearch/ingest_pipeline/default.yml | 224 +++ .../data_stream/case/fields/base-fields.yml | 20 + .../data_stream/case/fields/beats.yml | 6 + .../data_stream/case/fields/fields.yml | 33 + .../data_stream/case/manifest.yml | 79 + .../data_stream/case/sample_event.json | 71 + .../_dev/test/pipeline/test-common-config.yml | 3 + .../threat/_dev/test/pipeline/test-threat.log | 5 + .../pipeline/test-threat.log-expected.json | 716 ++++++++ .../_dev/test/system/test-default-config.yml | 14 + .../threat/agent/stream/cel.yml.hbs | 154 ++ .../elasticsearch/ingest_pipeline/default.yml | 548 ++++++ .../data_stream/threat/fields/base-fields.yml | 20 + .../data_stream/threat/fields/beats.yml | 6 + .../data_stream/threat/fields/fields.yml | 100 ++ .../data_stream/threat/manifest.yml | 79 + .../data_stream/threat/sample_event.json | 166 ++ packages/abnormal_security/docs/README.md | 665 ++++++++ .../img/abnormal-security-logo-dark.svg | 36 + .../img/abnormal-security-logo.svg | 36 + ..._security-ai_security_mailbox_overview.png | Bin 0 -> 312866 bytes .../img/abnormal_security-audit_overview.png | Bin 0 -> 307350 bytes .../img/abnormal_security-case_overview.png | Bin 0 -> 329569 bytes .../img/abnormal_security-threat_overview.png | Bin 0 -> 557925 bytes ...-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5.json | 926 +++++++++++ ...-6a8e53ac-7759-4564-bcd6-03c6a9792eac.json | 1468 +++++++++++++++++ ...-a4364503-ada3-4fe6-a054-d152accf207c.json | 830 ++++++++++ ...-f6562262-e429-470d-af45-4c80afdcf664.json | 1063 ++++++++++++ ...-5a32aa45-1ea0-4b68-9c06-53425f4e2deb.json | 86 + ...-a2d86921-d69f-4f99-a9eb-88a7ba0b2923.json | 86 + ...-e34b2986-68c2-4de9-8601-7bdefab429bc.json | 85 + ...-ecec7bf6-c7a6-4fb4-8054-863c5a1a666e.json | 85 + ...al_security-security-solution-default.json | 14 + packages/abnormal_security/kibana/tags.yml | 4 + packages/abnormal_security/manifest.yml | 104 ++ packages/abnormal_security/validation.yml | 3 + 69 files changed, 10872 insertions(+) create mode 100644 packages/abnormal_security/_dev/build/build.yml create mode 100644 packages/abnormal_security/_dev/build/docs/README.md create mode 100644 packages/abnormal_security/_dev/deploy/docker/docker-compose.yml create mode 100644 packages/abnormal_security/_dev/deploy/docker/files/config.yml create mode 100644 packages/abnormal_security/changelog.yml create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-ai-security-mailbox.log create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-ai-security-mailbox.log-expected.json create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/system/test-default-config.yml create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/agent/stream/cel.yml.hbs create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/fields/base-fields.yml create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/fields/beats.yml create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/fields/fields.yml create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/manifest.yml create mode 100644 packages/abnormal_security/data_stream/ai_security_mailbox/sample_event.json create mode 100644 packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-audit.log create mode 100644 packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json create mode 100644 packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/abnormal_security/data_stream/audit/_dev/test/system/test-default-config.yml create mode 100644 packages/abnormal_security/data_stream/audit/agent/stream/cel.yml.hbs create mode 100644 packages/abnormal_security/data_stream/audit/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/abnormal_security/data_stream/audit/fields/base-fields.yml create mode 100644 packages/abnormal_security/data_stream/audit/fields/beats.yml create mode 100644 packages/abnormal_security/data_stream/audit/fields/fields.yml create mode 100644 packages/abnormal_security/data_stream/audit/manifest.yml create mode 100644 packages/abnormal_security/data_stream/audit/sample_event.json create mode 100644 packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-case.log create mode 100644 packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-case.log-expected.json create mode 100644 packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/abnormal_security/data_stream/case/_dev/test/system/test-default-config.yml create mode 100644 packages/abnormal_security/data_stream/case/agent/stream/cel.yml.hbs create mode 100644 packages/abnormal_security/data_stream/case/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/abnormal_security/data_stream/case/fields/base-fields.yml create mode 100644 packages/abnormal_security/data_stream/case/fields/beats.yml create mode 100644 packages/abnormal_security/data_stream/case/fields/fields.yml create mode 100644 packages/abnormal_security/data_stream/case/manifest.yml create mode 100644 packages/abnormal_security/data_stream/case/sample_event.json create mode 100644 packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-common-config.yml create mode 100644 packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-threat.log create mode 100644 packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-threat.log-expected.json create mode 100644 packages/abnormal_security/data_stream/threat/_dev/test/system/test-default-config.yml create mode 100644 packages/abnormal_security/data_stream/threat/agent/stream/cel.yml.hbs create mode 100644 packages/abnormal_security/data_stream/threat/elasticsearch/ingest_pipeline/default.yml create mode 100644 packages/abnormal_security/data_stream/threat/fields/base-fields.yml create mode 100644 packages/abnormal_security/data_stream/threat/fields/beats.yml create mode 100644 packages/abnormal_security/data_stream/threat/fields/fields.yml create mode 100644 packages/abnormal_security/data_stream/threat/manifest.yml create mode 100644 packages/abnormal_security/data_stream/threat/sample_event.json create mode 100644 packages/abnormal_security/docs/README.md create mode 100644 packages/abnormal_security/img/abnormal-security-logo-dark.svg create mode 100644 packages/abnormal_security/img/abnormal-security-logo.svg create mode 100644 packages/abnormal_security/img/abnormal_security-ai_security_mailbox_overview.png create mode 100644 packages/abnormal_security/img/abnormal_security-audit_overview.png create mode 100644 packages/abnormal_security/img/abnormal_security-case_overview.png create mode 100644 packages/abnormal_security/img/abnormal_security-threat_overview.png create mode 100644 packages/abnormal_security/kibana/dashboard/abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5.json create mode 100644 packages/abnormal_security/kibana/dashboard/abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac.json create mode 100644 packages/abnormal_security/kibana/dashboard/abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c.json create mode 100644 packages/abnormal_security/kibana/dashboard/abnormal_security-f6562262-e429-470d-af45-4c80afdcf664.json create mode 100644 packages/abnormal_security/kibana/search/abnormal_security-5a32aa45-1ea0-4b68-9c06-53425f4e2deb.json create mode 100644 packages/abnormal_security/kibana/search/abnormal_security-a2d86921-d69f-4f99-a9eb-88a7ba0b2923.json create mode 100644 packages/abnormal_security/kibana/search/abnormal_security-e34b2986-68c2-4de9-8601-7bdefab429bc.json create mode 100644 packages/abnormal_security/kibana/search/abnormal_security-ecec7bf6-c7a6-4fb4-8054-863c5a1a666e.json create mode 100644 packages/abnormal_security/kibana/tag/abnormal_security-security-solution-default.json create mode 100644 packages/abnormal_security/kibana/tags.yml create mode 100644 packages/abnormal_security/manifest.yml create mode 100644 packages/abnormal_security/validation.yml diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index 829dfcb759d0..d6a07c96b4ee 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -8,6 +8,7 @@ # Package owners below. # Please keep the list sorted. /packages/1password @elastic/security-service-integrations +/packages/abnormal_security @elastic/security-service-integrations /packages/activemq @elastic/obs-infraobs-integrations /packages/airflow @elastic/obs-infraobs-integrations /packages/akamai @elastic/security-service-integrations diff --git a/packages/abnormal_security/_dev/build/build.yml b/packages/abnormal_security/_dev/build/build.yml new file mode 100644 index 000000000000..e2b012548e00 --- /dev/null +++ b/packages/abnormal_security/_dev/build/build.yml @@ -0,0 +1,3 @@ +dependencies: + ecs: + reference: git@v8.11.0 diff --git a/packages/abnormal_security/_dev/build/docs/README.md b/packages/abnormal_security/_dev/build/docs/README.md new file mode 100644 index 000000000000..f020bfaade1a --- /dev/null +++ b/packages/abnormal_security/_dev/build/docs/README.md @@ -0,0 +1,105 @@ +# Abnormal Security + +Abnormal Security is a behavioral AI-based email security platform that learns the behavior of every identity in a cloud email environment and analyzes the risk of every event to block even the most sophisticated attacks. + +The Abnormal Security integration collects data for AI Security Mailbox (formerly known as Abuse Mailbox), Audit, Case, and Threat logs using REST API. + +## Data streams + +The Abnormal Security integration collects four types of logs: + +**[AI Security Mailbox](https://app.swaggerhub.com/apis-docs/abnormal-security/abx/1.4.3#/AI%20Security%20Mailbox%20(formerly%20known%20as%20Abuse%20Mailbox))** - Get details of AI Security Mailbox. + +**[Audit](https://app.swaggerhub.com/apis-docs/abnormal-security/abx/1.4.3#/Audit%20Logs)** - Get details of Audit logs for Portal. + +**[Case](https://app.swaggerhub.com/apis-docs/abnormal-security/abx/1.4.3#/Cases)** - Get details of Abnormal Cases. + +**[Threat](https://app.swaggerhub.com/apis-docs/abnormal-security/abx/1.4.3#/Threats)** - Get details of Abnormal Threat Logs. + +## Requirements + +Elastic Agent must be installed. For more information, refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). + +### Installing and managing an Elastic Agent: + +You have a few options for installing and managing an Elastic Agent: + +### Install a Fleet-managed Elastic Agent (recommended): + +With this approach, you install Elastic Agent and use Fleet in Kibana to define, configure, and manage your agents in a central location. We recommend using Fleet management because it makes the management and upgrade of your agents considerably easier. + +### Install Elastic Agent in standalone mode (advanced users): + +With this approach, you install Elastic Agent and manually configure the agent locally on the system where it’s installed. You are responsible for managing and upgrading the agents. This approach is reserved for advanced users only. + +### Install Elastic Agent in a containerized environment: + +You can run Elastic Agent inside a container, either with Fleet Server or standalone. Docker images for all versions of Elastic Agent are available from the Elastic Docker registry, and we provide deployment manifests for running on Kubernetes. + +There are some minimum requirements for running Elastic Agent and for more information, refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html#_minimum_requirements). + +## Setup + +### To collect data from the Abnormal Security Client API: + +#### Step 1: Go to Portal +* Visit the [Abnormal Security Portal](https://portal.abnormalsecurity.com/home/settings/integrations) and click on the `Abnormal REST API` setting. + +#### Step 2: Generating the authentication token +* Retrieve your authentication token. This token will be used further in the Elastic integration setup to authenticate and access different Abnormal Security Logs. + +#### Step 3: IP allowlisting +* Abnormal Security requires you to restrict API access based on source IP. So in order for the integration to work, user needs to update the IP allowlisting to include the external source IP of the endpoint running the integration via Elastic Agent. + +### Enabling the integration in Elastic: + +1. In Kibana go to Management > Integrations. +2. In "Search for integrations" search bar, type Abnormal Security. +3. Click on the "Abnormal Security" integration from the search results. +4. Click on the "Add Abnormal Security" button to add the integration. +5. Add all the required integration configuration parameters, including Access Token, Interval, Initial Interval and Page Size to enable data collection. +6. Click on "Save and continue" to save the integration. + +**Note**: By default, the URL is set to `https://api.abnormalplatform.com`. We have observed that Abnormal Security Base URL changes based on location so find your own base URL. + +## Logs reference + +### AI Security Mailbox + +This is the `ai_security_mailbox` dataset. + +#### Example + +{{event "ai_security_mailbox"}} + +{{fields "ai_security_mailbox"}} + +### Audit + +This is the `audit` dataset. + +#### Example + +{{event "audit"}} + +{{fields "audit"}} + +### Case + +This is the `case` dataset. + +#### Example + +{{event "case"}} + +{{fields "case"}} + +### Threat + +This is the `threat` dataset. + +#### Example + +{{event "threat"}} + +{{fields "threat"}} diff --git a/packages/abnormal_security/_dev/deploy/docker/docker-compose.yml b/packages/abnormal_security/_dev/deploy/docker/docker-compose.yml new file mode 100644 index 000000000000..af15b5a3d731 --- /dev/null +++ b/packages/abnormal_security/_dev/deploy/docker/docker-compose.yml @@ -0,0 +1,15 @@ +version: '2.3' +services: + abnormal_security: + image: docker.elastic.co/observability/stream:v0.15.0 + hostname: abnormal_security + ports: + - 8090 + volumes: + - ./files:/files:ro + environment: + PORT: '8090' + command: + - http-server + - --addr=:8090 + - --config=/files/config.yml diff --git a/packages/abnormal_security/_dev/deploy/docker/files/config.yml b/packages/abnormal_security/_dev/deploy/docker/files/config.yml new file mode 100644 index 000000000000..0a4fa2adf7eb --- /dev/null +++ b/packages/abnormal_security/_dev/deploy/docker/files/config.yml @@ -0,0 +1,505 @@ +rules: + - path: /v1/abusecampaigns + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 1 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"campaigns":[{"campaignId":"fff51768-c446-34e1-97a8-9802c29c3ebd"}],"pageNumber":1,"nextPageNumber":2} + - path: /v1/abusecampaigns + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 2 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"campaigns":[{"campaignId":"gff51768-c446-34e1-97a8-9802c29c3ebd"}],"pageNumber":2,"nextPageNumber":3} + - path: /v1/abusecampaigns + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 3 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"campaigns":[],"pageNumber":3,"nextPageNumber":4} + - path: /v1/abusecampaigns/fff51768-c446-34e1-97a8-9802c29c3ebd + methods: ['GET'] + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {{ minify_json ` + { + "campaignId": "fff51768-c446-34e1-97a8-9802c29c3ebd", + "firstReported": "2024-07-26T10:30:06Z", + "lastReported": "2024-07-26T10:30:06Z", + "messageId": "7063250485337877109", + "subject": "Days of Understanding 2024", + "fromName": "bob@example.com", + "fromAddress": "bob@example.com", + "recipientName": "john", + "recipientAddress": "john@example.com", + "judgementStatus": "Safe", + "overallStatus": "No Action Needed", + "attackType": "Attack Type: Graymail" + } + `}} + - path: /v1/abusecampaigns/gff51768-c446-34e1-97a8-9802c29c3ebd + methods: ['GET'] + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {{ minify_json ` + { + "campaignId": "gff51768-c446-34e1-97a8-9802c29c3ebd", + "firstReported": "2024-07-29T06:01:27Z", + "lastReported": "2024-07-29T06:01:27Z", + "messageId": "8369181238656832368", + "subject": "Important document", + "fromName": "john", + "fromAddress": "john@example.com", + "recipientName": "bob", + "recipientAddress": "bob@example.com", + "judgementStatus": "Spam", + "overallStatus": "", + "attackType": "Attack Type: Spam" + } + `}} + - path: /v1/auditlogs + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 1 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {{ minify_json ` + { + "auditLogs": [ + { + "action": "update_remediation_status", + "actionDetails": { + "providedReason": "null", + "requestUrl": "/v1.0/search_v2/666/purge_messages/" + }, + "category": "search-and-respond-notifications", + "sourceIp": "81.2.69.142", + "status": "SUCCESS", + "tenantName": "", + "timestamp": "2024-07-17 15:39:32.141000+00:00", + "user": { + "email": "bob@example.com" + } + } + ], + "pageNumber": 1, + "nextPageNumber": 2 + } + `}} + - path: /v1/auditlogs + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 2 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {{ minify_json ` + { + "auditLogs": [ + { + "action": "view_message_content", + "actionDetails": { + "messageId": "-3597017621819474673", + "providedReason": "null", + "requestUrl": "/v2.0/messages/-3597017621819474673/email_content/" + }, + "category": "abuse_mailbox", + "sourceIp": "81.2.69.142", + "status": "SUCCESS", + "tenantName": "Tenant_Beta", + "timestamp": "2024-07-18 18:40:33.419000+00:00", + "user": { + "email": "bob@example.com" + } + } + ], + "pageNumber": 2, + "nextPageNumber": 3 + } + `}} + - path: /v1/auditlogs + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 3 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"auditLogs":[],"pageNumber":3,"nextPageNumber":4} + - path: /v1/cases + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 1 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"cases":[{"caseId":"1234","severity":"Potential Account Takeover"}],"pageNumber":1,"nextPageNumber":2} + - path: /v1/cases + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 2 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"cases":[{"caseId":"1235","severity":"Potential Account Takeover"}],"pageNumber":2,"nextPageNumber":3} + - path: /v1/cases + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 3 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"cases":[],"pageNumber":3,"nextPageNumber":4} + - path: /v1/cases/1234 + methods: ['GET'] + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {{ minify_json ` + { + "caseId": 1234, + "affectedEmployee": "john@example.com", + "analysis": "SIGN_IN", + "case_status": "Acknowledged (Attack resolved)", + "customerVisibleTime": "2024-01-05T12:33:25+00:00", + "firstObserved": "2024-01-05T12:33:25+00:00", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "LOW", + "threatIds": [] + } + `}} + - path: /v1/cases/1235 + methods: ['GET'] + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {{ minify_json ` + { + "caseId": 1235, + "affectedEmployee": "bob@example.com", + "analysis": "MAIL_FILTER", + "case_status": "Acknowledged (Attack resolved)", + "customerVisibleTime": "2024-01-25T22:21:11.789000+00:00", + "firstObserved": "2024-01-25T22:21:11.789000+00:00", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "HIGH", + "threatIds": [] + } + `}} + - path: /v1/threats + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 1 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"threats":[{"threatId":"184712ab-6d8b-47b3-89d3-a314efef79e2"}],"pageNumber":1,"nextPageNumber":2} + - path: /v1/threats + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 2 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"threats":[{"threatId":"284712ab-6d8b-47b3-89d3-a314efef79e2"}],"pageNumber":2,"nextPageNumber":3} + - path: /v1/threats + methods: ['GET'] + query_params: + filter: "{filter:.*}" + pageNumber: 3 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"threats":[],"pageNumber":3,"nextPageNumber":4} + - path: /v1/threats/184712ab-6d8b-47b3-89d3-a314efef79e2 + methods: ['GET'] + query_params: + pageNumber: 1 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {{ minify_json ` + { + "threatId": "184712ab-6d8b-47b3-89d3-a314efef79e2", + "messages": [ + { + "abxMessageId": -1875077659085366331, + "abxPortalUrl": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/12345", + "attachmentCount": 0, + "attachmentNames": [], + "attackStrategy": "Unknown Sender", + "attackType": "Phishing: Credential", + "attackVector": "Link", + "attackedParty": "Employee (Other)", + "autoRemediated": true, + "fromAddress": "john@example.com", + "fromName": "john", + "impersonatedParty": "None / Others", + "internetMessageId": "", + "isRead": false, + "postRemediated": false, + "receivedTime": "2024-07-17T23:26:23Z", + "recipientAddress": "bob@example.com", + "remediationStatus": "Auto-Remediated", + "remediationTimestamp": "2024-07-17T23:26:33.409433Z", + "sentTime": "2024-07-17T23:25:51Z", + "subject": "bob W.I.N-->An-->N.l.N.J.A---A.l.R--FRYER!JK4V #mcP", + "threatId": "184712ab-6d8b-47b3-89d3-a314efef79e2", + "toAddresses": [ + "bob@example.com" + ], + "ccEmails": [ + "bob@example.com" + ], + "replyToEmails": [], + "returnPath": "bob_JZN11CUJL4@example.com", + "senderDomain": "example.com", + "senderIpAddress": "81.2.69.142", + "summaryInsights": [ + "Suspicious Link", + "Abnormal Email Body HTML", + "Unusual Sender", + "Unusual Sender Domain" + ], + "urlCount": 1, + "urls": [ + "https://www.example.com/" + ] + } + ], + "pageNumber": 1, + "nextPageNumber": 2 + } + `}} + - path: /v1/threats/184712ab-6d8b-47b3-89d3-a314efef79e2 + methods: ['GET'] + query_params: + pageNumber: 2 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"threatId":"184712ab-6d8b-47b3-89d3-a314efef79e2","messages":[],"pageNumber":2,"nextPageNumber":3} + - path: /v1/threats/284712ab-6d8b-47b3-89d3-a314efef79e2 + methods: ['GET'] + query_params: + pageNumber: 1 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {{ minify_json ` + { + "threatId": "284712ab-6d8b-47b3-89d3-a314efef79e2", + "messages": [ + { + "abxMessageId": 2260288475997441028, + "abxPortalUrl": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "attachmentCount": 0, + "attachmentNames": [], + "attackStrategy": "Unknown Sender", + "attackType": "Spam", + "attackVector": "Link", + "attackedParty": "Employee (Other)", + "autoRemediated": true, + "fromAddress": "john@example.com", + "fromName": "john", + "impersonatedParty": "None / Others", + "internetMessageId": "", + "isRead": false, + "postRemediated": false, + "receivedTime": "2024-07-17T23:25:38Z", + "recipientAddress": "bob@example.com", + "remediationStatus": "Auto-Remediated", + "remediationTimestamp": "2024-07-17T23:25:45.73564Z", + "sentTime": "2024-07-17T23:25:29Z", + "subject": "YoU.have.\ud835\uddea\ud835\udfec0\ud835\udde1\ud835\udde1 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB", + "threatId": "bf255f2d-a2ad-3f50-5075-fdcc24308bbd", + "toAddresses": [ + "bob@example.com" + ], + "ccEmails": [], + "replyToEmails": [], + "returnPath": "bounce-bob_H181S7GUCF@example.com", + "senderDomain": "example.com", + "senderIpAddress": "81.2.69.142", + "summaryInsights": [ + "Abnormal Email Body HTML", + "Invisible characters found in Email", + "Suspicious Link", + "Unusual Sender", + "Unusual Sender Domain" + ], + "urlCount": 1, + "urls": [ + "https://www.example.com/" + ] + } + ], + "pageNumber": 1, + "nextPageNumber": 2 + } + `}} + - path: /v1/threats/284712ab-6d8b-47b3-89d3-a314efef79e2 + methods: ['GET'] + query_params: + pageNumber: 2 + pageSize: 1 + request_headers: + Authorization: + - "Bearer xxxx" + responses: + - status_code: 200 + headers: + Content-Type: + - 'application/json' + body: |- + {"threatId":"284712ab-6d8b-47b3-89d3-a314efef79e2","messages":[],"pageNumber":2,"nextPageNumber":3} diff --git a/packages/abnormal_security/changelog.yml b/packages/abnormal_security/changelog.yml new file mode 100644 index 000000000000..69dce3904e5b --- /dev/null +++ b/packages/abnormal_security/changelog.yml @@ -0,0 +1,6 @@ +# newer versions go on top +- version: "0.1.0" + changes: + - description: Initial release. + type: enhancement + link: https://github.com/elastic/integrations/pull/10653 diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-ai-security-mailbox.log b/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-ai-security-mailbox.log new file mode 100644 index 000000000000..57c05880562b --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-ai-security-mailbox.log @@ -0,0 +1,5 @@ +{"campaignId":"0c70588a-049c-3c35-9a23-217ddf0a53b5","firstReported":"2024-07-26T10:30:06Z","lastReported":"2024-07-26T10:30:06Z","messageId":"7063250485337877109","subject":"Days of Understanding 2024","fromName":"bob@example.com","fromAddress":"bob@example.com","recipientName":"john","recipientAddress":"john@example.com","judgementStatus":"Safe","overallStatus":"No Action Needed","attackType":"Attack Type: Graymail"} +{"campaignId":"b4849d52-471b-396f-b737-775826c7e557","firstReported":"2024-07-29T06:01:27Z","lastReported":"2024-07-29T06:01:27Z","messageId":"8369181238656832368","subject":"Important document","fromName":"john","fromAddress":"john@example.com","recipientName":"bob","recipientAddress":"bob@example.com","judgementStatus":"Spam","overallStatus":"","attackType":"Attack Type: Spam"} +{"campaignId":"2e1354de-f9cb-3192-82ff-714204358eb7","firstReported":"2024-04-29T13:45:00Z","lastReported":"2024-07-27T02:43:12Z","messageId":"-4661319438952668559","subject":"Your statement is available","fromName":"bob","fromAddress":"bob@example.com","recipientName":"john","recipientAddress":"john@example.com","judgementStatus":"Spam","overallStatus":"","attackType":"Attack Type: Spam"} +{"campaignId":"8978dff3-7be5-3ab4-a841-30b90fc5788d","firstReported":"2024-08-01T20:19:24Z","lastReported":"2024-08-01T20:19:24Z","messageId":"-7731344566782869529","subject":"New Secure Message Scanned and sent","fromName":"john@example.com","fromAddress":"john@example.com","recipientName":"bob","recipientAddress":"bob@example.com","judgementStatus":"Malicious","overallStatus":"Auto-Remediated","attackType":"Attack Type: Scam"} +{"campaignId":"baee573f-4a06-3791-9ed7-4f5153a7fe5d","firstReported":"2024-07-30T15:51:48Z","lastReported":"2024-07-30T15:51:48Z","messageId":"7372776983204655999","subject":"Inform Tech Team","fromName":"john","fromAddress":"john@example.com","recipientName":"bob","recipientAddress":"bob@example.com","judgementStatus":"Malicious","overallStatus":"Auto-Remediated","attackType":"Attack Type: Phishing: Credential"} diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-ai-security-mailbox.log-expected.json b/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-ai-security-mailbox.log-expected.json new file mode 100644 index 000000000000..48ddb204a854 --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-ai-security-mailbox.log-expected.json @@ -0,0 +1,434 @@ +{ + "expected": [ + { + "@timestamp": "2024-07-26T10:30:06.000Z", + "abnormal_security": { + "ai_security_mailbox": { + "attack": { + "type": "Attack Type: Graymail" + }, + "campaign_id": "0c70588a-049c-3c35-9a23-217ddf0a53b5", + "first_reported": "2024-07-26T10:30:06.000Z", + "from": { + "address": "bob@example.com", + "name": "bob@example.com" + }, + "judgement_status": "Safe", + "last_reported": "2024-07-26T10:30:06.000Z", + "message_id": "7063250485337877109", + "overall_status": "No Action Needed", + "recipient": { + "address": "john@example.com", + "name": "john" + }, + "subject": "Days of Understanding 2024" + } + }, + "destination": { + "user": { + "name": "john" + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "from": { + "address": [ + "bob@example.com" + ] + }, + "subject": "Days of Understanding 2024", + "to": { + "address": [ + "john@example.com" + ] + } + }, + "event": { + "id": "7063250485337877109", + "kind": "event", + "original": "{\"campaignId\":\"0c70588a-049c-3c35-9a23-217ddf0a53b5\",\"firstReported\":\"2024-07-26T10:30:06Z\",\"lastReported\":\"2024-07-26T10:30:06Z\",\"messageId\":\"7063250485337877109\",\"subject\":\"Days of Understanding 2024\",\"fromName\":\"bob@example.com\",\"fromAddress\":\"bob@example.com\",\"recipientName\":\"john\",\"recipientAddress\":\"john@example.com\",\"judgementStatus\":\"Safe\",\"overallStatus\":\"No Action Needed\",\"attackType\":\"Attack Type: Graymail\"}" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "bob@example.com", + "john@example.com", + "john" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "tactic": { + "name": [ + "Attack Type: Graymail" + ] + } + }, + "user": { + "email": "bob@example.com" + } + }, + { + "@timestamp": "2024-07-29T06:01:27.000Z", + "abnormal_security": { + "ai_security_mailbox": { + "attack": { + "type": "Attack Type: Spam" + }, + "campaign_id": "b4849d52-471b-396f-b737-775826c7e557", + "first_reported": "2024-07-29T06:01:27.000Z", + "from": { + "address": "john@example.com", + "name": "john" + }, + "judgement_status": "Spam", + "last_reported": "2024-07-29T06:01:27.000Z", + "message_id": "8369181238656832368", + "recipient": { + "address": "bob@example.com", + "name": "bob" + }, + "subject": "Important document" + } + }, + "destination": { + "user": { + "name": "bob" + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "from": { + "address": [ + "john@example.com" + ] + }, + "subject": "Important document", + "to": { + "address": [ + "bob@example.com" + ] + } + }, + "event": { + "category": [ + "threat" + ], + "id": "8369181238656832368", + "kind": "enrichment", + "original": "{\"campaignId\":\"b4849d52-471b-396f-b737-775826c7e557\",\"firstReported\":\"2024-07-29T06:01:27Z\",\"lastReported\":\"2024-07-29T06:01:27Z\",\"messageId\":\"8369181238656832368\",\"subject\":\"Important document\",\"fromName\":\"john\",\"fromAddress\":\"john@example.com\",\"recipientName\":\"bob\",\"recipientAddress\":\"bob@example.com\",\"judgementStatus\":\"Spam\",\"overallStatus\":\"\",\"attackType\":\"Attack Type: Spam\"}", + "type": [ + "indicator" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "john", + "john@example.com", + "bob@example.com", + "bob" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "email": { + "address": "john@example.com" + }, + "name": "john@example.com", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Attack Type: Spam" + ] + } + }, + "user": { + "name": "john" + } + }, + { + "@timestamp": "2024-07-27T02:43:12.000Z", + "abnormal_security": { + "ai_security_mailbox": { + "attack": { + "type": "Attack Type: Spam" + }, + "campaign_id": "2e1354de-f9cb-3192-82ff-714204358eb7", + "first_reported": "2024-04-29T13:45:00.000Z", + "from": { + "address": "bob@example.com", + "name": "bob" + }, + "judgement_status": "Spam", + "last_reported": "2024-07-27T02:43:12.000Z", + "message_id": "-4661319438952668559", + "recipient": { + "address": "john@example.com", + "name": "john" + }, + "subject": "Your statement is available" + } + }, + "destination": { + "user": { + "name": "john" + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "from": { + "address": [ + "bob@example.com" + ] + }, + "subject": "Your statement is available", + "to": { + "address": [ + "john@example.com" + ] + } + }, + "event": { + "category": [ + "threat" + ], + "id": "-4661319438952668559", + "kind": "enrichment", + "original": "{\"campaignId\":\"2e1354de-f9cb-3192-82ff-714204358eb7\",\"firstReported\":\"2024-04-29T13:45:00Z\",\"lastReported\":\"2024-07-27T02:43:12Z\",\"messageId\":\"-4661319438952668559\",\"subject\":\"Your statement is available\",\"fromName\":\"bob\",\"fromAddress\":\"bob@example.com\",\"recipientName\":\"john\",\"recipientAddress\":\"john@example.com\",\"judgementStatus\":\"Spam\",\"overallStatus\":\"\",\"attackType\":\"Attack Type: Spam\"}", + "type": [ + "indicator" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "bob", + "bob@example.com", + "john@example.com", + "john" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "email": { + "address": "bob@example.com" + }, + "name": "bob@example.com", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Attack Type: Spam" + ] + } + }, + "user": { + "name": "bob" + } + }, + { + "@timestamp": "2024-08-01T20:19:24.000Z", + "abnormal_security": { + "ai_security_mailbox": { + "attack": { + "type": "Attack Type: Scam" + }, + "campaign_id": "8978dff3-7be5-3ab4-a841-30b90fc5788d", + "first_reported": "2024-08-01T20:19:24.000Z", + "from": { + "address": "john@example.com", + "name": "john@example.com" + }, + "judgement_status": "Malicious", + "last_reported": "2024-08-01T20:19:24.000Z", + "message_id": "-7731344566782869529", + "overall_status": "Auto-Remediated", + "recipient": { + "address": "bob@example.com", + "name": "bob" + }, + "subject": "New Secure Message Scanned and sent" + } + }, + "destination": { + "user": { + "name": "bob" + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "from": { + "address": [ + "john@example.com" + ] + }, + "subject": "New Secure Message Scanned and sent", + "to": { + "address": [ + "bob@example.com" + ] + } + }, + "event": { + "action": "auto-remediated", + "category": [ + "threat" + ], + "id": "-7731344566782869529", + "kind": "enrichment", + "original": "{\"campaignId\":\"8978dff3-7be5-3ab4-a841-30b90fc5788d\",\"firstReported\":\"2024-08-01T20:19:24Z\",\"lastReported\":\"2024-08-01T20:19:24Z\",\"messageId\":\"-7731344566782869529\",\"subject\":\"New Secure Message Scanned and sent\",\"fromName\":\"john@example.com\",\"fromAddress\":\"john@example.com\",\"recipientName\":\"bob\",\"recipientAddress\":\"bob@example.com\",\"judgementStatus\":\"Malicious\",\"overallStatus\":\"Auto-Remediated\",\"attackType\":\"Attack Type: Scam\"}", + "type": [ + "indicator" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "john@example.com", + "bob@example.com", + "bob" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "email": { + "address": "john@example.com" + }, + "name": "john@example.com", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Attack Type: Scam" + ] + } + }, + "user": { + "email": "john@example.com" + } + }, + { + "@timestamp": "2024-07-30T15:51:48.000Z", + "abnormal_security": { + "ai_security_mailbox": { + "attack": { + "type": "Attack Type: Phishing: Credential" + }, + "campaign_id": "baee573f-4a06-3791-9ed7-4f5153a7fe5d", + "first_reported": "2024-07-30T15:51:48.000Z", + "from": { + "address": "john@example.com", + "name": "john" + }, + "judgement_status": "Malicious", + "last_reported": "2024-07-30T15:51:48.000Z", + "message_id": "7372776983204655999", + "overall_status": "Auto-Remediated", + "recipient": { + "address": "bob@example.com", + "name": "bob" + }, + "subject": "Inform Tech Team" + } + }, + "destination": { + "user": { + "name": "bob" + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "from": { + "address": [ + "john@example.com" + ] + }, + "subject": "Inform Tech Team", + "to": { + "address": [ + "bob@example.com" + ] + } + }, + "event": { + "action": "auto-remediated", + "category": [ + "threat" + ], + "id": "7372776983204655999", + "kind": "enrichment", + "original": "{\"campaignId\":\"baee573f-4a06-3791-9ed7-4f5153a7fe5d\",\"firstReported\":\"2024-07-30T15:51:48Z\",\"lastReported\":\"2024-07-30T15:51:48Z\",\"messageId\":\"7372776983204655999\",\"subject\":\"Inform Tech Team\",\"fromName\":\"john\",\"fromAddress\":\"john@example.com\",\"recipientName\":\"bob\",\"recipientAddress\":\"bob@example.com\",\"judgementStatus\":\"Malicious\",\"overallStatus\":\"Auto-Remediated\",\"attackType\":\"Attack Type: Phishing: Credential\"}", + "type": [ + "indicator" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "john", + "john@example.com", + "bob@example.com", + "bob" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "email": { + "address": "john@example.com" + }, + "name": "john@example.com", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Attack Type: Phishing: Credential" + ] + } + }, + "user": { + "name": "john" + } + } + ] +} \ No newline at end of file diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-common-config.yml b/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..37e8fa225fdc --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,3 @@ +fields: + tags: + - preserve_duplicate_custom_fields diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/system/test-default-config.yml b/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..0ff5c7939685 --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/_dev/test/system/test-default-config.yml @@ -0,0 +1,14 @@ +input: cel +service: abnormal_security +vars: + url: http://{{Hostname}}:{{Port}} + access_token: xxxx +data_stream: + vars: + interval: 5m + initial_interval: 24h + page_size: 1 + preserve_original_event: true + preserve_duplicate_custom_fields: true +assert: + hit_count: 2 diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/agent/stream/cel.yml.hbs b/packages/abnormal_security/data_stream/ai_security_mailbox/agent/stream/cel.yml.hbs new file mode 100644 index 000000000000..e10503c85a7c --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/agent/stream/cel.yml.hbs @@ -0,0 +1,136 @@ +config_version: 2 +interval: {{interval}} +{{#if enable_request_tracer}} +resource.tracer.filename: "../../logs/cel/http-request-trace-*.ndjson" +resource.tracer.maxbackups: 5 +{{/if}} +{{#if proxy_url}} +resource.proxy_url: {{proxy_url}} +{{/if}} +{{#if ssl}} +resource.ssl: {{ssl}} +{{/if}} +{{#if http_client_timeout}} +resource.timeout: {{http_client_timeout}} +{{/if}} +resource.url: {{url}} +state: + initial_interval: {{initial_interval}} + page_size: {{page_size}} + access_token: {{access_token}} + next_page: 1 +redact: + fields: + - access_token +program: | + ( + has(state.worklist) && size(state.worklist) > 0 ? + state + : + ( + state.?want_more.orValue(false) ? + state + : + state.with({ + "start_time": state.?cursor.last_timestamp.orValue((now - duration(state.initial_interval)).format(time_layout.RFC3339)), + "end_time": now.format(time_layout.RFC3339), + }) + ).as(state, state.with( + request( + "GET", + state.url.trim_right("/") + "/v1/abusecampaigns?" + { + "pageSize": [string(state.page_size)], + "pageNumber": [string(state.next_page)], + "filter":["lastReportedTime gte " + state.start_time + " lte " + state.end_time] + }.format_query() + ).with({ + "Header":{ + "Authorization": ["Bearer " + string(state.access_token)], + } + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body, { + "worklist": body.campaigns.map(e, e.campaignId), + "next": 0, + }) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "GET:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + ) + )) + ).as(state, state.with( + !has(state.worklist) ? state : // Exit early due to GET failure. + state.next < size(state.worklist) ? + request("GET", + state.url.trim_right("/") + "/v1/abusecampaigns/" + state.worklist[state.next] + ).with({ + "Header":{ + "Authorization": ["Bearer " + string(state.access_token)], + } + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body,{ + "events": [{ + "message": body.encode_json(), + }], + "cursor": { + "last_timestamp": state.end_time + }, + "worklist": int(state.next) + 1 < size(state.worklist) ? state.worklist : [], + "next": int(state.next) + 1 < size(state.worklist) ? int(state.next) + 1 : 0, + "next_page": int(state.next) + 1 < size(state.worklist) ? state.next_page : int(state.next_page) + 1, + "want_more": true, + }) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "GET:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + ) + : + { + "events": [], + "want_more": false, + "next_page": 1 + } + ) + ) +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#if preserve_duplicate_custom_fields}} + - preserve_duplicate_custom_fields +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/elasticsearch/ingest_pipeline/default.yml b/packages/abnormal_security/data_stream/ai_security_mailbox/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..da2a071b1602 --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,285 @@ +--- +description: Pipeline for processing ai security mailbox logs. +processors: + - set: + field: ecs.version + tag: set_ecs_version + value: 8.11.0 + - fail: + tag: data_collection_error + if: ctx.error?.message != null && ctx.message == null && ctx.event?.original == null + message: error message set and no data to process. + - rename: + field: message + tag: rename_message_to_event_original + target_field: event.original + ignore_missing: true + description: Renames the original `message` field to `event.original` to store a copy of the original message. The `event.original` field is not touched if the document already has one; it may happen when Logstash sends the document. + if: ctx.event?.original == null + - remove: + field: message + tag: remove_message + ignore_missing: true + description: The `message` field is no longer required if the document has an `event.original` field. + if: ctx.event?.original != null + - json: + field: event.original + tag: json_event_original + target_field: json + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - fingerprint: + fields: + - json.lastReported + - json.campaignId + - json.messageId + tag: fingerprint_ai_security_mailbox + target_field: _id + ignore_missing: true + - set: + field: event.kind + tag: set_event_kind_to_event + value: event + - set: + field: observer.vendor + tag: set_observer_vendor + value: Abnormal + - set: + field: observer.product + tag: set_observer_product + value: Inbound Email Security + - rename: + field: json.attackType + tag: rename_attackType + target_field: abnormal_security.ai_security_mailbox.attack.type + ignore_missing: true + - append: + field: threat.tactic.name + tag: append_abnormal_security_ai_security_mailbox_attack_type_into_threat_tactic_name + value: '{{{abnormal_security.ai_security_mailbox.attack.type}}}' + allow_duplicates: false + if: ctx.abnormal_security?.ai_security_mailbox?.attack?.type != null + - rename: + field: json.campaignId + tag: rename_campaignId + target_field: abnormal_security.ai_security_mailbox.campaign_id + ignore_missing: true + - date: + field: json.firstReported + tag: date_firstReported + target_field: abnormal_security.ai_security_mailbox.first_reported + formats: + - ISO8601 + if: ctx.json?.firstReported != null && ctx.json.firstReported != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.fromName + tag: rename_fromName + target_field: abnormal_security.ai_security_mailbox.from.name + ignore_missing: true + - grok: + field: abnormal_security.ai_security_mailbox.from.name + tag: grok_abnormal_security_ai_security_mailbox_from_name + patterns: + - '^%{EMAILADDRESS:user.email}$' + - '^%{DATA:user.name}$' + ignore_failure: true + - append: + field: related.user + tag: append_abnormal_security_ai_security_mailbox_from_name_into_related_user + value: '{{{abnormal_security.ai_security_mailbox.from.name}}}' + allow_duplicates: false + if: ctx.abnormal_security?.ai_security_mailbox?.from?.name != null + - rename: + field: json.judgementStatus + tag: rename_judgementStatus + target_field: abnormal_security.ai_security_mailbox.judgement_status + ignore_missing: true + - set: + field: event.kind + tag: set_event_kind_to_enrichment + value: enrichment + if: ctx.abnormal_security?.ai_security_mailbox?.judgement_status != null && ['spam','malicious'].contains(ctx.abnormal_security.ai_security_mailbox.judgement_status.toLowerCase()) + - append: + field: event.category + tag: append_event_category + value: threat + if: ctx.abnormal_security?.ai_security_mailbox?.judgement_status != null && ['spam','malicious'].contains(ctx.abnormal_security.ai_security_mailbox.judgement_status.toLowerCase()) + - append: + field: event.type + tag: append_event_type + value: indicator + if: ctx.abnormal_security?.ai_security_mailbox?.judgement_status != null && ['spam','malicious'].contains(ctx.abnormal_security.ai_security_mailbox.judgement_status.toLowerCase()) + - set: + field: threat.indicator.type + tag: set_threat_indicator_type_to_email-addr + value: email-addr + if: ctx.abnormal_security?.ai_security_mailbox?.judgement_status != null && ['spam','malicious'].contains(ctx.abnormal_security.ai_security_mailbox.judgement_status.toLowerCase()) + - rename: + field: json.fromAddress + tag: rename_fromAddress + target_field: abnormal_security.ai_security_mailbox.from.address + ignore_missing: true + - append: + field: email.from.address + tag: append_abnormal_security_ai_security_mailbox_from_address_into_email_from_address + value: '{{{abnormal_security.ai_security_mailbox.from.address}}}' + allow_duplicates: false + if: ctx.abnormal_security?.ai_security_mailbox?.from?.address != null + - set: + field: threat.indicator.email.address + tag: set_threat_indicator_email_address_to_from_address + copy_from: abnormal_security.ai_security_mailbox.from.address + if: ctx.abnormal_security?.ai_security_mailbox?.judgement_status != null && ['spam','malicious'].contains(ctx.abnormal_security.ai_security_mailbox.judgement_status.toLowerCase()) + - set: + field: threat.indicator.name + tag: set_threat_indicator_name_to_from_address + copy_from: abnormal_security.ai_security_mailbox.from.address + if: ctx.abnormal_security?.ai_security_mailbox?.judgement_status != null && ['spam','malicious'].contains(ctx.abnormal_security.ai_security_mailbox.judgement_status.toLowerCase()) + - append: + field: related.user + tag: append_abnormal_security_ai_security_mailbox_from_address_into_related_user + value: '{{{abnormal_security.ai_security_mailbox.from.address}}}' + allow_duplicates: false + if: ctx.abnormal_security?.ai_security_mailbox?.from?.address != null + - date: + field: json.lastReported + tag: date_lastReported + target_field: abnormal_security.ai_security_mailbox.last_reported + formats: + - ISO8601 + if: ctx.json?.lastReported != null && ctx.json.lastReported != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: '@timestamp' + tag: set_@timestamp_from_ai_security_mailbox_last_reported + copy_from: abnormal_security.ai_security_mailbox.last_reported + ignore_empty_value: true + - convert: + field: json.messageId + tag: convert_messageId_to_string + target_field: abnormal_security.ai_security_mailbox.message_id + type: string + ignore_missing: true + - set: + field: event.id + tag: set_event_id_from_ai_security_mailbox_message_id + copy_from: abnormal_security.ai_security_mailbox.message_id + ignore_empty_value: true + - rename: + field: json.overallStatus + tag: rename_overallStatus + target_field: abnormal_security.ai_security_mailbox.overall_status + ignore_missing: true + - set: + field: event.action + tag: set_event_action_from_ai_security_mailbox_overall_status + copy_from: abnormal_security.ai_security_mailbox.overall_status + if: ctx.abnormal_security?.ai_security_mailbox?.overall_status?.toLowerCase() != 'no action needed' + ignore_empty_value: true + - lowercase: + field: event.action + tag: lowercase_event_action + ignore_missing: true + - rename: + field: json.recipientAddress + tag: rename_recipientAddress + target_field: abnormal_security.ai_security_mailbox.recipient.address + ignore_missing: true + - append: + field: email.to.address + tag: append_abnormal_security_ai_security_mailbox_recipient_address_into_email_to_address + value: '{{{abnormal_security.ai_security_mailbox.recipient.address}}}' + allow_duplicates: false + if: ctx.abnormal_security?.ai_security_mailbox?.recipient?.address != null + - append: + field: related.user + tag: append_abnormal_security_ai_security_mailbox_recipient_address_into_related_user + value: '{{{abnormal_security.ai_security_mailbox.recipient.address}}}' + allow_duplicates: false + if: ctx.abnormal_security?.ai_security_mailbox?.recipient?.address != null + - rename: + field: json.recipientName + tag: rename_recipientName + target_field: abnormal_security.ai_security_mailbox.recipient.name + ignore_missing: true + - grok: + field: abnormal_security.ai_security_mailbox.recipient.name + tag: grok_abnormal_security_ai_security_mailbox_recipient_name + patterns: + - '^%{EMAILADDRESS:destination.user.email}$' + - '^%{DATA:destination.user.name}$' + ignore_failure: true + - append: + field: related.user + tag: append_abnormal_security_ai_security_mailbox_recipient_name_into_related_user + value: '{{{abnormal_security.ai_security_mailbox.recipient.name}}}' + allow_duplicates: false + if: ctx.abnormal_security?.ai_security_mailbox?.recipient?.name != null + - rename: + field: json.subject + tag: rename_subject + target_field: abnormal_security.ai_security_mailbox.subject + ignore_missing: true + - set: + field: email.subject + tag: set_email_subject_from_ai_security_mailbox_subject + copy_from: abnormal_security.ai_security_mailbox.subject + ignore_empty_value: true + - remove: + field: + - abnormal_security.ai_security_mailbox.attack.type + - abnormal_security.ai_security_mailbox.from.address + - abnormal_security.ai_security_mailbox.from.name + - abnormal_security.ai_security_mailbox.last_reported + - abnormal_security.ai_security_mailbox.message_id + - abnormal_security.ai_security_mailbox.recipient.address + - abnormal_security.ai_security_mailbox.recipient.name + - abnormal_security.ai_security_mailbox.subject + - abnormal_security.ai_security_mailbox.overall_status + tag: remove_custom_duplicate_fields + ignore_missing: true + if: ctx.tags == null || !ctx.tags.contains('preserve_duplicate_custom_fields') + - remove: + field: json + tag: remove_json + ignore_missing: true + - script: + tag: script_to_drop_null_values + lang: painless + description: Drops null/empty values recursively. + source: |- + boolean drop(Object object) { + if (object == null || object == '') { + return true; + } else if (object instanceof Map) { + ((Map) object).values().removeIf(v -> drop(v)); + return (((Map) object).size() == 0); + } else if (object instanceof List) { + ((List) object).removeIf(v -> drop(v)); + return (((List) object).length == 0); + } + return false; + } + drop(ctx); + - set: + field: event.kind + value: pipeline_error + tag: set_pipeline_error_into_event_kind + if: ctx.error?.message != null +on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: event.kind + tag: set_pipeline_error_to_event_kind + value: pipeline_error diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/fields/base-fields.yml b/packages/abnormal_security/data_stream/ai_security_mailbox/fields/base-fields.yml new file mode 100644 index 000000000000..7f61176bdda1 --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/fields/base-fields.yml @@ -0,0 +1,20 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: event.module + type: constant_keyword + description: Event module. + value: abnormal_security +- name: event.dataset + type: constant_keyword + description: Event dataset. + value: abnormal_security.ai_security_mailbox +- name: '@timestamp' + type: date + description: Event timestamp. diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/fields/beats.yml b/packages/abnormal_security/data_stream/ai_security_mailbox/fields/beats.yml new file mode 100644 index 000000000000..4084f1dc7f51 --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/fields/beats.yml @@ -0,0 +1,6 @@ +- name: input.type + type: keyword + description: Type of filebeat input. +- name: log.offset + type: long + description: Log offset. diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/fields/fields.yml b/packages/abnormal_security/data_stream/ai_security_mailbox/fields/fields.yml new file mode 100644 index 000000000000..53db399aa583 --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/fields/fields.yml @@ -0,0 +1,51 @@ +- name: abnormal_security + type: group + fields: + - name: ai_security_mailbox + type: group + fields: + - name: attack + type: group + fields: + - name: type + type: keyword + description: The type of threat the message represents. + - name: campaign_id + type: keyword + description: An ID which maps to an abuse campaign. + - name: first_reported + type: date + description: Date abuse campaign was first reported. + - name: from + type: group + fields: + - name: address + type: keyword + description: The email address of the sender. + - name: name + type: keyword + description: The display name of the sender. + - name: judgement_status + type: keyword + description: Judgement status of message. + - name: last_reported + type: date + description: Date abuse campaign was last reported. + - name: message_id + type: keyword + description: A unique identifier for the first message in the abuse campaign. + - name: overall_status + type: keyword + description: Overall status of message. + - name: recipient + type: group + fields: + - name: address + type: keyword + description: The email address of the recipient. + - name: name + type: keyword + description: The name of the recipient. + - name: subject + type: keyword + description: Subject of the first email in the abuse campaign. diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/manifest.yml b/packages/abnormal_security/data_stream/ai_security_mailbox/manifest.yml new file mode 100644 index 000000000000..31e0a0912884 --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/manifest.yml @@ -0,0 +1,79 @@ +title: AI Security Mailbox logs +type: logs +streams: + - input: cel + title: AI Security Mailbox Logs + description: Collecting AI Security Mailbox logs via API. + template_path: cel.yml.hbs + vars: + - name: initial_interval + type: text + title: Initial Interval + multi: false + required: true + show_user: true + default: 24h + description: How far back to pull the AI Security Mailbox logs from Abnormal Security API. Supported units for this parameter are h/m/s. + - name: interval + type: text + title: Interval + description: Duration between requests to the Abnormal Security API. Supported units for this parameter are h/m/s. + default: 5m + multi: false + required: true + show_user: true + - name: page_size + type: text + title: Page Size + multi: false + required: true + show_user: false + description: Page size for the response of the Abnormal Security API. + default: 100 + - name: http_client_timeout + type: text + title: HTTP Client Timeout + description: Duration before declaring that the HTTP client connection has timed out. Supported time units are ns, us, ms, s, m, h. + multi: false + required: true + show_user: false + default: 30s + - name: enable_request_tracer + type: bool + title: Enable request tracing + multi: false + required: false + show_user: false + description: The request tracer logs requests and responses to the agent's local file-system for debugging configurations. Enabling this request tracing compromises security and should only be used for debugging. See [documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-cel.html#_resource_tracer_filename) for details. + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - forwarded + - abnormal_security-ai_security_mailbox + - name: preserve_original_event + required: false + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original`. + type: bool + multi: false + default: false + - name: preserve_duplicate_custom_fields + required: false + show_user: false + title: Preserve duplicate custom fields + description: Preserve abnormal_security.ai_security_mailbox fields that were copied to Elastic Common Schema (ECS) fields. + type: bool + multi: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. diff --git a/packages/abnormal_security/data_stream/ai_security_mailbox/sample_event.json b/packages/abnormal_security/data_stream/ai_security_mailbox/sample_event.json new file mode 100644 index 000000000000..2ffb8eae0865 --- /dev/null +++ b/packages/abnormal_security/data_stream/ai_security_mailbox/sample_event.json @@ -0,0 +1,101 @@ +{ + "@timestamp": "2024-07-26T10:30:06.000Z", + "abnormal_security": { + "ai_security_mailbox": { + "attack": { + "type": "Attack Type: Graymail" + }, + "campaign_id": "fff51768-c446-34e1-97a8-9802c29c3ebd", + "first_reported": "2024-07-26T10:30:06.000Z", + "from": { + "address": "bob@example.com", + "name": "bob@example.com" + }, + "judgement_status": "Safe", + "last_reported": "2024-07-26T10:30:06.000Z", + "message_id": "7063250485337877109", + "overall_status": "No Action Needed", + "recipient": { + "address": "john@example.com", + "name": "john" + }, + "subject": "Days of Understanding 2024" + } + }, + "agent": { + "ephemeral_id": "cafadbdd-dc09-45ac-aec4-49d7250ebd32", + "id": "9783be93-6fa9-44ba-8f6d-eda7dcb99151", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "abnormal_security.ai_security_mailbox", + "namespace": "38204", + "type": "logs" + }, + "destination": { + "user": { + "name": "john" + } + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "9783be93-6fa9-44ba-8f6d-eda7dcb99151", + "snapshot": false, + "version": "8.13.0" + }, + "email": { + "from": { + "address": [ + "bob@example.com" + ] + }, + "subject": "Days of Understanding 2024", + "to": { + "address": [ + "john@example.com" + ] + } + }, + "event": { + "agent_id_status": "verified", + "dataset": "abnormal_security.ai_security_mailbox", + "id": "7063250485337877109", + "ingested": "2024-08-08T05:41:05Z", + "kind": "event", + "original": "{\"attackType\":\"Attack Type: Graymail\",\"campaignId\":\"fff51768-c446-34e1-97a8-9802c29c3ebd\",\"firstReported\":\"2024-07-26T10:30:06Z\",\"fromAddress\":\"bob@example.com\",\"fromName\":\"bob@example.com\",\"judgementStatus\":\"Safe\",\"lastReported\":\"2024-07-26T10:30:06Z\",\"messageId\":\"7063250485337877109\",\"overallStatus\":\"No Action Needed\",\"recipientAddress\":\"john@example.com\",\"recipientName\":\"john\",\"subject\":\"Days of Understanding 2024\"}" + }, + "input": { + "type": "cel" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "bob@example.com", + "john@example.com", + "john" + ] + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "abnormal_security-ai_security_mailbox" + ], + "threat": { + "tactic": { + "name": [ + "Attack Type: Graymail" + ] + } + }, + "user": { + "email": "bob@example.com" + } +} \ No newline at end of file diff --git a/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-audit.log b/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-audit.log new file mode 100644 index 000000000000..caa885992f32 --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-audit.log @@ -0,0 +1,5 @@ +{"action":"update_remediation_status","actionDetails":{"providedReason":"null","requestUrl":"/v1.0/search_v2/666/purge_messages/"},"category":"search-and-respond-notifications","sourceIp":"81.2.69.142","status":"SUCCESS","tenantName":"","timestamp":"2024-07-17 15:39:32.141000+00:00","user":{"email":"bob@example.com"}} +{"action":"view_message_content","actionDetails":{"messageId":"-3597017621819474673","providedReason":"null","requestUrl":"/v2.0/messages/-3597017621819474673/email_content/"},"category":"abuse_mailbox","sourceIp":"81.2.69.142","status":"SUCCESS","tenantName":"Tenant_Beta","timestamp":"2024-07-18 18:40:33.419000+00:00","user":{"email":"bob@example.com"}} +{"action":"search_messages","actionDetails":{"providedReason":"null","requestUrl":"/v1.0/search_v2/"},"category":"search-and-respond-notifications","sourceIp":"81.2.69.144","status":"FAIL","tenantName":"","timestamp":"2024-07-15 14:48:37.510000+00:00","user":{"email":"bob@example.com"}} +{"action":"login","actionDetails":{"providedReason":"null","requestUrl":"/api-token-auth/"},"category":"","sourceIp":"81.2.69.142","status":"SUCCESS","tenantName":"","timestamp":"2024-07-18 12:40:29.055000+00:00","user":{"email":"john@example.com"}} +{"action":"search_cases","actionDetails":{"providedReason":"null","requestUrl":"/v2.0/cases"},"category":"abnormal_cases","sourceIp":"81.2.69.144","status":"SUCCESS","tenantName":"","timestamp":"2024-07-15 13:36:16.769000+00:00","user":{"email":"john@example.com"}} diff --git a/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json b/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json new file mode 100644 index 000000000000..ef427ca5a39e --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json @@ -0,0 +1,357 @@ +{ + "expected": [ + { + "@timestamp": "2024-07-17T15:39:32.141Z", + "abnormal_security": { + "audit": { + "action": "update_remediation_status", + "action_details": { + "request_url": "/v1.0/search_v2/666/purge_messages/" + }, + "category": "search-and-respond-notifications", + "source_ip": "81.2.69.142", + "status": "SUCCESS", + "timestamp": "2024-07-17T15:39:32.141Z", + "user": { + "email": "bob@example.com" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "update_remediation_status", + "category": [ + "configuration" + ], + "kind": "event", + "original": "{\"action\":\"update_remediation_status\",\"actionDetails\":{\"providedReason\":\"null\",\"requestUrl\":\"/v1.0/search_v2/666/purge_messages/\"},\"category\":\"search-and-respond-notifications\",\"sourceIp\":\"81.2.69.142\",\"status\":\"SUCCESS\",\"tenantName\":\"\",\"timestamp\":\"2024-07-17 15:39:32.141000+00:00\",\"user\":{\"email\":\"bob@example.com\"}}", + "outcome": "success", + "type": [ + "info", + "change" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "ip": [ + "81.2.69.142" + ], + "user": [ + "bob@example.com" + ] + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "url": { + "extension": "0/search_v2/666/purge_messages/", + "original": "/v1.0/search_v2/666/purge_messages/", + "path": "/v1.0/search_v2/666/purge_messages/" + }, + "user": { + "email": "bob@example.com" + } + }, + { + "@timestamp": "2024-07-18T18:40:33.419Z", + "abnormal_security": { + "audit": { + "action": "view_message_content", + "action_details": { + "message_id": "-3597017621819474673", + "request_url": "/v2.0/messages/-3597017621819474673/email_content/" + }, + "category": "abuse_mailbox", + "source_ip": "81.2.69.142", + "status": "SUCCESS", + "tenant_name": "Tenant_Beta", + "timestamp": "2024-07-18T18:40:33.419Z", + "user": { + "email": "bob@example.com" + } + } + }, + "cloud": { + "account": { + "name": "Tenant_Beta" + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "view_message_content", + "kind": "event", + "original": "{\"action\":\"view_message_content\",\"actionDetails\":{\"messageId\":\"-3597017621819474673\",\"providedReason\":\"null\",\"requestUrl\":\"/v2.0/messages/-3597017621819474673/email_content/\"},\"category\":\"abuse_mailbox\",\"sourceIp\":\"81.2.69.142\",\"status\":\"SUCCESS\",\"tenantName\":\"Tenant_Beta\",\"timestamp\":\"2024-07-18 18:40:33.419000+00:00\",\"user\":{\"email\":\"bob@example.com\"}}", + "outcome": "success", + "type": [ + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "ip": [ + "81.2.69.142" + ], + "user": [ + "bob@example.com" + ] + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "url": { + "extension": "0/messages/-3597017621819474673/email_content/", + "original": "/v2.0/messages/-3597017621819474673/email_content/", + "path": "/v2.0/messages/-3597017621819474673/email_content/" + }, + "user": { + "email": "bob@example.com" + } + }, + { + "@timestamp": "2024-07-15T14:48:37.510Z", + "abnormal_security": { + "audit": { + "action": "search_messages", + "action_details": { + "request_url": "/v1.0/search_v2/" + }, + "category": "search-and-respond-notifications", + "source_ip": "81.2.69.144", + "status": "FAIL", + "timestamp": "2024-07-15T14:48:37.510Z", + "user": { + "email": "bob@example.com" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "search_messages", + "kind": "event", + "original": "{\"action\":\"search_messages\",\"actionDetails\":{\"providedReason\":\"null\",\"requestUrl\":\"/v1.0/search_v2/\"},\"category\":\"search-and-respond-notifications\",\"sourceIp\":\"81.2.69.144\",\"status\":\"FAIL\",\"tenantName\":\"\",\"timestamp\":\"2024-07-15 14:48:37.510000+00:00\",\"user\":{\"email\":\"bob@example.com\"}}", + "outcome": "failure", + "type": [ + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "ip": [ + "81.2.69.144" + ], + "user": [ + "bob@example.com" + ] + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.144" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "url": { + "extension": "0/search_v2/", + "original": "/v1.0/search_v2/", + "path": "/v1.0/search_v2/" + }, + "user": { + "email": "bob@example.com" + } + }, + { + "@timestamp": "2024-07-18T12:40:29.055Z", + "abnormal_security": { + "audit": { + "action": "login", + "action_details": { + "request_url": "/api-token-auth/" + }, + "source_ip": "81.2.69.142", + "status": "SUCCESS", + "timestamp": "2024-07-18T12:40:29.055Z", + "user": { + "email": "john@example.com" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "login", + "category": [ + "authentication" + ], + "kind": "event", + "original": "{\"action\":\"login\",\"actionDetails\":{\"providedReason\":\"null\",\"requestUrl\":\"/api-token-auth/\"},\"category\":\"\",\"sourceIp\":\"81.2.69.142\",\"status\":\"SUCCESS\",\"tenantName\":\"\",\"timestamp\":\"2024-07-18 12:40:29.055000+00:00\",\"user\":{\"email\":\"john@example.com\"}}", + "outcome": "success", + "type": [ + "info", + "start" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "ip": [ + "81.2.69.142" + ], + "user": [ + "john@example.com" + ] + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "url": { + "original": "/api-token-auth/", + "path": "/api-token-auth/" + }, + "user": { + "email": "john@example.com" + } + }, + { + "@timestamp": "2024-07-15T13:36:16.769Z", + "abnormal_security": { + "audit": { + "action": "search_cases", + "action_details": { + "request_url": "/v2.0/cases" + }, + "category": "abnormal_cases", + "source_ip": "81.2.69.144", + "status": "SUCCESS", + "timestamp": "2024-07-15T13:36:16.769Z", + "user": { + "email": "john@example.com" + } + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "search_cases", + "kind": "event", + "original": "{\"action\":\"search_cases\",\"actionDetails\":{\"providedReason\":\"null\",\"requestUrl\":\"/v2.0/cases\"},\"category\":\"abnormal_cases\",\"sourceIp\":\"81.2.69.144\",\"status\":\"SUCCESS\",\"tenantName\":\"\",\"timestamp\":\"2024-07-15 13:36:16.769000+00:00\",\"user\":{\"email\":\"john@example.com\"}}", + "outcome": "success", + "type": [ + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "ip": [ + "81.2.69.144" + ], + "user": [ + "john@example.com" + ] + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.144" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "url": { + "extension": "0/cases", + "original": "/v2.0/cases", + "path": "/v2.0/cases" + }, + "user": { + "email": "john@example.com" + } + } + ] +} \ No newline at end of file diff --git a/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-common-config.yml b/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..b75cf4085645 --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,7 @@ +fields: + tags: + - preserve_duplicate_custom_fields +dynamic_fields: + # This can be removed after ES 8.14 is the minimum version. + # Relates: https://github.com/elastic/elasticsearch/pull/105689 + url.extension: '^.*$' diff --git a/packages/abnormal_security/data_stream/audit/_dev/test/system/test-default-config.yml b/packages/abnormal_security/data_stream/audit/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..0ff5c7939685 --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/_dev/test/system/test-default-config.yml @@ -0,0 +1,14 @@ +input: cel +service: abnormal_security +vars: + url: http://{{Hostname}}:{{Port}} + access_token: xxxx +data_stream: + vars: + interval: 5m + initial_interval: 24h + page_size: 1 + preserve_original_event: true + preserve_duplicate_custom_fields: true +assert: + hit_count: 2 diff --git a/packages/abnormal_security/data_stream/audit/agent/stream/cel.yml.hbs b/packages/abnormal_security/data_stream/audit/agent/stream/cel.yml.hbs new file mode 100644 index 000000000000..320092c632f9 --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/agent/stream/cel.yml.hbs @@ -0,0 +1,97 @@ +config_version: 2 +interval: {{interval}} +{{#if enable_request_tracer}} +resource.tracer.filename: "../../logs/cel/http-request-trace-*.ndjson" +resource.tracer.maxbackups: 5 +{{/if}} +{{#if proxy_url}} +resource.proxy_url: {{proxy_url}} +{{/if}} +{{#if ssl}} +resource.ssl: {{ssl}} +{{/if}} +{{#if http_client_timeout}} +resource.timeout: {{http_client_timeout}} +{{/if}} +resource.url: {{url}} +state: + initial_interval: {{initial_interval}} + page_size: {{page_size}} + access_token: {{access_token}} + next_page: 1 +redact: + fields: + - access_token +program: | + ( + state.?want_more.orValue(false) ? + state + : + state.with({ + "start_time": state.?cursor.last_timestamp.orValue((now - duration(state.initial_interval)).format(time_layout.RFC3339)), + "end_time": now.format(time_layout.RFC3339), + }) + ).as(state, state.with( + request( + "GET", + state.url.trim_right("/") + "/v1/auditlogs?" + { + "pageSize": [string(state.page_size)], + "pageNumber": [string(state.next_page)], + "filter": ["timestamp gte " + state.start_time + " lte " + state.end_time] + }.format_query() + ).with({ + "Header": { + "Authorization": ["Bearer " + string(state.access_token)] + } + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body, { + "events": ( + has(body.auditLogs) + ? + body.auditLogs.map(e, { + "message": e.encode_json(), + }) + : + [] + ), + "cursor": { + "last_timestamp": state.end_time, + }, + "want_more": has(body.auditLogs) && size(body.auditLogs) > 0, + "next_page": has(body.auditLogs) && size(body.auditLogs) > 0 ? int(state.next_page) + 1 : 1, + }) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "GET:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + ) + )) +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#if preserve_duplicate_custom_fields}} + - preserve_duplicate_custom_fields +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/abnormal_security/data_stream/audit/elasticsearch/ingest_pipeline/default.yml b/packages/abnormal_security/data_stream/audit/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..284e614caa2f --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,261 @@ +--- +description: Pipeline for processing audit logs. +processors: + - set: + field: ecs.version + tag: set_ecs_version + value: 8.11.0 + - fail: + tag: data_collection_error + if: ctx.error?.message != null && ctx.message == null && ctx.event?.original == null + message: error message set and no data to process. + - rename: + field: message + tag: rename_message_to_event_original + target_field: event.original + ignore_missing: true + description: Renames the original `message` field to `event.original` to store a copy of the original message. The `event.original` field is not touched if the document already has one; it may happen when Logstash sends the document. + if: ctx.event?.original == null + - remove: + field: message + tag: remove_message + ignore_missing: true + description: The `message` field is no longer required if the document has an `event.original` field. + if: ctx.event?.original != null + - json: + field: event.original + tag: json_event_original + target_field: json + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - fingerprint: + fields: + - json.timestamp + - json.actionDetails.messageId + tag: fingerprint_audit + target_field: _id + ignore_missing: true + - set: + field: event.kind + tag: set_event_kind_to_event + value: event + - append: + field: event.type + tag: append_event_type + value: info + - set: + field: observer.vendor + tag: set_observer_vendor + value: Abnormal + - set: + field: observer.product + tag: set_observer_product + value: Inbound Email Security + - rename: + field: json.action + tag: rename_action + target_field: abnormal_security.audit.action + ignore_missing: true + - append: + field: event.category + tag: append_event_category + value: authentication + if: ctx.abnormal_security?.audit?.action?.toLowerCase() == 'login' + - append: + field: event.type + tag: append_event_type + value: start + if: ctx.abnormal_security?.audit?.action?.toLowerCase() == 'login' + - append: + field: event.category + tag: append_event_category + value: configuration + if: ctx.abnormal_security?.audit?.action?.toLowerCase() == 'update_remediation_status' + - append: + field: event.type + tag: append_event_type + value: change + if: ctx.abnormal_security?.audit?.action?.toLowerCase() == 'update_remediation_status' + - set: + field: event.action + tag: set_event_action_from_audit_action + copy_from: abnormal_security.audit.action + ignore_empty_value: true + - lowercase: + field: event.action + tag: lowercase_event_action + ignore_missing: true + - convert: + field: json.actionDetails.messageId + tag: convert_actionDetails_messageId + target_field: abnormal_security.audit.action_details.message_id + type: string + ignore_missing: true + - rename: + field: json.actionDetails.providedReason + tag: rename_actionDetails_providedReason + target_field: abnormal_security.audit.action_details.provided_reason + ignore_missing: true + - set: + field: event.reason + tag: set_event_reason_from_audit_action_details_provided_reason + copy_from: abnormal_security.audit.action_details.provided_reason + ignore_empty_value: true + - rename: + field: json.actionDetails.requestUrl + tag: rename_actionDetails_requestUrl + target_field: abnormal_security.audit.action_details.request_url + ignore_missing: true + - set: + field: url.original + tag: set_url_original_from_audit_action_details_request_url + copy_from: abnormal_security.audit.action_details.request_url + ignore_empty_value: true + - uri_parts: + field: url.original + tag: uri_parts_url_original + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.category + tag: rename_category + target_field: abnormal_security.audit.category + ignore_missing: true + - convert: + field: json.sourceIp + tag: convert_sourceIp_to_ip + target_field: abnormal_security.audit.source_ip + type: ip + ignore_missing: true + if: ctx.json?.sourceIp != null && ctx.json.sourceIp != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: source.ip + tag: set_source_ip_from_audit_source_ip + copy_from: abnormal_security.audit.source_ip + ignore_empty_value: true + - geoip: + field: source.ip + target_field: source.geo + tag: geoip_source_ip + ignore_missing: true + - append: + field: related.ip + value: '{{{source.ip}}}' + tag: append_related_ip_from_source_ip + if: ctx.source?.ip != null + allow_duplicates: false + - rename: + field: json.status + tag: rename_status + target_field: abnormal_security.audit.status + ignore_missing: true + - set: + field: event.outcome + tag: set_event_outcome_from_audit_status_success + value: success + if: ctx.abnormal_security?.audit?.status?.toLowerCase().contains('success') + - set: + field: event.outcome + tag: set_event_outcome_from_audit_status_failure + value: failure + if: ctx.abnormal_security?.audit?.status?.toLowerCase().contains('fail') + - rename: + field: json.tenantName + tag: rename_tenantName + target_field: abnormal_security.audit.tenant_name + ignore_missing: true + - set: + field: cloud.account.name + tag: set_cloud_account_name_from_audit_tenant_name + copy_from: abnormal_security.audit.tenant_name + ignore_empty_value: true + - date: + field: json.timestamp + tag: date_timestamp + target_field: abnormal_security.audit.timestamp + formats: + - yyyy-MM-dd' 'HH:mm:ss.SSSSSSXXXXX + - ISO8601 + if: ctx.json?.timestamp != null && ctx.json.timestamp != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: '@timestamp' + tag: set_@timestamp_from_audit_timestamp + copy_from: abnormal_security.audit.timestamp + ignore_empty_value: true + - rename: + field: json.user.email + tag: rename_user_email + target_field: abnormal_security.audit.user.email + ignore_missing: true + - set: + field: user.email + tag: set_user_email_from_audit_user_email + copy_from: abnormal_security.audit.user.email + ignore_empty_value: true + - append: + field: related.user + tag: append_abnormal_security_from_name_into_related_user + value: '{{{abnormal_security.audit.user.email}}}' + allow_duplicates: false + if: ctx.abnormal_security?.audit?.user?.email != null + - remove: + field: + - abnormal_security.audit.action + - abnormal_security.audit.action_details.provided_reason + - abnormal_security.audit.action_details.request_url + - abnormal_security.audit.source_ip + - abnormal_security.audit.status + - abnormal_security.audit.tenant_name + - abnormal_security.audit.timestamp + - abnormal_security.audit.user.email + tag: remove_custom_duplicate_fields + ignore_missing: true + if: ctx.tags == null || !ctx.tags.contains('preserve_duplicate_custom_fields') + - remove: + field: json + tag: remove_json + ignore_missing: true + - script: + tag: script_to_drop_null_values + lang: painless + description: Drops null/empty values recursively. + source: |- + boolean drop(Object object) { + if (object == null || object == '' || object == 'null') { + return true; + } else if (object instanceof Map) { + ((Map) object).values().removeIf(v -> drop(v)); + return (((Map) object).size() == 0); + } else if (object instanceof List) { + ((List) object).removeIf(v -> drop(v)); + return (((List) object).length == 0); + } + return false; + } + drop(ctx); + - set: + field: event.kind + value: pipeline_error + tag: set_pipeline_error_into_event_kind + if: ctx.error?.message != null +on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: event.kind + tag: set_pipeline_error_to_event_kind + value: pipeline_error diff --git a/packages/abnormal_security/data_stream/audit/fields/base-fields.yml b/packages/abnormal_security/data_stream/audit/fields/base-fields.yml new file mode 100644 index 000000000000..b412d4b54441 --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/fields/base-fields.yml @@ -0,0 +1,20 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: event.module + type: constant_keyword + description: Event module. + value: abnormal_security +- name: event.dataset + type: constant_keyword + description: Event dataset. + value: abnormal_security.audit +- name: '@timestamp' + type: date + description: Event timestamp. diff --git a/packages/abnormal_security/data_stream/audit/fields/beats.yml b/packages/abnormal_security/data_stream/audit/fields/beats.yml new file mode 100644 index 000000000000..4084f1dc7f51 --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/fields/beats.yml @@ -0,0 +1,6 @@ +- name: input.type + type: keyword + description: Type of filebeat input. +- name: log.offset + type: long + description: Log offset. diff --git a/packages/abnormal_security/data_stream/audit/fields/fields.yml b/packages/abnormal_security/data_stream/audit/fields/fields.yml new file mode 100644 index 000000000000..c1bb98218027 --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/fields/fields.yml @@ -0,0 +1,42 @@ +- name: abnormal_security + type: group + fields: + - name: audit + type: group + fields: + - name: action + type: keyword + description: The specific action performed during the event. This field is optional and may not be present. + - name: action_details + type: group + fields: + - name: message_id + type: keyword + description: ID of the message on which an action was performed. + - name: provided_reason + type: keyword + description: Reason provided for performing the action. + - name: request_url + type: keyword + description: URL for the request. + - name: category + type: keyword + description: The category of the performed action. + - name: source_ip + type: ip + description: The IP address of the device that caused the event. + - name: status + type: keyword + description: The result of the event. Returned as either SUCCESS or FAILURE. + - name: tenant_name + type: keyword + description: Name of the tenant the user has access to. + - name: timestamp + type: date + description: Date/time when the event occurred in UTC. + - name: user + type: group + fields: + - name: email + type: keyword + description: Email address of the user. diff --git a/packages/abnormal_security/data_stream/audit/manifest.yml b/packages/abnormal_security/data_stream/audit/manifest.yml new file mode 100644 index 000000000000..4a908df48bf8 --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/manifest.yml @@ -0,0 +1,79 @@ +title: Audit logs +type: logs +streams: + - input: cel + title: Audit Logs + description: Collecting Audit logs via API. + template_path: cel.yml.hbs + vars: + - name: initial_interval + type: text + title: Initial Interval + multi: false + required: true + show_user: true + default: 24h + description: How far back to pull the Audit logs from Abnormal Security API. Supported units for this parameter are h/m/s. + - name: interval + type: text + title: Interval + description: Duration between requests to the Abnormal Security API. Supported units for this parameter are h/m/s. + default: 5m + multi: false + required: true + show_user: true + - name: page_size + type: text + title: Page Size + multi: false + required: true + show_user: false + description: Page size for the response of the Abnormal Security API. + default: 100 + - name: http_client_timeout + type: text + title: HTTP Client Timeout + description: Duration before declaring that the HTTP client connection has timed out. Supported time units are ns, us, ms, s, m, h. + multi: false + required: true + show_user: false + default: 30s + - name: enable_request_tracer + type: bool + title: Enable request tracing + multi: false + required: false + show_user: false + description: The request tracer logs requests and responses to the agent's local file-system for debugging configurations. Enabling this request tracing compromises security and should only be used for debugging. See [documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-cel.html#_resource_tracer_filename) for details. + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - forwarded + - abnormal_security-audit + - name: preserve_original_event + required: false + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original`. + type: bool + multi: false + default: false + - name: preserve_duplicate_custom_fields + required: false + show_user: false + title: Preserve duplicate custom fields + description: Preserve abnormal_security.audit fields that were copied to Elastic Common Schema (ECS) fields. + type: bool + multi: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. diff --git a/packages/abnormal_security/data_stream/audit/sample_event.json b/packages/abnormal_security/data_stream/audit/sample_event.json new file mode 100644 index 000000000000..460ade36844e --- /dev/null +++ b/packages/abnormal_security/data_stream/audit/sample_event.json @@ -0,0 +1,98 @@ +{ + "@timestamp": "2024-07-17T15:39:32.141Z", + "abnormal_security": { + "audit": { + "action": "update_remediation_status", + "action_details": { + "request_url": "/v1.0/search_v2/666/purge_messages/" + }, + "category": "search-and-respond-notifications", + "source_ip": "81.2.69.142", + "status": "SUCCESS", + "timestamp": "2024-07-17T15:39:32.141Z", + "user": { + "email": "bob@example.com" + } + } + }, + "agent": { + "ephemeral_id": "40cced4d-2587-4880-a6ad-3fe697d9ca7f", + "id": "7aaba523-565c-4597-bc42-59135436336b", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "abnormal_security.audit", + "namespace": "19380", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "7aaba523-565c-4597-bc42-59135436336b", + "snapshot": false, + "version": "8.13.0" + }, + "event": { + "action": "update_remediation_status", + "agent_id_status": "verified", + "category": [ + "configuration" + ], + "dataset": "abnormal_security.audit", + "ingested": "2024-08-06T09:41:39Z", + "kind": "event", + "original": "{\"action\":\"update_remediation_status\",\"actionDetails\":{\"providedReason\":\"null\",\"requestUrl\":\"/v1.0/search_v2/666/purge_messages/\"},\"category\":\"search-and-respond-notifications\",\"sourceIp\":\"81.2.69.142\",\"status\":\"SUCCESS\",\"tenantName\":\"\",\"timestamp\":\"2024-07-17 15:39:32.141000+00:00\",\"user\":{\"email\":\"bob@example.com\"}}", + "outcome": "success", + "type": [ + "info", + "change" + ] + }, + "input": { + "type": "cel" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "ip": [ + "81.2.69.142" + ], + "user": [ + "bob@example.com" + ] + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "abnormal_security-audit" + ], + "url": { + "extension": "0/search_v2/666/purge_messages/", + "original": "/v1.0/search_v2/666/purge_messages/", + "path": "/v1.0/search_v2/666/purge_messages/" + }, + "user": { + "email": "bob@example.com" + } +} \ No newline at end of file diff --git a/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-case.log b/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-case.log new file mode 100644 index 000000000000..e149636b1711 --- /dev/null +++ b/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-case.log @@ -0,0 +1,5 @@ +{"caseId":11151468,"affectedEmployee":"john@example.com","analysis":"SIGN_IN","case_status":"Acknowledged (Attack resolved)","customerVisibleTime":"2024-01-05T12:33:25+00:00","firstObserved":"2024-01-05T12:33:25+00:00","remediation_status":"Not remediated","severity":"Account Takeover","severity_level":"LOW","threatIds":[]} +{"caseId":11153536,"affectedEmployee":"bob@example.com","analysis":"MAIL_FILTER","case_status":"Acknowledged (Attack resolved)","customerVisibleTime":"2024-01-25T22:21:11.789000+00:00","firstObserved":"2024-01-25T22:21:11.789000+00:00","remediation_status":"Not remediated","severity":"Account Takeover","severity_level":"HIGH","threatIds":[]} +{"caseId":11165798,"affectedEmployee":"john@example.com","analysis":"RISK_EVENT","case_status":"Acknowledged (Not an attack)","customerVisibleTime":"2024-04-10T16:54:43.533000+00:00","firstObserved":"2024-04-10T16:54:43.533000+00:00","remediation_status":"Not remediated","severity":"Account Takeover","severity_level":"HIGH","threatIds":[]} +{"caseId":11175289,"affectedEmployee":"john@example.com","analysis":"CROWDSTRIKE_INCIDENT","case_status":"Acknowledged (Not an attack)","customerVisibleTime":"2024-05-29T21:49:51.673000+00:00","firstObserved":"2024-05-29T21:49:51.673000+00:00","remediation_status":"Not remediated","severity":"Account Takeover","severity_level":"HIGH","threatIds":[]} +{"caseId":11178942,"affectedEmployee":"bob@example.com","analysis":"MAIL_FILTER","case_status":"Acknowledged (Not an attack)","customerVisibleTime":"2024-06-16T13:25:41.899000+00:00","firstObserved":"2024-06-16T13:25:41.899000+00:00","remediation_status":"Not remediated","severity":"Account Takeover","severity_level":"HIGH","threatIds":[]} diff --git a/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-case.log-expected.json b/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-case.log-expected.json new file mode 100644 index 000000000000..b213e41acec7 --- /dev/null +++ b/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-case.log-expected.json @@ -0,0 +1,224 @@ +{ + "expected": [ + { + "abnormal_security": { + "case": { + "affected_employee": "john@example.com", + "analysis": "SIGN_IN", + "customer_visible_time": "2024-01-05T12:33:25.000Z", + "first_observed": "2024-01-05T12:33:25.000Z", + "id": "11151468", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "LOW", + "status": "Acknowledged (Attack resolved)" + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "sign_in", + "id": "11151468", + "kind": "event", + "original": "{\"caseId\":11151468,\"affectedEmployee\":\"john@example.com\",\"analysis\":\"SIGN_IN\",\"case_status\":\"Acknowledged (Attack resolved)\",\"customerVisibleTime\":\"2024-01-05T12:33:25+00:00\",\"firstObserved\":\"2024-01-05T12:33:25+00:00\",\"remediation_status\":\"Not remediated\",\"severity\":\"Account Takeover\",\"severity_level\":\"LOW\",\"threatIds\":[]}", + "severity": 1, + "start": "2024-01-05T12:33:25.000Z", + "type": [ + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "john@example.com" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "user": { + "email": "john@example.com" + } + }, + { + "abnormal_security": { + "case": { + "affected_employee": "bob@example.com", + "analysis": "MAIL_FILTER", + "customer_visible_time": "2024-01-25T22:21:11.789Z", + "first_observed": "2024-01-25T22:21:11.789Z", + "id": "11153536", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "HIGH", + "status": "Acknowledged (Attack resolved)" + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "mail_filter", + "id": "11153536", + "kind": "event", + "original": "{\"caseId\":11153536,\"affectedEmployee\":\"bob@example.com\",\"analysis\":\"MAIL_FILTER\",\"case_status\":\"Acknowledged (Attack resolved)\",\"customerVisibleTime\":\"2024-01-25T22:21:11.789000+00:00\",\"firstObserved\":\"2024-01-25T22:21:11.789000+00:00\",\"remediation_status\":\"Not remediated\",\"severity\":\"Account Takeover\",\"severity_level\":\"HIGH\",\"threatIds\":[]}", + "severity": 3, + "start": "2024-01-25T22:21:11.789Z", + "type": [ + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "bob@example.com" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "user": { + "email": "bob@example.com" + } + }, + { + "abnormal_security": { + "case": { + "affected_employee": "john@example.com", + "analysis": "RISK_EVENT", + "customer_visible_time": "2024-04-10T16:54:43.533Z", + "first_observed": "2024-04-10T16:54:43.533Z", + "id": "11165798", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "HIGH", + "status": "Acknowledged (Not an attack)" + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "risk_event", + "id": "11165798", + "kind": "event", + "original": "{\"caseId\":11165798,\"affectedEmployee\":\"john@example.com\",\"analysis\":\"RISK_EVENT\",\"case_status\":\"Acknowledged (Not an attack)\",\"customerVisibleTime\":\"2024-04-10T16:54:43.533000+00:00\",\"firstObserved\":\"2024-04-10T16:54:43.533000+00:00\",\"remediation_status\":\"Not remediated\",\"severity\":\"Account Takeover\",\"severity_level\":\"HIGH\",\"threatIds\":[]}", + "severity": 3, + "start": "2024-04-10T16:54:43.533Z", + "type": [ + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "john@example.com" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "user": { + "email": "john@example.com" + } + }, + { + "abnormal_security": { + "case": { + "affected_employee": "john@example.com", + "analysis": "CROWDSTRIKE_INCIDENT", + "customer_visible_time": "2024-05-29T21:49:51.673Z", + "first_observed": "2024-05-29T21:49:51.673Z", + "id": "11175289", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "HIGH", + "status": "Acknowledged (Not an attack)" + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "crowdstrike_incident", + "id": "11175289", + "kind": "event", + "original": "{\"caseId\":11175289,\"affectedEmployee\":\"john@example.com\",\"analysis\":\"CROWDSTRIKE_INCIDENT\",\"case_status\":\"Acknowledged (Not an attack)\",\"customerVisibleTime\":\"2024-05-29T21:49:51.673000+00:00\",\"firstObserved\":\"2024-05-29T21:49:51.673000+00:00\",\"remediation_status\":\"Not remediated\",\"severity\":\"Account Takeover\",\"severity_level\":\"HIGH\",\"threatIds\":[]}", + "severity": 3, + "start": "2024-05-29T21:49:51.673Z", + "type": [ + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "john@example.com" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "user": { + "email": "john@example.com" + } + }, + { + "abnormal_security": { + "case": { + "affected_employee": "bob@example.com", + "analysis": "MAIL_FILTER", + "customer_visible_time": "2024-06-16T13:25:41.899Z", + "first_observed": "2024-06-16T13:25:41.899Z", + "id": "11178942", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "HIGH", + "status": "Acknowledged (Not an attack)" + } + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "action": "mail_filter", + "id": "11178942", + "kind": "event", + "original": "{\"caseId\":11178942,\"affectedEmployee\":\"bob@example.com\",\"analysis\":\"MAIL_FILTER\",\"case_status\":\"Acknowledged (Not an attack)\",\"customerVisibleTime\":\"2024-06-16T13:25:41.899000+00:00\",\"firstObserved\":\"2024-06-16T13:25:41.899000+00:00\",\"remediation_status\":\"Not remediated\",\"severity\":\"Account Takeover\",\"severity_level\":\"HIGH\",\"threatIds\":[]}", + "severity": 3, + "start": "2024-06-16T13:25:41.899Z", + "type": [ + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "bob@example.com" + ] + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "user": { + "email": "bob@example.com" + } + } + ] +} \ No newline at end of file diff --git a/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-common-config.yml b/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..37e8fa225fdc --- /dev/null +++ b/packages/abnormal_security/data_stream/case/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,3 @@ +fields: + tags: + - preserve_duplicate_custom_fields diff --git a/packages/abnormal_security/data_stream/case/_dev/test/system/test-default-config.yml b/packages/abnormal_security/data_stream/case/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..0ff5c7939685 --- /dev/null +++ b/packages/abnormal_security/data_stream/case/_dev/test/system/test-default-config.yml @@ -0,0 +1,14 @@ +input: cel +service: abnormal_security +vars: + url: http://{{Hostname}}:{{Port}} + access_token: xxxx +data_stream: + vars: + interval: 5m + initial_interval: 24h + page_size: 1 + preserve_original_event: true + preserve_duplicate_custom_fields: true +assert: + hit_count: 2 diff --git a/packages/abnormal_security/data_stream/case/agent/stream/cel.yml.hbs b/packages/abnormal_security/data_stream/case/agent/stream/cel.yml.hbs new file mode 100644 index 000000000000..6ea4496c97b7 --- /dev/null +++ b/packages/abnormal_security/data_stream/case/agent/stream/cel.yml.hbs @@ -0,0 +1,136 @@ +config_version: 2 +interval: {{interval}} +{{#if enable_request_tracer}} +resource.tracer.filename: "../../logs/cel/http-request-trace-*.ndjson" +resource.tracer.maxbackups: 5 +{{/if}} +{{#if proxy_url}} +resource.proxy_url: {{proxy_url}} +{{/if}} +{{#if ssl}} +resource.ssl: {{ssl}} +{{/if}} +{{#if http_client_timeout}} +resource.timeout: {{http_client_timeout}} +{{/if}} +resource.url: {{url}} +state: + initial_interval: {{initial_interval}} + page_size: {{page_size}} + access_token: {{access_token}} + next_page: 1 +redact: + fields: + - access_token +program: | + ( + has(state.worklist) && size(state.worklist) > 0 ? + state + : + ( + state.?want_more.orValue(false) ? + state + : + state.with({ + "start_time": state.?cursor.last_timestamp.orValue((now - duration(state.initial_interval)).format(time_layout.RFC3339)), + "end_time": now.format(time_layout.RFC3339), + }) + ).as(state, state.with( + request( + "GET", + state.url.trim_right("/") + "/v1/cases?" + { + "pageSize": [string(state.page_size)], + "pageNumber": [string(state.next_page)], + "filter":["lastModifiedTime gte " + state.start_time + " lte " + state.end_time] + }.format_query() + ).with({ + "Header":{ + "Authorization": ["Bearer " + string(state.access_token)], + } + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body, { + "worklist": body.cases.map(e, e.caseId), + "next": 0, + }) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "GET:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + ) + )) + ).as(state, state.with( + !has(state.worklist) ? state : // Exit early due to GET failure. + state.next < size(state.worklist) ? + request("GET", + state.url.trim_right("/") + "/v1/cases/" + string(int(state.worklist[state.next])) + ).with({ + "Header":{ + "Authorization": ["Bearer " + string(state.access_token)], + } + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body,{ + "events": [{ + "message": body.encode_json(), + }], + "cursor": { + "last_timestamp": state.end_time + }, + "worklist": int(state.next) + 1 < size(state.worklist) ? state.worklist : [], + "next": int(state.next) + 1 < size(state.worklist) ? int(state.next) + 1 : 0, + "next_page": int(state.next) + 1 < size(state.worklist) ? state.next_page : int(state.next_page) + 1, + "want_more": true, + }) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "GET:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + ) + : + { + "events": [], + "want_more": false, + "next_page": 1 + } + ) + ) +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#if preserve_duplicate_custom_fields}} + - preserve_duplicate_custom_fields +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/abnormal_security/data_stream/case/elasticsearch/ingest_pipeline/default.yml b/packages/abnormal_security/data_stream/case/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..143b1a2d21bb --- /dev/null +++ b/packages/abnormal_security/data_stream/case/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,224 @@ +--- +description: Pipeline for processing case logs. +processors: + - set: + field: ecs.version + tag: set_ecs_version + value: 8.11.0 + - fail: + tag: data_collection_error + if: ctx.error?.message != null && ctx.message == null && ctx.event?.original == null + message: error message set and no data to process. + - rename: + field: message + tag: rename_message_to_event_original + target_field: event.original + ignore_missing: true + description: Renames the original `message` field to `event.original` to store a copy of the original message. The `event.original` field is not touched if the document already has one; it may happen when Logstash sends the document. + if: ctx.event?.original == null + - remove: + field: message + tag: remove_message + ignore_missing: true + description: The `message` field is no longer required if the document has an `event.original` field. + if: ctx.event?.original != null + - json: + field: event.original + tag: json_event_original + target_field: json + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - fingerprint: + fields: + - json.firstObserved + - json.customerVisibleTime + - json.caseId + tag: fingerprint_case + target_field: _id + ignore_missing: true + - set: + field: event.kind + tag: set_event_kind_to_event + value: event + - append: + field: event.type + tag: append_event_type + value: info + - set: + field: observer.vendor + tag: set_observer_vendor + value: Abnormal + - set: + field: observer.product + tag: set_observer_product + value: Inbound Email Security + - rename: + field: json.affectedEmployee + tag: rename_affectedEmployee + target_field: abnormal_security.case.affected_employee + ignore_missing: true + - grok: + field: abnormal_security.case.affected_employee + tag: grok_abnormal_security_case_affected_employee + patterns: + - '^%{EMAILADDRESS:user.email}$' + - '^%{DATA:user.name}$' + ignore_failure: true + - append: + field: related.user + tag: append_affected_employee_to_users + value: '{{{abnormal_security.case.affected_employee}}}' + allow_duplicates: false + if: ctx.abnormal_security?.case?.affected_employee != null + - rename: + field: json.analysis + tag: rename_analysis + target_field: abnormal_security.case.analysis + ignore_missing: true + - set: + field: event.action + tag: set_event_action_to_analysis + copy_from: abnormal_security.case.analysis + ignore_empty_value: true + - lowercase: + field: event.action + tag: lowercase_event_action + ignore_missing: true + - date: + field: json.customerVisibleTime + tag: date_customerVisibleTime + target_field: abnormal_security.case.customer_visible_time + formats: + - ISO8601 + if: ctx.json?.customerVisibleTime != null && ctx.json.customerVisibleTime != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.description + tag: rename_description + target_field: abnormal_security.case.description + ignore_missing: true + - set: + field: message + tag: set_message_from_case_description + copy_from: abnormal_security.case.description + ignore_empty_value: true + - date: + field: json.firstObserved + tag: date_firstObserved + target_field: abnormal_security.case.first_observed + formats: + - ISO8601 + if: ctx.json?.firstObserved != null && ctx.json.firstObserved != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: event.start + tag: set_event_start_from_case_first_observed + copy_from: abnormal_security.case.first_observed + ignore_empty_value: true + - convert: + field: json.caseId + tag: convert_caseId + target_field: abnormal_security.case.id + type: string + ignore_missing: true + - set: + field: event.id + tag: set_event_id_from_case_id + copy_from: abnormal_security.case.id + ignore_empty_value: true + - rename: + field: json.remediation_status + tag: rename_remediation_status + target_field: abnormal_security.case.remediation_status + ignore_missing: true + - rename: + field: json.severity + tag: rename_severity + target_field: abnormal_security.case.severity + ignore_missing: true + - rename: + field: json.severity_level + tag: rename_severity_level + target_field: abnormal_security.case.severity_level + ignore_missing: true + - script: + description: Set event severity based on severity level + if: ctx.abnormal_security?.case?.severity_level != null + tag: set_event_severity_from_case_severity_level + lang: painless + params: + NONE: 0 + LOW: 1 + MEDIUM: 2 + HIGH: 3 + source: |- + if (ctx.event == null) { + ctx.event = new HashMap(); + } + ctx.event.severity = params.get(ctx.abnormal_security.case.severity_level); + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.case_status + tag: rename_case_status + target_field: abnormal_security.case.status + ignore_missing: true + - rename: + field: json.threatIds + tag: rename_threatIds + target_field: abnormal_security.case.threat_ids + ignore_missing: true + - remove: + field: + - abnormal_security.case.description + - abnormal_security.case.first_observed + - abnormal_security.case.id + - abnormal_security.case.analysis + tag: remove_custom_duplicate_fields + ignore_missing: true + if: ctx.tags == null || !ctx.tags.contains('preserve_duplicate_custom_fields') + - remove: + field: json + tag: remove_json + ignore_missing: true + - script: + tag: script_to_drop_null_values + lang: painless + description: Drops null/empty values recursively. + source: |- + boolean drop(Object object) { + if (object == null || object == '') { + return true; + } else if (object instanceof Map) { + ((Map) object).values().removeIf(v -> drop(v)); + return (((Map) object).size() == 0); + } else if (object instanceof List) { + ((List) object).removeIf(v -> drop(v)); + return (((List) object).length == 0); + } + return false; + } + drop(ctx); + - set: + field: event.kind + value: pipeline_error + tag: set_pipeline_error_into_event_kind + if: ctx.error?.message != null +on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: event.kind + tag: set_pipeline_error_to_event_kind + value: pipeline_error diff --git a/packages/abnormal_security/data_stream/case/fields/base-fields.yml b/packages/abnormal_security/data_stream/case/fields/base-fields.yml new file mode 100644 index 000000000000..3443e1238f1a --- /dev/null +++ b/packages/abnormal_security/data_stream/case/fields/base-fields.yml @@ -0,0 +1,20 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: event.module + type: constant_keyword + description: Event module. + value: abnormal_security +- name: event.dataset + type: constant_keyword + description: Event dataset. + value: abnormal_security.case +- name: '@timestamp' + type: date + description: Event timestamp. diff --git a/packages/abnormal_security/data_stream/case/fields/beats.yml b/packages/abnormal_security/data_stream/case/fields/beats.yml new file mode 100644 index 000000000000..4084f1dc7f51 --- /dev/null +++ b/packages/abnormal_security/data_stream/case/fields/beats.yml @@ -0,0 +1,6 @@ +- name: input.type + type: keyword + description: Type of filebeat input. +- name: log.offset + type: long + description: Log offset. diff --git a/packages/abnormal_security/data_stream/case/fields/fields.yml b/packages/abnormal_security/data_stream/case/fields/fields.yml new file mode 100644 index 000000000000..5789316cc9f9 --- /dev/null +++ b/packages/abnormal_security/data_stream/case/fields/fields.yml @@ -0,0 +1,33 @@ +- name: abnormal_security + type: group + fields: + - name: case + type: group + fields: + - name: affected_employee + type: keyword + description: Which employee this case pertains to. + - name: analysis + type: keyword + - name: customer_visible_time + type: date + - name: description + type: keyword + - name: first_observed + type: date + description: First time suspicious behavior was observed. + - name: id + type: keyword + description: A unique identifier for this case. + - name: remediation_status + type: keyword + - name: severity + type: keyword + description: Description of the severity level for this case. + - name: severity_level + type: keyword + - name: status + type: keyword + - name: threat_ids + type: keyword + description: Threats related to Case. diff --git a/packages/abnormal_security/data_stream/case/manifest.yml b/packages/abnormal_security/data_stream/case/manifest.yml new file mode 100644 index 000000000000..f4a845ed2db8 --- /dev/null +++ b/packages/abnormal_security/data_stream/case/manifest.yml @@ -0,0 +1,79 @@ +title: Case logs +type: logs +streams: + - input: cel + title: Case Logs + description: Collecting Case logs via API. + template_path: cel.yml.hbs + vars: + - name: initial_interval + type: text + title: Initial Interval + multi: false + required: true + show_user: true + default: 24h + description: How far back to pull the Case logs from Abnormal Security API. Supported units for this parameter are h/m/s. + - name: interval + type: text + title: Interval + description: Duration between requests to the Abnormal Security API. Supported units for this parameter are h/m/s. + default: 5m + multi: false + required: true + show_user: true + - name: page_size + type: text + title: Page Size + multi: false + required: true + show_user: false + description: Page size for the response of the Abnormal Security API. + default: 100 + - name: http_client_timeout + type: text + title: HTTP Client Timeout + description: Duration before declaring that the HTTP client connection has timed out. Supported time units are ns, us, ms, s, m, h. + multi: false + required: true + show_user: false + default: 30s + - name: enable_request_tracer + type: bool + title: Enable request tracing + multi: false + required: false + show_user: false + description: The request tracer logs requests and responses to the agent's local file-system for debugging configurations. Enabling this request tracing compromises security and should only be used for debugging. See [documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-cel.html#_resource_tracer_filename) for details. + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - forwarded + - abnormal_security-case + - name: preserve_original_event + required: false + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original`. + type: bool + multi: false + default: false + - name: preserve_duplicate_custom_fields + required: false + show_user: false + title: Preserve duplicate custom fields + description: Preserve abnormal_security.case fields that were copied to Elastic Common Schema (ECS) fields. + type: bool + multi: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. diff --git a/packages/abnormal_security/data_stream/case/sample_event.json b/packages/abnormal_security/data_stream/case/sample_event.json new file mode 100644 index 000000000000..5e82177d8afe --- /dev/null +++ b/packages/abnormal_security/data_stream/case/sample_event.json @@ -0,0 +1,71 @@ +{ + "@timestamp": "2024-08-06T09:42:32.438Z", + "abnormal_security": { + "case": { + "affected_employee": "john@example.com", + "analysis": "SIGN_IN", + "customer_visible_time": "2024-01-05T12:33:25.000Z", + "first_observed": "2024-01-05T12:33:25.000Z", + "id": "1234", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "LOW", + "status": "Acknowledged (Attack resolved)" + } + }, + "agent": { + "ephemeral_id": "d459a481-d0b8-4f26-afd1-ceed8531465a", + "id": "7aaba523-565c-4597-bc42-59135436336b", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "abnormal_security.case", + "namespace": "48573", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "7aaba523-565c-4597-bc42-59135436336b", + "snapshot": false, + "version": "8.13.0" + }, + "event": { + "action": "sign_in", + "agent_id_status": "verified", + "dataset": "abnormal_security.case", + "id": "1234", + "ingested": "2024-08-06T09:42:44Z", + "kind": "event", + "original": "{\"affectedEmployee\":\"john@example.com\",\"analysis\":\"SIGN_IN\",\"caseId\":1234,\"case_status\":\"Acknowledged (Attack resolved)\",\"customerVisibleTime\":\"2024-01-05T12:33:25+00:00\",\"firstObserved\":\"2024-01-05T12:33:25+00:00\",\"remediation_status\":\"Not remediated\",\"severity\":\"Account Takeover\",\"severity_level\":\"LOW\",\"threatIds\":[]}", + "severity": 1, + "start": "2024-01-05T12:33:25.000Z", + "type": [ + "info" + ] + }, + "input": { + "type": "cel" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "john@example.com" + ] + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "abnormal_security-case" + ], + "user": { + "email": "john@example.com" + } +} \ No newline at end of file diff --git a/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-common-config.yml b/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-common-config.yml new file mode 100644 index 000000000000..37e8fa225fdc --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-common-config.yml @@ -0,0 +1,3 @@ +fields: + tags: + - preserve_duplicate_custom_fields diff --git a/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-threat.log b/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-threat.log new file mode 100644 index 000000000000..bdf8b9f39ff7 --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-threat.log @@ -0,0 +1,5 @@ +{"abxMessageId":-4898763529198204348,"abxPortalUrl":"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/-4898763529198204348","attachmentCount":0,"attachmentNames":[],"attackStrategy":"Unknown Sender","attackType":"Reconnaissance","attackVector":"Text","attackedParty":"Employee (Other)","autoRemediated":true,"fromAddress":"john@example.com","fromName":"john@example.com","impersonatedParty":"None / Others","internetMessageId":"","isRead":false,"postRemediated":false,"receivedTime":"2024-07-17T23:35:18Z","recipientAddress":"bob@example.com","remediationStatus":"Auto-Remediated","remediationTimestamp":"2024-07-17T23:35:24.850565Z","sentTime":"2024-07-17T23:35:08Z","subject":"Let's Connect: Coffee Chat Next Week?","threatId":"437dc979-e828-380a-52f4-98f9b1132e49","toAddresses":["bob@example.com"],"ccEmails":["alias@example.com"],"replyToEmails":[],"returnPath":"johny@example.com","senderDomain":"example.com","senderIpAddress":"81.2.69.142","summaryInsights":["Unusual Sender"],"urlCount":0,"urls":[]} +{"abxMessageId":-1875077659085366331,"abxPortalUrl":"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/12345","attachmentCount":0,"attachmentNames":[],"attackStrategy":"Unknown Sender","attackType":"Phishing: Credential","attackVector":"Link","attackedParty":"Employee (Other)","autoRemediated":true,"fromAddress":"john@example.com","fromName":"john","impersonatedParty":"None / Others","internetMessageId":"","isRead":false,"postRemediated":false,"receivedTime":"2024-07-17T23:26:23Z","recipientAddress":"bob@example.com","remediationStatus":"Auto-Remediated","remediationTimestamp":"2024-07-17T23:26:33.409433Z","sentTime":"2024-07-17T23:25:51Z","subject":"bob W.I.N-->An-->N.l.N.J.A---A.l.R--FRYER!JK4V #mcP","threatId":"4b87828e-0704-b1f2-fa50-d605b82748aa","toAddresses":["bob@example.com"],"ccEmails":["bob@example.com"],"replyToEmails":[],"returnPath":"bob_JZN11CUJL4@example.com","senderDomain":"example.com","senderIpAddress":"81.2.69.142","summaryInsights":["Suspicious Link","Abnormal Email Body HTML","Unusual Sender","Unusual Sender Domain"],"urlCount":1,"urls":["https://www.example.com/"]} +{"abxMessageId":8283168831008643364,"abxPortalUrl":"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/9876543","attachmentCount":0,"attachmentNames":[],"attackStrategy":"Name Impersonation","attackType":"Phishing: Credential","attackVector":"Link","attackedParty":"Employee (Other)","autoRemediated":true,"fromAddress":"bob@example.com","fromName":"bob","impersonatedParty":"Unknown Partner","internetMessageId":"<202407172226.46HMQpqO002631@example.com>","isRead":false,"postRemediated":false,"receivedTime":"2024-07-17T22:26:58Z","recipientAddress":"john@example.com","remediationStatus":"Auto-Remediated","remediationTimestamp":"2024-07-17T22:27:05.803837Z","sentTime":"2024-07-17T22:26:51Z","subject":"11587 example Receipt:_ 3242774446","threatId":"4b8d4541-0428-1b35-53f9-5ba4bd1e51c9","toAddresses":["john@example.com"],"ccEmails":[],"replyToEmails":["bob@example.com"],"returnPath":"bob@example.com","senderDomain":"example.com","senderIpAddress":"81.2.69.142","summaryInsights":["Suspicious Fax or Voicemail notification","Unusual Sender","Suspicious Financial Request","Unusual Sender Domain","Unusual Reply To"],"urlCount":1,"urls":["https://example.com/"]} +{"abxMessageId":-7269636225151482264,"abxPortalUrl":"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456787654","attachmentCount":0,"attachmentNames":[],"attackStrategy":"Unknown Sender","attackType":"Spam","attackVector":"Link","attackedParty":"VIP","autoRemediated":true,"fromAddress":"alias@example.com","fromName":"alias","impersonatedParty":"None / Others","internetMessageId":"","isRead":false,"postRemediated":false,"receivedTime":"2024-07-17T23:25:38Z","recipientAddress":"bob@example.com","remediationStatus":"Auto-Remediated","remediationTimestamp":"2024-07-17T23:25:45.73564Z","sentTime":"2024-07-17T23:25:29Z","subject":"YoU.have.\ud835\uddea\ud835\udfec0\ud835\udde1\ud835\udde1 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB","threatId":"bf255f2d-a2ad-3f50-5075-fdcc24308bbd","toAddresses":["bob@example.com"],"ccEmails":[],"replyToEmails":[],"returnPath":"bounce-bob_H181S7GUCF@example.com","senderDomain":"example.com","senderIpAddress":"81.2.69.142","summaryInsights":["Abnormal Email Body HTML","Invisible characters found in Email","Suspicious Link","Unusual Sender","Unusual Sender Domain"],"urlCount":1,"urls":["https://www.example.com/"]} diff --git a/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-threat.log-expected.json b/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-threat.log-expected.json new file mode 100644 index 000000000000..76ba6925d049 --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/_dev/test/pipeline/test-threat.log-expected.json @@ -0,0 +1,716 @@ +{ + "expected": [ + { + "@timestamp": "2024-07-17T23:35:18.000Z", + "abnormal_security": { + "threat": { + "abx_message_id": "-4898763529198204348", + "abx_portal_url": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/-4898763529198204348", + "attachment_count": 0, + "attack": { + "strategy": "Unknown Sender", + "type": "Reconnaissance", + "vector": "Text" + }, + "attacked_party": "Employee (Other)", + "auto_remediated": true, + "cc_emails": [ + "alias@example.com" + ], + "from_address": "john@example.com", + "from_name": "john@example.com", + "id": "437dc979-e828-380a-52f4-98f9b1132e49", + "impersonated_party": "None / Others", + "internet_message_id": "", + "is_read": false, + "post_remediated": false, + "received_time": "2024-07-17T23:35:18.000Z", + "recipient_address": "bob@example.com", + "remediation_status": "Auto-Remediated", + "remediation_timestamp": "2024-07-17T23:35:24.850Z", + "return_path": "johny@example.com", + "sender_domain": "example.com", + "sender_ip_address": "81.2.69.142", + "sent_time": "2024-07-17T23:35:08.000Z", + "subject": "Let's Connect: Coffee Chat Next Week?", + "summary_insights": [ + "Unusual Sender" + ], + "to_addresses": [ + "bob@example.com" + ], + "url_count": 0 + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "cc": { + "address": [ + "alias@example.com" + ] + }, + "delivery_timestamp": "2024-07-17T23:35:18.000Z", + "from": { + "address": [ + "john@example.com" + ] + }, + "message_id": "", + "origination_timestamp": "2024-07-17T23:35:08.000Z", + "subject": "Let's Connect: Coffee Chat Next Week?", + "to": { + "address": [ + "bob@example.com" + ] + } + }, + "event": { + "category": [ + "threat", + "email" + ], + "id": "-4898763529198204348", + "kind": "enrichment", + "original": "{\"abxMessageId\":-4898763529198204348,\"abxPortalUrl\":\"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/-4898763529198204348\",\"attachmentCount\":0,\"attachmentNames\":[],\"attackStrategy\":\"Unknown Sender\",\"attackType\":\"Reconnaissance\",\"attackVector\":\"Text\",\"attackedParty\":\"Employee (Other)\",\"autoRemediated\":true,\"fromAddress\":\"john@example.com\",\"fromName\":\"john@example.com\",\"impersonatedParty\":\"None / Others\",\"internetMessageId\":\"\",\"isRead\":false,\"postRemediated\":false,\"receivedTime\":\"2024-07-17T23:35:18Z\",\"recipientAddress\":\"bob@example.com\",\"remediationStatus\":\"Auto-Remediated\",\"remediationTimestamp\":\"2024-07-17T23:35:24.850565Z\",\"sentTime\":\"2024-07-17T23:35:08Z\",\"subject\":\"Let's Connect: Coffee Chat Next Week?\",\"threatId\":\"437dc979-e828-380a-52f4-98f9b1132e49\",\"toAddresses\":[\"bob@example.com\"],\"ccEmails\":[\"alias@example.com\"],\"replyToEmails\":[],\"returnPath\":\"johny@example.com\",\"senderDomain\":\"example.com\",\"senderIpAddress\":\"81.2.69.142\",\"summaryInsights\":[\"Unusual Sender\"],\"urlCount\":0,\"urls\":[]}", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/-4898763529198204348", + "type": [ + "indicator", + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "hosts": [ + "example.com" + ], + "ip": [ + "81.2.69.142" + ], + "user": [ + "alias@example.com", + "john@example.com", + "bob@example.com", + "johny@example.com" + ] + }, + "source": { + "domain": "example.com", + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "email": { + "address": "john@example.com" + }, + "name": "john@example.com", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/-4898763529198204348", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Reconnaissance" + ] + }, + "technique": { + "name": [ + "Unknown Sender" + ] + } + }, + "user": { + "email": "john@example.com" + } + }, + { + "@timestamp": "2024-07-17T23:26:23.000Z", + "abnormal_security": { + "threat": { + "abx_message_id": "-1875077659085366331", + "abx_portal_url": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/12345", + "attachment_count": 0, + "attack": { + "strategy": "Unknown Sender", + "type": "Phishing: Credential", + "vector": "Link" + }, + "attacked_party": "Employee (Other)", + "auto_remediated": true, + "cc_emails": [ + "bob@example.com" + ], + "from_address": "john@example.com", + "from_name": "john", + "id": "4b87828e-0704-b1f2-fa50-d605b82748aa", + "impersonated_party": "None / Others", + "internet_message_id": "", + "is_read": false, + "post_remediated": false, + "received_time": "2024-07-17T23:26:23.000Z", + "recipient_address": "bob@example.com", + "remediation_status": "Auto-Remediated", + "remediation_timestamp": "2024-07-17T23:26:33.409Z", + "return_path": "bob_JZN11CUJL4@example.com", + "sender_domain": "example.com", + "sender_ip_address": "81.2.69.142", + "sent_time": "2024-07-17T23:25:51.000Z", + "subject": "bob W.I.N-->An-->N.l.N.J.A---A.l.R--FRYER!JK4V #mcP", + "summary_insights": [ + "Suspicious Link", + "Abnormal Email Body HTML", + "Unusual Sender", + "Unusual Sender Domain" + ], + "to_addresses": [ + "bob@example.com" + ], + "url_count": 1, + "urls": [ + "https://www.example.com/" + ] + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "cc": { + "address": [ + "bob@example.com" + ] + }, + "delivery_timestamp": "2024-07-17T23:26:23.000Z", + "from": { + "address": [ + "john@example.com" + ] + }, + "message_id": "", + "origination_timestamp": "2024-07-17T23:25:51.000Z", + "subject": "bob W.I.N-->An-->N.l.N.J.A---A.l.R--FRYER!JK4V #mcP", + "to": { + "address": [ + "bob@example.com" + ] + } + }, + "event": { + "category": [ + "threat", + "email" + ], + "id": "-1875077659085366331", + "kind": "enrichment", + "original": "{\"abxMessageId\":-1875077659085366331,\"abxPortalUrl\":\"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/12345\",\"attachmentCount\":0,\"attachmentNames\":[],\"attackStrategy\":\"Unknown Sender\",\"attackType\":\"Phishing: Credential\",\"attackVector\":\"Link\",\"attackedParty\":\"Employee (Other)\",\"autoRemediated\":true,\"fromAddress\":\"john@example.com\",\"fromName\":\"john\",\"impersonatedParty\":\"None / Others\",\"internetMessageId\":\"\",\"isRead\":false,\"postRemediated\":false,\"receivedTime\":\"2024-07-17T23:26:23Z\",\"recipientAddress\":\"bob@example.com\",\"remediationStatus\":\"Auto-Remediated\",\"remediationTimestamp\":\"2024-07-17T23:26:33.409433Z\",\"sentTime\":\"2024-07-17T23:25:51Z\",\"subject\":\"bob W.I.N-->An-->N.l.N.J.A---A.l.R--FRYER!JK4V #mcP\",\"threatId\":\"4b87828e-0704-b1f2-fa50-d605b82748aa\",\"toAddresses\":[\"bob@example.com\"],\"ccEmails\":[\"bob@example.com\"],\"replyToEmails\":[],\"returnPath\":\"bob_JZN11CUJL4@example.com\",\"senderDomain\":\"example.com\",\"senderIpAddress\":\"81.2.69.142\",\"summaryInsights\":[\"Suspicious Link\",\"Abnormal Email Body HTML\",\"Unusual Sender\",\"Unusual Sender Domain\"],\"urlCount\":1,\"urls\":[\"https://www.example.com/\"]}", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/12345", + "type": [ + "indicator", + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "hosts": [ + "example.com" + ], + "ip": [ + "81.2.69.142" + ], + "user": [ + "bob@example.com", + "john@example.com", + "john", + "bob_JZN11CUJL4@example.com" + ] + }, + "source": { + "domain": "example.com", + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "email": { + "address": "john@example.com" + }, + "name": "john@example.com", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/12345", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Phishing: Credential" + ] + }, + "technique": { + "name": [ + "Unknown Sender" + ] + } + }, + "user": { + "name": "john" + } + }, + { + "@timestamp": "2024-07-17T22:26:58.000Z", + "abnormal_security": { + "threat": { + "abx_message_id": "8283168831008643364", + "abx_portal_url": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/9876543", + "attachment_count": 0, + "attack": { + "strategy": "Name Impersonation", + "type": "Phishing: Credential", + "vector": "Link" + }, + "attacked_party": "Employee (Other)", + "auto_remediated": true, + "from_address": "bob@example.com", + "from_name": "bob", + "id": "4b8d4541-0428-1b35-53f9-5ba4bd1e51c9", + "impersonated_party": "Unknown Partner", + "internet_message_id": "<202407172226.46HMQpqO002631@example.com>", + "is_read": false, + "post_remediated": false, + "received_time": "2024-07-17T22:26:58.000Z", + "recipient_address": "john@example.com", + "remediation_status": "Auto-Remediated", + "remediation_timestamp": "2024-07-17T22:27:05.803Z", + "reply_to_emails": [ + "bob@example.com" + ], + "return_path": "bob@example.com", + "sender_domain": "example.com", + "sender_ip_address": "81.2.69.142", + "sent_time": "2024-07-17T22:26:51.000Z", + "subject": "11587 example Receipt:_ 3242774446", + "summary_insights": [ + "Suspicious Fax or Voicemail notification", + "Unusual Sender", + "Suspicious Financial Request", + "Unusual Sender Domain", + "Unusual Reply To" + ], + "to_addresses": [ + "john@example.com" + ], + "url_count": 1, + "urls": [ + "https://example.com/" + ] + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "delivery_timestamp": "2024-07-17T22:26:58.000Z", + "from": { + "address": [ + "bob@example.com" + ] + }, + "message_id": "<202407172226.46HMQpqO002631@example.com>", + "origination_timestamp": "2024-07-17T22:26:51.000Z", + "reply_to": { + "address": [ + "bob@example.com" + ] + }, + "subject": "11587 example Receipt:_ 3242774446", + "to": { + "address": [ + "john@example.com" + ] + } + }, + "event": { + "category": [ + "threat", + "email" + ], + "id": "8283168831008643364", + "kind": "enrichment", + "original": "{\"abxMessageId\":8283168831008643364,\"abxPortalUrl\":\"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/9876543\",\"attachmentCount\":0,\"attachmentNames\":[],\"attackStrategy\":\"Name Impersonation\",\"attackType\":\"Phishing: Credential\",\"attackVector\":\"Link\",\"attackedParty\":\"Employee (Other)\",\"autoRemediated\":true,\"fromAddress\":\"bob@example.com\",\"fromName\":\"bob\",\"impersonatedParty\":\"Unknown Partner\",\"internetMessageId\":\"<202407172226.46HMQpqO002631@example.com>\",\"isRead\":false,\"postRemediated\":false,\"receivedTime\":\"2024-07-17T22:26:58Z\",\"recipientAddress\":\"john@example.com\",\"remediationStatus\":\"Auto-Remediated\",\"remediationTimestamp\":\"2024-07-17T22:27:05.803837Z\",\"sentTime\":\"2024-07-17T22:26:51Z\",\"subject\":\"11587 example Receipt:_ 3242774446\",\"threatId\":\"4b8d4541-0428-1b35-53f9-5ba4bd1e51c9\",\"toAddresses\":[\"john@example.com\"],\"ccEmails\":[],\"replyToEmails\":[\"bob@example.com\"],\"returnPath\":\"bob@example.com\",\"senderDomain\":\"example.com\",\"senderIpAddress\":\"81.2.69.142\",\"summaryInsights\":[\"Suspicious Fax or Voicemail notification\",\"Unusual Sender\",\"Suspicious Financial Request\",\"Unusual Sender Domain\",\"Unusual Reply To\"],\"urlCount\":1,\"urls\":[\"https://example.com/\"]}", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/9876543", + "type": [ + "indicator", + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "hosts": [ + "example.com" + ], + "ip": [ + "81.2.69.142" + ], + "user": [ + "bob@example.com", + "bob", + "john@example.com" + ] + }, + "source": { + "domain": "example.com", + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "email": { + "address": "bob@example.com" + }, + "name": "bob@example.com", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/9876543", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Phishing: Credential" + ] + }, + "technique": { + "name": [ + "Name Impersonation" + ] + } + }, + "user": { + "name": "bob" + } + }, + { + "@timestamp": "2024-07-17T22:33:04.000Z", + "abnormal_security": { + "threat": { + "abx_message_id": "-7269636225151482264", + "abx_portal_url": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456787654", + "attachment_count": 0, + "attack": { + "strategy": "Unknown Sender", + "type": "Spam", + "vector": "Link" + }, + "attacked_party": "VIP", + "auto_remediated": true, + "from_address": "alias@example.com", + "from_name": "alias", + "id": "ff1ba899-9893-9147-a2ee-8eb6c39f7a63", + "impersonated_party": "None / Others", + "internet_message_id": "", + "is_read": false, + "post_remediated": false, + "received_time": "2024-07-17T23:25:38.000Z", + "recipient_address": "bob@example.com", + "remediation_status": "Auto-Remediated", + "remediation_timestamp": "2024-07-17T23:25:45.735Z", + "return_path": "bounce-bob_H181S7GUCF@example.com", + "sender_domain": "example.com", + "sender_ip_address": "81.2.69.142", + "sent_time": "2024-07-17T23:25:29.000Z", + "subject": "YoU.have.𝗪𝟬0𝗡𝗡 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB", + "summary_insights": [ + "Abnormal Email Body HTML", + "Invisible characters found in Email", + "Suspicious Link", + "Unusual Sender", + "Unusual Sender Domain" + ], + "to_addresses": [ + "bob@example.com" + ], + "url_count": 1, + "urls": [ + "https://www.example.com/" + ] + } + }, + "ecs": { + "version": "8.11.0" + }, + "email": { + "delivery_timestamp": "2024-07-17T23:25:38.000Z", + "from": { + "address": [ + "john@example.com" + ] + }, + "message_id": "", + "origination_timestamp": "2024-07-17T23:25:29.000Z", + "subject": "YoU.have.𝗪𝟬0𝗡𝗡 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB", + "to": { + "address": [ + "bob@example.com" + ] + } + }, + "event": { + "category": [ + "threat", + "email" + ], + "id": "2260288475997441028", + "kind": "enrichment", + "original": "{\"abxMessageId\":2260288475997441028,\"abxPortalUrl\":\"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654\",\"attachmentCount\":0,\"attachmentNames\":[],\"attackStrategy\":\"Unknown Sender\",\"attackType\":\"Spam\",\"attackVector\":\"Link\",\"attackedParty\":\"Employee (Other)\",\"autoRemediated\":true,\"fromAddress\":\"john@example.com\",\"fromName\":\"john\",\"impersonatedParty\":\"None / Others\",\"internetMessageId\":\"\",\"isRead\":false,\"postRemediated\":false,\"receivedTime\":\"2024-07-17T23:25:38Z\",\"recipientAddress\":\"bob@example.com\",\"remediationStatus\":\"Auto-Remediated\",\"remediationTimestamp\":\"2024-07-17T23:25:45.73564Z\",\"sentTime\":\"2024-07-17T23:25:29Z\",\"subject\":\"YoU.have.\\ud835\\uddea\\ud835\\udfec0\\ud835\\udde1\\ud835\\udde1 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB\",\"threatId\":\"bf255f2d-a2ad-3f50-5075-fdcc24308bbd\",\"toAddresses\":[\"bob@example.com\"],\"ccEmails\":[],\"replyToEmails\":[],\"returnPath\":\"bounce-bob_H181S7GUCF@example.com\",\"senderDomain\":\"example.com\",\"senderIpAddress\":\"81.2.69.142\",\"summaryInsights\":[\"Abnormal Email Body HTML\",\"Invisible characters found in Email\",\"Suspicious Link\",\"Unusual Sender\",\"Unusual Sender Domain\"],\"urlCount\":1,\"urls\":[\"https://www.example.com/\"]}", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "type": [ + "indicator", + "info" + ] + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "hosts": [ + "example.com" + ], + "ip": [ + "81.2.69.142" + ], + "user": [ + "john@example.com", + "john", + "bob@example.com", + "bounce-bob_H181S7GUCF@example.com" + ] + }, + "source": { + "domain": "example.com", + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_duplicate_custom_fields" + ], + "threat": { + "indicator": { + "email": { + "address": "john@example.com" + }, + "name": "john@example.com", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Spam" + ] + }, + "technique": { + "name": [ + "Unknown Sender" + ] + } + }, + "user": { + "name": "john" + } + } + ] +} \ No newline at end of file diff --git a/packages/abnormal_security/data_stream/threat/_dev/test/system/test-default-config.yml b/packages/abnormal_security/data_stream/threat/_dev/test/system/test-default-config.yml new file mode 100644 index 000000000000..0ff5c7939685 --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/_dev/test/system/test-default-config.yml @@ -0,0 +1,14 @@ +input: cel +service: abnormal_security +vars: + url: http://{{Hostname}}:{{Port}} + access_token: xxxx +data_stream: + vars: + interval: 5m + initial_interval: 24h + page_size: 1 + preserve_original_event: true + preserve_duplicate_custom_fields: true +assert: + hit_count: 2 diff --git a/packages/abnormal_security/data_stream/threat/agent/stream/cel.yml.hbs b/packages/abnormal_security/data_stream/threat/agent/stream/cel.yml.hbs new file mode 100644 index 000000000000..26ca269a94a4 --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/agent/stream/cel.yml.hbs @@ -0,0 +1,154 @@ +config_version: 2 +interval: {{interval}} +{{#if enable_request_tracer}} +resource.tracer.filename: "../../logs/cel/http-request-trace-*.ndjson" +resource.tracer.maxbackups: 5 +{{/if}} +{{#if proxy_url}} +resource.proxy_url: {{proxy_url}} +{{/if}} +{{#if ssl}} +resource.ssl: {{ssl}} +{{/if}} +{{#if http_client_timeout}} +resource.timeout: {{http_client_timeout}} +{{/if}} +resource.url: {{url}} +state: + initial_interval: {{initial_interval}} + page_size: {{page_size}} + access_token: {{access_token}} + next_page: 1 + child_next_page: 1 +redact: + fields: + - access_token +program: | + ( + has(state.worklist) && size(state.worklist) > 0 ? + state + : + ( + state.?want_more.orValue(false) ? + state + : + state.with({ + "start_time": state.?cursor.last_timestamp.orValue((now - duration(state.initial_interval)).format(time_layout.RFC3339)), + "end_time": now.format(time_layout.RFC3339), + }) + ).as(state, state.with( + request( + "GET", + state.url.trim_right("/") + "/v1/threats?" + { + "pageSize": [string(state.page_size)], + "pageNumber": [string(state.next_page)], + "filter":["receivedTime gte " + state.start_time + " lte " + state.end_time] + }.format_query() + ).with({ + "Header":{ + "Authorization": ["Bearer " + string(state.access_token)], + } + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body, { + "worklist": body.threats.map(e, e.threatId), + "next": 0, + }) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "GET:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + ) + )) + ).as(state, state.with( + !has(state.worklist) ? state : // Exit early due to GET failure. + state.next < size(state.worklist) ? + request("GET", + state.url.trim_right("/") + "/v1/threats/" + string(state.worklist[state.next]) + "?" + { + "pageSize": [string(state.page_size)], + "pageNumber": [string(state.child_next_page)] + }.format_query() + ).with({ + "Header":{ + "Authorization": ["Bearer " + string(state.access_token)], + } + }).do_request().as(resp, resp.StatusCode == 200 ? + bytes(resp.Body).decode_json().as(body,{ + "events": ( + size(body.messages) > 0 ? + body.messages.map(e,{ + "message": e.encode_json(), + }) + : + [{"message":"retry"}] + ), + "cursor": { + "last_timestamp": state.end_time + }, + "worklist": int(state.next) + 1 < size(state.worklist) || size(body.messages) > 0 ? state.worklist : [], + "child_next_page": size(body.messages) > 0 ? int(state.child_next_page) + 1 : 1, + "next": ( + size(body.messages) > 0 ? + state.next + : + int(state.next) + 1 < size(state.worklist) ? + int(state.next) + 1 + : + 0 + ), + "next_page": int(state.next) + 1 < size(state.worklist) || size(body.messages) > 0 ? state.next_page : int(state.next_page) + 1, + "want_more": true, + }) + : + { + "events": { + "error": { + "code": string(resp.StatusCode), + "id": string(resp.Status), + "message": "GET:"+( + size(resp.Body) != 0 ? + string(resp.Body) + : + string(resp.Status) + ' (' + string(resp.StatusCode) + ')' + ), + }, + }, + "want_more": false, + } + ) + : + { + "events": [], + "want_more": false, + "next_page": 1 + } + ) + ) +tags: +{{#if preserve_original_event}} + - preserve_original_event +{{/if}} +{{#if preserve_duplicate_custom_fields}} + - preserve_duplicate_custom_fields +{{/if}} +{{#each tags as |tag|}} + - {{tag}} +{{/each}} +{{#contains "forwarded" tags}} +publisher_pipeline.disable_host: true +{{/contains}} +{{#if processors}} +processors: +{{processors}} +{{/if}} diff --git a/packages/abnormal_security/data_stream/threat/elasticsearch/ingest_pipeline/default.yml b/packages/abnormal_security/data_stream/threat/elasticsearch/ingest_pipeline/default.yml new file mode 100644 index 000000000000..97f21605a990 --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/elasticsearch/ingest_pipeline/default.yml @@ -0,0 +1,548 @@ +--- +description: Pipeline for processing threat logs. +processors: + - set: + field: ecs.version + tag: set_ecs_version + value: 8.11.0 + - fail: + tag: data_collection_error + if: ctx.error?.message != null && ctx.message == null && ctx.event?.original == null + message: error message set and no data to process. + - drop: + if: ctx.message == 'retry' + tag: drop_retry_events + - rename: + field: message + tag: rename_message_to_event_original + target_field: event.original + ignore_missing: true + description: Renames the original `message` field to `event.original` to store a copy of the original message. The `event.original` field is not touched if the document already has one; it may happen when Logstash sends the document. + if: ctx.event?.original == null + - remove: + field: message + tag: remove_message + ignore_missing: true + description: The `message` field is no longer required if the document has an `event.original` field. + if: ctx.event?.original != null + - json: + field: event.original + tag: json_event_original + target_field: json + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - fingerprint: + fields: + - json.receivedTime + - json.abxMessageId + - json.threatId + - json.internetMessageId + tag: fingerprint_threat + target_field: _id + ignore_missing: true + - set: + field: event.kind + tag: set_event_kind_to_enrichment + value: enrichment + - append: + field: event.category + tag: append_event_category + value: threat + - append: + field: event.category + tag: append_event_category + value: email + - append: + field: event.type + tag: append_event_type + value: indicator + - append: + field: event.type + tag: append_event_type + value: info + - set: + field: observer.vendor + tag: set_observer_vendor + value: Abnormal + - set: + field: observer.product + tag: set_observer_product + value: Inbound Email Security + - convert: + field: json.abxMessageId + tag: convert_abxMessageId_to_string + target_field: abnormal_security.threat.abx_message_id + type: string + ignore_missing: true + - set: + field: event.id + tag: set_event_id_from_threat_abx_message_id + copy_from: abnormal_security.threat.abx_message_id + ignore_empty_value: true + - rename: + field: json.abxPortalUrl + tag: rename_abxPortalUrl + target_field: abnormal_security.threat.abx_portal_url + ignore_missing: true + - set: + field: event.reference + tag: set_event_reference_from_threat_abx_portal_url + copy_from: abnormal_security.threat.abx_portal_url + ignore_empty_value: true + - set: + field: threat.indicator.reference + tag: set_threat_indicator_reference_from_threat_abx_portal_url + copy_from: abnormal_security.threat.abx_portal_url + ignore_empty_value: true + - convert: + field: json.attachmentCount + tag: convert_attachmentCount_to_long + target_field: abnormal_security.threat.attachment_count + type: long + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.attachmentNames + tag: rename_attachmentNames + target_field: abnormal_security.threat.attachment_names + ignore_missing: true + - script: + description: Set email.attachments field. + tag: script_to_set_email_attachments_field + lang: painless + if: ctx.abnormal_security?.threat?.attachment_names instanceof List + source: |- + def attachmentList = new ArrayList(); + for (name in ctx.abnormal_security.threat.attachment_names) { + def attachment = new HashMap(); + attachment.put('file', new HashMap()); + attachment.file.put('name', name); + String[] tokenList = name.splitOnToken('.'); + if(tokenList.length > 1){ + attachment.file.put('extension', tokenList[tokenList.length - 1]); + } + attachmentList.add(attachment); + } + ctx.put('email',new HashMap()); + ctx.email.attachments = attachmentList; + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.attackStrategy + tag: rename_attackStrategy + target_field: abnormal_security.threat.attack.strategy + ignore_missing: true + - append: + field: threat.technique.name + tag: append_abnormal_security_threat_attack_strategy_into_threat_technique_name + value: '{{{abnormal_security.threat.attack.strategy}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.attack?.strategy != null + - rename: + field: json.attackType + tag: rename_attackType + target_field: abnormal_security.threat.attack.type + ignore_missing: true + - append: + field: threat.tactic.name + tag: append_abnormal_security_threat_attack_type_into_threat_tactic_name + value: '{{{abnormal_security.threat.attack.type}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.attack?.type != null + - rename: + field: json.attackVector + tag: rename_attackVector + target_field: abnormal_security.threat.attack.vector + ignore_missing: true + - rename: + field: json.attackedParty + tag: rename_attackedParty + target_field: abnormal_security.threat.attacked_party + ignore_missing: true + - convert: + field: json.autoRemediated + tag: convert_autoRemediated_to_boolean + target_field: abnormal_security.threat.auto_remediated + type: boolean + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.ccEmails + tag: rename_ccEmails + target_field: abnormal_security.threat.cc_emails + ignore_missing: true + - set: + field: email.cc.address + tag: set_email_cc_address_from_threat_cc_emails + copy_from: abnormal_security.threat.cc_emails + ignore_empty_value: true + - foreach: + field: abnormal_security.threat.cc_emails + if: ctx.abnormal_security?.threat?.cc_emails instanceof List + processor: + append: + field: related.user + tag: append_threat_cc_emails_into_related_user + value: '{{{_ingest._value}}}' + allow_duplicates: false + - rename: + field: json.fromAddress + tag: rename_fromAddress + target_field: abnormal_security.threat.from_address + ignore_missing: true + - append: + field: email.from.address + tag: append_abnormal_security_threat_from_address_into_email_from_address + value: '{{{abnormal_security.threat.from_address}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.from_address != null + - set: + field: threat.indicator.email.address + tag: set_threat_indicator_email_address_from_threat_from_address + copy_from: abnormal_security.threat.from_address + ignore_empty_value: true + - set: + field: threat.indicator.name + tag: set_threat_indicator_name_from_threat_from_address + copy_from: abnormal_security.threat.from_address + ignore_empty_value: true + - append: + field: related.user + tag: append_from_address_into_related_user + value: '{{{abnormal_security.threat.from_address}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.from_address != null + - set: + field: threat.indicator.type + tag: set_threat_indicator_type_to_email-addr + value: email-addr + - rename: + field: json.fromName + tag: rename_fromName + target_field: abnormal_security.threat.from_name + ignore_missing: true + - grok: + field: abnormal_security.threat.from_name + tag: grok_abnormal_security_threat_from_name + patterns: + - '^%{EMAILADDRESS:user.email}$' + - '^%{DATA:user.name}$' + ignore_failure: true + - append: + field: related.user + tag: append_from_name_into_related_user + value: '{{{abnormal_security.threat.from_name}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.from_name != null + - rename: + field: json.threatId + tag: rename_threatId + target_field: abnormal_security.threat.id + ignore_missing: true + - rename: + field: json.impersonatedParty + tag: rename_impersonatedParty + target_field: abnormal_security.threat.impersonated_party + ignore_missing: true + - rename: + field: json.internetMessageId + tag: rename_internetMessageId + target_field: abnormal_security.threat.internet_message_id + ignore_missing: true + - set: + field: email.message_id + tag: set_email_message_id_from_threat_internet_message_id + copy_from: abnormal_security.threat.internet_message_id + ignore_empty_value: true + - convert: + field: json.isRead + tag: convert_isRead_to_boolean + target_field: abnormal_security.threat.is_read + type: boolean + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - convert: + field: json.postRemediated + tag: convert_postRemediated_to_boolean + target_field: abnormal_security.threat.post_remediated + type: boolean + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - date: + field: json.receivedTime + tag: date_receivedTime + target_field: abnormal_security.threat.received_time + formats: + - ISO8601 + if: ctx.json?.receivedTime != null && ctx.json.receivedTime != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: '@timestamp' + tag: set_@timestamp_from_threat_received_time + copy_from: abnormal_security.threat.received_time + ignore_empty_value: true + - set: + field: email.delivery_timestamp + tag: set_email_delivery_timestamp_from_threat_received_time + copy_from: abnormal_security.threat.received_time + ignore_empty_value: true + - rename: + field: json.recipientAddress + tag: rename_recipientAddress + target_field: abnormal_security.threat.recipient_address + ignore_missing: true + - append: + field: related.user + tag: append_recipient_address_into_related_user + value: '{{{abnormal_security.threat.recipient_address}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.recipient_address != null + - rename: + field: json.remediationStatus + tag: rename_remediationStatus + target_field: abnormal_security.threat.remediation_status + ignore_missing: true + - date: + field: json.remediationTimestamp + tag: date_remediationTimestamp + target_field: abnormal_security.threat.remediation_timestamp + formats: + - ISO8601 + if: ctx.json?.remediationTimestamp != null && ctx.json.remediationTimestamp != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.replyToEmails + tag: rename_replyToEmails + target_field: abnormal_security.threat.reply_to_emails + ignore_missing: true + - set: + field: email.reply_to.address + tag: set_email_reply_to_address_from_threat_reply_to_emails + copy_from: abnormal_security.threat.reply_to_emails + ignore_empty_value: true + - foreach: + field: abnormal_security.threat.reply_to_emails + if: ctx.abnormal_security?.threat?.reply_to_emails instanceof List + processor: + append: + field: related.user + tag: append_threat_reply_to_emails_into_related_user + value: '{{{_ingest._value}}}' + allow_duplicates: false + - rename: + field: json.returnPath + tag: rename_returnPath + target_field: abnormal_security.threat.return_path + ignore_missing: true + - append: + field: related.user + tag: append_return_path_into_related_user + value: '{{{abnormal_security.threat.return_path}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.return_path != null + - rename: + field: json.senderDomain + tag: rename_senderDomain + target_field: abnormal_security.threat.sender_domain + ignore_missing: true + - set: + field: source.domain + tag: set_source_domain_from_threat_sender_domain + copy_from: abnormal_security.threat.sender_domain + ignore_empty_value: true + - append: + field: related.hosts + tag: append_sender_domain_into_related_hosts + value: '{{{abnormal_security.threat.sender_domain}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.sender_domain != null + - convert: + field: json.senderIpAddress + tag: convert_senderIpAddress_to_ip + target_field: abnormal_security.threat.sender_ip_address + type: ip + ignore_missing: true + if: ctx.json?.senderIpAddress != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: source.ip + tag: set_source_ip_from_threat_sender_ip_address + copy_from: abnormal_security.threat.sender_ip_address + ignore_empty_value: true + - geoip: + field: source.ip + tag: geoip_source_ip + target_field: source.geo + ignore_missing: true + - append: + field: related.ip + tag: append_sender_ip_address_into_related_ip + value: '{{{abnormal_security.threat.sender_ip_address}}}' + allow_duplicates: false + if: ctx.abnormal_security?.threat?.sender_ip_address != null + - date: + field: json.sentTime + tag: date_sentTime + target_field: abnormal_security.threat.sent_time + formats: + - ISO8601 + if: ctx.json?.sentTime != null && ctx.json.sentTime != '' + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: email.origination_timestamp + tag: set_email_origination_timestamp_from_threat_sent_time + copy_from: abnormal_security.threat.sent_time + ignore_empty_value: true + - rename: + field: json.subject + tag: rename_subject + target_field: abnormal_security.threat.subject + ignore_missing: true + - set: + field: email.subject + tag: set_email_subject_from_threat_subject + copy_from: abnormal_security.threat.subject + ignore_empty_value: true + - rename: + field: json.summaryInsights + tag: rename_summaryInsights + target_field: abnormal_security.threat.summary_insights + ignore_missing: true + - split: + field: json.toAddresses + separator: ',' + tag: split_toAddresses + target_field: abnormal_security.threat.to_addresses + ignore_missing: true + if: ctx.json?.toAddresses instanceof String + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.toAddresses + tag: rename_toAddresses + target_field: abnormal_security.threat.to_addresses + if: ctx.json?.toAddresses instanceof List + ignore_missing: true + - trim: + field: abnormal_security.threat.to_addresses + tag: trim_threat_to_addresses + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: email.to.address + tag: set_email_to_address_from_threat_to_addresses + copy_from: abnormal_security.threat.to_addresses + ignore_empty_value: true + - foreach: + field: abnormal_security.threat.to_addresses + if: ctx.abnormal_security?.threat?.to_addresses instanceof List + processor: + append: + field: related.user + tag: append_to_addresses_into_related_user + value: '{{{_ingest._value}}}' + allow_duplicates: false + - convert: + field: json.urlCount + tag: convert_urlCount_to_long + target_field: abnormal_security.threat.url_count + type: long + ignore_missing: true + on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - rename: + field: json.urls + tag: rename_urls + target_field: abnormal_security.threat.urls + ignore_missing: true + - remove: + field: + - abnormal_security.threat.abx_message_id + - abnormal_security.threat.abx_portal_url + - abnormal_security.threat.attack.type + - abnormal_security.threat.from_address + - abnormal_security.threat.from_name + - abnormal_security.threat.internet_message_id + - abnormal_security.threat.received_time + - abnormal_security.threat.sender_domain + - abnormal_security.threat.sent_time + - abnormal_security.threat.subject + - abnormal_security.threat.attachment_names + - abnormal_security.threat.cc_emails + - abnormal_security.threat.reply_to_emails + - abnormal_security.threat.to_addresses + - abnormal_security.threat.sender_ip_address + - abnormal_security.threat.attack.strategy + tag: remove_custom_duplicate_fields + ignore_missing: true + if: ctx.tags == null || !ctx.tags.contains('preserve_duplicate_custom_fields') + - remove: + field: json + tag: remove_json + ignore_missing: true + - script: + tag: script_to_drop_null_values + lang: painless + description: Drops null/empty values recursively. + source: |- + boolean drop(Object object) { + if (object == null || object == '') { + return true; + } else if (object instanceof Map) { + ((Map) object).values().removeIf(v -> drop(v)); + return (((Map) object).size() == 0); + } else if (object instanceof List) { + ((List) object).removeIf(v -> drop(v)); + return (((List) object).length == 0); + } + return false; + } + drop(ctx); + - set: + field: event.kind + tag: set_pipeline_error_to_event_kind + value: pipeline_error + if: ctx.error?.message != null +on_failure: + - append: + field: error.message + value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag {{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.on_failure_pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' + - set: + field: event.kind + tag: set_pipeline_error_to_event_kind + value: pipeline_error diff --git a/packages/abnormal_security/data_stream/threat/fields/base-fields.yml b/packages/abnormal_security/data_stream/threat/fields/base-fields.yml new file mode 100644 index 000000000000..ff132d47f8c8 --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/fields/base-fields.yml @@ -0,0 +1,20 @@ +- name: data_stream.type + type: constant_keyword + description: Data stream type. +- name: data_stream.dataset + type: constant_keyword + description: Data stream dataset. +- name: data_stream.namespace + type: constant_keyword + description: Data stream namespace. +- name: event.module + type: constant_keyword + description: Event module. + value: abnormal_security +- name: event.dataset + type: constant_keyword + description: Event dataset. + value: abnormal_security.threat +- name: '@timestamp' + type: date + description: Event timestamp. diff --git a/packages/abnormal_security/data_stream/threat/fields/beats.yml b/packages/abnormal_security/data_stream/threat/fields/beats.yml new file mode 100644 index 000000000000..4084f1dc7f51 --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/fields/beats.yml @@ -0,0 +1,6 @@ +- name: input.type + type: keyword + description: Type of filebeat input. +- name: log.offset + type: long + description: Log offset. diff --git a/packages/abnormal_security/data_stream/threat/fields/fields.yml b/packages/abnormal_security/data_stream/threat/fields/fields.yml new file mode 100644 index 000000000000..45b50607282f --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/fields/fields.yml @@ -0,0 +1,100 @@ +- name: abnormal_security + type: group + fields: + - name: threat + type: group + fields: + - name: abx_message_id + type: keyword + description: A unique identifier for an individual message within a threat (i.e email campaign). + - name: abx_portal_url + type: keyword + description: The URL at which the specific message details are viewable in Abnormal Security's Portal web interface. + - name: attachment_count + type: long + description: Number of attachments in email (only available for IESS customers). + - name: attachment_names + type: keyword + description: List of attachment names, if any. + - name: attack + type: group + fields: + - name: strategy + type: keyword + - name: type + type: keyword + description: The type of threat the message represents. + - name: vector + type: keyword + description: The attack medium. + - name: attacked_party + type: keyword + description: The party that was targeted by an attack. + - name: auto_remediated + type: boolean + description: 'Indicates whether Abnormal has automatically detected and remediated the message from the user''s Inbox. Note : Abnormal has retained this field and the postRemediated field to support prior integrations, but in newly created integrations, you should capture this information from the remediationStatus field.' + - name: cc_emails + type: keyword + description: List of email addresses CC'ed. + - name: from_address + type: keyword + description: The email address of the sender. + - name: from_name + type: keyword + description: The display name of the sender. + - name: id + type: keyword + description: An ID which maps to a threat campaign. A threat campaign might be received by multiple users. + - name: impersonated_party + type: keyword + description: Impersonated party, if any. + - name: internet_message_id + type: keyword + description: The internet message ID, per RFC 822. + - name: is_read + type: boolean + description: Whether an email has been read. + - name: post_remediated + type: boolean + description: Indicates whether Abnormal remediated the campaign at a later time, after landing in the user's Inbox. Note``:`` Abnormal has retained this field and the autoRemediated field to support prior integrations, but in newly created integrations, you should capture this information from the remediationStatus field. + - name: received_time + type: date + description: The timestamp at which this message arrived. + - name: recipient_address + type: keyword + description: the email address of the user who actually received the message. + - name: remediation_status + type: keyword + description: The remediation status of the email threat. + - name: remediation_timestamp + type: date + description: The timestamp at which this message was remediated, or empty if it has not been remediated. + - name: reply_to_emails + type: keyword + description: The 'reply-to' list of emails. + - name: return_path + type: keyword + - name: sender_domain + type: keyword + description: Email domain of sender (only available for IESS customers). + - name: sender_ip_address + type: ip + description: IP address of sender. + - name: sent_time + type: date + description: The timestamp at which this message was sent. + - name: subject + type: keyword + description: The email subject. + - name: summary_insights + type: keyword + description: A summary of insights into this attack. + - name: to_addresses + type: keyword + description: All the email addresses to which the message was sent, comma-separated & truncated at 255 chars. + - name: url_count + type: long + description: Number of urls in email (only available for IESS customers). + - name: urls + type: keyword + description: URLs present in the email body, if any. diff --git a/packages/abnormal_security/data_stream/threat/manifest.yml b/packages/abnormal_security/data_stream/threat/manifest.yml new file mode 100644 index 000000000000..f104e0ae051c --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/manifest.yml @@ -0,0 +1,79 @@ +title: Threat logs +type: logs +streams: + - input: cel + title: Threat Logs + description: Collecting Threat logs via API. + template_path: cel.yml.hbs + vars: + - name: initial_interval + type: text + title: Initial Interval + multi: false + required: true + show_user: true + default: 24h + description: How far back to pull the Threat logs from Abnormal Security API. Supported units for this parameter are h/m/s. + - name: interval + type: text + title: Interval + description: Duration between requests to the Abnormal Security API. Supported units for this parameter are h/m/s. + default: 5m + multi: false + required: true + show_user: true + - name: page_size + type: text + title: Page Size + multi: false + required: true + show_user: false + description: Page size for the response of the Abnormal Security API. + default: 100 + - name: http_client_timeout + type: text + title: HTTP Client Timeout + description: Duration before declaring that the HTTP client connection has timed out. Supported time units are ns, us, ms, s, m, h. + multi: false + required: true + show_user: false + default: 30s + - name: enable_request_tracer + type: bool + title: Enable request tracing + multi: false + required: false + show_user: false + description: The request tracer logs requests and responses to the agent's local file-system for debugging configurations. Enabling this request tracing compromises security and should only be used for debugging. See [documentation](https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-input-cel.html#_resource_tracer_filename) for details. + - name: tags + type: text + title: Tags + multi: true + required: true + show_user: false + default: + - forwarded + - abnormal_security-threat + - name: preserve_original_event + required: false + show_user: true + title: Preserve original event + description: Preserves a raw copy of the original event, added to the field `event.original`. + type: bool + multi: false + default: false + - name: preserve_duplicate_custom_fields + required: false + show_user: false + title: Preserve duplicate custom fields + description: Preserve abnormal_security.threat fields that were copied to Elastic Common Schema (ECS) fields. + type: bool + multi: false + - name: processors + type: yaml + title: Processors + multi: false + required: false + show_user: false + description: >- + Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the logs are parsed. diff --git a/packages/abnormal_security/data_stream/threat/sample_event.json b/packages/abnormal_security/data_stream/threat/sample_event.json new file mode 100644 index 000000000000..ef29cc09849a --- /dev/null +++ b/packages/abnormal_security/data_stream/threat/sample_event.json @@ -0,0 +1,166 @@ +{ + "@timestamp": "2024-07-17T23:25:38.000Z", + "abnormal_security": { + "threat": { + "abx_message_id": "2260288475997441000", + "abx_portal_url": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "attachment_count": 0, + "attack": { + "strategy": "Unknown Sender", + "type": "Spam", + "vector": "Link" + }, + "attacked_party": "Employee (Other)", + "auto_remediated": true, + "from_address": "john@example.com", + "from_name": "john", + "id": "bf255f2d-a2ad-3f50-5075-fdcc24308bbd", + "impersonated_party": "None / Others", + "internet_message_id": "", + "is_read": false, + "post_remediated": false, + "received_time": "2024-07-17T23:25:38.000Z", + "recipient_address": "bob@example.com", + "remediation_status": "Auto-Remediated", + "remediation_timestamp": "2024-07-17T23:25:45.735Z", + "return_path": "bounce-bob_H181S7GUCF@example.com", + "sender_domain": "example.com", + "sender_ip_address": "81.2.69.142", + "sent_time": "2024-07-17T23:25:29.000Z", + "subject": "YoU.have.𝗪𝟬0𝗡𝗡 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB", + "summary_insights": [ + "Abnormal Email Body HTML", + "Invisible characters found in Email", + "Suspicious Link", + "Unusual Sender", + "Unusual Sender Domain" + ], + "to_addresses": [ + "bob@example.com" + ], + "url_count": 1, + "urls": [ + "https://www.example.com/" + ] + } + }, + "agent": { + "ephemeral_id": "3cfaa9dc-bca8-4e29-a807-77b68709b731", + "id": "7aaba523-565c-4597-bc42-59135436336b", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "abnormal_security.threat", + "namespace": "37330", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "7aaba523-565c-4597-bc42-59135436336b", + "snapshot": false, + "version": "8.13.0" + }, + "email": { + "delivery_timestamp": "2024-07-17T23:25:38.000Z", + "from": { + "address": [ + "john@example.com" + ] + }, + "message_id": "", + "origination_timestamp": "2024-07-17T23:25:29.000Z", + "subject": "YoU.have.𝗪𝟬0𝗡𝗡 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB", + "to": { + "address": [ + "bob@example.com" + ] + } + }, + "event": { + "agent_id_status": "verified", + "category": [ + "threat", + "email" + ], + "dataset": "abnormal_security.threat", + "id": "2260288475997441000", + "ingested": "2024-08-08T06:53:48Z", + "kind": "enrichment", + "original": "{\"abxMessageId\":2260288475997441000,\"abxPortalUrl\":\"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654\",\"attachmentCount\":0,\"attachmentNames\":[],\"attackStrategy\":\"Unknown Sender\",\"attackType\":\"Spam\",\"attackVector\":\"Link\",\"attackedParty\":\"Employee (Other)\",\"autoRemediated\":true,\"ccEmails\":[],\"fromAddress\":\"john@example.com\",\"fromName\":\"john\",\"impersonatedParty\":\"None / Others\",\"internetMessageId\":\"\\u003cAZz8NUMEST-qmuz77_koic@example\\u003e\",\"isRead\":false,\"postRemediated\":false,\"receivedTime\":\"2024-07-17T23:25:38Z\",\"recipientAddress\":\"bob@example.com\",\"remediationStatus\":\"Auto-Remediated\",\"remediationTimestamp\":\"2024-07-17T23:25:45.73564Z\",\"replyToEmails\":[],\"returnPath\":\"bounce-bob_H181S7GUCF@example.com\",\"senderDomain\":\"example.com\",\"senderIpAddress\":\"81.2.69.142\",\"sentTime\":\"2024-07-17T23:25:29Z\",\"subject\":\"YoU.have.𝗪𝟬0𝗡𝗡 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB\",\"summaryInsights\":[\"Abnormal Email Body HTML\",\"Invisible characters found in Email\",\"Suspicious Link\",\"Unusual Sender\",\"Unusual Sender Domain\"],\"threatId\":\"bf255f2d-a2ad-3f50-5075-fdcc24308bbd\",\"toAddresses\":[\"bob@example.com\"],\"urlCount\":1,\"urls\":[\"https://www.example.com/\"]}", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "type": [ + "indicator", + "info" + ] + }, + "input": { + "type": "cel" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "hosts": [ + "example.com" + ], + "ip": [ + "81.2.69.142" + ], + "user": [ + "john@example.com", + "john", + "bob@example.com", + "bounce-bob_H181S7GUCF@example.com" + ] + }, + "source": { + "domain": "example.com", + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "abnormal_security-threat" + ], + "threat": { + "indicator": { + "email": { + "address": "john@example.com" + }, + "name": "john@example.com", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Spam" + ] + }, + "technique": { + "name": [ + "Unknown Sender" + ] + } + }, + "user": { + "name": "john" + } +} \ No newline at end of file diff --git a/packages/abnormal_security/docs/README.md b/packages/abnormal_security/docs/README.md new file mode 100644 index 000000000000..05bf7e52517b --- /dev/null +++ b/packages/abnormal_security/docs/README.md @@ -0,0 +1,665 @@ +# Abnormal Security + +Abnormal Security is a behavioral AI-based email security platform that learns the behavior of every identity in a cloud email environment and analyzes the risk of every event to block even the most sophisticated attacks. + +The Abnormal Security integration collects data for AI Security Mailbox (formerly known as Abuse Mailbox), Audit, Case, and Threat logs using REST API. + +## Data streams + +The Abnormal Security integration collects four types of logs: + +**[AI Security Mailbox](https://app.swaggerhub.com/apis-docs/abnormal-security/abx/1.4.3#/AI%20Security%20Mailbox%20(formerly%20known%20as%20Abuse%20Mailbox))** - Get details of AI Security Mailbox. + +**[Audit](https://app.swaggerhub.com/apis-docs/abnormal-security/abx/1.4.3#/Audit%20Logs)** - Get details of Audit logs for Portal. + +**[Case](https://app.swaggerhub.com/apis-docs/abnormal-security/abx/1.4.3#/Cases)** - Get details of Abnormal Cases. + +**[Threat](https://app.swaggerhub.com/apis-docs/abnormal-security/abx/1.4.3#/Threats)** - Get details of Abnormal Threat Logs. + +## Requirements + +Elastic Agent must be installed. For more information, refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). + +### Installing and managing an Elastic Agent: + +You have a few options for installing and managing an Elastic Agent: + +### Install a Fleet-managed Elastic Agent (recommended): + +With this approach, you install Elastic Agent and use Fleet in Kibana to define, configure, and manage your agents in a central location. We recommend using Fleet management because it makes the management and upgrade of your agents considerably easier. + +### Install Elastic Agent in standalone mode (advanced users): + +With this approach, you install Elastic Agent and manually configure the agent locally on the system where it’s installed. You are responsible for managing and upgrading the agents. This approach is reserved for advanced users only. + +### Install Elastic Agent in a containerized environment: + +You can run Elastic Agent inside a container, either with Fleet Server or standalone. Docker images for all versions of Elastic Agent are available from the Elastic Docker registry, and we provide deployment manifests for running on Kubernetes. + +There are some minimum requirements for running Elastic Agent and for more information, refer to the link [here](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html#_minimum_requirements). + +## Setup + +### To collect data from the Abnormal Security Client API: + +#### Step 1: Go to Portal +* Visit the [Abnormal Security Portal](https://portal.abnormalsecurity.com/home/settings/integrations) and click on the `Abnormal REST API` setting. + +#### Step 2: Generating the authentication token +* Retrieve your authentication token. This token will be used further in the Elastic integration setup to authenticate and access different Abnormal Security Logs. + +#### Step 3: IP allowlisting +* Abnormal Security requires you to restrict API access based on source IP. So in order for the integration to work, user needs to update the IP allowlisting to include the external source IP of the endpoint running the integration via Elastic Agent. + +### Enabling the integration in Elastic: + +1. In Kibana go to Management > Integrations. +2. In "Search for integrations" search bar, type Abnormal Security. +3. Click on the "Abnormal Security" integration from the search results. +4. Click on the "Add Abnormal Security" button to add the integration. +5. Add all the required integration configuration parameters, including Access Token, Interval, Initial Interval and Page Size to enable data collection. +6. Click on "Save and continue" to save the integration. + +**Note**: By default, the URL is set to `https://api.abnormalplatform.com`. We have observed that Abnormal Security Base URL changes based on location so find your own base URL. + +## Logs reference + +### AI Security Mailbox + +This is the `ai_security_mailbox` dataset. + +#### Example + +An example event for `ai_security_mailbox` looks as following: + +```json +{ + "@timestamp": "2024-07-26T10:30:06.000Z", + "abnormal_security": { + "ai_security_mailbox": { + "attack": { + "type": "Attack Type: Graymail" + }, + "campaign_id": "fff51768-c446-34e1-97a8-9802c29c3ebd", + "first_reported": "2024-07-26T10:30:06.000Z", + "from": { + "address": "bob@example.com", + "name": "bob@example.com" + }, + "judgement_status": "Safe", + "last_reported": "2024-07-26T10:30:06.000Z", + "message_id": "7063250485337877109", + "overall_status": "No Action Needed", + "recipient": { + "address": "john@example.com", + "name": "john" + }, + "subject": "Days of Understanding 2024" + } + }, + "agent": { + "ephemeral_id": "cafadbdd-dc09-45ac-aec4-49d7250ebd32", + "id": "9783be93-6fa9-44ba-8f6d-eda7dcb99151", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "abnormal_security.ai_security_mailbox", + "namespace": "38204", + "type": "logs" + }, + "destination": { + "user": { + "name": "john" + } + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "9783be93-6fa9-44ba-8f6d-eda7dcb99151", + "snapshot": false, + "version": "8.13.0" + }, + "email": { + "from": { + "address": [ + "bob@example.com" + ] + }, + "subject": "Days of Understanding 2024", + "to": { + "address": [ + "john@example.com" + ] + } + }, + "event": { + "agent_id_status": "verified", + "dataset": "abnormal_security.ai_security_mailbox", + "id": "7063250485337877109", + "ingested": "2024-08-08T05:41:05Z", + "kind": "event", + "original": "{\"attackType\":\"Attack Type: Graymail\",\"campaignId\":\"fff51768-c446-34e1-97a8-9802c29c3ebd\",\"firstReported\":\"2024-07-26T10:30:06Z\",\"fromAddress\":\"bob@example.com\",\"fromName\":\"bob@example.com\",\"judgementStatus\":\"Safe\",\"lastReported\":\"2024-07-26T10:30:06Z\",\"messageId\":\"7063250485337877109\",\"overallStatus\":\"No Action Needed\",\"recipientAddress\":\"john@example.com\",\"recipientName\":\"john\",\"subject\":\"Days of Understanding 2024\"}" + }, + "input": { + "type": "cel" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "bob@example.com", + "john@example.com", + "john" + ] + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "abnormal_security-ai_security_mailbox" + ], + "threat": { + "tactic": { + "name": [ + "Attack Type: Graymail" + ] + } + }, + "user": { + "email": "bob@example.com" + } +} +``` + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| abnormal_security.ai_security_mailbox.attack.type | The type of threat the message represents. | keyword | +| abnormal_security.ai_security_mailbox.campaign_id | An ID which maps to an abuse campaign. | keyword | +| abnormal_security.ai_security_mailbox.first_reported | Date abuse campaign was first reported. | date | +| abnormal_security.ai_security_mailbox.from.address | The email address of the sender. | keyword | +| abnormal_security.ai_security_mailbox.from.name | The display name of the sender. | keyword | +| abnormal_security.ai_security_mailbox.judgement_status | Judgement status of message. | keyword | +| abnormal_security.ai_security_mailbox.last_reported | Date abuse campaign was last reported. | date | +| abnormal_security.ai_security_mailbox.message_id | A unique identifier for the first message in the abuse campaign. | keyword | +| abnormal_security.ai_security_mailbox.overall_status | Overall status of message. | keyword | +| abnormal_security.ai_security_mailbox.recipient.address | The email address of the recipient. | keyword | +| abnormal_security.ai_security_mailbox.recipient.name | The name of the recipient. | keyword | +| abnormal_security.ai_security_mailbox.subject | Subject of the first email in the abuse campaign. | keyword | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| event.dataset | Event dataset. | constant_keyword | +| event.module | Event module. | constant_keyword | +| input.type | Type of filebeat input. | keyword | +| log.offset | Log offset. | long | + + +### Audit + +This is the `audit` dataset. + +#### Example + +An example event for `audit` looks as following: + +```json +{ + "@timestamp": "2024-07-17T15:39:32.141Z", + "abnormal_security": { + "audit": { + "action": "update_remediation_status", + "action_details": { + "request_url": "/v1.0/search_v2/666/purge_messages/" + }, + "category": "search-and-respond-notifications", + "source_ip": "81.2.69.142", + "status": "SUCCESS", + "timestamp": "2024-07-17T15:39:32.141Z", + "user": { + "email": "bob@example.com" + } + } + }, + "agent": { + "ephemeral_id": "40cced4d-2587-4880-a6ad-3fe697d9ca7f", + "id": "7aaba523-565c-4597-bc42-59135436336b", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "abnormal_security.audit", + "namespace": "19380", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "7aaba523-565c-4597-bc42-59135436336b", + "snapshot": false, + "version": "8.13.0" + }, + "event": { + "action": "update_remediation_status", + "agent_id_status": "verified", + "category": [ + "configuration" + ], + "dataset": "abnormal_security.audit", + "ingested": "2024-08-06T09:41:39Z", + "kind": "event", + "original": "{\"action\":\"update_remediation_status\",\"actionDetails\":{\"providedReason\":\"null\",\"requestUrl\":\"/v1.0/search_v2/666/purge_messages/\"},\"category\":\"search-and-respond-notifications\",\"sourceIp\":\"81.2.69.142\",\"status\":\"SUCCESS\",\"tenantName\":\"\",\"timestamp\":\"2024-07-17 15:39:32.141000+00:00\",\"user\":{\"email\":\"bob@example.com\"}}", + "outcome": "success", + "type": [ + "info", + "change" + ] + }, + "input": { + "type": "cel" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "ip": [ + "81.2.69.142" + ], + "user": [ + "bob@example.com" + ] + }, + "source": { + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "abnormal_security-audit" + ], + "url": { + "extension": "0/search_v2/666/purge_messages/", + "original": "/v1.0/search_v2/666/purge_messages/", + "path": "/v1.0/search_v2/666/purge_messages/" + }, + "user": { + "email": "bob@example.com" + } +} +``` + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| abnormal_security.audit.action | The specific action performed during the event. This field is optional and may not be present. | keyword | +| abnormal_security.audit.action_details.message_id | ID of the message on which an action was performed. | keyword | +| abnormal_security.audit.action_details.provided_reason | Reason provided for performing the action. | keyword | +| abnormal_security.audit.action_details.request_url | URL for the request. | keyword | +| abnormal_security.audit.category | The category of the performed action. | keyword | +| abnormal_security.audit.source_ip | The IP address of the device that caused the event. | ip | +| abnormal_security.audit.status | The result of the event. Returned as either SUCCESS or FAILURE. | keyword | +| abnormal_security.audit.tenant_name | Name of the tenant the user has access to. | keyword | +| abnormal_security.audit.timestamp | Date/time when the event occurred in UTC. | date | +| abnormal_security.audit.user.email | Email address of the user. | keyword | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| event.dataset | Event dataset. | constant_keyword | +| event.module | Event module. | constant_keyword | +| input.type | Type of filebeat input. | keyword | +| log.offset | Log offset. | long | + + +### Case + +This is the `case` dataset. + +#### Example + +An example event for `case` looks as following: + +```json +{ + "@timestamp": "2024-08-06T09:42:32.438Z", + "abnormal_security": { + "case": { + "affected_employee": "john@example.com", + "analysis": "SIGN_IN", + "customer_visible_time": "2024-01-05T12:33:25.000Z", + "first_observed": "2024-01-05T12:33:25.000Z", + "id": "1234", + "remediation_status": "Not remediated", + "severity": "Account Takeover", + "severity_level": "LOW", + "status": "Acknowledged (Attack resolved)" + } + }, + "agent": { + "ephemeral_id": "d459a481-d0b8-4f26-afd1-ceed8531465a", + "id": "7aaba523-565c-4597-bc42-59135436336b", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "abnormal_security.case", + "namespace": "48573", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "7aaba523-565c-4597-bc42-59135436336b", + "snapshot": false, + "version": "8.13.0" + }, + "event": { + "action": "sign_in", + "agent_id_status": "verified", + "dataset": "abnormal_security.case", + "id": "1234", + "ingested": "2024-08-06T09:42:44Z", + "kind": "event", + "original": "{\"affectedEmployee\":\"john@example.com\",\"analysis\":\"SIGN_IN\",\"caseId\":1234,\"case_status\":\"Acknowledged (Attack resolved)\",\"customerVisibleTime\":\"2024-01-05T12:33:25+00:00\",\"firstObserved\":\"2024-01-05T12:33:25+00:00\",\"remediation_status\":\"Not remediated\",\"severity\":\"Account Takeover\",\"severity_level\":\"LOW\",\"threatIds\":[]}", + "severity": 1, + "start": "2024-01-05T12:33:25.000Z", + "type": [ + "info" + ] + }, + "input": { + "type": "cel" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "user": [ + "john@example.com" + ] + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "abnormal_security-case" + ], + "user": { + "email": "john@example.com" + } +} +``` + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| abnormal_security.case.affected_employee | Which employee this case pertains to. | keyword | +| abnormal_security.case.analysis | | keyword | +| abnormal_security.case.customer_visible_time | | date | +| abnormal_security.case.description | | keyword | +| abnormal_security.case.first_observed | First time suspicious behavior was observed. | date | +| abnormal_security.case.id | A unique identifier for this case. | keyword | +| abnormal_security.case.remediation_status | | keyword | +| abnormal_security.case.severity | Description of the severity level for this case. | keyword | +| abnormal_security.case.severity_level | | keyword | +| abnormal_security.case.status | | keyword | +| abnormal_security.case.threat_ids | Threats related to Case. | keyword | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| event.dataset | Event dataset. | constant_keyword | +| event.module | Event module. | constant_keyword | +| input.type | Type of filebeat input. | keyword | +| log.offset | Log offset. | long | + + +### Threat + +This is the `threat` dataset. + +#### Example + +An example event for `threat` looks as following: + +```json +{ + "@timestamp": "2024-07-17T23:25:38.000Z", + "abnormal_security": { + "threat": { + "abx_message_id": "2260288475997441000", + "abx_portal_url": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "attachment_count": 0, + "attack": { + "strategy": "Unknown Sender", + "type": "Spam", + "vector": "Link" + }, + "attacked_party": "Employee (Other)", + "auto_remediated": true, + "from_address": "john@example.com", + "from_name": "john", + "id": "bf255f2d-a2ad-3f50-5075-fdcc24308bbd", + "impersonated_party": "None / Others", + "internet_message_id": "", + "is_read": false, + "post_remediated": false, + "received_time": "2024-07-17T23:25:38.000Z", + "recipient_address": "bob@example.com", + "remediation_status": "Auto-Remediated", + "remediation_timestamp": "2024-07-17T23:25:45.735Z", + "return_path": "bounce-bob_H181S7GUCF@example.com", + "sender_domain": "example.com", + "sender_ip_address": "81.2.69.142", + "sent_time": "2024-07-17T23:25:29.000Z", + "subject": "YoU.have.𝗪𝟬0𝗡𝗡 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB", + "summary_insights": [ + "Abnormal Email Body HTML", + "Invisible characters found in Email", + "Suspicious Link", + "Unusual Sender", + "Unusual Sender Domain" + ], + "to_addresses": [ + "bob@example.com" + ], + "url_count": 1, + "urls": [ + "https://www.example.com/" + ] + } + }, + "agent": { + "ephemeral_id": "3cfaa9dc-bca8-4e29-a807-77b68709b731", + "id": "7aaba523-565c-4597-bc42-59135436336b", + "name": "docker-fleet-agent", + "type": "filebeat", + "version": "8.13.0" + }, + "data_stream": { + "dataset": "abnormal_security.threat", + "namespace": "37330", + "type": "logs" + }, + "ecs": { + "version": "8.11.0" + }, + "elastic_agent": { + "id": "7aaba523-565c-4597-bc42-59135436336b", + "snapshot": false, + "version": "8.13.0" + }, + "email": { + "delivery_timestamp": "2024-07-17T23:25:38.000Z", + "from": { + "address": [ + "john@example.com" + ] + }, + "message_id": "", + "origination_timestamp": "2024-07-17T23:25:29.000Z", + "subject": "YoU.have.𝗪𝟬0𝗡𝗡 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB", + "to": { + "address": [ + "bob@example.com" + ] + } + }, + "event": { + "agent_id_status": "verified", + "category": [ + "threat", + "email" + ], + "dataset": "abnormal_security.threat", + "id": "2260288475997441000", + "ingested": "2024-08-08T06:53:48Z", + "kind": "enrichment", + "original": "{\"abxMessageId\":2260288475997441000,\"abxPortalUrl\":\"https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654\",\"attachmentCount\":0,\"attachmentNames\":[],\"attackStrategy\":\"Unknown Sender\",\"attackType\":\"Spam\",\"attackVector\":\"Link\",\"attackedParty\":\"Employee (Other)\",\"autoRemediated\":true,\"ccEmails\":[],\"fromAddress\":\"john@example.com\",\"fromName\":\"john\",\"impersonatedParty\":\"None / Others\",\"internetMessageId\":\"\\u003cAZz8NUMEST-qmuz77_koic@example\\u003e\",\"isRead\":false,\"postRemediated\":false,\"receivedTime\":\"2024-07-17T23:25:38Z\",\"recipientAddress\":\"bob@example.com\",\"remediationStatus\":\"Auto-Remediated\",\"remediationTimestamp\":\"2024-07-17T23:25:45.73564Z\",\"replyToEmails\":[],\"returnPath\":\"bounce-bob_H181S7GUCF@example.com\",\"senderDomain\":\"example.com\",\"senderIpAddress\":\"81.2.69.142\",\"sentTime\":\"2024-07-17T23:25:29Z\",\"subject\":\"YoU.have.𝗪𝟬0𝗡𝗡 a K0baIt 215-piece_ToooI_Set_Noo0wW..#GBOB\",\"summaryInsights\":[\"Abnormal Email Body HTML\",\"Invisible characters found in Email\",\"Suspicious Link\",\"Unusual Sender\",\"Unusual Sender Domain\"],\"threatId\":\"bf255f2d-a2ad-3f50-5075-fdcc24308bbd\",\"toAddresses\":[\"bob@example.com\"],\"urlCount\":1,\"urls\":[\"https://www.example.com/\"]}", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "type": [ + "indicator", + "info" + ] + }, + "input": { + "type": "cel" + }, + "observer": { + "product": "Inbound Email Security", + "vendor": "Abnormal" + }, + "related": { + "hosts": [ + "example.com" + ], + "ip": [ + "81.2.69.142" + ], + "user": [ + "john@example.com", + "john", + "bob@example.com", + "bounce-bob_H181S7GUCF@example.com" + ] + }, + "source": { + "domain": "example.com", + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.142" + }, + "tags": [ + "preserve_original_event", + "preserve_duplicate_custom_fields", + "forwarded", + "abnormal_security-threat" + ], + "threat": { + "indicator": { + "email": { + "address": "john@example.com" + }, + "name": "john@example.com", + "reference": "https://portal.abnormalsecurity.com/home/threat-center/remediation-history/3456765434567654", + "type": "email-addr" + }, + "tactic": { + "name": [ + "Spam" + ] + }, + "technique": { + "name": [ + "Unknown Sender" + ] + } + }, + "user": { + "name": "john" + } +} +``` + +**Exported fields** + +| Field | Description | Type | +|---|---|---| +| @timestamp | Event timestamp. | date | +| abnormal_security.threat.abx_message_id | A unique identifier for an individual message within a threat (i.e email campaign). | keyword | +| abnormal_security.threat.abx_portal_url | The URL at which the specific message details are viewable in Abnormal Security's Portal web interface. | keyword | +| abnormal_security.threat.attachment_count | Number of attachments in email (only available for IESS customers). | long | +| abnormal_security.threat.attachment_names | List of attachment names, if any. | keyword | +| abnormal_security.threat.attack.strategy | | keyword | +| abnormal_security.threat.attack.type | The type of threat the message represents. | keyword | +| abnormal_security.threat.attack.vector | The attack medium. | keyword | +| abnormal_security.threat.attacked_party | The party that was targeted by an attack. | keyword | +| abnormal_security.threat.auto_remediated | Indicates whether Abnormal has automatically detected and remediated the message from the user's Inbox. Note : Abnormal has retained this field and the postRemediated field to support prior integrations, but in newly created integrations, you should capture this information from the remediationStatus field. | boolean | +| abnormal_security.threat.cc_emails | List of email addresses CC'ed. | keyword | +| abnormal_security.threat.from_address | The email address of the sender. | keyword | +| abnormal_security.threat.from_name | The display name of the sender. | keyword | +| abnormal_security.threat.id | An ID which maps to a threat campaign. A threat campaign might be received by multiple users. | keyword | +| abnormal_security.threat.impersonated_party | Impersonated party, if any. | keyword | +| abnormal_security.threat.internet_message_id | The internet message ID, per RFC 822. | keyword | +| abnormal_security.threat.is_read | Whether an email has been read. | boolean | +| abnormal_security.threat.post_remediated | Indicates whether Abnormal remediated the campaign at a later time, after landing in the user's Inbox. Note``:`` Abnormal has retained this field and the autoRemediated field to support prior integrations, but in newly created integrations, you should capture this information from the remediationStatus field. | boolean | +| abnormal_security.threat.received_time | The timestamp at which this message arrived. | date | +| abnormal_security.threat.recipient_address | the email address of the user who actually received the message. | keyword | +| abnormal_security.threat.remediation_status | The remediation status of the email threat. | keyword | +| abnormal_security.threat.remediation_timestamp | The timestamp at which this message was remediated, or empty if it has not been remediated. | date | +| abnormal_security.threat.reply_to_emails | The 'reply-to' list of emails. | keyword | +| abnormal_security.threat.return_path | | keyword | +| abnormal_security.threat.sender_domain | Email domain of sender (only available for IESS customers). | keyword | +| abnormal_security.threat.sender_ip_address | IP address of sender. | ip | +| abnormal_security.threat.sent_time | The timestamp at which this message was sent. | date | +| abnormal_security.threat.subject | The email subject. | keyword | +| abnormal_security.threat.summary_insights | A summary of insights into this attack. | keyword | +| abnormal_security.threat.to_addresses | All the email addresses to which the message was sent, comma-separated & truncated at 255 chars. | keyword | +| abnormal_security.threat.url_count | Number of urls in email (only available for IESS customers). | long | +| abnormal_security.threat.urls | URLs present in the email body, if any. | keyword | +| data_stream.dataset | Data stream dataset. | constant_keyword | +| data_stream.namespace | Data stream namespace. | constant_keyword | +| data_stream.type | Data stream type. | constant_keyword | +| event.dataset | Event dataset. | constant_keyword | +| event.module | Event module. | constant_keyword | +| input.type | Type of filebeat input. | keyword | +| log.offset | Log offset. | long | + diff --git a/packages/abnormal_security/img/abnormal-security-logo-dark.svg b/packages/abnormal_security/img/abnormal-security-logo-dark.svg new file mode 100644 index 000000000000..676f87fb63b6 --- /dev/null +++ b/packages/abnormal_security/img/abnormal-security-logo-dark.svg @@ -0,0 +1,36 @@ + + + + + + + + + + + + + + + diff --git a/packages/abnormal_security/img/abnormal-security-logo.svg b/packages/abnormal_security/img/abnormal-security-logo.svg new file mode 100644 index 000000000000..232648a6f92c --- /dev/null +++ b/packages/abnormal_security/img/abnormal-security-logo.svg @@ -0,0 +1,36 @@ + + + + + + + + + + + + + + + diff --git a/packages/abnormal_security/img/abnormal_security-ai_security_mailbox_overview.png b/packages/abnormal_security/img/abnormal_security-ai_security_mailbox_overview.png new file mode 100644 index 0000000000000000000000000000000000000000..be34f1fd97c63a911e50b3c56325beb3942087eb GIT binary patch literal 312866 zcmaHSWmubC)-DBF+}$05)8ei{OCfl1D_-2SI0W|=CloK%;_mLn-QC?e>HE%n-^@8@ z<`>tKguS1o`(A6^J6!pL3>q>qG7Jn1nw+eZ3JlC^APmf#HN-d2Pa;FtilBd9IjP7< zz?6-U?!mxN!pKR9tGVkRX1vx){J7BjGC@ff1&E^LF>-S&TUx5lI5}=vC@(u8wsv!K ztA!Xt0H4N|7*Bm}jLhLlzrK0{Y#Md(nRzH3^%$uiJxM3Zyc2a(b8xhbMX`PV1&QMo zeH;8&7#u^`|L4IUBS;JnA1E4|vHj`YfBxAkdP>9!zyN~(e_sm>69J)^biFYC_W#}N zpX-AXNB`^huoSqjpzl<8wB7w*->D4($ol7+|F39&z7YYyvVeV+7ltD~!M+_eFNtDSR!s5n@mNH7!G(nu^qqg}Iw>8hjU?|t4-cr;y$RuqiHJMq=8)I} zB{9j#+cO~)JvA3h|EnlEY)T~%3X0R@52IiPrAJHxit?^;55V7VS!e;TgZ{IiJvO|sa7>*qF%GDrE83sT+c{jP%np0Mx;4vRi}3lNUGid znEzpE@;+0D9PMDHGq+c%;-!u1eJTg`_>31MImyOuYzSA;bW$MfP61|U641_E z`qc0t{Fk+sdZ?cmrLnQ`AQ%41&>!C`M1;R>Z>BzkUHIRySHp*Wv{C=)8b8wxRS%HL zaBG^VM$s#=KizyLhO+Cy^jlA#-!B#5ICIJe8plWaubWm1JF<68uP@^T#dO#u%f>~< zeeB0q$VxQI6BcS&$jshn1$^YpH$3h&SnaFC`9vgdd2_u#hZgt-y=_3<+F|cpJuhky z?(Hl3QzOh(gc}T#tbg&awgsv`#t7vc?SNl)gN-7dmTC3%S=}{6kU{XOBz0`NxWVYk zY(}s@c@A`I=-N-l=X12cDAp)ts>)Xqc|blpL$aH#vh1{qBo)qCw4uWQ^}0$XzH51@ zKa#&7R4)d2nohmhePPdHwzg%P)T|8+@iPg=Cnqb7GVT4f`!dcEe4kSDyAc!k^047n z@vEBgJXSH2i#%&6Bb>eE9{u5(g6U}DRs`xxBFeCjtIz(nLhNb(ll%Y#f0W6l<)KWk zY>8M{QerZ4xJUSImxe{R3YXV*v1@P@^Lt)i``8#vhCo$sBvFFH=@^Jby9xE<$B!qb zM@~CKVo6Nu6=uV4Vvi^5DiK78xk$HI1GWuVwlF_)Z608U4iUVLl-N75c~NKNmrh~= zXD(LaFs+aVn&BxLd08ZxT6pK6r!Bq!YVPXQWA%2BgwotVKl~WIno&T`E191QH?&Er zt#}hHxr=VNt*6BdSARJwQ7FsXc#}YL7v5JfIr7Ccu4}QAW#QGeNbQxN}*1?tLbxUj{=#j};4X>_dxbIr5-5m8a& zEs67Ng?!dIyuHbdPAkUyMn-%K6voEK+m{wJ*S6Sjf79 zZvijUd~=_#JQfh`^6IR6hoZA%3T`UuDs}@WEH-!fO9)eyP)ttroj zPT*LLBD43?Fh*E(cpRJ6n9S2#3q!w1VnL*$qM|(QAC+-fL##t9b-bLMDE|Kb9K4*8 zgUPJ+cjtIP!J#Rh(N@yZ#!czz=_*m}yv}ltjz4AVoVeYJHU%5_W`qU>@m`Sjk;tk@ zh2Mj)=mxfw>-w>Qdg<2fZDOrrGvB|P!oPV0$R`fd~fU3CPj!j zpn>Azy`hg?k<9WDwpQA9ce<20noKadQzkmm6P?$M_pQE#g;r5d;Sle)uV1r)5!>$e zFaEa=c|WF`JUHV*cPEQ}4-o(C+E6RE4JYC>YkR2Sbv>C=U4OWH^G`pfqss34r7qXA z(elTK(P6I+X1agop}e&pL;RuBD6z|BK9bqH&wa4ALqLhYx4B6vG1X5*2iPU*QTz&C z609{`-z0M1z1S`NQc-Nn7&Mwg(_{RUx;5M2lY(hi5;yD{8hg@Q=sX8>~_4| z8~KrfhH2jg==Bk@J3loz_7lkYP4)9~1DxNZ-K%%+^vlI{6i`$PK6LHIb!L}7HB=;; zerbNdSQ{*F>8v&Iiw4nrDmmGVni^}aulqExiFE5eg6e&DJ8&2S!F@1od>`RQ(uGT^gun8*Fhxcduk9H4s?UF=BMSqL$763i z|2ZxFF+yR09p2A-r0z>iQF5wg1G=~6qAy>Tn;T4~Qm<~k#zh_10OvMzZkWe^PW(KY z(*<_X^^qm7*?Mbs&+FZgOyLIOfvUN8Gxd&l#)qQzh%zx5@IFd$ocfkz%JRsLk9FhO zJ3Cpv&t!>Z4l^Uew`aWu4(FF2haNTv3X6*oSqI0*Uu87lPL9h9XgWOUc_~U(r;c=^ z%Rvfnnrn8sYG@|GSmG!c*f-}$8X8SLT;eF`Lo3sVo@QZ0`Ad5BZHOp41gmgIGDe|`52M-WwaIFqtJ(ks9mklO10f8^d&PIMe!hdDLJqxPOAAOe5?(*jA)^C*N@;=YF_Y#A#7> zd&`$D;`3(4Zc!PLAoz>h(fsQuVc~Acz61s(=t)c^C9~69m)lD9bbl@0?CB9lfI%+Q z*7Ah#-LDmSAtgROfYW?rePF7@*hjCy`4#YeS6A2S+%I#jTHipz0^g_m-NhoBq2XaH zEG++of)5+dPY>(bFV9b6mi8T;G-FM`<%kCBnKHSV_fFGgdL;Y%#E2*;cn4Q4PBO=y z5eq0DP7|w}SM${h1d}D21XUx-ZftB!EH?!0bzop9dPHbD{&1S4 zo@8!Yg9ZA}N`sY_^(I<+`t`;7ivT)q5)u*zY0DU59vjLYy7sJM7yMco$98*!zZ0Ia zz$ z0ToCnE5U6m3k84exVdR(zoXPB@cyf?HE~aL7Io&6X1Q*_8clC&68G_PCDBXTOUhVw z;gq9eSMsp+TeCycSk>&&++IG1bFSztKD}bVXCT2E|2BigE^g!io41`MaC~S|YEkzk z1Crl&sA&eejJ|P+Tuy^kN6X-)uaIpF{D9_M@q33{#BvH>8%kSt)d26~IBV zqIHm_X6q}-E{wN-7tkN!aXsu;YCZ{vpi`)_w2hE0bXKJ1xLl%4;b%289IKECNL3=n`N#l8SNL3aZ9NfM+DOE~+=n51JLU^t8vU`ajhW15LC1 z{lznP?;h*>DlLs{qca*^skmryOSP*5(sXF3Ht+5p!tHNrKF?^3yVkgJaB_Ag zv+CF%Tz`%wC`?F5Amju9FwM5N?Vau0`c(_;SKGwnuyZUE=&8-I!*gowmXb+Q+3naj zhl>gdLWzDCpq!`~=j4=8&01Spu1(|(zU$nf^O7;A6B5!z9Hcev>FJT1`DAX*JT0YP zMOzb1%&&4tw^f+uQ_$Sveg@%Vr}h0!lz07j=M*QlGB}80(i{n zzEktvfOs+M4~)--hou!z=6e6$8P&$7w9;gUeCXxk1ePY^Qf$TNwWz2cDoNbU5?eVV z^nkHL{R3gdwrK1RPeqD&HhnITwQKg&OcmdF+KM_ji>B6CFo=;Z*5WijpfR}t^6BaM zJl!#fd99gU26E-nxIahUUHEoqx6?#Kk*nqV4;Qc`>bPV|jhm1lw+uNRw&1chPBTv9 z7EAcK+@-(!rUMO$q5jUVE_|@W^kpiNeK-?HH=qJD^k{k+F?C5j+O%Qhh;Gwb`ifyR zvCXF}!{5fQ>De$O7MZQTMeyCKvvOI^%OAs*>x;l8F)>X9CcnHPIY{MmS&y~H%6xla z;!s2j0bGf?Z4&}00>3+Yn<%;2EZ4nhyguyYU3mt~i0ms9gA$hk@3REt3Li>lHa#Bf zP5!i3`lzA#|6v*$<;Igi#=&XdIP+I~qS7XK!E`x_5Q|3F&%u;e`%?!4;F&Um&bteO z?~w0OxEWjykW<{Hinr{wXyM7ip3VdTGtFK%XJ@@m!S-_0j7TB0i9SMZ=v>uRreKJ3 zhLp0OpP%LJ%Od};Zk;&;zX!cYrS;V)68+gKk6&MZx3`muP z!9EYm2|IQnP8Mx|{gPQj6LNF=BIJ2Q-A|RJU?yE1+7k+tg8M$|(!6qgtgEc^yh=U& zkSE=tQxKhD|NQ7dRdsbZ2j_Kj+?hA%f$=&sGm}ujl;cA>UpNkf67s|3)YRLT(bvWz zaiZwyGn=1fqqj5;L1a9@OUw9oHQIa#Q_va{7S}%6X z-bONVojY4c!A<;)&c~5#dIBa3*JO1b7x@)AUbVLC-m$y|Khhyx(u#^`7uzq4@SD+O z0%6aMt|$1=17?`Rdi%Z5^;P%wuufMhONq|_ttxMZ)u%soABjkFQc8Z zC6z|nml~g5^u?AVz4#c^8)(1lPvegc^Y$`fE?bs>iTa)U7|hvCgiz(Ko&Wcz+b7;z z3o!$m#U{n?K-KS1KhNvqTMUKbt^wfc>T|~K60g#1lgAURfa`H^P?yxV2wKqPW+j}( zL{n*<@A~YkVA7WXd7GhKtcvQ&9*mb^1s|a2WO{uT&F-9&^T9k4w8q8d2lXFwmpuE2 zdePh>z#DD?{F$DLs%QG`z}UU zipOKp6?T-?r;h{)d5nJy*(y=2;29k^-=pHr;NbzQtGI#@#s=^dki#HqYT-dz=f~e# z4YA4$ZUVCW^d*)c+Llt|bP)t!nrftDGJ>pUng{OdS0A7au)?lC2S7p7JKFDfTd(Ca zzm#aQ;jQpr2133^NsZThUT9l*Kv(&#uUX-DJBENkA(F@lR-y9@Z%Z;5LqSCCO6*Ut zhq?|a->tytc^Fpb+Wx+_>8((3RzfJ{R!?QIKADDwMp#r7UOk5#?$O*Y26R%sFBb%C zvMDkhj7U+mF!2@Auq@$)@!M<1(d~f5swcdzK>c|7~+gOvc74!@@sh-? zuCB%-mF(>JzNfkCi|xh;gh2|+m5GvwO65l8U}XtNR>RHX2QQ!ym)G%!2RoH&cLZvv zSY}SYa~Z&;lE$Y4Z<|X#C>9}4mm07SJ1`poAw1#Tw5#j}l`0K0YRbiat5_^oUU7IMpUd`LO&57 zhbbm{>vz9}K`P+=-m0%fctOgvn|I|Y?AMOIC>*YN5jC`(WS1v|^9RQSw-w_lbh#nn zwdl9nzQ$+K3VOisHcgeuJmkz*!hanFDBrnxxg&<6WTu-uWzYUre72q|5|5GBo3k?Y z$_N-_QM+FWQ7L!`eLQb4*<*FnGfvk(A@)QQh4*CIB76O2ZU~d75K+40nJLo=e$jm& z+K@vg@Kr=cOB*KOa#A@@ew;|`gm>6@PU@K3@%hUh>kf0{b)vjMPRp*q!fp9j1y9w__<9y_1YiheL-BbT(~$rF*rsecftAXfp2oeCFl5oB-~a(Yn>s;O1*`J z08mDzemV%TS_=1QxtRp&;A|Z|bgZqbG7ut<n5t7-S5U8lA?40S&CMGAL$m~8%%`~st`{GJ7EIb?!VlD>+oqx#S zGis7Wh|ScmSfvX0g;ot+tL=eFY~TSXOojj|D=I2tJ$0h%uD1L5<=LkzB3E2e8VR9wR5SxcPgw79=OL@h+0(P3?#SgMF_j)Z$@xl&MNVEv zCgjT-t}1RYcdi7kHZ@8=-EG9^c1NCr!jC#%&o`w<>nytdTih>S#GFs&44f0_!141d`7R2#A|7C9ZV0Ey z4o3>@q2>yXhIRicSB}ai!`Z&l~u3q=A1-(BM8_PY@*)*$3sOhf-QjLxtmms zmYY+SR%Z0SRh<{>Dl2~dV#Y*QeCm&oq6S~@{U+&+rbt09b!KhtHC)5ANlg(F>OZi* zO07P%Z?A(_yjjrhMfGDAngFh8A#pG@hCsoy!_50Ei;5WC2Q;oX8NhW@H$YP?k!#$e9nTl`@^N}BWyK}kB0!;PT%}F}uvph$j!}w2IxKnNLmoHv?RbYo2 zZ`UV8i6*6FB=c`h;O(rZ{jFcOn@0Lm8o*Rnci2VeGAaUod$&UrNnzewcpxSBAtV0d zoo1W|(RmDOKauD0BQSU=79|40s>6jdReQYT_r*U@rp4&~jOGE_whR@x5{^J)r2FKv z9a%)kX~oB8P#@xelP}*3iH#B{tBz1x`h=&gUE@q8P-Vvq<_Cco{wjj}A&7~W?HMgM zyTFm(1=@MQbh=gcHWh;JWgMbMN*ILJDlT+0mD?KVkWLkdkn3QgwB{je zG(js6FGG!YkwY3+!^1-;>YHA-Gy2+ZEjQ*(w%kU~Y}2O_zz?aL2|~5f4Df~WTflkz zcWZxf@z?fpjt~{AfTR+Qh>GVN$8$RMW3Yi0xYy2TNt*IFb z+oWvh*W$D=1?6=NO-!PG7mOy(sU}K+20-)mP7GA>sv{am1pWGrb$qQ@Q1?aLat%Sm|S1wYJ7+#2OG zGoWr+D`&VKR7uUEucM$KbyfE9*Q;hv7n!Gf7o+TQb`_nc=35G^{12_=eVi93-Gddb zdit!v=Qe6G#{Kblb)HXe06$ar*WPFFAUHTU6zVMyi9YU-#3_mL)8U1pQ*_^>c~s*k zv)tpfKAka0NJu1EW!B^nEr$5yPQIlJ^ssw+ZF%Nl*(<-0$OP7J^hBpvX@yj<9?xmZ ze#m^~6Ct#_*Wa*f;`K(@6II0e-!WBixg5A0u-OQ1*2Nm4;n{xCB1gC&ws zL|09x;7TQHY)si^wodMcTxNUe+w*^N0mS4k+6|Qg3a60sn4`L!BdgJpHR`?js zuO;I68AU&z=r>E{u>4%O>BrI1)&kIZXF~m0EPy_I=TbV0I3vpCU^+rVkG78hJu9VJ zhBi_qT3bM}>Ui&WKKPdm@CWUkvcjeK`p92p0(~|Y?4|eRpwdc2SfnqU{56T{w^0pw z9n3!yaj{@Zu~v3hnKEq6j`U!S^_SluYYMD%V)5k?|r__U~BCAp$1B9 zqVl`E3aP2|mxy@kY9SwKb`C6_KL{Yt7-r8g*X(v`9+UENvjZ*(l>KSlAnK*eAV)wt zL(n@gpeRn^`6Cr)s3jCl40MVCQ~Q3YP1M+E!zp37Iqy%PjD8Br8^8w2VbU2n57uPd zo~;xcolp17Kr#I-2a?)0f*TW$sj*dn`DkVY)BZWJy6Mb#5xA|b4K~vg_k$v27n(iR zTrTnfb*JlFgRmysH(gbgl~~JZiD^~#G--gyEXTm@asefNrGx2G)oig?7O#k(pox_2 zeCf>40V~?wcmf+WQ`2wV0>tL?lZ>b54Ii^HHH>t&N>!KVW$S2P3377-w?+CI4dMDDE@q}at!vN(a;n<9T(=+qTaxp21-OR~~y)E7%$J6_{kR;hf4{{s}p zP^Q5MBgEHm87&f$3i`sDkEHhwFDxsost4=jhFGk$pf$K01x#7bpkx$r1=}ce`Yz6b zz6v`r={KQ<%nUD_w)h}umg)JGP+J%^_UlxQ$CiVDdAkjgbRU`3Gg^N=&AjsppGb!e zs0)@0jRd?* zHowgoVdyNI4O$FJ{TPaB`Vfjv1}@d9U0ajGaoBXv0O5Exq!) ze;ZhbHd$~LTW*|C0JuoyfA^trlrN!1AB6y32ScaPVeaV!a+=fmYM@EzH2A>Hwx_(M zHoG`S|HtQV?Vzsm5p^ z=dh=Po<^1GwbGso;J#Nh^K*#kHVj)iu3wtJT7P7#&N1?JY4=( z>JlBzdMS8(_34swElFbH=}{p$rdlnbxiby$LhoU(vj1u%?GBwcpup^}7K6XzA5OT>TXvkz!y*x+%lJYH^%zS-d0L%X8HU3s&sW^6Xx|RxBBFaS(9+iWo;$zt z`+)myTrZM&lUejY*{h*Kgu&&!*UmB*W{N<41g0)=s+jTdx9cy*%Z==%=TqM+5r}!O z+rn`QP;jw{1kGp{mx#fn4r^;z>%>Uen;Co4h5m>MUT4%=oA9MN1vSo|Oo-w@g^rGn zZXxJIKi<+4x-f^$tYMscimz0>;6-`sGlu2f-l@HtAmpWk{yyBUhoibbDKZ&MGu#+II!e z-umpnFOvP(f0Ld9<)^^l0NkLw1O4ML57__R362`7YKk$l3l(VkaxZ}g^je_Blpzxs zKp^t%wb9IUp%!bw$q@kggjlzYA4IC-IX)!H)!J5xnnoANM}OvGg;wmm|CkP-zw))$ zM3*5C{vTR{A*|GwtkPT3zre^q3QTye^fj81;Z|62PqOmN1P+c_9s?B}Jt`8_a~N8a z4x4eI>8CAva5B39ITWM(K`^xNYU=9a&=N(r&Yfs(ZVol%UlxC#jS5dYs$o8=2j~QN zGykJJbA~dsG%m@EAO4~mI3gAn7XF#zuj622Vq*_9{gZ(3_dAKT4HOHYqM@!{>^cxh zuj%|vP0EJ+VKzZdFc<#PobnejZb?Z#LBX|8_F(|rUh-UIu?@Drv*=%phCZ1uLQ7gm37 z`4_29SsE6~9*~unmo` z?eEtT3#Nw(AG}P?6a8O>{{(d?wK*vdq5m#C7nG*Re0g2r@LvT1q(OaQfPP@(zY3t7 zgH!>~&Z!NJ`nyj350)02gZhFx4~YD~TF)O@5$eat&B8XM|IsRKjnt=p=9;$m-oH089i}ZvRQ6P#86a7)vQ&-Hn4Ux$-ND z!NGal)V#g}5CJ)v>-ky#pEa|kWO&~Lv*?Fw@QibYD$k(2GKHxi!;dS-76Fm()xUn_ z^h%BKfkO!P9}++hno}qoFDxobTDTSB_;O`8@PTyj zJk5x0!-dMU`LtBLwWc1F#cCjbUv**kRE=KQgY~5Ci9^lp65XzXW(h}Wo_9YT&zRD_ zgKP&Vl@&G7xKX*kOVZKOQggBB5=mYV{*lEWBl!zh9?!zcNH}&Kq0A4?00crll8VM-M>JP3QIKn6YBBR z)X%YTOwG+ZMJW;a`B|hc>i^1sfIt`|h{hCaPVxQy>%@0GTW|k8l%Y=32H9<-E>HIm zbq6I%Y%3uMYoHHHmX14rz2HGnPjgX~J*It&t(cDjsueVj?J`R8h`$?GG#HU$R$r2X^5uq%gWnU^~hos3rv2 z?1wja(llCX#P92J17Lry%I6#U#qfdoptIjvnv4P8kI6G+jG7$9(RWd!5Q}f8N&9A> zg2qo4>oG!OGQWg}zZH3Me^ab!K3b^q`OV6o!YYqiY-;!D2%6m0(gq^_GC)%Syb7m2 z72U=Z$#h9cahsS7ocg&u8tz>D#Lw7_1m^pefqrpgEBwoXSP4s7k+%4<4258=)UN~t()Zd5}v8y?<8Y0@$09NmO30$ z5{#IwEgN=%YFx%sgKcPWG4iF0i}IGRz5x&)S~BTz4-55|$ z-SFD`dF-}l)bwa1N)IM#GBR2u)&zVZTss3B&xDKf*HPB;BIS0dwRh{BT57+gdp)=1 zGm3v0UDAS8NVp2KZVk%QYS&H(!u;VL#Py!8C_M9sS(HWvm&S_Koh(lh z6V(o9>j{J#+(PQ>=N7n%)SO@Jqa}o+$&5|Vj;C%NEIwkzH*tCVl&COk9F^;R4 z>Mka!*R1B0beTU{#r62hhFe!JeZ1Mryvg$l`P;W|W7E@Y*BCw)7KGdES^>MegqMfQ zKu=rKVG7(!Qk|M(saD@+<=!dad|n;rb&Dfo({osutj&BA+|hh>K%-74Y|6$4PKCp7 z9zKCtlxtx1qt|4Ss@LIsHAeJ@Ym39Z=v*14j;=|q$Cs_CpFe-vKV0jjx7vS9kGa3v z&;GoiF*Y;9T+X;c$jhI~lkQdd`lD(__G4diJ4;*PQ{-EoL>tC*E0CeoI_V0rtz}A@0usW)GMj{#G89R>^ zcM<3uQ!~Z83h~wkR@!eq=rsj*eGeF~&`u?`SnPYv!=3n$)&dBG%?hPDQ0F1FVa>@8 zg3ZQL$1N=`h{jXRaM-nFaZN`J{ua!mp;R0kRAux2<1;*?+_|tc8QJCOf}x<+ZtI=b zJ=hPsMfXXKewzr+W^84caBwtqBj14fna~PBPf`7`;^cMHaksGr0rOgY!;3bqaqdc~ z?EN$lRG*btyC|MnVBt8)e@No~hP9OfRk2g|dyi1Zk&BL@`U^?bBcw>zdZh+HoDv^w zP_rE9^_g>4XO~)p4yT|gAg3rNr2fgeQ%Xs-Z1|@DymY?d-gEEQnsH!5aY2tCod?pSnCL8mX(uh zuPVY>)_w(ncEaFWQN^QDHSCUp{ew(A!XQdduoahC>bDQ&D@pZwLim5XtC}M$E#GI+ z3tR=Wnt-_DgB4k@C-^5oy9Vy(h9f1u%|#CZjnG(a5gPOiuh{?2UPI~?N$0fC@q7IH z1Q=2a2YG9<_PTDSx~t&nAlH+dY|#rpBCB>8TUm3&7S0LoNS+y7TvC)%)L5crEun&Z zEOZJdoLg(R7h?6M+;1i6Cv65CW zu_B76BL17lGO6(#GO|@$O~tPXsc})Q*P+9=oSYEkhb%Sej$qsbdv^3$cLC$If4DiylG;g_a$PUsv2V@bTpJ{ms-UicA zvGL=u>b_qyEMs%O8yfJ~&<52A#eC?lW*9FtDUAso#p(8L(6*{O-hRbeQEi9GRV!2@p?L59@>o91Zt=bgqN89s5yZKd34Nslh$*U0bJ47hs*cd$= zFyHFO-sFuH85AVNJ@+p9b9bJ~GPVmO=wD%Sd|=(#2 ziovo0{_9Pr02{BXB8F3YE+F%a&`EXdteTC`L8$Mr&6@EiWwDBc9mdr3%-|>9%#Fes zl-)fGLsKt?D*Lx7&l-?}v=M~W$Qy-O?R^uq2kk<0Jw;uHm=2w1PzPL+lq3nKu=jYY z2<=UJBMGVuvm~nBL6`vdMJ9XUxLq#ijb!DM#FyKXSFDF)MLBq~mq|a${Y&2(CvaBW z$Ws=lsdYzYx_s9MgB@8ui+rb4v*fezh1N?haufzHkw7eL*~9|&lTn`CiQ)#E>vey-*i(F$pTDq2 z&oI2R*5(H7$9v}oP+jy6v&)hR?o#7ZqY+}@u<(gc)YaAb<~3wKGgw=ilIz|0u7(zV zb>FqHZlBAcKm5TO8}}`E;U<%sRtR}+uD;N$5QRYI;GI{Y1{X*zIdr!P>-yG4m6Dof zVyrcgPGFj+tBMXB0g=gffLOiYxMO;V!n>ktL`_#n~+qCbt~koZ1*6UywwD87m&It+RMTf=DfC5p|vKO z+}_921`>aV=8RyD2M)ehgEw~_zgoW8KZv?+y>8$s4=1;sI%8qVlhv_B=r+1zqaY-< z%q`2s5}5qemV6;D`+h`fK|0y}k(!*nGhw_TF8CCeb-*>ZIPYeNg;e_G5y+vUx<$~+ z6b|q_m?k@%t;SetaBeHnoa1xZ7V3#1K_W0`pel3u4n^sJb5&V!s7^+|7T?}r?j+L7I{95g_p&)tBF#nMlr$fzjjbvUfcy(PU_ zv6`2&)?oXJT43P4%XnQl!u64GknUzjf4?}Q25p0~Z@Z_9p2Nj785Lz50;LD<#Qf0E z`|jqQ5rcrdVE#84#~A0x30sWvuI%~^*wfslW4T@gRG3?K&KW^Q+Hg@GXA|mFk#S#= zlar&NKu26g27&xI%6@Gfj|xAEPz3SedTWa;`MX3PyNC+m&mY|JJ4S&aSN2E61jmcb z>>c$Pq-6Fl&ysQS;_F+o)a1br3PNsM;gFk?hp@?4&LV)I%Ap@XeZz76vc{Wj>GE<+<*dOV46 zJtL)Yg7)@`>N3Wr{1|dkx)C@JVgeDGlyY4eb+XTq#N4>ht555kT&8_6UsJytb`QAh z&R6FmMx}6h)-C*WAwWgD952zVg*8tYY41-ke`|6tCFFiu*hW*?oNe*JFy2@nZ%}tyY3~C&+UgioQPH z08Pz4MnfIDsT@XhDa#5AC(_G-$l%g71>f)uG zz;}unpp=-^27jtvC-X~mh)gE;2|^1cU%!Zp8ZQX1#i%Bh_Qu?`QBW-2>bRnxH+fFZ8JOZB~qnj+{HZ8c<#9I)W+hq zi7>0KS8T7@U8Inm`MS&6HpWuH*Fr9j6^NPi*3N`2pk5f;byfz z9w3wIrfr*?6$`4Bk?L))OBI=~wxA`ogjQ2gk&*AIlIaWbX{eb#gcZ>i$76b~%?odC zZgzAGA@(y`hAGJ6Ly99zhUM9zw1hBnKf)MAnLuFQV*m*KYa21xL+u)o`;NDrJe^V?BaBuo8xdUHn}x|_WN{l=sspb zs^)wPULs-#kH)S;HM)IeG;l$Q@I9Xk;7*4t-i(c_iCamdUshkBALJ}h)lp!^DBaf^ zKFv|?YO43f;!hjvF%r#5U^p;-yLDNBL)|mP@Z!|N`nl4W z$E`iX1J~R>@4NL{0;2l1G!5sOe;a`rhwLqVb56rPL6i?c=EgzJpN@$3cUF=1@LA_Y z3Ip^K1Qa+{sGd$8tuWBgmJ0KmVr31E6^G5g$?)QHzO6$fQ<9g* z&Z&dm>cd_RprwsJm4HaDNlnq(NcDCZZiZ1&Qmx&F|NbiS8G@-T$Dv(e&j`I0z+^)i z!+~uf(b*yO((Hv1etIilM)yxH0IXagPq@3%(_?q_k)SIA) z#f7u}UQR<(HN{z(4z%#Ps?4q~DVAI7qP}19^=~C5Iw~wLT;Hd1X&}n<_xF!YO(l6Q z%LOT)7bnqyu>}YE>pwr(y06r;e}ztA-+W%E!F?~QORdB&hYW}9uTiQU6G!tVqMjYf z5$aFqK{iS(Te@su6?%d4qiL@503fw#V!E~2;Le@?U(R>u+=RlOgjQPW1k@j06i}!* zRGB~E(v1qOn;6@$NO21=IOEI25HmHoMktJ*wm8LkuhK#+PL`K|#QqK@GGWGMg06>n zu%7SV|JW6hwB=I!*1Mrjc{bG;`sBlXC&(L1SItO^XcWvxtB?a#G`aoTA-_-&B=Lk~c^? zSNv83?OGp*P@W(2q%w=a^ZozGp4sO(lD9&8S6d=pY28?QovqMXJXdX?_vN1U<{ZyDzJ)2l z5NeC(|Gau^NImr3>%+3Af3?#>xP!%zf$IuTOg5m;VV@v1j3|O_^+s-Z9O9Z;aFEoC zb?Z6I{m9wKI)qx)b-yq0b@gUEQzG{AJfdSLnBcT`65o!F-Adbx$9LHSp_lzuQeE+N z^ff)<@`zlRTk6Yn2W8wzzEWKxnn&FSeMh8iX@Rf2HApHGzgEdG;WVu!v1~t(wk+-j z?*=)ue4Bvv$C8uiBVX(%;`ExtY6bR_{Nm%eYyLdAp{lH<%WfO}2(j2MA&t!N!xv6l zkegYj$P7D!CQ`>NPr~VW@i54pM_ikLk++Y!rg`$@( z0s$g=qE2_{Dk{Ifubn4xd+W~y04kxpH2MZB*-=kDN@iw30&6zlYFoWMOZtA~e6qmp zg%sik{qUghZ}`uIW*CC1rMyxgxw=OLG7*E1Qscd$qLNK3%3Ns&8i#J5fLOqCq41tK z>-JkKSv`y5qScOEfNm2(bWjkg>38$?`FZ6qi0_)5R^ca=OWlJ`K54MX-qG}OrJrl>fm|)>bqx!>Mi(q=X=Fs-wYn|^>TiI8 z1J7%TFrItQhK{tDuHl4&QKT3RE863+^ei6%5)qM@?r$kS-io%aU&jjpBXmrRK#5Y; z;a_Cd7O~F;8_dw&esX|Vn401~>sOH;EmVgD=kY^wAr9x0{A=AZ<}z_j)hEmZ{l2mz zFF|LyQXpFFqx~r-yyZ#SSp61nJx>iBoCIhSm@d{`+L+4+T{?!8S`#<#t(`bN^Sn`b( ztL1dcMG)!<8^j0fgdhayoq)g!kBbkMwrc&en`_N33%2hw`J|h0V-de6{vYPvGOn#{ zdHilE?h@Q-3n5t1LU9Qc4^E*t#kIIY@!-Y11b3IB#VJLKyF+nz|EK5P`~1$i=iK+t zyPZ#VR%WlvS~F|rI};(XlXuy~2$oZ}eqWQ(y4V8e-%ChH8cjz(HJdD{#9e*4a$Hzw zzWM>~o!7p-7x}d3`_xNDm8IqdtN`8_Lg@NT`|e>5hmJcWXW^nX?6CC_N%kS5mkQP` zyqtbt-=FIB65Z+TA!lfj^xTeNxQhu69B%dPqlgNv#6+4rS z`IGlg*w)<5M>R((Fggq25MxT%D~d-$e2TdeKb6bXVkZqmr86}J)&$B^e|VBnZhJK( z+eOTNUlc%pVJ9YUL`l&^06GV}tc*DsmY_FTUWIQWN9gV0QSZCw8t(!V;B-~np{s99 zIwhn&$WKHO;TLx%s@&oBr`%w#k&;NhH{*jwVAxibe`^xwH^N1~O7N_*Cg5e3({SLX z*!0Ahvbc#eHW8&e`euszsF-Y(Rk^j=t8lH6Y9-!$U?}s8KE_c1Ay``V3q|O)gXfLF z38C0}jg{mGIoxDMZDvQUj@b9AnelLa~n!;$l^z@P>JdR%qnpw>qaY8ew z4zNV8wF?B@c5vWTX&wG@A$hXus4G&RP2&&&Mav3?`+m=)x&;HlO8AC-DidR!SQ!~^ zY$$K_-_?6_(koIiASS`%xi1QA=IXRv^FNyw`iMk3mcS%Nx^i9w1cOm+`J`J_s!Y#k zBRVjKE{|23F|j2xg#;l;SMV1Nb(+V(zw4c=yk03+csAor98&6a`PsT*2L!fz6Av^eA= z*+<|sI4eJTN=<l>B}j>m=FN z+M542Xkd)*s=ac`#kbKi?{!X!t&4%bG5{(9UAY-LaJjHE(P(|= zsHsTD&tejw2M5e;+QuX4M2qA zVAol0A|6o&>ahF7%KI_g*O?Mf&+K(}CZ;J%CBudQtc@_1VWODmpctPt(MuEOq_JJ6 zqL;_-HRZ0Fhr@V1t9QuMy=Qe(`0FZ6_k3JjiJ5*cb>a)aOM}y!eJQ#_(|jH(I@7KA zRGj0x5AY^TJA_Be^g?muaiDRPA;<{@Rz!%XyL+B%rQUEicBHd9tkKKFgb4EtgUD(W zqTw&~%ydhAqRbIiz$_Z~F~qx(u|k#h^m@3h`RE!}M$B5%1v7K=E{?Oe0)t1Wc1^O1 z%vm`;>n%SFO@y3ULs@;WKQ%h*9_PYloAALN^);e`mg2_E{XH?-Sq+!GWYs8*&{Zk& zArx93_Gg?PZ^GV_|A@M!WjrU$yDSOBGDT2YY9*U(OrfP?r);zJ@?~F0|59G6TLP3> zIgOkQBAIHZN}lRNYYMHQ`Ea+RW(-9~ds3p;ok-KILoaV1%UYL#LgTCbNOD}!^fNt-)Woeh+LYv+e#j6|;NwP;z{Pvxz)T&0K^}LgV0(AL0z> zxMJnc1aTz9FQGEc_>9EGFUB)&Vj-aKN;0eQQBjBF@dr%Lh`(?0z%9IK+C{kX%Yk%3 z`49*Er%k5AtaLtkFIbR5Q^SbZh`~wgfx{{msM7G7AmVaV_Lv8LdLH!wDLw(q$r^l9 zsCWJE z3P5{llJwi}Q)0OEhgWUH4@0!4P=rnIe{mC#7f-7>>vWjZJWT^}27SwD5)gGVR@_XWxo@KG2&TVq<-dD6~1ha9{+p2h8OM&n-W zCuq}2c#hqaY|QSRejn~_tKno ztDc3D3}1=SbZc97aTU|aY9sQ8E{;UmJgc=}z$K7-N3l)qCF3tpYW`LVUm5Q;P*>~2 z0}j5#Yh;=?9F$&j+OW1J_B>XfPjNXV_|&%WjvGOFpaglRpqR2Zt#kL7I9>!@6g~>h zlFxUGD1`J3R}Ytw;lD=9Gvc=_V^u{FS~@rFwLT7JTSROjqw@&^vMV-{GLt%IW+VjU#&4!n&JIrD$C21eOKENM&R;K2qj_VK<6nAr#cq-k zdcCVPF?!1B?tDlWAbEm2*I*uuTi>@sM0x zNa~lPSkcj7y5saFoB*@+E&bq-5MZE$(yTVVVPVxJapoXiMuRa5TA4i&g18R{ryq!$d15AvK5xS|_F1Gq7k1?QC zvOT_g8IuH6Dl9DSob1tBAF-P45-)>i+n7$|=tp8D+NBA4LWWgWPGcX#f1187*Pqm+ z^*&tifF#Yg`5Yp+fwz}VHeGUuG1bzk`97ioTLRZbOA9zZKQ?{p`Ruv4)dT}7#SQh{ z2@_|l{V-9+nZAPob9KL9SwnT(W7NAJ!}%+-7VQ_;>M#S|E^Ai6R5soh)@FXOTrGXXW3v@2*~1e*V(q& zl`2fwv>uP|HN1?QF?gdUaFe}JiZXnEIpC;)Ye2_MP1Pe)xQx-}RtkgG%C&x$WWJv& zN{@c|)@f>_^ebiS*3uKpVF4Bz=;-QOfm_F!58?aoQ2e!KpVPi1Sh8tk9DNcEN%?#% z1E8tmnCK>cM)vJX5%OfF8?=S^E)XI^IJ}XI0zoxo=VJxgmPhGI#1F0bl;3M5EH^AmU^eaVm;HT7N! zVutWb-ij4!U@deQMVX(WKThFD+U5$pHyVR+6FFL&Ua1^wG~FH@V)0?1+a@z zYFONWm04kNNM}kLp^NgPGt%6=fnoB}WFcF}3ykuwCAZO!5AefJ ze~n+S;UBpAQ+ko#Yh}C9_AP?YJ2%3t_TyLVW1S5LWtvsDkJC*!M+MLptmVVJ%K(TN zFze;p!xk4r30%adxgfizN{HqNpL`MMXh1aJMjCJ&UCX7(lWj^dwCHFto*ConjoV*V z{dxN~Jmghqhi)0S^Byw}zXtAp;U*+L4tx!Tys@XACyE0?x%P=9Qc4t%xxQe2Of zKk)WaS7xfg?Tx{#?~R#O&c#r3iJ+$NvMweWR-^meD*wP`lE+&ixJ%;Zy zf{OHd%ie@>J_>z)$aq(+rBp~+tCea11PQ%1j*Y)mGXCW<>5t1tU-Bl5{I%X&uX>jX z@MePTO0^5<+n}_@O41D};VF;z1RtWVJDpCpaQ?PiE;iV~eUG%o>!Bl_zrp>~@67O} z68p^yUO@h{a?vz4?BmP!{tek|!;Y}TAsxU(u3~Omlk{+1F(=tnX*j}S#^_S5gvaXx z#FuJG&|&h)vJf#O$KnPmK`+0tM_nnaG-dbaUi%gs9Gp((L$yH=RY!}Sq26h?v#;ZA z1Fau~p8Iw|YAS*clE;M==0iIgKGf$BGevB#2fxXk&yhJp4U|EDOMdNPOag^|bG94n zuyd*EZneZqYP_*Y_(j7+%n1;zdd}o6SzbE{88_=)`bjXV&BK=97X~d$<5kEI@NcVo z@OQS>?wIL*=U%BW0gBJrsGcExzuu*}6yO2S(-vLQmSvX!HSilQ+QCEBzE5;)_s-qFv{!Njv?h;WW7M9{R`yTXt#hcOtHzuW1T`$o{F z*qIV@1o5HLk)4CI$}$bYNM8X-VgFb+pS68-<*>Xx&pCx98W`*Yeg%re*(L1y7Wf+P z`S9ImHn`T(|`<31OkW`$F5U89tW9--cma<)458zEBvdNCu4dnt_srn@wW`dA0 z2YHFrsF3WSt~W(&?yj5tFT|=wDa7l$(l|-W9s0EzR%$)t$(m<8#RwPF7)Vo; z)6y)!DDj8T|B~NNfc6`N%SCaGoEi$<{t;=RB&!+%fxVcX#G0qojY61 z*X4PE7vbWG+6> z9W}$tAC<99CV14&9$di5s6AVhLw14aDi8EFO z;0Fh!FabYCx^MH>iPeXGM_Q6P#8o4ggNF#Xfrf4+1j zK;$3@hk}&s-)5OP%2|zuC7fLXya;~sO8#Dwf4=oUxpW)v6uYA7x*DAr_C>cKkVO#j@FZMgw7s0`UsS4gvLx!0<%_Gl2df}v z+smjyWt8rvWhg%hxl$m5OVF{g>+C+(R6~EVzF;OpYSD4Ho59C{Sf!!M$+UU|=y@dAR{ltrj0gL!k& zL;Vt*qEcF_)t{0lW0IAs_gBror&w7zK;+k6_z}Y45YSbCTliBXYcvR^rtu#Z!1xzO zSo*G&=`%%Ba)4u{?1+gZZQ&X0B_5PMBVFmGS)2g&uwMVlFAE%PZSv{azMOilcb&%q zTx3E>AB6yfL>-EyBVwhKa1n4a?`-T`9JoTI5wqB#u8d~R_I1H6>7{A`L-bA=4F52X z`k#GK+1Jz>F-6u} zw@u_=tP9#Wn}n+me@`(NDpr^%(xX_9D=kO@e8l_^-#5{{xOFYy_jmpCn`gtNB*6L5 zj80{vAju>N);wQ#%W=#A=JjKsh%4=;fMY&{f{X*jLg|Du=+(j(y$c6MM7UaD@_6CM z>n^XLsW4@(mg+-c^w?1YB}vPO;MyQqhl~|B&F2f{ZY;Lks7NK5_JYLVSZ@4k#eYzL z<5-cdVogTRk523qtIgpdF$n`64XJf>+^LP0BPQ@IG;WM8A~b%0O}9VSn)B3yR5zI= zVE{#{kolvY?CaHCn?w^vuN{xRxMK_WVvtnJe0>n~#kan?#%hra#}XUd&2jVd6;gjZ zqggbofb!GV8YsNesp_n@5vSjT{^2K!c6*8^7CMo=s2h~{S=bYwl_hytcIK)0$bc|g z`5HQ2YZ&fg`CB3X`XAdMCGm7lRhAS@ofH7nWc+7~6k9I3q~(k_my>WQAAnG_`ieMn zwENVQSJ99y=BM4l4_JwD>g3e%ZP?|1*8ZOsfe1+1|BQ57EKdtsLM@sL5G_n;EDa`fL%drHHjz`C<$ zel+4r1PZoo5BIrxH{;NK@DF>BzNp_aE+0Dat2B)H24X{Qwv@W@pYREn89mv5-$wrF zV=h*?=fj~}$%d^}J5jMQH^A$L4u42tvdOQ!HW&t-b_FnYLB>A~bEU%mW}ns>;a0`X z;>~H7J_!^7Zue_Vle5ew?_9b6wyV*U!|lu9E@#?pPcI}c%Pb*ND+u3tRZ}PSyg_1Cg!S%dE(aeMZy4QoJj+h(vom^wDSjq zOV+bF>2FIZdK0ON6JX8n&VMm*kks+2MehfiajTaQ!?=7C16&p=s3ha+@p&UggY%kO zkfKE3N1>$I;y3f@`|=(Z%IV#Zab_OfKRcEG@-JPD5SdA#i)fJ@aZ8WjzEfcA9r{g! zk=^Zy+57h1oKqGzd~qdN3#~d9xU1jGCJ;_4o|??v01{F_E{|ngo6r(BU7x5Q4ih>v4Ly9LbH8y?3K_xSKA3_QB|EnDm5pzZ+ad+J<_CfR4N)EV7Rx0yU!b|`qlZLe>T)9e^j z#73sy@>wm+>)YPWHYKhGkp)t)+xe$DoUn!Ig{kN5B@WPT@bS%Ao*q8D5mSm#_rHG> z>KO5%rrXP<(25`m^b&+ew$ZpswE#REddLL-%I@9TH|XyzjNAP$HzOEe=5b* zy(vs3eG1Qa5qH<xdj9@_Lb4ad&>tY*SLH?C~H3< z*A!{?t$iH6I^SgFzv6JGibLmHRdu#=cKVbq-;vG@k_bjxTfz8NAHa5!>mKw%8)fyFZfDF!e8LEuw&-$pPRtHE-sd((D*;1(Jmvrg$N>T{j&osmac>e<0uK<8L^d z#!>?j4ILdOX*rQZmM8l%%Gzc_qGmLOo885p%j{*&;l)0v=9|Ggf;uoSZB9)XItRlP z^(5DNolKW^R(&JopFxT$@&TU~-S6;GhLN(=k@RXxR(c`hKLdnuB7zj3PRR)pc(4g| zr!76oUy@Z02VEINFS3`}T62}F@~T|+mqE@B+g$Xo`)iY4yU_Q?u_oJO+AK8s$LM(n z8i*sqbeblUcU<~o#VgK(19^{_t(EN8T2+3QR#A8m54VfT^UIMbqp)4Db#?eK8QdlH z93_1J;_6La4`?mW8fC%o>Jv-^mDzMn@uM?DENKo;#6%tGRSh*v9F@N~N z==qqJxA4R%jW^4~wUVdsCGJTr1vJYVU1k%!I3IY;G_?FOZTSGbOQNTvQ1clk`8YC| z06imczk%>uesvSA2t8-%vl-XP)C()q=Py(9{cO@XzEcl-v9=!zM0G9Zgr!q0QWWmI&|H4d(V9{!N4N{IwCdMU!2Jc z_*n(&_n7&0wml;b`FQ&i`0}$(V!JYn(q5=IZ$flZo!7oS_ZT-nVRd&b!cf$vIXf}A zt8`-E(X$iZbbcsUy5Jm_KQFUZnIhsXG!%1fL~||zpENck zx9(Pg3*zh|vO@cZAdZLE!K0tA&HYnooLa_+9WH4>bdozM5v5obQ_OyThpOz?$)m#T zQsPS0?rGn{2GGD*fwe(mBc9hf$Gr_i$vXzl0WgQn`%hO_uHlrYfzn>dJYGalB9>22 z?>$l-y=P;?gJG8n*6nWcUXHd~sW6ULt7m%CPCG;gjOZ|nZDq5cSx9$+U6iV**a88R z`8F#r(Z5(M@R;ey5(hnP=RNAh0$6Gx<3#TD=Jv^u2oxwleQHO#7J6IT4!(5Fl|qJ? zu7ih53AF9TzVf}9#1#&RSXcwhlRJu13NM6ADAiXQNg?iB76giMkai^qp)Pn7N% z5qf-ZsJmjm-HNoL7fe+lktIx8^Ogv^z=Tmc`&ag1mzCF<7_NRDX7hP0WXM};*Ys!m zZ7Epio=wAF*HKUEYvxJoG9-oN$M5lIVqvP4DB9(q& zznT=O=~tF~T%`#{HEJ31z6i^0)4LEY>j7e2w3|rhc(%872yk+rFkkk ztvgvQkou(@PWbQMcOtU{XuA*BRS30g;!e<1Ypf~L&%qtBiK22tgSMCk%>x3=JuN&N1JerqejBcgCNe<~AKk@};ThFO zyu)y+$VtLgJF`K#G)L;->rD0FlNqGU&bRvW(UPvkRyqJqh-|_efZ7inL(kha z*V|1kSN8)}0IRpzXcfU?|FV}_|(IX9n#$!V~&Ff z@=sI~C(m!bvogQCq3|MRmPq}~Va`l_!5`A|93{&ONl$>UjfC^@xc5_hX2+6J&=;NO zN5=_o$3fGGrHjQh5%~qFN2I~G@nH3fXR@ z_yyXFQ|qSPX#}LuyzI%9;&e#&?uDo3v6?L4d*bnrkc^<-FOM!LIS%`jdlhSQ&dDjk zd#K>0!%6aNDWAwjCyV6qM5A6s!;Su>NYb=qS0XoUxS7{;9*LYc-nlGb#1d8Cu`KSbEK-^O}F4YZXkxoC2fN% zTlgX26aHKVrXWFrNf`S*!8#Jo(vF$(An}Ks*8Fkl5Wi5^>+Xr=SbW4}aoZwpv zQ-=h#a^z$*AwAB*j9ZoA{SS%z^Zllsfh6+Ck>b7eUFk;l?)#or-s@43XbvtXeO_H% zNS$rf(=xRCW3g8P;kQ*3k&iW~i6<_-(?X$sz%LVb!GT6N*{gjkX1`J|f=}+fgbila zeqGi1Y{&(}?Ca}|Mn^pgW>$2#FhjZv_qFX8zQ#KG%r8cMFZOF!Srlc|UhuL#yhCI9 zlxnoo8-Hx}C`M9+>f_2cSe?G~Afzs*6M-Uheryx=q(Sn1ZvsoAQtL3#vCs^~Osv9f zNK9g!JW!FWNtCpPc+3Y4T+b+|G}A}@*5u*W#)rSUW30G+W$;jmhX}l=di+uQC`p+S zG^Abk$n(HwPkkE1Bl7)IV_TRoYRp<#Aj7fl7{}Ha^IGoDZFzBZaixNIRJS`!?C!gq z9Yy>1bE7ELVr}1wL??2;*bNM3Tp3B|Y;%@!U=C-`LwMW#&mJRKGN%q5b|732GwR`2 zu4rkgEm1^RceoDb1m5?8@WsR`epu9)_&!&_(IYy8u?d}E5l@>FWN+-PvBy&PWXbuw zv-+9QF<4)!gmeK|s4sap+ZRSz>8|>G8q|pkz>EXNXd;mZ#QO^cj+xH=%*M~D^sXud zsk3aO=F2ka(LR_Di?rNtjhoWCS)xv^Id?%MQ=s!tl;l@`ydU_vLK* zS1K!KR|~={Gxzx9cRDE#GhE2%n2 zuP%xw`-t5!IZYP6%@Lr$6gt|znF0K+-1?6LeyY0Q7-elu7DOg-!;QWg%qGh5)*a!V2q+lLT_Pc7!c z=@NwIJ~K6n(MgX;o1T#JBkQyV0^cl^Mw)Lze0Oq`lKD2G_U6x97fa`|C$4AndPymq(yraEnD39>|m0f;4X26Z6{jIgF$9ZejzG2_`ov5&}Y0$X7<^l^{WbP{_%oeIMlBNpFG2P z3-`jaz2~FYgo?rpkw!71V)+SgK*(bW6rFc$b165#eBNP@7~CzhSq1+JfT_IJ?Fe-c z-Ck^m0B0K_sp*}6%f54R z-xCW)oei^{WhIxEG6c?os)A7r4n}}{iMRZtJs@lLO@kA8Dg<1}&*Y@ZVx@C52@i48Cjw`-^V z%VF{iL{$~4@ZJ+mNG;{dyM-sJplu9>77INk(ne5Ct?CLh!jdg)>tj%7pvlijg;^ z!YX+k?M4?fi=r*3T|9{uDERzUHrLJg?fH6Y##$uiMzabE2JV`FxOp}^fGisGb1Ee8f?+Oc45wSeR0lcmM)?b68DZ z01}SYYX|@bupH_YkC?+d~Y@>j+oTuDbykZuaimCUqsVZ zW!aC<6W+)XBFP=R-k5FYNX_7KBJpE(`~1-X9UN zg`-!B0NpXddTpeVY3cgp9}M#KX0}SPy6f~3mX{saR7+GzTEYFWoL?O3>GEZE@+yo) zXzcD0t-;3-Rr-CUo8>l8r+1%D_=4c|5hN1=C-Gk((SMV+#j3yg4cA{fo}~j zy8?30?OoJidTsnyAE&q&YX)S1Al5aP=w9i8V z6|=ot?N;~^geg9N;+YcET zGo3|ZN|oWd6z|;TJT0C$fWTmK&ieN~St>ZAt~MDrJd2O+E-8Ap6BPhSm$JBbKE_hO zMynYRyuA6zk{AC>&Of9kGTtYjPYwrc zWNXtqJ{Y;RK#yq2nxKfjD-rl*n(gECxC=yJo2n5i*?UQ!E!$l)5pg_>V>r79Ih&kQ z8Mn(dNT~r%h9qkCcz{Bp2j=F zm8`aPd`?Bx_WM`VyezzOYuN^|=e>)$4t6}5HqxFZAn@33YR!53nHR9QUby%nE)Sd7 z>DE&SoX>_V?U4da#7fuYNAXylGkX8nKdO#&dCAuPS$5;7n}+R<&x06xK@sNiBlY^i zt))_GX(7~>Sg`X}?@|g2$KICj;o2OVj_fRG@SqKHl)dgdmj*ez4&6xdD5Gel8lfrt ztS*4F+cC!w2uo?0)8sM25YV3N^rzHNa_Ne8yj12sea*!7*R<`&ED`5G*o+#Z1>SsZTI^(MaDN2lZ7E=yEXbE(Q^!v&2u#Zi6J4V?>O3$2 z8s%ev`3D`kt6ttOo92Av7|ehvt8KZDr&mAm+FcJ;Ck?>T!|4p=P+_+GSnkP33Y`-)b<5t>sjLZmZzU6v7Fg+B-}WoTNxYf;w5zqO9j|U$McJ zyY-zjMTEswme)ef9BaWiS%}4Gbm9ofQa#oCbUE#lOm_iwLa5fx>j-cDUqP@Dd(heK z$}3$kFx>e^=MU0i$=Cj2;*wF0J@Rm!B*P;OWz`Yx2tTAJ_nP_a`hB!!ySmbC&BE1{ zWU-ibP03ggpySy@M2}VW4BmmlkaB^%TTh)jpxt(Nv4QfV{d4bW<6!u)LEPM9EMa)} z#slX^+hRZ}2U3x98n7knJ%#yUR!4fvkIExggYcwzJny>3jSH03xs|X7r)7W_wNJTL zaIEOltMPRR0GD=pK(Op;{l`JU7Og+s70s_9;h+%DMnUjG_hMc(b@pjjM!_nrzvMA$ zs<%$$X@8fX)Q8aw7{Q}s=jPg6`><|;YKz%cN}NOP9LDLpuRDO%p#tq7kwk3oo=zgKoEyPiknu5 zS*;RV#*~%PNVIsnua1JHoN5i}qIvxWDUR*?zPt9o5^HQn<$N3vmWI1%3oKn;zk8}%f1@DIz5B{7@tba)^{#n z)K{!@KPgm(2PuOH33~K5u!!UA;?@k(sCx#IBO*7Pu0u4n9xliIuDsh21oIxOE8IDp zfS@uTH*2JxDBa*6cv?@e3+Aq6<*r~~V{*4wk)-`A+DXdeJr`XlX*BzH7HIJ1K7%r=V5={y zv-g$DB3shkIq!H;^2zHMZ>ife%5alGG6RvvMU!(q7o|zDk*=5B8oGQirw;7_wUxw5 z=NX>&s3RRil1R1IqBYlBMm20~&ZOKe%Bp7ys;ewQ>X?~BTNwbyP`#4O12c{^T zU?-`GJ2YDZ4{xHjyGDY`>?h>>dd+hS)V)(Ja>o~Lo$;_$)=JbnOTNhr*QexC{APPU z*0P;JCBl2D6^MeY*A5!|1*_;V9S63(wxp}C1*_vMiA&UgC{TK97emB;xL&LU&vV;@ zjypnA+#-a%c~Jh2KPHZ1NzZEOCGO!4qLV7~2~th(PsJUYHtShp7E%lZaDn@B)IP80 zBcT23gm4=GC&kP!N!VI|QdzC;|FQw#AkAc?hg!zRK!UrNx4sp&BeX5LJzrw+Mo* zWWHppNcw2D**;26z@VK4evGzvZj65k=S5>6!P8^jXPpLe*A?`4Uh+)gjSsx|OV$m( z+}SBD&U|ZG1?D=Vpp6jqH{V$N6H(0pAG-=TALeVCj6K!U-m_XiHO;J$Te9;I)#P5s zaP_=kSR9)e%HcD7z5(HH%5`N_U6o$d1qGi8|2S&3cnMpV;r*ICD@D^Jt~4^0#7o$v zeDmD&@Hq!F8S8<<5u4f*7K?b1+|Ni=Z&=`}h_JF`>Th?Uj`}GBOe?^QeBG=AfmNXF zw5s7APO{pFVUT8ihI>d2Yw$mAIbH~-{`tjQ2VS*EJyE0{l&H}!sQ8TSeMeGd>??mY+l=5f zlH|=4$*n-k#o*T-ePM1;mjuJ%gt?U*sdrf$K<|yTk2XTJwtOSRXWp)k#MIM8 z)lS;B7-{Ulbc>IGZEtibYO;n1D>FADEb#q@#N5qU{Cj=!zj%2f2e=i+K=;${Omeyo zR4Z)R@?@T()GnB2+Sn|hU0tEGH#o9^u=48RUrVx~8f@{dZs(?+we(Mf*|t*-$ae;9 zm#Q>cBjJdZpu!xP_{bg+&*<+Q&+4R-l9J|QugUwb?v$^~mO2u%g~U^NSd`Cp+8)ac z?*bT;xE(+swSnbK+KJyG~-j%|oXTJ)`xVE0(c%t-FOp=xB~neA$t!@ysk z^Wt|JaqwYL>j2wU9q3M8ET!0K-xPFZHLkDP?@pVuK~I;S0LNe>wDlx9X1+J)uFbsR zM~g^p%HP`EN^OvW=L_>9f44p(;Xkk(NacL?@Q^FtGEg+!)M`mPnO+Yb#9kQr8gy;j zRJ|jrWv~foXE>gN`Zo~LUpQ9!OI1E`+?gb-4KvYuY2*CL4EC(jc#*dGq%ZY@LnOZ6TUj!5~oI^Z0uHb=_0+`_HJ2@>`APD&*ynWNajW?CIb{)-+HN(F{08i01 zC4I9BK2Xd+H{b)npZa9XSRRfIpmZYt14dTS@I+iGEVinh8T}Oi&H!{v^|>buo4V0h z{VAjMpG!Y0JUFVrQewr00fz$M*ucv1h)%!E2s1&|Um_-d*g265BKXbu`L8vwBeQ_M z48zY?RtJb#l5Y`vfvZa6y<^K8!(tmpEL$cAEUy0qbA8o>!=0=d%>uJdK`?mzk2@M0 z4nvBB^2#fQV5}{&6Ns8KPXfjr+4e|4X|0Yf!1_B+i>w_|O z<{c@qtT~s~yf;b8X4NxW#l+@Ufo?XK#~|(lVRR{x?+D1f&ev|tHR^BNV+_?V>^Y|S zlR0#)D<1zv&Tv{;TbF!HnxudhO^^iyF+$4ZME#vtV$d7DzJdSM&Lk*ehVj3C$lt11 zB_%>yE(xcp;N;A+j$p-(m38C9{HkX`u$fc254CD;jug6*UEhAQGx7`Gg#lu@-*@(_ zHr!45$r0CG`rt8@Mt?}sx@E}xB>354 zc5(eT$WOmbEnp+*V45aNGJ(7M$`;)G5EfZ0>Z@BVlq|8pYickVE@Z+x3{o#%2^!FY zTHi=Jb{XqrlTY!8-x1Fp%2Du4G(kDmePm;iwlz4 zJc#NZZPBC|ZNlJ>?6ur`5qLc6mY5=@D=d*C)C=5=^V)-7`+(hI&xJ}j|4&Kne_gI~ zJgp2aK+Tjurum3S%z(nnn^c#s`)>-(SCu(;c>g!vl;-2wU7a&&mJ>gOr&Kvwt=2au zuf=WCpQUPf{EBYTB4H#8>7;hHdG%Z5x z8Y}TMg(LKxpwt~irK|9ZYSGH7aq#DEOtxgjLvNU&sz3l8O+=W6X{~JYKLNl@1i0P5 z0l-lUB~u2EY(iLJ6PsA^kp{XsqgRPCQjFBm7ZG(NiG+<`tEf0G46z^yl_f>y+$e|{ zZt-aI1sq|%8v8zktUJUbnK-a}$*+=Srtaq^_!qPMX9UPE?e`iU$I9uggiyoqXHlLeXpjQp6b&k3JJ7Q*>>N~P=Dy66=Hg=;{UHZ)GUrg3V z$>qL6Su^D*;Ux#jOqc)0zWvgEQ|Pfb&9C7~;YacNh5uFa->9_p0ysZLv9US$o2y+< zgTF|t-c0{*$d<+wj&T1f5k6Fa&kRlPZ?2w1&{pohr-_dlj;#eV_}2fP)@T*DX>pLr zxcs|hf7Zo5TDV!{LmZy_GkNjbPKiYR#^sI~^-+E+umg4s$Gn7?=BF$+V%pTBs&SI+^l^7S`6)-lKr=_ z*?RI;w|dy8)${=-HAn2u7Lh(>?ru+>`Cv*!t?0q5X_>GpxC|P+xiPyzH=PT}6%DpU z7Y?4vqq`!`(yag7i35zdhEbu<6hMf#H zwHw$@0kX_oe~Rucco5&Ba`4_?9zvnD0wF(@n352d5m;9|#4ekXKsmNs9kAL@pkCVV>=rO*UhpCGMk zR{c|I7o|e5`Mi)9LTf~DwvD|A;m4=^7nHrHN$agI7g<`opM6Yw^mwT{anrs(WRm8p zAB9XQECJTg5w_{Q%2w-j25x6~XJ+awLhnsKEw4{uTYI`>C+Y&z7N^qz=Dl<`rD{Ur z%iac5fu5}qKQH!oj^ylQsA9?cxwnJzJ}i8G6U&>Y@ox&@MD)gC1wZ1p{{OM}mO*hY zP5fwZcXvpT#UZ#8U?Bv8yGw9)x8NHjf#4RF5Zv7z0zrejySu|(&PmQW@B9AGms_`P z-4C~FYinz3o}PKSdwP0)-P6;d0H7rEi$s>UC2uP(7|L{H3c5i{23z`iZIg#*&JzR= z8lOhK#$}p@wVMRc!g(IcL&E*4cFqN8dqU)4h_^4dhQF|YXf-TU4S8Me04yQhUu)%< zTLKm@1tqeReQTZ8p}h;vC4^Fxm9!5hBHGf$d8in5P||i2+6#hwJ+5oIZpX19wSKos z@-lNJA7H)Y$-A1=wQzsh5%@FQAy=nfVPuva=-ZOx>w}bfMTrzFH7YR){Hel9QmB8EGE3m)>N@$Pxnp{Q%E(;odWaDVRD)%B8 zQ%i5Z&^|`Y9ln%7m6*uW?W5^jH4399y%$H72Pa8 z|8%%9!sB1PMhT2kr@#lPG(@pRw%kN)cB25@~tPb!`jDu$e%rd!bnbFsSBt?2bdC==Su2UZ}v$8gQBMh*IvNc8FcW zP4=Dw44F- z1K-uEZYlO+4MqC|3Uj<4VKrolXYz?^M!^T0G*>z;`??|Vqt1mrpj@tI<=@;fq)xvi zQ?|VZ`xVTTdetI)V8LrIM1oQ1P^1k8w*+6c^XQvY0*Hdiq~yewMV_J5$0acA@Y|wD zsR?Mn} zw4ls!-LFG8g*OByR@D+epyf-ghu~Cf1(1wMI*kT~M3%I=)-1IQFFw@sa9)cOZNoLsD0ldN54-)VwicE z*}nQ!j~Bq#QeVmL=gag8o*v31aY9xUmcWzjADO8;O!#p53iYLAmg)t8S5{I-n_1wW zr#iZ>%E`A4!jU5t-w*~V<^o#pgv!3TMdFTUW{(De1CAJ0gNUJA3<#VtTXfyJAtKH4 zctzA%e%lPmn<&;qX~grxVw4wrHA^1L_N7tCb}uOy=~ZN@rGa=5c~W2|0mDkovdywp zii3vFW1F~aDkoY+O9l&?{aWsE;_*E0X9msouOj7ypybZZ*#GufDKU`W@!>``RS;5~ zd4*VbwMgO-5LNC7XmGzH)N3rz7A{fzj+N&sDr~VhY^LWk?{7oZBp`E6M zWbYa5K5;x)jq5u*T58xkDk4C2Xi7LhU*N@fEQx$ zd=E)8cm!6|tf$eu0x%T!im&Q3ysRbfLpVcFsuEUi4}6F7<&7nO&;z*5cy7jES2Aqc zhi%=CrXL(~_i`yrb-Gw7BHqs*4P5EJ&|TlCdh5fsp`t#2#Yq&ci!6Iy1FgV_b*+Rx zDYg(3Yj1rnVlZ%Qc+^z>EN!FCXgbFCs3KPS0a=@;mOt#)4{fMqBGXM(YW}|Ftj$fn zxpiiFd~`54m*4viRj)bNFe6`yhnp7l4T+sQZ@3!E>TJnm>t&!Op@Jd-Xz;@h2#sPg zIMJbu;@x3(^zn6~VeYYn${0PnT?~t8B*t{$E0KB846KaIyENdIS0{mtq>ChyHj%{A z{eYX_7l|6pEoF_M1iE40R%#3Vw+@|eWa49I>pjfzC3SK^>-v?!C9)we{35zC$i=_f zvt>Q(%y5x{cJieUjg}Gv%qfM8ktHnlmY2V_Rwt83&$HR zD;ZX}yNhB;MXjrb@k2;>wHUuJb#zJ^n3>zGzhgNu_G2?6O*7252PD&0E`O)#&2^7S zd}qhBz#Q}Pb=Ips1?Ofk&Sg20YC ze3j^ad%U1f*7l<mq?lB-Ny1bAZT|_Uoy4FDxAsm?^t&l;e^4(i`gqB z#@Ds%8m^Lo{#xTB<>G#gi$5vkkR2ZDYIXZ?(p~Gn0Lkz}!j$;+Lm9sv9_Ayr_*V%; z87)>I2K7i#$-#L~8M`V0>PNK+*tVmBhATIj&SGd-Iq+|pcMyE_dU_1y=A@LWz8<)L zQc>h9+KJ;_&h{0hnen7loluQyrzx}6X}Nis^^lAW0{L3&HxY^~L-8#B;qQP6lUF}LPTK#pV$#26{+NO zr-KyEkeX9}lHlPm2zFImZ?ETH6%nvmEC8L!gc&R_X2*scI{g@jokmr0^DfwZceNJ2 zir7j3_^5Obgp8!2fW zgA3b~k?l(K9baC>H!W3CQ3*kxQ-ZH(Ify<1&S5rALL${G&SA(SJ(p3-Lm321?>>Ff z;LC*DQ*JV+x6!yp-IY2MSJ`yg($sxaT|l?L96RT@_e~*yuwc|q(XiLlnWX@w@C;`C z`#e#!5F|d;znF#{!9FSitSE0*(3L61ee0d~S@Ib5vY5PMhazERd=`bh#0+3sd50E9 zFaYFeVh~Fzf`M$oeiq@rJ#?6~WHIg@8yM!kK@22`6NAdxg`ECVpZ$>W*5{ z&kxroGzvHx79lf_G_o7=ihF+P^mtEDyJe(RM$k*h4ZH~72*w~X>oLvdwpr!7YakzGR z7y(GgLgQtN+r0YJz7VF3c*2TKZ+PMqU|k4pU^>O<%Og_?G3cUP_k&!@i(}2`baU00 zB9(5kMYv4?0mdP3;<{FN8*E;hO1ZRmr?;-rYago}(qFNOUM8*d5j)?_B7LB3jDDuc z6!pN4;&fPml~eRSqq{l!8H~(k*SU^x#^r;;M%aI^X-nsb5VL@X_c6BN;XQV2yrIDh zJ3xkYdl%?Jb zS4+N&p~G+r3cnb`?5%O^f^W-Gf!5v22@SDBe7fXKdD|cq$ktJcl~-U*SC^gIbrSg-wg^wBtFFYI6|hcy}Ai3W(6- zj%T1mo+Rrn#ulKvP;Eku9f~Mw^|8eFT($S86!Wf!gMeuUhnrR|BbD9NA)dHP)6BKhB;Z>qn7>@aI?ln0s4{CeI4>@z4CaOh5la)6e->{i+Sib)VOWKKyk9hiT;!y|SJVJAx zVfCR|lhC1x2_NksA|}dlZ~h8K&3v)vCVf2{)5%Z+g^6?uo16-P-ErGj;`6StBcNVs zg5n1dFEjEWG^li|d=;zlh3-*r?$AiT4E)u@{uPiDUu64yl5oIeZvT8~{kA2-E)zX$|VTPqUjLwp+o!MPrqfo7xHEX9r z6s9kd62X;V!|vLpzxDAD^ILRM;3`(J{VSwOy9eY)LGuhqsg?!L7OP_0>qaRmN;Pe= ztj!4V*_SIW8$(BvW0{FHn|Sqd_ax#4q^~Oqg|2UM!Vs3W7ZH`sWM8E{XB)N~6(6}_ zXB;WGv_;i853P*O<3Hi`y)vSGXeL7O8rmUzY-!i9pAuOH${?Uc2(4=fTai*Tf718p zfCG|}4Hw3VOcXOx27_sgON_gM*fkz9$Qnu4N*QO+7yAjrE#W#Jz>{Bx;?u(8(oGk& zD2x^&Ai;I;Y=^QR%gl7np4Z80Nqe1;$V$N~>+&`j2=(Y_U+0Y%C;S>6SW{Oi8DMo= zdKw4M?b^i#KBRPJS&uQ2?}oT6v-mN~7fCdUwWr+g$F-)Wt_@xf8D1?hCveJq#|doh zyeC6r&0x(i^m~g0%=8G@x9U2%Hs|Hb#VlbC&xBm2y(;~{gng{lI?ntI=LSRUMVXNJ zPnY_kMikD@%Rqsw!ip)G^JkI|^&|-^l>m)1o5sT`1i!XQg|qRZ0mAwR)b!~I>0B0E zJBF61Iu7+EjW#*yxa#MH4+a*Lo@iI_^KbGNUk5_+dG28jj7Ca+l(F~YU)$`D09q0J z^c`LjgV67ekrph@v0D!O-t#gmG<);h4Og(t*-!?Lx3FkNis%8d58{|l$-kXj__x0- z%h`;Klti~a2IKVWs{WXLm1kB!XTg4rzVM^fy=;7)@*?yhffTgvVX=z0&Zg_jg-dbJd+r;*c*M42i(LNV&Ip$jM z^ADe%J9BaBWo1~TE*s8d*$obV85itquS3CHywi@zO)71(;AbXEsc3vhng5FJAxAoM zNo{HWtB@H7Oi^Uy`=5hkQAys^G>51gde%K(Djf!$QA|?_{`bQV15L7yOv%BDbh+RGryLbAI^~5zc83-{=>&CGECU)Wv zAtuNcPWlIMp|M`~Bj*l5q8=P^@ zt<=6E{PVT{AhQ&S!$t_o=OPyTD~doA(d-b7fB*r~*MLx1VGAh8A!%vMZ*K8=KZvg- z{&(m8(C}~(EE(!~EA7lP_ixYqU+&k99MHCTCvU#$P5de1+FTxtu!^CyHv z_WnJ2s+n!Wp8p)fKiDYqG@MGn?7t63 z3o;y4c?^MnAI?*YY~b|2*RL6e#8ZkqJ*W8o(eZ!$Z2bvo!OYxu@vq}7fXr@7NbT&w z|3gKHKQ$))sfC4N^}mm^3X*3~kWTLU?-~FpNuVh6pMy#KG`RD06Y{G8CVe`Pt-Q;VNq>*)WU>A$&CY6;OpH6fur(*K#NzXoey z0cjDBZ}RV@jZ~imzq4()`J3oJ_4p67^#77-(1wC7tKhK|kvjpO6&S`9tSZ%n*#0Ra z%1zjJFI%U3$sq+=Aa&H61w*P*? zLJ2@jk|Xw71NRG@j_#hJRZ1Oem0cgThG#0Is7t(U%-=!^n54zbQK4esM`tfP1}v?^ zOGydD9+1&BdxiYS95=t7AEhpv^TKX9+*qhH9{RO}Oi&vPUdlltv$>dP=pJy87&k*_TQ`qrICZb?}M9B{Qu6DYXh7pjWBGnDk=S88#&pDxsZi}Cj zHhxzJDv_e(SQLm10UKhmLvj@YLmO6iw}lR4s9RaXy$OHI>N_KJ=JLp}rODC7%SP;w zMWNHah!k#g-$ky0aI@ct ztwbt=z69kEuxabYiVP$qyV7g?MpbuT)Iu}KqF`~O^5cNAWmQ265`!OM2r3>Ji;y zoqB;yUBq5Y;mqO5gk0f5MyzEtlJ~|kdqT*>cn!2=G-VQ5-S6S>urRY(_sSnRE*+R8qg5Ds^!3F9+ zvqoPXrl>?976AE3w~h_{_fttx0`ky7t)D`@uFf zyKjR0iGEVch`Rfs0nOO29#kXX9WKA%GWdD(l$Kf)`q$@U5^O)aoW2_Fco2DaO{_Zj z=BUVAf4ux>kDhL*;v#~<)*1bgqq?T61AbasvrnO9D}{EM#ibssBsAQcN~w%!gfGbr zI)us>u3BAV7UN-{@K9x2f~i?kMHAV%32ZMOsx@lU0U`KVEg!bLgq{LM>I{j$`d&p$ zGQQxLghTAra$YNp1p}3I$*ZM6`lk zGQKjKn$96-PO(>W-SrhqUkYa?)EF!-QayX_VDYGSmo$agG}{s^sE}zNi7_%WO0z0u za!j;A5>9+~aVksdlZv63PfYmeVvMU`f*~&a0qgkUFNSD}KHaT*U<)@;@AP_0xwZk1 zZCA%BVl)8{h?9Qz{*z5k)^;+=mTjgqk(UP*@i`h>sr*2`8h-lcW*<^_ci0;r4=l9X zXweEce-R%7qsw(ujbMPvMLJ%b6Dw0PnX@!hO@B?(ser>wo>`{#6pH#YbS4yshbM{M!; zwa=_BpQXW918)Z@pa{%Xdh#A>^-J)CEyoek_`Sql%~g(sg;ri~qCL6dsz;+4|2Qz4iccI;>(jT~itU)H+Ec z@Xbr#s|`*|KShj9dr#ZeP!DVg~VWMI3D z?t_Bs;W}}XHED)a7IsXj8r@gR8#anuy`!x$j;A`mXLUfT%#xx4+Xjg~m8 zqk|sxDWTM-7rKAm6KkLz<5dBA`zz6~!tDx_`a6`U$9v2fT$l2%mnl|<(66RmdXYK0 z9YiM1i%^xVOPu9pM`vO*xuQyCsEMVlxRtI>qPV|*ZaxRuO?ieP=G&)U2*GO)73V5T z>emnZp)cEOz&TrK;YW1Wd>waZLHhXY>GKXfVA96TG!sCK^fcmH+?Ovj+r)V zZ4T$Eug$6WVmI~PR+WsZBqBrnoJB}c&jr81Pr9|V zN_%*o<7cb#7@7dBTSvLT{LyN3*7B#GF-u2FMNUN@{6$yNkleOe_9idB-VZK{DQ$>* zO;Ap=dU1^y*1O|DRvz-T!VB+<9u5dwY#Hml_@A%rV58m}z#zLEK(W?frcSxws z`D~`K8?=kM&pd=*kFtQbJE?MGTNUbzDrS zLN4?XI1d9Rx?t?D)3!N%MBjjK^U zuN}j|{8q$%xB3|)-FRC|bA>EF+V|2I%OWLs&3p<_S)2WBUg=$*q%!gt;+mKx6o+(f zkIoTru(VrPi9dhnJS1`L$ez^d-$UAyqXFeB1NDi@8=CSMg>{WX<#dUExZd#N(Owsc zpHhcHSMbC3FKVdxIAMG%gb}{*z~HSWWjy5Su6#8f)738!nqauSSPh76VX~ZL0bNOL zF1s-yz72^G53TW+5!f`67gG-`^`a^-eoa%HtZkbv_17u^DJq>apJW2g-Ix}ZHD^bH z%OUTax`;YT*@?`k94&Lu66n<)O+E5(c?Wpk9`G_d=!-krkNWeD;E94V$1s@q%Y)F} zg#z|RWBDoZNE}84gAz|()5u)d#WI^EZCCb?Y3BBz)p2&eVhqc^K`7d&F>o&L_F2AX zqUQrjq5cdG3y=D0V0tK<^`#nTFHPt>Jn|MC<$9#HGj4A01(?~i9OLCjdjD6x<7f8 zy}!aOprvM@%lEAHE4fLgk1w*5sgBfaFGbrARlP9+@D@f+pFw|TH6R{Wjn#Uo1N}bR zYUPk3Xb5BINKt9ZM{M|&tUfMiVbn9L9H--Gz=APd{Fmlw0+(E-(==&8@Dvn*)i3Of zJNJ;35HGSgD%gEgkJs#}og@?oDx9v?H;Z^3@3{}sJz#CxcyV`|$qO15;)A4z;OLIa z-1_D+%At5pMc+dbUVJW$#S%F2M%IR3bR2m&=*~r|UVYgFM$ELp)xnJdHgo^AN|iUF&Dr_=MVdD$O-QZfZ+SG{rUbQ+@{EJ zii^%VWSpb(9%jXIQCROD*YihkK7l%Z`TOPK5|oPD0)ZDPGMiqXQO z5fYg({%PlAZ_k>O;zmKMv&7R5JsGXZ-|oJeCOBv@zVQ`?ns(YAeSXk#4jssMdhPwY z8vK;yP+v41v_zzaam5qf@x>l*MNak&>5>Cp$WUGW3`p6d#$DTi>w4I;SrUrpHmD+7}u`iIC zGkBkwkiwK&EyJev()|?X>ek-|fhU!xdf=tSk1tRxh16LRMTcU{!cxUAOwwS|nwagX~$iFoeezf8X4 zqlm@CjuS`E^LtK|_jaCjIh0knTi(q0sMpQ!wc$|>dSu&C3A*?`yBIPZNaQa2>`~sC zUuByUR!_0OzHEiR7xQgIU6hM*=t=|3&@5Pealj{(iZ^;C#epE+5mSjeO~&mI7dQyfK@VrQhc`Zb#3sK$ISXiFzv~ z+nnckGlu;&!sd#Dy({S-KYapV56bHig-0u`i@lU1wS&AaP08XBE4HyrQf)>Ta1-vY z*Hn{SYU`lPRbjwoRa*=gxlb9F2DCX6y#5)kcZjK!Hg3Q>GUt63YZfJ0b(fDS2vp76GwvWge?C5ztZ7_2_gFVZdtqz4 z_0pWEc~4myq=3Ef6`~hXcK7l9Vq7!TxD% z=H$feP0Q3ZlHw43*KS15Y%`_a4T*o;U2670h_zrKkg30&UXvxSy z$<3)R7x7EnW?HA&!1`Qv-(qrco&Q0)Xd|&bn@**CeHkJhNG(U#)+s#$B9TS`w=NgX zKD_)n^`P;RdPPPLshcxLP~Rl1(P;$NRn2FI14XC4UZ+3ttf%i*QfN&Y5W|p~RQ~do zQ9Ij@FZTRZ#0)*3C-aW?M#OVZ<7N8bEJ=m!cr}+3Soy-|h7Y)2@cdyRs5hl! zWVOK1TqBW$sY#>YnBmtl^Zfy~zf8c%A8_L-nxQ#~B2%poR9K+WsIY|Xquzg$q=Y-r z_tWGZwdp}cu-i8OhFYIaZX?NWAJ-oW3WB_lxQQuD4T!mQFnwWaWJ>V9!HSxy5}WPr z!aQEIC7sG3=-{#b#Ld3)39?TpYC^FHRNNREO08bi{lyPT0UWlTgRcO~a<~@`hbvry z()PeE;<%5Kluh4a`WLIj$UgUHR1G{@Mo6Hgi$sb~afuZ2AB3>dR!UHzIAxeJ!!7&< z{a&|fK@h7{QvyX5wn+omv9u2Jdyn8bg84lQ~tD@unU{=k8n=EFTF;f{(T^ z_Z}_Ctdr#=GPL?L9<@l)G3fpT{Q{V14Wj0y6*)hUESuOuI`0(S(M(w9rb_NCR+DxdtdCDcv&}W^FTT5{ zJ@K6$)I5maw=`YS_qx9u@o!WTit)KYl*1dvF%a=wME>vs7Yw#M)n8a-A_R-111f$f zYpzEzr*7t-@W%cv5YY(;D|xd4$>;kY)6zw~cm%58e~A5ZnkK}5!>@M#_u$uO|MwmP zfJ|4v8IJs={d)d?LaqeQQUX~sAxF4KqJh7e{s%@7_BCh7PzA=HI11!j0}aZh5k6WxO9A}4*?ISD>6l~9wLELz zf{QuB7YG0~Q=tu5{xTq~jMN6j^GSwRccW&IXpCaVc-Ju=envDltT}Z##or`R0)~&w zx11Spzb6RHGmKnR#^dvpkXO15taeuX#gKlwCt8_+{Bhdn0BUI0YVPmr@63FW+&5%! zzI?j+iRc0I+bayP7NvZt6?qh4KxG&D1z$x$Ein=dH&GnUH@;Va))V)yOTG282x8ZhWTsj>*Vq z6^o)Im|HO+P_b<5@3|ogttl;<4eiJ`{h}roMkg)pYR zXMKUcg!Lz1l(5|u8%C`aKY#z_2L0&_{nvLZF`@!)RfyUFYI042SEqlC3g=^!giVCpM+6r}D#RJfQ6W9E3dHxm2iVA8Q2#c1Pb=Rk;=7Q03ng4G&Nsp8xf)dj z(78=%%zOJbhGte)dPpAle;6hIE?7=2W^C-r*Td#C>?-bI$cH1JA*Fqc&yRPhu6A7k zN`O_;NF(6IN%zV*k6UEN= zj9lE(_sZ=+2OU?uC?})zDPG6t?@u^vY_v+l{t90T&rpR)CA@_w zdfZUavXIZ0BtZVTljy#N1cU)R!J@rlEQDLSB&_-<05uo6-G~IGQ{#O<(vAlAB zn(iGSf~^9k$sItPzipy02tq9}Apr2n#xmb45V za+ZYg8*pwWC4;bv+IE*+f?%D2Sq~|=qzLZX;E7l1{*qb1cg}^J_OmlHZ}e3AG>XP8 zX%qwWz;@m|RL`)#U%=wpDYA!zm&t185x^0wCK3*rdzs#vzJvOko0L763L8J$A5_4s zaqTkg=7m~}FT;uVm{`5Skvmk}De%4@CRegLM&)s!ym^`;YCuthB@1_na!LlZ+Mv)l zOpG-k6LYssUFX}l!u)YfBJ5IOXrt5Yx+Wnsv8}jNa5)(RcgU!vg_oB8j|$1Z`FiAu z2yn8X3hP6cJfZDgd5sO^T1kb(ur#v?aQ1_OU~38bFFoI+2g^r(2=k9DU?eR+B5LG% zQssBF0d$$mr8PD33tu6Z%&r5O*wv!v@8nH|qb?zHkTQUYimfC%6Tslr!bpDj=4%Ys zO!_y29ZpM$JhJ5&IvE9R?@u}UZ-I!rb<-`<&GtBbeMu;l7(Ixmy zYNB{Tpcxqu6_gD`Ak$Zzl6o(RGXZ}A{H8PJ6CmGuhUy_V42*i`uc-#mg)R?6Kn#Lf@>cFK>kKeB!Nv zT!|&*mN6OfAGnGth~Rd3ybH5WV%xLno?=*291RrQI&wi)=j7fuq)qC~doEk@O{IRUtJ_bHKtfseW` z!bOuTVo5F?eaKKB)5qVBemEL5e>iz=cle{HP0K!eFgr&D#lc)ol%h+kln&k5f*r!^@J?CJ+WZm8_k(+uO^ zj|aEm`rYy7LU)3dJ`>yb?IR;JoEX|))TsH=&IKt@P zi_vm!tT1CEMiT&OHo&lbG3}1y+>B_rh0j{nSH9@ir=;sBXB~$_$%Q2}JOm-T5j8i4`pOi0+6zLV z-gTNv;!jwy!D~@0VAoR7P#}2mvqZ!+E^yim;`TX02TThUym>MeYmMOchtCA-c()a= zGvAx40&xyPv8tNe)30Esz&Ng9(v~rpU#60VL>AvSWu2j%@$0m`FP<;mlBes{a~T$H zs~R=5_nbuVnmh+Cs{;swbf%uQ%yJEvXyZ+_l-dxyKYx*IkXl0A)tEy({>sNrNcbo{ zWR#fsWwpq7t%Ezvpg^Tq39Z~uA-d~}p0?Xng_ED8(y)E9DRZ>}as0frLsXrcnv9^n zA(fr0_@w>xk-M(KsFanj2}!4o{Z*_=6A4YUP1g$Dho-qeoA@Lr)(%g`OVx$Y%I@R@ z6O-w4tf>nZvWOW{R$Xq-b6|u;cE8hlbF(Z57s3F^sILgu^21g6`R391TI|N|%$8`X zFhxMJ_@qJ4yF+z+q~zRYxW@syr3G(H%Q#pj4}uQcjPCW_o>KcO`PZa%<68oK<*u7g z&cX)vN1$RE!0vg_f&#AU$!Kp#9{lm~F+gidhqbp7z65cOe?J;0;Xr&>1DmUH_KT~g z`c@?9#nspENOzv}guw;p@)v!wLZuQ*8xA6*b>yfG&|D+Mkvt$Gt7K_G*$g_=A&SYO z&J(f#^I11uVxIi~sG>8m93zd4{Fl$Pxg&dK2N||FYf7EJdnLNn+LUJ&jRr0C3ybJ@ zo}qexxPiA9dH@52+(WWX`CHa3^Zkb-&?QfPH1~?U`*wAG_nTCvYa-TlWkGm$1Y z(%Xy2NC2)_)kNBGX<@Dk<;8t1*{kcOkxUCx^aH`jT4=Q4Dk~q{(hse9`^u$9yG>U$ zM#iWIKXHtOEo^M{mpmXW;rr;12@HHMPMzSlY?y5=_k43{^mV!_PL2LR0GIJ6$lA2P z3C+=<9ugP`V{Hvt68P3$(=e~B;wTh`c~qMXw=L&#Z2^S$HX}18Z%L4#ERgU(Zt}fY zB&CPDH$PWP4vC}aXZP9P9XziD&^H$Rtl{G*pZ7ffC=_o?suyNllmF$kr^vv`;e~5D znxyLC!|U2cbgXsHHX#E>mQdAKInldR2BFcPY$jKI2znnX7;|dWyY8bF9D)1AfeIBL z7f@uefB`WYrH`cl*7RsZh8_$NBdXz zQRsM0USBk6ny8AAgreuYqNr5T2(qo*#AcHZFu`r<=e~%&`;iMiu(6n=*B(O9*1K8S zi=OZwZY)qJkur12Y{-9{%$Ee(y!7@1k zd0j2d!jY6d_6ZR3XX4bKZ-1ycm82cg#E#f=yw^@%xC81>M9lPG74f8>Zf!pMcJm2y zpF(E}{;?v!o?#wo9LF?k;K&&MeO2=z{_##UGS=?#EwdZvHuDbM2KV-mF=*@{fZ-FJ z{hBA~g5?6ng2@Ye?@9hU0yV^{h6}DOw{MG|2+}Z+o)a~tWIv=>f(KOG-N!L{Z@leUQu0FNANNk5 zb4&ITZXGd}Ghd*^y2ZHr0ImxC5;;rc-QaFoJ~*7I?f2QMk=zelluv#au9Jnysu9f%B(p?C&YqQax?Nl)-JGuRD}{g`rb>D{ps#>;b$$rnv!?RH#(wz93cd<_m4^~CE|jgdQPIYhzA^e~0T zeZ-jeM}jPK%31E&H-L3_a;Mw#?!JbTzRyPykpQZMtbS$>yryJzI0;FSz#B=z_s-~q zO*c%!m;8}-A+oLYE$xbXMGU#KQgV!6+`n!3<-A1BBVX#j7E7%2!nm1ieD3kymO+`+ z#P|hfHcH!mgTLA0`jl`3d{jT7zXhW$W&Z%03nN-r{M$f1RsEGGJXj9~3Wyu0UVR1z zP;zTxiy$S|-p^P8h$y6={LpwTOh}|-RQkf30OjQQa?=VugY}RR5IM;~+2rROPK%E9 z`=axZW!X><$ZC^CZS)m_Df>OMO1NzdTHW@?G~Q(&i*t!#H5Gr`%wTrn9&jpwfG3?ld7jhiiSB}?8k_-ZqOvz zT}nU~DxEfgzOcb2FRUpo*O&6Xd_@f5a4tre4sn#;|z;IT+&f}d~TQ{98CWf zekFtWJX7FEAfK5(I7wG$wDQNT$AguEuif4~Qx#z5K*(+m&FlS?wz>mdC)O&DUS}9> zl)I}Tx2LmSqA z^tg5luy!=*ZBbb#x4dO-*D6jWG%zmP%~`-=Cb7%Qc&hpXudStPSOH(b59Keo4OS=5 zBO#Uu3kck)uH1-fhoWn`$j39)^MDlrY7iWL?V)gCbJygsZmz|RLkz3%1jxP9R(hA}&xd%kQNvFQGmn6Be75tQFF zVbmE-z}}p;@G1hFOQe4(7!3O|z&|taQ>jRB?5C+`DxKNXAHeN^xTdJiH%*D}e((YH z2bDRYC*|~k5)UW2+P!4Q7?WA@Sr!VBGoVNzTSz3+AmRE*cNnUe-HffMCv@rza*cHc z1)OTkF#!Hs6q2y{Ph%nBn{5V39yeJ%G^f-X#^znd656 z=zHU16jSDzzy4V27h->&&_TWdFV|U;!eDHY{h*Q3fZ%$^4R^@9*xnb-Z*;TF9n)jE z-?&L6oPop&Z}$qCFTg)$K>~G63=@x0>nDo`!|N2LUXQDw8~|`6bvPXy!EZx~UFBLj z0N7TM%ftL34ULZpF;L&53*Ey(>~ABCS3Y)Z4&VUsplIGLA@8N_1>eW+8g&l6jScoc z6VnP#SX#3nIl3jgu8V8DHQeLD8Sd*~pN{7=abnqdkiaI!P)SY1{pO28(sF|wssh7q zX3O5|${}m>?hUTZ&9!9V^_wuJ?sNq_)jXSqih`8P6nRbQVN2@@-SQN&p8fXZ=mJ8_ zNw0tb>t-|3c^T^`rJH-3p+pg+ z8$J(G&wy?%WgI7L5=Ulis?O%n^3Co7#rm3mlG#`~8fPgaKhv?q7_D};BE8wujkqj& z9+#!7S*HV&ur7b{?d^6rZK&x`<4>3rA0GwCsrTZv=E&DIHIYAU=`zYq0O8B-!O!1f#(xwV&3={Ips?$8}YvTpt{UvTxIxVJt zv!8wE^fxfx($gch`zEO7p|NB<{RXw?X@h>K}DU z5`ogi2aHCshkFzswQly070uBcd_gu|5>7&L=11U2Nxs_pvjrk>v9Y#i?c5@e;0CI3 zUvV5ZZQ7_l{v8(C52c(g(+#QNJ5nrF|A!+p!ro>Mtvzq0k*_%V6%mp&<`H+_!|IRw zyOc+nqW=b>K>@4EzZco~ka#+Hlot3Wol~{MxqNiw1xATkb59S^7Rnik!p0{fCG+)= z%JP!-^N{#yB8LHX3v(*riZNo5AuOpC|8~0ijCW;8mVC@IQ0}ny1Qt=WRApdkOex|Q zzkldJCdytUlvcau-Fy}G*%^H_D7(NX2K@&5&H3}JP^w`oksy?mGNAI)OfJ`&S9R2)g9vyrw4CJVL1x;en=W9I2I^SrkRn2>==*CoJS9m&m^NQ;G_8_v8@pMuy zboO^KpG?HJHD+E@@RAz^OBQ{+n@AiknXM=k_8G!Az;M~HWP!nY9uALGx>}eYWhnJ2 zCvT4(@{T>5qP(H5S0Hj3zSJn{8h>fJCllQqe>UHCSWoyX7vfBV%CHuS$pHIXq+f_3UYJ&L5&uVjT#>R>3};L9jCbITjX}laS@P2*W*17%HH}eT`qsK2_Y{Dt}%D-Li%s3dYuHC_@2DgUREE9^mki zF=iU5X7I(`=w)~6nrR$7V*Tdn(^OBtH6~D7zUCRlm!r}^3va5e6w`pg<7=QwnX^{% zmv~yzP`Y47Q6sx#6C10cB&Ah0^1=OVvojZ7NkSC#m4Ob)$Vp>n6-2K?7ECj|-aWn(0Uxj_ z*;~C9%wVQ|#d)yJQ0S-{BHZc#NaW&NQ(1b#ez`!HhXqhT+-K@w@9PRwngM#&a(&xrmWj9A>0bxt;;bR(|@R(|KzLQ=tJwvFasR; zJZNO6aNTMo{96}9;3WzX;UmlrcyynrJip|Vzv3mk!Qg{hM@yOQ(L2;r@2}<(d`{rw z&6>V%U2pn0z{V#F(h?p`r02Fg{6D<_S-TDEmQdc*r_tXNju^ZS)PK*e$+T;g$O$A%lrL!B!VZg< zvA?v$OLkNqT{5y>jm~FnF%-qUbLGc9OFgV9HJi&V@N7u^i9N^P+_{;)&sxmykDLZNG`mzDfG2`Od2OBtJ?`YBEpazHf=c0nps)D(a?ii z=^Ygx%Or->`#aq%ztrXVj5+e@j=lin&snuJNTjCBJKd$v@PQ(K-bhlMyGXd2Z`Zh_ zR}zA1YotV&u(dRKMY>^#W4$KITFb56NAVWMrnvRs_a1sam%iz_+=sQM!y+{rO6TNf z$AghR!w)oMEH$;UgpL{q)5|~T?re!=J%B8mFT1k8<5#*#$b#O@iVycs5o~GHhOM@2 zU#9@Aq}!-4-an2fJL|_@gMcE!F8F0ejzTewS(96cNCK=7NrI!NQin~}N=^ni4- zOwOrA4)v`%9t1ysaSPC7YTu=WDes$|5=@c}a~(|mz#dASjx3S2F|P$Ejq2FM&3Chf zvN16EMi{d3q4>hx>jL&uhF2}4%*;8ef-1e(`1&-fot#k=%?Ndyl!}*}1axwq`wSa& zH#Jt2zU|-G@vxM-WzQZJ9>1uHNsA)>OdvIz9gQm<|4G^Wa}8G6(pP0Zp_NEpt%s*z z#?GGTJiIL!+u4xgwYHoi);05~F17BCs(F6Egy9X4WW4dj>c!p;-la1)vm2nisPcRu zn{*cpdis1pheeo;pi$}^${YTglQFz|QU&}4cC z_3c(vJ_7i*|Bkk>DAS8wxwj@T8a$JfODZOe-})sqrvw@cANIetsJ$oN{~W(5LSVv$ zAYPKJv0|fw{wu#FjRw|>bocLYH4>+zJm!#R<za2OZzdU6{fhh4B^ z^RJ{Y*OjnM^jVi`7ZdFUV_W2-2H(G~X1&-J$-*pcGO(Y z7?a8Tz8^_BlS>!h{Xx4>lj~=MeIKXS>Z}?5D%CKDk}z)BKa*BnaK*}}fY_ybtt}KAQsD~ zw?85dd_T`j7jhG3I-g2!eVzwx6l%wM<(ETsQI)NgV|H~lQMtj+L4+1SO%ikFCOwL# zG4}VMmb;-j`MTm+NRkk%5b#?fzD zY=NxQo3poVL>4kf7A@7)jYYNZXDpn?CA)tXu2p&2%XU9Cp-Q3H1vDS9(5OPYnsol! z_PupC6l&#@kBs=Fljl)~YJ0x(1yXdI$_g|3G)X8$nyhd*ZQ7O11hpO|Pik$juG8s| z+Dw!+dY9_dSOlUt+@XzZkdT#8e0%OJB>s#LyA`fd&GYm_+`mz%K=tJFP=P0R-jQnn&?n5ZZR1?!!iRL5q}yFz~r z{@`2Fn@sY?crenwljqNB^4p=BguhifJvg>Tvy{tOdoP#G)}ZIj!W0or_rcj(jvmXJ zN=Eu>-dE`|?2=jTih&-@YZ)dyj*AXh^#{@7eMcj@w6M$c)>kymUU{|%;_@jCo6uGX z6{DtTptq}-pkq&Nr3V#=BK|RcN6llDhORQAgNTHZy4sB;gIl5>@H7bpuP5?b*6;#_@zMr!~^%U5KKV z+OBbX{toS4=;5P6xN3L>1vLVD>s=V2RvbOQ^H1l7(=u z%`_4&oe&fLxe{OXrKCm{!$@5|Stv#Q-)pL1BZ2VW45J@1N;zRu_94YBk+^=wA;JYq zvSSU3RHsYYNX9-GVZO?0lU&%@2K=yDR30*e(pLjnppV#yK8$RWr^(1bl?N8^I@vRZre!=b8T;yv)|iny$aawC;TdBB)u3YhXU*gLeFZcHILK zOO_ZaL8exCa|5RFRSxR%3!#1$yB%Q+Ga_tWMGyfzE7z_Fl?)c(F0+nVdmxFFe*pFK1^3wiu; zEiD!-Z0><`?Lvo7lR86OQZ75g9SBW6GQU4o`9Y}_-UNI4ylA}ZFPZnjcuCAX#DihXda0uDKoC3VCz>j(mEHHEVw=m2#saG>-i9I}8_Xn3 zJmD>ysO&R7vX|AS%Z`L1uen80lIUnG{T1dB1uKZAT z?Yac*xa>QTs`T}!oQ!ozsld(&iA?B2E+7Ki{#Pab#C@*407Sqz!4EcCwH_viv`u_s zKWcrGBD?cxfPzrrML{*`!!jnl$*7<}`yuBru`hI(h-=dbqS?`K(z9T$o}>8YRkkx$ zhUy(v^ws?A;Cp#x%LuUE`Ck%@C)avz2X=jb{$|Zbgvgoj=#KH%IXY|A%eF(Q4ub5p zytjn)tRzA2<=5h@`UIZzgRV*k5Pb(O)%e3h>VjV1nGF474rkWF)}Z$`d#ZFOK&Er) z-0GoMIeUful^gS+Gn(XadAj%4QJ$L5tW3gdmIW(D*$i$LUo2{>NH}#-Th_-gm~yfv z)5*&o4NXD_!4I0AGdbE8K4Xw_h8$cFkwjl7zo95tQizX`J`QA0_(tqoBi4e+^}q0v)$Yv;(H zr#ZOl$hw{gj6GAjp?mmZOL*ocTM6Rcz~1-^SeXXl+_9jGv#m2~BJ$Q(p$fEvI%eP+ zZo$4ucX^FE?_VG^wmFGNCo|5BQ-rsAa0#$1_g0Xc`h*J?h0X}&DYbAojyQn-5e6#m z$Vo4736EkyNTa1C7nn<-}a9tkMrgZ4v*Rju>H6nO$+091IAm!+G&o7P3W78wOQuUlhv|C^)apO zsQ08Oa07G(a*Yelo`uZIfnwn|ZKRB1d>$iNx6Nff?Z&lYg;y08-3O2yYsRBUQlZ?3 zM$**k4eC(d#O1ll`68#A=FB@Dr*&;>DS_wCyZ4IX5zUFn(7ArO5r-Tgk=^1~2!d?1 zs_gujwzM1b@_6q2^Q=JwublOg9h=b5t&^5bqHhERt}1-^zUf3S^g=BG>?$5qNN%xofCKPmLX|6hBK^} zKB8iClV3SpFbt(VM@F)YOQ9ZU-Cz?x&&z7`*@u1Ag8tm2;@=#Pgg3$Xr1}Nx;*Rf8 z4=EoM@vuXRbql??XnV7zR#wfzXI>x+qvYyN;q_Bj6qh#EYd-W=N>F_nDeI|0sqXtO z8>TH6RaHg?1K;lV;t5}$F}|=&w7TRtC3NaM6VgA~K4)e8EUo|rRR;N#BY<^#-^6)% ztc)3B(*-u@=2d~!{-Wik6t0~lNw2d_VVRRmCI6*5Kh+cVDGqhnxq{|9qt)D@tI`Gz z(Z8#U35aPaoai<4yIwtJp1?B_@hx zG6afMrd|omPQSgNAt5M@4XH57SHO&j?PDt?T0SjM>;;IQ^jQ$-3L41Q=a3^%9lO51 z)~VMUwfNtgw#X@qzsY$?2@5o6ydRX$O~On~bY;+RU*sk={tLHa`SO?=S=qwG?{hA` zBbZbW9hL8R`En2k*Fq1h#9UO&D~hG(hT2(SCq1jolL@Pry0J)OhmmL-6h#MV<3|+# zO7L{OM0b_X5D?g$j)cRmN*J+1{WZGfK0j&-CE5sZ2>5@;ad?UKfJ}axYY-MELy@|f zD79H=ncd>5lW3>ON^q74FNXeof%LE9h(ucUtpI`KY|v^e*lInxSIhhdlwvO7#XPf5{or7-0;$t$qKaUurGE0MQk{UB zH@H>ocS=U8h|l9C94UmCML=xYAf@36BZ0w93zjllRgi#-K#S^E9weXz%gKY|>-^lD z!V)|*jJT+0_Mql&0|J$jsQfn52iAKZ1Clcab1zvjLh*xF&V)|REp)#dt_>4FAlFw1 zpDlrWZlX1xHoA%GQ+Q9!{2h+(Dhxz#?+IQi1Y$($e|k(Xn|LJcqWsp(626S;Rx-Ab z^BY5g6AecH-#3h?KP?glG&EPiucu4Sy69~X9iLV#q(eSosLgiN+2VsrCy3p-hq!jt z?uB2Yp#m+CE4c7t;;nAUSmM6!SmFtVlzeb{i1IIeplA8N#}^>tPVdxh|8Pq~%_p$D z_{?B%2Te*7bHI~SzYPRfg@e;AULn?9Nb7v!sd4M+`=`TK(G2iLUb_+5j0wy*c(unE&pNt?HQcffmyKYz#l<*Y;Z~&<_i; z!}8#a`Pr!s{l$6e%T?_KAusaE!7xdl^o{~K`C>-`k1Mh-)E_NEfy{m<4Y%k&TKgk` zS9bB9k;O!eva}T0x&g;1jBPF&kp&7WV?gjL|9jdRhti9Z^Pga62bTr2%g-*crsVj%=d%BaUE;A^Df%6Ro;x}gb9K6^d<_5KymY3UECeB*~TA7I> z!xQee9~;K-B>Cl)8ZQ)GaUgd`y$V}l=JG2EkDwL9A%*e)<6m@y-{*s5$vyquhFaxLWzb_^k3 zWS8c{ecG4546sq2Y8?k)cAnf%vs!VR9{fNWuuKQWJ5hx|V;z)4 z2_%m@FIhCcdlrf&@%{G>StzX6Jb9#f;UbyJ6=0n9KJ9d67zI)#)c=Hz8560jsnUv$Jebl zt7i&aXeQ@7b)Qk&yqN`biU&r}ZiMx69WO}w&2hJoa||OZ=c})6)^w2|Hd^ApDcdb= zu3J%i*cX2?N~$v62p)WGch&)wLj~l)epSxkp&)iLh;1+l?GZ1^rU;#E{+m$ue~lpQtNy}(YQD}I;Rk7W zQjBSE-|?|2$^osQZAjyI5IR2pBql~*qkN$;y>&(#Hjb*GW}GQovhn36gMCg1GY8+8 z>x_Y3G~Tq@lGsK{SNBRcrMpmPuL-ffg=W(1BHQARjbrg8f((&O>}oO6%9+OnJSzpu zNunFCl#(YUN(rxqed&`E1GnM>o>$u6gIOciNvn&BRjNgH7zafEd)n&RV!ubifI#D7 zROIE0)aedH*)gC_#G6GER(Lp+Ilqo?hHQ|R!k$M`Sg5FwpibcSjbks4fO+{Z#iwby zzwpc&=~mAOK|w``{WlsKhoU*}9i?X<9+n*t+#zbU_CEYX)sV@c1k}ef!P-AtPQzte zC!(~+x2RyCUe9QgkvS+If)8#;N|A8h@m)g5n9lryVAiXM6KCgdLCmX+o!Zc)u->FaQs7A{=Z3Y{)?pAE1Tz4Q!J%JfINw-%d%~9hfHL7HYs6lzH~N^uYX? zc>|zkm4eT&s*r#G_J3ag`w$7B$`zsM&9jxFLPmhW_wj&-rXk`C?lFoZj04ABdp3sC zq5nhrYG&Z3xjJ)Qw&&N#1-*bk-7%kmqXuT!{vTP-ln8)ZjaV@x$3H(Gj|Mmf!6l6PZ&OW>sfg(=(@YvMf36>G{(B1A+)jBowZ>~XKIiW6(7!__$k zo&^3pCxF*{p743G_Z)Ss0oV;YDfc2i4-zQ`z`;VOXs!K7!G?L$Hnd1s_3rUjY16o+ z^5SLm6#qPw#*b!$J-g-niNtJLk5)r8W`c0br>RncSe*rCJNm~6oAwX#pFHsVYZ?;# ziri4gv`VMsZA#n9hcgz0%Y>fYzAg`dzV>2k85!Ew0G?;+N0$!>#{J4r3INR4!fn}I zhLkvJ^gl8Eq^jRwq_LG$R3uqhDqxG~4vx`+r`V|2gdP?7^QbU-d4AFlVAXB z2EeUF<({qQs3`y-64(b3_~C{NP|on6|8J``QgBhx@nfwb-b*P{8YjAQ+=@`-RTb&f z^^3G`@}6|M)e0cxAIBpx)gIP2)NIANEbL26+1PAN`vr>Jf2HLq3T1bgt^GuUpFhv? zJVS-V&U0qyBhD2+8()y zRn2H>PEU50?f}PAh^{H@PoW9k1#0(a|H@6hpnrNIsCPc?5%|7)7J_``XFO1zf3Cj+ zWZ6YGsHzcAn>RS$zyoZOh;wP;aFwMV!+vBE;x{p$RD&F8go&R*P-ticspmmrE#Yv+ zK-9QepcOBXeHT3zUI9)QYj9OCg=6vZ4k@PF3F5p4W}=UK0V3V@@(3_10SG*c{qPR! z?^A$~#Q4B>C?pW)q61JPh=e*`Hyz3=(Xxe!DiKOh%8Cry_b9Wex&vLj`0~stzfnA9 zXjR9h$@jtW7W0oiU*ZDZ28M^r4P`YDX9?EHX8kpiag@I8=Ml3D$jhU-z1mA+YwVI$ zk;|F+p+l-sI3jcBUOqP20!^REygvZBA1p=gXfSln3B*qE4Gd^~a=Pz6QWt4kwhMk6 zg!0iQixFnQq_PzCANkCF0U0Z^9AW?n)v5px%9zehG!ki?8YibXBx~RmFH;h2u#qQT z_?hbA+IYg9z$-l!TnJ|1cUSQXPGo4C5`reX;R}0t#FE+7CDERWD}lndx@vfyFHwbk zF3IwGmBgEz&EH+_v9Ek!-@+s83kr*U=RC>J{kefd27@x54YOV3u3%KCb>@|XL~NXx zzu)=*9eZM`psCp!4h2OF91QsxxVNC4wJY>;W(*M_i_>1?DR1&&HIcNi!sP94b8E3 z`8HB?w;D`BLK2$S=P&h9nzprdDbVubyZS8#1avT) z%Nj%eM7}YQEVDCCS1|1M67f*dGgOdY@LP$88HiaA>20n_qvI-Gx;I~7TN`<>ocI0u z5o+tx3$5>(G6#Q+;>9ygTN9t2z}pvX`WRH zSCmp2kVNEXRYK5Qiboo!`!+?VARw93*Z1#eJ@;W{`qAr~IY#gyI_gzw#EC?;j184iC<_z=+SX7iSo7DS1) zP2*(`tGtCQvq~N48O0Yf3PX;TT4Hy&e)gbzZdR1sxxLU=D^g*twR)_G1K)OyCt3aZ zhSh50`EMa-tIDN_UG%n?y|XK4b*nDpo!(J+o!Am;?0CM;4bW7jT&zzDz~7$GY}!KpzFwI>UQ3JEjtdiQE^ zZs_o1&D;8xv@DUc(YyGe1)mWY3#l{5!!|la0+*pOy}#mZmB~^>wpBS^DW?=6nn6N~1gdZ4E_gt-$KZudUL)%L0R9 z65Gr9Zf*bO_4Sn`*k-08@HG*elX~LAW1%L~+myXWryw-dN1sj=s1Yog%@9v)*f7}M z*mXQ|fI*d}apaLUM3S9P>Zzr3xM$PR*;&$8^2?(@+7P2Mqxap2A(^lzh(^YD*e$8r zUgxrvIAzTk{UKJLca*I@>M`$o((vuTR}c@g3P}_y4g&QDFGN}h>u9P46{7U7bO2$! z1m0nDf23J|zDi?P_MfPIbC%frZ_d%kl2gunlDH6Y}V>!PL;bG}DKY^3?ME=@~z`Cx=P}7Ud(sz4MKq+VfEf zu2xqZ9@uvxPW|l6&~_uc>ub*jWjEW}#WssTb(ZBTx zA5Ze9CHoh%8K8~V`hP}Wx(%*NEsi4`JG+ER76ck>TJgCRNk@ol10wGXh`g%VO>3-J z^3>?;sTVzDQDi|N!fS7u98kPBtm%9b+Z)V`-3;vPJS42s74yN3jn~{lkh!-?WotE7 zRaCyGPKs9CB=*>U((As{yfY3ka<8Vl7)*HzJz0}^>tXM2k3G?&=-(53k{5@Q^XuWs zK^9XYTiEM(rlKt~DvSS7f1&v^(P%aVuDrKN)-1+*v?8c}BW4*=RFEBae(J?4$&vTS zzpws%#i&t4yPOjCfe1xp(50QbuhPxtdWIyFRjfgFpm4Q}X6C!Y2l>%B-K#&OG&=Uu z4d{Z3_9M(6HLzJk^Fw4EJ?{B)F^O7uHhC2$fK#sqr~x?!2UW9mavP{*Ben2q?YW*-f)V!L;P&$Lj~d zJhB~8>JQjRLvDZY+Pkw3=x+CZw67IW7P z>A}27qnlia-tLc?9f}u(UhJ(5`iXR?L~mj1IXlIz{fS%Ct+OFtSTJb%tk@UxCT1Xs z$x-pL!FDkssl9xoSwrlpl{{NCVg<{})F<}TOh`}wZo8vSEa*zr+SaUYC$j%s=!Y%~=n3cW)$08U zTqrj5=LLIBAf*y7lDZR|$fGS_9y;^YvTAcICT!JoCOlvfk&>e5=;)|KS)9XSW5e?D z@UQ8P3bV}+xkW`0C@3f#U5Bp2L}<(`xm6Sw`;tc~#hlVfe?q&w$Ny?f>cSBHh^u`u zy>+JNtTjxbr7=B=XZk01$uypLFMk8|_|?9LKTYr731^x*S)J(Ul70_#xG>Q@c2jQq zfcbtIKQh*41xOlLD6vI}q1=aS*zkx_*5Mv7Zx0m3G=;V8X@8jSk!xHpk6q1sMY9@S zvBssk7NPs6)b{lADu0y^ay=QAEZK`E>Wi_}ND3=W7;9H-=aN8I6;J}tmVOyypN)!j zDmi=@$x-{BR{K0B!Nw?g;v$c<%6e3ujlpY)Y5Nr7QCmhM1!#J+&i|?c7xu) zs{&H>eUamMkQZ!K(T2=&K|j$5&_6XA(Da(z{6IiBagYJwgo9rqn`i(g{&n$VyUTVe z`2kUS9AX?uS-C_eqIDrVk0A2e9O><%)U!v#AwZyq%$1z&n-=}S-d>(BJBcXNnCwxG z$wvyYfAer8g}Z&RP>JQ2uZ&Qpjye*N0Xp22pFE3O`)v$*STrP?=s#7v1@U)mzoCT=LB zY`G}6rZ_PSf9Bw4M_g&I)EMcX=;;%>xU)*;1q_ztZ@0Dolx~F-J||)tpi5 zId2)${UU-+J#!%&Uy2Qx*e6L?GdZg!c^}4humDnr2iW1_C>MeE^2u~WkffT~C9E=q ze!j29EnxFa-jq<(gRq$XTc+Aymx;=8lV%qtMd>yfO~gvAH;#^d#oBTD)7;5SR`vXb z5fMT8XU}w+-Ab~8O7Ct?|BNqny^=$^@Azka?JLRv^BFB~MkW>qbtM+OC6V4hv0k&o zm{bsoq`4A|WRrE$kEuSYG^cf8`5k-COR?;CqHaUDQPw;e`Z1%5+VkEIU_AiXYRQ0n zEA8SjE`ZD7&tCFmI+S|Q8WD{NdEuk8fe(3L8}^UYfx$ij^7!H{2FCQ0Q(sLMK0PhQ zV7$O3weQ@Hg%i76Sh0t+h|=PmNYZqW_9t4Lt1C>%4{N?}PNflrZX;_exF~_PQ9b4D zL?)Z@G>s418F19HiFmg_UaUWEvAmRi#7hNtCJ*WK{Ev1H6)!K&O6E@t6~$1mIH&r% zF;H+T(Y2455Meo{DF)xO|~vB-WaA_1`V01qb%giKxa(DIn-(plL@&rXW3 zsv;3q#gOatT6*j4=do%%fpri55GOte`h*S;93hC&NE^OX z#2yiMb3no8ienk2qP>+`Xy64WLiebW{@j?K{P=dE+n1mXAqWC; z4EuHfhd!QKt}m`Z3kB9{wTlKPhwEn_482UYU3$-{|Z&`A2yWT7LjGu?2%~K!-Q4DSetT^s3hSOn3dmw=_g3*)k9(86rcqS6=mogzke=WbJ+C}bagR48kvuo&A#&_ncve&pgpK=K0KnHJMr2qCkZ`(ZBaNg* zGQo>l%uUi=3c5a9GT+B;u^^R*E%_=log+Osbx|6i3$B&hxrjjvX-@MQBvbxVooYMMTN zp#$r2qn7LQ1}PMDhDPhJtgQtZiL`VEiV|Be5+=a4O11y>qGPs6s!y_LTH^rU4iCTt zLJpg*p1eN*L*7X|lbUdx7NwnZPl0||*kF_ZR zEm+erL1U)ajaj_LJmpuK5PQ|rDSmf1GXl!5`QbNZ`03;<$x8&}4_Ie}EFIf%QY(9V zU5ga>_>tk3aj0xi45&k%)79bU_5OocjiS+x(Piv%J?@ZVIzrl9+>b zr%Ij43x623cVr1&eHCgD8_5)iMJE`@Rqt`;ci}}cF)%Aqx;QVLNZfm41gbJeK9Rn)aY z1LT~BZ?K^vfR8k+fW#@kGIT(6y>|Yxn=W5itG8?TjqxOVU~|E#pJVrRFw#)E2<4RM z_b=M48J#^nbUhCyv7HCM($ zQU2a=uIM_4UYiYN*Ssj#=aX%!Ha{M$*81B2@w%*wVd1*{$71jiL$pK(;tf|C$D%## z1#3>x)t6_z`(Os>+F#ucumQlm@wejYiAK0PI4dcGM}D43_`q>(3WEJ};`D%ts*ppz z7jCQ=Q;>KRAVLDn6{p0Ce+K(%f2nSQDrjgeV#iQS!K2pWXvyp>nSA!_3IT-46s3|S z_zg($8T2tEzz228I=WBtRu2x4>-3`O6m{U<(cg$8Xj z?mtP3`o|1sczozS{?Sx1zUcEPVc;wLb9+24GAtTeq=Kng4%b&_yVz6T_Ft&>a<4K! zr_?I9olca8r4uk<{zua*g#mkzY^lWcj3ucId2Rpv5D>%erSizS##@2 z3;O`ebUqq~CE@M)A|VPfFWAFf?1z7yuz<;TkPJxs4Ff2{28!u>ZVRP|g&|7L*92e(8-M4A@N%*?D+$1vKHTxoEr z0CNZjSfo%}nMjCRsSjXrP=Ai6U{IpHmPL&a`6Lu0aSk_ z1LOS`u&ZAQ0cwwbFZyiZB6ds1AZ^?&GtclM?xV80CT+-zl|44uncE&H*LBw&Cyc=q z*1d%4+kS(WU0CJ&Q;kAZNzw8K7#_4-$j&wE!;pRa<@=#MFH7i&T_sbvOCIVTFg|JR za{SQE0XAv{8@2m&9Y_dz9;bvyM0D&-Y`t^+O@(!r+tufId+xOh;yJ+^KlSpt`>6i& z8OlIcz^xYO1OxJJ{hZY(_x@|lo6AnQ*7y4EfZYk#LP=fI7qYWhOiPl44Kn@!id)40 zz%cscwEJ@>D0!Da^$N-RQfO|6Ym39bL*3KUlZufMEie#)n9m*QbPId^5@ZNuXUMY1 zPOeWhXlZHT{!d0$OSQOoc=%NxI@lZi)(8PBUaVOq>~W3PUIb>%X;|8m_krof@(fG= z$0fZ6NN3R@7X%0@6$!v%hz2@3Z5Pt)a?ieF)SBv%>5YFM*FD*y)qCI~>mXlgo=1fS zMtLdW!0y^P8Ez#pf;-|v;8XTL5ure%*Pcy6d0I)5JK4hQ7~uyD1DDN-{h2F=hZRqN z&2C+owBm7$8@%v|Jmu@@>+2dDiW;L%7Ca2SU^o1f+TOzd$cnj3ZtIhjIDy~3gr!1bs%-;j|((DoFqfcZFMK8P8wdUX9#-pwG@%f!6%X?*Igc3Ne`hFs-Li)~^5? zRQ8wB{yEDSZ(fl9tS_7ZOzIVE8!|}yaexx}lr@)c_--A%RuZilobIe|@dQ=^D*Yns zoJxDzn10!=zoHH_qp9f-$Di5Y%~KHd{1SfPC3x)b3S^P?V}O^mFgHchDM?PcqsypI zy4&=~-gXg9sr_2+x9>LW76^5r8H(*jn{dWR%kF zo!t{cc09fR4xnZLM2h}dr24C&f1WwR1pstu@OdB$ zRqmMzjM`JvF0kvvpp0F6d?EsFB__Z= zyF8Wu@I_i2h?&4`&k@sq1%(s!HC_qCVNOMl(n{)I>=;ao#u7kDGOJ6mztGu{6cj@}J0Dxcj zvug0~nTkQJYxQW0L8;F6?AfjUW?~VF?=%40%d{KYW<#A4M#jk?YfUFJCl@L%DM{`A zSVtrqn-yGBgK;ol2U+XAc;7YFkM&oLPVKC9bunp z=4PlJU=~9_8|m%6bAwhqd&AEWX3~Xl`kwryCx2I~D$;imYl{ojI{L|&jQ5<<; zor{Z$mnORJUeZHKwadGQaY(!YCx`rg;#qQV5HhHM&(IG@OFWnQOaOLrMZxU3g%GCc z1ot}q416xS_su2(rk{bi9by$RlMusJI?~2eNP0CwE5jN+f7lx<==0J6D_H!2jl%Io zX6xeW@^|`sn-s+qi0iq~kbWgno-9`2k000`{z^(L)Y%Z~MrjUv`TM;Y2gmbk#_rZw ziK*{N&=OOx)(BWn>zMe&{e-WRl4rL8d)lM8Vn< zm}=B~YDLA;=ZRzc>VBc5ALXYBo11eWLbvQ!ZVILTbQcQij*d-W-u$$}Y8Rv=%(E5y^S)*) z@2{-ZpYP@xjg5`@;TJ%NsPweT;CeKT*3r>Z<@aDQSq#Oj`=r$ukzna~{oBcRdKEvB zS%<_S4_>vNlC=G|fTp#rtE90f7Et4QeW0D7Y>5;8Z5F%sFqIw;2{F)*}?bf|0;o!|Gr z_lju7ThdAh-q(?yiFe3-0dj?oM!b`JUPDyU#iI&;2*d z3_aELR8?2?T3yX7J9ebZ^R83nDW71v+2yR#Z5ZYF;ptr{ES5x}JW<1`LR}%vQ-)lz zst8k(U`Z8v%H#t!Up+1E!hy7T*oCO2gbm|ko7Sg!SHnLuT%fk)~ zPoHi*Dvu^Zd~grgi8Vh*Oj+nxzH8#7 zAw8j>2jN|wYW{xE4Z94Mk6JCKc7$v z2n^hQdBWwenPN%6G`Sm1=S00b6$%Iolh3B2q-~(Q$LNa+DzO?unRyRK8AGsm>87Bd zz?8PIpt+=?O6HW$@z46GMFr?}_~76(pm8y95TF?*o6MfkMz(Eri%h|J{V9=~Xr6eR zh7FYN^KJi)mDd>g?-}JcZbK*)TV+H;AKi1V{ZM6;@|6RDX3nne?gw|T;Q;Iuh?Mm8 zx`?y^(;enbuQ61xwYl>@XlH1(8FO+xz%zLDW6I$B{uDBm5DOTmJNZ8%i2>v{VEa)7 zu;72UA1_SfvXx2Hi#tk@-Zr#GbS_|}V@!ZbdXgcxx)|<>i|H5aE~E{eDWbY3bXBwG zt3?kxm{arLbZ^Ds!Eyg>_ZG=S`N!L9x1trt!NjTYANi@;BQ8=VCcy+&I<=g4??~QB ziG5bZG|9+bc0Tr#E*41|%j%q*gvd#%*su_zSgNytkd&0X=&Uvp1FSUkj|JU7R>}xo z-;mTmxIj=H0I!*NX5ucU3Bn+47!7K?y=RYiNd^ICPPp#!J3tH%Z4owoZ)g1^O@nrT zY)1WrEnzBV=^|Pgx1aSE)Aw0sHMP(KQs61$_&Vh(x!sWV)2C0-@$ms29q+;k_#q#z z;2ePLk;Rcozdds67RH2neE1t%oN_$TQq9&pCl9d$+8CRetDBqQ%0kRa@%0a_#CIpO zmRfBbd_ce#>o^7^NF}00{sJ8$90{&Wa_>*fFKfBSH?xB0k7YgMB(%~ z7r}EkdJ&5l3t`pE792xAazBY?dlRFYLr@dD+}D?;oDN=fnQP+EEFURTIr=p>dxQ!v zp4n7Z+JAR)8lCtlWi8dFT>OPI(xj?BLTT|o8DJ-urDoJEW^F{3Qv6@EiQiZuzmz&g zhcU+F|E|id11q@j7w~F{3dF1bu9hn4i-fK}Fs#atyo*6HO~3@C>+1^GtW=pkv=SuM zROHd>kQtgmCu5ovj#Yc+hv z3T`zeM4(V+$jv&p_>hl6jDt8WH(9h7usl?cM@s+-7M2A+;$nQ|F!3DqZFNEA_xYky05SCcAb-cR4PWhGxBIMy2-? z31$rM0aBSbjp+<=u%0xQU`7Mlx)0gQXu|l*6k+#Vu~N59Xd6&NI{0gOivDtSbTsIwCqS~&|F8xs$OC6F7oyvq_ z!r#Dhmy%$j0A>PoX;tP(d-wN(1HOlTu~S+q8LbMHd20=gnjgF>qJ&zG0_KA^rK#NV&;(OUsExqS`pD#$P5U$foKs1bxPC=Wh9V#gF2{uc% z3AzK-ARNy>@&-v1%^R_O{0$4Pn*-kblCf^gntVupBo7)!cV*`h@(OaHeU8QYp;16; z^4P2HuLS})A==zhwiN3CF1f?39j?;h`AboY$Ry7;()5Q|Ltn7&+?u0B69}zXGL)qR zl8qvb=Qhouz+Ld)9WV_|Ir{uy5G1-bc_+fS1u7rJU%#tM{sCH|A zKfjx$Aq~=n%O|emc07a*43o4U5*5yJN)u_4Zcy}(+U9!jAm%_0Z+46|P^<0?|HVW~e zm}_HpZE2v=ek{-`KUpKT)jZLAZ+hXz1Hz-KIQ8E`X=*0~ot|_D2|52wTI7CiAm&4A zsPw2g)YKJfLQA_%?}@_|&a7ux@|i=;nwxRj`whDNdRU)!{zZpS)H~HLwb99#z{TAi z{`ASx!R6B`7qN#e?Dz2vLxpns_*t{h6`l+HW<2V|VI6Vi9h0LNouBoKCcU_ZR#JUy zbMWugiGyGa=6Cp{8yn~DdbV=$8*u(cro`!xyEu5KxIO&UCo?PojBLqrm&O)|o3g;e zl(q{pfiG>e$A;@F*D?K$uNDus!YT%Jgv0G9#O0HJz?BMdKvTvhO(5l)H)@-lv+Z!{BizEGGxhG7eEmNtZ%Jas zDT{S-;gOi9j}z--)IHMI3)(webS43uvE@7qEJ6W?6auS*%UttoYh0WXg<1R}^c&_# zA+~UpLJ$4{=MyPbm(D$mO8X{T)X}G>Akcgbf#0d7UI;_mtm6`S)cY?Qq2-Ub-RhJb z5aQ>vU4sWoj5MSEz%32;*e_JUWNQa6SYt`I4xYTJ-p#nxLa0HPvj(_Rwg^mCLxyAJ z;^u_eaiBiGIXxc(dk)*j_mWXPoe;YXX1XplAFPq0QU8N#A7aK-GNQvajPCP&4LtKx z_ks#*4)1v^yseJ#`{BK#NVNxcQbJ6N_kfmrM1d9E)si&gOFTa3*e4I)-8Z5n36Xg5 zAi#k}S?HwJc=DWh&4@zV% zeDl+o-tq8T3_68du)_#&7BPfpKhdxTB6uZiXs44MI^I z^v~fb0Rxor3;d4I*y-OqJclNoSB%1~Ddxvde6=;*zrzYTAb0vzByK5}!j4Lo39qMS zesOPscxfu{)Qe!3C|`-P#hOY24QV{FG~Icohi&Co5K@+Ce2&A;xR45?8#n?P7rNJ@ zk}r?+yVWv3zSY3{AMOY9Q9(Px%6E;i{FfBvA<{tjb`(fIQJ9KjdqNQL%5E#1K=r16vEd{(F)yerfkM$>X0{R6V3{}=@#QX&-^uQQ6_pSCL z$S2s??mJ;VJSFo_OTWdbJ*)p&MGc8ZP6A2$yQ8y_*m%pi*6?lki`Ty4FWakg$x8@P z5!$84=7{9E&-Lj#M2^tL+M|1k^*$Hfw&9k0#Yv!tRE3_zoiW)>uhQY_YB=Wk%dbm& z$mUpiN3P*0DZlo*QT=g}XIq#H-8!bXz4&Mk^_qz1D*i@3qo90gsKZ5uJq{q}Gn{TD zU72!vwel>aSl1gI)USnPWwkqhUSk>|Xd{v(tGZ8qFJGaen&iVHf2{v=yIZ{q+`C@-Vr;=EG#3E`3>&*4LArCAQyr^Q5)&f@*;jQdnUyG+% znty?LT>-+k(v=8FZAQBKk3p8@DMy%`iOUSaDsCxjh$QO7D*iE6EEO_nD+`ktUf!V} zZoG@}p6)00#7L}wxMCVXARrEe5>3GJv8+t2Im=Bne>AV8(rg3UQuO-HKrjz7<5}~ZNbF)h!U?v`^fNvw?JVv zFbpzg5a$!Svg&=TIeM4<_OpUOhR&w>vDZ`@2K1V94F8Ho;93rNHQ zrPSGT=HIz4NfY%2rB#pPfv@m0wkR#>9b$`?&;`Q7f>T8jJxE?A@duQ?8uA3=jjmN( zMU_ku@46>%ek!k03?uCuw-NJeA%HH|;UmDVJk#L8{(AX|_tmv{lo@SC9PJ$&OEtWmSQ9l>`ifQfeqmhrloJ0%@4@D`YaIm-CV* zNcz{=_-Ws8gNrF%9Bick@HLwX)5MSkAn7+=QWL9uXE$IHnV9U?2PSKfK|5%M;wMUY zBw0nhA^#pE63%O0+t~U2u;8iY49Y|Lov4#_0U^ks@06HRH+ zpjmcdBUi5RuS5%4nFL#zNDXte-|)nKfsp5l3Er4?S}d+#BbST~vR1eIG~vxVh|9(Kx-Yk%=1> z8|5>5*3J7gF76(K=WL36yB_k><2(PgtuA!V(X#Qx)ZO>ddDvm@2nk*nxEKAxJB}tB z*i^T(E^eE}%nJM(qH5SUe(cE;g(VksXF)apvs6yPns{E?)RIF(Ywh30pk_>-wrr?A zYpHiW6KX@dFX#^(%J^a=zU;CR_y(Ep#g@@#&QH5XFXL(qxi|%1) z9L(#8&kL)Xr_e5&#g}+7AnWn5iJJ^ob6S2+sYqW#Ay<0PcjojPvB$3imz)QBi}a%= zPYh$FOj#8#`qZ=r78yzvqE_)ESYcuOQ4TU|iwTwTN*gb;y$75J%wpzF;}1JGV$U)} zsLpC<{HRE9YCqXQf6Sy6WS6tvNpdT2n9sg%t3cg8Q#sZb3fFB!Tcv9dzBz?&JK{m2 zHs*}}zYK%})Jz9S9(7cFUlR>gKg&U-oED*Sy{M5Y%w4U^+5>iH48e-*G(Vy6uyL!6 z=NDW>N!#5hBsodw9stb*5Efx2pyoAX0#r3BKBeD3XhRZvJqGJLJe28!=w1aBsC3Qv`pJ#~ph`jOHqzST12Wp(*%aQIpvFr6{Eb@TY z4*$psUME6F$DzO-F?W!Toq4lYKa zuPrd%qf)PW0jxXuvaHavr1jlBjs*IrR606n`U1J$vwe)Xv)KP(E6CdJstF4DEv}FE z+SD5Ua1*7W*CJe-E}06zXfBcKe?ct+fLoQ5>!=jV^j=cO)tUjh)^gG@bSG*X28T z{louqk&$o$lIE)`4F$t5@B;zp_7(OU_nX@M_{MoI!6H#mW)hfhg-!!XQ7KX)V{Wq) zFPu!nqeqs6rV#De%P;yy_xV@eXA*45c}9@~e*!QqrhdlfdCA7`sc%Xg`ZxhF43Dx; zyK?`s1FZhGEZ|o}53oFY{*BHr1YOt!0AC@XjZf%)Zc@`yWjaJPqvrcDICNmaM@Hff zNGEPU_Jk5G<*kpmcIwbzddGr#6)Z{qf6sIz0t1pos{zATOGjpcv6*ym zWm3(w6=}Kj&~AU_6wu(GcTfuEh|b0=&jiQ~?MseJbaG*_!+_ajCg3SC7~p4s$1!vU z#u<%_hXoc95=r2bQKe@tu0~kxbXNx)`ttNYl>@Z8R^XtCJX9yppX`jK#MaLIO}?hS z$VMX;L=CwIp3f&ji+}vxcNVN?e9P1jVC)j`e_@TFr-+r!8m<&)xL&?Sh_Qh<{(E#m z+OZTd@P*}Y8gWWCvI?96fB_a$d^`alZ~&WCV8qWcQD{^i5V;W$jFVf5Hmd%q6U({@ zi)4`PzKFk8(0wH=D>rwiv7^Fdlnt3rtQJ+BzI;TJ*Sqz{G|5fbpm3 zV_6|tL&d^*8=)qD+2eWmo>uV#zjRW*qb1EVF;5i7r}ndC1tAipCR|YF!(UP|5;Wjr zO64#AWL!_+*?L>brJzGRfh!ro!}J#h?lqLo%qNX1p$`!xV5uo}w5zFarE0tGOVyRC zqhz1}p$x(K&60ZSKQzsdcYq)=z%>7bOBmxu!|pZ1`6{t2Ylqk{CW>N#!Bx>sYNXM} zA|rL{&2v^VvrUysND8Gwd}#n>V3}yq(EJl&m%x)+{y)$QFjiFwwf)wG&G38qT9D|MLDxAi+ccX=XU!{V6iwm$h#=e7I28Te|{O_(z3U zB53}bq=ZrJ93BT)=#_Mi55veu0!ASIb$UZgI1dmaw1x!}e4s$=pKZ~N=d*lccd*Z0tCzSp@}SEwLCwjf?*ANKnS|ACPh`i*FOB@ z0H&Fr1Wt4Ri(RL3r&(2yvur=F?-9jI#4!L*IhL`k7yat)M{fV{9Z4MH38ZgdQ=~fqa-7%zWC#Is zi0tPAL4a`r-Vf|Q)3g!-ul_~KJQsD{A8>{A7VPRE;*7Sw+n(C3xYoA6pfl-zEbddM zkB8T5On7pig~-^XaFKWMeoa}~mB}{mPIYxUg0QuIRm-nB&2nBw z@%2_$KMbn^61uIQnOen7S)e|%^$w|1qo5&8=a3}Sa^v-JQN?UoCys*~0o_lnjR>=$ z6uS40w5REdqc4j*)SGuNh?tVyZ7LfWieHG2yM0hMJKNz@!YvkM*|^;|--Ld8Th2!T zX?d{@hvUJ4Et%mJ*qA*LXu&Ra4Cd&2l<@4zK<9x&&J2C}?6axfLKHnSvDwXq>i9*M z{OKmF8LCU1Q6$0;lA}gptQRq2mu6@x;|3xAfmaVwdd3y~TA+X&sdz*n4e>{2iN!3p z9NkI{4_&=GoRw#<8|4JzyWEN_H~#d>UrV<#0{Emfqo`tLDpbzLxjRRNABi zaCDeyBD9taVh>M&Myko%Cn`Rqud7zA@baNvQE^8Fxvn?ZH0rI5;)k}8pP#ttBbxG| zMp!W;z}|xl#)L(CL5lyNkKnN3jta(^|4Z(0t8&A>L&=S_VI4Od%sp40;Vyay>dpim zW|yBc8Ag*FKgsS~XsGjxkK)%Pz_DXz0Y~8GAUu8?M?IoU(173w7w>zNEM_JFggoU=s#51d>K(+z6du)P`JqHnB>bwBk&s<)^ zcMsUM26hzz1Y=SbGItr6-3M@)LB+|_JAjMoWOmu7 z{yKHmo3Ok>9FgRDB@*2}UugbW9-6Hp!>r{p-==)-0@$S|0rIU9Xl~ClYi$lJD-Csev=1}0OgsPSoc>e>*Hs&Vc=|-+fU0uCM9e~c`2o~w5e5U z7dl$Yku<3;9Mtm8c14yk+suBiW!FZ&r_|#7`z|I`mF;tx`Snk2WjN`0T5Wcpl2|@c zc`%>pM9|qh{&n1LpUa*X!z`X5k)u64+%(3}19?USfq`nj=Z%dG!?`R04qQMNTj1rr zr8Z~a9|Q-C!sp}spTJ@&M35li|Fyr4gpQQz$sa*tBi}rRijUR2C5jru6Cy#{(MXj> zJSCu|#yU>lugWY?FPaU9x8C|wnSi)k4q$U#<%9kEA~%(PDi<~Fnb!~a86vXALohi{ zheigboHjE{KDxbh-Xe2SiU&HV(MS(_&XJAoUdjQC= z?Ov5ysg8L3!hiEER{w52s0>)SG&9WqhQbkjuH&^I7 z9=d&X?UJ7?f{Ri?(A4j`1SPH-dq&48x<6tukMxqSjI)!oxOEQhFk*Cf`6mVp9|EVa z&KP!gi;MjeOJ^xlr94Qp3fID=AF2lb71#z2qAD z3on{Gn4`=bIRAW`#e`!V++lizN(^v2H%h{(DnQY$s%28j91e&~P-5svL(v@?Kt*l> z*u1`g10!I@CVc%`84e_X-*MUl)JL0z2a?iXMrhm z2!FdM|30HXqDm=oaW9+2W%Xks!R?r zg)&=7)U+eu&Z2af~2%slWngV?^KR15>P}G0*e2o*ybN+ za7#3khh1-1c%f{!=?!XuH!+GeP|iZ5)h<8kx5#X;We|@@x~cxbMlb$gw$Sdqf9_>+rO`?1eQ($e^Aq#E*lc|)17Y3W7+&(0Z? zi%F?Jv6G2M+}(d8o9Uen=HCc0P_{#%9YWG*Lz=l)%&*}SmjkF$BU%d&+S#&lwgyUd z0YXKV#!SJNa?PQ)6z(ax)?{_JIW-Zr=*kaN20KXK*r+x7v#pnW; zdll0)8dhl~?Dju8aVOP-DB9>u5!`}BgQ_ltKtSw!axw+Zm^Gx$VwzDIlb;27pJ!8g z14_FR`8u4XJ}w3fg74B}S}>N_RxdXza-dq6oL`u80S?O$;IK>s87TZu`uiUED$*MR&;tZ2%T<+$hpRa06f^inT;4d$w|`MdW^W{yZqp|tXM<>`j$xYes` zYnpkjha7pO*AE4#Cub=M0^$*<-fT|EarU#a84ly8o4k3{;wj-K%5h0~E$4EcPfWd} zs?RNb!Tbou@u`@cPAsv}LUHNGTm0hFODZ+W!)pLqi}R`*>br%d{6pnZFJn(z5HR+k zt+l(W4=#Bq2sf}mV*ZXSA58hi4iPE&z-j-L|6il(mct7s< zH3M|~n=hL^eP?V%+1Xo*&m&T3frhAT{_ zUi_5m+P!{Oc5!6L;`T-jPa1D_bth+ZOPyQG?z6v$ol#F5zmkRJppW3ohnjjSnz#cV z;2(QHe47?uOhF*L-hz|dm)UeSD#$5-#Gtx#GwSM`$Ol+vM?5a(kW}4|Ouarf1sbBo zJFP;BBSMqaR9RW!trXe@MhLPIFgjZ4GyR5I2Q>2Y}U2?Yaju#$E?e6_?HVH zbNCRct^&!<4o8q*t5I~(V1b~t&7{-@`wXFYJf8B4I@eAKXtBAU4`R_bb{mlCe$Kbr zSkI7Y)QLD_byCDwmbo7KS-Y~9?%8kQoH(9lWC@&$eG1=}k_o|g`E}_C-x%_eO)0pS z+UdsHV3HEv=Kg~im>CzC;~#+?*#!^`JG_Clw03<-Wls#)>H$J)b$QD0p_V6y1ktS1 zH=z2jk|rt4H<#Grn%zu^*+2Mrg#O(z@vHOr;kiSSf22+olSgXA|8n*JS)NV7b=CV1 z7Vtnk69b<(2nmfb&e6Q|%_o!zrK;lt>_uIY=`TXNwKn3-&`#Ws$asJV>H_Hg{{$fM|5{y>7KNfXIbe%S%61 z(H*S5iUQsYr7WPD{iACrAN=_WO!*@PCc_Aw7zCUT0Y(i4MwN-lw+E&C*jJZM1GVa+Gc+IKA4k0nwlq>EObZ8M8OA=E5tug znOr4X$UA3>!K@u9`Ros_wZSa8J;%Hfwz7%m|*_~!2!k*WHr+3#a@Cb{lWh!S~fj?Ay5M?N)c zO(Nv5cP`_)JwM^J2RyH``wKsx4;eA-xyru0!rT&jgyha|T~Hv<#0%lz&mf32OMCC( zu0a}8e0>|jNcI#DYw7&Fz|o?Laz4HBoS2L2EsdPj1ygBk%}cS;;K!JR`FH0i9QK4R zr$yBDlE3K5k&<}(PJvtY&}H!23)|Ovj`V+c`@)f6yltCupz|F{;Ch$cy!@^qG)HYb zV6F+uoV{@}6+xZmx}@!{kf1MsQLzv}G{=CnM@40cy@-A2os?%5M^Q`6G(-n6FHa!~ zkbQjHXSHYSRFEB)?+YQzW?Q-vVUj9Iw8|0fzW;FUzGiirWN43DMEn-{vnI9w-eSt; z*!9f!73#=XSX|>>RHgZ)SNfc}QkjKGxJ^9YeE3+IryG`6fl$9!S)|QfCNgU&Ra*CV zgkFXxOKnfN(c;jyKqZyT4L^xUJPdr0MO*MApVwkL46M3y$HhA8R&$uPD=f6pQ6A#C z%K*Y+erMQ37;eigV`j06S#05V67}#RU&zb!kQ32a4*0>TS(&dUXCwpc+MevI)Sg23 zchtulQa@HRqQ~AdC9_qMrt<2^c*E_kWa+@Anx;SMq3bZR!N%vA_wfLb8jv1=56#sn z)5`QbO!xXXTtCN91{JWLL<8Q#&(MUWTu!(XwP`b~^OY(U%x1O1_(K3tLoPlom3sw$ zqekpNGeEWVTiXqUWcQ-QciZAvvJ2bJv|D9>Up=}Pz1U$@xApnu$g1s?q$BT4m+JY8 zL+XnvU$RV2<8aU!UA zJ^y+zs9Peax7|KR@ab*4V_6R2r12E;I7$blgA1ffqa9yH|4N>xTwbuY=`yAaj zDvMk2t>L|P;`NRZl8_UuF$z@|BZ<(Sj|yKS5}Omy^Q(>4CjR~=O2c)pJJY_uj~2C| zeBxFwE!(lfMphT|=at=TdXb}(lbCNBK@dt=c!L1WpT`(%{oYU`Ed%|vO8KtsWFI{w zw{lNSo+|55d0Asx#Dk{0_p9#Ae>@MdO5O60C`^(RL#uZ8-j3U&PUg`&Ym)6>f6v#m z*eg+V)i}H-(#E;D@@`Q1abu`)toekwziy$FXD;~uR1>z>>wQOUDvvI|85|Jd(HB zZ9A#BR&g@p4N1j+8BRXuZB2}(mM#3P96|7+IjYz(bE8f@tRQQyH~X+@OuK9kZBO1U z#HTjMEqt4EkNo)2X1g> z*-S-*Ofy@fn^`f6riP7eY?I0AAloCqnKSefo1wd(Ho;#H9W6778~5-4TC*F^6b<0A zA%TE%R;qTT+MCyC>w2O^KH#8gJ8GxOY=KwCmJZ%z{U}(B@$8Ox=K!?-7;SOZ)#?jz) z{~q=vbiXI}{F44d$aMVz3`_644WSqgp-YC$l>LGp}g_zhw?Xzjd#x+ z$G3yn?0+?2jx$r=bxff(*+6KTnXErQD;sa7^TlXAoZ^*Zs1F3`cnfWEIrkJ$=cOw$ zWx;Z1S}EpQP%@lGN6GMC%!$`L?IIiL5pAXvLC7Q|fplM|PmL9151-qQ4RE07n?-3_ zepGSV&>n6b`H_gDpRzQkdJYPBR$5vj$2*unGMt>C(y5~MF}J3`M|SNIGaGdp`}3G( zglE+CL6x^@a_Lb&1>h`aew_+=;wfbv{nFqi+N!R`Qc*_FHO@b7)2;YNn#I{uE1ZC7 za|wpy?S?U4TTeh6rbXVdIjGO(x1loul^ODxNEw+e4{^DU!(c5qRr0V^U(KOp%?gNGy7&0#Z%6|V z^1PD%A5Ye2Rvyg&z1Gqk2^{9P_G7q4pywQLSZ;G;Bm1pMxi~-~w{u4Cj`89SES0z!m*p7-5tH3c)hN%f!6Q>yr;ajwBY^?3%F5Wrx43p068=Z2>IlYpac-m zqUh^wde+5yf>n`jF=U??H)L-Z)~GTBvdsP}i-)$?j0#@fM$${#S3?tT1g}SB)rU*i zpwVB#=CPl*utxTO?j2|6Qw7HGySX*dJ;DY(GeahEq8!ZC(gn?51wX!sj-=*e_%=aB zwS0e#0+Is>WH?D2PoXC4r5%lpjy|MhPo=WuyX$_-?}9%<;~MZ1K<|}*UH-&f=Yr2n zrGUovj^Z8k$iEyO4J4CWsHF{mI;u#^anXXKSZfS%mI()X_+pA!@Rlc`zG}XqkLx}N z=wLmHdj94f4QuH)$X}?wx!qK`U;hPo;eKb;WP+k_W{8h^y7VOH!OM_q`#?=T%`(v8 zYd?Xdr5rWWpe4M5yS3Yj@j7Aq9GZd8Ds<~G-)A&$ z7=gX2?hIWPH<1tJ%#C40XSMg&SK7%7G&i5sx@@(ej5m)gqupEXw~f&d53Y1j9D|WB zYSq(cq%6%)?MCqRkZ-Q|?4J^Eb*`}O2tTpdx$Di`u$~*9O>(zNgT&F`XwspSCirV7 z)Z5zwW8yMN#JVXOPhYqbL7vvcsr7Y7df`MEkt+Cb2Wtt`_x9=XnbjrI+lZQLti+LT z-pR{nYBWA7-qF)D^@rhHXq0Ov2O{Do?&04y$*$5C67Y~az-}aY*fo3zW9jti=j9nXpY2#W&|A}6C)(fZ z|7KthO~tI!=6FCBM5IENZN%b?8vmCvR-WXqd<}d0UOB(iGCzf*^0g?@pTAN{8?9}Q zkx_s5%8d^^zQpW#7t`|dmTasRd?<&CB}%@MOZoE+Vn0-C`fB?+KG=frTmEMeT?TYe zZl&G09z&b$2mh29&__4O%1xhVHhWPfKH5a$V4R@udOzKUU^mArWGG!AB#a(*tTeAA z!jzq)jrHou-o<`@zEinB1>wJ*M!I5DJZzB4YsG+Ic?V^B_aAvQC9mQOP#(2atrTI| zwI8V3-zGKdH@LXkra+QsrnuTKlW?f;+v4=huxdDC*|SXxn86YG@t{U_p0j35nI$u| zuniP`L>Cudg%;RDPOyOh-z%`;uw zb^0H0kWhr*s33|o$xtsF2CL4i``n{|g7u?SD!^}p_%Ez!lqy;_yWxFJ51c=fk^QQ~ zfDQ)VAjL855dof!$S+}lXXDp;E=I^42rx*1EkrST@sfGVSh`1_abh_k@?3rnDVNyh z#hL+(jfh0?A64YXpE1W;AnFUZVu`Kn;hMjxh9VYDP_zgiJWy*k>?5Djy)RtiC!YK@ zQp1#y$I4)3w_YpQH}A;p=3$yNUMToe;HFcIcqqZ(w3MLm-R)RY&&h5Ph7<8&?2Oa; zh0J+MK&B2kB2-;JIS?kT@s5kmG&vcvd_v`{&Wv`EO@712^HxcX;}^2SiH-9T$9v?u`vu<>R^tIc#Q*B? zD4#rTq(sm?!uiNpsX`77I`~sxD)*@-&md}=si1g>L}bdFRY-xGoRgklS51t|MZI#` zir(+1{-5z068Yvs{)yp2{KYWMb30r(+BI(yB=Qn9QB<^P5VFM_oPA+8xq*sD=OsriE^rBL zxC``QMWHf^;o)iQ=-)2>iy|b44l<5=$J04F4K?D09H=xk&}wh+*YJIA8{las-CAx;bJZt+)z;Vz&&(m5kJjV{%B zOW)ess6fpkwBwN-nuxJ>-M{xzTlD@NbcgJkwo*H2$yKP&(Y6?qZE$!(x$so&yzP)Y zwZcCua}1C~?2`VVN-K3tAS~CrNVTlnqw*W6II9*=iVJeHu$auPqvlHYK-E}(_srTF`+CkCD(D>wQ>&*-6iWH~8EavG1dqj|wtrg)c7)`&PjkYx{C>BB zMc7d2_s<5zx?H<#id5wd#*biTR;Am)M@^c>v9_iGuSbfe=U#>gq&^=FoD(G8&E8(5 zgW6lYP|+}1m-wpso9+xylfO>@k$q6yj1`VkcO!6eZg-DX2%;EOWa{uv+Qh}dBX_Jk zC{{kGmD!0XlJya#^Hdw_-uCYZId9l~g~ERkO{p}x zvyL2S6E^B`xH|1)n?8R8SE&O6&*#gsePmjFl&dn>1M)PR6f_z&*oSloAKj)RSAgXQL z$?eeU#h4Sb>DBJ?r&1Ho`_;++(0cgng#H^nNdx;NS22Ri^he6mPsZZ+O67v8TC%)Ow!fLVbICXYagS8aY+Yy*Wo z&i{fgH~*bz77)G)T#&!P)=nP0{{izUW}cX~{|V zGKgS&b`}l7wj<0Oxjw$dI)hDfx{L*Lyga*~!TBJHl(5dnf|VHSV+&{cP9`s{Wwb0q zTbF*@{U%)Z;6_k)@ejv>R$>a-bd%OT)E#^Rhmeq;U8iM$W^=-xE(Cw6j z-K(*Wk>_&IE3H4d&p1QWsu|IBS&T(QIY#$MqBFF4`1nE5g`0xykU#Hj7%--Tx-%~m zkh|(C{Ox__5o`_AxZB@Zr|SNSn=h__CVYF5ts+!-(ZlZFv2P*SZ?}u?7_`Hr?s8h@ zB@u72mU7vaW^#2a0sC>(oMc(h9^C(c#RrmI6uE-ZUen2{1ycYVl? zg>#avx?4|CAAwFi_XK`@fO89f0-QUv5IZqSEJuBFsH8C2ziKHYJv~-^=R^rWBk81~Hgtm8Ai}PuYZavZ5VX9r)dKT-0Ks2fn?NrTWTXUudt2DQ46!Ny(Xo5Aa3_UUD1rZPuF zL`sDc_Od7H3~mg_r|C_;ZzrC?l87CXi!h>3IKd9{jJ6dD`uC>tp^&Vb^DNF%6e1W4 zEv4O6q}u!3r-n25C(Wsk;y|u8)VGloclBhPx>l|B@XSTU=vF$u%1nX^8}Amy+aFg& zA--63Pb?#0v~sKYN#&~4GFykY+q>*{J?h03^Iaw5lwrzn5^_(EAeQ3DDg^9>&4(Z0 zO;+ArrrRF#$p*QEH{-LG?cYr6+}@RUA53U1ByP1CFk>SY00C&{!kUqZ8_vUG^b+vNm)p`bZ z>~Zm);rJo1nX1~}cHNEPiM)0LzAi{(`*95SPMe*h;^iPCuNV0Mq&F;{es$KjaiwNY zdFW*C($!M0gV{sxQE09tq?#&s(HZ~!`htP&NjeQ=DOxwul8PT@prrII6X#@#=`p`M zZd5#f3sx`%Eh1|=Y|e2II0ai!G~}5;soxczz+HLfJ?Z}adrkiW+UU8+OaJJqi=@hQk)uG9cUnF9*^y^!^Mj6)P-!DlPr)agV$NtWU zJ3DlS7CFmFm1=G#1-E|`GxV9CF;_(&cyi_ItvQ*;hr_eR3PpIa8eOB2c@{o3GB3Sq zX(i0*=g2A$>N*S2Cl)pxc`0*pCTMurK&whV&CWB<9HYpU$&U(@b$Khr7MS<8x$pp3 zi0}clc_?D5XjA!FuCdQ%S4LVB%CIYiuu8mD_7XzPd6_@!+kD>A6$=DHwD2e}V{P_y zWEvU1*98XzY7BOy$VvjCn~!o(=zYpC3M2&7udN{=%hC;8$Q{1ek$x4L1~5~Yvp8;h zlo04eA0au!OM*+j=SJSU2vnK;mK1*=g;+)3kXKs0{8l50P;`p*a#+R!0&W-ifB=yS zBD2UV{}$hdR3)=dl{`BSwbvxw!2`6VSECYEsTqRD1Dcu(D}u%UO*E?+E=$_~lFksm zT-}IY%~BJOFoBuiaAzg|R0_eUI6sKLR}iHiq3)>0f&n}_Cin@=Sr~Dp-T_HxcWl-6 zX6^vv9*~FvD}|ywAmlJYXgAO@{e1xND4{G=6NXh&K-96@7rn)AzX`)2zHHb7zv`ej z1O4;!_^f38UW-Nzl_onJf+{y4^{ia-1<+#si*P^ir9)hrZs015gA`yS0q$&xX&)b2 zNT1%!lF4*gDk9*g@~5r5=yqE{k9p%O6xlk!J5IxKli+^sfchse%ba^;fxAl-bAhqu zXlwi(804^>tBiK2XL>WK`Sm3p?78wGn%EjxejdF}khC7L{iYn>^WvYYfyo5R4#(NB7 z@?YrL*61JLfbVV{kgEZm@&Ob;P6>fCO<7799gtW$XB06X9nQAba5u$EIa(&doeUU6 zVS_Tc&W@h=+H#li^KQH>C5 zC{{rQs~Mt6OeKi(dvBT^fwZcCNt~}Mcy0>J#lSTRz@Y=+SMw(0r66Mg{ixEFWjdR~ z8BN>Dh%-4I{scc6;Ux2+cieEY9*vD+vnpH&A;G}A7uT`UfEpg50YI?da0lpee+^9{$JbreL5H+yz=1L0oq_|K=QdV|i_qA&3zKhO ze`1$;PRz~g+hvTjx?`V}w}%B|-zIahVs_58WNX=t8XBRqumGbYmwsgc9$xl)@Gt!l zv;EW(HTdKc>!)ftLk?)vJ%G7$hF($t4v8HDfv)fy`Ug~qm^9Eli^~ebGQ~{7Pj1)PNpe#IPZSA~=qf|4OA`aWSOPB`PztwbYHXNC^Y<84OKf9Lj}q+i`BD zdTS;)cGen*eBr>^rxEPju`rj&C#LDh&FuZK`ufmvf#O}TU zx*eT^ADQ0_$UhOA>)^^1hxE4Gm2WAep!XhOOg@4zfeW210mHAs&t?O!10MlDoh5(9 zmucOVrtofc_}zEO8p8pOKc?$9`R>9xLO)P1d}GkKx&M~HjmSW%QIbfhU^YbET#;9j zDIq+$e_UXzWj(gb>Mw#BY|uO`YK^IcF_p6k{^%r^JrL3Vyr^;h)D7Ccm+0d<*vk5) zr=e*6hYri-kJDcZh6s=A1@FR4Qq6_w{A|0w3vCRLNXGF+yZeDQ7zCZ=zlnA|0SB7I z037HMTZIJSOE{o^S`N?MMyLfBa&1KAVx=gs1EIA+tGHMz<8<@Ed{N}31Ut}|Da-`Q zEP4)Mf*PBUGr0Ng*9f@tSrcCCPhRJ}X%K(J(bY%!qs~rgHfO6K>X5HK&)9jecox3* z1um;V?hV173t9Fd+;$FSv5xqc3-FCpPU~AJ)rnAm;4<4+Q{yO@vp`Tr7=mq9XwT7l z{#IrTvS0>I5DVO>T^w26X6BuBp zfHcUpz{$LaGqYVU0>@PWu=C72dePY)Dt z^!SVTZ2)4HX(Fo7N!YA@YkBo5CL=R&=Bd8&Z!nLw%+$xqimL#<3@J_Cqfc%0pF#~d zm}iaMmSJ?Mm6Dh8-Z1yI!-ro|qxq85RJmsL=;cXjyE3)IJ*Z-@2prZ@tC{y=t>8_?cQ z@*ZonbPeTyNYH77AO@2`debnxbV6hb<`o{5oXMk=G{@R501UxOo>)RMX-j*_rh|HkYcSKbBbimOjuiiyY@lL3H(@e7@ zcow*}>mU%2pw-Y!861(wfrzv;fk^U4q*$!0TUD0#Jnr4^uLwreK!86c!p>}C6-Xl) zSVl1A5D%OuR2PHX1;?;=Q~pKMt}b$jb4%Q&s>>|0{a6tR)6KpkhdifPkU@ zN7-A)b=f`bqJVUFmvncxbR!+oNC?u>BHb+wf^>IEcPJnof;7@8APr}IeV*Tb-}juo z_vdr|y9K%LwPvlEHFM21vj~3_J~x0Dn8rIPxPmT=de+Xdrse;10 z;S}~We8S6VMr|#~hfA`4EOebQ6j3C;(Ahs5}o zU~Id|%sHE+1hWD0AhA1=ifPyT8&S7lIQW`n>Lqj+UY$0!DCTTI&OSv*6o6#&30&z! zX$pDCPtvTUKR2aMmVz&r+C$#(3P*y3Z;D3L7(`XvpWVZ#biRQ;t7G(kMT#h+J9?=AHe{bMg zfgHX*D0-0FxKts}jH=M^`HW26Md1xJAcU~5@V9KNIEkJVB}VxonF8v@PkF$YTf`tP zc6T?}1iUq&wT56?T#yZMhn>sF^amY9jzUF!{X&u{ndkCduTMu%0adDyg2X$B9IFa( z!L@jl?%*v0D`xxD(4`O?_9u247tbdwBtNdG#L4@4vf};nA?L#{Oo*3=jY$Tkl4r*V z2TVzL7SP#RkF;BP30uhPIyV2lXMGn8`jfGIAvOj*$tVda6JE=V0!$uIYOQyyg_OWl z)pP)EDUUG)k$K#?W`{&!~2+|G)px+|DeNU9KrP(r}*! zTq^+y6j-&t{Wg1TWe`IYjAvl$9U}92Rz3oJl+i8IKtTfe@3=?)9rtubo;Z2zz-lp0 zuqGih7Av%-g+&F?vTDOELo{r^s)R<7&A0UW1#dQtlofKqA3a9J9m&N*n|EX$rb{B2 z4?(1qYF*Jt+||_I=SeaLdHs!O>%LAqZhr2lU2qjcL298ZIr$ZSynH{|v($t=S>_SR zcA?`K60Q1ot7?gK6kr44-~j=fn;`rsKr1a|)3v_`pqhXq!^o;5@v*gsf# z@=i}&9Ge+CnS-lo==XpoII^oZ)y%vg3;<4+i1yt(j3qLY?zbXeTy+Ph$2(Vt{>)i?JnBffh z?e)nxcV+ZtD zX{AiK*kYqHLUL_Br)_An6*miPSU027-HblVdn63)j?CMo zAhp=9PTX>B=k@qv86<%c`BU2^Fj$#ara#SSW#iC?Y6j_OQ_3}*pM6%28g%?^aP98Q zuy1WN@JR;g%ddl=YPoB?ef5}Eooh_7`Yq-^f(J|NUkBgMfH;8{5+|6xH48Xx5+j_M zeC9rwfot%PZ*ny_=4WxX#EQd<(zc1f@sx%Y8fP1pO)hguM-kh-;Kwyt@8^Sxq3VrF zPf2~oHTRSj{c!c$%*rvwn2dNWSx0sM{qIpiw<8QGn3{&_;#)gK8IhFH*a4z8q3hQg znEPcnTjr}*VP}`Ta-*3K0#^62bf9<)Xm{lYO;)7v&k*gtN`q{X3O`>ZVKiyh5O9oF z2UF3j8O4v^1)1XQM)2#BPx%E@NHoBTe0s~_=u~2JsZI!ti@&t;Bu&L9H}Y3WYzsW} zh`Mu6VT=hW*N2<#h^`D=H$1|Ecxj>?&%D3bb$vi{9Wv_sYU+3B*{9ZMf;0I<-k<5W z)!qLSW_|2!e4-NtCmnwL>NlAO^4$H+bBV8By6AG|)45vrSveA$x2iVkOZX3=d@LLf zk?i#(dLq2UPkJq8o641pdM-r9i?syQ?u;C6<^s33qWym?vGm@JRrM!B392XTc5ILb zBJU^Ae(r;WJXW?H)ARfWR+xCwmUp7Yh{}jx?YsV!IH~CPA<6r z@((Dqr6BIpTy-aZ;9_pR9F&9KIsFtB8y>#J`gZVby&NSiGX=%HlVq0+SDOveb=wb% z+mYvavvOvTBO;Jjrg~t|Y&~z>dHc|d#}PlcRC6%D^Rr{&Z7%O(Ls9k|$NMHVlF?(s zcd#8IMI}`H@D!>MQquPPZ`1IDTj`k2c}RTb$p>eqT^bHz zKI_bwMedm+?$hNx89>t~6l5ap%gDf;BbaL>5<95m71yTbE&9!;$$u|EE#GmVl}#Rk z#El)lSoWL`RsAT3^$m=jN5iq3Q{UoO165?h#aaq#_jKGDOW2qmJ1rakvd8;dKQ9h# z7+-j|?t-S25ZO2Lf#SNhSWehT;Sd}Mi#JgN9KF{QA7SUfKaqI!)v)_SU^t4r=nKfi z;xbq7&*br9?K68VwxSk1o+BMx8BJ;?D>GZcsEB5r8lO;dDi!cyWAZ}xWaLrH#b}b` zEyjH#G^)4Nr_IO}jdd`1yOX<(cN*$yz27+ zv(m@UUo;!qi%RC+wm;&6JB#m~-x($w*hJdKEbdbJ-B+xPmHn`99U8z{qT>skU5+9Y z+`+F{;_V+=CPN`&I(J;({DCyQJAuo5H_OT)12n4gnfD9;*-cy@{GFfo6$BwnTHB$^ z#vKQm#b{e7W#k#CcHA}h4#VW@BH8u_8>=smsVEpw<1cg1X zH_u?{S88D&=2}955LoFK;H+R+l!th9GEXuv49RJ;^q5vwRvdhMp%Ds`moHpeNRdNe zxYAL@j4y}Bpnwm=+g(H?@zt&3=uDw&PvySTwnEiO9{Pcz6$)D+o_@U6%3>`V7&BlD~IT--XQ<@Mcg5g)sFm*%^} zjt0=y=Qp8{Z|a}^4|qoCe1CqT?;U8n{+l6*GgAoT@e0q)slzN6}r@o7_42nlzW)JoP2J-*rNx6!w* zCJ6g8y-#zbb85AtOa?GV#4YQW-_fMY<9g*K4q;*KBKK{JZ46$+8tXkl)zK3MRtga; zC+cHqHawY*O&&{X^4ySug1-CQ!fzRQdvG4X1{OEH9KracZtMo(8Eqn|gZi80v}TBn zGlZ>+%+R+TlW;w$SLXL-nZ3fYjiE)ZLxX9{vyTb9_HV7we3++;GxGfDPBK{d-;!HL z###LguG4g?6_!=npUoHwLTKvYXmoz{+v2SmiVw;xiW;$$$KZg0o|skur`>D4TLr>E z$IpGtO2-?slb4uhmuOol!?b@KmG-Fvih&RL4G-eDvq9X~*>SnqzjCoNUiF7(ogC^C z)cCL%*5)UZr0?(Mk8odvHZWW8?*0Aw9@mg76jD;E#Qd5!;m?(>_CCQ_5LlT070tHl zq~U$NmAF+_BTIWv0(}?A$eN(FUVs zR~B>*FTIa`maQ|tCOUnbwu-g za%G(eYb~6Q^Nqm9W)#IL`pYg^6VI;VHh%YLyO-CJ9aLB7-v_q(*t@muUy9immoUjq zJxcA?vrG_0aXe5Yaz%TF%$imrq_*?YziZ{Z4OlM<$WZha0X%1duKus4W;@}9+>zwU zQ~Q%5RWt~u(UXpLAJ@SggIG4Q6bVkVmk^04crwH zgI0vaJJmSGB&XBg49*k>`QEP1?>1jV$GyyxBcNzsoWrBL+B{nxe0`|c-2YMV=+uxk z=4l}^ z6E*M*e9}#}3xY*W^e<6SANxM2eBs@)l`p@j^M>N4)_%EU4bBaYjY1@{RNRshc=roS zrgLq_3thX!s_+CI@YPAngH4WX8&OJJm$mO_zhD^G4YgjXiHlVW1wM|q%CiVCO2tl< zMTZ5|{hPkTBXHrtD?jdgv-AyN+89Y9E6^xqAT?`lMy26hZ!_rNXru8{dUWuI-?;f> z7Y3%u=}A{%2wW(dZRos|U1?uZqbBaeal3XNaJkc#f8^@j%2lJhWSVj^J;o0=wP4Vtm{a*`i4>3kru-L`W}<_3hD7qm zk1!Z6^_;fz@UdUBE+(&ql8g~&p>h+Kt^*RHC@ zr%;4^B3>d*4r-9+ zBp87{FQG>AN|$41e}eQf^s0O1JmUI;Uo<+iHA5+;o^Y#Z^v&=`twohADhLu5tWrn= zL4yAgiUt`HxZ(&P4Hx%))LqouA3ow1XynHt&eS&brDnlPrhE)#*3{i+*v~iH?^wZU zT;%N=T2kHIKf16T>FeI0emOJ;P!LB}F*7Y`7;H!mQF5$E3-W$Q4l!0t1LE65;Ah5) zka4w#u<(96jd;ZvAu5hGd-m%^q37%QXu}F6okQ`_tfOn~vtZU{!pCF@0N4#*H zzJCwM2cJtN9JXO(Gn+9Y8W2<`+dbxxtQiuHX2W;>@AB!GaF2K$X z`5eSOXJxM5fEJL_fR*)djJ6VMG;^?JVO+*lf-#4zhVpU&K9H9JWHloAG(kcT5*0A= z2-ESxQIJ1sgM?HqGVGxEG#u-vj`)j9bP*A^LgWM{{@IGyXZz#C0bv}2{cc#vD82e0 zpL5trpnRFH3k^w+c+I29fE4~07<1F2@W#D?QigsERHnE{*9-*vRUss9XtZcL7AGX%`9T}(?L+;{IU7XDnU7U zJeIW5T6uz5O%n%Rr5G|bG$UqwG$WH*SB&4ELG$q&7MiV$oX%A0R*!Qz1jkoBmp|fd z;T+6=G$>sw7$cD2hjtGQ%R7naWBzB5N#61j`;d`Y!lB+P*3kg~Dxcbgk zkD6q)GzHeXiU0I{NicIfhh6>{BPp$X+3~*m?i*2U5#oYgn%T{86K`^?7ck^y5&ksF zlL$L;;L4m*`J`v=O+`*znrrSEFoKF}=}j@GH>T`qx;Sf*p}YkKyo<*c2UD8YGRLua zC%m%u8F_g2fDG%mh zEiAMv#JdSlQ$kFLC7oeOQ3S{_Ixuh}&hY(>S?adVSFOe2HReF3c>Rsz!chDgs zIt?ClkmPm-ZDUV-0tp-YY2OR-2^ew$wzYC4uU&2qQclviNEm|enf&=uftsSZ&-Mt!!W zv6lHbb9|5bGwfa8v1`Qjx`eV!kxRueQu}E%!L8^4vrBT49LxqirHkgp-#nVQj>Ce0 zrdcy` zpAD`^6;;lpD-6zU!R%&(4@7Q1f2HH#MXWF%KQEDENV%v$E8IZuG;tv|S>=%&k&Q)c z_&RjPy%)}1KV+@Bl%vf`{ra7P$$%0!hU77&=ovQlMxtyaOr| zvhsWmwEKI>37(k;N1WtVN96|!e3wvlp_u0x0~Y7p^~l8#>wGYrET@pO2Inj};+nmC z&VJCPJx#yqrzt+*;;|s&2$=69p{&Sdj*hu03WaV?C`^O`;jwX4Okc0e=grX{=Qb-W zh?>RGa=u-W4|KAYWn+YXcmx?Y7DFT-EN{`dxBkNgXnMui7Ween8py!x7!9gG$g6p` zV?Ax%6AhL-!V_E_dh#qZD-LyaMP;+`qfY$P*c zcNp#+R$nKan2|&g>*qQ1D&{NfKOa#gz{);^-S>pLo}kDwuO>< zxac|J!M)Mhb<*m!Q5&tEDjlEB>1S@3n z8Pqjw)s5x)`=hcjt@M<7n(wwsoNcAF?$n9$?Q~enF`>P@le~*JFI_V7XoKwB6Re7t zdwbcjou+g^@Tjw*eVK6gfbX7m<4!5$ITI>#rg;t(>+mxI3CmrNtC%w*1Mgvb_ji?i z^s-%SbxJVa@!`xii(2I(S(bsOme0Mo&@hE~xr#}QS<8@&4_UYGTYb`qWFoiIOP|Yi zW6yiTfQQVu&3f1|)iDDC)e?_LbfP&p3xkxO0~z>40R(g6-FA*P(Yi;m-~T)`cx0yV z$dDZyX=D!09T9JA9uHKJ4tIsbS<_SI2MsEJZ~K5>&7vS%A{3k8J%0fI3Zwm_GmiM8 z?S%~h^VjO*mY$CWbOn@8Z0wk-LmbTgKN_S+^6?OtgV$HJpCY_9lY#c@%q=0z14)B) zmp|rDa2v=+zn|2evhF>X>!M~*RWxGVfhOM(JB{)6I$)!dx)(i!{hQmg*{x;i12QOq zcpEG;PvtH?hnMV%r~PGOk)E-&a$oGd#QWmA&w_vSC2I2uFP;(Fg4;rm8CQbrs&{i8 zBTsd6nV0d)$KnVpYrBvDcKD4(4*oQ1il>SnLHgFoYVz9eMB2Cf>+E7yJ1DB}GlKY6 z_d^qUm=a$G_#U`#25DwweR|YYD~rn^II3umNp}6d(Iy;MJ%AXicW23bjhB{ZP~Yfj zw3t!r-6yt7c_TSwUT6t zXaruT)<=I+6?LOST)2iSzyCmIzu3&(NLKy4v4qzn2XIL8RReObCI*l+L$7l~GM^n* zPEoXQYjTTIql-E$d|?U%_p~rtfEC>>AU{|;>NO5AwfKlHTHCTa4xXK zJB;Vdxz#UoKy05`L||{am{Z}9g?Kj1e}SYgnp!e{dTureYlQHs#-5$dB6gWySu({p zJR#mbB}K%aTG?*0zBze*aU)1Tp^PL)p*H4hf28{LL3MHS+{5{gB=O+`%*(EnB9Ag* zp&_*vV^3uh*Enl7y6BVefJd33$&-O0%C9reR7ADnghX$>3@ZNza(AdLpnu2YEA3Cc z*k6#$#nKo@rEk8s!O_6V6XNR3%tZ8q&Ed4#UOkl2;KFnI+&=5{B;oG5>p6rz@`v~K zV^K*W7c?ZdXYAp4NT_=u@bQ14e0YE0Vr%{jtdsJ!E;s7IgZl4q-NvL>$77PIOAiDP z{*nUNO_Tvl5U`H+Jv^Tv;{i0?;SXC=?RrBaEW#^gg5Xxq%|HBpRID3$RlRe1q$tgc zr^MkK{`+F;;<`R*Wvf5eAY7k#B*Zz~S+beD)HVCVN{*Z?W@4eO z4Xu8odu;lkkSrXXQB;{{BY6Z9S((?SJ*FND+ePbfmAbV;vhe4D;C_az_^bW7p8MR# z)B5qj+Eq656;2{=+@JNO|5E?rdWkJ=?{YPBkg6zR`tG~PCAN=3#%#||oIlsuy7f;H z$;1)7p|*)_7=b3VxLC>vi*BIM|0WZCdyVfPBxt$;<=9Y_FTE8|er;ode~*khSA2r2 zEi*;x_9Q5U#LZ0qzKsJnAmj-u>4VKz#4?LVDfg`$g%X0ncU1_*_eTUS^E1^|-R;8tixBK1?@)7v@x>5f`C@7OEd$a>3FEoEHb(?mY&c*V@@%MOfMVl9 zwshmb>0DKe{P@_%jJID8j{X5_WELk;zO>wW1pQhk#D|UJH|dTj_o&(UtOQ>k6rvmJ zUz&iW^LQedMkwxbQSSmR2;rSp!_t^WmR(zI{_H&0`y?u!t|8u*}p@R~w!)Kuo1(Fjy05(VB%{4*eqh17hy%0Xv zw5WY+$gZj>2S1M_`*vdq`AAy zFCP;tkt(fKPyQ0eW?vuWb&_j}r3rHxeO(s=Afe+q|bkzC(zu^EM0vOwc_itY-&yR;2X`h2zd{j(gL;hO=)dh}EO)rQ)(B``?IvexW?|Y;wPVBPYEXXRwP<8W#wM3IeT2j}-uV7W5m)S7O98 zX_4e1EcU&NR{6cUX&$PblTvp5UE$QoubWe_6vG>fnpQj^OPk$ zHJFt*Z@)@~X>4)({8on;-(H;AyF&v{pj3?m<|nD=d*d<`|5h0VNP=@oQ5{Uf9D>h` zE*J7)$5R0#qH*Z$ZH)eSwMsYq>qaAq-FEE7_w2NlR)o6EL}&Z&9(i*HhM!(Nsg_LF zqcxF5^qCYp$jdfs1skNNZ`98(b$`TQQ7HU1!-xfxh<3{68}M5IUmk$Sd$h^GIF&$_ zU|&d&v<0X5<7Od~NmA>W%2-X_xvAc_q%R`JC=BPn@@8&m)H^keLz4YOl^2~zOVhnR zPO-Vy_86zjy-fTk&D`YSM zJ&Z)B;VKP%YoE`Wr!sQqBY#=@w18?iY_wT$h}5f|uis(l24!KYk_v$iYb8OcOh#gFdV(E< zJ;4oL?(G0I4WPl@G_Z-tp7EAAol`yb541I-mRaH7F+fwuS+l&aV*jn7;cWR$@hf%N z)$LQRPMc}PB2i2@b2IID-vl(zRcVYfI}h(Wq6#37HBNvHxaiLaKo_!5$XXTgW~U-4 zNU(q(MiwT{0D^B0NT_L*F~7J(elT$+s1e*x)4~duy#m%_{jEdH0>(Vm$sgaz-LeWy z3l!Ix&%C6AZltGkOvYI1`mvJfR|a8F@7@{^$o`~ZN=m6g$DSa9WFx$gCiNPx)-}!a zZ@tZ43+vhp!F$+5psxsRzIqn$+xh%G?g!ydk-p8Z0i+|lQ*^vLJAmLeYD?)0r%6L0 z7M-8nFKuomH?Uq1SP2Px3Wj82lH4^vZSmolm>4rFD|l+^{N8GCha3Yg^5_re zD(w6=tI)wBqNltlfVj-Yz+*o4a3_@cto!&F@tEA8*cAkDF@dQA3zh-NpApiltwIDwWhM-h9HA z9UMG$;RqEGrr>vl;wB*(rMO~Qoae=w`RMD!iS6j<>A!;zX69K_m}6_fNn^?YrbDb) ztVa)Ey&Ir8tQ7QTu^At(`3;p+@T(=TnC)J%Ls>`(J?FlK-@t#MG%rj}+`gA2G`wpZ zs;Y0U*`xGRFcOTs&6@44MjyO*o3~1pmIah#5ixubmsQ1nwKXe^c+bDlq)9SS!zw>s zc@oq|oVjgm9bzHg{#rK1qs7u?AdZ#1$h6>)4HT!z1`mmuM$kJ`H4jkLhlq_>MRulbSfVUe= zG*M|bkS!J%b?-lsQ^8r;tbWDl6Y|C-jLk6mwDjvZZCNvPHuHpXGM7!vr}()o3DNWa zqKeH9E%>WSqM9%>>9NiF^Wv<3J0iwZ*H+@61UF8Hu|v=v8JW{|+(Vk*C}N*nqm)`4 zRU*%g6YSt)Vnp`Cl7(lD?bBPnD$C`IAkA?#sk0Akgi&?X;DizMkb6OPB+*m-5!k zHV-I=g&8t8c~DTCCo@EfD%*K3!o|V)rp{ zm49%3-W9{?`3SC&!H>S;weQnY2`WWesop1{q-zvyI{ zh?*7V`KBKLuMq!<(qg5Y;^(4ZND68g*rC4B|7HF%wWjDuP82*7U$+vX z*e!(>>QMG-dBI?eZWA!`%-Z>&t?NP~=sB&M%`#!OJaP-gyjn4tJ7(`CNM(9T2PvzkX%@w9Ss&V+%@d?MY`>b$>TxJ15IBV#Mo zBq^Aq6o^ER75>)f;>UELJLm}uBD&2E&EkD&un?C$@3{Sxgz7!)8$>P^)*d3O%BkM-;}_i zW`QPGcA>4Z7_+i_J06C}kII@2imNQ2SZpAE|1vo~1fw+r&&<)vuW^3kA-|0ji|sNW zk5En*_ysHIWA1%GKCB?$Gn;NVz*tAD)q=4fxVUVvQB3W8eLfRoJKP=LN_Q%|1Mk@s zz^v@~&UoI2C=M1@3NX8Nht)S{LQDSSbIHzE80gSCK?qzY?JR&Yh_Q={f3MM?I%mgCVZSXd^IEe|876(lE`!XkCf(OZ5{+6MHWlwl+xIs9ERb6?;o{TnXy^9z|gANn-6F z)o)_IpNma0^)B+As9!<8r4x-l$bn z8mWzaSCILma$iS_elTwRT*j@C0m?^-QWOCXFt(S?41|0|wpG6b2C-e%SlU`#W);^Z zxe|)86CI0Y_k7H@Ds9Y2oq(kVx$^z; zI{zl`&+*Z|g3BRT9kLNd)f_i}l$8&iSh>KH4*vwf?|hGNE2A09cyHk`-UgZV#E~!Y z{jK~$1(;^sj~$g$b5GxP{9{ytS0oH<O}lC5+Nzo?A!%^D&RsSM^X|!x42JMVDh!&%xw7;Ve=63 z2to6U656=$QTID3TfZi8lkc%9p&*_Xs2s7gDcmYC&V3R-hT)T$WGKV!CQiF(chrow znZm~yHypUMT(YIi7towJ#zwxnXUIb~?mAYw3%IQ9 zK0H52x#`1li^Kl7d6sw-e7O8Ud+)S_t+d_H=h_&lEIC$waYIOK6^#~VNsFp9w))Gw z_d1qv*W?{qcgHm$O}ckZX_)qUR)Bou_p7rdU){GE`K{-gno@5x8{P|Q zb0^MtuoWYP0vi(&8<-!nH75Au zf`oCh`8-9jpk_)~txq#0H+z^otZesC4-v}JWys;mGsEl#Nz+*(V?lDq%fQWgl^Snr zo>=1+druf?PswXr)GL`ab<9mgi-*;vV} zd_1(-7V~u>xr&#L_sWi~)hbru2}Ls1+vKU#>wYWr>a_As1R=~Zs2!ela(Zn7d^n4uMUuzb@dvkT``kU)f}UoJ`o zq&Uk1JnzRAn#pNMMx3zAteq_6dBCB*O7JXuYM-VQc%?_}a4dBBOzB=L#y_GGZ{JS< zRW{b$)9!M;3~uvn7S1mDMucwf{X6nhXutys1_XAS7ix-`Zi_m}JF4oldWBSI2u;}o zKf_615A)WOksfinOLMosTs3&G)_38tV(AL-eUsrMY=1;{Hi^=Gt@367R9^gUAY{2` zLGN1D%}e=A&{R4$JmmKqU}d(xA|Kl6q*Qy{a?08*j8S@{0-EB|lgh;gt6PN|8q7+G zD@{paHw3Z%VoeAV+omw3YK}uO9~5!Yb^~g` z^sPPEMLws2;VQI<2(Uw_fB^pKUqC|%>7g+&t;7TZ!j}NX{^s^lTHADzEYO=-EkXu+35(){RL%a2rd-CLpaC`A9DeM7FomWjAt^dejVSYmkG;(HRWC zh5UaDvi-tlRFG(Vb)0O|jl0u!Nxeg=@knQr1i7oZ*h zfI!nq^EWK*?tc(pcZZL|(Iqs-qX%x4srNzlunOSHzbP*#jF}!$$~m6cS;t+05eLZ9 z=VFH>58@%Pt*q@yM#*r?@@-J1Kt=L@3yJ~Q4S=_Ag#c#-fPj4U5iK9TkU3yC^(kR0( zs#C>R;v%cPII_Qp$6i3d9|%0cl2w2X=JXW;@}=tl&XfE^=W;jYlxX5oSRvuTWA930|jbNN0?w*!=qlIxs%2K63AOw ztmIgmTD*bBu~^K*qaP-sG5rGMMeJ~*2bgI7(hy^BvkBT;NJChoHm}N`nXMWM1TUYZ zzQc@o{*CJN-?Nd3U<31MFQqQ@{G>cW;$K`ecBo+Oz%Rdy5v32GenPY#r#d*W--`J^ zT!0%aWbg@C$R|vv8Ph?GSOcDU48|c9hh9{c7E*dk#5Y zhb;6Xed|b2rG~}7+RDtEnh4&E3aQ}gJ9&-=T%*7J79w~*xhP0nfN4Z_4rpVRc!!AX z8*_<8UgsmL3tYZ|T|u-Bt6GV1^4LM5aa>W+gL!WHr2NdY;||;5=U8_ID?OY>^7Xg0 z8D>JXeL<(xl4}Dc8Jd?63jat*M9^QfNdUYYxtO2=((i--JnskQEm%|tv{4{nvqc$M z#T?kZ8mF+3>P;Z~9Bt>?S$=k}eEkll>Or`t#hT<$%mbL7FN%gjbQ3_4^4s|5oV7wh z#V!X8_y$_(tBPbuLm4QbQd|&r7y+;i8~eq_vn9rPYTs3dwjRW(O|q-+V6kI%Ut5OZ zWg)!CP7W&ZNKs4*Jhi-2B}YAg&(>>r5CL~$A$6HPE1eidOgnQy@f2SAJ>d0hk7$G@ zU>{PAE>yw=t~~;#2-56i7BMv!sO-OOY)D>z8%tF)l^cB%RACe@GY-fQ0gZ;vc9)Kx zn9d5}v~_e)DcNkNnP5l;ua$O2vy{tr}E!W&3Ov3f@fw3vaw%|9Pz zvs#t)*^0=2#tQ52wW2Uh%Kys+5D_2`39j}_W`OHUIGW*vbqjNo`#0oW$7P#PJXp{- zmwm!qFvxIDEs^l)uanOy0%oU@acUG82MHJ<2r4f}Ndzzt2};QN6kx%t4~m}=)E@Vm z1(j%*$nd%S>5iTgO-TJ1$*ie^+^9UK9VyX)C8}QT%YFZj2i-5b{e_q|<*BWY-@CUP z--nXRy5lwf2WI-WCk>#AAk#ueKx{&S?1A$3D0SERw};nR1Bn`x+&J77`@fl3%qsY# z&owC&6*^zo@iy^66lLmd$Gm#fN!4jgFe(<3$znV6KVy@Ke#Tbi- zTA>)mKc?e%d;{Th_6bC8WX@6i5k^%umx5iG@be#zoT;|ab?!$H>X@c>o6rn7>+Jd> zmDlxvxlDj?KYqh&f+NWP8jK##M6EO&wg7^xH{6*xU)~_YRTZ!HT}Ul4i|OZax0CIg zs<)-af6k8BbvBVt3iN#K6LW-c7ccR?o|!m|eHA~h##YPR!905JK`O`l_1DF~HtBLK zUMT<$LOA6wkIZYqtY{z#!}MPYV?9<13h)shBidfNBB2RP*PZq_H8l)gs_{{CXT)6) zIx)`{W(o_Joe*dn=$p=DP=`F(+w8WM)jtwQb)0FCeBM{?Spe^amj~m9=8K^P@VtB` zur+V4KJP0?ya!t>vbuP-THdYM#=rr;i1cS{Sd0Gb=LvuAcA}r;M(xBKD}M9|4bH{T z%w~H7NCFKGsN>B()awp(Rt^y~pNcV^JQ@b0AD`E7a0f)xV(EjtK)l3runi1RA=5E6 z1z#Z6>(gTcKPCdtE)iPU-LZDowStit-$f!!|8;IY1>+h5`s(i-LCtvBp9pTUM-G)W zcRyM0oz}`I?QkX4`-I`BDsoAbRcykMb18rq94rlH6yMro0I_8`q~O&l&#=RQA@~pP zvnQEJm*KQ$-Nbpb$Eatv=p^t{#oJnts$p>X?X>6jdB2TxyP6K>!*poxw`w;0BZ0V) zh&QuI15SN>mlYvb-UuXBP&%prSg8c>)?qe=r-yh3%V1lS`4mOVgWQ7}uymISCa5j! zKb89B0od4I5#&?8 z`eycwkD*)94Z@U!(}IB`La4~OZo!w}`9Hz}kN;BVHN|ZK4lv}XJHAWb0#%Q0vw+Qh z6Gr(kgZK0Lw>7lR@W*!wIqs=1zjQ6)O*T)}*xczGh4Ss{JuF^tguG-An(N*Gmaz=< zQkvZVHL?p?oE%p$0k_yBNDy!VDF!e;i=t`SUmg5`<+t&>Lpp(>tUbEuJ9*kzMjR%ty24SiSf0ON>PWBb$yp*K$qnqWe>g;C)VUc$ zfFUCW0#wW&*HVC)g7_ms9aUn5Wo6e~b|grN%aZn2R>>e3^KbUb|VQaE0WUhobp zDd2eyu&C+6D!;8<1?}JJ+`Sdh_2qIsCUq z4gUQQXXF}YqUBzO{&8S$Y2J-ocNe0}4f z>k_^5c1MHP63byh=kfbBC?xM?jZX$zga~O{_M$Op;O}nu0omVU;nZMWsF1D-Qu`?r zcFBxeUlPwTDadcp(!Hhx#SV{NB1A2A{OiZFUGUX*+S087LfT>AfyLPIhyZq$;nTr^lK;Ag6Bzwg~Us|E`0}CBwCE{^bqp~3HbIdKShFF zjrs{ZKXarU0lLc|1ECxQA0usTkHjal_l@Rvt*ctK9^)X=m@j!l6Ov3JwKN}7S`G5U zltx-2hDa>uF0bJ}qW<}$)F1k6;{h%pGl*AgcOI25#fpP-ds9(T->>3-Qrsv5%)vUj z2>v&%6|i;rbrat1OJ))7?VN~3=E3xo^Rjrt?0B7 z`yuBc%}Z#Y&CF0yQjmH7Q-$;KMe6m@0QCZqM^6r~NY!Gu8Gh2qmdzr-6a|!VuptbuUh1aMN{-(<6H+=^JUwlX&mwkwl zFrZIDvnC&J$UQq-+9bTT%~qf4J;+Vf4NXY=QtNP`UqqVsg?0?#mc6``Sft z+e9pI$}0}~8QByqCv?_5q~2Fygl zI6(r8P3=#66cqmtTW=i}Wz_YJ3W5^S-3>!`cMK>XFm!iIhje#?fP?}vbT>+ONQiWo zq;z+jdwibv``&Y%^XKTrz4u=0w|ecpD%W+fCy5)ST@+c4-fO2~h{`GqA;TBQx=F3S z(m1*AV-RrT408CeP)%ktcTR&|W zGFM0C+bWd%RgE-TAGxd4{u&G8n`ITEHh*I-Bs%^bGPd@7>iBsy4Vn%gkld9K;_-Lnp$v6-ibOPvcmMuXZ z11+W5o#|UJF*rd`uhZ}wKBpWZc(hs#$0bk4sU@l)eeVBLv+u0HCbyU*c~UwMlY}zw zUQXUjO0eZJ^|t{5XW@r5RZLGsvM{FaE{g~0>UI+C4{5=KDU(hz4yZ%2%2W%Qe>P7*6kQxBt$cmZaCxU~m7SPj7c2G`+f1_$!V! ze6OVuPlAILekhEwcD5m)J(t$cf7mvjm&$;W@$#MWwQ=w>oUaUGtgZ+Snt@DWUv|#} zXV8x#mEsC!Y~doMfpw6et%p%?&H~W~;-J>mUUN7skTpPHR%`O2OYEQrB>)Z&MXFgzwca+kq3#EqMDi}bF6=l zp-1g0(y;K=`58wo^L{48TmXxM9Nvp5n#r7ivub`!Adv+;U?a?t7gBgK(EH2F{t=iq z6@5&9+`4PN%4&;<~J@@~S` zj)p7hqfU+}W24B!K7;4I(GIo#bd{-5T>myWYmHj9!e+Nte0@?o_U5GE#(yK2> zp~lRUY|vEM*mN;WfT6A{WflFK0-X@HvB-Bc9Vvvf&j1#^hI1@|!M>C&$cdoLWf_~+ z3uIEy8;p-n9zQoZ{In`xy;6U~KE*Iv8(*rRw-P6^BSnb*_~F&;mC>Jtp6}Z3n~lzd zsc_8Ad`vON`>DSqFl^;vGgRJwk;smQ{v6LGyzF5*+HE~7JE-&Q^Ihzlz7PBK z+FqR$mt-=SGVdi~8+)uw-nLArye(f_Cl3qE-l#rok}ubYO4&X!xMr{_YXmVp5{5e; zeqM);U`gXw^;XmOQN^@{f~AYhp3Pj}Xjc>DWyUzWz4K9AWbPs8(KK29Rw{o#zemR8 zW2UEKB(SX8huntJ;65P>Ob7}@;s8|3gcv12sQ@fW2v5N6B#&m@?Tize|&i1U+-yXNiocHWRIeH+q_inXzr=AV8`1 zD|c?nj89>uDA#yJV$7_3f-aV~r7y|GN^=XFUFC4`P_&^;E+Vf|i}qDAnpIQjhbNUO znHr0x7BfbcgiSxtAyxG0D)$@-vQjniP*e<%M!c^fpKJ6W6k$<^mQv2Oi}9kZDmT3t z$Xr3%gi77QQ9SX!l1>ws&B#W@mf*C+4WtezOPB z_qn8XjN@>+N@ex#n(ikb(>xw1`f&Z`06ZEQ=m0-c5CdJpWq&&=bK~5DIEY(KHCJl2}^5nSJu3sG6e z_Y%ugWtak?V-%&!Mwr5rnOc}e71RBOKAX&;AJZd-Fa3KrtE4$>-r@RwwvV_Uhx=N6 z-xJ%GzS15U<;cwiO!^5rpp}4Hf1Jp#fju_w0{~*X4FjbT(LdmLAQ@v^7R}hY!tpm$ zovu~BHc%l{35*;qXpC>;CFkG8Da7az`$LttUv;OZE)31(5lV^t^?503P#*#DXpr?E ztCxWkHLqy%E8{UT#WHgd^sHo8NMibo{vK-~`)H5em$nhiQFWBFI}v~(|KpBtzn4`-go zlM+h}4CA6j-mC$kRMYHa73oWG^;&aT<3GIO3;lw3a^wK|JgN&k;I>uGy8Kcv#4DShw($V8s!oq(Ds4-$Y1l@l}FyG1*0Dn zgo!0Y=!Y*R``5N0$!Uk^PxQxutH&M{p)Heg)@XWJ1Q#eh^Y8kT>r`vV*YDS-x0DZF z!uXBZ;>HrL7)PsYt>+Fp4zd02EnFng|5c z#wH_7R&d4N$D233dFbO}1*#fv z5>R&i-OA#0=4WTh%*FHQZ7alMmy#FH?%b?Ib>dS(*ZW?&d*jC`BH&A|WyH|c=*D2T zw2i7RKYpzGUF&=2+<*YfI(I|ZLJD1D16MMpwcZpI_W{TM>}{9LZhqNbCt z4{5|$9~BXp!=VTLqQs={5)W!Hzp4Sw`;=M&H`k%HTZb#GR=O}b^KZ;363ka@lK`ml zL=6bf(^-*CB|Xyi~t3_B#vkqfUhx~c2@ea$Kb8mw zgE{v?iYl4K>~sz|KYNi6m3wA6!U-t?xsE0vJC6KPy-9NVyrh&s4Lh2*W)c2Y*Yfc=5yJ9KYwOjndM@9eC%;IB;VZ(h_vSKBbZZMw z3b=Qr!q047!#p`TL;;@bs(GHkA#KIZC_*(_n|{$p z`ZsM?#2x;<5&{YmTpkV>70E-F9#}$#auQ(aD38$ITR>Su0QElwT2>8=^CqK+;A99n z4-E`!LgZ^add?Nz1wr`zKObUH1o*{07Viy=hc%9cInlCJxNcuo=zC43ei{TyWtV~I zXBDiER8udpsC_h_TYR`4RMbDk`3hV+Z z23Y77OoN4RjRG^j0bLFR;n9{fip0^dac-0n&|)lsAjRL3YksC8^jV7$bF}S0J}4O- z4o%BEm&PTY2%unCIsW|n*V>o*Te3urA?x}?AzY=ncT8aQVw2R*am_c+*+!i;nA4Mk zcxybcsX@S<=;#ScfO>&Q>4d=2??+6`*?@od2ACwT*XxPw`-#?gJ52n9>&h>lSf{X> z8K3X(8yzX^r+a6e_+Q`<95_FOA*E9(sV`h{#4Fs*O&347vuQZ5b@!9__}A_;tdfIl)^{R1AcQp9M_%%GY$R2$Ai z3jbb$@}b77F#(ul06XRzI)G2P`Nd=~P0M@j$*H&Es~r>Qs?TwvQs5(*!gp#JuPGHtj<lz*M+C;8KViK52s@;(Dlvx~GKaI< z<7l10<%PrN?TmYO26ZR5p8Z6%Nc5KUf|_D(tU*TjE8gKAGkuI+hIgDUJ-00H&);i! zyszv-1R$lemHsYim6L zSP!dVig8OV^3o3~?f8F=M7omugt>XcYuvrhPFekh>Ts^7P*mNkrd}kI)JLRx^)tmp zbVSKKS4%iVp?=RRh% zxuvr1grZC}1Hx(i_c~_oChC3$2X$Tq7`BmxcJZ^PIb3uP#0Wi+#9pz7aQC`fSl)k; z(e*h+sw&Icc<*>B0v9Z@;;ebiQD9&TWRQS@4iR8T3ycC{jj3Kz*=+#w-y#6s)Pohj zbk@yX&w1~_KgIc1dQib~1{d}L+8G%er%+?x_O!?8gG=J1muTq%gKUSOkrAY?8GrNI zXiZ|z*{La!8iG3+BeUaY8o%B!)tBt)lg6-7$PTs*5ACYcXTDk%8bHoHFiolsDdk`9 zT?odeW2$a&@sOQoG~}pj3^qE^kQt!gTYfjKfG1f+zXgFtngst?fh&RgCnaBCaxp4l zBLLgGgc8gRDng#Tfgy6`uRe6t_cW4XHN&*C;jot>+yv#v}hu+xWb75T$l0YV2QR=pKA2Whe?( zdNVb6nubrOUHMQfoCT~0@_XRS!~svAXBSR~BUc|_$B)%@)D@3EWGko>Xn9mQt}mUT zhKhSfq?(j;AaI04#-Q69lp$z+{W&w#jd`s?@{hpTFpMi#Pv-x__y~;L=Lf|Mz=r$Z z2FgIpE>PxEyx?aI~R4Vws$xj8bFCg3C51l!P6^J3O)&C=ZHp(4Dy=}6oRIU(Pg}6m7&FkGE<$K zNYx^F!bgVvakIXXnSr0%)@{uac1SQbdTzhaf6tC3EcX*J)B=0(WnV$OB+IApC3P+e zKL*j{b~JXD4lB7!s?R$6`az4Y()XHVhVegYY}38}kVRx-#bj?Us*t;s(*E}I5QobK zBJJ>Iu|Yr4GI5%;GXqJa%w5hyVXbCuGR!f14@)r}8tK9;&utS?Ks^AWID zNc(%tw74y@8hnIP93eR}XN`*?4@8}VQWm_MQ=u+IBB41o<{1 zkZ{!j)rYS>HrWj5K@OOe&Me;tvWCVk2x1*e5d%dN?4-#vP{7d=^hoZSR|E|98xmAQ z(&X01zHe01)O^8-c6WRg;hlOutXb#|Y)b{G4}x@GWGN}Y zW<}QnKWrDCX!fH58L>P)KEOerl8Q6zUKb5%7&}OCnxKARa;nt+96$EuQ_s&CQW{Ey zx4{`rM23fgVIB;XTXP~_yc{^F3E-9fPmbQqs31fp05f5%ZtuL$nYVcpA)EIAgK>375x^7+8EBb8-|V4~Iu!6NF;_r88Cr zl6Or`WZjBj?u^V)SJS=UR&;VTHr)RKq$7(kh4iD|J`lQ`DV?2&;3`aF3dD)PHwj?h zByh+F!+4kocyPLjt?xh3!F$O`1YLVN+aij!sxy8I-$5RYT*hV0#L}JO3&2cN$mhV( zqddAYYn=~3KgHlqYvB+0{Y`_A8*cH8Zf&Ls`Jgm4tlBYd-mn(t|4}Dm!RQ={-|#Qq zC4__7jZS29cr4Hh1YFNhxt8x#lBK%k(y31%gYPWY7$`c_*y18#>eK)#M9X7vxk0nm zwr&6^0uN;r6hi_JT;WGh=hsG`>O5UfM4YMNWx<^l8(L2LOSs))yi6N|g#VO3A58g^ zP)=aN6ll;A%)xP(C~S(9=%VYC8IKTdq=KMHCh3N(Yl@LW(gFsGcHXI2uh+O#2K_-> z%uP&of7O`;%7oLN;-SD+8Qj7IuI`*aT1AST@B_Zw&xo>ox(sZ%mQstgyPjE)dJS&q zqmBGkas_NPIBA#&fEaD%U}WaN2F_0$MKkz@I&ln{cEG4V?@=zXyisXj=o0IB4TaWr zJgeVND4-q3cs@Yd?*jhhf)`JFfpCQluUy?mW(DMN{h zFjCI4zHs{CN8^XyEp&_fB({I2_J>6i{#R@j0O^B#-vNr)_phcdE*6Ine6tLsC$3&% zT$W~CcV#?~4cOF+s7zcAc%Y2p)Fdk&w#shIT(q@~2NxlP*R+&7Q?PV4gz#Tk*@r>J zeUpa@ixP-%Kfrzwi|+x+oIsQRQR-^E_&VA>mFjqNc&w;{+0;i{9g#jscOcQVU>7pk z?itBdU)tzB8krmd5%}(;t-1Z{)1xW(-eqt76UyJwu3>=&m$gm~h6Gpc%oC7XeJZ77 z06fNuz*4;Qj)|=Q2>TKi#k`=kl>*$S&&Y$HpqM0hL7^UFm=upFQOAFb4WNi3#QZ^F z+O9Xf7*?kjRca;i(~DXMK@*o{yMnUHQ0vcG;Fp_v@IZ1&<}?0{=dF0}*Vg#4>+J2t zhKX*MG>KgK0!TjC0M|hUv0H4|0M(lBA6-{q&cm^v1U|4QAnK3-2>WIo+7E2XoB>W# z=Uu)}=NS9-`p*(Q;=Z&I7UFNJ*T=>VpR=(5=oiIUmp{Cd$fgC75rh=Ko@3J0)*}OM zr~}wiG*dSa?1s}MlD6H~ZZy!4?wJOF_A&r8l<>0hfcd9!e*<#`fN}w>x>(N-gOe;g zibzlL%P*&bN)}m2bdYx7vhU(2kZr6O%@@UlKoL%4%Nb42fbCZ+S*`KCMOE(|vCN&b zF{{}OaDTDxb^racfO!SUCX`D47bV6ztQsQ$(utNUV-G9@lpIl72V&Hi zPu2^(K_!SH3yL9as8P_SLyS!J0GvdI+ChjytFSW}XHg~1->t=mHe+3bLS$_`4@uxS z>r1t4o9}*d)XfY9eEOSILIWI0rt<f&=G9qlD>=^0x>A^}C{W|C3>g z3N5I8q)DnDHJ}uLiECj+(Sxc&nWIY6ytb-{>>F31;rQs=K!Ykn=>?=!~vgwR?O>+A1$?}wd zdB+jbKAOgo$eI-+Grn{J8ijBmf%3Tq=~P?AeO~5NE=xbWWExcG5W$$!1i?kHGj)~N z*r!LaQr2>?gA|I~|1pf~JuDHfV<&KRAQFM`H{GZ-h`+tcKH@vSG$t_w&aZh!Qn%^O zqGpF9ZwH?C${@(XPm~)CtR?p|24~KVaQA2uo(<}@dce)$NE>e_fHct9ep9Qyuzb_B znrl&YRJ@yL;A+*WDEc1lH13FsXEsOeX_#o$BHW0y@&KcIzc%EDXx3`g!I{;^xa8|r zw3b!0nq(P>GzbFoxohRuT&KiD1WR<@lUE0RXoGVq)5h-JPn1duOh`bd-uq)PSWnM- zHI48iW&HYC1jvc(G4ClO)B_QEN|fm-*4XLk1etH^M~n#!TaDjHI_;Fk>(&w7M(R@Q z;Tk6UI@rOh=Y4;yvHt0FeM)0>sI_9RGiekk?$@D+398`(j?8$GNgn5gH7cx3hEfD4 z%hnV!%B>}}ut3rCrNxT5Jv89u?~&I??Hnjub?i&I!uL5w zoVeNCF6Zyw7oq_ACG_rUy1?h{prLyf?hW(T2?yjozweh5z24#ShGN5VLX>3)xY5=k z!p*O8+@>6{0L@ui&C4IQx$$~%I(`K8Tvy093gxgPtSLiG;Vtg8T%;HS5N36{B>1;J zP!Na`-;afqqsu*>rw95~py;bx17&)UmNof(a3N5v1bnc~5>ROzo2WBuUANxHCI*I3 zUTN^BVCrbgw5s}npTKE;X>Q;x5@u36`)^4;F58`A(pt(b9<};mjd{v z--QU*xJg&lF;{*#(l`xLs+5%sHML&&An>a3RK~mE8n;$p zNvH{3QrMAF7m~6+Ir*quPhLvIm`Un~-10qiZA|!K4z2w-=qZaBTCIDBKV!MSK>5oM z^?qV^E`YjuiuuzS^9u?_T_$4+V%e&JyR3E3JWyyUYb$4Mf-R{euEEW{qBf~P;H4Gx zM~%=0SzIL=FAaJD=lWcS>uYrVtwrC-6%tWhFKA-s`-i)alsCV1L}CyDRD5%FWalZ% zA9Y5P7fDZudrbprb9~{ehZiJ;AJ*Z4XncSAmbRe0XqzM;R%n518D!YFmLADrw?G;j zV92Oa>0tDRO#hAELb2SCe~HzV zLzNl08#ivujn4`kCd(l8234>ky?x7uwpXo!5Gd-U-|4O0mSm)px{)OuE2#9=Aw_G~Ys!Au zTV%JnZcEO+KUJ+J&?NPYiG2Ib7tad!>LA9buuuy=(-o?EoPx)A> zxV&GC`?|f|C$qx+SJpJ<$aH!=rgS*4 za~;l@XF4DRnuOBy@`e8b|2OqH=m4M7eY`O_?W2#tsP!|OEswgBslP5#1qff(REnUG zdD;GdHskCiTrxKJ^#Nn3EIMcL$_fcy*2;R$Z`L`_E;NOYh->>$>U^R2EX??@l}St; zGs;)>XMs($*sry!BFZP}Sq}atg+KpsG8r{i6xfYS+PLv@AYX}T$+367I+h>WIR9BC z#aVjHL_4z|;%`vaWr!UmO%m)>HKdMk&$}+8HPiq7*c)5-t~lcG}(u=%Q)HK$FjsKr6@_E3N~-r&ONbp?r+JyPAHD z%QkkgTqK%xq{#YbmDU9(DM?ybXYDdJ!p)f(CudZJqkbgKtGMI%X7C}FyAStgMEV}b zS$d@d909RXb$rVswDB@&-XA|Sq$^Zw<^(N}_~fR0igQ=H3@%Wtq|pBqSWq9y`{Xl6 z`!^E>KJ|2~*bIVxJGQ;gOYicqZ+z5?U2 zrmov2Oa0=J+se>st0mD!^bXOxAicVcMUtDHRUGZ7bF}(QK@|6|Um+E63TC+h9laeW zv-7jE%%TWmqKEgK+v9XgO{Br69q`FoZqgZ2SX|tOMJMdG6KnPoT_dDeC1f225R_uLx6C({KGm<7dvnFaBZu}>H;mFDDrSHv0iMloh0c7L zafdoQ?VEe~deARaC6sx4gbUIL<&cji-uKicGQ0+I&KuNE{Tf~xJY~IdA8d_);`_M! zZ&t;*qRiKkUF}4or^7Yz@(`YH z#TxQ-(PBqJulM`;)McyMg~YJ3c2fJVl6{|48{-Sb?#Es96T{Q**C%}4PF}(ba&C)S zZB$B$GlO*+`F@s(o*ZJwI`W4@KWIo$MRh$gn?y3Mhp`VMmF>)4ckGeW)E7m3%42J3 zu40OI@4``G1z+I!VrrfZ@PHw?qpz!0Ph1%^%$fD9fHs@8mZN+nh7~)!C7cs`m_m_{I5lfobW$@qwyyKNnhylMK;+2)BRiVa1;HOEb9(4W(Fq1)d`{} z47n2Igrqr*uXt@ae!68xAXQyK#NY>DrHI=VX} zHDkvZ4c0}Tt%H9K*mT?ITt&R#1Ruvvj?^~9fTU%g1)*?%mv4C5>#3fQS5I>d`o*0r z2ml5LiTl+wHuvRia$H_nT;pLBR?zP9Grn)b(YW~M*sg|J-~4haSDX8R-#)tcg0#v4 z@g)@mxex3SK>Jg!2wRD(M~p~LcaOCtSk?HS*n=ZeYG*^vjYb?Nh_SWM+Y{Jh+l#{4y zn0;NmzccA>sK-%s4f zzT|zeRiYRj*K<$cvvy2Y9;>@$AKzJD-DiD33r`W{g&uN^+E@9<$=YAJ+<)R#jO81- z3e{J3l_`&R-{x(7@4e9r$ttR-{Nb@l4JOC~QvdYXT*h!-wQzD+7_IaVIcy}Z)uARY zayaJ@*ctgg>j@!#Ju)-Mf&9?ll2fD@N8i#{UHtIYP{rUrY~CgkWIOn19SJJ^DRmuZ zH>iI{p5J_Aa|MoQ-$~59H&}i6>!$>y?{^_a0MlY&DaQUCoZ3jFVkBA--yk41c80fE zs*qC|R2zuKsfxwI%!o49Y9nO`#V=Jy;oDL$w|ij=WCCD8>%0_9g-lKFOcH>Ja^)Cy zdIC<7m;9s@M`UOlX>%9wfSR=jQ(#PMQ`f?|_QtxyGA`)!)8&m9AK^71^ij(WHs zW61;MDgr``@)T_Fe~uffE#+~PFJs1<5g7gPgE!va4yxr#ihQ;$2?rW%H0d=_TnjV= z4UDkL>t)^@Uhe-%%6^_;)<0kSjT9?19*$$%r#rBdVRS@}DzkP~_rr}H|0iai=cp+r zFq+C>Ci|_9D=i3(d<-D{6Og^Dw8ihMLX`OTx4nz^uY6St~xVaz#UUpoi#-2Pd%7U>A(vo=!E%o zwdG$dfh*L`Qb`Rpuq=w}-+0`%1n}!n5V*a7Qm7_Usmdjn@b*#64ShQypv-6wlKjAV zs!@F)4reCJFKNRsW~yRfJ;BP?Z+yII_(R1*x)dbq4yQURnGm`NXU!{s|6%OJ1~F7Y zbV36t2HX+5-6{|2*z8wj+^cDi)#f)L5zTU>{_c-I^vJwMrm<9(81TkhH%}IlPmSw} z&rfJs!fV;l>N}#6KF!tI^AZprq>c0^kLP|JTrG0L>VLP^v?-l*}^6JaYHG~2f=&7I?Fj5xXf`$io>!G z`*U9krBw1g-TyvQB30AEQ*tm8IK3VB{d`R!-4$U&AFxTkDdF>od`rJpN zQkD%@UlfA6j^S^jyQ$b&8O^^{@1B?kP^fuNd&Cc|tT!QeGY`%$0>0||j5brFc|jag z&u&EOAeeVTY$XX5lQ~__k)?^~I8x%WV97swaQw_B;LSmweoM?W zHsHyzSXPFKWM|{c+c_bh;sWEf0q@^-ujI*Z5V>+zdFO1$Mi2b%MNq;-L{gF}7ohcQ zCX$H`FA3u$>|pIrU#Yy2QcwcpKS?FoLQZ{n?`YTcXVR$q?4frMSI` za-SX>@<44+vQyEJz(~dgS+pMQ#?QV!ZA_<^&muON)Y0@C7iYh;&szE6AKHMZF*3j% zUg6>MpQ@IvR452Xbs&s)U{AtG-2+?lZXG>%JGQ^Z^l6T>CMv#kp_Qx|JkDLL-9a4w zK0Un9qIbzRW`MP`Lib5tG7-7iz^bD!ed~O@t&#it%0}6M@ljY+jq?|Fk&2t8^pNI= zZ-1e9gfsa9b4lv~Qaff#rTb2YUsq1O3~4V88^}LCZkuR!2vsAlUZ;s(V{IH|DP4LY zvpHOJ=jUl~Toa@|4il93qz-cq(d;i!XNo-w7DYn&W77I&SJXJ6sjpegA2I{Pv`O|= zOFKWDn`3>G4jwk~>g1VXMft@p{P`)g(=3WGTlFI98iDPXiF1qn1!@Z{*oQt@&n#(P+L5)-6`>NsMRRkYMo?Jh~EvPeFWz`)V8uL^3u?{PGi zR&w(5@DMJHdn4P&xX9U_D!*ps>z{tj-fNwyYNw#(#?*mL^=H!kkFMh1H8|9_CpX7* z!0X|G<34=3?-{WWIIB*2jX2vgULTP4y*eb|Yp(<}dQr?{!@@Fm0!r7KCWc_Z^VNgXAimp7c_r=_n6bqOzZvTvw#UmWH>J@ za9{*7-Tz;MZq5!z|Czo`Ju1IdoA~AYPUt}v=(QX-yZKAzYie8gV(#+jmc*NkkP#be znEM7aC=AX5uz2`o|0SAe|A(uMBvdczFPW3wVYGL9BX~pZRxWw@tDw*M*IMkT6rudqn?J``m^0Cci5oY~! zN+6rE`$4`B1;Rz3>Zfb$IUaK~w%$RtIJ)xf^_qBEHWbSo-Eo&NC zwH(A7HXG_01zuEEn{C`Jt4N>v*W3e+T^U+-%cj2L&eV4rs|kV(dIdDmwUN_=Uy;5> z3hGg~wpY7d^yXVEJAIfltyD>=+&I5`D3YhBM!b6MTYW0NrqGvW>bsvJhF-rVbJKaEBtkqqnG$CQBe@3)lAwlir`OL;0RU-2S4j_906 zN9~u!KR~Q*X#S@c;6X9=V66mKnb!k&l&Dvr66NtnqKh^$7llz1$GXs)7|T~qP2%$w zmSz!rE2x}#MjCO>UQ{krVi>wXom9I0f9F=%tEzfpZK!_SX0MWryf)imlSuGp%GH=7 zNjhb%p`u$3YJa3wELi>?jz{sc?4nBYnr6617|Tp+B?N5YSXrIv6Ma+BPGM2AKF4F0 zdG=&>aDOv8u*>Hg#N_8AH@oaOC~BV$vYqo+zDLe~#=!<(azpU}2Ou3A$f&>nsb|iN zHOK?kM9RTExyu%(pb}m1DWzCdM;{(Y?*43MA|0nXjwc>xH0zr6Ly6EjGuKDrxIc?;T@`G=W&$SoZ<{Cfg zFkQ!OZ4C5DGSXv874}U9NzFFkT=j(6uB|oMOj!TMSqyrk5iy7g>sUD0yz;6&MZo8~ z`e-ZHHOcU4##>dRjK9-pkNYRiAIvm_d@EGp(q(5!EW1VFH{`_NN_CnV(L`E>fUhGr z`Z<0sKXpdzYDgPqj+N==_Rh(e*-}@sQ{TR*Suh+O^dCPevyaKWS3{{;5rrls0pZl5 z6+ozBaqhZRG@>v6C*!RMYdR|2V6II;+QfwW*eW*tj(l4GU|Eg|sUWHZQO%1QM@3C$ zs@FVSr!4C0jA=f$SkqV^rjCwO%CFX?n&%6#F)C6X7QlA~NWO_41Wy&cjV_-__Z>N3 z%TG+$4l+o6x|mP(<9bV$Ww&3Bl6VpiONf{T-LE2bV>+FMR?j6G*nlATb3ZIe;0Tmd zGWnNmG^vd<5pcN#Dbu7qDgMZe;;yTjJM=$iMHQEmwal%mxn#Q7kB)RUw9*DS8swNG!|}!T)$Ap7}|?&3yj!{aJnzcyOrmcU!*J+ z{`U2fkw^pCIyj)CqN1`bNZyDD3KF?Ak=CJ$4ALmr=)!m&NCopk|C9NK6-fV!14CG4 zm|dBeH4VAi>|vWoAlk9mYu+n#;kO`~eVUqFEm~I2!j>o;(2_o^Jpxai4k}d{*K zs5Kv)^q*$&O>($LC`g#G@GTZF0M&Ju%Dfw^c8NRL@?Q@u;adqfS8nc+U2SrF{Lf!0 zhe9DAYmzHfODLn|Au~-T{Q!&L+QA=qZ11oeIUna7#CWZfso%I5 z;^w568?XMVQ@Ht@{b)WecYxu;S@1swJx#(J(6QK|V+E?n=3Iz;kH>h~ZBe5JG&cV# zkAYnXxS%cDgf62dR~rcy7C=(j@)1Mz*+LYVq-)iqp$=@-jYFo>@*#)N@c%jGzunxX zN~nH9a9rtkI?gfW!~wJZVBemnU^Czaip$fN^{_0wVn(1CM7=nLDOJ9Sy}nXZxwDIT zOwsG7xiEmo+sr_Cvb{8^woi?iF@22eQ0nxID9W@tH%gbIA{pwSiV9x+Xo0N{#P$E$ z*O(2tLy7k+Y?c|z+uVqzDf|rYZ2z7qgNl8nYhyH40FeU zmWcl>2b3lPkZI}Z)~ENaBl{li8SZ=h(=^Gm2%`N_dBI&~_Cb3Q_wgGOvViMir#$aJBms#!T94SzTSPhy?~O@n0Miq(ngv z1nDE82VSotRi>tiW@cz(w|iJ675-u5-;p9E;<1f`cfafsI-q}6P=EBW0ebmxMbVUC z*c%jrla_(tThK)!OR-tge|jQe9f%vm@Vq_Z#xojfX10bkGIB`NgWc&*jo&^zktzaV?C_kf5M@#?3}{{W-X+kB$0Mpb!6Pz5T!9^cx)bh(6l; zd+vv)@7+Zdj`aLJgU{+F81gjNN*V3q1!gP)+0z57MFyT?{bq=Ed6x^e)Xy)*U~9O@+W@GjS3D0g^J>^YnD#r7oYJN_S03@Kn5mZ_y1;AvomEMU{fbW+FaM z*sc5$53&W%y&zWf^Y_2jN%Wvtu*KOJ?b9&vRdUttPpH(qvY1D5qO|(up$G-*P=HBK zmHcHN`Y=0_*)x1eO14$ghHK`(dN)7|7?8Z)QTnWkPxq-@JuxCdiH|G#siIfp*1kCl zZ2gTGRr}J(N8m^4sAS?U^ zznxqJilA^BRimg7PGGWQhip!zyUX;EtGPQ8>{Be6Z8MhcJUR!0 zBfCv6qWrXsb&SSfmB2}=Zwj~#_2xfwHK4`bp?EmrVd7GFR#Z|ckLm^)cyd1t{z>N) zLTH+NAUNWTfIadID{moy$4E8Cx%hdwq+LFHCSv^2_9m|3{qD?}boT(-kIxIpVcf!R*)G)n zcWIV@UePN0zqi(aW^mKV95oe<4`bDjmvLi$EJD@Tqmw5!B2=WPZ4B%AV9|@CaqQ`= zKTfCGNFSe5LswAY*A|yV9SKVKTJ&9Bf3d0zt#1$yFPd{_oI`ENSF33a(8#Od7AJ)2 z;cDQ4))NZP5as8TKk6H@SwVy4FE+slPrI#{VFg06ITWCAVwhNefPY{{qiFlpk&nV& z$|R|dC&@%wu@k2DWJ(3~HCjg{wTDxGM5XY~-f9@I@rOy>e^u5dD~y<nWeS zgXm~*z~|`2ji5}m&zmzMIyFF3Wb7nxpBty}SqsPg=n>-=jT8`JWc5>qM?&plOJ?tk z7eA3ZHK@1;I9c=Dv7Yxfn&qivyaD>h$kWuVO2codc(6-oyU|)R)OGF#`WH zQ-ql6KVvy4!SFbWf3EOO?dR${ZefhVsW+Wu`{BEo68ZXIB^=HlO29v&2Pqtre7xxF0$wK*&e zI4uayDUYH9uCQuRr1LOcdbLA}EUtlz8)2ccSn#%ZmCPd7@#z4R)AOMZ<))FTy90mt zkJJ995W-<=5I+jy(DY$UZpdOTtw*C6y@t(|iqCFOrX)GHRsgrPBgO9y4#p9(e0*|s z=nN^%lH8clTfs84D(%tSC_YzP{RI1wi&3xhC%yML z>I^D_EZue39LJGYh(JJn*MaLS?x(7Q4m96(1mVS zUX9J3JIvHoR|k?^ajBjCE9jpY`92(DERXy-x$#AsIo_U6D_bP<^Y)P1!o6xfN}jq- ziGCmT`n=}Un6~s9Ezq&7IOXv>tW0nJH38}QXvlBH>$b;*7 zq+lwyu=)L<19f5Ih(>kxm6mswoLE)ABCG?~|O8y|OP({tBaM1scRO_*9~SFW^QsF!nBJoO{+a3)JHcA6J=jC-M}~UT!^M5B@0-rel?=NCpp`H zl-P>YQ`PYh$ArUYCdqFYYWm^&u!TJAK33*CF#*B>jK7cOmF z-rjDeA6BL9uW=464hXIm_`#z|mL05XNA{{bb@cMD<%>HEROte$ydUnZ@ko6X-^C@J z@5tMAT}6PbVD}v!>uXa9W{gO&aI=kCOzlR!;1{bxUyso&GG>wk53?NQ2B=TQ7(vh8 zukS8fL$Pu*2R1Kbpf6eoUfDbM1P3Boe^QE9?@2$s{uLS$Px!M&>(*(#@`bN~dW!AX z`F_mAkJpHN2~4SB89ve%dn#yb4$~@SBYq82h@6o>&R$rdEB5){N{k$ABDZ{US1I^G zcp!GBYlOFWjUjC#S)Kf~ul%E{ip!PB4G%ua=*yXOGzbAWOiF)jVM46n+rFOn`l81ufwCkBFMhg=qCqQ; zUF0})30nHRtrlFZASzy)$RyJjm~AE4L1F#se;W~=ppmwKQi@~(RsMoBg_MfmVfM^P zDCo=X-REB?0Rkv3JN1fD(3swB6R}9^HY#xMB$j>x)RyMSk7@9_?LYNerUr?8#%Nn%;a3rsS3P&y6m~{KJIm^CO`V?Q z2~Fia*N3^Je8ldK1E%>+ZIli3r`&xF?^g}Uaw317f30Q%3v9}~p(j_`OW@Yfq;z_# zQIL53W1qB~WKo5PXb43nPH=)AY>w{?O_5*PI*e}iLU8<=`AxH=9z4#er(k+jIr=qy z*vMI+IiG=#>7m+;8W=4f*-9SXV)=f&u#ssm<<|44>=ft*9BqEU3ELmY&fT0v`|!cTI42C%C)ASKU3+J@bC^lU21APu;q8?zwyKvp4>Wt`NtEaI2b$gfZ2* zbC3N2)=29Hk`bO$$)wLudJhh+!u+z(G!)jmdL#P-#Xq7e6tGNDJ*Yj4ap};*8LPMu z2liCA;3SWx!U?!kl}vd4XjTCq1q#1kzUv{BeYY@8$T>PS0cSHV_5REDQPutC{#BTZuk(HC$H^N86cNXtLB@S zf02{{zxznOxQm2zJ%Wn(ZPAZ~XRq-=L#n>LSLnxzqX2>8VOF5Z5>*)K=GjG7!r661 zw*noy&%R{1RdgqqG{p9N8ttNXS5a#7Y`;hONRyLbKoE!FlJNi+@cj=<3Ft7tF8Q+M zNLi#q&KA7-EFzE-*nwH8Vh=3B2|lhJ@bht_Zhnw7obRUFQ>}=+xO4SfiVxF%Y4ApC zZ5Gf`IsX-ksvo{X**j>Ya$tNW*_!L%wuM*fDXfTZ==EQu>f+0H2kYmO_|Kd;{jF^k zq)&E8zoA_??AFBpB;57OoFE+`4u|$I0HoRsX?3z##6YScb>dUJM5zn-E#c1r#65?! zFlIiCu543Wun~7ejz!3Bwkqcw;#k=IF@D(5A~7KwN2GpRPv1W@&Yk*uy!0q5q2To& zRS}3VPX$HGxch3a=*!0I_+q^~{PCVm1Fo<7FT+&ue>`0d#e%t`ZQf&UVQrE_XWg*As9UwV$5oC<|5YJx zun|ecduNZqNEDGRn(JoO#Dt6q(0u9ZaA)e8{WRye6$bqk58Dd+{*`iJ6dyu87%!Vo z_zjVm{!Xh**(3oO9tRr`wcKHxV!qMlL5;5q6Ms^d;UEh?kcaQwQN*o+2CB4Ncv|H! zp!^Rymw=Cp%N~|GoLMF{;+rEfm#_hPVoyu@rw%N1Z31WbjxvPqjn|cd8r1bCgkS~rOZcYLLq zr4WtMS41ighOjq3=-W#qxeBTXjuz_e$7C{uJ4p_gt@KGEIt{R>Lm z1-tCCM}CEHWAM2Fhpn-{FV_l;tiHTO&El6qMTK@$Z{n?&CdT>?`s9(R7 zdVQmJl~}9R5@vG6XAoH&JR%qyLkhO!ABdu29fiLPxZEznn3?EY`yivcwMz zuI=Xfe>daiL;1UaOIxjqh&s^L2TZ{SdZh*N3=xP zjy{DB5X4-^w~UAIId~z1D}v+4nh$)#yKyTA#@WmbWnx+YZ~-uEeZx@;Be3CYDN8Hi z+ku)9*ifARc3nh>c$~l*%Nv+G907hhe@b|5%!#krxug)LM<`!W%NLg&KV0SQlrCJ5Z_?@P@L>T1+#MRwff(BC;$Q zPQwDW8?^~zKEpztq$_hY;Rt=U@>s8$lp%%d4_D9yim0jp$7gU+Xhb$K=B((}9aoy9 z5KRekc?oti5L37gOpj?ydCosdOmb43dx(k>)memT8$Xf0xRewIHg50*UDG@_8A)~b z?PPfxznL53j-nm@L;g1FLs}jcC>sz11b%Du>>T-wM};6Df!din+u_)Kac!I7qGtVi zM~zWGN|HWK9~z*VcpReeX@*}zZ=N~uCVOrX)ABb~RPPQsq_1H3UAk?H<`n-qjVzjkW)4-(Lo3=13sIW+1bB8<&7o3;!7|{yEQ0Yrkh=eX z4V9rcg$F3v=u#rEObZ!7>ELdlC%1ih7`SvEF`^uD*6@Wlq$MiVN>U~NP|v~zv*^;4 z_r;??bnVbFuX<4W9k6(9=9r7|82&8vmw16@Odl(P-M%pMt7UK0ZN29h(hUek)A&*|dY|7ccuUgBs1}G%Bi?2!I`<`K5@ar=tI&N}vCx zN=x~L$1aN9_Wg)f{B-^8RCOEM7sY;{#nNA-hG;$?bmCwLHZ|gH`8NBL95&=CATtDl z1gTA;5v`+V{M(C8K0paX6LUg>3$QQej4Bp=WwA0`7T@Ym<3)yjZ~x>N@jL$hRiY)| zd&X1v!5&@wlV4wNdFE$Anz1{=EGrZlbb!6{M4o$lN?^VSw>Y`;`pU{k@2iH!{<=tFeZ__^`Syl)8@}JIUhR zt9L1?K@srtD-uVNvH=25pSYcGnRW3gvzf!IL-;TyAY;8hR0g-vU7cLMCP$B$BQe+g zX@K?L)#8ugs~DW9cM(XY=(!LWJV>!FAiIe+{6cKzR#{`_Or(zDNr^Pe&%=kO$(}&e0#e6uU{t zHrPOdvi2~*wrj#*ie>c|Nm`^6Qtmjfg*$?@e$ih&G~AD3+lp%>(NR3ul>F11!hvGP z#%Fk;=cel~mUfdfW(;xE^NS620VCQIR9QEm_~7#4vZi>s;v2x=xsuee!}Wjy=*<98 z2TJsfrQb2mVA2hqZu9D_3c+x2FYh=_UL@f~@uLoy=*#)xcgx}sM$2&&(A^3duMOA> zOEjD-GK;T-;6#(0-7nzIK2mQP)|5fIoSD;_f~|nsNs;A0#C8s~n;LaQ-S-zBX}J+b zU>Zol02du-GoLt?GnW6}*%SvPI87sR@{*@`>2{@)#%`C!i>2GSUgyp8N|{*3#A+^0Kc1`3Q?WMGO@+o! zku0HkX=WW&r)--KO4$?Xs=@hAn47yD`IknM&ky!bG{}ES#-EfRkNx;z*2mt|MW}gTQyE{}T_J;n zEO!g{_sx+Z$^B72L|gNUjQfZYj0;#e_qYW!!$8G~r3N*AV3@~ckKP{qE=*2>QmI^k zz=qQDGd$ok83F9>gTVlC`!~Za|1`E8?YRJi+|CMtb7hQD;=K)(bsng<|6U%&ukfwW z(Hp)oI2WPSWR!03eG$%FO0{nu{SzT>Iv@P^7-Tkt=-?x2oziin@H90zF@gH5xlw|Dg34{x$Iz7mvqudmeLhwm2i;ztQ#rWy_YlArhR6ehsJAwQp@kurb@L3-Y- zz=&=qseaeaL^M5HyqT+@sI*S7!*wARx&-~?m`&Neiwro+KuPZCAv|f|F4>4>ZCW)T+shSVvka{l2yXYcQNTaJg^4V42 z^yl__uIT=Hpj_3Ht_b6mZSmv)qz-u!bddq|$2{K4)jPd&r`2XGh zu;M@gE7qL)LO~E*2Hn$)6qm{BC>Gog6?X*rMmrs#q!k)^O3cwRY17C3MBjL)wGghR zXcbV95oMV}!sQB!#zVKUMnY-nef-dJ59E5urP+ti-`%Wg6<{T3pqGp4%MT1pw44p_ zLayDNOpM2q$U_wxxxU}y(1upmI}lF|o=0S#s%8)Y&Qf2e>af8*4O{Cy{Cjg{i?3Dg z)DB$Rr=+jqgKwc(?XVgRlRTWfYQCru?RbwM0{A^Dn=jdRsXR9_H zBA}nNeSGcMU3P9bDI;va8uMvu#k);Ez3|OEwe%jX$%cCgF}*HDTb+T~&}LLYP)!-w z0Ofk*{9@hPq;ClMoxFlKV+voMSI}kl2|5vVlzxyI|5pA~G*6yI!;OA0s)=@*fF^7B z)3u*kr$r}sBS^3}S>L(m2S{koiF*Qu1!00&Y>(h}zQi}T9F0`aq#g-rh>rga}SI3Mfn z(IEs=1_d9|FrP=#?2)~kqTE|f?kN0J2D`HX@U*}v5=k8UJByh{t%kr37y9UKyE@fhqrJC+6BB1ov9T#51mdiXV)zpM|-k|~R?s;y!FDHKw$$Sif)v4TRplsA_prl43 zi8kD!a=ci_ws>VnGWJy6o&D7>;MIYpg^VAg&wvmRq=E%gY~ z_De*tJa6>dhGu@cgtly+nP`=`>rEOo6vM9AFvRLo!UBqW z;Km>~+&$xN;zZI$7R%CSAQQS5?sg;XPutXGHTqzD@g7p9`+K@=*<4%*@i)}#KBipU zAh;3VVJ>zcbtmh&#yct6#e8|f|J`%WMGVA#h0f|ML881OU`OMU;Yeh@^SLG=YMDX8 z#6{{JkIgmI;TP?u28`A#xyOft%~_i+V2GY~vFW+$``2%<$#kvVxVHu{d+Q{7WPuE4 z&@VOfUnv=6flxNbqfRddd`hG=>Sev)48Pp#ZxgJC<_tH8syDxP75gQC&1`qOWj1Vk>N~K4r-Y}F*X1~tS3SN8Aiit%-FUi_ zX>!A3&tn=q#~1!7$0x&I*2UThvSo#h1)!DYdcg6~7+Ll*{| zPZmxnnMuNe5;w>+u6_intKa;*FJP^&uBrHpg$*8P5Zcv`uEd4?#pa(}V}MGpWz$W; z@zRv{^z`FKL=)v`;isN>6|OieCHuH#uZ7B&qPx;sK#N#N)2=z@l;*e}nV;K;Wa_5s zJc&5X#h4bip3|`O9dS!obyOK!s}Ia?ST@}Ow^&@w3B^4o{3Yt~$*7&vj{F)hkIf@3z*!sOwKps6%&!3NYH5;@9>G%{lBm)~A z+uRzPKB%Wx*M>@d6w6QATjO61=e3>QcE8hrKJ>AvAqc&$ICi+ZQ%Q+;%Ipbd$uPXw zM9Oqs26f)s=43q4qzgp#MD5tdIzF)zR6Ju2!6tRjjF_>y#{j${xM^K4F{0PX5E>{$ z3}>$DhaXzjLw(GEwf3*fU!G35;!f7Oa(SAQPyLA9GF;Bd2Z?)z>$lo~@22Tr!y{U4 zxAB6?IJDQh+Bf$2c7+6^GlKRd)m;dxNV$d8snBCvhd$fly9~X(?gOT2fn-E0dYMX3 z?EQ)9y4$z;LZfBZkAU@>?^LEegG*wus{}tF8T&@7Yn-*4NcW=d6q1w=Gd_ z_i1~3`VqbgLNTr=bQ@pc+LbLVMXp`vR>G$%utrPx)%FLCtW@4UP`l8+;)En=4&4V1 z@xMDtuZ3%Q@kI^vL^foP%dg;3u~axL0L)y>LhQwp+4cifQ@) z6O9J|QA!Wq^+@|r6cBR0)19&t8hC@=JXX`7?OiDN)u&G!=oZBfE+Ug}!{3dflxK1n z{srwO&>Rk+VuGlp)3N~Y{7eghLot(0*VCs)pr#1i?4(%cRee{{Lc2uuWi9E8omw|k?A!KZn_?A-APl0z-9Mv=yVXwl=>g`Al?_4&#% zC|F4We}&zdz7F*hvUVHWhEF@qI^nkVfwZM~Y)~6qA-P+*KD_#tDRCEX zswc`P%edSHI}?Nrpd`omEYsH~a`DDQ&E;9^V_ttQY>j1VJKAXC?tN8|)W3HjkA9!L z8Si60jA~0Of4x1&W#_C}r3j|IItNc(X!lg|Ov8-GbU+@OgiLe|uPiDLy((Z$i1^5V zeCD0v!KErAzFFW`-0uz)lW*<4TS^Q$Jjm}HYB}g%*btd)#SC^`i7y`$l{kEa_40*o z6&}FB75qj8j$~%fC{^D|i^HO-rB=TL@uwKfqFWP1{gz=&M!NEkQothe0yww-er}4m z6CA9u_jJeerk^JoN5pm`!* zac_8*wy3z-gDRIIa>4Spx<*Jlsd@5F z=)L8X;-BpvGUhj2NEc`LdSsXxn>o7qOce{BDN!4BGb10gy9;2#o2Nsp2mEgvId?j2!ED7?}2XqM0vtcraV}#nixwlbA?HV+OFw!ZdYM=_2$)fZt;AmcF0H8r=FeKyCrgUPB~!Sc6b zBW5$g)|XVh`QD^f`~WVhzN9$}$tP zVP9_)g1V85E)n!IM6au?e%_Sj$}r8+TnGbKb46}v(G5PuHkf~$afQ?T=HJI;MqxNA z`U~*`WMb(#_A~B3Kp4!|&dYgqS|xEwc`WRMaHTwpx2$ALko$svR@&E6+QC&bc*sqm z!#oyTT3``nwZK)gncJ-+Ph$?HmAi%@|C{zaJcd@qruGA83|ksuF#4wafqP)txX%M= zy20c<_MwwEj=VsHv5Cz78Dm0=#iXIEjS%73K=qyqPRdW7^U!;640V~X6I~BE(@wsq{~zKD`DAXnK?h8{{TkNG1SVG(dX6#0@zrr27I;{ZTh>=KMd z-0!NbpSXc4&owOA0Oi%puS1b?cjF5%Y19|HGNBmeV@O>C@fjUPU`+bw3d<6u&D6f0 zE^uBN&P;%fO6xb_EXY3;Q7%AHt#WeZ-x>C#mCiRmqy}E?zWAXo3jM3A_9q2(*5FoT z=k{2ISHGcrS)20Sp?U=DUy6ihSdv0Y*;6)j^4$*&<@g9J?82E6hHwPS{PV5)us-Sc zkqWzYOI?yj@cTRA;JqZTCAP{!0X@#+uzTfFpd15+@QJnKi6IB`h?dltuh2L=A#N%K zl@$jO&55W?jI%=xZFr}q&^n$5yt9z*MBX0X7y0wRZ>t3CB^*Rh{#_kq;$v~omi zb6d_I!cR&p{nu8gvj-|>_{ine1PRX{VZLZwOoUCwv^oUAsWZdy{Ak5S(Q}jtL~Z3A z76359%U$<3OCz7t+6WKtWT*-#)#_XtI;8NyfnIb2`xq!EoK_9*$l!h+}00lcx?IIv>7J!GCtj1Tq_C9b=ytacQ^&3F)f5vk)R218u2SWd8sl}MyJ9qQS}WPDuz1O*~aRm|F`mhS6hEdwX**c1ogvV0lQn+cE+_J;>IJ=?FU%Yh{ zO?@@Ay-~_lZ9yPJ8nUee1jdV~_g-O6E;7z{s3WU4d>$vXw=vvK$io`7g{2D7rJi`- z-w$`|t3t*=4<@Ae+R=>FpPB695}Q!W~p!xDv)GiGuN4LBl-L88_>;Mp3=;l+@!DHRMUvy(MT-%2Q% z=663^5g;`;hRdX%y~u+1P#;9FYnlG&SN|ZgMDQVa3=UoQY-~FQbPjXOf%H&+R>wC&FuQoCpBjk+%}rhz$K&h5=SlX5A~xBprwu5<+`W` zrcUaZ^P=2BP;c_bC$l!R9MrldFV6$HzGYX;X$(NhM~XcAj$f5=;)?LE;~lAsDmsM9 z9_9`?pWN}wmUL>emV8jp>M->$=yts2fa_=M+KgB2VU3Y-mG>i1F>^;M0!l6?i*=2M ze1tiuQ@?LAVjr+z)#tlr9&t9=*%eEUSsC?C!u2E+Ds7KGerd1SN+rbiZT||ROS5Hm zt9s^6`0dBzQ>)_rPkmwJ%u`RMqb)HjOg@w!rxl&fvBWgfm8fZ6GY8lf>OwW&3X^AF z$*quWsBQY!DhM5bro?gH8@$F*y(|RRX&|nl!W=`7eNoI=!}VsY?P#W+{-G?Bo!=Eh zqh{T=r@{7E?rFQHn9UQf6)P0-^kTt@cXnf~j6%D@(>o0VM{3Nd6o(I9i6pHkH*ItO8h(ZZmB6r+7) z3ImU^1Pk>6&DM?~E^pKOjf%OW$b@bwbw5VZIYo@vp_s8HhhqVT(#q3tf;z42{t_-$ zf=aoQUo>ImWp}b5(hIS}v@~IjW(v3%%8%c zBwMgI%@yc0nCAnilo!E4aTW*Z5Jg0m&;6B$TRS(ufRWcv>l2$pm7=eP^@o+o+L)J` zs=KI~!VC*OLj{XQOWR}1H6~giB5bzpiK$@P>@RMb&QuFhdVRQ35D&-7SIzA0KYh&p z+`*sW&tk!VMs^p*&+%NEn-t=88eIJ0SX2#vx~BiOh8hF_nV6MS>L--kz(obzDVanu zV~Vm13DGZ9!X%*22})>Icc(Qi>dMx#k1iz9ax`0G^J=+SMfduS);N}sdkDeY?PmG|VV|qF$9kY4 zBsP5f!z@xL3&%IArv6Q-Z;xx@%6$Fo#2lPl6%4|(;s8yvdrg9^p&r6I|rJ} zZHKx}ZuM4OlSon6=p7fKf=lt6*%_jFf1rF22DJG+sj4@@PWA zvs@+Wo9T75?!Yd%e-60zXSPr~z#eMgGg19MXr5Grj`ju>!^0Xvv4&jc2 zkRF~v@M*Fr>vTd4vy4or*!rqW(SkYuB7Gw5a2bqGh~wHSoS2kLhRxWtVxoegtu3(fnJ(8WUPrxi~Z+e{&vrO-1(;b2NK^mSJrhO zpXrOi`xhINev4GkvfL2^fgPvo`BJd&ueGz)_%w3|w$>Qj&vL|7pB95EqS8o(@qgH( zx$Z!h3wgpEJ4x(~PsER^`m#p8pZ#`mfkHvz8|1ccWii3}dYAsbUgFa~-M08gvGx7S zB%NF;Vb^w6nxN{n1)4GO35GN;qla?NtK?(Y+nm9^Uo7rztR^;OlX6E@ei`^dYHt=6 zE*4;TN(I&4)#yrgDc({+nQ3l`Ch0m5bn>$eIK2`ZH6r*=rJ3`nFnf=UvFIu=%f|MQ zPhpH2$e(f*wb<}byKcS$3KC+(OGCd-%qKO!u`Y|E5|C-$4`Z(X*oiGLJ*o=ieBX{~ zQ?;!|F012*S5JNM$|&c73DqJ>IN^I~slhWueh1}p|NU$~`AfBS;_jJmqflv*c#p}M z#nqt|^hC`RZ{smzraCDM%UD$k^!90!&%JpNj?z~52LB_$LxodtnC}aYG-%qRUx8am zCDHuzX9RWS=}P`E@Y>Xvh26hT%>Uev`hTSD5HMBgujyhjsd?bJktRcbvIUTf1zlRh z8jrqwh_~kuk^~nC+5ynx#DM_!-=MadN+i9Q@`Q^lvR>$`x*r!5ZhB#0eQ=wB9dQ)* zyVst&F^(!fOZTQwQw)HI{U*p&fm5@Ckef;7vks#W9TY<;4!LdQnG%Jc5E5wS_bmsR zj2sXm_;kEsg?I$`J>Zo65wP)p9~P4MvJJK%$012>hy|aV^5@=z7>eozd6l8{4h9@} zuT~<$eZn_l8hp0JC*pa~=Q}7vWhQ3COlwa>kY>%OX_=z!yxm4&WGZU=i(!0#T0{`D z1*Pc*Kcv|Tk*|JR9A`2SKs1GPd0)1H7yKbcB&+FsRX#7^|lwdXKmL-M+q$oyNnft zj<&gT>Rb$dP5J&at0cqSx4e&wQWVtqS-RR!ja)TYJN~oItald6TB%FL^YPPw*X@MfCXUai*$Z1V{D6CUBhX&8f1o;3C9CB{f~6B-f+$XdSGd(6M|ujoN%EAL8|jJk?O{ z+ix5x+vu$^4+Zc|mxB>8&k3M`F1MP>PlvlvWNbX9UaBTbYewwvT{(kVBlEoBV+GzD zFUUw9adsff96oB`y$CEOBp?g~&@S3JvucUl_BOw3ILA-mTZ)XACRAuX4v{A51j`*$ z9nSoiCo;C7$#o{~a=+s;*>*niGAsohrjZ$~aHo5!gw<%yq?MhjvLGHa3;+k~Li#J!+80!yy>7$m%9-^J(hiP}(zj~tzD z(Q}-E+LWHPH#Uw#QND%7T@IAC>Y%~UU0UYGnn;)S?Sh&pVu$3@Tp!_hi`i<2I0R;b z+!^rS-S}8p(F4MFva*_LG5+ssii5!S$Rc6F@LYI-h{uTDt@{93mXsw=!Yi1VSHxNRFXJtPu+9yydR!8D~bpxjkx0m$@1 zjKWw?)xsqKfxun3^11(`;S`&11DhMn*+ltygOH)IAF7)dcXpaTd)J2=+QAzWkwHTI z6u8zhdAPuSxAp7};Vwbihw>z3Vy@$7ejh#X3z{+oIzP z_PyuETkb)#e?9LBKmLU$2xeTxI({3mvyJYxgj>>P#HuB&#qX!KiS|6_qXVb=b=`%q zF&SU9Ld%(xb^I+RKwzoAv-VXx-jNUd?ulOy0Ct!u5w-?N0$`#&DNY3>TwHAu5X&51yCB%UBMP) zo=lSX{=U1m`9XLf20M(pgL*58J9oS$Q@D7VNAzKP9}hD*Snc7#f~N?T-lr*8?j(nH zsevb4m=0lTq6{c@qz%8Kvn~=M!onw_oZ^um!Q5SUs`MdR14P9=Qd3G^JldpW%A?DH zTAI~68g!9_7>?e1q{&LnO2V~@3uuA=G|^i6_P~|3Uoyq%4M0y~BP-3^Wb~s4r;Tlp zQTp?4&fW4Sha++!fujXZzB~rE$EX0&@GuKM^ zzUtEu+20JpzZE@@`h4~bU+E`_$OY)Ap>0O+8qQ@K-Q+F3u}^~ggm2lf!MFTYy8e-s zVgyj0xUrjr&il+Wo(qX~5jU-q92sa2e7wK60GH$^(jMS1U~9*WN-9^qNsYyM*YTr1 z^rR`O#F4&q1JuV|ipN~$@xbQ9B_SV?AdZA^D|Fb?%Z|?T{_)a?LpYW5QW7{E)+1WD zF|Te^B|dF>8>;ud+gIw1=Y3G;GT!>_7sMKr!SFIiIOnSF>a8{^2woW4K2JDs)@&om zS(d4Zm4M)Nv44rb4w#VKk*RVm2>VbRr!NV8bZeIs7AMo|p}_E^7h#jTW8jT0EPj>t z!djTaWG<=OL0Q17$;`E`YW|pewGhaX@Y!^-&Lc6T7-8$&J33LHnv(h5FNGU})@@C` zEM>DFsD3SmokX37cizlOif9M7_Zm{E0`Opq<&Wlkk94D5z5IRGW_f@fuSu2V!~MXS zo|#)dQ)5Rc%{vz)U2vf5K;A^@;LFLUAi{@XhA<)Xd(TqH{umSz*eGW)_3IfM}C;M;rT^wopAqWIMCDF%w%DGdniP__0Ig=(QcoS8(da% ziF}@gL!Bv{6KibE)N>_WrGW7uARou48dj}`k`*9WaMisu&pQ3~-1ycIC?dR)G?PKZ zNB90&!cTlWYIOdXO_rHUa}^&l)s17gJ84UGU?W&O4#_kzWDcyVU}rf4oNxzT3O&kl zF{LD%@aN`Fz*6&|gLcz8?>4{st1fKT_q=6wq_dk{NN{2k# zWTjLGcJHdh=N%W&kxi`5**mfv^4>vlO9Qk`>(pyX22!6>l%Br~Nk#Oum2B`jJs`=a z$A}6RcTP^gOuff*?B?$npwal?>rWopn-y4RQU8oKY^59b8!)vX*v~zdyKj+7ldxg$ zA8V}6D2AjGz9eg|e->Bigc@FPLp=TNqPS2*{ysXf!v05NbE)_QK_<<1ua@fJH_}fY zSXn!OiQ$!9(_J*^p`TYS`S0-?$Mu=DfHxHF1;+#*TnR(PDnq-ROyN6EvZj&>FJ3s?t!K^1H)Y&`qqYiHL@eFhAX@bWfogut$-|4!STO3` zT^p%R6^M74t)k#dN94-7fzI!TNR=qiGDbz@{qG#hycAu8zVIhjJjt{--sz%s&YO&>-^^6}a zsWLOZO99(Ss48`J%$4z?!$NzwXZthPrHgVBAZz=T#kJFFs+v}0p9aM~GeI0=Rs1k^ z8L$L;KN*M8-PZcd1D+{xU=C121IWlO1#sm?Vm*m_W1&&Mw+Q!pj*Zj9(#0StH_f~s_+O__=)|jjV^Jfyc=v%ormmDFcX>;sQ1a52R=D7{DV1{I_8r}Nk z5XV_^0|Cv+>}V`4!Cff@!Bt8WKy3s_@7tH-s66@%`->OfvT9zy56atEyW7r)RAuHlul7+e;=vj2G+a*a z#zI9cLc3;da-UaqL37epXF}AOBK#uCi3n}RfI9J|e>Ml??tW{qQTs;4d3iKns>VW# znqGLXT83HZ*?MYMGcV_p2G1AIXuxqbRnwk0GbWkHitFZ;WL&lbE_$}BR*wf8YbF>`E zgy;|$`k#ZpaF9xec;*m3*GVvJ^JmHsOEekWt;ZwowCH!|j^Quot7;+lIPLzjC}n9= zE_!a$2J}Q1yDBWd88S#k71J>j?8` z580;BxqN_q3rT&KOW%R`5&eIomZV`HA%(RA+rmkVLfn!c0bQ4mluL*XJu9w;B!nwc zS_&=4!BL3$Gh2gjw;;&nI$K?~O;ZKl1RpH^!CRudJf%uT_I-H5^rzVFgR)!g@Kl$Nc?#B1KRBZINjMp3lJ< zdNiXG=llplyYy7MHqTMk2ukf*R?M4-m(_cS%zbWFvi#)qmP{19cbhHm{10OP_mXtR zh(SVdpe%ohiyvnOTBecYqyzclCuX~M=QUcHX3$G!n+EfVaep39fFWx}N!BeL0@l94mvQ`INeXtn)FV=7sde~8 zV4>3x-ai?P$cm%Ij}8HqQ|allfAq!D7SqLXqCj}BzaQ{lqh3#u5bLpL{4#kj$dpcY zCnU$GwlnP;_s75eSpEUr)?y*%U~A~Ya(}uR-)TYI$$Xjknq&S4CKvi9n>HMWUIh+> zc)8NEaH^Hnk!O;ZpYQ0`<*T5euMoa(fbhhw6+{RJ`OdUB#2MgQ%T+a83X*^d#-a#mW(tMT*bQy8CiaRlgu-T2bivx zAc`(c_m}J_5Alg{vRX?}$1Ugw^|;<}UFmNlVfyHOmBn50uNZotcjMCkyIl3ciZ0G0 z&dw8Db1YPfwDPq);f@Oc9ogSL4WnUgo8ITyJ}a?c%ZBr|rt~~}h?y7pPK_j$h@r)m z;TGasG{tsq!gHi=9z3~#e2%?VVqQ{##~YzNi2-&r_|71x&;w31x!W06v=rpZoz~r}~U#_5jQI%wSdKeVtiVPE6O2|Y-h@I*A1-%ge z$=Cda9qO+T@WNi8RM~3X^m>+(8+vN{zD7P=RAp2(EZXE z!bB4h91ey0B0RF6a3f&`yGiyLJ#k4lJhT3Kr&0Su=;iuSVtlQN-otuOA6j3>rY!KQ zoPfinsr&iDY~1CqqbI3n<&uZb7yzz+CoTU|r2nXi{#glsRF-W}6_U7-$AHHd>q$IN ziEEHY3q6_;>Oiw<(u6@G%W?<-#V4!?zjDcq#yJ8(%cIb$65>3xbZ6-}O(N6pgz z6N;>KJ9oWusQPqSy**J`haMhwtJZUw$GaFEQ=I17h*ZEA`Dvv(tkG*0RgY%SAgqI? z8J|@&On-oG8l)Gi&t@U@DgF-69|D@9T|4@}rbk;P5kXX%Ym^TakBw-}Z@Tum9oRSm z^y+pj46+%w`F6QCd)ct-$GI*$AEX(p74I9BgrBNZB0E)xc(zBVj*xwkj%x*qID7T~ zA7gJFRmJzck1Hagba!`mr=-$IcZZ}%ch{vmBrk|acXy|>bT`u7{O028U7xjnYkmKO zJ9FmDK6}pD`+0W6f=VNqV5j2=c@TijgDk`(E$< z4dPS4zRySk=y+y36mc!~^$8chfdCEu1?7yL{kzABnRYdC9AEB)8pAcfia=Yzqx&<6 zhjI<(@^G5z%&)@?V7qV?rfPD@iyF)MmebWc54(gG;C(^W?))8x*4*p?R+$pi!dr`s z`KQoG{+N6+It;cs0zs4@n)e17-<`S?WAN8#9RjJ$+C5>&LoZV6o5{AGoU^g`VvPvT zw~q@g?yP_k2Vo{ueYu)cbqU%v_#Dk7Q+VcAMEMX{YsYWV!~}9e3j(`pyqf%@AHHU& zr#2nMe)1|*gva3NnQ#`R!b7mS7F_O0;<$Ii-X& zh^1Xs`2m#{0r~`7=aLEfbA9}SPKF>%e?AZbDC>ewr+M7qGNPq^afAsDVQqoi@m zf412^IA~a?F0q_P-6GZ0j1=XDtPWxeh*qQg*2W%AU`yCt7thZ1^YjJf3 z1M#TAWtN5txXD_g9sLixtx5vQgK!n!kme3&e@55fy;^=-bFJS`I_<-p)Xr^DN2t|1 zz=hS|Ir^@WF=a3m?98{{5!+ty?S)BhXmm7kSePJN*-1)7Zhs_zVBC9rTK5RO^sB#M zpog9Jxx8)qa^3pdudh?@ii1O%g8^h}lA}qJv@&kZkZLUyKyslRTEi2CJ|)fV&(kb0 z*3PAFpuN-sa5fuV5*HrtkxCgG+7@^)<5Y)&O$JjHj-Dcv!@x$bv<6|X(%31f?oVm9 z<;!-Onv#cqeSo(^EWdn#|;_ ze)YBF6`6{Ui3QXn^yc;EsqeDm$QIJQtGI8GQwH!*iMaF>*JMI)g<5Zr{*%Yh4J6dJHC|Gnn}g%SbxAdzbrDB%ip zCxZ6PltWjM$ySv_#|Zca!90iFFdF}yQkXr_7Ce=8tkSa3hIX@GOpw%PX&K--rul8^-DjP8KYZh^Ko`qw(3$q|f5Mc77 zE-+`}y!?yi)1GLlz$sCHXwhI(koSc=;R!D{UR#)Cp6Bw-95%i1!dj0}l|e$#a`wBZ z>)-hl)qJyhRec%7{{1S^mMvYYR4xyT;(oItO*u2J^bBiitXywha``gH7qDE{C7sb; z$^w0DmC?{Y!$Zt?;U!eStFU#QuzFV4=ieeej7`=d%lz?%>O`_i%w;kQA_{(G&tUhx zo72v%`23x#?}z#o@?23pTi%zIy_bQC7y^t9%u0*W6l>{*Zr2!@Ue^x?{2vFJ%TUJ# zg=Gl8zEy26@|A5z7e`nQHq?CDPd(TGFt7Gm_1U^pku#)Q*)N)BIvhUVVxrNKOVFscidQAS2nq2;hPS!mT462)J>0LJi+w&HVt! zDmCka(X%yinh5;mI{3}>+0TFe%_0Q+VtIw4--&1|b-?K~vh$l6g<>{t;pJN~fUFMi zQJukHej8+HAeFC%tuE7&x8u*)xB*^N7SGU`T|g?iva&~~8QA-9nexU;EuXA^PYiKh zU2CB&Pag!XuFm+fyAJ@Rw^1Fz9IWsD!5MV|Q^6tutKK@B-OQ?`j_nsLhBZwQMhqCe z2*IMu9QoX~wKKYVHyud<*iBMJP@S~n=!g3`RINZ;mht*|TR7i(nTsHJMSNX~o$Rl! zQ`G_q;+T~Vr#P#x%0?sw)4#FUd+GOnPk}>ddEDI&cwslJWs3BE<%wIuQS664mkF3! z4V-l(6`xUy7b%dt9r67TN#~P@iKjAUfLC}#V7?y-?cO`KzOcEN#^JK-<(2w@>J*;dcmX7sD)z1w2yg=>vynARs*p`m?NdFwd3*H6jY3-UESsIwM(2KY1un zl1I-{!R;3>w-bw4KPzu+5SIvU<>&%ULAwn7Lorgpp2h0oqJTO#!;2~WS|dfFM7JVs zA0>1%C83P=HIza{w;rb<4wa0GqM|%%v`qYthV}`2dW$56P*f=no(oc53~^dLVg@G~ahlH8dzv>el$lIp+ny5AOzr6sR(N31($lE zJ6z`wm8+K{x=jZj6p)RM9CSfbO0spVua6FI4cqHpnb&g$Sl*KF({*;>oLR|mpD1(V zIc^`Vim6|SDGJ9uf~C+Oc!h3jh!FmtzeB0LH+fC`ucqq>xli<1DNA@5KM$S%8&$-? zzxy|=c!M~#9|wSx%z8}F4+L-w$~``x;l|dg+4kj}k}RuosX-O)Xuv%4{Do}3tpCY! z8tE^yb;Ok(xr{CxzCJF3+hS-8NFG_NH)W1+yb0o}s3w>|1(z*;CaKYR=qN7yQchdu z;Lu+6Qo``P9FUiL&W{{d+^k?Yr0SxHM{~ggh^+8nhs~Rl%bV&=s|>~KYu^?*bQ5Pm z?oGd&!=&RKHrp`TVu?mVud#hFmgc?GHl9pCAT}YX9AAmV}H?KBDr}R z`#)xxAcV%w&$}X3ED8cYXtf}4X+M3qD2q>^oEA3vi&YB$g2m3o5}mM6v3H8YRonJIJhLcb{U*&S zMryumjA(a%3IsO=Ix1A;?!_Ae$&NptlAU=Yvt=5ZcyhDAy6%iGkjl8I5CPDZJ-GcT~RWR$=nRfU%z2?4CUK+?xur-|1e@P6q#D2+)3Q6?( zFFf~uq1RD-h^f~bD?tjSCk-Hzr4*7^{|CIj01k};LAr)m$S}v90DgKN%*A3|_5!eg zs$O7+CVu#D3|CJgWMb$% zw}`l2g@C1<-;z1iUjXvad=W18U+Keuu&IwBLOQ0*MRS20ORx zAM^a{G5}`Tv-2qI35c&?1XS`IGjb2P{b5yB29N#)WS|!kV2b~hwhM4MrVH9Q%=7K3 zWWwP5E%osaVk?%AnN@G>2tq8re^6~;4q1YL1gFfz)qr7+BcNHw#XkIHAL2)EdfIm` zwMl?wDAE7^K2$goa^R9_JFuYqmtF$sEiLd!FAUB{%4hTyy{zm2#*?Ag7JK)PjjVJX z^pDlUYgP+^-{GvE+@rPbikXLxu!@iz-dBEdZMCV!D)5DK#cLLImWG>rh;;XKCxay! zb7UTG;sI^z>n+dsel44{VtP0yM?Rx+UzgJ6E%;V%_|z0h9ebc7^y~FaH&!K?6xiG; zV8@*_`VNrEuxAhZtN)!LAXq#P;@v!|h8d`rYWoUzd?DanFyFD`tj}b|ujGYl&>Wwu zQ#%4()Kr_*v?BB5R1tNm!#q+P{|hs{Z$}+sC{UG(X7ldqI1Mj#=sr7@TD*F5Ozy!; znXw=A@MlPY_YIeqEzw~6r^UWkl=L`5Bl?2oEJXrWtfldXI zAuUu;_40tSE||&uZD#SGT*WoiLciQXbxn=M^`;D{4SmAsQt#fpuyT8=!{T42@W6XooS%@z=5~?8%S_+yD zNXTb5Vk=m3_8(crX2;!pdq=qW;=clIee^Wd^*3PICa06GGUP`_^p`J*)7;}|ZdR*N{l#Ax^So|K3_#LvM{7eO zUs`ZcM~zG5klW`{h^_ZAG93ysC~sZQCgW~Wd#2X<3PE)+ejOUXbLv__$pMP63$<26 z5sMXbZ$KTy9imdcl8_Cq??TFz!PNRgtUrOc;4!O%dXP$h$7wt84R(JSC1Bn8`l0$c zdioR5CrVJy@^Qz4>=kp{7=h=XU13k6xGREx#~iP{<>xMcL09U~cEtGUuI165!_<1P zt>~hXoC59BQh?Fe!XS2;6%Q}=Ld>28t4=W<$EOzqhWonhr91`(!T+qcj$m{aF;d7px@13QbL4Je~V7bt1ln zhG;3CTs?)@!>YK@R2-T8XANOThs~KR<0CqQuu!|b-OnK;K~FgmMI9Y;OH0loJ`N59 zFggkdi!RUM&HkNyrl9Dt_$nBc0+jtBW`UvM~8h4Ocyn5X`%-#FW~9nMi@DqF+FOeflOIrB!WxS?DWntTWv!P9(Np>LQq0K&YfD! z6Nmwo%y&(O&;~}oS6P#{m=PTZTRJ0h-h8=IveRzTmN&WefFUh!TIc64QiBUDNCqen z(H%9b5L1q9W?e{huK#o>tNPkes0~ch4vKdt+V8jyMO#0DAkM^+)_!_D`aQMR9oHQE z@*NF0ZDEWo*t{FBmlBA&7td&Up&M)TB#qwaeGJF|3n!hjLSN=I#f&Y&7`b7K{4qlJ z_zj)?K@Z7gj%zzW`u*tVWdWRvd3ez2eOF~yVWrk_w9 zq1B&z}$MC|35H$K}{U3 z5XN<$XNbf`vw7Nyrax5#0ZWaJ>yC|FM~;|P|w$@T9!*_c@czi{TRju*y$E& zMeBY=8}FMjK$pA2t3J>l2_SWE6Z#n;{hT2pU?q$bZTMQl+Gi32m|1?uIeb^s*SEub zE=6Y&Q8omlh3=9z9a^vs`#(XZQ&=qkaeI--zsw@&~H+%-~%_Z9bI*iBfnlzV()+>VbKe`>x~I0YA`o{J?y z=I{CJDz)+kQ(QbG6ux&+Bwc?_2A2Y--iSG|*#Vu)bya*!=W`7Z$O(^8<$6i<=n(kR z2*s+AnMl^5`uG{|UFsnz`!Y_s||1WitRDqV#oA=mJ_QJ`X-VlB7# z%eC>)dYAe^)%=Y4rq5NUlVN!Z`{MPKIM)!L@|(eF%?|6xO>nL?C=!Oe%yM>;hY{U=gK=sTW2`-s7ElZ(Tj?<09b~5HG(0_1T#Q6hkK@9!O z`n~IgxBl8@(uT2m1U8hS)Vs(`{;1lcC3}(2^%W+_F2}F~@ic*v2b%3!QWX5Iw@@+D zwszh&OI0LP#z02y`mffpYo=QgO?JzG)S#(j?yVFtbXloezc)xm3U^qd=ya;eh??U` z#`}oeAqJwi_Gcc~*ip`QL<)_n2!{<^w(G>Gp$bLnEQijVKqMM;728chV}_@0i<>_k zO3YWwPnbUkw&pgyUts#*Woy^7B8PtZax>C8n&)WW%9xQxg^9m0e)*kq6ZD&(UHjp1O%vSpQrdnj97Ic*t%qIc^7YrSO14* zuHWJZK&2Ir5nYMgm0nZBoZax)SJ%9{oaVb^{Z39H45&p4jFpBLc605ce^@U>$S(YqQ%U~!_6 ziHbkmgN-3etxA+N=nL9t>q5CG6eI|($^X%LJV_oiLEc`RP&6M7DQ&gn3EQK z*Y=aHtv25yfVVgLAT}mN7xjVkBTyp5sntW-0y;0`ie`N?jTukKi3sz;=xIGagSz0? zY<~7dD4Ii*vKCV5+a7K5{hMn4RTUQ;s_Ur21=OB5 z+p?9+z+ryPeEX6Kh)?ldJ|sTh8w(ACIhbtWu$U_HrJE)_*_*;U=Qse7idUhyZJ=Y( z%$-i>)jh4SkUoM$T9+1)Po^CiFFcQhl>#!kdqb1x=gyDEl*|{(1Phc)`a;2?Z?1fo zONh@8XH(F`*#ufK#KxkC(8`X4u_d%pv&|KC_Gj#Uw6sLlsPNwk`TIV&e-%v=c%tf= zhwr_+B0@oRiq-0U2#&IQdJo?dg@Z_W{Yc>WYJyTzR4wVrw<};!;7){_q}H~ygqk4^ zcejxaS+9jW$2;>dZD){Fogo;pt(fnM^`PFll=1jvK3LB}MKXPkqg;p@emE7^{tgk5 z&v$j}L2)YUYmKfb*t{lW=ehcma0ZILBG_3}E<4#vV{(5|syIo@wT3%29!hbj;%)+K;Z}> zk?!I257%Lx6(=PD(Th@RRm5}LsV172Cs4#QNV6NI5Shk!hQn7RyiX*xnSXlnXkDCd zu61u*R&`82`omFLcXcB;;<~i$aYT^$%RaK{n2NHb;AL2oIZaE{Fqf-YgGg^e`wKZ^ zj{40X6_w4Tipsjt8(5)|eH$?@qn>Y^19Uafr&gi$g|vtJ6wKvYc}Nxn1}U zLUiAiCYae>$x^~we9N|9PIJ^!5&wGX|G{br6O=zVazgofl!aA%@txiEjF)2x*c=NB zrAE&|(nxk!GkhQ=q_OkNE-O{m)Qyz!P$w{5vUF{Z4CMvGq^-^I(D~!hI%l6$Xp|8M8Xt0W!cAOZamzk z;_^tbz(&|@j`%de(#oJ?oLWszjIOYXzG37PJN7NlPavT?es`f|*UR3Tv8TSlD%xAO z@_kWvsDkqa8p!N{gPjgeeM;%m@fBbOb9aslcEe)NprYG&$`3Z^d+ZK zkY}5BZG6Fwi`~?iCF`+EzK%l4#T}wfjiFCL2A$6?H0g=OT(rU~1e^ zJUTtsjlTVR>`Gi6D)XO1=on_^AOSa;EUw?=!;;D00zXmxShx(F+99|4#oJM8p0y@3 z=3>RqP(snaOhHKXOFaQooQ_gL-!M}N`>TGOjMLA1x7QfaU1y$BAkqCzb7+`DiL?|d z5pu}@`=~4S!@eq_0Uo)|$(IC*^C2ULij=4zGo{}rd|Z@!-92GdGF1+pI zO^CD>fbiEZw24oC8x3nIl)6Hsbl1izBfiKPk!vwx+fWN5S8WEE7s}IMN`%pMf@h zI?*aMG=csuR>#v_BU`p`>z!{O5R!_Frd7IF=Re0GTPLBg$iPR9VVNRZWDr+kBW~kW z{B=`*u^FvEg+qDQ=jvnsO!?i5Ao#toIK}Nc)R!_d@in0w#<9zlRn!BK$4Br2eaxGA=iqGnH*ox3xA>{4sSBAYb$2T$%T+&R zQdk#syCk<~n?e^9@01o=QbGpoX3F(GL1lehhgo=3j~IWo8uNva2ixFH)b_ZE?I6WP>?PF&@ljaUw9CNww=u zB+}6h)i`5Z^Q^RUMHOcgV^L?bpgd%E>IA0<7=Tj-hBw#U5vGY82Y}Su3Uv*%@5wzv zMu+5h9)(CAGTdPaHi9lU6EN32Cz5|k4spYOO5z!nT%q3^+xS#Dv&^s>QI>G%_zssa zWT#9m>Z+m(1j7`6(_g6K*-@61W<4t2(v{-NW+NGJTBQru+IoGbN;xVqpUEI943V$tr%r-C_Xs z`{BT+`K1TKNbXGM%tII>)g{Q%O-hKjs019RgU!pJ7iC8v+ZI`*7p4A=tFftG z(lPf`7@5&xg)N&~u3RiGCbO}ib1c4MsjXF3D$(1@8rhf5AM=dNCA4uH*BII-Y9bYpl2GUQ&n&R1hitDA*D@GZ$uJFm4%1o>R-+BKME(B2b!F!F+5esa!wa zS9jfx#GI*edwuZHATK8f3wbZ;u$U%tvx5T8)zAP>YB^nV5^h*t1=*L{Y) zVsZPX`Y}TD-4Tb!u)NbQc1ovb3exSjv-GV%5V)w&Rb~fXX7Lz_9goLeXE1_oX{Ccv zerTR_>CHM9wsccZ&Sw=bPt&-GM^356v`Q8vaPw;UH58%O#=~rX_ZtDBk+$De3wR7H zEL>D^C&^q>FdUVS2qht**YzquyOm8uC{y{~nn4dMAg?ZHV6rjQhE$t z18uf@f70t^gY!qt{FmV}QE)ZRw(%o=NQuaVtxEzW2;qN%#7|r(`>s+v(Fos5)|skz zJH}9JYUfVb5+p{@Wcv0y^&5g5?UQ~D(f1wZfSJCM(hn{eC)NF?8RR!v4yWf+zLk=e zewFo7cDRBz$;457w%mhLXpq_@=^C~v^rK_^#AJNauO+1#vjn)G*uuTra8l8SRR5bb zQ1CXtntI^DDEtpElL(Hr&W@@Ag4k5Z$j5%<_hExR^xlEwp0_hDDE)590@`uQ@N4t z!(SVTZR&D(zn+}HyR&T+oih}q;C{vzDK>TwkX)eD7lZgF>5FWvY%6QVNa^qHlNvl; z<#*JGHZYnSj1*f5qKb!wu@^sMTK}Shjycd2+yN5nYe_*KH$~FxL0x=*B!81XKN7Xw zfipm%3Yv9dz07C}`~ED)p?DIkqr}e_3hwSqQ6+(@2XYtU*Zzs5`xhaCE&z~IVHtMi z#R{6@WAI}pMc_0%_zb5pr;hz6~3tU5k9nzLW1<;yF zS1&dGneg9>vmSv*t9TPlAU^vAegL^di;aOm4kZq}`xvRHG}`}3e)wm&zmz4A(xdne zhV*z7LOE`F3S&OM&A%2kUkG^g)N*f?C`5uj`heWtNr=A+6^?hz6{cm18iza}IM z$q-^fh6kIOp}63e*_Vr{AVe_fzu(pT#8K*g?EJO!#`LUwaTsdzT~)L3JqlqsmSg(p zk3bt=Q}DM?VFQ$CZy4Q0SWz)6PwttT067DOSPrC6a3Fkq9vRdPgk=`Y8e{n1XA(z2 zx40>?Gq9k-o6IR)pM|WDZ(T>FtH&1S&48x zPd&JB3nR*?5RovOgItuSF%9GPdd#T(CWyo*V?Qo zy@~SeokYJorv`|l>@hZ$_!+;$bZ%z)_Qu4qTvkzBLhM_SC8Gbg`CgbnQ(i;`d0x9Y z6f;tQwv_77JM^miez+vwFHv>n#q#I5TopfpcfQLmmUCLazLdAo5U#}vP2p6UPYVp5>1C0v#zHf*~X1u6Tol##fklD|`J4gt@3BEes zWm-zc@W4Pi3f0#)eer7eP}_8;P=KuL@tCfw=j8=19=Kwbx#)Pm+r-!;k7`}j0ahd` zqc@JcZM2FE2A&|25y2!%)7!-f)BRQF@n9#pIZk!J!xyvr$@q~xCGyknlw$fN+aKBS zE75-)d^KGx-xn0;YzCcnjk8&od1!d2!NAnS>d>(Xpm?XlOYF2`-zRCHY$f`$m@05#tMmzgzpm4pHt&4GqbD%) z35l5JVGPP!WHyauOI01t__p2ny4}5G)x^}%p@Jxiq=#zE)5<2L`cxyhc2&rfr$B!8 z?YF#Hdp2)2ysj4GquiDzzw~eZ-}iTYzX_7r8-r+Zv9P%5BomEoyxw#zs!PJSX&SQ? zvu)L=w@D^T19@Kr(+|K>j%I)F9h+BOSWgzOFZS#GfZ#LP8?*Zk~ zjGtY>Kde{rx2aS`%(`8lJ0;;`9n?fow?tNTBO|P^+=hh^J8sy6b1WR9avEF*$U8?r`|}l8uba z|1Kppb>Km*(X>5^aXHE%aJ|FjJb5P|1EFxOv+{%0=>vgkSSNE$I-?+E*UIg1r8?ge zZc!6e_V*T&)GC(FA8*vYY+o_gmA*19CJNxikR99SGl~~wWwgdcs4b)Y^0l_}YU%>n zn-A9VUTL+Q3t3?ASkLFk_PWDPn;bVXCE&em<+L>?1FXF}-Zrv$3h^GV6G8k>!cCqFTuiO>4f_8$@ z6;-Mw?oUnm>u>t4X&H>qWL!(|p|l3y8a$m5!pU-EVSN+L9 zcR?6#d!e^3QbyEq=p?+-Kg&FA3Sj&{2!8s7+Wa!ldcx(3Bx+kk;^p=(H(=a^F|I^p zv%`?)b<3(b`pjL^7ioP%)@yi}vM6DYn?UnPPq!`OSaMXR)qn4mD7m&^H%zD9g4d1~ zkKH=^Qn!9@ixy80&6zu=(b6w!c5#)?8f<+NklM6=IsGvk4E$8@;Hhev<>$WcNsA|L zcs*}uMoi5Gm9kD}Ux<(RP*Dy!>Z`4%Zh9W9!x%FP00Hd;2ao$IcNU#kr7fXW92%P2O* zx?`9{4Z!&sVkQt!el1VCJbcG_njT|upq1qiqeIWN@!xxf@y+*bBvV?qp#8=*Chv!AMaBO;vI8@t@>7G9?%uwei<}mnCoNqOt! zk7;T+n~hM$zS=z%9?y2X--3UkiXSY^$KcWM2TALPRFn4>^Ym6 z)+#mC-^5JN11*#tyDH7)qRy{HdMe2dL%H_^pn4Ioq@fjhj?UH>v8{! z#8p^Kuio+rmVU?z@14r0%Ad`aRoyBBvvjPzRN!v~yOoGQw_oE?9cOw;vX@fqckWNj zt83qE3J%>~u0Sg|eQyp6&?*(!A*hJEdmRkkX5hIbeH>zzObP;7=6iuIf{Tsto8%eZ z|B<@Ke^3BNN7DnKS~@60gL`8Pw*?ZD z+MVW(nP+_=bht#)FR^8|ZS8644ST5CkVahqVri64rcMpdkq*{hC$pr_5QN4gBm~50W-EC1`aH567?azY0)C}Qq*n*&>qkFRb9 z%MOgcrEtg9%XB3i4izpllF3|$7&WMzUmzoH z3>Kar0dj4<{O>z@xMZ{Zz4{4&fST$hYnF$e1Oa}J#iraGJYXQ`L0pVhRLKcWU_BJ* zp2-Ndni38o|6RFeebb^rllaYix|HCV3~UEzG>veoLbax1bQD$C{KI+Zk{QMVWM3O zy|uY-9Mc&+`KqDZ%!7nnbBEFWhRPTRB0O*?`;4#8dj`}z2$WUlggrdNH6lvTs@`!Z zRT&yWQ(p3fyv)8=+})Sfq~?@JZL=FXT9gbcI{@?Hni2H=>Sy!@Q`>gZ!1I*ROk<;T za08z`x!kz8%MClsHsTv2>m53oWt2pfR?cm&fF99yu`#O(nx}5kt*FkKs$1xS@Z&%| z)wgd|?7n?5g|SL(>J12-7%f$KwWIbTehO@2|9{An3X33G&0rG?ByFpZVy!}hi&3*= zCt!2<+@=3H>fqY$N_`=9$M+o@qRCVk#^u7;iK`0X_p4AJH^4VjZodE62%Kswe*mXx zXL{9ajsjShJ#k@c0O7{*q7Sod7fA9j0nuVoxEfG*IJ{1x88EYElq{a|5RgBiaKjI6 zi<^V^Z{j~w!58d;Uxowuy{t1W*~mEMZE)iD1^)E6jf)?x5G=fKf3;7(xYM2T^AzXj z8g9k}8E2NIBf??+(S2*L)Kud}vGfJTUZ@4$;0`XcHnmr%XTDc|(6 z?oVaZ1JGQFFYn~lG<=hW*IliR6OU|-I*GZu<_CXEZ3Z53FrUsOsNk_9zF*h=QhmUS z(;h*P+f;G^gJ7ljOGjj>NP%K zv%ai+T9`w9V)H!}uV9ghsLU+Alcdrg*RcFPJ9J7k55f*%``X>R&Gu>SoQl@oFaS<(890raS4GmQ}o3RW! zaj+gVt*{LEp>^smFGld7iH_-C+SF-nS}~HvS0cAFilX~-8FA64&Z1GK{!AP3 z@F-oq&5?6O7I!7N*d|!kpPSn)E6MR~CG#w2+$UU0HcgUq`D(!$#CR7@W0}-Z5=b(> zwDi8uf(XC)0)9BXvT8NP%HYGx->^hdhDX7A&)I)a6yKz7Mb5HKx zHUAk4TDUb+=857|B9Ww#hz@-h6%c<0RV?14q`Y{Xls|kAT7}+Dn7X*(8OWJN%S}`e%()@k|)I z6BBL*bg)48F?SJA$YVzUEj#~n%ys~Y#=juVssU5mEByx@e^I4SdgoGCBj_(arpnqe z=5KE6Lf_(37qwU>`*lBkiXqMSC*Gs4DVfy{)~@#A1E;V4jkEH$z>-)lb^emu@1IRS~>~d*NPnyKJ9K@sF-%lWPw+xriFW zQyn^+#O+6a2RtyerhxCYpClLpuW(yhC>kBYhgMsL-aHIn)V0Ey&=2RuX?=<8(KKA9 z6bfmpc>TzIfkXrs9@X5)MR~~)*Ck@np+TQq4Z>q{8va;PA06$Ye@4^5#U?=5t2W#< zer%?lK4RO*XJils%`J5!L`H#W@CQrZv&%kLDx>r-w(nTM^E5?iHo<(dWISzf5hS}> zGxYLGTg{Y%&}hVtlyU#GtBGN4JGpyZpZ)|lDo@4!iBzA|X?gaj{GK^8aQJ|$kkhI& z5Ct_`c?a;G%nzG(bx5;pAb=xR)VLP_6JFy2I&;h6l5z>;X81IqC|D}S^MoCFG5m$m z`xZS(QL-qKIC>A|{S$}A>`u~5933!BXHDRk?&k`6HaYUqXS=rab=DwJ9K9#bpWkoJ zhbzD5G|43=yJ1s!A6432ur~l_rea@yrNQ+DrK%2IXDaEGac4mN;|NWS&W`SlyS<*0 z`OwcLtzRgaOO#~QMGBk)YJKRTStLZq?}FI$Jmf|MFgLabr1_~UM5C9*`aj%;;E!PG z;W-Fe+!4mH%Y2e}{~>MLgz4tw$GL#WKFtnp!QsfzhPd;|NU!|5VxA06Je?XME-r5D zw33oiOiYX~Z*{982L)jEga{Ktg83!&+0&kPaVW?x4wWWM34B4q(5D}S55&j#PpPXr zC*n%<>nB8%zmaGS##?`Iyt@33TY(9SM4}Gv<`k)cDm7^MN9JI z^hs``7W2{#Gz<)W;!hII;|ud3KU963l#)wlW}dH{L)G8EnPWI?m9BdM))u1B1fw)3 zV0TH^c=z!>!?mOUGWbdRc_vaskY6%KHs~WoN3pT2S`vaxo456cn{4vwxkS>%6;EO| z-dx-o#I@25IlR+@HtKC^Ui3hI$a}YkV@bv)@D{)dM{VwLufsp-s%A|FtI{mC-QhhR zH_bpGCb~7}$d#(?x2qcy%-fIqx(t)%qo~yd8=iy>{;=^5z+j0ENHLyzuON0M4ATT5 z#IEE5{$21*^0N@&nR!4wfCtcJ2?Qb3oEdP!=jS_9aCD+zGs1TZ%DNR^Zqt& z_w67jzD))dG&GE&jz?!RW98NVg}jNEfpLbpcpIKGnX)aT6m5l zhxv@Bw-`b#tNui^4HE>ogl-mLEr3$WI)}jG=QrW>&yV>pa330i|1;C#J|{3yvjD>~ zu#^ysK0ow7h&}Kk|3=(9V{%q8iT zs6G+M3;6H@f6-7rzx?+o;ECTy%mPhMyr0f`qIt@{EZ5+9{;`Bjy_$+(7VG*Q>~Af- z1KZ$FMDFH<>D&8~4@+8k3b{s=FmHr~U0@e#3*n^whryq6(`1eE;-{4~Ca|7kA6us1 zes$K>*7OfoJubr50Q@%52OI3MLHx}P$`zvxj)vL!?DrI#EU_tsQLS=>?d?k2C**IL zttZh$B@iSl_gri9sgI(g+QHg|%-eugGk+e}79;kCCW^Zju1* zPJy3(1!Mg$79pmXM~y$t77xk;k8W2_iW}f@AF;YhUvkdKF)3_!uOk6DXlAp>u(8N&RT_E{wXYD}>zS$Kl=Sr#I|=VwmRLEo>$ zQf^~C_ijIPp+eYnOHFvNlsaYkZi7oh{Vd<_ib8B`G6^MlQV92Q^-lsQv}y4KHhn7u zu+F-gT4vV_ygUm)f%kW6&a?W5%fq9mnNRIsM4%Un9ZZ5?QN(BQGrW29rwiKi^HMzT z9&+MX3?p!y#AQW1WeuRbbq|=rPXaISF@qQewt%@&?~X5s31b6_7ib4oe4b^j7~})n zK&S|WEGKce&s-RI5z2(pa^L*!=c z#i@L4RbAKtM{nC#h1Rows^NL=_vCm>Dy5LM|70rF-`>*y|LA(lu(+BgY%sVaKnU&x z65QP(cyNNdy9W*KGH3|y?(QzZg1fuByYHDi-)pFsu&W7AM1kFw+L49*gRmn#(N=S2QPU1;Y}0w`x`J?|CRBu z))5Mm&3aS?&clX0PqgneZqJX}pI4BPg{;OXLU{*^G`#LG^f$d-!;$3YEwPndZZ?<{ zahf;X{Oq2*?C#!Zv6wFsbp_rCE=%aQpFfuI8IfBi3F_q)P`y%s-YA`a!W8k_ofhb( z;(v;Z>c2O*g5JgNYu@%)Y^-O7)kw_L$F%5CtE!q$8+xtwE#Fw@MSVB)PB&v-OHY|L zT^biejgr1uoyKU61L?OU#KESY&Xi1AtuH=U@L9AeOli2e#iAg0pLs%#?Td!vW zv!{6y!K6e$-PPh5!A2nBN#9vlyC380X(bSLjF&=yoz5~PK_0>L^_cz+dQ99W`SdwN z?u#tecGVq_yxJ)L)d|mw?f1$={d?&Vv)uox1z1WM7a$65Ck%_ttX+3@XG=Py7~znV4)#8*DE)K9hDcf} zm3dAF3t{nFu56a-uBmQISo%C+02z(3z)UHpwb?hEk9>^M0%-1khTqM)z5Bo6a?VBn zk}l}dpO2H{CEtG39P(nX9<&1ulKK6YkE0xg?~(Lh8zSw4cu~_B5m(rZ$4civgiF_a zhYzr9{o3_(Ru~H+XdMu99=53`xxn+AWq_vcu$7Kj2$CW{&@{G>|w!{`x?*N3up z0!NV2J|}l@*Yeb0xD<{Y_*zJ%ioNkx5)J7SUxP1qdr+qb0fWUe@l>HH$aobe+j0i= zz}|Hx;b;z3RK5J%t$^tFFZ_y0FKj6m)~JwT)roPaS`XQ-N)Z`(#aJ(NUIoF8kdUmj zcJ>bEBr{WszMFJ=9YK#`j%Fpc#Y+RhcV$4^klM@g&H=X%>IZmPU-7E(ueF&)&Ko>w zVacCo*X$IWIck}O!(lNClmc$||2$)i*L@>tI~;yIa_x44)@1r!)Y`TeoKYl?#!_xCO9hJ-%NG>ScHKMS;(VkrCB4BuUj1xa$L+hG**umlb8g%g zhc3^;%S-V3WKZP$(iR#);3=%G&J`AJks+11u`Ta?s?rn-zm*JF*?Unj_P?yz23CXZ z*skh-Eqjy=q&W=;^xm2EgY%$+uVd(uR9*2RoUWZO_l+G%de&z5c?0e>G%I(_&p`?_ zW|?mJQ&bM?22~R8DreQ!?(v&(>`MCgGqo(}prCVhnKl0B2vcoI6}=t(??)m}iF!b` zII;EjEKUsr+90ykn!m7o??11GDhM#uUHHE#Pz&lIF_o;Bj|-=S~*a zn1f$o-Zc9MXGtCLw3(B|1-1*<8qCogzD^c=-E43{)EpE_?yfb z(T?v~lk3y4jSZbPD9&3eZ*mVb))pQQstc_!Dhl{Cslf*u%Nz8>j0ShAAUVcW+=-6n zMUG$FyYi-4-%N^(;Pmqs^yh?VUkvKmO_wb*?Ad|{n3c4-BckB+lBVBIy8NbFnRIq- z?F9RxBxf*ScLrvCa^kOXbO*N?N?+S!`$x5X%IM81piz2pvEmtllk!=elvfM4jka^x ze{bn-7`}bkoBe}UO;6;f4wLY1Wye1mgZNI2pbSPj7Ync8;@G>57Iw?l4MyvE%end@ zQqBqLw989B;&(VskXk%gx-qq!MSo~%9SF!yIFD`ov^u+VNl+2LgIWcJ&i9HbnS7KPnBXyZ4V`=NmlvVCM+< zkZW04pjpKqQewi`M{l|YInj^VQ`ebp@KAVEBWs&|e@;|>?vV?lW0Vgv8Oo-Gbl)3boiApOGFbD1i}XxlTi>r= z6|Hb6QNJm!t}5%ft!%h#U;~AY27U9Ik>5CL3C{W_fIW|f09>AS{)pta6tz)>Rb4Vq zFYGdYr<6Wy zEfWg|6jTaU@Uernj6~>fmgEC)1o*}Pcs>Hq!0DzIQ)Kc(xh_x+&HV#Kb_Fs?>D|~L zaeo&mldsOeDU}=k>O%PJ{#Lv^Bb3aFt8@GZPZLW_X)c8mExo|~y18hepv`SETJ&eb zPo!j1Xw`Mgzmw5vrx+}JJ-hn4z7!d6`R(PNssF%qUN!ukQHR5I>)0y{*XEf&=7=5| zbB`vXhSVGCrlPkyUfcjg5(M5}C*!R>BMEf^cbJGWU2J^7`wM;vG-41SNu$EdjkaSS zAbM#Y-5lWmDjt9-l{D?$J4}wzeh#g9t72LO|WPKzrlp zcwZ$_Q3$i!>Pqjr5W?LLF@IsH;ZO=HEAfRzZjOe2yyP-Rfet#A1T%75q}-X8JdU<^ zi!wVmu3`e0j34>rK6x@d`iEw{L9+m295Kb!>Tzfp<$C5@5;c?bFWDP_j9xD`AQhSw zV(;&H2ZY8M3~Ze*o!`T}jW-wdwNVpFZ|xTX>vIufBL7CAtUSi81$gI z!EyL^OW_>Mvi>v&u(Uph=y?)k8Q7I2TkZ60}QPZ*)anE9X`2a9yKkJ?ScxDy;Ea+FmOS!-LB zYHSG7h|LAkZ$p^P-|t24akJVtcQ>i!ITz%khl^tlyRdeWYyEt^O{B2Q(#d=Ix1J|tIXnW*{W z>*$v()1QHG(%Qk$bI!fL24~N%Hgv|yO5TFKhWhFw`oOn#oJk<~7*jy5<4kX(?7(^) zA^>_y8C}UKCxMk!&2}_k5WP5t?sxN@OK?%*Z}AJ8CKrDx!VtLSSOTqB{sXF=r2m7; zDE3ES$h`a~=`q@~%FhMyYee1N;xM;+^W4H}sxVROR8g6uh15Am`J5|&9CR`72o%my z+8f3rC@It3R@^bHqKg6dTbpw((3B)hZ&7NT8TcOh)5b-=lVcmP_MkoDVnELOMxrrr z=u*br)R5v$q9-TMR>V=Qya(j5Ui1h~a_Ir{e4sa~hrj3^v8{QwU z9(?>!LqUP2B`4+~fLyb!SLph#(P52S90@UD=AIugoYau%JZnyWBzR zmo4{(6>iEkRuMYy&g*yzIc68#m3eUQoj7VdY68zUWGjX zQ>)ny&Qj|81zd~EJ?{0vjHn0!fwjAQaLo`rW;?meE2v%HI#X-$)b4eaBPS3h%MTA1C|^sG;h7wuwikyS$1Vy+b89gGvQr`uXR$;Iq3&s+_D&e(*Hq!e!36Ic0k$aVtOvfUzjg_T>0CILF#=dl!o%=pW|KAV;Z{2sMODDKYFWY7w?ZQOLV=mG2{!c0|Bw4J#cdZytgTd$t;i<-qU$kxvbIT8KVnAs^jA&#Z zZgsw+sqf`v*(r7M-`OW;0(Vgjwbk3KemoeWzdQC)(KR*o=4*A!_)&dY@aRssG>WSn za1`#X-1yyeyageN-72h`{j>srBr6tvLpWZ1@%G0mx7~>ktvFa998SJyKi5qRM1U~Bg8D#$Px^=NLi!A6q$b<-O$O%RMTRB(0I_d*ScFJ zvUR`?4hwtt^hk`{+dG}9As<8?dbT!hF!j)jO|R3sGxP8~dT45TLpy|*Y=@IZv&gjb zV8s*Z)fp1XTBNd>XYx2nl@9}852CmAPx-qWLsb~e8whT>LU;WD7)!Yhjuuy4PxUUs z-IJO>Tx42D)n%kh>K&$+c5CPS@0)A2PaE0>kaW%3Z4&|8 z87Qyra!VM4xn`iXp$_v`EHjam*MHC`ymJ4AMoHwrp{#`0Xn%7^nnoJyCh~Um7BBLL zf|Z;?5J8_zcYsz}Lj5)&pD``*B2A!|{4|%Kh`cg4tL}}1W%Cn4>XL6GEX##j!i2%x z0!Fc#Zkftkf9V$_APfit`1X$zALw;sgHVuH?z)dV8?J3>YGr%(%y2)*$F!!Uq5EZs zylrqT(-*aZ8|rv6Tb7f)urXJDw1>^JzJp5&PiYMN){BFnM(`)y?$%71F<_AiZpmIN zWT7n|W*S{-n@EHY>w~O2=Ar%_%R9g7S*4Ns0sVtj3Y(#uMsFZZiT!QMYoB$VPiv<+ z>#0+XlgX7x*saUp9H!gjD9~!xI6JX!Lp`Pt!K6}mhKg>buZ$BR-br1e%F7;<1w`WR zJXS4-7M<{HzPSjBN;m1PWO15WME_DXcBQF{c*MDF+O>4)j@-c`fiWD}^^}jwBTRxR{Aj$hJ)U5%eza_1j#fjOg{j2V>=4doKTL>6Q^J0 z=rk;$#P=tZqG*p3eQ_|fd+@B&tTiXcJBx$nU{(S|LA7EcF+dKq0{VrWgwnU#^o&xr z`h-{NW!f7OogIj>A>7~9m(?IOPSj=-*xk(@%z+uu3FX!$(9T2>krtSiMwjF<3;&3W zFLX+%rDvKEdEAVWp)q?SE-TyD_*R9%I?V6WWu;Ye9Q-mCM9@dJ0%g|6E5A8IGhnBj z9*$t>6l%I6OFM*zF590YKKeZn6T1)<;U3r@ri5|zA%tjg)%K)SkQOLUzYoWo>GKH| zzj`R7HlJbXRbLgjI<)EuY27$9-BOz>(8ehBiYhhxbA*|jr)QxH-^N(zGeSVyp?~=2 zoOy3?5QN5ly3`u^g^l+;rYB_Av6Wm~3tPPnnKx5rd`Lg9=Yj95c3W>QwMt`{3LBik z5nu}I>Uf%ySfwkduZRKQcUMR|AW5WA`*GidfUxklO)93EU~mFOSl3MbZ-^W9130&d zC9gXB19iakP>?m%x5&Ff}($w;@rOLMEQCMF$C?S z0pf2OF?>oFWHq*``fYWVRa`oSEMhPJ3on(gK;5&q43N7&CHST{Ic~v&m|1L=9`KHW-M@Wf0sza@{cACOH1r@Q zh-d;kX8?{*uw1S+2)z@IXUn#Lw1))cMUAc?*L3!|@KkxbhIfAR}fAVff z(E6lg2EWIVqc3oD26m!}LE24E+)MeR+YvOg1=jv3M0^|aO9l?d6R0cNggQBFTk#iS zp0h@MTPmfOyGb;$l-WL8C`617wqA7H;9lrTGH7mH5gYr}E>q8D?9~Vc4Phcs3x_I=?V&Co}ivq3H`4~a0xsHErDPT|&GdHd-E=-pa(}LTn zLSW9vK-0M3P9M@FUWT7a*#2gAwPCi|(QFhUhQ>+%)gzeOtMB(nUE~n1U1a)4(_PQ0 zA~Q&U8ycb^vc={}PtFx&j*JqEi1_j{nvLL2cUbkQjE~ z{k939L*@9y9&1%2146Kfyc3ns164V#M#ABw$xB$u9ni2K(t$_LeeCi}I!e#uy?Bar~?zp)CEc?u6-Bo+YzFs{Q%FQ-x zsZX$9e+u98P&+8s>@@6tdTP;l?iK&~JM>jsPk`UTdXR?u@~&TJ?T7I|SoA*4>y{diikRcopN}cDQrJd`DJ7z2gP5!RK=cpa*kJDb)gO!AZtv_X z2Pd+qu`#SuAif}QxpF<9hGZ;-xz#jIpRDMvt{A|T7v1B0V1O7Ua+?#RgZqm`y_sF)9C}e&G^8;hrBW0avwsYSf2xvZuHQgqx$*eKRp!3LOc4We_2{L{o4hxgML(;myHRS-+7LAtxq`$1|17wu<$YtJVq;&PUuBK|{k8(}L z+>6*~I1u6Z<+~=6QVB-2QbF^Jw%hL$D5$K(ySWyb^p^ zt5|c(3-&?_3KV>}H`3!Jahh9(I(xs}-nV?nKL0BR^x$ki{V7xx_|Q%g1+JgiiNy~8 zi&HIN^Z}GhRrW<_T**-EMGGhMShy7_|_3=YEH#`!zFJSmSYi;C;$nTSh_eg(9 zsZ9Er2!TcZNUz);Cp^A!!&CbAW+w^`fScZqL>Uu<%h}P{fp4M79RKIHPG|{Viidq5 zMDcJ%sUopG7%z5zp;Px_j^IR^s5}79_YM$gXG-7(sKpN4R!M*ef0F?l%o72o ze+n5B{tmPFT4tM7Ad;*+HeITku$bK#EKmr>?-kmj;rwmC8U-{frGSA382JBNHUVBP zC~~wqkegtkzK3}6#dQ3M+tfnA*z_l78X28DIF2cQLTvC)`2=94so>F&NWe>qp#Voe zD4e4h|DmcRc!!A;zS&;x5TrzaU*ZT zcqJc!aRgF<#TJdMFfj>y%VRC))nL?w(lggRs0=_2lH_`L51vMdv8d?aA`) zO4Y#(j=iyLe)jeK8U6A%F0k*w^(3tPH{+56j3;p}00xv$cz|c`!ABbUHwr8Amj^*i zBGmi)ofB1PR7w+FD;_}=OMS`Q>atj-Oin3MAWPt@0a044Qz1&s94|pU~KfTpM zvrtCvH>UU>Dr)c|0v`sJu!7JQBi0hXz=7eD5d!q93+#|+e(gOE&nu?#`%o|ND7~Rg zGJBJPSOQG9x7ok3vguoVZv3C2iIj1rEhmJspa*~VIlI} zTa~|65|EVqy!GgVvQxcRFkQMusorB|5qI^2GDC+J?}*bL-Te2#ZuoH z^epl|i|Th?t&W=nV9^xCS^7|;sZ{1`W;*3&Z?f zZyD64ZV@H@NH7?2mQYC#6KF+_B~TKLg*PpUF71Ki^YuAfkEo4Mt2o}$2Mo2~w^MyO zW32SBQeS~NEeARs9idPqmEXYw6PvQxWNW!Q79F&Ym$U!Mp-EF?c$fbVqK4r>4WhmE;4>*G55Prw zEOyym$N=y{D65Bef!X0OR3@xItC3K4Of7RijI>rcPHJXF`8-p(bdC}ouQy)pquuqZ zD1MWFv(9Nm`LMbE01C8X4|fYWWN5{D!i0g_B6C@E6@SFGjwIR1Va9@H-7074UL`T)a{+wHJ+O}C)2YI934ad-&GFA_Fw-3g}oc` z7B^4VO2PFR>Y}ua6Gl8-v+=3ijBFo#zGOC}bzBl~H^J6vP>-T-S8EH|ZLizA&oGP9 z3h73)a8BdC3csEM}EaYk#1esTUx~ND;<*idHHB{7pWGZAe&A?2wPxMf)uLP z7Hz4Z#7HWIF5TO;`n$q$6(?f9es!@^uK)>Gsc(7y-+cjwjT5mvXW7a+e{z3iFgJvA zR>7OPbAaJ~>Si2ALt7343YfI_FzwUZhjB-p%R6W6dHg&hm>DW!Ek#R* zjC8hfioJBB^$#)9rZH=grEdCXOx0Xm^O1cN7R)if5Xtu&W9C&S_$(zuc>#XGl>M1{ z050%yyrDY=8%;-`mv%vuYupV0hx6tFHw|#GTF`ejkWs z$UKn&^2#6NSy(?p{tCQbSD=OqtFVIPmB){;e%s3*&Wn05{u9l_5QeTNF>7%WFJnK* zd~a_KYSol{<5rIU$ZG`(Vo^&kuj{S+|DZSj4HE^D?^O{SP`8mXy?a_ab2tMg&28<+ zq4H(73}&~ms!0?hONMT?1a%nySCnMcZp43KPpfC^)$s!>j~&h#Kf=!1r1dP^&+2aT zBG6tVjpqP3$0%@7Ll#jFK}yOu^4{s+{@K93acqmZ*O z`LjAkKkMN*Q_HNL<>dMV`K!v`%&AT}h-6Ki**>03C!%m&uZkEni-)1e)2vZgo&=r) z9Vo{H^6mQg5td7!MWoX4hhaDtoGGYY+{ng+wvv7SRtTqpqK`X-L0_QKH*41!=m>Ep zQ+;L)HyHWdp3(8%_1QgU+H80CkQy`_tkNdBpqt#cRhfdSSh;`Kr7{YSl2lsvh_Iw# zexmgGc%xtx6p|8dc3P&JJ&NEk08(>&>7a{f^)QoX;n~1$D>UE89DHlN3@>#B{1Zp5c03_jOUv=XLt2<;n zA<&@qJL%iF!s|Q6b;OY;1l8-xsNjN7m1h0H^Lf*>&)&v) zeIM^ku)3XAdl7i_@zNHpx~e|Tv&yb&X(0uLoF||)emK5T6D9LnolN6qC@&Yk*u7_S zXEPh2Mupo&`jWG*Z<%QRvA+UsR`z+^-Z_qfN^ogfe2I1vVTQJf8KT^p$h!yOWG?>m z8)`1TbRYrI%1`q1ZrJuoRm>8i{p7XnZHIZ`v-slez7wy#iso*d=2ju6 z@A_0|BHWF_dRaQ~qO}`6kwaIimISxVCyu+jm_TDVceotRPbrB$ZT7FehjDwF<{&CA zzR|_D`VIGxv*8(x&qqOr9db|T?;#dTK4gI+Mt6CQzq=kQl<)^~t@s{(F{|W8?NgTS z)N$PH8k~9eV|^FZL0F&JU}5+(;$)8Y2E_3hlQX)@!%xpV6yVx zTYAu8!5*t0$?)InMk%x*bpj}wys9Y4T~gV!0PtN))%DG2?jE-vmaD_4On)uJNPd04 zi>C*aChrC#uRfHDih_8asmpK=ynS`l`QCFj8pD1GYkaIapJYr@6syTi$Ko8rAEeXN z8+~gV?Gi)Z#I6R8E5a9KJ$5dGzr}?)ed2#RFRh0ne_6+#ljB;XLjGc)c~-)Yrecp+ z^ta%wXVbj{{f?I)HkFe)BhNIC0_Sv_fjOTfNwCGIT0)-X{>vveo3|oU+q*8mAos8nv#bL+ z+%4O=u;f{AfKCqU?Tffr*a!=<&-A`j zz~y9w%$(2U!j?wYhL>Hk1r$`Yd=h;If4gs{VohE)sSxC5HCggdU24hbkpH_9BIecL zl&>S3;K9uX7TjXSL!hS!PLH3Ct249cm}n?#9A92JiW zej<6otsG+F*R6+fq9GdOy#KPH(=GRGF7eO^&*(0@TD5c9he9f(QiA!@mb{Wg^xEf zwczqtk(-ht@^Vmr%X@y5+En$Gphq-GTL1fL$4S5VI1s^H$y{nVNu!K6?{;fNZ#EBJ zSWPWJxd;o6aT?(DXZkG7|J0h+v~ERm30KyF@Bb`U0|4X+as97+D$X^ra`Kfs!{X?1N|s*|9Dx4H_Pkk z*3Oapl_oay=S83%VL%o&+^&VnSb=D~i0ArQ;ZP0{oKER&^>_0`9iq3dLtAJd&jk^i z6E`lmdEckDn9ze=GYZ%HR_^PSp`~n_%$@yQ@LKbJxsP;1$4PWE-~ssy zFd!tzT{Q;$iWw-_)1~6}5P1W^kHx`V)_YC%dee!3lB;V2>&B^KHmR3ad+5vMZEHROWs;ZNHX`2TTfbwrEi8(r1;$UK zSNAFV6Zfq%wZa_&tb_@RBiiiOJ80Q5m#_LGHlNBY%zSDI?33s9TpyrT4=QiUuBl{C zggj@d_Yyf9jf{^+WMn0UWJ{LK(kqQebca#)^A^hsQf>B*LeldyO&8tr4_15(N~PGe7F6ehthrnfb0AF0cllAUB0?v}pjDuW$toFgLudk5I^0 zDhz_J6u4`Sd2aB;?^PkcV1O1f*IL4Cmv2vUj)<9@DUyna;I79s7OltEupSGnTO8bH zZ(R@f>sbw?p9KT5vg?(;ZOXh(TzY5}#vq&S`(s_NC5v63{!BNDT+?KE66NJ;tknLo z$yr;9R(K^;e5Lg2Wv1Ed@o;c_!UPdH@3KGB$G*S+^R?QE*!fs=RUjSNOB`u=X34>e zrGCUkwZ0`TOAPi}rQCi%WA^#s7$T`fzgc}{d%O&nq?~%I&H1Vu$yn@O(JJXS zFU?i2ETX1?pBudv>JO7_OLpJFwDNw{Pl;tdb>|!0?7H&y;z#;oW9dR|uFUoaB()q6 zFHl6j0zG*fR*?V2FMYBRh)ij{PKZ@UUw4EI|K!1;q{=m4$@jS08p7vR$o~SxH|5KZ zY$)3^`Z_pWE3+pSa(m#1#Z@d}HVZ$$%+HgL_tH$iICP}Q|JW*aHED$)()=LZ z_RSA&weVqEf|{+0VsxmVmKowGs_nU^;oQ&l<+Z6;o6~Hy3g!9_)a3N~^Ekky6x4I{ zp!D6$Jz1_|M}_6rhQl8$c{VqA85p!WJe3ei;}5Qe^SaAUuPm%hyRR}w*j@+AyB0_z zt%Q~El~2WBH0|gm*Bm0=w6HY47AZI>1rHFZwJg`*LbSP=A71Xy446fkk*+hMSu+l+)vS zTt@Dg^O!%+?Yr1K{yKi-h~!zIbaQgiNaT~P&YIay=;54JyJDg$rF89i@=+<_MX*fX zGsJ>#GW)r0rpixkru9(g*_+UuSA%}kES&(9bZDJ$8J*_2jb+8>sdNJ?ev@v+bK+{X z=muAyFo5>J@jQh`Yh-jZHC3Oc_#VAF`m}cC;W3lFn*HLO2A!3Af@tiPh&MAn z$g1Wj?DQ9un|aSO=PcKByvRb?>2-Sk%0yWEH;2`Z(<=5GHU7iTyv%D@jSructUR){ zJr);$7B3(b>d3*HGk_6_T&c z+v{6Zo*i>rnLUMLlI4j+IgBOeHnBNUnrd6H7^7Q`%`K3K-ybJ$GQ0O)tWFn`6$2TQ zl};x(zh*m=A62Afw&*aERd}t{MWVYs2I0DEbY-|m`e#K@!XSNl z0|Cv0NsNA-073)X!ajIt2MX7`0b`TXsW5R1!>vU8#IItGG}~9RcE?X?MHS!dW^nUX zxQ-5cQ?QW|R~?V-1+zEMRXU_vrxg1=3fr^l78CHLf6C0#$s!Gn+=ldpI+d18DF$q* zHIFGoK4~8go9sC7tz1>7E_dy@CYr(UMVhS4KE)GIST46dvu^G`LtXQb`)66as23-( z7E!a+DYDs1NPyas&s)n(of9`UWosS8Gn4~7VUpiunpP;KypVVc5CbM0RuE$!3KAar z-;Zq(eI~6;9gIy2)%lCtS9DxsUzSgqViD}MXzhlBT-VC>n_ebEntYyrj)cvHmOBYj zaG6~=3@1JNrFq@x6lpd_vsupN%&uVP)YLd2xi+^C#2Ia?(#NGpa>{wjP5FpqeuXFY z7JvXq$wLBs@_q%JiU*xxQ$|QW)H5v#s>E$X?E`iJd*nE!=OX!m0r9Ecb_K_CC@9vo z2(o-t$lv74TUjvh93RoO+T3H)+}4eHVnE{}R_Yc*4I!Wi&_s6RlTa$RR%t~AT0hsc zFtGp(ya-fHg~MA2Xh?N$IhKq;$=&w?|9R~58!^EMDuV1FEIyQD+GF^-{<&4P`NJ^I z&!X?j)YCK?bIRY_%3)I8gOd18<|-9lJ;6lUUuCJ<1}zNdav@ zAP5&98;|d5=gdt<5K~i_Dkq}HJAQ!@p)sm(VN{faRdpdOg{2_T@Klz{_WugAn|iQZ^}6Xd*|e7D!+Qeua=l!CyJ&m9A5b!_Fvpi$5Ne_ zfIB0OGc?+;eDuZ2-XgFcHijJqY@zxTKZ&gkc*;@0HU~g&Isl)EqrlTAl$DskvuP_XoHRC8=!>T-oqcF8 zm?<4aGW2{1^afTt;0N#%{9QW0H?PxSn54irKvJQAxxRs%hm?UAkv3prV!E2uIjnKn zXHqKE{JL9XS$46FR)7xq<)Z)vF1k_PFMz3Zfxkg0%QgAE`R~Wx-X@ST2qKdc6OKo7 zm73xIVm39C@oN3=ajO7NKUnRXasX^n39!j~tn@NcZ}0zlOuXg+0Vul1o8wt~`j#w_ z(D*1h8wDvi3ZTka7IRNE+E_I{u*3Sc=w0VvGtzrg~KpyLZLDP$^GX|Mv9 zQ13v<+{@{oyxt$vGq>-&SHIiUueEZk1naLs`gTRFW~Xn8!opvf?YyAfsQ^Au(53@Z z`c4?&5AqUCbnvbg0&kN2(FjbKcufaPo}iZ7kN~II)cT@V3#jS(QE3o-iRtFTnei_e!|pxwJ}MBfhN@d9^Mo}6a?$=V;>(Ne*suZ zG2^U1dJ71E$NA?mu^b1O{CPc;l#~NQL*GnY5u&L$^?wm3XC+y5BUb*_WycJyhaTkiQDODYQ0O$VMYxJ9TU^o@p>$?YoWsKR}u@K z#`w5=+X3IKNCzrFp$H17@V^uScvPK&PDT_godCZb1T&4ngZCB(ti_BC4fp0MHM&{5i~0yXI-2N?BSO1>0{%^^N*4;=Q?P9cYS6?5 z@99r~gps<9G~hjr1dnRHRHGKj^H9U8#MhoZ46|$2QA}Utu+QO@lRFIWLIVuLh(S&Q zkUs*I7~N5d(i9&2SAc;F`V>=wf#IRs1b_pE+wJk}R3USX<-LT}YNdh|eY5KN`Z}ho zp|C%frblj(N;&SGNJh{XdO(VNIYV{d^7@OVztaWqSjX=$}`C4P80yV)OKg-P|K=<`nHY@z3V%HKLr z5;qN&=`O=BD_5NCSOLq zA6pSbLe&wpRlY%fg^M)ZE+{NoDhe^LGgJFEyw(OE17@_43wwL8x)KMLE26(C0%#in zT|}_{X8F;CNu!ywn|7~qlPA$W`Y3eT%CG3R;;Do|t$c>?0+bNfy7Wu%0>QZXkBhhb zPelWs%kse6uY4Hgn$wZzfGT^epPdtz^PlU;#4%u;;|FhilQdTtr+x{S@n#7xh?Ly!7Rj zV{Rw2!5M<4GhgNVz^wc0asPn!r#b=Jq_k3h|Ed5c?&a=qo`cz1S@c6O4WY#1W1%U;DmOh`SOx&*~;s_k&AA(`o;>lU;{(hDbT za*@$xFPH6Eg=l25K8# zP*B8P{k>O_qEyX7jkQsDg9A$U(5lU9qeeLH%&<0LhjnOU90ID%p-1bG>7Q#nwqomnveqy)F;O4~wQ){=a(a6I*Fu3-!1QtjgQ8S6jOWRvZGg2e-Z zf{dIOYs}WOjG9i%R%X(l8(kWeUu$L99ZoF+vf?$T)B*1|zZ#FVLNthwJ1wWx?Y7uD zHAzBRdU7L|y4GOVTFceWLa8K5_u6i9$4WWa5^`&h&e|#*nbo66wX(%Al2q(N>3FI} z{juDl}E#D3abP)#fQWI=WPD&cosC?kjW2W8z~{*VS<~y;!kW zy+ug|3n!<@ph}s1cJ)D_dhEdbaZAB)W6`(9tZUq6QKP|bi_w+mBBko2?d=u%M|ZTN zB!Rgb>-nq@4E6GRi&iqJ#KKT|9@*VmbL;s8r)2fS7i^8o$EP$O-xWG+O7*DsUZ?0j zVN)!}>M!+F>{c12m+`8@B|LBP5`M-ZOyJSDJNp z?w>#6yjP=c)5Rvv0Rh|4ZY#d*3N7(;I;AtawH1Q>+z(eZki8)a#%do|f9%$c`9Q(3 z>J88=yLe!Ij-k#*_+_G=sS|2!Vlg#Gc`$K~7%NMWPv3@HTwK;5OeXcXAAjHUnzo|s zZ7d2(l8+-5m6khAZqn$~Ug_dRXZ2#geAFqCJDUg{nO$(iyS^;<+RICuJ(wI7D-^u{ zKI74reErLOy1@9^b0Lh#;nR5mU3*P9nRIGyUifI0;K~=jpdyX<8|66*q8~!?lU`^A zPNz=cf$nDk2eZYcm!npCFkQ2n9zSkO|7h4W$q2RMmp)vZ7k+8wN@99;TXwZ~wwh}Y zS(SN`alSe>f>|tnRWE-$X%Qjqlc|IJW*>&lDxb=&ttUNRZ*_AtZ=;qZXFnNdmBe^x zvh21y%tXp47Ll6ciL#u{bY8Z9Zd~+OQQlXi5=nO-!NcmoM7YdVUoU8mrmkEfryY*R zIyQ$eIn~&OQKVSe5*Uu1k9@qSe#?-}YtvAcZFD)D@RdAOr`ZX~gXhX(x=>4@RGqE1 zY_fJzNx4)kEHTGAwftLckrIpkm2h#oaX;K-dRgkC#`!HK#F}wQc?7ryRX8yPS zSt}0%J6t`K73cZ)z@Y$Pq!phW&;Sk5W5i%hDgYrk4jIA$j?Tgp`b57IvD$vh8-1*T z%o`;uVa`;2esC-qD;2AcP?9DzRE-RNG_Y2yE8m8bDm>p z!8?MiqGilFPng+g*<+qac@YvK=BO}QHcyKA7EwgHfX!nkvZ>mJ-r}GQXM8T_T&>Z! z6FAuPOFf^?w^mc%HSb9D#DOYBf4$rd@=&i0+q6od5s#!iSC=(B=@W1}E#VgaurDtw zQZAJ!+rNDKqG=u;Z8ft+L(RaJS%Bb)H&b35x==IFR`+PC%KZCsu)J@7CryjhY~kog zZi*1b;1o(Bt7!{!KGntJ7J7$ta(6(oL(Y z!?7;R{vn&?MALP$Qnsj4Zcff#kyE@XJ>JW3y|RmDwtB4lXnUDOkS5^`^Z4CSVB?GX zT(C{4=fW}DXlI-iH;dbd=CViMuzIU8ZDs*|dsL%S2q1xRE(oRq2yf>y3+^+E9#IKm z-G&dgVpv{Qq~8#wq1@8LxAD1nQJmb$3XXqxNhhxdJ9#Oe0Kbf-JZS#Obp8TEy+Ze= z>*~Z{lJ@a%m((w>!_>$U={Vph=5RGN+l`aaEnwY9Z|Pq3LNG zRMXm1obq1m>O%|}1ODYPi->68VciP5YBs|q_eBIc>&JCjVLIb~^#wSy>D5rE@p>>y zs~s^hR5UDO7(upZc4|}?YR5JUx2zSLOj=F$uFC+z_~-10_Hm$)N>PKRa!T`{R3{4a zyqn~)%lyX6QpydC0rI^%jq*`KB#W6Zj_smf0DpDdwZEsdlyZOP4<20;cj7Qeig@up ziCVE$J@%;mJ4*Vo+>|OZ(RnF`??O;wTDr@XOBwDwE1gQ6RNHQS$$ktd$V4xPK!kZ{ykXoi-n^cU-khHN_3kM{+EmS$St^CHq9TA5Oas8rhY%PS5SU z1YG#;9&Eh`UA)eoAE7c$?Vfd_AHioAPvW&0xha32V&&J*%;pXwDd~=%80CkP*k&^7 zAB!#LnY3e{tX9%zxZ;f;>Ntn?h6-1oGn%cN<(Z9NQwTB|BY|jEPxAf*ph5~0_DsWZ z*?Sf${*-(*&-;4Yw$Ei`XlQMp=8Soi zx%rVlx>x`ckX3(mU>x4W(%hEJDlr^9<`l0*QGHTOAdX3fu2p53`yrBWvNp9WdVc-I zPqs~YRl~Kwsq|px$_Z_*iOBx-)pQ!DeJwntoz=KyC)Jm3A2wBAoQJN?d(9IyF7%zS zt5mj4O-d^AgG1RZ8h<20sh%OXQf-%M+a>=LL#;^Bq(8l?Y&HB1!PrW^I;SJGe)*5M ze7WcJcSdsXu2fRh6mq~M@ad#1ECGR*_h%7+_v?(`hzPbq@4;3miC~P~dMRgrb$I3u zL7{|r3jaJ;@~~HXdAiXaPN^K&?cx2>E-5dfhi!4KANM`V9j3_4xaXJa1|`cwC`2+f zg6-C`+NEr}>DjV;uf4cmA3By>OU>5Fpu<36HINM!+&a0K!?=fwA(N%!K06Ggg3@yb zZD~34`2Ch+Q@cBaps*ocBdSwzd3z-0=?pYizCF8%1OVW|38}96Hfyw5bEf6c7l+ zmHjizcz6o1l&0g+u|;axMXUqYNoa>2NphFxL8nTIOq|(%(!)bsd1Ua&^1&E4Nsdy( z;*%}hEyGq#I-? zl?DMNrA0|+q#=tjB+L8LoIa*&3hVdyyPb$|QYxKCW?=lOBGyu8NYWyQ1Bdg6ZW zXT3Z3y8O)(huZxYHplm~W&{-}Kqz8iY^L=JKpR&hd3KJS3_hYw`B>Mem%T@Km-)_C9n5QQ?xYJM?^@l%w9N3e4)j?T^n|9X#?9S6 z`$&aZ!@D%>9f%NQGVGLqU7KhJ7+Y6+uoi?%oMnV!+NHbbgNTGI&62D%`J+y1*y2a? z&12>A)HY3Rp}3u;ahcpMOLJJomyY*`Nd_xcqqT;SFzPbM@5uO>rNOo^7+dMesJzWb zP*w8|aSRt21_1sy5Yth&52UYx5G)_WB**ZIzG5NvnW&%?-)#8=$(nNo+4dKKJnulb zTk%5C*0Ha6iR%tswpNM70I0h(&h7F3M(yuXQ5{qh=e*LcZpXdI!z8%#b}`7Rn3zV2 zWl>z06Ur3qLSU10f$ml4%p^TH?&vv9`M8u?wd@E@H8T;$mTO5D**bCD5mk&dP*zgNUO&4V;NSU?WDNnWa2m~a zB?8@XsQ)?LE&b?#_(=`Bf#^dM+=bk-t-`^t(+>bJ1OU>C$}K{GIcNZYRGD24`5Q07 z;V0M2KM^g|SK}_U*Ph$NYR+x=WK3N>T5WWQiH%O(%omhaDrIlCBzP6eE$lEJB|u$% zNA6yDw)uoum*(E5E5^pwJ+WQ+J>?9yD(7n3>}@`dR&6Kz;sB6Yu}GVJQ(ILrC%Y1x z%cKR$-YWG(UoG=7Y8FI)6M9~uM3Q5!hEjfc21pRcb##NkIX5IZ;2PGtrXq$Lj5uDK z67B;e7^nC~Ic)A6BtJ3W^tf3%GI?37i{OfR+*4EHXjj#p$)Y}TvtuVO32G;2OqXO4 zWGmjKwu=#}@I`2q=B5W>Q***@AFUm6x|faMrv7r7&14^_N!xJ@bChT@$HnnrnMhIQ zv3XEweRO^xPvc_>i2+11yS`8>2^l309#T`5A z$i=IP$}b#fVk%CoP}Sa4vYp^fV&WPCOj5)m_8&O2jijE_^=%|-VcIHuOJI_0pReR6 z=uu;0iY7;=`$~*|+14D4owZW9sFwYaX8zcY47=|tRC15~{sDaZaaW-NW?`mi8#A-+ z8$Mi|BwAY$aX)BjaBFqYd}+goR%`s=diOix2($TNo@JTvM~}ocvgPMLsN^;kN>?}{ z_hhlwi-4KPA}mn32+z?`39Rf;l5yI0 zu1@kZwQY-WkD>tmgr6 zCT7ge_qc`8kgvwr1y4@p8iuyb=tbJp$b>3gTK3hxjE5g#W>YPFb@}t7viS~<3TM$g z2h7;$s2rZMz8KgCjg7@AcqE0nUbfo6l_3U^Da*!;<5DAz(m^q+jP;t-;}gB~7VBj@ zk*uW3g9JHyv_Q*#;mM;KB!iQXZX53PR(;+&qMJqccM=N6I&}E@56Vz#DPh?nfljwA zJzP4mWLcOgk%!w# zO%Ga(JvOw?Pla)N^oXe0jznADR?p8$QsUJrDY%lltetsaFqRiiC9wQa(QiPKq-m?c z+L$ZyWu-?I>SGx=CCvb%nlXRyWg3W2uJ(K}Fbh{$a)63`*2sSY`t0oW<+3E9>j*nF z=0o;W@vBZ-k>eWncbLJ=M-rg5?Ldf<1cV+KR{xYTipF;4^O~iYE3sf@JlG)ymPl_#7re zs%MyI&IwCp^R`1-WOpLGvPR|!a8Bz{I@Z>CLhyI<=_+jlp62fmYb{I@okwLt{jz&$U)OotQo**!~nYi&cU|6t1d{+%DkLvq`g z+(S?a<5kN6Lp+w@`Vvi$; z)HET{Gdw5V8lsuQ+yN+k&F8gvlf#(bjSjk(f8QAv9^rR8wlkq523l>&QMl=wrQkya=xMckLi zY6DGOP0xVZPfGAXd>C5J`s}B7V^bf_BsS2^>)J8R>}fQ$e6l(`lw?-nQo=L) z^#>aV>r}G^*3}~$);LB{IIGJ=&#QT|q$!?Dqp9gFdoTTv+Ll;SuE~e}Tg>^y%rW2l zxr~>VR4M}zb~vp$#kXk{WqY?vFasway$6{T@(ye|@*>BqF&3BfT@tzh zOw!=9Z~G-mNRnnPpxQ5-^9rQ|sr5bTZX77GEdVm~p_l?(7-$c_y-(gj`-rYN!9Sr$ z&fO!)tkXH2E!O#{4Tj1dlfGc*lQ?@A_jGM~Vbi4b@Ou?zMj}aOglDo1iEU}+Vdt?I z8y#8EW^uV&<=HXJ+tW>BnNY5)=(%(-f@&K}_$-}}whT}8MUSRQvI+!pV`54L(jyWo zkM3CdR~@{n9GfF!V>YYvo`Yj5;13rNk}i(lJ#rt5Y7bHPTQ}>|-Avb?9j$h_+~V}% z>`wNqhkJ|XylgzIe??i%Wg__3^E|g(+Y?^2TK-$wUz9)%RAto!&0wCmJO!P z*rvtu0cUJ=Ok3#{RTb<-w`vWN@dPGm=ldzPP#mdqpr7eG5>+wFI)pKsl3aS&yPWv90g^9UQWEY=>ljdPtXdN`m!7E1A1S)1XwuXj;t zF(`GByRIb7Y<%IsWccWlX_r>peQmhNk=B?{M+t9^2u}ZJ7d`zEDg(b_oU`c=*)El| zm>~)hQpNrjl#KfLSJtZO4>>J#F+mok&PT+&yUM@@kPyljVy&%6-rA> zF8D{N3|B7s!3Km(_1f=r(7>85DUAikzz|_yMI?oUud!O>>rvC(NZvMWVzEM#bPPvX z<9Vzk&HsoN!_3Oa3|h5@UmWP*D?!n6*rr8}oHg1{8W>t83dGmw;5R=ZK?SX^R8_k2 zx{I1B^nB`msW&XF54#^^e%MNGndRAOq9ITthF#gLKyHPez+XQX(ahB7!-WMZpl-+o z&9ADXoE<&eo%t>g*#xqb1pEDDfd$F;6nYDQv@%jjkBb+6X_oK7zDMDiBo-w+97d2K zfp5UR;6ZtUXJGCG>_7IP&n*CjnWgcU{SX_8X}Kj-!m{vvzSERTE8XIjEV@i{)vZ{? z&~f&*ZFm;b{LFmA?&~bJ9hp3W%j!cfffqw`gVQp>L&Z&2wmom94dy# za%40_oTTjr*k>-C7a@=o4+}5VF%;Fw+|iuQai*pw$+M=VURYOzDZZFi-&O7}@1WWA zP1qM0y7WY0-sK2OVZS>v78767^Eo^B1C5q>b9p@6?TNo%FpA7+V6ZnhV*ZGBg~p_% z!6p2VlAhy19V=v7GI5vjO(4^fC+ZH+B~K6oVo|L<*1)uwc%31VtWg_mPhpTH2-XTK zF?8t+3AdH^Rl844X19T6<(BjfN@Hi@)Z7jY7f8NoH%KnxPM{~$mF_dE@5GHnMPWtA z`WS3;yPUHu6HCW@7>o9!5uXZJ!auqr= z$v)av%6WY-_TeF*%JS&eQ z7GXI#zLf*&;b9^G?#gCb>1-|0Pm8pny&c)suAgud7$0J6R(h#M9~Kkm;4&A?W9gl3 znoy}aW_h1O^f4WN<$^JYA-TM51#ta=&V}Rh=)VOKLs$Xm^&;h)5h#e1yaH?s4*VgP z%t(nWF|tD8qw46@ny{R)X@h;_$Np0IlZTNLt4a({dCRC_W?#=+wJ&30tkJsQJ#$t8 zjUe0N0~x1ks{99aBREXtB5^S(KYM$|Yk5!*7!Q((4;I&XH2glQ8Q~^k-6YzLp-g{1 z*rzV>Ti@}x)ryZ+Ip9w1So91#O1X&oUTvk$6@5OnCP%Bj`ejy4bc1YTwu5&oGl$)k zcX#cnytqkkl8Z2i>Ib~h!j)&S2r686Lr+jBb3zj%_pVF&emmSh=r%dWc}r_374%vT zXbGKA-3wqW_-DY@IKx7(x8@4Og51_x>O|w%GLit$90qL8yr z#X%`mX9yk*&g3TnzyC4-z(t0#55*yOJ{WW;k~S#;Ed0$i@cA6_$5!_qWEJvBI3z&3 z8^Bg>$U~^!F$8FM!jc=o>3`D&umN|eHXo8ThzDZGrU*TI9axaXDAn#OptaLI;=6$n z*X7?6v9ASPZ(2$afQ9j@2E7QAL5=-GO9J62HyCMRkL|O6vA%#(P9x`mNTR2E#4!Ld z^qQqSaXe5{i-*)bkD!U<1J%`q3+079K_ACj+;B*SyYgV9rp3C~PEWe-f5S8Ls)PK6 zL+U>9Ik0~Oky6E1K-bOefV9C4t@R(IjniT#^CvP8GH9Z&7x5tcou|eR%Xv`a_r$@b z`%wtVGsclCE59iuf2OR#A(=o$(Fq#Vy+aTm3Xkp)ruqQMKs1p55=~~JAuD|dff&L5 zl4{W2HUMMWheu%;l%ZqxO)3r=8ovT~!ki*W1k%#qfB^7lUY&=aK_2k=p_+x@;!_~v z3zWWT5S=L2dN)fhX>zez^rLS`%oEPVE&v z)bcL)>}6o+G7lD7We(+c6-v4@=X2zWitQ2k^x=s!4QyC9_WK!5-viU z>;!DXqkNO%YtX)k2AiwPtl};X9dzX78$Uq9G=zv^YL}>?Gkcmo;00y=cVTJ1onWCI zJOa&bfr)&AoM2NNs4;+VsGMX|aX@FwjR|ZnZa8Pa=}Avq15Y%Cy?qZY)2SXGOn~0c zdju{dZG!U@Z@>VDSP9d>Jp5+?|KAn!&px`eznKh;ulGrVyMz+LQvON^&m6=6oiLg|ZevXnktlX>~G_V=pmKvPyZScuN=C z_N!}H4@kg9itqdovSY`MgA_#^yqgqSLp2~rrBr@mAa#5kpeSy#6#D92=X+Iol}kI5 znXbmbxHU}kRM!6fdaA?jV?>&KVsgTm5Gxy7Z$oyaA`S1Pj-KNy%Yj@qZZzs>cXM^P zz&xAiI)BQPOiPwZjX#@K))$akOY`&ddo=xd67%n+K)fBe6HhT?PRpoxsBo5)#35W3`eO<4>|tIeqU~xgFMh<`&|vDs1fx z2gV#V=$0TSNx_f5zt#D=$YnKJtTC6+Cl96jr5xx4?In;MCu*tB5d&!s?2X?gOnniv zaU42M&6kgJG&ZN#UiE}h4A&Z#RXWznMn^}(k%95*OBX-}u66~PUiKp>(K?WPtZMbm;9-q^jZHNtI&*6! zDPv)+ebw`8+NOa^&mO$WI@#kGOFY)U33uP$W6@wS=&bB=D)Laxr5@t6Eu04l=p;-CS^?lH#_o)F?=t24)Hz?q)vs$ zAfJ9{M=3TDEpIK%F=*slE5I@gq?3Qh4+3gPhI3yL%wyy7n0-S@mVU0RR|x|-$0t9s z>nwlepoww_6xc+;VVNwNRfI%W2Gm>)V~YdiIGh10o$w8P!ZXTt?z_+XCD`xg7$Ae* zyNhUwR5}#nbp2xZvG43_U1&jND=rn`#Xmb|U{*wxJ04eBn^84;FusKRg`^<|{3KNxP zEv;?`PY1cJuvvHDy^6j8{Hx8A zu-|#Jm*v1q2Fs$P?(Qq>TU9eZF!uV{vmg>@V5o=Lwi{WE)b>%| zGM9Rz|I$Owa?urQ5uUrSwbI0#=$WinwZq2AJ4h`6XJb0)h}(FNFezU6o%h{^^1c+^ zQc{w$BYAC{R>}7a)1NSiFDC<-_ z;=aMtAmjgXsn&53P?+Xi;}5CDS>R7U@PG3Hhlc3RB?UIkvqIz|E_WDF?qsbItyuI0 zBHFptG2FFZdoNGkPGG!uF6_)D@sC5Z#(IX2UIwb_CD2b9MHsc~xd$KzJ6vO$=we^> zqcWZzSHp4;e%1o5lec5GUu_<2jz*-iYh*rpYhC>d&d8WP|2ql$=6aau~*{PF($;V{$Or>S)D2!B10lF~EU4)f&X!v?-j*!I-kPFV)-R0M_|5h=0 zqYGVd2az^KKs`f+pw5wv0TDP zy7KhklK1IU>*i9SqA#6n6k>QssHvzasLZXD?XBjr`w`lP?n19BOZGwq04>JKC)Xf2 z#w?c=UL*ykVDXlEFyGMXoe{5`t=NXT>xUhpyK%h0TPTQavjaeNc^M-tqJ4=`at0=?$vatPcKg3Ud~gbc^*RmB(Vk} z5bDqxJe}~HLHqw5*Z&_MY~snYR6bp0N^O$hM}GYsU_PiLecX(%mCXjDpdxt>QJdeq z0hcrR@5>~aF@gX6Q;fXe^^wCYEK9tF{^ULd;kX=3Q!Wx zK|l3+0Y1{5$CcFwhi}>vkj%k%^}v6(KJjy%+?3~?CNyxc4A4JUzTl9M{PGWY z=@ULK4E(LkmJ&#i&w|f0^LZu9Uvw;_&l?Xd z@Bo>Eq(=r)>(e#_%AIN|ECno<%%a`zauz?(t>n8Y<5NHXJ*vm_Kg4 zr9MO2@%JA5>z_YRAUm+}x^nr+PCo$2>>u#w?>YtB2N#V@OhCQFvaF(vO2fVb1s&a0 z<)dV7Fn|YNE+qM*p31Rh)>_Lk0~)n%0{Pn?mHV^f zbRkcNg${C%U(IsjPcwfC2}#PAR#10=S7xbaW&mb1W<|(aH8bj39T*OPuGpT|I>Em# z+62<^Ndf{f=G%ddn!J6OxQ<-W?*{_v5 zY;hnn^P-wbmdz>+fGXhZF%Z+@Cyrs0k{V_co&|_y_tD-b8zVSlgWy)Lvn2j5fuRHt zbkhg`Ik?;4=tUq+aKT*nHf_~F$)?7jLGF{i$g7%Kmx1qJeY6vUwgCYcz5at~(mz@`gYyu0mej?m z=~F=JUEq;pU6JA6K<7UrQtpM;Tkq@&WEjYyS>c;iLx}Ea{ozFh9umF;TK}Vh>7Q2q z1?d4lYq5gD6!N)FkLVPVCk|AQ*d1yGNXMS)>JJ#a3xdJRCgo2*0FCM&^xK04bmS|U z+;X}X(CObc?RObc1rYI^X57CP{4`(*RmdF`nDJ2kF_s7awYd;;P#ElB?5IEYzx3*9 z^!cC4vp=T&2S7Uq1eu`o3UV9%5Y9iitQcf{8W253|C)9almh)5Z3iU|{dVk~5Was( zdZ$75Q-xE%yE47=wDtnL)GZaN1_hLJP|@SR=+NLGxLU0VOtHWeCUFsGwpKcr?(-gu zle05@XG5F0{4O-k2b_?j^4mlHx1>5B*SVc=8!ukQdRl#vZTz0$5@<18WSUQOLlj|} z=pm1CtdP2OtM;PQ=g(?ei*L$`twxCcs)^>XlXCyn_wUR%W#;z z^N1V;8CmXBQ?TV^$^x67peD-REZ@)X<T&o=@J>b6N1&$D*7g zG<~!4)gL_)=r}%RcE7(R$4DpB52}$d;EmLo&wVyLIAwo3W)naW5U%X^xq<@>0i|Lb z*E{~Rk-g{%}Q$WXuiR`o^$!Td*Z>_o`#3(tw<_Sz6DQ%6|cxK2)zh-1+ zwglK=WkJWD3wDN*$77P5kcL;ag_YG}s4zOgIV;g(FhhU3b`46p{OLn}=?0t6hiMA$ zKYMRt4(BtI5~?k~HZxfCT8f=cNqZTeVUt4ti1&D3Z2pN>q`qy^?6IJdk}%drWPCNz z!c(IPN4!VuL>J*@v!m5;9=p|fA{tgP=jx4C_uj`wiLTCd5qChe{{Q_MeJO?G$g+Pt zQPy9Ht=Q9V3pk7uunZb^pMwFEScitsYLFpV)Jnm7)eaMg_a3og`M%P(K!G|@fyG5? zU<%qXZ#F?38LveKhgiJiKn1{Wk}&`0I6ZiCG3QAI{KRekq621FCRp_FO?`cR7;rSo z&J%qdJOg_;A3%k+JbcHxkFLtk?$IVJdDg%rGP-K+u=G;Hkp*7s_V)Oom)qaZub;-I z#!{iAEWL}&|NKvJaVJQgec%*syoNgax9$P+Vl_9X=6~r|ODi@6#}sK7F%4HcXM60f zQ(~)s39_^3Rle{^c)fwHoOo;JppzJjUEXDl5jeO|gWdPcEqTzLqyui)MV}s(hfLqGH;ALm$eV-Bd1wG&iPe3^Hrb8|t}ggQ?z6LVbGzQoO0xGZF?CB_FZj?y)1t()h;k!8J?)%K@ehm zf{dp5uLa&ewIWFH0xzzL9%_ARw9unr(Dxq-?9_nx{$O*T>JAsO?JrS@ z$v&!ujK}1wa8VeyJY^5vosj_XfliEM4Gwi$4l!Pe1ZU!YqMcni9aZ zKCHsRy0<_qcOuHcp#TyXS!&spbCh%clOe_dW{9VbKz;{ogu8f`E=i`|F*cTABJXHz zRbP$)0^Pga%?_!df2@=j0zXcLB_<&ujd~#KNpdLv@1OcB)qyfOB)Zfv@{zb6gQR%J zW0e+aj>SuoMe5m78spg?^MywN-TZV@b>DEd=jPYe@FgWAn%k={{}E1_n7oHgHp_qG zIWaOyVTZvK78Vw=)NeghQ3)YhVN!scR~)EM1sR!v1osO$d~3imV6-+9tU6_slr*HI zBB0Ea*?9K3)rViCPYVnzq0iL; z3JMAu^73J=k?cD2v70#1z`YOz<-UjmVmeh-RezXl|Gs$y%moc|A3wapE+QhHDl3`& z=urg%{YmTJZqt>U&`d!ABPu}7GA!ewgwiER?jpYB=H}*4drj{Uc~5yHHQ2P&?bX%a z6m%1U&g%Anj*SV61GiA@u-(7U=9+;N8AW>_dBvLVi+u;B0;H=0om?Ehxdf+V3i$W7 zva;KAW@LWD=K_|xdQHBBz@GQR+>fV~`-!AFTpVUI)bDu_kBHv676}==Q2>@$j5qIq zqQTr77WrP!$E%n5Y*Dt%RLoL4RpZ(0S~*|l%{=@X`yf?)YG+C~O2*c#M0H~u-0DixdtyTnv&g<))!Yu@$*Cy~!Mrevpu#=XHIXMzJWdqp|4|4$#%iv&iV zL830Y(u!_DL4JP4qT*GLR8YmvLgWs)?9`Lgtc!I1!^u(#H!boxEP|?z+*)5cs}7P<<~J9n1Fu)%lv)F_xIH zWW2e^cQ>)z>u7v=_$BL(Yw6H~;2jHM|2pWGPfLZ7b0W8^$3&db)jp#pBI97ryszi; zBNcAJ{_&2VL_*7V`-!BB3ftkyv%)A7`Mga#eJ%cn#AN;TdSOMsBb%#hcS%HgWHIS# z%u=3}j&*iNxa`8CxG4h9GLB5F^-Y5N`Bsrk5*^OLjy}oTW}f5Oa=R)M+y5E{9scW8 zJNw6vSH4MZn=}qRG~1rDDGNcQ`8Zy)2o}A6Vs&DeuVZ>rb}+B1wdzkD6kTrc_{@tO28HV9t&c~?-?ivAc%U6mo<$tE@~;k@-Ja;C{o@$le2gc&cYS%- zc)Y#Z-aXIp#4Vm%ybt!1#dW{hmBqrt=8^J&7RuM6XfT7F-@$#?Q6au8y?#zUnYg#L z+X^)G+&B0Yg`Bc7SiDf>kBAyS?k8FrG)2zo$^^lbw_{N>ws{?s2`#pkr zk?+d`=jUoFuNePQ|6?R)&iY<@y&*6RJJ+|=6jCJfYMd}aH}TshxY+MmhUIXoWsUM? z_CYg)&|QbbnCPjQy78)}(ooE#Osqe4?TUIe_VpD3A z7qY2uHSVh?R%c7QP2Ii1HB&R3E;&01E~KeD5^18LF&<{v$u`ce_UN0Cm@^7* zNS(DVQMM8oGP;Y?cc|Sr;H*qb_BAq9gOm<6ud2q2mlJKHuhb_9CW2chBd|M6mmO|! zSRf-e^_Nx5`7e5XA$>_Kxx7QAbY|3B+4Ul^l75rGsVzdT@ueU!*)AfHJ6WP3cVyPB zwDU+{WdATeEYx~gboH1p?||B2#nP|RCd(-JssmnPUS^zt^h1VEKaDaoh;j3Q>h-+B zkEQR~JF;&(&eT}pd%;fXaJ04fUCgm-nGYKm@@3ZjCss7UiS_g7+?xI}u@bSBL>(oL zb2_#5>RsmAHeo$}3#9Kf;iECMj$4m@-amoel@~as+h747^}{Bb^@aKq9gBYF?_fV#E-y9rh91N#C>2_2GHUgl_%fPba*jN zb9?jiER7P9Y{H`@Pg#G19KY4W8&CYGiTmIti>A+N_Det4b;TZb30d@uT&z? zI-@#&s4kSN`r|uwG|l~Er`HU;`ipsJ1>O4hlgbaa=v|8|7NTof(kvCGu7q=t@e}b&^I*iB!0oi>AC45I1lA@ zerwAKB+kMDmEdcB6>xRPP_opramo^56kwz}Ua>gtPT)<9h)A2yc-+|dV>cg{0}4g{ zI#JD96E7!K7#SIL(041j0*!o=XMLwkD&5=`_;LS{+LbjLujHoCu(;4HKRoW=+C|rLPaCt2@v`_i(>DSqvMVa+942eA~OTTJtYz#+Vh?xl| zZ4G}$sL~}P@DI=m?z%Av>=Bm^f&*PCW#^M*GPif=nCOJoZNW{ZAZ;zo3_a&BL-t>r zY(o%r<2`s46CbLd{=j!8Z}lR#dc|`*Abnopzxb8E7i}%`&0c~d+DrTrad5#~m7N~M z_T|h^0CpdYL2UD|7JUufJI@c&!zTM~GyWGvt&DE!3hzDkM@%JOT9Vat@efLq$h3dq zmA*gyuGpP>tCwNbJYJh$Q(<5={%mDIsO2l|pb1iz1=D-w#gJ=zbK-@Um5^iNR-c_~ zlk;ZH(?E;x_%W}WR%5dqIy@64d=9&7B;l-N`KAdTk4h{DE~y4itT@`*7UEr@rKKIc zvIX4-1w0~QoT}|5E#RR6cL+Cmn|xn4DTCH822}~J4)jZFy$s8RSJa!U@OhpDBwVkg zN87QLo&>)ib;#554-K!?K-cc&NO6g!=qo8`c13I(?^vuv9$|+990b#-EzmnB{Z(pe zGaa;_H7^g)9x)r0F&4H~EWXADE+%wU_?WMyneWVp9(WE+8MLDewHgy=Q(a;E>!mIx zicapEhMs!LY4gugE*6spr?c>|>A%7={W@eNI|hS0>2FobitI+Ll&8G!6kXNLz2O`` zp3qY+ajy4HZuf-~H$^epcJ+8p@2&k@!orakC=RC%0=1+`F_iUYqmx^jw4i$Xz?*hM z9hhPJgTQF>1k`Jojc5K!WoCR9g{88`Mp2a8w4W+P>Ml;b`&;a!XF@pxBy+j5n&@2A(o9r0t&CM+J2LLYhT@IQ95RL3jGYnSCtHR-HF-<`j(9e#kg7!=uK9dVh#=xX3AA|MiM_IIG$Z z_7$I+=3foI*kO!~dEYF@qKlO&wst0MN$y&tMm8$U?BLSKje|W$&)Fr*>oW5F<*%l& z4Z&jCp7xSeZ4M2DBIE{@_Rnn8rZ)q3#Dj&?R8ya0XK9WoXem;YrGw#JP7iM_6wa{c zJRQ3}kgc_uT}e(AK>6EQ#tpCQ96QKaeKqE-LQ@wb>M1NB(w0MGOynw}LKYC?gYB4q zQ~wSzg39UtQL}F0u1zS(DlvXZGB}4i>rBnpl)t$Ep2vo7W?#H4DLQ#aSa~G8Sw-G) ztsCxClbB{#>7e{MSNX*qimrEG5pQvkTu)8Sh{1h!uOe|h>cUa_6w&dp4$ZMI3*&6fC zqMWq&IEIRgNo|Bc&Hwh6nnCiW=&K-*yifvDQrDhLW0%`bK-bE_J@Ra7w^y!qAa#w zxS!2IR!f@XfeK2S>ven&i zRBSiLIgqO(-4sNN0(YBXyTyqY4T7<44lB`v?%h@1Fsosw{k5ZSSq8}QXnjsJY9wi1 zjILY>wNu`?c<}MW8N6)By3f`7LZ)tot!RbKLrT4Bqs*1s0}nt=lh&)W@71xXji4o^ zj>IE4zSFZ!(SKa+d9u9wVbIP{%x)VUdv~KHJ+W`J0;%0qwYOAkF~H`q^g2-Ad5y#9V3jqFMD z`BJThll)w8H$<$7wKF`h&^w#~elT_09cfZlPu8h67qqP2L9Og8fehSJZ`@gYB$rpE4WA!Sm!=k;uBD$z|$6~x# z23|S!>3Oz(5~p6L#-nnh`qWpOPT7sHU`%y)^uF7^Ex5Wgwo@TKDO1iV+jeuLe~Q#D zKJM5NiS(v;6TcY48mr_UAHeXDXDJZ1br?zD@D1zUU(;4oStG8Hx~h}8U{~9>eXeyt zbjLS^C28KPLkwIGDdwOa-hUW_v6mT(>nSKjorU#lXlbEV)jZUHfXl$|)Mb|^@E%Wc zGCuf->jeGbAm722dwcuVJ6tEOwWg0%Rpd@wE96eTYwq07Y;3F_;UcC*y86;@Ijs%} zAd9M^-MiZ3cnJIHs7BVUVqeY=yGsO^1k!8J+|+rV$Tj5M*ZL(-4yV}cn5by3_Iop7 zRd+M@Zo_T=N=_j!H>Jp@t0i2`%2{VyjYx&8pB?oxmhZ^1s&gF?#YQeSRpCl1rz<{- zr!hxAe{nokC}3lF5H!!C({hf6H=)sHkLD((P4B1UFWUPNRza$n22bbw1$O6NJ)h3+ zyX=gNxW0Qhd4GFp^aFuYB7Q`O$EFX}T;OTaGJ@Jfcf zm{yQ_CPxzgc<^Y_xog*+>&U65ShAz~c!w8n0Ukw+o^S{PVS4w?~Z>S0hu>eEuFr_09^kx(A&6!qDSSJ+YN zlv*{7l-a1!jF;=n4WbhY0+;b1z!fLu&YMhmx;5`Z8$aH%o0W$rwz>uEZOk;H z54H^(-YYQCj8{8*Ta7p^I;o{R_9`@%y=BrK#YUfxE+BEQcX&MJJv=h7QWc>EiEWN2R-sS6) zlg%N?f|T?(51QzvDxc_%FEGeq;4=RcKa*1kMG6L zaw;On8jZ^*5jD0;Wh(?zF)ZpCH#cTmawltE%Ea)n%0{r5RGMzgb*1+-Gs-pB6iHW5 zG$#_11`0X1^7Ln_5x^|fQTW}BxPjkL|ZTzaBXqr~PGu>ivx? zT6yOLVikUnmihY~JB+teAs>%R<>$A54UVpj-RRMX^Xxv~rs@2}q=TyUXbdy=+HIXg zUuQ;YVKnmP4AaYn#7Mu80=$T2Cy8zRreEXb_e?|{f1t+uJT(y%pJqwlg4eZI6fh0j zO>EV_(CI$%#VF6dU?Y@w^~j@w7Tq^~=c|opO{6Hj+^=H4jr_TqEu;hYr&TZ1=0&w% zwgnBs@dRB5?bH>Uy7eCnjn|Og*5yJe(iEr}Dca1#G-pL<7 zLomhv^a$s})0%*V4$G%Y-kfPH`u>QsZls$pA&rNhird~d#~|sCuYHg2JI6X+Bl97N zin>J7x4e}nB`&#AeKPx%etgN&glhL>aofRNLbqf>Z@)g+CX|@Iqnd*Mp3p%O@$Mx2 zWvCfHi4_MPoA|tL`O_f(C%pk+cQPX*@f%GzJhYw_S;Y=E$FU|yZcQEm)#a~M$7|6+><0O)SsoI*Ow%jaYw!2O#~jx zlY%pGvEX{1woZo?wvg(bt(lpbkCC4$GnYq7y!6oeua75v_=2$QoqoVvTxZA1aI+@v84l7ksta*>=1x`23eW~k7(;jWX`(r`^v(_^wdQ5Kkut7SwR$#SWc7=dM$oO*b4Y9$4=Z8O4UT=Xy;m1lOmOdXPq?}%$ zHCLnKg`5`Fd*4@9J^$W(ub@;hNDN-q?@?wol7xB=5}(RRZUXiz!{>Z1Q9MZ0F9i*R zY%{;D4b%RFxx*uI&9_(jb_e}$BZ)tSD?uLK=$Wh@w#)GT?xOLI^CpW*m!Rq-zFf-u z4tNa=F@KVTcSXisBQhyoxeFhbUcfD`h?c~9H*TAM&5)D%nJfFk|FZCjmUtM({aPuv z;ullARjdGqq)MA-wx44^;ew?zWyod6JLqtEr*_&e!;%IO*I`aEDdFbsQb$PpV_Cc-K~81Y+SCSNHoR|G z@JyXh!n1~qC{^g`7?<8x7en{Mv4JayrHQXOw^~Q48+VtpRfODeudz;JXA>kb<;m*m zZ6nrcQgt4Ct;??(E(AmAm+XP@8mNcq=#0{3 zGx3Q}5|_PNnzs6`7=Ix;^fkv@wo=NRb>`N~L+|c&j6X9f+22JsoqXprd@r_!cX_2XY*>=pwp`PCIdLd{yG{LC zCfS*}NZxMC?^ess{Rfk*K?myN6O)?Em#^^=b<+`6-@l`9HDvGF~akZQ@7U~}-_q*L7g>`qtNX^3Ee~(J6+)9Q7A?UdBK1+iw8I;{#CA7pcN@SishdZ_B*a8S?1SOhok@zeRJ3Ug;q3O?2 z(U4@y{3T%Vu1av6{(e0FD^*FA53{lS=KjZb9)*YKi<-3KfA^yk$17k`ppKSMBC(lq z3U%Z}M5G*{ktb)g@0)7I2420QqOLkrwKJcINKbK;!-&<%NG{$I*S%}f{#v)jh43>| zkYw*|nS0NAjV|91m6cR6KmIBm#QkpW_-IL`$i!i5(JCD$`z47ey?%G9RY_i<*qW* zZ;f=*>&wljoc`3Y9L{8tfwWSAEGpvU;T;j7jO(jG$>R)?9FlV4IqT#Gvd?m(AG0iM zzh}`%*-^c-FzfD}X7d4|*p`Q|I;-R+wPiN);leNVDdd(@vW;DH3%lUc^(fxQBqQ8~ z)~z&M@ic)~Nm4b){R{7G@?orFMvNr<_pb*ozQ=eUlS!^BH3$4?5PcnMw`Yy)_uOZ( zr9x;F=ZB>HaK0Vt@FX@Os$d89rkq8$gq*r~#rHg3b%ZFsAB)BHgX$53CzewJl(Ubb z7|DWngq}v`GITn?-<0rbe|1$Aw|5i^WHzY1X|+%LzVGW zIxfr;HkV2C7|WgXX2_aLZDrtF!LqbA2Yvk{LXSB!2e?fRi5vYXyu9^p{M@1O)2k9z zYYSuo0ac8Qg4$+f==+=6sj`gy8JZe=!l8*)l}-cso$+O7>}ESrt9klWL<~{^+a|t# zs-zs2+9xXXmnARjRyo#4CHuQ0%Uy<9VWv&1yVj7B z!*k8`qlx}^k*^KayxA{#^7|}AnHbpmtAo;BaZn+-kFEO8hg-_@wi^dYD32C8RHY#e zYTdMlWIr1Q!iytdl7Sch2XSv1Rb|(OjXn|rD&5^Fh&0j)n+`V}($WGVB@Keardvtb zw19M{bVxS}NT+m%d<%Vi@IBu+KhCc+#vTsF?Y;L}Yp$B}n%A5YzxZ;d@wmva#q>*J zqZqCAQj%PJ!O3!6kF&=|6_&=zvagKLkvf}veR$3R^ZsPI6g!&t>!ySvNqZwnQ@utDOts4B4<@qI6W1SJ2@Q=CQd!OPjLAl1y^7c7^ZdboHv6(J z7);a;{US_6&I=!FlOzSWd81ki)I)iAIB+k2rGnTv@v;)J+71JppMjjLKT6ORv|TCK zu~QtMiMV0ETs+o$n{Gw|UG;>+VNm4!FpE3K2`?}-xl3;2ytC%U6}EXsmKcM0_)Xbp zYHKtnN&rDbxIQ2H22Ew0LYxer(v#se~$*1I}X%mp1yMdRe{I=a)VA6g&dl#iQ(i&<1eJJbo; zbxtwQLNo7B+ebH@Gkwy$-?gAveOW@cQeQqP6jjk4`|wAwPSxvW{-c6-exJQ`B^Kst zAHpNcyC`T$9G7*s=U-BP&D1oF?%=kSl=v8FbEQ%DK(oA1`A!@H?>&^hrzY_ zjwKpq`98eecX!B*$6&9VgumeHAHo0thwY0}sZ?S!kV&0{yKgOMt{Jw>^!11BrC!&0 z$`aM>FCsn+r$1{;X(V959kq3Fu!p=tPlocPuU^1mtL+~9r)>-q%WGlxlOZ3D6e;w+QE@xE%IN*fPhigjwU3-xCCiT*CL5DXJwOCa*|PB+tkc4^T`9+dgmy}x zpa_t0G5wWby4I=vogFTBxekr8il$B?jU4@ag=hU#0}S45H#krK zPQ)=P%QNxrM^P4-UbU;*%6Q)=%#UgXA%I5uxxJ#Y5S~-~S#w*Dw=-HWK5Q~6@tM_Z zf^(2|>{*3m5XxlI=C{**X>$|gYAFdOzO7q9mT?Ei%9*n7hE@<+U?ldmj(YSon(M9I zj#PK4@gSFnuNNNEi6MZGVN6qj;MGTcvllFuNVm+_>sGe*DI3S|E|u``AFDc%;!B-K zNeqTxeHzn_4~XXeTou{7V`nT{M&h(+rOlz5U#xRTk?H9ynb>V-_fp$7WHzof@qeY`)uaJmD*>~9L3^j3+-{j)dgXK-Tl!jv>e9CgxgE3ceEx?GoC)`WLp)2( zK0y5gH2FUww^LZYQ4`#ZTx>QUDda`dx14NBGgN=3za4U`v_RG2i+j79!k{_YevUA6 z3Y&lJwD#)}^0(;ecMM(PuV^4%!gFET<)&079iki=DkRTz=0d^{!_vlKh&hy9Tplxl zNSAR;+VFb8O`S1`y}Z88nHR{~)$EY)b-Q9OBRPkpn5J2{`GR31+;C;R6Khsw2Nv~# zn}kO?%u%?f#c8*&D3up2bAi3RiJ|mmHau_ZDaBmgW$K+V@oV&>eo^g>o=Ox_O6aHyCSD+}Yi09ywl0 zv34v8%X-AJ?}>)E%nnKag86VZm)Af4=VBhy+1C8M5vFbb+DAPt4aRrr!e8F=stIim z%S%CUswPUYSjV)y*W~Akzq@-vH&Kxo;7;q*RDEJMT)#M0Nh3l*9{QlAziGD+*F4rP z`p!h{{F3){#PUg<)olhg{@@s1IZ){KXY5B2e@qMCS1tu=NXM*bFC_}mE0CLT}<`h{_1ku$`V$8i7a5iF&8xI_WXm$hC?C0x;AxpZGK>RT0I>>HSXaQgDVUI*N4PMWHjlG_3&go1}mF8tLM!Qj&;G1UsDdHQvKMbv{3nJ@YHOjv~ z%eMJMhfpE$($i`Nmr?e44ZHT`3<9HKN^=bJ@I&J>)zBHdTRJlxQ{|W9qB=DW@5d5( zEMaF-cs~Xj*Z}MZi(yta*Qa?CPAsS=_psB24nd0q0{y84tRnC^d5`w3hPJ#romLjF ze|n`6oaWr#G2wgPUUa#qXHv?f5*A@9U7>w_ur=YSX35kJp$+IF8i5YwTm`d|bDau2 z6SQutXSW+@brE@{W2OdeFF92eKWIr-c)4y8Jn1&OKKEX>{PPaSQK#{tzF)@0PaRUW zE=eUCX*GFwO5q&?GOK!@ zr^UHlAiHTdWz9%>Fxsu0?E8`4fgTcw+9D<=u+mL9h-oesg zP8YcaCFrQ`+x{x{aATN<&ONP5RpRG)Q@H8R1ZnePSH3*^wun^u{(J||0=j)HG%;Yo z9|96!mvg138IhXtAHDF7DGt^02v=y?Pd}`>f-8h738i~%=YAh&jmsAM=6qoOjA-_5 z-X~AVijNrY_~$V*E^D-+s*5a`$F%wqKht-Q_Xaj-;IU!bagkXI71nAp--jC)tPpV= zd8e-JV}{AU@x7FIQT5%Wo}owc&UC;%$Z%mM#^Qd8u#`u=K0Hl1k%Ne{=#9-g6Bpq0 zD6H#vi(g?r=0QuLWAgYoO<^}Dm`l+iX`3CYDywl(+JKwjG~pMZpI}7}TuQX>EdQZA zi5X68QiL9u{Ve@l46tfHLWE^_&K#X32^1+ubajsU?qaH^G+wMd@T`*|Cf}Z0>{3a< zn5owxEHmFCMrMJpg8lZi0k}D=GY;2=aTQ4Uo-B4o)+xMI;*o&7b|m2@(y4Tf`;ekz4hAhVJau^w}X1pJ!A!4^^tLn}1MrwqajVbwp=<(j)sEF&05@os@A-^678> zHI7zR32`ABVE4mxYi)!<7)PGPWOEZy`sRrZGYpo)>(cEI`T{@kIiWpvOrBc7{M#Ty z@k|)LL(2#5++l;0PACg!Vx?aF3+{re&n*EjDFqOM30%g|3N#8a&W^Tn;YA_N>j$F6 zX8n2vx|Ye!+K?yMkW$m$&1_-+RfgKW#BE;oefG%ObjeUC_14Z{dVe9m ztPX2KgLv4Mfn(M7D?`1Ro(h}Qwn&h{oxRo-{_7*1${i;{8cOQ{GM&`{LK-piIy0=B z5^84|g6BGE-gO1f+4i2Tf9(@!w~!FzK;Vcj>ebZIIp~fje#zy|yPE%p3*b0(g(4yT ztx6A6a_o2R4L{vm6V|H__vhDhLcZD#bY`ESJ>%;$WUg!Q!gTL#*c-h!dv@>L<@WA8 zazoemg>-Nbh+xN?ltkk58h?ArRIIT(k-hIy=jFo}7(8KW9(wSjN}rEpkJ&?yoXvKh zq6k}y;&KTWi~3d5IjT^*UjJqN9u0*a#`X6y1e^Ipel3JRT1-0s>EGcKRC6M zHjJZqq4hD6#18b{Vb4EnS4(*suJ2w%J=b#^&fbQxLDMA%OK!y}ScY|18MndK#x3gI zAMi>)FNk!tJvG@a)vxyqohUZS72ndp#nvDSA{Pmjax!(crwm)^*Qe5}t17D8D1iES z@~o*Oe0j?;e!O*=7g>r!4-7B))cA#ql8(ZCZO;eWq(c%Bn9_Hdq^^#vpMfMC?K|Ta z?~bjyMlQH!HxJhub_(ln32%LQUrOQwayU3nOgX4*;dr>6eIfpm!lhrxGpQ=in`}h; zFQk$B);lH$XZA}cjFXozcGshT`D{1%qBzc!8RnYRe?=g{S~pIG4#!2-shmlN`u-UC z>`9Z(-JD{c8_5XauB-DPSkX6a3#_(!%BNG5*n)eT(`Vmn^hxzhHrB1R?=`Q`wU-Z7 zTN^brF`w^GkpC7nC@*s%Dsvx($6S)TQ|ItQ%S?|3f+&S|*!4^@2f3N~E0_Y4$^lriQ|S%U~Gi){tVdNP2Tk+4HU_ zBQa6IKIe&KOKrt#U6}4Wq7SI#z9%(|B}xBQPrbGv8abBfjKW!wvf~gWX33Klu&s>> zXq)7o^=4Lyq72qVzq@et|L`5F*F98bM7e*SOtlhlB1s^{*W|nXoC&D3 zoux4g+pKYkz*ZpPRNu|_dHj7LTPfl!dwaG~YKq$;;^Ex5fTqvjqx0W4FO|9W)gzzB;M%X&P(vG_coF{ z4y5;PzY5+GzQj!dMEEw1a!1gdh~F!o>1eNuz|fefZv z@IE5Ad5VgJ&;X{In93yfod_jr&Lr}$_4cp(6crn6aQc6mP!WoxQ?KsrdWE{e{c*oY z4`L#Rf4K^GkcgS3{oYbIQ=CTIxGjI26|XGaobhs z&hm5zJIx!}eHNH!E6_vVi%>e)x1?MjslPu|6KJm`-ypPKwP}UmG1JgUg&9qm%K-a} zQuK3+FWkIH2}?=(Z*edowf2YN(8GS3Q82G(Gg*QXeF<^aS} zLnR4feCz^)rx|@TNBV2DO_*38n9dM)PSkG1b25qg6z_7Jk37 z9Do1IfPe>a;kfoW|M~c#fJZGYto9){?|oMS&o0qm0ss1^f4%ExasA@K!Qktgc2S>! zXNd8PZvUP+zt$*fG7=Nazt1I2?dBJ;Xpr1-A#GIsy>V6N?t$_cO0s{;#TXa7Ga25Vb?x~_)WBRXOzZUb1ySk`7zj!ZqjL@s;^gpYs3aKPhX+E>1i2$;8_x6^1 zG2czssBT?h7aiEMHR3PAb3o~K=uKzD5Yl|a41(clhVo@TH-ZO~$^_dZ`ER3vKTa5K z!QgeEO6tv9&EU|1z+|WDBA;x}9-Qv{6KQ;nPX7M*fHQX%p0gq?>Un{L8Qw2#k-TX} zEYR`z@4<$Fxk8tU?oEsOGY1jg`bYpS^!#~&ma9y6oG0h``+)nsl|gsInnHD)v3V?2 zC4z7ueCm6S>GYB?|C-bEe_?^^v0>$a?%!rnbdvnLFCG6Z=&n0}wl2hY zvkD@_Ug83f?;FtF|BMB=cH6Eea=t6g;&0jcNP5G~KcqdEx_O9oblu9ieJA#R%L@E) zqTmhBnGJdU*W&dfyD6-HZl2eR;=L8j-25Blo z$mQ%_G{aTU8|3}8XYZptkJ#7|bSk%-Kl@4zSy~5(3oL@*vnw}tA==X{kisDos*^b6Y0ILg*E49PkA4$04Fl_ zPxE}uVk~;u#ScQ{=htolA1ZpP{t^)Wy8xim$Yy~@^Bv*gf!K)K$pX@$W-Hetz{l+>GF2XanUeJrAw(|%Dv0;L&>dYlb3i8FI#@Jb`7siR5P-uGa;e~>PUo=jE)z2 zob22Z|0ZQPy!_*xkR9Etr7v5l!zV6ZhRyn4t_|V0hLMvJb7kCpWj3qi`x>kfu?Vb) zwiHmF)v&8X?c`uBIz>E1us4xcEN?cEM!W1gzEt6}YX1(U6e^dJ43@r<>s*1QsYZ(kTL2p+)tfIu$??tCG+0u>pJr7xm{$9PkO^5 zAQpM0@Mj9(J_dwS&{`*q_*67IZJx-KZJVbX|1g^kh8q7&K%Jv&!$VZcW#o1gyfC`)2@{M3n_-Ihnx{oLMJvvqmA%x;l>+JUIXHzPrUuP2m z(vxQ(f0lvg$qBYN5dAt2>Gw_ZaF*Dfybmw;Mu=a0t-!6^{s!4Kf*c%k7)kJNp$BHu#dDt5v*UUi=cNfZR*UX9E_9wRF@0pX$e_7;aZ0-oT$vtKT3LkuyLqr%q)x z_9aKHlm&QH9+O$B|wF-+=2nX-gZhaY1-DZZ1T{aV#vRz_aC#KoKrrhhAY9+{-$ zo|RmC1UCt0VAB2g4x|sS_bPVTcOrY_`b_@}r0w&6-X)Yid%4%LNVIkg@|+YuUz5F5 ztgqoIHkiY)jfDSvq|_A!vD=(r)^*t49=I>P?45jl$b!xAg)r`gn}cM_ZO4O44dpd@ zD~qvBWb@GyGy$g*@$@YZH?ufzDwlxRkgNnA7Fxh@o0&x$ z`_lqT`o-R8+;9rf&u@_B91QQPe<32d2kOVF3CI2Njy$>V^OPP2YZ35lR{fIPsF|Md zQ6tZf=j!UElRf3zcN|7kKiPL*?k`&_*u8RG3-?1SD07l+yyZ)s_k6j)h zq)Go884}nUgtHD0KZP}z_+^`XG>iN4{y>YKS%r8wyKSrfTww)wu2gAz>tTv> zJIY?jE4wX1ifn&la7d#5HGFopSKAp$EB@l)(8{G-%ASdw#ci>Q z{P!GI?XCYrET#QAXkQ~O)>qYrk{h+da-r|%l}LI^91?{#&M=Ac?=D649vt=Rcu0%H;FB%Crg)2`rA!&+rtI z_#+E>M+$X@7eh31RVjq6Yjbuu2D%iGwH7dM4X^kvBbXM_VI`p6d+9KmLu)6WNib8H zfK5){FDhdtn=Fti*@;QPiLfVMyf&z%and_H1NypRNd%M9ehmvn%Yz zo3s3O5TPNopPO{yKsY+PekS(Qx{N8NaEjAPp<}D^(#E}oTaDWoTvQn*yj|0WsuJu5 z+@tUYD5Swz$mBb&WA?HaGeo)ql_qEI($7$@6_O@QY*ahw$g6bv$p{IFA%ApBtM!;< zUtsMLutsR0uozx})SQD3*ZE6xPnbxFLP-Vjz-2jpz%;3#`jZmuM_W*DbbS14g-3jf zRMO5TT>*oMK#nYjkAQW1YU%r8hTHn=1^fJ4m)84`LCPADQxhCi6{Muw)yC6jy`C_5 zJ6E>h@fJ&4r7tkIhmP2zbUk>x!YSzPT zkfJu7^g)mq3;Q%}0Opv2fa`?7>YGxiuipCL_Eae*<&0O;#Nbv<&hv)A=W7Ak;kkd2l*)Ir%E9L4W?5F4@;G(yOPXXs!v z4Ibkfq!LZQgV%f23Cs%@8-g%Dqzjsd8(#Yy7Txz8HU~&RsZyRF39M`Tgg>kO#tZeW z&Ms1f&kw7O@;}No`cT721~V9yQqq{#$Di-o1HHl)2b}q;DO%ez_2MHrP{68qv8 znw6dl1Z)r*(g5j$s0_>Q+ewkMQk;`)xkvSGjx8V6HtMaJ%<49SDH({RqFm@YNXzAx zs#)pf3D~sK;5m^;!~^>~oY&kkp9mT%9ubql)zS_#U8<-(8p-I*uDtP2;<7D3`=L2l z7jF70Xm1b*Z?EMAG4<;#-(7$;=NTgw7z~%3#>sta^rB=W&rE|mM?)@MNYH637dt5` z?!llc4%*?-w4g)~nbzIM;Y5!x?yDCJADn^wE318OAV0|Gdbg{O=@&b5w3Nf3g5am{ zPr6eU!lL_l7qdFNhfyNzspqD?8J9{)2ib*vRT)|w9zUhn)jU&?o`~Mc9Udun)2EYv zC&m{X?P@<1qV1$isFkE1^m_YSc_l$+{K9-|PytWMVy$wvjPeK5zJ$Vl{KT!~fhwqO zsJF9&Q%g$y`62R54l~Qze*64g$l!oi=)e;k)VoM;PB4a~$@VlLlVB%1stZuv%5Jt79m8IFhFz6>|7DYGaGmy0j7bYbWcbKRY% z-y}h;F+5rTAXO`w6c*v`jMP2t$r+n~hn4D%(_PvX$?j+;}qgUHf48-+w{3-lQd6P}s~iq}R3v zgEB#!Vx@_6Z9l)KrPoNuGz$>-rCgyzx$47T8y=KyBVPr=B@aF(HNMJxrA?Vo+kZ7d zw*M8}$&clzRD<9&Owutc&5)jfk0!Wfw&Qo^9|GqRF(|4&raKLxiXfLw-;jbr zzsT_`Mo8jA^y6*Or`nma1j8}+CzmdD*7nJ#%A1$&YdBWEK1HPI2+leCd5OXf&$-}m zIaw_(mC6k8EX@1QE#@)g)~d?Jaz3oU7yKU zUbd$npW8`<5IwezGW*&I#g*^pb-{4l8j*x32f^aiJSSgR>_)|s3_i#d*b;s1jeIx$ zwlv=5@hl1v_v;)O#v}XZEvdup$bz^j5db@X@oTDbq^(_c_no#UvprL|T})*wlz@eI z2+>W+0}jg}2&3`wYkU2EQO|d$TxxyPqz(=4husJA_+Hy?eYh2-abrLWy$C_t`c@ra zhntmAAw0!bTj`M0CKE=$^D*2*+i5-?{U`BoM|cW`R}53+r9J<3;0kIB5(x81A3LuQ zEZ%(;P-SbN1s)6e&$J!|Pg0bJ>x1!LC)EvS@qKV}JV?fPsn8dt6 zAN(8Z-7nU^11^M z3-LDY0o1>65%OzXB+TUl{&lN=K94~=<^y{s+y6bG!^*lwT2zK1#y6OuH&R11z&E#% zItp*lwWfY)(8+%OJTlyy{zQ1wU!zY9fA?D+w7h5ZuLyo&PNgUM6{@%%P z11X8UqkDPMpNufa_%mD(!c^yedIy+a zl0aRF7+|?YBN2$zMB)7%4w@|)1>6aat_rkxNT!2V)p(6RGS_RQbKn9(+XIe(Bku1kQ`U_RtdyYFGmxTj0 z*!b(wG{3_tDmcjlPj(m5q$A(tJpEMmlT1A^q$evIvBt^bc$&3keZqq8->&*OBiPO~ zw2fGl7Mb*5;7g>6xP@JuzG@lE;xcLv#HJGZ%nX~UKW0BWaBKyrQo2K~k>`}lk27?B zOp-etJ|2+*YO5(sl&`bI<~ zlS&PLcN{Y@RSSRs(IX81L6F1qI9cWJN2d(tFE&np>^pS=EDcN8h3Dj++Uwm5de_5s zf277%%$%UK`PbJj2a+3?gBTSSs=O$lDhxiFr`Ent$X;aELXaU7eW%<~UA*MEjC=*` zgUjNoUH)v5mX}86E9AwVL>-NtP-$r6*~IzrEkKt?@=YR(c$gMjY2k9P%JJ+rrc_T{ zs6u31L-H}Go$N-IQ70cc&M#UBd7P1T zMg8=L$f>WMetC342NMC>;>MV5`=Bvn1fS9a)dJ;PXgC*py>dg93rol{?WImXB!%2h zQ1S1_L5hvuV)Mx2{ZQJB-ey!tka)WSbkczwLtQ}J!3Ka($KeJaV9Bcu*C981e17oX z{%ydidbLCX_Q)r%fKXohF(I(Hd7B2`fORFCaQtzUbi`Tq{gAf8aW5r@#Gs9?;P=)b zm6{^mkE(X6h1%GIaER{#Fo@LgSl(d*@bvRc{W%Y9j_asww^YK3<^$h=H1p!-GvOW_ zM9!Z)8@zLiK`N`$d4h1M@Z~(+`5sVf9(ipz6Eep7{$QfkdE4;3Pk8-YON+kgYvp#4 z-99hbgcoWM4!y+bUS=e%o4Rl%YH_X8Rp=Y!J)_IB-YVBaf%Wmi0*@aP)hM-2KOi&i z)e6QB!w5}Dtw^8n|KS4g*|bfTu0S)SsSjmBIkaK$hSM^UX$enq_64m*!@Iy({@&}1 zx%&Dw?q3I;EfT_Tf4PuSj&v$vhpeT{QdcxCfLl7I4imr6FMd#r3-l^odC>ZvYXzF^ zrqb{1nxoQy|UKE@7PP9>vgED*EU?B|=d9Ies>frI|k#+@h;FM#&} zSO<~`TZ-VdW+4;xyc2*y>H8H+icT?R;Oikn$Jb*@Kb*EZw9Z>({9bc3AP(3}KriXi zq(?p7BKl0b(xD@48X*6r7DE0W$afdTKLPEt)~qi@16uidm&S7T%9Qvm}KoynfFIAW2C2x7qY0d_A<<$7RGgD z(KTMeKwOO2vT6I5>Q#$jEy8*9G(O!LZYC(4>3N!-d!0NnSB~b3kjL&HE3CCYUa`<4 zJ&$a3$epkG&gMB85KcMD9^K{&Ad8{+iUSKah~dKPAR(KH4;VC3L2n?zak(d~B1JK# zM2noN9(5pSWp1ve_2${p$*0{S-WT3BN)+<{N@^~pDg2~5O&RZ!-qYPtzKt12 z%6)ezw#xZf-_fRRH~N5`QA&_bDNglABghR2kRotZ+y%kJD$tQi5sB|Q4ep@=Fn|cF zbL@wYu|=?`-FY!tBcA?93d0!!Fph^ti%1tUC1^B~ut03ujuwEd!IFk-W~+lE(;3Vy zwSjMhfqDeER+hi$1`cJ)eb5|y;+l_ITsT|j!{0PS0kBn!=c#(rku;E3j_R}ZZYYTq z$qwIe@E^8%;N5;SX%!Q|pTD>L3c#kRGy)IwN^occYTs>QQ>&9XnK7aO%wm!bw%iws zSZdlY1zcPs#Dr!VRo&a*n)W?&v~sP+2R9D?DYU9 z%8mc&0ph`|vazmvbrd~py%FNzKq){HhImE;g-Z}|SPEVH(jLtwReQ~y?yr~+RW&^L zUV~0vV3c>ks3mFEmn44fRB&;S*J{h@HvmGyjoZ4**TrRTN4h(0&z`Rf%5vwGy$z0= zJ1t#V9cU<@Vl<8t$ORChMymCNU+#LT%s<}TU7eB2N_}BY+PJe7W}^5m=pgkTI~O6O z&Fioyo2QXr>Ge1@?LdE8eAjVY=eP$7M!MzFopnLE3e{N=VR>TlX3Oa_1)_n*@UyjB z#F%`(cVLXSeg&~yV^pc(Vg@JGajH)s8RofBZFM8HQK;ftkK2|cGF$jhA%6$yaSSM{x3UsD%INF-TA551TKT~#GR}GMO zApQLDBd&p{L60HD&P8oE(?4!*Znc_&J?y%Sec|i^#pV7rADEy2FKw@7Z<<# zK^61fFlT`bnUP%qj!YQ#Ej2QGfILIKB>83p${@WMWT-n$4;8+D8-w&8=o$k7|&;ja=d=(6t@n2Y>CR0~_eNI->s7qD zxSz=4;a{~4PU@B_13#$^g5?%r_k6{Yq};MdjC74K{82=%{@r<<7oaOD9}!pY236FEXUmC|e~cP;FrvaRS4!w&a$P@;X?>2H-gw z^JhAXORdu9>ZzUC0=df~9}Wyf+OzwG(!I%1CUR5Fxv{lp>pikP-&dzHzsb}WDL5Uy z-?2S&Ss8~Bh(lize^&=-X3&^{S}smL;gcGzMYBd|Hq}k8{kqy`}rBQzgvuaj51zqo9p{g zyFLIkO-fAau&7@a71bsdmYv+XEAWts!FPYpA){C8H+H=zg>$YuDE>j!; zsww=8I^i0+2X&Zj5H}yJi)_4LF}A-S6ch6bfpy>ae%zVLj>%~%kC_{K zcy^e$O#q?a8@Bt993LgU9NfR`nRSx!bJrsDzD`)>L49a{h&)5CmF-roT!c?_Y2sP# z5bH`H+kt5>4deajvGAOH-o$Lxp6?;61Htj1-oYgo0N{Eg_dFe2hUzd* z0`IT@GYAhqQl+&PB*M664`h|G%2)x{84X~G&e41P>>AF_;?A_KmkvZ^dV7{>8atA` zKAcB7l%-Hmo_<>ZeK6LQcKTT#Z6sQ~tJ9?obVNv4m;YV%q8w5-AX%4XyR6si6P97S z+;_|m;b!%QZ46U_u#UP4L&S&@UqZG1>y@o~N*oBTww48PCLrfO@uU!N56LPbrB9%n;#B|g zPH$*Mr_yqny-}98GA8sf{kkfV>{NY>G|sFF!D;Vs?~+hBrSR#$ebqWM0bDK6O|MqF zpf9lrS%_zcyg_S2jS@|=7Fm<_1gj%NxtDvTF6x5|j7q?^?k(uk`xh6W`i71A;+OpZ zxEC!{W+)j-@sb-@U6!uNQ#=lcwCR#jTV&e3Ts8K+Q|J>79(>Pk9}dR=u-0Rv1rY98 zn?#8Y*T*EdCziKn!)fL)TSU^GHdIw-gOrk-X$*aiT^iZ$&Z_Q0P2FTuPp^)O9~8 zdQrjbxM@Oo?qu!NQEtVzvl8-XJzIv{k@>x9i7H1y@>aY)eeS+uUrO+7NpAE>L~kO` zNN4~Zy4Re3&%+O1wymMKQqEbFtBYCm2n~E54Q`l%1wkK4@3)1_^QR-Huoj_O_$9>tBs(CkZ=0eybbwEtaG}*NZc;Fs?n)S>fqllHfF@8HbSD4 zeTU_7?x4YVbnxE(ti&+zO%x}6BnnUmMyJ1L60B3j8`j{i0*BwVj|6bjpA5smczwF88a&&hB!XAC~6BS(#h1HQPpaXAe3~h(B!O^GUD^w3?|F1M)%#Fo#pTg z5RfM_5ti)cSm`v$ufjX_4S4o=t-rzCPxn5^ugz;#Tatr&G)y+OJI$&0<2uUevPMuU zy@=ruU1Kg2Q)Wy?T~zS|8JD`euC!jYW&PQU5}(Y#aAn|Bhd{B(L8>00BXz9wYa>{G z_ZG?0&W|%maNoC}6mbpFt3TgZPN7+p#hn}Tm>^0LavV$CW*ZM+4a215z+l&F7}350 zogVCjVrwF5)ACS3zuc-0b7B31XEgPL3+?h7U_K;}(qhB~#)E2m1de=R(Pb_cv$B`F z1(?{XCi__p^|j}ke8ZJ;kiPTN(ts^0matD=iFl)4hwHyErCyHHN_P7}Xv4zX?xgfTQb( zh-l$tOw)u~2T2%P8c=~YOrqr*Pmo3mIk(x1+?nhLIo>+HQqitu)jl6ZSRX!Hc0o`VR|~#61Jg`(Bv+UG?VaVj zPk9v$LUh_sw=Yp5&>y8rK>#!rE4rp2Zg#pn`S&onmSa5tTm5IM{}*`nkpfWr_u}VDH)u50@^vfwDxJ6f z7TSp~xI4YX=BfXBQSZ8GcCKE#zp(NX1~DkNd%vjEf7Y`Y!u5Mg$p6FKq`3YnX6cu| zV0Ld&(C#546UG0qF0-yXGdwJ{aD$Cgy}W+*EM@a|5cR(VVh0>BWPz2p>NhwxV5@;= zG!rg=^b{ZlDjx#|tVQ^$Z%5(I_pTlT3IZjmYY{&dr?Pv)@1BK>u6+auwO9y9i|^wm zSSsSVexv?K3~||joqEEII0n*1$Z0~#@C3?bs*E8;a3m=~choPYase$t6SM^Zn$Ci?ruch?gruS6O8`^5bv zvL<@)?4?V|-=tul0f5t+uO<;{|Fv$ZpMYn91}idui{j0D&})O+eZzmvjQMpd-2E8V zH@geSlNG@Hh{1H{H`HsNRPXB{8{j-b`g_Q~mI^L5=5_CWe|&btLDMJit-@k%&Yk9K zPsE(d(Iclnuie5a0)mK%|BFc*A@=`4Hdt`@>PmmA-TJ|!47o%SyZP25+zhfSkifJR zhK~z?g}wcg9oMErK3j)X5Os2|5S8EN-?mZXk@V_b2W{}#e4Y|up6>__xTfX46MqSV zzxo6iU$m|VtH1(!p1`Ph#nKu@bnIcQR|6KT-pn1?tq)I$s-}O^q031 zgAPr*UBQ*~r7i|*9?8bDEU&2Q*LouM`T9588R%yy#t!u_cnFG-bwp?P8T6+#s=d1e zS&~XjdP7P~%0h{ptg9*w?~N2v+Z7roxeWXd<1Ij zgo+1*eFtv*KuS>n%rghxS(4r8H!Sa}df_VY!7AQqwwE(MEZONlfb*j68s9`$gPV(G zvldAV0#2*(#7=P_t{^W7cTVW6r$T;K=XN}s{#(L+eYi%Ujr5M(g?9oGOIS7&2}_ob zNPlDi*v2`+Q)NE&#g9kr1^j0)gzsufDXA{4GFwvkl?XK5MC>o zz)J;f^tAqA)zK$BQEtV)x7=e*;%is;@N1Rb{k|08a6nm2lU>@&y2hyYa9;lFsQ8hm zT#c}|)O*=$uGttCzYClf$md7oVhP;2PxDN9=;Y!g&M{VBznS+pO#S!nz?wlN6LP?_ zovAyd@&2S)juB2F@&vFA5dCQBBnH<xdP-;Tln&Re|4q+QN-=F0iZ!^mRr_m$>Foa=x-#N_QxSFv@1bZ z%B9l~ipn-lc2)QtPKdtw^V8VD{U*G=Ka6A5Ma%Ya(%yF1tYVgq6JjPA$ulWo?y_x! z%f^C=1_#8ZUy_1Tc#}uxc>QJoS?GgA5F9JO9l-XTF&w@EBke@3)N%0%pkSjF+N~f2 zX5EifciIJ=HroO8Jeck5?AYB4f!e(@>(|XO{-jb{BQO(8z%Et&Did0$h;9onvb(qr zPbhj!E)j-<98AEbva1#5b+-BFcJ)0q6k*$$XRl9oI86JsP-`268?1!#(Mcbq7?RQb zy3xcQ;$k%#tQK*s%f+y%aEh5>q5&uN!{#M1{=_A3-wiiw$?YJ)V$hOq;8Vp(E71Dg4W()x5BDI5~I zo`-o&X{)LZf6|51_7sqpo}H}Vw1*|;|NLIq$k0A!UHi~;p4-8E_6~D?G{^-sbiE zb6Gi}d{%FQ8^a1!y<&r>pAQVaBpV{o%TkCYxv&1|t%p8oC|*SW z)}h$V2P>5@Ri1knX;*sU-agp&JwK*IG8g)G4~F@NW&@(TB*%Ix3Iyjkb5b7=pk%!D zV>*+&IH@sU3(gcd_4*_(+1xeQx0o2%ILF;dUcswtkSz2bxB?HU5oY(6tW=xa4o-?; z@4d=wd{lFlb8Kk`lYno6#&U#-h~w3pvnXs@$iZ*`r{B|B5#D!P&eXE;4-EJEB?3Jz zm(iaaKAZ9l2zM~7Rw~?*j-;tRvjU`1Uxjc*0h=y@s3;WQq)nbFWeKHpq&Fw-H;xZ? zfk%z3i-LlWsALyA8GyUtS>uJqzSWa=J-b8qM85^P#~S!8c11V$%@BincY`k&Q!kW? zZI4qtEE`XpaZm@cx5W-tXP_HLa*3Rd4D)T_0f0JxdogOU_{N6#faEy>v=|~w8i>j0 z3;?G!QtbgaU817?j=n_M@_7)hRrO$0AdE)3`(qt<55hi9D2rk#|CBl!PLoT7V2y)C z_Aj8?i+wOxUq|GB~!dS?Lqto|oEzWXw@rL9wff#VUT9`wai0*+t)w)sq(fK-ny& z+}H|j7S2VbZRePjb-j_c3ury0Bs=f_aC_1sy`PtYd~V2+875-Z_t2nas$E8UG}^tF zqFN!-HP+c@#8LEg3UKj&aH2eD90+VzzQ(eTHm3{W=_h*12-3=j=!S}|f?BLw)1~); z5Brnj%Em}8#xC{cUYcJlYl-bl4dP^}iF)LiG$WxPefiaT`9=+u$NC~MnTYE*yi*IU ztLHS{ooh$Pdn7kOongiF`5YN8 z34rTkq(Sy2i|k(x9eBvyVwV}3eVY5^5kBT@oyXlEqlivqnLIw4hxFt#lO{|vjb7mw zr+ZWjSH;eh-(TS`QF^0Dr}HJQhRsBXEs>01?A`dGxLAgd#`||wr*|My1@pb6s0RFAR;2YBM2y6Q9!DK3P=+J zgqo(^m0TpG3S>*9PDqq`}S8GO6PU{9fRcF0NGmK#2Xz4r9b?+;j-ZDTVa zywPpEQLxim$Ii&iYa^_RRfl45_LKwDS(`)dfM3ueA=3xIt*m*gBlA%mS9BLg~@6a`5i%zbB*lPStIvJ0H?Hr1v;IByX~fz)gzRnn?9R zjf21Cdip#_5DCy_F6GNR8@4N&vR3uf7b->-?q#%><<%C#7AVCf%u;1sgzGms2fR5( zCm5&bA1#q#P3<+2ATjlIVUC$a^sGUW`JuCqbGW=i%D^t=%oC zb&oNjh|Lcx$wwOk<|5@B``vFD zXIiP`aIm3sHocIN`*Bh`Adw&2=_pt!i_AdwZ})Gc7g{6Q{XMOu^zQ>bzP0=ObM@;# zau9PpdJF>(Rm-Q=%E7tHesBF6+2Pa*X-)7x0X11za$Gx4zIwEdLGPt1J~<<)pRr4) z%eu2eSL=FwCo4)>j}BT{FczB}Qx_=y%`3J9vQc+g?qt+N?E{a@TM~o;Qsv-jFE+g; z36-P=RQ``>y5a+f@l4Dte4&nFADtIBig905_WPRPegI~zY#XlX*Ca8nEoX~G(pTHb z=H&Fd*@5V<=nVhn;W{~)>eYn#bsHH?&0A2b4Iy@L$Cm0}8>~y-XM`^_Y%n7bl=swe3pMjS z@(BHUDq0S`qQ;iHMf|7nX=U_LJ@hyj zmysX|>&TIcH!Ci0zUSc8K80DDXv0X9*Pe8aAQuqV@H`T8*2+CCq#BeTJ>73ex(!`N za7pujc-W&Gy7n>JIsS$4_=#jv>^-T5(&J(}LHG6J*PMyAZw*sqf&va`oPGk%Y9nCgPE9^+1qfn!}zw5Hr1J$^P(ujx{XihkLw^ zMiT=YPB$-?U|&ycJaCkKM6uB0wWdv9g5Jg~E4kFZbCSbqXb1H5c{P*hsqODe?9y^GvCJ*2wE21KoG3NA2SlCU6`qQbRc& z;P|sYbYkYpn_g6p-K*pu?ZA)72k%{28Xlh%!GUiMTGRBFtegKjrJEF=pX6qOKHC|g zgWIRuW1#c%d%n%sk)WaXH;B<0zUhngbJ#{!q)!bB7eVo*hs~Em8&2;NJF6_;Fn?L& zQJi;|`d>L@AJ!%37E6tGeqzcfJCR3s?MvV%vdL>BK^GZUk_(;CQfOnPqqQ=lILtjb z5nzL^?9tV84qB=5LSK~r+OhTXzCu_Ae7BJ!i-)59w>I>zoA3D6*i-5xQ%{0$O;O}T zc!LsRKG;7{@4sRb?6Nmu*U+165up;knfCUX+ZnziQ)igHO(wnNvW01Gk23bhEmj45 z)D4{Z9$~W1ZP~Hfdq}fKXE2kFw5%xAIc;e|dn#`Yk2u>nrTdwJSNtIF9zc0R!$I}p z;@W4{iKJcoC4ouz!7k}Dx`w^TOGt)s$YF`q;Fe)`a^ofEjL#tBe&ZeQ0w_I^G;CET zeWmn50#W5k@9kHEW^uXh2%tcXv{aMvoNl&a6GUu0DCF88qO>-g=kIk#QvbTsZu9pd z^6fkAO3rIjN{N5a2w2uMnl&=5MSK$<2{32%l@&L4dV};8*Qjj+DOt zq=sQqx-;yav1t#uFncjp@S1wNmEOqXx34nZx^8&ihP2O&u0MR7htlB~Xws9EFegO( zpQkX8XjjjbpF`I>9+NxE8`CF$uxdC!q=B6F4t2%rYx(IHsMM3y-fYr6s(z;OJ*|7JMCr}`bh-HXh;MHET#-0^VsMWYEDyNK(RZ6;e?T+Ih z3tt$>+0I)i24yEk#J}VErKM@(Q1+4G=2IuHNJJmXi_w{ANK zzi%BlS^P?T^GC>6z#lSu@1*_ehJKF0HiO>X0)}>*>N@D4FQb_&_k;D1v4IyNqk(54 zWWss>al!ko=Z{MAXIs#)}{93uU{m|0e1us z+IatNv7diG%(n7$*su9?f0`s9*sf2D7XOi>vQ?ee$TboV+(4K?iX+?z)!JBjMIOBJ zNE<;R0t}0GV$RVXaXR`@k1;F$S*)5wI{qCeMb0>Jy54ig-0dMShCwy@8 z`D4HfED0V&RG6`7RzrP0WUo*&^d4IzYlUa#M zKOvj47ZH`Fc;FWa*2{(4MI&WLif_epYITQv0LbT%k>@S#dJ?-S!+ z+=e&#`c4F0+NVysFgQuh2>(zm_;UNn-gw~m=;ucaF~CjD=&neQ3qVTUyZnUTRF)CT z97TRH?T`y$D=TWCnc-qPA2|FNhmEm{Cd{?gp3b~A-TW4;F!<0{?b6;&meCo$J?G2l z-@N@_i|d5_v{r6L1}$=r5@M{CPv6(0zm_@_w`byr;gi?0g)>>VGa>cQ(#{S3W&`bh zfV8H@)nF|pB9+x$MUju)nB%V#jb(&8PVVa-d~9Q`7&@!fM&0uJ0d8~UZS6sR6_=HJ z4*DK|@sPBA^m-1)x$?n+cjQN5N-DdOPLRgK^A6X>Z)%P^)+vYENN;@&PhFNPFK}rJ z1B+|AI-Ls6RKf)eFn@fE!pv88Pda>mw8=f$pC+@zO|8!i;FOhv@KKz#t7D$B4|~^= z%fs=;W&s}^og{^FJ^5mh-6@lb6mzB8L)kK><%yeAl<92&-83>lDNDA)eX)XBq40U{ z*93%~wRfwz3te*BgM@c$V`9s8TAccAd(%CEqP#1{So#&8j0AmzmyEDb2hhIM>4!1C z)QZapyd~9ec_&#JW1d*JsC27YGMG|eirSj>4_|i&cOak4r|)1KL$Zmn*Z|Ke?~`+t zM3&c<-yXXwD;_uaIA9>c=^(P|2V$dvSM^r9{@ALVU7PMAX}$A7ZBN`8>NpK&MQUaM zMdkDH)24vOOtx_*wR_#bS6pOA4#5PAjbqwYVy+|b-X<4>31$U-e6NE`&ajlB-7UTo zy|WYt&u=!HD3`C){*Slh65{VGWi#okIcuz&i9sdYSw0`)<1axk~< zD7l0>@oNzGUCC)bPp#|)1I|#wjx861KQ)mQhGGNU3qmXdDux0Q3*z^*$9p%$dso#8 z`s_7{nQL`Z@gfIZnJBuBD6~Pp-xL;q;rf+^m#`M^y&8Hg0}Hi1zIzQtYI+is`Q!9X z*+K+AdRAt|6MzoX)+5}R?jrH=Qaat6K00EZ!)<6Y%dIY=z=V|=h!q>TcQQSq zyP&I8+zNP9%-koW^Lg1tQ$6i?hm*m(f<#;TLd1rj{Cr}*$!0o}y#qEkIJuxHxFv8t z{$!bdj5UH$M~^FC_;4A)X!m)PL!ME0SFZlnF&O^?fuF2(pNpulnWgwr@fSaiZgQZw zV=Y;VSYI>TA4ETsl~914Y8cG1wh#%9!p#Lm^OIh3r&653U+2Ve>&)6W?6PQabF zt76|&a@&-0s~q_~Opyhxgu&YOD!)Nqx=35^a}?9kF`B> zYxlLqr4~hJ*OWH-kO07bYfm8Vva8c5k`dU_7D4mIO=`ehrJ=!vo*i*7HQBXf8xD%3 zElk*$D#RXml9`jALTSvFNBEuwYYVr1cMFfCol(xluRZurZD>EkuY_#a1*^ghOru6+Vw5$Vf9I{gDvxI=7+L=_fIzm-F`+ zb{e6De{H1i>)Sn8^nf985J;KlqjzLE-JC^rFv5K+k>GJw;GD-`dHcR(O&3O}^*TKq z%xlvB_*e8-|Gxh4Hlx~W^C>6&5LEgwT}&(AI5?_z@xkmdAT38i&~XY+YZrXG2+o2> zEW3CC)o^W4**f3E6IVA!({EL7d^m&LW*E(52IwwRmmPA!Lq@pxe9ZXe_U@Fti5{^l zK!Oc?9lCt6LzRB?n7l#n1=k{Af}9;TJfw-dO5V0P!){8o(Me=o>vv!Q3@1U;z*R!I zGlXI@y%w9uz}KJxPiBWSeDB=YZr4l^O`oCn$}EIUk+{wY5rP=)uYYxGb02WX@xhHY z-HZNBl#N-_B(;><-kk;u)&i*64bg&xXdW?5WeaSB-KJ}c|=r|SF&!@GjIOai21K>Tyd7X*E5KV zkS^zsyN(E$i+BODJo~{~d0Vf#O(1Zarq{qLkCJtDGoourtk~I`p6Peq$(nhQVpNyO z9TJ2SCjeV2j9gi8(Ni4$tTw?V5s@~hUQJkL)7V^SJ`?f8IrR?F%A&0-MuAsRR&{WY zO3tM{Ns6h5HV6Gbwto=J7een>yA0eSw0yFc+c-v^>TJ;Kmh73M{8t_@9S`3oj=sFQ z<4sX!SXe!!rvdY!^K@45dOK=)xi3VUGGD3DcP;o;0j63HTW=OlYNolYw@I9~QX31g zVNAz!o}qy!%fC;-)ij9(x!oQiw1U&7U^{scwEXtW9ka=y&ggrrka0b~3xv#YNO}PBFq+L;y;zCTb%X@pkZ8dLrHa`A$*>(BHOSc}V-?rDk9IDh z$62c{%`gi!xEFKmtbGG!b0tmFo^yJ(SzgO|$T}+Cx7w6E(P|s?RC4#%L)pgLJ$-=2B(Xb`@XM@~MI#-Jb-AP4Yx z5PGp;actP-5tKolgR@yANA%H{Q<*qQZnU`RTuEiH=KS{u7Te2HG?kxN!F~`6Qe7?Q zAmLe5Y&fY<42;$3RvFAB{)po7)L47^d@?7B*G$McFkqccYtG=&^SPdW?^}Fw5nt`% zQl%KiJwYeiQiJ{o@f9foT%^8+yNlPeDRmYW6}`U}@Yr8vpJGe^zaPd* zFOu-XN}ZS#h&=33U?h0$80T77U5IGt=LxU;eQJk%&p13v$}e_D96qw>TGo6*zJ+gPmu1QTyddhxwKz!q#38fli^~vcZejyh>FDzqBaK<7w{8EE^XR zva#S&cPb$ps=LtGxd`aS#nN>h-55GW0@AV)gRyiWuX3GWi8+B*_mNIyoib_+RHWwu zxwU8~r?*EuoJkJkuy_mcR_e0QnZ7kph&f||{%@;aciSIAp0Wd!)YRaUn{YLs{3X{D z*j#`59`bo`Z3W=+AL~|h^v<2>hq4?;A`_a>KyFyl>Bc2BXM>lwk62bL6N^SU#}+CW zr|Wp3Yj^=-`JhwADyasX4rSAq1=*v19IJW`o9i;})p}vofW3~uR=XXw33}x7^%GB^ z(}QL8v!|X$Nf*SfY*s~5Vw1@k@ z$JT3{@!1=7ls|6Ed?u*J+zhf%tl_CUXGbVBO{1}Yw7HWlckN5yS*kJx1bMCH!XdNA(A+?y5&b5 zgNfxu$5WXOF2f=1$xurh3ze%Q*I7ZJEPRXm+0XB4+}iPPKIP7YyThe30zX(%(#$0w zYd7kr21YSb3ED3UXED;Hb?bMsRJ&&nZMC^n+%Dv(45W#QV1Og>;I*1G-nc4zXj2fz zwVdwg;ph7 zuZ4N#k(n;IzWlK6wp4~=c@sNKbFKu0CVFHhs}A4H*Vc2hR4$$Z96hm&J*VPTH`V+? z(D~-X>Bw}ydLlZ}N;eru7m_DN0Y?)cq0!!9QKWO)>Wr|2yD%(%HoTBbnrs7R(NHxV zR+o}j+dj1mN-GPam!Wz7?a`9tj~x_L%kvbMu(y5CmPiWC!Cj_)yxOry#Gh&BVSzV% zSd<;6nGxYWd<*mah9Ri6w(qi8q5r7{^Xvrjp<&VZmKgZqI9vmnbs%A_vftMEI8?83 zZPLt(wbGnr_Xf%METudDRG^d`LZ39L`Kr3Isf1!Q3R+>N zNq*#xp*1&L6jq&2)Rx8*Mu4SoDmY_B4Xea}kMd!|S+_B(~$BbGi!qX(N;`vdWDYEyN}ZB$GV-b!18MNY7L?OQ#3GMZlA z!VW7l>bp1n>h`RU!X5qxL0#=HBGpwCnF;0+n;XP`24!p7?#89dkMf!{4SUyWpf9w3 zHhdQX!xgsma!0wf-)6#mKb1bpGvdDdXh*ad*P&=kDvTd|<~o;fB31&`OAUFriP4};ze`nRyXu%U!*5@jYop)fx|ILX!_ z;4zC5MdHTm8~Q5!(~Z?JAWPcVEthu`c5O+8I2m6s@c{ z4J2o)_^xHG0B#6RwA5LNMSR-bS!CxLDIZzFMQD1I3cy;m{8Lj}($Z)2Xb8Z*S>!7%X`q;$z~ zmDf&MX`G4;XkH!hCib~zr%h+N#}@|8D-PcbEm3HqUM`ye_A#jmjzbegdKVi=)ga9k zs!~Ir+h7*hoUx+!9wb1*m9fG#mvRj6UFW~ip9RJaYZTfV_KLn^L6@3|V71PVgJ8As zT998Pz0R^Guh+>5wshS$Ol8JVo=9F*Y6yvyv>=u22wbm7fIBL8;0rB_L+73 zN{A?!`RuJpLblhaZ?$>&LM1eHfh4uZ2-pxOATSD$?Cr0RTjWP(nnY)PT-eui#l2RAq@w?p&fH{%jwL0t}aU&dr=i3sO=vUqpY^8_0!LTfH zPtZNueWr~Xx^q++W0^S0Q+e(7D-AL2yZR7f8!tzpTahsz`q-gT^NC^O>4)$cP{|pc z>#eQKboGZv{3818W9(TDOdu_FJ{3;;x-{YS;<1pWe-q1g#EUSF2C`ODSI0e2$}?Zw zjq9&AF-&`Byz!!Om3r=eMj`$F@Fw)q1pH^KT739ZYi;D!9a#Z;4N97QY&*G;8ISY$ zdL$yg+|bw?o4>`42M~fw*0xKvOi(Nlm|wFs?&@rPte4qB(`$CZVNbDBG8a6J&PGGC=4yNAN zJcBq7>M`@k4hVL6E4KAEo)-M5RiSasjYo!Iu5wj3V`W{$&s;j|u8$^-xyM-3^{CHA z0fLJy+AGw?14_E5u7St>i<)R-I^`!w(AL(*$)N8O(Lbg1+^(+SIP3)G)~*$`v82Dm zBRmPwf}CdhK;W#G$7`M7(c=Q6%MB7S8+bR@9LWXQ+uhY5N-69k|GYvoVb z8XoXl2>fYwfcQD*lA(r`fla}R-qjP-s1EJ^j zX;~|S-t__qhDK7wClCOl@EHf<&gueZS(zC$p- zs`hEG8lBaik6w+{sJ=+_bVj6J^ku#=;=|0NTkU2Qu_+^tMIqWt|(<2 zTqF97?d$@MlhcS+wiWSv&koc0ynykT4IC)fw0+SG?1)2S{7as&*fdp(0E9uMrfPhZ zI`o4gBDU`PDgHP@NAPMbUw;#grB)7$qhZ}*x@~9z)#E6jI*6_WUM~KgdJYHTMfX3Q zN*FNY)fu}rTiUp6>f93~|LN^ovzKkBK#FTK09(r`0S9HAHp)E)B#K!|T!3UoH6lCG z9_5YCjjuJmU$NCQZCI?fORbDlXq=f0{P?(qxR>EbwBjq1ul=#ji_#5wUgOn4W4tRa zdubQlflA;$ia!)@$g6usV&A2b&-*ItrZX$e-i!@(j0ca)F4Wnz6oP8QpC7Uu?-1pP zb%^kHNGU@|9pC!RICn$q7we&~fg|au=*)`UK-Cdf*R_mG*)-vgkv^ydc{(8z1aX-V zQ%i#-cdCu|1w1k#KUKxEID!4H^`iaX*D@Db;=`uBNKjk@{MIOIWg?PV(LuoP;?cg& z3H)*+YWdsrr2Y2X8BdPg^saxMbF8Hv5L_b)K#Yh-x$Sp)-P&i4NkFuz815jLYkO!O zS!MBy_Mm8G{7b3o7NqIhq4aSU-^7(2b^%!Im!1zXSMvy*^*jX4rJ<-Gh3NpH7o@Tj z{WS@FvabHsrh7+_ooE0?&Jmam`B8 z$&o;W#}ugKaV3n}+tJ_ymjGs$Lms5BT8pp6IAXpX?&CI(b zJyzF5rhfjcS&@Cez-XcSRlAb?vHMm0jQdSx9Cq~Zm9z){u)lQp!2+Ab+vP}zX;ukC z4(C)E9rF*shL`K0gGc=^Q%Hk+EgNOz`eHa~O8)DhE7X0xUjxX&_o?yKJt29* z{!sxhhxCF<(BmAB_U#Y{-CT66)I@eS)|Y?tRpB4^PH+Zsi$-F>BpnK@KawH#e0vqJ z>5xiFNRAa^uIDw@-(4pbb_T(cW3+r)oIN7lBY;8qd{v_{&Am$sY!7?ofVGV8OqGxZG`Vx;F~qxqDg9` z{Ddbz9#u5i_st``M;#yQg=?aH>Dc*MYWmw1o0YE<^T%6Sl(QnIy+VWTM6@7ZAzjnK z*a&m|2z%?k*%q4K^XlPgY2y9ut8-(z8(V@#{}TTA>sq!i;P<|H5kDVH=yoLHkMNiF za)$T)2dCY@LXG8?#`Y)>phX>gkNKV=2OE8x*Hr$7{c;WQixi2Xy6H6EB>&4}S0fjy z2D>J1HlEud$7g`lh>9ESZoozAR)6wiB#JGsjsSSrS$`W{e3$D~t73I{M`$9SW&12f zT}fdvJ7VTW6k0c&^veJ9LC19Wb~_)lgaxEDn^TutVG+{dI{zH?K2{`|IVq%PW@D~v zj;nSS>1pzFzG8a{!sHuv{38u7{Uh8#)*IrqX=oM zqiWTi;F7>ty2euL_T}LW6EToedeFc%%#rO}KSK|Vwn&AH+$okQxM3KrQabgyAd@nn8kE%DUra1apMDuFC>wHyc z=NuHoGmUQ?8af~j1U+b8ndda>+58eb=hY97w&B-cAx;e1+_K<0veE`Pt$bs$gydXN zTAWW2)t){(p;J?K8Bg*8jv15;`KU(cCybM7bx+6{p;~_AHQuAtx+i=Ch5z^%P2jaR z7Jwlw`h&-0t7+w#c90HwjR$9TtZ_Hx5kBE!s&jBCn|>gOx%_a?wC`N+^s^3$41Xs9 z94J6FAX9O@#=G214Hsd?rVFa+jWSIf3kp&kPL{uEUL|oZ0CP*ErrY-$?))&GL+_y@ zfr)X;aUWblSNbEUZ7u8|kV8Pbf6yy4gWg^?2Yv8gTZA0rZK$UGv~psW&|@PP4Kxro z8z;m76;M{`y`}u}4?o#&6`ZgqKb6Ofa;SvRg6n*+AYLQ)_Wtggu@uy{IFT2hrTkJ3 z9Pucbgqbi|K;a@&8W2ZqJPB&>g=TI?*FLlM8P!>SXZ&=L`g&__zT4K2Ulc; zwy?J^4~AIyC?#yEAsd@@+rp5hoo*Q+C5tCN!H;f1s@+77>zD0(fQ&DuT+Bisp#ek*!zI7ib!o+ zooq0+oMOAIGGH$s-48-3fpv?O)(@$L?n(e~YbE*mnNRewu0=4s1vn%$M2PS^cEBTM ziK6O4E3gd0=abz4E)JBEd4H+6w0h+1!WxAeSLo}|aYne`w6~TL>@NS8nCh8*+BdCv zjHL8q^iNIeXYOINNw6gW+>k}=balCl$epR^2p-D;JkY^JMxbSPw0gYc!|$D^8SW5E zbz^;D@UDdGOJDL6%z%OKGU8PPCnPr)WkCimcx$|~4qRKZqR<lio)II;B~N3$6V z83ahgolDxVwwS~ zTg)p?D)wyIC`H7WcDyGej1qH(!blJ7jU0VC;~|0s7IHY1FD-if`A5UcCBixkJHpSU zz!pe&QP6;k92^KIobaaMPs5TM#tC;bmBw_o#L>hPt*OI=Y%9isp5*9f+DMX(`77~| zrH_}Mf zy4sqou1ZR@a6o10+TCNe1*+Myn(vbH0s_xRSebkg)8n07AwRG!af{=98ax_AXnfdE z>y>JaFy?ru@&D`Sc&JprgkOG9S3=Inq?Qp;!tcA+2rtp!F1XHJ0;&V8E zN2f3$;;(sW`0H$)u-GLuw-W%@r`MDv#F+Hu+m&ZaQNyoP2|J5*RKpbq(ki7gwA@E; zlj{{PluHI$o(YC5Sa}99rgbE!voDd+6<;yC?ldG zNO!qr68Dp=0+)4oY>k*TdMbkcyt-O@r01EmXhw70nA$t+Etb@GBguz&CDdZ=;Q=7X z@RD=d&$4P|z_GANSL@-n;m>kQ-{i`FULCB#hB*S2)a20s1yGee3*m?*!BBr0$9||yszwO`5#QPGlTYjTY+<{NMnm5n()#bn>8~JN7&k%` zhP)P70Xqdz!FqZ{WXU@4`sM$3P;xUEeBEFVf39by>_|v{!4PZwR>2$VK!en8jDLsy z{&|P>6QCf=UZc(6_rG@3XL`9~17v{MJ+gerfMjfT&>|}+Y4atU9Ec4;P&Ty;5f7|t+sIf3W)0^J@zZJW6n=eqg z$G7;N$f^J9p9Yse|0U_~Up%Nja46qedC>r<{2{uP3@dG+)OtEIF*^vvRMlm(TR)1`;$A z8_K~`$v<+vmY&}@xG>~M3?aGbpno=n7kV+wvkQqzbWhi#{9^Jir2of&d}bxN?SnKN zD%CvzPFEi9v+08*4}G@Fy+l*DZE9j+O^5}9I15U*2HrF3(n{Ir-a`S}?wZoNYn~Uv z$o*h+EXG3R9ON(Ur6Dt~ik%)J{*PrNupx{nWkwgK@NMCY$~T%IEWQREBK2=8oni0D zjwF`$d3?iqJ@G0Mh5FBCnF@tavUo8J2_8!jN|p6yyZFlK@#c5?s?SP4fv$UnO(cWw zol(z){1r>GM!d0GJ1?m{Sc2JQRIK@ICFb956f5_D3m&2&&n&oBvR}-u75{eJp0&DU zQ~uhB01rwcy}{z&N(zKz*iN6 zI4_XKQ@_bY*c^b$yUpL|8wh+8@+?Rx)h=RYdj%NmLR==X#W0Uf6hcTTu6Ce6GG+mCuxh`&xCj%Z&%Nv*X`D$f^C( zKN&U4Sm3?aB7c*AeoZmEj(si-ee*m1z~IR9G5idq2%rLCqz=>oa;b%svAl4C_g`(kE`OSO&5iz$iG zds)Z+b|U=8HuOg1`CG2#*{{dEma#hMKpU$UVJn$Fh*PC~9{@R5#OW=*tHX~)Fx2`RAAJRuljkwy^q*Hs#6dP>bgjL8G{nbAM9WG z$_Hs;u7~IEGi*rE`_y}lVW~569r3q>m*{!`lIB&WL3rc+49TdSJtN&LGa{6g==u|o zl|()OgD}ZIr~uz0;Y>hN&J zXA1-vR|#E5iGd5IQXN&rK-44j__2c+spY(E9sKD@os*b_XQ7r!kJYO|A7VGWpu86KRb^+zqKy_$J*T7=WoJ!ihxbsk_BA^{v6>oL`Dj9mTn%0FZ2ra<{S#^hH@bW>A-b9+fIN5Ep=hjLH+$gtAky0DXeG5TtfN z#CLhTuh?$zu}g)u&*HFg)>g#jPTOpZ*o~R*H#R^!vkmZsvra4Zdh9Qs`h-^^8wfQm z@$VT%PLqL3zeSxJB}t)edY}t+i}l_GK(tw9Wl<-1&zNzQ{%OGpF)&jBBLH1DTPF`> zY($cetc-Gg1pegPjybwVp%1~RIJp|D)MKH?7_OFb77GWkFtZI322ioHLQmZ7Cg`Xp ze{;&fZ zI+S4|N78XI=%w^?Mi6G15qU!?ojGrzUG zHvDT5p5lD_?Il~eY9f5Ovl6|lW1lI;Le2M<9HT47Kkj>t7O7T8EMVxI*XRN?yD-DA zo?2XKX(d;NFkL4HYsK#W3#G)M=8HQ1Jy*o}AD9>u4_~p;38P*x5mP)PPb*cylyaI? zqhWmC#DYG51PXLIjt)B_MCy>e9hpf__KLk!9l6U=1}bY(8D z;qdLO;{aGsD#AH28PpMg7kw^TLfsZeD{Z8O>@spc%c8$)DNMA|JSk6|+UY3V1q2BS z8El4r{j9>^PXgyhxJZ#V2V$6-oJYRVY-EgUWEJ9)Kxp@ zM3?Y|6~yXDagl)S+U?o?N{_IG6*Y9w;CR}Ay?ZhM3m>M;;ja@px=Yu2?f_J@mu1b< z^@w@2SpgIm;kbd6p*3+XN~H*(2qyq~rLvb(Tc)gP04+8tx9x>Maq}fEIMRCp>1)T9=*@*MgY9!l6^bNH-*X~`DIS0xmWYUBbXBjP)j>!Rt;k2 zlj}vZ(^cmefpYSR1=8>cO&0N8%QU+bF}YmVUBP-(a6H25H|=_3{d(|hW5vlyzK)N1 zbhKjGo5PNN4d?hYP`js6zFM@m^t+o7Wc{Ja+rr(3fqGJ@AGW}}Fu3le$9HHZy zDBWuQJk!7)5R45~8^1RPML)sOg8|x(Yy-1_-Nvii#mRQ{>3xieQ)6qj$K^CvG1bt9 zyn5-2%?vC8AbdYD@`A`296qA#3$&bEY`9H5EDpTH_JaFHepK%nU(h!*IwW>p0u5JM1dgF z?)0>zfO9`yp2{VGz#WQ|I6tJm^g{}BZu@Gt%Bc@2$oh6uvDv zY)8yS8DioCE^*5YpE2_GXQ2UPy zcFG-5V6-IzC}-31t5;-yiit$HwmdWWF&bFRo*UKxgY#6RKL)s;4yB#3&Z~Z^v}JL` zE9Kg4(^MvV8PR4{b9lk8XL0M0TzO+AkLGn8g2kg%$hFv_ptJs^jW{~zo0h_uuDJ)T z*F%D3*4O9!U+;l}E{^!7!og(@z9k-y3IRy|PLKHY6S!NObpen!A1^ilG>P>Ey)*K) ztr1?u^3b$M5eYJFJFmuBi}4~Whg-=4l%q9kEC7a1cL}3UAv&^I8^mMK8F9*ujf&D^ z6eysSI)4ZExT_$`%RX})V9a1FIE@;FV~+kSZPet)g62`tdx>3PM= z-$bf#Qsnd1Q80}9>(Ov9_M@@#(a2)IGL?br;9vnM_4!@_n0$>7Dm3CaB z@2%2rtY4A{J@dgD@jhg(R1H(6#X_6~qL|F*-cyVgU{J-8n*3X$&}z*UfiS$Pd#+oA zXTZ;#C}d%{d})#d0ibaoXVyc5mK3&qUULiw)s$SneV>Y`Wz zK;BeYsH5EnW@z6e!`?-+*D-|8YJ=hpq@>%gLJO6Dw6OtC;SJhX zF!rr`XkV&IV`{s@MN#wmr^^wm$P! z*Rek9&GZDSVR3cur$}t0Q(RKfizi!S^je6Znbwa|r_9y7(a+m;fDBcr|6J0dkxtpmV{zipHCn`;&(=IKZ!oGWa?`a{3AU_R0muYk@ zel_#+%3jjtF+u>G)^}L>)=TM_Wq(|AesA`{;pe>T2eAnVN7hiL9tXG?J4xn6%vHmx zv|}*gs@+vLFTJyqj-{TPCEU2iqsaF0c_zC%#xgA%*TQ)&5LuhvCN|a`$xnwa6%iqc zpH{_O{e7TH)5<3Z;$X9c<>zIPbq|b+09oCZ4p29DJ(w2;JBG!K5(boE0>`8p^Lls z?w#xj?ip)mf~P{6E%gD8Fxjw0rqMkSO&IvgyDMe-b@!&vM4U-}(PO&Ex6MGGn|tdK z$sLdG@8AFTmj^=^Tc1kui680uQn~+Qwcn_bd&k~AQ)hW*-;17i>U7c3${4^-3+9-b zU-Hg-qq+K~?odos%?EKijvl+PS;$Sc>bO!v2UG% z7N8O_9*L*(W+V$t1wG0g%mQ@VPQnbr)6WD5&l$odgb}iy>a*Yp-P#{=F0E(oMm^=p z6<mR^LU}9{nrGQOZ>EtropJ@C{h2N4YpBSs|EEzcb*o!>9v)k?fRFh zH@-|tZk5W@Ki_}?Ze&b!#s}oYP40r_>A%s))Ipb9fvZoJI8+@Cx1MxU^hPTSUY5`c zedi?$V`z6+OdAIO(DmoN#BW=4{4!9;S$oqNSmet92(7lDhsP$C| zAK2m0MYxjk_+Un3QTOX4S;P8dlWLiDCVh`XgP&9oY2Xqjl3k>+XZY5bAT9LsgU_Kd zJ9qz7dTe%HBTj_WEtpYc3EwyIV2{6jIT`E3etPbX)g}ID>JJgFy477boTlgJyUNzT zHCTfM73l5!ljjs`YiOH+oZ$}-j^gw_)M;t2L;`%WQWOMTaM)@%XZwibB2ij6& zsZhStFoW-Hr_HpvxUd5E4>!2MVzr{l61r{jJ@l2Pd?K8 zXYGMEN&C5ktd(^=GHgZJn? zUhB5*>h7xgUe$fT{vc;0_uPHpln*0U<9urCdb`gSn9k$%1d;shU(6O3MPy6-dADk- z*!Z9>jdjT?dP#Jw^&Vw>ie^TQR&EUtKIfQViCA| zV!*L)IR<^tBskw)!twekrp$sNuhGdff~7Nu`b*BQ=+g~!2EI^y)hErx3k{QJ%M6wnxOTIB?1IhAsm=6h3x zXMrt(W*N6D{7f4IafS7s;08USU(n;$w)Q#MeRAXbQ+PK{;uPX%7pbDXA=p`Y;Rh4h z;_}8-^@M#%2%(g3^f2ik+siZu^Gk@4Vf%7Vk~%3Cr^;1AVHGr|7k7$37xuhG)8B2m z4Q;FzHCJNwbnhNFq%j%q88i2!Px$9F`9DoV8V2G=8RG8oa1-UJ)fj(w(zZ+nFeMhS=0(c<9ef~zVF zkT&YZMNe=$Rk{c-^>+b=MwIuuQg>^4y{;qFA4ZeEArs0LDm@!D zgH2(PURh&_>yT@6Ch+Bz|K79#_iU+ z-nFJ8vIM6vU6M4{?X+{`Vg4J|Y-%Wpd7Ltmn3hrfY`6D3ekKywi<#c@Gn*woYUDi`$q z*(^38nW<*|PU7LxB>;2J(jE=HI27|y?Z(n1jH-un3k&7B# z0w?SyGuhD}&f9t8G2^D(qpB!%Xgh3llnE_0vCV<_N+6VuzSirHzca9G^Pxg#zsl|_ zCD0$QM7 zI(s4Sp=j-u-F^u*+{V6l=RSUc)y4NdBI0w9clqsZ@&sm=M8vJOuMlyniRq+~z}Qew z5B zKX~Zzx%dBUCIw-9;zvlsgHcqq+5aTU_E$sChN6C`IyI8nbta47d&lUH!K5vf#9jkV z5S#ABWdiIrv^3){9)5ghv?l-4H~7c53r?ajlDxq|WA7pj5nY-QKT64Ha~6MkC8XzC z7+Q^w0U=O&IF-NGKGPwQUxGj%iYZHu5}qQU_NOjW zkyAje+&4CX{hhED9z_t?%{?}U_z%quI4Y_Xx}q4yb4BRQ>>^0jTfPa|k;k;^j|ci1 z1fjLpaBv=ZeIv`J>Y=6{oU~9Axsp<^Q`ZAEG?^8b)fqZ{#1R~VDgvh$y9_Ld=Wo09 zUDGPyBTgp!Puf;~HiLj;$_-t#|CcZH|Gt;?BkI827Qm&@3Cz3Posz zLQTNm4%@#j2Ud`q*zZlF-;o<}FKy3+T5r%m2A`+m7vKD6 z7yLb95CmR5M+(`WKiNrTkiXBB*nej@t-tmh-H-%Tvh-px;v>rn5i*7SWLYuv2vo)B}b>9eDCM zjac@)kdDRtemAaC7_Eva8pjZO7LjCV!8)T?h;FqEJ9^;s3gd(+ zh#$_A`K}1ZMW+iUVl#C#IGVyH?~7z=si$8M@kR)2^k z{@pGe)UVJ$r6kdK|2>cX$L)h;VMH;)Wpk-kNMQc2KYjw9sSf(c@poJQzsTj^Py0tq zgPMX6M2VXsrPK!clbQZ&_!I-rtPPQ{{Nqjj{!k)zG*mDvdt9D-=pS1D-|zAHbr7W~ zX4K-}*ZuG4>L2eYXih=|F*c``y~X;Y`TyM_GB8hzb%FacWw;?hK@dgB|Eoz*gB)Op zf~XT38L1)0B{Y_|M8v4o2r!;+@?av6o08aV<%jM}`%6)SaG=EIL!#VB$ep5#P=nN9 z!fG%{uX{?$0W-LCMrK%HV3! z-cW3Lj&hwg_bjJZ8M|77sJZe<68>Yx8dcGi1w=%LRMZ87JO(ttohoa;Y&AoCfd>|3 z(jSMF!sPJvPDjTbhnNB;Bc}gaaQ613Gb1$(UGd@Ol=O6XZ0FOA)nZQV0sB~QXu{sF zCAU~M>95o`vYvNYhAacgY<3s@1)Cp*Uu$|je0#_JBR_{;j=goK)C<+);UdX4SNiLO zovmFDT2PoL9rLmtgK%f3&hAT=fYV0b)_N5C{_yfw;%vG(os!0JJ+_7<#SvN%;$i=C zF7@HWvZ#T)E6@z`Y6A(Pd_KV6AkpfA9pavRHQ0^*-UPsi=~fVUc!b`aTrt`mh%>vm zJvYMQM8u*M1kQHN@qhh1vpb3k4F%|&X&$;?AGI6K# z3gh>6&%o4y$?e&v$vg+?yEZiusqaLuVBz4#n=acY7-&8#1zwdFg3f>FdFmZDy){{g zU+I2m;l<&CL0#ECdsK<#lGQK9f^2hjbsa2MUn_HJP8Y*U&$sDh)7QmK+N5NGaAd9SofgBnCmqRMYQZi~_kbG^O|x3IaLAtEg5qf6@&TV7 zecvMbqa=yw$MD}*7@z64M+ygPz}-zvmydJRJDXgV%pZ83u-QzMBNySWcbM3kv4-Z~YHd%ZDwH4rYrsEIXU;ZMKj%O8R zzS__B^W{Iyi>|J&rq%COR~XxEY#2=^(f?&oh)^0%?7AV(TJ$bD&KfnS@UZ_OhO{Un z5Zu-5bnI-A^ifjZ6*#W`Ek3XBI|?b$jaJ?pE8AXKsQC3@>W{I|3Bc@;WvQzd3YzPY zoB;YBC6-3TaUhBhPpi!~yiB`UD2drHbBr`l(Fe+fYii|rb|7@a#m>FZxsv2!`%q)P z%>X5iO3SzE%daopDczpME(BfaiZ|*0M6PRHWVrn1sARS_Ydz}qhf*~046Dz9){L%0 zFw~!#U>-*yCW+edOm@hw*2iBH)8hh35;~GJMyNFAzlTz9>OLN|8xKbqY#vO1W6qJ( zV^XTmXv>AnDdGJ(DP3?Xc>c?2f4uPno4G>Yi5=KwqgbW9-(l4HNJ$I{55E*UaQjhR z^nwdK=Jc)hA>-*j%<*_mzSi{fMw{hBPoe$ulgQa+k|34hM-;QFrV-Frx2hTVfNmpLLOJiOZK}LhU!dh33;E=;weKq zPfnsXE>=551`?T|QM^&JVuQcr%UMv0++7gQW6`$OAI^e~m)r7>+i0W%kqHsOBc~`e z)EMnt*P6eNeulQvLI7J|K27s(2217_KvRlHDE9m*1SU&m@Vm>f{i!AcTh zTI+Fv=;{I2cCeP+2LKmBZ%$A$*Ly=1qq<<{&a`gHFYI;~Mj2AM>>~E3ia~_SUaR~_ z9ur>8mB_KAZl9Ifzwyg09Z!`hr5&xf2@(px*|rB?08Q9;jZLK(#1S-^@cBLUNanF9 zVV(mBo`6b;e8&?5vRiw=VbTf7y|^0I@MZe~6tV9Wv;Khf$d+X!nUDG0`h2qHCu@)Z z91@;3Q*>P5b;79dWBd)~KvdTapt9uBsFW*RnX5Hus}@b*2w1#d7)mm$1sneUbO%?H z1>_?}f2Fy}LJFb@!vH}ja%(O*N1uPr}_Tz+6PRn7v=M_2o8_MO7HKv(H%zV;xN zQ&PW3u@TBpA|s-@m|%j%s9!XW#!=n&@TbtOZEauC1SByqX&bJSNq#bvW zb}947A>EXnAupv`6(^v)QS~$p8Vi)q(9_m3AY`OG&2||`jDL|V^juO`&UbW}Z!{w; z?>C((`9&b6ZXw7p5{3DO=5D$vF@ps#Qq^xb?yJAva0C0< zW+DOFp)Q$4UX%*U51Z`K6W+D^!7*Odqg*|u0vZh+RctE1@Gq{Gc(jez7Vtl8pkvkT zBArHzWiOe`lzF&Yo$3edO&xGt{9f5fB|lScQa(l9%)cATAps$R!%gEv9+osQdL!{X z@BIwIo34%x?e>BxO$5Iv}z`JnjikRK>^1X3}@pbn%w`e6Oish2d zFAa8m>=zp-D-$_XZN#*Ada#w&W6W5tqYRxP@E-Gz@F<0sk;8?WjpKQqZ}Hf+J&@UD zKbLCDv*gKt)kFBa0q8YZNfQ)GYr-pu`q}h;Vl8Z2Is&nIsVZ+E0lYw(t~Dyv5?MUxvKkQHqV(kQ!|#^ zurM5pMm=%0jPoELb`hIMJMJ0Yi(ak^mPbV^LE*{6-SiWhnl?mz5YR{4Oq?S#bf*{53>;ta-RdhpVIe^p>$ zLlq8;T*knuBI(4yqEc4OV!TO;AjS|f^}CC`-Km2a|M2TnuBw>GYfe{SqTW-h8LJ2r zU@KBtb9BARIA6?5W-}qmBG(t{4jn$+dkB!u+UCVMU_xnn@=AfcXUQ`HQ>m2U^Lpkn zEnxI==GKyTyDOO??JX6D9^Dw2lzo#myu@*N?u14LO=N1*vH!5aV-8{T>g2UtxLUdp z8O)n(HG}tz%w;3r?zaW;`}{PQ-wj;~bQ{lkon5FtC1uX(drP>_%&R+m;1cj=r7GPT za6~86I|Yb3a!kU`@jJ~}Mk-?*?p<0PU-==mU|TR~)X`qtjG@cf#Rl>KWu3|F<_|Hc z=;S%$xuHts1X{+EiLc4ao4tN%jiyqpYs6iKyQCXP?biM*4`-E~*+mzkYjr`w=7lR>ew5do=gg^a4<~_76=*wuK^en!;HXO~D zpIn(rE7d|R-+Qi1YMcb(PnG&eN-+x+8!gtwT-r6T#-n>-d!p$z+j z(Uc)+$(7nMCS$&8O}W<-sVaC7^m%G!wRG!K2{$>Fp*o301 z;9r#rwWiFxyW@6XcD*L{e#b@eapXu=HC9Cjm^Kp1wa04BI8+z)g?x6bTx`K z(@Wm;)WblDFR)f+hW=1Zkk|TzQXZ#`P9uZ^g;9@jyi6}39J+55*=}n{4hXv-Ptf10 z28oafs>wt2ZHgPdrqn-v>5nnFdcUhwLFsvN!gS5I3Oj}_jM#Rb-xyjF0=e-7*)uu$ zF&*16+6d{e|E%TE=qDaYtdPeSNRB3#)u&c(W$uBCVoMmggx5{RlL5fsLLnq zle2CWZ~fNH4PzZ9zrtZA>R|ebL$i-bXxcPkpLq%$1Qr@Ph&{6kN}siUz`>D7Pmd9v zG^sIA<&wEhkx8J}V&bhU6v5YJQ7#Ve+Q+tFb*ai>HR-}x7JM(z8Tc!$xdTF3!kvHn zYr7YE|8dNK!o?;F3pC{sh_+oZiNod2SpPn(@%^}$EU;8>)%moQs>OV}SX~oY*7PAN zHJ_f%9*K}PnRRn#R;&~If#g<0VHh@EEFE&tL4oE;&zkWs+~jh_$(2r+ zo)kYAR=fN`IOI`@Q#U=+m)nGc*T%+PPa(a5K96wcdE9T{A`3&@Z?Q{>yE~t9?{%45 zPtN0h(Xfp(4gsMror+6gPGo$$=0ag4AZJL`8pnRbsXN#R>o`|viR*7Zne>g za9A#{&$e;de%ZM!o5p2fpBzcNdK)#DPUNqju2dpHZ2Ms}bbDAwxcQnucla;6nFmgRxY-He{A6*?b)86ICU$Zf+uX>ha z*-T;SSNsI`#VCq`w-#diS&-9&(Ydn`s{i#T>`&-joCAoy+6_Kuq0tx~W z&^EM|~%XmI>I+oVP7+XOaLb*S-+zM~9kteV>eb{Uc3P8MMF&w~H^yGFl?+&c# zkTu>eae+asp^E7n2gGatcdz0cy@NBGWD7Q?kZcd7`P*1Tc+Ch##LBh0li|AHH2u(G za6*MN4;P*!EY#~Os6*CyP|d~^7rai-a=&IUeXZdMKTZ9@q+O`4s=WR~tqS8)pBpeh zyI}1m6N6jyCW=1U;WFE^HrLqy9_1GOG)^P3Xl#*%ujMR?4QAy%l)QyIud^()+@G>R zcve4D)XLMt1P%8Q*5(#A;SViTF3;v+fx!7S^Tw^NY>nZC2L4@dT(<@sc+)MHTS!IS z!9B^noA~L3A-M(I(Ol4h1GLckbW4Z4oeAxNO3i@q=g zXJG#599Z5^vNx4C4Rt+lvR_*_ERKgzJm00b=ReM57?74`6!T1#snPlOc`v7avU(7* z0V$U>GJb}28A689w{wFcICqG5F_&*u&2%+mZe{A3zsU}QY~$gp4i+&OKEfMh=#la^ z${NVRT4f_2Y5;K=7u!yfs=)x}EeuIDpWe}{?qcbL@`|!o*>E_1on1J>o8wzFBCiC~ zx;2NQXMC8&o1LjPRSnXE=njP+OQvy=jt?h_@fuMG(e)3rEt|IwkQ~%2tmA0DqN9Q* zBesm_Lr9jlf1+99*CRH2hhj0H#N-yBfib4DE5b%zU(Z|VoJlaj~DyHZplnJbh)yauH%N17y&;8Y$u(4rO{~T zR)x83s;m&eH8vZr=2KxfoH(=PnvHTX6cJgy0?!btkS-{E_!dDT(R-zRF3qqmnvi%} zaBS%aKoE)XH9O@w9k0aPS1{35;Q(`%e)Z%P9$S$#G<D#WVs&sK{K zpz@WLEc3bQ=<;K8WD##Gx%*GJSOyhQ5XX#q5C(`}kE_!0P|Wc$Ahcp#s=UnA)zFw< zZLGKoJWSdY1X(kYALtb0SL#z*^M#dZK>uhB>FCHr^=(b3d?O7ibu6TxI0=DR-}k=G z-sgT?$Qx$WgP>f$0_+%uu;>R>%9k_gG#p3cEqLa*G2+Ehn<`9PpB~86+w|F5-A|+GzJ!N0f=3_4 z?^WjA+(Rr6C5!2|hN8l;t168BYQq$t$M`X?Zvh#$Dh^ecOQ^#iTdZYjoRNy$``QxNvk8pT!%p+eaQm2IEV=`1uwtYvaQ&jkml>2mRC2OLXg) z=0sjCl94hnME3i zC(UXT(&iOwtd5UZ-8WT-T_CsIBBEnI%NNjY#egVJLL~{`ac?m`HTB(SPX9!K$o+II zmz`KdLg1_vDsBS3hGebjr;UIRW?xmb~VtDn$mkAEZu zeRmD90R-!N6vEjlf-bm{j-tFwkDDoAdU0WG}#T_ zz-k(9O{44IJise$y(-rbk61x;Ivt2>e_1M%HT@>zqe2`gkugPNDEvKlXX@cU2zW+s zGiVMlA;mcs)?HQgDk@jzb-toe^(L|0V{M=NMh9AHb(1F*i>RKx!kqDx_V`he1#Plb zr7=67sDyu6O$ihD6=rwM`lEMK)h&_4=X!w(-H07Cw(U8i;A6d)8azR|O*o$<1HY zcdAhTeGZ3FE&CH?hZP0g|A-!VEGiBA+J=<3~1R0ZNd_6m&G9s#n&sPf> zH3l=YmJv<9S`Tk5wYkEBIj>TKOm`vP(Si^1-XP@=hh8eK z%}WP(UeZEb#;*~{doH^EVs`r_>?tzw<8tpJ$&U7y&`me7kTs3-)$hjs(ziUvK^ujv zoElj1yRnR%!U#+CL_r>R8W*Lz%hpwf5^xwYDDV!Vnq_js1~`gASQ;Z;k*2w0+Y zqk?;J{eyuu^qU$+uN%AN{Lp7c1W}~W_YI#4%YoeVgerp-01bW(n%Ef*g{MEZn0F*q zrI@QqJjdaSFVkrkf=9;Bd4t)O{cw9Wz6;jhx9r=uy3PUCsF@?atagT#EOkS~@gy3j zz5YRthi9tjr;&Y}_mv+*Ap9ck;yj|?ooga5@tzQfL#6=~$ok~1{v*}l&O!Oaw~*Tc zEM4owH{(6J;Z7ZVwbJ=@K-_iARafzDLJ3XT0u5AY-6Kas+gz!!(g4<)_gY10Cc&-6 zm@>Nua+xKC#H$^?=%H#3UQh?BJ(qm9GbWZ3sQT=WZM_wgrpr5mC%v6~sNac{X{IeG z2e;Zw@&GmJ%!g@qZHiii6he6vjLbU(%PWJAw)-e;T>(N=b7Q4AiW!f|GIp-07uu1vdNUN=PgP=<8JeJ;NZ-+7I27ir@TutAG$biokU zA+6LjlbQ6#7KPqdL6j&%JWURV9f7&TWi$J=cw7%iv_6b$fHw`N@%+<}=Ox{^dROo% z0oCXva(LmV+rCW1HPS1ug)1$UzV&d*q}mt#}NUu@Q< zO()A(Ayu+JC5A!@gg68BpL{cJiExMRnT-Y{vU$Iqs9~M>3gbWVxuGO_D)GJKsx^3)lp5Ea@GQ@wj z6CY*YAjN6(aaaFUJVjsiwf|j_hft^jvfbyd5Fu31!{RA=Ub5zPl+k%@B(pp#$`VOD zgsIxYcuQRr%#%QY#q%OLoUVf!lsdd2s-j))c!(sm3k_*HBmKnNg!HN|$vQzx@HC$( z^1oN|3?FxA;-jvP(C?Ur%4wVxYk$F_Q%vOdcr%X4OYFH?f!Grx+-Kt1$!3rfh#g0z z6b(zE!EjvI1~7*sleHQ~xSW|8rICY=Q4&NaN{m`<&mqkDlIC`g-K*}$b8ghBbe{_F zH#oe!ylfpEiQxmClXYOQiOno}9`te^*PzGcjGeMxS>U20mGV+SSG&+s(yC&r(6-i< z&lq`w6clv*uQd{bbi2Z3Kh$b4G^}%wEmuS_E7R@|8PFCl(Pi_XxUtsNBp1kbB(!MH~P-TS3Qg38ySNg(dwU{YQt9z4Qn|D-_XL^x=$MBJHm zwbC?^U$a=?qTdN>Z?JV5M zxw%hZ=*(m4od2gis1777;}l+}jIn){DM(;qiyW)uGnul}cyEA=&XDd`SgLA=HC#Q7StD+Zq3UiZF5FKgg8bbX*Y;RnxtO)6}nmD z?e0uWqemJ$U1;^e^s`)hnR?$*h(L|8=|`$Yif`x*Pd9JL?8D?GwNlORqU)c8E>0(m z2IAIfvJ^lrkxHOXD+^GEF{F@+28B%llG9nge^9;g zg>UF{GF$stue8eEQLCGO$4~1$t1-yy&Tw#9gU~-T|BEwdG8;$8$6pbj=~622p6FN6 zTM-c;7gXrrke;m4@C~@e#OpZgYfwr0m;PuQ)vyx;2-EQaDMjCSI!R!43z;P<@ctTH z-AemE!WRHB5X%uWUK*j`wS-&r9TCiLfD?#$RF#sl3G@zv*yNXNNe2jqk$U?)&Mo|P zhk6q1iJ&d^0%lNbO6 z%3^EW^IHKh#FQaAI^zFCIhcHbXEQ+(KgRscWBif7m<J)1uTR) zM$i2DSt4+wOK#UDMI$n}yafz|Pna|Gsg?qIu>;Oup!1Zr~*(-y5Bo?Ml$yP zDVYLlUGD1`_uZ$*z|8{|AIs$?*(JB8@fNN&P{7{l`X9}C!tHasGz`T1|$nUwTAM_1pY=3A?RFjuc$2xgN0$?TP z#DA?FtabM(muu7AQOla%UC-Igx47^a{`?+Mq*5${jEqbieSfkB{kQIVw)sm^JR&u- zM2$r$;CNtckL7tZiRD>g3=&ZIC0HLo$ReTqd~d9FerbI)!ZxD5wlEopXG6TbzfT!2 z)U1S(P1?tn!bn@=NIGu*w{QwNUGLp^;B~)9ygK5Mc=hy3xy2bwt=K@+>h>JLZnZ2F zj7|ZWuPs(O+0nhT8+3fJ#{H>MNr0!P90p!9c|0#eIw=JZk~0kbz5b>d%|S&~_U-rrYlhOkM z3s`|2K115ApXuQf{jpTgZ~vLV3Woed>5*@k+W4>>(`QQ{pZbvU?d^5WN68ok5^U@y zK;U*TUkTxMFc&%Sy7${2c}{w8rx-t&u`-@TkjFh-lbb63^oHu_?tTK}c+Z^fb=1{X zu?lV8owFOb>Px?IP9JBJ%Kq@gz#xb4dE}rZ46W>nY`6mB&+{t2)M%_`4q>?+8R~s*_zjlj# zoES2p%v8~5$SHb$vh(VkkR|EuO2s}B(wi?p&V~)bUaFBe&^^{4y!`xp&1y034fpo9 z$m`Tp+G!qD2#FN|>0*J<<2;Pht(pK`Cer)ym})!Wv**>3k>Fh88uPm77Z&S(PECSg z!~kFxMn&CUfEuI$1E`>)&~V84191aNkw_R6U4qW!hxKcI-?G_op*z+{GswXb->IM9&7ECz<2vydOR;Ac-h1jrcz3IkS@8Bl~^w@nYRSa7ONMDW46UU%!<-U>}% z{W@bnAU zsbhQ^fG*+dll@BbsgxN8zLrwG&Ya5A>FkT7$+$n$=I*A%2F1;2qa8LdYiTU`xR?Id zLeg>cLKX5T{$tK{L-h`Tl&{E}TW~FU5D}jE`FQ|56Ce|c%Yrem(oyjMhD%jJM01qC zwR!wM&>RgS?MBzMcm^GiO8L^N)2ivpm3T}*c6#pa?#c;mVtkCRb*kLEV)%?NxQz!(;xvw(&88Qx_&b;7fK#CWbSF)od zasO)p@ZppZ6dmK#ygAzwCTc?Wp2`XAbAG8CpnFLwy<5w(+*72*4G)33Y(D&`jYlEyj5F$AHMbB5OdEw*}G6S#zb=$y_+m4a`&%G9Gaf-kz+Q#_|RA{wTT+w~1!UT^2%ROlia%@5%mLuc9VWcU@&LW8jx#5?7?L#s%XCbrFCzdykZW-d@C3~`+T?K zXl9J(7>Wzc5*#PXhEXog$8}7`qIFbjh7veXZe=q>g3+5tVambwJ4bxBfQYNLu-4Y* z*?mmwzCDzbR%gB-sZsYk6RjKGj#r^)PbP^3w$|*L^wI8$w^X$;-XII8(~LYe$KByd zU3wy}I+}B09D*3%+3P3)FbkLEo^QY)XPe3O(Fc>=(J}M5(3bSu9p2^=m68(+N@=j_ zT+`bRAOL{L$&lG_|zB`wXsey&Txw;|hM_cKAl;9z!NAb-vB8ww{m(v1v5= zZiNl?zpceT1Mr*Hj3}vI{4F7vRbc_UX?HAGjpy0ayQ{q)WlKO4>7j8uE$gedUUBgE zw%KGi)jW4ZDPTpY!_#&8+HT|x!wgCw1Xt+G#4*Em7NJ9yfQpmZE&M> z=Va?WLI8!3FB3-^fx0~(6`bL(aaNs9#I+(WkN3LKOsVxFUt4(!4(%j-!sx_kaD)Ivs=&o+(Dr z|KGUzI>L(+Cm}Rw1W>yYe+534Xx65G{gplv9}Ro9wUrpR!=U-*l&eBUSzm7cEX^7% zFwuxgtgzPpJ4aAmL`2p`%DQz{W~QKH7Kg2x6r$HXz{sNLDJx(4MHBa&lH&Yq{EUo@ zqUlQcQoWYDw(m(Zu|Rs^@23$189S#4v8wjk_DuHk9aP!l~^<`-~Fl7K{`)?NDU)TQs z-)sK=@M=LA;0p^u-ex1sKYsYX?kI>bE1ao&bm8s>pmJ&~MipdMw&nk|VE+$LpQ!7l zbU@FTOz%JL@^8rh?XNGemreNWN&t)Ct}1mj#sB$G zl9#v^~X@RSv3B9V39KNv~Us zTIWe)Ac2E{i;HV-{mq*<5MbpUUF#MvG@1B8685dywtwUAhW?K`{Kp3dO+$9?uL*b0 z;);h3fkdrhUf6qc{RWr8&jZn9ESS`)qj@{O(gfrI&OF=I;b8V6b&>W@gZA&P7rdZA zEd`C8W7Cg~Wm6=sU!}S2=Bx3?UKO)`EBuvK@6GMBuRA3?$t$E9Mz8+B0*D<`C(WBb z5@lBh6Bu6Ld|?Dw0NfW|oj&AY_4uKQ%QBD#IG?|~#I)vWjey+)fY4{MT?gd_l0mQG zaXK0UU`1{qA6%r?`sOVmdl0}desL-QHloX8GN3rUuQnPqy}me1TP>MGq?C@A0le;^ zd2``*REBhDF3z56j%b{i9h}M&~f=P#XufAIg+K z7=Q{jmMr*XgrV!aZI+qe$LAn(&A*nR?4Ka|SW~*hw!feZv91XpcAQJ3l^ug_F<+Aug3TZdqy^Z9ET?~SP3AkvcV8Dmimj%= zT^Y0yz(1e;1ZvIhp&v)9sK{gzzXyOwZ(YtdsovV2X98JnJZ)#~Cil3nzmmm)+SKf# zPt@a?J|2{x1~5LiE1?yhX!gF@G8TMJkL6#Qd06a=B;1=lZ8z>MH!JXLo&Rj5xE!ix%Lih1_0lQ}(E$t0s^dv1?f?ia^b=jJX>M&9kOJk3TsMF8IHde9DnNnA7D-^GhYEgfIB>W){5?@YqJ)>PPNNtkVS$w8uJWS^)xM%klJN%zz$!=BbrZX*=v?2L!29PNsyYTSJpksArMDh$=xOo6jD4 z`p1VXEdIKYcl>}4Ul(n@Sit{yf85U6>&AV#H!=JbaRf+8kDqN77kE9VW85$S0S6`d z5&#}%VbLYe#=_Se52rYdT3`EY#&%GNF4TW66Z0pRKI~U-a&14DBHZGVK78$!!ehlW zRjd&jfzS2JL9P-5S>98Bzj_)gO?@T6mECBWr08=kGbVLnMulF3b3eny<8`<>av*xr zZ@{pB4n?-m+@W>Mj(U0XOqDA6H94A$7}$%3LZ12EP~)9U=CNC znmU*og0g+1)Y?i(xr^TT_7uoVGFKY~M1?OG47HCr^=+QLiIgyjjl5l?DoJT^-B41U zLDsv4bK@h06tqf6aqE$x&K(Mr+}3PyxrKbcS~VDXnC%ienj%NF0D(cMAC9*=p%6+Q zm~)`oOf}AY4wz34j%4qLY|5OX)ztpm&*y&k#G75XG{6Qnp93TouV1j*A)(kLVAlv+ zyv0b^K1cv!)ohM~Q0BKpZf6AnTN|4^4y%Ha}k7}UWEH5mH znOQu@45&Xa8Z=g2UiXz~vRo1an8bw|3BkD=x#!?Fn0MdgGWg9TFs2Mv30KSe`{sI+ z+}*#9k7kvbM}_jbxs7DHUYd%9w5QmK>wvmJ=E0vHFkl z@v)}U1yVS%;?7~&%7u#KQKS?ND>z$BJ<9B+#d50l#dPtNgL?-Yf!vP9y@yk~0e81t zoQe0an%kjh6{i4E0Tdbu&sBXTuKh%G*Y0*rSb@h*YY(6i!gLy}Os}8Rfg!StL4)c~ zLkVOh-a6n3s#Sj_Z@tSlS1_)nxNsS5*4x_M;0c9myb8ty2t?QG^s+DvZKM!~=JAYD zjrw4^WUY6N3P2L3z_HX+lb>=25t|NBAD7-vh;^5_a1^e^^ur`n2#~5fe5L{k7KBZlkJy?^wD! zn4lX<@OnV(mGEljBjgZ(@BOG_pW`{G3HUr^fCn0woeI?d&LjzFXPUxx;Hw7ss#=Ox z?vT@i(KQ3smrXA0bPeE0lHVzA0NujsFfWt7QNZ`U!{Peq(SB>*p$?%Zz>VD5CFt^d ztsLc=oRlB19srJB38Vc6q_?`>){!l(uw z(Ax#Po_sle>hZxGzX7(xYOqqczTNezG%>Z10kdzVw>t{~Oy(E)5Uu9xsL*Pb%j21s zfE2YWCEMZv%Ut&_tB>a=Y*R(bIj^8ylUlw_u9>Y)F^|^Po5)P!WvsgRa>2Avv{8Le z003=CAdS84k~$v>Z;-$(;QDD;!bL9|TZTznUpus}%(+XKKb(u79tWnQT52z{_D-|K zZmQ@qmP3aiou=DNhL2&Ch9T@Y=E>?;KqbcG4X}aA>^pAeu5;Ct5nazr4*sl+NWvAL zdkO3PH45uKKg z$C3sPGg?ujj{`JFs1@vlDuLCCS zKnjHu0)x_}Yp=T7I3CS+!qQ88R-{&IN%cdGxrfPh1B;T;0eMaKri#y2B7N+FJVHIsXFz+G3t@JXgm6-=~+35MD+Kl=_@X{g({M$Sa@n^}&A~Fd!5w<%c0MjZL6~ zh*?E~{Ck{N(9&N(^w9fkfW26R&S$c=Pwa=xRjaK=FE!QW*uWj$NI-QGWv5_+5))lx7wT{Mkpt(r^1Z5n_LbS z0G}p}lL78_OpX0qIjajKUlOBQIbABPBhyM&)KBouwRjD-#-if)V?e1?I@Z>@*{>{`gNnXE%(;9 zP0((7)rSW~8XE$NX&t)L!o#nn*2BJODfH3^^5h8eKK%cKy^^&VQk>%6y z>u3cWR9tpPSfEXgVP~5ue_B+G*LBgV)c=gBr6;z%H=hhnLrIfgDIiMx6P><{zc-eN zLHZY;Gx4QXZd*oZ_DF%?FI80G%lT;S--X;zAL_b?x;i_3=qF>_;PLd33s(oAev$ro zryu^qWHeo2vhVFwz?s&O}eMoOWPZoLJ>z7wtzqu@NcBU-F2cGp9(!(QK8 zIK;^+BMF7r!DSp&VI~6rh>Da84@H}{mN$)h;(rXh~N$7a0BZ>pGa2AhiMo5gfdUmv}6SQte& zS?OsNUt3GlA;RiJP2X$M{m&b}C){O|nD}0nLH`q8&nT z!z9c^tX82*-Tbjsqn+BXHzO^V%C82US|Oo?@zM{gbkF;j`D|Hhiv___Le^do+rs;H z=_^*&0+nD&nCmdf#E&Os54-K7@`v-R03qh)N>oC$k2~{4_(;)_us{+P5b3K@;nwOl z`ohsBKnb6YOjf3XN+zO1jNQ7J1paaE%q8~IR0@Nb zve)fgaorL27tq}|uz7i8dfIPkLZuMZ0!NUc^fsYTps_Gt(<+y2UYEfW>K0R(2l)W| zkK4D$Jx=_78g=gE(*<&|zksPEfYXCmU6FiUc)DNww+Zsu@*f%)26kbAD`mG8N?C-?6t>=#GGZ5?k3pJu+Mt7wcD><6R; z<~3+^txZ`Re5rda=qCSIR>xP1uDh&B#!eWs`W-&FnxnROlKtgbwW(&SD~2}qYFExW z5RO?^hH$t6o!e5TKOUE#o@5V7(Tm*zC)v{yj-`TIz9eN{&r!_uii%#Ov%9NfYB>@t z%=D3SlclFZ`U0@3Z(e-byVuPGx?|n|Uhm#|7nj{>Lej$ld6&IS%C#TncX^gUlZxp$ z3yfLPRF|7TuVabw!&3uTirp$*BqC#>2+rTL*Sw=!8Mlc6;;U{=7Hh?DVC6XQ&<`-^ z0>hxJ1@3NpAb{ZFFTa^-rcDmXs;}jQQC)!PLQ`U_>?(7zAQFGlpu0Alz zP+jc&jwb*MJ4vfj_N{7eMe!{BQN8%M(&laCR0)dgJaSjXuuek^`y!k50>Dc$zb~84 zUVEnCoG8%a z{!8?IF6cyX@8&~`7Tf(_N1PD6NDt zS$cMMK*i5o$50#e$!_MRp(TxuPT%k^=Qx?g&Q5xz`=9ji^PnIROC>4BFbltimVgVm z&ih>3Br{Qcz^Khf@X zwmn&q8>xj^D({6^e=!If*EFP3l84$0IoV3ALdjI(NtmU^TaW7_0veU|&2%qo%B##L z7aHnyye-|mge=#?Kk6aYrA$;RzYbdXbpUZC+Mi>OtqV!dQm4i6<(0|jDwB^MXf58h zKv*ns7yH0aHd9em{yq-V!>2$R?#7+;e}g?KCSO9TsLF$b3LPzlv?nIJ&P@$%`XX| zeo2LIa{8nCP6TlgfxQTkbsF_ZmX(NlHmhB^HIMbYz~7_Gk~^B$YYF-2ykg?kVN<=X zO_uGotj#k$rPoL`siO%QQ$sZ&?P1$J&^hxjx^S#bH?aX4g>?4OBB#91y~|rxh2FKC z>F^P$xb3)CM!D{D|r;aLMPC!zC@puzoZD9 z=)XLg7Ov-3+t1b=0H-@iSF;_p^=gH*@PWR>C7cyjCSyr$euF->c_BmL9X9;g7UE|k zg}wN)R>TTQuyo?Xia?;N{cdEXA7`X5WU`!LeouGG6Ry>^+ zb8q^7LBGd?;FuLlU~2VKjCa9(GukJ%nz9;P# zV*KeWsszywJtg5s0HB+R0L4^ z>!>A9u7<#rRzk0uO>Og<_MX&C@m$>MphqY_nNnYPGlSI_zDVOuX86&E3QJh#!Q;o{ z;~gEVxoZ56&=WF1YFho8sDc(~DW~}R@ER~96xcpg+)5>PKqob7)GkTa0Iokd%E(rd z?&=HrAqB}Dv`^$2c~X1Txye_!e|~nMl2B1R#?p9-u2bIFYWWCT zjwDTgs*AnRW8ahMETdclk_oNInVf+(%if&2H&wueP!sB8ac^ispAUi98wR#W>4EX6 zc9Uk&nkZV%7OV?Lwtk;4S>3vxU1C1B9}Y zb*gKsXp$HfB7t$p6l~V_(O7xNgT#SZGCs~ewiFeEGezH=MSm&xV0V7PQKUX3oiIAbB>`jFTdi_}9$2VGGaFy{f5tRYLF=T*TS zZbLR{&sZ=P<6J1gL!h=t=fZ2{$+?vtc)ETSRqiNRUGLTcUjYGL7am%!QVQEIQ(0k|_= zXNbcq4vGwoN~nCmlF-YTQeMN>SQY;6i@Cb#Epdv^XG$KDJQo_kXYB*ynXeFvsUUClO3#?G) zK&q8BZQ(ho$;qcUTikBSu3Fz247ZNS1+_ZuEm7=li6K0W)$tQHF3~kED`8(1kFjFa8ihKC};xF^j(= zB3w@qDiZrlt&b|fV4pF44w=!8y5eEGB#Gt&vnpWk1auB40v}bzNoPF>Fhc>w%0-lE zan{V`#U~(s!R$unB19XlHW{t<$AyLIG39rclw_H%v;gMc<^*rJhFLog_}@&ahPZ~< ze{8g&ttTqqXTSed`FcbqqmGC6;9Wb=bwOLIiQ}>#zWh-tbbWZ`;3c z)-GHwk=oO!iX6tGx&$q*5YUPq;E>QTPk?1OLgh)l{aBR#Th$U(6omrl(z7XG7%RyE z-#6!=?DvZM)u0|r-1W+ZOM_J$qe|TRH{rj#=YyTn;vuxE5E9eT(9i$i0+eB5rkZEI zQ#Qc!S{A6cUd;0;dqR6lY`Zo_h@X)YwpbXpT&xO7K~ho`W+-lWgH?&$`AZa>VVH3n5C;rZ=75TEYekxbr33f z^;jWelsh)Is;F#LF|MHrSv#}suyEfJ&>N=nrS33n%2s8$0uLI9tf_+KFAD2zmRCpU zRk!t0{IR@Qi=lH22ox@+3O{D9>1p65gRoYfo&K^NgjDeURd$n@u7KXupXd7_jGk^eqktq*UkYXodFWYqVek6>$LN=X( zqhEd4$|^v;s@Gmr$CtppbX|TFRIC;6MLv}t8PKTuB!ATj%Ky4A;0@T3(z{;4)8*4D zQ^^3z&j!y+Jin7ybM;Rj0xmn}{M(?Ij!<;a@xFx!2ad)}Pt7Xj31>PM%S z%Q6kDGb;1|3pn;RpvewY0rr+!qs_7fY~FPBrD#jaRif7(H=w8$swIc-@1p!9Wi$Oy z$MV#M;I^js-ghMFqz`?X;~T$4i%^LfH?S+Oo!LufB2d#9eaOe4hsPL{DSw(?&;GZ_ z)NmTbMaC3bjsdbpCYo}R-_t4>LVT&mwn|;oc#aA1>i5nl#zQaJbA*Gv@(322=g+YF z4;1t(sJoyae@w10>D^&t|AbTQsKpJC>3}GHUX=G>ro!~YRt-(zu^G6XSkNEGRIzZc zh@)$$Bp1UJ1c)?@wrvh#ZP-ttVL&icX{~Bjz&&-2MZ;7aANlyRF2qrpLi8tA|Vv0 zawJex@Z*se~ zkGt1sx@B3mo-&s}ZOURi*j20c zfVTw4Q<3IB=j&@9bHBoFv}A7PE}za5?#a&$!q5KUWt_CLHCx3$j?7n?g15U5vCrdL9=BXuRht*F;bshsWk3Ar`YZw=3bVy?`fo14@(bC1q7!qBjWo!U0zoF7$GW7A-wa zJ3(34FqI+!FMiyp`W%m`k0z$`l)G0mFHi1!U0$o=(Uz1ll4hF!q_u|^YNUd+bebdB z{k7E#xBz^f`P?x!o8RJ~44o(N5^+9esquV!7ZlJH%dOuhr&Vu{RQPr352&{=lOFek zjqOf8fyO0BA$!+LkHp9jiQr}ppS7dj+%J(?oy5+z0c&Znh~QMp$ThW#ht6$i7PQN6 zXl*ySU3yru{JXShX&KFRmCkk$n>c#?aXaO+-sj=YNE7FG2oX>S5qv#l8L2CljG6*M zL#>fYUP42Z=Yr5=$Slwm=mK9b38>Im!rbS1Us&)byMOV91rJSMZ;8MxV*j;AU$`p$ zUK(ocmIA|}r0KF=DmtOjR9;56t4DGm4FTTUXaR~7&@EWOwcKuhC465wOfm2*C>JRe z?~H2AB=+de>Mz~*MsYaMY*O?FKmY45L}#dDNMp^nPwb1sUF1S6;^@Mp>OsuBWXN2w zx)=c6;x1Ir&El9sIof;ASyPE`iOr?6szJi}0+JQk`s%|I86R|+IFUebmN$~#v#Z}% z0Hk89PaZ%3sE+y$*oz_;eW#kp;gy=5ucfAnh08kv9x#eb^DHWmjF#}xC@>&U2!6cK z$bzfNO}69m7^HK`*pVmk#T~f`S*9z_r`D)}bg&osZ%NT5bOjcKFhzz<#t>xD-*O1H z`8;2Nz;`}BEMY-t++{In@MZq@2eRk$pR^nG$3*|z2R`42|MB?5@10eEHg*mFzr6Mz z@8-KE=aXZ(k9)5m{VzTVe1jEOFgVhD>!idnzmkr7LyDMGHa}-B}Ky0i1660&ad281#XNkeiEay zTjMu=yGpyhz8yH?y%JmEYRmzWjwm3@bKsR8PW|YVNvG2&GLa)quEkLw4IsTQF;sHU zIRW4xS5|3DdA{Tnk`<8e0;JpUp|4cFNzqO$WrsHZtTW(0hU0mdxKJ~wa0w(r%_w}n z@bNM7P)Mh!0)sc&XCv6rzojud^$vd+KHIIu0Glc0pyc(wJ0L8J&5`YN&&%2giq1D0 zC?CqvSw1=gEI}M@<0zn&;rqIMs}7=6Vp35Vboe;XYb3J$FJTPu$P@<{6S+tTBl;z& zX!sC-o~i97;;v1LO@R?7ZCmt1j_1RC6pxnrC*M}a*L9fhU#CnBEce2JM7 zwH()J@v|!*!K$y*xHw!D;XOfU8kmn~$t|7_>gu(YG%97<@!)JXKdmMx@v7D>`b ze5_Kg6I@=N&SG`znBK zBI&cH|L`sRo`Z{y$m8eO9Bab(+q#5$N}ycbt*?)Wia2l;V0*vf-~%$ zqv`Q8sn%`2zBju$Ha3g{k)*|o7eu9i$$5Hp$PeRcS5l#Y+wyOF&+~L7B0&Zd5k)-G zg~$h9dS&tMirMK%;D%;gW$-&HG||E@AZ=j)QiV9Mx~LFGt8yiZ{BtQFNOc503k@cHg{8C za&q$ZwRAj*@M|$(XB(67JAYZ$<#f$ovla6Ly7%8SQ1JQ*s4l(L9uk|s!dZrsxOEzL zXN%ON9(in4>#P@vTU{Sb8X@jr@=DCtn3XL&qKIcWjWUQ|_8?(`537grg3;EgZ&{Nwp&m%Y@o`h z*l5LD8}gHJ?r3~5wj-F!{%C3jbx2XeusaDYE^Yp0@NeKBRCrwkbRQ9Nq;QBOQMRp~ z4d*mVl7d4m| zrFR;Zx~pCMPICzo5g&Y}%G9JDlCzJ_cV=5X^2E|w8mC_oaZw;Y<8MfWz*$j z#BjnhKt+O~Qz?t7B4d?!Cp^AVh~|#?j{}YGnhYFY?s0euQqYkQD9j9t8S4l@B^9e@ zct7?1U0fE(o)oS3Flb|<4f3B-95>?8zRIE?6nw^XMa~$~;n(Pa6Z8M?I0A+iV z=UwMyaX%EbQdNQd?t=DOUl1A*W&sG+Y#LvyIJ#ji+?)JL%BS-uI$INXGu@G8Mmu_-1X_&ATV%9fb8CvC6kDs@|l}|p^+YCSL+kbxrg3%j*aB)P)Am-~+2&~l$_@8O8 zmEdCtM^^QRr&9$_O?#EZm$(07uu^A@rc+}^==-#P!qDKAmtOz6TtIH>^y_BoKeyG$ zU?}17pGr%^^ay@<&>*dsi;JkJ>G2mP6l%}(y`v#UiAy9GM_1A(X7I3--51VVl4o(f z*ui{NQFY_;NFtU@QTx?GNOD}qO9QMm`#9A~{efVtr@@5EB^m;=B$mRdZ(-_?uA=RS zJEuKvTdRKlFSfa}XUqBWmSLqIgmxsq01e2&r^u_-M#c+m~&*XR&?K3 zt!m_ceF>IDa?&q95I=zpFYxMqy@H9xUTlUgF-FDvF(WIY0=?H5^!OHWt%ZJrbPPV5*@Qq2)*#Jpi~x0mLiEJP`pLIO4fc{>qsE9pLeGp<*KgkiJt&)58w zJ-S+{HaXUz>7!=oLw~DyxjyoI7j?hzp$T(3*Tn&8!9ZrWsL@$WBD1@y7lzloq#u{d zUdV7-D_^LU`mlwlK4dL9Fm*A@#elqLsqvdii^qfFf~lWO;s&=;FS_vk?r1vCK;2<; zF5e@Uc}WGpnLc!^lJ-lqHr0~rEG^K$BKE0i|8wS$A&-MdGjxZ1_&$>F6FJoW00{i3 z_v8Q6AB#6u<>r7kTr}Fa41q~WcwCQ1bCsb}C33>OPQJO%D%n_v!pq(B2CVk(y&BhA z$l7>Gr2CDL03!LrZri8fESqENN9hoD4pW3(wQB3^;e?xNR5Oiw^E_#M5!VQ;9@yTj zn|X&PP~xf29a1j5wx{R9l|WB`+GS`kl}_YPsG0oH>~NT|_G69bVYeTctw%drB}v@a z3_+4LVxaOzO@775RT+;A`^I&dx#?Dc=u$`NUQVT)kGcW&+KBj>tb>{EsI-$RuFf_UkyS z{Xee0Oblc%7I8qd`;XQ9KL&^lS>SnnBdfN>{UfpXpJUL$3MR0_$XC6h|2{7N<-G!d zV1q=49-964{Ox}ofCdV1^<`=dk{JJTfFk(dQ9$q{pnIeKudn{aEI72LScm)zN&fXP z{{NHc|D#Dnq$o6=P`L)k9gG4od{K<+KX%v!ZXbwW2QX5;z#{GVyP^NGYs1e1+EQk< z={mvr|K(SvGGc9z>@#H0M+UUk>t_8xk@l~r9??BoAVzm;mgzO4$ku z^Par-?!UkAU;c*VISEI}!cIi^KW3Kb^Hh&PKPLUx6DtrIEE$nNeM5@>hy5AxpfzD~jhT|Qqa$l|mgD92_;1^zLusvE!18dK zI^>5hWSHzMN^{plGUynkE1A-r-+{N(kZ)aD_a2UOZe;gt8S95%7Howw&Wz_2}t!D+M zni6!GINXl7PESk;%*mY(t`T?s!Jm`{s`Ef5qQskM7XFSIyF%-33B=$$`+ zU=?^YYk({&^K35P$!W$PUSqy2vNDj1K&a>R539LUkEF2do`euiIv}eqcYd#BWYAeY zjoMCLK&kFXq(y}{f}Sm3j@b3A&hctbW5_ITP5b09il)$xx4aPc`%0B4CRf@ zLJRrQlEOw$kb*q$;@O?6OeK>_65{cCq=S3+9+MY@*Xw;!)LKP;_D2WQz>?-9o?rvv z{p@7EOs813}|>v?zGM@R>l(q#(|nfEC#JIqR{w}widp4FgFjQ zPFu`k^VM^K>dS1|duZ<6%3jg*c#ZnU$m6zR3W5<_u@>jkgQ|}-jBb~3yQ-CE?-F^R zu#}e7>&+Q9hvMI|Mb0MvHDIqsTClzTDYv`STD~c56}`4syB`;d_+a6AZwEAhTJnH= z%s81h64QG3R{})axy>q+1F`#F%6luU1{8kvG4idhO5}lXBKOUD~0}epL<-g>CVr|+c<1q_x zUL9LgK6^<2c#F4llJnBa3)q@}-5UN}D4UsrI{v=!YDS44O?W7lc3lR4@`zTJDE{_l+3HHL#gx z+cBRi*c;Ovt*k#|K($Tj02zVNP@I)KU~!4X?9lcT+OKk2?b53Ld1A3BGaQYR8jPdg zwB7UdmC?N<2tez{gOMWA49rp`dxyuS4z7^QVpa~lR%sAWWTJqr#g}jbEpk_Tr<L3~A0*cCz!T)B9|F%rfgH?05^FV)2dCpfob@8d0PoX+@>;1%z4Y0%iq7Cf?$G9G zbp8Zr8|x*2+Y<|lUE*n6jrgd-#1#SyW=G?ysAOM=fWNx(vgLSIVPWhE*pj3stM%56 ze>ZP4QUf9`=m#wfgf1p3=(YWDXzh`t{bEb*E*rPCc=Ctv;1`3Um}@vtd-FYYIYe!uC^w)d?7c)^_*Eq6xg(J&@KRADncFSx;_#0Gf_KA* z@l-aCys1J3g^7F#yaKW{HNxe>DuaFo98O0+L5IE)_nIrCffO-N#;4P9*YjF`fxxzJ zQ}Quq+gEJ5?vQiyqVVI|?r#xU9S`?>vG5};MOE~v-Ot~)BsRq{44;}3W##OH`aJbk0gA1T2+vgiWvSrCx zA4_1;xU-CrvWq}%>~3>{3@`4%R80A+?A>=tm0zv?Sq0w~t`$#E;KkkEv?;G&%d)XM{tvHqkbOvF*Q*OJkLu|s#&x`>jO0q{)Uw(!lS3fgWdN~j<1J)_ph zAvBq)$7k>1yCmbROoqJiUmf|syq;b%3yt9s57r$c8bon ztUwSqupUWxxc$Rio9wW1?8|($?LSefA$oJYn!PccC@7yVZIr+rC}O{_mStz@%Ctzrmq~~Yb*wAzLhTSq4@GBuO|=cP(1b% z$^+cf&klPb_m#$}y-64cL~%}6dvxR3qU?sc%Gyi@eIH7AfdoKBIg-jr3fAA&{&3I1 zY?tQ7#-o{PmfE5=2I-P-0j4N_-c4m=_o1pq=G4z`d zcS=bBr-!$C`Gi1KnnFC~i<(!G7BW1eW&>3y-ctr$kX$<0;)~n#xOKBiuoxd1Q|JBJ zHVQbI_h^>FL;a71sSLu@rBwak7bX9Q0_;3H7gZbo3E41D7^JH>vH^*q_)3u^2 zGv!0%tV&|QIL3@soJ!a6yivL&yk@VbvKF7J!|Vnc5BkZxC$do787DL1(MS;!%)FQD z-GfRNhMnJqU(mHPm3cc1V>87#IA?yp!7#A2US+>H2fgGYl!|A*1fljSK7}*EExX%PV zjKBk3jN*%D%fvtzBhciDUcST>Wi!_Hc!@ia{Rt}wU@MmMHAN2VJ)`}`;_1aE_X`^&`27*?q=Ha%%?iGBE*Dp*(bu-Z&F#*+RU5xjB^KS* zdc-69Pa-yk;zgV6 zcQYpP?0ndvTJ*Y%3B_O(g)rwK1OE&+K?0WOgE`#o9mpXgyyNxiNTCo5VYp zpm36I9$`B~IV#9Z#%Wp&96(wOlwH0-pFBvW=vl-GpDsDUQB^Q@D{% zqu6YxFD{wBfVKd%@t6uYmF@BDfR}%=UX#41gVm_FwywNZuQqN){Wv}_lE|r}79Wbw zMCL7lBUJO}X`xcpA@ieJQU2QxHBEdBE9s(|tzU|X> z%A$4A9oU{_zg#K`$G;`-iPf=VvDylIbt=nvfuvIj=JkSG+d!&BSo$YwG>U7`aHba@ z^Y$PX?$wy*L%^5XqS#oaGhm!%xHa53kuT%4`OD|5$$b}61uv2iXt&-vorQLEWXt;G zvLs*>`^N4S=G2_550Tzqya~UrpWUw$fQ~^*O-rM>(;|9?THzr_`Y>rwK;6sCmxN-s z!g)$SO*aei#lsy3>-(?eQ%f#Sk1(-$K>bz3WyYYCAj`)`C)ZMdPN&KTNJVtCD)+=N zuP)+D#}}lA;JS`Wy{t7Twr0=}+>CseOYiU=KK?9D8wDO7(1BTXZ2q!a{6LvL+CB0f zn%WN``?mV29HuCA6}WeazQ+7Xm@z_>(v>MFs^|>w2Ax2J7+R-siC`j!M<$lBU^5TdhRU&$ZE?Z(Ec{QX&g%R2Hz&)v;tN+NST(mB2OgDP!b8o7P-bDdi-uxZ-{f~fRk z;*{v$w?u+JE|~4s3^!N(Zrx5+o^Ew&T7h<(=9t40>aotg@vNeIi%Q5N`^IDteL$)| z0{|v8DETJg)~{J^{Xud6XcVy*v>0^o`R(5Ko9SmsduIz;A3>lO?|>V`d^RwEkkZkz z*&?{2Q24$`q{Gs~yRnj+ls?;TWa-*a8Cu;Gy+*>%IT$b(dcXWM^?VtwQ2lukRBqpZ zHh1qtLUHrABGm7+Yp&UGcq}7$vk^6tSB&>1HpT?A*x~c{Xrh5-TvO38Fq0J1z zo`e!J-y|VVGv!L^ihx1th8U4<_NmgGg4vIOpN157Y8d;+DR4v|PR0A*aus037PQ;3|)alr#h~KQuiTTH-QV4a+zu~L{ zo;8XN?}M$m8CBn{YG_=|Z_w-w^1Iw+|(@;zK1JttRy294OQsE!o);=HDfbJmM!{Fum=aL z9O$4*Wmf4t1OUX}RYnRVR*heC>EnLYQHad4ffzmI3x`w~fsed*0Y{&iW)S(>4&}1vmOU_?UcvC#h=GIq;CKgLt?sxK@#XKie+^>xYqcZ$9JeZ*^!b@4&XgcEBW2=qB77>rmu{=ok79s?d5x`t1FNOD~S4?-z;C3wenK^`?`-a|3*6U z5#EE2?Zt}l#cH>k7aTcB`r4(Hzvn!jOM3Y~$=@Cn@@;I`G~3whdl6P-`{jy?p=G#rQ|Vs*T<^156u z4<`j(a8{U;yf7KHd+gtQr!wc(wqB?ZRx2>q)~XYdD{%B^`&2*qdjTi4P zJEE6bNy~5Do6^u?buI3_}JZtG|>2FBkEM&ze%=}@X~lop$6 zCI3vOdmXWAj_S2$+ANEtHPmfAg2g>Wlx??c*<#Pa9hv>3Ntr=Q1YLOhX{8f}6)JO* z@OJ$R4u_$4H|Kz{DrqoP5mN`WHlYOSdnm^};v>L2(SB>`gRvHJo%PMnjm`cp3#;H;|AuUAi?Y-sB=qfbk6==st38Iyt6tiHqyF^jY*VQDx$I#XAn$#qn6nDJX{ zdPA)*nxiXp)7n?!p~?>CZDt(a>Z8yhn9tt)BB`*jGeF!J%`e%p)KbMJS)#(Mg1^f| z`0P`Q?oUg;@?(Rcrp9sIr(%-?OPvX(-XKd1bnp-56l8s&;ammSz<@=7U%!1=6s% z<@i$BnYad`1vq7N*7<^pGQ>JRm&4@0^C4>P@)qNw?btuCUY2D9YW|u=;=#a%?xcpy zqY9S%DH?Yt%Mp^RuDn>dIscJ7JENHr6m2Sj&MFbUCH~oMhKrSLZ30O=hYB}A{r&A# z(#TbXG@mNEr8fUqrx6>EnHAs=9UCpTJ^a}Bb-Ox-`@}VQTfq_npjssPK8jB|e9a+S z={^|3R<$PCo*hfhW{Tz_1`(}~uQK5PrsJsrU&e@A`Yr`S_;4D_jbTOP+^za1w)OM- z8LyelftpMFzWnyT52Z*6KgN}H!PmSbAMCeWcxUeVz4-oypdXInd03WHH;1{R`jWWXm*TP8mx7@@(SXbOoT%#oOr zw|a(qHHnXOH7AZ5Ghc5JO65#~ueu@7%GSUW_sgYuY%DFM0DOn~g!TbV_QlS(gAgk7 z9?_?z4&ai0t=mM6OJ6Np>k?^>PI#{A!;4ZdB3Ze3f;h$6XkQ5Q6n=1y%1$m9GtOU0I!r zi;KpRR3;1CR`gJ(+=1=3f@p`iFMkabPZsbL=|!* zt*Z%M=03gIH}UP3pGpHTCu}ej{auRQj=9@`dKH;+VmDqC;a%rFxT49xra= z0d;L$eo8Ka!Bxi=lJ%F)jzvOFgXx!`I65mHW2r$D=>xVP6Q*h93JWo91DGNg3xFTg zYag)5y46#I?l3N5K&nQpM-2)6T!WE)*;%NNZ?xW5N~8F4%W4Me)_nK{FxtpRQt$Dp zJK^XwVtIN~LIr7z$21=pmPdE^^E_kcMGTO)u1y(5;&yA$-|`;zbL84iv#AsEq1Wbv zTy7R0Cw({&XXJQfOXb$Y(&ec`VZgK$F4)e5UU+0C{%7`hgAE(c=cKd~jr}g0K`m(z zu)wI;B4jzMm;&|`46+Ie8goyjZ|xEQ)2Cj%!?q>HP33Y?KXer6;0wX*>6mH;j>5)f zO7HU4y^en83w>$8-lG>L=8{Z*jQ*-JCEbIxw|jog@alBgQ;PyL7p`b%v)JVqJvjU* zjL?nq(fGvamJ6xBqYG7;FR8gz4(;odJbEh2!dJUaZYJ|7(?P4D16$(5WMrZDVlui& z>Q()s={lrxQwJI3pcULZMkpqDpW@mE&jL4K$8gU68-%!-5HY{SZ-*5)APU<(H@*~o z5B>GD3SxjOpFf)1i{85eLn~QBxbb$)ZC9RrYPq5!h1;#|tJrs1!k!i{>*dI`UdUkM zx9vAxch@Kkw@h%PZ>Wlwifq z=j2-@V*+SI9jy3->zk1{(2A7G;&t`ec>iZV&V(h8B}>(h`!**jD1;B3dYeGhBhu)2 z*pzEC<>{mh+78+*-HN)mpe)Y`swHPXB{TQRT=wqZtys5O%o1$YrCvWFO+cr6cs*DJ zp_l^hX)uM~Nvx?t2HUGg}UymAx(P(YXTWWv<19@M_+_)b{1f&5@c ztXx<}V!1w3{v-vO%DmL><~fXrQXR^R6>e3bX;K3j;uQdOX3zRIZib^dqk zui&3NI2y7oe*@P8)QVEGaOw-@C8EH3Fz?m~AEFEzx^GgH_saBep&B4@;Ug#GCZC9$ z%ZLie?E`I0^vOBEAu-2* z5-k9Y_=rfFww`AIIhX++20kp6Nzm0RpK+a21kE)&1TV31e=!`OOu5qYy}Rjwl=-P! zrnKSLVVJyfPg0`7a$E);;`l85~gZx zX6MrrU?NS%R#yKF0I=p0+4Mh7oF;TfbHJ(8v-|9dTfO-G=7~MSS^!-vlB=;qqn)W^ z_guXRMWWWZlH_}L2B^Oh0aWy_Qy14fiKl35M_%xwJ>UNFiCHxop4|>g&up0%2kfUH z{9S%7nueCyGhy&A_0;3TGlZqq|o0PycEx+TS)Ogj5sb8Q6v zj0YVT3SeZ(KSVj|>A%~b)8j>|vcxv0eA4$t@Cd%dwsO4XT9S~PQc@3nvNsJ7>9`ea zz9_5zt6zr`3ins~>aEq4i`zPRm-fxAbhK|kSb6*Lrel(SYc#^>AsjdILte!Os*df~PYvwuUdB{MhogVMK-IzV*>SqE9X zQ2la{2B~rUzFNTltD^y=i+PH^NW*(_+v<|~mNn|P`>QLnW$ZW;4NR-R&FGl;r4G2%seY^$LZyXO6a`koA-@nD1iEmn-l_%i* z%TRsOI)4B91{6IiXSyh0-UwKhZeQfLf_pCLZzcqGJD^jku{h_hzRblTbX(7rb3O1U zsOXPthYR%{3e5WXst1=Y&yJXgO*#lE%wm6r9x%Rf2Vy^(WN15`O;I-jKZ6)X9b(y0 z|Ni80{topjmC-U9OmfD5BOv$$N zr!0&~y=WKtH~vlr<%)ck=@*Q*NULh~)}>$ldpmLK^!s+&LsP%NZY@?{F%~M9y5=Aw ztU9(@{XyCt%PiI6Ay$%hXZ$y|&HuyRTSis6w(s7ks31s(DBX=9CDPI$-QC^YNJ)1} zDka_BARQvzAl=QRV_$Qv^{oB8{}o@}{l1^}7!Jl{jyYt`d)`-_=kGWU-c6LBNZt*u zdr9T{)kb)@9C^=DO90h`_v7Z-?=Rqmg5xw$sG+qAPT-jgMh{Ua{yRr`5IYmVlBgk* zDHsEKE1X|+op|)ml!mv6AmF;Ps4WfugZyH?zBL18d5JKRZr>9(w;)V#_LQ1{$^tw zl&_3RY`wik&H`ZHqqG`;6VfQ zf7NlnF!lit(3e!Tvo^40$7DXm8$`g$Dv)m!GmBxskVIY>L z*_02!iC&_zGtfvMX*h>@K%fo`TBD9ugv3Dg>S0z8P$XFL4siVCYy9XBzC6VzXoTL@ zd@w#s8J#V?8G{k>#lUS5o?GK0n))8H0HrWqatl17b>j3ijMf;(~Vv&j= zttC>m$~4!CsA)83D3-&)RP4&$1dkqjb?u-9nYwIp0a(@I6W#q)ql1D2(7rIl>;cYb zURXlw^#PUXdW&y88$;1lazbQ^FIBY8w&pc%??AN9XI6_GW|L!IQmM270)LS5fWSNe z@{IadsXRxrE57l_*iV&Cx^xvv}!E<3VQ~nmZ_|_6eeS(%~>K*>V%5)nm3DYX0lbPmaX7QdiobU zt^r`m3Hs+o;%Rp?UcB^L^|T+7m=UE%M1~kzZt@EaDh&FGEoJ6n1?lEDNO&`~vHr>^ zrH}(O$;9405)i$WaE5D8QtGLcq#*9e*cmBz#JCPV z<)2$`HND!n?tgwI8L3yW3(+>!pANo}N?})_R>~s;@j?l{Pmz0bKB#3Yl~|&^F_iFD z*g3{5SX*dv+de=_vjDQuXt7E`*Ry*E-g<|fEN&j1j0gWHEOsidqk%ESk^BQu*vLlB+$6(8_-^ZR4JOh*{X85 zsOmI-Oi+2nCev)J?R$yND1c3`PW=AKd4fPtv#jVS?K|;!N^+0uGigRXn>LQ|!NCtI zVW#IQ->`M51?GTPu=tOZx3nrOXo5p2Tolme1Yp>sUNGwBT1ljFYP@8#Bm^fUvQc z9>VJk%A`PmCr6xJl$Z#Lxekg%_;;L6-lzL}2B?g9E@y+uY<;p7j;RMXD(?K8^QAg5 zP%QTtldUOzo!A-b}xi zVyUn1_v$1XiOWQ;jw!@#-y(8ek9_Q5;={l41Kod@ zWB&K5!RrTICipQa-n@T^n$D|DE2v|z&88P`zrSkomg;W3$ZNNL$ZUTP_>0H!`#7 zDT?w6q~!p_BSXGeoe!KE$nWp2OQ3CC5T!>1s;9EVW;Yi{S+0=$j0QwI zI5|fG5A&lhWZ3zm62I?1{vVfp6CJRTR|A)V|FR2s4VA7SE}e}2^|Su@%vUL}Q`mg7 zf&DK8czYy3mtXr0N&Slw)Q=m$qhE(ov`GI8&io(TCfs{4M8BhO^L+Rh-uep4TXWla zM*U^v{5gvOkuw-V?=Nnc|7ITe1FYu#zZdBLUZDTE@cn;r2chI=7*}qVt@WNL5hcz0 z9qIc2zofsZV!D)ElpAasbTspo=)ZY3c%D=X0BCS-ex3}ViOcKjId>rl_hHA|gV#eK z8&CfJ?Jq1KTi!GAHfngQo7!^J$egrAfXjo5NDtrOsWcyaiH_3QZD^S zDw;C&z`fD`U*@1j)WDxmWE|kSq99NBPh_0?Kgjq3K*oUsGiB(fnwf#qe@4b1!K$lb zcw8RGrGP%a0g1^7X*9LLv!~^!Eou`*i-aa4S@G&`?VfDc#e9?O1+-hX>NvHxYdG7# ze7&{Y4-&8hrBbG@VHO|ZEPH1L;5G*miP87JsSU%IP3tKaX3oleE$h)zyEFowN-LqB_Gn+ zyF2B+JD6OIR!#F(;5?fq+S}A~iRW!bC;|rv14likQZ4y+1VE zvW%mAMrxecpjvG?iOPU9E;o7*h#0#@Gbz&U2On#!(5!9}qV0Tp^#SMIf^azgJF09k ztQboTE;5($tcOcB_lp7gKyqihclDe~sXF#_b3wFOBC%D=HIf1jPb!T&?!m3ASm+C_ zsSgL!cG&uTW1qK^g$}A9(cqKhGt;Ry%7bv$T`N??;p34tn)1{0IBI;0#RW~I>`wf2 zC@4AWbVmgsfEZ1#ckej2_*Aa`a2u$vG|7@WC(tM1rz z8J8uZCXqNcDf+Fsyi|ZY3pOFIRi2(JfEfCRK{zxy&cFL5yfP;)$=vH!^cbG30>1mb z=T&AR1@RxqJa3$_uxgFA$`#6ORusLGQF6r>xJOr4^D1PkY+bfS>Y7?MLTAoFe^vU?Sma4T0u7dQoktSg;97gvq`ERbmFm6xugq}xP^~YgVTZ)4E$$E zPrgPDSYHQy8AAqDy^0;*QlGrREg)~-KfEF=9O*lNP7AyOM88I$Q^^Bgp`NMX_XZGx z9nc}ob+|qwhy*vicnQ7+n4EIOUt>|3J^$@)KH`Tk?q5Rvno%<3vgwPQ2C8um$4GDOo6WQWQVmpe1 zu_A6u%Vdy2pcYA9M@Nr1LU$+AY4_W{rjjE+uYuD9ip$-FCMiJd5`u6ctde59-QbLg z_8;Ilt3T(gwKbMkq)Mr?%%;C-OeIZN0?0Rwe5I1rpIIB@JCjVV1Ef$N6$~nM-f%n~ zGAO4<5O7vgCo=tqU&Q#MivGgJxr};f;~Oe2AhYysD}0L(TY3j2-zO{@p!y7IE5My9 zT^1@9MPpDWGALgO3sdw~Z};!LbHZeZRmmTtGT5KIVSsxxyuh&RsTxLR6y3aP1zD|NU!JQp~~8~I)k!&4yWX3>SJtg7Mv zYkP;Q%P^I1#^c*SEO{X7PI*HaV?~f$T)BpR?R*5K3@%{kbt8dNu8}>0^pD1>Ui#nLHQoho;~Gf zhmZ_2vq`{#)msipe?|IKivq(fgmBI$-S7BAz7`$$ou3Afy%TQ6!)P{iSeS-*lb9go zxq;0%hD!5q$JkK#+Cs{F_zV(Z#AuA(7%GHT@H44iR@LYYWfP-k_ZdCy$! zO&w)UcRo8Yl8HC2?t7?<<@XAp=VMhNMldoMm);6Ag(wyJy;+46Q6;fd(KHCOJH26d z$+^g#!I;kot(VfY5{e_ev~Fnd@xx+E5%^r%e6->|;xcHedy71K&}ftC`k+wuF!>L+ z4vnR@!baVWP$F~+$tZ4*##ojTa#w`{MH$<*0U|INX3OU-W1(WS4}$>FSW0YM?3tmD zeBaml8PNNhJ)Xu^kqgi$cbg{2c)Ybat}Ilp>(ZS^ShAn5{~*=~%4hX`{jpSU$UHvT zmjhiz$TiDcykenprk|TKWx;VOlUx;%b@!rP*JV%Jd*N(}tz}zaACALR8$s<0vVHnO zaqKz^)Sh}xI00INq>zwT3sgWr(m37XWS)*3hTtua*M0``xp5Y(dc{@9RkP)-VbII* z50E0r&baKYkD-obEcxpF$~UR}y_FFLpSP#BJ7xdE$vJ~xTQ%-DnSFB>O!-=Egm9|ePRx@7akGD4M#4n{uF>%HEna>RbO zf%eKTAHa93>heHY%`-Cv)D&qp(Y5iAh;Z83S!)hoU0q(E<|+-I749+DW?Q2LY9Ft3#WBX! zL|Z%|svM5yBrIm~Wo9@LckV+Aw@i+WCCBTnLJG+f_yEeb?V{Zl$JdLG=A#$~ci0hnF>`Cv=u|?xK^N#JEFOReB z_a>BFo|+_ZW1u(cdfr<2C%sv2Cuh3y7_b?bDJ^QA9{!1DxRR~nr8i+%`1tiHV6__;*N%ufD>vO^|An^fGGcC2=*zI};hOaDy)u0--HI)m~_p69Js>~Q9% z+|JkvC27CGFPsJ0Y|H{OT(1z_d4{yI{7M08`4~lz@#mG~S}j$aHY@?{8Q{g_ z7dv4c*7B>w5?hIFy9VmS3R7NNI)AiM4Ixc>XBW!Q90_zpstbDS+!63_g@KGF)8~^9 zfL~Z(D;{oqDBOJ>_RoRsC}7diuqc7y@5WX5`TBI*)b8suZ~OX1^R2}aVVDp}5*duS zoS{S#DSV!)K)VT(fZA0yz2YnS4vt%gU%ya)Yw)4F9f=M0Asmb?vvdXHiNk*{#ek%- z%i8J>cza{?^L-vTls^9c8i(YvZs1mXO}&UBYdDxzlBm}GnSb_^f>o1iRa|HFUAcl6 zi;Vr$PtWMXe!sruH=-k?j&vcAgHAqY5ONqFjM*<*M(i(f{i^oEdx3x|`gWcmtAmU zX?F75VHre8j(qi?smk-KfBpd7prC{Sg@4JF0Mxuqh8xSSEcz$#`Y?GwBZkRn{~=~F zP79q@nGn2dGOLx+0Y8C8jy(J{XdOd+U&y6C6X7sr)l4@JOaAhgZqc-GIp0scxx1zY zB=X1YgVL=s_e+9&ua3tw5ZUZts$tBD9!*WWwSmuew!2fJAOrKgyZcR+%ZbpoX5c1@ z{TqWmN?`pW?eN4S*zwXT4q1CeuLntiG2|&Eb z6;T(y-m9(85^#w{yS&7A0{q)?7)^a<;NCaAG5hY^@g3gmK*fC(@oJ~Uy&N#KA*V(AYm2|f3jHdrvu5O4rXwd%9E(CcTbh@_Xf{# z@zPIEKKEg^uxJqI_a*WPML^=W$El}Ncv3hWge)>ZUXq5(a~%!u=9daSFKSrrv`LJ)j0e zxLi+Gw_WWy(pD=~t4Rl<2g;Cq>bQQIvRO?JZv}-CZr@l3k<=NMSnDS{2DLU)saG+T zX0z&5sJDDvrP{BU>|-lU=G8&C6p>fqJSB)nmfnX1Qaz~#A`e+b>xr%JPK4Cp7XFSV z$*Z<$`dFu6(AYuHYAN&aRQD|?GRr9TfOb+9-0(yOr2ugtRq3Y+q%a+j+l8#^AOczt}wIti@F;kITo?21fL1+Uk0qPt2hpJGFQ8 z=BNKiBC8N16M%Mjsr!w_=sY|gut9?}bjnO_U(wbO)_z%}l+F4AYU!%r5J&!s)l%lR zd+{lfIB?~^siL4`wFcNZZL*4T?Aach{5XSov|<01){OKMpl^&-F1xF!9`lPP58F}W zS5~hBdYZ^KV#!&=u`A|1ZTfMZh!-V|FsBRX;3{0<`>76}*Zr~s3gm|PBXLhPdPdz2 zY2w%PV=|SD=9;+Nw(2VRzKnh^P8m_uh!VlsNpwEqxg_0fDf4*YvU(P^;FUfY!%0r? z9q8(bkBpZT2!mB?K3AD7_5M__V24V@#4s2#(tO#v+qFFZV8kc262xnY@y47DJ%ETS zSIyE=hHioWio=qedHME7U`ApxPFO;3G&#$j70S+R?%>pR$Z34WVRLUJcPh_Bk8jgm zR~kja8$@D{6*yR!ic9>itkzJe8TThEZRuWj2DRM0$EDK~H4zD>;>IK(&_H2<^#yXN z&a?h){}9iZ8-r*rGfI>BJoCkOc2uf?f*ym>3+D&iLpz@retHcc z?*lgL#87-j_MU(TUvYhj&7Z8P6e0QNfT#<70glS|_NA>piKnO2Z%k(E>qhraR2N>W zC|6j<%r&@4fgpF?G7$mcopHU7vD7N^c+%)>k|{6~dDic}ci6BBRCjp?Q*jiHtOqC5 zUMB@*SgU*z{4nQi1KW;(l>$0I@;)kH=Z0G>+(s8{nxegCM0aQ0@|Fbf#^a|RShTcQ z43`@ID5V?E!Zrr_5L(VR-%0~f3Hf}3gSgPm1OW_)Ew_>9QV8YnYXN4uq11!d?AP1^V`V-?aNYk`!e zhR-cxxhqw6lz~Fy18|Rcl!b>5nJUv&DRfG$!Wa*ksb0{DKt2v|d_;q&Y(u0T;`q3l z%Rk}L*P*FKApzp?+7EBXKc(8lV23Rbqg3D5;W=$5VQ@RO+x6M}ww1Csaff$R1H;AE zV`n-}gu5m)BdPwcYJCniThCOEcWlRtZTKjW3n@+IHwqu4Wq#kqg+J29N*_}V9Z`du zuXj*e16E>YHTl0#1gq|9G-l(OhTVdBtYCJkO-o8x(FDs(*nqxwJMx`hLu+ zDc!>MTO!K}hgvibFW={OnZ7@ERf1mzvDewIz236|r%Q`>Z;}uAV&8zECB4WAp_eQ^ zl=VZ_9@ggz9-tJt#;`K6jM9aj0=L*!Q5C#Vq9L?LRhp4obY|W!J2tUi2LX(%51_h- zohsjAw%dcg(5z!y38;<*YE=x0)(eZ4T!fE+Mhk{?*^HaDl9zQ2G&fAheT8hTs@66TyQ^EhS%pl&%dz^csNXz?0B%Lq<#53KE~BDlv>k z7OYAh3>+n8_g&g>1P-7sK9WJDqn?WN({TuM@Po{ z4l!YR-M_h|O$aQQsvT1y+v`|`8Mz>OLCyWw6*5gYD1OlNtEz=OGMb4YvG{?x504}+ zOBPo zsr|8*++X^<$LO5;((ZJ6WZNSF)~naW+R0&bGTzckak#|kF@97 zbEq2qtZ}NowFYOX&IXXxg15y=wg+ayHErf6I`nJ~Gg5%U4u3WPZ4&#rJp_0tvEeVH zOI&jwO0g~+9XT2qqqNTDR{_u3im3EHo%V6;?be-83!!2ypoE1J@MITGmi7lG3I}@Q z#QMe;`g*?_7pZ;x{V_6QZsq&WDMd{$u2V5*{=))vlu6?;mnL*VG~5z`6WD>V=l9QV zj82`dZoUnr>)-hGMzbBTVL7>FGP9dfJzIJh;P%VM&9E|ec=db0d3>*bri;BIMisX) ze0%E9>Q*$sP%$Zx`Bec)Y=Kvq1)st0-q-UC12WV-DTPN4%Vw~HfHlp|oNM#lb^A5C zy5XAt=!T3D=w<7^{W=RQtwH3c*vgdPiiC{EUEvNwheXHX*fMSgT^ff2YwPM{ zd^Y6*!a|~7c=E3T0nNZxlt$E=H*VF1ta`!QE4Zc<6=pUZgEOI-4r3y?>0wqqMeZJ?|<+keT2FCP*w}VN@NW3_# zx`kuK3h#ri66m#_Yg3t)aJ^NvEOt(R!zlR3jOv*T5R`;apHUPFp)SBK6C;VY8^%qf zp~zu)oNq{_%Tr?1*0qgOihzOKs1d>iA z2!Y}b$|uz8Dastm1#xj1C3C)e@t6t#ps2S2v2||U7ZOInK>-;*hmV4+%X`FrDD)kr z{$HXwU6>%x2Ogt{mjQd?Z7a9<3~Nk$ZrjGO0yVYcwZS4*k)>O0$LUuLcwtng^M;b? zZz%wqQanT3q0xe4H|8$&&bU_uqe#83@nuWc)hoA*+&75o4eRxa+x)~i#`7GDpNo+z zYsbg)6=efDGqk$A!;G=5VJ%YcSn0u(QCVc?J2A%k`Ex_+^zxk%0LiWH&5f zrovbWYQW>Tr>e?N^*M}hD)CLQP9cuvPmhJFnP+lPD{dy(c6E#WXaoUx+1!R>jey>%D9$m0h1x7OwsD<5qz&sEh93WeekL`Sj%&z%^vpT%v$Sb}P({wyyNHFE#ywJS{1Kc{jil-W zLDluNoGnv>vKs={9rg~)Ik`pPUa+mKwjP^ft9l<`{m=p-qKlPIpXm5>i%p)x$$V$% zc~5R542p}l18LzKlt)tU@LskMrRMfqJA7Z;G#LoTLOe#4fj!byx-V;6-#QV32ztpf zFCTiSRma-$)nJ8K1iing+2?v90{m(^Dl}+%)3`$Xzuhs<=POY6Bu`ppIqVqb)2Vq? z@HMH5y><*)&Qb41b(8Vhnhhn9F#iyXn)V=M7NmF;`2H~008EqPLsMZ9FD1o7WJ|AEUSh;ZmK)q`7n9SjB_vq2w*=}`fX$AYo>sCsD8EE^|kB$jfK z8Mfaj&`QRXWd^9SB38wCc>teR;BWM(5~pHx<46+6jKJ@d`b7) zc+w?@s~uPy0wCt2kto1MSK(B?SH9OFfqi;G#Bjj|7O(YbAcL)1qdhh-liWmnBa%SVfk`{LDNZH3@l(^o1W0*b`M(LrlKI={ynt`{fTDnjpa<^2Nh=Jbk#kk zAbtMdNeUnTk66Jg+d%JJ|4dOfY7Lm7s))^0orvmmRP_hsk$6WEw^kF#>R)O?sU*0U z-f&-32blERnn1(0eqCqqA83I)oNpv=bbq3FMmP=O+VauT3b zSP%N=j(#hkoMaS{{^fu9KTK6G1++$Gc4w!4Q~C%Sfx{wjywOjh$#vDAH)?cytJz@4 zvNc{&AP|BzZaY%#=qo(>X(UhYRU6gZ^*uLf3`n>6A8pp-qZMIjZ~S5~1q8x##yx?U zih|`D>Q4@N$q6vK$4AL;g*BU8$JbigiD3q=^H7^_z-U9Qy(x7ZqR*Lo z|LBamKJ}XcuDxQQN=61UAOQf4@r|k8rQgxz?8bks$&levZ}17^#EB&zw)Xkfbj`s> zG`B%|Gj2(;B;>yX(qW-=<3mjH3jT+vpJ8D8Pd4bq>>`97bo7AELT~7O#s2P0T~kL0 zwvvjC>-B|b$a)wlF#NkKO<{LYRV-8|@o;k!1zmf}uXdne19j@Xgw$Ye-yJW;D-N}0 zoc{cpDQ53}e%BqQYfKRGEE5l*koJUt|~3(lhA;+ahZlORn0cuv@kIQW}uAq>sZLv)uGb%0zEX{I~ZN;;iPYr0-r?(E<8tmsdY z5-6q^_&aQtogctCB(cz-4clfv&?BYI?H!mDcX7obZ3iVB8Yi%b*bwe&BVrB8C%* zLLwFs?&QaeB=&phD#K?UX#dcUm)BJ$cqFQrd21v~gkdC0?8C?VYrMrer;57y20!uI zn}dd-6}#x!%|4c`AEU`nDNwpsT-)f4 z>6a;fV>Wt_^CNo9L>6KB>oU9TX(Fw9rM#>C4rLJfb)I9E1SCZtc&Dipd$Kv?xI@-p zF!^B^1&J1b<(^znj+O_P1o!^pn`rCZP~`5vyQMBT0H@W={cy???a=n2wRk|4e%?q) zuJhORM_5Vkst*+D_fa@g@lcT81N=wo>O8ikL?b2${Tp>bAMl>;kItrvg&2dI8n31M zQU_!~oLl0N&3mmR@MGX{8Tz=hekl>Ng~h)8`rSAC@@W{UTvsUd=aE^f@i?Vm>?%^% z-63?qrXWLmy~4-jl@>FhZ=*crD!O)#ZCcX$niies8l1FL3YyOs)O`HJyB;kYA5KZT zY-MAU)Xg+}@9qzPDG>e};tihyr~+0*R0!cCKT^O$SuK8Yi74)-`h1`_{!aa4V{6oC z4S19wO*+6O>2*uSdOy1A`xKT8T+ZymR|O2q(6Q1)O2={>>uI%M3 zFHk6#h!=s?NMF&sIn_&ie4?c#WHLfRUQ8Xw?#VS`Eb8J%*d8YjmK+A_wLox#SU#?D zgD01BEwiz-lqU6QM&aUN2w2g_qMV;Sr0L7oD5$6IQ^1v%Iz#XO8~b1H3#jL_`!?M~ z9ISgNj9HWw{q(oC=bz)HMxHI8>w#n!@p5@`ox@zUY&u<#QspU=dwRD~6K(>kZ!%IBTWa)1*neXNKDQcT{9$9>R9o%BnpCkyiQUW&mkx+#|M+_q(L^?XVxllGI+iEft7bI;?3Idpei4ym>jhLJox9L*bF+p{ssGK& z9SCMO%BPRPS2l@OYrj>FcIA4uxf_UWib1vXL$mfUM5d6ID2MoNJ@J?HTL%u?46?vv z8l|GR$b0<)D01I;r%JXpSC@)L9TmA5Qu0Y?If`lpfys4@4Q$wu>Kt!Bp;1j1-3x+4 zGO>s2W6^Nj>9I>nr{3~7CZf}K@Ln&9X+JD_9nh^sM_jq{+zSKUak%?bhDnxy2soGJ zD@*#+KY3OhvQiR~5Sw__U!q286uujUMn`10wMz9yzb%6-n*77INKm{q0S&k2>{8*2 zzrh+iP{DY!flW#Pos|DUT>ts&Arb&Sn=%QM5&rQdgx>7X#V(xpgy~P5@~;mTpou?D zr;p6|{$`B)@p2Slz;Jh=8f$*~=iL_J9SXb0na{=bbx3-8x>#1qYaM<_(4%zt{RLz% zABk@E!^?{!JqQjyK0TNnV{xaMy3;4hbN>2<{(OcTknFib$PXU=`Jw;vU=e)4v6`#o zqJMT5PlpckjR2Sj{|K~xv;qd)+iJIi6MwVg`5kBdI0WeY?UVN(VSe8?|IN?V8tBqc zbZ7X_*6Xbs0CR_267jg!pnuG@g0QLmvqApJvZ_e``g^dZQziw9z z@Y=UK%pTUJGjXQ3@3C@LQ6_PFxYjUqq5sX^GR}pxPtJzTLe}z2!<+WvCYBny^Hu(CF|IPo= zH{>pa0XWV4-T4M#;G4}5K}>9ZO(L`00YpbwREmYQS>g#l)ULxJf3sr#XI2e-@E{#U zkSLH|ty&(0oYOo;z(C>Q;Zc)cT3WKb=s|_rc>HLYpcSBVq(RYNa4|(tJNbEN5r3n z6meURH~tKYfimy14UW&1zSZC0TPW8Wmq{eE%B5cSc6($=d>*0qGID4KjqlanI=hkm z%n3&N@B0DZWQsZlGR8W}WSc1vxa`hSLUD0u8=MZ}@)c;rhw%A88T4a)2V{qhl$~9G z^{!l06POu-1kZ1*o69RUz^nVx_3-r;%9JALqvIEmcbqu~DH^0L>%ZQdb^54n;jMSN z`Bk=XvtLSv*z31@)JB{z=Kuj5V4{wQVxR`%G7AhK6`k;XKv*o;Nf&gTZq3h=m?hK_ zp4_ip>UUFfpG&ESKG6KFc%u8;cV#>WthF$BS~|-0x1LdH7Up8mtluFF#P;fdBe{0y zi!eNF;v&_WpkXUWgzhn#X^pXsA`Tp~a);lCG-?37$3C%|Oo*pT7A@EB?Wnb8x^w*b zMJh{dEtt`Awn(i;f97<$-1&$J$OYo;;ch@}FmDrOv$ChuYViS;R&l8P?v$jaGm$SZ z<#d@{f}fvXFSuW_ZL^<^)Y*LjpfiW8#!qtEIgp_ZqH`Rf=yPr14k#_?xBISK_UQU}|DBa+H0c?H?;WFM0<8vp01|#Y@b2g+ zgQ?nKPznRge-Jp!%3{&qh!O@n9!zw$bt$Az#aWDNU4+qatLA=pHXE(amM=I=++3?I9CbV ztHXPAej;wx#k4PJ4cdG~ug};x2KC4J~9Ax|z;R>;YGZsT@WaE7u(i zY_;VqeX{2~F&`h^cvpjF4FHC(^U;{s#C~U^3r(tFuG2o8{EmgKnk7h zepwz(KYwC*PhTzRo^++X$80l#;Zml}=dxENR;C~r5f@@p?XY77ZlHHZ=jRdfmiCL- zb6krtW(kQO*@2faP!E0pamVCTKv1gUSFjPI@t~_p7@CXcRwD@x%cqS98j3%^Q*iFw z9a-Bc<3cxvoN^D3_%ZxTPcJuo*G`6b;zL?Q`iV{ds zzG6^DN=dgscD$m#e37)hyLn8u;E1qII>eK%*nIElt=`}XE$`roiufj8cVfTKQZ6I5 z3yUaiC_50ZYhaV9i3eqp@TRl31CqllJy~3 z2qckF0~jd=EO8>BR%&pXXd_$3|29v#tZ{EJ z!S=os#jZQay0b6c;3TI=HeVk8@&x1|Onps76V!kN-TM5jZvhjUalg^`Pg?r--tY78 z@wpKbWHP(NfDKG`2TdmzQym_U=Sb1f@~*C;hc;F{ij(tdZdv~G8CN6(b6iCaA0~jy zQGlw1!np>pde0pNfe6`_^Qz(Nx;No3S%6^HO`$K2j$|`Jqv4EQb7YT$D2D;naRr-y zGEirDU0zu(PvYC;#VEWV9U85Q4=; zxjt~Isq$&*Yq(x_xJJ3#kmfhbG8E=;e6AdWwb(>)tipWN1^41RKXyiL0e4w4@9q_i3KLx0k4p@2ZZH4w zzQqg`BV#fz<{NNpz{3ArL3lhJhFw9%a0UO64EAjScdOOwec;NRON){cL~^ph5N*FT zs-h}Kz;PN-sM5f<+KWEEp^D*81}!p-JJSNQeo~1@X%)g{x6JWnaM;Y2`R)X$79skg z@KhByvwj8T{x8U`kY}K)-7?9e*jB zNclBMP3LGPU%}46-_&U;Osn#!7hUEn@qpc{4so~~VA$)Rygr!nR+ve@=Sw@x)F723 z$T`1v+!QeZ(rdJ;qw<@RkHn67Avus0cSDZ{jEC1DE< z;cqqk`K2wI+`<$yo*bmyiE&OSGA7=GZ&M&gDm}Z)d-!9qoMv{jfU)PGlkW5Ew5gP*(4~zKAGZfP#+Ii?0)`$ z^8|^2JD+v@wHD{O`m^p&l?B(mFPdRbIQK9;-CDrZ%dygdYPRT7R9> z-PU@PSHBLIUBEaUy_5`ycv=70`9CZ`=?RQAEA~r`f}(w^0UYN~1lK3EjW@Qa<3!hI zd)S3rWr~$Jf8>@Bv)-RG0;A;vxpTrWV ziMZUJfTBr5nct4a^>sY}{rQ@2w$;|c0wMR~1(UIuW#cC>v^gKrAqRGOE^?3{uj}he z;H454s}%GGxfw)B&Tu!-Yt)m1l5gy4Z%hFMXF=Ifgec zH@5H2#uByPLXQ+Ev#^b-7@hn&zl^l{z6^28C<-ugx$|MLl(&6Zoh1a zWrvNzf@oD5m!Soh>ksZycK`6eXXp`6D2fGYtp4gnN0Di!l0FcIO9uWovBXL{Uq*V$ zM-Lyy{tQeE^L^@7jJ0=xzh6;m-brk*TMKV$V_NCQX|tSFZiuu!K^6RpTmY_u(sVUk zK(~~;=o+dzGoASt~5TK@XFC^oHi@9fljp?sTRTD&;R9U3-15 zO@h9w;=o!b5-!!^fWF>yhU92veRY+fY!Rj6hs676l4B?17 zs>KhfU%SvWceRN^pW_>0&HuRSpMLTTmM4=k*bVpL?Yrj-^5;pz!MKVodfong1=-@% z;zo3~9yc}zFUFrbRK9Gv_<<)g)jOp#NHa4f_q=&>4LRk<00Q^(`vld~)EAUR+_ffltK*{{QI6c|vuM61 zm>FyVvtKj_JE254jwTc93CDXk-jDC+4p%az&3nIemwbNv&_HK0>*#vh<>MX4-3GkD z5pvnnWj4QSV7oxI)L{4R?6`Z0WZPixdptp|+k>HK->3J|I;tqIu%4z#F*Kd(X1NW1 zrVK8_Kw}cMUF+M5jQ|uz(Tt6k*Zp^X(ZttZnJrJ#2ywg1vuVZ+@n*~$&lxAR^&TIY z3Wp-bYjXL@-^>8{RKptAVPO|q$u)yFSabSoz^EHa#e}mOX$sL>Ss1@v6~pM{$oIO} z41Z3q$7jj;D|%$>Jiiz~)| zcE(qoUp$;>6B53?sv5t2cC@*@=+zIpv12dW_Aj41f-K`$&{oOgd^nZsO(9=l7>0TN ztqQ||{7Q$e^5UBTwZQX6=hxVc>Xm{0(sGWwD8(>4LgqJm;hmgEx5x;wts%~{$^?p( zT8d(E)On4#Saj;N&g8E&y28wujm-G$LZ$bL#v5JGdsE-l0IPp7B!aip8XQg_K9#!jG=Jf@}C8%u-(z4ud}XwjA!Rka^`RlOrZf+ow-Z z4tLwTU|}yTW~&Pze)A_VDP?(+zf#%azKvzv`&C`7#xzGWt=XBr`7wPf-#FD@Jw$)# zYyA9xY2InpX*asrqh1(ogKL_{afp7vibN<>M(8y|v$Av%735@g{B|#|to8Q|Of|f7 z5#=@&9|nvE@b~V=hJBzc`kAizFj5n8^3tFRPMlE+*EuMKQ7>H8ZzUUsq1^Ss`9i~U z{q@2+u`eq31Z-w>W1Bm==co_$Hzd7HQGFj-CW46fNF=-&>Yayl#WP?({E5~4MghLu zWHc)tV~C3)fnHN~@BHLkPPCv9sp;@4*MjCVmr)v8^!XkSC0Gz;A5v&CmChpAATSJ< z3cXi`Y22;1Q--G(3h_T*G$XW_^?X657^`vVn2}q-T}IPi+;aGiwl?)>ID?Xw2sjC4 z7jkIQA4hNBPnG7piNLmS3G853&Fady{n^Gttdg$^dGO+F`?k!r?&@^Z)AT9s3bvv~ zX--!=Ry-?;((A6LNSh^^rlo|9z>*bB86`o2Le^H1V5J>XF$!+)%lx8FXRULuE!nO% zVkUj!^{I{|%!&lB-#EM`E9!gf3Eon)Zen~!U!wISI+r7#XZ=qDxeXBvlvQXo>iL@r zy}hS{M~um~eq1;xYAN5e9>28s)WhO@_&R{B$g-y5$gKLXt*+~;mFb|rWc8ZQuQc6U)=e>5<9;e}h9 z?r6T4M?3a}%>5KS{BMkP z>90S%?$&*NVE*W#9?Fhqhb|9@O#vMtanC!KqGR>xI=dQZ$7<~aCfPL|=|VPW^YwCX z`u(EOxADZ*6WO7YA88t{gGJ~%Ut6^4LRSNYO4y{%BE~Ba%&0=S{B}nax1GtqpOn~S zI;~BWt;C-@nKwSFePihyehoXIY3v+9aJ8p2EZM$whv`BN@67O^1Xb|pu-0}hIO*_6 z_IUbB$(VT2yIy|vB?y_!*mgESsQmyqXlMrM3vL9b&z~#r5*;D^Ve?dD!bwvj5 zOOMx7g9OQ8C&~@9s_=xBo!e}m=@rR+JIkk6HV27K8I;=}1<`b!bccPF->WbgDe{NE z3!tG9taQ0Lokok~6S~Y-v2|+R4924Ars@Ad}1%TZ>bmhrRk-u})d=BDHmJ`eJzRhy~oP zXD(ceI{RtNIPVmSbPAQCNR)Vj5HHbgrlm$0A2@1y$<;ijPiS z5iC8Cpegvj`a1J?DBtdnCn~$435Bwjz3kbynJgn3`!4%hsI1wuuaPZFGRQKrCo#6c z6v~h-`;sM+CCSe3n(x!I{GO+8UjCRrxL-4KpX<8MbIJ|?d<`D8RP^(m`mMg!V$ zIlOwEYj5|EABK!fCbbUso{99KV%P@W$_24na|KqdsJ|r{DnX1>P7vgU| zk$o6o&?%BlcDC;v+@t7Og_@4u?)3-nSU@WGYQz2+e%#E}XIWD$p+9|GYqSV^u<~*H z0=A8{yfr3_oVUBDq+BmGjww*@7`J(v?bQ3s!G*Pz9xXHEy?!yK6Pt=a2Q4yHd6 z%>1-B{T=+CwRYo|k6v&u7fT1vgW6B~DMFNQuTETf`143Ga*8<3$IwPLt{X#ZZW@E~ z{xmx?TBD}?igZvgu%ah)J>1N%&f{xXnaB)ly%4<5ydf>XFK`BH(e;x2ZX@KrjJu&x zfl`(t^YuE>w&fPg**F%Lx{V70B)2Z18MN)6HpgwL>{iq(p3Ki}yTL<2R%h1A1#H`; zYAba%ghiZ0t?WGY?`GcU=Bb;=WT03je^npQL&8v3h()Q!9Q6t4R14#vgTvL;(Awqu z4M!pSiRUf>$zyCaz3}Zy3NHgKU?ZLV5=UVr(pvS>^W_EJ)uchoRbo;fhx?!`q>GVf z#s%OsuhZi|Cs_A0LyUqUImZhotK%g`3*6Tkc+b=Mm`YR5$*!k-DzVjcCQ&GyZ_&Qr zchULPggBz=0&bkdXoBa6QFMmL_=WPB)g2E#iveQ#v#*>QXDSxrJ9pxokl$I87+u5y zR#uUR6UQpsK6&d)WC$e2&`Pi>BanvqIydM+S85!EQAvmTz42a38gKG2c~j;j#I#Lm zwQr>v!KJ4m02eB|y+n>?lScG`6JxR4)kq;aP8b4 zheeZ2S4)4|=>4zC3!8V63BGU_X& zH+k&W`d(>S2tqFs?VX;y0~#p#YW?By5aYiBlY5e_`Mj{H&oTH?OP(Uoi31I67=#r%v8hSUcU3E=|T<1w^#MeM0G^i8TqL2w9+qYm17?j!|k zJ4BgMBTr1>0UUY1ihMJue>JL;_@t@e>NrcOcW0J_S5sG4nc38qYh^E!B(EV^8xZ4& zPximq`nD1hKA++F`gQ$_1}nDFGijX6Ze|+E+?6m`Xv2IwwWS>>XLp&MF1xv~vWa6% ztbm3M(wUcdQ0kiY8=<(QTjz%@B+w_eA#om0?GQ*b3{h`tpQ`2Qj|%jf@6ww$r}`?G zEz@4s42k#{pP-I%TdAwM5f!(x38`7ZQIs8n4u1aqLeC^#J*QTR3!l#M{j9P!gr9>S zf6$M=9uSEpwH$ZgDd~`E-~DKfW%TO1ZvFu!xm<1g)is{65SNZ}t0t$&d|~RHXhSgz zXzW0>-FvnyL#I5qbNCWzE4y#|>la%|s(ci))MU7L=Bde|SJSUk7F z&UFAA&iR4j{`fb2*&APDX>e=97J=wlUq=M8&YnZ_a=VzpW?Z>Zw6D~QFPW}Gud)L@ z#>L)m1E)}(OdD{;M4;}_u^s#4n`|ee6!e zBlxS8bUz^meIti)56?u107Yp~9ciG0zg+&jO6qRM60vo0NCXmocyOS%g3nh=sxy^n zu!@kfj3bv=eevOfB-X(J`6I9PQpwFx*@xTes;cRJdulnVf~7)0Qi3Gdo|Vo6OdhK@ z?HuT&kO;mIf=?K^zUiJC^bv~Uaq>*`Qh|mQp0x_Bb?jFHrE3ldgHT~xQ3t4VteLxU zMHIymySr|^cs7{srUDgv3k~ao%vv+GMM^R?ul~UQWRcd36mv=b5+~na&j2%ONJn{Y zzedX~Y!k{F(*h(IV5oB0uDyc~iAuM6R2RSC?Isi^erHtIvA@K&#@b=ll2P2Y1W1eu zkEVrR6S0~z-1->GaGex2`u!9;&B-7RY4(tZ9Ou=K{Cozn!^~5}44$@J#T{p=w=()p zomp-5e!4PR@Tkr9?WdwIIJ>HQc|!Fkozu*1nqZiVn02eSqee_f2K&{h)o9dCqa;EI zwqz_e<%V919WmaV>p90WR`JG^lUwn$>mAET3YbJ6ow?Fu4RS%_cY+CNl#$Um#)`h1 zHFKId&&wd+UjPVY)y(%4@u zb?C3#$W>og1zj>@R`$zRNPO(r~w$F6~<3(#nK4nTn5;ve$zue1k~97A90{6Cs<(aOCHtL%zwE6!_Fk8kh^0N1?o@%o4|#WQXcXOzPPy_mhDdFk zvizgik#Hf27CL&oc=p^4S79u>`IQ(YNvTIy#S?qYKVw#T_hsNnFFS=b*|$#AmEEav zK2Z80x9l4S_N0e9WBrjRRvXOl^x>?_ffA=Oza?`;bog-mhGfE!j!9a4AaOtwf1XMFpahGUnK+SIlWuTLp1n+jF@5-_Z?^x=yF_lh_+eAf zV?FP;3hx6-`KG+{G7j9oRQy<*(jl9~tt{YHHp_PEswck>m@R8SJyQJTE~AQk%))yO z*H_x=Ng}|?m|{z&Q{rtr^z`=-9NLn&JE=R9&+2Xch|2P8?DpANYU^)N&W0VpHz(R& zH19IAg=U$oHBCuEvS8g zCdmqDs?9i@dwtwOBnv^P zN&slq;U^(*+Q3&piM5Z~mM+H!KCE+1?sbaC6#^#U$~LWsa&S=$M)y|PB2JZ6s8W9B z{VL_jUP;{GxTz1CUu9a6p^?G$p5J_zdS^J&{H)M9hJwGKF7FTkwrJh5IsaGva+~A< zwgXf*dAc3%6kOUCi`wVYhQ>Wyz_1hkd?%DU`fm8Odat#Ml7UAU^6)!eoa$MIpux-z zL~6Fl6n|LA1@aBcTfY~by!Z>TfLsDVQCvbJP71&TJHkYm2#s{e<@<{t5}=;lY3Tqq zDwwo00W1k7EC?Tonmn1c^*;#Jzab*;T0nWonH*vMSL6C$c#r}!L8kO=i;v{L|L?yq z8ElUTLVc;8$D{v%IJ6597&pqSG~hcQDSMKZmX;Uc7(zm3wZ?9){~ZYV&VOxf%U8Z_ z(wWH7kTw`U_&XME4d|f`NbiTe0+7ef)!@eFwI_t5$Bd9e?-lKWdvKrs?sdZfeMh(C zXCrC`YQ3fAjhaon3-{GhcvHsfJrJN`EdZK!PXO|v7SWQBubvW3t+)kz+J*1gRIH47 zDRiaraR6TZ34{4NNb&fu7Wfka3IOW=MQfm>&Hot}*0mro#`*B4%g06&@FdHx*y~9* z(qkCN@7yOa6Uz-O(q3xd`I9B>WxhOI&LNN?kqAWQN8?XPBcW4-9gh0Y{kryfAo7&- zyezvNe^u!1`Csw$D}w*J8#|l?^lIdrizr#U#Yx~zlKPnJNxlb~p3tSPvYN+N`Sk1a z=#_+m0sGJgE4_lz+`d5T`~0r)ZJj`F;)5|Etc z2l*GBsr9D{BzW2>11+x{m#HS5q4HyRNQjhVR{#+DeV-w#W%nV2k6^)w`T|M{HeY&? z+Ics`c+BeandJkNu-F&sQ%$ld>%PF!^86)XB~7{czUoPTYJ z>*pJ59fnY`V+fXSIa5ARPEY=y5&oZ)(KH&w=bjV3dV&+8MW*mv#`j0M=$%njBM+sl z(C!0(>jI^QoaBzeK5bDM8B?Xpp=xDWk~aMdFA2iQYL8iSL4BFt(9y0l$;c=(JX9n3 z`?)UlO4QZvO6$Oqs*rlmWI$SUeH%OGZmj}c$Rq(1efVl`uDs2MQL1al$rztaZX|SA z3dlgrb)_f+5qx$#z8=5_@bG=K1GepeZ{XN!0qrN7jU-!Ygn{9^GSfH4^QRRJAQnTIu$UM%a7RK`ZiOcDP}&mJlJgeJ=u}&Q`5_Qja^e2 z7NSz|-`si`S#ayM@Q=AbJOEbI(D-x$RpM#a=3;)SxQG<)dXF(rf)FM~zn}_CA;7^< zeU8M%3Q86+r_vh7er?cyMuZCu?Q5q1)KuPm!qYaC4Du(z$V|(QGogm=6E`| z#&y`(sDV9T>1__B_J$^{PL1^$!^X>cLW&HaWG?H=YVM>R+_41OSOt##;a#)+=?*+H zGDM)W;E^nfb{wns#V*^R!Be0uL+e(*wY} z2>Z1&I&N9sA89^*PPyv|OSWT|bF6+5HxK3tlCD~q+jf$B9fN{}Iziw_Au9G~p;k6Q z#t1!?*K=0s3Ice4+X83mdq2k|xr~?BY9eD`NN~&ts7pMO-{ylmBHJjMeP}6t8dAIg zb}rMpTP_~7-M{%X!QRS%Zp19{>L-)J(&ZTuBKGBDLH9fuFYod{N|29#H{d8z;8lK?8qud5LCweZ0|+~Tw!GW?q(zgTB-ckJ z7?=zWfx%#Pu{_cFw^W%6tTXpkRjs;z!;Vf{0NPiQ4g?(LSqo5XPcEO2coVlYOxz@BwlL~ z^1=6 z?m_m~LoJZXm*>O@5~vzXQJ0X;t@D#zzn>Fv&50g{d@Hheq^*y-YZA>~Oe)Nw4Cz<| zi{Y4mtjqZiDb?ekv601G*JllGYCzwv6o&M>topcR(*L4-2!$*Rd9XcxpQjy<&-wJ5 z0QnbOJpGi`O``AP#KY~m(Jd383DJJmgEv}=l=Yj zAa3C6gfx2ZMu$eo->dte40#2GzY60v&J*cX<{lhE9pf0N(l|S{yAC4~<}AHKfwHg0 zXiv=F0{tL`3SvLejn6-d;&M!a-COIqsg|`fHK#tR4%N@yp}}%fe^W2#hsU9cYA=Mb zmV_bii0yqr!Z`b&Q=fawwtMzYPHp@l99fCH$P`u{csek63%Ff?<6%)pi-I&D!CT@) z>;#%12N(@>?NJiZc>tf)w<@NGfw0lbGb=6(rshIaw{io&j+xi?>=et#SryUC$FUdHk`%xlTpmbt|G^ZXS09Db z67XHt5{O@BMD6u+7xA*`y@d`MzG8HO%5P+Qq9y8kn5+|*r*s(SPyA-D{pYG)=On5| zG}0@&Q&sB~9c3a(2WPpP?(;@p5K!>I+!9E3q8)HJUxF8sNSZCW(vWTYn{m&7oLhp{ zXe*+xI)RAUDaMQ0Wel?y#VcM=gLcTrDlHych06)G)A-M-mW6J<6vmrG?;-Q8Yi=bUr*mA8NO zSKZZBYx-PcjurA*Rty;t7ZCyi0$D;_L;(T<1_%KGCl3z`{)UO`-W2@t#$G{82%>BR ze;)$k1B8T#ppuKuQ3i}!!u(9%tMB*tcq&QKJdpqLGN+UCtiwu5atuGeO>;qmH9hx>~Okkwsm*5j)or1UogrZ*HF z(8&;(djIR9g%Y~BlIkHdoy8{ZA8uoMBlry{-vuGQvO} zaR29G{=H0>a`+0W2OR=-o5X)y6E^T3<=_AL-=cwkInzPclfP=^vRT zYiFkoRdbv7^%Is5ChEh{o zyN$X=_}|o^0J*=vFD@YgbdY{)U|^8)_K%udHh*iQ4>h^I5B$tW!R&mWH~9ER=X6J$ zB&4}>idWAZPAla9F-f)v z0{nSqssEwDaOpbzD^gYm@X_`Guczn+Ul z+HtC)d?YZ34_?y>C!_{!K2wd^TTgrLDW+m%RvGQezVso$_n*KI`>tpk!q&v3%uN$F zFB&59G%uAKSwCISt8p~W2lYX5$gI~|B9!JI*hZn)hQ0fmO8Y9@h94vsspN)!JD*Du z!dcj3vqw`4`+pR(=7_oGTrw+@J_`^+D zI@1+^Vu7s4rYN%QYp3uL|5tcLiU`r8+Lb~ZhDAIUZW$=`YgB{IDku(zyJVry4VeEj zIT=`D54^wmb~X>>lXV_XBF|rU2nb~-Dk9C*;f0#hO#gx==Vv79#Bus?;G>$-J8<|z zNq%a%l-Voop86wpx=$w(E03y-UuTdu8Xh0vh@+omEjhCeQtI&2n9bO`o}S)c)y+bq z)V5CAmt63OD1usA9sxTWoqwsnSm2xPQb`we1@eDX-_b1eZMAeIA#TeP92lRK;gg#k z1C%dyus-gd*OI!NI9CbT0|>!uxcZeh8JyXG(0i{j!8*Zb1+zRQJ2o*KYf_#yI%jApjx9jJ%e^zagFO=A+>@E z`LyxkmHz28_CN9L!V7)3d~p4BM>)A;Q8rs*Q}i8EHqnt~slJH?X`L{Ni=ZI!T=gx4 z^=jjzXuVoN-TO%V1wUL?bNJHzT)8#@1A_@#HmijS+}u9dViwH-;ibloMv%3PiF+qL@ipOlgCTbVR4v~s_oSKdRK zo0})IJ5vNA-$R69Gj?Ae^0{E&;J<(Wo{4EpEJ>Dt*nLR{6*$JF_`JrQA&`h#OF1tMR=-)lA z_Kl$%#-ycz4VPV78ll;yy1p}ySX5-Dph=_oq4tzVbR8ra3JKbf@+n}aS!nI?l0*ky zUtgWg7Z7y~%|khcJH+e~`RH}x^&$S3t4;y?2cW5;>v#`2e*8~Qe z8{gA#FFFO@zUM(R?3ELAb8~BCv-n~ftYKWM^FA#j!!J4-ZR#T{@NlN|>-`0mh=^#S zdqiqrpg~(pON-rbr{9V!Bn=HsMP;R+kO$Ak1}D+oqHCxn>+c+}c1)bT*F3#gOCAc;nS#>@3zx@b|8+4UUftk%YWHA((w#Ic=?Hgxal6 zP>FQfWptQ;)ZG$BzRtp!?(@-5@ zTbXZP0#|>69D|iE7eUwIFJp9hgmJ4gSu{uV8v61|Vg;}-Ixp;AwH+-$Ak=RY0y-g>h^AX(RxCUpXT9R61?f}fG7hS$o_GDa73KIanY^3cF`iI%hIr zkQJ@zt8`x|%*2Z{!pvZDJA#g8DiZ(n@ncUx)==L!FV9eicGp7`v#GBU35Z|#oKMXbk9^9c{n8i4m~h6(k`ia8SymEHs%ddC?J!cI(2e)c)$97S_)k- zOfL59i1>sk_Vux)<|i#(XeNgj+NIpCpz!H*w1h@OkrRa5OjCflTsv@CqukAF$E1W< zdRO&Fiw-J#S9o6C!aM)m0DTthmqw8j*S-CNP!E)?N{Qm;)#1g@B{~Fzgw_@H)mSG( z;1WTO#cC7+dVahSWaNeL!`D5);_u5}7M*khelc%N3n-odrs}(s!!Dp_L@H#UTasWq* z3Fza6`tE>B9FaTw_BPM2mpk+IzV*Svz7 zFk02}&}YZP8Ds!6Iu1@yUlfty@&mF#rf39ijz!W)p>hc}2n70iF=e*YXfMWt$MF?{ z3R(8c7l1|`%^hfDa8RnrL}PMb0Kwe+AUGHv=kdDPRq@12iW|w*Vq$CSdZAU5oyBqv zqGps=YONyJcQLh2&Pd`eP0fB&OwOE63iW5(=*Y$G{ zIFmi9&s}dLGMox~w=rm=>&h_r0k~2c--ezU4c-*c$bIul3Mb@NZ^?>t-X=oA*_=7{ zy*=0{t+XH=%J>AeNhynY`ck6G@Uwp$Q+JTi`E)M)mHtlA^z+og;-dcGPVGB(FPeVp zvDX)W)KqPls1Xj4rj9%dH}8AC!*=;8K*}=>UFgbHb6}sJIXCpjZTIZ6KL0_-39jd?ee;T9 zX!!V{gspJF=ipeVbiP#q+YXiJEdlu~-@yk)51m9R$($dWY^CTr+EB2_m_$7d%)h(7 zFX-Sz=ed}8{f^I0s|cdm=>*;{6?P+Sw2I9YWLgkOFkT>MgU{vg4m}1vnM2>Vzw+sB z0F&6MiOrl$r2nT>B4SL1{qD%#WOI@WAv*dSJPV7xL%a{{jH>xm2Wy{+;wWV>?3bDx z@!THVOpgvi2a^~LXHR&ee`F;jM2z+2h)c)@=H`-$7iv}7VP*1phL*QKD0u9P+(5&^ z3aQGWGK`Eg*li=$oz5X>7*6zrh>J`2TwBbpPjmp`n>6dK`eb1IyNVPkas~Zh&u(wU zBqb5Ga9Pl97&NYu(6mj4(}{aJ7GDt)d;EJ^$)%DI^rMd^XJ;AFc(ZuWIoXEIr@Kb9 zo6%l)@U0eVe9|;AiML>2VM4#&-W)IJcYJ$Mh@4TGVPa+dnMkkswR;w43&z~WhH>XD zGO~|ZsYXS0?au+lg0E{Gf-x95uGPjQCKw?(ZR{S~fjfi0qv7D-z+h%5rHea3t+1pB z=_WNbwZUP(YUs>$V18UXBs?6@^${WE{2XDzQ(aR%gf|9p?(>0Pg2JNQs%caEYB-mS%-yjH;4@3wG z02vbp4^D~}>1eJI4(a8tq<@HncZ^;40}~TGsVLTyb|jvxG=wPn(;M`wIR zY+JkbFr|x*)Rh!at@T+PO+>?*j%XiHP8LJjpaPY+0GNh`_`EG}GMY6>T-)Oy`c(Fx zzN_B7(K)$N5rj(lKJ*3jv6_yVBIAa5p0(2Y>E+xdo(5wP4shr|2DS1CR|7^Fxchn)$+W5eF6BOb3(EzcA> zYw~KB-wFD)OR83&IG0FWWSX7SsU-KpH{>Uv>a#&Nhj zH?gx>thDa$im}qKpJBpN3>U^p**X&Hhpv~Yy zeRg%#bEYqByU`;7PGJgj1^M}bFy3^4LkXc@W}_CfWtf*(C|Q)9w{cPY7^`2TI3!;p zKv>v}IwT_U78bO`Zzp-Kp29}?F@3LJy>veuQCZxzv{Xme8`qa z1!nTP1wRU|q*vL6Vx%2Rmu%j`c*DPGv@ehay_PLE!(3|AN;8|>Sn|NbckB#n_GFsR z7DcqbXwY3x(R<9qe`>uWu$pXQeYiRH%V>6zI*xr>ydmITJ3LfPBzk}HF9=TZ!`Zo* zykOz#dRF%5C{M4;6QVr2O z%JgeSVQMJK6pJLKJh{lY9A9Qo^T9QGo_e$*3qK=H1S?c_UK~Wb`Tl2lWltlVl=aHw z{TX~b6xelnEvuB~p+VW+e07z*m68tb>hGdNb_^N(A$V=<%mz~~Da(Ys4dh)*k5_nf znY1*a;Eg&wYIXu`A~rg(s1O68a%;I-Z{0wvc_*SH+tP zToG<(XD2u+3a61t0&u+C%#MQ3@$C|aLA+k9iy9$<3?jBd6p}8aFm`ACBr-=h2%b2u zg?a!lq3tPm%;O^6<7~}Gh|rfTzs_csutc?7RPXcnL1+#3aRl@XxcGdaDgFTJ>K{Y9 z+!+Sjr%&jL?6DAQUOJRG5&Eu=b7+omi$_Xj5V-5AcTULnOf`SjWR@ z`mUM=cnuZ#_!+8WI@7j^88U2?>q8_|4T(J0g~2PcN&k21u~Zt#$QkT;G-~x;tt@?| z{#YRkWY}@v+C6?s?yD;b7WqKI8l1MZic3oaK&I>5l1?$VC*YPZIxUH^*UZAKd%6}q zGK+&aG}!hJV(l|4_N^^ltA2-Q>W8}GcXCqVZ+vI3XOlL+A-Ab$Pxrcz{?PKadqR`Z zRu4F;VFhp-qq8dON)9g8#fU!2w27gsi`I=-DzH4xDI1qHQ4pE)O~|Ou%H<^ZDvdXrZ;EQi+OP;8b`r^ib(4 zMwX2X#F=^f!h*i31wM7#Ic+H?*9;CrKVZdcYYrhrdv_?6f={o`Y*m?uQ361~XUUYx zVjGYb0COb2Kg3+MuX;wTMfbg9Gx*WfOMPLTclKo|2Hf&G2X+Kq znuPhTm8g_s1|&8)pOQpKGPDhJ1tfy^rgZqs0O~6hbT#sT5mekcIS*TwFLUqK*KYUw zE^~5A{9ZjC{nTVtRpHuJlJd|euqt!T)PP9zShoO}shqMro#OY(pfL<}afZ$;&yPfr zGMa`zYZb-Wrj>(r{eB$4dqXdIq(`KC@D>(gg%1vfc8&^5GkK5Tf6s4w>mJQo6qoDw z6((`k*H?I~`c_~Z48cg6dpFmWqMx0ikLWg#@qMG9BqwF2me|Uo#^+;H4~u_c(B=y9 zl~NiT=mKTBh(I1+rP!a}4Gg08(}n)xCiWVEP8I;dgE28#7+A08`*tu;sRb`I+iD}; zib3t4T0A5yT_*XXvlaX39SD4FJ&1n|O!1?f#TZLLe_1c8whpn$-)WI2pj$^m9c;`xB%c$lab zw4%b%NCNIW5S^={##BjAe<78_(U>5>SEJD`VJc2(gTQt9u?fC}v4l#4=ZjXN_64*g zuA+*ZysHVZjSNP#W}T@I7Oje;dUW5(-gvI$FtuczWQ(cPC4k)Leo~GPn}duRGBm3; zRI*l8M82v-ebV^OA7?FlxzcZW?veMd= zTOCU~p7sZY&$Cunk(GCp?&@e46{-f94ED`Nt~IU>Ag=%TDm&g)qTA|$O|(o~xKJ!U z87l3YR)=#D1LxfQ!ZhaS=WPm@ASKjaC-P2APRco3icQbi9nn>qLvC!KT4+*6lJ`8k z$!LDZ<8VcrPsCq^%EmVH)oe@MT%4Nvu-ZhXuYsA=_C6GcLOPWpBTR@53>-@;EgNBJ zJebUrI2_FB0PH~^*`>c?i5#8kFpT?oC702TkQcElLdX@Zh-Q5Q*lsw|B6mi0HjQ>V zAuEsqqH+yZh{3y<_zo!s_$b3k;eLG-GF8Kp0@_&zAN`G9VB21gVe z?HocS3Bq<2FH^5p0rb6RbD&CPy9Q(i0VrfZq^@KN%tXJ?&5X=KLNF>|IF@}ip>o055(>y9|(~wLI8J%^j#0&O+Up&cA0uJ z3Mc2hkUwdZB8Fa3Og$Y!F4#rUf5rjOfgy`OrIJJhiOu6FscX&{^4!U_PT(&DMGCi-X^8DGM1#8G)mJu92EbQtUjOio7>jKnX@L zAv}3`V-^m|$-Tpv93MP@nJM1%_iz@oSW^mxL!ypki4594C9`FIBqc?JBUkS)!Ke-d zB_*84ZC1Gm-}6+B13s4r;E)|KrJ>ezhx&A}NaXUuqgAwH_CC4Gsz+5aL-At@7)y?h zQHyr^(IQg>Dx96RzdIYj3b3*rofa`apxaBq5*U@97UVDav^QU>9^{cNvskPkY8-z=;N6pKCcS%wI(ssQV2L(gXfCs!0`#TgQKlra&LNpg0j}Z9^rYA zsSg^PypkxTZHNvyA8|hev*FH^<5N18nCFUDDR^`oJs=7Do%-80}83>r|Gn~5F`9 zo>%SU+W>O+0_hYwe-%k$0Zz_pdpjocEpd6Pj2kJ>uI_FyWI<6mDR!FiZ!Q3(D(B za2PBSJOwsaMdQnA_13LaQ$Syj^D|d<6Ok^e?ZP~6k;hCxgn;pD%H@X*C&zw0J>O@0 zC)zIGCC@mk9=MH1d7!&AZIDze0Oc))7 z#C36N$d#(+b0Hz6QwA4KUn+!L&AQ{B+gBCjxO(>Am9XPcVolr2w!lERm!j9@=`N%Y z#855|bh0|eg-1Z3-Y61VpCSt-1fx1&d=a$PHEA*$I;1{_IXN+*;9{d-J+TpC31ag4 zg{;wVz_ZO`HP(?Q?(;$YCh<$|cg9kg2p-ggY4I^~#<}FZJ;X3ameKJ2$+hES#qVe; zwwl|=iYqJP4Py9~@+np z*0fh2cs9^apxfXlGWGp)$Eo)nOuh9gP(eX{dU32G|EqpJ*ldngQ)tajmKZtyeu3eD zOvWiotJ3izL%5-2HUy;v*X~~WY$i|Lc1@-dBMp(IsqrEoQDj`bwGOY}$iIj6U8tl^ z?9Cw~zn^tu!RQK97aNVW(U&jqSjt!dB5NNz zw?=+v(FEwbpV}{#SlB>n9$l3Lk zZEZe_mA~4CHBWLdb>Z}I;Ib`6U>=^uYzZC;_R24#l=a9G2{c}qFZ20x@Yq)>8B+GY zhWw82@&N$B-8#|(K|wNYU>exTp`bi}tTw*qhgPC^_RRh?N>VoTRaR>s(nnOon;|oj)wEG$emdi@z~&C@yZeKK>thX3V6E|{*GCRY$XphW^3f> za`aVL)R=;2X?Y9;R0LOW*)1{pCGlv2k1ikja}$Kb1{f~PuW!9OR=MJ@W50TX2VNL! zIJeGMdajy(g7PFud_1BT#q=W zl11V!umrX>5}3c64ouB2Q)8n11Y>54F78I?e;2KpKoThFq+$j#-3D#W{~-wp2ni@F zV;wKl^#+6`fvfJI-hUSV8%3uP5V){*yjcoB9O@GO^N;LeOz>o|I16nN%(Z~Pj20FE z0%2q$QN*PsyDoRvhr<3;r$3L$hWs0^Nl6cz5Ulav*(wx9PP>s6S6&GE{0$^>H2f)Z?pLbLH7$!4gJ7Am}c$k4)OtmqPG@&q>;GeTa9#Z1b9LqL9Xt)^qJU*)uEa`@2>L@3 z5m2V=0GTTD6W2xkU4Xy3yuZ}@FTPqHhMv4q5r^x?zZn7C2>$&R@I^7#Z~E5*LZ#>5 zUjDBq{Ow+<1h5(;e-6a`HM00`n*ZCy=V>qxOk-Lu`1l{WfdWNf{+cq4Y-adB3E)#K zo9zoS^-^9X`eVTVy{bRrbZ|>#Ycx7553f|lD9sO01 z3+Dd+7zr#=iw(3mT1NE-aafMcd}ka-lS{FmmVP{#LwTe(uk|yyegEk7%u&82K-hnN{8MrCN8>Gylvk^C)GlGW7IR6tb>4$Ocl z)MIxB!z%-npzy~=%s0_;~8@Kc33$fUx; zW3P7q+vaFsZ&*EX?*LJK<7`WcrwEoTgF?s+TV7PUbBYc!6;WV|{bWbWgCqC(;~Um# z^NR931my(Z9_Yr#Mld7~)FDI~_pkxG71aj;U(<{Q<0Ix@IKKZ=tiK4ck0dR(AgX|& zEELbr)CF_%3q@TySIkA6!O}xTfJc`J5OiqJI3+nbDGy03^It*u9a>r@T>s0Lev$v} z(R870+s{;BeQdCjS-6f zV&DA|`P?)mjE34xM9IU_j0WYeU0g% z>U?7b%=#o1_?d)%u-I<1xbyrs3h-Zv`GcQ;G7hlTaq8@mgWI&IL~rJon7G`w_*Pfn z-2za4bccZU%5Tg5*fO9OhluBNtW^cM~qSSCf!2CDi~cdTmn+r6dySA+;6P zmI!=%yGyi~=t#qPV2+~WWvJ(QX{iGeNJI1c+&7=(;JybLTb_ov z4Rd8XVR{CjTsVe-B;IqX*)c&NNT_%5VG7f`aJIV5=hKQ=KzbB*fh;sT9LrxiLk$8mKsFXLwOrIZNw0a~-}r03fk z&$W#sH5E+YYkE4)T&+cxo?>&PdWvO!QVOM9*81LfTySIv5X|M>TWaK`qd#b^OG?>D zAB4$)^iuC`n3taVUt@VYwx+?CO#(2Y>!Y!oGyZ7=WYqnKo5^aG&yY3dwsCi z-a%7r*00Zujeq{>{FvGG=)@D~{0S$s`ghBJVP}RFr(FQ%h&5%?Y^zvh)vs_y-n$>XZ<69 z?_|g59eKM2*bl?PKuHYR0qx!p6w>ct9336+VU>hXtMsQ+BfeT}gqkT*3Mf{uF@PIJ zgY9B4mBeyPbA255jOlZ51JOttg7&g64y-vDU+iAmwz+}N_cW*Bu80!I- zplxppIp6i_irulv=>Q)ezW$lZT?T5869-Xrbb0bn5X);OFWlF&Gh2uKr8lHvZy9FW zf~Oa1)5hC`@i?aH73YjKUN4LokLKOcc-ahNkxZo`L?WiGV?fUaNT?BBje%h7IIm$3Y%vbgz+M;;1;-|o zk-E_E%t6R+-AZg)n!boqdsVxlF0WMT=E&mgjO{KXDbYRL?2~=_7+JdfS@Csyw>fmV zB36uuf7kEFk)?y#;Tx;ci+$1nlk(8turou}$v4t^BCr>UA{L};w5Gf4AEf?U&BUa0z^gT1rVz*g9RSHY@2%dg?v8HOI z{jLQ(HaQ27%R9WT9lmQgL^4g=!U<-4e{1Vq(`q6LyNjpen3?t~D9wSt?jIcOJMNQcxaQFD;9h8q zc^~dDMT`#YbEp;*SE7lXtR8Qar%%Q+7bXdf+%t{n2nLXSH_lDSMX!U~>JM37Y}it>KnT{YOErIsp!0&j%7d0(t_OuP3tcN&xzSn~N7F zWwP)#IuOZBZ0 zfRmGm^ABt2bo7VBTr{xg=rN`W|b*`n661>$yI+h#ZPMP*i zOQU6BVeucMk^+$1NMSfr%HhJ zqW-Ezt2C8D^+|yTQUC#gpOJTYZ?>T4c%gnL;a+6yvTFIg-pvp-yyp`%H8r*A%#`rb z&!HhYt%k4fWo1z+Dhg?nsqJ)eS-y6)x}&b`tf)1K8OZG})uaS9Bz>`eesBVM$s)eK z9oMM0Sr!~r8O|xq3+R)}L_}A$BQoW?7$J{RpZ@3}^#jbSvAnwqv#C70&GP>?`q!-Z zuZ;!x5QgMsS8m1ebOB*k_XxCAI#SDQW?zBf=DfgLQ+*gQ`)3m03?8}hsUiHM_7`Ze z)+`}aO@dtRh1>)~`h62}x3+x`rja{dKV>W4@O?ERWP0<^-7R?+QYulG>{wG%v*NH( zST^4;LyemH6`$BU`fr@R7TsR7M)2WfG-5^`N*UTm@6pa@l_a2VC{|b8 zO2Qw!o9+0q!l1zT^A{hCx=yyl{=Ay~0XokyQiIgP(CI1~-Y5(S4;%7kGgr1^F4x4@ zi!RHEE0*#4#=NV>tsyRUwm$M#@g?MlZlbu|*`6QT8A>RizOc2H^Wx&-EBhKVA%7Ua zlWs_6yki{Kd>W~RYjWa~?X4g@325^tcT0vc0mr}7s zFiTyb&jHQ!84ClF*eSW59CK%F)v3Yyy*hwCh)NRT^e8p(s6qWKc_w@6vKSFW_1V)Ns1Y8c}L+e=>^)%l9|trb>OUPRo9Y#*Qo%Wg+oH_%5rVUH)w- zLdmT-iT>MNlcOHVvn>-XyTV<{fG;9V{Fu1?+cc<`}-GRx(Pr)tL-L*)6qf@ z;WF3y&oHfYE_*^u%J9Hkzg9E|iM_+IvRZhocKh2lv>PxLfDF-}Ubj*fp4!QYjl=l_ zgf>X^rNzY^e98fj%@WI(_<9nIRIju)hwi1j_ODC&_9enhH`DW=}s?bUW zNjL}v+I4yW12}L(KBxlb0&u!rAHib8AhEm2b}=3M?6kP-7o$y6{S*`xr2tP!;jFBz zTpHLr1Hx4O-*K34p&c!%Mmwv;BIZ=g+KBIArno!U+WK2;2A(w?M5NW91b=pO=hg&s zXXU;tWb=Y~RU6<#5F|^w8;!JbfL8lH-R~&bkAlQk4l87P^0dbzF;p+N7qx|E*-^b^ z$hNm-{FyvR-Tmmo(B2og^aIAlbqr=-P6y&lm@Rg`bV^QaU}98$*+&e=Wfo~MJ)WzC z`(z@G{dPana-|6qJhKK0dH9~GoXoXFH27_uOA`KaApCiXgs=sNLKsk+kk??bb>D1u z>6AQMUf!e>_Ml+11pX)5-1}KMW@|_AsqA;z)!hldu z>~S$}IaOj3Nw4V~!aY`NF>j|$D+OrvekJC6z2K(PxI;n$m0u1A%^LjcDD4MImJ~k5 zh==31fesaYJtHuUJ=CX0>u9b(ULZB&)>49w3vNm{vo^sw2Nw+7DBODYy7jw-1=w|j z{p5#P;FsMkP*L^!OcC-;{jd05=@XFJTEhWMbso3$dw8auwQbZ(mJ#DQ@>cuFe5F6o zF=E0?*t^fVw|toasV|!&njE&|(90V0*@4E6_)UQD$jrn$H*rIB8S%%#UtVu$?LDX1 zihTyzyR*v+LX_-Oz&@95(4UQZs@dIHszE*w| z5*NXMBoy78tdxP_#&DoyX!>>)j_)xxf-)}g-uL)Qu36`ieA>S{u$_7p-nXG#9-b0dhCs&7I*o1cU2KUZLvw9 zy{a_{1p@+w=mSX$FAdupQP%6R9A(UPar*-hV^vjEfLdy5W=LT&G;w}xp`_3rO!;E} z;9yWn5wXJL$LQ#I8WCl&X1CK8Dw+Xewn$J*x$y~+@ez9IbNO4Y4P1V?{y-lm$HHPIzqZ6;@C4f>@Wq}DY_PX0Hu6_iv^8Xd zit#AiXII|mPj+xMuVpet?W854RFaUJb(5WU=Ki!btV+?D32?lnzJqT4x11-?lpDEk zBGtUv0B)>POg|C==2SIQ7;2`J&so?Aq;6LFYP=%97M6zj*H}Ka95VzuR{2B}MZ(XY zE-pY?Wk| z(~~aPizm``S{@RitJUV)Xn4kGfAhHDTPh}Tp2appXY@z$8g7?8s-2;fz_T-P%Y_;O zB2Nyaz(CdjPqMZc4&bANtZZ)=e^Llf3Bc+3$<-gNHDCHYDwHSh_xyYzF)=Y0JnS13 z@^TGz5LG2dbLf}!TTKH&Tw5JoRIfNFcr<DS9HA&gpo_96J`)hG);+e^6VyKt9-Uojo_Gx62 z(n!jjOeG^JF!_S$lq-rHpiZw?L?x+HPL}O_I3t1ECTB763~DLStUt!?GFhxE?Rh5A zPem=iu=Qmg<;zywP*SzTW++~- zz2J$|IT|MtIoWacWk|#0O}ngFh>9#sW|=CX$oe3w&Yiopd-8!r=rd~tYj3$BZ@`Cr zf_HxNVGL{a`=vTkI#c0CT2Bp^6p^~{zUGctbMx=oH}1trvZB1d$0NHo$ZESG)V{4f zf4nmm9~|=0{feJX|5l`d)Ar6Im)#)lW2J)zt-nYfJh8he4&2bmHVI!?EW5FpC8GPH zN^b-mLs?RtsJ=W44+Fs`?2Nu$@OHPadaar(V_$5LVLd9vs)rM27YKP6PmZH+Q5K~u z>fUzV3f_87bnR|p#;$vQf+%CC`&y=pw(a&hj=9uG6mEPnQdm~(JGgSY_QfWom!WQ> z+Ttt@e$Uhb5&deTmOD67MxcQ01k6my%xd(&G~0ha@%7%B)kA0Am#Q);7}U!(9g}id zC7>c}%{QYJ+T~*(qsFrQMz*&0yf0*z!<8JjH$U~x${+cM42v#0kbM2()bZ}AnIx2t z;|T!+Dk%4-N4}|a#<4MgT%S|1BV`$1m1SES4iKF_FT5#CB6O)K!9v1U*dXfLwp~ zOZUn0BeVC4G(M-DkhH26fUH~war?*(|I+2{t9FO3_v6+cC?ktYI3fDa4^V5t)J zZ-3=Z?AoTDdO4a$3Jwp)Cdo@lDMIs;!UU2(QoLclI#-N-_oJZ1kJ&H~$@X$<-@Yq1 zLBra*Ozko*YPW0k)u-VymKS?RbwNEgT2(EZzO8QqL=`f_?R11iSP>5rAh}SVDxpoJ zlL6$7UAJR1iuIvb>8mtj8yFhcUQBTgr87$`WlS7>Z;fOB@x^<~s>S%2!r^GHOd3Rm zFsNFl!x$Tvc*Nk9NH!PS3O?rDalo49FJNwBLf-}v93}T{r+uX$<$cQ7#0<^37PWRq zsPZAR!5y4Iy2uCe9IcJzgT1Y90p1J&;4>sKUP5zm=_EY%5|-qG$vtOf;C^{1<&wk^ z;u-Jx$Jl6RjTxp0%3Ku-5ICN_hURf~K6`habSh$wByoA&9ANWuiJ8dolEEu72$}i# zZ_xcS$s3GxaZAfXdDPScMx-1R8w*;0Q6u+ISpQy-i4-3CFX@%c_@;3GPW8d^4mDlO z_DD0D>J86xChvh{oJLn6k@%W4Vq1>GM`^$|=fUG!3)Dx$o9y1PNd^~wN%7&XiPrk_ zZvUOHm4(#K-jX8P2THco>J48RA%n`|&ae=W!cx`Ps%!hJscC!K?%HF5pQw1==g3o& z40pUgrL3rCqN{|M3AFdgt13DYQs2e`?n|?0z;`^zae>O@1tU-~c>BP#?3;)~10A9y zRhO8giy`l_jv;Z)V33X5X(&MBqREyhs+&aL#0cfu+nb@f$`0*`3?G@mO3zST(3tk)&T#Y69y_jOe*<* zjD2NPoXfIyAQ0RK37%ksySoeoXYc@l1VV6khoBiW!6nGx?(QBSxVr@pGPnfzCi~uV z@5$Z!to8i^R?}TwT~*y(&(rln4}j|Ch3+cj-ZE>~W*Tp2ZLxlOB^Z`AGlfCn*aB>{ zQlg+hv%ALDRlt**+|bR0qcKr*|GCBH+^~INKJZiIk2?(eNXQyu-tj`D5Oart&QNyz2n2{wx|2iybcBwZHkmf`QyL=*!*O6NMo(?aO; zbEvsqqR-4EOnB$NAKkAd3q~>T2$XXtA`0=n_sk+S^u*C{zup>}#l5|*Jn?1y9(Aet zi)BEAk9zI%RC6Uf4>v5gQUhpGU4ghAFDH6>PE^BBn+LOYZy!5p?Cmy~9CzRV5Sr>B z_Td7m>LlFLD{05%FBxEJ^qsBt*DWHdV1?`o<6a@9bP;X$AO+Ip`9tB$wJzQWn^8L0Mcv|1r*Bg##K&$WtccsV$!+O3-`Uk(V>JYB@Q&ZNi+ybD2 zci3GEPJ0i#_`O`tCu+&_VmsfSRYjr->Y{J#8b{s#O}WVYf*O~gp_#mX_FinOb;;*~ z6WcQwV*de7&H5$KNT(;1LWEcP-ln$UD}EL;7n^d>BC##NShO(wsjDGcJma;x5eT%Z z&}Fz^JO5JWIp&FM66DkDSRUHy(iV2ay+wA=i%U7W}V(=AU{ zdCbI$Ebq$rdFU4|j@x?f-T5v()Z}1&i}f><){HjwPhzYG$a(C|NX*=#zubbF4Z!Eh z$E^+dK(y3Z@8j^6j5iA&VQE=9-bd>L)xas9G1iSvsCAF17n7_AdS^Sfy?%fOxtvb?otI{@^&~_iZO%giih2f45Okt#_T>seEK-Fv4q7YsiMg6+vYcK-6bCsm4tr*c^JB}jvn+Qv*;MSFQ?k55W zXSc%AZ)!>T(l9^@p4cBQilS{2GrrXXw@AVP4$YFi=r<3$lMDEVX-X$RF63~x+ib4` z&)ualOlDQ2ftuFJt)ZYzh+*PjftV^H(UyH200@25($OJE52Wq6I9^r!0a$LZNIjX$ zX-P60H4K{NwOgN-r_78a;H0M~f>%YrMPwzc$P#44OqUAD5b+6tZOVRHN}Hmc9%Q^y zcn1p&QkP$m(@X8z`AR{N!xvK_55=3Wu$uMdOe{HpDJHg@oPaZRV`a(%L!$zEOa^`w_AoV9_A;EU`4z!rUf@&p{W2eM_urW9d<9H?Pyqn8>r+j7%K zP$8dw&w1#v9_wg(C9h0)Bg+U_p6SyIi-*(6`{8er);13rAf(FaA}S{at)5RY;YD6_ z0n6==9PnfjP#IZb<8Uzk0Q5Px&ByZ5-xB`NRtB7s zdMWal%^qy8xU#Hinl8OPr116bUqHMX8v;mXT=MWIM{aSTZiBmfBUBJ%VSO1cvX0Ee z=qR(2MY{wJyBck_d%^SaHDGysn(1Vp)*+^ACv}eGUH5#)OJfqykWcGY2r8bDNN#Y= zH|$c$vq_m28TV4fKe@1E|0P;3YEX*ta`ofOSWehg zb&}wi7T^QZ5lDYY10E#az@KZN$Kzo7VAqFSLUr*84Nh^~Bea#tG7TwWKQ^c8`lakDF{ld8l4ij6*!T(8C*Rx z(x4dYfj$czO-#NfBgqT{Ho2Wh6`H1Os}!u-JV`^T3u;o?`v}DH)PR~B8_0IDWAkdw zEs`3$>tpP(FXcNt*KK-4m{70IEX>6|(-X?vccGPe7L@Rsu8|t4ZHW`g0CAZs=0fnC@&=69q+wv)b*k#sXqqMz{^?@X+KMv?nlsk zQplqZ35V8X3?XpNIkKpgtgpRgF{IyrJYe)ZkcTQQ4&2q2l(xJ(`{MG=id~pNE{ysI zvfI`mFZgYq{lRi|DlX}OzVl`th1AkZoDR0H3xQ0Xu_UjY(u7=ybjm%$D~{`I^dK)K z0Ai|L48f1-?e4GLd!Fwem@LiVb!n(iymG&@8gRt?xhkgzOG}rR+HZEu*mAsvLaKetFv*13SSY3!k?WJg8a;*HN!rkKjpRAXS*fx z)hjo=iv$$Hb@AvAQyEB$ya#;pSIUpF$QkIX#G$vB zA8Ed-uD4VMgTMoCN=+?UE}U6?6MsWWLczx`?)g7e?ywo)Lkr$1KkeN3R;f{bqH}&F z^BM$BNemh@}b{dKIv62^p{a`!LRU4aZ@?kDIM^mT+6l`n}4K9|w^t{jEtt8T#h zmt0@&A`ftv7?04E_7J4}-ie2>w zWm$5HR^EJLgjS;>p1smBJ=M{VjS;ZcHyk;&Sa2K%c0o_|`I&!^`YCk|qRckE(6x08 z{0LlNa-S?W=k?+hYOW^Cz|hlQL56)I^SgS{g=P7ho(OiMDGC|dg z(BSMs1J&_v{`B?o$5D*C*`IY%5^bcok>#`Qoq2}C_#m*nL*AFUS28~ammUKvWR&jC zM4X*@II8WW;jnK1-s1Y4eGgSsU7s#bV=(SFj8!mx^`6p&Wx;0XIHeS(QNtsfHn)#BgM#7G+S^L1~ATV zhf$#4)VcZ1dU_ewA<^PIJX2%2rNUC_GHctd61qvVAB(F?ztMRP9|weC#-irZLe-Dd z-DYnK^cQ8A(i5(}uR33N6s5PFycf9q8riY&JnH)Rs9y^AaJCaOP$XiAH4GmI{s7A% zLFeO_aBB33!Jc)D&zWjB2+EkC=^Ifo2m9KR0AKhoE*|n1Hyi2D$M3Em<13%>dGxMz zwaSR#C^EA@phtThPVcPNr9lblel>x>pu=2o8H@SGF-;A;#9Dji!{nBmz0~rbX(C{W zLicQYH~jaI@Ho>q(Ou|pnt%*K!A5C`)4+l%tl}o;2jH_;70V%<6LZqGj`Ee1SLOv3 z{`?PKe9zrPm-Q1Hdn@s`N?E_b6yprWWs? zMru9si?p+tC>|&Vm+tDfZoD|mjeIfA2}fEYKAYmq%Wse$R=UqQcRn};5u3n_wFVbr zb7Hidl}c*d2}>0P#amm-XvD<8A8a*DOH>cW_)GCsH{dTo@U#b8s)Mg2+!9l&j^8<` zY~g{JyHbAF8~bm%<{*Pw3Q(aKSwyuA1V*h+?TBhqW9Z%Zx8s~9Ftp{KXG_|CQ*)r8&?`FNMdY@PFq zpdZ<)(mtv*C`8QgFnBCRfKyh^h(KJ)JiwLhLzwb_cQzC_FWm@!6mnKY%@&+*R3~dE zJ^W-Fd4N7D?jZ;oxVxyvT4^}CQ}P~hwzFp29vB{G2Lp0Wr6VC1tdqr@ZF9Bqyj^xxfX}2Cd*SV`VK2!O zziVB9_RHw;9lXkhZ8xf^3{oFT>)rQH6a6sQZbtcc$T##0)5Wuu#~pa* zyEF2DoUAUPvPjY}j`gZ-NpFJ7vlI}T+QrRe{z&KX<6JY&Zb6X`*4ip<>k(p>2qo(tO$MNdB} zdycLxLrqFZz@X*P)bySOo9oiaWOig^)P@c~=tI<5aNROFhaye9Dv|c`PI0@M+x6Z= zF~Kn~qn^N4M2(uB=^|HYyDm|GXUh|qqW_fpLMSl$XOMRB9q}_ozxQ0iCAQ;&a>It6 zfW+)G564R+$0lnrFCA{*n(M@}wKd#dZhPoo;^ZeB?JGsn0}333^+lw9GTff5n^-h9 z)Yl&wG2ILpAwoT+S?+d15doS1r4BWJ_>U5Xq0m+A(ja<5QA4GkU@Qj8O-zSLBcT5!@xMCGGJj}8F}zjNRLbBj0A5Mo+xF#H(32#Ri zK}UJ@Z`}qY>iWaGP4^CgZXBAxDwDh}T6z=4!zG*zrkj9=8y`M5OMfott4^Y2%dQXm z&?nnqy`oTIoq&k^N&*QAYH5A(5KHx^l!#Kldu+oYf$R@w=qmW}ouffbOseir>0s(~ zs{A-SCybvr>CTdu)tMrRJ~6TOEbjIA&6=NGMVc|U*2f}%mdPhtK5@R}!e=66cCs;z zn!`c=5%2H*m~X%qnjK4%_Vuf>FO9k3MdEDkzclmL3Onk+2R`!DzqP~!v9bC-;A70DN2bL>gSZ=l=3PHHe`?e*b9L zls_CzVV1%8k4yS{>?9g$FZ^Hd3LC{);Nq<5{ZlY3gYj`WP1XbZKlLmT&_Wb5@E-S( zL2N_(@aN$>J3E}$GVg2H0Mq7%NKnR3b3?b3+5G=BH{jbce_v{*g^KFx$zbR>XXQfN zpxQk;Sc3_qEZDb%eJ1h`*7x6PdX1KYlpYdvEsMLk)&^bS#H@SAj46qM>$U$`HM&yN_xPTSB$29W3RwldTMWe# ztewMr|GZ+r-&z?fr}x2&p{J#9)fLMSBOgA%KD+%-X7U8tkts%uB>s~cPcGPm5ZdRP zJ~;yO{wi@wR30+`l={05N=V|5nb*M8_MO;Qu}&){LNMVc8X$*!aP9$W@o`)xmq|Id zKurG@_xvH-zK5Y;ZPy&fjG<9E$Te%d@&x8Ov|_ElZtn1uj?Sn-9h^Yf#>S{f&Pva^?|Y3V?zN zCPKnryGRz!Y)HOWPY=%8yQAwGuL>q#Gtcm_P0muEN;;fg995fIB*Z?gk*{QB$*<2< z(_H10&z015Coj4s=I+A)zhL@k1}m4bEyI?L-a+^WHUIDnm}{T~#%i88yYcC9GIbU8 zt7hkH%5Z8)UUL9yOJ4(CClp9UMe9I=$`j=Yv+L8D&vlRUN;jVi4*;OjJa=XV)Cn5@vBw;K>%HOYAzv3^o%6~ ztWbebn#~-#vvkV5(pR*Qn#H<+D> zy!QCU&62C?hn37F&&rxHTC{(5`&A8a;rcmYcyXgYK^j~cA;uy?8P9x6k`o>V32jcL zA*WDcPOR_sc$@JLZuPCrA2q9IAABqolK4g3o%{uBGW)A}1nKdgtL%*qA*ib$RHHnZ zcY%pR2TWk;uiTofDe7--Ujl}UvYK%+6bU2hszS|geHR>oOdmhM*u@AHhzA_gdv@eG zM*qbHFnswAuPG5U|BbJ-5q1?m`)3&bOC|{>^}usVVwmBV5;5bwU!^GTklBRc@jKNI zxrfWM(orPS031lsa?XRmZm9X*L>f;RGIPS)@^aA}$aGm;vDM0CEeIgI3Y-&Y%qdUo z)Tg0ULJ-d=@w=Iy^XWbMzdIj1YQB{WSW`oW5c8&C7_^gFaD} zj45ZLuucvDa)%m^*%g=cc-jrj`fpKJLX!9`P;bmk;4v~f3n)EKzFLb3a#H&C?C(p3 ztOq|r1f;Kc3krll;f=gExd6kQFUbC`PJlT=2o%}V^K5I41OjgaiyTtp=?}90eZu^6 z$56{eCV>#`?hPjfngDOV1VR1M(YlgTvry4LNy@mBqkA<&tsPW(%6o+|fY9(j3peGaY!XOHZ(r=+r_3JdPbWRT*vXl6+3tsT%hN|IPGy9Hd2E0@ zTzs42+(L(A478M29;!2C&f3lC4dt|Y&s_aXXL5Fa&4bJIi=NeP*vH#T54^Cp`ZX#U zP!Cz~1=CMRyop}d@@w1kxpNdqWn_eNbSJ;N3ovI zepJ-I8WHs(iF)r_#-N6;Yf7~6UAcr?#9hd=m5x8mNRU82bn-bI3L+VzkDN>fXX|go z9zPD8>|hL z4WW-D`_R0)r>fS+6q7kH7m*z51e4YJ4-prhUAX9B%eLdkGSFoR=HsD!J z5fTvpZ1nnKXN1)I^)k+&J2JkOV?%?Wv~8ldX(W2(dZ+sd<_YsbXxHA+ivd1LdzgLS zkcZoAlaM+3Kh6#@vxo`sW8Q00yAi)blvAuYbM~`ioGvV0Dw$}Vm?R?-& z*Sme4XUTwKyw>!|Ao0}~sj<}P^v$(->Z$Vm&^nhP4gfFDx@x!ay8aZa{#DNkhAPLg z-{S|*s5vv~UtHgQayzI!ttm4U(Vwl-2Hx&u2v;~>c(NpklMyn<4b`af+pY8^jf(Xb z;7N}cYTQ|02p@K4&0Q`VlcNskYA$(?@thZBb*$u`*{e;WX~^>QRNseJUa#&a@w5rH zm~!=qw+5%ed<(QjL{WUciRbqj%|{dpL)uB&E7Oa!DL2~RnoSk_j75<&T4)?vS*10h znY{mH*mNiP>-EGW&9&>p3xKUKK8^78tA5b(TySu)%BEo2`uejT5M4*3rbYzm3<6y& zMtbmJk5)&hlh+FgdhXJv+9La=&Gn_P2J-&>Ja(dvp(_O7Md7}0%igZ}yzF!;1c+=u zC-5v~ihLYCcvh~|W?V#=4_of%KFOQ_@;If39$wyNnWOSWks-M}ifW@-S6f-^ZI(WV zSU!pyrqpc!_qCV<_*1mMR~;zCKcn)gCQ!_8vz<9Ptx>PJ;=hYzQ@vvP`EfX-p4-ZP zgVsrE{IjCU+Q{-wvf-o}P>-<#MI75It+Y*#2H^9HmZWu+GKemmDD%Ux<+D4dO9Se@ z$czZ_$2or~L&N!ful>#@HJ*a)SKe{tZ=YKNeNgEiuGm%eOtw3iJ{XGoeN9+a<7w{S zVUL7IYx)P$gpqkno5?8&P2w-H;NNptX}G(>cNwBm&ub2|TZk8L9Ea z!<7-cE6O{?e~Wejzh1uGgLjCK&lnFSK9b9He_;k-&#Ct{z!9M3qEw|JP%Acg7dy|2 z2eF)fA<*c95tSwyJSSx{4%OhVDL=Z0;^0Z5R36kX3!IE0VClC6h%J+L4pE{u*C4ms zE`DMSINDtqpi&m{jgZ}2sVzkpkDOF3TA$uO5~$6gAu9TCp!M5JSZA~Lwr|Y0tXjr@q(9A~WQVY4k_|okDdJ5qvXz>xpW&7xu6jcooZdHM zgJOTFNjq5MOGqK?+RY4d5hvW7zi8oG@c7!7!rH7>d+gZ)rWgZ$w0C~=v|feb23zt- zU%9PFUi@&vRF3179&g>De5JT;hG`XWexZ^vvKpH7O`y=q_0kodUtayVgT?0W=PRN7{m_Uor>1BUsGAn=7-9dJ`2n0TuPH%c35n#CgwR?MyI^9&GQimKDJz_l6E44dA_XK*Y zffVsbDHi58vicNV2eesdb7G0S9MXO3#Bl4x(ZXfO?17{IfZf9lkUPVsfLZz*#@jir zJ_!0D!^(KaE9D4izs`r|SQaMS`b^;rV9*)#LmKt*wpX8;+-ZHreDbDtKX*f#qfUQ; zAx8TQH+8!tDDR$lSI5X!8%PQ}5xG1T4OJXHTsO*n(d1Hyz%ERE-Ni=!sW7TOHQ!K! z!Ub#5RTjFE8oBOzTp@|Eo-p6aTB3R=7}T-ohIgz-c#*;d1z7%0U_XDz6$^ z0Z(NOIu16)r0$A73Dnr~skkfkbm1IGJjV~~pdsV5sb{B;G7r&V;+0~2TKj%a8eF?U zP46NWGV5Cs&0uy+y;6&*S92JmQ{`?He{?PCepWtj{w2*s=3W@%-uJRU#ni4-m=RYz z`WoMjELtLC0fc+!PMpB%2ayaX%9a*P=1FjSMkRB`**(@+L`9jQ51IG7Ga28vem?uDlHS%Kf&#b4g$}xp3Q2 zT&YKeEbvyl9D#)Yh=9jZcQvPtT+|h@SmzO^y+rr@fBRUv-Xo!_xu@cE=Ix6lmR&9t zik0wgu+~_!$CE*AED10J;lpwZZt8KI^v*0(r`Gcbljcz=eK+bpXF`N&Ef&&xjCY_k zaHTDQCbNc6Z0;8N&o?4CZpD$kD6B34U+H1^zG~H9z_;K+1gEkIOnB*E_b2utC!N;rc{Y$`XcDwKC-zh6#@wR zOXvJB{HWSPk!ez)Y0*c`*Y|43VsE?=?dnRx0!ph4(Z9~~{NMou>wOxNdtuL_C0q0W z$SBrFF;*T zB2V&H9d+w%au_xQd=C>RbIM|#iL!a-Wh(ITV?dRuM$y~A3eUMv`-f}x^FnNklH*5h z466jJkPL$>3VudsGTEz!@M!EvS<}7II8+Sn4tOSFoLJ{IH-JLaj-4LM;+fG?4+F^Z zo>k|E(0o2T$OrA@%P{!K)psrp1p*0`K5llN+}+sZK36< z>(Lw{JA2`eiCqRB9?WA*5=d+FBZsH;Hp;HlI5(GHi@KD~8=#ouXbL+MUNt(XHyyf{ zNK%}w^7eA}3Kn9B8+U3Zns)^v+_6%BySL(m_>5Pj)$q0r^w^BReVOQ4>1K9*gLQ4G z16I0j5k(KB=q(YPg)RKZGEe%&&XIC`cI~iG`D0Ae4a+2Jw=StHi4SV)2r{{)EUz1^FGDlre$zf@K%(Q z5(23_QY8?Q4My%RjLA6vQgZHeHTlVr0Szfboz$6^4y}*1lW9PDt;GR|A z3j(n!cb_vr*X)%`B?%bQ#Q~fV@ebfrI&3R^YtBX5?7ViFsUp@Y+%S+Pg0^A~?eH=M ziD3qtScn&rYI&F0W`ss^+P#%+f3oM7kCbJnY!&LIm?#a~*KL{PIJjH--d-aT`NvK8 zn;hZ{I!Kw0gBL(}_z5yz8fs^xvpSHf{uk{Demw7YxNawXih@CL)mcMnB; zJRN{&)Ojx_+2Fv6d&fs1cXxa#@09{kbN%%Pq}?r#A5jU{Vw_a0|^euB_7(G5ib=!!>U%VXAuWXxxI9ic48>Y zruy}%(#L6nN<+*V$T~FZGZ7kYQQLEa;VK>&YxHKyUM%{K(k{Ocpo|9c8r=&X9FQ#W z#kftM#{z+JcYov(uj^MM>+zyXTsZpL&lF!0#%Eb|EhrL>yga%0ba?rUPABTa<;Q~a z7v|eukRn_%q6jY>Y1qk%=u(3R+B>=xmFoPX-qoGAo2FiK#1;Xgle#I_;nAVsKXNe0 z3LSb`1-Z;1jWPa=hUkmta>d8$N2~bpW{Yihe?C5W_+f_^7N9F&iHXKm#W%UzhEm4KmP5KiAu zsn6RsYLlx}yv1Id6YSjUA~ILd{O?lW@h@}v=Yv^+b8e@oDrqfP%}rG6`4)B^42>x~ z#e!8IfK9v65}IuKGM>#XS)(xKXorpVev;YxtV(^x$qa75aM0F%_bcz)?s26~%wQ;n zm~B8&ZuM2wORFI0JxWV7j`*)9kz~nr-VbxISa@l6I1m43r6d)V!|%rXLp(GZo4xzv z=4F9amRiVzX2Rvv_l6qL;;3+mixIS4(yRTkIpeja|-o?fVGZ<})C$VB%$uig~ zL;i{jVi z0xP{u600d&c}UEM6o5&(qGtEi`H%s9nT;kX# z!o+TcU$ojMCenym>4KKK$2H7OR;Rt(e<=mSzj2mZiqRuim3oKTns*iaYb|;Xu#6Ua zx633nj0Wme%+db79I;rXUa)Z-%0-B{cJiL#vd{Sy0YuhdF2Zic2$bxaeKKy<)OPYG zXxq~ASJ)#QR>?J2NZsgFbmhwY@OsjyB(6;yZg?Qm?UQ@uN=bAg7ph8c-@Z*%4Wlqx zS5+lLy$p9R-e)*%k)y7|F;YYDFt^bwpZa(P%Aj;HG|+#3E{=Ib9FQz0mnB6X4~6;# zSa}+U-#OR#ay-LHvF`U$c8*WY*J+DdT_)aKTuDX_M*k(+%239)66Qd0o;ZpV=sjf{ zm<2rVV>kR+W84GmX}uQ~v#@Fy8%fF9eSqi2PWm(=4ia7Fl5-~3hPLF!GG*mk=9R8Q zMVqNo;TtKJCv0F~aeMM>G>>|H|O7r@JKa^8EFI9~^>H=yjvR3oTdZNzk>yef`y-x3Gr z*rLXieXcoD9qTnh*2TqBu{UA$`<71`b)B1AX}a6u_n74;L!pd5v#SSO)%%kGKIILM zUjjFPeZRc={DPG)PIyYvG=_@_-XXF9twTHOO7E7xT>sRBe3;?4I0#I>Q(9 z_7?g@dkKf^rBFL6i1$-{h4GBGd#z2xop4#^_%2@ZQLg2-k#@T5za>u)(0@oHSOr68 ziU73$2Nh{Bo@LubAelDH_+fS-x_HPum1=*ytWyOn+Y+AbV3;Y)S7g`5Pb~;ePmO*@ zKml7m0v7;hgQ3er4exrZI)NrRj$Ga8P<5?cS)P=7)Id_A0PW{N${KR(?!9}u9GY&e z-^GmO{T>TZ-V*Df7#${sF{v~e$RHJUuLuW9GPlbeOc)ooAj&1QM%ON&U3K%$r-&DGsi(*K zQ?ksBzmOW03c#N<4`n)KM=Y`xOp%6JPK@nTCh-(-E~P2!pTfTi$43a!+h>pT72Xbk zR(@i_d^qBO(riY$4pqls%tTlr>-3k{?vK@5COdLEEdbdv_s_=h8a^Vll5lIJ`Y(h-&<**@O;PJcBdS*KDi=; zj53)pdT{GS%$)xaLRRHIwJ-GAQ@Zi`eM<;>{Z(1dhDk5y?NAxeq+H+DkGhaR%%}cE zn#u9{C@-1)OW+f#6mkgSOQh7+eyn4^8M0{+(=Z&dup5l%msJ(Es$iVT`n@H&U9m=X zOV7c~Pkv#mzJ{Ni2IEBKOefNzv3_p-46#C45rIEJ7tk!HiII3)_U|!+PdRJ!J?4Vb z`}cDf9cJa*ac0LaHI~EUYl`0fYJ2kR8)sQUED$6nNP>*yEDmR%TGbFJ@~ zM?(8DeeJs0_3$axB~r;fAMATDsFZ%PY86A!6~U6E8ign!=OqD9?9OYOBQA2UGSKJ! z!lA=z9Y&_E8Ns>YJ(zK$@9xcT(j7C0vo<>tE&Fuhw*4`8gTPGh?&xCnT(}rpNLJD7 zWdS1T$CZTbQ&qPJid8f^^7m?>wEi!_i?EuHM|AHuXc9*3(CwnxLuWuIS*E(4ZCrhk z^0l0|7@tu7M4OOResA%GYVi9)%0gY%rV*C}j)5ZU zdkcDC90@cbjK-Zvp*>$`;{s237#758}7B=Z=aROEkGpp zrHHN+UkSDIe@eNmAT{)Pb$!UK=)?1cJm+sISp^NUK`#*|6DdHoI*@GBLv>W(Ym#?h zn1JsMC-&E-@T%Mv&W+&(dp??Q#ph3@!B73}j5lIAT%@VX4E<8Jz|+OI#(Eh-C-x2; z2gl94@FT`&>CkB7hmRR2TT`D3jMxv2UfxGxlk>no_s82E0uwA!;BwW%lL zz^I#&>DzMg+E;KZxcJqn{#<%`r>gjIPb*1>%26o4=iTO9$d1K|m|cUqrU4zo&ZF+9 zi~fwx5qa!LX~Og4oUXoZ-vPxj0u8?-`cS5El&^ZkT@M(H;>22MOeahO9wX+*uA4Pl z3ui82!5^-UJo}=gtq1$A8H8DzL0UT8OGD|rlSlK(j{fuyM0~$$o||PXb}x$|px5FE zVJkF_I?L@b+0=KJwX)Hw+$5hy4;i+XbyEF(zVgZ+s{~t+^rJgHdx(azl@)|GQtpmdmt44=~Q&mA^LHzg8MNKHDHe z*rR^yH?kzH>CR#xnznA#23(k858vN{Y&+}0DTqj2;-g6G--p$Zg5mY1M6iQf-+=2H z7)V<;0{Kbf__Bgaa4NNdOl9sruNl3$4}^JaCg9&~;FUbo<5eqATM$(pMKSETM$_Q% zn$daIJxPwmg~GtRN%(3?pu3y(POE`2k&u08d=-Ps$1TUI<2fbUwo&&SZY>-(+dv?W zo+2jM%P{%5lUxf&y`J3_f?u%lxs_--rCEL`#UAVwpHroh(b9*zW-DBQmiq#53^)LdAm6yN<@L!``P+R9KA)x9H{q4* zX`=fsdyz*j!+wijm2oDX2@_L!Bes_ag{7_=s}c)}C?aR-m#3SnO?bvP%)A}zN$;;h z4#hoOd~)0}iAbkmsAV1*Ua9w2*s#y8Vou!*>C{-ze1pb4L;8KRqFpA^a1oW*d(x_=>(*> zz0&CblLzh{n4X-+a3KHkUK(yi8vQfb{}HFVedVsg|sSGrM=;+QS%trOGfC9JZui5Wj&8JPvP#xllEJ-hR} zR{=sin>$ukM(9H=hO!FuO5xlh5hk5;PIF>BLL4`KIRT-$#T-uIzmq;P{aujayN(>v$50THR3LRTvGOeRIaz*?Lg{BF$D9Ad=Kak( zT-(CKWmejPmnw7OC0`4RQ3%pXr-XkmDKx9#P&pTMFGEzPV_rV$W$+TFD+iBC@ES?{ zAr_*4Mku*hSxB`~c0APhy^fu@G}ul@;G0dk-jufVIBk3Zex$V4qp_?VHeMLSkI>OE zu6uae^~#P{2$%97*pB`Kh?NfVYV?I`dqalCcpOHZ&}0J1Qz0c|W{4`e#V^?QS)hxci56xI zMDY@~s4WPu4je}xKVK%!(vop*sfiPlEd2P5<~mD41z9Fx>u4WI6~`==NoLYWl_fVi zVwPGmcil#<&_ncT z%YPI#rWnqua*9tS{)a&FU!tGtb->RlrQ;IC<5Fz!EA7K6T%Zm`rcCw17uB(yDGR80<%F8n?VWEe#wu&+(uzqInSp)sU=s*(0 zXVPFWo#)1qDNm_UWPo{Rl3mnC#2Y;cq-=(fHsh$I!qPEx55c0B2F#{tmx34u;WxTNSkv_{Kui zBDfU>{1-=TYwhm@t;UzXO(V$z4_&Q89lkuQbOWw`Z^d2?XIdw^9SJ(3|4@XFe&e_> zXYsem_$#Bqcb>w%w`TAjOyHeGqQQ3l$HxBGI7tZL5mhNn98P|=R)BAV%E~Che6)G6+ELj>!Zgei<-#X?U-#TSS?FPjB)rgvlaEl2 zFS@@BYQk9@Szal9_G_nT2ZiJO?risL+-z6(JKr&$d6&bXf`Ee7S!gIl%xoLl>}*!Q zt$4{}4l6pHSmzCj#ITM+7v5;aQU7tw)CcSk&7lQH*cU?c*)m=@iB5_8@i$E>OInV@ z`x-a<3RxPQEhF;33;DmsNrOm)21oUA(^jj=cGAtkxi0JiM~BJufJjuKuvV{fYW$Ug z)iSdEc&E@)m?VpSEu}u<@_4I;le5PiE0X)S%&4YFlTg=nPm(pAMzRGy#;5#uC30C{ zr1jkgn+X`5)n(TKR=9L2YEK?vaiv8#V&t=Fsl{0_+54`5xzhs*O*;*QdKHRLqqFF- z0-j8Ctez;Jet31sT02Iap^{a9#GMBNEUm*%`}S7k{$t@xi&;0dVddFqeTN70*;;}@ zkM}D(F^Y>7kIuMhL(Wnt?aRCQ#OP*xt~=KeCV2NVOw#tg?HtjP@7h1?Uh7e~(+THB z4N%1EpGyrX9I*?G!U>0fuzex0GyI+BCbke1^G%=M^ z>SRh^Vo&g@OEs&8f9*~<0G}|3H(jj}wtE#-cAhbKTeDYJ&mGUz-;drhEO`KBQ zL{XQ+=^UN`YPh0Px}F2Y4W&r!=Zqa;$`BFyxTXrolZ!wTS zETea==Yay1aT-~a=^(1r#g!(?B4u+~HaF+dS5t$GmHcRJ%*pTE7TQ}UDp@d@^)#*g z5wayWvKgRZTI02))v`Q6iBe}IIY6{LHYP_b6SA@tSXvLs(%D%!nR)E@XTemr2Ho+B z$dEH9Ljb9vaDB(SIWo647~m>7rM=qHYv5qXDLZRUgQ_lPd*XTc5NRp@#8 z_b>+Fc=31Hk0=ouo%!nEQ9d4ua~0K>c}&3JeBKPitH%)c zy~6G0E0fS46&9#9d!BcA+1rC>qgMTa0svWoBi<~bIvJmL9~4+zSzcpbq%xnljB+Jo zOJ|EjABTE>VqlfaRJC~?RcaX2z{bo`NP+AA!!JqrkkNDWIN(`1Pe{2Vnb=+>IX@&p zYL-oFJZBSLk-ULaT1?RY*)f)^$>^eP;~G29ts}vT)o!|JyKtN@By#iFdRoa-ruqWJ z*BfEw`JSW_przZA#)7nLG zE?7g}Ke?NQK9DG)5id8`=}?6s*epAEUc5~Ef9$Ib$xVyU(+--1ocRh=5@BRFHfAU|Q=Ukn;f$8b4u2o&#>wT-L^O?~sdO7{o zRQg&fAs~p6#FUq9ADTB@RDRXLcop!i?v9l*+p00cP>pm~Y{~c>1y{i)d*MQsn*@D{BgWg@wg;lial zJ6BW`aCLjXqSY#{_nTv%R(yGaundW*A7*oPOnB7OGFBY4SiU_Fv=1%MNGqS-3L5XF z=TA^r^54H=X!P;_?)3T7Rc+2%`k1t0@foklh+ZfaW@Gv_U0bMsBbt^6drs|{#M+`2 zPSp|F9{W*mKoyWBTg+EO){ z;v7s9ApoX!SjPLY95djYr&54`7iSYtyT{*=5a_4GVe#07cw==9lkDO}=#Q@=@+i$X zTVo0HG42-UTo0Wz3&CUBC#tnsYAtwp^MaCLpJ%|#7G6(Y2e!4=2{R2f>dE)|s(bBn z+Dd`(ihfuqq_;kcSBZMh-AI79WJdpYgg0=%`CGagtKbHEJ;##W=pJLG&eaPax8p@0 z-`~n6`bV{F*~F2!eDIYmzk<#-`x7q^lQQx?$nuB$<>Vj?@fwl`MFQQLsT=Gs#%y$~ zGU*sAQrHrSNiMlMhu^Sy4un91CZnk75ApHHpu=3W_PpZ^e%EM*?!2ea4zClll)-6`>A;$RL*}C%Xe#JDI@xZafUB>)esqd zEiaBt^=RCselh_zB7HVP6g0~zTxhxj3r7geDRT+RO&i5SDnAy#nv@m?-k^#TYB$~y zfW2N7@o^$}$75%JA-Re)IB|?OSbqyGEfHErt=%cFUf#kW*z<&ijzz!F&+BkHdXuq*C7u<^OcrSy8^IIIRnV=IV1fR7wrDK!L%+Ufr~F zBx04AS6BAzVzqv(u_j3LAM>j&JDZ3)`T6@~q!j(6aT|_?V6dRI!5Nt;ZASIyQv2ws zShg2ib-!zu8NtdfL3FFyaNBSD{8f{UK-C?WI`(O=@i)EdLtQO~Q=SV@IJMUfKzFMXOBzZROo8On|Ja+d~D?S z5%=AcD2zz-m;rILUmZ%a;hTM~j^fSE8IjpqCr}C7lt!B#--9aLdtY=cMjx9y+D6kW ziWSjC1~azdMD>}sp=K(~KVkNk$?=w9^G)_ zivT60M8>E)bA0w;rp$iLwTQb|MEH@{47{n+G&M~;e7bgbZdcfZ-L%orCQC>Z)py3L z*E^7Nd|VI)*L6oIRmSx0Et(z6dliV|i(hoASYe~qxz`$l*6|g&X7+v4E+}`um1q$q zLMZ*cSJZcA#Rp{$m{eu<1RDfsB_uW@G~?L<;u{oHRA~0*8=gn_Ban(H0-X%!>bx(F z)gC#3Z0X0@7H684R!nHFS|!)&kBCjnIgDZ43qK$`U)zcqEDl4A=B=H+t3kjTG4r+3 zE0#Rf{dHLSi?<}kOMOB;EJr0Wj59J2)Nta;w1=GJi#4K_Ir0Qj5~lrX@EE-dlb^AZ zUO~lj1V-PvS)Il9DCyDD4Nkpx@(9aO3roZX>U-W6Pj=HNQ>M%A4#tB`uROvtsMAdU z#uheINP08!@{|r(hafC!ki^VsLdHtlCZR*N`#<*Hv^%Zr6Iqujsi*{@ENY@TaaK|B6K5PG+Oj>3wv#EvO5p=m~^OFy3rNW2AxmH8K;HJm((fqB!%J)<(+J zb@%Rk^$=9Y~tV$aPlVvs6@P+kcziJT@C zX>{VRjp|W`ht~sWkMoA~JNQALtb9ZwDbB~FOT!dQj^SKfdS&S(*c$7r5@ixNyb!B~ z?u=Y3o28HVgF&`ye-aKbQcVBY5zVp1_5fysBc?IATKO$fu{8qXLg7p#LW#qF+HxsSA|fV1llRQ@ghg!FJP`d}__x(Lz|mVj7w7 zuB8o6kL1De9)sa6@@9$NxNbdwHB>W>??D)0O!c=y^WxJkrxiWHK>y2Ivtm@A54w*_9J` zb^J=zcrLb%9tL7zgr9{>GR+Nee{`^^*)AL3b6J(B3xu%oHdUKja@7d;M2BCSogIBPr)kt6dOkW^ zHv?~jv137ci$y^^X-MK;s2tV=8X=0g1Ny%MY8CF(rZdd&50`NsCODb|4B3~cSA9+6 zXV(0eL8o&Gie`EJb%TqO(qoZ2MimF8G#O@-m&+_B(S(#y2T`wJe^q%tg!4s~JF92~ z96e*9TTgcUSS4KDPVX7=0XFE$t%Qj}n4`la|1ou1gWo4d)Z1BYOGC>Bu~!V12U-#c zEZD)d?Q0pp>B{|$QQWcA=S@G#U{Im)v7zw@t#8UvY3qgL4I%0(;bz!%ulHBAz|W)a zw0muQgd|gjtrQd)Xa(8QD%&Ca#yO$)Oo)x7!^!I0JaHw7JrlHV3)}PxP4&ZzsIZXD zpj?KG9x7Z(YrgP)#tmC4WPwoD!f+d_y=YCp0c9sY^>5w&je`IZjR6O-Bfe7))H4`o zTnL{4$?ivw4qQtuP?u_vJ@53X;|Q%I8G3El7LTGhWj=qc=;U4W&g?(Gxm{-}Kl&j+ zS#zp1MBtMDko;^C2_|hYF$&J zuR=M%ZQBB4J3No_5k+n!ofTJ;=V>JHzVSY6K%oR=WSKVM7gI~>Dwb@8Xk__3R5~u0 zvzKRdb2Kq`b1n%<(6pyN4%=P6Q|5CP9*2U5<1t_ExxoKkldScwfliv62c*j9Q?#t0 zf*>(Kq1{=))MK>iV~=64BCK11-jc`xQym`mC{Zdcq-Dn|(%|y2*Xj>l36oh=XpJiW zSiiIJt>!qND+$5$+B142S|B*S5KH2buJdvnQ^kjm1LJX^S|Ch!F*s!mZ}zv0!9}{k zj_wkN8}aBQ#qn+-iA{=b&~H8)QjOxklm%?^yQmIuX`M-4oGd(~oR**-#lTbI+c42{ zB=Ai5=6SiTvkK`4EfjKCr0+dH?<%R^nL}`0zw$giVrEANvo&$cU$Y&9O4q=vi;BM` z4zk@}8F?>7hKFk2#CRgxV9xss>1$Hsc{w0TTJuM~xewAf>(+w%_B(w_yYpeL&~`Ex z94@VerqTozWHsS~dE#t!*-T0oxVk zAXH+*i)+025qyfZzsoSjK`VPtooJ72%)hep<2UA%H1!%O!vyE%&pd^;;qJ$7MDMPO zyIND-j}8Td4Kk$ZRodEBrH(PWWuK?13ePL&Y?MojL)ANmDICHtjJPIqTtk1%vrK(> z)+o;wCg?(pW3AEOG0lk*DGZZ}kZ!Vl-?T?_E-$LhpR7~KM??Fr3u3tBQ?11p;t5xr z-O|~gjw>xI>~aGN>)ol@K|K~1rg+${iO%~;Z0u$nsAaBCWbdk<@G|!)Y-|%h$m9%u zQX?Ft>=N5bUaV)g;FgpJ5-ejv{uI;j$MVt_Zv$me1F8Lf3z)7q%V`=OdqM<=gCvL^ziAiTa1rcQZeG zASX6G=coT)iH?m>07~RH*nYuL9ROG_k*@drZ{F13qv=!kd-wq`p!y38IOSMg`B$Hi z1k{lD@^hl&BM_AN3BVpVoBx+X{R5v8{`i7zt9;uAu)}`_!iD{SzBEa4WBozG?U=wv z+wC~=zv9#zae(v-Ken6zk;7kjHaK$pzs|8~@&yl$m5xN;X3R8y{9QfWjy) z{$GJ=647DCG8@kjc2IxU!!O^l&2!pnJX9h901qGK-+#ySlJhGJ7jtngGN;t?4GcyP z`0JJqRJvf$XUE`ZG*12RIxhdqad z26%iJsz9B;!Q=mhFBVY&E!=A?fBl`5FQb%+06;V+H_gG@f1*b81%MXQmBs`AC?_&N zYE-v>Fo^#f3;Y+gu@B$JxabM0);<4cNz#3-;QQXjd8a8Ml}|D!k(fH-Ph#uNW2 z&fyDw-ppeV{g2|%y$DRknDmcDQ!M2HK>ctC-s5koJN%n@Rs>pL+Rd^5qnsYVinFr$ zI7|K)gdgakq~-n8e_{b%*ps#}pmlM`!2hJA{x?4b0e*q|JsdiS{x@{`zqFwCvW_LR zIpzM>(Ebn5Jevwo+2ADftG`1l{*bZ^1hk-AtN1G`@o(~^?Fz8T`K9DCss9@Ie?IzR z0(Py57BBaYR$KF8lUG{-0{?8aFLoVPXPNkqR{LU;HC$8&X#c4G|5wZ;0W<7NwXdv6 zw{H1gRMJ=DOVL{RsiN2tHGt~h7=97GzCCq;n#CJj^yoTQiWq5*Nxb6N#-6Qz(_K91 zK&g@Txj6{Nk0?OljUa97_+l7UT4WF=e29z!nII|r+5oB0zxAnwWous*oRWf6!Wc!p zu?p#Ne;{yw(>xMq8t?UoPxTvw8hl(bRiaM(mM3cFij)owBzjjo>U(|49Rv?t8WZyN zzSu&W3DnzI+O952GDcE(3B>x&-yf`%mfv<)GKoSIOAeT(eK4FB3K>z|$3I5^$gn5u zH_yKDSxV%Z-{B;*$vm3`RxH;lkBuLfdbeesT90`kUrc4o^Oy}UEX;=n2_-UUVF`tC zILGVzhRP1qjqPU29~SKlCC-e8mhx(uj7XABQXm?;3p}-2SErf5z`#Ru^fK7;+1mv5MPUiF-%^gfB*n%~`nbD#C^{xOe^2h8*L{W% z)OMr$!+A0Im4#@SRkONcvughyF-@}?(vr5h(XJkHGbjaCKNt%xJmhDM&uS&pzT4V) zcg?ZERTN-T!p_jLfZ~`jFi}UONYQK^R)5?ceDvi`MOAm0bp4|k(LQ_#1tzHhLJX~L z---lLpm@jBC+n($9(MubfnV?^_5Jr>Upl&i?y6+sW{1gsL@;$b8+dAt9*I9#R_FHz zzVu~4Ot@q}$6lT-8^L_Pyk1HFb>~M9CF^#@f>FJ8*vVw`AD29c!MwTJr!Xn2O_$cQT@dRx2W;31`p`EAM%0@6 zHr6PAP~U(bYJ$Dl9OB##YzEwbt~G==%V6vI$o7|~6uzruVD?%Ng7?6Q)_*b9=LEtfFf{(q4%Tc^((4yj0JuxeW4{A0H)T>rN(g7hBilIe zmg_9t%Swe7@zp~*Kc+X?uP*?i?9`y8xJ>&F&yEx39A3VTd$UqG@)dxSnBwXv=3rj@ zX(3|5*+J!(Y_o-*nX?t{3{kKWB1ei4gdSc&TzFU<<}0BrEbl9>eH#lu1cNt3=5Ej8 zFx;V*2YI0G?;e@!<$dL%f>U0cyTTj5Lbwx^Y3_j6%7pS&=^Sz7JNlmcVp)%;PyHH& z9|Oof!ken2a?j@4a3FbX`-BL%60`MGiS=iyVb%~k6}ss1039Q-u9y2^CVJNUhH-5rw16SV!1g%kM4IuU zZ}^(m$`A=dx^1rWHA?-?;I<5-;knX_qqYCg7Gs(=B|5evbIxM9qS-a&g`AQY@5{P_ z^EB)J`chCkeC~LL_3T@t?`>qzT1O*Y*_FR$eV6g=z~}8%cZ+S*n_Cc;HJUdLb0Ie5 zfpOgN8?8SUXf%{)XKH7z8QM>G0z52~G|&XRr(S%V z);UG(k*)4ag+^gXzb4PCPc#_KK@?uFE4H^IrxP_$^=g?1H{FyO4)6U>T}MH0vK@YSD*+ zBqMw9x=YG?mWwn5`Pc)!ratRkp@nc&v;nk{^O=sR)Pty~s2%6W!DY1LIF~Xl zZGIES3e8^Fo>p{t%0m3S9&er(d=SqMVn@?6UZ2U#QOIa1&vkM+IC!%9w42e38VY%RoUBvracY#z(S zv2|KkC~Edt(WueE-M&zhgf}<4dDy%&XnQ~^*+mGxGVD;X*fplN@tLr@{5pHI+#BAO zT~MA6P_sL_>*ga&<#ws?V*|%niPMB@c1(Q)OXKEm*BBQK-(|4JRDNu~` zCr*ah!J*>?>-wGZ0y1@oCXkAr_nU)2&=IC(I(D?I{PmgfcUAV8pZkSadB+N@6)pvW zy*VX^UtCX|=pPUH3!b!J$77|4-WrIFl_{vae%g5;;;*p!YM-%Petp3KWm4jsV}+mY zN#qa!E7UXAjH*!di9BYQ=rYyA^m?Vl$*ZbjBt!mtJ^hQ1N`W3X0_QHs7FKLP-c42f zxKdqs$M4wv)`^#+qtS@XsJZ04r3E&(q$xmpy@7G#mW5uAgBbt%wbdPm)Id$ALi+`d zGeLAiiSqoQA==Cr+E%HX`x`yiEBN>OhXe7!+vUe<&Q(^bFla;MldB_k9fvSy9F|dM zcr!J;#O&JNUKRr{_WQ${5t0nE(dO!%C1ZHrlE$E;D@Beho|qB(1H3q-gK*`V;;|z> z`~{wJ_-KTYjsjdK+Yxe;_1mWewq)=6u=(bO^qAiq2eUUskF}Oky=Q6)?%5y%Q+9?6 zxM%m~&hBT-C^)@k85btg)JFt?WZJbM98dN^HE?FUBT`(5Utmf=@Yn?nkCN#n0uxC@)+CxwCJGD&` zw?rbb5ff`g8LJN}@Jqp~6l=aBEp1w{8^?EojgTm`@wI5&*7q^aDqu02(F zqMh(EeOkl=K3gcNk11l2Ut-6KmGRA7E|d$WY!_FfWa3LfBF&m+;EK?X6dzL**bAuS z;!!Z)xO%|y>p6AbRS#2dG^+2V;40Mfhs81=KRX<8yS0+!9Lxq!XZvmUCXemM$D1v* zLY%?sb!-hi;gD7Pcq`%8To`{)q1DEPmW^5+&A86vwTCsSMVzL=(7|3HWT-r9`*l)2 zE;o1}X#YuEehejh{Yx(4_c^H}McRJtEOC*hW>=hOL@r?`WuJ{3T7p!3CUTeFTP3Cp z+4eK{s3a~Chu{TQyJ=+9bJ_L++$i@&GmO|mi^jXH19$qHT6XXIdaM!~yY_m^*DMvP zetqlf9az`|?mvm$5In;ZjV(`(j^GI{`oosi@7o3Mu?ap25=Zw(h7mY3iB40rrbM8X z>^ZjCk-qG??r>SPHS(J-7>tD8-H|qThG(;a)LQQyW<4xZbfnj>f{t*Sc-Y*zRV8jF z&}Y4K-e6hjAl#3xvxtt_w;(FyZfEv=3F3QUbnloUyaEaY`;Ep8u>k*9Pi>L%T^J1J4k?1syt+S zPfZ(iFm>dHAC6iQ=bqYi^%i1xn~Mo8xj1X`=f+UJqAdYY#Aa_?x_hdHX6N>1YOW1m zoq@d+nhNCh%yiqs%tX1lp#(w7B$CDJO!p15tM|ogjVJ;Q2O`H-u-V}oY&p=(S|22gl0Hn4k|PL@-sb`VPFCRQB&Ci zZODR=ZDx-?RSz%m`+09{i9Zv!Ol zrQla{#N`a|q&4-=578yX4M#Zfe*`0nLc$8jubqrd2#HwPO$Ce{B_JCbNNW{i`=sytP6q+qZmhfemMV6viM8 z#n3Y|v~SZMs~%qs6>pH zWj*rNs0=pm_&s$mOmujZBHfyE$(PGsOS1N*x0CFBq$++OQVFReR?tvKWh~&3Sn(l^ffE`Sht|a={*0KH}=wPs4jfE z*^j|GJOQ2HD8=sd17x8Z?knNEx4 zP-C^v;JV3dDmShU@U-7l{4S=iZiVLjg-iz9hh_X;S&o)X2qWQ)<1fD_+&4l=Lp}2d zPeYkqQ*1%e#P?g=S#O*8;LaK!VGIAq186x)_)`q*a+F)xG zER8YOV_n^7z^zmK%pAmtwkW!pulqEF`Ph>pxVcsFayE;QAgP`g>yb%AYN9Du0zBTz)(GcYoWEk=D}bZ+-4z4MCp>OrJdC= z(yzLe;=ms}DIiy3Y*QDDWA|~_g z)>S4#X#X8_RzLfz1|r7>_L995Ee)2VH!V-*@9;3OH-9p1rK(5lWsr%EZL0T6C85hb zST7ddB`g&py{b3O`!w(ysOLbkMYXsJPDZsHuLji-0J_Y97PnEfyDqad=eszbfCdHc z6gX+w9k(0hyX5Uq6pYXTIbU|)XWS#OX{YGnWcs)Yb(dTHOWo@YKAvl7p1byAf6Hhk z{2@A4CLdq6JwnLsy-k{`?Fy}0LV|Hng`4CZBc?dSdGMg=G1$bWSPF#l=C$;uj9J7m zd4C#%@j*@@V#zgIICONH$Ro-&Y*9K4S1WHl?2Y**I##>i(s^Pvr#Sb~ZBzvg=rrOg z{HZT1igRJneRzzKW z%-O|HW#?0LUOiL6mK*KsYI|P1iYB@zKk$M}9N}iHcDoAzrO>tn1k1R{E}f&@O2g&6G6Otpk0Sx!Xtb1eeq{4K{lpM|kt+srTuv*qQ`>RS$%B?&hDrohgB zL*{KGfK%GoU}&(MXHAmE#MG8hjXGvN$f|PUEE3<2db*zY$(H^nz6ol4dqyoQJDK}B zO^~syH8U1;u18ybT(P8=R!7ekbPdw(*Vh!-hUe6<=6L}-<>R(1GBoB^>?{N3;9NV*%)>%vx zj4*!hB3|o(^?mZ4e&dCiu$}sE7f~iS(qsHu4wmNPXuXbZOqr&_cx& z2_Sbf4$m8_vF{n7E%*l@;OZJ)Ik|_Ay-pe{)3`_l_1k)=2FK#eHzV1bv;;zP1h;)Y zGe{8~dvh#sQ*V3$3mL|I)m|OWUE#p#taBVT)GM_@ClCzERkH{2||{b;sP_T z%i5V2U>iq`ZE#!Hp}g#_yPrt1!Git)AP{8Nn=3|T>vp?5#0H)i@xFmf4IT$V&%&XY zEj09IrTNHy|7xG-ps-I%>pSC1IJGU}z`21>iP{a+VOiwtER2%$X4lZ__dW4xZ@?0@ z^(CAKc0_OBff)0|9K?(cIP-bImU|>IQd4iS%kS2q{LoOyK5$U^?lYf3e`IHS~i zaXGv5`4A$U|E*>$FbywGL_=?cV2$Yy&;r-delH3+yuyV?RCPWth7twPAh5idx58YsC z`J&QQbQiv2d1}p_C*F(Q3fM@j5)qr=g`10IJlRif_=i1AV&ra;1Sxv(wS{MWp`*N= zqd7n7Sc)SUGxBhpg`DCslM`?B&!<=uc-vA@87J#=>PP_F(S|f{ zK16hDA@m0iio`9kF&6~CwiF{WSU&U9a4KP#CL{>2_yy9NF-8`Q8k3^}4L(eaoB3gz zni$NU9Oen?9MRBPlX1FuhnSb_k7h+6tDtVy6unRTbW`s{s_mHcH5N?tf$JC#mZ5DY zn`zYPPL`eC1hVw7nfbF*cF5r#SD=P;4U^$s)x>m);_V@2)15PrSm;BwrFtV5jJ4l-g$@ZkXO^-;bWZ-y7GUC~o^vMkmC48ZN>?nBiCfmbYLmVkPngK(V2rJu~ zgU+yo^AWWq08c%3nPM=>9YU3?Ve)yGsS_q|If}}j-g6ZPL-!y_NZ<G-yIae=^TGo$T{N6wmQ3Mv=VZjL4h zIdY5Pg@Rx536Hj#u!aw%DewK6yZjNUiciIsaU8x#`Mk00}vIk^_eE&aZ0es=2WNhOw35XGwJzoevExQcC%&sO-(vSBW!D_>0LakEX;C zI-dAxQ*mbeRfzQJR{ld6@-!GzO_C3Gr=O4tOhXaz-DL(~x9(uXBze|4vbxc@-s-LO zt(_*cuF{I*|Ehn_@xbcDIX_1?QN1&qI_jilU&Aym=3KiV?y5hgF;BNRFi7#T_HZhN zrK`PQkR&n-sAfk{b2t;_$s+EwTz!dEei=P$Sz;EUT#3B`q1Gd!x(1sb#{?^g6APBk zb+WbCo7u?x>Q!+&kuXH53Ba4-dM@f|s?5$D!Yr_qLMlva;-U+ZGp7*vF8IVFvFQ>D zD<(UCg_a_PDtYL6w@4^A_;f1pazYx<^j#GjyHUL`4`h!tPsoxEAyodUb!e+e(8iV#p=+N=jE3l6n)Lb{`AY6gBx)_;1`c-~ItWrb5qNWd|y- zBc%yJtv*_z774`S3q{*RG`S1Dp%ozZr{{YC%ww=dvk%!4fg(?KPIJ1_I!#_p2SK;N zo(cu-7LFE5Q0{_*>hU_Otbd$+C57XAzGs-t7ahfXQMV!1j4F;FI?)LqHnT`0w=yhK zd1-X&J(ukQ7LT4Ue24ITpbenMB z#23EMrQhB|=-^2OfkL}DPQbGzcsL1#0ErNx=4(X^q_qgt)dS4NE9kX1z(kFxzqEA* zW81)VZ5I4-^i%rRjL7VeA2@3YVPLlQfPZIV>H`u^nxR@By^sn3uV;Rav(l|KUxXbO z2EdlHkWI|8t(POt9FNn4G63S9Rq_f9NR{saWxxM2mXfY;d`+}~1hNKGlPenuqxuWy zMe-f8fj#PgCh@)Y>(*%b$0 zJB8MPTOzy{d#?hCF<#CfJyhufPI_N6cEV?fzjx0=nwaGDP<>tzFkJtluU`T%4e7qA zknN-fu8+gSf#;^t*C|Z8KB8N)TbB117aSLBmg>k1gO>pD(L+r#FK9z7ghBI-e0UK( z!%VW}$mrfMLQ3#D6wpo|WP|QC1-Iu@XYMOcc(|bANL9%z*~yklJ2?#eTB{GTW=$BjTcPe*LTGUhhKi&+?W75@JDF6$051IG6rK`L$qB{_+_TS+#CjDN1|1V?xR>gv9U@;L%X z+;4W!7xhOn03#P6(r$2ay8@f%NB@f_Mt4RmJhHGvN&AJi^Ie7N8igNYhJgwsbGa%i zs~A6o(JM2%7rYZAEHMF_*6od13|XpQuB~+d_!JB#5cL6vj2K+%Q-%??_1oNEmbbdby@xTB5?~f58K%fE3 zB-!=9yz9#k{?usn6VPH<qJoBo^J}OQ0gv6dDkC^R`ozw6$ z!2a+jArzqAIxI3S;hR$95fL#KYwhCFKIt{qnyHj34v}6K{o$>5)rE;DN*!CHZ%gy@ z3BJ*~q{lp~UnOi0Uua#^^ZeNsv%LJWbZe!8@~W`JgX!U;1B4(S^h zz&Nl~Rxx$`v4_5=^ka@i$jG1#2+Gf5R=IeC*(_DE>JL^Q|9J>7~~Pfwo3rIT1S6FHRs#*h6X9NQ;`A(lPjw0*!76L zMRWTv!9l|AXd(9vI;nW_=eYf20Lj^$yrIBOPmjd;sTemTCw|_P2k6irAq2fB&4*-g zXoy@)(U=wuErymW2I$g^!*=se{s=h6Xh0h_T1Q(UH1#R4-zoptBt2gPEsb{|{VHbr z{;xnYGAKw$|2J<7etcCNs+Zk>o$%ZKNJR73o>VYKo2=Dy+R(cdCB3De8MZK{ki@&0 zVu?U&dP(%t%v{?9pnQ$!1t7}mTMtx6hsw$QTj~_qp}|4m#ks#;Ia}#NvxM7`tWj*w z+Mk|#x^NJhLJ7G0vVnD6dCrXjhXWo73sv(6an?KCe*f66z~&vAM7Ch7E{6oR2z-|q z!0!q-L9SWeu4dYNCZRpz4W*h6$Nz99M}cX-xl#W!_^+WxBpgsN`_5<~{VBgTU@61n z`D2!#DE->9hfx(jSDhS@sGD z43yY-9nWq<8|q-Xw7{d}b?sInb4klQ4+*uT5iH1d{acTE6pKygJ|k-@VpFnldx6CY zBGuGY_P?f^r3#UDotCxlJf@}c5Ms+tixEf=M(dY%Y>Q;CR! zS@x~F8e~%?88zld1gBdATh6;;RtLV-Uh^W^{GjS#?RV#UY#=72qeLy;3&-BNItF-K z&-NJswUxGmoIX(Xm$ZGp)9s$2x(8|Gfrl%z<#yb|FTM0>Efh+@(49;qI5}!HeP6PV z8;uy57)3?(p|!xDH9n1pcXB9@h{1z*j% z+U2)$zC6m6)S(E~sMEN+W4=xF7w4KWHBZxL)E)K>j0cBp$?9>p)$29N5`h}gXQ8OJ zY@P4#Fh%Qq56*kLHLlguVhin{CtB?~+V7NYZ6$IY?d@_$i0nThWLZG~0#Z%p)qj}$ zj+%$g74L{F(JAQOR^M-SfC?XoJFg!PhfC&9@JPTulJs$txXl4s6&&@N+^`ilQ5ziPA<$xruZ&Dy6Zk$n zLfZv1Gm-kR$+C%mkb+=Zb z=4KyPqM765uCJu{Zv;Jq9T&Q;_&SNX79jtR>-Q~3=*!5fzd#4SxiibiW3|-P9xYTc zfP;q@@$+oB;tkm!Xk;QvzV6z!7)h_7{n~$-nDGT(OFR(NdusGFakD>yUo{Qu$rJ_jg zTiIl~8GLYU)KB;IyiOwhIp4Shk0Q6v3K=Np?ScM8bys`n6&QKZSPTc>CkWuY-J$SN zbfo+Wn)Qj-aIJh)T6AaGT{tPNn@1fcNP$-#$b{xm+>V7X zJJ*@4Z_gFa?Q`f0e_mK|JLO@;wD3pBs2sKI`><=GG_%mpWBw{}v&DBAdnknexq2_J zNPa7lPam=8vNdk?;GExfXCuJA{*|2|xaRVmC?bbgwA!YA=e!JQUVmxwDkf>ste#wE`EFaSW*yru>*UAiyDNeJe zlm}ewWhQ4mPye$^chZYH%9}U>U(Fn%vtzugua{P+5BL2_cSx}{b)m04P^1cd%A;nZ zlj@@6iR&T@!WFHT4La+G%v8Fd3YfM}@6+d8)jU|^p5FzJ+r_H$s&}92NY2G0$Vp|W zh31Vk%Bk87-w@m`W*Ky2bK9|^<8dPPW^{5Xrhl;nZndGlb+2@M3fX514Z+_?G;p7X zo1OSP(JA_00nIx!Bqd-528Qf?=S|Yz{qN28a`PCw73T|5lfWHrtcS#CoEUSsFmhy&$3oP zdoP;PUWy{S*&#AjTt_1@Wy%^dy7ZP3sd*InFE*dzuy_zNF2VPx#}0r*!TDoBH#E)f zGq33(TAD68eB}KV^BmidRLk?nP(Ul>ss%oqX%=iB4QWgga|wX$?o zrESX7L3$a6B_nW>l&)?9@uFiNP0mhC#`wHIDX{Jl3D|B=`zuYP^JT8ad;+G&y#Z>9 zT;Z&9^J|Z%-}A;z^*(FdpB5qZyDY+OtE#gMpE@LOn>>z$N~~}eph?#KN?%O>$lSad z_S%KcXo?8fSJ47`& z>&XAqT3IVX+fxV6TyZD^*IS1jk>l)3Fz8m_<{73om7{ao2=VmLp?>JQ6!C1&+%&Ih z6YgAUjLPlWIV|z-LdAg!SKDW|&srRA_o_%mR+y%ZllP4~&8U|^N$E)ryXurRn2m0y zp)v1%oqR9)FNR;g4bIq26+%2U)nTbFF^T8K4V-4X%TyKIU^S}gh{JC)*b$}w8-7(qtTB*lpd}K7BnYnzp=1|~ypm_MYwAK{QgfQ*U?k6W;;J|RisXcj^ z`)rco0Cu`DQ-`6jZ*D(4KUQ?w_*nEXN5n)fSu+cc{~AB@I{)KcQuI&BM&M8X<#^LN zpBYph+8JTY39#!LG4)hy#bKM+>ooyu!+jA?lMm32N%&#Tz&%j)Is!5D1YW5Z37eNv z_uZ-EdDz*4agP=ZUb*fr+gP56sO`G7-~uhZF@Szyjg?abe9K0brYZqgoH{ z`KnLY+ip3Pb49K~Kg*%hktBYO^PV>U*Qq`cGBM>>*JUG|D6kiF#&wCsvj>fY>w@f= zsBT4M$Z#;RuRiS4?1h83ZQ8kd)$??DQAKsFC9ipv4Ok6fwfTeqB6|C9tKG|+ZWczn zZF1PF>~f04)jiVpw_hI9RT{W^FR*qY zFB|>#%Po`y^2lo*TLzT!bHhG#Jy`Ug+@7pBBxu(X4|C{-icRc)XfEz5YvmcCS}83y zF3WLbvK(B%ZG1|Nkp4uhFSk6M;9T@;(y00iClgBA_I5I4{=4+ScKVMcWN$ECer5g4 zhtC3nA|7b0X?Nd-(PBRfKB}#^z4IVQR3RMpnT|%XUqh9!D(lJT$VpX-Lv7!Mj@oHC zv5NpMl2!x_oVdv;DNn|W=HJzSG_br)v#p+yCP+|0#g0=Ej;?pgVvTD&e!E@orgod+ zo`N3RcJ15AU01pj+C<8<;&cdI5mzR)3#sUrY&dRq!DvZf68$Y6I7XV1rBS~q0JlVbTamCYwQ#}Z8BRe3VjD3X2 zO&am*1>tcsUwA|~Fa=MUI(L+d!||J{O0;hBFh7r)J2Ir5oZJ#QSQt&UOwV4fGr2CB z(L5b^LdR;AM#4!HuUT3w2IXg8iJHsz2Oq`fSkz5zxzKoGTPa^oTa3A%Ld!Zd5t}wT z+FHnOOyEqH%2VU%fq7~dU+>=VYS>frqo7KD_=!DxumH8bXz`&}?>F6AW1G{%mOF<3 z9^kE-5$nzwxoD@xj~MWr{M*-`K5q!{Nh7RpoajQWoh|n^&h$>x4Xk`qzin#jD0*Ex zrpT}?9@31=yoyN5(dE7mPJnEfD8+S+K zSHxA)0xH!biu2pJv87a! z^Qh71Y`+!QWARw6|IgdQ=Qj{`i;O~u@4kFgw0k6SBV^jbP=!=HRA6Uk7tclXm}9*P zZ@9kZFY~_C)NXo~-HRpFjg>m;NVT@7*0emb8$5V-Ez8@Sj^xfb+4SbeHb(KibgG`p zJ;ih;kIS#Cc)P=TE+KQM;`#F!+T)apdo&o8@W-7uVmRG_`E?2w8l&&*5nizz3>3HI zN|vVZk1o}yiZfwQV5l-eeFR=>!3jJtZReki4(J!@=94oL!PW}ErA;um5B6LW>Ar8n zTHGHwD-gXeR?p8a$OD0jXk{1uZn*4QUv9yiRP^#}wi`1C;&DnX1 z!}^cFHnVQQ7kdnu*qLi%V-rr9>F~j-*xy~q`$!PsC|X77L_Jp*|Ki>pV-GBGTwid| z+nM9fT&T{F;2E=B@G$A^Ek0r~=lbaz;=+vM56C57x=Q^SwIeIOjIMcZ@JXv$Oc!f0 z=cmf2m}BZhF74{p=#b}9J`KX#N09{Xp+kltQZ1$Eb;FP*u9+S0NZRg`HJ{o zn8Z5~VeMKi4UHZ+33C52Uy{=cHvqAF8`kdt+!FHkZP7%amo|31G^(E#Ly+MU(?@Co zZyd3Gxq!MGMaBSnspIaT_DwReDflCMn?8P1kb9W-v!u81cvhtPShI9YQ0OlPOZF1S zSkjaJ(GMKM2IDhAE3U6^+YwF!L4LJynQrIMWrwY5d%HBK1BgMrF=03rA5lar4+=w~ zD#HveaZ$PBm_rXTViFYCFH&G()b62|UaNIlg=~q@6zLn$p{C6=odES91LPr=rTso* zC;- zd&{sY*RE|;TIuc-fk}gabPEUwOd9EsmJaEVbdpL+r*uhogLHQ{N_WG)r|Wswvsmx9 zk7IxT_b=wboOfJfjBC_&jxh>;MXqIRHxic@mQld6xBu+eAJb#(HS{cypEjE%^6sbj zbbu_>Vt8|pwRNUZ-33H5$VVU|YGRGGw0y79=+(h?BD9G;|za-AQQa<_+9 zD1D3_GtT=?Zd6t$26L`o#w5)aDe<@|Ck$F$?$&9Gmjps9$0pllCvfVA6eK&}Dk`G_ z;6v8#Toan7A2be=aUp}X6lboAup;bMg9@&3og@&Jl3)IfG+pAq*bA=S$;yC!Ulr1z zSNtwKv7>edlb-Y?eP6L(@zUTak2x)s7&zd6-hsEVpywsv+;0<>L@emh8BM6Gd4_d< z1j90aF1n9>URuX=fvegiMZXkg!ODkWeA(cY4#J$e65mA;A9?>FsfOXdiC|ws*wwm) z(NUQM1(mBWQf?3m<#>4bfczK{6%Jgy_ALoOskrfX;z1bnoaGQpx-vvJ4qYC2D#+ZQ zYbuPK%rNTj_J09w9{650?}~wg5Jm&OjKWEuHf*cC@lv{*n~W-T6jS!UuO_8NvKEbT zrK5KL26^e%l)rO=>$Y zss?N8k$5B=H4zi!+TL^VsJl@LfA=E<7*F|@_l0-&dV`d5G`jf{z#$%T4mHp zlM~Xy33)XnIq{aD)c%x}=c^5$;Z6*;7O1Y#h3;0UT$r>u1R3>`2smy*WlT$AjRC8C zD}47sm7K5S>vsxzC6IRmg5vj!!@X)r;#iiYV5}`Fc7NS{cD*V4W?aJLLE6D6d2q6B z(1w;x#&mEp4_gMQfOiSR%lqdEvNQby(an84WG}9hm;O2_BSBE2US1PpEBp-n+*IW# zI!#gFX|egY4_~}7F%+;cT$H}wXgn~$Z*J3|wc`0k+lNQ&%?pgkrzpLCrn!bJ5#wN3 zn?%R{V|A!z!VorA-V844fw`rHqAIO7DXI+U)5-X;D>`+q<@6l(_Ek5EYM0v^?rF|G zi{yIs&_gD-><&~3oO%Vttv$QxS2vT7ZG>3oMwko@@;$=^YJpX0O9B;|E>mz*-9g+^4 zxe<#wgU_`den!ID%QPjr+gCL&_g(q}=V0{A-4HwhYj*P1BUL&uBhad(#`*7!6gh&> z;Z#4W%xMC$$N=DVIk_(OKj!2)^UD zz@(t>M!$shz!@f{{mH^4m5`2xG#7VQUdb>`ADoCbs+5+w!iVSmw?)zwyo0ZeZ?yG7 zz6_RA$CgV>9Wk=0CKxep@)?nn3SGLN@q}u*!bW&@=w&wR-EO9A@q`jJ<2*E>1sU(# z6Y{xICC$Z(#ZM-s&%%hHM-kYPjFD4UHA>a`?qp+joUXYtecKLoC8x;F0Nv=7|BP_~ z1SEyyBL=!;1cl&ArgPiamh#JMyTQ905y-RG7!sWgFOJFRM!aQ{gxlMJ&RGE1N!6{& zTzFp2i})@*nEb1&o$0}wQ^0l|IK*@w@(Laf&LF6J+sAxI$2vhSCLKfJ5EK&g_ZOb@ z4F47~)D2Y31{L)0Eot#hF$gMD!m(Jr9!SYN_S3mlbSf?2lqx@tOsp9k==HN)MV2t) zrxW6Rg%I`Kx>Y!0#ok0YM<#!f>=$bsndli@d8f97%yGN z_O%8nU=5N_B*5PVO^sI1^SH=Akolx`B}b9}n6iJ1@m{k5A&yvXf(jQw=&t&S=QV5h zMz!&CDQeKh1iD1$fw0cEfU3PI(bHudUp;NBBCm8aa{tZ|me0=bPO`__eTa(9v>AYA zz%{U2no)+Rjp~8X-4o7`wKp3(0TW}|wuicu5OuPE*-1ZkH$_2u+@iQWwTfB}4uXQu z^eFi0Qe0O(2dmlh`ryq&HN;5JNrYY=7uF3oSLaCjl9B5)==QdV|NBra!h^Q)(Mi$< z;bPXCBn&QPHwhE<#+Ln=LECqp;tBYo6;sUvwxT%v1sYpB6TrMWWueR8cJrW{!t3KF z)*;;n_cE+5A*{Bg5(T1b?E9uyC(rLZS3v!tpc31}MtecN=s5RVi>aVhO4uoClq5Eb z5j1$bBHtdI-z&q*ONt(??*Js~^bm)gH!Tt5yT({2+TU3!UsQU^pbY%c@sG!TUpqNO zJ1{uiA-zDb)F=Jx*9-EBEO!ubwT(+DYg_*Z19S3=m%rIsUZgZL9-tnd1>{+s<`i~S zsp-Up6ucH~YW#>S z=(*CNZMqKLe`ezhI6`<>4Sx42a7m48$S$`M7FONokr$=ZHzP8si+~3 zjETJn0@_9dA8@#u8!-OM z6wA#dLQi|5k?0jN{Xfk?x^gc+m4avD>V5%;D4Ufnz8>h&c^4nZTW1zIb!f zM9D^RAdbfdLh`l~0t|NF&-8Vd`p2^Vd^CS2@~c0~(F|MEj5Iy>I1oSEXQTThQY3v0^%d%xm4Cb0qMU`83~ag5dh^Y zG39zf+F$e z4Jc@cq|=}!8CdRDhO~Z~{97Qb;P(6Wtrj;J5_g$clm22bk5njC#jfdpw}p#zf#Joi z^r@|t2sQl_9LYHdR&l)+*us?)5L%K3fTs~69{@gmhPX;|0wa(1ak=9Gc#gt?gTg=X zA%8wn-aQKjkGHjnU5|KyUy6^Ms;4rs1B;Y_Eep!{K1xOhAn8=-=l|4H{&$-Kk^*4k z0y6|Sp*MNq2Yp&zUY=w3=XA4|PaN?6%|j6&Mgqd6(0FY;;NErs63Aq}ZYu>^xc^UX zi(CUuOcL&YhtdEbj?pxr2@t0SJ=6d0JoD(;z^~qmtTX(3VLq_*FMy`&0co{F0LZNd zcqH-1JNtuw|E#433S3h6w6_6(3o6*a<7E#2PpicOS6>SMT62Ym}T8VL#bx9@uZb(Me`tc~#R-+(Ct0MdNNBTev_}TkM>7uP$iU~r6fX^`}m13#C+1to)2H*Ltl9ocuUuR zA{73U7#NKJ7Ivzv&O{H~D-dAW_my6Qk$>F@_^l@N`Zv&v-aw&iJw88G|8s|b{8s4= z@I+)$2M$2j*Z~dvx%RI&7XP-=|51BBcF*2#gH^~@F&^|~r>8Z(n-zVZbXInxt7S)i z&j#F^sIaZJ{(mvL7-3Wdbd4J{>9YJ;GfYMj<5A{Kk>1Jei|(<_VLR|P|2 z;;;=hsLU1vO?)%Ms?7NWJpJz5Yq1o)MZ)%1d65NOY`Yrc_%mNWYZTRe&X%Vx{q==e zvd~WA!lvk}`G8_UZA~RzEU7AWhz>?S*#Rg1hq3C_Hct| zw|1*0iL94u+yAxFud*#$e!|D=Z|?^~%^7gv>N9AK3+sH_H30HjCkN_Z~@nE1zEkpzZ!#~{(ekd$=kEIxupoN?{0Y{ZP~2)Vy#&frARH2NjCujWPo z(Lh(*0xN0}U5%k3A!-tTm&C(`S6pkuE;TGP#zNdf{U5=*K|0`5r^PcBr2@35l^6UNC_EN#; zNuiZ-1zn{1GK4pL&pWt8dEd_S;1o5NwVoKQjTo;Y_&=xXvYP*VzVsTQBg5m)J2l99 zDPegvaD=dVjm)QzuzEyCGn^H$iyKhA)!?eR^c--Tbj6t{9&PPNaww-6+?2wL+^_}( zW7~FQO;F$chS;!FMgVd0Z%pq?gof@lj$%UY9hdjZ?}V2Kc2h^ul`#qq7t*pdW~!O2 z_npO3m-L?N`ROgc8pE1oZ*i8M-++7Dy^&{6z5QF32czAFdzc0S7adP4;bb^rzPc-un zyRW&MqKL0O<=OX8k>Y>(T0wRMrNT?7_QGs!rCVRCj^dS#nU8YwX{=kCv*S#FUgDG!uOG=`pHb*4Oni^c~(>)#Ld*v`e7)TbfZm?SykfAtN#OsK6 zzimKJ))l`o!V;vxw&``)4s=k=3IwdkI9OqB?mZ}>Y9}cBPcy8){oK(Ykw9b#7@OVe zO5x3<@B|~}XC!`uZ$<0bO);%?o+KyVWSGa;gUpV(yPS2x9@_d|2W9|zoGrW6kre#~ zacq*i(-$VhR#6qLFT7twRVzxPtpj8F%u>Cdmn?8w@Kt5IH2-eu41%&C?3aN-m_fL? zwtEu(OFhz{MGk9P0M4duP{^$vbk>z2Yj9aNFhkdU+h&|e;t#FwdN;8iMPvZ zmGE$ZyX}3!yb>Q#mDeu1jLODXQT^~!MZEK#D$YTQa?H?gD9W7P(XGGw%p8gky=T&U z5FDc=m9A}q8zRV-R!1YQm_qco6_?J=_zXVvj1+!pTqcu^ZTs&w zlcUW(zh!}TP6OX|`Hy!4xS5!kvM4w>IN}o$WF7!-cnfdXK^2(tOf%Zv2cZ5f#8JQLgv|RqwP6+N(x;~f|Q{1Ce6Dws2`5j}uI`6vi>%{qsLxf3rLHHy(0_O4Y z^K%zB@$w|Y%iD6l_F;qHXis8)n#SRHc72ctvS~CFSeACE-<)w+Er3;Xx#=LGfP*q8j&8^%*32+syEumPQL2QI#=!5*!O-tLq{NFcLz9tgQ5~;{s zQH_M=e7Fd=b{3y;B<=S|SNDS|w+f4q8_z+>5KF!IkZBr~ip_+Ga> zgd&O+^Wih`o>xbS_*{mq$(4GNGUrT$cX1?a4=vzv&w#>ABmfEi&QMGJ$jXT@AQM`F z5;T;L)?FW-$WFhHbN8a1Vg$;nV17ahCwqxAQ_xH9p3okxUx6J4jEz_WH1R&MQpFPQ zgw|IWHs8WNu}my1jdb6IR#Rlb0UpM$w697v!GOz2n3VWv>my ztvQ3?=@m1z8Q6$H>(&E@hgR82iS_vudN8gv;K;u*1-LWzE+AXP4%mfHUUEO~a7x$+ zXcXK$LvL-38yv~vn4nFmMy3&$pRhGNF#!^gXg_Fo(osNJj-09)1+ub=E4Gt3pgdZ< z&k^8)%C+*TdDcbjTnN2s&Hbz@AI)GC^qxFB^^<$M9N?MKQvu|oi5{DJ1z3=hYeVzD zgMFyy4g*3@<|6pJo}f1kR||JdPng;^>#k3(D)|w)k1N6 zx>;QjA3o4K?H^&w8*%8u!N#Q^=zl8!({&vGe++L#MuG2W7a}d87wbbkW5i6kYDN=K zf^|VS0uYq^!z_$O0+irXA!0&?{?`iltpM#`xBkbIp&uh1f$yZb*NLGQ6TSt?R9el( z_8Y?!RvRk0(PvzR&?!KZ;h12&D=l5Cd7T%{tZ_ z0@70TTf_DdsVLEaR-kg?F|8R;75mq^#r}Vi3ef&vlk}G^&?*Vw{Mg3E={iy;5b>>u*i)@Xw=S z@PI0VtRKP0f&PJ%<&{oJ#wbrw{j&p%*WJI?;Q+}RhMyOI^rlY}YzCT#*9wE~tpkGE z%#Y_=+%(|To8Q;Pfqnl`tfSFTK~yDULWS<1ZCD~^+%wk;@)W5dN;c3_3<_cKql^Fp zb8}zBGYjblt6+6o+o#TZ{Qj{6B$SCoa!H9UJ168P_(hVLh)%;<>3$XSYji_L7q#9a z1@1RIOV#E(E3$8P&BM-6a#w_-LRWL+Y z{z@X6LzPoPAwE7(znJF36geWMn7s(+_o>Wv$J)_)345k|PNw<(w1;4eMOV~h=WVWT z<;%h%j+OTAAplR@+AgKAvh{$lG?mA4C-mY4F1PhUjF{|=%!XovhJk-j(Aq}96dOBx zYj)ohxJ>MwhiV3Bf8I0L6Dd4RE$rY>XT#T@LxpqZCo zUB&0BeVbjGj1NTofaw+U&)Dem3L{``RHXFQRVmic{mn&8Na)Y_pc6DykCFRsf&A)Z zW8_z!g1>K`{@Oolz~wc9$s%;SGW$+ zaK<}NTo!H2f~ndJm$K*3Ha!5(g4G5{o~sX%PS=gW6_Jr-==+lh@MrH) z2)p7tS*rW#v&=>cwsn7wKkyg};p3l2&2TBc@7Ece(nFrpfy%+U;xI9`BQ!eKP&z z9+`xLv8f@7n+HCK&4Vy0FxiDg^I+@_DIycx>cQ?sp@k;seS{noo+PH1BY(LR#_w`| zi#Jh$*_48Jo)Fi=ME9iE3VaPDH8(n`|5C{^f2 zy05}aQ!j_=9981%2G#Db-nDOZ0Y3HY^i=*yl8F3<>PA6#YiPxe$S1%|YykaY;y)e; zM#D;N&}yrIgGA1(hk~!2hs!I<73MR5q572il;y8{ zNFFml&Pq$4xj!bxcO9Cc)BdWB0kte}Kx=S-x+L5OtAmX}+rw40S-0Cg4(ol1Bp3U_ z5G+WQ#R#GM0!C(pvXq8t?~Ajx+d7rcuY)pHe;w^`@4enSXU6k$e)c-HvIPdp1#S>Tt>R9rlx<3iWoXnRt0oXcp#HXiX3BO8dv{<5LciS}2| z=_>ujvqk{!UsTAHoio03y_%F!Cu7I^hcf?l0-$NRjgdb!e`rwms68fAkrT+_pMKz4 z4@u9Zaso0ZP|N&3S5RgG93KF24cr0g`q6AaxjVkILSzO~+2Xqe)9N(yW>{^6Er*meGb6xKNFD>!ZKR+{X|xSUDoCbH0aK#0``m7{xb1@(#<)U z0|2L`VmdP(r##KoDB*xs*6n#GT>C*)zlFC2F}6%HY|O-5#AyU$`F-9d&*7BD#-0+lURjjd)Q)L zRz%f@kulMz(AiYiJpB~S@S$}@E6_QiX$s*Lzq7I1$If${!*)({jDekIj8-INRzlTo z86Di~YBy(fmzgI+s1nVdc&T2A$OsH;-XXN<>ThDSF<9!3x=k<5M(MNOUmFxI& z?G2xocgCMBJpobNeNw1nYBiUmG=E^5pMb6Se*WHpx%YgRV~`5}Ex7m2(KZLdO? zoP$+q>H0#UzhdX~J>{9!i_?$Vlxl6n-YA-92uxn?Jd;cGf^(q5gV!fe#j|*#Oxg%^ z2q*pR0i419SIdI*&0+B=Aic6%sxDZ1dnqA-`DBLM&N4=RRDBoAe%GVX#6eN$c(aE4 zKZb^Dw3*IX$sk9G6d|q46-5O{GBg1~X*jVl7m55B2Z)Teh6A7@p>$%$`B}1UwYv-< zZIs`yU_yi}QR1S)(8puzZQR8MzlX;x?NJbP0SL#!D2i#Fe1p3vTl(&C~Q>? zV-75t^-F0TLYIh%@aq1#h;sO`ko0;sU9ug~Y%Co~_h9(R#vTp7>g@sHqAQHp1o<}i zg(d2TeH5qFXZ_@CSi({onHT-3htie=gsj~Z4Q2?}{xz$k2h<}r*9f_eo+YU)0}8t0 zBg({RNw>3xZR;1qKjnN;OL}XLbj}-<9P-_`PUobP%DF8WBAu-e7H{=Y$So~Rk&T)6 z2vXPRc>$X!JE)DPsz3z6kKtT;e6p_b!zUmpgJ_!nK=tjVv{l7}aYd7TsoT)ibQZt< zPafPo&P}AZd$i13YINi+x#8s<8+!*{wK&wXwcFw&$a{49<;5?@E``#2%Y({Ei&cT9 zv)pM$czLVr`yHqi6m=B#K18d|d{b~K&%NV-Vm3_*gS&)_w74c3_yd z_j4AVxQDmJ(a{Brou%r@z8xKe^UYOoCqeh{RIhQb>HJ%V@^NFjyh)^-i(4+V!{;V0xi)2PiyX$^567TZ5(TCJ#@ZtEXzi;=1 z03t@QZL*hHI?)!dE`V}R(uEHKL%Z}Kz*n?%6G1eWv+UnIa#=*aplCRP7}VJ|i!Fj+ zLYytr0(+^TYxEeaaftVC6zU399V1Bqrta;dI(`%L- zv;PiE0;4TyojbVmsn^u1_$3T)!(HU(!!V*TE=nx5D5jW+JcypUn$3VHvBv(?-9_z2 z9hm#oaETSGz^wx5RR9(4E&nFYEEz7Ebr7oBW^fE}A6@+#3DYt%fe;+SC{bWAdA?z` zc2g)Qfr1a|ZM`B_ecCiTODx>Tfz&;Y)@k*WxK8?DQ^I!@I?gERdh^OUFk_RKbr(Q4 z{6jT?f50>G;BqmAIiviBup+*~$DsULOn7^>2Yc%x@0Y)jvmB&2U|^(zrCHTOS(rK{ zE)WW`cyMVDWXF|R&`ob^igJA>u~cB9;rwttO>ropZoun>jn3*tk?9p2eEG`;KSxIVZ<-e&G|wlBRC~u@yOxjeG^SI3U!vD%}X4kmD1) zAHt(pDR+wK9NSVSBMKt^!gzLLJ2-n^DfBaxrwP%W8Xm$t^8Y=|=A&KSAK_J5tANhoQ{O@B9pH84B zjk^ajU6}WMU4>MxM~}NyZ>w%;BUMtN(hLrU@}A-dH5Qh7R0qy{m_p2uEQn!u#?=CF zjX-iWt}9UQ($k(@Psu^%~^K9dHG`&>W!UT!$k<` z{(#v)4{Z%iJ%GTZDYWZex}68*X3P5t@jSb5xbs+>L@ zVIJbn2Xif?Wc2Vf+TjLzdLqz2DJ1he-1ndQ!ei_t6gwoVciO02P_~^|#6xJ!^S-Am z^QD`o0J$e0Qp=2HokBr)*T|Xj;ni`$D!&79!J%pXG>!(l6LJ%V+}MI~5bXk@L4Ra% zZZ6}7>Y}jEyVRj}`J-fKvxg(t)8kvj#vC1&eXvTD9f_6+YUh+Yb_Xw)&|6szG2!eJ z&fAo%!HS^|&+d{kl{Crm*dwq;J*SAJp?@uN#u|qSTltB(_wal-W%F3?A_7ZzZL^&9fw||H z$$Jq4Q%%-%?;axOch}A&1vh8i+*_*Gd$=D`2_Qp?EggV;ltZmj3vG?Ts9FsQl&Y_woD*iz5vG zRN^qn+dLJ9PVZX=6Cvis=wu@;==;b(W8$wbl_jPW02m(&Ms?1Id2PpqmBdFBgF%jd z<11AreR%B1?z%(-Nl1!D1EQ&HV5F9rdD2-<#J6-%^S=*05TI1H6|aKo-?U-i&;y^? z>a!J)OZuG5=luB4gN+&>l?f-&F7$lDw-6xhmE3z^8eOl=V*yGNX$2yD{P{>`=&l2C z0#^k{Y8jH4fHVzr!pR;Vdh`Quqg*06#Cm83n6kj9)<46}?r6ID0dp`(Frta#yscd- zVkFIrZFkQV)=km75>+BZGwBaX^uH#92|6{5W{{y9=**@O>ci`w5kb+d-?pWA+QVDlqQ4w=j{R>q8bTjFAn)5G@LUJ}J2xn7Bd>234Dr#ytw$K6AUr`H!mh= zd-&9(U)#saQ@CY?y8BRfsJhgBNazJEt-KGr&J) zJ2hTf0On^153Ev7TCOvxHso;b!2PV)y0|!=%LtqJmB)x-p=_@RAtW~Xo1yTd1Q3h^ zG{P7xZ*Kw?ovjP3PSF5++=8oEyEc5xbf~o*XsAgXl=k7>kdm-)Crk^tf@l0n{!wPC zWfYJ&&Dl_U0U#41@hn~zl&_K>nUs{&GuhjV%)-J_`a?-0y0#W05NHxIgn9EAb{h>3 zaEittb{as-q>UrTi-X)wHkm_-ZxEhSAG}Wp;uH1N;PFNj5SW+UyT$Ep0le@aJ}A!f zAJ#x40ni|_iHhL>g0>U{J za~iokJb4a$;G<+FmN!F;%n?O1B=8~P<7aGRQz(Pu!B9a3-rexF!#w!&=K;=_`}7uV zp9iIs#Xx-9LuXempQ<0HX@FF>ns2yQ>$dU*O;kIO*XN}tfl?w9N(tzunM`$Fj*7S` zR~knZ5(Bgd+q2z&bb$d9fZ$a?XT)C8uRj5Fnk+tB5cu?P#c105kc~FPbp2wqBzprU%643?=@5zG{EIk_6b016}=s5+PfC zK*%hx@4@)UFV%ks-7=O!yu`qkY5TKfWM!o^H8o$oTY(oOARy3qN6++jp&0!?a?6H7n zz%IF7+q9bYUVggh(um_V+k_*y^ea3hu9z~-jjLg{7S7-Jv;iUy7>$v4CvuOZ%Vz@! zy(;HxH-1820TXxy$DUDDu;n;ZshSMjBMUD6Mm9C2W4g5<5=!ME*4^mU^l|JVf(2I2 zp}q^iQ~#^8LHbPqIR`#kPjf(D7rLC5R_b_uZ}zS*qHv>baRVFEpdZG9M>_}J`YR1Y zhbIL;zcGjbJ6e|r#RrZM#tm~~p+mcvM4{3fJ+8u}QG=VzUn%wB1AqqSBm+iK z*f_hBQA>KX`Ncvm#Q_d?EPFi0^A&?NPNjOH@Y8>S*E_a!1=0$MVXGZZ6^nfpS2fd0{_5&m{3`62h65 zn9aF*YMfX3UIhrX254~23nmYL|01mG-a}GsLb#2;$^FGf0L3+pM|`9`C}O3za_8F% zn}xctJEZWIt}aBI<_R=EL@#(GB$jm6-l4E`GewINokz6r$p%E2tEa!qa4(dNsXiy5 ztrtyplT$QUd=rzE>-L3ak;|v1J3f7pyCk>{f5w~twT zc@40oHAP9gS>{VxlLT3&j*g+DK-Fk9q>KjDiTSer8}b6uhTpnju2^K%wdQ1dxY z+-7;HZlWx+MEHrh&{Q6yeqYBjY#4O}S?|#+x!-dA@m^&0s}-d`D#d6B7_(>#4%y&r zFOEB=GR44szplbiMyuyj2JYo>yR>A~69JJSmMxgD*j+5gkd5_3p_7sdz1~&kG$)0X zfbklVoqC&KT><#xraiI$+@&JEqtML-?~rPDz~na2fZ;N`tXqgI=w^&@ltKm(YB{Di zEu-qeL!o;mCjQZ~%+!$W)fwM;Zm<4XA?EncGQ&}LKQ?I`?hf0dH?^OFK6j<(*6T@p zAR&t`GUT}a$?mw2z;rI)oo+VSDs%U$1k8yqJov1=?G1wN0ee#wDa{OfHyRD34w=W4;u-X~6|+fzs>DaJewodE2mB7XVm zaiKs<2A~QP^!Zr#1cHU!D+xJ%AP;(b!qLGo7~L!-Ss!~Ef%2ASX5q@{O}+$uq>wZ4eK&?BReYT(Ds=M0f3-I{)r-Od|P8N_~mO zvjoRo*3j94&Pb|(!><#@Z!fP|#8Pv=6h|`Xh|f++dFNOX)-Vz!FIfZ#Ic2A**Nhe? zb)}(|j5dWB*Sy6#Z)jmKpSB^g81VI)$QkeNs-SjDqd7@;hUN>@_RwD(dK zw$|b%INjF3(fK6kc+kVwHO~mRJG-H&YD#H#~#u^fV zn4XAkxNXObh+!SHSb1QyQ7Fq}sDthxj1pMVWX}r2ujX&CCaC^43Gyt=s2|L7X9xHq zsw2p!ym1ElWKYgcZMZadZ}iAn^^ejL>U_BI6A6-AtGWj-J;bQtck+u_AM9}TNXuJu z+7p&Her&2zS$=Akw71IO5myY83=xhX?=Ixk`+P^j??$M}Y18EwgY3|DGW-gd22OeO zr}*L@T4V_7>@6$2Anv0JSd+4H{g8wmT40Hx|27^D|E*29$$sGSCLl;E^w*xDWRjlP zpZ2-5?f1SN-}9m-xl(X{*d6|!!ZEM>_2?wPQ3dt1`?wXRPM;nxs989i-M}LH!cII$ zrsbQ%GoDnF057xblev+(pGF4|trvk2wWSB3#hJX;^=Hf@ ztyixm_iFqW=%VbVTFFZg`Ki-H(Hh=ekq0V-wk^0#l*wr)u;`>GUKnjFk{r#*3(df> z@Zz3XY#?l9Mqm;tq3pO5wTag9ahL9(lrFkrJS(}Cs`gl9+yAY)Fx=6Hc#&af$42Z@ zVCvv8sWSbEa);0XU7}gGOdL&>?*oH-M(lH-zACrg8MymDrQFB=}WF4ybvISnr6`11Q z;$H&&aY#UeV8^?_flId@{62^-g8<)qPhVz749j;G-Bh9#?B4aa6U_{V;s5{cI>J*`xReX1EaxCu*md!&5-$E`t}cZ zXF~4pM0IK}Rk%#hTGmCFPmZq~cXjRHm04?yCfX!(saYN(I+Dub%9c(7NaH$DJY&Qa zQ{~T&mM$F#&#TKvbc>V->F&M}cu_bgQ$Q?Y%6JZMRJH93L#fEJ>@2ys*{#-{ZdIj; zt1W@)y2cl{+Y|Lfft=Cj_IR*OLSqNiyl;>ZtsGZ2VQ!A6dGg3TI?K#$?Ygl%Y7_!m z{jzGGDA{e-uMvKngpoCAgr6uDCv=`i9P6$g-|I{`8yj05{&>T_U%}s`HUCtUcXtL9 zYQ9>!!=tA#i=>J!T|lJTFG(Q?DNY!`;YvVl(_-8*S(_Vl6`!u&2irg0L1~6C#L8T1Bs_3 zf^#S)?Y}q%&^y@dm$-Yvwz-7Cy>XbK#hPW?ye2H}*-2_RpKI63k-UHub>|ZWqL4Kt z>$Qu+ZXWVH(FA;3XNRufCf3zT3wf|$lh3{Kep{X^^VNdf#2*RDo5I_gS&nscl+FrPD6^9o zCCb%lXqUGn(&HW4$t(%DJ}q^64_ja1IQG6ouRWM#o#?1biE;9+z!h3Nb?^~?P0Y}s zL~)|m*JR~0?*2=#ykvtM(hE~zK%tU1>QWFR(Dk}3?CK-n8zf}R{ESWnDun&DC?YN9Nmb6o*WP%6zVT){Ay$cQ?_AM+d)VH)`B)5O@P^*;ZFPSNd z*G!PIcJNY2=_}v}#AeMH{^^me5i9aL3SN8qmZX7XTr#`sjLFiL6sXGsf|Y1KUnL^Q zs}G~JbFUw8+}M_)Sk)=_1IhSa*#_p|daoSE@c4Jmz1QqbngWm4;Ak2%SZmk$Us+PD zRg9_@Mi-K}%L|PEs)~+!U(dk#v?aXBYr6b5C2gvwW^SMdbL!Bq7v~Lu8TP@hyc(Kf ztjuU1hgstW%}Kk`w;Ki-*bnFSL8`H|pYbAo@#)cbaQJ5s3-CDMmwy!K>d`=p)(obr z<~QdQ;iXtGKXyfta3DTeIk+(V5YHIPV)m)!Fv_fv7Txp4sm15IOH^mlFEI;ian>8x z=HV+WzbR{B>c|t-6nnGS!<3{dgUF(FTLJnk#H#b+=l5kt9*(w6Oe~_@Drz$6zY?T) zy?Kybw)2(B5jz5BzBFHyJK3j7tqE03Y;I`bRjEXZEz>*`OVdKvqD$=#xOQUCaeFaa z^0s}KHBt2H1SXW*~{$Nl4kFQFj znWhq$@f|p-WZd#!X3i;4)H0WDv=wB;#e*HbRG}%{)mb*tU}P0?H^0C-y<$eYLv$2L zMV?u}#rhvCz{)nqo=}74MA!Pc^^C5i@eVw<6v@w(h3b%m?bt%o0|PGx2^4GyvS?YU z&3Xrlaj9D@f!8-%Ja1L@#l)BHOD}^mjH#IK^%*U{p~$qPen%f!cTMaP6FxeLydHlV;K+d;F$LOHgaI{QGFD)G>Jm3)zF;mtuku zCx<{qHdd>UQnh#F1%av(Gfc9_c%=dLiJ4vsisA_QNAB6Z+biDnh7)2ow<+xc#6cN* zg(v4l$TpEFa3)^6;S+s^!=5gdj;<^D8lsvj$qBYsYslx90(Xh@Bi=Z`SpupA43)?H z*$vE#oUCQZ*Do3xd)qoYiC8B~{H~oW31-JBcpOO=H~P}$!2_gAW%g&1FJ8Q89UBwh z&16%*6Y}7mN_!#qt&G*#n}K$ll}aj?9oda)scDwoKc?%qurx0$J}Z!r z$g>Y!TSjsLLrvv|YPG1T)dJMdhGbR0*@K8Zw+ZX4qYB<+H}&F$O9`A*d+1I}O+(~yTQA>LA943C*Ar1)eickx^E-JyI_m z5qR^F&>M%W5h@cyJxkt1HtyPCA19fw;;No#;F|`$j2Ii)))9ZA-QaD7zc)7kWR7KJ zgGvSTo<0wtxoOK*E1>fC*tae&t$O8=8cxUK*~lgE;XOijo*(8Ch<9tHwi78fmxqAJ68pV)}bJ| zyZhfe5XUfFXXx5euCC&g8PAohI<(#B9>(0m#U0W3XHcr1H-*56K=biQwUd9+?fvi(Ye5l=-gn?35vli(%J-F<=t)q3+FQd5PXk{?e z9q>hSyl^AzB9W(EK3#PDSG|Up+B5Yf$TVA3mBz|P%LlB}*)M@zqH}{D#-% z=XvItSu?ZNecx*>XkI0ZvfEt5qL%E|#Wu^I-)h)iZPqdw94Xx-T7+ZFqra)8p&=A- zA=3G(m~m-N8hXLUQ@|he_8H8{^fO z>i6ENc)w}sEo08r=VG%0i!&*ehgi^$D~8@q$c{ZmFRbKE<-&?Nr#(e3@JrzHT>L^D ztiz$x(`zn1wQ7HP(@Tl$GF`uzsjVa@HWg)Wj^)Jr6JNL6in`dh?%To5z!(>;9e`mw>UFBDVY{c0kO;X*LZH#k4 zo|f*s4JVH@I^>@eSGS3gGzCDNW(%kNmO$?a^xhw%Ki1Q+6WDWUFnAN$YoaL~S|(7s z($_(K;7u(%8J7zVQ&P410fUJ&UdDxjv2zo;RICU#W_3l2$Iq=QpKHpy=RYDW*LAah zWzVQ}{V}A4$EYlKV^Hhcq0AJuB;NTmLWjQb$QxHei8#;DQk?$BGC7O|eVka~;o%(( z;j=%}wNMb-c9$~K@eY>0>3^@YJw|ufn^HgFu{(iVF>clR`IO!!S)`^ z#bVQ*Y~k4S)p*MgkN$_7zEaSFctB-oYm4rz+)4M52d#_2_Sr(Gai4pPCk46iurcQ0 zpQIctsy7fS?L%MAUncn$Am;p(wT&K^;rDAEs6IuY3|ltgDfdxg;VUJ7yB_jP;SUuIY~Jcr$S>#7dp5|2Ib#Y$ z26C!T5YUkJ5**j+wO~jL0gm+(-jfK%$u}!DMN3I0GkN$qCnv#$b=b?5LUM~E zgZ>+pDhVsRMy14qv$ZshYBT1_Uri+*U7k~=HxiDpV$t{d$G)(d>;9={@Wk`}bwsL3 zQ-fof?z}@?eLesBLe`~sKPML7nKRy(D21P#SFt-T3_nz*YMcXk3Yy>I<7+?qd* zRXG$b)S>asdr0Zf(!j>Ka6j&^>3T8pFt8M{tMX=}~0WqDjheVbM{m7+uT z)%^lm>R;i>C?FBozLJA-NWic1T?X{6dgC2ei&j)bU6#Y62^$An(O7!X@Dw>xHd44} z6K6KggSTZ*EZta^M-QWGUcHr2YHu5MK!`ON9ZfGA`jvtepN;ziY59n_I3mKTY$%0j z&3q!e=9Nq;%3Shl6{SV9c5L534q@a0vXmJ#X7tciv*fUSeR!j1VU9;;c9l|cOop8E zp8j5AsV&bD`WMWo10fL|)y>!;l)ftL;QL*+bH*RFRH{xz!5JX2*x zL;O8jfePQ22f1bE3g%9Uwqsx%&h`)q4qYTXZpeC}96^ajrL$=xnCq;sV?c@|1o`&X zX@KJJalYAIjO}f=rGslRsL+#f@!{f6ds8ebNctW0;i2B2X#F3uJ9Z`}x=uBVT%f(3 zyw-NCrg4}*E|yzAA{093DL?=eiM#G##2$OyLG$0~2uw}$-9x?3k!3~~0T|z&7SBhi zg+^?0250XRDvBOihn`aR;i@0rk7b)^7&IG#qV$X<@k6Yx4LN8OsW31&RLYUr%v%)2 zWB9R}yzkTNezlyt&!rEWbdlfe&NlYTj$x4?&Hhw12aFb{Z>*E6NBAt=E#-Q zLF>AMz41`p{je;%D6Y)oZX|}Ftg_lyv{1zHzSpH?Jqi4)uUuzBSy{E(D9Yur;sS=- zV(>uAhZ3`JQQoHJNuD`CON}rx_CT2bRv~bhsc&@JsX{Jb@pP~h@|>F@Jnv1XtID4F zP{&r_S}t6&BV)Dv!|wN1O(XI>iABnimVJ&hm>WkoIJnz>{P+afi^WaoHOvsJ3qAXqh^wnB z-JK0R8+-fJS2&ObdeOO7_<$;a3I$eaR<6+J3x*T>9E>=RoKt-S539HKRk|tretkDH@awJV z*9D<8x?!nAVJd(Z3RqllzI;hxRPj3{qwCm|8H=9SxjE(ml2b+p?p%rl8MOAul=daW z;;BSoB>}))S$>IK6=lg_Fz6yB{Zu9r%5eI4$A&01@?)!4433uDtF{ZAy-TlD<)|=o z$`S*Gji;I)lsYB`kSw<^7Q>yCWCz(72C#p?JUbuEnC!o5%U7NX@Z z-fwSw9Iq6T?U-@!)iS$y2MK6>_$XvdK1R&T#q%7p)R0sCv=+2KDcyeb{0~EBfKM+p zGtsl5Y-msPm3xW8Xs|v)%XZqImsUf}ga3%!p+r^k8o}QRk(!_t_EC;F-uirY=CaDm9`!Zzw zt+;si;{9n?|Fll}by8`^+#DLKF=OZNp&mg_n~y5P5NqT%Z~iNG_{YG@H2=)fY+adb zV+}iTgCv#@Hav!z|GcB53SSHx*6#1jN3S;DD$KOE&5Ls&3v*63+9R$x4sv0Qn-S~H z6^*Jo$)E(rph0~7+%5LEu2`Yr?khHI!iY|DWftO5`Y8P=?DPO{Vp&AI*8grXjugk_ zp^qhPQUw5d2>{R|Wh<8HX6} zlNN5gi|nYj7MFsCwffpbpgMnj=yn!UI8;T+)aAIh#63Y;xsU&uuklpUD(T*A-R~^@ zC9gGl`o=;!C9~VkONd)N2o5yh8!xV{1%3E1dtugw3TXNpQm~=)ZJHrHCjY(j%ie;C zflE;qUQG*b!EG=nUiqe>K4yaX;k4-{Or1l~*2yy$%?*?Lh9%eIZd>@tzJ2RNE z$1tz3Uv#vWo5;{*j1&*2nL2v>_QbF*Vpj}tI{G-G5{SHede9t(q_ZHh@sw?(%E#Xy zyOD^9`TbkgSB$Ck&_j=x)zek>jqpZ(mN}@o-V?$PHb$bD(c@Pa2Y1bBmal(%s_H3$ zqHw_aUFs{j=mG%2bU2wl)KS$39teX(K{R5#W#@9n{KF#hP) z&cn4aV!k>4Uwj^;QFCm>yM?aj#5EhNWnA1U(N{$vI?BXd=mCXN7R-FLnU2a;%heT)x9fT%&>CrW`6|+zHDd*sex-f%wr9z)r+g<7$7;NAd3OG8 zx*0vap?sy`Wx2j{H!l4!duZ{251}sYqVGNqhtMYmtQdS&*h$Z8HnFI>V^!DZPcQ;4 zpQvAFIv0l6V6*Nex5V|Yz|vgCibU?cHqqo?4^TxH0UdM84E4)6#eCp%Yl*tkgvIgB z)E!KXTVQ9?4q6B;T%)!#zKvW3V5BzF@zL!^5gaLOTP&-;oU!er>y@{bA z@0LjpijP-C-B~~Ys<_C$_0WsZ|D!kqg|oQZT>yF9s%hN#aBxsjRn1iwLQG`p2w4*b zJ&TnR+qqR}T;NP@sJ=&Z+kMMgzzgR`Gquuw>u`H?Db3Hpszm6uK@h<|y0_9W;gVlf zHKtueGp>VAcx5Hfoia%Ofdy7+P@8}1K!gd)n^>3n8M9k z@U;>lR{BeNqun8{?kV_1%1eN&4>QPrzm@A4N&Nk8gg zcpGqpAJVKi@I;S8fpx&XW5TgK>suKX*Y&ynR38?E`{xRT$6$RF7{e!uVIIM8Td6{^ zP8cF2fMHiREA+Gkqa(bBtcuUn!rtMiI*8&H$4Ig{MC)UawWQu^nA3Pv`995aON{5R zKkzl@y$NBQvpzsI9j;#bVKfsEq3X=-i<}H+ZZxPB6lgIuaV6Hq6mlw7O*4-Hd^{ zT1{Ba)VjBkE;Vu-At2~6?eWh__-eKl#^or+z2z!V6jwsB-ifE@)zz92&%4|9kb2ZH!WiD%mN~w8{^dk3naRnR?&~D# zDP{#iiJCyjFCo#DYp`@P+~4%BKF#ErlSCGqGpu}jTUOrqc;U!-nw^aqoRzr z&y~Jl4@VVJ+g2o;cEFTiELg-Q^vUK6qm9ZYULDi1y$*2A?Q;D*uR<~`K-e`xYsRTk z;8%JL*9teR%1lpaPHeg~Sw;b{dp`*tjEo`e>^i>A;Qipm4&1MgZGXQE+I#C;##Vg8 zm%q%g(Toe{)_nXTs96(dnYf0vG}O1?uuV5;|2wijLap%r3=m~8V`0;XU=Z<#=y+el z06Fdz1G4+a2qHdIE31;B({oA^H-2!453P6S{%ei@I^gk80JT|l-`vi$xeM_gOX@G^X|L2o{KCeMI2P{VWyci2#Y_jkeQiKm!-eij@mRDvSg z#g`7HFk(jnF*f8|;$k)7;R&QKla=!tYc~QWEk{UW$mxC@u#uA_t?^87G<7C60`Drk z$Tk^mO&k4#IRLGTus}$&CU@UG(p*1qA8_Ft^`O{+k z4XNQnyN}*2sXirJSjVWp8XX=*`NMpDU5WA3yEyrTIqwKlX75wQ=Bvja*vfbApPRB0 zH>yv}94rnIJL&!E%$LnqOwbHmJwaI?@(D&b_owg0i1?p1PLO5Li(;Q%J5K%Sf0<$+ zb%m{Ek{cLTOQ4-^L00p`mJFxIAi!|IN|hxSNvKny`WPqVD)pXnl=}E+XsK^0DcwwtGzH5F5tUYNq2Ie}b>j$%E66|1&M3NrpHhn|@tF8akdG8+=Z3+g zz5XX81eu}~Y(M;o5Q~_MV&Xn+8E zuB58FBl#4fP6bqZPYT`ao`%LQbPj>oA@&%h^fQehpItFi>;kDuNN-Gc{jJcmArR{u z-&Y#|zvWAIq0Pp3x&B1vXHesn`_GH^rLymYHzKR9oa&hGmLux`(JYKBX=-zRbm~hL%-1NnyGf@Ci+wF2 zai`&qA4_M>_W5dcgWvI{+)&mBFYy_)E>GCK4i{k8F>=|^uRNclrKb?A$&`LwwILOR z(y05!wbhd}+s17NS0HQ1)4Q2dm#kePjonxg)L}rQ9;?D(XTP?g)=)nL4=pus=3XlX-VQ_l?{v|FdM87>AM;*_vOCz59hQ>?5Y)NO5gf`HVU>u{&ZcnYKId`1omjdk}3qqf_x7M@~%!kiezxM8L{tZkcmV)=7G;F>r-@M#EtTeBsHEteWfr26=Q z7nw|XZJZY$kgrACoSbxbQ%}d;tQ*$1Y#qX#q}t))R!;y42U>$NX7|aXzT9N&bHIoS zqV=8c9(HXQZDTMimde@HhOQ)wDna z!PX^-FVxzfo84#GhaGuD%1?^^>`Hd{;?}O!WJ-bs#@m`RL@#~h$zBNq`+*NKvpVfm zw#f+s!Kx;;S>DXk^G^<^t#LZY!DsI=_5z;Hx|c+^7bTZWd?nCTUhhvYSdyjQMAG|s zZ7dZ?qq;Qm+~N4O?Pa|UoU*;JQq~6Tv(+ZrRb7@^*)h(rr!zkqB>Aq{p=WrTR7_}B z&eR(D_WAcd8pL)O26}lbF3H&M$GsB&E3Rb-njPQ?*3~v%x#i4uN2bIY;2ng2oq|{; z)wOh>_)7t%ItgB1YN(N@D%!J|jM=!z;caYgEdjSmO;a>j z+c7dd3D@1ZLj-sJz6V6?s3$&sQJjR~6N35GLM>1O!!0EzbDA@ru%2EL{xLCSljfO( zwAS`_LJ~u%0I6uOpR|%p;^!dXKF6X@*$3^O{%3Kx=ip@+za6SpErl`iWLOdl`r_{c z*(m&v*}!))nrjZPHoMf*AB8+)#cZd2gw$zay%F%iSBb^zWXETRm58pq1fgF zhfGdZj{e{;k&E5)CP?BIbyUwv681v6@VAMLyEOvY-(?~_$6+x;zoh`;J)i7?`)@=M z;(_|+0x)Lv9F)fSE%zK-jQu7Yi89NQD6Eu%5kY^C$E)G#X6jrr#VvY`b$z5sF`9a# zHpXeM&84H28F)7_rweRftaota{UnCK{Shrc5es6jbZQrgJBIGvFGjiUj+N=CK^{qp z=l@E;QA@IbROSCSypbko`c#&(a8X5@`}<6^%I~ixQ!_Im_W)57o^q4Epw?`c5fM+6 zr={zGB;))?1`dDD4hF>gkbIdI5!x-l@#Pc4&NK6MKai6lRkiE)k=sOX0NkJr?>A|v zl*CW&(kOGJlfu(e(J|wOWD>YR@=C;?^f5>R3Ryr#`|8q~$vlzae^+jgFK^A9dg4@gY0aD-7kGD<=UB8Np-Y)Sf`Pi> z0kT*AGl#<#lCoeW&h;EX_+KC(uICLW{8RpWc}*5Z9d>qhJOL+IZTC~`J!@1u=K}M#|L;`V=P_hP|DU6QEIza zlWmO`cZ{xwE^3342fr0V=XHuXG)Gf#zTzC3+B1g*l;X$__B=xk8RO7#14=T_v z__(5&C_b`yM0>nP;V$Oej!CsA`)X@YD-4ev@9b>)9ILvb!Ve^yU}(@3fi0{Bz&O;w z$%h;P4k(K`20L0H?c&21Y_+WGf(&3axq%@VA|6GtzFr0jlesFX=&WXF=Q5KUk((@r z;L}R{G;#DkXQ{%D2`XJLXfW=hH1gwX3ZSW9NG=n5xD9@Q5|ZkzT%i~OANd#f+xXZP zxAb9TG|-4UO+V$p-HpC_taEzeuLZTBSI{FNuanK(qkr74FjaEaR`I!7E*3OK;D@VG z@Ph@5s8xF>*4f#;ymEi)|MhGAjg+zoaQ{ujJx4-%|9cjbD>nX_h7)!P}*oG1}fHxVQ8} zDz4*5Gwqy4hLa=%=9p(H+NvxGDTOnZVG;RYuTzBs>rZu`U_+d9cq|-g&g^1Ca8hFV zHJ@DSip_(c0{Z?+seR&!@8dzE32-Iub}AKdJ`T-uXq^~<z6Vco0Qj};o^ZBO_6uAKhH>eTj__XbC=3&!8*?_Kmw;z0-(88TEH#s}maYV3a^RrF(QvSyPvS#CXAKq6doU8wq4zF3i%aj|vlqbU4%0+kPH+)_j&Di>#)S`bN$S$d}@s!Zt2ASH+Mdd>e ztjMPxoadf<&p!SU9ru(&vwM&tSSI*?AN&3CeV*mg-WnBr!r!`i#nP=H3T^f}Tz4!!)4%n=X9icd zC*37GEo?MwnzQr;!=p42L8(6 za`92!3uO-@M{!q+L}eLN!O@a{^u8~6ou<2vyU2QbQj!F&M1SYB7*%$)*?UKL{M3i= zt2<--=dBW6w=!!bguZXrA?JB3R{C=#u&_17ffUW? zSGpCibK&F1>l;hH{*gBBMlkBmZagoi8NcY2&{2?172Mum{#mPofSOm@3bgCPwpy51 zXXe2`A(Y1EaO{Q3XBMockd#@S3q33rk-j~lc(OZ*3bQ4l0c#>(s@q>TTSo%PVz}HC zmb-7bQ=MiMELw{$d7xl7pocA$cloxUKpc!^gD*7v=7v)MOM;}qU^7cJZ~J9nwUCaE zPO9G>%q;M*%(YqzehA}sYcXyIZJ`ub*}I+uI6^i=;5THhYoqeWP7 ze}t2h&o)XpzW)%D@t5{Ap-^?@U*d6O?bVP$oVnE|Dc0bOJ!aglpHqL7=q6RGK3fbq zG7&=Z64a7|b)KN5?6=6r{3+BTWSrjj34L@4-IO*$HVf@-nSxCHW7BrSv7)mzp+62#Uq73CEt2b2O zAMc=?)K`ew*TK4Qu+t3G&#*xK9OMPVo#w4Y`f_aX;2dNOL@WMKyS-{z#&i%iT!o=a zwZkzdUj2m&$9pihEP5~*m|-_%_KUGz{>*}iIxm_=jwsA;u0K7`{DkWy(Uqju{+U-G zJXAx07IiD%6Imh+cWP$0G0TglN$Ap^)XwW`!g4ohr5nCu#T>)S%VdvvY2O!+yYc-P z`I?9j6@FAKEQ0Yh=BTk#^n=?a4IF-XQA!82`=&=$BJ&@Eii?XcBCD&}fULbUwVnJ% zF)NF@+N@gr2IheyIf8lIUMDF>jr{%En_KTkkr60NvdVsP4mB~*;?s1{o&2O)P8xTE zJodaZUi;3a+>hrM;nRxU1Zuugp`%POPWL+~r`uD(U(SmB&+ZP+-I>|@v5#{nMP+L` zd;uP`jOu=i=~&M(v}NvBN9U;*ppYZ3;EFN4=Q*3c7X!)2m^O)&qb}1dq>EJQDA>Yy z{beD~rz*~D0(q?en0l9#`^H+ONPQ!Gfl{+eM=9(aZ-6kQfe%?M)%1L6ynvme*17M@ zRCSuWZD3fGWJ9`97G7e0QujLzInJPEPy@!`(ynXd;rt@*<149`BN~%k%U0OPD^CrQ zu$U5nU?WOST~he3G<6(SV)TdgK+*(l5gkrYL{l3W6K=+hh(MJS8M)VV{5LP%iaenA zub@<~(p!eT67b)UT%uUtMu)*$ZhdUiI7v6yXrL!r>8^S`DL!InSucO|A-B=vj(IR8 z(m%=jQ9;b-wKr3l_EYh*SB6(3{3)Aw{6*OF`BthC#P-|x8J08|(jrT;xjU1iS8n(F zEyL~xm>xRForx)4SHY_ao5C=>KYy!h#gvv%3k@e0yz@ZgLf8j4gKR$}m4)qV{nASpV-B$slf7{Dy-iN+E4*2<=rZTi&I(2$+0ix|=mr&8 z?Ealin79+pn}$nnWo?CaX&`tm2?#r+4}P|<65OIeBfZn;V@eslku__q5aor!N}3w)H$~AEJN1BDS0Wu^Y2OwGT~D{{yq{mH#ymB?;M7EP`W6VnJT_V38dtdACw2ZbRxU?(#%K*S-of zmD;O$!fnPg&3#)7NE59w(-`$6viJy{1F0?qDr1@Xr{@_CP>MaQ>xKpC#svK>clppH*_$VctBCR!cc1G$8eO(KCRzL8YN82YL=5+f@FpN^jHWS8B?^I#b0U6|+9VFhcB&Lr>$-~I z3_+T~J6jyqyAM6|bIpb5XJ;F?R(u{<8MLL?1fOb9;~fX^4aD$hgtC!GUIHR4jYqJc zmE;jYnqWGB%jp&8F{eQ$HYS(l&Z`GDqiX~lV<}G3#4*^HG}%qB?7vm@Dt6}5ENyJW z?!I^JU>(^!dA4O-6_XNn;c&`2(_2sJx@qoZ5^#nYUB7FZm>PTJR*IaDME$+2CYT3< z;0G=KKCLf!ro>_vwp|>k^}jK(mROePTsiW z;A%j&>cCGgFo1$NkWs;Mj|^dsonkBR!ZBCenNuyRRV~*KrLURF z&~FREc8?^lQC+U=oMLn83M$uyg2RdRG~Qd?W9WNzoe^AW=peT|rkaesYld!i4qu0fTCK6+Z8~E-OZEy~8ERkr)b`9# zd`)z;0q)ZPsT$46bZ|4LCw?&pTwAe}VOaj>;Uk*w_;SyQ!N^y9jaF+x-Hao2qvL-p z=Fhu*UxH%G_%dssycyf(I0W6D4|;4G6`@>NW`%#Cu*Oh@8SWmFUCg+Sop^;3^LY#I zSFj&?WN=xbw3d*^EnV|I^-9o07qQSU38h%ZW*_<%;EKUkR$eV~7gi&S5WHfFxcG^I zC7MBS(ASdMT4m3^F_X*v>u5`81Q*oF`Pmj}W3B+BB@udA*;Z%2hSL}czxa;o6QhiB zm8B9iXp3ZTZou*#baJ&`3eaNj$Ja)7tx7*e*g0!{w6M;A$5F$JywE~7FmE~E%+4Jx zyLEVJ-0SGvxwsS~$Cl|alxdL5d^GfU%v2rQljb|Cw9-(i-o}?Wo8ogc(XsCqIdUEP zRF8pNb$BXVeij?-6^+QsrvKbQX@dIT6k&@hpiVdW(J1Xg{62C^WXI-y3qcbDie`)k ztyH-l3RbXxS@ZG-dOdW#rfT3h?qDb=Nvnv>M0aUU2ne4JM z5#oF}J;suZp%dJT$%!Xuz1hMPN=y+tDBZJRTuVIZs7F&xo%5#{<=b2Cn)mM`8?af^ z1b?UG2EpFtN~d40$!v^eGr%i0;)Go^;-I6rRI7X?H{(N{C)7aWeA?Sx7S*X2 zD(`Jc%1j5<`p^45tRB;3WN9G+TMU=O9iuu^g7-+mu5-MGxkIYz`A*6ddPz@E4s)geLN=&6+RxaOS7pd4(YJojX9KNuZpvi4b8Zqp ztNQ2yxzM{lz%fyCilqdrVy3Zm1ZlEtT>G*TZH(kDu&0jFMdQ%CXgivO^j=%Avddbw zM31ZArtir#ySIx>eGrjpOY7NZ@GTp9;uAh}f@tZ@Q# zC;X{OL0$a6E*MY-3>miN)`uYJoYc5}`MXMfn8?KEn7?WHc$!ZjO4Rm*m+;Ly!fe~H z+rP|7eAYA=4gBLZ!!h^YvJO(J3`O^9wQqQTce{>hUEvJOD84DJXi!ViyE`9V*e0hj zGv?eX$VNixzFyS*#qWXUe}_8Ev-qP*_GD*`49}zYjx{|`b5OmS0ru8;h}nVfePNRr zfvPBch4BQ5UymAYe~Ka@Igvy9@@@w%(}s)~U7{BD>L?z^Cyg_bSm_48;+kI8)ik?7 z1#-ojk2oQTXOh_HE~%|!?si<4`#1hZ+OIdpxrt(}uRo9)G>hHRIcFu5Gt%OA&7hYc z;ZrsyK-*%!wM;j$c}pcEER@MKJvGxx?#VqhBc4P+*+={01+-UW>eBAF^NTGBmG}K7 zb>(kIltMx49<}3lf42N{ln?iy_vDTt@9j1Tr=esdok&Y(+=9xBKg}P&Wh;V`1)x)* z)tO=L-TlfQ%(2fo0U1GnoJ0{h^%s>(m$^?CrcZTdo+xfe;oZQ zc3MLuJu>(2yMvGzRJm^WcM_G_e-_ndlb?ahE2CDM>1!HPM-sJehM*aW2%}EZ$I!S^ zGO7)-JNHv~9nS=k&E&7coyF+MUq=)3aBBPJy%9V25hBtZkArONFzqihoB81o45r0( zvZRu50-No+?gzCyYgffHmN3}#3~b7@f29z%6g~^-9twBO6!HP$&Ha7kdb zN7=_^`vH$(A6&5Vv@HR(Y2jC%{?^R>s}zaW z$|BPSugs{-U`A7rEYma^mE?ZkE?6d0)A&skji8Q*n5l#f9i#e3W(Q7|#>nxb#SLn7 zi>Ykoi-4(&N%6ecK$5=Qx2|(G$=}_Dtyu*dyO=`0;hs{jr1HC=9gKO5oXTH0BN z`^0EX98IkxnJ9-(Na*Lypw&@033X92!tp(ZmB)|Yt34RQ_hNt5oY(b=kgY)3FI0kC zv(W=a?Cu7|(OgL+LB1>7?o@~8{Kj`@x*||gH1yFX{g?-_+x{ONg^ux16={?4-=Gi~W!>yfN?HF>gBl*xp| z25Scz7ll9Lre#-yof&sT`oxKzCWJ_v{bmw32h-r{=GpAWRbF%WQsW?%#~y85os)~^vE2{H4<2%nZ4_KB$Lb?JkRIVIa|A5 zzJ1u*Io^y~=bLQLWCl zU!r-9D|W{l9y@@)II_B3ci)OZpTyDWj}VznegXbsQtu(0Uge7tIM=7bPkQYAS1XT? zkmhX6j%w_Gy!e;df(0M~f#EEV9fC>cth~btN*+(sn}gm^C8ykhCT=snMIpRPgN-`6 zOJv>W(RXQ)&$|wU(VnXh{LyS}E0*2j!4KV|LeiFp!fqnVL9!M1!=FaSh^aR{*~nYC z_;o!d*Kn2)cV0?Ucf?bYES7B!>fj%zt1wZ~adveh^@wOJYeNLCE?;hxB}(A`(E^Nq z_$e08eu$1P%4wjR(^iSA`gtUq&ij%Ys+37kYz4D}Gx%SI}(`NESZMWYU!80K7t;!fqwxG z$N1s|Mr$i98r4T;)%df{B!Zdn)wU-W_p(jma2{&UQ(rwjo<6?M%064h#=!}4-iIl7 zz1}xbY>7Q_?%h#%;#6`x7g0k`AmQC&*t5U!D;;|z$2MdH?P}7nHyWz<$jer4H&ICz zbfwz7l1cSDyx6oS z?$%kdCTVpaAhW0^3HtPXSFp<-p&?Ev>cwXGFDx4R6cwwdVIal zt1)yb1P0$?g-yg3@R9&%QRDci82tEa?pbA4DVdmRs z=|`yYsT>ihTn@dGFdw>PpFbW(+#9G^#$uM<&P}(#dQRb1kXzHf@*j zo(S;jyq0Af$r*T*o2PM3o@i&s%Q}qT;imuzuDG!H+-_d&?CxgYa&~l#yButkzml*Y zt!Ww-8vfE1x_FUaxiM0X{o=(dc@wo#r)rnLjFHNFUity(-5UdmsoB|g*U=?vEmDb> zu6z4^BVL&?w6RfVICJIK&l~D%!&wx@RH@XP)X9_ioS7k?ms3#7K>#_0pNl{O{m*mV z;(s6ppC@3p32`893ms_b4QciCbaB#Z%J=6_Sr0^1q4JEttXmNdi+M|joQ;YYf-F9P z@h4A4M$V*nH9GM^LKJr6t}UX`^|uzjRXVX3u+Y6hyuS9$&wOb98V{HNJv74eyMy1Hw#wvA_rNa=${Dm3z!>p*gqCth69E+ zF%o3~gaW!T(D`gw;rXl`9UV{~bmg6OH6$lPM(0G{Qlsm$oRS*_5_7xBySwH{K08#{ zAN(FqniDSioZc4$P3awFZ_g=qDz_bI0Yh`__Mc%cxTS`{zOhq;Tvuhf;B`2^xPBU$SAA;IJ_{0imxAbgA7CYE;1eSLd<+hx5~Uvx zWkNx>?5l*uOVtN2Z-o%$>PpTP%%Cc0HSoi$Ylx*>+(A74>l68Z1mloDL5XK(2-5Zc z61Nv_NwWum?_q~b-$W*oHE4kxKv415r2ZRmK^5VGhhQP9WnjE0d&%z$@P&up`>h*1 zK&hY#LEkbnrMVy7U>FmiOX}E++pDEr5Q5nV$Nr7I{p*?OR6TznBNRwg;f50c=*5py-4-q z;Jcgx;Pp_r@W(!|i!vJUZsqZ>7NDo2t|ep+ip8GJ6N5mE<2}-Ymp_6SCF=h-N{CS= zB8n^oz>-RF=e{q1`Y)IYv@A!-69^*nj-WHL{=SlXXJcdYsd;B-2U2s&6PNLDZcX8B zylAnqgg0rk*qb+R7dqP8vr2DV?US11={|wg5fleYn>gY|ceqUpblJVpq?XG9VKV=< zz`EJcrOvAEfvZc#J@AW-BBS;vQ{F z7}ub-#V6hbTamvz+|o04{beQPqN*p_{Yxgjt>c|0kG#;Wlx1lhLy5uEm)X(EzgxgD@`BNclWQT}imM)*&Z8krorET1MM~8-Uqe;8MGN39R-%Bqb=zb#zJ6l>Z@UHGVk5js@(Nl6|)-J z0$Q4rIG#97qJdWSOf528Zx*-)kGA^pLD0MgQPFuR#6mLP|8j2r`P#R1P@#w-N{ltS zx_yRqcu#!80%_A#a@VNhxez1o=8;Psoez)%H_t}P9o~|Mq7n)FE7^!|$E$jF+5xR1 z)^lLaa1NM-|NDbKV3qmED%QgCNilHHoe~9M4mLb>-QOiaJpaM*7+pnjx&hgd^)^sV zICjbH4J`i2`Rm*xJG^{3oz9H;V;lAt(5o{;-DOwx>2e55SLJ92bMEr$5vk+V-0C+| zNNk~7(nZ|svq&fy=AW7-Y{IBq(JPzo{BqXtPWsDWN1YK`sl^ETlZR2KU&tVN*}X>< zwLb9wYTy{A@e=`RmPc$}0O$Bus5ydi>)fqsi!H~X0IFY;gqO!c9?#4KeVBuj;Km9) z9=jgLeCA{L{=^UB(-vvyyn&|vO|}}D!{%`$>=Dm`J@1}S%^I->eN)?FhxQNv^Zd_E z`f!q|#hy=t%BELzITJU}zIC(@JM6%RS!1$YJk?ttgHM?v!ixyXWY@Jrp|l`bKxaiS zl*{WNv>;TJ9zk!edF<%6`-W3ocWnh3-(8I>v$s7b7hihZ)D4ds$M91 zHe+}={;`m=Frqb%Xiaw)V|}<{7N>CnE3UUNMgg|^?to}5!Zp`%NO=$U+~Q+V->pDU z=5;{m2&&4hN=bo#nVFIO`^w?!{PSP_8%kYIK(np3^V_p`ak!h@2n1KL{@e#tqOan8 z6}GDInv6KqamE9?sEt3A=U}}hg4nB=KxNE-+p8`S^bg{Ypr)BX03l~(AH&2E`@5?N zt7<*YhmB;62osF5y>I2WL@DCoeH6H3X=AHpf1-8*rACXA4zSCW_KF1G|xdyS!z4`3yzlfzeKQ zbth?xD!?lPl|)_Y2D;Q7DNd5BA9)t6`*I%;8l4dbf5q7SX?Vqsnz#BvxRO9`hn=l? zcO@`;F2sDBQ9X5Odrx(J^hrXg`@7erqNQIan0Ka-kyTT{S+~8dQ1f3xW8ev@JQoSd z7&eyW?=DDbD*NrmsV*}UBzHc zhB3wVu`oB!V%XyPt?;fjYR5Eg4zyEvlGihumgQC&By}^}LQ3RixBEloCcIauEHQiN z)~3pNnv1sr@R{e0!Bju3xNF=L+gEP=f0`Yget%s1;tXxu&o!4d!^iy5%?*vgaC*KC z|4u|nWeTaz@w=%VwYeAP3f1$q@EW4Nbr9G$3AgkicL+HiUgin{R=UAQA)Lf}+CSaV z@!GSOiK8s7n%6)fK?y0Zik05nkC3F0yia5f&5G|>k zWsl2Lrh*yeu;krHZTm^G^K=IJvRR88_Av8ka;_evR4FLrPSEZ&TKK;NC6FW14)zNl z7Tir)fea&EJ!V95b+AF-D-O=>%fMepv1ex<*|viFm+n6czj&05eEY7J^y2+Z^)U4b zo;Ol&n6z-M3=-M*>&e8MgqgvKa^D6S?cfXOy^a!tTA!t;p1+cczU4DO z7Gd=sC6dV9G76ztotffl?-HqcjpS}QT>p)Ly?7>YpVx!wfARI!VR2>47ie$|5;Vaf z!QI^(l0cB)Zo%E%-66r9MuNM$li=>|?ym1JbLV&O%)Iyh%a^a|v-|AYwX4=zRdt!{ zYqZ+}qjg~fGtJgmMnTI%ZmAjx3saYF)aR^Lo}2$N4#wo*GGQJc9UY>zcNp!>yO0ho zcLY~g9>~8-gnJ(%oqe4$cy~quz?eE`O8yaWSzwJUj8{8BH^0O%0{pC)cu= z8?|zIt!HP0Lw9T-%S(94o@OcK+=Kvt1&{q$%t@KkX0tEi9`#`)%an)nC)@F}*H0%( z_P^g*8EuBpUEhBE_&L13l8Hg7p7#m>+6)yLfQ!tVI7MXv%6F=Td5*KOs+-BYQ`o$X zQY*XT)R~S^w-TRv4qQ^z)m-%hUpSyuAVjt}cm10Tbc!ve_;^pfmF2Rr`V9l-&~36_ zcY`Ld`%)c7X0*rqxcy;ciom2bEcaXYS65O8VZY&gb&}cnOjz?m zB}*f4ea>U7PH*Z7tgSe@f zd~b$}e#r`EUuysPiy~CJ=6U$XXibxarOe}_{3WW~R}|AXwO47bXw3z`)L>6QK>Aez z_{#pnxw0@MCqHicSnOGiC#a!e3$*uR2zTpE#^l*G#l10K@Jo<` z8d!b~h-8bNA*5saDrNo=@nDljDYwe0j7Z8NVHn!K__;12;1J@M6+MjgD_O3c{@4Z@ zkd;h)J>7P_Cd#x&;-InQO8)z-8=1BT;LaPg?0fT)A^+Ek0rI0g?yyy&e{(#?HsE+` zkx~Ur*%w0{w>IAc`}ddt^P|a2=twv8$L|mF1wwdEZI#;`U0VFxbJmD-ZX`84Jj}a- zSKKwG^aKrE|ER42R{c_Rv(V(k27tBR?*TPTQucxy?%(tmz}jSpg&-H?ScTjGDhn_; z0ELJl`zJ>6ht~w6;glBLFTn5lPs-j|@Q;lFVp?P%Xtw$I@BVk<6rL4J?R?YQyyrZB%U{jqk{_I#E z0Q?CT`M)1XB@S$3-!9D*pf~*scPe`KuWf7-1Twb3KQcC!7x4fTY3P3!{nz^5M*|Oh z@3Zv+RP4V1FN=@;Q~%sWFZ-7qv*hWUDPT9>UPjUX3zqrAZvGU@^r*co`Oi%B-w({j z2X>C?XQ{H>fAOd?lfRbpUxSANK8FA1<^KnOgkb_Xi1zPYj9$JuN)&iQKj4!hUr;q* z_;sHBHG|qejvatIy zj*`WDtF;Z|-P2`vC3LzZHsLthM2u=~9i7#in^Ur}>`%U|#wl+uRcQY+bu9`PSRIB) ztUdq*=D&>NDcHARPXLb8%gPTROSM|tXHHvJ)^cblSCWXXuCAOmu5oiDV%sLD)}!du zrbG*~oD9-E2wzIDlGu$CjD~gE|9ns0T`zl}TtN%;-un20hsh~8R{jTp^8SW{_PpF_ zI0#FtRgSI48wj?}y8D_cm3BwO+bb!2oTf2SY$_hKPsr=^{;}CAvQ==`a@=r;N`OIsFOZOdE~O_C zHa7XAuq^R2&bODjKrhzr1$m0?bbZ9f8xS7d(GS#&;Vn+f4Lsnp>*CvN{fa z_-Wgl7hqGEp$r9Zjv+uIp0w5&_4+@DDVq}F1Lj~VPkdFW;art5cv36z_Ew~M4tJzA z{=&8t)Nj3W!Zh$~4qKwp_|}xN;NYzZZpYHYHMYnoCY!FZ${*hFzYx*CJR75mV9L|e z{=qG$`yK7pP+~x7D0bXYv-3GS@KeRcb1jSx6p2IvBE*1UcPmUA6vkNnkPMdid@iJ) zDY-3&Smg^<-%eXTgaUmPwG+fW56_%|c4LkR41ZLtcw@exS^oC8g@8dQ=f2$b2RKvz zX}+&L2>H^}3@vih%F0f#nVW5OW5Z9+Gfnj4#~{p@kViqop`^$k6w-QKCqf_BH{QeK zFMFsds@iz&UlCmF3jmV^F@+1`zF1$(AndN>jArplqJY$@&3qyV=18?PEna^c)C)I% z*+1=?ZOO}5ALhqH)Ko9sGN{@BXzZKqMvB5 zuu^%3k;Eg?qMp>x?@e&`Mv3ZeH${z*%=ZiV6P(%qV={K+>x_U=tjz4cJuS+C9Kfll6 zm_JAHT)VGq_i=QQ{)4T{0t>bgeff_6-z)XKD`f#nlOG+P^y;GFyOdI0M^^e|!qQTU z?vh6TkxT_H&R(l#?i0+O+T@6+h;ydetftwzdd&hu@p2oYkz6J7Z)5%^f)i%irG&gg?69+IiX>Yws2QWiStkC5OT}huiM64L_ zZ0)-%TaWGGSR5Gyi&NroLXyTfdQ=T(p1Ss0yLK9HUekNtpxE|4CYds|1UvT{KI~y! zmYjG!Ca^y6zI*0|h^^>0PkGzO!T>EA~Z zy|@g)GeqEJo6I~6`}I|0y34sP^G^EurDt1yW9&pz`t&*^9-K6IoBb^w~Y~r*K|L1C()-m zd+l_c5}e{Y4R)qVR3vc1X)V3%nL>Ih6QZ9mTE@}X#|h{(++f=yRu`zjVXY z`zKANQH%e)?CvBp?Yt8L1KX}llY`^MaR!ZeA{Dn@ujmX>QiMLmLrz7K9loDpEO>|$ z8MV$Y6^}#v8s;|X7|&jOzQI3Qs#MD6p1sZS_!BPzbVY-rcqkE1rh%+TZ}-jG5^K@S zdf;~g99`{2+L64+)9GA)WzR0u%;-a^M;l03{DSjYl_qdAgyXf|CbgEjbEZ(cB{$eH zQe9a?%QM$Z{a)J9y&KJPK+}d=OrTSxMOXb`e#6)O`Mgs+yLUQa9fk2PEkJB?=6a;X z4KviqY5@oDRz9QI?kh~kvB3mn*J`45F#^Hjbes$!h}+}z=R;rr{RmO+DWPGAMOkV! zN#A~D%6ER1h2q+Ssj4R_Bd{e>>?3(lC&NNSHx^1gB5D_A8gN`=kmv;x%FIsm%vZ|6 zQkw*qgd33ra$;+$r|C?Yv8Tmk7rmDf;bU+XzxI)NA8kp+Zq>Uwd8ofprNF2h>>C@J z_ONT}wp<&eEJbd+@#s7qP1o(ixhc@nFk>GDY4z5TkbxtSh~ZJCExRiQE8N>H=Q27Y z2T!Zh+})P$Pag#hDBo#uE&VG7!u;ssjfoTDF#8=PmIXTFThJ<>`@*c_@>rpLm@SwDY_rC5>m%N>^ ze#`8z6FHSrLGtj(MVsXDip^s-WJzJnbRSRtng^OIMli6U1m4viv40z1FuRlcZNeyZ2-zT9cmIp$0`M*)C{7(ia*yNyCphqZK7nYj~Kh_t$7C=hamPdxeD+SqtBEU#U7tTD?6PJz$C>^w%2unk-3gN(ImGGjES-767n8cIj{pYZA zrbDzAe#TEC<<6f84xbtd4An-O2MO)YG=9D|%R;fbRaqZ)qq|(hks`9*KlxhZJR)gg zn>!tEy*Vd4aDU6ZCx!22lUNBB1(k<`4%RovLnXwHznGTsiJBevdckd5oj)idKfcCg zYh^>swgv5euh$_mPe$mxHbS!?IQPCLN@OHEt0b;5OuSzQioxqaDujQ>O#;p~>R2h4xjlz1AYB zZ5l0@w@02YaYaG%I$WP$o$mZnow@T9XWME6Ql{4WgE`}e<$Kui$Vf3`3Oro3vt!T8 zSDFST5zM!CnLC||a%BK5ad)(6eYzYrc0S`THqII381tOc(YZe0Z+TXy`85h;t~=dWA8(=h%_ zEu0!vZk}`6?E1Q_Ly7+Oj>^4E;8+@{%<5x1<}Pj@9<*ms1Mwt>-NOOUHp{z^o+;1I zlrBv{jhF|U!V>;%7tw2t2Ch8adou@J)FHL zR=7K~P))nz5yGWCi%9Wu*T3;HPS3>@Jr6JWayK$GFrC=4I%KS9Xoum^RUHfiUb}mK z!Vg7}u+cUC_K`Z$R^a9#+qH&w=z;MxGCvQ^`6LeB?EbJg@(axzE+72BjN)tE(xLHQ z0@(&B5@UzT@((AuVK}nlS=aCU63Z`tQufZU1=yq3?}rmDmg;4+yIx$+`koHQpGm67 zrRfhvDgtd9Ccdfs-(LR_TEFC3U05HjGmUELu&OIBz9r?g$LKh{xzom)v*-0n(j(6_ zeO&vM-8#n!J0H5Aq}P$^Eo-nEECG6@;#npU21n=Lgw%0PgTy#8PSol68;wrD7gLmhEKn^l*6JjZAa zaY`1^{j=NLL=ufykza?x4^x>AT1w)d`gNIr(qT<~~O3qc6X;yrzs%xH%s4Tz zVX|#L8hxgGH`#H6HydM^c)lK+na9PZg8lEKY7GM%)pw5 z#dJmGRy{0m1Gk21r`>~AiS z{BY#h$Fc%Lh9(m-xJc3dy-A+}+bKf>B=KYAryFcA~bn0Sf;rLdB6lx)XpS?p9 zzdP)-vV2>W@_Gj2^Hve6@?OhZ37zw!NvLe&@=8JLV7Hu|Sw6-;6@79}ti!=y2-Nu)y7wzxB#kML zi1jTh9#omRylcv>fpe8g*d4?-F)}^Qn;zkbL-e2z6dUF+G4W55N_s4y%TVSi&%U(S zAq?=*V}6yP#SX*Fo-CE>2zlHgNBSMaBRQ(b_!%gQ%lty60E}GzesSH6#w<+{KiT!F zr}1huo$S(A)n7@PVYSPGXyDvEeAToDtUsD?jky@~q|DDGpm<5>->cv;Ie)Cc-lEEN zH=rb<=)AS({7_|y%}i)JoeX++9~hKyczf~m>7iWe;P*Wi_CZ2GNTPWdpf(J{ITe+Q z8}6M-AIc2?Gc}3pnbhYWKhA9Gw)p&iZ%Gk9W;py+?>dJRWt38_XP!=-@kjbAJ2QSR z0>#hwc6&Z_=ss6!syxh??j(aZjas(mF`Ip)14Z-uC?3Jc3?STdEg6ftttmQ%DO5BT zQ653DlJIgF`2(ss`zgYU(h{B<@!4m2&5~#3q*jcPG#WB}p8iX?fJ)7ryZCSXZ+VmlVvDY{9n&2n8MsuP2U$cp$ zsH%5v&sdmnqzczvv10342U!JGx9&L3T=hE1;e)I(B76)$KL40ex_f}A%yWc5jz1EP zfbQ3FeH}>MNMplEMK?CMfHfTc6vADp!iBpZN3u zh7Yv;(iVU|8JiF&juA}P(UZ;c%DQM$Asn}E9)LC{ri5Hn{Gp|H(qwET z$6h$GL>3CW9?vparn@MJ>G1u!=U~c!#$+HRl7I4C&Pqjeh?2O>S=G@pL{M-XOQE{lDZ)m7qm6gJbtNm5mhjM{EFF>L4*2&$T z3ig`MiwN6ND851}$owD(xcBsFF#%u(m<-NmW@eW0z)MSu3}}ETqn?3rHEH_)#KQpu z2@MXS5ETSkaWq-P4byUgODEN_Q8Eh6$G8K_*Cgb0KuPJ;Y}=W&z9ZF$X%wcAG$ryQ z>@=(D-|qJKP9uiedscbIwp*dpQHP*kZa-p7S-DB-bF91n@F}5npQ|Ig5dZYccnhvT zHrE+9o>m2233JO&$}+QF9OYSCrXgriQ5p&3!N*PvCYL)Z-iPeqBG-#6eol7uv{uS# zPOw<%t`RObWPe8%VHKvmwCpW{5NeI~+Q=m5sc_Xi`Z7C#_s|DN-M;dMbYO~Q*yJnx zOG0ldQ=-rAt5NxkVngQP`|bvx;6QKH_=(h>cWY3UU&k*tGp<{e$@hl&7wUCXeacId zF0s9M)P5|ty!t3Pe=E6%b1zwPk}wM42)nljb_yA(INdQlQLlz82B$IjXTUWw>V4;U zsw1G*u!v{pm_tnsdisKB+Bu$=H82x=DKtiPL8ykLJ2YjSm-GdC`ku*lP1yKY`n2Lp zGT~+8aNEsLcUBAyTr|r``MjIcHEUi<^y=fo+Sf3mMl7Y}K0T3(_9(5~EOTd#k%F+- zt%ghtQfS7gz>f(JiLH`bGMbXOY zWLVMXaNkDdq2cEF6wA3}OPk)wb>(kRbAGOz)OGnZokx(PV$amvMHu0o{)%V&Vr(f3 z!8ure1WcDsBT>I)d&riPGCaw$p@G)1zC-1&5RGlDF}652xNM?Hb zJl1s++dV~}VL11~C+os+I$dAy>+ank2kI5+y=NzrOT$WU37#U4b_zKqxYcm0+Z)DI z@E{KazuOp2R!b7<`xlo8KzW~Nh&>oQ?;c6f!2?Lk zr4|t@D@uF(tK71!UVx&QIRPaj@1A3$xFPgd3s%%Bj4Q`g1{ zJ54itib34Xv)k;wH~fJBGxQs>M_Bd|Rq@pJw4K@@B;*+dH9k_aKame_EL(>$>HB?} z{oi{q0NGg#2{Ghod?{phUr4j)rKhDKWfJpUR5gIz(@M6*$jCoP{7~j*C{egFz$P*7 zL8b>d8;Zeqo2wGoQ{_b{|BOwujUY~W>flA7eEC;915v-??yaok@!_keu$TIQ&sxCj zDO5>d*VI^G8Q&#|Yh>ijCTOq7(Mj@{_2i+m`jkZdZjRxtJ(}$@Qq|MM?g*VT+>6Ya zE*q4Q)?og11R;>#ptZ^+pMCed#>ScdxD0BedQyW$pW+xO15uRgfCo-RtcmVF0yq%qJa=AKh-LRAcP9$=B* zS9q1nOtcFx~2+VAF3tl_6FTDxK3SRhUr-c_AD%~#HsDO8-vK`#*s9CI$&NTf0!&>(M|oC#*-H|i^yiqQ6C|glo5;JQU9W0E4iiC z2$4jO?LVx=|Lm6mx(uXj4&$T#`P%V?VPIeX=H_pSwMO_av8Hy{ESPK(y=7JAy#e3@Hf^4n{>MbG|eweB{LlAM?XmY`EQ$Fb~rGsv_xppXhb`Q@Qyi?ZW$l~^Hl{h&gTe1r~<){`aaTzGS6 zX8&~7CzA2r&=1ZZpg#&=Dxj#2`Ge1P?bqI+M}_#t#x#p`56GN)(|F_#U}Ig%#7*t* zVa}V$5>~`SJ+1$}W5A0`%!gz$MD8&NrmhqKnRd~R<^?kRhRCz{)J%`20Qt30g`ddH zoW$e`(rp;IP3aUF1S+fgKc-~>kG7kAf$*5fZz<43@7!`Q8vW_U{py=~9}8LFIRz1%2(&a@L>i};QQ747HU*V5k5+!^>yg-S^Rh|KYMs?3_07hA} z(i+n;iC{7;QElbT_pGJx&5 z_CULmGV`X3SSA^7Da@-jp-{zU)2bu5ca=D*yl0!%b^DR<%tUf!v$k}$QP;@`P~_X) zfrS;0!B22S@PZ&g>Z4D|QwYYXDcY6{&-++f|8old`e%Z;;KLFDVTqVk9wG@z=2yXj z*4{j)5Sy9rn1$35djkG`#xa{IfSU+)Q&z_9QhI9IN@TlzIDW0%tS4a6@(LeNqMgSr zj#hpDTEjelpj6do^9o6csQX9T1*K*q&z)nQUzh{;`*3df=}0>N;huh{oZrFk4)4Jl zN4|N}JX?w2Yt+d0Dl#l4Td_*Y${im|r>yG(LF8lsWPO$eKgZ$3UtCUfN%7y)f1)&n zE>FAY?ZbG^5XWB>m0Ti;4=u6si_qT$pxzC@k{9h2q*lMX+QVlrT?+B#*tDT$w?Mky zYH$F(2EFcYCYjuq-+-XI>&*Gu>pwT^3@*86ztvuTemFtjJ+gU<1HqGgV~h#Gq&veX)) zjWZh*&9G7}C%xGoiMf`M+h6{C&+~9d(**551c?hx2`=zQ2y!aAS$FI+cM5tu5(GT) zo*py)Ad}Q^a_G*Q&p2mZEjLq;^_N6o3pfZ5f_JO^_akHD-_@rq@hwCtSxQ5ObH94V zzwkc3l5ooZ6u4GB4>sKA{uRxxqbF6*!!DuU6s9JR^?XPBqbEr(!e(czkfDVk+f+hQ z7ntnb*=bJp&RjXHY?AKOb?NrxC_fp2_K0Pww=ZFY=s35j_M*3Te;z7BQ6v=X>FM)>yJ(1i0ehw}rz z3>^r2KJ3Iur$$CS(eg`oZ<_^N?5?g5AM1DgzeRDu6lmCl5p5aLV_XCQ?Rg10)NtVF zO35Fjn9a4G#0wPnSwhbiM#`*s{QUEg-AKb(M+|DCjUn(J8;l2xA;is{wMJ7F&|}R4 zfuM0mkx463_OLv{x1zAC18ao1H53?ku6E+l1D00y%j^qxJ7GUOvBIry-Toj$&Di$t zcZR`ot2a&9%4mDRgK3jGk)a8yix{^!gg&k+#H2TG4D5)ITEA+H=9JJJ$OFUIjowZS zD(Q;xlrQI;zO@Nhm7WO&Xw^|9l1-ir+rl?ivbQ?NHbe{b?656qHjT*f!{VvV+ksI1 z*DKMQxLGa^DErUw{=H|fcVzmgDuATFBZnWhUP&CKmxJ?o-#^uxplqrUAYNL#7h8{4 zyN;M<-i~5nB;$zPHEqh!MrO5FLdY(A6T}Mv#8d765>IV5U)|ZF6-#MieKeN##`xn3 z4DV0pOFc7Z$`lfoRF_cYFI=x-s4t@L5Kmgyd{tU*SF0^q`#ABE=_ry*6mf*|BWGn7 zn;}}P5ToWQHl3l0l=;y7bM7~+SIXHi8eW_GTG}+UJ@-%#T%!1H=f)bz2s#eluxRNC z9tYfX?2=g!Xoj$%CV`S>1hcMsdq(-n`&!*L*q8)pO7x_vmN6xmG+O{-Tw&jDZNJa_ z^otZ;ej3tsZf{I+p^U)twjowX`MA3)oAGSZb6pEe7Q7}%L7jVhluI4*`x(^eg>$OS}i~Vbw+dP!NP*K)(!t`eDSBM=1;fitqdc| zcz5I;Wye_Y)B@IB%}q_U82kE$HeIRxc+F#>qS*UR-`*8PQ+*M#wF#FR<~vF>#JZ|I zLs9Y~_AJ@{^^xZf8P7bZxOCj`F)4QV`ps~~MW9&d3MMaA9Kjv3%-xOW!KH535D>1G za;aPK$2t5k90lb`>3*M=+(>P}Xr|^e@#X*Uo|(Op?*9m=5QhZp5Dyn?6mj}j_IOHT zgh}sf*I(xn#m`^f%CMSfnND!5OwK|*dkA2h-~S@f|JB&YdA-etX)*T7nY5E}5xJu} znuJ8#?6zr@R$;Y@YH@h3O_5jQQWpuf=As*w#vxO|T7&YgY!Z`};OnQx<9yC4;}h?@ zm!bk^Gfi9-#lydd9a#h2JyptN`X*&0iAx{3@Htd|fy<6Xm;RhKg)GFj)YfaVl~Adh z5-*$Dh2CeHdPv*3da-@!`eDnp3v2P161k5_?hni9dZRj@q-ZAtigjU4CJaB=4Rjk& z^{9kv297S9LN&xWM!(CF1u{5(fmJEKdOD_7KqMbI)NLh6bDj7mBx!DF=Q#9+F5T1m z8?>tApxMaq(+uYr0Y%8~N{w!1t(hUHzbLOMP-``=JFI&=;Sb@_ndQQA56zxk$Pc&* zfDoRjqA%@zU+}r{7$=FyT^Bz!os`0M_g}Z;|0P)7@+4>%Ot>VO)W-Hd--Lw(&;Whf zo~3+bCKxB=NEkI{ig)ucW*4NTPT<&tK#gk*ZvO6pBdJu|Qxvp8TZ+ zKui8P5o|-<$Z3@Oq#Zv@SoPi~hW-3pXR(Igs=Btl5ovtH&JRfuG*rNn!iDn>ifY4% z(?Ajl^!gal8OLv130phkr$E55DsgrHg^YX}3D@CMq%vD&Jv%SEo0yR{+7kb~55l5* zb>(gsTe&}&zThwN=|>0oqQp|Ija-RVd8Q?o`AUNA*71%42o8fSn?$- zg`saF6xL|t3uW@rz&#RBx)E}A?&^B4(>8h+z22=YneTJ5x~ONC$ORv$VF)4|vxAf1 zL2kR%70^)^;J_R(xN*Zm8MN>dI0K;)TACdr1AI}AwF6C>o)mOUu5zD&_uPt>aU#`y zYXHAy232~e&)I7rYH*KgambWSm-aD5Pg@g#o-+Czsj{*up<3#r@ z$+s)N^v}1t4UPY`)esoa9UUE~N4^PkCcwyeE?kA07Kt(6xDKcxo$&aX<1>`BCMbY8 zX`kkjKN%k5`%G!#q#UY4`A$yeTOSGi8Eu0zWwSPgDpovH`C+2nJ%gB*6f!R-`)dpX zg6`tlci(<%;VyHGF0W5i0f>6?&2;Xpa^p2Ay}(xpE7445m6KJIDb7H!E|*KK3VlMQ z9yPVWl$IiapITt^YV*_kp+yu?T>R*tcJwpqu0C-R5hhSWfKM~@MN{<*+g&yt_^fU^ zgNokHQEto*NwB zOyq}tck7!2+ospBDYkWM{Z$?}^7au|8+TnS_EsDW?c}l%KrXND2oO*& z--)9C$f}>4mw!xm?g#EMK<^j6+uW`{@=t08A7kNPUl$;x$5}Ut`ladS=D~xy_C{YT^aKQ3Dv1>)58b|2_EL2Oc2YxLb8-1latU*AR7iGu@k zD3uV!q5Lq5ibFt^vH^^4&>VOD3ah^-HeN^D0AD%{R6DAV9aq=d(=~T4Dz^L$n;!4G+HfGvnl0Wzv*yME{c{e;b6m5 zIGW5;aJsyBBXw}q&bvH~+hSmfOp)E|cGtwXck9Y_LvP|MNrckYIf#UE)XA6)vfmgc z8HNm}niAH~agrEX+d1?9`S!!XSLm^B! zw@CtdTo}M%S(+toVe9h*Tr)hbq)aLx9kMqt z&lSUNSR)lZnNo&;W^EnlscFBX(lA%2ZXtloiEAivn_54`TxZ}yfR8YaP@`(-KVsA$ zTZ#?a&bXFeshwTD z9&JmzspU_q(9AJ}0n5Cm9mL!0<@jyKJ4RvZ&IIOShaj@X`n;VQcm?tYh+{&3Vqu^Y z330eBEa%=;Y+ThcAVV$MD_@)Jqp@8QUP|D+QcXb(jHVz~t$(VP-+cyWK%W^hkQ zczUzWBHOd!F>f2Vp@Hq;HK}r2fCf6=6=7`G)qHs zsb|U@F(lp;;gY^<)E0rke2craCTN&Dms z?b9#a8SSg5og&h)xt*NGc-Z*%Dims@*nx|c)!l1T&i$l36mKfr;_XpTO?Ai5Fsdk{yMA)CW6Od&VnF*R?bYD5iYeY|$twyhjbkD_#)t4SI!63@Pdb zj|M?12puGd@+QdRGS1XPy{?SV(LL?4w(-Pj7QC#AiIvnE)KlDJCn1OFiyK)=-zz!Y zA7skRF99|xxPeuSNb+{QOf9n#la`AW4_?DehAW#DkQAh*#velZ8tpvGy0|0T5rs)IvMgWuf(7MwaKl~~ z1uHDsj({Pf&Q=K_6(3-i<+L_B&~3RfAW~5r18QptOk&wLDijqe;S)Ix>R0G;i_Y3s z48#`drAyO&KuU8u{Ziryd!bdBpkr&{z2;}St`Mz3nI^Oo`Z3f>@neyGg-mtZ!V6Re zGgv-`$U8pIPW9w1$^hjB#MDTwcna+$LV*(Fm>Uq<0W4fr=NKFAatpI^u#Z|Mp_M95 zgbmcq{<&LLzC9&}JCwmCn>T%zlie&*1U)Jvml4hMB;V%x+kq-|h~1T2tGD_+!L`Sv zjyglxf)k0=p%`l|NrnC|wnW{L$m=7l|X|^mCSvK*p*IfyNMEEh(FJ)6H%5cJ!ksXJIAGUqQEje_m zjd23lwqorRnRO@5l#%VqL|pYmsu#Dbot11)SYp*a*YOYY%lIdOI|z$%jTA*kW3B^N zMr^oILVw7@KbA)#5ZgpknZ^ll^I{)*@F7KxJZq2dKu8_5c-d(5WaKbq+*C#jP?gdI zS;p?Oi++KjyH*PUccf)aX?Ctb%!NvJ@H&W1+I|bij?%c=HJ9#q9B)J`nI@Pb2&*&+ z=s7Jg)ctZCTo~8t8q~XGk@F*Q17IRuS}7-47G`{N;+TmKj}EE(UG&WPmYi2V1wWUxVKVt#2{%~w~F-<}Tz4~*S> z6p*w>Y&*O@aLFe$u}^;0tN640#B7>27;IJ?Gb3?gbK3PZuf+);s~YYVXb;&ViJ?y& zQgJGYn^LxfE1|EF1o>%FQkJ|*V~z{21n+pg(o7~tQBj%K6Y^cZMK^Q%S>80VlV8)y zp3~F;`#U6;t~SMXY(*v8{-WiwTWU+oQyYT>p4PWM6wmaQ#Id87&LrzBys^Uo9`)Jj#QL7@Tx(1MVaGV@q&p=EmB8r#Chf9hqEq%2_0AIwM5#vv@M~P;V=uN5Le^ z`noD$&y%6fX+<7t~NvUNl5nTP6o6ztJ zLy>O00_K@#A2uH36YjF3eH@(jX}p{YWK;#+guDzt&DCB}C)XNr1Hz4KaJID}AddOv3vc-BVjOs?BI|Q_$rxwu@K=S6Ze6RMf+6@?xd>GA zq5L6D#l}hZT%7G~YnsTy>Q9TjJs$05md> z#pcaZ?@`8A8rO^GU!;Q})qQUX-n`dV_jnIVjZoZCm)5c{ z4a_7P$;kc~Ufg%|D~Jy-@r)fmGjMp-{OhNLs=dfG0pkjS6fLlXqhGZG68*T+qI!*i zn7X|0he9yrx+B{Gnnm-2*IF!hrsFX-CD|~d)VW+Yc1<2ZEk-<1jBgwD)o-j6zI(VO za)`~n3-QRI>PZ7yB;hkM8runYZf{Sx((dRFTNUNTV552~+N_(tCxP$V zJn}TZQ{1mDk)$-@`a{PA8aEQ|j0FXsHVy8AMmgY0yy`V%-t#`UJRZ#9W`8%8|$C1qDd54dgJ znv~NPZ>lNu38uP7d^1;Ti{pNVFPcdrUQ8JLLfGCoh}~&tbjQ0d1(BquCndCLMA8+I zs7W6omE)2&ht(U~TA05!G?f1S%_4r!<$yQ+J1Yx@8Lj+)SHH{Th1+dZTkzD|^63B# z2R(WU6_bATan5qwUtO2KuDGg$XzU&IFBeDT$FE#%6wRx;hCaY&3FqcHfb)odA-8)c z6O>(VYgtzxGvlkxMq(t&cYk*H;wr0wr=DCE+JEzgdA3Eq&_7p#ZyNn6Z?Xx3mf#__q#NlzOxXt4_AXbS8=FcN@_2|dYco%#UitpX z(UG-c2?cIBIbm|2%z^8=XF!{v%0vrmZTtG9X+rq`A;o_WHO}gu!$KDCG@YM#_lZYT z;&P?w@*R0?osaWXW%+vPwf1bjLFY`hrXKW{eZ-%{=&)f#$f=DGoM)D{H-zwlweO6h z$!6vXrNwzYuHOZt9<7ez@w*N)J7XK}7kPQsN%HHf`J0L96o<`v)~zDYgcdt}Q^y!A zbZZk(TFSh<&~{R5ZSSz|t8tBtv++RK-{{f*7-B)cy4Au_9QjVHw64B5#kbtr1S$Jh zNmt?e_c-g{^9fk8@@G`|66OKA=j&gMG)j3jMa76qsE5OhIuwbuG+bJsfcjhnHu5L9&UI%KxC!9(&xKs)EFs+;4xtfMu?uIRL zOlPH{Hwq84Xq+AyvP!#q-!PO~f8a%lvdCV1x$p4qf`fXs5yqJD`jh2tgoQSzzP7ba6$ly^@4sMWl_~PPG3_+t-X| zNp?(9viIH(noDFmrkOV@S)T{#ZQG>MQv?Vq&88evxfxM%=_$}tGqU^1H-Bf@v#`f; zwjjzdz&f3WIjr@n7H5#+zj5cwrK&=4!n{>oluNn%KJn3!r;vgA&1vdR>+R)jQL-e< zANOvUAY_R}a>RId3ez|>UE|H{?rd2ajiQ?LrK^>m52dT$(Yf2UGx{_TxCQ}NZWudY z=88>kn-Rp-)m9P;-{RNUe-D*>8ww7XF&jrk8bVs{t}Cm+2`F}nk;2rU9apGZ!J)c*vqeGR=YvXNrJp=!g^QACM~rrG1M#W76%eSLL;;g_U772x;M^T92X4FG z17CAaqUnd^U^_=fh84^nM@nzU>r&D)a}`$8tR%W5^7lj`Ns(u*((7HEn#6`+mgnE=MY}$WDORgZ6FYIDKD_s9M7)wi+X_GN+A9f1w^CQs~)(-us;2%+GL( z39+nlHG_7CSpJpjqA%7r_R(Y@`35Ou{Vfg|UaO>t5wVtd+@WQ485AyFGnq)tqxB>P z#?+Jd)A-eDeEbh)ED(qL6U>vR*($TVf&iTSvi_$91kTz7Fw@Z|%tyl3w??S{8|Qg1 zeDn$iA2?88hyro1a1CWJxPDac8wOypHjt;$cuc3$+Po}z@Oos#m*+g9d`w=4q?Vix z3e!dV^PO_oAeC$Gr%r{w&+0*9n)c{V>wLFi{!3N6|VCcsw+> z%3U{+nsKA+Uy|c9vfXxv-?J0Wviem)b*Zo7Ys?1vVKr(9Pfl0gi6B#*^z3tljbim~ z5IV0)TzjqNSzxBtVA(Su6{A7#NLCSJ3?VX}wX^D6@?qZ#%DvdC3f;2M>0wSFll=@U{)2P}g6ARkRqsyl_{eYhdW&4*5*`jtjKH$)cv3qPutiwm1^!jz&@6+6hScerX?lFU~)=5}oF;|vl zzgSCyjdF>)S^vtG|40Rh)89CuKZclAybpS@4h+%yJMi-Uog4qAL@z0%=n5W&Hk%01 zQh0}J$w48BWD@&IlI~-kxGbi=3b-S%@Wh=wq#_ACSztguca~^i@$=TDCIppXDjOlt zmseVMFlY{qxr0y&5gG%e(tFPLf#BP$C#h(_Oh*64a%C!2LH_ROeWAsUwmqR-6Rghk z#UySOi%(#NT!aA9^dSdRk^UTlsQ>2-8Tq+Ocl$Lh7ulHfblhv?>*J+1A`*V( zs%`!N`qozr`&BfLK7#MRQ6Q!+!=U7pmLE)B)KFs#CGcUeyL*%ieGH$4N5XFpb}iER z^8e8Fm0@u$+qPH;!GbjI1b25$kl?PtU4pwya1R#TEkJMx?(XhRaEAbmzeV=h_ndRz zzTek>)`G4snKf(7F-KMXDnTn+Ya|Ixa$voXk`2vK^GeZ+DSX4B%@?42d7|58kn2r1mbM!k~%1y31y5Aq_jbN^IlcNhn z14b_(G9&NQ8eK60+8Gko>~r=ei)xZUFha92<_5P{IAJ-(!x#--kyP%R=0y1WmVw7S zs_IP!Xx_yS5SE$|32){OL=|?vU2y<7WoANsd*YiVE_n};?GIL1Q=TS=P0s2Y+uViu zrW~R{DmF6%W6DmIhp!h;kY!Jou*Q}(zE8TI1x4~ZBq^S|%g0P*K(E+Z za)&j@!k&uOFl!k9lQU_LrZ{`prrq1$x4RNq@M$Vs`EB%*A8;iTPuY*55UBlzFiGI= zno99QpakubIaQEMtTtsdUQ2RQ;^?=Y$S&a%cz#Azr*YolPz@|e4!`hVBr>eJPD&;y z3fT^>&1n?M#GjpewVoqgB#{E7j>k|(w^Fg$R2IhvuY-jN6yE)?Nq%r=uyi-l(Va~Q zvaIUmG?J9LgTCaA2wIb3cGMrzersZoOkCG|vK!{)F#HwR{X4qloSi?%JC@At%&0sl6+pOVtnx;aHv;%Fu%<t?uQEmD)-LdxFRA23kuN7o5TDN9IWtu_XvJ zwYHu1eNiFvJ0Unr!0{8^{h6Cwm6O|90zt#h!EOt*>gP)W4{>*b45JaUSMM_$(1sUU zF+Sk+k+fSus6H}F2NE!nG4k+>ocNePlvoaxjbHln=w?oB6UQ5{?3G(zq zmUf4Ypcb*)VfmZXwyT_GVAn~1+cMGKMRG2$=}9^4vOQa-Qx5xeSi|BoOgM=W-L<^Y zxDrB}J-$ChQ*%;FXvTqk>1`F&|3M1Hkqr59R%;}dsu;{b+nQVa;%W%*$v^C%{o&>Q zMLPV#h6KEY^h9T%o3OG5C_g2K8#V3@FxrqdE8Ft5SxtdNxC?z8IeR}P(oQB=bu4%yjmUFZsurK>Yk8~pdd2GFMCrncz zp50r6!2xb?fcJhMZ*4Nsh}Y8x!EnW`pq#+=Ws-eOGx*S#(cgx7EE zCS1bH#-Y@MqLQY8aGx<$Hbdex=e7@BcHU`B58xU+Ev%!?ZSe=q9m5r7pA-yf#7R2z z&*=>o7^E#eTVZITfH`UbG(QDP)4x({}AsCkZDd+>9TAG}M zf;|T9xAwC5H9=+sR+HCTV{_lfX_ru)`;5s%Sl&Bn&DUN8ka=MjW0KDRA~@D>^qH8=W4);{(TT`Kt*%nx(e_i)`?vqm zKp;AxqJl}HqG8iSV-ao8%ppY+MUX@s=YH|O!ccSw@%-;^+_L4XH?Q0{C@z6{V+Nw{ zLH#Jh)90k|7ECJEZtImy|BaYXY(EO6e{Y@V2u?uW#ei7Ze2 z#*8woN=zyNfh?2A%}in$db$1{c9V2_JWs+3yT~Z!>En`p*DB))L1#m_!bc&uq`Je9 z>qu~^g8KyrWY~T4v0zokzo_~@UvEYWLZPTreW}&3SAsncASUJJp%`;{?-B* z12wy#hTJ&d<9$hbZra7g#WkelQ1p_8?MyLc8KVBDgF*T8AVf&qE~22S6kkrO88U=S zuE6$|D@vLSN`&|ZRUSihA(;B!7I=Ac8%78Cp8rBaFE-^bBh*4w+~s5iKAGFi--PM* zfepjO&0@;@A^B&_h{sUmDZ}8|MHfis$CMNmsg&5pT;mbR|DmV{Ng))`1)rbQKGJa8 zc=TRs3d#{4!KQ|ro3@^?OxD|W^FIex5{A1ONA(UB^eVhe;~#q?d33a{`m&euCxAsQ zX^)ok)z|Jdq45)`qE!bLZ|2c*efZ`Uf{5{=MQoD={2msro%=#lTSwqf-8L*F?Jf(j z?&(CufkoJ6gS1gw(;RHvgQbB?3|>k?mKftLxjlf&$mg?W)tr2p9Z;lDBZYi;#UZZy{nM>+A-5;;_-XgcaQVsY%e%*FZH z%W~gC=PJ5Q7|7nawAb3?mwW5C&OkLh5`a~AM{N#csZ!SXBzOOz0)BuI0BD(CIKV`T z?nXhp5Je=jjZA7mMNZZ=_G7)K>k;i?*6@=`$(_@C^r22I4?g7RlW>LJ8bry%lurEy zyy3ysFQ@bQMNB=fRR~@6hO#Nm*p~64v^6Nqp$H!dBV;_}wlw(k6w4`tB5?gEFkm=) zHv1>3U4Kups3&s6l{VH0xacWZ;jBM(!aojSJ}$95vw<<~3f&z; zjbtfOksvZ*!3&U{NH-lhkA9|rdG67jJ2B-Yfc|u`P}X_5--C0sfE(cuy_v1n%3UfR zA$HR{Xvp?T9b5;g4%&)1PDHJ!^YZ1^ADSp|OtGa4$+7Z$KYka;sd^gTZmKNu`tS{Q zfvpuEb0^VOi*Li>(%`XiT|`Z$@AC{tfBPzI1vVG%N(Tipy)g{gH` z7pa!>P4r1k*9`APYfcPbeL`T3k2gj%O{7l2-U!byJTZ9csND~^$^*lY9pbiUnaz5} zqIp1*G(p?S?<@&?q0I8}KtHo`2*CdIE?mOf%8zxcgC&I3u=cYvV|S)Qm-MskEw8-T zPrN?#!rk^QM@u^GN!{-v(7cCS<*w47SR>0;cXQ-SC_<{l!Gi)?3$Kgim6X8(CDf90 zyAEHs`a%EcasRk2U=4_YaaE{ca&)>qx%8(R)T?;DPYutheAe!2d&{Ul)110@u;aUv zf2BWJ!#%hkY-s0!^`Q0>){!Q;qtWI=JpCHVNHMgUXRqF3wqnvRHe4r3O5%%BK~K5( zPJaj+$FgCVE;AU}>K zY8?e|4N$Lkp|!ZU@JPPruAAt?e<>bOXsaSjqPi2jr(`<4#LPd87VY)v1#qm#%VM$y?e z&#VWb$i5E0{4aCVq-e9qO_rri-X;<~caPD!UrF*@h`Pay^uZmyRV0W#a<;D3f=@pL z@%$Jbl7>Yll+Q)$Z!|-IyWlJIlrIr2Lo6J`OyaiAWMZ6g0>8pbU(q*LnD7}6_RV)i z4dN6P8)L8-kjFz);X6S8JV{eFK&RvI|jSgHG`W#Dp;)9d@h{tXqhr|s=gFs zi8|G{aaE2wb&g4Z=*_+g@BY)`zx^W1-zK*!hCc$Mif1Qw^W1B;63T$3CZaw_qqhXZD4BKT_Rl`1Te6+sp zK`mNn`uzr_p?;|AgV!FNBYn$u@|TAOIlX=XqWn@Bj;&@FPVmQDScQ~;k18I#i-m%5 zF~+o77;|Lu#rLfoIaKH@jHl8CwB);6f(%NHe%9CQE}6Tcydi6 zUZIjtNQsX6V|J#qEatq3Vvr!Gi0lcm;O0zhX(YQs`QuSsnBh6iDg;I(+f2Z(S3eQ1 zrc7ZjaPkhvExfS58PkO1^iW#04{j7(z$p+EMp6x$k~0LJ!*9DMJZPql4@BF5l%ZKS5km^H_pHjvB z{8fn7$C*Sh7MlKe3|F z*6Fk#_pMaXg$jfjjljhP7!=t>klJ`v&61mjvO6aHhfS{!Qk%#NnA$_qH z11CQgMr(~1p)B>?nZVb#5f?~J?M@r`4_X>tS<5SyU#RDM3&Iwv3hZ8Q zj6c)C9%Bc73g0oXAsfq6q@|_H5QK~zy6`X>SzTi?JofV3F*(Qf){*3Hqe1dy9N=rL+`6H z#ByAxXd(kiALy^IG7aWJ7>VlAQjKAD8UxxKH@9hk3ja}EqhaBuRkGkMLNY` z6%do(pO)fjVQP2AjcHG^pBZ#M1YFft-p$+BP|F}C+HZ*if}Ms5+CNF2|1Z9Uym|?T zQnYvTC@6?Y-cVVX`E~|YHHBSY<{2=HxTlmgn>Hg`-k}pQ21T_(B8FMCnW~CcjUH2T zR|M=Z~swU{oLiyEqwE;=)A(iqw|A2-YOzpp^W zr@{mtQu(*LG~4C-?us-4Xks z0=?vO8z=h#CZrumHRkNSg_2wPFP``BIol5li6&YN8Cme>h4PyiDoJMHe;7Lv;!_l$ z&{J?29ng(H2LlgSyus4%{>ezP-V`dewh$n5@ z;+e*m`l^Xo#7aFk>$`QB)GIrN?+Yc@hCsIhp)Sqmg7^38?zZ$iD(hB_m|RdEiYA5$ zR$ma02FjvYcn#Q~3Kur@`v`20?`!$&?SBjdCjfiMbx{~D4~)(?EkcpAej>#aoEueJ zQ0MwW9Sf#9`gDqXif;2Yg{n6o(o}zm&g#8Z0AnvtP>#q_N5#n}NV%w!pl4C)g0ic= ztX_9+OKAq(NRbJx6JnOrCUh{$xBg>|Vt{RF<+S?v*HF5B@#WI+AJgroGXB^`dlA&v zFZp7)?a?G>6daJ-gPv9_+U`pZet^%(T2q1>JOFzu^zv?e7kF90}K%tsv zqrS=@3yh3)Ms=!rt)}c96Xo3CumFEfbgoYnj}~ zf2!VZ3Cy_>OTu>^f7oWhARz%vQI+Zw(sf>EY8vTt;TCM&&x>BrHhCE19qv$K$*K08 z2$_L6A(qiPqyrUb5s|*aqmUJ5!@QK_*Rb!MU$3w0PK>jc2K|dY$fr~OPKNvK#?^3c zpYkJ1X^?l_)C7+={R_2WT74GmL6 zV$ZbKlvhA-Hz@gO!_`qYf~COtg>l%qk9%1 z?(Z|qBQ^jLjCpcjv(5bcBQ{DsG=Fgky6BAQB83>(uo=tf6kd?gVU4Oyko^;4Z$&m{ zk(w%3)6R`LjYRuOHQq+sJ%x@`e$j#fS8wEgVDUofhHy^Nb*3m=l^)=CYV^R#vJx-0 z490x{xJdjdQZG+bTrd}vRK;`=5~xu<$J%GJrOfauR&R$m5{SJ~gJy;pa-Y})U6EP* zl<^}!aoVicpGxvs9U(Sxh!v^#A@=6`zOV|&YcS^D6tEX&U~-~4D~yeq;BPKsO{*oy zQRms5Vf~dfJN32XlqaHluG$|%CS^p7!V-?|SZ(GiqgBqon|+ADnItrhEbb`vCg+25 z2srjP`<-MIoZ&RIITg+XcGVT16YapB>xIZPv|gW0XH{oErD$yA&T=z<$M)GOET^hk zxB zmR;cxkH!~f%}-p#fKDa z4FM}8(b=>O!SK+~ztqlaLtp7j59r4+71?Rz*?x}B{xbZnn1~sthp^hgNZ#&2ixe}` zoz&Lj&ynQ}j^R;Vkda04{vX#wz)Y}g$mB`B(?;qHlFQ(+hh*fjTlj_?%X4S!> zw7nNRFfB)Z^h@~qn$j>E>37RNp>+fp!%^R*H&1&#ZATr^9iI6N?OaLr+wOb;&e-_SH$$+ET!zmX39roT?__g`+sQ^T3vu_(u9ojaOhZdNXA^rbnVjB|fW2fL2H<`(znuUrl_B zpxn?8ncj!EGy(STZ7jj+DMYYdH=dE^Hy&R4bCHL5>ymouo4X)IHT|S9nkHXw{)yC_ zbBy|H0-?ufSGjhpi|B;Og&|@D%LE`%oS|f|%g0Kv7+J3;JVvpy^LMCk&!v zxRRmF6%CtiCQ*%082RhjK^QB6vgTkel2PloJJ$^F!mDw>Opf8P5O*6XukRWmTKi11 z{a}5Hn*_!T+}bxM=Up8!Qw9yWahpu%H{U<9pAjqxF@$B58pL(l_|q47_eeAsG*NVCWbvP0d~KucP+51jBSST@P6bIuYHm1^wZ+Rj@+M5UB=i1BXkyhpvaVmgk^kEOz0uzrn+IKB+?kp}gh zfB-JmPw9@v-P~U?&NZl_2{%%g6zCpwR;LEn8?|Pi60wkz#B0O+LNV)6udd;rASRDVvi-ank>x1A}yEBmBv&F{`C-2j+vN1@%42UW@JGXLm1}N ze7mF@{jq^x=*pXVR4zPL&b6L<5q@Phs}S#Z6ng4vN}xHa7?b>o*b8;cK7ykUY_0uK zG%G6@uM48FMwpAit#CO-#clJ8Z;|B!x^NuamMvJM-u_Nv}je=wOtC`dr8Kk9UJVw?$aDOPhX|GXc$ZKFMD+!$);&!oRj zJ|9p4%i*R3Vt4aFiMunJ{v3=t)<~t9c3Iizln}^uY#_|dgQhFK(VO{tqk0ota>3Ow zU6R6XajzUj^j-6WRRne_BX6!Z=Ami^4%rDqkp8U_9P zia3p+Ow$9AiEcO>M*{R{BpPyjaOqrr(a#O4pn;T3YR0l3R4E)%={EEC)hymR6m_P~ z2}Chr=w}ZbqG|I32W_*Ri_nB-+L}$Vps-z1h2I`el6fr`P=I&7^#9f`_TrEKO)13O z1CdE_AQk)>k`CJOjb1^60p+QBvzv8@y^2Py95Ia}VlQl6XH@$+)7LjjiUa82XN%}8 z;MizUBIo7o_~QcV50_zbHuY;i#}o^wns%0^UdGE<0Tp5vDfmsCRbZ;=DTb3d<~gogF19qd*Z`h1li8ORalpa;0gyhEHucbkDV@ z>9oScb)^}4!N6<$G|7P3+AY{o5+KR+J>J=i=kjRaC_D#k;p(|A^@IL*`4(ZCsGbs6 zXl1rZ&&W^OCd^Im1;|SouRkk{&KeEx2s*Z}25SF8YPG&{7R@T%p}!0!KJ&rs{!tfkR|Wyj@m3Ydl(%Qu;yWLC|nS=T(jvb!%f zFdp-pU{bb*i^b}b$8XA8+-(J6+hhW}OhexUm|Q9jsL-8oy**&DsJ+Di02fERnY1tv zFPaHoaHJ>vciiO33m~robW!yB#jMuz>-qIX1Pr9x2pNk0c3y7SzqJ7B46fnlQafFZ z#>RW3m_Og|cG;zqsN$;+8~f%{thUEau-ev^l2a_PiAyw3&3oynM1TT_C+cUCtj)s= zP`1uzwv+bVaqMJzheQ>09yCK^r_{O{a^E0I?GNCs!sUdIFYo^&ftR$Ds?D#;cu*8p zO-(eWw>pkN#cfP$l2TIc2cQY0HFL6ouMig%+XED!QOpKH;K1 z<Ihb_&0+`m$)*poCR&(?7=b!s*6&NOd;%0Ug^u%6N)jFxR%379F+ z#-3HzC3N{oJ15jMQO#Ug^2U+;A>$I6UCClHZ~vWiI@MsW02d$5JJo_tr^nBZKNK)e zGhy_f@~nzB>(MXi*yc9>FP86Dj+sg8L;|~bQ^$cnk9wAg`MSd}4xP(Icj}3yadPXy zT4sE-w1{r7{S>F3sxJE8`v~!GE$e$15OH6?L7z3efY^+N88>qcn4BqV{L;Jsiw#(N z;X(ER!kHrLUYaot4BTd?O8AY_#NBle+M0HZ_@X8LQnvB}X}!4{{Sgm)uq7b{JFv^U z74C@^msD9~O~PS(^U9Me?I>s3OhN@9e!Io*^ox}stQ`&yvsHh-vHk3Xi!kP_Qal1) z)8MS9YYd>wY_iqf#5=r1vH`J9kezc@%s3%)=stEXs1})#tMfMLE9xqhg}2n@6ah&Y ziut=7aDU`k9lHu%0^rN0yFKPv4mqu#k!7FuCE?EyjO9SatV9|1U36nouD_FSMDtbO zt=G;YJ4rH4P`Bvio4qw$at7lgaxNgKk=MPc$2#!)ZdtbJMLPC*9$!43e+OR0#~2fV z4%vUM-cV*wip&A?-;CsY_-x#i0|U8F3d%qbbk$P5-pK7=oyotA=j?ab$qjC(+Ib6- zX+>*;>+)Y%UG`|t=**X9cKS+Ls(G=H`hFp(xTLP*EQ>!eZIhGUe39^ye|bVD9M(ET zL}9xz(^pmjIw@KQN-Y((3asKo2!y%fEhg>ne!Ys#4o+DSGZc=-o|i=*5LK}9>{=yi z3p_b%!=}7h8-p$|T&-cC>SJ%7_4Il&28-2?zDaE9+ix(w%1sxUC`HRXzfA|m^>(Gp zQQ*J5^qCjjFGGdjhmevz1|h#E3%R^+V|;(TcV}XoE~~C_SCEP;>S`Pf&;GNG7AI4f z4t6@Jkd2z18S;&Ukb*|<;hfUIB76$AiB&?mDS0VzLdaLB7R08GYUbhBi%dgwnCjXC z;4vY9;KZ#mW>1s(aAe*kQ=yxRt*9jzSN<2@X{RwDxrJIr*6Xm9_2}_6q1tQ~^ps9;nWWjxPEI6U~yjCg8IlxAtuVfYv7?R|Lf|0d?LLV@n(#>QKo zS;<#g_ohOwJ;3u@sq%W{!sRJYov(N2E5;gf=kLI0i%ukk;+6#P1%A(WJ7zS|wzsB> zy?E{HH(Znz;G{!iKG7^Zrl>vn~Eqyc-)aAgKxfAqk1h1+9L<4 z&}6v>tGZoF8*%-GjUHTqHRj2cDCX54)E)^Sr2O@MD;TskGJVr^Z*`=jFN*n+Mgz@0 zPhJqAWEhdS(*u)yJso6WCU^ugfP4&SuLjgu*~;c;P7cdKugJ$!ZXKPrz@QKAcI>nJ ze@lO22!Nk43C11y^TLzzg;Jm#uZf(6Q5Ky@QnRt$*5sm5EB4)y!Fw-P&h#_!>@j5~ zQXwaRWH5o%Up+0NyIVxLR34d8r`PtG#N)C2li6Y(q{U28!Hmy5Ah4}1F(ZCy5b+wC z>s=obS+BRyia`3sG0wi;U(v|fG2k)pj&Y`tU!MIwzp$xGduE%Qq*+v9-eBzD^%y3^ zs=ZLtv0S^G)i!M2L0raMU6S8t5{P@I$j-)3-QUA2epdJ1za=`~+@^IrUPex>gUxCT zWv0wKK|uPjmZ7bu*(6q=8b_5vP5Re9!u~lJ0fF$|Hj={e`B^B@YF9%N-7nc)e<>J* z5?@@nu@Rf!i#?n@zEI7N>Ql0dsPZ7uF)c7bt)(h(W9wCifz$2@O3h=%|CWiGX zobVRvqrzmpVkC*B`d|iC ztoC+|@i$N~P>ughB7u7WGkfgyHNT}p2U`2w>K1I7Hr*oSQE_^I3g<7nc2ZAtMYM@7 zkS#aH;Cj!12}qgRP4*yw$t#^o@vk!9ooyTP0WAxZpk!4xi+?on5{dh(VIjVxK+C8J z|Df5wlL4=$*+dnT<=U8>Veo|%717Yp1ah59O!gMP)5pdsp}2!#I&H+->n+GZG|F&0 z+PpDTnnH#_QGZ$n)`UXs=(BYZFPdaw_iz+K@Sp|7vV-pz`OO4S|F|a*AJBW4e3?_B zp+aS(XWJj36n`V>$+M{?Cs;<1D6q}d`y&qc3dO2NbT&4QPfToxRWe*|{xZS_G4{@Y zR$46u8yzhW;w)5JQ{K&h9xVcD{*A={bRaPl1khz+Oek$!Uw(-DbzG+_sFK}@KbJKm8EGxJt3a=>DuH;zNXP$Ks@G2%C-nywv}D&^~k@|H=>LqG8;$7 zU-E>@cjp?MH@Aehc`m_q-kTa0T9Rn6*Bb1TQWxk!e@)t!CDJl6zb}ZNfUxcnpX>kt zj|h}UK29{(a~9Yo=CXjjQq(910HqYz5Y(cSPy6P*dq*?-jslXg?rk(2rX;M3QM(p02!_S6DAqhwn) zr;th%y-T^$TcEvk^;1M9j@&{`wsis1*wI~^9Qf~2+i%EXPDLla`M~P^H@{6eW&mPo zP3))|X8volJFMBb8yf`@>j#OzVfOE2kS=4^0naC?uJ3;MBF~~TH7x3ptr|?xEF^zsAmLCAdG?|U(u}^ zx3RGX{f&fKb&e)1Nz!9FuQ1q7k3*!7yraD|OR&oUa)1zbY*sJL1N64#Vnm!B*MVfVi2VAEpPzl*Ykq7;p0G$naX=W%x`u{O4im8)UxDn_n^ZjQWP@lRjOy1 zeZ;%%G%2FcCLmW~G9vJR-gn<)oyW5yP;}7_{Rx?0ICo=J%OtC~4cD=*b6!|mUMHJ^ z!lxAihOjln^xXHWga;yUN<6{gh1%+jahN3e1l)O&pCDpihm(azJWTuOPs1;QyPWUh z7_bk=pM$%Q#U3@_l0Nq&>6K973vffU zl@ivbaH^ZSkui<9qg5f2vzK%G;JJw_c{pSAxiLzkcd9>9?nM3P-qnHrjQDw``e)3L zkZ+9t(uZ#IjC}1YZcJbe8>wGvwbdl=t%*c7%gRg)O?#j~bTB3SQ0Qhkk;`-M{kJyN zLE!s>0aFlCtq}jMM!?PR>nj7#O7k0}+a`g*Wl$g_T%E4RZ#0RZ1ijBNi1x_qt3zpF z<};UZRK+8dkdf3M0sl$=akZfOzk!UOjX1Gxc+T5SeElY3Tz-m$Y}1u0@NZH?fz`PQ zCk3Y7TK!EBV@&#c0&LLJo5$B2BInU_6|0xT-TW&kOfCGB0Zh!>VPn|Ryvp!#X=1su z`!4lfjzpw_7+pO>POQK=A!80Lif@s(+;hU7C`B?BLyn)X`jFQ)ib{vNJIszU*fG5) z=#32x?D%a7{B^F|6Ro0{=qVIwvzSXVf@FH@6p zFqP=OvHRJg&ntlF)W@SIzr}_uQ*f(qZSw?QSHK*Z{=lX)HQGq!PE-C*@Ec$#w~awH<@Q+fM$r9Ph9JTAaFqIwoKqMcq^#qyXve8*p0x)#Fl8X0~r z`2@|AFs!%olVmW_CZwSEJo!#41gmgevBH5c0uuuf6_9x*v<}!VR41VCDT^wQAUjJP zZTy^u+IEC=7Uf7g^kd^J;1MwjZJ(Le!w-+hc{ovf*t7L*0EH{ z4gVn`PN&7L-3*Ci@toA{MeoPlO;qW046*>O^*AP`1UU&n-E+8Wc}60}W=VvSnoTXi zvrDygkv}`ZMSTwb(Pv8iCMGPNwOU;5C6AK1S^mKRC6))?8na-WokjFg^PoJ(6f^ZN z)u?b~^6T|w_8+4bz&Sb6aK~i4L_`ker?&r-(}+oMLh-!#KT|dF)sL`I_hsEvy`vSD zh5=zt!+KgYmoD0=NvfPdfD?<&b-PV?i9cql9U1;w&;KlXz(RcH^#+JPl>dWfH<0?5 z?ztt+tQWzEm+X3e-?-9zBC5DAT?~AUIj(0{b zm#UZnk4eSzZCmEthd74X2I=XfsVQbXJM+(cJP0!3=Ni^&LL6O~SO?{Pr}MBHXrd}( zq%T^`Nc7cDR(*WoHMsHR4DRjQLRNG-?AQs4r}}@(G$9`Ul4M&b&eZyWZwbV3uOX)&T-% zi>V~6UW``?zC=VOH6P7=oLl{zg~7(x49VqSJCCq2B{csYW?@@=?2waB@AVgae|o$~ z2H|m{El5!*U1jS_!!@xKnap2Vj>}=ne+i3&bI_nbP=e`n1_8AS{HRho@0(;!K> zV9)C_{*LeAl~2!dXp4MxX>mxm>DlceeV27YfuMAE)!!64F6!6ga)7k0T0y46j-l|b ziV#XAxna_#aQu!y?metDtb&TB)PuD#>xPkH#qaCqG=&hc$gT-xkSn{jN6sIywio?% z1QF7xm)ryL8Ng;btC|Sn-^?B`8xt?J?}D*v-WM|f{A%)KG!cFVTrlg7*5~+`H%5P{ zR6ChgbtxkfwgMm74BC*itfM5c-W{1L+Cgm!@QIF34saP)rCFYlg_xH?S=-j8Dg&zsBGn;6gd{*v zPG|>8{*x8{+W`P)q;UIr(uWmv>vUZ^J#pRjdGXyt>?P8Cao_Fb=cjn|31(4Wda@78PR`1wE(;Hx)vZ8+;4Zt%N^D<33r_mW=X{6= z;79cn=zu9#A64TLp%b8QOT3FmiJ`GGYp-vzD`3i27!m`%xdyy=4H}q+$JDAL+ zGI=!7F^oCk<=4!`pXzCi-HU;(13`n#xo&C2dr2HNQEs4RUZSAe4dbHQ8^nh@HNhjN z?}6*)gSC~G)obk+k$2 zw8q62l;h?uiGSx1suUp({6i!6Im9AHzNIVZa&9?Ljm|yYHSeIPj*0T(%_r=C*Oy`P zsw3dxEQ;E6FJ=B}pJ;QJ4#;awN!RD!9i!BHGfiuso2o4)w^=_oYg6N?IlUF2bs&IW zlI@y?JXZL@m+4eQRfdq9Gxj6VU?7Xq7N_!!N`ZC4H^z^lNIiK1_sqmG#?CYsA!6;n zzJkl~GO3H*@NHL{@I3R(S5`D4Wp>+wJA718y|%%MuqiMss*?Jvf?L1ThF|dtwtD*;h*6}Sl?m{wB}X3Id9r4QV^?&@sT%m& zxPz=l=D08jb!@f&WLBVPe9{GqgD|CiHfD zjOh6#7YnGOkbu>TfiMQ)%+OQ$Qn&Uhn=zb+y@GE0CR2ppu&cP7;JrnEwIO(}%{C|6 z8c)b}r-i2wpRn71q&>!0FcY06{Ws7+7kzfULK(QLdcS^qmGw8`=;!bw{q9S~9q6rQ zluG;;^8`YKni1)lSf1zVdpk6^S{dtdq?`RdupSNAKISp6HnGb%pcop^Hagf^^|GU^ zB)kvUQI?{L#mYO&%sk#Qr}%%Le%Sk5=|XtMu6s)K9Plw9;A3eX2}tyFzBz{IkxT%} z`{{$Rh)G=H!yptDSx*f5p1FhHG`wfysSxU~&-p^2^O#wmxLFgd<0n;FiOYMCkeF6SQZG z5!9jzOJ|#~j{1QQLisVPAiR*f%Lki?C2jPz5$y0fWYrK4yofal?=Rs_J6me|&KJL} zy6KmKeF(!BOf@_Dlqdwze_t| z%tL`>FQTEeJ`)+4#54JpNM<$U{Kt>HOFDk7hlz(mW9-#oOoPfu!i4;1EstyyIUHN*F-NX?hllv@zU(?n^C++1)HU< zzr{8cs8{Q=6_e|7kz@V9%K-KKy5fx+qru2=0gs)You6S0{G1BEHIfS(WOSM|5=i-| zpmNB$RZESvBqfUxWYzb5a$CZ{DqP%dL%o6v04*+_>XNNGn69H;;dMimo$s~~Mkb{c zZry&+b_H+FnG-0icH)bnUL33sw;nFsa#M_?n}(TS5v)xqLA?(P>#GV#&JgRb_~;7* zeC#EKF!7@M&2Z@G!KR|J8W&z@02MrL3dPt-D&H%a;4r8${fa@f=XaM)X&0BAu9i1F z0}Zoq0>?Y1#&i8)o<$xhMdjZZSk7n&lp|f&LlbB?slAWPbL>#M-d6DgqEhYE2yOa{ z%FlV+5TbM?`pZXddn^4k$rVTDDBek%fzX_Wd232D6eI^cv(g#9Gd`i`GG`4-%JmC2 z9c=8C{eki@qgKhjHi>KR^Vs~~;5rk0Sy*!vNzQwZ=axE1lf(aCeaVzAsU@rJMNidFaKvK}bt!F14Q!w}VQUkkf zhuT1eX{-on1?9!n6e8n(n)*42g%!w&2^uUy1RK3^Io(5)PVqv!dADs@emm~Ahr)_l zvKh~)DM>GizP0^xyxen~TtcL+@2b54`{xlOHDw@hn!C+`S^O#|l6kaey@wer#h6kA z<*cdAaIyfDlO!!V3Y6n79?H*LZ15^^G!%iq9dO;@&=o@!&sClCi(J*>Zp~;!tE)Hy zV~+W5i6Wk?d>S2Wx4OPmTF*+mX1Y>tYyH}uB1AuboRgir5xP9Sytw>e>fI!NH;VkJ zS+_AsVkKqtBwAS#aAI2?capw}%DSvW^)Dk%d;=#RwnHd&EdoU*1a&7ZRGwe-G3{a2 z4F^6srHc>iDTj%I4~iwJz4QH5;za~zcs&lkYBS~azRB4~uRhaNv2OI&=;o=;szk5C zJ9~!nFF95C8%Cs7@L4x=o<5JqXRvQ1PVk}Ske&%pIP4_1;Gse%Y4nek$lRNCej>=6 zw&cpS19|;&Ihh{e|G69Y=`oa5uZ=%k=>IZ9J_->4FP#Fw+%JUyzfU#yr#Lfi;5EG*O5wLtpr}g%?$=~5 z1*gCKiUajlfCTW>EFqvCH9{2*@_%Mk1Vnz3N!t9N?Mstn%W#0G8sd%7H=s$*1LypI znnVW`pA(c|BPIn!mSqT(>qMuYW}Sha1sZYa#{V;89W#JZMhjygUuq-NiURxzYZyP^ zrK(lpzKU!f%izQ(G!(_(zb~6Y*x6^-h;eZK)LbYE4kQDyX}ASU^eCze<3CmMfx?Ik z%N72Ae7yx!Tuak78VE^n3$DT4A-HGI;O;KL3GVJ1Jh(#!5AF^L1PxAbcX#{ukoUab z`R@JiU27I=4SUbt-PP6ARZl(D9R%MTaPqP63J#QG`w z`unBZNxWqwBx1dzqM{NX)y9S?r>T08A)OSO2D-DW*~hiiLiz4jOd| z-GTE2AiDNHpX@D|IknONVJE@C3u+pW10fABAUfs`kglgV^`+wif-OgZH1B^tet+Hx z(WK&I%)Wv2WgQJlYK#wh(8ehVB8cLvZA;Z@gIvdq{> zBUJb&OlMh2PPm?stezTyGt`4R#E1p(hUxUH@#(?AN7xpf#JxJ9ZOf(XgxtC0x5LHy zz;m(aeWGRmB@SR3iU8Aa`>WoZ{$|;ineR2cQWl^3R=fO}9lE$3GX)8w3!-WqljhjU ziY*s$+E7#4Y*4{CKiw#Plp8HXZiHI05t3=nnU5G(bH|Gd8!_+emwcQqqeY%2U>woo z-J2#(TPxHLYZlFnDTsLq^vg&US4kFP1_FteDE=*ED0F#1ofwvDQSV4m^O^{QEIU|h z=*4NkjD!kmEu)6i%PywM-!W9KqRYL?zhF#~Ag?k}CG`yTPq835GGJ=5=t(J*NxY=W z0Rfs@OO2Zj|Eze=(*=<4HZxQ}Z0_Rk0W!N4_t%`UfHaIV`)VeG6wW|^97yE-=k?F@XIX@CY8%2a~@3TTLq|W9^fHN~Qu6mDn z{q6WMm}&NW5BcBZmE^Ugp8TxBy`H**K3t0H1gBz_M$S{K2(|gR!=z2$uFX8yr6gFt zn0^cxtBXz?=QGkv4;rahRK!P{k5xE0u{)@5csgN?w8%$2|f zIYc#p<$D&H6xQ&yRt65SUx~QaO8s5nM18Fn+xhl9F#|Y_sx{wjDeQ!Vt9BLvA4Tv( zBnaf_loi_aB-39UAd9OSZu(0Yv4Y?#1W9MK!q#Pix-3+@a~FF8Rwqm)&Hse7iXgQa zIJL-ml3lks^&~#VY5C{dzz%p7tB)(&n*}wDO4ODDOjVop_lGeL)1vx;r`P!owhb5GY(5pnB^Zgh=OvU01H?M?Ma~nM5j?=KOTwY4=%F z3g6_kk1jfZXav7#I`Q-L6@WT<3VCdH#&@~O5Ne^vx?~Ux$}r-`pw*_ndSevx*HpX~ z6*?-|PH-U3sk0{#aKep@kpeCEDcF|s>4y<}wvG-=!RFFdJkh?fLd1y<|2bbJr*GP? zQF&*;6#Sk=p%KSW^d-xjH70t-YXf~t51dw{zSQ1F=7ToW!C=nV_3@1CF(7#hb0F@X zEqXET`os>~?wTRGH~WY))kE+lr?bIv12)Oi2d&I3QY1ies`x^ZL$a%_dH>bbig2-j zF^2o3q+5OT7SG2$(q!;hed~&VC!JL7r9@`;ErXf?fe+z^`z>Yt?|i0CgXJlg;_D{r zRK%U2*9BGzt>0cQn#Rj%n(wNIUhbv@FY!j~ZQZkY(;Ods*DY55L*!&R-+_b8Tr^9r ze9i-Vb^Dpcbu*diIaSYWRHnjqX9)x{9KBstniex@8ZJ#9wlk{wohD@$akV%k8L=|&H^ zcqEyUC3xlXhL@|&0UjFtwSm}`1#`WnZ))96yHe_~bmg5V&d0a)BZvGB+eC= zeM6~A%bb##Y&V+G;%nmtWBFQd5+VesHfojoFR5>fspl@9V0z=*DptxAKWB{H(v91b zw1^G1|9*7>*i9Ix2VyoxMxyWPxZz*F0*B5gW>)AYu_Gh!$){IsD<|{cHA_wILou|Lx35$k1M#aiVq#q4vxhOLQv9)xm9RR6gEv zkwGV@Z4I3^uZN)}hcOe<%Fj>6Tq)qWaiZV_w%6}QPd)D653^__eOS8eZD`EFsj}kR zO%CntMi6dLDCVA0W*a_oWf3z;y6K@wVg^75wV+ESfm8NX$xnNq__>WqgMTZfWn z^8#gGx(gs*xWHr)vnn!dNEr?2`RV5r(-K)<4-KW%AxrmdVr7P(H^V(&%|0-lv4K>qvSQj=(I0~KdW)mJ zITW`nVnW}vozWLKIXDfzh+LRP#&22Bx6J=JH%Tvs7Ed|9g~|QPQ&%h$kw2o_=Vci$ zFQuB@;MoKG*<zNS#*Ps zk5SXr*|6v`5v8zn!TH6gEH7{Qx?CjV#K&BA?VD$bdV4N)%~Pc|2j=;Enn*-XYUbS~ z!w2qoA}XMhi@2-L@sh4idw64puFK;S$)kezKcz+|#)fHZ#1mp+;jvDB2-lq#c%hf& zC`*MI#O~G9zZnbpH5MC4f}2_8-*MntwF zt+vCOr_4lUB%MxbbugIW>NimV?e?!> z3zb%9jxYsAv}#gNH7nDY%Xu0sUvmvX9#xRO$T*%_ZIViF^6eFEe`e1wRmteP^)z`!6nFc3!j>FT}B zVp~Y?g=Jn`YsNXTU+#fmr`qwV366k+Rp{x)z`Ip1^2HXn2=SP#9Ca49i839sg=Q2Y zfzB``GlhCtnNS~_xqOy^1XY1dikp#4#6D!NM`$0t2E?<~-sPDFs9(RrMM~AimVzSG z6!P3vxF(8eht7u5T)4b0i80vdz;$I!1Pb9`vYwG=Z}tg}kB2a_xRSGYv9aLs%^)n~ zzrHZ1k-m%4W4$cZD@QxUF!ESUm}KsmJ-#m*sg))2kmiH)M7ks;U8l4#Uu+>V4o)ej z_XcJ3-eNA!c-&$UwL?WRl*#9nB9f>EuqEb-OtBN=#Ttx@KRIJ~3I5pjr)(^3n(q>i z%f%gJ+;IM?a~Q880H!RD2C*P9rH_9IHzi+5IHOF?g_jNIwv3w(^*D8)L3y}9tjO~< zG&xY1-6tUx)XOIa0i%3zZAdiRYA)Hs-$$jp(L@tSG_D8jnL-XyipGoOlp9phX_KN< z>9*)%qEl2}XhC1=wzD`BxdzTph(IxZ@ln1ubMlFp)1ZtT6hdfKK;AnkITp_3VyIk? z*$^9>9j7<_jiz5=eO7J_k*5%2$aeJ=udcB&hHCjqH}(*LfrW*?;K+TH--E}>k1D|v zMm}ggcBh{5))4uUO>y%-#YFFI;C)4hEGilFkRN$3yB3CUkCw!{YzJkzYVWmg_a}DF z;@GYCCO*2?%a-9)(&%AXdM`!l^7BZMo{f$v0eMR#3TgHHm#B`*>P=U4s+FMS!+`Da zDh?t+x8Oa_!{tH0R{P6)kanZ<%Z28e?nlvnh4%87w4VAeiQ5m%=bN~5^Nf!Bf3`FK z%41^GYyDDg-O9r;NeM*A45aU$7l~HN<4b#3o7V&)gja{m)$}>jRjgdkVSrx?MfR1V zBjBU&(7xXA{}8++7bPxZL>3DF>nmY$_TlLZuAn02Nt$6CnKb`~N}Gh^sfOfgjenUVlN=MWp(D1>%B^Gyn_>1)~VnOB+|*F`oh)#7ogb!ot|;o)mkeXk~aduWKvH{{`ZWyaO6 zz?y@*`Na==891{yFK(^wKs(o=Ee|Ip8b=AasrKW^sv_a#my3u+OsNuyNqv1m8*vVM zvW`~M@VyaVS9%B4;?xNy+OfkiX#8hp01`ibG{gK=wi2&fZ=|7Ri>u4prclG>u74Z_ zLpGQ6`OR7KPwO7Mvy+ABO&LOkM#WbY3An8lToLT7tne|JeBCQ~MaLWO)L`^l!nIru z^Td;#$6Z&soi=T0UiXWQ=ZwsFEaU7>mXk;>)>w1=Br7PUOqdCVOzHFZj^?5f`&p_N zPPZQ-zl?v# z{u_dl8p@k4+)4cntqI$Dy|M|$!vl?LTerX%9gm#Pk;Qzx@YB8~Qu9;2Tx_;TLp6%* z0{5Xc9FJ#{eo~X*RldQkl}&0}h7W&4OYsFTumyC&F~8O6MI4+4=(H*reZT*xaFcYG zC2yecBABO8+b;gHRNiSaOk*wYBSYS?pLx{V8;cecWoIDj;&~=6Xr&u}>-y&ACcmWn_u&16vdYlfP1QF$4OOVz z)!9X^jr+l3HImS(O1}b0cfZnYHYcA`u%we^{k#0)-Sn`=dLnm(YL@}J_G&Uv364&3 zbbKgY6Yf%-bZZb7B2%V%cBGE5PBqN8a5=tkJz{=1VE_Op$EB>Jp!3!XWvS|IQtU6MqDcL|GLll5NNLOP#{nx0<3-J--?+}5Y#F{RS8*>HI0 zI>3Is&J`p9$;gCDoMB;>=kiQ;FT7GKU+fvuaxpM5`O4>Af+ZtAHvC>^UJCPI!qo3y zW`G>^Vw14^8YWk&AFHxlQ-R6ISpIKdaw821OgMcKI{Ka3dU|YmI;Oa=P#!g3jKCF* z+JCu!?b=JmXt{Ht@}eu(ih02&V@_Hn(D(D>3Ptb}7h!pnl>*lz3G`NUH<BwG)^19;TeyR;M-y@I;JC^5hCCh?7Ud2t zXaiftjkIBt>(_1JO95t%t`dBF7N>mT{l1D`myDhzT1&Z^ zY^wB9tMVMV{5JvcV@-?e6B_cL;y6(nfcUpJqCU{?7^!RE2jbmae!DYHiOYDT7pDKa z9A}1gWA%H>eU%JNYO-T(g{=Y&ZJ<$94EP-_4_>?N%rLWF-0*& z_PncJx7=04aXG{8vbiGS zOUgftz^)jtJs2O8v{s}BO_CbEge*RzywGE|-GHq^y<{L%D8CeU$0mLW5KDne)Hsl! zCb?&*uVwcUhwlNJ6bj>gwcp+~F3xO$=4si<=kwEu5M*z5#vSL+7jTWwa5Qh&-Ir4- zMgXg?vWph~j)T}6uma@^-U)?P?I!Geh``07rkr(uKBK-;L&QL8B` z+<_H>c{|T3mp;;IhBJ9BawNNdQu8O(J8enJ{x=dozTPqv>Y)W3^LWHXM7#OPKc-o> z$9E2DXG-FBG9@#h>vfG}uG@t-lGe-xYrQioqeW+t%aJJIJ-#ymPT4xH+;8-rrXVA24}b5OrWNIzjsr z+g82WqW&iG$)2c*n|fG7*{d_*HVbRkR+uK$%em>gaAxtao&vREsU>lE2_rF$zuBoH z-i&1YCP%e^9u57L*qzr!Y?3yy(xR+FnSmfH_C-}1&He=EprGqH`OQM*wC(cZ z2=2+r37(|FSTgvkH>ISNvvaC2-LWd3>&bCu*&7zljnVpo$=W(7xuR>d-4A4W4Y$=*Jp<|vxDQwt6}$TG5cu9L0aC*=pwb1q8+dM zsleyxzi@4AGR(PVc;Ra*8#t60m|yhkW*&t;>+|(`4fzWKY24m7Lw{H?SUEx(HE!#6 z1>_!rKfX@M|CT#AaCh3KJV<*ImRkYj2vk(}Oo%@9c}^gxxQ(RtLI@zHD zgf!(=rn-ZOn^3K-#5OA2NQ%IUYdTaTqqX(T)L(Q5o*FdZMCqjXzjN>}yZ}M}^_dlw zbxd{B^#VJWdX|gWx8%Vd70Uw2k}B5i+Mm0wGKb_@ciPjsZSRB80YmQp5%YW#}sMvjkg}BFPNwkam0=5b`Bi?_`cu}N8i;Oo3k3S zY$AP@aNrZV#L93NAemt?VxezOk5R=u6-PH=LT>{>b5k83o=Sb>Rw0&t+)ANaVv;fa zKm&%OsAD0AK=ldMeNz7m#$SS~QPu?-k*R{nOV@$2blnSNk!#E6XiW8UlH*w3A| z(M5TCo}UqY31fwz05qOq8OF}F43aQ$qFD)qVDi3Dgy ztdI?QvAHq<60P!&A;y9>BET8@LJG=%!erFO34+Ir^Tv$1o}^~wdCwvspnHpSVksix ze{N}IReIhY?)<({fW}z@GP+G-fQ+VD`))Qlph!TyMjBo86(NRCe?`Re@9c368JV}m8>7h+Ze>r&3OO4T!MRnY~u;r`R_Zz+di4Yks?dnuo3F2jKwABos?mM0Y zJ;{y;Wqqq>@xBmq{AQ7_0L#R5M|SM2a_(T`YlzoMVoUDf4r6%*%_ypsQ}e~t$Ry{^ z5!l8;&QLSUE!0^nxYuU#)cW3|zt!&CfuGLX`CkS zmul~aDsCJ2qy}E{5tjQ)vHRr<)Yd{-KO^p;4;y*eEI7`Un053A(Qz7~?{~woH4$Ik z4@Zh5(o2l}H)$iEv?v{`)8B+Uh&FA?BUV!*?A$*h5~}!{t-Yr6mlj#|FRGHYd>dkH ztiZ2thjY&EckJjhG>Ez@w~7ENCnPCho%jdj?2sDIy|vj4fGU#lUOO)#+V+Fg2%OE(9Av0kc0k~B5lf1xOR*}SbA+F(OhNn!U!Dyw`cM zpC&(fy0}q@F+vqq5Cwz#PQkS)9{4P#Q<9EZP3VN+fhFn4cHgWJ2EWPe+HJKZ7$KO$ zr=1uTt@Sm}nbB7dx6a~G>-OKNKn}bDpb2|}PS~0Chzy^Qj+tCip5{oQdecklIC$y( zi0b2;N&No95NYeCCbmu!t6FGT%^~*7&&JzpNhi z^l$7gL%lvb8do3SZVFBm_3rYcl0${2Q?6nO%1cXDrYQ!)EB$gCJbIk*(Ge(;P$Z{$9f*}(b(=nOX-s$lh)FMGo)jQd5DmaHItwodSHVksw`<}sMe@7x;P{<*r z>d<{pLs$T>(rI&KYP-+>fO=#QjhE#dptS@X$tUvVh1;KvzT0dM!s1e(qJdb2PJ6*! zQ9|M9(*|0D-K$4LnS|4m4YdG;`t;8+pB(N$MV;FVO?cr{RjN7^CE5oxr%z>9ul}@C z1gLP(spHlwXsFOtP+oM;-i@Fd83e#j300i5q2mW(U^*a6X^K*s;Oj4sqFv{LPiIMv zvWPl2YahpX-dbzlp@_}%&{#IT^KP&Vz=(M0rNZPO6Xz1&A^@dr`q@dG(xBv(; z@nE?nolF0_<9Eu$tWui4!?UoR_@*VrH8CdgkQ5!K54}=2%%Dok%H-R$XN@uH>fWcE z4{;?>8z{)Ta+O1&XJc@5rw5t1x{|O)ahb)+gL29#9pzA(0z#evU1wp z`TGmZ>L|AwG`%LGUS9^wv2y<}Qf@e(-H0FQCJ`@aQ%Xv;BOAQneWeCc8&*<~)Qxq(yJJn9{#%!OC;o-&y`IQvwfWxTCH@Q81|Fw3F=1}&+>nV|%= zs1mB}W+9zks-0Y1PBbERUw-mpev+RyrlHMmxJ@r9KaTWvz&DFo5UyoBpn#&yY^WDL z-fw`*@bnsOi*u&|OC1&t%iU(Vq?S@~Z&e96UmKk9d?GrfI?zlyo6)|%GoGc_{3%jz z=qM*xqw^Nl?9F6V(Ze9riLQ-RmRxf%`dUS2NetDZn^m7nM(MjpuU=o<bMHVtT8+p)PY!5jo3i3x$EO+zN$<#jqd)+91v=wu@Yk;V z<{^S27dYSNKC^rf{25LBMCLBfZt)NFyv~#FUfZm>_A1&G5^gv)W7>%|FWt8|$GHOo zNz(TPE+pDb!_{4VzAMG%7^!&?NuTKi6ySKPC-FS%?7e7rC^qlq!*`3)Vm!$l3w~l+&$i_^{K#36RMO^aCfR<_kuh*_jd(y(9#Gab;hp9w;#(O^P9vl44;je z_>{3-DrKE2&LIke({}k8ZEpcjarPhYF3%f>kZ8a*NN_uX*&}40R4UFzKjc&rS9WJM zF1LVDVS>@?3XalZcDOZG4cc_}pVdnO+)-0pT)k(nGXU_7E$nE_I-ZAw0b;V(x`quO z;O!aL82G$j;%I5+h-u)8l)k1?bEN#B(?7SPwCuG?xH|MpVK08uj+hUc0Zf<0k&VEzoHuLU__YfiW13^i!l<%K!|fNDTRxBqy3w?315HT7C#{ zaI{L@ggPLf}gIX*{ZAxV`y8Xs76t-I^B#M zL}s@(DpmT&723=;m<)@uvP_FeOpPdSt3sSTE;rX*NymGfQa%2Hd{vWx4gWDSTB;&~ zb`%XbPEe@hGdn{KTX)14#k1eWcP%*NocY_80cCORXQyFw6(lUlo1!mS?@4%W>+?Rr z*w%S3n(k3p$L3-)>2xNQ@!CBsX;CNc-pku$ji^f9C?doCk1JnE)%KSYlwAQ6PWgg^ zexPfyNq;1GTCFWI0^;MJ2l*~aDfC{>L|g>x`-_V!SFV{wnJ{bDvbOXm z9$|2M5Ah?2GFkf}>YSd`i$IN_S^eu}yH__!T4PuBE_{_W!|#Dfafau{vGA26qmt|X z&XH8Iaj7(eCROdEH|Uk2@z%@j>Vsrutp_%}LxraWvE!SJYm+enb>!nN_#Jh>1S+0; z5}PL{49jVoo^A`JW!^zJO1$X!G(}~C3}(h+MoQTeA-WJLYMVG+;B+Dk%tr0w&x%dp zrHRBi753rAU552s^v1h%m+Re-im}=;acYyKHdbYw0&|PU-BYqTi>6H0CNEt^E|cqr z30Gy0`nP1fw&Ey)H>yt)BgDGa$I`2wR)q2GiMbX9+Z;?aH;TcNMSXdu<6mCQor>z> z=NGSj9IN^0Iu=(~ir$?X5}QjVYsFlejmz*C*-wIVow7vehfn-|PxM#q(U}RL-RVGV zU`F0EX{ui>9LiukIy9#4`B>B+12cK0-$-};H5`eg4cK)!iJPKNLysH_8Et_sPh6$${k8?JfoWwnzu-U_k~u;`oUT1hITE6ib@o?xOCF- zuBGWdzm-lKQ0PT82mHS&jdDk{uc1Bzy?&CDDW`c@HuZW@ZmsLsF=65)x@%%TV)SFx zl8Hc1*6oxCuAsE~mr89uHwrX(#NIG(=RH==CQr{~3E^|@VXKM71tdGfp2RCG`}I4n5Yq->xP?!>JD(S zdya{Vx@*5MM4|;t`~7Bd4|;`lkP;v#g)1zY{vNe)77(a7Brm6<8 z^8`QFW}KRT&%{tXPZN|{UgOa-Gz4GsQ>Baag8(|y2k-qr()$0<)M=jnlIv3qhl0n7 zO)V1WB~j*@4cp9YXI9_WJ=DQA1ILZ8b%q<^y=bh|j*NSoZ0L#Lp`Op5{hk}~=4-)! zIp(C*yT|9^%-S=f_-oG7JuYm0xn%(=VD5VVn5CCV48K8f8~QJc?uVEkhA?J#d+{G@!NbT z?!PGMD|nS30e_^&!`^_Z%5I#`s-1x0mErFO!ObSI<-v-mIDj+@vQ4s9SZhq?ZMXhT1KWPE~ zg!#xeHW!qkj&(OGdqKsvVC4m8wBD4se}JP`vWKY6PZM%2&JvI z(SF@K=bU>H)wv1++`6C3KO)Z+*;xdjx9UFj)l5zw^GGdP&T7i0ytkwks8xCDX0OmR z55Vv`K1OTHye1^#chAMxJkAMNX8C~>gizG@iJ?NjQV;!w5Y2$eU!*x34!|m8sH>15 zHX7$WRBKW$Y3-?2jS01}1+qhRWITh-b#&O9Uvc2UQwt690a8?=uO4gbPM)j5mor_I zim&p(;%IU!hMS5`rgP%IZ@%G+|MnywFlJ``=~+_!qn3V=JU(1>NG$$VxX%is)jZCj zlLnb`ysMS7i1P8eG~_aON{xja_g`~n zX@9!W0n51`@0H72M0)> z|MNLlTNVq-;lo|Fa6nUNsB6rSR$X^b56s!-$B>|)dwLB4@>pWvXJ-Md{m=g20x&;H*uCWEzF7_57s`9e5HgbaYHiKS07k_1s|{NT!Rp zz1Z!To1@j!uw(uYH6JlZ$kU48kdQm7IN4Ud#N`df`=9sl@}etUT#`ac0Md{eXUO{; z0BQqYg3~<200%1jB@Db&I6R#D-W1`?te5Zcu^pe=Ej=Mal~-G#C{ha6icj&@h9bJ< zJAgc3Y6?;)md|M+kfORR#Fz|Yw~yl{KRyJ`Zr^Q2=p9TJ_WX#r+js@UEF?;8Hm-m; zkeIe2pXr9*ftm{TlAal04@ZC+^hHQma_kO;$Z)?w(r#yxkU~1Cqm&zA9Hi5%DnqZq zj-8Z5arPy21ql88}3@IrXe&!w*w=#cxj&YForo|{c zc*)7hmv^e=ffR||QKwPO?J8Rfyhq--ji-n|IY{uSl*Q&xO90+vNmq`T3JxxAL0aOE zwA}VVHCqV>^meLE#ftKmVC8b^)~n4S-gJRGl<=>ZK}Kt@6*0lUzUly13m{)5_R04c zUJ1Lg7pvg|q!2Vr%qSoKisjxxX3xzT)Q!PJh48y>DNOm?z*hqaRl#m2h8lQs3u?)V z%7i4|<#I5K{9dv&U^zGw`WuM!_3Ry(A;Ui^2}p?N>wDQ$7>N#fSd0V=nITRdp4U}X zRm_}Bne?lH<{o#91OROaQcWBjhg`t*Dxh|+K6fAlQ{kdpYNq-K_K$Y6G&Hl_mGJrY z9J0$He@8|$$_h)ztL950|DYi5-Klb5@8ZjBrMslc>grx_ZQFH69bcRIW~j>w+Dz5i z3wNg@Uk?4O#XJ2gsB`;6#Ohqo%33|4wH9Z{j{{<=r!MB0HdOSBfm;0S#R9@h zVxH(*CqnX1O&&{VJFV?Z+FxMIevjZAtrfoDnkaoef4Z^UZp8FwA-#a%F}#78&)xrJ zh^&5bNJ)(tJ7I-xMyka$dO@+~2divxh_#^pib$~p#DAN-pOK%jejcEHM0rcG4-S~9 zIOtG-scUvV>b_}b(%)T&qt={I?((_s$-2Ht<^W6`qm{KaA`QjQDtMaPyFTk;)dE(4 zu;)uEX;$)jpT`&8`F$KUrgh!XpAgvtEy-1YxT}kv)qF)HlJS(B$6=|gG>6AD7k(8; zpqx$tPuAh$pnrOKbM~YyvVE4k4P?IyFjTB+nKZ_s1={AvTE3A%HssRrK*=+FrS+jD zrswYJi=CCSp1aSHpHZ<|b1-|wf5<2+c4TXJb5*>iHc5O)D7FkV57lH z{_Tl!ibo!7`mnjVTClXe2axP9!jd^=UvKPN`}94Q8pM&)^Zvid0(k$9lsQ>*#c$!` zqpO16N`gR6d})qGAjmv!cVB!`=85ykl--#F;vp&@X&9yH>~z1 z%c6P_wj}2BkuK2Yf5c?*L;$0fl%LbAC1*9)Bpv6Q`(2ff5)_^trKCh4a7&fRhxCP( ztGDh<4sTML3gmU~oUIYx7uTcA_h|$JbACQcz@uC>Jp4>t>8hT08&;r_fvVNxY)VI6 zLxVDA3=Dd!TvOc(Fltsu*nFhV&g@+Lyn;~dt{%w<9@f~21l*yMGc)8L@@Uo9S|#Uh znZRlw3ak2IYrE4ChwBzeqfZfSt{6sot=`gWC$uUxO3ev>83_E4dK&Sc#?&{mzKOXv z(djRr`L)AQzvR`zkmBiAOc&k}$Yv67 zvdTZTk{11;U}cqF!`~)l;<1xHbO8)*?rhO`or{r?k>}Wi0vHkV$wuQlOx-IOgHd1I z@k=KKog0P8ft~zqfGzaF(-V4*heOm@IYHTrW|$aLYZDWjVM93_UeaT2N{7qk=v{$i zx`}4F)u$HM6REjfM&oZdYM}}&bzA`xQ-!6<9PYOjKKTPmRU6*fX>7p0TUEnmbaOQp zv}N(fp;y~~I^me~f>x#{+i*tfL&!rp2<22REaz%J&{)7OG4>S$MMwj+LeR62wa&}g zGah385rcd?CB}~Dd8QS!5Ek^F-OQfJv|ayzL0|>xb!K>wGB%dt`8^o;EbaF#5sKoG1^`JG(0=?FLsF9s!|r zj`?yY2j$A@NmoAAaEqs=EyOcOS=;03rui*UN~hd@`qTV5^Tq^=6N-_zvfL$`(!@Yi zM&)Xx%XFu0{IBF2+SYE6{zw-wsueF@{4IAjtnYslXsF=g1_t#7W1?44odE1oY4XV> zL3x^M=d7Xf-LG^zVQQGA${E(43}uAObVy2lm?T;OSl`~!7e|^!{3P?E_79bo z6vx8t+o<`KiBpFewR@pdBh|jaean8SG3dvfo|R{3P#lt1lgQz*_0|2nty-JGdbj?{Xj(OQ=m-5Z`BZMM%oiWOx21maW z6o8<-`?=WR)YON_liAzs-FTk6a)b=vt}07PFM#}#}mp4;zS5kIrd%x^g)sPlW? z0BimZtl#)l0qW%~gVjKCkXF{A#Vb2i1;ArV#F>AN!VDnT`>z%@3rG`xz(b0-azd!O ztd02Z4^@z*=bj=*)ZTQ>l5iASs&lVXCE)J`96Bj_KLKS}DNdVje`SrcG>WiY_G(<; z??xG2bsIcq0_WBMhR`=!(7)50L69u#|0<4yF0)PU{Gv!AJUaiG^wQ7uqp-2dr8N+6sD z7kWW!Q;)4uZ3>b(GY0>wykHSx{+bh5-#yF43HtRr&_-gqnt)b-TdP&R_4y*@S=FbH z0mdm|4Zhq%lsUQ6!VS}M2IU*>V_~Uh5WEg$IVnBtHj6FyX%dLbjI@tfG*04>(N+u!sn#v#*{r&)iV0$+_Q) zv{+_L1YcWeL^xwc9&a8sZnL7PH~O#=eB78H;E2yPm=P#L@h>%7tGAE-smONQCv|>4 z6FyRCrAz|?J*C=YVPlpt(haO|wpS>WsE_|yea=Am?>{D!|2yBK`g8EC>xiG3*O9O8 zqXp%V%*CbK(BkA7$H=jSP!Xg*|L;%;B?~Fdz($wgZz$AY9E}3Ejshf=?pJ;(K(0 z6ba;=kw8)qMGI3~^5J6oSCK?BmhFh`Zqx?{;&V8POc6bAM%R1AhKyG%)ZZ-jWqx>qFu|3ObN@2g${6!izaS z=ULt50Q-8R^y>x0oV@FYFt#WuRWu$A&R)$;R7nIoJ&j~s*RNt&ecd3prkVZ_jx~6^ zntNV9LboJV@u|SP5Bq(=LLV`PV_|APzUq{*rJ) zATVFYgV!x757Qx(?Vq#Q8R- z-mk$WRmCxQRv}bUMPjRP!H;_jN`a#iB_~m9nxT zVAN}*&7hmBs6dcPkhqbiI>_yx-6n%DD1OlzLGUNPKaiFE?&B=kvmWC^fCw}1oj`6m zF~hw-(TbqrRfQj&03Q0G5H*cctGpkDf1R@-LOlI9_r_`ma5(2Pyh~DE!cw6YUK8no z4>J-Sq2N3oOkk7shS6#}+V*ifWXMumeolf!cf;&!IWjTL5LsTh3fkT;Em5{Ij3IMr zuQ`_s>o06X=%XgkbEF_p!S;oZts#&f<#IoVSquuvb1q9&|8CAm&mg_aYB;RZ4_QIf zySQ|oSCDr=H1rB4v-{aWLq;3bqM;S!b;OdAh3~kY+F^o{q9UasPi?T9n>ix>aH2+E#p!yXv;nXhLiykm~Ld@lN_QCoVBKR$ihn zppR^dZ0>6a+YRiQkrcG7%C@uMRa=fL3ca>c7_=Q)~|5?%o5?2|Uj zW)%AwCe6|o#7|Ezlg%Zkve4Y={gT;fX-mD%lnYFuBUT`4nW{tq)k-QKtH@45f_8Nz z*wOY7f`-~4j-IoMwiR~iyb~QwIKTQ*OACWGp~+ph;+PGG0YVfDl3Yo6p3MlrY_>2^ zcA=wF=tEG`k*@8z2dh4PAC9V|Q5+IgE>ZZxzGr~aVE{^G6Y z;d@M*OD*OD^F8A+*bmF@%i57zm)N@EQ2*NI!A0xZSe=G;5#cf|)PB&mtD#Td>exBJ z`ZGoGX?SQuJtkYG}a2BpB74gURTJzYL zKV3@lMLJ4tW;W#Uc@9 ztiZt|Q2fJkMf-5I$VA6f&if#`{Oz4B7c|S%TYUoSRFbV{dqFNg`cH-_b1Mtmk(NsU zqU+`y5M+L~fYHV{CLqjF)=Vtse##jaAboDRS=^eB*XLGjbE1W^0c_8&yNj3()CrRK zy=knt`f*?`4!R=?Jp6gU<61|8SO~_}raZkR-OAdk&dk=k0yHhWO~Ky!1*7XaVrq=7!R+;v>y7sjOMf!gSBH2o{G>Nw|UVBbCh4^Dl2T zNk~{~EZZyOc+l4J<{DaB!pgBt7f!-sxrLe^W0ih$0yFA1Nuf^^ z(v(KP+Ol7L{Vx8jN#c-8DJp#sh8`yjJcKJtL;K-qu{DNY_)VqDk?^>@B)ItCGAv6&DB9T!x3BWH#Va?+)WauQ0{j-mn!*uI~3&hSaR7fkl3Tf7r@!D$o-T6y?*Bx32R=0VbUj&oeh`-EDX13z}W#9 zd;k$g+2wQZSBOav5(b<(28mmOG|0~<05;d>O^%^J=a4BP zl!mZ@jccO0sz~(uR^R=-uL;;#MpuhVwK%^S%5L-T|J-DOu^B;gcma{q4*_5~->+Uv zyOjhQD0ntd46y|7>LGZ?dxgtqy}E_q9Z#PJLV-)?ke3lr#OJKT13%R6{2>duU+4(p z2Y7|!zJsXedI}KJM5BFwmd6hWJ=3i}iGPn0kkP^~d@~t{_-4{P0YEUM18;%AJeQv=8X@+Tgp-o^(6^ zqK)6IDuLA#(w$ z7U{=wOn5@{wiho@(v6_$rK^1F9&8!3YDy6Gh_r^yt$t7>e1IgYvy8K4Fk@eFAVED zeRH5JOn~T$SU?!Ws|A3wU&yn*e*Jnrad-`%~XZ7a=fQX|3aUf75X}2+lq@IE;9^hVUx3a1dDBjYK zEkjuF9u8n>^#7tpCXpCSs1iFdG>tpPc$l3_h`&wh?K6Dp6g)niw5+k2R5mZwe9hQ1PoR{``V@sg*SK;<3s>m ztNzHZzyyxnavTRhAS5!CcJHxh4AaYfWWZW9pqsVvSlAYi+jPZ=SoC3aheSXt%U6xf zAhRhu85s2o)-uF!K=buraZ)j&!lOH1w;yaTR9BNvI=><8d{eg}Kk%J=>dq!WDPqLn z$`1)ZnmTJ;)Mk>HB4i$$2=~~?dCc53r&o< zt8WMjC_rr_7k=Wp!47si?=9oKvcI0m+MX@r_h-`WUGP8|tM+*Fr}+vNs1^Y&E$W~_ zs$5xu)>Sb3lV9F-^xKAzV+UFBc?jTS%++_zo?(+ri6uvu*>C=N#pm+~O*mhhkYAOn zs0y$V?X-$a0SL5#JQc*T!;@7O2V*_m)QI7bp~*omnSROrFfADO=U}lQv`>QU9K5wBk{SVVKZV3?h zSsGXWGa-KglF9YpUW){bHzHt9{||d_;ZECD(jaU=kl289NJ*D; zm()gDq(edw>F(|j5Rh(>?(Vzx_Ppo3@A=OC#{C2C7<)L}z_Vhm8NV58J|-}HLEH5_ zY90vp!kHKA%a%f@A0LRf)1w}4_)tP%QY+ReR~MA;U*XGJSTN7lVRnAnavS`rE%T90 zmq)z@CJkxK=N~H8X8L;X0Df(B8eAKV9Z_AU%g+-8_dDyn$k00_jCYZW$&itxo36h>^Md7HT75^uaP!;ZKl!YB5;jiw=%dvu3a$qve4jb7K=JEns=go^ zFXLjJ?FOp=YL!$>5{!djYCE~MytAX<$7X931i&<;2=byHZI9tyBZ)>C5?p0@s>a|G zL{)-Yrix^XFMCBVQ*wD33@dUPWIZxPH5d{qykr|D|EOFK3P29FctesqqHkVV(s6xN zhM1b{ku`oz!mLU zI19lANonICMwBF(0XanM_Jz)}nA>#q1@;VIB{V9X@(z37Uz2WJIll2W zfABS7@APYFRG!6fZoKjl?_mF9boAgKpZ0hb`}&n*(%VB4_3C%9)_%~~5*j-@zqjYf z&PjW9k(nQ%tZc>y!p7VLD^SLO(#UtWf5mv-PfIU=k2yZ@MYT*QhqaP4l4WNg-UQn^1+u4~UEw;5~=jMQ# z(N=)Q6bc3gXFTBAZbc{tG6$)xFo|2Q>hq zQpSjCVnFN)3&8eKA8K0|+~z4XfxpCfjzogUMRNib+;b#~+yj1CO$kSU-Y8sfJp`_8 zQNSl@r3D2x<7dW);8_g-n3a3++SZo&0WNcw{Eh^N=HTiTz`TZ&&rRXW>QV(HJcA|r z!4uH`&g5?hgLPjGa8MzFfB)#sw)zbItM6D;WSCom@(u{j(O~pJfVQ3%OHgOPgS|he-hRrO?GK7=c@H zCZ8hr?!Xt#E(PXAjdw&vKyr1s`$(f@fw=8+2A{yo#g1zWUhHtiyLcb5XJP=(&BO?w z--SOuXaydhOis1vXXW@UINSa>!_aovqJAJ2thX!>OnCgu_vsK8{Es5z8yK^5f_lbw@E1L4*v6 ze8er%haM7oZhK&OUEED~-_noM;5U6PGTWI4eYPhrLJoV)@?JEi<-p>3?pcqfeBM;J z=|kj&Bu>mP4g>y~JUnRktHK$m3iSN~F>BmapJ-z|_b_77y{Xzcz*v2L%wUC@kdvMo zQlMVQ?pYAOxWS~4PW{Fog&wByS!p7(kdiz-M=Mx6xiObS2yuecZ|YIp-LLk#d+!G0 zy(=ivVJkI)3&QRZcqYNrYW$Rq;B_ek^O$V9ZqIoq z1Ilyg>jxC@^A#yD8oKYHxVkMiHDr$;y?U?6f1gzA4(6~|g|KwK-U9U-b@)O)HJVrg zZ*h)249GEihUCY$GU(n1&a^MELECAD>txWRe*_W1ZDr5NSZ05qTM2wH%t zsUo^j$M<+8$NRa(cD;fnBlQ#(3Q??lP^Jd%+2%<>dvO0rV9=00xE($VcVFAjp-|` z9U4;Plz{RQ?}<{2K?7Gv{zR<>F`V+^Sb*}8t&v#>O<0Z>q?EpzEEqWS?i<}Aos)zp z8ykriSy}QFg{c0e&=-^v=c>es^{t?xR;I2s6O6G4a2c8x8HwkG= zmO)lnjrO!D*qBMZ?j1ZKp870uBJp7@#>hq9#Bu{G+YZXXilX)N`6jYyUyXKsO7L^psbdkMUr(%&B56 z=9SSF*}IB?61cQm+zg#}(TPC0_Tx*$;kvDe2TslY42uT{YGV34XMo-7xff$+@W$cc z^u$isH7E$zy84pEUKd63%Fy%TGFt2=ZJ{Q-NPZrMeiicB9p>!p_#2<^Y7e#00(X9_ z*a$kg_T@T_3TOZK@%PXVLgDO|9S(V343sHyZ@BRx?J4h;OXdR^U*fEq2YNHD>CwC!Ufn~3#II3)Ua<-pyEg5dOo8AYeml=eZ!Y`pDl;joHC z@$oW9rPb>}3VDHgdd5ZbZ=cSFioG$h@@+d$53Z#nwtnUl@%?h~8;zFNJHHY!WJ|$g z;xqIO3O6^dHE8V>!7tQ7xy?k)v7S#6oW3)C1KIGmCRclZRa8>Q?y#wybcinQFF`Z( zEfd3iJ6Uq-t2`(yUES9PeJ$txv_r7;M$SaW$NBUP=Wuh9zdr~ZOKnNZXvo!J3A9kV ze9ePXxhdH{*rG@katkulMcMr>&;J$#YQ9H31rqxr$WTe|bd!-{qi(pKdLxUnm`QK8 zvl&1W9YPV<)9gYP9jMhF@E}05sy{gW$vD>m3hgYKc=5ezj_t&@)Qe_K=0r~dCS8&E=8HEf_?VyYl;>KJ=g;h6hu=d3QubC9T~PoS1T&D)42Mn^hz(-NJ- zc`!ogl-xz6oZ{h&vZ^CY3Nw}uwqST6r*B0MqqQ&gOPoX{^ES4=tqenEk$#q~6e03> zbtBj*CB@l(iLm45OoH@B=C>Q4S>1%0T&^ASM_jv4!d5F6rvkfm1w%SZzYIK`(*K)^ z7l9sr+uhTH^Jfqq5c>}FXQhz{oj!`774wURpVp8Ed|9(e^hEZ$QX|V}#cS4|fA~I= zSj?U#qrQ(iC&Z@tyVCwUF15d_P+M-+Sn+C9Auc8+o7hw+kyk`L6yUI?W6l;zLvChqpwpqugY#ObmG1z4g9!40s(G2j7Vh`G^gy1dW<{&K+Pb z%$mPvtiiW|EeqFWcqS?ci%uv9xPhI6#T0F7#ZSEQN6dk~y~Eg>f=UN_pVoe*oZ~6t zQ`AX4sYXVVj}SU+*P5GJ_Loyk z$dT#b6~4BDY`ZIL#vC`M#NYrz z7-1RNH6#GpD3s_zhNHfwb+~qNeOT&)pbrC}PXHzC)5RBd&-`!vB5Q34^{XD@mHr-Q z>@%N*qvY*&0^F+B9|s{5gk)$%rEUG@#W3!iwk~aIzj^#gRyf?{q<;mUn~-8>9n#3N zm7Avea>9H&e;~t@6;#{rkErb_d1gY_Zuv?&nmJDK*Xqy4Dbi!lp*F~~r7cxun`ycx zIuZckSBeuKVy!0ATbj&v#(fm@svRRu$4c^+=XkkEW6wc6r7oex1%+Esdd|Yy!52X_ ztQ@oA35@Sn48>-zL`R>bcCHLL`m$!{tQ~tyI0_r9ap1qg4`SjEPv5}Owo+q3=3>6i zjpI-hl4O35lKugZgI=uHm*t~(P+FmeO<+1?3zIjDZMt4$rf!MZq(MR_H}_2GO>;C7pHtI|wsg@+J*c1~zMY0t6~ zgzqMN+`e1W^5_9y9%IfCMXHeXCC+}0k>E5moRTdhMmrm_O>utH%6e@HNHJg6Pj%7nX5cJ`TX`{Vnu1 z3SxpK#kPeB~DBO3#Pp*FtG4&cS{61+#N@hQB@HSP{Z% z7#&^s#K~Lp`?x97Z&o7R#QOv zfph02KuUD?17z{bMbmbk=4rk|w_`(H7AP;T6uTng9comm8Mw>quZvG$MfdY6q&cwu zV-sV#`BF#suGP}h%~7($%+jN)P!5If|4dl5}mb0LXX}=g)r5R7XZU zD~~(`Hz|k3Z)HD;dZ*_Yod&BQ5-_jeD0TSBn=6D^U7)KK(-ZOT-WCv?H($9Y>7egA zNU(Z^vr~7qut{=hjken{^}y4{@#QTRBO?WTLj}1ZHq9JOIf87d8 zdRu~zi-rfVnqEs=;vzQqk8Rh41ta_n-S2>Jx=7*Sh!vAi0CW;XO8Ur#Oi4nk9W`9U zusa1;a3foiac4!XejBMm0E4S1_Hp;?&d5dN!!`6xJZh1Fx9SQMRwSf>^JLnWf{oP-8U6vmf=5HBAaxT3~V)2kmn zSu;9J*vB@m!;I2FUgtU+5|qw(k>ISy0y~MPAP>~ckM|@T-g$H|YFRlDE*fKh*I4Sc&|bazK2+tNP)b&|8(`-3GM=!f2e$1I2pP8?V#7i~_d z90L0>1A4IZ>Xw02BY7Cm%S4?d-+u>415U~baz;2dAV~{L-$aGaCW8DK{wG8f*U50b zqaOh#c=UcC*MJ7>xcCPP7vnv&(~I+k;|7CW_cKD5#IY9wcQ5F3{2@{Qn-0u~lvTPn z7^ll`eQ7BqB({)3zF^bl-MbHUzUqo)fOtgtRqE>Zadw?ANgk?NL41|F7k0KneYc3A z_@NZKMH;=}5J%p5NcO@hKwbl<2kVbK#K4pyU>_)H{<}fhvCqPipZouy2_bKI`k*0% zxny=$NUhO@4rF$G#S73|wKp4XOGa`+IDhpfK7BQyh>wX!J8QUrqN7!PXC*TjhkPjA z?OODj=ZFEOQ6+Ecc?g%Pt3Gu^Rfrl9*#D>B9Frisik%HsfZ14k8yVSV<5)0LE*X~< zeX(_5fUI(7R`R^;>)vYjQ$wj(R4lAx=kv`wVW|RsTwj&aZJO(L4^CQJ1LY&QWh727 z?#_4Q^LHiiX22Nh9ae;*YG@=D#S5D6yI%b!t*fhB@LXfWt)W&hO6GOK*%5XZZ+}O# zu(^p6tSIPqjSG5Tei5HgW{CdwPC&5UX1}rY^w*mIz7dQ{@5RFmx84|ruwUKN;m}?4ha9f`NPBZV?R>E<_|s}UtSwmk z^~La)mjt=346p!L&@(k0q;Sar;6_IZPkdaZ5h1D$H~6a-0Lta+Qp$s1PH{MM4w;vM zEI;{oxO8%;?o2qL>@D$UXszj2*&bkFkzGAxN%+~G%dI(BXRBT3vEtJY%JQLC2~{o^ ztX8u%fhzqQ2FvUHCPQUUX6p}{ru};di)EE)IIpYq1vR*>Z&gwU`#z?Au{?WQa;U2L z*>kt;bX-H?XL~NU)wpAEb>Y>O`s^X>A&WQ5)J--eB!qwkZG}CP8xXa40425L6`a(=)@6K-a60o} ziZCJc6%U-v6YIsMz_&#Kz~wj_$hbpQ1}8`~*j97ZWRHJji>6HT7P*h2(!icPcPCjJ z&QfW~5Ero;FHu4d!)=dys!1r|btVnrrwt+_yR*Nn=$jQ3jZ0(d8cct_y7zSCoAztS z$0vfvWRsPqzGH=Rx$n$JbKYy;@PCjvG9%Zib9Tk4@SHJIJM1)5&R0XNe)rZdSzEv; z1g&VI^sU5Nl)s)enSBxL(EkCM@WNu2d6nxGp_wvEp>@VIU1N0D7#}y2!A6)z^Sb#& zo(}s|yO16^G*R(7TRvsi`9?Ijm~@isHBPzHwouc8mt4AfbdB2Hm_)lgC4c4Ccwm{S zBBfKorfb3eg{-DiqEYS6JO=?LBV{SY)BGe#|9$`N31Cj%2R~Cs2eeUHl;WY1Ks)SF zB{1TA+=%_Ly>KCBy1#vO?vnqk$O{E$e#LLeZ(*fbqf-)=&cO*ORfMxS8ZmfQZ^_U# zHYlX`W-_zFo{aC^3v?H(Ff7+SxwfWoGU2aX($yrJThLP1I|6RUxUq#Z%2NxFCVt1o zGTd8uH1A$RvwyRS`N*TRQBlGwtUgp)3j*G8{K%$?yYbUnvc~@FQMhsU$0sq2A5~5^ z`JM4sW(vu5Q%Fpv(+J%?JZx7}qn|tcMvkI!5WCSv)9QT{Y@2$|_swdB%F{d(1_VmX2lGdXvEio9{SZRWS^x_dmr{WJ?(uO4IAk2*2D}E#u~(K`4L}}i>`i>|8KNLk z_?Bun#1@k!c=?)K%Dj@gb?%sCWMtGYqtH&ag@JR)$Mh;w zO2!sUr#%#g%=f3TJZ06c_VJQW7Aut~-|O5zGMUILz?G+2++QnQF&WJhQpume%@eXa z!Sf*Y{l=qhD@9B1v zsgg)sJWL4muB02YW;HZ8twdYvorkn1wAFB}drnEwV{g2dqT$}hdT zyu3A@lhZfI%6sLp_hVGLX{5k0pNL9#HtDlq?lo(}$Kl0g1)A30Buw1;dnmaj){QNZc%vD81ZnB-I*4(E!8i-X9dw9s zCgJ1oj1X!@lJp&R56dhwaep{08%Oome-7eEN6b?YI3SCZ0o?R!-_R6}&)$Rr3Tb4h zPSAqkz5x_HVy4v{AdU-$jYNrRN5n^CfJQf4#(H~zm;@I-2}%$%B4d#bg9Ap&-ghi9 zKs05JNVX7w5!mPdn@u*>>JJEr1W&U2E?UA@f!zr|!6i~}@G5BFim}5D3aV6{KLRqs zr--8*a5aF_ta$Wk8KRYi{zLe;Ua~So7iN7b__raZvS9clLSVr?1tQ2DU~eUoe|*08 zAeJ^%q_8N6m=9EN;fGFL8*cyvsLu<3c3PB+Z4&-d$6tAfA|~c2u%i%r;!wnnOyE1x zur1|8P@N1sv9Q!$o1Y5)X5)kdG;W0x7C2ERh6;v{5rmzA6SmT8f)6}_0fMI^Eu>Nh zRLOt2=^5IYvHi&Z^2YtVm2O2a>D@DYwf>eAQy*bSy;0KNgC)~9_q;&B)OT>YlY}w1 zy8?ffQB_~nc*7K5^G`J<_Se5BGlG0XyZ-v|1qEsq&Aw`2XiHRE|G?#BbmosXYT^`MITA!Fq`zj(_w3&AT+C z-c{}5g9**V`1mRY_f_KMf{fRLjnd*Qt=41r?k~HO7u?GM$9cz2c03+ibA3m5TRm}x z_*gz`O`5$XQ$V#bVZewsyFQ+4R`@_GZW3AH~8ynC4FYlwF zDF}Obc#L{I{*e`CpP@z$7q5Tga$-^xASpB zKM1Vv5%Pf9AC~*a0?Cm9Z%EuCB10s1mB4@#2!-7?3Aa&q!pz)JhZRz52+?!V7p>sVX3ohpct|?nQH1j(<;W6eF zO#@>OzADmm=1-jrRvTcnIXTiY|LaT!@pcanTY9(?ZI8}b%B*H@LGCS6k^bwK?36a= zdHleI^lS0oU)-#gp;yX9gAslwGyMpNO(abS>V2_e;TorR)_4jN9n|66x|zCpz*lZv zKq(G~lGHD8KLe))<#9TgaP<~oZ`Yb{)D8b9; zBV3lcif;xR9G0Z0AW*I!3MJrbkxv!;xU`OirmUpq`>I2n4^JP1cJ{fRz#4KV@oj{K zStjBl>PefpC-wke1gL7|kh4ac2-4Yu3Iby#?p{5xtxFKz++)9L)X|Tf5q01bf{_=f8 zmA2m+G>XgvPpj%?o@0IN>zC~)uemyhhqA<@w9o!UP&5hebb5Zo-Jpo3STrg7)m-kx zp&E!7wft|wuSI~UjBKK-7|k?p*ppUM;#RY+Ps1sn0)#; z;b(gANDKS}sQ5>$eAw}@MeW;l69?;Fl4ib^l`TrjNI%{w+a$IJ-wj?UxWH;M#jU=jF}O+A^JEbfLS%qb{mEsqqf$AmCMPFbW@n%9@bE~}N6DZbdwbt9?1}g^{a@nq z=j-1EJ1+#xoZp*jfoOs8=lK5hueSr-iqBjdZGgxAE_nYv=szVEZ27@I#`!}w?`2@3 z&3GHqv%v8d#{n@`+ayUq6kq&DZV>_uZtuWKWZ*-HP{YkSI<`8>Kh+dsL~%Hn8$wAK z1%LT(I}-L!Jql+lc(A6N)vE;b@I~ej2Rwb>$GH5zri6dRMgl5`>Q-ntd}eP3FgQHo z_cx{T=l^eb!SXc13QfRU6h)ZfUI!t6;FrI6<8SNqhI?z9xQLC$NBKR>%jOT$e`THLPQIo_&WKY90>UKdrp z#Lzc16!UwsQ)joA{8A#(>qrg**E;93d*DVkvH!hg$*8vAV)Fr^kMt@io}Ql1?Y5C& z_>7=?493#v#+X`(A@5J?Y1saBcjM6$e$qal)+iZPxw(O!jI~! zfeGPXM+Ly+?yhsV=k0)R`5Sm0p)XqAv*tdrwzdWZZKQHxSY0WCOpe==A$xe)6xx$q z>pLI@^)n=As$!>Q+*YaR&9yx~gBG^a_N>^Bkk}x&m6RzHD*^G9M#;^NeF*nTflmBD z`jmv%?rm#aD&4}Re~45xEq4M}Zs75jhQv#Lb$Y~7{t-k5+z#-@`~KX2bFqF>6A0Q3 zR^G7F=wOlYHCgD$2VZUq+n^|ZkqU!S-DOJb{E+*WS`SK^ebhE$#Us zF|5Q$I^8~W6eU+*WFtD27@DJcnv`bbAdN18sy zJuUi6U)w^fB!`U%+jCw%Mv8Kip%-SoSEJ@*dj==hUGY@J30wu?9v2V3`o#udZ4=?Zg` zSN8W@>3a`*!W%qlsGJH&*5{&B?I#a;$7^>Y&YiMg%kURmX3E9j&Neit)j2=@RH&A5 zJyY{qiCME@ay2b0f)a8Y`8K=dxt7I5&25$hZpFx)y~XyBnt&2SFInI^Q-P(dYxST4 z+tG#smck*L>;MNyh))|KvX0Jd4?b_`>@>mToPi9#$seymWE!5h+CEKS0S)GZUH~b| zz-A5kle+znUx4rj;KnJ+rv$u3%BSij(0J2_{F;c$#D6HfH}P?0DOd3SR)PFtwA3p{@_68+(0{uM{N_K2)C>J~Xt;fSk_~ivpntuMD z=cb11Q-}+>x^$0Zm1QKj(~c0jMNT9!sPgsA0?4_Pk3wLR(wX#W=@5r>6LQW>nf~IZ ztWJ+A5c#)%D?WsPbfB4RIP&wmjZaO9Il2PWnVb5qTRu@6)?SWrcf>*Y&mM z?%tk%YATr`wVhu^hS&#gUjjrf)PnpCJbMqM;Mr-xd=0J#gefVrjMB>W+KNMmHQ=@7irpYp1~NPp@tU~$hz2@; z)Wd)N4SI__Su@kzELz#B1PO+b6TQO693;bC+}U|>CNB<6W?v5lnXlIFA&!K8V+XiE zVY{K3q~`!zlOp7XboZ{L$7(&HXJKgSzWz%c#;ljgz6QpdwiGM~hxtGAfJFw~Myac- zKiY7_5ij?qwcKL$k!1ugzVi^OqR&Ooh$53O!0(=^stUhN8Ym0a$}TS=4t=baD(scD zA85w=(vW==RYm(8=VoB&xTg52(Y~S0yG0qAW5l(+|Dt1%88QI$i{-fzKeqyWb3pKv z@S-FxR)+9!lE*a|KgJ6%VNR=N zIqOke8x`Nh{O5XUPI|loa85WKY2V2Py+_Bh+5CWsm4*2a6@x&ODiD!ItD9Z)C#hpw z$H!P^{RMashpFG(P~}+F5s8NkX7n&KC^$y5YDjqwv^yqSb2G#{7f;baQ`+H$_xT*V zmR>#EeaIdmoOoz4-qL4}17zrIdir_Rv+sZ0zv1*=m&?6ypRCKzCsI42I7ww1>`*+KW4}dwN3>HCGK#$`|n%9*TGJKEde<^P+GSfT3MB!3AV3!Chh1* z8G#!7d2*gH+%)ol^9d}7i0kco8QS0;W$-{xvu0rI8}AH5V|HRr5t$nZ!sHeyTokbZNn#Dc#Ltc}#lbw{B$b zDxcLmqD6oF9GVfp7JI)_IV_oD$6Vw8*fI4R7nGI~tFdHGHhw{e4d>P)_rWj)ZJTJ% zi@MMBj5lnQImb$sL9tpHd<)8z<71Y|V-+oTEi)@`XfBVnpHI@hKH$v7~vGh<& z>=@Xr^Flk730N zg%oDt+7xBgZ%qj!f_<*BOsR4Iyg$tT<0alJ%t~KWZtBfyNb8g{s6PQG2o)6}Rx2+l zw>+SX>LIx7j|xiKcRNz0iY{yYl=&g8Sg8XtgF!QswQR`a{?Wi#`IM)ohig+T(iZ#k z&+znK&!32DICyx|K9Xx;3T7hhZ5QcqgkFJ&3o|E+02Q~z{ws|%wdUZ3g{6_)Nd6SJ zt@5=l8*Cj*`o{t~pTNtLo0_?9BpK0c#=A3xEQkG{M+v&bVwmfvhCFeLQo4T=9DcL(Odrd1Us8B{wvmgg?KOExw}11}FC@v8Zg? zX76j3AzH6p9ip@VsN6mrw8<-6N1u;&I2X7G))BFw#GZ9ft&#w}NpMc3#hF5DP( zog1E#PZqMSy7ja#*f>sXWLJTPMMIg+eZ3+KRr@nUU@szTe5Bh116@tnCxVKmuio;< zEal?|X?(WIA$9C@?sp)*JykixsN>PgP!19k|=7H3+XYwCpsoD zUu>)RV`9Vwk%nX6eeRb`3Q3=(%R^i$l_KXt)~&P}g9NQ3CzVZqo+NZ_)k>e_lg-}( z6{aQZ!&oXm2#=!325gAyiz9NU^w|Pg)|>(ZeyaSd)&s{U0)<5kN4Z0=b;~3G=g|** z*%8jmuYv~jQA9A^zD|-5KGEm0=+gU^0xsr_W3)?b!5Lpd6k2D9aMklRRQXyT2@=WO z-E)MCCdlO6w@cqh$X}Lv_5sFmlOARVC0VEcQwt=grS^%}@NUaXFgb*`EU!r@T z6CUM4BFy^73J)NlCoqvjrU^9d3*7)eFK^4l5R#)~&HJpsqBhh(|<0r+djba}(%T$H(G-xwkl!^Gh2c@+mr}huunz!;s!$+B;^E znMom(?_(eQk&(6+$R$_@hsOc2vEkQR*jxCn9AoUMIi520v@o-~UaOQsesb|+$(i@5 z?Smh<@y~d=>-<}(>C%#8{HWX!%83mNn0i*Ws^_A?-=+|o@e?%|uezl<#g66TkGCcA z3ww9(sCCNe$+`PV0(_yI{;uO!$#s&tR~?#wGYmCKW>4rwmvzu^Ly8RlX7f!k;nRSp6^&;X8X*k2v3>(3!3}sDmt4r z8NfB)9O5cGX4#Wp75RPQvK<*1c$l6?>*%2OOZt^d#L*vst|ow_UAD@9MJ#Q(A@Syo zcY-mEN2q3$cprt?Udr3s2&i<78&SP_l;~szUWV?;jUF(ROxIjZf9x9m>CZ`vzxUq! z=)AEf+V4jBfhhR%yZyTA;T6mWsQ?y;kfpN*Y1)?wD$!8RU6%YRsc>n7G`HTGv!ph)b`JQ~ zCy&S_#a8oZCw%-g*QGXz4E*@MB<_dC1Iem{j+=vopc7+w*3Tb#In?B-)u5`Pg+>(l zs(T8mPS#87GcGX?2d0%ygJjoq$F{66OPzbEf-=`?u$!%!!Y8>p`S{@*z zZ#wH|obHkk$MMM?&}{~Y&Eo`5PkHKvHDDUwobfa~2n74c=Y7H#xp?LeUtHcyy?0bw zcyenD`HI6pibhX5Qe3vAeV z)5Z=K_3cR-dE@Gh_*g}Eh`L+H!**wADf=(vXNw%{{X-1KQ%5agcz9SI9k2AwoGlEA z=Ea@xV@Jnme>_erc-Kuvv7EipL?U7Q@UYR9H?pgVDRgH)A z9RZ84<~QQ`v6*TEWpd0mNZ*bSN#HCBxl;04+z4%AgJtB}oXzc!`P&KozlGS4$jIKD z)R?MOuFwj#5S)E;fMgTKM9`*_?W0YcBAZ{RHVs~3?u|9?(MNWn>TNaR|D-}mdH}&i ziZ=lIO~6Vc-P)3Zk)QJyjiE{U>bBrbYpRTDTsb}GLs2pz_cmWh32r;qpy$?yFd z$X-9(-*1_8ATDy6^E~=e{&Fe6Y>!5l{eB_F_CpT6MSQA-y_s64NBmZliq!I9v-LHt zLmaLv#Kj&Xak{&U?K1WzbExX2hRqw#tbHdQzud;M18)HniW78d(AQ2E=QvzF_QUPj2n)KBp4gMe4|D&4&?)kMp8V2yGVbUVK9 zm9HKcO?Ts0TKaT-?30uO0}!WINfw-jxy7kAFGfQk|woWLv*ej-3O+_ zU(k;?593RVt>=&qwM=gC{^0XdO_fDl`TraSGu z*?wCgn$KNEiMcNdJFPun?i@8d*x7qB-yO%HE?ka%)&bP-?yEA_fw58{j}@wOX3EiVW2={zqN_ys#xE70)>|nR`%?Kas_jTCm0Qz zc$)n+H6S)9oip2X>CsAM*U4&ZLuc1XsZRX`h0>Q-HgR?<|z`K&Juk`@Itl(FOJiIk};!j|h_G#B#COOz+0d$Cu^nx7>$4{dkV{Tacbq+1fB2YkQ#bSElD&$;%Jw`dNZ<_F^-P=hvE^>Gk&gqaq zmFgp9Zn9B@xuUSy&v$7@ht12#Eg7Q~=Bmk5W)>n4Y|%HKYhH-^ZJnpJPBN?5WF8+D1EfBFG&cE9YwwnQ95zSj^DBA}%A1efLo^ zR)S^l_<~4!e&5XnHL;SkNoGg9ORWyci~w`}_T-!n6@RXZe8|$&gBD>KyLvL+IsPD0 ze)*-_isWAXsPu{Imn;rfSSPA3(E67zNTzIv{WV9MN-ddemc(?pF0~4O%18aO4ktA7 zTmKM5Z#IiX`mD7Te$llP3|j@hwfd>>l$PMPieuNFoV&YzfDQ!aXI`zNlmy2sWE zH(pVhxa+TvTT(DP7nW5}Ly2PprdC#s*Tm=?E!xjIts}`Dj7GjH{W_SlPbGD!Fl!DR z_i93a-H6`wT{|`+*V*ouhZovKfh&dasAJB@iQ9Ldv9y+}GAPv9YT{ody=!v!LOVNH zVqkl2HUK$)!c=6SU^;sFEwRR6gwM@BnM?bqHexHLR_wwep7#MD65{qW#!bIsq8%M{Mh|g4q>8mkJs-W!NDo3-jLgSUR{Ws=uL!Yy$x(SIP zPdyySvP{?4VPkSi3xO%;9Ia~P5~KcHO2+ry{hF0F^G$k2*~iaZpx??focHukPa2hS zj$|>*G0(^MqN^OYh;XZ_(p*Own<-5xDPhuOoj1o@f!Wz~()dg;@b>aGDs&^;GUFYg zI=79_oBW=a)F6@r1q1e6M@+t5pC{#a%CK%kG8xIC_{63gEc}UCJam0@#Bvh(45-7L zV>ELde3?)51&)XBe-9TO-VM!Qp2Q*(0$qciN;;C9tvup1?g^5PVa%y`^pm9_x}=;3 zR;1ow@fc*N)FIvpc#Sl^V0O>->grPCTu-N?NrzV{oS2yFW6&XainA*jkHuj+d5iI? zmjgONx^5?=O(0t~lxa()Rqu#NCzm9i1tYLI>v?UIp|#Jyb~9!@-E=uexVQ!CqbD;t zh`4gTxiefrQpVb*z(yEuVi~lh(I0$C_lgs$stZQZNAej2X}0(fYP0Q5t9o{Wb7d~` zNwxav3(ICo?uxKSLgJxf6rl(EKO}@svZQ0ghbaAH(ijb76SzzjieK=S+Cdk^gZsWW zFCIs97__qL$>DP+t(=fO4|3e%*Bg(5uI-IB74kfr~p0K zTk2Fb>Nvclwd-4ZYCQT}yWEVxXeocnNuk)C_XwG#ZVoT^b$(uluhVTV4t!-h=|Yw5cN)?}qUSSfWTnoeTLvT=ki(BhH627ZSPa z3o^pKR6mP}5=K$`>G$2zgVzNzbVjAsJKU2M+ICliHYsDjsTL>?Z2eG=cK1MrQgYd? z`Ql{f^`TP~bue#ZyRYph+BP|4+$73WTVO$pCGa4l%`%iAvf&;P6m#pSU73)q<{7vX zmyqM~cIphd*G;)8h=rwSPwP$|!zd=*x@^aH)1y&BE2Uz^5Cws=)_WE^nke$eM`EGY zl}$`yD)_I?v1V;r;-5bFNI%J(!g{Vm2|B>e!FW8fbEUfS{14Jzh6{hFXg5D9ORmCf z-B@c=sZP?;-ZRq`#^0z?XZzW}%ZGZV!3qh#v%+3>%%8Wade?7kB3J5pYGCXhyY0g~ z9d7)1D>>z(6}BkM9pMK5lOt7U+*NPS5czb~$feV-8|=*dM-q_iPZolxc6?c#lh>nz zPWhNb9&`6A9;)hJl((oA+0x{0G=zVXDJ^%Lk*>N}=M}Kl=}3MU_NZo`B;ge6bp@8T z%N;?+=PlzZ$%D+Xv?>H-4Foa`1K)1y=MrU}+qU2C1_&9eQYLOZm*Cnt1?NcSOKbP- zy9<#8{5%DgfxSxn^DF*idyMLwAN!6-I|?^ZD(&!I|5{7jtd8Ved#c5IjTCCU-4Q3T zws7+H8S2QUzk_@dw9frq-3{7lYVGYIAY9bWJU-no#~y%z`|tAhX+ZkAg$id)rpF4)j9t zF(<+fbvMmPVLiv2gC2A|FUg*$=Cbe@JqZZKLmn#qp+-$w_SnmQ_-sMudP`>^9X6;P z!@$Dn<~lDnk1<_?fp5W2wn01cez@~#+(-cd;f(AD+-k-7p;4J#sqBsLYVGf zJOu(fzL=WGgK5qBqmuPP4Xxic*!DO~^^{rNZ&z;LepXN)XjgJPZsU%>KLy%%lkwzl z1&*jXc+7CEt1o#`co}?nJbi}%!$?fg&+_24vd)x?WE)E@$>?iMWa16(PF?gsy-vp9 zH}%1gt#yOn2T#uFbwJ+FF1^I@+x^Oc&Jbe^7pkuvkpt;Debu^DupZ=7m9P^!fJ_8-ek9Cp7gM!u=4dc@zXq#CGIy(z#= z=CPg#pb!hBk_;osO<5U8{RYXm5Q}ys5pb3&mo11N&emVnH7{~GP~ozgR$y_|t#kIN zwtGu1dAxaUMW6#cJPnRs9d^0}il6fcVXOw91se)JzMx$*hZP4a{K!`d^(eujCOP)_!ewbjP=@p&{XLB_2@dhQD}2 z{LG4R$aTNX)=bmFb z$(Wp@z9%`Z)##~h8_{4=BgKt>7mGw7@4Q%iA%)LD1LD+^b+m=Cy{%SdQVgs42iaJkbw5xm<55=g+)NOj>PYG7InBN{?xo%!15Po%jxM!{uN)iqXn@!gkZ=0pH_z?l7t5tF)M=2)OL7 zk1}z~zf?Bv`N-fK+Noap7L(^DfEFfgmJmi-o2GrivpQ9q4VA)Q+x8Uf8V32c~+=n<=KQ|gXw|F)%evy>sp!+GBQuZtHZ=d=p*aE$Xj-K8lV9a@c zsFW?||9sA5Zt3m!ln~G{J595aY~(VD@3ol+^?vN{${$(MFE#=>PkP*0J=bPx>G;ab z{ZhT+-;_m*HaK;M2)I1HIzJ*Fl?2g%;1P+bhpDp0rHV6q1vt=eP_1RE+PI zL6?2R%?H9_(jX2_D{+QPLJ0kT*n8`)s@^Z`R}lrIk?zCWZuiCPoSGOt zIDVxcAg_f3qe~a~g=Qd|U*E5c*36mmJ<2f3E7j!(8r`>$FlZ{NKxu8}z%YT9BRQv^ zI4p_O;V6u;1XKDqbW$Js95cc&AutTk^(>>JJQZbNR1;Hn5G0)9acvEjG1J-zzK^uifoGP?WU@ z&S~XF&muNdwQ&_)I`;Ycl3x;SmyXq5%t=E@; zj@_z<+>|hCJ6e~Km}ZN=jw=+b8~YU+PA!?JlPu(&3(@^|g3?o+>31YowO3$AUg7h! zk8TMi&pbt8%i%aytx8=-8Ery!-u>;G#yLM1v<@p-z3fW_nBV(rIh6DqJ&N6Ou0Cr} z5(NvE1+QUf(1{H9!!YG;+8eF^lFdEstz1@)%Tr0564xm#I81XBkbE{{X>7Q|S8`~> z(DydQ#lC?0#fs5&*_zFCwvBPK9YJ5jtD5VC{V>ir(RWmEr*zqtp4941gKJbjc3-=D zCS|(LDCAjZ4&0p1ys__fYb`dXVN}Brg`>QtGpXM|pTx|nLqjbDiidmz7d`IT z;N?*CP=^7MTbz{j0deIo$a$uMyOZkWdkJ6JFDBO9eftI9P{t6ZD!*+W7Z;x%l_i% z7~gDfg2r5Kc2JE+9x(c2$W;s9I33RUzHJ{?{%&79b$B{1+o=p4B7t(GQD`+= z{dO}IGo|LOO+0n{1eEjIMj>_mPD>+8G>NC%bOz5`H^aqkupoIW@EmmhjV9_mUCD|Z^lhZhF`hE{B3PT(r5%!ju`^SNT^sJ!=B$d z?oWINGLHZ?;u}!)>9zi`?K!JCq{MPQ&nUthyljme+^fxp z+w*tx{N-@SWMT-)(W0bXp~R%{#?yXqR3T!f=o=!H-vmdsF3_D$4|K_*nKbUmXi`H( zNAD~yafg2J=mcv6wTp7iPIL$d%UHo5DDKuc84OH;2>Ys*AvcUpvzG`FT*d@lA#UXM zNJ=<$JdKc4${&cUVvWVT#xmPbFoc=oQ@UJm-*SU1{L_duNf5-lR6BIc zpl7e%iHO?+df9UsF0`2ukT7Ack`*-$di*uu7*1|DspRe?3?2e>B7GJKyq{Q5JZN8?$W7((Iulr(o zIF?#GeF^#Q3wSqL-5kZ+pL~b&Ub|iH)h2h=e_hPeu9C#XM_nVgzT!cSMA@zf-pBe6 ze*I$095tp}-`?B_cd2xm>e)j~_owKTHHclm4c^kRht<@O)S)o~3SVc!_h86ep|3_< z!N-sRJt;HAKrhm=k4kme>_p-4O>4KO0NZ*Uq8)dukh4?Q_U)%1A|3M|Rt44)i0Pp= z%joL)l?5JWk*{kEx0}JW-}jxix;J%?ngnSmG*fAMBA76)7-}>Ip4qj@fAz zOohYNUB`F0t?|>Rp%y8c)*W?;t1#)qaS`1!t@Hng!4R2!7PD>$FC)*{f>C=CK@7Xm zgwAMd;HgBpBRU8!ZKf{Rsc%2uwPfR+7Ng1TtP#Oprln+_Y9JtNXmF>;r00o9L8f1O zAXwD#FZ~E*ZYBAkZg_VXn<$T(Tw&QxQZG+9^6L1_C)2hCD-8C!rb6ff=T?>C0{O=8 z(3G99?IeALBSNksaBIbXes^r?eY+`?AZj6M_({2^JOCF-S+r>JJ3>I_DQG=@9xvE5 zz_V0jtm0N?x(>>eZ5GEf|F>Y_h0pzz(~XglhG*P<;zRSjmt)DGk!4_(n#sUyg)|_! z=VdUAd*q$nmW-Ntd<6bgF-*=g# zJWGO@TBa41Ow%jMPdMCr7>aHug(L(tmLvFck9!!1yh9cpAryG$OB6%dr1xm1wQ_@j8$Bqs2qgRVo7|hev({pIQiZ?q9l{P!LOAcm9lriRR@9fc*lh(_Cy-y!3aVV2~L$!~cW$)HbqkUIs`nNB=V>3aq` zS&ii{3trj@&6f>G$nO&rm$n)OKngIaih?0cEaYwc3asqI;ADYKqe#p4gwmc+tmi`L zZatBAdOIf>VbJs<^P984hCQlB2Zv)g{4(!Rs^@bj({L(flYTe#qXBau0`3Hnl}0T> z0x}yfq+p@hpqJir53kb=kqj}HfQhMH5MUpT zw5JB@JX|HMj@*YEDzlk9HcYFHlBMDe0fk~{`Su?4JzO$gx3+a=e@LO5~d zdYDPRi0LL-Q<{RlnZF?jcPOfbdJbx`xzIk=buunsktbNmh6|LYIQThKH@k9NiT4!nE9wN<-hWb$(2zSzBa`NN3?or3BKK+?U4JUzh3dh8m=7ttL)RkC_jUe73>? zX_^0u|9an6?8Q^pL((r9td01!n8YxAz4DKSL*7wGmOTw#=I^L|?DpID<}L9xuX)D2 zhCW@GCLH;I%03;bHB)op;@aQWq`v5ike4lyT7`K#p55)iB(H9IP(#2mHm zLC2pEI=srH;`g|j$5b*zBF2JMpe*GW3 zIu@W?j|WRh=13qr!99n<2NubuSjopVrW53mzVP32?@Cq2T6NBj6TXmF?!iM$zYo71 za}XBegBSU&Lld&q_(!1Y2_=To&3ai5LBj(T5yo1i_&fIqwwIWFI<1fKhxfWm&sz}4 z&n(rth%%Q(+3VRq3PPqZge211hTc4?tu~At^rA}WlReq-RDoHoiz7+y`}rf9yN(%% z0K$YN?PN9xWfT(vu)D`Ht}Ggi8F1U7VaFMBF3cV#5Hb&y7US~k&<91(ye>(#J8o(^<6Fu~EbJhM3-V;ew zd=w9^$HXDK4!<*Nn1j%T!pxqvdOr(2w7I}FIUMEGr8yqYif>juv{{(&yhK&_xgPlxMx*mU`Gfi9GRO583iSZ=1q%m5>r+I7&7gu*M8-4V^t zTOt&|veMOlYkbnZv2+oY=fY9<0Oj{cDGdXs-gp~Ih>--Oz^SNeV{8Azc6+LZc} z$4I`3gl93tz2ds$^X8eQQgQ2eWam*Iucq7WJ+_;>+rkI0wM0P7q}BmSlyw*UBpbXQ z^SEt9=lO{U<&_2!C5k4Wz4aYSHP}cXes%Fn72bICq9XT0XU8BEJXq*qaHO8~app2R zW!>&~1E`561_QT6J?pG5m7eq(XT1uw*+S5Avmd|S=$j4XoF=gwB+SKFeN9cQ3#BX? zjz%*p8kU~Ba_wZAa6rN&IXsJ}kw{>rqStQ9*$TrLe3s*3tC2!_h-&Gc0~Wma3-Z{H zVImOGG8uYoph5D%mK@vUw7@;Z~yp_e@>Q;bN6=450KjLt#`S?}! zd5Xu;hIPQ>NzZVK%l%ebvH^wkt#WHz-0f#l11x%t?~eN%*j5?Hk(2|sbT#tf-u1>% z$b@{#`^bl*nsgFiAcYLTn%#5dn?_Mme=kT4pnoqbVQvVu6Ua=ZIw3pg?Ucvxi7cO@a1xH51)avg*=6InS+59kE$SMuAu6QZ7Oic%GoO^E)yo6Bp^5 z^t3>)-yknkm5_21T5r*`)57ib~mxeqD zI!)Mg_AMPc<8uaE?WL8Q9dbEMoT!L+^Z`2kc{}GKW(yi@_|;C{-$f@vg2-< zRzf?_lx?MRaah9e`0DY~q)0_J|HAeJuw9Xrs~%*mp}s{36?+KC9)UuStZQ`g?|0_5 z^=zEuW*}|Xn#)pc=QEFNA3+eh8$s>bdT7o`QLWf96{#$nDc&_zaVCVqyXuZhkGI(! zNyn~H;zxELZ7ZNBDqKxCJrNBt<|453hLuFWY-+>4ESBw9|31ld(R(FfV*jpPHYwsw zJ-puPsw3sO$}|J>(+y9L^Wb-$l%AE|XcI==akv_pX1wL;{m5s9`X0ZZY^&~W+-{#6 zgXD`xR_9Zj+ZpNo_!L+Rp7T`oTj;@ERGV1iiKu`cApTwxsJ`@6*D(iX7w7=Hs4}eW)Gx<>M8T+tdT)676%+2sdeti zBe#Hv#Ax?Xy4=2$JZ^!@mM)E-x$sGMw%Y=3FM5 zQAUru3;9i(IEH65Gb$JaGtEb%!Ihm1v4S@lhVsO&9RY|q1312DzyoKo0h})~AphafysLbAO$dxgGL)xBC zgl-=WW~+A=b~QH!;@{x0f9(Neq<9~?v3$~-fQ@Ua_TL>#t@oqtIz*egl!%jB{E(mo|+Gt z{b|Trvd!8=e~bwfK?6%~b8uyDFD>5hj1?mfB+&W(UUur3yTq%s+IJdC;gH(Ij@-SK zR;aUlb~g!v6r5n8Ds1^hlLZtq-2?KmT$LeQHah#_v%rDT+ z)&Tx~XfZbLbLZJ6&BWkh40-7KXcn0{eT=vFuKRF7bms-v6git!`Z|UdsW~yKOJ6!a9w6 z?-sx1ceTAYrPjoxe~>Wir$!>ksSE+n6LM2)&FBB$hv8$<0iwLIII84Wn5wm#Ex9)Bxi8(xQ}t>RWAzH z=^TE>zzs1@WWt_o=VESxR?mY|_sy5>ot%ABu~{c@Hi;9^sK`T>5*p;Ol+nGmQiltG zD33IsBU`IqS)aMh-$C%D64H!}$Bb=YS%K&rxO()PUDv>}58EK18Oa&v zh#n&|4tM!F^=vC6piXj*)hgy*3rkh%yiMF|8$_|~Mf4-ccD%+VQhpxZvjT_g{-V3e zvwY=8HGLB+Vn@v^42EW9SW80|&75Z|PULcpDyePdN%4)NvB2k>qY}I4>pu0@v6yt= zQ2l6IK?W;A|6nQP4rJHUF_YZN%6+A@K@XP|TUy*d>ciP_`iS>>JvUz|li7>r&z~2z zH;bOtaq-@(&2h5HPh{`2dZ;j^ybrWFY8F0ju(U|%*B+7W8b$7>_r`0NB?wW5A^OE< zP2-_-_o@kDHg_GB&B@roK7V-dnbx@0>(j&JmccR2&*KjxI0NsQn{J2i+0|p(D$FRS zzRdALzX>e+87+=#BdvVO^J3bao(@gQxDEXqA>JRJqx+&0Q0t6u}sWH=LEc&H@E#GPwK zX=GOTJWf!{VYt44kWEwUtIgNEK7JK_Iv{G(hDj3uIk&u8Gx11D2$bJ(emal|Z&rIJlg|95F;a3Yl8DNdfZVqzNIejlNWMIjEl16$Pe{~H z22~i$7^_gMf=C`U@Kd2Di(#w3fx~(>q;TArdS9q=@8M$nYG-Ows#_2+_1Xb)Xm(D_ zcrb_#o*rQa&?MR=VyL++gTOs4Z{bfnkq6`UQ!j+N1|i^3N((YQKIbPWBWcpI=jW2; z%o4lqU*`+A@JtcX7E+>Sm11Kf>n!Ys_MMqBs+uAF4@IFz@VD z@;;ko?~{~43W5&w%|KJFXw%hSn%QUCJoBq=!iGJyw;cB_e#}(pt@AKVZ^+?|w`~7T zgO4N>=*j6HuK-en{3{&y6R_D0qXr1+${x_{mApb$sLP^A&6D-1sE@MrB|n}zZoc+6 zMlG`LFD73e-HL#iD%?33=?sx%GK7TOxA5kSUu#4`H`_ghM&_C-%!Ptl2JR5?7)_3# zY6T<;Rm^-K6q_dFt$}*p?{Z&Hn%d z&_4!47M6!@9X4ts1O;iqY}c+<&!I7%{C^Z!70}}u{Hst+=`YT{>3&A91$A+h>yW93 zJd=}E87}5cVc=uKQZO*2shRJ2j(sta`C|Rc$MCnj#n{3M*zmpzVoP6Hi-muK`&GMV zf7I>d;{ls?i_AAAH=)mL(L=E*z~u3gC!PiOK5 zmpPuIoa|c?>`o};j>&T4u8;Gp9xNOjxD0=G4N-p2{gzomT_)(JU}+!7>_UR0Qp^=* z2Dwvw{6Q5i^{9VIL9RRy_bl}XwR2csh{Ryr8Fivv>27at53N)x^FlKutXnPk>%!f2 zkWn{qAhBKBpt{^1;r966d!=)Cx!f%U)QGA4(9X8cNDMK+OBoBuZWO#j zi`_T0v>37B>&iXcIYLDuJxiIVK&9T$R{zihVsJz3Vn5z03BCzayrYz4=|Yo?v5*v| zy49xrH88eL!RW9P9ozJ%<1vN#Sc?hmQT2Mr0t#L7*(*^;dtlu;1+UWD!m6e_Y zsg1!_49s=1KgJ_gYtg86_vc{}YAq%^wh4H!OJ#mPFle`lev*|<_d__+u{ia)Eyk2&BJ`S+;Ji+^ zl}PpPG1;$r{l2CSp5gRInjXCyeb*MNuYafW71MG(JUl2HudB1A-DwRn=}jD5`pk^qDp&PC|n7p(P|Cb_`X+RvLM_*Lyq(kUL00lI@^C2&9MP{QckJ1fY-%1RUW9mdO*O9gceDgeE39zvle2 zoe+fDLK$5S-O!~(-quG0H)8z|NtpguhA;#5nniSs!#b8a2(9{Ef3kbrXHu~UjOb@oE#;Ma=^DByX;-WUpq&%K%iK?YxTFv zzZ#C1ci&usA!v%M;&nrk2B3p~r6I52W>8)eidvag%_zToPK6@WLg;~mKG%O}oLHc^ zm<{d&!~Y;hgJ?mA#MI@l(dq)|Llbg;&;7g03%ITttVaee{A|asf=dTJbk?&m{8!KdC)II6OpRCJ^?6J}Ug_7QpKm`MniIVm&r1af zC-rN^D^j?WkJ|!A;E1MAoPSIEDs-TjfGCnaR|Yx!dn8Y?l+3sSh$*G8u<$Owb-RTx z**`{y1Tj=}LZ;7^BK!JAf7;5y0pz=zcmfA3BBF>WG%^H^6|n@s-ugh}Ckr~bM}rch z4$c=s@!ia9PG0V8g%NrK|Kol7!+1S98+C~J>^6?#gx=J97=X$F{92a;iZ@6D7W9H` zdMRmQd3^-773;)(2 z2_S(K6y~`65Bj7Q^a>e*3Dy5XQUbo#KKr=Kr;eS9{cBU67p|Mk$C%ESQbVA#2!Q*T z`>j=(|M#xSp&PJf_lNAX{xxnM0Ov5Lrqcc&(gKsT!?(a+unK@Ly%Z{Pept~)H*skB z>l`Z4A@jmxi4ERh{C8o?KtW3wc^t6el#X#meHxCD?90P-T)|>5hm!W9nHrjya3A7p%K9H6ciNk{@NiApE1$#?>_SKYCV#Wl0uy|KNwuOmi@2#H3;wZ zI*k0e=vZ~)ac?PE%Rl5mhaN2YU})Xocc$h zq4<9d?eBByTi^;QXti18{CC?W;vF~IhUoxxIlcO?z3)paApiy539Ee?|Ncax!w{+m z8G;U$4(Nyf_d#o-!2c4JXO+=){qVPT$!8daQ3@TS-gVeN{pg&XrT5?;ghCLFti#t7 zEd|BtZy_Ll)T?V!m{bR(zgDyo#P5L%X`%dUeUPpZ)E2&IXJ=;=jW|2ab=2^`4xiz9 z-PyXcb?8oA=ocCqirX}Bd(A$Ec1`N8gNXl^-NyOx_3S;6Av(E4;jUW}oM1||mlW!k z{f{M3LHqJBoBjXIyP+2zoriJDe?zV9r4!3sZh)MaDzT$uTkWjV&SR{SucbwSys^v+ zKtVViF6G}TmztA198HjDdjhyE29K71Pv7yv9@BV5TKwPGGy@n2R&IAQt}mY-^rPbv zkK=T|e1Ejq1goJjSK?2>!{Zx9&n@1I{c(b&rNUS(9WXlGmnOfx>C^Rmz*nLXM?di2 zV+_4ep0)H_{#sf|bS%9*WIfKN%gYl+blmYIo{rRx!@hUTy*rBjMG$V+9vCotmcp8_ zJ))yKvh=3G{hBZYlP(OIpAu0O3(FK@TC6e*gwpw4TwSw_!>PH)Y@ff0^rh3$0F1A< z-U8lAr5bRqz?Rr*KxlWa7OzNq8ojJQyOg=g@OO?jkLw-+ARwJAdnYQVb%$W|bcZHJ z(|^%8SoTH%0CnKt>k#3+cCW{eFA2%t-=2{G=$5FNiQb3|Ao+58^-P zrq+b$>vGcvqmn<%fK%V<=xX-y#WW~Lj2@C(Ku%eO^lzT#ynu)lk`b@|LKG#4nSjTa zM%c5Aed*yPGyruqdFzdei-zwX99oPwhhC_wgzdSt9a*`aN4Z)VW9|CzI3l)5{cLv6 z4p5UZd%`mU6v&rFIs+Wz1RKrH*?~a56kJkh+m{d;)$;Z8hzx+nh9Z?f-&>LO7{#M1 zgU@e=Z!!H896=!Pt)Z@5qZM{lGnIu-%k9*VQ z;Slh9gP*^;f!u4cbK~&IBrmNxD6#-#!L83Yr=5}QD}c0hlk>%5vi%aTP8Z|q!WYxqFDJ%16M)T)gM6mmcLM`YA?<_*tRdiH+xn7w6zhJi7-JyYHp&&LCD zv|~Wi$+ZjHU_UQld(0&9gPA-vl~fT<>YhQnMTxW)NW#|AN{t0kIE6r?B@4>Qp?qCv zL99ooiXxZV0$D3(jPk0r8=zLyQBoiF`!1x^f9>q;)%0YD`rKZpA}rE*a<(Zoc^yZ^ zcM2q%`T6;Y;k>(6(M(aEKVZ0KoKNMr;x+^LO35`_zOBH!z=jd(%T<}bPRF>Z_~Cjy zCVX)X<0lXZ1Wiv*KY*rK!lPQQ9?0L?wD#l+lf>-EF6POCjl*IrcUhv2lPjqMRSgWQ9xnY2~ zXr_8>z#dzr1d!iM=XSkUL@NPi^~6EJ(laV_e>UZL@{_1f}HIXgfoIF&+Ly{tmO+8-cII`4^*yG#Lu^& z+h%*WJM_CKThPfXZRM#R|CC5!M>Lkn$gD;~Lh=d+5I|H+xAXoibUjqsaxN@zYSBKt zv^Q7HL>0z|8GH7UA-r6cZj^Dv4#8r+uL zPmmrfRD^M9Xr3P!osq>O>EIg@`xvrV1NX8F=_k)f0<+1Td{l3K#DxIgtlvaUp}|#G zy;N48pb6hpCW9-mRMUBFX!acTy_^3p|M$8(QC^?WC$VU9NpDHLfdT;XuX~~KXURc7 z6pECtJjF97B4wM5_K_UZV2c$H3=+*RP0RP|$y6YK3P_41Q%gU4-Am0yT7dK$MU{oUnZ1S|j29)G3a zm-~C2oyl_xqc7N4@->1_9!ac5d3MDN+9d^ci|KqOB%rNAssspWUKxvpP2o4+hKnf~z)cA2}*vR#2xaJRb-=Ea zLi=s2!f~~^GWG5iqk(%We{&LWz6iuc3oz}-w2tc?4l`R{-HZ=`kAkKZ_Hj=FGghIY zjRK3=K=)rZMX*HXV0!HdeArJv~^FHBugA#X1%O=-viw8sX<`z?I`V{`E*GhtzifTT^LcqkZhMTRtj(ugOlLh zBo}xn;m50GB(lrp#cpuf4XJuJk|Ds*qL{C8bje~u=Mx+IfjLJupAc3eDY`JWr(gt6 z1YWjt6dn8?OCgI|CY9Is`|Y{@NSn7~8rrJ;ijVej!%~RU(acyUrza?C1-gVhgx~E! zl+Pv#rUXDlL?#fig{y#CTy~k?Aw0ahCgN4f0&Vc$B9Y#=c@S~go;je`JG#PBYl94W zWx;`0MEfneU3(hd49V<9C2ke>k1-h##>dRhRAG2Lz|vkAeq_590%4v?_k2g@*;FI{ zYZ`QuQ}w!;0$3T3@{``wFa!HPm3P0lUN%{R8G;@k=z>SN?6;s&`J9E+KL<5npy3vU zQr(?1v{Q%XWsA$MbPpz)jva^qe%_xO{d)|lsP*$fHp%Q(NM*|n{y`k51B-{n3_R3A zL!;q~O4qKEH=wC>DengyDn7pW3KUerZ!&58Y(PA_GbP9hNbbq0KEP(pDroLhw#njGyzgCPmpwUTssra-aH3)W3ysD8HkBh4Tt>VnZ?(A(6Y^wv8B z75&1XOwv?y(n44%(gcgODA?T2z)My7XhK551hL*b3F0Mau`v8{+9mSeWnIi+g{D(h z^kwv)poi0V^6wt-IP{V=&OP0n6>TLi7ncmsz`3m>0{5coyP@P)9YV_m#%!TVO(VVT z8tOv$uxda=%*pUMgVF3A2&oBuRvg6M2%BT}=SI-|*mAy2lj3_w1*Luwh$Wfb5ucFP z#k7jDs2%G|lZW)7UJSn7Pyxvv$#E)Is1kw`+$tIUanBW}JrHeoZMz86nYd2FouoF{ z==&K)gBy6+uL%LVDU8M!nigPu7Z|x#{WZm4O!0xue%2BQ&zvrwXeBH=GL75j%l@%_ zi5GJaD+y_!p~emT@}R=y+T|GWUqqbm?&RDwuzXN@|5cCg}eC#a;Oq zIjV%w2x=rWuwTD8;z2({5nf8s|6z3#CA2ptYlEJWThK<+>>^C7Rs#xgY?z>11}`iu zQ~)A(wtFf_=1&M!aKeTLsux8VUbG?6=-IGd3Uou@>{d(Vv}7XiUd!R(IKcUbZ9yXe zvgr-e5=qr}c%1i8%G1^76_f-bQXI5C7}Z(M7Y_0>=)tIzYQtClL6u^Ee6yIwa~pHC&m_NqtG$*I^Gcx1arHDzx#YK;08~DE#xMDyYq3o z{DNI>WC9A9Eo*zCuo?(`bDdi56F^O&f!SXFnVbY~3lYy&ljn>CNNdKcQ4vzLx*@CF zhXp~_Hub6GCz8nPw!Rb16PkojQZxB=V+g1M_&b&yx7vZGq;4%QkS-O}LMJUa<`Uqu zzMMnh{&x=b^C{H``Sfmqq*H8t=2Vf}S+w#upZ62#9Wp+WiHQmMz(!v>qMe}U*#=dW z(MSjfDk=(m19q3_ZNF1k@Gbjp;!z|b{C=ti`V6DE1BKs7}u`D3UQDEY1$8gJ2|zY@~+m7`(s3o z=F=U(ktB|$k=HNkelr5O-uf99$hwN#Fn5!(K5t@#6EDcaA`;9J7KZeWB)v9E?1?HsZ z2&N($9ak6B8u17JSJxGyKYxoI0$^Nuo^&mw@RviE1hElB}R6H0kTGqtVI=~S@2 zpK683L!(6{YRy$9{S#1Vsy?-Co~*2r@p@cfuYI(Ppe#~xO5~ZwO zz}65g-{U5zlGEO74|S*PlA@pQ*G*{`Kn@F=><`>eu^I z@ggLHqhPVD6DYI_($|s_^{#_X9`}opC_hC*K=}I$yNXK18tPc(YF(+jEL*!%tqs#o z`*V`PIr>a={YPDMhtq7{1qhdDpVn5h#nmd$II2a*V2}y*h8p_!9x33?F}*o@Ls)0x zvR}4r)E?y7Ee9m-SA=rzL09Q`qwV=j?GDpnET}>ec^{RL3MRBRcG4TE;mszF@ z>IXyEkt5#xC-q=|>p}t3O}VN7B=o4gT&Rpasxj4UV&Fn^O# zl+^!0*L>)JU8lKJb$8o;^7)G)oD)+x{$IH93@h+2c0SJo-hay6+n0NJC93k5z#1&s zu`KXv-ud8Ld%FNo2IhYqf~73^W}|{E_${dLo5g$8_%LFrt?W+dn=$9YmeBYg$k2@k1_Qkw{oY>zJIwi2=*Hwi6!wG zVeU;8`+KHUO|n~r88c?>3YuafmvIvr;0%$$Dcb1YUV2agcykeEaqs6CyV`vn9* zY_r{F8r_Kq7rcXx7P-Y!)F_0wk5=Lp&>c_ScC7w|FrvMHmEk@^HUDivP*efX{U52l z*kxYY^pwnIe~N%sy$S#E&M7cam0F@_%CJ8b<$)W!+Jr&${>mzf&H{6??}+a{e$%wM zj*iK5%Y)Ti4XZm8LrAm>uf_F)kPxevqTbXZI(Yb3cj&*KM0=Z0w5B}wk_1pIFh)xZ{v92H7et&;KYy059;9k5UYr@B6sZ&z z&UAW?xDHhx(;0lq6pP(Cj7Kf!VgK+ZZ| zV04@UO)&HJHLCdWQfnkpVyWON>09|`W46y}{Hp3vd8ellPGNS~XUMP}z&dDqcfo~# zH-}7kbma7ttPuG-ppRvcT>X_b4_=Hs?lTM`{#t)X5Wl!$Gz!05xg!8>0Vq1Tzar@B zwbG!xcD9Xfw^=3ScHZ-GJ#QE9kLi}rtt!V|ts`h&J=zMmmP%AQ1>>=ogd*&YuL8?m z63ewF0`81v<4QG%_q9|ggea~&`XtR5{=exdz0&uSK>p6!Og_#%TABgb>91UQ5aYAD zWWp%{jA*Vyd;rYvlZ^uFcKLqU>-r56A@_SM6D-5ND5N*{*TQ+9aZZLth{p4Ve_rC% zqem<>+GTn_r=Oh4gaak(dZ%j{E32y!QBf!k`*S!Lo`YQP>qLntz+<8rP)>ha7C!=b z_P`W7q`z<}{1=a>n zbcqZ7{`VEx@qhL#FniR}fV(LsGx7b`TJM0tZ6^u*9QfjVaZitEgW~)zkX8HwTz1^B z{MUm3<$U^oOh(a{3&8)o0AMr$I3X0of2-#Dr;|Fvjw<~BR|m%V|JCw>_;Aqg_Q(u>jWGWL|c~{mDR(l~%LYo2A0mC@RH|oLpcd%CLtwP$w%t$pAaO z?i^30;^nv}yp+y{u>KNo$KQ3aqX!oIeu34Q6Id$Ad-h)*uj3c=m5zs>G{x6-S2@Zk zgcCbwp~aY4xk@>)SPe8=yZZ>flk017AgA<1`xLV0LxR^+Yr#=ra{Rg>&jx&H9v@9^ z|4}&~R_FhX1B55D6;bLb`lX8mMv{5n)o|LbvF=S4`#YG8i)u!G45>4pMG%in_ep8S z+nXx;#%kuFe^7t1`^#U7)8S@^$8*km1*OVlFvNgD=I8PVk#eyLkZ#K5=(q?-P?~i| zK8cA~XPblJ(kXT7%ILMqQe*DdM7n@jbF+4S1w=Dq#@NWepYJfmGM%Le^`-3tsR&Eh z!*5Yht!?%$)DIS$b>OP?^zy))o~1YPbFZ+M>eop5AaMiqQFZQ9MOuc(}4ZsvNii5D)YH8d*$6 zL_{f3uX2uZ1s)K}l?oXF9(y(NH%UEmkkPfPR4^nmgI76lScyszqFij;7sq5rH@H0g z^h5#mCOsQ?#Yn8Lr=jO{9qx2RFMp(HNkNFu&(f%$>*tBg%~rF4ML zqYL(6LTN`sC0P{z7Y%amhzv#o<>DKN%psr_Wo7Bzc%4Qzc&!80f`h97dsD3U<0Vl3 zY95BerUaL~b_kU8B1{yi)Aa;?13Upb0ZDGOSygpoBvG7?_6dj-prE0J0E(XyWIMUm zd+p%I`CfB?i)^2BtfZnb#5ml%K)KqyrrJ#A+2HS#{XQ6~{1R6ci~;Eew?;xtV^TGM zP>)21Je)`M9`;uOFVw@6>Rj32N~@(vjA20Ik8_y;5b+q(ift1VQd@p2(?65=+)3u@ zt+S!UshY13R53I3SBWv*^`(KNa-G)qJted7qj}QsH!ki5dl!vG{HVnn9n6k%_%)9W zx!kN0(JtxzX{mAZ6;HKym%vF{n&6YDVf@*2K5%~39zsl@|lm!GnGczAeC zc=!Jfz|g5%gh2Ek@3(dERyDI|?Y4%>?j8?*WT5>r(qc{sK-}A*^)AH56k&C5H`%z2ae4A zB8f6M&&&H9>l6Ls*rU(hznnflzK4VR38)j%0y^5{6H<-N$NWwQbD?*R79>`4tmXvP zb5#T|&wODQyW>#ryfru$0`Z9JrIP1$|10s3dga%vibc9d5z-~m;k{{C06Nq z`9X|YUP(a4)Y4W2Q75*}ctpLR1PXkC&ZJDMlsi$N{Whb{+V>?AzP@F}X|ocAw$)YZ zK9DoUEk7|`Um|l8*BOgmNjSDQxzKoN5Tf1ahB%%#GHHvpKb=I&Ih00p=oU!;~jvy>yOR9G3qX-RI2bn z3$0~Br;U;wJ_PpHO0cghIb$k5prHwO!MJkM3AZ%3?uA0m__gXha&hf}Fg8ix+DkkF zi1e&yZxOYTy|n+ZRf5;a3E=@GhM?!IXF82>;wwxjWilkHeN9B!aTi0u^5V8Mo>wBB!lx^ zQu_FH)i$zHsetNw&ogy8ZPv3}?dqOp%(OEcx`do?+$lw5m2O;R;a9tXI59Aafc>lK zY1WZ@a1Gi0pI=}pM*BPH?9&N@{q{zCQ_Ihi_PJH6FWYZjE~qW9ugP=FV0lH!Q|_0| zoy04s)~)L9Tn}PyO1&G2oCJe4iM^v35s) zZ4Su>z~qpv3!L-OV%0?Fg;awN;OtN^6}^!@jz)dN%0})MLdX_}HjUUvQns*nwOjbQwKydEO zpC#F6B2p4!VnKDh&{qPsXP?RI1_WH^Xc7d`t`7r^+B?R_6@ybXK5N}-7AX~uR)J&d z_gNKShf^r(xhauxCdB;}qu4y2e~LKvVOpqA>Ayu^A@V72ztg&u?E%>;z+?86S1Tkm zb=zqS^edX242G~_^Vu;H^1Fq#JqA!k*DG}QU1u6U&gGbiIJ!(@fx8hE{akltd+PO| zHmuK%EP7l6Pg4FDmle@&cSSQdowsTe;tJX=^A)Te{$z>KJF}0hhJG= zFC{dswVFp8PG${b7c?z`E$QP_A&>J> zcNg69&K2COZ#v(l$Vj?Q@reFudUORNhxJlKBBl8eell~Os78e4UzwmpxMN{N+MXLM zKY_2&^7luypLM&63>rT8-g{hKP%-rc-M4hTS*$-M=Kne_OhDNMzWL=JIxr_KngZ0= zWPdW!ncTPHaq3(gmL_i+!}{DUZ2i!+JMjLcEDBL#uRo0<(atyFji2$NYL47bN|oHZ z1PG8udDhg{Kn3+f4gV7Y0J{8t`15%SF`T!!` zb&&3EP)SJxh^`BvlE$ZT&1id+#ewT|*ueLDb6n zT&Wa3kyEjc-IHWZ`+>AZG-D}@QNh<-DQ-B%L61m^o9=RM`501R8Pf_xoV=25dH~|t zVPmBRg?sWr5h<@ia3z3_)T=fizO)L@zgZo~WH7FX80}YrT>V!^D1BGcoIzlkp@Z20 zG%p3WjQ#FUfmZvy*mXP>wH`}O}5V|?|NcH>ai7)xus~C zzC`hBV8)JjcJWu+ry5)=4Zhyk$QMr!-bZuXJlfy~RsXpL3hl{gs>R!d?QiT@hFz+8 zKu0LOKOOqan*svUYIGV5#X3AZjIf@Uw33@YhfO1YjH+ol3Ap{mPi;9HVFXG#?Zl_AebBH15t zY|cI*+t2ijKN{%1NPB9OqY=NTE8X4C)4F2`UkA_+HM0PaK4UobY7;YAWlmHqm1iMn zl#}V9ii=tVvheLDg|0BY3h}*%t6igoW3iSdx}a_+cX2U4r2dDVFnJnagS}@s60|1y zhWTJ#7;9YNNs_M5N{<>y$dB@u94G1Iw$qF*ZdvTLDP=ul{HO_AAXUQWI!*n)^#%Yp zgHJoVhwz5r=Rwk6fuXtWR%Fns74R_ftY_7~7a(sKFDFLKD@WVdSn{Ke3~(P5>zqbZ z{N|~$-~qKsc7GnN_TOOop&k!)h(y@Ltz7nitUcvrz{y+LlHs|ns^-_^sz3d>(Pd~1 z-$DNMl&ueg0@8tNNU`{skHgxpk>?Y$7A6t5zBK2p`cdDyDS^{lus+wn9UnnRNBLx( zC%wt<)z4Qq_g}9pd~(mOAn6wsGqguDHcmzKvJjXh8b^Rdy!vy$KP^0uSG#yrhldKdGHi^SIU$asap!|xY` zS}jk7oJwiDab>_fW=lHl-$W9$x}Qj;LDw`q+JPiZR-36787->WW*1?7xLHG$xtiqM zKq~($?{opDID5k}Tb>*EUESF^Um-mpK}M(l<>m`Nxqy$`G(_S50wDi6{BvjVPry2rKy~#V;b>uj4_ZI zpcCh|Q5Eh%rnm~S55(#KiYY5>2DAAG05XoZ;IMrF|eHkw_B%58g+DXmD5T3F8;2M6;t z)qWJxa2BlV$OrI!VLmZ%zJ4@TI@i8PE1WOpQCpH4o7?Ug{b&~$ zIcg<`S&|CMHgQoSZz`s0Z@yMnyomE#gYtPsXLnq)rL$iQ`*2vmAK+kX03AS1Lswv5 zeDpyBF>VwqXtVu+b|2Vr+D%FT%JT)eRr8|fm`UR*a40J|2^{Nf z0P@7=!|q=n>G4>{H6t}9DkOl#RiqFhWkzp*{f%_tR~asF z#D2%MC$u;M$dg4Zit`_>x}%_#FZ<7MhbMpaaOIT0`H{n6I*?^P9LRW(>bWZOI0G}i zCR`mmHc0-DV*gYZNi0*G2G*yWMprGbfs>tKG7z!vjLscYEn0hUvxg|{s3F|DQ*R5< z0~T|<4kt*fY-i+R_fM75Fos482ggV1Lw5O$jTd!pgL0&azWM2;IqcwEJ)qV9H&A8% z7s_^rvMP!=Z@cw)m6{e=OGxl5P0g1LPFrDg;ai2s=AaA=N5ExwGPj~yCW;EcID2}W z4|A;PRdP5jR7=BzuXQ7yN-1RMH)}VbkX&5ZgE{KxFSR)>{pC~nUR|@j359^M;v&4i zq`BSYrjPfJ6hEy{_}D0-f3JAo3vZVSks{VmQWft4p&h1jE@}Z%+z0c?ILJ=rn#U4K zZVtgKh_J-NShKV~h9_VwT#yK|NB$PAj>*m4Hl;!nF4|@3NaVe*43!`*#d~}M0#P0F zADbg-WlY}RV}fsvm^)yf{jGnHwQskz+VkQKin@dGSK?5QwO_V2m}w|hDX%;+13|v) zUS<1gjB8$KJZq5u13M=tiBOYpwbyANOE;SslF&(qNZLYNg`2B%<$H+;MZ~ihoDW<9 z-$u2(i}q-6eJEPh^`lU8BZDp8)!+n(o))w?UNi|#djE}NHB5i!dE?a2$E;hWdd%Zd zQv?RlqHh>!mS&4985_S?ZLnSHO`5r#hpvgZnCw_u#p?L0Zq(WkqOFC2)?!DXoWd0$BYT7)~v&>_JL}U-na-X&?x3lHyY5 zT!XGWycMP#Ow)e;u4q^h?Dbgo%`xlKyB+SEfVG1kK2*^>gfRbIbZ>#q&r1Dr8Bx!{ z_^91TjodRtlUOhEy62i&A34XLG!nK<;P9 zPMwzyx-sQl2k=T7XK;P}>hu9#eYw@w9;y=Yc{7{No{#jhxzgideM3AwFRyq*9 z{q@H)+%J8VQ5|~1HSayQsyZ$iV3UhQ<%74<(E!TSj(OU1{!4DGLJ15Zj@f@hBC(~A zqU1)$YME&sHasN)nGS(V(%bqL8Vo4g*eOs(^zX6|XrTCFxoI!-5!)6is{Z2F!qV$> zAr|?Rm*MWm7SMc6&~5tu$+qB~{{~5)e1MM85&5*sZg=|La(5)zXrY=Yl&t?V^5m;@ zA}){ZOlK_9m}14U2gu?v00pUX+U!mcrsr|8a8k@quU*A1be2)oLtj#z&ZGh2In`KT zyknk9BOd@?=Udv&wfNXwUC4o4vh;C2+?E#xx1FUIn*4Z#NWFw+s)8bh3y+G|+fZqZ ztLtO?m2Sel>K_mOX$Sx;15_+Q{YP;rs9Ir2<4zaQ_-}_%paKA+W!L4tNHPF4ff_$U z!dJ8LM8R?U3>^tM-S|HtR;T_y=^9TtIq}0uM%xBvF8AlJ#T@q#Pe7IHcK{bsYW21T z5k%BN^_$P2o7Oz=&KK1_u>S{2UieOsgxg99-9u>a3_VTQCv%bw_yHhx6Rg*Gy70S$ z=`r6|ij*jR!_Gc85D4|VkFog{)B`|ZfH2bMU*Pm0CF(s_et5gnSkO+lG21`-w`B() zA;l?lc<^)Pc$&*1J^w>x#jS1!=^3$Bp_zr9RN_B3*T_-u-bGn6%@X;HEvNZ za=1J|knMGK391=EJkM~nME%GZCjC2`jQ=z*9+aCHzPd>R6&ZzMeH0*xnP7q$1!WbZ zAS}QeclYssDZjf+P(tcnx7Drg!-c(agy*%am^tqBP<0Da-T_IF_Ko2+b}KVstEn0$ z*gk`L3W#mBnUYO1QgI1TBLSCKb*%g9kkB)tCzg>?V}KOEGjJ8Eq)tm?j`OE^TxM&* za0;ZEHBcm~Xp4^cH!tcfHFyZRPmAyWv4ArqzGmcEP{GV>kY;@(F|@z`A(+eLKlxIIDeEgnsu=)XQICkqPCXC}X*}K&2KwHM3V^s{)2(m7uo0KsLF zPy*6r|77{`Z9?u1kU~jcbAwX<6~vW6L!#Av`{_7d0ykqyU8A+CpX zFAn;qg!%Y+sqQ9~yS4)0b-Va06ln(P*PBG;bQllZ?Eyf}XB?>s|66x7yF zjg5`=ZamKE3`g058=+|Bflf*Gt%CY(3GkDbg`~IDVdI2Q_P>V9{p2>-0qA)L!0qmZ z$W!Wuq}k4I$B+gpuMN+~yY9cZQ~E>nfRPzRH)^(o6AqF)C2 zktNm4{9`>zj85w>KRC!?x*QLl@9Yh1-q@5x3g4Wb-dv>(O(6@Vl_)(9c|}4@_<33W z=X}aE!_av-GR<3bq$K)+blIP{#}%K~K{9rw=T@)bzP1921<&LDxX`UiePsl3!Z^qL z{7#UB|B{FzC3(xEcE5}@*RvCsV-9+3TWab>**wKbW53+MW zy%#jZ_kgzh5@JOFB!II2I_V-L8#m4I*LABm;^?W7)Mj7r5M%#+@m=yQfH!KQdI_jd zHjn9i=d33Ao$D-h;+WQ*)T!cP>Do^6UaLnGg26yD&&TfmUvKs8^l!Fx=UGcZ8v z*YWHo(Y)R|Cyl+ScZXv`*V9RkwYE1_A>I zB|I$zG&S@V<33}{^4-xtAG&e4Nj%6-R4E+KQ8s%+JU6j=Me|k%QXUA;^4eQf5&?Z$ zDzcaTCr4HxS%%4?Ux?O(<`v%S9r590Ls0j`0}V&?fNr;381I3lGM)rR7el$U1ZAub zbsS;$_C2-1FpMqQyDI1?&F%sCB_*%Z1eCv-mjB;HkBjoawwRtckpHKMFCl!E z(CYK=Qg)a16xYo@7`fzg9crzp=(B0G#IH9&!1-}>^G95%x!&0O+4i{rAD!(V)GA`{ z_f9@;zKst|6y$uAnMt+3zYkoA$0q&y!C_B0GOnH#|?obpLj{`LkBa{A&gKa!W{>zF0y!d3NllS%XzXmuadZDYDq327a& zB_wTKUaMaQ^Z0V$aZgNZ%NCFcfyyCF(wAWXdsWCPS6mPEK260!+2PaXV|1cHkT7EJUH3pCCPS!i@c%L=MDh+M~H&b z!8g%?L~UvGF=Pl7ZA4to~#! z(acZx%0SZnUZqKR0qD>uTw^^Ku-Z?YWi}-G#o7DHi43${{saV`@$9F)p&X}&E7HO~ z-%oowTG~B2_WxT+BLp#n%u-OFwtsej$9#1_1ZDqeWeBCdBb|>}DhpZZQUpbi0%zC< z4hlK20bm)z3!avw#*SY=6_o(Ns%8q(V+lMr{GNzRvL0_m;;EWF^-t^1cC;6M_{5K# z1wGn*h~;uh)65Paf*Tu#YmiR=Mg{yEr(p9{%6|gU2#B(g?{PtOU7>30sYKo{KkOyV zpl6=2!Zst=svEa-K5~X%Fi-(B?bCVLk0Y70qtxo4K!XSX45f%EY{7H@B$eF$?_&l| z?Y$Wqn&tKw_mB4S#YM{(@rh1A>#aZlh+ub2Cpu8VW9abG#}k>ER;G7xKleGcF)%ua zN_TYXK8A*0y?RCYXSKiBC;)aZm&OD){!*)wC_^rpusfA0*FtB`OW(3oz1X5)&|26g zGbR=maWlYxWmiKv(GaT)B4kEa*275 z^mpl#g#{T2dxB+!$X&^ZKjX9Z5!yW9*J+g$AKKtp%QQ&e?UB>NrRh(r#0Fg^{nFEY zViGc6sCzANu)^0h44m6RQBuYxQRZ-2aO^siqh8-vqK$zi@S6YV)|61PYaOHT8_8$u zv6*NPdxq#?ySR#Dzk^37r(tAOT@X7|CPMc0%~JGo?kI@kRUHF_Q(b*M!`4C_zRUhuvuK_#72w{=1)4 zcN|wJt3YIVOZQgJk-?O~%0)t_If!8$1&!Ux=3>0E_F2}USg7Ec8CT*HD5=g(s%^%c z!7Y7m9yYss15{IOp-FqcJ}fhV$tN1)PxsK$ne|TkV?hgg5JF1+YB~ofN!rt?kP>Jj zN3s#6oA|J6n(v*S&0IMugtTdsiimx?x21#WWTB?fI%N@Qcf7%aFWBJo#5Ask&-nyG zo0&sEP3fIBo!VX1PkHG+cZBFw9(Y|ka_~EbLFguZN<(LFgVWm0OTVB9MF3WH-1s9A z)6$Ea2h!4=%M6u@z}S66@|yx6U{#(MX^{Uyl<1NDq2$T=!1v;$`4Y>hXJkS;!RvbQ zp8dN)Sme|DR5Me1*gxDCe$b9LcoDrYc^%Psx|=0exZ0y4Az)<0xO!wDig8TBP6|rQ z!t7FVbfY=dpLyJd8PLVPMR}wfVllwz`ci1!i=*-d*p~@vrki|cTv!*(e;tbNMOX9B zgBEu}OTX)fGmRF)=u@Ai!Wf>A9|V>hBlP{%&Dgk=IN$fgB(U4@xjSAeqbDq`3fcXB zW1hM~P>zNunFAofREu#pHcP6XAyOB$)AZ&FHb@LgkKRJcqbrhBl6)8v7_1INibP;j@Ggwthn%~ zJxZf}+d#cYq|v!}MEiNi=CfUYyj6J^9K9{J8bHbuWc+)9HAR;EZ#H>?;wAA@o5sR(5MWc8z6tvdQD+vk=T)6BIUc3m`*)&XQ$AI!k z&B8ZL#Kw{sYM)jCR51Zmf?13f1p+j=MCkIsjK?Ow(w@HFs0%fYx`Y)bI=UKG%d*GN ze}GJnUuMJ`v5>R>*{{9DF>$yfzoOrC2*|$OQKpu`qG{X!QeG@ zNV409BzG1y?N0+*?IY*B)?Vlb1thrEUg@o_!}GYa&N*_`qMZk%0cg`pHc~;Qk`ViiOP|bIp_$na$0xI}6 z=P5&yQ=)h?6*K>?&s07Ho;btUdA9I%SWH@)bV3+fgrc>y0jplar-ivNsenK4e>G2O zjMteLmNc7sUng)|f96AZa}{;0U%CH_$Pz?%LwE{=Tjs|~hjy3ZdO%0Sho8T)pN3Gu zK&pb`?#GYgRd$8AKa;u5{fo3Xwmt-BxE+n7Ta70Ku?IGqLg%@!?tvvVhzK4+TJ6owAWD$?*z}! z?@?OD$$}EPR6d$5hhTYpuaiE7j%GpUzcjOKdcV!kg2qeYov4=1*V5$}d9`L5xS&e; zx`sOXnBT(n!ZLAv(ysFHLdDXqannE1LA}mh9-C=p^sy>8nFp4sUcf;rWBypEQQ9^$ zBj<%_CK1JWA5`nw)%7zV2qoSN$D`(4T;XHIHM;C>T+^kGftI1-ksvyD0+M!@OB7k~ zb@28hXUF#x^G|<*o_N#wVpXrzOY{q`ukE%78^*5w4^m06kA%m&;6gUG{j+wYm(5_> z)#G2S8dZj>eH*PK)edXqBY8>$$=tS~&On?P52PIaOUp_i#Z6y6>QazV($U4a?}dnZ zrg!8KEXOmjFxRND{Z{pW0!d;h?-7Ta$9nq^CxgnbYN2bHJ`)StjW+h(m?Oon85RLKgM|^Yx#j4j-D|GY@jI3wnqg3V7ouAVSn1de@^hJP) zLre#{Mzd;1EJ0Npzv23+#B~4}s(y3PD1C=6lk{jRw(V<^dZD_L=g42NrU#hnaRO?E zs>a+2pe`NO;p&5Re*CiA$JRcRP7WgV>&$b2Juo@1g zAvXX!auQZ;c_RwyIn<_=d6|O(0=7D{j!ShXUeIe*)HR%L*FTgVDb}6PINs}e&xEgY zCFUtw@*V-))h~4@%bDxDcb$*lbM%t^_?l_tJSxTE*r{X<*5>Wb-dagN@i-L0eShC z7yCK5Vq{cqQM|(-kmIhM#-QuCXf|-f5Ub;5@0ams^~3G8t9Y*;DUEbZ>2#RIB4<>w z8Dj0ud1OqZNYvq<_9{I^EfmL9CKvMbS2Cu{v`ycI0*1H}#)V=iEpt9MI_RznX_A2! z0Pn02$)tfvkRwvWo2x*ErJ+G2n=FKt?qv25YFWbV#Txi%GfP~aVe$7%uTFs#V#Xj7 zIW#hXGAwWH7TnQ74Uufv%4jupd&{E-qM(Dx=naLS_owH^&y3&R==UgVi7Vl(Umooi zbh4CNtWXM=j9|ZipG_9l(V@JFKXd>J%-&v%ls8s!ao2K zUa^ox0kd2{;a?UI1!p|+^B&TVZhaGsTCd-3R_;j^(@RQU~ogeKmpLmQ1qXD5^pnw$cKNg!5!hl0YE;3UU-D$We?)vyZ7dI^lOBmp`; zY-h^Za67@UC$yuiTWltOcrEXP;K#ckLG9D$3i+9O2R1tSv-|fRE{}Po343e?r3tpG z6J9Rvvd!`=CSp@4sXC0t2L)94q`Y*yAX6HNu?*{HGq?>Cc{~N6-N7&DpvL4wY_|zp zP<|Vh&HQQaGg3x~H2|XMW$}Z1FMia1ki_rZ6|)-w*e?+z!lz#z!_9!*4A=boe6aPu zumF9*0h#SK1R5@ON^><{M1h#Q4>dG2xa7+*Q~9iGDk_TBb@W5v<)h^;bFI>#mi{$* z7G)e;k`6c|)Q*_zW5_l(Hk*nQO>V}){0*94Z_zfk(dxn2b=$eIAV*NT`}Sh^kJ@;J z^)na|Q<1oKf2!_9{(DTq=f_9+l`rkL{RjT2h$}H973TN{BnX;DR&b8u3jO4w&X68Q z!y#M2E*TUlitj+G(VJ42W=AkfbPziqjWa-=vi)X9nV{=_Fzih(dif-Ls8kA%{g`N^ zLni(?D6sLK55`wq8jkYQRJ-pxo^_+g&@18B z+RmwY>e!89#tB%a?+Bmr-v-gtsc(_ld9id%RLS+^`zWn? zLZ6MXY-rwba2xPQC=KV9S+yMHY4Gveo4y8Z1nyu+$(eRBy`f}9!4<=gbIEc_YqJQ}s;jrcvs#|Z*_>cw%I`_M%1Q0n{wtFQ7^8Jh|?HYFJrRvqx zp!}qmS(`Q||D7RWBs(iSuf1iIh_l+Ypg)OQne{A*K8eki{1GVL0z=PT*WRY^%FvAz zsxV16@s?W<+^zHg;qrGM4I^DMTZ^w$(9>|)6qzm#PC$5QWdIgZ37fH@nF{(*(nU!0Cd8$z`TdlmecWGgr>OqJxX}fvq=y7 z^0s(1eE8+^lPHuNj7)7Siks1NSc|Z(Hv9AnjOlaQy&*OY$-3O0;807~%(p;SU1kTj zL+a3rl2gK$OE`UMNqbj^iZcCaa*dVP(2oGPfG*C%zW)GA!?f8pBOq_w`$tOx`L8G1 z`bl5}rC-Z`05##-eLZ!wta%E=>GYRy0LXS~5nzr9QUNI^)szm7S4>fn*BysM7JJXt z;aja}rJ$0(^9mJfu3k^{dtVyYo2!{|t|S-Va-n@EC?H$rgcLV>`N$2V+!vW>IH^fl z<$oTWRu7-8O+GMz3J+WJl zIo$Iq(g52n;*K{>1TlV$By9XWR-00BKlab5FiE*_7db(+obILset0paU03{9@uz_p z0IE@jv$U@iN(XZ36o{g8WPaxzwNC~hfvg&*_vSu64tXYuLh;PIpT3~3-e{#@j@^9( z+cj4n!!Fh5;waG`XRgYvQ977P%O@K&7$)PgRF{bDX<_7^hMEo$Fd^P{9v#>bN&r?4 z`Ht+tglV{7sM+8M+L$88s44#H&7cp76W1i{9Rcod{^PGkGf(X{X+l)8K+BjSg!Pm& zgT@f(9>m_HpBx0?ZfUD=$GqPJpPaAlsQpzoq}3gB*_Bx$Rk(DU z!UejcG=Jc_Xfb2a3cOkEd!m-(}3|$H-pZ^2YL6rrD*vHxk9!3r3(k2WV{iClxIn-VgqWAw<-rxvJXU8D8 zo+~y8#bZgYw@+`k8~8#cIFQopd;YMc>&thqnD|$Y$D3@gR3!9NN;p=C8}A$KNvs8VBjX zqmAE&zrH~ky_d`LOhI09_%Sp@QQtQFux2$T=4lBx6UtR669e0R{MffkCVc6<{ng$l zqA+_MbmksS01>FbUtbhsSah^Q%BU@*AK$s!KD4Kd3p>DlI07nS?5u~1aQK`yGcY$7 z3Hd<3s=k!xI3TE@in=a*GaGz<*cw#nU>~d1qEkCy_Peen3H2xW&CIFrV)~7+f9P?G zKk^q86$lLOAgXk9Gv0``{<6m*d?`Y`Lt;11Bie3YNCem)9QRy(5yR0TB-lRomk#Jmk?Ol4HUS9mf z_r?>sb9d`J4sl3t;ITCGt9P;JX2_zO)=%MYi^^jvelexOlD`(M>z@vtcDOVG$?Ky| z9V#e)HE16m4z?l;(!B(ZYFxLJ7;IZFzuUI>AbhVgrJ_(AK4s2@7V8Y#w(jKo%91OZ zExuXUm}qSQVNoAUUVWGTSYqy@#a}nBrd~zDIzrdW4$Vh@NT@8gPM3qooA{5`qL0h3 zWqTTJcB!c`UOeSxjWT|~;qh7G&Rvvg8ti`I%ReXmvGBk&bP}vx^k#AM&baD8bu(`* zfA~?Eg> zsV2Vo`7F(n_)RH-Kr#rEOgUdUTYgf7W=pec8I!E|hWwF<)RCtU({@z}Zg^GT{=v_m z*@w*qy$>=uI5-|!tBcRre-VZ$WFo=aPXO_k{y6zS#ZJwb(6!CT|0 z@WZeFZe_=yH)pq4Mi*4DIxhJzN3=X=x)A$Tm}%zfj$mPZNXR-AMcXS{8>U0CwelLl z5`@?Z&GGIGzj+fH&pax}qf68f8wI`M{QJA2N^A=8v*4b0QK)e!@x#R#I=i+7>|gIO zCudIR3>!B^x5hog51(n`&&gR&`Rp{BVKFfd8vCQUYJS_w%nOo|vV=%wih?E~$RSM( z_!| z=4N{&ml@%8TwTj`kjs#{cf2#qaTGYW=!qr~n$_ik1HBQP3fu`p0s;LW`$OfO%sk}b zN+g=CiOfBg^!yMKjhBiag==W=t4#-HlGTUb3z8IASesm*LAa zldabxg*NlseL!Q9FB3?&AI!i9)J_h|OLwm_&zc(Y$*pg@*Ar2SBQ08E`6)$Ig2V;y zXJ8ex`TZWe4^3N5CzW@uy>lu~P5t*5dt=pCDjV{YYvXWO9QWs` zSAHipCL!+wz57Nsk=bH91EWSs3b4k>9uO7}M&RYrSBnS&pL31p=E~J1$7C=qH(MsY z&}N2@uh>>0mi|Dd4745OzItg_@tK03+}&K>!s1G$CEN+L+mx1i&PcJ{#Zm#EYio9T9%p=TZu7lVnYDn z>_02iVlxwH;MK)<-5r^g^wJ#0Z9V;$DLMG916g}4Jb+-y72^E6!}ri6WxcL`zM!F>b4~#el=x+oKLdj zz=Uam_Z8p8e%6iukHN!1vW%xv5f;ncKKXBkJ2xk@!HA4=D*Rb}hhqX*L`1|pf#>{z zQ)|YOy+6RYyn}@E07w$F4#V3IX#|w`)#g=9r#55!y(Shrv)0@@-Q520ffQuK&XJh= z*8*Mh*=f?BDC)w013z0&r|o6ZZmO#+NtH5uNL=cQV0!-iIsRF8Zt0j*x@XChZL^Y2 zt@SX+pirq4c>~Xpfc)0scd2xSddCe9#GI3_ldw4&!FiR?8!`9~}h_%Hv zBZ=F*$m{ZC%XaWe?5Rzw76=GFyjQ+Z>phqxs8DIrj}cIw`#_?&P&P>4St;*^jNfJB ze9ho@s>>`K%nCO@DRRr))1fl!jC|^TQp#pF{!3=0P6^;N>#-8}ZAI2=+_sEoB&OUC?o4M#qZdC+LJ09E%a7*t>ylmB}EfhW8(FrNYBgUVZaiy5K0dX-B>!TK>UYhG)8tjIJXP*}q2e!kPC zCm3ul+N)W+c_^#2=Ivu>daIq*A??%^sdlS1rkQ|@&6?0+Q<-#L_MO#!As6aw1sh^z z_Fx3EZfy|DCYR0iK9kL5P{j#|G88MS_owkY(KlF~OMC4vp)#Y*9I7PMDkaBq45?%A3 zy;{!YsE4A1IN?Wl=JZetF&53b*R72f35+pprRNU`Q_(&sIA!NKF|`n+X{U#UJrd;k zL#ubyXb6UCd=Ft#ZM)K}y*}NXU^%k-{R8Nahgluvw_9%mw%(~NCJzUa-IQ@i{_y9& zQ_H#Z*jQ4&8f$eKS0VQj(!8SA{_;ieCS__vVMlj*YOR<_I9E2YM91b@%q**X$$KP* zfkR%G!TnSaYwPortum-c5Uq{SsU0?O{eGS~HD}(?+9M;RF=TfBnwT@MIm98Rq>xpTIsmWrVuAp>=i`l#gG27&H4$~G)GNGbS*2j5N@%q^AojC-=LI)!Tu`M=! z@>|19`1Y8Oe+eHM<$#j)&FZmPrH$X&?*uE4a!5)wB6flQyUBFpt-@h4pkyQp?}?K` zG`q}sFJhdW%TfMT5*qN+e6K6w5N52;ck5yqb2Wm3&4ws7{!r=xrirSEO&idz>pekd9YYoyaxHm%lo8!lV*q%Ro{u^R&A)R|gKF()$oj@F{a2mfi6QbaSn%GAVrJ?Q^oi0>p*%)1MFS$6}+c`^8osuWX(x zX~({YJq2t-+C1*b3|@M`C$B0b4Q*TuuhOtBy}fUOf9vk+7md0@-JXY_cQonnOSjkZSwDeOR=*+BEI=+F4{3JM#{Ir;I*jyG9E$eNC812M9f`G4QUjAaIlOWsrzPIM0}F3yu#E?C;nso zpIFj#pgIl)m`fL{vz{cEBO?WZ<%wUQ^+5KlClEZFS%$-m(D4McE*khaIMz2N#bnZD z;f4qYPN`W8rM33z=a0ps4K}pN&c-AtDM0@_A<}0c<5(Dw_QG!SC=5KqnT{`$M3%q} z(W=6)s`N2&H?_FX0I&eFs&V7$-k@2Dja(sPLUh(EU0o|4VPG1N;Kw^7pRe^1$r}{)MPf%pC*v@w2=ZZv zr#JbB1N<`KBwUZK=8*3nX|n#(Ez=zRp!Gxmvtg*fCBYj3Ck|p>l|x&H zF7p$_kx|Kyu~bN(hzd4%XxrxatOV-!M7AHppVjI$I;ToD--PfvTjg3$)oc|kh>2;0 z|9P$fR-2wsd;*?)UJVeSR6efd_Uy^i0qGIuuylTo$C(<>NFerWq7)a#w?$Dr(;Fu{ z@^H*)ZAB*cPBl^ume5~WpIB-q)ow_1ddQk(w@=$=A)%hBF= zfHaHkH}xOjbhg@R?Y4(pcz`+O5=0#>@{*M$BlHm;-yYGV0M8pSmwuTGI=5yru~NWo z^!O!E)6|T>LlJXm6G}qI?q$fGO#0mWx2j_fEE39opg|~yh#-k4T1fWnpaE|aoul+u z`}d|A!g{Ti@miEz=lg@PmWvA=FxblgAjXG!OPeyMt{we=9qv)2Vp}anzgg_|8v`N+ z<`)!+q4kx(`Vp9MHUEgs2-XjdUfOxj zab$e~7xnZLlLHLO<;Evby7P(kn5#^s8P4{N2Z#L?xUDahA`-L&2UsElo?;5mPQH1H4`#wU!-2+4=PU^_NzLx$O)J-DL*OIsvG zTU|EmiQ~E$`%A&AB0vwm|DL&OkuMt}KI5UJqgJXYeem(6Esu;#8sLQE>DT6HU?WQ(hH_OA^JmH}muuv`+P=)ek=UM&Tlr zPX))~1Xn(tTtAi%M<>mfH~;ZHh55D)83w2c0UKivNyT4>d)kW97qqj zvEJ3}pKTbhUHi0mL5qJp);+kTs6pgpIbWKyfv5(zEFmKcfFwr=BuIDG>2E#!j9~Ch z{e00{uy=!dT8pk=YjBEZzZ~?0N$QRk&DTdJo3lmQj)cYpC`N$l#A3Q}w}+$~Ja-J< zZOG@FE%^COs;eZzj%B)DYjBWkt=8dN?G-NU!uDuIns#GA#9B4Wh=F$BQ|Tu44(n!u z;)p~WTot0lQ*bHy6B_H=R}p7^MbEgQ=^S@L!4LPKyOEN55g`%Q^>G)ltkdaVn6_6h zAA#8S^@Acx+plbl)N`TrV1xQXCT{nHG6FibD9~2>LdW)o|KKv$JG&2_BXZN=4j<2df@&hUyS4$dIp9!At52a zC)S|EM!TvKLJZc0WhL@XOiW}NlzHFx`~GXNudnZy4`_pC_;o9?Z%MnwB{?neI5qNE zNp&0Wxv{O)1tz$wiOD^5NjZwR!Of@m#}nVoiJ(*Q-_E+PZ!uB}hD3y^>BdKM1M{V8 zy_!#ziM(J}R{MVZly+^&i@wJ00ZpTox6>Yjv+J^zWtDU&+`fFzJvYI?4Ly9 z=$3ACpA#2F@NOcWZ8fXs@IVZIdvW@nH;}rbd|M0HdS-DOL@~jeR{8FU4lPYgXjj`d zlBWwzntPnM00lgSAQ(rROT_LHxu42r^Jt$pr1Q zuLDvGxxb0xK!PHPTif!~#^FnHu^cXt#^%JUBg&OV=7Nsq9zV}RA*dKc)yG;zd1M~rXPOPlgT#9lZHX>YV(40@J!R4i{kA~U* z3k&f7c^EW_vE8Zs%UsW0N)DZ5aKJ4VRr~T77=$t|*=%x?Vx^g=(rSm2pA-0~iO_GB zx(%~HTltSt8TW6Qfd8HV1x(wg+|%`9OuIU0YIR4Te7cM%Gmj)^SvPzpNp*N{&}vop z?)J7Ncv6Fi^i^mlrNB;-8JeoxE`bUy;ay=-BBaALCSp{>tp@gSjAG>eT&M z0<`u-75vyU=-?0;=ez+|fniOeN?DyE&jE$*AaSF)^5M_8eu&t;-cTWVJn<+@w9k%?>6VGNayY$|^oM&3Bd=3{qgZADUdY?Q`PMW2pbn=cO>l%e~CtbQRi7E*zq|ZV- z0foO)?MyXpcVZ1ifC$L2fjRzj2kY_HVO}+7XJAd|F?GI^jkMmK*;kn#Nz5~L}D{I{0v%co!kPL71)Mmnz?>!1_fte+(%;G8&()`ij6 zI0N6=)!c)Y79}h%h`I?xa5iTqenWQV+XC=R`O%rIx0|Ag?n;N>KY+eDbu4o{`+K9j z!bmRyh;nzU4DM=bOa}*U$vJ=qtps$R|o4Vk>Bm$ICu5Mn1L`7sOwX0~=vG5L*J#AR5R>xirk`e{o>Z zZ+Mwz?9cKP)cc3m3fDS*1ak=jvutzd`{XYKK{H9APjV9Xb~~Xr(96eL%NrzsFFweF zJ?8arzE!m!B*6;n*Gp24TM-mnW~cA7n*d19xE+fW++v&9}2!Qpp#37c>SMh{3LzL>)SXVtm!Qd1YUSmsc+93Mc_BO zLL2As)ah$x<<#gyqvm*$GZ7(z;LAy)jh8*uIfFbjER`H7=-@L0eydy+;re&*i9Woiw_{T$K)@Idi#Sa=TKXLvq%HBGx%I#|x-Xe&SDk*Ky0!oL3 zAl31%Y)M)a-7sRHI)mMKOFJ2Y38!peeC?w#+Q;%81M>-zqD1JSO z?@3SItd+t)b`tnwH8@tOQ7Kfc`L480XM2_}FLvnRF13(IK!!8ZiB+U`q2+3OefZfR z_hid65VtcFJPd)>&mISCrxGFhlr`M=$^u|Vut=AI|Ktt5`ga*H_6di={vU--k3Hio zA3oW$lq%f?OW5#kLw!+fTyp;Hg?95PR@%HXTK4{yHb?O*%lm<>;-ZBE- zn-^T^h-vSdP_KrV_UN7q{ZZ|AfN1itj@$%m@aIZD4R{HoG+=pt66p`1*YNv<1773I z`%F#O@C$MM-0O?#&h)zh67>tI-Z|i=1f)fubymut?s{>9hR2ZYz-lq0dH-*LbmJX^ zTNY7cMZQJ;k z`6t2+gjkVUVpU#KeTIYP`sr0p1F&?%vVA-FXjMaXHP@+C)$p%L;|(sSNo6jis8?A< zry*&z8n??$im7QFnWh)!Q>o7S^p=APOcedox}G(M;busc@#7fH9=oD?tc*Wz0Y=<^ zIY)<{9TTvBsaqej(8pNsu1e4JIFJ@+WM)2~XJB9fT#TO>-ERN!bJ2Ou2-C$^W@f?O z-;VF#U6T+6<#>sUT-_R}0lGEsZ+$7doh*hmI?L^nC{laYMk`NS!%nZGt4Ipx`u4#* z=ebzB{I)$J(*O)L)*t0X?$(@N8c1vZth_TWZ0tFX&P}+j(}6?V^wjvwTVFHx#bl3W zEOQ}6u5IPM&XZNvtdvo8?N-j6!g-B!1af$`uto_pX~-My0mloB9x7bbnxQOu?6o#v zC``~;jRWr$GDLK4eM>iPg2QYz40RVDYLz|BSrY2sIw&w$tlvFnmQc02f{JxV?H>g# z?cTtupMAtn^<8THhd`TnKt>7a{?f5uA=jC;py$BCK;WV{H~(wpe>5dhHRmiTLO z=m#j7>)i@5#r7ZbbWPnjT2a@X-7&ah5eU~}N)QSw|K2AdC$s2|I z>{=LjYZh+Lh1Hgo9dTH8&~U}~{t56;pGln8jy|HEJl3w8TU<{IXLwE(dOzwjQxtWq zPUHAk!EN#fKl^CR?%Y#0=VXu{PV=?kJH`NIw*?%ua;!=mzX6cGV^p)cn_Oh#341|GJbmf}%h24js{ z`J;3M9G*=Qu~_&yja9NRq2N8Qr>6O+Adk4!bH7)I!w#ZNTvRGU8@&do7A2wAS?1nT zZp949bB_((ox;uMmFq6GM>uSE_V(;jm@Nlicx@Z_$un6Fk9LZb5Pz-kQHNXUgsX7J z{-iNXR2i7Rnk@`$xDoIXs#k->WzinsF^N6M3J!lg)+ybIGxHeRD=DhLGkj{Huc@8q zfTa!dVL#iVTsMfPsa_B|;Nss2${3}PAJz&PLk(Ie%xaH>Fm3uu*CxfRV#f|o(iy`3E2C^IyLTEp9glSl@a*C zUxw~u6ujqN>s;S)PM%#OV)cv2Wv*UHiY?JefqOw{>wmW&LR%wAv1dg1ofV>qQDMI8) z`PVm|P$&)YDlNeoq|1llth=ijvbJT&tf`6aLp(cj?{UvVQn)V8>sf|?40fu7P`UaH zm-~Bm>K&3K>Upxj0vHtibs#A4fqaZ{m(x24l($5$zydPv1KK`}%_^P}Llq1i&cYbF zaLZi3^1}xC2n88t2vkCQz*~>@f+~36z`UIKqX|vx3JeEKi>9-EfJe0Uv(cmRm_}lo zA~5f&vOjVrk%TA&1TomdWRfr=g#M8(tH!~zSzL|1xA!sKIupp+HRI)YG>|Xy?{Of_b|{(|V^!LIZ!@}2)>$B1!fL?>E*tc2$kO8s`t1KPK6Y!S z8no$`=tXR5gu`w0G=0c>YJb-4NcsQ=aqPI^gw9R?OS_sW;&GXs+%33^}p6>6EIqWGITljQ4u$2CCgw#;xjOeDv4gRRByGN*4kUgOY2=# zQWj=}ad3DJoc`s8VOddo(ry=+$I)6(@d1r@!)n&v(CK44%kFL~%?by6IRAxU=h-n& zVbXC7%b+Df1SXnc9K3HeKgT>)`qFusALZdzOo4n;ojT?DV7I%lTcGkxA_m1RQc|%u zsnaQxd$5Hq0h8)F?iQ8s;9h^MlGTxOx+o{h$~{s3s(RmU`expXgBFs6-7X@=)r$S@ zNn_Xb)VOY-q107&eGY#PbJIZuHqi3oY?jzg1rYJ*wgwF&kBdhOKCV`59Obi0vbDN> zHtg@(lb1Nt5q7HI%I=|-={799F6`xfzgy?Lq<5A-K3S;yqXSk*bj-u5QC@F`<)x)E z{G~rWUFG#`I|gP;K?_F)es_vQPwRrHyL&Q9 zJ`e1D7#FWwD!Ol1-06-_fRz%f&tHo_Oe>=PaQaSan8vtckyd<&ro^}61v9M5**%AD zqt1d&3HV~Ymv_^5+4M(cp2+HS-Bn5#VcoI@*AjnF8hQ7mMbYT2C zupsu--N1rJkEqfX@qamps&k*>^;8#nm~VS1r+jr7sGj3KhzS|;)?%uDbt>JUEksqW z^K_+csLYaJIO-&%=SvYh=G8)Vr_yfxiCiy;fXwW4PIO@&8_z3$|5#s~ZR9zinbqwp z+~RaurUVMi1h&cvm}gL`KSjOp6pp0hCN+V4q3-1U8I? z6szbc>-WC%0i|xJB>Iwt;8HhnS(VjBr(BIZ7*atQ9+4)?K_#12*P_HHnctu6A4zZ4 z&;D=}-|@&s45q_PvPk|4O63|$^Ae?p737h6v1@J2{KC;{f_W}_XPY0c?=a#@I*Oif zo+kAy)?qJskXUXk8S21Z>zw??f3j2mmg(SFOLVAAya{Hfb0OSd1}2QN{i>U|lQKky zgQMNcByVA$7IXl+Wh3An9#bIl(p}jR8Rj}2@x{mWQLF6O7>HdclbG)CIPnAvjW6om z=2pO&1!ka`U;h`cjN3pU08khRl3vRQC^fDv*r5PuPydGz3c#tD=Dn2UDJ=( z3PEwrz|I+B5pKS}E-8SEcGIT}MweXM#5(0}rGV(64e72`nQtO}X1uUgDNSN!kY~wC=Ln1UF7rbgW03Ry25ulq_w@s`qvpd5!v$XqBZPGhk>xLX zNPJ=s1Mxt(R1x!wmdAY17yb+yq1*`uqR?LG_7EXH$3tdZkrrr2cW%phDwB?^J zMOE9Fg`0maxqM*Nw808xgD%{e2 zzY0;@fFXU!(;Rm>Nguh<)<}!z>X{I5?uH}WMMfy$61(^zWiAqb|kg|V$RyR9Uq6M-wWbm`)e6Y}_aq8vdE zf3H)RL{poo59Afv91w$Pk+Ay)Aj(&W7Nd5|kb}Za@P%G-vXFC=7CxN{)Y3Bir`+`< zX!FQE83z-XPc07*oY$hnE8Bo>$-Pu%z&!}Dcf(L$rxLErmby#Jv+4C>*$i?LN0xB@ z&Fx!Ex}2&Udc)L|m^hH=;QiaHXsgcvwnJf}5{o_zj|>{Ws_cT^!K}~mt>M9+#STDZ zdCu9i75dRZx!fYsFK@c2I5zBJhOe@(l`)3@k1%Sr&$RBERSP3P)%&Ngxvc2}mA1@) z>ye9({s%VLNQ0?*=jYu?&T}ub2P1#6}6_0+=Q(AGyl)UH%_3p%hRxIs=7vdAReUy+GwcAKZpFw$)R z|NYoz&UDwKUz;s@D6RDN{8dxpXCzV}5TpnV9<<2%1JmBQ4aQf(00N=Cq+TUPR)pm||_HZZT_pMdKx z@d)i_Slc85M==#|>m@Qy){K&-$qjFy!5e zceGaH>0ZCCU(p5ZhRqApk54ezEMWus{^K)m8kqq&2s}k^+!`pMB6X9_&_9w$AF&WG zbnYmn5}c2vstg$J@Mev(n8>fj=U0DHBY=|wdfIZ?hzS?UL7-}MaIie2l>ZCk2nVd2 z>9sQW!l&UoL>Lud&BmlUrQ9&5zUD^G%^5wNfiNwJ8vQ^2mz+Wg7yRYMPkw}`;$fo& z;r;5r@ed1`6j5ZMK->DYBNwSsi0JGaZ zT2N&#mzLJ>(Qc$%QdU-0PC-G#)3X-CPi#47uf)5>gsSsbTUQss*_%Bsa=ajKQ&ZER zbM;E+a10Njl;pxdA-)wmM{lOB=LBMOI$)N)A6_MY$HCj|e_p3M1m50b8P{qlZvKYk z8K=cD)9ch(YNo03rufgVt_wJP`H$JFWIxL=sIB+-zZkx$rM3uU;}tEV z*TLkvuH<0e#<)`FZp`t2vHDQeAz^ch)w8~3|AZKS5fiz$btU}MVF??4*$oUxF4Bd?h-FY)R3jHB zqe92t)y6q8t^)qG1h#}W^pIePbAO_zgNEFnu*N^=(wL@4C8}iQ^PO856#$>c+B;3% zFjJ_fBuPGe{Hhbpb>9#?K?xG<{eLR!;xGMt{6)9kB(kQ`0<32>pGd#g$fx-uv3|a?=eTRR&hL zz6GCvYJ>gqHRO|*DwI6Aswu3J_zCZ1vp|W08{ZNlHBNz{u0{&<(?h`9c!3EfQOMU_ zJl?&&lN7xVjc?Z#aY6KTWi3`NA0~@+#t;@S3Ks56z@-|hp(R10Keg04beNNLlWBQ# zo|4x_RZZ=~Z6YEPTH0bUx|_$Kzbp0i9ceB{(Bmc1V04Ce%|AUgK0ZGEVxUleKH7`A zv#W2+OX#cGz`KBs9KZiZb=<00zoqXeeS0Jar-1im( zjeI#YLds71mtbV$b0`NAd58AwMSo9FYH-VY<35o1IMv< zaEiN{qEb$G_gnz&`O3k(KC`vEgE@i%A1*%)JHZaOn-#kfAf$&rRH8QYQ5)~yOfCW^bn z!D!d|43b1yMn6Q8ax=HDv=$S0;#@;IZ1UQsy0qPx59E|i;ng5{b0ur~tn`g^WUx-2 z&#+32rJD3`-IHcqwmyGcOk2U4EFkb>+46~Zc*+`04p^RE^0ZQPtp0DudddJcCLx(< zAVe6{yM+EEtsac=)(zxn8LzvpQ?4hLtUbF!p9fQG3N9XsxIcQlgV0urX{{HzP5u}W zo-n{voEhL7S)Dy71D5oD%p5-&>i>atG;mDZ10z6H{cT}gu=#9eVWFrs?V5MCw&Spq zZ1$nWVX2Gkk2sUMx%+!ds2qCTy`dkP>>JU2lXUhMlIt3b^xE{d=Oa=j`Gx@^Bfc z786oEJD5uYOBZIu`Wxt?Z-V2m)b(wk4j6kf9vqt16y*9htXJ?Lq@nWxhpY>)8yC-F zNZX$x+oF|`2#FfMgSD?)t!k4s<&!mJEtJM6l59Bhhssw>6%&Ht5AqL~*gZG3RY_-s zpq`_>HFFE-X^*skCmZQiK^H*8!q5;@&r3a#U*moJK#HxjAQh`GZ)h-8C^btWv>$oC zNh_%k#hF%?XE% zR|UkE-29^7_*P|CMk~AMd_!?O(M-Y)H(KFgx=)gG{B1(&{?%I-51q>3wp0ZU)CsE* zm8KSkEhXYUsT_3noPGgfV#QMGyZ@#nOgkm+7Y#0x5BGCa8#i|iEgBPcj;N>?t@ybf zYc>1~e&H0gSUg@xRlJv4&dBHLZO837BTrdiHQj;lKdNct{-$E}cq^ zS}6_X(5>s>X#&{jLlp+aW`9SSbVeV2AEz%jke+ACCTfih@Q%A`&m4J6Xx?QsSaE5{ zSPT2CYJvQgTCCDGkWjs`z^tkrDS67)gK!s^^m#4hbHC?|8Ot@BiSarFj=q!Ns5pm~ zK{6p<-+n0Kp)E@I%%RokIOcz*&u;IPIJK%?Q&Q1zR=2ODLyokS8!E~OB0N(XC!iko z`fMs~qffe>BNjYBJn5+<@58G+d<%;5e*AcfhFett=i&DlA4k7ukuh?UNMWHu-4x_!L9;4ASrUVi^%if|+che!4qN|xkT$p(b zal?*Y9IE>fUOMni*2k>vpnuJN_u{-vjJ0wta#ZBunvLJA7e&5u2L%r1TIoV@?~04MDpk!F>;reYUHyAgV(B#433M|ObLy@CSTPXUg7Rp5Jlqfy*2!D7(gInNMw~FciUId~q-Hx9Q%%Ov($LvUT5- zL#KMj@Uk*1td#oFGL|^DTvq^6>v+ccpqN+?sEw{U(G>%JW$CiqF%4Nh+hGR~{=cXV>YswI#5Rz#l5FHd=4nZGFu24ujLILS#5pjD*sp7(-@hQDUwB)CrW*Cf82JTEx*eWAC(nT*lQsiQ0agc5d`S1;5gjz*rN>yH{P-u?jIFu=VHocGbG#4OxbYMZp8;6QeMj5s8 z8Ts;nw4u}2JCx~B#(cb-d~R0Z#i<%LSpoYTi{ypQ%LNC^!>vI>AL&`9AM^AfK@e@thM zdG`;jvF-iJ2*2pf0X+!Wj!@31K)YCeEo{mf=`_0zit5#Jh7IOVa@64H!UK{Op(h#w z&^&fO<&FeEbf^Zs{~1Zy?qC8|Jr$;+G96 zF|#^e+raFi5t`5X&xcqs;+&NSN7qrVS=7gG|Ia-JApZf1GRu}BxcloVS7?oJnYTO} z((}mU5J;DXf;9?n%&nYoV0L}@`|&aJ1Ozz)*w;| z4`K{mE_I8R=j0-|R>pSuh3Qc?c299hY3F7#m zq9S0Y0)6%l>`*cccH8^o@5p5v>QLN+;TB#__ERi2u7Ap8>R+NB#~dSJovhgAa~}%b zJ?2<+4@|iZuGgLhrvS~{X3Cq~fm;BmrAJ1gtY8Z*IQ?5>%7F!_OxjcdDS2nx{e?&7 z$GMVlQfkM+BLF-SI1>C))cCpG+Q2 z($@zPpVhqAst>_AnE5xUj)`*@P_KV0U{A%%8`HgSx)v-M4ayfG6qO_TqV{ydZ3OC_ zWO+P)Tbjfv4uuyha#bkdI7-nWbp(W6WrfUm&0sKqssB*(u8^#h$T;%``bdahCnpJ6 zlu4+wsXG^03Wf$SAR`~E4ZX&r(BEa3ZFQ1E6mD0kkgqXF`}mnv1$7Tm>g_E`(MOcH zPd+QM;iD#hwos3@7Xl=*O{RiF>%Re(AHKPUxRl(RV}N6*c&7s5R+2M$> zonS71Oc#k1V^eDyZIA0KvlSiqG4xj^%=GSEPm8dN;5%!{k$XH7?XC}T&M5;q8G*(1ePGCxp^9;n5LkPd|C z8oqZZuzEMSlk0MlC1*P-c2Li!D?~^GSDw|N;PU&M$u+JJ!S#>^iz8H)Ndy+Bkqw$u zJTd%|ZkC7W=9STDtMh&Q-qk3$9*ezM&J_qSY%XXD&&pzJib69jNd~vl^Wl#el`0zq zCgFSP_D)!qnsP()O@dM`s#-e*AbK#9mN$mHWeIqEOGMCjw2OZE0I<==fAXr1yYs3Z zTgID!c-EkaTfet9bYD@sptCsAS)%P|=y|#>>)`p>Q9^3HJV%)J>X-;q?IFgQ&fq|d z7bTg`U9Bxhzsk{~@DUo}pEwphg7rv5d|zMxBX0LIs7#%k6Uxa+lE%ZsoRJ1@tuRYsw7w#ucs`-Y+nMNg@Q`M-0)2^8F21G<@dEiT>Q&z;aZ6 zjLLn<;Rep;v$LM3QJ5)rrX(R^%(wC(Nn5v_A&}0E|5$+({PvK%?dXom6||42gK9CP z-xP^NdN#uR_btC9&SUtDKb{G=@*4me4&+PXzh3ghvlp&@kdBbXme+-L_!}7N8ewqXr48K! zg-1cV6DeV?lbTQ5of(Tao(vg(p@=Tb4Da?#3mZ)AWPKz@LLV)!)g)b{rIq`k`VZ0q zYI0Q|bG0^?9xTvESbCQr!sHM7CwR=sqtUD+#Az}5XDg!Nf(WV?OP6xOn+{b46Wo$s zyXhG{-?60_`GRyld!#!qLca9JHmlTzGJmR&%&K$fs{35oQOf4h{>IPL~HD0fA4cTyI|>kd_iMLXc$?@4#}njHM2KrK6+fsCxv z|5RLkJYq?s?n2z@@O0gpfpfuT5 zNBW>n6gGZ9`$tT={C#TU7lUvoDIGTZ|KA~K+Mi^LhEZm%tv!ULt69IoaB-$ctI%9E zA4g4_PnXk2d9_JM#~{ExJ%r~<*rg6mCyD*S19u94le)eFtbV@QHDXL0;1+b4*a^_e z=(nH|!JPP}_9e-ri6Ir75&N6V(YvSC2BjY;SAvC`G>s@^w;R$vF=Ow~j%#>$h)W}! z@v@kEuzHcIQ+c|OtmTk{e1G}5a(Rpn5>#2rlZVGM8^{3*)ACmgJvwMn0_u`{jm3LU_{WvQ&R9%{LCb^z z%ibN(N@qDD#)J(y=}T#`!ew;aa2tqwka=DXLzOz^#zdcYd>d)U_cc?;6wBw!WXA;D z^RNX&lyKV=QF-6$;;c|pc$0jV&Q7EzB+^)4;Zv&K!*)tctH-zcpd@fc5X1t*;bCvk zOBTXB6QZ)42$$d8=(A|Hjwu#mv)7q4J%%u&+`4W^^u(`!fxObET|i&+>_h)r%+1{Ruh3yl%~QAqfDk9gAgFwOQP>SpK4$1MJnVJ2PG?%isY z*Vqx}&FdVbX3WYyl^bkixq2rI$0xARa@TnS<%89|#RAppK={o+fiOurf+t$qENp07U-y)kwtM%)Jo2gK^NLd5voj(P%ujK7N!CRD zkXwj8?$K;#(N^QDZ=c7?ShpH>pAfW*D|a~n>h-^Ah)0*rEGlGZ@GHR7BMR{@aZVS} z6XDV#D4>+^>(F%?Jj%5xUur!X+wO9CJkdreABP%IfZJ7zSyj-0@S^iTN?io?y&8Ug zsstzL#*OvlJz7S}gPVxtwJs$rpi;oi$ryqDu@wP?i@j?`Dv5;a{lXtb_9AMP1y`Qe z`E9JZ21VG86!ApX&VDQkoi^ROdlv1WMdrn0*T~$`x&2kK~FybPp{)s7er5i zAL*Mf-uw3*C6CnOu7@qVW(#WM=NH;}<9m;pvC%d{HuSQX+aXPCj6R1W`W zihlULoA#PamUZ?P-#{MkOltQi(x{?~>NZ)=^oc=%C4Ia3x_>e1utKp=MoLB?H@d9v@?YgO{j*)y(b?lDphR z0&8xrc8KDPAF6l#C8!I9v?5Tu;L#1S6KF6(EWJA+rlw}72-#H2rP(tPs`z-e;fK1i z$_LeAuY)5jnhU!VwKK8v@?22#EQv!Z_oX=ozvI^k_e8nq9CnycYckT03gP#@`waFt zV!I5Y&S&JoYz!lkvoDiZFaadPej5mJtq1iC3A-~FX;(yK!aH)zcW_fzW-^crF^jo6 zAM&&`R{dcsuHtWO-E9(b+#Mac^eJJ3wAZ*@9B~J1|0Skv#0F!DkaMzK)`;aAV?ftW zT=S$fA!`3!DifE`$0)&v_HLm?f}+T9z&;^Tr>W-cd8Vf8#fM|_&Vv1P>h^q7POa+? zD4m}M-@k^`nqOVey!UttYfvrYvhkbV5<362P{ou(1%UMc;rr=rato) z?bzr$2c*>ktNo3hrvCcfz9)Kv@>RF9_7pa8HQ5=T zcGv;1DX@kOZtlNSrzJ1?u$PBQk6c162?tM3MOdLOn&LZSv>Hm~=wHVmtb)yrWTX%P}yZ1!weqyBw29T#BJI+JiU(S+R(rN+JV z<*>pP3IP|rwSeaWhJK)D#=^W`N${(EIB(b~CVem_OKPtyPf&6Z7N9_m00p8E=u=r& z3lz)dTFLp(&OC5_6gZ0ae(EhnUvJYW3r>Xq4|<_MHR4!hfMO&y$1@#%;(Tc19I-cE z;GihnxBkRrLnJN6<-ET{aO9B8Z>)h9fitPII+?0v^?i=*%g6(jENfX%!oAM{D{ULM z19y}GHN-BIPV#ery*|Z5Kr5R~!?k4pcw4IET2{hv-o z3g{JnGg|G^PB!Lgx9D4r@1$2OfxZ%n|jMSjHq;(=FZsN+uRW9f4sE?aZ4>XURj+x8g zks(IP!Y%bZinQz|iy1|Aja-o%EXD3eYVPJT9-y1f9yY6i`gf!_49;G)cK|oKkf0)S zML96zTM`x97*hL!Z)aSb)BdmxQ*c;jkeXU)xTLTKd0g*vb>X&OLK8Nk&tiSAGb#Mo zsYNhO!^S%vwr7*E(V550eAmdkL}S?!04*#sat;Do7>Mnv9ju8VEjJwy>4Q;T1pBam zLbN4THP?_YNiOFv$TOfW+zryU{hk%po=KXRQL%1(@SJAw`x@YyH6^Mii_BlTd2Qv_zZ#K!Ilx);dTg42j*))S&s2emFC&62czW;m>4upfd^4`zS-+zcJ(DZENj{@L<5;0>|;+d*TRM~-LFXxgsMN7<%n@ZNss`)k&#JBBBeOU;v>t!>+`aZJ1C_FW~b)Re1Idm=yJ?LECA!?Zfy+s_ZVM96&^ z?^>e^jWh3k86|qZEPR5??{)R%67*I(j*HP5bnn)y@W{vXS2IoxM!|I_N3Uz9-jpeL zt_2}X5@!}j6uDxe;scfLVzMvm8D13{X8pm(PwY1b%!_pTJqa2caX{;?4nIf4WlwE` zZw_dNdUBu)!dK9Wf01duie_4imAKZAZDT9ExTmu9M;V4N76iF9Clfgax;;2|8&96l z@~Ul)#eCeGp_Z5eg()<^xRH(0wCfbmE{)d_A2XU4Crj!bl;2u2!(<+Q)Z) zK{IRcz|8t@gh|hr7(QPpl&SyznEf`wS=LZfASW^V;dJ(JYq68+LRXBtK9CiRl_$(y zeceU!t*ag?;xCL?P=HbFHNd%4_2xxa3hl)j`_s)wc18t6%{MCc2)3%tIs_M3P=9Fr zqwOEcci6di2?wfMq+?P{2rFbI4h@Rd>#okJ7yhFK$aY()!P(PqpiTnr(N?H9W_m2! zPy(0%{vAvcC>{E@nn#T8!OW4$F1Voslxhltv%TAXD&O5wIoKJjeF?YmK4M)@MdGnW z;zSqdD&`*O=Y~m3J(c!@IF;1~a7uu)fN13#JvQfkV^#&joE_#9+M7zCUlH z1NEZYTb@i5DJ|fZM{|YadocXgqL;xun;Cxi{pCI_YBuf*tTh!Tw7^a7+2kj{k_&ls z376k>FA8Y{j*h3qYw1dO@Nn12B2NL|_Km5?(URfD5>U$Ok@i zNm&ij7*t1}c&@6IrQ6y~8@5(%4(53nM$G26^fBBRs6M9BTuaWjTe9hE?e9}$>HMRk zmLJn!N0!YDvPf4p;u%P3bJ3O31p!SCm`CylGeZb4!H-j*F~mg9Hqr<`+LOofA60Ur zMA`*@Xmc-JGSYm@k*?`-Ca--$NU2HN{6mROg;N%=b1=0%Irp`)K%IsiqcvW~(RP3` zpGlD{ED7Q~`ZYuA z)LklZ6!_(5^R&nvT?IX%pZ7=&vL(F+8>|q{v`?~yrcKXD=V!Y1co2?t_d>RLFfZ@7 z{Xb-to8qcgPJj19)p0f7bK?A>s*7(mq#YbvIDBj-%Jdz_vl$mdvkR3D$f%+3do?@` zySF*YHGb3R4CW$k`HvAFop|2*p98%b6>e}_mscz2Zclk}IcrmDC0?aMZWeY;N`ArB zVC38oS*?>uzx*xC)k$!3X@y+|Aw%&XAub=;3#0TVXjf`2Z}%Y3eFtw2tD@=3jja2W6;|u_?TCGzYHdY}{apZ4)UH=7jx=1!ol+W7 zX#Rb>`rvy--gAa`+vBC!t^x?TjvIR%igV)cK(~Y>v ze?<)ZifJ8WOU-DlCe(Oos?uS5n8@mpwmgEHd47ZwW2qs3aqJzqSTK3#1fP0pb`0DA zQE0)_j6FwH6tI5lQlWlXLH&=)c|Cz-)1hGwM<2q3D=9@%;lSt1_>rY*RkgP_q^zmt z&-N(!>VXA_g=ms6nl7AGfHhT>QP){E`!j;Phl^z~r5&zg{G$$oP+%H_;%DC1dPJdF ziGt<3=<@ts`zN8qq>!=OHyxBARhqb|Kh^0`UhD-jdSvD<-_Y2Ye#%qCul_d?6FK$$ zTA@b1TIog&q7W$d9wAudp3eAygO~(~nf}7~53cHFh+I3tHRR@DRFBQB5W%L4JA>+E zgJZbHWbdpK^>meT{)RVmo>kc=7c5IdmlT#=^TNNeMtFGHW(j%hv%hgwB*b!k{_vv` z-R@MPOiV_a3=s)sNQQw>#vJl)hA)%m&D=M1_nb>mNS7b%Z=Z{W>`qA#vSr2{cy$TB zAo{TOpr&m@$@}EU-v7n^FM(;U8pnf%9GQIgm`}W$UsK>p{s6T4`FxeI z+JJysIW~COz9pe14w=t7>|#qiK`pT^9{`TXyJb@fXa<-N=Pd@uj=5}%1Xr*1>b;-V zuY6uVLOfx`yf0W-IMKIeEl^@xW1YNh`&dsd>H9m3!J^fBgYGUdB;#|xSBl?w_!l`Q zXngeGu-N!vo1sVmJTcrTrw{6qr)vZTb+y(X0kzNj`gVg~J9NoaYm7%;2MnqHWYT_Y zc>}Snf(GmstwgUT8{?Z_%XQ5f`5hDLGn$MiFDoCmyro8pVc{W&JJw&D$8TLNijxE;s9rIHxb)+?O{K%4Z@B6lXN&^+1uy#Rk zDeyq=r2IUz3BF)%_&;sa)zE`UGR-jGAF1ckx_AFR{k?nOLwesIaB~lw4g{a$$;!xe zDkv-SHT0z3xpQaH%+fONNWEC8^Im~>FKJ;--}J$Jjl)BMbaUn3O??;R)rq@^VTCzw z1C|myZ&cF<=DY{E8p{K6s}qCrFXwN+`dt(1A9U~GgJ%pAeNS0hp2@y)HSZZn3;{*8 zcAm@RU;?Z|Gh5dY8idfdW~F00x6(%4ZSb7g^e%;;@1S_%Jak-QGLuhC`i+an+zGJn z8o|;Q*~nxUXx0}h;T{Vyv_s=w35JoB?wVE>203rQr`!*bG)Yu`Z$M;Csu4DiX0K}@ z)tA=$C3NK+GZ91);WWCXb~OsRK%c^niYdM~-?dI3wQ|pDGnGAl`_YyPd4 z9}4Qk=nlcI+w9N6bkCzIhfiPZEYFErYqWM`X~v9|o*=6nT)&0P75`=S@D@f^;y{#C z(}|3yL&B4-_6%Q}9Zl+0`AtU(OzSfQIYtWbL&7)yKo?g5=`N(-L^3U)*$2#OFyIyU z<%JmBh1PW|oUO1qf!&rxGx^OHn}v}+{8Hng)@DbwF143fEQS+LEvE(~c-I9Oh(ruX z?FsY~hu?dX@#24VSG|jg19nE|CL8(#3pXz-ti;S{5d+;PFg)&vuJY+0WP!-n8sBb~ z>L#H9>jx5Dt9Ns;BioPDyGbVBG2OYs=U088N53Fc@!l?WBbt!Z<_38pDV(LfXR7dO zwulC%-*;$Nv?7+!?@kQ#cjaFko}e|vbkD(J;r2Qzp9;XVXh$^PnjP;m$7FQ0A9lgy zn%|m_@~@i6j#4g-6M;(+-L40~-hu_Qi}@mFVzQmXYSLf-*}KwGJ167GL=Ey)$n|lS zqdFmkZyYc&1B`7aG$3I>xx=S0Ms!I46S`>bu8@77;m)h(bLv3P3cHm38ExU;6A9t3 zE|zdjF3cK^vsL7tHfD=eIV)yPHD1U}{CRa}JIH5v+(x~j^vOVe%&S+Xa!f*<<7-a| zaKWWryMnjxx8qW@qiW$s=4gg0a!{>X zbZ|Y#89h6mxF<@>DApJu)?8$h>D-WVn=+2>{WW7c&dllG(Ixw*~Q|*C!OTv7hP?0Kh&10Q;CZ ziEYx4hznhNLL4Uc0@HHRIagzKO37QdQrX}reYu{Fzd@62WxVcPX119Orqx^0?0i?H zo8W=ho-(RRf{8W00GmpHQb~aBbp+Aq41xL^QV3eVk}(ng9S0y4>z+clPqgbDlFb+S|CSEbG7m;MjI}sqvz;2=hnr zn@lWzEW$!^;i#@SMUTj~fJo0Bisixj6uthE7pj`zQ%%?T!9nyz-DZKb;`|Ue|It^t zik^i7SW(hh`agrQn%nynn^GNc#HdP85M@mJrTm?Vo_AD3!A88KV&r7TalT@G(=r-tcpY3dy|eb=RA35qbtth$Y@G)$uX4 z_(QlyBx(Cv392hPXt0BHwd%VAXHTm)ms zd%klf6=YsqWNZmvk_oSR2p%C@kD~zj6-Ka5g6U)ySAnhFgtq?Mpy2>oHqz(;PX8vp zP23}oW{z!C7k))VL&j^$mHtyI*^zSH3I*5xAxHk}equz3*Jnp+3#Ad;-TVCUe-`9) z2T^?mK@+2&b01`9$~wLJTDW9?6GI7HIR)2=?1Q@D=(d0XTy2O%+(n08cHoy6YNe#y zZCtAZmG9kg@O3f9s_m0w@%vpO*;405yhsy=zcBnBrq%SKigq_SCLZp@ZnjtEc~$d7 z;pz^5h%U#IdV9?wN3HT6C<3uLyi`Jm9q&PpWwbn6UyzmwQ1m#xHEw;HS^fN&VVFxg zNctyHa#8g00!v4PHf={q*1lBiar&L4+gEfkdhsoxlk`AQ+~lw(l%8EgV0a0?ej88V zvjM%Xi36Ao7zgf7*e`;f4FI33#mWfuO`>AGkmD<~E6U0-&FqN!{VX0hgVEQ!Mis^z zPd?}CX*5((9j()j?zInlBdBwpH6CEZblEW?k3o3#`UdCrWb>$!N`qY3golMAv!S3| z#{DKw9|yT-bl1Tu`G4t0a6(%Jb?QBx@&jKT1}~7-2!3HP>~s>T_4m_1U|suIp8JLM?D8{yi<$CyEkiSaBA;GbHF6{U8$ZEEdllc0J&6eQPh*fP9h zUQuHR*^{`MnU9eA3xXvvMine*i~z8Jv0n&ss?ZQ9&P4GS**6aqSx29j&?~(h)+`Ov zw*{2k9R-Z-SFbSM2#8^(#}D3%LL|g2WYG@E$2esD9&@CWbC=3KdgBY^u~1Xbg5_l- z1?ceJInpIh^pnv&D=vg@W!z1J3Pi|R3-gDfgg3o8g6j=$|AoxJxqfIsm#ryb@#wdd zKvcA)b1We}-kvZgy&$9myfrCvA37{)KmdiGw~RnC`K*6e>A$& zb#VKjgVT^$_Re+8B(bcG^~@H0G8t2uw*iupn0jZ3n;3qOB#cS;sW9}o574Fg4#x?x zXtL%jwB0LmKZ&DmJ{IcQJex6-9VH`^L9%M-$F5Jam;4D{*p{-v-8-Fg{h-;}g;b6^ z7(Tnp$Fs?_S$HO4Yd)mP@+@Y*8i%9kP&P$>-=En`tcJ!xIT81PfUsuv=^oPa>p91Y zUd=m&4QKyn!P2kJY#l05;iDCwu@^puhc28u3qN3a=qmB!=W0x5%ifZF6_+yE(ShIr zMJ&cmd#L5pUnnjcLftE%iGU)FTH>-Q7Xow!;FU}9f6HtGXIdep3g^{CY7MVqJW7`*ZP)%rGtP1p*KOQ^eUl=(nC=o^r{F7(wp?&At;^D?DU$D&;!y51f&H* zyDRaW@9e$L_uTvE{ycwpvL2GP=9*>9G2ZdccjO>;xS`3LUb;r;9YO!AFv<3E&14uUtlZ{~SR*<|KcJM4mevi1WyT#W}Qp&C? zTbNbv=$c~FZe*p=tOrMf{%Z+q-gyZ@!?U_hn2so;E(>3gGzmMoQs_|7_D`F|4x_YW z+c&wm8N2&YH~0*SO7)u-q`1+rcTdpOS^OHB5pn}Wht4cn$C79}mWZpm^|C#2vk#Ix z4P0HmXgCp8#L1>=_o!j@Xycan_R+6jGA(Oc_AK7Q;tyAn%bpd6_M7j%HbvyWX3&(m zW8rLWb7ts!jlQ?dvM0yIL&w=TJz&TOoc4jjh+a%3>54{=6AF} ze&9IMsFJnFJqr-FIV@gNrCJT7kwW)$g-hLk?uug8@j+90Hlp-3Q_-C=6sCn=V$Dop zYH5S3gu#phEvFxi*2yIdlx#|9$l7udfKWdo)2Ij;y^J*RV31^6L_;iByzf7l3i<9$ z_O(v3^uyJ1Kb;FDFU>qVRW#y14i$tim#3dUy-3`AiUjP*i5Bf1aq}6{LsAhf+Giu+ zsx|K3S64wj1RL93)2PZ3wgXucu6N_R)H9=(ENV0p*Cp|adO@I4Jp~;+ND*Utl;&PO z`XpegaUnrl|J!4VtAXP!53u_f=L1fNv?kuw?ec|+<@Ngdl~kI~4nYoYk|YFoRCMK0 zcKUo;%DyYC^|84q6+_0E#;0f>Dlc$Oh3`fgw9{oxi}xCoQUtWrLmTe!!ZGrq!DB{^ z(mYMj+u8sJ7W$58AY?26uk-8H_1Zr(s}DA{SP7NOCT`sh{n`S=cWDIPrEkpyObi!T zVgMmyyK82&%kMgG(9zyGkVz4^un1S8JKy!~($#~yRlhD39SZz}ve60#W4x6{t6CbI z3wnm|4=MKLDt4-=2GoMJw}(QVtfx@(xj7}F(fg6q{_|P;#yeZWy8756)+bFU88Z=v zDae?EbU8($u>0`!T+~kuRDw6qOBIWa7hq+SYnM{BYt;IqbdOTE*jU*OzUCTB3TvCE zAz8(U)3F*;3?dFm4{=B)e36W#P3Asu^+xA%(Bk*XF`k3ACtT$8o@8=P-__q~GMW zq}7N%EY{RQhrxtOS?@!)ZTn(#>B3>rmsAWkU>K1|4GB5{y7mZj0Z9T6?19c?uV}abBa#nTY*_GjCtr44d)xemJX#;h zba4-y{VW-!yZp794gQeA;+BRt5Dfr6XV*N*x6%G@NM)UAV}4&qP*Gl?MtzFmhlGT6zT1)15cAoN9=__xuEBFPc$3j2^?r>y0{+a*=*LU*zF;|3qR+K#bZU*5 z(+USfk!$vP#aW5=EGUrp&RC0l+kRl(54?RL{>h_>m*EKF6q_0SHG@_Acy$4GzsB4D z6O47SCMt>L+8)rTV2m>I8Zc}xi24Z#pM+gfv%H9$X12MYzUzO*lb4rinj0o^tr+@1m_7h`6CDlJCupSckbvDNN2nR4CYu3mq zwjnF2^OH5bpUypNF}ZBhCPcvy*&17+0c&BWWVWom{00%}3}hZ6s_3$e0JnNw(Oyg% zwxD{Tu~V1M&ujrcIUAd>zWdzL%s%hjQXKSdO3K5L8>Op>aw=~VTrlc9ndqM&!EFro zYnh-o;K1#XSjg{5IteV=r-12s=IKi=QkSs;k6;{(oC4k58F(OGWmmvp)~p%lfy2Y@ zXEJV_DOfR#-(*ZxeWPis@@U@mw1oxFTRBz0nc{obqM1gFeTb)m2qxr_UfF6r~9)V7w@bD5-kQ1HYLFc3ZeW%`43;Fe4Y4FlH24Z4*y05^VxETcz zjhJ1#HXrcjr-JVicW}Wm7Ctdn1>jwWuC{l_${KbKvSZm_K6Z=|33X5wEoGk{7frmx zXrk)%<92M|!7W-~@i_u-_Zi3RK&0r15yRPcEoy0`Nw*2ya-Ptk$08)HApg}A63ui3 zsi1wBni=!{Nzmnx#3(^l`R=UAiCV*@wxiqA!-c?^<^QiGa4~cX%b|YfPF%oUov3?Y zr>}!l^d9FGdLQdEcBh-8Lvnznknm9uI1g7XFRzwxI#Tg7H!zHv%c^6~0$LidutMjT&S371bj8wiBPO4YppRZ%L_lAmwlfuo$RR92E^x;&r z|Cf^M8wJ2m1VG$G`3(SV04^BWqeuw$3qXUZINqnaVSIC4<$FyYCtEYnjS3=iKT1)Vt4fT;xMEx7u+zh~I)e z$^@j8zX04hx+^V@7>Sd{7Vt?V%4F?{RZakfP{0E8D>3L?41S*=Odfefv|oLq&gd7~ zF_EgQKIM9W)aI>$>)F;|k(duRDcAw?5tUH27?aPLG{Ly`EjN#?%Eo$7Bd)7X zy0@H??#9ie`5*HD7QzkyZ8cWAk`+V>z#%agq2=F4B85y-0#6MrcGK+a=}3stM)xf( zbH=f8?`E^D%dm9%{$jIUze5awbgweJe6MdceCdWkb=4zO@jXCOPE~)cRJYWShMZTg zi-xYrTdZ(U7|5ku0`MNNokS+7+yFpr0n*)He+!e=K{kM7P>jLc%zr?IOF}|aRGuug zJ+urRt>IQYi)eYt!38>D%+7mUp_2v26`ju}2vr%{KB zHp56&8G?TSK|i1K%f3Iw6-Y9Q_*08`uBU}l*y5qU*NXn~K7P4u>$3M~$vfjRW7udr zOX6bFH`n`_+0mbk0Ip8*0+8QZ;#a3e;vfR-j;^$1ND#MWwQ&qTx8x|2`p@YDUkMP{VfpJM_< z#ItWj3;YKh0}Q9m1^2re#Gkz)vZy;G-mj2iG%q4x2f9N>dNr156X1&&A6;UNo&Pht zN!i_Lq7=974rj%mB?{EDDn2U_%R&6vLtwL|vtm?&64%GMW+Jki8gqtZxUOwf0AF;G z=B6O6a$W_ z>EhxZ@ql`LW&+7aoCXftBCD?}|G5RRj+pV0Dunc81|s1#NHd=t_?cV`F_170(=j6r z8Bw#Zg(LqI>EfIpQMTMfOO14Vc7tfvN8b`dV?a)Wm`N``&i|u6eibkzP&v*aVx2LT z4&wG!{;l|r`Y0OcYjY}HqSp#^M=LS0Qo&h3!t=d|z2W%%55vC?FicRxz#%%)lP?gR z`fMtD;%Ve-R=_PDqAc}^=bq#~6H7=`l5+!XAT|U;+^10Sf6n?y5qm@A*G1BQ{%(xU z5;w$wcfur34k%_a$b!9J`p1(ao?AqRP!s3V|EA&R|4qaHO~e0L!~a>s|5-!gX7fL5 z_&;m-|F1O+s#MUq5HmpZluiXdyV>C_Fb42zh{T$^cfTUp*uER&Ad$kVT3YevcUGv~ zD8w26cutDE+4$Cu4i&d`gzr;3yW;&4$|Ksin1s}n%uMHi99bbj!Jd93Qh%$+JR?=n zL_v+j4gPx~_*@R)E?@JYGawP5H%fwxa_qq1Qe=sNf_!=9b$>AE63Nq(`fIkr~$n#NZi0P#rAeY|nYx?!cEV(#5Ww8Xkvwj$9{J2^M8u1FYl z#sn)Y96xW(?xx$0voGw&O26}sJt2e(k&uf$^UrYno3OAn->hTg0frl~SfQ=&61uz$ zd#W#6T#%oy;_jZH4}0cff(yi75yt)E<>3c^n= zE$QkO=qiRe4BR7qJ@De3hd`B5IQXQH`6|>SJK%WMd@kDjS31evRb+qaf3;dEd`0?x zw6^d!KNUn6jI%UQm>No!*QuN5W57*AW1zp2Z~CuCvp=2Gql%BST5mmjgO)b2wzwWD z#*js29t|(SK)fY7xQm!pc-21qIHP4kIH9+~& zk~D~0+<13Q)@rN>qq(AiCgh1)LfjNG3Uct^BQxOpzzA%HXA`yUy z=+Ok`fdp;%itR(3;tz~M`X7lOu5+f{$&6iaym7EyW=`?cebDXUumF|n!a=Nx4q9`Y zd*Q4}qw9RWqq_Z8aAa?CcrKQU1l_ZIAS=JWJ@T8%b#>&yR;1OVNBR4Px+hCFoZ&NZ zI}efY^%d}xPyev5(?0NX)6v`2nWFfyr>%6wlE8AAW#?Ibum&YKe?H6<-V9tdtPqqmnl7+U{;YgYR?xnU@r8&)nVjb zVG0N5DOL0`mp?`BAZX%N2)1`&EW@C$!id8|&-1PAH%FxVo%M)8@TWdvm9*un#hbYB36g<0@g1R}n*+nq~DOay5W@7j&*1 zY~F@{K=FeV8SUw?R0?#J+XsO`cw_Q6O}8>k)q3F66uQ{IC?`8OS+zW4e@}(FX0bj-6b*it8NzApGNhO2&V6g) z8iCzhA;wx_3fcGZGHBZe=$3xzE6^;7N(t1{#PZl&oTwt6J{!tfgOaH}9`|=IiD>#b zQ!FGAVMvNz6BvN;qsBu&&eBtn8!JT3mQ^@<3`VazQEN1`&M*4RhcG_1SV?RqP3z0`5wtsgnt4-uwygJa_oM#;h*5IOBsIXdaI4W zbF!1jAUrQNWvnKnH3P2OzR5!o?8zE$WgI^1^Y0W!m&^OV5V(Zm4fP>fvM&NLn3jIR zJ)1XqIJ_KsQ3UNjMDVSP%{6B3sM5e9=yM=7;Q?Z972GSA)U{x|D^U)CPJ`3ym%yaC zsXcVATn_0_4{|bB(DiSKrj{1Z-JTQn^{h-s{4&FX(M#I+!0KaX>14`0_O;Ty7GOGm zE;%D!L<6rh$=EWVYxRrRu^iwT^!I5_T9#2u@V#zCV!X<+kk5IpSMR!YU;~QRKFaGJ z`J#ZOt)vRGfk&%}H?p<>ZMmdm7F-N%-uc2OdKYW*UG7&NKgm2^q&A(NTX|!44{-}#O5Q_`LFPLdpj(=p6D^kTH zdT?7f=JN8V+jB^7NNF=;U`n6JOJfj zsLiCU->EbQ8rZonRNo&u5z)Xy0)xW!h^qllabXfYR8GIid2^9;Dqb#IjLa3ry+WAw-uzYs;b{pty#)3|f`Yc^d|Vm>uhoj^ zyGrA&w0)|q#bt|c+NO#B(Hxj22b%7Ui72O~fE^@Y#nAofkdVxYiD+M)=^YUe>E0i4 zmYm7ll8v3yoh^)}LU`BlQ|KE#gduGOouh&SA8S+%IfOz7Vr5sN8+(J1hW+~WnQan4 zM>2kY|1<3wO!Q*ZHIwr56Uw#qmEVC`RVL9?y{R)mT3dpLU3wCvF?C55*p1s%?$PUk z?|vm$IGXC#{}-%7G*Ev4oJ>>?0 z4Ac}A)znj#f}FT${y0K^YXs>g_k#DR-o+)P$I-k8TP|_4Do%kGB8ol7;J>d*mQ%`>)=PfwynpmPaPnY#Jk$sp52d@8+VwxhO83qm-m19s?eO zjKy8_6N zO6g*;ECp(bmk3ae*A;v|6yLMN?mV#WvRXqK#6;Wy{0SQwA(JFN3(HK811JBvxCj9r zmFo=HYo}c**~9J+{E-g+>p*aE1h*Ves#;m)ch(5st}Ps}1!RqMa>1N>cawq@COD0l(*s1h->n1P?}S^TD;HKkHbM#*QCEM<<`X zaJ9?H-zD~EB%SKS%r`Rr_UGR&dC3K!S9TdC)sJ8}f9rvB4a(6>iJTnjNe%{OU9Zos zCl?nN-@9&R>NVri)_K6}cTYKrA=XAiD_N#~f-RC>lqWmYGpxzt@h$U#$z7<*M_h(v z|34>RcK)T+QO|+*)KE$#zRN;yWbSbD0R`l~9cn7O*}qswmB`}Y=I+!jQv#WINP6HB zj`6Zw-AR1OyKDV%qt%&75>SV6ALqW;GW*+Z-cP4l_E+O63+xdbn>!QULnV63B^H&L z4JRgHS8c6*SAP8ne7p{U#T!xv-sDS73-VeXvi`ZhOpBPCh+3R8@yG5jPyuA7S(SDV! zh2HRrF&sJ$rSQ#F5}ng}tHPw-Jn5bp2dmP1{(&7M$H>`7f3^^kgYf6iwHIeT`Qjg2 zS?SktZ%a7nGjmW6PcDM442K;fWr0Jb)FoyJb1n&dnv3@T zLWblTlDB##S`1_9^sx3Y{kCe+3 z`OU^cl<5dZgz>xL*O>)u(+AZgGTrJ_<90szdY1d0%xc+$tc(I<@3A(Ps*@zKxfLyY zoN!s7SBcSi(@xT&M=QOTW0+4DZA1dGD-}fyk-?J?sFNJ&H*dpmb!g)?^ zms#8{gP>NkOYKaej~RRX2;3#+6{-6N%z?-3yhgA%9)q%uAJY87r;DRL`yanap6iIs z+suMg#$qemQ1AKOJ?+P8O57#z471N_wG;+lU!b%u)03Bfb&qhQW!x6flJM?bYy^Mv zbi!aMP&#g_%40q3=&x2i{Zcvf(Ne*UqR}MuO=#!-qGvpUPP7jyJ#h##;H7R^ z#GRz>+AWm_{}Q+LykB{lVhJ=Mv)&8?ekkweU#vCX1-m9A;LG^iQMz6sY<;G2YrU=3SreruYlD^t3Y!VI?LC5VT?-t0^NJ)EEcKfCV zY;2ERZSXWFk%<2?C5a(2%}9%~!e9rm3s%$cQiGZXAY2Y>VlI)?!vOtB`89)NPBBe@ zeYUW}+BsRr()N$~^rF52n1Dv@%@wxB!qUla~H=PM$7& z<=dr;T9Or?Quq`GEL585~c z-fu45txtp%YglQ{d-l8x(Ta&6!a?pWTYcm6UoPN8XNDDCGu_N6g*}`};xn;Y{V+Im zP-?!pY-{o1dWD3b2v8Ukn3~p6zRN!r)o&+P!xDK6yBxX=jLh!{v>ulBWFEb8UmjB3 zU6*|-UtpW%En$-8M$et<7BU&e?Eh?K@3-i-q6s z#OCeIvK!2S@_o{H23l!{2CIDA+qe9YWkyB|{U-)K_|~EAjLUDEwCGHrev zk@f*1q6Jv~N#>r@xuq=h1@4w?^xn(pD#%`W-!XSGomKkGrrw;%hZZ zjiI@QCOhdX#lg>qOAV^0PSqTHoADa(7$x<~oaly9FmqGT3E!`rrJxtN9p-G-lr8xeE z>?U$?PFeBZ_a1)EyXqxI_0Fw1OJ<(CLZ{zGA(69?;d1tV8GN&PhQtxTqf_9PL@Z7= zslNVlD>IG#<;yS)7C@oGs&R&J($QzuWQA!x8p`!{+s7R+&;5QmJD-w*D1apQRawq* zh`;<5VtjV%_e&}^5T5~u=50>v=g;N}j21fZm=n9NS(uwgmamv7!kt@}&l_)G~>a;>?+Wp@BE%>xp54y220G4us3K%H^l{nGT zn}=@IbFa3VB0vVF<9?HYFmda#O_*7ewWnh_`6s9XJH>JU0T7R^b06I_RT$iA@)XK> zva>Qg_xn>G1%9j+o9|Hp9!*l`QsF8+J=vl2+!~FW6of43=@zINq=@*3_N3u6n)kjs z?qe%|2s-X@dG8l2YD~9m)MKotKR@K4ZduQ4su}~Wb*geav1sv$OyIT9OilLy*BMn5 zL52yQjPFXnYmn95hB(rc%jI#DqXJfacz*#7V- z&~aPEO?s(j{Q$?z1z0zA0>-ocJ-w`I>k00H_d*KoP{CFs$2kLK3a{E;?vfH4@=J{G z$`=#68#MmS1u*~g3?PvBHmRqInQu0k6DC}r!*YsI#>)25Sz?L{y$7h89OLRj!HwW! zSMUBzn>ibEbk~nt_?QdKbkACgZ=ZaBvNcguD9bl9bA4!i*JOT1S;;C5mSw^v;lA{g zcHl&&`eEt;cK5vyIMbD}b$gRxedvUyw-k_*Im6w1Ixf8tTWoq8AQV1R$3#k+A^{FjdXcwOY-@j;fL|IeQC zQ@m}lx%K!pH?{1%nO_>Bcs_S739o_IHdYxj!sMuFp$FVLN|8*waHgWD1>|5#J;tMq zoCOraD7dXd#lJ#GH-oz;olJR$A&bp>kxs{c=xs}^C0T{U+9cgkVV-$~T!n4_V-2x% zq0dmyfk;1LmGmt_T2;W&c_BeVW=dHp6}bC~ezvy0=%>cY6FKkoNzqOiK7gQ1O?yvCn%{9-Haap=pvMLf?#` zagq477+mb_bO6aH-j)Ej~r4u#?`UCEkfo9WUW9fD4drsJGwCqwLP-MpQ|Q z+NMFh&pX9~UXA(tBMxE76XpsyCzMEW_b<6 zjrbcQ01vKKDFV!@q;La>mA1XH(Y2Yy$H~m>|m_h<{4Y5@0mdI5}qquZsxv-b3t@6@UT{J%)ycYuboMgbBo{pJbH7%Wc|Z& z)ACPjb)PX{e8DHW3hEj1j8u9Y(2_m6TiGn3eC%s0ODkoU9rET)N?^TP#Y$=+-TC81S#-zb$(pVC*_E<9nIf&U zXG)iv1T3bRc9(0d-ykG@91i4&0dD(+f`B8!FDI^4%ubvUS1GnvGgWH1ys7L?TkF!~ zB%P?khsE05?mGYhHG|Oc4K`1MWC8K@mXnotgO+^S#*B1yVg)USs7F6q>eVf80o_y4 z`i_Stao7k21-PivBm&HTb|2u=C7zFNc=Pyqd;a|3;$vaNLWL|akLcbO7OtoavH`WX zZCV#i+br`^cKtiqZ>4NJ(#k%a7s}RlwA)0E-u9&XXxAul#$`V|a4s)eCdqfbW&GSL zi5pr9<;O?si3`1{U69H)Ymw|u0cu8RpAb`D4VMydftuk_`JffN&$_y>$o9xwS&&J_ z?-7pq{(!m@s+PvWcebLuWHjRD5x+q5UX|1X=l8S*1mt!Khg8M`|5Cs0!J^Gw$@SDg z#ExK=_pW$#zybnM)OkqOHUWppZ#j|UwCcWm?+DE8d-OOHL#{26omw=6_h z?`NfoD5@O=vVeAflNb5}m8d1)btgf=HiQOP6Wn!}hgRJ6{gS(V6Hs%PdD$ni#mCH9 z3AM6>u>8gpd-Fs#!=h*tyLm=}-CT5X855YDJ_t`tF|43B^apm8pO4SB8(h@vcgdmqa=TSUw}D(>)u^jiMcx|_m?}R6m%%aLDT5v z0|~HkWf?hD(FYI++7;Nxh`ubSE8K=&{o~oAJV(%cEGB1o!T2^>!gn+MJ8|$zBAW`1XMF;iGY_HhGT~)6gmz63|Q3;c$yE zLP3Y`$pH(b4+$a>?a564HRs^vq9Z6mL z>I!~xA<x&w78I;3B*4gA=vMV`ZE#VqFn_ zbxsuQHQ~oCi`3<5r?Hx(>))6`teiU-8`+b%=KTc|Ix5Nd&~X!X$JcE@I?1OSD%LAFP9baQq34QVP>GjA z)W)BFF$?|DJ^KKdG?0%L{uWsZ6+{BY z2mCO{Ie(|W%fP0QtfGCST}ib!6{JZnGFcf6z#a*0C*~Z{k&L!dP$c&C*$XNd6BiNa zCLp}O?$hZ)@N-;cN+BSxq)6iFpON*5MI{LL?;M3j}3 z_ImWNx&y7h=YCyh$vS(}kg9ti{ zOH2GK5}+dhOww)ga2jp#t>-=-HP*6q`Z?RZrDOQ}($dAJW-{{1RWj1gQ`5%>Yjwbu zuXlb`NZbAwq6(b)Y+)$Mm7GN}iTrxD}RW1V`(*zjF^jD;qG;XUG?YK&XhAKdcQ1{|mT08*L z0y={+u2=r#(*J24&Q%4iY3rkDkk?HJ?f!WMzfARnWA2oYgw_6zYZH?x=fZ+$!dFsr zarAu4t4K%UtzYLUl(7Hb?>z^c_wAw~$@P#jF@O8Ru9p2drx?at8t8sWnw}33rhN00 z#6110A4F`y^u^P7z-@doBx^I)e6a0J@o>j-O$vzK-nJI~;ZOeaof1@no8@(W3@Q@B{sM3FV)5M2dt2sj#uJq{92U#5HrRpA+5arqa*5W^xa{yJm zYlp;r{qO&>6YIf0f{I3xNV)%w!vmD%{~EAAtBs4O&Cg!iWKXR4@ZUEE3a(NQn=JuM zhev@`2U52v|F7Q)7Kn+B<<7~u6KtU);P7NX1W0!)C@A#uZxaTx?vSgNq|m)u0gA&$ zWX_cQ^C{HTa?e~#8Qw+!MI1W;SlPJ8cF}$6Vn|4+%IJ`eZmsV7N6LyLJmJT6Kd5Ui z&@7~i-OOTBo{eYY7B`5~8+ui@=E1{6L(5-~dpF-totyiXUe~N1z+}Gh^1r6h7tZX{ zqe*6A`8J8Jx;c(Dv&!$tEGXwKo-^)v%z5RmihHTk4VSDwxLwee;XwwJWqf5$#d$-I z&ErI;#5Cu<#nf3trwP`IROG$7s84=Z8O84a$@yf#!Px!GH0_!ZcqkPqz4@1J)b=|g zxyz9B0eF!TzvW+&+_syIaub8+-f5{M`G9yAm^TJ6GWC?mGi#<)v?(c7z8D>l18{{`6xCb)Y8{ET12|Xc*)q2uYzW0nojs%p2Rq?~)rQMrbGf;>b=#aPPBkzTlPVDX zt-l&B@A1ZD-|`c9S|qT>Fnf@yliPM~b-O;}d3e?Fu~b`zn+t}PH#Ro*#`Wu#B8EHz zN{@k4N#4uaBLAErZ*G00xgeB6nKS-+uAKnarebXP+6Pd%|EBfwcBSrMjR`lJA^zrR_RY_94G9LnX7Lf;*irZIp3Oec0I8R33%k?lLjmAHKQ( z`D*m`O$&$rOQ7HRH?_AT1lnSO#7}Rnbp51H{FR0ieiNr*mmHa+RbE>0LrZQ0o-UNz ztF`Qr5ov%HL_|%m)RpS}QTh8n0~UOW3YcAXAD4T-X=az|b)FbEf@Sum^+p+++Wi(< zaI!50%gaUH4BIshJ7Dkimgu=bWu`dS`7R&5;k*90C~4)Y$Q#l=+i%tBWR*PDrxMqi zoyIfS&oVLG)zRT}qhQ=KsI(z#3(1u@wU+bc8#@n=Zh+Zdll$_7j-a5R6`_Xw#?1w9 zaG-M{%2Z)1Ei1tMseD(av_MjXZ+ccmFWK@H3MmC3q0;-xon=Z7k(Jorx(CKJtl2CF znBSrm`SmhI%D%kDZc4Zxu~a;A%lrc?erj9*J^0C`bw{?upsaAa;p0ZP!dx>)c~|jz zE+!yR)FM!k$?L^iAaYpa-nj>ZjIz=Pok(0Xp_b>S zFIVZz#B`XlnwM9DdWx{2gh#7NfW=-0ISnWwO>p@oIR)Q{x)}v`R=Na`a@EVn8yKko z3Rr#{GetvHib9REyC#=tYGfo2tV@h4qfAG!ReJC1oX7d8IAqwLw_k~usD-Gyx>h-k zH5+I`ChlXd8D`=48n^`)J}DPiz9tkUq+!I@%tOR0$^C)8P@Zoz7P9)WY3(}wStdma zT3ECGLKCKVvmIo)2ue5dU6Vrh`NsI}M_=((cR&^M*H8GhG;iT90AIh8A~y4&X>K&C z+6{M?Qqc`{IPz&$(DC~d0Dlfs4|K>ChK#YHfBwLY@>&EQRg|05Kjd#&y~}L@OZVF! z7Byy7+=+x9g=%aL8*R;f4u0(l#M^4g{EKP;C(FrE0?uR={*A{e$uxnef-mFZZ+9{Y<9L{#Bsud=b@_0OLl`-rWY*& z5)YJ4R9EzU(SK`#x#txZHzd4$+UH`?!KhzGuwQo0`GTD3P9$$oT{c zl%|gB%a9zS8%#AhwScShTxX&^?qH!6p3||PES%)d|8YI2F-!m8DRSvIM?Qn3O~a>; zus84DtJ8{)f!-Yde(>$`_Fcrsm#ee!);&wg8q6ySqQ70&MSC>^j6Z67;6|*gZgx+t z^b7Ub-QhhpW;c_7Ch(cmcaN_(3(#~W$Kw_~6CVrUVnK@L(Si6$%K7B|%kzggvwV~K zKEUsEf>t| z?R}%&R@L3rN!xIO^AxAnz^K($se2<6ImF!j) z8=0+F@BJM=c)KB8$V40`*cQ_f=5!!OAeAL<^y^oYN||AAFMUZUTtdos6S#rNn}%=7 zRufcuJ!$jCwzY}9KpTxL0(qk&>3B4>T%JvBfYhDF>!7GD%mGGO(DKkuJkQ|rXtQ^j zpETZNwEiR;$l22jl`k*HWoGi{F{iNrQFH8Lfwen<0%mvG_@A)lDN_K8kH^>N=wH%r z|M73x0Y8Q7DH(Gz9&Qdq$#&;w>;|45)o%_L>u9tdt_B*nRY!fID&{|2quj?FFn8yZ zKhJj@jmO%o)U18~{^%W$?FB*5ozI_hs8#avCjzO+&a%oD_9N%@=jTNl!*WgPoV!IF zkkTU(etU1#eI1hA?J$~jA`UDrttE&oh)No&qDQ48TISePDavo8JjLFB%4Mp&L?33_ z8RA?&<&$UXxn@x1ba0hc+^4ydwbZDRXFYJEWWo)p{nT4(SfW)|Xz+uRh zK=&91F|YgBhE$NlhrtShq_p#V7ib~1d8MnncS)bo5#L#qDr+Wiu*-NKQW?dx^H#s~ z!%5tQeKV>s%J$CJXK`0QXxH3#iT5xk?WO%kOCKL_gf(r)UAD$GGxsFlOl_iBuw0z@ zK^M*>LCwjk6d9i(>A5JbrvF-wk4nhLv!C*#;pTM=O*^D_v?XsKi*FuCy}cmx$sYj>@Y&w zt@QJ?RGeDLFQ12{?Obs`S90tbeYq(OBnqr=PUBh!r@CyTzE&12L7SmZ&Bq{@}5o{c_lq{XEj2%7Hlwh8cY`s51c|jH!6R^%^FH^ z)9l-JMLk9|YZ6L zX6AnLy*+3wc_AnO8mbm? zlM{V*N7#SLKPb&t8p_N2LpQuW2{s_yE*W&y#nf*Ga_y9)NVm(Y{2L>9;)^ zO=CS|%S#WXcPome^g{M$D!)xtgatHhuX)O*iVm$wdUUKVn#ca0RkAj*+pk5NJzSzd zTVz0J4UHw(CpEcB+fC>n&NHZ%p4hb9-x=qn5P-t{(?lw&R+{Y*hFcX$=SyS{#ZD6F zANE}nUJS&Fax=} z>ld~fpAt{5@^bI_=2}CC(thdPqI4mDXLmzWauEYBmkwXQYEJQdUNC+PidC$p%eY#R_s}A6 zmQko1-34~17$T1^R1Mp;4cAQTcgpDh8k%eKVmyCYw@8yOKF`i#b&LjbzPd5%aWvwg zBdW(rT2sNDVg*EP*60xVo>o%z#to|8xGNr_&mq!rz{pw5*33Jg0VUP71ji!w~2+inW54~7~vn zY^06YZqTu(b%o_j0KY|8u0*+!a%5;|NUA*>c^I2`taIgmeg|MJb$ zED0XyM)pB(DzDT(Bk+#LfPvRWA{IrR$DS4b#DhZ?-<)}x zpi!WHIoT~wu2R}wfW*OppYT`CL@Z|c9@7Xttze-yUA|&rrck38VPpKTYB&CB0OERD zpn%C82)aBzhf>xKb$+<#`C&*&;R%#N*CI3*t{PqUvIBrWJYeWvn0slf?}p4`ZGCl; z*GDCRdWYe=5I0UUBfze|-rPETv)L!f>@_iIejxk-5X_|IP92XZ|995|4g4g@&Y!V29N?{S^=kE)Nk*F~%sshN`Nmx4#{~0snte?=K z`K{66YlA*dzD)@U4$Xi16hF6+b{xN>kn;EFYRNT1El)3gszsQ4caCvvV6>n)sd$7AEieXu%H}1aK z+mq&?q!c=OTHyFQc?t-tILb)RtEG{lU91hP%}7D-t}C?Szbu6=8G4E#L|rL_*H_U- ztpuOUisdc%hxO@)XM03>B9iY3DRl3QQ%^oo9p4xkdAHCzI>r({F7r=}sgeAgJXh(C znxe{1`s9AXKgS81-}&NLmZs0Y_i%7h)xcx=`RFliUNN zM5lbTfW&a!XqketOTfudzYTS1rBb+qnS0EzMIc{d%)mAK!RC@HzH>R{r;WYM>>DF5 z)kvx#nRALW^@OgQ!R3-y(**6y-BIOMcr8chM!ob96IN(5L5|y>=Upo8Dvo zR`^Qc2;I+U-(RYujgb0BN=m684Uuh0l)lW z^9_l+x&r)Kd5`!m9&xC8dinmINB7d3eLKGcr~pM+59Z2Nqr3n?p%1EiZK($t-mxo} z?MGN&SKXW)7L+;Jq)(APuqLOZ6oME|1fH0=8dP@oq`|H(qM*FnKME9Tpvtw4Zf)Il z2hFH{&^N-|nX$wj*j?46o8L_$WgS7MYC*`KB)wUWy)>u>Ysz4hd zRKLV@boHE9zgd0StrzC3PSR%Ths0Ay|M6e|HPmZFoN;H{+tWVdRe2gRfm@FQ{ZXTc z4{PfUxzr@dY z;ErXWU1F847itG6KGl{_T-gDusHq93X+aJmHglk=Dk{P|9RiOBCG3ONTh;Rn1e&ZH z>RE5Y$R+bywpQpR`}ul6DO-O3>R&19orSNcTebk{dMReHxiw=zl!x&dkx_uY71x@x zqWR3aD`9tq%&DG{a5p?US`;HU;=i@6UpKF9>a?NHd`voD_8)5p=x_oUoyRK*7x~!F zMw=QG`1T)1+tzDtTEhxwoP1EdD2fzdqNL-?f}P4L?E{&*$j z-tyCTeU0;$`#LzLNSyG5;!6~RRzm)qaP&-ZXih=y*8=%byXfHJ+)?6yiowsG`S_Ck zD0O2IWWP8Ol6!hDH%IMnGX}uBy?BB5+Sp}~YV!iXZ2-&+FRDu~5c@aK4I=^FRN*(R z*Y*Aj*ABP=v~aJ)A-yi>53Wrn#TRzrV^GF%otwIj2(U@iyE)4b=C1m8{ga^nS&Qgy z%Nj%?ZURt<#h7?uP|^Ixshb}W7>_9KE)K#L0NrYEffHJ^M*rF5JypQzm@X=PIdB_M9Ou*XYnkVW;5Ten_`4A6Rm z*Oc)6eO;eAGj*Abqp0gIc^iyUgf}KG&iGZ7ha`Z&1H;D=xuT!6RQ%TO&XUWb1t(bx zhw$z9lY#m?MqIPW_#hyj;LB1_)>Nr*nAc!Q$Gncs?F;N3kpDk0GHI#@-{8r9I2zpG zC7u~`7`U22_QAm5VAlnHT{{M+eNHv@XYNCF?b8qCVsSXNsLaCN$L2Ifnt8cR;*=vhWIu4<%K z8I?c^O;--I#>Bshetn&TB~(Si;LP}5KIKV)+J_6;U~Rt7ZZcz)m)tWM1-Nxb*P9T5 z2e=O$6_Zr>@=|T$v=#YelhV-7)s@*?{Jrv@aU;_Aq3)8|#FC=O|8{^sAmK=*@dp9|td)9z!(SYtiK{wT`XHXNxhd@z_nNb*FqW4KGK9~cTp>HbR&ZD;&W4&_@|9ub|*lASlO8O z-r3n2WN)6DBGnyOUqf7|G%HTubKEy++;MKBMS3QSJ^+T%-`JLV6@k-yGb7V>Ng)z zfx5#9tVD`~H(E+N5dxUD54}QEwt?9gkj6)>JvD0S!R(h{W5Get-`o7f0Gw?-RD&hz z2~s5$<&#QbY-{AtK3(V~`tM!>4^Eog@s+^U(TYqbP_>vwDFyY;e)?v5!l&Z z)hU)x9!RQv4*7FX3r%6gn1_0!8nR@&0MfpH%Vu^{CiBx7!{b3}a&jz}<5j8O?>}NK zN#s)=ujV&-iiuv#;p1hE3f$e3C3UOhg@zA)-Xk8ajjl-F@jD_bg9X`;Oj|wO zRLez$-^;?=Lc0gIkB@EmPh3wnzKt0m#GKrVI4Y$h@wZH~ONY0Hu8+NNVT=wtSOsP{#ek`%XV!M6+P9>Dq1PR7Irh1y$ga zO?MJO58PyZ*^LQ_X+9}DjZxi}Fpa9*Q~nCX4I1Ap-m@ zfG~)Y%x(hTiJ^7FL>~n_MoFi#e>k_caXxUoi46JXIqna&CW=y4)*mh1X9YG`8i-?m zr?z`D(~Gzr)q|&fjHSNVlcb^#_X5A%jSQwv_omJa5ov;inF&xf%L==n&j$;=#HBvJ zk>nJFkmw73oAgL~EP0oy5oM*u8EV<#UO3@#nS&msZ94RitJ341UAO?15`T8ErFs z=ovn0^WbdqTL64dw@7rBO`(l((}Fb`d^<`h*n#lz9nW}>>oce$r%m6HerV|)V zt7wz= zSgGkL4{Qly_fPF!B|bwz?^~#XuJe2&|CH@IYMK`E$|!A&Jq!OP{O2uUTE=wP6Ui&# zqyPf&mun+DHq`q>i5uh2KEy#uj%og=wX!Oep5kl_AXi-qDX ze7zmIb#qfhBk9Dz@f_0<7LT=V9Q_Ud!*UhR z#>9mhCBIxCCE;;&pT1uFaiUc(Mzx0y`Wg@Uh);h1INWBl(l}*F#-i4kT@dVXc_`K4 zS4QNNqVt@#pH##f2jsKz14q49;p6u)@J#mldX~)2gBJpW9I$YSwWSJsT^4ZSF-DUm zGVAr`8q{sK{-JSG$=kp3Hgc6Y9LP^Zb zH)>KyqNR{apbae6Vh3FsCZaS!G~Yv6bh`s1+BzRwMUn!M%62%44=0c2A*{MRy%9Rm zl*X?<7s6`^pCsPbzv3_%7OUJEP$`j<^1K#vnkv(pD^N34fPASoGZgf`yDoSb(9=JL zv>jJ@Grub`%GW0$bxLZ&;8pr>^@F%~M}VrUep3=+ z$jk9vF;so!c2jThn6&#DcPBRwpzcu@K0AeFEiT9UDjt~fA`(kbkugB} zJBygKKH%Zl7zG=ynt52R)Z)4vFZVE%HHXjXGlXBCJfJP${Ncv^RA&372L1ty)T^99 zz;9K^V$Q0&!2w^TM(%m`$5{S;ZrL%|&rw8Bo^E?AY&Weee7wtTf)ro+Kri+1SoEi>3$j1{ zP70y#`g(u4$308j7qI5|Y=6 z*LQflb3iqgOB4khG$&_&oJ>du-Qy@E_|N#2&(s!oEP2+qcd_n&sBGoV&t1&z2Qeyk z*&THYC!pOl?|VJadEYzfj0^UvcG;Q=xEr}tVhT83=P%s2tZzuUE zfgjDae_Yk%+hT>6Jfn8=yD3v|3wlAJZp{k!tHW@LF6j(~zZ!iae=cGtyxgCV;!MI5uGD`rPby1QSN@2=kN z5{-tL(_d<@e|^&6)F9e%NBek5-0^V47FDifbxe^)8K_p+(#!yl{`!Xs5pToB`&9GY)f%C~&& zw{7`Xghbr=7QZ-T#vJ>q1ul8)HhVa9C~0jy;oeTwW)E+umBArB@*3oZe#pSk%-ZPq zgV+)j^no!J=H>I4{!n0$W^IB4WiC6l~ z+|}??;_q+KOvWBaA23Oi##vGYYF@rYqO5jG3VZ2nlvZao{^bu}>HaDDQzfkBg*U)E zAaPKur`YmU@0-t{^W7(~uGvB++nux`YcI#p?tYC0HTU&T@0Agxu$k4a#j$eb;`_b6 z-X|^^ZRQO1Ri?aRd*c-}fFNx4HrhwO1tV?xw*42&tx9k z{ZjY1*hH4vblI`y+X4p+SLNGvu-wwBRfqL0*!M_=X2F8>G-_W`w1DY<;9QHQf3l-JE`2$|8q66&^@t*! z*NVzozugYC{}iQKv|PL+*3@WpvI_EWId=OJRN}obVKFr7Y*+kTeiXr6-!@jx^E7hP>7>S01i0}~iRD+SlrrCy7THnpwT86jlP0liP@dhyTfcQxI zUfD>h?oe@BP5r2Qjho12VWQh?`|_Q}?bU%V01~)y(PU?#A+A?j__JKnI!yY$wv35% ztxO9@uLzBlDG<)$-bm(@X`QuhO(DvuDWmWW!i39Wtu- zmHMTgKpmHKeU|L{ZiPt*-seS`*9So|QDj+PK%*u#iSZVX56{eIGoJySz#r#BXogqN zk?V(Jd9%4%K44u(;F}=*agNz)1UcZ1+1gLAY&?5_dH6u=2dT(+3*g1hG0zm!tbx?2 zZhjIWXG(6H)zArVf5jK==e0I-NMt_Oq(IleuQKtmpsKyoTdm%78&I>jzha5Y*2d)pNv}M=f zN~Wsky%EGoZMN904~44rbC_P_-;tNmvkflNLh#d+BL%MRVt5Ua&du*yvA0QBG%|N* zVFDASUM|(vGss*b?wA1U69maW$ycwznauHE>;GA~h(q(_ouu2v9#1!F0_Py$jo)*| zqSL?Q;&>vMC`gEcc^FX-tbp3vvFGcKkMkr|nKR+6Y_)*xw-RVnT(g1(waM>eT%R?UIRX9A>~&+4KN9H#*rO%l9{oNJp1W zB>MGcgt>~K=WW>j3aAM!hzIE~_0-|5M7C<}+WlX*7Z#iML^BEo3cghuQKJNVJfq=c zUhYn8Xoei7BhOnz`ADrGtql3frcKvY2N;gK)3^p)g+a<9H~q7kXjUZF6U}VEblCx$ zhguPD@ouH;u>@-3EpT2eT1yrsK;cxRUfm zrm@CayH}&XdirsB4|uKYc+3a3AI{sX@E81(kOjD z#MCgNvD)@RJl4K(IGpZxNX%;&J9ANyI1u%5Q#(c;o)tVQwj<*Hg+L7Fk_u|uKn%GI= zz)&Qh8Yhl?K-qJE3Gu;)j;8U{9?QGg8_kThxfXY+w^;^=R8v&U6m81A z6R`QVk-cY9s?djYBzMj!5>HFy8$T7MeAD=_xR5I7@~ie37(@)W%AZO%8;J;-9w8~b z6G2+e`EE`yT5DAEBOd(6rQr`^V&IpOWl9xXXZ74|T5R6HJ|h{eZ*~I@-)O1U8fB3J z-1%9{%Sm==Cm<}*F9P#jSpToExx3svJ_;yy^+`THUl7kmXXWO`vt$)SCR5K1y9??R z^C6@TgzZx@RQkGvFGE1}Ja5KA(R*H`yv@+No`6nuI;@ua(hUO zjcK=~Co=VoMOQA^fM3i@vCfk4I)>%r$9%tw$rS13D&0Hw$3NzOPi0lE0 zfI+gan~iU3dzO6Guq+o&iQf*Vg>4NygemUPhO!%QS%2k7y9{T@%%&rU3{YTOi-ORG^>>gsvqy@eTq(B(n^7RJ(8V_NUJ zlA}Y0>m1CD)TJ<8c9pDUYkzdmyeISJF;m~`(uvG+=9z{Q2-kq0+!jOu^SDfP3{5W| z_?X|+x`dOd8o8sf}ZgZ)|+!x#1$e;RB5N~j? zcTkWw@<5$zt#m{hI)AV}fz(-qq2s_IL!3a7LW_K2`T9sDJI`i?KW(ihGl12*le6rg zyoi6_>b}nMDT7z!nL^XU@&q^ZYMYLTw1#c#_}uBfrb>Vb#I^SENu$fb*F(d7fS0J| zF_nhfe?YQ7bmls)1R?nPkZKOj@)vAP@#{dxD=zKBSG!(X1shAYM*=H7M|pKlW{cDT zUtOTu^Gwm2k#3O=;>ww{H}(cD3 zo~t*~24_;(q^)26s-hiq1*vC!|Bx(fq?8ZL(AZLYLUPKlOK}`P#ZGLieojB&uqBsp zcjXS}ht3cA7bgf4o#L|uZEFYPoK5qE@DGF1&CV;iDq)$k>X`>Tz(&DK%(AJs&(C2i zA2bC!`O|o$%fPA845rRe+g-7}jm`&Qd{qy)eTSv`UbjYlk*S)MX2Lih~Dn*%$#V^gA%0G@dZOE>7J7Dg0EDqx=_$?A|3k2@UxrZ~R z(dPb^G{w(eV3Iu86eV_Dx)m|81#`9t%?AQCEABoMm#=m?kHwceTm2zqv96UMicUeD z@Si!+k}-muGLFSiG5q1QHmgNe>EBpWuu*O8lY7P?`}E>ulO|CxmE^xHfXR?ZOP%h0 z0)-d9z|(skw?>fQ-OG*7aVeOskc`yg?#%6#o9F%cVyy0hNpN-NKzP2AN_WQUC^tRNIEwU{Xw*f) zlqs>z+eKn$uez$;y^-#zm^Tnb8I;Sb@G|L`He=8zHEI2a&`FCpaK3ul$jNGaUVdt- z<63*hSME6DDULfySxHqemL(7Mgq`@@BkFY{hK_hJgFtjGOWY2IUrI;sBazIT9~?Mb2GFM?`4d-`F?>ENZGDJ zmGGRvE)5`r)}}Xbo?f19B*rvDgFD^Rt=-kCwv+D{>UhTHfw@-R92VB)C%zex1h`;| z2zvpqyr z$r?h%dIr+B*{xISrLQ)s&8L3qXdo_#Lz}LSl1nZhR~wDLi8o)EEPTz(j}JVCvT)N2 z)-6tj`7ik_bo`oCi_^I^N1jOEkjtn^U1hUYX?u_u@nsDU+1<3f4w7|LY6N8CX&!Tapi1455x0#T#RZsd;2G;IXu>!P{mR{9Mq#JXIX|9Gf#m} z_i5bKM@80ZvN-i6ONYNH;8gsM^0v0bW!0_A5-lqa?}aHw|2fur&m}I6^Si1^8JqVQ zf#*le1`moHT81g508T@!tSW4g0~FO@QOpks!ObJ?h+CQlsC3gw=$+0KHM*jLS}&&c zY<0}SDd&%K$@d?B_oJHYs@Ntv+eoSI1U$nu;_*hTAf*V}En3!WT)N6oP20hX@3oj5 z52w3~^(81n7cU%ugaQ5wK6<^@(k|VTT+`K{V-1OsD3SKX3t~2>MawDyUva?*l)$g) zs-0FtoV1!gc}k#w01-xxjL-Jl!@hvVx_P=?WYY8j|8SWwB*FJ)&Hypd=%f}$ulgEL zG+#Q9IO~Qxa9z6n@E;Xm^mM!Z{<%;jCiU&mE>xYVOL*LIS~cSls5VdtM5zEY`V_e<&LdPpLbv^a?|boN;BE=B8N_` zWgkyfD+kO^Tu359x7m?U0_CbB^o>XpOos4Vryl5Kkt*qe@k6l}WX`KxZzUJqMiF(v z#2z|ozKC4szjUzzh^Ed0&iwA7r?y>-X)~OLX1ACGfxkZ(@UTg{!Rd`Q*=KoLZW9=_ ze7P)mk{*O$Vdle~C`$wQ2Gbp_Ek6EBn1o?-s(3Z4BM5@J(fHJErjuD4CLPZR5&>t! z!D_AEXG27w5~g%#eYKQl^EFz%zo(5^LIZo=nh@*Ncv$9i?gU-Tn)=RPFv)n#5$> zlh=5GYzr+279Ec{>m#V8OQ0lP%?{t8g!v2DLKDP{!FVVRu8p_-R64^7GL0X9qAPViBT6I0NUnDsd}64RmPiK{LvBI6YHzbjhtKWl9{M` zWF1c8=APd>8|~?0I(FLkHWpNAKB2DxA5RpqM3M>xj(~imlG$@kPUYRki%faQ5?b}Q zE&k4@RHn>^R~>5knu27P@AxC+d90Itlw%Hk^3pj-N+ner5311Z**h9XO2kI~aEh1w zIR=SNMB-X0SrP=rJS%eWFce4=_To125r9;a^W#*!v@M5{Rn!X23gU`(bvAC6qLSNqbp(!ak}nFi|8eedCY3_ zm0^Wj*yPd2;&gn17Fk|RHccKHU5K{;*5vzplbAW3U3l;ms`jB!SNm|G1yqSIa#*wKldF#uZBAwtEX%StpjxbzZ%v zja%PaO^bg{i-a>G1NWVyi#bpf_F&hD62xf1Et~nGY94Hpd13eZ$J5LCl{XemwHzn zJDH9NUM)MA_=W_rXu>)dDIAVhz3T4s_YKa?DO!*GVf)-x#t)+^T7sf6omBWg=XroG zI(iv&*3CiA+TN|AQ|lSOu--GSK_YO)Y5EebQm$F?jX1+>Iw{0NH$4a)U#jRcz0Irr zzIYL%d3c3v0%Jik??baYlRks?{5+u`@8HP_URQm~RD7zWK+i(pkLh$~VZ=F=L!_Tk z{u^bTkFZ6{^8!8W*iV1ghyu}Qh;SWYpY>0;g~JWZ4OJp32dqMH!YW85=AQ2{tjal) z7IXB(#G77~^V@zdkHLx4eNO6u_0e~xt*Oy9XV@`5Beyo16DsM};ZeHo&}t13!$u(} zu%#NXs@H;Ys6S(2_U~l0ATA%DIh5C^?P9wuK^HWFa;+MP$QVflE!tN+XF;&DQ6pTJ zS9Z-+-_!&a19S;aoF6>kfv`Vu}Gscd`7lgB9cG62G_dWb1pV1zEU1>z|)GwjQlCnKo;Z zVDj0=C;a>=dX0ea=!{Bu;A9)U_*C9rR&yG5HKz$E~+daVmw}dFLynktTznQ%?Jk#XLWkH`v zw{x5Vuk>Lwp67qn;z>*cyGK@BX?cl4R)M z`)#4pbtQ&}oabj2Q{_D$b#F{XzF*m87t?8aD-NFXI6&CodKRCwZgo2fB zg6W-qQB{p!u8b}(kn%1#9X@(pSbGnZ!fp%o&IEoKTr$xM!cd!7s=O=4pcJyB4x%;( z$qa~bV5pwlDG-TL@|vy!&%%q_R)=YHFJf0&F(XK7lga>XKrZ2{|BK*jo zPmR|q8dM9}oc4RvbJQy~G3V&SoJY)h0n*p3G~x&r*AcSO1Ic1S|X{KVn;3VQ9cVJjGOxgBgK)jFA%FXp>jg zNhjiw&;9SxMfV8q)Zs;!l`Gi=;sLPE`#DHWc@w+>OE!_w6y=?T8zlaKe z#>B8@9An_3qoQ^LCZyqvW`NH)apkp%dz$@AlJM{EDyY&@{LAmQycBdhMQ*cR2&}i; z%=|nscLD{sm@Q|cyE`8IbScuf)Y`FLy~DR!bdu@~-CbZu)%GM7p-va7lKFCu8W7@{` zN$mXHf%@4>rLi2P$7L}v(7yE6uX^iZ4UqzpFK`4I;1trOJDfieAQf~CCOTHl$7o{ zwaIWQqE6zsdi$0|&-d3$oOI2K&fUoZCJa)3KW04yxp`$aK%`&;Il>?em`(Y6W}oz-QLv<-MM13`psuU4iFPd!Kp$bb(m`%#O>X!zsOpKeZ+( zHMz_e^Zp}FIH>?Oh{vYKtgS;9ET~luJA3N;ba%>>l~l+(T)3q%i8l*S;kmx;wm%55 zIxpj;@VX5O{#8GBh&fEXOeH52lG!tXM2u`KHJAIv?)T7Q{DTTm3C6;RXo*nZgu9-u@%@ z=$kJ?o}IZ{f1*~glX%gKVAq*t>|pPYrvF<50W~NmU;o zpEC#^0}0D2q|LzPI^qu&uAnqF)9cwt%*nksyo-IWF|6d@iUvteJ*_+;Welh2NAMA z=hdz``URM_)=PK>(>2OQsS^rHcg27^JEx_|`Sj0yB2)0GscKw>Fd+v}&h*P)DbsBA zkO8o|y$r%2>xdTfiUw@NRGyJU922PE-l-}@4u^K^y3VV8p}))<2RIY&-6Nmtd~l{# z)pu@i_OlmJoG&=-EIjrFvcbIR!(&>f1 zH(lM0)nr_}qxWW+^x8d; zQ&w&DjB9_yj;1YK{I_`#%Mcj}2??8k;3u!$2C`SIPm{-0DW3`*Fd73q#IX+Df&db2rca9| z_W9AmLN@{Wo|N)jLJ6>CL!;^hHb&stKJiKm>Iee*q;gcz&pR`CR zgZU#$mYn}mRj1oSVSdj~pOf_CO=jyhIuhn7rHP$x4MYUxXU$p2LUIsPK>)1Wzg}7v z`VVu&|2=C+;sDTd46=UOn|~Z>{_|n*JK&zFf|^?C|2d}k+Y(qG|FW|lGu zZ|w9sp}jg|JLKNqiRlP=JnH%MogKnUHtsOxm!JQ8^n-=wx0wm5A$ zWxtbtEg6b87O-3M^eG_MycSL2wG%&2vBnTV0-$fPV$BL{0q0^kLKeB1kChc`7)?T9 z7w7-|(xDn4(I|mCciCdcn@pitBWN~2VBLbikSw6FyV={6W?aQ zOM3#c$jMCFGv|l9=iL$bm_rFAk^myAl5HziRwZbCC&_6u+kJo_v3WgIHR~bHK^|ZN zZ*qV#&)VF*0n)NRfygo4HUmjatHJgJNBTCRuUAn=CG*;1ce#RVGEW(wo_bc|@xcQP zsPE8``9Xxzco5H|-3wY`AN=M(Wc_%$fP;YD5)Yt(F#+XM@<3fN8i>i#%WJ**jtMxN z*_D7Xvu>3!%-IS=^<@yRV^ZQI0;L@Q-Ta-1oI@UL4^ z$tURHS>PrRy>X*`Ys}>K9k2FL=KDsXd2yy4$Ds47z`%8N3U;gapCN)g5DRsrIoeEc zM2rOb9axb|l|(@#vZODfc~vuM<+-aFGc5z-SOqOIX~)Wd{R@arTTgKY+wObSJ}CI6 z-2(GYzQ#>fHLaXjwNBK7^k;2A%ac^azXA5VjbxJD>4pG({-rV{9(S$7ekN%68QhP!AxP+MJK{ zN#p$(Su$f!bDK#7&|S?A6 ziy&7i&Fa@CG)*}Gs19Rzyn1i8ddDE>evJwgC6S&fe4~0;(^<=uyqCu5h60o#3NF!c zNtcJ#ie=`LkXiKf&kP-}v_%1-AuxEnl3q5^270A0Scu<`a%tX9ZJ2(_gR5|TFrI_PD~>mCKf|NWi`aA)RvvVWJwSHROd8*)EfLGWnT-Vp)Ix6bkP ztceCS5LQqFe45Ff{ZLTo_y8io@l!y!%f0V;IL%XKxKzucen`Kz)VUMgz857HKT?MI zBe)fB=9X7^Z|3;_%xc&YAUYh4_ydDu- z1Li~gcx7;S^*(478x<2Y*u)|;s`sDxfX5)BGBf`}Fvc$A+1^wR7wONvsTQ+uVeTFQ zJxd&nW7>NTq|qq>=+4N^?^bdo7S|neSXi-4Jh&kSmESAKRpVaYODjtPgG@NB3s5En zSiA=H8h9BZSC8xBUC;vimE6$u$FV)DH}*N759#d+5MRsy%qF4>t$OnB<>IjFtRcOC z>0%<=PU4-g{jlqUH{i}V+oO_++6*E~$W%Nq5o6x+Y=i8+>`!}qb9VzZAO-SgkHGRH zJioySp`?&}i_Twd6VexzmcCYWV|nIwGx#N(fbDH6e+}DeVM4HO&5!3>V~P0QS=8y4 z3!lU&X{FjX`;<2hdeQyH*+kBNSk0$1|4lbNC{a89$+_A=ZLPctxhl#2{1pVo*j?+2*`U!cAS_`WKqi4D7lYbpEU$#Fd8Go!0%$|-|Tkw6CA2*X}*{pQvm(=`+YC*wwzIC_FlfqgW}de>X4N- zpEST-qX1hbNe8&Bb~l_s0Rj{KHSzM?d3@x>9sr>D!5D4N3r!anFtr7c-?i-DoLv3* zEY=m62D&twTXjA5eHO&(nokxDrkSGfzL{41jrjmq(V40S#RKV zS`ItUhm@kMNvb30KQk#|hO|#1AKo$xG^KEl1FLPL{_=_R68K3F7u-0@J$I}I5kZF< z)%w|(nB%3b?*5buD$v1gobOwH^F$>R8xQ;*c(UI7{kp$G88(^)TP~3i$(D=9(WyJ) z6o_T?NI3h&2l2M)O?HE@bh23Rq-%_g_7-fd{D>dX?Oa@dS|*-)SmG{|BnWw^pLvZs z@jIDW9im!5S4$y}$S~B0RP&scO6wKscl`F#hr^pa4flYq5f1CBl|`gBtuq_6etW0K ztImHk>cAs|QBu-w=KmvP(6{m^5Mg9$7QDe2F@-V)@f4MTmGVA z-5L~Qxp>wlGT1xaZzkv{^;K}hO&FWU=oN~u(L$wuv_T4Qg`$^jbyUg_$Z63|A2z`3 z#3SRVfidejRcg61V`FhNVsmP5+Sh<9wa44biezc?-&9L)y7 z=xmM!*=wTtAry+~E}iV`2+{98UtMmr zqLGWIx2`>&nu_hru4!4GsftXs+ISxlktDCI+J^ls`f5AT?^lobbAz5Vk4qxVd7h#8 zmv67OfCOhRD7n|yXdcOXtl?}2(!4HVjmK-P+h*SUBlU%*#n4b;+AP6IyIT?3^GTp~ zdIsS0(zohqcHCp{RZRL3eqS(U(txK1phURLW#<-i3(R5Yb7#&y=1eS zbj(&nWS&U3x$fZvMiGQvT7f{ejE8e?nI5nKo?5E;`h?YF_&px|d7-(QGc00LrcBsh z1;}RlxAIwBx&RSelzG|F1}7cXrz^ch`hA;dh^=~kef-hSgWwZiFxz$h+tL52!QXBpSt2ql(1Qg!0rK|nR` zzNV%r#E8SiwOph?Cof@dXyv{)T77*YF;MWzeM5`9-LAl4PS|XvazM?91OE~Qlf>Ba z3G<|b3z*AV#1oDMh_hWyGez~)RJB%*Bny?sy@25^hHca51)D3`<-E5GL5@m&mP~2BWju8Q)6vwfEVF;~#YNKvQrZa40RNZ#Uq9j#X{`66(+iAu-C!XE90;dae@shGmpvwr?aYmd zuhg8j-w3<#Y8wN@r)?GMFuz4erk96{+YgNIG@+li>JFA*JHbcu_O0d`wPSg5#??zc+=Y2CL6XVTpYHa%xYO^k(?YkEuz9wa~OXQt5ZGl<1K>7uj@+}0|B zQ|jPtr}y^W?|_UWWH2@ErK3`R0m|V`_SDW#c0iMJWrKy~>(^vzX;l#+@@j-Td8(k9 zJAGtdR~jRfUsmX@d@UXYK;-0-^X7VV@1x}aYH2zRhEyZ#`X6}b^xAdaRSSzFGb+{} zOiAS8Xt4od(v&!BY~K>Zb&pd89p>=AHSmE+6#OoG5t0dD0PTQf!4`38g-07r*5vZI z?Zj#ZU>LY$E+jv<`TC#r1){@(npvPPO&G^xV=6QeS1{{l(-PjYqt!n46fO_&i9M5c zcC-$rnuZ?@u(32LpUGhKs)_EvPG~{dGpQyVDJJC^fI8ynk4=2G_Hh3q`~`?%OrbPx z3Z9Aj1`CcHf=k1#`R@3lntso-t&XI|!SnO0WT7S(NkB6a#azMzl-+xxFCz!Lip{PA zuc|GkUY~6C@%T7!wcB67fz^YwZqE3Ic~M-Q`HWX9kPN#4SR4r;U?A)QTTzSMU3V-7 z1Ni?v(eq>L6@Fwlo+(YAgObYrRE8jIiH3TqG86C3DP<9MySg^Z&yZR94sG5cFq6gj z4}lhT*NIJ|_0Ak1MbdId2nF^ju*)|%=GeUNaR0+>a4edM^IpZlR7%TTnSP6j;8n6rFPK@kK0U<8vZjs?GRot3 zlryB^M`E^Ki0M*8`%Ob%H|eZeUeapL#Y)Kr2k@yodnM{ErSSN~?41=?B!|JFqXw)Q znZrn}Ajs}VJW{U$Ic^gi+gf=NmwP>cJp%DO26C5x{+uLiazB6b>I%rg;vS}dSR6U0 zEz#X0soIq-s}^uM&UCHFtapbsCUZ=D^n=m^2H(|L=9;(LJl1z_-Y_&<{j>(HGqeUj2Eb*H&pfJIhk+Q!EC*wmCg{`$OvWd`(XL2!VEP_M^83jq>ISHDX zuiPq1OXk{InpWA99+WZ(%U{rBp5p9f($Xk6#+n+lF6}g4^`t)tb$Jqu`-qEA^P3G! zbqAYc>|MI`g>D?u4MK_~yf8@kf1q@N9v{NWh-NS^F5M11-U)i^HV`E;>x=ud>?2#* zqyyoy9#0&T8q!~?>ifr7VJ;P0zrn6F-eB9`gJBWwhw}sZD(g&DPAfBVp+(XiVi6}2 zu^*H}9nGiyU_HePp)F6K`?6e18spS-xiZ2%TU!E3uGW0bqzr6j7?o6#_^$ivu7<}9 zewpjrh$|&@a{wbY?P)MpFbI)}mpODw=JrU0XWs=$cev2S#DCrj_ZBFU-*q>M- znRqLCil6`~d38Xn(1^%`53xW)q5)uI39q=BErBUO8R*WIo0{eG!Mt;&dOT6uV*z=z zKT=C&*&H@=4Nm%wgv@3tU*;;@>=eMNR>2DW1Nbd|K7b3EU>O9y0Nf>)1DQcQ7b;h- z)S}7*7Y95b@9)dkbon}0v0v?6^g=RA#kt_}%ij#vW;~PFof2N=bo2zjc)*Ni(s?@t ztsq^}0}vGhFAD<#?P3qFD}|P1>K8O2^9=FLt-x0GQeH z)7dk?TgO%PVWqUCA`Mb$4B}ghJhtPOg-vcUr#Y`nELYTqTQk!x5U${K?7;O*r2j=`9e4brG{!Dgw5yB0rq8OGad zcQWPn!q4~_D{}Whtm$wwDD1rH>hQS`IbWpDbw^XLRwrL^Se4$Oo9vkWvxz!ojVhJ) zp~V4dOyR}6=3-VgiZ@c`WSV{jU;IjU`b#?%+>FqcM(Xq;24qNn4jAgix<=xllgipefu+xk_(#iIce|ZEVYS@JO|ADG{y`?f7FNbCV5&y>Mj%9_ zc)R;`r_dYm2`FGI?1TfgbuHa5DXJy#+n6YMOcTup1V)ryFAcyrygONf3An?sbD7Q} zKM+r3(lW4Nf(x#0@=W~tH1VIIyyjq&uI~Y~ise}=x5*pITr>C`N)+9`?$DlF7wj3IJiu{R!g-)WsN;IkIjl9<>4yOF6RDEJi5iBp&4 zp!ezwpHK|k+0-=j#m)Y}F0Ivn#5qo|!GTDb*Qx{ED(bEGm|cM9aQy)7m&$s+>7OrR z`A8k1a`{Gjh6ajdite}q2J#6d-5C-=s*Rst8hr)xyP+(xva1C&4Nt9a(L)%mw7yWmPp{gtFh$;wKy*{gavc6gW=4C+Vn|X+vO2vVk@Uf z;`iYZFIU%4`#QoFF$1^l4^>pzO0YkGZ|!C4!#-LZonGfWnX@z9(o@XBZQVq))9{5c z6@zzZfDg)#yW~%jn~kQRlsR<#q&GH?cC$FBSKam!&lo+63719RGnU3J^tN=QLiqn; z?=8cs+WI|EMFbTQ5Cj1ULAs>7q@+_ily0PRfrNr|cP_fS%L1gkOKDgvkX*nb?qKiz z?sN7zd%xe#^W1x%_ZvE4%{52OG5)_|jU`;}AI+W`rmi}`%f*dbo~8|V%wOq_L7!z> zH%~C_P91g$-(WTaw0EA$<%ZJ5HarQjCAzILrn9m`!+{iNC~Z%Jh3}oiB=WP2=XjL> znImy8Py&_DC`wN*T-ntO|3JAXtO|Zw-B)K;?bD_rH~m@XAKzkUL}zkm2xhAz(L*lM zYIJ^s-0hVRb=sM`y)oP>HZnnjp&sMWtC5>Gw>CSu z!RUHkN!v=V9_fb_1rgIQ1K$I@8u%1*2HyVn0K@mr(B^~917IQ|3QC1@=|a0(nN+Y8 zK&s>yQr}k6Kxbk#Ram?f`*rC#9`>@Ai8Mane2YN;QvoY(B)^6NE_YD=U^6&eNF8rf z#wa64Bl>-r1`^T&#XnVdUpBaoaw@EuvCPpEKP)z*8NI$uB5AzB=i~o!#Gm7VJPV0gC%x=flWO zSUN?SkrzFgnrQ0_RKsUCtv*laEt;4m@ONUGB=9e|Yq3hC`79ek+zxYD zt8TKu1Hn%4Cd-h8xX>MkXV_pTqd2`a>7%KX zuhDj%vWCiIp!)|*gTu1m^W}X#fg(wY5MVscpUB#g-EE5a(ifSP-LEdm<>v8G8{J?? z)?q(3NweZ@A@4jhz*RaABGUXA5I&0f(E}eHYa!{FsWeZj57sS-v5YGN@P)`!upYV2 z#*@^)($qP2-zV?r93as_C+Ymzk{e|4R>(QY=Rh5AwRIqWrq*^Ib-Y-8zi9i3V%hS_ z0^iRhEdGpwZMUYzqy0$Ins4iKdzA~DJDF5MU2YprUtj&+xcGH3#0Aft2Z3C^wNfjIcnZB!Z|y0(2z<~tj#lf zUQf$@QkMq0CaIdFYA!?I?sL|pDKhtm5>w$)5$Qpz4BlLOBuE6z_M2RDFKZs{a)8P^ z=$&3Bp$Qktd&%3}k1^^1bLcaEP=j_4k22tTnTm75p6AxWxRVaqri5CZBAy6-h-V`5 z#Ow0Xlk~_Cyh*fwsGoCZz~8l`ZE_FfJz}c+Y`7)!&N>0K<&$@O@ph`)TgEJ!&1ISh zR<9Gy8q0Ci!^?{1ZE@vrv2dD(s)#pwOBDB8MW6U&o3$EwJVCy`LdObCXdB0e&k!FN zrV06gb#Bb9p6x_YBY%)Tzl%9zo7h|TlpQdOEbwcdDDoXSoq3thw(Gfr$4nwPh8-T7 zhSstWd)uNq>46gY8=BXXuG7=26L$}?JLSH0gd`}#mJxjvjgM55FrJlp8wG#OX2ImY z+xnF6Vdlkin;C0I@}=NcRxg~+1W26S*1lA&3g703q(4dRV(e^OznR^#y{(dd_p^PK zRYINHUIz#D13D5`p4}gG2dT>rPovQZ)k}3r=WxEnzzHK_60S!+s_i<+uIrBiPt?9? zdntzYBtzrk9OE&|h`qjv>sgEVaAfT>tA*aLR=i!((LAgUs{?P=!c)oY>nUN4U}ZkP z=N#8|@ge!l(u|UCHrK^b+_ez#EVwGXp?FbX^xJqmr0e-j-E)@~MtA`H{qb{x2QNI% zTAJ(3-_zXJlJ3}Urqsi$0Q2CQFc0+;I!GC&IB9;ue30s{8)i+wj}?ucVc?kB9|t zwt6`EEf+OAdI)y>3N1QSZTgd+lTQ7^W{RZ}*S7+D$cu^bFdc4|9Y9N@AH-tN=m)w1 zs#f^WjZTp?f;9UOThMI-+Z$;^3?f(rbEMPwTB7ky7J9`*0EN!X@GEa;V+h+_wHLpC zcDghQhl1H)l9{0>`@-0W2}3A>b;z2*ZIT6qoT+ZopIGW0;2x(I2mIy8+3pIALTNv% zJf5$Gxq|%Y2~>r;=Et&Bs(GPq@LDMA3v4QkP9l>QzRto?sy{Gt9EneRIoh4Ojt_Wo zl{bf6|9mcrh--d^Q8^1hl5Y&Q&=$S;d%D*jkgn7<$BOLFzy9Ap7~%mg2WwG7+`r*Y zfZr&(^>0`Vtij+rJ$^OUQ}WN8gLmS}<9~&j|3Vq?eJlaE4Wab5CjW*D0xbKs{x_T9 z&;Jn#1x?N&37qU0{+Ve2I>q@P$THWBLoRtuCCLufN%}Y37Qigx`zL16HLWH4n#`cw zQQG%!I5aQuUXlEz1^(JNLD%ey&VnU%(|x zwf)vg{}~>CnKJ(w9)F!X|6dv&qgMTC`1$AFf{*@7pg@2s< zSMmFO0Rp4LAu|GtTGU`dr@hOGWh&-iQ4{XVP>$*))cilI1@|NAdP-WdedDA(^u z7xY=0YjkwmKdH1y>iS4bK*(k+^4ahGuP+!Z-&W4DTKa)*!8xR!~>iZz74$h;ji@Ek6Bg?`WqyvzbV`y-bc z*V8eE5w}qOMN19X;GMsJEdT(;1%hh@;tx+Ur&TC{ zft*o5mtOmoFOWI^Jltfzu54-7nEL^vbkt?Jr&0H97g|0(fX|Y@`GQK?`*Y|gWg>?~ z@@ZZ(qRFG%A04X#hL}$jzCu?kQ@i=9NbP=8*rsN)%dI^5D>TIJVpo2~#5XCjwm{Uo z+oNB-sunIA3?Dr>hhRgHE?D%kU9Jl)rz}ElS9)XR2Iznlyr0-5o4{;ze$oxhbX<%F zQt#T#a!6gCU%87Ov|4#<1=6XSzJmfTGEs7i8)YQG{o4@Vx>Yx(Dv7Vr@wTrHPq>`k z;ru+mxL`HjcnL(dbhL0lOv3COGRm{I)vUFwb#Fg78sN9{&|~?s4{;sbnXM;dY-Tf& zd4B>-v@U}6nlD9Q>izQVYi{pr;DLEQckTU--YMQWK?;8Y8oL7h)?h`6VL)m!oUJ1P zy~hebrrnsDEvi3vaLN&%$eORd<;m-`5FLEAr2OEb|43`>OYcB%$@xYz_%*=l(FXG@ z{_L0}pbg^rxm>D$m(b;L3}hQM2OCq}|-N$uMFx+}#b{$?`>PJjTRDhP@CJ z7%;z5YS*{Pc^QQQN_Xsw=Sv|?b^2ePh)9Kznu%)#2Le732K5FBpVMQ&z&6u|L&jl>gJl{UW*x5I2U3OxVAL5u*b+z>9$=(|Ze^<2Jqi zCOlr>%+*Rx!f|R5a3nE%dy>Dc9{0DTT9(; zEdxvNa34l%EnO9#L5ZhPr-FDdzI+S*FEQ24FP2m9*HT;tl}ZF1k4t2!T?Q-RN@E~f zL73I}t#FQPf;zOI9D^pfO|jDhkLfX$>>nK5bWxNym1$!9<-u~HRn^yWG$xec1d&(* z2`14Rjq)Q-8WZ&Wo3G|@# z;WKFm1D{}kH)~5y-8)YM14U*m} z!}(@FM2=^^zySp%4(Di;hO~O-S+b5*P{;<4Hr?r8FT3v2Ntw{@yfKA&I8|E~8PL?= zaYRHdmk8EAqn~N63qaS?;aB-~{P?uq&J+>?luSSrQk$pXc$300FSMfJm*C+;GlMeDs&^`TFA zCl0Y5(YM$LRKq5Vjb@s&32Lj?YxL$dSg#4qB65^~2`V2-0<=q9cC5!5fLiS5!VT&a zH67-+?ALK!1K;i?L*4>Y&He!z*Y>FL<$?4s@9#lvX7NQavRpQ^AXRSN4t>c-rF40g zuNboR0aXxA9c-~m6ti!|z1Cb!DKH&Wf&^@X4!d@nu6QP$FvwKq=XKMaH4FXKGH-UK z?DNhn=ajYY@th&kHe4=!;=t8ouCHqj?v`EJd-~8-=xh# z1)MJ)$&V~GlCL>M&J~FcUr0&*GD& z>#}V*S|jH1`H2GPGrryz9y0^dMk)|>eF<{OmwHqMuTzl6#+N;`N~Nw>hl9MxHK56o)2u-!wT3 z)#}u761mb>>=4wg_of`kXnx1%EW}FjAgqr{Ha-QuNywIm>yDlbWnc$= z&6T7IZVzWS8+hy+`5Q?{)pY*u7$_xjr zVaxaT6bLY0LzQLIH_oLi7PV0EKg*$UP~DGNP_ZvuH z&aPlL{PwuovDiF{VyYJA1L40-(|lN=XwYU&HB)Q#{$y|Y&C<6*w^|WzqYOZ)UuRt$ z2>)eFS+z6DWj);TQHwF3Nw-Cul|7>>MZ;t;z2D|yP2kOPXTRy^AH9-CtROsxy*-Qa zj+m$N38P*Ss=j9_EdUL$7_|WLwaNKgt<_}zgJ!U<83G;H%gE=xci(rqPhJ`Aw%y9f zYYL1Y>lqPG#>+)OGo38_$VYI#1=EtZBEtP{=OCCRM3lv`@it#!V=IY%_B*7PxE?FgQQW`1N^qPOWh zyhD`X-SiT41sxLW$srwW(X?9fqr#ih0Oo($gWOGE&)-G;^(8vs^vMke0=)6gns7Qm zV$_T=Ddu(~!51O!Xk%RPgMxtNJsxKP5j$=(TxiYg-?e@!lhE|+Yr$PnGHSFFiF<~r9du-EqYzUxgW zPi(Th-K$G>+0uC6-gmdbsswi0zM5iV+GiqYcI0O9qxxs>V9JdaApvtG1G3H|q_&xE zd3L%V^!O)<7ew@-qi1jYbspIdoS}qH=@_c(@ZrR|cq=RhMZpGqW?k#5wXLy23l~X) zFByE!Gc`Unt*e{tBq7TFfC4 zs_fd6v8(!exN}PKyR44{VA^whTkTEwxM7nosyyk^-}A^y4y}$ey$OuYbVUV|BPYhv zpJg0xzQ_a&e<~G1Y#c zdtS~R4=9_7J1rigLlSmS)x3eoB1J(uEMZ+*mCi!dyn>z4Gt88gOQdR#e-c}gWbwjV z&QIEP+si_el&+%6^9ewYEsb>H`zW30buvs7P336HUY5@iqN+5er!r|N@~q<*LcpUmBO=R1=SfZ1((GgB5#TxT!G4H<`bIDc%!(rq153~#dAXgKf8v8(Lq(G(u4 zkzzivsMoP+23|Un>7He60;=`#lXr!TdV=Ao_3x~d#tKQY1~slnm2fMbOU_X zt}o*~dg}3`b%M7g=5N1;&}HX~)WBRzZBM7G%#LPOdp6w!fnj}>#R2#JRJKH)u|iWK zYmmblhtZQQM$nsLcm)xBTPY)nsds1f1Sf1o!D%O2o3pr?glrP5o4&UFZy~Ll#cQIJ zTx=3YHqMA0h+Jn-t@&Cdq(t2SObdBJKI_=K@r}KBwdfMH3@T^$H~V?B>{gAo<`B7M zRSL#8*(3^aKm?S?Hb#SKK8djRml_fdN_l@y1-QecoHFFJWYWQAcB^6cSWX#f=83pu zWY8$%)U$Fv7ey|W3LKM?67`K|#a5a0FFCUfOeL%mEWaRcN`fA9LGv@sJAzk9GKy2T z>XSEkp&wb!&U1Yg z{5cQwOP8-U@2`>Y*KuM}!oxGGKUis?v=VM;Qu3jhI#Fv^?N(bUsj(~^+i!9dt8_gY z^IdA~m)TLN5L){W!-o*m5Eb4Ozmfbi_R`Utju|hWNM6qNWw#o(7k2h4 zA~5h$xQE|oce(A<5=|{{*eM{N#urBzA`6Q^YtX5+HYKIrHgYVAfXJmKw%EE8sj77` z%>WlFr|lta5QJ*vSF@#7vymO11SP^7zmXGO?!Gx_go_O`1-d7w-W{+V?z_ z+-09g z9z~1Sw2{_3&W7{xOa|OqS*QD}oPygWndZgu<+8w^z<6?Jp3S7^zWYJgg6UQ3Z3(?D zym8yh>av^a4i08PBMIh;9}iq~pFm%TbC99C##y*8LIsXI2Gd*ay}?Q~)9ipw-@ zHa}|pD$OZ(KPIlv`l!k69*_Hsz2ba4oSmGE-}_77#OYV8=3J-3Xq;->rdg>A5?7z}XqMON_MW@c&bKp7ai*aW*w*C1I3TjXIhod2A(pJRBwy(~(!Cf}(w?@t0 znRjMEDw`m%MW*3ActM_;)I=^9Y^gt8VLNtR0;vkJ`L zt~(N#u=fDb%{C}kx6lvc7`50u=P;0(Q8PSa5?5T7hdk`nYd!>5&BYAS&O0#g&6J}) zEWu|f?bBN>$L^4B=;Xsmv@B;`=c!X@sF;i#rG*>46`Lv_LYGpltxn47Aq2AX$@lW&BQT5a7g0(nlAHshf z>#p*Jw7hBu><4O9>UI`E4<}Y!tTaJS1QaQr5UNC+oIj_>&oK#_zF`atIYuy3qkyS_Y}A)adBz&EU434! zl|;4DGbcGb%7Xf=r10d{>1ru6c3Ex=lshLZKWsu(uj<{_iFc}`vYVLN2z+jr+{b`q zy~(IxzTCl~lKLY$(FYZUQ!Y-}Bq+o=o9(lOZfwk=_zm9^8f-PuVUaxx*F}@wwrG$U zE%O=Wc8h7~R!ZjLF`Ruq0(>3ZhoUdwD6O{hXcm)YaT*ySBs6tkQ?YaVPVfiQ{-OJ~ zNvg}lKQ2Y{yDG5X|7a?GxINvmJVcm9*P&1OTM*#eT@3T)*8_9z(abh8k;DqVnH#MJ z?bBkYOEToo{Gh?bzQf=s+YO5Ft7~Dz;R`^^3pQ0%FNdKWFDS@8y4G3P9~gbOZ~U=y zy!-nu#SiIsndTc4m`KJ_zCN+ZG7>7!x{@r6FX_ME4cicf@8?9t&uo*?Jf{7_(N}#f zczkkdv`nZHVw>jG<#)c7iF`+uFiMCs5c_YrlK(B!^7SKfTA~uE4-QZNTaF>fg#05^ zR73>zPB23aZ4dFFlfA5dYUr|NMzu6SOND zEGkR)U-$d3J752VjSV(SH{Y0K|HI`H@ag_X-<6pE8e#aa&%YCNLv;9EMV0bDTvor{ zig_5*68!nNf4M!XIB0tj&1u?yxLgcA{k0%lEXKd?_t$4cp%78xATP1T`}@m&ufV5Q zkP`O1|I1DP40FAS13CsGuD0 z`~RL)|8Jk|l|*>*sVhRfSG%k4v~%R+C^Fk|HsI)Zfnk)`#we+ZqAnt|;fp9^Z`!+0 zUSQu<^6}qztrSapS1B<2TW5mb%XfTF#L@ksCrlz2M=7B!s7dc8eljMhq^Lk@9a_6a z#tW4@yj%`X=ztF9W5E0O(ope_&)$3qSToQ&TtrPM|FGERevo(Sf9VOEU^=jKb8FCT z_ttYT?tNm6iiiI9)BMHtG%p}^KPLXW>%Q36%P$l?eg1!ji6(z$=|$r6E4LrAfW3#Td!DWJxz^CG)D8> z!)_9C{NQhzk6iq=A0Mp;I4zvoEbguifl7jMm1+0(1l9kxsX>v7;LcX&#zKZqoXxDu>R`Q90Xqo2TzY1h7Hg9@*whYsN;aT!Mva z=gU3Ahz|c~Rq;Q%HmDqB=F$z8mNn9-O57dCF6A|kS-zT=wi*}o2wUV6x^L!#V9Qg* zv@@}Xf$xD^G-J$C2U*O+j*zno9ar@v9*bZQe>t&!1ZR+3Z=P_0I*9RktrUb33%^<* z8tPil+yEp-DH zwrDz2W6_6MZy6_pGb`Y6*l?eiRow-?K=~+xmIj#W#RZb~8KXoj+FmJiDuVotaMBq1 zI0hMnEy**z8IGv%D71&;KhED{jI`TfNdw>9Nuv{(U3+i9$I(7JkD0ROFx_UC{#c8J zE)1Z4AljFkzcN9$;#Duxrcur7k7h_Hf4MxVAD>`gNiKcf53l(b7a)c&K?-p&RyYa} zC5bT8xin;U{HI-;>}7}1^MvW711Vt@Bvze(`LsT2P)2fKPYb?mVr`R3F0>Mddkn(b_ zO2<8w)9!oWF4~tsX)X=d9yftaz&mGq&YVH8=cRs|gT#mXBuurI>g=NMdEuS7O?K1X zS-Yc{`1iB8+qUUh7JYVjPTHbvbe}vtZ{+>Ht46bgXo7ClZlA7!M3zl0Lm2mck&m zQw*6On6K2V^=RE*^m$G}UH~)iGzOdk3a&zAwpJ;T(?EuB`Dt^qIYpW2SQ8p%npa7c zW#byli7xY{t8y}jdk3luXQqJbju)73UZj_(>3bY+cxgy_eeo;|k`ew41Ki2dtV% z?asD~*9(rlS{#mwVj(TDjF*N<92VzQ(p6e@UbWk^^#)F@WIktF`W{(rpjn=cxc@9n zTXkaQ8)p$DXxD6dK`ozbt3JBkvYt_Hmfn5HYX@(_Wb6Z*=shM8epy=- zx4KfOx<9$NZt`u&^+|?wAq*@&^(dl*c;gtFz}}-b5`mVy)1<5i#hnTra4p^MlvEnC zT_(b-wao!eHP5wTX5_VrwE=sc?Pg7)CPz>q_or*s`o{{6YNh5ds}K1LN*qQi{&AFn z?Vgi~T*Z?m3Ai+h-7tBgB;pz_HUdUn3Q#ADv!1RJx9+0z-*3NSPG(#J@ov2nHvHmt zmrWT>K17K%O$nZ}8j3f!KH@HNCzS$GN$ju@jr5VFV$xz&Jjk9&vNpB3(GdPTb7TPRNt#ngc7iIIk_k^%yAAY8GACm=t3({!V^v+B)lqFr>uWo|Zzz zzN2^3MnfTqPnFc`dCXY3hLl1EFD0dvd?e{SUm|%fKuiqgbXrqJ@?@=0WI?7hN9)^E zq0vtRk#CH^+i+{&Z8Lfwete}j%lTtPjkGn7<;<(_5H>0g@W}3yJ=I*zN~zUC`nVSe z@~U+llrn@@zRR~GtI1r?!AtNa)y^ZaKlz12DCCfO->ceHd|nvT3!PvypAX}Sg$z?; zS*{vlnO}X`YoxbJpCg6UqwP+XA+_tQFF@*^1#`Bfd}Mw`83n))o=txJD*r<@#=J*B zU#4#NL_tWWL41L9O5^ez#*)MbzqL8rTp`sajfY-?aYysHTFQ)8ca^;dn^6E1m7-bHop9z!> zN&@~wd}tC|^8N-VmCvQX{;#jMCq~Km`D49tzZwH0_hA zQyZ}yD8M7^w@>KyPnU9|`JCwqS-17*)DH)EVu$rO+_+)>5zj{blX7g~ThtX6^A*Hx zhb?{S{EGTsS-vG8wO8M3Z~7(H!P&9Wts3C=!Tmc%e6R*FMX{T?y>PFL@3sVIiY1V# z=fOOioGhruFAyo*Q8V*`($UXxt$&%=U!%l_J>#&I)~DHW@ixs|{khW1AJ*13dYAC< zj@FiIApH-=KfD+(ilaoS@i@?L_=Vw~?V~6S;Uojz-I|823)?1kRNTrCNho>0C{oL*li2Z6_(*J={%;YbU0Osi?iNV&hiqa za?u(W?7xGoZbB?lLHV;#qddNw(GmV;wGe%hCWD!6(X&q9rW)hy;pIx9upF|hq4tE~1{x@t_?I@L) z-K9#cL{n&q7Y1swY=eSl0y&PFAh=kKK9rj~~WJH;kw-fz_ z_)hLzcFe573vl4+yMRovKLc4vST>21ifH6QC3Vk<1bDAaYN=lHXQy!hbZp1q zFg(S+hq6Ni^XRYS-iO0BroMyx;%JcBn-pm22hCEFow{E20^U)hZ^#}?gtW(^kL1ST z_ooE8SkyORd)^CfLJQkAaXjlgdSB{2=o~GhxH|l4I6Q5!H?@(hw@`TCdoK%DB--G_ z9^Yp(^0_I~Uw0eOB+_PZh+=`8;O@+WJv=-n@IqL290yUdxz4j?QEzo)9&*HZeENh~ zNvlUDCES^SvfKw0(x;1%b{*Tf1{{0+jrB`Z3C>8{egZ*~H~D+g^AJ{%V$OW1c&E+(gJBo65y3V=`n{ zQTW2T>TYdi?lN!~7x)tT6FTpt+sxDTEfHE4#sSco9kgi|%kS>RjK_neH#8HN;S^z; zP`lnWpR>lp?FD6(oR@F>Vu70<>++cS*HOLrY}?7-5L{D_aKfYXu8&?$NV0z9nA|%K zw+&j=2#)6(r8BDgbJfoM_F#Q+Wz;R5Gcn<{nblJoONkgg7Pt-7YtM#3o|~nwd{6JU zN?^#}7dRa9uX?jgO{c!i%AOR%Yz)mLV?ref~7he{I zNS=AY6N_Uo`~9Rpaq`O>h+7aC_P-o`9j4km$Em7jAOx$`HE4nT0lf-e)@T5B9+RM_ zOOsWVqTT9n$wD@n_(M7+$UEg2G$1+|6Te$J$Tv1IyL+GWYvZHufWe}tEvj>oE-b1HLDOq9 zbk14FbcHiQ6!yTzhlJNP3HtLV_cMX>rp=Ep^USv=JiRe}r?BrNXBL>UEyT~V;$yes ze)>3{SrC3u5OdGM1;~;cjW;zIRwfsZllHWoUYn+!0|y>Nav7=z`%tB%)BU~;xf$x*_B%AwYt;jGZsSE`gLBLn$$P7>A+H0B?BWkeSdnL?u#cw zE+^nRY=$dtxW?804U_E_cPca}uY0Btt7$uT2fH8HLb1=J zW5h#!i-5usN@bM+5HYa%u21_NjO9CxRd}{)!T6*#%BR&Lr28$&FG&{mg@Rgh$>WB* zqdCf7308gvVk8Rl$I)1fJfm(%rgpYu$4{6bBcUmVG{>*Kd12OKP_xl{hYXp>R|(9g zxv_&-P?QN()yU}YJz~VpWtG?zA~Uc=TLrL*$UT6JW)vu?_ryVTLAbg3Oab7rvcVtc zyEH=Plx$$kr-qHEZQ-{{zuwha4r}txV}UJ#(n=!CIp~w1&akn!US%WeXo^QVG*3tM z1JJRa#Jbq%B$f=FpB^NUx~MCuU8OT z&Wx6V$vCT!^DqID>v-sq@t{b zdZ|c0;12~x3X!hpVL^|pmpAhnq?)bjot;1w8FPOMXIw?a^Y#aBpz_z3%BeF`W4k$t za58}~a9W@6j6!sXMUttCjJ_mc?8Y&$!7s4-`l9*D@&_n%Gev|Pm0c5-c9~>HYTsUW z<6u*MwQZg4v|5qStLZ-V@{ne0mHf0iTRsMj(vX^D2%2%)hWS(we>HUilPbO8guE-V zfY_efC8%6f`Qj3=_vBo*=CIaN*qk><)VC(eeoj_865u({+qRln${d)6_4j2@EbWTR zo(U=nO>hBpKc}nE3gHc1UY;UIi>nkv@*k-oMD4bnEj41O!wguBN@fT!XAnEccqi*c z8L*#YTcQLfo?qT;C0HiIOSw=z56(=x{+XiHF^}gaGmPx)#m&>?7kqb0LO%&o|A}E< zU0?~zq-l@$m6Yt5X4HQ#v8oVK!^LauqJP-ze*;AszoOpXnWqqV;(XL+>DL^10C%wZ z;7*cob+}m#@Kl8i3sF6@>7B94S_@Z;<5X4mZTLX(WLXlaA|I@F;O-~Ccg<#$cGZJc z&3YN!5V%nJV9r8%vB3E5*T9J6^+<0>vowhRTkT7#-d~6uUYmZZQTC+D* zpNeG$<8#c8GY=K3m$NT3SP=N&Usn=+8y@`*VmcK*jOJEk{vE{Joty_CroE1#H_0Dm zRurmCI10Qmj!W-%5Ys#pP*?z#B>N-%LGYG>~ZPEX+*eHIY_!um#V^BTjPlL3d@XHwzTd$}jE*L%uq%nVAG ziEE2VB=BOwZjQ0mQY}t_WHw;#?LAP6(fWA8hjPd5QNy}FRR6Z-%|HI)f1r&oWI&Pq zC5f#I{@-5*Fgp7G_>({WNuC4n%@1QgP0jwcN-gp(lh*lf5j0R%_|HxMXzl+rFW?~m zXCVDCrT%|4WellklLaK`d65X8oA3J*cP`&uN@muRDLvr|7m2+4R_ONh%`6^o45h#e z>SYYkXCfDvP=8Tn=ra+L@Q1_(_b6^|y~QTEAG}n5<7m>3tqq`*+JWpskt4D6>V8n5 zRK3H75)9sp{~LjCJ^S4Dx8MEk;N1XmCAC}7-gpSrqn?B~zuWh~b~16<_dXU@ z0wD9mT+`cf1OO?52@@No4!5L~yQ^1c9^6 zKqPYv^YlF4iTf%QEyD=&ie-po{qos>r~4L zp=E*6?2=}E$xQOe9AUMT4alyH9LM$aH3TWMn$m{{5Gg>0gir1+HaY9qF1Ar!t3zR) zCEI#GKqN&cr>Gz5f<}10m3aPTfS;m(UZB89@AODpnA3GKqOGf zp0%_=IzGnay{ukif*$I@WR)AAO5~#GH91Lh*~|b2BvO~p)s{wrtl7x8{o|DD3cP+X zl7>MLXBC1(Ec%!X%tfsBvLr|Y%`|uh_5GC?MRC;o5hTJ-jXLEbGrVUQR(s>3j^R48 z*W0>d_-xfd^DgkACv@1JvM*Gt^mE#tQXk2a$1P;!wp-x9Y6rUG$aKLbnJQ!H)_7-t zo|tTn5w39y+DtlAF7#xJeh~}A>IJR#l;{vPQ5&OZG7JZ`04-`ocY|yE43oHxc2HQu zAey?hnoN5FXoP!M+Rv#Kh4ng6`9QwMsx#SODlbC}wR{YdPJ0}P8kDXtBLSLGeyyQ} z@QO2t9LFY4g&O2DEX{ z7o+p7%H_SgiWyYz@8QP+2mZ5`j0La5gP)X=y&)_@X8J0fM^)|z_>SeZWe9scQg5>B z_b#~$Ds*4Bfa+kvwnF$;8jt-*&29=86wQ3j-EsxxBXA|I!r?=F20?>h~@ zix-g8SVuGK@qO=($u|c2MF4=JyZ`WYs(SsI;uLufQW%@ubGFqn*V>Rf&*`*lf`AkS zvx52T9OK$}9au0+K6t`o?tO4HY2euRP{{39g^@e(RAka=o2CZbf=E#92a1JK$i3jp z{oZnFk@;2~v+7H9GA~*X(!lyz{D@GgDM~0J(Ng< zQ@$;~>*m>DKX2eO8G)tGI^7U#CzLhh7LMf{$#%_tR z`l|fKk?`1VX!&(sEjr7X#1Yc$hI-ZN&ORKJHPXwH(cE^V z2Rax8%v?zQdlt(D{W=lg-v>#HixrAa%7y_wG0pz!%!-R zy(KD(u?;HRsqv>IV}RBFgnD^wVM;oMt8|&wo-e&^jEw0D2(4>ho065DZG}WsA=oDV z#RVu|r-wa#%W|(lfAFYEP+ho#tI3ty;^{M*Yp+-0dsZ{t>IM z8^gFOfqKokFWx%El&=#x-Nn?sV&xhhWG5%f{66*Z z3$0BOsrAR92TL8nGWE73t671hhdt#cWZbq@v9!v4u{!0_lpnC-K}9H7A7i3y{!V9v)dkY^O($AP!}8vDaMP1nTpj*qZ~|n6ZKI%FrDZJfg+O`tmX;e1=NH4 zsE4rH_ZCuSB&XZ>+jrJAZs*F~j7uLih!Yv|kdU0uDS~;qGc3qS7`$2AjrUg&t1$V+ z@7WRf@mx0AFMZEX`;Ihi=+zlnb``HaJq95DgmJkCu|vl~wFsgdFxb~_rvhg2JM zeHm9tjfy^XZ!1d-u4)fqlVT6Hg`aU+sk3+Es}BnGQ$S90*X8#=2>ER6hLNx<10g6m z2)%oLCH&?bZ*!*B-+ishW9Q=6S6ezz&Ju5y%y2(yw7T;3-`~iV2whhchT}j6CfB6| z32HH`0eQn=XRh%joCsral-)sXmUE_8!IQd7t9s$^)2Nw7Yds92Gs_c_z!(Rt29gfS zB@XhS2m^x|PJ4ANzr(<^GOIGe-s7gc=H)`6O|ylWT=@(O9tUs{Kk0rL?MwpOWJ8a7o&ZrYtiS52}HNB z{U+0sXVDcjfO?eM^DPRDLoNiFLONYQ5+;poJR|2IjmLs!tG8h7>;=g~Hm+g^B_K1q zf#qct*>W*KoHy&NmY{Sec*Z6bNN{eYKDQ6%aH~u2-Uuy}@J|G~`&fLY{4#`uUEOK-ggB}A5fd2ZQ>KAc(mEunJm{POtH z*l4QY?)q6*nQ69&Uf|p{sIjO{RM8%FcB z60UEaPP>Lp%d`H_WAcyApOxybnI7*C2q^sWkC#p6MK~fyvOU+EnU~7CzD*jz%P!3) z&%oI1k!2C20l=~&KU#?D(A4CjsUYf(#7$7B?iY(wFi$-d?I@HNSoTDCbJPsN+BlhiS~3Ch`>(qTl3DGMl|mLCt4 z&fm-1;p|v8<=l||`?sK2nlrVFs_tLD+I{!j#Y{jO91o!_HZ5sK4x~hN;yEMg1dD{! zNyd=5XnL@T(nt1slkJ@pj4#< zkR}2G(n~<;9g!x4fP$h@rT5-j=pBNH0#c=h9u#Q_p@%?1IWMd1z4qR&^XHsD-*tWd zk~L+nIp6u#F`nlhiR?`<4?)?zt<}ToAq2FQ+(#`*!iJ2y$;%zj_-sT>z-?S*bKn-7 zxK+Nm$^ION(H>0vXfTP(6fqF~Xq@h?58^ag-h_QZ`OYSPw(p^F1n`)^)?H0g&#f6s zPbiNUDx|UlUnaX%UrID63aSLQrQLN)baYh&j)9X9+_5OYy|CHYpqgi|8s7Yh7tF;L zLEec+D^7eHS6H5IssMFNEsYbThcXKJlnmP@jUJnHYJ-tmCdoMZd@nwZ59H@@j1H_zbvaG5%Y9}DvmnJP=g_x!|RVk*H;1blC2~$g1&h?1>1JbcDw;l`}gMipHbmc<} z7CwR1NToptL>2{{2ZTHuU6nk4yx+({?0c^8yA%oMtH4ZkinLm=ZX@{;AOri{{-kZg z)`Ww2w-W}e#(Lb^<*)l>G(w6&n+!I-D2<57aQSm|OVZ;j@JvV%oS{PnM%f=cUA#yk zac97hrhuyG9Z)G9rMoE~sc-oXJFZTfm=9yBIAoR35uZP2aL&DD^)Y2kB>q<9G*Xnd zNYy9$A#A=Uc7bsylA1|0-WMlINqq^E_^cMMiw)2xWq@E(1fO@bSmTt)?2VI~`x;YBCu(62e!av`Ze17(PQe zrwPBf=RPS1eBu#NT*loWFs%dpQinW!QYKQ@1$9cw5{d`1)(bfrj8{*`@|kSwr5y4Z z2XDpao;mMvtTm6Qhi`$ZYjqv2H>#?YNnQdL-xbisJB!X-wB8Fx1v@icA2&(oV zj*T3DR!V$~_()khO{zoyFQ{=s)AXph-O_Cnosqa{(iVknYiz2hj0%Z7#H)lw>S?(a ztUi$KVUpgXD^lEyTHN~OwR`&n&&}?v&6C!vZ{4sWao;B61LxGb*s(4ILt4F7{)YMI{dFMj%z-`uX0AT@CMlqP z`h16raoD{l)%U=LtX|CIb#=v7eOkOfQKi74uxyqi-aT+Tpln=N+{4?-Pij0hhB(BB2vRJSeSv{9A4 z+sngf^Ct#D!*(6{KG^#0&7SGA-M|$G#hJqzdM7rEregsx=%O>kU~WT)u-`<;e+8j= zQ9$xa?yvp0PRrSSuP`WPO6)DPYt{?*9QW07b(bzySQPl@3~Yo{jafUko;2dOpLp6m z@hus_`I-{HthxdJDh{qTIQ^TC7& zuWDN$wl&>2PRLHX!P^!^1>HI!Zh<+IPaKK_QkFN@Es}te1fNq4v}%LHvn?v|D&I7i zni!w(8g4tMV#2{#BTS&vQd71HbxR^+jlHI`FsWjA#jF(qYRS>OH0jmaKgZ&h#1JwXyo98>O%>foxban+Jz8J5H!ltL z+Br1E-f1wp)a%jX*~PLj=JvZ|&|~}#qknm^UCsKxOuw1beAx~4us1Q`sO_>vp{vN= z>FBy+<80;w-Tli0sGbql(rDz8#RpRuk2ZqAka$&+O3Bg%pHop98*g82>5M zlS<1lFWWOPnDhX48^Dj`nMz>W2lnNvCf?~XSziefP?+$J0GxQT+zu6HDIjeUX5lSW z!X-s^aLTC3Yna^C^|?B=&!V}2nCm-Z-6R3|;;(G6R>ojxYzHJhuzjV8glI0&(mN{49gei@3)AW)C?UxkAo~;H3)H8Y`%4`KNSQ^qr|6ZtKEawlvjx ziUUybj}xHQ!lk>^x(f(ui>hM=RknPq%~FwRd91mygKj-jAJlZ9$_Ya68QNN)aIgi@ zVH%v4oPaX*8XI|_;IOp5LBzdbr~S}e_a~r8w#wBe8GoIrBG)Asf%5s++8$h%3JjN^Q?lJ)e3LB|EfUf3Gk53SpJ`uR42hcQSe*0aIb z9=NRqtQ9OXb&Ul=cnb|Pk*WiZV#IHmQ}xB`H%v`|(=~E(DlUU@a$rR)q1++FkYUPT zd!MGE`?3)6n`3IeI+_Ec=aGOwj0tUvCNS=dh(Z!RIri}kl-I%p&6?xA7=!ND90Epy zWn8|?`yzo}vo#Gz!ql<78?O)Zv&ux1&l9==n`5ub(3@dSL&S6!3h+h&f7Ogf|t zyhYDA-qJ`LM>%6t=eksWMbc}iv1~}i#Dm@&bYZaf1IAHee!Lwb=!AHYsN6`|CTHXb zYNM2eY#sWslWb^Z2|<0g=S-DVAZFimu~cI|0mG~53K%{S5Lqvmri!-nRaSa0C<8H6 z@zFO?3C^+mxH~hzunyhYDt=y^Fx*p{xBcaS8T3?YV=tbt8qwa7)ml3}h2i#bOMA;e zjFZiYm(%?CxwI3GK)%OhLv|nJXs4noVd>jq-;_v0169|U(0#0(VbZP?MuG(ZAoCQV zJMN+=2uU8FL&Rq!JV{$9OeqvwX^_+$IvAU7l7clNJa2|cc0pOK-MF$rR8G#-FcfhT z9p+2+s)KHL+A@K<0J@laGz_j3zY`lh$@-O;VCK^`@FvgJ#Hp~w%|f!$t- z(_TJHjkF0GIekt2U+IPyI8+&L}HAaGa2dJc)|?ig*Ar~E5H@aDS~^6vv6r|jkIN;*F;|}QDV_AgD9P? z?AmtD?MpBY*g04gL$6plo=8Y3Hv5d5AT-3Q-{&tM?}7EDq^gP@hreWywDe;*E+_`P z!h|s>!3tiuzRpP{ho&?zYmuuNuvxH~dJY@@G(q z$`ifz*X4Z>r)b$O_}*tFK|Rl)OR6gFMf-xN_c4`0U4WzBttTON;=TKNsa2pDGp$|2 zLhrs!Tdvpomxb=DeTbkzpg!e`&*+zQ+40Fcy{OE@EMB;7R}!bxDdJo4MM4Ez8wXm8 z83rf$g+HgZIbP?!#&i^H+}OC_FhC9|0duOa%VjYc-Rx)WJ_jtjMipb1tVm~-vJWwWU2T0N(*0QQ#H+Uxr zKs_E^Sjd+EK~I6y;X;%4Rp2ehnBjc2+UP=TbMlavNk71gi_5?y7T0%d`uf6wNI$9n zJ;62Ox27j!yI>rs<1G96J9T+`Nz zrN{G){UVsc5Jn)O0iqv>W1f5d@H!SxDiQMTuWTv0BM+4tT!yQmgyDA(C^;b9N{Mtt-RnVruZrYUOSsz5K>SHZH+*3NnCtKGFLcLq?rts!o1qm%xiAO`V&Ws5v;(Kp zRJEk(GTayZ8(hPq&YxO@rYSq4cDkxmr|C92{1AK^%n?~C@MZcm-z$}ItoG^omzs|awNH*0dz zL+K^g=6Tl%L|m7r{F*3QBXPJ_aei(P`xz#y5Qpv`3o>!oD&OsPYul&>Dj#~@>2gdm zpa_jE;0Z#?%}TSn-Lf$?Z%^iKj9Qg>Z;#dI6sC^X^+KF*mBO#3wctipsWsJhQ<+JY zsbRK2nw~pbzqCFCi`%CtJG-7iyKUoNZy!G}P-4PQD-DW`RxqR}Ok84=Kz*&*dSPIe zwhPtYB_kuGz1(MvnVkmNslV} zV0Nh2ma6zh6xcQA)?21lO;EpLG-vb($pNYH^S?)NoYvN`rfGBas|)w+woe zH5nrJKXQWKrHuMZp7O)sh#ZSWzm3%Ih_ho2I4_3;EfBGbDQhD$ndv33s|P20OC!_ zkNkAE*93Cv+C;TOEU3Az46-ApuRZ%xnx23EB(?FGc5cd%|6DV}4GNm?As~DG-Mn)z+ut%U{?{OAZ`JyPBg$jeh&P&F<1C= z=RNH}z4oTwuA~ne5j0n(Q^%!0lnQHHrGKVi!yzRGRpndD{n~)Nb|W%ZCDsQHdjLXU z@=Q*%oGRf!kCbo-OcH)7aku3Gb|>UWMLW=_PwNTnlGmr7wf-#uFMXTJT3t{Vk#ywy z+vowY?UstZqfjC{!1O!^wZg|r*X`oP+ybmEty%;4J2(4=V?n+vP?O1k-~qz= z71$=2ThIdu5bZX|>bu2c$4qT>mI*SxH)b0NLc2qIhk*5?dLrMw4i(%-#A6>0a+D~z z)}aX`A59%xs7d1s4G`zfJTh&DvPg1B!tk+x2dQu+5CkToj?O3!Ub*O_RQVU>n9j+% z&0wXVc~#Xqp+fCukd&pLTds2{H~;!LUp+kuKocR?JM36lK!nD7pv;WPD|^>d;2a&E zHhB0C$<({Rmkl+O<1aVp=v1S5qPyen7=m~rmm6j%0^l7xYn>yrG;`fKq&xloorRY! zrLtzyGuiS0NeFTxh{SSPbjHMhyzn*jVX1Nqyy`J6un|I>l$K_-Hn}04EH{H01;TvZg`^Bd4&fghTxv)(R`? z%?l!`(OXL(dTIj{qd$jrnF3Gv4nKZN{mqSlo8Uj92g1EPA^|!21gz>*!iK(#h6$xB z@Q(`)-3Mxf{4N90EfZ+>w=+l9@eyZ6*M46>vbH!F?jV4a3A=2-8RXts>>uM2NE&vS z=!R=LS>apn*;HdxFhhu^jDf^$;(i^jZ$AIM{ccm$R=*PdmaE*8Fsw3S(Qg{2 zG$xSUg9b#TtH27$1%`7B9d|@x^A}5X*YBUcM5s(myV)k7ks#xgB<5xSlC~BHCKdXc zS+#wYU!ajp09xjM#8Zz3k(jS8)EFfIz3OqY&cXCDqm@Y8#TLT_RpIrscIs}V?c^Mo z&x;*uU@9(<*tR||7?6L$(o<*cP~|EYrkMf#2L|J#)2lpk`Kt7-xq-Qjx!A7m2~3Wv zNi@ik0qT+y9Qp5g=^Q;7SY5OWBy8&IP{oGIfspMy?t}(uGkc)$_fb9`D&9;owp2;w z9S-zCU*W44@q;^`$^p7&W&*3K*p4V^sq3+}rO0PrGO2B*LNa zUCr>i%^~;Ae@!^ji>E&?sA%AJi>8Kz?eL%=m;gw)Mz-Y3>VI*|$&2afG*bN_ZNA#q z+%b8NRe5!KiVZ|C?w4f9JBOVPR5%}6@&{~XChVnqd)bj{pV9=B?<9ZH7U1D9q8ua()5$OYXTq1P)D#4YYUh zvFI$5W){l}Y)~N=7k~z}_!2k_R1%KBtyco%M)wAmHxbS8TpIV=0V9b*-c5Ww#H8I~ z|NGl1fcfFGnW%mf#iQ?+UcHw$0UGs$QCW$BMJ zU{&>bQpWSQxBT0({n-~>UO&8Ce)4bs@o#JP4A`e=NR{ec{Lj1oB~Ja(4E7*9zGudc z|N80HWM6`qlU~t3;AGZKfP!{UDq#88ub*z`nzZ^5%`Kf@?_pl;@B<~<0juoxUyt)& zO|W+kObsV575)Q7XpbIHFb>16!Tvod{KwyX0L%t|JV^W38eL$~K1UaF*#1HC&oS^< z3oW=me*Bjf;IB(kK<`U@^`+p~jePD905{qW%{o~A*7ARQl$WgF8~@)f@QW@6y1=k#jpf|L21PBcor2 zGn{+}{);yOzw=HTTrcbF3Ht{qmeEm%!`}F~`b%}N9@hfaz*nrMip)=2+wy^w4jU{U^y&2paa-zxnq^X?DVbi#M< z{QC7zvAlW#_98DA7gG7dK~U<5lg4)IR=0-mf1_C#CEPwl{Bo$ADb2{}|U)>cf zsGZdg;=w-(gs~PIpEV-x$a&(e!CojT8FP z6g{)4AH^~9AGsgD-%zxe+{xbGdde=9pcWvqcqeeR=pULB^ z(~G zcf`{`RFob|G$7-&?>F?PZUe&nzwA=aDu(F zhp$0feEMwjZ`tLX-rCrO_&Y8LHnni0@oGm7;R2~S;l-i}NjFU8E#nO!q$CBMVcO8i z`t37oZePc!v!*$SdOj|)KEE`YUPZ?fhsHw2n_~qP-It~cE9l@w??C!T6;MmKfA>p; zfGR2M;_!8Ak9U4w-b>#mXY)@#^Qx_xz7KU5 zfMBI74-@@W)R%(zV`=H!G+{t-xmJAbak=@Od)_;Fpw^S*V|6Vw!eOdjR;)5CzDSq) z_0s#K|6hqMX&PO7^DkTGUyv>U&MMZAA}CvavyJ1wfh`KBp5$iTq@7Az|8|1yt#mM3#+ZLL73wY{c#i|MbSOWd^ z2fMNbXgPL^PLhNpVFOs=cA7N6uL*M-=0pMHh?3jPuP|tD$pRh{02rSFT&ezg2aUFYQ3IKs1reWQ% zoaj^?ANy^DYAz_qf{VajOBp@9X}R?=ke zBkLal#FOC&=(wV}KW4ijbvH1=}$|^-FW?mJ?4%Xr!v4D-|$Ogv>xi75GhWSw}0GRqF;Q(4LXW?`|8rF zCJYCUYnX97Bp{ft`(@Po`cE@m167Gc$Lb9frl)4w^8+v`u4{~8W9*>AGqwDX zJCBz}Pm!(bee6s^1H?<@`RQUiSmgKOAW2e#)>qSkTwQvAYe{c_R9FQV(s?!YCGb{& z5=UPfy$5h2-b?pf_P=2dO3%-#h-$#^43x{$)~zDxG6?jNPF*qFye^Qv&u8AILzk3e zo~^t}UpTCHGwDL^pHy*g;PX=Rar%}xUtfYc-lK)07uMx7IZ~NFY^oRT>7qk97OH6@ ztPvhMG{-nu3s1fr&sY1?w>D3}kBhtR==Jy64tpCQjO%!K4TMBc!;4XzEV{yhAP~ey z=GB9p%nqv?F$ijEkJ=81KU`W6Ahhnzo5AZ2eo*0is=8wN8dk=a5x#@l2~E6thf=0P zL37m@pS1TE;?8(ZDv+GZ+&?W@!&Pud9%b|v&y>zB1k=@&yWEL2w&O}s<{3{$d<2Tc{fy&83*cI3{%UqfIyN*d5$yn!&gnqcaR{v zhP|cS6d}CQsxWJJ3MXr?;gjB{%m!-MP=4qRe)35CrFuPKWOyN^_$DYaCb$r!IduqR z=nTSM8Aa$)B>^j+Z=d;#QkotuB<9waH0N6MkM@oUF8r*JH|dCs?o{q$Nxm_@)x1}( z7I2o;tT%-7ruGLg9y?|{(2Z6B%Ypc`JeC>c{&dW>RcfIrL}tAlXX)>BsF0Afys0*z z6S}#Yo5~wA=$mwh-VKFV(Wt6I=E^{t?o~Ssc9YLkp3k3Z!v_@8%k;zzJ(=tHzB)Z@ zVd5VQgq{(oL?HqCGflVo^lIfI*j0Hz8Jzc{p@Y;4PLC4gi$c1JC)|&mpelrY09>*n zi_}?biQTV^T>$=<9A#n!9{ZpyBdilKB^7^Wv@<&8U6flPy;hIqNL$OH-74f`Rza^+ zX!EVE@>`c~lU-5|&&eqJ?8kgwT_%f7I+*LaybO6v23ZCf*+3Rgo=nJTU)r)KU(U&8 zX2_|_1V6cUNm^PxSnKK7zErbp@6VOn9+q82@fOVl&lfMJ;>8zy9OGTkq!a>q*QLeH z4DnCIcom^D%B?lPI&E|Kf*@&FIwR~Mvp$iJlDO>>hGFF?ZY5#!g=bYyz^pfqC zIz9DUU&0h&62koeuFov09D{U9EjjoUny)P=a7)Vi5;GlMcAIvW?sGEg>a#S;MG1`n z&%vA!XaJ!zI(6JEtgrg1ED#+wf~jvTnwP)Ar57@2VUuSj>DuudeUX-;0!<=gvP(=C zSL)`F5t9#UrejStxyEj!$W5PEztrz0y8yd=9Eo|V4b_jXtQ2af)>NdYYl3$?!=iF? zg~b$8>xNR2Hj6@PVGkw+n8Xf6eF@1`c7vUgpO?H^-KuRiEe*?ln0ZKQopWy~ESX3< z2A@P+fv>_x$}L>POZvxF1asAVJD^>lbd061=LW+>m0fH@OW;B#HVIJ&ZE!8Gcf*cS z@%L7Q>H3(0iV>!sF;=tfYQVYz=?~G{+1ngm5nQd`6d?c+!S)73}6 zwQwW(qbK^|6q2upT4mT17vqMHKSqa*?hiUL-L}qy4j0J(ggqx7r3}tjeyrEJ2u{YF>0QACDPvK9&p=huv_eLe_L&-4YE+0iuc$d(gD;@&yTwM@g1F z3BqMLvBp;zcrOEs)$~o@pouW`R0V>=fzcJn^CA#D?#JKwksQQxjeaCHP?z$m*Uwp$ z-AFAPJ%vJaaJEk$#uxsy$q|FO;NaanpGC`9>!a?z-Lt*kUI-{s7e|_4R-oQk0MvJX zHBdWcMOw1WZ68jIr?>CG?HAuyphy&R%SrYj@_e5wWhR%=X0?vJ#)#7lfjQbDN!l6vpGg>JHw@)r&JC10{g>>T(s znl(SR%;|{(#pds31XS6;vmHij`#DsSERT~2?zs0J$T!R+F?zhXq+GvyzM2#^ynRYC zh`6;;XSZ`1`wi*v6FE;4c9;rO?n!BRDH%X~I}uu}y{11KdGXxvG2Nt(md?|O4`nnY zTLycwQ|7rBg>ARUnZ(S~m@vkZ@|<%w!VbRLUeRbZsA}w<`bkP#9A@^NbvzKSbh0Wz z66@U-zlosf-vG^evR7b6`j&yv8K3RtdwkCdbE6@(jQm^$_UXFx$nOE}H*Y`dXgS%C z%Ms0^T^<}vxhqz^UM*TL30Xw_2%N9>!qZo~VRgjuLz>I`gjo7oI+>!hJgn>9n*Wq1 z%9{SeH=oOrm`8-yg7Tpym zwCf{|+cK#?$%Fa4duBOI7f}vMz>VW-EE+gR#NC%mK@F7&e6p{VupNs7=81)c_VZW0 zdhy>e-;&_lCEGU_(z{o?yH)Ha>a*|YH8a(|lg0XN6RZ!#-Ol?W6PDjWu>@4zX|mm2hvlb?IQ{Hio955aC@ zGk1d~)r{IESk$jDPe#KcPyscBBFHz|*(B2qQ45-$&W5Sz?6>sF_!nVPFar}gN* zG7hd6%_Ot(u1Iq;Cugu!GV}> zx^}(+`#{(?u8&qJ@ct9#XnO_*2EL%j=$4Y^gB<9{-eV7R4l;0ssufuieXM|8N9sO} zu31Qq*5S3gV*De!IZE-Z#K-FjR6Y$h6;zAU?uOM^#XP4R($7{JscwOrmVke#2{ln< zm^2tF(Qkb5-fii5NFx3H%-;_2Ut$rgS!Z0(C%JKv2GO6(is4zoKOs%9+N`ViD(@$1 zW06nW6GHP#XO$u~NXy-eb~Z)*!HJ^23kuIh@-@X*$}ZWtw)hKj$ScUdsZw-odEavZ zuk7Cr%OL6FTL|;>3cZTWVHcQ5<-_~Zfa`l*zpkbKOUu`sEe0{Pmy%X^L?j%r)G1r8%z!p+txF@8}>x89qT=V5R4t7tF_J&Z(!_V-@)Za>B3(w7{5 z?X|o^<@6uJ5Id1X8J{5|1zi(n&}a?dct7wLw*E|ObM z?%a>f&*qRPCEJ=&&xM5UN25wY`guy3j~eU8<~yx6d+6b;>H z5{*(*jtlF1hl+I6w_cC@xYRO`dbn4K$4+!nMENJH!D;AnB~O03(=Gz&7(Pcs!ZCu? zb1Q87hw|ps2Wj5cfU}*kO_~>E`WFWt5+_TQ1ox|=;07WT8DY&cgk%Lf^5b+Z8b<9X zh-35E0=!vf&K0@$JfvZDlvocE#dQW`(R8h5YQ*6ZFI(2KXL6;`+;G-A1_k}W{h4>o@R7sq)G3Nj6ECgq zjKDtmWnf|pgr2l-JKS&%`!qyHok+UTUseM1Vvm#DU*6mfYArCRK_o-Dc_^|orO>HP z$%v&=wA+ollzI#$;8QJ*Prczit^ZCIT9roMYx|#vb`6~C_F7mty56$NGV)2feL$|pxVDTk=UG*mqLl$ zCNjAbmvR-#4_q&Boy%vm|DrD>XV{9=X5zc-Jvb;gY{e)vbE&Jd^SR8!LpjY?PSjuH zBz9kU>&x3J7I6x;BtC)enerMOrdl3;;X^KxF}bbEd0fed_9U8MY#rG;_fFe|`F6Ut zP%PBXWXI^zA52kKP(rGLtuEi>Vk~r-eY@0N|BQrpLL*xx!|lJNr4+usu)MQFSTfyT zWVLJ%I6?X2l6k-890e7+G)I;1IY}9-{m>W4K{ldUP8D(+TuJq-3`1R2PoVJAr)9jf z{XNjPo~Xr$tah9d-5yZhboiDAA*r6qy~fq5IEf7i7tS+5Nlt~HH4dPV&lHp&K9P(% zc&g!=W9{sp0rIWY&a^r8t5teqOT^{L$)*)z##@s<36kHjB{Sd}WcX0=A zZ#6in5%%@Jsc2X<(pO1RaEm@p2vZynmDay_iYl<+b7a781#QW_hvw#i#O0lI|C6=X z{L5?u+v>wn9rZ6zi1PZ?PNI9PTuz=sA~#dz(^lHaQx_@jYuVy*SfI&d zyYr{7;z=B;9t1rvYpn81ZoLcJP0-P_#frYBpBJ1iSOoGJBCl8SUtAr1-%B@zVjX*W zk;lB&;ku@fricCBQ00g{ z{gQu;F+@M=V~&ZU#&jVuE}9fnlemMQ0X%Ywlu*^gI#9fsD`=@Lw-Q+1_Xx0g8`Mw$Ju%c7eS3-5?I zmQ$TU73y-LmpAJ?>qLA$Y0+olTXC(AUe0K~e-WQCu5gh!oWYp9G&ji0X%)sa9d4~5 zEo2PS5?mNmld5n8CV*ZDt6c{BVO`l#sR$;Brj{_oJpV~fj25tD4I}pl}6+YoFi-yCZ!X+)n{oQ+pak#9=ZR!Ss?31mm(LUQ%yR%=IASHxLpE>&> zGlWxDI>?X*A8c`4wRJxGCq$!+gx~O3nva6}>UUj=ty2kcn5eE(qDwG(9zHieU!P`O zk}_4~j+?b#g0YSc+0cx4oR__B@c>K`EeRPssse<%*r|GL7ZrxBuV({!n6yxSsKbLC zJcz(+=Rf{3q%pWgFiCb!pdy#r-`ZUHp2p#%u0aCc;#zQi-Oh8gzQxK)7abi?-2=0D zMS7&|kWtjBzY?(gnU?W$5x2q6_BlGq4}A*N#kZ(FQw6ek{ydLhML;5m9rY*ZD@|Am z`w(yOHxxrEnCgw}03p{6r7-+>+im#M!<)N4+M`vKw^p0W8*%I!np)`mgoc@)0i1OQ zZ;>T#tLabi20GqbWmGy#KKCO(7F6fhh8eql-$ktCDo`R0ysNO8)^f`GM7+@$AFEIx zz6lEYUTIDqhGaakRI~e#{EHZRsE-n>%LGn8p)MejQDt}QVBA^?R>m*u>FLuVf5Ch-LfL2b~OOG|UmugDYB zn1=D1FJP9p4TA^*aaaT;CKg$>n0z=g&2O%%Q7q;4IOj#XkHVKTxigAt9r{S!5$+Jv_*`!ZMbw7HOKH z={)aGV~Aox)KFgJVe_&&sy2)4B9m%V*2A+$-~%%!N;qsVKg)crR+e zp7$DwHY7i~U~#Z?H7uG8_m(oiLP^k4+pFV7S6?7e#V(Ebx;X`p1Mb%A#L3NO+OK|Zd_9h- zP@FV`de*_WcWnvACTN~pTo|j=R0+2LhtaiSH+yuO$-d4t>Xb?v{I=ic&h-KCG7bl-j>(5Yg`KEce1=N5Nr;xyA(Xq$5PKVpIPF zX}O;M@}1{N$}g?q!xzCS;ibF6)gR&ww%hTO&i0k0X%M<)6{XlQ_V)Biw@lT|2%R^2 zv9jyAYne)Kx3v#yG*2?t(bM#vLXgI02-WjX)Y0Z0GY2}E3U0b@UAN*$llyaJ?IV=? z(>jumc-L(M0YSKzLMPKIRn0Z*%1G=+CPnLtuX!4BsH zOi$Rzs$=HZib5nvshyKfTRzQJpc>VA9XTnzIxQKuD;(`X=kQ0BqN@SYPi=3Jz59*q z3s8LCOfY$WQa)&;=<_PkeUJk-A7AHwu)8pRnwpWV`?7YxA~?a9$p=lBx#Pz5@V3Jj zd>?T8z6lUHa62eOw7pJwUJ5dl%S{edzx{SLN=Z&e3rHM3bdq@)94>ICmR0l-qlb$% zC!%fogX3i1p5YoGcgb%ouB84wcl+u%^ySr_SID-weP$NAcYImvD#@fO#w@&u_SHdi!G8WkGvf28@19=Emt{XMOj&yn_&P+*bs z{5p@+^NBPc$3+%U*6R1{X%ycvKcQ?p-~RCd-jBOFmHWB{{u%NU=F|UB9LPc+WQg^r zN%rEulxtY1gUbw)OZLBp_xykOZS`?-B+)h`gjs4V=GOkl1kt9?0cTjAMBlWEuI@=| z0+nsmh2-7Id;Tloe)Qv6*Hw23$)QK$_^5pmVNTBW72g?x`{P#HqOt6d&3&Kt z-egcuO%Bv3uS=d-yfx9_Q4-B>G7S#J3&w)=~y4y)H`bH`pD zG~r4Mv?=k^8OWVo`uQ=GNlDeTs0TlW=Y*=m>eM)pJ0bFD;U=K0UO^_6xXczpcD zsl&~U4WkoFqwAXXT`{ah`z3~kprY>$*%e)2uF6sM{YKp`h3y{1Rm#$}K|U~%}X{Mz3{ z1wIPLDCBGG$4vJtU=7mf+I7w4z0JNd(y3`$`aB2gW}m6@I{A^KBST*4H z9a`+%+dsV0DK-Ea!;aaQloUrOqPdN3FB+6s3xRsRjJ_#V)y|UY&>App3wSf%`fA^H z^(vmH;}s_*@cu#`707;$xl$`lO}X$UzlVOTRg!Z8^qJ2MLWLS+zx!Y(w|Vr#1j$fm z1bI5#r#Eep*4J}fKv1yQ0UNVY0np2qSfsua9>cPF&{zR$%93#XVEI!>a7i)~%oObj!d`_9y=E(+TSg})TV$rs9d%fF<3Z;cZ zho_({X9;l4^NK9w*YQnMgTqTP423Q7*{?tO(>aQg2_P;nZj(9uV*YseO4_EEZa5gv zn3EE%{S~+!tOi$nJIYDhm6@Sp8@?&r1=YLV!+_icF! ze(I768>@DhnCE!8A)_(OG;F`UX{pOTG-^i<@yq9P zGbZ&w?s`w7?rMXm86G2{Gd!ddXvZ7wn5hGN0}hbk&=3x*0lJatLgv9p(6M|r(4P@I`=KhD z#CX4vDFNMJg6m@)uu=Gxa47$Xj~7ii`{%CWzlBz>vX16;G47jxC|LjJveqSV_fFW` z>VHsy4FIhmM{?A~e-JhD9Nm4cNp|9YSB;~$y}ATcT#=7DDgQy#7!B^8voW3S@T)fi z8yHt0QB&fyc=HdJkLZ4yo~z$P{M_{8xHTMuyl2lo0hGh3E;%!C^0 z*WWbl3?!#9){CsToZ&d|Uhfn*qTz*l32N@;9@5$ahNR~s88y1stB zLm`Lv=*hIzs{?R=tK5mfzwXG{s?zH{RcQOltu0r;??(qZahwU9KZ*zB9hh6{lvAS} z`1>77d`4TgaRfu*%<}7 z3a;i|&m(5~-ZazF&mdO72x>Y_ULj=gtNgz%LwSt+;r**OEAD?9=0WZbC%DCgYxG;Z z!-TOyNP+#hPu|VermL1xg=~` zA)x2xRYpcSJVSpR?d6Uu${YguDs#Hi57`(HQgDLNJD z_|$lYr5OFPM%?6qld>9Gv@W9Wg0_zJvj}#nsA-G96aEzjNl$fnRqxjw;kQ?Ql&@9yR^EQJlZ4DH`KQcv9eUI@0zYqEs=3nP_Np`X-C0oi zG>{m-=-<-c*a+9pf?Q=h6CB_`_p0A-#nJffuO3)>?9wT!cMrcD@?HKp8M_}pAMjQ2 zq^!T}g4qdqeCy(P24rW+KZDYd$8N|ffJYibe>h#<)HUk$>p{+S`k0hbgh>rqI>be* zMQwlLq`bd=R?F!a?B=eF=$F3VzYmXI_ut<6EbiPE{1gWvIc$5U(X3UxB6$$ zNQJz^iIa->noEZsx6=}wb{ehlE#IE3X*O@RV!(s?S3TG#oeqBf@*gHm0g8;bL!_&D zkQ-t*hYoLDK80`5*ypoU7m7QE!M-6%=hOI|5R~1w%Mgv2u@>+U$NsY4fwSf7VS4Hl z^6<66=8==q@Tva&w^N5!8SKs{jwc@$GbGUGu_n;R8!460Bzi(_U4HnXa+$f({?0Go z?9KUiqS!_gwXHK-2MZ8&j4$hcjWIogSMz3Wk_0O`{^r_YSjyAslWP7lgNp<@%Nw4& zzr4?>tLo=oJ-Iz}@~;1@z9-ML4$q!Y$~<0hNJH^J5aV4IkntP%qa^=G4srj9-~R(A CdHiJn literal 0 HcmV?d00001 diff --git a/packages/abnormal_security/img/abnormal_security-case_overview.png b/packages/abnormal_security/img/abnormal_security-case_overview.png new file mode 100644 index 0000000000000000000000000000000000000000..cbe9852e390904eae85372de822f264b428fe631 GIT binary patch literal 329569 zcmaHSWmsHIwsjIDNC?(Q(BO?jaDqeQ1oxo9o!}lE8u#GPIKkcBf;SGqNpN@PYu2@&?6Diaw4 z*q@gUN)jS3%0`KHUc7k!LP|_n#Z`Ad9YG^Ov%dey&ruo~B1xME30PXU^SBxix|IhEDf5iZ9Q|})c z{qP?@3IPhj{oBF(bC@ma@UStJN2aD5|EDp111WkV{GOP zd&ixSkf!E49v+?}{~!Al|Kbt4@E7f(s`%2nAlUxEP~9HpVWwIe61!td9yvFPlabiseWteD^> zF6hTXXa)bX<9wB{6qJ^d$BB6Di?jF#r491vYX+n- zQ5!OTvZe`7A4Uj}<4L2@lU288-@oq+hh=8e4{Y%kf<1+ix`(*8>0|g%x1mw(ESkqN zi2C;cj9=ZaKQd)9-N9`A2l!iTUftVVG=-jd!(7$E3@`bn^k9aV`a%ciE6;5sj zA;7+-3k1a-Nj2P^3N>3SB)dNn?C|vuW;LEL>(M=mxZSME5w2F6j@Ep_z-9Ot(k&55 z4RrS71dx+e;*)8~PWL$P^~C5v&%_Kpc4%d491;slobD=^;%% zr7BlHQ$J@z3V+Caxo167&SmCCeZZr0%}+ylKyQA}>B&cA`8vT&rpp1Xkn2piUHA(I zHX;4k;a8o4uKC&#OEMrgyuJO{P%ZAt@UyvvDDc<4t#oOxe*O2-Z=r|3UfR{+k-GGU z0jOA{V=<4OA@zzbi6^Rzw3jVY`Hxo4>Ie=UShvv;5sJ;#4U`vclGrUM&5D~qCg4r} z8gUtR5F934rqOEBy4d(9nZ$YWY2Iwf1VBRG`4@idke|)Y`AluG0Co4(~RfZQ@p_+N3Y{ltEjESJydw1tDt~% zdH6Bpm&;+BBA#V(^7{5#>-fY3me!<1rl)T}K##iBLW@0`cvQNId7V-~p>?nUPL=og z4KWTbt5!B-8#+yxeb@dfyTr{+L30wbSXd6{D<7vC9Bthe%dtNu$_VpbE*Ba2@w%I< zqN+rDUzF2nP|TCvhg0Bgop4{!uA!vt#OoO;1u$nm@bkMmr~bVVo*fK;4PKR2!%dO; zcoaiHQL(e7k&V@A;I&4L>pPpptJ=76*rchifgM&^zC+$!&$s`PywddgJ`XA!9QwXM1?{asaT&=g66xhc~ND z^h>f@oV#AZC+mO!zT)%Km&QGP^)Rq11R}?8_O@y&bDbajLbWMllKdnc1TIFoJP-_c zxI-tS=^W$`BWWSF%~f7z%1?eWM4dtK0g)%MXYYl$0v@ z<|<7m!#^pG&(8YCF~7vb#hr=kj89GVFdqG|v$qY5k5?&TOkj+j+2a#m%a;bff^5q8 znsU{qz|t8_$3xX7 zcROu(SHKE0s=g+9~wr9UsP*K6zm+Ev@7<4t5qHxyh9B#ngm^i0EjHDRx%j zy_r(Gn^PPyG4VvVC;~)8!`8*c#Sf*OT&?Nw@$vEc*47c%TVt44X?woy=>-F7f5#n? zSKv17R(_JoJQ#FT0KRSxCWec1G4EqeI=h8RwA+#SJsd?h`XZu}Qp2?CkJjfZ(e zs&H8ViAFwoMYfy+*;%}Ob?Kh6e4&_uZ})ZgUzl;-6ANG2tS9L`i5af{aC-Zjku`1%z^L_`#p#=i2a5E9bkzas#9goT|mlmjgc4H+hm z%*X3dq%Jr`!A13TtbVM|f zB&Kw|#w7TXJej1fyiip4^X+ z-dTQbw?U{clgm0MO}AhPsI=ArCcOu%iB0Bx4TGF*j&>0{N%UB9xc$+0aHu*FJ%gV@ zaTIkLSr6=O!5egq=Eo}_U)Z?jms1%-?ym}ci_h=;O7gpk5k3LI>ZJVU7om26!2G-A zCVx!_0WsO(p~%ZBF{qPeVvf@f+z<5&Rn|0**DE4MCT-`!qB_Kr1@e7!P>QVVld8&i zBVVuAZ#T}E+d60UyuqwF#y^e#5z}+Ec@4%3Q&QJ<%M6~6f9lC2R6lHsZg(NHXN%s| zmCrff_m~f-KZTOJy1s?wxg+kEAl=0$-Rsx53>pEZR3V|~cbj7fPw}*|abk*Kc%52z zj{Aorbrkyre-LyX%FD~Ef8SuwZNE-An(+iKh`YImzY^VQhb>~k6?WD<&3cVaW!MTztD=_>Tw}-q`Smw-S;`!yG*MR{`FguzRHaPq4okGetF4DU>*XGeV4}g z-I=`L(_6aP29H_X`{V9%Zl_J6$NLRDAU!=YL zb)ic6TP`lVsp?wHwPDgX@2GG%j6)$0cbDSCVGDtmA7Hyh8=a5-Gf#U*R2q#IrRTT# zXg{DW$;}#fQ#;iYKI+QKa3Ci{cs>B#ePK*@4*^;lkyt$1L-y#<5cb(5+XoioU51k< zJQ{GBUh}I`ElxbAM@jgI$Vl9?i;D|P(#&spL%O!twTs=W$j>VV^A)(IVe+Vyb%Q#| zY^5TbH00ck4oP=`OdjB5J^_EQQ19Q5fFAR>SZ+&teY-4zokU%z+|1e4m0@ty=7ofc z8fUZA;^t6eJBy2mi0FEKOs1ryG(IrjI422RsI|=TY4?VRv*i^nHag(J<_l1CStA%) z$7SoDBbPeE!p`0^Szs{dv--_(>|~>loR;>T3eCVYEHbR^{Gk#PmueC~j?!s%L^w!@ z#)x7w9bLbTAVgV%0FDornzM_Vn_ZFJj#tUv5(|XS&D}E}ZrcugdwdwLF!0{&U21lz zeCiP1St*BH=H=(F@6S6le7z_>F4wNN$qEl`XyE2^KS$c*vI6X}TTCIrz9K%7!hwl{ z6R2D;wmO>raebk~7f#67j+`QAyh`;E&uO+yC+=3(gO{6I2n52x#9ZsrBh}Mud`xu2 zJ-y8BrQNOdsJAhjt9UsuMz3B5QQrF0D-K5C{P|NsRTUK17lGg}8XOgp)Tzd(Edo-l zjn=DqJdsT0gelHbw5w9U6!*(^N@Y^mw zw=3g%?|4A!kF|EJHcO*E_WG<6%rso5>wzC)S7s^U$0!teQakg#fM=bNQI3F`$>{!Oe8{yyKFN<9sjDL`mH zoj6yUMR}0q3RSls7fXz+lD`Dn@ZbJ)I^HW6=>D$QeKKV0W4MuD8n~%kIvKjrkHq2K zKgz$ZWo`kUDYK4rD2O8G<_7S)qhnlg*?sM4j8VJSNjW%6z7)PVYUJ?AAg5J(s`Z5G6h=g zua7Zdy9NFA0AxttX-+WJ=@Fk@sSp@}AX^TY3 zkiv8wFWC%ssS^9W8SCxc9Y|$08#w^NR^L?39blfAUO{$^5x~_`|PiOil<#q zew^jObCnKwW>HeuG~@zgFS*KAzA3}ekZs%iYJ+P- zL4qMwR@@&EZFOra`1fxkZVt2e`#Lq-q-0H_DLkSfzV%Po457%O9x{nc*j?}E3knL7 znB4`u87!<)W=cYJnq4UFHMtjR%;E5os6_@)-=F|?4iA3Sc7J>MkVjO?P^xce=vS&; zzn)*u1w^UQZFM&s86U^^K2?IOO-Pu=>qYPyodk;tGlk2N+JZU;f7feL+s2};r8>I4 zATsi;$w(S4L^(9D7+kDhURD+GV0- z$lS^J|D9XtzP$*28;^#KM;P3ch&$J4$&7n{A)lQ9a?7%96Vlhm5Dy=GT4J&Vp4w2^ zqW!glX_i>Mj(JeB9_Zgg(W>85vXV!1w-t2Tf00tZ`(B7>p&ixh^_wC`V4t`+x3dv* zN}U-q+F*{HHoGkt!RHZ7CMuEionIpcu`aDn(q`5T3lwF`aBrMwJ!WjSv{WRfT!{KG zjdM0=Y|{vWRu@F-kH!EC33#N@vLy%H8{i6f8@Us)5R6rE6sbn4lfPz~spSBqyJdg?lqn5?J(S zd8r8xaI;^jGbR>~NLGQ^v3bm}FE*@EJ&0Gb*GK^l#7a&=o==QU3jE-V}DIz{QE zrNyAMaWr9)(1_Gi%U{uE^FP$($y}G(yk3)fbL$}`QO3sVONz_~pKS@t>FDGGrDvt! z(NIug^Pk2txzs)B@Ahol!!D$VTI{>AQ|qlTJr?FP{P(j8f0q8LLxn0zNZ|cYD;GKT z;V6=bB0!*_k+^U6MA)5Q05=sHoh>zAi6MUThwaAsJb_}Pv53eO*fin&(?4d#9O=-o zmYW<8{ZR3kkg`i%j&$ehZ3UThMtx}QTwMB(4Mgovf77P%IZ4kIKp=hyK8%1nDW$=m zTTXj3VHYU*V{xl@Kl@2TZL6q=sGh{7b zoL;)inghS8wP(w=XG-boj^>b=nVAhl$4K~l&V-?9RTf~Z)ZOVH8)FDQ$S)fm3O*S= z9`bv@pQUifv6x<3EutfJBr<9T%A3>*wv zrhKaVvh~T;<1T(vB53Px3QhpSe*!5Z4T!0tu z%>K^5B^n?RUrJ_U&q+@QcE76=x{EnbcxVqSrZpD@l^S8GiU1ydZ@4x5&>~gbz2N|z zeRUYu;D14|aB^Ifh)8ApN4;eLDXLdCX>-mMh=jf|Y~-Gtnh-Ej%>Zpx_jWX~_ZRs6 zxycTNtJRCuaLP4#l4QA^YGU#3oRFam_Qm2KKSGhRROyp&u|P#dSjd%trE2{(!_V!9 zp&eQGeoeg*RUr_WBnEhpbp){>!fcsG;?z3Y7jR39w#iBlh(4j7fZ~@_%Uc@NRH9%8*rz=Y`6^m-+eW+DRhi%cc8S&X#Sg zW+yo%N<;lHaYnk8YO!!}^`C8xff!}6Kpt0z5&o~y*ZqQnr}(ix zNtsc;j1J(y(w7oTc*CWx{)U)W3@I5PCj~7$|3jL$sr>u*!`&4Q7=x0v)~oqaquK=R zl|PD$dT#3g7nTMr`}h?W-iM=z!odxva^Yo1ksw3k_Hz^~>S!JaL86b%o;UQ6!o0k^ zReTamGRAh1tGEUks#lUiL?2DwSj-mbgqSO0*3>|N2Z|G#x^m$zTPJ}mqxRLlti%7}}+ z@LGM^NfNY!W#A&RyDJ;KWE?%OGq}-opPRP|v3cMY?N$MKHyT*iViezL`XulQ)zr0n z_ichkgB|PP;zgV}38-o;g-4a09nzGs;&n%r|0z>>r%b`^XFDEa=LO+SCjwwjqE;dJ zEos{IBWmxPmbj??p3qCl^KT6kSD{<(qT2;`&CL2MbRRRyev_ zwQZw&e9WCrr0Jqai)nCqbP5S}RO5yA`kD2~3*B_n{C7ch;xX%l?Xf|vUS61fvO5Pb z(k!0GX|%+A9nK{6Qm6M~T@1R`jhG{aZ8}w3A(YO$IT3jp3!;jFAk0R8rr>zko!)D3 zya5+JXgbD&0814%R9bar)IFcEoZS9$8JOZ3qd1fKO9}zKpv=JFFB3h;+{v7<+4;K6LWL;?f18-Dn?X#ZMUbWJ-z&R5L0uIBKT7}pE(5h zIyy$NVT~-*yV?1mYdl+&{xcxK1@}};(a^xcf-d5gQiIY?+3h8`55_Pwxvc17a!7Yw zj_Ne$nhMiiP-0E8Nl=l11#*m%($l@jd^NvTQP4K}g9O?M(eB)+(2HID@@<3TP355pLZyB2hIl5T^UCSX6iC}T?t73&| z1x9E%9n>t8Avbz;OduKkF2A($^wyj*c^lYME^OiyAPDbCYE1S~9#5L?=IW10-|8$` z-*-XNw@OO7`TPS~Q=QA70$vRf3U`ui&wFHjr$Lm+104$SM@Ni^EVWWC#t6y;F^T2l z7P5(58G10T+`A;>BtGBRLt5+H!so3b4e|h^c1_1%!jD`AprOn8wj$LGfJ&Q6v4#o+ zj_tVLp&>;jip6>f8q<<0TA+sj=ch}|*%|Jusyzf#S7;gv`za1Lj+()e2N z@jSH)k^UA22*1Ap;rD`Ld$BUYog*BtXiKH)WOyDGR$6Esc%N^@U`a0{o67m_;8z_k z?H)GG7{T*rC zZ&2}Y-ik8Of$MChMI2X}ytbGS(TN|xJ2a7p!L_wGX#|Z)-<6~XZ}&APS#5?TKev5F z!={!?Dg)6Heu{kCTYOkWz{sdqhm_7+hc}W|ScHxKOrZ(c!%N?-e`>$l4oeG0_qVGS zA{N_~Zg7QWerG$v=6mDG(c7GhT_~v-PcByU6AfgpV7FEZBZ<%=y?3v ze|2*+vUYD~eXUz48j0uHA6;y)Sqwm>7)DMBJ2TUyY`h`l1<0i~g$;;G$5BIL$gzr& z(WgUdO0@B?X+B|G-Pa!5dLDPaXSZAcXxG_bMHb*i09%`$RBfYOUhx=oY> zD9|k4>Or-26xwP6@Pi%fn5g#9i#I5^P71W|FAQJIRFN^QxHlyX`v zQWAWKc*l?Ola>}@Lz`f@`VVN@CU!(x6B>N6rX@HU9Nhj<=<#r9_;eRz6W1lyK-~St=-wSV_lppD^0=@Dy!Ap_Z3Tno%QzPU!*>3^VP>F z9P*+o@JtkK#p4`QVK-KH2s_9(#{Gl5bSi*W=L33xcv^0`?e-pk;K|Z{Bc0bdGw8ijL=nYuB4U#*X_leZCwtsS^^=(t)Kp3k;h9 zxJxj~aVn#=xjx$fPNIRs+Mn{>2seytj^7jpb#HlH(?$|AXWo`#;Aix}yr3;`|?u|b-c*(Na>`|Op#p=DHX_@6W1Wdj6H?fR+g71t2ouw^=hLp(l-(V4IvVbc?z>BV_ZZc~jYil$UPw_juq+_n*orSbCOQE7@?z%FU16GS9 z61~|ZY-2C>g|y22BBd6hOV4qY&6^l2E(>}IBX&XnKBA(c_O$f$G9jM9QAC(eayrYe z-{8N{S-Kxa21_p0`?Q+@C@Z5L>l;!aMo00qae?E~RPcq=rfSZd;t@o&O{H<|>@<9Q zM1)+{xB@@1O|(6S{;353nhQ$t@_~M4aN8@*$(TQ!oFHp7SZFv-uyi4~BC0PWuk$Mrbeif1D76YkC0Vnj4aMl+`fFzQnf zPC!5an4$B>tj%gr0Uj0>mLB1ddwPFIZkuJ`A>P9{p|9y6^9S`ppfogE5dK=ITS1=8 zRIth>C>+^%LXjB;obGD01uVw4F_}!(IC>)K%`8K~$ZrKna2n5CK4qk=fxCh2` z4we{bX(`6FZwVhy!-(ET!4j`nCOH_h^ zi7(5%L7P@#q-x)4-sJ2pnFg{crCksePM1*e=%K#OEI!IH2Zp$f1O$ zE-Yx7O=Z1Ae7hgq=H=eCmtVjAo9bQr(;>B64xVuD zBUXYh_4Rq-I82xO6IwqlV8W3^tYAL<=HsX_GFYOva8X3@U^hjvx;a;}sG!g{|1mn~z3}9sj z0z2%%VmhjYL>yfI8#!5f9_Kgl2@Wwt=8=`9SB7(|J0YQ=jJ0|`4>yFj=ZA{>UQgN; zNR~4;7_-J4T98+b)>`edF3b%W97HkfiV$9me)+UlpeS4}AXYre4z87oh#~~QsO2ch zyD)?WGCv$A^FN+MUl~{gcV+a;eb=&3^L*AQ9Fe^AwomfOw_d2hb)t+S7G$yr8YCd~ zxsSQtLO^|tZO;mSN7hT95xgz3k-^c5+fpe$4HsUcKvMv^(#> z9M0g8oANko+VRgDQp2^lCPNp8?#V6bK&wCwinG21_6mbvtgOP-^n5oVtrABXzEFQ5b@7OM)3{euYe%aCU$#V^RMz50ih{buv$m%FJ)0A3oR^6 zOxnwNpVbQ4N$onbAWVuNa98s=S!`Fb&%=d}Wy5aBg)l_(-Q zJg7!#7dQ`6EcN!jy3r1v5TNACL~hA>Rs#_8YdDAfmm0v8;#pb|p}!>uTZpdx$O=7$ za?RO!pYjUgZ(srs99%NG&d+NQAS0jiu;d#OE)-PebcvP}tf`CIUhf@N0cJJYW*s0 z?ixudEK-^q!NyS%ttre&AO}xS1D3c=XB-`O=iW}0CL&I&&Q&?Rc0O2sy}K~)hN(e>A7IC$LOcWGnF$qmfDJeLZUWJbN z9rOKG%L~cI8l#f~lzw(>c@C$rK}#aRDrY&cGs$BAA%|Fyoup|O|o<#&td8D>A z>Jk41r!C>{&ldAOOPg+yE1$&{EH8PUi|ecUw!r~CVtgLBqb+~;{D*dJP`G2U1^4{o ze09sGo#@AL>0f=Q6{ca*Car1tkb}QG2NcQ*Y7^Ms-(54GV}k-CDa3KU^(p_$ixj@S z0EMKa%!s8gY`Px5$2dVo9)?k0&%DF3!Lw|uJ9wxJc6>bc#$@5-^b4(Ib#$!BE-Je5 z<{4Z57jauw8vMk>M08r3-}ZO>o}QjW2adM%e{0rr2>Ev+JQX0!dU^m2^MC7<{u;*r zY%HWo(*ZG46(p;R`upww^YK4l?2AGLYZkcvyZ7Hef3^?yq;MA|uPfc9>ACzDg~vY} z{4X69vY(qNq_yDx7yka85vu7zJRoRG@geE2{(o=d-v)Jjl*-adZY@?DYl~5tAN~?i zJ^cPg{QvUHUww+1d@T^zr!3su7y{Lnatw$5Wpw|0D1~OQnNwp|)cwysqLcdug3@{M zSrPq5vv8i9fvE@g{Z3o{htG|3T zts1|oA&)o7o04r{E!XH$0i?sje6F(pZ>W>3J~nm% z!yvZvomJ0bi~qwh3G(`z`TC0|@`d*iuE8iY;{%GMLw$4c4NPGWoXFOD)XkTLYLCXQ z2>++sd_Q1qA4f1tgeJx;rM5*tKx0o+0U$+W-w}DgH5}~7+$p2qe-g^xiq%?3k55nd zHrq3X*8w%nnT9$|TL(l%Zc%fMHs7;-L}&ggN$^Jz6W+p1UBcQ+bw?>QR0=67q$DKI z4Gs47Wy4n~DJkPK69JKBZ&g%PmJQ|S9RL4O(fJFdj-i^?c_li5)Jw_@}k%j!-P2Gshy5={UCOaGlxATlJj-!}l- zTV_4@;HVH_CT55mJK-?cip#9P_Y&uiMWMPf@u2igATsPwgaIG|FMh^_+%&>eT`#f< zp;{&!*6jvDS(QqBVY$-F}ef=^a&j`{z?$l+;ggBN6Akx&AO* z>JIbsdofsN1uS1Jll<|?Nn^?XJ^jLejabiu)I`J^L1&AD=G3t0W>KRZ_MP?5%x=KYsRS}>qmjc;kJJX%qO-#;;3y=bM!z5_FEOkT7ej+2+rC z)j%yKPvfRW@`-JigM}!H{!d*40~n+}+^Dq{$q7Gk+h7V%-(pcA9UU~aM5iB-!dA%t z6@C;Ee$q^1MTe*eX7>x8pvX!IvY%#(mbqM)m-jwIZ13YFibhnnK! z>szg21^3r4e*gJHMoWdp!^3>%3`^C*>e|@T%Z5+IRX}OK?cI0Ib6eQ2X)Y-}+;`sQl$BE!jzg14 z#>tx_{m@Vaq>}*1c^rnKwiCsZq$u*cOqtKTG?6<8@D9u}f~oUOzx>R8(L-Z`au<%q zzG`9`Fmoxcpzb!WqeHfVD(jAw6e(xw$C6*o$nb^(W$BYg882o)wl$+(quPR(^hcke zUI~`cY~N8ddd|Gs7V~pT@C5z`qi@%G^31mI2toSCt1lH4-EM;0Y913!y=AS4IIR~V z^ADNKCiC+gi>9X7_ZMr?Tiu;OBPrB>=GSW%35kfnaRsA>``(Zo7gCL$&J`gOiZ2}opRXK)QgT~=$x$gq8b?+3yX^8^a!4>tzl|Z z*wGq(*%)s&<=Syj2AFASr5um-U)3FtjnpE;>gO+Er_0$cfsY>vmzV49Iyb70OBF?F zYHU{!o0@pbjeQmX+t= z6}X9VwyKh8amK@VsjV3AlBhR>#0&HX{T!~1zoORIc64HZiAa$BWFoJ>>?sQVex!*l zGB4CWRKR;ccZjp|CWEF-5n$rCa%HT7HR=km|1tYgW{fa+|) zRsN~|#4@8=zRUEpmYIIm4*|CD!a8|R8uYeC7YK$Vjy3n&}A6WoJLA^ z)7N~4s(|SU#m>PUXKv3u9_I{{;Lsw(8QG$!o^v8u?UNTpKTj#dt*sr8e<{#^ z-z{$OJCj!UAfR`qK)tEyziXHkMyB>TBtTss>k;1u!J5O^v;7H~&sMPi*k+Ub>qSQ` zK3|kqHTjMu9_Y_wZp$X}DLF{laP-U5YPH$Jl0xCm78&Cx>GEEER|{0#>_O9^ai+~i zkzIg;u-&Q|P5m{tMydq`83$?se|J{C7V+6@-VVtEt92VWNn z!sxoAV=f3K^}wNpYOjDnrB5>_U6|laz(Ti0^N5eRIhIk^t%ESVIm&Jf?4C{ zbSsTkXY9`@++P-^kl*_Ti^G(YYNgBHV0E5W9L&;}=&u4p?$%n8$Du!c46=mRDMH)k znRT;tnrB36K00i^Dk)`z*2|*saeF|nTj z5H=Q8;A(MRUZC@V)*9#%6;`@_+t(L_&*qLlHBEm7qNSjKOXWNgl9eTDaykgvrJG(` zvqvZ@D*Ddq6?=T;6kf7#6~ONmwBR(XmpaFI^5cUTG}yOOqt1%sQS>G7TeiLsNjy3|*@#f=9F%JLiOI3U$xbqNP` zi8V{ZuXLVAh<*YRPF4qg1n$g&D+x!)^pA(wTdmQ_34u)3OIbyVoL;%ByQ+$SJR~U2 z5!+gfX0Df9Zxn{zOjeu;;CvgH+VWpAVr=S2ql;V-xChb#pk8mMvLbO)e@8!ybM*-B%0N@*HN~&r5^BBqM(eRY3>h@0 zu#n8OX#Ga4Si(k^#70oMr&MCBw>~GGFu6-X8wX3#QMTS4DO6fmNeh>ks~FhF|3DN%E5a3C2T&vZDf`M^w{qmq0Utk|@ zZcZbVpAxd&;p=sLE`^VU9XH<7`);##Sj>?EglMs6=4v3E;bX za1gd%vM+K45))q=J@BZgtQE0S0DjgX+<@ICnJU$O4OL_f2?-Ia-aH&vP{$K6GHn++ z+dP~o6a_c6coSM4I`_ zP|lL@hln@8CE~t7_;S+qngvM_%4!B(B>vsZKx&zSFDjw_S|Tb<$Zng0-F7o*rc{d@ z2-FaZ;I#NnIRlQ8@3`30wR3R6G}TQ5N{@9yztEigmcpkFC#Av>+Ijp#KLc?oKQtU! z{|?oSbs!f^PbY+wfr#zfsQ7&le4K#`$zq#3lhhD#G%x$mj2}*W^&z~e{2or-a?F{A z4{RUUqi@pUT)hsOlD2n0z4}oMrkm=iP7gPcTk1JWi-|!-j~cSGtH2g%C@A1c;dH`r zRyZ$ydU%b5{Fd=NZSkx*D*XJ7z0L0pw6Rn}>s#BO873wi29{q+kIO^AxS$=)+w-ua zisLc80N1g99Qk1>#MKL48r+prbHGtR+A%VNZ%uTTGn>IL-<|K^i$C6lb-C#t2>;P7 z215I8p4)DNHPTJMH!`12+@&N~?UExeGhzF76Sb3j?+lP=(u6-*DL|k#g)vJDIW|!U z4-uk*R+NRl6(F2LiuD*>LGdqb6cDeg4^&RScVQ^m6W`d)X;w~6l18Lg&P9s)raW9L6Z5O*#N9v!XCy3`ZjZnKOM zdP8in=P$NZxMlu*YUCv`!NeBt%^1k|jwuwNs;mmSdV4r=aCjZOY9mw_f?H~89J#po zc@fPuKti6Pmk8AXo4ummPx|7%aCEBX&0;I5U&!_r?Ak<7sWBt>RCTn;Ce$gj**7Fq z=39Oc@4nS;$6yyAS#$ol?Ezzq{7ZCPTrk1yLPdQo&?Ue^6&qv>3VGxiB*?USE9|Jk zi|G78)bzF2utsqMFeNR+AKB*)=Psnio~Z$ZNnbQ`tE8RD(T)kxgCkg|ozPUKdi>fU$G{{*h zth=cqD8|3x^I#^xvjweBc76(x8thnUhUsS8VnV3--7k=}cvB4(su#F-u_I9hFt?#C zu!~u2u(D*-4IEK)bV>xM`97fMDWETYWtV|ZN7*E za|Bt+qRLjS7~ou3Y_v5Dx|7E`X8(X-o%$Ut2@7~!<8&TICQ$aPQ8BhcBLaHtKJARnQm|g>A zlQ%jsF9tx9hF&RtU$@E%hhg`7j{2C5h!H*aHZOAbZ@5yolL^&mS1GEu6O(MPny9;( zg#|d?F)BnDf34okD;9BpHn$TwhR?zg}*lP}

Ux106 zJs|O~ZX{#U>upwWc8+5Qmeyfa6$JH?&%tVpshvwppk3ThubrJ8@`Mcd!S(MTaZnhW z%_QAZ+NX4ZU|+a9@LArL?O2=W_OIrTFyXiT$*HPr2De(sY^*RdwRZhMP+JDm?fH&k z2>p%S?i9~(3eP*2qg%Ywv7w>Y>SfCqk1^kwElIJcXG?$ieZ0CKpBh0xBjgoUm&g0) za@afkF0Pkn+@a3+7t?SC2hO{l9gSKOihNlD)GuEs_U9_`#x}6W>*Qn>+Z^QYJtGOZ zl#m93(MkJZ{f^0LUO(Me6Tz-0bm3w}B{A#KkJe{po_d$jD*-O9e7?c1Cy<2UKKA() z@*R8rgW&rvM1=vA0_2U!jXH!~|ou^A2%#4teM9aBEODPNyaY{6AtOO_eCKa8qUL{gy<{X1v#k@JvLOb z8C>F?>xFbX{B6sQpA#5ln4w6n7!mUQoH+ZE_C6Wi$D_^@rZTsq=}9!BL4(VR z-;`j&uYk`#lk2RM2#e_k8-70kY|w^}+wJ87S)^O|S~5E3BvB)*!tI&a-x?SoUt7Cd zl4T5fFwy;T0f{LN@#b^;^y0DFhq7=^VecF$R-UkwWQV;iO$iZ7nZ#?2NlvEfnTW4> zBi7r4%9azQU@w(fBTztjFDl zc*ccDK}|=@|7)gaV6zWp7AHXroJa|FwlVOFYMRB0I;p;9*tS#)u2SOIHV4YUUSPC+ z>VUbup8Mntqq($ms5E0Bj&r`I-aXYr#N&^5oK%mIC3FxVa`>+?_>CW!qvI;dB3dR) zjvS|?Gu_K$b~M~CNzp3$gB-HQr zZhreT!4e_ZR z9v-i?lpxbrV*J@H@hN1=9-N!wxEYGw9|9D`!jfu%m<>V#i=~Lb5n()=3riu{KE+9x*ymFkT3Te(Ctd2@5?-E#jrnRMtK}*< z<@|8Gb!};Bl$zSw-VB5sQQBg)M4r_-~c^JKbb=cA4!EIq)elu zjMmq%3z-xF1Z#<=azcFytG!)WjuJ4Lv!g$$nq^t!=5cSU8OSn_K{(8W1|FNE5_IxVP2hA${ z_)f!xOwt{(Pydn}{hqaT+OjAtB_qK<)8%G8KmsHF2Yu(v!gj)d1lCQD^#$bOVmP~)6;Kb)hwHNVkESCE0qs3^}BE0q!t+^ohH(}X!D$bGc(PJW;}#d z#!#7MLG4jl<@Oz@_aase2m}Z9=Na@tP_I4X32z&=eAEiq9?a&c?m4O>xVIoJlKSaY zzsaqJFOGkiU2z@4G95sU)BB z$*mO}#q-A)`DhGoBF4@3@P*h5)Y9S*h&oBn`gSdgCu_;esbc!hZb3vmTM2SjR_x?= z^A#22cn~vvqYr8%uHVw|cq+=Y;aXFZyW0|(M82TR0`iz#eGbrtT&}c406G=@=-3`p zaWHKjrgQ&1#_+q);o6L{DVK{M(Q&`GBD8qpi`oY2oxmEJ0&AV4K~Z!9&PjTkcQR8^NqvgW2za1$QBrPt z9Gb@^QOCU-oBjE=)QK4$4g#z`b$Mjrc`W=Saw!E*kClM}P67qiLPRnpeV&+KMNj;p zoqk;8K^GGjM~#`7ni31?qzZ+^W(s57iIDPRb|sZXa`uJ4W9k`Eh82<}r3fgap&6N; ze0Z<|axWY6N#*L;S1D7e7zovkh6;dc?d#U4mqhd;wXxDc zH2LULjkEpmc92|ZJ*wi;a#>qQaqd@mLv`qsKX z5;2%iBmH0*r>yEeC-!CU0h`4XhShu(DhNUS_Un6IUPQ0E%Z`-V)Vx>bom&At`%Z*) zko-{09&H#I0fBsBHJp22V+K{3V~~oHmyyBKqns+WBpbv9;CSP>?WXQ38(y zFzrPv(30%kvOxXuNPWBh&blCvhzjQR^X-AZN{m8OFoGzwr?1Y&DXZ+Z3Ul|kj#I>} zWLpyYZCvBr%A8RtnRX#gIw^*Q+p-r2f2U~UidD|oxrLbkO4qmr`c#I2N!86o`F5)% z6P(Z2-;!y#gef>oGKJria&zQ*LYu77bj0bMGEVdfm*e-Xy40MWCMOdQHpvya-8CYz zUQ9(rp|3HUb{KDJmC}CLBVp(OdUqTKK?1|zo3snhH`=KFhJ^aoe54xWse?B0s%nby zqmE}kUszq|QdkgfUR}S3IxKdbnXNQ%ZeG~C2f`{IW1qbd@`GTo^qOp=pD^25kn`a~ z2@5FA<579KYaAXP7C+vwW3QEuGAK z%HrY`U1L76*qOLJdu@E{sfc;riVM=4WmX4WDds|zpeYcykdDx?{EoUMt*JfDul0w; z@4;;YBi*MPzT_XQw79g1&d~lJb8i_H=dvt*2MYv;3=%v98Qcl(0|7!{a0wpVLU4B* z+%4Du!QI^<1b6q~?hfzlbI-o#?0fcE>;3ruHnY||T|M2^-St%cs=BYHi7jcdh-{D0 ze7)YL9_F#@mMm1kO^XW&ePTN~aSzlW=Yf2E@P*;a5NO+RbLg11)o7-pXB8eUYuPPG z-`K{DkssF^{}b0(fv6AzE+~;4wY^z1;^dW!PB9Y*1jg08b``+yERAq=__F!i;B+mh zyeRvfRW;RsBl3Bt*(5}W7-RvVp{7O?{S=)AW4<~E*QpuMrfx3Iv9QH{$I)$+8{X@1 znvH+3SIEO51o*=8cS1Q0q+{RW64RArAd0|Tm|=uM>N!fXFPFrjd8rnL3Xk|iSY$6l zQevnqQO97UqXGb$GYkZ&C?Y%IT40e0&>X=?!zV%A0ltiB57c+&g`Sv9+0zc>X7YRv;kYI7?7Nts)p+-5%7}nJ%aRCf8@ixyE z1q_z#ATG{H+uJh-e<4>Ys4iONySC7DYS6Dg(rlsnFs5BI5^6^0u(DM0>S+1AZ<;~0~G?y1a7g#-St>N$mV)=MMrkQL8c)wo~^(TgG*&)zm!{BnvypndwE zQRmDUl;+Y47xs)jouh_3l%Uc8h`lkj5%q&W1GVOSDgd|SOM~X*r;t&+H;MG)hiI5G z73q^bm`$brzX0xLrBJ91wLXjO9Dn2no5z|<*p6{zvLNXu1p3NMBdOtlosu$kb-5h> zU~i{uU$i>^y$nuOrFjcJZJ_L|Ld)zg5^%^a;bWi1g{3~V|Ddm*&;Wj-kk`-ieulIi zB@SJ^yGq$|&Z(Zrcb{QR+RR@=VNP62o$D(C2jQk_yVqReWzI`o8+l+@Sso>zZz>Pi zN?}hyo=cqW8>aw0=9@PflswR^7Cg(6L6FmZak1sjF240_PN5>H^{^u>4D7ru0oL#Z zPGLVf+kHq@+(HwIJsaN+ZPKY8!wrST-)iN4w}53FU1Ybw?y zC}Jjb^o)=1W}Uea!;394Te4wcUiOpw+9tx8Dl&U6Wf=g7&SQC6jQlm9#ybXBt{>)2 zc4+~oWKB)C&f59nc_l&mf)O2?v%u1C`l z=fiJ07{5hrZa1E3)4xMj*dhj>FY)nRma<}1^wp0G7b!RX0t_lkP4!89?t^6ykz#5F zkB9MG3+EG7g#(S2Ms`>lHzsbRbPg(}i?T7eT91!^YFWVJPN39nnUPH~PNF(jR!#rs zDjX$h%-#nwK6~^?GGQDpb-J4L6nJnpC1fz?w%c;Fy;Y1c+cld?VP0M9)!W0L(XW%Z zEKr*TJS1Y%`(yiFrCUr}`iq7Wp@u?{F-bbYc3bb(@X7; zK}#e1tR29dHXmB;35gT3yAp8sIMy3JFoPcb$UzhV8!L~TpKj!38f)4wYtAjz+U58kwLgrFnsj`6@mDBwe4|0`sFVOGp_s+C1xD z>@0&G(8m@*&x`~^P5C(pQ)JM2=u})`2+-8;nMjiE&Mga;-Blvnx$_X&3Mi(lOl=%Y z{Lv5#tvwa^U&JBP9ua^8LawRmi7Rz9ScC3vLZ$(^ZdE$JAuMLpauGnjIDdYb(9`oA|ODGTJ z{jV*A_FiaBJiLhhzW6XwqAVmAol=mSt2aRiNQ@p8{b-(VE7S$cT1-DP zzL|lCvf1>5+}~&Mx;9QTD=S?rZ#cWRY!N-B&5#YN-X`0KMoTB%Z1WD1>@X5>;Dtk( zi0JNqcqFPQ#VKwgh-Y-<>I;rBh7d8|A_<5U{lHMjOR#;aN{!8^Wumha&9K_ddW#cp z9+=+n`(1k0u+?YVx%1Ne_=S>|)L^n)(evG^LaNmb?NER={|HXr!|NRFt!D~RdnHzb zY>v^k>^CnPi45)_$RFf}nJ*C-hYd+*t_%CEqp3kw&+d6H z&C^S31qr~?d*`f4b_YA;$z$#p5eQmhDotNR1# zOyAY-+@jAV^Oo0ewNH{=ikcmpCG)B~aTC@ZgWj>c$HGszOPcD#oP1G0r3JGdevfQ= z6Iu$A0k6udIB;2BUp|KdS}u8D_B`NGa~?ch?b0s<&`yd^WAev_NHl-jvq2YMg!oY5 z!b-C+_`la8W{?2&0AY;6Tuiyt(wOl5m-OInYW@#jTfPk`O={)N=f!|yfHHRZ>4&ve zZvNQXlfv{;3M3rnzd$2|ptlofel_vA`4%#61ny6!L%t^J7u!GdhE(}%_V|QdFIW}K zUiQmM+CJgcVF_--NcZ{s-tbiQCeNxk(nl>(aGcC11!SkYIS2%TFZ^0uh|rr^o9|(! zMrfmLOY@F$FX`8dQ62NWLiTLm&Bt_LC{V^ChV|~Uu5ERjyv;yVne59S`S1VW*jBl4 zU@p&idlW2`5WE@@42Q|neN1uzmj@EBAuC#QYkGQ!B8F@s5^rtd>t3hApr1GPgSrkX z_HMeYS-j1D1_9XIl|cxBwH3XOc_BB}j}8~6W&tBF`3#rlg32UNVw|r|&jtur7G8;K zYQ1CQLesUm!ZmvF0ho&-W-ju@x;T8~C9k-=EFST&P`6Md#oIW=K0B99IQnzK53`Sk zD^>^m=Px$yxFw#q9HJj72?iqWLM25*jq5;YZm%1np;FdDJ;Kkr1XmezRsr7bTogpQ zWi2oF`M4l>AnKuHh~Yb&XoiXBd;M2QSJz0U7Df8TD}m)@B|#i@T@|PK498U{rHCusIX_4+X<8hml`cmU)wok*? zozZmgj-6!b`#ucgLJ)Eyr=;9#z?Pvyy$C$^82eI?9QtlOopv3PNIp5KJepg=AVwzD zeyu~nIB3y1HzqlW+j3;5>&_j8l1l|uJXBQMzRR~VX2g>paNV+Lycckg*L9{RxgP=P zoua!v)Ne;)OWZrK_E5afW=Df|i&H`r(>LQYbHsw-v)R9Pzr&5A7tRdv+2L!OVZa=A zs2MGTePL$V71HHYw7<1PRwpXZKd&KlUX*RGDxa)eXSwz$Yq@_|P*tjK_SdZg7Us8H z1Od4ikoV|i*7ccqWEyE~Jnps_82HsV73leZOKFr!p^&)TrO0tq_9{CNLOwLR+M@p~ z&vf41K(P|rK!zi~AbeYn+|L{f;VvY(iWXq;u=cXxq`FUFfr+Utj@h>SE#l90R@ z7APr3Pia~7KAMzDIo>!5!``L?urs zGSdUs!djCSO!LKsln+^4RN=)?LxbF*B2!&+BKyO63<0lnimF<(j>p|F)1PN$RL0ax zYU4G~*2L{**{VqBUVzU;1Cp69Oxedc*&VFhg%CATq1f|wuDs2 zJs2mEYHF@E=`)w181^>a9`95eceqhmJh8PVb7BXkpnEiL5s8VfcMHzD?%kM)p;g0=ypdS=JeOQveOtC z*2RoLkRjYtRg&w&Jw(*`Q$*f<8hQ!uoBrY5$6Z$jC)y;!O*>a2vhe-o>*(lYYQFKN z_ro?kTGL=W32^0OouNLDBb!V;c%J#Z=av}if%8So$vg_24A!l=kWDl7zQ7JO>!2_2A0 z&ExzEfw;Zi*qb7r^*RB%+V3M`$YH=rlfZ&qM8V42zW`p#{$60E$gS+P^4GzdK z_iwBuhGN{t788GTObWfZhoUQAWT6xcU@UZ^vBdeOht#JoKxE7{8g!W8q@9ofSrjK- zkQR6lzB)qSD>TrYz6U z+*A4*A{c*ShN>z-L4B=8Cz%378M;iUD+)9pg{Fuprhx^`6V>)u=o_EVr2_f z@GW=qp|y3sP5CU=4zb%2*I?j5|f7!Tj35Swt$1VJ+%+yFS=4vovVo}AsBH-d=5Kbos9j*i(Tyt0zpOTtM1zGZa| z24l0-tp&jv^~OFqJxzeO`oCh-#eu&xSmh{SEn1K-^|ap4$SDo39wboz%CZ?#q^Tig zly5&jIbd+%E~w(Y`C_5Po#96}=YTp}EYjf(KaSRTll4FS{j=-s3Y^<32n|92JSEc* zbFiIq2&9!RjtCJ1#C~&cd{sSoTUT%U?n8^^Q-7>UaLhnBf3g(V8=jj5mN6UX3-|QZ z{$o>r{Sa0;T@7}(}z`tgbtfM-J<8s7WeVtc4IOa~Ea_)AR+N6l%%nD*4t zr5Tka8@E1enK8wTc&*X}t)o%{bvD>LFAw?b_o+`)YHD~`aMwS__@8|qeA^DQ!XP%K z7=ci}D+9X6xmA3=17GrbB^w2XEFZ%$$ebxj-3%?->-*`R9)cxloZYu z9DUPU5tfHC7w--crxq6cLE zSRnuE^#689PY3pkt;;VKe=ef``y20gG*&>(*(-zV{~f6R+nsY%RsdHSt=50-XYpt6 zto(R+>?Wzdtk-`Nm82$eb-Z~`bk5yB{a@vvs+V~mXpEwT%jEiM=K4xz4@vcS(L6fs zAM&|L{AsPAF;QhCtAT=q9Z?`?!MX^wGlFnEsE#=B5?kU!VR zg*K~*X=Lg(2Iw$t7E6XIDm%p}24!NU`%`j%dPPg?R?ow)4l*SmA;J*Wy?*a$6G9AR z)_D~mhNMP-3}87(-4&u!G4BrL##IiMSAaRY)Bn2p|3jI)9ngZ|fiM>l4?l1FR1ez( zTmgz$7p39b$Ox%sv5*{*fkvsJWsM^5w2v=qB;OfnkXa9(oZ0*MwOkoVB;O+T0da7O zB#RZ(k|zcoi;Mh7o3#&Dx3{98Lt$cyyC7LgfE*tTV;=>&2LLy>yYn=)&tR# zuyE3$%qSx!AyuU5nJ)jnoFWF+?nBHadYi=t)a7e?s}qb0#t{f@!)<8dB@#$S{7<_Cq&fvz6Co_v&|^w!|0h}S*JwI}*ObL}c%B_lY1gt$mV)XOHDUecyb zv3X2{vjr-L6ZUe;fju}Cs>s=reJqR_Kduj!vdE^aPqN7+32cX4YQl}4Yp4Pekb0De~R(}4;0sx{QlN2p| zpyouX>_~M!uY3LAAtPki33RR{!kA6K(1#GZJ+aU+z_NaF2Lh>b11hpjsl6T{Ys zPW1M@eFI53O*dBhzauIFmx`+gG*_B1d+nzWM1`FnX4mZE;E4xk?*CXa?bAqvkoi0G z?dDT9fDzFAOnX3K@{1VvzdHKoz?GZ9PCIVF7T#}P(LpfD?i=g?uH-0;KlS=wPgrWg zM9RtAM39h(g9D*7EA{9gIhrpBf74HxO=3PVk@^m~Pk}ShAL^Cn;?Gg%d%EKS=oB-I z>YKsnL3Pfu))2PO*XYhkP0Y%db{9zg4;9iohfhEUEriWQ2-@-GuzoyVSw>`E5qhSX z3~!Y(((dO#t4>b=bx_|Nrd-p6PvBSX2X^w%4=$vgEZeXgIi+%9L@#gE9Dr3ep zn=FDpFa>VmhHLxl+Bb!iGG@X##0*a_o}spxQdN`*Hv*-=>t28JzI$Q(EmCS~aZTVxF@OJb|x_ z;lBbtXNE-jecpW`e?1uVlg4Qhm1q>WK@mB^yD^i-FMDESFAOx;3|8Z7pISn~bPQ2b zWxydN@(*J1@iu__8M{XoV`&HnBN=}WHx1x&baT`FOGkksKJS_Ih7~v&WH+k5Meq)y z2SK+_^rP43Jf9`eprg**&-*VJ7<0ifPeE8Q2-8DpPgr6Gn%vdeawbTEL55> z8w`KH<MZ+qr-Zib>*~R~ zNk(#S{HaiOz|{LS7BT2r#)zQOb@y`U2+` z$Ne%=^$K&+t&!9KMe5MJg*>ggBfZIOUA^w|4%3BNl^=I$XRCUakJdO>!tz?mi}}w0 z`x2_YWokQHktO`tz^UE=kI?d+6-W|mEsnbpdv|MnxK;&RzT#q+ztHdRN`__Doxe$u zbRt(2MpSSjPj#cv=;JTl5JYuPhTyzT+=UE?4f}M5bxId-a2qh zsmc07)wuYcFtC?&)}Qiw74D(4Tyi*-L% zz=^FW9C_O124DL~m*FX;0Hz9Ln=NIDBr9L?l7zO-rZ>7O5BqQeK77GZq6pGjc8`6v z^TP45mH3{VAL_W_G?r~h>b!vPHu3#NT?v21tuHcP4O6(Qm5^wf^6|WCV0!Pa3EpTX z6!{aAwI9+i4Ziq4mPu?)ew!It${jKDeDum(csRjXrpXN7hxr|a>_)$qqKK?jeguVn z^3ez*K}WJiq(t2C(F!S>-IZ9OR~>m3M*E)M1@R)FLqwT!sS(Z$8COLH0!=z9Alc&y z^%fU`U)P_5oEYHEZ{LwD)nP6;2?WaL2JTEYy{D&1&$fXwzJVMGUMpy_3wwMp%qexc zvs@MqMvaVaG&Zq;-Q)n#KjDuLZ_TsEa?j2(O>q6*A6tnF*+a9q41l_vHEz_M4slG0 z!zTB9>)GGmA2E#hJ{jzhEM&-yibo$Tif~Wl;6CpM+YYWjS$FU{2-;gADT6tyMLKuKJ_D>X!-dC&1H; zl}Jf%uoE>;_hg=WS#DY!P%gN2}avwzr2)>abU!}G8NQo5im5kA> zNV}J4(G@0a?44%woURC(6~|j}N`^MVeZ?29E+y}-MR;C2vm=OO$-q(}vLCyW8sRP2 zmRdNb%^z*mfHGw|f5T5@xy>}Z7YW{z$6!*dfhM6i3T#<;Rio|)c%AUs%=bZNmGpHX8n-jgovMBsMAYZk$ToQJHuvn`Jt?aXwpjO~Tw( zDYg5pW~{=4+Iay^l)!22gEGk8CeB?>rQ5-B=}iRD@l?S5qqr-Rzn1HDZMjg*HU;xy zLy&siSw6UpEJbznNf?PO@{`^IFG2O5x;Cmy4=kx-m3z^lB*@VLVOb>iE4~-i3Fp6W zL<;T2@VsvU+IBn4wPYERwT-dT%FP)0pWp(MA4FSUtb&sM9Q{nPbbanw~t;&%$KQf7_YyCZ7l}!m`>K zjgeHjK)w;g)vaZ;msy^!Svi@NFXQ>*^*m|Ug79>ARh1LYzA7MG%f4IdO>>!y+XGp1 zofZBb^%fz{^RPr&hOFV``1M-qS2$s;d(`VaO!3G<7o10Xf&^wapC>eeEC<_U&V*$I z%*?U;x29@BFXTsh;Z7ad2TJpnz76=LrmZ-64E67DQ8t*?ph%rV4dW z2hIW{Ni(h}y0Uf(9F!`=m*fgxPGNL>i7Z{6%xd8QfH9Ydkf7?fBERia*H`4w%6F}8 ztKFK=7XhL?wfBsiQ}_DH$T$kxU7c)A*fBFmxrH<00Z`Dmh9-00GRV%htkd+NEQGsU zsZX~zG8PNEPD`E*daDAlaHc>dxO(!-q-88>+y$0v;!aZ6k)cG($$(%^!am=4$RDjqj+L`wE?kr<3a zx>6GHP}w)zv`Ybd1@9}z_Z**wCy*!YIZj+0s}OgIW7K#BYOXOH*!ezro_%AEvsi@T_k-agM%Ho7&@VTw&5zSp32Qzi)6rt{IPfzNbyBwN6I znRU8)x^t3H|Bd8RiI(?Jq-?hM`eGW7J2~5_C~!&IGB@h#NV<`{*GmV#&r>~2)}=}R zb6buGU^M@^3u+srpg-AXN)&Y!boS`w*?vYlbaL4)lZ*-4u(9dOF}haBerz(uCJc&Q zs9SHeklMYgZz0t!feZZPf=qo-Gt<&?j$Djx9%x3c+_~WqnmIywu(rv0?Wogtug+_Q zL3T6K)ii{#M&?PXRr^`8!83cT!51MDvv;c@6kErMQ^@i+Tu*jO(y0VI%wV1JT0Rm)vR%u7pl z?ouRiAOv7CVAPEC-AZ7>$o>_t12E;pok7yG98fB^B6WTT!m-ojhIaV`*fi->e;LX+%(F91y+PHGt!Q|YYd56nUipyx%Ui^i{C6^ zUqKWEP~jnXvW31L{wm@^z5}!iquG=>6`nV4c*Qz=FW@leS8QMV)){=+cDuP*{SX)b zBVq+Kd9CF&+8UC^HGGlP( zkrX=`5{<(6mnsl^#^2%b?}$zI`U7 zP6&$-L(-$;d$o{irUKSCR#k2ts0}2u@@JJeFL4c3x?c_6-N7wSz4DEDDmkxC2X24U zMr9Oi3=@BD?4OZcs{83RV|drvS$2ICCeTKvE2>NNwA(zQrPc2R3@vOptVge}j_faL+YS;8y}-tQ4# z>_a8Qr;xd(o$E01fYZ(VUd2m``OR|~zwMo??yo@l-bNPC4j~RMqDjV!U22Vj?W4Tc zJ#2RawZJ4o0Ho~LZZ9ZgNrvLBDa(%$`8Vq!dNy}hvtyX5|Lp9fm;0n1YV6u9v!ihJHKMX9^OvNuKH1=WJ zn`vO+$>0Yxabv{`{qTqG&b9JzzVh=dVN~(llHC?0gtAw!lxah!EylD=vsQU)lD5eAqDUO5-&@p7~RLdoPeK^RrFUw>BSSdFFX&i?Z_lFsAAl&9> z+>TEzZ_>$nTk3Z<2lOrug%RBxlkp)s!waZZMKmkrj-^OCYF~|M0C-ue)gHsnWe#ts zq(mbtY#tpZ3E5DYLh~>fCsG-$jCR12B-Hd&DvBa5HU72VI2}&%1$DK2Zu4XE$KAfb zb{*x%l&3?WSk2|h4j*#`MA1!ouUz#Zm68wT+B#tMbV94%>zdoTZ%W=1N984p@wiij zwHM4zoR=9}VnNHct?JF!$wEQhlJ#_JYHfHuGluchJ=@BwK@=-g$iy@-|f; zd+yZcZztlQ{EasfIeke<8A1~PT{3n8&2>|#)*)$+3iuUUk~JTYzMbuNkB!+(ec4usI(ELGi(uuR0(5I-K2~g{+qw!=ikb zlnx5qb|dFzzxI$_xe#xJ0um&jRyXwjvfp~ky;7$Ka5?3g;@<Na2-Qdt9KX!`V)0=ANamvJ(pw9HkmQ#J%*>4e!@0d9msnF)}yy5(m z9-lqbjYqhkdXH-bd#8i4pHB>LpL7hH<*y|>Qs+oIkX6mINQN89g10vr(eJA0r-x0^ z-uoL2`0McO%#-1v{ZNk0g6H!ZMgOFRzwVXo_|_(SEB|vNC%xK5&!(<%yHV5?NPaf} z3cIO7es{_b`DCR39jw4P=0TxXSjLZLw6<>Z@vyC*Fx~4EX34ayXdYkKy!43B^?X=@OyI+hwE7V2U z4s63J_=VK$a~t%pA6MDGhSSg$%FxN(i4~V+d#)EOjJuGY$fz7oPcciZHJP-<*-1Mg z^NlVMKbiO)o6j$*^@hH*0ybAOc)rrx3Ek6tnc5c89NomIU)5I6T^lts>M)~Fy@}%fP+QCL@K<+XgIc>{R(=IExd0$%uGH+@|LLVN zv++Y{yyA5qO!JhDF_+ZH_jC2Y_c#OFdBTs3w*emvuDiQ)FHfCR_1nGqZ`^0>>8d$l z!F85T^A{PyuJ)x@ck>XbHUp6|)D)j!>MCM-dBL{tjV&IA}9ruqe3-0FL#mW!} zx3N`2m>(^9&gr7Sp;fc6i&Ki1&0Hp8uYF;XhL<`eK)cnQ>uAZ#+otvDSN>BN(IZl! zTA8mkjhlKB;dPL@@^R?X^ zliv=sxd}|pOcT3Je!!v;twsE;jII)tn`f&>juVF4;_<(F(;?>{hpE2r{6yLN7SWE zeJjF)Am_){@`Xp*hdV0dMVK9}OQP%JVlrTG_Vccc!K~-8T&Q?yAGS$(5f7MH!|vH= zbS~eZ-wPv2IMON9crgAC0}}uY*CiDEXBBc%;6$@;9I1>7jX*QE*=6&Wb*y?=*NFSz0a%moX%1Ek*7*XixsG*X^E^6nJ8R~B z#LZJ;WDWsC!S6galTmcQ)3+u-&fY!D-x@Bjpucx!XsX@hay7n7Noo*kHeb&Kv6WMv8VBde3lEhify?EFi>QHS1 z@KUit32ZI#*l;}Qk-Ir^LPk$JBa`7Hs&m&_SaDNlyLDQO>w(Gyg^Uyb>Y+X4imR`3 zLc%9y@Q&7X5COX#e!G8sWpz5&KL0hOHL^{$tS>~$=jP{*0s#B%Y_Z_c&B?iS{wlS& zpuqOSK!s71AQNEg+f~A_$(7ed%yu`0#X&`dx|Yke5F83Xpaage;UciVq?+ zDk~zmOpEed1EASxI{R-QoT#0+Y~0tGaYHdMEjLB4s`#Kk0Hn z8Az{!0W0-^rc=V2Z)oKFj<9LQrsH-MIC=2n86?{&j%xZ^9ES2bZ+LAqNlz6*I~A3q zB;$9(M78PPW*B07W>f+Cbj+ga49>pY52`>Q}d7I?f$ zz6s7fCl=RQE9#iSvHwb!@SP=;Ejz{v{YhjU?yqP3&_B+2e0qj>Xm4%FF^{46*x{>R zfT7u}*VAOgKDc`Xvs^Ze#*cWuzCGS3eYJ%1NBG>WBvdMpLc=os%|yeBy+C3J@4zW* zE3kJs%@1?4`Zicy^J%8KlKtj*<@Js2MRyf-iNk+6y^v5V`)cZIx(?VGbI z3Z?(^2V3 zgQRd#*{g2i3cJ&kJlAtYd5X#rp>5$kJLKf;!lO9y*0h=ZC&wo$$7iq`K%_}4zX0h= zacCmDs&l2lYbEfeiZ!h8Xq%!RBp4%fT_ApWM_KCny6A3Y^q(uEdZ@#Fvhvf9Tk~fT zKk9hF%~&`8JjsV_KC6<|! zc!L21I+mbbj>!%<9UHVR^J6|eZk#C(!o?)p9Ced;uiT${gI`NvaxyW(Z!3&iZimv| zv?Q}Jd#6UXEL7H}sQj54bNl(Tk3*ks=kOeydEd943DppcAb8xw%syJLr6ssu&cfAJ zTYeq{v8~L7JT(KG*Mc%4n-LisU6PoABhp-{IPabGJAO@|fZ;L8;uSAN1B3cz^!lgW zK74iZp{K`mfnU(S395;n5jqS_Ku7YSR9<>sa3pCYf5pH3qT0O;r?a-$A1c>7u&q>= zT-~-$7dcG0lota?kUg(4ARb1h{*WCz$J^d94Cl}oE>X8Pzhna1;j!MV;k>R?+l+H_ zq#@0WXbHa*w(6WyyE-X{g>^QAxF2JWI1a({G7E?07P%N9u|mDdkRJ_o2!5v{EEeUD z#*B-LZ~?_6nkpU<8_`2B3Pg+g9#^oH(0^|oNiW1E+e^cUCvgAsg1?Pwy3AkVcfUp8 z>;j=4t^EFUEf$&f-nIeYnGA{5)Nq1wNBarOL=F-N(F}FCScGZ7YXNrWkSIRY2tt)! z-S%Kp6_Z`PX%@OgI5x8|8Fyc&{H@U7n&V8TJTAJfDU)~6 zmayiaf-2FE_w|&uHqtv+96UCYl+km zd`b4YsoCU~et!wg{(SRC{M1G$yj#s;yuBHj```f*Clc(1eny}sUlH#QjH}{_`z(xKcvYP{mHK}%_u49AV>K_h} znAj}}Oq{nB&d%-#o@i$NFdrCuy*tJGVcx!vf6+U29avm8f78vPmEm`(!UgwqSaO6R zCdNtsPFB9D>)V`L8p^Z;LI@;WOINaeirPZ9kBN^zB;3S7e(Yc;wLTE0K8Ag^hj(&e z#KLdRw}&Nm$Em{whYBN`S}ky#B*Rag*A(tl}?`7FztpFLu@``{ORQ5LY=LY%EIUWCeI%T_D>mmVvKM7|IQFOyBv zv@67A<@aCb)c8XUC}2sG9S1hs8;P4}a%2R=e?=Jo!34Amz@vkPHh!uO(*DnrPO)48 zP#Ubjzd-_kdX6x9z?jy^j|K+3!8n6;rZ0j6+j3+mf7>!8tYxOoUy^dzdca=_ll}`* zZuAWQKNtc)`vd{bSGgi2TBzHXY#sJ6Q0iHtv3jP2+t*%N`kIQ;*IMfq0#LVS!w zz=eC>ArSiFNYE1rhR*!_!d~><*uwL^Su$JH`3s2*et&9Knk0h1Kd5VDhE!F?GX8w{ z(|^(|mZBoR;aPP0*D~I37|_*d`Ym9ITQc*XTsl?-&{a3EQ2|xzpLx)Idd_!A7d8oO zN7Z+CKoE`o6_CyG7YJhf^3zH^ahQ8+X?a~;)h~S*)KaKefP+gETABNBF&_Zx?(AB6 z^(o>?)ok!@qyzQdz=3>G!Dr4lcRN@p8VT{aJ|SW zX^agOsA66~3CmLc>wDZE2FJHZZ*~1WJsV`F_m6N9CZ1@xASEs7wM=cCY|G%TF^r}VdKf(iE$vC^zw-0}Mt_?7F)#7{{ z$}^m@@@R0e3daf<3QO3G#2eV^qTIm#AIgfZ`29siuQ}MTP@<rCO&w5_IS-VKE_=?K| z-+w?h6hW_o1tmZ?RO~OJ-_-FgV-sBHAQ1L!fx0%_HU*j;gg@y~7jV_Vjo-o3$t(7Y9J#)TyDl^{sLISu{F(XqkuHwp9K{LutlR@k{9vc5J!;7kOtED$Q!{$r83BB3JPz|2=Kp4oFO zj%JlVajbvakXf}wY=HFi666A&nDH_JF(8E1ogKY9yg7K77@v-r+zWSNGK5Ac`*MudmI3f8;mZYVPST=$E3AA#ks z$K5|>(EAXD@UxKD?@4OTfU`;*76@f-L%L-j4fxy+7{7z#fif7sa*bA5xU?z*Q42e$5(7T9U z1JYFuw-3yon)IoM9foEV@Kl;HI&Kn&Cl5VhklyvSmAcoE`?U#2l978waNm}kllkxg zX37GgUjxQZsu8}$lpP_mXf~5DX>p4uw=2?ZJx-VK^EjWN1Y(kYIq`&<%~8RByXWV4 zYlwlv_jreo=fdqqIDs?84BxLDrEwsEf_&aBZe^4tt@(46@5}+$-s`(?jM@#DsVvT! zN(+*vD~}$CuD>!N^?ruPPHU1V*b24pG$$EQo$kY=vJ-?m$2_!hH_%j$AWr54-ZGwW z#EE5{y+hw7cXg4NmY)#0&Of(rtsFrO&SUC5_ITilJi_=uFN{u*4sNyyb-JmpnRd;0 zFNvcz7Iljx=PM0TaYcvX=7|!JZa?5nIm;)=05*??BUYM=obtKI+JR1S4W6P%JxH8GkJ2j}LWF z(?#gJDAbuYHQ9x^0-K)S6~-Sv)QWD9nM~IXv>zZ9cl! z0unt$AlvOy6kcN(%y^Fmf&gMLVfWnQ2$7#t!*11v zjOWS{Jw*2?Oj6)r{o79b=g0OBa2)>7kqVb#tC8#r}HgzjQWmGDF!BYOmx$OUFesl16O(F{(y8eq$!{<`+FEQwSy^%NoaF> zAlswur)eT1;zYlN8VvQ?8PX{tfXGImimlT&`#~&Ldt>hLJKaJB8TE@tZp;=bM^HyT z0*}{Q)Vz4692t$esEa z73|4tte%z7XOV`}qOoi!hYm>^#FN91mBNqUTwGL;zT!(we0T`dX*)Qr|n7o z$tKx{t`45H99H*LV9~E9@yzfl(NAGX0~SncLqw*akf-KkAqyZ4lBcM>pkO@E#M~pc z7}M9nE`(j(>=__d|IHEW6Oh<&bH_`neT5W%4jY^UOg}%i#x3GNQTH9#PEaCaRf_~0Q}@FBRnOVAJq?(Py?g3H}J z&pGwp|9j5!>AiL9ez;Xr6g9K=?%(R})vIN#-d1e_s9nX4vIcwgHwIq{N8w+e3iX@{ z5vmmaqKz!346POM4YkJqTx=OUt6bDJGg19{gJ%~?{u9I!I!E_=<=#q}&FVX1;n!NT zJE^-iZ=s>)){rImhN^ar(ZZZ3?4xss08J@mw#5YGM zV)J>wPBc5En1yaYN0+Hk{T@5H_2#{06d`Mm)rA0Z-pqQ2sf$v~X02PmtLy@+l?##F zwszOGnya>r)1otOql_;3w|9-!zC!~=3P(&bNQ^pnc(^bpI`$mgBV(~Uj=2n8yM;{D ztL88mZtpqJ~JpS zK3dH_`s7S9K|fJFzdF3IG-&d8YQN8&9SKmV6@a))P`Yrln{`-)Dy`HL5 zWdVauWC4ckkbHEKV6st0ERP2G!lX3onEU4kTBXvrYA+k&){iXp94fs|-#i|3aExx( zpN{MX+zd>eo$)7r%-E#~us8+9!h?f3f3eWOTB&4}MhZSEH z-dgbbv=Bd97nClvTzHE_3e8Fh2)p*0B*CjMmOj&XAqkv&5o#~rpe56Nz|!`%L4Yq~ zmh8Je)NXTm2Ic=j`>5@W)gTbQryO!gxHno4t-iR?y;)7o&oo->n;aVoF5ve$B@>22 zTuClc<6)r(y$~?)XbjV2S>Nlo#umpypOmHP%Cdv(*X zhLlrwPD|Zq&8|dobm~`NHT$VJe#un{2K>i2WDmAv562|*!GXkowC2kmHqYj)#+r!) z-PnH1UurYMCZdm>!h7oQ#~rIYoEnII9qGKt89&u#PW7H7a2zW?tX`dv+wv0o*djl? zU<`hE?NfQu*9iEZdhHXFC51`DA|kCQ&!Y+AKAAoSaafyn>;3JfKJ=RoI>ER{vrKJ&*yx!BW-#lGqLDgME zeRPR`W0w~vkkNuE$bLU1pfH=fGTWT4Rm6=#*elX<-0b_%5GEc&v{WTbD)NdwS12gE zU{pge_J1U`{xn`bpJ4`pb55am26jZce5G($R z8j?nqKoyN>Cgkb$dUBcLV^c6iJAxo1)@1eej`MyR2SN423$dj!{E@2l+nw>s=$c5u zdzEvlCfkgdyoZ-;V=kj#okRDzO5Zus@s zef_jdXAn!~9T6S{v1GIrKx+x2M-+W?J}9`K3}b!PZo@n5)1BK5oy z>0g(dbLVo+wNRTZ;2l;07h%L)!g^yJE$*D~z4iwf5Wl@7Qn~?mU6@?8pzWNV?6_Pg zy<0o+Yp&ey_FM=L6MGwpdr~AfMwTGo5YZ!2-eJ!=3I0;frZZ&~X!i$xmB1O^r0pKh zeL-*~g($gr4TimY&FvO#Q+O#8jUr_}c%{j2HulXCtRtz>KynG3A%_<4V8&eeKfFt4fuNE0$k7G0=c^M$*_CmMqWnW|{q>%1iImeHQU!^`?M z#kakh0BY4WUaso9Yv#h3gHhu0d^2p3I7Y}7%s9B5jvG|TAuK-r22Mp^z6_-3RrrPf zg6~jI2+Fn0DzPyi!Pah$VpeyBm_RTrp`Oktp3;gZD3~@@3Q|0}7%gBm*{b<9!nq%q zjUi8!Iq-)w0cK5xY;x@#Ft*Fsh%yqL_3PNt0yhI-$ldRHBKLgiDGa-3w&Vx$CGU^P zKUpbu@6->O@qrd+$cZne8&ouksh(n3;Rwa~`t=fXhLXE1&W8_dgw(FRtAWs_%b4da zLNNVH$cOt4A>P{8xfoJX@Akx_xUr`&-u8@!07dtYzDGB#74zvDKh^hc8nEzG72#G(_$8p?3r(y zL<=K?(EN6jk1?iTPCJY?pY3;0y7jdgVm-62)%A_dGvKA56+Y`SV7mC#HT!h-`|mO{ zSEkOq1sgNp)YE<2>D>DsekNJU<;Sv_@Z2`36P>qgNM7@ep-aVZR47~%!lmR*xR_ic(k?2=wv{1olsX^Qc1=}jw4$pv4VV42iNs{5)b zTS6n`o{Jt7)o_9=eNfqTwVIB-1MbSz<2c@2Y|`d{A%41qL^$#k8=j1Cqc~`+POau@ z-&Nt5xt9jrJ`VQ&C^oI|uwVeWCz>4P9aX5E33Hz_GXy6`h^Ly2t`Ho*5cXFcxS(#a z5y_DleODErJ(^2qn14@A&CGw~fxe8wd{`yq6w4w3Q092a3G87tL0Xj7(kB(Zyup=Ku14{OQ@+v2uP z>C1qtTI;NdCF%EAKFh8Af;hoB^NA~2%2*0^UwtAK9OMzC74^zzz!`ad4!n`)P!8+xWhdf2RF_|LQ zFRWSTO%{HNj0z8n4H5|u_H{0iB*U=}787gke?z#om_{DHR*h&wvz24>BJwz#(B|S68 z6lLc*pvY))9-U%0U5>YBpc^{8rZ6D$MzrU_I89(ds~^x(t@L&RH~lKbKh?WM7ND7| za0W-l-G^qWqt=6N-{t8GFVnZ9*DJI3bf?$jd>iW+`cB#96)k#Mzc8jDPmdS?)XO;Z zg$-D`9!T(@;`g}o)8U(EqYjR0FU8c!x^6K)_r~AVqR?7AbB_`A;d4MCfgTX+XXf93 zwQobZaAtSkg5(>#)O#!JeasMvCPia!+k1?Wf3ncVP2hJe3~&0z zVq%)zeoBt)&)!wjm}b!AVp6(HxtMzHu};u85mvpxWqrnPh0N-|g%pmoC=oU0=uT6` z58|ema4??VpG@Nu0=y&jQ|C7~2_reYkeg}N?A-W%ufn7}cj3~Pv=o!kBf=`Pr}Mp!?n1jTh^_m9Xho$0+` z4-O4@fU49ki--YzV#S*4^H3cAL`|t=d^HMSfTiL1B{b%EaAFc3a7*fux zG%`v7JT%8w?d=s?6Mnn|YM3IC-jo3sg$DcQW;dqc#cx2hL5%bNv$M!k0(V0RNNhGb zFY#HC;&}YIf-ej8gnein`%&Efma{J=Iol#SQylX@5}jZ}E+B7NYQ{K&^Fl>5^Qme_ z`Csz)$@0MQ+eX@1OhmAuDnN%|({%kmE(`cT2eeMnQshCF4@d)AVQ_8_k$Wrs&%z)8 zpn@BCz!W#lJ{BT47D%qDE)o65qu^frKTNSTyFjh5Gu&BArQHmXm!Dr-cX<{lI8i12 zmC0UPc*j|$OP3Ux-1VP~Rq6Qrl*LZai9(Lal*m=f{y6#!DJL-vwN4T4#WyA@_)+he zPlopPF={<8)WZLZWB($V+0fy-MJ>0pi-Gl+6FjpKQTZ2F-s6BlE1|~0_p65XnF-^b z0C)eLIsacS-dk!zHc&3%fBWh0xIy>nV77d9f8~GiAO3zE5|HO6q5a>s@cb_dSwN>1 zpr=Ug?1uJ#q5n6LKtM|{a8I87m(}5~dpZ(y{&{KWvVBZYhX-{}6& ze+}gU8n%|)d<6eUB+GyQwA7p=Q0AY30DX8~Qbnj20BC-Eboy_a^*0(L08L1g2f{z` z)llLIjl~;2&_AL9ioB{_(t@A{wIQL%s~H{3Y?gK-SD6KVDlEBfuTqrD*jJIh@MW*&xHLq zU-WNX;-&>?gwV%J{BKQ@{+HsS0}X1pY`SUwVVt6Hq)!Sf5#OKvp8)@LPso$Pa3ULF(i4<_lwQb_!j61&0{5fjrbg(Od{Q2Lu7CcEQ{?p`|4E*XQoI}f(MwD@DY ze``9rlG25Pv+Jjre5U;aj?4Y^Bgm|XdCSYcu1Kbjom{>Js?qCf2`HFR@SOh5sU~@p zC3zUHFEbAI4ideQhvS~AVQlfDK!28k9gpsAI;zYVl!Q0M_kpeEC3u3y& zTg)|Q{>xu{G714{R8$ZCNm&}yY7|(W3W9e&LaW9b)iLdtn?b}#S9kryXWja0{_wL* zu?fq!=pnE*)?l&kaSj#rfyEJy?QhMFDr_&Ud}d}37o0u*sBF7QZ%r&SdsGl@0|n>OG(a$*us8JLmw*h z|9Z&BtxMs+YzqqybePH7>gI0RJx%|n)WtN_M2p$%mPtg(fvoUAk!vzBEH}Jg=OXh4K2pI^;U5h29 zevot5J^`zlCws^m7-JnXRicIuz@q~V-^!EGl@OFkS`SMP~b%l4% zT?;ROJO`fV5Rs;$A#-VT(HA@N&hvV|dQ`W=rfbc4&gP3v7+`y{{0ngLhuhxJor~OF zd1oRrd>>RiyEZXX;Rbwb_Iaodj-kf zzwS!yC4v*qk5XM@2TH75D95wr7}bVt!pGMp!t!-MM~s;=fA(QvpbwVdqtDFylZ^_X z*Oh2AKHJvn4;9WnCHp$JwBcQw&8;4Q6duCWJ_p?J3+2tTz84I^dO+%fQWt)AnhV@Ry9=Fa*L$^+)f3X>dsLjv;8u%L_((?k4U6UmsgC6zHr_pm$84h*L8qx~(t9=sp_XVm2nRm>>eo^}YX!YgYbGg06_ z4Mb(-*9(A^HIphDc$8SV)f{BiY=|f9{?)n!N;RwMS7~*t{hK3TLlgMAhkcIC>qNYK zevV;EMIW*aIb@HfGxzQ^-syb~z%_Jz5)%Q2lt~78&(=F@hdWgSGC_Hm;`H!|-GR@0 zN>%z{A6Hv6Zo9cK`C%@Hp9aW6H<)69qRNH%iawx?7acw0;{^to>p8Gk!z0ufo4a5( z4lDsGBHeb~APJnw0q?V72l)1a#@1KxaW9Q#r+nCk~^w{^?B3!h;DVoM{)Tb@3dTB={7-O{6(1$-80LN zlJlZxiwr(Wsl%UNKb0az7z_)|GaK^ww_ah|-r~$-ElQxbsI;A6qwi=6kY+;M)diP7 zygP~Q1Fx)Yp~`r#A4SYqTeF>pl6zd{C|VedUY%9BeMGq!xt-CmhvGw+0y2z57(160lWj^J=Wo_SYK;w^?TbITMcZeOyBW#Vrs$3 zD9PYW1yoh++pE*KY2WVHrM=j8b;=rR4HV_*k{*}{S8~+}Yl|*{N6WT}3rX?!PeLLv zBRC1H(1>I$b2b*t57AtY19uWk#p_oh7emjPp?lWrM`Q0qu`7(ldJMJprK4JVDY!0Z zt)O3Fv?SgUTsXg$6K8O(ZNfjjb~BkKnwSYgY%cJpYJGhRaSsX5`&mV`0)HepEKI-u z#oO=lFpcjh&DqW@QZMaMY*1$dO}#m(V9J&MW@7O7J5Msy*k`Cj$N~NxRJ?rrL=(yW z9Z3#O%w{8PAw+#8VK7J5hmNFlGwM7E$`B8HR#m<@V_6~QmJGAL zJ&KDlCwgQ!9-a(#vu@Jk&_u7{#4%}l$(z+3g8+-U!fbtZE)KV=O0z>{t(oHVURJstp)Om<4u2Y_GlhXSmIWE?2ymsR^%79m5VkGIR#msx+^(YPa zG?UPH(Jt#&CjHnhhE=6qFbngntDnaEgbl%=U;?r9tCplu(5ij;?3HIPoS@AD1!Wzj z|Dn(ahed0lL&Ae_;nxFill}-)g0>B~WiBad=|V>ze^c^44C58N9?0^Y*LN8Bbk9C9 z6TY{+bSYwkaS*h`eOtNuo@tOw6Hm_YGygvK#XhQ74h5Y<&mP-@XMtF*bm@tmGa-l_ zwfB9w30vtR8U_O zgD0gbe|J!;)aQmMA{d?{!%BnOf1y!Bmm5`L`m(-UwcNMBn90VA=uYXVt8kvx&`b-t zbe>a2wjYF+`l@V{xHQ6`_dA-h;rlvr{yIl_x;(QUrTqJa*u?a*DDzkQPAikIXC7l{ z_%Us1ga~)MhuF@ylLg#Jj@w%(89J@949==#71i6DP|G3I1=H2+KXpydou)@997S-c z0(fMpSm)br~FXfhL z+Ek}>()@MO_~5b^ap`TO=xrHg2bT|;(z2Uu)8q3h z10vNwkaXtWNXgL}n}&BA`1`ZI@QJR%qM>tD%8ZxG1f|PIk#98pjjeNB?m8E6q$D8R zCKur^h!)o<2#(x4ufh*h1V?$0?;Jlyu>N!{iRu{lTVu^+1C@`1S_LM*zoY7Pc)R5@>^tk8Gr5spe5 zKfxXLuW;!UqUW7xRcx$dIWE+ZdQDXa9F6`tcFu^%G~-q%kTm%=fdo1*IeQJ>WrTtKVL@2!VzW8@Zdwi*B#m(#I%lu z>uHq+IUJ4B&FD2ozqC0&0-VVZLni~m57!W3x4u7}8{TnF-YPVBq`iCR!q zH9pdD);?-gdCLsW<)}N$2nx4ixTojIyA7{>4YT44YWhXCqSFK(A{Ro9khWbRutJ<) zbFaLNc^om^*YpwTRxBr12y6L7mk9~86+7ISo=3#8zk0dxgR5Z(SNydLOpSt^B8u8T zM67wW)Ks^Ynk4FC;HC?{rE%Y5V3f$WBx+bID5Uj$(+|p{O%EbLLUyRgx|?D1odl5owEU8e%EPZ zr)@I%_p!~+DPpYcAz_xwzW!Fg$+dX8?jM(jH8#r;ixQ)LP|~T)M}o-`jWI~mHm`Mw zFds5LC9C4#jr_qGYPFQQ@mgm-#N-Z1~wVnv;J03{huYGsg z7j!l2d2AFpTc!MyN`o5$v$(l02wpUB>&rNesQjM8H%J|ku4}Vpa=%fB!Y@b?*xnXd zA9^lfI*D(iM;Nq9TEEgtV$_KJiX=L4fUvW?30c_k0h@`QtXJ2-Cz{*z3!x=X#eV92 zm_waJBR|Hf6={e(GS;e6oKo_eChC$-mX*+yq*1G}ux~Zq)Kx<>N6F$JxQ3Q-b*12G zW8G0&WapD;U=%CMrW4yD@lGw3FIdjW> zqA4g6wSBLUUscg>6jE|>n;P2VMLc)bHLl(?E}>wGjNacs*VjYatH+SxBah+3-kwtK z<{Uor$R5r5xVc5dIrbbfuc5%NBmmK$P)740d1g(BL;m8*#wude+RJbtP8FQr^!X)3 z_)luXyt=2gLl=(dyzxnq8DB3-s}~u2VpO7s`1r-X-lM+?mW7g+(;Wv47#go z;s>-o>Y_Y0Q4lRH=QLC8K zoiU~D_aBF6;~*)MPWV+ybPX_rKI2mN=_S&-S}2z`7tE~)m!q?c31)FW!bLQ5goS>u z=te&o$H11qO@x3ogD{*O{W-qA--&?x*FLkUuE(%N_&cNcZ%HBIX$nhkEc5>e@^CuI zS?0qXBqh9(QjMV56*B)gq_Ulu&Qk0Zx!k6UR(&{*JFtGdnfqPDR#lyefF&KUL5p{v}X5=T{@BkTE8E#%`jdMNr(2Ens0!|wfpsL>Il}1$;l?y&xGEq zV=YqBOB z*VlZkE|xs%>#mDmy=bq#Dk#kSB6JPADbL)|I=gR%yc12{;ocL40xsmnB`TY2HMRB$*4M)nJSt=i{n9XVtU&!@?@rt(% zo!h=ZxVP`+F%<#|rVXuBHfQZUp?v!dLVH?_EJHGxAc;7p>j zOzabcqz7B-R@D-k-1A*KaUTp14@C0|=AJdKwjF+hXhuanbxv$Q@6u1xnMsaECyIhG zHQmJ>4{DOKxeDR1)~u#FkU{kO-~qU)g7I%Sa~Ib{LgR1A2Q4&-jQ6|wBv1D7xG9Z3 zxbu}BUKb`Dw`f0CZ?|I1BU?UQ1O`~AE_9+ocyihrkoh^=nQ_HAAjUiHW2 z5Z8WLj(>(4D>{UOJqlYpFyi9TLVwJnjtN&iI#Cry!c?fC18*Qz zVwu)P9yzCpWx!1Q#iF_UUcWi7!0wxc&kw}AlRZtclUCs74Dkc(s4)ol+uC1hb8l@` zYwi+QKfm<+*vur5L#kkIbia?p`-P}9XJSR^m6F+_QvTz@NXf@7N!6r+^9+tR9P$1O z)#Hr)+~sICp+_Ma3Htg&`V@iLI&nEE)_j-raJX!4@SZ&vmd=rw-k;_PvDWJi1RYt7 zc&ExJFdn1+jMYLiYl3Kl4r_D+@F`n6-AnU3ZD$?PtvuArhZ$_rKW8(v+YGz~1=9v8 zJ-QQd`x@YvtM=gG5*PVe6mlw}Lhjb2)E zY3=ff+MK{$I!tevl*~`jylUcNvIZpRcSx=u{qB;)WDCW;knAh&+xRqBst8z5D42CY z60K)BI%jCQY8m`e!kpZxH^}jq5urDRe13-1Iw~N)-Uk8WTfkR7B?#a#x^&FaKbR(h~}oJ8T^RlBV^_u{*a%$1$qbQCA0vTIbq?-%9GCi!PhHV;Kc zjG@ZkPNEi65jo5uQ8$}pt9~{JND3uZ4d5mi#nysibWmK6w!u}JL8!qtrPSgPCc|Vh zhl>u0@&3lztlvtRj{br6tcHX5vc0riFSCiN24cU3utjuA7g>eLArk12onos5i^k?n2SflrgZWiOG2MPwffKkrPv-rtBC!E@3xBzTm zX!}MfXKBivtUc4Qk?7{tB&@38wl!8AsKw*@odIo*HXMe^&Ty<(&0dk_OC@#FQd^^T z6#Ns9{V?7Qtji42UvD;X-{c~O!piCyVB2Xv zAQygY;e*og%{ubdUi%%tex1)v^b#t!i(h?|bLN12S2>A5!%#ozILBed)Xo40L}qF9 z4jWgN9tV81dU@v4m==GO;+gf{)Jv+;mEI{KH*Q4SBo-vyBhRtu1ZV#u$8oa6&wF&i z6JlWLn#T!&!kiX=pYLbgA8-+k*wc|H>crrXlQ~-FBMa+#pdJnL0dG8=d|Mb4Ai-^X z@rf{_jJS2xIga-$jm2;sE2833PNcuA&m;daEt?tB z^2f$cMFET;`AtXhub3hInF6bv7R+;+EAa9mk$9KX0WAt0Gq#y(dAUDEW{-(x$m%M6 zXKL?E?tJn>X&p3uz*fBZwzqSdAhg97s}77qv(i~M^^>2I!E)cOZRD1x77cPl)HL2N z!|t(U*cwvQIu-O$u2^gFUjB@FoAXWH>E^B@ym<8GtA}3PcUF@jlY!^94LhL~se1X8 z;;U46=mws+fh15TW+Psjffo`&$2|zsCkydqdVrj?sZzilpe@_qK64W%kV* zw@xwKp6c=hMZIaMW|TU}imYXJ?)mt3usU7l-j1_8s9fZWtMMBSm4zfAzMMu8^j*UO zPKUk8l{dTo+DHe5B0)LN57#M-Zl?6q?iJhd#@Vg6ls;gNbS#YG+{={r?quNOl)tO4 zelH7&gT4H$nn@lRFq}A=%ytB?Z&AYT@?Bd}IR$O9MnwH}&9@mYRrhAEOB@F*gQ$Ub zQ}QqiIntCjts?tV{0etoI7&iqV{b;CXPkV5I$m1_pjOUEN$;Me)Q;1T+~nRaP$lQq zj1TF&I^Fyo(-DTr!*1ec+F#cEmQ@5W!)!iQn`P-p8JYSKp2!ASvB3guWADXgj=7zc zfvMUe(~)eOnMLg3iEpN$M?Z^D8D2{!oOuvFWapH=b#9Z1EfPEo{%sbcXAKSCdz@ly zO>8Tbzpr||>4l}dB4qL`?;a;o)1>~pb3s}oSU(X%_ZWrJGoyFgb|Yb}mWNJF_mYluFm%&I8TO{Ky993UMU&{pS-H1ON!o4wmA#Wd#ZZ1?5QiKS&@CfNA>XK4Y zfVX>7R>mGq#SVq9nV+V(PDeMS7~QmRiW^t9M@`3Jzr&<-`V~Hij(151hwFg>-)MU4 zqykbrgeYheDcHDZz0_z^3_}lWa+q5V2c3rz$!lAel9iL?9|`CkvZJ6qx3NLj6{MzT zMoL6FOdY+FgH+c9G+Ih~=iNi3dzDx+AjGfntlKOyrId=7k(01+wZ09jfDpwWXCq&= zBQoSJnwL%rLZ4D|k*T6e;jollSGO6Gdp9;DM=SZ~`^xB@G~;#EA?Grg5S|SW&&-rWl5#DBH;r_swXE+>I&Ewu>VM)cG zzihg+JUB_*Gu1WhIiVaG5#Ectc>h~Qf#_wNaO&XDK;&I_t-5(fUW{9*%H|6v9mrdC zET5Ypi9ku!mAIOj1gBc+GgWEaAOwqLUiKaR8=%ygzks9Bjv0oP{bBh{KRzCyZ<_u#_G{ zUI!Sfc7Gj{>-=jp9V+mMvloS3cMiXJu&q*|4(`sJpcK`kB!LSCigJBvnw>lzO-lEV zvjjOAI5t2QT~r4Fy%GYFit;$zh^~D8iPf&F^B%5Xp@8(Jo)xX@1qKm2FL%_FJkJ3> z@v4C~L2rUY?Phm_P$)}2xS(g#kr=LY5P;*Q-&0G>4M2bkU$DTO_hrxWH{6M075dsLz9EHgE77X1&zqR3Giqfky+>m_|q-f}0ECMq`Q6pI7 zV`O(fVTlZQW}C?#DSlBKaKUh^eX0N$?dv3e>be+M0ZxoaR5}h8W~%g)7lTS)63_>J_>jM3#$(fu0juO#`)>3k zp;P9+(F+Q+G|oB9?SAO_6%qFgwFL=a#}mh{X+cFf&hr84m;~$fFM%Z8F!8{hxi3|5W?GzFaYcAITS{M z;c)BwOpcd;ea&ubId61kbGg!V7{Ibb24~RztU=RZZ2ppadk(cnG4QhdRp&v~K&|F(U+*4qDs-mHX3SSpdrX&~j|6eMcsfWS$D51qxI^7fr;Bm16tq$DSheiZVB98e8eDmGqR@$+v710r4W zxAA_xpM{>(ix@uS1_HR{R<7`O&&7?*tUifrn(>Y6WN<0MbGoGw0V1G{g&=gkG{z<) z3C6{&W8)alyvL@@^fwQvfy~N?_+^B<@%u$Hc}u}x2m51-chQ&}GcuF(klVZ&^vzmM za+l7yU^t4z*Odbvbc^t2{n8W+g>K38b3B;7p>RGfm+ zxKioR*^Zy0^D^zMeIazZ$_lsfrM#YRfF;UDoQlaeQw&zHLbF5`5+p_ahLNDM(y9QD z^BRG)S?nnyqK!2`Ezl69W^xAARr#0Jz6-&Dz2XZC8yz{ekd*Fw$;huHC$a(PKX9oi ze6K>sgd`#wnmUN(Bb-30II(nC-agvBunC1;-Cri)E!AuI_kV8D38cc)pG?9(eNLal zL1EWMpjqUnn$|yj0#Q{!TtxWpwEuVo?hh;kV4jDnex&>-O2GH%^rEU0h8hcT{|M(T zl?Zkg_$#G!9ONIcJYi%@ekP?FsOl*5Pk;fI---IeEPRQiE&~3UScf4zND4!`ha6Dg ze}eu0GwA)yNqY%~2i7Jf}o5h!yz!lVQh{5H392Uz_5a=X_bI4mqRUF zy*96(mbzGfV2u`>ZdIT3&b!kse ze!&Q=UZ40+_j&$84VZpK`10F**g3zVs>XaFp=$Qa-?AuKTV{D|JUqcEg_cX-dNu#b z6%wFy7f*&osME0MzYfoSDXt+IlLwL>Z+54+#OUa04gh*lz}4#bu6F-zSb&u}!N0H& zRZajTb}tugvAgw!4lsG&wPlhHfHn7N+6LUocBr)LHDB_>3c#d{k}8#`I2z%Y_>X!G zv4}k*cYO9UOu&WDQNvPgK5CR~ko{aMco_*Llv%THx*Wnf1U|` zpbh1Hh@i;AKA;4DeKtJdEw2wO6FPvqUA1Hr)whDx?Tzf9oxvrig4k|<*^sIT(T^IO z#_JQGoeT5^B=wUq$6C+2{Q_n@4}IPAK5qky-d`Nzk;^h)e_?Twn4=FcZ#4=NhgIoc zww*RhN_5^{OKv5+JYi6Iw>`&XlEhX_<4!dk8~Ocuhzks*V{(>#)`!Y*1;&(N`u+#CdYSw?LU2Hun*thw3Izd4> zR|d*f1cj6N_><4U~vSP(7KFEzxGx zr|oA=n7DEqz-KA?qSxU`@vm_yi88lww)@$()(vM9-G}f9tJwUTf3g0Oq9^mgRE)?R z{b=+Nib}a!V)*!YtQP=3gNcfGFB}~m9h@o#+<9{(B#ex$(IR}NIo!g4DOHcsf`T5> z*yuS1!#jm&_!iP0rmy?m^3;Fr-1}QLv7%+z$;<7D`tw=~qrzHq-y>Qm0)moNBs&SF z5>rHm_sCMOi;0JERHvs_0{NOh%8&@LnUBj96tt>^o^U3-?l*!*{KFI5rS0j3`-2@G zPK0FvZK=oUKj?2u1RNs-@_su|zzfv8JDm1e$PK;ppvTGXh@ag*oELjcB9 zH3W+3q4_zH0X-~wE4|ANHEVF^TuB3j(~I)GSa^0m&Nhq(yDqMJX3blp>d&pESbRNZ z;IG?@ps=s-gD(Fm`sKoW{Wfqm3faip5o`a1B&5nKsP)T31kxjskBwOf9rYRxrp;yd zMW8!2obH5;06gU%>+rGgXdSb=jQxwoFTOxrg*IJQ%w~K+UsJpv^t;Uc_+D#(IyrCq z$Sg!m^D?Tb5-F!`p3ad}&=qgVRbE)#ZE(A!j;XkBcl_B}AmsQqWb$f#f#%te#iBa` z(jSN6$y@24%l_5;Q-+iVk$s)dQE^Ei{IZ&}C%k|es(I4!#>N(vs+Uk`Yc9ykR#hY1 zNlk5A>c+=Ra+INM+L5(`0OPAb7cOI~$iFb+XCm9JX-E_R$Ly8dLoM;*#WrDE?rP)7m{m^J0zWOK- zMl3YYrbz>mxcUA#ls~&XnD${IvfbO7?V|Q;G=%A`<;)vUY;c~9P!T;*9(F6DlV^Ip9wGa**tlseAR?@U1r%c4f1W@ z^KlDdPzhf>YdbtfY*{;?711LO*U zxV;Z|=ekKfk!Y$~Zz{v-P$^Xf_Cm-^yhHOY7nBMAD)AZiMtvDu!tu5N=%6bc`o7X@ zXQ7f#ZqMp#xXG6bU$`Xhwe3H}6~=uuE+m{Ue(C<{8M)}kf2B6`Xuxy(a38I4w=EEYufElow7!)~nmFQl3qR8gskoEH zD>>H>tTPS1NAEdov|k_J?5S{gH1KFg%ED|7jPHx-y4+;~y_y8s>Tt<=9mZg_MBmFi zcE=};coHP-JMa(ht_eW;UfsWw{05nBS{oXA?os9_b*sOql5O!U+HS#resywmJ^lim ztwtwwJ3meK$yevSX`$5Td2Rj%CIT|$3x>7lkP7Qdc7$G#)HTxLXko?*ea4B_x|ND+ z&Cy<%UrRL2x3}u&NAn1y^(~cqJGR;hM+JC}UoSj2mcYxcK}G$_!LS9G#?EdNrhdVP(PDMLigAuSBpXrSwxh5>J%@GV<*FMzO zHvns2BPT_%EKw~G2+qPI<*wqVGfV;psamG5h zOXG7zMD}5f(0aHnaCfh_v6d;wpzrIDzePun z_lp2YS=!1{@t~lzFLri{pUx*peNIpq2F1ZTQ=tHU!(154lSu(ev;ClKYmyU)aEU4f|9P$*pSU5uGgo& zwZ}H0T<$PwUX@)lee+}D_By2Y3q{ihd&TZ#&*pDDwF$p9B}yqcT-C_GkRHr%C9RGM z&uYsEo_xPvvK1pvxk7TS_>%*xf&BL<&hO(*xd^+KDGD4 zn@p$m5gwYeyLL;Kv=gD9Of`%?Yb^1{O|de_XM`40tfwhE4ldP_O8nM~e<{YJ1%94X zpb}&a?{F!s;yv=hCR3MCri~Pu!emeVV-zQ9LAW>ZSC^9s%LxgvScfBkR5g6(zc54L zjpOJ}!n?j5@bpLgEATwUhogo9URtg^!SuX=)H7?geq9FGYvC*Yp+)rIoCtv;P;<2B z{q1@Z;pS**9LEr)K(xxX>P(|8^UvV@UIslOhp{T^kPC|HHTz(bwyZYG_1K^ zN~{Y$6x_^*fyTq*B1$M}bFiHbMEe}|BR`zA^3N{`a>$TO`uZ)yX6KMv^9jHI#9P|g zhjspXEi`hGx#V2E>s)0$CvNH)veS9DFRe4J`uIhW)yVbR0GM?d(oaq>3ww(Ng znq`FYs)A`wgzw7FbGIMq^+;$=d-Z}skXQ7djXd7AA9vlFW=k&Q2`j$`tGdqLqh*UZ zGXzOJ`#o@Jct6R#Pmwd)&+A?5htTBfg=9Kc)1iyHU9oO~F3l_uAgc&byJmg)M_)i! z(Us5C;1jTm&F$6NrL6H(X0x|xOC*ZePAL_FHREdNJu=;@?(7%Q6hG^W&d8Il6Q%T@ z4kJbO^lH(44<7G+O54n|(DbrqM0_T!UNVa_$|o0le>(T_+|!-!B}r>US*?L#-|+V8 z8!sB}C~FuVB$-c@6OyUXg2LOLhv%jEsC%pm`33@mf^*EXYeFRWrPA%*yVUzfmGQ!sZ`? zzqi?$Oz<>@->#}Q+#4{<)u&NQJuf%iq^&pP$f@Q~If0M-@DNXHl4O!OPLretC6{KH=d3|~LmYg8i*-iva=S0vC>b9<_Z zHe8ZMKI)5pByzpt8WBD}(RN69UOS=-o>EhP?M^!dIRROpLVeU{a8b~)HEucigngk#vqpk;sI+XR zau{ErESTU zE(`OfFHC8nB%iHFD1DH(?U3HWp|bQm+r0KZ%t-Z6rkQpn<2<6;!YV<>X>quQThSaQ zXLY-jYGzl}cA6j+(t8)yR7sZ3@45DWvGvwbRW@JPuyluT=mzPQ?(XiC?nb1frCXGe z<^a+q-3`*+jUXZ2&37Mte((4G@vh}^an?Ea%sn&L?7e5^+Hu zgKA(TWfw4O|6?H^wiVG;_Ew1=&b8}sZgW5Nts9l{>eoNa&2_{vXBxENwo?3z#Knke zulHB#$xCI4B-6N3%x|(U7`{94hp6Z;Q0~p~-NN&Ol{HpvCPyLwr#r=Lp2uF-Z@r*% zcG25(flnmekRs_u5ykCI!J%RwXFsmhwcqAgiOxOJO2a-QujeeAaie5jcl@`vo5w<8en1Cm44SK6guGkf#?{W#=AD&*MsZRCSTq zZ8emx{n0tA*E`9)@Z~uCHQIC*%g{3SWIK0(mK^n~-k!mFZGAlvVDeko`rR+wJKT{wnlmm>kC;tn;^Ih)O;K@4r>6^AfcRJ7&fnB`}?GOCZCv#76`%E1o_DLcu*rda@YCN&Hm9pTT31W$Zwuu29KTaCQ5SZ8uk)d+Akhs=`ZK;YmS?X{^KC&= zwTHZ6TS^1UfOCHe%TFXNq#Z323od6tlNR)8ZR9%s3$B5Zcg8goy**pM@M0K7I=y&4 znl{>T*r+A0`Mf0B_vV1mDrf)sNH3gS_4^_}qg{0DYR5B|#G2%JxLf+S`h}S^HlfDj z<9*Y7CpNQViT1WE@!1sR6efjVvR}pnn%U`>IF2sL!tPGA3J}HmtmPv3!kq1W!-%MO z3Zp=E==|Ya(aD>8nFi_>hYGRqJIy0sD~gRl*a&*__7yylpXx9G~m zMxn;Zhh4KFp4E4!l$`Hn0mdQAsYCKoMl#*O`3IhM!VM@^5iX{TjEOQ!Pv6UL2>NoL z9L|#ofR&_5vwa%8c{)P@>h`7WYxk9BA_Uu3ecU#S2}3R1$3>f25;rSP3D;S72jWK< zWvypQxuSWV?5n#99~}!P2Prc3YrV&S=!CRi!UNrv2t9n8D!yy#{#C%TI@;NTrhW8FeD*fAj0AtC zEUwhLHw)`$PRmtG)S_%(sib0NhuSH|M35J?;k#gtRCP=IxY}eg8h`;fv~01wSy~sx zHPGqv(J@A!N<{qXz{FyheZ`9SoBxgXG_u>9(m$R$0ULTGl*W!vd zVu0=5t`e92r}+5uuDlLqakLzZCsxy=)HC)WQr85$jRrT7Esn;u(w0A`w<~@&>X}QZ z*Ie*99~|-C&{7ck`yI>uofn_+5N+5>8`6P2pZXYoHO(`$G0ty^jS+DUTrAE9aV+a= z-5KwACWS4S4g#vkB&-~|_ih-d4u9&>>vQl;E8vblw|U?$2c(6+dznd~#Ew3yj1_jX zH@(ZX^eX)DgX?W|t&(Dm(gW|AVx`0Rg@^s4hc`hQU(uJTuSt8-uj`gf6$wU+Qv;m^ zAHVp1s_o_AYkn&^be-ne6#V9t>%(b+w)6TsbIN*_!!R@b;s@>e$p!u;7d6hOi-m4$ zZ|2J^`|QM}%A*>a!ts-LYH0Q?*IoQy+i%yq)rxfP(fvP=Wo-vryoq9Qev2>gj>c@= zs+#-@a=QRR-Y8ySLG@crkd`*l3A;bf{d}^VUADE2&^xl4D0$#ADu;B>CKXu+Yy8&l zoZWaGG^{IcP#ou7ukN#Th3uJqXM#^37Hx|hlLUF*QbiqH$hBGNnfc~9yEF`7ESxMV zm3(QWqxl~f;9Us`{u^lLkgDW4;`yvndCn5dYIh!mea|V3?U7uCUw z3lsg2CaU2Ihja1R#CiezMgR%|#qqe@txH#5ej>&b{dw+b+7vNW0Gh-VOYmfAoTGYk z^l${%7ga*{S&b6DynS}~^?)_3`G6`Bw_r{q~D{im0|WQmXen{Fcy9KE zZi&-^^y8&&@OgH5e?|h1tMe|ZFLxh;@rht~#U{s;5K95wQh*qfzCRmGkHF$q_mbT0 zI#l=@S2g-kcW$FhO)|9>n&Lg*AuOmUFD=hQkFw_y{xRnL5Ga%pHrrLgR%7Z{9p30& z@p$l^e->OGh5FglG|R{XC|55OMI!^OWU2ckpZbuf4mS6Lno?V@>$ijVqrmc#8?cYu z9Ykg?Mj`Rxj*^OneEbREs2BB`GLH>uo<|^8=;L@BE7AfPXLD?J$F~@m1B~h(d+4&M z;@Q+6$!3@3Tzhj)ELn3-;YitNK{Z1NrMoQM>>_%H$A^?MQBjxYi+}pTI)7}KzI>8F zwXZpCs`su1cwVC8t{0PIzl%VTANTv%Y`Gqat}@S#E$TQ)pX|frFB~VoLBU6ZdD7jx z2b@zB(r(PUvfx86@ABX8hdQ@0O*(I(esB?FyzAt_UQ3YdYHpwM5SJru8 zH0JnZFG{s~DQ$CEXZC}Oss41&`;gWjAxSlmjavea?)r>5H*wJ5ffF~BIDBt}ItomX zhIlLry{IgDdnBK411!l4BEXdDnq?VGGJLkIwU@wATM^W+r&UBneQz9AF78_sL$Z|{ z!$NF&{g3@jpyd~mUgc=QZwihZ62vJ81|8)36((NWErAW*{oaUP}AZpE@ey5++*V9;nNi{i=Om|k@jADg18$KC;P@(^3IwaNTZCuA*s+?%&<|_CYD&Ui8PE0{ z2JrHS@g+Ub_i+l}^YU+5j9kfTWJtq0`lbI6n~5}eY+m-T%b}1KSfsCsE6A5mp!c1a zEmLBQ=y@y2Yq1)(BmI7=#ci|y35ET&EfKLF;F(I@vAOqVei);ooB}MwCO+Q|YL+d- z<}dn_jgF=t7~fka)Ol7G1);N*c&V5%AC4P?s_tE>SZXurBf-T_ctj)f=W2&D@n;XM zlc@;{c$>qDnL-jJaA`*R@AXke5JjA~LM#_fh^RN2F0>VV`K*QExj%e)7TNwnD~#Vx zjAyLbH%?ohcl&Lmwu#z|%%P`|;_JqaHO<}UqcRz@$F0pTbozYf@cvnB(2O2JDunU- zSVVaPLAuMbW>EC}5Q>s*%EYu%wu<-qM7dDu%gyJd@E5!1_r8lpu(+XH zIlCraOzmNN?_=2=)fEoO?t~b;vbbeIO2Y$qHU5Km zC=fsJX!Gey`{U!FFh_m_ixZF1scW{Z-b<=cT;F9Ig{5F57OC(2+)ljO!}D>ynUEp@ zF>r<~2P&%;Kb@Mqz)Sw5&aC6MPqgPjuJ0=cIBVuT;~QD?6cKcqyV_q(bo6hmNXT~L zi$1%&3RTT-P`H*vxuw3GZgW(HlMlu24#9 zr<>0yNsJ=9Gh-zsZHWNwq?kG_ze?hF5Bv5FQ<7}+Ijb(xk25%w8Iy?NfGa)MD_BLf zRi4HUY5O{4>k7ij0C=UcAgQZG;U3A!ZS+4rM)NOaB*7D^o!pt$SC{d#0fzk&6e)9r zP2Z)>K<0DN{Sk>rr}zq)>LvunB3GpMV^r`fG0h z7QoH$fJ!!X0j3>m?Hie;Qg+8(=3s#m6%blW2RerGdUz45e*1-}?y>>JSzaIjj zZl1U`hVC-0jL&y~61dZV1l0g-YBr0Bv-bLR)?h+r=+Fo0zGO7aY%!(DBFV|w3Bp3x zO}x|F8NFU9y*!6yQ#uP6Nx>(QoA`IwKNuLU2;n&lJ6A=nsnE6Q)=dQ+h@p0PxrV@p z0&OOySBN)l^OTe;sLEI2xn4M?@zAH+z2k`9WnmJlDyk*=a*_zgeXB6yAP=zuBMB2N z*@$9@*ks0B-L0fKT?%Z>x}9JK``;(ZI>2)%q==0A_tWByuzg4}9O@dnvhMxYKMW4${IkQ6Gv|T=rhx7|v&nk_JHU z3%jb*wN%GC#FLmuTkzppB!!9-kxttOUw+<2IqG^wM?;f@2+dvb)h8z>@rfgR-K2vU z`SKcL(Cl%eGzpr!FMc;!X6N+9e2$#q$l%JM@ycpDwppf0deqUT?jW3YpM19_BO({g z?W^Ns0R%L=-1n8rY#a&WOkf$Zj7Iq3ts}K!N9^9vpAXcclH(p>ZEkwHi+tU^f%;|e z7+8OKfkB^?MZX5_3$0JtKMe7uj5Q=~WvzC4cj&M&9-!VFybmGc!TQM%^xv^uNFJ|Y zdY$A2VTOjDrLE#XvBb&7RNbpyeZE}n@}Vkja_qU(rSbaDqW*8lA3ab|ysx|qXqpY5 z(WgEQ0?{Wx6u~3|c#E$3RVo0E^(b=k$D+;qMrTJxG^0`{*LwXlT20d0|6EC_Iabef zJz*!7FvuL+zpU0DU?#eG%IN@!bvFZU+3RQL9;zi;ztC``a9rO)X%|g+w}QTv1VoGf zT=nzv-zVHM`*1T8$L+V%fF3`7P+{e)y+A-scp27KLz0L%ds$JCh{&cTMR7Vb?&Yt< zbeq_!$J+@05NuTC@!7ucJwQnZs51bwKN4IdysXpi@Qfp6988P>P--D0AmA$r*hCW= z>Kr-5-2Djf5GBR=!5~O#eInxQ2hc2O1@Zzq2B+^^ztdW6G4W^%$E_RaN+Pni^u1A1lNs2_;nPJwAeMK#$`rlAp5)aj&)1z}he%25sa76`rlLJ6d>|D4HVYPUis+ z$pM(_y0BbDCF@LfKAvg7~cqmb0#{=dT zHkDL4@^GPS1csOT9@It~$p#4UsPCJM;0B$JvHe4Fe*^B=GFoSA=94uI4tXr(@6!}FUiNy{6 zT{_AOV>Me%MYR08=B^b~S)<#ZsAJ^=Jr#-HfUMMI+bU*?UJa33$JM|hug<0`&IP%G zwXL(q6K}-E0&ZPU(()P1V`W6>*D|#qt|Gjepl%yM$}E!3uh@96@i6G3>EPad3$>od zGSRSnHN@kRv><)^689j3Z69?_4BvZ8zP-s&v;jLnh(`VvpEJ#%vF45^Vncm*?yJc! z7b^C?HDt?W|41Kz_4HilYvbx`*qLkVR zO-99(l2V#{G-MN^4ZO$zo(DMe^>p{A)g8+3up9?eTQ$=*-3LrC?{W2`;_vWoJdPw4 z1x?Is(NOF;dfSo3#06Cw6|FVB3WI7RK1=^X=y3e;is713y_su>%e|+jH!UCcx}u8N zJiM{W0MU=U@EcK@Fe^WJ686_%q~#Q}jIHBRX;-+=LI^_Pv8bgLLd#GEn;4tXY7aVQmCM`f23`=79 zHxEYw2$OG1zi^oz*@XS1)p<=ojN!ISQ?ybbq=@||fl!d{KRU5!bRbid@(DezzI?@C z($uvUole*c#J&H=qp<;wsNWUS%d5@UgoUC($mh|pYaw(DynQmO-P1M8mJQBkPaVq3R_BQukH5d{ss6kf?p#695#i`*c6SZhK<5l1ma?g4en#O zp!wbW5YbVrSZ4A?snjIuLM+cIjUImpN<*IRlbcS=JMNJpgr z<+IsA+eU)7Xc!K@0FQ62(HpU;fw&GfEq?t2&RYr5ujH0Vk!k;|)rja0BqaX#k55T7 z0{r{;?*jlV?d*5zgyw|vn-!QJs@O!5|B4KK&FFM0V)g1hKBvydbq?_Qj^g9r-$7CGeh2x z3LY_kz(6Vh$oEC;G0@BZdJ0Iq0FncQ-HfWqF;(rcFw5g)5^sA4DD=ydpGEj7NVRFK zs@~#|X@K5x$WZKejGC0ZrAM?`_#3wU6-xGtE5OI#ZX>5 zJNTO3_@-id%JX>;*Jyt7X*Oh84535g^?r>Q5!A#@P`|_aFhBG)W_> zg8Zl!yw(2pZV-=hAb5|644S)h4^c20Io#L_@i-jrms&3)AUFQY(hJed931n#95*>s zbz}*>pzKJkURF)Bs#-?MULcXl!jaR_LIQ#>@UgZUqq%N%+?8cgqK9Qxk!tuVr_$vjqkARNOiFN%>i$sc$*ou+DtdY_;olMB;6Ux z4^}-2Y}O^Kp`o#lc~;5rmS33)plz#xb}S$~V}MDi3fdX@7qrl&0;7pL;>z0Cb{&t} zQ>PQucz;gd1ScdVYopp8ZfgA}kO93wtwvXFhVCFjJ=F2sFMCl8DCCnEfS@jX>+3H- z!^43RM@>5gh5q6vFaaxv&MqIO$I22r$j7v+k(4knofT$Vb^@CGlU0avL_X!0T03@H z%?9^R(XoEg;io>3fnbvdz!CdicLBJOEvQu*DBg&Oy&lMRg>p2pglSV*vZ8}t72-%>asE$xN0G{}J*000sB zIq2Vn^ZpD#UXa(u;XNU21w6tAz-qYV*`WAj4EIG17ij^{U6Q%*y^S_l&~8b<@{CC^ z1~w*J)W!xM_ou&1l4Zr0cixaN%1)wP<=u(9gQ^A@en zW%j_G_j#Uv|A2YjHtcmzxRt#EU6d80auz@^0Fo zbW6CL-@!ayJVIr4_$H^cm?b*0s+GMtNTQ4XO+D1pw=_n#{8KtXR2wNIq_rDAKC-Hw z<?F0*6Hel>!9^`Tj>Xx+!aBel zet2z-05NcH0Au6*eqq7p-*lJvPy9d2(`otby#+fxf_SuhU1<3ZoWs<1*jK z_eCd~=*$Y*fnRa*wvf*a*}k`*`1um~JU&ZVI3&)Lbti|ORwyukaP=6i`X>IE!S9DI zpTq=3ODp4h+a+pScb*8gaWEu)eqKhHuUwa0d_QKh2qr+r`OzJW5MSl=+WIj%|vGA*< z@nH*U=AhBAiH7w{8j#??$AH5cuRWGDQ6lM0Ng2c=Es6*>aLSM}bf{G(8euLw^{=BL zK+Xf+RoE>H)U>x#hv&FlFWv)x3~a^5#&XR)|9IW4bGXtZG?v*BVeqoruVWl5si=s0 zeIgR`hsSrabhpLDrxZB~w22bDl7*?5J?^;GN(vYrz`>|-8ly7`02e#~2J|xp(Afl( zTjw_%KxsfaN>cyxwEm@{@<$t(t; z@Mx=(wXPCue!{;@Uj}x6ByzKICrBHQw<-4{Seju(fxiXzy@Qw_av@;u@$vlgk^u81 z3JmAA65BCv6#v|lAk*%3cHVTxQy85r`mH}Oc0Mw|auCv9?p&R=4FTGBc z4dOdee>r8e#VM(p&r1Lz5Zmcau&J)~8Rb~8htd2wT6#Q}bi42<*c###LB!ObSAqR! zl7l82`jY0h(C8OKc`PZFO#WyD)>><< zoXk;vV4cYS#Dde&k-X6vK$t4PIS{z!p70I_7t2h=M0!_m0naHa*Ui)91EZez*#42y zJD$RazKgFwx+mb%a>id>1Ig5XlX`$|b>EIHUe9%9KmE8D{Wad1iu165oh#OH5E{xL z-OT3rFzR?`#l+s}TPVjVCf3hX00RCpE;ju87g8iu;HFK;!Jno>e70cUEz-29rEO5? z`na^Aui)>IcM;<KFPaO8-0qOLNS7nR6caP_gcq;P=C zAI@g>-EMd00s5DnwT>p1FrM!V)yU}RYaE=|&7Sa$mxUILs-g-%lnwi$Daq$( zoBkddNjqsj5q2M2dwE($IB8>SsdZSBG~^=$YFc!|qu{(m`mRh650+Z_Af#A-gANs( zODA|U6L$lmTlj1SnK|e8i%pkOpcN4p7uMEBq7!0;t+F5-aJe9NR!kF1l)Cl}yf2~F z2`8alAvI2@yp_X&f~z&C*0|q*)8WV$f=~&?Sop=}QH|__(YhEJ#d6jf*SMnr!MMX|&^gG8fP>9qz)EgrQR{q2Tv83ZlUYalGAJ;PT;}BlZqK zcpVs;NhP?FxiRfWA6AdpSK?p8amg67KeQRUa5?Vks>mH`4_25zzO9meJ<6D8D8*)#pbS$uS#5#yoRLW|>3V#9rjmgV zBtUc1QwB37k}3PNkmGdnEj9bcduw1~;rinnG+q5-wlI1AD|z5c|Ta;?kW!hx(OW%|;}l3FE%3-<@3 zhm3yH;(MuK-I%IYc(o}#MFq4Lo9im7uX+~}26~)KN~FJR2ugqXa+nHZK76mZ-_!3g z2^|%<$N9MaTjp^nUb7W`<1?Q}05kvZ$$3RsA8y!pERf>mR8*|;fxDkJgJ-GUfy-B0 zera$J&`l8yx_SM1R$k4NdS_wj8Gp);06OpJ?CM8sk<0Zok5O&Dd_?!3R6IoC_Se6x zNT*=4l-}i?jc>=LHuDgWp&EuIwJ}odjk8YLA5%4Q6NQ#@EOoO;@Ddbw_m}U$I((ZG z-1+{1S++k<##r&j77*RryPa2y@N*}7;EwNU6)`Ss!ep?|wXy4<=2z@Wu13?Se<-{z zB@J#CI=cU2OxC?OSJQiRd+_{V^eIgh}-@I4QN<+fb)<-TCO>dSjl`%jUiD<=nFzH#c;^i+X zY=pk5pM~?XOEpTy4wV$HMh;Z`9 z{_p$_F#^H_Bpm|i1@B&eAe|y2`=}+R)`t}Hv}K*4qdgS@9t!!Dx^gIUs8kYYYcJee z@f^L8eHgp*P?+aoBt>It##q=8dbyd8@ceBOPQ$amdohn940SJ1A4d># zM+9A{5TR{Aev&7&I(LD$j21UjN&L>}qS{qeN$F<^$ zqU*r?y<&Dccsly{0Xty5Ik2b*QG<+OpwJvjX25rELk;FADrw$z*dY$MuwD!5TNqe$ zs#F4h+V=bJw-oMlAFop4*$z{56AwAD1LCezIU%An^zyX zW5Kfs$M~Be75iD%t8)gFi!IbXx`8w;aQmST{4W~o`i7LK)cTBqLaNH~@AtA zj#j*lMuaj<+|UP4M{XSy5(4{J?}WWnYa6+@hd+|p06YC%S#*-pSy);8cD%|#TNp-j!ld+?%NVAhQV(%!*zq)Ae^4DM3h7KUA zA>UKE9!goS?Rb(0@!WTXResOU$EJInSIDo38b3DX%zLI!405pbz^N=f>F>CSEmGEd zePji(nnP`B-*MFl zvO+}Ir(Rb%G$A!MH-bG2_=^(OwVVp7Ns;#y$$`~pbV`{hp!}p(rmGebDkOGh)@NdR z_8XcBfsd-Pz@Upo%tCqD=d?DAnh1;6bKu)L$`#8Cmee&GZG zLRb>Ae|$;tg}aHu3muee{ERwr>nBuf1<+dZzL;9hLw6jLgb&qE4WE5?+?CsW)@^WL zj)Uz8OVY5s#OFpue<&EvnlZI7TcA)R;J|or>Wy~9DPDzvIY2NQ0+-s>k27M6SGo7Q zFf9_%&n;PvNGtB+r%`}#mN4(%ak(S=UqmZ-t2n3@{vwYdSc2+1Dp=q827dqe+Dr-b z84!;-SNf;3a{&S%lyyK3(==#YrQ9l+*D{e?eJ;n3QoVhB zn?1>+m_$TCA__W{@w2bZY6;)rVLpdz=(@8SbB~K_PvMwn zZ=r?PjBc&xN!dZ}%!Y^v7-TZhRso^*)9!o8D-{L(j>uLh&U+?|~%=ndc1MR9swLSL`fk%b{K+1o3L2;3I! z^*Xb|P|sGi(Oa0IA71$`KPkKUp3XcE6Gn!2sn|fVjYRkfPO*FRB2s&4eY6!>>pe6W z+o5*J*R8I*(P-e6hjLui*t5LVJN7CPK#eOMz*-Gbe8X5jJhq1rnCO!#YT9Ap3o}E6n~+fC{pv&EH->Crc?QA zT*Pm(#S=qPy1k#w;JLRd7iQC_GIUie0%>K{n5ScY%_fHY~J{# zlP{a&}akEgAM{ELLN+e4^P%e zF8csHyt`V*Wn}+ns7Ch-ZfV~OE+!`CDwEB(joag_&)+Z)ot9cjzP7)_s9Jezisa35*6-nrNs6tUs6j5q-%s47x z9X&|l**79Gwr{JC@pLD}ILE6RyfqO|B0^n3e6(6B5aPJIwno<3;=znKK9NVBlLQv>{rQv=b7(LD@OA<2XXj68a-a^Ph0oh&yr=) zmuN-}R@;Vwr#NY4R=Ri6H_g~es@%nzTwD}d>4>~}W zFIv^=r4C`Tvg)8_7@!v_T#UpvR}wI^!XUN9EA`d%*v+?ot|jjE>4j?F!H4R#a_ zW76Kja~`VY(W5m+?TaF>&xgsa>|W-(rQE$=6KoF8<^u39m1Kq}c+x+g9@3JE#Pfhv z;O59gt^|BkseGM?xJk*Ab@$8fcg+qsgq%ggN#O6qQSIXxu-Sl&*a!r#-s2)NDnKCB z=?fW)lND>fZK%y$UGIHZFqrbkGiHZekRizB!$`Q;EMfO>ADd_X_SVEgZ5HfQIJkRD zjN-OTtp_`na1Oha*XtJl@O)b=_}=|TtNLYEkBn}IDTj1CVOXoOve)w?-1A}`UZ(I9 ztV)(}&rni_*~)^mT9paZnZp!W;doDN@h0|9E3vX-7Y`khS?x>vj;f-BAD&&JEI8N=x zji`YK~Q&DZxVFH_W+@z~}=k~D%eQ)lH!?4kd!0k5+uEa#qp3R4Y zTcqX>$8_~1F2|p4t-IZ*A!2DY_58KlQYMh1n3S|%T0KHrpKb|Q13m=;~j=)y6^$RXNJJ68v+ zpAGIbJzz-mvFYB5n6BXB;-;OUbZ7%wW+kw%HmM$4rclQ~NyFP!=m6fl09Q^pZdk4U z_a!GFLH#?sG<5@!cP|(N&e=Q#6s}A(OcOxF1l&73L}zdV$>auj6Y zR+IS5%=e^Ua<8jKe+9Z5vJc$^LDK-@qB9nS$uNLw*(E)&R>@vEjQ(riwyA(m!fv@Q z^6h*z*ru%Am+S04`GKTxE69zeYO5-j3sfz@`s)%9D%CWeIs}X&n=OD!8lg5~;=he= zRRad5shxP5m2_YSVSd#8mbl>?l2>w31kxc zNU|Yd$pH!*N(uVEsvdbbqrEws4)7VZY$T?ITVr5r^swiA&nySg9s3D^_8sgGU*M%l zfic=)$0+-!eR;_Ybm#h3*xm`Sp8uV>2$v*p8*vP&o;F8S*FO;$)m2C9DwT| z$nZM#IYZFyl?QZKJMmuyMw2Yy3njm`%8rjge7o0FG{5VLF_M1eiPpm&9%Y`cB9yC6 zHi_0}{Yn8W%N+ojq;bP4h$3GESYcmTpkkbS={IY7G!qJv3}0%>EQMWXRpTL4Kq zD+$lgk{&1ACG$j`K2<#;9)B}6NsSxmTWPCvX z_7@N#ZCKqNNSnr~E7gKbOiU(@j%cCcxrsi}ws>PRb{O3Sn z-R!EO+|cEWAM>*Yj^tqrj_5MhWqob6`-dqj%Wv6PQGZe%ykpO_7g`!OV2Tv-79)8k+dE@CDBieplPC_f%e=hM$& ztgtaR!5%#~CqleL#Bh+qgM}X)!uAH(V?R)dvH#mVivB{T)ERb?-m|uC{RM{85_q5Q zf-S^E|4h0bfW7K=5|rS_4Km+B-C^rh5E}zj_S7sJSe_)W2;jfjf1zg?v1pRa1o%f1dI z+8jMzT7$U@>`i1=BoU*h)^lTA?AAwuoOEe+ba+*rXqoITcWyKP9oBHYdQlRpx(q}{ zCtYQ?_BG%gF3_D53-Sbpc!%+yGVgD|tIgo=K6T*5v%ie6m@{Q^X>{7aNzXZkFTq6- zIzBOFK!2wrFIDCIyO+inAsJgs)nBm~shp&-PY`8=D%FD?*FS(g4&@>?KbbdKY%2FA zB%{+A#lQdAgxWAYwtJ4i(Xt7PLzo+?-h(?0NgJW_-?k?S5Pfg0^V9It0B(`Lni%(A zAO0ajfo4cLWmP=ZB?aQCs`~mc@!Y_B5h84C>|9NTO`{+9T$Yq<_lHh`UiYdrvsI|b zso|oL-F@uyE#=;*$$9yK35Y-GKuW91M@v62_>25|N`mEQ4jNEP?+dU(ukShh5NoHfn;j?MP}ID*lCsKd^_Gaq(duDY?KdnKdkG)G`u z=Nz}?J)*){lHu5B@A!cD*$9$UQE=5NViQ5> zc;8d8*i-%cCzW8tE2cx@&CO%jlj9oI{Uxve>*&l-jp4d(Q-MjSEX1$)IF-E^4f%V_ zxUB!R?)OL_TIH%n+Hv_i|H-3)nVlv@x9IEmr;Yru@xA=t*dX<5XQ9@gyc!=IH^R3A z@=$sxKWRW(G{ggm_0v@X33j}OUI79P;103JKQa`$;IyOf>qO7+Q!F0d>LL%a9}OHO&8mIz>Uw&^ zujQP(qJq?`ZwOe~Pq7q7DVwc7u&f?f#58p1K}uv3OZM$LxJv0F{hJb#syR`&idiBC zwj?MUVM}A_|0$(Ye+CcN08hCd!T};esK)uxE^_?Jq* z(sbkP&lmvqcuZFdEQ(+h1{0bI)*1hf6;l(SE9Cp^pZHTAZI(dl`HZJQ^D&UeXTZ?we zIzgAh&OYk@nT6s)V@Ptpl;eApW;0j9A?&1u9qLHklCRUk4nBgurQVh3Xi{LSGF5xi zaXoMdg$?NTQGXm;iK9>=$!#MEINj3P+t~@RZ;=77Uy{Emm@%RIJD=*n{d{2Bi2n*ut^ zfM5P>5BNs6SZ+MREYCX-wD_m@xt82=K)j*#zi4l^^1=rQBv_Dtz5yw9K6{gyc3)eR zU$9DWF(M4Rr^k=d_GS-Ws<-PnJ2q6du{RAX?L9mRo> z;mlZBrShHwx}Zs__eU^Y|1{s<%rH{VmNNEL@$f-a8h3~;FdL7MwUdZP(9O_>be-ta zGsKF(4tP{_I~$DuTKeiW%4iO38BPxG=4x2d3i7>$`u`Yv%c!`Pplvj`OM*MWT@oyK zkdWXm!QCB#y9Q5icXubaySuvw8{D~jl5@`Y-nG7a*ZYrQruXiyuC9LSsp{(E-qeq+ zW*!x0-{5kNocmHex>$8|S(clIyX#&no&6Ih{4cgw9HcXLnA(sppZO_S_iQk_B{u7z z%QCZlxHtAr?v-3p5`MU9=$)qc+kYa8YU%Mwp#t?5U;l9h8GuWd0a0I)0$u{Z_8)8x zUx=w5-IPl&>H!xL3ywku&fUQ~BAut~q|lz5B5rF4VrLdqIC|PulT=dEB2b!fib=>& z+ZxBrc1mtL^7K@on6VG0toll0UjTzbRUh z$TYcsRsG%EjHYO%{7lo4rpV)itg`S#pAS8&We785jj!ZYjS)5Gj3-u13Y6qb9noc8G$4o-d?#8zL90g>J zLpL6nV@7<%y~vap^?EZ831bJQ*@C>?Q~nG*3~;CmDkYcaU#>S-qaS+ZnSSSZe?e+! zit8>}ER}K%1ANc0kKjSO!fYjXSg`1Tet8a){F@6PeR)&)1;exM#gm81lLAJs$Us2S z`Wy;?BN@+6NB&s{D%QOz>5;uJ4=TJbb{l1s1uC*PnI67@&vb zS%r_P=R$en?vrZ?Qg~>s-!dbe^-)raJ0JqWe&>XElgY9kVLKolW@Z?fwKRJDq*D*BX^Rtxko@Et^{T6Fd_HlN0*Um z*M6LDKC}m2U;2xwPdr>GH539HGNu%tQG2Z?2}9~MRPKd%eIJST3|#iC0FHIKwuc4b z;M$9tJ?dTwkp$aEqqD-=d4fy)YvSXHYExS1zcI@neWi@bR`}oPt`SGn^6O(JS)mxu z?>B#c>r5;cuOVo`j^>X2IZA!Z_u7k3GSGF#;!sp#0ZH^?4&PsDh!W!<+B+MGNAEID zwSc)%ys0H!U>B361n`%-?yH^t!tEH~lkk9X{u&7++UD+7(}IitS}t&ZyIO|(#JhyA z#iC3%ox6bZQjdVki#fx;rO;sd_z;==+4kpQcP_-VD7(_KA^34xT>l;{~=56H+KKcBk42WTlYB_a%F1~P8oHI7H)smRHIGjm^aFI z8nSi4jA^S#JwvJ{OlehO@UzHAkytp7*hrjl(R;b)}X&p0L z!zB31Ads%Jy!Z&7{S^eU0TXY?io);@Tfqd_q0{Y!BNi53WP9n;;a!DCZool9^Eo~A z@cqhUb-y3t0r+l-@PPP~)*R9nc7%mmIxUa*8cVR4Z(j>lcwUv6F!A2IE}YUhn;;uK zUVTP>6*_(5Ls{+C#kZp|4(v^xgX88eqg^?7)aZodFrn80^jp74^0KN`2Cv;qv5Fdb z6xi_hIKz86C9Ftcy}>d6)H7Bs8MWx}epC&=9{ReCvz=*)xRUc&p~&*SY!!7h zE>-b01M z4*@iu9)8R5^WQN08&!~e`7kX`G)0o|9kX~{l?K*1T=|RfrU>f$`8BD5D{=#-qlr5* z95CBpV~twfj{gTT3cdgmys}PfAvBb!4S2@~7!;e~rqm%0`otoJf;aTIknX#l>~7dj}0Fk^UWX_AWHi=r&0Q#0?uY z3g>ZwJMHmxp1X76WTd5V$xYp|$RC=l0MbA&0iQ~xiK*-sGFIJd1G`2|1AGZuKz0k#aC<-6=Oy3LV7 zI;0#|vnK-NDYR~1tE_GDOM~MQX$rv*8q78sFleUt9o&Bh-3A`?@6?u6BW>>Q7dPcb zr*A!z0nV>jaO7t!Yu;C=mg|90;HO`Jgr+s<1*8J&w6$o86m2s<)a>}pCTZezI=Kaz zR5h%A+3AwJWItey0>2IiR`0J?WGAh*?rsd840#|UKx7th)?dl0s&4iLre~EXc)9}W z=L#^SMaDMYZag77D`7ilRN}51KTvHv6|E~^I#&Y^X(jptVE*uCJKU##-Pv>v{P+>bf#bR3 z{P{+KS(jae=qMTzvp>l@wwBR|W8eD?>ZqEV_ZrZ~0W2cwFbjWxIduZu?A>Qrn@4az zhLwO#j?nly|M$zr?eT>jLpVF|I%{+j#WE^bl@ciupi_}xfd-G10aBO(lb4P5z}>E3 zjNHBiW}}avfr%lr1*)s?vzz$&E%Uh3*=#0ln& z0UcmJzT4UVGhORaz|(iGt!`J_d`99U21*%bfy^U=j~V8*y(ZdKLfEYX<$zcl0UoIc zNwf}NbP`$sDOP*Iz=JuGc1b`;gO;0pa7TSB6>fI)p;y4K)zE3Sb|dh#N~_MKJOhBa z4*;5I(o~@U4UT{YNl)~GufSH>hz^j8G{y@H_nYiUOF!{MhWsj3BmiEDLIea*?s7a6 z_7I&Lfe<{y0l9t$D9V(5kQ%rlEzs*bI^YjrK;Z1b*r{e~)Kla?IA1BndJnC=Y7j~rMSy9Sf!q8`P5~narvw&gXoZ%`JO|*s9{aDgEUETe2J3NFIL0$MfDWVwL{**DeF_#9 zKn6O2Wd`&f5PaULpbo%1r>xRW9jXG1#Th^3+ROuVt;X`|o*Xy<%>bbFO|Ua>*};;s z##q00X(jo0^#I;Lkc+n63`zc}R*W!h2|$RC{}60>H^W*|6&dkW|2=?Fjli>{1%B~3 zz%R=Ykyia9b0M(I6KWv(>fWATNqmUu1RG2ugl)&c$aDg)vh3M;WN;7virGg4AnB7N zDlFpu^xOd0h^EIe91a(t7_Qdz_utJ605U>?6!uum@XUPkYy2HJrUMO8285da(0Kos zP?PJVvKCtV#F9@Sliw3S=>8%d&(UB+F4~VpVyylGj219WfOdOBas#g}BLB<*2m|=^ ziR#a*IR;;}dEKx3#|-LdXX!U2;HH z+`a~YJb_u$F#tr0@3@pR>jE7isX+td)E{F;FfUqx8oFb9{ z!B>I>?^pE!+<#1#H^9RJQ)tqt|Dww$_%jW;C$4Iof3k5#<$$MggH5QuEQi?NF$1P+ zItrubLIkC7td%x{1R{;Th{X6>4;*+Hv0wdQ2AHTm;BQCd!QH=F{Ta-Z+GRDKY7POd zK0pAYbVWxW#afwftS5HW!@*<`0J^cuxkt$QXXXG;5+YXWZyfJ6II1;Gk&1@abu`6; zGQ;-(*#Ao!mb_K!f`iSxKH>!|m|P`{)p!fcOICOP+LE$ zzZU+2{BQF!-GIgYV>yLLzAAcvVFQaN!8ih#t9~%)`3rd%0Diz|1@pktWoKPWUGW1a zR~ETlO90!oT!z8Mn}n^EPyfs2yfV|W=ST5Cmg@SiKcS9YaIBJdH!&MfOgn&AHDQ9P zcKI_QQH4NXge8ZsRG3-ry3+&qlRN-9z`jXXuE3z<#$k~?J&OB(?LL5^h0#E)QTO#mD5Fme;+$P?@jfOL>4*7w)Lw3EKE z{?D$nuN1_{QbHn{BW)3szC-ZF((%t7B3KGuLrCm=hZ%d&UBU22n*YpZO6HwGEaJ+G zX6dQb0tt{d3gr_{aut*-^wv*Y6%s~Lxcx|IA|HoIZzvafn^uYNi2!GSB@_XzOn>Ib zT)}Ju2Y$Tk1qHPjf5$4hQzbPitc)%K8XAuKYU3L-%(}RhWLwXrkI3A4o%L%qK-z8N z6B65pbK=U+iz=Jv-vtR#lsig|T-;9%QbeZozL1J&3! z%A7;IJiWXtfPr_4KIsKmfbY+*QY8CK3L-zJIUg{wc;S1z1V`gTTd9O*?G zts0J(mC>gd;O_74^86rZ?H#8AGJ+E*XaAm2_#2g)s;_tEIj5u|Ud#J$^dtlx5q2&Y zLm6-401Sc70%SxI{x*VM&+nt7VK~=YNZ|(f36Ad27I$nZ2O` zWjdYx{v~{W688iksdwo641ixpt~VrJ^if?a}AmmH`$fIE&5!4gn>C`%%LYoLo10#ufe%QXS7S? zSa$lCf$ig+W-Ky2hj3)7NRZ{k=6W?wNZ!rQ!#EWh{0MKUz}yl^MhiB^wVq0;^?bVQ2o2iCrH74As@sw~|)8U|~+E%N524 zU{M*6jyD6qA-J4+~i=}k3na#%hhFtcFp!Ao!6Ac}VJ%rMr z?%pfiTD?Q+Ll7TyAY^QDV|GUA<--@|Q{AC8v~@R52<*B#6QDS1C|(| zi(O;qBMn6j1boMHwoic8?2q3UnA;Lz#PRyB4HSYrSdb3zemOGPDtWCR4m@Sga zQAjVE%ecqMzEwB+J9xB|KBL9BHO6x?5;Q_DI_G)peQYkYej^^+A!8=_9p}b+Ba%p$ z>zeFKN@$%F-;Q~}YqLA0)GM5gfZ;;+5guQ$tJGM;3Z zWoxV`OOBP_rAEH-Oh(hcrNx3pv+_xc?K-Z&nCnLely2UbueybNc0chxrFQOm zZ#Z*x95_Jsx8tXnUxeM*Er`PD9Ut zZsEblFw4U#2$=k5E5n2)WJ^*U@Vp8T^`|gpmNlH<^&!u7IxYhXPE+ugn|Ux}l|!Dd zJ7KefoHG?%`Z!w=zU#)b*cjoSs4irvIl^)EiENc;IAfM8!qUUJeRa@{Y{h9P|Z zv_a-FQ3P$XAx}}(t(LLo9k{Q}i1x0W_GuOb}J)3gQw zeQ2GwT$s1b>cU|~)Px_SJi`)$vf6s*Gu-8QOT>R=WRc;&XoQN@3}Q$3a)=~n$+tfo zo~t=L+)?VK9*t*Z5xq$l+Z42UGdO+L&g?N1++ngD{>tI&wGhTK-PWnzJzD+7>DSG0 zdOmjkErM*Ri7T4qTDTg?&U%LVS+r>(Y#X-nBItpSXYgb4M@oanssg9H%Djph z-*Vk)PNV#*amZdLX9By-Ieoz1Neno67d)^My;?ZiWSGdPi{pCg*7u6N26Gp*aOab<-o;&v^h zBy}y)lr`yZ*~8md);JJ>;IKd+;ajjXj%WY?Va2u6o{TLoGP3i4)+R$Q01qHTpYJew z$A)tc{Ik(S0mm5jtXPajwEU59n6p1Q%7hVJpbW;*K53l`tYWw~dQ(`8KLw|AD9Ctxedm0n=7_A|ms07P$ypS#^m3{{I{%w%U!Gyg z5+qc5C|mP68UOZZhSJ@>_v7ypW!kW4&vNu{k-v%&M3ug8aMe6el`X_}jw??#C=E6x zaGY~U$4B)Z$Mncv=Jz39?yHdqn@bq~LWIyRKhO;>BZKi%rrp?myVN<)R>&O^qOSnH zbmx*k%D=-e=hrJe+wD08TqjnvxRIjJ9IuG=WCi5}{#M&TwUPsEKFWwkSM;q>o~^mu z)qQ;@ZIwWCyO+8&X42Io zm4DM?ioiCb4Q1u}5z)}D>c4phGO#NPrL^%BJKxag;6qlSiawwbGQnmYMxuw6Y1Q8H zZND#zQJ_85KLPF=&{h_bV{Ml}28vC+o%gu=AibhOCJn>2?bu%LVV5N8y`KImnkzBcG-Uk2jh>PdU|9r;*@!}tDccAY^KRE_sF|~=RGH`rO89AU^gAVS$3jzvL5XQPjX0z z@{&ml!%-kyr0Gw`itSXU+4bl+X3IbEMT1t2@$si~p+ay>w83q|%%!*W+Ryo>dlo8f zclClm3(NGeBdTkF_dP_vXw0t(&|1V#6RXzbuC_G^%DPyj`tGxa%42G18q=`J%HN}c z2$C0;qfCR=>b6+h<02>%$wJ&5IldOBl&$zYXnC%NB>JA?WX%WH-mQeX&hRs#dXh%r;$e1D2g0dRF(iUlb zpoX?i^k`0&P(KV9YZ8)s`^p0=86HVpY+GuDo|)gxa*Xxzo)h&6wnm7#eh3V{1CkVb zx8v|$Xd?n@`OX*BJ`$}yRW(Qt#$APB85!rANCOX{!5$4y!Hpp?H^S;%!?4<{X}VsB z!84a22*LKQx#A(#?^EoEW{+osC{!54OE{EO^qAfM-N}SIm5prn>jQbYra@zDCU^$Q zBBYv1TZUs_#tmj9F83E8h0XJ|$a1yroaqhCn^?GG-(eQ#Y4%z(D^|#>WelklE}g%3 zbIK__W&OIBk@pn0{W^TCiM_YLb+Sk7@Vy9;x|jD4X_X0G314LvW}?svrb-rNF9m#< zNy`D1cKlJ7V>aWEyfVR=6P2%ce4Aky%FGTuCz88zJeZcciM38j`yX9V6Ygr?&puv4 zrhZ}*ebD3V!OF4HR`lL#C74&=K0Xa=enyUQSlBZ=R=g6!CT`72YLiU zUX31E_6u35#u>NzT!-pr5AlM0qE*DD<~BSG-wYw^MYA;S(ULMutW~vxl9~AZ@y1uz zryhZMeE9kaGKY-22W!7Cfq-c30j047g+KKM`N+j&k)$IHzUwvx_hX@!DBVnv)`s&i zrQ6b8fW2ZZv#-3h4;lk$?bhRAk@F8ZlOFkb4lYNgoD0qDnz|W!Tgx#7K${@^;8cQ+ z%aBx`JMr2iL7xI*l4qtOwLS2rJh}82oS7A!q){}ZwN~42)!uUXJ>EJ7#_xV|)9uN% zSv?wKy_*=NCFJSStTYX|mnXY&i-AMhn-*({sWu6y79!C^61LFgjG@%s}i)232 z<-n}n}f`#xKy=B5&`H+|~msiMB@z7tioqs;)u}V0&|$@aEKrMBj@}6xlF*BlP_K0QwUA&2>uoqCOyN z(ySXxH*S9-6FTYHOI0x~rCm(8=vjrsa+?LK|c5A(Lolz0kmN6kegw@$dyZql&CBU1>J zM7+t0)G21hjO|T?EomKmKf3FfR&ZP0^J8NG|#7?hgu| z)^FoN6Ap2L3Sx%1k#K1JKL{6P|E$iv-BXWG>*?fiVX+n$X6t8Okv*;7VF^r^H5EGI zd`f6TZ4Jrw;_W@@8`!)n=*+iyjU#!a4aE@rVW!V{4 z(+m^a7s4a>-rw!iqTN`avGQqlRY~*Ogw7H;+f+DA(Faa(_J&*lv@eOTJjKK9DK&K7 zV?@9>{LB>SdI8L$@_C1fVKKoKt}5@pkUf^{T+2n?U@W^2_=Bz zCE#e9yRRzoAAq*~6U=SNij`=_dU7Rq)7C2cX zZ+Pu&~R5xLtQ z)K+sj?)jpA)dNzjy(0JoS?@E#(tAOYSUGV{n0qbO)=?2RyP0J^aZIgLU zASWN}|7{*c{sA$64!);fu$&H>LN7OEjWI3Y0Ho`C2``;q7nfwB2fx{2po$8XkoCi#;BPexeV>Iz3XuNZANhZcvbP9e>Jxz$u?zkc zgnx*P@o3<2d>=zsB)PrdIf+*$jN|`V@Bw;;thq+^|1S9dj_Uw@3(R_#j1CA7`~+8U zkcZl>9d50i6*0zXAA6TII4#{TBXTxBn-G_#cq|Cx%Gz50D0?z;=`XtnGjNXCsVG zyFYM4PzH>{p+|rdIpaXj-vN_Dw>6+^`iUA~_xJO{V1S^E9WcpseQLT=f8rcb;2eMZ zHLhAXtMs{ij)yF7UYG_Ct+b2IqA>7jnE$`mFn;R_jk_!yX{8~RfzYa<7<188>ILH4 zZ1HAd`TuMRFCxO<0mPY@TAKttJoGd=bO zi#5}g{9i#C;e_zF*t}L}q9m0m+}vMl2$nWx{7aGh>4%@+E>GbN{NQBS3_^#FX9|$& zqHjOobCrm2_iYh7**x39M7e*KHp&e=^szWb zKq!F5rT{DE(Ei)5=7(@^H!R=%pgyJ2AkrH{>}me??<1YOco&(ks6*{*|21y`i~|38nRalEVt2;%yBke&6*9 zhn^QzMre;XoOPHwa@2^)gCtK%VZD>Suof2kY`cG}sVCh3+99x7j;bATWiTj75283D+dV?<^K;H{=$XWwVn7r&&MCu$ zndINAKW5pzr{2^}aosWYeB`R78l;~L$`-%1|q%aJ$i=`EJKQkmt1H{$Gn%9!jz@cgYzl{f1hA`RweR~Iz(XU|t_O$Zeg zwW8IoC;N*zTqz7WOw(H=%lVkZCrzQLkqn|p`PF@_UD`fcPy|_)plR1G={w!|Rg;>h z=GU%DNF&_{!LII5zv}`w=0hn|_iFp7!|5|Z>qF|ZyP-|f}l@dNsSTPe6C&VO5E;YdylA(8Lx4n0hRiPAIpB_0%1#KIv3>K<_nVxb~M z`-^`H-=^36RQNuCfuAk)`s#G8V|v5MrtIs7+iOPhlDTex_#L-aA!M+$m?&w4+9dYh zipypENz#*TLBMSLz#Db_D>)ys;$U0i$R$H$r;4dSsr_|oYe~YJd($?|8&=~Z$D>+% zfK@3F?xy^zWXT5E1Be(wu*LK3iv&p@=zY)RnP<8&es|V)&wYd*~lw)%})lv0s5eSBp7SW|N zwL&3w&+|uB`3DGQj&j>ooKLn;SoZ}gfOSzjJ+0Da=*VDFjw%pfEuMMKLCXTSM_ z-st2)aywXt$z7eB_)f;rwt1Gvd!xyb;s9oKmy9X-4>E(m`y;^ZTmA;05uC{X<4&1h z0XafhzW+mjK(!4VD7h;!_)jY3UmuAl50CeiztW@SGVa4^hHQ+T7MWNDj)~LY<2Yb5 zDz}OxOPh{eO2YpNX1eHHZIEXx&Me@zKz5O!!FRi3NGfqHL=c_%c3Ai`cekLEFb~{sCxg~P-Y|bjZM)?vxrPU!=a;} zzOBP|*Wl8KN#~sP>33a&t2fSg0CQ$13dHZrDyo3g8ejv80w+UxNKdqm^QgL=MEz$( zUA@K$Nw8`EzbLfQxxW+|X{u3S_Z7iwcxS@^Tm7U=VFcP&!{Rha{85THF`%s6%cYa* zI(bDRrZgr>n553S>&tXExX8?*HQRm846J(<3^SEKJU)}`;-J<^UCoMSOO?FGfMPJ6 zJ%2smI8D4tjMR3eI=(IGIkTInp0+$a5S~b|e>Q34*bKjjZOl?ew0Yti)K!lZap&ZQ zrfdT4qc0!b9D@3$`aYj+bQrn&etTM}Xu%WV_Wzo>;2}L+nSWEcd8G9pXnO?M8+;t) zHAk}QO)z~Z3DAcHWy&F+pl>r*8dW~K3zP1z@Lr`113B2~PSJJW%!MW@fEcmnLssq$ ziYU3lD12>SmD<%tY}E|k)ymJ&a}8XJ$eoMBF8WB!{h~GHI4&Mtjc`e{}x#zUM=fCA`RXxKT#Gf=1cWlR1D#WZaUC}D{ z6Ue~gI+Dj;hziVoYoaAsh zq}}vpa-O?ixH(+QzSa1L{27tfM|OqEngwaK&5lEDjmIzuY~LF5^=Mm4Ql3Nimp$pRR&c>93T+Do^|!~)xb&Ae{? zhfP{~gWS7c2G)LVV?SB#{A~&qdu`bB1)$y2{%6J@Ac$T7$||PYUxO3+c zs!NM*s`^&kc2XTKb{B_Ld@tNk5wj|Bs?m{AlW-p}m zN^@gNiDK#)Bt#HOP;M~)LKS80nw;qrf+SDW>Alo@dLR4-c;G58m6M3 z%25#rvK@<~Fy_0?na#eL1x%hy^MNN|e7hRM_%}O>6@U{nHw=zT7xXa$onC8u;G_7Q z5J(ad7G_g(%Yh>xdD1y(Nq!(C%kgO|dTdfFBnMkb`+RF(fp!Phk=-s^456Uvy$$wzR?M?EVtz zE<9SbwUuRHB5DciY0}yhPf@Jw?1a2(USVwwg+t6MshalWna(`f;$>2OKZLZySS#GE zspn zu+A`}%F({8jC|16LjJ8ubUe6d&PPv#$MQRlvez@YkxcRHNBn?Ic0PHgsKMHF7!FAv zLck>)c}+s{cf-mC@??un3ke(^Wq`6h<4*NpPc_O%u(cTmu-w%D#;E`XsP%=7@`=Q4 z4`S8fss+Tk(v&+MCuEv=#Akp|B^Nk|{!s)oW@imT+9rdPE-UL1lQ7sj1k#r#gADSW zh(R!^n*vR7?zkrRB*n|#?vizMo@sKO>ABSTu225>s@vFybo(U=>oGo@4-4LrYqKkTRE+0?|8V212 z6E9S){z}Q4+QA1p#qX7<++IIonWJ#)3J z%^H~kSK$akK;N^OMIwYR(zatX3PO$o1;Y#Mw|~fi8zce^c&NR1|CT>L5&^y{?XYhB zh8p_v)b(Hc-j!K6r%$sg|I7CaB&Ycvc$L-Fsx1PSwaC8msc%FR^CLarN9PC1@6v%w z-tXYq!GNn=1FyG&{8R24Vh$+KJU#0&x9{M*KPOtpA>js;u0 z#&^YA2s9aH_a*BR6vjzRga%lkdD#!+WYNN*5h2%BINzrhOQWgj@qp4M7DshdcXIPh zKZFsvu4+V$39z!0v_d?eeJl38`jyl5I)moWhBmwFZ%Jb1x4?YU;nG*YGpiT9Vv~Lg z0Y}*`5l6^o>!1#T))2>>$)VQUs=JtX-Nt6xfpj!e624(_WNmOPfW(N691@e(c`C!S zXv+#ruIF5=h41ofA;^-BdZ)x?d4ku>!HBAU?ug5q^De6@l4&EjB8LP#RrnCJv@WAG{z3cxzRhp?tPa zIxuAHr|~?8Y@s5jvp?XA5LxHQ1QaT*CLr8#%7uq`zHZifZeWktU46t9)%1X4@dWFW zjS?W=g)L--ed5DM78rt@#s4|DRb0(R-jnNht?3moFN0Xd-6UzB9@tj zP;>BdBO;|+2Yx-F6E)Dxm+r2LMB9jN*c3_|9D$1DUq*=LhNkIM(WiD;bZ!=SqL|Go zX7SYHlr-7VwoUcY6`SsHZLr!SjLXLf0iv^R zeiBE!EHot%p!1%wQUI(K3LnZprY9Cy3T_($NlE_o&-VjbyQaW}0qud%d26hgj6$6j zCO`5%x3j}H_|p_gbA?q}Q?Hju!^wDQhn?blckTG9!Jp#IjJi!K79{>%eRhRzVZP28 zM~j=Lu)e-FynB4M)n=@}J&Ezld^#2X@9@NOhc550C$sF9;WIVA`sLg@`cB@Yu`5`LYTOzQ#>=G%Szyg z_8>FbRn44%N}ZEmsbO9rAaqW@Wk=6|v`T9V?BS`l6^0Y33+^fEBT)WqQ|e9^4Z1pd zy1gty4d>?UshXIG)t($s0W^CX!N~cqW>bRgz*uQVYu0s+%o2qT0pt<28Nq1HW)if9 zASOGZ`5rv+DTwpM;4hhcVp|(&2O#(oVR=v_jR8o z8=Erayu=x;Quw}Gdw%ImOTK%xJW-*GOH8ngdF6-Fx8!(e@L0LQHhVJG=@?A@FvF^+ zYVUx^>BYf)diXZXlNtiYv7P8?Y17XQSuDPGVUN{qR_!q*lOA(8;-w0z`ewK5Jq_|{ z+qk?o9xbt*wp6S-dS2TiF=LA&%~1R!0rlBo-yC}W1+a8_*3VD(DxX7m(r|GiN+p=K za-@U!{TlV;;R+!Y^IN=sy&u~mNkuJftna?$u|ETaRo_Y!cSZeZVJ-T#EphOzy22Ku z#qcXb`13{JtzHgA>r=faoY9K{TiGiH1ueg4*t4q{_ zBYf(8KboH_TQ3yRNWF2CC5(uO-pplOLD^U;Hr$*=-`3J}RIy5Ou_AgYiRY3twgBNk z2ji=b%#RH(CwcpG{j#hjQ$`#8>3wHCBzO&|GM7#DABYjd`pAc(Ar!mRs~5B6I-dL6 zY+x{)|$m%39Q9`aor;0z!CtLTYK7W1=o4tP| z2+iM2XvuW+W@|Ni6%|Fha59;XwTlwY5NCdoRq!z^M*kEGSA`}JN3+|RWJm9&o(D9X zmi6@Zp8clpw67`zzQk1QTK6cvNBxWQUC??oULg6yhx}{(Gsw#N<+E-K57s=q$np4V zwvTet?CBzS>|kI8Tv8(EcH(0_O4J#M;dXogX$e?8MOGglDV~iV_oc=2i1E|_fXOhC zyIj8G8g{wyx;-6#U1PfPhFQuD_DcVEEWHA3=9s%-#(^I9mCLZl1?2Va!MKMBwd4ur zt6yzd1*OXfosL zF}(Y^2>mqL>}I!h6N|1es-mZ^DhF_E1Y7ZBz%zy-Wo`(MLKHa}mLoJ!WLJ zR3(v;SW$7|-0VV{qUwID(%UW=tTg#rE902~p%>BRF0re2Buy(U;=Q;nwvp72EOGaK zA&5hpXhR}$?I>sw7T+sNn{CW~zvg`jLLWfc%qXNuvbP|)_hf?B(;oJ0p}+TUB0ui; zlvIliw5T_8w$IBHuddMu^|%~a_Pb@%f|FU3WpF9ytMPgam~+}D?PEqx=UcP$^=5edpzlvBNve-Ew2qoJz1++fLo9aaW6bEV*H*@1O5I*ApMHR2HXG})qJ-^|a3 z2$3Y>{{A#-)#!pJNq?Z9rX{rZ!DRd?6=Wu}q@AKvX8nx^Esw@*4|<&U&%6WZ3qXh% z&MgaG(HLjXYrp@`+~YJMcUoq$|BtzM=**#Y{ix^(uj??;895kRcpj3~8~S^C;q%aF zZ|wU$mWN_Y4;lG`en(i(dlR(Xl-HY?0%?Sp0jMbC_ll|1)f;NWgaS2;J4mkej%3kScHt#OKnDktM1PXo=OsA zCtW8mhxD?3Pb*PzxuQqMQfD(2gpwX0vTtT9ph^1{R<^o^byF$1=>~kIWVfRBx{s>N zR3X^PN|2V^B3l~~nI>2Sff@3y#e?Pr%ggAR<8~jTQzM5y$hW$!EfJqy7F*Ti*YuAL zihMJp<9Kw(zlby=J&kT|d+v-n?dfpc;y`Z)IWAouzunHhy%IG9`6hp!g3&!87#Z(W z*i5kB=7KH%?B}IQ(dwaT)uq#4X7!-`Z!UoG7a@mVt$3;KETVGMGAvzxaXgI=c)41I z^OnL!T51Kl*P49qh69jv^=tGek@)31mgZ$l=k(y}4kKQsFM<-u#NGGBv|=Egf_4!!SMs)t#aS<1`(-OV?HvPWSrzs3z;Lca#3B<9H3pQ3Wi+1a<} zVH%HhHbJf2avFMUZA;<4Me-!Wi8ClILIDj%bRk~{Nz3~eqxqx{0-7t)de)aioF6eT zBPg?HoHwHla*Bn{uEdCt-1PDL>~)7wc`KADq-^#>uKBUbF&SMa3UZkJy%E+< zTQe<(WR^I-!jG(=j&BWZE+AzD$`$@{yNmX9h;Y!OH_a2J#NyGA>hqN;19#r6HlopE zl<36e2+!4%K=?ych;3CclNbN>z5q;Y@2->3#2u#S&_!2ZmWhjrEyLd>ash@rry9~L zHw2sI+Ew)gH8Q}hVldEIUBA~`BA|+N44D8oj1->cD`xGdT$-rhu{AFL+%MeFVq&@@ z)4QUsa(O3fer~PO^hco!JbMDmHye&m$7@79Vp~2-LK9V1`24O1LX|@eyeZz5V9I)R{EX6Dh;S z;YRNEgYN5lr3QJ5IHGjsHX6Fw*-d3TGSpPbPOrYH$|q-Rrfmp1PA~T}qd8xRW@KJN zxoH6g$k4Px6`P5lJnm4Bx-=|OeTy(|XQN+;9{nC!H>~7h31P3=9bmVDwq^4=oR7nuX2V@vrm)cRfVRd~ zBulz>=B@Ok@3oRAZ*GJ;|9SCahx{r#hE8gV@jO?}$`oLlIBt-&lCgsr?@ml)`ACed zAw{29un18sVF&eemUjimqaw@KXc{0isT99jOKcVC6rvSICZ3)by%uFA;tH-6yV%$z z^8G=MzYinb)e34KnsU|uoO)g>9+lGOtu~f6TaWF$zpF)9Q!N^!LboqR9sRPhXXA`SR$~PDqt1@=^gp`+2}e>@)5s zw4&md9v@rjPmu?q`8;R+pG;*4Fh%cj#Q)qvwVni~e0WZqelqDkudW>(!ybcy1%yvN z4~pPi1-DYgyLbwKm}sUkYr!zX+CHFgFrN+!KrlU!#l%uA8Gzl!uhGs$*Qi=$*FN{{Hn@8z zRb}3keDvl(ZM2NxMAaH)=TlY4QeGRLx$^Wk7u4EJGZBNW!S+%QkQV!e;E{L9xTveYQF zh?d?|dhWVviTj-^jOuU9;Zz)^=z5S?TO+qMK~P=Cxk_Ps;4VVH+NHx7y6%z1Q~gPU zh#PSO^@CBb@(>jGsWkzEaHx*H@9m8O)-wT;Cs$oH}-cY>d0?qg^iiOa0QJk%^Q$8V^sC*|UHU#n8opp5Nr#Ji&7Z z`{(i86Y+|Lgc_C?Z_e5!h$!$w(bdQHcTP+mKy;8lJtP*Jr0R(8cvOq*QMo;OPgBmc z%M?=^dPG4yhZ!b(8ocJG(H7^`?XPN-u`P0zi; z-xR29Bt-jbz2@DE=erxfMH*cQ?D)5P$`-$D3A~3D_|=ZF|6S>t;BcV_%G>Mvz3861 zyT>X{A(9|FFoT|R9Szqd@*Wuk`ehir^Q9Ur)l1-l#lF|(>34iC$Kbrdavkn9Tj^^st z3|T0kupbNGbpPUXRM9}8xzDzGTm0Jx#u;;KWu@S->f=mrB{Io6D;p-gc^#m5Re0q3 zmZ0Zd;C(zLv2t9i7Bx0;0-grWnBPM_&0MJ;MoY46JbQmOu83YYL1?=5_kMmN+hen{9kVi z#vA@T=DeuG5buIOEDkAhV5HFDsVfc+e!Gn4@Px=MTyR7gZWnY2MT8)5aLXY!+0!xN zf4+5<^`_!cG=O!Lk!IK2r6^Ft*n62SWDqsrh^uy9!ecn%nhN@EOqdVH#lep?2t5j; z#Ffm%TTb;&l!$sfm!Mr zElzf2v_m_@KCF;jgPHd=ur;{Y+rsI!6{dmN?9^Y8(A|S8 z!3hGClaP2e-e{tB?keQs>cBQ2bOG*X)xtnT6Y&;t=+ zIFS6wTtV?}CDS4RUsa|lGt#e61JWf5n9|c6t3VBjdav9FA9KC;#U<-#Q>A7b!O-cJqgX(4FPQ zC$Z4Xm;fj1#03*@U8f6ylQ%?gcT|~kIuXK7lHom)Jj{i7@KaAhG*eOSk@A$ArzAJ+ zqoCu4Ctt6j6zPxs*TxtKf-io^V{0~uKL6p_USe7sV9ktzvm2#fe;C$$z%Lie4uEhQ z`2uI0zr(WxlwCMZH7Hh%>a&EyF(GjQ$Ij(4wVU)jtG!;)A?{v@FFUEY{d#4KHk&#@ z60HN+Zez>~mtLrRJQ}D8X_TK%(I+XH{0Y_xdAQj3q?cD>YU*dg zE`lb$1%naoM*3(5_9E9^7pZ%`4B#ah+6`Y}w#<%~8!3IU+w($y;PPcS8)-w!OvH;5 zo8b~wt485+Zp4{R{X^&LZvmbg{b{u;gwU>v-`Q~u67pu0ySAX1A_mV0P}c-O*bkgY z<~?9v#P8k`n0lV>nTwDGnDlaw3KKYaA=+oBJvAy4GfBUX@GejSjJy!c0Z+am%XI_d zyRV2+(m^=m(`BhPRDjq9DO|i#CX7hAKXGO$Pf&s~*&e3(@UdG0MvA`X!lo|zPiF!1 zfG9t$*ly2EE1S6KmATr$-GJt|ZmWm)YO|dq0g76~2fOP0>gg-KB={rO_T6U?q<3Jj z8>$N{`ET%vA72oglo+FOq}xHI-y=-AUxm;YRq(Fe40=|*;JvxDMt#1k`*bVEfsD)= zPnpntyX{Z3A(=>{Sa&tSam6o@rb|YWo46>|I_XbF|KP7lc6O?kcu_*T>76*I6rQ&s zi3Pf>qWM-c?binWLU?25_OYR>H)Hy{IOM-5vs3&1KR9R~%wTGptwoizjef*5_ISEc zO?5;*PW)a}i8$X&KX$%usN})Qpu1<8SisoxSX%ZHTd+PAJx_OrgYbcHe_Hs5+KKZR zW%g=Qk*PsxPN{Vnz0tkL&xYnn$MPdQ;6UNkLjjmgB&(yzz>#!~!j6cC2(_YXAWoCf z)3&cl_j>VkKSny%Wj|Mt9DhuM27M<7iOs&X7zdah>Sgwe2aW}fIaaPFl2a!R5$CdY z>s+4+ajZtg&_xzjLT>D@@#B-Cw-w9d2&jUV1wi@X((UTXp6UmUM#qRT&Dw81aLA!| zdaA=aJ24N-Z>Kf9-fHIJGg)W&UiLd|aLhsDVMH59qC!u`{jtoP2&27gy05Z?FcVeb zN!)yPWSfCt=>wzMRg1e=xCKRh6Lq0_10GGD33uGr&RCDQv<&$aPyW&H7&UK8XJPqe z6JJgYqgmgg{gX`;IEbm1_GXLU9;5AIkmm{SpEerLtVlfRvHdYcAKuj{9Ed&T#w2lU zt$KjvA8#Qu?-JqA?sCx|G*UVy6U_1u{Q>c%yQ|Ul!Ih#q>tgc*!M~li`d;QXDBmiz zGNB8W&Y+c6ZLi0d3D^*5AtJ~}!d3@+o(?wLb_9gQWU6l_dcK?zD4;bieKO7YNRsw< zA$@Z?879v?(PQLBp=&|^NxhEvQvm0%%kx0}y(chvG&iC2ZaEvupB~cewzv@deq(33 zKb}~SD^*g`weKdjxAxrQFLIz;>wF@j=h!PBrZ|<^l)*TqEMvx=kJ^1x*zsN8$3i;i5dtr|d6OGn|7)Q#TW?hzeWp98XiD~`1tax{(9`{bDd+X8 zH`dwNajuq9C;{Gt_NbLzAA=T<%S=1kg=6Ox=cWtkzJPO!wnBx z$^m>%=n6{Dgf`L|v3$SKKAEm9=c??PUftq1vMp- zqBM-ZQ@T7ASOMF8ulPSndQvCcx9=}h#v5t4_Re`fhe(fL7IRj8 zW-kz#SeuOgRYR?LWsE&HfY!N4I@spt#3HVL{oyA3`oYqLB`l8D^fPuxFQWzgu4a-q zi@bkBHWqM&{5U>A{be_?Z{@1KqEmuod|*E~rt92c+AO=ezq4OjSvmrVhzmMZ^rR9b zmYhe?6u-!=jEJSGw^yhG=^TaN)!h`uX=lgX3(p)6viAE|SrXN_5~O(_jEM%=*6^pk z=1=cdu93Wt&7Iu*Rj&1ps7XW~cSOF%*0PHT7fe+C*G)#mCu9jo^U}V1?gD~5jjYOM zlhk*`ZVs~`+gFA=^c2Il55;LcsbrgnI7Y213s?)^SU-fYu05puK?VuPXy56Uu_-Po zrMs3R44$+#ZTnCRIAdlnDo+lx9t@5pvp zcSbb{oNN)@9>DnWWdrhK;@aW@AK+g0Ku)M*|Us!Y|*sYgmnb`UtjRmTGQ8gCGand&BxU{s#-rzDaAr zb&jt)s3))(vR-reNz&|WgjzR@%Ok0-+tqoVq@sqk$5AXmjtcHwK=UHuHFcu#hNX4 zs!o4bba?%RYOb7=fuzzuY?z1kAnFGp4J#bPTK)rjt!cou!I}cgD3K1-g_XRs?p{NK z549e0YoVwl?w`K}9~x?uqvFW0dbw7KbHqgdw7`M&a$dIMN#E0tq-JL=iEGBc36=9T zEq@#keH;{!lq~H!DXq4c@+ZDHEe`fCw#!m&qN@=3^Ls1yG&94=_>3^S7YU|2laq@laXTfpDScla}QJfg}PE5xZ z_DiiEIjb&Lbxa;3c0-~B9{u`UbJy14!Q@{owZqMyS#49)UtRzRd~a<$H-9~&5D5F-avFyu$}ul_Xj~bS);Z8c zsDn=U2KHt8OEgGH?=v7M!bvr(c6pYcu9#H4q0ll>d-j{F8@%V+y^r%0QmLs3-uA{; zcS{^!AKmJ+eC#|z-v61-e!Pu^hS6qxdT)qRQ>c&#S@81<-qj9~FPcBHj9v-qZFVUg z#$J6mG&nm({vw*Mpz&Bt>*?vbqS4~40>X3V<&D_=$l0vCH@Re-KQ7k}56{*MQ8wNj z8wo~s7FiiH{Ls|#N%Z$M`;s*v5j>gK^;ESPcjfy=s99F1imvO&{%W=m`WmdgSGFej z?7Hu`o7Q#valj4> zvLYz{-XUhEnCXuE+t|9(btDB4vfCkYvp}bizCI-VoKoj>cqIF-G>rVc(X$uU47jss zC#T#KOr{RpI})^^48M|mHUf}+#sPV z=+8+F0;CRLp+s;#%gDpdLQHUe+!r+(J3| zQGomnAY8LOB^ti#3-}5Tnn|}31TPkwv1?ynyD;f5yap-G0bT(iO~|Pj4(AXk0U!_* zSb}i6h>RCh90{DT!DrJ4Ls9X6O#%+JC{7dJPB%hv-ESAeOU7OhI2j-g&H3Ys>Xa^j zy%}>Ra8dxzeBvvLf+ut<@Pv-)5%%9Mu!2j&A@Vs{h#KGjCOi5T%=w^eACjc=y^Hr= z9S$yk>fVQg$7*0PBEG+J06v$%`DAu~QXqfZNCr9HMuE?wg2ThSZKJR+#_KT@h}X;r zVRZAmq;EYMa1^i|&BOMRG~xp};DjKRU(dh5TT}ooCS)zQ!!rhHL?|-|uSV9{I_hY7 z(pw83h*3X6y3jy`vhc#Jg{Mi!boTv69}_sq!@JM78I=OMvH`kcM9oGD@KShEiw6Eg z&7htuay}|W=}gZzJJOMP%b2P3ufvqTP{;>%at{idMuxxB0vS9|d@oKF^cVby&;i@R zNv>qzrd3n!Y-srL$eZja1Bpo4!f3M1#+XYcu6cwFya+sg|L$>O_~UQlBL8`u3jTN! zzW`2v+lkaG@wy>$nWtEcnPiC9X|FqfqSzBH;ZlRdkyRrw0X9wie+wX3!QJ9-fvI6G zvCFx@i$n00BS@jjlCQ|ryx~H62|Q;FtjOr$gBUm-62uQ&0v91Z>OVp-0U-wCe{dMC zd;0C7%qr}1qFYnBKcI6+%b0jcXM2hIYXFr3gtK3xz_|B|I1|Bp{sCl?tipfO@jy5< zv7zQQ7mpXlbL!}x_l^t`{pZKlvl9=P-&Bp{(p8R2Ti(NfHfSsFM!R**<|k81P5n4OJlTN_@XEuB(Kd$2iNzXAHlatggQ39`f15BXaVw9X8 z-j8?pKwE>g*c!Proxd+1((wrYChxFPW3+HXG@EVqtXh&5#3^w&uBxL0*un&m+Q{uy z9e6Sj6K<9=z0V8&iUG$wL^s_HNCOBsaBkPXEbws?d}R+pHFoQnUt`uYeIE%{C>;r) zYTcn^xa%bHUr|A9^oC`5X#bEUyNQKabc8rRra?5Dltro}{ zxDD@ygsTyF#z_X4(kI@}SYU#};VMM%l`HViS6LUKbI+$kJW48cJ74*Roe2t55T8!8 z^VJ+m?75#7s0f&(At_}-frlw(_-c{}o~(j+B zX6gSWYwgRZ#f>;Cd6WF3nKm_KoOMzh2Uvs_4(Lx`FR}!%(f_7g0(mkCfI{>T(>v5= zyd-EccIJ>i>22~#jzQq^unP-|kKAy-#*8ibS02!@V#`*ObRZ8Lf^v%%7f|^tk2dI- zskP>pXsL*VM$cZ|(E*WuI^J?!53GeQm1!2n`8~MmeKE-43L*f{>dKI;-M<^#fAw`~ zXyScB=Pz|0drkFq_+TWVW$|DRb=Z1J4rwBWm7n8Uh2h5k6m$9{ARF&TWpfAzqO;fu z16`v+-HJhDZ8S=1H@9WI^AYEiIvIiok7i^eo}I}|0FpY&X_bwyaBiOV+yeaQzY%lPNfUJLkm1tM_*=QVDrqrtxyoE@-~ zfvHGL9gQ~~<5xpdcHKZqIK$2W)q560fS~&jM?IYam8AHM<1t<(nU_bd%xfJGu+NZq zHp?febPe_b3+w~Siq50DOcwAN2e{pW`z)~~e>rzLz+I21w7UNMTuS@%&6xfW$BzI* zB4QkO-vz$$&5_T;lTfr^;*@MTk%Z`u3Hgz~j$@hqSwbxjK<8@t!5Ei(^y>xysf7^S zeTBwj{*AUoh`^t461X`;FTd{`E7hi0bP*TVd@u=FTVD+x$JBSa#9W%EUMm&0&>;Ih z@U4BPE;7z@KG|PQu3;s_HD2Rm$B)mu#G;c|S&zF48Li8BbNmGd?SIBp*7mPm&+1%5 ze14^$ee_HoByH})h0NH#y8T}I`hx(mA&Yis| z^HjCc(TlR=v&u3$V|U4JPFUjY8J;8e{+A1|YNuBkaXTaV%{%P_2k6E>i&>Bc@C72G zpg%F`k1s%F8u%71KG0i^?tw?o)qgf)kf(fxVk(fxr%CYQ-F`O@rBL4_#Yh3s>eX!l z_clgP__?sgM-C!|{=%;xx;oSH2T9kh*oW-Ix48YP3dJ?{ zBw>wSV()!1_DJR|0om9JqI34lTd43p6OWsXf0w;C&R1w$>Euft}5*qiagSJ~tm-73cA~fB5 zVN}PaubR4P&lVZO*Ce*yrKTzm88b^;`SH-SU+23Z%g0n2V^Y{+SFul|PHXDLtHElM zV_OZP0Tq?*pb(A`htY5C{h!sgQ^h3B^`d4UBXn_B^OI)79=?kcNH?1`aGxa0tygRT zcFhhPvJDf0izs{w0^w->5zZ7YobYMrH^u8}BqQ}^OD!@?w{|uNLWrhJT7iV2_{PKGBYQ5^5#-<6{9U?dK#O0e+GPX|o>spCvKH z4#=zmI#;=x{F-x?_P}s3@u9q(Y%NP@A;EVF;fVpI^0WrjL|jibzRT1YAdx`^n30g5r0z8*gXjmT1)LITwr}>$U?A*pzULLa4oY8F;nVyTi zyYqQBj$OaL&pb)~`^tmeAE#nM9=>K~`d_TrTN4?fi6q%y?TsebC0|Sp>EKiLe2bWG z)#BW8ZW*11NdYnS;GUvSx{eAsxVxn`)$7GLeDI}#O6yRukj#Fypsx~g|D=w1lm!WQ z%K!0d)ciFgHxEJ2YJVXSaZtFex+*ZMCv3JD`7l_)I>c|uZ9umK+|8uNmg>t*bL(H- zsH8a#u%9FyHruU8k@8)e1lT`?g{|h;b>Ld1C*UE(an#Eo;G&V?E;@)&K<=-L762aD z#h8d`Z-2k(?DC4f!IF8fcH{0Qu8FMQ9@pR zcY;!Jh@=jC_K2XcT<*!E^=>{ex(NHUTvkW3c9NScWs0$ zNm+j#&<6m)v(_j&BXTUpSj?2oxXWrkX;E1+OUWbUFE=pBv@Uy*7(CS{T0IjUg>qE39n5|)gCrgetYdN zF9&gzRIIc!+v0zq{d+r|D%zE@deay+`GknL4CARAa1kMVkK;+Bx= zdX6`LA+yfXaY{P(zBrfmLs9*FkcRAqyE(fxd_}Hu%@>bZ?-V_|Mvfr zlp97NPe9~D3+`upYn;-~Di7&$yeB4B3kPi6oj49$Dz>-K2i{9V;DOj#OLdd8PxO== zC^*f-;GqTozNk74KmWlzCD}dAQx)!RxI4rF@K-@cUQEm#(ydLX^KCn zf;Xuy4S^LfFEO|~7)H<4P1a zucf(80-rD-DmJR}t-EuC@1)Ps*WSJ1_$?{3p*!ZHiHp?vT3Ttw+sR|7t#~sm&gI}s zipnTOfz+Dv8A{^wG?>k~z*4FJw{`B*h2AC+pY1nxh!*2e`eC|qZf2qNx1u*~(ESLw zL;D#PXel?6bN_Jv52hWyhpK**-0R)mGv6P0Z@qq^K6$B!%SjoeoG~pOrYO~__Z?&mt7+s%^d}Jt#!i)y6winZ1*I-U7HhtA z7azf@`$|Z1S&hoJYInXcy}+>;`+Uuf+B%J_$&Yk?z;J%soh03xA<&G}dlvt|)tr=+ zaRLMw@5+4f<9*xW``d&u&Puws_YFGSOQHhHz!;I?YrSPnP5O$VId_VTV^f9Z@DrU- z0r&B%Dm9a{7eXYQV$sI;jG}!}Go;3p<6u?}?lg^l{ch?k!t}t*-ouUd8M?K|ozd8UXUe?shvdwkc&hpkDT4Jvx2S0;N8PN(@5 z;ishD@)C8kTKFZWcPd7D-kX9)Psfk+Jo&l}$Py;;>>_(wGPrme$<40jrm;_}^DWFH z=^sz*JB`JxQRwwF#|(qv4TPbw!YTWYPd`7x%isy18MwycnH_ZSq=@}48tU6QKQN&> zEc}P3@%B5ZNZ|zR_Pr`!eG{X?h9K%*Z>QJK>r;ebH>-HYE&~9)QPuO`8Oi| z$H@+47xOkpuc)+=-!}CtTHQRSZuf2qBsJdZnnn(IJb6eQg?oXu`$aX>;f6dq>%VF*IZlCMejdy*nhAPr+`(?{0bWAw(p1jJ(SYpTjIA#=P|9$n!IkMqaJY z_DDok`RiEdKSO{+Xt2nK{IwtgG@ApQrRj}~cQ20IgkuwJUf=rdv1Z{mYb4>?m#t*e zIGu8D*8<{)Lpu~-slUJNYRSj>=-@MyYo4y+4+g~5GM`y9`hKL|!d15vy}n1^Qks+? z8kfRs^mG*GR(bMVe3spXm7y&X{z74mk21#+T2xHA1 zU$SNm4yW!XR~QDPWJ|U}d+m=s%VWPQW}r*a(+=$K)W?ogC?NWOd_?2=Fm2XlE#z@2 zH&aa4!Z22Y#?R;9p$wITD{z7O;ihq+CzDz+==<<-%8?Oee z>g99G!9qmy!Rs4Dnlxu=^99?hf?sa@iH%}NLOP+~WY1cB!g|kzA8ok9OSk?LxQ>D+ z_kB-2jcxdES|hJlE%Libc>%3enBnKtC$7+r4G95SYy)3+DoIM2@8x%j;ghVOw@5%H%f@6qxC- z!Z8*`vuDejg-{g+|CBw zyyK9yy7W+NK!1SOaw!dnRUG;e^>tvqc^^Y&SQ_%i1H%;XZojg?2Vx_q%F}ia@p|Mu zUuq7jIF-D}ixyYDm;7~Eep>9>-17{lt9(E+D<}*DH4(clM{^X?bok8owuSy1H`x;D z4C)~;XLtO-HDl3*-YTV|_0ZVK0qHP0;%5-TJ(=5{xz@9wk>O>p2h0Z)D^h!$iKY+3 zt5D)bsWk(dA-hF@T%J*lFobi3=Oai@c6-y4JYGy9Nba-0)46`eHb`wXdyb%ae9)d( z2Z*t>g0=Reh`u*A6@bWo^jMvyqdXTkYib19J4^osQNDyQrakauA3$8f>H*kd@EkNA zZCd;Sr-YingbZPCsvL!2cPHC! z%tn6zTZDnPB`(2xLTaJ6mj3-Pn`jbjJU^d?_6-eJP@f3IXdBaE9Z(+{kA#)q+t^t) zWQF$0eC7m^dj_dSL?J|fi-`iCB1kdKT_MdDU!x+Q49@5{MiKM>PnBnPIim*4Jfq@OF%5=05m$NdXDX{z~*zQLJ&C@yj7Hiz` zT#{uky2cKXw?c&x7cltYp?*kfakjTS%WQ7UU+t3j%P$km&6TtAIw zyt?hy--p(;kco)Kl_w(5S7&Z|-@{A8;i`u0y7fut=7q&bOj2Cc8I9TvGv#(SPiy=B zlUuE^^YWjD@ur5p$9zVY6?65L+f9yE=9etI+c6W#qNfzhzGqwv!qFp`4Z-G@2xGfA zTmmUnAab*i0zP27Cq3~mrx!{vOpmNz?e})Ps5?Fnm!aXLd!UI@>x+GXVIWQT+7)B_ zMq0~c+o09VRhw0ClqF*vZLfAvKNj6$K1MST@D-IKd%nI^$;EfF60tZtR(Oc6xLpzc$Y+a>*Kdm?>CzCZY=PHXPBfbwcY z1Z{E8TaD2!mCwk!X)@1zcXvLKolZUeM*PWNp-Jjeq6SZUm)-wyT!Z<&t0rhn+zJMrUQn${Bo>!|AP_7+3&&q-f>Yi~q z1h})!I@I8wN|a+%^pR_A8qYgFXXpz6Ix4uoE^{Qce@Bm>MBr}CqR3ozRb<2qu zaYY`2TkCay$^^o&fiO3vzF@8{%8-%fLYAWMlEr~ifMU7pN8tZBH!hoXgZ;8E(HW|m z+$?%X>)u0Mo%@TuLYD?IestDYrvh;Wh0sCDQv!+oCFW@nXB_Huf3lvIxlG!PR}4)nIt29d>@D?2a%?FM0;`IP_Pi<5ZfG-)a@=)E9`Xm$H@1r8}Su% ztewXjso9X5+K?32em29?YCi3ZO8|q*$fPwcyO1FvFO()b*6P|>-AOX9cr{f<*r)nF3J7r$$8%&8`Vm!l0s{v;3Eh(x3xyE0ML4|&x*#ii&Xx#iy*;H*%z1mq{@qs)=P zT5GLqd!nA1kBz5EjI^_8M!CSyF%g3J5#yQVY5o%Lc^YHImubJWrzakVn8*q*wf+gr zljP)uk0xlH9hbQx-krY;u$cPlvG*d6#D8IccP%|t*JnCUcitE4ymhNq>MBT6R1~D)ySKwcV+3O@{PoBZxM#%Wtp$n~6ov_Ve7)n;xw+8xCGIepMFMBKA5M=MIhU0gu$ufK;1jOcI zUu_cn!v!K>{{D~23|feHV&kT!_V4g_V){%xh)!*K#QQYT#cX8bqxRgRJ(;kZ2YUgU z5}}Dg(6FTXfQKlORmisYjzgP*cFj1w$>T&{@-%y1V*6IH5Y};8Q5?zc>td){KI?|}Wxpgo%kpe{c|{o20YhHA9OUs6NeoAoi8C4I zCDjjqoSBYMgh~jo?TpN&Ou};pU;CPw`YCOwDI^1Zquz zNFS40qh%c#77D7B0wv?_Ls~q-2x8mQiglHmjTtl*j=yFt8Y&z6&|Sk7aOD0j+-GFUEqx`$Lr|ZPq;}(&8@=rO_@M zqGu!S!YZyJ5|NPMb8j`^jND5BQZ$T*9TxjWKVs&ir|;}j;Rr&J^bf9>n~R!@yZ!mp z)pKBLYF3{No}X-koKQO`ji7PVg()WdT5X4~@!-&hg2UBhe4zZF@cIa)blyJ<+(?i; zzg2AsfF4oG=fAC{2{Yn?egE=4I_G`{-M*Y&Txo*aADTrY=1&?|ZQrw^=T}xxG&MB~ zblATQMcYwTM5) zPp&_4TG~6U^%pGr`E%5vDCr(3M_eg5(W4$#Qot)1_DLEHOxt;w@;g*ndYC0KW^Sn# zO0Nk$>kJoM@K;;gS%H=d!9LOv_P71H@E5}g4U@e>5AJH&iu82c8uj%{ggGWZh+GYq z7w+#`&|a?|jy}l}l6+y#JH>Lq-FZ?^?I6!nCTti9E6CnL)jxEd$<;nv8dWyY)OcMr zOwB#JH;i`lc?>CdQ_x*xZXJ$q!HJ+7KhLvI!60D3O9}K5nUwIXS{hLv&E{}uY0Qy>Ngrr6C~!@a&mdjf z3DHr*7uc_uU^=_EX=KC47?f}eDy%>3-^I#@c*85^9aR#MaV}+^T?KWlO&y|idB3GS z&yCu_|1o_K>Apd#W-{xn?q7A<931yx*bKQoA8BO~@zTn0Y-MMQ)vTz<7V`eK+Q+$-jmM^1$+!fgKEF) zY^gPd2N3cw@I7jCz7Hu_#m^FQHkQMxm+#CplMa_@$}t8lmB7JHju#nlpu_;q<}b?n zBLjZ}0Hx%?pJa0*2NRX%l~f3BR2suOl=qdC8y-I)X4K-UMKKDIUy2DQtNcQu*QP51 z=<<})gi&A2b%q+H*gV|T5h9BUTBil}af2Ip!hZmXq@WaWhaK)cH&PWFhsb-&Jp&)IS2)H=_{<#L|q$-FOhH(=eNNk>CRd;CfX z$w)W0)jq2VZ)1D&>prNUf|gm~`rpC5GiF3E^m>8cnBaW{h6dmDjjBdrT4ITa{wqZ! zBL#{{&Q=R}>2@h>N`q?hW)AMe#?`)FJdWmXQQp$=XHsmOp=LW+2z8>o&CGKQT#j@C z2rO7_L_oVZ>C*L}`jm+UG@1~H>ixGu4mc^`2p08^Csaw&siLH-0#BUi1&B!no;V9} zAlHmP(y|l$Hu-1s))wPtqjJgxwa~>ixS=8Jrc|-bT+_qj%@b~!U2+~(Ro)*FcS>+;J@8>x`!Cgy0MejZWm11I-oAfw7{&P zoVn&|{#qyJ<_L-QKN2!pI3h0koi7)m@9piq&Ck!jA#HHDnEk%vJ=v)^QA|~(kv*~| zMK1}p%2>?ywBosek_!9YdA}k;R&^p`DTC$G)z#I<*&|Q)=g@0kOLR<>@!cH_Lx&K? zLKgvpJVhW2P~^H!L)X;Ay;gLVkrBV`9rD9p5Sm}wUf#nOxZ9usw||5lmUn4sVVlD7 z$1UHF4+vldM;G!}#4R1fEo&g=IP-cAXH7h$(@JD540uuSgkH*gn!T{CC8?t9CPVe% zUKI0RqgKjfM^}QaNl?Rvvtn9qqC=X?Wz6x}t77nLUaqd%&9ANoQ)EpPj*`Q-Xx(`v z@S6m`HYFaqwPoVz<)xf&a-<8B!OLZ}#h1pp8=n;Em#_j)SDON&fyrAj9v)otZFS2k z)*8IOs7Wy4aF&JvUAH?~SD=H;h-uF_}5b%SSj))NeaI%l9x9_$etg8c6QAD2r zG_8fOfKqL;D&2S+u!9CP21r30Z&5AI?4P0?x$tcDFs1MQ5hixoH)xKq}RI;TgCzVi&pr0~9(Z7-37!r?)e} zDL48++33oHk67RF`ThYDkoj(;x(M+U`)zek71NUODzUVQ8?)YVv%ZTN1m#(W3z1IO z^s7de^vlk}^x7mk5mvmQpqqKYqU zy{(rgkk7S(mzIu+b<3WNXH{sd0P58)S)?u{vZ=uJcsB z|M7lSY2)@~TgRv~31=64BN6z~&}bc1ozGq68KKq5y=9$c3=fDD#vSD1U>*y8cz-0{L2Nn8~X`#gWak~72PA!`UB*+5E+{VI~qM`{Y8n@ z72Ku?cv+y{-q1N|ayiJpEI6Tr$dRZ^@w}8Vl!E9x%;!_TA9 zpj2udWj;ox(WTTfzbvns(2KGPLg890ghN=tc;zqPh1^;F_n^XW7PCe8S>I|cLA5@s z=!lB)(1r+8WqXi+!1{34tTa7Rj+O1`OVsNYjF{0#kVas?wK-;p8IBC|^d}rL9#vdV z@^+E3SEeHNtAgx7tY6E#8S=wWel&Auo4~%pm@RtkNY}?B*Mb~s$wrUfFs-}cf{1Ds z>ouICC#`1PKRJe z$huw?>3g2->{g(I&rZw}5!-ErRq6*wd}4|w;M}^_2y`;cY*HRmuG(n*>1Qk|hq<)1 zi}d=_L{bk~Th8Clv8Dzyp?_}F>5UL3kiAPM#qfDeEVLROlkmiHg|VIlK-SgYGWz!s zlP-E`Ns2nIv9bG;vqoffPrxkGUq4G9@^e=a9st8|=dwEpS$FM7>y~318a%0&vSR1< zyz|!VD6j3(jUU;5GHGI*Az({|*=6b#9S3A*Gf>ko+`m()9Ud=$A0re07;pb+wi~5X zNVu_NstZWK-1m-PDe18sGyL*mu@_d8h zeP5aFu(1c2k*F_wf_j_L$~q62@H6PiP*{3;`bGAk%PzqZ?N^tHrsSo~O>A>VM^8_s zf%Nl#&F>!%_xI~p9EAO5F)8!lt!eQ;fBtN6$VK}^VQ?H+t1ixkC~g?C*?vNDA_kAF zvRG&k5w{m`zE-Ijv^%~f?fKK?SoQ`Haekfcn1A6vVZgs@2;2c=ZlDz$9>&Fasm>J+ z>W~o==f%?*IngTVM#55~f(@!HS)Qmy)M)hdIBBNcn-*!Lup1I=EqH3bpx^GP-mTGi z(kk}NYwdyWnU-wPlkW`&s3f--SQ*2VLSOU--0)ktjAGy2XfBEg=@DwX0)jzv|A3GPR9ftbS2x! z2@iRsPy=J~E}!`y>Y+n;fG9(zuHOH)_I_t=X~DaT=^1Q!RbBs)cu?x_eU9lbMi`xS zpR&DFIwe7Vqb!%!%rG;0z@;mG&gv%6( zQnzS>$5$w&Gj=oAhI|3g!9LB|Kw-0=VLr2IK^j7RHACMAij^cQV!66<>RO|itT0=K z*vn&tJawL78DM}HUV{~kN|+D(9%V)*M@ z@4#4#V^Ro&PqUfP@T#Ft9-^(NN;t{R-e`!}5znVf{{=!+rAAcED3u%i89J@|oyGd! zGL&A_)q1u|Iw})qvav=;eApT;0z5ZDOyXls&{mr`#*iV=v+Zr|F0kT zuirXv0*yY!j=zR*ZQ$VIDw8D`&;8nlF{#Rp1T~I9pB&F=)D_&?$)6c|hCq(;s`m5JUVEGofOQe@rgNjch!( zjMQq-x9D0|%Mlfb+o+lE?S$oMUzAHy3G~F`j18roi5Ko@B1xKGgI5(5u!(rhaGE$6-I+ai1>M zrk)jMIOo3dI($Jk$M=GM#lN~j&OcAL+0y)~-i6Ko`jVj>FOc~Y>QWXeD$ES;oxdl2 z`lqC@RjB}sfktfN_ZvCb$&%Z`N8Z;~N2MHoHycu_d;z}_5o7##Z$9@7mn$fz^?zhd zjgT;J3NO_>ZC4cteb8-;{E3-1u zgXyK^3;*c`UqMMDkNYpU5s%aK6rDQ4_GUTm<3}xCB7T#bE}1x6^oj6$)v!QzJdY>H zXK5a{d#!S%#`Te1P7}h$4ko*PeXoYE;RX|XGmTj`1&?ky$}9L*?0-Y-|9n_xq?=8e zQ_`5ggyl8K6LUag43}dEANSfgpIX`IY%}8&Ut^f>;Pgx<96Bq$E!2AUAvW8t0@rfT zs&vt^zl>~57-h$cwCv_RPbPUenJY~=8-gLTdw?j;P$_QP`ymx~oZE~08qd!chFT~{ zX)^R#zI18ha!G4kLOeYUT#;5xJBK0@7j?$;zh31!c#r5td0k}j;E8W2PtTR39E_bT zzW4B#J+0BRvP=q;2@trPjZqs~A)63J*~s~1aMb3A=54_(nL4i562l1Hd7LEHI6rgb ze{E!_|8Rcn{Bro<7gLC0nYB;7K1HB z@x$$U66ZTYY#S?G%FMRjcTF8eZ?sLUfN*?y1!NccUv8PU`yY{Ndvoe2Yyo|Z0 z-OcJ-u}3dgh_kqT!_($C73*12nsvIGQnj>qHf3f|eMCS0ZmPo;Cx{`yonI+T4GO$wYr8ZQd?M>(_FHq zi^r)J`_yvYEW(0=a{kH$XEN2fxv1!p9REer*UNP$hk=B-nfC35)iUREt|QlSnM?MG z;c@{Et2n<#--x=;dsF2u%k8JLb)L)I(5Opy zA_sV8lwj%aSI{-oxtukAA6eg8pg3NvdUh#3*Trqh04?V_s?hfC7_Z9K-qj$iZ!oCN+nG?Q=zc+452$7@kEHL2xQ9=N zC>Mx^hrl3>6fVujw6|i&5SSK()o5_+FZJYK9t}owB=4S?Xyx9+{)q%dZ?s;A#&+? zX#CbhvTG!-rTYD?hSo_Q>&>;7UPylSSJs`=u}=rdY*9ULtC6@~OF2EHVQn#C=qs;^ zuzX`7!H*|(`L;C&`5ia3D_cqy-`InpUXVy{sB|}0Ptrh2!Mq(3XPReh+Xfg2TwSn? z`QTyiiUcUE{Sht8PPfZa)OWq=!L0t9(5gvfzzuP~A(R_YRUdftv^3@+E$Pb${jZh< zlpDp55LIPAslnDJW8=^o&d5+?QI$%R&xtV79$)f_Sm3g-hwf4U6hiMwyA{#Za|4F* zTaDT%%Qy9~FGDtOGyHlB6EB{Dz*i(G z$gQukD-`r=FH-$kGk{8(;rGTpcXv1-nMn<`T8`#eEMaAEgOT~3gNOvyAOeZa$1sY1 zHrjS)&r)3frW-_Qi6e6Rh=^`#!P@2;wDRo;Ceo;~+js#{{ZT~1O1WYAE@=Iu#n)XG zVa@}3Hs;F|A6M+V@|!h~+23`WxVMY%wq%9i7<`?HFn$ow*i|->D3U6Q zxzit@kRX1>rvn>~CE)Un`QuTW23)vA$G zJ6wuq40qC+RNFiyl+QaXYSxWM~mx7v_FSBz?X$ki(PM#b5mbZF}HuwM7ddsM|x8!R$5D4z>7Tn#PhTss~ z-GT=X?$EfqHNoB8El6;eV8PuT-p-vn?=v(1`=!_FwR&~;soyzOyLRoWgL?22i#nA@ z(j?>vJ@RA`)$Ds?bsa0Tr*%t~pVHiHPhC}R z4kFq6-U-uQSRaeG_iDtxsL!cP2V_GV?blWBH+la(JoRVUlqtfxC0)@g#yAe+VpI}^ z=_su3<#CKHxI^{ERHKNERtSPbAG&9XTq(X`WQ8!iAn$0h0f>DsH&&MVO~TSO$!~ky zr258yqM3J0V&#zzDuqX%7VhkGUg->_i&oAi9<;WpEhH~ znWHMsPJVjx+bxak z0JdAmPaia#00b}lp4&a(mV;MBhq_=5qZuH2p|sMI`pMBFBZY`_0@HJ94`*YKR_a22 z2HR2>Bh1%>q$%gXSh|~0^JXlqJFA0eWa5+Tx5$|%@IB${CHtBr?yg?=trMN^_F{`t zuf^vnx_rMPxlu3~_YwMj|H-fE=a_&4>CE__?)x1Y4L+1Rc(_R{gH7HP$i^+uv4J?`vWIp-Mx;i7yHS)^d&9S*=VGhlYa_Qgz;Ph1UvA_=;w!unEjZNY zcw}(fQxZsJTSk7Wz!^?6(pb8VSU<$ff3_(OLhj_W3^&5CFm7)iEUJ~11xifmCzBsP zdPAf~)RB3tfY4an(6evXk=jW561j%s3{-k&lx)`V!s-?bw#CVnDhq}1lcIW4?2f=K z0(pr3EGf0)2TPnipQ&U(ocui@afytHeoMhC2O$hLFt1WQr%zg*t&K=Go)n|>&w6!NRe7ksYjCu^{Q zu0LMI*u`cq_)<3_g+o%ca+V@_D1|oCP#-(&fF3z*`F~LQ_Q!2{4~NC7&x|Ky9ws)3Jv)EX?Sz`=q*1hv zP5YAvPIT-x&IMBm`ZYh&P&dgJ(uXz9W8Q0+dIFT8?>QL`RDyg>5IDpd5=C(;7vl1a z{gQfO`z2j*e(9FB9E59{HHQ70F@_|o-s|Wu^4I4>n?;twb~Hj+7dt*&UV}02-+sUm zVCQtd6biD~_TwTRyOa3WfA|)i5r&<#_*l8w8!UXz1Xn!e%=6*e3dGXJwbRF{>7pBCksmcl zv(NF$x)zC1DY@muE-{s>cH{7H&goULj71^ky16BBu5+TWyHCm&mC&@Ft8VQS8GD&W z{>I|VlK0@SNKk)h7X7=;6Lnz`T~C&1+jo9}(2Rt*FQ>|7vTqjg=g8_%xPfm1kW6Sq zUyvsxLW7)_1mBs&ud_n)7#wLIA`Mn@NjBbw^iO@HU%Zfx%$v77xTS0|1|p_Mj?KDM zc2SHNZ6j@_8qnJIdTWHw$*-GJ?}L=i3?(!Uf;(*uwt5HbC*4Hw6<%C(BGMq{s!Y}j zITwBQp+6{O2Il3DP4SpBzuuAerS!TFyTBOsP9}@wq0U?#S$*367rOg5)bsC^-EbMx z+25}|xxxd{jN+QXEV!3cn*nzvF|p2lqhiE<-yoddtcB9N_k{X1XOieT#hKHic{h#> zGvFc`yzbr7Lfm0-@QDqubbI)aXIuTl2mZ0%GVGFX1VE{9{J@OP{U!jkJyOi8O`~p< zvx=i-|C}o8Sh!EoOoUa7`M?f66>jFNU_%(dD~@a;LE81A^B6mx{<|sMUKGzsXN+X( zJ<^v;yufL(1mhZ3>`))P2x}r&^AY1jY*KpKu)F@J?0s%d;uYpAGw2|3z8N*;!s2Ts z;4}4XIl~@}&XbDfM9B9!*hbc|kM%XSPlMK5EY<~#AucvRIx}{Ql3LcqWakV5DxUpS zNSGq|p`n_zz0K!Xy55x(ZpVjWVXhCIeZ6ZvxDOqd>7XZ882&8$Zu>`O_g^j*svR2H z7g;3i7M&v|JM0?vhPT5m#m+stbP*g+Fvz2~UJt+F70%2!J-YgK4YH~C3HZ#7OA8P-8oNT&#$FfWb2mUdX%vFVuhBjpyF!irkQDz^Ngv_Y>p$L zPtC6^$a4fPA~U6Tn|yYJ&u=qBEPdZ#+uY$CZ+166O+s?qyA!g9EN_+CS;(kf7%ebzK&X0b^@DYz6$ErxFyh*b}IW2VekY8uG9TOdM|&vVN#Dx ztnV4q|HYigc@9k)=Bc;8M8H*-H$*h5{`}mJ^^x(B6zwbJ#HH81}e$vV}Bs6 z{KY{Cs~dogRgb#Mk4lmCDw=hs1M*MCme@H3p4^BI-4Ph^nGy&QAool*zHP?3;o@tZ zh<9%>rPW#oGXRnqt6j|+&9u+M3ndFl{1va9I1>5h>BPc@F-L**QAuvGA9pW#oQ_-{`FL9Ubt z*B7_A3xT)qUEj3$k>VD9ft#$LC?Qfwz09OZ@SJpQ$h(DlXmZ3-IQVYkiQa6clcPOA}UL2jZq?d_i&E8K+*|VGuN9eraM2Mw7jlsK}f+sVWrFJ@&O&;HOpHDOjPwc(!*Qcio-m+ zd2u|heC)mIWsPK+6x#~4#pQ8$FL}~|5&x zcy^(WO?td!ZnYEgCARxszkf?$VtG;8oS64&PB?lR*59JfN4t-~Rpmuh41msLj~gEG zZl&6cHBwRV-+oH8wrLVOV6%Ty?|+h7K)a~qTXspBz{Z;A3NcZ?@@>q-r4F<2T|SAq zmE2g@naVGOP2ooDy^pFgGyX(l5lh^FgYm7R|A|${p%*;)s|dH}WFA)m)?Pz2Xoe{Z zd;^fmaWi`4?wvbX&E4v|d&aE+ZP8q!qpu&1sJS+udB3WaYBHqU1|rd|wgngeZrxwZ z6B_yc3=xX0;^>h}5N-R2MqLh#rqk#wez^B^u5TQELS~Pek&T>%&&jg<6(f1#FyQhB zRklLp<|$FQaAlj}?yfM)>Md$(dv-zvP3yKS&i&hFpIPz9dfVm7p31g@iD;;YJ1;eA zs4bsgcnikD?Esm2M14GVIOySmw2<{bPCwWc_`yS^(u}yev5Be{(~i9E)=ESK(u`O@ zQ5i?QeY>_Tj&N4yP_WAmmPgqM?m*PG0%a_+c(4+4H1(7YyjPau$9vN^fWev2X@0R+ ztf5JdlqHbre%ax1=Tm@MNqeB&6<9r)-*)bILsw3OE8)uPsF_>AuPC)7+u449Uj@!L z*7?W{l~JJe8a((h!Sc?jdKKBRYCT{!l1uZ${8ICVzK&El=?^HqgrqYT`+Rn}6}9bo zPrD<5^3Hi8AOk@1WY&+uAseEKjJiisP@#-b?Xncy=WuXa+_u4UQ{_y73 z)xG6{BmP~kwv!b7^Nl}1PwlV^-c-gHX}g*oTz#)mO#1g%lI5nOt?gmSS#PD`fGK_# z{JgecLGzoLP*=LH-JPN39@$lB{cP&dcUjnrxCDYJAaO9j>WLOM}ax&MlUwviOfjtG3S9D17yytxFCt#vDM7*2b=zQUzWa6 zl7!_0vYi=^XX9GpgTmCoS7N^Sjl#)GiKwEFelZ(Cb>=5-Nvt<%6*0D z^9wsj`ouX-@3^{U*6{}rRPIUi<{+;qYjOa}q#5}FoUeMaO`bvMl^LA>3Md-d{B=;V zShI&u+|?YqGI8&udD0vHv$w`|`J>Il3%eh1pRE~3Qiow+f1H!&!fsW&bMX6h57c6k zaF^1ztm~FED3M#;1E$%D*=;uN_eXYOVcvYnZmBW%fKW3w{emImwRMwMq@kqA3e7zq zB#Y$rJ;eNcZxXfm*TD}}JH(E--E}yOD z)|eB*YV|3lMhqLjvZ`$6u$wXrmD`?hs=r{Zj@(6rUNEv1XihQUjK=nB}s)t3P%_uyFNtZ(J;<2c$> z(Q}c!h4qX^_jwL#C>*O}E1Ds5@3G}T>wJHqvu^^)DIeh1FNK53<@&8s8ml|{CC;+% zUG^tq zs#>$+nCBUnI652=C#SrnTRqWrxJP~y)o+`T;E9p%R@Gqy2V8ZDTt&JY9lC7qP4;=rin{}7>ctA|@hMS7SsX+;?I0rB+NfkxYv3jOM**aO znE<_J!oK;6K#~x~0If0#O_w|aY;dBa88zT>2GDHS!`q8sOG2u4@1t4GsEM}5EU(+;zdz-_^L!u)C-j$Caz~KGo1|(_b94(x-2#3L!*w|1!~8u z0UN^-qhzwDz2j%Na;8tRWSds7x*G1=*TT}P2L+?^gNx7#sqC{NAl@Z8jjmABOVGD#KhC=fJwQX69NQgF!iEfvk9ZVH%PfulsGILy7OmkW*aJM7>IdTIwgrY`O{Mz6cR zxocwq*5&Ft3_h|$CSRWA@A(*#R(&I1-1#lWIJXE?&2acf&R*MJB(*Wkv_QRmYWKVt ze<0e28%#5Fi!nyigqJBZ+NLC}#a17BL!J*Sf&orH#GjuXA@~%8ps%nXs`2NbF7|L7 zmeTQ%^y1GqcT84W+>mvS$uvJf4c6YT&Ow=M$?9qxg_j0O^k9K4C`ac%RUB<3V9nD#i$SIISe}RHznzJs%a^(0jlh+1C^N`(V13- z)x!Zh6z0q=oC2(_DK=9$&9ERM=8x+`YfoK07D*(%D%4x&oKp2krH&&O`L9W|xzI)} z_E~OeweHXmv7DyqYEIV4p#4TBbDrrR+1uk=>|0@YkK->SIKCce07YSv01R;{6StD7 z#daTLpW-WAVxq!uXw3l-4TeoqdPT3n4MX*m2h9R0J&|vB-hpc7SskQYzu7HaM3Dop zFRa#Lxm@t6fmdO1^_t#~a`Uvw-rI-Fa8P&Xk-|RjBl>PjOm8P3qnW`r4-YdO)x;R->v_MYnBgwzm)i_i30+ zQK1~Yj;2gQ^b5WFyhLIJwMx@BtY=C=6>Vck^mxB=8zY^D&=%E!U*hb!%rn2~Og>`2 zmoCwYNg&9vurNs9htGVpkys&;VuNd3dWhys8KE-=kc&vssXL)FUoMQSfWCMYicqiM z4oAn)IqeK`%beX@JKK4-S9=RJfoKQ}is_fCM_D5GRZ!OZfAup}9ZfzChhxZeWg6-v zQf#6+z?x*dg}y67a}Y}I4gV~TaXj^H3r)^ZFz7*?ertJNI<=vKjvDCtvJY=!Vz57P z>3?-R=lwNu?W?~lgts_-E;>T*-?Z~@2rD<#+ zAtdG=+}o7ZgT#~LTI_}HL$5`AbK`2vrt))jJtfU;?{tf)(6(oh%3VyZ zGk!+!hRaM1yaZhwIz7*Oh%%TFEiYkz>tuLuu-tu0)6AD?qU|mAV>b!*u}oOQt-cST zv#?mHSCmhM!}*Ejxy~C(PWN?3;$b)>?p(hfu}Gz8V{(e}Ua}IITBp4f+yk3)C&iKy z+zR!y79x7RCn=ZHiX#0!tL_J8R3B^6Y3fc!q>+=lq4Pv~7+)8}k=w5!x4K(0OKBM0 zJHld)>@QO1F4}3r$3yk~U3v5y)ou80UDvPeXjw3}(93DY568D*JiEYL3`g8uM?opj zz9x*YX4K(8QY&hZYu5sKVuc;kHa|Mx>MC5$1nsXv>i?f0@BBf>Y=F_kO#()<#4Zek z{B*l|iE(mBUb0xVyNArkeANw^sNU0onR7)PlIF-Qc2tBJG(0w(x@fnQvJ3501_qBt z7E#qSnh~GzS_!o!p@{_9-Zc{@&67@)E@6|U%~qE5M#$*K{5%7QPtm+cQW?;TFP`Kh zM+8R67u3z3x;PfV&TdB>o$|$3ZjhGuz#*g2Ni&-Ipgd39*(obEPdV&h&RdNmz40^f zU3rb=u$duU7gJwOz`JIvr!GzQCqmH7&G$jWy$ew0Ov}ee9XGsFlL4z0HZrmxSjM!yakO92Bj5UaIMLa(_E%`d$yQ=zQjxGjSo6r`gggo z=q{tT;#rL9EPqC}dNKRXzufm8d5>ScLS#Q*g5%gU!p_XXWU5d>pM7m9(2iw=-+w@C;%XNMB2Q~|x)X4}`Eb7WB( zMN1D%2Yo%1C3J1*g|G3&-P^HNcj!#O5y7KS15B|`*rMWChHJ^bZs7AHX$e5AyC3&O z`Ow#`3QY_|4563b!S5Mo58O=R-DfMKVdR@yshP8Vf^QY!bF7d0q6SO*%O#p z=?pc8ZUZzb^@iuu<%d+cLdvRtYHl^xN_3?SX|VPaw38`cS_@8H%(#U{^-qM)2xU?@ z{W=!R5ub#d=Cxf-CeP-?MQUhD2jB{(!SqKNEuH<^LNia|R%4WfQ0E}!W(IJ?m=w;@ zQ3OEQrQu^czhI`w3^$ayY}{y1kJs~g$;B#XI~Jsa#2O#AB_L1<-tF(s` z-&iPRU1&mblo7`)`FqhjZTNc&DWt1C5`mIIhM)q%M?+z5xIw&58nEAGN`|skT|l9AsG-7iKbWfv;@%)(m}_W$6tWh zW}OVOah#%${G3>ljiDQyU4de(O_t?x_CS*wd8oC+j_U1H<^?0&4k`3Xd-mPN!lwO8 zqEgG3Ax?rX0#*c&8fK>6r3)YM_4J^o8u<~|3X&kThbGH~v*#*0}EXi!6 z|L1c@_1}`)*g3+L&Zo3ePONAV!Dqy>Sghv)lW{;{h&c)6dCL-on&3FXt9M3n4D3BFjzxmheOQ`X=(%Bk+{mQ1HqT1zifdxQ_ll_7D->l)^6e2tvi*n)|=FSl?dAC+v z8neKV>`zhtcYt3z%?NSf@um#OlF1NU4Erzq@%NkAPvE_)4ey6-o1;PDhMx|L>Tmo> zB#vfe`dmw1*|mDT==*o2LQB?bLB{a^Uc+D25Fj>$D5lvuSYA4cxkJDhN26UYAUzK@ zy3z)eDi%ORMP;g5bPcj81(Ed6fBNqV3iwl>;i_xh#N?IH0kU5(CtJbU&kr2PkHB37 zN&KMy^J(yU{g&ZkX-ZxDIUvBMq6~fq-hBfz^$P!B7n(z;?*Qd_3<)r{qT5KKQ^VIb z=%gyDtH?e!^sTELKDM71O?$CYs&ZAf5V`%!JzUE9f#oBpujVKkw<1_yfbhZ=oB*pQ zuWZMecmMF`MW8Mv{BQuHB03poLd;QQ>h+y!&XfDK^)DSA8Ld8sW?(r&LN-i`u zSq7mEsND_wpaL`Xvx~0Q*We^SnPNn8Tg7~JhdQI>YPK|l5q=`3Nhyk}>$?9X%06~s zj~GKrU0?QtJA$^E0>YR0VkmH=kENu^rzb71ckBVpiB2xzg!Z5W&fQrMDpWDEHxM^B z-3JAcjTkxKHF%GN-E^COg%WES1NcR7jgAmuO_RSFUB ziWY&Oa5urJQFPdL^Wd|uw7|k};_eA6_Ro*}#^&}v;bkVo_lzIYgm{{Vag$J^Fiz!LZ22b)CFyb!0WyTf^6jboyA89(NCwjU!lsUTH53_$H4Vb{~(M~Ub-1?^V>CRcAC znlGP8=!A`#s?-Z8g}NJ|5o)-_2n1oS#kc81Muwz#d=4S5TgQSIWK3o!$B!61y7aj^ zuY~kPqjEJd83$e>FphMopR*;V0xnU1%Ko>5`WLlE8VKGU08)GoN_@SQc@hE@__~cx zpyI<#{D^G@a|d6;pbDXROUk633_=X}CtiYB9#i&4xnb09H4=W`iCI;zy{fr1DHZT2 zJvueu6Am>xU`{?~@PG6!|FUB&J7lmVruU1*JJ%Qd5!;Kok|oGN3PzSOr5`^c2jH4K z+;97|Q&k0_C-n9%$U7mmuWPz9FG7k{`Anv4+Ri%=^v~CQ5$tEI^Y#|ga8;hTuX8E| zRIZ1$Jb7}C5V;pN*;bA)&OA+8Jq2t8ZKf)>-n%P0iC1`d8m^}2Fmno_Q{TE%+*esz zZtB=o4oiO6I+pJ-N71}1qhn>c=oB_@ejn|VK&e$WY~SbLpuytf*&Q?E@xwBez@l7M zog<#)PRL?G&2de`>W)C+JaO!&ji5(23H4i8uZ5~e9Z9H3Z?mYSYMfqAjN{{utVBLt zXITZp=5h*7R`sE_MR@~Bkjz$(in0CHkJopEFZB4!-;mB{3=twvE&MLgh0nL=(wmTe z8n@S&yvc_%v)zN~x7QhxY|n{JfWXS~8qQ2P!(?k~E$KKa;3Y(&r*9jTc(5SfF%&M9 zOCgdn+wq$wEuI~}&Z<8<_?|4C z#zahPwYU?RcfwNeo3AGDdYaM+XGlyvlS}_ko%rtnq$KPw2G-*tH-tQlSR$sfL%;8; zik_$vtND5L;jsdF@VZj&esiF@&JqZ3=F@#1$Ef_Og4@_i7;Kq~0f~KsiVz3a+-OT@ z6QedrNPxgmaY^i^KrGh3_qF-*=}x9;g1QUIf9_n5Z~G30YI6j(FNvnl=miI$XwfRTc2rb6v7a5 zo2Ha?^(;aR$TB#c^M-Br)U^7bY#R6>x5w?A-CNlD?FGs%Z++KQn#^Sn#5Z6@dvz>Y z2Yg@WjCA!9p5H}<%RnR3pqU`W80VRPI^UTig#$u#f6Nf^8C-Gx3q+i+(BMw~El)fb zp2FaVVx=m<^o6Oo3(1xa2BEc}i4em?yx+)*N4J?B2gd4Wh&uVs9mFgL z+5{ktyv6!kH;$&8z)_k`Vw$VA0dq8ShfYY4{ga8F;d>k27AV_M+U3#-_O+yC%nIQJ z5tJ*4;xdBK3d;SPclXD&ArNjvBrse(Nvvl6w0yJE;@957Hs=Zt(Jwe>@V8{W2)M7>npC;88SV;Y0GAJj;w8!d zj|T^b)?7QtU=d6#GCBcFw1RKF#d?yr>i3msnnZPe7#~N&pa%s@k{6GJv_HdKY?II% z*5@L+>gxw^wQAqvZz3ho-Whtjvp>$F^@B7CU2y{&EJDqcRT72wY)nwx!<#UQ!Yd62 zNV#WqoS>3J_|WqdQ2|(Uk#b?rM7{+LB2{Nge5x4#p-PP}lz!&>)whG*Rap*DUP6^t z?1*7B=W@SKAP_J=C*S#hV$a-Yt_jK=6&jllCqo;4g7I=WKEsx-2iB5zm3OIb7W|lB?N4PpEjR5xT>tRt)CHhbJmsda*+nNf z+1Pn0x3VhWE{*vUiL*82pMZ`?4=N25sJOkDTFlFfqw;>NFF7TF@@H@=?yZ}J7FyWE zdAnbYl)z+LGIsABe&0nLCvxQ>{Y=t}Nh*8f?t$5oWjGvPA@NPk-6Z0^we{w9L>sb^Ns!TEFC#+PPSxE4t3!>t58am%OFn{Fk?a5w#0;*v#Wp84d z11JkUO+5_r+_%u$gAy=v{7|X_HZ0M?>{iAd)2fbtC}7TE==rOVaC0nu{rnZl*9 zy0DNCg8E)m{{=aY3J9v-+bf#1sfDMkOJVi<0b2W@&Zgwmk|vimD!xWaj={fVkv`^| zab`x#Yw2SHS`thq(c!11)xXmQWP^N-%$CBlmtKU*hUCAMf;?Hs2z*NhWlP!o`=Ji* z)j0=MI~LY;9RtEmILw=wdKRORlqE}NC4Gdyf**-Jh=ceaAQCFX4H^w5$Wq1z*VW$W zhKXczKuV9F|v~ZX(a<(Czsy@^^fe(~Wdn zr>dhhVBMgIqE=DpO;@Gp9^LdxDF&+JJi)K0O48#T_mAQ*F3VmB6>ZEcU!Od{y;xtr zlGi(H%G7D}1GDJQVCIR|7N&?_HMU~48zHq_PvM**(%4*t&BSvo@Tb66phW+mk?tOU z`06D1ZDKkOb{$SpyvEytbX?yz3ME{mCH>J-l?&dWwIap2QZbqrMFYl-uq~s1KzEM> z#^{g%p}u55^7r2IeV1ymn?VD~-q)H35oxE=V`Bv&*Q6R%E^rZj4=j6fh}MohAc0L3 zl&S54(Hagbe=fjh&SR>mCz=Kom$DWz2&^FmT; zwAJPL4b47a_<#?3x|ug>d*J7}SqgLQ?2`EsNr&;csA;gBkLvLP>E(S#HquQDp<7t` z1w=!S!6ICbguSFFnuCp`tPc}wkV40xX_8g5yT@YOMncuF-K2#8V_j;}PK8{jzHF>H zR9O63z2--TUZLf~BI+34S6m86_Qq8Nr+*29z4pGT0hBkjlhf{RcjR@24r8MH&#E2V zs#R?@4w7ijgeGw1`KPkV^0atQF>OBB{)duFD|aNQ-Wfc(R;VRl#?!55Z`p0}xeP1~ zfAACUiX6xyakD@-EMPR=GO;se0sxX*umD=F*CPDgcTJR*c^NII#rqyKUcT=?$m557 zSVmE8hGAE)SOiC*&(3GkLrtZu$pok2Z-A}c9H|=H7g|-WtA1?9lE~+8lkqg^1|O{m z{~^gDg*>EI+5i>TMz&b5d@vcH7$r0VcT=1X(vMo82c(|!jFu@Tuk7(UviA}c)=Au( z%~A6_a1TJ_L{f2HiWz7db7Xfd0Q$b+xhU-nXi#C=$;Yi7{)8IY9K{c_RaVtVm?%EB zcz`X7DQ)!5wtuY0r8T)VY^kyNP{76-yVpr6wX#P~2JbV&fX3@rwU$Qq<+9gxWXzx@ z*8n<6VrtN8_#Tr8Ng2s|b{0z#DA~O#?Y`{WB=@aXv~j{4Ti@hQ1J3dy_)fUW)-xi(*y( zWxNl9YAN4`%5)@oA1aQ=3C__p|JLj5pw-ef#HL6wfeQzDQVai0Vf+mzCmA3-lSG5hj&Ocsq@(OY$t&5GlD#*%izbYsw?7ngor)UL@4x^;9VONh9n%<7Z88%mq(G=xtH?lCxIsz zw2aALi-)#R>T31Pi+2W`I2K(l65ZrWk(ZeQO_*7-AWMC?>6`y00>Cg*1d2l{w;Q0` zIC~E(Jk|u)orQ9sEC2KCaU#g2$mvfNH(ElOOI_wzt$C$o<28(uove-x`97x5PvAmQZMTb0)s)Zl{w@p zPD7VyV(^8r`l|@ySb>d^3%++UL;v_ud&iD7u5p?PKh(ra&Ub%R^_4xa+~T~xUQT(& zQh@p0$a2q@#>2ir7Xf0essvL&ZA5|Xfz|ee3zx=h$J4MDHG^Xd(83_K3)iH@Wfbm5 zfYBwSLGKJ|bLIKqfp2`XicCsHR1HEVi$$@&+(Tew@C9gpTVLnmDnm_kqpum#jE>;% zQg2+t({%vGu{r|RVQx_Y!UrnG-e}CcDfDx`RRm<&zyZf1cfzSMrDk4_uP#zc%B42Y zxLVD|jugYEsgt_)Y?KsHZ6)wsz_;ZN9>kuSrw;xLbEk(uqbLVZ#3kqU8k z2beE|Al8%l$MDz(1s_Z^fdcLS?|tRRP|)_Soy^ zQby_fjxpO~C;QCRB&%?^PoE%14li7El86q-(dwORcMC^a)i^UN1Zg=v+kOw396e-y z&rCBkIrxgzT&`g@1jdb-mRVSyYKuEuyO#+CpL2j`Rpnk)r9`Fo;3Rr!Ahh)MQ%t^` zgt?2!cGtV50WnuDvl~xvXcvpAr2NNpM(Yo&GIv~S^%p_Q=0AI%aqbE$K~c7YyBK88 zFvunq!;{g&?5I%4SDmg&9}Y^-m2>)Q1OK)lr0|2mSUU>+Q}@q~2o{SY zc2&+|;K;J}Jvvd88vKO|)dxCSb|AGc)L%+q1cr{HNJSqJMI7^6$NJZ1%FB ztJR`oi}pQs2_5wkGlqj(_LpBDDKSsxDME5`g+k5(?MVq6e>^Hnlc>5>4 zGrC|IOnDqi(pLl}^(si3l01n)UdD7-Oszl0(OSUb?UTl2{K`bn5_lk<-#v-b5W#sMjhUpVtc zV0_)EamnK3S$=&N95FK*4&B>xyxgFDz9s!H5-!+gZ=)m7Jau~=msnK6QbW1pLM1nv zUNj+rMmr!=uUnQ9{P>8Jf(naJqR4-jLvpFEqOGo%aUfa&)136Y2k2k>%D_I9tP z_w^`q{IRz;XKyM$(@0E#r-f>A7`{)h{1t&GSoYO!mQI3PU2{W%@Keo@4nM|Yf4Be2&m9hGp_E$K`E#0hDb>GDfEO8m^psht3tl8|L*O{`>YvlI`bsM| z53XONwktQ==D8*Hp5*kJX0`rO`^$fN;;`I?!F*ew^9q=3uzjgvHDe6eZCq%kdE}fX zpxTYQcU%;1zAzK|lY}SGN`t$g(e*X&BnVAPy&CTZW{+;6)Kk9pjYnYSQb%-^$`UrN-MP@YHq2Tu)u$Jn)P`;8GXs}3`t z|B!U6oZI!dYxt!+C784D*0Q*t^^TW7q01}WQgy(s!NrKCQS=Aqnr9Czm|`WpXZC5k zWw`?2F2zl_Vu2~n@ohhQ7AB#HP=%kjxcpO)!cED7Qd*`#XZZeetO(UBzl8?Vg$Ji6 zUG}vp#d)wLrYcvWbFb(XZTOr?49*$9MQ4Ryd|nyEID0Y);jgx_<__-|OO{S%zfi$g zvdgc%ZS=eNgn-CChKgyR@7!BzomI1{3*)cjwrMA4!1E{{a$113I+10e3W$BeerBd3 z`mnZV{Awzm7!5ygo8{k3ln^~g#9$~`#{9+7qMYx+78m&xez&p1dQ-=lm<@k-Fr@h7 zIPN%;3dcn!_XmXzn4$a(cDN(y3%F17m45J_quA6gq-Bof371Ix@{QM#S+l}71+SGu z*mc5KQ5@witgXV8~uU7(N#$DXZ_*8lId49PMZ`CtN}@jvUg^k!&hv z*0zm~jAV7roL)Ztd_w?p5x#{SAY-rx`D|J&<0r(SN(tC2IT8>2fzABK|1kTOI&p&C zOM=}6e#S2~V2bcu3%*N78D=vL{u2k{n?MUNYScb2Cjo0&V=CBZ<+eDFAevL~`26}w zl16O>)g-i0;wGJOs*=pXc13lOxGa*F3)@ng5&{k9dDFX@`a)HBHqw zy!a05utDmIkIxXaub8aNf`5sumaZrf^Qe7)_l*VICKNa~{w~tKVl)cXZ3ttRUF_n8 zgFf<$9#M`#uyMv7QhnpaD3=qfASa>q2cF#dLyBsS$lb=NF8ofNT|QAv#+3%f&!zar zUc%m%-mP#sNIf*{KZvsDPk7N{n(okAZ{)@5NTl+`85zM$Zou9Jye8H$O#Wm0WGS#i zE;kbsGxP&Vr|5!J{$!^Nk=J?$w2-5)BB1DSZp!6eWcKmfdmX)K&`2)C{q6%dOZp<- z&Oqb9ougPch&a=Bn3b$Ly&BqpKRPr`T6RAivk_(niZk-f6=6|%aueCeaI%~)_Oke*RxNH z#*MfnLk~Y-(@6RYUv1&Ee{d?qXFvU6C|hZ^+keECq`Iua!g$G1rUeGj;Pa0u zlato6#%G`P&DP);x=yBG2&8FJ+uMKp^3ioHHA?EmyV@sG$f9Zwm!O?%4Q_$;5nV+n zxN7L0cPgGijp{l|I}LfkfI9+U`KtQ5$G7NAN0Fg6HL>^zvwUE*4&6z7l#oO5L3ifFf1BwdcGpA%?QXP(ORL z*c<~s7mB6xBruZg2)yS&T+>*%dd1!0iOL;c0Dp zXO<4JfuUeulH^Z0KM7?Zyc*nOXh`YzeF5-eLtWYefKk)dj-pFthy-{%52L=xOq-Zd%*_3VgZvxv!puQ%>G`)-!^Jx6+9f zo&oeJETvffXV#`d0CH$)?d5>N80Z~%z7^$xu^?`B!uErw~X{(U1 zyS7J-*Z=Es_$lmaI@vfp_#(RrEY9yEmD2x7D=XQ^x~733JFaIn1zL%L7<=Q}*9A2F zd0c}`4!xOqA2O>efr^m?dTKqwr4~RslcWwB`1Y1&%>Tz``@`+@VITCIm1Ct_;&eW? z9eTlH-`0SE*fBAk&@DKgdU=(cCV{Ql3Wt+(@duE3!A{BG{(S4Hq-=LYu;@Er!l#900ppPD*y*#JB)xc4%H7C($)h@voT_1hI=2 zxIV?qh-figF?xQD;YA;vVh!%BB6;iOsjL(99EaLsyd9p70XAfFLPb<5F!M(P-m+~qj7)vyJ^1RLe z!4gBY%`tzl?$&t4_X;qUh~K?ftxA!YTCJnE(g0%#=_~isg);D_0#W~qE=@b41sVsi zIQ>>jB{I^A4wk^|I17JO0W3Z|L2^tOsT+*70B}2ZNpLyF_P>w!QlE@^w#%_4nUiv*pngpLx5K`5ks}&q3oBYNZ;QydHczrrTu6P=4o@XV@@?7u| zHwt=<^1;s>2=16z$cOUUIdo)0bG%MIt3LaI$T3Mr2(tY0?7@J)5pKsXZb+WAm;#=C zl5r1z-(P6ADKX1s7s9G|R14(3YXun9!s}W7MT^f{}EmeraiWBA96PPdkg; zg&Z#v>KX1Tk&|EQy>KU||JOF>0J{%m`8cM>tI1Hwsk^*F_1sDnB>5%9E6Wft5KiCJ zB{Tte*}{$aQ~mlON$AuY5v+RU09aGHetHJw3+un8nZnCrD*`f958D zwoh9V>bsUTp$Rr5+vq$0qCHG64M5DOsVczK^eW_xDC%J-!z67+;CU59_lF>Cav@eX zI0_W>_saV85IBdNWsLt0;|&#>Qwqaj)e7o1*UY@Ar9bxi)%(Tb-C)!Fj#AkchWhA?=??#xgG>Kn zw2KlSCp_8sRn7MHM`=MFDnDesTSOK0X2WtL=;u2N()lO-!7SgWJx$CV=xe0ndP@xK z>*-Ma9mJkYd%qimfM33%F}$yAVz!R%%~&a%;A5#Ppmo0>3J$+_%0@M@LLBfB)bL$I zhmVsq&-By?PGVqhpE*glvYPkqJM8dL_)fe?(S|$rIGFq>F#bG zO1kSoLb^e^5hRuFkdp3(_u$O@X2yBnd*6HKAO3ipbN1P_*81%4TDuq&2?&B3?d{<3 zU6%So#RS7F>-P{sRiuxN2zp<8ALih0X0mqaJ_3jEi5l#QBS{=#eDEc!*vuBA#tXWw zFJF+kQT`3+vdPRY7<<-+V~&EG-@PCR84l|9GMb?4kIA>V$g6hWu#VmQT27n>rXA-r=@=@t8-WC-lP>$G2dFtG(TB(C#;D^s`qdS9uLrqf^ z=PB4)lAyi3<+SnS`~W9`v+9w3nrr4zecLDaHKZXp^!to-EEnBg$ZoeR90ZSYMF71it6uiN{cL$Ki_N{^vox*fz zNWosAJNwi7eyw?6X5zOLrE-ilgG{-xLp6Y~UIc7zABLnU%0kh>HrV-vO_|A{fq1>CKw7U0XA(C zV+SmR40N_Pk%h%`V2+O^+_T4+0;azhccj+<3r##C5Syb0#zSrV<<=T=1Yqod`HwXI z+7jS@IUNAd(OhAqW`P0z8fs^51%C^b$U;p@ft&!`BtwX#55d3=B!Zub{FNN&4&tN_ zB-=XqLEOAVNuPdw+G!^bJMb zz~uWirJmldJ28Z}ts~Bs5z$TmtEX$Z#a@*818P$!08X0wH|O-=0Dr^nowKl|i16Gc z)D2;P$tn>JsV;&A=vU$FodoIQf$s2A7YPCEINI8_mwLgkPaA%*HHPvFJOYyl2AD+Q zVBZ$^0An3%S=qOz7>ZCPaqkqGB01ZVXu$}?H5?K-6WFNV26xP@1k;Ml(XJ>F-^j}4 zK0aW`UcR5OSp1=E)Ao@ypM#f4R`m?_2`Zjyyw+F{F5#b>uE;+8jt!-FhT2j%vjX-f zxZCs0(Qad^I(nIc=ZlGCqe13;0MH^$MG9L5t7Bor8>9tE-0!sVUPf4TEmyFtc4ruW{O|5 zK;C2Dzk96Z%P`n4a7+x)t{u zf^TTzDLc-PoBOPcVaH`# zOQrO__U_EUCpt0n7_{}Sfx6gTZ!xt0gWgfjE;~I=Vi01yD|o)%@g3Owss7xW1Ra-~ zW&`$PpafL8bvk@#yR2PDKgML8LtJbI0g%-L9BLpm_=4h{fwfO%`%UwAe*Ps|m<1@@ zTyt>H?V0wXCA(U|M9fij8IViyyk~75$KKkbq|tdFxz}9wJU1F+^XP zdn8R2m%XtsMDznDqID|_jv+64x99d(G8JQr@M7eLeUhvvW4V|Kyk55+!KsJ!RyMv5;kT=~4quiK+093hC6 z!nTBx=%7#_u8Of?&2xW30anCZo}3C^g_ft#XyCbwMH$n$717nk@M0Pc-AY}>_A#zE z@f>yW)%L=QvAFSO8Mc5pXp$LBa4wdje-qQY7TnwQB^p!{Qv(usjdAXJg_W!2YG1!I zVHNWy{5yfj*30aNT-G1pF{093*_s+;&2ncP^h(Uai)i;fm0Vd(zhY|TPrK*FNAE)v z$pZyovo^Xs{6xImSNnWg9g{2Bc8)<3LZW!kp&x7xW;eH~(4*yR7m(BRcI4i`#VgT`+ zDvq=y_taTsH(&P@wNAwgnWm`_z&GM7yC)d7zF%RLBH96)FSI$Mx4YYRoK7Jy=UZ}k z%}=15(>;4)OIelAcD$*K-u)A8>BJ2u0YxME3K%5pq$Jg4iNczisv1$n%S zzROjp-|OQvN{{u%!!>T6t;U!v(`uhSy>KHk;fZHU9ei?y92~yUmhd)MWdj zu?~vyVjPMiCG10gNe5jIwvKE{PS3nO zT2yY~y#UNhix3b|x&D3JGn9)Hu`i|3v<>(lFvXWiF6N$P@U4V|MY0^#vIgqzPnlbQ zx4$?(81;l3Nf|0GSx`*L=_dw*ria(M+t*GoQ%-gZTHE||P-Ai_nnLjcMLtR%s|-9J zNEzgeXKDP5`i-Yva{Mj6G;m|#f-7wkj z3?BoQGX?5XTqe-?0wubF(DgA04CFdU-wqGMiKbH)O*%54`Zm< zf^gAzLYfa=KSi^bBE8A)x$2&KfX{HT9#&OM4ytLZSEsQPOL4W`2Hht#tlwuN=ateo{>xTRbizk=`#3$HDX@mBSfEW%2CO8OU(kGc#$)Ol~Skq zc^`D6s5r;&HL*P47!!qLF9h^5u6P(YU z{CtLE9%(DBJou5@@e{R2eHDSrRZLKLQe(gMi97vv!^=8s$&PW-%ZF@`nBvAhRGTSX z;GI{b&ukSr$Va2C)&uLww|(`GVG(}v<`k%&#%4<01t)sHCJ2vm+t~$Lgh}?bC-?=CAUR<}A2L`~bQr^;K{a|0BjKw3a5>mHS8vAc3@hPZmkmWV|A zX7n2vOWZL+@xB(}Xs-#ctp1=shjLJC{!R__lOn6HG^=eJ1&5@8k!XGES-qoS9?-p^ z$y)*j`y?Gf`Hn0t)&k}w6Vbw-sV#`67}M=WyD0dQgd85APe%tqvqMWQZW|cl!Q55V z$N^4CM#Z-l(H&oC&%?fh-CD_%x8JuRb$dX5IE;>SnT092z}PQ(oZZJ&VuM> z4zPpBe3$yaU;3$Hih613!20Kkwuvd4U~hea&#InGK2nLTtu~OH@1`>b(!6W*ouSlg4qxG`+aA{liO{gAym-i- zM^JT5{6O3%{V`%$9`M$MV2q!#nf`Tlt``G*KdmyTfJ)5JVR;>=-Zk*-%3%bBLjN#h zwQ<5ULT1B6&i_r-3ONswcisl~Q0*Zin~^|y6SL&9^z*gMyW=BiNbkzEsFJfUtv#v+ zUO1FUO%U_2F8;DR7~-hfJDbCqG3yj=atUdNBE437ZX&>b?3%jARO>*mb^nLynfe|^f?D}VoJZ)AP`{VfcNb`;a0DwAX~rxLC8q<>KU9sn)A~n}>CQTJ@^49X|OS(<{@1Y|I8kh!mSy3HO9 zYuUzxB^=n3c!&B-$Sh^*tfL0qO3p6a-4&Hdq2EX91!_#0js>H{FjaKmUq)Qb7zQX~ zZ1h&B6!BXkYV)Rxw1cA0x?T;im=0{njms7qt?ua-spvklH40#{b)dFrw(7kT+}o}) zgp||GkbShnYmYj5z42a)rT^V=tckdQc*S9Dz-eyz(RrPu=reC+<)VR4s^c`vYr=w9 z8)EihXIat1hZIm|a?2?xm%A65DODbn^tyrv!z z=*32+IkMkUkP(`|I29;d#dZ{}e6=rMmK`FV+%yP#esW6-!i>1Zw|k)Gd>-7!J3E1=&~j*6zM5vDkR(}%>RfyxS6#4MC3 z-!nz+BDC~gAbQFKeMc^=Jd$xuU5Z2=b?b5-f8OJL(6@-T+`{j>DtoaM4el|wa?TEA zNLJ#WA5>xPv%{8`IWVKd`T?Yc1dnzzkB<;xO4B)!0Zt>$bg8Gj3Qj!|Zd5N2XHxLQC1av0vD(n%fORm+hgz+uTV zaS9cnI#XW~1)G7`!JCCF;`i8`n%ke19)yJtGBzzxfJMyApope9jQ^l2_u}SeFoxW0 zS*NNfe@5_O%AJJ$>+b6ckpn^4U_Yo+V@eZpDiRvZBI0s42L8mmvYbeR2UQw=y7w~T zA|FMmrsr2ESQLUabU%Nfkr7!l%gHFuinGw5XrmbrP-)zt3azdvq*whE{uTw~)L3ks zdfdoJ*5|mMbK@CHq^BGnOuL)d#{#syuP9M29cX)|Jz2?r+WvIHfY2wqS}H%9SLt<) zsQ!6W+>%VS3bvBA1@U{qs!Ma-5m9p4tP$#gv^1*!8ZohNr<(mt4w7dabup46Bd#Fe zv9hiStNz2T|H=(Ma(+6%3d&#;hr-w3L_|RH5$i5c$$h>uX#~kW9AfxA4X&v0D? zd4~1v)EzXpGSr~D({>mj_s&d$4PFA6dI9!%8vkyQA8djglm!zAgeGsKI;vvcVopWr z#QFnVq=@t;{5-U75mRQS9`znCajQ)=VKi|}aVGO1WYT3*yxQu-TF>bZ|GyiJ4g`>s-gMgTL_`LoiFP}X_d%^p=0R^iw7D9=DNHSgXt{-vfQkh$f_FS z3_L)aB3}&;3IPLnIvQ#E`^YMIz!kMpr(N)(DZylP9);CyzauN@I+2cul!4I7Y{NHD z(!zdw;q~4#qUQ~UwjEvCz4QewuoXmJQ3K!4xC=}i#*?27OyS_4*p4SDzs+Dae^w?? zTO(G0^=+OV6XDn=8>EugNZYoZYBbdr!_NJJYvbM|FNa?mBO8K)$t1d;7^w|gB58>g(l`!)SI@4hp}<|q${vAqnvf#XY* zyQ-D(rA5?g9{!QEV^-^rx1Qe5`8Z+hFPJ6n_e~8Hv}Re{z0JeWjO>kFQKIi~L*>W1 z8-$QLzM!@$w#S{MqA9X}X{99X-786R>7IFuWUeU6$^;pjEZd!Tn4D)DtZ-!$C1JW% z3Nli;`?{a$C$h>5m)tPib#V(6m|=k~*qHSs?&w`?gB8RKRc6V)AQOu#eI?#M2m#Ba4J4*>G8v%(QJu7=TlHUO#>r0eXt=#N(#^6Wy_+P=5z+2U1hb zxWkP(RttD=uyhq}DbB2TVlH9_8+myOkn^_$_&zrK{mqjI3mDQ#HeR!5Eg*${#nT^| z>nti!`~xz*@%sg0#;}z7E=9^t;2QCMhE`$=pjHmUnKsFAzwOFLG-6rT$CPn#5jF}W z@5z7*cs!<6Z<@y@uxJt8t9!xi+JT6QYqav-1g3SaY-`T?W0zNfOcQTD zgU+RqI&xg)y-t6;QjfL>1+BS<>j+Tb_U5^tI?3%9}*V&aWUt?XQ zL$Nd^3Sz+7028UpMg$`*GCiPkxW;f|f#(CCVKz-ubgzI;E}xl@c9YpTNmLYmM0l)D zC7U_947(tW$pPkCL^)+kPU5t#Rb-H&N%}yBz|Jq6mbXnlf~%tYGxCQyy>m*G<4sbE z#Wd=q^OA!*TC8~>!2_8AIA2}g2wXHj*>@#JM<9e0JDf=`})VTp-%C5;z8xm7dC1(T_Yszs4XZT#j$43ct@;jUPw&oU8IbmLXmxVP!qfx#WGV< z`HITV6n3<`W|tIS{xI^10zIb+qFVj1C7fZ62a#=1pszCi=-3jI-JHKRPZSE4MMUh$ zSb$y@^-#wlg#F43x-K@1SsM+SD$>CHN#C zz~XX+J998Q82(lUgJ3T|kV8@}rxlWkk>+OZmTqZ#qc~=T%?nwHvu|!!5MOP71KMoB z(REo}CZf9Mz>kFaTUhcAO&U!T!m`1L8;dbQ5)xbD$hF<#3(olGDcHU99fq67%NU>R zV0uXG0_Yvn;ar(1xcN@WGt_xrLZ+5y*p*N;AqdUSx(SgA7i80%=4I2Z_*yZlg%=kw z75on~Q*Oqm-SDO_zk7f%z4wrMK6ZwzXm`+x;4R`p-C7y3(NjxMw_3-?JddLxRNI@F z!6z0y^Vy-O_FZz-(0n^P=2H0HWXlZ?v?A8WE2SFdo(dSw;1OZA18m4WffXZMm0Pt> z)PsG9e*re942Wja`Bm-jfX8UYc(C~D#prs(u_y(i+|l0QDb6s*A$W4asM7NJk$|B0 zI0-XUVA_!pFHcsFaXU)n`>#DN^}h6+@>iIbo=07uz>=7rGyK4C$O%CWOz#1%PQKSa ze6l~v?q$Lz7$_=pMy8UIprJqKCSpeP8SQ%${0hi(CXp-M3tV@005Q&%ED{c=w9!Zx zWPpn-cKi2g1NyxSt)NKSpP^sU7w*sjxs}hC0?Hw;Xxy4JsIfyk?4#X;GAeqE!7Gj3 z1Sm~e;VCUE`9*r4?xts2NOTKkT*jZv)~JZUuXi)sk3FA}C>2e{s|Jb<8e50zbbfqu z(YiP3?OJ71$tE~=*moxwVz^4LN*f2C9olK|<$2`B)C9!(At9eGt&?;L8|8g64k@=G zlm$Pc|9&M^im&QB?=LZHbm(e%lT-H@D;Fm%RHXvYDV0u)Aq{0O_DLJ{={Q*64zof# zyGbyFY`J^kyg`IX=!CBLCNnkm*?Hb$CUMc+_59r_NPH_C%)8aJStd&lCd+Eae4Pv*jhuE^e=zoZv)1T%2%Tba3^q6G@3Bh!*rN9Naz|yDkn$*= zy7+%Hbng|}1y!p(FOSaza#VUzmQ}Gu^tTlt6cex`R3Ay+r4Xt3W(=0O%l9HA zIKXoUYYA0EB)R4GBTuujV$3c3>cXnM{#5ktor<^(iYQypd{J+D0CM%x<1$*{w5GfMsp&lZ@&sp-DP%^h(zeyM-J3W|`nD zuQhG>?LbUhZAWE>O`K#=eujmc>d7D;Pujo9q-ed-J%)gG#FIIboYanEOFSRzqSm^w}-p}cYC>> zT%|@1G#TPYa?cWaw?TQxKFBR9k-Bh@;4`Ao z^O*k3f$}0|OCfv)CwLN2u?;fd3g4`MxGRuS9EALNb+5p;O>EWieTsGz8lPP=<5 z8AG?Jo_)TUQTxe~Q9%5fY-b?atIlL9-fw#JOtFm9_tDEhY`jx9+~J=2`XT-q_H^$^ zywcbkY1Ogym~tjjf^67NE4@}Lx3)GC*!IW+^!Dd3Zz}E}`8I`u`xV<>PPla25jVTKhKmR7^7yk4G?#x=!nu54V7%AQol)5+TWDwa2@ zpM-}`oGvt8*=MVVLu5ltO}j|18Sgar(s~q%pU1!Izm0E|Ed5v)xN3)S# zTe5A7g!Lz@=||s+ds(sM0%7V+==T(({lFm-LOTMZ&c!$PoRm1Hl%e3`1^q@Rt{;pU z$2HCpPT%!_yJj)*a3E}Lth;K%C6B*`Fh|<->KP3OQEZ9otnOOIguvVs6?OM?v`mkp zNEl6~%r;I>;3Ak^2865PZB3&sziPa0R4Q*6Wjh|5+eM_LKkqoIryLW3vXSuU7?39t zyv5GT^k0hzQ5F!it-0pGo80&Rj6ewvhaBy*KHiq|nj7S<4E%e}h z<{Mb zuvm6CS9-R9MdX2ZJ-`3VvF(G5Os01|TAQsPR!w#9l>4Um*##W7o__uvj+^eo z^Z;hSi&eYdW%pt`v%)s=x3=7NaQ_jtVQ?9%pD~#x5;uyM zN4|dLI_AEK_;L~dW%_0u-QxB9Mr(99v*Gyb@&*RanKth&U6EnJQ)7>9EMS380{h%f ze|{5?ZKte5ChzkbwmBzPFcnwC8tF+9mT^VuEOSkTa2l)Z7vsLSgGU&3V){TmIE5h? z)5R*Uhu@MpXcB4qTtJEO){9Cqb5XSj>SwP~&g1B{kXDucb3QQG2)oEPo!OGnzycr5tn z!VOJ4+DVL^5RMO6hh55`>MXF&g}t4lV3=gK`{p7QQ>Rz@)S6EQ&+`TuMYQsR)bQEe zgLO7Df26syY}m^k)uLg%5K~XL*ga0|XUK!fo>D0<7`6R!PKjbEb+`KcYmVk4ZDwuE z%{+&LZHKSC?=StHv77_ql2d8 z*KBfKk!&Hd?QHL?KKg$QH8^sb4RJiCf8l)O{isoS&nU9F7}vt2YtzR4!1UN=uEx@R zCN9lfYkgs1q6@LlbxD>)@TJK~`kl^v58XT3glZ0WT2QeCu*$0s3GQXRpU!~OX@ppmv8Yt;6nME}GSqq>TTUcTyptq%Xj`#qaL^k zeuW=r<6p%M$vj}={Dr3Lt#@2kQQ%TOjfDMA7I8aw=#9r!$=TL#TG|^ z582#^@dLwuzbpH2yDg)LUq4D1>gx;N5!b1K*&zNol-BZCvj5P)LRnQ_No8{!hg3lU zcqCQ={_t0(Co&`*+4tKLAyr6w5(TE^sRdX)I)JHtS4Ub}NtLZx;2+v9m@)M#mGKXJ zTQ-mzBFZXn)DYe`2dz~GUMN4MR2R#aM$9V#XPA6YwL(uc@}J00Fa8N0#=GDyMG#!d zNij67U(G5e7UYeXaQFPsWO>R-O6e$Btp^@sFg9TFZv&ds2kh=D>nriQz%vuPo_ggD zClM3KiDRIPB^UauSN?)r3Qy3qSOLuP)B*tP0$V(bzgo97fJD1<;=lf@U1GvfPe`<{ zlWO`2iC#aMk!u!OIxGN*s*=9-`Rkc~eNGPi6B5l8Gy3(?UO@ObZU|KoG7rG)kk?en z|DKnAcmR%7jtZ172YOlIWPrWD--uLUJpm5+T zdZBd@8z>Z&5d-BIe;X+dN&x)gy~x%EFl^2b;6=4R`in}{-vEbz;pEqU$VC4h13%iQ zE(}JC`bAkV(1EXrfNR0Ckp`Xtld1h%0=fl|gf#vR_l{gU0=BD_7VtwN-hVpF*^b=Q zXeqUgX)8N}SO{%zW%J>36wlF;+{Q8_Q(SxAh^!Tm5Nlaw@lk_B75pjRU-)elkZ_w% z;yD-+1&mn~cO3S=JKqns2;irRliZl&MbP-VoQN@PdI*IFA;IcOeq*>UVeC55m7mHG zs^m0M25YV=PLUcf*_(&yY&^c7H-MsJ&OQOa1>S1 zoRo^n`yz5kzx8w-(9_#$i0v(YYGcEIGM7}1T_)c47F-*8L z!r9|S_D-)^KhTgrh`hFcUs0jo-$%@d#9x@z*lO%lFEySqnUD%5U*JIx7!%#<_2M&J z2~*r&2wKioc~&lP1oH<|R-CmWPij7wFnMz~OA>`n{I%n3UKfYc6hm|3!&R&+BXtC= z?G`2Uev`jisuzEM%zo5dQ}GXZ*!umLu2whU!X}_Ba81#Ym%+^J zY(crI$oArUe8GudLB*yuj%J67zRemq6P&)2Bj6r&{H4{Hqju;qVOb|UK~y99VdG-= zh)r)50eKTgZQ>DcEL*{g{%nCjh!AsgZ9=RC&kvd%m&GeWSimO4&6k!c1ndW!G1yVR ztxmBVCv<>}nrnKIXGqvcm^QHBEG}Z;5rI)FY4PV;)w-rXany=US2Y&WIc@EQN?+3Z zGjcl6Q%bmWj^xBLkB@cyEmqUFb0qWfAPh!qQyX94QSdNMCs-8>?;HF6K==%XL$nuJ ztt~3Q$@UgF+$v5%C}#(r!@7%AQ{zjNghW zifYhQ@N(>D^G_v3#WC384dHls*M%0_=F{kPgH$UPMMPb?XJQ?kR4F?aD{m*1Bj>E5 zSHj?m=mgMw2oXG(#H=gG?5rx{$voNY2_pEK)(qlr#@OpSj(mpom0NK&C!aA|<3!-T zDA8v%Gea{Rf$n^C!*mP20+)otkUK7`d&Pic`8tZPxx#op!|lp*bXB(5#%kD7^G=Pg zY+6T7gh;v()9)TVYz*Ukh%uYnMVP@n#?b_O7O_x^QDSNI@5FOAXLgr#ESbR0O^k)E z*bu8;7j`;ds>+?oxw$>REDz~6L1Z@D*Pkdc2VpJaib?}g|3kQ$Iz!bH%Z)z2@NxHz zfHkuFySanpw%&x}R)vx~s_4aw&}Wt1zT}Z?YmUQ2d`yrYa`loGlp5Ew-iq9P4b$CQ zSLO>X-gqUx&He{jN@H_5v}tv0f#ow(^r~LGU(|-B8rAAkhckw5Oh zxcX0KWc%T3*QyL=q!-h+Azv)$l91NLZ^7<*LL0bbCOk{kOWur^*KSnA|8M$8rJPGC zObMyplOdS{Ej0VH0X9f>4vyTiGDP6No$2r2zI}*|_4jbL#5CngEBU7({)cH4MuY=E z8aretzqS3xpQLgSiLi?QfShm+(+!A0{k}?-W(Hix`TX{<87pBkgj$uxl{Bp4uB&Ez zuMQ=l!^F7+rI+-MC4|&E9%r;ul4G`lD*q4|VocWd7(Hl1NMl=D@o-@?G)gIp_h)1J z?%xa)7A@uy6ssvDB;MgK@9I?2q}!$a5&&t`7y5<;I35mfqv80!mUTNmzSmpY=8`sa zmFrX?#S!>Z3c2vk@ZNxJ6{!HaVjWuH;cZuVVmHc%ok4_lL)7D)ZH^7M`Eco7F3X|z zhp3V}-M!}0{tY5C=P|GrS^1p0{R1qjs{lMpTBiOiZHYtt#yQvxd(VFVORvK5v3qa- z@rDMoz4u*s`Akh8d}6ODf(=10U0}4ihGhMm+N@a-Y1`W>>|?bM9$qd37wqBNv~2#w zQG0O~1t+gI;zJb!pL&ISbA#>ig*)IZn_Z~ZoF4Tz=OjP#iD0k=ZB^x1LioThWyy9J zuC6`*eA#{dQ-Kn!KHqDoI{{zIHRgBZj)Nbf-7yp9tbHg>37$jp47fI<=%OTYsBbfy zo;0s>7J}he6(4V(Hwm}0l93~kiiJ%K5?$)9e5j&G`YbQ@m6xZ4%aIbdT~2KO7ZJO@ z2o#NH-l)x2?~v+x5E;2*U2d?=A9%R?PjnHv}x)`C?HK8A>AOPTzRO;8Qj(t_y4pN%|I{_&l1l5PPr z9MQ7S>zV3L-0z!2JQNdY!PG{~>j8C<++S3;9Jl|JO%`tkcqtzm#Sdd>Ti?)a%Kwal zkpP_#A7+97jghSxBB^iwO<%3$a)y`VZg0#eN^Yv?#Np$;dKUkBaY|;+kAEs?@Xn+MSnsnlxA?fDXq$@`vZl&(#nh zU?eHd2{qm4?Hn-x*KV1N3}4?H^6vRf3(sne3rXJQd?hE?34V<>?y$84R}^pWkM5vl z6YW(q4ME7K7p?pT=(=mvA`=-MpXD;zw?xELG7#snH9daJep&Z`Az#m_dh7q*2WB_NWy z`xohgTn zhS8e5kzX>=8{nL0Y=u@6`%E_qYnOD4fu*Ea>6?*qR@gg5_8eqYiie~;R*qY*UdPjN zz_({18uiA(X%a0zQS$>X+dQreU6WFLD5@c<-8a?0>4+}U%47n#IJe3tj8=@X7j#RF zn?*^OeW3-#SsXMAgNQ~lpwRm%>Ludc@(=(BvbpB5`52k_p#MIUjQdfjpGjZ zrgN7esa1q(12n!rTA35Uvql+rv{>WQNcw@Jipo{z!P%{7&H~Bu#R)y!J-UK{WmWyyCe@>MlmOOZm)tI^BsBrx7 zNc*Pb@+1IqF?^f#4@>haru@M5)a_8ej!5DNuHnZ@sURz|ck(p%OLuMDR`+l`%CG+9 znp0E>kNs`b$Ly|Fw_6OctdohQY8zk01SU!c#p(khz%sD+#3;h*!x)oarArgAZ+<)* zIK)13fev`KXF!T+d99o3S;COaL+Ja9wz~$mjv=&9BdmDj(|Q7GUMAn{P=J}*CE6Fv z_N@MBfcp6Jm1BP{0>CW#Qeq1AxtDiUPL8Uyo)n^(gxPB3E>dfl@03_~1s9awty`-@04IsC(Mr*sr6T!VmyKn)p2MlP?Y@Z=u6-XV;ZuPzHZ)=u zhJTQ;QR=H@Op_E=#e{adLEQ1utqlx1c4i2{{_H;ZEef~$ue{}kl{sMQ8Zz5HJU0(7 zS_yjD-rC6}oNvXn-0h+0?zs|7 z!k7|dn|Z%}F`L=-fy0tzW&!r*hL`7Vz>t{$!K~)h8pqL}Ou7E6>d;}gCTrfqUQ$-L&_?sHhi&aTzorG9 zbe+;FXVt+lX3FL=+58-U9`iXR>h$SEd)YA7U1FJgH0y!XKzR891m62bxmCodes~yk z_>!Ib;4iG(Oxjas^bp3lOqAD5jkPcrM zYGnTYeW%L=b0mRf=*iry5D&sS$1npD5Zqt^<%;8f4~5rAfxIzAnDbwxwD*$5IL5}= zv5{UU0CKZBQC8-|4&S9Mw>2*ea74HIDAA8xWz0%h7?qL87_J5_AHLo?zuMRkX@usN#DmzUHBD(V zhYP76*2Vp5daRN}g(shUA*GUJHwcuw)J?#N>IgLkih7N7>I zPCPLklAu`C{m4~N(K^)YZ(sd~9(C5kZ8NgBn=Q*u#|bhwb|NoA`u7?} z&9z(8k*+i6N0D8v7ke-9;EbLNyu%GFJ2u7J17JsBuFWwyq+&S)as{Jg=5e=|i2yazdZA zc=UDKgoG$#48MsMznXil{_0u;?~?PLs>{0x(_+_jqy0|YX!hR7@GLmf#%|e(D7$x= z`N4o1%Tq?oF|RaM{J0H^ULJFcY4`FKvnwU`q1?#pBitmNGnEJ3s*C3rz&%*}tTfMn zvuxAl7TJ!;65sX98fqDo9Br4F#V_UZ(#W%*} zRI5tG(X}^BTl^0p7t^9YwBU-G0{6IG0zKEZ?&d!Y+7vSNM&cQU$;D)mBEhqpbCE;c_Ku#9l!9JY zuv@q`3yL>OtsWQ?vT15iPZka;K$!A(3wJaLTNFioGZ~iD5v8kl>fgPmOdr1+tN|rU z5idmoIW;};{z^b5DsI0{6JBQ^d0=pvPL+WlDLX`h`n_*#g|z~j*!Vit$V#U#^7v`8 zO_5%E))3+uX)J8ORdSKKA~uXl@sCj+JRR^;1HfIc|3Hra*xZkT0aA4n42ivU@)XEf zsG|^?;dR)AGi5YYW+elfTQJ4ZagxviV|~|8J%)r@PwKgQkY`=XQpw9zlhV{PY!90h zdPfqq*ZYic;Oz)(sB+R;`*jIwwP+?I-^Yh%gn}L~PYagU(rrIB^kDw)`T}Umq=N5# zl(GQp!#P79LAdY^#ZldI$r^^Z2Ih95e761B6^(Yg4?5#_U-9dc76^~y7-`r!LJ&tu zQjXldWT7@oYW57TEP9_#Y^?- znP)dQ9{JI9xEW6rI|1|m$1^IHTY6*3`t5fwbohNqgbSnhbMy0iStiD(`j`Zoz^V)u zUlo7GNriU;o@L^jIHLbN5~u;9s6q`OdtpFL%YsS`Ap3Yi-#g>lR9<_BitTQ(T)M z%-P{{9i2rqnGZ5biNNO-$ARsCZ%x8;;Au(0)N#nbF9{k@y%Zop_mh|3Gjv$Y^@Wtn zwc!x3E53AIHJi#-&Go-hDOP5zxtknd`MYQT^+cd$NdIWrY+KBFR*q>D9+2c9EF~p{ zB$bwy23&p|SWqAVNBO4UlhjjRydCF$>WhD>7Y3n#vHL25G4KNTWsv^qD{G!1BE&!g z7vS-F^3tk&W2z~gTzqPVz_TyD|Nh@|bf1WLgJj~QM|@jY(9iQA`}b(W=+Rf zjuZ{qo6X|?<+~%OL0wygRp+oz)-RGBv`M{FA|$|KrAx0}51pr%2iB+wTS#O)rMP3X zc=f)O9_r-S!;ua@wkk^BXc5mzMQ&gy0Wg@=MrV932YtKKwnvMuo9`5y#@`JLr3O4D z^t>Jz=l^%Rfjig8p6ETb#Xy7i_$(@HEBkZAh&LFrk%%G5w)ilkj)CG)aWo*TsAV|r z7ArhL?{+M?MZ{Cw*sh`BEmaf!Mz5AEF(4rXU8l+{3Uj+SBMx^3Xapg@Qv#zVZR(EV zM^&I|)<^F5EdO~i_pcWVi<2Q?#j@zxr-F~Qo;dxVWPYUZJUBIdv}~}$4iKyBp-2Ns zb#ZZ0*bIqn69Wys0Ly%ZD@**xnFIxN+_HC1`wO|%`|iS`DKH$KhKrc{J*X$*Pj^5# zoK#^`d>ngPq|(|K>5U!t=e^A*p^AN$n8hY8AD9QAp*fx?^#lMr0q|#!9 z?aQ#sh9jn03?(+I{52PM#li=(OIkK`#JR|xtEyH-t<_X#$P3SrzP#)tqmX=ZwRk&+ zbMigxsL;`&=x=!kK<$~%U2Q)4W4w+!YrtJvIW&3=yNDg7mWpYx#Zn3|Az0r4_Tus37UJ?D{B=K)5Q%^ew9$H+-r1&my`+={E$vTL zKM7Qo6>O7^c%^r-X>qhQA43XY&dzB?fUDj%cj=?Eg{bmGf^8kVDyXe#hcp3yFNART z&+^W2kOtq(7GUQ>n=%;`>J)YO+g)D4T@vNxXJP{7IMAv8ntK!>!l_u|ME{GVa>$jE zm-1kiv)cB4zt_VG$K9BvdJYg>x>>NPlc;08;9c(Y|C0Fry>>#&KL&SvtF=-u30$5a#US+G5K zEd}f&r?Y4g-60WrpG0W*82B5P`LY=`9!^VdFtJcjzf;GQk)wfb7Qv$Y|HzOx_q-#t zBrixe;~7Wvtl})^{TA-5axr7lxxn^AzL;6;uKwP)#YM9-P|n2=?z80-7}TjHjULKv zQq{!#8*n9Yuh3ln!Jh%SY|uXPi#Ml|K8ww_R;wOHk?g*#L0hY{&ZyCau6;?4j^iTu z@uFGJ?Cak{c!i{r0#bnT&+91E=5$L`{$IcUrIm(vpk-1#lfG6n6oi!aCjs`&`;3gp z4Z5kdHxqC;)205;vutLz+cDdn4xx5m-?yjeUvF)+S8^W*!2W8q-UIcwE?s_LnlH8t|8UX{sh_Rqoge~;0)ZvL(aBNlL&YeUm` zM8zBu0Jk8^wPD;eG{BTts7F9?@rl6QB`RgfIjTAm8GN){EbG!jE_sqdhyZZt@dMt6 z-oMhBF`C!?X)Yh_x3k5gQQxr={><#OyUWJu&fC<3m|PzgbV%>tDU|o+FVk;_W=elI zij)qsWYVqbhG#c4**~IauYXO#bnExh)Sb@^?!^y7Ao@NZ7cOhBedU2e=8Mk)YX?FXgsNCP*InDkfEEAM8Hm|<093k~R;4r>r zyu=jBpRboied%>^!En*=Tfmjg2RD>n-z7GYU|0N+kPsD88RC49D(d|nlZ)J6G`sgf z`tgPLgW&JkY9}W6L?5}i-)?=^Yw$X|Ggt2}nRPQ)NE*AouVr|0K)q#m(`mts%lr2s z9#g!co%!ZV*&%@aAU#_!d!Su>gMmS2_Kb<*vO`=pNoOG=)y95@J}Ttg^z6#{3A!0u zD@G^o7eYN2F1YY(;>V94-wr7EU#gHhFV|h{GFjWM8K=l(uE#+`ZH%sf?H%-P4UHdJ zkR|%jc}$qcF?|Nyiy^+!Cdheu31(M7dFS`nzs(@vx&cQ6yEO;M2tLO%e>;6=v**n( z?^AZ0GZi}*QBoN#YE#0%W$}&bcBF172O)=`qKa~B{hI0C+gt4eG^$S5LH+ZI|L|lU zW)aWsTP%|bw%i>!bD%u#Q*M2{YpQ!Wd9P=dDbpflt8>ds>DPph*Zlo)y6eii!jx?@ z;{onf%UJlTZui;KhML+ts>RoP!wfr5JHJbvmAX$-@!n$`W`LKsE}>I&_G)&YYMla^ zKyZVpkctGQ2Ct(8a3u1#I7@lsi%e^cy_jkZ4To#TWnGqp#r#f8F5{l?GneQ_q0Xkudoo+IA~?DFHdoyPA|^ifSyVY3!L^8M ziCTWc$*`Ii1&JlR5tNfprD@I%fb^Bec_M+KvS_rA1aMqd`4$3Pt@GLJz@Qn=X2a%z zy%larV9yJClBFrc$!cjl(FpIL zy^qYdt5AW#k!e4hgVkPG#_+Ws(Mvt^^{s@MMl^obSf4=9z^SQU8|)buw?;b&yBw*7 z(ei}d7fWmQ>;k!R5AoVvnodsZE~mxoJ{0k~BU5ztWT%VAVS9+7$O*lhF z{yeDp?f7Ik9XFbSFT?4K<)*!8kt}dtJYNVFDGBudi1EI6d&X4Yg%|{Hn&u^(Yu6MJ zOyl1V`;hNXmx$cFArkxvNa&YfdRZ#}-%6`lPpdgLxxAc?6}JRkX$9zraMsf`lw^Dw zKp=UtJ}=zbLT2b+r5Gkx^&}R*L9wA;MMFxD8eQBAQzqH?L( zj;5vEiuk>KeQfZ{MgOa^^OXkGCb=QbH4`Vlz1ZAFz#Rtakr$d=C@t#*O(%95<9VH) z_op^~w1t^mz5yDps+vgFIw!7UnvW)_>eB8L_EC>@HsLA^d< zt^4+3FJJh)gl*lL>Y*(uG1N=DuN)n%MM~{{t&zRn*;mV?*(fF_+z2ldU@vF(u0wAS%pNyICH4g;wg$z}>@@ zKIFdf=&kQmUFZkIv!S^%Q0avlXcu4d^M6za$#7MJ`6_2F{Oj_IktTuOFmz3~;#9X_ zduQQ_+z@b14y=%oLq5=o%@JjD|ZDr@qi z2zSBvFBLu{wsas_i;!7k6lDDGmK9cx#V@?{>fdc>u)pZ(qciH;%*eb`-|({Po{keT zJ(-#MuQW)=%pG%kw9quZ5#z?MX)SGT{e(1t<^$PrCNn3l1j9vF9s|x4cNqoa;uLJn z$!CrKh9Tsm+gam~>hmu>CD;p2$J_ea%vv6h0I=knM?~&joGS|lwCwo)P%sc6U@{`)lpHb+wI4g+ z(@VCcrl=R_aFF8!&V04}SDDq1ztTCZBG(7tyA-n?z2KbuOx9O^zRiXa0~NY^txEy@ zJNdq^g=8b{;e?{0WJ>{(*Gz$S!Er}4l#k3&)}mW2^koA>dAwYAIHSW%A<1s%n3jxJ z@y^qlTaiBJvB%?EJD&8Rcg$(i2CmwFAS!>u6P z7u%e{-5jBOJUb;#7)aoQyE+j&o%qEuRcL_|A!CCJCR z);(F2dE&k^JwWgYCb!`KGNuIt<9-h~)YiO?N9;#iBDZH2acfz7MUHo53=D{DT6t$1 zuq1Xt#6KfaE9i10d={>=uoTo>{=6GhX7*bxZF%tX$O9{hWD)VSI9+%MbDfwc=k(=? z7E@K^41a2*Vi?HbjC(R zfdk_%HRzh)Q5}#cV+Wn&-Y)dP(j>Y3updG%2Gm7-p~)ek{lBJLh@>bQDmoZ=Ezm+Q>T~ZV;2bN3bVSf~Ox0a}(+pKzVKHSLA9XBDhSA45@E$`6<`NTk_R|O;YMQP6$z=LZYEG2vj zsw~vkXX3Q0Y@Du83h2Eh{|@^c20gvGqmcX|D3_7xLzU};FhxdJ z*VOWV?qXG>xXLzj_kQAfAHVa^-(YuA?wPRlq}h{XKf%C2tGYEMppOW_Tk{n=PX!=% zr0b}uCCG_v@y#P2R+O+%m^-Cuja!Pw>YqeLi!G%dzPP7Ed9r-cTwtj4pCnY+eZiH9 z-hbz0{3`-ZM{_S_Yt*Wx?VmNfT3|(SSNp$z?O~Y>3mJRcYrdn^&GqU0vhvFLk%k+VAt-Awu^&S{t&`tILdPs){QVkDIRuFn62fC|Cd zLES11PjaLS%<&cvn4cdUu0Z3;6)ODcp3{D9of|haRb6o#8jd?EG53A=RoNDZ1-qdk z9EJ_ow|@8pr@_9z-o&vU`z;c~$;s|=iQ3Z)l(x3Daf(xYMW;iY_%*eEPB#tvN=*$v zy@j^@QlF&$qvF$hPMLYEB=^PjB(&YVbc`>U4b+CH;alufGO?Mb8FFTS7sfo|yuNj5 zD%;9yU2szIq6EEu_P1v%c_Sq8ibkS({+}i)i+lfcPx%JohF4J_bkRWDGj;)mZ~9I% zYNa$iT5|A`q<{5Ip_^dPjt$;^OtvA}91?QhSue(bNO*8!U_l>#lE6YHEu%W9KISgx zqIW)$5pCPxyxbKLS)ybTVdPAy+_kL1C!jgctwx|3$vwh}_E5r!daWP(KJwG2!J(m+M~J3)-XWa2I#;sd=f9{wWm-HA`GtFh zoPXBV!|z??$>5KgMr$U26vVscMm8CYQbGi*t7rqk*c-uZs# z^W+`_p*DtYan9}SZ4)JNsyN*BJQ#2IWGjgq^EUb`;- z{3mfnzORbL^4C+5-5QnS`4MR}%Gh3fF(vNu7HJ4Zjh%|%`mIOruKn}l7l$NsV*Oo% ztKZPw-wRTAopXf6tGPN(?opGoYkq4_5MzARR!cw{vdZ{<;O@UiCzbq`cH@>DwjePK z59h|Y>Ngr`4P5l$1`p<_ei!L9qJ!QVl2eGJ1qWc<#4tCY&1_Y{__EBX#p{Eje~w=R z0#;Ep%Nqnt=$8ucmZ9ZNHS5uJ0{v#wXx13cyfU*O+tosWvFv>$3ccROs-3Ssf3tnu zm_?Eq6>E{9^~YKs{d|HWtwGsRZUBhs8`brB(hzFf5b8@&zU=1tcrg>TBbc)H@ytz46$d^~2s&tD2c-h;a ztCz8XvH7o}^H4*nbBAq_5(t;PBg}7vBRMT?R@eQ`e9!$i{SR2r_DX?C1QSUf{MRCN zfJIh2k30ZIh!VhYyd^i#*@0@0%iRnmU&!_lFZXm3lduUZt}iy7zxjRKm<J%Q7zhYT?=L}_y;4;jH-TY`h?Dpc=AZ7>HN9dma()$45!B`Pm#PtkNK*bs z`+&c*zy2Z9A*&xIqj2e1C>%DO)8aA@Li7YY-(Eji&C##gbasPGNXoG{wlxhI`wFe` z#5N#+n`4sm1XgXAf32tS*0q_pyQLNvq}Z}9HpeC&2aYy@frgId{Nv}mcD8FD9Cjy- z!LoJ5Dd&gmdB?w+bG3!MkCkGa1i<83dsYHiLz*cK7YsU z4fR7n5rutz z#(uUC5R@;Z@%0a8eANJyBD$XLB4BYPUDc&VwRa-zI-9OcQ5mE z8~*0Jw?6ZaK$F*kYJka`X-jZyz?Ff#jmOTy%`KLGm1PftZ( zP^*vC>O&e!*$jF*S`A`Ry9jkW-}XxOvO}W%9pe_vtom#{to4UO^|{lfT0|E8#XMQb z_@;fg!@cy;Scn*3O*3k=R&gL4rqR(m#6-7SAh!#%zBn6Yxlc}|H;cz$6}Ln2h|H~8 zaQpEe-}xOA-nlrLig2w|TEk_kI2Icv9ReO|+@>G#t=0zR2SAs~OptqMJdB@5Wv$Al zgNz$2D~t+S(8V=fhazV8gk?qK=E9+E{iwN$99E&(xKslX{3d$DzAd$_W*RfQH=4bo zNC`e)tZ*ilS(jsga(P(ez8wo0t&@EQaUTz5FkpS2G?gWvM%j$iHnEq;eiRE{ z_NLda=2y{vvQ1%yz?tqcV&iqZcw#SXM-TRD9DA~G%u0I)7Wn$aORJC=cW~vZY|6 zUdu!YS23~>(c-Pfm>(0xBt?pm`CcrS5uRF>&z}#u`&6PtCASmJZ+z}((u!6?MV3%l z4=K>N^72W8jbLfQ5~G@Na?=L=qBqYLrfnTYUtpfdM_{Y_7>%+`Jm|H3_6gxWpANtM zJXWUhR-p{zC?U7$RM(xl39Xqh!z`>Mq+R&#G{<6I&ubnC@>Fe1uH2o|6IesjM`wW{ z>qc5`V@jc8XB|XoPwA@7s;1GC@XtL~>$#N)-)gC7mb)9>DJ80$F>hVZQ$)Y&tEz~I z=iVW28m4XJ8Q^a6q_=lF!+gV`)r^5?-vUSX^Nd)n=~JbNh&PClhjg^J+b;cLVZBRL zAcdPY*o4JD{Pk^d_5Qj+b)7*P`=zGK8vE!WICa8e3|<%D&u{n~fY3Lu-6Q{HG_Q=M z@w1;38P-dS7N~_&m7Mu`BNBlUcsdUauLnvquqrt-0ZS9#lJA>zF9m~oUzZc>x(aR- zK2_pNDdlB<7&4SN0fihUB1TJ&=jwRRlihvJg61!d#o3eR^vGrWhmW1g+`}X{7oT;( zDfM&(<`2^0al#pC6ura4v;wyCU5MFte%Z|3^LSZYKOTO>Zebc#Ek+c60|Eqq=aFf0sQuQ1vUc? z+6QIW(e%-0@R6F_knW>-DJ3O%=g%XEZgI^W`=pYBiu-)$0bX?o{iyPO z$(eb3Cq+o{ShzqiOT#$s>d64MTDqjqFt09PHE&>$*MS8F`<|5u%h%AyszK&5_4J+h zIQo2h+(o=pD{N_PNfWa)Rxk1x9}ee+(;SX%6-o`*LC}IQ3iAhN8FEkaD<}z(rDSP<$xW`-0SAt)R)nlDwnavwh@Kcq>4(JD71jsJO z-aAW?pWpX~G@JxN=N?#I7`azpv%=ON1jEKWnw9!??Z5c3RoF8w5U5<3en16UNpN(^ zaPfI1S-L;S9x<99udwI79^SS<3_@64s9y@`BxG367Ehr@tq_>Tq#;KZ`32>T^xA?p z^t`&kt)#i4#R38*g`ZJo$ zkitz=*vwi5oy?JN>h}Ko)LJIR4%h$+Q>iM!D=<=Ytk)Sk)~EP!=Y)=}qjszxRThgZ zInqPOh&zii+INnHE>x+K$Q2z9O?tRj4;c8Ch=|Vv_&{yOV;K;UcJc+TU64JJ*PpMN zqMyiXT6v+{JaqeINgawXoR-H>E|km(AJ4w#%6n}8wng_}A5QU`qs&muhcW62yJ82= zV|y3*HyySms}j>nc_My=Eq$RIKTu^5fz>FCsDv~v4M=MpPi=C(KtLEhQm3!Bp3rFk zhuRo;+Q9VeJ8yl2KDR0Kpm5b`KMek2SmT}z>|g(=b=R;v4v85TZ6q577FGE8D-_OD z@3re4y!nncKh^awZftgVcJL>q_gGEQRaS0i6;n4NswwjNB$3tjAMA>l6gKA6F!_q= zQ90i@`5wz#sqKz@p}e_11LsVz6-YR4bh%}R(@ZR9k2CtbNbOZuRcnz#V;p}phdd2M z_-Lt+fg3Bo@`~-a#wJH(f!0A{$V;M^_en}d53=&sE7oLvhqq@t#*GO`$7k{ItYnY@o<2jlc6|DqJ-UyNPZDjE3$tW_spe}tOWYG2+ z*;fM+3dUz|Kd+ZA8PLmioS+*m&@Hf@g4Y%PFivUSuu#g#=VIdn?DBRpIsMGZ{qkC) z^Qd{6z0!-uW&3c496NeX^UAgLwSM)=f1FTm%hYM(gviHdwV&xAt&q_2TIy{%7u03JNFL~UX1uhF zOfr}3(c&|}!8g{tRrmf+yXSCsZ$_PW;}f zE8Ok*u#u3hrGh<=#bN{KH2)=^5WahPzQ-OtEv}tS-MU7l!ZY!Qs)oVb2EM}$F z^Iwsd-<9s=*eC9Pd(?h}k!;f!6n8tzj-X{O=8m-+NQ(@eM=)@aYa^vQ?Dt`uFhi_P z)eEa%a*RytC+}rK^7Z+AvHiU*8A$hJ$`HDK_oK|azxj5NTKC0~?q>~Hn`LCKU#77N zcZWmageNTW8R`V1cyQ#k%)fs$!UpV#vwV0PuIC%Ihumoq#@yRQQ-PUN1Mu*?LuU1#+xy7CBY?qs;=9CUhth2Zi7_Uv!+3}tS&s4ts?DSAq4ee#8IcA%2Wd&|+ls&~y8va-=x*ZsQ9wr2FmK&E-V(QKR8X8Rl-TKYaXa*WW+= z*_n~gK4^P9>xB053lrvt=aZ(4=31DI!gQP(&-Z2dI4qJ>_^sRRp>FOlBO}(AukxyG zTTXB=Rp$>59!pEvRM7U^_BCSA2Z27`t2|p{K}noD62D9WS>@0oGV;sD*RXR5U6m+DyhLL?F6%`5Aa<9s}K-tMHF+58pIX8S}H(Zj32vjJv5aUM6CdJ&=nGE_@c$ zl-W|P1KR&$s(9k~30i3a&*fAGrx~zz*F5tYDSt)HYunge2`Gb)1G-FZCZgnql6aN+ zp@NZ<5iOeP3zwgnp+N~%mYj`kK4Xerf$6rfj(XfD>Ivlg5LPMg@uqAkHT%&3$0mfT zTU%d8xS#m`Q4TftHVZPJB3lC7JIbcyfzlpR7zV6&Sovk?r=j0v_Ix6BamMs>nk%7{ zJQH7(T=53m($DD(^ujgo@moWV^N@|>kHTRX z2hiFM{Y!_cQ2}k9W?vlzyMaMKT3X>5gk~{f|Hg@tzOZj{E~iMo z?15wJXeru^TC6mjl^jV+h(FPsF_iTc;xa8Rtu#LRjUXER8i)_`YmsJrgXKkSg4(!N z=Q&XbIxhNNZOG>HxoM@1O^@8~4imF?)ol8w1uI~8EfUugxX?(~Z=9%;E>|TIeeQXy z4>4?3Bx5Im^=`&rxQg@g#M6s>jTOBIqwLSShG=+U=Ys6IzWj6Rm?|0cR@4knAM?4# zm@aYJUi49FvyscNLr?YP+|EG|EI#olv9NwQ7}fXGmPEf?Gp(?>RL5tlLU-Z(M6=KP zkgrI{rclh=bUWOa>AYHcAUwICin|>E}^xS!7H*EWu@z`uoak~)ss@^HCznN61#P#UytFU*pYl=e|-NG~m z9!q&)#JYsP<_1v2D?QVtT4;Zka;zn-v8Gp^7fM7L;{4%13?{(XJR&#&Oc`hH{^9y} zY17r-o-N}JXvWZ5jps+7LWIn{(xd-qU zalG4quKJw-z~@3`$k%bNh`@kr8O*^!^?=2hd!{1tUlxZLFyr&;c$h0(1VnfHe}nJ5 z#v^yI+CF|t`G~BqnRZw9U!3z5_p@;S5gEEMamefj>8(dN(nHr+tAc|S|NofXcj~;3 z#&#(%;1AAc_ErC+TKB{NGI9YyB_@CE{WV~r#OZImJ@Y?g(s5ktWB3Ei-x=TmtLs*| zVlpM?ftCJWIz^&yDSHcweP_~;1w?`(J|6jNwSGU_FuybN_YsEUGRNbbt6M1*5&#vP z1u%^?Ww;G2fD|RJJrMsx3vd`Enf2fKcRC~#77v#xL%tfW{_gH?og1WkmB1i*Y@~wQ_d{-~ z7E!VMG02s2;RzBx56qw`Z79l}RHk2BU=7Uo9`=t~BV+B9{irXenu43N3+;@-cr#bJxDwwsRRkf9h& zo(25^>`=RQ{S*Ugrr?tzS$C9*O2p7O$kDpxjK=LbGC9%RN12w@Cr1RjCaQHfA!o#k z9a)}6g5esQ_hR#>^f)8z3hu2sm{p#|=pI&=*r3$7 z-h+`DZW)s)z4L>2=5T4b9EfH3PO~pgAnz%BE2R{)7=SqhKo8%~fT~`0)ZCB6!rL9$ z$G|frEH78aPUi8)ic~CV%#s32I0ujGv&c0YLi9ao;Ab>)LJz+tbm}*ndb>gM!;4u{ z8h3|AwLy-PdX3&y+BtwI>%7>m`#l2KB7C{S&yRt0%gc;)#yVdfOe_)Vwr4;DTAw=;-e8Ra!AY?n@fZ5#joaO$XQ(u^?3-d9R?Rp zp#ee{7pJSYGap>MsWcnA-gi-#o$BqFn+Uo+eA-4+Y15;q;_aT57`dHyGlxSXrGwAH z{DV%XTiMK-Ry4^5_HHEPB10ZEapqt|?Weg((Kq}hz{6%o1PkI3efcRkuE1nXFT{5A zmC?+Y#{P#!eQ~Sz7jQn!(4ZN+Fnf%LpVl*B^cb$25?j~dnWoA}xC=evE-4LN)`Vf~ zc$~}h{x%KtY~if(t-BTIc301Hy}Wbd()%|W>iKgpP=!UbZ=Rm zSIT>$WH91qE<{7ZYAHY|*z1f>x=!nmThf@~lY35|ni%Uo<;GxCFIb{2pdN z7o|dGxD2+Tc4JYImhta%w%s)8!*|jto9%t~`Q$2Uednv1O~x*<0Be=#3**9=T7p%C zMwOHpk-TjKTaIbf;>DqXnF>wxIT0gDHshI(;aa2P!K1(I6GeV`1&W^3L1%T9*GMkm zyMA$r3p3xhBKOPD*bj`CuPdgi-@JpuMwCNMY@+#bb%ZNVm1x=BLW>Iwm7VG>5n5?Q zsN>=+qp+rgVJR1_;G`CpkK?vW>}?>6RRNUF!nmqpt2_3$Ogw7N&nuUz{`}|(sWkxZ z?{%C8!sFCOU5+ZREXKc$#17?^jCd>|&ikzP+)SUbeqs!c@>6-G1;e#NjL-5p+Jvp%rC)GXj{QQFRe@txu2x zD{YJnGsM?WC^(Y_)kE_F2dPx3-2cr*401FM6{L-iL8S*o=QYQag7tRp(>(dP z3#{?N*mReQJ|q8l)Ias#3j~(>ZWHfZ7+~>F5%Z}?Nt5#h)ols(z?iUMki~shX4Gfp z4D0c|7q-lGt4I-E_6<39s=-HEa=*{gbCQqZkaNj&l`#uW7OwM{#4HKe3pt{=l8Fv6 zf-kMEr+ga1^`~DB)kka4zHOPGsrjuCs_j7qK7GQFxfL!qh_Tk)z^7(~xDT$dq~}0+ zh)-yXb8+vUnERy~3iHXH!qPp%TB;+~i8OgMxJ?+M(k7H(`NLA|WmwM5o5lHg84TX} zdfSkYTRj_J{boeWB6o&^7R1MFIbj7~jI1C!k<;8A!hc8D--jJdA<|)Y&MWjynh(CN z78hht(W_}LYZkIV2qMGJHG$p9*@KD=ctVEmE+1t1uig3i-9k{NP+z&>!L%54bp<%p zGK6~5vC4}>`k;wAV|tMaC*>}+_=S9hXmDmn(Xt201m2m*`JB3#AVPkcePt>*6OSrx znag~3{Nh)L4(7FkckG>RT_(4=;N6Y&6){&wthI~H`@#zA@Tsys@9ohKYW6MmhKI(q zp9<39gN7^lE`D1PH$3 z6(T|uHYBKuCv`eCUCh>GxO7Nj)2>n6i%?GMe+^lV`Th=B4l{w!QFZ;lL&x}2$t*o1 zd>fgf_p28i#3aL?Xm=sn3vzH?&(ze~Jb%5aU+b~d&2bhqX3;LjTrJ#aG%g&+{ zU-}D2OWirykk|*ryYsRZ()TKtXUd=uL)Yn|{ZANEeFGJty(r6wjm(}WIS0XDNcUbG z8XZBsk&%D*Hi^Ddl5xtM2{?{Wb9iH0|ApVXCU%LABhsA1GVu&63{nHFS%q!jwJwjC z6KYFVNp!UgyopTC;g&I(_^1OS&%CjH;T3`*xirB2+N%}X4FD`sat^<66qmDq0@qE? zB}T34+g-r1OV;;>W`D>`Exxw>Uyhv!-Z?)RA8D3H@5DE$U7LdfZ5Od#Y7f!eiwWPn zeMI6K3mM;0?7t(02%b%?#X63}Q7(D0;2TD~WXPggp?`&2Ln1`Nh&Sp{U$O+O=hrn7 zE5@surR7-jmw%R_X5hKfv=Q%M;PA0M0tuVl(;2=sg_-*c2O`CV_&TjHw!_&U2^dU? z=Yc}TGh5U~oUu+)U3>4P>ZiHlT831`T{BtWB4JBqUv}EPP+>prxn!2ad-Y06d66TB z7WlE&O>D}<1`@eLxHI{h(+r#8W&QLLszf?zDhsRsglizi@8gJo&4s~r4W$u?#b(dn zaU=7=n$>u7;kcR);wV}|yLrYAyBsL_2yoYLO2;;ug#iw{20rw^c(|Rrdz7kQ0_~QKlsCaw4r2*W%ZAZ!_o;4{ zXNEK=%2VvmNe#MG-%5^%01dU85-w+svd=fo{wRy)V!aRQjSH4sn0piz6<>JZM8K+- ze0f>(ekLzT&_jHF3nn}CHjNHH#iQ}s8f&q@Q5=P#Td_1Vic{g%G5~3jSG8a<66w@T zWW@Q-l-8w&)?^$g0C3ZBudbDS~33~R~QddYwl=`2Yf9JD3a$odA^ zn`^hfs`Fk8*~)%=FGQGt`QJZsaGm9Y`e~m0kgE{l(5hv5b5X zq;EYt2d_`P-_BMef`fNf=;pL@BLLQ$;n*BJVBCW2&CZtEkiQtQ%chhx}N?+ zl{ypA54t6nqW#D{03h|*C4tVaXpgmZ0=c<@?HPNgjKvu=(8AQnEn~5tYw+tPFjXVR zElze|T%~755_kGRhF6a@D8oSY(Ex>)kaM9F6+(?qAK#K3`R4)_i3*rjzq&cS4q%yz zn9IT+e+#_X`5uG=2uRmHZQDl%5TF3+7jYwCVS-psv!2< z9?eJD*>Il#w$UaB0>?dfFM7=-51Yf%ISdC2=vd6NQJx=tUK2gAGt{aU$->BYuty|E zF>*-_2B(C4sOFG(Vg1btn7410tN4VIv_=|RLZ@(VU{L3}Z?P#bjgyBrXq)l@nh*aY z2#6#Qns%MFgq`nzDW)JirI<01souZoeLp9|4fOekW4^}e@_nvUnq`HaQDeL+i{qN6FtmCb3+NQ>;RUK81KVtI<)T1R6**so1iR z>gifh7b#KLtW}YnX;beo1b?4ut5NlnxD5ZsxjG;dl2BBR3=jbfw|bgZ*9`8pW_sGh z83Lanr!B|elnmexnGCNrg#+ppnmX{S=w2Uj-@l`d$3 z3Jvkty>g4GLJ~`2JlmfI!QXn8o(a2r{`yd6$WjHdSxl`7@hNOF@zOP++tMih=x01P>GZr6qN=}9X>Uq6|BdX&iGxf_cj!9ht zIigj{m%FQm&!XT)rDb&}!*({Ap+*U8X2!zz1Rge%EwW+~%AJWwrZ3u0;4v8YdU-S_ zOLq1$3^E#aS$U*gzNDGc8W;d7et8$Y3yXGOvF-gXn#Yc~9G#I!8@li;kk!tntI7MS zZ>Z6maqrdi@fn56B`W)UOR$u|Y<`wDV))vf_#MC8u{+h; z_3<6GGaww}o6u2D^M=4(t#3LF?;9mzccd!(G{}3bt@D(S7DJ5e!tq}2B}gdwR@_Gq zhM$VShXJF?9Tk9oBk&Q|4Xt%!--rMj{b^XEEpJ!C_CPEPvwQ=CLRbY)-l(N5@&4LEeI>g>J^r$tN5fp%&r)MnCc z>Ny*T&#S%?ANnZGu>bUKI@2%`57)|Uvjk5>sL!UYp*scKA}IP;qE9bRu$OCfaYp7N6(1txEaZ#-Ro77LGZjyX@ha z(Q#cObbAp+7|o5&8*dTBCdQOq<}0yn%q=4Ort*XRFt4`bk_9@gK6E_(#1iuAD`B8K zq~rVM7_*ot5-pskuH7B~*r{Lh zFY@fWsIY7g$unrA2R6Wq#<9U#CIznJ0o*Km{-fP$R=~#vg>2Uh{(Ml% z`V&qB^aig;aRi)kjC@K%M%-TsfQ5D3HP$8#Cdc)hEAa}G@%>Di*HMz$WzL;LR9XK} zG`KZ^dB4er(pheiomvowt#_u4S#Agg%F9B2N6FXa*gdAzyR4_vd#lLg|K#xZNs_C~ zV)F>StN9JD5^+5x(EW>%QLsCzZCU=K6_GBjj7FA(fI3&2=f7$J77UFd`RZj0K0Q`E zb%{>Ja;ZAW^{k^GPpl7@3i=A2F@?{4f&T!c7*P3^`)p>72jf5@w~ghWrkia3OjlQ4 zdQ_;N#gX=)#j-TjGc$p%*oaw-jIVVfSa=+C43)w-?Ng{s$JpI0R}&pFB$*J;Au&ET z8ac{=ueyOzbHRwNTl8_gvzd_*d8j%OYKZlSWW?Zq+fwhJGY<^ElmfjgCJY89T8wXg%`fT53TEJvB2klV5zcQI)uxY1A z;6J>Ru^CsUIzQ99<6CXWUyoOq?#4{5|5Wk7#4ekymrw9`qkU22P$O)aeHO^sTcNuS zkx)M{oSLsF=aWaQGUC#PJ-JF|msSZB7o3Cu|GGIRu=znX$u#TklWFN{txdlnBO<8lnl43f<|P9G{+Fu8$b0~Iap4&(x?x6{SGKR41Oe*H4lEgg|;_(H8J))ucwEi zYyY@~i;Ug)xva*j{T_?3vv9j%<~MPrtTbu-eBIT>4h|7 zPVeTv#`epcyx^TNwTbx$uytuJChhcf6R+J%@ zc5x&7rVTKk6`1ShmR3Tmn%P;{>%G>QwQz$~iETYG2EuT$bUDY}(PaBime%Vh&Rg|J z^+RpUNwI^z!2w-ia#elU{^U&cE~g8OBiSp_)3g3&gRA7`GLNuTq3v|GA33r22_Ybx z&Iv%s^dJt!=rn8V;x)+4oXrW_Uzzu(sXa2v*~zd1zFzObpj0!KMP}+%O1A}f_zuo+ z*Q--AFfo8;sKxf=i6}9nMpj&G*J=mfvQ?`ItOA=mO+Mp*64>0%>bd{`AX(eplM!!k z>yp16s|^8i+5)pWK)w0LhHrv`4e_lP7e;*xf;rzuNr~xamF*ET*IOsqH(fiEIu=Yk z&wN%%e;0o3(?@iPXp-Nh$}m2Dz{AzUydSwRh7GOp=_TvCCC5|kqU@+LnLa_1*Ikur zg*;5itPRZU@C-{xuD=vYSAnIB*V*TxM>5D<2>gWwCWg)oxCRUFKG&O|?8`9*|jrCh&_QWtxro^>eOHyenwM?Go!dvX!(DL;m zt7lqT7h@-nVM#DYA`u?xq0lil?(g;IRqaDI|QGVG1B1 z;Cj3-gk8D#U@;>h>MP5GnP?IM@0UR9oO!R5AxZskwVrx?#oL}lUBCWBMC>$ro8rhr zewq$rR+x7>r{Ilb;0K{EJW?DuVx8(wV~HWCF}g9(^V5$Msx#RWM;6Vw)~lq>YS8tG zT3a4s>o>EubZJcymhL=q4Bgs;^#kJ|ITxXKL{{$8XSDiHHA}+ljnN@DS@!oV-O@ZK z8`v9NCN6Cxqg%g94=LDU^CIIOj%NUQr267i{V~G0nCz0(Lhgyv=iY8^?65-1h>ZN@ z5unC#vI7?`{5(|abH1}a?+&$#C;`4eL67-NVy2$sf`CJP8ejS6VwTTv37`*Rqt4`b z5OUxeQnTa|-0_G&+S01iVS?u?~n+pHC4(@V>bw|-;hy5ZbByRKr zLAW-y_YN^#{elmx_u}5$Id_$sBS&%Dc~nXnhb4TR!`LDyFQTM7wl((Lq~VT!JPX96 zp7%-l$3zp5?5EBF)Xdx~%b#lxLUt}Jk-~lyw)|Rf*-~M5>*5_Ww*zN2e$=bHOXXdU zx7MYsl+mimNHMPY{eqowhqM7*Ena3pS%Hag?VMjO7;}RLF9fWk4bCl}b}+KWb4mCe zi}s#|7HS3vYryY+&UT|2fLQt4i=26eZBO?JoAxs!o240AL2S>BlhiCeWJWCa*BXmj zchQJ{T$kww1oV*h?^Ju`ZgpE=(C);b5yM*mVd^nzB0B(s=@wZbQ3(WiBp}y;2SA{8 z^|%BCTJ$7xIqQuEhlhnS`t(Ws^)A0IT|L?#J)>R70bA~l56e(}GMpmRpuUXvHBw$K z{W!KtU$x#BJ0#4yQI6mkDYfK6Np!_0B%CE?ehT(jPtZF%Y_l<-(OBuu2NzX97lTiL zJci==D?sa;o@gOQd{WN$rLp8_&jQGjs*n%!58dO_TG&y^TPe5Tct!ftgZ@ zDx#S=2h|&6MO3z_H-m%n(J5fakGa@kx?eHJ>Z5NB>RnTUiXwP$br@V5FE56L5BBf+ z#$BW{8JJ{wI8GEs-mz(;V&Uc1l%X$xt5gV}kO2`Sy84Xf z(;g&y&Gl`~n-%U-rI01s`1U6s`40K5#r8h5YVaovM96+{qG@z7u3{RTrmRjkH4>bX&eJFU*;Q6FE9}0F9~E=8*j$_J8V(`p%Yg|o82s8BPHM@ zUw0<*6f}8?;u0o&D;gh1eQ6SvvX=dTsV*tbCI52R18+um*U28>fEj}Lw351KfkM|M z`YT^pL&4+$UPeBrc9#g|M_`c0Xba{4!`@p)MY**B!-5C`N_TfD-8CT6-5`zhP)gSj zA|NFVN(c z1(fQ67g&aC>F}PO(zab)2!1`NH)OSM&hd66c=hekpfXGa*}M)K=pzq(KGC5kBR$BqMfvG znG|x5`Hm4^jP(8yG5~oz)P5wOQvnDZ-~>@ORmVk&)qkEX4MMK2Q}?JEvkmAC4GSL2 zq>dq}yX+q#+};^C)ptus(Yh|It+DB@x7iF-&?1Qd4%uz$iwAc1PKUp&!pxYztwO+1 ziykctQDoYlT65iA2JHPGTT{ZT2AySnJLBK#|1#bSEM8kZrozexpcSC!c^;LbI)1y} zGD|~9(xNALemP%GnbuD7VQ3*iNXwhVPDV&SabocZNT4Q(2ZQMP;tt**HZ>`9D^EQeae0o- zaMbK%pQ%b0*XvXmYeu)EMhqtBK zPyVa)6L6zM0W;m!)ja{~1?Cw6c!F&8Bz`-`|N4}XanJGbf8E}Dz33#=FdqKt7Qc77 z`^W%5atBMP01Jf!6E@cgxcpZE0^l1Ru12eYn^lkpnm>Y%r@3(ucfvvv;CZu?m_v(Lla|{UdWK5pLcR&o=96-6XPyZDb z0EV}@13Q4^X`kXDAT{0R-G_(2ocf=YuzG03nSM~;$4UfV07Fne?9%82#K+_9Eu5$S z{JE-C*=2!-${fGrJq?5qaBy+)3DYxPV@u)V;o;R`MchCU8I@B<7jNMO;57x;UizG2 z2`YVrYq%fOY;Y^Ak6mNs`-&{}8?}JxI***(?0oAH8sN_W|F?U1&ihTVaj^sGj~<~E zcvL)ogo2V4)b7 zDqna`o2DwUj2N)FNz@EF7foOxF1Yun0!^=~!Jfj@Lftq@Sy}{lieN>K}TrOaATI0&*ZJQ?>??()X*xl%aQ|;Li7ph|4XwuSTu%c~+1( zLjboG^z1r#0PLk<78D$u42RcOy%yvx_TyE5Y(Qm_id%MZ<(&q?WnD!#1ZfD!e#I5= zI;{i2oe~<{z_z}nhZ0nb0Tz9&BNh`ZJIM{z@zK%w>F@)7!=<`_F+>-@A0c{=R;U0* zDvO&F65{K&zAd^F_UO1FSn#l4fF=1Zl}jx&iujWu&Y-1&AleF`yHwTq)%IBbw=t&u zUDk6AK{5YJ;m^m1P5Pl!On@F-Q=%5WAAzavSMq^cCq$G_yKReI)nW$>VJ; z+Gr&HK>d7(^AWRskzJ`aR5fNrx!zeX(ypvPrh~c;AV&13XbBR3w`rZ35 zgYgl}+%}<|ed7f$Nhd#4A$IZ2R;{Vn!<~~Tyvlh=01W1^Or;cYk#t{N)V#*H$#ZRW z)XqcE7vAI3sk_x#-g6flkDM|tN=`CfZw)jz_axx33~LdDLl(T0t|f`QDJ>`pcJ*7MVD>aaGG{ z^bP0xbC-TGjtL{I&AgL%tU9Gt4%YLk0Lcvl6;W@JjuGp?_nF0(g{7KD>k2sVPml@Xtxv{$_4 z3;;@P^ez^=gAP@rfc{}yaO(!j@q6o z+N(kU!U&PE~uyf{6|{SJ@5M`2(!r!#3ph8=An}qr2J=b?tL25--v?z z2Uel~ugI9cS0xy%lV3bQfCHYEvx6%xq5l~J2Qo^}%DlKpfM{|wuu{mf&3zgEpQ0te z2T%dmA4b;RCl3WsRsz`_bdJUIn4XtvmhXSy*J5a?J0AeAGCQq12ArPqVN)KWO#tZ{;^qa;#UIDALhTRgLCz zn1vco-DWoKHyLUbX-`(HGM;u48W;KAHn3=Y&2G7}%pu_i=Vxcrl`Pf0db%?;Rz1Zx z92&>S>vt!7b+|g@(l@}Lf7a~2GpX+g(`LB}x+i!naez7yH0^@J9w3$iS>~>3tlt0R zECjqmO%)|A`KA)dzFB1(P&4WvOfRP?B%rlMs&6^g+;5-dJu`%GNY@jb8Ea{OkPfI zD;y*=qY72SZ^3JMkvczp3nRi!sLV9*Xxi(cj>tS}s8Z z+WC)UP}2?^I*otG`)W8f_UTg4e3P3+rzWB+g2EERV*Y~A<<}->^UWwy$*W4XDb*^o z5H}KmWzM~;YvZRBT|-8Y1U5n$MOqjDhLJAKdfNH%G)mfL5ylXtkb+ zyQu$=eCjh3OsQv@Opc{Hud-!V&`HXNZkkR$T5eC(CS9JqDjOW(Un(8FFK16=opXLF zwPzb_`P8%)ULOb)9MfAk{*L3EE;?-ElP4*MC5b~Uybc< z!}k1ahNH2;3k^B@_A?R>QKE*G`1wXM0#uj;1a!GA2PS_ch*_dZ+u!-JKoIq>fNBVUg$97nBEJ3MKfrA= zTpl79=5?O5yMUuIn{)!rRgKBXAf0SZzz zd|pG>2lVsZ7Y*(1-19;xhQGUmdQO3qQ_Ha2>|E>ZDxI?}t7qex5PfF`Fi<4kloo#X z7c?&F0ST2(_-TdO-`^WhKo(XNpZ$Yfs&4}7>O7noyT&#vz1LtT@6P>2{~}|mWlv!D zLsR|~fLx^nM9|d>Y+}TJX#DRH{^D)G_sEI`#7u~f>;ATkcmF}=-$HByNLLV=ifabM zwm_v_jms+aZkYaT!kvS5|An~K+?g#%HaQf zV%wZBjDST`mYSLx4Gk^!b|W-26yPpu)htO~`FT7*pQe9c^%uZ?a}mJ8c0!lR(agz} zmu3Pkl7JQ_ph~5+4gP;D?w%y^0Ev<8Y)P#`-Nn>Lo%fD}$L0v#s^b^u4^c3I1~)*> z!}KR+md}+^_Lz8K2Gkv|F%iYu9(Gis2n0Egu-~n#AaV;tC=kMPmRL9-+9B$0|Z+RF5Ezp28 zXi!|7{kMGV4-9m4`LZ!@4Al$G{YN+rfaj$91pTd>1GP2rL`h$5QFRNKnG}Q06U6RG{lo;!zZK*zCIz zj|6rdX@HR|%tMmzRi!4GHj1!&*>D(RhK7!=lJ4c0?&}D@;c3z3YSApz&3vAowx}WD zb?>kEg9xx5Aih01+M3#vrUIuAo4300Gw^-pmbR}QGA0U}4OBCOh^%VWDB=;GBfMGW zkObOG8MQr@io~4El2Q4z6EZtR#|cv0qb#mjlZhR(oSOp)_a!iwd=I)*4_!t3@6&sL zpo9KtYOh;4d4OnY?_+>Gt8xO=qC%v)yb+p?!?yT*(Pn-V!Ohnf@weH}QFwl~riZPZlGQ zcSFjKOiYmfQD+aI1)T1{KAi}qxGhkSkXRa3&Pk}v*`L5v$7@QhqwRC^&6vRHya2Fa z)lz$v(vj82c0eS;AB?VUUmHLB?!k#MYg4gitXQB6L`DYoi$!9} zuP#Mms?No2kAC5!B(w7^&sC{cv2DA11@>N6UmsFk4RG^u(_=zR`2+g*6or)PUs*aA ziNZ2t1%MOBwaJ&?gdG6!OeQRkajsq2n+S|4qoEO5EgiXMhiUfJKK-brNvr?$yX4xm zue`uvMoYE5rb&jeoy!MMYbAm;<01WF&y%_<9Tq}6*RE!!2&BUAy^yOhwGd?ClX=&0x>C^}I}IT06|71mqf1bj630AloD&)4aWxV>K=Ldx7Hw zzO${aTx_FzwS!j0%*o)p`NuEGt-@!;^e=aR5lKD>5XXJdS;(fTw@U z+nXGT&~f1Y;?WZeCxb>HAsA!zc#f>^w%C953pbDG=X_GVWaOydO=p%4v*)sWN0J_1 zGc-}G5N^I0Jfv(a;I#=b$zO(4J0(gmT($0@iCq{N9??(oUdY#Ny_vu1KN=8Vv|c|# z^Ib5?kKTLH3$u0Wwh9#Rec=fAyk|BvV88O%Tj-)L<-$+~x17TuU{rro+w!g0nvoUKe-wzxeO~@s29G zViU3+_v(6SPDPoW;G^YJN%8|DF3Z_Dkd?h&KgC%{Rxszk)b5E}H=PXq$o*muQ=bdw z;HP{1sCJNa3f85lW=7lXxV%>>UJ3GSd9(5c9~DzW_JjR5b)(-9e{9ZZf|L{*Dknrq zSmwMjn78!x*TtIph=oq$7KNFoOcwD0v9OXgy znk%@w#m9BATFpacgMys)KQmhM{Z7(WeXSk~HH%{dn=0`E<|vsG=PaXo*DM9#_2!ME|@rKlf7Y_nT!alEJBzjchqE&-pM zE5cM{d4@#yYR7~@{J-9zu+FsKt1rX_;NG6sJ{pvpGT5vCK9WjhlEUi6aGO1T#|i<1 z!#o#lo^Rl36(ZSw5c-z*eeV&=zT1$ zAd~PbQ$D~KkMrMc1D@V4!HrDXZZ3$vqZnp&S|CG_!ROIb@Bf`Q)rvyQlR*@#dWeA6 zpkMXW#{hb1PJeB$&=r^vfjj!^7ano#P|`D8{5QeO8-py&BI>3Xw%6ThqD9L+vO$kh zgU_D|xb29zrdRdv>PF96k9tStHyrVB7$Go5g~5Xbw3H}k6*w)9_4*zoO!9{ zO$ENmVa4M`96=%;Q+yWx3^LNPXDBG4GBlUG$7hioHC8M`B4lA#Aa{Lsq(ED3-e*%y zSz~}{V79c!d3yt+8-QOqrfJag9?Ytw?U!bKAk$Nt&~9FIkM|WxfP&8z$I#Q*-KU*e z6Gb4c$jyEdIbh5YD`U~j!VUh-P8rI{;`E`du)(sOlMVe}bqDjvV5A~cG#zvEMO?B* z=k*GO(C*gBX-4CTr7qmBWJZHk{B9{4*Y%Mz_+nzMZ@+?TlCz9(m&VAGlGJWVX{((i z99d@^g-t&XGOHV=LsZU<5;(719hdS7jB8=m@MFF3@ClKvaWBZ}paG=G ztuE>>bkezyxRwiwVG{JnS%%T6Q3$3bb5F^(Jv=A~yb^|5OToxnbOVy?8x)G^L#I z{FQo%e)ag?fCIORm*{13>#{xI=nj#NA}Ph8m&eP0W;K{Pa>A}S@}>EDe0wo*`&2aq zac{`uWSv!?_wq6c4Nv~A!Z%RJbw78dJ-ATj+#&G_kB~5rbCqFpx?xUZ*blx)*c-$a^O-gImL znkccTU`E;ZcJ5N)2znOZyEQ^qqvIImbWllAX_JJZkXSYeZy{kkr^*4`?s9|V>hy85 zkZrJoqgxTw>~(x{Ec9n*xG@hMz3vb$H|bwKr)*R*A*cBpzs6eyPj4phjliZ)>f7rk zRDX#q^|rCT7$fVo4yLi~ zjeb+h7oRi=Pgb=v{iT9g&Z27T3F2y^o%h7e!Zrfw;X5X*`vr&UQMLY4f zZWFYsqhzPQ4s91b8X~cuIcm;@8D_*Y67HP57`!}YDC@Gj?@Wl4?Ekj(aw#)wYe#5? zu%TAWb@4)?6Vaxjx?sZBYTY z2S7Z>X%m1QN#< zZ)$lgcRhIRrp2+brK-KpDe#%qCCgfcURHwzeNxh=q)+N@V`ybg2Wp>99Pc;w`x2R6 z-rb@&-KKGts=4o8D72O>WdH*RH;D$#l4gLaF+j5kc?8^l3!@(+S+r!OK+}xP{gwH{V)U($Iac{o!{*|Vo#te zg4HcNG-%;$&WxYMEn*?fto8#&-sMyVX0rZ>8C`KByu&2$WIl*g@L7h&>e6to z?bB>7PSlDLt0X>?rO$cgJ>yu9ni-+m=agnsb++oKW@Ucwuz)KH>)y~BF%(2>TZsLf zE)D1C9mg85wd&r{D5|*rVVlh|j1k!<2lq?WZ~Z|iU=Ipnm+OPd#c|1k(U9nS7R5k_ z-J*oc!SPJ0mDE2hdbbtxHG5*ROf8D9I(pU%oMHB;tqJeEHwu!pfe>Qr%>8s8vBYuQXy;93c}!1;GF{N!3Ghf31vY757VYem0^UaqNkO4UB! z2J27PM$R$OW`)T*->(yohu|t#>YL0I$P+a~*_~2?no0v(WFFW*e`E`LIrH2O zc+WGhC}{HR1Yt=`_3_nW=(mH5T_M!y2dG3G2(0Rwpn@cot!nbkwVmT#X38Eb*(8Pz zY+1Tgd-yl33a$lHE+_LLj8Iq#AB2I=VLAeS>xha*(1RKC5{Of_Ray-t`~v(TP0H#m zUT0__QDp7c=La#IX43d2mKGK{r8_Gt0f8YOmwV$F16l}2cdC?a)yEx9-`q#kA+O@Z zfEz@Ed%oo=k?ds0uYPG}QqSi2k;uH~IRD*zB-TQ=)*nL#m{FSZc9m z0pdq;;mk(mujalvW$#E^TRz}nyKN4e#-G~I2E`8zu3%;akGt!COEe(BP)sLm$gNJ_8r-B;)PP=ERYlcZMg$t3KEI`hGh^vi}PRg3QOKHR0uXxb#x9P}K-k z`qkWM)HNo>GH~N~p=b#ujt_LeI25PzEo|OXv$6n6SJ7`%|JCBn%~G5!mKbPzytKfB zQq&i5=Bwq4HF^9AcDJwV)tq6|#j2&xzgiAJX~Y9#p-xMuyY@v!{O&Nt9-$bfon8&H z;qn)TJa(#L(|6!=8`TqPs5)tQO=(bgIe5ApG`}!Ep@;2|4uVLe3cQV>lY8B%v>)Dh zzHfT>PU_-tg*KVj{$23Xor3x&TOdxP&kk*lmAfSOI20}Z0P#4WsRi$>7X3CVGSNrt zN9@gEBIWpOpv~+!bNgc+Cgv-=BKw`!!(9R_UgJA6O7nM`#NlqwrK+DC#J7=s6{Rek z^m@l$+E$`5$iaNWc=t*e$#WHjAQ_=EmBA{wxITyi{}xJD?R?sr`&3+^b|KkXX{A<&{;a{JYPkgF>2r4?GoZ`o=eaLE+H~w_d?bNyrC^y- zSvhZdV^ChjHg}b1I9PKzQ|^*j`A1z#DT3#4oQGZ&9IADryPh|o zZ~W?2V{s=;kWM@O3Msd57O@T|@w4krikMMlnvwDNj!4K3ddjChUf)M!w|Pf9JMf)_ zx?k}Ysxf7$98wG_y|}nzrD%x^0iPZJylc)oY}$!PTI%QAPVd_^*l!SWcODVxIT?Jq zs9lC1?xVC@0hV_5*xlY`S3iRdij6c~W79FGqA)9cSs9m7aY4`i1{fw?*_4w;qzLs zqd^JaawILr-FD;LTQz(CaOJu_PZ}wG6}FIBrLv#x3b@siVvM%oO5HNl8xU_Tj12LS z-HTs$FMu{z3PTyjk?$|w*u3_4{TYE%L#oAddUAl>Ar)@f-5GvPtrnZ67?NMlqQ^rC zsu%m#ESw&lEo*}p<%}LR4_aL$XU{IN3o(2)N3~_!%4wva`4}G^(moQI6jOENQkg9ZorK~6*OO;MjrsM@Cw^eGbCpORVa#PT6V~0>hTOE4iAMz` zab_z^7{>GFSQ9P%^!y9)B@q#BPcQ4FK!o2!mE0>1h7X7BU(2tn6vp5u+7s9xA=f(woy-M0rh3JDzmlT7a%@zZW%yZRFdLXgO2_<<(KwK{YB(_*W;+7zzmM2+jS(>?wN z_H#ATNy_BZHXS&I?!S7}=oAtaLk)<%o4s7eiRhJt>W<*&OD_$xt$T4gN1ClD0q%

=}w@W23fiN90rfgs4VLDTF0f=`>Dk8lHieCnmsy0;rtV)^`6X> z^h0?yRuWx#+Q-J9vT{YEX|OjY0Vizi85Ay?^HZ&Uc)* zKptKPG{`x@Zd|Mi)H`kdu{*L>XHRbH;pLiK9F%5IilxQ#L>gj$oQ+x-|83G z7~gbzeLdJ}=u3e*MmWKs#%td>SQ?RtIg!(Pe*qhC`-9=M3R#pMZ;{#Qr=vnRjnmpE zK}g|ttq-f~_PEFOdWrl}nNc%|QHxK3dER5+Py&aMCT0RQqp*5s!VI6wulF{YQIki2 zV5KD$phmxtSF9rL!se8b2Y4_Z_j3VpX)VgNIl)|9tOY&aliuJnQ5MrfSiF#@%TD@|s(qW_G+T4AxoR72 z2HsN^uaVX7lE190bbB-XnX9gTf~8Z~S-u|lEsDBeLtf-8UA1;;Jip6ACh*w`vA2aw zBIDx9{;~pIOs6CoDDIwccP!!v5Kqxf$mM_zSQ*7&k7IOEh+}^%* z3T;D(zvC0FR{8$1LA=U(P!@*kF!-w7Bxf_G%=mUCcKq0_^Co)}t%yLrW$k=1l%f-5 z*|ME^dUf~#!;+Ly;O9KoQJWYUiv`|Wd0aZR6OHYasMFh;OO@A}ogb%DoIl~%7AWqU z9Z^2z*gAHcb}3}1h+>cQZJaed@BG&DrqihRJB9*VrkMmvHN~B-FK!Lr(cy$e$hL|| zPZ&DU3Jrc9 zSo3V9RBj|OPQ&zPX_mFl}rXX^V6eTX_Cf zH|&B5@8dy^y!4GAJ0k)4+y{}VTglf6Mz-a4;=~CJr6n^2-XD-z0>U@0=Cw za~5BmeYxBZb2_d}yhtfABtcCaDui~bjEVB3WT;-|wE&LNhLzOH^}xX;HxDxj0W}TH zIxJ1NCx%v7olfPW-=t$l{)kz*+kpJV)dhV$$D>KTBDoUe$ylQ z^8Mt6;{CdXdxFCoosF;}1Ad@;@}*Jwz^gfE-c)D^$*Ig7tr{WH}R*`AGI@ zn}eKm(ouaRduuEQ-Ss9G#O^BJt&;j4usKa&iYW9qzmkueaXQ19>l0bDCGuH!hnz-2c8ZWEO)P`bJ5qiJ8dK(iv_gm30q8aw zFy$jih4q>(FFuSE9ys02d!kn?Z9T9YNd9=d_G9zH+Buoeo&+D8HKhNt(S495p%v(N zzIo@aW6_K?rWE$WQekWKy(`LaTMQH-C&w>TjkwWE`&b7>J)q~PK>+rX>qg&Z_*6NyZ5$GZ<7b#N$`A{14 z0lp2j5&suC`zUwkm0wMxsa( zx15q*tY_cl#JCM``;}-Hz+T8P-r9njf-JmoTQ^_U`}Vo`x+=2@8YEsH`)*us>;`O#+g8|!bf@Q*jtB`9WuaM`y(%wX_ zPKrgUnu&Aqh9uzLPMf34e&BL_mL=6~YOOX3Zy2SC*3swbcz^UXdh{2vc5PZ1?u_@= zd+)YnsL>Gra@4W!6MoH^4VCq+vV?_`%Gdkn*0T1jn^6Tn!`rGY0~=IW+^%!=ldd4W zTPGMH+A3`%dDnGCV8n;BUV~oL0?ga|flDo3KPR%n1=a-!HFCea(=pYzTQEYib*@Es zG7NExLfUn=-T`QRTgSN$>xvwE%Me?CyS8orhTA12C&<9-JJw>u3<|&{a5&fy5pt~C zPCa8d0CK_kHrezlj*40??C|bkNV#Vp-+Zf|aWAPL9T%%}qN2R=-t1aF^onk@^yPI8 z3)rQrSn!jOt5*h}6pnVjDjT32ZFL??0AyEFg|`OWNSU#-B&vyLwIL?_dh;+we!SXo z4jE#HlHrgxdq-n5F*NPC6mPB9;uAF6&!mwX!NPL19PpB*kVj?TAV4y<#TvM7O1ykE z33g^17S^*fme(3v5WC+x_cp4qh&5}zG! zU)nlP55Fjs49K<@R!k4=3}1g{QzAFQmIl|fRa);fy?Va8u#w$SpS`hj{!-Yu!y?ej z)fGqMeNhb`U6^h-+C*7a!O=(ygBkV_YeD-o#|$8$tIw#Jk$pyle(_{;#;nH9ZkxN`aePkGu2LbHa$k+<1Z`iOBPn z3sQ;7m(*qW^JUd;Noq3X)a*fljet@TxnuQE=H)$^sws(sqNh~Sr=&u!_CN=?_o4b<9O7FbdV!v83eX~?IE#RDI>+FP+E^v;@Zgk7&(nE={h&oFmh*>q?2v^vwI$`9yl*raGj>b@l|34?z^j;lj8J(?*SNJ_g+ zLWpMSc#ld8Q~{5Y%!BwSkP}G!Q6h5-dtQYe4O4~~E9t4!i8MwPO{ti!B6{03s_IHv z|F{8%5JX-XIn~~fA90w@u~svGO6MuP5=EPmEa45!VCA$!S&yH^hT^5^uvjZ-FRKqlMX$#dnPV$psMbxnR1Q#ZXn(%#O`YYV|q8(J3`(hiezB z+pOXQZ2oe2FjsTXR#gxe&73tp027u}4P8dxcf~2mBd3wVq!1|%=NqR1RlC4l;dZJq zMb)-b9orMOt_7!8s|k?_bl`)FBfp2HL>z4dhQjcI(Xz9gV39}40wa-r=_}(8Kvm){h+saTEaDB>3;c-i6N$CXSGgiVPJ?& z$f^GR&?4meSwZnYck}i6(YLj%?e=Wuv3T*sflfLuw~?O~({(nLt*4iVvTF5ivgfEd zOnwdb#>E5F_aSX#8)ce_ku@Xg516-am2jcSc=*&Tjeb7@w}xcZ4s?Vyo4-5T=$TGd z@f|J-Kk-up!9|<#3v)M@_rB!Mf5S)vGj@EIddP8YLgH6VbcRAAuzetu%WD(tiFsmn zh@@}sG#6lV%l|FsXa0fBLO^H2xX(Di!~_T5ZHTEipN%=L&EA!5g_>2`W=)uDJkhVf zYu)e(cg5J_II(+XCnkbqHiG5C{^_)2Ac{S#Lv zZXv!x=-9U!i|}r4dFbkMM;;0R)Ydil2m8vd<@6KKH~A6$HQOwOddf!No*(-FH{Qhy z1$GRD>`lZd#|B%6G%jS)GA$h%_651y{BO0>!(}9P{MqVUCGtO?63u`Gzf6(AMZZp< zU+2b)cfWFAsn!E0x-k=~5PrVO{r0$@SQ~dSY5iMG9~dv)iwHMaKmUwldx`5)#SaSl z=gMZ^{O{h#^C}av7L^1o(@5oj?2|HcVvZY&36M+BjL_OiB0`peXEQC2HNdy?$0ga> zCNbXasu=^?H>RzqkZs0}g8IFq^QLTs?EE~Eo%BlIo;O>045zVYGl!zC!u)#5u+fsU z%D!OJ$rf{P3IBxwLmM&6$JF&;W zRmlplALF5;aEC8`JqT;hRm_}{zUV?&&6%&ZH?cGw8xeZ#?j&2?v`p?CgxBXBzq>B+ zP5Xd3Ky0PBncmr9*DmqJ+=NW?WVDU=-}cC1)8&2mS8L?oX{4UHRd+|jo~m)Y6xsA6 zdi}YHoG+auNP@uk06iYMa>@DKS7`o9z@!uRb4wf-) z4XfzGlxRfgzrJbj8pzi!Da6SEgnUQcTU<{2S-J!+(E(EiN#9V_>&@-3eNivdUmr{h zOMf2Y7rEHXj4IbUG!HkpDrj*#m5urKf8ixO*%<1|Q*rp#!j^%TU_CaNCJa^YM3Y}n z1G!4;@ShGYc(Y8rdT$uMKEUBSZ@s{vGW#h9c|AR?v2gsd#$K<0-L_zEf1iSd)c~p& z7zf3XBc8v=VTEKe58cx2SoWuu{8}CDMAtgq4JTwDDUo4MNM35RatG9Eav%owPWBaq zndK%>n7vqC6P&m{xTfQ-K_j?5RaOLjN-wX~;kGDJ&*?h*B!P|1jL?SVyV`c3>;5=4 zz)?GYcJ@(mX@E0RPs2Zke$6SBrvS^FVfooWhnBTG))*!;-a`SoFUCpOT z^~<&wx2N!)Duu~c?X)4>s%HAU>SW2jey@JIu@p6fc+ZnM7!XaPp~qWI+1nTPHQB8r zqeIz4=)Y>G65DD*L@{m|h36SN4qk4U^)FeNln}lWGP|RVIB*e^)B`9LwF&v)}R5a$Sv;Ur%J2=Cd>o)SuO@~(ZE8jCti(1dU!|>;jf(}Dc zTNFPh`9V|JUI&{j4@U}|cM-1lo@5SX zdu|%GvyU!+G~=(jv!z`0wJiciub+Ej+3AD!`O8gAgcYY(-epVaEtiFdq9*5%0o0_J)jd^OnI`ca?tEU-SUe?XTjB<|sM>%`BGayxQp}pL8MAJx+DM4D}B#Wi2Pu1Q_Pw5*jQ>r=nE^0JB~g=PC3XVNU+8@j!w1( z+zvOa9ULAXKY_XC=K79=I9YFPW)AHVVdJKU#TFpEWiPrE)$kP|wwzn%k(N)W}uF z?9c^AgY7>kqVJ2`y0|J`HAAj3_U5XkYl>gFR?D3w87?+?#w*5sXcs(LFTz2LRc8IJ zPs4Vy)>m}pw(_06|BJ9nucTa5lIIwWl;eC;4xbW`Adm{yqY*`Ux`|RSRzQvu%5?VP z%snOPpx5Cvt?{NrGSg0yUcE}K{VG~0N!{ti74@hp4frg}*&=N#Z%Ex9O@YUpzrjfs-dz;MIa0gKQpd7k(2AaOK2;@=7TN6lbi4#g$z!VAoZ&uc z1=A!bb=>vO?JxmU-0fav_!dkM(zI+(!Y)fpk|-DhYkntNjnQXI>-2G4!{sC*1W9ar z``UIryom8RVm1WDJuQ0nYJCee&I7^iEL1k+rKeJcrZ;;ThvC%J7(RvUrsMhB`tc+b zh2ig(I6qwyl&XC{FqM!7OtnX0AW!AGb#3e@jF^7sJ5#~s`Tm}lJchT;;qb*%{(M^@ zvAPe!lo}ZxBToW;Jh;di>RUn8(Ls`5je2MExT1G>a(?KPQDjF8F4VGLdO^ZY-LLe} zShVU+`ZRfkd}EFGshaztp<&0@rp3!|%m$4RB8-Kk_S$nV`XSH1bv#K{1PF7X@h_uN zmL*)~?X|VYe&Vr^dfH>5&{Vw4EOv%!zBO-c?ZgK1nln;@3Kofh*;)A-X5NulmlHN$bXckn zr<21eO6w1lPfv2TxEmN4(3G?>CmT)rP(^>6@UpcFYDYO7n8< zF_YBo=!S+2c32y)Y}TfP9p4iqMEMaq)98p7{5!SvO5L7DACj852=;Uf-O%{^+i~+Y zc-0HGJp0UF;>7XSx&9!2H8<2gTfwUpsYbz>y9z@f-PdaQW}j#`C7M!R|KJs|v%prPWQa`HupY+h@s zZ|0P01iPrwONk!c%+iZo#ghf~S?2kN<#uA-SQxzB8CUWtR}Ojo=oZRA>sI&k+hvN! zn#ISe`fwVB(GS%)X=Pr%&L|j^jVS!tk{^!~)TrS@5n@8#gSJ7EZQW-eHbXyj_HaBV zT@K-&DA)t?@9qsral{cB@i^$Q2}^;(u?#%=3BBjt6P0Z1(=(7$DVL_7X zk)z7xM@-Zv*5`8ZPhulu|FUf)NfA6@@u!}>#lt`NZC;7o(MX-;WyKZJlGtPo^D@+Zd6`LOr4?G=5H<1q74!aUzG(3$v{=&2EH(=2zZT0% zfkw7ZQY_q({=&1rAp9g=9I$I?q^kA4_@+Rv0QZT!+QT$SxA5OXUQ;0`g@HfI1G68K z6^7%TJ$rM&D76-#dB>s7gFMLBsCW;kzhB7GR7^m8kzG!QS?a0X_i6I~>=kgN;UHos zLe({ZTSj@L-vzY){v8N77x+kkW~i+ZuYRi2k5nf2d%}wF2RYWe$&Mcre{bkXn7FLE zW($feF=Or!>3DVp_rL4YnIPTIlW9CHQ@xGhc!1^1l?%$UQ zaRItoGu3R(y=S_|N}yuqtMHAmB*uT?i(p2Bm5P_ZS(pr^d9ilLF4erUwl;9;X{Lut zhW;DIlH3TbvZ@87+vk3s9Fe5_7>Y^*E~KoXcxSLXG-G4=5$i7$MjwA~KO)&*#5?)( z=K`^-7$`LmpgZ@R#N*wr{`M{A?=u75#p7`v%ZL3aO+Pj%+ykjFljLZ$b=_MZf4`_E zaWe2Ct2KrK;{JW4t&Cor`O5b4WcxQXuu@P}!@AaIHl}|+yG#f?dmD71bMa6-|zu67Gnv2_0uGi4XNJ``XjYC9`{Bj*5Unz zHbBa0_lG95T04W|o*o4YU3v8T2`U1t$3)C5q`p7cPPYZeSHsWwDJdz>FpZ6kdzRKz zbluZieGe?2i}z6fO(lQJi1$I_cVspV;g2n zxNa$bE=cnDJ)6|6(8}H|eoG6eC!X4n=QJ$oPZa;~^d7|R&z&QFACHMY(sx=Zh))ZR zbJr=d0GeCqpK~(cc-)*m>K_=O79Q?HR`}*n)ge3bNuYU``#0_pu>mL2o<<6b`2A!= z+Jl_@iXo0}ncrlDEbp&AF3uRdaIa?m{R+?(_gCj3P~-}c{XH&N78r+R6$JTX-1G}z zoLfJ)%pYWlECY;N&V5h*$2i@Wz_>|8UKII1=92=(m9GajQ~zFfT5>r_L2ah3cj5oA z_m)vrMPIzAASy_gARygHNp}g-ap*=7q>=6tX#r`aIpm>1LK+2WQIPKLZb9I#qoV%D zz4!m#827_{AKn;zVC=om-fPV{*NoqsYt6~)jg5_LJUsq!aq8q3wo~<=F8m+OY%N86 z3_wkP8uH}za0;IX!f?s-OJGHb1`5JoqTmv?PIO*xOiHR-%dD*A>gkbpI`6+UXzuM| z(Ht7muxKyH;}sMXoLO8%M@2=|(rOJ0l`92O;Fm^De!P;|uJjn2m9#%cq2=s=PHQh4 z@PgeRXqcWibVt$ukT9y5H33R@Ar#(t9>`dw&ZOC#r{e$E#2jXPew4y-ib)ueRK1l~ zGO9#)BPl()PS(~g5$~(U}*{xlaey6*YBKUN?5jr5j2oJ5p>fN5E@~W+n z?cIYj+Aoh12)O#wQI@|#^IFsl$s2|jC*8HmvGn-7ttdZ@A)2nG=WfhvDi00)CRT&m z7sWoul3Yo$gu;&3?lUt3y_X#m@$Q+TMpPy(t#8PWWx9x4?3W1Z%=<3{^QQJ2=9ZUYOTd~$7C?~gD}6Wj_V20@MU0Z0Ns#R$ zU^Re7ZYrOgoRWJ~74kZs5Z=UC313nm&Q~#Lv_}_k-cTtgw;bxpQ_HxYuK|1Mu*~`- zVP5#h@ibMi)_q6?xy4{!pzTSZ!!pa0OTU(rjorIkmSdoZ;=u)_uwlLD4Z2(jUT}KI z-a>B(D9C_SP4hLik5v+vnT)e&>1snY6o^5s8UX+fd=si&f;YRapQqFvm)U*e9^5un zAbzr08=fH*dh-?KV2%dV*kyYv=xJvRRN3#xNWD{#Z2M)AoADsPYK~`HLsTuS4%dg& zRGvnXiF^{y^_Py}=Gt5C_V>9MeN`eXY&KPhZNJ!4{L)StO2tb$H8u5oqK?egpb4<3 zD>RCP680sn=_T;D@=NM!y-t#?H9WBpR z&eXx5yu}+7ncNHtgjC9(vg5I+U7MOREE`_EX3*#wkjQ1FHjw*c{QIPbT7kx0&626+ zzD&B;B0dKALaFpB;?l$g!-egGmORR3o_E!XAz}?*ehVnjwnX@9qqP4Ds21`M2!s31 zR~0l;i=a02b*M(sn(Vb$dIKb5DNL10NtcZY|FZeq6XNy?hWXMTK9086lzyMxL(9xr*`Wm&^m2S-v zr)gYs?K~sz`}$Rktw+mHHfK&(W8AI#sY56>8{N)WS`WU@WaZr{OMGB*8z0|e z{YZb%rtQ^g6rb@;5&=8e;datV{!IPxX}i@ub$k^j*fD9E$o%0t&sy?J6da?umn!ty zP&0A{_vI}ifKNffwO{5OXj;@^+_frrx}L)Iv&2Qd{J`hy@iqY~uKUFAmbp%E^eharo4;b)c?*dHgz(k3J{zq14zfDHB#6xPAZRIr93#Vm>Op z{~Jv{?Af+h9;BxJ^pkLEO-=OMZq33^6|i~bdM#}EM8WG39!JJI&BA$xCEPaCjbR|+ z%Ji0;OJNmAz9Va0=%eG_ zuUUBmcSuBRs6nAuAPR0SEVu__QwQphd&KK>nvBy0ig6)cO)i&y(NIW&6U`&kVe^M*a#-JveiAEZ<7zl~0(EZ~x1M3fFg zju1OWt&>HJQZ#DK+hxqx6E>qaEOsp2wA@BDT{4w@VcHoj*3}%{Xv?+ z5@HhIldd~$e3kMV*+3q8m z$2~#|!%kPy(mW*BbzIDP`uB{ z44Grr1_D4s=Rt-2^R0=LAxMJDO+k^dc!LS;I&O&OhNo2~>ntg333X zGilGw?IBEhU?`jaxW`}daR+<;`Q|C}K#{(FLZiph#*Ipbp&vEh)Px>lSKmNg0GYzh z-Px8$8&mHLJJ}FCj>W5+o@81LrV=3Z zJo5Xz{Kb&X<_8`?#bY1?zQZVWQiyGEZ%XSK_fljS2$a82JQ77*J64iaVL`%SyNxJC zCz*0Y22lwRyLVdG8KfR+(XX8KH2NAbb%<4=a)x|f5`6$QmA_@RefFO07Oni7Yv1nC z<`1}?qi2bS;-NEp8Thp1221xHvygoqb`FkyOUdQ3?c9$NgLq@_<{Y*fQZcs@&Sxgr zc36C&a#XdO!!qQ-$x(_2Rt+(0YE2VtW4a`lQImWT^C<~T^?XEGR`I?Xy~yd&mMI<& z-7PUh5ed<=nZ@lU{<+AbA}8Xu&a>bN!>z3?Mz4#LUDY-3e#)-J#3%~M$}@wr9SPaz zY>Ipl*Ph|kl(q^JQpsDUymCN{S^hi0%8Yk}P zdpE(Gw~3TuFFG*2B6^dehbjF!$kQit!M1^b$vlcRFC~m3jk1Bc6uwCVNo~2Ts@R^_ z`wJI+1_gsp45~cCYuhW2#oRDsk3Y@RDZ-8^i*oX^zF3lVDThk6-7iN6t1}oL*3t7d zvgCufO^WMrl@ekf+^cry-Djl68bo>}8@e{!7Grp15<|wf@WJ)sMRq<$UR8|}Se91z z2W*>>>pj2U1^}h<>d88fl}eNb&Zt(78j96O1-fePXQ{x0Rr0>f^1iRD9Ls&RCJqN1 zeUjFS)C@<_NBVUdT$K)W18nF;`cdHyOUy%+OwirAMW*~Cb7@e(^lh1D%u)2x;I$64 zd{y;fR^CCi=taG(HwnKdno^ojP}SXU6K-;jkP7bxomzL0#xZ>qBXt<(8{hGjHhi5a z#N5U-C#xKsnGgXsFra5XON@u~}jGQ%c2CP=n?Mk_2k;KoLq;)`TDh9;bp zTFYbMLtEHcS0Ys9yz0XdI7KW3d63&727PS7OAG^c$PiRz_tx_boA*afr^q3g`n~Ua z%O8&JMRml!mCSm&`F^w0r0@;eQTCfsWSun&{V#vjF> zkjan-!U>;&OMqIdz(9mb`&Qx=K0I9e#Od(5%=ePV@y%5&fUgQDEzxv??K5B}QchP$ zv?f24z-Q3Ac7!W6f8l?LIM{{8_*vJ0)!rz-#R@-zAxQeu)+9fJAGt~>u$+`wsR6jXb?AD zqFGsadB0>!*Kro@I>6o7Eqf^^ZH^z9tiwLoJDEma-;Z0^;8e(Jn zY7>D>tMhS_!0cfXPwg?ZR4P;!^wgfGg&p^c-`F?qglcDCzIgUC-bO+Of_;t15QiDA zH*RpSiX*Bh0txTJ-UnbKGhD)@xY#iNFRH(#(wKn9zM!_`B?UHwN8C)pH43G|miL{4}1VFe^ zmIQ~MQhg*yg|hP~zF?e5AwH%9zN)i^U&cQN-SI<0;&yn-+kUY{2REWgSp#N5Hf<0T_WY~Q5e!k5Jhu(*1K|}TwT1rI($f6 zt=6D6I;amZy)IQFm6dcUjeIi=qYfNs#qSW^`c|6cqPfFs}pV*x#m{CGYL>gOxncXt@$-?rAnv|_&^1M()A^OvLHqe4Q8YN~TIgO+{)6w~>?rv{VwpZF18qyR)>CTu>osLj zfbmwzP7!afDC~>$>J8vGwvr7R84@fyYa+PE#f`_T%{<9K$bjSZeFW{Do)?410#i%P)U zesLZYhvoEr2b(68zz@W#rR5c9n$N(Z2neHlL<-%=?`4+O{m8lDCNV^l0S zwYN22{c`4bIw`|y6^D(B>(g+Fq1|pjexY_9c9Cwis8bT?4sU-lSdakn316<2DE*ef zvY_UO6p!aiJ#J|C`Y{1qh$X`hd&5kErqqN!I7Z_M=XE{Ny7SRl@Kd8}Q-y=lvsTWISwP(N5|w~8Q>*V|o^I|< zP|1(8@c?zz^Lv0~+dIo)gL;sk{|$t(@o=ba%3LlSnt#htnd5T{eR^_UofAw_OC;$o&&@m&wtn@WFyuS%>dKNt?r#*q? zW7qSxyKeR-Eg-fUNDRfLQ%q;~K40@UzD)HiC?K|CO!(ArEAlmu3&x4}en8DzK6!IAJ1+h)kjpIT6I+m8Bqx;e~8ViW=RUOjsz zXdtj)o$l2=ksChFR$%~vnfbn-z_=)9VFXT#yWJU0Cs9PCzPqsMP&i$Bx}C6BQ3b&o}cv!^(1qVfvO{^d^HBUnHiOy)H-Az zr}OJ~IkMVQh0X?9Z(qN45EvjS*z>lI&}Dn_5e)Jvic8LPV`McLfEwgJ7lN`Rp${jj zjCnTbUWv!|yd}rJODPBZw{%LjED->BiM9kDDmU3Ec>Y*fWA(b|jCn@LZXswfSQuzE z`e434yMWhYi;`B6Fd&v8`j*aD`-|7J#&9GKj{$;JZ8QC;%$Uw;Szv22@^g|)x>LbY zzRl`vOFKDc-k58}MI56x2{_gM-qK5@Cn_YOb=yH zvqu6ZA&)m8gk^Afwp?I=3eYaI5AtKunp^|ulnm3AKh$eA*r4ig!h!&3e3NK?v4F>J z|43+{L>25=ZuWY{9VpPp55b`g=9G$sMg>NrM~P-( z@9bWLu3NfLs>B~i8|Gu_kqWo8oL@qX>ZD4g@!XDmvYg(a0}b+!2q7~LDuY8OwQb-7 z3nFo2n<_OY2B2m3nsMm+SjWP?%$sn?{Pq$M3O4swLRM!-q99a?#Y2aoV|(gWZKxq` zr@VU?{T2vB5P(_Xa4}<|!&vMtNM5uIm^*yU@M3BWA-)A-tTu3lXxu{V{OCTxnRckC;MwQ@{B?)`! zppiZa0`WcpYJ*sm7=O0;XO>uGf3kjKi{!&n-?WQOZL(;>< z8>k5sDsvA3w)joDj$s7rO1C$cP?3`%mgt;g0=1JqKAobR>8>8viJR&V;S{Vu+t)+6 z|9ZLo-Ev8~bcUyNB6V5lM$cnXFYOIEIOWXEHI zT+@iZ^WJTpbZg=aQxbLg(USb??D{%tRB39e!O3=?s#=lSP19+P)EAku3>I(J!y7^; zk?JP|pL>iWEZC@_FYOl1tj~uL6O%+`=&4Zmt}LUv0%wYl4lYJwOyYz4> zWQF8w3Elns_u1UKaykqm8PT1*@8kNv1-q z6gwZ2<(J)5^}-+}C1pgcasnF`2`!14WjG5bM>^>Z>X9Fq$d}X+gQIkAv9j8x1P?Z5 zOh?eN9ol9HxNJY(s;433G3CWs^Ezz=0Q-PBP8rj=fXfACAo^+v<>P>~V9TgUoK?o4 zWGZaftU>`t@A%uy-|0ZVH%c?$NP#uJM_D8B%mQC?U8OQlRtW}zeMM!~SPrO&y+qy1H8tX@WsZ3Tro+ zBpVtU>`pgm>b>_doGdi_WRiJn9b9-xK?ws?V%TQF@1~O#JbOW-qAyaD0r?IYDf1B7 zTkH&ZB8mE>ub(R)Pd)o~cI^AO=9jNAWc%JUaq}V0(~(CXtmSWZd@H0aRHf#+KyY|T zjTMGMScDhno_@+ONXhoBC$S`JrBn5p-Q~q~fSIUQBSZ@deo1|Y^_Jrq1RI4?Qo=%l zl920ewZ);kdbjGsOcKiN9ECK0Z!Zse21bS*W*yG9B3+j_JZANBt#lgAcY){+OuEt= zz1I%-K!)SixbUP}l8#zVho($gi5`sP=NSn)**UO{F2-m!O31<1R)>=cS(gz2 zEjq%NzZlSW$}kXxO~2)J{O#RbBR?F^j(9(r_kq!px)9{*v}EpXxiJmfsMtS{TS6OY zv=n)erIbm@`9=Rds78`B?V@0og=0I-H{Y@Q?W9Os=*K&|XQd3MVtv_oToYXFsZqXIuj%{7 z$B$YbxZyl4)}oZMdDHV2j$;eJ7o6Mv(oq708FNs_ab?m2(@`aJj8+n7l((zbV6eI; zg(){0N>NDxwp8&+PTdo9#EVQ59Lx@p(>Xi1>%eX%O6Ie=zpbw~5OF{uG$I!Z%X*!_ zs(DlK4D+$kr9nqLGpewceM?6lt{PHyyba568L@HX#ksqbR_I!8Zg+W~QfC6PBE0f9 z*L%&&Oin(mzDTPqndRKjfGT;uH6-kKd%EC=T2_5rS*(9O_sg5y_uZzdvCs^arQ_d` zUNbLpheL}&?)8oYy6PrORhoBChc*Jh&ZURxm?jcLd?5L3NN@@l;BVOq*;#qC95kC= zoqJA<0YbV%^6xKa*olS;if@vRLe$2R-#xzpfU@E+q_`$cdd(LAeP-o~@I`V&ip84r zzIJkiUPG*|xw!pPUGc!F2fT+?!n%x(D4~LU0t+5zoJ3BWbZ)kO3(a_DU0F&0t}=&V zQWAbgG~;$ORffZ#lH9**q6)=sxk>++&#IM|({c=}#@?j8Eqwg>N{1cI4{)AVP{SEU z-e=zh1&x=v&ic5xGY4KSlWvh- zaO>cd-H(E0N})lxq-liAyDGFTaC6tby(-@uR{HvLep~pxV#qOrWcb}*H2L~s9`KQVV6*8kFwXV$ z^`QWDt%Av-FW}N_%S^ORnrGPPjvln?Fu1j9kH`2%sZ%UOX8_Ux^h#@fR#3Islveg? z_tri!xAmvG>Rz+)BbP&RR>Z!suG{)e+jm%p`-(kw=kVXOvWtOWgWb%?7M`9RE}mAy zyiCM9IQgM%J);JF$X-cYKOlaO!}&pdeZ%hIx@N_X1_rRRuCRZaDpB}yyD4|@&GCl7 zHIS!?y|1k%qZO41xhWb3TP*Ex)xLeub%eXld)rf!uK^NW(b> zg>)p*CGh(IZ}*LW3p;Sx^HUb!+uZ+fsMDw?AxR%4#AEQkQ29{p$Q5@QSCSFbD_$UD+9qvL*fNb7F04^%MwInk% zbanNVN}48ql!zA>9{coLwr=(Ie2Jp<%;ILY#hWgUy>3n0uTXQLr(fdvMryMG$WT)} z!i0ky>RTTvDCBf^+h*#~2X1sD3+%{rz?&y12$?a^(|uZ78%oyf;#}_rxpN2V6y1oK zHMM|&KxFmNdh@ToQ({A((ah01oxD6fu|*o4-mk@W(9PP|*pyaOpgGGw)~`G5S237h zU&qaH*QXSqk>xD(`r2DvRdxG8mjrdifd6gQu+oT_R9OGjHe{a z9T*3@b8ibKSN!>fYrQ|#OBM_SosX%s029&1j1ERgvqY~o@Ab*#J>ZOCjW(n{efbBNlS1zKm?5E3mtm?;x$IC z;99t=z46IcaPI`E{O4vsP-qP=LdwgD@&8+dgaBrOwC}V_oo#fxDEp~wO zQKe203UkW#5eoZlfZ`tT2458bS@w6BQ8FC^zul zFSQyR0LLlA1NK`f{+1}K$$I@|Bq1S{~*UNq5y>W`v3h^K?^z9#?xu}2j9OI8?8!{waw?U8rj%jaBy(6h7%Lm&9$mr zCbYEvDfRr`R8mrM+EiU#eHz2=m5A&jJyzqsNn8G``vnrpT+moV^7hsif~6&s{w)bF zmHUDpT3RH+$GW;0??j|Z{8_HSEQo2sHM5=Ho=Lxba3h*d?lx}B&Se+yc=g|XT7Q|~ zE3LwZLsx;eE$0T7oG$|Q$<8WA;r*V+HcNDTa0S&Wk7zqxMeYm6} zjTO_%iZN69!;fHGx*wQ_B7+&yp1a94Vd|DbwJs5@8l!kuf^-e#1p9xFi2|Vq*mM4a zznbc0Bv=b4uDez^Kz)H)gBDc&@~o9{c*@*_7N<2b@(wc*l~aCfKGWXeXWgonL(uzX zdm2?Hh8n|`0DaCAWEkGubbj$$!@i3D2NG2>*$Jk;C-RsG6k}Wib&VgnY~a|iSI9k ztLuWJ0oy^#A@ZOpOExNr#Wt90C9Cy$*|NfbXVya+xp*BaRN{hR6LT||{ao2X-@MBEYUy2)Ksjy_=0BK&T zKtDL9Ov-$8Z*XVlgk(z|ALM5e@wjnU0ez|NF%VP#Q(8^lj{>m%b8y7n=@D^gs!(mZ zS(Lcz-ojm}S48l$q9}B$dR%vAu$}p~T29JZqWDy$Xe4PS4UqKwPb<|a20rULldHC& z<)gzaxvW~Xs6oleVt1Sv^dZXNF-=iHnlmT=wv+?1BFs}cj7@&u9qdv`T~VpOOCbc_qn*} zR7xap)K1u}#4U2$DZNm5ttgx2k@zbz0r7KPYRjObB4yYUzC+un2(b0kcpz9zI*Rf} z4u6l-XCifqVcnWFGS43;*hMg;&Cc=W=2vGF#rUnyf+v=l4kdI2l^=U^Q%z0#Sk*X93CjkZoH#CfTm$ za74b(16o*2BGWSruBB0jJNZ?YD_?a|e7<*a!P6?vnK$PTld4NMdE{lL_7;CQPxeC% ziMjI&ys`TdpkGp(ng`6^srx{@SaHb>liq=J%-+6jgRBGoLJ_1Pw1aN<$@( zhN!KyGy(`}{+)HuswnnpyoA=K^F$DK%dI(3E;&nt$>Sf|Ta9IK<%Lovz|S8qvp5ua zZui~S#>YiGd`-PYKOqIeX}|okNRkvdSRKZl@zOJzz)YXV9k^NJ1PdZcF-tlucloI} zADK<&^W7$3OwV)%MWXoHe5MD=^$yM$6@AgtlGxEW*$hG63$P!$P?blKWtveLozb)b zlY|}zD}9pZUj4Ce*Vb`18QO<7>#%tgNx-_|GVK3W=d%6+<>;Goy({+9t~Un5CEs$t zz!UUdXO8|41w!RXxZI(##Kioq8j?vCL0Oqi9>*Awq~PelvrAaTg{Rwo-a&c#T2|;l z&l~oJwIHyK(DC~WK?u7=tC3TLbFkU@-uEyZ7(fMHWfZOX*j_ zE;|iM_SqO|%6Iey+en(WLuOKhjY;>GJ{R>LR!U^8B6-|GyJv-}#9AWifYNB|JOg^TdNYx)5QCn&O(H8@%s(jJ5jV8F`wjE6jF zBqfn=PIw6mLO5mSTKUB+9zXWG3u?+cjCAApS%a*I$b)DlLCI~Hv$anMiP* zKx=I=kguZ9DPir85E2_(;m(Yx+CRGq>V9%_>16R(L-lIxMc1C!)OkGA3YA@0&WrMQ zdZ4*p7fXiK2e#a2ALUA`z_f{W^0Zr|G`rQ$Qj>jt;c{Hc77bZbVLxIMvre0Kq`M}} z>Oy3(y0M=}0GqX||03Zk(lmT1Dy%ix*rH-m^^y)3Y~&_TAY>&5S?@k&>|G?BU~Hg- zjaxa(VyLkg5i;YUH};lWVqqLA`D%7Pb@5%-kAOg`;mz$6u=>b`(kjKH;cnjhTI1l+ zF-@oNHUlzJ$!Ql-RZ&&Gmmoa78_6w;r11_`D5r^Ok@M7nezZp#s<=37(7#3V;s6i@ zv^6bka&)MP*snVVJETrmkNOjQv6BJwMGl4UH>FEIEgs;!$8P1jML=Y32

bHiyPp z4(?PAcz>^pWqTuFi_#W;7i0N&n?X{dApUr?eyO@Bk;p1@lP;+{=?RGjHRsz!>=dL}7-rrnY47%rC+VE(3X#PQgAer}p z%o)=06dj2rD{S6@~v5(Ed` z^vAZ11(yw+YD-7_tE;R0=L5K#H7Z4kT-`Us=yh0FxE0euXHvv6K0HKqdQp0vfcG0j zen_`@?}ko2|90=_B2K@~ktLgxB1_v(tIoN|zKAn8n_y`wjrJ=C!s^{;$$F_)2;4eY$z1stJ&~cT3E=-%i~>Qf3x|S zY0Tt!X;y`p+e%sTKBJC6+EuetTa?!M>+jv4VPvhyU zK4IgDRIei%eaAkLLB;};dgpHM-@V(e`B{J_uSIv9F^E84Pct-Ws~5hQ@CNB$sRM&W z(GV2_pzH(Pw10coM4*BOe^W+e36JR4=9kzVkto5_Z!!L%$5nfmnM?Sc+kfVRxCq*D zGN%#fQq90yC6+h`+WnFWFll5pXOd1kn!(^c|$V z_EzFg&mLrIMR3n;do?hI4Vu@7G2-q>$%f^D#MF(U?n6>I}51gI%pvz!8G2YDV zTV=RMW$E32JZ*duhg@tVnzj%Romg}Uk{~j~=9wmGlKZl4U0Y*pY zbz~ezi`TFcmI2Cdjem`%na^)tXS>+pn3sIZ2|KhcCH9}6wSu1WL}57NYVgLqPI(UU zzX%Bh1b@JB#V!P-WYCM)DL+LKUxI#3O@QI%&mIKJfDXd8N-(Zb^4vn#QXa9rJ zNGi<<87q70#1)=S&RA!XpW#Xl)~txWzGq9ZkAQ%L$ZB-KJONWlVJ1PAye`5lhzh7W zI>g2XABx|#+b0k3nCb6h7!}apz3R*(N}edHWAPw^UbTe)45HBt*Z*f(;p(Yth|xf3ZhFHz56k5e{_KY)iUkD8 z|Er0`pN2yucK{9E*F?lg(XVMqFx>h{gJJmRZOHup(tsS#1mi>!e1SFPN%GGxh=HEU z=;8^mKfS!3Yk}LdOZ*x{8F|L&*(5({ZU{(zTI+>I`e%}WmV7gy39d?$W2oIvP9uo{ zCL`Y_L)CV!B^My|DRBkR$E=_ z1(jCc88@peAJNdzSgSq-%Kmm(sQNppK-+6TmwjWrNyO&&V%+)G{wa78uE zK&SxSs6W>bwyGFDSlP|O9`2{iNlVKuPM(1%c_Sc^-Kt`(x*MVqX`{1$EPgJu%e2Y9 z@^CQEkSD`<)(EuN(gI&>b$8(WBN%?XKq~5+gbnNh(+FzmSP9JIQ3}MXRy$S#vm4kTvrt73(VGSTI$u!i^`;1$!cu3 zI5KqL^5_*zafh%r>|gMvc(sM(t58Xl)L#^12$_jwXJ=c#+jLt_E*=hS$X!@?de37Z zF!V&4f$n&hN&|1-mc2qyc0wH3RVfpSUJ&4y>gZxVr}z{Mq|P_{-i zjawn3qRTg(ziHuNcAN(`JXd|NGeW`&t^@jaLS~fWw^0I`o)V}PT$p}kd+41|45F`w zH8pOho_lx-Nf+j%Fo%w+&Yyo=ehF0{cRz{{twbFWbsT7i$b>ix?V8c# zQfr>QA%q+GA~2@G({h);(!mHcdC`*@q%C0`diN!m*QUufkX04Xu+6}0Ug(~8$A!*2 z=adG|DZv!)6Axp@4x14itkMTx!PqhJM$F>pJkI!`Ncv;T7$ysbFo<6FFsb$8||hHk&>zf9cO81MhA0D8oJ(D zYoCRBrYTnl>R5$|K0zu^xIfH;d9Gw>`el61_mQw;L!#r>>o;Q0@sP0c?toQn@pw7? z>U-A^cY)UtoF`0Fv(N8qAB zgAw)L7vjU!!Zji?*nfWOA@F`pp8WOnPISO8hc{6NW>6%r588xE{zh05^ zeb53NZ8r=UNkjfmyg&8$3vw{Hmn^D(8u`wYg4->hoeDX{RoaPU`F@V35itMI>5NeD z4|T5r&%2owta0k<)DhRgbarM9GB{5jy?V>RBndI~u6 z=#pV!a%vDrA<#mgS^E%ozL>u}Fj9RLKigwh?8b(}g>FU$_ytN;0b+kW;#S6)Ps)yq zUFx;#Tel7)9lk&m6^o1OW}S6=Kl2zAfmm9OjmXmB-gt!aKv^IJ13rA;51X+p`=-vHR*WMj3fvFZ`rlu>4VrbAuEzfC zWj><~M)RdA(C?qoP=Xg7tWvO!WMC4x1{OCS-8mG2Me@5$X}g>+i%r^{p<95SaQCyz z!i@oG{+k2D8VIF&6h8Q-jBGWS3Zw7qaL~Hn+1A${?RQ+x6G%cABj*+)sVu&L@wr!Vp`rb8$;j^@fHyfTe;(!hh^lgcI5*v0z_Dwdj0UW-2OC;5_uA!ov8j-rk{)l3~>h6d-~~aT$*@ z;v8Dyue$f&N5Pb_GVQRu8p>ol0Lx9z11B)8Zh4SR$kcD=0WxNWXW#$H z5ktU{({gJxqQ4xu|Bu9O#wQJo5Z!%f^xcf{MG`19Qy31BUH!v1`V}k@$JqS zC?FCYkeB`C9yfroZR<)ST)j%P^hP~lsIbt&jqzBq>tDVO4o^WZ=nhqudj-~uF9q`i zY?{P?TZQ8M4N*r3L@LBeqd$L|iU-ueQ(Z#5s|DmMT8LSVUOWD#giS-vPMGCd&W}p&M4}f)kU`)2aelDM`;T_G-HO{c5{#mzF z3ji{*a&qsQkd+h_Sn8dP8uvl2QtExccK# z+ww14VGh(tbF8IL4sUXqYtd~9(Bg#)F#Pl0U|P8D@$VyB1IwX`=^>`DnNNzny~yTh zQNe=;56qtU0%5*B;VJ7P3*-sr43WRO@Fx`1!`gX5pBR%=VCel_0hiXB@}0$io~$iP zCjZ6z%z+YH*3BU|f-R=Cj|)uC&;g`?WbA+>2!|B<+Su+Rbpi70D6(trE6DmdJR#X0Zfl`Ot#P6X??AO3R4|4&N&>~!FJ!d5ZKHLW>RFX=oaF#q{2F4Rj}UdlMs+k+%Zg z(1V6F0c@{RW~7=Q+|vE=X+@id;ey_jblSje&G>c7!$q|yaa`EEK0WU!WkHN z!xa~3O`f#=lwarx9YjixCk?5pQ6|z_3;=bL>xNH=Hp2*@Vm^?ul6v`Oj6ZS@B42Yy~7vs4D zA<^IYjlxMy=e1X3)3ommf;D+?tcF@aVZ2VAO-h8w7XA5rG6FD28lwSa0S@5fy_K;q z5P?7veQi^%y1H=X{`eW80IkV|smI93(l64>CwDw`na5H;qqn%YxL#EKXr+y~SPcNI z{)5!{mEdLaNdH{~rim_6;XwPa-nlI(2w>vRU!Jw-e_ys$v;BC|$wyZ*UsUbe_tjM+TRG% zC^&2MSOvCU4M@BYw4DtHtg}RE>xcl+L7>|;QkXrY$fLk`Lk5<#{z{h}0a(ixp?c*{ zVIbsz#tIm0~@I&NOZcoo?Bloi%d|bAS6-h(1qLHBQfE=z;>0YL) zlcSkD8F|n6KZ^cuN#)IUDlzG`-C{A2myyUd2~*3L3|p$*J!PuN&3m+@2n`aWPc*ZO z2ofCxqtXax@{lC&gA?h_vgvzP`lZTQ&z# zj6jE&VEpT-121YNQsf*uYa991w&@GRKlm)j{(F5%u1@wX5M!H*JNx?50f`anyLr=3 zG#ls-CWQ`+zeLSf1#d7rNrmdx?WAX~B{K~ASc&(oZ6i>Ll9Pgu?kYbeLsn}7@^yIZ zi~aY@YU1$U(R9sbV!*NK2|ZcVSnyE#m_ix2;6QZ9aa9ZO^X3(%kMx3kCP=v=JzZJk z@___s7CY?Ap|mKRDfZ@#iUr8)0C#Vk5BR~$I!j=Ad)UFSk_RRs zJc@-$F3YCK_}Xq}EUA~+=%+ZZg{%#(6INRFiFbC&koFl9h5&9UWO28Pr>_AT7WBpo zQN5N13g)4O!!Lgf&OX2QsQ;+Vs!`HUq3YXEd!I63cGs+UT4JactUk?u2?m}ySWxg?6D zm(b_A2d?6M@7c<6k@EF{O&QZ|zJ?VH!Z$NL!cml~&-;ox!R-Lo&Dpcih%`2t%=TBq zKr1pUWJ;l%XuM8!T7m)GC$siFuMHQ_)f!a7K~m%qKvwKppK2njWrEjn%{iD|N%l3r zE>u@$yzs(~LaY>yW!vz($5Cw&DMp$RzV{0ZT=fT-3Et7G)whuzf(VT~+&NudT;*1xGzzjbC7ub<|5BlVPgpl>-=@Pm)bEzPm0V}q;C)Y6 zL*aN#p~&5F-I^?v*oB9FHTX*l#=R6ixl*RKp?Bjpo3D_H(;k9n#ZJ zk|e_tEG}Mr8uMvt;5_(z>;#b2!D8zIdrV;-RzpJ{0fk!!BXxSSRtvjSEnh(6k@Zb% zW6tNzo%z}kuLsdQ|3#Sx#r_9-?-|h4wzZ84f?z>VP!yynN-s*4jvyc%=|wQX|rP2@nVgxifBoz2CFXe$RV<-1`;(VNBMVYpzkB@r*Hn zM1-aDvkqw_q{3R&dN^rH?l*@xTZ4?$@@~l~|6f4S6G{Nr{3VFKlLE~ABQ4>*tzAeA zI9Gniy(7 zq3HtKy9gGrdCRIlj>&>|X%*}%p@}mkshqoq6+~Rre%E3|7Gl}Z+$WSab9o<3=Cdme z^CzK8jhDTYGAiWKJqb;Zu;uakF~hGhQnQffhJCR{<=D>x5?Ecgh0(6c^=@xg4nED5 zAS$TOQIyr>Y)Eg)69yb!I9jS4Hzb5yRR6Dl_)+DR^dM>nUi;SDas60=zB~hUtosfJ z^?6$7JEXb#k-5-x#WEkun-qM;d&d2jNN(mr7!^^H3q=Co?)UU|rXt$;tw&KNT7jo& zw&Il+;QHQeaa`&x7EH+g>YbB(GteEOl@C1|U5!S!H;JM4e1_x3(Kgz-ddUi$mr_hx zw9F@Gj|*k46vSW#?zP49sLaGUR2oum#lH&+b6UI`5P@?3E1;gseT^b_-TQRb#t{%R zH!ozzkq4r(3{IW*SpxgYEqJIs9voyFs=WlEP#B+@*@te~&4mHY?OF)vEn=_f^<1#g zg6gKb$h_&(O-J@rF^Kne$-KGSs1u#1QN~l^s)?WaA32hswyBOgs4G{ zLo}B3_?Axebkw5zX_=~5R$)w5sVt_t!0E~iLc(@w(gplOiW|WQ zgWy(^&6SY&`}G}bdi#uo6C2UP>T!QEf`$IXxuoMRzQwJpSL92 z!PphleUm0fZ9w`o9D6$?N2(^yag(+&Sf z6{J1%i1!Ge(+1kE#7Bi*p6nlvB05Rp>ENp@UJ;UpSuG+_Ycp95peuyc#%_hR)|+fC zmd0{-_mq_fm`{qeiHSi(q_fkbU5%(^6|GtPkl9J7kvCSI&J$h1S$jXh^O-sT zVrqQh1P#;c=+fMxMH|9Tr2Y?6%|Go~x-UxrV`C*(Lh`a@COatpCDxJMMKcZ7b@;xKiucr%MT&eD zlW4kkw$^!6h(v^E!*?eWj!hx`;*}#qLjA2}zHMr0+Aw+AFkT$HUS-+aqzY^!D6i2r zKhpAvA)=2HnB@)HzF%E~G%E&mohEb1dk!q_>8EY_s&|y#CUQed{lV!|!@IuAv{RYO zCVolNEbG&Ws>18r3oAQrb0uXT?b)2a$@9?XR#+NhcdDw^4jDQ^0;)(DCBlXuV@iI+c#Rp5nMR080(lp*~qgP}}H6wrnj#?eXB`pql)ARkd#Z%?Q^{ZhmmL9D0as9WJFA zn?0H=kx&T!0?qV@!$hhNB;9(s=u6d?z<*8EJya(U!9`Bv)7N-YJx~=2e^;DkRbPA-ebwT@RBzm4`Xh=B=L*qpkT4T#C>{( z0LYsDK$X}4G2!=(3CMnL_5TmTrNk^``|;FNdOFH>@ze!80{)Z5ck&V$^j2~-g5NuVw2!iD1*^1r4q@*it+fHdiWmdVBP74~9 zofQbmAULAXRXN46v=;HWz;Sf%#7 zPeH7q1pv3g=N^Xy*aSTgZ)S(Xi--ggXK`2;t%0*E_jh{Jt=ITt_op;u)AOO{_-dvKWb%!49X z?(*rU6Wf577Q?+sG&MOr_x5Pja9^T#hd~0P5>=-1lAd0bb4_jhdJXr&fVx(TX_k6= zaCc8nv6p8l7-N@7c#?9V^MxBTPmy8oa~ymyGI9@0$-50Go0@8B?{G$i2oMXG@L`CM@dxi|Yj4lN-eGeD>pzz- z<;KjwU|{6QqcrouGteI<{N-56=0abeRsC4c4OyBjG+N2cWimjh0{+DEt*%kMKL8pg zg5Opsq7Yo^v!4(|8Cq>I!xW;J#*2CYX$Tftzb}gYL2Wsl7QQv#FTE0cDP61)sgWMM z)a-kOf+MV{hZ|DRgy zGG`tTSq>Nov4Z)Fr?*QUFjxaVz{t+lZhQdUBUr8I!yKVfJ7bWXy}|(S5`d`CM6h}b zjJvD>2j~ouu@!I|xeBTf8tyBDC5l%iySQJ8)Zis%qz{L6ek=j=Bm@>+bLIzf3mTpj z2~69qd5#WUtfssCj172_U z)lrRp&T&kifx+hWiYpzY>G(%<#vTqz7~4gLpE*d3h~ERbF21A_Yzq?n_E^}RDsaeG zg{!NZ$!rzXV?A-t>&wOfhJ+|Zqmqxs4;sau;Gg??nQK^K?zl8f9GRxZ`9$+`A5o9X z?uo6`r`>o&kc11%I1Zd6s0RLo)*DP#{rse<_&rkka}3g}t367rhAm%*CxJ=dy^RpB z)Q;M1Eg&BSq((yyA)^3FPNMq|2jac-0TWGmAc}wl_?;Alklq`w?jC^g#MXd1_dfH? zd1iKYz`}7;>00dotq0+8HFp7ARwC|(#5|e*mY7Q-Q|6Vc56Lx)r^^Bma(JziVuw^8 z;$gVWRsG zW}$jkB^uiN5PU%`(v#usP4Ego>jKtB79j8xvpNk59KuuKAS~7rEZ`w(`ueq`q&G{m zNY4@&1<+s;C^3Qq(3P7{pZSjnhF8HFd2h5|BJ|0^nFh-TTZgPR)l?won$0ck6QDzg zN>0;pkAPxb;S{y7}z5Je3+WOJ>8)`bjNs*l&3 zLCuXL>?H}=svr1-Yv?om8D@3x#EMt=e?{zI`&J9V|3y~Sf5Xvhqe=gi_x>!9?Ptlq zsCl&#B=M@es!M4)e~|n+QwafS<>v?cI$S3TgaGL_Zz+xImx!nY6}; zRPIZj&ody1$5OgZzn5d4mmp`s!;=HG{iAh#25`)|z_QuCetRs9Rc!5fFXl7n*D z?;HQGyVd2#rRlIH@A%WM?e3?_i)zWWfWB-rXTg#W=%gV)q&-JO{DTk7H~pDF?vv;% zz>g!EbF_Q7q)b6$4VmPLb)wW@;gP1>6~ z#~^)Q7RXO4>HpUPLw8NAVV?`|vu6Fjtkg16aIkV}1#M`+gW^DrR%hx{4La3S6g2J6 zvI4fSna_u6{GVjGYpn;QJ#~P+f}+flHbQ>CPYoUgZD?rNvI6}um>!|*ozp}bsydgD zctukC#^wl~H;8pmMRvDnHots8CqyWZ{$a76%F}ajXwF$A=5xn$0gr82$aV0Wf2rhD zgVweAaOLZ#_rFpHD&2P*sTExh%wGs#EqL~_`v>le(zY&$HakX*7Z1Lo4}`*YGt6?| zzTy1~>6iEez%IY*DSzDmjl?D}fm$KLvWF1tHxRqN*Y(-I4gFg(;H`YGJCN zuoh#9hvbK!G~>M1*jv#9k3swy_+4JH;6=hi4|xhaQyTGst9zymE>qKe{L8_;Zh~6= z{L>dKr2D^F4F$d-B&I=iA2q@g2RA}hxPQFp{^Uu)bemC1HQK{zzEe3fljS2zygZJN znUEmix)ZCB?#uyr;(}TmSkb6!oO`9Q_ay%G!=p4&|15d*ju88Zt@*BiL$+!FE&bCH** zf&DmrUrwmc8GPbx#qYaxUR?ul6gw6rMWa*+TC=699P^1`cFpS z!MwV>JJIV2v9;`}Ol`%=c<*d#kWh7s+lGU5C+Ho`VGxHSV4>Ns{|c5tS{AQ1`h_v52#$@HD@tx>G}6zZki9F9u%N?LjeQ~m6L*;_-o|Xv!%dvkxaaF zNCsmN^%uKF(Chg3Z?SIuT=wD%-PWmf@Ic-943Z-y#MmPM*!8*$D~m0U$?FZn2&fHlA{L%FMRM+ROJ!s*Y|&;Dhj^R zH_?9gKphE6as4J*`|^NK4Bo3M@8#A@1p8}~pg#ue$A!1w4nIj)2bT#Kctm=*%WEJ| z3JPIx|H(!F85`m{#NM+!KQKez&w)pRIzE4LaIasT)XfL$^}vyWl1*=D96VA7xRKW~ zt?@w~I)bCGW|ggOuy(ygxeq`~;U6)a#CPyQjtWVn{g zXM7**_l4T$fUyLGWLxF_cv3^s`VKEo(z~#o zyfHOt_a3C8M0C}#TGYJ$NykIX;dxD7;*0L^|RU0Ep{47D~7Vhj-T$Ksy1^xpU{| zB8Hd2bY<^Mla^_{V)Iu*&enEPy}i8}22O2l&CQmH`nHu?e3p-9LATQE?wt6Lrx>R7 zBnq{#q5<;~1(awDKt>vZHP%)lmxnj@GH$pnm6W}Ygg|XaE9cXw^V9$hTe)0~0H4?z z7#$P-LlyY5ad<5G{Z~gqzXO&grv^EHz9h{BPMs=CMA}tPx+hCSR}5qH-ps|dY#BK8 zrQ%4`CjLoqZ)`HH`-Yg){5Qi8@tvI38v!Dl`9jX-9a9M9)+>P$_i^0t>HA);HwGS%Wk zV+-Jbi&0*?F?>(dV5HF0q!&LkW^U$UE z_f-ZDh6~GTUc8|LJ8>sR!pp06?2?$IR6wl>L<9mD<_N5y>d|(Q2LJaB4cE5TcN!sR zs8+5XM-l4=Jn{o{B1Cv7j~!z?4cU62G;Oh&9_N9zMtk@s-Jmb{ z6V-MKm?<{9Cfa?$!z1{C>pY>8-8%GQs(>uctbVAvb!^}=hI0fH2lu)Jay_T&kM9o} z%eKK}k6zifhZ*}`;u!?o2s0x3J6CH&c;Qc2TM6-P|Dtq0Wv9{CRJW>@308yJsYWx4M&F^k9U|Aa548Wi*~8lf%>J^!i@Y#M#$nvlEI(R?={3~Q) z$Wu@XzUYxK|HRS>gpLM5>AhMuZ5-)x5rX$Nc!LPj7xOZpu&cwVsTX~PggR5(me>{Q5 zgVVCszg<9zbdQ~V#6#C}+b6+PBoWa*%M?Gn>&otwPqP0~o;@ogC`G&znQwnoxOQ!Nw=-2KQKHuxw&O5m z{QAZ%4!H8*pZZxj@oz9DVO?@MUs;%MrteTy8f6^6-PR#Rs>MC*tD-1Hs(T{ty?;B0 z)Qtc12oLuq5{Qexc9=hGnHhccLQo6AeWrb5BvEo=aaKNY)jjm`%rv5-v%>7r1uEA$ zG=E~o&aJ0YW?+F=Xm{oIgu%|jLA;l)EzPLMmyYGWQ40K!*Vk+#=e$i`I zZTnI$(8aB+l%`>RzdUPhE-hcJ3=4MNx;57S7&;7B&Xx-;s&r~Fvej z7#h-D^!2a5`@&Q^(4Y1_1@{PgHKmEkCuTR$|9O`xJ=K_)M-o+=IGP$QvFZQt;LW5H z@{4;|47&%%===J|Gt-?AYa3YgjQ^A^-L^B?4;v-Lw0>~+9~(xW+~(*|Dy#AAF}3`3 zH$9!E;TN0$9-`F6yX!Ht<~T3C6Tl&@e~s$IZ7FEebzTowO#g$7 zLDL09XB(1qbPLVvI94&$;d-Kmi}CCqvzlo z{&ctr(Up;C{#4q0@N8LV_glo>vMpEqxF84{V$VXa1(Bw31-#3Y(>* zCZZ87DdGt4>csDELwcVeiqrQZ5m#l|7;L*WXPT2+e;2~T?Xhq00Vqc($tK3o!BkeA zZoVCf7!OZkydHE)RVqDME-^f5I<{$-$B#>Q2$hN8vrNf0mGSTH=1+&-2##z!v@3u4 z3p7JfP*AW6h=V~VJE@Uf0V_ACYOTfWH!}_7s7_0_*^R#rl#KiuAk__a-YeRuOqnB9 znjIWLG5e>XDf@Z$A1+z-me2D~k|uUd1==OCWW3e#y^EadiHiC;6nu7IoJ)k^3A$Q4 z^9K(Ssd}N=y}j>GoDK*%#EcHy`cH+_cLuRlFh=x~arv8ZG;`Z>_wP|*MBNk7}K0wE1ZW+dYqH#e;j z8j&h~7xaDN@E3pn>+JVJhluNfffj=LjkFHD{CE`Cy2#!!4&>-^$=k^2r8d5<~#1N zf+DT;XY>tH18yjXWY;R|U4+addP~~E-fD}9sMhJ$9R(r6%4c02ji;9D4upj%nYx^IX*Ok6O=FX=k|;u#S(z0?>ZN0l=bG# zo9;b|^XDzrwT&#chgU2>v_Iq&8RxX6YnCMyuyteex*@eEIPEO2YLAh`6(zSRvi{h_ z?pp#F>d*(yDhjyF^3knYsLtyzf{(KV36+Eq?D`fjI#;I<;|jC&AI(80{{uNWxdNJW z-3O-l-JmhVZ>X5Xh$Ci6!;}Q>AuO$J=#*pE4J>@}Hc-t~ z$)iJmR*w&8@&@h7!;)sd$Z<_A0H0$4SdQ1l#0{%7BXz zQZ#Y>!OnBSlPzfB`+H;9wMIoS3+aVz?M`XbjKilB6B7R_@e*(FUq^Ck>*={!FjLj~ zj(LoX>Gz75fAvkAHmQvfkCp0DvK;hiOw7;~blEHsXePMvg3kR;oRD*Ir9AUg4S#e zsT0xWd$Sbiy1J}gi(FXy7&6t6+({ON`3IX46a--!JW9UevXaT zve%qCZ>b1r*#CXOF3o(pH5v?{3=Up)P0=g0E@+_0xWim&-t|!F!^SIvl1g~(?zhVN zNc{k~f}C={*RIn5rIAOb^U{!wy1u-9VDQZ!s!ofYm*;ED8a=l|^D0q#agN=usDw61 zYS7&Xq3PM=#c%bAvwm11c)#&;Q+08;J9t7cU$aBa9!Tw48UzTIs#Fqg9jhh~5Qnp#z*Hjdll z0YhTaw8Iyyq28v1=EbVLXwmY;!0e?Nf00e!)(dS}a{;toiWpS<{h5ZXFIJW}66Y5M z9X96DjlKpa4=A=JJnz4x>`U9b9SL0p-4>jxGdm(${ls#RBpT5lju zbfoKg?^(=DgAs0y&0jHnP$N4}MB96sc6Tn{xf^@CUrhf-{4{)|6(U$fMeFmEpz5#$?#uL2vJ52!@8&=JTDwrYaD7Rkqt)I`R7g7oMY26Z|VuLno*9EZ`2u6<*lw9 z7@4nodU2wKtEx9|(V)=r6-@^KYr5KnT?!HR*OD5jZqBkB?5!wR+o*`Fy+>`#%nRWY=YbN@ zm1~EHpvoiIbsuuM3S6!^ev?#e`+i%Tu(m=ZXA$Xn_cgy6$2vUG(qULI&9E$qbbU#T zF_kR&8v(FsypQ-N;BM74LXMqMq+{8j(aT~oqpNZ)O&`2HeJdWTe)fg?Uat90#MBk2 zK{WTrjpm$Bar{f}Rh2!}pAd61MqXVAu4;4bC$Rvr+GO+uje)`+kiJQ1=pj_J9~5mH z-0wPDq{iC@PzaUD`Uph{OYK11OlJ4MFI0hF&L-p-)_ln`U+B$D1}B>3l=;Jwg_qGG z{xxecfv*FXu8oC=pr4UYw5857u8!n7m<7@DXi3GpYITSq-jiHvlk#mBUXc{t+hzcu z-n6s0cDnLXcWv|$i&-nXS(M%Zww3$WpPN3UgD z4&>QrUu#D>lyX+js#O)P6nYz3HXjb-}1K0o-l{K*8P+hoB z+ODZcBNM5v*Id;J8}^H`w3S9A)cl=L*j}33=E9)nr%>o)8d+M`axgZ7TXeOPVQVa@ z}rv*o4U+-gDx}5$G#&vHmcX)BPWbXzuS?UQ(*FvK-S; zz0b8EkZs&n;EkH2r1pS&!$rXmr?ufF_@G(b8308X^GCM89pEph#P=BV>+`CXlYlAaVD7Et-L!ZOXq$sGt&Y!Q*qR3 zX;Z-NNrhLj>PF>4UO$MNzKvyFu@_sab&s^+gkX0fF9I1XK*w$Eiof}Z(H=yGKLekU z^Dj?HD-lz9o$%bYnwvr}Uf}aqykMzi;|~H*IbDvJWmV=&3BFt$A*BU_9iKzQyWAOM zEVmX1`A_k1IjFRiE)C804=?vd-I!QB8q?a`?9g%1Tsuf?Z?ea2GPJX~tSM5L#HHyn zkqy#eJpE2|N7Rw81Xkk;F=id{$tSt?$_$=7{pgDAZ7UnIeNp3ZEIyYFTHEe#8OmnJ z5MqU2BIu3b01V65T(u7yEwwn>WBA-(ySo6Dy;r-@Y!xHu5K+TBT%A|5#Y%lTf{9{j zIK3<$Yh-Scrn^*z-2-Rt+S!4L5MT90dNV=4Sn=*dnP7|c0i)r*62>?Dq{q3luPY@y z?Yu=a+uVZXa1i#1wX3MlE9QOR1Q}y$^7Tve4u!6Y*;VWuTdFVyX?k%r$A{rrRn5_dZa4}Jd&?4E!MVN3n{+cbRIHVY3k5& zL_Mq`J$p{>5t$7wy0~U9PIz{4$v-L0S^dS6XrU$dn)Uew)ZXsO<|KJYc;2xwH_lkW zt}^8Dt+A{cHyX3Xvpa$P+2)DnlNgJZ6Vh!WLtWKO6i&O|6d9-YL4jXy*N2{%{hl=^ zM5PRPy2K2F%Q5dC!G5MEY|{1KpOEByMr}PA`X$z-QcOkm>)kDR#gS#PnzjH4E7)~g z+I&#CQcJXfvVxko4e>dfOa=)U+G&q_qUL5Q=jRvX>3AP$J&aK(ZL_S=Hl)c4XVV@! z_nMs1BPTRjtTQ=8B!fR!KRlQL{T?(ew&%2;f+;?G#A!ncRX$||(!3EYc-y6H+9Be5 zIyHN!{BDIghS&Tm`2xti>YXnOHgTcjamP=$$$x7iqViKxOfcsZfR{f>Cb?IiIItzz zB@j?!$`u)W@2eRn11XUW40}U8SvI84N(!Ezt=l0oQQZ9iNCF8Q+wB{L97WJot#8J; z$bJhjiGJMHi&}4i?ul34 zjf||mS{kW?=#6?wbB>HcgZ*W}!xf#o8d=P&HK*!V#jFn|qnnWt+z%`YtiXP7d=`@?jnYcBn31q|hSXLOUvg>QcL z1~ShH{lT&O`1l$zYDA6XXo%4K9YKU_y5EEnw7)M~42m9}TJMOp&AUO-Hz5r{#PICS zXG5nxKroVE{@^tWsV;+K8>EenPMg^*6n%}%_uK}J>Ur*aJEAhjxpZpvA#MC5h#Ew& z{-Z{kQt0(AGyT~Kvff*eI8>|=gnCbrL@PX8uFQ5+(m=>*{(@y+lC(p`c6W;u8Pte2 zqRO-Ot*S;DEN=pEFa1M~Z5@n%-j}p59M>JTX2#D1#%RuoSLn~yBW`a(<|Xfv+}6(R zW|P)#VjLAPOjq42vt20}h#xyfZ~tlIaUxRy7d0@CVH1IjNt@uuff%viaE=ulGkJVm0D>QyYD@!;?u%&zWL&A z!ft(R(%#tJlP0sF0WEJX^3*%%x{SHbJSNQWa@ZzU5jkT!rPWd7jY2%$-RAOg4z3n; z%DU&+MR(gSGS7-RtK-V3{cEoWF1(lNxF0<(*VBZG^(DA1%s0-k7hzR`zdXj`ADXzfF!|zTQ9aqZ$W51+){Io zxpe>sUVcK;yI0P8V=(LWd5+T|%s0P3!%U$OUM!SGC>WoA64lxHBJ)jFxP$lR$!P8= z*NW|TE%iKn4k40F*e{!sV6N|j-6hK$Bc;UIAJ-I~w=6(moaqqfEb9sr*khB88f5TE zywYR2l~A{aoaKdKI~araUdy%hSVYH3qlA=>AW!t#SNpLF*eSkBR17R2JEB8yH)oYy z4O5s3Ufq+Y)}P}TR!(#@aa^V7%MN$S5p|}!kayj1;E4+JP`Nn8H&9^wt9yD#7A5Fz z+d#=NRcoDjg{;jlNfYKNhLl!t8+NzR4rEO-EZFJ%{K|d_4kgttp9>GD40AOlZLH}!bes^yk8jxWtPz_^tn>m({OKpSA`JK z#ayth=pT-C(ueJ|xq=xajdB)q%~bI84$W4~q%8#Q4fCwe9Ylo<``2<}1HWWx8%>wq zb;54I=$?M37eq#ihuM@43RzDSVrwL2-jqvwp?V;`*-}v0IAr{UyeH@6D<)dXJgq+c ztxb6a%-O6FhNGNS8(ibMSpp;5TorpL@0VUX!N)S^*TU!^EN*Pb)j>5MVuT)a~M$VzcH5s~%T zl+^}xOUKn)ME*OId5(Qt1KkPA5Ya4gx6~QC4skBu&lPkvXYWEtW3V;|lo`rq!|cOO znEb8r@c@$J+KuxJ6pmo~R@P}`AcwbGuO?&fhibvo5>Z?R`#i2?KK3e z;ZG`jS@9P1rV>@4Wd;g~tx6n1 zc~3d{PJxRQ(FbFoino-=GIHE(h%{<8iNq?&1W}PsdoLEqwn$T=`8{6Oj5T|Il!lRF zvsb$Gv3$Kb3d~vF@Qr3T9KH2PbzmeiFn6Jx2^>_I?BjVj3E>Z6N_cWogG3qu^Q`@` zwSxvm;%wWfB(#hNxmd8wCXLwH$hwPRbgDVaAs*E`Fu9kLlA_rlU_S%Xej!V;rB}vz zJTiY8JByBBH(;eMwyo)RAK0wTO6|jRLq<5pP}qgt&6CeISVe10#IdYB^QTEhVbg7| z>&vwJwvu;~jr*obN^GnQN>PTneS8Ckl(lczqEE@W2@&uo_X>GTSn3B4XEnQQ5g*;39|!)Sr&cT()(h*3D9t%^OCWo%%hL9C}wrt6U-ni_8Mr_TX@6#8TOCshIzL zYJYq_8l>C{r+R}22SwQZ-dO;l>G?dDyj!ED2yI4hMJKrtKCrl@9q5+rGiJE=H60=k zz=BjGm={5kD`BtMW56*fN;0BKE%U+N|6aFhB97js{9cYUlG-}F;{IR#90`dTUUsj? z!ar2W^SU6n^|S-OoDZ~L{d<^KVuC!w0oYxk-fZBN&|G?~lhH{*At9oFgOuV-j~#x6 zss@B53p-hBE(dGL0N60-iIH#dI4D{C#X=m9@)zJ1JG>sYbrSze)i3HSa?_+)(A$_2N6)foB8xecMY3qF0*K_bDab|>ATJYHZQ~dSG=vjR< z63s0vGB<`&^fm4;vj6?fx6f}|PhYYatFEA+qzvHFVx4^*0eIb%kii48|DT_f3^#%8 zjiwpoZzb;~ID3Ql$B&|gKmX+5!9L?UdyM-A&Hi5405vP9e0vd$X8aqaxdAxsRN6H; z)+LI&+hNyVx9wW9N=vuBG5dT_IsEgk5%byt6{tsX>et?r84;3qbA;;vW*H})3RY2B zd`gGKqObX})~TP9x)0X(>$VaTU?qGxD<3Kll4O;Qq|V2S$}xFQ3LES23N2QYPMI}y z{@n_H-m>ddughTJ6!#2*Yx3i(kd{?)fBAsZOWfDl(*EmhelAyH0tjuJgaO0@1;~IU zWvRno3?9usAd&|I_U3uBQ(LsO+zb}pHLpx`tbG-ixGA>18|p36NjFQn5r8G`q?-%b zXv7k)?$pg3g^+rPO%iN-Od>)%8vS=Ya@2`Gzn;fU;v16-vs*3r+Ht4IRLKNh8Z)&54S~Ug6jT<-+esHYLTb@&uih84J6F_BZ5N1pRYT}{2Vw%2 zC~zH(QQ9@NsJ;Ps#Gr#%4Oph-Ijbu*R+>CFYjn&Gs0Oy3+i z`6w7?7wBp6+`L3eOjXV_1%mHtvEKbILM(lfU}6e1`+!N?<{JS=j+`dcp%-SSQpc5l z&w{Nc|Fp&rZUd}tOjP?;kZ)4y-W%|sd%)`a+`T&dXk(l;dMW!Xo=zoqP@SLwQ(1ulbIl8RI6}%3I~KSlh3)xCezrhQ~I%cUrz~Q-cO`x zwwy1qjZ-bwx?+gKJv2a*>(n!eItWNdejyB; zdENh%D4HHHUtW!P4cr_w{(fYz7|HnO%aH}zpQ8VM52V=$d~Q#W-6k9X7sJ!32Hn~7 zxTEz9FZ9?w`uZ-_ejyIod_#&fG)TxL$LWP{QpwphT-!2e`OqYq*Jdc?$L7*-gofLS zz{yBW6p|gYvwd-;WzNY=IT?y$x;J4-Zo>u^}Fj%Ly&cWXA|5nj2)bT7f+iBV3p2Vn;USAXly;+|9QF&{uNANKH$@ zX#gcBK9ph%3ssP9Y=rD`DD8-LNVIq9fIu&krzbB(8)@bCE)w!AYJv^37QTtV>WP1Q z`q2&aW*KnhI1QU~l5ubtT$4II25pCnK=o&~b}BC-SaBc(QynG8APtx{(%K#$dgi4j zfDNps2JJfVN5obt+*)byAYkwPo!pTa3;WTaG6lJ8t#f4`Nrm_B3_8bhSjL@8G|#e)ERG2NzI+}<-1N{pr zSzjzO1Iz8`GhQa%2Jqpgu7Kp-bSL8>V*2|`U{~7XReS%-_JU@@?8cEZtGNEOB3s`i z<%KWB;1pD4ph0oq5UDs(1_rWhfK>H27s2Dfaz(X6Dj2?l!AQMkV60VKe~<-0X5xVI z3cE|*6?T`Aq1OTmmlJLV69xE93pfN z9L*6C%}O3AzJx%S!4Sy2?J%3NL3!LEWEOzpX`0mF){4SYb+~`u=CqI1OBY-Fxyf72smasvOBHK|9`lni21D$YP$$z1r@GgZVXLtU+ zFYKzWoQh}BD|zqHrG}v!VSl>-f6oCL{XyX%1Q>oTw)$!^^J-w_g33x4btgdG#HPB$ zq=T#pj7BrpVpDIaF83U>7{|H0DB$k+lPUknZGg8*3qijh5w!2s3!nUdv)CuQ9`!Vz z+24YWlTb2=@A|lnmcd2aN?`_PvYC9H}8zy4w(EHKpW16buK8jD0*O;rN|ufpI@Q6vSw|1cpWskXrUuD zQ?n;ud5d${43~yx=at_E?JlwZb1f8AFV4ug!-*cPuy6W)YedW_r19p-Nw?3B)IoI1 z1op=1p&l1k(hQVRiysW{S|Cf9ad`Ttdej(*01&L@4;$ol3m!_R#_-!2vV*}@(b+uO zfu?y^6+x>fHz#gyz{wZ?AVZe(rPhPo(c)Mui_yxfBi!&D-J({_NL5~kYY!xWIy}L> zCBlESebaq5pqYc)a>H|+dPYG(p&qhWJmGBLMF@*9tl|Hv;dfk`NAolzn4NPP7lWO9 z^-qycjCR?K(Nnp0%%-;-c4diq*tV*KUAOu+qmq|eDcqKNXM)a)=~}LyNm{e-|Hy_6 zbCdZ`y$<#m zaT&6}e#BZEentE(>YZt=$h>!D%jHHx$YBlsK_?>Jn^y7F0;WlePlxVyS2_g9)FKxR zJ%M`Waee(%Ce^_;^2P<^WkNu~g~Z2#p5Z2B`Ux3dAu9t)ZHR%#qw>(}+LU*mARf*Q znK0;96l#cJto<(uO#+hH2t@w%j~}gpe0xhPgpvHbU8Gh#mNR?8$){JU%@CZIJI=?BJ_d=(QPQEwMU zrgtZLRw-&msq(5%-RCA@&wsj1xjy!-@zF53{~fu2QW6oNde?Ixde#>FN8`ii)brR8 z)Jl_`2q|S*==e6lqEEV1%o~x{n=uVLf+Z17qwPVM* z7go7{axa)XTL*Cn6AJJGv(cr)*4F_2G2%?w$Ymm$a+q}&)NcAYFpLoI@hB$@G5fAt zVzt2ZgSm>CBeoDIT{m;-C!k}k|DrT7KAPQI#_ z)0iK(@fY@r#dqRO&+vrJvOWQ+W+e*K?ZBThF;OeE52uJM&eL_lE|xAFu^8GI9)4oh{sFkH8Ep7znxPgt?5Z%J zS+MeGGE%fDvP9iEO3c3VgUxkjnaE_AoHV>YZm4Bm(*(RS*;J(t+ir*N$|Tp1`kSA^ z?Q0gOlK;Dm=cO2hLBYe+dmeM}N1OBZI~eI1g={SjHqG_;yT&HHv%8Zq*_>hVqVB+$ z|DnhhNANt`S4IZl;h8RPB9q=ls8yQ3vUdI+-#znew7#qh@j}7?*pC5e3rw}Ysw1Yn zP!nXBy3gV}x_k}`(oZSDojEu-!WB5HxIGHGA$w1K-h&CgS(%2?s8xoLmOgC|n^oF; zhz0}nadA@$9wF}~4*deP7(P2rrC2_jy3mVR|E-48qf|9ooL9cB**9no07|xq{%KL` z{96hMB=1)Y2CRj}zPjG)~i$dk_yH_4w#@kf+Pcf8+%q>>3UY z%x3u~v&PHdqyP>zg`TnKD=dFV8W_WuTP$Fb-NJ@(kJ$S_XfJbGB+Wc^RB_#(LfH}HWK0T#yg{`^Tibr$kvKw129+(`M$R%&8z*0N?ANHOL zAIl2jjQC6Uj4>4#7q)$qE@pbXQ*~@;=C%OSoEm5+y`Rl`qfN&P<=rDw#hEDDntU30 z$zI-}7pG{m_ilB=Ds#iqDcb>mb9RNQDp2A)f&V5o^U*46EtdOo-LOK(y+xBfI`$7t z*m%UPo2Meq3uHUqEH*5u{D0Vc?`Sx`_I)%WMf3;~1QF4RB!cL@_d3xdI$?t7Wt1S% zyNEE+JJIVPM6~F=PDB}uZWspR_xSYp_a@)-o^{ST=d5+!wfw<&WX2M7-whwMs@>&SC(at%_`v=0i!LHU{ z^XFYV^p8--Dy;A42FwXwXE3i50*9)|%TM&mIq3eAyQq)6P6brGTFTBl)@}yCy<0Ae z*?Y|~BpqV+3B*zuQ)}Ro7~&}@{TCBc$jt{}TpZ6P9E_XP(B41rY0*>P8=*P;k0&pt z=Uo#DyzA#@hNGIe9@+r_!gC9q*-D9BNXD=7r9MsEshIu5I&dS)Ual|eG>H&^^>825 zDt((2_e%r&sj}LJ^mXD%-v^-PlMC`?$FDQkwmIR7thV|6698*b!!M4hq2SyR@Vf1> zgV?iJt|;xM4B5OPIiS;{+d0xeAI%j)9ILxAT;C7leK%S^K3EiO*ORFj>8LFhu7i{#Lo*L*H z{6Z%$p~QbY>RXIS#ZTG5vjP(JTh)QDCaa<7SyL<#K$!%Kud_=H{>Njt*9pIpv5m1|cE zdqXa2M9F+>`2b8~nUDW*e>!3ikOxL-m{VTOYHyi#)U?Bt)D`T3vdu6oti$Me-<69f zZ(P(?aMpj?;vZ22c*!ox`_IJ%1PRod;jc4RiBzh^S#4YUJ_2*->G>S`Q3ixT{)pZD zeBGvZQR2y{Oi%$)z1svY%gsT;fW7}Ce&gNHJ^Y^z*B_xKFv!ER=^vqvTsT;A5Eaa9 z0IjVM09Ejh5rSq8r}jb+ImXGagm0;|HQ)zc=eRu&AUq6&qGpwgri&&a{v2M z{)qbhAKG62IE2HWTmWF9{nFb1yB+@T3j%h8|E`+9R#yosqZn9 z?;A@r9G&m*uqb5!0tx^)3j`hKoCRgTci`~^5H3%^d)Gg==Ri@fKQ4m>xbB^Aj9&D~ zz$0Ehf7Zxz=0Y;ySzDfW2?dZpDgn2qVd$K#@!Mrymp7KreR;I#BVdg2|F_pG1h6U}T)GJk$8_(s2^GJbn(dM&rg53W&BigSOAD*eu0c6s z;^|tS#ix^i%%^#euaE64^ItSY0JiFU2vCO@gPu|2NuP5TOD2AHIKBa%_kSCg?NxKX zd@pi3*k0LpSKvIrN(|6B^=lMZ^*OF{|DNv6<3#vLyicCt-Ia^i&#^-ezMmW(fhPv? z(3=jvYA1_Wr4b6a!}V+O(^o==9@!+K35R}UboVnF>F65U22D9I*l>86>=v5CQ{)0Rs8+0j*H6<>kO{iPnPRRgxp?4H8uFdfw8=s5Y{P@w@* z1%oz=!F|8p6YyQrJlj7#N;)_!P&ys<#bzI!sO=pYP9wBR_^L*sz;wJm;puTbeZ|wX zcv?2s2lZBXe?82pTR~3A!=rA-``DVw`#Xt69Np|%HI6aBuKii|_+@}cNvW(00kd)# za4mcl;{>bvn2g0I^=#r^?UcB>PV1}G_m^V*Ii>pV9Qh)8pj^!ULbvWuQ}V^{WCA=L zDlWp|pKD9_?*kU|9-|1Ku9pZ)WzD{!2|RM_0u3bypz5S#aX?6Ggcw{d4e>=ZT^tQd}Ynep<5C^=24nox`V8&AUe#j=t)xA`?0L4JyP_1gn!Nx#J5== z^J+3r3%BoeI>2v^@H^PhDeRU68;q+-p~`vf#$NZQ098d4hjUcyW{clroQlCky8-nm zbVL)l@CE0OqQqCK{r$@P4uT61m7^;8 z15K%~Y6^t549BbSeSB1=^#Q9!&TCgcMr}PM2kmUwg4_$CEr+CzD=460>F^rs9WoCz z%%&XaN6S&{LG4Kw9wPn%ml- z6N=4u3PxzGAnm4B0xpM{qiU~OOk9)V2x{`A82lo4#+CcwRs6U2r*$W%^fg`iZIOu^ z)suH$6x?4>^Fai@%wBC0JCR5|U|S8-E#XY?+JZbK7OD=GUE=TY2>9O4b^wZ;2Zx0|fzX;-Awm_da4tJO9J6qBls@@3ZC4QP@ zoakCzf7rNCQs(q6CPco$)!ug2P{pTij9=G7!U(9IlN4a$eUxyru?Fe(Jzl?mb-h7u zLUYtu@Ce=?WI}9zJc|%FLJX6B)j?>|n=K#rLeD6mxGr2zN~P|!UDPsm*V%-DGfvj5 za(kFX>PMdpOCGxp8I^1{IvY*1qxO02k$+fiyICSv^vbn)LzCkZF>sR-W~5o%Dxnd( zEcD1~Q}_s5BBV5aKb1+0d{ky=y>2gS%Th$@doBnBNDQWww;dQLK~=nhA*Bv9_2PEZ z)e*0(;ku7s8p7%gJspNr09hbrXGC9IPVf8R%Spi*o-UzS=Dk3h;kLK(TgD>n_HJ`G zO%zL2>U&bO;3mlZ1{7REH?bsErP)i(Wx5NF@ZfS86gHmXE*Ln8I(&P$tGP| zROj&vsCcYG3geC4kM>_?)VH}B6uamo7>{Dskl>!Az2=g=qfr7)%&D zqoYIQ+w$lRFwT17kX7E@wBu|K$FlX>Hoo+v6*U*w+Hk+6&WWU=S9`~>Se$6eek?Zv zqGKDe}PIiikd1sjZ@t5Q-_da~?Ihb?G=q zUN9{rE51ZuCqKl^8m=lE<@4ZmJti!3bGANsr|@7$GQ4UF8RbiiL}XwC>@c}J7Eo9d zH=y{M#Kzsk4iL?By=7MdbdlLmH3Nr1Q1x6n`0&L@|58CIpeGhWJg3%#@sv399-}{9 zXXWB5eg_%t_j`Zxp3kNgA)b16Wmoc2Ion6ravw0uDSK0tIwCjPX4UJU1*flEJUrUD zD=NWi$A?-r@ahP1ikl&H8BmI_B+dkwE1dU3o35L&UUj{)W$$|$Q7u#>1jquC2WFE3 zAUm?Spk^uGLA+t!DisAfdDK*IoY-u1N;ptBhCcj!pJAj2)&x|h8p`wnO+E`GY8A}P z*;s5ghFs4jtTKs!(Dsy#c=n=AJsYTmlXS;u@X^xMs>Q2l9x~@F>Io zeH!Pih-E=&?C=@RHSdDSVojqk!apR!&h!IiI9vMM zv;<_m#zp6u!8@O>P~NM1DtRH#899@m`Jzh3qz>H5XiA(5^?p&C!Gp%g(L?ls;%YR2 z3f=tfR&GvFRqE_j;=G;xqo}I`_G{NZ7}FMp^<29_pF~?TtuLA)V4(VB`N3czi!-Qt z&CVq~A9PdX(JI^OWM;~GRfogwiBf4-qlZbbPhWG8%h-CI(;045S9BnnV0v)+m8#g$ ztvdU~3DN-KDRBQM__Te6MV`{8m4!|Ij0f5$9jKA!8uM_0E_R-U7$_RhyIAt@#^OLA zIswR;0+{Sx70+iZWqJ#IqUO2_nz=;Rwgb(9xxBcr%F}vVHj9j)4mk=U+n=_~k*v~anF$KW1JYoTlhMA`xxtg`7! zqTW-Teb3tVm^||m>I9ki7}?X0_kWy0NZ5a^%ap(Q1LIL3fi(77XIIHmSg8|)0wUAh zas7>?z6^k0iC)@pn@eg7A;gFBPDSyrHkHkIB4G28mxxrL?oOc}e7nnb_s0n&jYw!3 zn`fN2aGi!6LqhIIniL-Af;uVJIuPR3XLCG4muzng_-%X+Vd?pfi;g*_|8OstNK8<; zS`jj-x&LANwHZl5gKR`nX5=l-{^mp5iORJ8wV)eQkVq=eH{N_^y6r~`-}Ib0s?*QT zM%=`rZ$yb0Zc>XFM~c|K;WVt3FF8hRICa033li7z8rqV{CY^|}c|_;OQ#4^z4Yh#n zMt^V}6v99vEUXtv>-h%Q2&U(gg5hv`tGb<>hE^*@pg!SJ9l|6gPEAm8x&KViJ8>0} zjdcTN&9hU$6)u68$%=n`hI2a5ypVRhxOgLy5JbKfpj0|A^1$&#Dh~K03LiwYoW_Ki zJ05NYQ}RxX+@OJZR<7Ce)=jH>zC!BT&`<*vjNjD{_^!l2dQ7DbNLcvo#^h^fk9Szo z66n2~Arn`PT2`+`q>0lCTSK=A)nNJxh+LNE^|$C;Td$iw%nifdH1S|G?8*o6ubu4k ze>CxaX!11@a_>V?1kKsD{`BB@6!r1P+YnUx{Jv*^I~+GEC@%0sW^a)N8fVd?tBo(C zM(-OQp0aISOI_idOH8ph3a_Vk8>sZ^jo$nrw~D!W{PGio>}u1>4-+-I zQTZs`)BIJw%m5P6IpBDJ)Db@uMP5`sb3m^S8#vH=l-_n+@lS^?qYGwuSP;D_+|-M! z-0cT&H|O3N%63Dw$*MErw-~PyIa;TIrriNXHS&?9E$Fs&dvUm6hrwno=wR0C z*`e}KN3%8k@L5R|!Gu+*|LzwpEqq|n5uPrMv_*+f(ZytZ&NLp(WOy-ZtZzjBZEK;v zWqexG8G5yf3K5cV6m`@6;0R>CI%H99cShT$MCXZum$y|L1b;%eMTuSmZ6N60ek>go zSadiV7jWGeQV?`GIp9$g3v;RoTuV^H5VX&;&{32GaE(Ou`|o2wNfC^n<}TBvoP14Gqq!@QD;e;yYoqF#Y&2j&4YJzAdV*cn`JYMdCa01>1_KMN3_rU z2{xi;E`|%^z-;pEjNQSho=y+0YRbc7In&!w9i*uwU`fmi0Y6 zvk)1ymSOryG)x57(pjs>His?k*!X z&t)5y*9K-l-Nd===v|T=AF}0?Gi6Pfj*MC*D&`VBWLK{$eZ`8$GNkYmit;F;!Ic=4 zF~&r$vzOvfCp2@hkavJ16SZh(ly0rErGYHyCmv-yF{zoMRn_OWp4IQe3|^x!@os-! zyK{1CrAA%jhkd>b2ElJNndbvVYv#v9h>+E@1twMfYGc^UQ+Wt#&1EA71Bev9hsZQH z<&>PlY$`10Z}JBoOmm<*3Qm2Dd_2BQTwS_~dsTY|o0^go46Sb&5xRnsqo?=?`nr;k zR%azWp52V}s%l>4&IPJt+^06Lwj0;&JDpsezkdIyf4FZeaCCnsUG6p~iST2a;*PQr zb3-lGf(7sG`Hp!Ft~#KU0Nt%k$pH>OUgd#84K-Td%0`j>K*j!cucJ}^Hs~rXMP0u$ zY|TV$77*?qbJzZdPHnn#~out4EIZ4s7{ zaTCbG27@7T&}U)$>2)7KJ=Yq`eXu7b0ZUn(B@x93!H~Bwd1OSl_ha-MAkC0=t6pGB zDXQKQIbByu=mR-JaWI~zmk0c|e2$Y7kZMyEg-EE5mxarz@;K8`R9JVjX65~KYZvIv zBVW%2?ysQV4o8Gj5XpKeD1qVhhUeVLYkU;RGp@c7R)Cc zo0fR1*eebgy{P8`=qBifCafyB~26h|?F($$@}hr|9eS z^^+nf)K=PG^AxU9b+p$edZXw^Yai;WuR&s?@38D7Z{mn}UgYzf8ZAAJ#z&Te*L80emUrCJvl446t@MvOt zrf4j1LHgib=!m z9uCiJhb;_b?mlKE@q|NW)L_eUcwZWOlWTQj&*hqoi>Otat9LDpYMaif_mF7H@nxM& zz%caB&%B@ivOpXcgAO;b<8tncQY)$C%Ui9Gu*<($`)b;qaZnKH(K0A?H4M9}I?itE zf}}+U%ROJ+Q>9NvWqsf~dG``Q3rOyM!UE}BzQoMdrL0`fVJ+r=!Cf~@{)LswtHc`PN{Ypx-%_L^Qw=?7{mdopc+ zLxkZW3%%WYfYI2dt9 z$44#ceroGoJus7gxp^{>&Z0V>m@(6pf8{Hq+$=Y>6Y^$Ncq2lT%JcB^JkG%hkR!!+ zxe^pnyOH+N&U`b;_$chb22EXB9!#V3q$|!zdtUG6bW1?8wxk~#0xC*QeFlGI&nLNH!ir{Q zuhm(VuT@NxoFP&vL<|8j?MG@*s$7tf?s&(Zn42xn7@}!aZB&T6G7@um^VIOgP-T9l zeTBrK@-R2kNWVHvL=*SJS{X*#YS~W_~$CFnb>s-3ujI>G=?bpA#UJtGNs4a%O z_9J(?c5lRJ20!S?a}kgN_an@{+@E5M7_mpabr~nd?v+@4gg7mxtRU-cVB+aRX{b>Y}I&>}J{glamN%?zEM-{u^_hXNa z>;m75(xBG*Q@}J7B~7Co{`)+N%~!=C3VCqEN6_l>^4{|FRxrV%$KRK);#{JZ1rP+& z4^)@^Jt+nXRZweGr>@;uV*6!8MB4kwiJ0mBnJ5QPY3w%<8o9HED`B1)S*4?K{>OCg z+NuJpE1_54fND}n$x4iARYPqtgN54rRMHq3%Bs_qgU8Y(NU0tdu~)`*;PoQ=<0D8( z&GgC>%!}N5>o9R)3 zk)^!CLV5tw99-nZJEY9(5iqs)dgn?rx(_of9dCK)Mptm^w(}#Kq8~Jd5I~QbEJDyh zA9=x6F7B1eDhSw=*}jra!>dj00Rhj=vWuP+)}u{EqebqMwPbsNyUQZA}w@QCdNnPXbnclsG z>gIq+YSUwXi*F1>U-WE;8K>sg93l5K0eN=~cVZVT_g88s(Xz;Pg!sAU#P!ac7T{>q z%7aazpir1B&@qj*O2a~}=J`=YxAG;v#_Cc0Es)x(tLQtc5SuKN~5uMum2rbbNT6CStDkTfia~ZzVGe zl?#Zk$JSV_i4<8pI!`zihXHQ)7!4E6&x0yBBml}zSMcTb&qFdF=gzwl5li&*N|Jt8 z0eKG+o#&B154os=fyVb`yMlifPytf40s%KFg#Dr1PXjKbdHg`M$TQPi>gSDr2kL2$ zNF}^u{AYye?|9Eh3Xls5(7dE?u60D+No#c%(6HI6?*K5OUD_Z;ga>CYQ?2a0m< zt1~UX`Ii9HUpL=BR}u!tzxb=t>^}odIG2Qh@SvX(;Ab-9(UJ-;|=rAfR00{iHQJqBE5Vy2X=8F z6cANv52YBYcd-LfQuSH%J&vgL%FW*b@lI*JiH|OaCjYDtDG%s}zt@dM|1H?9jR(X> zWgQw8=;}5x5Cs75&(=}kNEWe+th639ENT2fHt7`BYtf2J(gWqj7S6c0>6GuO3KeOo zNsXGMx}~F52LBMSupj_PSAPZc*W<6j(eOJr_LHQ08pI~WaRj^(r%p3(8F{1&GgdyLT-YZab)#a zd}$00u4`g$ny+e8&0eI_U=Tt95INefhW=w(w*U#(d0Uu=UVkpKJI)uOK72qXGIDfx zm!mYK&SkYc=47#Gc(Fy|Sh2#gcdXvW7tZ0oxC6;X8WlZ zPXYD**|gviUZ9YmcZGN#rmJ+Z25}}CDf~knUZSoq z5sjPdU(sFaDnC(!SD#yhcBkyX-RCL5$Mni^VrTs_t9^sxF6G(D)hF=L`sK9gMVXI z38>G>b)KxPmD|MP7Ji!v?tL0z=)AuK|R*vERgw zLzhzB=HlX1g=P8RjZxvy2O4SKYm+aPjy0r63h`th-eWdS6VZW-X&MWQWeRGYK-nL+ zL)W7)?m9^z7=Tnv&r?;$)j8E<_UT)BW3U*s-)Em|iFA1MIVyzs%_`w(>qV4)ZC7`^=eG<4>&;-y24nD;cTHC;(SO{Ekf z{&>^2$hd_l5lui7pJ5M(e>sL7do&BmRZm)S9JSGNQ^2~lOUdm=3lbX7uptbKBiv^1 z54Z2tEtYd+yKSY-uMLbA_AIGE>V$iG*>6e z0#8uu^j#8HH|f)?y8lUEUf{l)!p4dh?}`87C;9}qM#b0VD_PuyYtg^>`Qm>;X7EYN zLiR745x>|K1zfWTvf_OB%Vz#R*`Y5AznZVW=g*)QUa7oE$B~dABPC_c*A$sGRPcJ+$}v*g6-%5AO3RSd(DsUuBpq$d zJD~PCdGhGJbtrscARS#D8Uo+>Wa%X&eA94#m_u24sFewTwC_|Ifx3Lc1hmv7e6f&mr%?K zm^o6(Dg^5nwG)G|3|Vf?g)2(6eD8DfG|1bV8GP58BcA6`ibdSbJGhiBm&Z|%g1+~w z>4!r$V4U%_*(Fl_w1!e{hoAVgMnm04mYg>YJ77=%8Qin0Z2F*rTDSihiB!vA$sR`ZEA2|vtx!0X)M`Xp=GQ&0bTor$j9Mk0EjeGrTsqKRX!cjT za51-KCXf5S>>OYz-!XiYQ3En`!Rq@_YH0_I{E)7HM(G_h2F!;6CGlsZClXw(d4qwE^>4ur$lD287)J!5*5>9} z=HI@nNIYg6eb6KM>t1aW;^1XsNpP8T3bZM~8eGA$)BeU`8DAsfU)2g<(oiFD+c{8F z`tr+p4?I}(;*R=FcO!IbX=Ifr_Mw@q4c798N3pNS&i3{L7g(XH z{_ei!kq`2~x<-xjA@K*?z<@;s?Ra-DFM`8JT7C^xr~t>_^0)YzI_Jsu?de4LQc5`Ac=W)72IjNBPW2wjta)sE7(7y-BZYsH{a#p-_X5gCS>)T> zxJWt?=3%QoT@WFS;8Vp!PSZMSzE?jM*>dNG-^w*CYI_|7gj~LKrF*JMtUEHbVWa{% zTFeM;p4A-k@@mN9tah-i%w8R4RWh*Ac`}tiEa9yt@ zr00{aciFg`ubHj<7_S1+m((wICaIXfZgJg!Oo=?m>ciH=HK+YGUcCp9YV+=R1uXX1 zq|O7G_}FHqlOfkd49f{SMkPVViWAv&jH|c5?1QU3LEZ6eT*;3t;=^uocU9SqFSP;8 zr$sz^g_N@8uFtJPZ(=#t+_VSys^~=5iH=x&b0*umx>#|*o-z$=TaYT-B zF;$DWZ;S6P^{|wVmfBt43kVFfm_A5#TIx=)@A%r|{V)_KT%(2NB#1J-AQW zcHgj;)eAep5)}}T1xUeBk|;H{iJj5KGoH~V#5=HM8^fkFvtF7mDZEAYrHXM2xvuM? zhnoXiDjkO{nefN+wUk`9<_djDKJzFge!I8@3j!!50FbbhT4Mk()p`>qg7@GKqnbej zH1K@)ogbQ~qagCIcfi)doIYbWetOUBYh=>Hrp&DUt6TYx44ZwWeBsqbl9G~Hwo6Ib z&)f04Ic_0*n^u&%-aQPgw8rK%qBn(NnN@5BTu)xF!y)2E2F3b1Y+Cj4uV26Jo^laW z1Ontbv?}i&^S)=b%@O@TA+sZTd?t8jd+{4aQ`aN&vmIrFKa5WB)l=e=y;5>EZTTT9 zdG0gd_a8=|p5cVJT0FjF-!?yQx_jst@9vQuM>U-LRG6iTRnYaDJi!g4+$g%s2Jhmz zwDc$0zpUn{P`6vRk$&Pot=D7MDadPdnVr#8oR_>j+RqO1)oX2QU7C1%L$gNJz6;7- zTFxaV2C-%+1OR<7gcKTB?3G4|=E$}n>)G2FvuXrw0d!e>57T^7_gN?||xds-X{C1qT$6i77Q}^6d5ii|q;t*_|39v>PhjWy* z1MWzc?|8rV2G3R-8GB?G?CN`y-{zDGj#N*3aT$Lx3E);1Mti%9&o%jUY`Vy9$>ZtM z@V$sl=E-3n)OwDF-JFdsQ4rSNG@m74WNN0^LPbo7pWUx;}vq-jOElTXLY=M^?v z)Tai>nLl7-K)Z`wj0+u+iEVONt+YmYy9<0b?;ENI*eu9`J3n|pyLXr1Yz&`dBi4Qh z+19SlR2j$~N5vE(*+r!f^#WcH`qYK&s3Asrg?79@Kg4<=9&LJW6#)EJ zSc&V5_!h6trZs5~YH-~uv*CU(wmDwm#m@$6dQthwqtd|3o|sdep7iSuF?tIQ+J6Yy zv-tWEuH+(IdWHhb7V)#1#Um>${K}0!@cC@++pX# ztafcz>IzY`7kZPeuUBU2;h$Upc{{&@3qlnK^_DeiKleXmHOSNVfJ4O9$VgJDggXTy zGA#t=C%$<#O6_*$qt@_g9`LHC^2SU`CX4zc zlF2wuRB&Yav>YJ%Ozzl?6~%Gi^kKdp6SF%gmzq7zVw7cvh%AU{2~OlTU@+mtC>sNT zpWUgTTMgS49^DQtBm{V*3d0^AU7Z?c@qW$Eu(u~G&?HM$VRrMh*UHN6YUmW>gAotA zCvtkPcGEG?ArD3x+(@V%e{6nn*nP=6H9MHuk!eJdc7sJNp~9-4W01lXcb@u`@X~Nrw5vaq>Sw0||16~o zX&L&!K-$g(0f!1n!l0)aFzKB$Qkm=QDJ&q@5OA){ZFj|{V^xk6#1GMlbv)C0L|>}b z#jC_`K$r2CL3ha-1?Ib+R#>_mt+X9<+mRcGj|DK71U|S37VsKhJ-P7YW&kB$0@Xls z>0;*&%IHy+8aI<7IjD8C<+D@*X;3s4FnIC^ReGhjKibVtxoOM~@l1BmXi&gjpF;cP%sL++qtcZBITAVtTOHMAA^a({~60y$>ywERsk z!S(`OENKhr*DY4y=o>$lGU3P4xc)u6!ESt59pbZcEV*6P$A)i8ox=LLjoi3?`$bUn zOevU~>Pcru4lDK1VcBn!tBM$hAK&I{`HEqleE&ebO31B^Zfknd_4!m9DynqJ?o2u{ z-B!j%HLKot8GO+JL=r2;467DdsiL*4K{o6AS7L&kR6p4{?_It) z?l4pRx?hTXbS`7cY@~cJmQrS)S?N%SlT&$jxo>`3v6)g3JO;l7WOK&xpJUY{ z+a0o1fZaZI>B^Qtjf4H_Sa#f!fFHrW$NHf{8Kn%U^hkq}`$%6l;`V*s0#F>233ps? zv%RA}`Rs8AbSPI1vb1rCZ2&7leQ|Z3oDF=&)vo0yj^{TL5t7# z)9c)zQoY=vOV&7p${v;c?5|B0aKM@q_gkAyrSLX_<=BTLR$h8#g}b9u6NzOs+!;#^ ztMon6TX82?^VZalCPFh1+=ic~OV;0Jc!DsW12Ib3p%fz=G<6J+LKxrGQXMlNzsa|8 zEKGKZoCOZw*#s?iFWJCLBFIoKLWA>reW4jOTQeHQlky7}qMj|j4eE?apbgDXnBQxC z^b>See2D2K07Yg8O2`d($Rvd1VKd#J{Gl17(hQWXZ9L2xQyIC-p8b!Z;;e&7WG|H=Hqv1qtHSr~;Mq$=N#CQA6csN21V~sa?N>D z2RE)LQHk||fN9>hO1W9bHJ zd8@q5nD}^wt^`zKtYusy6Go|<2B~vej_;@RO>e~6Noxzj8Z4m@Nsiyhc=#12+6bpd`^UmuE(hUl{UjR>2>tkQBt>%{vC*DNCvC0MobOmk-m`6 zNqUifg{rS!vxMmJi?peh9?uRJD`A;=kr$;#lQ(2cYiNbs;u<~n*rQ%#K@PnKLF{Mt z%J%oCmALiR78areS=D}=pKU22b@CqI)VAI~0b*d5p)=cJWBxq`Ag+1mf(AMDoe#Gd!hiJhWaI&!xMwC4 zPX?9z3McXm}Dgz*^TP6 zI8RQLs*WE^j+V_|zx2scC56?OhR-2ZuL4mJ?L|Q>YW}g({?z|j?n|$6-~d0=I;RT& zY=V);D#?6OW2I*@L2r_{O;m$PXbKu1GhBJTmxOy2tBdwTr0RA%lRcl0py5v-4Hb@m zatAAUr#G3WgD0i=X^3Cj4RGhcylv(?HAHXB7O14$JyCMtHlKI=ZGl}Vey?f@bMb8< z-x&Z`FuCs8K6}Em9k2+g#fCTk*7OXM8@7 zw!8;&Y>PnHJ&b~5O`SYw*C9u=l65L?o`(IhWO_i5Hr*Jw`SiZN7uDmuW)yN*344l; z4yWT$eJJ6xzcH*NSP5nXU?$zI@|B)a^ZqoL;z(Z#cPZI5vvLl5`l%b&J)TE2^de_h z=tb}~joaWp&6+{|&2!&*nTF;ET&*{3!knmJar3iy;6a;VD|Q;bDRjD2$iltQ949r4 zn)4Z>0f($lbMsjBmQA<vRwB29?%v{|t%S%HG&K zl&w^#ZLr|Kds)OYi;up%X>8ENvOC;4&9hxL&&q(_ogM&Bve^yjS-FWD!QQm)d`l=PrLZ9UQLv9oUAYR8rY7z zxxdZ$FgCweYo)y8n8^0-d&^n?PY5H8>$2z=;_FDs?b+#=Q$hC9Ojo)jw=$QFGP90^ ztF~dw;BG&x54oE=oKD15Iq|+hI)?DYtt+K3=zcN`0P6Yinqi%*R!~23zymf&=1aeo z!CDq4E=eXnA=KyqOqLvJjn{qSg&;ZRNcv1Z`5!Uf*TlWk_{^ zx8=bXOljpdXX?xWRBp^|x7arE!%whML&+944RXm#!e7D#WKws?UAkztbM8G0xgbng zhSQ%WcAy|H|0bRrq-#&NSmefm!yN6I0IUZH!7F$MnZNxh1QtP?-36FMVS^G4RR0Q)Wv|B zpPz5tK3de7=j8f{v-JC}+PHElJcE_*X)8SiAD9ptf)^^aC9I}_lHsRm68q)1?wMRX zkk)9terbsObNY3)7jHAJU%wt8h9XyKO6ZUMDJXn?yOuEd3mJJ04GkDG6nQo)=B_?2 zJozWD_4mg$zHpIT#>7u?nIrbk5&m~i-~@=iYUtzsvZv841TuaZD+D^T-g>_tHk{Cm z%3p_w?)cvf_0!5=bxn^74JAA2okf_i3eETYvR5t6QZ4%AF3!$c4Fd};a5ez9PZPh? zE}?;{%Xe$S`?tQf5QyKo$0@lfiWl4R{ecJB{^Di#1q6aZt2Uc-t1@j@(~?_ZVbx)+ z{V6=>0n>EcbF&-%QLT%n>TfPx3F=zN%QHXTw8T#v>Q!lk2{Q$PsCQHmR0~YxGG@|W zZv13E-8s7MC+<2w<uTbLq4J?~=u8JzZv{m8rHm}E`k_fJn~ z!YcT1Bv4aakgl{*Aq|Y5nH5+uIYZz^(eua9Y4k-VwaD;?_?hG~H;QZz@BCzt<)2&x zIbhy`^wqjPFxa<>#H)q6T_mBqqNM)v-C|F2*E~!Qz7r|hH8)VCV%V_3ZKLINPoF+| zAS18j!S*#`q9ox-9zh45afi_JsT26pBeu9Xv{J4`+33AM$ZIJ5Ma#A6ZvrLvV&C=i@2&TMz(D9* zZvA{s*AKmN2mfSD-iYAvWQebC^>N&Y^-HdQ?5rx8nB4Egg~PLNzkC~%_~;=NygW%R zW2AT7$p3FM=EAjmWar<%OA!&}^85EAWv2T`3xqf zqg|a`#bhyv@#^ZiJTTfACHmVJ(2&ep1svHWVA zh$>(a!_uy%yy2*uCZW?Jb&db=z5aneRfJsC71}``RYx-9Gnfy`$EFzc;#Wf95kSI$Z{T2}-1X20n{yVa2V-5vDRG4(FCq5a!sk1Td?vFVi8 z&UUnL9PITcb+SPJ7jthFkY%@UYm1_!Gy>An-JR0i-QC@dAT8ZUNq2W6-3Zbt-QE39 z*ZS7K58k!E<9!M|JaykQ#<<3qPPKcuEmn7ku|QxoKh-$=EvU8_Kns6+{9qVG{jg01 zoW39NG^%SU4y5tYjm=M~dtbxpe2?zmr|@|C;qW?0fsc^r4b-K=6;f*VNDZnG8aR+5 zDf~RWuvPG2wuI&x5r3#pS~J%!%b(Hl-fb|0C$;Ft6Ip2Ds^gJTwOlJsho>dkpeydb z4MrdSUKm=fJfm80pD&XlItH_aC3Ce~Zu0E1UOVjm@;%=e$2ML{UQ?)(APG)@!qs~& z&>c8Ti32taym);!-RkK#m3rWc0xz#HATUtF=Xo*zeJrQ51s1zebJKtd@HpUUZ8+StT_kp~y!uyEOgf`?3NTW3ZJChKa8 zt0;wLC78S0ocbyh4L%wm{ayqQ%X=lr|lK|fka-To&cwZUkkZ*_C3h-tF$>>!rV z+vCo-yW)eayi<9>cv{?hY}VoBmYZDt?%7r1%C+ zmZS&7N3hSuCL!OQU@FnP&Io?M=XFqee8iJD*5WYQ+Q*+}iYPI3TM2sK5%$vksz~`l z8T7(uwZ^l2yM5q`AJwcMTxs)_7)0sKRW8{c5_9|K!Y29)&ubGQ2&OI(Eg@t#pZE9- zGR?k|;yPt2!ppFZ?(C39i#JKP_xEB8%;u06FSuMcVs2`UQ{~Fqu;`RO0yuKW?@#r= z96nrpsWn?s8=YqeUTt?x?%+wpR@6CF=3F9qN%qX`rzbpb(vJdp^Cd~OYE7(Ef22Ak!0eZhOl z7eB!~t-G*s0%>T7kz2W`p9Au!@nRf(uE_>j)`XP%q2ZWU%mF^7C-em$F?;$L3=2X| z3bTq4?DbIT4BLLjIqe*`Ib02~e~f)i^i|y5R;Y6^TChy*!&X zjmh1JcZo>uX)nvJCB{4DZ3-1O(nZ=WL7QXg!v?6o6uXE%ZJu->4xMd~k=V9#D>S%B zgZ}Y4wQt$YQf%d`N**JLtFCGRYN!0}dZOmP^Adt8W>uRNq=IQu8@=vg)41)WC{>E7 zzd~Kc@;<#Ig8}eDc-MvIqThT6u08#4sI~iT+q%Tm2AdL1>-kn0M&l83pXcXuksK8l zTSRTEC)w4-r?wQ+7A>?u%!PuEC=|hmn5md? zU2ix4{3Mb%3O?IEy^~J$O#+6xYTdy^NlZsVt($v6rFZ+wpML{)VVShoEsju0XB=(kD>7CiZ{OaO5?-V3M$ik zf>LF2S!rAMpnix5l`K5A+E`-n?gGPjBY$=CI^7c-mCHmS-O2D$(b#bpF6*}NWx;;kxUpu&(q6#U2TQcmFXyU=U^O9w)wq|Z#V?` ztJ0Vh&n%sKb|X0XSUuF{XwjG8qbi=CaivEu3pe9OK8klz-#NIQ6!X(-^suRrUReJCd|##or0`My2D2PB`DJIVul8b-Y%fArG-i#=Nbt> zl#=c0g!47V3Gd$TQ}}6|$X@KqS2|c}Hd&;5&1Kb1rgwF9)8PF;65AQmBzHYtQoLEX z+0jM8ycG+2e?;ecvRspv#3YKawH%hY)|w+KOP*>q(OPsa6PUByjGx8RM%G}vs@$Y1 z8iDgEg^5GP{m%d?7{A0;b+qHc$v>vjPD(wnfzdjXXR2S-+%Do{J83Gbt@5`Izm^Of zlillwh2@>}mYZ*qfc`B3Of%yj&pwDG1oU#wcJyAQuvm!De!II4+e3sWZ5N3aKW?!g zCCPh{garizdrarlKo3hzJe8(~Hp2Mm8EU@xw}$USB^63B6-niCd@r}%^@*O3?al?@ zrdHevrzZ+CFf4d}@+cI6%5s^ES7)>tp-=ez3NQEeLmL5 z(NP(vYDl))&rS(A-gmc8UE>&3pD}DU*-N{3CI-hdE>bj_K7V}!lSNs!aOb>nYHALGb59j{-bn;;et2kg9D+4GYM*x@(+nxyMp@4Kt)t8C62hL)@-$ zxzxAF0?EU6y6wxQ4_v1Y_&hGfCiA6Hb4cUTgyd^tjv#wV=Uiiye2`0`*uu!KYBF?^KMP{;V7oFO9&qApr`z%&VJLe}=XvMtE z^d>>=iwIA&x;wDVfXzDTn4R3_xoksecaU&%3&50^-Ok{@u|%G_f2j&%G?;R$s}B721SB=FK6oqxDG}@ZoOO^Z$U_uhv8C1c!e?mLS?hUhVQA z)%rFHkB?B->nws&^}*$Yiy71Nbut#+L=TeiT4}wvE>$H&zJFxq2y5ibOW6e1qoN6I}<7?Mh+&YY;JHN(hY@d!LE5FJ0E9xGiI{gS*odb3v;q>v#yYcM5A!1 z{~B45y5HJwHAutpi(HBu$ih54JjD8=7DH20HERdd4?=VdZ@JH>BQZH-c%KW?l|1vR z0Sl_yetV8>zIg2|9wR_KetvnWlg}5dNLEcyW!Y0^Zpi=7kNfi6DT_G^fypRN9ABr|854^ zY*%8Bz)HIp*4Vh~R-QHPx6N|BBuRB|r18Ms57i_Pq$m`Ucaj;v_Txst<*LWHQ7X!2 z$>(lzgy}l!c<`y)!UNN;e2LiZh(r=)7UxW1A$c8~&aWI%M&IX8O+FhzBWb)7K)|J) zo*7qkr!W~)Or`wX!%P+SDeL6RbK6w$(CQ10!ts`x{LelKw_tE_6d`EXA{k$Q9k}@C z4pax{wfJYWw?~zg^moS(Ea%g)TNbvFmn$n0b{;3o4N5v90VIN$nsxVNB-w;KxZE&R z6+!knB!{C_PIoueZi5XLnFwyS018Fe3jC;>kxdSVQ;LAYPEN6;AXXIH+iNPu_l+r$ z=b&l}-E2mZnL$XN8`T3^0fRt$b!yNsS0iF}YrIXf$MjZ>gj*(^TjfaNWCWrLePIAx zXbC=kZ&G#N<1Wdb?~IoS%=xa?D{e&uG*Di90?;J{1+&aGV0N6x>9%lTs+s?}b=+!h zOAM_yXbx$kKO&PM+k2D6U#+(GPW+g05}ZbU@FH zU0yAa#l;{Sg`lp)Vm&tgMrcLI%q(Qh9dYBj}6#lTsUW+$MG6^_PZ?CkDj*{6DsCm)w_5KnRSDB(T-GbBP_{&#{&MrK|A z6h>?9||15;@*Vij|DmCRLRjyE@^k=^AK!5@M=9aa_8D9xJ7VrtLg^l z68qiKQ%uPU$v@)L^?Lr7JvxXBNp*&kpZcUmQr2P_Br`#=3S@9RD5~ErqnOfq+Kj)C za-(iIe#?1814}oEqu$or&10O_O9DjR6T-Pu=%UA=cv>t&wOdEc(6dK_!DZ6*H=BlgHzj9r3axteLI-a~pySF35O@pdR$^iUYq(l@gymI#?eP4!FER$WrF&#L<~$^h zLA9Y;D7?J1ka*nii9i0(4<<3ibuU)7ZwPR>Yg^8cmM>o?)fVxflp%^y%cFVu3wD#p zUWcOz$0eE9)c*6vCq{C8O{kCT@PAyMII|T4d*3*W3xrdb3q<&s)SK72av9XIeZQ9p zp=WL`Y{|wJg#P5vH@OV!R-0bQ#Pbq>ZO7=&bsPU+98r#2!9_0l{UaM(JK=w^Be*4B z3Cu4;eMZ5=A(hR}K$2(t6x~G==vHtQpTy|dOCGX6Yv4_m0~;wUZ)k{$B!d4gP)tuQ znL9EptXDB^oP=U|sb_Imk@V^A@#CXB0Ce3U%5dSY%!+)}6>wiP1ZeIp8|LcJB?;jH5gI66Vt6i1*U%vYP zd`M^fz%S8j-6^3QXaNTvb(SwTC5fLU;sh>`*%{n1WU@jE&3SfiU;E`{iG^X2 z*&c(TV2F`l*RB#PAXAH^K__DoC3BF;1petIMv{De7;Fd=nM4Bf_xJMesfFMn!~F|s z^y9P1r9&Xa2;`w}`CyYg{jyMSK2qHN;N&DA&XZ1;sP-sG4Bz8M$!ql@hfza?h7OJ9 zLKGw>C+;~WbEuha%GMvfIKJFNk*0~n$G3>S*7AmT_%m4 z1ZHc&UkTyyco6SR=AkxV3Y4JcczKyDLAOG);;;z}?(Bzzh=qngCxKHUNHYcct8!~~ zcV1QVxkjoAq)B7TKo7xOgkw1S2w}@$K1hTV*x~4BI5>PCPVp_-^ffUvOZI@-Riaz} zEYJL*4i5!|67XZx1+tk5z^S70tC31kP{{Ja`s)c1{%jNw6igsrKhBUqz~`V`_C$!s z%XEspK3a+DjZ5$7X@(zLC44Tw_1V%;Z-0a`pS|{W-#OY|Ut1#t5JR=ek;k1&uLK}( z>(5tOY@eyo96EeExdB0*^Z>J6UkU>aA^%;ReV}0MEDYpJ2DDkTHB) zKb^mQC;gpKax9I5j459>8er3sa&pnds&sTa4~4`J*+Kp!wNK4qFaZ*(Qwd>G&>qCM zi^Ic`G!`8D&H3Rg*_INm#bb6y?XW=Z@!?K}D0n9MPW&xniFw zlq$cZaeAwarSZ_YpKqe9#t7yq6|L`=ANbxWhkp9@VJuMseHer-e>~P3x3nr;84o70 zMWM<@J{8RvhdiaPyO2OmZ1l?xo$9|KvHs4yZ(_aZ8iPLEq4d%R+2cAwTm&9+_oq#z z%0unAHE{EO8m_825rc%FW9j89Q%NnY_xc-J$V{2OYE4xd$NA=B6p97Q+^+g-2JYt zvcw@&C)A#tUtr<10IppL&c4P}CN><4sV8d+#?@Tvh-gg$o{_-(31yu@9R6NY5bC=0Y8IBI`~eUzGNqyRsGxaqfHFRwwoQ>kH74!8!N1 z(to9`W#3k^5KJ{>0lqj&@Wr*3oMph6cMsa*#H1a90q8}&o@(3Sz9qbXILSS(tSX@7 zA%1QJU&hDt`k4YG_F_Ly>&6HMzc{k@M;tk#9B_i!Me2FC3KazX=*=futDN>8W6p^~ z!#qj_j(=3r-Je_D?W}eKlM>P$=T2>V^hL|%TK6brTJQ z;f8_Zg-&drjVrgdQD>o|8sv6+>Z_0?z)|$*AiS0L>hpD1pk%e@IPaB8ouzV; zKp<=(V}Pho;YAc44SJZ974=$e9@5~is97wO;()5m zy}{wUcaDz5Y!vU+@HlLSXRlm5oz!u|*G7i`J!;M66yxrg-zUKgc!BYECtZv4*wD0U zb<)>(oFr7F*Ok}~HnM2KT(=J=UnRW8V@bXNETR6qc(K{K0OZ;fzq7gvRvUYYg9sHJ zHrq2Ph;l^(F*%{K(r&)VvqG!QLHc}qn8?|3R_SQ%e5<6mO{H8*{1XvTPTk-GBHlnO z$*}Qg^OZu&cFAO^`i5!iXJ=1;^04{{m>~c~kPr~?gSb`oIcFC6z5tQqS(&ze_w~IA zPm15Gm)X@9k%Mnvzka1zMR8L&TxwEfG#Mg~SaFk{XFw2QW3RUNvdr*UY7)=#ze`wF zEmr#MexAwgu3<6lrTjNnnc85bxEjHxQ$YvPS4uZQ+AmcnbWJ`_e?2hC_xS`%-_eET zS*ckwcsyk$L1YdLbmHY{98+!9b>=j%iw~qh0Rd`m%pN&@VUu%JjulJI&YIpWRbN6+ zv_`*I4DB)P5Zh)fIRHlj2G)yM`g<#FhwXCFLcObpt@%uD)>NU6vdi(kAnXTfJ@bvm zRnRjubt9jooSMorbKBN--`nzstLbF?%{lpQOgyc&0&otA@s7vxFzov_we>r$_W>1u zQSCUZQ>4|Dtw9i!^t4T*`8Q>3zEWD1D-(C0(vE#~I8e`E2S8!ziT(W}6VThn%a4NGs`vw^|PldFK`gex8qK{kr)(P<udZ)C{%rsVN z)D2l!Z70yCe|-3KwTkb1nB@QVqQsuK&pbqf!~Q(}WB;Gd+cKp=6bpFkwoZ!*KKrQ` z_K&Iy59wDpO5@&CO5~OkKY%_?^*8+&S0FQNd1X;@M(0#Clt4LDy|pTuy0JZ$AQ-Xn zOH@#@8m}KKXAY;Tz8_X2DaQq8)+agJObg~?xhRovBbCw%;n(|t1?L0fv)NV3uXJhz z9i5eZ;ny)mzjwsSG^X>cQWStB57}hDk^eEx>EOP~Xe@0ayIF9mM{jE^y+wjNpz!0P zZ(LIt`p^*2aC*nbb^j6~+u<Nz9Y8u0D^D}$vl4yx*u=!#0K{klHolKM3v0zQWyLU@iSPg1*6YKY99@m-(&*&h@1$`!hP-qK`@gN|3WOaR z+1pSK`SzTc>)@)oMw<-ZU~!iZkMm3NHQqaJ!wumuG=*#5t$mhn5xOltf(!LNs`I(^ z4?skmKIs4ig9dzy>xGH$6J!*AE&Gt~W-Oe9qTlgGa(J01cfv<9c;Xiyh zI}+f7$m#~tB8z^o>K~vZ8s9bW4K!!6ih;;{kw#tY` z9-HxGve_Q|@p4Or8j&-<-|M^0nbE}$cxv!fsvVe8hgg6r|IP5M4{YSBB(vcBFouc#V?{B=? zF1c9nI$Tfunr-fD?I~kvKn&(}ej5j5kBF!B#|^I${Gj*vRL6M75(7PKrN8@+{>Hoq z;>~Mv+%*ij15W0aI25PUBzz4^JGj(t1@X;zT>UP35vgW}TALK}+^VwucWcHmylF0W zWD*>VB{i+2qTX899bE4HUOYl{dI_(>f_#4oL8n?wKos;s*F1_IgtN-}*cw4}ef-3v z(UVuk`GYFNiNf|>EK6Q~eu`~#FMduhV<>Q5WDw!PWFcpN`oqQC zH!Io~o}S%q55`?0#r&~I)_&oS)ZrVyZf;Iy1&{eoYr;387bK&s!wo+loN=VZ;Z#+# z;dkP2mO}|oG@>wTA=;z%{VF>UJ>Lu+xWsbIGwi>%FlcsJ9;duS$ck7kSIdJ;S>t^( z)zgQ`YkQeC@eU>r7j-dYKx}VuRkY}YzTB{1Mr?fLtMS~g=kxs%W#eCeV*c`3EQ8)S z=y{MD%)i#U-xdBuC3OO@l!|_{S@>RCTdv)j|9HUZ29J$iwn}NpkTZ~s1?Jm4Ge^<^ zd=4+K1Ao5a{XlbPG7qcXdYmG{OG*84s{q0Bq$coNuJpkTNzPivOm-pYc_`ItQ{mlP z;J~BtYY0Ppef`c~o6L)5z9u*6#~(TI)CI*p7t10c_YHkXwB?4EFYq|b3NV?@7PE4% zVHSRK**3`GlSsi+CeoE~o(t=G(JX>41J;+F=Z>wCio_v6!6`3%dx^wLTJa91{7G)T zz-;kn1(@e~wwbbXNn007isEon^Am-1EuqDM)y

AV%<#1Pc+`q;jpg#r(Ck2-{EP-Flc% z+}{YYoy}G?0PKc63b&X@et#BhJ!L@Bhy_*Fm{b@2YT{3SCTpQ4XS8H_%q) z1&t;!RtK_(L=)cYwzz0V*!JDuha@#5EqmB3Rr(1o20?u%nt&20;CblDg;@>v@opLR zJZa6lznORZAXbwfVI^Y}{>0Ivuu_6x-q# z4_+Sg_!gfHmrNI{-3v2aym2cr+)%iD0P}Xd;|`s~s*j*@2p=mw2!pZ&xoV6Pf_@0w z25CbZf0)B7?1m|vcTapmvf z*3%IE$S1L zatARF6p4<9V=>5xVE4a%$@ImOb1~teo$}`V4DqjI|}hp)?0-jIRV)87b| zCfq(hPd|%5--erSD7&p6ak)|(yi<{6kPpy50-iPk9(Sov0S}$CjJ#%cAwp*F5aT;K zwUoo@ns4WN6L;T+5^3_D-*2$tsof>B7-l;h^oby!Y6Pw!*sdG@hXr6ZpW=TXL?2Rv zr`E}W6~`sz^p`YyXUXAcq#DN)u!@ZxZEuXB!%|P0c)#pq=&uSlWaN}nu2@lI_3&iM zqR)cIV!@)c7Q-$Vbj9agv9cD?S7x+R{~p28wkx-&+Vup#+F}b<{N#z5Ef4g4dA8m7 zXo4hJBB58cXPp7M_+d$dGXQG{SxA0g9<)1 zH4Xvyt0NSAWoi@t)_y3k+dRp1fA?Y00)2wd^N{RtZKZ($|A9R){SB7__9PA~S8gH38LC+m zhvlCPvd{%+_t96G+|0Z$^|2|ychG3!F zb47=z-)K?I%$fLJ&r5%tx9q`)$V}6{6X$A2B=ulAr{p^~mSPTjHC&SNDV*H~SYC== z$5JSYOz(I-+H;xDXBT~+8hvq!A(-x}E!r^ZbuGz2hPZNDSeOaFW~}tJP2uqLskJP7 zpclRP3f`dts)Ln5*c8DjdzW8TRN1wm^#?aZt4}7D2oNXao{oq)sxeoXeL4?S*J#d{ z%T*aIy9}u9zSaw^RDwbG5*s4#Gt`qE&}@zheULezVjzpOklLW4DzA@tqbU=pINMUP znWX93t#942McMZYSWF{{GRD?2gY6;ji9DaM&N&R9KU}d(h(uzRZp;4C^|;2%y>{u; zmxK(kGq)Tud!*Goz@PEP{1oW4%X`mtz>6gx1kLtxvI{c}Wyt+)mrV1irR*6(UgY{d z6Cg~+t{Jd|b1TWeo9Svv!anv>m~1!N6@Q6??CTIiKRwtkv%oP$qq%bIT=wvabZzJ# zG8OZ^dk$uyJfHXA)m!RWN_n1kqZOW*i>jz=Xc55lIcqH9<0 z=rUz+7d0hZoFM7{R(v@pT%R=gE`f! zf;LS!2+g(6r6L+DjBs8FeKY;qa8htA|~^{j!LCd-oKV>+|#d z!I#HImpmZd^nD8Z#J0D1;zK~!p(Rcl>Dyf0O=ON-$%54Cbddp{e(}|4=nu&=M3m7= z^mQza?C~N5bvEq7Yl)_<{9Z#h=3L ztGQa?Bcx0^Tbp6$+gBPDu_2vNeCYwI3AE*EVVrv#D_xR_y!?a_tpD*)&uF^-r1R>vEf17NcC zfTk#AfEJPX!elx&oG+~jS+b6VU-c%xjWq&E-V0T^(5s`MNQFK+GTe(A)QKb!zL2#O zZo;g7a&<+lYcAu4FqKhoZ;DtI`uk15_D7~?3)I{Fc`55~yydt@C9*tn4^qP0%{lb; zBvdg($0N*!LVO_`PV}Zj(y#m&HTAZfeSOh~f!&o^#?SOEw|I=>X;-f#r4g<()Y+mA z56B6z*B*feChBKElr58Wlb+IaHm-qcv>_WX!9Pn4q?SEv>6Y~K?T!PdwM)Z#mFZs- zu9^I0S;P0@UGntR<4eHp0PP+fl6lAvCqA!%Cw$CTo9bf;=^XmPjGIGN7${$pO>Q-(^HO8IDARH=Wt+%* zq}vg+%m`mIpoH0ONh6G9vluvaX#Lj1Gi_tH|6arVe9(8Kync7&z9gy zqfHy%>Thw@6@Q_}+MN2%Zk~UB99l*m7VWdCz-_-?t13CA+wUHNXe|Ar5jpt~)v|SW~1>M$V@nF%=#;9CxWqy~t*zfRoOHmht+_f@s?Iaq> z3VA}sBiBz!)S9#cc#{>+h6JnScE$EbiVbwG40;T>cwa}8FZ7EH0hlnf^yc1sSbr1r5PXQd+PdtM)APu79s z{M29|#O#@_UUtF`e;s=#z@fnfhKT%a&~g8PqZZ%u1rgPO8#Q>0DDX4&{?=qK)xIfc z2CAvFS;)<@T5Z?7ez|J+t|pjPe{%#H7CO9YF1ZpApg4*;&t{IeU}(eo@(^d@pfxw* zW4fVAI04g(QN8{!9hQYx$hF^M{eCH81s62Q&7hzE7SO_H@QOY+sx-|UcnZa-XcP@b zDBJ2F>Q|bN?r&2FJeNS@ao9}0JeU=!_!#D}-N-}XsFR3U&JBuU zqCp+swhW1@udVwv+tl<&6k)AiL?V$59KpY`p6VBv&u=U$@TkZ1iFhyd=fdASAn55s z;ql#?pi?NQsg&!GA+I4%ID~yi28WZpUAt48>tY{j?0|51XFw?3;J*12bhuRA__f^& zdm~^o$OJymmMALH=;_Ce0SI$r5|Ph#1DYw@%mH6iFQ$jxwbNwSW8^wJg6Pt%Q^hx5 zSf1TM-%7RBO1@4%#s54HmIvUR3ZVn3(acK8!$kyC|%0U=2cFF@rWf;R1_WhD{D zP=VJ^c#pA>2O@Tq@8L7bL+pwHc)NVoBtvKPO}QWv*JzhsH}&GLYtLj7*3hyWk$Ac$ zRQ|?Ik5=tAq1m^j;rn1#w`c-8)EZ(cB%#ytE<(ig8_fKSFPubS0#g(2M8E9p2r6)T z&<-skw0juu>%SA0xbC9bY=y!r=$#&3Lc%%f1EB2593 z3b&DX$hOYo*u8uZnsF&LslhtwFVUNhFn&CzPdxbQ^pl6u$fK>8KzsTl z!7hrJJ^|abXb{c{r$aOhj`*a{gz+>x=$9V?-W!VmGCliO`ieX)u8B9RmPII1T(Fr@ z9w>PZO`rfR?tDaKD2$LdM;SrSD%#+3vRo}I?XlgufD^yz%f!!@r*XoceWn1QSZzmH zj|4ZqXjFRTBHO{~9S8;vW9ZTtf;qgWaO#u6vg2862HE^hJ4F+m_j5I>Wx3AA$ z7c|q#6#O4`Zfn-TqIu4b$8#dv3?RC1y;<%_c@V}ypipq!K=j%_ zTJ<1;Jq=lyu((SQ7mn}L$D>3Tb-vCsb9sugewXXJAou`IM+9I$QDbJUGLA|9!Tt6G zK|l6+H9U|mJONOv94NwNJG4k%b^W{_RxZ2HR!r|2sA#P5iee7y4zSs5=gV}hGJ+n@ zsZ?KbC*80*;>s5e5sah$z2P+xn%Lxx{GtuYvBq&h$E2rzKQa>0(UmE<=NezFE%23U z6x4p;>0{)~?z~v!3}5sZF`JSo6&y`R7G8s|w-}YB>?Ls6Gu+6}>6ap2Z-@uWEZ@FQ9*-{U5jyu}#}$)0i461x6DH|3rhvB6HAMyP@5Xk&G5 zVe6Ga*w&z}((V0j2nbl#V^DJA_B^{3A65NTW;YCf0|T^3si+l2ncjW^^+O}Ir-z#m z9Cp-Bf5~E2*7}#Ef-Ao?u2TaRu!1UqhxUYd|6ZPOrz+hJiz^y-YgpXKC_wNh>es|L zGTD;lQTn?|UivD04h#R*a|vUXD!c1sUc-87_45eOVMJhKghi(~eSCIlfU3KQgDit)#B8l6LyGG-^(|FRW1QrrAG{ zdQRkh){HPOwJxa$AHD4ffB$1tf5fmt>e}J?W1zUGBebYB=g<4H{;277ytEl> zyw=0I(d2y$Z>SY?Z0kN3AEW$syU3FJwd8gt*$zz{QOpAh)>Z17D=Y5t751)~r8QwZ z(VnTyqHEM{uVJ01#^Uk`#B8bhODydV&;>IOYMtuuznzE)uNS`9GY7d&->!TR6nb}q z&o1?m&0~38FW{n*KFBt@YPGh10hvlQq6Cm%`Tb#QA2Hv!gax>g^zgXFE;YMr1`_V4 zA<(*6#kS<-7;Rs}epAK`@V-9yt!+P?L6eGNI$NquxB65m(xmNss#8LIQ%)`Sh|2Ct z#m}vnhjzkzEVIl_Pb|;{>Z4~&cj_J4AxK$b%P3K~s?oE+C`@gZ7xi^<*OVXAvU z;^eh`Lp4iDXKUrp>>gX8RHi`DZj)|yll4UU(Sw&gLiCnAED!L z*bIqFO8FLc5WBb^r8tots4PQU110dNT6Qlllg3R18l%vy`2Cb)Z&oaeVudc;82-gp z{U6pT%w8CeO7wG93<}yuLJp?9gz&wLD^?$dfis#oScr}v^nU%O_sn=Q^LG4Vjpy{E zn^&a`z6$Pai5tFW@Uf!Zo zB>_!`lx;H?1R>ei0Exn69kK8E?J?uX5&1PPbGf?(6~Rx8PN9;YH^G3I0~f$hN2OM_k?}) z^WPPnkr6mQ=&EeF8h3PmJWSB+4M$-p?YU#l7P|N)xKNgQL5y-5{c5oyxYNxegovN( zQ;#wX+$JH!bvNGYjXlD!SBthG#RwnzV8Hsq>f`@H>EWY;zra^^zA*k@m_YKd>i7R) z@Sw^5m^JjeHo@6I_jj-V?Me7DjtX6_9p#M&uiI$~18GvQ>)K>kKmOX}C-|5C0RSf? z_&JdJpU0mfH9GE;U+%K-yFAsYwm&tO)|xMCA>eRRgJ^m}i|dK_OZ#%JSxiN%2Rlj* zA3)wd355_Ke{yTD`VCIfHa=;8GnwzqB%Vyru4)Wj{B5RemAYdrgRD%GWqS1PUs2{S z6-a<3iK(?(7XKs~1}YU?V@}t)p^9y<6K+g6__$x2w7g=K=RNC=Xx_MdoQ%wXJ;VBrIC340PI?5&_KsM`t`DQ7OchGd9u4 z-4BwJ#GyRxyySGZhVzu^{L+|gQq{(zIPneJZGVAE0yUV<3*UqKbQDr4%)z7^N$p!$ zsa2fPz^zg7PX90Sw4Df3zUA`-y4ypvp(vzw9_T^?AY?q8Ks9SL7u}A+b6)_KJ-F%} z`Ze*?@=6AMr(=C*_1WB2WH<@Si#z9>{QwTW71gNSCx=1liIc(AXwm9HEVUl?xV;5{ z>eKChnyu8oa#yF3(A=KaTCCRdU}Vsa2?#|I1274RK@T)UMx^rT2ARxI2G7G)LmEeo zcyq1!Cg`MNw4BkJueL6Tr_+=;-+ofS<8!BW+@_5cMZ^~`iWS~EfHfwuUk`8q%?b03 z<|W*|*IL!a!yr3qEN2Uc6Y109d6FTO&MEnU_E`{idz=WgT&vi^yYZy)`O4Q@EoaSs zppI4rhu3CPUC`;aO)}zfxd>!dInLUsx47g;%1?PMn`U~Gf{^T#`1tPvS>rwY5@Ly| zfmljohxsbQhIUE6M|Wj3b`VhqVO?<`jZltf^3|ln$^Mc~trx$cwP*VDEQAP!ywh1>op&XLTaTJypcj?NOuTbaxySP3wKL&a%B+PNe;z-2X2}1+w7<+2n_> zO^xaM?7U=eBkQeK^QJYc-H=1En1X&6vnG)!70R({?o8%UF*;1Sr7kOH37FTR6O34| zo+Twx`8>KcyFqZhlc(ISRxOkhAu^N8sGy2Z6pQ&Z_)}2yZ)jbi-by?a_kao187Eq; zGz;P_`RbWt-z#uAtEk8xl8S0o%GEl}OVp|6h7b%R{v_mN#>Q1`9Y-R4 zSb_WT=;dO3qj>qCl;(%*&Y3;nweRhxm{w!|1$Flss-!lfNs&}T4 zBZ#WC{;l;%IDEH)nM$QR=J`#q_yThgB%WZuY+B+NuBIjQRv`oG)o2EGDxI5kpZ}!d4!Jrb|AWM2Syiv_V}qRIYUui&Bt2J6k9x ztoOo}m~MeBAc;;Z-R6Vsu%+8#HM*}v$Fm^G=SMeY(-D-2ZDJPbRm%G2*FV&G(d+KmLs1Ja{kU!E-YhSAfFlWaj>KU)L@<&qxx#*X*2Xm62^enG1U= zCG`R7>ZEAv+HzhVxQnDTj~@q@J#Vhs%@qpbO{5QoE7uHh6VdVL#^(O$aD(AV-~&WS zJDE!9_#^s<3}Nd9mjp1>?tc2U&o?_Po6!EdauxJKavbWyc_+wny6hL-?9CRW1|Z-{ zG`pM>eB-%g6G9aAHqQ^=o2Eke#=o0ncX>Rm4o>qFm@a&-xx}X*(OuOl-Bp!&D08uX zvRbzuD27NRt%O{vBZ8OZ49~;FW)LAd^y0CEXhxp8u1vnfYS|(#@B`(s5BUriKEgu~Ibm}+sIRTQA$NS!#`Mqa{ z_fGldGh^`O-n1|d4QA(^HnPwW#E!f^EGHWqH|`c!?_>6g4jqv1q# zPS-t>9lA$whCzND=w%n*pQ6Zht)Q*8x})?pwq2W5GZ}dt&77tBU`-~QQdEx;P_JUm zIlRbb>%3-sk$4o#qxoTPs!I9QB7No2j<+s2*GIbr<~ofC(6wv{6o8&xCmALYxIO)d zJDsI1c~$Ca#AZ4auj6rv^QYovB$}{{Z`^ak6XGW5y#<#woS7guF9Lx1`64~GHUAwi zXf=Ed_kkv1FwS(KlJJRGyLrmtc7VZrp*20s55%AA6W;aRf&A_?9CBBheyP5}N|m={ zdRl6C*Z;@fTZUB`t!=vo(kYWJ5u{t`Zjh2L>28#6QMyCAWYXQ80s_+ADbn4@B=%s{ zyVic!TEF*q?C+Q0fsd0ppJ$A5-}iZ4*S=^?hd%~2zx!E&dYPU~q%FzBw+s%WT6f*E z{c+Xqh$Kq&vPBSa;g00@2!G=U?uQtmL_W6|Hg@oo4Uf#VqeZrAKh?=$3MZTXiv2m% zdhR#g_Dn;9Cn00u+2OoShaVb+*EKp=tRgf+puEoe@oFW!RtL&{_j(QPa>;e(%z~cx zHD8%DWuHmAx_|R@MYsu&#_w}E+xlR!P#x}QJ}uJ1WzR&#Oc8Ld&RmQ|(bGR>Qe-@k zFMKTzPc2(~B-^%umh%f^nPxe@gy$_Ve#sWTonv#HG3R!<`wRrT+Dz}Sv@=GV%&3F$ zX`$nlxb#}Rv?-u1n9qp_Qek|fMB57w3*K*g_&oDBXEpDY!g+nV@ka@U@LO9x`Ax;y zK5v)7eF%%5-=%zpfHs)^d_&kn1v`DAa>JVS#knmQkJa+7#N}FTe_?b37 zbx5?D8AQx-Ik-iEfJVAnzI?)w=h$078{b9n*kvEF(^d#wp}PO~&)B!`!dof~eKs85 zi_Le|?+q}qghG$f1-x&vH@0P?`3h3`U4)ZiHRBWf>{cpBm;!bYcjbiRARi?2*G#Jy zg2`4?YYdw>n@_E87V(-XFS7IVj?)T!5=Kjii5Z#O$NTS3LC#_-rA)HeK8@H6DglpH zcR0aI@VuX>JO2i0DbMtA#nGrV25#@>kw2c#vEu}OATx^oE&AtWvGrSzrk{vzE?w)B zMe27Qo6(z-eYOJbdwy+q;{vHm3?Wk`%8P1x5px}ZN_d_aR^W!575SS;nYDAbK&d!eQdIaH2tdVCp3nJFDM7^)%S;XnQPg9s<-WG3lwZV4KX zj@p~_&q;?_`krP@Vu}xP=Y)BPqQbxaf_)N`lr+1UC1Os*C;TG!B}seX2@974#lA#-v~W~rzY#S{_+X0_s1!bqtN<-T$;REbo7}grUrfZ3WFWllZi`(;>rYU z)+&#NWs8W{H2fr5oqwD4aE96C%N7`(DCZnLTgr_XJGNe^SB+=TVZvk59g}1F@FI{~ zi6lwYevRL!}{>)zs3 z2#2l8bS0x_B0tJu(W9}MmF_ty!<>Yf@aiw;--?uD!VbGbU|gB~WueHpwi!gp?0?=TI$ zPkvkY6m9qBJX4T!t(+>*8I*W-*$Bw9YV$9l!H$1t0VajfT>Lfyk+6ZOb^5nI)x{l~ z;o(r=XG4+1mR+^@`h9)*$w|)rq>qc3Vi4NVMhGE$$W5!GKd|E$<2Se^IZl9J_`Ep{IfXJwBLEl`W z`4uRO65xujNhQ-4kGh*Z|Ag!bx@v&!go4#jEWuW1-imB3-$z{U?AN-?`2^>+j^AEZ zS?#V*@!^3GFXG;iacNsQS2yGNImiydBX=R_f zWd6U7Q!_1QZOAdpKHBnhcUNh}^X1YH9uZ#Qyk~li0*R5^x%X0CZeZ^mW2rh0>|%tx{b8rEH>5 z?(mgdxrJn%?Y<3^CT2?gPXn|o0!N0Q6j*?m%&$6Zm9w7w+5C{L8cLPCiN5qTvHgX@ zv|sS}*FxZn;)-lMkf=*IQT7T9TE7Z^k=$vT^YCe;2uTNqM}_Jolt3Ld;^KC3lN2z1 zxa`x*5&V4vxmV7gxNtC;BdYCg4j2^;V|L2m1zhHjVw+r~K1-g4aLb%-44ItDI;p71 zE~Hj$FI0s0FTPv;aJsf8wUR}xKY970jhycfvu=GhcQCoeH$h>tkcAf(oOefe|4Y zdK5nss1ul!2p<*?+ps~?VJr2f9zpLLF&?LbR|@F@lV^MyGzUvrZ4lb`BN;Sv<=!@E zhduDtM^6qXv$6v2vV3OBEs6vcC*C_#=xx{OCB#8!WBQw)g|1Kbt6S3F-d>t)j}+wP zUeeyEdjD~{@YJmH9!H=J(K`Q9p2A^0_mW<{G+LfSyB~nasULx!-*X3(wW2|1mqRCY zZZH5KDjB`YA>uY?nKj^iOc5CQvruqaI<8N!ki>QpmnOu!ouqhs68uSgK2Z19&^^~4 zIDO9&fC>V>vN%%>5y5hyyi}#|sw5!ly8{-|O~v@mjlT?>!N(aD#1sk=Zg&x&Jlct; zL1upEhbx!*MhAP8B8(V&t5j#s(pKJD7Vh{tw#!X`T-XX@@Z$T`Nw`t$4q86S6-GBu zI^PmGoA($9kahFG6)sFV;yEjNUnFS)?q}rc7E;{74PAq4$zQX5rx(-9#niduDM=#-i!fCx= zxGOqeZJV1?qyLo4?3O-6KS*IqZ*WO>=sL9i!x~&Kw>fi2s~e0;XgTa>LzZ_a+G^*k zl~R(&tiuA$T>0I)el5IzJ2IOB!@pO2daKdFTd{VnOh6B^7p3$nq;TZf<9e&h){~1t zqQOy*oe9ml?z1|(A8ce6wZ%y!9GH8Eg8D0n+#Uzbce-0eH zoh%hufVu~4Du`E-~BZ|N4JAY$f*voHR%TnxW3so>T_ga7pESUDN}n4)0kx1_#=lBH7|3wS^|MTlKV=JDGo+|J$;s3Wc>4on% z$|&-6JohG-mmyU0_{=o@LmvOe8uuRt*`KC?!rVPP0`I>l)vsQHj&rMq6~pWQtn~gr z^E$p5x{wwpSnb|yl{$!3e_5v2R$H9KV$dN4j&+n~L&VRiovrnX72^N1>o{1(eKE8k z{x2F`kDouNYqF)&v^oONtb*4->Gbhrf_ApmE6?+CkrN{E=g;4I>i>BA|M5jTg47GK zP^dyWUmQ?b(O-ZyUJ5*me1)HJ=+&j6Vo0xyK-!s(%kM442FLA6kYG2Lwd>0EpFa?x zUTRFJILJPd?**EnxL+AooV_!nqLlJ`8n((Lf(9`Y1v=w7f%&&+tE@aGJB}9b+S2ET ze+83gJS?T_`}3Tjm$Vh7rx8Cw<_k=S`r7XA=%qfaZV6eUPV7==cs^e-dw=*Ya}>oUlhFicu=LwT$b*?az9g8^q%;Fa4&V4ew*V~1t0T9+OVz+C7Aj^&|YeX z(>hbUKT4nkm1u050+;+aO(VA*>ndu_Wku@9^0{jp+!bT1-koQo!;`EY*%;7ylJY+x z?-ZuZj@vXc=Uti`@io9!;jpqlFY#f}ewDza6HOJ)Kb{X}TXY#-xXPg0hmX%kc2+~K z1$p+zYPwV=vE0C9dkiOrQQP!qI%DWO4x9S`m&I6p=KN-g0_s2w(5S|jF2dfX%}qK! z$6r9`YSr=Cj|P<0+h1KsIm&@k&&frug!nH2pWO$rFXPd}eoBe3Ego)WwcqqOX)oTD z%$I9Y!-mrZVs|FJV>0Nxs8>4!)mJUgGj>68OTowcyQc+bYn)1Tw&9P+RtHn+vQ<-< zl)%Aaf%FJW*%-4V6r#WxL@K)DSq^BcJbx|Wm~i;#>KJ<#9MJ}ns@~02+tSTenxfl> z=dFL}-UK?zvAkt{6Mcc!fjFJ(^KB}{EQtz+Lm-gJ(G0!#e6n)&>$IND(A5V=0#NI; zoswa(fS!^9J>YDe`Hh%Y4iX86hlTR(PBTZWAAfHl(JB`vzOkAU61aVnyfj_N$3#X9 zN8RjtEb?#=GQH=}>x*MtFDv=Bn8EL&yTN>=bNZ~#ZoXscU{s<^r-{6cS(8Z;=r11M zHqQIu-voF>5VH$ESYv|nLAOnHEzRX{mN`77wl;1lI%+My<G5Oy!3bAGVFl)ZU+3*i^pS?3yqmV$=!lVbrHO_%wQ>zE(8eU9;uYqDIfJbqw#9 z5~-VAo;-N>O2?W>O%K`VM0}trF1ol~((4s|3}7&NAbp)?WdjF9@`@ma*k`^jHVFv1 zYsKjgbxZq0=9BtSr`E$67&e67A4H@5r#{S~gwKha8|#u^~8Z zPFAC5E14AFV-y4`5AO_jFUgnLc}C&K9S@y-d{zM`tD)bh&&5aEIWsKA&35H1CyReg z4KC#^;?I~Ns4wq?(}cL~A1uPMbr*LECs%|#(pjw{+T6Fs3c}};!?ba>jHvz16(OI^ zK?7TLMB}>WZ3dROLYe@@U~*k7xSb9!0?87cs|?o(XB({Q-q=mOLl|f$#dJBUpp=f0 z>Pw(!1n$xgCom8W=KatY!by6;Qfr5SMfX`Y`Hc=|euw2!gie#mU^3cRuIg(fY^rKh z5)KKaY*{8j@B5k(jr#krBnRWUuvzzX-l9)<_pOwtoA*pkyDI9@7iURTm9~pi1?pwF zepS6Vq4EXVm)NrN)n*j*g$K+$d&I?;vk*>LtX^*V*;A3sV3xSdW;H z=3yY_Ln?66)2>PK{R#|dTpm^IZC9BAZTdS9|LOP8lqKeKQ~~8B6Mv(NqvocX)5*~) z#rC9G)I_18xKf@xd6kd$i?VyKlKX&12gQ88Hbw{UF*@x=RIZp+0R~^2|L3(UIr&ldWGaEQB36YnQ*RUbP;a zlfPWz?VQ3ZW9OSj{obLhI5EzFrG)=12ay1Bi5%kL2dO>GB38%{ zhy!cW&(qD}#gETL2%e7P!C#O(h3&2EX!GBuvksGSyMLZ2Qr1ycoFlWIzNdI@D6S}q zxj)_%+6DXNaE=~!DgHhXXQy}-p?m%{%QTZlwaQRN(+e=*h~g+oo@++lBTCow^c|^m zoTVdpZ5rcVjKi#^(ZZzDAemKxf&WH?kRyNp!;q@kg1thJ_hivMB`99;Tz`k-v&*;A zB`Q4o!F`HbfPcL|ZE}u_DV@NeL%u)vCZXXJSEkujPpSf{w{3USJKuEqsqM1;52pO; z{#QCxGqULQ1izgRC6Tq~K6IJBl`{yt*{u7*@hhrB}Ntfcn(iuU30e$VraAyst5Ubt-xYYd&Zz zpP_6hV?hwQ>|N(L^7XX!QBjEmrY0dOGwOV=y!^c-nYdnidWHs7)iPY@}>fXYHr`IW(Z9|jZ4nqs#mClP2 z+fy|yOb}HXbuAcW6}4jx9Zrp)uWQJrL9>uv8iVHZTh7)9v|?=#k;WNQz099JxKUuq(;e;^I@!>-oBK zhh3uYb^KsLsM+A2=00R3D>OTj0QJ$Sw=a<3O>C)MWeli>lZtjYxDlt-&h^t*tPpDD zBXq-@K@7#HQO)wkrVOJ7iL%jYO&3!AxZyb;a}J$G2k6*4mVNZ%AAboznNtR{yEC3@ zgHz+jPIcBlGQg0ByhKzzQ)i{_DF1VbU$r`Zmced4p;c;) z-Ki7&Q!#r2thl9k>UTKT(Yj&Bu5;CT>m|)`$?V>>Uc+j)#SP3q@X=F-w(<;yxp!qs z_JjsjR~W|g4RmU3MlDt0b1jXM%n62p(I63GyMs5-A%uXTKbQuqB8I4Xhd8dxB zi!{*plTPEwskJNep3)_Io5a>&`MUIsJS$0x-z{6W1+Uh+ zO-(mDp6BA>n=@?~cjy!tUvSk1V<_c{)1jDjXv6QS5BWVV`)3{SC>1;4?#3WoR?Mab zd{*(YA6HfkZkdpMRE63MzGmqJ9-M5AQZ(2f$4G9IHJfzrE(t!a9=ss&2-2$xI58cfTmK8{Qk~I*boUo(&}sN zJYR2xt~U7GFL?p;#ZM|FT0g1eGd&|vWjz%@$2}HI;NVw`UPa7GzSe&pa3m6BsUarr z^Wos;nZ?An2&VM&eL)qVKqTKD%bq%^GauCe>Akdo9*=fEx9mMyT>~i(89GcXE%&(R z-fur$w}6&E6R~hUCvJAw7+0b8S@2Ojvs!V~@1JSPz*375=;z{@(&l!~G4rAeAN+WC z&QTTTqznwt<1q^W)0C}9#TC}*kBPkIGkkD6N5z^eg4p?(wZE`r)x&DBHWcs^5`A&B z1&7G2co&HkK{y&^(U-~&o^*&Bv+EmD$?q~nejZ^Ny>dBtPiTocZwsUswXF~=B`yTT zSLOTq3AHwhvNr5z4HAO8Zy{(ywHs29nw@!I^kVpjQOnCt4Ym0ecl3~G`_bEY2D)W0 zZQYIlBqImgD}3!Yel6mm2|qVK7|HzV3U(AQ34(&rmXoCvqSB314M)4Oi5 zSYEOVlK7mIRZD!{skYB+J#&9SZcll$;`Ky3J+gw|9X4dH@X(3wudp{1i_$u;lJGKO z2sp*L{zw5weCwyGw=;k)8$*-H1JTzNa9)7eq?C8|grzY!?Wok{te;Mp{@_I;e4_-6 z4Xmt|%N2kpaG{s>dDYU6=t>y(ef_aArDTLPM<5C8+JP!$sm(`EtJWM^3$bqS{L|{V z!|>ZC1<_*KpG)ygKHTU%&v%y$WeC}5w)E>a?_E}*Idlt2KX4tu4nFc_vSN!BI^WE^ zh^F1`me}jOJEjXlc`5qi%hV#t+f2i|@KK+PZ?TxmrdQ zhmL?PKhj+dELnBB3{lk2a%e)J?foTkO-zlJXjw#1)vh3{iPP2JKgXZ%kLS~!iDG7O z+^PdRiz4Kup}A1x z2M1zhW{B%lN_+lCqlYv>!1kdJ=VmK}nE>h$T6ivT>el^yrgK~SoDqa#hVmZ>A&o z*&GL=;B|=|vIT5f)d3^2or|r}wYe!4ZcEZkFHDF5Qnp6_-3iw=U5X6kRUS5HH}* z(#bx#rLP*l_Ug79EB?v+`Q9+B$qQDh%-ex~|AZps4z>|)qid;Oz9VzYz?A{ufvyb_ zn;8u5O0!Xc2IV{s9@{LP4k{X@>~G*e$|1CTAXWTf0z5@w3F4=44)$XI1tzovj!_9bc-D?v{z=49U`MN$Uh7iKYukH0~3U*??f| z)_Y?}C)-(iy-#p!i9Hd82un0#E?IS6vQNmtgDrts_~z>ITpeo}qfTLcj*d|ohT94M z7o^liy4$Og9pngfGid(nmOeAWG`weCAV`u9b=CP(BzmFfX8Kr}i+Wwh=KGdI7^e8N z-3&vXe3~LNv1_QoXJiE;S;S&K@qKEN^dKlcL-@N#vbd~R!u5&NO(eXA!4XdkY&h)} zzRuMY&UF!eby_cEf5=}#d)?@MuJ!52B*G`J4p5jkgf{CV+D9DSX7c50_xGEWjVj)aidjn%`|Iym3+w z+iOq91J0LogI&Sns;D8rO5DBcyGOOedEaBWKC|KUqM-A&$mOle-^I6t&@Dg;y}3dE zHTqpNkYpq98Op>DKk4yF?4Oex+P)?|yUS#cJ+k_&tH1Y;HGj#ToyW&UhAnP}-=P=| zgQk;Hv)J3%TLg?Egx?4Ju-~vlI`dXj*zfHPd)6$wow<^-v%S&L+7(0VB|lXYKj3~ z=PHT>$Xx$tf0>Ca^fmbA(`dGyBe+fpH}l=6uuFS-_L$@F89QThYb`S|k?glgB8P#} z@>Qm2Zyf+zA5PC+P^}Cw1@f;moMVNo3`jVAW&3%9)*jEs{HVnaY$tX- z9)_`0lFQJ^%YYx09?qulN7oYBiFwN}aaoAPui!q!9u>?Jtf}{0lo$g!(hl)wdyOC- zHD|wyf@12IAp~Kso8}9dbt(+Ql@;F@bvr)p_;bvc{ZcxCL+;UWx6WTStYB!w7>cVF zX@;fLVMTdzvdwST#ZWlO`@2p@^Z+STddBvAinD?sc;RXYAMXc^VCaPr&k$!TMYgq& zRs&cF%q;`)hV`VzvV&EXKQS7ZOl#D5y+??iEOVpK`OTStG3VdHW#Orp$jmeMZMNKM z@0?tr)y(AtLm6_r9C*AWJ_=a9Le9x)oIa^QdHx4{%@;X|)93UM$Pd+2ee@bT)KF26 zIs-2zF~}_2W*y$p@QGLOgnNbnNP9f;Xz3QAQOWmxt}pl?-Q0iuC@;ijvgZ18F#mCf zAUF=YzJ?+UFdUwz5MD_d4Sl&IR4gHZ2qarka zqyEEJicZC4JHd+6TE3&|&qv`uiQ$kXyQ{J$9+!4gRA+!bq104yl8wPt@-&6!bI>BH zFE!ka)PbFO>?=V`S!)GN(4cWVa06xBhDVv#>KSCfA z@7wX;VRn3(lta`Qnq%%@DNhEWgQSayKsjUBi-A)1D%*q0XVq^0Aj5TIYZRLuFPnNB z<8ui0;i)YmTwor}$)aHequ2GD9aSU+uIvT#BN;~8D8WcumH>fHDNV!sT=Q|!!0;*W z)AQZwvD|Z?KYpXFlHo}-jLDo6$8;<}$M>`%aidQeg2I+4R%0lFQms&3mijd?Mmnf~rMku&(ECs?`3?Db93N=+DNO&`C(8yy;Pl8)L|0uzu zlNO9}4ndjqu}d_Y6!DA%VfWl_;fL*oC7N=j`kkxa^2|qS3tXHy>6?f<8oZe7Q}4mp zljMG%KXD{?)Td*Ll;0Gp%q(4jhT%l;iAV3CULd^`-P_ld)ctu7 z0#)0ee+&8H|laXdE|x&1(l8q{!~CElh#e(#+e9Bx!a{% zkX?&A2C(F(Yee05o>qo*CqxtNrIhu*O&l@!eZH$s*Y5tYK6!?lKJr#V2EREllDLQ- zs4Zr^mX?$uy7`FXVv@EQW)KtS>d_eTY>E3b<@wT!-n!{}MSisDk7lotf4}n650eW- z&FW0!`Ceu40+pCg#6K*IV5|T!G|pRco%Q6mdxs#)CVUQ!<F` zKzgzwJn`lu_uO=rmxpj^_jum0)M6w1lRbgR3l_@>xbxKR*Psl_C%d)( zL1Q6W_|hL`uK6*h^yk6lLY2GGTJkSm@}oqYw)u6!SrSg{fiM1}EX-aKwluE>lzbMGYqq_C4NgU6zwwg5^{grQ1dm)k+@|=O#q_ zisEG|=qTs7#SbY*d2L{Lbi1dP9>DH$cqK!Q)fQc*4n^^ z?$<+|U+3kk!Z?6|k6k1g|CHwzK682S_^yv0LL*-({)x-z8zc?Sw`o*4wwA$0yBBFY z`>4Lp(J3SjOkv)*ODO@<{M{B+tt*zS<4Gilk;>0K_&`rFcw8)8(Q=T(x6_wSX6tfS~wj#zh;_Eweb?tsHffy3Ay}HA3NEFZta%F z=73IqiU@%P%KJ$qo;!dMZwD}=FeD(8K zwS`xTtId)sHj!10)%?P$sqV%8v&$cK;nFzhM(W1J=7g*K6q0fym}rvA7Vj#4d5NGu z_SDwc>kz{rT6L?0c>+ZMd*sQOpxU2#FH$?RdmZQfg(;4JxjOdK(hI5iPu@hKc8QOO z3IxmF1?p^sUxbE>_Qf-m-l8=pMMq)>#?iR{=~Kl~+jq%uf!G=^J)XYvu$roFb=M~H zLdAuYOKXmIx6L${qroTlfjpr{L{QCr0R_d0)5Ff$ne9T`LEa~MQt7f`jp8tN6wxhg zUZ?GnQ7RzKDQEcRbsuhyqrxP*8tX-kit&o@-niOQ;A>Y(pAHEA#L28gE8v_u=tk87Klw#+M9)9wv%RTmY zu$>202&e#eb)Rwpdeqm#3OsT=yYtan9Xs09*GunN+ne048KKL0G&}bxl^LA|vU`AE zvz-ZY0|e-1c$0oBt6>+{d4x8*08dtjM9sObsukiP&V?<$`pDR>3GkKLEOlL% zrZv2ElNw(jDnoO16*Tahn7^%;fuAoAt-&b`SA?rJsrud(>>g3y0C{N;b3Oc;1?mL~ zcd813(1PpWEYPt`6yt5@D>S=|(DG69DtOI{X@gcvcZSc9Dnd-g=lb=H-O{`M&A!r# zO3lHhVTz8^KUJGxzI*2!1 zsNBzR`X2&-hbClol3%SGGSXk>FQa*w3O(xHaFtr^?d0~wBoBdCf411@ zrH#w1`|{7pdi0wD<)$-y|G+H}Rb~vjyC;h-%TlQ`6<>EBe1m|p>N0{=>GDfFMR7*<5d%Uza*AIx9B(&~te z9}sMVb1M%|HjnU~bGEl{9s@=XoB$Y*mZ2Ir4yU((3~8LfV+*Gjf{?CGFzIVn7KWIN z9Uc7%H3379$0Dvz#$BF!g{P*6e=R-1BIN-E?wsueHw8d@|R^{+aF56Tu{ATJlvX!a;FQUzl2BlaKQ#{d4}Q&Ky^ zA#LBzKVSWSaZNzv`SibuJQ*Lmhj>@34&zb((`)>ftN2F70-~qIg$=Y; ztyZ6g|I-UPl78ZHxD<G{r&_o1_@vQa&~#T$=nAF7k{?{ zQCYc=?lG8xwO;X+>bmUDIc*Et*YC}G2!Wg&rr`{JkpElspu#+N;o}tUaIG}x#0Asy z$ZG3R4LbE}-IdXX>)~@YU|Q)0M%;gy9Wm)?Wn5nDYirgSRE6Pl>mDroybwphg9x@s zJRlh@n|~cd-FcWk%%RdX+04!)ZHAh~Pc#Scm7uQC`rm$P!{Y&9>brRS<-gAn@r{gn z)b&$A0PA6#zR>2P=YB@`LbXUOrn$jkR%~=Rfgyo(kw*$ZKPuIJLP(hqsM)!tpme~Q zh3d@vijU!rJ2P(qpG5HmKKv^x!PwhBA9H}>&0(zW{v8Xju*PidyYpszOhy6o+`a!{yW0SJ+oY&bJl!6s}K6mc{v+!~_qbcd#b;{LHrJ>!6zi2!4~&v8Gai z7mT;TIpmceHE4()#Mh|*{+AGXA}rCa3t9A8iQ1c~&`y3+YKAR-EEr&J$%k)n4hW=* zG=$YEg|_b}`<&|!Xb_vr!Ao#&O1+c_TTy`wrf?=0_b1O@Fm>|-DUX1qN>TB!Z?D_V znPw7)S1mD*r%Ef6o`iSl%@Wv!+3{*DYxAGM;#ESlt6DA^P`P9mT21U?KoB2Rs(3a#`Z>26m4#;QuG-2 zO=yngfB-6><(zNXqTNXuOo8UxO%ch+{jUtiza-0$$9w{({v|I2nVLeu*^cQ|tQ{$c zQ=GEnR{3ZQhn!`9D)a&v-Bj7$nu0lZQT3S>!)TTy-tR{b1&Z--ytx06c<5b}8e@w2 z7A$vgetjg9f-XeB?L_4ojPU-5E9bo>pDtS-dFL@GX!%?`l9ZSH0ZRuca07x0%;)7885kYf^S0*?#LH+^+Z&6MP@Alr71xL&50OL?PVW$vvWwWR zaH5{c?HhhLkU2y6neK}?5F-D}j_|i{^{6q4fiD`*=8zsk!$;Eu$j{imAsr9nAARg& z1xED25Y}HF!U1y0@ntv4B7w+^CU5b4m`zqhTd0K;Cp?^+|0<^ad%DoyL|x$9_6Q;S zAgC*x$ZStU3WLWb$=6~{wzo|j-Z5MsIxf4(mI`T3(Bn*>-^vM=ijd_l>dj`Kd#hJ^De2;-%~A; zq&NfPv1?sngvG;%2QZK8R=x~4&!k6f)Ow}-@g#6F0ki1f+xar)Y0~~7fkc}X(HHIB zSEBhpA}>j1yaksU@82yE+i(q;DV{kk1=A4nI`3illPv#T8u35R??0aCc1a|$5X^XJ ze&iHM=zmzWAD+gQXJ9+j6S{764m${)~B5)D?o$k5b(1_fG}NKi@`l)49T%gsBtdF|j8d`2hse^kpa11EAy4?E5CjG0248`| zEepa~yiC~{fOgdD;m{qntyJeMmp}@=n1qWQ1!bH}I3c^JEn1~9DYonBMoF_5OhP0O zegC+odFA%GE9|1=26ou?;7=0x%nkSoO#PMocKILjyJflV*SMhL6Q6r8X#iAFg2rmR zg5d4M{`Bo;hEKL#+xM}21AggLuITw`|1N9{QXU4tK953kWKtxqFAuk|LZhza8I)HL z!TD1J9*vX=lmHV%psk|R_my^gRE`-C#GL`*F}E;`x6v>4q<7W40j)`yciGN4+3Kb4 zs}pS06(kI3W~#{apRv*_q7+Bu;p}8ui=KOjuMK`dfbEQLkCCYT2Na8Sq|!@N>C5w} z0Q3P~xVS;W_g=ewaXx*(T`2pG*@@465Hu#F2NGE+4IiMPOV-pqY%oRq1)7oIpo$lv z2Zg^>hZqv@!pHp^LJqiaHlq!@lO8g9N`T4dD0b>)zsr0=$0Pi0uG*p~jD%AWWbshN z(W`$YYrU7~2*fDsz@g%a&67<)z_^P(Y%O`gZl#8HgtY{cc!2dnXwr zqLT^G0mm9j^Q5lngqAQ?_MfE|HjZLLVLkY0;HWtAl;$# z(P7wfyU}hfNesOiy2Wf|f#>m$%{yJZW^zA%*Q53eMy;BJZ-zf$etb`s2pvnqX#c`T z{jC2G3ruB-VqJj7-6qk%9Y*5wx|W4UC#1un_dXmUJu!tMH5rY3TUDwwX8jpQ zA2>&{Azo3nIn;kGm)-Gu7H8;9Q&9=#l#0RWX<#=&#?DKpC+!@Kia z7rmw$^PQsGln zSw{X)%YT)6$V5(2LBnTJ5w8a$$iCw>Y88F!$;yV1cjLK(F>pw~iu7wdE_DGaods}o z4N#H-5kus|d2?2Pry1xxV0CV6z*dNVm_+exET_NH{8*_#Gb=Exu`@hSX*ca z*s>jplGEbMZUf{#?g6)mnez07`VYzhk@yrPS{x2ZY8`1jtjNxwAMnR!$kSqB3-7$o z?@{7ze`*YHkme2y-Z<0CG3hsLoP#VN@a(TrNE97~BiS`Gw;oNasg>wb%-8LI1!hMm zs5#x?JM$o-`#^(|Mzykj@7k(v%KxF;=8JJbtY8@h(eD%v=L%r1A>g({7I<^w}xr{dPUm5p9l zn;^Jpf(xP7P8gt>&)%zr5lShP^o9nv=|b!SGoP zi|0|YHaIJui?<|MHxs?}e5;StY}LfavW_OJw{1b>%svIT!S8A_g2@6P^GJ6EaYcoB zv5~JlM=r;v*7g?@-|E%hEl?b(cwVAoj$NM-JaFOV+?n<6DeY(er3d>vm+b<)_19_& zZJU7@WIsXgUlmiF?k#Zu2|zqawwFp`hqn2##J}t=zMqt~za{bNFtw{DTn04>Q1LE!BJ!YQcqnxAC?@(uhpJ zQ?8}C|L-h7^+bvGcn;SF`s>s$9`cDS;@)>aBpykouo4aW%wj(i1S63{Q1I@UfL&13 z$Mv_njN~yLv334>*qYVm!R|vibSm$B=Bvyy_5|%mmOWN(oOU^bo4x31l_*_kLpta! zL6~6U%L-T-KbzAW0}k}g>$VIz95gNMuPy6AFKBecqWt!xKlQH+y4y+hKuX&?AUdc2 zu-5(ICjz|zt5J7#%XIFb_WHu?DVQvwX>+d%Bafncejg>i*w5#~+yO2vk&JSCOl8ZWu7=u zq^+#JGJ1ST#-akc70j6;{z@2Q95y#+x<`BjY>wFzrK*cl@E>l$zoQhrcI0Unf_VKo z$yvYr&4iJ@=>a#w0Xruv{w&ZOI-V{43WSeGiQP||>C|78xqfsUCT48OXG zl>b^fEOFFn9oOiIpPMUpdtwr=i|+-qhUaX#L6zg)jMh*(H*=0mLR7wD*463D+k!C+ zrJ5auMxL-uG%^mY8{jRTE&Y7AO){LA8W@d_a#*{rQBZPg*D^F>1_00G&X?^;RhyK` zxnWvZ;2y*Z8^*^TsWV(Pgk9)-gk9JaC}tJ9mnFBXr4b~W4)0lOR&kxRI;)&s)viXj zIPb$tf2GO1Vz(~ycC4adl-@v*^F`x6p#*#;^M#F%Mv_7$M5H~o1<#F+>6VVBYXhMVVUd*8Qwq= z+%S95jiOejE8cpW+sx$H0so-y$+h@|z=|u+S|OGUKZ6e>MpIj_U_rF7R`li153D)n z84B(IHPB3qTcvPV&;Zx=uXxP5*D~}5k6hOGElTmtuuaXpn%q8ydOM!))L1rs6BJ*z zn7l}1ZU1}?x@Eu}fO#^Os0Uzu69iC`P^!l-KkmW2j7BLuE{fT_y36J=FbHQPm2zcQ z$8ARDJF@EI5c3 z^w9;4@mxm`sIwV+vCr#vVhp_FkW=7|XOu2D0$K#%B&)8Fel<)4h7o=;ng9-90E*49 z*7{?GcPuNwr56q^u4cVFVSxm!nyX%+Z_M@e4uUINM=xGp` zifj=>o%eSRDHjBR#`DuuiHF_xXiJqmW()sPAWcXB{9)s-S0TNXCiilrD>}iQZz29J zD4)F=Dfk(R%n?<70HUoW11M|P za*P=y0rph534OwXU;WS>rkA7FmVU^GmonM(fUdi+DM%2zg%FZI!<2i6fbY42M#SsP zfKzmNFkc3Z)jOpEN;)qeX#TAw|IFPTjEqjepuOYrkS0#tp24`j(B%%f3ahQA zm8gTj!xq~WjNMmLG+pEK!&lnl#8~>g62a6sc=#)T*@{_Rp=7A2k^Im;~;+D2xw8De~ z87=1vIQ6@2Ng#V%cQDq6wh^%zXS*NGpH}pF7$27StoPv%@H#^Q4?Oxq`3w(_>HWly z4$zfWwYycy36TMQVl_9IB|rn3W9V3tJbBh6A-K2uNBc`-T-H#z>vW;&>+?hmGVIlP1UQkLwXnQK~ig7|&E6YbzG>y(XCzKWP3^hBEK)Lq{Xl$dH9o9!6$cbGPIA2E- zUWy=xW^K*u^A>BgYT<2-s(&}-yw(H`LwSH6vz}FIq;Xi^QN__QfDskAK3U8B{Z|-W zzzd2Zjz%;QtDGml`vv6OV^^y9F0zR3(w(!?(-w(a2ZFUU#Ld}KmGK(b` z35L+VFKdY`VY38Y8Eqrm=p}xE&?@y(g@EMO$pYYZn3?V#PXK36vNsb!GN1p=g6pNm z3YCmAf?`Lw+ng3;hC| z+M>Z6)0}eSF!Vl39w-e&2=-_O$jYUHSf5@PAMiEY%*KA7Y!oe~AyoNH)82xi2qD9w z%1&fyM`ZCp)e44Uj$z{3y6QFVc88t9W858P$)s@96l>K;i1rh)7nT_``SP=v4@JEh|(Zk(%s$C2uOp{2uMjuOgg1Yx}~H` zN*Y1BQ935w-OY30wXU_Ud%b$zW4zy<=Zj-7hD_%C&m;H!w{6?gXJb1J#o^*g);&fh zn}MjIqJc(M)78IF3CJNu6X~^B-)!{?4?hc%y(GkR!6v?ZT3wu3_hvAB^T#(F2gE4& z#Rr>{xM-xGZn;d;f~f&95Is}-&}F*r%FTKZ8Aa*W`e(T~npNg1m>)TF?vL`~*>O0~ zUO#w&CB_AZ9SGZ18Ui(Vb+SIJ)sB_zoWN}z#bK_hD7Z-oILoP!nwQQxUDW#4s)>yu z*0W8;8zfH#k^OMKdlg*&MCH3+wXXD&h>FVUxOa@B07W0Wl|!{uP4Z_oxsz2Y_?6ba|MCm`RX{+VUW+LajjcYv_ZrGsA!dr`v0Zi|vYpI+lQ6=1l_L#xTFrhz8&0iK=_+lA>AyQIQsOp zn`aNBiJzBQQBvqeK;jnO`c@is?c8l`*Yb53*p4KE>Fnu^E-~CpaHQ-Trgl@TeUdA= z{2lq%emK{5K#>;v7WBy)$@4ppjM787Bn~qU{DGN4zF=~j-xIeDuXVUlKMSr}fULaH z?+2S1U*$qpPV2aFl{4A}*^lqK_G5#FxBl%N!&%hQt9^LOpsT}$>NwM;o4|gSGsKWG z=?#2{;>~`V^f*D?ix+9OJA;Kiax*PJ)UV}$PTEuvFp%5n)^2h>ScHEE?P$QM&Dxo6 zn(QbW4-mLW`wqv&JckXyyc-mc(f9-=`rB#2uC?D>xmcKbFeHZ$zj_tCYQJ)&Kva3S#h zz+um;MB-h-+!Ak9I76`DIFSMU`e#Q0~O?5t4k^!|%?T>>5 zgLbOa9oFBtA4P)4W_@JY;q}0pbKhzt+uJd3KpD;X$lb+G9`uMbQ&XDtqnbr=ZqOS( zqfLFpHb-Oxj?Y<87IoAxq6k))R>KxwPh#2PB(+g~tC{m|<)U|FGVx5sOgIxEnLu$u zP3T-=jb6rG&?iaIs@}&hofL-UW^r0SNC4GcmX502YjaLy_SEHdTMx`uNR@50Yr3dQ z`A9PrP@T}$E`nx7((1XUuwx0WFNgeGmifsUN*sVLww+J2`R>~8tv=slD__=-S2Faa z^7O+kQROCX5zW`iQd9~lVoJaI2fJcv9+QF4g&fd+HN;-CZ8@4uIqe*mP%CGq<*s$_pOMrek0jWGvTEH=1;eWlO(DY&f7@g!hwOLdYF@F3A6R4q=WF$rNe`4; z9#&c}UHMeNTq;Z56rl$h>wY*{c6E&NoDle!;rWq!L&N`Z7qF!LaL|Lt|NL^8Kncr@ zrKZJa(feV*he7O$Mnxs8dL1GG1_Tsh&}o&k=yIzmA$o|-W__yRwGqy)g~y9j${$G5 zqXZ7ONs;EhQ;~1AJXN>nHuf&GtG#l41xE1*A`eD+ihL5Op<)`_i)W-Q<3iL#bNwmt z1F5Hr_ZMseIG;8Z4)r3<&8NYUu71sJUf*#al=d}1nts`=QOICUE5}VlkGvWgUaExp zDf#?D(=2WV8pYM7c3GB=!WQRXLxC2ihi_KhhxFjkg+Sfva?%Hq8{zdHR*i_>@MJ?%u8I6PmCVtNpcpl(IN z6$9dk&ka1jdbF7YooKxbLTCSI_0n#1PX+L?#R<79S-aG)ZfyT>%WiC1JKZOYW^L z1(*}=u7gHSf)Wdr`o>0ZV=7pN95}D~!XE*1GzE3d7QVB)pC7)TqB4O;Q!8T5m|b+Q zRhE34(5?}j31X2SQHQrIqgCxu&4IkVpeZkyHV%mO%(rsRcs#KmQKe7GxYn`433&wbJ9I*@MKM@_}-St;p#~Wk^9*KTV+YzW{(`$BIS382OWBbE#Wi)wI86OZWqg)s~10BGLm} z)Pgr?uSQLSEOs4*HP!XZ$8}+^>t{T_6VuIA{ha%pc8w@wu-MR#Z1{(ac6fN8Fbe9G zV5ju7I>M6RVYcHXclWiu*QN=IKE~;?m{#r6)&=9u39Q#viEEdSU~tt$Q&q4e$uL@T z72_pA^_kup+BCdR;G%OlChz=+OI?IUyEILQ~>V+ z!fNip1QDhg9i961+;6^IiK0TvGf0)>T%p(wTtD5Pq&wX_t$iN6Na#0m4~>9o0F_dv z_$dgS@hh^Lt5j>d)SsRgL6KQrnEmPyz+t7V2OMzf^bP&2ndIW`1j@B1aY|&4Lg&f< zMUVRr0g;cTOe~#$_|~enQ=qfhd)H&7i3D^4GoD`BVEagO1OiR{%tnW4$5}rtcUlyU zg(JztWG)Mud&5WVaLK#f;OH!Wq{60IZQ{Tm2`O!DL(=iaqo?5QE;dQRjkI|Zn+Ibt ztS@+_8vmX^dc7vDY;NZ^boxL#t^AyBrki%NNY6f(ae>eksEcmV?ul|@f_B3a7*xT& z6||&g$Pt&Qrr_auR`JfnMLeTZMLn-X@l*|H130^0p9j6qew4fstthquYp&nB6inv% zY^Rw8Dw{~>&or|nBKW)j2X+N0y)0{i51&?GETG9buq&GMS7;x@4AC)DHPJ3t1eglo zc#@8hJUlO32QIZ)?2knQ27=3sU_u`RsDeS zXA#{hsP+n$KPGI-Oc|asIHrx7^{DkozQDT4(Pa#i<+0iS97@2gRrle2t`DPx5__w!jL zn$pn_UgT%&Vl1pQ)>D;gIt%DjZ|7zwqH3}#Y^0qelwz>O=36D?;P~^G9xRRI$U3VE zmryYc^cXb{f1(%KuY*O{rv-h2)y}q6V{yI1@it;^VSq-NV{IzZOX&jLFO^C&QpRki1p3Kj^F1 zB$s+Vl~i6>RSxr@N#6N8nHI+(^AyRdHA*w@e?%I$Ih=+B?=~kcKaiPE|joD&Xa1vX7hbmW50IRgzOx02Akr|#SL)9)F{>dnW6{|V*HP**j-;u?@59JuZ~V6 z3;6^6B8QDBxz3@x&N&Ezx{{mqT_l?919*5*#Kz!bD%`r`OifWyvDmpnFB<8+Mrj0i z3Go=Z#z1n30@>IS4ha~ujD|gSx3ya?ZYL+}Zu$3J6?dO&-U;I)mKo@2YJQ=q*L?jOYQI5kSHO}8r+EoGB-|pI8POvCj0>|Bt<`S9-9+F+UN(L5 z`Yy^BlguEsH!tw|da~MH4l^sJ9R|JD2DfjLQ%^lc23)84jsygBI`lB8t)-+9cePDA z&tRw-tmBfMfb~gIRZknS<3n_Xg!S*3GJCbu(?>z(RWhl(U0J^;!ANaHy z%PYqxuXH(Ug&bZ_S~q6U+`czHqYaiUHe2H*y!-(gUIkAHSR**5-F2bueI=7s)P=S+ zS~uU(yIx}Xf7=vr1a%o)2jHn$q5PM0~?g@nh1u3DKVGF8~LmJ;7Air zTyL;DP zqM5^>K-LD*RCrHL7E)j(r4;8H98|!Gc>7oo4OaN=x^&J%32}}X$)^OGT&@ByETqb0 z(83i7?{rvJ18@N>?0K&L-}JlTqGq#4>OBMa7>8zlcn5`;kAhk;HHuEHz~zI^%e2sx zRPdvng*|co+M=(>9B-DUh0{~deO|ahRcAbTDpidm5HaC+ir;;9S?bJYn7t8m~5IUm~ zC=ivf9K1gQD?VLb&)WvT4G(^G@xi2ydzr`vY&9f|KvOOQjq9_Mtpm!!L5@6G!wT4| z>GY6WO@3$W04!AGB?dqTqd6eV{{aqqcltk2=Il#vel_M+qp-m`ag}A*Zuj0AX9pR9 zr)y{KrlQBz>SgJAuOLaT1!gGCC65|D)c@~bOp7b<`)oArr2mI_qD3-579Et0XukcA zH}bz}#=Uz_&@`gbfB6FciFCvW3;^_CN1Los)ZhM?z;pc?-t{0%YRVTMk3W%1 zP9EHU6V6&z3><%EW`9`2f-=h|hb=B?XJv+*lmDh8rDU= z$k#F1n96BvOFq86xq>yoJnJ0(X8QtCrK^L4grwxzONjF&4W@L+)`(hWjcJF{wYn(W zRHxQX0<>M|cc!X8QKv~`ldx2T>Vko_Ny(!t`4lJySzT2SbgXXUfTyI)>GmYB&0uvouX(QA{GA}&KE+_60YK-{?T=SreV!vPkbtRh z(-!OW7aahc`~$<~>kDM#ey6Q_$z!lTN>ryO5CbpPJ(r5;4#l&7yEk`Z2bya#>9=@z zyoO~!k)bOYj!*BfHTDUJD7Q)zHv#j|zvxyF4t=QwO>)@|(+(;7^LG6H{G_ zeAl?(h+v|%LJy! z=Iy^(02x#gp-Ax{pXH7)0$D8gQe&0wB+kO^*&4+!3aPXt$6Gm$W!$S+@+mx;tNm9m z50|?svFYQS{PxC+wB*60%jNp8Ig_9IxP2Ua8H^D!z zNP)<(Ao(}C+=#jd)GsKm+ea|)@#$*qRwB9QoJW-i{aR4*_>^xi*7Sk`-_eBObJ<*f zbo-no85T|AaV_Itcee3U1?2P50&mr5S{31_H#P5NK-F>7MB%=#4xTfTW4d0WNwG+z ze?Z<*_}P@o31~{Py`P~#Lhhy6YxpVRAY+jJ_%Tl!y>9W*#6A1KS26H1G9|#v^Pd(bP* zz@Frl4nD#OrsiDSU)~E?OG#PoH4c3)2Kj#;$-kG|YjHrLrnekc|9R;BCd$2Kz{;vW zhAb!Xmv!o%R;9k5v~Y1Xf1b3zcPYe|;Qu_V(AA{-^Jw|KSqb0M@6=@tjDP>|BKr3m za>7Zg@;`Vqp9cXWZei~gtH14W;Gw|YYr$HIp2hv`8wHQ3Me!cBM`Ey+`}>DSO921p zkx65j>OVY14{{(BP}GOK`TK|WZlMrS;$YeG&msTc+xq|f(mo~_9v-m0(|;Cb{MNC+ z{eO4}mD2%>?oVRCzHdVV!z>N)WQ+aU-LtuMpa-T8Uw-{WykvP z9zKBy`L}%Z591*66_}3ld7Oi1f0a0T!^wh~23zdh#P!$FPoWAX5vF z3>xoF;1>>@7q_RX-rN(6XS=f%MXP`@kX!9D001Bogi5ClZi?c3>JN|Y_XT+=mi8=b-u)r{Ue~1jEKotSj>*xQ)Fnk^p@txA~ z5OZ^Pgz&B^R`Z)0r7th>83(iFwzx)trLpvpiM*wtc&asG#IRPyn(UT3tX89JGa@dYl(Khog3@eY|GSa3dX0R+Qr_s+cCKp)K!~5Czhq?f0K!smUr6L2(G! z75rSzx^1L%*rYaEiS?YT*8>KJnQ3bC7i({~*U5ARr}e5wr#-H=YmW|(e=5qnJ6tYr zWfc;l_$;CH;ASa8n9^1{(Cw&SmR7x}44eUfSPeu|DaM}eOnq~2IuO?@Y4o`HczpLR zki+`4|eP5;uy(!VXk=kt5QhZ$*7Q{6QmkAlEqV{V3IGFq#-jv2 zn7xLj+}Xp))^_Dw$1oZz_?_GHAgJ*{yk4Q(_eNJo+e+8UVd2|vqSDB_P)5(aSr|x6d0ENz zZh3pNe!oio2bRhl^?St6I^Z~^214{qghlnj_(K#eyc)VcTNr!LxO5a-TyKd;!@x$XY)x z5wl0Ldw?ahscmG=nIF(@;qj%{z~JtE{AP8#SzV6SelgCC+A?E=<~auV5fYCmO%#+Xk-p+Z1YWWZdygYt;^HKPZcY zWTJ^*d9X+$;X~c(>A<}Q7`R7=r@F}aUY6G1ELkwR0`?o|2!3}85Zy89HJE)i%bG^}31Gl!EnZpTzvaLa;d zL68QkkH_x#b-5??=fUs-b@mkTd);tuVK&@QjsXW0oJ?Ee)^Tx+ z$=Bpw{9vN1Gt0Hy(#x&o=>53a9?`GpWrZplN0^vL(lcIm)U9G}tF(N!O| zDVO0hSg+P^vZ7W0K8uiNKja=jWx9qaNrvJxH@Z5M%hN9?q^|p<^4|q8Xztg3*!(34 zF%HM$mjU-D%9Y+mnobtnL{2@Iv+W}F#S#T>a6Vt**)bIUd-_+ca zGB>;ui!GJ|Ic`c=9Yi5;RTgUTBp&B7qyCe0&%fQe?$l+4Www1^m|=<_y3_e0pG*k~ zzn?12(&GkkJZOPrMvbr1Q!#dL92(wrykWoW>mf)1Ia~(D!oTlD_<@&GRM-7UXQ&LY zO;5fwRK?oLh@cLEl7}%P+-`+nV(8`JP6GP=@`bk?t4nu7qIP0qdMT!~r+vtdZ7uWO z60)4))-Muh2=m^6MHc2zngz-6PDV#gT5x7sb&yEDZ$f1~t8Hn*H>uBMVIg)R(pz`K zuWH?|s@ss-O9-1L#OhtAZ+3r=D_}Eze=)?Ql8=w;Cn!{n;W#qe0D{sG3Tu$eF$f?xc9>{hu2ivI`~8DP`<>9kfsXjJIgM-XyrV`5{y5z7~GG zKK8xbeAn_-*dnrDnROf}XGEJK3XBw}=V$+TQC~*IaSG(da>--;mhG%g2@8ZX_KVqy z*|tlMKJhX{w>-DL{*m8v1e*~S(sV8xlu_EG{ALz|eB-ONI^AIVV6!H0G8dv((=GVy z;cGez0KTjSgnqXT;TwN|O?1fO?=F2w18<@{Ie zIyVW)h%}l;7Y8NcTAHJ-D9mif9dn`L>bhx^Fo!kSydP&UtQbVk?#;&Ep_)}{iI22p zIUP^Pj1qGPvK67Y2k$>@ z%qR$+)mIUy32s^A7=P@v?!`f0R7kdoM;;8(gA1LT;4EmyYLC7SA;+7OGLtZFp8He* zQn$s^H939Alq*}->ayZXk1!5)r+p;qL3U{V(J9G!yYaDCB8|DadOeQ*wxTUlCfA(v z5_Xl>qvy z=)Qw`-kj9D7Vr;P-6|bZn+q!IH`yUTR?m^ej=vsUiSAZ0>6(73tAQ?BvBnS?zVjyE z!hrpmTeW7|V7f+*aK27q(x!@1TDu-obYjISebI?-J|z(Ms}IxUHA9ebB)%8>!(F3W zp&21n?oCz*$37YSqLE>%m@SJ<>C@u;w1ho;Hl-PJ4H3ra`HLcDsrj0yENZX;tN>ko zqK`*`MZ9B=D>k$l5NVSHYqlo4GrXg?if39Tz;g<+J5#&GcG)`cg0;FCslv7vTP{>| z-WIt&u#4LH*JokHDDqz;;XI08zAHw&*q<|TAi!kkr|RQ#(I4M!?AdKAdH%JJr`BIb zuj!C~vfil~-)JfMt2xx9T9q*`BAH>mS(iblhgCO;+cU$3N#MH3vi`kwjx3G}@MyHO!=%O>>>n>{_^-r6PSZAJrr`&0|^`G?JB?e1~Q2pH)r0Ij|EUKw5V6l z7Ts=NzA}o@0kUvaKMerqsvV%=nV6jIh$Zz;)g18kxA33<2SAu%mPIWx7Skm5H5CXA zYL3hg{_wrYo&kI-+U-Z=nkNY;b9d@D6sw?H?v_;|L!6{NRcTI@=h|1k!0@wL9+}g_ zTd-6!qv&NKmt28b@iI+37%Il~EK-DAhAAxr>P2Wwp0^Msp>3!f|8@F z(Got9aftMbC7#w2Xtl+oA^C7Zp)Uy*#i9|lsD#&QN!(W1J^EM@{SyY3CfozSXK+$L zETTfY-@=f6MwnDWNyN2z@Btp*@(WJUSR!+=1m7eI+cUDR=IgGI8{!tcAvy0A2|%P79PPF z><LKL0fM=~vRP3oSqJ=CYnbAu8&nT6^kgEVx3>kBz*J+amZ! zMYfJNDrBAg_E+BX_yGne^-yGjh~FdlP_yInaCk(;gH`hr_~?}HFC^toEwy5}%LnYu z)rmp=WTI4-T4Q|yrn?YTH72zuIVkO_5_fi>ka0-lVGy&55b?X%6a{>H-B?Jkq}m*9 z%eL5~q8fmuuOvDSGu2%(E8KekD(rHr0O4Kg!zTW+Uu1&cjUsog>srZ&tziw_ zk~eaYEnsmi3;F1IF3L=)pBbjx=%QBVXjVG46BxBbDR2#c-)_w*?u%syp728Io4-n! zz|k>dq-5RHa2{sC^9q$8NH15-MYGLEd(6F&A5t7!XyVe}h{=G3;{AnPHyfvD{o%MC zo7E*Dq*>#cR-I)naJ_vAJpZTxORPjZg{J3uX;!mIV)MBO{_$!AhTuHl^BF7Y3e^}1 z8kc;1eBRES(<;|}pk1j7vnIZg8Qdir6~S}gVc$qsT7ek{yN&Ga^~KxsK-+@8WG<^{ z@GvHr=HN{Vj~Z3g8BTZ}?ciI%EY|84fvMPq9TCO>Ziciv^(V2rvr}@Qe);xjb#J9H zPX6uer92QCD)z)J;F|P?V6(1>c^73i2+OH70tuj{gg;yb>j-2xa zJ4-}$XV)US9<_15^3{Ip^gz!`W$A_6ouh+~Dc>}~b-#Iv*-7JfVy#$&v(wSSj__#a z<~L!z#hUn8FIbp5VX?Q7$UTd;15;@>72`_8l|mO-6*`x>HA+&xy0x2QPmVNNAYAM< z->Keih7-N+wQeR-s>VmQu^DJF048*}URx!p!iBs~E@=Wsc=SzoEbDby@^o(~Av>dW z7@v5`+iJhZJEG~8w%0sKjwf^H1NGmKB*l$=2*Y|p*z?MS`FzvFRlhCmNyoy=Hp6Hw zl3@Shdsm`x!pYHZtH2P6&8+9i#b-T5&b5|=slMGUw%V`kz`C4bc~}UpWSj4jPOleJ zZ(3D5hG1u-IhlJjtK25Dt-5%-sKol%-KNQhahz=4@rEMJY4I$2q}suLMLg$f)l!SC zH*>IAdC7}b#WeqbsAEAo)fZkpHEvMtO@;ZDGc^wiHqCxYmitoT>)&{j<8MNObuFFG zDlP^z+WRF=GCGMQLa;uiJMJniEdalHzSgz=i4EH@?zBwxBSgeGlOudn1WM29Suacp zBUv=}w{S+nximtVc3$iP#YT=n3KOewuAf zxXx%$(^za*fPf^L%o?+1Hr#K;_jw4j08VBe*AQ;r#;-^FZai-1c>)J-=_v0#%Gu9U z@C5QaV}4<2CI;kUY{F(7*Bxn9IQk~FWVMM(5e}bQaRwdc$bWlNBfwmS#1n#bj#Kk~ zc6Yzv#XIyzuM%u>Jy#QH2pBU2GjtkHU+YvMz8#B?q0#*@qV6*kug9cf#!V`=kO(kb zW%{nN_RHjn21qi-ag-cB=4-cS2?7BhsWk4a3DFkPrc?;H;1C*gt4y)Pm6lAH=F1G* zokr?4Or_qdX|$qo>3yXu)Us-$iXh^a=!r*ldIDRjeIW;#Zhe6U$q&J%&pc#ZYH3~c zQEYxiKE2JGp8w7VuwoLl!UOiy{c`#>B7<_K?QEt4+nXP81)!e$Ev$~iisj}|9)x^F z&>YK|Qur=5C^yECxYFt$qFf=VhK;S1BTFfDgE!4T1y996G~G-+C=flcz?=W9YFm7G zQ20)k&&j-Ss=2W3C04uUQoJ6DT-!%$-kzLi^kK&B%d0~fdRgKhHKVvOCBg`b@!E{b zUzv_IIi$`*z=U42{i4KBemR%sOs>Y^x}5TpB~n5O97lAn9K(ZKVQ(&kZ&it1_vbk) zoXGyN$;EN(%QqjR`)44?u{&+eU9>J2 zhk9R@5O=h;LTEO7s^5%~q#2I|7`pj54%JwrQVL|~7=|m=+Cd;fclL3PdgBR&)@=pu z7N&?AjzsoyV752ER-TE)amU5^!TPbi9EfYG)`MvH+4+$JzOtJR=HH?$65YOWEn6ZU zaBnP6?~4>_48<1|b$@=zF9K~a>SQuI(Zx)>?bbda=y-^R0`<6hTID3)iz81spi?sS zF9UNUSGG8229+=GcHZz`eZxP(?L=32j?N~N>|GZAAY z^GF4dPIvh~iBYTe&v>p(&c2|Dd3j#^JLSkJ<6SmQ6fx)HxRo`Ec#;h*-hl~`N zWznR4C{!2lr6r z|j$gH@ zU=>CqKXb>+iFRP>1QL1UiT(1!)#MYxMSeIOXa48S#pTi8x$DhO_(q!+zH>P3ntq~H zk)+giou=CUwtsg1qD3p)CM^#affj8gg?eCu^yS(N$ClhY#MGFcS-W9*LQN(51xLrZ zZ5ts0*L?l@-2xgO&*z9XoOx}(Tv0?2f1N%x@lr1UDu6Db197a!_^9pQ$QwVZw)19% z+TkSGc0Odt9QYASjizdsnp95~xCi(ffAU9ejxl97iF^V|vRP6Qz0vvUF#@&rvP}(; z%%_WCJ46q+K)ey6nC;#9Q6`7;7AM%*_{^imM#Z})B#Sa1A45zs*G)s3RLO7WBd&Pi z94f-DBDq?bdOAm!;WmP{sa$a%;#qko!hfI)=8Iqtb9j5wNQTj!E|%6@{B80Z;mucU zxeC^TR3cz*Ck#UwY*-Wwuj~Bed-&3j!LRc@rrFCp0KV^q;&PF`p5t8$qaAKyy|pzl zt<2fykjU0do2mVEL&`%+BBY!!G3i*3Na9%&FH#SB-dD%FR3S~8nJF*OP>_|@=D+J@ zG4R!yCpQIV>Mt~qzEkrA##@{_FMu?agfWHWOse2%wz4gbwYIxwi633zsTE~#ohc~9g)=RKDGl%No2)?qn1(Kn{#`Gl%7ZEGQJTB_qswtc$)(TNkt|COeX zXE)_q(f_b^O4OYuSU7^EKYhFaY_EY0x~cXD&c^}kHL24z#Qfinrbi#OxDbK_-s#aA zty_bv)Rsj+YE-P`^sK;dz?M53Z|{X|f5=Ye&ZOBj;)(#B(B`C>qa&ep5ChE zo2G|vhdN2lvDmCFNy{07H`UaZRemDSxy&SxZMHd~WN<1_HJo7i$0Ji^&(=GrrlGpj z*etW1s9|v)(fue;_!LQDPVQ62UX;>OOtd?mz>yFn*`ck`;qo*5*Q_AN>_rVsC%k;xM7k`F_w2cp>xa=|l{Q92tqQ*3 z6+c&@2Gw%5QtlET+^|t{#BFIcuhX#WfG&&m_dT%uzB{{ntc<})Ip|(%GnZj+a%5Ky z>7JEU1Q7o)@`EQ3^gZV1L7mr@m$faSwrbT85@6m(I^U$-45tYu^i!|4yYqhGBO@0< zOr-PvRlsR@|ERtSncM05?K?`61v8Kaqe3vf(jP4c(b*Km>~bX!Zhdd4^fWDTo!RDF zQkTKWR6!Ad#CooftLfPeOM;m`=jL5OgR$ir+rA}QRUcyYf8wpcc(*G#r-p0`Zb=$x zT_;c%c_5uL-C%_yAi}~bnxe!hwn^{PY9-8Yb_D9$i`-PRgrLlQM|$P#$jyhsw_f<< z{QqVF@*-ZN)w`aRgyM3F20hw+pS^zFkg$(6x-=p_ zGTnvGHIul^D4MSilP{kVYa=#Rn?rFs!7f!P(Wf|8GMz0DndU(k_B<>u)hd?;zbciW z**Lq(oJN28h9qxj_vp$ zDk<-tnHew9i~pHBP*9250jUFbzk(fpSK|6D+F*fP^(90-L5b8XzLd_H{nmEau>+&# z!rSk9zfYB5^}6DyqzS$zmu}jULm6K8ot}7_9uUa!ZeKdK;n^H&f~rCqpNjii#8F?R ziRQb=*F@j5F?f3;Nic~}FzyCYc=awDprctSnP_HZ^$?(6UG`UQHv&L1X40V08$!w$ z$s-A^=GT|SJsI#3JWIPrXiyns9`R*IRC?LPdD30Z0G$m zqqUWH>cnedar*-FLUjVTBG!|2IuO*;y>a#)(iZb9O7 zr~mR&KmOcSqVNg_kqnWWb5*nrYVfj6j{&&c#fP2%1K|_=pP4ibcIA^#_+BrwjRdf+ z1$mgJ9w9~>I{(CBd_55*+o~yP)P(EytiqHzl0qh$$1Z$PyO3+)J^w1?AlfUJSE3Op zHpzoxi+_B63##A1Dcm8Jj zIOHAoCh0M$6yhTgPL*N}sDt^|uo!h4q+^2O=nc9Gil$T^z~VKaqJ0b#zqn*sMG}|B zRMuJUPnKGds_LbcRUFQP#$(H+n3*I4SX|6T^r|%hNtXc1phqdZH<@c^E&5XQ{q$bV z-MJ@(?M`u=>SpIcWA9Xr8tOI57NIk+_% z9vXin$w9NV$~djcA+h-@A3plaeNXSeP-2En6;zB91SUq2h__|2s_;!g-V|={6eM`_ zfSHT)SFJJG%#RZTZl)STvpxp|1M5ld!kB*XTVBg-gScc|p1VzU0Era}SAVWB3? z2Gx(K?i7#DqjTs>MHul#x5X#e4lkaU=Gj9?G58~Fi>7K~8QWbq5h?ndNc{{R$`LwN zr)IwURoZdRNG+cvj)dDASFDOoyt|AgL9+|OsbVL>I7oRS$GUe}Dt6RQ0?Irpgs|>$ zc<+0EbwRg%k(?`l!#9i;Z8tF$(r5I5v!4=H>vY%_cQ&M=qesZ-sLAzg??RiH|Ks(| za05b!BIIZ#&ThdN>yy>Ar|R4Q8jYtg=kohXEo{9Xqv`8 z!-W1CGB7g!u@7T@fUvR7a?A35)g-QY%<@Ut1@Y9G{l#J3zbw|bi)t>>c(&TGm*#El`+bEuzd!)9Wf_!N`;Z8*F;K7y@&$WZ}7cr1MSnk5rWan_o+ww36P@1#uP2-gt>Cm)I+ds#ALLFr|faL$ywp} z?Q?3(g`1E?fOrQQYCn;Gxv!`4*F@D-SpfQdE;w_5fN}D`8v&WeOA&ZuQe+o@Zg6|Z3jMx-G-I+}jtYCQX$+(AI#`@D+hP26D=aN<`o76eu@!GJaLpyoS2fh=2 zZ6)&Ofr0S|JTMxL6YtL;44*f!ZJa=SNsEaoed@FmNchV>My6Z_=~g`^1_mh6OCisg zyCXA3zBvI_)_gGF0bGQf_yPSC}_ey7cLmx1uB^=4{3FVDxJ3G61$S5D(jSp zcCkvkh4s5eIV!MSG?r~Kzx4Pc$7kOr zp8%6D#1#p%>Z3Y^r3bcd^PSIQ9>R6Nt_|MhpW?TG_35&8gdvw^l}MAYb=9uQLR}4A zm*jM>7-uwW#T#+>%vY4|u+Sz0R>?8l={?l(Nu|3NQ468;+D$vO*pgpjI4?cyXaWYd zL+atje0jWs8?8yL8Kk4IgQZ-$J)UeDyklG8Zo;_k)9Fflr{qzR)8Mkr7h&~{xiZmH z<Eaol9tJYXkCqo38cJ;tZ<(`6Q-l4w0shH5ni)W?%#Mv9Ikf96pIxnI?nEs7|Lgs!}Y)-eJPn(*o?w*|35sh?hb9q0o<@o+ZnDE|}%;;a{1 zb-d7kTlgH;`qoMAUu1h* z(~ym*2=>YfZL(>(|ZPJQk(xF;dFs9I(Yp5p9+D8-o59kE&D}0_f%sq|e z_=h)V{MjBi<1wbl>Xqi>B{-BRlgX_jiBdc-0PI5dArj#?*(0)z(IU&-Q2tXOwgY{Y zpq?_YK354VjQ`Z_Kf~!oW-z==SAa{6T3s7(9_bxgFv`)Hj#J{|IMG0g+JxiHin?rH zFW)O&YahQ78UwC-@U815I`#Ly)^sHPqu$q2XsCc{K`->7>B$yr#bJ(>NcY5MoEePo z@ZXOEm-GTRM#PJSe?12@ez-F9Cx`a;XB3LLzv`51z`qnNeaGZtlVP<)1Mnv}CyV|0f=iCFt^Vb&pa$i5i&s z_^>K7@GBkP_X$C>Rd#EvpMnE&hzp^z#yG#n2R(?&{r>#I`x9vAz!h>O%eyUGrE~0) z;G3~`d&bm;E{|JNuiWe1s_Kdpx$|=eK|@;+@MH7i=yKBk9@+oGr~du#!N-RFd^BWE|epBS{1 zFOFIz?(I~S%26;P%8Z?67A$Akq~O> z(0x0)lsNT1aS~wgpmF;}A(>K#uPXK)gSXbK_&f(R0GopRx-x%$(-iaK`a5-DcH0w3 zz{W60`{t_P2|k&9`_#{zdLd_MsOUmpczBz+Xvc6yiopALTx%pR_MGG?1^JEH_1 zbBAr=sb3v;BsYeOv*6(2yFvVA_J<8+<$Ob}0GijIMLd8(OlGCo?2HnQ&M|=bdIFU& zv*+lmvTiyadk6q(&s|_E*7`5-tF71r-WQ;q5$i;avbOJFEj|pwQhPk_Zm2Udx??-@ z4~Vtc0=g$`RkGbKY(Uo~!DTg;-m|;;PB$7@JDDK0?hzz)j@E!(krlf(B&3K7UJkV<8 zM_xBT>}dakgvY>xXo$Ud5u5ui7%KyGKgsYoO)}lCmC|W0#5s{&f-fu7;N}`Zs-tdd znfRaoB$_o~;oVOspO_zk$~e>SB@w_|;iVS4@|S z^tHA(AMdReiG|!qgD~K`!w9%zXr@316x2kLx92J}s9vTpk)Up8{Wk+|GLXa!Ia-aP zV^*^P41BT53t;=LaPJ)nr!I7%2=pPag`<^GGNSIv-g64W~qg z%~ec~1#_YMo;P!=eMSl70Luf>Dsv@wbxU-9Ep0!KHb*_PjgLA;C>Du2t-BET-cI07 zp58>z{nD}iQVAk@@PrMLX6hhvq&CF-9%6is?JZxVw;=t-oJDK=X9W8kQ8Ss4%K*dQpEKThc8lEoakC zT_m2mk=%No5*U;&6fuX+4fpe*VJqHR>MyfZU-Us*e#M#_9ph{9E)}zN%A{BL$bdCf z{^_Rpmxts14$cG6g>0rM(I3pxsZ!wpl>QF3z_N+%?>mAQqJ&a4>|b6G(9_;<65vIA z3f?y{{QX4$B3}J>()#~hui?cH_x}g9JPSb?{EH+0?`P}nbw5l<3%vdR7ajbcKL#=a zCfO*2BmE!nXEe0?O-`J%4DHVo`}Y=Ae*c|WMy=ZagJJ>5jwFV?@*d&%{AJvN^8{)2 zy~2ZW#0}-|-@S+k8c-3SjkbvWHPi)&GjITGUoMgKPtOPu@m|)DiLZ(H52JD7{`^uc zeZ>0@pB_dOe0mYphsghZF8%ku{Xf5i_U3*^z%dgF_=itVig?ZtOoi$$#&qL8TgrUY zr;>kt`NR_nEwypB$3SF(y-tHI64NA%KmtsBXy`LIz{Ep;Gx7AWmTkHQOA;{RURFF_ zAT8k_0hp+Fb~%fBp^FfBtZu}-kMA*6;?M!GsBkFtKS&TFy@V0{sE}>1s<9+yCEGFo z;rIu8&!USI{Xfs^|K|yMkO3J6vnE94 zAHFP+d#e4F#mAL@l3^g<%P_w8B>%%RfTQzG4-*yINyXHj6(% z$AyYkIXf>KI8MLX3jfEy;Vryj*$ zi5VY<`LC1NTZ9sgS$z2Jww@LUn>C)KL#R^U_MI0=35=KOQBPJFNBO`%29D_<-gbF8 zpB>1q)c!Ay>E3drx`CO^w~m?~muB&q-)!4VfMee`sk!8%)&5wV{-g<)Kt2sj0ZE_% zqen-Vhpl;}#TJ1Cycb{HZ^b}(Nvzk4ycpNg7J#|}l$0P5!!RDc)@d)TU|c*1L*j~P z902eXqN2l|A=AJwU8aT88yu`OfFTd1)pR8Y(x?!qPS{UtbUk}^e8STaK|(9>_?e3( zG@ki1P(;iOT4arZ_yP7B=V9YVjQ1B`JlW*f0{mr)UynY76$6+%>F4uWG_Wg20ro&T z{j9zhP|_P~xq@{!O*aVHD!Ig)%}2uVilEW5K6+0HYZPB945aZ>7tdMjqDO$9Uu15Y z?DOtu>a+DaKO4ISG+?^`h$&GqF^t|r?82OPQLW0^fmfJcCM!&2uNSGPi>fQqkrW73~Qomk-~6S1p90W#x-1Wy5H4y=8|E>5Ro zKk=OaaH8K;x!jPK^4|3v^wnP`UIxw7ImpdEH7K^;_FDp3j&#Fs;V7VppEeS>agXgb-kht z?)k;NGBvp?<%h5%lN#c$9`>q=;E+9r$F}=HCPcM*>dD+v0%eq z6>Y+GIGhKvD&c$lM5!kSdd68ZPJ@H4ITqt{;Tl7!i@>9wh$!da=FyXNYHa!#%)(1ih~v)ObCukI z81Sxpdzr`M0z3A)Fck&RRq~wEA5eQaRvGu6f#mah20qBx%$?{Z#Dae5@xsou)7#~| za*$BR7@TRVh9o3#b`Rz6rofNXJ8{b-vgPcgx>-T1QTN-BG)k^1r)%zL)C!v@)}KRu zFvFG$GM)K{=UVkcY`f1b>;1o+pEF*zatY}oN161*;IX~km-@uD^V8=RVHgZFL$>VdnOcy7& z{|CvAE&)jP#w$}ZjA3a&viIqfwHzsz>gt^Il(E~0|3B@WcQl-9`|l%>AVCO05Jd02 z_lO~)MejlqjM00YAS7fMy+w^d^b$RK5E5O~5QC^uM{gnLmc93H@Avn5&pB(Ib=Eq6 zocuLm&FyLTQ?BQ8eZH=WwhbWItk9_XZcA$yYclCngy)&&oI=zw7oYkdpiuvopS(uU z&;6yZdU!9^pB*#`=590^@yM)wE2>94MmfpJ2X6KyF@+8l8kpE=3i%#TFtvaL29swe zyCO`y?knR;uO7NAa7LDvsyxsifA3OVI8~}7?qTofeXhPt-bLF?Dq0tp56l>JyeX6yk?p4eCnxpEhtitpkxc9S}H?E=+P zX|swBWO`PR18(Q7bhz*XBLmQEYWwR{kLANbcUz9=hyZZ zgdH_{IWI{=!ZP4bYyZ%G%`Ds>)eYNIkgl(x^hO) zTim#6s`?)eVfB8JjMH6aokm8t5)#3+p6O)FuZm|)Vo&*a=~bgz;O11cCBtbp4c_iLvzmX%%HQxJl!*D6*Kd;SgKX3v#9e7V^Q<9FSycYJBg1vJPaPpA>2LbX>gE-sv?DHO2}F_2@5kiCE>g(Ltm#bu!Kd^7l<5uF z*9R)sSWjrqSmwJ3DiI~a3g}~w@b|6wi_>W!d^g$y?WN3b(aDPWlq|kWg2!W|fQP^o zpEY9*tIpM)=Mfx~7~sNz+J*Y2Csj71G>2XrjjS61+h@u2TbPWw&bUEc z-{%RFi;p-pIBrPzjWeCG$i1l(pHF=D0V`eh9K7MEV zQmb?AtYO?pS|876IWLELqtdHOSj_3Chc#NVMMKRqQm*3CBS*oP@H%$&r*l$FM7l+W zUp1adF21%(i-HZCmKBZz*X6{>t46GG`+OG7&&qKeSB2TBWXus;%|X1c_`%8>z=m?a z55fxS*8255ih~~b(h?~TIQ_Ph??oykLl~tby;)RJ*g@^hDFj7S)MQj=deSqzU;~}9 z9?aH3r|aUhEdV+~2}G03fvmIm-9W2nb-vlH$v0E`l7v>WY!V2oOas@qzIz2IH7_Ae zvL9r#rv1c7r}3I2mZwTF7Y3+>6|Rd;n0oRM(6DP;!g z_Ho0-Z;>Z#y>{PfGU^RWijUCdRKj*>6pAo~;db-x>euZutG+()eh_jv+b1)>Jf$~3 z8*yy3C*VH+YNILe+EG3iX!S|0b5{=DE1E}&m{t-9NVx2!gx!|Vcy{WQj^G6$iIp&c zb}XUs8@6|BAD;D}@$d%!F*zS^Ew^ zod^_d4xhGD4|9uGI55Pq#{uuxIy;Z0d^5#$iR<+Tri&3qhdu4{x>XmSM1qbVZ99rI zcTDbwHhu`=p|Zqx$=3?UUuKCMcdd*Bl6hB_uzW*-I9)@H5EO;JJ`1&+qG~s_tRlU( zjD8k6o!Qj!{bOk7H?Q>kcZ;8h1DQP5jU$Z8U02{{R50X|?xluzla1{_8cRUIi2_|8PI? z$;Q|_Wy31ld{=VO+*podRCl77o@u`E2MulkjUkxv)iqdm;;RSytVVkf;9W!2Pu10J zExFrIf#yph(Zx4#BjDMAURGeRVMQY)6K4B_rvu;DQk#CI+)=oGj z-M9(LNvLK{LAU3{@nBklXe`=YEfRT$h#DfuK>xIfUZtUh zLF3PXHX?LfZ42^HBTVi(bLi4fpS>j%Hmm0&>Db^ZBu&ATcnW2VdPux?^a_{A;!4U3 zz08`>UeBRiCz$4BgV7?Z`7y8S(lo!Nx9%%jQC_DsQKzJ#l3%q~`8-%2;p0z%+IW`y zCaP>U$3*k(&Nb(~RRbnTxdUer>XtaxWi>ClRXKV84t{1wci$9F*i0_GA%zSsRnGU~Yw%#kfvp?g~6REc0 zWfPz*JW36VAzlMCD@mXv*B8OuUoZ17t??n;!8DQ<^V*8t@*nvg5tVt=%c2@LY6^$I zr`&fhRXu4}d6>uea1lfLQRK-Yl2U7mcY|af+YG0lWod`GR#jHicm2I@XBUldy<$YK z^ZvStS5sdwc!^IiU*vbRV|`1)KAO@vWAY7>zVdPq6~1OEuWqdhn*~FWEfcd&rlR^o znr$Woxt_J&jsPD95TOM(uneo9C^C7o>UYgAux>E#TC{fE2k(2H?x#s@?S65{c9=>7 zfVp46fpoLTm;N|vF;ulXY5ytKwE~bb6gDyu>0=hgf@adPi zA6s&HH`slN%;h=s3N^0Tcv|gL>f64U#wym&_2GVG3fk&WJ45ayZ05xD^HB^PbAx@-3FwB}{FNwyYSoo^=ebWB!_uYq z=heiCEBZiCN$zDU>X0^&)sXLfWf{JomOfmAHy=p!@{*g)a2lpzcTGYTLa1G0s?(b) zQxe1*)`4l5!3^6lu5&$X;R+b8`PQjxb|XUjp+2UghWeT|=s9O^Y3&RLUaV7Fn?H$g zhi?bBKSwbH7n+`=QcF8)b5%@&c{pDU-EA=7!|WLasgC@(KxalbOeC+n_AQdgh!4z; zXXTo^T8V+$#l{175N{vEJwS4q{Kb4*hOO{g{us;&HY6Q#pX!Y7eN@_Cas5TJnAuCkjh48FeF=gWXhPWxP@b`kqj9$Z+jGBZ5q64fnt}Ur zsms|$pc@6o2SJ0+@chABx3Q|Y)ZtxZqvuD&u=8=Rog%L2Y7n3mws|802PvracJ#6A zZVjXmDS_KS2Jlq;(E5VRYd)h_MdDoP1yz>Adz)&G)Sc-v>6vf_IbaD5VHUKR()}+K zT+F4Il*3dWLC&$9D=xJFnm6BEE$9&O0Buc*2lclk8m3o~Il04<7oS&ut#9wW`*~sy zTF-3;v{E(Y)*tw7vPbmbEW5aQs$RCOnA8k{v6E4^lqGp={km=pjWnh7r>FnQ6j9iN77(&Arf zIz2M_@wL1lDe*3&dh)upQ2^C`CHwVpl9sla>`Ql_F7<1K>u7tdd<9gfjYhCv$}cUv zpj@lTJD_W=X6YJJB(>;4Xe{^b$%&E4MIRqi6$A>3L(XHYX{rn!Z{mQStUyN&ml@;h zzrRSLo~0RMt}-%kDziGp@&I;K5B(OL6C9cwPp+_*$l&ipp)RDsC2w58veF=(qW>ZT zJ@bN_U)XgI6d9W9s2R9%g*TC|S?f}$tR-A&0QG{)j_Llr?jZkHRl!y*T9xLlN3buM zI9#8acE2dcX+I!aBM$m3V9R|vB}&&KRha`Gg_CtGUIr()dn()|6=Hs&XZodJH1DHC zs?l&9E21Z%uoE@{GmCi_^5WAKDcm5(&<$>*s>05D754{P*l7g_IXStHd|xe>&wTWU zUi2)5_HoD3D$1EQ%ldF=p!8$!Rz@`ye7;16pbLA_PcVVl4B0zvdUlcoo5E(#oPV zf2j|)#`YE*bl*f3A?5+65i;EOL8rvi_As%x?sLH5sUeKxv_}dq`z}oWGg9w}XepEA zAgZ?}_}P0_&l1~-UYl7cM~OekA>W!al9$Pnf=o_|(3w%0;@?z>xIO)c0X*U|^Bidd zI1B!TX&+60xYSXv-4q_jWm0)0F(^$sOEUI!?Ps9-D^*u^T~-c|H?B3Ht1z+7Zan#W zT8`gp8E)XM-l>%2)BYH7Vz)#8qpM^{cjIaltsFJ#xOz-^hX-{7_b#Rss#CTG5e5n`cX(-Vzw8;gfMnnVX%skJV4 zDxoL^KAP0NfJ-@{KJT$DNaj)#2@2HrCGAYjj?qHjQ{_yqjs5S3vx-Wi&}4VmD?4^#|d zUN%{O2a|zf9Dj^fC$y6Jv$hPnU3*wXS8(^RT!;Dr=I$aT4KaOwPlbiDYauv7NTY;f>#5fg-=@ z>$|xPP91YKWRP8j2mz~Z9e3(r!pwF*(5U{%&hW=iE&$OHBdH)ytST;Hjuf&IbEfEz z?&uLqMJ4lKi$wrK-9->Fi)n`=oA_D-egN z96yu~5e?p+^|}uMG7&WNJF*Uyt8-j+17ea*j;WBudvD^swchVh+8@$z-!Y6vz_cgW z^)J{O+mmf?eOT4Y{d?&RNb0d`N=Xw#R*=!o;p6#tVLSIfIUz1@3*_{%N7%q?C`a`H zZjBRlGu+HkoHw2aezXIo$7$pA;Tk)LT^6t9npliaUp+PcdX*ww)mdiW3)fYt5&n zjZL!%W>Kw0=K00iFqJ9>mAjpvg^s%(1M}>)`&y>TuFaa`j3wc-lo3W$G7w-ENAkU~ zp!NN;6bU}>+aI;NLS*(ghqZ>l#Z-*A$aX&CUehP=;H$G#Q{Y=G&V_Bu9@N*HN>en~ zddcA|X`ojzY{5qT}?#qW*q z-u&#zfS_#fh+J3zQkTx3Ue|PT8OdIO=dXM+Bfe+;Qt}~XChM$0@1JZI>-H?ar6PZ< zQei$zcE(OcFXRb^4@v2+eTF$_lV5|DH$X+P9A6FBP}3atn$C~wzWL=r!|_J7RiP!E zZlm#ahuApDdZ;!lMQ}$YtM}fjn2xFEp&9r0RW=xiX9Tq9grOJWdAi6HicBKKv@E-}#POz`M(Ol6zs;UxoY9om>S`y)R}%m= z!;M~{YI;Yv+6*#7tgg4W3TQ7uw;B8|$BtDM`9t=~U8sr4o#vqff%7a#c+RBfz!tpX1DOOQU&#&?(0E!_Jq z69q&=)W95TrR|rxRlwhJ-_%6rkr4~RZCJT@YI5hCb&pdVK+0zYzP555dU;4uUl z-n>^qNGD3}249|hFaKPJd~je}6XxP7x}jWA3^J4YGE#XC7O-fj@}lp__oI)C%Em7% zGYY#J4Kkd)nUrqau-NwsacB*Wh(97g^Ac1J>JFHwYv4D!+Vf_S;}WWI?yp0<>+d2b z+jW9<7*bIkBf9J@k!5a6OZ>hN#pvIHUEyKEQuq zmL7E#bmv0m-6D`lU?LOc0IJr6zcW$O@J1*& zbi2cIbkcxc1+6Q01fHGa9tM463_;bx?u_5ki%ka9DKhM_{H({1|414vgFw!Eb zE89l0CDdx!xV>itV<0I1)+TB-hT(%my3Fa^C-OCWwX;ToZ_3kW#>BUwe_0Yw zPkf{kI>PVx`Nh`Vg!_RMp}CLzJgkhlR`SDgZzSE8!x%iu0n)6W*RY3kZLXp4YqgI6x(z*AG$^O( zK;1IrE^F7IoX)h~D$<~hB*(ezefhCuT84)wq*u=l5H&&vm&Hvqv@vHkl8JmCTl=|2~hU)(q}~C*U;Kpx&3i-B#DYMY>mgc@M9)9+b1QbX?xK z^;&$Mq>?xIGvBzl@FH|@PwI2LkaDcUm1M>g(bKwVLwxKtc@0mXImLkhn{=>7t5Lt_ zQffm_XMW}--cOW*&_u)jyF>ocn1&+La$UO%FHXN5ASccg+k!{IPe(jzuQCa&+uMF4 zrbzbvQDwO!sBqlgX4TxB0gK8t3s~f8dTM2a@Q#4~REt$j8uC9KvKCtBx5u>@NlWRP zWuL=8xzffcuRQHvO|mt$iEDc%*N#PZ>n@o@y%Pvx)0KYJ$BZmbY0PeF-ilXRLE8Qwfx8*TlPqwXOj!yn&qc=i~wN-=FBbwXx7 z0qof)Z&Nx5iFjY)-^!DWGMDLTCqCk)SX2YjZ|9^B;iG5L?^2$iNpqof;qq)p?6Tj` zF+-cd1}>q5U8O{|&Z9t8!|w5FQ_?^e+;#z?+3BpI9CdY}sm&@$_tk^rU&PHVr1i;l zuGSm+S#49LuUS$G=z?0*>dMM{TNuZ&B!`YqOHK=I^M(nRiM~XADKr`l?+hU5(+o{V}=OW%>-Qgk<-fN{E5G{5BLhV^XkKH>%7pb>; zQ>9q+-;4y8GdvH6HF&MOy#Xm2`{6?uHxik_pyLG$zz;HC5^yFrY=4^&jqs=FNkRQ; z#kmxLM?r{7@S8z?b|MZOYoUKL$e^o-0Yp>n{$`NHB-GQy=SLPK-TOY`IGO#r+wqdd zeR1344{|1v$v=RM`Br=BW+Gh94BZp+Q!(K13a5_kjnXbE%4Ca~^1mq;y0>^{12i+s zr|7orji!=(LE@fdNUpZ0B#Hz#5gGr}KurG?cqRA(^ekmYi`I2!So%u;?`X9jSpJt* z+Z^b4Z;F5V!>di_j%TJrp4=@J$BeWde=)|Tu_}c`L08``#QeQbK#&=FL6T#};;K4) zNh?I$x5T2Hl`83|pzXff^Ckc4sb`_d$F=?`bn+VYB9v(09G?Gqxb6H4E!DM0mLmG@ zX=khwf|QLC(8pIVS1*?|9w{^$mkAoyr1Q|?wHWoLO5|)+j@dn)?sD<`L-#4GeGxbH zE; z$Cf>#hOz!J_CJwf@cDm94gcO=|EJ_Ja{y>NiS9Nx*DTO=OSk~iZrMOwa{?)w90~Iq z?7b17eAIuj?RGvyLq~-Bt=>y{q-cWfj8L~5&&j-LJyErG1`KGHngvj>760E5Zzp-h zcps^x(bk+%H};dIPtT`r0I>-~y^8Sw5C)xMh3GrXD{;&v?D8FR-kSoP=<{1NNA2Ub;obVgF1488Ei%rHQ>Xm?klZQyy$&dPs z!`JfZJ+Qpv0^e_)zqqm&X>N>_I+dTD{srxhij5nNA^=LM zn!0ARR$eK)<$Wke$FhHqdcSvn;MZ56X@G5`^P=|_y=^NmLPEZy%yOJ00dD2c&UvhZhTa3DP&M? znL6H|=aS>jPWp(JwG}wqv%GiNyV;gag*qn60TD2f|K!7eI1@PHrHJ{cwTGv&;t*0t z1D-({3Mk{wxO>3+rK6ZZ{5whlyfN`(qDN&2!p536skQ>bDTUOY9c;4PTtn3bvGksPmK7}F5lc+c+K+_gN28{vUbUeYur6ZbRK&ge}D503sweHy_8V-yg`$}pu!uWro{hk z_0GQ8ALIY9f<-@=>AXQz!Jx_ekdlAfFyNa@O0uluB!#Uv&KvYC7_{dYrT52L{p-r? zFw&8(;fw5_w9R!H%3fx zga?v9RhoZkJrR-j24oysMAY3JprNLAU4sg; z`}p|GkF@VrOTQ-g_eBL;q|_EGW2tPzf1Bi-El~Op{8H|HYS_Q7`|ni_u(*Z`Nr2;| zq@VZ8eRj;`zD&J)eM!^NmSgI}od#zKit~;mF5ICH(AyyjQ>S_$5QYoxy&XeVtU-I; zzM{h*WU({L1E98;u9&IX*Nao$dxxK&YVPgt*L_{gZ16fUG%zsupnA^1b0J{iGX0eA z)=mUJHDTRD!SPQbIDvOZ_n~@K?g}xRp5KZ>gx$qOMVI6T4t!k?AB*{|8*h^r1fI9& ziN?m!+Je&r@Hzt;lq`1dq(a=)kj-$T4$8R5aNf?@xi-hBaH&BZZto{reSl{sVeI`5>h7pLzzgyljEjTg8%yCyIDDCva;?;9z9p^o| z0{InT+TcFn)&bvOXqDTWBSY4tJJ8#aBM}{=ahbPXE^Of4p)hHWbW}TM^W^B6?L{5o z-DQk(N+>^9CC5<_&@<>^tx$SMqUT;6D&9s#0Qa zD#r=--@GAtBO@WI?rC_G39X&9I5+SbNJ2tM37VGv61=*~>+Uh{y7r~zhsTW5=bE;* zHVi-yRGj*LyhGfnUOKN-_uJh!FaU!`VCSyicAMGp`dYX5izNVyKTHz1@f|Al4TdqK zygwWZ1XcHcJlu)Es+*`>z2&uDqxvte8AArXiOlms`|o4rz*f^dh!S!;CjZ}){bL!} zfP3Wsb1{D{^Gp=YSmi2+&tZ+>zpjY^bV2ynZ~jv>@HZPlWZijtFm5aDI$+s_pdi!I z(gp_y?@$|uz0LpDiT^b08Gqum@`c22H3fM5mi4rcwI=Qlt=&U?j*2oiwL>H%w70Uh z9wP1*{5Lgxg_{2HBQ8E3l)9kZ_x(HT`#;s}IROXOMiw!PV+?pqlpql#U*Co0Wl|0X z0u`01!LhMt7OwHOe_cg9Y;kF6?@T?_!5r(i?EwgBX?gYOQ30esb)YT@$pF&)u4a<{ z$Ls|pIeB@IQZU{WRFtFw0(qF^E%g7YED;q*3yX%_sv;QTbt%NKKR0B}3_M2XK-h?$ z8CW^rNJI>gj+Yw07mR2vieG)>abBbR=Mc&PP!y+{yUhBf-5Q=Y{}5>zYOR=NslwJ0 zkyr@Vor|m3&;TLk>1p$E5Cxyx9$;m)ux!zD$o|{V)^s2V`Rm_yHFwnw421si(I4wh z`uwI#Pows&i3|AA^Ay(VAicZ0mGx@WPGz+kdxpcckI02hEf$+N;_I1+07_@%=e|_< zS3-GU#a?Ywzb3CAeL%tA_J9dV5jy8|h@9Y632)E)eI3E1Nl7!Dr_@!Y z9&lNh%I8Lg$8Gm!T`I=uY!XfW3kRMPw^x4F7dywvqk5acQV(2&Wa8eqd}_?V-poHu zVgn1p&uMr0Uybo6+J*=H&zhYtf4qSX$w{c!UAU^Ou2P~(M+0QOM0K^s$s-0P+GMnk z%VGfx4DhyNzGRb|_3-X>DT_DT;9Uuy1U84Ce=Nn&&SQ+2;LM#G#eaSmC2FUiA<#B* zoq=vS&srAMonzcLAj~|kFOd3sua)1!o<(|p;DK%o_~%*lG=e>An|*YSZ$|-3Plo`( zo>EzDw^pYAOQ6LGadWL`gj1@g2fT(V1K!Bg2tDJ(B3c9T<4es+nPVu0OokT8$G+=t zKSi|4b=pK7)-POBIbHC6ji!a(6MqUYqgG6^q$`Lz{?P^#ibxbZYdg0+JbNgcotFB<%SS)rOw} zaNOy}%+yQr_G&oOa~``OE6agEWxZvzg8&7rB~SefDpmUlvkfV7%mbr2MMrVW=hK+= zp5f`d1vxIaVF@3$Ph6dM2mAy)o?pxLww=JHTT32XiXXmxy zwcUyI5IT)gg}U@_u>%R zH39xeecH@ptJ@(7&z($25ef}C7ZErnh)_}~r{UaMD6CF4IWjl5w31NrLfahJEPUEv zK_=k&ypxzH+b+iy^-tq5hI9-Sv0kfK`wVD@2WufI#J{wZ&i!}+ky^_8>VzA&r-zhH zA%7;yQi(7mCWbjQ8aHxfWu>VVnvs!l<+>Fa=T=i%K_OvDbqcb?V3!phM?)1870U>o zr%h+-r2j?@L{nN+7RfC1id(4YP;6fulp@pvD|~`fTqgGI87d=6iO$YSpAp6NSfeH@ z&&5J%p!~hs`8l=G)}B+py_zQm8y^v0H9|D<%}0m5m$^<-nwVz+a2yI4RuGxOxkdXH zmgC#Tb@z}?jEY0dygCyb^Uic|BLJ7(4<78kN9uLN-@cvUsJLHRI65MLf`Q2|jDXW^ zatJBYsv>2hD;>3+VPQeN?C`m-m3KMI@ksCof#Az4D&o$bc(<}$gw8xJF&F=Elih9N zB2yk^9+pyev|v3Ald(9C%YVk_N2g#DxfpTCuM29*wIxz_pLWB_nRdoKdFsx%XdHLh2s*hyt3W`F=RkA zD#CPm5-kKEE}gvMAYZ|~{eA3%G;qM%h($HGNX|f+{r(+ZGBniG&M7PFCl)|K{xjfC zkn_QPQ^yL|)YSCn=Em;tQ$zxV33TG-u8Ms1c`UdirzvY`YYDu-f87ns9+5cC7Y&*$ zklUUA9`D~^x5(Da;UpSEwCc3gCqp3UUOsBu+}s*|Pew*I!ZGkD06tl;6}k<5L60bX z>&zb-k{R{F1tcuTGc@KB3$lvbk9AWyZL!-s+G{-4J5^(LA^r*gvf?6f9%a*`1HNEC zOoyua(cXP59 zI;3W~nHzJ84`HI&mW(PC7K0ZPb*O3jI4&sGUNG09=8cHY*F3q~3%bD8_}Z*mKi|~s z^bOv@AYJ6A5ub)JteGA{aWV;rE`Lw81uzBn8JnG<80e+kz++>hU%xg6enk`$ZiJTV z_9H|BnbpsEESVIg8V4f6bc@sQ1AbxTbIkNkj2m;V7|&AV6H-UP~Yb8#^7%IQ)Fz?wGB!d9$u=DFWdKMA_#>st&jo=j3Z%B zC?mgX!p`Rhm(TAR^?a!v%fDAL_QzVQQEzSo>&|}8zoMCx$4e56;V|AI5iT|Pjx}OX zPZ*y(Ojw?sFW1Z0YezB*J+$**S_kc zebz|WfJmvsot^OW?eCjALux!8FYVLg#^0~@Sy+k#vOnExSi2;uHz?zL_`qLPHx`5XGjxaW>(%9H zj%$>+yJLTh@C)dN<;3=cuwOuFDQL3R&fb2qK+lA*qTV)XX1!zrai-YTXe*HdCM*QtI{AqoclF`sXE*i;6s zz{_7&>y?a%h=?1fr!g}#>Kt}6#o9_!d~OFhpSt|Wq}W4BR=Qr_z@QMK=ibx{MKm@! zdgm&n&#`cDNLX3nA`=ME7`Qw&*GMZWLi~htc5_2>@my=Al#rBZ7J`d0Xmf?GNJ>rh zud|%k{63ZrznO=6cCy-*Thi9%2?u;yAP$Qm5Y^Xz!ST4_HWzvIvzjCkzS!ysg5mji z7JGH7rSdpEJ^k@y1*qTVXK+-d*W{2B9&vZ)DFD2H!sl{8zvQr6Kn2etIhMwWMo1X- z!*YD<<@s@Iu{+?ci1o+3yu7JejTam@A|j$`!5?YS(b39kYEtIr!3$Nlnf%VTdeb_C zdI?n2Rr4pSt+}E>4>`VuZSI7bd>(XjYUp}m@f z{zqP*7L$HGl*j4ME-f7UD16So6<&50zb%gQlP>pbw$B8D=TS#arw#Ut?*J89 znT(D01~E?CMS&TRzCOg8Gy8QszyrH4dG%PU!H><^Ih7hbbZvVJwV=Gk{h{WDbAEtA z++x*A-X7s8K5m;ZQt5$i6{B&Q6N~|#wMo;2pwD!nActuc3H_dw_WU@`4VzjSX~Bu4 z&nF%n(uf9xs83%q11nt0Co80cTkxN5(wSK-W~|= zJT=oY^4tzmH=n+k!NS9f#;m>VyL%W{Tcf6GnqZeb^xL?5r%q z&b|AqlEE5l-8w4w)5W0hGuV3TAMco$6oO-MP;p6mSC^Y?!@!BV9Ivj9Zckqy)N-T! zH+yF0Se)X_%*<4F3JP2*PTStO@9&BxGJ0~w!vM0uzsAxcGGr)1y;g7H@za=38Fng4 z^7Dgq*e&5t)lG9N3z-&dt*kbNlgik>?NVAwc~H{P$-<6Mm;TQu<6Rtmq|auJ!yd9(Y{)VT5S~UG%GJket|3_QJuo zq;}prUa! zrMsHf8mCWb`H2mf$P@zcO6BJ|>`-t93y>avBp!D&+VZsFP@kQZs9nq$+)X{0Mob2Z zhPS+8Fz8nF?j(^)dzvu0V1#v*hFOd)53X)pm+j`L0svl9@W|CHRgvsP(Xcq1I(5R> zF|ysat~3a)>a8LOS$6Sq|zOp=cToI14td8ymoCe(R*Pj?N~E5vZ63tLp9G9xQz+u&jitpF2QGJW(?Ub#RT8rj zVDWHqX^>vCg&iyJG;ikD{ctW5cswr)sT=K9>E`NdYThl18YV0^o}%XEM@KVhR_R3L zd~#8ZA>xD|A6LAy?3Z0wTmrQhn_mXOpa7u!^Ml?JJw77D)qRzOJnDnnc6x3NJ5wx> z?A1#dH~4tI1t6`zK3PS0yd~~VD!XTfJ~=tT6|$pI%;bwwD^fyuoSB&c+Xh)p7RA?$ zn|8nFcdSM|XFzlx;m0eCbA`s>{GD|gU6Y~s0x`^n+FHzBmND^(u7?W*Qtj8%3FzMF z>ClN0egvSc`{5GSYO7m+bY|Pf!#PG1@d+ZqzGo6gMIBy1gu-m8#`$hwh?vO9N=d?A zm*uHpPrHQz#^@J8d@#sT?RLmjQ>5EqyLsA`A}#2Kkj42^p4m%kx!xhF)A!N%HmgIm zjpDV@WuD0s2u%4U75d2b2jT~|bDxJHedVtRSZMG0%wz8!0a@BtO(N5NPcQgB9L2(1 zj;o~8d9>4*z$R65qLXh>sojr&jkBKBy=7seg?6`XbUu&cpszdTU(zX5uC5})t>$Vw zJpB&(NJ9u-hvn>67F4S1Sq4yE$CP{lUNi0Y+2r8t?rLuh`f_&+n^$G%#Lf04Al()N z>RpKOO-2kFnoeV2bN^y_G0lNn5%f}wU0CU>qB;P8Z!;@Pr9vw)H6fH426J$YS`nA6 z#&PMwiH&@V53rK&mQ~=%zz$mOXit z;4B>jBH$j*Ez%Zj`YDVCP!~&h{C@BP4xY)kyMY7XeDsV6LwTn^^I|wQRx<;K1_)Vc z(4qe{o{NH6U{3*RbX-SXTl0v`Ixh`;{uUdSwB_sC3}a4N*2z5@WRw6qQg;Unr&R8qoZd}_bzb=2@+Fl9p2lMx#G>9`|+;c z6dCc8(vT!@wiMm*;dIsxm6f=BuHmR`L+SDDD*GeC@MF{yLsBtBv^%8IrZ$i6$2H&* z2nq_jvQpZ1YE9bMpw^W(FaMI94iO2F#c@qPSO7>Sp;Q~A+q05&<+y`%KLNt3ipWb& zP7XAaF#pQ&3?D`9l%fh1>(AppiaS%HSA_Z_kIc#%prV`qwJzsgRyRR=VZMx7z=|^I zmo@W`A_WXnbEiBjQ7+fD#8TsL-=n4pn$R^VY!bBPAzy|y$_gwMpbOq1o=f zs)Xl3pVBM>*4jKy*8nFYDW)08h1htUHsJ|HiVZG_ zgn7yKyMHScofV7cY`l()rgJ{#A-wezqILR)Qm1sVZ8m+GwyF;daC{)GwwPr*ZwrPu za$Ko~kHlu|d4>^U8zWb`(P1wF1xhB)Up~J2M3wy5Rln1u>DV!fOxgNA=Ccdwe3Y+W zEFKmE(DxCLjK&4|`Fck%#}XVJpD}O{Y!5_9s(IjqbnIiT_IVQvDcy6;J8B2L>W>Gf zbz&eafC|Y=S z1IEpUj`%F+IL;yJ6do(LfKGXPXC^^YUuDR(Q`7Su4A`v!z@e|`N>hO@(phn7e$Nj` z`Ym1xJ1-1N!(<=_{VsS$Jq`?0rij)*)0BR+-$oj5t+tlF{;ExLiE>L#JR!PQ$8xl$ z_b>^pEvw(W1V9%B=2>}4Kv5}Vko0CCz$=J{A&TaIuXO=&Sx-ZeOCjQ9Mc35STiX_}s(^~sr;nLS+`I;zGc-CT^#8<7gVw4e&g(SzbW4t8WP z0DS(VqrK25GFQtT-rS+cgkTs}eNAT&0}v5XQc^N=m|z^&t*{S0h+o&9w+F5zg6C=A zmfPGV=NwQ&l3P7a$)aSLT89Edk}c%383ZozeFZbg37tIunKwxX02zG0SD0owG>n%oU-00JY{H74{- zZe@vK-utAyNpu})rXC|7E@ET_J+s*;c4@9Dm2jiy^3w1#m=l2^NyRKC^_h!-j!{s5 zmH21YPvZn%3p?SxV>wImgE~G!C(lC$1y0r7icBda)5zLv1VKzV`7D-5m zk4sIYxR}61%uXo>$bL#;%9QA#q}wxhFw_zt3vhoJZSlOgnuRgP2K>xK6}E(w&k=ya z^mQtNeB1TYNQC#DN};mKyZvhU2*lfUB+HplHbfWI_qj;@Pr!X+asv zwK#4;M^N>{G$;=s{{6!urBcpU)`DxyBoFM1ISPoD50Ti~4K@vl(7>Z;BEizWj6CzQ zzQ{%jB^C5k;nyRz0P%RToIRbgVs)SbCS_Y1r+p|Ey%tDJ^UpIPpL2ncGvWL#%rBU* z?PjY>__?sU2h^!YD?sW2?#OI(kcdF@c{mj5B5ecqcnjtQHdX)zANq#aC2F|QDN35{0FA8qQr+K|;MZU85SWa3Le^ijN!(WQ)A+yUDr5){ zzT-sv_;SR`VYMQk$_~Z^uTEwOGn4cq)EMbZ|_%M1$YtnwM_EI-?PM#PZ^Z_G17DuXJ3@;yo>t zyyDFI?d8?@&MGSPZe`ec4|5%lC@h|Pd-L+bz@s-{;BsSSvZF6nRdvpCA}!jH8-ooLHo8jeN{lM+RR&RN_rO?@L=tdMrVyedmDE-jf#4U_O`iln)v z#ccJ#?d%riO+;*v@Pl-4yPSjydc&Z&^J?pL9?y7nuJ}}aN!yvgR~Bn@!XffF(7kfB zv>XD0due^e-Y^3p2mkI=xjrwSbRl;veObj2R5I{#Tm9j=) zU>J3}IcjnC2F26J^2)ZkACpNq4=>VflJVNYz&y@NsK_Ae4!xh!nZ8$ZDvL_ziVT!D zlZ+9QwJ9CclP$q*X8j{s>t3d;c6p>)(AER>w$+k7BwjmQyL$|k{Z2oq;N-J741@b^ zZLGqJ*TCsuu2OcE)k3w;xR1?hDXa7Y?N(vDjeRH=dydLiJP-4B$<9x-#UUA}kLCG!%aV$J7bxcA*8=lU`UkFdKkXt@3xM0* zp0>eqJ?q#?c^%F{VVOink`-Aek0u1DJbeZv{uI4UJzV5R4;9J}R?*owI!y(Q?zChk z0b%vkDfHeffP4Wuh=PSiAR}iA8Ju`X+z%p+!-Ao>M4#R2Q;`XF<(c7hj$l_ z>Gc_+LF@j-1<2ZgORUeLAjoPrSIQEgJSwPu2@aNE(Cd6^@FqKDz|={&_;GXmLke@4 ztnHadSdvjqtsrV?EUNW z{?>^K8oi9rjOsIqljZMf_zi|K9)y?h!_T5qfW&uy(Spa%C8Hkn1@_^;`*%62s5uij zZH#ck9kA9z`~w_b%(&cKLD zKtPrURpq_Xr!b)>Eidn7#&FCR6Cfj~RZxkueH!9l_Y>z!5*;X>dnd+kZIWX~&8jY2 zo4Y$i8K+p&S7S2Yc8q>+)!x7#nKqSWZ9)g#>0)1Um&K{hmDfY)#_k-g3F`$?66#eFZ`m%DZjS%M?p_a z6>xjsp9w;G{~mvHD4{41)Y>kIwb)Q!O3uU699u*bqLx78wKJ&l8(xHG53M$&I5DTdWEzvnd(YMEpDyzH^DDXw^WA(YK|`bQh|EEj#lqYUMG2e>Yuia1x^&eC$EZSB) ziG^|a%0FtL?ZC}wcu+S2KiV^maC~LELP=gRxEaiKvIa7Gb`aMvsE}B${btJA6+v71 zJu0B|K<=x=7ZbZfUtBIvK2x)8*^a7^PcNZD9p0GyC!Y|o&5m26wpz-?0fIiEALaeR&)Tm+M1`(%V?*$xjt@NgKR%KWyYqW;D_$ z-Ut)G1!RNKD8LBz7{CyQu1}OS#>we?>-A)7W#W(2M&D$ zyhs8kFrjAaJzUOC=Kl28IM@X58wU9usEX4g8iOo&G3BZF!9kju@qi#H^R%^E0Q+ZL zR&|QC0+hI&@u$P8S8+)Tsug{M$vl8shM>3Tjuhj9bSxp8C&^%bl9<#G(}m6TIk0b? zFYzWG3>=N>a-d-64_5SK9rgrO*cAsiGLh~~ZgRv8DMSlTF`z0hsHyXi^Q5b`z z0uB@vIE#YFJdX1PR&rL)6&i+CX9&1i^_<))#<`Jjh2VxX?C*Ts-$(cB3dnwX`~7PF zO-}*q6$3mKywoVd-)t#jR4{?%!5=xj>GxFllp?&6hs|zU&3EWn8t`qts5kdQHcDCxVZn8s05`<{JLaV2((eGtULXKP7pCK?3>Y z(0}^}T}HVEN}7PP+5u6JT~D369GVk}u*O)?0)BdnJPwm6e7DDgUIH=csJvHV3IrIa z`_mZwgMae^mKyA%wQz9RzyYs9*2$ME~ ziBb?$Bw@c>>jZ>H;F>1*>QyO{=afG8hc zWSi+)YRcR{TykOwd@kxB??; zSY2J~a|;TtP3*HgM*dzm`b{!R6N zKO|*>32sTx!3#ovM*jbYLzgJ)4^S!C+8O#k7WB6?#Ya%Xw4h%aH_tV`|Dxgl9J4(I zsx%R(rEx@nCz~`TFvl~37!UKO3H(I~`d<<$1L4$Zb8Kx?{m&!y{|J&}2et*ebef6( zx_cr8RN#Y9AVkC!{V%ke|J3ORuq~)BN&x@+?$L3A4U7Kzy!tnT>F>S&w+F|_?x1Sd zasgtvb$|2rLEwGk=!P2>iL!Rb&r-po`ye;`1mCH#-}@4x-}pAX$(lKxOr zyx=H``w&ei5RorexHN(#se|b|fSf$`;h*fg|EU*_I0`TnZ15ow#^*IIx2z;%4%35mPF&@LeIh6mVSrP02 zE+a42RFBl|q;&%wOr$aCZ`qw|(y|Jw!zu^XhnwuwI5V^5m5KM#uu(EYqPiCQ!MX(u zF9GtV4%$dwX{FPvp`jtg3dvWE9>*aV4d&iU)9Rv*zEY1iKlg z-)^SzlBR-_0R)-4?FO(8EZ%t|jcc&AR9L@zuKVc%HA;S1(pl1>Wp@h>M4eNp3+>Ly znNu2{ol3&ZjT0bB>Ukd@V%5nF9(s^k#4x|XX4X7L<-WKX=HCyJr{iyauLJQ<7-o>_ z;L~EP6qYk6vw~oRP?k77EvUFJ1HLAPno&N-3fEUvm5q!n9~a~I2qL7ARNp1Ry?fu~rPZlZe>)PH$a}w7b(fxRvCzF^gi|;&?`N-8Vb3sZ{(8sbn`k0o zXmWCKpNDgXnM#8)`NlJn-#I8FWHj>i8e`C+?q5ELm?q$=97lS@>wM{CR$U{fs34l| zzTh3mp7uTOpzjyzhfdFX^r3y;$tm?9FO4LWM61O{h20H|G*~1zjfI(+0L_Nd=?HkX zWDlYbde6tv!$ZCigTbx>Q8Gc|go3#HR+z0GeNol|o zizpj+FK(_`#5amqM#{rRI3&ZHy4J+x%AsC!q0X~q%C>%jVi-58gPBAQDipr$>o-D{ zsd>NHlJ8K5Ts$kGlpEypBhN}z5;>XZMqEraxq4zj1jFG*((2e43aLSBb{31RQ>4i9 z{QZIt7pfWGa_@?A-Q-7Im+K)BM0?x&rMl@#wWSw5X5j#9Bn4Lo<+^%txg(=B7B6%_ z3DSEuk*BI%MrNpYP-bTv5Xx%a*I|Ywk|SRjxR{92xlcvF5I(q#t-8d|$Vdprkfo}! z3{>h0htfGpv@cwZeYVlf-Gi@3XUad2|VJ&6;ep+!JPCX+HT5p{UGC#>Pai_@($@pFV|8!WPpvGJvTQO0t;)A`H8j0iO25@L+#^QcPSj*}B=xoFq&aQbS-# z<&rH=6?EaoNW%*o>ja*8Kmb#yHjov*2{QhC;3K`2mRdgwOjgh3nhWBo1(kpnidWwj zaAg@wX1$q)?w0x|l1J<=Z5p081kAf^@x#-wyfi22T51{3^IJinkhBaRf?<8*8Q z#{Z0pLAdswZt{m#%VZajh;WUj>w zti}M3zO0?;$F>v0_1d)WDg>}#*~t~IoH*(GY3>b1@Fk7ZF*}@p^7;5Yv6%GI6ql8a zaOXgJ#Uk0x*@wy{NTzbRL2__hoQi?7NzJOo@Xc@UIxvVT{9@h)hd-XTf0>*b`ec$L zxkVn)$;)h*W6(Ay7AxR=LsnkFIMt*S!%a3k)szip9Z$|q1%M09!MRABN*bRNSIM}z zDR6J^{rfNACct~?M4z*67%-$HetVLcTUhu`P|)Cf?EIi1o#n&y0=%F&x}(R@N*Haz z0G25;?^|Lc;d1>3BEqGHfQ}%--fv_dpZcsx=NcVWx1xOC%9F7*G?8A=>tSA_!1iAJ zv^~4sTBqM=f>av%N1D3vjZ!4=$GFRjHdh-GV!e^Cr0R@XB4FxbHPb*VsKzRcyA$_k z=*t*mY|UA}a)gvNSC`<5ebkzs$_zaXavio&pzX8novX3-$O{?((}SYUUL&O?R%= zdbglti^Z$Bz&b5Sl|%svEybpR8t?l+D+M(L23-3frADZpiY%rF4z}*Af(wLbIf<#y z87X(WcIKqTlt2(RCcq;*;tep`MpG@$E4ecJ6p>It!>57%tG4405Z`OwWi1WefLfx& zR8Wwk=|)yn&WDT?=1%jwt-T|oDc5Pd8EeA@+gh59CQ1e1vmHrxKm!E&Q-uTAh!@`3N5PZ_y6U*_csovnV!C5_Y$ir^b;KOo}UzBWU;v z(+LCf)#5U;qQ;SIdq+hO&{bR|r0Ag}3Q0&g@hb>Eo2aSj9lQ|7#RkZAvJQ>|!A^6_ z4v3e695dkbk!!yHThWlIpnX(n^A!zt+{BNm=^k916Dc{s)RrCdA&MHXcTbKSG)?S( z7B0PV-U-9$#@XD;6;KnG%hI;Nj^0H;aIm>4Zd7l#s2`q2VYSwI9M#uHF;mw>KSv(Z z{y0~@3IztUR@!dgd<*l10%JTip%R#cJk=;-*&(E~wC@%4@p{VL8A(lnz}1jOMK|T> z6{(n~J_5z)8?o4YNupvyLyy>mOf@Tgb9IiBb#GXFJ$fkUP*}(BQhqPh)y0vid)g9` zlDRrA9#&vTTySTnUF7oD$>i+pP*>CY_st%+5MU~viH$A>6H}COg)S#4$1plTrkdQz zINr1;E7G1w2$86_!D%~8lZ5mlj3W~2i1Y`)j_OhAH!6uY{@%3cf|bV!%i0F=F5lkuaHV(|4J$Er4~#o90G z>Xe=4`QB<;JLZ-n0>oQ8`}@#(dbUtd?|zdDVG)q%lYiC~<%W#Q&l&#s!M?HSguzs) zV5}@|bk_WHKLndGEl(23*U7_&=mFF**`ZcXtA<(7c5|<_ZZ?(O1?!ZJ|Ib7)M*xx% zxT&&mv&0^=X<_@BOY#1ce{dla*ZtZXchk=J}c+gTGi`32Ea zgvXP^xrJAC=z{CctgyT7;wCzBIA(lv;%_hUws?V9ujbW`^>A_I^}-@9x& z;M$E{vDS7lW*i>KK}=cZyWEmjU#iC5HHlV~PZrd?m%d6ms){Qh%__1md2KMB;VO;R z>BuZF1PzljdQ<5b=E&?XYI}SqK5@Taq4fQA>*zm*1Br^35_)cMJXK<1Z_NV~Z47P2 z+gn}{d(d~b$iz?I1Sw$>1^1b4e*Hy8(80rn)p1&$p+Bl~9PqWCp*(F?@~cs7y*KFu ztNj%8DDkgA(u#6J3;;rwwd5Sa=Og2=@hF@8r7pDGN5L$AT)w#}n27PIi65*b>EwJI zITLR8Wr?oLbY7?6Za$dLxwqD1(7NKgZY*$yfVP(Bu4!=}P2#6?M!_L_#mdbt>I*|( ztTA?bATKx37bMja{uzi2#&Z{R=R)%{Tdpo)1aJLN{TJ>etgLOi*9w`+M-}3dGT&Bt zzreYOJKtKI`43=CMH$SCuoBOdu@ z_r{ieRF+#+fTmPSDKbJD%lHibFuZty!-wswP^nfK==B%~s}NOM?5OdU_6zS>JAM?L?{NsrBMSo@ zJ<45AM{dN&M`5Sq_pMFkk%mkS=M-EO+IsC`=+(|KC|5`vD(iD^GVxMPm-|sEiY)Sd z6LdYV7|?Q6O01Uq)ICAimTjWfwcZxkNco>07!ddOFCvYSBr!XDACcXUdHso2`8N9_ z^)q-q(7+_}(4dY?)HgDFhm(~JuvlHM-CD5TV5}bvJuiKGu5J(5Yk`E%h(C7F4< zl{YqCs6u)pLQm|2wXK%a>Dp>PF*4XOjg}gA@MRDj2J}@Rq*TH?iqr<&h;1`6j)mNA zpJP}~mPu*39?T$P4tF|VzpJ-jg$xaS$K$z&`*3|sYe%yDdbe&0?i=Q*e0#838byM+ zAr>XNFt)TL4{iz*iZQnT5b*9g^W)(SVVth<#n+nN!-N|PQ&WcThRvP;*pK32$WXxX zAuwhC1biLvTYKeuuj?Z!iSEFttOOQ$?;KucqZVXzX4-xTplPLH9fZ2z%2)#&m{Cj> zT%$rBw$UB%)c!4A9Tplev=LjxcDr|UwAn4(CdZ zFTN8FGO-}7KuE+$gDv;Ry)&n)(|Ng-D3@JkleuzQ7BJ~DlmGVP!zl1~YyJAjK18bg ztDr9)C@Q@vvW*t)dSA!FBKeHSezx{~Mg~FkQ#R+`T16dd=)R@(;sxj4QbYcR+RA-w zc!$-wFd61rfs=T>^)fnz54Jh*Fqym3po>`_PWsB^8aUPseQbAtJA{Gv*w8m&W)!Z(SSJH^C9mj{T=A^^P?OQ<9$rPo%myVWOT>1c3bY0sBHz+B>` zE)-q(rx%r%_??yMJf&m?lQOJFsN8ZY z3qkaTxgX1n5MJ@;)nW7d4yP+DS-}23lqv9-1TBV%VeAt~WLC zF7c(2FrzF0kKgxhPqXHS5x(%Ey z;=`KSX4|yhZX|n(J=Qem1OdJz(GKW;<8($qQ2V9mr_cQqqB6Ju6zUEp9SoB%F4oX zIW9&-U<|;bfr2F-G^5&=Kvbnd&O1aAIh2ae1#V&r%Ye0TKjcXcNLD$^y$RwvMEaC+oL8o8$wmmg5`}5)vjO$(eUM z+dAO;Mx;mNXdnswB_(HPHtgpH{T&@QcV`h#PYN)_ID%H~ySR}O4w!Z}IX8zLs4jY{ zd{LT22}0)|9%?b$HS}C>VNL~iERm0wo3Q1jImoLdWZ;8#;Ucu_EXXBe@aX0`y~f_E z6@A9(r4b~r61~u;Je9Tq-?6E^k`X0 zLf9UN!Q55ym8M9^_+l-RGF*wWlFEtu0L-@99#`?kh=0^%!0QSad38{dbk?og!VuYn~i z#CMQ{n7{kLFPJWtO5z<}ja3RtYYppux9r%APk;;z?!PcCd69c4>5mVVw}dk+laN^6 zarMLl&EE=>E2kx<{0GhDbw3grMLCP#Qn~e6Qo<*3&6I?;O3sRIZ3K*nE}U6Qov%~q zKi3~359Xf@Y*sF~^TOJq2zJ*3k2h@0C`P}s7C8!kd$=d;6X4io_C6(}5s=y8K?;}t zUQU^E_L!J#^)vN!-|JWfj9csmeEQWG7LgUYVC0KW{v#*C z37p>L#?>KZ9Q^FMeS8q^_gyF9aB&mU(7@8a_JNh+N8oU8M9Ve^%#sw-lM@fmNpW0} zlGlgiYjDEKy}No^ndO(3n}`h^>8jei9LAQ2=#aqVoUR0oW@tgzIy+xhpU83`8-(|6 z?caPXF9-=K>UDb1Mf@z!aW(*JtNq@#oeCt|`%`%D?EV&j>FavMPVo*=D)OF*@};tz zAuDg5Xkar{3bzwalX$kYbR*u8foVNbOjQ-Tmd(Z3p^_QA*TtCSe0R7lVBp7I)jV z>I$M!Y|IQ8O`aJijx$+b-1#~Vzd^ci@N>TGF=*?Q+U9*<2nhS9?u@O^))ABFw4 zxt-`JvX5SkV*a_PHt2id8lt-^aviODqk?JeePAwZ-x2^I3MQ=` zp616q;M6L`FSGGdHpF`Bs2eAQ*MJ$dnA?=38;Ljxy+3JZUY_pd!a*Q3$kdXO2-F}s zbO5FBXUu5Ai=Fqnj-WTEWTS$Gbua6bc6$eQA02TBKkK-j~0X|v=1G0lJ^A+UD3^6piEJekA(Km!k(%=X~LyNYREv)1p zYSFoo{Ur`gfl;9+#gKr>upJWpmvmpjBfI+*3u#U=1t?zX*W7U%tM{BbS~Qb2;7jcM z`3<2rtJ?(+sk$7LYO7^`CQ7EsR7MG9O=5-)I9m;-wsG=~iip74l>)RO6ADpXWKF-n zI-EyXZal^gY}wgWok}qU0H(nIlECL;zv=F|iCAI@LFV$JGxGH15+RxKK0#0dD`fon zFBm^D;0>H21y`e683NL^R>=FXrUo>z{8~Z4v)I;TT|oov2P#J;Sp&)5jq;><l z>jNA~I_I6mQf20&kt-=;5{dQvJ?A{9SahHZf?N3hhkT(_!D3d|h6^=A%C8nCi!a`H z)?zL^>GQE|U2G(bKVt6^8T7qyBgnaB?m&SpKqQ9jMctjnL@ZOIt95CKn;2FndkZLMAunz>-D({eGv z0qHjmc0lmql)(j`%@-~0?iCS4C_9bpIfN&8C)z`WaaCY|Em@zHID;U1qL;B{>AEuq=u$)!_6~c6(#zf(>TAksnaL#_M1BnH$R}u01UWz$81qmh z6u;!=1Lc=u0GB#1dl(6dX#C9j3m4S-li9{7n z+0W0;h$!=N2tc8@ZsRK3Vu5wyuG?W1#z6`PUieU84vduaMo;E-V%f-fOK6Shq7hLN5*C=GeX4svuf@rMF#6=M(3`)b$)cHFzXI8@kOqt9t2 zRmXFzhn}w+0lmx2o2l9`1baG2FyA^gxOl>}w#9=D?>;$ezMV#Se2}AAO~*qUYPLK@ zXl76vRZLVT;4BP(McHL|Xut@*HyiK55m6d$-(R|~9vE1FB~w+^={@pN#68B> z?IA6rR0}bMJ%E~C6#0kyWJhF?lF6LpQU+|iVOQ&Hqp)u)t6vGr8ehxi81z|FIojwF zrI95WT@<|fTFqbWx>=RG?Nku5dj^1t*mvR-Jdhq*Wo45UoO*o*3 zVY5rb=aCC`dkU>g5e;s+<_HJIw7s-B#Gv`9SMR7kC}(&KNVq?L5A2R2qqlcZ$+GD) z!`RfLfr|^^uy}C|yB(ku@N;|)Aa=B2z)|HF@Ydl>s69y30}I0Wy}hSQ=cLv6=~=}` zSjZvZxqee8w1U`MGQ*Fr$OG!fw;cDs~BB-M; zun^v?%l>(LK~`DzSz(5SUHeC*MKVAXDa&dr@(R@4SCyV$Yv>YOT9i7>(o)kIAU!u)qmKLcRW~-*kxiSRwTw8Pi6?Tx57&)(iFAbzc#ni z52eeoq_)$JNmr-U7#CxDvMia)O%ij0*0wlOcBLuF$o#${`A+4XXlSk!GIsQLR^SJs z8qNMQd2#IXGYQJVELki9k8BR2NOIxOD5OjL9VGdA*lo|T1xKti@f%W@sS|!%Rx|k~ z^-Dn^?cZq@VDm6g6b>XkDsf=RnN!r1)M(~f2NeXFTV94Gwxg@5Y=ksQ$<=1z9O+*z zfnI<34y@10`g$}ew?-W}!e7DHnR^Bo*!dEYaOXU4g-hG~K_1=w3x$^duRJGqk&w=) z6w!*ySgdm1As3uJudh#a@nd;RG2B(>(gaizUA|(=E2sm>Lf7`nbOphzZV`&td+?;Q zqyvB(v%t>_E;^{)rDu;br=UE^)iX|1k}e4JbOzWQ_Wj~Ta84QD@@FMm@~Od39B4!e z$-(*j~IDmm8OLP?IB{G$-Xwz?knkT2cx~r;-_pcnMv@UM54YvCkt(V18Oo0 zbB8n^G!67K$!DIz(X85<8!$rX!EN+ZEsSQ9m14V7e8VjbbvK6dF+4=)vkB~&q4{y# z=lcXUcELh5c3tWt$h4Z)HJ8@y9&w}>c_W1}0EeTLyzP27MS+79U`as^GJZEm($;wvsPQGBq{Q(vlxTq1(`hX4~&m zJtiZz8y_~?r>35%dQ3bIY|1m;GO86#oic4iVRwkG!iN#XTH_nQYI6}R25s+zR+{Di%E+f{G zW-n|;hqRqTp`2=>WeRzh89E^^kjBViXkm_xVJ+EOJO&7;&p%qK!<%;qN4&)KevVYhMLd=rpyRZ*FA!V5iG z@S<+Kv9v12p`a*=2FjZ%NTwfU^<1z0aBEkM*{5#1NDj{Ht1pCA(Wn>3lh8fvvws z-sSL!p5(C;KT|C+?({9nmI^Rp#u z^=(so5iRnw{PbPi*JsDK-U-yC_0|=@;x0i}CZdfQy?+(m!GxI4!&G-1h-jH{%-;qSu$8eY?So^=?|L3RW_&I= zyDzMKf1ebet0nCLFO2BgA5`7X?KvVRbD(r4wBq%~}QedMWY?V3#$~g`N1@g_v$vd z6~CtPDGNWDx8M1R(`KckXT~+YvRQI_0b%8Ju#>z$d!f^?>2EPP@iV7{<#W2s+Hl9S zq?Ac%I!3ZD3gCRVbiHU0I9J@^QM%8qz5ru|fvaIZ)Z=_w{X}v#5^jIJ(6MHJ%1h8?e^0PshEjS)% z#m47ZyO@uyE8`YSr`*4tF zHsh&c59!T$m+X9hZSJ~s8RUGiOUpqMYI#bEs(3z7Z*a{Q`sRg!yyPa64P9V15k`96 z{nrh{!c6enB|Q7|arY0h=2Ag@NTfxNHm=PJfq?y2fhF78O;DNxdQ8U5@Bk4~x&g}X zu>o9jS)C3VT>6iX4gpsmMvc_bl38m~vZK}CSf*CG5|pHT`GSfamE!s+0{&>NT8E#Q zDP`vpyq^h)bj<5-haEty_uDtG1T%Y^WHx{pk}fB*52BOeri>@H*K@lnrXZ}S`rHkaJU^rX7#&BrR`&W6q!M~cpuJce&l z=k@M3U4{u(GxM>AN?SR&6V^a-UpP@!l8h{<-cn>0Y?*xY42mR}rwkD_?eZ=+BFN^X z8nro*o3n09a!{c%#x&-iu&LnD%hBlQ8K8Tc8H6HD2Q|uOR>Hoj?2-s-w$48o^jy@E z1dp2HhC`H&+`Wlwj~R?MzUp(Of34V~)XvUlg!k07JIf>o zX(hC<*!5m?zM3dc-lAk|!&4T@q?sv>6afUpAxYu( z(3-nEu<|@o6l)@H4x&cL*d{aZS52rQ0sI%Y>)r^+1@UA43L$F zJqZL-6V)YSd|7q&zB*hF0h+}!CC%wF!dfT1al+gfF2BNc%R2hT1D8Fe28WeH0ZthA z`0`S++0$)xXVs9A?$=A0s6TZ9O{?-m_0jVnsL&Z>!dN<{cTn$k{+kw0xkk0Vo^djp zTLM0hK2P_WIF%BKMwRC$&O#?677BJY@J* zp@kGGn-ZDU*4MU( zS7tcgoT(PbQXIw-5GV;+Djnb<#r%Y4W#>F=`ln|6=`joyL)(k!Nf*6l=EBWz09CCd zi3t66*GEuD3OsOg*8k7a_?T^P2nnM^4|)SgWzUc5|2JvR;=%H|F1Rt=?njUR7LnO z@>$PJjhSGAnSh7XN{snYd?)>F9dIP`zqJn-Jr2+H6=Th3jqY)|Z4?)lSS>m*P}V{U zTy^V2oeT*7<(M}s_Wuxx==dCLhlz}gYy~7GAt;e6#F#9>;muW#9oD(yDdK-kAR8^5D^*b@c^Y? z6a_ihzqCyGZ~d3?N&_WZPm%*MtHKVA2{2i5|AD|v!}g5y4^8{SKmK99uN2X@HDa5w zUazm=>v5zjQAGZ74E}%hg9D-pauydZgh6*gIWRx7EM;EsTN%OYg*5^$63`#+>rVsL z`xf4!3JDAA{TaHCh8_z)i396b{NA^MahVSwRfMb)G!uwCShsqDX4{`JGbBQ_y{ik? zx>QjEcMdUFrekE9+u?_mUse|;fT%1$GV^mo3cfty#gHS5d_3vN8YwDsCu2UBmzdI@ zB>wT(T8}6V7xyFUxsGls>^g7ij;|U*rs0>0XxSb*y-ZKtcP5KjACHRFTO}C$wX(i^ zXXU`wymoD9>jU3$K?glQ8^?u&sMBc_3=f*WcP?&-eSTUi+&a?1)Wyq8v-jV_v(%h?AV5%|mZj7QHj~pS| zaA;;FN#l^>r%)pfQ63J%Qm<7)e$M6(pHctW+Wu#t!troG>ZtNoNYwTS*!)BV*Mmt) zI;nVVhV~%_6GKCNzkWPl7NP9MNa=Z}{AxjgxvKg#hX}J`eGS^Jd)p+hNo^9C2*8X< z8N|5pjySnqpO&2M%QOjlB6=DERqM$}d zbbUv}Jdsojfvmj0XZw;D{G)B%?Vq%~ngfR-_8I6io|v9B5{nGz-NiX5z%dn=+mA^V z1fAjyqaDCg@2#jn16+<6t95N3XhO&_rN>$30BvRl-bDVjOw6Eh;oHY`WhM$jlgg>< ziYaBaccCRn(qnpsNsl?_qnv0=#6x@QA0s;V@&Ca@3Gq;(!eiSRm9QUZhKr7g&HEao zYV254*d`WPn_$xe>*iogSZMqphkjp<75CZJWDA!z>sM@u%160|_g-I~+2rvk?5Nhz zsJ_V0-aI2w_gbnY3x{t$9Q*F}>HeJqkU3#AIG`KqNh03lXoy>JeCp^I_QP)TbV>mG zAM5j#2!|%_o#<|g=99{4uu?}h{aGE8umLdn=8j%?7-zKsWi^awIIpHIwG?l1TF`3} zDmR%^CN&z)?s#;k{YfqS7ZU5a=iCV|Sio#XZSz?2N*T7jN#q16gKsd4-!> zW|01&Cse+WW?$8YT*Z7i$5q&}5y$AuMDz>&g9UJ!g_8pB-4o&rYl?I>Zs$v+BT^eE#{<{F>G6x2 z`&j=V{5=o{z$%*wf9v2!cJ;aB7ij!FuVWDOJ^j~<={j$I;!TA;{hRycu-al90rawW zlMBk{vjZr#4eyVTnx`ls-QDyVwi2-Nu1aSrfAd#Nlk3Raw9;~%PArv)on`b{r|oc!MUKr&!}_kCsSaQS{eC?tk*w)OQHq zxd2`^{gi_wI#fC6ZVJy|sxi5ry??<_A{2(XuKi)z7hju;0T2-u-7z|VJ{&o_)C9mR zG~NvHBWhfTeR_BQzLM6YkjQeyN1L z{mK(@IVZWPu>>E3q(;xKOLsJZVm?G-`3VGUxs5^0Ygp`}Cz6x$fn4_#s#$1V6}E^voZ#e$Rp8d}2uUA(;xi#EF^Iv$)5t=L-Q9=us@+4)9yIg2BXF?JWe zcg2vb&K_4#%}M~Vp8ZZSpjq10SjP>{b?kGzbKIMv2){pN!64(pv6`>$S8GwFBo8kU zXYG94G7p20U8IDUs&CBvaK*yPpEp{I7ILk#p&@+KCRy*{`CRrUXod*p^!c7m%DaCZ zMV=Srz1)>~GpDzGagBMQLvTX;gjkm;@76+&a;q||`>Qz?BjU~7#a+Q6@`))bN94*~ z9rBm5E@cd>14arWI|s&JWdaeJw*EDYIQY28HBii#mdc+1a;&a|)$1D1(uWTruf7h} zV!b;CdNkCqz3x*`{ZnM$T8j8x2*8WTebJnit3&r=3${EY^|&E&)CFTarHtdcjolEa z(u+q>iKPbxZw6&%&XZd@Okjf2jUQm6?^Qle>u2?m?Z>UFLJ&0hDJqeHLl~kJkG8&u zWWu#yFImuSx_r>OCU=y?(@0(dIJjIC^B)*L+i>XVF4Icp5wMG4%G~}5Vzj+lDsr5k zAc7>IpLdM-@0t{rC7^)P#n2^d4j;Evsm}Sr2TsfnGmT4YM z9%3Oi77ILCqCU@0R6+~p?SDzG^#egzYR`E8xV!fV<()Rr!se>FWYJ@v5=31j zH9Clt+N}oB^TY{~bX!ygmJQ$9QLJpOR=DC)23yddkqmt!$jq0yAZM(xYX9;h4=1e# zk+kL@L?hly|B7aR6mI|CnCMd6SthOf2rAoC-@A?yptBUPTyxl(i>|jlQO&wrb3^W= z+Vn}A#GN!RUAR#=qE@DNuF4L^X-E?u#ls8 zk_hr^;3#ythj&B`n++E-oOXqdhllslc@QP*mdomv6~LrI{9J6`c;dtyn~NN>BwRA&*QNg^+S8anW`#@O*R%Y-g9v4lQ0TQ|c=9OeJ`+~i|^Bf1*^|jG^ z0_8^t>|*f!6IKy?h>C04i}K(qa?L2JuF$7LIpY$oB2KLdbl;-uOs5CxN3mlnc5xS} zE(oIXK?(cZ z;0`CK%w)M1h44-0FYEIU1-@(n&?4-`uBoi6mo~4T1C*+at_)xE$gm6fvA-RFYG$d( z%qNjSEYvhB%Aa2Aus(4jITs+5{TzSy(v668NH>BqUKiKJl=Bv&F2qH~CrE=}-OhIC zP3kda@J;%Z@7fKbj=*=ySeF~)h3FvHEFE3Iq^d%K5J0^T+rYEI*!6B}&ei#n-AELY zWfvCdO6Py2ZXUH9arO8u^fpvbrn80n=ic=9cU2o+*9cL?J=OaK0^{8Tm0DSmZyc=g)M0m0&qS7zXf zS$>^qjo!0+)q9=hI@`)5AYI$9j_k~M_q!o*FH^j?>H|>7VTg&RNEhCT1%cSBEXkf) zYSeLJ&Zp{mKf=K`Y?fvVzxEq0Z<5g;<;0%Xi{3l$Oo7J&!86T+=$;-Tl#@}@>sh6`^ECNnu*jOO7S2Z$z zKrkl`qE7s^%etp!qc+~b5<4u(Fizxw5c=DpX5v{11hwgMgLB1z4Hv1e$rs=P*9ymk zgnw#;xF$uNDd+tggRDLvw2x@CMqK81R7kJVHzxtx;1R3q} z0ZF&WOg0tA6M_4qsO(5*&aBa!Cy{>ibYD_49nohd+0A(qa)q|6Gvx#pgibQOLv*$0 z7$}PQF}0pzTDx1{Li)F_t=|ITM7zI5Ag@lC0fQ=!W2*^kU3Y znIp9OtD8Jm&fZ&h?>L=!DX*t{8it;)l6X_3@axM2HfQ~;i^0#p>dqBJ$JMg|h*@tS zc4dhsJu0BoD;|b2BT>F)@IE```O8wi6$t?r?=V?2^0UUgTOo5i1<64QoDV?pJ|$-dg(*y?uQ^yb=ntZi z_^JC_yp~u^N)bJ|JFXv_=7A_ThMY=f-m{OjkZFmP&2LR)nzf&m5I>IM)$)5$4Uqw4 z2Xn-a_nz8++N^S&7vy^NsrN@YV~>q*YOLKPR2Z<*p59$ zrrkcXWB&|-ntm`jkukJ#%Dfi1QS;IbO#%a%F9C0xI^Pl4!E?8G z`MNlL&d3(u6RBckuGLM1S14mQ9xc*Q?1I5e}M8dEBBdnz9*NhJHD5y*I#5@_eRStAguRMXCh zh3u0ONI^4%cbD_|{yh%#jL_f5=#u?b^g$WyDf+!a?IGFurg3aVuwImt90I90RKOLI z2|#G$wedZVDV}h+8VHRczHrh8C}N;>O<&cWcLiAIMB`K8iVB?YtOcP1j_>y%!*6?}E>^ zP&=usw!)f{Z3;7Qg3s|$LX%uhU%Q_oDaZ;m9`7&ROd z)O8`gi^(%7c#gFC#aR)SPiP`73X!^Ob9GS7)*1;^3KREKP>&mA*6#e5(c zL9W8ULe*rvPnKnr#P-;CB<6T_EF~*SX0Jh1(D)B8J2P6O`?5l{oA=adR|X;dKbxP5 zLM9!A+J#qvxh^x28f4O&W}g8`hgXzg?31y}m$*JpN^fS>F^jzS0-xE5G9ffWkd-J` ze_f!@G^`3}J(O$CjjIJfrLOoCD#R^R=nuS?r-)~&*eo4o{92@&`XVi#Sc3| zuy>(me&_A$8;XI_-3D_pSxHYOWX3j|fS>poPjvgh*eUvg2;If`IoWxSnkr9Yi+C z6p5+EPc|&>I45Y-q&`as0xaZ9*8l2K5)*U0E=Y-Rk9E?xp;uG9$QWc`CAGR zi;-y!1F=Hd!gERznAcHn$@LM2C|gl9)%&%5)oF0IhEfjNFXfOx0BgQN*mD(Ii3)i=$6VJOa4j8TF zIc1yN%qi{Ka^@rm_$-ws+G6I1GFxw*v^ID^aSS}+TSBIFSCcswsiK7p6lVn3n9GqQ3BILr9Rs} z*}bG(Ziz~%VW-Qsy#jdb>fJgJPU+hP7(aGjGY95;5x;gN{_}bQ7+v(+-+pw;F~hs< z#>Xyqp2pnK7k6zCspozDg!nUvp>IK1jlu)&Eck7wM304;ZVhXHTp89?PgsS(hvU5_ z@%Xms@~as|a&b>m#*zNfkL~v1=0#qi&Kki`DA!ro@YeBYWI_IBnlpX2j1wjIJcndS zj)L;l<{OObBB7}_Ht5&^MrYT00^3WJ@#uMKv6*;6J`))1nuIH{UxdH3fF0D>vbH58@Qm0|HVPzhQgilc&oNIYmJD+#ZL0eu+!~|g`hbAD{ znooTDj8p949Dkzd)57VEagUPG&>ZHw#%@r-49liPO0w z{1s*epCCjWg1x?l^x-}gD!Y%cKpWCO*mg&1kOpA25I4HHugs&1(GPjytn@}li^|88 z{`RWHpTk8lR#L%15`40j9r1LNCA&phHm@OaOLcpN)^VQIp)8ap4<2nnFRC|)omS)V z5WvIUv+0n%sESX?OKkBMZz5c~v)(}rw7=)BLNA@vjv6g-N*uxdJYKHrE(P8W*KeFL zpN%#Q*?DAaHp^`JIUJL@-RwiP);>f;yvVX%&Mi^U&94x(GQ<&C@(n5nAzj2B#0!AJgDxXcX`@{~`5L)>H}n5Dzt+ z5jtW-n4ZGCuB2Ile6o>mgKniAm|vE>(UnUU0=(UAIMhqrQBP;6C|Dm^-$Kn(zEemO z1vw?8h8d7roXk~sa!=UrzZXI_JvC44G|g4vX=;|!rh2m+W-oO2V^`69*B0C`vc>I4 z&iNWPPc&L?Ps|C`MRP0)0JF;ac-K)FyqJ#N&LC z;@WxCp;3HCYT_K%YT#r<$pL361Do9W0kH);=DD@13qVeJEDQrWhZBJgyPP`cX z(-mw9)wA6Foh0Q;9!OMV#+$$?7+cPTLmj{6y&LIY9G-zcd;%JXO`R!Oz4KQPly<`N ziBXAFJ9|-9mBbx`TRa_7XnG@E|G%zm3-`e!&Mu7vm@L@2*=3*6mR4mLr2W zr*4IsDBNb%`t|qmz+AX`<{sE(82-E{mWs5C&N7Jyqi5hvSEJwD<=9;a{R7pTIqcvS z(xmTR-cI(-}i}0 zr&uGMoyM&jGSmua3g!IuLB^gf?#GVY)_p#^CottqR$u0+pXTI+os?=qpRj{*NGLy* zYm2!pR#-Tyy4HShR50~Kh0VRIxVYO3o6iTY56S#FwDCCJC-Zsn@mc9$Qc*p4@O}_M zJChpif;pPC6`^BC9FD2cX7Igwgaq+@^<~6-8xj9nuz2cA*HaJRf#t%fo0ZRz;Z3%< zttw%d1qH)v8z517r4`W5bi|%jL<6OxWyg0da&GhT4u8(5GuUZ`(2Gi2qogBL*6(^^ zTN!{uGc&mO?fQDaI)8&s%JL`NV44qL^`_DT;vUxY)>K>~4^J2 z;y{o&_7aeGoJZ75yiC}YW>Qu}bdeToUs~y5D8{i&^jtXMv(&L$u}&lAm5$S$?Q=F6 zGyURhFw*LXn*xs7TeZPk6J|hsVbB&^Ct|t=@y`n8Q)=RdDXZ?A72w2S?h{C%T?)+% zUuq;ha-)rLybQOfs{KDUgit8 z=#^4=deeP;!oo-$CGZPXxX2M)IKw++=jFUF(g0r9N1pw3J8i*Dsg0FJy+Ui_5g1ioWcbylxghC?E*mj`r484%iS&HV{FIn z*m+blu5)D1@dl%yOe>XO*y#_1uYJQVseS{<+yq8>TSx>l_~MBY8q#&bqGWeGAsPqV z4Wl_y4^BaSuQNtW4B5Ro41>IF&2}QPJ?IX@h$_?>rHb{K@U3b1A-8-4^T;4sEJ`6r z-I;eAe{6TAb4lE?bUnqvyv@sGKC2Kos!Ps-r@7ccbWm&pKtI$GRMc6M#L~fTeDJ-+ zj^^ESMr3-mNN=-;Hd!-GiG3~$&z$`2wERwO&q|>V`U8Q?Qd% z)qSXqp@$t(%YFUxtE^|pdCwZ>OIRaIJmS|5&Td&iAQn4;r)m3Q(MLS2QblE9%~oWq z_;)@)YCBYS&(mqqw2bg8srip?6-P#6(;$L8=eql5S=9Ww69vzO-o9hOf{)y5zZ3`c z?MP|lTlQRgY9eQ*3~@suehq2oN?wRr2OV9sR36~DBg3@`%48_SQ6tEN~w?e>g@@9d1uXN zOEDin%4v>oJtaQxugDJ{FgiYS8(EyZePgLgnXk3BJ%3M$_INP}{T+9qdG!DZ7ARsb zMutYVvK>*6q*3}c1&eGr^LiQCw0yU0*TCi&q3v+!!1;y#5v~R%30(TfQ>Vw=+*h9T zS`%vw0Os8GliX)$7wE0&74@BYjyP? z=z9)YhT8#NzRq{wx^eg*s0@y^;2DakHRAf{889HQn>xJ=SsrjIvB-aae3;S|UMtxh z46|7RHcHsPk(P(9;V^fnK^;LC;3h4CjiD6#k?}JkcEiD$&?G@)$kOpdu|%@ncUp}| z*DA6`QEvUfl!;>3_mPKs(FF~3RdD>S4Jk`OnKTx0cF{fXhf94NFULfCeol`!G&5~& zALMC;CT(vt31LPsb(HO~cO_ztEhe;X6g7*1T^5Xr0(bWCe!6(_tDV2LDMDPI8;51* zB68k2l>M|oa6y$58s)FE^I^&>jo@L0_pemTJPz!H?flpHYtJ9Q$lLWmWW27w4^Yii zDTj*8^u^-R(u>hRKYonl*5tg}U_sQ=eIU^$Gtw-53`w>HTze} zXzXYD;(if;4MQU9BdS`yNp`iRXM%9YrMOk+YI+-8%+UW}0Yt%VLkYjAv2bZBTwOgyy|K*$U|V3EwVth%TdBr><;Yk$U}~4Y z>5<~ZHlqo2Co7Uw>fp?)Iljqn%eVBV`7rfXT1e9f$joQ$MFQu-Kb{b&?dXihVZHke zIy=fg8k8diHtw;5{hc_Rf*P~oLxoWd%?>nEX%5mQmy16Oa(8SRe(XwU z8EzT*E3VWKAltI2?eDB1q(l9-XR6SbSdHrBbrfFaXN?&5HTs8~`{2X=^&|5oTa!Qw z%BdIoS0u`p5(ZE+t;e;mnuLIribvRPvtL(Bg9O!`saKS^w3)1YG}vPxacvq`X(`M^9#IRgTNd|5_7$!J5wR zLEZRIoD3oC(-ycIdJ`D1w_uz>tyg8Z?I&}oafc+cRcr=qJ}x08iGgrfWNhrnja-ZXQhip@cztHhc!pz zlkJ`1>(T)%&okGJAf`bl16e-l;+l3kgijL)S^AC>cvigZ{niTDjmM2n5iL zljETxaca+N9t>-1#X4pfQDgDdqko~OKWqJjSp=yIeQVsKV7?3xqFy*;HB7tJAS_7z zvL(zdbNitu)7HreMvujUgv<{?C4zv62vu4!y-<}d&kHPWAsM(Fc{cTpQ>nk4o&1Zz z@_j%FA;?vX#5z9zNwpFZEgzsRwp3b&6r7oV@iqr#N546yV`vif=FENfz`!;fPXa8z zM~2}0%!cvWZF__ZQv(9|qWcGB^#R8EOp!tufS`CY4CVwjv*TYle)-qhG@3+=uI}%S z9!rpr+n@i{;ruJ?d8tJ$!~h3Dp!aNCSXs&NnU|~x&}+N`k(&-3d2_lSKO=^Glo>ef zftZ{bez6OQP|qm$p=2uNKd!dch!cYfj|a~mo+eYDIsB0Sg5!7V-)xk8mNmB z%3OtHG}|a5Br%8GIX_U_(uOP7=*kp3qp5ap>)>p^L75fQe0J^hm-y?q!T3g?hKNdo zu3vCH`$FehTi4pvReNy0wibti6)T01ZN$`6Vv39ba(Mhja1|q8lAs|JEZZe_r6Hlu zVLn;QNfjvXAH0gH@#8mvOn)lW(KUM9@C8=SSR6_bRM4ALmD`U_E>7PeKMyyH%m9OB zEveHYth}is$ajbLIz-N~}59QR;Mx z1;dw#9HH0aLw#^=ixe2_U#AaTawWkIes2FH>EG}YjKzStl5y_V%fBERf6_2NO9EJl zk_F4~zdEn~SU|5i%vA`AKDSK&uO&2KC1(4Fy8l6G{zXFmf2u~7Bsg9RGeYY*BV$kM zA;)|ktdh}^uL{&8eo_0w{*h_&Px5`i@JLc%Tmcc!TX-e^&k^<1*uTv?dJ!H3f3FP9 z7f&U>A>yC48oB)Y+tt7fegFXh6q`~!SUyK`XAREQ+4*}H=l2mn#w&Kh*RPe=ma?c} z$R+emXnUP&Hu+zd#Q*lt@9BSkL>Ly8R5%KHax%^GsGzS2Fe%gVcU`!a*9)s|z2jq-O+7Zpe+x`a5gKAXNrEq+mquR z!+*!QisfMv)!!lu!y1*u3)1i#7tNyYyCSS}7zl1u(Aa!y41oM%#_I)WwSe|Ph( zw6NO&Z0-GFu%L664My8Fbj?!!Z8B(e{ynoCE>vv696%(jB}-U;gZ1Fhh*=E2D4!4B ziV0}jiUn02PcCD}!=Juu9T@1Ec_j5omG=V*uB7$APxCbsxkrUJRO8V-UG{`mSbdSr z-TJvttUx%__0=bL^<8r&@hr6uA=CRquKsfTq{e-;IoO{dVY`AU&jv2qe#R3-RcG9d zoo(|Ppw%bDNZ=C%0+DU5Kb%%i0gZ8UY=feLV<$e`r#44C?|QW zfpK(?kQIpmGDi=BU7A0*VCs$(7w$H))W?Xp>h0#7d2ayt$aBT-Xcp09;&>Ey_2s<6ULOJA*W z@S~C)@YRe!PNvA??4@0HMMO+bJzo>oL+p9c5jf?#U_WVaA0~>j2Ftvgt zIAT|D_-HB6VT33DXEBS;rK21!BuG@qSJb1Fmb^KC@jIPG{Q2j#9XQta6@)45u9>Ry zGG@yUUI^|38IW3kV`P^#85A7lW;(424lJdf@GXUZF)Y>cJwyd_1V`vF)7}a^wvu29oy*WGS&3Ws#DNB|tiWT!4`SjijRbd!;-9ros?8|M(VHA4 zSI@f-2~(U|q06LQ4yntGgIUoW88mZ^y3gJ4(qeix0#73vpmKs`(`j;~s@bx3Jl3PQ zHrI3yb;lvy5A&Ho;-ttHtg;V<@AgI|yoVqq;9> zhj2y93(WV>eb!&jGUItK9?=*V6sdU-i}A&_ew zfW1c;|9F#MFGMQ5+|{OOGFsA%r0pUu88KC|>b&m4Dr!%OtvislNoJGjfiJti>`VY6 zb&;kJx5_8;{KU_<%pOvDP^hq)ca3rd62>-Gh!$RA*Qd0auasCBuTlZtj^_*2y4}M| z@`8Tmn&ZcvB8{C{tEuIh7Rxufds057)}hyR?^Q{;A84E?ihDLYY*BVcJRzO^8kVjw z0%d!PyB?$HM?R8ro4%2NMf;eKKR*I3qC=4X@B0V8X9Hj~V&=AkC8an{OCWDoxfsE* z(eitpNRiL?LywHGgNY?>@(1tmj@DHwsO_NQ{e6cqhE@v(o9E%$#36lB;{erq5RdF+ zA#XIlJxkD)9z;Ym2s%zSI@4^%q;|yC0Xxvn6E?Kya=RB;Artw;g&^o&zcB227U6!ZY1u`TmbmuO54!!cnf5m{Ho2~8)Jk-B@=NvsJhFwA zFmgxc)H3TEwd-m!b2QbZX8?ot1QoJO#;uFtu%F0O}?+7L*t2Tj_!^r-B|UiHk; zA7#BNL=!O_-MSMvr(7Zk%)(l^4+N%aR7W$Lh)Rx8-JN5xn|G_s=n5YS$KOGf&^c1| z>Yka(M|JFiF*9)qzBf(N9LGwStx!RH2p>Yx)-^I^O*9(?gb=+<5i)(&bXect!aoqQ zN{4xxZ?)eY;#E@B;!?3M1Y;NOoU+)tpEqnYg@Y%! zyA#4da1X(P2KPX43GVLh9zt-PA-IL$?jGFT-QD3V^1Sc<_TJC?{5^lZ^KY)1S>3Cv zs;j&2s=Awq=6htB{`h;)kJ@lJ0s2V#WTpQ-u<`WF~A#T2s_q9jJ%Sy0bo#vUodxk{1@}I! zk_wTl@J54LQO1U|S#v}!p)mF6TAtiFoEPHvjm6v5o0w+f=Kghy(LddeT*tkfDT5}D zzcx)ePc(y63*pqUUBV3OnKC6)Lh5iyMB+P$YFkP9e!;v#glsFg7C0Z9Gv1TJ6fZtmo`S8Qui$%go)bREj>)XEe#bl zSQ5`au2^)$_BQ683>Nop>%LnX$x=bWj^Yoe78gEQ`D$x&bODm7hdZagYkpd$cq5$} zG_xd^aLaEu?(+NEid8a>UT+-D0>D*RPX1GA$cscE$7SJj#Nk7R!ECxj-Y$i|m?J`e z5ORCJb7lY5M46pPp5|A%S+4V1Y|x@PD?6R9nEa1X5givNM$ndlk|aKI7e*4O>jn% zFPc{=sB()WL7|xcq2pbvRE}Pb|C_#AA$iI|+@M{^SeRI$A#ST$Arqsir%m z^V;D@l+Cbgqd@^eRa1}K;Vd-uCf&J%F8hkQ1@$;SlD;9Tb}qQ*aj5|Y{c=7W-9Z$~ zeb5g74ot*KpGG^L`{jn4cw?S=RHAwo)SAsL&EqZck@!|-OniKg2iZODwO>a8!EPzX z)!DLu<+-ohx@9ysSew!+;Gq_b^#rLcK|D+aNSq$Zc=}zP>4~24{H=HfLEs$aw7iyv z(AgIp6fRuw4-PP%!QN4b&bZ*El^65`6R)U=4bgqCz8`sshnAENSATuU6rHu;6FSMufNbQGNk^ZWP8{+>-DNTsIZYf zAc$JP~II#^;=AnvCs3FqHdFdIc#h-CLcD<6-oyg<(hM1TbxKjZCJ4pNYHrY6` zXk^Z+@85TH^?1zhfop$FDEV*eox+w+kC`lOihgifDEA)eb_c~xyRJeB`3apUf&~j# z%-LRwZq(S>ka#V5!J_E|t)57=6z=NsxkvGLN6i>8+e^JXO(+hCCt2!7AlZ}b?-@fA zMT5-cxSH%TK~q_NtZfIsxaY07^5x;gz9OxPZR^Awac0}D=ERmkbn^XoMtg#?LOzO) zt-ZHGd$l+Ai2 zNY+Gctaa(mm~udyPYH%!lC3`A8m{2Joy`cJ%RVKKj^$)l3Jjub_&zzc5q5G{PuI?< zdvHlLeaB0z2i!ld3f<`b+lwUZ@R%epi2(@6$RNwO4+=3QIrTb?^2gVG&|C!gifA5T z^3@gZBv7YvRO-LIX^?KD+4OI>XFeCIoN_nX{iI_wu44ccQAb-A;;nVhVH}^+hgF-g zcXbb#Q#PMj{=TuIy==$2sd$edSRBz=zKy8HeIR3z_6swx&dh)Hd&YM#_*#7z2r(BZ zoNx$(^Ei1I{nh=uASeBC+hwIb*k8kR)vgR&++c$DK?o1w-2I7kU9=*aszc2D}#=mFs{w5+w5tGS(I+ zveX{d6h)dE(a+q1bj8A#?wk|XC$AJ}*M6ImRw*ii&pmV>h8 zTMpckB}XO(VaoO!1$P|c?qS8eyU+CvJ*p z)$zTiXv?n+-FcUirosve6Lo@FC;^TzinbMCd1d;frSikK`==x!oD@>FRqL?QCW&=2 zmWIWTcnm;hN2Ptth+3!9i(I7hmTTuiNQiM>ZyZFEe@GnjZ>KfjBuB05l%1F7bDz`C z1Y)rzfag39T-_nVUo@Z%i_nTJU2=`n@2%l>a!dGZb4%}f<5AyBNI!Q>+t>4@=Gxs@ z+WnZ8(_?{HmhRoh!hDWMiw#oViHU3=+Th~*j79C@JRy5xjoO$!q;mD2X7S{E0 zX_CoTxuAgI3Y=8uDz6Bp=*renf}{2!iJ)z*0l*356h!}MLPM_ZAhPD^u3`Qf>8>sP}&LgCYJbJ7H=Cd0;Q9n$#7mJDQM^%h`)M<9=AOp-6Pc3Syv<0Q+_EkE6pkye-bIxV zM8-a@vE*3V0>!auNR_L}vP-drsFf63UgJ+Teih%f=%b%(c5ExQPagIpM`)|*^d|9u z7CV4?YK@WW8yH*seAv&W=-)ciuMyLJ>!OkUxXR=7@Ni1KC7yF0 zcQR4ejuvvTJbmcSZ!hMyE&?Gf1C8aQBzwP0tgbiev*oLkBSx&<1gQo5OTDLIKN}oW zLFdoO?Aq^=*?5d7Iz99lzyJFZf%p=tTv)+2X4&5Ur1LthhAivDiBSf)@M);#vt+%< zV{Z&CKHC8@=8wDk7M>h3}@?PZ)-_+z)(Cw>jZCh>wUj1Y^b(?aK~RGu`u4TN5R*hQa%Hk3f3InUgrAf1Ckd-O)SQ z@St}~Kp5JG*N{kmH=;LB3E%D3(gUO}U_|Y9F%t+?=#_BEq9RJ%jz(pq-#@_3y_N5K zl7ZdkCv1qNQ{f;uG_4f1aV8f1gZlKXwM*vDLZsv>`tZs<#E)Q;-kLqNlM8(Mr=eG_ zTI)7+qqs^&5h54R`raevqf_x|QL%@QKC_K1)?z^DcldB6|2>{%n$jiT&75dxdA)as zYPU8;bTB+zUwm-)Mq%DO-#hGwxhxz+&AD)r7&C5e0AcX*AI|?SzRI7u!<1pIBp)=F zo1ohkHTP1{ba{C_nu0GFdT;e=_f%XJWzk{NIjlya2AGJaFiFEl@)!=sVv9@B6p3=zFvh58Sc_8Rev z1St7Oeh8fA{8*U^EqQcch4fsaT!SVmf^+E<(=|r_ZoORdw^d~Xhi^iHrnNOSO>LrX zt=}XvA_j-PG)G!$kQDm(yWisGcb6O`uTo3WC48Y-FzAejWnhfWW>95SgeKfgb2%3_dUmpMQmVlqOy{sTEBm&0cm&+pZ73k(=5F}}2 zwe0W1yu@E|H+2_2ecRAT~h`7qP76C=z-(rJFCB;mx7zm z=;LC9v3!detTtbh&z|05o;;ZTRHN$SxLH@Kf;fJd`U7^E|KB?;e2!9aD78ibNA=B@ z0P(~>Kx6>!=sCb8F6FEF7Jv$;WEl|tXW_~7N&mm%V*tkX4j>6(rx~Al^S3psh4UFv z+-xYD0+3xg0I6)C{yQ9u&HM@Iu}qOS3L5*T8Stl1e0=-Fe{ZV*78u!t!%u(@#3vuX zGiBn|T>n1EJFH=%FuFLpRBmTD6f;%7^77b+9h(l|8JU-_UxRE{=T+ECR0rPN_RIbq z9t3?YhX!`yaq5u>(HX+oieQJ67w}o{-m6-q0f4T!AS~pH6s{E@i!+qO&cXQGD*|$1 z2I<<|G$>}bwbL*ivxBCWJ6!-EM9?=C9fY|Yj4ArCvc8>&HBc_|H^shyvyg596lAcb z=loA$1t`RAAg<6y6!0HVGGq0ZC=b9uA0K^gu%!f0(d>kS{m;Ma523|DRBN9O!|`v5W^+M5;4O+jC5ZcFu8>#XxRVu(0~8v;|auwD@$)S zP5wa@x>wJVdc-CFCt2=G{d*eygShJP0A*iQzkvEDUFbabVBYjj{U3BO-3UPR_04cE z|CcVW)f{yGoeS_^kn!C!r;g6qz{r0v`ah~We4eQf41)hN7wf;CN1RRodb>-uj*9;W z+jC+9VibqgP|*JY2>jDS)3b3*dDvI{gZ_WIKijT168itw>Hlo%65t6KZ`w@B%Kpzn z_gO#!ly;}#^WvX+_`hKmV!;r)IKmZ$vXD>}L9qOX?8#|9(!Z1p@RodGZCMx~AhlvV zKC$zUjTO$}DN-)Lpp6!mPK7SBeKmYMl0Yj!`WI8r4Ab&9xqo;#74N*(*Qq&@sHi0O z%ag07{S3CMzo>dPUnSnUXDEP8G#fBm!3sX`$LBVK=l&B7;F+VDCRg5l=VRh`&+dmF zGei}HfkP6VSObgQvj?ZDN|RMW%#`k_XJ;}_$bT1sS>Eh_om$oWZYzXV7YTZm=@|1n zok-srMRaIzMk&{Pga^-qxN;ddO}Kx^Cow zzG}dV05wP>Apkw+?<32fKLeYuW*&c^)qc6N@4*1t*hKoWdByJ!HZgHQh8V1_tR0wn z4Y>qLzd8oT(=z@MSWD(}wgWpMfydcyX~$Oi5IHs4iHj#;x!x}i zoMA1E_FzoNATikMbsC{K+^UKeIH(VOF7C~^=shk!aRL|ZW4}GX9a~Xt<)RSAycHhXfwbeIIdR+UZ zgnS4Hr`m=4lr>)wAd6ZrpapqD4b89WE3GXH59H*8rvbKXA+p@ns0$l^J~lTuhvuii zERf;J$(sFcQiea*J|Z0js6S6a2gtuxXH-kRKN^#HAN9i)#F6%GeT$Ptt_RNV>mfcY z%~veg12Oq5B?|oG5%#MJ&r^Vv%I1O5o8@-|Ui5&P&yeXN39t+nzdW8Xe#>U4EpVgB zIuvaTv|cOKl4uMNYP?Oi=La&e?4~&Yi5bB~xN`qe?=s5e(s)0(TFD67K& z@O0+r%jH9aMy;ow%l5seT^2xm^d||FLAochXt4|bjePlPuig~!zZ9H550C%9-v94N zp6x+AOd+FH&X* z#4a^pBU~>(b7Mz#=i@y5T&*BvfG_?~om^6iP!byLrwLW#>fZdgLC;Tz_$q4gm~}6q z1bsj0jusVK0^K$z8fzaWsMM{%NC7gFnpu(}%D|MNCBqFuT@7Q;`*U~c(HvHwDw zX8rVN`ox;q2c$V$3uQckGE)9PbR2;E$Z?w`!*Rf5`0j?~5uDR861TM4a@O#*-%R&D zQS5jCj9@G4R%Qt(+4&W0aD$(Y@4Xlb9rtT&FF21#p2@`EELxy^wSV9ma=_kEy%Y9k zqXCRq@5?Y3-BviGNuQP}5Wrrr_J-t#XVn|&+0e2BB=YrDotlj?R1`^?Cu&2t1eu43 zPu=tFzU>qy!&Om>%p7c55e=7Y@E6+Qerf!I^pg_@_fr17L{-ZRr-HLjvct|7 zMYq-=zaw5SKfXhG4SR4SaCr#B8)jw=b6ww?^DO|^jR{Pv_@jVaRQ)SvfkSpk0$n5B zD-u&P^lUm6+EI5rk+7E#c3LnNIg}9QsPom`ptMoB=@*!k0ol_-d)MQ({ohGTNykgB zSE+1?tWSvh_I#q*pPIJS-g$PfP6B72OLTdS10}c4_@le;w;q%w3CxzB_lelWS?&~`4y7y0*5Qn}&@1pnoo=pIQ zx3dh^mia))!olyB=WYho+$?ws+)U8zuU_CXCWqt9`EoXDWE#%N`84P1#Vl#h=Z|4$ zupfkRS{8of(jGb_ZU+l{Q$gRzgY~4w>0{78<=i`mhR4>#%vD>`2=OLoRyqe_TWzi% zsBXW}z1Vl^$;aSg>^?qQY*xr$(H#d-=!iU#Ty!S|SB^jesZgKXkURIhk+0@bPPQyz zB%9|3xqpdT5aD@{x?hq3`1ZP`>=3o7mBN_#Q#hPXy5PXj-tzgB`0?h~Ruj$FD@4OS zSSjesBiPm*=`EW}gH)pz4D9A}FReGnRy!lHrtN6)W~&N9h)*KfwvSeaZ;?R5HE@f+ z6Vh?*HJ1E(~FLE-TPW?15-z@<{YAWl^kb~8;hxa?D6TyJD+_P!^s z%d{r6Tz#402HVqHcYRaG>&JJ5h2Go50%lwAs3p^p#@U|3b?X}<8CW7jB7B?|{V~m6 z_aIH%-|HC^q@-FtN^*My0&*ct!p=_{p_`3_Qr%K{6Qm%;VroJai6@z&T1WLB&AAJP z$-pW>_p1f9i=Py4uJVx$Uz9QK6FTj`{BTeOXXCX8b??~i!&*tS((ac1wH@{4y*pP_ zP-E!eMHqoMuEP+M!Cnb^!+{b4b?Up_an`3(8z$@?O(>2@e$n56d1DGGkQ7{Mhjj{@ zccP8gMo$Q<8ys4fNeGPu5GKf*ue0GeZby>{P%VGvS2n#NEg3X5AdbM&RdlX6an#CB zsrz|0eY&Uc-Gm!|;UtHBFzc}eG3M?|k-tbruVe9&O%Fzcmbi~tO_yw%{S?dN2T z1nsRy1u{>pJ1!mZ&`q*Tp^|`G`-|&0_gkar#RXfk;^DQl&zWg(to4_Mx*)=!Mm9p- z*4S6qrVuP6&ttf-fm;-RqWTmPpiq+eC7<}Bcx+RoJo7F4r((qJmWk%f_7vF~cU^S1 z2;RtQ51y=uP3$U*uudPG=1hY)=GYiW`t-FZ0)4{_R5&h5uxiwIE5dKV5PibV{Ye<~ zMQ4~C2YQA`{j{Y9rbDOCk)IhDC8&J&_Zm>5Syh%#j`51-Qqa~ul?Zp!$$rGY8GSXu z=YKr6DePiD&KO}5Z_A|-9mUk$An-^pJy*fd(Ay7>>(qO?Z%otbr`L3HC%mrrt*01Ae3b-h1|QYiDBSSV35}v zSggN6YdGzhTWsA+WN6S#YJ=%X^#{X%w@F|u5jEj)N1;J9l!fbMdjS3s5oN}@E z0qtJk0T!WBW(1N>b4a2SO?2Z?W|GWB%=Ekc{lZn&th?)q3O9``DGz-2Y@`CkI05O6 zweD8Vlf3;k&+o&}E7^`>WVWP_z#_Jnp)9_2nQgN*iW5NG@S>EKGEWqegbj(xQ8v)n z;*F>O>Oti|y0}M*E>OSrs>*AGa4b6ELp7<&@pkmZHN!B`W8oXH`XS9I3+_BqWPxZQ z`0M5irz0fx=#aRq4`5aQ`;c(X4e@|y-C9>>6YxZvlc2*Zq zHNQb`KH~Sqi*wW0&s7X*sv?Q~1pVMCz%E;lN3j>}8``d7KR0jyEa7uFz)BHIZF$!u z_e!+U&9URsP>%Vmhj_e?0e<)1&&$#YyxDD~R#s$j|52f~%hRz0lc(AnDJEe`@5n#; zr^gQYcLy)>1&zVSEd1H)aiR6Nr(^oV*FuFQ@kXF9rn~QTRJ(3M3*&;O!tEPd!&P5- z%U?rgQ$U{zm`O8c{ZmAVz*Sn@b_pW}M`3Ko`^;ByMoEc(=2)3q3Ep(I4I}g-zMf{4 zOh6Gpcq+@u-Rqd`K6&6h!F1=(wabGNQ2iMb51r^)eT2WbRDf4+l&U` zj{e~J&Gt`SSbi8uTs+@ZL;C$;n5|@n_HSNM*G*Drnx;RI?Qd0mVIU`S-?XPO_|V4? zR9Yrk2FfbOr|>h=qEEyZ+fqL_xxAmaOI-)&)o{zw7sE7{XBbR4r>%Hd64W^^Mnh># zf}6rMI}ju8aAJ8vTF&7=q3r~qSSkIqn|0@YS57g>;~AOVzL5>x;d-fdi~FhMC}oht z>~~r`UR2uBpr~#o#j9P)tz?HbtUx_z&Jc{;kDm+`lMb}k5x1Viv$CfxqXz~jVyHLp zJ7>84!xjUw?4fDF&h;4`=L35q4eU0KXX4wt8gOsrB1NgU@QELD7&jMipq3DrirJF= z{YQ*C?0+v-Ax27tVB|IH3Z{If4T9uPP1E(7IjlFo;&SE?5|x<`&=xrQmP5Wv8Kqwb z+y%5(2Y=?~Dhb{uq{&_kmbmbiP;0Y@2#7-L>Wy1tFqurr(!!HEhz8Wiv#h;n#h>sr(z71x1tu4OMIoLsrd2H;Ubl zYyHCuepEgt6c1QT8&tV z)c_}Ml6s}r5zlhQuI4TvtR@hIgRNPiw9LQE`c)b|{k9bbHl3c(W(A(Bzbzhs$@6+i z=NGP=@s*%_Zt-Y>u6MCTX#NyJ+f`cH_WPWO6RC2mv}pa7_&7xp75MI&D87jF8`VtF zskrU>Yy7$?JJ!i&bNDh__wJ+Es^Ba8W+%S1 zfd4caLq-d*Fsdd%G`5;qEUE=G(Y!)Vy4^oQnU-V@jFxp)dyuRp@Z-SQgm^pO-#ZIi z6rRyu;xGhao{SA%FdeSV3tU7>A^g}{<=QfmBGs}(<5#NB{8bJQ|DbZeUH_Rda_v5y!nWDB2tWh zYtN{Brf7uPu{_zEVsdqHw4LNE0l}cofl60fqF)g!WRIWNNia(b)qJW_j>eo6Wz$k( zKlwN^ZdO!NCZ(PwBRqn+72IN6ks_fLySGi}ezKt}vrjh1J5skO(cb&Rle%p%^ZnLI zcNE;U+YC-cGWAf&$H#XRgsP}aU0qt;Hf+mptb$(*`I&cnmweO#snea3(O)+Rc=6)+ zVp^*Rrd{!iT`?|#c4N}t_Rgos)uNI)9z~8=uJ0U0d+9{D8ZUk~atWD<>H9d+mGv0x zjMM|pyEjG~F?14lF=Zb;zr$&j`Jv7@Nt0H^OxP$5$gFf@J{f>K9HA=5`FEDsiJFht zNU}d)I5C}TT#&{;DH9OQqKL=P2A@2Z$8;sZM%@KvUTl}=saG=-Q#`rT@46X8#<od-es9)6fc;tb7xyd@y#n<}V0B-@Aqcgq{pKz8#A(! z0&r+SjGleZrW*=-fP=Y_bPn<>=_WRZZS1=Dw&^b|w}y!se7_ukci}wY_@M>{B=CjVjQ^Hk zEGnLTF)wNElht!tJUJEIB^gi9K|N|)p|r%dgB$F8oj)fT=Z7`;qnx{+fChiNa& zBWZaoMC!n&YmH%MT~&4pJq?DYOPX(Oqt+LO=FVi3hJEUoE#XrvW_v0z4Sm$%-~=S> z&y?zM^(Kk`DBdhm<}LO`9VaORJltA}R=9$kdh;zmXM}~n4$?q(0mi8X%2+T-4#39O z4W39j`C-y_o73mTiKi7(nK31K`EKRJR=|PO1}1|c3F;^;{b%zD$?k<>&Ur3LnD*QZ znih~D#(w&SmHS1))4QNZfr0ks8ybS#*%Wt$B&FO9qHdWQFx%_dV)&b3)A1LyupBhl zaaExiPNjV7OvQ3MCsa)KDSgko2pq&b@Fi50_mVMT*zI@pa)MmJxgwsZRFJ<4LhuJz zaNjANRdcj>|A!X8#j8$!_B3ODzQ#3 z=e}CFaZ;bs2Y#W$-1jW@!}OVZLy1okaH(2jsO?qbExb=FdFk(o#ix+FgPs~#^o&+h zbnO{iDy*y4ckIiKP(Gv-=>KZE5A(FawoeGm6u);fG!2BT@_83$1TJavfM?g@T;yG$ z>n2tmcJI(OCKG!w~it_mBwNAuxZl6iG-9&7Qv8=I>H&ca0YbbSWU zV4*n|mJm{Cmol@!2|+MQoZPOFdUa5^=7ApjK2pr(j*Pj?Tr}W*E&9a2YPDTde55gc zr*84oA?&;GhzYUwF@Kk(8xhu4bo*U)n(fnX{cBX6Xi1$ubN4rv?d|RU%WRZn@uYW{ zDt5fBk8q95R<8Ni!#9%OhR|ivDIAtciJ8AF@-`$Kv40v$icZ^lF9kL^uWCJBQbmNx zLG4Zapc&Kqe|Q3mHHP<&8Q!^kVXWO%)aB^;Jo z9mh2oSj)ZKkYb?fXZ(%sz-$5qc)QZF@puI9RhGeb)UUapc;hE|%oC3qYa2Cl+7{Pz@lHp#1A@1J=|k1PGLA%4rGcCSiy=7 z=IB9?XqZfV2hKZ351zmSN7JXbJ&rCoG(DFh2?o8KuP1vMDdtZZh}3lYSd0@E1|LRL z%$ar6=DdJw`Y_;=)s)EU%JzuL+R{3Pr3KH>NuDtp!uGkGEj!;n)W0)fBFQB6!4SP` zfH$%mp6mS9j2qIF2sQA7ua~sq$N2nrbBk5NGzT~D=?NTs0Xu%L=Hi6G_S_+%h<$Y^ z)Dx(u1!_HI_&Fn%<6T(VhpOg z$&A?S=wai9QS0Q+IXqO(w|4(PU}&_sZKz4_@MkePbVtVP-n~vm6ZY8fhPf6)%#&$} zH_sqEyu%EJ_%ukXx7C3qjExf~xfN2>krP8hANC}!VqQ7UW5^&xiw2r2+17l=uZVS# z8A(kxNxd(_>+-TEh;i*VSbk}pdcT??O-5_hdndj@;rC=psgOM(QesD&s4GX&itxFAXd{b>6}b_>{|0#5?uTEQO(xP{r313dmOUrCP}qd0iqfQMAMw zMKPC@JQq$WV?Gr^3M_T@_R4!A=7Dr~IAfIY+QoVvln?!r*l|nts%|0eovWc!q#U_v z^FhzMvt(FSI&7Kf4-RVVsiQaY89(m4UDHCviUwbyUYY{jrW~9D&cT7LhdA-U5)Dfx z0fA75Ms6V+b`B*wI^W)8+q*8Pr+rGBf)%YBT5r^1>M<%u2K#TY~m(2$2ymxd4qA!r75I4=%v== zfG)|?EpWYDc7N_VhQRQ7Go<(G+b4zcecR6M(Ks8+lw+Sa{f8Ou&o_4H5{k=MUW zRJy|t%W>fdSh-wEIN_dz*(gvEl#SisxEQ&zy~(&c25BI5+8OU>e@TPj25-q_9j~8q z((|qM?zj-lWzW9{dWQje7Y~AP4lB@^_&M%Y_=L2bEq|Qne`ND|RTA9mNoT*niK9to zK?!Fe;Zr#j??$yYt6yA)jdh94)K;Q*fkvZ{|D?+vPukFf_ngBphsm6K$%0*3%r7-g zxQAU?Kh5pT$2jc{7LJ~DVJk)P|7rRhbE7BMm9_l>GK1Q-_=&VPZtBpaaQ^RH0KunK zdfXv_h+$}skzx%`YzadNu!Z2D5^zh2wt`RP5zdP8C8zmBc7Hvd{sDn|!@@7D*-t~u zF+y~EFq{d0;&k?AK$LK9r}PU$86b8&XwJxI3+sgYO$!vuF$|_tJNNLUQP;=Oi2Bmg zw#+5~AFrZkvNT-du`^rVBL0zU6J-gjG*aKFoorP&kd*_9< zCt5(87jSBKMb_yA;$O7-kR3?@4uGF3P=C7DIN*ChZ^k+Q&H{)~WvWBjhfxVDOgNRQ z5DoHJs#uW%6}K)ZP?JqlElMLApA(eFKU>fN@ZSpb<~V;4gkTY+)awOqrE2xs`{&e- zA8-B$tZ%QI7;4hg{(B7ypgbh#BG0N}B!VUQ$?OQOO$2MQXq(~9p z2GU_O9sWBCM%n1#)*{c{orT|~w0jPlHD`H%URB~Q#-2I5lVJ>mT4QTBXF1iwp zh+afUSfDW@7x%lQD>$8sJkOyvy9P|3V91x}!tTF1_}}?4UvYrk z9HT((^>;w;|NFQdt0>Ammx&FF6O9Ny0Bg%+L2h&Zn&PC_!aecRZM*FYct)Po4XNtRBoBrz3(pNRV5)zpo1aWKB=0Pz0 zl6U*SB7TQs3u;~Q8T$#0IFoa_V(Jlb>ay$zp=P&Os)|23=< z===$F+oRXJbmo>$jjS$<{~D9;RAZ^iY>Yn0%x&zgSYVjK2S~_!lY^CIU9{rH#_U1= ze~nWbH)L!Fov2XQB2^Yqxbvj~iyONsbF#W6w;eUW=mfjg8jCl)v(7Yr{ck!0VCPm{ zExgk3PChGwhETbuTfHC2|1YngtLJ+@u0AGA1CWdS0#m}`Fk$%7WeInB*Vl2gB3Ihv z+B!eKo`r;9Ko&*}%jiHdaTHx^-nG8;{pZ!$y<2CkTZV4D+!uzSHR>hR!m352?UIjOy&z{_-?Fl;l>EK^#oLXr%o9 z8qL=a(6ke?-{V8rf*_$8l=N~*cwCK9sFya5wu6~QcGZ7L+8i1qMj<40LW0XY$Gox! zZP8zuDC!X}Vt~eaMty9C^k2=>!Fud|7kM~MFRCoqX5jqxr;BlruDW>~^=gMJhz&R* zMum+KNW&#WShY6jqMJdolN%@VBf2ySnP|(j9{q2g%*teGP^}L}qx$ zVbnw+3eywkbJM@>kt9a~QK_k!yNdqHRkMl-=2z-}<~Dru!|pXT{)C9wUWX*)ja+45g7E=PWRUTJG3Ti=17UTHl@lK0-W&U*ORodYg77^`F`CCxX(_? zLox7rqaisIib#?u6&QVVj=`We21+< z3ZZxudL?RLu!fF@7Y==M+Aw}`*=md5xGxkow|>`xhUBIycXFiff7Rx^?cB3uP7uU7 zkYGV%*i6!GAs$Q@zoWhoUVdF*%|w6w0N3YuNBZ7~Q#k5%J?gD9jF);DqA@A{vf59c z*-A3l4CmNtrbY(V4pAz4NJ{`o&gsVonu8| zSjnUkb@Y@L;u4a;E6M(eke0_vtMBR1m;yc>@h__<7lt!(@QSVE6b`Jl|I39OLbC}J z&`+o%Al!UtlLXOe{-8b20pKLWk4ZdCIYYTL*p1#BlvePrnMREe8$Wm^BvAv>l5QGD z8pwLXTHJh=QStTr)w>w?unat22$~BTw|5Zy# zP}B5+peeBpiwC;!UdRE5 zy60p>O+i%A%F)vAIm3Yah%-G~4N}bw7nYVrM#N!u{{9916G}mJsD``#Qd$|v8hKa9 z_Mt=j-sut5LAF!A_=Ej8{f2LV{5d)Q+iN1HbngJ@ICnyE!#8N6!nOxJoWu>MFK2nJ z+v{Cnuw_$Cy9{y~w1#UZ)GF*=H7&W|G1Q@nGzO&&7n%wU6I@vk!B5}^3M_61>P$un zQ*)sp+fJQmHKUzO_~K5x=#iRjV0+^R#MW1>-20=igT~PrG(L%wGN609lX=ZQFdYIRsST!eVS!g&goM9ojbpNy3zy& z+MY|WFi2tgYVVcEhAYCs?1U((CFpUQ`PG@&QA?-Y#qd-vo0!KWeLK@@QeegD;Rhs$ z;(`5IhV5rHo?K=^vkQhdqnUrA1hZay_C8D-+rQGFzxcFNMB#ikXKRV8|7*=e1VN9z zSMkfr%5u;taPY(B={4H%iqc z6qd3yNN*pm&uP6f_vxIAZ{6E4GDA*K8uGFvg) z6Vlqg?$R6^HlL`uZW16Sc*9iI_w^%!sFdtgi$m^{-ML*k1#&EBqSCE(zKZ#kFnos1 zrWD4odf67KAsBbKWY8V~6k%23yhf%@xLEQ+3O92V0RVC9 z*wzN^IToj8)$~aX)gMy^&ZyYvU=XnU?z^V{b#7WkSWb~iKIi=Wqq;v4JW@T@m)RW2GQv|t98KYJW zTEaz##3s(~7!-L9lerI}`WuN0texLXmNn%qnd0!@oL~lVIr*^`jP+X6H0@|ln%wOF zXwVwlanIJ}xV@xvFlQ#P%_!-(wRN<8qECj>PAvJ! zL|iISQF6K_(b%v+u_9W!oZ-D}rUBq=QI6!F`y7D+gpJFrtKKbHREhg(i_+39_4l2#JXN+u+VpXp>LRZ)jAj^=?+Pxg8HsWm8e&E>$eA z#VmFygCW#SJRv(I8>ais1BD@nXG^Vex$%&5omXI!2ZYmGh=h*5!22L--X2=hpGgh} z1L(1t96LPOeeRy#D1y!Ev>B%gPl(%>6ZMLBgm{zq2`^mu*YS$1Yq&;|!4lC24%(y= z1x2(4^kg=#85u`fE4G6hos)Hi1Jgq%kvaIBvf2Q`zXnh(0dNSE1$LUA$H!&1VINj^ z&Q4G1u(-5cflJcJo_x1_DVP?-{O5a=${2}>$7XsQtV+UPwZ!(T>VDjC(Q|fQ?Ho%e z9Vq(1vhH5U3h`e*8?93oS+vV;!ATpNA(&77<3v~CkP~OYl;*{~7nz&t=C`%ow5pEl zj0(&%aaPQ*l-C*d!xC$;MP~#d0#?sX_gB47gL0(7FZpr&2r-e++@by~kvMr}Z6)R4 z#6%NpTICk$b|8;}(Sa#Ql`Kq(0m0y~hZIz>bjEQJ7F| z+%Pe1^$=W!&DN|VMbjU-9?_(cmQ5# z-WW^&#d`iUf~#arQgj=`pKS|yETEUsCTMd@h`e%R<>a}2bXpZ_pQ8yvvFEDPzUXpk zjpH^nvLeXr(Ku7ON#6C3+bO^WbO}vNlJ?_5Bu?j4`r}DIYH~=Pnm=Ypau7rxa4595 zJirEkP?1fSrRneq-pYzBxXJ*Hnvm9wa!LdLy(hP1fOY$P3=zhJ7pc>bIWRw!7V5EM zGL)ZcF7VWt!36q43?0XEs##sB?Oh5vkOX})E8(Y4RL92Pl4~a`=Z?c9AGszT1LCxs zQ`%GT^sOi#@-;28b;Z7~lM3JQ`Xt8vuS-nH3yn8$*)dOp!rf?iZNpCZMrc+(;Q}aK z+c-SZOTW-a4z`jw6f3-*lJKVrQ5NZN=>l6~qoz8i3XLE+XA<|!X0I=C62sD#61tp? zBCsE_zli@%U&LFqrr~9loKSsB1mMMA>Um9y^S0EaF zDVil*Lit9K0GJ6a!ok^@EIJn@HUrevVld9@AZ2v$iC(E?00gS0%m@ea0y~cl`=+mh zi*u}$lJhSBWEAjHcJ-%E^Zo+4XyI*2N~#A ze;_)Su-eO;&LZs1X05*3wKsTJ4@GopAo-WIL*c!&(#) z0||V{As;%-S3AB#`d%>iN@pM~)H#fz*FWB;+Zb2BBg7TJp@Q*cW*UyB5+4nfu$lQc zv^NoNooR#6k_npA5cmn7_})B~GIsckR!pIww3T(PF&_pC*ATqEjK6+Zl`Aw*ADNTJVstP4av56uaf_s zxs*1mw|jI9f4CTpf#~l(de_5e&KbL7eA)J$bM|DgEw&+h_Ae3T@ayu*MfH^4S@1n* zYh!z&paLm?d@Y-Onc$G@5uO5#oi@lBUih_;HINAG^EMum*T?Q&*u#J2&WR&AJVeLr+NPcorHSSjzLZ3PV1x0B*g^Mj*zV~Cv|;#s>hyu;B-aHj#2q8-*W{ZAh!O)Z>FFc^{?CU~ z_BZ=zuoiP@hAS06z$UA8X+-a&rbM-wn5L78#tdXFxr|dP__;#Qz6qopw8y@!&J?#= zFB~P5MfF};OhOvQ$K>}9wPcuZBD&81g7sXx1tJfItRj81yl+S8WMk`KN{qse1CF}b zUs*9f@|yJC0|nQ7o(`Z@zz^ricoGQ{XS((-y*-LRL)QmLAeZ7J&u-;zF_+&kGhmzmq$?<8`bqZ>^@YJ*F>U-hOTX-LM$wq zbJ-A_*LsZX+uhtgHrJP@xRIv5?p6L4QI$3@ulv2N!BdjR)(>gpscmQ*_ba-FuL(t* zuC-v7SYLpUD3t=7XW+#&Ev_Z}qt~|6;a%zF!Ez?t_Y|t``)pl2TP%f@uQ~GxR%*Ct zO7E7S9pMSZ-MfM^x(3qfF=Ab2Oie0873vJhOb*tmp*ng#Z)DHwnnJE9b*Cgu^P%3; za7|MYmyJNWa7FTQA69lx`VtV9{=#(PF+*!=3e{q@brYk7LxFKHg zPJr%+JT+%CQhc~!GoA?1m>QUCXDfRSHUf>O7=>?;-!vswDbF!n7<4{7AE7_ekqaqo ze30t z^BCmD@**U7*dMe>tt5y7J6pZnC{D@MSH*vy06|`dZCUHyN?mShAnyF!;+GlX?7E4? z{i7YuRt&mk*;Y2!cJskpASsVjDls%}G$lAG*?Y0m{u(b_wqS#1GX;|!+@#tlq12hj zM`5HOMRLY~)_A?o^*TQy!CR+_(r9?pC3muXewycD} zm>>a<`1E!<(X>p-_*GhvY7%tL4Dj=F^iDt`;Yhxs;QhMmEV(tv&<;Db(F&q;mpjC$ z|FhfW2C*sQ_NpUcT`gNrq`gDAckIu!`U}kVyPQaDN9E9_@#`Fwya3LE+SKn+f|;o% zN-{O;#f&Xk=aRdTqxG(C{4^b1W4`WtT0+|8d&H;e-E+_^cWc7=TD(%GR>oKA;2aYr z)irwU+0B%4VnRH;Koc-g#PQ3=j;H$1fSJ3v@3^!;JRhMM>wB7xg8kTT#bjQee z8_6e%&O|GzTBfI;U^S zn?!wDh1eyQ{4D1AApaOxmYV$ISM`DC%DCgFyci53ks7YY{#`RC<2$1X?s~5WQk-6j^ZMe{NODK+M zui1VzdI(FI`U5FesGd>J6t(+Z!?!hVs(YcpU+fopg!P8`($=?g_68_$63Q~q;j;g> zz`}--%j#~5tlT0UyVatUgeG57o2vfMe>IyctTE!0(qyjw?$%MJFSF;FPWj%~+tFVg zK>k@r8wfZ78?dGzhZB^K8^Me<99uBN4eD>#LQsC(ge3-2F$55|=S}EgQHelI29y*B zh|+FUyEv=AUy_{ZTwvE)?zgqx`W6X>&VC)vSx)F1Hz{b>a2csq@WlB`YE8s zgJwu944i27gManxb2NxoKTOx!vT?tfPExf>`F(NHL>Wn6wKbbaE+hRd*6eH}Wz~>; z4znZv2z`bqrC8V7(jwwYTYQ=oKS&fkwH9?%kAU#?NBV&BZEJQAuZZD>q>^f5w)WFE zv#Y`#qrVxjNzqoB*(eI_N%;A~LmBCWb0tzBKeY_hdGg{QS5{cy`)>`os6bTl!blajG?Zc_s7~sm3Z3GYNH?6NE}cHaej9Ue~P>H(0jTQ=fGEd`6z?g91N?pPreQZG<~LAO%v9w>3Ak zzB&G#~wuFiHw)NK-Zb^G^) zZDC#oF%{sBwTLcDD433WWRIpa0ntk=l@IVr540Stz<9%=9PPDQ+Lg*;d#TWK+b0r4~WXPy_rI*Nd&fF zRGQoSW@+WjI*l3b#n4ZWX+0{G%c}(La;83&1VV(zByuiuEWm8@PugN9ZQ*CgQCN4Y zoE1!{Z-6FUcfSe!^&Ac^7s8?lazMp7UP+pq(zk)0vUMxq+v~3b2s_kTOHYJ_tvp9J z@GtAbO5E&U99=aM6oo@-Qrm~Y^UTM+60;(=LMD(kQk<9)d=un{RmMgxtvKa+vW>x^H9 zWg^F4m>9)^Mq;7PSL)PZwHSYI4;rx0X0RO@h!6#6le9?d8z1l=Vi~WtPH2b#|BL%h z_A>@F`BCckHMAMq^@^0*9Cst-#A{Sh=gT6M=UpQbZ>$BI)T%8p8MvueA1 zw=AQg6Z2=bWzhxZ!^FY&N~umve>$p_DXV$+JFl^9xP6}M42x%d?7X`6)y~Iw?NklQ zKz!kfIHsWjL0rb;1nH(Ho?vpY_IVe)74f1!ofPXaf^j}6d z+%cef^%o*M4K_Z6LYB545BQnpw-00>*n^ri4Vs zUlSnSe*6@0+DAz<@)W4~ZgD9x|Hg!=v^KwG09EM3VcAqm8XjUp_c@_O>`$w8L*MPV zMaJ@st7y1i3r~W)?_MubKnI;_6qg5V4X()?{-}z^7~&BEu;i z2L^G(wAV$|V~fgCT0os!GI-~7tBk$$Zq0$Z(^=wtIC3B$;4+Ih(3-P|a0b%`P)Kqp zF^{(kYHqo}XU?0JymRWXkDLovOqEXyH2(q{=_Wq09i} z;$zHrC(uNcwiM8GhBv_-aH6360vM~@vJ_t*h^G^s2YnJMhe?d&+nrEkl_!y1Mot8vN#ZRQ#eltT)jwGk}KgI-w^{ zunZg?bn0kCv6P_nu>s$WkEmNS!06Kh=xe-*DT5Wj@B*B8qi$DK2Azc$uYjr*`nD5T z$D-JNXdTRV%#E$bG8e#o0mMk!ivl>Zk>#fgMJBIc>NRW{>HzLKUr_2niyi&oErAIu z&Yw5YgJSdUGth}&F<`?OhFU5Bu-}Y)VDyo{{))iG04d>@!aPvqY5+lfqo7=s{wQQw zwg5M__r+>~`vU;v#sG>nl$yJ0q1gO-4t)3Z*V1#|FY^|fyPcect`H$ zkH`RxzKXwOm^@avsff=(xiRN!Edt}lD=NKENJz4MkgQPq+}v=n_ZOWWz@0rd0_6A$ zKt@VlV>|>7N-s6$88uzC5+S%IDp^Rl1P^MSjS z+D^pD#t@^NU>n~1kLsnna$C8*=V?k6P9RC6j`<+Rf|42eBr`)#AiypipyikOmp$DK z*!8Yc2>>%ww=wyk6{~>at`^S^g&?MNReP9L@$zAocg>h=6}KHajt~tivswpGvpE0K z`+z**Jx3tOHb#y(2WH*mLT7m@%xT?A;#9W#E?b0QcYSPn|8T)h9J9jq(z2;;%*Bdq za+#r>9AMvHp!<_KtRfA{E=_1(G<-9Pe_genv;y~k4Ab(8eT}rc)(VvJx_GC-$n0V_ z)J3Jaf!u?hB9f^)!+l-f^zCuU=>o!)2W}91l!`2Id4SpO`oO4ALQ3h3K4vqdLl%~ z@0RE!yJve(bSptcaF(99TfdyfPNo}JGZQ1fv6}po-c71wYF234JKHM`fJBc&C0a?VDjO!z(1vcs`=Wd>iPoSqQqL}o zkEDgrnyy-$ieZE#mCy&P@Q^VOoVUd$O7vze?DG-c2bL`L`m37r9&woKdsSLKP$i68 z8V#j)Rj&i`z=~PMP}

ECT}6X+`tl<@}6`;XwC8#kT_gw0Pk6OCSed{GxGljI}` z+b;=sLNx+KkIBr=DWdxM@oM82vYs_AX$wIZ)+v>5FN(+~v(P%}7g~}V#9s6Y3PSc7 zxH@oTKOJg-I~=ee<0SVrucuPY$)KU;LDUAtuk)rcw$x3uoZdyq6;U(I&EPw_J)u z&3m!&qASA~>fN0%y88vp(S=C~-2C@iM3b9jL+frhTCp-U+Pe%r7gzpXsAdhzm1gc^ zB)waDSAQgekgC|)$P~4b>EuiL`{umkf^hj$cA>?FbZ9W`@fG>*ojck3EyIji3zNo?up3E{Y?9}Yh(#`Uu%^KU9fXf1{3mESg1>C*eRgq7ubde?2NMEi6Tsy zb3^S+zGw{8&H$Q3p>2h0bw>w`M4}o=bd+1?dGK`V9SXg1et+!OaSEiiTS;GF?2#FLz>m zp4Kh;+@?TwLWnqj^lDopM@l`|VP;p11qGSr@u=~*o()!>|A;;Wq2(3;d)AI`Hv;A_ zjrWk7mWn0*bes{*+HwtS*Ib^a+H7jg#ATbiJXow|RKa{KA# z{n8HWx_O21&Q*Tt-3XPYH3R&}^c#-l7`(pGjpk2QG3%$rQ4?pVKDJqU{bn6_H*y?}2|cz=tj zRQr$?a{)bYq8Yali#UMnW;IlV$@txFN8lkTHu^3P%F!1#{)1#;57lr)JgYmi;bGi3q2`AcqkS^x7dQ5?m zI2yUWtsnf?w0(3bUexcEu)CG&5= zr)u#G7`-Kfasj45K%B~e|KR?5HsVpL84s`Fi!s244`cBMOT$Yjhs3V%9)ujHltQ5X z5<#lPOUpm^+pe?x0z{MNf5J>ZWH_GN(eBO+IdRG6M%hPvXA0h50Pi)+A>Z|422AFp$>f?^r+ zBIchd0%){?d1{Q0G){b8hq^GRh1vi|BZOjRTt^5cb) zCiS%km%yXlGlDW;w zm-vW=20K8&8u_nvC;^orP|_X`@H~!*NBVXJC7=}ON<2o=Cye+w zFM!@+tbol6^z_I7isS!^-T%Mf^u0h~n z6CkYCz~Pxfwo~{S*b4nC1$8S~LT?=|8zn|u&nyECFch9|h0jbizazCJMrYJ4;TJ94 z{<7xDyvXmndp8&x5$bhKW7PD~fw0#0Z`3G%N47IZw1?8m>_AuE)#~0>E=1Y&8>6vC zIgp(oTuF;L`XuW@ys!jnp%wtx<0hKz{~96D48@L|UA6n^;+s=_+dn0zR;sD^~LGH6B{3(Jy&&dFS-VGpS-a&rk`%Fr^l6 zu8+R&zWx08O9#X7P5|iu|1~GiO04GJ)!pLPn-BV&mOd{C7fve>k)9MxxP(6VJau$) z?$BCkjvHlWTao~(AgX~in@`vI6NV?Mwj_Wz9jF28QGsUp2||OakhHIu2NFowR@M!q z-Ruh?=ZUzlgR{+#RZf>+(c}~Nq4#5q)fHM~Ty-%^1@4hm2l*5TBvGB$Tl0K^xZE#a zAiidg?#9%FUu<#?F`AnMoY9mM^*=U@MhJj5)D&N*{-@@k*73hB2PsgLlCMr^K0<1P zA!a-bCsKT&?+5nAQycEg-i+B)x5rxd@jfiHX*{;+xNPw3dGOsFM8zHTJ|r#}B9 z_#mmY>nap6p?n@A^ZZCgHU4V4N}`~0zW`(EBNMhCDKqbOP=*ajPGRT>K4Dei0V~<) z){yaK-LI2Lbk=(|Z1Ru_i6|q(Px|gkBy$4Iz7(aI-=FkQu8Zf%G;>v2+0=`Q1m~UH zItVA4BHe#SDDjL|PBI9s`V>8foeNz1H$(|%mZ*bi9v zRa5_-F;L<=aJh#1yz59@hM;2Y%|fnieVs8ytsyg2Gt!NRT#h98;m?5%wvZV{*Kx;% z1OKzij}C!auUyBr`S9>LVtOLJd#n}IN(u`jr7#Rwuje?;geCmn}RWUc|O(bo-zus!Qi(W zObKmXz**)0vNAVV;3X1aFytX7XW>_^w!12={Z)W4f(}lq?TpQf8_Ifif6@QksY3O| zI1=I9ln`z+LpoUcGt1nmTaj{)tMp3Tee&Nnv?>Wb&cc59v{9|j(y|4JF`OVsiDame zq>d#pB#LrzsEu%F5o1ea;3pri4nY>xMD%9(RgZJHF8vp|&5akzBq&xMY(!3kOAGEq znsdKJe>1+T^G$PWsfBt3wby~rZV14#D+RLDJSFF>gOM;jrQB*Jsrr7~i>!EMXYRWy zw`~ciF@4;M>oQbiQ|C=LHwHsG8ejKrFsbiHp#`Yb@pm2Skn_ArAJ`{g3s>z9zX{g&oq z)p)wRWg)k(zv<7O=)>|Y4MVQyb(@A2oKD6CoI9i8Q(mJK&1Tk}Ss}KZ>Cs|~so=}{ z5Fz#h691M_b{h7Uy*D{)_gwrSk&?-d8aGqL!@Uq)3X;xM7Jt&;pDPkmMhYi`Tz<%V zPn0(ys!kGQ>kpnG^J&O~`ljb&i1eiWp^giW)hX>D%=@<12Q*#T1@;VVYe7f0RYr1{ zXg75f7msgSapEUBPc#|pj5E7Wv~O#y1tT={Q9O?;__))KX`*rRb>#G%UA@lu63Mn( zrP?SSMVnCU#i)}ISKoJaOuDx$VZA>~WllaHhxNp&j}E`vgkyv=!-)A{rW;pjaZ*4xVe!iC|IPe!%C0KbyFq` zTeVs_sLdh@lsNdn=QC4_ELJ8K`a1>^rB&D*NhssZkF>|qumS`(m-e$Ls~#o%1pStg zm&6D4Rj!Pp>ArY$LW8X##&$+ODzNAehO@Qx#7ar^ID8tf|2y%_^^7-dlwXaiVW0u zxG%`4R|&CWc3JYt#P{v19n4;TWWl_%^82sYlqXy!f;l@I#GHSqah)K^Kf2d>BQ(vj z^xm6Qln3R_+cgy)3%|cv;*!9Lyth?lxDhF$WWQ!rPTT%ca(3CV3?x7M+L!k=LuKsL zaYA;!yKCWMamRh=2UeNm_|h)vYeMQ z7BW(ee9?FLX=mnAtMX1lTc>^_f)LJZU3lXnZLVYX282rm2mN59sDRcaVLwyBDd7CV zgA|grB_HLIbDFogpj$5*(fGJrUSlb`Y2kKOGqoj8+>%@g>`;Ttp3cr@Y|%QgoZeE9I^#693%=rVkV9PDT}PGf zjf3EGef*94EODSTf3qYU^3A?QmfY_uRd+FF|ND`hyhs(ggovw!HN|sr_y$=&i1~ii zTKX%$XL7)&RooB4sPz;j_6hW(9U)GE4aO)M-X9lQPHn^JM3f#mLYMW)h+N<>SIItk zcl)9dW%m<}WF+71vz>J({8XIaJ<1qcynyVHaa8>6*D16SKH9^vE(<=p9GCeyvC)*F zQex-bn}!)3IoAxAcN^@C#lPHD$1Y|$Z|#=BpzZ?Dl|J~tAr$ON&yK{`#w`$53?Hi3<(Vw@60ve4!6%9i_u79CCm0V9ZEveiXK?5D{ z_=&PLIhg6oq8otF3O?^uu1=~J8pvf=ID1IZCK8*kwP0knFpPPPFE$UCa8`Y<)5tts zLAgAUKwT}=k;=&{g)-bHz>x5jVlFLl=(=L_UdkW~CcOwsmQ(hseTRQN=JK1< z#;}t6$JR-d30>R^HLIAqmo?x#8VBU76TjqRcCvMF1bh{tPp52P-Ey{O<3Pu6d=%y9 z6z!@9D+g6Z_T*Evs6zB--3cP$l@2c8QNA*j%PpT&g{Vy zhBZBry)55jMLEin54l;YjE?BZka>A@zOn2^8DvJwF1YyES0xUN=1VVbHuhe6^g28I zIbCPIRU~)DRVYyG-d=n@r-NxewT1VIcpB%uQ+89a?1RzzVvQaoY-z`VT|l@8aOx0MW1BYb`W9){m?d7T1V ze9O-mBXr3Gk)A(l9mdLM20s{6@K$Sj9pwC2-a1m5s}!ad;aXX(xAy-@OB-_+)hQjf zsKDdsZ{q2SrPnYIxW!HJ}$U2yn568htJ0G1qf5{w?ZX{=wIqYn~O@v zR&myr!igmH%0YHU16lazv2^et@b{od2AC+vit_=p)K4#9AoDnB;_y23u^iIFtb-|p z+Qj|>WZE}R2WA_C*gR=FH69$S_#_HRe+L4};{_D|5N=s&82+2UuLP&~tylk6NHnlQ zepju_{e4d5nz2wuu$}ZWYh{!2==}#VPI;bGad%>rcYy#$ti@O8V5{hP?0YC?pFR=7 z6w-fVW~Ku#sq-}ZEYT)AjVazpXGf3(MOzFm0y1$RHSkZDkst%2hsZH3^QgxCZzTX- zcYjFxK>|uugFNtC`SM!-Kg}l&XhOy$`2W&;(A6BbE&#>Ds0&J0)rtAb$8Y`cak3aK z!2^&Y7?PT={UC*jLb2;mGX3bFK%c#jegpzM00K84LNzN?xvD|OiQwsZ4#^wT8pt&oY^7?V+jKENcao^3EVVEc40hq60=3YILg#v(JllW@-kGBB)@<-T! zp{oP|<9wm%2LunmI|90fO*V#|VBlGx5F^sS>i;lLgJSMV)z1KZTLBvYfzn3?$ipMm zj1i6){{Z;qL3snRh?asPr>O|ggfA46|4%w_pqQ_+rpUuEUxQ-a@YF)|k*omdbf~No zLGgxuR1>UVJOy|I2FA&g`$z^wuF?d`wkda>bQs4Ypb%+33~T(uoB_bRk6i8qig_z8 z6hy#_p8pv32*}%~{{R>|0G~DCUBZ`JZ8$Ul5AYR znph;^eInF~sx&y^#pV)+Ux57PNur+~1<2{+N2OIn!}*glKnq-7dyAvN79lD;uqF}Oey7ns zu5|HvDwS60VaC$06aks-H7Zl}rc1ja$o4Prk8q`wv#&S zIgj&Vlo{}uTU3fY9O1kRMBA0h2q@2OLk39&^1l9%aerzU(-3%P$(B-$)|%!5?q9_V z#yA-;Qjll5|# zPEK%CGe%$IG!>UY6hp6{tb_6`=gTK=P~T@Bl}vpZuCbVuw*A!Zxy}G6t&@0uLBdD< z>ffXQ7}fbR3^v+FL-Nb+8EOJ!3Yia(NDzh>-ovKIlbJNI05|;s5BF%lxDuY|X)vA- zx-Q%>W+_KeB}#R~^Beu6)t!&NDo%s?$uyASO7hK^mgNY%!8ewWIj*v@Y47GTEjVRHvovvSc#G zJIfz0xxvxrpC)|8iqcVk`$S6D%UW>Z^6W3H5H%}DW=lOC{UkK zzmLkH$ul2V8^k}98_KfOlgcejaP-j^v-5P-a3${B^NAL$<-Hvsra3Ql z_|b;MXQZFU&E)~nXWg>cfxl;jZBP?Do{Z+Jdq zR~oJ}n;t=ar6oDERPcduu8>*tj5R4D2C?lYd26MqE;{iDs&}zS`?s%J_EWV)EjR6y zd1p9{Ra3P*&whsdFmBg^J9JeMFA10UwJ=$=zChS`jNUa|A@xQBL>nJ06>;9IT?3!5 z=@C-oD=O>gEcWLZh460b_)Z+X{6pBZ(q50JY|PfAG#*EksD)Wk zk!bwbMN$_dyCqQq#y%<p8O%>3ASck-Ac!;i~ zX4`C4dwo7gm#q_wQGqmweQ{zhTPfnii5cfgI{eFzg;Qi&F)nSgm-b!zR@~p?4O-6U zNRonquI1=vq4j8+uxoIT!*hpwN-Vtuw{o~y8{oyrWCeaoe7 zF|Oz2!xboP6<;gfU|^Qb$8b>xSDL@h(srStJC6{Ucoju(hg993H4Sgo`+)_o>2PLD zSEl`7$M<^IWJq;(>h5ElKO?%K~!I`Lk9c!rEoV72}69X)ldS25} z%U<$sPhrRFl8`*SV~>F6*iY+8LZe*yq=v>IE7bI+L_l|fCAhV(YpKw#7%y_+CssFv zfkK<7O4M@OQeGzWWytvsE~mXc_Vrlh_{`E|6Fq^;7ZNd)qRR!v#_(9&_f;0}-c04` zZSZ)jo)*|60ZJk)`aOnfR1pHFjtVz$JkaD~q$Am}_v!DAaajzmy9ZITnC6JP47=P^ z0*)!>NJ!rFL^skPhtVYpVUBLuXCj8XQURB!hB88MO)=x`_nnvJ0-mPkRu=QR{Wd^2 zjo0&A{=|h_9dyU^*5AMzo~t@Td zKE*s}n*L(=%;6_Z_SOM?WkASy>5q)cfk4<&&n~Bp7q>p!#F&C|U?9u6>8uV`>1CB@ zae;d3o8-};C4PshFB(X12wt&}fd9yli9|$`em-@PTSLTE+8(vUtuX#m@9CCHm`L8QPf~ntUZi^!i6%&Fj2PEh*Z(Q(Ew-3|;r~AVOQR_wT1x1Y@!dzaO&4Kbu!8 z@nZdTnUP7Xsx7E9k7X5|XWw{MAoPmy>a~s6gTeGSxX))J0^e=lu}1X4S7&1ugDjeQ zWinRKjwlwy7y}Z&KUH~!!#2UFkE?|qDf>p6sd=clZE4}Pv28M$KU0-l#iu|)A07id zyBR}1t1`=k$-}ixPqz`3Wjg6zALlu=j=Kz_dkl`Mzlr_6J;P=;0p)L>sBe5fGE4lx zk;AoqtP=*--;Ss)oO!|ES~ZQj!W?` zNr7bk^`w~Q>OBYiEkP&8f_M*cXq>8XSy!_+-XZjpe0O3)wpmwq4$Q^#tCBN0!o5~Q8 z&%Ys6a$#&8MoQ3c6IPsEFl6!u{Tj#(do5 z%@qmp&G1yn7u}B&#VTqNxc-FQr~$TI)+tUnNtTnH)(baoo;tW@-lWLmnGZ&@#4F}2 ztUuqnOHj~>tMbIW3^9v?1Q}=@WX+wj3+$G1%n$JxrJnc z49Ip{4jB25i8g|{L1=$&3 z#Lv4ZbC*VWQ`Za4NDv(O7!0WZM_(t}OQj=PB7iZvBO zqRb{AVy-Gzv>^Y9T%9~d%U}pC*S3))`5PniB#HOZS~yp;mr7kO(rmh^IyfW+;CWOu zuaeb8!zE=3N0dy3Xc=d9Ms|1t*_E4A(lq;@*CpYtBSqQTcZz62Wf+a#@8o_f+wI8} z9iYfKt0)bAcI(Vh7&N4iG*LUD*PZtYRCAM zp`ky%x8xU6!;ibYWqRS!iNepCsRjRI3iXV7flFvxxU`}r z33@Y1IG$TR|HC?O;5gU`l2PTxlIxB|`4KBA;zNR^ZE`_F9HjkQtYw)@j%g}ns*VAd z&4agN0|Q z_+@c-RMsj8@Tc=`+=PF!^1X;CT#izbLT`!P{?SdGH*RJB{zCQij)hn%WGrB1;G_2G zpQmEVx!NLZ|7lzzGth{JEly)jlk%y*!G+9I~#uA|Q-JM&cRTy!LH znl=c6_f+W)ciuHH#Wh8zaoV|1k?dFwqt-}L8n_2ZSA0HX+fEK=WWG5fp10TyZ|=$Y zbW7FW>ZVl9WIV5nUmic{8;2WRe?JROI_5}xa>>*U2hLzt{TV9pguV4(<;r#&2(r=@ z1gT-pgEe-TFgH$2#bzq9xc_zG$agk_&)NxHs#E4nk*#j99HqD@ZS0L_Sz;JOa7jy$ zUplchK8JuBnD4`Y&@TZPbxlC%+;1jQfibKF!QoAu917)ro3FCP=_`%nl}Zs_0m+ zCH6elj=(d^D)WuuOh095+k4eHw2L#|wl7*>#c9tGS|MJEXIo9J4i%z8LzE@Q1fdx* z^{H$Nafc@Tew;Wh3R87C8k%aC&B+QJ#PKgF;=Q4)A!rMAd+(-q6>3-f3y@@7&SU~j zbc4tm!tJo=S_@R)q_b@m+>^@0K706do2<*o|DjC&BD(c+c((SLV&n_w+s+qg?bLG| zIDXvgudM>au_o~P!!IhDoUkGw?!Bbd!H0o6F>(YjofTY_Ay}f2HWV zEh*L0v&%0zuq@;%2K<*PD-7=b(Kukvu?4-a?yyGe2ohc%bAOjpZKE&S=He@B3IY?p zF$tu*DpV~4wQTQTQF=QW(hMAk#B6zHu9UO??(QAN@%9*#{OLz?y)!mk$MsNMV$wyE%mkWpSb5D z9j?OlsE&u30LRQAP{F|*Fx=l2y#vD#{t%w&$OFCdGZ;!jI zmYeCG$Q=DQb6oNbmfq0?sjqObdtDmm2S>c7H`3cGlub)dLdeIr!MmR(RwIRyj#dtq zrtmXpCS()$55iHNTIKjBd8hn-m+krUWiztbVpqC~*AHg+Pzbse#NjR?d3F>KXM0IA z2&4V`8@SWC0{O`pi=5DYy^{7{YGr>x@t>a@?=Vg%5Nv(i?WJOvM|6uJ15&^|NL0rJ zFnz13Bo6fR7OsE7wG{I6a09vTO7ss7r2b#Nnc`MBV3w9l2{0QnCJUd=KFUByf*SbSq+t$SP%~EjL>Q7O8Lsyr9Mzl319{8eZ8FMq8tK#URVXZXevH@GH{SP*5n zJKDigVRMpdx&j(WTQ=Z{9X|)6Y4;H}o(NdZJK$LmQjOlvQmN0w$r&}*9VI64G_P$W zcAwIzT{t_lZpVyZOtZyqo?r4U_`=o5491Vq%qg zd6DO{w^+S0!#Ngv-=&6iy;Z)+d{uloh^F;I?bP`yX$7|EntY&yGDWobC~pX&HcQ{$@*eD62M^EGe>QGg^wOXS{;R z!2(nc@)%PVCNMT0w@CiS9#yHI_;UPD`<;VWo-fS1X^XnG%x@Jmo~Z59vI~P8utxJo zo^~yc-m8NgegD1#IMk+=6%G@@2IL z8oQ0LRs3)efb5Q1*4%%PrRurR1>Rm|n*Rdj+%W?%*41c58a@ozKF$ygx@%pTv{#xj zIznHTNx{86vos)pzfJ~VLm&i;pPvImAiVds&w&0ZmKI3zts~3K2R%+j))Qa|5-cos zam9KE#v<~jg)3CsE?~DZE3dWapFYL)-`%SLfj{<=H?ciZqzuh<78nY$z|8P0ZR~xZ zuJL6x<@skb1;xxkk(k4O;IE=!;IC}R?L{BKmq5WY8_cJ{Bq0Xx*ML+K{n`uLhboj; zmL030!$8BN412lpd>L!w)dJ08GT{I#wo1b{k zH3^FT-}isS;oal?NMe+|BY%n93Zoyl&IydU8eTwfn_vp>%6Js^v$mFaRNX`>HZ zSHzxvVNuiWn><#8Yi(@}T&aK+ED7h%p;@FcWX_Y^v}ZOi4K9I2Ome_==Bzc71V*Z- zy$vT*_SD3$=ihTy>J(WwFy%z5nH-qx)ymaRln1fjQ^Um zJ+!a|_~pkS_ZkGVyA=(}(b>sKImXnfl8+-a90C}Z4E^!#KocPrLdPek~!lX{$p4 znZW04hh{6q$qV1p+yIT;kQQn{5A7*~=2ORt;GqyT;K>%z6`sUdq!ie}w2PMKU0@Ay*F>KXM z+d7K5q-yE3H;$gkAA9fC8%|rpm@+SNuqza>KZ7^yD{h5e3^W!7b_Y-b3q(4d3nY_y zs^N4Ks|f81RAr1tj}?+Vc@YkLhp-KKFMgqnx?@45*^LQUVQ;BmAfG=eTz zFZVv)T!HDc`eVAfQ-Of(U?nsh$iWnId~xO|$SG)B;oji#)B?39hzB#{bJ8WT^ZiE#XgtyA!w^p-_H7+W|eah`QHg++#u0$Yb665-F|N`{(I)y0#IAu zU%0|#d%XA$!Ar)$$J)15F+QU0?r0xoJ6~eGia|>_S&anemj15HVkLG_vJe z3Xzl~|I~dvEBAY;YxkA5`I)KvANc~fvU?_XD8-(K7CxP)4$ltCD_37o+j^KYCWnMVOFF@H@fOkzI1Dt(Y4 zKu{vQU9&+tI$9w4L{1#^T9o5(Bf#iSWoF4dMi^2^&(^!t~d8Zqofho5BY-)~S& z@5W)rh;cBf<`-jqK|jK?%8)WXTl30_S~c2=2GM|+5w^VV@WkM%nR@7~^Nw*HL+cIyBi&F<1)^B+qw;C0JLj$$xr zk4=zqGoGXD#i^0I*fSfzb=?68_IJkK&BK4n3jQy~-ZChzuIcv<7TgDdI|P^D!DY}O zg9q23L4&));1=8lhhV{iJ0!Tf6P)0#XOdjk{oK#{;XS8{qBd2)?7i3O)!qO8^;-04 z{M1>0$qr>Kq@OGL*0hk_@E@ zR#_N(PchRVw{dTcfxrF)C|dJNc!Z0+mHXf;nkH?g@IbHW_PdQkjK4`ki6O zMqw2O2nQa>*tLaJRV3pcV|g?hUJOnXYiIS{H#c@VnR+NPu$AI$ekiNg_pb?Ev~x^i zerp&B`t;s9&@))@VSdYJ-+#~Ld8vNXzro`fKg>rt9F-}ySO6Xz%i-EC2*o8@v5G_C z>P-SH5X32V%JtWe!b(z@Uu!dA0}(OE=ujYMlt_7l$*kW)7Pmfq63F{5!GPf1zC%3s zVCL*??&c&po-bcCW+ltD;KEbBm+Eya*fi{(Xq5k(2V>@0@eHR=Bk({OPL?_Vg5DRm z?jJ`C8*`NbK6-SNG4n)yLD?xvX170+09dIYOfCRsIHyXp9v7s#$Q9Q*uZ7kEjXNlap+Ue0I3l*ccoc;{^Y8G` z%(UfSlI5$cp<|I8^i+yh&+`ilU44C04~!&Tnn3Y*x%BvWswdH#Qs@aGm5fPp51JM4 zN^CGPZ_O@=UKa50wXeaY8l>!_@n3rIl8hBbqvl(ECem%i4~*S$A>gHhN-=Vt{c;9iGrKmn|485}C1-Zs z%23ce7?{AKg?=a(|RPZPU^=QXc-2XEs-YOkjt7F~M@7S)V&6262~ zRPX^%6YU$Hd;~*TAoo;r+PQ`Dq;13$OrhW{8=@$x$5*Jv= z#fL}QCL@Vi%rpT})6+;SLBX7G*g5jfyly(BTl~k0l+0UG#78HN;F@>}(^W?<>K6jK=WZH-( zevGG!U6?S$-r8dh%GfP~c28)Kn{Zk2I=fbg(DW+0T8?2s=cfpt($4|p818VL5yuji zZ)TV(y;q>4Oo94)2EgDe{bjuVzX^gL{8t$Yr3eVWs;XMJ&>*JChWl%8ba^;x2Juri z0g2i?-ShMAmEjY2IN1}m75<1Lr)*JG9dKbHLf^O2l{wR?R{gdsb!#w+2?{#6i8Vqh ze8ETSqB^EcpoM}$_^ku1w@;MBo|JlZX_4}v>f4`0S)D$?<0n#R(aDv5QQ0@)%e$AC zLcjI8s)0LmVFd!W2v>#JuX`tGy%W3(D{4T_)5^PZY(&q#c15>HRFg$k&9|*Mb}pB75eQ zzbz-;2uF-|D`}NQLoPnxUHMVAn2ciX;iceoO!ZcbfR?MKKcz&#SW()Ng=}6WaoPf+ zW9wuB5sTnJ5=TjYnoFBphL$g&JFw1Tu~bmlMi;go>qls0AhL|;Skvo5r?pRTm-}NXAZv8*G zBh+^0DPxbJ)#tAqWXHaS3jo;=THafSkIL$^VtRqr(n^MhrkXSNL9Bi|#f*6ppmb8(crtZB*=2kl^*awoc|Kpcm4WqSO> z$i7~hAI8B^=tQ$@F{jH9%I{v8SsuE*pF(#%>lsLeDK@ocrlQ+;SUFE=yXHTllh@?u ze+yBH(cXQfEcqY|6{kd_Tc#l&i$YSSCb}(dYPVo((+EiB?a5RF60lw;6$VQixq3Z0 zut3XSvEy|rKm1a8Z8%)=DXG-J6j2hXZ+)6xs?5LNZV7>xSyP8nbKdF!Em?o^EI;@m zN~oeiA}9EVxPxXgjsc==uYfg}vQhbx9Y5xe3L3^3H?hlV{X?6bW#?ieNqDh zRoGwObhOTRJjxCJ6A=)>=;#o?J6uB*5b&H^T#O)>T$q~+GYFQrDV32?u~b#buV3%d zq-0UKVHCVUc^*h&NSfUSdj3s79aB06B|%1;vA&fWuc>K)5qSONl!reeNa_O`{?bMi z{tt?xIKV-GYp-8}Tm+{1)s@SJCMC7RoE`M3uDLsI|0zQSh`wjzMe{1Fy;;u-45R?d z-It#z<@()p(m+8*3k^I{7ud?vQKRF!I)tyGEqQ>&%>*)AKBRkTx)`ImuxZ!VN00pUP>2;RSy@~Nd z0|WDfqm&f4aE09xYp%b|Zu71>{Sg^{qreoB;aAo_X^-jxC>VW_7>*mdLgS2k=qGnr zws8Jpx9-WJ9+2YGKFSCEIldqn5JR0(@QxhI6W?P{m&J-R)4%AJ3H*RZBV;hWcYWKi ztkRC|u<}eIO?Tkk%|I(p41dh_->IgB03(L=i)anORob$W+oz%cy2BJ}e%$XlVfY?) zI}FnG+EV-iY+s@4sf{HoLCwwQ%Jy=7bYtG@$5-1;i@$S6LsV2|nn`a8p{^CRyZxK^ zwI3a~SFFlTFbX%%#=9UPjTQ6YR*gCHU}4N9>++6quDCw~uvUl7zG7|dfqdB%ye)^Z zAp1gR$sF*3w73DSIqRpNZ!% z;pnx{T==tfpV5)~hb3^)-^Yp-jmE)}_epb*xi7H)D*nJI_zC%$O)yec&(3*y`=d=y zD3|wLmhB6p)x>L%(P$EtRDs9JlJ&6t3#GroU6nR0f88t!deYBb<;Ks&r&&xdAoNys zgFm?mD?o5naQT?k?$D3=$q5UsG`^F+dA`S_>WPxP2~v1~SGXSiR$rX4Q8aBODW-PA zDD)lqI<`HnBy8XP!{vk5Hj?7s)rt%-_?hwe8+j@6v+v9R&N8 zz={M&A>xN@u=T9;XixW`yArx3G{a}C#;RvB=UO0??D;XeDTep2c~`;0ZXedEB)d}z zNGy0pT^mZ^hhF%bwprF*2wnj0o=Boj03E~A7+F_Dg3;p?vZyWd-x#;AnGr(;Hw>-6 zs*B_QFA@^E2vReJe~1+w!Im)qB!N{H=VUDXy85UDQ;-dU0m5QP+|fu$5XpimcYeH; zSgCBM`ZL9U*1FhN$TGfE^7D8b&wDC+!StY8|9A8()cIqmp;g%^_xTsN3 zp=EZ_PRf%vps9;og?(|hX^bS5<*fzt07FKSKFf=j0o$|qEPPY^s(aeP_c?f&KgN=O9lRa#1FF1=3bd-H0>plG^>;^*;!*7-52Ak5nOdw4kE z3u!nu*`CB`NnH^Kb>Hl-1rZSIo&Ay#j_U1#dgw|EC1=X!vQ*%i%n@^pyAoX-6SJ&ZP=?OT5ggnlEV#B}Q z4WdcXh(3yIB0>SSsOG4Y^!RQKBo1t*9GP6rmCbGH;vBTc1@o9BaLYu-NH~Ipphx5a zDbL6DO$cz~VOLR(EVPy|){Q`XSTK1O6Iu_A6a+Q4^BXL_u5JRQ4wu@@itYA&89x+G zG_cp%h`YT@H9qyH19JuXF$^&5qMvV5z%}u})Oi%$6&Eb>=km_EII-QI=i=s}#P}n& z&@65bvm&2~a`$AC^QHm)H|CuC|IYvdWYC0yx8?KJb*3;dH@NB7ZK%PJOVXZekn6_a!mG4v6f>#S?a1h4wttoe_P6(lrQ`0?)@zEd9?XMuZC8)YV5yR$@ zCJoyt-k}9ZB4+uacmMOP#ROc2xXl-uSIoEOtnc!9z-daxltTznhvc! zJfhC48hUm{;jEQ9=*E23S=ZsJZ)_%hjS1BWitUZ(kNkzu>}~Yn@S zy#jh$-5Jim5aCEueVaJfdcj_(d-hi;)X)lwcWYi%%?hQlCz2e0b@O;{$n3G<55zsl z`#@>Aj#6K5knHCl7&ulGQm(kBzKftNcJk|5>CIuSXg}HT3DD$qtMXm_(fvEp@3_A` zT$JbsNU=jEXLn%Ql&P%ODz-IP&eCUsvSdF;Q###6qv@tcl+<88vWxlc-UqENxrNR zgmdM8!HyLeN7pCVGeq8Hzn~5dVvhGx zeb*>*xEo?8ToUxb4BR!&XHC`-etFMMHHYp*rzwH%8JOn%>ln++XACA{8-AZ!V2fk8 zT0MF<5eVXcd@gN=qQQ_#8ZEMu_(2%S_3L>`t$#^8Z=33up}qpajYcZ@AL1gO!{Z>W zcePz(9)+MU|EMxvQwBKtTVW%GnOh5mP*S76W)NbbTP%zB&e}xHQS=dOk}jCCB9(^j z^{POOtrHogXiJQEq=(*)_RHlBGQ+$wE^>x9Gx$zL++sP>ec33cmY@^U-&Is>85ZyY zG+!t=cl?OIi7q+9h*ja>;u2JoM}2shZ#*OTH$(Ve-=V#BK|3mSZxO-=OlfEtpa;Tk z66FPuI@ZvxKVLFjR&uKRLHxX)P=#ZG9~#)r=2%Fsd8W|3Z_&BjytV~DeDnmXf{2QP zV0W%~=xKsD@R$meFn#|6J`^-JHondCyqCM7uc9Hz>C4(eWIy$iD#;4DuvgW2({Oq8 z)V*8JjSTm)uCF64;9E{-?({v!Q6%8Up67XON`P(H7q3X#gi#Z9)4O_lWdbIjFPP++ z^o$YZeJ(%ZzV2Adh!+6D_f2UI)4&j0>{nyZ+RxIU;T;qz+=ICM-{dtq%iH&#gq5Jl z!*?;*y>LhXJ0ohQ%B*|TO=~P2o0r_q(LRc&XNd;tpX$$FkN%(UZkh0ER^0kMv|$BH zDyVtlK_xU{`*&t7iXg7n&>BtSlQ|`G24UC>J;sJkn3(FTd-=IgoD`w2MBqL6)>ryj z1e1e^&hj1|%lteF!|(PyxHqV&9iBE!4*8z6z6db7hKSU9koSdrTfeuQRu)n)O=QW? z(_6Dxkikh^Bw{Ko7;RSlPBWoaLAlWA%QV&Eg4G?M) z2U!Ce(USc)ux4eka-nFVbSOj??CSZOzx!!>0k!KQ9<f||!f;gH zsgqMC7}rcH=4nX<@ymFkpjV94Gd9kXNiV)Be}{3UR%N#e8dC!^G`R1R2K527V860M zq46_1s#)DQfe`_I{;p;9Qlp`NyGH-pmd|kfzuidEFeLPflD{XwJ4{GNLVbSLhRR@p zX1nmm8%L293UWE%P#p7sY~w*vJd$O>(@9>K;zQG2Km8UD_o3bQC=~+)hfDUjgSN$M zIr7=b)RfsttRZ`?-s_uLVF`~NCq7J)TvUn{rS=rQ zi%UE^V{*tKZq#Q-myPgm_VfT$7pYC-_)q5lE$Xe(GyIEb(d@keu38>PfQ#%1r|YLS zPE$E=j2}6@6+r9y{!vUOQrC|5V}upaZBYpFwwt3TfNGu+`>A3L6obplP^C03pUwF+ z>$3H)&{QNcAJ%g<;{cI@XNEPc^jl0kCV`404| z{YtZxSZ~;XT?R=o3Z(c%X@BZ-U^PKkJMg#_0UpD|}X| z@Bs)th1VKYI7A%9y9B5A>;%n%2pIqm8#nj#OZ36<{dX!DqHDcyqwdx@P_Su>8K_je11*lQ#tNRb0{uvEFl z=<#?klH_Q?5WB=PkCOH4C&ExRP2G3b85`wvo6UFTJ1a1%udYL5KnyWGgG?uT4LWgt(J4>zA_=QoLX~FA5LN59hDR&cPNufn zx;-08?Op2@=mYHnm^H!|)5M8n&-rs&G~L)omGm3m555ehkly6X3=&F)*mmu6A7J5B z1WWvo+MPG2SeS{I>`5-icKWeBl`%w$8P?M@nr6IGvy#GJi!h*GjCyQ-z;e|zFgK!g zm@-a$Ai-^4$&Yg0&l4JPWI8?Bn!;s+-E#M(iU>wCVp40$lX2wkiG15@k_h;2;E~>8 zbIjwR#ewOl?**_`AZIpK-$GZT;)iV;uff((bMs3I`xA~xZEqZEou=-GIvJx!^>63e z|7aLcicE=O<5abpzpAx0Fh!V6aB(1%fJF|(bu18v|J&^RXpz6~op*&$LSwrAS61K; z>Hu%IOPnLgrab+GH}*lW0rYR1kMwWq45HgaGJ0wi8;O@)%==%oaQ}Q!XxADgY?l`Q zj*nNO7S6t>XLZy_Ifuj&+5mgJpSz0bP}MDZ*ersdbpHO=Cbfu$*zvr#qp59pvak4J zy_17Po>-h!UX}MKR%=+s=XRQHg}JM7rkKY!t3;k}H?rd_9#47r)JtEIv#s?8%Jcd5 zV{iKKhmNMb?OM7wy?6@CLq z4oSwhz4(A-hq0LuA9^}_+fT1w!nA;x6bxtV;59jl`TrNZ3ZfGC!Q)>!`N!|zOjAcVt%4V`{?Nn zz9L7H4CTFi)ky({#cLkwKWaRV0DbK1iiW~C>e5thvo0B!G5+!;_-@zBO(#>pY^h}d ze>lYG%@Q2w9lVZ7^MqStD-7cwS+SE)?>} zO{0H9=#!lmdbdY=C|reznHSrqn3}>2K5CjH<9%L==+_pheOkSzKhBlhHHffh9%9#! zJ0yI#IuI*fu?WOm)SR82`F!l`_#W%6(q)fyYeLnBWmK>Bd-kST(WZwosnK57)yn>( zh&m1nFGQ~~)wG!EVc=kc*r3Mrr48psmiAD~?J>$>I{}=(X8+ySIkNDmyfovfKHlp6 zo42)$WukHq$X>i|bVrDaJuT3c@k<;}Z$Pz`E4|#z0m^F8y}kB0k+*j8aEFvpt76X* zo9l*30Ug0u39$#dZ4?d)0_2Fat75qbJGt+;Bd~_J`r4ErqeUPG^aFR!^$hu8^%m_Y zdDtx58Km}jfmVOS7gi*P={9@dS8qoo91BIy!XG^w)<-zmTBZvqkDjaHuz_iLp0iE% zor5z~dpcr0ZA#c<&oAz-Y@??Su8eiflS? zd(R{6$w4d6M3$Vp~K_-+5up4cuCof=%2(A>J?1GMQ`$C`1p|a&Q&TSx%74k z8PaI81XF)Y=x0LyQ&7wrd9bUPgdt58Vv&IFjEzr*3Y=0{3jfs80hDIn^A3ws+^kOm zW;XHKAHBoU$jk_nc3SC9QQ$G|u{;YLbW?VF;q&ZFQrbvIeNz;@D@YCNuSe7+bU}Zm z>kT*QYAgL}(cok~jGxb4ok7aU`N<|pcA~egE!DACSCGDnno5!RbW8W=s{HuRe zKm?nb$Qu`WUivYamQMrwzUC=TUKa{?YPj=xbI0C>;3xOv*FC&$n7^!rI?3ggAYJAM zr-RAP4pOzhShcTq(T~4HX*I$@PnD#3IU^n7;;S}@>3!9gd@9CSw}2i|QZ6-t~$F3f{Z=iW#} zc9V6gtz?|51;wnMqNrXP{tQs&@c8DFz(c_4`*LMUh9?vX+)rw2ldOEg$jaO{ z>VCMgpLH;}$gbJFFVbYAt{*D8aoUubdk|74M_B6o@UqE8*I(uNn$zcv+&sRG;F*cS zMM}AN5u5pXjpFdSYM&n4VWIh^Xk~UUlJRp>o15Deev7nCSGEwDsiBDkN#+cq>Sw+F z8spxvoB@hz8nLqxnBB8INf>6p`iX;k!{sr8| zUEaE|_>j-yyABwl7gZQB_##c9>x^*shJ;99E&0?xb-#QMn65_-VtioO$O{hB%ejyA zzG+LY6gFE*TaE;a*HHz6vm1Qz_Q-zPenv!;WtN4V9>fydV5Iz{jqJoWH3XneQcHX_60nkg?bQF#rv~h836i9ECJU(`@v^Espn4gP&d;2wO*;E)qp_$t>R|aQ@`T>!SmW9dJ8kYb|m&L(+gXXB!1u(mU30b%Z5&kXHmo#nyf&Kw{x zfnF{Zw6D6H7ihkgKpvgfT`V$2ue;{+!eAub|Gb87O>EN=BJ+{?3B{$b$DnJ%0j}EZ zz(mrr&YoVML=SPKpZ9rICKBh}$GjHSfmQ)romcYLo~coG?wK6eBZBcthQ^aVd{0+6 zhfnp51dlDJgLf%-S9ni%b(Ah%7s7=kR{pCaEL}Rl1P3=;fr|`RX#mjk_7``8w}#|6 zJM;55?hly0k4{J+A~Dg$$6=Me}iOE z2wQvjBGDOt{)%=dRKYN}IQKy@4= z6=^wSW7++@k?$f^PLg_p&26Mi$&ZlQBJ6=Iz!@CDGh)@y(KEZVIm-0BP2aVYR|x`Ain`G0<-w?#^(% z{q)7s`0n!d?!qzCr|F^udCh_f21Zn)co{WPPxGm+Vu=9yMS#wNYp((Kw#m+r>xF{T z&*}pDcjl2PoaE?(u(^w#n~Mf3W74^))L@joQ^XmieztqtjV7%?{3;n{9-UZ8xy`)cG~%>f`^e4F_+`jQdvOf=XQ1lw{Ij9QD~8sGlcmyK zZY7-iEqa;8r%JE3Dmveb#~=AT_8*Q3ztUT|k;g$~w}`$392<1WQ^>?{SyY9FvAx&nKj*Qj`;-$cHMNH(KyXvpTOKaP#lUfCI^YRCp4xI0d`_}5eSImdD zssBV_A7lg~bdC)HeYKQ7gH5XY8_;csnTiD>cYk$lSiCJEz$eLw8F=Y9GBQtUJL1Rl zh6Dz)a($rA`^MzKQ8&ygu)L^0#|;G!p3wDvhFe#ViyU`bPc$pby1MP!6OHMzX5PWh z`W~=6fYH|)GU+TIgT4jIiqJFJijx!E7a+0AUg_N`E2?%MH??`Ll#J{)fM;0nu&Ud& z0w&Q*1%Z`v8I@vbRh*AFF0xnPtwSF$a;Y@5JB3l&uD5S4f3k@E^9fPYTyn3Lu|kr;CL{yG*=zknkE{&EMk-pwH83y65x043g)2HPEGLwD%`J~+C5jQ#d9)NP<`Mc30mBx=~;R@hVgX2)8=UX?;dBpQ( zS$>{}-hc;;^mI5@?EBu^(=U0-ASN{&c|7k-s-s7Szo=&e+T>0P9ShYlNfSTOdqLRhsF}|(kN4jdg!hQuRg;zIH8=_ zFuaKnf0P`la&7pgU_{Mpw;tu-t*}^wR)40%7c1iWZo*;dNZ>G95r@eM{?eEles5Sq zX6?l+Nla%dKEwigoDrWps!zpE^yK+s-cG=$4+X`_x7r2WTAyymNuOEC!};$g4;Tf} zgNx)tT;6tC^IiY^h#pjMUbFZUue|{8s_4riAR?=-`v|prjfO3J<}_Kdu?nvvNF8qc zo3_!zYm@~PEjLp-#%~#&Q?}mKS6~{Te0$uL^)wHOANDZn=6Y5&K`Ub`fl_DLOHZ&d z4$)IB+L7K9R)gu-U=zjRMM+rJ;8gLdCv%$mK#+8(xpCiwH6#PSXQf6@r66BW`i)2y zjjfoW76YTK>A6W_!EQ)~0>?+=S5r6HHQzEkhf3^D@6&$JCv2eMqZ3BLr3P>9UOJfR zf2_^ek4e*$$}wwvrS;YdTd{R)H@}$na5Ela=4%z0hM+24#E8pSX9Lc0o@mSY)mI@A z>gZbK_MQGPWJNgt2MqYsMo%NzFV-rnha^0SkTb`t z97Xv&VD^|dmP?rYZh@S#`%0FgDq1%kMv&%rMF;&*?kt9Z=j3sBc1;Gx<2{d&JiP58 z3%JX+xLv+WuTRnWwCf?$TgY(`N3;6I(bzdA;IX0Y=3UB}9mXf3MPdL!bxPa$ z#|z;Ch8~X8Y&dm$`;%*eZw#CvBcu_=4AI86qj=*wFkTU;sNmewe5})DoA-AdJR=vq z)%RPtG(hxKw)JZoM;}FLDN5_4>hZy=0t2!tl?$gwNwenvMD#xtL}MZ11;u%JG?GyT z^w$7|qlYTr-zHPV2ub7U?X;#{;bDq1_vZiB;%_bWeKBvxka;gnE$Gr_? zcM`V)C_XbDIUwqF#Gjf}@3_!AekKe;VQppqdCk~l_Otrj4Xl^&(&(`3xrg>%kq{;C zIOY9@aHt2U*g*LCzAH3k>;UVbuH@6H%yqEIbM2d5uGjEp9_6@Ox$Eb5$3@fOYVL1P zi^iY1R>)0wbR~CiW{ppLcX)A0o0vOplM#Bsb>Q5=@#Y;Gj)umzUr|yBJL}h5XSphj zODiHI?UAwHP){EO&0y}HW4rUkSp_}pMs^6Qe!{<;nMfxryQpwxed{ zJrde;W9qjk|2>kpYcuXdh&UOvxZ9%8#q?39x~tNDmvD%5S~}6RE9qeIL&{r|H*JHI zYIq`@*^^R+-Knqae@vn&$UO#Tb;s=GTRa>F~wo&#e@H80`I1g%uBTcJ*!~GA^MUb_F*M|Dw(jGZb zci?B{RaLIN)F1?e&JjIdk8ewXbb?56S4Z}aGIzoXI%udU(kQNz2@M6b7nJKGv7f7m z4bm{h!ahawx6SoEZm%FLd1PZ3$Zuhp<*%Q)ceiqzY*L2R6M75Y-wdP871Z?|@y zv-jq(L%~X1eD&6zs7brn=116@=ot4okVB)eP`zkqx7y?l0)e&RDd5@rL^()~S|?f_PC^Gf7) zzaK0*#(Ujd^g0x{QhYIFs+U~G$WyIO+mHC46a$mY8ZVQw8*V~Kfr$}lMB79i! z^e!{`s%@Ec2@wBP8U23Yy4?wix{k%?0`RCB!UI3+>o*5QJ@*Q(b@J6k7fSu&VsZK8j&<_PK@%yt%jCKwqRe*0GW_4cQ*KITL6>)tK^FoC? za%EVExR_$FlYTx9w~_39cjaXt+d&?YDjh46=B{Nkj#(@kF?kj;x;52JCMIfN@r(6+ z!aY`q8^qOXPdA!bkV&JLo&yG}yD_(dm1Z$#USo zEP!rA-z|o~XZ?<*er-Ux79h|1!`EGgl?!K_s&`-%L>9Bhw{Q;wQjdpsiX=h~h?L)h zyzt68n#0t%?;0zMbDB?@?@+KA-axdfTkPc}xmS0{HfL9S*77F#9DkCxU?@c$0?Tsb z_`{tXt7oO!0#?@_Z>~F0`SJ%t!7JRL4(eN<+}paH*|fe&jBn93*Q?!>&Mt|J4`#v= zUl@F%|855YHB8Y)_$)zGEKKcq%=b8w#T3%PgLL`3fpD+KjEicObPkg_y`(gx(C?Xc z*@a)Y)+uhZKkvr1s9X$fQ>VDUM@=4j&r#zFlOLm>^?@i<;}O<+Tes^0kpq}DFakrm z_*vrmjjaanU|m{&3eP@W{mYWEf^^;{eEHMfem9dH>`#0-A@WT_C!{(g@6{PeblhJ^ zjP|nt)nx+BoCY_hO9MAr-^*=xM~^g`5VpTG=OGh&P5{v>(}{epA5EpV#Gd`Ov@~fr zQ~Z^FJ5A7uXJeeUHkHh;pV9ms0f=zAhGvwn?FL>&EA(u_ozkXT4kUqQRj0kAI>m%o zP~26B*!@rQ)StfUKcGb=*pC7jECej@2L1wKTdAsCNOVYK_!dSh%E4nCyM;XZYXcZR zlafBYo}MgT3lj%AQeEB;YS04Bkhee2!=+2%MFGJf8@pds3ASJVBD`vkC$msnLb&Se zob%Yl8)<*lwvU#Ly>i1*X4+i7KM_Rz?pGM#$JfFKjzWy)@N!D+#4p-_2qJl$o#AeQ zZ+B9KfXK@-{cfc^V4Ykeh$-g68E;AX%$MwjO*^NL1sMFA3kg-7I#_)#SFZ;#SdrA|FS*UKM(x#25fA~D7hc!KW#k5RoWT;B=Hp-dz-8InoV%oms}uwKF@9y zj~6BAD)?Vl6@j-LtkdMgiAIqW46=OtrC6I0v`Uk2WID zFl;7~94;8GZ_T^nwv-%H%Yc`6cw?=RYA~hKf<2$I@A-9b9DGv{PrlO za68D3^v?qUtvcEl_u0tj)7ZVwJN`$`XN14n88yuo=LWH~PAOO@{O?!xi1``L7b*>rpp#-1=eyZ6=IaGnhqH?5E0++p@98{lUR z>f#oFX^u2xPBM|XRL#Dhyk?O4_}BB8VJC6Rq@2!6 z86EgtGl#4A+p0Pz+c0tGF1=(FPm`2m0{qHgk>xe|$$zagtokr`~J% z74h`1rQ6gM5}eL6B;WbJ&zuz$1{5HQ+p&!aLbuNyB?_$|dr!kv-1X4a0BVmZ4P z9SJG!>!aSKamw^}>b`yjo22eL7OMQYvOZ@oQ!$v${Vm9l@XObb>u zey+om3b=es@*Q7~X>hakV#-h{?0n$3qrEq37|H7tG_sw~)vP44FbGqbn(_Id#R$xU zKw>93)60WL-Ts?R`Fm{>=2yj%(Na`AEj#XcO>TIWxax2^ftN_H59khgiWF>g@`m-1 zX9CvAq_c2-_%wom>HOluuxAh))WUS-a}yxie1)I-*+?C8AY8KNF zz@6s1nBtuK6fW7)nM4d+x$sSECBvt3`uw3dT&Jd=fy58hZVz~0+zNutQy=D*go_CB zXa{#To29Yh)bZP=!`rn}vke!JEPs4sexDa$YuHizny(DIl+rqEI@WxKT>Mm``sQ`k4g` zk>Gf}^wtp}5F=FVBL$*DfyG>%FUTa0A`II9IEzx8^@HrVGDG@V;TYR08GqCJLOty) zWoS#g%sqH|^08{I8b6wKugc5H(gNc-${;3`a)_H6AA>R4M$u@l`G&@;!eTv(MSus5 zDM;-p*%`0zR(`v$g{Lvc!yPqmN2q%bQ#%vDl0Q9~ET@jTIV&~4j(-VTX0C^G&#YU` z{<+~hE5^7z*|ePs8FiW0ZD5V?dbfX!wy2-V6s%0ke>^|b`TzY|E2A)+R;jhVeu7{n zv57^p>IvTCc4#vK)uobbXI)8v{ejrAW?9YtXo)nCTFs*89|;!UPN{V#kl!$33PNZX z%L8}DkBf;?BeuFnY(qj%C8@Y}saIaM`5iYQ&K=r$87g^oP2xCMLEX%N@+8W@cVDI4 znSCtTQU%s1yTk0=s|A~hFU(C+{Y6n;A;`i?_9~n3+1N>-ZZS3>IzIvGn^dzG_)(1k zcy_fn)gbp9wO2u@CHA#nR<+-g89wAR&y|0svDLYM?m?NFV)%9P6!@~Soy9LHs{3Rx zR+_J*y1&YQdW_!n-Fj-G%2XARI<5~>lig$dJ%NgvraE#W{U(F$urjl&)VKcXhSH^w zmdt?f{9HIn-T9gj?beADwMlzV1axtcAc~7+fx~%cVy8-}y>0uRRo@6Fyx1Pc;3*t( z_liOJ({rSx-t(2U))~^tetdCk>AkiprrB}BN6-ABUH`iFfkpP+bHennr=aBI7;P9B zIS`W!Z0Mi;W&R@s{Jw~#fk!JSw*L^~H5Z?Aet3A8dq+?>gCb7}gu%t5J;Hnaz(P_; z`EWW!=9Fp|ABiTKdNys$<$N?0r)06B!eHff*TOt%EC)Kj?&T4^y`4HHGrWS_&s_`Jq~e?x`9{Q|hxX!5T_XP6-O{kBM!L6l z8Df+NnP5zCu0v<$H?2&15@W8}d*=&E4F-1i4Bpa0+@EPBfN9O>zG=G#9BiqN*G}JP zW(kmt1-$jmcKlw7Z1?Ao*F=OeTZ(6Q zxlVs%ZY_+ijtUe+48+KijL6KD8vGfIVHVCRKfa_n3e+S@9}QaO_=`hi-#3 z!EFM*FP$}8lRsNs7l&K{(Uej!yFv)fds>BhA6fcQ?(I-EMh!IU=Bpohkrq4x#PLs+AQV=9${(ap$8-Eu_`@V&1ps z1Mv7PPdH8xSeLzmBW45b5AP5K0hlv#;e?w^yQRElkgovlEQ2e12YF;~f6M>F-dhLN zxh#*O!9BQZkl^m_5ZooWyL-@J!686!cY+g~;2NBT1q&M7-Qj(Zv-fYGbMAe0-=DAQ zrdEBGtjwDJW?H7Zrv;^cj5knN}787ldT&cM! zHO;;hudzrDjy58oBTpSNfJ99Sis_$hs#U`Wi^iN4l(aLEBBTD2KYt0LHec`n3|AKy zj3>D4?I)C$O{boo+E^Xe3t`PE$MAFtX+%`Sw;?`2L!tDRj{66xsJ%LsT0dnZB zu4KH>2kM-jOs%S|-4UvEEV%QHoJ8%{EET>UX}?z~Shn*&g_c=91w8IORjGPHZWa`0 zT;sE^nh4z7eaV&1qK{v{FIvos0ErQ`Rjb-0h?Ef{$t$D zv81__&0vyVhm<~QVk4tfy4sbG@G(c`6?A3Y$Ey7Aao7$UpHv5u8MNKX2-RV4Th&JB zv#?VqhPb{OPMYpA2j@{dz=MOT=G83T>s6F5;{laSSclcBcB!|wL|+uUnpNM*Q{61d zaJ)Y15r~z|a*}jEWUd0)5L5KvR^2FC4f^<8&zy{jUr_AujY1DRurS18;X~&aAv!xy zwX0t0EZT(_wmNHGLHg zw-E%=h!r8inaiPa`i`e=-S<`;?BUe+Uk2is0o`Vh@%_V~aqN`}W?!YC>`t{jPtm)0 z+`axGZRlh_#~^-_*_n@w&Q zl)^Uw*e}Xdu>xiZ1*XaviZF{k#UEl^Kgc9;lQm-@c6~8kg;rLDD&HiOw`={hk<@*R zdP#Mot9L&5NFYe(YhC-ZSp5tv30W^_EE9z*sH89Q*0dwZxh> z^f$1I;ctn(E@fXbk^d>WKc7Qlyahx6-vz%9DM!QGL`InCv?Wqyu+6umzf zrfydeQj(`{B3f$lD|M)=03FEMV# z*lp{O#oNC7`vck$hjIj(DIci8)2vvJuWy2$(UC{fy0C=vP%%ifZnqrHe{lMK!mkvn z)Bn9Jpz|52w){zQ|4Yt3bNC7^i4gTICV7}Bx&N5(%D+sAW{MLh;x4DV_kq&6A4^Zv z!K!240Cc+4KZ2};U)=Z4ak6ls6 zO9CC%XAoN8VN@N&X3~j%q%C<^-v7izmAq>L*6Yjg&E`+FihsTu3HLKnVO%d?N?GdT zf=Poa=?n=N{_+sMWF5T3U!+4)iE|78fxZUt7ak+&(m!e7&)<(RQJE5Q-Q3)st09r0 zJgWO3s#pVdP!A)lpEVoaiG7_G{o~2-;R$B&P|lzH2J%n9B8-YpaQ};s!K|P8xIAUG z@fmCf&=V|NONoUGpqO-G znB+eZCBzKu9cH{0^h=AhFiIinR1Y`rxc@wo-*wzRL(-S$B7KHb#RL8&S3L>s^`ABb z|HRq~Ixx@|oKN6oLg_a`)FoeJS>^xp{S={rjWGS4qV&Ac9hAW0AIQDElm8p;;4|F! zB3yr3u}J`MXOc0a!~Sa^Nj0z#beZU}XP?!_0N__NRCD_8i;n_CdQpoU-ERgZMpxrH zicnz@G(-u%3YUBt&6+{Udh1^qDHOy5PuxxV`7Ng4Rr|Lo$HuI8B+_}EciBw&GV8Zt z^e2vJ*SD}O@QA{FE_PA^4!~`Ohn zTJyN8)9bH-1cZdWf|r+X zUXkSbV8MDxe9;|m&`~Pns#1)%19KIi=!0vlMQ09c}A=zYcr2dd_6?{ z%L>#12AHCm=nzhRL-GzpL^<>MPc?+U&!~@4XvG`vF$lwb(td;9M`8H58ZvkyFGa%; z*D(j2m(3tY^s$Rc(B23C2xcD{_j$Dbvcm;Y^F1lZIIbuZ=~+k$ouUIY@<`wSxe4sH zli4%f{Qdc8i(X|(jfYwV=i{dpfPjajyhR&QVT(uVK99o3*MNIAv)Cv3s#i<4D>rNC zeSr%ia@5C~hZ^uYA_1aR?|DHD}RpCe?3>?;byBarWu75VhcF1 zZeEKRY9zd#{l)JCvRh;q>q1!PWR#3z^D~|wlW|bX6E0t(9WSgUC#zG!W@=xcO9xpf ze(QBXEZG6GRfVk}dJnU#OWCt=z0=wPDmKMe9XKkqek!xaALcI>?<)yp&j0aVHtUMB zR!t&1;!Z?%9u;;=R*u=!3Bp8C%GlG%0`gO(7o-=ZePrq+p}+QmgrFc=%{=Br9lnP- z@=V3DzaMc>$D0I7nx8vCX6&bL3iweTJ4MaD|J#bS3emoPFNwW zc?MmONfR)Fs~-*P;DzzGoQ~ zv;15N{Q7ZK|9;95UC$aJ>_BaV?wyj~^=qq;_eJMELt_YIHsM4=tq*}9%VDVMuIb}J z1yC=zKTt>$Cvkx8L_R`@mHJ(|FrAoj> zxuids_u|#dKkiE>G*;}>g?euVE?+!tOxHYh8N|_rt4H*hyx{$6hHrXEt2Mt?a#{SY zr#e*{^yA8lDf?13Jxn@~VRAG3ySus=R95d7yS%CcfBt!e`2Yd63G!pKFm;3wCt z5OG3;ojyjfBfV_&nKFy0T8*u+Tn%fKB3lLLXAUqZe?~StD*^W3GWjpwn&kjwzlxF( zRFPs7ZcV@`bE5lBc(4W;$YdW2v3w^;S0IYXP9LM>GA%@@jz7=5-`ECciCE?#cid|U z)rG1&DfOGIoGnv~2`F{rE_RlyjfZqpzUS%zxsyVMwQO#JQ17+pSDKiEUQlc??>*ZD z#$Hgbky`Q8O6$V|$aV(ew~YW?8qAmOb^eEOkHu+=Fm0^wFm?T9DqmwKX;ET`68i5U z&{sUG2zg|^J`n(Q3fGzJOBWTU>-Bk`S4ILzjSZbDb%4WXQgNeSD#rcI-f^Ekjz}xD zu0)CqExQ>RAU*hIp*344Pl}byekrB#ht(}GEdZlsYD&%0wB0SD_Fuk|?{>F@a2Z-O z?q+11=4`mv^?iGPqE&0z1|Cy4U44G-;H{~S{h%I_tD5vdb5VR=aO(WSd$+!sN;-WN zoLaya2xU{r3HFqD7@UL2xt_H1xXt5C&-c0(yVoudq|HhQZQ=yIw73|ZV!XB50fD5$pJrHBS!<%($c9SERDbEQk2DZX zDo(UEsFt8q@YOd4M5M{uip#i62)Litwx{&ddyMGaV%H{ zP1bFx<-F-bJj$_VtN=m|Le7Wo)Q-EZM~0MGLwu>fH*E!nPsLmJ8J*`YT;u$zAu;oM z;(0wHy>|u84lw#L6U9x{+f|Sq>s8L4`$QsG%QJtIJR8<;u|Hhm69e+=8usMwkMRE2 z^Vk(#@gv4GL^Pwn^ezMJ%bcC^gG_@*cx4^WB0)-QSXXdLC zcori`=+W;;fny=%FMR%WEC?wnPt~goY(K+a*?YD>FE(VU$qF&lqziHXbhrE?RsTna zeBRo!kHBGrN$xMoB=c+p{kv1dCJp#c+pQ$fi(RJ%NVB@#b1F}VXN5&D@J}hjXA1xf zP4N|=d_s|@ym?8It^+jcx|v}Io&Pa${k-6$alj`1PmBZHP=7Y`g7A(KV16xEPYix8X(jQZtj>RxkbS{8 z)ia90ImvzAdW?;!ja#pdIk$<0FYmL$^>a+NxLXKNqHmwID+ z2uyi%?BFe8bhaI)m z_Q!7G33r~KsmvcVSFVe{Z=v^Ej`vGvmIP#5)ce)sKPT)z8Il|j)fi;r5Jv=EOT3vD zs=UNHZw3V4hYKuCBL8}=+TFK|PwGl{Gb5(c@07(Idhd(qse18l;ytRTDMN`1l()i_ za3* zNl}=QzY;rTt9jc->Dn#@A}X*@Ry4uS3Vc=(*}e61aEV7*r)6(s_6F3}SO|Wq zB(@z%EuR%NyrWKa_!Jwf1dD(yDXoEBoa+}`s9uVSTi`DPZ(f50pDyT&7#tx350rbR zXqhDUT^mVj@HpOv`{rrlFPRwG%!RfP)j=*o2&RFZ)Wd0Y(3vsWQ=Ez*Degs!%M)Dr5Y6LL1@xaQVkcnAb3G4F??ks>?mg?{XZu*TcJi z2npI~x4-5cmAO)_n1ma#`YkFQ$SieI9(YuN?tzAwe|0L6muRa<(N5hD^~24b^l|nE zR$OaLd>L;iJLLhsirL-}wRZ3En-=}Eha#8_ z)FGkicLPO6Z^NZ7O8IfvT^LIqd0^_Cr1kxL?VvU*xG_emd7966f^w@LIn%kR@d8+B zLky-5N^m#|saw+3#wDQE+I?tOzN=*-kBk>cxtchEv7!2E&icJocGvsFQILUXRxS8Q z@Ptr-af@k;m$uB)<)GI-HOO5YwO`ROnJ0kLyarCR7%kN7z4Li=)l0X|%=?Vu(!7## z+lOy&0lLP$r7uHLC^KLumPg-OmQV@*E2^{Jt2Z7FR;-COUuL%$rZLL3IK;ppF2g=t zt$P&(YxZX`M1=jCH1s;(QuJgz`w-*TrrnQ>BO@V9Z3RcM?nT7s9gyMmI!C)mod?cy zbxn=W>k<6IN`rI3z(SL2=GsoYCTo{e4(}?+JvB&SU(f}-;b>8E08QNCVxB%W2q-h}`5~E({I$0c9euz~WAhT4{+NMSRz#i_>y>W#Tg7dfnx%>@pKJCTponoRVI2 z1>8mVZ+WtlVhfns%2lYlP{~4 zdo*VBnBQ7_zF_8ZH!8=u^cioNw5OU$Yx+3gc3O%qqZ<2gq{!IqD$a;E4ue1Nh=!-L z$pF2&9C_^0pmWhr$)&^Tm$FThpsg#l-n5tCJ+m__fwe;aVw) zm1)3@Wtj=3aZtpbKCs(pf5+uyap^y$Mv4UqubESc7koHDh%PD#^F3&Z9oRv7yvPW# z?JTeIbhP#;zGuprVQPH+fDU23ef8K<)5_{;QyI=qt3_5S9sJ$vHg_@|)&+YDZpF_M zs_@3sXz6g3>d?yWrs*q2f)n$;Ce(fPH^$Q@c#)~)P)Cj}AxE3E%%2m#oIQmJWzUI2 zqt;9JE`LUO)Wc<@9*W^Fv-22Q^K}-qNn|mQY%-*s!7TDM!j>L#q8Q7c-I6lsa!0;z z*Aqj^5}-=q;D=AbtgjCBYx71tX1yzm7`Q|^X^ru}8e6+xTYAQLz4K?J`EN(ING*Zid;9j7uc>isX^{~Ux`BZ9!hay!4ID>Mn}1vN0GU|nTwy~LZK4n%t$G@ zyK^o!U7=X2eDCfAp#pyz-JehcL)dYz2ezXGNHFYw(R_C|fa&?rH2w|*mIqeE24 zx+PPvV-yp&bl6&g_&u-@j6t35c+_c}uaE>SEZoU_%TXqa`FnrYReQWvi7;O#2^tmE z>i%Jj`wOGCvQ2-jLJr!D4xdO`SB-B{#cJ=6#_?b*Qc}edMnQ2?HG;m^CEu&nRn*3( zW4IEvN37^*#|QX$ukg3tW~Xp3sQmE5*Hg})LRdu160c=}nL(hVjztl@Cx z->XrY2G5d$bL1Q;v|X>p99ZbUj!QtUT{iK<4$nX@Z+^*3TDvRyL7WU)l<5a8Hl~ga zMT)ltDspMv4sg%Lw`!CrtF~?Frm0=m<+OcM3$0lyei{c{t2N4OZTADp=d+v#V%160 z!l~G)}(gU0K+0Bx9Bc@8%&hq1S9iuf^OU&24H+o}b)N%#)K;!nee8(^O)aWy{I2 zH*(u=BCmbnPi22aRV;Jw2qdkg9SvNfQ=k&6guf-w@>X`a*_B&EyGdoIG2A)~q|$2q zsF^^m8qQ&<3R5)pNa?2a-Aql1=8)HeUVv)Pyg$j=7wvZ zvHkZawl~U}b#An&oL@t(jsltd2CQ5xenB=lZFUUSX^($<4`H)hCn&MJobZ&z@T0hx zs_a)4p}c%_@q?&ZzI=xCRV)8p3@H_t7)DK3BLen4G-f+3g!9Q4S{3j;&Lgot#2qCj zKRug;CS*H1YEYApbF%f8UqQIxz&F<)iR=h8UP+?OwU%q;vZe(VU0ZLnUNk9dvg5}v z!NWuDXps@?^_lv>9}lA9fVnM$*8kGxVc;F$1Jw$5TU1roD4^Wv)|5>dj6c2`0<~P| zsp2wY5n5r1;B`;;Rg<50rGCP3{$8nsndwkULSlWXfVn3uV|XNTd_O^OPPiG&qydWV~9)sRygVjm#J7Q&Sq3d}&Z=^8FTR21=sI9IkBfX{m>z zN}34eii$1#>F9#3lZ6Vb+YMXSCpwkt3dsQ+C2KMfl=DMo4!NC>K)uPTuliCM7$X9E zuXw&B635QZ9kAm^@L;i6ZOzZr3&(+LHnV43?h;_A6L*FP^{dVVm6i~G@);`{7XlpZ94?~|ig?@zOeMgk` zv`DXRc*yO5adWoWH}umU<#;V&RXLv;BicB*#z!Lv;Hkk??|gR8P2q zA@1Yc8Fnvonsw2K_~zNF4;lgW$iVI5_2O^zXQ68#2boJc)!1Uj%SW3aj#pXM_|1;8 zpqQN^)cBH)UyA=Me!JAubmLmu^`=8qA`WUsj1*q^w-HmB=RiU$|$`nHiVx$LO5Ai0VpdIu}D z%OTf>FRioI2WkvUfoOEes!osmsc>|WsG~-R_ipR@AC5E(HE(LFiQT~^}EBW+bB=4`8xBh4eIN_{9ODsjqdaM zC(tM-e&F=O8%9oKhQ75rN{35zrYQ%J8Kd{v&8Lup^n3*L3B-mUk}5o=RncMsLh*0) zWo%M4wKZ_d;98?ijU^0v!$`ycpR&W8w8hV_A)QNQg*7s%l?at{WV^bMItcD8B@PJ` zPh~1fW`b@LNk>KKW1rTm{aUbW)AW1BK;WG9V|1<^hO$KbguInO-EZW0zR>IAXLz}Z zRBzL#8O7(Gj9|+Y6jL1KQ7E(3yHBwl2DRNKwoGnrHJ@yKE;#!I?_00Q2Pv%-p|oQs zTZW-q<-soS=@Y3J2Xd|L4LSkA{)jZl)3vR?;uj34Ud`BXY+`(zsqFm|Wh!Sy2&F>S z`fd4lSOf%Y@eM)qNAxQyxr}*2%yxPtXAzEiANk;qL4)IJ)(tEDscO}RXYwYaUxYO} zsqbqPzgo$MV^N<+frxTXGjlJje|EI=mKxQr>*gQ=;;jhpMZEb}rgp^FBpsialC*u* zhQf0tFWA<|kbC{&#}fcT3qT5=bDgBS0*F^fQ^+*yZRm+M@cmt(@0jrl56+2QnGP

%Cl*w)3Y4LqmHA+*L2C%*p~C7 zy)DtfMye9KhwQN))fobeGQv5zHFAds+q&+wcsJ5R?MRH>B~q3t*L+;{_(56tAG%rN zRhccQQiq57glur=z#OFY!!p>7x)vRB35JB;b#t*tJXcyK>N>(co!S9MY2Yce^>kA96 zs+Qqwu|};SUKOxah1BD}=sqE&1=@78Ls!m6W}Wu86>WQ-_bC%A&>eAL#I&bbRV|nH zTsz$)CsY<{77R}Nfvm6C@&zVFv%}dQk>BLZpY61w&$dg<#&aTX-gBdxPL>R-dug%g z2NBVK#fW0es=#8%ia8*RqIZ&6_K{h#jL0tzKI4CseLqI{B^Pc?+`$1hu}m{&W(1#9 zW-}5+UJpC55}W2Tc9-(SERd(MaTc}vvrFF#nauc;i&0&1mA9Tiwp0a%EvO8P!)D%} z*sqxMP>Ke&KTz^fqQ72F47b^4`fX!#p%Czo>h;RNMxQIN=34t`*%X!@TJhi#6~ize zz@Q5q`UNHR-Fy1&$;aYAN%@?^nCYJ6ARPVn547svQzMGP-MPz7AJA>J+0aVg$2|F9 zHP|hq_t#qe%3_`$h@(&mKu$IK=Q;WY1@#ow+)p2F)!vIz685R}Cbq{hR*8g@&vjJk zwZfr8G5r8v5QkO;-H#zWUHkP0!U;5M;l38wlaEOuzF)uP2)V>KevD+pb56+Z%FHD! zJP@_yJ z{`O8?`Yx6M>5y>m^rm>F8%NptE&S-0%j++UhWCQ5i$PeR=@e#Ut#DqyreKKJmXKBD z43NZK@gQ@%JtI9OXVjcdK@R!F=1$@met6sMbz z)E!#)U|(asKFr|LPR%)Ay}~p}@O6EA7uJ$@nDZZ=PEmCxy>M+hN$Ol11}#jMnK6}g zpV*A7=Np)oekwe~P7KLt>{!thjD*R_Y(~5(#ab|naMn-vVt%a^{^V1eudF&dxYlnN zdJ?_F$AWFHb^&TD!A5&LOj{sR_ryk8wv@>)E;!@I^(!QAw3Y@zlA#kfx~+3~a~=wr znB-H54}D>Xev4!sF`e~X>EiqYrMV=Xb`zZ7)Nx-3GO_VHr5q7et`>`fTidmzG=KZ$ z9JwKhA3G_!_gRC2>UJNKfEH`vXM*jtTpxA`Jl*YS8H{5pl~p|+$3ZGwF2D1sl=R!Y zqwuC%l=7^g_&iT#e-`<5$T((A<_4ej&u=z8F#rmt=({Wi`t*#99@DD>EzZ8~eg)&& zcuoa*X;6Q>aPXz{hPOk+^NIcNQ$=xE7CEQf~MEH{^Tf}`X3A19_1 zaGk{#tE^fAi`W~4$*Ra-#9E8`ILlu|>Dz8db9oLoDRymW7NYOay7DUWX+zS)RdIba z#WI=gij;xB41->L`Z?aHP|!B4$#|Y5iT9X!g{crZ&HsV(45*<(q71YDHT)*xF87@l zCh4+nfB4CR1Je*r8UC8>rmC$a!Dhj>qqj;SQ!_GNm^61r&toA{a!_e+|8`I|i3@&= zSJY$8+g!`AbEB4!&8vR_w)EQ#*-t(Y^EH|Ugp77Cf5^}VK_`j;4B>B z);BGxNV5&SXpMClAFFL;x-chdR5*W0WJ?xt$!EoMqzKNhBtbx(ET}$Qo6BhhIX^+~ zCYGg1*Iu6{3224ujiw@C@DN+QR@8#q)8zBr+PIY zf3=p+G*R*5XX5uUvlb_|*ES+&DZ&K-Rm58g2d{H>j%q;piqQGe8yKP$@cUbJgs%h* z{iXzvVtMJ0Z%;$78dLv@1t2{?s>T+in+>|8NC!Hbqu#Q#kc^hU%KFI?R@7ZL1&JLwXZ?HV{c z(G}svi<+^yhqLV05iG-qiVR31``fJv~u-|Kl(|B-_M$GlBukP?i| zQ8A#oQ>sZs^uBW;5Mp%^Bg-*4KyE?hN!>kZe1o-}Jy>tH`Q8<13o!0e-t-@LYI;gE zQ=0ZU;jkA%a$NC3HEGGCd%~od$Mo(WjOAb*If;C|oHTIqCna~sXteX2W(%ZFUe*Xvz)*^OATCw zTh?153{$%sZ||E)d*UjzuWl~AzXNmDa8$O=`jW$pS2INMoQEF_9;&@=8Iv0iQj)Pl z*z|CinlSCIrenl6soxDXcUKzBo@Q9sc(-AQ9NPE)u8ydFQg8J5-Wma;g?KJ}lA^$CP5`m14?R&IJih~|@`Bjs{ACRXQrfO^mNvd|xGM(#h z(X{!P|js^r)ZpPb&$DInJa zcdeQhye3oMi&B5GAKjR6rWUD3#_z5d?(1iddZJJv*5G{s3XzK-jep_j+jiEB{9MEQRpHI;EJZ z-6V#_iv!~1DX|iv+QPljOW*CL(%b=}${9A1=w5Z;H}leOZ5dw!q5DJBWI$i)zb7OC z69u>^9huzVQ^!_(E-DvO>uU+SFp*m$+bRz`Ne}M+cKf9y={UvKTc0PiADOMyqlHhfm6VytcmOx;8zCFf51fJVAI%dp@Y6x&wcmc^Jq?gPBQ`6-w>J z&+K7i?ZHi%;SJYX5B{qN!Z^_#--6?_c)A%d#nn6x!WwzEq#`pbS ziQPyZQzwX#A35=Ttn(u%T-4;?^mI&a%(UACSq~?HGxS}J1yE5Z zYV9lszM56dX_a{KlTIujcVdzfsjkkKX3b>6Owi{yqK)E z^;92RUt4W>w7N>fW@o-C{d&=B`dn#p&b)N&U zkI8Y~9c@HO&@W_5`&!=YzhCA^Ze3?T*j>W@t@KOtTf$p()f7s(gvk2bO# z-ZWt*f8SJOi{IUzC_)c68*ebiv(B;lbF;}Z$H{U$N<^o97$F08%J(B6fqlIaBMR}n zyZ&OYYQ3c$$8UotW4ug4Ab&~?Uu%@5ehgYB-y*t6Tj_8bjafrP9zks{XsP_%`PlM2 z{jM$p-FvIDC*k96bGXqY&MwD+KlG9w^C`gsK~f2>kK<*hb5PN#Q1rP_y#L;KmBn!A zunY)=kE;$>hC}+pIn6Oys=Eccu>j5}yWyzIjtW9dA`*LveAHbA2T=^)q4ii+H}THr z{%+h;-Xs*gLhd9%GKrDOj}d3)Mq3vKCN$$15O*A6iB&b4>&4&)Qu7sSHEB$S5}8ftSdG)D`%YO|j9I7x=}dQK%AcOnosSNd7RtR!w10Vd z9qwItjrh5YUU|14ZE^qfTjF2dl7S3;g-QZ0CUgdCQI0{6^47SQgb|013szyTi^%IM zoXTqIaYC`ALC(9C`gF7Pwau@`O|xKjlQ8QL51ft8G>E*9kI=l`l-Vg2_ZK=H8wK)q z65xw(gVuc9y=1@bL6QmMMcYO6Wf8WbZcQg)%A8*Dy-N?<5xm5Ot-_a*1@ZsYJ>VqT^pT zH9O2Mj}PT=V$cURQ7LI`t0NOcq#qiS;(Dw}dsg<-FQ}uF0`;J%sd~>NF7=~vgI?YW zP*kJ!#-(~;t9OqPhY2dad?e?L1`2iWDre@iE3D&DUtcEUP+Xh*^*fNw-dL<|Df)i- zNbKD?cs*36P^;q}%6`{K;6T&BNhRo1-1a<`1Me3eo9LZDA`?n)RX#h_kfW|JPldir zC-UmvNp=k-fmcedB`<9)(gQC)fcVo1IP4Qgo{9d28CxIA2J*B_d@wmjc4_`PqP|usT+OC;Dlu=I_Jlbe&HqO zsvslad@RM_H$JC6XVo_R-D6jLw~KWt(YIEKyoicUWhd7eV{7`TCZSx*VmVnOE&4Iv z!qNg%C-xB*1&mba-$>b1B(}we-22I?duang4CXrj&0sI?SBQo%^345274ckZeFyyZ z^l8x~Fk7Ye!ZrGm(||MEKGXC^q$(ma3U03LhYW{VZh`*68U&EIzGN6ifdK{a$fl4oY zbbgLt=u)hjCF#y&z29{mMQJ5?_Cw@5EE0NdRClZMK)Ih?B`RM7%dnmytooM zSLyL$R*jFG(CwHfn3Mc|(p)jJ#N{RorDgVIy^>OTEZdg;n^0b;COZtWRx6wZykqnY zW(3;LTnz|9Sfbu;AUQ{tzgB4~LP0P0mw0k3euc|DQA9g_zzovGZ=*ql@IlJ1yQDb} zZy&P7)(K`#e=oOzgxqgrOw%z83-l&pnfI*lkaHdnr(kOuV?ESob#Z#3g9R20zB-&3 zAW!Qm?Fv6qG8Ee+c2f#1YtSmcoH}u!bEOEw>AE2I5e)CLOJkW<=*chb9IO}!D;%&5 zuSs0TG?UWxr9#NH(xY?o5GAR~CLt;zb#qJsvTndvP;L_e)`|* zlmmc{gP3wX`$Fo_=?>zbq@BOweid)}-$QMXm;ZQvhmRTIr$g|yc z!fBVD1e5R__4^kjz?hOTbN=p74 zt5jCK=%n%%tT82}=p?mpmg;2Z&WazM+KYF?aBZ2l=1lgAu(x7_UB#CZm8S1i4T+}6@*jdTWM`5oP{4T{Lb?w^1e-|394(NwJE{Sq9Z1fw?-sa0=KcM9} zEG8vEFc}rV8NF`GE(n014!<9Y%C``oD5xHK76c!*L9PEG2p-@p>M%^jqa#=|qvr#m zINllrbp$N8W2&VxcT&@EJF~`B4Vn{1FaGeasD|@ACm@|(h|9t-^;CasF(-5*lIyGU zgM4*9erX*4v>a!vWko$`yDoqna&Y2w3iIQU7gf8ycXg_u-{a&plZ8z*@?QR`?NNvF zJEdNFFdUwVE)_cQ4Fx?$8r_;$w5=$p1-rFgUVgT^?I2WiT|>r66_v|g1IVdc0>AyU zs<<046~i5#UGTSI$L8lB88uD|;k8N8D6?nqy;`y{a zl}AjFt|RWF-gFK1K&pCemU@{!5S>T)Q%}gd`Wr-~G@8~#TzR9TwDSrIF?9)@dU%Ov z6MGOTce{n4_NVSp@x^)<0d75YYOTdLk`vx{Q(R>$RXN{UCJW+ogXtL>@2>lFlx%24 z!UwYi7@rV79SmoLpS43v(A-0bi9fLeGB_7*^4gR_NV&G`_qM=)a1}0Otxh<&EV5Dz zt=lY6lDl=Xa7e8g)6a-i<-^T!@F*f!{+zJijO%+-DmL-N)^=wo8J zqDEyg->M3A>J<$f!alemAFZ@J zwC5{*_>i0lLpr*KKbMQBkzXdSrbtf|A*(nXI>wIQNHZ2{xERy$H$J1e1a9 zHr2oVCJRb}oA&e`lAs|}oYiaLYvP#f$30zi{9s4bgZB(>S)-jI`>*Mxde1R7>g|eN zqg|D4^kH35jW}=AX95_2vNK$_KyGo~EGb10O!2rKhmA^Qm1M)zXQt0sH%-VLRzK|2 z6Z(xjaYWP6Vs0$D5L)jcXi(Y_?`8Kn_CQuazUTzBU8Ojs@}-}*e4Dnd@!;$r&x?~$RFpSET|;ZT5oM! z(EkHpIM4V>2{cX)R1EN~2s0DK3VVG(jbRokhGEZ*siDu2+5m+Rk|v4`zWDTkaIy8! z(2UQ$1JQkU)Q5{fH|#|H)Af-R0XW&%YK$K=Kp709&`~|jAwV3WJE=e!Ov}i-E}lxE z^p?p_MHn0Mp_yJ~5a48+UCPoJyHitvv9Ux8#M6$$0_WO1_n~;>!5#yB!MEKp=35JcH z6zF;33Au~H@@_+!hU$v1`drwdoKu0Csx>Qq)ySl7P2D2;A)J7kEly)~$9E=sf~TW? zW8{5hHVzf9-R6MIF0#^z`7E!ZSwl>jTUEPj(yM#TVN>xOr&~{nZ@f*&owmu5^Ig)T zHqHPG$%jxXGSy4M=tQw%Fv*%eHuQ3Gk*V2P^mnVY|NYLH_tMU(l#(yAMgaz<%-!u7 zN5`3rGfwqemFnWeWdZ#kmtJ&kHR5~Fi&v9cF$o^G7kx&hO|+->Y;n1mQb~Ob$Y61~ z8#$6!X#b=8J_~^hN=2l6DoXlK^d|C1Pr?;lmBsHo(g~om#P5##BfvR4>muoy7W^ps z+_p+Kli^3#_cqB^#>sw*AeY1N7|vxQat(uG&)1D_wIt}$BW#nFYObbiO@e#dbgS(* z8RMk;aFI3rhXn#Y_-Wu z$h|#Qs%H8`>xW4~kwh$omKAOnIBuoI&ZY41)=tIk34oxa>7H??IKrd6CV0pD!T8;b zl+??n%b{IXQR<3T7ZWDg^h-i~5!)JKA9lQVOnarQu@tNJGrHs+#zV(x{cg9(FSHeaUgh^IJFQT5B zlg)rm&I+(>h@N?|Av!Llnkd}SkO{Q99A~6Gjm&$V(&Z!BW?2N>lisNJ_Zi*Yk$yzo ze|fG%i5#dw8*-sR=@yLD8`G?}q;~Bt4tYU%-TTvx!p>;>;~*1nvSobR6sRWFyP!B( zZ4kT?j5BFIUr()|e&cKy_1{2r7W0z9Z%`ags_}B|JvJMUIj{OS1~K^MGT~M&iC1#6 zwUvLmOaqfQ!E->_*rCugArnGs@;h4|-=DDl??b_d3ZocDsg42CKyJz;pIR+Y<)Ztd zY{XwTw5W9Vqp|2KhR@+OBQj4UM_4Y976f=TZ8Bl^Cn-#hl_fhP7q%nrNCoF~H6)W> z&Y&-JSe1=I?PSP@SRJ}1#5`}ao9vVM&R2~o_=>hHdk$&L(>KoiL&Iv^O32~p9FVUB z&{e4E-BDLPY0=@c^VIIz<~5f%C8|IwMJWR?;sdX_rmUS zt#374yVeezpz_F3yX8)sbyaxG-5a2w4ql1LXFMU4s@i@#EMwR^ILJNhCpD;B=BhfF zBn}F4rnQ-g2d3PD;FBijKh3&uJsIE`Ed-?ENJH0!LDX`rjvKumYh@NEWb?v;ueE!w zfN0a6HQJ8vQiWfrxA>(M!7Hg4RH8uB;}3@h^l(*qusdUaa@~D%ad9zGsRL5-`$xzNe!gE+!b-|tH)TpGpfun6%-1}f*dVgjBpV;(n18h~Gbo#p z`O(t*B@D~>Tf29b|JN_q(M~%=a!;RN$FodpT1QhkMNWcLZmJTRf1DPCsB*?_y9bGb+Ez7E6c>?hrssa18xLS zSTtqJM0TE;m#=6`G&9)={y9q!7z$ialwvcC9LQkA@c2_-3z66*gx55Q|K=74mL&K-f2akiKh zDc5YV7zI(OH3Rdf`o`A%zYV3>3K$A~8n-~ypL7Bx^t1>lQ;s({d9DpHPpL@Gnp^e` zN1(h#R6-({TrC1V8mnBqv#{V__E#Cm--(qP&zVmG-wqh#SK#NF7wqutT`=@zw=e^( zp_Cd-Hq^Td=V>S-0v0^MFNNgozt?F=IIyDVMCH+_{q`k z7#tN--g;AKF$3l0?v1)yK!3W8>oxZ|@8XLf_}Q}5r=&xF=k@+t`6blAH_fme)mi*` zb?CsWBWM%A`EvafG@k3G-!ROU70}&(>T$;L$z#+&zR*-I-!+|8gfV%Nk}en+&Ct56 zJlQ{;%vVq-mAnIuf$O^A$;BHs9cOdak3-6c~Q@ZcEN-|2x8JI3D7& zPyNk`Gac;3vmd$Y|2lg!;vka(67doFaf8bUOhI#U(nBk40j!9{J__brddKqj(4D}Q zDxBqIL#fP9u$acib5)wG-{1$b`7dLi#R|-3`Vjm#rr+9*uv(NA$^G*Xmmc;<52lXJ<^i zm>Q_kMIMLto$5`Uzy^sm07*H4Ms)s>7nM3LSTP_NKdX-&GyXBvnOnc2^){++w~KUc&3_=JX`g23ucXHtvVkO65A zvy{8`rm59{P;S{4sCgl>3 zUt$3B3S2Hcf(Dd75+=&5S(++tMI=?WV2-nW>xD*0YX~!BhL~DPpJ*m?<@*qb?|Fl- zH08rd{9bX@&~Lh>#{N0UYp&&*{b>|R)0-9cYIPyke^2)mn)L%F20nK1A-?w0`z(vd zO}3PD`jkKwQQ~+a@5ueZV6+%i%sQ5-;F$pQhFn!eWa+q$p%oZoy`t|*bv7osUEHj0 zubydT!h4Kb-QoiTV(#a-4>*p3PBAl1oJ}iQ)Sm>_1k!-4&3c^EZe z!?+(D=e6TZ6}69MFjYz#;CUcQi?rsC8IA;;x{y8Sr;|KMA%|8}jO`f?$7e)9?OxZY zmOo%OKW#)YTP{G$JhoQ9=6|WDOzYT~23Dk@* z$f4`JZx=(IXCZu9oV2_V_N#HjpyR9+ZiDD9SH#4u0lMJCcuzu;LXQwhK*+D7D&`5_ zrh|hN71L>}6KAvUw)6NY*fTIFU1(Yrj@KiEIGF~H+ zzb1A$bR4eH2tRc{(qw_I^#uVhPB|fef8d_N&#zN(F+vOh1?{M;&+XxhY5;M3QT6H* zyXFjsL{ij<0@8d_lN;R*5lbI38g-pzbOfJiF2?8Yc*BOG6CL>157fJl%q~x_FPvQZ z_r`u>BjC2|AirAg-0PjGpI3()>g=Tj3{Ona?w2HE#8-Ve540z>^*#pYHhXijm6FJx zdQ~YGg{Q$k!T4V{Ztt|!J`H-$*0Tg zMAF{z*)FYFX=EZ`aLVs*yQ-ZTG3M^9pvD~QjrnW7er`Y5N z0^v_krjH3PlifE{qN`~gKkmx**b*rbasDNV-t|NH3hDZ$YP|iK@ms9c+(^k1jT9lm zKR|&2z!p>yU&A#dxN==ZiCeu>K*K`I{=Fw6We~=KztfE$xq|wRKK5pvNh`j3UbcSs zJ0?DxJPm8FB4&Q+b*Cv!$H$|a0-Qq#{qG-N$0pr=Fp>MvpA}Q}`D}_j9L>gOqKRjZ z@+A*UmsUt}Enq?RnY!6Pk7er)6Y!Gp<@-NysUHQ0Bfa1!&2xw}lhk z+b;vUr%z-qx_WzvwqzgE;dJGed|x*NYCYozQQ+zZSkB>xVyX1_$v>pr(k=)x(Lb^d zCv?;tLv>j98!ro1N@~-GVZ?do#POdPmJ#iqL!R)?;n4f_Wp|D$q^x}P%%@?i$h~1v zIq1fHMs-zuxY>HkIC&joMHu2lnRSOddVdk^fs4e}m=EN~Ry9Ui#VgE0li9Sr4XDO{ zHnNK($3rAMKb01D$O5J>$YvpEsa0FnrK-PXyOhPUkp8O|a0|?gdiw|=X~XxG7dLct z6${L7q!g_~$jg2I?HORn3m+EjmA{B%-u27Kf5`&C44L3E@pJ6pHLKSva-)NFqN9)1 zjw{vULsI2bqS8NL3BKoPI6u}Ep^gqcZ>(CrAGu<|qD1qq0Fs_FK7L%!84{Yz|(OeCc zq~OmFQh)Yz$SD{jBtpRpe*ZkDUmry;XhXJqm2<;%9-D7AXg_4UIupkTKu~(Cq~2zWbax_ziPje zixQ}AtCs_H#pM?mzZ*6U4uhAq*Um4!0P#VH#mucyi`CliDsy)kjcuM~X$%CCq&k}; zW)MCbPA5{*=BS?SpMxCs0O%XQr~}GEE~KEEz=18xM-g-Q+};&WSWSZ?*xh+JLGh$i zx7T{B3Sy1>xHSgwBQei!=+hs2=Qu{>w8L~!u+-SjFpM@3jrKu;Vy8wMf{sNBWTgan zgFC8h%?IyJdqJ8AG&qYxo8uB7hw23ElkHJG<5igw;5y7RB|&k|l7icwOk3@(%FQ^W za9I<&1`4k>46i4S0B7XMFA_rB+|3)qS3$iS45K14HM1sF#}*SzAjj#t-4R3q{rANA zd$p$H)dT%m%dAXKKz^cYaTv2ZXhA_<(U_?^@hLsOI1x56QS6^lhcNWJ-_UchP=bdl zTNe&;5B=jqZPoVDTc=5;ku<3F*JU>j2=Tqq@(;I?lPxI-bmPF3HYCuAg{?DS zBEhstC#ZnVB38vnnqLVdLFGWmlNPQmt(!sj3Un_K-!qp82*r$tcOQG~z}#0nO*%@% z=poXEWzc=D0D^Um{^6ubK*lG3vpqY^%)!xFmE(V6pA@xs;idwuA=(e5F>-wK%>R9c zL1zA*QMjLFpSb{^@3^Ji9a!7gQl7H!3GLz7PBD?u z<`}oW_%{jWZ$vd&aEvF+YuXGrmTfc+4XZ`b9bgaYU=DfQ^SeH}NUeU@Co*)eMs@a= zTv$$AjC|A1iYZS@kfZ3hLql7^>!`Y6*W8|w(o`da^IY%TQ&kbPMrThp^~UEgu!SVc znvP#vQqlRNIh|N9)cH!1pxNh7C;?+|1q;+zURuhuVkw^^jQq6pXFua6hiQ^C%X?n` z!52R;>nZVS2rk=PI;T?kU^1{d00jH-hj~h7E=c_(RERATkd$d7L96Uk)*R;!#pi1C z`OTPN&@2nSKyj|jQyH(6gk8loKF42Ekv+2;09NPa$v7R$aTmRi& z>4g(KK}ueAd$KOCp{ZQo>WkY(PyM5<>x=^bEu9ASvyOeSc6z-(=w~{Xw?J2eU*_Hs zh`ggni#BIUXU%3S7%hHm;S5WD?>K&bF&s&(@U?*wy+DUVr?L|W+brx(%ntr-Xnf!x z%M)_7k0-W^kDWsjqR&Xhp+_RSQBhNIW(h>d!cL?x zUmb5-_rQ*c-F&&04%8$gJc1~wZ~SUhorTnHv5MT%WtFcJ)wKZ=Y%EubQ#omzz|`kz z3#)^{bge)EO``2fg5nhY2ZJgy_u=Y(D4UQ}^WiIcV0Jaf*`c!fc%KJ?*}IR)Jh9&k zUN{~zy1z3^Z;PeHkm|K|dvmv|z53&X!PM#$->*}WFm^e$9%ZcbwOIwIDL{;)x1Fd4c6A8F?ss0>ra zewwRPx5W)QX0!~Cb&cr#nMYhbXN%L`z%H^U20`~W94!Z41Yj0>=QB1lg zab|5taJwM2u=mq8d9G`ZLHAvP+2n)2QhDf`AE@B;4Mk)f;(t!6--$H^BJe6=^438l z9M_zqY9!V`_T#hLMlS4QEBfxJbg`0@c5)fFeG>jDKpWz}unXO_GzIH3?{;t?J=5CL zBGi>`?RcMIU?n{-*OrMwYBf;f1!ce+S(z5)Bf7NY95K3HJw)QVJWIFi&X_?o5;}z- zGF)Zw?A40>m@Q5$ik#jAe_p7b)2`e*r&k2E)+mVJs%vM-Zf1oru0nqrVQlcM3e>$Z zoTGLQ3OUYM;uW6H!ge({<`h5Ohm*EG@TfWyY8ZT0@TTOW%WCX;D#e#lZ_y{dZ{0ui zj^;rRE8Wowu>E0U$Ka|@C}*)#%7HnKnH~nrC_MIzN zT3NmjV?u3hbgkB<{eGZBU_Bz!N=v{0F(nzlw1Gquw^<^w{=q8&(E6vG3zJ#X# z@?CPir>)Um6DCV4@il+#gLkuP z0an|yJb}sR)m!&I%s`~-gHu}7ij%+?#nU$JVR;{M1vPMV&cVvg^zZeNO#r1yFE;E? z{j9^evbEP4GC!*wiB^lkNiX9=a2Lc}_94<&+Mb^6`X^C#q;|qb+8})r8l?nS2ivB2?OzGa!OhXV*UfAdt!6URt!)+s$0$1L6PaCOp#?|8d*Reiq2QE1E2ih!mQcRHjhab? zySw|I**xT3J;+v5czs3}3Mgf`J=EQzKYGY%Ln=y8@qmJX5k@hYMc@8hKOT4h>oe$8 z_yN!BSgmnj${iny1Ci#M7PExfw{w(%CC3phf$6CeD8MLD340`UOty_6;Ghh?V|}hT zzw)wybR2*=H+V|P${K%S1N3r_dc!-EzRDyC7QC;rtcMQ#g7#%@XGfJ=^%r>wIvr$k!SOQIn}e2hY!y=&Ss~7Fe}o1@dpWL7}#%fP3;FbvJ~dXkm4X#(oOe- z>1T1Hfr)qZ8Q<>HwYPS*yNfH_pI&M#-cH?>MEbl^3u!!tVdl&|ek=)t5@@D_hd)0* zJ-GBp#v@ej-P})kmo1IJKRO~#fjN^!CZbd)-7Sqq4F&^duwc^SaYgcNKi?6L#gqAp zlppH;)CEYT3IV_aB?$F4^|749tArGcBA9mS3?qSpyrF;tX#gWQNAQ=Y0hKJm&H%-# zH7T>U`S;iP@EOKE(fXHo?_d zE#jF!-YdmBWb3nUN z3E*e^fDcUC5d7qLeF89P))5TlGXLWzVPJdVNi)gu$2C(R`;fgHDC-bWzFA>f{Cl2;p-9U-cSna zXvMEgKYz7!3LgNO7poBSd*qxLeUnr9~V!?-@&b zbMES2@ZoUH^bfiUmCbaS5iOFFKq6d>YOX8=zjbF^yv!S0?4 ztBorwNOU&W(G$q98YODHI?5$n*xOqJSk#51U|^*<+PC1#ruvTe@|}aV=FE4VR9%Vl zxiN3Dt(MNF6pApuV{r9DdV4iv3U(v)R`HH1%s388M|9Rivxn<$p_Ed2uKGF=X*D9# zjxMbm+lFe=WlnE5h0ew8M!bTP!Hz0hSWkAfxQlw+UeTKo%xlfVeuYne=bmFc5QW%* zJH+?dc&YLaDCXkA1u%S0UUwTc;Lla+n&x~Kpa5zjx@^nnUc3~@lLlkjmp?BQI9>tk z1jSGIL-9-S27~4kP(}fMr{e!=0;?q4M^#2q?k3|;lBW@!PLJV9KmZr>hp|DQk`Vjj zG9>-+Sab{>lQ+`0Dz~V=6ades8EG*PK(hSQTo@|7`~pi(IHgsYQmn(SJ!~eJYp6^o z8UyWGadA>0#3QlBepo_u`KaQvlJYY7w~^hA9bfn%E&rR8*%N)SS}m*)RzKeOwVF2HyOJtO?y6^6N***Ek^_(uG_ zK`Bkjc$$RN9A-0`(DJySu93`Kq(c{cY1i|K@sS=tb5vUzd-tm@xgFA)D+sChzHWpy z^xC$KHC?i;)bIJD9onCnehJ6IUh8)j#Q;Nw?SP5iQPJwFdfY4bOBMB$B3WIaBo2Za zHcG2Zq|B0Q1t^Pyv$HbgzIseVC1w}KBl0z`DksXE8Pff$*q|A(rg)hH*BS_hu-JAo1yQZn9ii1_cfC>Yo;_+~{4Xx(N36zP{c!{<-vWv@hA? z$EziEo@U8{Vyib!-8Z3fH!ZcHAC)$=)i<((o8B+lQyBSBCgo@4SWdsBAlfldzV7l! z@M;d3t)*!~dSg2m^x-<~n{_#<)_hqw43`V%(Q^%&*0qDI*552CzdL#l$7kb-0!4o}= z@S!}F{@pa0*_#=hDsUq80e73@8Fe`mIA!2QmaNt3?OuOrxX=S&Y&*t|x=e3U%KA8)P^z%I1e1*neF$$zQvRpoC^@hP4#pa*CL9$hKWugwQGZ^id{S8u&%9&A&(L4 zgxtm|`#QKYZM3c_P1Q2NTXT#)=tkiYGTb_>P_6wXr2?#o3?6*k7Hi?;yw^;$sn2g< zO4D)3%FnT68#pE21HvM!1>n+hO4SIq-ABYF8K>YWaY$|c^oa_{=+6QKmYbU77dLM` zt-eWqbNZ>vjiR`}yw2&x{NGX7+5!|ac2yhPR<`JPHJ~{{JxWIu9Z(cySjB}&!>O5R zgn7}#vkS0~<=`jZiXU{CB!AZeoN%UwgA#gDY~RR6dPgKOS>(;uP44~3#$ULu4)87R zY6N6OoKa`GI(>x+)Dz?0q=nZTv$gSB@~kbMss29%sP*;lgP0HX1JMrXOgrHx!_tZj zf9r5kOg6_-%mT95`$`1J_ND?hFALZxt+8*mohLz>+v!anayi7vmR=xRap$)>iTwuf zu=ivxBoy~-G5VviAC3;|jCj0uj^W^*TkFP9ugn8VNZcJs~N(Z4g23@hY#g zMYqBC#y#^HotlF7R?C8WjxfMO7zN>usyc(u_Q=-}`Cw8u^a1?m_UEhAAhC%o?wL#yite8l#P|L|uUsOD|kBvXyq|Y8FVQ4p^%J!DM zBm5bP*G*!k{9Qs9lsNq?ud6#4RZ2&D$Ib&i#wKT^v}G`-adt>sVrDb{MQF3pQ^s>X z(^e%vxBPHlQt*-~^?JWk)sNM1?z0SLKqxd#ceZeH(B3g{d#oLyY9wdUg>=SmhQq_6 z^Gdc?HR;&iRUaBkLnIaU^%Dk)=5F8k)h4eFE`;RPI$*s{?UA08;`blv+DJ^S z1Q}L}f;P2+)9i#^2~+|mi3_R2y9v781qZR9_^fp-dcSQb3e$C5E{DyfoN)N6)L8KE z{Dg}QS<9Z|vCQPJ^C8E)Jr62jO$YL$={>l#ia?%ZKrQva#xI6FyVNwa6L0TM(igxf zqP|4r#JaXa^OPxR_2g9zbYj0xXKISj8#~Au_Gz$kX2{|O-9IPBPi@?`rZ>Hiu|lF> zNNGmXd*EB@9;*@%8^)x!$8NS7*O_;%BYy&wfdWg+O9plZ1i9q6@K-Wq73e(Nx}PnlU~LsM($cZZ_JFes~n~*8#4}&N{be2adyP zv!~yoAIeRavw*7HI_iWXl~#(%_5*RCJ*M26%y9uwiGi@m%HwbKZ}K4oKdZU+5vh8P zVe2nJjbGa^oN#ct=SXaf)miTQ|F;v=2k7GUNjS6SA*nmz601M;U(+NZp;g^j zpj16ir^nu8Qk?v{4vAzfLh@<<2Th!Oub?jjSaHo zbR}3SnX@%Y@ubv8nX4WHee#n`R3PATzUG{Vu)2SVfyiS9r6yx{FJL7e#W$MVn6-Eq z9}UiI#$dj_q!T+PA6Y?Ba zZs=SzF2_JfyG&pEV6Q;(C09)u5Y(V58=`8mG8cEN1_*j*hQgtd2#Js#HAP@+t72&osA0k@^U-R0iWOSbYuX2w zVZr~_QGCj{(oV;+Cb^&}bV_<3)ky1mbHFDs$Z2}JrAWnueT~%?U@o&fS?-I97#)OJ z+DLA_runWJhr}+=O8b=mNe~lawO*>}JQsqBk@2M0ZeKU%K}i6NZSUME?j9`R5Akw8 zM18iibLdU_l~N)d={>>pHqbu>kj@Oz3N-&(+XyQV(>jH-8th9ho#0dcxz#)4+DqCL z7ZJ~G%P{AH$+WVc^F@q0Jb4e%!xCwFn^qEgmqG}q(TzwwUlQmuuc*UWIou_6N~Zdd zPov;qLxZZQyYsss=Tz@_V>QVKP#W>F*s@!fnox(*XyheRkdD^Hfk*2--Iq%4z z(@xOWcR4SbX!CrGx-+WhH>;shZ2B=k1+x9-XRZ9u*LN*?qClKEGx2S*ZumX;xX1Vo zK>!5a#X+!x~=}$4s?Y2UNp|8W^NuzMzM2NOlG4w$nfyRP?7R{ zdNE_82SA|%D~GM0rp;0Hpm{S;?fP6mzI|X|g~|`PDMbdKP|C{?8MSd~=aw7Z+Z&Rj zeqVOe-JEPn2ZXHWnyOf5o63T;bUS(6T%d+8=(f}ySEuYF&O}g1Y@!WHYMiQ`J3ZSO zxvsHpMN6?(()?ypthOSYBu~yH)UMVNJ-wWBpO_&82#VhnrQp%rt;9aRe(z@ZIwQ|> zQz7-by~(mv2_$YCB_?adpI*eHzlTm(rhyxNIBRPNR22gqv5*PyX8VV*+nHH6W>H14 z`OT0ofxuST%TR>vi#FI2CUFV8_X0;QS?UwAbV=aq%>)k073YOwV}8?+t0C~K>%^PLX(l8keW z@6y-&P1{Lm7H;B2l!Uz(8@Bg%^zDssOwzkoaz_E~SJ}z8sFG$a@0_wxsJoM2gyt6% zHwhJ8;CbeoJ$-fJ|5OpBI*Qa7OIK=@p!b48L${zvbYg%g;<8sLAtC-R9SIjwjtRo%CHT6$N69ZN3xZpd8Zj`Lap3}{Fepl< zKfX(T{2^hs=^A^%oMcuLqZFR=IqSq=je5J{mr^nIJ!a~jxbBDDN%jYZ zxT(8T1doU?fnt?BOPp%$k4|ci`>(D>#^rh^i6Q5lS`eTNMJZ=WK|qf^mecHSI1L*K$hWqK?dFvO<;H0b%8H+{!d>)wInp?u2%!~*?M zB79#mgI`Y4@U9(P;SOWmv|)d3d$`S@`Na22;yN2zRbjVHx(n*7Fjn|!;4BusY9{Ll z?r4bU*Fct&I?i=kF<)=_v7W|K2WEO22&0zN8kR^D?a(|f(siSvuBqML=Bhv7$Y9pR zeTv~m?MWdbaWftz5{d z0a@Zct*pGvZ^XraPk~&kEx&d+dYZhXqL%|cWyN5M9OOWaIrOnf;WQWA3#4RZk!Dlh z;9)tMyT_%6P~2Qbn79&AHBd7437N;opkUG0vSci)zwMf~9&ISm(GHDFdOfJ($!Yo) z#Ius`*57P#+XyBfb`hi(?6n#<+*89*){Pvk$rp2n(bUZBr)le=qe11M0C{j z`NO@sj>{YIrQrWCFBWM^u@sF&4%Ll=#qZ$N=cZbZRjyY_!f)ao6_!+C7!xJL8CcdU zk-@t$Fo~&8CnW_cAsu9-2<{Y^yusC z8Nj<9UNwDK+xCVuw}q2L-KG5xYI(C#Q$5v9O`*Ncwumz-=F!O}f>XO+;E03vHUY@#;h?A?&;`)}^gcIgjn5)Re#rlM6J zpR}E96+d~~D=9DSDtMANo+1?z3)94&pNH{3h~5kLjQ#BZR?sMx$1pjl>kACd<1V$)o+Ni z)T!WEa?oUIvgz^`!URsQE6f$*oZ(*V$m~-W+;;)0W^Hx&EbGR(L#$rF$N*s`_Pt*c zIrln?1NKhLhX3dM6s*-v9ECnVe2L@)KgleyIhTC_K8CMyl@KF!>y%dZ0%9^_hq+41 zJk(DKxw5N6A%TwbJlE$TCR$P_fYE^-ZNUtjC#k;Kgt@k9z~4i>9+xw^#XnS%QsmTn ziVV)$bx9xA=RR1U!Z>H%&l6QLqW#Q8N*&y3Iw?3w&!TYvee#@u3$)^1p)xv&z4WnLrg{Mfm=R~??Y?ar*YB>VUhgFqN;(cU; zaD9>uY;Pxln!T$HW-QligRHkaoVvRG9{8cOf{M08Wj(()-VZoRl)mN4)B~w##d1Vy z#zHLcnt{U6DRG9b(*=PjsL&zY9fCz2sa25_roN#&Z-1s@>^caoC^hQ2WK^E{&AI$a z`xt%&H*@j9A@1rfRNv?_?YypdmCzm~zxw|4l1F2H00ZjvDOP1=>qxJoDyN*3<%hl^ z;pm96MlqvKV!v*pA?NVr1??Ybq&S`x2AO&*t#8n%Z!dA-p(kQIXm7WIF1Sn5(b$dv z`TYQXL{1e~kJfQ$6NByS& zoIf1OyS+l|xwdPFM5ase=gPYTQ#YqdSa4Fcvor5Y5)h6~I;`iVaU=t?fPzZ$zD*lE z3rM8PW$Vx-5m=1Y>CzOp(tHh^y5q{dB<4hlZ{?M(wVekoHyVsr`$l>KtEQRU)fH6G zb6P794=!Y#0d;9>z+1AFRyQP_NTklb$M4fQw3J{$2eqLO=(`K}@ACKg-1SG7i_zPtlf~)Nx|HbM--@&}Y-NY%_1w1-p`+Sx7ztwSdfTl(9 zSLo~VfZwCD2a^X9Ku*Tz@~cm2HL&XE9ON$3gP)2e=eII*On{>S18OQ$8Vvw!Y7j+4 zt{d2d>W-N8m4IC{4k7?af-@E8hT?3h#K7~E7)eq5<|84(vJ24Z3~vLo`Z~5Q@;i7|H4UBG8o=XbjLCP72guXp z_m_Ex^`XGHtwB`ffxpLX@EcbS01GSZTebp`z|{-!2%^Xon>WQ;v%=kG-<|$5fvEt4 zEv6C++bIEVdlyrYitGDM34Gw7)nr#w0WW=vTy~N_*!F}X>m`uw*tgmG)%t0Zr{$}TdrINzaLjm zbLU>*Po(D+b-;V8BBsbW4y%BucnrEE2Wzx%Ms)JiSq?>zGlz26-1BuQX&<9>;BEsR zvTbP|jw7A<%dRr4p5t~ORe#fsa~u^eo&ORZiDrDalj#n%meA)PXp`QpM0Btv=`qSV zRMj3Ckw983m^+-otygBL3JTA8)2!ayG=0oh#($^=2lxf+jjKx04v(;f+@4_`*GHQR zmxOrce8|oR({IMl_HZRzF>a_wAtZX7Q@z&$3^Ezs_NOcwUMZncPa0hhv$@n~@kZEQy+XgIp`pi0lC*X~pnTn}dfFFASTV4|dta!Ms z&84r80`Ju@^T0|;;&)h5ia|a*Lo9EC$Mhd^^gUG~^`MJI-{>y!ql>s%q6^igO@CF3 zss1uhP5*G1H}C>1N}Kn9*d2TJ^TC#x_%??(k{(GU;Cu6kFo%xkBOXDZDv0N92wqv5 z+ho}Y${4`ct3YRxXl(-nQgwqjgHi!jq#3qvQGW>xWO-64vSExAYOyAdYA(c-SL0Xi>3y1fykw?x0|R&Yx_1~ zg~v=r62&+8{w&>&Pzy8kWuGxk3N~&s&4`{kP;B)>Pz5?V18jrWy4|%=L;9~GQoB_7 z1s?{{hMBH}eZml4a#|;)e#PXKd2HliJF3oDpS#xLb(+9>?E7j6iV*wKC@<7b5cUfW z)1L3egryb2qM{t0fr=+~x%#`y1y6VZl0g0LC#_GwH4JT7Y^S`5+KLq+^wkkd!U6gT-N+_r?#_icU4%=7cudUe|iD$H)x zuXypVj}i3^4WKZWePdf`tmV!J#i(3JM4(0x9Q_MEuX_OH;uvAL>EG03IDw{Ry)z}R zJH9re3tDr?33`S&C1*#Z2om}q3pNK7IBweAJ{d__iF@>QHL&%EjNhxWnu;m06DBo` zcSnBJ>l}7P9x3?o1;=|To*4n)>;~(KP1mzt4Ch+#FJ2Vx5R_3aqqo9zij+>&7&|)m zOP-fP0Goy$f)3>i2G|0=OE!ze76z6tjBo)N2jJc*M!;jfuknKi_r-xuxeq9(`O|9* z+(^uY^bW42Ytf9APPN8M_lY+{jW$HR1Fb%&Ofs~*fX1@(3}0e!le78i;H zr*&`n73a;*UP31V0eBN$G&?6P_BZ>yhVngls&BUchs>vCy;Y(f(X#|J^2ZVvv{X-K(?Uz_PjZKAnKNv84qI#HL$#Yl>=%be?0U z=A=E;VB>u}_HGRSMXsJSiO@MB2bdpE_snfc8=0ks7%D}x{R3>(er@$USS*`AP6-(G zro}7G^Crth*y@gr5MDGl(X=FmhAsvuv>w|;Nx5X`Q%V}mKg~}P+UK^XoB=)9>>u=9 z@+lks8{zsRoe}Sx7cy>m9@eAYnV6>l5!3%}qvSuqarR2QeiwQHEJ-l_MR9Q+BAy*` z3sz_F@c(HeCgg8DV~6-lU;XfdCtC^TL3>O1dwMic<~g+LbI|eg7c0T8q%V@~X`uX* z%TE*Yn2~L=26L^1yqq7LzAJIQvB?DSNQAR=cO(2F`1m&=s+mK-uq}M?rf|^!(@U~O zP}rwdgrb_IKkS!E3B7FpQQ#DM!V2-9hJCV}Nt>i-Z+l!^)$#0_M_Q@>H|oXvDJ{nD zkSi9wZi}GoacQF5mzMXkO86J+7JHWVH1&Sjs_VS%B zy|z25;zHe)_suGYA@oN@0j{s8$9i~$omTj(Y@!Qq?Ytd3zQ-+zkKvu0${bWcSmo^e zN-X!u6O@8K5}*vxZFPdlbi~cOFVZ=klt>&H8|wR#U%U6c8S}xjOJ(`C77lcg*1)#a;%71;$Yl?q(}dI({Qr06NNk1bmx82m!^j) z0d-{39z=zmxNABL5>Xc;v!8MeZ{O=4v9Q`-)IgQ-HpO78j!^$o&y$qd^*QywIMneo zCjCDU%{8ShDZ(@IxFOmvjIiPnjCR(Mc>MBn))Nsc)jcYgV?ap{ZQ`5!S)K`^xtqu*m96+9+_f(au`7yCQ!|Gm&^;K`O3M|(O&R$ zyJo;^FDCH*|`oFq$^ zg@>YE0F6g`;Qm=HVa%6A4!Q*NZD{=0NzNB@6@jPcIX=uLf~l*hXM({H$$2>Zo&j|| z3M1w|R@ny0{1BR9nSoU6p>|_NnRg9u=ab4(3`X=vEKMiWYp}(0C5wJNcVz9RPw^Bv z^2+mMI36@-j_*Ex+D*T2K0dtDnLY1mJZ!hoOu}Lgfr1u8A?IVXfJQ{e;_!PFjR5;0 zd*JP4c)pqJ!OM^zX;}2D`OH02NaOA{ip3Dx0lXp-%BaihXw~x?ZY*8m>>~f|Y4Y#c#=PF z5WZGm?7=l6FhW*PE|gGGVkPMn6mND&ELLiM3BsnQq)x*BARHFW2rU+-z&x11PcN*% zJ{~)XA|?#!mn-%vWb17^)+?G+run@>@?7DVz}(c%I9BZu6b0HYRA&{du52^bqjY5P zldIaMPh1G*%%U^m2?h?E2=0{;JK5>HG`v6Gd0^9|)Y6@F?%$qhy^P?qtzZla{=$|}sD;Py17CKcVH9Wtg_nRmESr7z)nmj%&n9g@O9Fio5O z3~-t&i_0`ouOO|gj3xd$fv7d)NNw>jXV1}kcyN_0Q#F@LEk#7z;SD8)%DDDP)VPUw zqkt6WCw`u-bJU}Rw1uofA-6yl<*CtxnI}(tKK>H*n;zK+oVuU6l z6ja%4Irc0{3*yu}s6UY}<$KgtQG9V_>!_13#h{0&WstXF8KLmJs@#=6Dob1mt-w$O zitSeqN#Zy0el}k<6pAD=k3gNAm}SSRj>1c}<#pnQX<>()rOR}$ldE2SO8QwItM0SU z#tdh!SXX3hsL|2l$eSZVto^mvlweAu>Qb?8hhxHpqOFw`wV*g?fLgEMdCLbA$;mD* zx7xEhSuY?4jYTgYxHjg^yHs{<=*`ufz#u4ev`IQx{GqWeIW`gDK1>Ue98(;W?y3{fEhi z${K?a#{G{ez>M09Wpk+v0)|a2ik^aZW+6_FG!N7J4dM~>7^;2SYpXyxP8 zPz@mxN&ZXyRzqI*h0V!RN_n_xFVEr0y$EDpH9VpuyhQB&ha!WpRZebpNyKAStOerJq4Afr05lSa$ zFv5!Uy+ih5E+ZKl74xn>rdwQczF+NDyLfBLA=h`F@?M|sDhX!dthD>OmKOt|4l^Ky zuVSXEjm6dJzGWCbtdg$d|4h4p_7r^(9AefKNMC8;17(fj4^>rxR^n=mTbzZ^<*ZfWSu$^>x|bD+gM>Jo9yO3rH1hMeOmGAI&FpBINbDK@>&b9NL$=LJO=~@ zv2+(-`D7K`87U(FU=mYGED(zTO%lR*xXr{58hlqpE$g2}dA@y*bFG~iQU&NB8iT)2 zqFa&vJb)xhGRWW=%ltic?6tF1O=iPZ>q@hmZWWGtTCe`?7za6GueB=lQj3?l6#_ z%vjA=(IeAprh=5S3i4?V3}Fuv5!HRfrRx}ipd;yMI%AXe&dVpPX=Ux1J{~CuWLzvP zT4wN~EonCo)?XF}Wv{y`e`^h*zxI>7DrOLdEI+yPbBcN&f0`DAwKLfe((7IDg0{~J zp&kE@r$>~u!|7|pT2a}%kYwwi323D2&S0vy-hAPRLLI8kfT(wg?%6!Mbm%a-C@J$BrY;B}NYgwnOQahzr6pXh9HeB^{^f`@Z@=J^^{S zbAJ@orAyi>ANHi&=q~Rrg2ZWgl@S#Q^CeLdC!b0A2L25752En|Es`>fL)8wcS}Tqm z6I0K|u(AC`FgNDNtQI!K7+OaupS*3!Yge32+PO%Jc}--a7GLD}thJFz-e#7-E#I2I z+I#Mhg){BXyIx$W(FY;yr)0$^Vg%E|1*^M}jk$kx{7WuxxXQg3Z#b0^7jtk*mo$Jp z!`_sFAEa3l`ciJCUP3FOKSYaoH`gcQTLqhrVm)=TKfBZR3FWI(_W}GtHP+#+t-L zX&4&;Tw>V6Q#uJ!sc`|4J66+X`d#$#$r6Z0Tj_>1Whty@-^*eR z`5R+zjNbR)zwwB_TaRnzg!k^uN?LdHAVMv3-}HKc17~h`w4f9 z8xd9WF!iGDbJzQQ(|)M5;aH$tjROsz?%Xb+SSJ$KQwo)R*J*&bW-+nntly-bIPq3H zU?$yB!)kJWT|Dv64M~B#jimYytyx&sAmgL4-LXNjzKrHCdY4p5=|(2A`p`xZc0%9t zw4mMdjvnelEA@ZKH^!DWISvM&!e_>M#CcIt4S&*=ja7~QZT~)H7uex=!Aav&wMzZ* zcQ{^|eQ)^u!3uPk2a(e92;s>Pjb1DAvFyqLUQ}4CTw5Y9rD|pl6xClzP$wN`?g2_6 z)ow(ow?SviYp73IP)-c;f>W$&c4{}h6i?*-bsDiN{p-5*MXc-12gIq>s+Eg(MN!7e z-<6jh{RgQ7rZ#gJ%_Sfr)}(qX4g1$;1`!1^So5!rO?{SIk2fzJ|H`qk(3Fu>L^n#9 zW(=sQ;IR{}#bG--$Ex+;JZCZTP3%t@R~ncS=SyF7Hm=cU`X}L*mX%qv9kRv44vPY( zoL!f~(;6d!Bl1AXD5O9+pxb1{7C0akLGXhFi)GC5<$$#%P$6TMr3O-%AmsA$vVcoc zcGCAOspud&{HavPG?uPtY1|;6jFcTy&0^rFxN#vBKUP6wPyWS-qPt*Ep2^Wljgd)3 z#lXr+xh6dAp7t-p78M-t&R{ed>4Bf)i=i3@6FqI&{Zp(W?~9h^5~%{LMf}mX4Dyd1 zKS)|Kq9Ye=8UHJ)wP+6N?o+^F!#FgL7lK3=7R~)!?3s@JW*_&qxM@0Y7XB{8Q%t-Q z*v?_&T%LlAj7%?ojVrgHAjhfV6o=Q7nXtxS0Ge@q5lBQRd1x)Hfzg7;1#RH{4v03* zASO)3bHKv}|q8YQ6(%LJxDH>OGK-+Rzc0BMM_Y%KjUBFx_$8a?23^R|BVCuMoqB+ zVs1)ceL(p<^-%=u=o~}@+&l{4-l4e33q5*J>+6sXyFKHgGPV+0ffv51upA!|ycjrQ z&p#XWcF1}60r}cniVl|Mp!>5LsrozM{mK<99a9Bk;}882lv=506c^_p8qc?_&jfDv z!UvOilm?%{(ZL5lX}TfsiuCtCE0Vl-CgqM#B5;*zcR%JV*INt&wVUO-3r|8&01*7} zu8*#`X%J0tI-Pco)Y1%Z2N=9eB`hT+1$rxSrBuDVf;>;orvdkFT13!id;|%g9p2~BjF=CDJN)i`l*N0% z{S&?l3A-#{8}Z!y2YCK@SV$#gpnvu^RU)o1VF3ZiWM<0`FoFwlzkmDGpGC{og}n#T z7$tvFzH(Dw#8B=8{+Ihg=bU`AH^W=!xhW{AZV^%I-+%~>5I6x8_-wIvepEV$ve)Zb zIStoyhCebm&@#M6Gg!QKkIz(Ezxca`;4yO|HnZ`Ax({Va@Rh*hZYD#CH4OMnq#VvN zGiR`cJTL}68{qEBc4BJykEucxfIAE8(zCu8O~Y9_8;LoZwip0u0V!a3L| zcfF&zH0$vL=}@{2 zd#uZF*nBG#&xc}t6TA3qLTv32IYt@=}aDp^QUd=c5{ z0Z7P>C|PEc8yMi2Yd`cn=@Yg6)iQ+W=op)gF7jg3?`;Yb&B8#JqhqHv5d!-!TPNzP zD=={tuIAkUGg{;t%cp z#+`LHIAQodBlW64D$OJWbDMu;OBPU_BaeaL!DT3^Mj5-x!GhA$C9&tB@Az~jRndA? zpmOgsf!8C3O{KsI6}iqC)_|hZ;Lpc}6~v7a)-4ft*v8hMZJH^hHph+xKV)%fn{EP{ zbGQewpeE6?8O-(A=y=>C6hf&AEs?HqiD3EzTSgvc8igmR8q2@T`EC5s@P#`P>6XsI zV?9yCF#5qBLgc9xK=*w{+0~G&cYR<~mf(RD>kNdaU3&~y|B8HHjcAoY!@{KG71S;` zM|xSomZ9EPmV9i#gmGPL2l zcUwUXgeZxMHGcYMB>TGbC43{Jcb4ScXbl(e)r(bTYcxoVQoXC}F*fyoHGZ5}=EU-0 z*CX}J&UIHBXyBK>_phU-CdFly2_ktOSLG6iEVWq7RDOGBqD-$&Ys@POz{q@3B#lG!({QaN3z;>1>ig^?IR-2$uUhHA*bYAHo%{JLiX25!RMw;SK63 zmCS5dP)eWt6S%z&t<|1Aotw)K~LFC z*1xXIknJV=Wc(Rr)8!(vA!bz>SvZbbbVeDu*mA@04l!h)gLP*pM{z7e_FyYR1vo5r zklns>FOpYu?;WkIgqggYo0q?oSq`+houp}!m7%6+mQ44hn3o$`2{wW7QsZx&Sqa}n z$+z`kAJh2+cAVFUI!ev5uZPOtp{%Ajr=73Z)m(1*r)(8L6}5!JTX*_3>Zm*{PQ82u zFqKg~o8y79%VoSs8*LUkRKeY~CCb(`&bXgg2~Z-HW(zguKF!bu9J(VMaZ`|fOPhNL z{Rnr@MePro_QsHadNWtQc3$=Q_vYl?q*56$3$r~+-a&tP={b1BZVzG zhw`3oiP>mw>mw59Ew`^}pM}C9VZO~1*OY^`5V?J+HGW3@HDAi%7iasgA4}?61N)n# zaHe~FQ{FNtts2H61QS4??u)csTD-6VzWaD(lVY>(GG(ZXt|@gtMI$lPXyeD$m%n>@ zB)1Je@V;@JZ?j@E6TA5vo7zhg#9qkq^r1x!jy-@AcW(|cKqi-*tB*5Bl^o$TNewF% zW-Sdrk0F_e>FQZ|5~ppCdHFK4K*M+@Rm!7<5b9~AFL&$e9BD38*%$qtCZmTFOdu`i zm->@l`l*ekJRa;Vs-z2vF|rJ5{$I|k?@3ZxbwA4}UQfetJOgalA}O27n~m_x6%1}w3xw|aM}nT7LAe9N!cE|hp$ zU9f0Zgt?ejTx@c$VL`O&67(YTAL=x@-UU6wZvMK_V23dL+C@Afn=pmbU``6#wJ9Uz zYbQ%yijd(Av&)4uG}sW(;mPx>_;yVuFx$f@MYnf?+(a=VBc+pRX6z&VXunJw*1V^h zGp~@t($iKsQSXqg#dre;3dW2@?e5%IS66Gvc$=By%udjKDBBJ8cvVVkOY!+unhu*w zOP{ZHK{lFlV-YfpSMn%7l!tY$UfpN{>z(h~%f$Tm0>9}9m7jR00g2N1m6?&Yp|x>^FHOe>g<{QVB|Ii2NNT(bHs%&DGtr=ru!|_Elr@Z zhA4&eotx3EVC;=XDZVj1?DUVI)lX>mj*GV%S%p)_Zs%%s>hP>CN0ukJAyuHXDyAOX z9jQrFH+Fa@9`n#qscN_CZy9@ik^OYqFug9}^+wLR>U?ViGu?-JgHKJLcz-Sit=>4l zp}!?Zp2m2u>&wR#TYhi-@`ntr!RaeJoHk-d{iU9{RwQrR?hUAH)WFVA!gA|Qdt|&& zkgz zneL@}Xpd{hTm$BLCY=uyr$k&KtN0&7Y#S+0s9leRn2`y20_Q5w*{*;bv4cu%<&ksi zYD`kLLkJwrqrs$U!~>y9Y&3ruc;VNd{%f2MTpxsDq?X;z+E1HRXKYr!C1E{WkJ>cW z$kTX2b#L|v9gIIx`FVLQkd5HSEbGe{0%vbN#`oiXAPuCbNoZk33%R>>_a8s{uFOl;Pw<0+pOiO(Bo4C*%N<^E z&=D!_aDGH?@>g%GLI<+F1!g@Nu$Xua%g01t?5aXP2l{U{e=op5-W2Z&Wct=IG?r5c z5|Ly6;s7UP{=Q)#a?@^Cb&R%A0JOKjGVgB5btu_M(=7jy$Oo;}tDEopt+An4R4hi& z9}<1EYx_#(IcLh^* zM5;G|lUk$t`9#tU+SMa22gt>yzXeOWV-}qWff)@mkM0J zz67xmI1q?Nq^?tm7U|WP?53es0NE2LxDP`S2s*K52BNha0XQ=DQm_=qfXbUkfa5fHW zz4+3L7-xZ>+3$^JePR+SC&yO|7gD^~bF9ZrFm{62F)Ns0bMqV88~2d8uB-WI7I3TP z5e-ySMXHmYgfTS(DhohNU>5t&1TZBX(c-tf(9o?)3E&OO)`AQZmz{lA&2#Ly(=EnMOGS6-bfYl6=mTy*J8=xrxre2UmU9H_S8o?#e0SAvSVV2=RJ^6s zv^;nS#xU#a;R>U-ShR!;_S>k;#knqoFfW{u?^x0Z!l$85Rc?%^W?c+OD%UvFUs;!p~hQ z_|yKfH!cYB@3$7n^0>yXnieSoQqi*GauO7K#8-ov%oE9x$O}` zft^?SI-+HPpcPJf4zmsz{8?StrL%$n7UA5IeERsjahE_oxo!UDM2Amdp@Ytxn7Gkm_v7c@WQ>>ybndH;8d6Je_hwmF-G25-)jYa z)pGCEy^Zr$mZ6o+!t;84-m!>Cd@d=e*~>xnzi7o^B@3T~5cbiA;?#9`)DU`{A1W}i zF5e5o`@lPP2cxLWU08B*MHHiV@wpNHXR(2muG0I)E^6WLLdA^F4;_T#(;j_-&ckXD*iVzrE?)^GS<^djMAPgcgtyKm=Pg^T)_p9crj^C2 z2cF!V;bnD}t68M5VMM$HFmb27A!#-1Iu=QBiTn*{wDtw!IZk9F!w^pOH#9s4`) zOzjN~X3%_+p#K*KF!VBUy?)VAixm$mE&4}dz2<{D2U;fuuU=2nlyCjmpN9+rBEMGz zc}B+vcQ)3l_|aO3AWI&>Et19zp0lP`+{5X8|Dr!4nOf}YH)$t{EM`oDNK3y0UVe5c z|Df~zTZx&tZGd1WcD~>B@kf#i@);fyHni|euR=ZoCu;H7fJg31H_Lz50*HwfLADP_ zE%WPDQ-9rssC$#c8`V15d9lE}F=$oiP9>dioRC1Yl8-Yl=tzgk$Q&vh4_)J-FR3eK zFs03RtoQj!=Il%dvD)^g^8?z;Iw?PNN36bR57ani|3ISVjxra(mT-Zjlo6FCJ%;=@ zqz|JYZ@~7}?@Y%{fu_@({XY!KC899GBCq~)R;E=70J^B#sL2!pxKRL=@K#7R@FP@D z;V*>+up-Umqk3p70QjDo0;!}Y90-U?1Iya(WJZJDs!f(%VtNluv?h?Zu<7_@IA5V{ z9m#ordB5F{u%W;GKFWK@_!Pr%e&ms8*Ob%uKPd_uZW?n3Jl_RPpnj@z8wfT^;maqp zyDtyfXUGPA1oLkXs;V@;u}?P8kBpc0e;6j%`(?KKy#H^m!Cgo_L$+MlJAXAHM1P?* zk7`~&P#aw+;z6^h|I5)=_Wz*r+qZBNNek{K@(iEfLj2&Ua-IqgOl~Jpa%AkIj%co8 zf=vDe?%!KN;L-1>RPv;;oU87KxUEWVw{m?aG>ZE($c$TmH`d<}huzSY+$*8vb7XH7 z%gceD{OJCz+n@=?rAIG$jGybd<8lO%P?WXsaRe){!k!!Cq!B?SX_O%@v|j z5X?zC@1a7kK^Ai)eH90MOsn`OpI9lK3}^m*B}+_ z-Fu(&*Q}6e=A>u@6~;??dsQZQ#{eN2{SexP&tQzM%RU?Qs07h^~RKiy#bbR^o2L3T5{h11iBq6z-(ex`kSQr8jSpU6#g*B0T)Yz(|$IH z1eX>S)90BI>Vp{(Mv;J@p8;%Mj*ko+9E)cnWTik0Bj}C~7^H#MFk`t%p#U+!oB&D{ zgJNkg3n9;LS}g!%J`)014BryK$i7c@F7RhI#z^)K0`Nbk%;gs=;AtZ%TFgx*0Mk=r z((}7zpc$~>svLI(WDi)NX0Ion4nXe^UuE~ff9?x>!Se(1@GsNbg?QlJr1lHU8tH{` zJPZT(C0vM&fU63F z1h0$CKe#orZ!;AAlF+BY@FWzd*i5tzq0p~08CAjDS3y{GK_pekeU zh8JL*oZiRW0bbyP#{qX(n79nAF=60G?5F>SFpd`b!s{W3_faac^B!qwqBSCzIP|Uc zQ}7F;!}{Sg#;)&a6jDg<1QM+7LNETB(%4k^177OyYkZ?yb?-<^YM^ul>wjSQU%K2! z#=4$4DkeI6aUF&*mN_1(q^7tZB8wcUKc&L;Tr{gTBK{-}|Eu4+8{{~2#VOG4lCDjC zW0TRA&MwskbY9U|)9`1&rOdp=6WqdJ^M%Qyw?+Rm-T-#Q1Qhb+AzB&m-mYR5J*xw;# zI$DFz@u$FW?`Fn+-8{~$oMDvW%v!! z1&%ehmF{e)l5;;kserL^&s^*9kJio;DqPQF63$LF(K7LCiSSkGXdy-$?4E1xaE4yT z!GVf~PFJ$ii`x=ymx8~LT<~+WNVDv=S;y!DQ94GiO;t`UDeQ~5!k=OvW?DJ@Y04{% zrDK4Cz5t=%J{$qS1A($>v&>k)=i*6{4Ip~}v7$nT*_2uzFj7GJAutQsR=_BbkN`EH`*t|8tTxL+xX$kS0WW?pTvt(#8s#}OQ6t5V;XM>V4suI&|Ffy$C1!o|>Rm?O%kz|wia<>75=4)=-iVEJWWXKYBe z?$s}V*0u+)Wfa$?OzYNF)(+K1L#nR20J~67o%jdm%TD(1>=*a%rvE1&(Pv5;YPvr> z_$zuhO0_p1XZt(k+T8Dhzhk$rs?3g-VcVBs;WoGo(7Y_eqX)}cp9L~aZaTOty=p%l zIh`lZ*An@H$`>9eu3n6tnEWeN!|*Q%x7o8!RCViiu-ccIC$|%#xW>dnI)A5Sv0aMN ztmf26q(0yf{ZBfDvSNGWMT?~3czJIw-Y+CGrZ2=AWxy{AWV2$ zxvza3?auJ-geCv|{4yp~8eWIM$526h0h{_)X8)(UjpvV$!fTo+{!izW(^mu|53iq% zc#+p!gGzzDU;s=kcWKY%je?-2hcbhtP@N9fNjm8BeFM2s(EDr;MRfOH?Y`!$*;UVb zCHwolcv3^EIs6FfiITNf!8QK<&c@6o20maWgN6;MjgvK7QVP8gl1-5>hnt6;NSoyG zT=p7Lt(HYF_|b#yZH+gyE4hPrV%#{UMSzK#6qz&MRZm{S&h#1m9Dwpar#tZv7+K9H z?_Kj7{nkSaF`pJ&c%>01DA#QD)$bfSZ`g2luBjH;X}T@6{M&CYEA+L7CdRv>xmu;A zul6Mc&9?0`q$5mrZ4HvQna0e+O_3}!uvdl{-6}*mp+(f~A?r^SR}90)_c}Y)uZ^1) z9zl3kJfhTNJSJ-8REM>7evKW*-|C-PMubTnJmLOc4aZWeuo-+CRk82Gxnn6bxlIne zY9muVuzQ7JOnB`~f|{zNw_|uFv;Z}!$xm09!JOQ|n^OGFwDBZiFFaTQ{V37?;%cs% z^>wdMPGQ*VJ)b9LD``6qCI8?TfTIy6Is?T{08y=3|DKN-rtI?>Q5fBN zz>7FSWh@R#7AtVNe~EE=hZ*K{@z>~#)O1&O!;$DkwFW+OxfTa(jlNwaPh$I-VrOuJ3*8l zEdX*FIj3@dq`*v-wMyU1Jp3=jUW}mfJujz`vPfS>vi~X5E9{v=0XyX*;}@LrZY#a( z+n>$2lsstTC?u+FA5wY*RUFj2|0i7i-LQm0XKdK>e(MO8=EOJ$Go;wBIphL#X9717 zWV$$OPQ-EVucyn4|G*rKy_eHWk4p1?=0~K~)u8Um?;?|*qy6E23Nb4-`L7btZi_`D zXe`n*j+#F+lt)NZ3D#VWd&0_^CEHC0-pu-|6Rxu4~{Ht`NP0b;{O4C8)TW}Z_^mnqIA|T z)erc<5bgg9?;g?$J5#}v;H|df z;{3JQzr36H_kSm94@HOUoe`)2)Lcn~9&_=$Nag(0r@QI-x=w5nmyPJi(b(VhcF*OW zWBtf+)!+W2F%7qgqSjPvOl;JL*iC2pzWApF%z`UTW!J4oH>kTuh!#V!mPs-?%qch$ zt;z&ZdXZ-1@tau*#>^+8lgJ7Vk9&!U6qN?2Gy=IlN!8!zbhMf?@?fRJ!4*dWBUt)D z5-5MM+kXUY9S;&fm*#DpXZd<(FWUa%fAe|yq#uY8LA_h#^|WJBZA0%mH`Hni8n}Is z2t^*^Z{r~D2aa=C#@i@K18F6n31ncBJkVlnC?eE$zbPpu$T5|k})Hj`d-xQiX{ zhbV;LlXCd{(KZ8h>54OuO8BaTU`2TxaQ#ec7q01nGwKVh+^dw3UmI^$Vv-&c=}Ltt z)2=qKmOsozoYJ&_*YcJs(ji_c;8I3D(TZjRxJ*5^Vi2KgXZS}gP{_~yLrpv(jCx~= z!LVDZMVwL4a0zCgQ3qOsb1^#>BPzdFRDWX_f}rI$JODA*m>hU#kp^Xg$W;S!Zylxu z2Z3tSS?%-XQHY=1_PEMK;t+{h()!db&6cz{A!d*y#e89k<>3p-SxVhwycHC`0bmmzNN1q;q6 z@;i^4A{aRaEkZ>qkYw^??N_3oRG9~ms#J(2wT1+J`%9(sy*1tdv!k)K&Yy1r&xeaS zL9_TFmu@Y9Cr02>oe~2xd5>o7f0IkZKNY_clj+{UKY)JQd5&OK6}J`LDK>*wMIjL< z{mCh&bH?wOdBc)jLXQYgw@GADkXO;<4)syVNj&ai{1=<~lv*wO-i4x(8Mf)Or68%j zMKp|=vfQ)u_MVYSKT5?$$ZvA;6Z5Uu{Gb(y(y0X?=2MVPE{y_bMN!Zp!_$r6pp5RT zl*%uRe=7+%BRreuC>0@hu~K3a7#nO4AZBT};fH*DK3rDHo@^t=rhWXnIlkHTkQ1hb(D=3;S{qh*zCiAsAx;7uvm*R{mwhSwlJT05PTH3v)&*LcdaC9|6Q8%ed%jXS`*UhZpqispsvTsZi--ano44h#(R z%sDzZw9$Ya{&;xyL}_Xf{6mS>b&~+E=>|w&)q@>4@cBV$gW@rmAAuMgE1K_j5(hXf zA0^L&L--9Tj1>Y|Us)W9BG=*w&^EpD_2}n^MenH;wx|txzVvPi+hWcu{9VO*8_W8Q zL%5PuGC&O8~Df>LkmoWpVQv3ZD=-F#hzN?$RDpbT(tr5K#MH zhoW`6(Dr9Fx0U z9EXT6$QQI#ODhto3h%6w!!j02-Tpmsx0+443{juu(fO(1bd30S6=qaPZ+-Oa)#NyN z>fP?-;bb%K&(345g%{O@L{nwhzto%#6Y>h`d6YzReD3wSyr~$8JV$4bpNp8O)T!&e zWbewUC;@>+5(XA;maKwFdWm0J_2BHWVE?pL2DWQOR0hJ~?#Fn)!zVO^s_@LhsDXV; zM5s*s`eOm0(vo2~hqttpCN8s3C^|5u{>(Om(OGpWAMYCz)5Wn1mz+F#gXa~pTKyvo zE-o&c*TpwH)@s2MdUI>Vg5cn@^Zwqq&X(=H%D4Ql67kO(f30ybES4+VW*=6`+Wdq* zcfP<@IX}_Cl^wr9Ne+Emc0ZgIcfP_R;?3XeE8{FwuE#1?D)**}-U38USuBk_O-RLJ{`@|K0pmT+xLxuKec=Ch!N3o;h8^@9C?#08ts~nnVlpk^ z zQcRZVI|#EIlNoTAwB660+&m3kuEh~x-N3W!f9VFcXKKFPD>zQVhglgzAxJU-O1O@0 z_Kz0WWj*ICik)@B+Dp7dJp2iutc1#wtHsS2JM==KC>|~hZoj5A=8ki?g;%C_OO{)~ zhMFL=$0e}h06ym36@$5se4?PQD0X~@@uuRnW;@DP(e#Ez``-xHb zW1%Pcl779@hue9)a>V)@1mOU#n6Aqd3n%3QkhGWoj?3_C*7?6RBMon2?pW%=C4-Rh|aETW;~A65i98MPpcZ=q1>~0QpP7ip1_P6fQ)49U8)+_dOuuo+it+Wd)e|bD(+!1jF_IL2G zS>GEV)6Op++bMlreC7?mxJ$#~a(jhDPFvCy-R6(2s^p6iah&(sXY;&o!z`G44A(6* zl~41lY`zoCdXgd3QQwm+^P!+DR?K!s`bWTc?TOA0YL%2m!1Dn|{KOv&eE9+J!3=f5 z6hsOFl1fni#Y@c9Mmr6j)2e|@bc%9K_k94u_|&K`pz)5y5h_m&hc-V1BWas`kmuH7jU(?&rh%jF7;`qL}&cPp&wk>FvEKJ=2J6{`V1KEhm ziRr^h3-Q@nQj#q`i9Cf~cR*yS$A9PyLb@jl#EklYHw{*1C5O7OTnhniYL zv}nazFPIir$)G#VBqzB5dBpqglS1(y-FfwS$$shpuTG6uH z;buikK5m;`3NmYoW}-_|jvR`t1749Eb|p{UpL}R*b7XbLFwSW)6J$d}vaK;qc}BZ# z+VV*1W-69_?1!s+`0>yLd~ zf5Z@EhqKUD*vPGtrrJg-iQbc|(*FJCTmu3Q+mA?ZL=oS9HPX7HJl>uLRvXe*e*cNG zSXbAd@V#Vf{kMD}sFf;u&8y?-j!0)M)#}!5`<~w9`9^seP|M|g5Uw5RFP6t`IQ|-t zy*T?jH_yhpx>*nwI9BcIcBQiHg}klSit0?aX|Dr>99=D;=-4q^NBDHUQa^HWd&2q9 zikK>L%pK-aE=~F10#|6(S!|3VEW8EG;0+RsL&{dRcZ;l6VNjyddQs{`<&Uuk?zhXr zY@80=w}fu&Cn^p_o2`qRKq1is9L(*_pM* zPrTt8fhh$yvjM**mZ=J_)goKs*4uVtKxpl?G7tJowl!v$tA~a zTp~5#o~4d^(2`U8U3l;*Yl{rfj_`lpm6VGnQ?{sG_^QrXe_uFCqCk{&3zsA#ww#z& zjAuHl0Z2#~YvJUrdcxQK0WlrhO( za^uR7-);to^t^KNouW&4Gpf||PNr=8CFX!ki}+6V8f6(tv-3 zYWd=-XS_|q<$=|&$kz7A`i?f4RmnFS@z?@sZODSqSXKe%0SBkW?Tn|MP}{NAYEI$+ z;5V*)k(pUHANmq?co-J zOE!)lH0K$?X1yS~rhE(@E26UkW+%z-2$pm(!tInX zFFd-`Nkz|jvG2%wL)(;JB{>h|?=J<>Lgb#|wVyH8L^0Z1dMi{I(a9+#9(Sa8A0Lz( zyk1+SB+y_nXdBvDCWrrl?zhV!j${r`Z1MH8^Sh)sbeJZQG+`&-*9xoFva5i9 zd7`Sv7U+j?xJp#FLIr43K4TchMLC_W_V<-FH-vx+(s@a^HX&e8j=L>_)@t_{4rd?a zfJ$#_Edr<0m7tg{nN%K>Puv@Ii3xOZng?;pl&%+(iir4=L^RAP^`f?|JgVCA4oAzO zF2t}YfIQ%Suak88brL2&zqgVc7>>23!LX5^?1DbO%x59V@#KHDH-{!@ejB*K1r)_A z&5m7dQ2n+hS#TkB=K7Je8*Yr_dDzNQZUf=G)>Fjkz-Rgh_MFj`%X z=wQ`w&uI*`XICn;FfTtB_bM=PMCwh+ ziR1vFeh%Dw+-zeosIO|RHd+W? zS|Mx0PK!b}C`8=N;q_Xdv-S#3Rdgy*AsD(>N~$qL$3j`FR%fQi^x%L%;dMIHHN>;n z*WODP;J!?BBR(ypYXh&_Rc3DjHh=;0$x6|v<2MZ8l4ppkJ^ep4S#AdffZJThY*SaJ z7|O;fdWPJ5rlgu3h*|qDVE6y7nFd1F|0#3|=3*Qj8zOfP}Q#UmhSX{o|)-UI$j zf46y?ky+TVC9@g><^XkM0ju#8Jk?Tx!WxLLnPBlxEYANg&Cb7#%ai~~Apfs5>HnvI z2FUaHcM5v#fHDipy#GIGLqORDEB3Ay{9Qe$IpFWYakxzShjQinFD~(~)4w!cV8#y$ z);oT#5JE9T&h~$$#_0tplfxvR1THouQS8m-)Rrf(_glABnOQ!)OKn}uX$cPQXr8ZB zAy~0Sjn{0su(;t`77+{$gTxhAMy=XnCEMKu-Czke7+fi-hJj4S(m7r`^rSHJAYoIaiT;M@7yE;K`4Q^gHdgufOW ze=bM^cDdD`+$!8u>~%0b3k}?5Ylv$=1?2n_Ek-!ua|u8b-Q+Qs>4Q)&V2nF7b zAelQLtqCUo63iww0>GsR0bkV&O3J}_-1PyVrupcKi*hEeV`%=KdP;hds?XUaZ-1OV z;=MILGGg%8-uKRf;g#WA=B^D5gU$NlzxBSa9sPp5WH zQiOLrdFuKj1FJxjM3^3yi$k!08$#;Uv&k*7RT9s=F}wCoJ6>1cl4RZvErQo0giR&O zG45lf6GE&qV}5JXuQGGNi=l3^M73!?lsobL6|Ot@{=I~*N*5~(%YG;$%#-zbw-2uK zLsYtkanYe02INcw^Jd09dlq$&*FqOMlX^va{-+tYOWCR~ z{2uu-Wa`?VdcK|%5%x7?tLEPmF;sm{Ik}siE152x~==wW&Ocb9VA;kcb|rp(R2$Psv~~Ye^Z5-!tHP=Kgr(loq`k z!=&-Vxmj{~SnH7#7e~4`FJ@6S#$9n=JKa~g$R4Itwv8FpA7W=(%}!5GP9n=}Z)7M` zwmNKTp;Yx1#wEPt&LLJ^6VOY9r{R({*d4Ru zE-%CnNiNVs)$FvE%Gqydc_pT+c;6V`6P%s0z(`*jD`Uy;I7M7O2{E4Pe&Dr_AL9Qv za~WgW-|j>euIWerniLu3S9P!UxQbRRrKLw}58z%|5)*75!01+33z>5L58+G?^!P(b zQ?>qi@Y?hfjl}I5;CchHi8d?N7sE|x-X5qp9wSAjY-dfzeJvJtN?>HvpJB;Anq|*< z=TqL?VmVqMcE8ZKRC#=DcSwN6N|@N^Eh?OuL`pl16OF4lz7Q^AJ5D?dma-XPbe)&E z&lZAwMFciHyQ2HBaEzpGhi;Is(b+{3W7C(-)YnkYFZ^e2Inm?);_fX2;#!`4(EuUA z-CY8~CAeD#5+t}g1lQp1mO+CDf@^SsyF+jZ?he7-<*v!z`+s+G&UyE~_wju~W=&Oh zbyaoMuey4@E%~bsXoF_|lk^J@3-ax&=N(I{9t2e{;MaRmGrNIg=T+w`NnpqO0EyoHv~H$vydk&yF{3+qc(ktqH7ULj>{h(5$237v z*rA8CV+s>fql)&80i%l;8f|-UssD^%A15GkP@8q+D-^?va_&lUEazQWv059#M9Ed# z{T*x~M4g}>Z#U-e#$*1t?Aq=6Rs@ns}?^sG){e#OyWBHu(i%>={lmA zgh{PoSSnCD4fIg5dz0aODW(o5ub@JjdQ^_kR|&e{$1$+i(N&pE-%bxvFjc39(skZA zJ)C_QgyYdghvI`7)u`{fTR0c4MU4~{7#^Kxqv*d35=^!;`$*1E6KFaR`8i@b$U_Gw z=EyaAr4}9WcIG?KrQ5i*#ELsoP=zl!ewa0y(Ae4catwoHEd^*>f?c(?YX7#(eswS( z!o(r7?j(?ZNhMflfSPcCEZ1xR!~XT7hrp$4cvJ2%fSBjJ7|gPOD71!rQYj0t1y{0w zLM@NMO737Eq4J@5oZv6-2JzrUI3PG2)5IA9DHvNMmkjD5;_siFws%tt}M{CnMyV^4k zgp)>UHzT>605>abbqX10oL;R?+Zxjm#Iby`V9_6@qy28ELJg@Qs(E~qI1m6$oDs(< z4+uCU`8%%dZA_#b=TT=&H4;pFB^}E5c^t6uAtGMVmAe0@aB3{Gv$l`7V@CkvZ1s9; zhx!W58$Is*MUr_dbII$h8aERys2##EtI^{MtJ1m<2Pug+9;*i?-v!99hZCNZ(c5_Dqqh6+E#}-p2sEqamXM|NkrR z=wq6({it!2F6{IbT8YHtP1*Il%XosHj4-4n?L%YzNt0!Sru(z@%N;!cYA5gMo%#B< z*X5J}+Dokccp*vgL@an*WE9ureq|jucm*-9J;zlBOLcmd=>_YzS1;a3f;(oS%HiC2 z)!a;xQ9)JL90YkE)^*jPF2$ zUC{;kmD4Q_&+E;XAzjq6%rENqx~?L4$d7wE-}ARrBP=$5NUYU$@(C|X&D=34K`AQq z>NXH!Gfu=3Hj()FbJEZkyZVqYf`FP;ZHt${dlGVKjDv9T$&B0ggYOo56B}`5c)9Qc zYwj9WIMFd+!%7kP$Pk=qoSmS86PTu0!ycHQJ&EMc7w`5MbnoVvC1S$eM;mnB(a=dJ ze7XGkgZsRV`pljW?DWG}-`0drtsp?*SxnW2fG({YCgNp@;uY0XnABfAEn_f!SI+P9 zXAJh_ehLh_D?p694h7f|KJFq zMn&Z(3PjH3l&T`BQBC6?Q!_Z9O)~bpA%Fir-lsN%4gSX1uiBoc-xrkZ5@Qh5SB*Sk z*a}zcR0*O*_F)(BJ#=#ZM-Kg+aqy0+^qk!>AbL)*W9bx0#@n7)3Iuc)j~FXaI>)~qEck^OWrWO zn7q1UPOfs(R7$*%F4!>OXL}6~+R2_Ew*aY^ROW{*8Jr^X>DAkV8BaS7VwT*b%N_6I z_M(V?m0TO2zv_4Hl5%YRpDMS?ewpBjK1;!s*>%QAQ3>E|V*yt9j~YnOUCdoE-(+5vPm# z>wECqqm4{`aRY)LAoMq;e4c_EMo1-EygnRKk?nSRWPbeF?)BI>F;>jYv(uQE0z`V6 zIqa(11xRV*s*(ja9+1n*?sk*2R*yU4a<25V)tl)-%H&~aG)e#JGAh_sB1M^`*3(j= zlup|8y>Q}??~~S^3usgVZ^D3s9J;<`r=kBeWZs@JQudHNOzS$fD$+H!Dw^dZW$dF> zr7Z|;ifY8b>EQA^Q5(f4=S2MQ5RoQ}!x4zg^i+uf-60YdMWVJ{f7%7GZ zZjf!Q)v=PxqR?$FxQZBkY7uCjrM+<%4gl;z3)>}rKMDM*}-XZ68#cGF5_aTW;MzXjNshP{dJtNWJlKN>!$Lm?&+wf!Ykm4t-L21*AKaD&L)>w*wHBk8`qToZGo_yo-^q&dA4%4Q0d_ zLk}D&Rjt1l&?E=m5K)x3{Z~2Fi5^ZpQda%;`DCg-P)!Z=Z@S`{vH$7p%|3O|{#r&> zcjmNwDQFm92Dq^ha6wfgKr903=r{xNN_kKEcf0s8kVT*+cpv(|&shUU>hjA$0eho) z&>#Zv$rB^|KH$|f$NQFgZ5)r7DjZ+U`d$7ij{T3uGWm?BU54BFoBJ?&F-QG<_(9JNsS;L-Z<{k=m|mYKdk6ETVKE zBeH(8ix#}*5mctZ!geh9+Uh0LMG+i@?SvrRgiF!Z9}jS6gg(suPe@m@(3cyqdJe}` zd@_5v*Ow66-s-6F{eX&NyfW9AkkTFiZqV97eLQZ%o@92Yq%@CP+gDqycv9-6)unuO z^4tnG&C@yQJzI81xTL8?8Bx zsp;GJ<~>@OAu7~GWm7_8_&7)>d;FkHO8$z^3uz* z&`HDtQ^zt4-{wFgfm)QJE^CaTf-)!P-HUFw5LmG8wRjeXXJPTc8t$my9&{=6eq`kP z)OmaGi%ScJOQaP@Xc=iQ%Cc79a~RG_uwBh~4dAuBnI%-1-_z2PZ`gGR+n0NT!1|h{ z%I1Padf^(09L?Qh)2HXGx^}@kesr(=$cIpkPBefj5)ky<&)pG!eOt4p+F2_1J>^q8crS4{y1o+|mDyf$ z$9@QP%gFpr$tfr*ZTbMaA!QJXk&lu$2OdA+U(2DJrG+M#C5+b!`&7hF${591VOcVNx+ za!Ri}{waa07ec5?2dv1B{y_$y{NuoQ3g+F%Z#_+BHujJ0a^qUGBni`imSAdr*`T5V zwB+qqF13VC3_Y48wK0a5U*TD>WXuKHZ(ij33RWoNB1}GeE{6Hl&Hz=SMOOIRddV2l*tGSD@|M5;);fY}!gNH${o!iCT$^pIu}Aj? z^$t2hkEw}4_Xhu`NNm+O)VIdPsuG-khOm1Czpf3_Q~2AQ~2(gtv)JTUQM3AMCNEIApP zq{MuNQ0RCJG&Yrl$b|r{doS^Y#uG~o)`|~X<0xvFBV2ttwZI$i`*VCKTIFI5$-e?d zB~u{K;YJnoL~OKE&KUo#48Tlb7k%<&`BT6aQ{eR>+G^8unyH#T}>YJp!~EQ%EA z_`v}T(Nt2$5di8MA}`Cq@YKMh+Du&y5Y*n0?R5~lEO@=#w@G3!a>BajRcy2|)2o{- zf3FFwtGQH@nWmLKjk)H1?_?)rob!z?l~w@7s&KFO^s7t&p#$T_;C;w{QkvgO(Fj8! zsHHp+lP}zTHKCN4k#Am~gd8sJlR*<4NC0?|g7T>uV{$+cYr=!T94F>)E%{)9FCiiV z1Z4M@Xq8hMY${!>X2VjpSt@MW0G<_u9$)YZ%G^2du1GULpsF$nICvor$BfFLU`1|s5QQY8p7IGma71!#&Ox~HU|)I z@+`fG2gY{`C+B>N4=!kUoN+^t^MS^}1_USXg+t;GJdA?M0ZdKV{;;rSA7C?gX>P+K zCJ($J#jz$WBftJOtvK%qERCK#z!Yc0WCfV~Ga9sF$QO|~08LRgEUg$61;p3mn*4&rPYGp?J zlC@^5#YJ4IH3m~Djiz&rFQUCy)cwve#(9t2cWb?6Rulyk3C1 z;!Liqy1!dn6cP;bOh#Q^Mz)#G8;CgEbp{m@Tt`vNY^AZ4TuQ&O=%_dCxchKB&t$pe z{)9{CiJ85UXcKj~e8cP9T9p}tp5W`0?&--NXw%kEo7Md$fW&9zfw-Z>zOs>No*!4_$sjO~Q$Aa+^V zcU@sHGsiyyoW8GMdHb%d-NTHW+HzQ?Eg;6w)q&2tVKI)~f*yw5U>{{fA zeBxAjRLLZ~y4Skg*@{rZv8;=FB}3lfWhWfy@Zc~q0`o9k>&HdDE(fV!8cEkhT+cCs zCLe?DIF(M1xO4|Od2yUw2aL7e&*ikThj;Arf4BKUKNAxziW2JCU*I4^mj`s0z&*tZ2Vx>95EEhlBsv;E@P3j2oT{yXc`9mR(C-ud5d$oK z5m|Bbt_I3QxMBDSYVA$?;?Cw z?OTBm7;hi~#kHI?>t+Zf>>sE$4tZZ4i7SlNtZRzeAHQs_&8pQL~Rd``cXqm$h zlvzC%Q$2+O{G7_O{B#YBY_MkaQ#EC)+_=+CG~>r)zzfy79-Gc#lwHf6T?-K&??&8@ zjcNBF1&(B^tFn&`qJ;4(DluF(IeFkuK6v4mR%)y>O`r%gOo*xYSN)tVbH2J<*07xQ zf-kM4l}q<9th~)2v8($`LL~c05c$@m-(WM}?MuHJO$HY+KrTcwo&=u`oUpF>&{h-NEIW+?X3IKRmP?R z&DN7=$EhLcLj$fj{HovG9lF6Gf+~#anp^Dad=cdA3EazE91rI}(=#4_` z3@V~`FYnT-)GBqn_Hqa1i5G4iL8Bo(C7;D6Hc<^}%ulr~tB~K*m{)1{fO`PPIO-z2 zPFwU2Q0WOre0m~TKy%jMqw~rop^{NR8##T8`9EraBcrmxk;4~;KQj^YSzYPfyk52! z0*J8C5Yv88xd~#r?r{D0)id;(2!;-uOG3ki6Q}Q%rM{d4ge{SK5gdy-lo77Mh{-sH z{inQY=N8`UQY809Y->jfOqX!YL4_S$rt?KC3RhoxqRkr6wVe4mQHrt93(%p){y7V9 z(0h)5Vq$)Fz6~z@aRt1Xrb^9=h9mc}91fe!oFXuD)aE&wql(`8X>-?v=bY`Xq1~4o zz8352Mpvuwg@LP2$0*JZb)hj068a`CCSf+ws3q!BnR><&v{?7eJ(T0tN6*XSAeHUgfco+E?jg>5&|l;eT|{#tYLKGsHb={)SV*Y1FgoNhv?yc^aVH4EE5^!3TSh zlO3k&0eXWO7XPvu5&)@;ye%?l1h(67XNA-eNl3W!R-!x!o(67o#6)6_E+J)a!5&Y4p^?s%k5ztDSL#Lt7#^@Sa+V&7}q1^K>)IaZYR`U1t> z1huoJ&a1n2^IDJ|3%Rk1Xs|)6BkIl8f?zd=F^O3=B1rdvgTTtWH^k_fektc3`sBq= zUp@|1NvIee_~j%k*nd_Fn|zyOhT za}@24*CV@g4f@LuvsZ?3KgmW8Ckc>Frb7s4+4EJZ;LX{KLcrJd?QMEaW%)g;C>=*D z!OG(93trqp*vJx3`cWfZljq?ol#%S>y{ahfQnQ%bCAhI-A+mVj=5OFoF_U;B(&YKt z^eX-O1p}cHQ}+=M(;Q}Jm%zzGU9RZpcSkH-UP702&dE}%-~j^UOijVkFZ3s#lnMF~ z%IjM=t^qC`r{6K(7pqO0<~sWES7?sD#RqH1n|v)QKmsXGu2`0Qf`mwL|0P7Sv9siJo_+qPQMQ>PM$@MUp_7& zU$kRA|M;Z5x3e@X9)@s{r(W)C>02R751B_O(Rj#=6D5;#_vYIP869=O`cv^{Tc!2S znW?+Udh`1a@7!P^yTAxg%r$?15O}X3iq>Tiz(dq6eSI^>4Hx7F#spz^m+ZOcQud~b! zrpqdDznL+;WuvYb;tLzfG4z@ZlcFKOb+#894P(2=>~X&7v03jCmd-F;zW||t2Fv?O zu0sSAH4S?^W)oSfxxgl&cUqa72`O)e2Q`Y%5UGef@5Tw8oSbZJZGFVEM(+h*ym-2@ zvhw}20OB!C6b;0313w48fP}tpD-G3(p8|1nQhFo5D+UnUCI#>XD@)lzb_21clpdSV zDTAd)>$TqJt%6m22=C#7YTQ*ZGxF7vJdu9%40WgJh>RT@^-qb_kTzthiI3vuma34> z1zHTiGgCh2*nBFr`Gw1FK{{pXikrtF*_oPQRwS|d?#Tl7p&@6e1&w)Q-q+e1eNUsT zt|KJW$cxT!aU1p|ZL=M8tQtfC{L6-~p_*nLL;8|&X~^;FJr7sd`uCK>MtE#@PY{sQ z{aMf1-p;`(9hCoAPq}60i-@4gBn{n+$k^`g^l==$tRha56mdNWkyC03n|HV!Dk+Hk z8u_dTZ=3#-^M3l{!os*TU=k2%UpIg1M>BlMS;$X-+ztel=e6=`?tQrWOeHj0)vtJ+ z_QUC}4N>F_sDARkn2*bntlAnL!P;F%PEhWDv9hU2m}ivu9#vIBqU_?=M{)G1+(}bPvLWHrajG&O!MzjCk~v zgReQPb3SL}t9usv!m)1M+=msDY)Bi3*C_ja_3uLZQBUbJF{bdCZ%B4^>{TQPH@>Tc zi+{kxIkzzXITM}$oTP8GP2qPqCCj|Beo!^`P%Cs_jXikM)7&LCFHz;V=%11Ac#%wC zJ}9Sz+%&+M1SGDnsc|kVL8Q z9r25r5~h^sOTs`+1Jdzs!*7K9*t72qz%;&brX7*}1wSJ&MHYs++ztB2-NgGZJ#_>` zPbzt`qh^RIwn_9LI8;ZUckq;~B88{QX^9Z2_Vo#HN%eP5lb3F> zKbW0S&Sy{~-RR{U2j9^SV0g|LWRg-ply{rLx7dNs&n0fiOWVG=<=jgq)_Z9(ue02^ zv%DLy00)ZLJ+a<$MiSd)5DkoL7@5}#)v!9^Ydo{>QZ)lD3?PCwtcVQ`Ek0=V!_J`9 zSwq=0p~t?$RNxbD%9odx{c_TrPg47^A4Y@QqQJCVHDSiW`K|!Pgl%DCghYG}=es8x zu2DP@NBxL`Xi%oHdLV2^&m3XfPkSSpflQcsG(x`$ z0|X!vnJg7iFCd7WB_k6PhC}T? z$`xF9a&2>X63xaAA-Okp#A&aMcz=)_m|=xA`q3$fI6RI6ow}>3Ka%Q~$ZyY1x8?A9 zJD6~q<@}{3>h4Em`y?{#^_gxfRerI>Jq}hoQJZyH%7(C=Tl%pxEh~pl)E(9RsXvY$ zZoTjp3Q11h+rCa;qSTt^C#FDRTQMR~#2$(6UwUr)CI!`>T2`!Z z>_+`#8<5GY=7YG;bfbC=S1GZux8P120wxS43^(e8f5!G|y~@}R`HCl}+05&@`noh51{>$AFS14r$gRG%@SUKyEJf`0`gl|$1r{3aWslON zso(WCe$HHdV}Gj=R>cuR{l;A{=yhe2$B&FF*Ef#YHIZ}D@;Ucy!x8!qcY)K6v$D=Z zMA%7s^WPU~lHQfRk7(e&c{o1CW4*3?pGx7$gOsd_oT_d7^Wp+a31Aa^#clYB1lXO~{)+IkVNkb6s_{s4Xe{s)<^o>fZZB^x_+pt$y z9J{ok&((#2bQE?({e3jBl_tHf_rres8qkA}A%mIGu@E?Qg1AVU0&&`bhK^yQaOio* zP%m}~)8_6oucHJ}5Uc;dIOF$W(l&ioQbVtgtfcrP%czfJtyDRUT;`TsqX%-_-EKwW z&qjx0S%;O_@;vMZD5f+CiIBqAwuYl)`lNB(?+s7E3Z)?*Vi@WQ*+VCejPYJKfQU@2 zTWGfA`8mqR@9leR9QHYCO1l=zywV0pEjFj=_Cp5W@-Xo_ci8#)`!eHkiYq@v+kZBs zn)h#Co%%s!Z^09kkzaKdd$ZFkr{w85gtH5HPdoPif+p#mX5=UFC0NPgK`E-H$tI4u zs31&N15x(efv$x$v6#HYfxzUw6!2xQuVjZd5YV)^d`fNW3P4Q>NWuKURS=ABGS#q& z5pc%i24@V@&wz(#_3~!l!~j3vNPNRjqiU5qtC)6qNe=*f<{QM{cf0`(qrDE{78E#Dlw$!Q2P<%-9q>2%uGN~qLXLC*C>Dka1*$AncmjwKAmM<_ z)%e-LKou;xIAJ|GI8o7#Pp<-F3T6kp6(EQ)aP1U;7*}o0SOdNc1`G1_|KQB55Q;}~ zg~0k&UGUEh0+k8jVnDnTv!|9^zrb+-$i^xIstNL;Cl$882!uci82+NaJ;s4(d)=7i zo@Vt6#nuPLi*xV<$40@24T9p+0Vsa4z_1e=)&|~xcrilIOd<&Rbe}Frjvkf@+XEpj z_WC!{5Ped%7_M0Og^2^;yHk=%_-~iC=2wXWB1@o5feF|ks~ZkcD1;yE1=k}w~eLR9S4~=PV zPutt8;1Cgmv&3GVvnMgij6r`qzr!zq^%E1#+45YZNvDQl^l43(tL6T%SNL^lMn!#D zQ4emcp`n|vXDx3LNOPkeq~aOy_xAR((^jdy%mrbCOgq}!vvot#fV_8XI4TP5XUm>C zTbFx|izs9Xu-<3@Iv1njUB=lBO)3QYDd5-KAVoCDr)Ba`&!68uy`})_XyGV$oT0#{ z!XA*MPF5xr^2aZS@as{CL>K|LJ0{S2@~hD03oI)A_6wCye?B$A2%-KArc3>iu%Q1lvgdA9NMpK<-e_doXdi(@drad-RWWc2T}p1=-3 z6fG4qG84kl9N<`R;Kd24;Qed(K7$aqR>x%I|BGV_!10P}10O>8m+}1lXsaE>MoosJ ze{l>4I2Qh-Q;GeZ7QhiubMt2kqQsfVH*iaG?%9$nv2viJMhMGQNY2p6a`NIg{s8@` z*H5E`X>KswIr-ZO$$|{kcn* zvvqvC_x*mAW?L z-VGk95F_EXJ0p>q|7?D8Ezw;WF(K?TYmE(5_JnCVvUixep|yTP>9YlQ712n8Azih; zge8IX31x@WGic|kPYR6&S0{ch&j1&>1M%0|2{RsnfL@nH z9a~$xm)M@H+vy1h&NJcPxe`!*GS8IXlD+bbgIbDv4B`fw%!Ex%@jUMDj;DGb+q$~&&&^epK@Br+91%k%^bLYc zdshQLtSr$VKQzC58JmAJg&x(!C-gm2C5jJgI|;I zj^xE((mQRGO1vc7d3989E@|K<;0k}$k@a%a%b83R358yP1{T`Jt6jS|%b}$HGrOFz zTfLF9NNS#M?TdZyBvigRXvLR{T_pZDy&V%M3-zkP!x+9-Ry!aDPirky*JK~mdMlXN zCkliQv+tWi<9ma1QtUd=Sqfy^wtTrs3xrzSphe2WXb zIubYK@^_rGc;0_mP+Zmwj=b8Xa+ss)9JlUxP`Fft(v*ejhiooILQ;`*Xs$tMCNj3M z|4K#-Xpf8ME=Q`B4G+HdlV=b>v1(c$`mT-PU^vtUll^@-YE5zv>Nh)!%oktXl=q1<6!r5T02iLO5pY?Aw$v%WrYYMfK2NLEY z(}qjpN3Y~;fgH4NNo+W1SxgjQJ$5}*oiixW*BSBE(0KgP^bhXlrZ2<;T^l(jy01}uRJ);{gFIb4hOneX?N1G{!SbVZPfmc zyl1@FZjnO9I-QL@8te2iq=dX10dS->3@7auTpF=o)e*$#32lZf>9Ed^>wT)}7sblp zZsoBT4KA{Sxk-ya8@U@S>0jvmNVP?7XPA%PAUYhXBMN|F*OvQY@SH)2;VGEiZn2=I zq73e;eTtwI_)jFGeI(yD&r}1Iw7!)t=807E(*oIn3_?>YFCKzcvl~og8oxx=4M(Pr8flyCH_6vDUHfQB^ZHuri|m& znk%xvaEjNlVl|hzL+L}jkEUXyH12*o&vdz=1#c*qJD%??*%OAA1mf?Ln(NT)Zi6ysdC(EB)A*>8)Eve#7@?k@YifhQZdq~`DD{}f-_PhR-o zfkLa0Zj)6+6T?h-V$9+Rh0r0#o>M3=pJQ~i;&M%{HJd5?IVX8Zom9?T40;(8&Bw&~ zK!2z7Fej9~cSC6OJVC+cr=`fF{`80hcd;h;P*27CoVkM@VeZJDIN2B$2ylwiW0X|7 zR7;l(`Y)Qs?5?qBqYZy-F3>1&3xRPN^IySpsty8=0m1W*Wdq#nOJe?ri2Wo=M>;M? zin56UOgK2W&RoWZ(K2ht_ur#X4u!7tIu08~>OAcM*G7oEV_ud>?797&_G$2U%-sV4 zm$0JGEux{hjyd;^Yise@V)AQfCn?sn^$&FCqk)+>Ytm33Z)N+OP?h6bxDbT8j&Jl> zc1~Q&-+MXN%-_(kFVk|~I}y^C2EWP3SQ#uk*bK}(blj&`s6$h!Q7EA(u!&S?wi8^t zd7a`)aI*UB*?=3uFq!8@XLIg`Uiq1RLFt5athZskHD3e%Tw2Wd;l6(yC5Oga1X=NLYA@bhtl_%f*sc)_ab$?Zu|iEGgLct zSbvt0QK2?RIP%7T+So1N&K*7F64t9*THce!Tx-bUj`teF%QYjgG0o)Ng7oM#;M+)8 zV@}(e@@h|(o@>=UK;<=cU!93tnL*IMTyS;aY9 z#z-3Uq+-lt))eH^@Lr3^lE8VR5S()w!e;?o5sxq^%j82i(HL=HqRd2CbF-W zoVoMtjR$A4o+l(Ljw6bxulXlB=KA~x-1##iC*y@mh6mA4(thMYUPq)!ne)Jck?oh7 zo{EfSzM;JM!C!xmZVhWHzjym8KT*78p5MFILv4(TORGc2V4;y-?S}hC02D6vJ-B|P zR6E!lPwrh22kO{<7Cta>tea!?hI|J`>7Eze2)p#@b!BkUZ>s>&YdLpV3 zzgW_7i6=KSQzTdE-exjgz5&}MgZFfx};)gq|#wAMemdO4;% zlalg9uBsL@RqH%1-fj1?YkYNnb4|g;+@(K$0$zXE?`S^kb7tRS4(+^_T$T@_=;GDt zcYitBBQ_)uDUo0xr}wirUD+MJ858Fb@0|Q~6vZGPBH7v%*hF`A85>`@K1>CUCy23C; z#4}7?qPRF2nj)|-JF;7qQYUuu=Inpisu*wI-X^x3mB=@RV)X@#ri4;B+wtJBGhBV9Uta~1r6uxe^o;Yc96EybTFHv-XYT~3qT-SZ4E8C5@C5HCYx5fX|U930XpgA!CKdMIffLGBy-|nQ#Xt&iL@(})Qr7&If%5WER&+9A4 zEHhil*5d+8Myoe4tM=QU^6N6`=m-@;EFg&A)-nL@W*GJH4yWvL3% zF(CfaX|!rVO$22^)2w$PBPE_=rHVXD)`1?ISns*K#ff8k$u{+=2SiE6WL@RDNHyTD zw@1%h!wl9}UPm-M21fqE6TlGOwnVCl{e}$ytH7cwJdu&#iA54%QbW3SAc43w;DrmZp*1}`oHi6SpZ+SQ$LaZ6JOAC1%@4e2r~&$7vX3C z0Z&?Q2*HNnF#kq5e7PYe27`kNF|q$3z{$Tu96nZ%7<$mlsPGqD0$_ckE*tB;zYzkK z_&<>5uk+IXPs2`M#Q702d=JPeD;xRL$lu2W zpir~`3Kf0B02#1P97F-4BMdnHpe5JJ0La3a^_UF8aR$92MJ7sa6E@_Ol>xh`I94=6Tq>Y@E8ulu>cT$!40|alRp%Q6G#om zbL(Tm0VAS`VgX_-%YN3Wtu_NMo(l{&kX7U{u(8AdGSix*g= zLS6wC6>MKpQZOnRQvX8KqML!0$zGBuB8Mz;C?K>d7u>RcWR{HPa=OVV9+`qPETtO7 zCgC(aH@CKu)kC9F$&xEg;P3Erj9QHk^ts9FtaW-+Y&2hg;VFIa%iLcYvkSqvi0?Z! z6aant4^aQtgnVS+LM|~ayyrsV3Mci)L)uK`TB^rO6!RW~(X*)2O)lSUkJS-(egNK7 z9_z(y4b(A%=j-f6vqqOsu$jNK95DlT07ek;d|LrBtm&FVG|5;RF#A`T^2p z!u(70z+sAlf&*j2zZVFeVtIErxJ@WLKE6aY`4tMSV!hOQsYEu5S3{{yXcjcHxsLWo1S5oy>$;Z7v*a>FU6F3h$Qnzuw@zG>@!ncK1xWi| zK@RN*Merj+_#{K1*&hr2-G93w43IE9h|TCma(3!RR~L_DUEjd421j9r?h?t^5-zhk za7|-`VcXr$qmz1c3z~vGd;*?;rVpn$VxzBrn&F5-8~`r_u#*rfkB4|81_0F`&%9&! z8|~G@gkIe_WHVuI{miz-;yk2;^*v42d@7vqvCZ)N8+LOgROFqB?({ZF`IQE{BfRnF zz*#P}S{I%OVm>o0@K7=vHa2~1Pt`8hXw9P>((!horr@yLICT)>uXQJD1H2+NH!C6p z=GD80q&2{ie(1jxR9FG+sNM<2pI^MaZ4`>5P}Mgk1~cN(5y98jS3!>M0w#sk0_t4~ zuYZORvQI@!3|6++sSLbX?|m_F2CS!9Eb4K$(R8s0J%U(>R@=pF-4?Y%Y;<#wAX9rz z<$FAblmeMP@h@lCDhe=Wd^&6ZQ8%?1z@b>|Fiyt(Wr0zZu-1$9;h@ljwY1QLY;Zh- zJQe_>Wa{~r=6HvCg0_Y#to!*bmYk#iEh=%TN8*Favm` zw;(bWmNy09S^`gpn(2pBrP(&OU#`%{5u%DiUWUbx8N4U}{K@ML<6k??uL(jn6Ns~F zg*Yp`#Jpd1I7HwNs|?&30J8o2^S^f(IY1rk7=HazxCnU2kZKj`zwA>W;Dh4)3N>ZO zx8osQK(wy$Qh!Da@IWz!om|QF9pouaNHwOLH+B%>IREAa8CJR-U{!RaPb>u?|F#FX zCuMaS{`(2Y!>t++EtQfjPyMB(GypBXD~60}%z7p-hq00e<%M*=kq+l&yoq7$c)xJT6Ts z>S`$4agO??H2&3WRAv3Asy{W~&9^n3Y+*|SJ%kR^D|WcrU^SB6P)SFSlmkoIPrlsy zORdqH!y(j`0#cQy5PepLl=B1ECJJlD9y0n;=~uf%U00%NRN+I_WXM`L-%F>V3=Q3l z4XE_M&i$c*tw~R_hpS4L-YVmySs=rVnu^IE>#KQ8V{;w*s;Y}K8-u~#!2wUDaHnkT z?ZqUg))lz>LYdWnMCoZm^y)QpdO(Jk7wO8{F5z(|xs50zb4qY!qwsuZ`KnL{HtcE@ zd7P$Xw)AJeQe>j{f0zhO)HZbeaMeTFGU0LEWLum3jWm65=E*l#Dy+Cm?1}GeAY?Il zqse@@*KtjtIQ1+8W}fSgGB~*nGG!e*T5q}dhpDjSx}MJ;=tv+Nmhd_BSbUoC{JM`K zQPC$aFfR1*<0`CZGlp*G#OD59HZICSv|k8x>=eSapHz1#`l_F&hZRc}rVHGk>h&5u zq;$Ay)laf-PtJ&0zGJv1bD1V1KasdVOIr<|FOEeCUZP5)d@7&&T{B*cN8^Lnhh0TB z%<dUpgW!}odv}ayZ0Pe{Ke>f1egDsynaGlO1q0789#tL`FFq+g zSaCNfSwC(CWgTbs#Qf!+k)S2<==@|iavNzv()u1HyxP!ORGHde3}rOF!}D@AzDjDF zdWP~}QlK|*Q1*gTeX5^v>B%>S>w?mp&*`Z*dWGsYPJwekSKjD;bV3`bbq1yKJlt_Y zNc~bqn6u$Yjunw4vIXU5h*?_hwk*c8aO-Qj^Cx+VxOlFEzSM3K{ z@1Il=n5D>e+y#x)A!!8u*iSvIuA;qGJ^%1ha%675218HLbvwL>W`j&nU%jx2PZLJnAcO$X-B=W@8zKi zCD5(@K{1r{*9}d;)(UiSUM~c$$Ax*21m_H$d$?!eKk+A;UcwY%7@nH2-46lVrngI< z?y5S8RXRA}W0QG+_L3M`uDNBY=kIX%-*9``RVjq)F#N+sVqK_ScY8~p2Y1j=7_+`$ zRQ@o&MQlC4`AfJ+Yc&3fJI~QRBC}|SSmTpTOkM~NXFkwUrY#4I|CLMQ2k(HzhNrR* zLgz9WY!P~`(SBN7{Zjm>jsisYWw>ES|A^6ze!}}cL}@Dr@XG}5sqm)H-aK)g(O$_E zRfY;VH@GahN5T2dT~>PQNR^S4sa)WHkliZyr(6TLGf+wmY(4_=3>5f=rre>6+9Low zWFnu}l_T(xUJ!Q+3%UkA{;oC9+OLGaZ^!??+9m18zYoX6sCc2GclAeSIm;)Zw|j*N z;TkS>gYLv>+#Lz1T^)k+0$#`d`!r+a`MI4E5dxT=iVOrLP^73r3b!PiR5Tjdf`zu# zeG}d9ncXtQ2;zXbln}vDjs{mk$DTzrmM4&GsTwH(>^+paX zNcMm3!@ufIG73BuyN$xxHV7Ja#SR;Do5|2LTa5@9OMelPv65D-ITPlXd9m%;P1p^iB; zH19AlF#KgT)tej7(>-dVDeJQSxAUF=KOy}YnVUk5yChH6KeE0s7S0*0~QfBy#y z6Mjp$=w^6cdVP-ZR0497Z9I@7@*al#0B+^K&D6i}Kf^-4X3^%pmxm^qxR~1|g(@YA z7%Z!;rIy4ThQ=7in{RBqi8Z{(S?H?WOtGx&PY=KOq3srdw?Tjg0Q1}PHzM<_Vbz%X zoeETTcIX}8ma=8?qM%ty1Z;8}f)hJq){lAJpVee;$k@GL?xIE7d4zyZqhKj)#hXgd|rBv&HJVmTHFn zf;yML4f==q-TU_ii@B5lJkef70x*Mr@om97Fj$O>&?N0kVZ?!nv$wMiHEc*Q{xSQ3 zwL(XEb@GJ!pP!N_E|Mw`G6X(4*8tP}@I)j7edgKjwF-9Hrzwm^Zeqh9ukFgE*9V)= zP!!o*Ottgc7rU~X&h$-3glFhMONG7Mk5jH(N^LN|;{63%o+0SHs`ImdTicsp+?AC! zCSi>}-Qi8oiQI+*5Vq|PC;E5%e-!#hqJkpdK3bR}kF4FmnHaE~=rJf6TI={+Y`vJs z!KN^z8NazcISIBwG6gEpMM5{`b=E66c3Y4A4xY*=J%6g539q0!y~PXcfBZt9^+D8U zyHdevY$sfJTHsTFHs1;uqw^74GyAj4kSSB02uD#ukAQTE(`Akm)=9>KpQiq|%}r!- z+o(Rv^&;W6;iMFM93#`=m?1*<78D;*c04onFP~0K8Foe~BFGvLTzh9PR2I6nX{$UE zAh6@~(NL^q4*;t?YRf-5rvAgU<_X4=+mgRq5TBF?iQbrB=aF2VN#icfaXzrm_bYNL zx`qu^F#jGG`ig>_{MFB&Ce1+Pyy}E(pheUXA^Rg;Ud-U|A+h;rY6vqahftXfB}^e_jkf}~ZFWL) zU{0ffy-cLSv5S4E>6eWA+grIkm<7%KXXd9r3>+%=^Bo5kWuf55$H(ld8VNb=dA`xQ z=e;c7$$VXTg&zVaQm6!7^LOW4$!3huKUart2i<(Uv|De7wk02(cFuC>b$ijBQzN(?zwyFWs84n@DR#nCDI>v9%#Ee@hQ zKR>H^o1lFpD(`pUI&*^=J?w}rMs2ZcML?q=#+>5ffL--$9T75?S(!y;4TLh8C*x>RzDGBNb2{09#1un2gSiqZ#0g{bBDXL4 z9gzja`mQV|fgx0iITW`SpU4bD-_07mz3w|Yx$QOUpQ#V7z_WcaHfJ-Ka_PCQ*;ZN6 zeT&&0@Eqch*laR-@hRb53x=og7Cx9bnJjQwhPPw73V%ssEJ^G=<1#bG55K4O-;%_U zNV&Gh=2{(r&Q{H8~jNqI>@#q@x$ z^v&Ax_5Ic{6S=PMyyE2`14V$jMMq)&z_jreql0S~HJ&Ezp8~9HG2=;)GQ#CD1hlQE z!vJK=&C?g`AXK~raV=~xKC_x6svACYMu@p030?7O)Q{##Uq9q;#|vN%vxs#sh7a*& z)~My6#&>v(K6JBEE#sMj_7uCUI)SI{l@T=IyReKYE)>1-9+A5i#BlN@GBVp{=R4FU zm&2gsN>Gl^Q&WntwZMv6VL}>U(I_x~n^vJOo=&;F;V9*vhb6Oc%;|K^`|@O(?8Ao- z193Fr01!2~RAv8@5R$N`^Xz+^EYl;WL&EuoRAMycOp(M)nU+=~a_yfPx3|!EF8uqO z(|{}_&yF=v=48SIFLdQ{K1>~E?uiwE@xDTHix$TVPS;vP=4-8QZC9m3p}1txPl0x< zvY z7Qf&Mp_%esMa3vH3!w6XwpWyGT-C8z@hFGA*tSQjiT;+z(eP<-+ERYke1&s;vYrk4 z!7y-C=$yiOk|`V*uT4rd0wj^sDhc3dT*12BXEPto`fgMw{9*Old-9hQCfBpHE1lsd zsf)16^Tb;xV-jv9qak{u#1s~#=x?*v{D#`uZzbOyL)4j!~6H=Yq5lI??B z(-iP-otr8*{m8pmpH<@BOCtCX&j3j|~ z1*RciH#_AQ_|3Xquk>?dgZHz@&HA_ZS8`B&41M1OXdCs#=v7yp>tt0wamcl=gWJh0 zp)QG9#ad#IhA%pmPZIbB?8G7W{ogL5JzHI`wv-(nSuJJ`HD6^i)_wF=xez4FSUN;e zgxz$yysV(iRdV6+&rD0$ij4G6L{Hn}8uX<>LL_bwPVa28OG~uis3kvi=HyQbxY)tz zJ_ca?R!?X62h2w_-@HBe?kaUTkF^GGXO`zC#%QwUVUnt+M|nWW6gCCua3j4LV`_c9 zoWw|^pO#R#ka%`1z!x(s$Xn6~?AUu3weBL3YQCE9kO=5GKogrrYQE=j-f#nJ`?d`PgdSvszIgPQq}9h);*NmW&Jte?CMG? zm7~C6Gb_AUzX)HgNG`}}k5z0$K|WdJz13{-Pc#Nt$kPF8q-@amhh{XTRAWvLYcZle=Lp{SZ+i;llOx3^m9s=P z7ofOqkGJgA7UNNWW=mx`k%C5_9x%V&kGz~su9HcHvk_n4%_hH0RczYbQ6$*h`+$a#~V6ud>w8*#!=sz0>HT`z|}zu?}eey>{hU5~(_0dLO? zPTyY5YfgsAMHacX*H;&^**ZnY1j3-Ye{-oA?N zl*mKalcU$G1ig1dKVmhsw7DNyT&VIcnvrHVy;!;;5okY$49m6Sc53dh8{~OtW{7wr z4JTD5M3C@Wg@W-IHx{7n`B3s_7CV{fr=aGWlN{qGk111$#$Ikfg7qbG(|(JDjGm2|dLtF!e1^X##amw2WUjgF44T0|^+o{U(=yoPtd%?53z;PX`r^{l?owd6vn(46El>dtud zvEVnknw8#*#j8W!{QhsC6(ygPE`2L_G&YNy$_m5!&+JJ5)o-=_X?K2cGpvi-)FKPR`Q)3N|Z zjK0PK#R;!8UWVUHn7ozKd~S?rg(pwA%<;C8g3*h7zKpVIi?c23dU?WxiD!9=WlIY! zkXpOC`BB>nm0>CxD_%Y@m8YjXC-H?(Qy|fMpN^rB64g2}q%Xlb=W^3kK0fk%M(H6* z7)e{EjYyU{k9c*=qR|FVJfF6IshuVKxyG9H-S>OT-qpZfJ8~=W+s-dV)%!El?^&MPFxzN~wr&!c3%)8f z0&`?nceSCN`mnCO>y+fS$Tot)Z;8e+KOBrTvpH@nUX~pN-dNCP%cieKz)L}dI6iU4?#K(MFU@1RVCp3X2%)i*THk+Qovwpe$x+v$u=Jm|wh08L($f)U{!Sb_r zup)VL&6$*E-2P4dn;V*!23hZy-8qa~^W*Rz`bga;vY4w(8-3qkZTkkTKHodwB@r{N z<6k8#>tQhKA9o*U$5*);dVZb}>K$UK{WVk~bWSSpIt$KMmQza9Aa49Z#OTA0+yf5p z_wr?n{UVXHIaEy7y3S$zqZC_i!(>n&({(-(HvVEqth#!wkNjJ z7WA_7E}K`3+s@o?^cc#d1H>CV_fWpuwFlMDv72Z$9P}HZ9Sh-dE<)*G(zZu$Y z(I{y-yKD(pLc7V?s4{PYLTY}7O`2LQJbvSwuEq0F=0|yEgoTIvC9&BIM6zH*Ft~`_-D_Yq+&9@!Jg`=o79uOCB>{c{c6)r<K3 zsIr`D$N}8HCFCO{;xrFz_9Q;INPGjK9H)(fxkT2X#_X zH@iV|2iaS`KEFF!t06d?w~y=UM#XFE{uB+D!uO?=%hdVLPMF$*Oyr&JpTowQA`;s@ ztYj4pgs-vvA#O~g>4NI0pG=AMwYF8rY+W-8&Vm8PpKKvX!9jQx6B?+-!O$x<^kg;XI@R--l!{aQcX1h{hO;?f?{r*ATBhzxVH0ZKdN+EhRpRJou6*Qm&i?e)kfrojSj0PB&dBbju zhLSIuV4mtRoWvU!)I^Zb79-%PaF5uAL?6+u4$+Vys`Fwl{Fkf8$D{olVd*p29yuyF~f~$D( zC7X%JzUo=v&%>ouuL$VYeH;6-^eDK#etdH--I*TxBYh?bIIp*Pv%0OyF-x){2NDt>GVzY`@I!0>cEX_!ytc$2rKX6NuwWZW}J#V8a8?<5WFn~}~)nA2}Lu77( z@Tv~hHDz5(xvkvXqyjBXm=q*VgI*-IDVEQUoi=^mb?+*6ClZ;ST{Z*NWNitb!5$1X zCcJjffn>`Wefv*z6AMaAcSaFB=}8+d^KE?Vp0BSx@{_+$nfXinvW{iW?an70LzA(Vzwavxne zJ=p51np|IA_>(QxBCqU(pzdDKv|oGtdk@~es|=-zreV?6RVvD}Yo6E;$h0Bkv&Y49)0{8Q*EuNW(pB+n8&)JUUmE4Jc! zshQZ@IH^K1Y*(08&YSE7?1bCgYXG^dtm4UiS(GQfXjNW;bZtz_cr}!VrfVl;llh@& zf!PEOtY^pcPCo(7(kzFfllRuZFNT>Bv)b*e;jBv@1-JM56Ks%UVUwSg{R^>FY`(*< z?{LmAO8r3+wAuFQYN4`_!C{`p&4FI}vfVHZ!z8TF*x z@f-c`jS`1+H3rWo>iTL&=@;-I5_N;9oIL~W0b+LyqsYcn-RqeG!0gJ64Uz(U6HWG! zG3zxzlc&km1>0!4056Dt?fjysBEPu$@^Y&n+|hiuW_+%H!~Y3-*T7ok&`s-gv-+9K zt*#9ac6#lF$!VdG$k~~YnjsD!Dk|P~cX#(O$9?yRzvae_qKH25*)y%o=;T90q z$*K9WC=2>{5jhF1{YJ=PLp_wpOl6Pfs3<$>a>#3PA8}fc0Du?QQt0V-05hR!$MLFX#-v z%xn=~O%n3Ic32_E8hR4!Pkh3OUeoN9S;R)f>_C-Noj6e@xK4k&hoLGe8h7;SV4J0LRWIIK^gp! z38iY&@)C3r(E9m^SmT@GztF(fa;1d{Bc(F1r$eO($%5b)ZW++WL!GMz9tuv9TEbQx!-PePJ2oy)kZ`XTak&p0xmsA{1<24 zH#G(Mc<|F6-|}O|fRXh9Fy|MeRM6$~!Jb(Pk9T247_d+5Vz=_s{)WHfuD#s0qSx_4 zwTow(sSft};KxZp*OP%Ny(W#4qP~gAynbBfEP|?n>m}HkKCZW?m4;8F`@}5OOX4gZ z1wN(OdMN;CDm`kLhcT#WysOhF7V}VkrD%QEVy3JrWuDJ7tTa%WpIp6jx0d>8}RX*)iUr_?$_JW>kAW;AJk}Dd)flB zW)=hBejsnxqtUwU4hA4a>Tmx51wg&Nux5akNetJFqGMjxU(1Z#+bpShZTsMTcovg$ zcscLm2eKzDhUbpQi`IXb&S}iwp?B!uaAM*oZGXbNEtPRqSSErae|4qLCEf2Tos&1~ z=m<5K5|+Z#H9M%GoQtjmcPHCPl*)zKsg-R|tY*LvuB zmXR6M9HBPQZD)M86GjwX3Hj7hcmrK-YSPjBnVygfMt>BUa_q`=4Aa>?J`55br^DAC zLSGsg1882CD>R)JUX@SvJOmaRfoXjdbtThXn8Bw?Ed(X}9%TS1od;{;)jIpO%Vp|U zz|HoyYPE+qm+dsc>-CZsji*E&BQk#6<5HxJ>rCkFr=co@#nK%f^I1fGLE;9m)G2ST zjBhB-{^_R|?|%EZU-5wYrdRa+kC`|7azs*liEzfWsk&OUIIBkcwx?;!S7v zTw0a`GkAjahI6sW-ge%y($OwCsbQ0TjDN@RnH=fzkkNvF>_4pLyfr)A>m31~0kd$g0edi`is2Y>OZ^IWgZz}YtM2bjRCcTC!AblQW0 zD%&gmm)YV#^esD%@M*40(@U2#w_t*lYut%jOMl}T~7=+2x2Qa zGVAQuWA}X~caw43Vy0$2jFio2ZD0Xhm38mRm&9lX#tN~lXzyz393-^}nPJ4_T zzs6|YtA;a5Rweb33WVB3lf;T$ZvufA%>$y$~NieOM-KzbKo#BLUM+~4p z3G4cRNOTC@nEk_^udru_4adii4Cd<$;zG6Ta~r7^IDAU=t za9I2<(=$s_BI9) zYuDvA8|o|0-m3OHZ`?No5n|7##UdyyT;bJaESbYumfL;HkW%F!K&<=Ta{CY7D_>S} z5f)-z*7yCB+lOb{7ETTmm*!nLBDRBO#AXBkwhsqNV zjF&P_guP`21)bm)Z#DN8{zVS;-#eR`!1Dpx^_Xbs{aUBnn+4MHTOW8IVU^>OfKLfD zkR;vcBqDE+S4EY)Ux$TP3Y1s`N$GB6J~W7ns7)f-6^>%l=$qvpF{n! zSENq`EDKe4;x{^&C2P_mo$S4PTh+s1960 zoP#EzjWDKN;c5I}H1)i$DJ0|MsR?d%R;$G^>-u$iBZvX)Z)o*E}z35%4sV zT%5~HJJ6lo5~Wjzs$$;Bu*|H(_pRgS=Q<*le9Jujr1{qBNC}~Drp~FZRd+#E1Eqkc zOQ~U-{hcIK;(&vf8n)_Po{FOgfKl>VbO6Nq{(jj++Sb&Kl6XFvv$P~7)`wlQ{*|B)M*Jo=> zy`}jMe!h9q=D*S%z^U5X>kJ5iZfCfwae;-^FCe4gzht6!&R3cB>o)uOohG+eU3Wlf zPxqKgJSTM(Mu}<~Mij+Em3yR>9Gf;vEA5F=<(4DqIMFKPQmB6Ll28E zB2+~eRdf5nE6Y+=9chh-G3w>ZcB$=m1|SXTf=%jjuv$;s=W*4G#{5#S8Iz{;jkZ1& zJikU7ZsmvvNrb!=f5E(${b=Pqq3LKUK9ZEd=}Ic?%Y`#8qK@gb$E+}*$z%bl^9ss{ zq&JU4C35|9`31nLr7%W`XB+-x64Zgmjm3#3rN|_I@3h&S6R^`3w}oS>`wLtCu{X}e z>}42_(KlAURy{74we41D?eOlWmxz9y&3RsNNeUk0`Q6w3Py8@dYLo0^Y%(^GA@Em< z8GW4xR`P8#q32wUM{he!nlV%om^}n|-kju(BR^pS0D-P+e}bQ1hvf6s^&HX*Z_A`c zGD!ZqqS*qqd~Fk&VX9@POoIUe$5bnFHxe);^yTiYvRFEg6V}Y3OvIrfJb`w!ROKWx`{yf=hVUE`vnYr0%y)jb zJV(N$h%e!T&4Q+o%(2@tdFv7IaVS|Krual29^u>;qvWGKTvCfS-iti@38f?d(b;;- z+5JG3Ws)am8&Ne5-DuKuZX)E@Ae1o9m6oBsk=R~YCk(Cv{+ES^>t$Ljr!J7eyp6}l zn#rRD$M4BWX0!RK5r;ap_DsRUs<}&faZZfs$IJDo+IiNtg91y=%d-dXqr;hK&IOro zI6Z+roLAK+tfh7pY~;+0Y!RnnYN5j#0;8wX*GwW-vAMM;y4Ti`_MBK$MwOxR*8L`z z-wimj&il)+0YPSWu42(-kR0+Var%>P8>-Dp$;y z1rr+svS?kp>mLNS>nj4jy34(9xiDl}di#J=sqGPJ)cybveKD1j27l`~NY$M5@oLz4 zkgj0V;rRlrGb~QFR94mhs9J^5b?B{^qwp;p{d(X|NWi5$G*9`u=9uRj%37%>z9{%|^zopvj2e+*e_K6f$3TtlD5?Q_yLPGV?=S z(*6%L#Nk%+7nTX4b?*yWlljQ5WuvFpoyQk-%BS6_v8lOPGwW$v^N|S_;LP5c>&mU+ zC#kcs1rbZVF+^WhqVTZJ95updYnwa0gq1@_17!O~<-=^q-Pz_$Rq<9Up1S9#XEmPK z$47w%Y$TSDclxYm%irDAefx8kPt9e)dhLZho>V6GJG8G~VofPaCJF&A9j?0HKEPAQ zu)q(Er*Ex#Ktj~4VFv>Y=G_SZQ-j2RsBPE9H{g7Y9e$;+OnJ#*TKH2!H9vj$?LLXpw>V)QnO=mD`O z&N#L#CflT4s|vYj0n_;@SaG4&x;~-Bgb`kkDwKy#@lg(JLQ&*-<7329k;&_e{q5+M(a;l2`?&J7L+#EU@NIts4r}J5_w>K(||3%n&+_^xbRS)!k!Wi=PSIwv#cugq-9}j z&~YK|>Vtd~tR&)g<=FxW2{SX0nPB8q%b8;|knpC8Z}EZUyXa|{YE6&Yx{aH)4zfYo zZ*t>ZqBzM6%dk5~vPum5Mqdc71n z+`iB^ls2~_$`#6}?GS8X_KSIa$Hppq74L{tE=0pWJ0BLp_z7oxah`>)bdnm?!aGwg zrN}f!T`6J)@z$mvq}=FRi2Q z#giH=_w3Q;*(lN8m(HAzZe{)Gk50`k8E{J*P=m_@ZqQtv+mnc;z7KKXi00cw$IjF% zDmI(^pymOKj%3b>_Ajy2H7a>oM^N|IuPu%{VzhCxL|%;ElNsOr5=g_e$m5qfDAb#Gue#X$}-AtzoOgrubd95|m z!8|~c1^85xMV)q+M4KkKK!H1uw!-a(JAfJVx?Wq$+e#nVEXn-aG%Cd8PYFB0Eet3eI^UA51%`SlHz;H`V=goLS-+4g2yb-^$%xr=#M;6 z6P0xoWzY@WK9?h{$g!qqj$INnFVpht&yrxDNqk`2vzopL89@{Bv`?bZXfFyyw%i&=%Qf&B5@5&e({wcYS*ve7c={4^4?=u)-_ z;PPQ=J|RW3Le?6B@d|1`BnA8vc-nLnhagL?3qPl((IQcK#K?ee9hxONY7Pzd%IGdA z4z->?X(i-+mVd{8UYQ|vb0TOj|A8U@c;*Xd!H%QrjaV|vj~#T`Ds%&;tahgxyDrBK zlxE= zC1$A{zAynA(%k6O_3>-LgR9ygNe1<~}7k zQ>l&2*_IUULxtuQ{!vVdB+ zCarZB)wVkPC2rkDisDKL%bp&tr0ReEfS@nV^d<52FjheGWO*qLDwNZ;mGYuP-z4K0 zo?%b%G_n`IOG;R=ad4ndNvUA?1FSR0sw|;Z1aj2ZbdQ z4IQqQ*Ep;+$)X9pQdB}qXh}3jVXRJ)gj+3{QLF_Gr$0nPr!gzey1r;;<+25Gb0ty%7QpOl{qXOtZqQ}Qae_WiBj&}$owWh%ku(O9xVpoxv; zTidUa6pD11P(b$xm1#?ZF2h3_4@_!T=g)^WEa zJ>5DNaxt`)RszMsk@?MRQne<}#m}>KgX*9wuRM9()ho|#w}JrV?OhAIZjl^|jg3~1 z;N?Ck=}pvA%+1S#uzvai{aEJRsT?sl0@~UrU-N#*(@}{LdcQh3dHw^P2h-0ldj!VLq&QBC94J78#Z7P1FGE zC5`XZ%d6OEP+Dkq6(7aQU58`y2{WO~w1dLt$ITwfZ?)a@3&YpS7UK*C#Al)aX8 z)xR0MekV_UU1;{@-U!sInpaFfYA6^LAI)I0mCJ2uG+0&ji+33p3%Q1y=$_R;1=Z-W z32D_@552sa^$$NZih#jnBLP~R%nK!Lsf!L~j(dd?BQ}JPki}aG!t_s1_v{+X+Cmw| zS28IqzQ`|DwW33q!mQaFfOO+AXvBO85AbSoJq1$)Aj!sBj33Tb=2iov4t1gp)h zKxJoTrI|%eq`cqEZzph;g+pIA6)NC!8XPWhyI4dsH`Dg_#V%R%a+>^*{pg1v+o6gu z1#{8!a!5shX)aBSiYSBVrQWL+AJToVa_QF%q+*rhwT#$f&^3=-df*89(Vb)JinaX% zS+g|ZyDzQz^`fA3U6u=c?wGIbaA}Ia7)aQ8iy5h6e(rJ){qS+GRGI_#$1Ogv)Y1*vtW5_Ihdpay16C?9$MxVg~{QZ z{aPNTJKm{O9rJd(4NxF#!983oQBN?hcQ2UC?19z{Q9d^{_pj?qo%LA-EYR*30mH<9 zpWg~%x&o|@SPud;^#H@z+yi0DkHbQQf+#UCGX4GdnZC(a2ZPPzP2xR=+j0|fqkwNc zDgN?7|NXS$$|`|j#V$i5+{4CMwEXG`Y8t0`{&%teykYwdJxqX=vqxEk21DIY!aUtfIiQ`5jTGl}_&E&hJ8mElW1szUk2Y_@wK7x(2N zH86GczuVcv{*{!wrRWZcbT5Nkz={cF5}za!$>jLeXWXSs$N%*f0{D*w#ka;Y9?GiW z0K8@1)P|yB5O_@Je=y04AtI>72Z^{dLm#lh1C^<&6AVZuM=@Gxm8sTZ0SI$T0M(C#s2~?25&`84&&6bvl!oU3veNW zRO0j=Yyo2Vp_G5EOo9*>pSv}q3=Jr8yca4c=CK;2{|8@U)(G@cwOZ_b^8dV6fI0v zzqUDwlMR@)IUwZw@5y?FVwwJ`pt$a^fB#>g4gUq2fpDMFKcErQ#=s`PebIfZzjbgy z%)%}~_Yb{habSUvUjM8ufXAJamch?)zU=9vSTC&4XP54?bMgMMe$yzSMqfum zL&9&z5zkG%gg$Yk_a@`@gujeHw|pUc28MuDh1#3sI#0$*XLoQ2>A4xo~ru+}Vsj~@S6!0jaz95HVgg1Fn;?>r^V~sY+bGX|SW`ur8 zg(Jo#Fm*M*PRIo!vYNNy51ho4E1*HnCBnSm21xd8Z@d=a{sX*N-y4{rkfz`OD@OX- zC$O>lZ@f~+!21tt+jmS)YJ<#|wVPUmPf{9|ca9(^FE@`7+BgA1ZcewVE#n-Dl&a;Zk{m99f(2Z$^ ziYTY5*J%0H{S|=qZ>H>rv5*Us{k8PJP<2KIW6~%joQXGZhl|-JFXOm3b{m0!oO!Hc zzk;*W&U|yA)sJXK1C_#0*$Md&Gz*zV@kLHp=ny8uzf$`D`X!ShV2ckcgbAb!!aWsi z+^$^Jc{)73wK<}{eRwD!gcOc0L-x{I76!sni<=J@MOivvQ9`qrND^+banjWq09%1& z(iznFAF)9W+hR6g6kbR~4*r^&JW5(kDX5(Q&)?M5eq-h-ozFoOp}vc3p~gDBwgL~B z#5vJl<@D*|HQokrPTKlKK%;wKcR_ebYp5fg*q z5zpyHs+C!yHn@F%C$7pJyi-&Ow&w-_b=Au;Qf<08e$_t%9g&p z`KOfLS}`g3L%bgY%A>h=Otne5CahN&>2*W8MTrba$~C@uD;=r1(j{CM z)c=T^CtR4Y^o>l-L3%?kzn!P(ut4Gn_h1j|@=s6Z!fIsCFODlnZYHrx8evBKa)r~# zZA1p!traDC;Qlz>H8~G0gQ^Z`=GwkSj!&8i7dOxYI%URW)J6=mf4YJr^?&(vo3|`N zTwsNppO!9l-O4-(V3l%IAHa2%YXCI-XX@?!wPOr-92(XKEZ9JThp%R3|7M&oFz6K1 zu}{h2nsNDjPLZyI4H7smjWq&SADlFhJyL;b?<&RlpYq8o)CDkmUiy1dHxEw!(EmOP zL2#DIo;NDPx<3O|yF=a#1f^mu7o|B#=NAv!NH5PZfA&nTx9Lx0oIktPH_V4M_6wKT z+3pVwi^{=L48DbBxkIYm9m32mxve#Zr*!fGqc|cW3jgAU7(|%h(Dmz=`AE)*Fam{s zb#drC9*|jZ*%rE9ZwU>@Jo#J*oE42v0&w?A!jhY(9XzzZmNs&cv0=E&YYnNjVcHw^ z)^2;MLWADwTG2Izlp#Unu=0g^*LK|&vp>9XUjI!vsTwRQ1(qTxoc@}Z}%b>63Xxd7m~d{{THoq zRES_KoQM~=xgYOGDQ>FZumCe2pkFi@nSp7Scl&2-M>@Aea&vZIoLVEfvO8yAP;6zJ zf1~PEqTPWHOCGQJ&6VV6oV!ZB0w{q6%a1Rf=)^8VI88OGWjzI9hEl4#n@XknvxCiA z3&v}t%izlBXm+$X@wtTDcW?hqRgb?kfMhuiOidgtd9GChLkH-lp-rQQp6l@T^mjWh zpw(!e#`7znEQ!_tYx1mmR3W$Ct$QBseyu5!Yk5%8J^@;B^EG;{?N@5-{!7x||Fve89tSQSw#r*20e4melFE#(lS2zlz>jV5 zsse!U`JVVYJwa`xtQwV%Tpph2@E3Toz64p#UY|X4eVfm2q+!TGOlx_eQL-}%JEVI_ zy1{2KBEe{m3{Lj-lMvfEyXZnoM9cj+EAF_Aa3c5z>*z=_0Kvv#VydH)%HimCFz^U% zXFSBdNFm0zUc~a_qcAs+L4@ua@5y7!wHVaOpjT^2n>=$-Eer?SgJ+=)R1_Ywi*&gC zGv-EweO^R(@xD$^Uux{=_%JBu1FTXiu65-DGRB`xpJr$cc4ALMok~ z;7xZdU6C0Yojxcbw=RFM4qaJHm)3Xx8qcQ5QI3FazyhWZ#pQ~7thKpueK21W@kO^T zx(uqGx154NOpz#sO( zT?F6;jRK`2wVh(w3yRqf$I7|I#bR?z+9wo~mA7tJVL`l=Hsd96FvIs6P>6rnTYa2d zuJcX9nJ@Fmc9|fRld{<+0v57G3S4!OA|zmG3`hEaS;$!A zAaYrVl>5yfv@Rysgy`|EomZ%K$8ZE+xZ3AKuCI2|0-YhKk``Dx!J4*g#8PIjQS~a< zMB(f@|DDUqz-MLHxlg5miQQD1{=E#Ci7-Pn^JAH=pxEh7Fwa#^)k4M9E-N8-402k& z2Gjg?cNSSus3pir#mX0{ErRUY98u@VR_Tg9zgdt2gIhnuH^-e|mX6?KlrGUv0xzr* za^*y5E)WM&^Tv~gL-uuWlV>jyVIj*;^za!#tN)|xt;3@HqP9^%B$RGMq+@6#MH+_g zlwtB+}jdm^!9vo@-u$C8dE7|e8P#ebR7Q>Q2#-`5d!=H29b01M)R{wbo z9MXxL15oW`Xp%<<-k^S?xCIs$GMPFJ$;nqce3A1O{yrD?JosP`?o%KbO@zOF>9&q7 z)+!!CO@?Gk3GH}x*~COg&#!IpjwNnvf!~|UctQE_+%(xc?p&Y0j(hmKyiQc+!vR_7 z8!%~Z+10?QCsPK_LYn#irQh zWmQO9N0rsU9~lY7$H;wkKSmymd;zzJt~B0#sx*}ZyG+%Xoi|7?=n3H$Kz~8#75J$- zxo2cOwt0iaK$|sd;uF3`k4l!SeO0j*dcfPusd6#fBskbikpsK?_2zW`MNa-a)6F}t zn9R0{S_k;C@bnUog#<>)*+i2X}qQDo2yoe4Ct%I$zdJ~~XH zw0#@Q_;Pq0EE0&O46`66A@9Bi;5~ZF&mYAxnfwqlzZg4u8IG z%Go&ZWPsWQ&GybIz=pMK@I@umpWHM)e>Lj-ZVDGI%I6PmZREJh!RMAtEe34TKNA60 zQav+yh)rKT=PMK(?BnZ41c=3kBw&; zNU!vzR?w_Q8YJ-9fv?6Cx9g5z04B%z|EBbNB8U^M;)f$&nqM!j)1sUe{4QaD?x~pq z*@8&wjxxdy@?TzfcueL|*T}+AfHNIHd6q564r#!8+=m;s|7Fu;RZPcIv}Y1U!XTJw z_WLir)_nxzf7tR&eU)0_{v{1zRLrjx3YK|p^dspipqbaCtCek4nAT3>%; zH)i1}4#<0xRZXm+m`9X19s24Q?1$CK88Om26V-3l>{qL84f!J_ShE66yAsSR{q-#|kYjw3~z|vaP}&6Fx=3dJ0zj zRff~2_^8ZVXEwhnC_NfSI2T%b*L{;Yd4X4HbWBaN6gI5i+K!z{;$gXLSQD<}0`Id= z-cB$*VEQb##?Pa)c{E0PaDpFAA+Y-E(XtE5+BtH3cmAYn^pA?{m!4e7{YR#@wnaB; zfR0K=X-Af6F+ghnab(Y0g8J=%EiP^HRjK`C2?2tXvz*|?VKSG=ozBcC&&%1x34jk8r~mSKpC^26vD(D_|6 zL^0U6X48++Sw`pogATQ658e#-xE9LZ7V#X99>-+zNcA9(NsFKk6Gx-Hjr`SWs5O|+ zA)(*7iVCoQU3TWl{8*(bOea(g3S-O!tynVPPSCTCqG5M3WGaUrvPtjToA)1=y0CMCFTJOvIq-{u_HPBm`j#;C(2g}lNbY8Id6r+(&Z z)e?@E%-wTwae4Ra3_0S)16{ZFE&xl&6{{;EwFUH{aX5;Q>ot4b2VK~r9S_%(i*?Ln zSkxHRDiub^sze=DkKFtS=S8j6VEm|D4ga{z7a*vq<}~6dbwJD$cQC#?oU6N7jQED9 zq3t{nmD$5Qd_6Hpuk)A<^QEjE&zA(jq*+lpokZHCs*{`}6lspfF4&4)&5W9^B-Qq z#Q7U~51|0`^nUcC_Uu=Qf3*PGe7-G#z4T=V?FQ|M%PB(*2M9;-lU%MoD;_Sf>-Fcw zWq_tjvc?TwUtjks`3D8PRT_R5DLcQ34qO1Z8bjzW0oZZ|?5N#f49j)`oMb!nNg=BT zZi>vZV1M)p1X>)Be>$J>LHUg;*VfS`sJ}gB9yU#mUpni^a$OHMzHn(W_kLELDv|!v z%C*?wbydCwK90)kgX8r#?oQ1%VWe|DU%@n}9zeE#1wb4u6=1Mv*_j&qkIajpZ(=zw zT?=$UAQJPH@p``ZTzwyt382Dz=r%RLNAP9+$BE}KblpQU^Jy8A%1C%?OQbm0@Xj~Ts1c;|4lhgcf7(vwC`qxk2M(#;U^qG2a4f1e`wBV?Y;^T$i zHp_Pbe-xq^UyC`SlLYgNY4?>eA>7QUev5ZTrjQhO$_#k);h;E>2^Vacx!*Re3C+;+ zBFU$6phf7y#-<??TNyGZ|~<S-h@c9Zo?OxyUjV~nn zG4$j3%L8kkE@~<&L@zHdN2fIevqVV#q}scgv(%&E&hW>MO2d63tDKnBB9LwN(cR#` zO!+RHRV{Iys*6Jlz7^Nk*DE{P6)h6Djf_(p*58c)CMImK3Z#k}tBDo%%Cc7#Q)<)f z3Ud77R3EFeX+Zo3Fytr)%mN!ov5bDsg+`)%^hrfU1)wFBD4s9in`Pv__I3y-w9-Ek zD-Q%TG2#Fm{+As&foDL-oy-V%=su$kyLGvk-gcPs*r)cJ#{$S$YOTkoZ* z^ks{VNLIxz<|sOXTbbE`#}26%o^W^v1@~_Lzwnfu;_p^<;{zZpZ@ePz4m!ao`R#wF zU!0$5H06G|Yy|YbS}WF!I`nJnR5czuH6Y=K9)NAuk5Q?XQHB-NaG{6&o!T=AA5|{# zI@d}Z)Ue4*CRU+3JAZZVWNHvZ%bpw06fkH7o2ct*m{!qzwgZM{x+Hx%D-U18BY>Fv zFSVT=3Gmt#-y!RLZ0z3kYX{xH7dXbq-I_BHkVz`_!q1v6B%ubkEW+uyH>acIAc(kn z)sFhtTu}(ZVV`)&`DR*6Rsw@(nG;E-NtRQ3;Zxjf{4omxh-9@kucQK^4h_KH9R=3( z7P2aPqp*+gBq%&AumS)5xe&V2qJ;!8vhD5E!ILT^uvv0rvQL;g@||CGb<2pzf!|cC zv+Q+%7@;YN!{qM*N=E>Sxho(8EycqTg?vxX&I(yaK223URO1?)uBu`;5jh;~LkLJ` zn+)0M@Q`y>Cq>Z>m%Ha`NK}EkjaG)UUbCkZC?! zfCaNDi8wRO!XNX(Nc=};qk^xWpajw!uwQY^&(w8Cechq7mQ@i{|7fC4u3<(<^H~x6 zV!J5RATtwxOpZ1Y<-e)=41);h@p~j<_TMin(ex(b>WD-@?g{xP?RBlHK!`!gzw=Gkt8=cKU7T~s{U|0=r_^Zq0wQ^;p=2SB zXhQ)OIFNCZ7g<*2c04ZePx6sC6oA4A5`z8MD@H<7Y9UBiU+<)U-EG;ybo%YC34I=z#n-=-4AS<}*$Z3BJhyTvNs z^atZoe3&Tz`1p$Fr^A~*AkQtvV4ukXr=!SJV2>+y<^PLarA30kw@xqBb7K-((upFC zzaP%EXHtU&=4Z6{q<&;}+^IFUv&}1N0Wt!M*x-B2@3xbQ3{VVRce+0bw9lOIUo$a` z$jBSbRC8Y39q^b8!}-Qk0xlW;vCuWK=D66CRGLa^1l%$v@O{HFx919&0XZVl-*hP+ z{0R`65!a-ayX1KGt#k~DEOGdE%r>85bS78>d7S)C(iu1brCIg}{sbfQEG4j)Zy5fi zkcGgf?W~BtRv6r?TZ%at_w5_K8UC|0JTf}BI_hGl%U{DjGFQSM0{=dF+00Z1{t)T^ z^C8P<@Z1b9b?d?9w`$b)PZU}C0k>Z;(n=@O+crjkS3f3-Da=+^M@(&LApw@5T|pz@%{`Q2|KD*u7J5`}>opRqmf-R(Z%LaN0Z0f=K?+~j zc(vb9u06*J?LZh9#xp1|cxsau%KSi`a`EsTz^?t5VvPj`O2f^U*kBsTq@QjU)!S#d zVS<8=m2MBkHE13D*yfvmqU_>r?wU%i{JgwiZxEP57~H zT!2YbzYqQC7z}6})~ElIrDXyWe}b7rU$(g_bo2Tyc>UN2aSLoll9#4?L#3^+2)eZ{ z!G4KAgn>h~xe$$!9DKt7H~I+xl(mF^8RYjMr!*!-hLH$Onez9x*YAwEpNyW^{4qKg zpZm?JuZ6~=tdY00;TXPCAX}Xcd~MAA_B8lJWa91q=C6HLfI#s_aC=lxBE0n!5X+)E zJWMm14fQl@i<^r1Yb?*gUmF$nUC5KWYg+8(Zu&Khc4Ztk56?!P9pP z_H9m*5SzMBoPSehsc;--ZG4(GzWp|+e0S8VDeuRPDqKi1C{e2l2>hK-VK~TeD=Gl? zOFh}I)$Ez^;5WZ~)vp4G6_mgF*iC#?RRz|yrv`7=uetI)(q}g5~hqaVS_ilC@BjzI*@nk9((;QCa zeO+9Tzg~)-`(Af*P{NXIuKO6kr-JeiQyjAo1Kt{0B{Mqj`YM2pwEE~XoV~e{ZzccR z%QwdT?#`>i3|xUGx)ONGssAlBzGS&{&O1wY!#UBOIt%NrN`N?)DGr(gGsn5S;IQb| zen?JE9>YlDKj(p!X>ls+nqzHR2Y9RFasBRi-r7dq!gBlh8o2@aV*N^+da+!51tPk6 z3B&>#Y*Lbdwqs37fmI%xv+Xb+u}gIldOx_`M+XYu}|Xg8_i=A-v3u> zEYs@@3k{#J*br7Lt=Pr_!Y&#qi~(xduMg8o<`q3Of#TZG#bp^bzs4IL<^cU{5H8nT zo*3F~jY4&iAInf2oJ(S3&>=c@0g}A5N9M9rrOZa3VIWU&QtRL#Rxrt%<_fTrnm$Yy0Uqw#-N*vq-XT8Xl}t4iu) zuQtW@HN$n@Ij_=Po;9kIe(yqb~VU?=I+_1iG# z8|&+@kK%{Eoif$E-*_7L`v_%zYaC(5c^5jF<;Z2DO!VE`R-)s`JX@N;4lLWFwcfba z9>a-Dw~-B%65AjCAI}b!s8P#jj`w&M*Y*Me;NsShbuSfhdMLsszdg(6?nhSH$Myw1zkAxBUinzP7FJpz3g?Zz1{&b zAyYI{r!TwuiS`3F5m68r=Snf}i|jgyg)3T7NWmc+Hu^#t(o+MB?_aBDRF+QH`I_9R zWx4DCaGD%$X_sjM&MSsmloLsE?_uZVP;yd8yzevszWKM4Hq~o39d9zcdu4Sn(q9Ah znoRJ)$=P(_TwgldYjAX_?R&R-CHW$TSsOhxu0*WMnI&gex6X{#M&O>+Ou?5Fz$x}9lIhT@ z-wkIu-tc*o%a%9Zn0;9&zPVzAXyE14QxtR-7XgJ z7*y--fs29YEW1mt_LQnzFCRQ-(zKTP*!ANy{%0A;LmWPe>;LF;A2q?mf5Nl~I9n4m6ooQs=-n(OP@@$y2k`9f<> zbNAXhh)Y#Dq|RC-Jc1aP%T)uO9W8X+j(dd8H~$vt>99|oSvhw~Rw;1B#v~UEA$mL} z#pCTQe{JlW^8E|5IMHvzT=mz%w_=ZoSfg5=Z>8m#g#5ngU;-D`a;|pc1Yd?~$tLRL z8{PR^O7tzi#n_&ZRe`~hV+Cq$7s7*syZzs53JMAg?dAm5xwH7Is*g~oeUBFDMAMsd zLHbzxD@(q&lfA1`1!nPtGMxh9FKKWZtNv0RKXC750E!CEm2B9QSrUk&a)-CBzT3_} zC7$~B_z3x`W$ZNMaLB1sJ^~QraP&j?4D@U^BbADmra82B&5$tN`Y^6en{7-Q4_VVe3j#vs|vvV7d+3~sf1n+c@5E1j`0~SL!(S12a3-9?R zBG~NLH{B%JsfG^JzX&*0OifI1(UcC0UTzx{NJI$;Sa1Ahn-li9`;>CXXweK3b>0T$ zl4sFOS`qJLh9AY3w9L)vv#t@*kA^lsLh#yc-vSL{%yUFyXQ}pNA6b&Ulh~LC@D=cI z94HVpaDvey+rL4MDTV6Y+`D=EsO;x`l}euEk7rT8iCvyQDPSb_qeMV~yLbv)=h)|n zj}&*mrxQh3>>CT^z#&aNbD_eg0$qN#c?ZpTI=gZ>ZMTQZo{6te@A*x3?V;7g)!Ms$ zeEphj7dMeli|cD^0rvXSOXI~2Xq*xq&rTK>czd*yOeFK7f=o)4DD|PuCOli5r#3wZ zZ?}55neVK*->i2>M1dQK%iqhnW!`w(nMqk~-ftYM_S5_3@Ls>k`Tq5tP}rHBf$tBq z&R^d4oh41byZxdX8wJ)lmmL{ilfCeI{3x!dwUEV73|t6~*KeU=0bB2lCw&xuLv>C` zaGe5UL1@3rl!{1`r-61HUF&&IkT<1BB;i0C7=Pt;5XccB%cw5wi4 z7mjC49-l^Kxf<8iHxx1%Ny5R#pS(|h#4}ln0o%^%17-Aua>lI4Bd=6=nC<3UnJ_=Y z76bJ=x?D_(Ftn|lBp?SBf65SqESce=7}2T7<9fxU0 zDomI0VHdcTXR6NUZh+0eqMa8<+@__-W;n;!aClElg2o3FJ)hdTvJ@RJ;hhoQS&&}$ z!COy}1-PHmUnsJO?_D4@-=AJ52~N+-26gI|^x89dKsEdB<8j!?A^{==y}0K(a1DF%kB_TdUTUO%Jz zT{-Odm2;^Ij{5t%H(mb1LK3q3$MgtoK<2n@x5z$$5MG?U67MfVQ1$}2$_8o+ltfx~ z8!h&Mp!vSt6;H)3Fl;A1J<^=@Uu(YQ4x9>#9?~*5k42t^~lh!@{4x+v5rokQ8=+g=A`U_U#iabA!0C2*&`tg6!^7Z!eRHl zSOq!&+1HHz4*>5J+X1K&^ttkfSeaDsVu_;5$-p>g%17VI&F|Y2k9?tfgW}rO&%HO| zf7Bl_c2N6QrM9`B{23D#YsBiG2_vFP8zDZAJu zIgN)IZ`)LBY$EmmcD91Y+>#G-hS?!dZXLeBe+9LFVoXre37HQoj1=SW>|z{iZxQ#^mC#Rqtu{FRrL zdFrSMEB$X2MV9ouQdr>8EHa#pixPVQQIJ)k_qDA3 zI}{^RFcco-p7m!+iw)ws<=0nJeY`F77~^U{snHW85T@4C7(?x3GWUft};(#G%?2B2BBNQ-QzDDtvGuH8LsoT2aEHW zHq2P2R0zpH600GKJaJ&L8G?}hK4cS~OBCA9zhrh@Zd{k!90C(3gX!|7jxnVY{o-aS zP4-Mc{jVzkEC~Pq?}Ff?3cy0de%tlpkl;Zj;q9*=xM*!p{zS=Mq@WQ4Ax7oZB02)u zoFNV%P-H|}55B0t3O=Kv|0`9tg;%;DV^2wpqZSFd5cewX4eC&PPAh}qU})GU)9F@9 z*q_)L4CmTaZ~(zS#ZmUdzkNF=2@d!}W=ZB1|M96~X?;CcNI8r_4g4R@fN-q8F_+Ia zSf_##n$CyaPsk&`&uCH62#mfA;hbRxAtESIYZGR+2#sS)nLBub>VtG5FM^@U<=UTq zu^U=SyACoxnNEdT2S>dM%K1j3b#H3wbA!lp@^gE;7XR^#K-?Hm{6W!zN@Qpi z6Ci(?&j~hz-;e+LUy0oeJh3OJR+FHJ7>#M$dKdL*t1-FuV~aOfz2}cBWIx*|v!YvR zKnnX0+`zPA;nUIpXOqSCKDtbNp`{4I!^OK><*>_li2Tl0p~!>dY7l5(EH03;h=0}c ze{*jtYTChVv8(}eZQadY!|Jo>nsA1AOzjbi)Uy&fyVaic{;5nIRw`3^UwqVjQ5ZOT znPgsQ9>jE|_!&LsJYC{9V^<3=rR~7ZjA=Fzv;0+|Y+#vVOxqwxUII0E$*if4vJ1QF z*YMpp6z4V@I!wfM{pyYbp?3xAwHXT5D?b5pbuNs;VbhN7>fs^N;&Ha$bwcu%{W6)Y zElRhrH9&7Jbgi&a0LhP&5}AHW#;{vR))=Wnyuz3;OAR_{eTqsC(IsQ zz6%_jQHN8$YY$9Z|60;0IG??R)G=c#zSxs>O-s9qm6CWKlufPK3x;<{tG3=lf$P)>57O-8|078H&jwiUV6y}Ojn>|@km9-PYJ zDXQj7%EWgDOM`=r`wMJ zK%LOTt69M{qi6WTA09k1x+p_HMeWYTo9>kJgO~bPf?NSy0IuNamcjahXN7;wSpG8} zY2XHe=7|^u z%@HNCy_F;JG`|yo#H~*A)kDws@9kn(l3#OyotMJ1^!~eRM&#hlXG=Yr(b%X$-bivv z`_x3ZWoY0>$wpkZ)Zt8o?VyJBvxp*jT|@nM;9~r0OBeT792@n*DxnxJ*c0kX;FEYN z=!|$DIYMMIODbgYjgrb97Pln zzvX-L;?R1CN{Jkc?PjuyX;#k_u_)1-Fp+8Cu14y{sjEV)J| zwh5$~DlVhi7Sv!vU9Zb0iQXW*a7gJYe=+gX)?Q+6J^xc4dtISbQa+sXN`ec2TGKU$ z?FBtCw+Sk^o!0l5h?NRlwnM~b&>17M!T{9}{Gf^zp{m~2VY>NG2mreq)AoHINob*# zNB>#tzHiz6IXLO90I5s~=EK_xN6t}hP=AVa}Hd5w!ww`*Qw_thvu<>-ii&~s&nPemGPt^CnVKx_tWakFs*sw8hY;|! zjyS(I4}QXpUw>SL@4p?Og6{yfGws1fhv`el6uFJPhf_Y`@UpYb=eLbRcZtjSxG{Kl z^Mp9=!i=&kk#~J#0a;z2y)o1p@6rA2#pRGQH{}2R(Ow z+hdHqv?rpX&?i_Q1g8Ul5bBpzsQk0Ta85CZnpZPO4b#4Jo^&HTmaDS*PxPb-MFBaE zOuIRgd}S^aVC&4~U8u-qaO%(3p?Yqv6RfZAN^Phcm9vZVr!BI;PDW4yZ&Gi4>>PHt z`e?O3S!w{c30yRj_DY%DREQ*v{naQ3{$ywqSkmcG=9zyDW`7%d+D^~DkEg$;r|NTb z<21g8qiHrn%NheJ2cAY9dQ|g=4_dq0sKgv31zIC^EX&wdsY-St z!UA)%X20Xx_KkyPsZXf(CHY+fFT21+C1NFrm>aE_;CZ&aC!t+@^-R=L z-|c3#e7jcthZHY90qYRj~l~8KZkkT+eRX&bgPIj z1($UkySciy^!H-`=IeGI>ga@gApu${`*D z{(b+nshoLuey+0hw0BiJx*$NArj|`0%~PE3_o8C!Q_$}lR7h8@C8r_2@y1CV59>aN zaJq>REaiqDgnG$xEXoq}njZ14Lq~}7x@5In;0Uh43`Iob5bX# z$G?AJvQt2bjrU5-OdY+#a%D%48(RLBg07MTt1UB%v!OKA!{pe8%5lSs?`XB^ma+ll z{|hRjO-Ra*we&n4XJncxbp_!BjiM8&7IW|h6OqXGly8nMP666BPJf|3Y?NsPh5B zkBvuE`0evZaK3jqUA|$N|N62;3(%xxLG9k;ik>cTyxppSqKP5>>#ub$89F*Uznj6t zIno{u8b>1l`6uzoiPnWcom9Kgvqj;RHvC_~sdMxJeMXPLACWp|M(8Nwx=I8*umM1h zI_q!rLwW`X7cRV^-GlB|r?4!8DbMc2{zt8BpwG19ke=$@LjR*TrB*D4c5)LfJLa#f zpFaRiw108x3!2x!#u;g9(1W^g#vt(z8Td}978*`skb;6Ye9Xk)j~P6gQY&Y_L%baf zxix?GjsGb~;8&3{vCzl^t|w33-pu>Wkcg`-SHxVCFWmdEt$rw}>C2C8<_jEk|M9$R ziV5JUI8;70n53j66&>B$)S*ddL36XPo_@N#R=;Yl=OhVO*HqEDukTf1{PE44?%>=N zWT%ZY8OXNY-N1ILD(JOvn*Y^6N=PL}eT}@`h+i)ssXF@F{PgghRF|dfXNw=R-Rq{> z&R3xRpEXq2@%Yoqhu4luZnubsbH}AG>a?7tfE9f7*9sylrPo3U#%7Rn^4(vV zmUaVf3aZ%zPAV#>axn(jrL$r+MPY}k zQbTl&(2Wo2@eRAoT#UHz$aOxM$nj#F;2QaJ=6HP7CM8zrGUy%#U9rIS&eZI+Z&hv> z@g$bNIv0Yo@Zg3RiW?QanqQLv7X1e8GjlK6CML9Wl}YU26>KXQpl;=Vx4b|*LFr*p z!(0VVM{@bzHc8)|OVHevQ5(D#=9)v9A&6~ylqC=beJj$38M{F7G)NAIF|LEW>23d6 zs?FyPG>n<7mm;hf5J{EN`QhA_THeSX!IPRf23y@ZCSET2og=N;l5Q(LDHtanBw)nQTFbY=*k~P+ zX_1D5la6OsZBh{?H+4!;^e(Ky2_HZ)>E)xi<(VIN$}#lwubid9du!e$Vy38ajcjsV zQ{?1Z$i;89K%kuAiX&L?Mt{$3bg!W^g1SQn_0;bijQa4dQ%@2m`~lzfYS`y@clTWD zbtN`W4^a4S%p^AxuX#Ba>M+x7RVoHLGqZRFFr#^K`=@Bl82v z*2S;Lr_a^YSHJ?OuRQ3JxB&5~PwpYSwbY3Nj`rP<6G3Cb?Ge!d~iX z(qT||%?_vL=;MyJS=y(q3~7VpPwj!%e7@_|8aDJOqn300v+sV%r&?6WakmZ;5>5@= z3*obY`$90A+l7S_FC#D z^&;Z_AN^1xBMRiS8LX9G4Uf?JSN0Heh8cmadj(Dja2EvCaitr83Ovf#0)b7wGbc@a~4a3DIW7Lt=OLM^*OIsJ?e4C=d3Y$CZQ(jY*v^wUnPs`yHT4 z1aY@Eh1PTdtD1qOo<=-3Wu z%SjUCt=fLy_49D^*8(X&vLBrGJe_D+d>TUhlNur9_0lxnNC5t1Vk#_r`O6`AqqIF8 zTbeue#YJl}HX*TIB&XX$@X}J$ZYrqD{%m-p@GYXp`CiwEl2BOlghT7W(uVap@mg;^ z*rei_hARt2h>qc#aY0~Y>YEB3)?+eHX)X7T>r_XlZ=+c~C=GINxee_FrO*B6v|)U^2!>1Ui19Mlbt6Ba8UW= z2qeHIdvD%i3Hi2u5c3ZVT>e4-v{l!kITDj>+IYGBx45*j@-1vdTL{F$+sA|nX+XEO zy59={nIF_OatC%Ompa}=L{C_^e&w0=rxSe9`nQChC7|sPwQ>&5f_yb*=O#oDon+Mv$|)_I^6UA>OrJ(%;ICg^{Ua zJ&eZohxAVgD^24x{h7Vv`oP+~2wnG+bGN7Rpi;HvE#fojVVB?MI6r@KI(FId8XrAU z)xpvR|KW?qywG!{YU-Q^oF;r{Zhhlcoys4_Bua zK{_u%5GN*r45@!J_E_MgTaB3KL|}Ka9Iq`XHRwTTTxQ2_L&~cYwMYs9X8Bm>$r447 zzo@Pn|G)r!1vP8953uaSPn}1Z_{9VtS+KwYnd`pS8l~>_Zn@j#TA*$D7)xQK1$q4R zNifrOtyC$d0yfTe{lskfvY3LueXl@4F)9lKL^ZSP89^d8j^7u*(kKY+I;a;@egqe! zwxyP?^uCrLa_@+Wif1e(sfO%BQMUr7bdhKF-MxNY)x0 zg+O=E2A14%P*~wqX4A%uKhwaS}=GBIayGnl^FYe3qw3UDH zp*XRGAfv;amS;E9N%kQYW{1?qf>Ek}A_Q=fW*;*V5D=#0+zy9wf+fSNSdPV_kdcwa zJj2;u!J`(7g~y+`bF9QSwU6~=RbHJHQ);Whc>L3x26OPM?SEzW>fIo|>EAui=?z7j ziu4)Fu?n4(tUF1m*&OCa&JZmzgpE8rE~DIIuQ7kpQLy^nkx#D>cJaxtg(%B@#V>Bv z>Omz1LL}U<5Hah0n4Ba|89wF$O+nU~&c|_f7rV!7hZof6)cp13Qq>0(mq2xUCh)R2 zGx52T$~+Gt(6ybAVG>Yisqk_DnDsYj9iOz#3D#Ch9&j=zzKE_NL|~E~#ynIZo@>CU zud)hT6p2Sw7#QpbtP&?+5>wf)(xk@kIh$LWpya2~%YbP!qPIm&qcW9T=?dLWO(cA-Ithw7-aq-cz0L|$?ZR|K9Y<} z12o(e>IeQwQ-c*ufF_6kEV0EP#+PXog9u>FmrtD@VT25RrZFObxLY*P)gAQ3SrL(k zh_`JnJC#uEty<~=m9wOq6p5PidwMWDrsI!Www1BPkdi=st zv5QbkKW}(j|L^*UbKKbLpN9-DWK|;Br?x3%RdlOIvP>ADf~{tSen5N16eB~Iz#ml( zTcUBWfBW3jdvjXY>O+-jjQ9|yG+}2uPa>D{YDEg^!m$q`QRkvl1H-q1%DJgYl7C{7 z4EWzCmRtNiK>Xob$R23!?C9I1S>#6i7L)1l?Nmr8Rj9I4$Nk+e*q2hpbwOy;xZUx6 z6;$zc?5h6$dZZG>M(C|!Bxsf0!Mw2WlvP=9tX<1bx782%>cKlz!9z$(1Qc=8 zO%Ru3byR|;Gw>DGB2Kf`lx+OiZ%_lJDAmy&=^QN3llVRq zT?Tx@F0w&RJ(@r)dS0*9zpP#T1<8{ZDs^HT;5&zhO-@!Yr(4mt)gDn~X4}K}p?K@Z zWTM-sI_8r;0gx>`Yp>RKPv)hN0>x@p*a(KQ!^pG)(JUaC7{#?a0yVsu1|8NRMlqRj zR?%9~+4!f7ioHl#_|@`-t4b$dVw;VmBtPARJQMH5V^@P2ym8h=-+UZNr;_ow7FR0q ztm>kFOJ*`I@q?iDkGPE=h&J@>`5HvCPFF3{SgSZd9#ye{Ji@L+yl(rMcc+_Buml~+ zYwQ+6*qW~}|6-7w#dex)DIe7;uh}9`!kqlr2Ce2@`c2NO03G}VXtf%?FvJU8I3Wp>QDIM?8RcAh|wWh zw%2}dvoxeolkEd6@*)k~^D$`^e{V-gYoX1O0(ImK<)$0`MFxjLlhEHmG67PvmiLdC+G2xiu=L3C)kMaWf1M1Sp|@~uclM0)sAswRVvZz$;j z`wl-Istcc^{ju5*7h~qY#u3v0VSLYl@!dI7tnVYgy7hRn`jCI?%B0J`krGN8fV5n2 zN9Jg8&Byf+<0t!C48DmtxQ6w^Lz1MFcsnW2qAyR8mRqS0$D>|tzot_HoWsEb1nun2 zB;nt!t1`bu<=<7EiF`}nm&ZMZ&YjyD7wAqJMS$k;#@B=Y4bNRaEir)v3H$KEyK%Tp*DLLL+0z?iP8+pO(Oan1&} zBY+#SgKpM@WlcAUjU2s|&-W3387^WZLLo%{x^nEN#W$MI%y2!-?bof|I}-gaYV~vh zy`zJ6(tD9Y(og^qkN%Ea?1P>|_o2BUKv3g5iM-Ep@lTPVJMF+jDV8?If>QrlX&ola zoc!u5TBjPkIM47bJ#BiY$lXtR`q@^!laj-JY2MelhNE(&4P67K5>R2^mh`7rG5ujSIHByV|NS?$bH zv{5>!lJz`s)}XcD09rT>{$^>82bVAk=?G>+O{e8ksG^E*Y473%A=TmrxlbasL%DLN zd@Rx^9fcqM*b9m`KYDwmtgIM5d~n5*eW8~alj*!^GWY5;e(?)VrgTw=&D#DLn~Uu5 z)$7VD?U+o>U!Nr|7n-c-o;`d++Y|g{GFHS%wMuH|rQT>EH$PXTgprS&|I>lq*3K## z+kW|BUwP)0zh5HrZ=&92FfMQ4P3C&)}p^1lQVpdqYbW0&ptDpGc@FlM+H=Q5g zxrn9yDe$;7FTH~&PIR<9t)>th)n9se5_a&DVPXUD8Iqf4QQG>br zWjdJv)yUJD?};3IzILG-9T3+4(j7b6uEj ztoa_+F>oIF!oHhBlCCb3byp~hiNLhy;sVoNqF0TKC3uAY)cXVh95F)xQqAJ(>iB1S zFMO=k=+t0I?od}3c3G8QM^&<1Ab5D!^TJIP<{p$4n+YcUMR&e8R&~^aIX3d$TuNk} zo%Us+&pqjuw14JjSNlmJ6#^;zP5e(VJ%JMm_6UxPi(M|KPZO7vq}#9Cqr2J3eLXAW zu(T7QI@;R*N@P1G6T`>yJ4n;BOjaT1%0s3_drxs(|m&9V2&>lS-WF(~W{2R%Fk zV1?~#5&n4P^ti-E89fcuLKr;-X2nWHg+o?O4hLr#6?FMwd$Tbz{(QQMJ;w)A9c}FW zzC*17b0_;kiwK-Rrh$hVK~2a!h^_ z5tHD`#r*a&uDYB7w~QKYyp)6ozo);Nu%6iv7Z>LOHQvQ7x(?ngd&h*$n+#Bv`4;zF zC5VoaBcWh8eDtqGrvIDT5`1d20#m9RXKqvct)5`-8=;?}>dfFutIPX3vPNH@IT&eI7HDx&%sc$9h_%mZc@YFy z8a)F-flb$ES-KOf1m`5xudsIYh;s5%8+6~=!L3KCs(P_ks0|#^f6Y%&Rqy{ss(Si@ zG|qS{V=u7XLK!Y)2eiHeuR~mOe?h;=`7=0OygkCl!)vc=#X1}U%I_mA0G#IE+jAoFUIh=TH9>1IiM zC=>c2DE5Gz1iY_jl3?X6F#T!e^3>qdD8}128Ti~mm9|;n(>PA(`U-=KiTO{1#>;c6 zP|X%_$Rv_9Xi8kEKmFcaBZ$5DOGzHc1|bCyz=9R+W@9`|a-k282FL?HQ^eyF=0EHcAXUmp@Y(EGlL;(nRflMf54~h<-QJyt3YH-jaao+hvViQ9@Q~@s`L%s77Ime33 zSNq0MRwb0T?CBODx$Y-nD1rqP#WQC#ZvEuo$i*fHx-lQY3$wU_MP@d0U5#7J|7{g5 zkVeKd_GYIU%$t+rC(Jrk=+D1?)j0$)_tNyMl9r(izafEdBwFdo9x|>@z#En>SIGn4 z*jv@Z6at*$gRGnnz;qSp8^{5(_=A1fF982(nHpN)S?hdneQ%N6&~)IIig!z7>9S_t zM(NaJe}h+KyDNg`gBKHosLq=)F*0_aKT0ZhJCmGq*bW1x z;FNhc(6Ip-8r|%(2mkyZItc(JYj+&pP_JzAd$3aS`9clVV1%K2Y((yuGiL@S;h?-o zUJeZE7@=p32UHzyVNlN!3)7l5#HCgN#G(3J1~_~z$1otZJ56M$ zi^p>pzshW`6Hmxa8k~3+0BeC2OkKwSiUhzGyWk8z`7skd)kKl|I=35Higjf3FNu{;bJ$Lw=7amR%`64ue zag2vB6Kp|M(WbiC|JX(dUjl=&ceQj{yRc*3|5CB{kRAg@0G`{pyKx z)~n}yAc_KpF5a6}8yc6XE|93dEbM=u5^hV=J$T)^Z^L=pN{=tIbeu7jsiE#S(!tCJ zo*EALWSV!_eXvpHlZS>Fw!6 z@UHy$x#OzL|5#Whx*O9T&C5?_DYS+*w*4tqY>|Eoli&zSDbfRphz#^tJu<`vq z;0v@{e=W4+8h!N1a9gEd{3SXc7S9529zz*X^9OC8lUx5f9c~62oXaSF*W7(NaiKs z2yY+~i;6Of$s}aA=$N!1w9O%>xEGnzTC!YCSfb%5Bq$J4P*{cD2 zaERA~UsJ*S{Tub1k7xGVhZy`~MB%mw_s=U^VA_lI*vDx5MMqZydsePD7pj_DOS~c$ zXG&T=nSF4f7so=JDWw-Zzizp`Rmt`zzuE+$n7xU8pGX6$6>uOWqlcM!GuHC^Nz)L| zqoS$Hun^IQuPWcl03JsW!$9SW?HzPC%W7DlDuu0#$&r>$6{Ehz$5$I|_$#>X;P@;E zu?iDxvj<-3qtn z4+UYFkgeNnLubuj{2`zwSb}=xo5`7mYYkprR;(3a;NS#rmo_WAE}Kn&>kdz`OQb-C z(mul|&9KgWfv@Q(8`CoF)Gw+j{QHTs>+#r_X|4N$k|Iy3E`rBQC7hnQmQIvD^fskP_rM5Oa^}rt~ zMZ^GLhGco=Se3%`^ow%w3K%0A3HsX1ZWPxlO>qeIV5=YO7o0 z;$I0doJe6h+5M50BCg z^QvqlqL0|^BHYG}x;@?Ea!d7=SJn!ymMQVg3eu4Xrl3Z&PpVTKOiFY#mV-Sfzp;sh z{JEq8MSdS~w4(CvHGV8{PQJn$g3mqzuQZS?Q#goa^L%ehs|8Hq%h2i`54LAz4}Itb zOEwNl&#N3nc`~nof3Q6~)MpIPg*sPz2>jk1DE0sqEE6x)TP`7FJj{6FLu>Yg-6z@| zdE(*a@3;2niMOSU<`TcVXyPBVpE(rl!D|x&eDKf5c*q3)v0<5-P_l=S4%oxWy<9b3 zvr`whI`^>66QFFOazUx5?BZeqYI349^M7bt0h zw5H$JC!X6&j=1<#{(c9!n&~*Bc&9kLk+%Eg z`&S0SDb5%y|38905g8i9k)D5(V~)?VB508SU4FZ6@1~OaDls55s(lGKxgDgDk5OD+jFP6ayX`#+J1Gs z+|edCgNRu0y_F2G_O)9=7~B8fKaR=&ghBIEBJ_T-MIBbSf4qx$d*wn(tCTMzNHwa%1DEL&#F81`UsL{JAR@I*`)L`og*^fjltZaxcwX_mw1c zE|;Fecg#3+lBTME*hex zZNFjo7#vlhn6}Xlsn~H!=Ce5#6G9wBPkw$jxKE~-pP*(pLJl>bQLxe`K4^;R*vD}1 zNl-ySozQQ-#~&5P#g^Q8p5^365T^gyw<^{1SqpS54E3r85Y+D=fjz&IglV&c2+@sC zV5Fju8};$i42Y*Ee)9j{>VmIqMq#(Jeq6}uczDq*6$QHDLq4KasEMg_Q$`C!CwfiG z8Z5|9AuWfdpk_sg4r{BNEWb*m#`2v*R{my)k5JqWL|59Y5%Dl!mxNd!j zj1psLK+fsVYp;&H@y9c<;4kYWmHj;`McIG>Dg5SGSqMmDLaMY^0Ms;rmQ@LWr+?}K z2tZxH$5)AlURNDzgoScF$UB)#tUdtJ_K3J$7@|L02qoiCYS+G z=J97Q^SJGL(tg`aEjloMs0MoWcLJcU$y@FQ@Lux0Kydh(p(aj(mc&_EYQqhpeg1~MvJ0WQ#lT)*1kZnu%Tt#!lNwmuwq z?=SSf(AH=gvbR9df^r2(g$@jQUdaCLK;h&6&Nk`H6r!!a{hpDtD4s-u1u6e0-gx)J zML~g*uL)LZ>&86e3Ie|MN`#iLSLWe?bb~s|3&sbx7}n z-i1qCiS@@~R{{&f40`4A-{r>=1t}``*8ETSs}tcGl$#g~^V4 zzY~`B=|=tIWiP7`7|uJSBUzJ(;HChHXf!NnIB8%wX9Fsa0oz`VB}rK<{lADPcd{%| zKdqqo`&ySSdToG=whzWP9kJ$N5sspMU*q?T=2ck-Ma!fZw|n0o1ol2QpGMjrVE}?5 z*lnu2p#4u`|`b^`(@D>x?D zKvCtG_*z5*&&$G0P80th75eXrm;Nfwgy%WBIQ_!F_(^+L8lXk3Jn$nKVf&-4a(?w#BeKUEY+mxF-5X#BDi~$@ZT9-W%y|!Kw z4%W}TMRl?9ccWb+M3bh~%esx2oq_rWiZKgPjIiQ48%QytRoYQ7zdJ6Qj&Vqk1|l!M zgaA)$@X=85W`q);TLSRV_Ua;uLYF8uW@fdA5(Sh~k;^MBh+(W3Is|fjChehnIPd^wIw9$AUFrASm*lw*IX!sZ7cP%FG!87#S4s5C+SMO{ z7!oQCokSs&`vrL%f$8S&!Rm&6+&lJsO%XX=eYcH0w{1>|ZG+t(q+ZF@h&Ld?*ri ziE$;~!N8z9MF=Ey%j`?Hj37NiI?|OFg%mIkn1BCg`7L-L0hSSDy}*q4sBERjWGa5{ ziChJ}?`?GM@}Oo?s}o@!ImqJ3lbWQps%0JP)=6F}@W`@}lzxtIeinVpL8c6GI&|q% zf`?LU_7MOiY^WJO5$FF{J}V?|GDEprQ{UQxz zq3JBw?gQB_T?1a|pVH&x|2RQwMT~ab2Xk9`<=ViTZ91{P+SoypzTDNy7TfeOUC#8)5A*rd(xnfuGIv{r6`u_OFmE>eFb#G z{~n=5p{|P)&4NZtC;PE_M&zL0kmzes_MyfdNdyGMlt^0}OFq@+Uu5-qyboj=9QO0G zXAD&FC@p56JahSx17oUgv0g&v+N{eip3Nkla-TCfs&!HB;@V{?^pN5IJQ!*B)$%LX zlZiIp0W#+1DduFH#rxjZaO)4hKmfusP%|}d%TTG@4vM!-pfbN`d>WUS z;(kxaUdG|{A;wgB$;nOAZhej5>aJG(V?^8%(M3edSK@E7W+a!UWXPEdJ2q>Z>8YwE zYPlXFtH%M^H_|c=?gWXh5$ZB(uoo)HaYz6|3TAg^llV`n0~VYb+IncVZXmSvN|4oC zK<8dA4ebP5E~iI-Xj;0|*UKtt8B>^AOQ4mQa)=XBLEU<61YLOVoSnRu#$(U7jxz7p ziDW0Q`BrlR(I+bEYU-;crch@j6-zOXv(45?#@HA!ZZ@Ak@R(z@;&TfZhsOoTmuY!` z#xos|)nOYz*#wD}f2)ziK>`H@odMrRaok77urC%lD3H+zdu=5#wuQ8kIo|0ZwR}=* zalN~4@z&h0HE_1MkUTF>cVIvLLdQQ(sf87kEr)K;HP2X_*JJNowGPfqI-IIxkXxDu zPO6_?PffpcBsel8qRPQZ!|DlAlTnN*5`NSiw1vUP$&5dI+<+epDh!ru&Roz}X(`ij z!Lh17w{QSz{w>z&l@kDi_PoClfLKaq?sP=~(hALAz@FocbLEmDsFKVF7I+SFfTYC} z8hH|0y49?UNe2uH_t{if$>uK0u}T`lMT*Aeb=od(z6FknzPL3N9NlVB12#^k@*=CA z{Y7K5X$+{w+%CMCD!9vBY>$WV`>a0}A2P0ykWP%TC=Qge+AS73En;z6(;|n81S`jqj?XVAG5x#|wkSkyTsA^r7CYo@?o|06XmY%7KNpEE z4|C+InH%zJ5S*JTTqShxXsU)P*stYZz?92(boF>O=Y8X9CC6Js@=`MptG7ZMWJ#2V zE1e$$+XVx*OXX+1GaINS>Cue)@KnTT)6dx%EXqGW)j>b?CuJoH=x^2gtEW`;_`Fq$o4HX%>~K^74lV)5xUzaIv}tUAW!i zZrR%ncP0D&d`_Mzs~7F?zHZTX#DL@Q2~v1cHG`}YD717Q&Zv)2tE7jdt6n1z4cT%M z$s!=$d+`i?xaJ|8F_*leX7`?5|NG+a!Etw=(lH9DBi&e7ams89KYdCkGB%A=M&q_5 zkLlyp=jC+=T(f3I($!yZ@1(q{O8H`}-pFSP%Rqn)iL<}| z1MvIv)UHFb=bo{_*y|*-vh&s32s}kOWI|yKJIlHmY)wZhndi}~MWqiXKDXu-&nl8V zFS1N4V{E>l8_Bj$Dqm@Ep4l4nZ7D0MnqPdg+J}mVffK}zH{GXSA zEzr$T9OC{*al{M$pQo5qGnAFgUYG)20+D{0)TdvuXl9LNK){B#RAF0~Ra+eiM~IyM z-7iY3V)X*mj&(Bu^r)*!^Uz`T-CdR{d%Q*Jwh>^Jox0n4WJ>AAHvsa~HG!u;pPnp^~|5 zX7CUow1Xm!M)8#_xhn+C1j$*zC!W4-grE6B{_lKRqrk#5d}DW|zB*h8ODMOGs6IDlD2Q=o9yTc#9O#hpjb}s}OY{G9=oS>wGOmyq;)Et3u%0|GO4|%hv{iH)a92 z1bjmcd}zD>yu_i7$#dL-59z;i#OK6MXLYvscfzYpu?OiSS~C&ODIHpWKM&M=;hGER zlt{6_5lO6X)Bbl#0ubi{sIJ>G?ZVpZ^3~*9ta;q>^BbvsDd2=truteUfpVEQ{8Xji z7`m5H7r44xM(GcMANMMcbjOanNa{*zi~!di{yQu2Zegp9=A*#7+Gp{W6PpW- z^b#O3Zu<_T=O>7Z#x04Bc>kS)K16OaxfvUk7{^Uqd-i!)e(R}9g$J$-JS)1B`xiD7 z+$Xd`bkL2et#82xSxm|Y_t|i#fO0A%7%ap_GSC4urbRw|nQMRzH*$J;3Ge6cU%nyw zD(-3NZvxvFT#tHb3x1536O)ramWUx%Vu1;WisGUYar>~BXp(|-eg12FHCA}hs|#6L zI*qKvp^8&^fSzT6h}s+1?csm$|c~HcvEXIcNN;cIgBG#zc{6ydq2O1TO2?;729g8=LQP@)J$;s zbuXWtUH8<9n=CxMIzOs#Vv}xRhc_}pU0q#&eK5+8j*AQXfCump+RJ)><2>CcT ze1#4-VTH|w*lVWbS>pW!@qc{#*lEQkK#8jDx<=I)U;H7RDwsj_(KV~_2ZwDxmMkXW z_#tA--q3gWuk^>_h^H$oXi6WuV&o2Af*a+KzJ$JGfbW5!*qml2KDCR{ptk`OJyBRD zB*YOQjPDp8mir~0_yh=@4g}-mMB7f3d#tDu@x=IzWCgqn4sO|7s3eKkV^=H{P7EUh zf(e2Z3wfL2rMkoTWjzk~O zk7#bmikKnh=YrZ;f@f?DclA6^Luz!I6|$_|4kjXgj5Ix$<*zPceW=U`sz6e9QOLMm zcgg3NEuUo)iWMl;X2#;;;(iY)^X%-R2*}i^r2f*!7cgu*)Gjj>1^~HDHZs+FH|(AS zl9E!@4^Dr+42laLv^g`PsJiHLSrMV#dISso{v1A{B*DK)qkxYv?QXOeF_QN5uJYV? zQyH=3>qn3b{pHzG>e%Qos5in(dFb5(!0`K@UvXDT>&MNCB%k@b`Ua4`36m!ES0}%! zPODs{?jzna6-je2-ZYRlJylN%VDGPW#$yuP`YT3 zyF#an>H3TiH2UZ_)T^T-C%jr3l{H@8k~PjCTHC+-c`&Ih*$`L^B7hC`75$%@(k=$On=tzo?9hQhPE)^RVt?`>GE%7@-E`mq5cw$}AG$vdQj|4OM2 z+dKk_shQ!odH(|;gXd3?r~O-Z^3d8NRa3~`Af&ypiZ87|#ry>E!kC?efm+qStsq!+ zAetE=#Tl61DxfE7@K{QI{V4?ju$Ub1VLlz!QV||M;-|fD%^oNg1aWnhx5PgtG|~$) z>#^nyO(D2wq2HoY!V9)>NwY|&7PzQWvj=DxF{9qCdrq#cYFncCxo!Je?Ze8_v5nLyIJNF_(}G zgv60vF<|65<|xs?&fVhj;Ok$ZHf|mJ+MQegW5hI?w?n_J3b8CKLERz3Didyc76r`8 zNATW~Zyay`=2-+=;Q);%kg*~_6FG*P_~|qHHX1F}{lm|;v;!&NNw?%63;J>YaSJd(o+7rEOM0*Yq4RFS&=N_U#`nQaMWF#?9#>1Au183~aHTvLi{~!)WJy2QN9~_b{2(iIic%&$S3?>uqh&%vxu`XqseV4*q=(@EHN>v_(t%B#+2jF;B=f z>a^W=mc@0EnsV(eZI9Qzi#P#seP)oFQF2X)>ev+aYH6{;TD~P|S~3D-(7oSh{m<5e zZ=L{IJjTaCQ;zk@nhORZz`y&g^&+g$1><-6E?+RQwM_g%5L(1h+YcgeF2Jb-8BSAF z-*V7ObjJ2b@giktl^bmww3_r+XUo)TeyOx}B8| zw8qmfa{uOS1dsSD*5R!M+s1ypT?D(uLL$P3&d$<7vE z)SyPrhiLAO>Aj9`HC-fVvew`q>K-+se?jDaanfxRA1Y{W9-84KDb*jDmKO2#t32pi z$LGcc4fz1j2k#wfW~T2&-uK9g;`k!CSsfJG^>tDQFmbBwJgM=(?Mo>DQBI_Q5Kv|8 zF{Hz{>0>i2ak=5v6}fA??dt`v8VgMd&>nSxM%4K(&!H!KBUK=p+9m+!DYz4{6xr$5 z0V2!!GDbjHM=O}$FCf#P{C8jg9-*^IG-XY80F<}%qwWd1yb8Zp@fOC4{sVoCs6*4S zdr37#UKjQEg+gH8SG;wwxcZD>aqXP#UO-AL65I?$uz!&EeE%9T?R&Wx^>U^Hp2;S| z#T6RQuj%KtSCfPXWl7zyh(0^+dF&i6v+d7$m@GCkfSbI*o!QjIx`4=w$Mfk-)jR*H zqlW{jSA;GnJUA>PBMC39$XwFwsr&l+K3QIgCVxA8akOQBpOy9b!HC${!OkiF_c=Is zmh(&ud>$t+X(yR@9*-trv%XHi#F+7r);2bdr11r_StB|+;$K+p|Bv33= zOcwo4tmER90wzPqUBO)>>Us z)E>tXeyuRdtie<+7GQWrCkO}ul4WU9UDs{i@6KTi^IVX#o6m)Ib|Qo}{WO@fzM8OS z@-YSjQ3nj*`8l&at40*0s^Ry~FAQaVc|7B*y6c%o6v-g6zCv-Udp=F-Sc_Ip#$@nq z!39DY8Hk78jraBKZ9n?B-amgDCRpDXer$BR96>B>D$7$pbH4GFBW>1D;yGUJ&@>(9 zIVA@befwMeH(hB!9HLBQu-pHdrS>zJ2kcXC`5 zRwaPo-I8KW4OK8g(vzP8TEVa|KboB$KSV*{{Z8q=wsF=GxOB7IEOT+5WYrV_s;|FS zzhlxL%Ppw}R}rOVs8Ic!w3ww8F|)#oAcfNc%A(rdRU^3!nNtDP^EX*FDIN-{Wyfeo zgLU!K#i@5TZobGbP%Zox24_v>qOGQCk%?|RlVpJsYRh8ff$W7kv|z_B-J!RtKntOB zY*Ei;jjdR{{DG2gN+@HB+=!sneEnUlT~F*Rv4~C)3Z~ZI!4a9BEq2VWFI&Fv?L|y2 zUXtK4YHLcsWZmsq?;q{?4r`jCVhpNx!5y~>FI20D-w=ynm$m;1|Jf2+W8+V^(Fc#N4DJg(d1Vydq1St1*E?}~W=hV2*vYq6#n=?RLf#Sb;_jk1iE8?c5UKM@UHe&?U&& zpbouIzEY!58{vp1g5*nYXBzEAIo~m}gE3WqEM;XuoL4h%vz*||_Yroy_oA5~k%Q75 zx2>9~w{DyRmAtZYaV&MJsNQ^0P1$TL$~I64%n)g`jX6Og!j|-swQk(W>iKa&;HT%& zK2<|^9`U_ee6mQB!7B(4f3`&F>--$Zk=GSa%rh-L#kb8of6U_>U>NDlj1%I2Aw>NO ze@8EVBg^ZzLm<(2xR2v?!ZK*>;HGsX^)u-AK2nec`?ZIgNmSW+n+=e|pOCwtd-aA5 ztnFVfeW-d{bqm){B~HNBV~AhtC)#VNa||P{1O=xz;+*w8R3@{_a%MA_2j4%;d|JD6 zIUw!@#SoERfsD{iZAAe}e&|F`Rx8vt8MXVMl zOr!=QeFQ}Y>A`_s_@V* zP$`qC=4Q5YL;EVWX`We_Z#8&>SEX38<_2xM zdLL@kU%M37q7#TXi_?A)2}oideD>@spC{0JwX9c{Bb=1dTHk2-Og()%&~x11yEF3f zJYXQtq+e?dBqx}{6uo6-{ZqCXUk)k1zhANda*LS)_sj`YBXlwq0$D2JaT0f9&#OiH z)^+cxLrliNrf|WScZDsDBr$3bPJv*JDM|GWQ(%_%wN6dlil!&TiwV1F(-_#se7tz7sgF<*qVJ)w#c@+0YZTx+BKxG}MSH8ZnR%8V}49GZS&wFE(4D zVzp9|Bh1;vt&$oEd3~;ODBT(UZ*d1x7NCM}x5&*lB4uWlkIr1qN(fY?7wPX($|h!H zp`*^FqM|}VL3yPu{h}OlF8_H6q#)Nyjf57PW8>nQVJWcC;^-Zo;-RhIB??!xc=8wk zWYpy>_D=$7{(TF0uh&aB_uYarY@8zDq7Rv}7K(JbsDVNk;1+JFP~0qMHzmISzsP6* z`4~{38|=l`^9(pewvvy1e1+(07&ft#SWdBD#&;4P0+&l%I%s3AQZ~k!`9E(1pHnWh zX(Cz3eu{0?9m0Qp;!Gx5%?~cWrU92)hQ`IknX)9Yg{`f|Ox>a&e+^Oqy4_P#Svxdl z{NWDIfoxM`#yJTKnZ1Mp3yHnp0B_gEN4BsP@M+oq^V3L|>W!2FY6vA3*_r%Isuh)` zRl9_h8#}X=7e$#=VX&6?xHuE6@%;R!!lHg=Sjv2E;7XbQ3|Bw~;XT2}=%k3`fBD|zJXZ%kx$ zpV->kV&MO9sf}uuRQ43oZAr_oF_b9AwvW#|FI2dCds>fg@BUsw(WZr_l}b@ZE3>aU z;^t>-S+!8=6E!o^C;ydteSA1FMqcMSggnmaY8(k^)~*{wgj!X<`v|o)^qZ%c6A>dK zd3<;{BszyOQ@;HDec@I`QzS@qzib9y>U{PnJTKflOdW4C{O<`|C6^x~Tsg;e`cQJg zNI8{!_}jsmOr&e-IPh8BdO@ij9Z0Vc)2+wF(&Uu7hHRnf(lOzAI$BuRA}iQj9vp53 zl$-~f&l~KU{9~rTH-<<~Cc-xab8Ia3CD+&_I;SW&g34|S$NE$@p?oa%yl;BhXzd3X zbnJv!PT$98oi{4!$rO6>Bwl9Yv#rDQmH&Mfb98I3!-GvdyZGdujkMCbyoQJNi`a_Geeyw9hV;xZVGOdoUx@S`ShrO0{*Y z`WhUbZQ9A|z*L*!n=a~b=tYWT8T}D(n5K9|yHuSIMyO3TQ~{Kv5n zZ+(fNt@TqUT7D{fygF7_TGk$JOOxwyy1S0Fa#y2*+qjxLY^5_<$@51PA0m$8c)^aO zZHq;;nQ^p}jYz(u%a^DB+7{qg^lYS@UsnDi+}pKPZVAl4E(Z-rEN~@NVG`1UI(tLg z^rH5!T`rq5cYpA-e9n*cdam~GvXXlDA-pFm^i&1MgR+28U_Oo2Q#<{M=a(puud_G+ z>%1N2?7r)~EK3Db(2f50bJH=s3$?b6Ildp)8CTD)((gL&x%f64?9x4{T6K|++E(fz zNnO3Bl(*4Sh{v~=kvv}M5-Yc@;=Vk8`J1jfp!#2p<<*2t>6eGm<^8!h*f0 z!c<3`HkO>H=fRElj9bN4!$s+EFc^y2xw}Z0^LZ)N!Oet(LJGTD*vv(}q5VIjGR4Z@ zyw2QJ9C!E6_h53J;u*J3%EPLe$HR?(Czs}!Ccb5G^n22Is)p(+LvmN{=Dm!(&M6k} zb)iM|Q<948lbnIAf9y!{tMv6i29?i}<5a>rWh?Z;)wCu#55nz zui%0=1zhvQbX9P?OE0^v_%z}_{vCw7p1Q)eio}nT=GEqhvgL&5X$nf~Ru5bQ>iPE% zJIhp3U2X02*~$q13n)G!vv!l+geltZ77Vk^lk69Sj7SQqh$|c*U-8K<-yC1CtGI8u znV2xQ3ksrRV^2rUIRlXYAG6^Fj{wjOd3Ej3_V#61Y}UDZYA2799t+)is==tH{VoA6 zZhKuG{1md(zjKANLjSsvDk4HfGr%k2c6t$P+O8a*X%L&&@qLE6OiIz+fNtS9A{0qX zp42Fx<74M-*X|!p1_Wrdf)!+K%o;-GtUNp~HxE5#rsg(M6+VP)*S_>?5F&cvqu`ZkX4ewy+Gp zBrAOTAcxK4-M^mNh^)2sXE=R*Ac=s2Iv zVCLAR=s0n=y%2v*MIXVt@lp^QCtkUccJKPruqjDZcE19dus=~)IBbbmIPAwms8RB- zP4O~7=meYa^2DG&s@Xu9^s8DBEW#iVb5E~q+P}^AA5j%=y#p;zN_5_Qvjp^Dba@#V zE;a}|F(&q?3d=BYNFaZRlD&Re$L;PfL-Bv-3z|`og3jKWx=_R4rI(XD=2+{J9C<5a z0Cr&2MIRzH`FrG)a4bF2!#uf71ZDj0%?8_UGK$Jb3J0?85)#NCIYOSZ@^_cgc;7`t zTRy|n?JhUuGMVFi5W)A0bf(HuXV`>iunz%*xm8Di*rP=IzTF>ZS>8`T(H8g)zHA4Z z*GJAQ?-&>uUJ1G>iHMJvNwbIz_YaE+XNk_321Yk^4wV51>&35;9VAY@61|8Wr?|2* zk(aDSGJi&xiXkpL_!Y?N0_A!tjktn)Y(CNkqi|QlG4g?oEO(#P;rdFn9DmtK!uO7V zrFGBw9~yDhM6n<#cGGkNH(9Eahuk_QyOWW^A|E94cP#*!-`A-{x4?TSc<+i(yTj|S z4YU=kC)6Y*AH4NAexzDEr`k?!)@A+K5q#I!X4l$g`T28|#!S1Hr@XcM zK8H5Dbyp)9?yhdXM`*-lq&lJ__2a`GSzRHy z-%^GBtV7zm+LX)D_UzTiF+*@pmK*jwT9>J$s^wBRoY1?&n;t5B_+U?*yU>HOa5~3< z@%?+){x7L$fE)OLJIr>@OJ$-g=c+WYwwEU|MKW{F6|MAnKHU1Xt$7HY$%iJAA5ZkD z+->PFM;AjKxrxQi7Y1>Bs)-IlDasBHoXo4m&gC{4IcpH0Lc4lnJ9?mDw~^S8u|c@#s=)XNT0hSZOl;4PtPCKuEo8K zjQR*u$P!(Ojn~VM^z-RY^SoXgyEN@@*_vv(`7X9oKT^hZwQaz9^_3#R@az|V)wYgX zi}`##4xX+P-1WuW*bKsOX#8(ooyIo=;M7>}dR@;X-H#8igSTqrQ)yt7J?R@5XwMx? zI@mORUbWp5KNUt$%z0ZA5DDsNgPhktWYHo$crdvR+eOpFX0(s`={4_LLR#(J8&&NhHJw1C$`X7%43mPFovUY|Yp0 z28*h^VH5&7-Q}#`cG|GGbdmPn#geJ9Qi;A`hTlc1Wo@}KNh8_su#)-B^QnJ!W;>pg z*?owP_I>3$)Ky{BUoAf&v+r@aX$*+S$eumJj^H^L_D`Rwv3P0Ou(DYDBlE+@Y3x%0 z90U0;LxqBhjYS?)Eqh&61!YUH{vH#-FIY+@EAshEavOk0#FG;_xG)3$Zxof8HacdAMVU6mYWJTuB0U=7Y8%4I6LrPzlk20 z$U5Cr@ouwP7lrf5=IiDjJYgXqfw)kgX?_Q7qLQa1r*Y{IS zU7f;)<6ltNRF_ro!a?)#*fh)|20I?y3S2VN7s_6u^=?W>Rkfx@GfSmEPV;AR@v~p<_3_8p2GJ4s;X|1P6vp7-VEh->0$ryA-;C38N-FSQ$h+-bmfCE)pJ<>L*(^Gr z@`e)F(J~Uam)Fp}8OiMWy0W?GsPXL^zTKvYpP!#N*;v@cM#P6dw($-5QdDNaOm-DF z?Ur>+1`wE>e3kW76_Hr=^3&;+o3o8aKi|!`W#!gw^se)sH!2T|bxI954sFg8<{0J7 z5UCH)4{y5Hu%}IJ%oz4)=UQZxSum>TBp-!7Y&=~Ej9te&PAP-A$pJz-c0HVptw#9E ztC5D&Z!<*sIt>mpmm1?IJ$)0?<%WolMTGT#evv2jfRkGNnhQt9>d(EFSH5K{3%J<=jG(>%ozd-14XtV>eo*$EYgGgEs0K zRAN3i^_RO%H%%qT{N)x`1$k*>s_;lQ^whk|RGr1>p=i99wKcF$7PIWrEjM=pP`Tu= z%C&0D$5hdSdbfvCUfOJ=d|nwH!84o95Meq`9@A=IXyw{Cnp_Z>SW6GmiI2_9Y^n6P zBmf7WliPkPdyTr=_4}EGru*SKQ)|Qo@9rsH2$1!|}jV(C7s2Y>)AS`Pt?BzNLKN!gps}5n~ zpusa}7$E+<2ornaai_=DR(5H+M2llb^IOYaD>4z{(YD$F7g?x1*?hJHR(5W#!Nm#j zj0K`@(g_{>UHEF1v<8QrQI~StHM*l8BX^man31L8uXJ}L6;fJ)98Yx|m#W6(N~$dQ z72OlLJ|H$Ll|Pbc>q5<-H{Y7$n0wS;-EerCgTgpE)G#q1Q@n7Oz_ zw9NO<&6K|8NE!2-r5V!=GIcWeZavrIO~eLg$L04I3=7#Bv#BTVx8B2QTFE!XF-u!s zC$o#WSdOA3ux-=qguP~wlai9^(6W*h%2SdpIATzmbyL9$jn}qi0rVDCI&Z&y`-XFP zeLkdi_bxo$dOf*g`TqCGB&+sgj)meuenM8g`36V5>X-heNoA_1SECt1h!!66PkH9d z4kxB^n|F@uvi>_WAq`o=T06r@30m+VI zA^5}ed0cR_Lf_4==Z=u?z0Uv#pq1#2`Nf#2jf@#d1xJXRahwp;XEQXf)x6wKqam5v zWuO%v*Ku47QJ@f8T6CNbH@>;xSs&K&LgT+AaY^-f+?;TR^Tg#h3rG#RejF$`FQgMG z((0m7%?WS1+`_6s3yIBm-g5Z>(ENtiJeI#if5K&p@TAex=Y(->MUJPWse{jXv~p(B zxO~~>`qF)syAxX$i4e!n_hXbVCa?lH4! z^#4}5Vd9QKF9N#I*0UtuDCIm?$3Q5|)mw3mqH` z?hlN~nJ%&~51!%%2hYH?Pt`1d3s}=b;)?IMU_%Iep%BkScakB#BD~$EQ%mW_o9`}z zYW~@{Tn{wp*XQ!y|5Ufp@(CDHOF=cRR;;QyE4;q?H8g9b|HawYX8$W$iR!^i@rD|U zCU(6N?nUgY{CfB6rc?fN&z~uXPRc5$#~frCl%&Ktjvp3W_nI7?F{K@KjvM)FeXf*$rv4heVx5y?c=R4goApl9XA*EqNkpUyn&VK9Hxk>WD<;I zG0#M%zW%0l`aH}tL1ApXu{8U&IFKK8 zO?Io?8AJXS-`!l-#YuYHcLv(w`EnLCS}Ey(N+?uM`1YYz6j5%&K$ zRaYTRQBjQMZ;bqIJ%M7*POOzt#*^Rky0Jo}w`e9T0? zcs*nWMpr$#P&}4oc#Y|>@A?8`oi{6KvYnXmhKz@2?vnQ zp$8mNS{eoc1*99Lq*Dd~si9Ml1{LY<2Bo_@{|A2t-*@j_|GU;K*0?=$&OSTe_j#W8 z-AEV0^N^N_AcaCw#F)-q!&g-Ia@BHa&rc5`*z0uYKbdy+o?|`b$x>@y=qr|}=7={K zT2eEb3f?4Q&gCAn%+sm&kZ3w}X>aMBGJqRsms5%bFFlKpde;}hL4=7f=p0yrpb%L z4a<*gP?%B1aDTtV)aj;^q|>AK^&A}{sTDYIwwV(S(TJwdZN+3xZObu*L_slR_XoCk zE|bWg8@}8zWLQNL6Mb2|q!FMoq?$Z8BqAv|#{LU;!ClnFdXt1a?Rv2@By`9nR;pp+ zM=Z>}$LJ)LzaG7x_*-QW_WjF~K%a=)Ms$gvn#lj8_P$b}z z=8rq}Q|Gv#T@5R)s`tG7I=s+1>0WeiXs7#rqWKUT;9d$(r+~C0L)uM z3eL)W*Ad6AKh)UI+lM?aoO^mShJUwwq3Skhx&RCX&NC=mXH8dx=BiIP1r@7(f1_`DDY$Wi>tp6ZxK&PCBT-|mR!yI zY+~IrG+m_{ObG-W*MokIzaUi);0mN@C(}lxHiZUpxSZ^tKcf_OOJCkr%TyZ_#s)m zQFk7GOI2Ql^J%s1&$xFCt_Lr;j80TFKP}u2+1sU9%_#FX?LJrN*EUs5KG4#Y-HieI zTe!#b3pRx?>-mWXtxZjY`a)Mip{~DIgPcpUaIzfWbA$IiRu3q+%nk&P&vyBIz;Jm~ zqdk0v+fU8Uav9oM5yiuPmrgB#}>hiU_hDtrnchB?vJcLiyJf<~lzgebUY^BD)+(-g7y(f(lN4Y$X z)s-;ic?Yk;cRGL1f#a?OCdYInGrC2+(rx%;3bu=VoSJ1F(49Q3X33qgbBe9{v&4xp zj*@6$WW2DmGe*mYQPX>xCGdTO3=~Gtym@S3(;CAPC$;0}XEt<|FIPc*$5eMHU`bN67o#) zrD~5?ACwNz`l+uBmxt|LEZxxDYD~o_%Y=_#+GDTO+l*6E-^Qj?4nf5-vs6sIBk~f%+8=vY|C#p$lxo03*-JSM9dECK@UgE@_zn0H- zt|vr>3A%k(qmZ`h0RrQk9ad5ScQ$s<*RO}+431<=xGwi^s(@6p!XJIVBqwI3lXk&; zu+RyGS?)bNx#zC;$rNjO+k=-|Q$%9f=j)9OiR#aNoBc)A$b^K~5zA`myw8B}ju^d= z7J?AD!qhI1J=24(?KA4<4UQA&Bn!flMCT!!uZjnAfjTZ7enCA?e-Y1h;_S8QbF|@Q zYGK|_5aNq%p!X}5Dv}x1T#5B4Wr86Xc1F}hP&VN{HDZqW4a^gfic>FgZm-qWN~f)^lX?*EZv>4&&b}x61EpdBE*W6I-lutK5Dd)yRSvz{=FliFFI^X>cMm#^ zqcfW=_kD{HwWHJerrpP^6QtqKG@IZjeHrcGb);%`Bs|>k_DlK4LtM4ZHP|xm#P@t* zl2owb1fJ9OJ(5pgHnMxcoQBPg@+t(#vBg~?xG~Gg8{G~AW?q{i@ICxA><}{U0W9C0 z#dda;b7XGoiz#Y?Vi#b#SjB^#5qUbtIf~||2UaE(r#ReiIj3&kt&cuG#Wr8>)2Xz} zmc>vheO62hJ80&ZELyEOw%%>pNb1k*R;Ak*Q4+B@adX-|U+QfD#;zo<;l6vDs>r-~ z7lUAEFK&F-qb{x{%RFHTnFw}`&v_dGB$_9JO@3ORvIgHmae9jGu7m@Qp@|DyefdZgO$sj zodJSpv!CoAOV&NBU>$ck2fsK>i}+A5t>+nYC-8$i!l;!p%)Tqst_ypO_M9by{6^g=mvz!L&5PjwJm$0~z zl9Yv|cSK)(2;!H(d#H>h5iT~)kBCJ)b|m{MD&tdWX{&`5bU4ICzL8-&m?l55$Pskf zdfJ!aDnT8MOGvENz}?G1WWL1fFeo|4nku>N*uLjXPNe3UT2(l|>eSTpqenUu5|>ss z%##Gu7#>jX3_E_!7LTZZpy}D*s{d?!dWn*V_~@M!S}A-~-0=wAQSvc$q+x5H&Az5D zbt6*c#c%2ghYJ0k3c>Pj)BTTrP0ng6U`gJhVjg91iSSs$L2zDSghh9jeOP7o5b|}q zOj%a1e^voWVr7^dRa1-}B>CgMr@(3TP<3JoT^KmIqtF7UC;vZcNMlHePd`QO(i&X3_EA4)KlXw9%!Deyc*f%FsUw{Tw98 z-rbT2e(RhMBArH>J5iXtL6r3qT{h=W7s33n4x`JbJ+z^)^seD-75R6qnevAZ^8-6M zF~7JaaamP$B%W4M%h@;WfwX8*uy7eThI(!1S_-O%Z0jiOl143mSuW^kep3n;k$WtJ}4m3F3bt$2+_E}BVZOz1eMYn+DBrl*}BIH5VJ z1?fWXvWu;m8Vq^=+aT7wyath3u(=C0U}h_%j<~PUK^ly_T%Si}EMA_`F$59yKUL=$ z$N6%H1Fo?y;v{o-FYckH_$mfTZ~EtD!c9^lbRP-v(gWhuy1R4T?D3Dyg5I_7kpAf; zD>Pt0s;{s;b`Tf$xw*Xi3KxV>EzK-O#pfw{6CXW7)^`GA@24IKz?;oiFMC)9rG0Pj z#&dRY%2(-lStk{kx+kF;?-}@fg#14Vl_(l62hTAW9)z$tAYoJn(?EOCNd;_v50p~dIVsh5~rFsUD7Bde)#Ym2rUf;k&=_srlf!&Mh%F?e|$Fz<{Ji-b;2EJSl z5}2ejQ{DVmDQa(YCQ%je*N9!e|8XJi^Z#`nY68wj5FCH4=IWrgzaKit@x5#R#2g7i zfx@&S7Ty1m@<6(&P=dxsdnqX?K9_cf&caWwKd6`iCms}J$s~WUa(}{I_;b25kf-_Y z{k<4aB?oVV&Z#Ci=4gKk~C^8J4O5i+8f1nkjl_W~<;AlX94AFp>X zF*<9RnGYiM!>wztjfxi#AgYs)N`Ea94XD=;Ucj&n%u?X%RixbCPb4MKys|c3d{;?G ze}9UIfPPpvVI27t68c}Uj3K%?AS%RMeEF|#UqUgyj}W+T&%B*$jhPJf`&RJp^-wUM z-~lhVw==k^H8IuL2=O+Nfgqlx5oRFo#AJpCVQsQ+v8Ix~MOgAvd4lF{uU9Bb&t@Dbw&c+pgFIT!_YSbukS$Dz2#O$?1%0!4) zyVHX?n%Q1N;DjuIo#I75QdP8WgX_~j;9)m^~ zITt*=IvS))t5~|2-7nJ4->AqVR(eRU#)$@>5gKPT?%2AxdzNmWjrYpu zWa|8Mr%uNbtuhZAIcfcz4Jsd?i3aOCDK*noB z$a-%uS4Bcx;xdLp;IL(~TC8u?_i)ZPX%cVm?)rrDU6a-lLN1r|>e3gz^nP^z>G5&6 zz2ERainj(TU_!Dn4`V)@uYVvv-mWli{Q&AJWfHDuKXZl^#tXYwWuXSN02cY&L1MKs zwWshaTRGD~J{X1l%$&vYc`G%=Y74GJyfY3VN1Y;?Yyj|Tc!(GGf%Fd4a%eo9kdQ%_ z^p5WL!Z4M$)Io8qx-_l_l;InjwJfjU8pB=s_1onyrt9QGFYT3sYIZ-DS`X^j&N&fQ zmb!MM9?ypDDi>O_RXVSJ22MAEmY8|U0~C68_K|tT#^z#I`wI8!-r>QzR_hL7uKqiM zvIXHXxLOoGQ&-jq#XKKau0rtF`jSffa;XJI!et-rL6XEZDqUjcDz79~y6}-E>Eu)K z(>Ltnnce7ZU5T!9g_gq^@Ikr0A`gmwBAeOA#fFWxq*esL2BKYlyCr1RQ$EdaAH0HJ zKV6GYzrQ*h``FAQqSh5#W_t$6GOZA|fpxBPzAzqRyRfLAZo2fMo3NH`Kox|AAyy!awyMQwjGTP2e# z1euMSP zafvbVouKyhX{g8O^K3|IVdq^v$3tSe;lj)ORQx6e_&W5%4+cV( zXhJ#!X6_GEfkQ-}B1<$o-K?8*?x@S&2qwwTWjbssp}y5wo35@dA7SF<-Jz*WvDz`x zTD6*IxX18bL1F1%jbe$mOT-!r(RZiwy}cjvC~+*l!2iVYS&#GCQ8B?oRnfjo`OM}0 z$EF^Pii(Pn-14T}Qg(}7AQh&NLH4>>+@#ouZOFTtw0Q}|q!Z0ML=UM?@00UPVmB>v z9HQ>br)H2cz`<^HCnv$d`%j#IZ7mpKUI1V@;o3EEvt(^tjg(|M)!AsY!Z|_V16Wr_ zB{O!9qz`~WJT0;_w(HX9?G_Yl7rS&x_*_0vV1rMRq zYS~=UVM&*2XU$Bm40)+h|E#^u4EeY+Y$=J4qHd-J+pRzl#YJY9gwEP|gkCvs}Phv?K8o4isQ_(M>q zXS%w&vyP@tuYs5*da>uF!%iVO(sOt#AnAc%4A(e7Xo17cotM!&NgmR(&?Tl z8u7w5L}9!FVrUMsUSs`_GT$a%1!v--CcIB=dIn?1F8koHIa)~eNbD)?N~_Jv6WO0L zv^Q?M=JZ+&c!*PE)t+LvzVp;;$s>sxz~SIU>CiYca9Zeym!MPj)kn{L3R%g5^>}=` zbl`?eyF9im-84$8oUsD7LOdGO&EhEZWNBD@Dgba2Vk=QC52S?LBOQ^p3?`Mzj<|o) zS)QB60|}8iHtSAmuh>?ZU;LtP5ybdy@tp)Msw-1?4>D_BN`3?blhGnG)T;CizOWhY zpk}rqAH-kvxKrD~Tr*SY)II&(=ExWGgS=K?^AOiUE^p5=op|!{4r9Dl*?Il7u7`B%H+XDL41Y$-?6X5*uAVESB6vk?sBoq6oyAF@=4e8DqQ|JolJVR(aa4bO#lDapEOZtcT_QA|o;caO`9h8Y2m9Q(~7$jSbCMneeT3I#94V17}V(C)-_|sibyC|&Ipnpb`)rPiOoKV&Yo&- z-;M#LbDx?ZfLLVKo%^q(UWSXEH`+9jM}ba;^@o9mxu*l5Q|I8}dN73I2lqed` z#{&hFmYSPDFiHasFcIMaU;VIF+GM(Ew8}AWp(u;gYnAAnxSe^IT8=Bc+q7@V$*)#>lKb8&PLmDN$0%%=(PFUJux+JmFdd>K9bPZuFE%Q?_eIvfPjmqf}Qa z|9At3tHhuMn9n8BE^heAFLaQ+PQxBxm3q8FlZK?AoyE-`D6g-MX3>@llTY9YvG#jo z2a|TrJH*gD8!SJGe_}35wcJ;kD8=r4tPp*E`~K=;BJ2uekV*%9ylM}@5k5SbJ#@S= zfFE4doz#IQuwqg4>GOZK$%iE+?@^@Ae|Q>;iF+J?^gKALtau_I-xdurK}^3mHaIth z7W#*}pRC1qAcXX-Cyum<)@-Kh@U2hWh96O+d)9}QGL|~uxd0eFKiTBw)rfsmi_2Z% zQ!eFmc@=PPz10&@yZ}N}c=xlPv#r2l9vFNz$nv_vNY`_l==fxG8J#*b_X2+53zA2?$N2@g2(5lw(}h{uU7{K zqBHR`74HV4yhnS&$apAg+>PoFc-7D8(4MVnmO90=>XfPyx$P{p<_n4CE0y9>`er~r zNu6Z4ouP}2))~bO!5*pC1msQsC`?Wq!N~Tg)iO*srllZAj>@uf+#RwCfd_?x;F37e z>>64K9;=qgMXS9RTc7E}2{1+gtaM|SnT+dY4@T<;hNxKUZ+;HKby2UIouVItV5wO^ zcrDaZ`dn#X_j~t7L$geky$uG>k9&8jn5qxf;t+$mSv=?K<#s<2sW$0Qme(r-;d6?L zC9R&-*5r3;wX>dkb0C+--`)YXimer4Z7IOtvQ;PQ>#L1W=M9HXR`EF|E8VeS4vj$1 zqZVDaxJge5q%8JHc=_*U&k%P+$%m=qtN z>so`{wUh!DT6A}ceZnvX)N+TH(^EMv(wf6ej)S<7GTHAZm|6vC$eDq?s0ROwSgY)>Dk~DIlWg|VtFWhJ|X#CWm=djM>Z&cakpDQ zl8mNvXCYr3*)3oRN(u?5-j@z`W8iiOFz_a zWumW5T9QNv}Dk&#o+R0)I9R%1y!Oz0&DP)XU0i_{2B+PXSarJ%)SDr&} z#tXNuR2}>WiL7KDuot&T<2@SrVs9}%C{#wu;BIiUZQ`m?0h*F9_; z3ADgT0*IAs`pjjaB~$)+$2EVG{<+ANQ`oIj#B|jj|9!&KG3Xssz_L)r+wyRj19sSM~MGnM#{;9>2E6+WY*KCdRUm5+KD|fUJYWn2IEm>(@yWjkxd zo7b)zL7y2U$bVW{VAOB0`42S!c&Okn#dOu*bXW?YFnITqgok?nk>bDH2J$4YjDu2g z94O2`+3@}~q=MWRz+al*GadX&D)JwIfp-Hn0T6AVQaAs7UEm9j2>J}aGT6hVHTOF5 z1oY@ODF{LA{p#u*#lN3d5?)C2iI;O~|K0Mxzo|+<;a>dqRkGbbAMYpB0FZE>dI#_C zZ-FnIv_PTMh|{klXMT5%=nDXv2w@XTx`qPMP&rQYAG_}{x0 zUp?o+mea$3*M*CAT-}mSAn6y-|NBxLfva0KhnfASrT*`(fR768CH`OW-^Gl;Er&4v zv%`PClJ|Q6_9DfH3;sIG=J(rEKe`&)cY|vFQn{Z|H z04wBgH&MF)g;HTeVZUORf45w~RW)Zr847{i1%K~=g9Q|(p}zCK-bLR*z?gm&6h-ta zE7Tu2Di-K?OWExwe>wu_5$_7d=Z{tP=G)`0oW6|b-fodRRtVgO`H(iL@d1ZuIG{IVeJ#D`X^|T%;2(x^$_tR;RsY4A0d(pfn_mHdzC55i zw-8oHh)*51Ib&<^b8WpXR4to0Hkc;qx!q^7O(LLK({wM+&3RYS+0FR2XiK6nKJ)1z zm8uaBJ-uWQ5ex19%3!QA!@GA;Dti$3JbnUyrtZY@r-eg>Hib`W9D>v~8f^LEF?c^P+ ztzPRGI#q5EzlyNPRLGrn0DoXm%ZV;t3GP(rT{_?|Q0N_Z+-Qr={zPwu0QVIekvXq+ z=8X}axvw9t&j0k4=CWVPjO3I!S#s!o6q*Tw6ZL;l{4-%v8Hx;M9~^Ht&(81}2AFPr zp{Ee}s1Qd1NKv&{kqHExXvYo&le~GqbjqcXyjfF)7w2t}wPh zS3u6!rOb%pCl1?>SN0sx-Y00S?SE(5Gw2V<%OZtjP7UknD!Kyef>5g<+D_MVKQ`qu zIY?_1Q=B*kU_>OGm$xf1DauxsWMpXe`$cjZ-E!~bfQYPL7JuM>Ep^jmeT+LDFm@sV zD)Q_8S@|uQdAa%dmayjeFWwDRc+;txMzV?gF?u&ZDs{6+nX(nNJ;8P`JH~EELV4@5 zirIJfC6uUHa#;Npe08DiD3juIGyPew;~wR3;dHpJ>w$cf)INg>GI(cg)NZuOJ(HZz zO|`_hl@*J0AR>|>Xt~zl`^Kc>(}!xTOcxj9^W7rsvi|q2_OyW0O5?6Dk;)wt1tX5o z+n@5aZ_LH%cgYRr#AH}R-9mC|AyRSXn?3nK7uugKFA+Qz%=7IrfgGefIkTLUmuv!a zJt=gNBA$8{lR1@hEfLT{iplL~=X1Ni&fEC4W>nL>1i-sNiqTK?Cx=v4+Zxj?04toD zm~D7hr4+Kuxbx$u#AuaCv!&K8qdk1-Hz-`4Q$lL6#fB=g;)~{MxSU#d8-=sD6%4rOyyA8>}X) zBk8ezqw!!HVPlCtlTuPdTC-xycTBx2(1y=#?tPx#C&ij(C-c(pd84}w(p_tP#qO3W z$tAV>NU+t|Q=g5=ILN!W)^IU*H54)_o3B2{8K#|ZH1D(Z9km_BpXF*lNR7Ni*Y^z^ z^T*%fq2Ua_h7Uh&AjU?Y*fH3+p-K-}PdG*LvH3lmwa zYuXOD0Ft%lKdG*00n!%@x;1UfgpsWZXx_A|w9Npzpt{6(`OY@6Fo)Evfz`9zsl(qI zIly^FpzL)5zI=xJsd`RgYX1v^AVY5=MB$53Wyad&)%EOK*%=Pso_%C0em*&SUVukV zo(ejO(4GC+AbsWW#s;`#zND#iSoe!1^9s#XFN-v8`yfloo5!M2pr@j{AiSp{8&3;K zN34(TE^@u_^ak1IrV2+NyiAp<* zJ$5iX7@n)%$zAm0tFONSpiAp(kL^YerQ(F=4dm%T00$9d<|)7ggb8phTcT6s=~jzX z)s2g-#)@zHy{Q3*G%x9A1kGpIFXOpb|6n&$OB>39shu9~N6xo>Hhf#s>rC(bH-Cc{ z1)eC*RJv?`MmH1H%FF@wDh~stN~ywfiziQ zwsXw-B=gIUAnzUwflkgRsJL9a&`34~v^=G)(hjTZS<2w*{nG~giU>i88Y%2JR?U)@ z(q+4JSVNW1DVy#=BEbKPPObNez3u-rl|JAuOKLZ;egwco`0L} zLqb^q$V++q1#!yFoyGn@5>B`9f{EEOGSBH~*7(O3V3x6<7|Z#u=eKuWZ6=M01Y^Ed zzFV&=(<}(2_NwK1!%M3EEy8eqc0Q#n>lQXiHlxixJZAqj-AS3+s_6;j`vk%H>e%b} z1zzdX8()L{>W`txxgeXRIOhh-Stf<3h$IOHv(U8@JX(Eh3O>e81UQ-kwVGSb;HbzO z8RJqkwpI_73L|CYwV4VUa;hMSrts)1lK*W#JZC^9e$`%gthg~*U5Hj@;9J#O&~ANK z1uSv0S0x(SIJ&jRD2M9g>ioVGXD{S%M3&3xsYq+gV}C?ygzk-7(}&YGsy8;fCadA5 z9zDB4tqHv4aFC?k36z2zq+HPguCL6|O^g(PWRKpX8!#H7)~tH*b|71&KmE4BcVXuf z)gqiQ2SE6y+d|1>?={zzsIvcacd^@~=Zi4EwJ{U)Jy^HNC9KC>{(aI>tw-&c3-moO z`U~;vv+EeK0#E5)erX<8(fN=FMKasJR&^OYi$Jp@4>MizpxYt*ip^(dN)(1G+*jW1 zkI*Gdnu1&cDTdR}{gd8sio7@?CVBD$f07Bs>cXcn@{v3La$k00j1u_2G@e%mT9Gtb z59YJyP2ad`Dx)&H=pU&N zsJUvuGmL2klE*>aBeH#k)6yrqbJ?HvHUkbMPp<%zN^elmfLnUz;recb!uvTU!1Rj{ zth7U%yq;^}bl#>Np=UK=yIgFP=Vvlgyxmrutcai$VQXiJUzL{#i?`%?AKKHfK>jr6 z4sMa|^m>+GaY}W{th-yLWOiJLS^pWopSQ)u1nrW+l$m~8MR6MVMu)k+`+0K2iH8Qa zRTzbcK@bk-@L7`|5Oa!~J>dqX5g~N?lYl3{6|IN9T_Z1oGtDoX=gVf`L*>%v-e+*V zgVla{mAK$rVtjT7i}0XtIKd&HAVT*B>bDq)e7lcHesYeK?lQf>M;HWA^4qIUtqy4l z3f6MFPxpOkk3DCzm?)}4_&43U5kN1hRg3E#XzxTd-MZ5)a(QL)X1x3M#e4ArVTJi3S~MW!!OT{cZmRmZK^P1hzu7!i^(L( z5B=5V`ePWDA-J6{6-0VSg;7KM+vXi1LuJiNjiuw#PL09@j2wb}(ay5q$|*tnqa{nN zmXV`=*d?N^1BMo>C?x--C&Kt0mX)@&P5U3}yGimwg0S}_RNlE6JB;?xlu+y&u zN|_|g<@B7Y78%iqj^)31JXV$?dvSIQP9@}q-o{?ZUEbp4gmfng*xW(kP|ygjg|03j zd~5(s+xF0s$!t7C)zYbI+KEC_*>b1=P@slao<%svtBR9PY~3u3iKzJBsh$zSxbF>TN|YehUi9 zBifCI+toU6gxy85G8jeCO7f7BK(kKo8*!9aQY#ZMGIa=;e{I(&K=gf&7!o#G5CrIJ z4uuo9o?2I=tt_qu538h6!_$E->BKVw0B%RSxnqHK$~lFvszUa}_Ky}InPhpP0-Gz{ z@BT8?)$0gRU?)4v38#Vqp_%^E4wcO`m!}~u+5`Q(ZDK#kUpm;zJrWZWL$cBvJ!Y4$ z1z_5TZEnA^?E%g)-fdLl@_WQfDH$L(vbI~D2tL^|MTG?2_o*ZHEdVCFF9N&7gT)1u zyckDjJc!0-9~9(Y-sQ8Kdpb*qb`P=vDaOcRGn`gPzTSu|#*J&Y7 zL&AVH!{wB+;Z}~{J!cZycSP*{P+r*h#d1`pL7O@xBd(ZNRP+m_#bi~baYwkY_+*&Z z%@^>uJI{J5g03e%GeMsIj$x_^kb7yRG)K&De6;}Ape7oEvKezGZN#_-hVKGrrS86e+ zuxUBPZf0ht8)7qztaLjvaQwP?gcmL}t_{CK`xeszDx=|3xw^8D<2PTmfAJ6n_JneQ zZY81#P@61|d=#VL)|Sw(8yLvtO!JS27i%G4+i}s-rbsY=!=fGJ?UUSam|iwRK+pMpw!o)mdjL3V7ua$NwszP%LZG}F;16; zWI`0_W!-Ayopk@8Gu}(MqMFnLuTN~Zxh6l}mNLk^pRYz%iBzP>e>eJ#;O+L(X1(qs zy{goz0>{F`43%ac#>c}wiqc_;PSCq4)=WTnL;E`B{-E^>zi!7_knJd}?;2?|v{(zPXomhp=tgdMoQK|Bz!)4aWW0@Nk?f z0_SY69|ZLbvp6~X>MN~!X*K$Q`YXFnhGAm~{F`_`!pu!`#Yw(4*leaJB5h{&v8<^= zGBe~Ifx3IG$Lxc6UYnFB0!*IJLnHhF_6Htp31{W23%bm=y|9qMo$3}rQma-?zQ55; zY8b8z7`e2CtEUCTeYfyS;?d$vPUxf&T0HN(Cn5T+$M?zFM5XTgnLSvd&E6F`QD`Mj zFj$Gx1L*3i=!Am%-}Bh@b2=7$K$bcLG-i=1N9xtxE33kOLdjM`@aP5Q{?WEkAm+QQ zlh)zCfGWAKsE+yPH(*F-_DmfIdvV2!%F6UtI>uTU&5{mS#5p6Z_7$gI945E&;zyU@ zJhO;b+1(vbX&n*pUWQtkVOnlnnv36zoP>5mV)I|mmR<;rM>g3XMVx-dhy8)2WCo0# znP$sq-nl8Sdv0eww=YLc1*BQ?enao|Pe8ITzPXsL_6}KSl@pC~Ua~;>6Jn@kM;Ufa z+~-RFoJ9p(r}4r71vc!goY-C$VUXxVYA8R=8L2kl9}p%$n~^w0nHlAP7QDh?;m8C{uKa@MjhSw^79|E>xBh?uw^uEQ;2_f zYa|zdm&!UH@HzaMeSiVZ29$lC@2>v$Q_;vP30$k9(Cur=N*+KQIk2Ge<^JENhKu&m z1J_w}30%=Pe~{V(QGkyS>OedFQvm#r>=njL|74jQIBD@uoky;OnhspJYuAutdhV@&n_F_xQ$I z9QLm)90TYl=$ojvUq=f3*E(Ll0Mx!hjo)bf@BKs#>43&A?qqKM3nYu8g#u(m)@%o% z>os{~;1x$8$(>04>wLoh+WQFsP{I4$x@&*keL%ZMc~!w~9b5W;mHA*PwPEKotCE;83^Bji3nmSi<3 z(cHc^Lhj37l_^pPTpMwrSE5U!ZYtMnv`DA|P)65Hd3x=-`&VT*lqjpOmni~eKvwMP z>%Wx)%F?>XPp{P_ROyQ~w6~|nbAEfaIgUppgvn53KHBS_IX(9V>U8o#hg+hARPh1-^;?t201S z(b(Ck2Hc8rep`0mD^n?Xr3cXYL_I_cP53i0sl742tGjAB^aE7^;Qbar^43>BEv=mD z#2L?NmvrFX^Q8_R*#v12a@ZJSk`AMcODMONKiOMO|1E<%AB83GRhO8^@vU%-*!-Q_ z0t{X^M*vY~+Z^a|hHCZA@tXn&-k|x14^~; zF$bl_D>z7V9Wqz1N~>l?&ChEB%M+Egs`)x%9}*MQJ|;bJ)~eI3)2ebIxNOkYTh6$1JaIRG>RLt6Vr#%mY7D2?*g^s5~t&dOiJ>3f_*<>DUFKoh{> zd77V=I0N{P00~}+LH~nFx8t0FJeV4S+lm>$@`IiOr&9&6>KAJ@xwy&!nk7Bgm)C&o z?;OSk>6Dkt=~MXm7Eyl6bvh)vqnER1$yFy|!WBqGHktA<+#+d})*SWhtfrMK86|){ zmx;tY)Cgw`SxHbX=lE>DJQYsFuGg|MC?ZpA2uar+kF^D~L3z_fnv^0Qv_P0_>^B>t z0n0@G^G_4ihoZK|p7QDi7h;=cQ^{Kjy&pfimW+BA=dwiA)tw}iK-wMu$vCnram?b_cc1KRzAu9X*xeuF z*Gryu&42mb`_#C2UV6v-Yn#fYO9FVrN4aN3)=@y0$?WRY8@z)*P9s+_c4_{{lMr=T z4j0g{A-I*Hfvd+hSmA9kZS4_MVY$e+vJ<~Kk}g5;hs_F*a=r_pPT&twj%^VQ(hTyk z9eseQ3(`z|KSd_BHsyX>&F1vfMx%BjMS`q$XhZ1KWOM3fMIS;o6vLuXxa@o-5{m{Yw?vw-&~t3%l>(@Hr+kfiy$6NG^ydsg z*9#p+MZ_Zjs*O9@hqv0)U($Rs^?WpCBskZ}`$_IgS1p&>6cGTcQbr1BC<0OX{s2j; z;8$6XS5G|te@C>DHdZ4Qkj^VeTeh~UtW;$Bkv>Dd7PrRN^B-R&RF+ZSS7{WSF{ITt z$&*zU{$D$cbx3V?W3^OLd1I@X(6>0nY8?p%!sfJbW^o$hL_bN5$hmIyBV z4S8GEZA{fFiHqwYnvC`el^b`ItL!m_c(>v{!B_q#=pA^0)q(nZTNO2AKuPO?DZu2d zEV9EM=~U1I=6b8sG%S)=$r=C9>Q`3UtI)6JnY5R870%3*RlMv1kM< zms1GaDySD~X7c0jE1GpCvGduQ#)YnHC!9pD=ksP*^!wr2Z`QGD)hPJgTgkn9?$@hb z^xPv`^Amy^2ZeMe@taMq=8IrdMELVyCkHiQ|Gt2h8#=aEw=M=?d#)?CaryhGn{VEgPR)0 ziURke0%re9b1U-@-7r^Zy@{YPXA59|=|d6{K!$j@9{@3NKxXrEZmbZ1Cw#Twv%37r z%ogyY=Q<*EHEN5MH|HPALir^_zC~BtFPH3X4r}W--+3I|es8(o!g%=#(x!1-+|cEI zEV6W*G}oD+?SQ^EWUg4BJ<9;OLj(Zv8dIAW1y2|pBP~4ajK6P*!EIB|U$0jossP=o zOl(KIf>c&>kywfS=pBG#N2(U8YlgWWZAAzIfH(EiUhB!aG&Gx$9@IzyM@5S9-*`7E z!#lN8%qV30vrSx5E6jfU`r$$i?ZUwAe63o=Gvo>4sjbN~eC&v%U-^CcrJ0f4Hd|8ue$NqwpTN)Bh$9 z1h)o&$7plectDiBq1P`Gc@Rg6=WYILvM)9*m`0R*)e0tj+8WcCUJf6z6HMdJxZeUY#DMR%n zhP76N?LzLmlgF6yc;f#!+Qvt=%51cMZW@uggz;wN{5JO7Ok=z4#W%?Da;6Gg zD)m`C;?1R1sj)@SjLrZ-h08vBrQ1CF@p}2RN&67W_Q6h%nvrBs6*g5GZsxPWM}P(t zM1i@?%RvFVM=2uWbkt+q@wLXccUd^S{z}2IDpF=OE}o`dyfb|T>0j6!!Z5`1R9!=f zU*N^yRFB_qkPn=J0GbI6Tr{bM`Sgm!}2E`BJ1B00_Fw@s0_-(#8km1v#Isf?f><4@q&; z-GyP!dkVY$xAboNG>DV_S$&4?K0;x~j#ip&31W*kZt=->4hQWUDm>#LdBfQrtjPx%}$#a?j*b(IRH`elmZSW&hJhZ z(wH1l@Z@Ljq;Zop;IHS0jLqA32AtN4fs70}|HTi%pP|_91QljK>JkJZ&_N;y>=Dgi~_jr408<5$idxTN&0=(!W znoS^11=&)lS*-`qi&LsM2w0l43hjXi4MdfY{Yy_mRWe>H?s$Ne)6BLI$4T=G-%sGw z02bOzB(w4l7|tair+B#a)U&mO8~&_YHSW%`!e1mFHwJT;aCx`PQY{K#2V@IA@RcH$ ze~7sc(gz2ETs9_-Is6zEhPUxEWfO)vxo=M6EOWdO0_X{>4rL6}_KR4s^)r!R42UYr zy$%m|7mG>8cE2UmBEMHw1Cif2aSnzrstSA(kmmQMCk6jN3FN_|FWzS7E5Mf0w)XBn z=rZfN&;ejUpJGnP<8&n(EdoEF7XJ|=>CGSGdhV(0^`xZj=#_V=FY_!dZR4MTmGS1o zaY%yv{vTY3Euhh0qasvMA&5xUGZOq3t;3~1!82UkQ!`|4I?LI-z1XeKVd5Asav_Bz zSXoGj(-z0^E$@~b{AwO+C#f>DC+yhL9VU5tqf% zz9WEW^$u8kvcE||_Be&6>Q(TeWEAL*_xWahY65i%jV-|~R=8w}Fr$JZMnhutLEAiw z2Gl}D#xfajf$lj{5i`0AFHH%lkisM_cyY{`)58$TSybFFmNJz;iVEkigPUA^3ew50 zPXXt7bC{POe-Um z{uc`Wdm;g(hf1xl%SKkWHF#H9akyYQAO?g0A|}}S2XZwWzjgz>b170R*?v zH}zT74FWo&fddTCaX-ksP6qeN^Qv=wAI?QPo=tbJR#&cgDW+NLk|-5NOL6=4`_I;Q zdpfAQxSk&nFw#}ncdNo$o` z7m%rGQid_3OHzoo7&$7ZA5>Q%W0QocEzXsTzL=^3K~32`fKY7EHU9Q*(WF-cen37) zSqv!1Rvvdb5jat8r78Yr211(2UDzy?9QoGN7?Pp~awxvc8a~zHze5&GYlJcOfWJ(A zeMKul=;5T_fU`}q#=F�Zh`e@k@S-&jbrb0L5Xl$L#1#XQh?j9ry)xU?R*SeaXw4 zQVU=0iXS;gY&_?kCCFrOdZ`6f#%8sm9-R)c5o%Rk2_KIi^DpKx_6YzMJRp8p(%f2YaMGHGYrSuL!G z#0z^K@2Eiuo9}NcwnkzqkIxrp;2{Q0UHGHHVhJ*6 zqql6;HHh3g2>k{w%VF*1I2&cp(^AS_B$MKYSYyRjdLRUX%WVXumXQ`_utkcbRz~2E zJWUbjo5Z5LIb$$pnA!CkF&|Qbj43JfFJe;)rY3Ow55U|fV}2v&c?iWU?C!wmsAihR zc$vi`DvuFeM=T-xxvZljg-DWqCb?ePx7<5+=S^%}HdErS925%#+7H*q<+aMpQ%xV= zTl)>9=LUw@qKrIm8+ii&IfI*Klrq0P`TJ1n&))`Oky(|(0DH2>U5l@+LO^PBm~^8` zTYzWbd(;16?<=FCYX5c>5k*81Q3NEEmXvM~9Hd*2R_UQcxJ+;{*7<|M#4;&ZqOmwOlM`&+L2eefPe8*LD38FnUHy?Q>~vI|VAG3iz6( z9)-6BJyb|}^Vux5xK$Hwz^r_NeP$nuot1kK0sZ>3=JT%=5G29tUFzG*rK`t*u~RBP z63NJ5kZZ)jU(6aL-Q7rsI!I_tO%^ksy8$z=eC$d=5Izz~y0Qo>q{NCE+>pY4cye?E_xzfFa?R zh-{VgK<;aC5Pwo(zcOdkGAs>XO%bbBtyxrIPhV7&l|8(OWwyfG{o)e(u`0oLD{nsJQ6I=# z@v*6ji_7)5YxWh$08s__deEwq(?5CCFlZk@c!3h?-w1^pXH(Xef`u^--VFQJ(@=-i z5!M#Ecx7GQii*~K7n}6X7Wqa%cv@^wkTU0$QTvu|?AsuT$F?HEYHz1DvLkSejf!>M zd1|ZLb2IBsEt*m&Wr6qq1>EPr!Zq^$`t%{qT^Z)&_)ukH;XB3`NO(An-RZvDL3?wu zBbfE%mKOAXZHDcm_V~?uQx?qQp3yz5`B?tQ>3vLJeB&QEPHL}Rq>)zbiMh4h;=E}0 z0UPHqCtJpJ;5IJfI{=wcX%OK!mj2s>+k|tZ%RqJa);L}grsyk=o*S9P zsOvmORGVo(pEA6~p5F~k1Jr%4_qRd%!{1;qkj9gGzxF4x=VD#{1M>&cL?B)#JqmQb za02)Ny!!^-qMFI6 zAaTRNeEFCQfGS!xtO5anN3Y5MOcnEq3{W2Yar|BnwGIqiJG~K*@0Rd|je~#DInYjm zqE&*YEl;C~35YEB*iQUAJ%BqTK!Qqa5PUv%!lDQNp`ybad`;T^M+}YdlP`t|&#(>@ zEGLcdKbc$ry%Iq9IaFJ{Ps0sf1|ZC|_+<0j*dNEJF~_6|zg3?e6C=b38gS)#{Qd|* z-~vS66zkmF%4w4V?+XyW=n+s5`X}kyzh6-8g4>o%B56OpLC{OiU;-0oIIREZ#nKp4 z6dHl`+dQY0Gav{W6(u6EOnG{Yj};sX7Ia+ZKRreR#gwPvZ7|#{RU!dSO4u9Q?SpZun=tN?jbt147|_@WP8x>X()A zHJTDm{Up6#@i`%Zi1boa2rUTU-ZwTgk$CQSQZKi?YB%SOq+Y!El!h^52%`;f2mwK2 zG7`lk)?sBL4SfACU{5Mm|E0`{`#&A6Eez(xc68`GWga#%$noy z2sFrlTprZRHSZVWB?g(y+NcDO=Tt98J)a6F#t8`t@BVj2J<-h58J+s!XF$Y(&%$<+ zgZJqJDn7o4H$8TWb*k(j#L;La?dt92Jv2YmYF{RjNeaWOw;bYfL5{j!!Kenm1FDDN z_9A5(a60SCx0Ed>vs3J|9{6ZcnPNr zQ>6~!!Q~oV4*?sQACW99t+6~2fh3#{e|bqd2&M3`C(6f_`~U!4nsTa(3c}?E5J9K( zOB}uMKrIjUIJE&$qupwcLYN?b(=Ptu%Z08RX1zHuv$5q>-LF?pR*om~XLe`$3u|OM zQ;imZEU_tsckb(oTW85zn*PI8JHm!jL z1>r3xbr3X9Zt3%=c>qXvk6fz89}{GI5$%7^UtgP~UMClQEHXbRKgOsdm9JZQ2e0~< zOuo*6Y|i66V1r>2)_}kCBQm$&a3%-&%^fH>I3WJ)=r_NBece+3dz7X2k3v8_{h79) zl51?Atq+d^t28BtIcn~waD&8{8)q(14>H-#y5FHhuL4uenFtnb2aIaKFlO(JJWHIQ zb#naPRFztenjY|~V1EhIh@W3W5Z!s*T4denr%yvUF^+E zH(o4l){q8NYK-u7W8zC4`@-h`4Rju?Tc?%`iUbl-DHsRs%(C^I;dr$~#?(RSYG|=J zuM`kBn~rvkR-&b)zRPwy1s*=md7>v1&6+%i(TK{Al5*!jkE-2GvU`}}cuy$3x6Ck9`7zlZ~DID)Ep#~7+^5!4qZQp;U6Pz?b zKc+_!#`(zM{EN+5mURk2X`HKz^yM#Sl~lP3%xfq14)=nf6Qkv>8m%o?U8?DwH)o?T zMCI6S>qRH&_g^6yJFSrzVzxq4f?@3VZ48Y%Hr~`zx02PPd(MCE?VT`MTe|RTi}x); znRQFV7kjc9dvhQ68T@7vV>AGV7!yqrK*;ySC#Nd6ol{fY+5voc)2Ec==p;|Qu>XWt zal37L7wv!Y_V)Ks-uhfP*FsEbt!QK8zynJ$l8OGuYXA_vF)D)~uJaoEES5t>UCFw+ z>{r9qNe>57T{VQq-nv2Rt=i%TzZtv^*;?65jsSiR?GTz=5D@ChvFFUzDo;UKW8!z7 z8X6k76^{D8_>|P=F1X$O7I34}c9!i4^Fmi4 zzH=7_;MQ#G;{_6`+xP}oX2}B;{-xh?7%eiJ4VS#3A}7C=O)gM$b8fmxUUDKVovGfo z{wd?W!yRr?jHbHe!g3TL&;v-Dr-e^pr=gCV*TZ77PkFh|{8N$@O)PCBV776~k%bnV&JAT=!^Ze+RFt zM&G&{M~a<#u0@v$^vm}k(wf6aI>=4%#Wdz0Ag);G8CS}es?9%;I6(&sYT(eIs#>J- z?Im28IEb__T*&$5!uVB6e!Bk+B4_rH2^xEaqDMpiYfMbaTwB6b15?s%wc#SGe8ykC zj9Q<>Jl5B?qN7;RYNjj6~ z4$GeUlXCMgiW{azx6|ZV?*N%h?>{VHqBl*rn^u4h`*P>UW7Sx`t|60_c>2203qZ+# zwZc)+F%7-G(P6i?Mw%k`UR)1oeK3mo%VfLRL=2&d6v8gd237Q?*y-;9mG)O)0*!>< z7N96X6BC0EV=||yUv;xXuC16Qx={A|m^~Z=y7ShE!w}or!Qar=!Zty=e~$-OT7P@Y z4(w&4u__Q*rnDTh#i(pB`*6Ow$kfw)tarT_W|I1sfyt=GUekxSy`I2qIb76(9~d|k z3G&@^nJN_p#g%-|*WIgkT$Ym0_QSMuXmE)9JIN3`jk=f9^EO@8x=f5ZWgkB3Aru@| z2I0Q?7{7z1k~5>18MchFND~{}!)dScZ%o-}u8)$guT$Jv=uYqM*{O8&;exm=l_b3U zSoDKWEKKpO2fqXlru_6vh`o*&s%5C@Z?Eu}K7xKz` zes=L52DTa7ul{e44Wn+(>;2oma{KOb%YDggPh7xJxN$F{dvrn>&;BEl$oblBW{_vR zE8SKQ6Gw?Xr0Cw-@wpH(A5&_97dk=wMdkBzP3~vUpedKVt}$wr$T0>@*9Wg>onHhB zN}Xc_2eXHgcoggpEU{qs-BXBIRGx(B*VqKK#FZ+=CxkDxZMg5D!qiz}=Y^i4fBg&L z0HrDi3x*8of0N~-t+*=Jv$2+{<5yikp9dRy9_r<*f9?q%0EUk8CZl+QQcQH#l9?W| zYyVc7Z7L+9jbf1dY1Z@2jLFq=U-RNf2B%)_RlAYgGwUjYEyikXI=%6IF89x_`&w{Q z?9!9i;9tUATSl*Mx4>}=uPdkYp}z2qwYK&e%EakkrL%kS;zg0>6F~)vV+t}&XwgNn znq-or8n^8VC;^xt4g?GAJCs)EW||3_%uC)GI;8>s%J7?F!BMBLno?BaSXZ9;H=y?) zm?A};9y&(DRdXxU;Chft)9ty+DJF-Mu8vqHw%bQG`v&8VgZ)IbD_JyxH!BcO*ja?)-l_om#CfSGW3U~D+$EToW%xzyaz54_%}!f%-!`mgLRP#^QT_Y zOQ|Q-9<{8wV^b$NSY}hG$&r5*!5_x@u04{;#6l-Q#Bn|B#>QrYd{@CvfHCD`ir*(v zd5NhIP!Y*rLVV}{rzFguLn11oZIhagdzh3#BfLiVhx{o}Jf7A~p(s-TlNid=v~f39H((^BumsTA9o_nGC0gdx<|#Hd8hZ<#zx z)Pdnbrmn;KC6Aw$;NnFZQwCBG)>rxewm0TpYA<3FXS5I*Jw0ipi}lgqX5E@LDo(56 zGa(gG&<$e6)56LwofYrQt)0@oc2d|+1urG8Rc2?}<0m@f-2omckl^I=S$)tdyD4O* z*vHiw$_y$z9KvfGc6>3fqw^Ob2jh>52u`Z%9;T|&>G`i77ew_Q(``1cr0pD^C3Y9w zq5Q)Hi0bkEc&9Og_Kt9kwv{-pfql@Ji}1q_+$U!h+yG~l=(fK*>1}P`>IvbtV#k*{ zyDzIq;q z^t54X<&+yvx{sF^6X-u0UAHeB*MJyR8Yto%_Q~hk$TP`VOlHA8Cnt$9{J3?}5(H~+ z!1rtw-jb)S%B~u5|71u}O~`<89m&=B;N-S0GJ+z`oPK_RsVte;snZe&{5f!rN7Gqs zw>#kb0ILtzPHP5qqsym1F9R)NPups9dW!fZP=wg&XB{w-D#B*@PD=p2<>VR9{AX|R zI>QMeId}T=zfJK^W&Ul7-#!2DsQ71S{2dj4N5$W@;_q7V@Al*GvW?kN{M|wQyZQUO zgZgKS`gc_P9Tg{Uq5ogjigS-e=Z?7me_!{&4*oyDf&VYf^0z7eHpK}j@)rcbY$E^S zQNKZ{zZ2AN?C$TV_&X|2(C@#?_PCThr-4 zCm<&=rD@uy=8AcO23)FYHIqQ9Y@Cth(c&u4DjkRVxj}al`UFv#ddXTcf8RH6nt_5= zem?unLJjd4Tg=QRG3!IAF`;r=-Jzn-{MhY~ldXo>1mRh2*9?V(p`OHD<)wDh=yvnT z9NBqpqFzxFjoh*vIo#$@5?89!+m86neu_Q07|kiGsvd(2mO_U9zk3 z{LkHQSD*bOm;(386JC*1*3Gk%X2?08bu*oZpjQ}TAC+~8izmpm1DG~;3uVvSJ5FMj z1aA|(@I~6=`I#!wtKmS=dY-4O|En6MR={GH^MMlx2{VR@!qXI^SsgC?96SxmT-;Zj zSRVW&wvx^Ha61Ii8HSTO8!~3fn4{E#lPaLCR!Y z>mtVw{U3VTZX(KROv?;gV<82`Z5CgZt*YzAPGW!rZxw2NlOKgpMjJE+%jT#Zt)HZ=uZC_%eLOgr1$zl(&b-tm=yCJ-dF@c^I zqHW(4hrTQvkioIIP_kHR+c#s^-hCh)t<2rd3QO5M4R#UMh}jW0tZ>i>OCaTx4k~d{ zw7eE6E59H{yPNvLN^pv|Gx9{)So4n1SBp)4QcA?1J?@eH`pT~KF4lZG&9N5Ga@c<2OQs6mdDR)?z}Cvtgk_rB>?nMnjsz=Za4sb)RhlpN|bEkr=sbCJLwY zF?kDpzlhkY%A-Z(Mp;lnmsFvOMF;@WB3p%g$`oCPSyYBsXnb`m6c#!T>6I6X{s?^BR%`gg}+Dt zzwGfk`>0rxLrq=}1#FdgY>iEK_hqAEdJ+S5j;}+tfU6_FV#d~Wfh`@~motk5bfHRu z$2QrJY)4!~Dc=DaNo-wYH~ICOI|NrGe2i*3@VGm8H{%XqaYFn9+KYI#Hrhyw$wn`X zdo}r{d@0UAV+j?{&A52MPnxso(ZtK*%!F%;_>Wd7Qq>s={1@phCbK=!dg-N;Ssudf zyG3DlbOoft>FhV&&&nN7%xAIlrKp7VZ zdFa=UY2GwGgX8L$Sj7I?o)B)(s2JM|;UOyC&h#j1PPJgjDK_b2hGhxEgA;XO@v|LC+859xtwKD0PIE9 zib+HQH&o-^pk~UhwW_OeyEv80_H-52@#GL{aUSTb+5AEz^Mx(hNe9M7oHDZTA6Y8L zis)*A6a*3lkm>rVspjHpz!ApV;L6_(qRd-q!biZ#=*wzu`uC>;VWyCCuMt=UGH#D-10}8q9N#HugfU26PS#-zJ zBZO9xph-!sh+@-?_nZHvLJ+^Ik+qXzR8TZwG4V_>swG_TLh)R$>gJ`Bj$J_9LAqI+ zoSK0ua!k6)oDjlFRO}dk6%Q}m&G{v*YyALLOUzCNaLed%({3g0O}B#L`+ z-Xa=2uncf1ZRx#uypU5Bn74aKgFOhY2*NR`KZRRJNN!^efsdT8>9TjM1;f=oEC}cYu z=*GTBtyyK54di-~q(Zx&aPMxvMqJgV5gwn{EU!_Q-%JO#BR^`t)X}ta_e%})u*@Vl z9+6$-++HdjQITBicbBrNTF2@1a@v0_U0{85*nIN|=)@7g>qdIGk0t%dddkb)EfUoa z&LIf|Q+DfNMjY-9WMNDi3JaYe)i*=vIF~`Az9$SNyzv6zB`;pY#?yFt6*zZvov+qy z+`KAk73w(ds(-j+63ytJ!FPLF&=eqVLi4 z(mjbTgs$k-Nc30|%edQSg5mej2Y|y*eRV{?`!%=CP6yt`xJPMQ&v#(DSpG8_kLjfh2Sre{C;?wAWt##}r>dm-|u3fW{Ks1vlK zG|?8T7tMhWj+t~cYaTzPJ1~>@fem%vyBd}tcoZdly-_Ck zHh;U{p87-xIs`V8MqO#; zV~f1wSj-ByHeK%PnfTwl7s_TRYe_YQ9f~>3-79QBe5N<+&Il-aJ(fQ!pA2Rqb~Vaf<)eM@h9UiBKN;RPY%r+5 z_$4{n*T%eNM}6y(*{bMYG>Dp*LZ>0rbTNatos`XvsYA?^XnR467j87e}ILjCU%@`J07)2Hr;xK`viH1_ADU?J}o#w}oHI<*4V;nD@C+YZe+u z3KUbaTT}J9*XVI^DMWHa?(Evr$~@#J+khtsrbC)bRI-#FsE$OjxcY4^kM*`ZDLQXZ z7_G-uc&`^3ENB&7`6HUMJ762SG*mn;1uS>v$c_e3nQGPWl=2^Wvg1YMHAm}yKy((l zz%zWs-PT~QOsBlS7{{kArl-2Yqo(w$aKXk>FA%L5gI;!!v8MO=Wn@HINts%!m{?QoO9B5X?AVy& zHI+&6yTiYGF!7wBq8+G9uWSujk@+WzdMaF+Z6`}rU3Xo{E+mgDH8o((7X?z7+2@D3 zs+q6~*>jSJr=*WtuZ0gaYwJg|xMsQ`T!P%zzeRiR@>UFW^^uObK+HM!F6KvX^HH|$ zJlx%;WH{JGMP(-Lhd3|J4C&@UZ>X}Z4iyjg2nn21F^`|n@&vlD0*f6DkjC~7BgoXF zRyN0~dTw~AyH9Bs;TXxrHaYi|EgLvt(3T{d+96f9xP5{`$c5>K9hced$GOXGn@cP` zV+Byt@2BMV^#5Y^GTw7Q7F; z*?&5?u{grkPpqYCeK@00jvD&uD`VcByOJ~yh^Qo+LnZSKd5%K!=W%q)c^y|XGghmU z)fjh7+Zv5&qY|ewBZx7=;(Go+^ z70)}W6RQ=wq^XBXk?hE`*E!@uIieoQ@V5gsmEq(DaeE4!SB8sVftM&S^PW@ zRefUQS(Z4*sJltIk2i4m(;Ycln%3ohqqTd*wkoN+U0<33TKDy(5i%lQSKvqJGwLZJ zqEXKYFS~^yRbac${LTLccg<`2j2zN5`Ebb!yCpM^Z1XeOmA6gTvkIT@Z7s4|x4ArO z2uWhFUlK8VRR%N{&E~4~uuu1YJ<~NtaMxk`>U$z2=@dx;)nai`aSdtZ!_Aw@8caX4@Xfy3XZu834pLvaT6fB9laQ> zwp!~e?3d&!i)vCYLF}1BlK7-Ez=F@BRb^pZJ=-2F%1$OxLouQ!tnXg;vVGLCDHcot zm8b-{^+YBO)^0Y-;gTrHc46vsIQT(5N6?(}Q8;UUSIBvqi;MWWH$8zRUrVGJ*!=76 z+8HwAC5OW@Hpq~j1B2a;%N@GED_tA@d($fQ z^sF_Q0i})*?4I_?S>w=l6EYEN)_c6}pFfW{Nn}fLp0#XE=8nX9I$UDO`DLnZdr7YZ z)wL43iy~tXNL8iBpJ!HcHME6*JTeR{FHE<(Hz2Bcu9ewe}*|^xJgK^hdI3i7v*4f~2KC`toX;Jt;ha zS@9x0*an67SqjED5HqSgQUCaa@v5j!yM-$EQ2^UH?g)?3z9&O9uBc`1>v!k^DQ%ld z6hGraB!X@v7!v$=vQ({ZIVAm#khY~o2QfdI*0gE7#9XNeJAh|ccG+~~nmBGUTIZSg z9E^J&)%7H5wJ)7VH&VE&;ovXR*BlnmPM2Q@NzU38Kj_cf8~Z5K^+*RDl0Swg($7S) zdEp8L*A!~lx`xw!9lWEY%fUD}o)0|LT<`rMm77qYm)%)Y|Mo%}s(U7@n%R_w87IuXR z%HG=)07;Tk0T|NaYcV9mS=%obmNKT)v&u+HoSfxrCm+ibE`o54eIbvRI?FOFl`wQw zCSaBg7HZb{^&1^_#Y&%c3q`1I1?p{4(eUu~FUh8A8jSYpP@l%cD#IolIf+h9YXo%& zk5j!4qPKtda1SYeF>^1pp>bmeeYodczH1fju*7x{9b3!}`P??tqu=4ayT!$M+uk9y z4b`KR=i0BpVfTySdRGwXeKoKLdX^suz2kOZ-wz?JEt%-jU#pnOZXP-20;K7iL_zNm z><8%MJz;qWl4GzY2sm=W@7wI(;tY6<$3PYao%~?AJdlj&fggnyS@tV$%(j~Q^SW;> z=Dk_f+uWB9&x{pGWPkQitqPr3d&365E>kY{DT=!{cW(CtXxR9ZA5`-iDzLjHwm`GXSjBz z5Gon{giWicz6T1DtdqH~JcbA3dT-%~YYCdYhjZ75h+45HXXUrRxON_II^uiVg>2Bt z$2OJOq|!+2UZykL>|+}9CV9Lvnebi^T2Da257kN2k}fUK`t&qe&fPvN8)Dg-MO>OG zpTwxDpI{7i$A5z;F2X54S{^dOVn;BhuO5`!4ZiGN-4@+<0uy*C`9OtzuCu6ex=ea) z4!t!)<{WYO%w}@K4^Blu8FvslR()h2#Kv!C}9A9JTdB#Z@pmEUCA$E%?rh zXM~9C!!-+1t_r%^{g}p8fv-w<_rEn`5P0^$4USf2aMm3FrSNdzCf!td3#ga zrR~`BZ1&x@>#ON$vVFxJ{hPfoJT2_jnDq=;*~V5n)pn@XQ2RSwt5GEA=DbB)x=)EOBMzVNx_6#L^S` zVRXLSBwg39ZT6M-sENN4*SiCnSv#=icpI`lmFTQ-TnQ@53@;cEUg0J}j3lN+-LDvL z9gC&CW3D)?kbuaLZL-JxwY6X^1$F@~_-r6kA2pM@&WOu*5j&&a$R53lq3JwLWDGI^ zJvc|G)4sT59+bjV%w-s0RkM)=y^478kyD_!dbumxNAsH@da6I5Ys`h7uWF-DMj*AT z5?S3A7=O^&Sm3ly2#gZ*==g#c_lsA?c>IPmM0hwM5(q`Jo;4D);e6G!nQlD;OV!3U zUHM-bceK8NJ{%yg$NmM5PUe*9RWK>3?%9I8Mkct zTpQ6Jvkl3)d8LRdedOXjpHc&+XA(hSlG1=kUt*09rajErfDaw*(XdSkY>;ZV7sVcMDE4GR{y-k}#+2&w&)>@!_%l2n~`?v>}Ap&15Y7rSuZ zBiCv@qkg6?>#B8^i7VT?;$xM{i?-X-Dp|tgWce@3>Sp7+hVd+ev_hPRv z*cyvk59L|AR5+}f8h>$E>1!tX+4&{~mA?hV_F)c|S}-H1UTH%+Zv;r~2OB&O{3LK+ zm{t~tY@2IsT_xeFZJFfxAs)2Jwbp%I-b@5RqQpC)?D zu$VcdihQ0|oQLzF0uqK!+5A2!(V{n1@mR6HjU3C7yx)aJHKWDbXkNM1si-)5wJ`rq z@J-ZMz+lDJet7w&;a1k9N|Ds0S2~WB%Q@J9Z;F5cy!B|DUB-l0WZmf;r%#tQQ|sZ2 zU`++MWsp3Bz+PR5(QY8Dt5V}?dFj_t4ue^3Wxdc4xDr>-lh4~JtMA~~FWT|s_di(@ z$FH;x>D*rOjOfp7=W?wNrUbzB><-%FvI9?!-bJ)XQG?rF9`E#QoHYlM%`QE{H%(x# zzk0kgE@k$6BK45i6B8w1u`b-;er;HZE8}1a9|AXSG3Q%yS4{KXfNPgXtv~Phr zt7mmY=a&?4LJY3^=e$7$;S96!n%}!lufW5Zz2aceLKM^)^7Nk<3mQ`IgrnvA#Zgu^ z2Iw2y-llfRSvNCw1N3;Y*>u=F0~NS(zN*2i7kZTwaQl-;;jHIC2JWPDu7u7emeBQ_Z|$x~1RGd_*qirOD6#~oIYBDd4Ce~QDn}oe z106d6KeQsO8SHJw<>j;OZIR@|M;xw%qpsHH%{IiTcP8riHx{beTkhNIKgPdZOwc_u zPUf*I4c@<=8Ou1V4k);6lTc+UBt(oMD&i&-Ox`cfPK+t3p=G;fG_}%(*cC(Ig>v?| z2-LT{(h-Z`)T?jP%WcDkEOz&gIHxyP%etxXpXt0$j~T&~5q_jC;xQI>ETT27lqB-eF{w`JrX0 zWrvZ>!R{8v-V3vV?7cYD$|&_G#at_Vr6SX3&hEQpz$p9yXJSUXlPd6vFl#VxT7vTq z3(vnfhfGYlj|%~N?>qPu?gLxMsPPh+!f0*DA%o^%ZDaq2`A1h3|B0na(O{vl_S-xi zF06`JM|TXTZ@MT~m`=XBFF;+>pBNC$93GWt2Xi!X-v5ka++Jq}Z)dk}9k@?DQ+HLA zXS=EPth>B!vaFLm?poRX)Ra*PWt02`h;H5rFomYh)8dH+7W3bk!u7a~wZi8;wpp}_ z-kT&k|FF<6emZ#<#`gfNodm4r(*l(lpyquw4u>pB?mYVWHPx@PN${rI*;F&-d0mGb zm--+wM@LO^;Piu{g399Sa(*zB15UQ3h~lZFQideqT6t(yAJkq6%Bw^uh~^UTVro75870u0=w>*iS7uzEvn0F0+nC~2?CHJ>UQ9lX(^ zs)%D1IQ2LfdQ}-;Zx8<#4e$cuRs?us@YZ5yE3*-<$2`8fZ^$jnD3zrtUoshB{K}H1 zurf63)X8GhpDt9vznj%*&}t!qOjXT98N*7^$?()T=OyE%Z~nyG-syUgXp!X&Duhpp zUMJ;xjpkdI8O?Lkev3U(YS}8JHSfad;s(P=8$3`uZk@0a0ad&1S^buvk9HC--RI>L z6O^;RmADUdusDs=3d*XZM>~TihaKlFcu@V~@_4lX+Jki{4HJ)s-Kb1^7(E4ysAa}H zJsr{Swrj!F94+t6+i?(J25xO+dauHl?|JZ`v9 z=W9ipHgxcFdlO}~1&k&xF4s^x@U)D`J{?->ZiS{{LP6)y{bBY?eSRYXVvSE;jFRf= z&wrju^?ZdULUi4SBOm#UU)Q{lu*Gh)$ORMHd2DOTq^q1&sDg0y_q_xu9;4uSUL=yKVLh? zTB%tFyq~W|{$w6_(GWX{7&XZ=${_+&I;F59dLU z$LK~JNEAJ)(-{cesjB`o1XhlQv@x4?r6eY27E8ED6|b;=E^0m|aAir-XwgzJ3)O(W z^?9Y^xq1LJ!7Nwft88S|*#1#Bui{eQ5tXpZRT%uczE4B2)ciCQBL@-LHc$Ym(TK~cNCepU(T!*cVG^N0xop&i-` z_piU%Bm2}JiZlCU0cik`RLbK9LBcDE&Mbx$t&M3)4$q=`)}3+i@(TOx{A=x6A?`uh zeQJ(dx4y^D<5(W^Xa1`cqm@#H(Xp`sST6UUgYe(1)#qKO>dwNKo_Vnv zZnvwi{bu8cUL0`ghA_yiEcj6pP7c;>|!rW;2Z881G=3+e`KuJe{zh#z{gXcCUB=vbg z;bdF9FcWWd`MaNYV?U=g3#-F-Bugv?@ABKua=F51+mqN7@-ygzC*$n2vzynCMyhoS zOq%IHl(H&CvrAgTkMkdTixd9s+Intj`G{s6cId|ReM(h~!PDyU(&#DJiR2YC=tm@K0oZHYpl&H3w zy^qphDXbEmPQnIyw@-LVwY*rM8F-}dx?f*}xcfYi_}!&2>f?CadIqB2=a1oU7b%fJ zQ9sQyvI-05#Ev7=XRvVZ5r9qcX#2v~H*aebQS02QTo2Cj@%_g3G1q@}aX?9p?T4#% zk>RSCHJXT)NItZB^22cnVqwIV&z3!0h z5Z2_YcmXwJEIat`P^W?Z`VcX&)nwJK_*GWBvGXf=?(y-d-i9m__z?R&y2>}IPj{+( zKkRlKJj8{BZ$FuwKKTtF@x?2U;#hlcN zU2%pV?ElAK{1-a{@7EZM2?pojQx@KTwQT?`2x|YL;Du9C-&lLdji6nxVpG z$?Al00iKE-%P7B{Qu=PbgfdhShxDW~dEK~}FPz|;Vt4N3&>5^w+-q2UCTY1lUze`1R=LG8_S1yc9*YntgKmWaTO z*jFdb78-;7N}`io&=JkOVLIvI&I80II!&y@1`IYaG0 z=LokNe`$O?l)T{Ji2JB8*OlXuE!71cTDroOpZ~bz+8S`=aD`0kgat@r4<0>SUGLodlCl1BN=Ofams=|-7;Rx4zf|D&G&;GLo^@{$)){a z)SEHfd#V|Mv-wIWo5dbRTs*w!t%Yt(zOJwbr8fQm10@1JE`um?L0Vv*4&3WKJQ8WY zDa^)$SvAaSNl7ilasLGo(|6?qcM(d#gKQFGGL&nq-E+eOB-PS0#U^feo4XgOCLF!7aUo!;l^7~nqAPzn z6Y)9KPYRez26ls(oY7i`a=}D1Er_}-qbce+8c^;Uf=<|F6*YtnIaK~)@P zu~qy_!V9B?g*~}@AI4kFFf~OWEyhMD?{1mVa%h?#FX-6jChyrMjBfFqelwQ@IHx0e z%R5scqB9f85}2e+*V{HQL-MC=tr0_odA}72&-3_?ntQqvb^zt3))g#`^hb}eFskTO zNm2HPOzfh9hpmIcB?fkR%OtJVq;$=?e(?kDhI#z$IT<|~W@eBUhm2aERp*{6T~O4p z6=Fw5&lmaNjJFdZ;P%o#(YtvTn=nBv1sAf^=PU-|Rn&f0D5D?&QO%#H8qeKfNH$F& zbL6^p7WQi!Tf zX~$qlgG>|mh=lETi?)!Wa#5`MjDUBdPT}?;V}GOhCTz3GB#g=A3W=yy3=x|;m!1F} zSk`53Am6K`=SS;SqQ4JW_rb==XMT*a`rx1xI!Iz41>cSY27)s0%mXf{zxjs8&IWeG zpE1wzk28-q4Qr^WxN-tN6#kJ-r%25OML}Z^?GK|E75Hx6J!S~3oGG*7DX^p;KiwX( zPB+NZo0Xq>J9&^UcIY;%W?y2w7cAT|z7l7TFUz}Mq#VVp$?ADjD0@$>OcvUkMH*vS zW3h8@uwvVhQU6eZlZhVC?UzF`|L4*b%dehDa?U1=X&?7i0vUhQT;C?NtQ zTy9DY>Eo1L-%f^C&Vbx5D8Hl_Ptm>))m3|A%e68L+U*U~e34A!On?SL<7u&{Is{zi zLFc|?C!t3C$qp5*XBt=Y6w@WuDXf*og+!T!bgK8P5SZjj3P}Q%9wi#tYRVjjQk1`R zpLz0{e%c)^9hVJ?ecWohg>G9Oq?E1Rcb;jYC&g}4)wk`<;oj)|(c4*_ac~fRUsci| zlF3m4!-tv}$&C>Wf!v z71O;C!WY@bFFJ6B)_f2(xqw2Fu+6mvVD=mN;+=pJ6oV%Zf}GLBWTNyTqNq=RVm%Xf zr33D`+V{v|Wyqj}pmRb6?Mxw%29IEKd^9ol@z6r2$`JCj`8u*iE>E=*J#Vefy&!RJ zpeI{3pyZ3*bjX4YR2}|Y{YpgnLW7jH!ordyZ?5OTRkAdrr8clLg&J>orAa+2F?BZY z^Q1M8Vh+1wfHPR>m;|$6cY4ZJSW{!Ae`CM$!LSZOi&nE7nm1qVv)iFr;&TDTqg^%d z_=?LH`O?Cn>M6LCKHBPC`m-Xdgh={!?iAT2&z)`FO&6CyJz)XZyDLJ#mMQ2=aVD8b zFj%?XNlY ze0AaQM@6Qt-BrP6M)@HwI&2obs;rj1Ej$t~!w48|PqnV>W=4Ny&C4wJSTfP0kArZv z@p^}ap~l;NZBj-%LUlxEv2}3EEyvx{1x<20_a^l0nz_>f_@-0?%FY_Z!q3nriKJ%`U5ahbUrIaZ8- z8SU;NJ*6^P5k}}l#4NvnplC*8=R|=R1A4_#F{ekn8v3O^_ zz*|#Ztanc^v&}oZ8hKrcYKt8i+d5i&Df@wbP& z{5kFleC8$ZO4{CycXQsX z-{n)bU!MWfa3sHR&r?7@5rXY6Zb>l_+VPlyIjhy#!D3uXG9=-anR5+#sp6h22n0c+V!sSc%{N_co;rn_zRi}eE8RS`HR#9lO$cg#(r}|ZHvIp`&ejh2{WYbJATvEb6dO7!l)^ga9Q+9J@EPZ!Vr&Pq*6V;ee zU3~VLMaXrFTe=68i%Z3HF}<3f1iY!7Zg^L>frtlC35Dw+F2D{l18%T9M}0mto1!Ze zejq2IyeGKar`=58zd?<4)(>Rpz4Do#2(l=ql4^4@L8=d^9zAu=+(>m??B35@p@k1ddoEj&?J0OTJfc~~b? z8R!+TQFF`%sQT6{pY|nnJ53@pk&d}nGZ8rA-f!o3*^0@Q$KL4?S!FP`Nt zIjoka3#PP+`ba70pi{9uPd}cw_hp~Cr2XBB&2vKk!{SYA680Cb2aRRWK7Emo9n!t6 zic@3{?bE&UGVQk?Y(~e$7%f*s2IxXwl*3X0V}!Fte;G-3pqr9=B_(!%U{p?7yz}*b zQsd|FLa=Xqx$53V4rajfgfv9GlJkUjNAVOXUEU0`p6{iV1i4Qm=>8Xb?;Y3V(!`Hi zIEn=UMNzsUO{#(*H3%XKN)x4nh)VChB_b*U0xD9Zg${y%l+XiM0F@FtNQ=}ET7Uq7 zge1S^Xn4NV2#v*%kl`r&4o$e#Ck)@_mb1MncswGqCQN-XQVP@62jWc*6;E zKhwWYmVTw6VnJ>8WXr+w|WJ?76RIj zx79nmqSis0w{EO03Jum+TfZ|PT<+dG`ZnFq+H-_NiTT!@>5}$XufUEExI>Ia)QNrW z%o?y0bMA$cm%tfZIi>eyFJ&>;qNv!=7QO{?T-F?j#Rwy2)3o?6@{WrBPDW2s62cph9a+o{+OC47ra=kOjzI+()1$?Ptf z_=qJm3>H~s$G!El@LMqlg94D-(JRW%i_24=_%5s=WLi0c*3u+H6Y2(Z^7QM(U91=a zZ$bQ8g~7dv1`px#BZ&nM!dY)#%VUkzN>*}ws2C_gI_4fijBT@cgCwngtHA}H%-7Mk z-oe^XM^(L^xWXDX zh?;wf=#q(jLsg*U>KFLIfAIDydCd<9fm@6vA^mGcOes-*`}%*(HItC%#U`4n&6ix$@G*!M&b+o@L{b2WwME#lv^=IUkNVD1-ho7*le zxe8(zyKkPcZ`xn?7_D`V3=8n1s!UmD!vq4s{XBAmIZchOV*QaD@2l1buaqjU>pA!Z zVb1&%-)*N2Tiag%K!S=rb@XZ@DHqgt>bRJef|XT3f6z-5vf$U^ICTXYG@+T_@Wb0Sy7Ix5(*Ka`&&{eoEQFvMEVuKFVkq*O+850pYl)7L>4O8$3? zllOOiXmJQMN}aVo#TK&j*_Ww%TonOgr~NE=r&fvn?71MHWTAxIvo<0$i9C9=jS1uo za~!7eO}PQE;JeEXXa7G!qV8t@vjr*7b_3mG8YvSyET{kP{-7^;wl(Wh`{f;e)5Qz@ zv%}~$L7+rWUSle0V%)XozuSMFeGW9}@dtMu8l!jZe)wMvM2~_Nq*7^f_$Zyf`oCfC+S4>}m0O#7X!>7*POz5ebe*t3R?=tB3(Fqsxz!e_4I~m|NZGVUJPU>zxnj^ z(6x1kA7|CVSc;)WDxEXmj;a=L%pJk7(-b4f@Zdm#;F&XLy1XBLe}m1#f1yhh@|*ms zYl|)pDRWwTJ?u&<(0%>nX-G?~sL9mecq2%02oEyShlgibzkt^Pr=|o-j_RtuU8vmA_4`+`%(=-lmUgYR)Qyq#r<&wh!>1+j-H?=sDf z`??GV399d)Durc|pl$ zA9$YFKUt-F=xmeD>e4IT3l0N@lG2A*zH0aXqU)st-JK%xolz($@Ki@p2yl}$wNe!L zRG&q>Vgq+#^qxCzHKi=5A;^}$`*ZYfW#aj9U~8=(ec@h@54O7|f3k|-J1GVBI3)e1 zg~QnzFWjr`obM+U!0!PSRqr3ZC4yTk?|+QboJ^@{xnAYwt?~APjQNVJXr1RN{Mcvp zth+%0E0p;tHEW3;=!aOa|9f43yE3j<2rdNq+V#NVTY6(lrq0JbAk8dTuVm75+P*mo z{*p{$ytX{9wpUVR%^e))yvn}G{?{HO9L8;`RVe&~cpShMt^@e1bxy>jPNO|V(LQ!4 z2UOS4RUTp$kKV?h(18`^-(!%9OsTesFyOcQ=B|@pD+S7dLyY$UO0cvy!rnDWvVm8D z|INE3S6v&hSSvmW(qUh*YnVAluFb_3lsFD~y}MnSm#GzqUEjN%v|L00r9)Hg@=nom z2>a{pNwW8Gqk&)()~KRVX16c&z#9{%rQvUtx*-G{r?`b7>TBZK9Nj#E+aO>Kp#h_dmOPX|nfTS}SlNwv zV|oZT)$^|V)t-(h3{-6YIyY0n+&#PtCm6AOYrQ65{l}hLBwI!O;&H{-(l--M_FkiI zm6}Y$iglzNDYu&L8TrHXf6t?LbWaPyh1s z#|Ku1?toNJ&r?#VaR9I2%SNBb!0`D9CP+K7y)&pNKQJFFO45krQsfULc|{*$X1zZ` zfP8)N);Td%Uo|gabH#k6>L_1WORaYOOHecucSh}CqEWJ?rR7R{4fi!Nk@5P796@uV z%KZXxm)uUDQDKwH6)^6o!!J4j#3tjwNH&s^ePDNU#Hn*n4;`0sVT(j=_W5@qG>00@ z<3>>+DO%&%VNOwyvfccoip_K#E2DpeTS+A2>XFwRKT2DO+|pnDspM z{uc<%qI%;hT}6M!H(Q%48ViGn$&N8zP#7qJ9jMEa)wT~b*er1ya+GN?uqcq; zZTaqX|F=NGZ3!}=DG{fE(Q<4paZ@a!?0uH__U!HaVb&Szk$sos;z3Sh`bzK*_}7_Nd-g=2VXT-@wMv;`z}Tkso`)adiR4bxAN9`l z2hLUCHd^Q^Be1eJ7!x!ltM@rtlH^)cZ|CYeFWXj;+jr$?oKiPh~vZ}`) z2Ro}C#Ss&icv1SVl4n(WiJmf+#V2M!j{Ykz$HYYUzGi@ZUMmOo+1Gw%Ak9h}JCGLh z_I!R6a19dh`BWFqcP`$W*V1M_scAl#XtHQ6@nBb;#ek}rd+Trnyfiu8qWhGvSxuQ_ zslsYnALbM4dKT$i{JPVItyN~xT-^saimK;Fn7t>m%Akc-GKT095uPpaU!eC3+i>7WLyR<(?{5$c^^L+s2I?U(JLs=tJWdivDYnQ zLD)MMHzhnj8~ue!RoooGN=CnJzHzoc`5URu+?N40?Au<2bLTHa0p!oz$JRXU*xOMv zZ}LUt@^qpsF8pyF$}M0q&1NAuHX$T+;eZ;itdiTn>CIczOXF8BItA31;w$hMHgj15 z*MDHTwd5CG-r1OSvu${^J7TwudjtJGlq}&>8HH#M>hT7<>~%kGmTHP=t21&Za0SfZ zWP2jA=E1p|){q0j$cn_A)JRA#@tAqJ*X^axkfZms##h5T^=K$W1C!!!Y0hP#Z+M02 zRLe{~DVfu~vgYHyxorEwDy4;5{E?~}wHh*U&9RGIxo8yy5iKbB9%ftoF_^8M(6E;= z>v}Ys+YH;samNaDj9B$XiImS$>M(Wi=%i0cfBbnXw+_-Uo~lI{^@kC^m$Xct3#$x* z&5Xe^Ga^sEj*F;}y6UP$_uUoxBwZlM$4~Czmk+~tTv_^AKU(PuRTIo>Fd?jJo)7i! zvNYpSQ~`sL6PF#9{d8ST=I(^+2Ecwis853VhD{*)%~AgF#(>aWa_5YASwzCLqoGv$+X74o|T${;=nwlCV zY^?=J`E;svo##D*YN<}-US>+x&1l!$&sFI?!CxqfJaIf*xA;^`2S~#1GnG9VlhbeJ z?LKJNa9D8OsvNdw`Osrkiq}l4)@L za?^G=69%imO^2NN;za_2=K)9Lq=Fy9x(ym^(x>VVWt$qKdog5IA)~#g&0*d_ZUh zGRy@3i-(xR!ZEvFvskCKObDTEVthn4c?>AdT}<9syE84IM7I1R38_;;YTu%Fdm7N zT_*YpQV@Z`s7GF*d?!%H4;J5ma6P=ex?D%%b|@KE$df~#!Y>{UNk_DFXGBaNPeS+u z`jO5pnS~?ish1#y&LBvXRgS((%+Ebt?7wIrt+kobe5kTLe}&pK*Cl2!lagj}@p z6Kme9DQ}Jp!-`Ho;vMD?v8Teyr@mzsjPM@kc52p0@{xGJ(Fk3E^RX0oQ`xxl`o-Yz zw}flp_P?)$$N5Ed8qtAwt-{lWoa!ZuvO`0X52_8xMJKEOS~;x%O~~CGb|=`s4r+W& z4B>{J<&>UmFx`;JP@e(>&1la*sM>OCnYMp1HP~hmu05!&wDw-gVdk=JzNn05bj}T} zICDQ=KOC8H#XL4cy*^g!lB@nia7_B_`Ph=?h`S=MA|vqJu&r-f9hp8$+D{(2_9%VH z&FUXdqCd{4w3=IMs&r1V#%m#g(6hCGqrA~l!p_uMKXm!3a91fDY`B9m9hUFL=P+N) z*6&X|g_#!kU8PVu}%IHuHb^e}8A4l@ZDDI$!I| zuE^pS8hzaJb@mAot}4~U*}3kO7V$*P6+Aw?*vuJ;SfQ4ct&+R7AOZ$zSDrdMFn6SA zboxjb>f6n)jBuI+EOo!2oFU5oZA?3K>BdKYeu+k1Ll1dkP%O`z)_}-Qn4E4zeqF4= zy(XNAa(sL>+0|*ZRPoLaum+`Y3hvteU#DvE*_`!AGfJxB{)A?DtQKUU@>JorQpiy< zmT#(bYS*ayd9KdXDt3dKB8eyBdNH<*+-~iC(;62P!bj^^_n^2PXoZkmUAS#{2q=SC3=M zha6JkBGl>G7;g}};e~D55!@ZHI*-9zcR;B_=LS=9Zk+?gcsIx8sh6Lhh=)O4~2JbKML~vJk;W>6GP~zQ}9j4dI4s$yt8!IBi1rCMN}|C1>9gx;Yqj zu*IinuwaiJ3F0#Lbj5esqZco}VPwvA;&#pu%)MpxGdENmNm}%`-FSY?&5$GQUNNg` z5-TIub46+154FSu_L7m*%X{&@%wO8UrABEJSJ@q37H%wXcl8L}(kn7Yc6IVTlNP&` z&!A@Y{*07jU{BR1c9A=RdP#d_#(5R9a2|Ibm-{5*?uB+noJ$x!8AQHX+ik9OX_4I`%!52c12-cl65c=VoT%01L_ zxw*yLG@Df+F5^@Fc^2NEMc<*4khl6}r@wOB!6xSBvO0^9=G$q{1{N(QlE|&^Gd&2+ zxUz3e?9+@<-ovgnr;e!2jnrQ~t?ZaJlQY8G7|b7~xcvmV12&ZzKQZ9iHRvJ-S? zN0I)Ci`oyH$o62pG?*ZSKrkkYu{dfzy2B{& z-31OM{xDrLQV0OnZ1A8$4ZL5E@1eSMXqMX{5eXP^rAyOmvZcfO?}emuAP6PQQt+u! zrs&Ii75HkSw*x5?R?;Y=>*p9Z@vK=IzFQUzl(jH`h2a=I__Gf+*=do*dn$7-`XU)#i9_WDw0-T0% zYQJX0lv@p6ndQxd?a(0%=%}@t`%a@H<^)sN9X}tB$lrYHc=y+n^khFDvtM2dk8*1D z9+l47$cU63x@y2TOQSx_{aQJ6^!obBg2tUeoua?l(cr)%p{d$gF?uR))X#g~p<(7I zm}EzF!yfz^-aGAp%A*DcaV8k6SVz6{v5>c%Vbz4Bg`88n_R#5REGpjI3qEs$RP$jI zY3&|o#1_Uz_xrnm!h!>>^EzdgEBXV!Cj?xp5@mvu*_;Nw+D#VP4}(x@%7VnI5B6_p z+F(LYuVx)?>Gg`nh)4mz2p_BL=A8#;zym?vEI94Kj~mK@a)}I;EquSZ`$mw5MU>g( z*3Qt5tW06$Bj4ZdJXkme9-vx&>^$H*K(D6xxbN`a9w3kMU1=7ku=Z!ci?3-?=e!K0 z&V2Pc_s)Y`;KBLkn?!U75i;->O%0S}cBjo?t`=GD%+_y@iY`9*_f(bd-T{MJ z$Gj)d=w{lu0Yr%Uf(fC0lWrEU<0j+I2Q&`Ss|m}B$kEhhh6TK!b^e9eW13cM(gCe- zzG24vdnT#p_QWu#tu2nod*Vh5&Y9mNF0aRXccCfkE`u}db2%xB{?j4W;xEP+%qW7o$JuD9!GoVsn+@%p~;sT+1S*H8+0 zQ{tzi;W4zYZV+4il$Hyy7;A3Nc+CVA zk+=#s^|@~Bhvn;jW?>;tHPkFZtda9v%+(L8p#fOv@m;+<=cn6ud-ng$Bngv4 zQc^dxSgG?Rt8i8eEf5I%QFa*#%9&^%VAZCr{Y+)xXDUKBkgJ1p&Y7SKgMh&cr}~jT z+r=u(_m&>O4oFU-Q=K9i#g?Ca+rUg#v|{)|H?sUA(H=9^i$fAF8{hw_0vtlhoAhcI ze4DgZ{`=Z{vxA<4dWBJtl$R8@<`Hb)(Bie=6Q|dh{&5quD{af*)z&ye)9x z?cdW!^lK?iwU#w=q3sXfH}P8l-C8vJ(Jq=q5`^ofa8a4c;5~dqcL2UEaWnv5uo@@7 zcsfQ^gai`%hY(K z>8)CCx}Z1<%8=Au3Iz-E9#(4WMA%nPqhvB!Edpd6OWRIF^q(~M9wGOaO;g{;I#pxK zSBqeZF@2`)5oMbX*|WfYHMO1?lHN&SkQq$?{$SARQ*n`$@{xxvWna$}?2m$bL6JCC zayZ|T%rKyzP;YSqP3)8DHi#v=RZq10cbR#QB;GN9&{)=cB2ju>hPd^mK1BnzHG#05 zvE1LT^Opu6OxQE*?|Gb-I^=8zN#ys#F%x`gJw9!J?SkQIzra!7l6B54sJ4s{J( z#n?OF=-=8T0<0swDo@g>4@OQzXE~PtxZsFr%Wd|m*6Lz;4HhAa)=p}F~u2Veh%RpsN8Rj?>C2T_DYS%AM4Ie z4B!o14iC>!=kgU%+~|OGeG}k}CZc4ViC8s=HfWr2y=HNx9$Qc`N~zE5M|Q`>nO_Lp z7#r~Dc|Oto>5yo=G&*2nb|R<^(-{z z-j_b~s-9=9zaGLM%OfsKMTLuJSw+cTWH{LYar{7$i%2ORQKk!X2aeBKmWcI8c}mX~ zRJf>C#cvEPo;_DsFUzU8^`UH4Pg9FP(n+fCP&t&j)@LRU5PTDC9@?VY2Z|^7lNP*7 z&>ucCe(%4viqo_ps+b>yJZzQseNk7tswew3f@g~nw&lL4O*iGcXl1|1Pzic+Ttu`GPZ$eEyRDea;rp9xP_!X6Ym0rgU(1reop^k zA=|HMB+P7UxfncZ*Rr>PS#tX&@)6!2 z>+Pp)ICQ_sf@XPBVQsm)0w>xkx>)N!T(Nq9U4T^ytIceZN9wvSsoGhDXRSi0jYaM= zn+u%fZN15j_5du?L=Qp}hp&oI(J-`PcOZc(x|W!4F;S)4MkKO3XK(Ibbq;vmecXU@ zI&g`y-?m868b-hu=mgpo5^*68PZlaLyr^pKXGFN|pQFlW7yD zL%3p&DBiCxTQ|0!#6%AXyGwe==~bVp6@ou)MihjLipyVa`5O5#D>vC|D{bBw z#UOkNDmOMp(Og^pase}!->DN8H>Yv~l7}T^3u@XEs_Ll$^P&9cD6&CO{n)hBy^RhB z*Pf+`?(^#0DXRS+22nc6tQp@LCMd}CTlPAd8z5**O3j)+ZR4-fSt$eoFy}kcMIV|{VyOAJsz~5OCy^9 zVrDSopuqm{iV>(m^~`un*Uyi^U7eppva6?I?HgX1eV~PVr#;5>6Zf;wCzdcOP-+l z(7?~rzgrHF;w6#CUwPssEbqxJPwHY5L0BBzW_Xpd4HG_?`EQu84Zwsha2iZ#e3!C& za|i$;Q@GEO9B)rpIJg{HvWt4UU+j(a$Oe1W!L_HXl;|T$t6$5o{Os9^uvK!?!B#^h z==^d{cIYtyu#*`HK{|xm$uk+tk{n@?auc;4t(~9QNF0HA{||^>%Oim3sRKk$so*!F z=Q;P)O1pjHsJg#u=LUBH*gz|;U(B~~`QPr~$3Q1p1A(K%3 zhSvvUp>iR=ygNZ{;J>FJVrd}(-Jn3nn6TP}<(1;*>6I4I#3F^*S28fsywm^p2o+c2 zKM^W6d?o-{wh^);!(6cOZ>t*<+S!g3BWEBl1wVbeWXHYO-DO{FJ?&grdCnlI$vk_x zE(h-F1U<7AYvS-at{v?+XR(r!fKnm^RBss=Ov55`I-99iOqYisng2nQHamH>wS)s4 zH$kM$s9NQ(9{Xe>B1AOZkyr-mI3ALwF|5z#3M%dl`eYPUZ2S!@;l|hiGAz1h@Rkr8Z2-r`0RT7}VBeDP zoRe<$C>rtUF2EMS0(lrXDqX6Vr-$@DXFe+%v=g4f^FDe(s9IZ>$5Y2GRtdpbd@N$L}j_TxpJ=o!?I z)#!EABkU>ZN2MQsy981Bc}p820Ow}BJZRgz;P$`&Eg<;o7 zZ3I1k#;0O$+^BCoDmF5fYY}hDxMkZyD)&Mb(;?H+POmKt35YMiJ2Rv`IBI87rJ!5Q z@3i4c1xh#aYy`@WpOkSjg(}}JGFOBkHpjR64nr15@WBRZGSlvPt0=`+>!Wk~;Q$C; zkd6AiL@aoe^dmAhh+V=(Q@4djYP?ZJtQA+6E$80|MR$*1WQ=xrSHTdS6ANQDrUm0n zxtR?PtYPJR1Nky~;`J+benhM_{#M^awnAjAdH$eHg?^|JLa96lQmj6|=TIvgI2f-N zHqT>z2YQ^>K;Rd&Pt$-FwQ=6KTTZWLg==qyZx{@EA!&R zH}>c_Q_34;&;KiAm5T?VdN2dPv}h2*%LWJLFt60*j@vsdrh=d~;owflTB-rU-u(MW zaaz39U=7d>D8CZq#&55bM@L;*(9Uni?&<3R`|-`PQ|R|6m2;Q?91>>f!Mx-5YzNx` zRb_si7d%@X2o~!Ku@2U|fy(<^pMRr&Ef4q_ZlyylJ^ZH?Y6D z-T(Q(Yw(7~k#MaYnBpmz`>n$n;k1u>C;@N;!+y))3N1hi1HU-Oo5sB}_nUN2()sCj zCjS2DhUtHBjQ7>jIB+T!bma7hh5+)G*}&ObDo~b zhGqNZXWwoy{6+iVt{{<)ttS1f+|bK3R!Zc9Axky-NHhu2muUjAi-`%);3oQjeIVYq zZop^kkSPfawj5prd5rd9<-px(xu<@^SWG-R2f$4Eo?RB8vAY!T!lV4;L)PoGsn>z2 z6Rk2sb|kcoeu(g5?Xw}8bG?M7P14WGG zE8wK50GPBa?Wg}cX*&I|guOdFdjNdCme+kpc7`?sZv!am*ZStsi3JQ1v0d0vYI?Oc z+D~@{X#gij`21nH9kHeA^>EPiib)Vi%s95pYlqHR0H@q!qEQ)C0z~}ay8Z9nmPZ*Z zo+CTs=&OL2LoGWF(0;x?iTHJ71qRSD0B=9udHW4uxu~YG{LVC0 zblquFQcgX(y(A6?Ywi3zm*wLA9V-9L%^(2u=^lGR8~cBR0j$J-*ck(s_?>$vJ$7WL zob^vx{F|FSKob&pcBuTfFu>aX4?A<808t$MoO*2M=jZ+@i+^)7wGg~bx1%!uBaA2i zWG5dGMa;>4$vd*s5&DNL{)d~M01M@(r|H4}2m>hRf7p2rcmM@oBxZKZ$0Ln@%Hoe| z1HJsC+J96VoLT(SQv7?X`eU{KSZ!c%|5)vRZ=ru2l7DZZe;ks3dxw7b61X}s=>)ez?u1z;*G@u!z8=q_B1j5;g;Sj1Dzon| z+_bM_jLemy6%M^c|WO!W!X8!Tmy%iz1+Ntv^*7$ zJ3%0Uiua_M$E&A$apSyO?dK+|cTR~PhAKM>vQa^Klgx_1s_5-7tz=%Bu3=a z0cVZhr_J$5x-frKCC=eimd#cJXkFo+WfNfLLZN^xO52u1j-9hyxI39`wgy52ITOE1o`(GP8cgCyv$tYxCG+ z{}55VSeyM(8pt4< zNPF#31NFd-q)YFXMHsX{OmQzqpF9aS*C*ctm-u`;U>#_JC>L z#3njNU0>!QZe%Kb>KI3XJ2N(3LI>@#DzBS?eD}wlUf1Q{(njF{RgUqQ}RjIPr140J4jbhccED+6#p3Wmx;gpc1& zZ`{9vAf#34l}WRR=3V7w5`Em6ZYSlWXRq450p)1yBE?o4h`hbvvokWMMJj@^Dg41T z*Qbb>)MXU&^CkwHEg|Vj@pX@Li+th!9pli_N@`Mh8KoXJ?C-TDJ9&_%qmIXIa7av< ze>+tyE^1o|-y`>nE*j(Y+oXr%3p^^o-PzTcdI%|BcOnWZpX-KkbbEq+?w6xz6Z|!#E2Hs~3>|H!=yyd=paq*aa zTz|j0+QQ0)4{Dmbsed%8kCNn%nr;0{k(Rg7Y8TYEs5r59FEqfOkkMIj=4{(;TgNP$ zTAiB1b(ONBvF-hLUX*)To#ROE{fr~im;$d?w)a=)9epBgF{rN}DoypMFW*yEZd|sB zwAJMPT0_{{!aU}pE%k>8Ws^lk`?wa?)3&Sm8#>VH2LzDtyxV#iVVK?1^?GxBx(p$J zs#v#0YA;)_tu9f1>t~RWfDY~(TrIy1u8iJVi;b1LSkLGPg&5a{_@j(u%13EyPv>IL zI#_j#coCJ3>6V#rQqLf%Q;b_XY3n-k;}g5o)NB@x635|*PCk%@%bM_j3yv1LAFX?{ zUs85xL@GO;WGnE*UU00>wv|a<7J%)8b2msW*w?P3i@I^gjTKtm2T>HlWlbvb1ROuNfoJ*M5NhhNjlI;~<`c_%>^W^ICmr(3Plz{ZUj7F{uHA7?euxTa) zy;|a(M_QySpt<41=PhU;=Eg|P0afc#*(o=gfOZx*9lZyA(6evR-2<)@_`G%c%i-rb zX99F@4pzR|em${~D_xC;EzL&ZzU^ogDa&bOdWMO$DEc4o(>O%mnzD!aMIC`M0O%(0 zx6G>Y=Bcw+xY?Nt0Yz2g8O*ni>Z#Di{kYY6duPwwc^M?Ar_nV*rIc;dJt@jntxsYhicJVe zP3{*xu1yw+?P%^dl!M%@t731_u(r@Jpq29MWE_D%l+~G@Cv98k?VUqP>}}D=Evdq^ zMjfd=orX#f+pf&Ajy+`gPl(xx!}MQHMv-PRzkJ^*RaX8k&XcB=GzFQN+2dThrUiC;d>CZ8Ba7o% z)3K>=P}+Sog4J$sXD*AG&&S=K3{G`ZeI7r=p}pg>?12+=wgeo^Is0VY=5!)9Ot?q` zMjBFm2a<1X=L*WNB|4Sp&i3Z_-|(f5-xMQnigyJwDk|LCgLDa;?1W{bOlR=%4LsFlSbwSzug_caT*&6BXv}^|F7T`jcP)?+Vc-^WS=pxeA-7dc{ zuyH3!k#gmT8*c-7cBQ4w=2#ZRv=cK@M;O_z&c0|%0@dK%+?1spkLG0WseTzl7_yAK zj=ll<6c`wD3uq<9M=CCUS#2#vWx1o2ctvZMRBY!5ir;DW7rwJV*Lez~{+i2Th<-*h zlfTqNIp>5Ax$V3xy=W|oRdZ${9e;rc?DLa!UD=aVQ;}r2l9^J?!?=EPe?_%Q|L@-f zK;r!myI4m}3CmAUJX(tdGPm2qB*R9HY)5@Dj>~fC;uXVw{(}LfH*ZlX__ig)35em7 zbbs7hM%jo=#W!)32ny9zMV}2@3Rdh+bVkOM58Nx2nq9rcrur#_i|9Y-RpXqMPxZNN z?AaRw(Ui<0J9J|3?TY!GvTRXH-ZLLEx{!p?IN1IP)d+!YlUI%92buZm)5<09d5IgK z+Gw)sqSt(gEt<@z6)q+x$m!p@RLy<=3z{3$8|YWh5@0u?l!z$QmcL=&n%zzsGC)F+ zvT@9|VQX(!6M8@*#G|-&oyhK_!42K8GXS;qA(k6>Z!s4htXBC$k&|S~i zp^7lvQy5jCprU=y_U(hZB-L+&6wsmQJGO{00(Yuio^F!JMo`pufld!HSuuBv&l`O7 zT#!?bwrh#A@a0=5#Rb_?HZj^c$$s||U=5D~3O+|ENh4RgT0lpDcCFxjqFr|Nyc^`t z+|)PI3HF6$jnj$KyK5KL<-0&}Pi#4QF%gTkPO)99cB)z{UyVK_u7RtkULLe0Ex38w z(PfT(p!m&YgF-~Pz_CM`_i;X=t-NK93&s<*GNV4cBd(YcEMSP^xQYD85PR5Fm#wWs z;+gV`mGbp%``F(n)~z;*OFwJWHS?bXcObZXEF|19aqRT~1qYdYv4&^ln|(k93mP<% zQHUn4E+k41F3s7#Qro9R7-DraT`koFC1$2??--8RV;5@{ug96Kmp0{foVi=OQc@w8&2^psp1OY?p)bf*Oi8-y3n}cHcZuNJ19h2@8>edP+5R zte(odpL`x3rZEnBI*E@2qL83TgF2?FWKqr@gHG;K>5QL~hgtWpW++1AkH~I3a##+5 zm?t~cVq-lfKYVukYT^9Cggt6`0^-zdDl*;o^JDllqr|;BXJl_IHapSzTYV9}RnmL# z;aox2Ah=-LiQ2;H`#${ORQ%9+)^bqJst|dbzB_--plb9V+s@xMc!BvOnV1M-qLeBZ z$-FD!4_24Cs`R8(I>$rtYFRcS6hGBBeOz$kqJ8*+0_PKuvgLDh6Z#OZskY0P^9z57SpK2$X`dTX}?_+t5cA38^! zihjlg)h`S)30Q9I3Ky??BfUl3Co6%(PMf&L*wUp;G(~6@)e-FqhihkYSSRn!zt$Aj zY<{7j1nPke^l+m{x8rskx}a|cG?73Jx7fP3hz_Uv3K^Wd`h0D^6qSu!C+f;=G?3Yw zv+3PnP^_BlVc|$aE)GjHDE5@Q`Bv^hHB`K2zGRbJ({{euqt}y}<*AxJ?5gsQK~Kf4 zC3LqMtHtYlFDeFhN1OK<_bUp8pw5Ph!l}ntax8P{@@>WxiFD5*BH87|7GOV5%Su>S zt@U;}R#5p00M%8q;*T-oHrj&5Cf93v^fad`=$q5S)_XfM+|eoii%&sOvgUNv#^6kU zmskx{U;&BY!fqVXzHVSa#*~eC4NbdjEmWYjFw~9tvYywP(wk%-puBEq-b?5ydHEc$ zn~5xxw0L(#K`Z?!e+lks0!6gv_O~-nBY{=+gBfmv|x-|hV$OX=e_wGXrtWhaKDkvL!(1$`xyl&&3-$aB= z_vAMQ?CWq?f+{JO7yzoYS2${@l>J?9EuwKlWI{bP8e@*v===n%z;0VKl5oR^AXCR2duOOXAbxVRC$f?K*Sz!BFx_jODigGNfKC%>Lf@pnqI@u$Rki_!3d z-_D^#a>Go2hF+Qf5w!_zU7^7Zgs-6SypWuvN~d8HDOhp+hI-VcbGV6()oxTKlAy@r zSiJer7LJ6yiIg9k^q3Q^$kG(sv^5^Hw`lWsKBBnwwMXIFi|-x6Q2z&@M;7GUZFlBE zhq}#&*bl0VT6_14C4qJ@xUNlB)A-<4dYSO4E^D~rxrkGEtt0(shC`LEOpQdX4-0Vm zef?;gSWxlRQu~Pna}%BZle>*2BlKU>sgSClwX16kecEbkm`L>K>5v5G8=!d{Rg3jV zli=2}cE8lV$O6%pNNAM8`UXcsLB*mRwy*~GEs))}^?9v@oyp_e*h2e$Gp`gUa3LrB z^AY*83l*qQ-md4)p7a!DV2Tg6IB+W8ZbN5h)**7q{XNr_heeC%uM z&GA|NMeD~+S!?(!r>d!Psrlz)*zs`aYw63bK6_}n0BDD351a)~dq0PZ%Mms2p|zSH z4?q6JdaXH<;}uML&zjo4Bdy0{5bDgijF8#qEFUqTaZeTiex#o{s|ot`yb8%dt`GAf zmvAu5K{Tj^l;u=f?eG9z66PmG00U2qHFf(YHQQR+g)7_&ER-fM1v8o?qtR%`evgLB zA=4k$ALCKiHKABdS-J?Q`Zd2%S!>`?GE@}+Lw!2plAR$D1K~!Efs0;~UkdwWu=#xB ztACUK0_Hz;8yo+sISai-jI*76^G@_xI-3^Gy zDi7W#Hjuq;VyuK#I4Po%Hej;!{BuZVv^Hn&eRRv2R5q^-%k35sDTO2S(f2m}MNH}^ zU$<;q`M1ItG30!lZBMRkOcX*LZ}*j6Al$CHO$IIHh@3hh`yv!3mZu<2?RD-F7pHn2 zv8QYfOvny6Ko6gCb20XByJ&JaJIp=Yp86RFOUxHGkxSSQK?Djvt{)6MX>u?<3@Kp` zlRhVuh!YyryJkW%E_Sxp>?e-k=HKjXnJcV0ZSdn6$q7BgXJN4XrEsHaT|caEz2ZaB z+6LaUU*^Zq#ZO)IeSOArur3N|FT)x84s$a{908_i)gy$RcZUw& zk1W4`=f&lPEv1?5>sVEvT|98qzMlJbdFLI|Tdge;xobmi;cZ<76=Xhf7z}tUc*6Me z@^PDYdSxeTHkiiNWX!dJN1;jVErLaZySPV9Z?n}~6trPtp{!v9`%zr((t8=!M5-AR zu3Ld6g2_Khk#HT@kP9-B4g*X4Lu~YFL#zFT(f{pr?+Us@XC4S#Zo=2w>1u*(7VN@m z;UE-Cvnht#1Vqe!RAV*Dy;&*xG`;cYiZB%4QcFhwt@&<}7GZad9f}*-fUejGulK(| zs#l=LVBJCj@Rweji|r8$O~=M2{MC=JC&V?YTY%!-VO#&><}T*dV@-+Oz5QFV$>(Q# z$_9R_vBSht^tjQ&vCm}~)#|I-`ea$mtRi|rZxD`@S9WNEg|^aL!Ub~g6a*FXzLA;4 ztgtzG%QN_$kIIHq4Ot@4znPPbd*5-(UZI=_4et?8Z>##Et&!WyRyQ zZ(3SP!*x6WHs~Ab3MwkQLIvOnDS_*o{4E&kJA!PdjqUpfb5KdX-2ImX@=l498mDZx zE6HBWtg2b!TJsv#V&1+4MsBP2@c#qAx>D8Gr%BcFE-~G^)J4u^f>5hMGIZdkbZ*=nk1cTcxnZG^=z< zlM!=gcM7F`{gHY+$lz-Is|sg0OX@MQwo;54%F+aK296wvBuXGXFwx^P=yjkB9(lBduO$pQYO8Wv19b zf;#9-D_$1{f&)_~oXRI~6}weOHvr39zj z*UPs3RPNR&g~cy-R6FSpm?Wav-`6jC^uAhn$HI_vOzVR!F%ZgbYuWTYXm|gFcOsg5C!8m1XVRfS$ zsafNenh`-Z%wf_nV!$?>zpkX2WkXl6{0N?*&J{=51Ptn$+sim0-k1{SdPR`fr74~j zQCDnPc=UzUOowW>w-*u3k-(y^FJun;%zz!ni`lpqec7OR_M>06E6gQvxT(oElCB`^ z?9*)YIj*M4tyCTZf*|ub){|x2PqG98R4;{%(of>LCXgIp2Nlg5fPNqm+?9z%u-+n; zh&uI4tN9idul5cP973!UdFc)la_=iHtV+7oPhfvCbAj%S)0;%A&}C-zh_4nIBZf|7 zfO`bm39|JAC!-i*U&b7h%e>wzC&j2{VDupCPSM47^0%j~Ik^K7v#rx)k*0UKEF&J# z5#4fg?_&rY$c@*UIYWa#YtSRIxX*06AJ8=$n9Dj|-#8-g5O)MJ-@)OfUO#c#s5tqu zp+nt|>?-oW>`&0m#JMbfWZX*J%$*u$kQ6e1|ClBjk@sW9!s zXILU;C+W%eLN_Djp~417)DbpFNBU3i5u0Wr5k(`QLu1;^cj2P=NTumY1@VkezEd%G zzH7S_RRky%icZ_>S14`#RQ+KI+N`#n#u(cdzM>)#n;eX-esc>Ii7(X0m>A#Lp-dgP z!kXg0;Kp95b4ClNPh7Svj&o?8QX~w@5b}L{i*Cj__P5Ug=`3r>^9-QC^YA-Frio!2?% z?tS*X@BHmSuO6%Tq-xGtv-}ZiOOE4xu4nd~RgjZC%*-h0Ow9n8uTVMs%U1k0j z;CFW#M;EgM_BcoU58Bs4(p)NW#R9#KIH1j=edw*T#yj>{1N2(DU7nsZ6~80d z!ZS2H(FcpAv9vxp@Z2X%Pa}|fCPR|;GN+!3?y0Z-2;P=SoBUfL_evy2{gE;XfNNQ8 z&(Pir|DaSBQ1qq1Q3Ly#=BkS8P{K^BPQAj3;|UU5GkLEE{u%FHdh0R=XlqZ0)#jzG zwmrIbUggYe8SavSuHSzIvcEfO?!JcSVk;1&P$ft5e+79S7PcI>e_z)MIRCeG@n4|h zAHdTCRv&nMoqi3WhAIQv22f;B#B>hrWQI?c9Sz4$enI!nq5Oeg^uGbzul7AV0Rm^o zEx5kfMku0i=N0dQ@`e2Iq|87ZjDM`E_E1tMzqA@z?eqVi)bC?8+!Ah>c%ZrJhZk3c zNh!8m<(k~^FwRXOW^7t{*FQnZF zVsx^2wfcCr$2b{?uV2tRv=!x*=>8Xr^4H$?gy7F%;;RJ3qYw=Hj;P-$5o{6!2GNDp z{TI|5W4{F&a;h4=b``9L0cz2;Qwcr7T=exd{^rmA8K+s;Kc0m+k$_(RADi6Va*Seu zU^QZ%=f7x@f8q&W#9;%#Y~Wq9|FabT6_x!8=o84V8cg0{%k0z1r8=W)A69^Q{wo@t z`-d<6-l6=vA{UZQyn~I*{(jM-STki*@#L-I<0vx!e zJz~AG+(0aH@@SHDSw|uFsm)8H0!QEx#gqB%NUZcN%bAP|igcopcK+KZ{UhDdZtZMf9O&=P`Azsr|D2FS@XYJshcODOrdBbC` zOCL=v-S_;F3SG-HEe=@TPl0W8^dNI=PSVRc080;-)6cr2Yh1nFXHAgEYkxcF&9mBq zcsa?*e5jp~txwnD*8kL=Hh!71y7B7KEgb+J^*$JSE286fQUGP~YvKuTGX^6&4%U4g zzloFMZ2eYs&?@9Jp%jJ#$0xz9sTdttRDc5~T7-kE6n#REhoh+4(^csY2P=$9El2?$ zC+NPiy8QZ@X2My0)@HJL%hWtLraP~ncFc8_;4$<#%71&whl+}tlFC%38|)*}LAj1$ zhxi$m1R4!0xWh;24OLckwM-atGcKu6D9m%&AuR*_KoVSao^j1{3<^d>x*7YVV4zO@ zx5S|#X)$HHIn8F5QdL#eff!1WlBMZ|g@PV*6B85l`z=%LYST!n6pCmH@q%dbket%y zBN_leLHq|Uz4A@Xw0yXZXWyj=vtWepZ$T*p9tPwweQ1QQc31n8grt6QX`F))Nl8vy zTU$OEi_!o|-iHzv#L`Nme$yJcCOgNGWnLZ{fGs%#5778F7sg|5?2y*Nq9|!+7_Z+F z-vik>;Vo%lCey%yT-Rx-%@4}lUe=Nv5A;pt?zE?nN$zRd0f>vZ$x@9)k!Q$KMM6Tu zv`O2=5K~c`Q51KdJ9-41YAPE-?4T(}D&NU5)}q#IL7(B=Oz6hv2i27qn&?(_y z=4N$vC|8hN4R1APz1Zxj$KLb3fr5k;xfQz&MUQBdMljh;s!@|N7%+F730m()q! zXpBURmvDTR(`;o~iC0Cfi*BMVE=yi!{3k3>`^&=-p;8arb)Z)W$Cla~Kg=9@>YYog zIVR^1N2u4=Q@JumLL%*UCX%e7hWu#NjQxe<$=;Ch3#V#z-wbR-s%vVT2hR;nSnYMW zI)_$!XdtBqA68h3dhQQA{6Xtz?Ww$XHBe%|g%C({<~Cju%z1lA@Wu3tVN|kAWvn0c z(ia4ddP}(&7^||2lpGu#jeq~L@S<3)GLfM=c5A<`_fc}C&Cu0rj{zUV&6*lPndmg7 zNrT|KZHyW38q7%lEcCyE{~7ki0QS5h7tNiUyXw3Cn!mpH)mxS6xVSihyuCUb-*QeQj}Y&QgoPVay4M6{Hd+J>Nb*VRng`mb=B%^e4Gm(I&(DO zrJ<=ov*L?TT@a1U^?rC%)2_UQx%KG|PnYgd>gOos@Q2W)xXq&#EBavjp6k$*?|T)m zZb+9DG4MRDNoZ}%G|CBqn%vyFSS6h+pV|&n9XWwxbbNUeo$MjXOmKB@aa= zr3Yljd5XFp&XjKP13aUCVVz8KKK=WFqbq@U_iD+Yr-_WO(rT|~wi9to%Wfe*ZEnfFE zp#xH;i8xe-RAfRT>QOnWMbu@!E$fnlgo8YfKwf3`m5`>3f1TKW7IK9*#rpHbky)Ko zru{qVucY+1(W}ksXz;K^smr-#m1=zvj7d^kao9))J;=&mA)~<#-YXZjQ#gDynJtna zRirJ&)xz182>Z5NCwGsV0q}04!f5RY6|2-51dnc0^4xPZh%;o@kZb;e{}MOasflpp zYkUn4t~wd;1&Y5Dy+Dg*jC|8!|MZ=8%?%!o@>RTafJcyj^mA5Q#DyavJ6ViaiP~-n zh>D;J*TH^kH-oj7s_{&Tf9wIeUm+La6QWf3>)_`**lW~Uh8|vO2Z?W?RNnX_WvU(s zNbPYWh9TTKQ&ILEwoFCpq`u9Sxq6nw+9p>ako8TOGOh{DH2L~2>NC}rP`UNIX`E-l z`;;`&465cLViQrf6jgbm<^IH<9~v!+&)-^EO}Gkd+J8u?XTeCl!6x11plE0&-dxAEE6Gw zD+w(7*~8%;(15q_y1L}(B(T=#$&1JKzxIFIF9%(`RW1i8$E463Bf(CG(q$Il{D>h* zHWFqudDrEt{NCIZhvD!;nj^zDf*C+kZOA7*8+64bj~vEMnjhhtKHn_hob|3<5CD7@ zL`6QZ&g|XN=h?q*usC8);j@om#iUIh36kSYD2nBwKyM9*;dJx1nPw*BEz+f>ZE*S& zTAGDIqPlbUInd7gcQ5`9M86=vcvhs2C|m=tRm^>oWMQJln|HlX|C{Rq1<8WlJV03B`fghv)fMXD66Zu z?Q8w2;G)!Xtvl`k|4stV;IYNyQ=P!`)wIL@&)^5)6h^|-!^>518cMEF)=fSTt}?qC z>&)(bPB=AU3B3b5+JMwD-X8ad`RL1t;iG@#BEJ5D6TV{PbDs%zb{^8^$UoCJWRip+ zve(wg$cYq3yeDT=p^ZF9Vg_e+!Fp_T1%`QkKgdnODa3R(m0Z$98!l-3{QXt}nH3Wb zM%EkRo?Cxoi3b%$0sA?AB$cCB!f=k<=C&BS3tE_MK;dh;i*Ul%Z{vJ|4B>=MsuOuI zdLItGUVYH>HaJa>)}<&u&HYHR^T)trALcdHH>n0q-9r+(M3dnkg%XAMJM{NX=jl%^ zd|IE))_TFCEfq>%s!S=&DOr>>^Vw)JbVf@_mG#!ZejnU$s}c%vYfN=EOj4J5a@q>@ zf)W!M1C3R`mTwC~2`8Wg!ch96GcJ8-KFq185ZoP4FG(0PWxuJ5l3!GrexE%olc4ji z^gUetfl40}f%R_G2mL(nsjM@9jFqAlow@>7{G;i&s(8V!GF(VRv*XlHY4<=h4-K<) z91gl51BvH^pFn?1PC+3MoHO6?SzX6u5;Y7q$AT0Tbewq z8xMp*mXVa+twOW=p^8+vR#|X~eBqc|S1Cf2rsM7@g_ZsmpMVqA9!DPtqI2udCRvfO zE1{%e&35op4s|QUlJv>wVNaL|DNkwqyB^Is zGXZZ)!?+Pq_V0Hxw_bE8l}nYK>?Jnz;*AlS^@iaitToJi)Zy@fw@ww@`mB8rJ+V!%NIMA-d*4Qi| z8^XlK*nF+o>p0tDx`2QRirZ2#NO`A8oY->$NHz~?gM2a8sffeI{HBXB2QmA}tKH(Vl!DgCYWzQ9g6VpufRc&KJ3OsC7X51D$0j$Br#Jn^H+PNh)X&rSm zIRyx4S=rU`-=+D588U;PSl^9^B&cZ6dYy@1^CAK+F9unn39SpWvt=O3nLBf_)62(^ z1(*dEG@gA5T#6$>X?->N&k>|b-~nT{0~G&H-7+Qbovru26ltdF5-0I+0*h_#cvi|9 zatg^03WviU-iMWEr&qAvwX8`_QV7o|1RbfREmbY74r29v^cbAVdVQ4Z@D+?e3mOP2 zWCq^0{9V(a;lL_79G6&P*&Ob1IA?sc3~3tNqlm}Hh@PdR@J5Qu+&MAYT&d%>mIe0eMbDSOM15H)L?^X6>Y&o>e^zj5SNrx+@?_D z>LLwEZxZmrwAo^sIOKFYZ=%3uFcz&9F4^x>*=iLMF^Z!3E<%)>Z~Ft4b>GHq-;P1u z$b=Z#UZ{jW%=YX4(pi2lA{}l5DPW{hjjtn;Wc*t)S#v$S(WPlA4|jflr`>lfhKDm| zz5fg_%wF3wybi?7ewGe%M^eO=<&*;Wv72M~y*W>?2{tfQr;z@p4K>w4vSuR~0b$qE_e(&T02+&}dL@={NV`M6RWIfF{t zK(?~~`tNW}8y#1k3(Ty5YU#SC-zmTlS2ZpvB}3nlG;S^Dou9#Eaf{Vv5@g_OAwn>+ za(z2ab_99sh}l?rO4QE~y}mCPW#8At=-+9X37yhV%t1{2iHPJ@=bi+t1)UP?E(F86 zG%&3TYS|QS)aQ|;og@Jl95p-AK%h|cVDpJ!+TIyOBIuxhrtX*1HVTz=qbiLMbo`T~ z94Y($H5aFp(jq+}hi3t@zDb&TiRMq7Q++YFnDVd74hY%;Ixk|yA>B(L)WiaiA9fPG z;bS)WM&WSf#_?4%Mah|xrDEo_gUf^ML;Yy4i6Z~AaG1L<$Do2wZsmKhbxN2W3fR_u zp~YYGfIchRxG_b)hj~Fc57T9b_usX+kI0wxcUfvVQ8=V`MmyRI_`Y79fS`eyuoQ`5KbqiO{K`k4q64hp^s_(1p&iW6R zpw|-UydI@8EGL8rZnM!8Ho7f&fenVgv;ali{KXW_6h{6tA&Z*cbvaU;OL2ufvaG=z z0T=HF@M)m*&#@0(%S=%(x|>X%bGyyT$zOOFKLf=bd2|xp9&c7^GDEP%)2w(C(TagG5)uY_IHF~*EE&O7xjVxs~HExt80x+KNqq16{tC%2Q zf@ukn&H4q>qOK3;Ee^jbtUnvYWdnb#D0yZ`ER@FYe3M%R8G??d#apA{HyICn?3-Q8u~@iB;BArAGabp_~jV_hY-K`RH~r zNC)#ALTeE$_xix5K*I4k3D`jTfpOr{#vyM83_PW~UL!Dr?s9_*RSKX#oBb&Ey{SLo zmSf0!DOWA~VEqWuS4}`Suwx-G z)+K@xD5})MtX(qzx>{~)-8<7J~FcsV?Gt<6o3|6 z;FH##j34GcS}JegXjXP|i)tL*a2#H<5z!2vDAX3P{fs6uylwpZdi^(KC@7KDRwzeG z5{`12E7Oz%K{qV_01yQmtQNWtawu|qA76V$JSeC`BxPr-EqKZwPt>Y~@I;PDysjog ze{PgO$7URe^2gYvpxI&1p_kSSI~hDydot73eOsms6cHboprr9d7GCDeb39or!b)L6 ztmd>S|MAl#m(~8*t`{Kysn%(cepzbNW(CM&CU>b(U#?RxU-+9yTMXHe*JNm0O1f6w zPjgjiwqRhf*O84_cdRGp-&xOJ6{1y03pIHT^9i~YlQF9!S@k_dTMv$%i8QVS@BCEC zxOy@kPVTC;43B*%mFTE@BYn>yRRqTDFH);)z^YV@hE7PbZpJ(u?fs^mi`F}_=Z+mt zp|sJXwdaFNxbp@`eq!k`1FHo?f?%8`BsC9aCzZ}Gmeq**-(iHT{49z$LfU$3jNL=h z#!K73Eo|pfIjoFdp6)GJxTJhZROJHEUi+xIi9;RXoFO_$PBE8_C?7TqA&0m;Ys2t~ z-1c5h|G`qNrVtXGFpLBYyFzLmVbyssPiB>iAa+n{v@=V{_N6qP12zHww%o!g$mwhfd zzgI^R5ecWz^kn&n3BKamKWmWcNGeAYH-}f5f);;)4@PiHwK;<0SDzX8nA|>GKN{&c z;ISnzGXwsBl-R_%L)4oiew(Men&lAgqaN7UT{ zV2W?V>Z*&7kV4;QF3;EK;{#$m!wxy^#f2gREExAfUp})59cNw4Y)i(u6^G7Ik3aDH zFVYElwV0-BFa9WVk4s=n9y7N0gpx2ESW`_759C@EMM78WMp$Y{=& zedq(bZ8k9Bz`($`e-NjxhlPVF1{vYUp{%V;T@5pnXJ3gpWUKw-fdTN0C~%{IXb5Y) z`m(vXwGm9NzB>=odm`CXQT3re2&Wd+F9mJKPFFYqD9oNp`#ZImjb(@3teWi=qdL&tj^mtZM3O3OC1R zX6T%^jNLEDFGO>IF=Y(k^G`qO3%)iymEZRvjT`|QJWJ6I=v4&5NMcMms5{xh-80_z z7duk<(%PBC)@H0}9M&-JEtS6eQco^zF^WDfb@L(XJera|DCad4DDIB!AIT(KP*SE` z@`QvNWbk}ZGZbnY0pWt)Ms=wfh?jU9HOqon^<{etTz@_7emDxdp8KH!F6z2v6lDM^ zDTQ=_NPu@6N)UuefNLdORi5DINK^OiH)nFQL}e`*p#XZ^V6UKZJ>95%PknN5D#p&) zvps_ubbeq&Uh?GlHO=^2L}gV33sx9rI85-99(us6^`IavEsSviNO|VSUG@LhLO4NQ|_>QRC6^`;QK8)1RKT)3TOdCipbxs z(&z87jODx^uyaxUPjr7E$8PBvlmJ5TN1SZp54t%L>pp_cllEQpZyBKr&3=VoIV+ua zF%cWb_R|&6j_GS(R=s8TfJCiR8}@OG%sgCXMz@AijKSzRC{kHlKs^YZDL%G440lnc zt0vQnQY{I={(%kS;_w>vC#msZOihN=s#a4OHKS6d8w5cy?(~BzO8zLUiXbPmRPV&s z-y0f*bw(r3!EHH*Ef!&_%TV+j1Yamt>kSQbgo)i2rzh<=WNqM>%qdWhNQDH^d$Qu8 z`X^qm8Coa{0yFnt>Fi%j(+wRgJHycJ@yBYHc7YU8#NcUpV2GO^H65M8eF-suwhdjL zYGDh;E-UvBnNe_Nlw z{6a4XqO*>Ow4AClC%x+B1l-r4&+BoFPEAf0&O}IINn7tG-DD8wDxO7cuf9i}Z8lk$ zP!@~%wyeUE9gJISBe^v-xkMii4KArRIaydPn7fX1+vxn!0yP1CFc%p!s#=*`B;0q{ zn~l`Tv0ktvR8P+i(PJiG@X&IFFeUQahZIFCkKKEm3$!N^SYH8!(h0+ycb`f5q~gIf zD-kfT2K{Ebg4br7UOl&PCD0?^1#1SW#ad5Uo|j}ZBjUktBrYJg#~XR!FoAP#?>I>R zinzXByHK6=B5gdaTucgE-Y}*F3FF!4lWol{IEJD{Q$Q_!pj*a}_@{9pRLSdMSz3I< z_Y=CNe}k3(!|DklBT{p}$y3aj%~pU+ScUMgS`29StC0Y?kd~LQCYfwX>yJh|Bil9z z)Fg*Zvh>sj-p|gteSczGS`j{E4F4^3=;-!dQ0*eshV<>^UaL`jl=H}fa8r-7!O!u& z19N{@U{FSLVR>n(TAn-!O$lqPFN3|0(20Qj!jW{&dduX)2z@*}kN#_HrFB@x9{vO>qirDFj_c za!%1awTSQ%D$9~?oSYU7X=!O3^t=^4cNnnMr5liLaNvT8zI=OoUuBqPd33nlbYz<-LGD3y9-AG_qx-Glg^`fcsX(oghbR@P0g(yK=cdt@dD&rbu}_J5QLNLlPn``MAZABMp!PTe7rEA=3x5H5BV+A{YQ*b#awVmqX^K&Du2iqjt^1a}S zlp2^XUr$olAvhL%?(#&f1v=;nc8#q&oin}C2Z3qF``Wv|*URbD6%Qky+-f-b)@UKo z5T`9S)fgzolbR}5Td2vSxhTt1x>H($z^1V7FL}PRyO(u2^a1Fn`d> z6R-f9_Yhc(B`s9dYa8S)-AeJUAFyY03QDQDN;Y$P=vm&5D1g7gQSqLz{?Eex4~zGJ z>H9gj9cZ1WY#9e1_S#~zT*m-yHVGCxd<(OPNVtV-mlH;4)@}y!QiqG+zFYTC6n;OO zpn4Jtjg~tB;hB|fgqJ{jp77$-IDYBV4mR1vIjtOvEOsCyFW-@jPuwmrcIdvyAIhu( zsiA(1d=cT9P!bYqlPxF6M&tvmH8zpS9%|XzkuJNa4aWTJ-kG3r^mrPmQkbcCdAy)) zYLT}ihg1e}X=yBhaBhB!?nzgf?{@VOxjJ_`QLGG-#2gttHVDNd+~tnr5sSz`mdQ%Psl96RLj>(GYAa9VH{-#m2!*Q zz63jOTCEqW66EMHT}$*^wc&2pkKr&)L^!j90@*K{*sD)O@-9unCT#4Bpz*Np~5dNFO4^jSE<4Ef&eP#o0;GINhrWDD;wrfA__#DB8!!^LTm}f zPAsIa=^PC%>6$O5pKdKnv!DyUWyw!8(RD#-_m1B4yQZ;K%VUGq&4!}UQ5dI}FXpAHhWxi>+Hft~OsD5lJOZQ~>a78Yp zTFp}Grq!n*o7n5<(Y*N`(u&mq2j15leYV$yFp&PjxEdtol|=HtbTBT>I0kt;s>07^}zJ+hqx=ON(0!)AtlM z8>P6}z^+~jl&}(dvDS!cTCv)%Gq6kW>nO}ks+oHCEi9UbIr|sgKL+dD>~-h|Xc;UY zaA&zT`SR3YAXz=~`6j^F$nPQmDBf3k!=z zA?a35k^yj0+t>Vu)n-{@l8AJe$y`la*^84tVpmZU9-+EA<8*$6M%kyDFIGJvm~Ep$ zA9vgYBm`%x4R*E%Ho3Cj7Ca#9=Iy~#4S_Z-7|`>qA=t7wo;ssi;<)2{yknj z91jf5w7OIZO}{Ej;pLAg0#d+k zCmTgox`1K>s3WMLwnp+_2CSMUBsHE5lfO$T?BW1)8Dsq%HBtArFWZKN81{UbuzpN&G+-q)OD8<)GC`S*F%;T!Iw5$LdfGjn|` zDEh_wGfwuM@TVX`1}GwUWxo>0abwz-mLr8VAmukDxM0j`PcU!BisM1Q+W{DeAQR?D zGZN__Q+4v^{we%RYlWI~_eek84)g}&mNlXt+BXCQj_w>AVm~Pj>G5@ z@{pKF{-m+E=hVS}BYI>F#fs0v3C2`{)lo8Xrv-=7Gm(w+V=F^?dDT zqkm z932l3loql$sylJm^=?t{($&_cLWc~?{dvaljl4CsuvT5$i)o5hLKr=icFH!*oW=6B>CgA~c|TkVEzA>RyMu=kLVr^Y zh)@ZgQq#ebJWq`!RE+evm?;^8q-kgHxdt0|$+pYMh8u#%f)PT{gjr5aub z*h%MifzmU(?I~9qy zCRf~cRaWYsYYg}LaNUs@D>zbrJVxBsw(hwQ*$ttHHN?)v-y@N=XEiN(AAk|U8DYHcHv52L^ zPCMlyLLb?t=O8| zu7$(3T9QN@c*&FO%RN_Cih$Vl8vQ`D8``7C46I#_IgaqD<3H*&Ys`){E&1;;TFYRF zfJ$%SwMD5mB1Sg8s{VR+C?|7F!)$-!cM<10u(t1HVFe!V9evM{~Sbr zM1kvqqJrdp!3lW7B|rh#?DrxzcNfKJ(1U1wZ@OSMp#zPvoOSa0VnwneQ|U6U0guPk z(uBsuDLfg@!HKmFJJNqDi)!VJcVf-{Z)hUP-$Dbz?#R3Lu#^Nq`GY8$9c`DSt^vM%ZSPUFM0g}Yb_aW%?=V_YP;57Q>PIb zmNw~2SighA_zV>IP(3+T!82E;$K<#>GHA(0AxiGHjTzYgtI@Gq+f~zqWQ6-Jnh<-u z-y{w#NBTQ;p(6!<{1B1&&rn+#+Zb|el@k_^Um;UuOd%EKmwE1!bv8BKyxz}!vvqtS z`XTDj>kG6Adj)Aq-@%HxWe2#~Uhl>|hI0gL$Rei_jhEH+ey9T-I}NiPW-WD>UwQ}4 zj`AqvQ=T)p4g`EH3GuN5O|o$eYR#kCH??lZgKz?0H=$!>_=%Nq#>T`42mDC#$+&J(hs_J$91seM87|i8vt8?kpKPibLKp@7X>Y@pw`dxE!~ zUR8CG)Wzk6@kY9Iu4VuHX;Bi_K%7tAdUnzQqg0 z8su@2Gj-_F{(nIy!lrwRIzw*e^je7%?HM#ph4O zRHFNwQZLZnj_@p3{9U#^NN8tDUJ@5Avd%1A)qcnAqx*R$!VV-E9!w=ySaz{WLae)w z-b|=SSa@ea@+sad3LzGd2avm9sCMr*GsnuM$0r3Qk*rqN%Ne)@ zQOK~gRq2aI(I;7`&_0NN&mWJ86=gEZn1&xU}r2dp!U^z&~2(gI9Lg()N0eA-JT zXDC|HL!*X}HYk!P1aiN@^QvTTA&6zQaM+=s47;F2I+u5vfY??H*j*XJ>0po!6ss|B z8v}v9A>w^(F+P9VEt!<+T^}-O)4_vkb4g1U!6( zS{mw3NN)x+F{ia+aN)sp{&1`WS)u2N#j8KWLuzdsq9air-Lm#cwVEr@VkDL{E1*?cZUX~ewqXhub$_Ch52 z@Oz&Za5_&ewo_{JhsEwVJa>ZhBkQv@qg8TkXgJJ(P@Iic-a*|h;hCEj6B^3JrSZib zCKx8?Kyo$tG+PrQ$_0|M0cZ10mOX?d&-3PP&(Ut8FK^_AxL1CzHw+Irgq1vPXn&Ha{a$3BiL6_x=_{4EtY z<4;-!Ow$U&-DJ++-FWwn9>ELO=l}fqQ=*cr&S3wGaDvH&NJh-72eHRYyW#T{N{J}2 z+%lmtXc-%jOYc4X17T#=S2FBy7ywXCcyXUkO0r#UaSnDMf0I($2=KZuc;EjA52W}Y zm3qI+#TD&|RFFP&C)6N4D5c^)YcBS0-7aalhP5K?2yokJv9JFCDk}WQj6Yq-Q?R=29K%A z5)Ku@EB<~?5FW$!pe_3 zIqCFM%j}nA{3Qh%D-h0LYITa-t8qx~iQ4SWqol=Pk zJ1Ediu;oYuN9!0_na*jGdSNR&HKcI1z)B~1=Wrc%cBNZZWc6dCd&t*)T`!rJpvA@M-*wjr;-y z2u?{fpF2DILfmG+9>03{>_58Ie}lsN3a~u?k`u*KiR_BqT|`XFlYTDDX41GhUSfb? zC50EE@KA3I5xGOlr4XfGP#N4O#qbBiSxRHA1iWi`h6RO%O)oOYFYOXQe3!H3KnSss zu_O{k1`#bVvaHQga&YSi27ncxCZmDWXI^I>i4O5F7iI#Ngw7%2DPpY{1%H;_&alBt z6%}rI(;?&RD8xNU`WwWLOsmbakxEFZ<`<-2j9WpofM!CvXLtQ!XG*xR#$y_4m7g)!imml(FR`cs@4r^I-= z0%xLm7G|S2h4TvwIewouRIr^%Y42iw#$?5)DDByVd|2uhgSGlKQr=JawUPp$;ZQgr zi8^Y-n$sZ2LW^ll; zS6MYCe<(bDq|zPYypd=i<=NywDYB^?$kU3C2xAeI&$`y4SxLvnMe(sS?$ruVIs)^8 zs*tl1SK-Q*7n2MOs9V!CpQUL@a_I*D&UydrIxQAnpZ;Uc1yW>y69yr;b^uxFyqkg15+lZ$pKQHnt*K11K%3L>%H%dP5-C;2aN=F%54A+ce*J|)pAHdtq^ykp@2Wl;KyQN7xf-zts0mq2;?oY0^Xyw$^s?4;!wd~6Ou8IVxstp z6TvZHh?8C`q{1ZziFTbOAy2)QElzo7Z3+V>} z*>}O%sstH`F1?MW{q^~5XN&x`AuHz{BJ!bPsol<#FeyoqEyR?l5z>V@yXfz(_|uf_ z`T5LS1GY1QkgZC~=D3N#wU27Wq5?FjtkoVPliuihY7^7d1)b~XUl7Wh)Urvb8u)~> zyEk;R!a>yt7Yk+Ca_P5jh(PKT^S~wzI5E&@C1F&;+NPsU1F>S5G^rONjB3a=ER6wHPM@CmEQ%HjLktj=%30Kw5V=iL zr_zAB)2+a`gnWPVT!$2K5XG9k$JhAp2p`80vwHQ9B)+=$gG*agZe}=T^yTwMK>Vfs zt%#24pMnawp2ZMq{a;RtzQuLc@jU$M`m@B$>qg{j%A} zv+o#*N#eJEo-Eb+kelt9Ez0p5QuUR@fKN_HA(^Jq#f8IcM@mk?K?Uvv0xLri6eK~+ zrfvkH>1WdlEr?dHoP!VTK!2+&|DvTIP@p6eFh#->rljb~west2k{KMnnOoSXky|iB zPpgd>r)l%%crIW-L|08o=z?fB4MW0mp`rUobeZ%9FH=bggzrpu@7MzrMH!G89&%Z{ zr0$WtZnew?18q}_kLo-x)7Dg9Bp^wKlga6~IBCGo~%Lx`dCtYTA_s&gw znI5nJa6+}^EF(9hBHejMelMvWtoDcv@gCe#^G0yE2>+NFb%VCcMkGp6Bs=yLzUvhJ zQ(3O?&WB@ANwzZu6ax$l6#LUm7yH9-a(%Qetutxl6Q|Ud6Enx*Ih&yzlFWBpTncq( zg-Jn8jNH2e=N)479JS?2H%Jd?LU3A^splS_BH8w2K}FSh@`?iTl;0^u{Sk#c@vJ5Z zPQKbqYlH}%AG0`=prd&Z&w{{IRUV)%J?I;IH~NH}f>5P7cNnI?$iX8WR~ZPPrp4}E z)|Kei_1IMhT&9q@Vq<0)YEE?PNY7HxSB6-iimg~<%QDVhpWX5Wuv6C&y6HFeyQvI( z{vxH+u^gqX`Y{`n*Y-B~MT(>05r(0tQ{A8=;wZ~H4&2hC&wpgWf zaaU=uGDR;}O7jr}`el+z1EQ*a$>rXAylYBBGODS`VCdt-wi#UuR@agH- zo5<$QT_`LC zKr1*a&O=#k1mw@>*DAX-AL92mF;oj@*f2nHVl+fEpjxYW#_Efl9^wG(Bv{=L^C|Rc zN3pQoT}FIw&d~ie?GG04{K!-rcJDf$sBFJYeq>-~s4YUdz`Ha-)RiPJrAD>N9!;MP za0cpUzE4*voMQ-}ClCw?iY*gzu1?wv#)?Ds8&Nm0@OPc!)8^3DRi$?{b3&-8mdbmC zmfcw_Cq(F@cwb5W7#Zs-OQf@uTlZ578CcP&nF*qmFcH=8; z7|u0t?9pG~(sh@r3|qE7>D>A0JhM6_jdP)Y6lQmX7chPQ@zO26eAqpUCVd#XC<({J zfAfq;^LhCPWi(2r4bVowRy>PK%PbxzSGF9QT^2Ky8QVSGKaJIFxvkOjZ%Ffhzz1L7 z06`1}%VqHq6{+OD2byyCND*?{GmNa{YNIAZ%%R3@fAR<0`Ix@K;rkk zl<{|g_N^%1?P%|(Y}RNxis|Lm8&0vBIK_yU9Tsn;PM*&>@f7BY7lPm^&Ww-O5?&9W z*LzS=i8Wn9Wq}SGZV&y+v)jW#{?3F5x|~&|KliCfla$gfx0wUtG5w{zBZk&+`T?cf z`9|R&v7_~79j-h~95%FKeirLGhn?dm%NhE_+CoU19Few(@x5XSt3|}Dr;*pRt=9qO zjUoZVVXH2f1Xdjb`~`-RNbD(awv?rqfN3HstsFqS}@aUSq==p$Eg54}X zFmmad2CDmtcMva4^-^f2D=_7hc{FR^aB{DZH>7yD;l2e@S|UyO%7Duvq_Z2QRl|G0V!wsOHwQ9weZI|h*MPU)DTL`qt^yOfab7#fA4ySt=YS{i|&acCHF-+u4j`+J`E50Jy- zxaW#!-DIn)Xc`*<(`meFagfA4l`v`TIG&HiM$1wL4 z=x#hZ&azHBuG-a#CBadrS4MXmM8jk`d=eYqtwS6?w0SzI83{^D?zY3?M)5~lqf5v_&S~>oj{({qNPVhq?OZqh_kS>UNt38FU z&NS}nd1e9`B@6QGrVmjGjFZX_uMzsJT)%fkx>RcRfp~Jaht^Yree(q->Qeie8j$)ThFmAFTtA`IhI2T5T87s}$;DNOsbzaN!O=~Z zQTBvASJ#3aG(1w*>G0;FJOPS3>;HnMdhddT#6rG8WHrq-KYm`dCW;Ey(&4a68YZ${5!nP5)^+zkXUK?v$` z3ijikUq?^Bo~7myyw01NiBP4PvdL$HG3=0yu5yCp>cejcLf-hx3aUGI1v$#b2aC6k zu(c|aO9@8hzUec23#WgO=Da9mC2uC742UaD)^3u{*JhE$r*kk|D4(Cil zc1|y9*e(>x#5?+PSH`aU=UFh27hGfV@=EUM{Zb)%uG;GfS+oa6FhdJxSZE37(uTYX5Pj0T; zgF!eCy8f5bIVD^t`2Plw(iSQ@DpG1GYF;E+?T0&yj@uQ4wl&9MAX1oF<+(CJ5m^Bz zIHazus7RgR3^yw-<1T9*bVsU%XZKwtRo#T)CFsRM*b72RSkZfxoB}4Y;%DNnseg0a z7p)Xs1NZJ6{Le^dfzl6Qc3N6Y!C;!CqDv-L6-v+bp2xhq4Re^W6;qPam%*Mw8$6m= z2H5^B->a2fD9wjfA9wqBT5P?7x#un#85PpMx!3aWpt$M1lGMX3oI7}ypW4THjfaJP zh&{)@bKGC&0E$#pG6G-WrFc=w=_))@JAZ76n9=ngYO?~bAT9*&gFlPxb$l_ zI4^t?j&r5Ee4kWwL~c;iTA%9Ks!#~Jg_nYpM@z@q0Z zVrY62IWd`;$tJk>PHr*A>HR4(K6kORNFi7V!b5x9D)ql6Fmw>gwq#0=Ff(U|i!{pV zGh~?1>kDEG<>yKSxpd?BxF8E(6l{C4!@*dEciRXi9>MPkRMu1)>Me)m70KKEHxyg# zblAaI`y5B6*j$M{JddGo>D3c1X$y1Uk4zYXzb4(WQ|rK#*keL%0gN~Sw30OHIcWmQ z2e1+9PV5=H0Swd3y?$NHnsr#B>ZxDU$)Bp0PP{zV2&a4;g;6OC8;NBOycZ(61IFFH zRD$)zY(y{OzWRq>47dEeBdxE|j;#^@Y|i9^;V*+^CC6MvfoLLl!R9q;RS4H@LM1x` zQ`=-Fo78)B6V2PUS9GL4cgZP3NeU14PkytwC3%IdD5DP=Q^GpF_hyg6-^g%VuPXn= zZ|E(;&h1<6TQ+Sw`7@e1#fF>PFS56TJ1a?qUPsBhm*91qH0q=<30#nBSrMH`@g~RW zZeO#N6AC!O!j_6WSmE&!FIV#7_K!KUKznbIc2K(gJ6_QK1+BGM=>f4itcXEM<&D?U zU+=x$&rrc>#$wFhYujhG6@~-lk}xJJpRrxuW68#u;u}Kq>eJ1H|6Z*Bp2?(uyn>ES zVHBmH45&kZ!-WH`Zjr|m#55DifNhT(e!VR{`}|MfX+)0z#tPkJN;gSO(B&__{RkSv z&lpIB1$B9+@jxC$lT#~hD3z~zWydBt;`wOI$P?d&zZ00;oBtC1U?TK9EhB=bXu1}7 zw{ZiwX1D=yX~$3E*y6Ilm?mPZ0xpf66ZX7bLU_zhNq?LYE9^6UT@Ma*xrw;ev?d(!*K^`&e&YBd`_507x7V1h9{u`$ua`F3fvt`%kxM1UqPni_O*$vM8g@xRZ;!+__G zxMk(5v;!1rA7vcJ3AdkS)MBjV3)-x2vPG$5O20B^E{IX^-TWc3@d@*3++Gh~1Q`3m z(9KH70(GAnMfwN9E7}iKtsKcKM)<=_Dx(8OLA0{BG~Y}}l))e_esw!W>Rt7uK*SyL zY!h24_pXdSY>aMuwQ0XAUoHW5?*#F{>*I2>U@l5f3D~H3x;Pwy1@la0|B%r#CL*~- zbG^YFgdEJKfV?tYSMpF>C7V8ab*eu#U!#d&i#7N4!$O~H`E=GfAb)>u1>wRWftRU7Y0m-)v`8&#lgFeW3O z&m6Dc-f|m@RpvJ>b7Uxj#n;=1!7GAR|0-ndP1a}Gf-_0>TYcPo*zK)U1gtwS_t>D_ zyB^Zc2Dk!vO0`?fOJc!C$^$zJf#omzKPfGIXvO8u9OH(w&pULiN4_=TJVfb22wq}k zZ!*rJ7Q_667E?lyqAxlDR1jBu%}PUdm9IiL*q}fgWKCJ4Fyx3>?%e^kX%rCN`u~=2 z)L@6&DBL8fLS|yic;22&-Lura_SuLseqrCd%#hpBPS>`B)$n0yAICDub&$$W^OD1ns{ z)xpfBeXgY+Gybx9%DW((OzO|!hi&2v*z<9%PJ`v$Z=dD@(l4(1FC@0gf%Kb!Yn6k<^(XfusQTxiX|No*`K&4n z6`q+QG^DhF30=)GtaR?GL#Ju^4gkGpxp7hu8As_cBjTIrOy3F;zmMQr-mV=Ll!-!p zVk)+|(M6~3B-^z{&2S$!TjYL=B!D|awfBz@(C!ChRIsW@5!$@ew|&V3*kP=Bn}jd< zfUJ5eYo@`%W*H$G-6u-tL2Aqt{Tm7=*yo!nSNi{og9yaoHf;_o!M9G}r+3?S5chpu z=bxC2Wb!KqR~`Rj3yVy`A*Y#Uh#m3t5m-lijn(3e{R`DSP1wV}f3X&b8rLO$!+jpd zl!{Z}{2XWh9N^m( z&g6Z1jFDj&@w86)e1KyM%eTBQPfT9D776ED7eX@|0tK0Ol;a>PUNYdH)qKRhxKYocNIdCTD z$)y;8^<(adsi8qWEd1J8r&QW2AReGt$U9jTk7jjDKl^^m5*vzAHc2Y&ty>(y-13%9lwd(tmt`z zGe`Xpt}r_L&%=K&z68rL^5F(JBNyLgLTHT-dzAm^EeV_V^s7K1`g9u1{a2}#OD35W zzI#n%iu@qOwKntg;38z&gYbi)LK)_^=)H;mnV6mZMDouKyfps2+*m>37dETJWuUn* z!&=E+dVBe%I$L7_>oU-A=_#G?D_L*TmlS~nDa|9Ij5MD|U zV%PD=|HwEYcAIIt+@t`6SK0oBc8ZfVfH?{~;n8 zRM>Q=_AR^mf*mGN%U7r9URQ0!rzUQRnE)c0Qr>`!!%uQHF_E^$Z1r5sZpxp_$jh#F zG%NmLaGR`6K>Y{G^owfc_+*P6fpb~%Lk(i88LjhoiiD(v*!>#-cqk5EO=L2H!}p&@ zS}-8s`Xq9iotxc^&E@ITJ5`b>%Z3WJcyg_>l}xd2ttgd`>R>w$-4trRg9W?$RaUaD?#2m*PCt7AcsIc-TjQBZO7_7-+jqfNJ z>uVeRTY|62>fi9??Wth4<`+@M<>F()N#NTr!F5!Z&}Bi?K) zGo$)LAW8l=@i~$KR|!8X#KcUE=r}9K+ODhZY;99+Qn2?v+a)yDS~7+3ro7p1;;?Aq z_*Ah!f--D8Vg3q?O;_Ze{8VQUjvC(L^tGqOWYuSA9FRs!Zte!Pv#)M%3*Ifw-u*#I zy8H~LLu$cp`?nj|%2l`cNpU;V^j!;_ots1qN381GwDDnkRI>bbt28+s=geN4(PLlF zye`X#PwST);sFfdhcPc;v{iC8@-)w5&E_A|0g<4#tgYpdgcg5M`mZlbhO!|01yRPI zb4y)3F_f65!D7DOR9*7aMO94nUB^bvQpQ&!y*MMVU)Olb8aPfW{--1e-|U+QT`tPa zr-X8xSU!u^)lL1j6Y%=m;b;`h-^;>W7Q?Rmse?$#+ zW1(8kYN#G}c@1yzPzW00a~ODz`XHV+YR%xmf}wH(g0KYcDYN4)dtv2}^NV@@p@H#7 zn5K@$h(`}z@GcJGx*&>j?Vg^G)k^_9hR5||* zI}>MtT4YhY%YQ%g$dfVJX?D-1dWZv_m8t7|4JspGlZASPKqr{ zg02o1YBefM?EPHyI5hf4_ZEd4sTnrR$IqpZhp&Dxx49UNx<@9bUKZw+n0S0V@e?*WuuJ#^NweQoNmuXU*w)3r)9NhB2bJUQ)8Ixnf0D!!(mzc z-5m;VW8Pw!U(!ulV`zMuw?1!iNsvhQJMY<_7<8b;#W@DctoyYZw*$U|W*(nQ<>uRg zwM2cg)NgcT2K5O7i8{bIVvb2Hjeu5|CgOAqzk8_MYF}a)Z9*~&=-y&o>J*|Bc%)Z#m2t%G9Jm; zZZNm}$ZfTYC+InZCkW3~6Q1GvB4Mcm1t2~N04InJF^2ei@Af@}050s?;^*vby!ix& zdY@jFnhVS-l`2&v5g{cbH9Vjqg0+C5OOXG)7DQ_M58Q$hvydWZb{K+1v`Da4=|z>a zkv`@_`qCFPciv$U*{2O&OZLU7973fAp-jfA)-K**WJeBX$ekP= zn=cJ%rb*H0xo`6g@EMfjUg=#9hMjU1XA-{{+=;oJ zQ==$N5&m?8h(ajFnMMqx(?~yuNh)clrh;JB;;aDatDnEy-q~c-aZ~Rw090M9xkk4g z^)`MJBYGbp6=q!p5Ohid*uBmQ7KNXzKAq*KUzIebp)sEr8M|nw=i=v)i|D6tzWTpc z*nc-#7F3S*y91*~W;-=;R>tvkW*mUB;L>@`+kCb^0)J=vZFtSd&p`F&@Zz+!GC=pm z*%|EgS_7V>p<2znWUd(VMLQ<9uE$&}fUaC%*mVWhDU+B=#q~RZCeL#|WjHYG05God zJ}Z2;k_aLv=Rz2VB}NbeRKb;-h3 z=J7YP+7Lqj8HB3>gtpF^jCuD8ZVBDy#xyC_!&K9zgxB%+mF0!*2sSoi>-&~f=08^L zVVS+NKAMXWSi_~*L_pkB!V}J6OPimf3O7dVl`OF`k`HfbhD|onStU_I&Ri0oIM~`lTMD#^MRWBT zqR3wtzlnYUso*?!ww07jZ$suitRaAKW6@seOuz3#-i`rlsZJ+>PjQ1N7S{nJ~-Q6@~n1ACL2|6%@o;f@=yx3ZY2%yAy z<2rmK4!wCzh>yYa{A*EAD_d4k_ca44Jl370LJxD$I8ne-m9fG|fBaj9~ZYOr@^*D~!6E z^LS@zUh#r@*f{Lj31C}v*R3&ApwtlV4CHnTyGVCgoRLmiw!Mv|mw3K*&lxRiC+}*< z9a4{pN5mELodPxM%l94v{aejof_#0N^MZ7$oFWW-?& z9O5F%e8I0vFe{cZp(|Zbiq&bkxF~F{W>*UsB!>?75^WJ{zOURuf1xyq#ark4l|#k10aL2sxM!-vTFQp`QRf?K#Ep-?6dt*+{RB4EBlG~ z{l#xd1SQ6V&c+%>dMrr&U}B=MyLM~Ds$uM@myTs2_?qvx{yTs$*B ztKg%TQBqsg)D#Ozt+6R7o!!ZMk8rtF*U>9oe1Cd5VT~)JStT4eou9y^5HZCjJ~dOR zTB(Pc{~~}}K;Y~Z1Te*M(O;gW*j$Q7Y`);mnulMft=uM)nkjYyKM*;xd%k*H`MAuu ztp7+bjUMgh;XHy|vBiMiy_&`fmG>!7c?IxS8fmvGdI=!u1$(nPgc;D`k&`T;L;170%#%-(4|>^BVN$g#7d>eD(*WGf-4c|9J&cl$Y66KyHfhoBJ7GljdY4Xb`%Kal8@ztO zOY)}gcRxUVt5#Gh37)Y-TN#>m;&)kpeN zuqf)@;2jADX@*jm06fhL(+qYM1T%--klhmc=n-k>`jFE9k8XMhN~yLOuUu=>>yKeg zywg|Ma={Pb^Z$0DVx7Si-frJ>S*{0X;rEjq_r20}9z7XA99%tiE;k>2Bb8ZwiQuw0 z{D9md)EQn~X@%P~F4G`G&`wWA*b>2c1A}>w*R3KCgS5^_-udAc9m9B|O_Kq~wpg!*NOw%0(XKW3ac{;Yz&{#q~v{`F%@3 zDHhEoGFIR7$EZP-I)%@5&S@mj1oAVNrrz@1NAI}1dBGi~+{C(@=AEr<$_I&WFF}bD z`W^-o6c@3b4_f~BXFfh*ztJM0gT2Lmc_kk4Yk6X0SmF^zAHc_p*IO z=4zvPNPiXe#89$(%ne9`gAtZ@YkCj<3K7}9i>+peRpzCOwM2)}RPgD*V=Mc)pgbT$ zhp#b!T54N#(X34zFTMa-EpJl%ONcA%^C7hd&VQxe!$P{EiTsrrwj&P*K}p31W2exS zS6l@}>M7aBe8?^gG2GI!?(_vZ*$H8U2wG2GtQhmZ>@tn)zc{%#a!4)71fAwtGBs@R z760=0(UKgmOWph^k&WXXc>^QLB2J3EzQ-*b^dowJ_tE2uaK5 zNpXaPg!_kyJWlSCuV0QkO)y6h`ElIaGuX)$WCtw=JH}4;)18@fyaviL1J^`!3T+O% z$fcsHPYr2crPvwHccW{-i^FQ3=i%XD#LEXVEgUmZpG+v-3m?^6pLhQ!(#Pn6^?H^~ zev-7Z1+sekryhvU$yQ(m7zG(#}n1pB``3fE&FWg3h?W!T#G{pRe@@ve`ERYxM{%ko- zht9g!1vR%7hybIK(vq#{Xwog|oovR))$?~RK{us2_nNP(iwpy9M~sGHLy7Q>3Ew$y zvfpPAw}Vf#1!pmdYuu8(h5jiMJ=xr6Cl2KV=BoBf2JBv5&HsdTtfzWsUJgq^VdGTv zpMUuc7u@O-l9Om&LD=FY}}UPNu&;K;ML29#v#Cz&z$=8 z@oq;PI$_{f?+a8~5GuHjV~Ej7ho%hK89gMh>NO~wbPs9xKgQ;J*Wf1BIcvQKbB;AdSb9*nmNxMev8b)`h5#1MO;+*^o$U zmxM^I_l31?o9D?Fl8*#dWXE}fLdptbMKczR0-Ofda=a+cXU4 zPP6UdEazV8x38j^r?&{E_8c^foIkJj*~%r{vzJh|564o;s)=0i5OdZDcTJz>#cC^p z<-rdR^Wt}gY;9YRg$8pM9MFsRkJkrA1fUyahC}=^fEVtx&w_Zf30{BFyXJ^dzE-CwnEQ5UYUpL(;+2I9wuRuFkff}Dg@rS>Sr>#KG z-$BQ9K1DA7i&EFr2@N@Y6CO-Z$pL1`NGTsYt9Q}n^HD-eOMlWcTJ*G*(D-a)UtJ(R zwk%;Sr8#1wK`$F{)kO&}(CfhC-MR7g-+YymsG%mt`ESp&r;BUzaEB}ES;m}l3YjYM z6PE-4**sGJ|Mio58vEp7EZhHv73oK2vUhm8NqtIDa<_S#$nOQ zQ|f*WzpDI^w=lBy0=-))vK;(8{2 z%%K@*Rs_=2A%jy4UxSB4EMT}r9&3J$%f4r0`;HC9JpfbSzB6IM$giG8HZeW6fSUs> zv=eOQ2qt|_!``CMN=6vWtYE^9i6xN&8*Q4XT07~X zFhf_lObMFMU_(`Jm2R>zDq8g|!#c`HyV7|3RZ(|lD4W-6iVj|>u@l;dz9$RqO8PkColAwNk8xSP2wmId;!MUdo$Bf^gdoik#{^9aJzM8q03k%4n@+a)4k zr1Rm#L$)8Ag&iRsVX_f0!2cju(S8xhwc`A!B=?=(Q4IrRor14z7-ymx8<4ayQ_!w3 zq`ZPYHi=d~%ORCy$yGrxh6);v-dI4~hP9paTO5d514vlstJqE=tGOQvlcM$S0Nx6t z(zcq;#IYCaA1*|R&nCIY1@d;hIvAxZ zRse&!Vt9+6NBQAGvn<86L1QitFmZ(&4cSJuzXA-!c(PlfC%yRLN!d(aC;^O^;OQW3 z`Mo9jp9HoVs>G&$%)&*El!<4tC*Nw}dgrkxy(pHbi;uni{Ssc)S^1k`|hx=i4xJhjFBVbD} zdhRbKT}+&NzPt*P|K0KB{_#a-J?iK^=Rw)+j78GZPsvsAjBcO1@@BYqo1nIOHUnVg4PQCzZ5Evu)uv=z{K zsU`TZl?desfN$*4W8UX3L+y z`I>Srv3H5~8n$`~)IC^huI&7mrVNo=2fTbqJN{mcJRa^tacyL}9L_~|?t10E&L=N* zx%^>wPWRdilkv2O)=LYUPUGT6>qoY3;5I09!0P7i3D`@Mjlg%`{Qr5IWl&1gJ4mHD zK4p(v#^nNU)N$BD$&||{25I_WYRhb|0vbmu4eESO^N#z=rQ{X@UIIG2U@1Gha<0D4 zoAd)%NrB{ksmJg?8#G{R4ptGihQXTTw|m3h*$norJty;SYzUG&aT#)Bzss9*UX`&#=H}v9!8ZSUZ+JE>>E1u=`CpL^z;PWx@G|~q z8^H4!)iE6x`z9Rg(SBgC&oxN!L6Srga=HZ2d8$=hb9RZAd-yw%DuRETHj_qP&xwX} z@vuvZ4PVg8x)C#FIiaC|yn)z#sU`J$g*}@0)Upmu`-*~pgYmtS*5t^1GQBaD9pQw| z%O{LQ60$H2U`0bAuKkCC!~DCoYGTE{q5gld_(8e&Ik{?Lm#Mz%rj#0z@rL^Kis})D zPAeD8AEx*nT2&exR%l$d+115lyWzKMHz{p5!z>Y>-Z8Nz-3DB0WMYi+O~$j zYtCz;S4B@$2sH`@i7HwkF`|EDWCN$Rg*$IMhaGmkfE5s*+u62bF9<)MHou*-tFZ=h z=_fN9TjFbHhNU1V+q9SHrFJq&S{ME2b^xlg3z6(|ad9?_S38y@HPO@|VytYWl%rV9keTxFYIU-ea~rR z=b8zkzc9#Bhh49ZKE=ehLt&PDb1X_+gXiLHt|;hLlNr#B=A0)P0pySrHKe2OF6XaU zw3xOS6-j3xOr-+9rR$_VN=g0kAjrq)c+Y-2N;oyO$R^xqmvD>dG(r-DuzLEB-TV#> zkdM|JD*xP@u=8b3IM`+|o0jV0F~si(Owd5KZQnAPOLC=`-02PXhwoQ>hPk2)Eb14o*rYAsX} zVx7MWprK*gxNr@e$2m57CZeB2A=EA^rC}f_7U_{RAtZYzT)7g+9F>*PUn&e6$8cG) zu&@vsM~-xnzh=W~s@o8}bh}KiLIvGKwj%HXt>TZ@?y_&ow%cE$hQ0V%v%?g3QUep=)G7)8OYjV*rjnUDwb3~32)AjZ8P z1&1>q|5ExI?H}xGn%(f0>WmB(c1qu8oR733Qtb2^2L&mSMG=af-f+cP(C8i!rE475 zN+YJ`fXJ_>Po_EL5}CNX*1pjX+uGVEF81>ggAExp7%u%Nf2R&-xb@l5T z!73YZAK!w!{YtneyM0vspfE6+RzJ7~p4?<4Hk!NE zd;p?w--k{8BphonY6jYY{2LU|lbP#lfc5{W`I`0%l_Ux^A9y-1dyNQ@uSY$&+WIT( zjcRiSzk@a^vkV6j3hL{;&bU@SvroU;zS|B@lSR^Ok&w<(6pWZtuCGPN9UUfQE|cwj z-XWhnnv1)%(INcUhK`*yJ;T5(e_8Zr#oF%PYuPKk;;v2se`JrD8~abuj>8Oh9oXfA zq`zOgxlD3e#e?^n3Lm1R$Z6jEJOk<5B0uT+wQOV(_E`=pZztWFghNU*U8r2eAbSyf zMk~Ad62_gQb~X4P%}oEWY}d3^7Gos&@9$=>9(7V;m=X(1GG@MBG%1+oS17^qoKt{I zdyeC=`Rk|H2wc>6k82ZTFRG4~8eVL=0=0}q&ze;qW7}(=)YdjVJPx(=uJB1MD;%5T z6D&@lyqen}2;E@A#KaBsu>##4t1p9+Hq^-?P!*gKo;Xdk+&$*#j$52=54RzbS5z#r zEpt}dJyzopgY9Qo2tmv8FG{oZHNIN);O28g?fXd>b4{#;AB(AJDq8=+8`LKjzfQ0p z**%bd|35DP*&sE23Y&rTAUgIz$r}yGTL{fUH!FD+R{%Hx1VT;wIyF^qPhfep)QCgq zhg=^8ir<@dtP(8joter3e$YXn~{^d1PEL28RM#S6%-*F|X@sR3wlHWFV=CVVp zPq~e#2OtW2RIIbCeB$gn@9$;2IahJz$CCF0xaMcStJ&OTZI2vFniuFY^Ze}1@G7&> z!Q|N%HbtR+fs9RG4qmMcln6}Z*Eg$vtD13`W%(}!5S*Ef+;iIyKQGzyeC#geFHb38XNn;#!; zqxIqeF@I;fcK>fHg3qoGMk)3TLeR%-zU(@!!sWCf1I%Z8Ky$UlUG(C;iHM_}x)D1> zcly(v(s;&g{lcT|l#;^1AJPjxn?(P9J@#|y%?f4E#n;DvvQ)Q4OzF!eX-q&(tVGt}SDs6S5Fp_ap#Ue*^nsJnf zN+#4mn+$3vD#O8!h_$vXONI*W=~zy)vTsh?kEfNm!NPt8cgpJud36)O;CfBQAS(MX}5 zf(VbRX)aN8TA6n0i>#b#Zt2nJeNW%r7?Kw2Uuh^NJt*5fN#G3`uMr$ zzn{QY`R5YOA|iGPZCpOtcksC-{1m4-UCXpDVh-&WDQyAsV^jHRX>DSF1M>cdT!F!B zqGE2+L1|xyZ!*6Sn+>2gW?gSLP;{}0qTDasL9zYN&oWL!WP$2mcAbk+&IWlEnF}@DDqv01M^}on=TmC7vfdp zdm>^f-aNEFbF~S=-V}9Ukp+9?7R;bd`U89F+mK_i+e6yIEcZpB2or+sCL;lW+ms;> z9^C>PtO4z~+qqwrp4>&nP>QdnhG8g75*d0*vb7#^nKG;TaI_C7=lC)S0G*A-+kECH zX$2(~z$u^@F*U#LNt}2Q@uC({rL!^KLth;rL1Ov_=Mkc(W674t^i0cK#lV!K*ge1R zpy*4oZKP}h2q8lnXrnH!bcj{*q1S-xbSyt0J@i4MiScZRq(J$!1uy23BH@sjUUne* z_aG0W?t>X3^hl%aZm7R!RwX~hVP}E_qzG@2(j40fvYt$lia13J48i=sN_U^uS*P#p z;%sg!@pSlG9^N_H2nl?sK{4r36qH^;|7Yane?I#Etot}Y)MGTy`+TC2-`MnAmpB;2 z`O#`)v0u_H83cIAY%rnEP|^WnO@-Y`)Wv?tlYp#Gb#msAN2q(ky`x zOuOHV-1YnQMzVJ>m90r*3(8c%M1juXIY>mu`IM3~02n0Ub!LT}1FM)ZKh}J%KHr@knL*oD6TjU3D2rSD5X?RP(ychjcAVHIc{2KG=2Y@e+ys5k>cY4U zQOn9cu=Jd}Xk1x^8A9&J1vtor65z4Pj4ZGsluDVR`wSd1f1clX<3-a>d2i5M7rUUJ z+^$PIpK4=5(479%D4vlRwL~@FsWF4;mhLLW-r{l2t@?@$Ga)Vi|Ks4_)?oJLDK?DT z{-*WL_(NJ7uVprw-;mZ1S{KWPkOPlBZ;pe-A0J*|ox%V=L`r!HU^LP<<*OWG;K4&? zV?}B+1e$y%<;aUNccyHJ?!GIE6EIyEmJ36}lTrCip!CiP`qb)Wb&+J{&lE~}aadvc z-u_u8EvHgQ-PSK0!FLl0OuE zAfl)LFbF64wzmW-?;}jaV%OB4`;VS-t`)|3ipl1!e|X&!%5ArU*JB=gdo#kmHEcEg za!AlVQ3XDtTe}slW0Xv*CL;Mhih`DqFqzA5O0Wj0EuI*YC6rclLN4r)GCiJUM$=`) z1sB@v`MG2(WeTSuq-{TL3U&^ ze|PmoxX=?NIiQzaPBPlL_*{z5on_>C^?9fu_UJvt|0MpGV3s!kSJ=E3za2 z(R_xo2?Z9lYsEjTuJ*X0@Zlh%3S`9meKr;T#v|L;NZZ_oH- zfT|8!5kmRo|3t@t>&*N;bImTqBz7Xy4{1`w@<{J=l zba@*q6~Vwov?Cgp4cwF5v#7Y!x<=U&Td0$$0;q|pf<}gi=ctXT+ysS8!Q}p*Tb_-}zWrh@$v0v#wQtb}Y+uWOZ=k5&kB=itHz9%y&J?`xm3E(-n;Fd4 zC>;F$qi5?&4|XCUi#7?wH8jhE@5NLoqItkkt}xT5!b(a6a(>$kAoc`z2K@oLg9wM| zH!|1W_?o>GJw-6@AIi3PjLc9;$o$9!kDr+&8YwQ=+DaA}k^Zx-ei11DrdTUgXP#r}DC*$dN4IKken=FE8Qm>5q%&yA%=Ftoymsc&=u0ljr>?8mA zmAk%ud%_U9wi?jNI{q%HBI99H=Jh40^?5I?P|$FND_$-xBU5SMew*vnU1?P{>Wkea&Yc$rw0t${b-kIl^jKc% z2_}ZI8zfjE0E9Q~iSzY<`Td_tXbqzM%1}CH!!&7vQM1>V?T1LAs7UC9Y1oHLB3~2y zD$Iv3R{-{jQ-j~_Wc42`EJpZSkqjqIH9boy%+9L%<=?d?z6Hjnvb|}`=o)bW^u~uH z2d;xeHM1#MA_XnCdR^$ef%`u*%gE49ChZ8ck^{zchbzD}-nra1qg-$WK~k z`$Dq)_H&%~n-jOPh3%p4M@u8G2YAsHe2?Hzcr^w^+;D_567Jw0zowe`8-_kc2U1)q z)4K^YvJ$iTc_X396WWsy`%yb}NB^{C3$yl(!8JQnI^HxL6U|4< zn)AbjX^y=#2Dw>I{zOgs1H}ktByl8ewD}vLnhtGbF2=I}d2M(5ezHx_Zt?9SEFI5p zFogJ+BXMl!;y*79>#siqbww3hDqZop)u^AEJ%Xl1dB(m-u-0%F;m$r`&8L^;GV5CW z>hzN@?Yl6p<({S^gY`2r^b+yF6Ig@>Rq{Zuf@=%?e;IrXR4pg0UYUKMJ>MOtnZ5g#%BXAkjC0Z!C zGd#5E#&vvbES|H6)yXB~&vumw>e46lb8Cb+O=GRV@?Gg#l{@2Dkbw|kHL86cmR ziTHb6YBZ9vWJ{|idRgRqIw|M8+6R@lS_0}n!6h|?6)hO+x+NH#c!nIeKOYmGFMa2Z8#zD7p8`SZfMep{X-St#P?n@9#c?o<;FY zJnOIdZ$)orC2WvLuc>?kZqD4|m)2PRbFxko6bhfX!sb4e0PIjF!tS0V zDgEtvccOo)u-tf-`{YO1ZiDdQr~M#QbN2R)pIGKs?N{-+8#I8c#BZtGdEGd4WU$)w z6|s=-j6BH5fUWWF0$uQWFwg8P=YCWq=N%-e<0{5YG0u6FA+9X0 zfBNlyR5?X_6SfOD%`@bc>3M=+Ma(j3WLuM0v(5Dnl#wspo<@sEnit~bwoycJIXqTc zgZ&R;%MGLDx+<)6Nb%pXhlXABkUFRw%3o9*;apOWx`w17bw+lzChVRu?*LoDaH-SjK@P(1>^RL>ZYPn z6zPI}Bw^@U8_?=W83y8T_Y{-D5s=aE;M_nWaomAox_*L?Pc)A~ zq%@$CTd9e0`r@vGoL5x1YV;(i%x|?;FC9p2CfuFqzoy*+7hr{dS^+_IhJADLVaL2- z0yM|Lu+?>66U6TD^6h-S4gZ4iPS%#?lAXhKZfSuLo%m?h(#&Z1?VV%_t1hdT~Zx;}8;tEdx4_9Xy7WKENZ9p0c z>4u>PkZzFf9=c1A?r!Ps2C1PD=@vmkx};0#1`!6365b#Coc-?oKi|FlGQ+I3p12={ z?SN4Hz(XL=H4fIC{iVqhO)n}tduqy~4dohzK?)SC;2CK7-)5X%C^scT6%(1^6}JJ9 z10Sbd-pY_hMCVIsR!JUtx9YpuL;>f#soBB$Ql{GuUVVtk>wMwnw4lIF462=g_nj{j z-&C5zD!7&(n*LW$`JcBnp9f-j{*85x$0;V6(94OLC(BZsu;}rp5xFOUF--0H22|Fc z!B2rCq5_)-^0<8oPTh^b02Sj+ z2LtMxVZ2G5{u&*-&NQ zINSYg#&BpB{n@tKOQJcJRG}QP^i``sh*&Az)jY6mB`_>{@N6gg6>VxF(UI|K*6~vF zUO)lP#M(herF2!k;83pT)nVL!N)J%Wjm z)t8|s0D__Mlr~)J_}NQk%2w3mV^uBRqv|qaw2iYnE5YvWp1UMLMUIqFeBp9En~KrO zc3%QLGvg8Ljy#L^1DHr!!>L>rp-?F$)aK$TNaZO& z`+_m7Xp_3A6LZm%S|}mOlc}gxxG01NmI<@0`JuW9AFG?BR2WG4FLmqxD;@Aj;`Wl% znfd{&+8-!)?*ANFqJr-^hWzKX3Aidvr&_ck5NTs%e$&S`7ucQvU~y9D9d|@B?b6F? z+PPRSjdf25Dr8s(q0s@j!m4)j_db1>qvGwg;JLxHWPf!ec6UJAD|h&eS_z#>HVL}5 z0!i{A?$1?esyuQnRSn%Z@~`p+Q7hW_sce;jDh}; zI6^jNyTBVy}{Z z3M4c}vL8RW{SsQTP#G>1?OTh~jZ~L*7SDd#aGR z)zj<72XxCKGJia_T&`w5oUYYE&b*Q*AzZ+DlmWouZz~#?O!c#j3~uJ4;ouuBz^k(% zYRskO3x$d#cR61MUxy86Z`vco4IRG~x~;9ZvI2BqNjx}*7Hf{*xMv?tA%>9ZTL%lC z6Y=G0H40Qi&T7l5)Jnf?`JY9jT7_z|9!K{L$n+=T5fg=pNV{YIs{{UzB=oPhKVC@g zil2TLR6{Wqqb$(1R&!n@s_p|Hm)DK>cWR02ew+Xty$_&h3oO?P^ieG|g$h}Q;Q@V= zR9qN;E$b}`MH?iF|zV6s%Dw~IMr43I?u(bJHeTx;U z>op?!RLK=ii^z$Ft5rggm61V$i-S~}8c%A59`F@={se$cI+qxE@cIV=!+ATAWKJA( z$AyoVj5&aWoc5&tP%ddFiD=~g!!z=Ic>F;6<7wME-@q|2lJycTHq-+EAM?jf0FL^4 zGF14is|k|hCK`rVhMhdD82ijO<5X0~eRm5ero|*m_ytq}ze6CglChNTtor~O!kEMmL*rUm*R za-+SMq&!SjRGS=2GW6Wr^RLQ8{0pl;Iwwbraa2sD0nq1&!&uFqS{;owDbScXD0*Y= zl>Ib4y|kkzxN?BIEGZ(pTIB8RpXT}ER=YU{`BQcVbLeEnY$4NMMbD!AcWF~Q|CY}G z{U>81i%2bV&SIcdFH29#G8}u?r^)T_$Td*Jl2S2M87z-gnOy|y@1Tnp^s7#WP|=Yw zkNCt$G3>AfF}5Ul(Rt0K$$EBnDcT($S#GB!Se+Y*TwwO$b9>K~;Y6lmqzo4u{|)ZE z#7w=IQDV<{#yOV<;!xu;s`7+0TJr~ZLq#KsN*w~CB!#+v_hFQ)Rla%tH)BmxqW1C% zx3RHH zw$uBN>5IPypA*XxhS*;VFWG3OZZ%0kmKj8ujHh-U2!# zdR*Ek@^w-m8!;0*UiEj6-sN~wgF%Z$`= z0!)t zU`x`JwAnypg}GYky`|n|i!9ek}h zhJO5+UsV+asX!=dkjWWj0HWYu4{!$>wEoIwWiPNrrn7%M>&aY!cOH1zhYdrN+~G&2 zPj|YrSi=hPQrfW>UDf)6g_~JClwigCbEVN`EDiirJdO0q-<5KL)?DS;i!5ODUzJAZ z$1$k{l9vZ1Nql?Pm5Fa}@wHi_3B`PVZ&*$b0|ofZ)b$lTM5!6Yz(`DVc-}&1T?5vz zyFa4_>kw`G-}Iknlx6g$42BxjU)`e+8J^gii?$i%5oQj1fccek0$LGaiwnHjfj*wv zUv~EQM>e9}dGiY=CS+ro6{@S%RECO%_J6&B!D(ihYK%1FK-^h8YbjxgsGb&X+ zbmCO9ovQ2?eV*Hg{mVJ}_t*dV0LjG*@u|k0#I(EnWQk{uj>_>M(a8`koGx^pUPgZ1 zj~iC&IW#(ygGgUoO>-)eU4=!)$7+7wOeE>;sU22hWNa=E;ZWEkgbRH|PqecU{0O5e z`K4T{r?Mb7seMBva}{%VpJQEMJ69p?9pxa?E1RF3P$?I4k$42lG<4!bq(ub(!cNEk zR&fB}lr3B!8fjb>U>T4lBxDN#j<>p6le4gp&(R=_9WqD()0Q`+mw~vYM!~5)54MQ_ z`O0@rOkh$aUw-RJ^0%FZ+jhDnHnhL3|z_nyw z4nUW(U|?an=~h}kzh)C%-)!Hy?M|G}RCcw{r=*`K7`7RJUHg z0!XIYI7j&u1uxk34A@}7A85B_lQ_a(f#XT47^S7uhT_HQ85+IFNQ5nlAg(Cv-0C*m zKPB+Cl=;}uzo(B}-!$UU!ab#rBBir*v+b1G>z`lHSJSpfMJzvY$%L=`9To!YHB#xA z9>+9azBJW*AsIJ;{3GgI>jd{x5?p=V=YFfp6HI&Jr|9w@*G<^(Y3UJqkBem{0}51Reb`Ak3>drx#V*}YRUB$ z*<3}Kh|QT!^wi8;Y%-7Wi{G__-&_Pf>K#tYTeE4^mSztM)2x8_d}Oc`PbnSS6ocPX znZrU#=eM_AdZwRvk%p3dhn5&MUvekOe`KkqYg3Uj_)JA-H*3(&&U%Vkzu1K3VXEkl z6oSws5kGhowvZQ3?8r75=hu@53)Am82|Uu#WEYGVZ|rI;mk@*Ffy3<~5f^R0%eqn( z2+GDsOmo`mss*4c7sX2e!`hLGOpI#SW9^!A^uA$SFEynA@JjM;CU_-`R`+4P|4Be> zys|k(4FK--3~sGzuU~|8z_P{~zrifWD>n!E%j{>uvM>%2zsFLwN!w}Cyl@vCS@`3+ zg4kPCevzz!6O7}O?2S_*K?L91zXyC#$zF}VBTI6LnAq7iitKZrRpG~s5S+pdr0h$( zPWk;k_6`Q%cLMQ7t~bK4b1SdOML@6TiS_|wgaP1wmy<*R2lwZZbbO6VpnPsR#zT+P;4wc>d%ql4a}nym{!)*s_siTXJ3C6+fwdmLrd98* z^k-W+PS1V0jNE)*nfbK?n}yb@!@aC(D@yr{+M@N9`93gZSgIMGzNv+#)Z0O^ zMFl4c!<8K6BgsY&Ht)-Pb{S*W3Tjj!>qA52Xtsb z-#3vv?gz-NhMj7gW1cp|z{!iMTpvffgdQoQiYLfAiw)(d#7KPZ@yfqG-qEF*b;3sE z*Xnxpan39c7SuZkz%yy;NJY2%oBOh5D>on{J%MC7hdpFQJa4#u|}v*61}TbxT}qYAiajv(>uoP zT`_-Gj!$Ht{pZWwEKtr&W#Be|M6{CC)_XpSfy8)@5yxI+w$8LC+$t?f043(Zhr!Wk z;AJu^jyYWxEJdZX!wjcRA83N{M0rNnWoA>SY;_Q!&YGYaaU>E9A>dh0hQRjOldmaO zl$@NpwRE(Vq@=#=G~3b&W-fE@NY=PhorYib4>9k0o-8#~`HFA{+eYl{?EsJA7r7>K zf`oKDwkVDRQ((FSs;3({sbR?)oN06-xO6!eaHw8!5WTB}_~*IOJdw++#SELsuT3xf zt4x&QluWMXZ%3jVK?Sa=C1VNai$bSVU===+j&1FSOaxrp_|BChbp} zGQjo%Y_DT2?+uujTK246>q6!wSTQyn{=~V;o#v}#*wiPHF>{jI_e=_aN8dTVsQtc2 zf}e+Pg||DjDEv)8!u)z%*W$+vpBrQqo zaj6;Glf!Z!xOB5T=Y^ijfV@{C0Qi2;q44Rv4IMlRtIP&@Qcr^*y>WL9U8N>$1YfiL z2#$fmbBzL6QOw2hci#Gg?DPJuCW@l&qxI?Y*h8dxx$#X|SwaX&DKX&IaHQ-YWnpWa(*@Mn8np79sN@ET1mnzfs^J|fm2&P?mbsueTbVO3Km?NLR1v5}!`!dYs-N>HXm za(*H1@{KEoQ7ni&tF|Wf+EK}}B*-2CciGC^D<2DqWnXOtm#&T)OpSwrMQ)QG)7;{0 z%CC8(H^8)SI2u+OpMmp&0T)hkV|RadRMzT;)!pTxthmQPaTIB2%C&6~y%D8&tZFt# z@3`he5j2{%o}gMn-ZR}6Ncsk2HjFGuGQT2^Lxdj{vHp4T<fpf}H&i3G61(nitbf59wP7?_Ep9n&FXH z9S2cZ6!ikWO8Rko%O#Ln4S$iN3Y=@c#SXraqD#A%korotlBXZLd={Ixt*hF>WY8C=4V*@s~2eq zp$1Hp5Q1ZKOv)WaFFHr@=$ANh$!Rf@yf_uT@;|GXw$v#lu}b6gLh2(9LM=TMuEcUm z*-cF7J+H1*-lCh^qp-MvS#&5T%PLhJ377`>tK}v`&Xu=}kEAwH%@uA*(`a6f;M%Vd zn?}nZXh>{{%Q^v$1Knw&`b*fM7gG2$IGQ52~ z86=Sfk4E~O1!9lAZu?2U{~<6o;O|x2yC6V?Qva3fTKFMwZ-mR^U_;$~kgrg8ouQgI zK`!83C{Ee;+A!kkFwv%ee9$`aaPTrt1$;7gM`V^2f!I9dnRHkYPu{(Bw*e!HBr8pM zY+nu+2ulWRz9n0KIc$gq3EMf=OPHg6mF}j)^GxsebiW}iQ_*Xr7owFokceN7 zVOqh+dX*ufCX0z?EfaNtjf-*dngVPW?&xncKX0H#BQc`*gN0hmG4u-f{mtzDi!5LA zG)TVPpVFgXzDINmGRm&2TuaU0-^x(&Kjhvw9#!utz{zLwg&DWRd}+>0n?K zQ9c|o;zpX@4}kfQaQoiH*(1`76#_z%>|X^k5S6d#ajz+hG_#`G(cO=;AZz98oTudC zE)iN`O`x}J9<8la{%nend(J^*TVhv|c*A0^fZzNyAZoHwDe9hWWp&Tq4m{`MEroC0QFNqZXE zu9kgo)?TP_NaVy}L|lQEYgw|1aIzbW^o!tBJbYh3KFE6vb=$IR^}d?HrDPiamcz0) zHzZ>I8hYSZRn?MKGIITc`WGOWaBa?cP);vjc4%Xi;J-P_PAgT(BNv3l<5_LIe{>tl z|C9Yl5is3-G10a@VwGjef;X6yMvEo34STBON4LC2&$C9XQyL zCR*};zX^zNigEgNBFetXhW%Ay$sk6#X@n%IyywX*w!#j2IPBu_HQr+lFaeh3(yY^Ti_Fm zf3Lp1h8z=Vz)~|}Ed*?z&@Kd|Q-d3RLvTqX5jEo6D`n$!$@|(ZQ4=w<__J>&AJ)CO z>eaH!;S|Rgk)a1X(X1x=R;Wu5sYUuvVcAuBC?|pylK7%PvUc!^F?JF-x9Vc>WpV)8 zdY{vJ;2&PPmvs`0VN33r)!`JL3yqktp6@YG4!C*^^c*$R^5e z{vfWaNrP77&aWpIL*%~?75W(b3jX~n$8|^rZSf=og^GTN$~)bmdl|8!Wx^4Gic~T7 z!VvAdUaUIsXbGLSzWDF!Te25oqKHfI$jC?SgtyTae^$W82X+ROcjxl5*2qmy6qDFxzqIJMc=zzOjy5*2wh z&$)ZKIg8ICk?Inh%chYYSkh?G;?OYygaNEBI8BaHU+mJ~&~q2R3qVCDP)>%LU!xxF zMx7_%dY}-n*?R_ZCBL7E_0N!ucqI0#U;c93Rj|@H!zh$Ce8&_Uwbi$A<$wL!KD)JQ^ zGA~_}HZKL%T}{*R_IMw>a5a=AqhYXzl1`=Ot6a<)y1KPq3)2p5ucz0Nc~p5f7c!20 z@*5`RUijT|%4<+J?(Js0WGwTtadIIeZPX=qsY7S|;eXw|=}S#NQK)R}PqvN+4^S-inbxq!1U0m^-)%)~FftK6pxre6T4Diy zc9I~0v`zaP{U1Cl2AHK;wg(=Etfaf9Ub0PZq|BK*+mn%9%Pb7eX!B}l8#hf_+q(m# z&%IG#Px>OHsHjRPU74W}&FF-;gLyaZuD?dLPf_aP>=5ISZ#_VE-i}QsK zr8Xkkxu7@u6YjZG*^avNbEB~rq|c`D-Je5BnBZs_s;23ebM&a25RuUL?>RQcQDhq) zXeDvN-$rA{k{cKH3f1EQZugQ6g)P`59djUbZj;niO)|R+4)%F=!X8w z{0%un$CeBbr|&Odd6hHe7#mpNEV+}GK+i$99iX2BC_`rQ^3m!mDCcPAAKB2-Ysw05 z@FQ#_c}HQ0YPkZgTLycuxsY|u)qn!Qn5tmbLg+^pdrK={K=_@J@cVOMfoeX?9Q2ho z1(aLHb~@Wh?( zgz{{q&B5iZK1k-Ue)PgI6tJQmbSm~o(xK}?{DuXA*D_(|`#{Wl>W!CuA0AbS!$I)p z&Fb<+N}mHx{Z@~h+hE|Soc#RATUu6x5NdQ$E43zl_jy5T1y>@nEmRyJ`j1%3C(IDW z+77Lthk#6v*TCX~#?%B$244$r!KsjTkDJ@84n~zjOuDM~E3C zuJ_7u9yi|m^wD6sOe|*@Z_WNhNKZ53wnK$oTf2nxQ!3V}qNUk#rxUHwDv{CW*Ae%l zq+oRQYOGynxbNah=JMZjsDhaRu{N5F6JvX25F z;pN1WIDLIO=i-+x z8=jm~k#GZ3?-hwBKynX`G6a4ObV_zF7RhIjj3EU6XKJcYxWzl|QJ}T>M)j`hiP4X3GR~E9oe(Igc1xC6#BG4`+>75~&Zs(X8wvbQc zodn+pkgLUHI$*!|DWjyXnoHFV+-s!VqK~FUHKA`Op_SJe-`+$F1;>u2T=Zp6Xfncf z0pfH9kVEL!5ABgLCb}aR;3|;tWPMCqE;P&|BfrModxh@Gh6Xi?E{(NK-#-l`p=qXO zXWT2ua7d7;`b_^O%~d0vol^1r(OxxKF0%|suKx!ATfk!kk!gx?P*WOSrkdzg{7Lin zRK6&X)2PHP=>#-h2c+bl5j z?VI=RUydcS`$x^s$u)&c1MH4En!yQc1ppSMB=S1R zb`LvqJph&fasSRH&#ZhdNXDh(=;mhSY4r)8h(IB!mLlHyYo&x*s9q7>*bXt*6t#lU z3RxtF$r)k&JZSGOl^_F`XH{ik-_jor_7aJaVY-G)gSg4g2)>Az-gdgdhmL_+ZjZZ` z(rB=NtE4hk?C+)KHsdv*%=mKo80_5Fct)$SVJ~^l^W^j5@p5P=9WqG^p<7<7BkZ*7 zSf0JXq~Quy*hcCDw1|XtBes_x?N*0lwRZ>G-0hXB{p7ynF#%DfGWhC+9cSLMB*oZF zU9I7>KTD=;oi2?It+p1y6m>o4twtQDTmWexSRls`@x|-q(n^)c!A=s5qLS1+NTI!B z+HBiDODQY}${8$9fm)pvWAt@eg%*n=yV)Hj6Fx!4vYWY}kLNlS; zk^OZN$;5ED7kw6&2cBWgl7w4iv-3P;!LHV!-tlBvWD( z0@LNvd!O!3hI<1OrZf=pN?DdmZDGs~ry4knE2Lygl>QV< zj0HaNCl6y3M!(baN-Kksms9q(15*@Q&*|-?nWuz2C;$1DnI6S?kN>H*COIROW#3WA zs9UdFafOIzWG&<4&aUs6)isp9aj4aBH2lpU41!W^CHam} z3yZ@=7@^3Lg!(tw@{oV_WEAIwY)B|rNE)e{vp@}>4vC(b;r;{2NGsM$%l9gWSVy9Q z+EqMCs~8ipMcbjXm7N3LHQHoilVYCmd*7{?L*GdTj9fv%_I21@rza~P!+CD1`FlwZ z;5XIdcunH&^2B0P=PA>Cm5@b@jwqb|l$iTn{5h2Z;;{#VR>Vdhd5C4}4{qu6rrgQa zmgYu_SDY~clq;udvRfOBS#i-E$HLLrZ;3Orz0q3xBVIl-g{>hdD$dRHB6>@16h1TW z7pw9dIL+fb96%Dxk}F&5ZS;(Hk)axBQr8-T!x>-gMgnJB8`c}IIZM2?Us^Yrj)bn$ z8)_~)e6%;NA-Xai&qZ}_$kNtG$Eq?-sT7rQR8JJSldh_+%^cY;U<*TWq{Dvm(C(YJ zp;S0=XH;(N(cy8rB2)Y24p)~ID7hwxP9c|x;X? z1iqLPD@-rE`o*v<+?J6PoXtMd8rJ;LfIj2)+r`6|@6Kia&H{WuYSc`+=K7WV*0L`g z?Ng0+cZWF+D&^c()k)|rHT$_ciP{|8CUVNYg(y|s7aTA0aF8nXGPQ?#Srt`3fY2I~ zK4p+_5SJZ&oqy_`Y9MQC}s^E#I28w#ERO=c3g;7qb?d*S<<=(2JZKGkbI#EFoq zI;DG>ktzGjUR2+(T%MFz=7r)9Hmi^oLI+{T22dhMq(yFDHrS~84O~j+ouAZ+ zw$@^vndytWK^+E0TG@FODO-i_2EXV}IEQ}7R1+dqlIhE3fBVdUN*b-_FIt=&X=deY z)-92aQj+BklC)4mW4Pu*r9yqURbm-mJ;KiJ0jIrTR4!s%d@QA<%HA+>4aC4Az$Rle zb-93^bGwSjqtPiII=PDrRV)@&{Zd1ZkhxDW0?6TSdgTDY#k{RVfH8s%M zJT()PkF~3(CwxODOlKMFg;oxzwIh2poIpxKj{ zysK-#{zz|cePHZ`#HT%2XU=j@7*%#v!29wG2O-AvfA+b=l_WNPc&}&taeB&|YdNE% z?+~16kU}A8+Yj2qI9s0*_?}$KK5ooJ5gWJb&G=!#E|jbpKfusX*n(olA%f;_OvXNN z1ZM)RDiJ5|lAFsoUE)l;54P0w>Qrv(;g{mQR%ui_o4;-HCI&U5%D7ZXN7i&kmWd^J zBsG4EMky-q8;^(C;@Q#82~bVk>2!JvDSqB+X%LPVCe^p)kqgFn)EJqCuqwW8`Xm;hqt>p!9(n!AIS~D8=ZR za==Xkp&trb4&zAGexv>LGXSQt>^An=a7W9m2TO{zZCEwj0YALhWV9tb`m%RJ(YHg; zzUt=mR|js1#J8sE9Wcfs>bNc&V)k(rQ!8HJFRnJ1gw3s720hiL6ev&lgu>rgfEv}p z9Y^?@PkgHVUKBR-cz;GquuCvgrnH60M_4JLp%nvoynC?g^*fW{tMBPQ@SuBU8rtr8+ERQ|AdxHfl&sYeg;Ye$`ki1^;Uc3{MUH+vD zeUVFfX|XHuB}X0!{S{xpjZ2A{^dUkFf_~pE;%*T|m8e4@XoK2V{hI8N?7<^JEAz!V};n?5uQTS%jW>&2_Q+7Q%t@2^I=m&?-;NHlVXU~0!2Q; z7bOCEA&eBJy6Th$WqJqcvLLOq>yNEA(C_Xv5b}0l{Ojj!ADZaZurDs#V8WEvn3orC zNwtS-Bef$+j6FzW^1jxiPHvE_t78L=VFB;{VGW6;w4T~j_9Yv)zQw1eyGUexpc?Py z?ru3=56_vWV2qP`em8j6SI9q5Z(tdI`@!{FWXr%B`Z0I*MP3Fz5;ZV@x=>-m>hdn= zp~}~H{2--v=~LR&HF$JzS2DJ|vtBb$)Xn;D*gwLI1{??h-@AQBm)(Zzxo$0gB8>d7 zRdX-;;B|qfF{936RVKrA{xD`xQ)Pw`**ecVvFk!ur-?&zKF$kz0gPk56v#u&Fe7iK z-qe6#N#+h{n7Tbmym_He5(MAG$q{Sy?21t?5TDQ~hT=z@ge)0sziw_Q^%-Ea7Q4%r z=ghFFIe!za!KSmNo`in*nJP;$%8Q<>zNP}QJ)?@XnY>!dtha|)%8PQVmC7icRzgH~ z7^c>KBgP75PM7%WKMDjjoYJRO9hy`$If0-@k5SO=Ze;fDgmci_VKAHIGZ1lGG?d4E zPnny29tmS$ADD4sni6~J0;z#$bNnkO+g6=~1-Ik5m4k-Iff;mC1l&~jgX!Y(6HQe? znM9!@rtMsWtqiz#Ktr?QUyiUe!Eu-f5Ms)4UH1m?ZFz5^zl6R)gT}P|SjqLt6dV_lx>7U*?QxhcVvw@EZX`gB4&+(*rhc*95VTWI zFcOdQw&Y0BZ}|)*XurXVgx5ir8_XLFAIU#$z=YdN59}@gL z0pS&ZQaCEbTK<0jlM^MplZR{Aw#y{u$8T z)z)Z$mF?%MdC2BhUf#mH~Wc)LW3Gs<*WgG>$rTJL7D zsTGwcLD$6s4o|qRf^am+{WvkOa=C*5BNlCBP&(EO>-MN*%E?(BEK(YbEk!4xA;Vcw z>VV2DzfdV1!6^O1I{nRFGFkSz&f>nJgsSn3BtV{#Hx5j^Je`+e$oEflJ$5;5S>!{~ z3A22F6+SsEEH~TEj(^zUk|Y?yiC~ffh1YiMk-~&xX8;QN@_3;_8Uu+ZL+QK>k+J0i zys7Iqg2=US{0NS~+ubb8S4x6F;Z{|6A{h#V+0S;L4aH}u@TBOy!?JnQ;KtN*cm*I_ zNhJzwq0Z_ANiAta;o4N=TRFdCkv`h`8Hx2R>S+2&ACpPodB9Jg15)vhqCK~F2xgss z;Cnadhqm386^Dj!-;rF&MqC0#o~`r`Tu^`rl|Ay#6*7fo$KG~fsMq@9ra<|InLl~I z=GPHbi!Ki>2wwP)U>Jf450B+IW#XAqL(b91wEt| z<}HC$OD;<@hZaTFWNI-1`%0y@7)q$2_1f<6MLFyQdwVF!6l2bVsT;KE5v;VU5y=-SQ4>fQ0E$J! zYAI%{A#Asa*_}lCK)sezGM-ZJBx!*}9I9+>6c?vt`8eaYz36-LoA+pX!$&+FmP5kQ zAWOu4Bf$_)X2piaqfWta-ptF|p!#NDd(LIpP3iTc99>TU{jLselMMp2E9)uJW2)uQQi6W)e-socr0RLtW#0vohJ4%Tf?-e(p zvOkw>hyZ(bFJpjR@x!Pj$U_8W;N^GOWi;^U&-zuT&mEqV(O>u{AK`6vr%+qdDIHy+p2#SI}rNZY*BXc8FdQUqeB=sQJ%x zJL4DfOlNk`AJUHZ`E;qgk}2vgxlT^GR7)F!VO}pzYI}bT3z%b z@OSn{hCzQ9LUJCGujZzRxfrwm{MIpIn>6fFytu%yJa}I)Xbs+u<3)xs*ul{sSyHLZ zPgN?x_4vS;f%rwn>Z^lOc?YjcUj{fT7jykRkJqG5l*^?K8d@b&no+U|O(Wx#1MlYc zX8?UE@gJ`1!h1L!k?p|*drXxp$8l-|Ow6rP4>UgbE6gZaEMv$dG5L*vOF0x8i=xB; zo%oC;(W>y>@>HY8^SSm;m$)wU`Q`8nEfuB&t$ZC52nZu=AAdds6U9BD08g>X`Y#;yr8jJU0~{7>sv& zU@5Y>IcF^07)ZF@X@oC6P;F{>BeZ9^eH_tfrXR5b1cfS#zyF1-zNpaIhA3!{A~1@s zmmtfG0}!LP885X%)1R*7@}2s*7-O+=Msl!MCukP1h4?7`HcadS4DmOh+!4s7)qnBI zl2s6?^EGa{@+v=h7Y4W1fJ2P{?!8x=Qz8$tF!Ku-Inl_!kRi79|6Z*URY3c7whoj-L#go(o(WQ*q8to5Z&-Ci~k7d=h zs?~PKmbT`Gf(~~X$1J7Yrmi^DMWdsD>GiX$&PP%8ek!uE1zuQ>FCTU0Yd4{L)CuH z!5K~*-GjfR9`r7}M*0df1ZxB_BnHYUAIpp#q97crimD+jFbfP{Fg>G1ATturz@Xf8 zp~Apx{q4B)KL8#1}V(0M`-fH+Y1cwD(`{om*xZ9~OAejabP}Kdk@4uxDmsv;0+zg()X3^;6LPB6&o|9+?gV$(Eh2MlkkW_eqdsdLl=euKg28>As7y=?#v=!dy>Ay8fa znAA=F4^Qe)77hl``!1{n&DPX?596G7e`vSNR2avccn{Knio~qQUD98e60=i_4(koL}+wfvjiiq7{t)FJKX zv2O!Rx4{4&z>f%1=ynX_UsoqsMh$W-Mc>t-a@RPT+6a!*S^C zMBc$jqcN}$xYFE(f@7i2@{FD>9aE{=(c)0>Ii z;JqYu9EF5!#!K zLI6Edn!Bd04u7Ww^Hqx$dKo{p^`EPY_(uu2t5L=_6L$YZQr0G2?NM#20MI=)OIq-h z33ZvH^c}(OF#o*cj&2miYg3WGmGMiS?7ml%d1dy-84f@bl(o7h6TAD~gzsoxs`X%2 zMG;08Gv#AD8SB>Z6esA`r_J9?8Xq7v8z*jT9L8#70(u^ev2e-J+*ITX|I0S%j`L(? z<#a`7udD=;w%tD(HPF{LdHti)BU$uKC!M|D+MlpkKH(C|Tz_xJRcX5NZEDA~dh$$d z0%DORxnJqqVIy-|iQgQimyPzrRB$DOh=?q{cOVPNcWtF=xR-0KY_rx+aGQMIK*GVhcnPN~$x3{E?%2`+ctD>sajD=UHP|Y=C4IMM zAZd~xX1*uIrR@eCUNOIaxfyD}mFf2yqR(`bopsZ-=Zx=&qxV342Q@MpqC+o`y7e;c zDC*TBp1o^XFwG5kF?5XWPaP;?AQbSWP2=UMeEy8!eYN26*9|fdVa|P)bvEezd)X1hp~BSJJa8p>33}@Oubbnt zB%FH>J5`s`C`RmVsr@5qhk?^!o#4KQppTE(;U7G3C$w62GT@4Kx$$i=dDo%Mt;ct_ zj@z&)t1OUJqvq2b#l;isZ_b58V9JT#K*KT9I~wl+u_e1#F7#j3ja}P^5MDcM!HwvL zhlxc!T9%idk2>4#=>IF-_5Y~4rs%w)ZQa;*!^XDlq;b-ijcwa$+!&43*tVTCwr$&Y z_voJUnwN~R{PQ?Nu0|WW^R}k5fhefAuz0|i@!A@^UcAC><#r^ihW?7a`hh; zaE+G3arxcT6I&~05^3q~ju_PlL2I3MT1{PZ8IvmkY#RID3Lln=+#}uS#)utujjIl$ zlVWwE+cG53jWl#gLMQ>K{m0)#0#iN_h(ZzaczriZ*CwbsDK9EAW48RWuir-2EM(VR zMz#w?w`V6A(UHUYB}RL6!8sbgy8d=Z8f=%L?x+m3j1&xt5om&#OsIG#|3zZQSXK{^ zXR3~vQ4M|(sYF5~ixrm~)mJVZ%1f&wc@g;I^ilXH*hPFFtnL0mE48hR5fk=2a)5I@ z<5X}BtTn4!G+Uf37>wJe4`#SDUVw-;ESygXpDvMI#z{(|33tnfl zwspw7!4)Y*wpgSNaSf?l$d7psRO^Idt6Zw665qxDsWYGaB?#O_OLTptd;}b-(0BJn zdX6=lAAB8m`$~IX4tDK4)`|y*f3gv`BAt@)Bss^&Z4a1rrpjDQXwed?&5jaM=%fr= zcrBH~gJ2o3;#-i9_|bkbi$Bq4i!CYV(w8HnRCJ^i?S@T6--U;X_Zk!UQd%pUUnd&Z z%5@MYy;cmlxXl9fZON!O?9^5Z5Il=L*ry_5;0Iw*3t+Kqy1msLe9otQk5akHJae~g zM8Wz*d1<|XF+4!N{vy=bcjRz}QqPy_gD8xy22B}@BYh_jL5WOQTSDvd76~(>OYgK< zq%M7^qc1=wc4&%K+8<%^eUW!8@c2$T%%9ywcuKc$0UjF;`*(U~m?)r4Y1;5)* zvN|C*p`4V`cLi3_d*U7cHSGf^3l(I$|Lw6#^bPvE1INwOOM%@H=#q1vxNL_2;q&(- zrwlhi(vS4N#M80&!SOgPP3lgXlGv7W?^@yT^_P1n=FMz@${jVjZ;MY3T1cRluV@X4 zAl|K&GneuLZ?h?xze#dr{9}5Zcw(sx83O>*b~!bi{Wg^iB55^MX&)b5?L_OcXJsl4 zEeV`E^6;zU5=addU8)^%Bk?a%JXQgcPw4kje3LqE^RYm2dJxuFDvq(<;RcCy2Uc30`LaD5ELk#!J zL*ZroXR;yrvd^gHg+_))>)T1O@y#;f$01~iy5HA&jZvret<|89mM0#0)zO)u4XEFy zOcj6TjUYa+AbfMFjn5S#%xmCIh%RzS=wxGzU+XpspCYm^E>Re%`l_f!_j%%n*<}(1 zCe`s=j{fhgiIe|oVSXb6oHT~r*prHwb?ajz(F+3R3M~mLdTOhZb3h!scNRRl=Qlhf z>?<^QYVpUrab(@_hm^B*2Gut(I^$dcX`0eK{|AA@iq2n@t>-P4n8!Wa^DJYrhisyP0R47i9{{hcgQpZjx0~9H$nyj#vt0RBaO;FysTG zk@128y&Yr7%k{PMHq(Ypi8f`C^8>taxSGbAONyjU{s%l@yW!?^v6S&y`KnPVZh($~ zze{d%T=d)no;!7q3J>L*TShlMKqY$cTSoa97(G(|Mx9+>U;8?Io8q-hikN3I9N_$^ z-xm4Vk4{l&yt?Dtxq1L7V6-R2E)fu8Ob^9XUX_e^wT!6P>E&#A*`W-2B-S0mpD)bH z0Y_z#HcnGq+#zI@Sk&=bl${S>%{?#I<|-U~F&deU_jGm5fjD1* zsXfWmFDj+m6XVid|DW#^T6j+RR)B6?@z-(IQWvs&a3v8;WVUznfsHs*a8|(LgXr$7Rh{FYA1I^-A11S3Q5y0;`-gKzm1)+IA}clCja= z+F)Iyq>^55oql4S$YMn43AsyYxjOeiY%ShA5DY_o?Nm;ea1PMXGa?BE_^pk_Q!TY2 zs}~BkQT;r023?{c1no0DZqJ!2QM4^;PyBhouh?|0S_t(Z^GCybHN--oPrT7c>!udpPP)`{r#_EvQd9^lF8PM_RF$|rj_b+9KN@Sr_Qfb<}BVW=VcR% z$0&ZHqZ2>itr@|Ww-Z%NDxyCx3zU1;f|b-6#Xq@a*qn=$kA9~N14Tj52qxqo%SuLD z%roSnf=dx-O-Pj@P*b8v9?+93?ri0g8HpFCjxULC2ZyZoc-+VKquj>#=H%oXnHoil}-2*U#I)`T(9V<*&~s z06|l5(kgR-NMK2jUr(Llp+k+n_JB>&TGqS9Ui#>*?G^86p*HH(J{}cknQnnnG;nI) zuvoO1b^U~jZAjqs|I3G;1Q96chwDAnb#DNKlFGEMYNh&@V6otui)>xyns2S-O1IJS z9kC4iba5ew8Tm$Y%*9V1ipCRdSL}tjF0Yj9uKi9+b(TCht9h-rmU`5cA5EeyjdaYS zGvs{S5@yb?5~>TcBT=?Kqyhr>2?@lHzv~q{s#K!{|Ai9$!!uLxqV7%%sYM_0#k`ak z0fOxyXTJU^yxhCW_K!>Be6>qI589JK6jnau{;{P&DC;#im-v3h(yY<+g`j5cH0kGd z>1P07hHzY;cEJaHr7XVgKcE>?*{eghfT6%Lg{QLY2}T=WM&3bz7!O#tRgdW@bwq1@ zN_HuT`|;j2V-{0bWE`x+alB5#K_M}~n&*i`Z-^aX6xLj3q2END*&PKc+8nnQ<2D}K z@&0TnV$n*jCg$aM)~hX8Bgd+cXxVA7XUPPhSwbI;*{byJUcs|$ErlbRBjXrcmW}t! zWuBQ|c;*I+&h%z&A}K^`*;zY?|LZ%5`)6~P;krui`|&j3Fz#7vWG~x(Yog~FY>i(40e0`srcwH;kKka&G_cU%_$n9I)w!dp={1XHyGGFxv#`fw< z8#~`(Z{OeEYkCoR9GzJ+ z*0svw#@dstB0c{}Bp=33TK%flUfz!9S;5v=qKQ%V&raJ4f~F6-?UUog92Ti#@1uE{ zt3T91VccYxuGJ%de-cZ8h7{q~sSG*oF8TFtZYAShgtro$QV%9q>gYq-@84 zERh}HXF*Vcdl3sPc025xIRXZ#3Rnzfn~i>HA`tyZ+u(B24gj4Yl+#HXNc2jZ3?A6;)LFK314ESF)(=6 zIo*U=>v3Qi6m-5Z1VcpSOF0&l9Je^{D^$_N|JzQ_SVjoXqG4pY%j zn7AN@uS2Xu3ahIM^!cTwKZpOakSGzaVy!6FR+f{{hc{WNHv`p!R6e&v(vXt$RgPn@ zJ^1ANH(bI*WJ$S|Y!+a7BDmci%?!rmNyRWXj2D1Acc<}=$=)j_yJOi__TooTw_sHk z#r;}tDT|vwVop;V0~7|JMrA90-!Dmb7a5Nv)|;t!$ZxL5;eX$9;Lpy>`0yOYmE+Bs ze!DB!;x_mGUv~H~vfFO>5p#Bjwz#teMdfRgXy%7Ug?9A}W=$Ia=b>W`#f4M5?~U5- z-aU;Le02FcT&Bhwmf*$B-E93}*&7%w97W)fVH}xpD%6lx9U@^7NFKizkZAxG{!UmI zqbq_aRkDn&&e|gTg$|FpS)tX+c0&URpq78a(y_h}5-E1PpL-f+wp|r{k(F{Ci<)a| zETXKJ#yt)k62^c;>Bmz-)%X7VVil=Z75xlQ+=!~|F=ckq?&L`(T+e28pYM-bW!4m(gd>^MIv&eg1W{p5=1Y_v1wm zm|YSS>6X6+j_&R652fgX2`8TXO1*=CY2v3CNVBJ!CAJt+gMzD2ipIF=Th5Jmr5w&k66z9Yuv!ov#u zSZkTCKf@Vz9nCp|ryBW*Z$y=($x4E78T>!wIOwphzqUl~4}^`w)jL0aF&u~mN11q* zmf)7#%DJ86Qw>{_1WLi>TPNE%4AqT_%oANN-26$pj^;DIM9Lao-;oIM;a>t{_>;+C zJE29~`Ev7D7CLFP^!7sFuK=BG>5aBcBgo)c-*KBGqV@ms{>rihdpM0R?INBhN5O-V~m z#D~#?DUgUncSDihkcDe7i}D410r!Zhf^WD7Tym2D&`#pG55UrGMTDI%*1a`AK(YOV@Fo65HcI|M%<j6P-$+Na z^=r@ASy>#NcR5~~iVPGF)--RBNU_f?+|AqdNJbxU3_snA!qq-3E8EF0*1RKb=|+;b zUCxXebHYfDLe2(tF1$z)bUcPG0_$TV2vkif*r2Zq>YV!plWC@s@`WY zuW>b@j`w{W?ks4NL1ec07#A%j(coXpz+Ny$hD#2Zui-E+fICG-Aj8s*`NTohPNcw) zJpU7E1!_x0hY%)xY0T>@FAf`Ndvdai*3%#VIG4-KZgG|N4$>y7gaawBN`|+Zmu@ja zs>o@jz%@FC%Ea)ICin5@H{*2a6@@<%&fP-Z!(NgeS-DgD?$Rn@x%|CIltGlH z-q1`#{CCoDUtv+20UY>O(KVsZV~%2J&OJONpMwy2i6_*Ec>ik;9K#U%ij|>qNwxAQ zy=7lPM%Z=sW(duf?`zLV*cW$K+kxKb!IbCt&v&DE`kBQ~U0xD<;aLk#g+NhdUB4$Q z@hv^#ZS;^>(}+Fi523!efWp8Po<(dhN}DVkO|>i%e;WHAPFoz2-_gMs(2r(FoW}=` zstpaN!6%=X`p`&^(&X#uM|-L2(!?_~DTKh|Y)9^)0rza@VR@pckQ3VHaZ%X!m`(C7Z^u8USr6SVO0_NPBhs`~M`_B{8tlxjq@zl!_W#1Hgmk zzkvrYG&SYi;W1&uIeDG*J5(w$_doHu^m&aonaeF6!=vM2_jbRsp7pn2HQFtjS!b1@ zN4SRgh7?`{$Q@g|c)v{ZR-j)F4>?wQc`eI^T=*%7=|~9@NQ(Iw`usV0G|kry73W0N z7VKl$@c}4k2*v$kLS@YCXw-8nEUZ6Zbc}+eiG%cF=)QcxW zm2pX~6?M49M;WRDrbk1l2!`D&`!`jc5*sS1W#e)e8;jUTYLfy= zHO(T11VD^i;pK7=b$xbBz4UVHxR-lVD3$!GO*L#z0zuYaBdx)))MN=oVQ?E-xDhj~ z^)ue*Y=KgGIRTwW9Pz7g-f?`+UEX_ z5Dqs$g+~Du!eDS0o;BXpbjcKxP8v?X=wJhP>+~@WnU!JPzw!vw!kH}?g9+^xja}M7 zvHl#J$*piDRObK#;~yN5_=HW1B2ort!tVi6&2ztny#Ep$Tv{7W98mGvNwzHsd z9=Km4Ge2ZrXF6VF+_Zk=qAS2sLL`7n`7=@r#yq`^PUQ6Hhm7xuUTq3B-Trw2Jx19% z_P%L6n4DaV>@cB7k47XdFeL&O$~O&(Ir#+$IP+$+uAFvDDPORY;{1Xh)hn%Et(U}U zH#GeHVXEz#v_sibk@p;kx4NjBcH^W$kF&Vdsj|@-Rs9u2Frq^|g#$>AYGi0wdoYg( zXbr<0^w=AUx=KI6VbP;^4Qc6HNj40Eb2{mz4Yo_nZ6O!Z9RqBQMhkdOt0G|OEwTLZ!bsQyz!Bs zSzL!Kg%K;*%0;#3j8=A*1ce7*b{aJBr<1JC~QW2Ja%kDEzP^SA;1)3 zeuc`bzCmg^K+1LAWdibH`MkAnwv{3l9Ke{aA5H8LWl)CpiYYOW)WJuRrVU`DGeMUqO+lJ&AC1dy#nkoXggz zSn=`YNA9$+a+*;X64Cpl_j~2Vvhx%R4+Wxprd}xS#(L1mwQ6V1q4a@ zfph9-l`thi;8Onm6z(;E-12?gvZpPr)yu_iEf!rKuCFg5=}OAbDSq;5w!)ogA3q1zFD!Uz~gq2i$7)JL;mQ(qc8jOblZ zE_m(?{ULbnUMu%TrnkEulU$Q+>IBRUq?kK1MQ@QhBtK6f;=f7-aDA1s)o27Ku=4^Q z0AA6A`u)0P6_<93*YF2~bfbbS&^TYwOyb zIX$(VuF;DACi@-G3h|7;2Y*=U7du(hx=yd#h7FJ|7l1XPLY~CW^>Y3mg#j3N_Dq7c zie@e(l`D26>IU=6+V8i|>s9)Jl7fBkS9Ov}!IlysM{soyGFG?1Sh4*Ni?0`#?6)fy z-kg;hzLlBMit#j#2kKDV)23$jzdXp(BYm!)^B=SwahvYPco!?@TePb` z;i%B(OfnY+&=apj&8eP!FY50k4{1RaHA6dUVK6$urUa?Iu2!*yviA_Ag%x0gpDITL z2}5&_)q#`w_eBye=!zqg?)&Y#Sf#I`zi%^>JSA!cECtEm+jtyVtcr0 z$hkEezbx|Lxw&3h)bV6U){B!|rOeo!Ru7&lewfY>h^4iw7&X3C5)J&;4Eiin)R8PmAQnfIPA0W3*in+3<1iuV>xo9 zRP-boWsB31Qmog}qzDp1KCV7r(gJSQXnVmajY7hFF0;6)t^d3iRTn>0ZKm7Cd`J3a z9f1g>SiQ~7X($hRK>=mw?LBz-J$h)3UQjOcBQ0TeW_FQN-US_2({bT{PAdV_^C##S z?+1#(lG7E6E@T;70)PEJ8I zU@(Akpcfg2)=t6q42&pSzi!wV8ChU)mX)7qUM=u*;S{oY|R=x<=I?D^*H zG{ormH)`PU$7MM=DG=aBET;(2B2Eb1Yevh%U`Y8r@4wQnHbKZG!z`d<^6LyS)Tn=N(MXMC)y_=mP14aVqVQ;Kubug5fzjt z-)|3O9_>^Y!zO@ksrp?q)6mIb(I}p&FY}}q*;IYu{}Y}A(Hw#hZ*%7E?jAB%S)TGK z=;8B#5&Z8UP$>ug<^?=07I2T~LfWIqlMyV99Lk(e@7ku02Y)c;ha<_T z+XzlwvQ#b4cM4Z{(dh1eKc?e>u{1xNt*DV!N6+?P;cG{9(87?^fAAe)>0Mq@kdTOU zJxgX%mJ$47GU9 zU+rO@2gP<6b|hevpN<@p4SIsrLW5AO;xSok*S*1v$IF{soW2+s8Zy$p`BpCmm@lkw z)uDUXzdPXhoR#y7ARMkWl*m(M7lNXmW9u6qIDqWc(}6ZbQ&A&h9@n+y7$012^*ZB1 zmT$np-h=zKux+ZMtWn`ek)$wTBanG_bLXvaNI7a$mXG_lknk%0l)<#7hb_HCQYZUNcOQ5M$Dszm0| z$nzMsSFLV_|L!)J|5L4<`j+5qz4Lb`xl8*6ygi=FS=+>>y%>YCqLRURoxR7Y)KAj= zi15te37Q|^2e`*5GnN>91v6sL9*nF# zcpA&s{Fi^Tqac2_)77gSm&9_+dnP`)ldx=mu5vlkMA=BX>PVG|r0)XHdEH|9wV?Fz z{ubO%ytX?`h>exbfM7m6guMwcHu5qpc0jb(dPzGRg!XFuFFNDbpF-00bl$#Kl>}ya?N087QJ5bG&G(we81sH*L7dtpK{~B z*x(#ZI)b;Bj*9Ad6x_zBDD@uE1_sj@>3Q(w-|Dcj_}|MGgJd(fF%B|Z3DP&-(MG9p ztH#ZRlqGO!$)$&#hnFQ;rtzO5DT&4wqjvu@=@88>+> zM=EfXFMoptFZ&cvsWJRj+)1IAD|910+1i6>?t4yA`U=PeI_GJgp=KJd7OH z1S1r=FQOD!)h~zc#IOyFU>a<@@53z9yW%I4gSlj&cOK&t5@uEC2FG_&Zhz1Q$OJ?N zo!{KvL$eZ?SG~>c@J1(gaiBKCu#pv+VBSl*;4T;vc+Cl&_*Mw%g;9IY8TK8FCNm5! zRvU^1$lNn2Jh zB-LQlSEJ_qU&UziCn&HeL`d>_;@Wf|{$n)&Vwz49$7lve$I73251l*1TxG9D_6KK~ z(6)Rj+-EopJK3sVqrdm6Pd>taIDW!aL#EyF!kUwj4b%PWm7C)ew|E*_A=1%L!<)O}8Phyn#LY(ruUp@w8opxbj8b$)B@jL2!6LWF%;mKf zXPWDq2k_eNNCE9({($=LhKHZdb)qOc_EW4s!x-P;#XH5zOMeyBt#DmXkw5#4ApSO` zDbHu56UidQ;i1O>0$pM@HTJY0p&;xPkOLrfGU}EOAw82ILCvw6F6XOM2ASt4!C!y7 z3H)T`9J^?iQ5vwL$czhkX0hFkYV+}OXBS0BFVHwuVOjBxzF2{J=(T@f_>tFpbh9Xk zrY)8t@h7h`|k@Y$N-_+=}rCIa;mO46SP8(0fx0&WjY63z2uH3 zrfoVCytJ$cL&$p}FKt@>H)|*pTe|++JfuFuS}grnE-b@tQ$i9pG6;9BCCRd-U>J?! zTzRzP>RIL7MvQb=tAgx#>uQAcPmmqmAT^$;P z%WVDD>7eTK=Tf~aOFFT&+KHK4El569g;@r!IiY_vDgSJ>v9r6{)pP@Lyu82tn+q_7 zGyG^UDwpo`jKc{eT|JoX9pP3AePF{yf1ZR|qWW;0m?3x^Iu*la_n`eX(m=x0N*IFo zB0>AMGV?f7)V<9JBZiMrP-TRZ?7jRc%uDs@YML#S{}qW7(3yD?lmdfLkhH(c545>E z_P%~iCaahS%SmX;5$xYRER_u^Zm$?Wu}SlZ%(CGab-V(pR*|N!>1LBO>ky^Ceueqm z_c^C}c0y0V)QB)3Rr+c`AypC9}l`(MR)7ve8P(BRz~nh0gBcG?hsJK%8WByHHmS{e+$|)Z? zbFz8%MY|~x`ExcyC9owP3~2CmY?#s2m+mOmEn!B51W$fYw4PxFER(1Ey_VB*`JCCN zRv&Eh^5vPQYzaYQ9U6n&JVt|1{)!oKzbV0r(oBoog{MgA7Pl({kXsn>z_74VH9fC6 zkq6&^snb&{y&s>ix#*T)MtWe35pYt35*<3!-Q<(nB0dVY3>Y!*Je=Yc624}?R^KMf zcXl_FW*4P7z=lJ%Cd|73*M$ob2Jw0FyzBOy)Q=W6)WX$uzX-HRd)t00tTG;_R;R=4 zljSC$lJ@CZY|}>n?J_``)|dynVN>ZhXV4RxON{rhaB?+Gw~$lP0=aT3XQV-AR@1ok z_{IHkXS2Om$w|bT$C35WrF>UT%cqJP*pwfzC3zVol?o0H7H6+ko0qke z4q@GDF*r4QC!nvA^-r}M`!?XN3w5pWO;a-*1Pt=_kW6SOhZ2gSc6bU;wPoS~Qd*IY zOzr%}bI)54LFzvbG)m>CP98p|I}FY?J@Ss_HZW6N*LZ004Sc`sQEcCo{+nc9-w^U2 zXbkwk@?k)r-j1$ejzeEf8uyU=WqOnWuJn`1iT2Ae3w8#_C+B;YwptS!T^@adKFb|> zC>-X^gtQApZo5ta>mtJhP!CFE%I~mbbtJ0^^J0;65)aY?e)$C`I}h&Eb;x^M@9OV| zIa!|gZLU%aBj1l7elvhHuq~s?)ax8P{<00h-F)X#ijb*Dh)eJb0D0DeKIVEi(SrJ{ zwLD2d0@1vL6H9I0IN=3Yu^A1nbLMh$nlWuQjD2);&(oZ`pNUdv-(!p6p-gBsEp5!k>}5lvVPB&s1a{ zfY+LUnP+JfasBW>&wD8WY_jLNO}PzC2)r)4I}j084xD^VnxHfZKBLeF;)P+(2Dx}0 z)d0H(eIZ;K^`BK?=-mit^en93isH8H-yf$V88aqOd*mx{2ZGrghG=K&vD*@vlC|+YZBFidm?4G=Z*Aowtjoh*J#k+fbV9cRQOUPlW*k8 zd3h9$uxR8;yl~o8^zL2Vocr04=Ge|_>yy_vrLbT7n7lrVK0{xj@hC+{SiKtndlET* zhFp%=*xbZp2{#OA$YpGVanPf9&q$8@C`{|~>Yq_csf;1sL&L);Y34nw?;RF%CE2S7 z?dH-evY$Vt%4U4^3#8)B8ZM*7WD!Ri-N*}Ar=UT)E>zk_;)Z_> z|9@}TVk5@m>ybpPxuszGQX~StNxJhwpby+NAVk}0A3T@HYEqXWSj2*BOg5PH16I#- zCcKR1@Fl;ju~RdmJv?~`(rVGYcML>xf9tu-cWr@2(;l9g)nN;L`&HzzJ<(Suv-W;IjB?55sRA)A6O-RIIy>qxqGntShJWlo$aS1y zB%3x8Fy&qaeBBVswZQ1sziUUdgH}AR*I}uH%|hv3&GIbK8p@{Rq1HJhgWvmj5?OFR68<=(#cfCmfePP0_+|GJTdk9N z@T96ZfVkI*8g8MppZMY>pPbFD_n-PFJ3QO zWW2dkvzPP%qMq=>5I&xvVRn#&`j_X5ii>-02Ju4G4j3f7l^_wnMh`TVDLZkd|6_O` z0H2-<<#v(wX6abg^&chhB+q>=;Lbyzq(-JypB@ePvtR{2Ezko?u0o8B&+SxHS@QOr zZcp~q3x5rsy?klnG-3M6r5X5FVNSE2-e6#J4(=>vah6@trx|vI z&B`dD4&sotiVNEdr99u*^BFBFw;K%p%t3yhn@Yr8))YIqS_~rOer9N7_*=)vyC+CY z2oj-<(Ko&dt%2ZEd$C`zhnnNn@e`6Jd8ThK9y&%&G7d&YHPpI;kr*S%nmG;d&RH8( z!ip{-Sgf}9*Bj1zXKwc^E}VEdI^mdbc572p*qQir^tA5&=6`$XoD8(NU;ni{%*1$H z8DH35T!p6vz=5t>hF*Y)NSL7f`tCfsm%N#S!=S$(=$iL)2_{9BQUv}pH=fzDM#$Uq zosf$cEi>viBQpzGkqhxwKEr~Q=onL>A>bw+JBdH{!&}+E!3BytogQUItuGtBfr!4Y z&e>y%sn#=F4C#c+cV!nYuEYa(+rW^~D#kWKS~HCK3;Y*yxCif5JE$G;39BJ6D8y4{ zW%~=3yS)A~hEk@~Za(D3$@5PIGe^R$y-Pc!(hjtmhpT9h2Nzz)&f2BzV0YuzLz2=x zejVPoCG&=S-N&e*1+_U~lQ|9^-U$f_o1rAplR4~$rJHaNdJFjieA!}O=&+1I3+>3P zZVD?sdzrl4MI(IMMF=FV-Q*E&_YxFaLLkDW7Tgh~$hG1W5-{_?^RmiLyP{#^w<>O( zQZKUhdd&0kz>)V>#9_qhuS5&r_+H9r#iBH$OLYI!3{pY>OWwwZRrIl!1&X1t2%(K( zi90vL+pYFS;<;VX^!|Vi&6TOi>2R>;{O^v&2&xP0xq+E{j9dMNNY``ip>JN#>13RD z=MpWOGJP(}&Q_I*e#4HUWnUvwd7u}UVMOSLM&}lcIn*W5%O?HRBcx)4@S!D+VE>3p zI2G=h@F1)Akm3QhAbM46>u0<+_fI7H<&{$AQ$~#|51cX#G>RJ4Gkd~f)}{1Gg&hO= z2M7LTVVMoMGDXlGkwxZpBurlr18+QBv9XUIfEO^-?I($N8!8)4GqOF#w}5ddGQI1bW9OiG42wSMwCZaBS_C8v zNy9zj54SIPgjgr8p0O^Q6(+drT8#(`{BOef&a!u=3@Tk}+j#9E<)-2`zAv-DVp=v3 zA?&IeJAK0(a=0Gp#Upgn7g za=+T{#|F3}3N@F(NND-Rs00u|YIcDA&cM+$=S9}ZLM7G~LC+ce1%GyxkRpzJ0{%9F zY=9z+ka47J)oRI;)jKS}( zSrcF^(LN9NmWNn|1B4;_hCc3ee<+t(aBDVzcyoV&vm!wqCCKQHPF&(_juN<+0MK>8 z$oU!oIG#gb?;F$zbjWzXJeiiv00Xvb=Tcv<@H_%BMS%4pa#%`}`EO~mEvg57JlqEz z<~&xzV90Ccp{y$gtp@o1{(gR>yL=WAn3VC~1QhDi>~cCR-waU5$|5}FVT||=xv1%i z=0B_0zahIc*7KO>MeQwG#g6`34WU$WOvCN?LgJ>yWip*Jd?WU5^OXK@ z<71kYbbUA%9QZ2jiJ1z`5aTFfZzTyd;r)`S#YFli;KOP$x`Z8SI#(veMdrde?ckALw?VZ} zcW!h$hvKH_&)N&dC1faX{|7uKWpJ;Q@}JDHP1!|dMk1cWuVk~tr+8cr`Bmfvdqwl% zq2~|Nn#!QF*|;}$xt&*te8H5HD^kkMf1vnl|0cOqTd%O|hp8(ollHJ6@289@hK5HE zq-U8Lo+Qy3$Y%JyKY=Dp-+2M^uP3Yc=+^D66EHe&0ajfn&#wSNh-tH;U5Y9k2a@h_ zT)ge3`vcI}qNfLL;hS}v8x>bn479o5*lmYVoST#x8>R6Tr&asi+_ZP9?>*qU>h@xh zo)6D@Od~m0e866E8w`Q+t*!XJ-Kog{sWTsPL6<|Jez|y+W0IA@IjBA(onLi!tNjo2 z#|b8GNWl}avM}R3xRVZ=^op)+{clC^OaK4u{gjBXA$%UUpvE$u$l2MJ?8nC&!4V$c z0pp_YPaGfJ)-!sGbdErpwd}?>HJuP1L>v<4Kb1umeSQAV0|M|Sr+j<|fVrjJ?)XFa zcm=f-2nmMW1kw4rs;gbpAh47`S6G0yIJ6+BK&2gXzNl;*XC9PTaMp}CU#u1}N}sPq zHbY538SB~`oE#^tKJW5o?Vh2nd^=d ze8fId=DrB zbVh#bG?6M_-#DQn8Dw69!rlbKzL1ajzZj}JOjk@P}lSVB)UJtQsJHb)`bJ6NV# zQZ4=L^+~F+5yhH^>gmtVRWpH$^-?)+teckb)zgM(K36lP_)SMMPzt&vIA@w$`F(WQ z@kj266f0_S-EsVXnv8p02xvNi*Gmy?x2<5l&ql5=(zPS?2Ct;R6(+?2h7dE#2{eF zL*j?*&!>N^VVXha1FhE_VltKjk_tS`w@2!AW+;ffmx8qFRf6f3MkY?e>bgknUxwof z-RC(>Czz zSDhZ&2j4ZFlfCNmKqS)NMZ9WhcEfM3)~^ck^bgDT80d43R3$C{HE%#Sf>!c+34GSF zUaWD3JEcc^cjnSsc;$KgCeT}~+DBl5aA1Eq3;ONHF!kQ`9Vo-D1d2BZM>VoS8|}U*KwpnQDV^R&~8KDd_FecO26Tr zS{dmqe4EZB#H2hP-u?!hC%DXM*~?WX_$9>)??gP&H#pukH0t4bpY@|9?UV2!{&DW~V&I7LYbVbBSk^U2OLOj>KiiK( zayCPSqE}gYZUxygYT&Y`tBi;QB-}w0%-?WKbmB2*i#n1FrzkiBGrXamM`6ZH!ax`= z&S1RNT{Of}X3LBthKr-dcTGr9^B(m(>Tlpf>Fqhom}vC8Xm6ycPNJZcauacNCx;}) zE=V*J76t{po)q=RPZ7m%=0lJZi4yE(VI)&^(un4vRRvEh1~$oFh!WPC>`6ip@jp8e zlaL$?d|RvI-yMyT9OWml!0%ZisD$}U0iL{k*Ls#&rfzjK^@fT7HwZ8|~apAS~~$Rn#XSoTHH$1oKe{s-av2Nxyh z(^?@kTuSI+`HRhy3i<{e@|%Mr&U>>BuCBlrhjNDGgaw213Qg_%L)M>HHMf(p zb2-4=wP`!xe#X^d5aaPJg=s4#g%UMfASTk2*QU<9|AN(mm)T25PEJlx)-0z8&s5IC zOVIgL7V4p|MZ*@qB{0`3a}6-Q8yX+Ss5q^w(r$BOlH=M#*9JW3a&a@WDL?)^W;>;I zzFv=B0i>H9ASIy>xUY2C(U{@P{M*2*77gU!>h`ga;eKD$8YnK1=38NJq1C7n<=yZK z_G4@zd3-)}l)(A_LgwkE>0kM=h^LYVJ6_ z-9X4q3tc?5Q$omotu4)lWBKTWjS_ef6PKg*6h~RCU_<;1$d6W?54;cha{gVGeAc|$ zH9MynA@ykZFe@HM;eZ$>{25Iz0oUO@sMk5ko)}1E3-0Ud^JD#OjQg_M>!#P=~*9#gY;N;q~h9@B13Xe!I+ z8RoCer(J0li)plEi>RfHE2UJG$f!aEmC4uS;G}f$5+F~=LB8PL{e2{nravMC09?8b zs<-%wuxZZh9-12)C)obnea-AQoy-;r?31RlUdKDbKJpgC9;ufrH4+}nY-(p2pw|;d z3B7(VrE6=P)?`DCGY`fHcj4F8_9Qik^G(h*uN{AZ6K>V&(%d}C6b(CYf>Pkq2&R^v zTK7p)c>52))YVb^sT@SN^+h#uLPprZ0rq}WCV0+3*!c(Ai6w4zLm6JGef42{Qb5_G zdgR#*j+%vv3LmhbVu39;K|e4tbXNgmUzp!1CLysDVRyW;K+kmTx53@^cKkh8BvS0x z3W3j&(&Jr~2PQ-Lr;iuIxjZy1x+nAtSU-6p?trl+J5;)R=FT;c{*kcbY&)7(5VJh3MVLM*0rS;E-Pp^PFlPQ7aks6zMB?@EnSD1k^5udsN!`qyR?Rc9T zL5~VBJ?lc!xt&X(rvw)~t5ae4RRa;U^Ej+o`9vg0SveCIA3=Fz)-Z|sU8nv>^*c$Wf%*NWu z31UJEnB3WB>x;~btNf($e2$+PV{$OJ#Q%Q;{&tjta5w|}JO}BHEx!s^)_N8)C1gCv zM=XwGqFqwPFw2T<`#1B|SzS3N7w7#k3*i{>JdxRFS-0;J(-@tm_0>OSXjzw*6=KZ# zQ$XJAtbD$o7l~U;p4)A|yO-L%)G~yRm6T9I2$z4_%BFa*(3@nO^b!AzUSH3puwW!% z;Xr)-VtU4e7eF%_*rmDO@ro4iapi8*j$EsSy`biT7_n&kwGyp_c zDTh6u8HR!mG#jRRI2&80k4M+>I4S^52bhs*pwnnZ7NbBKT6kRC|8ezJQE|21(l#DE zxLeT1-Q5!0wQ(o72X}Xu;O+!>4-UcIf(8rj{;%hI$KLyS|3i)#V|A~)=RNDHDvW3n zK>~{`$I!BKpq(BA$G-mJv41&gLWX&F9)nyE2*Wkb#!Q7nN`jgRPOa`NSzeN2>NIb* z+o02jVNHfLa%EXErHo@ueEQt=7(FsMd8XWA88h*G5R8D?-o$b{55XvkAkfh;dC>H8 zT0S41eOuNaxHq~@kh0Ky*s@cuAWj!nQuFE*KD*fT2c4)W%`eTW1jZ<#DW1@-I8ikmmEB>ZNIJUi6=e0w~wQkMJGePe)vuw_-=%oq6}_bdEDG zhjuu_fWQrmzC95Q34_qvtf@ncr)Or>!c8RjAQ zRu;m(xpYifc*IehQYbrICRw}<=QxJsF!W-W?Tt_EdwhH(@lvq1 z@)Ij(fq^iA#4MP_$m}`M6N8gnaa6>~-dx{*jUgo{D=zB@&q-t+HBn5Zbmk^c5%hF)14G=iGEvpgD2%p;NjZV*Sl|M^k$^^)pKF1A{`gk%Ed}7*wn1VWNy)xWzF_sJiYJ1c*C5?Wpsg@Yb{JsAoz1B z60P~xVuT6#q^qy38RMpb0Xc(lM}yq74$vH}(n}mEBiWd-9TO_GihPv7MlpME^-%dg zEWm~U6EOblnnn5{&6XoIB0zEkemo}aBR60{7Xf&r*sFK8way>c zT|Se~9NQ()ud5qfnR&^V;`q#|A&c3;X|S-c`k86lSONh$?Th2B-DfG&W6AeMZ-?lC zpLX&bFha@6D?G8~-y5hC&9vFB>rT^{td^8LR~d{0yV; zoqyxG8le#6`u5Wd_oq?AcKBb@m%>I=&1l--6;m-iTa?r$9`sWuqgh_uNQSOC`wsMC z^#z`9mVU_c(gW*}eBPaQ^qV}}h7_R~O4)a)ADWjqce1g2wyW08`rz}Piy*bcT)W-})!}Ym)IKs- zB2KG$lIvfTvYwC@o5CKsZ2k4Q_fF<5r8G${Z3lu5N3+Fvd@hzPXSa=k``0N4SNwEH zko3b72Oo^+AQ`K*J)-4;7dO5m&|;mUy2C+F&DJt##w@NTF0*qcV`oLxMsVago~`uu zy*%|{ukc(a#0oc+lCUQ1Z&pf^UmJ^$PmbI{4-(+|B~Q=YzYft5x4t*qE(NB%1@@|I zuXuVP2>$6PD?Yo5?lRwG!4s_4EsYYhL*ODWTFxV;w*uhZ<4a&&9QkA)iC+cUo0OQZ$oqEvo8q3<>-DE9SXQQrX7_l)LkfmmB8qR;{ca3lObVeFseFZCzWi-NOmuC`w_3C~6~3uir3R+SX-f6p&@ ztWJreO0KwnGh|mnQs#{ZUXcB^H!+pV3szU5V6}fQ)M?Qo5FMQR_GG-BnSQr_TT--Z z%ZeEyuMZ?BJPVCxYe|KKP8D|mW;oEPg@m%^?I`njd#-vco zVg6a&w3spyOw3qX*$<}&TOyxl#xQf+3}Pz^h0V{;$KQS7EWwILl;ER8Olh)gs3wkK zJRKR668&A}vR!{>mmqC9Vl%W3!Jb3LD1;yeEuB;6acvGM@Re4wwoEYXR_2>b^Wc;q zHdqB+h6N|5**$OsH4G``wpvOtR?^!h+CPb&dnvDbg-IbMqK=H8ljMHp4W!S1N|DluVlgH>)2}DG&^zg2jNB}uF~}8-aBgHi^*HUzpi`R|(06J& zzK-8Ax;pgOUv>}}TuqPZP0}yXGady&`u81H$v0z7Jig^%R=BM{V=61DxiO(x9{=cF z-3@GlQdi=@Yg*v_-`7P6QKA5<5me`QPutABR##Dj{Ue*Dt}^qRcMn=IF?FX~-`Cc& zSHHsC!2rTLW{li0ij$Y6%<+pKC~IgIthkk;z)pVB}2&b^0v|?nYrGpe)i-?t+sMkwpV)||v7{-N?V&%6~uFHN}I2hI0 zXi1AXe+z3(IWxAN1d${_5l>{(F3dkHe?GaIy(9FkFvtED)b%Io zm=E72!!@ju0K;ArwIeylQpu$_EG)^2*zYDuNAi%u$T#-#11Z^_jSA2+s#7NTVQI_= zL(%w!7EPgxgSRu;3(ff`Uqtq!aG8f5E_WprTQ@zX_FluS<0C=_1j(UpR@Rb?LtrDF zW_{ZFo}bop`S$qkKbSx94J{p@JII$a{Xg^H|KkyXx#*(27YKR|OI44Wv7b$N*egDW zw}De2P!5Ol;y16^jK)NAz8r7P1_>RhB{<$3l%5UGem583@ThWFl?%VO@z`(JCLwYd zT)KAb--6`v6d@hZ;fF*Tj~wIk?(t=>zrJGKPpou7X#E{zSD|{Z3=0(?k)H}u(~MXqze=p2wzL+XM8e#w-!T^*aze+F z4Om+tNeHiOnDI$C^gFc#%HGxAnq@0x`-$!{4YLq5;fXeohUJz=NyV&=$HhiQ)BRz3 zoc~OqFUD2Hu_Pa$mCded;smNx-_mY({Ag_m{xzP;h^gfBcezf_@C*Pdut;GzE~=fIEUVLgx+B zdK$)_hm6AP=C*{ZI1LunNL5wKZVT}(9zT!j0M>^38aadX@W)eVi!Y@o-qD;mvRrE9 zW5)gd4B%j{{N}z`)*$u}PTBwx$gOqt4y9>s{FQPIBihef;Em}>+m7!n-iCAx=9ns& zCc#aX@~Rz{-*!fbmcjf>x;DC5wRHQh8K*o%3Y0^V6kG&Qodn9Az?#yj2HYeQ%$|Rn zy9lKOM(((exJ1N94LESGe=yC4DM02{($!seZ4WMlDOx2BRO`2$#9p%yBkfnqkj|X` zj^+k@hS^J}%XJ-8F52DRZ6jM7nY{&AAxqDI>kEj`rom&q4P6{{Ak;m`V#n86o`$2y zbJC}mOU611VdnFE5~EKX#?t`F7`;Fif+3*=H}zgbAT9ESzg(GCcK>UQn}?-UYY2(s zeZgg1twA|7{OJ=bddTog-!ATTT&X@}x;&4E7R}$wJ-+vur_+b~KWv@OFQP`+E!|Dn z_Ds4#(wZBsnmQc8>ZS`1B#10$CX%-F3^>kO_2UiVE(xXT>!FOrc;NW8g<&O#8Gv*! zF5pi>t&{S{Befo!7JWa7(wF@*M9yg(_c^NX?C!f zY2W(ue#;O}8(V+5+>(P-M0kh4QJGEGU?(PA zO;xP_)Ig%BlAJyoHXq3ZZ|&5Xn%VX<5FV>2?C`^HP=-gF#^~Lo{;$ zKfgAW-UCI|jH=5~f>x-4Ax2>D^2G#+ZMP~srruChp5l+~a`3>e!f*slj%6|>09f>r zAdXDz&CDp{@tPWrU>8Ud1tjBWVDFj3gK#Ruq*A|IO4>xjRufatb8~#lbnPzn+0kmT zU8AmgziEcQhfVk@DZ_Gc^5k?Q9gE2-`8B`I(;B6K!91Ey3Ku67rgWTJoq~ESx}cN8 zD8IFB4?OvAloMYqYw%iqGqFw`H0! zWwPC0uROO`&ru-Kr!f1iHpioD=RX$T<*Y{Hfvj$R@uTHqqoGJJx>o(KA_sT|Goj=b zSxi@D~l=Xgh5YD>cr|1_fi!iDWj262s!^FKF+;}z z##Gvvk1pdPG)_un-JU>_U_(_;hRRnHq27*Y8ZvaxzqJ1CW79374{E%?Hkl0~Bx-E9Dn@7b;;9Zyet}vg@`n!QQE!!J8G<9ym9B(FpwfhNs?m{mZ>dPHmuw1*Tx* zwD5@FS8Lu`2rCPI&)i`>d3bubH|xl)*n`}(thLRX3ocymA?t&x@IhdFJ9qor_$8}1 zq&UIfUm+y?(JPyoh}ByNlCScnOPNDBz+^|Cm0;f@ARiBv-}QB+qWfRw4?xYlCh36A z9ILF`L{;PF*r}g^#mmScPh{ZDW)k4H$8TQIYjwXN!=l!5T$`e2q3vPr{@n=8oa?~y zUB@Pr(zKxRYAs6R(`mYDhjEGYI0MD4k}ExIyQ)Zg)b%P};t#(nS^F{PQ$lQRwrTv2 zoOlcECeKjcJMGiuqu<)R5-trhrY)xw@74TkP8n_g8Hr{5<-mbl&CMno&EUO#N+Xfn zcWnoz$7)1`I%T}9%)nD@`DNvq;C|oH5rrshk)%bVDjM3Hn)^|J5Ad8vXrE6rzDoBE zk7c76i=O;@ecBt?w4ct=&Ma3mxhGK-#QK>Kyvo|lA`T&a7dD-Ii{F&{N0*;(b-Q*U zYB@VN9~#c3-%K&2HuaTiz?FGEur`BbsZ7jTpeD_bt$t~KKKugfW&1o>Y+esaMRBw+ znjoyj^XuTSdq<-K)j;vHw>=}wsdy;zQT4|CihXF)me1PU?bh`k3rR07W9QNp?8v4D zIZmWi2-k6FjmY6(u)<1HLz2;Wc zdPHaua?#Kmb3ej<*k->(FMC4b%@M}^!VoH(F&5hlxx`yHJ|1UM=7At{(9N#z^vWt%BN`jkASF7YI9q{r z{>(QqMf;0*ggCtK{$9@1F8TYQYLiGdww0ZK_+JMh_(V5mIyg-tbR^y`k0b+;s1jU0$xvtRKFP zA_@q6jdqCpt+W=NhV$cRf`^ZzyIm+xn4f{VdYlDLji|2`Vo59`JWumsqvT0#O#z$* z*1n02Cx%Lu#y~sdEMpUjyU!@!`qPfJaT4Qrnt?CvdfUTKc>`ZxU;A8=g?IfDk+Oii zrIs$JowH?oJ3S`4Gnn6=jx>9_lcQF1ky- zfQryIfrA7-MU7V<9&%})A~X}7sD%xVmM+goXDff+^JF`#>~Tn1tQAPTmLV1xq(U(l z#Kf5GPs0Co%LLOJoRAgw4>q=VAo4U?3lTg;@g-J5RMbLDg8F=006p=_019{}6y|&u z0-I7ygxq!mTYW(k1yQ#)Gi9H|JDOGM_raS<0fHz;Eh#}(GJ;@lg2<0N4o>o=w( zn<0q#v1t1_45{@xzK$hRz8@pva>18rC8R~eK4ihPKZF8_g^yiQD+NyFtt}s>Csl(i zpm%ODun`Ywwu-gi)5Sy&lObXh?{S#j%^8VuVB_jCb3{J+i>eO)@vf@FqTa{PE)y*x z9LmFYsIX!P&`puSKzxV{HC02i<|4ax{9G-i?3oEodReu7Feg~JvVXH~r+-OSY~$+t z=Yc^QSN^F+6)HKzdBJp?z-Y`$i_{Y((_i|{HW?6u|Im|CNz*JO^nTO|Ss;kAW(NIE zt=@Zdiq9^;pm$?tXU_qqVV&`g{)9}5h5^N8GFmGFX4hN!gjtEZ;A6dlFLS{@n?Waw z20f=S58R!y*rCYk!L4{umlDh+N!B0c*%r;7-wIXSQHXGGaDkJjNwt2#pm zUm@yjk4-y51-pwk!BZn$9ygFmHEVcW)ZqAaYJOD{F|W3d!^;9UfiZC-u0j`q%17+@ z(bTF%ORU$N*3vNbCs$8UURiVo0jb5{G}P3h+o~@b8oT$wa)GFC%%|xfv9I_9mcQ>( zcDuS@$ihvW3bL}Y{P**U84c=ZRMdX--|nCy-&W}8d}Lpk>sPj}`zpa-uh1_~O-aYZ zbVsO!{*O6J)?JmwoJN!>0F;k!1TwH=;bN%f_=%0`pN|DEK><050lFHDqKQ(dq3@Rm z?>J3%VS|Cx!7Czg!U-hJtDX)Kbaf5FS(}C@*gfWo2IEg@smV;vkG!%RtN(&)ln`&o zVc~JwjP^<_pR!vD+Ny~QpUt*EF8z*NE7gyCRoQj0`i*5{?QEo@CO}td?I`9(F0>3r zNSh1!3wT3>+=c&9I~Xug#gATc(Xvw^zw9$1pC$!dYJbH`P9RDqXFMggwEG5+G%fEc zuhmqDoLZ!YOw5HvrPE^U<;wUbP$c}>%(eZkA(^wOz`&RY=d_~FZ_%dT2-kqN%JOF2 z^aCfJ>#Tk?L|6GZEHa0YjdCecA}v@RcL3zT=U_J94WU8g4E@NnRMZUlw><#3pEIlZ8`xO% zJPD|vrbmAdac1Ea#x+~u1o0fO)!}JVVl7)8|-P(Bp2kw_R+I_m`crd zSU$BpblA#D2)c0A=A0$sLROHL=d z^m9TqEfbeQYe}(%Y520ItE+4OX&es03&zy1;9qv)8X8>9+*~G)&1}ek*IoIyO?oz} znua=gr6LZ4-Aa@-7`Shaxjt0?3KojE1PL5Vq~w+3*33zr*5j;#AVQMkGH&O-1P@K?ojI`@sXc;Hnl3I9sTMv5l?(e2-?@a(94A>tiy9@>tKj1;WT zI?iJz|$YDqEbp@!?Uy6gp|%SYaWtU2tZjWmsfhql0i z1RnYd#ec0wL9ob5{?btT?dMEbq+aCBuP4w%$xEcUwoHQvA+HI9gfT5k=e_b%-5^~& z`_@B&qP_rrYV5*|qkdIczn=*Q27!a;-Ed!Yp~mRwj1;Fr+pKWmNWDRDHoB38p?iIH z4f);q`U7jL-L`~@sw##tb%?bYS;^5Qf2ilxmdN<|kxq$;%W5ic3`*L*78lDq$p9t@ zObMJF)Gr^{*xBlwE%1SW_Yg^XZX0FbV#>qvF$M(%h^GAP>wCZG0fUas=+@b0$*ItG zs&52Y7^#w1ia26QxITax+3e~<9Vsmne)4ref9jwlGeY&Sf27|!(9dM;g+J+;Wd#*! zNr=1VrDNiZk-n6kamwUt zAjW;eSf14LF#lnf^u2Y>NH&$B4~e;xZ0iz;=z*O;4Uu$HbiHut4lMXwR&lKMFEaow znh_!k+{y< zZKN`TCeZ94$d=_+6*VQ{^h@EdQ@Vo`n5db%d28oO4i1@FU&F`U`2tY~KH_ENdU36M zG{aeNAWrV$Z}y>c5G{HtRwJ?*Ej{Du#GmhI%ozAsXb#`yEbZ+vwO#S2drZ9$oSqN* z7suQ+s%zP4CG7mv)HVBzoAcsGYZB<`PcBTfQEI%6J%fKmA1m0a`ENzlZ3Bgy{J??& zp2eyzJs~k`J!M-v5D(nr^Lo4FWh#B(dKV`A0(t%C7v>V;IFLjTl9I?E5J#wOSA_7* z@>D#E0_QCkA|O*wUwnOF^6BkE`W6N=*FW{VkX%Ll#{gC}n?n4$m!yb;mXsRZ+>AQ$ zbf%MVl;yX(4Byo1s30ZtkE+G>)~w&kb?s@M%gYse62;t&wmUXHj)~uDmPqWUcmA63 ztTdo-TT1#yB(B%WWR>OUaR@N$Y5Wt6{;FY3806 z@+$t@(CV|-UBQS`cc|pfDK!0dXx~ZRbLbZYE@_N&)*Ceh%>*Oqz=((w#a#U16lVX| zI-%RrZjrd{1_|qsU)HfxAECVO`#ri3a=d~E*$p&+Oybv$5H9z#wu1p#mTn05yA_KL z0k4O|%ug^6UGa-UV8%!9PxA*pfxn?WY%NXRoL=qMn&lgRp8Kw>tQ6=}MMW$>B*vY{ zE{^upT|84G36~E24H6j2eU1dO32G=^JO6cUkqOW*gJ_sJbAMMS60Q>QN28`T_SjA{ zTV7ZVm9HjFzk7+UVg76X+nIj$WUOulKSW-=snw|`|G{RQDg7#JJ1daEo9`PW_{7Tb z>hvB7Y08zfJ3<)yPEsuy*0sqMYI%CLs-zh%1|=puriq-Ulv&0tnT!JHh3@J2qLG{y z<*QZAT2@*4Mc=pkp=bPPAhlX&AnkVbJHfz!*39f`;C!+gWXQu{j)B|bAh*z`z90CH zmPZ7Xq<*0z-Ic&`M1v>=din>Fto%Vr{CM#{EI{|_FZu7xkf=Oc5dToz#y(DkZofE} z!hhv0p1uL0VFLh49sE(~0pds3-S@*uV0Re%PlKBE^&@};Z%YpBvo4kWv~YTv=6!t%kKcqiB!H825r*&aA}L80(Y0gq_~7CI+@T+rO+)K zp6r$(LvNROVko}8msDxnz0fppw}mZ+yM~-Gd}E+Wb&;po?zGT2s_qI|Tz4$aTg?USDtgsw$;-*YtWo zgh4<6D`BP+?DiJuBzTa1dbJ{fSI#)w^xH??QRuw=gh?)g4VKjJrLLAB#aX6o)B;oZ z`T6%dDwK-YgnFgMHc*<1%}oAa96RjzdaXU^+IK+3sJ`;yvHz_7qz022;(_7QjfJo~ zV_i3}5CIPy?O!L{i*MrM*Gn!w0*TfB%r7h4LP@DidUREqG;-!!dijOo|AB=5xgnB?VLv<#9!XU(4i9DTYi(HmY(&?tExsQt81rPXa@`(?Vme)o zMhm})I?Rj{4u0bLaF)YE@S0?NIUAT#b|wr{n&VjkLBlNcM5fSofswG%XuILG?s~|x z9V^-5v0ZOj2hT}FOblYAmsBxMgvfj`&dgXjs#gcML(eE@YkX_086BSrTCoY(u*1YD zZRE%s7wn^}hPCYa>@dB$8mIv#-`oGzv@84c=MGhX{Tu#d+rhRVmrM7gIzYoUB3kBy zs(BUP=kW1b4CgHKxVXjQvws$u0it_FJ3GnTJs-Bi2F>I1t^s2KhBS+N_H=)!QgTS{uPk2Gmy1=Z zi`K0`q+ou^{Ia>303G`_X^5CiyLRcUpRFN)Cf2tn{&7(7+iynSG^J$!)J#pg;3KBd zH#Sj3?s^*?BuQ;e#f?KROe`w+@R+FKsqt}^G6MjZl16I}U#>P8V*4H>5TeQCqlnxZ(dCwG2fq~jzZtM)rS zn4k|^AXLY07|AOR4|{%<9@0nEz{ zlSlMpu_AqmFCXs*x@|rxOls$EJap&eSEJV)Gef(Ffm6Hg)feoOyn4?~u2){!6)Lh3?Hx9|+g2oC0Tx3H3EO+|v zy3`Z8Ehw78ul;sif6}JHn0wGdO5CESr1}Fxxzy54wydhYyh&SxYni+lKLNkhi1CR! z&5)%iHNezdsxN+IX3`#vzSUN}RB>`hdmMluV8{)- zo_`pEs~3Dd#ji*tE=vclLCd>%%9F&-2XR}?mB_C_W1&TM0}c-!Ag}WB>Es8}y_ely ztLQz9EX7|JByEnUY@Y()FW1n$=xpqgbsPo=`I(l&udd>+6_j#N8dH%6MV z9AWq9DsM|p@-;_CEJq|&)jqHQCZO|M&67gre!MR=mP zL1T_8AKJw*eIHcaW6|x-8f|Vqkk6j@Pf;GrlzqYbX^|o~J<#;a0y_ZbdDI%%r>53z zP%-SZN?K;XB1z~4=bRzrx}(fQ1zGnK%RCllDi2GIF92e6z%*bH&?od(cus>q%?=v$un|Kj-J>p6(9)nj*f3nZF z;zR6d8g=&;+Zj!Og0(CXSjQHKf_-Rpr=)bFw%-2z7?PO@ zMQzB|7hLt%20bo$k>J#JVhdnMl=z{q+9X)s@!CtM*(&Q~TMu;#7^Gwn1!ONLs45eD zuG;h#-O&YXE3DBg{JB9g%TqB#Ce?Z#`zilK6TxCpxd^;H>~?T%uFq#XjnVe2+?=-j z9{R@zW|S{2iwB-~d7Sb)3oHQNdw?S`WJ{)!S$`NK(y2lEuuq<9pL{8WAX9!YGz&M+xx$(c($Nx= zwqAG8BVmK?;@*;9(pHq#g@=V7uE)e;94e$%iEhcnHeS>m83duP{UL z;UBQ$#SgX>=&=6qgK`d3zKdBRHo(CM#1w+V3|km^q^Y7}pafAgA~*U4>w1e0oWrlS zCj4c0Jw@i6$ykpOQLFiSU!)c63f@4drYhP8@7#)vjPUNhrHlp1~#yv?*uI&dPf z6dd(HQ2)e|nl~HH_4tx+J|6;>nI27>eA$>IC>f;QJ-1@aqrx&X_vqd$NrOIr)a?n* z^B$^00p!Bml7oKW+S001z)3QGZVyxLZ8UsMa zIc20|ET93LC_6_M2qI-00s`&}*sZp@`QaY-V~Lznhijx1#{Ln!N9jEc1lWrbSw8pT z{i{j)q;bOjPmDd=^9kbd$5hbVeGo>}+_?&2s#;+sCB@`aRGg-f3oENEKATQN9G8aC z{HF}t%~g>qWN5Gecd__0X8r!RA9EhnZpLVO0ob~=VUkaF0A|1Bw7O*zV;GHO8ap0G z5GENYnp+`ZmDFa=KRU?uW8%62`iKh4g0>QC{;p$Poda&X#@0#8nO~kvFXILd$F!w8 zx$h5J1NJ6sjS4AB$!I}nqEHIdKJCX9mBCbW)v9felmc6q!3e;8s-`T6(BbVu00%+x zR;F3P|I;~pz=SeSELAYI*47hQQTf+ela(R5Xxa%8E3xEhCN3d#XN}}O0u#~3!RUDj zdSD)rki&v8RFF~VTL;*qB0t2ZA}!cu{rY^22uId`gj#>naz~ya&_QcwGd4~GU{d@x z6yU}jtPsrR^vgL0E$iZ4_cyS-Ep1DMC)w!JRvi93^4W6tu87AC8R#S_o=rl z@HP@@yC-HNhRyYPaJ+6@Cn-k%6#=4Vs@Eno{AaI%O70DJy@+%5^74+syJBpn;q&gz zvX4LH@7=q>AkS&h4+z$>RwEWj2By;}IS#5~${qp+lV8O(F53EdjsGfnoNqORrj`c( z@ixDF9NIn|vdKL{=uvWI01Uv~f60WiT zHDu^lKyZWX*Zn?JnX{wvoQPeF*F2{g`Cj^LKlSW9Ay8~Pv|S9$#^4F%35R~+S5E%! zZ&```aY{ehIwz-22f0SO!QAMl@Ma%r6kKkoz{phi3GhCtrw$21~i7k^W0CV*trPV zAH;?JGbS&v=7!-fOXk+ARXFfEGc+=y6hPoC_*5c);}X zG5p1)h-xUWt{6IsTP+X7Ozfj#+@8o9@?3HG!E;V5@gfY2=DE-t35FYHZnaqf+( zY%(cmFnj3^M!tR|1IEsE42`Qn!XKJKA2LjphAPc^cnvm>O^wCw0vu((!j3zj&}2CT zx?lFT<6i~X-QKicXkcNX++ybe`I-Ns645@x9uD1X{LUHlTe2IdwC_2oqj~9n8}(_~ zNpzGn4tk%wx|Pat5>QE-7|MrzO+X_Jo6@Wjf4TI-sY7WBu|G)bd`#p?8}^`^U{EBJ zY4MO%Q(K+~eYNb1OjN0=u^Us_8d~~!047Cls_+z*OCm}j9B{z3k#g?Z;uBs0#uDf`+oq$J){^p|L`BL zHG`#P`Oh~D87V{BT^%8S)!!jH5>k{Jv(7oFeP7qYu#yJJXnp~gU_}1o@5hRdBGg`F zu9m!2XdGCWAC{MDD?e!pW5{BA6C}0 zf0qK^+O5=^=``iHU)RLtT@^QgM946#9B3@M0-epva9uY6oS1?)$$NfH9FSIWO>wud%B0yQsC zhbAv*=T#Ax5#JYTdN#Bij2X?l;P*-VEg()%D9y?|aDhfwXs&Si9L)6(pGF(tuU&>X zAlu168HFHq-bV4JC}wM{?)1fLzhh`e1RMbqB?S}nxQ~W8tjU8$a8~nD9xC>$Vc(OX zsZe29ix2XGJTDpcwQ-oX(uNj+8vAHA=O3cIWQJ%g@OUuDP;dcEkr2#<+gKc(Rg>Ni zc8~i^;-LrZ2)Q`e%#Xt^(5kCx>gGT2K&EraV zfRXf!Y0%%nHiNOeIp+1R$^4_CewtN^EVP~ztiw|8Z`k$TgKQas)~Sf(fjt~*EH)P| zH;=&nxR%0`&8jZwqmVm)F{lWHkccH*IH4>>C3pNuvQ+NV(@Tfb&lqm$ci(-hhEZy4 zu@BB3etGIOojX^kD#`Mow}4AgM32=)>e=<3v?YBX$wxPF(V&Q)6f8;GAVn^@zvZO9 zo9Rn7Ov)|!FZn(%q*T*w2RW7GE8^bMi|+9SM1N|{sho}F&^&y%E2>rWmKdsMOOo?^ z+7D#(HNLY67XKi7Kh6Z39kpAPTi?hklqf!>{E-%oRV){|qy=lwRe2|x7nMq%C+bSp z#8wP7U*3i51 zU4&SaTD1PLAsGx6d>ib_tEP=MpKuH@8ZL_?C09+k&)b_NwB--2=BS0eMIP`rZ~lmu z8J~Z{elP08M%or9&Zkzn7jv$umNlV=O3l+Ku08oov*fHb+z^h%q_|;@N|62xO!Xyu}%}`M%7mT?<)ftB=Uj=KyKX(o@b7{<^v)gyKBX>&%x};M+;F& zKT@3Ch?&09(z1Dpr%dQJXxq61pM=_8+h~%hNc%|e<^~lz()IM7!nBZVGdnOQ#44N^s5>-!e}MPet!L6kGd3TqY~^NW-^{J6Pa zrZ?Y#N!$Hq$3iG>6R4*_TM{xjFam}Bu}(B(Ii##1vB2hd#YJqOpnez3)n*gi^sdM+ zBi2E@ik(~#?_kr74-IyO-`s*k$fFp#<}cZxo8=7HTV0*!yy-xtE0pg^LGabd9Ez+-Rk8Q30noRHDyqK#ou|D!Mos?%A$yU~B@J zhf-5MPhs~>gaV&Cl23m=RD@7ibY0R2E)gL4!0QB8XA5-9a`N-j${4WPt?6aB=W1C< zfq1mfGe{qn_C%o3+}$YWmb|M?x7L! zkRz^CenVeoPq#|9jY2}M!8ch8T-&je0(eUmm%G0!GBIL-4@S^3Sf|kwM8zY2H>*Vw z^w`ZO9z+KmxGLg-OmcAb&}STsl+Fu$#6Ix~JPs*3IJFTPXCaLq6VGu`*fTn%<^0(I zN-EN;UEh~-Q5P{Tqd&12A2{W$zAJ8AKOS6DZ5*gtk&I~81li_rYQSw58Oy1nrVy@;OyG*xNZ^tA^EbjO&pJ|u{nQzm3v%UYg`SM)e z-<9&)rx+lgQDDRJ>J54O%G(CLm|TK+-@9q0H~C9EM*|_~gr$a*AoTDd#<{tUh8l&{}AuSuRD^L6$wE-l?iO8u;zUVpCTJlt6x zZm>!uSX%i7hK+=5TN!H#;7ZCfrvPbUe=@+=LQV)!7p$^&Dj;1!*T+ESPMv&YK{ECB z!JzwE7Y)7`Ayi0%F5dOJ$XqYe!~7iJz>8NZyOQS za|ra7;M~ymbvbQJfffW#=!i)L;Lx-gkoWl4=YR*3h!=4GcHuwoA7Pv==vUFrM>wfW!Cly*n=>ei?*duMUoiG(Cx?XvSrYHXMA z%Nufb>#JuUoNuPxZi_c0w(zZ;l0N?Fqa@aqK4|fk?WlL1xPWx4Y}jy3ztfSA3}UZK zE%i=+f{rBnH9nde@akDUURhC*Y|PYZS3_rNcgz8^DxszX$_7RoaLiD;s85yj45p%h zvKh3a^NLwod7Vfv4pwfoAG~aG!9SaRa{E?NZj}7wf^8{fEa&)2Q2Axt^Rh`?c|93F z{xC=~A~}WtOOn`*lI*NeCD~AZ9h%k?NR}w`XN>P`gxse)RypH6DoQH&+&YwuuafTR zkXO%6y*lOIo3=Ok9nTPXfAxGd6 z?@s@yt9uw3T-;ziJ|2F$8VzM+Gugm-+%L)$|8A%~o(1Gtc)z|RU5)F7R{Z!WnR8!} zqkrIh{vmg4<^GkasG|R*Ue1^QBb42%72NYQkf+WgoMm@~c*ZJ4FK&4zu&dRQETZ4t zsCH|h)3rfhceFYcPau}M58kKwNK*J%6~rLTn^*e2$9BO z4Z;ord%p7U1wevOOh|7n6G@1a!S-u|K@d-Q1q8ftSX|w_K*4;6L2n@}+IE{2HZ#6B z+BX2MD8wphM5iims_82X3g0DCQ}XScC{6N^z(}?QiXXTiYGRIB@_i%$O-?0G+;9w2 z>A4?|UOgy3hi7?Ty4}|wdA~i;7m*3dTg^7?51dd}mi5fcUbpDdbl{qg^}b{=6=N)% zKJ9+V9rsQ9o%h1=-4yKt5wZoQ2)79ICww(}b2SHb?rz7Mmf6{&!t%x2lT)nyvru$# za)uk z8ZWR5x%rq}uw>xZMJ^!S_vbpjwdd{W#0h8+st~w18fA}#Frpmmjn4f@2eeoLcN5i& zYjL+k`&uAS&k?W}(K2Y%=$1o?e5Im2gLs&RliPQNf=2!5dgJI_dL@cdS$9HE*r&&M zNy=~7>wn7Pn5MeaO~33-B0LfA8+~pm8j8m+;r8V#;t@h0!HaJwM)JWIkU>GTbYMD_ zwb=exU*MHb_V)^he8w{HDcGX*Yvw1(jXd)+*8dFH|2c}|$zagJxj0)g3vu@Lr6fK0 zjqn-yu4jv7u|>stu>y4^*tYx631o1Dcuqg2xl1o(w&_d>iZhXNYq8C#5I@t(p(U?j zKOYC$7at&4RQPjzhD<{itT&nOW27aJvn)V1=m~+4qh&L94`Fm5uST#tDMpHI-dwK8 z`-02K@l3^Em>thfD+Hgn)xQrJj6_KT6MLsA8xfBScve-XkSbMf^210}Op9Vg&Xci1 zSR_&+W|O^@J;jm>fRx)9?ma-|O#@C)&4e7v7e5S}qgehkr9HxXV=;Sm>Vm}q4${FA zYROMxm;5q5toC1KB3A^bprvNMZF+o3$bq5ysr%M(-mQv$=Am&xWGb|Ux&>5>DVsN&vOEE$fQL!uUFNBkW2r2(Rw%)?4s2660>0ER! zx)m1PEuGQ`EV_|gw9*~Y9nvi+4GWMI&V2SB`|RgE-}eVFU@+&r@9X-dGZ5`_Q*Nw! z`OCOcx5mVFf-CP0W-J4m+5n~)UvJ`0Lgs1(y42XXhPD)~t!XyQ<-(sVS_Y!*>dyl` zZ`S-8Fox{>F?U9%6L*(Pn`+EOrE(ZpfM~5x1^)eH@Z^x{qs(d?1vYC z_sH@twk8YYS@3+K@O(a0Qu^*dyJCb0v#Yu}dY_>1nfqa0XfYOP1LGXaS0uAt-zM^z&MgnV&ILzIx&Yg`(P3`J3mD5+?$>1l6Yx)qtlxgTA^44_@1?Yf_56c4S1FVyeIUpX%-7HCoCuh ziixxgaq}p=dOM-R^lT@vP!>4&WzmFvVD#LS$(VMu{HXZ7fLxhmT9pZ%zvfGx5~mC- zpyBxVSa}W+5z_(Y1dYR1flqJk@*JmGd8AVb*%T}jIjync8hb|_8z$3i`*>_jB-^bm zH-L3@OZkUI6_tuRt5xT#4J(Ewv$O44j@CK_=^e@{wOE5gejpA{j_L-#sEj(RXwr$O zGMO|Ho%_o^&c0&YJIcf83v=z3XX-4)xw}J#CS|d0=;(|N8fNY6412MrgeagOaN;>D ziG|bh8a`IpvJZ_hQ!9_fZBi?%UPc=T#&e+QOoh9VY-+d&TkwA% zpYUo(fyt>v=c&#cj{Ve+_Xxr3J7Wr?+hLge5=F>VzA2L+kv@BAlqKR_OY1=mqT%Jn zmd#Mu5}wUW$W2HnI`~Zkdl?`?BYsf`%k_WWXkzJOI-J&26$It_ zo(f*C9F*o&2jmGjb#_XNQnTlvw>_$#vAFnJ6$QDCP3P!#EOGBC#Z}0M%;ffE zRh6R0?9A%h0}_%$XB_U zJiTQaYddo!g%aC|iKj`4sUO6L4K^ma`;K_J-?Pt^A3k@6ZC->#6ETqQAlY#ug);`~ zRnTziJ<#~w>LwA3D9O(Uu}*hx3+7+`a{jU(gfk^&avyN`fsbK+LweRWukGtd@p=Nk zUww_71IJ`Xt1%uJPiQ$OHsu%*)o9L{YQv4jN zFXC+6g(6-Vj73A`urGaIy{8H~bJXfO)%{Bn_CZ~B)J)`;mmbp|-DO-m`swFU%=sXB z;K*0i5Lh7l2kZKut>_#NK^Ow#;7BLhEy~gKd~Cij)B8KHu`|{4cW&=3lQ3KEw*v@9Z1)3pz`N~%wv(0{A-8)}f81qIum0CZY`wTeKHzEBRcz^k#K^#?|-1Wjf z=vzHO_;i7@9U_4gDq_lh=5+v^aZ(wE@SUR_H4V-)aeRkf`o4UU}Cu5??LkWNJLdV1hay5~Q z7p`f=ab(kdo122(SUCFTSXY=3r*AKB*fzUju^f8fra%7cQE;KXm&os&=A648pXo3R zzB+kjBATy&?(n6}=EU_t^wJdU+ov$1yTpdO&LEd|lOWcj56wz)XhV5^I#yZ&&uTJe zdj||z7bo)g91TYlf3q#bQg(2Wi7tS`DyotI&g8(*grmQIEkGg~x=F*%>yZuO>SU#W zhjfR>vCk+7aW8Bg9#N$>3so;r4J>}n%MOppr{RZo>7Im1E2EmYgfLh0lal@g|D2*- zi@_{XtAU-BXU(S45Wf555k~{+keb;s{~x6IzrG$C#II

0Q-CJ-A0m{Nud5~r>ZnMpIxOwaq2P_7T3L7d}zkpslcp4W`||cn29b+n#e7z zYDHa7_3w#st>6?RVcWi9)1Hr95i{!msa`c_e zjs|gb>=z^oB(yNbaz!z`ocS)nS*hZ)zWQ_#Y7GsmwkR03#^^_xA|8!K4X-_Z#*O4& zFOfl*IFc!>TQZ$Xx|!0Y4?i~@{fxQSb-q$RdbM%e*F(a{#wWwt>hDBLsg$zk1cTOOYVL$72&{~RZ@xb3IFHTm&R* z6_)=AIg(6htmoZ#w{_0(pvHtVVcex=GO`SfCQ|mFIC3d3U*JXV$Z0jb-g1}L4lR0^ zfy_=lafeFaF%mh*WH)6|XE_INF&6NL9Rl1_Z@J9LJk6|!Ouxyu55WegXgf&U$ibu& zM5b)}Fv7iE5kiegv*ok!9}{Mt zzn1FynsA^|h3(;P1M-HVevOIi*tnP6NtV~sZCFu_F~`re>ePU{C0F-6#}NTCOLZje z8JoG0l##cTi1iT+Qv^lU-W#qU*jvL!t@FDmaKzA+ig!O8WY_w5HA1$tm*u1rAg+PC zJL`}VEB1G{S70NdE!-o?Lc3wazE*9cb0zv=-H+03^v4gWn05|^N^pJ0mz0?fIWJHy zlrooF_e+jn6SsG)5WyI-4iax7l0sB4B9r*U``S`R(eD zqrxLz1g5WDW}B;YCzE(_F&lb3)JMG=Q6SnAA-f0!x~@?%!>z?s%&WYt)^KrvWY^AE zazXI*$^`Vy!W9k1^u*~X5XPrVwdWrAedST#`2pT8<}0>8`?*+i8o-)I{ET8_o}>hQGdZzV>PHJbs~H=Mx79 z=9A|a3JNN(y1GDRM5KpgvzFgr&CPW8?X;lLm7^|8L#{9Fk0RF(_pyFuXZjp+rao~- zfDp;nJe~4wvln^TR788;ldnRKhBEL@MBBjJjui~U8Jl1o4d#K2F=Owm+(h5qwh3p6dIJj6Im@xHYn#E4|7 zsg(8;ja&KQBRKh}PP?;(*&F|ZU-iZewM|)B?dbWR1}<>O6dEO4m4icVu*eM9BJJb! zWu#8{6GhTxi`zb{c!4KTVdXEsdr$H&OY8>^N7iH*vRZbI!vF;fm)ISatGHDElEk?o zr~vywLvT_}tO{4{Yxsxv7us1`LL@05)j^;kOkmFXo+jVGjcQ9S*2g2ajh#aS+K&4+ zyzw7n_8X*ZXhDKkQ=UsL`D~rK>`k=s5`j^b;1TQY3S;6rAxF{ZiCkYKFwKMGx2e#2u!S|wfA*B)??X1Sli&$p=BSE&QQ&~#X%WBW!W zI-uh#*pkzT*5gU1%*i2Xppi&$vl27;xzYRCPs0_F9h#ZSNPH{?F0 z_H_CCZlF8@zNeK}sqA2FO-_~>)&m5n(MY8CT}>79F`%jLR((w_LlD@CSa&n4JLQ7!1pXOwYY>WQql4y83zJ z`KdHSu+_x_kNphtkR!IOp3ax+GM!<0sq@y^|Hma`VsPrGG^KFZP2xZ#4JgS0CFB0T zIN|@ElfP+FZzkg*6Y;+SWGoRzzTJ-8VJ7IfoQHXNU1FMl&T`r40-xA+Z`h17{{dJp zRta4P;$??T#UEt-e5q(nRUVqK#uZc6FnIdXGRygc=k!~6YG^=kxSPdS-ZHHsY9t?J8E$YutS_!BW?&^A51ZHTp3sp<+qcy~aZ3FDBjFbWEL*i=l&!uTXRE6P! z^L{6e5xey!m@XH~xa1m;t^7GZx!L!e=OTMslq<2QGUpF~V&Ew5k^TpYK}owAj@OTL zaAC)hGLz~f=%;@CwDN<`YTz&qz8b>ddd@+&b8F`my?B^*n*H`^*%lqLH^QJvsd+dN zxcW?{|K~)&bu-^}sX;f&-qAJ@x6_anR5&mSqoQI8Z2ilqU}LY2Ul~s!Dzkp?lbDQ4 zLi3P!eS`x-9>JiU1uSGQUGHyymE&}}=fOo4F_0dCZM8(p-KO(w-1{#(JI&FNl3Lol z#0O!s2y8@*S?7aJT(OjQrx^uWRlr`eN;@SPUGf0gNjNb!kqDD2$)`2{iFP-PN@ygn z2+)3_BjVMeVFU@(?@3<&^mc5jJJq8b7vQ~PVEef*1n&rCJ=02?5l@(SnkVW3N!Cz` z8=2FVeKJR`sQwPJJv1z;FOv7UIeu;D>C!^Ak(9n7>$Y2fY1&|$!b9juXyFU=xNw&d zUxY?)36Yj5p7V~SuMx=Hk~eJI@o`WPn3s_MmuFxEvH!s5wfQu93k4!s8piFQiu=|J z-%E<393lIhLaO_t@l1HM@wDIpcgW`1)!Lnnwt$4agH;N-k8hX-N~*bjeX;<{BgIASx@Jp zwJqQEU0vNEKQf46zhTSD=_+)A;-UwxB+0K6E<~fXAomlhoD+W)@ALc|XX6~L7Dkg7 zuJOJ}%gWlN{NW@$X_fDyLox0uHUVpDLdMR|gH_v^*;0K@t#71arGZ3}dRBsZH8tOA zwfB$^qYEK#Zpx18BtG$FQU81Q>&M{A?@7+uJqW3DYhgJL&Efkg#&ABZ+-E?Z3jy}W zMntiOwv;ljR~}j4B_609$p66%9vf3uY_vzp-+RxPa7b_7k=pPHKfst zI`sUyCLwSA(VzFmIt!U!HQvbOtI_vCW(6gM#MSI$>$&sC8xId`INWMO{y8t3S&rN# zZ2v9`%Zmf4ow}f%maPzkeN&#DQxVbS#BOI#*Yo|*kO+ObORbEJ*19!3}4)T+k5!dVEN z%e)od?KW=9*>uWz|KZ!yhKhf;1gd1rZg-E$lH)0N5sYkhO!WU^EC0xf$Z6F#ey3%I zzh+^XNbBsN&0-RDKP`i<9HzMx_s`5Ov(ovxuT1P0_ZH0UW)jWa@IS23sTraViu=7c z^&$6e_v5=ZC0N`ucfLyKVI}Zu?i;-x_1a(!4aZ8^u5NK@8>Lq6`g9G_Z?#QXy`6Py z6o>=*ZIVZHO%r+}aMW)g76ZB@WYrF%P4mMsG4n&Oy8QdFclIblB~TH^*%8VrZJ_O| z_9UwtYdzr$2=QF;8;V*F1%51NYlVf?7xbW>;K*H@R0(V08Lo?v$N5is4+zCJ;hfrK ze&z~zTb=curV|N;J0-IzkJF5`-^(TcQYa{pE8TgX=7{<>f+N3>@{LUFQY^e@ATvj= zEW)%<1q?NVBgBnsNcs?61Txl13F`bu+-;|3Hpb*AW`c{BC|j*8SFirYc0dULxN|>& z2DWK~@@1R%fQS$p%9B#nO1fL3hAe80i@?#2+c(83s)U{2Nwz(4F|zm0uCK$1u1PhL z^8PgxqXeU&S*PgeShiwO%~F0qE{+z*ODJD{{pv-BnoXj}r(a7mO$`dNX=%fF^3!iL zdBInq+GG%KrRcXNb*f*EH#EbE_7qe-OIB~XT3pvVG^Oq{%-)S--sGLNYNzThj1~s^ zsLr{zMJ_owjHqeDhPrze4j9D(u8Uo*^#u;n^4MDh|D=d>OI?MoY&_Z~j=^l9@DQV= zn=3a9pa}gib2FdUB+U-K!i^u9!WEMy$hS{bDSV;2QR7bnPF}g=;NDv5)O+C9TBCkV z&DgFC)06h_px4`)UNjXInSyP(@Wazx3BHQzxI!D%Ip|L{ck-`l4f6D%zC>yqf7RGlG3Pnm3f<>)!Cq_ zIp>R3GI1+>vf$*qF*v=vz2`O06RAP;nVA((4mzUQ4zRvqtfgpALu!kcNIByFL|~5G z1&gH^AU>%#c!_)??3NZVXY269SM-}ddCPm|wzR=)GB(5Yf);H$V?G#r#&E=9+tbJ$UU>q9zmL>T{r!uXo1>_1J z@6zZm1k-T(1;T%fhDQ^-nB*@(5^u+S*aI(xvm{TayDmk&zjJT-irH^Ixr{cr{xUI7 zc4ZkS7JCCV6gggRDruB_a$47Q?HlT0)l05vZaelkTr%cg{JiFwb+i>4WSp0qsCYKw z%f{w{7ToJIHAhIleLv#UfbxX`e_gF&#nWeLLnj5+Aa+6RzScKC!8->*dr^vN_e zu{)VRi{`k7pm$H7Jo^>RBpoNxxutQ$AD!i*g=Rk`$bZjd`KdSbJ~;}nKuFS3G80Y# zVUnznPnVVU<1wL8pi$RoBfzJW%CNiOL~lXHAK<&dcwL0;m*rIPMqAyh;QG=2#P(BXYO9lZP4P+h%UUzgyGxV z2IwT-VC=%DKZR@IHc1|64g(C=bCBjW5nAKHU_Q&+%>u$5v0e9Ti2QW*dT7bhzb>I; zJhaL+Bc?MEpQa*vlL~pEz^oxPPZCB^H**0hCmS2b_;2;>pW#fl$QL6wdjL8hd#B(X zRn)*cdLPc{-PEY!*!&A+2{6LVhMxl7f6X4QFXB(1dTL&ivGDu0Q|AHhqgp`wHJYMp zQkKjjli6|7xFS@LFp(#2>ez9u14Kqk@4!bnb!C`FQpJI>r*^9scjxw0AG)uUqC-?> zBX+RSmAA9EI~tCCWU;pFG4kY=g()&Dua?&S=y#yMtU1%fVqx$Sp@BuB|ED8uB(y=r z??CK8XH~`L&taMT{QP{-Ta$Wu7FKHMC6T?IJx_`6jwc4e^$6{hqKd`#S-1l7+qkbe z5?3ijE%JU&YC^sPG@&q>HRwIrD0eUFVhhN4`*ST+5U)Z_ape_GD;ELDaWUzP!{6go z;#CyHR+1F=xtvkKTJ>zI^!eaxP*O!laM?1TJfoqUJB`NLS*C0X!+UBUkuUbC%srilk z8K4ik$X|z66;url4pW7Fv^B^CWNXY)+(!5Nk4_NpXAK_rYXR`aB0Xl~{3!auYEcM= z$o=m^9$=;w1QhPOK=TTi@eEh=Dq%Sx7f?5hT;b3CU`R76;4ik9L6>pqK_+J2N{;IX zPJ>D!TD(#iHV|h(nE|ZFvE!G+r=ro28xx4~R zL-U7KGmBHq$e)pCx=aH{J?!QztBZ=-mOtTtPEmQe_Y7ldO-W`3yHEcB*}m+#fk`O( zHdeUaISg+xoOoC}YA{*@(^UGnVHZeD&kDDu{(rOp&05hT_d~-;XYPxad+;25gr*`` z${WmmVjj}m%-JJTo#U1o#Wst0GC}7yr4Gi&g1O$4v#(kym3GYd+r>pcJv?IY?YNFe zcW^Ki=6hA<##vW31Ds=G7H;tCBU^!f-FeS>JboQbXNr@|m+Z>^(uq1IGK;b*&Cb81 zGTysvc^*m%zuNasKAzqteyg_`dED^R@rbWoI{(Ax>^~!YD>f7%HKnH1AUb5mEiWU& zbH`rc&$@l)l^&%g3D2|RM`0FfFi)v=K>j?JL<4H`!Ogt?7oRu9fNy=#G_rRnJ3Ks+ z9Foo3a#E?e3tf{_oJ900k#~t zkF)c(0PJPte?2#X6(4uQw_sGL{M3S?>7ASh)XSBDA3t#5dI!xUk8?0W0XBk%XqP!_ z;U7IriP(LRQRBj!;Xl8ulK<2b_8G8@CU5Tz~k8?{1>xH&kgS78rO&KZ9orKIrKhvW=#4CWSmAE`b|BKJI5Uq6TFB3tqlp z)WE8Ezj}!;t(LV%K`16yX~Ttf)GxRd)C<4UHB!l`+MT5`|Ln5{6fCMSSiYj(ulFq! zJ#~B{Fyl63dRahgjlFdvD?>w6)=4UcWc2UojAgMnHcoMd__Qo~5LE3UN52UK-n;01 zhGHWZtCDlsU;SR!x}Bl+*K>#QObPW9`p6NS!uZG#@X1FT*7jF$dsvlKQOd2hqG`}I-PQ#@0o zcN_m#uC)5V8}m#nz6eb6gyj<_CcU;6ouq@r)4zauImH&*ItXN$D3DQemc=g|YFCB~ zy<0?eYGa6_|Eu>U{3{KpkOmU)A1aVbra+bK{2wZY&NDIMK)1Rv8|x&~$1P%bP2gXpjyGzVyk&GRUS^E~ zN57{qI5`MA&Db*o9Q?uH_8;T3=Z3!*DAr5}rZ8Pm-Kv=TX$u{|gmriFLvf&N)y+~S zJ_igo{%0P7u6k|W+>qkQG)gGZ?hQaD4yCgHgWKa;P)?!{Z`qu0(m*q=J061X?}ZxB zd%Kv)OvVmqKuZ$aPSvd?1}HjM$$)oOzsa#`ncR!>pn7adiUoB2?biAl<*rAR`K94&ik|OaFhn_0Lb1}nlH~$J*1W2M&}^1e3%zdP@IDCKm6n#mycOR$ zO%+LTufVp~;Pm@L_K(D3$Ib{D91!3yoh{Rx`$%@(E6%((^2?83%0z0pfWsq`I>sYN zJPzIa+^=_`n7Y_FTraLCMfpjz@fxl+szs`PP3dBUeqcz_FPKJuFI;w93jB4K|Lg<38*5M8Ci{)|G zRc(Qx1m0SN9v;eZslnl|mKervV(1Kege;|Tz7l;PXp-P5PbzX)dU} z)cTc^k8Mh`fLOZLZuWf+=Bs3)+g`ENdGT9HhvR5K%2mfzR7O_udCtuneo`GRa5pn_jBZ1iu>Stxvq6a5GQUSaVPTOG#?64qRsDE{J7cY|G8}#P@ zk3dzqMCpxi$GYkYZ{ot#PFj`6I2fGFxhokQMSVj32Fkr;Ls!ln*)}2nE5zYfpdg-g zQhhyyo^hB5_p=aUzSw6UcSJ3t^F*H>umXuFX zpL_~MEBm&jkx{ESoy!+!S0lhRdz-ALU@V3|NCW;J?F{V>v6`CtDxI@Bf3OfDI80h! zzAd=Cy84SF=whfrXhhKb#WAl!oL#83q9P)XR4xjt|KXKv%n*Ec^wmd-^0g>fd=}3( zsP&yEjckJ*!acdJe5}RLNp&_B%W{hExXvx;SrN69Lz^>S$ zmF-aw16us=jRYOwITTrSOx2yriU4jO{PJNSRz<}v=FxM{YDVZo`nL-vE~N4|Lks3# z1Z5}0pZ$tqALxiwSqwC|)g9YTbUY@LSu~SP%im4Bm(CddCj%=4oXlS+!7%AIAt(nl zx?*Q=n};V?-|H|E6)Bwo2fXhMrAA5tlJt*_-&>#oXVKvY76)WF^VR3D%hO1jGWGHAIzwYxJi;1cwt%}u;$2|5yJUMgdvF*J3 zH|24j4_|sIS6%3ZJn*Klv7_66F9ZhJSK-R*ScYR!5j|XXJ3M?6Ln17}d+Vp?8~Xe? zIqY~g?4K+-?P(F=_vzAWQ3U!A3Lb_v&Nq^=AUF&90TKz)FH9PxoMWgI%+y6Uzp%&G z*sBH}I@aeC(mG?Z%Jo4J7axTL+XhXcif*oM@0=`*))AReIXyo&r(Pg)nMmp?@cAK+ z7L+6@IVvp0yMS);i`-6ZjF8I`#|FMc>dZ3#7<$%3Pz|g~RZKl2?bU@@kAQ9jh0iVi z-=8-FA`-~f5nW!|tzu`_5+KJ?myh}Q`ODCDJvDi|LINLFHg?+5a+6|iR`|?PZ|nSg zCJ+S=2ik;am&5`G$Dy@miR6MJe^l<3E<2&MgcItLDe7*kKtr$XOL=;4eu)KRubk!P zT0yLRO(O8s)5Do2=jlJB#2AnRgKYc*a=ICct5d|xsxez&FB5Q?wE-J{b1?BvEwwWk zCF6Zj9*_CPHRSnlt&Kq!~XwG!E{RH*n?hABfm zNiDB`*i(lm#hFPZ2jBIfpb^Pn>IM>c%W?;=uu(}3_(ng{g>iJ!XDnP1GR_GdSRW^N zhzOiOW9lr&!Kl^b?TkFra(XQ?wEcwo;v*$$=Y=>Xv4ZPXTp6WQ=W93`RGiP1cwduy z7YDDS8ec2&GJa2WlAqSY=e_yYnD?!h_Jfx>){E>3Ie4BGpKoj`XW069X%2H~967Z= zCLOAY&vji5{mEt?%QZt(+=$bJxRNUQjIQjJ`|Ho{hcgXe;|36QphkuR++x_HD^Mr# zYbMb@X&k%%q|w}e6YKzjH?yb;yL1z0Xp;Gz<<_ zBZ~s7U3v3o;#J|QU=W!&C%3i-JD^GT0I2p+fA7Ct7 zGAQOp^uD`OJjuw+WVBnTPK+btXAUfYX#rM9>>~krB_&_p2g+hm;eyFR9kWmsdSCgU z?xwA@#AvO3va4UfM92Gp=HtMQ)#6NZA_2e!PrhCL;2jf1oZjnv$fnysC+Y2xsf?1Q zc}(Biw;auX`csHwxG<=9gctvy(dk%ble~KTmV_L1XUm?~fc4{TCMgG{N8{e`M;vco}@^t_D>Bq)6kS7 z$cMW>Pm|e*H*Fh#RbO{pXBL%~j4alI1%33MsUR2dc20{b$WU%+HiI0cH)IfaAU9pR zIZUNP>02Ts8#PT=?2Y?p2TpEX$vvgUQ}|JO6|R*;bY*}-!gpvbXvgT-ZNU^ z<*m8_*>j_}#$G9-91cvNv*vA_YcjGS!1|(S;(x8Jt;?T+q+?bWLwXHFgXm%q%`*E@ zXVARGWw{zYE@y19Y6^z`foj9M$}I&us)@HYO+3T#6Eb(FhEce6x& z6_CPno*p}()y`Bwr$>Ygn4UE&$Pz&mN+y|9u&-w-n)OT`JX;_o^&|Q>q69pO9AexT zCwymfX*+*H10Y8-&lmcaJ3~ijzZW0BI)AKt2KI=GG}q*>%yQHu`(qh}LsEz6f%+j*q}Y87TJz0#+W)K|$p7e9_X;{70!A_{r+3K7EGwLKX7XeEBx zoL#5%S)}Ph6fa~~!C$(AC~jT5l|7TQ^o0Kqbp+Pfs8a^~uH|LYi-(t6m(x_pC*^4l z!ScwFy{6$!dW!~QUQ;m1abdR;IaJ7HQzb-oW5%Rmm5Zl5x%%^Mp-^U5 zFn=x)Nvj}0$IbRFso38u&0RJ8Im$_PG};Pq@;>JcecRcTeD_yZY)`sPk|`RVEsD^K zZeb!lg7(UHDUo;yS5?MI&!5aB*T-U>3)GVV@Z#*7O>+teM;LP-tU+}d^uhtsTPnbgSMV5~`S#sA>V3T$!YVzFWt3Ie`Kq&9 z5E^$c%`(7h?A9+PEJ(wh7bCjVXY)nU-Xme{wk4y%lhwLu#1iUs=E%!6heYKIWgfCT zFmb|+XqD@GUb$u>aWCtSSk2S#sadg@pIl+?h`WVxXV{l3quFb92utx4{r)l)Q-b|3 z*t8EDA*ApY5C2*{NW1Z(9bKd`-G^_#KzuqT(Jht?~TaO{qy6qS-esd7M5Viq3CnWV-c| zSAI-{51$vaNS5fthyS2SC&!L><=}r%Z79=dpUiD#y8Ko3_Cd5sLDjf{9Bfiv@PSFw z7LK};5ig!b)Ae5ZPLFSx`UPT+LbSo(H!Gm7cSlxLNsLZ^gZVFt|DJysa{SwZqituN zY?g5lfeQY;3>My9tZ>rO zegwu($lYjQDxnui!Bbw=Pf7C3>(W+fjDWokbB4l>aJ34@>VRA$ zxjXA?A?`2Kl;5L&QAc^zL%=Zv`B3JwoP!Z+(t&2uAec&t5U9efXak#t6w_zV z!jfsL^pC;t*f69}y>*~XZo6Qp5NiNqdM<}?{gw0Q-kvfYEUB$u<^(_N0ne*@rp4^h z{$ySr?-MPJRjEqWUIy*r@~3$+G%>A$?ZJ56Gf?uNFc~Uu&cRP!tRff=zZ;=9LnOTq3O1@GI}oObyY@ev(O~x*%xWAG zq>2i2r^7Q!gi^8SwKSq9Re*LjO~mpj;K0*Lc#&0}rRB_Pl(MOoeil0C8^tKi=ZVJ} z^#w`AnA%l+RuYFGySjqmFrI26kxovi{65R6vupq*B1Y&UcDpbo^WHSKVwp6A`?C!{ zgkgtv*Bpaf4QkaN{i=Fwn&$WW#rkq$Z`1Dhw>!+NQZ<^j34eX;2SbT0uqyTIWD~y- zGAiE&W29UFpo^%Ng2{HxWnsLxsZt5GQmbQg#3m3!p0)YJQv`Tizx~_e8cczL5Q3^b z$IntXhTw0$0(5Ijr*xxWyCSBtJzZ1!^Oh~KaxAu}oVD+F_AH|Q_Gn_Bk&7{SZd{A;0*x1NzSfo~ zz}@OB)Sqjcbs{}pO7*iPZGO^8wO&Zj1fmhanhW{z8b*HSIbV)*-a=pl!5**s18b4U z^*ek#X39p6zmN=xKRO9rOhLhz)LT&h*RUQAbA&ODppBiM|6`T>1;O;MyPf=lDE zLP9qtDg5*!^rF0~O1sbZ8}8XBz0}{egs&hhvwB}^EGKi>0pVFfDJmY)!LrAKaW9Tq zRp)>^6|r1Sj=Gxkd&at`R=yxhtL<$I@Bc4pB214cvqQV z(X(puYu>g+7rps#8T8D<|J&!XKSs3VLMP(ZID;tX{#F`X?@@TX+@TKE1TzQ=zhfCR zvM{ex&fqhh=(r592)BYtQj;TI@EDu6x|bPnra!1gmdIQa?ch=o*g4u|4IOH;6&JVY z-{X=pk{pP=Did2GfKalEm5On1PvhV$f0N4R(4(La8FN|TKvR*oWa=@b9v8Hxe}nrB zRaXs%Ut;j5f8Fjxfp)wbQcn&LX*xh{iWVa3{z_DTq2(4*ktD6xF0xXCZ;`q#vY zE=g@7gTi!XkLA52(;u=0aw51!v75@5q*)m&f!c)>CIeky5i1VN)N0o#JT#mA>c3ai zL|FyNbVpB%K?=ZB--o+kpUP=Rx_h;97WcJ(Z@xPEMf6mvMAi=Eeik8`?-!H~z~urlJ&olBPHSnNfT=`EAQ`+l@k~D=&65V94fh=~`#uoSo9>dEUE2g-Dk{WGo`h z_1ut|vSOn|TjL`A?SpGP`aj@B-cWf2J6TtZjvbyrN?$vf6oLFRM;PX@&h2i82mzUq^N&v8Qank(XyX<>}6;v za{8{wT11`CoAiIZRo{B)rmBfl62H^2ia4=Zx+EanQexv!_l&lDvBta`K5Jhs^pnIM z7~ol?$LfC>R>tRQr>h;)`7oBWWmu>D=TJZUs)*V0inFpTCAdq(5G2oUvoF*b+t@hk; zT(Ug%sByZmw@-)-nOa#MDapxU?WlxeaB@Ijf8S97E%;fgmX-7O_{Q05TT3MUbv4pUI}O_)Uqu>QB{|x+Pm8cpziFy$s@mK8 z7XsTtRw;_8)>$Z7ET_EK0zt>#t&HLp|G-^SynjQ|CZqM^%{ z;7LjgA0%EgcJ+$njBr+%M7hxBovr@tq#rEniOiJ%j^~$?5cН!wfvwxHi=UTdq z>{xDI#dP43a*v%O>wW!Utcy)4dnD2)TohrhdQDF0=w-=yqkkEZx>e(XjQi7csU;JT z*kq)4tayM(p9exb@t?*fU zA2kzFd_Z^Hq#b9r9WLxy9`8nLc#@Z#hl?0cDd#xJL8 z$irj|ey(jHKlu%bFFgd^jeb;aM>8vZ)2fe(&2mU&;RZ}S{}(g|xDjA>E`ayguUC&m z5KAbh%f?eyDUThm4_XraC}LwAW9YiQOmaP3{HR!*k&%-AK`HRTvIXl*hx+-^HSyMP zrAS0rdc?I3VqsiZc~v?z{nvLS;RpHfpSztDPU4Ys%|LeFE z;Yn&@iGhEQOkD>lycRKXkuJhBtaah+BqEEJ6WL|+GLi4NsLSGRQ&AL@R8ow?g$44i zZ6)fS%m$9>-{V=-=}4D5%YR-H?ZaTK+u07U{6*63Z%mW_`a}*rq9P4|y~b0aY~a9O zO@xn7$+8Z1QJ0ifX9`6W1+VD!!mPe=`qo^0%QCHhVel0W2qcZ&$36bFWF60< z@$#bw#Q4jWjVU-&XzlO4}3a5F3rme)p3WjzSydUAZx=egF2d*1bxz`vNN%4bd z??oTcc0;sxzYzS779eE&Pmw~>&a%RSQZ%O$iW42^?i2{k0j#KyH`{MO)Q5~{6i>Lp z!+X$|F(wur3`_!Q^OXi)I|oxxvhIK{UFRQ)v*oyUbk+m!GqXE2dKCZUs+?f;^Q5J* zTvv(6p>jSy{D&^nLV=^j-|km(JdDZd6Twt{;_zpO|m|6x;O9_?*h@%RUr_BqC4ABNbUA6|7gW~%;HyAs0MQ4{U#Up zd~4+U(t~l5g8#7l_TkHgd60y-<~A;Qi@So={1bL}a^)9h2Fbq^T8jetY3(EYj(6Yq zFR&C+``pG4Xz~GfMDdNX=)d3$c^@S8xT*~>XIU8#yU~1ukouyVon@pWfqh!_ND#DO z%cfGmD0-fX@$~DS&BEwoV=N1cI!0k7(j8%3_)_T++iqNc#qMHEjTQzC|NEqx7R6kj zCr;z}N%MMsuicFtf&!mT?llL7mfwfI4nNzz)VgW2b-CHVL3L**4 zrv+gTN1QEwsAZuPaBSznbg;3}fv{j`5m`Oo4vG`?%rrTfg6z!{acSHEtNnim&Qxn~ zCYR|Nd!*2AQe#uA&`7EY?h<()mX#8bU`mGkz$>^IVXILd;gC7Vj736tBOMt;9L5Cj1MK|oR(q~UDNTIc=VZ=JROfmyTn6Zd^z*YAS*7z9$w#66y-_oP0- zui}}1y6hB0MTS2B^a#zf4}vJ(NC5v`aoBSr2}q^TuXxoLEaq|*V%49)XEE#fUh<}# zQ?Ehp+T;}wQ8Xu5^%_te7FW`F-jAvW6`uMWG|!`=aa#(^L-<`yTnLAK;+_fnhSFT1 zb-*eexA0eozs%+|$9S%CG^ELL;&;Fb?C6f2cz3J(&odhLd-OYE>O0WI9HZd>zn+{P z7y00ABV*1%2mX2}UfLTgbSh?{i6rBfz7%tlw+zO-^RuY7I^>uR-*Vd@l-fNmladiL zVCinT1M}v#N^Rrp$9NTh1^c8c+x(!+ldO2T?7TD>vf?)3SlLJXk2gaaBirxMHn zKx{=~>-x*L=L46PmfK_C<>(-pNin`Et=|pZ> z0j%f}1TmCEjhAvvTI(k7@$NMmPbg|cen?fw%itze%}~w_2y3d8Dkg!7MGS8)<_rfl z%WQjoKIAvmWEpt>6qpx^t2pqv&oiY_Re8R29}ygi(I)MP={+dD(>?rs4Xh!Ki1Heo z4Bk>W5o^DWP!vV$vRf=APQVTozVJ>Kz=YOKki4;hx)dC;=#4ghA&@du6We9-l)C0+ zrPwZ*dE$*e-fc^zRS5Y${%h^g+Q*E!2)nz^y$p8aiT}|XS zDs-}Os4n;Jvga`^miw~;z^f5?0@lxY$MGC9(fx>8z1tGzi(kZwsGEDLmJ*l1=FpIkMmNpWsQw9x2|G z&1e3`p4BP@2z(;3<2ISlQVOkBa5hT;3@zg8d7O%(`lX^hJ-xcbNjM`7pDT+C;iXwF zc0nX^>X$?S*72!FvAlJG8gN@a*u99mer1VHHQjT6;Ec!*{$^PXvBhSwv;2uS$8FenqQE?|!tj*DF=yqNG0lJQ{^(k3ejk=)`@M7&FjP>yfza|Sp~J_~ zX--204LbNSxn)ym0_cL3aG>erpfT zjm&PViDL=Ss!NE#E>Dnhq@=0pTTb*_=jLt`{rW9XjQ1P+C3+q`;d%$m^p`A&HJzVM z?=}}lMKA>F>el-j@lTg3M0)@eB%grFe^V6!fhrS%e31HE%zDIEA)b3Lm1=tUg2I_w zMc|od$>e&;t%<58%ilAQD3McQHYiIU^f*9B4iE=lKWIh=3ZE` zY@!$M#8C*OW~QP7Tupp;n9$RIZiK;h^S5z|otX{sW>&6Td2}17AayJ`*|oNWtP16< zilSxUSxbeu5z&2dx#51e&;5yOViX+e`l40&V{R~5qk*V{-(R9w3lWtnBMdGP4rYx` zTB6egrg5hU4_43Bjrbg2myk`#bA-u&=%p65F;XVT8U>p0HKgu*jWWhqo24o=QRW>8Vh5^bCjS4Bg5bK1Ls$y^y zt;DJxtFg~-G$4T6LX$>UpsKih2#ZK7r4S5tJwp13Ese0pubt=@FESx_ud*VHPn=zg zWBedW@wGW|=>|@^ADRWSO>9FQ#VtuBs3EXtLg<8=GK=vI`_{m`?blaGG{iF6(BAzh zH^l+t_xH#1+{F7<$C&Pm*K=b?wB`9)z5=@;-ZMaR7~j_XmqN|743hu9ylFow9KDDt zKBOxN<$4*XGN}8;%sw2oy(c^HVHO&hCD0;yj1<6WGLRe#pAYhHbttz_l=UYaD|fm! zlHsacy3Aw#WCd4E$#ywVO_&(^yKYhA9tGiyq63>Q9M8RMQZkY)!eu`yP%&i?rM#=4 zncfy;!-n$%N%2q0b^2>SeQ_|> z3Px}XExngGjb>B{Q-qJ`FfMGkr>e3uv5hszWlTLWqU>JHNQdgO(ocIZdCi(QG%!%W zNq*1sKEql^VFV#7e>y38Mv*Zmv#Igu!#bqSG^iyp9yMFqL(j`=Fqld=ld-L8{qdF` zgW<9WO7|WEU;E5=d46a67myIeWu5IB*)N+?__NdK`2e-%-Og(%gc3p$2!J@<`&7%$ zEV2jN;xC0+2Ee7_Djq{=3AN&sUZEq4R^I zIrdFYm|93VhxF$iOY{%#(oP3}^Twb~oIn3-aA`*HO<8K5fY=}|Z}sEoX-op{vuqrT)Qx#An8 zLOsU%xlW*9pQQk(nwu0WEsJl9t6rX)$=C6$=qgOFk@A)uc3m2a0s%24Y>6ykH|Z5& z7~SFke2b($$^;_RIDw`BAlak)>SN}O z1bWK%?Fqp`i2`c(T>g9jtnUj=2U6OOz>gDvZ{8ko?IwsWHs17M8~;Ac9ETB>HCXuJ zph^hia(|faT@|rK{gs2KfcCGzOCu|yDZ@?CiRA$|6cx;liT}#4&GJ-z5jDP^0RihF(t^wz54&-0h*S{ z_A0M4QTnJAS-ZW;f(MGxvA;83fOF}Y^jAL+7R`;09%Ua&y<1XkFllwD0FS`!CY^-$0*Tp_OiNwtF)9^KrRz5$PM<{(dcG$m3=@(;uWx4o;Yz;PAmL@!A8w>A*uy?t za>-a^h83mRUwV(A{kZaZt`kQ$0*j^{%1k?Uam%-EHS((6_!wfxV|eb>aV^rGAd2c5 zeTzM!d*{l3>5>vcaoZb$LP8OPAiX3$pF$y!_-4kIKdix|L2PyD*t$}xQdMoI8ZDLj zeK}U2Iy6;Mbib-m^SZq5y;1mHgck!v4-i)G^%PjtsYsS`j6RJLq?_t#o#-$ruE zRkH}yMFjxkK_A6de_MRp5myyTKomjOcsC%S^d`-r%smP+cHt& zlVErJ>xaJkaS2C&H>mPEhrI#DTBnHJs)+TcEH%YfNW_>0Sq#_4KKaATyljao6X2&& zJQ;YAU-^xH$_r$cqSEKKP!oNP=8|!-H_rbS(vJITPZt`>ZPaS4G{}R3?OxJZEVor{ z_=4@#nB`n#{OMVU)eHygo7~*n=9gq2MoydenZ%)+ErG+)n9p__I~@|XebMxnHd`*G zlI&^y#j5=J&t$yoa4i7FDNL6D?E|ODi$&iE{vgeOP*)ExvN{Ta?cpRr^fwl>qF`6v zM<^UY;p`H6E?rR?qYw=rAsxweL6RA|IigW znnu1^>&|Z^i8YmZCzEVbV#He#i}@usFq+Mi-@^_B2Q-Bz!OTsg*@R3m=sisg=kiF{qQ3 z5F8^pQw+WqkasOZl2-ebsB=X&I0f#@!^Dh0BwY`#5jWCH0~ z>0^u`hYiM&)hq^XZ!`f0Mn;FfuT7|w(U@s~En2shU`>6&)J}@&CkF8hfgasf(fke5 z2^^Vu;9W+ZWMk5`L=ra(AWsPXS0O=;8cKMK$f$oiK9u*hjEb3NN#K z;Eqlu&t@BrUI>qW>+Z5LHLKYyzHRxm*JQQ7xdIqNEnCzR==fmTvqB0M_MbeazJBPO zC1#uaddP2aeyvVAQr^g|dKFnc4r-|`#8VAg)Su^M9=z5t-m1=%SHK9!)e=Uvw1MW; zpsSAD$QYYb(m6OKD8;NUNTkpUdL#-}OGa>-p-jk&r}9V(jZl|EN+J1j{I=Wrm_#Fl zG`L?92rOxGGAxw9rz>$@A7;@d@pf5Y)s+^jUQP1X3;_@)}3!y z9%sC02=O>|Uz11O4e5j6)Z9w#SwY_}*R;bM=z}XdviRtfuYVs}Rew7&5z`mjFPSf9 z3>WZ`4d&O`6*!Irqxs`2^kSSoGtaUP`(A9+;$!5!_dBxOQ~%Lro=RhugGu#&Gm={v zf*;|S)X0Kq#DA1m8xC9Q&0dV-a6F7=GYN?$O|UGs?SjiX!DkwirG54qsbXht-NyuP zHaBX!lim!qJgP6qCPF7dFd;M%1X{wDAB8T5i}@)O;Gy=?xKQi|=^kmAOLaPeS9l|& z+rxYd_g5T7?z8Eip@g!v2& zu6XWM2gwP1ya#Y4)iL=BKwIfEqX_&qq)Uy^pxjvM_OHN2)m9J(LyX@U;OT>hvkb8J zCDGS1=vI&w3w5jQ5=^XPWfX^1*`8V6kemN2PEpecXSGLj>{DmnNcVnr+Ruz6882Fn z>8a4qfMbCsv#j=wZp2H0cSPB~Pz6(OC}}9=v`B9E@N|ffawZh|WI++r;?ml|SC@-O1T;9_@aY&yvjUnGdPwo512M#+G?826O$H67Vg;(!wl@f zM@GLMxfw8QPQaVZYkE&$Pku!5nX6#=xb482_j~vI(Xbn!<8doBl5ivIHB$q_BBCzD z_htZ_rtmRqpiy8GC^)p*+5MvG5|O~IA#*}+5^Ha~{gzmm6W_)*^`EH;dPoj3Qkfh+ zRnV-21M%_vwxuj~OyAHrUONRrPvPgVMM&4x+N&AuF6am0tCDxdrG`!WE{aLSql#{; zc_*~R>Jzy<7$%-6{H-t9_>tANlix^ul#+8?1yn^6cp71TL^DX{(kU#2n%ZZ2WuBh? zT|%BwYr%Ij>)WGzn2N%CMunDx9HM=Kfjslq`MIrQQei*xQfZV!{^%PH zFuuFXseWGAmI>qaQ7n0(EWQ`0<<`A$)^RHZLWU z_H(Z+>K%>e^=_XXXlJnA-=zBGbd3?5+U?C&jOmp8%J+v8UN`JEWx9*yEE&(f z5FyyQ0rGm%{0L=;1@%Qpv?a#8Q&56H}h~#H^m%`8aur zF=~ltReh*?zx7b0U-t+|VyS%T!wp9r_^1<3_V#a#*s-)ICf~SjjJ2CN(buz&&7i>& zoiW=E#|_^v51X6IMJSlWSspkUwXOc zR$h*+1iBVBFE&7AFVyh64nF+e6swbaHj%N(yE1xHd*tbkNmr3TxE5f}aFkOQvBCwUiL-4>c+zI$!U3t7wo+{_x-EYKYvIR%v_T;x3|ib87TP#u!F9lRs%y> zw~7w@FcV!9rA5@^8G?{dHpZC8eN*rqT{6g%EGC{b3%Od~?E83Rh@V-@cw}_CNe);& z>)RR4{3-t!%OY@!+(})nq1fi$crW%89;vBEhYsW91u*zV-JN5=BfWR9{uH{}3G|e# z)UIUwMlswpJtEy&YO?)q*&mLTAQa{0X8lmu`JH`2cN9z9>SsH;gPyEzp6|)Q);Aor~4%N zqAHr>M~cgRL+EU=AFlLT{58KPW1jMF$3H?c7QB59AVI2pO|7wgG8ORr?&HQ|R+Lo~i za0^Mbu0A|2_~ZC|LR>sPiqd#Qy#zDoFGMh+lSW5`APURpNwK84(ODP}rme<*Nl`Un z;r5|H&*DDmK(Tfu`(hp+UoDIF47v@EbzO>1bQ*7auKgtun9BUvy!|R~8(8ejrDW(& zb^o6UfvME#qSqYWQ2y`#cBU=TQJKKlE{@2v5`gG`?}n4q>GN(W_PqS^&nP{FZb4KGBWO@30hXA)$YJBUgxwfc|D3iK~=BR)X~phBQ(17bDQibvi)1< zT+aOs8^6F9+~{hi7Esg*Je0IM2W@g9_y~H<_E~WEkx^zX?AWu;iXRY{Gy^&wLUE#ykHP zIEu|yCg(hRuGVqV$`K+}#wn&q5g9t|36amiM@X7KL@L2;FPo4DTAWvZHM)_Lj|7H! z2zptyJ<_OzW$lNS;Hd(QE}dZZKLb)7#~D8bXIcpP5u_odC&qLOx80#fh}iP-g0eb8H_NfHmY z`6|V+h}2F&;uY4Er0C~5JXdzFb5;PAjZKay@Y6L+Dzwz?Y;vHUu7;kT`-aw+!T*S zO!JASf`%6wTnJ_~?sku}bTsC9-D=O~>DG`Yqd6$a^^<|4g>>ZC#S81?>f{_nxnB=c zc@2Co3??a}NhZJlKP|v3uXGm4+o|7-RP#!)=ockb`H->ia$ba4ElnyxKQ-uc&iFTn z515m6KDGSy?61I{t>djml=!@^0AyBo)wX7=`sSSV@ZQqlLv8X;;NZVC%?{|-@DFHa z!+Gx>^cY$Zth=NT0b9R)a1QAOSU0wxX4Pc6cu@Gq z2F!tbGU#uhU8O}t63n`d58Q*NzDkqKt$K6As@LxODcg0< za}26Vrm5*1N5dS};T>lmYn9bHIwPescDXMcyQz~NHbs%aZzoxMkGh~&`?dyo%U+m7 zp*b6ORN?V0i>o&v!HLx$5|mO-=dRufD_?|nz1BbGC%ZfTLV!)`O6wju zFXv?Jh|o{@d<(Bec8B$gA$7LJA`gUeI!Ge<64{F9(ny6v`4*Yw<(O!^?wPO&zXnYTsKnPQ1U}=C0q$_&v%RR*&-GS+xDKx&K^oS zM?ER@bU>|utIrMCYb&pcg9^a)ecge6mD#J+U6oTQu|bJn9{J=d)O9V_*}M1tu>QH~ z@?x1>q{#;#7+%eze|)%~a+_)XLK0m#;b+-UTzezy_p*9>442)fXDxmt~}Vw ziYv*KHBeZC0jH}t#?o@DoNtalU*)_U1?!AZTVmSs6_tbBl1C^}aBU?nVHj#b`cz;N-Vq2?wO=KbX8?bQN zu*sBCLkHd>(4lS||~IL^%zj`)2PGJHz)74BB#{*Vhq+<;uC_-sv8na=EBt5hWJi33$eyV_Fma%9}q zG0Jg}ncwj@QH6Iv46XNu zmU|aO*ej7`DN)3mJjtnB2WfA&k8o+a9dKJjBSn%Cgq>$KVGr^n%&KWouQo1z%YEJZ z@q>B_or715)D)NBGCW=E=hXB`P7Fh~62;GzmiVKv(FE4NO_LD69M@mFqSAC_vVv>S zv^ev88~!S%L)-s42NO@978TqLpGs23?nik|>W8+h6}NFNB~P=6LML;CIXQ^6<{$~X zlGO0G-UO0bNFhjD6CA9%{sBo<5#MuCbQ|pLmk+)`K_stXK`~9jkxC#K$$Uu=1T@d2 zWT*IG~-oO6!Sy=)?it|PuFC~N~Q&|=bJoZ!0{w6vhlbwPP&3?4m!KnB`3ueu8hTS3zIAvn)G2#4DVOE$XDG=F6egxiZGJWdD2}yy`=aEK%5Y zKJ%)5e0M#W5qJBY76lp>RJr9hg#15`RzEUlcTD3zdJ|AXbTdv9@rmi_#?w#F2(OOp zOc!Y}CSuS9z<&AdbD=Q-iV3$rH!;c2Vc1QxCWr9By54yucrQyOrjhP!3R`Z*TOC8! z2o0(_-F4-E0PO42Z1w=oA7@Gg(Q4``;FKEK98F1Ej}d``q1Q-vAPuBS!xSUm^|)>z zgv)L^Tv_U3^QSbEK4KmTRBs}6S$auHy% z*Jbiyyx{=qHoB4$V8Q_>i^dQx3YqrVZm;N38_`Hh_TTv@V3MDWJ43VVtO6CDLLaG! zom^JQ%BcOjmNEsm@Y?ytu*H>u5pyx|_SrEO3C$U;yFjd4khtr2@9zn`B<0h4A^q^4 zp5<9Vis49-*T;aHN+-)TN6ZtkzzM;<+%n2l0W1C4>51dQ`?t}4CmyI45VfYCMEoV3 zOyqCfm*hi!x(cqiGoVt0efHQ*KDXYO{V|;oi&1uOEERngvN0==L?!&guQ5cLf7+51 z1)5?T=?09ZLFd2)=>=ABDo=*+ zvP&3p9t56WX>4=moXnjxNDEe);IFCh9@hJNd9b8|qzk+WG^@TLGVKKE1FQ)NV0f!_ z`b?bI3Lc@6#`7^12?ZTYvI9^|(!{&es3SC@?AP_j`36c*33snT%%q5kIX9wK=mYfy zKR8|3A9~qM=O4tbdraI7^84*sD8A8evwh>+K4L=EqU`6F>2dH)Y`r2TxKJz?{F|$j z9e1Tke0q3joc(W$q!_K`!l*1vrvYAc3v%bf)|&MI2D6=+1{W;PU1GmdKai?hoexnt zWAfUp55%x<(YYUEv1aF+LmKr+Uh4NOuHM@t7fi)BDX7$ zR&o3)EQoxT++t#8oQxL*(8&7no$UY6u%%d{i-Q+$ev0|}NRmRg-_Q*~yO z28m2xK2w_B9>Pu6)&n}4MPkXhAGm#eMYU=knLbOWNE(5ym)+hoaj>Lk{Uc3J9liM) z!Je>}Tb=oEFk830{Rk+pi~z37TL+Y%m3A>C0@IFJF)`7noU{RPUPgv5WBP!AU5CYn z@-a0@Iw6M)w{+`nOXKxLzSROSqmzI;=RIorl#Qb0--|jKcxoZjLVs7L3#*xoYcJgy z`4P=^2srmHY@` z=HA1LgVS9WWx_E}-PW3#nx?3&T?&*R5x(Oq>pvfF{9-)XcG&;8W$ZC$;z-;tv!(KI zaij}U;b=bYc3Q`_sg~w7R)FLhNr@xdU^;Wi(H3TtcfVg_DYiJ&Y%p7hoKe~3cU}H6 zVB4#}L5K)hG7iE}5%_eHhV7TRu0s?g?;}OVncQW6D;kMB0?Dshu54HWZh%%*dm`m2 zp6W)}G%=o0(mLV05`3%u35OtUOf>C6vj%#!-oWZe^36t7mu5yrKF@bR(`{%c)mHQ{ zXO%kmc0^xhDn8TY^WhvR2qYdJhj|mYTNdv$X_Z}X1`!XnLD`7-IyI)b@V7U%ls#O~ z?0fuCQqYZe##BQ4$4eRh0#SFydr3VQ=`AIg@-2_Rybvkxf1dItQV1Ri79&XRIxd17 zgdy?+)0zHQ}0^3dy5t;vQwT9~VF{;DA zg>OKbJ$mz>bk(KJiC0;QYLianZ)OX+vT6VQcIL2pokBXZzs`}Jo7}WfC=F-*xb2;q zstCYlEBzI1+pAVI=|vayX6lX3G7ik*0)cGRr+lyCzsQ1B7)0Sj7+T_WGs;5#lUCFA zdBd=JBFBBIZP?>|0BPmlV-l25MzJuCT6Q6Fg&je$lPJ&v8?8V`MG1F_VY zHi+>^`IkxWxBPWimT|A(GX+=ot{+it?I-33eqCM}+ey)}d{aXTR@@Wn;GnL`{Vz`9 z8(V-b6_%?y%IP3ee@%QIu+yZ9ju2~36`lM~#rRY^1{Y(3g@uX1I#=8W25eb%$Nw70 zQ3#PiSLSx{!V#at{wQAp+Wb4NTZ07%NxyfLpC4P41ruukl7ILKR zoETx?JtA5(eAA|6u6BV8jrB?$i{yf8G|G23+5XaPS3{Y7Fzi}4X9>HncsVfba zLMWDz&Ty}nh~6B*(1^WYA5}jbVo(jo6A^8@R{gEJq*iC zgbFx9M8}+o>Jz~UOzv&Q$gpTxC2B=;ZWO5Nm#&i`Dvssy>ccZiM6Tang;J6b06+8v zUgDfD_%&N?=P3di-B1{}gv>NGzLvi6oyC+Tv&zZ$sg+6tU++`ezMx)MP^HYB;<_#J zMKu+g*fe8I3V7goYq||ACj9+$vg)<3v02{jiuY;-9>F?7JCc`h`Y%#bt3PYFqj>B5 z@T9{xrlrY%qq&%)<(9sq6LiE)bH3>6fBoa8t@V(XR+;IL6HX78#Z4Rm7=02NlqB(m zp4C4K0;PW@@5UJ7_sZEd$ETFFwJIk9=gEl2Q&#U8=hghcB}>E{qZ&*l;IVI>19V@< z(_R@o_FNTF?madaK>F?j#hPQ5oFJ4Nc+C0Q0mI@kXfF;YotAOPxDCq>!+ug7TY2L! zp@=C-4h1qo@ITH`90hH(?6zeDD+$BSpE#*bJ4x982IV1KMlXpSms+aznTi7BR28a5 z0xwr|Lg2~YT)81{oM{WVQM{1(6qR062-;~5dKO8;H8t91ib!)LeBICz87o$v474?5 z+J#K1Ic;?_ubWiUIrR!5AJSF%mJ?n`H~QR5Ear7YyavhKTmbdUm2in`!_xZYLvMhP z-XhqP6D0Jp@tB2S03~o5d$&GJdy!8*c-;YV+=aS!`1bJB;4*)bH5?6%#K($jLT}>8 zc=jU3LBO45Bc@$YLnKA+M}#-hQ6;_1>$Zy4kV2;_s|3OSY%jc|3yxf{&LYhp&TPqh zbEm~d<18HueafXKkOZ%+%Z96qGy3c{w%higPWQaFU34IT!g2A1)Nr}n2F3XA?Z$UT z0LYGN{3P9E|2WQwz=CgJeGz+CGr6vTzZq8eelL+oEV8CM^uaJ91OI~#dIjwRgd#b3Y6O8{+EU$r8p%-`!Xf0y%ZfHSS zQ)1EH*3o#)99~SDBMP?y0Ga&e2Lq>P>#_10ddQhivD0YK`llJO9(>RSMob=T(B)M< zU#YdcExHXrQ*nTH(Ac#1`9eX@wEC`due&fd_t4vhKKV|`XS?n{_nWH2!$83(jbRG% zn+ z_T<;9)6Kbv{b=@O<>TpCw8Z{gvuC8Q&El|C(jSQ}G|hMa#m2tao)Vl1R?fQppC$-7 zj;212ocrY*o_YGKAL*AiI9gsi@StNVW(7v<%SPF1xn-SIlr`5&k}%5!=^W-)TwlxO zQ1~CN)Vn`4I<*_Lllrr9mWL2QSZ`j82{tr**U`;?O5$c~Py@UpX=v2V_1v7Mu=9FR zQ}tBTS-Fcy1F*~X)pNDv!a^DiZH;oneBe^MKd=788!2&^iO}uxZ?R{^qY_F4>JyE7 z3I)`2#wNLY^!VaB(~gPUSIS)ZYT^e?J?+*gdM1G9$denEc;yic>t%}Zv9SjHs2rMc z;8yr9(mnaqLg<4MRk?qw)5@&K+&3&{LUx7a?|KUwJgN5D(Sz311Z|+VAXix5v2$)3 ziI}!P=Xt6%fQeA%^L32?~g9oUK9!FP`xH8AYGh& znrQ0%RqT@k;f0Ls@>&iAZXUT_sGNt7jo>#n4mg3%y~Uo&vsM-I_;g?+%tyB?3%=V~ z{Y-$=9&CK)IGHWFCvp=nc#?WS;W7m@Q#3=gh$Dd1lB%7uxG+FNUvUG<#N^4prJ=HX z>Lc#;^jbm$_H>8PBQ~;x94m?a%~+T$et~xQK3FgZ732&AL6P(pi7-WJ1ROHH3Hu~W zWTj2tuh<$C(F|v+(=m%0SaCYYK`X`Gsg5v&kjOv9DQw{=4{ca|Fy$5Ksb4^*P>Ack(Ao5ku$F1Z|#_xNloJP{ze?gAF*_J z>k^R7_g-JFGH-jVPzcNo5M4O$(#<=6c(3D_8hc27bZt)gf5#1^oVxj>w%|<#7z*HV z!(%53QU|)ENU}LG+3rZ}l%1dsFlWtG`}vIWAAmNbeds$+K*0_j6fbTw{bcBW(2OmK z+ydKt1+*TqX_4iFk;zOX6fy;uWSOUs7EXmBaG#n;4t_v;B_ow`AnlOzh&Odkl3w35n5nf*f=fTXR8)OQoRlC2sIt<-L znfIK%S3J{^TNbdPWS*UX8=6F}fpqUHvhEj6(xJF(xzAe2p{|MmlfmNEn{)+8@YvIHp~kV6MA=Ky9bzM9 zE(PoDhlLkPEPbl&*6%aDNz)FVY2AI(cK7BZw<~ zm{{NE{7cI(C2V_;1#4rO@^Mbb8sWmyGIYq8aSamC3FNd%_5hJXHeNwbQx2$@Cr zv&J0noRyzb_*WaW;ydD+lMNYXSS;_J4Ft_b(Fs$zs?|EbnuNf4v<0^RdrSK3MH-C; zZ8qRG$-fpx(2|w~#2f&b*b&vbHm4D~UzkX5sE5hifw07!ROUseGtQUBZJxz1)i}~< zRre{E8Kl_59adKj_cxy!k;5Dpo=y6s_xI30` zY|NpEEQig7$g?N$fEGqCtp&L!q2v3l{)zPrJfa@c=>vCk(3KX*7A@Pb*${8Zu}FXGtRb#o3kDXy(`Sk`!szUaz8lFbTT;L(+=U=|1`D za=9p%>~d$RwN~SDM*ZAc`_lKI=4i-^5`iqTT!FL z!wbymOoLv6$2=Ep)&e6!DSgH}@PZLviS$4x3wd6=#=b+K#+8C^J-)^h3MB!m=iBuPFf9_QN0(Q`y{-+76+55+*BY**8wMTBCUvkd3N&NA0 zp8vmYC*=*KU{3C|c!Stt?RdMH&%Q-H%_(S9gi$AWa^}k0gGs* z`I?ygIIc|?Nh-WIwM+7f)iaEuEqW+VQx#Y}mwqoI(8gxcLZsUi{#gJF4=2d89x!q;G-$k}Tf8QnQLJdn{6E zl%0MuqE*yT$o7IjEQv&5zhA*PmJfI8f9hY;CE;+lLD;qn*`Oi8mb}(x@sxxj5tWJV zFNvXoqVFC8tc2G!3;&{!Ce>35(j8dT$Bhfs1O%IFdU1NV{zkV$+HiS2B$#KRYw51` zG9t-qSiOm8Sao8^W+kl!X^yDgv?Wp_UveU)7mH>-ZEDxzj%JQT$XWnfLH(Vj+Mh*T z0jciJa=8*qEH4K!X=WJut%9=) z;d``3TIN5VDG zZB_*hE0ov=T9b8*qGT7)(Rh7oLEpmLqbJZDanl6V0_XH4fh+cVf7@I-chbuHl@i{0 zBJMAW3+NEq-#Sg9L?wJ@#1>iY*neI?@=p4%WTmUOp9ND{WFMLQYw$TS7kpjkyXEyI zvwq0kJ$Vyx@<~{@oB-j}jiYg?aI!^_)x?TB#kl5Hm_jYO``uxO_o)7aawsx7q);t4 zRCMTn9f5TaJ>T}KUod(Kirtx#K#mJ${SJb?sbF9KR%eQ~S0H}QwH40pgEUiyUdHS6 zRUIV*1AcIz1Ha+Ub>ZXIl{izG>8I?4h9r12`htJZN|TnPZoM=Rps~GQ=~V)*dv?_) zLk+^RssB7x^cF<}rW;V$Z)rw>1=#XIEHka18Z47VJ%x$im8RL=l$PV6bP;ama_WXu z&4!)r_QXA3BT&i%Zl6$!n&VlT67aX^Gtir#&FMNgvB>= z*ig7C3L^y%Sj#nrPS7qDITz$>{tkJrIs&kXoq0>n!+_xzfx@&?dv;iVW{{dL#%xX; zU8>W$&V$;cl?4bqE@FuSN+hsp?wDFC0Aq^_v6AoiYWPQEO8tB9&HWGciob`jCe#a5 zu^d|IbE)`e>f@U_X~u(G2Y*5giVN1UHHB{)^Y48+AQoHhMmsMiyg?e>??BTb1^-;} zubTYM7M9{dQ+$Ww#Xi=f%>JQSW0J$B5({{A-(Z}~Fnz%ahD}PyP-_Y?Eh;E_oT`@v zesxr_FPj&H%~q65xc;wp;ZI~HFTF-UztG5E@;#S}=$E!Bk;$)|fS3er(Q0I_pKx|j zJqnVjwA2rZZ{_{^mj>|CxsBKxX#-(D=O$7%GKF74UaplL4~}^@NOXM84)_W)(P@!^ zlV+69H*xSBuD5NjH_KJ<`s?@a?qs6nY;9rWn@eZe2;#T& z<2x<)&dk0Z{(oA40~+kBahcVrq4-)gJMoV~Ngf!3wet(_43h`cAqV*g!BQ|Gjt^FJ zSmA9bFNPk zCx7Z#ziD>3_yxXonv``V!Qm9?BE>G(gnz16kgvwUJjb^4?9`Bg%{htVL6Nr3eQ!7p z>mVdFID}~|i-&?&v-A1R`ApDfzJT42T#`H7i;sMXK#mKeGgspeQ&lG2WNTt<3+msK=0FkW1S}>aSw|4Sqo5Jshae*Uj%1 z+cjq6;7r`ObYP2ME^#y6_?(=Vl~SoybAI8se&+n=o4wO%adN%TFMMc-|J^|tfh3Gi zFocjvXa+`XMM;t0oMqG#bWiNjC<|AdN}cl zub+I7(sjQL{~ZQCQbdeBmdf1X_C^InPh`K?A!ubW$HO!=lyjjAf^vKDF)Y~5j7u%2 z=`|e+ClW2uj}VbsV{DkF^}9>Apknu`!?U;-LeKvmmV-QQsJXk^y6qD~8*(3pMP&Gt zR)OE2%Nm#vs)XN*hzhy5o*BMkpho?TRs|y-iPj)aoU)F?yD6YS@K5?o2D1{E0?Lpi z$-otJV?fj}Zz$KYOToU#lWZ*JA$ce6R3kMn~<0a6N^Z%=>;3h-=U%EuDI$?$iKe+VWi2 zUHw1PHzbP?C5sRmW~&A#_kztoTMD;A{^7>X-J7q++cGDZ6i+DCH<#fPuy%uG{)S*oy>OMfe8jA)fc%s+Elqb|kV}8befa2FZ zyYw=}j@32NO(p6`L3@Fti>K+_W)@v+WjVIj^N>7D=P%dZos=IPszJOHx{f=dFahPq zH^AA0k$!msRfGxz(-_eOlOr@pKXIZ~dm>ey3KQpm1h8Rbf^6KwAVV3HZ?t%-NH>

WvQfcUe(16}Uu;~fx)NUGp zkME9uRT)rp416>ZpQ6^&^iUVg|`P{nQf@sn{En@7aR? z224rssus`{9hNzx1TL0?c6RBubRYf?S7#X)Ro{O5nSlWT>25?i1tcW~q!FaMQ@RmE za1iP4?(XiCZUpHTq`O1nY@h!*|8w8Zhd1+z7kg&^_P(yQ)_0AzzJ+isj3-KM4km62 z(m&8>r|pVd9BWnu5y!OF1ftlmlRzK`?vh3=qy05PheqYIFW$IE^jAmdKf~OrV!U>|4vt@JgVL+J0%`iHRC**caYyL;3~(FSN&*JG#}t;KLdHM5 z<;aljTmwW30)Hs{^s&!4&G zm-oTn%+$HV6^!%sjt?JF_Rma&!t3{*&b3N8j5HoI?TmC!O*--)nrHr;C0%OI`Hfeh zqbcqgs=ea(qWHu?O!FJ``Xsb4Mm^5Mu_$yFNwo$Bg8LibE4F&}-jNX@eRGJ(rJ20c zbji^~%Vve)#11et1S*lDQ$t7r@?^eh)CFTYu?be>IGwM5Eo|aH5tvZFqX-++H6AoY zh=bMaXW{;3!Z?N>X^Obt0y6arQ(UD{INel4`nX_$@}R@;@jw1zlv2H@uZ3=Z$C%LN z1zn~#A_sG#9wOF5tX}Upr@m&!qgvv3?nRTdyzCyxb6A1hUWHbPDUQ|62DGH9+Ac zPG6ou3ihA)Gr}DP4gKFgraCCjCL86b^ylxt<#apmyc_wjLPlzA9od7 znqvzJ06i-|Ha{?I)U^t^BGY{IY7+zf2-JC5^T$#naguV}lHiumWa zWezM4pl2wCnd~PfbuTi`DJq%0xZkZW6xNoNSGS5NK2ve{GaZSmmKOeTSd(@hcXrde z6JsqxIKmlBFSzLbgGT!goO3E>|HOU`_b_)^^a>wF3giEPZ%y47mExJnf?@S?WYo)- zFaC7M*|-!3@CTxj61JkH+E|SO)n+~_X=Ul7&kl{EP;GU!r|uTWUU+P?ow^m1*NO!Q1T14zQ|=5%QMHrZggP=4a*KpA1HIkR3@IJF6IC} z>qN}zouohpls811iqwiNGdo7p&3pf=4(m`8)r(5}*LP(Gk=qDl#*Fj#OK4C{EYx{v z*R|Wsb#&6$F96cWs>b&ffj3$u+T1uDYJJv`cAedW?ZX?BaBs|3lzslwBUjw??h5j+ zf*F-eAf?PXK${`@ohM{~c7qi7Gll<@Ef<$9OWPEedW3_xg3V5(|FLlpm&f;;J>J6m zFX4#(b!fs&ZiWmg)ZTa88_#rdh&Izf+J~-RACy9KthV_Mp7U*ci48!4{by=lYP&Nw z@KjOQXBJZKCprJ~H(neI9Bj^-?x#@4!+eO$d$}05vScRDYKEFVnRoav5ngO9aY=?R zmDC+5v1$}=Zs*BPyM=suetSczrKX!7oxXFUS2S~SC_!88p;I+gp`wz^U6fI|R|S)R z%65^bxkxct z+SX#xS?+tNkLl$fe-UW$tATCi+-I~3ufY2V+So(tQw1KWFKN2hC3R&eR-~5|thff} z{;k=-;Qx&!mDJ(*Jzt^K!$$&6rR!7FfPo^WbJ5{?#z}?#DpueFq4AV&r_w|B zwy4b~P{n<7h-Y2Z>iM&2xL)9N>PSwBRA4<8Gd*OFcO?ltXr__arCkA}kGhs;71 zxulK%f1ZRwi)*2&Af+{^!4Qwl@(W;hZJMEA`*~iRUSWNB+kh06=H*L0?bqcw(bKuc zMlVheZd&s6Wqe)_4M&xalE@WEUMg1=t7R)VKWVZaT4^MhbDybs+9jXY9W+Vd@;}YA zsMLEY^eIKgSsYXbA|S1A4HH4dK?&6FTWv*hPAs zHoArn7jOT#cB`+RwTm;#8Uz-YcjFU*dK?8!mRxUbA9yqPeHt%t`&dp?38x%7mAvPc ze)Dcbw_}QjBy0+*8*F%YE)1zBW>meA3H}Q2_FlvsxQKZ!bNxbh%%dPzEaiUT+xfgE z;=PoU+I9=m-l*yV%eo%&0D3kN1Iai1QSN_URHim)uv=^~Pppi8Y+QoeBEg%D&MdOY zAhTe(A=8H~v7+=0ovgi!pC_tgbd)7}h4CwGPx}1zj<%LsCCxU>%n7z{WSQ2|9+vX< zd1U&Vx%C)1@8{y2k8f;>LIwCfrLuI)V*a@o;jvFBNVwOqiY1U6uV?+e+VQ}s?2^pp@LA2g^@5^ z1WPr6U9WRM=G{oJ-`gZcb>yAWZYP;TysMvcGOaa#MDtT7Vob>rNY83D?zYgFp(L6|Wci{`&ysOxmZE3eOy*h%T5jA2ZHPLrcN15%ZY) zB{3zn$9e0{=1lRp@+~$Zw`3CrPuErvPBkJG>e4x>Z{qDc`{bT|XVC>Nty!_@B3xbC z5{#=qlAjFrB0*&PbS%KatLRKsUg)1!TzLUvX0}=V$;8Lh%v^fA?Y^Hirz#FVxVkY# z*ev_PdP0#zV?4&Erae|6jC7#VYf)CgT(Z}hg^e}Fe%2;d>*-c6+-^}9!!nuZ=#6s4`FZXuJNBcQ!ge<=P?{PH!4zo zTyp#(r)sK4MqB;heIyaD*HQk^$%V6(tNe=}{35lBlHS###_Ic5X!w+mLV17=%PXw7 zShX-IYHFNCtS7c8CLw|ghI7Z`X|(&wOky9v{tZV$?go{NiBWiq4A zB37i#!IAgN-k?NQA~bG=G<7c|qGX4Q>LIAnS#4MLRW5#lEGj81#$^i{kS`{G#K20u zHWK8n0QB<=IRDDOc8fJIqRaq2J8vcxQPvXxt~7kiwGt^r${X3|!GE?m1G#maCK-Hq zT9zL_oKz4U_yhRF_Cw@oxOm@NZJNqu2&D|`op;2^NFCvRBAaaR)@NI_VT)DITg)>k za8s_)-VFBqbS`Bet0Y-p%FGfg#YRr$)PusfETO2D5Fh{7>t~uQfW@^kN3Z zDC*>qJahT;LsJ*Q<=#9Cxpr-x$R2yA-rGA|$`xep*8vL+?NvK8 zFXDZ&MTPL4$^SVNGFgH_@3oVq8^Ygg1XKt98ct9Thxj(v+HV#g#;Lt1CPfLnvs;Kc zyX-rxma@x#JvJW0gT6oPBfmHF1rRnVLxwgFQtT@n&Jpxk+_$iIS2E*Gx7A{zouW1t z4&E{0n~J^=xW2}({&;D#yI56bnqMHNV5bn-@a#eR^ripz9hYsi!baya$#?Vt)mQrV;PQbPcHz6MnF7%_q zYv?aPCs~}R3+UwdSea;f4lI6#rS%|b&EGo9mO=b7)cEN^%cJoQ=s^SNhrCBw8Qc9$ zfQeB6F)JKOB@wK$(-5Be-rx^V9q=2FghI77(#VkAF$B@GUmbr-5`Uh@mXaSp>FqAz z`Zo^G53m(|3%$k4v*PZBJg;2R6zNA$Ik(zq@DNIKc#zI&e8e*7UMML#Mt9rPBv_l! zcYUZ7{f0xj>C~Forhl|?ol0eVNW!pp&6s%pua}ctsI2U;n);2T>lr>?U3_ql^e(Vq z_pOm2cr%x(5jW&);xBhumh$_@%;;tv?Nb!`8`(S>W+^rzo;`a}9qUG^2-MCe#nQ0P&T_{%o?VgC zMrXt^+5_hhNh-&WhBvO%i-r<1E3tKYAwdC@u z$dgN8dM3e1u=XNyyo5Sx&KG2yDXSR7kUIBmlmf4!7Mv*!rocj&uz%hmeQhC}#%&!R zT(bjptNQL2b|~Xonc@$2Q=>Rszj-ySyhM3|<3GACBxTdZg?KYT-`2yC_sB4m=&K}{ zJ%l!VsQy-I>QiHWjx3Tp*m;-G2I~h#Y_Mn#_Vg8+fMoeY)5&v1El9QtokKdhTWA4Z zuh1%bVYl695flMzz2fGCoRf=eUAle2dQ^cXomP&d&~Xn!j&K?3Eh+T0&}Pr30-tRC zQu8s6e+XuPoo7t~tT7*#RYh?H1fVxtcnzY{6ZG?pe@KK(`=6Q3O#R8dPG`+~3lIvw z3tpDcPL{gr-2N(f8c;)ai@%%xSp0k$k7}L%%RMa`fHgnVX&6xZ;~GmcpOn?I+ftO1 zV6v)rpEI@NoK6Px=jkiFzvDl7>fp(&R*119*9p+3jHUid=2o8ehZ=O*fR3tJU_Q2; ze1=5CDQRM4Fs!wxUS?DtIBNMU!-azfV*ZUQN5qsjUK~v02vgPQ{@fm&xCmMCc_%@9 zF~%j?)!BMiuyrfpPXFf>Ah#2!2l;@?2ev^_@F};$-N>x0F@KF&bF5V%znb$Sf=C7K z!7i(W=elr7=|C=iKlXvA)7oTfBx%ot2SW4&B0pRRT_^)`P?ObWuN*sFh2T{e_Pi&6 zcsm74c=UDBAmkyJW|7j_?G}6~26;6Lp(Z{Se0ztr5xzQs=RJbmW46WD=KyG{UQO}) z0?G#IXy*!?-7xWL{s-Sja@*%po(c=hzu*WM(mUoci{7|Brz4^l=x;v_Bq$!tV;4!lT{4(_ z=vQ4|sabEaHE@DVsdf~xXwgpBc5OvVyh|LNl0sgSSMlYK?|q|X%Iop*s0?1hf%fI= zxapEv>BUkf{z9cRSu}B(cXdUDn&w}gYHS9E67+p56b2<^a>Kv`N+8tWgfN5-JyJfT zXD2Cz1NK6#spIRot||UfBcz3GAlXwx>i!8k5CIkbO}Fz8R3$3f;`+=?1}vnT9-+XZ z9r4i}UV>~PO9D`mwK1>mxe~b9Papnr?`ZmvqQOfH&k(_SqI_LIl4j$p#XeH{1f8m< zol$W@yM<7|H9;kNpv?k^raYi{;{ClOy=@no&s-j`N_X*VP8No!B7O#AcQc6g>V>KC zf&?Gnly^)bt@cUGH{ZuT`%1`?b72ZIZ<~-w&G@x~P4p_sY>_9#7Vh1MbPiN}4HJI1<-En&$qFI? zS!ghyhbr#PFJI(b(l5vh#r&$@o4FKNNz6Pn5|#0?FDpbm0N>y!wTAmq?Og#`>!NE0 z6W^QqxrA*3)^|`i5g+Q0mvoF9*pZ>u!ap=iq%CnzyD+7KOgcV7os4Wr)yc&!INF)=g{gU<#-+_rIzDZQ~}z4wt0} zJD|cz*xgK9AGbE0@5~}msuUTOm%h3*xYF0N7%s88fApmE5;Os0CGJ>!69Noya!}HF z>D{TKm<_r}n$Ww+4)?yOsSUF3&!MDkY$H1biK^(nMtv4E$DiV7R3a(ia-%{y`BNifQLU|MDl@+Q?F$@&JRB_12x3+eDC^0&@w}q z`h-;JRf{#aG^!s9V%b>Oq5xw^o1K3fl*5ih&&0rZN&O;d5>PX2Eo zM6l&JTYPI_2I{qhL~{a4Cwv8gfi7P9Q?7AMuBY}Es!wE#A;LgIpb{8bA6z95x4d^r zqh;RHl9LLXYJ;|q=K80VT5OLtD@6%~9lk7y`j0Pg{6c&1>$x%80~q^NkQ;^@0!@>W zctBbYz4{;bKA8Es1Cr8CMdw?wXWz8uRE=K#s_e!to&M^ zD3a=6ev_BqcXlXNCO8uu}zXPfw7Sh~y+rO{6i_lhQ&=)Vy`~hy4 z=Orng|9!iN1C{bdcfU`oZ8n+a)pe(sy8bix0&&2QDbNA$zK$>STTn= z)iB%Ud)UH>JIZ6X6CUYo_opHafEVeNvJ`2V?>xJLC$f35CSZl#_RAhb|rNom>JlER+P&U`KWRRuzzI&ycLvh96C13bzbNd3ul1fW~6omCN z#)n_?4hCZuspq9H86#cD6dKS@p=bmQq*~M2SMIr|>3T#NKPmD)j}M2S5>`?^7_@NG zqy0ug7X^9f_t&IYd`ChXe@Zk7mwDD{bOdqvxeC9x+51L3o>+x^gKTw%aiQYgR~6e* zD4|s8{5*x{9yGLGB;+ykt(qTj95QE;ypVs!{!4t~s6bv}40>})vDqdb2&&iwtn`<4 z9^04g-s2ndCm7}mQ$`x@9iT3snUUp@rhEC4-lPKX_ael)hlLlDx4=r=NX=RPACuAF z;F=GtbhK{m|9Jse;QP!5BW1zTs@WYvPnD@tSz*mmb@zHPX^2i6hz6!omPt0tO4L8S zZ}im5R;f}x#>!|bgio=uN8RyjDT}b{?9Gw9vgM{L#rw(n7P$ZCcwp4zM#L9y}UvRlSv_Z`|Z1-O`}Zy=9M>@ zy;_7P|LQ0|g9vei9S_}3|KCJChd8&miQO-fo=*yH;G^AKXYadbwvftvrzLw^>lI>~ zZxbKqSaMfJI9fwMcQ#+=@%!!DF5`ofinpn^w#5BOWh6y76kijo^IpIH$5ik)Pjq7A zv#UZUJBnVi*(sZ9xgxV6vo5iu;OVimx;ntY`&iQ@KQUO>N~WTz%S75hAaj^JZPr_z zF`Z4>8K8~Qi1ee{SAoE&FyEntCZsCm=3A=Va{)NzwUH8%iy^o_n-9-W%PET>pG8eGuc2wfJAYSIs=QFR47qabP>n|oC46b>hD4=daGa-1YLz#J|&%~ zhGa}*Umnjh@W(H%7J-SL-RpKUVe_<~GU3bp2IZcIGA6;`OQ~>Gz>-%BaI8x{0WsP# z8FW2RB4kZK9&cmY!;?Q@JAisB-5tP5@Hy>c9OhwEje)I{65I|Kpl-YF#XXsJJ#>gD zfgm+)Thghz9K8U?d?4TEl7obi14>Y`p<@cCb!KEcvopHt@b zz-5dtPO*^uY^qu{vR|a@Za+ymZz@){pa06v99Z3u?kb(nF`I<2Q)Uc7KZ~mEZ@CC}<)2EU?pSoiVhl3A zN=Pt-O(`4l7VOkW45Y-Cne3=S3_78Tcz+<$K16T@sx<%XzZvFKAhGl{7>MUl;Bb1a z0%>$k+lAM+vmK9lIHr!6BB(6%UR*02wdiWL+hZ+E$s1`2f#V)WAS=&6A1atU)@4D) z$vx4csE@={%M3c4YLEDkoA27f2dL zjqCS13%9kfz1xcZJfE^tYO(#{N~cb=U$A>=ti$7&##5!+iffB_Z>Z&G^8HYVo?`{_ z9angXRTnLSMBBx4=kR|FdH}bLzs>SSysrX@2SFMU!mDq@T%SFsu}fNoz#vG~ zJBThI!A9QMhJGDW>wrZR7P(ue((y=Glw56N<~a1 z`*z}QeI=uuR;ZI6-ka;?j~Ng)m=eJnNo5!*uLA3k0g#t~ng#JnkF)>*yGBTGJ5bty z+O@8Lnd$`;SZs!JjYa;o!-`gpi#+LyDjBjIT^H*6WH$n-#cY_SuA)-NBS0dNWxbm- zi749s+YFQ|zSP;|yv?NMm<>x!d6X3C^mgm5!3e;LANnCfUWD*~YxoU^NG;o7;BALl zcNcrCqw<&VEc9;`pf1||Ta&lx_CJF15=~mgWDBl-_TNGS?gSc>=+P9VtZI<_y!F0= zr$W^-*+p8BlOmefg6-j)De`yDkMexrHk7R^k47O1xQtif%amYIzu(fPH%JY(SDvjt z+1{)l#(4khNOdsvL7CNM3*arIFSGhBb9lfqI5ZHMnwmDhS!Q-wFLvvC&U0(l%Y<)H zh=Z)XED%9-AZQc3CS*7To;H7 zrscu1)h8yRMDd>VFcd!wK>F=$t4(1KQ8s+mi3v5yMypKJOzy<$q|3zSb=T7jMc^-@ zw>yJ*m%MqIf!!_tR_QSeHK@_MQy(uCP%WH$ZwrN#wsGk3>gXa#U?>jV(~m*)>5-zo zNQ?}qniO2-pVsDc`eC!A=DXR9ARwb}E*U2s9{Yi-VqTvn5JfDA^3Q*$I@l5PY9R_)-3%@_K9dHyifYTM6B#@2<)beg(J#ae?7Z&`WN6B^+S zfCv`XbvYqLsfIcYlxk^#q3PgP1R9=G?+f)eXeZ7-XloQ?Y38#A$<}Y=J6%A#@C@nK zSdGM7vYxV0!wGq3M<0yI(R!rXP;9{Y;%Ls`fvlAai!IdHwF}WZte`3BA^Z}M>sR%6 z0##ryxBwR$j-GqGz^-yB(SY4v?>V)kMK-EplH;i02I7E3iAMH5`LOVXSthNsW1=5A z`p=I_Um2Y?e&!-?cUaZgz}e3|steHHtYpJSi>(Jl{CX-xA6zn1oZ z7-yzM4y0i9dV2Fc>wkbr07RDz>&e!)mR$Ysbo_S~`QH!!c}!Pn4M`%|}MM5fao^y${!`26`0Sw5Um@W_(C}dO#9M z)-~V`XOr$|lfn9^ZWqsN{o{=b34^H>K+hrnt7L=m67uEU9wa`Bs#sa5f zJGv*mIsa>y=ab<>V8)}}5LCpC%p=?dK?r6U1S^{Nm^L}bg>FRbu6x31=W!H&@8m?N zYwarquM3Z7XIMx1rSqKdA6*nF#FuES-tQtIkOa77b3&(0fK0gePaI)x~Wuw zcIU+FV3)%$06pC*^yBVi??l<(zK+;A?dhS<@&=$Qt|LY2oGXhQ>H(t838wxUn*6e9 z{0z^4P2%+dU`uYA`2pVdI^myzjlXZ2bC%%tS2c-Sa<9=W42M)q`UiGxQ>6bi*U`Lr zGn~j24%Gz7>s3nUO4{yvZ-Jn1ADBb|5y2GDPqb>*H7qAuwPbsITo$nvgVt9{^x!dR zBfi^+;yr$panwnxKGY1-0ndqXu!C`4s`l$|CY_mtF$UwrKH*a0`O(SB!zpEzU<@EU zEYu$~-qa!HRC_?uUk@zt{>|ZQ{0%%m>ZEAbRngnG2l6mxlvGe-<9H5U+wW+(DY1mR z(Z4w(bCAH%DNH4ePpY4h)|;vP!H9s0EekhM3Ix3uSFZfE7qJlih^0!_Mzw&?SWgW{ zP{d_ip?gTaRYpMe*4dEZtblO072hawD&K#7v*%;Y`wIl;ol+?odRCHYMDoBg0c99^ zcrYjVsAIo?$%oW=E3?z>1vX%S%B07au1g)J1amMXq3u>sdR;^<{FYIjKuIQ|ACb2) z?NwGfUrIV&@7>6&pryXWUfpga{6Xo*myQI|U+JEjVCH)t`>?SLEHT{)I5SB9YdO|f z5BmN{N%^TRSVc=$ole4xx^0m=;em8Ij7Vzg65Y)gcjd`7&!$3ON1@5Cv0x^8yPz>w zmB)7R#Wc`sCm+&>Kl{B7+d-5wZAeu!5nB$|m3$3MCH;BSlu+00xM`ar@BZZsqXUMb z49?57z-6zMWEqk;W?2=_Y+8c8PFe2=A`Y=ST)rXd*n?A+caB-eJ!_H?Lowgvv>Atl z2Bb0X#j1*Ny+8sE4ag1NF#M=R1`%^R5$}95LVpX8@|~nvNKymL-CE)Xt1?&^ zvUDNZHrNFIR+O=%iQU#zaI(L4|J4_SP+Dz9SqsD&ki*|{sqvG!_XUzdN61KTl-BQx zGGd&SZmp)PV>S-^PrS1tAmh>4k}tH=ZtcWYf0IWKbV(v_U_#j{(~0JyP|vx}b+J&; zeC;SNv&ly~v}q~)lZ6I8)ePdvO^mex-sZ{mE$x3A7yo`9g7ge{0vK2)nd@*=;!VhDRv==2Q)Kzs*|~|qwL6Y=;e*ShiLzhPvt_M#(cmc z2>rV>v0E&hx&iZD?o7PA@a%5^2Y3D@-!zFL1S_5?@e*`0uxf?oFx1g)tR>R~P!9_# z;_*trUJfQO6jFlI;3}QlKwVd<>Q~r1IPNS01g9GarSv-9*JAu5FsycTnXE_@Sjpy-ETNS?s)~NPQlHD#S)o2Kpe7Im&x%vCa$1W9R4NZ zYcNU`$EmujR;8g&HJT%Wk}5(TU-&j$=%JW;L+HZmo|#l}Sete6;Y5_W90R-n2J7w9{p zKeWTRKTAn`=I2@4Sa)iJHM4C~OY_#JWYwThElI#7oNf9G6JVg`~K+*h;z%*X>rS{N%R^~PbTj5AZmbMW2!gw&-}S(C5~UYj^K zSDXx^%VD*BMAr|OsW$VqyR0SBsMX^Q-vPOz)fc7k9YU%LLlS|Dtk;1t6~p}18tIvYR2{1D1gDS{p`i%I;Jw$8Z+E2xr98oj zj%1l6i8(a{&Sb!Y3hyzTnO}k#6I_P3J_Hu>iN7N%9~Qc85i+R+{DDOU7!rnRug`cN zK8F8vq-~-&TwB144PN4UcTzZ=9YE$37+fXuP76c{QtgjKWXnmfGpG0h1WTqk1{Il& zU&4J>y-|8ximf(0vcA?dFYZ4gy@Fz#@b^my&`&Q{iYBLp0XXv3z-#*5tF&VTeJ@(<7O-4HP6m; zSAs(AS3*vs%b^|y^s|!`7@h9)Mv~9*T#eP7L;rh>Vn)L%aG2=E{e3ZZNTWlGKIr1= zU5(*=@bt)RP@((s;Z1F97*wMAqwhj=N*wKQ0|D^F;m$R8%LnWc$m(rh$@9+o;}6e< zi`C9D)?N6$b_!7&*?s0xf|Epi73@40bmvttLc z>JNj%qs5D5@wYsxF*C1_gS?SK<)~-}8@l{EYr}*G&r#R)MV{_!P3xF9`UP^sD|COV*H9?I&>s$?}AOJdN}1%{QK}x z8-Vnb{yBEW92_KHkgoguMK(q}WwZS~p{!+Dv$Dy)WKxS=3)ys~KZ|yU+Jf3}RI5u= z2*v@^?UQfo8``Wl+l@@F-965alj+2-xFMd#P=#%sP9(5^l; zDf8r;$(-N0=4p+uSVjGYD#php4DX>sqobmZn1IUWQ=kG&y_h5I02!Ym#1Kcc@&n@Q zU)r`GZ;=Fk;V3K#8-Ip?kuWL9u-&Rb;@__~6AYLd%u%m9%g8jjJz{G+;AeU;0Ur{|Vb<+uLtQhMR)~k5hH7P}rMF9}GVfvFM;0%P%mK`C z{K$aiGOanKPg&L3Ulb{0GaF?Wr;9Hfb@v@LBy5uy7QyQRE<0G#UrwTXQ%p^JSaL-m z<>0xwiE^UwYnFR&is8%E~3CNn2cM z=4`=OS!1`XZK=d6l{{O)K3cpzv_(!^ZFoty`>|VIR&S@FQ7vfi4>oVOd!zsxeK6)4 zO30^JHJS}DCw2r5q3dDx=q-cz0373h<^|^I{D8OJ__vVB2pSO(iy`3&o*E^U<65T= zlL9SDu;Qbm{hIpI<3rpV3fH$jVx{sn!Lreffxx@7vg->E?AeXSo^#U|J={TUMZ?S$ zt<-;0J_W7a56tPWCS-20{}ddZxgwE6?hE?q6x zWPSkh`F8o;k6@?$d`c4<2Aw8L3#Pd^&GC`9MM(I|bJz?+d{>LSOG{h}Ri8iJ0QX6( zz>3^gE&wFxj{0v_+TU9npP)0%_54qTOh)*xLU9dy_E>-$J6uun7=2WhEVsBYw*E!< zvDbKa#u#%~w<7;@yHi@QYx0ZD=(uz`onSfB!z-~tf!qX^w99grG8H{)E)6 zKL(l6vym_E9~g1XHpfMV?rK@)J9ISo*G9lC40F`32$>|A7W4EqX7d#tL&0GwWzQwX*vrm~87f0;TH2vvptkWH7-mR&l+v*5mLfZZKtmf-$;J}6HJ(9<8yuaL znk%S_tQi!n!fpt9T{sWtS)!C!I{DST35YF94kH*6P3%U*{ut!NhKDz&8`Igz?+zG} z;VgwHK6QmWJ}SVbqsGaC7MIg;X$hv3p5i7^-{13dPe@e+&eJg{y)NXO>B7{gV=QHu zK`2qv7Df`D!?)>yiyRK+sk*BC_@h|o4(#Ah34i_o-NAEdecNz!G?6ak72&vp9Jptl zlW1;3BcPu(_D){s^}7OvAZeGk1JEs2<01d75A`Cv?7=IV8|moJws_gIB-cmj?S$#; z3s=3nHIXGbXOt$+Qf`wzDquMWrCgmn8pQzl=(?GxYy4FdX(CN6v=m<(#1oA7eqDWp zDKVk04aXROrT!O6vcNwn3jq2B8!gi&nS0l+$$d3knU(ovB%+*kJ>k$79=kXLjq+$S z9W>g4Px6*k{S=d}+oxx{=kKM@YnAy+UAc;4QpmZ6AM&^!S?fwPVw!;k|M>R+84t^# zSUf_R!EkbARaKUf27Kw;Wc&Irp-&4_cJ~LwgnE=#(R5%#N2d#4;UC2}YLbY=P2&a(X108ME#R&9v zZI?5JiV@H~0Gy4FN6umVP4*EFJs9EuZUV95<-#fU&{!l;Pz7^WYW@7^wHB0u+itf~ zP9jT*5)!0&zj##{Y9X;mga+so z#|oJ372Gu(MnV==JA#^;N%COq&HJHFlA7+r)`_gRJC+k$VrpV{KFcY9{(LSFcLl1OzTTx(y&pgn@$(2KDgsfJONp4TP{|1@MqJIU%IhBo zgu#b`7H9(1-!JsP`MyhreDD^Ga#AnG*(a3s{Di2|u5ir9^rwR}10-|BWEBly8Yc95%BdLr$L~f*3_4HfPyh3gy z*H&v_mKYb?a{kx14(PLm1fW826zJLTiigbJrs;5$=Tt<|oQv_;B~*g*be}R$(k(vq z)8UWCs_7eQ!R;z!vrYS_IKZ6R&E6zCZ8=>)IaFL{o#(JmV40f2%5S+j+4@Aq5717j z)qRPQYSP`MuZj%hip|W2Qm0c)FA!AHRQWCY5y28cIs@zeeteO^iP=CUcaRk>(|cp@ zb-Dr*i|l4`D2W{7kOhOH(l2a{*j`Qt97C~;7q=*#aqDV~#aRq{lzYQs#Bn=-Hb4(V z+*KUV%ott65G5?Rs_1+qJBbO7?AF=ns4bEA-WooqO769&j&}ZFc+`ted^1o3irr^9 z1x1*)Anl8WFyShSisJWwP4?ri#Cx@;3f+{*!?Rt7#gQ_r7blyiB9M{F`wEDJ){hAUZnc*s1wp#)~gnUf!134z9 z&_$#`z$kx#pXaIfd5O!%PaV?z6A3F{p1dxF#mEiRP#sckIf+r04|q%!zSn#`W>(!{SP;IrzRB&0oBCFf#tZ&_JwgC#hY5kWf%^#SA$y&%Yrfsy{=ad^CmdR zy)TTI6;tTCi*3*z?f_!f1?Pa3Y=sG2YABOwlC-oYk8XsS2+WuWI~4J#5MkoIz7GRi z;a#YHwB=ci1?Q=b86p=y-ZC#eXx8?B&4$Y^{Za~lm;73WHPk0iFa+@Z&SB%3fkRSS z)l=u%-0c3J7eGmaVEBUjP&h(4)^pkAr#vTs1AOrf!3bde_RvGyC4hhR+>kuPl|7Rq z%C58d3Cy^Y5d_j%!i6D_r2<`vWG+8M)89&F-a~8@?K4rXu8Miktyzq9?uzjfD+db3 zaVB4=-#`p8_M{fJO|g%1(P2pCq`4{lim`6)GLq}LV`RSMpl^0vLOTb)Q*mi3yZn0^ z%`w)RK>~M_Uy#RoLxc+B{5oa&^ya+cKjQJM3DbnjT(tz4s<~V8F^&{Wr9DP0&%Me! zHs+_VL3N?gTScm;*2Q@6$Yd_bZbi?iSt<2d;?4Z3hs;Z0+N6 zar?{)SYd(Sf}_S_TwNv}hkTNH$8D}cYGhY6h+~MzLg8aI7+_=133coKlTg^HnHj7N zm+0@YW>3K21`5N9N6&slEz=0GE;lR+Zhf*ijZof*b>4uCNavG(e)Kroab^eN_)l$G zu!-8gi<-qoE3OcEauqy=U?=DY(159^f^im54=Xv{QcAkMaKp9&xlepd?kgQ zd;xRmO93~QEaoy}hy$T{cxD{V062nKLk&k*iFXJf^|CaqdVBia#Y!~#XWt{;fn5Jm z>~&uOlo5cv;4_*%XMJT7%TTE3KiUYQz-P&91QAfv#Ng#nN_$PuGfO?>G&>^QCN?ciJ$e zJ`2t3a1D!0a@&vDpUw4+OQk%oYNOiCpL7AB!7b2bK1D}BfkrmmviVo)N^u$4j0IjW zWF3B5=w}GH7Js6z^zi3J=zmTjs7Wp*Lj76}mBz-jCGOAfDI6mPlink4H0N)}L zO12Eda;(6XtfroH1dJi_oeaek1jQ^2TBg-}LO|X3Z=e%F1UunhQzw?M-`X6Q`(Ti*krCW8INsX&;V+m`FrZ=uZI3;tTDt|MXdO6X z0H|#E$&mW%%FZ@!f=q-h1QI1l@VnH`m-O|W=?rys0tXcDK2!M1WbYvB9Dc5LvDOs?vT$23dTjBt1uN8n0La= zcn`+sg3WmkPz_NxRut|+)PHh{^z2iHemNkrEzcZ34XpyAA8!(4 z$v@o9XD^a2O``p z`4yA8jo}^Q;b{sYnuhmETcLU#b>c_dW9Ee+a~#`W4XfAq$I5$QtoNZmH6M_$ihk9_ zJmOz**jx#yeI#Wdx%&BP_TRRELSuqXiQC>P-eK?2HQa8={9Zd-y`+%dA4;+g?3jW<;zs;54E~>sjq2Y(W>BkBI1uS{tx+@<_)uoz~OwC z8kY~MI@J(>FZK~s$ESt&>1!g^B${CNuk$O5{whKX(I=2+xq?4u8PVL?HRYK(zfJL1 zn!+{=7KnxN?!6z!dITgkD^yMp1)fbaokIzN&9ijVrlE7DGp1Ny z*l&q+VEtU6yF)Bi>X5Zw>8Qe?WMBGqSp2#-Jb0Az5O6sR+D`XD15kDx9Ef{mz!chB`Z9#G?AQ7xl0Dq>@+3=v%& za3LV*%h`>EP@haOa|mkgqmbazR2h;%94-6ag&L-%>y-?z`%@4l{c%^xr` z&wAFq?sfmFgK-OeuY=v{6h~GB2FRX6El1B} zoY>AJ^ROr~zO9saPaU283C7We;^s5v=s%AV2k*V;`InwY5Gz`Z7R(4bPDiEkgf4$~ z0i3*gqqMgjAHSmEYp|)>_Re9Np6vnVc5#5LcQI*q{`}8(q~`I$fa}Y)0>XTy4yH7o zp@$)(`vU6yx2ayTMi`Emo>)z|X8<%z+%tws?Z?L1a#BO447fxmHE#DaKUoWi%}OG!-?Po^3PZ7Lg$3j~4O?OVgVz7&XN>6jpmr2~ zR!9{)DO8`pFpXe^F=e&4pIa2W+(HS{)QTyH{1~usMAew_b>fFIgtWoPL@b=kpKA#$ zHf8RXcy||zGs2_?lC~DNKGUOS@TfHQIZ*;{jIp$AO4*`5(=@`_d~`-}8Y%PJ3v}xC zHO`p~Ffp4Tj34?23r{BmOsm^*qdD&Bb;*{fTUL`?u&O)Fx4^zM=ti3nSQCt5L4sj_ zgi7#t;S`owXWw9mQ1E=ykg;$FA}4DwZw}QA5pk1ps*rtY$mICPPIxlgHmhhKmkNnX zGB;D^?8PrImklnc55nb)ZLDEo0(ph}`+P1$)4#Ca4p>&M(&-o_DA8;vN*gTF+gIJc zhwlMT1=5E}8$<)b0zsDk`hkUibDZ=0WX-s|fXOu*qK=EfT!%=9@;@h3&D`$HRVd+I zfa+9q_MC{{H!m3mT8y@=^XfkzP-t%EA4_!-r?3J<(gb6&otuUQf+^5b0Gz)r$EOJvF9BHhy;e+IoXjF;Te0aceOvtJ=fUhjV zIcwnZ4Jr4j-ZRwqaz4p!K1iyl?M8KoCL6XdRDosAb?l(_jsH2{w zM?*^~jkVuBN6rpvxm-4ujzgQbUD~!qsBqVmxtCsGdW-s4<-N}mqQydoMU+#1O|aE5d|ZyRN^1W@r^TGce!v@TravsfCeJD^XrfVFDCOxd(tO>%v{$vBbbkzOv+}&h z(GsBPs7%;i6xlvo{wVV4=#E-;z9xS&Q5*%1*c8ZLOkh0)uL^ZGyzegy$c?dO-dd0X z|A47>Fc}kYp_8CIcB7vJ-`8j}^f$U#(2H^?ncy5ILAudp6M32G1-+av%&MJEYd$`y z-h4bZ!i#%V=bCx#Jf@8RxU?xGA;<%; zFZPTy=*ULda!jM0G#Sno#@{9Sc6(kuW(GC|^2CGrs{*@f-WO)~*+t;pdXxEj3%wX8 z^F$7R8JX)bB!0L6`OKA!npydwZs6G2HN+zGhK_#!sW9vlp|xrIsU_ zHF@UPV%J`3*21L50ZkOxTvsjMip*&Q(^Yj`v(Fu7R zY2m+azrSs6;eK%2oy&=ss?^iF#i8J+u1?Bx`r)&=ZS*6VEUCA&8qHL*MpGTfY}P%g%`n9jg8zAIE_S-i1Q zHG4aZlb%5quh>P}oOv7=6shIV(ct^{A$nUE2OGuvN82|kC|(9Dr6=Xd#`Yc3qtAaz zdq)!Jge3?P5O|)^vw$v%v4<^xQ=(bAb>*7=3C>F4*xL~e<_@HR8MJy|yaJqQaK3zI zqmP=ZaZ0RjuGUBlFk?FD)($uw5-`1B&~~rrSJ@i?zQx3Ky|2WuwaG%A+Wk%M1?oBa z&z29tG#%gpz5_gb5^tAimGoSFd=(7X#meSl@d%X27~L+cAK(ARIHhd`cX;<=Sr8ky zy9?unRzZp`&fRLyXGfH9O}6m|u^*LR3IF|%5zqsueq}IOVwh(Z)BHEx)ZOk`$nNgX zW#paKL&EKFVm|eVzzZ2s#f#fiS+fJ^^%r;p^%4xTMWYB#@T#oTbTct%7Kwr z9{x0US6F7$E{h=UW5f{|gA3LdUcHVWpNShcWt8hi-^}ax!!?&}+7>sJfLx6-@wXtDwGHq?1 z5>-BdfaB$tp@kZWUm0OBZ_lHTSDzRXwVaSx=+pbS;P2f>tBi|ev5Oj)sea+Jh4=i0@ ziItHK*X7LesOg&Tzd)kI4|m}jtNU`3*@i)bZhJo4`^-hrzgKNWOPlu)Bp{P!j5lhp z{?bomDMNwiR)}HF7ij~0ik30BsOdRwui`MA_GZ)It4qq}k-eSx7O&WC!`Tyct?NNUzw=thOVZb6 z?PkNNlArG$aBv7vSSqef@>{q~6Q{~lhxwS$F$<}4qkev`^V=HIO%b#!5MFIdFdItl zysSQdeYhyXc-(f?rcr4)jcibFf2Z`u{$8$AuQ`wZcA`2yqap-QFU^sCisT25g#Wvf zJD42fSV2__JT@iq{c-Z5OBdgHsf9oM^5d2Mb+kY`jJ_E=rK(y3FI>&*3RGsM(ae*H zNz;!ZKR!LLxrt}a&G-D<63Np53=A9hE1IX)u!_JTreg!yYQ4c-0r-74TgO5A4iC2% z)_yr+QLAXd`pG$NLoA}8;VTVEYc{2UzAHuB5Y|I*d1_&kZmj;cXiOoB4I9BDnB zPMkBkMS@k}?d%cBEzWN`fp4cdE4_EZ=a8_8LLo&3s@;gIFIKF#w_W7ZBijJp`XNC2 zxSvNTsbKQH(JlS6ks7Bb=gyU-$tD)pO;6hKKy&Rj^R>=(;ujX98^mTzr-W4L{R`rA z|9$@cpGiguTB9QLs5n#!$L*`k5|E3;Khlu{*_}V~G)oKfp^q&SjW*QnN~(#Y)M8F* zpKoroy$ZVHtZ#%zyjLE&_#RGvC?}{V z$<>&Ta=0zHtKp(*_vAYL$#c8GbKWs2YiahW6rQv&?i<{4z-z?2e;r9B#9%RElsJ@9 zD^pDaE2<3V?(5Ob;r|9sMmhkAv32&`fQyi!Rb~Vhb%B{Xeq5*CJe6U&i3S3*AMt92=aQZ@{=Jp#19Q+zRcD)`qmM2uUG}gam985Uou~ zD)W2vW5;{cw-x#_YY&hx#!qGpFE>54KL|qQ_tj7ARgjAOEX$%@ zLUXYZ^<=4~BgagtC zAYqV2!Qs>YXbA0{QAqBu!wwrg7oNq?qMC09NK9nAREBhGwe-_t-<+Pu-b{3(KNl)n zpK@k(r;`r^=aSun?@3fZ9N+@qQ5t%^U$(QGS)G-UfFkz?HrTt21FQ9C^gFh}D&5D( zeQup-v@Y||&*dNLgpI%2{ADT8t^L%u01=GIzs0No{Z^n@n_0gZ`?~EWc!J~RaSFYW z4>>Nz7Z!3u;!4#S)WToarFFtNbo?aC2MrdK_sh+A;W1WWhcbXVJC=6+OmJrS7$2~F zCb0?xjYFgV3~x`(=8iZlHK@K*Eeu6KjGM-#k=u3ytz6KsegwMpS^Mn}`?2S{m%QxV z)x>I}XhJg}M&5h?rVZ*38xas|w>DkFtaS%%){E43`kh7jM7Df}*3083dBt!9W{X}x ziUKsZeVHZp`kHn20R5OUIO*64yHGA+qR{m*@-OA!Doz{2dUBQN?=K|3X1YYcKLXyM z@T%~tM7&ug|Njc@zgFCnU=3%-iqk!oB}ycN=5#6iT$?bYm4LB#v`c1zw>VEGz+a#L zzVq0|W2b8j+XE*MA5uLGDBJ#3*G_FqQB3UJt^b7eN z(gu{;PVp)-FmGf1)mr%WMq`F;hwBflwZLiEhMR&8WgAVr&As+0*ks)@*I>X3Fn#Mk^p*%fz`0ET&M5;r<%Gb8wFUdoR>H5FfjbY%eG% zpn`hG=eL*&07vGOo_&>{UB&awX2)KTxqJvXul_vhlj8iu-?&>`NyZlI4;4)d-c_vi zEQ|x?m4U#}+pq+A1E(hMS0o09k<%O|M)-0{k5b$!yi00a+yC*XuA`Wvb(&Wnd(E_> zd|qzVqze+WrtlQR-8WWxSUL|ye4skW8=)a1Mzt4!OmHZ48 z;$VqXap31^Ccy8-a$F}0ag1g33s;|$y@q|AqhUyH33g_aPYHN$-|f_mc0SC%`kaF` zy?2T-T}}Y5!+n@BXZr~l|D!kTcfm4lyBd9!Fjd|NgPE$qFUa94)Xd0B?tns1t5A*j zEfF!*h{RD6hljNe-QI!& zSCqAhf>C;^&Bj*kEj*T$KT-Uh(laPFq;61Murj~7r;!}z8Y8Sk65A3VV}+6VoFewR zx@hAvr)+KwRy<&;4l<*!@9Cyo&PIxKs!fWb%0_?;O17J!{{JWo|C)j;z)dDUS^m_S z`6w(;KJ5bn-iLRx-hl>rxpK;ZoJsN*nMB}b5%+yBm3gmcAvrOa9#$Sf##b{eG6-^7 zr-zWZk?luqfb5i(KE2?`t>VDxFkMqV(BYo|Kmw+Jp-o7#uonZVxM+EbX>Yvj!6c|( z04pWw0EPAbz0H{P!R;>5bRdHC!%=t~8Lo2c&P;ilvx)N%pflnu*E3q~Ccz!F7*6F= z?|AsfKPC54^#{aY;6?y;ASk2YwTwnWTJql+%R$#^N^vv?yIYM4q&w<^k=!uVnti|p z#qvsv(P=lEA7Wg?b9v%uKqp-*V^Oz#IN2+*NUvg+*oYZ0iU$AMewEHF(qlX9*(J8L z603^sXQ0u|HqF>s_rvr8S0FfLIaQS)qt=i{!~^n0e8Gtu6N8o+TmB9?3R-%b7h zZOi^ui?2nX>YvzIEj0Zdw(aTBCxz?dmoV+cS_@@TvCl14x-Wz@ZM5;-tN@(v zAFrWUyE3!Ng%66v_}Vz)U9%X|LV+SVVQu2QFkrxd04xTIebkR{FAq!iSZRo)t-lko zBZ+*_Sw*%1=Rdl8Nv8#(;xOol)QjR`>%EB#d&agQ`V)VRGL9lN2IRbuj~^)_Iq zL4SEggMCcRxl{?Ji+DGo68Sl$AKBP0+w(hAB=Y-I^SAqIwng-Z#zI4u(Y){Y790;R z>_Gh25y_rnKbqV7BgkK_TFUsikS!+H{($h&m2Py+ z9+H0jCyWQ1VsIxzWKQ&&vHtkdNf#oMf}RI}I5+d(aUshbB2bq8hSl18ZtnD;`9?2t zj01Ln%vGT-__$U{j?aJ=R^bpy)VKqL0+j+J`Pr6*N*TiP3C9f^*rb4Z)Hw#RxHw;E zkONgrG>a<=1bPciCDm*uW6B-tZ@B`xz?Pr~+U&T0LSVZJKKFyUkRBbgx2zY}Kv>wN z-fuXHXR3<4RzK#=@9Di!EGnhCF7`gU=j7y#jhM?;nIIAGxVMGdp46ywz4SX2CX6fh9@y3taEy}yMIh_7bAbg&HJvOwT7eU7H zlV625Hs7qm?tjh~{>`nbRM$*w)6<2?X;ZlK5|F%Vg3DhZi$i+(2aKaT2}k;&Dg@Dg zjM1fus>1Sz8*c71f_c7mI%FGU2fV>d#hZxf??`(0F?+ZY1nx3JRs#j;eztT=M%pAX zUQb5UZ8*;*Fmz#nY=L-^62yU4cyIlRxBQCVl|h~Ga)o~5HXs|#p~ya5tk=d?!BcU) z*qf$09P?XhaGGfM_pcjz04VZp_Aq6UKPYkrwSrHeoqr@~b^>!44yO5um@`~Px6V4D z1xPGFAGvjL3Sz3><^`dgD(W`r11)EJl4-GsBN`UcyBo)|{83c0nsNLqSNzP~ew_OB zz8qoBQAm6b8oBjv6w+dnY}g4fJVK8Hb?mC#e$I?(o2qDc7Gfyj#M;GJ*8iX+RB+rf zjt5G$z=8-czFm&M~lp4X%R#EcRR)3fjh-d0?zc=1Rt&wof@-HUfa2`g#B+mFM#8A#Mm_5 znaZ9aT?uny-e6_q-B%tITnH0_*aEi@zv>!5gfXvTC^B&1&rAeEUp^l*hCNTFJzYvK zQ0PQ4Z^Gu%ZG*byLTJMUDtp(q~{B3TC=@zkgmuR@9sKY`em!-LOtlf0jb|;g6)^ zlcdl~hbbex-tk`5V5=W6eTFVe`JJJ>kjE=P>vb@m=|LWcEC^l&!U-$eN(Fg$aL+8Zb@q*Q#J2lwkOXx}>R>MkqnNX~=t4%V}fXfo`N)@N#;HDPlh z*V7H!EISgNhO=oiy2An2f+ARxd-W;#PJcETV=<%`{$iG4aC=@umU9Er1=0nC@RWqg z1Sjt(!A z-;|6erSk$N74Id^xPk?8<2PpTBN@dD6%Fw${mY?TkoD|~Zs%J1TbFoN^6a@1O;+U= zsl%;L8`ap9f<^AeGkZ;{v0@Mn|HyYQ7gO`dY!I)$d}B)_ps{o<&f z=Gg_8m}O=lZ3v2cTo@L7ew|;58q$Pvu{4mCb~u;Hn3*C<6>Zewd78~==ZUJaI`;i` zi>P7Rix)^>-8=-PFl7<_r~t*!66{mjEcV}Voeb3XQNs+ z`fnJ~EM6cD(0JO#Xt8j>;YD!J=7` zM7n*0+5Cx6&}WIOtEsNUw`&?P;gMB+eut zU`-{{Ym4-v=;!9m*>>q=ka~+=y*+v!_scJV>B25p`Wp%p*I#m>ZxQAh8aWwXe;5fw zq><;25vI(ct%cZd5I_fwiI~LK zeL<|zNIGaBWUVzeB;K{3=XK5O$R*w1iCMGrQ9HVZC(~%=8-Ia(F`Hn5e?g*>5&?1~ z7^xUz1uYwFmSd=cuR>5HC#<`^@RtdaenL9vOM34Q*g9FCRC**9F3rh=nzzEx+h);V ze?+b$(lnFk&1FPP9Y-OmF-q_NAp2#>C5rLj%S9%Db!ZIAG2?W6(aXU~7bcFwJWpD| z2PuuzQEhzkL*H6~X9+?mT=5=%@7C>({+{ldZG}aj^VribP~e8S!_*0&vaJPTc@Mzi zcAc32;LaxAcI1$iP^By-zDAict7Xb&s(5#6Bd)IE(d==2U?Y)AyeVFAikoVk~nEQ6+f6l{Us%r%* zG&wnzzW0Q0eGy;YOVYn2JZ#8EX^;FQ0#)W(gF9Ss&Fc2m} zdBx*!VUxt<2N?7Wb^^qOmCnWH?2s27h~F3r-GT7!1?>8fRRR&ttTWUn0fKmF^@dET zC@zr|vr~+pVRukhXqwvw{W^5w$P$0bW$o2Vw%_w~Ov%2^whhfT>PG@!oPtmnirD5_ zyr^+#Cduu_sT#8um3VKt7Odzx$o-J~!mvqSR8Y;FT_C(V7zQ`^d@oQXQ)GY(=C`ow z!3pnWcRqrDsZE3@xvOb_)$c?qN!$6Tg7@05Pl%A=AyA3}0*hKyU(q(EOhrRk0VEl^ zzgT0=3IvKq!B27|_5=x8G*lcl-!?NUCSsCuvoN8D&<0gyYP?F^15)od3tS^ByPF}> zyk4!Ucn{xK-ihX%y+1IxeUsi18iProh&eqh67hcktN#W<@eBeQ8d#m-Qz-ujyzKWd z_&g_K&>QN?Q(K+1LC<1^7ux*Fc~8GAPdQEw5!{F@63CWqEKn`H>?uWqtyHSA#EFRr zc)oIi4$6L4YB+EM7*w)6m-vk}fTu!(I(PtbTcWo7iqXvs?fN#*!In-r9Z-+S)|&JJ znFvM;$H2v9V*-~UX#`;H{GimZkJoLO1$~ICC%1x8AMq?d-=2J`BA|LM=XEAQ4i;5^ za%xp04yi-6MG~}{t&V)R$53{ej|NJ+9TGwA7Q)J7bxi6HlyM-~q!fBV+_*@SC>q+< zuee=2g9DSy+Htp)tT@J!+#TKV@O!6vE8KcOdL^2}>?(%!FIP9tU$0V=`Nj{(c%7!b`;yy*&!7N_bTWxrao4l5nyn}gdyPo|gs<1+ z$!DqFUhLBf0ZtpK9^fPCQc5h0)inuNX&q)bw4oeu-``ZLDq~sW$u({R1x{O_zlf#tu(rtG_QYl>^Cq1Jrn`v|8 z)2FW`#^UH>eGH0phXg2zNFnnmnZr4b&T8#DXQ5}ZS+ZhSaB2SEx?_d-e~3K+Yp~`a zWP`VmLclbo!_y>e9b)(BigB|yILzYy6E*Dekha~hFV8a=Ik`R>k1Cn_+1?QXJYZ45;+QY z6I$u3x-|X;kW_%K{necSpYHDw28(}Lzs3{|BGyw(b&Ed0v;qzYLEAoEd94Q`anC!3 z_A@V~#Ww@Njz=nqUFyNEOR5Z2I^0oPS~L+t3AcR@#q}#H@!P0hkail0$=Sd%;QST| z#|?EL(O{|-(CPJ$7zml~M8Aw&L5V5x(NA*kTqWe6c!u{u(m606>WvqbEE>_UV?VnM zz1s2trV&MEk+1((uV4lA3Pg22jvX*(VuNs17>g|43;%{GZyboEfI&LPzWXa-Xv}`& zt}D8$k-mw*0txSi@5g9t8MGP79=`@6WS;D=X=pk_9gT*q-jPs7b2MJG-ggA{w%yQC z9GR-4UsOBSUvCYMBb6vSTBU6JRQANhH?O2xa1PM~f_X;ExqBk&t*2S)^yi!Oi5(j) zMyaOltvou|K#YeetG>zxke1y`=wo`%J={045NjQDmdR8#Nj=v5`N6yM1&JkcjmiLy zW$ALcJGT6-TfNCftXO8oUBmqB{`QvcPHFlMS-95up9X&Bs{+L|mbJe3IL5I}uRTwU z>rN@NUbqmn!lLdWa*xOUPjNwjFd7i+O-G&{P&|!E;4nwaEq|(|<^3xN)q2B6OSB7E zHWkscWrF=+5q#M)E9twCXz@N2nUQg=dP36D*EwUC`9cU24LnH4c{DJL*x$D6xr1L zM_mu*oHj?~6IeFgk~Tg!FqEgQJ!`V4THWYtI{dYW=LXuZ!~{Qr@Ry7P{KXZ4$CR|} z^I4-1`R+S02ItRrMK^200~dYcrm?S0A)!i{!s+t!ncs!tMFUpZj!_U_CoB3m$HFgV zz1R$zG~U90n&RWi-7779{Dwh%DfAJv)YVUjk6${%sdX@uok?94hMZ56P|{F^JtFP}Ih zdJNq`FXUK)j+)syG;nBF-il94LrJ-!5XQt_i395VRvR$o%m~Fe*dFvU02#I9D$9@v zhv1*}UB2DoFBS}kwwr=~)XQn@wJSe2=XLiamB|*&z2d*CX z@cmFyU#!zqPvlB|j~AN1bAWyI!~yJnb@J_xZ2t3#=JOL@kx1k%rVp=Awq5)IdQ~H>bUR(QJv&R3@RGvi{dFyT zAVGrLe2A(2@v=EQi%U}qn|g=G0dCP%bQ;U)K;>0o?h+-xTRWQ6x6kF@~ zO7DyCm4+ME`O`lfZdNp-|3FQ#gE{)NH-7Z~kBvq|oCYr)MpHQeptIKRpnS2d)-OmZ zVs8M>%wu-au@brW{bK#@iW(Ox4h)jv=es-;KW0H*h)`*G1zCW^YXzShzMI>$a_-Md zj{S)jduGppI_#eSJTTejU+nn+HAOgU18yeE-@!pq&wuf(-0<_J8+c{AFUDZur~OOW z3Vp2yWEkY+U5g~tf~#4C)38RoO{Y;R2y2%S*z(vVw=b|kj5!`d&|_zZsjA49i_2!` z8wBB7XShy>Git8=-K7sH|L3s#`@zZ*F~9S_pC(E)F=QW}?B6#(llk#5*L_Q8$jKoi zL_=wt;_PtC$57%Mz`yWN^sik=# z1pkhhCZ}^YKvZn(8#cbeBc|q*jiXC|_s7WsW6VmYFz+kVocP8%E-xh-d-1$E`6RQ^ z%q%#-CA3>Cv~Pd7Yh%J^P*Qi>jT|75Bpjx|pOI(Jj(-(dU65nB($Z*t-q#r`>L;lAEI5iHpyX2(7oKa+P9Ir#(e*c*ZyH6I@t}aWs9$nte9Q+^b-`a9-#DHE?bD~i)P*|KY&atZkzBhdr`$k1GXYzF`r99Q%1Hwb zwh9$>pANm}8)5(+#D)xmVyePGLMu8RsQUqe8TU%kKBgyPPxc$a+%Apws@?~(r&a{u zy(!oG#Ga4;PJl$O}@}h*@ao4 zaKV=m)Fj}Ah{vQ7{2=II&G-$SsG&lpp`MZe%e?nQWq~{u%(6=xun4MQR=1GrkL}*9 zmZpxTlZ_krqDvFX$Z;)OA(h+UsN6t3jDQ0U?rXtE zQ(j~JHc5S3ihOS%-WLuOzrHMgs^|M6xYh>1A*-=D0)j(I-|YUx zq)0ZKWZJ9TH#tll$5W_05XLz(P{3I!7|jyjZqO)lwmnz~8HB>M3))`-oQK3P!hsOF zP_=Bk33=M-4)>+&ezj_ow>PJ~Mg-ZQx!1-Fe-BF3x9vBhhq5>;ecLQk-~%ZVL6}EB z5P5MyF_;rhzrn*WZSRixHUs&Tt4>D5h|e+WwO+xH-9)R6w3ovr>g-afTmm}cQs~$R zR7N%A!UnX6hNsZ+n0d-#k>aq}eWB}l+0FER$a;<__GFdCjgj^R&m93Az;yI1B1lMkQsqgZ% zS39}g&vA8s+2$XRGSQ^UDa*URGzh7Qzy_0U-&TNL)juNw;47(_MTBVkKXjKx?yRxUu zfA`?C+10PUcgER%E7jSp#Q8HpusstY}i_|r1>M2F^i(s@vq5^ z?KnEhF5s+llOei+wOQqNUyUkqG$Qu2z)35uh)dx_?O&r3Nh!u4(6+2gnWQ^Db4jn|_DY7|#t9evJV>4qHJ?|o_ansi7D!V&V_XFOaA>XD`rv*4X z*~!N8hQfz34S=E8OI>yjb9U#V!wB5x=Yb8cqo{;lx@>(e>d33G5FqRg&!F?rDrZaK zHrEiGs8o|qhG(x3Fhwg{&YJcp#!~y=N^+aYR5Cm-T8x)WEK4EO&v)=UnlB`n`(zF? z$e4+kf&e;~ zZ8sq)oH^Ty_PUVU2#K z-RW0_lsD=u8cc;Ng_aRoz@KF5&y5{CCw1`F650{$Ys_dmSDP&m^R>Eve)DO+KJzj# zu-#*nV_>=8N3z|&K!J?CS2_L4wBPf;xd7*SoS`?0tIej{${*WN#UJzlzY>)Mo^8_q z1pAjX(CK&y%+X582S>qZ0VWr^7;=BmTA!tXho*;fD|*&9Rt2>(DjR}eIuu6sU8cx$ zNN9XT(?@MSHmmG_)py|e&bX`}PDrUnaeA3NwEF2_E)3wVpw zSvxdx#C40^EfQ>wy44<3e;CC&nFcYVX7dxUt6dX$-Jb?CDd;wM-na?2j#Zb3Q;N+a zOWxs-Z~$_Q%LX%6?TT#3j=R@K-D6k)ZN5#?rNafm%T~Yeu2Zb2-^;TqU}b zcNL4vi`WxYLoLefFS+f9R5sI1LtT&b-)dwY;Qc$$v%kBCt@A$q4bGToaPkXnB%%Ey z9j;EsZrGv^aMNG$9hdyuqKWN~3!GCTSeVbPjNN7o!$V`PR?-UhRBthN0SyzW^M1Kx zh3-NbNI7wc$9V2H!e^4Jwz@oWkq7hUwfu1EbiP^Wy7Q)73)216;wMG& z!Rn1(^RB+riN7~918)WG?=?vIoU@Sxppx0PPoG8T{F+?Rxn>+3EAtd$#2XRbR|hQd zxIO91o}%qMq?4*pED8_^$syR{0zSciqi1~g1zE4!10nj=H=E?e@2k#_K*lu5+C!ySRJPeC_6x5?Bq zuV3A9CCBqsr}ESMtE!E^-G=GoFMEUnu7WZ_XPadA@JUI;Y}Vc8h!E@G+RGn=a|NO< z_m{^W&mXXJu#<7K?I)iUGX*7p`p0~>mS1kEbJgw- z*c@vW27-Nrjju$!u~q!6fL2iB37y6d5gKf^Ip7xi)`z3mY1SZ?)1t>_;Y2;OAGP6bztkBm;6~bM^X9BWQW}%1b;BY1u7)?6G8BN<%G2}R`y$a2{Lza_b%Ae5+3so9^v5XZypY{&sDd z4XKNK>uEVP8voCAx>1DpI$(+mCW#(Q#PtuH+o4#)BTV1zTf0T!(vA_4I_tg}_EoP$ zab#masu82#fJ>|Q%TC+;u$&WHJ-uPH-e0Nh(L2q~u$&ZZe45_Cm-4J516W~sQbE`7 zFPVZr|0EgNsUD(fXAwTL>RlD_n2i?pa%R5b8M9t(6PtE|u`duPshjNYy%+VlqO|pi zTBx&L_}!Q*=@7$~!o$KP?vwsBF1~xZjuFdZ{uABYX;kFudTNe5Y+av`F0^jgVd;9B zZ*U~Ew83TDo>{A<=!-lV84|q{#pV8_K_dz9+B4#aop zQq+b8L(`96;m^W8>=XEr$8n9;`F>zf^45L((rX)31HL{lRdCn6!`%NGXOOW)K{0eZ zdMD$3vGa`tW>HQgH@j;j)fz=>lv)FC?n6?K&G*~|x0xa0cW0;Nf1@8PH*0sl;Q-1|*af9rE9QB9@Z>Q-=`V?Y zJMzC_NG+O|IZWa;)zHlW?W7>oG}!a5XP6ej*3CY6R}O#^inR+xs|zl~>jH!y0C4Mi6G=V$(_Y3T0=dy-lkBb2{nsz``Em&=*h1<44Lb}9 z$qWDjttsyae!;3;j`dt}G^?Fvy7UR3AL}HRUzsDH-d+ge1Q@bt`M5vj>6^3R1C-AQ zy6>e#3eBQfk6RfE9TIl$qKvD zsr|&axnOmAzM+K@SeT>(@hIiJdzOvlfo%O zX+>qq{^tHl>>$2VqF1K%_9EZ4c)jM+@CRninmM+!iD7dEA~4Np16p@*zL}wgon{>n~}z z#1@S;^+w1qN|(KYKm2O8Jaxt?!X^yUD*vF{$VARp#yFT*sWJFr)$7U+Mg9Hy=CH0y zo_jgjz`Mbkj{^(D1Sr|dAAW||89MpIJ-2x`ar#O3QN(PHM3Z`}?I{Pe?y`Mrv3=3v z<-FKq-u123>uh!)#q(tB<>t9biXRQrLj9A{j`ss(_o zN(RM5eU2V|gznMI=Ghg$P2M{H)?kwITZ8h!?ec1Ya+P?2Uk#t0-t?9B(=Yi!bMAoa zZK{W6{kPnCYM$qx6@>NfRHs-=2GgUJ;ie5c@+>0$&~aziq?g3 zVoWT~l8Nk3;=sCPY*YTl2;)}ecRyD_kwo+V?bE%;Y>g^853BM4+O7zjjQHd-ayhTwnxFQVrYID;wPvvZ;Zi;T z2}J`4m#=}lVZS`SZ86`kuW{S=m}t_($kNQXLk>;jt@yFdq*e&4Tz#sN*z&(l3G1zQ znw*WLwZLv{x1xRPx>MzP{2D6gZb|Qd@Sy(O0($>W-{w0J=NS}~ZrPCKXl=Ef>UJZ{ zAwM8&^w@$p2~-rhnHGsFLFJ;{LN>MrEqE}I;!TP zUrx^NXP%}_S(*?UusNtL%SpJ(8MknlX8zcW z3w-BwU0Kqv#cB!ix_hHpi{s6+^eBmP`R#4Ll|X^!wlxZ&^je{}_^$-WQzTM`^(Y1 zeX-}9W$h;iasK;f=M65s7Iy;p=z7ViN|OPnM(Y-mL=sooRI!F=n{b(B zmn*N{apOL~L3I=GGi%{n)JrlRiB$+7;Q)Bgt?X{?$|b5QjpU95#zufPhYGm6Y`EG9 zSWjS{o-*NRvZ~q3TG#IN@?@Wp%4aWIXTN+~;UMrM;2m9{+uU`96+Y=zA0f%LxqGejT>w_AB`-j?-HY6~(68NK z`QTxHi}%gJsu17~Se(i^`k$w+A^`rOB$90*^~H`Bq{h`#F4JV4Q+g(-$l9AKQo?Q| zUPr{|b}9u1c?v-NO!j|#D7th`r-r^M0A2!>kXe%ja%z#EVMjT>%qQjml~XlP<82G{ zYCNn55f(4kL!>r(g}$Yu1{e^RwBrpz3T)>f;=IxCvQ5)-+6eFgn~@L%R(z3EY9~&d zo=^TCT5XZJ)%t$*6bo|GE5%D!3!+M$?Y6#V`IZ9n5XGv=i=E-kaet$S6gDp^2AR}y z1CF;Xb-|@N4GMhE7C$sc(x?o@>YAYaCd`~wg8C-T&L;DbFXPEhs z3C~Bp=TncV*wdhPlb!fQAtkmj#xACmtq<2y*zOk+%+z9JN!!}$Cm=n9EaDu|qOhhc zX2+fonkrUNO8#U?eYrD)4N78V2nc(tngyd-?<#AzJw(r0{Y}}3^XqRDn9R9EM9NKb zD%vazj`WA0sB2pFo~O>3WQY1VEn?uNlKGyW$Q_;5K5!wD?L5lA;&^AFE9JNWnW5QgJYYtf(1ooTo zyiR{teQ>+1DkXAaPt)&wEs3qr)`x{fGYM`YkFCOlt%_$jfLLD|%_j3<+Z8rnp73IK zlw#Flp8Va2o;+x;Ua@z(FT*nqD52%HuQvk1Cfb*46sv?dJpLV-SS6Jh`a zk@@+Rp<bK#}$^5`^5Wn!XsvUMF6XTCM8QS(P=K*i{B@8>W;Kz(ZlMLFPu(xI;U zGW+6Z*2G9}zrg>-_Th@%AEhyxT%z~^i=3=F|=lS?*r4rZNL}{ z(FUNsC~Zd>l>zn&F;q(V@VGS6sT>OUqn8^Z&o7Us+w;a5jt_gYctM+V;0u#cF|h}! z_@gW;+s|#7P<4rO>YScOiFO~*gBWA|Yhu&v%>hK2wwD#z1!^s^bx*xRwCDZyJ1XtQ z%28pD{jbj5`!&1UYd!|Q|uCF7C)tQ-n5%L8S^NOGz8DG8@(rp{oXuISJ3 z!jJwL6eZc_T4yHa-JTn*cz`gdq%5FXwZVhsa zB%a<8xuLPsi8*cUbb_9zhR$x1ak|2)k}9v; zjWT#|vY^7u5TL-tC&z-;BJnsCfr=vAA({QuV;k~xswhUeNKq6x`)MZgWn%2M2m0GR z9%Jp3{ZpI)Y5s$!>%-YWK(-Mp^oq~0 z>}NE#JJl=ftbotj^Q~CiZeOw&3`cHaA2&= zU@$&}5|jIV#5mzRys+~Ug0l0bL`L*m2J^{7m{B6uekFpz1GMefR1U_n{4~=CPEGDWGp|nqm&kq*s8XtN; zNyTySiAf)bC_g+Ncj;b{TB-SJk~7l;cEhchxh(wDE5pdDW5?#<@ zz(byAyZMVc44|!~|3TW+>FLvS#;yuzru(rCy*35S#8!ULhT|=~1>jYVnp3m*L6=8y z?<*u`Xf-U;a+{Zc?SvS}!KJQwd%j)EN;j{`HrVHA;l9z8_JJrz0TJ8(aB!He=fu9#jbAlu}77BtMNVs-e z;qGKM&wdh~muF0Tv@2by4D-6Q%4}13ExWA`bUSx^wi!sh<-Sf1`AlKka(vNgFYipr z;Po6|@pKuv+a^S~@y$kvj{O6EY|dB7CWl}$bWD!*+n-#KL)2z9fDexn>}F+N)#d<`N3AWs+I80 z7Ffh$vQeP7qHw|o`-qI=L*jOG^y4!DSma=~q9T)W3^bM<14#J;hw`_g%lBt0C8{!A z{SlW|smjV(=j)sQ_o#nVSZl{|ndFV)8c`9QEaHYnyvMrKA_6Esek zD1oe&Mpi(fhZ{rrCmTogRvbAMP#j-u^x9k;49@~u0|>-FW}^@&^?<`~HvLA`T4!ahZ2cq|$v z9B`MQmgBvSweyA4xsNoi5>i-N^_~Z|y5bvITykyLKDk6jK*3yq>P_t71R;d}J-xDt z?~cHa53FV!)OIIPRVeiAWOc=F7~i5J~#Gvy?fB7CWeIsCTR$G`Lfo`*LNoIdm+X*y4)< zVEAn}a+lBXp0<~8` zDjkeU4(3Qe_#uyZD)xZbo!S_u9GonZGPR0!6=(9nL~)?Z?Xfu$(B)E{(_Z~&!9ZjJ z0|_As+ig|Qcn84Jw_rkK3CPI8cAOtCBFp;(kk7JXR&s+^L6X3oW8oe9>J5QhX)nRq zoHZ*5^m7ELOMd$ER3aykHF)F0>LKd_X3ighqwrclArk6p?`uG|E8G{@SpaYn!)iW5 z8AK~(yX+b$pRSbwl?pZSAmvRJF9GGStj$Jf*4~e_zzH+RRFwc^%|Iv#g{OAdC`6OV zP!}l`#C|GL`~%4*JvdDp5*|idBbeRmpWKZ#|D+UXZYa8-lOV_}pBzzMh$ia;&j_09 zJAVQp3EQedybX>)f+pHOJWpW@Y{C594=n&#abkDEM4nm0UJJ+(B~?U>dSh8Ai*>*> z=Cy%Tjxs543sA<%L1wfqySk+0fi||2JNKzPXaGxq!0XA@bgnWhIh=@}gUi(XkIOi% zUc2_M@b@_mnn1%6GO1PvMbsy{Rycm#9wizdD-Yj(bR>5F*OTKb&Fks3eW>3sTSjI*Z*7(hbVX?x z$w3)&&S{veq?-bJ(>ta)c`wG>k3)Ny*td?Fa9=^RZbCM-ExQsNIwopo@$I)(7k6=E z!FkYuzg^JAdXmSwPri=sXh1~0YeJ|*(HD2O9CP0*W{&+W@gU}l)wuRvjqheJY?drp={J&4o6Wo>t~#1p(=ko zb!mW*KP=n!;S2V9M~J+aHJ0FaJY@@;W0p6hr=LH(vtnr35RS&>ZBen*YGSnRR&2Uwxgh3FbU~3lT z8>~CYWs2~?!0JXx+XUD{SP^~$>_yAUty(j7qAYo@1?d(xjPjizc7Z|Y!~m6|p< z%*-M{bB-rIY%`2l7J|EbM;{pzU3OniM0Jx=zX)xL+3+2+2_+)ycYZG!%_|UuFxAGTIp5Vsc zt$#9LL?+sB1-)CMZ(m}};*(?C&Eka;(34lTE`@fNu<#zVXQBeV$<_8oUZ8u2X)h6( z!IcBr+irB3o|$+;5l|8dI#EXwlRB*8P(mZ*rAnahqvA-Of$dR*8+&(Kw&L%%J+OiR zFZw*OhT6ciPEs4gJjD}eM^K5_N8E|k5X0Y)y^)2K_#in5y^J` zhq+|<=?tp99dH5xJg5c_Oc`qXf#a{}=JSw3CpjwnLcA_@MMhKzN;`??9>CelGzhix zy2{{ntFHw{W_6ajSDj zG=WTD;BfJ9SW&WQ-!97`?9FBY^3y`K@goW9Vb*2K_!2{+O=^YO={qfWdUibc5xVr( z4|@`e(%cM`&Tl#!{pIIJ1Q{$^4sFvDx0EXZXl_b*>u-3lna@a@RyiK3!pJtUxrPJY=XEl8 zbN(%$=!3iwS|4L#Kf`*9`HguKiQRy9IChRmUW52-eyIze#2$t`9VL3w1!jSGjvUuZ zatcRZlp^ndP7C&gVP?VnFS(O>%d!{d&d9gfc;i9s;TIdvLfV=KP}`uZd_0>y#UPI+ zqNKUX#WfT)=Gk27y|6S38?1v%e>>ew6~sMA&~1Z{2IXzU6=y7d3=Vs!k}^NTbub^a z3>fW_K6`~Rq-VF)FHJfZHYcOqm~r=xJN_0M)BtqttaK*g4uN_+G<=8nKgw}c7#^!Z zWvZ5$P+##R=vT{NB+%NZ#aH;eoPd6&lr;z zEbAzD6^6dBS{#Flw|8p^)qj z_zVUWJL;_4FC{iIYjh8y#XxlR;SgIn@h50D!Wxza~1^9KqWIa8=-WMmi4M^oga7um(^skhZiXaH*ir z*Zv6SqVvede+H12&VXp1Sp%32+3>=5E@vymY2+*1_wD*cD2Q<$#`-LE-)^P_)I zOzrTdci3_7mN-L&2v#D5yq1wYC|>M4b8nSuTZN##osoJeYG7CN+LwbG@acbla2ruu ztF@aHv9!nTeey&;o-igxg+%n}xgf<0iqUq1yfgP%siB|b+P8lU_v3p?SCUxYe!u@& zFZiU0`v~YWV?>4K1p0K}EO!hZ_aX&4AjLcFlYK{)w>{X?@wx`33kK^P(ZjYQ%i<6* zn~ZZ$2R4`DbHHb!e6xAGpBK6(oW2ywuv79KG=(e+0rSJjo$1XlQ{klQb3caPC5A*8 zGepXB_=31g>_n z)AtaRgu8SE7;-xAWDwN@sd=f4cF>h2DJXTNF4@hNuf;6JTN9+tw+Scz`TZFG#ZoN7 zt`eLC$Z`RG6+*&;EZ%q0^9g@btZ5(R@Hcm*VoStwV|_cUfReEL>0vfYW~g(t6X)iR zFv-&Sm980Qd`)QiV^zqN$)Lvf>He(~Y>B^(Aa}%U1aK)2 zR3n&X|ASs7&x9P6-b_iQBqDX*{UX>ELH;f?5F&u!>~NULM*KX8I}*PQm*z~6fv_hl z3(f}_0|FWu)(2w+Xw>U-4B{+7+vVBmP^1i-;J@c!@wT0$GN2>T8{{ETi4;)J6v~C0 zK_>U1cscQ-iM-JF3+|By(QS_bC|UYny678@#d#O#ON{-;yJRzD$8hjv-5PjYq|vki zc-*#P)n6qk0R4u9ErtH2_Oip-98X9Rgpcbt)he?rhikqd#Q{i)@@1?2T1;=)HKa-j z{+zT3?etLuCJ53?Y&}Pyey0`*WJug2N{K|xBFwis$Kw!7`f7*y_6I`wKGvSeXTlRX z@9&;)W3Z{Dk$rV=Hd|>R9JwO|NN)}gbjOTVd3I2<)!~syhE3EtsxZdMHO8j<%4@Ac z1O9{+L)PrVT6IA=qhRb@zrc78J%qj2KWK#PKOo;3ZjxFqIQ#*Lw_W0rwWfR3{bG#puWH4f1=l=AD*9s>JuiUlWdV0P#xU?|yI$eYVE3T=S z7p!U%%eN&aW8n*pCq2Zqp3g?R4%c2~!9N9kM)IpD4Jy3d4j8`-M8LUR!{`aOHB?-t zO1t{ojp}C>UO#v%tWf!EP)x4)I6m#@wsLz{N{@_1+MM3op$1*>$c~PmLXx8(d=z+| z#SE6Mu+71LN6B{(5wF+sv^U1$g!y58E8}KpmBWg`v7qA%^}>E zwGS{G71}@U2G5y|XK>A8-fiRcr+qG-E~UChdK)X1U|_VfMTLQBuh1lYflW!oYQ9RN zQDdAiZ{7Y8?p1d|quRl=KaQfJRJ(aA`S3Hqyft&4jh!A$(7WXHuJ)LFkk=@mK;ZI3J zajUPvqTe7E@xc>~-~PrIkGnsR;v6yZn{>vn{%w4G`=_n<+a`Sx$vog#k=JK#bzZgMq14BNLIv2iaApSsmvhzHqP097B%-^&SwfUgQKL;coKeeh0iB zs1b=`hUFcM_(t$o-|*FSNZYF}%c0!l+n(f^uv=K7B%@m{bn1XsMuZ))B$ym_dTo5a z6cu!KVIiru4_m7bJYD6q2s@njTHd$0DX7*$zLk(UKnJDkD;aSgK)*%T7#95pP5mhd zJ2)!gW1E{qgqxX!Lnv1Dm*Wpjc_s>`D?8wjsHm8bpFxy3$*fvz8XeyvV(GP1(=BIp zJzs32hCDB2`V*;Qc<$~n?QVwN!*Ix@@qE;?TB3BsWs3$t_>$|{qT2<_Zsm`yUnajH zZg`xnxK-aatZt2UL0t$%r6c}|j%U!M%our<&jvQbUEQ|nUBe*c_-;|_xS$MI$@ckH z4c!zrl?A5*+Wze9ufK9bE~FQo6q~gWK9!YouQ&E&xLL=c9BGuEQZ@{39XS(5=eMUjBv;SMV1&@h+9X_?|`wL?r;{ zqG)q9G=CXQX6Rbi$`{-0ylxPV#}8JOP2((Bs-wz|8O$3@*q+GaxaPi@Fap%ii*n^s zG$-<8^18jCC40nRu%^ni*vGQipKco`_F3k7sFp<1x=@gVb5}tJOie%0R?#v1n!P;{ zU_=t9vQE2oiYUT;1J;bui}&51ie&R(}UOND*{N(;(`Or>c% z8F6S9t(c`wvK1NXedp~t7Q*{l7&N0Rx4mEq_f2t9a?PR=?bWhsxM0ZZkjb=v*;7*> zy@bc}(fEmbrQ)KStlP+nCi4|4&!2kLlNcSoFKM>=^UP!iv~n4Rrt*8qx+3HJRxM_> z8x!b{r)#M_UYgGt$c91sI=`FIUx|Q8D*Q`2ew6=*QHB@&Px4mM_srjvGoVhyZcZ7T zl`F{gESD%%iq+KU|43k60wTU=Ni5D*;AR!`Bxa{@xKK!!{0Kq@Tic^jf;_xvd_8xC zURa~CeJ2Ykz%9MZO8x>?8XhkAqEs7qtPhO{D-*~q$^rGcORY_uy9ccau_XZ~QQ5*C zmOU9M;yURVS3fZ)sP>+43fH?i37AWpz>RolQZQ66U}U7uc~0QEmu0@uU*&^#&J75! z<0^tZ9*-NUO~#4qxSR14*V`NU7V9k!Yp6k)-mg6yFmr28NMvsf03nXLQUZZwdKt5A z0+}S@rd4Y3*htKR5%`g@uL}L7_JI!3A9c(!c0n0(8Er(y0B1IgsVbV@(o7;_hnlob z3dHYZ4|k!-o+44`v_9iuV*xRn7;KAJ0=1mdk9p0zXNl9 zu+s#pgA5>48#Rr4$r+&Ei90a2f9`W3$s?+r&2b7Da02f@_dtIE_Z24l?UNe@;}|&0 zozU#JxBN-m_uV&azU}-=w^l+s^N+gTUI#*?OS82`3!l77IFi&Iv!Tudn#iyDmsIFv zPj*jnphSPFjHUjk094tZFu8iqEUE3Dnk$2~12HkCx!{BSz=TJ=D^(Y@FDW) zatt-FAXo0tB=?U|v^fPjE!&+A$#R*}0ALl809616HXw#yKMs`yr2dszngZ|HpA5m- z7|doMWc+-RxwPzm-O9a(NsOQa^;QfTjmWcZ(UyfIQD;%AhT7lht(8u73r9>{EyN0I zmjCs6JNc|(H*)6bA%2Yf!+XkPdC8Q=e@I2%RZyO>V_Dw(&QWYtme9C6r>K5?HLSYE z;ZQ%0M!}*}ZVXI=X;pJ>e|=8S%N-s2qL{1B z1S2q8rb)K^a1}RSv!W~zubu^iw45D38Uy;O)E5y0s3u9w@_EFu{O%XyvBIJQLCJR! z@kFPfRmLW{&2z@uh(c09TF!K?aRW%051Zc8OcsfH@?zJ+|u#7Yq2XTRETEzh^*Y)1Gun&DF8j)d_FU-I+ zg7UY?QaS!-Wz9M>GQesw9w1{348+l3D|cxuRDKc8LyD}wIbNihy#gA&0VoA`?6$}d zyaI9_ZN#FX;($V{|3j|`WMvT7+aj52?~G2v_|CrKyt4%C-^TlHJK?6&iY^TpBMRHZ zyl%i)WpldjzR8_Rj1K#=A-jN&)_oqbcO>aja;#rqPA8o{B_m`fD!c(k&oT5FDPj8q zCb_W<-=+-|Ml~nqHAfbPe4yu;UK51lKGILy;A#bwnD-n<4mc1C$T5tuFp*X(+};Xo z>qx9jRZz8CO;atWx2r0t(rx2dU}J+-e!X@`gZ;c`*U z;@IXAZ_hnFgjpXlC9Pr<8GMeCfwzY=d4usWt@oEDPxKF4m_>>?fxsIu z2`IU2rcAbpjP~7kN;S4`s<(OMW9{!!eH0topQniWKV(cc!Drzkyy*>r5D%RK6f9W2 zPctcA=gacYym=$AH);xL1C_p!8V)UeUVz7lR{2KKU9IJiSsd=<-WOd!us!VR8&?8D zU;htGHACZ_fq01~3=gsa%G1@c3`6hiPBd?_u^0#%5Tvy9??H9Z-j?gPc35uA_{1SwNJ{ifDEAOZ{Tb zvgzz|hM?)j)_t_3v8MMJ$H5Y1;^Zr@vFzJ;vW*Zcgs~n#se@TM{5V0j0SI-%82sNt zo&T3?Ee?#YN+)0zfz8tQ4^8L4{9`!es~JqUZ}wc_<#zvlMO52a1-)Pl_#b8DfAr7( z>(44kf86=oSwU>YU_v3jHw0qVrN2%|cNuh>G2Xo^pdYZ7B}Ro7h+XBZHu|x*w-sq^ zhWa1!Yk$3(kUWrW78*WhzCkXe=)KI)l(&2=QL})8Con1fsKIO`U24pD%lc2??_WPC z5}U(mBNyOhY}$ryVAKU<3&`VTKb=|QZNxj+_5Gu7N5tt(lPnypG%tdj#$KoP4m|3rUs z!8#UuD&e}{w*2!lP2#V&`9HR-BFJ{+Bv%BU+3`*#;nA=CFB<nWw3+%w!5mUZEU=Mz9P95yZc}hNYBW8{$cnAGI()Z(CC> zthx%ahEo>56TaRkc+y5HNysqw1uA1*+_#81shOk#kpK3IB-JNStN{C(br;-tdAPLc z!cX@oaIR!i7Tny3@<*@fgbW?tr;!q=Rl*W6R)8-*_}mg1!$Sy&SMtrCL-|GIMCywDcMTopQ> zJD}Rg0|!p8vaVc56`s%Y#~!_BtyfHm3w7tF+=9$D3Uz6xGjd*=c+kLE@h}{F1-$Q599QioMldBc|CrGB_UaC&FssiejR{imWKt#!GS`k2Or(Fk zt-$T>!Gf@zalhQ5gVcljNOV?r@fQ2z6whwq3?E(i3Tde31?2N;zU1lmiD{UTkd@Pg z9-)7|55RR-g$SIbG`Q>^QoLl6e^EXa{6HP9dx;f?8vMBs%r_1wy%9N5t087rnflMa z{kOotAo5{^7Qwj&uZM|*U?jDQvNC;|LcL0+EM66tKuUNg_({URxUrd(!r70vljx^lNz@!lWaF|_lqGx<50@(}&o#QJNx2Xy>_Il@(<1k3bA8AqwW2Cy#fBSBtNKBWjt)zY_Wq$=af4*4C zVsMD0-nDOGFgDQBZ3tPbz~?^yIY3B9pwu8s7fW@CKrVM4{&t*(k?{=#1cZ&PtwP#N z!s|%7(lH|g6WOn%2FJmfRi>|d@U)5i?;Oo$YX`IsgTO7;t4%o%w*d6d(JFnZNxsSe zW~y8Tsy`-(L3;r2?E3O&%l9{p&CLr~-$cjoxUGok^_oJPYK+(RYmA+us;*WIkDz(L z8xa*;^}_9~;3~sidOYqI1~FtpUu{nNU%~rrF6WR+`Lcawi_T-U5+v^TqFPGapKd1F zH+n;Vi9a5dO)a?pI0ST7-v+(B;F`}qBN7r4Vo~3rFEl(t0tPsB4ax9?)_e)oU;B~u z^z=w=?0ieY!ekg6pHt=HsExu$QsAN1LjL-^DG04~kyz)UnXO-Dv1v&Dc~X>=F-7a# zvo-fxd9(LgoIf@K-~05Wnl+pTxw$^N(N0O^Z$6?btWxU`N zWUv=kwRf=i^sb-2=`$v*_v z?eK(JcDwNjmY%OR`q}1oOT=HIRzaUHlNOA;ZyC0jEDpXcfA@AMCE%0k#2g-tX`f#Z znu?oT8kglQj`_6&nIW&(M*wP{$ZAXgDCO#vJ?Z~979dh|bvR7*i|nexxi%ork4wPo z8U8B**PwY9E7!qMCCKE6Zn%OnZSF^7W8FP*eY?dy+8GWD0nidtBf|PnoS2Jv40{K4P>zAPYp|&C6VNFHCRg+OKbjmabN!7szFVjDrpJqQIa2_N)mg zV~&X^c)+&-p(>&Pj9G;m@)CD3Q4kS@>S^Dj)Qu+>=7%ube;XC3x6rV?*rLK>P?ZKV zg?@kNt3P(RzaSfkr^{)D23(keriv8T_xSs4ZjLx}N52zXA55`@I85Yw$))xry^c^r z6qs#G{!U>>vs!MBNUGU2*!(2}5F>Ih^!cfD2Bw_MH@-V{0uHiO&Z`hSZa2t)809Ch zdZ-J4PnN-ZdSukSzt2*y$}W^|$HSnIEtPF^KIL;dS;^s19*nz(2B?Y3y73gU>D}Ww zubF@+6~I14EnjU6IZ!E~tm;?P+Sasd4GsriZ2h|29kpFs`{)8*7QQ)}moGEJ?j_<; zs8z^;#Tl!J`Y_1rcKg$E%EW!485>X*DOvJ=etxcU8|9lO_u%i{bY9OsUEjPE!e7mo zG5J`nmq%zFs?yo6clQDZ))YWq<8O4oXI5-%%(ObzG&{N`BhD^l zoq4bo-`nyBK)xHDK7PMrD55T!StkgZ0>iIwr4lxGGiI~D_G55Vz7l!feJSdvQ8w(j zNnky@^};rjCVMUamFs$4%wep67cXTBImyYd2A_$)#WSd>4zrs(ou774&>_xjpf47z3OKI#g6(79 zcTz17vYPR70K&xn;;J@yr3-C*BXX^XT@fV@RI(v1?yR3rBJ*em| zTTw2dT#{I2DkZQ4eD1kDXb973Y>v?bAE`c0J>DFv5r@Xkv+!2!6zElg2Tun!m3b&H zw+9Pa@h9^o{CcJ0zjXPE7Aodp5b%3u_r%}Z8<_ zHZyg-X)=&vu1(i+i*uX+DYD4fQk@&xKmtPn&-6$}NAQZrV+k7|ej8j4fMJC?_}XHF z7ri?5f$p1TK;demEtDb8(s(vl>8ai{>_Ri{3c}OV^X%e6vCpI9jvE`pVnr4G*Cz%w z^k0Ff&OfJ1)Kv5UhO+X9z>L(Q@aujKqSouh1vtQO zZ6KQLcNI4*jx|}C1}r%|UyShE^{S=852~f=1SdISL|c}@8^oeLC4jCE@QL4Wm<##I z<2e=?uWWV$%uLe=A93*qfhMnn`M7Nd;2o9H;n=U0SY&4;lD zIR=Nv8(bcjJAtYe*K01mheGeyfLfeR!k0IId=paR|>f59UJ!Y?pW zILPVl=8)cOsFri86|BU1Dl!z)L~BUBk;|4anI~1?KL>27SrRc~W=kS?sf@Ogg5+3V&*>Y98Vv~FSM9msv;Av2QD?)m*5V?(Wu4Bgt=Is z>;ootm6&K>@6R&ldplm!I{{R-&Bc@{Yr;3#j8H<=vR?<&{9V0dFw|=0xjj#|n-o-X z8xokmitbtLrc8p{hEn-piWKv*DL+_7VXBJ!B`>oL@(#|BLXi+|EbcOHDQMd3K_BTn;!o z9s7X+tHZ)&$*eZJCpwPqi)9 zMlqd1BK&6zYC6ZI>x*sx$*z!V^CfQA?x+zVk=vNOShcA1!2S9lZor2M%<8uaZ8*_m zOZ}P!*bgr?X@&565%LxH5Tb{YGUT~=AGKym2R2n`Zi2Ik z$C@HOKvlTiGFp!y=gMV3Od5}L-yCySx{O2OaXaAwIxXGNr|+n{9>-Qck2Rcv$U>bC z=2qn0a&?H8>Q3hna+bsd{71Wl12>Ns-^ASIhh$rk1ZBB3Slc}RLSbbejK7Ee8Hn1Q zOO<}Nn_)=()GFWuSsZaVV3WPeDhNBAOrd)`qA6~i zJ0tC63cNf?LSsh~M@we-`TD8oY=j)0u;Kj??6XYcF@;S2WMwi-TP8+ z{VIhbl_dl--XJIU$!ba*Y_D1K6Toz3>b(m7j-|pR4=2nSNn^5S!yvO0OOVB9blLkY zzkV7oGX7B*HrsiWKyq$+l)EXusqo=BdRx6?U5(W`Pdqtzl+Uv4=(l_1XJfvp#!DQ1 zDT)8PPF?#+lKDX%(po}%mR)zji&3_@oQzHmy zHw3(wdyk8bIV`GxPBQ!YfD24mBLHktvApMgMsPM@pIk*5DhYoD9IszSQo#dAG3lW#o$&!Mso8L)_z21UJGLH7k1=h3UPX;q9lk~>hQ~u8IeI-V>ktg}=>h=iY+QVJH zcDd)r>tC5&KZOxOc0A&nbLFCG)OMQLGF%;A-_mJ)sxf<~LakDrbgJ?|M^M=J%A3U| z&278k{{YGa(`!}#{3i2(=8NKKTq(Y>X(??;wx+J?ufMVQ7_tj@=!(JN$!wYvA_|r$2S|g9;C6n3=cOaMLcYP^P~ZWad>d{44Zp&S|b^< z7SEZddeeuMm6ZV`1s=s-t<#y~ML=rs6F{BI>MrSv!u31HBo`FQ3qpBcD3qFK^6`Em zDmXNI)FZvbJ_wDlxD^DDPof~8g68N#b=#a|!0$pCsa68QI`jf%QX2GsT^0R~V+jf= z+xiw~Kpz?!v{JoIv&Lse3K$}KZ_}t2rAF0@DD-a^BUl1J%U?5PUi#AqtOH25VWW#8 z;#kucdZGGsAEz)h=~52G43E(e#3Yqeb9cGXQNPG46kE7}t=yGO5Z>Xk^vj`f^{OLf!KOgx%hB0U?ma1^f=p z-qe1BEKV*U3U+URzgHF4M@tUO3l z%p+3Azi@Kts-O(5fDQ>1#?7J%!%(tp%|BW*fxTC4V{`1IU#vK_f%MP7>+!7T1ZsE9 z?)+h1(dFgO*^VV|vz)YNg)+!Sjk0_RlgNGG14lC+Gu2MpscSXtXv)=_7O;{%07_!r z`QV)`!9a<_uOUuJo;21;OkB37K*HIlTu+L7=G~E3*#LpjbWVIAOg@o@npt8q$zm$> zme_Rr1A;1s#fW+FT(f1X`r=r_shlwv23TDuxBT@*o{}Sj7`j1}T>bOcEwcPfhA~u_N#mxN`o>ur^EQJ-<>~?cf(%mO2 z&f|81x3t7V)SZp4;BZ~cYBJqSHjxV?o#}L1Y@Z7C)WC3Iw?**1qAv`odP4VP5#3j& zG1K|n6BP!%Va1gPmR?qUJHuMjttOB21%V4Wd6wVDz)4z)x(^S){04QdA3wbPv*bm}ha_hND1%x@`+5uL&`7Db}Qm|pK zpUYV1%R$ND(d!^CbrHz*`Y7M-$G|r!UN@)D)w%t#5rBH@GQEQGU6{IdvoaN_WUTyl zYh2ZL1NurOtmn*h(<9oy)OY6}gB4x-l8yZf?Jl z?aq+b0FAr|F1mOxlKsk4fO@k<(}3Pw`SR{un_ERc$yrE40~NC8z!n0zt(3TFb|EJ# zdY*`bR-*|*e1&?EP)IMPihl`t1g>B!R)KU%B%M}$vCSCIL#w5?zR%MgyFK5-(}FOONdNn{S+%kDTt?ik=?GsW17&3 z@N>~2my5^S9m!~*3YDa6IQn|Z=@EZH5PN<&R|VyIeWyBIfIVDu*NLu}v&8F3;#%0rJ)tW0%u1r^ zjjr1kN#~G;{dD=|!}3nu@*Z&Vm$7|{u0SFV9azE`m)lWZtk3AO>|qRUC~PVy^F#%V z**{RorgrZ!ZDPrN8LzOmb~rlAL;T5(_P*gWR@@XE5HG5Ct^Ut$BZ&c)i!aL3WV}7> zdd`B6PI`synl-}n%17rh6p74^Tr=e!854q=M7mQLCw$$*I?r_VG|w&W+r=LhfEjSY zwKzLk+@NZ!6q$2TD#N{Bo(aLyf_65g*`7wH-(T9;YktI;z6-X^C6=>qOTuw$=4k+(uwaR+HXo zb%dEb*1iCyxkI%iE+Q31p6THYK)228k~9grJ{0fplu-XiNZF-DL`Euwz4^!zj9Co@ zRa(1Q)Wh{b;G(EhY473rMDO75G>U`^R5rAXgs{NbbQ>BrZh`GpkH@zoAsF+H#W{=X z@GX_Br$5ar=EAT%+SOaUad_^!{DSu8TL|rT2LeJce+l?&pxZHMw-zc=rSf@*S@!fq z#3Ms)fBDOK`DPSh>D)ClwY_!>Y?%XSe3iZx-MnwCbVDU2YAKX5c>qS?Dvi%TQ)p^> zcQhpeXoqoClIv2F!w17v=Jvmlo0+f4&oKzN#mzGXD*%2^AppVGpy%u(aF`iOfBNAV z{kJ}U4>P1wNcP4@>U5un)NH10sty0@_|s!fVyb@OOaOXNhi zIfDrmYfVv67Z}6QWcD}=CymR(_33}Dp{e16DT_y`s8_N!=%~rU3n)d$3vnQIWB&Hf z|CK8eaUtNm6(w`dbTR5Dd=`_s!ipGKH_-XZV*U4E;0GBHF*~?){d_`MJfc*gVsBYT zDgJf(fDw!WO&R(tP(dH}FX8v!`D%8A_i}dO7Iqvzh7chZ7Ifg~=SB4@;{T=Z4EJU% zEW5fZ`bpu-<--{mT`9TeO%t~LSyXt)ZPWi{iK#fKeY4(m681WrP(k-gl40{4h;VITd@7txAj>43At({4{>q$E$b6L z!WOvr|Lrp?r8~8;9PR8BTgIe*bYR}W!FFJxD$x!9nJ2enI;C`wUEfGzTtm_c@zC)d&IB56<<+16JKTn9kW#)|Ej2p80lM zQx_o$3SiVANS*N2M&<|Uk`iTTU|2BR|GQTI^M?s6kq|-7qf`|9j^-m%Y$5lHQSxn^ z4MA({{rK^8Z4=iUZiV3oyIZqOfI_76QwHtL2m-oD8^HsSlItu^6I^P`14tCD% z_#My1jp)r#(NAnKAc_~qD*qO5!F-U;1Ux}f7o_4T)ZiG=z zBk+W~&x5>woU_?UD`SN8KSWGDgGKId%tU3x5goH@1*sB0j--X~tp{ z5G01CTZwxXEQg_*kYc|UfB!$sy>(QS?bz=DP1Dn(nvGX z-5p9wOLv!acfBWj?|VP*+PC{z-(T{5L4IY_r-;%wwjs%*hx>13zW;P0ZgO7{wZxYPAY)(H zblgy4JBdZ>rC7(%Pu4}%w#P(L3nHmltXwpqBeKwu^x;RgHd*^PMPBU(y_#mfpzEw**`r&+qDW z&c0B%R-JQ02Iq>;S!l?S7|ZNly#lMmqX8NG{(T$)85wyv&Ib{z1;AJ<)bBFRudZ6V z=*S|eW%XCAiADafh$Jr`QosZ!pH*64|4u<*4eG7M$YXh)dVKzsa#u z!r(r;(2&dsgO@7giNTYk_xj^%baCg@8liS7NLb<$V+Jg8+t9>N5 z<1M+zt@C3)l%4QsI&F&K5n8^p{>P~-Iu&0&;-CC$wzS77>hI8 zVE24&uX_5AE5ZPkjPo4j5{<}wulP}VBk`p8%DfLk;tB6+G5Uo0TFD5Eh(LUa8N{{5|JZTjVYme?SP{^2<$N>;ap2Cnv(=(Bi@b=kTY(~=`MUx)Po+rg-(0L`p^UX{S zQh77YL({lB+gYHFWPRDo75x&5?fvvrbs0TEKV#PzLsad$e~a{=gc}` zKxap;J2%5=zbSBCb%7Q__!@JyJGP2T12ap&>h>(2%>WaC{Wxagr>8gTdQ+!+2c9g> zpW*A=h93h@dB@NmF3hx&;P*_WCLSxN+SnWRE2I0H&bMMnTdkM(>=#-nxlA(eQylv7 z_6QN4=p0(u%t)8P;)>zRGPU}m-vq!h@t2#g6FLe|zSV}*ApB)D`w{mE0J62_I8 zPi7nJ39)GUzT<^2{!C$H07PD>*|-(CXA>{G=vywU?V8+uJU(O)I{B=14&yQ^lk4Dc z70Hdm>Un<>zb}nEv0l(RQ8blk%bgxyYZ6i7=Ji|zgTYqy8}?a?qd zuk#^x6m?kGm)U<@ZqTnXnx1!9cIz^tKf<5kZOTaeS9z(gA*z;5OU@Tpd(#IifgB(bB9vZ*p1idDb&8Wfdy)1P zXgp91B~s;*nFBNLcpP;QD}VeDny7Ne?T(=f74al#55&s;m8PeyoUe!hIItfip4XX8 zmX*eHcqYTQdut~k#O=D&0$whOH&k9K4g%t4Wt!*f_rBBx28;i`JZUDgiHl+Pn zEacDdFxbf{f&$jZC8}+H4>mH;tJ3B(QSEJFLS4@H1@`yx!dAK>7jM1&C+hb|KkLBf zo&gh}9fO`6b5N7h0VbILA#!Ad5&>3NVejO&_|kV7^J@OK2Ls8htntZt=oO z*D$T>wn3CmT4Q4H!r5MPwnEM?aazr)ilJv2#ukXk2oM0MBRf|lAiawew!V&!$k8aI zCU|3-SLC`gr9yPKj*w7&tz4{u(?P!(jVgrM+g{5H6m~Y<_$!o);eZ%Be84E9WS+o1fnPp9h~o6TCAVGa4I>!M zBULZUV8IowWS?z5d!Ul9jGQT8av9zGZG|rKo5!q1`bSc;PXGk0wwiBgM_O0N`-qQ> zKS2lp=s+9*?6K0P%un&MTvit%>aP$}u5*|jJR#C9?+g3oSOr~@DvS9*5|4Al?!1cGQofsPc|WxYK@_&|kIxq|gKPaU zSb%O6{6utir}SW^cKL~8c%ZRDGwR{0>)pxL#6eU%Z`Wh|*BSl+t!l+O{&-FYOC-x} zfy3Q=V2Y~E&v@3ya;f~mI0DxJVE#+GVVC}9hwI|f`;gRyz~XubL7;OeahMeY^Z}}N z{l|b`xXvpVm+XA{^q{7uW}&5B8gGXc5k$-iX35}}nzx&N1k+l$;5I}D z2{|xIW-R{F0$BMT5{x2g0>JIvWr#CKvBN%G=?hiKr@ZERErrdT$4ka>U59UJ>8;W) z=YGUwEVvtG@Z1*IuO5jFrrAz z=Mo|$GBdbV{#**1%`svu3}cyqGmQfb+CK3ZcI^9#Y>7o8s4oYf*q2l4p1 zbA785AZ$W^W#8)yQC7aERz5E!m4EIaN^0MelCAM#J?py^YuT@usZ|$>T&|4j4G&U1 zPM`4Km5CG}q;im`Q7oIZv9v8)ohJE$XwMSNEX`{3tRc7{|18diz@M~kqLjEdAATx0 z9`6jxa+L$hFC0qYpC%D;xB3``+0CPWMilS0OAV&giEwQ|7RYv0vk&BCFxX&q2uk>% z826l?xzkxLHP}R{gC06JK8{9gK*J!;KbV@~QF|Jv>y}k_w>io{DWCFEOT4m%GKk>h zS>+1U)JzWafExq21GX5;18s3hu%$t|qICed#K4%-*Dz7}4bP3?&f(wnZ|80zeQwff zvc-{(EA03U6_M4AT;VP^^7Ieq?=Gg!bhDVMbWN=@F{y`{a411zfK`EDjo^~|U|EHP z%cv$W-XG_=6*{dbH(0*T^zLWL;3krKAAw4QfUZs}p%Q+r`T^eGx+$-7$?pNA82Dtp zKWoW9-_*L}c7)<%P#bFH1h1#9RBlgx%ioxto_Va?Lr0JTupvHErjG9V>QnxryXtEh z&w_x=CAJzc{UMr31q5ZYR}ie`rLqC$ac;K$-S2?G9QFJ#?&Ae7_qRtqgg0O0frxnRM!qCqIa_q_-0u`^T8=18hBt3ARBBhV`gID`OAc#FVjd zc1(s=zDkh{5sgC@)%0s1J3{g*PvTc<(Ef%m?{>~mqYEMWVGbmVjesSl_-b=Gu zCE&OOMk`RGN#%-rhHNVq&n$~0tLjqp27ePB1WACr<}<(}jEz&QNVml3 zbb9^7?d}FGPy5AGbtRW~?-Rg`r05II@BSXPDxv$ZGI=Lw(En22sXxj8jft>-jCeII zpp#w$y%!?5@td=`-PZd`tNg6tTRe({S3DJ=10#Xxv|%B`py%o~IBLs%olb5|Mc~i^ zk!QP&^d59oXgeg)M=Tuj7 zobC$vfKVyl`ufHstT@Qv#1frp*H7}gi^zy8-RNK#`R^{ZSU5Sk&HPU_rDjDx%k&06 zJEzcNlr;r#thIH$22~U`=x?CSm>lba2Gsctn6KzWiL|QRDyItNdZb~s!qr!YuT=&r zHtbk!+elBWEHKS1`{h&lIwx$Dlv9)}vRQYs3RbZzJC)vOj=kK>(gqQCN;Qoa?-D#i zBj^2Tf`Wcs?Y@vn6z{@)WsJwhisI&-b<8T%EDZ zScGspcDJ!gB(lG_L?I%eKIX0ixa^d%B*Ys3n+{(SP*cUsufu7VJ_VA4A8m-crmtUM zP>6>Ue17!g5Qy#Wgo%CvjXWL<6t zn(l_r>v0V?&wTL^C=NwG!?BD~5vunXz0v-SQ&+n^ zV3=dwZB|n?UYJsq%&Z!n?;TmV#1D-eHijMsVp8A3h8|yp9=p&%M+WwAI^^U1q++_i znM9p+H@dx_Dqnxl5pE|EgxwXRCy@eQ>t_dpaM~Vojup-3c%=U1!srM~{;ZfOou(2@ z?X%2_>P$^e9u!nUPj(}4)1b3cM(s?itP_N9H;U>A2DYg^%8A}@SvMOkC_;v| z{c4|QR^yQFvY_u^c7I#D`9bFEcKXbK`X2!3@0eZ_q(M^k_swIf$K0pP9<}@%QN_AC z`X7>~$Ps7Sh|tG{BJ5>@Ruz<}(6YtDvQ+{4b=reD@VqTP6t<7f z&Z!W!O(N!Tz(h>KOp{prjK^Q$StBPI+wjQUErmhv<7oGLr`2_T_SEXuk_cjnxZTF( z*d|CdExo+iDYWRXheYnM%ttctaLdLyS?TO?6NVtOOKVtY~sS$3+A|gHZ?J}yMAUO*C z>zadM>+!7=sYY6TkQK|=YTm?Xk-}n9XR35$6#C^?m!w4*<7Jcsiew?FYeU6N0Tq}c z2#=v;5mU29NAEu9kXk*$e6x34KQgWVZiN_oZYJpWnzYzv7`QWUBn5bb;=b)tmm{Ar zO{Q&(F_AuR_Q}kYXlp4#YD*=rDm;R0g6kV8f{vk< zu)$Gy@rtkGe>a8%aDkuxkfKG*5E2o;<$gSN{V&W<*`zF^|7ZMI`&#Wk;LTWijJ}Ky zdqSonWRqH^b4eyyD1{UwWGNX4ZN6OT7D?EHWLV))O)8k(E7;Cp>IVQu;fTH%q|@>K zTbl)l9#Xga6|d5DfTs76`%NlQcH49mT)e#+wsn;YuI_yLq`6(hN;iKFHpb0F?DciH zp1jnqMIu-lfXW(FWs4CR+|d>Oi@v^{(?TDuJC`n#tl`3b_ICXov&ygxf<-x)T95@E$?hum`mvd}m5;;G}*f2X3n@W`!iFGaBX zqY&lf5cPAO6pUfO2@B6HF7=6@bLtu;#w|PXe0G?r@f+l_Ik=?2?u}vvEQy#;R}LwY z8`Hd7NXx~m$p&8VR7@K%`vYkzh>TTpw7{hmNh36+++|QhRlxrWE~RnbKlRRRr8lx; z?LFsQL^@G*KN~kq1Mvl^^HAGg^a$Xt$Xv5Vutk^0MvTn*n@&|N9lyp^?15p=6T9=LM(EJ7@j9qFLaG&Av2F* zn%JX%u}O;w%bw!biXvA4R zffi~K?Qy>Oj$v#HS@S{o#(e!~Ve5>*N<^4k!EA<$Dm@BIOFNP@M!F1qb_1t%eYt<4 zEb|Y5?q6&zDyblJ)le{Z8#jmRgM@eDpgRrH^(+kbMj-yZ@Rm-_)Zv(SGQ z#Q*cp(H#*KutRwa+GGE)g@18)oSzUvI1!u?vp>K9Wa5Sa<`%y1Ec!Vwb;z2~*-|v+FekZ^k&SSm_UY20w z*)U5GtkkMt;!kAZzdr9Jfr&1p%&^u1m|}^R)eW#h5ftdh)Np}VT$2p}5eDSr&r)O` z9e97j&}6lhxla3`^F?q40k0GX&{st`yoqp2@DC}f^jG4~g}fU{y?$b_=rf3g1!^%k zu_LyjJaQ2liDZ$2zOf9U(3E_15cX*xpVaBWrSZT zM4gdpNgU;a;qJcMAMG~$-bceB9nY0962M7oVZGlnQHW!B~4enQ}h)E!1Sf~qAGy)Jn z!#Iy0>rw!>7HF+LmD`bnkt5H+tT*9-UG2ei_i2O?^E(a_thn3PB*djS+o8h!8G4^BOTN|&>jKwkiR zf7F5ZswTA#zOAav^o05Rtc?!9P`F%WACN{H0Bg9w<<8XYrU)jIxDih$^q*dPJ|g+d zCpvETvVqI0M~9Pa8Qu%+M+!N&;;Xy&vpnX;o*6P51e>qIH0GbeH~#>t{V#7!6juem zV^$+Vs`*UL_5p8~F1NF3^JuOou8Dm-sx%jC&4GCELwV5cq3e^2>Gt*~;1N(_cII)y z#Ob6!vicHBrCo6rsuK6DSlabjD(z0-si8^i+ise?7ugmy5a=7Xt5+|`I219ssO7%~ zsuf>H2zU~&^hFT@r%5}|yGQW3s@@};>zx42slMC}D+I}vQ|roo|g zClk0-M;XC$Pamgmb7bZ-JVhqRHJ`I+TVP?fn!cSu3@?ou{HBQuhP2}YQ(WNbDM7CF z?PscqQaiM@-jvV0wRXPTt80bRzsEf}!Te<3xyB||TP|WO5xAxL|Jf9M`jaVt1b!zFL31LwC%ZPP@5KKQ?KH`^)n?0$>5q=iO!{ooju48bl9Qy2x~?!FYNv z;P>i49zb-uT4TJg+aLRfrI{>0H6AM<15(V;W`}LDTHDlxZ;vj3DJRw1MmGHxC`(y! z_;o6!sFJvENaRv)(Ws=KtLbPQK9Pl+B;>GM{QjdgPi-_$RTvD3S0ViT*?aWh!+_4G zsHmt7N5@?!UlWlo%=UdSacNt?36FokT_H`-qcT7?_GRv&A)muGT%KBSNFv7`7-HdX z{3{JLl2WeVdA;K1c%g5F$#8sFA@DWr&YiUMC00XgZJ%IY(|Y3VHEUMyz1vrCysmJO zqz$ht!!cbvA3Ph6As4o*51W6tyPb=np$ue2`##|*Fo z7FZv?Gdxv!$+hm|hC;n6+sV8Av$N`+u@$e&vqewqy*YQlw&BDu#Hfwex?dG_dDyLY zo7iJ8I8YJ~ChVvcY9QW^>8Vo5loADCBMM+EeI}M};P3r$LU2#vU>`RkX`u}{o7H?( z#{CkW0ul)?>F8Bn!kZL36#v4LbQcdJZtYKYm4)Su5!Z%eU*|jkg4qJdpyj+n$LWju zh4rgvsnJa7yLR?lV~{*$I>uLV?1AEqZjd^c69UDW48ePVkxklYRO^P1R=j^Z2U-|Z z2VV*a5p=7fDdjo(kUJ69TkH;xy14s-*@wfwfbYnss*;PDjX;?QwU4K0#^w?n(GLL5vZ5N?!~G)%1u15TYss5kC!Mu=kX-fD^m!IxhUNE98M z&EMg9gqK&bN1;8d;x9A%X0@X&pMr%^%E5=`TpZ)5uI`$`@BTcLaNPfn;f`gX28`qT zI`-pGF5i=#!}u+{j^p0q$rkBJ%FFTLT_h?gY$a474UFPnR6VLKXPL~DhajiMh|_i@ z-j*`b@jGCLPIS}(%zIBATsAkn&X$NE0tPNX7sU-$*tk>LI#ks?tz;K}Ihss%b4SEj zah1YnFPiN;lrpzPUXfj+Cm*41$2n94p2%Oa@KSwxx^c78y|0!4XIo<49!`I)$y>0p z#$|MDEpw8Df*}-y!}y5f46(-Z&I^+gq70y>$_=ENfP_PIx9jsj%x9v?CwI+>9=Vb2 zz*oe_>$&UwZ>fVAIGBW7N*$1YT^Pv#9LNgrO|k_tO640`48W(X{Hw_GaSq69KxHfm zVL3JHQc`}db@bfLs_Z69mVg$jvMoAA9qizo8;#qCLDAXLJ}T-gAN+3UBA;8J0BfQ1$S>8u5oO$Cgcq&$H?A*xA8t`U^ih!jhTMR#H*8B_%l(c(e5AGhY!M7=m zOirrL60Y<#&fMS8MlMn-Em05Zz7$^`9*FJQD`v^z2Ul*fYZx*uD!d{-WCbJVr#8L& zhqDJ*>^dN9#EJtzPA7#u<+)(xrdUTgBX&Cw%-cb2L{!MhKRsM~gxkv7NvRUbt6QvH z?*(QDEzC8-|4bDqE;~D}izCFBD`hYn;H{N^n|Rdd;$bnYvx3h^Y;ovzR_92v({wK5 zzCSWuG2ZA(Z|~R8(AC)w9Cs8hsSbD(v;$0W!4ct;WUl+mH zRHOP>x(l;x-?G^5z+r^oQFMPK)oZZ5pWK`V;yBQZoWeRAuh3-HyI&7XC8&(~m+fNn z*vM@cBt2;pt9P&rud_GJTb~1V;oJ|(0LS@SM|GLq+-ml*f{)L2*T6pcbg3N)XOY~j z9GBUBv`*w!Lc*b(8im!Q8@Vzp0}I^hwxyw2di$La`UX zNqyDJn_nLjt2J%YsE!+9+Ta1+qj2XX9}UDjB%sm#;37Nzm4zyvRbOV0YA#!P<_E1z zsZ|*VrUBNYGcB9Qi}yRlz&4k6S;7SU9Q?fadjpqJOigY~OulDFo=P(S3(R6%EWsG- zdtJ=?yCou0gVXas4lp|lHdahPp+3;$d?XgynSuB%=5=JIeX~-FkLvo*vH3e>rD}fn zXovaN8gUm1t&2|$9fYQa;eMqoh4G0R^({(h!e}=I6UZ%3NjNb9zVG9>_h4Yd?pLNX zd?o3%{jw3S+xc7H2iG-5$(V*>s3bW$F2{>UmnEdK*fGW7WogJBM^A5_BCE|AL>6z% z)FS;J{eU2bO!x^*Nz&W@0zI#hAVVgYAOx*sv><~nu6P(;4skcRp-ciNfyr=2hi|YN z2%ix3-A<^NmloI+aLVB2rW)T!az?UQ_^t=6d!p`S(Wl)@i{)dC`>lCw09VC5VY$i? zyj4g?T`HyTJpDcQB)Qo%yJ7w*DnTH941-Ts>O`)zd~X7mB%{Ykdn7HrE>5Rxe9(L8 zwP~Wpz2{6Fak>?vrn78)qJ!%LsRlcjx`Q{<#VM!5Sf}5e!Mge6-BJcV zr|W5h#)DwB^bC2353C;5<^26R5#e5-hXKUXpty-UmNv)f>OZe zFGjgS#$JBi-ybw+hw`^oSWY6}+a{TD$R*4^=Todr_q{BCt5fe&8OU88c`eTC z;fG8Z>h;(q_acwED#h88l$c^fybFh6{M}i~ zV^a(3&>4#cFG=z_&;f zQ?&imkiQ4s&ACW6{*89uS?|}^2`S-KV+CbdI8fEQZ7d8i{-mxcH8@4TfzIdB)-pUq z7V-n`ZUsfdkZo+JGHly0lnj-a{JZqmYtKCiyLILcAYo#)>!8F2^ZE+w*{yD{kk*{( zvoY1hPxr+YZ1p+>D(q9xsOI_EER>`uMWAew;cJ~xBP&CQA5>c=vt-n*2$)O2 zLr}tWu#WQRbRGhwm<5y>7&K!7!ZDkeox@h2CYgt_&paDYf@mqs~M>NnkFA@|5e--Dqh&r z6H}2rAtSRs?hXS^P;2Y6k#N`rbqGY+R`7MXdRN+OB)rKT<<7QSKQ)b#R>$f~Y<_F8 z^x9&Rv*5xcd6YMHZHvj>vPJ0e<-3jo=k$KI0c~S53%a@Cu`#1HGi7PQ5J`aoKAIFh zPs@`RgRzb3Sk%D4cXHtl&VH(65a)Gv=Fi-GjV$8toTlf^{d*=?J15YBGCSwC)-o`n z(EhG^-l2>e_{EtFC9o?i_^T`CLU)s{Dzd}U_}X8%2K6SiM#zf*$3TV&Q;<|s9}s{j z6Z0M@s#m$$`|yf}2Edm1=yj}?FeuV1H6j{3r;6Ok-vq1&B2<};-}zOgRzgze<`Y`1 z*;vJVo*fv)%w|y;8jfzJj_Q-aU^z~qqeUt&F#BJFdq=^iX0Chvp z{u!&__aTv+vBy@(i8n|?8Ma;nJ!L|(gDcCz;2Zuh4a{kfJj)J~#z9O$ zp+pa=%!?x)nu36sjDx0xxRb(bAKNMlMN}fxYlWG*~c&#!F4@&9&;4{PSqg>;+mcQ&+DGX@p6lVc=@kOOg-Qete z&ZtwwziUF~a#?G7`&s|5vvduXV>G-ml-d6MmM?;`>ngc?m5cEV=i(hLu_&gF)8Vn_ z+se%kKas9K4j_JUGm1@FTlC*vmZ)ZhaRF?CvN_Y~iB6Ln3Yet+O6a67qz zIqDdRJCXzhgKYj3J3+9V$0nx1t$@@97@fY%S8l9(w2g?XEcco&Qd82WBPQQN?B=p^ zG`RT`N7^AR7Po-Mv9Z7`|1aN!8x>mj0V737!od%h;5tk;_)R4IiR|;*dt74 za&&4a$XkB-9>vKl1}rAC=x6ZUhccy(7eIi~(q?%|)NN`_8k<=sBUzW)AMEb*rJ zfKF!t$sJ^UZM0PX$iq+~5%cjBn_$y6zDVT=kiWS@nSc)Vf+x}Mu|-b&Tuka%d1T~di~ys1ErYpuWp7I%!re4k~*eT<3qiZNPyKg=OtZi zER&23NLuP^JO}V(;Y4#lG$uDSi8Q71#;O9qB%Tj)T5xVI-_ik^mcxoJ|JPr8mP{N^n~%QNwECS(E%n4|h0#{1nu%*Gc22sTcjq)%&c65QeGNIL9IIL{qVcXqIW$*h6 z4oA&k##^eggFqbqYyC2KyXNpZo@~L`HS#2;(msJYNJ^ecC88j_?Wj~Nlpbu5Kb=Zo zz^65yH$Bv4kp>!y?k79LFYd1Gh~}BKb8Wwy*=dk48iZ%(tnpcxSQtUDPmWxlR6~~; z`DrSCc}VXCEKVl6C1Gh|C-$cbkc<`02P~w$s~3gtOuo!bE7GY?A7bA)OaJoA^@63S zFv_sd#WtdTO8<9N z?L!ZeWZ%;f3{c+~$Vcu8z|2s^r*Hs8Gc>}k5eZ+g@-qrI=?PL?9)U)s@n@y%0eTxb zAAw0q3E}a^#?*us$ZAjh%0b0*4>ReU2*RRt2;84>=nC6boa?p9a}HCWcK^w zS)n-}+8A^>#Jm*ZOxX6g*Pz!hKs+me!%1y$Ow`3T??=7YC`~Wbo z5WJK&F61XVsF)cf0&y$-AW6>baJtn|xEKW6;xPYw9TDmSK|q$rj`0W(FAs=3RMFO< z%`AF&<4X6VZRlc5QT^xcI=QI|`GLs{uy(-(OFW_}H$<2N z@#^KcIqL^NJ~CQ9JoS2DED3Eur&kn;&(?Kxa}!BYVl%wgohAAUe}`Xr^%-t4MVEZT zhrNfxdldmFlW#kwUeDZ4et%6aO$s`Kl^@j(R794PQ!sV zp{%34N)GtIsYAE&D?BaskZfag5 zW$%%~6h%-_j;Y1{r4obxZcCdPc1k^0S{B}V;3=Q$2&Rh!?ckqavw5=jbUKylT|8h$ zeWLO4ONHl2xS2>{6xGShZ`P=NCQ68NR1iloA1tSkEvEpfpf6%5Q!1x#?%2NBolsvx zJXk5Bmew?%>BcB~P%jtMPMZ`@cIYf8qBtiZA3>|`3R-oEgikKtPf1uFfxI>aop=zu z;|!5nvckYS)>}p`($SXF%E)}%%|%hG)fPND$@Otp?#SV%w86V~pPq4zyMCM+*0~Xe z83ryn9Z^qYEzqHfO!A5yPX82cZIF=oNqdG!tJ@T!@o7SnH+!Jva8+O-(W+km-CfgZ zO8@e=2*F>8=vs$|LSe^r+bN!9EVWxV&)V&>D<||X8iB&3EIi|gh0>7$-l+3CyV!4FPu zsl%+3&1mf@7%?Hm2PRj6k8`; zwjSVMab#bS$^FgN(#J{`kehF)rj**|cnn%n^rswXg9vI{C!9lk0(($>mbB@XbarRB z4)%Xg#H0==&SCQ~lYBtsI5T`bw68m6p}eSib9JgP12o?`ZIdX?mOtd1%@r1#Q>#th zuPE|Thhf#6?o&llN+FCJ_B))kaggE_&o_wP_UhS%PT7+Y%RD*=00%&fLS2u!3}-BV zisDsu5oAuv?mA{DaZZPXXbj%$SpN*6>MokX6#d4$F_fjkQ`C7%jzQplg`yOJG5>KV z=ky25r59h-8DmvN_^F{ACHNEd_A?6LO&vt&Q7f5tY*41nGfyDZt8zYC5e7rzP+Vh0 zp~J8p@L(C;nscwTD_Zem)u3$ioUNO;UR=VNsdc@lRTUEJ00Dwo*2>r8FZ6v~1)Z4p z%wJmZLk*=Yc2Q@Jo8BRk+vDc%?+hiQh;o&DPS|f*ewM~jq65M>upErY0W`58iF9Ce zoyX1d!hmz#iov^&MVX&>=W3@{LI(!t1m` zF}zuLcXH7|G?(*9=l|3x1n9!)G#$5(n3PBGi*O%r9^V{+f6@= zb|iZglX}+I)X+Y(2R<>BWI`M`QQBw7$jbUffNM@v2_RirU(aTzvA2=L*rm>d4(b3W zKe@2rw*A68jtq$uA}pGk{0qVe{Sj5~&!0=)Eh;(*I0xy8Tv5E28dn%quS0`m@bS`E z0-*!}M@L{G<-a8#f4yK4{NB0#1n`)F+mq!j7H#huj!)Wm`L3YNIu;qSQB#{Z5T7JY zXYPiEU4wtJkT}Ew2kakZ4BQn zZcidv+u90O=EZ#Bu(AYRCg0kl=ZoLdDU7FT9wxAv1pra)B9Qt|cJMZ5lmKC!+W|O;6u<85zn2x`X5ijJRSgk)ou@#hn{$kW%%gubgI1{-Be@lgwR-HV>X7=uE&fRoQHCOSW|1EzWYN2lR^Pw!+Z?}cj4{sVqr(o4~J1L|N z_S@%@?^D_GRN5;x%11lV9IMIB*U!P#;RBK`34jI5yZuV=o>QF4buub%vj94p<n8`0%*m(H9ee{q+4xd0jecH9Jkv0r{p zs;{!R11YLTrFoFhV^@mOa=Um|Ote}Yfr1}pI07)$(7f(%Co8#kEUk8*pOHD(rGC0P zBcbI7aDB-2#nHQ8U!a@ZTy}?9>^)Mly8Btte)buw?f@d^}l(d}2?zx;3~ z8?Q3V9%72Ek-gW35exi1aAb+{p={d)%);z=Yg*ekHyE9ENfKzvORWcAnctaJV;%rc zqK}ZbxL!9U8jwV&2jT&CqBFZNkwW~`TW7E#hB= z$J_Se#}6y8D-GR`xq;InKzwfdYt$FEEmtcw_d)*+xdcuP-&5ThrzdpU+FzJ;iR1kT zf(2dfeoz1%Ky%&g|3!1GijHI>e{tzmdieXEmvE1!W&bE4@E0)uxrhZF8cel|QPP=G zaloPPx+H4RXVmsh9WvOj>z?c5ilOj6<(|O-VtcVOOYKtQgIC+rchxF9C6qxy??Bx0 zJ@$=jx5m`6R_Lk!gI9hPYH2aoeIp{xu?RA9z?J}GDED*E=10KHtY{yQmRFq&tQrZo zR$X$-b256tC*Zzm%m43WjBA0@e(qmEo32;Vbx)$jGV4V%2u&U$KFJUwV45W(n@x`V zEFpzg5&wyN79^&oeQe$eCK7SMO$kTKxL z-tVa~F?TeF;w2bipzW@r^ClGo_%q)=hwGGj#^&mj1Xi@r9}5FF(FmZb=;~H6TUp5+ zHiZTunHY5?b*W{imm-I%YP?>DAC9?mb#fyoPXstZ` zo65GAwMM#@$;I#1O;f7%mqBy2c512xTHlrqfR%i->^^Dz@)qu3*_A4&BNR(qbXwPQ zIybfo=q0|mka%W{*?vSsJb9`YG&8*-hDn`}%r zejD2Zo@A-G{vB;%yfxtX>pWqre*9KKb98#ttjWGYe%9+}+PIwd1CFmg280lBy|p#$S^D&xQA4>>xYeqJoKdAL zUaQeToBQK-x_)js?K9RK$N3*abt+19x>Xf*p=kK*9Td>xy=G<;Za>Wut{1ux=rV=n zObuP9e9{PKhOS4YFn@u%>{QhS1Xw=#qY;qQu0TJIFyp*f#bb3#9_ndK6GSfa;4qPM zaBDLU4LXW$LZh-m_bboEINO~~Hhd0;c#ZXgASbv66ZyFSSV=>b>FXj0^vl)7 z_|8!Fz&n$XlA_*tHu=KlMX9~bLow`jF9X$+=d6LDvPjVUQhF&UlN%fA%0nronHbU};OthSO4w|ucO ze|H;on~E9(9>9K>qMGbh1+f*u&00mV+188gSMZ+fQjFStFj~$^lUW(G_rgiwn+jAj zVHwhKs!i9XwY)WVf_wg&p5Z!=-(U*{>iepg&z9IAf&8E8gf=~soxqc94j64gMd4IP z3~dl+T5|ny>|=N|o~1_=Iwj4p-=24~B?Z++&^JP#&!==3(98T#wz``duim%kRVo&l z(;X;dvt4>6ag}v{df3W1O$WYs#u(xQGj3xNSo>ST6FKEWD+rW`9Zt;(A^iggjW7MC z+LuSr$zl|OSLU(&9G}l9lGswY+y!T{)Gm%#X2qN?fp&1~mGv*{$&+;*zEwWQqU|#C z3sW3XJzu}p;LFoHnG{}+m&=_fQLX;rTm=IlK`VU#g@9N1=t1>SR_K-_s1@LfcIJX$ zv~QB)`OMEbxg4&2V)YL6eKQUG$2OmbD>a~~>0P5_Pn~TEK!*J?X;C5EPQL?!k`@eV z&a!w7aHM`BH8p4$+g$hL>9lk3# z2MA8XDGeB+gJT8vYx>Nr9}z3Nr$tm(a(0SMWu-b#ZSHN*QpxLl7qhAY_9^Ir$zBcBb=^#TpV?h!VkB`riHDD&Bv;2tbEJ_s8*X zJx{hYp0n!frB)8>Ryo~{$H_-&&`2IS8J{ya*552SKJ zM3||w*F=564=Y9QQ|rd=(oT`O!z5j#Y5ESwq}>F2^gDv0GXq4DWthdC)buH)-pBU0Ah6R<=0N# zpSj5XYB>JA1^<4501wK>)`zd6{{7D1Umy^J&v<9QjK})VKI?xz>tzj&{|yo8>;FyZ z{{N2yiV{7@_)81$fBk^}j|aC%9yC{TCB^CX?0;J_(uZb`CWmN-Nm@m*-M2zlULyVX zrF)2p@a%qpVR-TX+v4q$g9UDoc>UtPf0I|*{U*=`d42t#-}SexM_|6+@!&VZ|Jzyd z|M-BI8}2*A_miat*-2b>svv0IxQ9(Dn)a}RkZv{E@la|B64;WD9FO|Hm<>2Fozg|2 z2rv-W7Y!!FOJs%MQ<;wBR2h@-I+23N;n-Aw*B8|31y6C0I})7zX(M zSP(@+8w_;l(%?dGTq<*zbN0RO{p|PIAJ3=v z+xjg*R?Ioam}C6Mb*&!;yY0==4Jg|VPwDim@HGlg!6kkHOh8qG7mz(@@10q)wc0yj7ujt^kjBF7U?yXuf8E?AW zo`5VC^#>;&(fj&EES~Q^etvu|nCVi79l<%FtfqSlF_6+2PLq{tnSU`=PNhvQb&#l5 z@@Ie?l^FV+WIX9hgbnR`M3iabEQ|A58$1@rbmQ4OPo04XQ5clH0vLj7py>c?JC&&3 ze;*igL%Ax?23{qFzGldEbCSt7Vx7S$)c3cxmySqiwl#keT0QuSqjZbcDQIy|iCR8B zv+8&E6w%k~jiLjogmpA7Q#!23h7k1Xae`Ua8a|EwXL3e7ctdH-6z7M#m;NBn&sVCD z2VgXn*=El=lfQpt)~AF?I-bTQ=U;q7_=m^3XghtWR>1jZrd&6HR;m1Jt+gqEA^QDc z(_>Hm%&G27z{JT00ad2z+(yLXLcOcM!G_(tPpIlRGnr!8R`sVvO@rOVXxh3{DNdRC z;U4ItjhWP#Et_;hlSOUW1wNh zthw?*Vr-|OklMo`B7sZ6)?hBHMrZKnN3#a2%|b*F@EezkXO43yS}_`}+JNjklAY;N z_{}+QL@4haf4YdU~_v2VHQ+|0406vW(bu`47c?5%pi@KyCfovk?{zFs9LS48bh zP>V%&p07Fb-N(h{Z zL;Y6g^=fTQ7-}r_>=HIk>)oL)PBTcDMlW=^nH&36olYtqUDVcski3B=k+ij=nm208 z*m)K5LZgfFq)Xis`%3Pw=C+TAuSplc8E89r8lgdhZ0GFUQ{=!Kxl_Q_5Rc-yaO*LB`28s_ce!=TI#uWo=4oiHZDcn~%@j)zj&~dVGG}CuM^;TO)_+eS zkxcciR4;-#Gr%c8q}3y|$)<0$|3tV6J~cm@_8aN`T!nQ$Mw_GfF;^tL+B2vUz-Zam zUx+jzwuQ}DVRtXNsh=3`?@Bz>be{Ogw>PlmJe@1R`6U93{q}(rN*dEfdWg~dDd{@d z7@(t&dUzW}9fefUozV103~j01<$ zMIs{Z2bEeIr0}!t(Qc5ZhJoEF>gibV)@lRsq_2oer_G0Mv_i~@!|EbYJc(26@evH$ zMtZ9|zXfPrWTgo&{M(E)*}XBl;^-=hItZ%b$TgdZjQZgDbC8$J{TG(7vE=rx{LDs1ExTUN0(tb&CI#B$~CaSZxG$FjzTtcE0*}f_nY2 zzhLe0j|mdn-DoA z#VyG=RxzOPP7m;BZ1LgmZjJol%wDm%3MsxLwmV$;u^)o!hVqkg$LR5vTdZCE*?r<8|GtMB@JS@LRVG5R@xM-c5q?$3P97P_!KU7SaOYDK6z z!Q^?zwF>|kBZho}qBjNzM5Fuhcm`wm*nBeK@UWd*nfV^fm&*>|>uJ*|S%1kFJqXuY z8&VvvcEx}jaJZ*0vRD_giSg9q0lZJ6rxC50KcxTGQy!BAdIShZ<@|s}Xa+ZEb`?49 zmi^F*Y;eXoSP^?A5=7Bh^v`{SKa5MHW?geHZ7KImuPut{VKl*6v}_f8l2rAAYxRq2$CZY`~EsSVSu5_z>l ztheVSK@=wkdYEIXE_u77>om-U42cwZm3up^4 zj(K8#2v`q>ktV&X*y_`z_Q8+T7S~WHRH9j^EsxP3N#8z%gObkGVT$?I#zv=Bs$#lW zO@)L%ZehKLnxW~vZCE^4X4fPcgtRLS*9Xp(Y%P}2^4hsUE2Xy?-JeQ&foC8N_J z2pmGghf`(|7!;DCfg4gds+txv-ckGxbgH$V>C%$ujs)f6}dh=V^)pl-Z$pgy?nJaW|eOw65d6f03`cY z?I0;h^%orTguKfI(f0UfB zdf9+U^_9OMhvDwNsy~rKYNg$u&S=tw0hBePOjQNe3aS?2yr(99nCzv#kx--sX^MF6 zSNg-r2%Pi7t`yfOO|nh{H6!_=^uU7Y5^aNc%GK~+6x`bI$c13YC#p>(6h6PuB5mox z_zQ{Bsy9UY=#&UI)bSjT5=;h$rMN8?%CEWHTH7dotTU3zi2*srD06{aS?-6&jPUj# zv^JARr{%*yX4`qpYt6Z#6UoK-+U=j*4$PpePlCs;?*;tb#cokomx2l0Xu(U4bhwp&cd?J$pqkKvTcf$E zhsS4e^FA3$zY0XQ@TJN}(!(fvQXnoK<5s8^i6#g;9in=0(zXO8)tp3WIQ5u5zd5Lm zNgbJNpZ4c@TbXv(pz6-VXo;XvRWf2X&3vQLxV<{F-lw8%Vov9;tfuqnE>1rwrRjEa z7VQ05EA5Y&dt#|P2OEYv`&|N5onEBKGW9O??Jj$4j1gFdCP|suaf=Jo)<^zOB&UYv?ObqA5JIJSTEDla`Wg zPTXrhjY`ApLnY}ggi-UXPwZ>GQvRH?DTjXA| zdt0q!n{%;!Nvq}kjSU`macCjcUhCU$!7+;Or;jZzm`^|OE&A9Y6y3C0C!?EF1f)x5 zh$eilG`R(Ky!Sm!*@7eo^-LbT$X3E z?Nbf}-G|n<5iDZD=dYS?5Ie;WW)V-$hWHe0R*@E8AI*D(pu#bHp1dr6i~2L2lG-9P zIi)vj=;k;3^6q+Q@%B)euxpzjCQF%xE`DgI!$$wNiuiUN{Ns>XThr|5Fine(?Oyhy zr4a3kjQ4i>u^+^fSd}|^!`onaF}jcgr^+@5#eTuqRA2~*l<91L_DAEXtv?oi6)L{P z^xPeb33~!CN2;%|dW)9)4+X0wxT?Ne!4lKh(qdU@QgP~yYhYO%-DX4i{66395Q|Zz zFI*l(HqwJj7B=QQZHIq>PWxS!TaaswV|!k! zG{M;=XTdU^1_f4P{s$u&b(u_8F**n-cXgR?1r5VEO4~|voD@*NwDy3x9GkDP>@MWH z+_HF3z1WtC6e)FA z>Ds1e(;)?har)zVq;Qb0OlD3dsJC1$@87xL>|o~GxZYhWVAW_EB)yX`tcc*X-K!Q) zFK=BH!lSHTUy^P5j#W0sI6{W7SAgNtHiJ~dB zJ9Pgs?q9ssq?To;!M!t{8B?!b zW3;O--7`-tXxzzzLRj6y6iy#qhJVQ~>+O}=5j!BH6ZhUM?QDBuf;B&=AA)N94 z&eQp0QS(%iE|joJ^3-h8dGP39PIZ&=$D+wHacZqUx;{?DF?BsSST_tL@Ll#|r3l&W6*=vUX{3J%OFIvZ$&8~O0_pvN)5jao zZh*z7w-bIVf8J4OIyZr{dHJ!Kki{_FQJ7RpexFM$E2wgH3@G&5AU3NEb4P1&HxrgF zWeZv(8wABzZMu-Q`8ebEDi2IJ4;j{f5I|KtZrSi_x`yw3xYiwtq)6Wa2-$c#x)xDq zlz{i5oHh}cH0EIvyG8A!dVWfyN~y}hVng081$frzlW~8`4{9Kp)NM9r*Q+3=(3^el z=!IWbj|B;4VIA#?)yF0VGc33n)(5j9i*8LGUvt06+n{^hx7DH=eJ{@j*Z+YMy<6jM z%Jb3o`u@TJTo=k424@1qGDOd;mQ-TN~KU3l&{_- zs$JJ?cnU~R^uvj2>YrMzH`j?TneD%*$5?czG%QVM_}&)3-X1Lo-5{83j>T+KnpzNe zo~Rmylk7>k6A(%oAW!+2OvvXd1MXL(99DWUd=Jw^sL%UrR8!SL30c&3qcpEQM0bjs z4u*+1;21VMqrWgP4GXGxb!45IO~3U1F5}9 zE_Ws%c97udDll(s<9CSaPqgpB#xJ&w60P5cy&zX>m9(feN}BrC*tP=oO-rR zX=zu2I%1?@I@93&%DD80;R?j`X!JK5*THl#vlcn_&|AXj`afl6OV6vK>j$F;r|sG8 z9z5uwfedif-BFuVh^kckZ;$C$EoVo|+BXGRAe6$k5M0#$w1iXhN&o?1xJ8-nF zeK9lzCfx}aUY-FO_aQfRCUXqY_Y9Un1MUY4ociisH_VpfLI%^RA(QH~qnZsYprLbO zdyq(dA&A=U?L-C%AfzV7PIg!Lfi~GLm*7shGv7Fse=S*ScbhU%PxBE$+rRF@MDB&W z$vf5AaYOGg3MqPDIh_1cv`HA3k-Z_D9ZgOkyKU)=L2GCsjd@&*4e?_ULrZ2W-=R9C5FdC{IX(yFWgICW}rLobYXhp;RHaga%be zjo57Y@ALQ0%d4h^+AP>L2~rwq`+<}JuA{k+f#`2brS604oU5rLrC^a|6`cAb&6XN} zrA7Tw)vK7ft4IDVuvIrb}pUG{^ufY#f`-o{)5ZWM@!9`u9&6pU-$i?Ow;{%d`GBLiMj`zPU;O$k%4=|UQDWF zgQX4D?^Alk7YIXNs28UYc{N4;)C8vI_yK{p$(QK(%At!;I^C&_x#PD^4SVU7LJ5Ev z*=~OkZ4$$vK8d^=DTV(^eCoc2aYnJ>f~)505@ImFrQLOa$XSk@8(D@1A6RxMNrk99ilvs2s%Ft-tGw6cDu~W?H2*weKcq@@x7`0_R!hu8e zbE%S8b9igKrV3CdUpalsC+nwQrgw&%`XD7tOw3Np*>#{EDqap;o>(lPuwbu)azYBc zy$QE(&(*M|c81=ihiLI=jK?smi;tIa``; z@$IWEbHc-olPYFy75#I#KUZl@*qT}>Ar{@2-qBaC64X;wm7X)<(d`hi=giz7y%YrB zq&im>n6%3MjTr$72q;cX$zYyme@B`xlRx<3L%Av8#C(&=Y4bYZ!FcBJ!R0vOgV_w} zxJb*b_WX1jvJp)=Y$DuJuC8o_F*7|Jc^O{{gVCgG(K5YxOUJab^thbc_UB>CbzZQs z3O;w`4k%`7(-NZIc&F?C*>QfoWK0p@IQn=)eM5@OMQg0#lE`ADcaF>?aH;6RFzSJY zD1b$39eQo4AVNBN`zAmO>M062#p4pQ4mw;$g@p=7~3=mypskPkX4dsPRXyOMlTf%wg3O256Mrm$X6r`5P(lD_vEXkhHh#U7@U(d?1}kPHIdhSWy-| z{as9cG!K!cye+2BJ8^xvJ+do{_n|mco&HpheVHyGok>vK9rb0NXreXfro#mz!G+@_ z`8jO9r_~DZd051&ZDxKKcc8U$B^!?Dj#?trZ(2WnE=0&qW{M&7+0V7O)$=I0nn=4# z5?Qy!$61l?(?U{z$R&f~RVF5lk|GQWQRX>Z>$=ln)F?Z#ZMKlW7jGL(E$TFt{%BeA zx-P23YD668vWhg-L`g*?NFcrhZ;rg^7+ZesA6|cVjkYY34C|hBLl(atto{?etJKoD zY7JqB8vMOPiqd2yLa^*tER>F!Xn9`Y(EmYYW=!+0Gg9mX9CDch>}Zm%FO8VAT{hf{3Oj2W5m<}5W|Mz0_T+7*?*=n8N38kC6KM$6rm zP;U*X0(fDFd=Dr2Ay0~3+9~GJP+7hZ?vA)+DIQ=YJwM2nb>Mqh>e< zqbS%T2d}}(-zBA*)i<4|J z47bOMR~#*MZCdq3xzd17y zOyYgK>e0qyvaDYlOd4A@HJf2UY*{ z?%kj`Db1HuduNjL& zRUp+)K_=z9XMR|o(<#OH5Ox?^Qwv4(c9WkATTB=%S(H1okzJuI)==|1pjMUv+mU*& zJ>2EpkxP2QkI7@R!>~YDZL?b`9?vXWkhAa&>krQ$6U6QDUP{DS>6c`6=~uyP-D93a; zSgq|tgnpByAB?hCweJ?pUWY~Vb3#!jM?|^uff6)ZJ4EVW68pBlIEQJWN7zI_++o z7=`4oJB62%d2X#;@i{*0Bn{!7qT4Y+TuLw@h#YmtqlB`Ug==uxKS5K2N_A)Z`OkwZ zd#7RaUIh9fpiLCToGF&GiMg^xDooy9#ovxuvHO?~3DxWCDtyp%y<3mz%X~iw`ziK| ze4)}WmyA5H9s=D2F(EE38)Ixsro%P?9C~kC_nOnOFJD7r(Zk`pH)>=s>L0gcdRaLqa+v zIV99iO#R;TvLS@ZkVOrDSB!>NvFHlqYg0&#OHMDg4u_ktsARsNM0VUv)=!pWKu8DO zjyn{TrkHR%bvamnmIyOXb}(LeOa}ud>24*K zDP8tIF78*Qn(hw8VPwUhwy`cK6msojXFrdZ2 zATelnp4BQ^*?DAAIGC^BnD9CvnXU{Zu>1sLD(v%)4GY0lmIO@mbQ+wdyhK>7DHgNE zd1mc)aSNfrhi6&Z*1R@MJl2dRZO=A#QGyb`$A{a|_pm`TNxY$#Alb|GfqlR`J4f9| zQ!t&FTC#V!skcb4yFPO`^FFvy-+U+pt<~AbW|PHfp=QY@G)$7ohgcNcd-PFHRD3RZ zTG15Jf}ae^vnJxw;y=kmLeBcPPX~co%uXk+&O~GIpL=1%ukEgF%UYd^8dG}nNxV|h zAC7GJP^r8ij|gl6wEc`tKM1(B_G|0yXLQgdt7pRYDF|Q-(cSpBFFV5Qh7E`OJYJ6d|**o z-wuCImHcCd3K=*jwqoDBd4Z(U+`K$nCFjso-+3!^-%+a#I?#q4uA3J`zg2!G67txp zbTPC8t58n~fm7W{tbBdk>o}h8?umSlm+!AjcHBU}BqMWi3oCw*dxWd0|JNB0XA}{N@KMKvwveKAngfEe_D~CxdaAF zvfiv*G7d4kd%oH(D85*rGNs+@EkG4S6oEj8m8 z4CRyo>7I!RZA2d||Dct$y z4ItOhO2%Wq|L-))^Ateko#PRa{O35zU(k@BA9xYM?K0ZQ|K*Q4zXQ^y->sd){{6EM zf5Bb7*Fme`iuF%cr}+`+lIoiL^}qk)0ScH&IFC8ozKsL?y2NO<*e@vwKqdo;C<*`- zpB>Q^n$@}7R_5Q@dV&kYC-jDgc#%U7d;dJ~ZFEqRvHvZX7cUfuEdh+O-jVJri}uGd zaXW^dN*oA{fU%cufE(z57SL0FYP3Miul{_JfH$+l_g}Lve;mMA&JB0Ydx^h&RPJ!1 z&(ig8!wzJCkh{TTxjUG7;pi6{*`0cfdVuozd}~WbZj)QZy>bddQ7;%N$^0A@Fq)=~ z@>~6o3{aINz!j~*8qRmpN7X7_2;{D~rJ#41ntvs{UBzGK_n=~c8 zi=$2WB~46~?)m0H!^!DTlW0w8rfzfUvP|t)iyqLnyt_NKH5jXnQ(TADI*6o@TANz3 z?Y)8@TRV#@lPNN#dxDjPLWx!Tqtg`%@5rEFgTrcVj6^|azZ*<(tW6duqjT9B`(tin zJ&&|l&Hnt@xbW8XPJzsLhI#d`{mOs?-YtWI!|A_i0^hyXfcpU|_B0^G6e$Ht#&OOq z^P=<(AQ4o3ijmy^5H;iz5*>iG6zOq&+5=?zbk1V^Bi@SX*))&<4C(A}N>wK7Q{m-} z7FEC=u5w_f^QEG1D6LIIw=;;ta5)Y%AMV|_l>xKsOL;Tm zOVT~Otet6@X(?0w>7&DXl!CyBXYnhG%Qb&l>Q({cb;!SDY|-3-$Ee?z&;4Zo`Ub=J zzo0S-Nh{h(rf?_#fg4&Hg+e*$4^EZ&%vx*gRI0UJN?%tzC~H8~(qN>%&FpimK+7;0?J^c z?UN$it`NSn;w(ib?VGoNhqRD|^mK>65v?$c(%qju{5o$uQTkh_H@1b9&-~WTc7{Qr z^5@yk$hSsNs|HyiX^B=xggjlsrviMr6f_8f`nAZ-`J?!3g$ZdKbJq9!e;pO>a1by6 z<3&xc7yY+m=8pq9W7m*S;xK4-_e|s|Oa${PPxdoAui4uu4~6sO^%*DM?3RmzTHG5* z2yI6o7FaWjr(&3(PmzpB!X!zr+DPjOa~2H{s<0;-53~nA2dwoNpT4)5H5QG07gev2 zwf5ctB0jQEcljAm*m8v4-G+)y_-rX0PLk0K>U0C~EO2iRc!y3j|K`y7hYGCei*cn$Io?%Zs9{||iRvpfV z1MxdCAZPa>YwNq9u$V7$0io$8@FJ6cUaA*t7(ro&>~QoaZEkE8ZOp2*-QY!@grdDE z0Ptv4&Z2_w&f~}>&uUFvFAlg~qYBpn!iY^KD{PfQvUjFz698-irF#2SfLr`lVeTDx z*Xk{nA$3T9ans#qmnV1eAXW30L94274IXu`rwIY;N`lf$7;(?dk>vm)gGa zTjb4X@kgR6b?@m^^JU*3@MyNZDG4xMp47qU7R(v*KxBI}AH`DB}@E;u8^%~N@K6O-a5Wiq#4Hy~z_1r%dx&M0R zIR#*4|MIz$V8@$Gt}T*CzUp{gsRkB=M=J7XQPv>R-QeB=D4W3Sg4) z{TG|`W?66&@VxD~{p&dX&j)I7PY1N0)|$wFIhyQ0|H(vy6sgp_aeJr{8%*M&2qoq% zU&rA1j42xa#(S+dN?FbA-bU)%$$xwAaQuHVQ6Z#$AgvSzu82<;s-HR1zh)ZAsSf775?eRWBuc!?dkeE-%E z4UKpVv_~|*7wCc!a+5dRR|=Av&Q?P@gYY(@&O!UoD#Kva$COSeNemwQ*Zc27;V?+} zKFZG@YMesL&6XfzeGwdyh(w(HYA)w;MWb#&z!x~AD!u_CL=#r^anNcXUhGb~P=E=r zsEw2l4kNq+$2?DbJqX*~poe#Ewoq&P6Cgy5#Y=rCr=iVFj}J5{NO)8QO01Dpi;iP? zF%6Xa@QAf`hcvOufAHB%y?_~A8x1!2ulav~nYL!4=ND`TaL0CBFTi)B1Z3Gs0Z??| z$b$=4+7g|@@4Om#A?cT14OGY<(p_c|&UqgCDV$%Th0j{0PSv3aU_w5sS07ag1>-~H zivTIG*-KSp>CpHij>jmg++ble`-a(K6w_cnkXP>xJt5#C-90beu|4o-?CaEL5nzlg5>-DKS+K)2wonT z;Zg?h776(M*@h|Q`Ih#P@9_XIE6Qe#RKL1{VlMW96p_{DdQ6JjSWVzUJ@Sz2aYw|L zq6-}|q#+*Xt4~TF%+j^FHgfu+i$)z%D6HPQ1vvCgnv`mH9fH||;6kY6sdWY@vs;4I zhrOB7&l9;(=VhAg&&klt*c=;FW#{W1WWjoVcTO-a2NitO=q&MgvCmcNdM`}%HRnhD z!;O*a_qlJwl9BH!KA5Vgx0PI%xt_e!F6=#6Zu4b!=``+1q>2P&%1q%x!$2P2DZEr8hSF@e^lFAx_C*A!)w__VS8np>+mU%u1_%%` zYWN}I4vS3YXHxFuuKXfJBIZ`H1WB=55+~hyZw!1zw{rOv%@be$AxB-|HLXM(ryv1j zG((izKm-uYq=;DPktaZMV&}Phn@?~wGSTd307I;Ue6_nfTsu=T3FR#)?3TLRO3u_@ z!@|QGkZleo#l)3ueDV!rJ()Fv*X@bWwFEOQT{?505Qzo>NlC6yxJL}{gR00RYBrr( z*d9uv9zw)bXuxXtb!hT4F4S}A5$D6kUn~0-*40+npSnW!$u(P{L(DE&`C^A9lbKa> z-M(~WLMA~YENrRr@M|EQ6onb3ptZhkU$nfm)8XR%$#vrOXx?`Ptf*{BPs(TkYPsCk zewkc)dqV3wgKzo^>%qaJ)AzkEnndTY5h{KVO!MmOP5Uc7E)GV{W!GXwqtswn zfGddz05GY6j$;HseS7a-24*Nt^s4zD!u1_mTo&>pq92T|9ij#P;ESZMyI6Z7>bD(e zWVnawnfL#Yqvl-bTvmw16oyS^8>+#c2CaN5XszOyh1<#*tc|ML(` zP}S|X?8&llgbrbvYJYb$xMbH;oCZaNz!A#J9AtJ9<6dr;y>+q{c~t#2}4H z+E;76pZUT++lHFf;x@jKZ-2zlME4?}pQ~*)OEeND0?cw2-|6((d1vaQ{ezNUei7#H z7e!fXxo-G01@XaX_6u9x#=xzBR(lYsjp5WQwh_K`>`;pIoT?>k?ENwN0d>~}dT?P2 zm*U%}1D8HvqySB`1(6m+-JdGTeq~?$tlbSwd3=m!nii5o@k>#Eg}JWYk!!1&`nU%p z{8PA^bP2jVv=7%G;2NlV77H&^I4_%qi9x4`11Q6E;3Lo>8Bnj^OY6R_4gB+7 z%7@BkiN^?dBk1GD4)doX8Z0Skwfm)|qqo-sP4k>BKg*5~%tBBV=?#cd7Xx!igxIk5 zj~P8<afPhlpFW=BJf+c&h%yl~fZbCNKQtQ28 zNpFZ>1}H8@0J**dTE_iT&qMcTuSPh4`hGmNtqxP%EeO)m+Wf2yQLSMZDLQ2V3$ec%@aX&88cs$Dzmzmh+ zASrd{D%*IUSPTQgI~Z>Sobj6g&L3xm4^|Qp?<8nFi)X@UvL}5(MP#S2ekR}pD5HJl zANonJZxl^v+ifNdK3A^+w4dabHRFX~>>~=FX-0ut_KrjRn_ukIEJ%mX4b=EIQZKxHAY{z}Wv_Nh=gY?GcR%n;t zx+DA?H(Y+r{owjmnM_U3(6_dGiZ`khQulAcm*d)rPN+iqlLVByE!XUKa)Ftw+D8&e zob_Tuw8kdb$U-STqBrp9oeF`!fDN{2=s^;pOH$p1*9{JpB{`klxVqv%YN*}RV?5pb z>Du61Fbgx`dYs}`*judmYppHRP@hEWu1@Wq^92HxA~UUOr3^Nmqv672YD-rTk$1_EyR{WrC>+oTny=T*b3{ocil<{9HU(4s6d6qwe>ph^V@>TrQbmD$bIN#w&IPC*+$PT@=g>^^@&4 zF5*aICiLrmju~g#1(x-ipjLLR-~kO!+x3e^;UT;yGP{o^Tn#9)iG6mzyFM!$E^Jb& z72t6M%Tub$)rxP!sAp~+w*OA^&p;yLHQT{b(_`v*k%CCq{?mCt!D(^w^P&liSVb$A zJWQG0^iC#h=8sk>^UZwwICtJ;du{nvCiYZ=rOA?w7ZOT5u*~FJc{bw9VqKu2xJATi zEhHRDTy&cM=F!bGfJ3p#m51E%47YMQBEM6t|8nmtmglOzC$wsLq5d~iJ=-3fqJMf0 zhGJPX^*0raHkkgwB)3mJ5gpbT{e-Ul^OvcOK$Kr%sv#$#BLFKJz?Hi<@GfN&jvYz2 z?`JV4QM+*pZ_amfnO;pc+3xb!UF_#)r%HsTFhW2n>i05be{xuCB&)&v>z`A3a#Yj) z>9!6P1aonnq;1>P?j8=006f&p#p+OP z^!{k3XCXs4Nk3BnHXZrccjrQ@sY(;29ZuZn6WiUFYp}WwK=%1u=UbC&Hmfp(;qK*uv)TLs)_`qykNh9xE z5D6TzBkNeCL~de#Ccdy!bbbGbzZfyb;{-OU>r;~5(IG9s$&vo}zqOhPZn zLjSO8ZxGhF?$<^~(cn}7Z=mk}M>iB#-%o~(ufqmonUo>?cF{Su>)v+w$3cnLpmr!t zp>NJN0DOgj`nG~_2q6U|0P}3Np)c}g)3EGW(g9egUp0K3mU5(5t)X74H`dRRdYTof zsmj46@el-N;~HN7SYkCiZ>e$prlcaZsIH9gd- zQp-^@$Y%A2jsKSY9d!ouj&x?rXGRN@Mb?8VpM`IF?#PW>+IF1Cjn>)O(UJJQ&yz10 zIca^VN$6n-6qR(gibqB(B@j65w~Aj$2IEg!`R!EWcw*<*jb(_EEjgbifkJE@5RPRU z=ifF=L(l}%s0FpfExH@pU4-Xd#ao?1u$mliAOYkRe7RI$zHbbkixtBBeK5m>AhFIG zegs11RdBgfl)40Man;NB*bPehFJvgVf3wwZx-$w!yRrVkk&6v=*XuF{F(izqzV1colpFG>)Qo2AE*s*_3!C9m_EJ#}MHz!l zyW#B)+c;k(vUt|f<4<>}8?OMWom?d4;22>zXc}IT5W-U~zGXSS z*pN%;d?D%bKnFnN0l-8oOFVA8xVJiy$Fo13a#HI^95h#N3}#NEEDsMnUTJ}_)&2^Fd_;fU=y9KFj}9a zX~7VaR&eN8%I~D_=PQ|6Duuk~aK7>z)FfSelk%X3TGSPsLe66J6~i9IlW8))TdK*` zGed4yDmgBtO(R>ONGemS!_qL{>SCUQ5_Y?Cqh2tnxym6zsEr3~m;QjPoIP}>RQ$2{2K zM<{6Nzn%a=ID_mLOs`tAM!t>bAG^~kRx7G@vpu@88GTo<-189l(LM+zM5AKfc6ZXJ zJDMx^zJk>XrwnSSSq8%*JAy*$9X!ypV7FN9?Py}yS$S_*o>R#b9wfONsTaH+2vOe& znMrQAee3p+Jz3ef2J6ro^2(MAbP++H3?f(MRd;!?o#A@ecu!3Xd@;U(y+jH2VMFb0 zmEpwvYV0?AJ{ZKktvJ<*V;*y-)-`Z&662#ctL~B2owQc*W7<3+w9A8TEA3Pj_5Gls z5ZzS8RK)!|a1aV{=X}~CvRo}wDn(M=U34d8pUZ~rRcqj>Bn78|Utn>vbp^s~wKP-# z?Db*~4bW%`>y7F~ptU;L9Lh$(pdBpk^ZWQb@*CNO2~cq%THz7`wnwlAHQKTif&+B@>@M)2T`l*#i1fAc&3CJBU*)=ZotcE0pwj zjf>mufa8KQ2z~Ltc<>WAeX!nlq5~8wpjs~BsngOQdt9^Dn>41m?Gs!AR9g(yKe)Bv zQ0uqs%x}TE-fSyK`1ocyC^WU*9`Kh_D0<`Cj89x@1Svk=3;UzL4aks)5xzK>$zJ_@ zeR9ar`O%KBUiAy^rQnZ_cdXdI`xLl?sRH_(r%4`6LQ)Ql(|jZ_%Pvt?mJhEUwP{!p zONLv8l6(ht`iIiGPq@6o zbb0Fye8Q3ZX&ydH?rezET;+X+W@FGbR;Oo?LeW^TMLX$-&=~n-&%)W_344Q|Dd66t z(ekG0bk*Scr16LXT))#zo)nwd^hmF?+iI+TqZ`H9zlOQm}@^0B%Q)BKa;RJ$}EXxcikhJKlZfbh0qx z4zT#n{nsBI!J?OVIh1C)z{ydL=4OO+g0QO&R|uD;nETaYf<4hetANe$%pS)U%774x$>CNpl>H?>Os#CQ%L-IX(=1td>+9rz}vgqBkG7$QWy}y2_GBa0{!p zSOqdTqFcg;XJN0!9s9Ky zPWS+m!SkU9!wyqHpxi2cv7NV+hM|7yX+B0P1`h!bPSfe);M`#JK$OS20@adNbWY{_ zAAw!kAl!M?d!G&%NU%(PHYP7UiiI-;`vy{)vcNzDiIULEg>Ea08w&rfvm0ay%ge36MR9LHu7!c-U; z*&Wwn9haJKVG#_z(-65`&+?eXG&1~SaL#nl#B>Snl+pQ0A24c-rpR*xMe_sOjL94% z_Ik$Hgq+Uo<7ozqelPyP6F(9ARoC!3Nq_3@$^P_gpTfy`wAG=$$4};DoGh_Q@qG>r z4Z*!`jzHB$3o1-zQL}Jq^Z|E(g_fAY#l!jM}@47iL~3tI(Ocme91P*)t5#GxI6AHCcf%V)jytSb8Cp#nWT6%7JZ=tK8ztg61| zDype&+@9}mgDGh|aeFYQf{7}-GkN`mAZqyp7DFG-Y$L$m*#{yneR|1RH&hqszbf_C zqvr-oDM>Hnc2yQ3?j%VAhjl%)sx7x`8B-PT2ov&b~pN9 zTMx$K(oHsDK3eXvw_}>*nI`DB8T9y)$#b z`^GNxlk;KjY(SkwYuaxjU@H&dum8vn*Pd#F{7qvG!{u3i5($qprOl4(7ToV=fwJw} zhT})tNGQvBp!U}{tof^aVFs}F=g+wuuzF+8IbDm(CJ3+>aB0z$_d-?OMrFoRLQXk& z3E=uzjmcB_%68l?_vaXvTpP-%hy7vkksQ8Auy8)}5X@v5HmnXt^wX>5p5AJ3 z1P*X`-Hx8Z(rzeh+-&vU!X|(IEz`8_x2{i*GVY{K2PxNrU{yS0o>tBwDEb?)y`lF04T`Zzc>}^e;m##nc1Y*@uLt{1~7}? zH454LGbnpv(pPuE6t99a)E`@R_Vra9PB+5AHFgx0d*kF47+A>I+&k8x2+$i!mfP$* z5^7i69LNf5qNCaplBQj>xW*71$NLPnhTkdNls+bS0S(M zIjSHc6XQLHe$U;&V0w;)IjZCc>pu{E->fUgVf4|qH>Z6aVyf|WWbX!JOEA9TN+z&M zrtmVLPCjit<=tzbSCR9i zPN&y@rvh4Q1qWRR^P5T9XBrsr$LIs#NceyF`s#qHx;5_?L{jOJ2I-V;P~cF9@X+0z z(wzp~B_ZfRx{*#LrKGzAq`Mow#mwB9d*^%S{s%~G_ugx*=XrjGp`SR2HR}%$n6$p4 zvaS?Bhq3nQNn#1fp0;1CQ03=;f%D>>0Vr7NcBn0Ak)b1wX74-ABWjbDj8| zCWK3>L+mdMzC=-#dX*W>lSRm&h8_HR)!b(B{@9!$ynzI(|2$i?-4h}G=N{${*Y5jt z$JWXBSeWWAVmDanPh^X{PnoYs`nexaFt*P5dZ`BJeg%$%@nTqsosUi=7RG?yld5l+zLF%U9>|#CoS@c?pgmEIV?`;NP~=oplYHfoyCFk z=o(QgBFf2<+c_y%I~U&JmFT$q+&D9_*pkB2M54&t^1BWZB3l?S+EgcgbtQhMMJfX) zB#s~0rFIN;O}&4VHsN>tNrp3N-s#P`&rm3QO8aGw-}SCunq`OE$z=8H#RULvWJkN6 z>g(iBA+#-9t?dYoe10YAL6&t%-qsHECT_#;9+NS{jV}>d^op6eG~^1i)XoGP2DFJetn_YvSD0fz`gU?{)D2|Y zqp^;{8X~94>qJE7=dy#H8hXZ!HukFQz@1sIl#ImF@_tT1!+yLu_WKD`5b*K^?8WYi z%C>&s)V;BqIt{oVKS0#_ZA{fh&1`j@Z;P!Cq}I-oBpRHMfxJg)%2~BG5n2K!R9son z==``^O6{VT=bjE^ZU~N@I5x+dh&wzdSVLG-#N9XC|_7be$<2 zxn&Q9=KafRhU@yxQLSOr{kLKiq-cQm^*oV)rz`E%+Yeg^K^wNr`#{KozPfBy=nr7K}+d)l|glZsdN)&5*Z4+ce- zc0W-?2^wF$Z2-F37@mctH8x%It+CXt0*yv@wgOml;YyW9(f%6)Qe(0Ak1UK{2f7uG z-=G82mEkB(>~wc99vpL{>EbKae)5*;c=LF?P<^7@`M~)N0SA#6|3lZNoh{AV&CsyC zBC>wUBcA#08hu-+?c7WGd#~RD*~s?VfbN$Gl>FI)za&IX0HD4h&2#sGH?w}h6w|Vl zLo4s{o57DR{0_h3U2Fp^KcXvg&6%JtG2fR*OZ_Aho^iP*md?NVxp9d>R3-Z5E^R$` zYJ+>iW$#L;@y5u{EN6A9{y5ugfQI(!gR)boi>&RuK!@AuRY2usw|+c>46@v<1y>C7 zBR*oM)N6#Br%pY_tS>D05P4sJ&zJ^EjR(p3=z3f!u+yEG{g4}2e+rbE$!}3G+bWanp) z3wr-Y|HDf1l>DCX5x&qgxMxtR*%tnF`#huhjkf>wZ6LlkedCLy~d@fZoEy)N9^!XLetA5s7QVw6Lr!Xzg}g7zKL4S+&&)Qgnoj?mNu z51VO?WWJ-4zd0IXnlEszjX0+n{zJP0VOI2qdOn0UP$Z@z|KoaIzQ7A)^jo$ zu=|}H;5D*1Co;x^U<+{Uo&#Ng*y?di*E61Aw$`cfOhckLRN_}hP7>b)pGZnwAqO1y z%6(`>y1eO=4uo&?X)NCu{DYztv@RF8o%DUA)$=lKi&qYBRGz0;u9XLFrS*2@-_eF> z=mCKc=iA&z+kgC~|HX8A_>}TNA%H_h`TTGG?Z193^y7mfJ8L6>)ygdYk2>u!rkQW1ACP*gpeBj6_93S|MD zmbZ-yFFgK-M+JDbj6rO=wLQ_~tx(x(K3rZK{Fv4w5P=D(*2D#R^}*fn4G^2~CxRo{ zio|K9D~@Ems3(L{BL(;jdS{d#NBzPeyU7F;m1ms3n&p_D? zn!dKK|BO=vpN7*!%Hz`S=QSYp$`>UMJQ#W5A9#VRkb>7= zibcFnWC>ZdSRZVOrK7gw#`0mOfjq_IZZlZ!3=3r)YBah zT;h3k37OO@>jv!(sd~NcZa9EH0M?(uc^?3pZK!~dwyecXJp;$4IF&6wJ>Bno&VPQ2 zwWeSJh87YLf~Ft0GqDD#^@EwDVAf#D-n_6}hJcfVUsLM}NKHojY7vF?71U5O>s~JJ z-!q2aDE}v)0n&}Ew-FF5;wphk^v^w{qW#WBqRXWWr{=A21wd1tWWQR1_aZ!(sO z#}|hQT;^L(Hs=bOX%*9?zWwfj4=Lf_-p1%3tuE&PEQsO3GckHl$nPrhWLNlg{nN`G zRYgjTM#C~47HVpHwZLZoTf^I58YN;*s4XpsEzYaqzPG1B1)60wtOiYLfSEyq&E?me z(YM{36ks-%@1#;Pa~;oNXkcjAw+{Gy!I6P3_k@|##~!|Io-d4-)gF+)Nm6JKAtXIu zq$6lVU5D6`I@rYY1&DOvGTT7CT+b>JGWZQ=yu#1oaHEZN`v|w9+B};7=S4#MJNPf8 zf`5W^z0DCe`hwe7!)b)eeYKmtKj|3iXsb4`2mnKZroN1j2Vf4|iX4}9?91!@h)Ul} z=FJg0sS;aY3a(#qAcH@U%oYKRxD6zPs^Y+|?@SdKD`LK-a620#e!GlqP92O%E~KJ! zm(|HsSE_v+<+_Kz%&obS&Sy78R)}i!ezsN_E49@q?!np}F#PBM4JK~CMVI3-#-9{G z46{iiV!vU_mQjw~6?QKyA1c*n8K^Bf0*NqDI&Ezd$wX+e-y>dq2V%DS(1BvzT8Ex_ zVUN{MzFy`7X>KZcXCW$p5B4~)#d57!u%YMpzqkX{j?(uNEq+AJ4A3;>T=?& ze$(#&`ZqgHF5z<9Qg|R0jg{&{ZPdyNHNH;ibu<&}0;U85NQ#OB2x%X~07;SheTiny^(Bf1-4TYL zN$^t=1a6w2tshrC@p0X!o&IJyIv{zBoPB)p=ASrj^HugEbwLjOK{?01h~|NP2UX>T z;?kmrInhX!<|_D4Y4uyu|79!H!~VYPJX@1R=dqXZU>5{bC1Ks{{VlAF{Sm}k%f5G) zzWN(#B|6jVAnqRjJ(OB%Xl)?r7ffr3eQu$b)(5Rpy=VG2&xq!(&-cZt=)#E-Hn}Z?rC`3@AY+LZ0-qWMoBw)R)G;q**rqBP{WA=Qy=}8 zUe1@5pI@vKT)rJgnaee%3+>DnRAM+X>d164uST_{VHMKvEctfz)L{{O4g1j;HtEvU zLbj!$-04L61Ed`WZ2SDhq+p=)=N4XXvKUNOXH$rpa`ar#gt@NvjyvDqJ<>OlRO4aS z>Q_kTgPOwIRC=0XJ4CS+JnR;kqDaP5I87PkcVld1uTC~anB-@DupiaD{Ncen03cql z>SHy0Jag^_2Wsz|Z$Whh)47(Iaf zOx^lU&NK{wO*)}#09C56c0bwR)UNU@K(Bl71;034f#%4sX7#YJN&?0xEntOA98i(+ z+s7TRvkS1wl%W6YRaqpSja)CDTX$Le$*x;tmvBtPzVWf*q=-OBddZstOhOOPSd4_B zu#UcHisv7|_*SXYs$Vx#1c#gjm>C_oXa@MEwj))(g8j{k%|Lx1XqH?WEv0~od3A?Z zt31R_=H$;2IO14MdQ$?Fv2faqp?6wgG+CKC;qwc%R1>8~kSdtTuA2#2jps@$hbn0WUy%woc{VD(n*Da^5!jNd)inM*$B9^ZBr=64(<;>FG>XLgcO2QRqSGn~}$3HqKn-KX=qP#{0qC@~4{ zl{iQ-OlI09uF$EZMGkFjsLSqMb{frHWTOx>QLeW+|A?_Qvj}nBANs-uY@M{*5-g*P=I^z_#4(QXVXBS@SVH>?c?-HQ^1V zj{a&}{@>%^y=GfllK5m0@!|4Snm7Nl_MknlK3RVYww^X zXv>sF=VF2M_%Ra}DvoX5;Kgrk>~SgBA)|JqLpC!;MO)I-Dv8G!Q?6MlkI?PMDP`7P zEKM&10WZV<-bedUe=dmt>ayhPA?WBs%_ng|KN$ZHE&y<+*fClC87u*ei;~~Etg{36 z3{i!NRCm9r9eN)KtOCTz_XFpn0J9uZf9F!)HUpTN-hQW>DA<+xu>N3wfz4f|@!A&? zx|!TEm9EgRZ_Oh>c#pBXq(G6}Gi@8zyFW=@@qfW^$93FmYdM)sZ$>BR?VEpTSN5UA4~j5?!a( zrgYg|Ix#1oJ{(=n-n8$Vs!xAMuF?C{o4{1ZBwXhka+1@lw$f07A~KSEN?lwA zCAdU2YLQlj$uZsW%ou_=LZ=}-+IYb~hhA|zT5@s`&4W@`j1%k z>X52!0{}frWeOiMU>YtTIY!sY`aZ^k|J^$zReZM^qYDuN zB7jM&QL9$5G_gTa*mVmqz2dcIE5Det;}O9dH>69~H}kp{C>o0 zP(!VlN{_GV5{~#=4-vLb3cu!d2c5yJw zs9s2GGg)d3!%q?q*Ig>r_ZeRzpg|XMeh&fbo0h9~tBO8+3*4!hD$kO&WDZ=%(MgYB z=WmG#E33FgzW^n~bO_6D{FTy-+j56ojk(v9?;I?DT6uQ=}Z- zJSIWg#rM7pfNGpx9rloj`t{qQ?W&a6m_JAjJ~2`zkFK+*F%~T|Za>yLjEsGoj*Pis zDik@GkKe9}U){O>C$+E6bCsSsg$*bgR%XNaB@Rx~Ch;Zx_ zJa_-`=73%&TnIHf=AT93|E&0tQbIJ5^SU^|q1y`kOq5#oRz`W{M{5i$#~0QS{l_}0 zpR7HNFC1=6*LD3bZ@@n+13>3N!-n8=kM&XDv0FwjWt#mEEx$Sxih}e7*t)v9vXMcL| zPPX}p^OUk+Jy@s*kf5@bNFMEa?^BXor6Y+s_0CR}*}|2wI7va7!WkApvs0o~j|}!$ zDubpv_P#t8!;`IX+l%O9nG&7FDYozy|639k4Um+$%5r$Ns|zjw_375+tGT+;zUL5_ z(e2uB#7M|F>kf>IQa z^LwGm>n#{oHdKlo>iE*O@4y+*&1$63xPAl}E)r;1Crt`=2 z34lsSSYAeI7)U{uuACro@;^#1uoXzwz{QcWSg^Po& zxjSsym90CeB%96`B|lxU60kBq>%pj37t5tL+u(*`F_4LZ^Sbl)Hr=t1`G?}WU*Jq$ z0mUXZXQ^62{K45)uvyRCxXV$amKD8RJQ7G8fHa&~EAAbed=fJ6bp+f#L zYnJm%a6FjY1!q;b?;@M^WT1(9yUKuMX2r``9w4?OY;@o2{2>{lu5UZ^xwPHK{>JDm3X{s$@4=5FaD?4ifg}NmK{-<;IQNF0W)paO;sj&Up|*G)BKrH| z!AiW%@quKCOvsfO==cbleSBCrVG#w|1u9;kTYpqx+AS@Mip`z7vUgJ>HTN8PW{Pl!oV{ezKjkdpVeC5Q^9RG$@Gsa8>gXR%&N02?Ifwmc2B! zkcix$X}m0a_E%4Vuut;b;nUI@p>Bn{6#nh@PZ;aRdu}0jySG3)7-HhSH}|;zQ!TdG zg1(}8JhQqyU=2gV;1k41C?Q6Fepcjb-s`G*vE5y2J|PuC1qFeM7YGC3F4Qaw2hE@H z)rsK7Y;8yZJDLxUu@898z(N{dbs%aEGA__&APM7XdwneV_e%}C1*rqqWxIy_Be!Kx zI1_W5d8wY@0hoCzpnfbae$vXW_L@#YYDD!uLwdG`?J1-c5|R9Uex97yRzq`evxI*2 zuP^E>lW@zyy-*?!ir`=aljV*AtBGPxE;CujO8ni40o5>%(mJ~^_|@CDQi-1gn6T#? zy$Y2{!{G5Lt9=?@K*tTTrr$fmCZ)umLt*tYtd4lJvia|zQ1;E}P&hR;wSdoAQ{@l= zb){lDVZK^LQ@E|Q0sZ=*;rAIg(xlb3-B}L_^31Q6Z;mH+U$5pU7cn==1<@bs9?`M( zC9&nO+ONh}g^pKfgy_LCv$n|bA>ssH{we=5^Z4)mp)D*>3+c{f3!h#w4cW2mS8p&3 z^9twO>vp`#`Z-+&Ntpkd#K${>iqey#E%L2Tp#D-}KU$72CHkZ1*5Cz7t+t)A*65e4 z4EuBS5kLj-*}cRu5!!%5iNn#E|B!_`oE?&;D&R5FMH*%Z zmnEgrIKPAe6viX*;`sUh{fyII&vgQ!%;#dXRUIG-z^!k&Z$YC+Qux6?UPJ?k?v!*L zvM1b?_@YkBw0w>W=#KmBxsF?g6cq4{o$2E^HXn`E3HB5%xl)5>3X>=sTGa6LbAi^s zsvJ(6J3qorn3(dy`_RtH44T{ewU1+|{e)KITU;h7GDLlT;Y+Gfs-8TQ^J0E{K$n?s zQqa(*qSkVMy+8XJF2!kH&76Xo#+^GTeSg}rj* zGgnXAc)lZ3TS^|sQy?rggwN8A__&3q>Ya$&77qZ_-WfDEiGzh8k>;yvlHl!`*m1l* zSmCknpU9?*4)QFX5J6#K)%C`=7IYo*b1Gp@g)w>71M(_!vkXdU|4~MRBp89qK_<7C zYWM!liLwp$*Gd`U0XQYPydmkjWI(Hfc(~l94xZ%%hkgTMvyWF1aT?7>`8ilcC1^GG z?>o=uD$RxY9Ig~QH^+)iANsS>?Fho#;M)C#o>f8^dncg6I@=&ZvzD2-dYWOeD{x71RwDCkifM3d2ZfxJDyiUlORQNzfsopqNgU zHZy7+uq3?L4h6%fQ(NFp_85>(G*G1U>%E^csru%cd;~`|blkZ|Qp&IjKgw$PhT`u_ zo_BZ%73c&-ouJ-mpBH5ULYK!*MTFGK0as0R@_j#K*mQZ+8G2{KQwzlX43^`28>O%l zp#fLEKtBC@a~czZ9#As(&0afP%=ZRg_>2Pbg~Npg+Qs7z!{I+C7xpL^U4UHJk9@@; z87ngt@|sU$WJX-A-sb0I0(B#h~L%CWeybi>7d5Z>jw6;B?0DhQDYGU;Q7IDz-Z! zzr$j8P^;39Y%PD^OfIh}!|x2T-(P{slpLwM`@i?9|Mfw}^EX#>1bQv*qy&BV(sKfo z%b$;Eft7vhLml;WM4;`h><%Z4iW=AEH05OJ8pyP^}YV=|H7 z+pfja$zhi+qVAuEu#mN6AkjQSsL7Mnpi)pueDICPiHHe{F+-Zlq|pv~AqY$RYgRRp zU5s8V9>>Th-0X4NA1Q0Zk<5`CrNX0f|6}(euLA9o;H%xOQ{7NJ2F$s+IcydU){e+$ zs<$jDH>A%u#%E*C_ZN%Af42Vk@ndTd5Zi$DBmd7tYWqawu8zMig#M$ekfMBONR+j? z822 z=kjm>8Ry{^9gS@Pg) zt)tW0j`q&%Im*^}k)$zC;kZTa|4|o!7kY;Zy8zgAa0I^rB%`D#P@qx!HB`BqZQeV8 zTrxZ^i~hiy%cJ+3^>_@*%QMy6`G<<9FGRcl4{N>OsyI^>`^3NW8xYQE(O}=?(P$$n z_f_fMFVY3cDpRRMz!~lZqr~q7@~Q4>%!PB6&Lj&HnRY%1*DkU7!^ZAcsK zHYnDCTD`$Ntd5Ut_=#b&cN9)`m+`UV>{uSk)19c9>bf|*;Zwo>6lPKK`x?@y3D0=ab<9JYjs@LL7fPj~0{PVZJaVDjIAX6*E zC-OEQZ;fvguLvW646>K0BXmo9x{0S+i2&+j%UuG}q}qZ0dYr$cd2$3wA?E$0^)R8ruiF8iHI@=McSr%- z-%s)}e^f^*-yEup`snyCcF+!yi?|}`H=J_aT9l#sU;olqKt=5U4()M3_I9$n@*dG} zRdav%TeJHu^44U@`x^Te8Q@A_SNToD;OH|BB~xBbpN8qg&g0N5Dlrk^npf3@1nrQ- zR@Y1B+`*3#l*lI%fUjw{){`2&*fg*qID2!z&|rL&nELZ0rzm7txkH@UcOvdkwlAgR z?2py`bwQmqDZ1PC*jL7@0(9!|0FV6^@e12XF#tG`JI&2~9?%5^)LZ5x7UDIft8FkX zOxw!rzfNY?e_Xbg`QeycW-SDU_H9^?mTSGeDPXSr&|~L*g$ns(JLnx6-gljrjNOEg zsDr2PA>xBi(9zqv26SOHktiy;7pz<>7)dpttu{S~jkCF9b}{wg&|II?`~EYNjYY`a zD#ugkn|~$0xN}y{8M~#aLaGpkSL@HHUV^^qTOrMZu)W)u`4`zkQJ_}?feS@*RSx6* zK!)A z8JC=^t2xE-^Qwp2(cL28JsQr3=_dre4;{Ter<6Ljh?00lvC+zAw|Zqf^ae?R_$}G= zw`E|rx3M=)lr4Q1TCB|_Y*)8bDDhC4Nk-9}*&mDsW}@&RY>5p#JCq@j5=(85 zoxps0tXP|OjK*;ZZg>dh9K1iUjjflzT5l|tp^W5S&V3Q0#S5^`NaePaDoGm$OcTW? zLjFybxj zm^~f|8!!m;_iIwm%hoqmjLE@lZ&HoF$BIxl9O_FU<{ZJ|Z7B%G?TpB;LRQLp3nB!m zQX7RG=3CwZnq7N$5jQ{*Lj+w2X^h+6U9@5fLA6@F%h+u4)_U&xNu`yQo!9!zaSeM;g>x^_Tb+8dz^r2r>7w^Z!+KJg!%Z|iF{r!E zN9p}|yY=0fPu*o~()?ST00AZP@afCN1q0C2e=}||X!c$`p&6Rd>rTB}z(Fqcme!>W zn5^?>{L(dXt^djJ_%_~4D_!hPN-%Ip6yj;fl?g`{# zFA{xN4VXYI2#=1`^7I+llij;bGb?0rJwmw4W(p@!XH>){=k$%mJ?KDuVV^d}T$A6N z!ab4sOQa}guxU6IgGj~r&q#!+vHg?@H8CzCC{!fFlDxOy0%uX9{wXy1d|aYe1wXU9 zud)s1b!>3=f70Pi$|YEShD7W?w05C={@=g8toC7Ej75t=O>Fjdm$|t(JUE%=rkn6` zx5JngjB~a>y!F@`tqj#_@#XbxYW!II{Lk$jf@+-jJ&^#A3n~JD=)nS-&Svlan98C* zBV?huVFmEF7!S5l370Ka&K^Po#k6myKTW=%jB1l=3@*U@%trPG4^J{c%bx zo32GQx0ylho!B83utE><_w&VvZhG?BT_}c)J1uuq^nTB8TJDUoOj5q{^;!})X6{Wq zd=d5;U@Mr~*sfbsU2%oxhtHl*q8bAx3yC?Jy+Z-B{dQJ>lH?K9L@^C*#Q2BM!=v=E zJ|B;L)9G+tM$L&wpvfx`qFVGh*q1b)W=(%;lFEL%boVx3ytHW{oCo+!hI=eD)h8y! zewAb|z;N!l?^|+sXqt@KItKLL?a0JXWIMGBSxuJGEj0OO6GCt+SC(^Fd zm2($HkjT12Tk>=}AOaW&F-H*9e~knh-;+4Hx;OJR_C&ujTR#_ShKDvdG6oj$#-qo{N5+7 z?eTbS!U^Cq-b5I;`wbUsKOYaVx?jvybn!hk7i$93Wq`=yVi4ZJx!BSTj`XMVU)XSu zV0{wxG0>hSyT7JX)rDe?4rAU6USAuLh&OZ6G2(x1y_Edn}o-=rRdb|Q=z={SU%hpGJ z-=yVZE6v~2Tw)`ql^19)-dyiXjxK&B_x3th-PI&~L*vjpKAOjJbHgBsrw);==JQZU zV$PAn9~ZF&^@62$NG=7-p`zmrTP)#6*7F)!`Lc)TL$AWmg5=D`!RFV zJ8^*zBADB2=x@V{N6o~vO6{0L{BMY#e|Q?Ku~_mR%2miB?c3kn-#^<@ee#aCNw?$V z=S{dE!gH9~#BYE@OQ1@Otr?VN2#&3c4s{{kz`m>zEOGOcbQV3TGwv}Ur&xsMOizef;fa?!zIAZyOR;rryJ0d9zVxYAc3g#MB9aaPs+Fy0^{!5FY%)j&G`@=5h?=ZH438NgtV_oMui0ZH`18 zcFJRxr+Un;KxLAP%=Gpf&xohf3XS9k*W7brMKg0m8jX&Tp76%_5E-W=<%+RbRD_w} zMHT;(PgcS2(8k{B3E2d+;>dSYFo+Vd8>me5n-F~N%uR6KpAA3-1f&mrnqruERI9EV z2RM3lp4!(-?~(t(1$fW%!efxoK{aon3)u7|sh4=&Rm=5vDYmi{89pO6!{PGYL8@|` zMNIu>rjiV&5t*u#=4IwE&h6yjUQggxcBrPpIUfyv+|n^@8o+|FbYu<my{=@RgevBI;z?(e%xW;klaEC{VugaUF}V5TeuB?@73}q=D1B1YbPe1052X+uPucqS6^bBl@n^H zG)93%#d|whR^1ws_79lvSbe3c3@S`Yn3d~03Tr^{oV;riBr!&rC_~5%8IWXN0{RxG zu>=($;T7)PT5k~3Z9D)H+Y^p$StytVj#~^!$x<*JzFLRbum#b^qVtVQ;%diKMr*?P zo_GdTV?ncFR*h~QQ9NTA!b}r1_Jq8kN8ZfaJ1F;e5#DY#1tQhrZ_O#A+G|FuCJs za-T8!(2|z))2mUu*t^$T=24D?Cbu63HWnwltDGFiGBa=>*H16d7Uo6OiD}Vfs$8d; zpOAC?<+ReNjv+Yxncbim6_ZRP(i|+HJb=ewP~oKiiTBR)y1{4Ck&Q|L*n{S&N*9CQ z^#qcE?bm@4u@el5fu}HmpG~UoRO@+y)V6AG=-Gd#>3*uNH%$YnsmD=(jm*4HgQE#C z8%NS;X0&mQVS|n7WSRCw>9TCUyT>~)GgZS=iCWWIUNs#98&&3p858qu<=E2JI7`80 zK*WCfM=4)jX}Sq1%YBxeoHo~Ix$C3n9ST9bh@j>XnTe7Pge_ZNyzUqE0OB~$9b`Asv=j7LF( zY6n4vsr45#C_GWqcvlJiEo||zC%kXkSc-lEevx-4!fP|0Ur1OvgH$fJg8Z@8h?9i3 zIK+O|{X@7Y^&){ScPiug!6saarM}~-%i*#)vvfh-cUwHO?66`j8;98zQlO=Q5x$ng zWzd+wr3vf|Td^QcklmJQbajY%jFIx$c@1X^dBjr_6Pphn2X2Id6r5(N!I)(b}WTv27=RJoV-gcYgEu ztM#mq-z)RlXdK=ihCO*t)@ay!qq8p^O#~T&BgWo>6Y=+c>;0=wj0^cJc`P-}jXc$RR%PNUpj&u;6_uT$f7^0*&n<*M(Cq-Yizfa!0eZ`@e@S^TcXN9&ISwkMnJ(JaW>V#Kp z%DCJ*>|ioF&XsW;9U7&=KU-yEfqP;fr5rT6R!5tgU$vR_A?gyFkHJsK{4|d0mG3xz zdaZ}{0ju5xMpKgra6OCN%I+k6^-eI1Wj(Wherz2|u3v8>>V4(PdBQVH2t-(U>ZD6t zc?mos0f&eMsySD(bs}z8kwUN4zUhpuaeKqYM&@96keshA7c^M@cV5q=V@QGl$w~8l z9uXvJuYxXIXWPZD8uDz=@0PxBV7jIxz38ci3v5iKStQ3*J9EySm6P^>DQ2%H-KhfKKu$)RD9`#oKy)u##lhmeeKHDa-XxfV<|{>hyjV><^iv)J||I%Ex~Q_rQ`IUxQYC=tgPlNl<tQB(_3*VtcGD2i<$G6dTQ4EPu_t*J@qzAlQ>&$5Cx#4%ZRt=mICa%Q3Ib;)Hy+ zPI|=|`2eD!L@O}BXceNwaZDEcd4SVm^NLBM-+7uOOG?DG^A&V$G49cz)I0H;NzR`^ ztXDPkF2#X?F9GjB|Gkxf&sx(=M(ltcbg$ak3NFeyzdGF-P1X+RYRqNG(>FbC@hl^-^2l|8_ezp659o8|7%%m0ZhJsI2*NnMh zlKQNo&Dq0yZ@pPed`9p-Ne$c2dK3&XWPX}q-hX~LwK<+mIyYxR+AyeV>r!)N_?+mC z-|Q8um$Uis+!sHVYC$`m)=J*I+43ci(I6(B`>)l!(>zm+=U8sPi>ms{L*X@B;k>Z1 z{N35~%+L+X%ctF_T6mD^A;;S*zmHi_6uV_tY=RP6nxSVUSYPi`g!1i) zH)b>0a8&rl*h;c82p|LNO(aVPN-^2+eD{x~k*g*fXIJC4=IUb3Rar+fV@>L(w;%dB z0UkPIMrLXtz1+isBJI9AXP_O$XZ3p4%*w2!3($C(t@91bYQpK5P0#zMkJYcNnb7mY z60}nMbgxNIC@=6nV3Gbw>}zVl{)EFv?xjI5PLmsoP4_4*V@}lMUD-@jO0=~5pA+FM z70y4-^to0WHy=QT84G>1ss2t#o|%l*_5}IC*&bPMlqTyFTFeYW3|ab8nyWB^OdhKW zIDUd>^W*fU!I|K(iJqOKJ4i$TWST4Ig-KObp-g-!kh>S+O+_h%C3Z$?$;d@YGZEdg zH*1aS;C{EukvXE-yLQf3zjOvEmp!w<8{%N)w|^+PFky|uVw5~VFJsZGO+D%8Bh^MX z>C!tBz#o1G;wN8oN)HIDL*IU^Ip9mX04H?EN>!Ik1d~po8d^duHJ*->hnu+q?3OBL zFoq3E22F<7NWq>NL8|bfiGV`I@U%< z&wXXHlFQaR-YVIc%&e52oeUqzdqU199d-dQ(d8C#_c^KY+IPJE<@Mv~cBQg@2?HM_ zLt=oZMr!mio){@bGW?TpbX_07-(bra+cP3aXrenkp@hkMwv;N~ z>E8v%yZkn$-7qNZSrP46sFsDzVG^67ygA&l$WNC=%+_9-{+R19J7%upS=w#JTZPEZ>`8ECpM<> z@yRx)C@z&#%ureJeo-x!G85b1=T{j}mwH0Lf#Ecm)Y>B=MQNz!k~OKfZQftW=P_my z-g|C_lcSx{dv6;Ye^a~gX<`!q{v2;P(Ovz;U5d|BPNmB1BwShbr%5aFqH?>o+(9GG`NmDEb^;3bRFt|w%;}8E&VbnGTp3$i3Gs0wE8gmJMUQ+`y%+F-rh{}lsPc%{A24-rg&=;U} zDx4=yEth}785Z=+0G@9_!j|limXqJn8ZQa<$i$85UK-VRS+B%T`0871TZ@qSG!U=& zVF~`Xo5w$>e;knW<2=UjH+QbBotT^jYc_#`O(VHZxI3DFbbq0l*Y$FwrGS-z9=R>s z%xN@iFIg#TlKw7v?vjnXiuUwnu>l=VAnTT9nRZz*VQ2Vnzc=MfdnxYWO=9dhzI`LF zptynF8wZ^Ex_QaC)N~XD3o2@q{8GS|#p}qGkyC=T@)5nF%s2X{<4Z4dF^A>7fXk1x zuh~(+-kg`4(QD5vv3*&E;c}hu-oIEd1j6*6Yh>d_zaq48)`};5=iPK~2AC9EI!#5+#Yv5SWwi&E^c7KtdQ=jcC!{OOGm8V^&jR#?yH;rMmDHucpi>N-w|5ROUd_7;Xw79?G z&zNQQNBG3mOFwT=+AS-wO+-B<9fN!cHY`*OsHlr9PO)%eJ3T)hD;WDw)t?~sHE!s6 z&4lvAk*%`sw~h{#3pBqbQQKn{?dxatgME4nI=Tsmu;q~m0(C9Z@R>rEi3{RtKc7)N z?QQ(g$6B}$b8a2XoxUXD5TP;kQqk+X*9(tyE;u<^D+pD`!22%B2_Ywdfa6OHI1MRy zKdh}%W=m07Pp)AC+Tzq|!CWziRxbruiC?I3Tke4FaOo~enX+yQixg}C12Pz#3=c&A z%)&6#`%2JRy;N_(deWifWu9VI81Qsuf<0$V0dbR=+*qH4YOwlDw+wJ7x+0&xZal0E z9PR#v%_1jw08wgBuH&i1U``I;`Z0`>KPhGtqYf7fN(S#@mNc`&GWl$+L{9jsBA&i& zW5@)T!+^ciz71V+yz@u_D>CF_REe}EQRXsw;a2Oqv>Bd1=jgu$udQVO9jb-qblB=A z1=pJWsggO9s?m-C%9>;fC<@!AvP+d3R`Dn7BEQj@SI{)may4z*5s{g^o;VJM@;jwuwbK6Qra`xvCkHFw}&!}at zH@&^#*39+!53BixROec5z}5z4PJCdFi~tJ|CuVA(i&_`)8ZmkgAl6KHCWgbYROc6Sj9Xx^6Br zt#NO=u;{iw0Xr4v3Yy@49_D!+Rz*g-4v%P!xbI)30Ie5R*h zEpITrJ8U%H)-<;ItfUiV%;d9tF|VMW!Yqv6hPy^7E02-n&P`mT6|^M0Bw0IxII}8? zc0kpXVYGdw&nz|4_c2?a3Lk9f{G-Q{KXP$ zZC^XIQ(6>?M>`QGbz1CBd!#qx9K$yXTKi2Kdh}qdFmolwkT>#m?|yo3nzq^AmfY+f zEM?m)-Cqrm7Hu=IDJTEedh)fWJuUzM5#w9L)D^9CLpfb8Tu9ERUTwrmW9sck$2Ga) zyZUSK%*A@G6qKLD%5t>R_or1o*bXbk&q{Ja@&;ullJSM~!N_kqFxC@}dj$EF7Yn^x zTjxh>_IB&03?Nf8X8jt&o3)>M?pDb+kwt1`??<)xX3S4aYi8_zV)N=W0kv*9%8UZu zL$TXo#m;CeT+xPaiUZ|TB3F!g@gl~QIpEvZppTR6ejhOeg>x*Tn5{;y+P&FX^9D6b z)eKJcy^^9+aAT#$)+A*{0-$P6&k#SV3)GDTMnou-R-R8_l< z7oWX)(c*oZ%+-Wv59?wU4Amn2_Ggj!RoTJ^RI~d3N7!G7Rn?~N|F{AY(p}Qh-5`ym zl$&k|k?w9ma?_H6fNTWm6zPzZ21)7ekZ$K#VsMAw+3Xw|VWxCgWDGx7>R#8U) zBPbkhJyDX~$v@V1tgqgngQ)KakKM~%>>LTbFiOqlf9Q)0XI-*A94D^*E>u<)u@4s| zDEKXJZ+=^*}sQSt|PY0q<2+%x?%w}~dp`S0;HR}0uy zT8#Ov*majsJXl^KcTOV+4Y<;-b>bBkenIJ8qR+=FBi%0Ie9CgVdj)^8H6{VzlQw3{ zxV6S5x0~tx>Cx!0wZ}x3I9)-pEqARbKe7yy*$p7|dU1^-Zf02!JXersx!o)d947p; z5qvTa{mdPlQ!9AlLg0>0yEVp>x*_;7SR=knBW`v< zu3?D%RsB14#+f()2%MHN@=1mTJ2V89w<+O&qHc1OJs_lq#4I8jh5moLTQ~%PL?GF` z1LA+5jQ{6F0E5C?m_-8XGrEue`^{Rg??J$L1>xDaa`TvRcCmG2+SL#4`1&wZ37Ca#^C@biB0bj=w_cBNHlmjj@cjX0BoilFfq8f zN%Q;?6KuQLLVRm6|2TNck0@alDGSY zk-FZQ#&j_uzcThLVkS?&{Ntvex6}`yQJ^+j;z1*x*%xDk&iVglciWu{wJ*?+3`AID z7oK7o{glkkY4VxE%17-HP@aDWR1b~KQ8FyA_~+u^17NWR5Wvkh$a3UOwu(LbXSoAn zg1ZJZObSs+fDn(i8qJ3EPd0jsLGhU*fe@p$tFTfY&-Y}D7mf}Q2Fb2t)Ar>-vr=9%I(J&^nmQImRDXN5CCI zK=HKO;&}121sJO{HB-L_q%R2&3nZN9>nQz@e6#se!{y{S;3m;YoMIvz$!kI|`;0*4v1#GuoVXK9nx zykLI3yBh^G$|Q9a+q3x~fFPV))Zpbp;dN|O%fC=DA%KdJ^=KIWbiV0S(yw=epD39Z zCmeLMn8_=dG8$!5fPI=XeV%dEq(cLk95lyezu!F^bs&@w8Xli(yu4QY<0B)D*V$Hd z;G@Gr4*vHUK=8t7kGZH;|AyDY)00}_`rOJU*#`j-CjXg#=Ugh4RBiJu&ihj=0pFdi z*^}+@z!-P)#N-k40Y-LgM}BtInolOFjB1D{AFGbRfSC?Yh*f0-{sxk_pw)9Eb);L~ z-ohX<-qRbF=BZ#V84Xy=hN)`B%7@<>Eyw~Y}TfjwF z=f1seGc}&5#d>_G_(G%a8JJK5nr=cDfNMjI&#LK!w%o4cB6LrF(F3)h-6~xy6jd@7IBqSHV0e z&78)zPR=*GZkdz|zDWSR{ym};3R=4~-lsO&)qc3j>7o&aKm+xr4^y(J>R7wC`FfTB z-g>jVx}j)HqVZFH%z@YMA?zZZdTbCSD|-#1oD#!XA;+QLX@(lDW${>5kpZID(kk6- zv=RF-jFg?t$Cn<+7K95L*z{}iwveSE=HAGne^>vpQ91x>r!TcpT&E+9x$(Bbg7NZ@ zcHpC6D6j@(j|&v1~svWD#j-xLQ0-ug{&ZAfRHCWBQBE{!Kw;^c1><$%nJ3 z$R@ZU*Ixfteq<=$l+@KCdj7oIVy+0n5FxApw|YNY5Ho)K81EWqwKpjwP0z-x1AsNO zmzK%A5cSNA`&L^S_j|Sr;cZ2l% zC@rYT*H`_CgZz4ML~z$6nz8w__r|yl(Kk8s`u>#IW8w`bMO!5YxD7h7O|zz3OD(qx~@9kim{AJ~+a! zX5BF;ATN^{^`mG{zb!fI;z;u@9-VAYoSSXFV7V|0c8X6{@P7$2G#dBU zb9To3$fs93+?%)`A^iJ{G+)2VmWl z7<-|>j3J)$uScYS(*0QwWggW(p3U6n+ixhY>s+p{UIH;GoUu7AReUD(gF^pd817x&8KqQ9&{9mdV zp@y|i8f1zmOVU`m2m_K!QsI)dgFsN$`dq(--*&EG2^vj&5`Ty_+=a)h64Rg(G_y$K zGnOT#Tl90X+_del6M#DkSf>!oXE(s*k&_*2+CGoJgw<-A!j#&lcrL|i@F z3$)aisHkC;5U;1~T=rO08cnQP^G$Pks`);^!IqVi!zr^`(~z@$bfVL2_Y*Dn1gnX_ z*Q;g7*i^%>x!8aV;DR!Dej;enkbFI`LvGGD1b9-DB=A1;xNIm6T>5(<^@qCmz63Xl zYPsy6E^f`&*?o>24%EZ>&l`YnA|aOIZ_?p*JRPuSR(IN#0eiZ4r^mx&S^cV3f zyKBYM3|hH(YwX&Ae8p*05`hTHjq#X3I3pzr2U^8#e{29oQ1t8Va6uz@|2!q`ilpHo47*+rBU_)ztn{bk{!03x@&I zzOEmO?+$*McN4^Sqljbe!2 zY?DRb?!6dh*;rMGB-#vx;`e;g|Mj!R|4vjUnk2?;SC`VisUe!~Ko0>{5Oq39glXU8?I{3i|{7j2F3AkuLu%nh1A$stZUB&4m#!3 zXzL04g{wDFLve9vf;igg#zex`xtmDT&- z1yo=pDoA~2opytnTyXU)wUY=nrsZf-?UtMTlp1bU`6xL(-k)exRE_7FF!;-PJ+Z^Q zG-DQ9%uiU@_f&C=creHxfKAZfnPlAWoM3M zc2@>^W)(+b;k=m3+$JBhkC`IoStc|`Z^5=fTFyF~frKjM0{hPm?uNKHfdDWv2?L}6 z>|Q_X@S9_8KraZp4T;7KI;g0V@aUe`d|pfVudNHgyL%AuE}hAhiS}(qvjYlnI^etc z_PW~%(CoPL{Psod-yx>gkV+X1JZ4=Ye{z8!bW;DWmWLv?Y;UR%027T#{w$E!njfZ8 zx(75getE}4H>dl}n4EyNq=i9AKWR&*e(Aa|T{X+g@Um*84ydyTq-1s?4=vQ!c^+mN z1+Y6VEWCoYjag3szlZ3<;pE03gcLqsjP}QFGn2+I6#WjUkpa;v5t9Kw48k~RKkm)c z60$bg!w92om+mPo=$BeJroFZ{wH1PvHCxW2&a|G-UpxYi#9{L+j-(*~3{m^idA z!mP%azT02FPGDU&CSeDLp;4KBI}|-tQ$Ib3f#KM37j>P8&oQ#?^jBowH@#<(0Jq$y zQ_0Bc+yLGjOA|TF8ezD^rBW=y4hv;H_4=*6uWlQ1%UBNiZ5#6SzU0c|B_99a2b;(+ zUEV@wM;$3GY?%=tU2zaK<`E?Z;(iSISHKl*RKOdU6ZGko5xqm4a&xclQXPFC#_E4% z{2SS2e+pYV0#7w9AC>SXFzY$u!uRI80^vK3PlWdzl|YsKgrx0&%&0Vk2PSv)x5pVI z<8AFEJ??p2_VvqB!{V1o1W5#*&g-lp-dygZH{U{*C<%g@wTeM)#-?3vMRreJU+(^@ zTxYs9jo#65yzCRa2UP)_#qdzcBtGgWt%wD+qo5EkNi822nQ22Mk0xiiYi7}7}CMi z9ZhoKt02?(Oum}=aEUFdD{?$7;g$m_7DZmqQv$2^kCk0ypNVzmwZQrcr$v%hs zvdhYiPYC!fop2ng7_5}gxN)RAcJ=vAfHzRsla6G9bmnN z3eEZP)kc%9u75cbs#Ex0@5i5i8|Sx}`W)~Kd1xk3)!!n6Pn0;S_M5UH|GMe6!J6sU z+NJZDWfaOVT zd8GGewFyZD%k%7Tm6v3Cas!tUjjT)IQvXz68XGCOs-ed0E_}$q@AB zZ1?>=H!^|OC=Rc|&bH%lU(XE;A)e%_je~tmWL8_}r%-o7{D=_}A?w!CVrcFwZD?Z8 z%teIb;x#RP;TW;P@HW5QQt~S;nERmJmWzA&C7DR)tJ;z;iXY&>v~0P5`u>oqfUQLV zOFjvI!IviHhyid$7P};T)z5=68vR~|Y6yCZCpGZWud$?on@DhGNVLq=X>lyGxm(qu>E?qbuuM8|4kpWSdx~EPHQ0}(q5}l4WXc2Q zyBfyK$fX`ItRrR*d^cYxYEY!41@uNj)%!5L2@EEmNJAci2{+=(b}O}`*JWL*>Q(_B zhBdVv5Q2|WW&`(#NYGd8Y7f>oUk&jRYo&pWV3h>DW{H31xvXbM7*Rgv!`JyTA;}C( zp|4JMm!nph#}_JBx~X|G@>b$udD~YMO>uwJXOyWpWq4}G>$JU;N#qqN72m?*nllAF zUvwlVbo+-KZ#o?OGy|?bs9-{$cQqSPJj>Aq8q5f5spw;!kj6!WkDyr{bDv_Hd^yz~7 z1gI;1A8vlpe{9CNX`u)SpJyyT0mjyWPXsG`T`n86mBOcAH;amDSK84;U%R4#HcBDE z^kF~PzhiS4^O$r*=KLI~l+{uTgU^?xP_CTMT8ad|O9JW&Kp8Fy2l^3NNZ?UucB#aY zpx~YG_G1%Ek{(W%CYugr#7X?9tT9`l-L=PoI?+FxSlL}F2{{EdNr%)Aal)Pvr`vKjbvVyyNi zwtm~Kcep;6ufnE+^!C+|p>X0<-_MLpiR(2BVqEfXD!*LJzRi!IW`^ zJHM`G0~@qaG(T4eKC`J|Pvy1#Y!V|gdJgQ*wvMe88UMKXwb0X1!ZunY+G2%0x$wPz zZXA2E=BGyZfNxomKJOLq_yBpmLDk7$oajfDGc!3jvE27&P+h%>8@jF$<^eVe3b9tV z2n}r4%Z3a2`uA?$1~+C8pMIem{7{WtZ8v)n7UOo=ASe`78Rk*ZG7B>BXsLUQ$=6_6 zO_wR`syS%wx;z^l3RNCpk)pVtefBsw#2>%AMRI!6`!?{xrryt*{e8K*z>iLo3NY=G$y<@`=<>V3 z88Pqc_-R%+hVq+wX00djd3f5?Ii7$o#!8vQ%{l8utWqPWh^K^o4HZHOnxxvbx~ z>6Rluie`%FX=;$4_R&9KWp|9?cgmc&qcepeuR9^fKY2imy^Je8eCJZ#-S?;61ehRK zmUFcovU=~~Gn0gO(V~jn;1e%P>*|$NUpIwYmcLQSXme6gU&2lDIrv9Xz&Sgv$MK3F zpRHIP!mzL)m!B%$X-%U4PlUte5YSSo2>e@%<83+ubsB?}d4(tGUzes7DV$cx{PzGF z^OvM;rmeXDG%4(~ z4Y5nkl>alcZ95SfUR;%pCYO~}p-4>hd9@PIJTF&MPalP&6M+Tc@e6!fbM{-O22MUv z*s;csreU6<#NpftC+z=^cZrP(r0zWBTu$cgF5`QA_hmUmq6^>Mub~#*v2~~OoyFG2=HIV-JfsdUcqH{v-zx$jPd9(o)i?1amTFt{|e54 zJqWl9Vqgl~2tnV5^kgGAt@k|Q=jU&Oc>;Odz(B{|!zE~k4`eofI!plmai5jaI_IwQufEyM2C{tMruJ|0G4|R6X@g+eNCJ}Jp5(53 zaR2{4JRc^wD~ybmoWknZr;d{9YQ|6wkumT85SqlQC$0UETaD6i7QpfV!(nQ(|sSaH-KTE&E z6%^2p3LVJUjbl{nT@BvcMEuUs*bp-WDd9&_#_u1dF5X|lU{0QR{r2wT zu%AAI_*3DtMjsnEx%$MiRewDT7gCIoMS-Y0xquD}sM0#YM(1T&ix$JnmfJ^tAAeO2 zRYjPmv{>+~WZ;DH*-i@{7oEn^;F8NCrW3Lo-ftPT>uhKn8lHvfu88Ck z%D>xlJ{d^6P2by-AO2Md-;>B}>$QGwbG0vq;t!Zoddq4z0`9 zC`PT*ngf%_`@wXfGb5`7v<9CG9FTJ%`R>vci{DOPZVp^O0XmiIiwDc}d0N$cK(84M z#`M!Hn4WH{1yw0x{&9892Gg1^&_*K`4tF&Q$4z>ZcHL07$9oiTUblB;98dNopxVVs zIL_8Z5p4H>aVCfTp5*cN1THW!bOM(5ubMj#@e9jecdKe3uDQ-{Vg|LLMxFOp|`tj8fAMY3kaNB^X zLIHG#P6E{}z-`eeL=jna`P2}pPYp{3N^9T7@mdpnwH%QQHg$e;^V;5TMO0z?yZio} zac7_4k9Z;eo@92@vu*wFU2!M*vnVT3i;^u#40RU6I483p9wDX4-nxm94aM~^$GA9c zZC4LO`SJBcjb}vniG3MNiOTdhEO`F`)M-36FELNH{R>@!%k)ba^yHg2NKdwXt+~o# zU2`Knfh8wa&u{TeK4a#IGUIGcw?5?8y-CuZ@9s?jpNF7HCG~xH!Z(AA3a@Y`11?sC z;jHJf#v4Nt+RXv5yqv&<5D}AhZ9EqB2U?~2&#Sf)pR*nU(TpOBGcX%yOJttF60oK7 zIyr7#&-~(+htb{sio`rOk{AL!@Lk`IrEo4U0!L(x-+(eOo~c2xnEJ};wAvE@Zi1#= z(X&7f0R{aJM$VzGdS=lp7C~SR69AmYv(>u3Wd(^?>bHeNNd&-M?BYmE8{HeT=~mew zy1TpU*Em3YD_ytu(TjsRsI?J>VI5G0gHsr?#SuZ4Y|LK4$Z$zn?)qr{$cs;VzuFXZ z*ap(;U!we+_fgY0m~8NjNM-2?Unbb%*Lzgqyl(dqY-$d?j@DS|6jO?NuC^r~DaAaF z0ABA@60HbCyodB@^}RBy_{^G$&qYr^cWGwmA9zcJ`>CFRG#){&H*%PmG4DODPNOdG zsDn|d?B|3_e!Qq@pn;tSDJ)&6CSyCeJ+$jr9UZ=%Fe7$ekd9V-L3WNt5#EXLdglqS z0q;-s4fVM=Tw3br1?pl9z(QbK-C{wI!ELBSIeWaxZnlBU%2{(Q8Z`L%`?ve{<6SJ0 zW-8+LgxrF3T`bSKL!9PCMMm{sT%`%q7*acR%Y+V#EUwDKURf9de&`nKsWg}N)i zCBU%R?;jQ<)cjmyp=G1&ws9;W2wuQ{L`eVMe?-19u}TSecE&MlDgPhlBQZprh`>~! z6L62IXtMfLAAc#PMA#!+&$>u^JMf@_3)F08N?7HOAOiGDUu4yS2|8Xj-K%T&tChg|0or_bT z^BDOu7_uYx1=z_hRZtKKz?0{^$g}?uB!lq6zLf3Wc@${uqaFPo0w^H|hb%|G!%3A* zN2*A-k-(tdg{xMi_v(vcdNin?f_cdG*oNQxW9Po+zg`G(RWajnx7XNX3XsC$ zH)7cyoH5# zgmLOD>C$MoXY--R7#Ny6U!NJV@yTU?$6FLID*dEW*-6I?+N!zC1F6XOevsGArvvc9 zP%GbM3NpB#2ytvm;?h#kQB>-DqBO#Pu>cH@nW(8L;Z%bjWYKiAR_W)QF*PEG9hV$4 zOXs}U=jD-jsSf>mcX#u9CmoHuGEE5%#dF=$C$L_K+uU!xk8%H^C$3G_^?eBZDut-Y zS2q?p0)nvKC@tR{xwx4`Oet~yRg_%cUxUEcm#}eg%2iA*`pK^x-+IlaI?iTSoSO!H zrfZ#TlEUczwCaK}2W@TVM*6vabW%QfFz*|+6_Y+(`B@|X{8zc}mxf!f6J*Vn$*`7% zx9&o~^@k}aTXC(i<*qHb+AQLY70Uh_kx2JTU?x@pIJ*3En@574TM7CC{t}`$$29Wk zmk)ibD_#$V&BW%uXzGtsQO6cO_##gFG>WJw!Dg+@0C91uye2;)VJLgHiR+sjwmLf0;F zUq1U@addyYFy2K488giG<0bjNsTX(E+Y^bBD#C17T|LRZ*?=iWAyIws9k|(aH{Bo|`_7h|CTH_DO@AKUdKADHgZ`#m4JrlcG4qqg)WTjPD^cJ`2%B}X`k5%;V`nK|hq7hT& zybz%QZRMl>{-)H!s%Uy}NgjKiOT8%)pEhjrNmQBSNfK<%5Zk{(+h-_}`dy-4q%9$> z^rW~=(zSsDW(8U!zJXs**v&-S_IF`<)ArZlFuTa>D3#m+tHy)6Q%n2Ng2l8ip8e$< zA>Jq50SR4}ibs-SM}D-a1Whj}#Vr931cy zx-hG}ZmXZ|<-^b1-=&3`po>}_;*DW#HJ;?I^d?VKv$>}3e;2~IK_5S9{wTuiq1Aiq zPufw}>EQ#L#USC?!BBzd6PdPvoQuyE!_-`Ut*;F#O_rH0e}2x`hX1%d*v3^c6`stn zW#71@ks&^FkYj!yzl~E6&ZN zxnrqP&RYQ6_$;qR`)W>Dwf>ZJ3S%H$gr0ZaBMO$MCmSrSe&+8_M{#!r?^=&>8iomy zV4@80c-b-ND#}uY-B|PuN{y>5tAfyy*azNOAV+l2DUn!FvlNO4Cp!YCCM&Xw%)z>O z>@Ez{$BJJ4sFwQ8#u(AbSD8iB}h zWRti!-9k<-3|hNz)Ipe;*Fq}i34*qY#{0@1bChou;nJgFO&WwC-^TFS0;ltamshJ%n=K8DsqJ^AP{nlQ{N}zHTpklMto9_H)+!i7nm~Ko^P8ln zYblBp-bn#_LPtAy#SvqySo7e`Xt6NFQcHl4jE6wRL5s<-A;o6qtNfe6RC-_rV2GgQ z!LA_pB>+dV8@P8Tuws0D71j?jyVVBH{cC8A18RUB?}zI#p3R@NjW)mPl*kn`mHF&1 zbXX&*7wkW%R`}h-F!|X{HE3v-=ojO9KJmT67)3|X@6x6vWYHFPTJNTPhlHMNH~VZ; zXc+)Iv|+m-D{SI>0jN}%1ae<|Q0+-zWTfyr&Tr5-Q=*_i0eAD5DPjL zx$Mmtb_{Wv(#eHl6r0U8NWW+C*R`+Xmqs?R)q+?7ueX8I$ z6rDzU-F;_LvnfMVtt$thZJP+_%WdD`LtSJuL`l!!02alxH2=S%8CuRA&+&R z38Bw}9YiE806fN}=`Zz;{KRfOzJu|gr7G0V{rorNJ@W)jv`+)FsiScNWeXAvkMH@` zsNZuw+c|1fLYCqFXTp^y21j1a#c4UW*2&E^ga}|WO4;ajGUDgQDJ(u!eQG;%<(+9F ziC5J$4}jjpTlf&U2{tm<+r?8+3GwzPw#&Kw&ywFh2nb^6nl&b>UGnZ$*|S&qtN$5o$^7<+fXGZ zn$KSS^1zFU;}sMmX9%cp4>*hn32LLy`3mj-koTB_Si(F z@{Q70#T0v?{<8(DbzV_}#>?vM8Px6kL9u;WUPJ#eenS)Ir4bd;NDkSG$`eJN%RFUhB<|z z^cTrqGEC~{$?H#Ww-qAG^VqrFn`x_EijcVbJnLOH89+#OhH#GWleJ|-DlHfjv_!jH zcl)+mGNw19@k-;Ur7mvo2xH&H1qD{aBMkvnVabmn<5yOSkR2THk5W5*8v;YIRITDQ zov;U}I@}MX8c@UJ!vxC@?`E5d%jq5L!-BCW+jN5qm_;yZjQws-6fK8g`8#3`9F!0| zP3uBU|I#H@Kq1hM!DIgTFkCV?$R1~9|s!$_`6E)F~XjA+X4ri5qQ;yQnFXAdlNYd{+0$N0gHV35k(A-lgh?<36RI7 zJAi+)YgxdM9!Q(3TH+a>#JU3x1~g*!vvj=HyP9gaLH)}uOCF`W(I5JL`(2G87I_VPSA zXAP33d7TnWIn`*%Pb6z}@;IQqT_BLbitr<_geo8?$h8$xdcm2rQ1|B0!bD1w;nlda zGrC!oHfh~qJ_l8 zrKa0qL&%pY?$T?%P-O*(>902wm@{+qU%6Q-uypesvk|RkBhMb}^MSNpGUh%wpo{9W z>J~I!dR_J6J0daP!VYXLqtTo9S6=yBZt4OJJZWEv_723yLDV*)3uRE4Ver7?tcv&)IZX=r>zxJ^HL^fuu6lXY(pYH;=>v+2&S7_56o@t~m=)mKK~RJ5b-%m^FmS~wj- z&PO?3qEqTDbL?*s&jHI*tIr)^jsh~#WaO#ZiOUC?Kkcmfp0g4`MpIpICph>06qD(- zA*1bh(mIRjlRL9A&%T^&Edy6~+^pvCnz_bZGQB1r9p1Te(t_G5IcovZZTlk5;)B|> zE8(>r6x%s<*2|rTo{MyX z9zPshLwW3~J5TC=I^*+*ntpP`I#6WRyw#c=Cm%?VH(;iMNel%Ut&T+x9T+E*H(QPs z)FyR=y^Imld}%ODqesrs!P|6YSKDy$M#;1IvbXNa(@|Lnh$CvyJ%ZbV-pnd4u3ZdKw9H9^wuC? zzfgV@B~pJ@fLiM7WZTSkOHrQ=q5$Jc41_M~De# zf1B*OQK0#ijRJfrk(_^P{TVB?Xty`x!<=p=Rz)$cF}G!r#?1rK$#+?iC3lUpmev*!^m6GKr~V$OBryM zPLN*{GVR-!i!X@@`r=;GP03m5z#XwFDM{;{rRdT*1@PU#ltps7RlKYRnS z?VAIbUK*2G?yK!k8-FsyI6cF(9qPtv%|s4IcP-^5?V5#USv&50JrD_~ZPP%d@< zs?67BiWBpE%@b+Y524%U>iTQNi5}I`5Jf+u0yK9`G>gtv zOk5rpp2@h%Js%laMacHi)a?2!!S}TeXpd1K8C8mSwbd^c$u$@4@03E-;g1mFD(ssj znA#=JL-3blvuJ2`%2F}VOVmyu<%grM@_BwgF?M}7Db#p{7Hg$Zm}e=b|I;{QKamzE z;=@CDY&9OmS-#@>ub!)E_We3fHLMU^+Tqw?)L} z`={l163)UoOKlZX3tc1>2N_ay6#4u`Lbsh6T3mWX2;uMadbe$A?0C12ne6s}MXuZZ)$WW$l}* z_<_2nhqO?&@Kca~TFU3i8RyF=F~}$d4gc-9AOgDEM(_Uep+OHFD57e{l{8+* zHR*WrZ*dMJmPGHfTg7{t)0LxAerHQ@Sxy0H&J(jFx4%C5VlE`24P)P6*~E=j7>_)9mPUtTX)pj`d@t z*db1AeryJr~6`gX`xsvjL_TXGhr|+TnDLSN~ra$Ed-AsAnXWv#Ic=Lui;!T zeWq3YiOJ(pGfxTKMkA0~6QWmu ze34RMfTx?@kTR;>Nb;R?Nm72-1}H!tKjfl%#Y3#pOUYADc3_e~Kgk$|Ej@3084XA$ zHDHHXAf!X#HzX+OGi4+NVQIm#da&n{Efb?=jjLUgs#xw29E1h1Mq<~8ve%Fr`vtOh za%rr3niABN?cwnj@43~)?r!|j!QP4vv=I`)dC7Y;pr#^{FUdS5%Hj#slsQ7)Wy&EP zd{U6=!*g8eT~2AxQl|w@@lY)8$#Bf6jg4X4(Hx?Z{V-b3r4>eym6ovY87qfEN--(I zM;#}UyAc47WVZEn^JmGf?ZoTS6xdfh^i!pOFg&7&Rv15v62c}25Vh-cRJNvjfwb$4e^`Ww>|Plf zbO4JG=3IvM5Rid&iyI*r*NN4o|Ijpc!rgF?D2!q2SoFii7vgNTTR%vf0j1%SXz|X+ z)lNDFvBf3fZ`yus*{!eG*>jC8Uuu5GUCJ$Y;MQ~txTeE`j7G#wJL^g#EGOya4J}Wt ze^PNy!=<@u&{Bj{iw@Pjaln->*9i}bl~dNLaiE$#4(%|r5sB>J6-ES^X?bj0VNo%H zxRU4>dSbOA_AVWGRbA6<*Atda$;=aXl4OG6Fl35FzO&YpfP=%atubmcwb564j?2p@ zen`3*lT*3cY}oXmjza99Kd(24vKO zR##_8Rb2|JfkYxdg24C1Hj*P*_STdwlUHld!Ozc-=ku+!Ll`*dcE^(kKR-#diK`sk zU`WaVS45ZLphq8h-4N;0O}ms6z_`v*pJXRcG?l$n`D2m9Mt{e(j{FqrdV)oF>ILC= zxSVc)l(5W?gDF-=FAx4|?85D0UT^pCr4FB8A?X>|XAVv(XzF+!7pFxL8>6p^4t>O3 zk*p07+++_)!ZhrDh0OLWCs?3JP8Mj)TTec4(H-xbBZ`bYKsQETxD7^OmQvmxh*X2o z3Zse2PD`+8KB23x72z(JUNADzh2d7!<=2f7?k#rE4;>=jfoAjgJ_n>4 z@$)zHs?Z!KFtS_?Kq4P{iHkM6_&)4XvOz|%06V+uDWN#&*JPw_y%{Oou;=4_Ri`^g zhCW5aFNd|L9Pu*d>llL%eYs7)`5YdEV)KcWVRJYvyab6Jl}Uu0QqHdjbH^4EeKTMd zW%iQCA48kS57I%Wx+sf^I?Z?PwM+GzOxfnu(z~i?38Lx#s~{Afo_9(ivK0M=<%n?! z`Bqg-TU(}=v@@8yxZQJrOe-!Az3#x{{h+q{Ykk*o2~CF^QKxdStqMP>Y(q_v!rJ5$ zjDo8h=71jWOP(g@VQAgF$9^RYl2R<^&$gKCU<_+iXEskb23dnJ$UYmqH^8ro#63n_C$k6F9IQMAr_>}hQ#Z&2{qNXN%_ zS1BC{7p(2F-e3jIgS!yC@yc?{-X**wj6pf`6U_o!_ z{N2TJ#4F_L@i*ax<&`mFi!eG|H~2-k!iJYRTN9;)N9R9YXUfi@a!+ueg*aT*S|3Lg`8bxTx$@YRYV;=rEINx`{lFr4%Uw1mQ=NvA zNZP1K(#DGW&7ysvf>y~a-0LUjr~wcCIT_oP}BF9ZgAUv@Voi#ZYl)=cS{8%!89Ha(KuvpTG zQg1^#$Wr@zu?T&9d_&apBgel2rEJ1K;x!sy)l zKY#k~|MAz0fU9@_{ajTVUa0>U4fN-aZ1;eh<^O>xwKIbcysY7RWc;7+?ElHg0{;X3 zZ~sFa4X4KMrtaP}3xqLay>nm8`RmUq_ppgBR*AYZSkoGgf1V-IdNf3zu~n47Tv7PHWHb&%qD-cubz;U%JjnVl2Ak>148 zo%&NG5Z9MJ>amM&Ihxl5;62MLBYJq zlEE2RHVCJCBd-9Ul|Qj_ZFq%Ta>y_k{yW}D_&O*kG&43=X?|GgxeZ5Zn>^lEFPnvi zDf{tJM_!$ZX+vVeE+ASHY!G3xc|&E*j34j(%2j z)W4^eeoQuf@MIG2X197i(V#8l>-5QOtX=1!g~gxGSk!g=z|;NHY$O>!#M5o}r^GZSMqf3U zrLd$`+ay+)Df9x%i_g}{(ZdzxijdLy>DK+ft=$&PfK@QR?Z*A$BJn1QZ0jl1gzERO zY-Trw|1Fhl%-p7z%H&`72rLaS0oVveZI;(Ae2Kq}h(<(BtB@G`c(u1%Ma(uKDvi%t zfY68Ee87iQ=46Zg3cCFCr6fz6>jD9$ge!1h;<_lb{F&o?h0J!UteJHlF^kRq-~q*z zyp)9c&dje@IkwZ9UNK+-1)d&>zO5{x&UNd5&7-!;1BQ4(OwjvK@*bkBB4soxo23jv z=apE(S3VN0ZEa?gW$Y)nm|`F0o4HrzQ#bS{5-_L1C+Vec|EBkqB#-7Jj!pE5d?aBBzEmy9Mp;- z+O48|ZJL?-q%rjW_4VcPP`B;dNV447vW4tv29Yhvnk|f_QTBb`vX;=;r5MQ?i3}rK zcG>sDD3UCVkbO6av1A|brTclGpMLLq-~Jk(k1^L=+xI+=<2aAA65}^k=^rg*R;Dsi z?N-p1Tcra?VpPD0vQnBHZ+dz#;DsrX4Egc3(#^mMj6%`kyqo9Emm9YAN4zQM@} z$z5;SZcdlph+Y-L@bF#l>T>=2DrlzxOOr2IPWMQhUHv{O-hC$$-d_tprTy|0Oy0=K z#5VpqMbc1-c?!4kP4%fuR2p^O_MqKpyGw^3E;)bEks2i4CK>vLEh*t=s5NFVX9E_b z$L_7q79?DCGbu1wQ9T?Z9GAkU|uzaQU>Z&qmk;Mz-C^59mSa+yP%z4*C>TyY@ zC#ya#d0VR6yE}csc<9LuJxvs987wCf{^YL|va`z?B{#jt;Wi+*A@D}NnZf8JZI8P$ z7rbWlBBF^_|1H|}j3p=KMJj!J`Tv597c~<2GDt2qH+oKmeaeutWD+*v0Zgi4%{nO5 zSMl3ZRDs*2AK^RC(k0Mbj|!{BCP4>y&06$w9CL1WK4|uo)LA_2Sh!EG8nfoVwXB~i zeXk@y+%_3>OT8iDp`GN!_@a3Gs{7CEn=wP$aQ0Y6AuhRx0qBw$LV|kT^I^_YHS44% zmhRd^8Vr&pTOut73H85b%92M3>7ht8rm9&V*6yII1K;G>y3~0253#EX7g1p>SZd7< z%g`GQ8vgEVns|9PKEs^S$i#GNv_8{7u4$7cp$ z^_xqxbx1~@qz;YDwRc7J3&N?_tdYk|ub7?R7vCT*v{Pm>+7_b~chh^WF*|_J zI(%6bk1*m@+KGrLOo8l;`F78Jnc`j7dH--3yJ81L;@&M|AF?ZO2=m^2*0+O>y!g`| z>LL#tUwnz7r=EKmwm#%jo&-KTeHj3WXx=1;8Mg zD0BTvm3)?81<^q-eoV|8l%xCk>%5p<+-WK%=P-)II)bnQrN`e2ZBI^masvj*nbD33 z5lz5T`=nRIx<2SuJ173uqUm~qh$V+~;NDY8tH^=#kq}lbtv>UH2i*Xz_^pz8DH+W! zAD{x9>@I@R669osN2v+OF8EeLY4_X*)PSJFp#=@W`0(ZK;Ywj*E}Pdho(tHMZu^VC z8Du9(p7Ci#GX)Exg4VMhMjrccc8B9`d;oQuEsv_GpZ^%Ha4G6$0)T6;0 z;ZK&bxj6(H@BG-HkU1r??O(I!Jvv(@<^!voeICfM0IGxP95s^O) zX#UvLw4=wx0&bFR>;G#+Cx2~+fb>NanZo=pc6^a;AeP5evs(NAVfpcAux^tCk^+{F z?&yE125G-~JZjUJGTA={`rld)+FpvghyH0mJFEefH7E<&T*ODc)=1>fxLtR|akSWH zD|UAWvV^UgF)szq9ov?O>2v?}?*m_|ot^|2yrY3FJ%R(hEI)W-)1{m?o9qF^DhOO! zRBD5BwP-X}Eso;TrSFmI3+Lg;>Yae<;?1XYX~X7JQ5f*9;P+V`On6ypm}2)aVfS)( z4lKofsecYM{DFRqo4V1`(n)g*tE+&60;yz@tiSh?G;a$#Z?EiavkZX)JH??$Z3Pey zBnL>&xk7;o>%eCz;m2r$P}MyWm$=T1Uu)&33ep&tKtD zgIY$wI)(F)u$DJKRDRf?58L@Ogs3RK$C3h1M`6ontb(Vh7~&jJhlWXT_GI8@ASi)J?j9gcrl zKLrxrtd5EQrn$%aNs*nOi2Dkn`tEu^Ohje$HtE|JAXaQQMdX0 zk+XU=I+t6b`zL~r%;k^Jv6bX*tYw+5kD8b>O8L&RVFwTxdpH9XP9rhzgQ?HNvEll$ z*z)zQtV?$oBJ}kawntnqjH<$=VC>`rK-CDY`*q9$cVl_qWv10CI2KiQDYeMpmvl{G96 zvzP}~Och=;4h2AmVKP{cf9DTMkz&^x)rdC3Ld1gBrY=2PiIx9>wgJ+B2*@?W=YZ5} zctH)&2w1}T`>k6Zw7O#~2kYI&siOCuJ-X^4fcW+EIjFNNRF}5J-2J%e$v@oa9F65P zlk0r?imPYbjW18L9CG_0uKT_lDiUkFSPK@8 zwg~X-1yo!4WP8~5^eVGY7UgG5AV+j3Ku6RQ`OnUQ#Ie6-RS{qp6-f}d)^`>~i3>no z-8i~=!Tf`b=+o=34!#ZvMg)yaTt*1rCWB0i&O54Ig!uelSIxQ?r{%rU8A&fc^D z9Zi%0#|F`VBfI*Rr9+8+#clk1#7IV284zwMDWV~tOeU+(AoZ(4LFCAF z!9;?`q)wo`ymIZ+GJ`CEYiC)msAwh&a07YdhETKuoPo_8gy1Pbhi71U&)g&#ZUP^O z9Pc@#nA4gk)HFBAqcL61HKXx}fS@xge1+-Ge=6=y6Ryn}>E2?#qrE&7jC*!P2ngBQ z8$b~3WQpQdCQFreeP-6=tqR20+0z%VZi1Afu!d}?lT#$$wn6%-)giEb*;Rojo!JH$ z&l8aSQ_*v9lqBzixlVY(`FU1mC@OY{1*mh;>=4d20ju=U2HzGfg3HVMOW(&!8xUN{ zXq~j2ogaz12z93oe!WU3y5VZKCt9zro6GNHzCGB(`7=gL;0AS=gp7m?ODy`%PAMua zt8AS{Ls<30WKk!}+{fw4sO}kAZ7#_uS_I~}kiw|)R6osrynWGaq*C7c?h)aXmt*iego zj5cDlvYcGSKUXJ>`@%?#LAOTUDwvCGrig1{ARrGcCs+2jx=baQquDDb2vQ?D5&5#s zr%1?1g}r#pJu>_~LYS%mlIg=y{$DKD?##H)cc&PlD6sWxK_igMCXIsGYBBfhLR9fX z1CIG|W!`haK5)bBVk!Hnu#RJxZMX_iYN8qO`Y*U^(Lx5o;B?>J;kRni&z5{AE~lIk ze{Be}KVVD7&`N0`3QZTZcb5yD1-xytaKNM9C~o+2WGgTi=JH?&RwgM=3rT}4J5Vfb zN&Esf`Y+ls>+(aq()vVh7nt58=U*%H2VP2+^-GU~x{7I9Owo`o($x^)(bxri4kU9S z)3)=yC|#+DMiscx{(EGzSK?y<8yjUB>`QXhdOy4`osHYH|FN));{tzfElAe44?!lZ zvHzghC!1kr20&Z0??3`IQh5XuuwR&w46=P{QMKISo78E9v}kx>4y=Z`BTzzoKu8=9 zOcZf}9%BjQX-PUO+ydzQucpK+t(A;MW7Oxx^eCBwl$3F;dRWw)_x&b+P>&kTS9;Qj zjn;$w+U4bRn>*Jpucv=U#Y7)Iib^!M4Kf+)|7-CBKdeIJS2~lE+U$?Dqmo?^_6Qn8 zGfClM^X+2fe195hlaZu6XlLkXSrJ~x(vrgIRO5#qfHo-J>+MkOTX!n#yx#GQb7T(= zngTck9Iz{fWM#D4De|w_6_`q*htG)1LK=Km;>pgA>y`WUjBE*P%CD>INCz%gnl%Tg z3fzG(mqoe-XMIoLNF_A{yue|nSY2_zM$cW16#3%Tb!;TseM<$_=QrSkzcF(@bdgDQ zjQ)pT6xvg!GneD)i|V_(#&JYl&OhqYfMAJ?Rsxt80%db-9B3N=%oT!vZj|+R&X4`N zAd>@1SoCl)tO?hBmSyN^vsyBwT}vv-1BX%~yIenQrTCA1?wqLN(lo_&H}Cp@9@VLG zh~~#cVG$y-5UUm3Y9tiSKyi4b`Mq})Y=JrfkjlZTQOTzqRq!jdkO5CMlzE8(elmij+dayd2 z-MhYHd-|ebN&3r82n;L43Zwp6KJ`z@G`9= z7mp4$eKFcKVeUBwBMFC3)Iq=WK^ulMwn(xK>>4|LWCN*9I0S%`&bvS_v0vdQAP)~ ztNK#PwP@-t=niZ)ia(D*elS9!tKOX>wGTg?C(Yvu-5YouQvn<-EdPQRLXdT*Z6cpM zdVNQ5=z@%|vwGU+SECbjIv_5w)nrgz7v$Sc6ZdU)7aNc9L;GDtqP=Q@Z9krbcz)6m z=ea%_BD(WSfusyS9rY z%nyxj5%8U;{!ku0H@+0H21QahX*- zyX<`EoHQv;(7f*M!u+ z5la!g?O_w}`$@QObk@vB*{#>TD--ojI>|x>-fAyGK&n0i zMcQ~N_^o+<9noI8JPZ0FlfxoL2{q-f`dGvHG|ISSOY+Wo6aIM90-%aMLpQ4mC0 zwN=(;wLfOW^bc7eRBh9h*j3n_+lL+r?!Ngt(fw;hrmFODNHj|UsHn*1fzm^IUNtDT zwJ8DiS#OD@5ma}fATF^`lh^9js9NMYDgEuuPpRTA#m5jxv&yY&QWc`A@q^BLo2jf5 zjMh|YF&rWwtAocg%&4Q}Pf0KdJX!`z=VV0GF4_aqvt9$1+vxn^N@X*T!QQkgSIxe> zXs79xQ)j4`11Q*#fJz(evHcWJTTNE7U3X7mI{L|lVZ%tYlU)@44?GB;L8Q_L;##G# zM7r#5!TrWid$U$~q(Kw^Gy}a={PEO~b7DZ02 z(V>f<WnUzyy1#tMO%OJ}&d3COBj?XStr^oVdAP^OAR}f$ zj{4f6XDGnFV;2>ORkqSNO@=+i9!Ez2C3|!U&KDFoN`_-W=`$2~RbqGEriv>R<&7}+ zfaiDuQ0o^j%!D9#M&hK4go|h?Zw2w)yn&s;7MnUb5#!$d*uXdActfr!wq^v5GYq%W z{_>{Tekcoossk+R-svv$HUM}RcqWY=yCqFg-{6y&|Pj@%a zy73nh>T*bJd%o)z;J78K7te4832CP_^6JVPtJ`Mr5Hr%>LJI=|h?_I$+r`NqYXol= zgmumJJ?9?@aH|{1yIRjqKA9S$M2B~biQ5nAe>FjL@3)&Zji&o4{H9YwCn*ks@FK?L z4vDgGuA15I3r214CRgVJ9k`g1M14Fgr2GIt67JY3e)5W%hK7FQM`8wCCT;)5R@!Yz zI&}#=rqwHn-Z_-8dI_5Ex9I`-3ngTF=)fhM?#uq+X4HJ#alz6xqgVSkMonuEyH%kFh^tAa$-| zkJs=vOya*_MbiQRbn>d2H*)`%56cAT)mch5-IFln|BMC1_LRhYkmcb*lm&2?{tc2R z$og00n~9n9UO2%6_dOij$J>|&kMp~Y-0#1MD6%46>YF(St`Y5`puq+KByic(6E$B>hXvzvS^5NXfYHr?(_5`db% zzg50=^3OuHp{}{Ds-wUyNfVei9Ao|o5I7HDk+KK?FRxfDIl>uuAnmt!BbC@AoTZs;s`9l=JHswl6-eBP} zn6G0k@o@B9=}8NqlOLr>QvQ;Nv~Qp#{kiLq`_A`y?#OyT_9!vvo)%@`ffB^A=$e^m zi$n(Kz=!9BQnOtXLtoz{o%uH~`@0}X*@0GuL^+>svbylmRs)|-fJ|LNIemmagdmPr z31rGHW2gcj;=&LHzDvy4#Td3B-pJe?jwfDCz7PG7dE0L^)|&r$Gf7d@UJUA7n3v)8 zW9<`%qmSykl^Hq~_&?GUV%~#Zr5HxZ)WzcI#bVQ%V)Ym<7e=))+S@EKX)&=mCxMfb z7X?>ngLbPnt*Uep7?QLH)vKD~8!I;XUwy{m3>{B?eM74qNPrw(J28t;?X&0xgX8La z+2~jQ#fHc8=-d^Jginb|ng>LXbvaMh@ zdV&RZ%jD7cQB17vKktj}u#j^4DuU$CwfR!Io7#WDHvlp+&W&WH8x)8$8Jj6i&Q|+N za)OPPL2XqvaZ>Idck(3RqLpuf6b~fhn>(Y6{9DQ_HTDkQXCN6Q86?lZxD2+lRhc{n zYGY*fw#Up&;z%tiXS+@zH}as%*6P}he41><&>}Z(;5#;^@)7C zWmg@bnpFJ_!)AUW|9F{4B7hd_b6Q@xW2O{pU#$BmF>Czb^Bw|)JDdY<=I8MPW~~P; za_<}Ibc<~Y4%2I&yuA32s|jxY71E+<{;p-dhtv0L8C@7PR>GE#h&v7UuX^J0&k%th N4OJbL5+$p!{{yKgEwcas literal 0 HcmV?d00001 diff --git a/packages/abnormal_security/kibana/dashboard/abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5.json b/packages/abnormal_security/kibana/dashboard/abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5.json new file mode 100644 index 000000000000..193bf63b3f7b --- /dev/null +++ b/packages/abnormal_security/kibana/dashboard/abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5.json @@ -0,0 +1,926 @@ +{ + "attributes": { + "controlGroupInput": { + "chainingSystem": "HIERARCHICAL", + "controlStyle": "oneLine", + "ignoreParentSettingsJSON": { + "ignoreFilters": false, + "ignoreQuery": false, + "ignoreTimerange": false, + "ignoreValidations": false + }, + "panelsJSON": { + "02c7d338-2f1d-4a02-8a8c-21e0fdab84ef": { + "explicitInput": { + "enhancements": {}, + "fieldName": "abnormal_security.audit.category", + "grow": true, + "id": "02c7d338-2f1d-4a02-8a8c-21e0fdab84ef", + "searchTechnique": "prefix", + "title": "Category", + "width": "medium" + }, + "grow": true, + "order": 0, + "type": "optionsListControl", + "width": "medium" + }, + "c6e0076e-0647-4272-ac7b-b3e92a4b7f4b": { + "explicitInput": { + "enhancements": {}, + "fieldName": "cloud.account.name", + "grow": true, + "id": "c6e0076e-0647-4272-ac7b-b3e92a4b7f4b", + "searchTechnique": "prefix", + "title": "Tenant Name", + "width": "medium" + }, + "grow": true, + "order": 1, + "type": "optionsListControl", + "width": "medium" + }, + "cb6a81c0-2e75-480e-9943-dc03f45142b9": { + "explicitInput": { + "enhancements": {}, + "fieldName": "event.outcome", + "grow": true, + "id": "cb6a81c0-2e75-480e-9943-dc03f45142b9", + "searchTechnique": "prefix", + "title": "Status", + "width": "medium" + }, + "grow": true, + "order": 2, + "type": "optionsListControl", + "width": "medium" + } + } + }, + "description": "This dashboard shows Audit logs collected by the Abnormal Security integration.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "abnormal_security.audit" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "abnormal_security.audit" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "syncColors": false, + "syncCursor": true, + "syncTooltips": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "savedVis": { + "data": { + "aggs": [], + "searchSource": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "description": "", + "id": "", + "params": { + "fontSize": 12, + "markdown": "**Navigation**\n\n**Abnormal Security**\n\n- [AI Security Mailbox Overview](#/dashboard/abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c)\n- [**Audit Overview (This Page)**](#/dashboard/abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5)\n- [Case Overview](#/dashboard/abnormal_security-f6562262-e429-470d-af45-4c80afdcf664)\n- [Threat Overview](#/dashboard/abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac)\n\n**Overview**\n\nThis dashboard displays key statistics and visualizations based on Audit logs from the Abnormal Security integration. It includes the top 10 users and source IPs, a breakdown of events by category, action and tenant name, as well as essential details about the Audit data.\n\n[**Integrations Page**](/app/integrations/detail/abnormal_security/overview)", + "openLinksInNewTab": false + }, + "title": "", + "type": "markdown", + "uiState": {} + } + }, + "gridData": { + "h": 23, + "i": "ca5ffc5c-93d1-4505-b795-313668967c10", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "ca5ffc5c-93d1-4505-b795-313668967c10", + "title": "Table of Content", + "type": "visualization" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-024948d5-26b1-49c2-bc68-9b87abca6d63", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "024948d5-26b1-49c2-bc68-9b87abca6d63": { + "columnOrder": [ + "30ab9af7-d335-4d0e-92b2-bca59142ab57", + "d0d359db-5b3a-4e6b-93be-ec886d9deff9" + ], + "columns": { + "30ab9af7-d335-4d0e-92b2-bca59142ab57": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Tenant Name", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "d0d359db-5b3a-4e6b-93be-ec886d9deff9", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "cloud.account.name" + }, + "d0d359db-5b3a-4e6b-93be-ec886d9deff9": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "d0d359db-5b3a-4e6b-93be-ec886d9deff9" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "024948d5-26b1-49c2-bc68-9b87abca6d63", + "layerType": "data", + "position": "top", + "seriesType": "bar_horizontal", + "showGridlines": false, + "xAccessor": "30ab9af7-d335-4d0e-92b2-bca59142ab57" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "shouldTruncate": false + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "show" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "c7a61847-bf18-4297-a0e2-2fc16216a962", + "w": 36, + "x": 12, + "y": 0 + }, + "panelIndex": "c7a61847-bf18-4297-a0e2-2fc16216a962", + "title": "Audit Events by Tenant Name [Logs Abnormal Security]]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-09cf3821-e06e-42ee-b6ca-22426c80df1c", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "09cf3821-e06e-42ee-b6ca-22426c80df1c": { + "columnOrder": [ + "8b5cb91f-e59b-4219-acb2-effcf10ede55", + "a2c5b4c8-01bc-4a8b-9655-379595804068" + ], + "columns": { + "8b5cb91f-e59b-4219-acb2-effcf10ede55": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Action", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "a2c5b4c8-01bc-4a8b-9655-379595804068", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "event.action" + }, + "a2c5b4c8-01bc-4a8b-9655-379595804068": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "a2c5b4c8-01bc-4a8b-9655-379595804068" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "09cf3821-e06e-42ee-b6ca-22426c80df1c", + "layerType": "data", + "position": "top", + "seriesType": "bar_horizontal", + "showGridlines": false, + "xAccessor": "8b5cb91f-e59b-4219-acb2-effcf10ede55" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "shouldTruncate": false + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "show" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "cb3ce987-ba73-42ca-ae20-bb4868145bd5", + "w": 36, + "x": 12, + "y": 12 + }, + "panelIndex": "cb3ce987-ba73-42ca-ae20-bb4868145bd5", + "title": "Audit Events by Action [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-881cd6df-24bb-4497-825d-7c5cef0f823a", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "881cd6df-24bb-4497-825d-7c5cef0f823a": { + "columnOrder": [ + "9a976aee-1481-4710-8dc5-2e4a0ec6f9c6", + "fe35e767-b294-4f2b-8e25-2795ceb48815" + ], + "columns": { + "9a976aee-1481-4710-8dc5-2e4a0ec6f9c6": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Category", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "fe35e767-b294-4f2b-8e25-2795ceb48815", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.audit.category" + }, + "fe35e767-b294-4f2b-8e25-2795ceb48815": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "881cd6df-24bb-4497-825d-7c5cef0f823a", + "layerType": "data", + "legendDisplay": "show", + "metrics": [ + "fe35e767-b294-4f2b-8e25-2795ceb48815" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "9a976aee-1481-4710-8dc5-2e4a0ec6f9c6" + ], + "truncateLegend": false + } + ], + "shape": "pie" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "943d8454-266a-4430-a16a-468ad4e8ab35", + "w": 17, + "x": 0, + "y": 23 + }, + "panelIndex": "943d8454-266a-4430-a16a-468ad4e8ab35", + "title": "Audit Events by Category [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-7c4bb612-c842-47c0-b897-174996c9885f", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "7c4bb612-c842-47c0-b897-174996c9885f": { + "columnOrder": [ + "c9c299c3-f53d-4752-bc32-1295706a6309", + "997c3727-499a-4568-a9dd-3b1352b7f20d" + ], + "columns": { + "997c3727-499a-4568-a9dd-3b1352b7f20d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "___records___" + }, + "c9c299c3-f53d-4752-bc32-1295706a6309": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "User", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "997c3727-499a-4568-a9dd-3b1352b7f20d", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "user.email" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "c9c299c3-f53d-4752-bc32-1295706a6309", + "isTransposed": false + }, + { + "columnId": "997c3727-499a-4568-a9dd-3b1352b7f20d", + "isTransposed": false + } + ], + "layerId": "7c4bb612-c842-47c0-b897-174996c9885f", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "876c8eff-917a-4366-b2e0-8d635bf76593", + "w": 15, + "x": 17, + "y": 23 + }, + "panelIndex": "876c8eff-917a-4366-b2e0-8d635bf76593", + "title": "Top 10 Users [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-3b4093b4-bb39-438f-872e-d0a0ba402e0b", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "3b4093b4-bb39-438f-872e-d0a0ba402e0b": { + "columnOrder": [ + "604c00b0-c450-417f-bdb4-0d1c842c3cd1", + "95fe4db4-0ff2-4769-8bbe-fe405e2e0f74" + ], + "columns": { + "604c00b0-c450-417f-bdb4-0d1c842c3cd1": { + "customLabel": true, + "dataType": "ip", + "isBucketed": true, + "label": "Source IP", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "95fe4db4-0ff2-4769-8bbe-fe405e2e0f74", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "source.ip" + }, + "95fe4db4-0ff2-4769-8bbe-fe405e2e0f74": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "___records___" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "604c00b0-c450-417f-bdb4-0d1c842c3cd1", + "isTransposed": false + }, + { + "columnId": "95fe4db4-0ff2-4769-8bbe-fe405e2e0f74", + "isTransposed": false + } + ], + "layerId": "3b4093b4-bb39-438f-872e-d0a0ba402e0b", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 18, + "i": "898fe80b-6dab-4c13-bd89-d0442dac4d08", + "w": 16, + "x": 32, + "y": 23 + }, + "panelIndex": "898fe80b-6dab-4c13-bd89-d0442dac4d08", + "title": "Top 10 Source IP [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 16, + "i": "24aca30e-7efb-4dcc-9290-bb261aa10a33", + "w": 48, + "x": 0, + "y": 41 + }, + "panelIndex": "24aca30e-7efb-4dcc-9290-bb261aa10a33", + "panelRefName": "panel_24aca30e-7efb-4dcc-9290-bb261aa10a33", + "type": "search" + } + ], + "timeRestore": false, + "title": "[Logs Abnormal Security] Audit Overview", + "version": 1 + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T10:23:58.301Z", + "id": "abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5", + "managed": false, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "c7a61847-bf18-4297-a0e2-2fc16216a962:indexpattern-datasource-layer-024948d5-26b1-49c2-bc68-9b87abca6d63", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "cb3ce987-ba73-42ca-ae20-bb4868145bd5:indexpattern-datasource-layer-09cf3821-e06e-42ee-b6ca-22426c80df1c", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "943d8454-266a-4430-a16a-468ad4e8ab35:indexpattern-datasource-layer-881cd6df-24bb-4497-825d-7c5cef0f823a", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "876c8eff-917a-4366-b2e0-8d635bf76593:indexpattern-datasource-layer-7c4bb612-c842-47c0-b897-174996c9885f", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "898fe80b-6dab-4c13-bd89-d0442dac4d08:indexpattern-datasource-layer-3b4093b4-bb39-438f-872e-d0a0ba402e0b", + "type": "index-pattern" + }, + { + "id": "abnormal_security-a2d86921-d69f-4f99-a9eb-88a7ba0b2923", + "name": "24aca30e-7efb-4dcc-9290-bb261aa10a33:panel_24aca30e-7efb-4dcc-9290-bb261aa10a33", + "type": "search" + }, + { + "id": "logs-*", + "name": "controlGroup_02c7d338-2f1d-4a02-8a8c-21e0fdab84ef:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_c6e0076e-0647-4272-ac7b-b3e92a4b7f4b:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_cb6a81c0-2e75-480e-9943-dc03f45142b9:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-abnormal_security-security-solution-default", + "type": "tag" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "dashboard", + "typeMigrationVersion": "8.9.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/dashboard/abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac.json b/packages/abnormal_security/kibana/dashboard/abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac.json new file mode 100644 index 000000000000..a6667a8db990 --- /dev/null +++ b/packages/abnormal_security/kibana/dashboard/abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac.json @@ -0,0 +1,1468 @@ +{ + "attributes": { + "controlGroupInput": { + "chainingSystem": "HIERARCHICAL", + "controlStyle": "oneLine", + "ignoreParentSettingsJSON": { + "ignoreFilters": false, + "ignoreQuery": false, + "ignoreTimerange": false, + "ignoreValidations": false + }, + "panelsJSON": { + "3d452544-b58c-4706-bf9b-7c2debef77b0": { + "explicitInput": { + "enhancements": {}, + "fieldName": "threat.technique.name", + "grow": true, + "id": "3d452544-b58c-4706-bf9b-7c2debef77b0", + "searchTechnique": "prefix", + "title": "Attack Type", + "width": "medium" + }, + "grow": true, + "order": 0, + "type": "optionsListControl", + "width": "medium" + }, + "5722e6cc-26f3-437b-a8a0-5375f2ef8d6a": { + "explicitInput": { + "enhancements": {}, + "fieldName": "abnormal_security.threat.remediation_status", + "grow": true, + "id": "5722e6cc-26f3-437b-a8a0-5375f2ef8d6a", + "searchTechnique": "prefix", + "title": "Remediation Status", + "width": "medium" + }, + "grow": true, + "order": 1, + "type": "optionsListControl", + "width": "medium" + }, + "d306d5a2-9049-45b0-8151-41bc34bab06e": { + "explicitInput": { + "enhancements": {}, + "fieldName": "abnormal_security.threat.attack.vector", + "grow": true, + "id": "d306d5a2-9049-45b0-8151-41bc34bab06e", + "searchTechnique": "prefix", + "title": "Attack Medium", + "width": "medium" + }, + "grow": true, + "order": 2, + "type": "optionsListControl", + "width": "medium" + } + } + }, + "description": "This dashboard shows Threat logs collected by the Abnormal Security integration.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "abnormal_security.threat" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "abnormal_security.threat" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "syncColors": false, + "syncCursor": true, + "syncTooltips": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "savedVis": { + "data": { + "aggs": [], + "searchSource": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "description": "", + "id": "", + "params": { + "fontSize": 12, + "markdown": "**Navigation**\n\n**Abnormal Security**\n\n- [AI Security Mailbox Overview](#/dashboard/abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c)\n- [Audit Overview](#/dashboard/abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5)\n- [Case Overview](#/dashboard/abnormal_security-f6562262-e429-470d-af45-4c80afdcf664)\n- [**Threat Overview (This Page)**](#/dashboard/abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac)\n\n**Overview**\n\nThis dashboard displays key statistics and visualizations based on Threat logs from the Abnormal Security integration. It includes the top 10 URLs, senders, recipients and senders domains, a breakdown of events by attack medium, strategy and party, as well as essential details about the Threat data, total threats and threat messages. The dashboard also includes the Top Sender Countries.\n\n[**Integrations Page**](/app/integrations/detail/abnormal_security/overview)", + "openLinksInNewTab": false + }, + "title": "", + "type": "markdown", + "uiState": {} + } + }, + "gridData": { + "h": 22, + "i": "eaacabb3-3b4e-46fa-ac9b-9913699cff32", + "w": 14, + "x": 0, + "y": 0 + }, + "panelIndex": "eaacabb3-3b4e-46fa-ac9b-9913699cff32", + "title": "Table of Content", + "type": "visualization" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-2768ba68-de5e-4fcd-81a6-1e6df54dff50", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "2768ba68-de5e-4fcd-81a6-1e6df54dff50": { + "columnOrder": [ + "1f47dc5d-d4ed-44c3-869a-9ddf62fccc99" + ], + "columns": { + "1f47dc5d-d4ed-44c3-869a-9ddf62fccc99": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Threats", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "abnormal_security.threat.id" + } + }, + "incompleteColumns": {} + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#6092C0", + "layerId": "2768ba68-de5e-4fcd-81a6-1e6df54dff50", + "layerType": "data", + "metricAccessor": "1f47dc5d-d4ed-44c3-869a-9ddf62fccc99" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": true + }, + "gridData": { + "h": 7, + "i": "c5da2471-4079-4714-ae26-fa4ac54e849e", + "w": 17, + "x": 14, + "y": 0 + }, + "panelIndex": "c5da2471-4079-4714-ae26-fa4ac54e849e", + "title": "", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-9ee6d5a5-77b1-46b2-852a-ec0c165a04d2", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "9ee6d5a5-77b1-46b2-852a-ec0c165a04d2": { + "columnOrder": [ + "80e1b9b9-796e-4987-9b93-b05ff09ae466" + ], + "columns": { + "80e1b9b9-796e-4987-9b93-b05ff09ae466": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Threat Messages", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {} + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#6092C0", + "layerId": "9ee6d5a5-77b1-46b2-852a-ec0c165a04d2", + "layerType": "data", + "metricAccessor": "80e1b9b9-796e-4987-9b93-b05ff09ae466" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": true + }, + "gridData": { + "h": 7, + "i": "9ff51b21-79b7-4d08-8aa1-dc3ca04e39d8", + "w": 17, + "x": 31, + "y": 0 + }, + "panelIndex": "9ff51b21-79b7-4d08-8aa1-dc3ca04e39d8", + "title": "", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-34115413-e6fa-47bf-8081-12eb06b6c751", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "34115413-e6fa-47bf-8081-12eb06b6c751": { + "columnOrder": [ + "974254c9-9261-4e2a-b964-3270b0456976", + "6edd63cb-b993-4735-b1fd-d2b9e2109913" + ], + "columns": { + "6edd63cb-b993-4735-b1fd-d2b9e2109913": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "974254c9-9261-4e2a-b964-3270b0456976": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Attack Strategy", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "6edd63cb-b993-4735-b1fd-d2b9e2109913", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threat.technique.name" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "6edd63cb-b993-4735-b1fd-d2b9e2109913" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "34115413-e6fa-47bf-8081-12eb06b6c751", + "layerType": "data", + "position": "top", + "seriesType": "bar_horizontal", + "showGridlines": false, + "xAccessor": "974254c9-9261-4e2a-b964-3270b0456976" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "shouldTruncate": false + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "show" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "98400991-e67c-4879-b08a-4d6b245a41a9", + "w": 34, + "x": 14, + "y": 7 + }, + "panelIndex": "98400991-e67c-4879-b08a-4d6b245a41a9", + "title": "Threat Messages by Attack Strategy [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-d49f24e5-a50c-4d38-9cad-15a6fb71027b", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "d49f24e5-a50c-4d38-9cad-15a6fb71027b": { + "columnOrder": [ + "f2671fe7-fc3d-4d46-ad8e-b5719b4db338", + "9ed4e997-8f66-4964-b917-619c0b65c79c" + ], + "columns": { + "9ed4e997-8f66-4964-b917-619c0b65c79c": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "f2671fe7-fc3d-4d46-ad8e-b5719b4db338": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Attack Medium", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "9ed4e997-8f66-4964-b917-619c0b65c79c", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.threat.attack.vector" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "d49f24e5-a50c-4d38-9cad-15a6fb71027b", + "layerType": "data", + "legendDisplay": "show", + "metrics": [ + "9ed4e997-8f66-4964-b917-619c0b65c79c" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "f2671fe7-fc3d-4d46-ad8e-b5719b4db338" + ], + "truncateLegend": false + } + ], + "shape": "pie" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "e9839153-ba60-4914-8d09-4553a3648527", + "w": 24, + "x": 0, + "y": 22 + }, + "panelIndex": "e9839153-ba60-4914-8d09-4553a3648527", + "title": "Threat Messages by Attack Medium [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-4956c725-ddb6-4478-9e65-ce9ac3bed83e", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "4956c725-ddb6-4478-9e65-ce9ac3bed83e": { + "columnOrder": [ + "a4642bf2-dd41-4de0-9975-87ea7a0c83ce", + "57403346-2b68-4e0c-9f61-02d87cbb6696" + ], + "columns": { + "57403346-2b68-4e0c-9f61-02d87cbb6696": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "a4642bf2-dd41-4de0-9975-87ea7a0c83ce": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Attacked Party", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "57403346-2b68-4e0c-9f61-02d87cbb6696", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.threat.attacked_party" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "57403346-2b68-4e0c-9f61-02d87cbb6696" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "4956c725-ddb6-4478-9e65-ce9ac3bed83e", + "layerType": "data", + "position": "top", + "seriesType": "bar_horizontal", + "showGridlines": false, + "xAccessor": "a4642bf2-dd41-4de0-9975-87ea7a0c83ce" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "shouldTruncate": false + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "show" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "ac4681b0-acbf-490d-aebd-7ce16e8f8130", + "w": 24, + "x": 24, + "y": 22 + }, + "panelIndex": "ac4681b0-acbf-490d-aebd-7ce16e8f8130", + "title": "Threat Messages by Attacked Party [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-2d241fae-349b-4593-8a57-f1fef9a69667", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "2d241fae-349b-4593-8a57-f1fef9a69667": { + "columnOrder": [ + "1db15a51-929c-4d52-ba55-62a94ae6a9f5", + "2e372f63-4289-4f6c-a056-967495eccb6d" + ], + "columns": { + "1db15a51-929c-4d52-ba55-62a94ae6a9f5": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Sender", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "2e372f63-4289-4f6c-a056-967495eccb6d", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "email.from.address" + }, + "2e372f63-4289-4f6c-a056-967495eccb6d": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "1db15a51-929c-4d52-ba55-62a94ae6a9f5", + "isTransposed": false + }, + { + "columnId": "2e372f63-4289-4f6c-a056-967495eccb6d", + "isTransposed": false + } + ], + "layerId": "2d241fae-349b-4593-8a57-f1fef9a69667", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "6b9df7a1-43dd-4d3e-a5b7-160b2e1b205e", + "w": 24, + "x": 0, + "y": 35 + }, + "panelIndex": "6b9df7a1-43dd-4d3e-a5b7-160b2e1b205e", + "title": "Top 10 Senders [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-ddcbd136-6732-4e49-9262-3f749fd08401", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "ddcbd136-6732-4e49-9262-3f749fd08401": { + "columnOrder": [ + "51805c85-8090-409e-9253-453385b9e454", + "e92f74a8-fc87-41e1-a6e5-b0dfb4327669" + ], + "columns": { + "51805c85-8090-409e-9253-453385b9e454": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recipient", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "e92f74a8-fc87-41e1-a6e5-b0dfb4327669", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.threat.recipient_address" + }, + "e92f74a8-fc87-41e1-a6e5-b0dfb4327669": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "51805c85-8090-409e-9253-453385b9e454", + "isTransposed": false + }, + { + "columnId": "e92f74a8-fc87-41e1-a6e5-b0dfb4327669", + "isTransposed": false + } + ], + "layerId": "ddcbd136-6732-4e49-9262-3f749fd08401", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "427f6b14-14b9-44da-b50b-fe12c9bf4018", + "w": 24, + "x": 24, + "y": 35 + }, + "panelIndex": "427f6b14-14b9-44da-b50b-fe12c9bf4018", + "title": "Top 10 Recipients [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-6cbedc6b-1e9f-4004-951b-298651b15dcb", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "6cbedc6b-1e9f-4004-951b-298651b15dcb": { + "columnOrder": [ + "20760a04-0a35-468e-97cd-58bdbcedb322", + "da0d6ea1-c46a-4a05-bd2e-4f36c435e1c1" + ], + "columns": { + "20760a04-0a35-468e-97cd-58bdbcedb322": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Sender Domain", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "da0d6ea1-c46a-4a05-bd2e-4f36c435e1c1", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "source.domain" + }, + "da0d6ea1-c46a-4a05-bd2e-4f36c435e1c1": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "20760a04-0a35-468e-97cd-58bdbcedb322", + "isTransposed": false + }, + { + "columnId": "da0d6ea1-c46a-4a05-bd2e-4f36c435e1c1", + "isTransposed": false + } + ], + "layerId": "6cbedc6b-1e9f-4004-951b-298651b15dcb", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "10110a3d-648d-49b0-80d1-36482848d887", + "w": 24, + "x": 24, + "y": 49 + }, + "panelIndex": "10110a3d-648d-49b0-80d1-36482848d887", + "title": "Top 10 Sender Domain [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-bc158e6f-c22f-4122-83a7-23c145e6722b", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "bc158e6f-c22f-4122-83a7-23c145e6722b": { + "columnOrder": [ + "cbc0104b-95cf-47f1-a973-38f7c932a26a", + "4379f2b8-6342-472a-8144-f0e74bb5f983" + ], + "columns": { + "4379f2b8-6342-472a-8144-f0e74bb5f983": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "cbc0104b-95cf-47f1-a973-38f7c932a26a": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "URL", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "4379f2b8-6342-472a-8144-f0e74bb5f983", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.threat.urls" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "cbc0104b-95cf-47f1-a973-38f7c932a26a", + "isTransposed": false + }, + { + "columnId": "4379f2b8-6342-472a-8144-f0e74bb5f983", + "isTransposed": false + } + ], + "layerId": "bc158e6f-c22f-4122-83a7-23c145e6722b", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "c287629a-3a65-4ebc-a28a-039237839f4e", + "w": 24, + "x": 0, + "y": 49 + }, + "panelIndex": "c287629a-3a65-4ebc-a28a-039237839f4e", + "title": "Top 10 URL [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-6c1b2eca-2e67-4e34-857a-8e08fb2e936b", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "6c1b2eca-2e67-4e34-857a-8e08fb2e936b": { + "columnOrder": [ + "24dd4e93-99ce-42d9-b53c-22c30ffd4d1d", + "bff698e5-fbd4-4277-9f48-c4c18bda9d68" + ], + "columns": { + "24dd4e93-99ce-42d9-b53c-22c30ffd4d1d": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Sender Countries", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "bff698e5-fbd4-4277-9f48-c4c18bda9d68", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "source.geo.country_iso_code" + }, + "bff698e5-fbd4-4277-9f48-c4c18bda9d68": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "emsField": "iso2", + "emsLayerId": "world_countries", + "layerId": "6c1b2eca-2e67-4e34-857a-8e08fb2e936b", + "regionAccessor": "24dd4e93-99ce-42d9-b53c-22c30ffd4d1d", + "valueAccessor": "bff698e5-fbd4-4277-9f48-c4c18bda9d68" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsChoropleth" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "e90a7a49-7669-4434-8c52-65385d2ad495", + "w": 48, + "x": 0, + "y": 64 + }, + "panelIndex": "e90a7a49-7669-4434-8c52-65385d2ad495", + "title": "Top Sender Countries [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "fdcde8e1-3b3a-47c2-854e-c41bbacdabd8", + "w": 48, + "x": 0, + "y": 79 + }, + "panelIndex": "fdcde8e1-3b3a-47c2-854e-c41bbacdabd8", + "panelRefName": "panel_fdcde8e1-3b3a-47c2-854e-c41bbacdabd8", + "type": "search" + } + ], + "timeRestore": false, + "title": "[Logs Abnormal Security] Threat Overview", + "version": 1 + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T10:24:00.424Z", + "id": "abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac", + "managed": false, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "c5da2471-4079-4714-ae26-fa4ac54e849e:indexpattern-datasource-layer-2768ba68-de5e-4fcd-81a6-1e6df54dff50", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "9ff51b21-79b7-4d08-8aa1-dc3ca04e39d8:indexpattern-datasource-layer-9ee6d5a5-77b1-46b2-852a-ec0c165a04d2", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "98400991-e67c-4879-b08a-4d6b245a41a9:indexpattern-datasource-layer-34115413-e6fa-47bf-8081-12eb06b6c751", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "e9839153-ba60-4914-8d09-4553a3648527:indexpattern-datasource-layer-d49f24e5-a50c-4d38-9cad-15a6fb71027b", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "ac4681b0-acbf-490d-aebd-7ce16e8f8130:indexpattern-datasource-layer-4956c725-ddb6-4478-9e65-ce9ac3bed83e", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "6b9df7a1-43dd-4d3e-a5b7-160b2e1b205e:indexpattern-datasource-layer-2d241fae-349b-4593-8a57-f1fef9a69667", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "427f6b14-14b9-44da-b50b-fe12c9bf4018:indexpattern-datasource-layer-ddcbd136-6732-4e49-9262-3f749fd08401", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "10110a3d-648d-49b0-80d1-36482848d887:indexpattern-datasource-layer-6cbedc6b-1e9f-4004-951b-298651b15dcb", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "c287629a-3a65-4ebc-a28a-039237839f4e:indexpattern-datasource-layer-bc158e6f-c22f-4122-83a7-23c145e6722b", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "e90a7a49-7669-4434-8c52-65385d2ad495:indexpattern-datasource-layer-6c1b2eca-2e67-4e34-857a-8e08fb2e936b", + "type": "index-pattern" + }, + { + "id": "abnormal_security-e34b2986-68c2-4de9-8601-7bdefab429bc", + "name": "fdcde8e1-3b3a-47c2-854e-c41bbacdabd8:panel_fdcde8e1-3b3a-47c2-854e-c41bbacdabd8", + "type": "search" + }, + { + "id": "logs-*", + "name": "controlGroup_3d452544-b58c-4706-bf9b-7c2debef77b0:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_5722e6cc-26f3-437b-a8a0-5375f2ef8d6a:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_d306d5a2-9049-45b0-8151-41bc34bab06e:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-abnormal_security-security-solution-default", + "type": "tag" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "dashboard", + "typeMigrationVersion": "8.9.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/dashboard/abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c.json b/packages/abnormal_security/kibana/dashboard/abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c.json new file mode 100644 index 000000000000..245690f93b3a --- /dev/null +++ b/packages/abnormal_security/kibana/dashboard/abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c.json @@ -0,0 +1,830 @@ +{ + "attributes": { + "controlGroupInput": { + "chainingSystem": "HIERARCHICAL", + "controlStyle": "oneLine", + "ignoreParentSettingsJSON": { + "ignoreFilters": false, + "ignoreQuery": false, + "ignoreTimerange": false, + "ignoreValidations": false + }, + "panelsJSON": { + "82439c26-882e-45ed-a8da-e735acfeb0b8": { + "explicitInput": { + "enhancements": {}, + "fieldName": "abnormal_security.ai_security_mailbox.judgement_status", + "grow": true, + "id": "82439c26-882e-45ed-a8da-e735acfeb0b8", + "searchTechnique": "prefix", + "title": " Judgment Status", + "width": "medium" + }, + "grow": true, + "order": 1, + "type": "optionsListControl", + "width": "medium" + }, + "feec41a2-407a-4b96-9f3b-0d249cce7b9d": { + "explicitInput": { + "enhancements": {}, + "fieldName": "threat.tactic.name", + "grow": true, + "id": "feec41a2-407a-4b96-9f3b-0d249cce7b9d", + "searchTechnique": "prefix", + "title": "Attack Type", + "width": "medium" + }, + "grow": true, + "order": 0, + "type": "optionsListControl", + "width": "medium" + } + } + }, + "description": "This dashboard shows AI Security Mailbox logs collected by the Abnormal Security integration.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "abnormal_security.ai_security_mailbox" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "abnormal_security.ai_security_mailbox" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "syncColors": false, + "syncCursor": true, + "syncTooltips": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "savedVis": { + "data": { + "aggs": [], + "searchSource": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "description": "", + "id": "", + "params": { + "fontSize": 12, + "markdown": "**Navigation**\n\n**Abnormal Security**\n\n- [**AI Security Mailbox Overview (This Page)**](#/dashboard/abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c)\n- [Audit Overview](#/dashboard/abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5)\n- [Case Overview](#/dashboard/abnormal_security-f6562262-e429-470d-af45-4c80afdcf664)\n- [Threat Overview](#/dashboard/abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac)\n\n**Overview**\n\nThis dashboard displays key statistics and visualizations based on AI Security Mailbox logs from the Abnormal Security integration. It includes the top 10 senders and recipients, a breakdown of events by attack type and judgement status, as well as essential details about the AI Security Mailbox data and total campaigns.\n\n[**Integrations Page**](/app/integrations/detail/abnormal_security/overview)", + "openLinksInNewTab": false + }, + "title": "", + "type": "markdown", + "uiState": {} + } + }, + "gridData": { + "h": 25, + "i": "eef44695-86f7-469b-816f-ecf469827b82", + "w": 13, + "x": 0, + "y": 0 + }, + "panelIndex": "eef44695-86f7-469b-816f-ecf469827b82", + "title": "Table of Content", + "type": "visualization" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-47521048-cf3a-4f46-aaca-610f35075c2b", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "47521048-cf3a-4f46-aaca-610f35075c2b": { + "columnOrder": [ + "57e5a698-6dd2-4c65-b11c-1fbbb2f884aa" + ], + "columns": { + "57e5a698-6dd2-4c65-b11c-1fbbb2f884aa": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Campaigns", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {} + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#6092C0", + "layerId": "47521048-cf3a-4f46-aaca-610f35075c2b", + "layerType": "data", + "metricAccessor": "57e5a698-6dd2-4c65-b11c-1fbbb2f884aa" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": true + }, + "gridData": { + "h": 13, + "i": "b4f94bcd-729d-45a3-80b7-4049e9485ba8", + "w": 11, + "x": 13, + "y": 0 + }, + "panelIndex": "b4f94bcd-729d-45a3-80b7-4049e9485ba8", + "title": "", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-a4d591cb-00ae-48f1-b424-3152601549ca", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "a4d591cb-00ae-48f1-b424-3152601549ca": { + "columnOrder": [ + "8ce18848-5908-4b0e-bc13-e03a6ae1bdfc", + "8a4500e3-93da-4dfe-a5d7-3608abca92fa" + ], + "columns": { + "8a4500e3-93da-4dfe-a5d7-3608abca92fa": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "8ce18848-5908-4b0e-bc13-e03a6ae1bdfc": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Judgement Status", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "8a4500e3-93da-4dfe-a5d7-3608abca92fa", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.ai_security_mailbox.judgement_status" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "a4d591cb-00ae-48f1-b424-3152601549ca", + "layerType": "data", + "legendDisplay": "show", + "metrics": [ + "8a4500e3-93da-4dfe-a5d7-3608abca92fa" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "8ce18848-5908-4b0e-bc13-e03a6ae1bdfc" + ], + "truncateLegend": false + } + ], + "shape": "pie" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "952d224b-b3e5-461f-8a14-a212d481f63f", + "w": 24, + "x": 24, + "y": 0 + }, + "panelIndex": "952d224b-b3e5-461f-8a14-a212d481f63f", + "title": "AI Security Mailbox Events by Judgement Status [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-21094505-e0fa-43fb-a2bd-aa9a64a32d0b", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "21094505-e0fa-43fb-a2bd-aa9a64a32d0b": { + "columnOrder": [ + "9e5b6bfb-13b5-428b-a6a6-39400fdf19ce", + "865c723b-7200-4f59-8c93-eb8418569665" + ], + "columns": { + "865c723b-7200-4f59-8c93-eb8418569665": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "9e5b6bfb-13b5-428b-a6a6-39400fdf19ce": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Attack Type", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "865c723b-7200-4f59-8c93-eb8418569665", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "threat.tactic.name" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "865c723b-7200-4f59-8c93-eb8418569665" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "21094505-e0fa-43fb-a2bd-aa9a64a32d0b", + "layerType": "data", + "position": "top", + "seriesType": "bar_horizontal", + "showGridlines": false, + "xAccessor": "9e5b6bfb-13b5-428b-a6a6-39400fdf19ce" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "shouldTruncate": false + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "show" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "71fa6e5d-4ad2-4827-a257-6191d5783e33", + "w": 35, + "x": 13, + "y": 13 + }, + "panelIndex": "71fa6e5d-4ad2-4827-a257-6191d5783e33", + "title": "AI Security Mailbox Events by Attack Type [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-66f2228a-cef7-46f9-9fa5-c016d78733ce", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "66f2228a-cef7-46f9-9fa5-c016d78733ce": { + "columnOrder": [ + "fd032167-aa75-4e67-8c08-eba61c5de564", + "380d3403-f777-4184-9ad4-d70569e457e4" + ], + "columns": { + "380d3403-f777-4184-9ad4-d70569e457e4": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "fd032167-aa75-4e67-8c08-eba61c5de564": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Recipient", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "380d3403-f777-4184-9ad4-d70569e457e4", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "email.to.address" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "fd032167-aa75-4e67-8c08-eba61c5de564", + "isTransposed": false + }, + { + "columnId": "380d3403-f777-4184-9ad4-d70569e457e4", + "isTransposed": false + } + ], + "layerId": "66f2228a-cef7-46f9-9fa5-c016d78733ce", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "8a7cc4c9-5172-41a3-99e7-38b38f0dff59", + "w": 23, + "x": 0, + "y": 25 + }, + "panelIndex": "8a7cc4c9-5172-41a3-99e7-38b38f0dff59", + "title": "Top 10 Recipients [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-3dd6a355-de27-4308-bad3-e5071b2be9f9", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "3dd6a355-de27-4308-bad3-e5071b2be9f9": { + "columnOrder": [ + "5180dc51-46f7-4f28-b539-b4c5648f1c9d", + "3a684786-0b2f-4832-9cb6-e699ef0ef0c9" + ], + "columns": { + "3a684786-0b2f-4832-9cb6-e699ef0ef0c9": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "5180dc51-46f7-4f28-b539-b4c5648f1c9d": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Sender", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "3a684786-0b2f-4832-9cb6-e699ef0ef0c9", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "email.from.address" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "5180dc51-46f7-4f28-b539-b4c5648f1c9d", + "isTransposed": false + }, + { + "columnId": "3a684786-0b2f-4832-9cb6-e699ef0ef0c9", + "isTransposed": false + } + ], + "layerId": "3dd6a355-de27-4308-bad3-e5071b2be9f9", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "a66b9142-1385-443a-999d-a5362ec81730", + "w": 25, + "x": 23, + "y": 25 + }, + "panelIndex": "a66b9142-1385-443a-999d-a5362ec81730", + "title": "Top 10 Senders [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 13, + "i": "63370fda-2126-4973-bed8-72fe8f9b7ceb", + "w": 48, + "x": 0, + "y": 40 + }, + "panelIndex": "63370fda-2126-4973-bed8-72fe8f9b7ceb", + "panelRefName": "panel_63370fda-2126-4973-bed8-72fe8f9b7ceb", + "type": "search" + } + ], + "timeRestore": false, + "title": "[Logs Abnormal Security] AI Security Mailbox Overview", + "version": 1 + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T10:23:57.518Z", + "id": "abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c", + "managed": false, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "b4f94bcd-729d-45a3-80b7-4049e9485ba8:indexpattern-datasource-layer-47521048-cf3a-4f46-aaca-610f35075c2b", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "952d224b-b3e5-461f-8a14-a212d481f63f:indexpattern-datasource-layer-a4d591cb-00ae-48f1-b424-3152601549ca", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "71fa6e5d-4ad2-4827-a257-6191d5783e33:indexpattern-datasource-layer-21094505-e0fa-43fb-a2bd-aa9a64a32d0b", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "8a7cc4c9-5172-41a3-99e7-38b38f0dff59:indexpattern-datasource-layer-66f2228a-cef7-46f9-9fa5-c016d78733ce", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "a66b9142-1385-443a-999d-a5362ec81730:indexpattern-datasource-layer-3dd6a355-de27-4308-bad3-e5071b2be9f9", + "type": "index-pattern" + }, + { + "id": "abnormal_security-ecec7bf6-c7a6-4fb4-8054-863c5a1a666e", + "name": "63370fda-2126-4973-bed8-72fe8f9b7ceb:panel_63370fda-2126-4973-bed8-72fe8f9b7ceb", + "type": "search" + }, + { + "id": "logs-*", + "name": "controlGroup_82439c26-882e-45ed-a8da-e735acfeb0b8:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_feec41a2-407a-4b96-9f3b-0d249cce7b9d:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-abnormal_security-security-solution-default", + "type": "tag" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "dashboard", + "typeMigrationVersion": "8.9.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/dashboard/abnormal_security-f6562262-e429-470d-af45-4c80afdcf664.json b/packages/abnormal_security/kibana/dashboard/abnormal_security-f6562262-e429-470d-af45-4c80afdcf664.json new file mode 100644 index 000000000000..69b12bbe4dc1 --- /dev/null +++ b/packages/abnormal_security/kibana/dashboard/abnormal_security-f6562262-e429-470d-af45-4c80afdcf664.json @@ -0,0 +1,1063 @@ +{ + "attributes": { + "controlGroupInput": { + "chainingSystem": "HIERARCHICAL", + "controlStyle": "oneLine", + "ignoreParentSettingsJSON": { + "ignoreFilters": false, + "ignoreQuery": false, + "ignoreTimerange": false, + "ignoreValidations": false + }, + "panelsJSON": { + "60c5c177-c171-4478-aaf7-33bb5aa97d88": { + "explicitInput": { + "enhancements": {}, + "fieldName": "abnormal_security.case.severity_level", + "id": "60c5c177-c171-4478-aaf7-33bb5aa97d88", + "searchTechnique": "exact", + "title": "Severity Level" + }, + "grow": true, + "order": 2, + "type": "optionsListControl", + "width": "medium" + }, + "8726c0bc-00aa-4084-9da9-c55c0603f7c7": { + "explicitInput": { + "enhancements": {}, + "fieldName": "abnormal_security.case.remediation_status", + "grow": true, + "id": "8726c0bc-00aa-4084-9da9-c55c0603f7c7", + "searchTechnique": "prefix", + "title": "Remediation Status", + "width": "medium" + }, + "grow": true, + "order": 1, + "type": "optionsListControl", + "width": "medium" + }, + "a83f2335-8b79-4f09-a91d-3b4c472680e8": { + "explicitInput": { + "enhancements": {}, + "fieldName": "abnormal_security.case.status", + "grow": true, + "id": "a83f2335-8b79-4f09-a91d-3b4c472680e8", + "searchTechnique": "prefix", + "title": "Case Status", + "width": "medium" + }, + "grow": true, + "order": 0, + "type": "optionsListControl", + "width": "medium" + } + } + }, + "description": "This dashboard shows Case logs collected by the Abnormal Security integration.", + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "abnormal_security.case" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "abnormal_security.case" + } + } + } + ], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "optionsJSON": { + "hidePanelTitles": false, + "syncColors": false, + "syncCursor": true, + "syncTooltips": false, + "useMargins": true + }, + "panelsJSON": [ + { + "embeddableConfig": { + "enhancements": {}, + "savedVis": { + "data": { + "aggs": [], + "searchSource": { + "filter": [], + "query": { + "language": "kuery", + "query": "" + } + } + }, + "description": "", + "id": "", + "params": { + "fontSize": 12, + "markdown": "**Navigation**\n\n**Abnormal Security**\n\n- [AI Security Mailbox Overview](#/dashboard/abnormal_security-a4364503-ada3-4fe6-a054-d152accf207c)\n- [Audit Overview](#/dashboard/abnormal_security-37ed5d19-c753-43a0-b0a2-f8e6437ddfe5)\n- [**Case Overview (This Page)**](#/dashboard/abnormal_security-f6562262-e429-470d-af45-4c80afdcf664)\n- [Threat Overview](#/dashboard/abnormal_security-6a8e53ac-7759-4564-bcd6-03c6a9792eac)\n\n**Overview**\n\nThis dashboard displays key statistics and visualizations based on Case logs from the Abnormal Security integration. It includes the top 10 affected employees, a breakdown of events by remediation status, severity, analysis and status, as well as essential details about the Case data and total cases.\n\n[**Integrations Page**](/app/integrations/detail/abnormal_security/overview)", + "openLinksInNewTab": false + }, + "title": "", + "type": "markdown", + "uiState": {} + } + }, + "gridData": { + "h": 23, + "i": "2bb6c91f-2422-4267-9e2b-a801bb5ed541", + "w": 12, + "x": 0, + "y": 0 + }, + "panelIndex": "2bb6c91f-2422-4267-9e2b-a801bb5ed541", + "title": "Table of Content", + "type": "visualization" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-d8f5771a-eeb8-4e4e-ab91-0c49ea527910", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "d8f5771a-eeb8-4e4e-ab91-0c49ea527910": { + "columnOrder": [ + "39e5183f-14f8-4d35-b83d-5eea8cd74d4b" + ], + "columns": { + "39e5183f-14f8-4d35-b83d-5eea8cd74d4b": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Total Cases", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {} + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "color": "#6092C0", + "layerId": "d8f5771a-eeb8-4e4e-ab91-0c49ea527910", + "layerType": "data", + "metricAccessor": "39e5183f-14f8-4d35-b83d-5eea8cd74d4b" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsMetric" + }, + "enhancements": {}, + "hidePanelTitles": true + }, + "gridData": { + "h": 11, + "i": "3bdeee33-c138-47da-94ff-98253e939476", + "w": 16, + "x": 12, + "y": 0 + }, + "panelIndex": "3bdeee33-c138-47da-94ff-98253e939476", + "title": "", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-e0c4152f-8332-4aec-8e05-99a6931e9154", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "e0c4152f-8332-4aec-8e05-99a6931e9154": { + "columnOrder": [ + "376402d2-ff4b-4a9a-b8fb-7a5901674ef4", + "decfe94a-0745-44d0-a646-bdc78bb59696" + ], + "columns": { + "376402d2-ff4b-4a9a-b8fb-7a5901674ef4": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Remediation Status", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "decfe94a-0745-44d0-a646-bdc78bb59696", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 5 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.case.remediation_status" + }, + "decfe94a-0745-44d0-a646-bdc78bb59696": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "layers": [ + { + "categoryDisplay": "default", + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "e0c4152f-8332-4aec-8e05-99a6931e9154", + "layerType": "data", + "legendDisplay": "show", + "metrics": [ + "decfe94a-0745-44d0-a646-bdc78bb59696" + ], + "nestedLegend": false, + "numberDisplay": "percent", + "primaryGroups": [ + "376402d2-ff4b-4a9a-b8fb-7a5901674ef4" + ], + "truncateLegend": false + } + ], + "shape": "pie" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsPie" + }, + "enhancements": {} + }, + "gridData": { + "h": 11, + "i": "e4bfcebf-3ee1-41af-aca3-b60b2dc3e6e8", + "w": 20, + "x": 28, + "y": 0 + }, + "panelIndex": "e4bfcebf-3ee1-41af-aca3-b60b2dc3e6e8", + "title": "Cases by Remediation Status [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-10badbb6-752a-42c8-a3b0-894556f581fa", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "10badbb6-752a-42c8-a3b0-894556f581fa": { + "columnOrder": [ + "2b744e4f-40c8-41cb-a68f-ffaa19a46e0f", + "8deb7472-b519-40bf-a005-12dd37d7d71a" + ], + "columns": { + "2b744e4f-40c8-41cb-a68f-ffaa19a46e0f": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Severity", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "8deb7472-b519-40bf-a005-12dd37d7d71a", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.case.severity" + }, + "8deb7472-b519-40bf-a005-12dd37d7d71a": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "8deb7472-b519-40bf-a005-12dd37d7d71a" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "10badbb6-752a-42c8-a3b0-894556f581fa", + "layerType": "data", + "position": "top", + "seriesType": "bar_horizontal", + "showGridlines": false, + "xAccessor": "2b744e4f-40c8-41cb-a68f-ffaa19a46e0f" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "shouldTruncate": false + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "show" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 12, + "i": "ca37b426-e916-49b2-a23b-d107c1521078", + "w": 36, + "x": 12, + "y": 11 + }, + "panelIndex": "ca37b426-e916-49b2-a23b-d107c1521078", + "title": "Cases by Severity [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-19aa0c4f-26fc-478d-82be-0fe19d59683b", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "19aa0c4f-26fc-478d-82be-0fe19d59683b": { + "columnOrder": [ + "782a0423-0af9-419f-a967-b292a2190244", + "4996a2a2-cd1e-4603-8e6d-b28f5735f44b" + ], + "columns": { + "4996a2a2-cd1e-4603-8e6d-b28f5735f44b": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "782a0423-0af9-419f-a967-b292a2190244": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Affected Employee", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "4996a2a2-cd1e-4603-8e6d-b28f5735f44b", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": false, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.case.affected_employee" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "columns": [ + { + "columnId": "782a0423-0af9-419f-a967-b292a2190244", + "isTransposed": false + }, + { + "columnId": "4996a2a2-cd1e-4603-8e6d-b28f5735f44b", + "isTransposed": false + } + ], + "layerId": "19aa0c4f-26fc-478d-82be-0fe19d59683b", + "layerType": "data" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsDatatable" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "38a68b80-ba46-4d76-b78a-5bdf65239cc3", + "w": 24, + "x": 0, + "y": 23 + }, + "panelIndex": "38a68b80-ba46-4d76-b78a-5bdf65239cc3", + "title": "Top 10 Affected Employee [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-240aad27-a3c7-41fe-b35e-a338465718f2", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "currentIndexPatternId": "logs-*", + "layers": { + "240aad27-a3c7-41fe-b35e-a338465718f2": { + "columnOrder": [ + "ba263c1d-5dc1-4086-939c-23075b835eaf", + "7a2d513c-e986-4457-9edd-5bd05c65d684" + ], + "columns": { + "7a2d513c-e986-4457-9edd-5bd05c65d684": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "ba263c1d-5dc1-4086-939c-23075b835eaf": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Analysis", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "7a2d513c-e986-4457-9edd-5bd05c65d684", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "secondaryFields": [], + "size": 10 + }, + "scale": "ordinal", + "sourceField": "event.action" + } + }, + "incompleteColumns": {}, + "indexPatternId": "logs-*", + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "7a2d513c-e986-4457-9edd-5bd05c65d684" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "240aad27-a3c7-41fe-b35e-a338465718f2", + "layerType": "data", + "position": "top", + "seriesType": "bar_horizontal", + "showGridlines": false, + "xAccessor": "ba263c1d-5dc1-4086-939c-23075b835eaf" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "shouldTruncate": false + }, + "preferredSeriesType": "bar_horizontal", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "show" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 15, + "i": "9d8f7d6f-4e3b-4191-be31-718d245f12c2", + "w": 24, + "x": 24, + "y": 23 + }, + "panelIndex": "9d8f7d6f-4e3b-4191-be31-718d245f12c2", + "title": "Cases by Analysis [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "attributes": { + "references": [ + { + "id": "logs-*", + "name": "indexpattern-datasource-layer-52e9dcf6-9613-4ac0-ba23-6ef7946ca944", + "type": "index-pattern" + } + ], + "state": { + "adHocDataViews": {}, + "datasourceStates": { + "formBased": { + "layers": { + "52e9dcf6-9613-4ac0-ba23-6ef7946ca944": { + "columnOrder": [ + "a9c2d4dc-3308-4185-b9d2-420e5d0f35a2", + "9c1069c2-e701-4acc-b0ed-f80b0290db37" + ], + "columns": { + "9c1069c2-e701-4acc-b0ed-f80b0290db37": { + "customLabel": true, + "dataType": "number", + "isBucketed": false, + "label": "Count", + "operationType": "unique_count", + "params": { + "emptyAsNull": false, + "format": { + "id": "number", + "params": { + "decimals": 0 + } + } + }, + "scale": "ratio", + "sourceField": "event.id" + }, + "a9c2d4dc-3308-4185-b9d2-420e5d0f35a2": { + "customLabel": true, + "dataType": "string", + "isBucketed": true, + "label": "Status", + "operationType": "terms", + "params": { + "exclude": [], + "excludeIsRegex": false, + "include": [], + "includeIsRegex": false, + "missingBucket": false, + "orderBy": { + "columnId": "9c1069c2-e701-4acc-b0ed-f80b0290db37", + "type": "column" + }, + "orderDirection": "desc", + "otherBucket": true, + "parentFormat": { + "id": "terms" + }, + "size": 10 + }, + "scale": "ordinal", + "sourceField": "abnormal_security.case.status" + } + }, + "incompleteColumns": {}, + "sampling": 1 + } + } + }, + "indexpattern": { + "layers": {} + }, + "textBased": { + "layers": {} + } + }, + "filters": [], + "internalReferences": [], + "query": { + "language": "kuery", + "query": "" + }, + "visualization": { + "axisTitlesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "fittingFunction": "None", + "gridlinesVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "labelsOrientation": { + "x": 0, + "yLeft": 0, + "yRight": 0 + }, + "layers": [ + { + "accessors": [ + "9c1069c2-e701-4acc-b0ed-f80b0290db37" + ], + "colorMapping": { + "assignments": [], + "colorMode": { + "type": "categorical" + }, + "paletteId": "eui_amsterdam_color_blind", + "specialAssignments": [ + { + "color": { + "type": "loop" + }, + "rule": { + "type": "other" + }, + "touched": false + } + ] + }, + "layerId": "52e9dcf6-9613-4ac0-ba23-6ef7946ca944", + "layerType": "data", + "position": "top", + "seriesType": "bar", + "showGridlines": false, + "xAccessor": "a9c2d4dc-3308-4185-b9d2-420e5d0f35a2" + } + ], + "legend": { + "isVisible": true, + "position": "right", + "shouldTruncate": false + }, + "preferredSeriesType": "bar", + "tickLabelsVisibilitySettings": { + "x": true, + "yLeft": true, + "yRight": true + }, + "valueLabels": "show" + } + }, + "title": "", + "type": "lens", + "visualizationType": "lnsXY" + }, + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "e931b4fe-2549-4dec-afcf-d4b087ee117d", + "w": 48, + "x": 0, + "y": 38 + }, + "panelIndex": "e931b4fe-2549-4dec-afcf-d4b087ee117d", + "title": "Cases by Status [Logs Abnormal Security]", + "type": "lens" + }, + { + "embeddableConfig": { + "enhancements": {} + }, + "gridData": { + "h": 14, + "i": "8bd32713-657b-4f64-ae58-baf252cb30c0", + "w": 48, + "x": 0, + "y": 52 + }, + "panelIndex": "8bd32713-657b-4f64-ae58-baf252cb30c0", + "panelRefName": "panel_8bd32713-657b-4f64-ae58-baf252cb30c0", + "type": "search" + } + ], + "timeRestore": false, + "title": "[Logs Abnormal Security] Case Overview", + "version": 1 + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T10:24:26.261Z", + "id": "abnormal_security-f6562262-e429-470d-af45-4c80afdcf664", + "managed": false, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "3bdeee33-c138-47da-94ff-98253e939476:indexpattern-datasource-layer-d8f5771a-eeb8-4e4e-ab91-0c49ea527910", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "e4bfcebf-3ee1-41af-aca3-b60b2dc3e6e8:indexpattern-datasource-layer-e0c4152f-8332-4aec-8e05-99a6931e9154", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "ca37b426-e916-49b2-a23b-d107c1521078:indexpattern-datasource-layer-10badbb6-752a-42c8-a3b0-894556f581fa", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "38a68b80-ba46-4d76-b78a-5bdf65239cc3:indexpattern-datasource-layer-19aa0c4f-26fc-478d-82be-0fe19d59683b", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "9d8f7d6f-4e3b-4191-be31-718d245f12c2:indexpattern-datasource-layer-240aad27-a3c7-41fe-b35e-a338465718f2", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "e931b4fe-2549-4dec-afcf-d4b087ee117d:indexpattern-datasource-layer-52e9dcf6-9613-4ac0-ba23-6ef7946ca944", + "type": "index-pattern" + }, + { + "id": "abnormal_security-5a32aa45-1ea0-4b68-9c06-53425f4e2deb", + "name": "8bd32713-657b-4f64-ae58-baf252cb30c0:panel_8bd32713-657b-4f64-ae58-baf252cb30c0", + "type": "search" + }, + { + "id": "logs-*", + "name": "controlGroup_60c5c177-c171-4478-aaf7-33bb5aa97d88:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_8726c0bc-00aa-4084-9da9-c55c0603f7c7:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "controlGroup_a83f2335-8b79-4f09-a91d-3b4c472680e8:optionsListDataView", + "type": "index-pattern" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-abnormal_security-security-solution-default", + "type": "tag" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "dashboard", + "typeMigrationVersion": "8.9.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/search/abnormal_security-5a32aa45-1ea0-4b68-9c06-53425f4e2deb.json b/packages/abnormal_security/kibana/search/abnormal_security-5a32aa45-1ea0-4b68-9c06-53425f4e2deb.json new file mode 100644 index 000000000000..a22bef4fba82 --- /dev/null +++ b/packages/abnormal_security/kibana/search/abnormal_security-5a32aa45-1ea0-4b68-9c06-53425f4e2deb.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "columns": [ + "event.id", + "abnormal_security.case.affected_employee", + "event.action", + "abnormal_security.case.severity", + "abnormal_security.case.remediation_status", + "abnormal_security.case.status" + ], + "description": "", + "grid": {}, + "hideChart": false, + "isTextBasedQuery": false, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "abnormal_security.case" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "abnormal_security.case" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "timeRestore": false, + "title": "Cases Essential Details [Logs Abnormal Security]", + "usesAdHocDataView": false + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T10:20:20.422Z", + "id": "abnormal_security-5a32aa45-1ea0-4b68-9c06-53425f4e2deb", + "managed": true, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-abnormal_security-security-solution-default", + "type": "tag" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "search", + "typeMigrationVersion": "10.2.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/search/abnormal_security-a2d86921-d69f-4f99-a9eb-88a7ba0b2923.json b/packages/abnormal_security/kibana/search/abnormal_security-a2d86921-d69f-4f99-a9eb-88a7ba0b2923.json new file mode 100644 index 000000000000..69cc936929be --- /dev/null +++ b/packages/abnormal_security/kibana/search/abnormal_security-a2d86921-d69f-4f99-a9eb-88a7ba0b2923.json @@ -0,0 +1,86 @@ +{ + "attributes": { + "columns": [ + "cloud.account.name", + "event.action", + "event.reason", + "event.outcome", + "user.email", + "abnormal_security.audit.category" + ], + "description": "", + "grid": {}, + "hideChart": false, + "isTextBasedQuery": false, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "abnormal_security.audit" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "abnormal_security.audit" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "timeRestore": false, + "title": "Audit Essential Details [Logs Abnormal Security]", + "usesAdHocDataView": false + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T10:20:20.422Z", + "id": "abnormal_security-a2d86921-d69f-4f99-a9eb-88a7ba0b2923", + "managed": true, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-abnormal_security-security-solution-default", + "type": "tag" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "search", + "typeMigrationVersion": "10.2.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/search/abnormal_security-e34b2986-68c2-4de9-8601-7bdefab429bc.json b/packages/abnormal_security/kibana/search/abnormal_security-e34b2986-68c2-4de9-8601-7bdefab429bc.json new file mode 100644 index 000000000000..cc610a473a38 --- /dev/null +++ b/packages/abnormal_security/kibana/search/abnormal_security-e34b2986-68c2-4de9-8601-7bdefab429bc.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "columns": [ + "email.from.address", + "email.to.address", + "email.subject", + "abnormal_security.threat.remediation_status", + "abnormal_security.threat.summary_insights" + ], + "description": "", + "grid": {}, + "hideChart": false, + "isTextBasedQuery": false, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "abnormal_security.threat" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "abnormal_security.threat" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "timeRestore": false, + "title": "Threat Essential Details [Logs Abnormal Security]", + "usesAdHocDataView": false + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T10:20:20.422Z", + "id": "abnormal_security-e34b2986-68c2-4de9-8601-7bdefab429bc", + "managed": true, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-abnormal_security-security-solution-default", + "type": "tag" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "search", + "typeMigrationVersion": "10.2.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/search/abnormal_security-ecec7bf6-c7a6-4fb4-8054-863c5a1a666e.json b/packages/abnormal_security/kibana/search/abnormal_security-ecec7bf6-c7a6-4fb4-8054-863c5a1a666e.json new file mode 100644 index 000000000000..8734ffbfb2f4 --- /dev/null +++ b/packages/abnormal_security/kibana/search/abnormal_security-ecec7bf6-c7a6-4fb4-8054-863c5a1a666e.json @@ -0,0 +1,85 @@ +{ + "attributes": { + "columns": [ + "abnormal_security.ai_security_mailbox.campaign_id", + "email.from.address", + "email.subject", + "email.to.address", + "event.action" + ], + "description": "", + "grid": {}, + "hideChart": false, + "isTextBasedQuery": false, + "kibanaSavedObjectMeta": { + "searchSourceJSON": { + "filter": [ + { + "$state": { + "store": "appState" + }, + "meta": { + "alias": null, + "disabled": false, + "field": "data_stream.dataset", + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "key": "data_stream.dataset", + "negate": false, + "params": { + "query": "abnormal_security.ai_security_mailbox" + }, + "type": "phrase" + }, + "query": { + "match_phrase": { + "data_stream.dataset": "abnormal_security.ai_security_mailbox" + } + } + } + ], + "indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index", + "query": { + "language": "kuery", + "query": "" + } + } + }, + "sort": [ + [ + "@timestamp", + "desc" + ] + ], + "timeRestore": false, + "title": "AI Security Mailbox Essential Details [Logs Abnormal Security]", + "usesAdHocDataView": false + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T10:20:20.422Z", + "id": "abnormal_security-ecec7bf6-c7a6-4fb4-8054-863c5a1a666e", + "managed": true, + "references": [ + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.index", + "type": "index-pattern" + }, + { + "id": "logs-*", + "name": "kibanaSavedObjectMeta.searchSourceJSON.filter[0].meta.index", + "type": "index-pattern" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-abnormal_security-security-solution-default", + "type": "tag" + }, + { + "id": "abnormal_security-security-solution-default", + "name": "tag-ref-security-solution-default", + "type": "tag" + } + ], + "type": "search", + "typeMigrationVersion": "10.2.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/tag/abnormal_security-security-solution-default.json b/packages/abnormal_security/kibana/tag/abnormal_security-security-solution-default.json new file mode 100644 index 000000000000..982e2282b973 --- /dev/null +++ b/packages/abnormal_security/kibana/tag/abnormal_security-security-solution-default.json @@ -0,0 +1,14 @@ +{ + "attributes": { + "color": "#A0A0A0", + "description": "Tag defined in package-spec", + "name": "Security Solution" + }, + "coreMigrationVersion": "8.8.0", + "created_at": "2024-08-06T08:58:20.922Z", + "id": "abnormal_security-security-solution-default", + "managed": false, + "references": [], + "type": "tag", + "typeMigrationVersion": "8.0.0" +} \ No newline at end of file diff --git a/packages/abnormal_security/kibana/tags.yml b/packages/abnormal_security/kibana/tags.yml new file mode 100644 index 000000000000..47f20a8f5519 --- /dev/null +++ b/packages/abnormal_security/kibana/tags.yml @@ -0,0 +1,4 @@ +- text: Security Solution + asset_types: + - dashboard + - search diff --git a/packages/abnormal_security/manifest.yml b/packages/abnormal_security/manifest.yml new file mode 100644 index 000000000000..bb86b81cabbf --- /dev/null +++ b/packages/abnormal_security/manifest.yml @@ -0,0 +1,104 @@ +format_version: 3.2.1 +name: abnormal_security +title: Abnormal Security +version: 0.1.0 +description: Collect logs from Abnormal Security with Elastic Agent. +type: integration +categories: + - security +conditions: + kibana: + version: ^8.13.0 + elastic: + subscription: basic +screenshots: + - src: /img/abnormal_security-ai_security_mailbox_overview.png + title: AI Security Mailbox Overview Dashboard + size: 600x600 + type: image/png + - src: /img/abnormal_security-audit_overview.png + title: Audit Overview Dashboard + size: 600x600 + type: image/png + - src: /img/abnormal_security-case_overview.png + title: Case Overview Dashboard + size: 600x600 + type: image/png + - src: /img/abnormal_security-threat_overview.png + title: Threat Overview Dashboard + size: 600x600 + type: image/png +icons: + - src: /img/abnormal-security-logo.svg + title: Abnormal Security Logo + size: 32x32 + type: image/svg+xml + - src: /img/abnormal-security-logo-dark.svg + title: Abnormal Security Logo + size: 32x32 + type: image/svg+xml + dark_mode: true +policy_templates: + - name: abnormal_security + title: Abnormal Security logs + description: Collect Abnormal Security logs. + inputs: + - type: cel + title: Collect Abnormal Security logs via API + description: Collecting Abnormal Security logs via API. + vars: + - name: url + type: url + title: URL + default: https://api.abnormalplatform.com + description: By default, the URL is set to `https://api.abnormalplatform.com`. We have observed that Abnormal Security Base URL changes based on location so find your own base URL. + multi: false + required: true + show_user: false + - name: access_token + type: password + title: Access Token + description: Access Token used to authenticate the requests. + multi: false + required: true + show_user: true + secret: true + - name: proxy_url + type: text + title: Proxy URL + multi: false + required: false + show_user: false + description: URL to proxy connections in the form of http[s]://:@:. Please ensure your username and password are in URL encoded format. + - name: ssl + type: yaml + title: SSL Configuration + description: i.e. certificate_authorities, supported_protocols, verification_mode etc. + multi: false + required: false + show_user: false + default: | + #certificate_authorities: + # - | + # -----BEGIN CERTIFICATE----- + # MIIDCjCCAfKgAwIBAgITJ706Mu2wJlKckpIvkWxEHvEyijANBgkqhkiG9w0BAQsF + # ADAUMRIwEAYDVQQDDAlsb2NhbGhvc3QwIBcNMTkwNzIyMTkyOTA0WhgPMjExOTA2 + # MjgxOTI5MDRaMBQxEjAQBgNVBAMMCWxvY2FsaG9zdDCCASIwDQYJKoZIhvcNAQEB + # BQADggEPADCCAQoCggEBANce58Y/JykI58iyOXpxGfw0/gMvF0hUQAcUrSMxEO6n + # fZRA49b4OV4SwWmA3395uL2eB2NB8y8qdQ9muXUdPBWE4l9rMZ6gmfu90N5B5uEl + # 94NcfBfYOKi1fJQ9i7WKhTjlRkMCgBkWPkUokvBZFRt8RtF7zI77BSEorHGQCk9t + # /D7BS0GJyfVEhftbWcFEAG3VRcoMhF7kUzYwp+qESoriFRYLeDWv68ZOvG7eoWnP + # PsvZStEVEimjvK5NSESEQa9xWyJOmlOKXhkdymtcUd/nXnx6UTCFgnkgzSdTWV41 + # CI6B6aJ9svCTI2QuoIq2HxX/ix7OvW1huVmcyHVxyUECAwEAAaNTMFEwHQYDVR0O + # BBYEFPwN1OceFGm9v6ux8G+DZ3TUDYxqMB8GA1UdIwQYMBaAFPwN1OceFGm9v6ux + # 8G+DZ3TUDYxqMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAG5D + # 874A4YI7YUwOVsVAdbWtgp1d0zKcPRR+r2OdSbTAV5/gcS3jgBJ3i1BN34JuDVFw + # 3DeJSYT3nxy2Y56lLnxDeF8CUTUtVQx3CuGkRg1ouGAHpO/6OqOhwLLorEmxi7tA + # H2O8mtT0poX5AnOAhzVy7QW0D/k4WaoLyckM5hUa6RtvgvLxOwA0U+VGurCDoctu + # 8F4QOgTAWyh8EZIwaKCliFRSynDpv3JTUwtfZkxo6K6nce1RhCWFAsMvDZL8Dgc0 + # yvgJ38BRsFOtkRuAGSf6ZUwTO8JJRRIFnpUzXflAnGivK9M13D5GEQMmIl6U9Pvk + # sxSmbIUfc2SGJGCJD4I= + # -----END CERTIFICATE----- +owner: + github: elastic/security-service-integrations + type: elastic diff --git a/packages/abnormal_security/validation.yml b/packages/abnormal_security/validation.yml new file mode 100644 index 000000000000..1189aa63c894 --- /dev/null +++ b/packages/abnormal_security/validation.yml @@ -0,0 +1,3 @@ +errors: + exclude_checks: + - SVR00004 # References in dashboards. From ce1559d69199632f21f39217507875f4c0dc052a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?R=C3=B4mulo=20Farias?= Date: Fri, 9 Aug 2024 13:51:53 +0200 Subject: [PATCH 58/77] Add `related.entity` field (#10706) * Add `related.entities` field * Fix changelog * Change to `related.entity` --- packages/cloud_security_posture/changelog.yml | 5 +++++ .../data_stream/findings/fields/related.yml | 5 +++++ packages/cloud_security_posture/manifest.yml | 2 +- 3 files changed, 11 insertions(+), 1 deletion(-) create mode 100644 packages/cloud_security_posture/data_stream/findings/fields/related.yml diff --git a/packages/cloud_security_posture/changelog.yml b/packages/cloud_security_posture/changelog.yml index cb989adba35b..0a747f7e9697 100644 --- a/packages/cloud_security_posture/changelog.yml +++ b/packages/cloud_security_posture/changelog.yml @@ -9,6 +9,11 @@ # 1.4.x - 8.9.x # 1.3.x - 8.8.x # 1.2.x - 8.7.x +- version: "1.11.0-preview02" + changes: + - description: Add `related.entity` to cspm + type: enhancement + link: https://github.com/elastic/integrations/pull/10706 - version: "1.11.0-preview01" changes: - description: Bump up pre-release version diff --git a/packages/cloud_security_posture/data_stream/findings/fields/related.yml b/packages/cloud_security_posture/data_stream/findings/fields/related.yml new file mode 100644 index 000000000000..aea1a36c629f --- /dev/null +++ b/packages/cloud_security_posture/data_stream/findings/fields/related.yml @@ -0,0 +1,5 @@ +- name: related + type: group + fields: + - name: entity + type: keyword \ No newline at end of file diff --git a/packages/cloud_security_posture/manifest.yml b/packages/cloud_security_posture/manifest.yml index 16e91be382c9..9b19c1781c42 100644 --- a/packages/cloud_security_posture/manifest.yml +++ b/packages/cloud_security_posture/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: cloud_security_posture title: "Security Posture Management" -version: "1.11.0-preview01" +version: "1.11.0-preview02" source: license: "Elastic-2.0" description: "Identify & remediate configuration risks in your Cloud infrastructure" From 81da2868b3796fa0bb4664a9c6aaed6939ccb574 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?R=C3=B4mulo=20Farias?= Date: Fri, 9 Aug 2024 13:52:02 +0200 Subject: [PATCH 59/77] Rename from `related.entities` to `related.entity` (#10719) * Rename from `related.entities` to `related.entity` * Update change log PR --- packages/cloud_asset_inventory/changelog.yml | 5 +++++ .../data_stream/asset_inventory/fields/related.yml | 2 +- packages/cloud_asset_inventory/manifest.yml | 2 +- 3 files changed, 7 insertions(+), 2 deletions(-) diff --git a/packages/cloud_asset_inventory/changelog.yml b/packages/cloud_asset_inventory/changelog.yml index c7bea33657d9..cc4f3fe0cec6 100644 --- a/packages/cloud_asset_inventory/changelog.yml +++ b/packages/cloud_asset_inventory/changelog.yml @@ -1,6 +1,11 @@ # newer versions go on top # version map: # 0.1.x - 8.15.x +- version: "0.1.7" + changes: + - description: Update from related.entities to related.entity + type: enhancement + link: https://github.com/elastic/integrations/pull/10719 - version: "0.1.6" changes: - description: Add related.entities field diff --git a/packages/cloud_asset_inventory/data_stream/asset_inventory/fields/related.yml b/packages/cloud_asset_inventory/data_stream/asset_inventory/fields/related.yml index c1af043483ab..aea1a36c629f 100644 --- a/packages/cloud_asset_inventory/data_stream/asset_inventory/fields/related.yml +++ b/packages/cloud_asset_inventory/data_stream/asset_inventory/fields/related.yml @@ -1,5 +1,5 @@ - name: related type: group fields: - - name: entities + - name: entity type: keyword \ No newline at end of file diff --git a/packages/cloud_asset_inventory/manifest.yml b/packages/cloud_asset_inventory/manifest.yml index b52c34afaad7..7814836ae993 100644 --- a/packages/cloud_asset_inventory/manifest.yml +++ b/packages/cloud_asset_inventory/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: cloud_asset_inventory title: "Cloud Asset Inventory" -version: "0.1.6" +version: "0.1.7" source: license: "Elastic-2.0" description: "Discover and Create Cloud Assets Inventory" From 5201e974e1a8a26ec8c081ce3f6c62c6b9723d1f Mon Sep 17 00:00:00 2001 From: Mario Rodriguez Molins Date: Fri, 9 Aug 2024 17:23:41 +0200 Subject: [PATCH 60/77] [CI] Update label in schedule daily job definition as part of the automation (#10722) Update label step in the schedule daily job using updatecli so it gets updated with the latest snapshot version (major and minor) accordingly with the STACK_VERSION value. --- .../bump-latest-snapshot-version.yml | 20 +++++++++++++++++++ 1 file changed, 20 insertions(+) diff --git a/.github/workflows/updatecli/updatecli.d/bump-latest-snapshot-version.yml b/.github/workflows/updatecli/updatecli.d/bump-latest-snapshot-version.yml index d4ca8b55c396..0943b8dab10c 100644 --- a/.github/workflows/updatecli/updatecli.d/bump-latest-snapshot-version.yml +++ b/.github/workflows/updatecli/updatecli.d/bump-latest-snapshot-version.yml @@ -31,6 +31,16 @@ sources: spec: file: https://storage.googleapis.com/artifacts-api/snapshots/main.json key: .version + latestSnapshotMajorMinor: + name: Get latest snapshort major and minor + kind: json + spec: + file: https://storage.googleapis.com/artifacts-api/snapshots/main.json + key: .version + transformers: + - findsubmatch: + pattern: '(^\d+\.\d+)\.[^\s]+$' + captureindex: 1 targets: update-snapshot: @@ -42,3 +52,13 @@ targets: file: '.buildkite/pipeline.schedule-daily.yml' matchpattern: '(STACK_VERSION:) 8\.[^\s]*\.[^\s]*' replacepattern: '$1 {{ source "latestSnapshot" }}' + + update-snapshot-label: + name: '[updatecli] Update latest snapshot label step to {{ source "latestSnapshotMajorMinor" }}' + kind: file + sourceid: latestSnapshotMajorMinor + scmid: default + spec: + file: '.buildkite/pipeline.schedule-daily.yml' + matchpattern: '(Stack Version) v8\.\d+"' + replacepattern: 'Stack Version v{{ source "latestSnapshotMajorMinor" }}"' From b87c60763886d67913e4abdc06cfe8523dc09271 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Chema=20Mart=C3=ADnez?= Date: Fri, 9 Aug 2024 17:31:00 +0200 Subject: [PATCH 61/77] [Keycloak] Fix missing value in pipeline condition (#10751) Fixed a condition in a drop processor for the Keycloak ingest pipeline, where the value was missing. --- packages/keycloak/changelog.yml | 5 +++++ .../elasticsearch/ingest_pipeline/default.yml | 19 +++++++++++++++---- .../elasticsearch/ingest_pipeline/events.yml | 18 +++++++++++------- packages/keycloak/manifest.yml | 2 +- 4 files changed, 32 insertions(+), 12 deletions(-) diff --git a/packages/keycloak/changelog.yml b/packages/keycloak/changelog.yml index ae931977bd64..3db5d3fdc48d 100644 --- a/packages/keycloak/changelog.yml +++ b/packages/keycloak/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.22.3" + changes: + - description: Fix missing value in pipeline condition. + type: bugfix + link: https://github.com/elastic/integrations/pull/10751 - version: "1.22.2" changes: - description: Enhanced kv processor to trim escape sequences properly. diff --git a/packages/keycloak/data_stream/log/elasticsearch/ingest_pipeline/default.yml b/packages/keycloak/data_stream/log/elasticsearch/ingest_pipeline/default.yml index 635d7cc5d4ca..5b97c65255a0 100644 --- a/packages/keycloak/data_stream/log/elasticsearch/ingest_pipeline/default.yml +++ b/packages/keycloak/data_stream/log/elasticsearch/ingest_pipeline/default.yml @@ -9,14 +9,17 @@ processors: target_field: event.original ignore_missing: true if: ctx.event?.original == null + tag: rename_event_original - grok: field: event.original patterns: - "%{TIMESTAMP_ISO8601:_tmp.timestamp} %{LOGLEVEL:log.level}%{SPACE}\\[%{JAVACLASS:log.logger}\\] \\(%{DATA:process.thread.name}\\) (?(.|\r|\n)*)" + tag: grok_event_original - set: field: event.timezone value: "{{_tmp.tz_offset}}" if: ctx._tmp?.tz_offset != null && ctx._tmp?.tz_offset != 'local' + tag: set_event_timezone - date: field: _tmp.timestamp target_field: '@timestamp' @@ -24,29 +27,36 @@ processors: formats: - yyyy-MM-dd HH:mm:ss,SSS if: ctx.event?.timezone != null + tag: date_timestamp_timezone - date: field: _tmp.timestamp target_field: '@timestamp' formats: - yyyy-MM-dd HH:mm:ss,SSS if: ctx.event?.timezone == null + tag: date_timestamp_no_timezone - pipeline: name: '{{ IngestPipeline "events" }}' if: "ctx.log?.logger == 'org.keycloak.events'" + tag: pipeline_events - drop: - if: "ctx._tmp?.only_user_events && ctx.log?.logger != 'org.keycloak.events'" + if: "ctx._tmp?.only_user_events == true && ctx.log?.logger != 'org.keycloak.events'" + tag: drop_user_events - remove: field: - _tmp ignore_missing: true + tag: remove_tmp - remove: field: event.original if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" ignore_failure: true ignore_missing: true + tag: remove_event_original - script: lang: painless description: This script processor iterates over the whole document to remove fields with null values. + tag: painless_remove_null source: | void handleMap(Map map) { for (def x : map.values()) { @@ -70,9 +80,10 @@ processors: } handleMap(ctx); on_failure: + - append: + field: error.message + value: |- + Processor "{{ _ingest.on_failure_processor_type }}" with tag "{{ _ingest.on_failure_processor_tag }}" in pipeline "{{ _ingest.on_failure_pipeline }}" failed with message "{{ _ingest.on_failure_message }}" - set: field: event.kind value: pipeline_error - - append: - field: error.message - value: '{{{ _ingest.on_failure_message }}}' diff --git a/packages/keycloak/data_stream/log/elasticsearch/ingest_pipeline/events.yml b/packages/keycloak/data_stream/log/elasticsearch/ingest_pipeline/events.yml index 1ea132c5442b..387939ee53f5 100644 --- a/packages/keycloak/data_stream/log/elasticsearch/ingest_pipeline/events.yml +++ b/packages/keycloak/data_stream/log/elasticsearch/ingest_pipeline/events.yml @@ -8,6 +8,7 @@ processors: value_split: "=" trim_value: "\\\\\"" ignore_missing: true + tag: kv_message - rename: field: json.type target_field: keycloak.login.type @@ -132,6 +133,7 @@ processors: - 'groups/%{UUID:group.id}' ignore_failure: true ignore_missing: true + tag: grok_admin_resource_path - set: field: event.kind value: event @@ -209,11 +211,13 @@ processors: field: - message - json - ignore_missing: true + ignore_missing: true + tag: remove_message_json on_failure: -- set: - field: event.kind - value: pipeline_error -- append: - field: error.message - value: '{{{ _ingest.on_failure_message }}}' + - append: + field: error.message + value: |- + Processor "{{ _ingest.on_failure_processor_type }}" with tag "{{ _ingest.on_failure_processor_tag }}" in pipeline "{{ _ingest.on_failure_pipeline }}" failed with message "{{ _ingest.on_failure_message }}" + - set: + field: event.kind + value: pipeline_error diff --git a/packages/keycloak/manifest.yml b/packages/keycloak/manifest.yml index d9733c1b2a19..3cbc3579aa5a 100644 --- a/packages/keycloak/manifest.yml +++ b/packages/keycloak/manifest.yml @@ -1,6 +1,6 @@ name: keycloak title: Keycloak -version: "1.22.2" +version: "1.22.3" description: Collect logs from Keycloak with Elastic Agent. type: integration format_version: "3.0.3" From 5799b4f516ed10c6f3dfa2eb5554d2d51a9ed7a7 Mon Sep 17 00:00:00 2001 From: Kirti Sodhi <109447885+sodhikirti07@users.noreply.github.com> Date: Fri, 9 Aug 2024 12:20:54 -0400 Subject: [PATCH 62/77] [DED] Add transform to the Data Exfiltration Detection package (#10726) Added pivot transform to the DED package --- packages/ded/changelog.yml | 5 + packages/ded/docs/README.md | 32 ++- .../pivot_transform/fields/fields.yml | 30 +++ .../transform/pivot_transform/transform.yml | 92 +++++++++ packages/ded/img/ded_transform_1.png | Bin 0 -> 253818 bytes packages/ded/img/ded_transform_2.png | Bin 0 -> 340557 bytes packages/ded/img/ded_transform_3.png | Bin 0 -> 347375 bytes packages/ded/img/ded_transform_4.png | Bin 0 -> 421547 bytes packages/ded/kibana/ml_module/ded-ml.json | 188 ------------------ packages/ded/manifest.yml | 4 +- 10 files changed, 159 insertions(+), 192 deletions(-) create mode 100644 packages/ded/elasticsearch/transform/pivot_transform/fields/fields.yml create mode 100644 packages/ded/elasticsearch/transform/pivot_transform/transform.yml create mode 100644 packages/ded/img/ded_transform_1.png create mode 100644 packages/ded/img/ded_transform_2.png create mode 100644 packages/ded/img/ded_transform_3.png create mode 100644 packages/ded/img/ded_transform_4.png diff --git a/packages/ded/changelog.yml b/packages/ded/changelog.yml index 6c45e9da375b..52949ceaac85 100644 --- a/packages/ded/changelog.yml +++ b/packages/ded/changelog.yml @@ -1,3 +1,8 @@ +- version: "2.2.0" + changes: + - description: Add transform to Data Exfiltration Detection package + type: enhancement + link: https://github.com/elastic/integrations/pull/10726 - version: "2.1.2" changes: - description: Improve package installation documentation diff --git a/packages/ded/docs/README.md b/packages/ded/docs/README.md index 73db750195b4..9af8746780ea 100644 --- a/packages/ded/docs/README.md +++ b/packages/ded/docs/README.md @@ -1,6 +1,6 @@ # Data Exfiltration Detection -The Data Exfiltration Detection (DED) package contains assets for detecting data exfiltration in network and file data. This package requires a Platinum subscription. Please ensure that you have a Trial or Platinum level subscription installed on your cluster before proceeding. This package is licensed under [Elastic License 2.0](https://www.elastic.co/licensing/elastic-license). +The Data Exfiltration Detection (DED) package contains assets for detecting data exfiltration in network and file data. Data Exfiltration Detection package currently supports only unidirectional flows and does not yet accommodate bi-directional flows. This package requires a Platinum subscription. Please ensure that you have a Trial or Platinum level subscription installed on your cluster before proceeding. This package is licensed under [Elastic License 2.0](https://www.elastic.co/licensing/elastic-license). For more detailed information refer to the following blog: - [Detect data exfiltration activity with Kibana’s new integration](https://www.elastic.co/blog/detect-data-exfiltration-activity-with-kibanas-new-integration) @@ -9,6 +9,12 @@ For more detailed information refer to the following blog: 1. **Upgrading**: If upgrading from a version below v2.0.0, see the section v2.0.0 and beyond. 1. **Add the Integration Package**: Install the package via **Management > Integrations > Add Data Exfiltration Detection**. Configure the integration name and agent policy. Click Save and Continue. 1. **Install assets**: Install the assets by clicking **Settings > Install Data Exfiltration Detection assets**. +1. **Check the health of the transform**: The transform is scheduled to run every 30 minutes. This transform creates the index `ml_network_ded-`. To check the health of the transform go to **Management > Stack Management > Data > Transforms** under `logs-ded.pivot_transform-default-`. Follow the instructions under the header `Customize Data Exfiltration Detection Transform` below to adjust filters based on your environment's needs. +1. **Create data views for anomaly detection jobs**: The anomaly detection jobs under this package rely on two indices. One has file events (`logs-endpoint.events.file-*`), and the other index (`ml_network_ded.all`) collects network logs from a transform. Before enabling the anomaly detection jobs, create a data view with both index patterns. + 1. Go to **Stack Management > Kibana > Data Views** and click **Create data view**. + 1. Enter the name of your respective index patterns in the **Index pattern** box, i.e., `logs-endpoint.events.file-*, ml_network_ded.all`, and copy the same in the **Name** field. + 1. Select `@timestamp` under the **Timestamp** field and click on **Save data view to Kibana**. + 1. Use the new data view (`logs-endpoint.events.file-*, ml_network_ded.all`) to create anomaly detection jobs for this package. 1. **Add preconfigured anomaly detection jobs**: In **Machine Learning > Anomaly Detection**, when you create a job, you should see an option to `Use preconfigured jobs` with a card for **Data Exfiltration Detection**. When you select the card, you will see a pre-configured anomaly detection job that you can enable depending on what makes the most sense for your environment. **_Note_**: In the Machine Learning app, these configurations are available only when data exists that matches the query specified in the [ded-ml file](https://github.com/elastic/integrations/blob/main/packages/ded/kibana/ml_module/ded-ml.json#L10). For example, this would be available in `logs-endpoint.events.*` if you used Elastic Defend to collect events. 1. **Data view configuration for Dashboards**: For the dashboard to work as expected, the following settings need to be configured in Kibana. 1. You have started the above anomaly detection jobs. @@ -23,6 +29,28 @@ For more detailed information refer to the following blog: ![Data Exfiltration Detection Rules](../img/dedrules.png) *In Security > Rules, filtering with the “Use Case: Data Exfiltration Detection” tag* +## Transform + +To inspect the installed assets, you can navigate to **Stack Management > Data > Transforms**. + +| Transform name | Purpose | Source index | Destination index | Alias | +|---------------------|----------------------------------------------|----------------|---------------------------|--------------------| +| ded.pivot_transform | Collects network logs from your environment | logs-* | ml_network_ded-[version] | ml_network_ded.all | + +When querying the destination index (`ml_network_ded-`) for network logs, we advise using the alias for the destination index (`ml_network_ded.all`). In the event that the underlying package is upgraded, the alias will aid in maintaining the previous findings. + +## Customize Data Exfiltration Detection Transform + +To customize filters in the Data Exfiltration Detection transform, follow the below steps. You can use these instructions to add or remove filters for fields such as `process.name`, `source.ip`, `destination.ip`, and others. +1. Go to **Stack Management > Data > Transforms > `logs-ded.pivot_transform-default-`**. +1. Click on the **Actions** bar at the far right of the transform and select the **Clone** option. +![Data Exfiltration Detection Rules](../img/ded_transform_1.png) +1. In the new **Clone transform** window, go to the **Search filter** and update any field values you want to add or remove. Click on the **Apply changes** button on the right side to save these changes. **Note:** The image below shows an example of filtering a new `process.name` as `explorer.exe`. You can follow a similar example and update the field value list based on your environment to help reduce noise and potential false positives. +![Data Exfiltration Detection Rules](../img/ded_transform_2.png) +1. Scroll down and select the **Next** button at the bottom right. Under the **Transform details** section, enter a new **Transform ID** and **Destination index** of your choice, then click on the **Next** button. +![Data Exfiltration Detection Rules](../img/ded_transform_3.png) +1. Lastly, select the **Create and Start** option. Your updated transform will now start collecting data. **Note:** Do not forget to update your data view based on the new **Destination index** you have just created. +![Data Exfiltration Detection Rules](../img/ded_transform_4.png) ## Dashboard After the data view for the dashboard is configured, the **Data Exfiltration Detection Dashboard** is available under **Analytics > Dashboard**. This dashboard gives an overview of anomalies triggered for the data exfiltration detection package. @@ -69,4 +97,4 @@ In version 2.1.1, the package ignores data in cold and frozen data tiers to redu ## Licensing -Usage in production requires that you have a license key that permits use of machine learning features. \ No newline at end of file +Usage in production requires that you have a license key that permits use of machine learning features. diff --git a/packages/ded/elasticsearch/transform/pivot_transform/fields/fields.yml b/packages/ded/elasticsearch/transform/pivot_transform/fields/fields.yml new file mode 100644 index 000000000000..5e6ab383adc2 --- /dev/null +++ b/packages/ded/elasticsearch/transform/pivot_transform/fields/fields.yml @@ -0,0 +1,30 @@ +- name: host.name + type: keyword +- name: user.name + type: keyword +- name: event.category + type: keyword +- name: network.direction + type: keyword +- name: destination.port + type: long +- name: destination.ip + type: ip +- name: source.ip + type: ip +- name: process.name + type: keyword +- name: '@timestamp' + type: date +- name: destination.geo.continent_name + type: keyword +- name: destination.geo.country_name + type: keyword +- name: destination.geo.country_iso_code + type: keyword +- name: destination.geo.region_name + type: keyword +- name: destination.geo.city_name + type: keyword +- name: source.bytes + type: double \ No newline at end of file diff --git a/packages/ded/elasticsearch/transform/pivot_transform/transform.yml b/packages/ded/elasticsearch/transform/pivot_transform/transform.yml new file mode 100644 index 000000000000..cf413c923d21 --- /dev/null +++ b/packages/ded/elasticsearch/transform/pivot_transform/transform.yml @@ -0,0 +1,92 @@ + +dest: + index: ml_network_ded-2.2.0 + aliases: + - alias: ml_network_ded.latest + move_on_creation: true + - alias: ml_network_ded.all + move_on_creation: false +description: This transform runs every 30 minutes and collects network logs to detect data exfiltration in your environment for the past month up to the runtime. +frequency: 30m +pivot: + aggregations: + "@timestamp": + max: + field: "@timestamp" + source.bytes: + avg: + field: source.bytes + group_by: + 'host.name': + terms: + field: host.name + 'user.name': + terms: + field: user.name + 'network.direction': + terms: + field: network.direction + 'event.category': + terms: + field: event.category + 'source.ip': + terms: + field: source.ip + 'destination.ip': + terms: + field: destination.ip + 'destination.port': + terms: + field: destination.port + 'destination.geo.continent_name': + terms: + field: destination.geo.continent_name + 'destination.geo.country_name': + terms: + field: destination.geo.country_name + 'destination.geo.country_iso_code': + terms: + field: destination.geo.country_iso_code + 'destination.geo.region_name': + terms: + field: destination.geo.region_name + 'destination.geo.city_name': + terms: + field: destination.geo.city_name + 'process.name': + terms: + field: process.name +source: + index: logs-* + query: + bool: + filter: + - range: + '@timestamp': + gte: now-1M + - term: + 'event.category': + value: network + - exists: + field: source.bytes + - exists: + field: destination.port + - terms: + 'source.ip': ["192.168.0.0/16","10.0.0.0/8","172.16.0.0/12"] + must_not: + - term: + 'source.bytes': + value: 0 + - terms: + 'network.direction': [ "internal","inbound" ] + - terms: + 'process.name': [ "elastic-agent.exe","elastic-agent","metricbeat.exe","metricbeat","filebeat.exe","filebeat","packetbeat.exe","packetbeat","winlogbeat.exe","winlogbeat" ] + - terms: + 'destination.ip': [ "0.0.0.0/8","10.0.0.0/8", "100.64.0.0/10","127.0.0.0/8","169.254.0.0/16","172.16.0.0/12","192.0.0.0/24","192.0.2.0/24","192.88.99.0/24","192.168.0.0/16","198.18.0.0/15","198.51.100.0/24","203.0.113.0/24","224.0.0.0/4","233.252.0.0/24","240.0.0.0/4","255.255.255.255/32" ] +sync: + time: + delay: 120s + field: "@timestamp" +_meta: + fleet_transform_version: 2.2.0 + run_as_kibana_system: false diff --git a/packages/ded/img/ded_transform_1.png b/packages/ded/img/ded_transform_1.png new file mode 100644 index 0000000000000000000000000000000000000000..3f9318c549c60ff98828891905c33081ccfdf993 GIT binary patch literal 253818 zcmbSyWmp}_x-J&n32qB_2p-&nJHg%E-8HzoI|O%kcPF?cxV!6JnVG$3pL_QGac4bG z(?xez*Q%;d-}hUgax$U_usEnC{@J~j4X|~7=F`SNtg~8Vg)cUnB1U^^vD^Zi`Ln9|@o-OMWo5(*B#`a56N`R@ck5mK!k|8_vIVS!wtLu zGOm8J;Ix@Pm@{|3J2J!8KGYzUWn&1%5VdFSEw(;}Vo&yVh>>?;CxMtfY6|S@qMB!; zAfY1NXqc>j3RsOuE`SkL|7!^TwZm5LM>d1-TGdz~HhuAO7H_x^gU4Q7pB7%_6e7g1 zuS>~$yGRq5t8rwyqSP0D{^bwIZr;_(^r9Gi8F0?242IZ8`)qShRuTQ)YO|A zpJ6uCYIQbUjmVNfIRaNu=1`PAf^Sr2H%^W7Ny%AlDrE)cw#bUU0;1zcPlZ6JVkot^9|cE(yS z@ENoB$%%JxkaM(vfB?}>hg=GfrE^4`_oDL*1aNEoQIHIaEs6dhd&FdI=nI-$$W0b6 zUHI`|Z@VBFez+H4-T>r4e@bK|g>GRiFAU9n{ZHuQ5ZC-Ll;C4MIMtw*kgMJF)tGo7 z2tO%5f0*_<|B z5#hiPh}6(=(b1U1VMs$7g~$`pv>3%G*u`Ork3wJN=;omt1VwY<6GFe` zULHWOpk?}F`623pC=NP)QXB_0(50n?l^kID#K?wA zGca01U5;V#ZR(MFA?Q|*(2iK9@30wMvxmqPY;vIZXWb>)1EeRWc68I0%4M)C-&-U< z85ZgZOcn$iQEH5MiUcK50-7^2BHCoPOG)}glo;s|az*Ibg_abNF`5Z-GBP{raR^0d zX8%w>C~9bdY%PUbe4ZGd0%%EKeO7(2qrYR&y!2B}LAhbxPWi`zgi=x^YGrDbl?q4A z!?0QA!YMG9x^Plq z|NE43m7I-2R|#*9z#LWuN?~kqjj%z}pj#w?bX-xQaSpkxgWn$8#9Ugm8P-I`V4j`X zwb`nfiRrq!Fr5WmqjIBi>VkF!VuiPrv=!#5@Tu7f`pQs!o8u>Z8vI6?%1Ne7a87nd z-b0*2Ca1^Na3>3=s)No&+}!=*p+%Y>Wpizn_u|==gx|CCy9B!g-aA39bxn{BKK;;* z@4*h}L{TSc|6(he5cT=fRuqxBsR@?F=RVtXy|!Pzu{HA5vBRbvGiLd`2KWYi+m_ou z28SX&q)o|r$-&}(kW)xy%{3fKxzl^$cO-7un49A0Q!}ocujoB3kFU`7lrNP}o^)~y zWawq-b*{7zv~TwI6Zh&Di9`ONTa9c?K9%EAX`^j}ZIitF-jUwX?VaznFV-s-9orlGmBfbg z`{z&iu=wV91e`~ozj0x3v3>5uGh(E6nh%q=%J1Z8;oRl4a%tsKcW^v7*qWKh*Wp^_ zaLA;|sEW*ug27=nk=jmCp}(W|OqQl^(lo0?sf5$g(Clh$X$xI9Uw2=pTbo;>S+`-T z$C`;Ci*O)-K=O&^AQ0u@b#HaUa3#2S85`@N8M0_nnNmHjd8t_);=N?ihaCQ|6Xm`@@wu{Zk?b;pHlBuFIylF zY!e)2FuQ0DN-jzn@tKJF7g!S9JpPYd=3nPuO^*+#W<>Qv7-tyK8D$MbhbAMe!t)2D z!&dR{={NYi)n3*i(jmkJCG*s`9{P{^@5MpIY2sVsM9HQkI#cvxh{epL$O_4e&cyJs zFh5&QG@o5oZc7esrs(qMtpr}9A&~FMaI=Y9p_fp~K60vzwH&V-(JnB5_M(ds+XnP=g%1&ZVCYH|~^6Z`W z;P=RP7j~(33wK#zSc5ov7e)r-i>1##E{979YbkOUm#5A$AflZQi(XOeuw$6^5I#DG zM($va^a*D7hV>#Tq7@Tl6fsJFuJCGIzZsazM*o2R$_Ad@lR3jQ=eXCNie$oQVwD*= zE|a~^G~_wy&#~?huz!{&nwrdfey?A=l{jFtPcdPmty`~q=0DU0@vfklr%p`Y(lTxF zYft2XxF;`azyPC4=cOV+#XWbtq`duP4D~Dyt}E)zX}u~yk~ztl)asNC>uuR#nWRdW7PHyJqkZz#gawranMK<|P?d$IO^x^C69aB7n`YHT z)%P-%a!t)gZxWmBL}~AIb9P)S`qdY+aNV(riXM&Qvhvc=CX^<0YmZhQJC9YHh|N+L ztP{%BOQ&L6lf}vU6f>8wbv(#7k$EQ?q0u@ za#v$CL^XtoN60PjsQ70n>gL&s_k+vgCX!3D)4Yy-*SzcUw!Opt(&V;^XH`Zkj_vIU>s>?m zB1x6YhFG)R@!mtaR+DR!yY>Etw^Q-OR0)-{I=+pXdUhmpQ}QT9>t@%D--gmQjZLes5{78ZExN)w|lsm@F_1cAM+Qr$JxEz z+^&~5^K;p=b8j+l)(7_y+*fw4&DM4+><|Li3;Of*{rf_~8@`jL;fJL=s>8XuDaEds z&hlsT=Y~g(r6!L6w}1fRs1%ZC^ln`dW+o8V4m1#RSP&Lh-u#I8?03TtvDs=y&@U9U zd?ce`xF8J|?>t3FZ|iFix|`0fFaA&F+n^yuV94j7(~Jh+j;Gb6ohuVCh`FIGLm$(! zk`dpeW3xGYLZ0_A#J*~EPn~vw=&XBcdN}oD0yBy*BUN!@X=xB@U>h0)0u%@21F!`O zJa|EI|K0uqN(ln~$8|6ekYF}^sZL6zuyDG?aB#kS{XU&0bH#ttsOXBd5Hgbf)m*OeVKt6 z@W&&L7CgkN(sBSH8+#)F8&I4+5%atZ^FRH!NI}siHU)Ui4OP#or9aTqn<0BwFAkYFZtJdgpC{w?9FT)&1|dzzu&8; zZ{y_1Lrna8pnre<{GLXxW`B=l?eN#MfD>f+eTRXO{u9H$-wo`_{rf7XoSCbUrJAsr z6>!afWAL)EeCGb+`Tuq2?-Bo_r|RE5nb??F{gRxf@Pmj83n;mQo@ha(d=x>Wljk2#;qM957nJvjC544X6^@PA0dPRa zF^fTt$lEK}CuPLqk&4R8k;29?AHBUEeYbPAHnwp&j|!-JdN%ebYHe$MmX@8eoJud{ z@+6Oe6yZmagZK#gPfj7M5bczl#4h1P*DG(2`-HvU96cgl`$N$bXA8s)Di}&tQ63lo zw!5R~oDO^N>vlu<2><~wnk26_yk~1%Thx{lIOiCyfb{XyeP=#ik2C#ldRp~XVqJHo zP>#ATOscU=mkn{3lo5r{xY!(dKjIu{O0Y2B|Nj%R1GKBWqwpDq&|U+TJk#D}q`3mb z8nRqo0WS4S^1ugq)C%Q1!<(s0^MAS$au8s|0AVo`^4PWkZBp^!M9M>9g=loY6cPT= zIL7c|({Q*v(g+u7d4);e!GAJ^Kc>!4O9ULG*c~`XjGGmEJf+*y4fcx9PZg6nZ~_YH zC*(r+vt?g57I~EBL=+JDtDD2Q6K9PzE02LK?N#i2AL4kg!@BfzEB4f#Xa+k?WU^3C ziG&CSaIxpyf4H)?$A3&4PUH;3BbJn?OHEiDnKT$4UpyR>!G(?ICu2yQ2&|7pB26Mv z3PWkX#bV{mq?U*2WX6YjgMDjGmovPM3s36N1S;^|2LKJv-4cm>$+V*gfEFTw5*x!( z9wQ7cuRuK^;;P>Cp9?DB2^tz@wnTi#n$b{ubpjyK8@IDVHD?w}B(7Yk6lK3Ryl2^Y zT$Au@H>YeqUoEqgL^hSpCtGJSRV*O%Wp*GO^Ux3KjC~c{@nBl7^?H(vN~^W$yK_b9 zjs6j4Gd|zz4Ra(8a}t5q4ocFd)1p@8sbVfMGCWuhGMOHzLb+7fu9!!J`;O{eq4jWP zkM!QSLmS}`Q0P)hj!##;c1)kq|B?2|L0G#%1VSHLeji@fXNV)+0SZKm&wJH;i2?3! zfv{mB9qAcF-Cce6Ah9fqOJ}nwtZKV0>JLSgzdcGkm|&k%=xsw~lD}%JK{MNU3A(ZC zz_^*{RMAR`kOFxLUU|8RTbgG@rZ_bWphpAX6{;pf0GbUHEg(d4@T>&3GU7WIhi6_fn)b?#MD>hr4nM^;!(DfpLDgE+tJ(cQdVtT&eW!b}YdTe$uLXoYjP^4pU z1JEYU5gu9MsIU`Akc#<cQ#fF^-a|jPk)(APU(1Z*UO&Dz)pPAQ1=zs1&#b5RQHnd7O776L=m7wAw$yPNZ<8Kiv{a zRdqfw9lJgJDyX;L#cAYEJ!&yo_HsFzpNdB&E0%fQP%ZLIvELu<*%{s*de2cCRNuWj zb696O zpHicAF&AB;Tv3W4Z$CKBaiceRGGF=?t@U`4i{l+=J-^Fl`$c$lxHlXmChO?8y!FdM z(Cc)LS1vLRR{M1yLhmj=Hr1AwMikPrQ)q#FB@H&@c~uVlVH5xtOx|*AB(at zF|x+rzVsC{B+i~*m(Kor&x*xskap!^8>7|rl6c)g7Iif1)T>mz5R6PVE27RFg-oSV zeT=?+b1W_uhwVFwImd?naN>F!uKjL2%FZYng-q?SRRYze8VdE-+LXlilVt}Ms}-rV zCSAs_l}cImSTxBvTMS^%d88rE)`8;WKbN5s>?5!QqKq~PxbE#D07fKHTbnjOmxisv zoJuXv^cG2R8vFkrDg5DPyXgXbF-1iGbQeCMlxBR90GdjzCcmFJ9{ZD8gGbv?^97g5 z37_rs4ZN6YMMf+ZtLEC>;FihQL!t{M(VNQhvwb#XH{o$)lB+a}jHQp5#jSuE`sLob zRKA1BXf$DC)aUg{hsEcO80TU_?x|c=k6NQKFtLd163LHWSUd*%RGIYjS;oEqnJ|+P zxP|yU?5RAj&YRJ|DB@E`pHz`VLi@UCbfeBc4BdVved!L*Be8G7VyZgrl1NC1Z}*te zK3cUwetlis{Otr1IB%~jg-5#H-_kK?H3d5&$4>M`;1mX6jf6i8dEB4ndxL+I0~0DR zpJ_+Y>hg}HldxW{U002y73Huuth>@_u@5qy$dWba#GeWr%M*cBHETtCN46!A@VBKX z5DQHWgd*1VMK}Pg1GkUkaxi+QVQg!x6P0XxEOp-d{}JWY1a{~4i5~n4j-TZbkLy=J zxD=(+yzDlb>t_iI32SV^#w<( zBagp%qXMI{{Dqn`N-%a@KSFk^+@SEJSvF=HJP!Ma4e@)7*K;2mgu>C_I#H)U#H^JI#r%u&$2*d zByGFdsbl(+z3*W9SKp1>Ky3n-3L@{TC_D_Bb)%1J&5C^?9aHn&WXdmm1EX3Zp0@`B zh_M8|a!qM1_+Lz4OHE45w%u>$6{&3QKFvN^6NAa*kq(DD_ZHxhM41cK#SZ<}hnYK) zN2@&7nlj-LS38^rwEw!#?_>~3@6}=auJCM1KohCe0PuN=SZ-ND8r%CI;-2x@jN0jV zBYBKAgD;?h^hyB!rCg&amfv?Yh6sOm;#v>hG(rR2s`E(LVUPajz?kf{k0Gu2h9sHf z$H>($W~c9J5EsPY;is>W&*V)pjN4rE4Gvt3Zo2aaHCelzXR}eY#uHmbObdoJ97rNR z4j$NKMSg7R&O!k_d|$+m2u>ZPVg<7B4~nG9*PiUo#BHDY#)?Y6Qrl`-*Q#3eBkW!p zwRa1SWbyFLm<+(pjWKk&GUtRV<8!&3=E9+My6Neo+wl+?w>i{ z9SX8>h&G}RXmy?z*MTV3(+XvZ!E@6makKr&2%vqPC&ygk+^O7!Uf4Bw7cFg z+Z_DHuskd9;`M4DsoRbhJ5o%+dnZl_?Dy$RF{&n~eZ6@iZabQ+@6Sx1Z5$xjtkOS;+bvnZQZO*d^y z=hSSI*LaTZ*c_H5P!))k5B(uJ5C0M!V9Fe+;EBy3o$fP0zo+Z<)Ipot!Q~lVKq-H< zi57br;OTfcOQv40TXcJJZ*w%U94?+`sCiFObQ}$ANHv}AMIcs){Kr0{f-;0f{h3;% zizmGNncN}%PLXqnG}{e15D1v!_z0#_Ni?Q+Pq6g{>^7&KVF(j?5t<;72{)Mxhky=G zp8T4q6hgOl%yXF4cG`ADmlq&mv1Yf(ZoyRD7=@JPz1AKym=dk-a9ObUK}D^Q}f`vQldyajN~{ zlUr%D1>ag-QK@qw7?RK1uVo}sE-J-d<3(2Go-U{Oc#$hw9}kt<^rv{fR80UG)Tr zrsA=73e4wXvlUt8bU77QES}uK1goaDK&r-A%s1h4e=MA5ai7=qK#ivns4dq%b!e0W zgf^e@!-a6rOK{CYh#m+`W+9j&k>9J*Fp3y%eO z-}HI!!vLI4IZZoVZjrrp!zh#Ob~RF><&i?C-5xCz%rkWAK6x*^g2Held3l_y4b?y-ghvwr4MX$U`6oVec_!W{%G3D&769{S z0FbHWQ5mN7h^$XnZtG3Xd7Uv|fk}o`Y3qKLM>+4y)2hHztu~tb;lTWS%bZFQ9v5>Y zT*_~^e}~_un#C-tJet8l;uZ7i)#W)Eu<8Ard9+|*NxPD{DO&+f=`?(QsVU>uLf-R!SE(H2?^y-Opvh5I_Wbxu}VuWmOWL*TVr%DT1ze>jJ- zMz}wk7(l=bmw5*wnQk%Oa=6sVN~hK6uXV@Ir>WYTXmp9Xd$`hI!Q#FHIO4OVtk7)v z2812NQke>ir)Uy#F}1}+Y-gezAmIGFS?a`vJP3Tax8R&Sye7T4w5=Z`-DikDkhEa( znU!ZMSE{GSQAmCPhq|d(l1v}+V)y?Bk87rhSYd*+*rolcIOM=^xw1+O~qQvFl6V~k=)B|Ji!M)bRV-p!vl97!vx>X{vq`yC1o2L~k zSwdDs0WSHT@4YtLT&YT`S-W7(KSGT4B&>Cq-jUW(y$k zKKLen%d}c`Q79a3XkPPon~PutKTif5X4uAZ7&`iK?Ai(PR^6;#U<;Z><4YlCB{n1( z!5-1@A?DLBK^6Z+?vF<)s4oH7O+Dj^vz@ww$vYx=XKQAQpm?HDPf=`^YyHi?aAa*X zeG}liv6xCye>n%f?$^f84T_0~l1RQ`JotwT%YrfWew zw@MNvvthCspT)2D7`EJy9|evEUXqwao$V)oSQm(~r&1!_dg@tM>udwjk-Yk<;#~g^ ze2mxTkjl6xt{mPkNMJLLt9SU07e9#z&YNxaM&jeM#ImH)4zS0t2JuiwJI0rxlzy_w zf?f**1Z&(gN0b$a6S634WRa*Q2Yy`^-}BBm&*xS;ybfs*#96I%@-RR*!rW!5+$~ip zBh`;0t4M0`*$3jBW79>C*O+r@PPndTfzO{+tH$-u?3$;R1I9sZ-p{3}FAj%T#@8^F zE7UDwJHS!ML?d1%xoO6WNX6sist7W{H^9Lo)8)>7nR11gIqcK17wLfNbl#O>_;ddq&6|GJ^x zC?zhD^(v0 zH<89Om3D2*%gdJJKbmgAJ{0`OQ8ssbm+h0aWnnooySw1l-%*`Xg9ULsiRy2qL3s}| zQ&ID`Me4Wtn>^r$tVbh_l{I7(Pv}=$wpml$?vs9D=du0Slq2)8To!}s%1lg|GC%=u zEHy)TgoUWwXTW|==~em*KM;nb_5VoKFJ?k3EH*+hWLkMbl4Jn1i2G9P-USg_7=(A* z{*)v8JyLN%s2hny?D@Zv2)2^HjUtmqO+aiPCplDsn;TbfyIb8ml`Tk4L@{NxC%l+NWtyzbf6d|(X|F?L_IOUsr@DN{2WUrGyucN-&whsgYC?*blmL)M#_M!uBXLP zYJ0ZkMy--t$|}0zq$lNgI-4|$8y5$mI{N*>&55SVVXYgMIz$?EZL%yK{!xfWM_zmT z+e7fP!l!K`U?K<~`T}RsZr};mL*T$1a_*XnMJd*`lP0K5!8_T)ILf=USHj^iF8bly zF#Tz73)tm55V6aP!dIVbb;2!i&iod;cR!X~CAVI6OoS?w8o@fra$ zn7Ow7a#im(=8WMtJ?d!y873%=HB%c3SKYb z>Hb*8OzMqa;KFGVC3mAwUbJchJmrS`cEk;g7YSEWpdC+dh2ARc?7=o}e@CsrwWjw* z?Xq_bzP%ptgNs?4Mudm{$ZTS{gI-tVCDCx}EpF;X7!o&WAQMKwv8?I6ZhapI)UcZX z&Y(&c?|SM1w$v--HpT^!)-v|$XyXe26C~2`+u_iR~8p1hX;_G8?iLaDbfDrNiP#I4NQ=1u2 zN;M?a&wQxOn3KTbhdxA%naY#o*hb5H@|#TAhlwxwe^NvtL=fas8CxC{LTozejhSHP z!UUFTbv`?*58K9*7GhMqLWsH?v*Tk{lEFk!)$P6ethA|asmICp=UwlY*jsrv%U6j> zXNtwL8jl^$pY9cI}0A;N~!PF^L$}P5(9?6nRlshWVpKgy8`c;~=(UOEVef@+y zp%7n2&1QXuYjR}{1o&yKzNm*QpL#<1@bx!i&BhlZxr(5lxVHRaI0S-{1mZu=gApCH zOv8D^()~7*DpolTqtPh5yq*ziSMH9hpel$51wW3(5@Hc+wmL2cbLNiml2-^uW#)@U zYwTMLPs=Z~^kA_Ck}b@YIzg4qZ;_3uDL0#%Ns@E@hWpGuv!g9$xny1%r9;ql*jsWSYyZBY42oZ7m zF1Kstwk4-c-l)hz&dxpf<)y_OJ%=&`GKsG{m%bKT``Pyz`*7QW{;S-9^>RZ>pSP7i z*`*f?;_EOny6Ahywm@EYXySIG8^ETpu-5PdhM^6XCt!0M7M#zQggoM1i`Ptzs+n~& zm)f4LI325(eQoobQVrW724?w}dXpkN%^S9FD4!Nbv6ut7H)Vm)fSG6%!8NwaWd@-G zSatGGXYF;v+$@Fzc2cfN=1mF_uWz~oU$^i=yz2>~Xo!Z}IBU zUOXMmTaDW{Ju2NuSXQwwd8mEA{&*BubJGX=&H;9>j*a^{7}Zt>g<~rK$|spLd(CGw zp~7T{ci8^FV?QD zdf;kpcUr2LSqPu*Y>@_;vtHG3ot6W*k@E0ev-++#fTXDx$rtaj)@j64ioy())!r7_ z5Shro=_Y_TiSIs46T%eDQgvf6!W8||I253L?diphv%i-EG!4yd^iMPEC(QiGb-o7{^8=SDdIyWzXQXh@n!H3C4WD= zOAE5wlONfaqLxVA`2A?Qm|v0o1(GXyNQ_wN=_?#)`?YBS5*mTN)E|O`{p^B$oyXje zYjG&n9#H%fJ6`?MF)IO9!fIXH8LP)PE7^?KIMvLO*kJ3??3LA=WiTIIM=&tIY|I_xui z8~&`frKJ56BLX=f23(5&s4iH}j;S(P4GCIq5~Q}^06a_n!}!c_G-L3k6%yt|FOOJk zb22|e?;hRiXTC~sB2x)$&1a_Qow=+24vIrVLbhE zj^`3EHB>{v_VEyEu`d6PY!2sr; z%fc(hUFSpn5Bys8NOq{ty*=y8&K!`x(7d`e4QL0$QVcYUuV%iz;sFbBJD$*@cvHdG z_SiJHQ^G${EbBnJ|2SVXTLsOM-F-P*K^LfOB-0?3*r|bv8K#g;JriyJ!kHy0oPDiE zBDX5oA-lAi_xv{!i0p%MK`aQP20LZH6ev|FJo3PWQE$=&^&4}79tIG*{a zKDsPQ_@^aVJv9+zmq0uR7Y@sE6tObS-fF1`B$cmic4--e2w6*51N&yio>%Z#e z6d&Z?>3j}E$n;>Cmw<8#4T^3^JAQiS@Uh(cP^J35)^?Aoo(x$Yb;me@>L-=J9%hU8 zsTp97s4Hgbg9;IA7-FcN8tNnCroOdE3`h6rhOun$WN3VmnnS?q(8u!WZPAN{DHJAa z|Bm2Q7|&+5Oi+f*-L!f%G6Q|j9QrDgSX*0{My)8(XzU>`-vPBIUk~UfQwoWHNhU{f zZUkJ_)A|!aD)Pc5{2|6gJJJ3oot9w=p>B}s9(RJBx;0XkZ>nP2dsHsRzUpBkR7kTxo9)I15OttM= z3x8>&WebTLTyHu@WTE1HpkL(uJ97LV#0KNU1^MLl+Cj z!|S~ei^n9GI*^=LsWC_nsc3d@m?{x`ob|*L+Z+f_ru2yN%&>V~DO7$$r%_RSg`B9^ z1|kS~>wq0A6%eND>Z*C1j2QHB!1^Vj1BqQraRqr7V@UTF!z{@W24{& zLcQ1O2WBt7tSla^yD-m+x;e~jNAnqvbT|Xq0kJ{i?<%!qP-oqQpav!Sg=ytJdp9r% zfF6AA1;#x%%%=n#_R_IOFCBmQmW)euG>84$W1kr$zVZSQ z$)tFq-59%9%U={+7Rq#aT<7iaNJ2nhjnpG5+KoP)$AXFH?tmn3HmvRbK=RxC_%++! zIe)Iv@g0z^*MDl2f?jY!BV@wII6l1nFLs@B9S+TJ@Q^9)E|m(b7FXmpXruXfO8xWPW9vAu_3 zFlc{SZ*$7IuQg1f{>-*x%!DE6=Cd32!Eq}(Ua8tvd^Cm^|Mu)h;?*8a|26$=6amK< zk?>@)j4B|5i+YwmXEL4_mD#G8EBII-A8~W__+cfRJ@JrbHk<1}06@f$< zcgLA60(4;wmtU5~BanoAi)HZD6{GN$iH$T`Ek9r%_jz`mEq9<52mj^GW>|eTSR|gN zg<@Au$zzygxYw@)jcF?s_UU=Pi~W)A8V4OiYsNGjd!Z1(6T+HJ9+i%jzA<$TvKJlNAJu%ZT*7G7lRP-f z4j>qctJYI#y51UTSe~XvjEt&K=pL2jac9P)96zk;op*prmWvmNY@inwVWGokFDWAg zZ@QdUL)bHR8q|=9+^Dn4Aqy&PJq>tfh^)YihVGz4iP!eci^FhWSsTBoO$_t$pUY+DttAO z68r1{jDIGTE0Pt|e7+g|S1Uir@-4cMjL&F952m(j6wGx@uw+7gHZHO!V`nC)p?ZW5 z@>)Kzguf-?EXS|{;KLVm()UHJRmFw-&B%n;{t-T^%^{KIO&}h<=h$>SN(Hy?iG7@8 zSl)H@3V+|AE12_)GrGN!e*3DK#_a^@Cr9zCWj`yIV4ah(N7K-{rcURM+gf-8=tK|T zg%gC`6V07W$C9jAZ24t59S=UCNdz4rqLPZa1wh^vW&144>bM+B4}@XlLEc*AQ^Hi< zMKgWwxg)tAUpoIb17v?;Ln%WUX&@eteo&_(kxMMIKy5f}S#%Kqy(^sjRS>4a%#uxT zi?V8gDmHn=YG~Xr*7_wVzV#GwOmG0#XiLzyNcB(4ofi9z33M7enEZU@s?vk*`GoRJ zYc&TyvgK}P%YgxnbrleVr&1)A^YAUHUa)9{XuxI`-92S35~NB zE0aQjMgk?5)NbZ?U4XKa7mGt(HCl36m8%>6v&f1TbazWJ1XzJ&U_&l>ulAWYx6Dia zzY~+zs9?a_$%M*ZyVq~vP^O~^sVoCAe8}X|Skk~+js!!yNN^O148sq_V5%4KKso0g%x-z!JwHX!%*~Dmw@1!Cgvh%mpcUtC@15-KqE3#DQZY_ek|y)9t|t z7DHPde-UAmnB?sS3v7S0Lumh!-&!)rDz5+y3*0=Gon(drH9WXb)>aI%*Mu~1WU)rv z@Kh4fNTb<;b-`5TD!lO9zR+#a*}5rSk}b;Z*!<3XU|C5mSqrxtZ$a&D=_fz4qn-0| zhAMXKaM>TFi@S_VXJr`jN5bE}4>nLTT5pdudn2fJ?c9bjYS+B%8M&cBd_p$iCk9J} z7AQCK_iXA`U6V+ljLmjewWHIlhabaWc-cUfKD(B5A#jZ};L_VQMkVX}BXG1GO8)tA za*b*cb5b74z==_@=%$??F;k^dv+%x7MD+_oG9?U;pua<$eatriX^Cz~TuL}2MF1&O zt)@~>^8xv`b2^ar5#AjWA#Z*K!dj);bp%F}34ZRkC*wzJl{D;X-}fae?U307*5Jt@ za2O`9FzGc5fQ~86!V4=t`Z}#;4~T1LEWbppKapVrx#U@>HJX6T;v5F*yn>js(L_4& z6wD;rS3mLyTycPB7^{G4;6{fBL%jR*-CG)yq1cf0haOY|cnr$tyHLx-#b)TD``V{y zgBq;EdTTnbWXCnkPF&^$I_aiI>fSiLb8Rh3#lf36R^5|tHs9}Uw>u-4Odey7?dmqH z&a>kw&1^J3Z-ei4Wc~Iy8wAgt+)Yb-Vl~BZYREgLH9+&CdUGWE`NCaXh5{)r*;yn}*~=WY1a(Pb;JX@#npY_;zBLIkJv zz(xIePOa7bHCv-LvPm!>l|qUiTgNkode<{dTO37?=S|sE#j^fa*C&;JNNaYX;z>Jp z@ZIU7i@bx7HM(!(7K(X>rVkd@A^=Y4pIt?E75Hpws7}CA>Mi*G5At#16~;_o^9&s; z!RX5V^miB8U-;i&hTaYr`7UdsYZm^>!jS8r*QD}x4w+3%R~PUTjvn_9fOQowoM0~T z)kX8QA|$|4Drg!fZ){5_K}tIZ*@G|2F?p&X=#qYlo4Zw; z8eRtfR3(f>;gLr;48<|!)6^W!q2_&b%q~-%uD5{SRmn5X9j|RQ3f~-Jcvhdit+#$z zlLLt&>@ceM!D=#|o&ju0jdn2=APDY=KO`DWkS`0Dq+90n0nT$ALiE{HkY|5N=hNv! z;I${8fhXy)lIc5&f!k#yyLQtGp()2 zPr005Y?cWwb8U`jf+9NL$H31sJm&>>8*f9&eSf)5u&dBaDMR>12{V@L)MeQV(Q3De z&?J^AcX7YzbM0xjL3@)-b&DN;yjZR!>vY7%w!o-3GmNq+mlya}fYRI+Jho1qNF!G` zHD=HCw@xZu0nz>h+U0G{?3eC=v&wZ3%GGBzO35TC+B+PEgX2!GE+9!GN_X6lXRh`(u3r2oD1xqPrVl`h=PlIel+41h0p= z!Crb1v37y5Pe4CKWDTK*O=22|OlDy2$zL3^Z=CLNZ4k{1h7xRRn_N4IrL3>_ioSUG z9VLKLuh)l;ZMy*}%i@CeKQhQaunpBRd?rIuvSwybRu)3vVTVYSR~f0DhqadL1ZI_f z=Fxg80}{2+#7FeU-Bh$GPJodA!EpvSu)JANtxl9%)&qqsbDuNgIk5g+IjrW+?dN@b z!buI(LGJT8<9+ml(ZHALLFSp%>*RxnP=}i}#b|0Z1>egMfw*!O-C$Hwo(ns)fKMFt zgBF)bw2wNeG;5Qmr+_(*vjr|m?T`3>{;URAT6;TL(@5z}0#dsJgfYS6$b#Sx(ZPud zS_Yi4O{!nTu+tA3*E>!_<5ZhBTCLLUF6~0P(h%>Y)_`fI1h71yW+x^o%az!zdVnSS zUwkL>KJ-EMd%6ScjqJ-rkDA3_jx&Sfe~WC? zq4-NQo-hNhOSNBbtr5+4`FLfioSty!7nS6nKy7B}-=$G5)@r-^UEr{ElvNNq@ELD4 z)XMK>c?A4w*1e~fY(CG3i(FMI?ehvT?$02nky-RqEU@G-+X_kn?IH&CPw@n@d-geU`2rVgak&E=-l{t9gkwa;b8&YL3(P$hghOUo# zD3hnH_P@cOX;HfmQI{J7&DcpTUciESr3QC=L%sV^Km?I%WU|4~Th7aeFb4wF-arv4 zh;~)W&0iL2tR4g%$z;sGt9o~}`K({#+O6-I3Pzl;PPl`Z^z9aSeFUtLws>)vC@!T! z{KdvnNpPJ`rg7Soku@*zX39iO;8bFcsZ(2!49~wH9A7~}Qhr2~zk0gu`u=5t!Hro9FB0iszyT|3 zNH_DNvcxHo(%Pxf=`+9!lU6Bg3a#=ujkQ$uUcZJd^aTh(M)hHb`#qtR@;&=SeL{vW!|0w}Jw%hm~j;2zwa1a}DT4#8a;4K(f=65QQA5D4xr z!QGw4-QD$`eDnWv@64U4>PkUXiYofh@7a5;XRQ<4hc|Q=gmq55%&Rq<6adEvoChjW zSC)G&xCvqp(o8;Ec{P~Pj&t@6 zV;FT?WE2JOD}vcwgtK1?`D?s(Et5WA!HAGrrRGhy>UOhvXM5Fy7Jb2G4Mbz;izSXr zrH(s)b5$|_z=NDrGM{6nLE@x0=x?+xF#2P6e3AOYtbdPpk9rgGa@8o9RM|#lJaQ*~ zb2z8^dk44YinFW%c=*-IxY;s2NxX=|@Ld&tTkQTgXm5Q+y(YQ#qt~8z1KUCK>^TEj zOed|8!hbKe-BeHyyRSRB<-QxXj4Rq{|8aT<-TiZ?A8S7oK z)Vi&xIC0c|D^gn6YM}#;$jwmNkQe{YHt$AM#?47+lp@NLlX;o++N|MZs8XbY9YZVK z?*~m68|>LqK>@&rJ4cK@)`SeBbym^EW5sIR}I{EZRC2hzBX?w>aGn7-#(`+e3 z3&%u0ZJI{YCgDx`C$&h@A>qJ#*K&J}uqN~)Xd1$1Jq;VyE#z%4GQs{JEV`MsLy0p1 zk0ab$_S-)OHsmwx>x43JY&m2~>Yzs)NG${nE=4S^u7w+g(0RNaRt9xrqvP%zy z(a2+ndM3#)uJ&dps)|BDnplC?0{(Rd90hzCQ ziV}v05Gf;k%NYWjb%ZS{3KT0d*Ac(|PY2!a7M*=t-XNf~Uf7SX6eu2+TM#H}o_nU5f5O1|=Dw1w~oAd$*XlUYpZP6yF~4mp<7-AQL6y@X zD$$@F?=%HV7qc-t{xbQ{9TL~OvB0fe>k%;{FdcyNI)YT$ckfFN_zK%X(f2EwqBU`Q zLaYpWMGa(cA9U`}zNah`aXCqyeU5U2N0s#_%|OCi(x`HLI(Ee@R9v-v(w%)UtssJ{ zvvHHIW7`q5yv_8se0l1jha#g;JV8xCQ>k&&Qq0YR%oDJ?K_e3gq#k%{g$d9Rug~Jh z2rKycXiCPunM5hkTntf*-N6zaOXoqHpQ+h;YlP(i>}rM#?`80fdH3OF$=46&8NLPo zsO$1Bi-wOuorSa&>Wz$XxG^`#5V>?>>9+XBb0ty25M}XuMwTX)X}8Xjr@-gHc=vJJ zBUTvC6r2iuH&r7mSbxI)sQXQb9+~s+{;hNoWP15jG7#Fs^q9WMf$FXYYmqgVjNrT^ zk~GH`!0!L0S3_<%Lo$lU+{#%*L6Sho0z6X{Vk$fnL5nw78RZO;$_oXeViYg}GC zDx^d63huoY{Rx!viXJoy8oBfXNu=)NqDOJ$K?Ez$$T#V|5m`q`B>wA)m%Bfg8XfMo zU7E|5Oq6NkF9TTnqF#k5B)lbMlU@wwlCWfD<% zRwo}1-Q=V_g>Gyo8;Il3#dok^50d6uk(xwO3i3`Yr_9fv$izx(i<9oIXKZpD7h)IW zj$*4cRp?YWJ2B1xaC1K=h&Y~-P9iN3g-CiRvAo6(2AjlWOop^G>=5+fEcKn3R<@HT zZ$_T(M<#nxFVV)JFoEy@ngqD0U=%oiAspfNexl>cIQn$k}q=PNP+n?WkO z;k5|A(?G&$JNqru`v%XXQbhGy2akxi{mJ257BYaKn&lg!SgqDkZQmE74IPc8-$~^- zCJ|$&;Nvmxa(?|1bjor#Ya4E&#QKjRsu|G|;No(^D`KfE=#E%Rdy{ryaO7B6_{*w> zdYU}-^*t0pvsq}8=AN_TW4b!OMtyJN#sA&Ww@U5xYq4JCq5bLIm!qkL4V@??MNaD8 zvXJqA26?7pY7HF5uiEt0GblN%Ji(ZCJWGS%C%uKa;xQ||`%o@BH-qorkvx2Nq`mI0 zZ_$Lq1GS+9A`;T;ub!;miU$1#Lq_A73~T_@v)!PwPprKSk3D^@uF$vr{;I90j!uJ{liCO`7+k9c$rI)G+gpO!80>mVky8PbhBmJ4tum<)rt4OV{ zOT3KiOpj*{4?qOP?AF!}(?6-S<30Ud*UZ)fvLFU_6`PrqpH<*;*Pz~!x&4>fu$iBh zhZHQ4f=dPZoVz%b+70AU3U5-VR{PM)mNO{x?5;NOn+@S?G!+rI1qu7Ja0~8UKV*pj zD}9msr})3d4^4j!fb`@9kthtlT7s-P@ImLHDX+?WA(fc?8nV8x&s;j`KVXdP)krLK zrC+uN;>7nkd7_EyYrc#o#S41f(Hfu*#7TO$BeLt;okWrdq8HyXSXQ&4m}Yh&DtWQL z=~Q>xWjE(N>I)iPeB$4sfDPZ);qUI|f7*QNN!Ap!?6d%(KmL}|iwrq`>uOD-n8}(f zu+>ORq|(q;MbRrA8n0NTb|yu1f%ccM+gGH07^h4h0!c<)1`z>_@{NV5KX>xO@`pA3 z%Vu|lo+c3U9NG?*=5{x%V2 zBG6|cy7>igU%OxdjdvY{qeEpo(@0zQQ0%B{O-7Ka44+wjM<*jU!b(f^GfHKxe@G*xogt5{d95`(Xn!fa^< zmt(%;S_1V&{FKSkxEjoLz=7_blu8-}fAp-o)pc0XC-(|4Xft-MqgJYw3BU!nXnwKN zmJU{+`kN*y*AK#Xb;*gY7AeI%iPWw=5eh)qF|X&!No3L~L*Tbri=hHqO<*oo#+g%RdViC)%ncRZa&sDZzS7HP=Iy-OM>mzTJQ_08gY zIvB}FLeQb4W(gsC1s7Ae#EcCZeev8~Y;}%qr@yP#YycpX%B8T0A9q59#n&FP8*7-7 zLh(JT%DA+@%eOOv-7w3}_N9H7gUM?d>VC9V^xu;6E$Dl*t*Fg55rZ-%_3!2Xz1|~2 zpV@mBa}pIQ93RAYccSk<@{o=KyWwm1)t@Dx6Tk!==29BMFZ{{ zb^F`fcNSayF@f_Bv?Hk;Lo*)3K+giL>&cRT(C?j*w5ftDp98gLFvIC;yI=%9N2tfm zk)^I#8-bI7NDrSyPpZ=Y4U+xSjZ;DP?UmNf+-K(sPuqCuX@jB-P%yiBts?6f56k{J zAJ0+VHhd=rrkq78X5@!-nDrh;xIN1g&~aw!P^q%;{ki@PC2krMlUTGpPH` zCR)N!1@6|~X}7r9_iGy$kCAb0VKbr;hz&H62#V&f z`o_*4^U87r9fek|l<&vKV63>qn%dMwmOWo9)?BL($9(^~<&)|{*dnz32u9V)`sWX& z7eOwSJtP#1PJ-yOQ?}ViYURp&dYEy^I!lSvZUgRnb~$Gt6p4+~sB#rLUt3Y|J zi5^SBCH#5q8L3hVWecs-J&2Q0l^APr)DV*_w(Pz+XgM?sK6;@6FV4+Bq$j1pHJmOO zF3o-KzSsv+h2a zd`|Rrybz{TyEZYminh`1oK?oSBrlg=r{1Pu+0!StFQU23Y5zs?Z_35MTc^(Y=g+># z>NNd^_kO%a4LkkUMv+pFNfd1;z=+=OcwjR#jjWT(Qry1th?vC~VhoumR~_S*-JdD|9eSsCJU!h&PHU`giF997uQTpqD0s{E4M zr)Z@1Q$Qp0eb_f|IxK63d#;F^NW??BO<`&~e)e8_c|=b6^iy@fVAzn}dZi_TnA4v( zT(m%k)U(-6RJ-1WB2K%K`K#jNV|lwg2^UK<3D^%&5YGxycWi>R!m_(E0uwcp{f0Lu zQoKP00_@9r4Q_s!ir0kCW9bBq3wmu{0f`I-!gT5-zr@Yb6B$&#XZpVIc#K9P8~EId z7h~B;M_63}We#2|)woATWi@M|<~@Tme6#v&b20pH3RHH&R)CGxp>>pp`tv6Gwc#)a zhfNnGV0bu;VvP<{%^1q4qp$qY4i5i#V_o)KT^!)dETm$EW z3B_{rV(T!M1&@uCsqKa=wbnD4=cQ`Zp;J3*+d-H!EdVLc*v?ciyWcw`--xiG#gwy?|G$@_xLr&g(4W9dAo&6EaMj_za%kT)Mkd1p7z_p|s&Cx+?)Imy_`z0pL#jf@Xt{WMOR8}8GYtjq%1C|yB zL$_lUA0019+VwDG%UQNr&jj#t{m&U{Y288oS7~ht4`~d~Lj#toak|1$1RsN-nk5sF zn{?&OoMMy3Zh;WnUYc;%b~H#+2$!`GHDBSmC94HUZ?l6R=mqggusiu}id4rY&vKr5 zkhvCsAXPOCr>9v9JFcLMzkSqMv>u@y$?Rg0TDdG>-dzr9Ca4#pDkU*rBcFR%$l&ZW-}kHEG9!k9!g-a z9MG<_0X8lsGaLre0}ghR;cdYZaxRS}30UEnM_{K5|^2 z&UK+dPCzV6h(Ee5Q2&;>w4E%jFgh&XY9r~kyL{Z0G|2M#6hQV(pnqOyzD-Y-TKW6* z0>G$KS1%?AK0C?avoJ+bse9eA5Zw*)RvoHKI&XwcjxH@2OMIgR1m}w55%W?!-!n4OVwS1Yk&bH^IR=DVS zYii@hWChj;!(Tv?3%ruc5G8C*t=mT`MDguNx5SO-lYR->Ot}Vxskk8y_%lb3(}gK! z{PnsZ|N4`SSP8w%^y*!=3a>k+W#c9GR(a50T*J!)h`C#jYy*WDKMS!Iy=Fp6p#X6{ zGTl<0y82zLBfwecGQb8Ox`tm5VD`<2-5&=%1S$9XeNnElP)g-yVI^aiPh}63B0TRY z0pv$t|L^X1A)gFX_bq64y!pC&#Du)zESe2-#0HXu)Sdq;{MXG6wL6+oa13#s6gA7( z#JW_{mgC3lbK+I|m+b;Ds=+L8y@DfAmn*3QP!F>_Pi}maNSwzwg2>Ulp+)pw#Uhwm zuQ1we-{9>7oZnWhg4_6Swch*?QWqikhfygPI^mOAC~w$>T9GQtDay;*W*>=fIzGFF z5HbPh)~2CP=e{Ge$EFG~7nExDi(l~k@2jw@6*}pU6MFD_7qz|?yQjOqUkY2D&Iec7 zcfx9}96~)un(Y0t(LOeha0_8-ko*MDU9r|rEplT5nf^mB*Y#2AM*{N5lBcyr(0CV3 zmDr7ThgnzlO?__9jZUZFD{w}Qe-nE4C+fY#Z7RdFjR|*e8%U5OGBS;>jAwH1UiWp>ph5lt)92P#KW-9)9n`;1bUXnOLe$> zPy^iGNPJ=rA~m#0=5uFlynD)syi6Fvm%D1)3>VN|XK{1y=F@YV2ze zUn7a8ia=+LraIRrOpB(TV2zQsP8tv}hVS1+vSBsP)OqFxX67BocT_Tquo8`ij23`%$hDyc+!^mIz<8Y3XvHC?BNbNMGRRN8wCcgW{(7M%U^E|59J z{;FU2uj{+C!~*J7S$+ADETs19$~=%gDfVx!_4z?EdQzwaBR3B%EW2KRSzDqHWG#&D z{)6fyM|r7)fXlMSq^t$tRG#hyb3Ktm9H0C@CPL!I=o0h)7Htp+YZs~Jb3R*_Abk%{ z;&FV>R;jzmnJaG>1;zCd4l*1TE|XwoFBrphd{|zIHHbpgTuG<56*36ak^Csc%+Z>9 z=rz4Q3>?45^mB3p0uDQ$k~8ubduChKpCBl8DUjYSO0Gc)dm zf9XAzd6fyZ(djY^Qpv;z?~EAq=gm0nujH=qH&<;-Xx{rf%W1BQ3g!TG=V_#gu+l+Q zA8C9Bzh@%Chff30ay3M8ztH;g%1Il2)LY=ObODDQG><7oJvZk;CMT4qECeZ7) zPj>@eD+JT!;0KN1m#51QVAf}tb;XCYal>~GAL+?_^c$%UVT`agQSNEvQU}#>>Adw5 zh3dpB>ggmSt$%?@s+@b0^yQ9|0-u2XvXI&G*O-SJf^JjcPl1e@i_qs--5^7D-xGEP z)E%1X%K1ta*Hi%zHb`@A%B#0(!`q9`ev}8yZ!P!MR zX%I#TNV}fQ53TNz(p2iOyUi}5A!6>4~ z9~U^Zqr3Nyc$jV_o>-a<79XQ3u}APP2)Bkcs;+kVcHw@{r$lakdHsUG^Tmlsz-wN! zHT;eZY2jd|_<89Iz@};59Zvj&9m(KL!g;75J)6-mIENw|eE$eb>|P+BCP5()zSbj2 zkMyVYcFw>TEOqreX4q(ZFrg**TTf5?N0lmGgy{$vM0zB{m^VhJE3MPT8ch0ye>UE| zY}H%MMdILa|G4J?bctHasb1~uLjBgym~)lE*<#Yd(xCqtul!db>DsIa=`^s@y!gQq zSM*D5D8X8V!VM)c6#%S7)@=;xI)IH`jc~1^%_1Gnm5*7)M*sLgNwR3r;uaI4a(}tY z6-c*3K!NjnFM?}j%~@fqN89}VV%yytE3c>$)aRfT9elAfA{&5+BT<(v!tISBW6w9Z zCGibmy0v_$O>DuyGx>$ny62s*?yvZ$CHabnhWkG}MSONNwe%N!-e(V8PQJ0t^ZYlJ zQ*(u5>8lpkD{Slq_mHdcR#%qBi>-UB_>1-Ck*0Qc)Q3&@uWak)WiFyga`atq54hb= zKC6*b#d#$724s4$lfQPvY3$AK7h9KNIFEh3DPNJ*c>N`L5@q))@O8oHfOnVlFk|ve z-eaeda>qN9<&FIb{%+&t`%7g#TQ;#-MeaG|{%HoCI+IEA{t&mC2mY;i_g>W7&qFJOcOBjcJNh3Fxzce}RTRdFtKb@GacLwxg8YvVb zD;@hgmgP?FC!TOB0v#^~c_!gcbRqMY|DH{0Vm(UWy7{3*5}$^msqNbbZ#pD@DeaK$ zNc_2!TNPMNj)GF!p+~@#<8I)8@%UHjqd(8pN~6 z)S)S4l2S?dkvtNIL3_}_&{X&7A)f~oT2NH%Qg-q7lBwjU*zeH97V%;idQlxTB)0VP zAQaElzbVVhw{-r`kG|WRtfq92WqQq{toJM?EDCJ?YUnI&7R{A)mIERS!djxF5vpPj zUv;q_^Pj;l@=&6N-!92Jo|M+=7FeQLG>@tsVk1Bxj@ZlD(z))~xuWH7roGzvRLvg8 zsi>b(h&~$+FlR13@H%UEYwj%+wMw3CB9yG2Y3vCp8p5K_i-6I5znE3stcvJknD<; z_y*eW4H3659IVfCL{zi$DQK+samLDLz>?JmhAssZJ#hFWri`7pwl}fart6Mi*9rtO z5v$^TIm0PH`H9ZB^;<6?jFPyJKiz0Xddl8yi_Z8CP2n{4a=bndu7u6`yr#gQ$s+q{ zi*1&YhZFIwkJexUU7tg>U0)@cj6>7?!?<~yok_~Q_T(p2y`3oD-GwG+x`H&pGs3i< zH<2-YPy2N{6qk~VgBn#P(pg&H)GEjy}0dh7PZp`Mzyd4!uK&<(9=}Z9Dl2 z(9mFcS>xQN)i)-|q+O*g>QZ@haNVw@Zfny0z^OmCby^c*+KZn*rdhV-1@YyzO~7jH z=+@;Xe)0EMK7!Ool><*u0d#Q_F(jVFpxX}(K2aosCv5Kt+(=FdC;{BjqScleTA0zi ze@VK36vGK#gDj1da8dW0Nppwyh|#T5lH*-fG3b~D~|Nk zS-te(mOs9-Y{(s8b$S-QPnd?QYJ&fGTKEI)JIflS+8kMAau@c%1<5Qny#9RIsE2yW zu7520Tz|Q9WZux{c6(B{P8^JUYEcQa9Avt}w=A-&&FpJcR zS%+bxJNb{Ryw1sRz3i1NzpewON(=jAmGXmB%$)|grR7K^H*)u;^Cc;38*<2zP00NX zeEIwPNX0*Q4JKG|k0`KWI;i@IPNhe;c-28*%SOTu;8m0^%W0IUBDp39*-?B=$6zxgR` zDm=|WA=U+`jqOWG2uZOZcmSdH*76-jJJMLPz7H6Nr%&G`=rgE2rWa4X!#UDqXKZTJ zkN%zk(k+AMRZ_BZs+%fWIs(G&De#S?PzZ0edY!D%seU%y93RJdN9zV49q^IF(iGvM z!u}!NtAm`?kA{ zFo8=Lj@Nyx+`RjTi6EGc^Uc@R-f#}-(WwH(?kA!n61U5lyi));zr;)8RIm3}wQLJC zNkQX@&_SR>eK{L4{)R?1qLD`51@!}3tAhQ+T9e&wO=$GpcbZYm&PXC&dOewV6R9i7 z|E5p>*W&VqZ8SLNXG|ir-00}=JQa~|7_m_q>Hd7Zhsfo4z+ECSY>mRUM3PYl`&@|+ zPMEt6GctNYGuMP?_6vGE?ErK4K@`E;Ptn7gky|&qEe}byokc&}5T5HK$?=-dsl<0- zOXnU_eVXUEyavct6(t#~%7*61;UfASK?@5>)gysY9?QY8k5LB3M3?pHSJxSrX|>PJ zUBNv;2H-P!ZSU~Qk_FF2#a$cGGqEqZlwF3;{+~7A+_i(pbK!ag&dQ)qBZywc z0q>rLxIvTA#KzKBHBXjB)vwWhG@ZvNZdHU|WAfw+2nbFB#cHqO6A_f~c)fH0;Pn!g zaPkqVo)@a&m$2P?B?q7-O3ta*9$LvEgG31lFy>5+{$*BH9-8uhL@2l}nE`AD#g>*wuQj*%vB4fSlx^;-QgmY9DsH36+E{ftrT zZBN@t2H{&C1otjS^Wp%*l=mG*;MXtt1D(GA@Mqdg)V^;fPyB!{%RcU49z?#m-*2UV zUu;9fZMj>nr?x^sPg~sF9!J~} zcx;i_Oj-&BidpBfK~@K*vS!u8JnxV3a!42#X~GExHm1x+zdYU;Oob*Cms;D=>2)?d z`y7_mBn}t1vtrMdY8gjxeWV1zGLEfh@_lJ;nG6JK=K<9{x8ujdc$#esW6^H_tL?2l zlS}0^rEji~cm(PgzUB|1=+3gyyOBv&ax2b2re!M+a06Oyo z>6*1n$VGE0MO#d`&ec03h#GftH$4c7T1FLB=h~|IEo_fJNBj*C8AXBjj^=!s@p4P- zxz5UmJk0e*L89uvI1QY0IZIRV=Pnx42UP2Hv0V61IcF&y3mFl*uQ`_(h5>CtPhdEm zCvMH*txfH^cJI?iGcH!OVs)zKL-4d^+j|fWWCxYAIrLjvibMpyQWB#ceG=LZYKuKZ zyMC$^04CE^zcJjIP4Ka4T}L5cthqg1RW!@-1KIz`px0t`F)(V=&+&)HtYQ?6%#$Q` z?_N|)W&g+zKi-6l5lA#?u(0GuRnUBaCS&g7w=r%f_>vkKzJ~Qu0}Gz4 z70?}ZTP3?fAsJaw3;~`>FcpYQ(2qto(wt4BZnSh9 zbqpC_s%!i)d=r)7s7OWg3a5$K1E7LXA~xRyhFLdUjmA=inP;%R`uS8Ec0dhg@N&%* zD*ae}3}($+_YNgufxG7DDmN8Z1|eFS&{>Xxagzn9hi$D6V)t3b>cDl40Vlw9@LKaPLv~{wWZK=WE-Hi)4MUhu}AiA2NG~Y ziK985v6SaiQ*E1b?2bExsjT-p9-mARG;%2qKB?x#|30K=NETe?V@AyZ8cOf4fjg0C z(A7_%9`3w&69DE+boo_Q_(&!-z^V4BI4mROhTndC35f;bQp83*#;u(CJrSAxyPi_g7Gf7CKp=+BTor10w3c#PDgg*s$-0)snXVaP1BEYtKNce&Gt&%XeBMG#A7J z1K(`_!f&Jzp}}uuWa@+c17K+LgZ<%X8G^~7pk$=sFmjD?-cK%PRJ~rNAMy@o@K(FJ z+8ShD-XCSA++N+L^EC5b9`T@{6Gy*+|DRt%59Daa&x+If0V06d5l>(f+?<8nyrRRd z6M%qiY!?=XW}`mK62_=Y55NV9z!9ePc07!!jdr=&RkDKJdVZY#h*?3sM3W3St?M~k zfRl0Hg^Y-N7+5@2X!oO~8{Y}ORi(_wYJ1RaY~F)W-rw_ z_Zopx{@LBb>D8%xse93vQMEg6pR#g~EgkyB;lZ)K-_*T&2v!2Racx%*zUXCc=f~vl z2M&inHI zlQotqp5Cr|;~gPv;6--#vkutp{3QKY0Jf+4Qd8)tAcH_PQl{(j7D*Ka@drRwbj@Op zNetg?7`vcVBbpj^AUT`qm^7YsB4+eZtJ2~zGRY&p0yW_EVWvW)mM-wsj#U0TF-;ba zpC-Lp&!2YS5vUZEI&se(zusONA$kZ0Z(~c5XD-slUs1>tz~`a(#Ys4R8wTtAgIbsXTV1B4ZC7mkgyd~Wig)vg2aSkfcHN|Q!{Ok3{eCGdu7o9b62 zplw^^)9U>zkl8j;)o3@j(VdL_l{nk9)L4Z-RCnehJKDA``~ESsg0#3>eZSLxS9d1v z9Z3`h8CCBBc1iH15Wn-I74qf7Vy3Bq4;B*~xLl|G_lRVD(GA3dAjC<>pa#n;;*4eG zW)^rpPWAmA%NZiDyj5~I(W4yOtZbY^OHZh`ALk@7z4p$c>gY8SEk>}r{l1J8uI-ZK zy9$B0_o3AZNIc_nSRRW_-FVdF`#O$8I2r5OZa&*;Hh91UzKa%)_Ch^x*1?knV zMB?DuVT@>Y-^};>-lV&~ZS3KC1h14Xftu+brpLJG^ z+WC~!_!<*M;l69ixUbG=<~Hpqc7mp1GwTJzyc$L{ zYOPMW3cOcj?sBeB{R$_Y%;J*M&|&?G$B<2};mf)8@y_bljc)zQEJIo4bND@uQ~y&m ziqX*5OD$qn5$QCE`jy@~L>u#$Qj5*~S+@BTg8eTzjw&oB>fex3d@Xg-Y<`qN)^P2A z#wFMwN7gi5*X;y=TY$G5>(o>%ixd3gJ+k$RnX@zv6QSWD!dAX%FCvm72E!$@7E3U+ z)VKfTMT+F7dD64*Qg4;e&btSzl8>=_NRpY+R zx zKnZ$gY-n`@PlK@*Fbkr4TzYfa2{>e;55w=~E^mwz3mSD3W7OODI@>;98z;I@Epf}d`^L_G+J6OOFHzKUAJa+&>H0Mopz*4^=APxsw zI1RA>fz!*Nk89wz{_v;TK$mI03TMv$e$&sp*W9HD>3F%B%fuzWdhGNJ2|X*yjOBwT z!#-Q9O8zBq{YW|B*6;-^GP^b(*o(1)fR+q=R>Y8nU=1}_swSQ^- zd1oS|>9}qbaoz>;c=44``KR81R-mV>b^B)gyvO68jxKfQ%sdy$`U;lDOIhX37g?lA zO6b^qCCZRb4z=&n?hva}*bg{N|7FgZ`=D@nMGbDR%ngGl*Ah;4GV4!u`v zI_rI3v^Mhq{y7JILnIh4Iaw~Gj{gJ}esUdX$7>9TMf2-4Q%4M^DP*N%TCC!A zIyi#sQXS{KI*vInVs-1cOM|_zN2F?hd4NPOXfImwVptM2IUVCEF5R6^D_RpDFA5%S zmCCh}Gk__?Vrd<_`&~2GxrLUEZdti4+U99Jt0!~g-a~P9OS)Hb=ZWj7uKjk;_7cpY zq&Cbu2Ttq6QH53x)OMCaqke;c*yKI3VNv%J0nJvAh>>dHE^MGCT!gRui?VoKzohRH z>4brA-?^~+r&wf-^6ZMO4>A&L*eo|41m01oGR_thy#({$;ywdEybaBY*oLz~->6SE zAofnVl(T+s+M4%do&!}-U79G$gFh9ED8otvvU9Cbu0@c_>HX`u^Av?mrxem;th?!f zxO;Q7K+t)8h^6D|nO{Hhj&DZztn~X{mhX$&NSjZMAZ@G206Zo&w_y4?Xu+BYGz9!A zwvF4^1gL^uGwYJg0V+#FgY{tlYTv41Xh~9w1UC3D!!^I zV4@N*Fqoufpkvy?rTF><4kzNw&bIsd5)}M3IyOj2T4>{)D$f45!{HnBB$l7Wsc-JZ zC#23+K{%3g<+K&HX}5~zWgG*q^`#%({7Us*{L*j?F}BwSGsh$yYF|P;lMc@QX!gW4 zjPY2_(j$lVN9B*8o2G}5|K9tk{CYY93qEu`5yaL$yBr-)T((E#7xFK3=M#A13L0Mo z2Z@dZJz?Ot8vdvyTgf$W4QSJ=oeRPI{l#Ikj2nHWgMvon(r3|VsJZ>tHFE8IZ2~i= z{ACey(UVr;sLtilNb*DDqfk2Xh7=q{OweZpssyogl4Iu|hpISQ-{va-#4TqsUlwxM z3;+zADsZA_x^L&a05e8(Oz_pK(Chxv8Xg?woTv_GaJHj2Zj4*O6 zpyDie2PP+XfoGT}NN+h9ouY)uF;?rD6Z$Q6r+u55{1RKc)J12tTgEHtl|Ndm$v`Y8 z6JJzFuQ)_wV(U1vc&-jo@a5tInP3d1^{3!YHf`YD=j#cVq>PS%TYKO)6dOik-n{3# zB0=K-y`|uD4VuTxHOG=E(o`;Y&v@sg@QsAs)`XIArRgDrV!19JO(ylYO?1fv;zcm9 zH)^Y+OA(G?tpR3a{;m4EW!VD9p~VZpi-v+=$1Iy#;q5ZeUf9)uwS-&YENPpUC(tY2Aa za!ynA&90Nb9Ub@MWKJMqgJQnzda z6VBi_lQJ*{eBrUImY=(<|I`6{GPNf5Z2sA`Qil*QqcjmxkJET-e20Gt>rCv%QAdU) z^#OO7eCvD95}>m8HW|!vk!HG~0bgeq*foobh%;Q#=K~slpUk!8d)|XH7(^0Y`D+5y zJ2YM|Db?|vOXl9ev>R^TBy*pjrctG@FJIv}l~cc=G{dv~A<&EOTBRAwt+C4V=w?kq z&gv0Kr)<^3iX~0*?`T6cHw!5gVh5q0N5H8KBLupn&${jTRM*;bY8ltn^>J=DM0#HD zZCJ|_)m*zY(`0f&Qp(Z7pCPt%jF92Pku0yz5WKO|cCJYqrHBhB0(U}+wtKE0t%(!$ zxaRA1D++^d(=NG7yhBT5yXlUcD4UIm45@H+s6n2EX8fM~AW!R7YNtaxe~?0d)+@f_ zhgG0djEZ-)j;0=4aIBz@< zi8YJ+c^)1EAHaqDy2_sK_r{bvy;)w5$Mto%)+uW%9?hV>NLIr?Z&Z183PJ3m#uHNL+!_}zPc38zR6x* zdRkh)@^y2%L`!9O1OZRbrv+EIAUQ2l87OR8s4@-v@KL#2cN5b6G^G-X&G2OUh>;^OnebsRQ>_PlOHbpJ{pI}}O5hX`|GLSD|x zH=1Q_4_`Z4MXlR`9+D_tBkuVI`=5Xtt!}4?iE?lJxB>{!pKnKvxHhDI>owQ47KGSQ zsDI}n$B|8=805wjzkn!n>0UAp#OVdrGEyd`9+w@v1W{kCh|+9@#Iz5UAEI(g2i4Hi z)*B>2G8OgP)K-$)dTpG&H@EG_(1w4Cq})y^{8rw23a(#i8`Jvolm>{3h3TJzE~tiFif5b_y;3vc)OY-15eIM?kYDlCWEZxaz4 zuj{BB4j2*-drLA+>q|4a?Q^|-zAc3}EC@XIXYkq(x^1rE1)$47j_Wu^fjk%kV53yd z@sznbb1m8Z@K!hKrgrGXGuL#CBIZ9zT;^t>6B-00n@=Z={Uye9T&rHywG_HUJB-yu zrO6r1d2%VNvrmA=6Nc`v=-wM#m#>&5;4<3z6tKH^P*KZShtubX$<4Rh!3lB8%w>#i zso3VMBgkT*I9Z^dG>#N&Mw&G`stdD;OHhUAo zww~RG;B+nvL;}BC8grC1={CHOr2V`FLuA@m7X40GR9jW5^p~hsfv@?T{4S3xp!8zV zrtpJs3l{5{UGFw-Yd2#*A01l?`PhJ13W>;A59dSt3Dqrz zU5a1ihgeMyD%ZfZLC?lqV4XzJ#EYdyQOhSN3Zz)VsHI9q;NQvy(GbTG@>CUnB=;R| z-h}zi5zM|$x?#1@QYmD(hb=>ngc+(ur3{o+SqG$72$QNcI>1=YXEQ1g)tilI<8kkS zwZ4j(9q7BgeAGHWzEz*T>*-vmD?@t+5TxC3$2Wuiw~|9tNxCLKi`^=oF~M8;jQm6~ zc+hU8IvjDGTsV`~`H-R3QnztM+TY)qYpmuW?=sj=e(YxrS3xNSYp$0y9U%BISK9x4 zII+073nKAN#4$Lq5f7Nt(-2zOgUBv%p<_@o2OgF;t26J51Y4+Y)of^Vr}3JnZjE|p zF6mv9(J5aeP@(Te3BJaTjyXF&z}C4$)wAXn!Bp8iOGwh<=nY)7-$iB?*{b}%N)do`G=v^~(wDeN6 z3%l2ESuHQvQ#hT!>v|0IXp80g6O=2;oCKL=njsY4cG z^+_LoL~9WF7ce>R8}-C~E%s2vO2fW(MWiD8emLcty&c?uCN3Iop{`ML*?VDnc{~qq zyiF9<&x-+@Ll0fOzI10#vGs6RUaO=UzI1z?seCiaTY}taTa9npK;O-f{ayvmnni2S_ATBE6bN0$ICbe7$55d==<70leEvda*A{4x2ospN5c!eDj?rtm2>aXgsJ z4|6(Q(UXWGW-to_TXjY7E{Un8EpSR4q>gE0v8OUnC5_TtIcZ zjFS4T^fNHIv=XefLz1k{971vrki#D?$0V(|AeLbZ4?4gxXChXd6sD!8tnaoC!^W8y z23#5R^*j4W0%*HC`_&2~QO_S;_`?K)-N?iFvPs%;S|O8Hr`I>Id;zgCAp-yFahk^j zHL>z4cD$TR5u84Zo$at-nnY#QHT;!VT{GY@Q5eM-Jw8Iv%X}!2fmR#JlOC)PEltgJ z2cJ!D>7af|`1-4OG@+e~Bv!QVR0YN+Wr2xddP!OJ7Of9Q!zeU|@!xf>=UJHR&*Q(YtUr0XU$lz zvjQmcI6X(rC4}r#mb|9q(SN~3-c+Nz19pS-N#kSLniNt<>YMIwkdY|il5e<9F>50H zLzml_dvBM9)~UF?_C}0syK`tyO-wOnDZ&%0QswEJu*h!&#t)sHLw$NX0@%=!$nC0 z+rXp7zV|AfJ`5>SxVc8)2A4 z^$jmksa7z>O}!gVd^^J_6p35t`ET1T0_Io3F^Ar*YpP*xOlLPvrkQ_z&F+qJtwwUK zTGCuTdE!h-Rs(IQzLoGaVs(UQM zA=Qp%GUv3vFjgTV9UL!^!7^2%aGjl=#pF^srBEHQ3($unG9I_7zTvvDnU9~QX2Ac4 zv$ueXa$VcU6;Z+<6andOknV1f5Cx>AyQN`3x;sQlq(r(K6p$VekQ_p~I|l~%Ke+ck z$Mc=@|Gu+-Ybk4(#d>Gn_j#T>uKT*LyX!lav!q1fGnXYC`>SR@9=ji_Cq}2itouLW zlw^veiF@8`Js2acQD)Ny0}tBNR>#!@QrnKF##@sk0nPwNGa4m{e>I2Apkn|FKHh@C zyqg;V)>b!sZo8k*!`rWqMj#%d!H|Yz6@44 zV?W>Cf_1UB%h4M9S>gWs6qPD$#_((0YKZJ6q(vqut(9I9wg=wylqq;l-Z7% zvy|DKou4HOAR8o)#pM|-&r^R8lc~Ai2{2VZiP%zrF;jIrV$0|tVagiJm1UWfk=2m0 zt&S_<<#YYe{uZ^~U_Fyqx8T|~bnd2!N@bn#E`(i{K@Mqipao%3J&%x+OKj9BX0o$> z39~b7*iyYJWLs8v{?g&fK(>n|W z5rmhC+Mf2i==#Y4ehozUlC*2Z>`}5l$SN5kCKsY1R9_3!OPB%P7L0OK4YP>@IX`Ok zr6NO;MsgmGQlk8?%@%Es%BWlZEZuYcc3x|e9wgsW0PdB{=~4VgBt4HK_b3oDoA?KqkUrQ4Uy z(YrB}5@DkAGBredhXJuic+KezUOQzGb%dW${?Y z>9^hSFr-x39hW-_Whjm&54h_{)h&~mBhpAE-yF~DxWbRry;00SDj7D#XsyW|W)Zgh z=#%DqqlrvI)9z%3yupuH}k`58+Q($ITbj^@>Vcd$6f&5wfr7;NV$MuzKEoZtfhDhiy=6(F1*pQ5M03fCSH3h-voE zsKKZz^Yrx3iG@yRX9!WUh1m?+TeF1p(Dz*NYD_7VmUa1Q8nw>UraIUJ+%-vsufxs_ z=B&DHd^T9?YMFg@5-eG&DelTzOPXDgVSi_`G8_?#`p;d$EwgwBNG9 z3|&=_9Xv~d%rWq~BaA{5WANDrASP-WlkAR{CcM+jq2YW&yq!52>1{ja!g+t0ObCZL z#oKrqyVj|d8C!{1>Ar1QdjG>Sdf%4~U}OAvIdC+-6H{9ujkv;5u6>?JGe7griQ zS+Pb(+#ss>1L(#lXV$sQGPcu-=pvGq`;&`jS$oOR)cfY-<) ze#_U!aJLMFBw%K_KlTKqq>%TJCX)xGzqSl-WDh-=%7UiXtFb-Kd7Chl;PKb9Eg0Cnl)$wkw7`RO50W z4adasw@{*bRFjtE6A^5d)Jn|_DvvMf`75|szD=qYE9<&tJzv(oef1`VLB%RM+pZ&Z zK?Tq5(FBU@8xX8?uJItg#RB7dGvm1|X)-Edkc`8u5JRm0sbWC1?ktgsqCUL71H|uF*+Y%8b<`x!f9JeXl=j5Tsa0h`kKd4@M7`qfU+P^lbj|zDoQJ5z7yaPy^};&Jt(jc&c4{kUO|OAno?1__i!;*{0r7y=_$eo z0INNdGLZJNQ=+f370EG5shq}~Hqd&riNJ~o%dsiT4#`!VsinoZ+U!qY&*Sb&?^MY! z8}=vY?M_azy%oV)#%6#eC&kYlVE9wr_6M(ai}`yyN3HLk@9;37S{G&umVCm(lZ|#d z2F#H^0($k%8S}-u?Y!`dJzKc^dwW@gtU?m7whuZ%7KB0e!ow!YQhqaoVQzA*llk#z z7fqS{0!{q0!l=fhFs^3qrgVx7ndSQtBq15Erdy$+F^f?=b3LfI%TVF>wKJ6hG;c|f z0H-%;WW%NF8*Vy{TR$|xs>R;7N1lOyxl8aIqkDAgoboCGS0-}PG*?xXO`@*FR)7|O zrmd<}S*uKi)V%X$DU04oriz1mYi#NggG+1l^eeS*Mu@7}&IsDI*sIRrrMH`Q1uF}ZGK#S5B&2CxMzGWC&IxP3pYErqnWWvb?WeX) zoW*15SpCCdv>|S6VQvedvH1G_rICLGMQf2ayb*bdNxRaX>vkq|f4nJ6Q)<+mRBklk z0PK-jt2m9!LKx~YK zh)>XRf80_%+;N2+GKJb8w$!JQ(G7Ysk+t+QoR&4%?1wt{Qzlv)ME&@Nime$^cAisk zq+E70!d=&C)HpKXQ+gM=`FbtYvbZNt?LozGzrXZ(x&4Ak3NuimT@JLep^Fx7(b2({ zDzt(x?U&?OCaq+f#iUpZcxg2nB{S+AC-|(qy@djG?x~TNZ3EM#>G_S#rY4;TdO^>{ zqTgPY@o5+9KB%g}>fb(GKQg=EYZg;dC~2;~iU}eCKmtjbN!8o#oFr}XIN@{~wH?H0 zAP%#3mqXpwckB?YOT2@6;=Q{gqs! z{7@d2i(NBo!81keGOa4h-1yUzhWJ729^ib|9d4cEP64>H(wwMfq&PBVzUEN^3Q4V! zR3tG?u*<^zvEFf)pl`jf9b_%tESoR|5>XMy5mj}WfPLc}*@d$`H37*uHK%LHD-&ilP8PdInEHOv{-67ggtNe-viTy?2R z=#~*&U5|f^VG?L!D6+e#CI#MK=i8e?3Bn*@Ex-=UNa27mjycvshCSz`*=p)m+R~@> zVz0qkZieQnt$@=;MUYEQUHESehC8}69ga`q0={(I+gm~J%3CT9+;ZfWat?{87H2-Y z@Md7Ve^6s#FDUl?JMq0wmolQChTa8%5uc$+ zj5o0U3y0nB&v}z&N$5;CF^UHI6LgsQuCzlbDF~S`u{PUqfq1m(T558zN6JT7#H%JT$+y zXNMRnAPR>*Jii;KB$jCe>LN?&4GaV~XXMO>DkG+hh=Zd*%$K-QCF(k{*S$iRnT?KH zCN|+=DE;brBD!?+0O;>DIry4_PE}TA-#fas5Ksq09aI|F)+rn}TYg4S&+$ymKrd&n;T*qr;Y+#eW`Iw<5|4(7`1E1 z(OKj9hi3GeJ~y7WvTs{?Mpa$>8Q+cbScqR`7TaxeEg-TmI(tAXTu7V9$t4O&_YI0@ zUsBU9t&90@ZA{7Q7(c4Xs{y3>4YURTsb|Dl0|%$Crqi|qSt6dGLomgucq(Z+s<`(X zP~-gZ$-dAPRex>IPP z?#Od^9lphKKO%X`L$CJ!3iqxlKazNr=pi!JM?M_6jvj8aRJRi2raNU8v;Aoej3h23 zV!Q9J-WS~7I;wxqNgQpOv4%N72t|A}7C)??MYXmgsy|1?ciA{g#aW#jXNdPNMJwnM z!&C=>wS??X($|VsHew%Nm8^V#9H>#o)+xBXE^I5(sv*0Hp?y$$Jk305zpYr%smWDb zK*aAnxiKa9028CNvlCYRgL2f{a`)+5AI-FetM3m`TS3LO=qnPLT1}D%|H`U3s^Q#r z%a!h1Ol)SE-D8Iu-0WRwfE8g2x3#oG#LBBq$?r!i=_?d)#9$rK7@0)7-3-LdW7Q`Z z*<`T4Nt4UJ@H*$}bv|LaciODnfm+&DCo>sxI9Ptnz#eO#gpfJcy_ML+}9Bv}O5qMbE#lM~I7t;ye1Z(}3TokoDv}8kd8T zVdd#Fg`(+T>Y|IEU;PxdE68&m;-Yw8RP}U7J}F`MWg#$8%YWmGutMeVMI#ssK2EK5 zf34*%GZGIk0;=Rt^99#L4#OxnJvc0xgkR*Xmb$>B&Mla}~$po`fOiFe>+<(Ao25$p}BK4JdBLcTt` zNne@y_d8B}Qp!?(flOit%U+jy=Y3B^^{1AhT4~LALi5w#XPVBfHo-Oy(5!TCO*Cw8 z-gEd~Ej=VXSS}{|UieHpZSsr#yfjG=;3IB@FJ_zW44f`0;Z{{<>kRovK!w6@26OmJ8f|L>q3@PgLsz-oXWx-6*i8i zjk6Tq^*(iesuuC7n+}FblxFnK!wK;urphtmtrJw5xJo}R@0rW|g2)O*-!PCPtk8cK zZ`@_mratP+}C5I<-8%ok502@iWRcezo_Gf=!*o_aqh zbwp}LnRir$-SWQll{|jmVQQF1lTo98+ULyg$s(rRcdO;vKDgT#KaHJVl$}KMakVU;FX%fe%`2nMl0oGbmoLF_huPbj z0S5VU&9~z3pg%?oR%44{JzdXP>2_dZDL*m#)CHSI5S5Vq1W}W`VFARTuDLt`qa}JI zK>yXyY&ch8`Eu*A2Xt<-jkDHqMbSfHd!nLKH=|b3zG=Sx+fmpC-Wa=XEls$kc8N>V zrIV1)4!7Qy#KGzGCKRzb-MHL-bgHGLl#}!eKrI@aD7*Y4_Wzfk(I&{mwkPpkc!C4L z&_+c`MNEm>>5?ln!aYm^j4vn{_%;Ww)sDC>93F&Y_Zy zo6IwiaB*!oR)Wskb!hTh7jD5L~r|yqK2+b{YOom4oQ~)8LK|9TeLW#u_vRYRlDOXID3Bd3^EwYFwrg*n!5Y1MQp55gKY0m0IY zYcwcWs@Laf@75b_sw4mvk5%Zk)NQN_KH#pYa}%N5a5hPh4hou>pF|5aPUR2LLD?>E zI-vOI#baO2G|SY}2DL?nnn2UR9GGpp&2bDX&*1YPqT#t-7HZC_6-TU*q~k6FdUHZb z^Hk1hwXnG~mXAaOviP_${bZlqYX?Zuc35i~Zm-A$3G>q`og9Tc70x?IIInoN0EYs% z)AOoDKTE1gsK?`MBFPF4x*c&?7*{E^`3?1nUMhmqkqnP;#5sMB^CoRGZsUn~pl0=K zW2PbZ<4mLM1HpAnn`{5_P|i2PBXw@>UH>;hk8f9vUmHJIk8qq8XL0Qy0^QeKbo_Plz`A^YX7IszU9sz{B;ObS%aMTS*i8ZG|*GPdnzgRbr5P6kJiQJ7T zX9KH-hQ^b{`1pHz4# z2&l5O+hHmiI8po{DM+r<;kg;4u06ku{5&^f*x~ZbBjI7V!`_hULFx_14+Y=cZo6#r zxDzUN{d`Pi?un{hX;l?)u;R%z+tF!Zy#AE<4JSh(WBzu2o?fYanPy&w$3anz^=WqZ zi?r7)N;F>xPeYvEgr63vtSfE^j@FB=ZV+wojJb=X<|y(?PD&qylj52qXeWjXQFX8@(7 z?cK=U#)YR{=QoQa?@M?Md!Bx3Z5kx-!^|f~9^CB%O4_t)in$dJOF9~}#%~NhG`}05e7P?>=LA-#GeNizih0RQqtDKF?^3)KLBiy{1nt6^BT}^2 z5O2drO8?kb3fN+@g+D)oAJk}>*~Qe!@078{%!+B(SQ4LsHzv0E<8KS5#T?U`>iqkj zk|AxveAVFGB%souFENrVuqIfyAKIH%8}xuAQL~DmyV@F7RMaa!(Bn0-ZQpwI6AW06 zagXAPyN06yIY$LLdUaHjFqCahP`8%r%VyF3Q-lBsOkAe+(j_51+8BvFR;nzsKZ06C z(ftO@e&S6BS}}K$Sr6FZXDPM-UVwz*2F7s}rO3v0MDZQ}2~yJ99&XXOB-XW+Eqqvr z8|WU&>0K%k^;$ZHh4#L$+F%R=x-u_?(h-oxTK9dqld;8N{E8f{q?N@PkDc;mn7mr) zC5Xl4!N@bt&qq)>x&7_&lbkH?p}l)+?;;_`!Rz>p2|= zB5d=X5woakLy|qur!j_>%OV{BsL&-%5}ClLQ9gbMMmapJxErP}6nYgsfF!lXx zr-EEfri~hpd2?1@27JEkmPai)pW4}4{22%WIJgeJ*_zDYoo_#_+Y8)C+fV3i9LVi; zTS?m(ZzDp6D$v;r1{FwyGs8+ekmA;3E4l7o}UmZ}0oyDNSGUk-hTMt>4e2xd`cBg`XrW z4Rl>pmvbJVSk$lxP2s+;*-b7>dVu*<3(Q$Lg;4^@j$v7?7h-u{xQ23D}zv3#^z0j#715yj4>H7OzL=tNBKkQ8({S}S0n2{_tYyfQ-hW0|4 z#do9#I%U$9#g=7yR;|%cjWiZnvF-%wsK5v<*-M0aFJS%I_t=w&EQW9ioIgX!*I2ko z@JNvqi}Hj0N`5Eg<89%Tjwm(SkT*^4Eo3k9yy&B9tm*C({74u(yBFR4BA0h1*zhq% zbgWA|8kw&IA7+La;fs6~x3%dChS;1?Wo+&-`I+b4iRz_4BOFYst&YcciWJj=a#X%K zaM30T`F;XDj`$-#LT%Bq$iej3H?1Ts=znGmYf5 z2R?a3-{r2M>Hxxn;ZCXNBMQ9_xJv}J3*KJbQ=VG~2}OIM!y4);ncdlJ1a}tz1?Wt0 zc==6T17c}mg}F2)OMI-b7yRb>C05HJNxGhD4$FOSU!a}18Bm-yn)Aof$3OeEPf^fN z2OI4i`CDIz(`t<8)_8M9K$V zTsQDR-EI+NS9Zoh1PwANg8{KS-n%jH68NCvI|2?P3F;qYo0(0EQ}>sBgqrm^Vt)^% z@83jqLZtqYr=F%q{9=6#%hAFI);W)rT2Cp=-Xg|MIg_}syPhJG#!oeSdHf)k#gYC@ zI<#@iXY%kL1*Q651tk+|dA@(yN`G#vw|J<8yx28P^wmWXqic^F>#ZrP^=E2qy?w1( zt=-mYin25ACrdSOW;c+JS7RS}mdU$RICa^$D5Jt;$rOZq>QbPSRxrv za&!(!oAD31X~3;F)~^kwW#Xe|2yBB{r+R7>N2~ku-A~o0<@|EM z>S1{Ts|SJMO0%cGFwjPZ9*AnGWVt~Oni?kDncj^!PMgdwn62nC!36bc*+&P^JZB{5 zeJAl5Ha@UDB;e+YybuZl8XG2^)>k+E{tQ~@dPa-#E`Vm8>uPkIb8lji;&i1FMcPix z(<#DiukB0bIn!bE)fFH3t4Ax^TU$fZZe76a8VAZJnuv$35hr}|nA zYjD|l06IX%rZ#4ACjmttbuD6?&Bz%G9mrMj_@9fMZV_)(!`AL8^^HtajCuE3SLL;j z!p@IL%0C~xV}Sbq{%!tzZCC%$?0acI6MTins?F~d%qI(QPEMh)0rWqId9F}yjWm=1ByY*NcCA=@+K|C4ymt7E2*Z7YDDM(7cNdrWfm^2xqnE$C z@T;ui7mxQ*v4h}CJElO5t#!<{(E>t87cYT7*v}GjR1_IRnz>lL#b0S2ayGY2%|ugI zykeICTp_SzO0@WYI^aFC>On=!+g6x&o@et_IFwX*?XNL%@-~NNPmdujH`_MDnGY{c zg!%Rke?moVVU6|98#%er$N0r1G9Z%87n6-onpz+?OIN>{IeQAsWLD%LDpgjRN0rrK z!>oAi*!hD>ufXQ8_JC{jz^~_-)s%mVBN6=w2qgDFJ~Jv0VzF=u zADhioR1(7dtW#re28J(%3>jsdKX67P* z68dZ}(#V1-frw9>2yH%jce{TqAI2w;{Tn6fDvKILD`gs)teIE){Sy`ZGod4Wf%QG; zCuV7pZpElMfsM&0R1_rMsUJRmuNBo_tWOk_R9TOgcDucf!ttF_yp3+d8WDJo_6lJY zd<9?88)qw(%Q(rbtNwaHs@LmN;(NEkI3GsXS{I7hDAoXx zj)+3Jv=P0fcBE2wO9+?3qq}-7d!OMsmC7oe`q>Ba-;YX;Ml2@) zKeZ7vvLe^zd~P{+u{nKu$vq0NE<*Oc^G-H>G-6zs(xOQPi50s3$MbrhQ?1)>6jIF_ zlw)oM!*K)rT!gD~eqFsx@$E+s2=*Pqv@wYIHiIJuao0)v#XSM6KWHbc2a5sUbCDRg zr?3FfNzZMh(8%FcSdP+fEV<|&WQ4y`Dah$(jrUrM8C>;8 zc&9eLHjxDvlGe6*kp$P2Y7(gx`|((g73+`%SM@#qN)}uLW*}Qx=MM^$$Y2|PzCYU# zN1ym(_L*@H7>pSPeTk;QYsyn@Payq21+Nj;+ZEt34p{a2FvWQ+)U zoFsstcanYz^lWq|GNm96hf54>v^8O%dq$?NJZEd~P{~9#D&30`)RNh@7BDDXwhs!Y ztrF->s`%>=`|?YmK1?MYxjA|XI3K}v8Z^J?(%!b&Rco-4mLgC+gLNr@D%x|3J6aVP z_irwD(9x-2$SV5;sh11eKSYeP%> zqaT_b&aJ-{L3>%fFAJ6$9S3kIK9$aK&)79JUL1>b17?L_Cv1y~VSIt*alf;xIq553 z^SsC?`Ls#SkTz)0$+7UwN@w`^x|nwi!C(+*%2(Z0}E({#SZfN8Mie zd0p5!#?{QoHl=$p>}Ie|O(o(*t?0RG^oe8J4-9s3fdZ4dFcZO8A>{D~Jt)-ax{%L> zRy@#bGL>rIfqy(z2q6QwVO3}Cu`TN!x6Sx!yY!8YFVQt;6Fgw9Lqh#g3Xh|GcWjMD zgGck}uHT>oXg<>5pLuidC!W{z#S-q8DQf>kYIWNMZ`R&5QqIThy9~F>5T09ht}O8U zW>MWDlp?5lUA5&8m_a3{TDc;RJCMLW&}R|_CE?CC z-k?D~V4YN}?1CB)SBJodBkl)n{nZ1uvc2Qj_YdMr z_&d2>v07NCJ!rv%+D0`(zEPz>5rfYFykem{yg2tBLndrF;+u7wt=2)2+9lky2+fi* zfgvHP-m1bds)A&J>J6K08z{`OtiZQBk?Z{YaA)*5Z#N2Uz{D0`alP zQbRSTxR{X1Q-#rf+P%;8#eyxW^SlI zm`U>5hT0elhx{JVlu{@zOW>!`WbghbkqhmG+a@GuZK$HMU=C=uWQCN&B^*9aetA-i z6hfuf7gKTBkerV-gU_WY75Ri9L3wBzVqF5ubxTpL$kq<{e9ZAAlM?&W_~PZd>Js2U z4KhAF#fCHN_l+X0#rVhr4kpSR=78W5AnZ@U$E^&wb*|?#tgqeAo z_(K8;G`3?_5i=ggWmB~ud0#ORBB=XaZ5VvqrWlCr?%7a{n|(lOp;JA;*wxG@=#~x2S1SJ`n@q}9iZne;?x~|F zyWriY7^_tn1cb{OH*ej61wG*jD%A?e;5l&w;b^;3|Hed#XAP5?jeI!DavSJNlE311 z*Lq&YKVa5T$Dc-QIZ^vKWBrF>A39F|RM^ICBq~p#R4->{1%r!gf`$E_vg|ZqaLOE= zZ^x{Jmku+^9aX7}e1eaoxEdDIPo##*i{3l)2a6(2a9+ z8q`$sY#yHPjw;cvT|j&*AqRq+cB0oo!+C>$1`~7A3&38_v@a@XyJZU+s9OiQPn!+Z z+?|nYN)3s0fB)=+a!`t3#5YAgIE|E){ymg9L*BjUAIP5`2x3}I zNEDN;Astep%&+!VD~Xw-=n!F{I~`W6WPY5v2sCuA>0$flI}BSHlVOjVHTu+Gd;YPt zrgau0Pk8NieWuJVyG#;yA6E3VcsARWAx;+tRGPK%52g{14}z8$azx%D2Gvsb*wJp{ z$VoB8{y4SyN*TRcck*fgw2U=HipjEIT{)stUDSP-`|TV4)gI6-cjJn$L+&}y+N~-v zf(j(F!J0Zz?fN2QgPlIw*Y4HZT-@QcNBC>oe_KLRvp?*;%WY4#_?Blb)v^CLY~B*4 zPmD+@3J8CTfeWsH9NemwsFvQP;s&Qr=X*1Ur@wm%$4F{jHHQ@F1>ohES9!xV*b$ZD4i4ImehQXU(R~u9=(5>?0F1rc5 zl(&iu&eiUq`YqN9j=a&_cK)X+ACjZR&zDhIfTpz2j;O`AD?acGy7#cKy<~gR^5Cv+ z=~`$kNM;fN3R23@@3Q`VwD3FR*;%8I2ds$&;Le}dX{TsUU&(|V+q(0s)!T|7SnBH29 znvs8ACdFsQTmXp1oHvCt7tQbcN8pwy$IATfoWN^EB_vU7qCeczkQiyx+ec9)@dso)$Q24WAFUZ`-ZTfwDYoc6*`sbjpTPF%(_@<;J~_8*q5(Fa8V&*`Hl#JO@1>t7yu!_<|LE z>Aqs!eKT!VB>zJ0kdP7yh@Kh$vnM03T3O{=R6bQKGR?&StFvS+U~ry%j3bw{iS3A3 zC-8WjEbN`x_@gRlg6mw-ZM#mt77Mtf8HXD7{7^DF zF06CD-6xmOLqi)CI2`7qMT;K-HpVF$m8jyD`{r>|Cy#nkvP7)e3&8by&KwZ?LF9M4 z^4F;aunC>W&#ss(m1=~bVn3K|Qq8SFbPEHl5gXM_bSie^8tVM#kL0M)NFM%PtB)4R zB?C<-wtjy!bjc}X8fgYoew78ByZg)@$D6uuOh!6~hN|REc^wWvd7iCV!FSub)p#_T z+*N6|L6U9U+TP6us4eJJMDzl|{x|$%8=SWss%O;5vd4m=pIg%h9-h%ES^s$_L2r_~ za{`pHQR(9Qo@E7Fll^u;{sD2zs3R+;@{rAXU1hN+?0&|^^%m%rb$?bZSeir{>*5^KPAem5oBWr%y@A&L z?0Pxxf!jq1q10Dm0{0t2`IT;{sHVnxmh2(*vsha-Pa4ohK$asnv;4Y4uztdEx%&%u zkP7XZ@|-9o@&ghfMt+y=Hxkj9;-5)Xyn^wjJHbsJJkJd!_VcuD;z%D$kGbBIbl4x2 z*(flcjHdk?!0;Op>3t9I?F_p=(YpVZ{R>}!fW@D0!{rLz8NsJXw?+<3@m)i{* zm`{8Rc}eS?=Z9Z_q01{miGkF8$1w8gPSQ^wrAu}m9K?>+>Uu~CDS<8sV=L-@WvM%z_5Wib|7pDb zqeTO6in!BY{>7_g$O(v@^*YJAN5Co-I;+x-ib5dIGq>0X54(Jbo2WEu6a11kL@db* zp3pdS!C80qnPDlPCL?;Iq-8W%R@|9?oBQlO+tDnM8m-&UFQUm@UV)x~%K)_U<=20F zPA;_8H^GkrXE$F=rUZj5YtoMJP;5i>aP??fUsvwQnB_p%iaA;Qbss?OMjza!_ zu`&O}y>yUXA5-g*KlknZ%tgx*jM9;B=wY|fwJ8pkS>lo4C9DNZi7x(ebX2htUoqu` zfH|*Qj19|qHP~9syj>HsssLI+e`%3WrK;HL{pMj%C`zLdPK(uF@|Dkyxl*JL$O zt_sGO5v$Rn}!-b{1pvaZ2#!R=lc4hAP3b6l+OlL1&h`_?8O zg*F_r{*hv?nvyviEfXHVlrtJF%=PY*?8l*EZ$mX8_zye%e?137O#h_lTOlBQRQ@Y&F>^3AnGKV1$J2+K-fY28<~^g-PMTjuNv;#al?anMRc4vJqM2(m2xf18)@vnmTO?w|Q(lq=c_&fgJgu zSMo5X?dhs5rX5%{meR1U&64JyW~ownpQIvo5%eY)HDgJ9?gf?@i+H&#Z#@!UE`Y6>$Ye4;9G75CsEH8bsZ#oW#q(2sug^`%BEsetPy$(zN z6Yc6Z=l1UI5Fsnkl52}*cZt}mnG1}FL}sJ7Sp&Ruv}iNVyqj9wOM>y* zsH3T^h4GDOYW8~Yx4slLGyUONA=c!7)A|9=1gu|C{6DSV;b`0nrCmLikFo=p!l1Ue z`dDV2)jxdO5J&tB{yMK!`e>R#>CC_1)BpYszVAQo zm<4!riJFR7{C7U;wD})pN^B)vZx+Z};644c``oJr8rDtJNsu@=0Nm`VVAtQ?lF=eJ zZsLf!`~7KcuGRWtS16+!kzdlT;Yhg;sNTcxmxjJXd}@X*7uE4cax-RS= z3W!b4=bm`{p8~%Bby@AMw{fo##=qTMD;m`_xhyI{(+a(_|BjH<{i7+5!YY@b0w#7i zu-=syuc;M_X_J$suwi2VA#wWO7B6}m75P^m+OMX0wrM9;hWKvO+JM;W20%3*&{FzR zFk{<4w&k*l?(?0eY=86N0cYnUe7$1gMEnvlT$uARj;{xRbsVlWw7l9mHCoN~S4@wO zyGjdEe4juavE}Pom-GGpm}}TPFL0BOkgIp5C|WMdq{7g z8bzsTRO)|^9{$gFWMoK1J{sPR4lbIrA?f_eLJ{pRGZaiAE=B0pBTNTc@}uwe4^_t@14TjyxTy&{ z(g4Ss>vi;cP5lC$YPfVkgX3>LXOU$ZOwz$U92sA!QW2GJalqnVK5u)RdmUlF2!wzL zeJgPd(8-?#v8n&HoPV*MIQV6`3|ZJjjoRGI|?Lf;zsBUZcV& zhH=?=rZCFTD>G)s(7IM3i{=Ur;ZlmH%t%jWvWz{Dk-PKjaepbQi5s$h_D4(j|7z3! z#}Nv72-@WBrNTv#)KQ!Wzh@qEea(@vK5Sgf19p9jc3$FC{=KbX2a;6&U)Z%4_HQec8JZ|qJ79)L!L z3HTV}`nbRU48G6-_mpn%l>)m9^?Id}b-_9rB{G7|VeJ0@a6O+euq@1Y0+es>{bAm+ zL11pu>-^rjsmX0jUt@1fk?zGRdACQu2HkMnpZ<^Z#lurDsLU9s*Ex*os8RxeD!IPM zitxWP10ws^)(`%QjRsrhKDe9QdrQ}!$tn;2$Juq2$aX5F95mvRC5R!lxl{Ji`N*}+7svb>yYLn2OO=UI z`z#=!qbZljNH(%vWHD^v3xrX7E6p=x`n7qN(rSWawx{YiyAGikLq#x#V?+RMMjXtx z0g5KS=2y~kDFsHRTZe)AxFnq}BGFZ{+H69z+IpH=^1fe^-u4p~#(Wy_S%|dBzA_Y8Dgieq5(cpV?a?}?UFiB~QP?8}wI94=e%v#w zEP9@0?6D6f~5&*bV;T}E56ssh|>X^I{145w%iwMUl12a_2K8DCY}|~HB~Q!%{7kP zlMkk;-5`A@T8* zt;%>4ukN6qt=SwA4m!3IuW%YC?o@d+774(Oq+86^`l~HQ=<{E~ZL~^s1sezkwRAvu z8(e8KtoE2$dr@l^H2=y?^Hrsl;Z}sr;}L$2GoJqf z#qFa`s@Wuq0I#)l6mbH*%d}xhK5Le=94IfvvU@B`{&x;GIt1+#<`7H*Ece%Ierx^h z*gT-k;ZApuiv009969VGmyH1?^O4T;A*OiG(jN)2SM!cW8|f5mS3%HGl=w;Gk{DBB z=EYu=4ec|g#PQl$6}TIenC^`#G5&dci!vK66Z)jfYHe!L#xpGwuvhHhr)qr35rEqm zV^GtMR>$15h)uC-X^3;R&=HXYs8!vGTppu&4hs?7a+G4So~~y_B5RN3K8ELIxDVA( ziLQB3>mmCdDYZdj;0wELUcEFi|hQ znY=T#sW_2u|J1bKbm;SuVKuGQ$=$b@Q}3%R(~1%|QdA#tTaA-8>1{2b29nOyZI;U$ zZ<|(FdoCVKOu4an920s#Uaf~abxlqk6-`g2luvA|5rNFCmVUKX*{0#SX{N(+;mmWga>qc}c*)m9(lsqh& zJhSKS@=z+|HQWIC4TqhZSt*Lq^CN zL1q3-gC1|ZHKrKk49;DHF#-9@yoPRPX2Ce9C0D^5bZ)_?90!1SGLzNd=|_#SA)Rvf zBa1wG8-SPID?9tSNJpYY##Fu2;iOR}cH3<=6NS;yh)|ZWUA~Y76J?BD?L(Sn@d+pi z4~3?K5%H8Q7ncpwDv+N(kYH*|{g#9Nry6GMt*f_CeRm3+OEeOyo9}nRfHJ=EdgYp$ za-%0)y*i^*(|l_(s{LUcADYVU7pC|(CGSJa0$EW`dU~ff5pQg(){hbSd3+iVYCD23 zyrn+ewcA1NP_7e$2Lh;TcTrTW zPcDEVPBL4XRqZ-~#mWTCwv-+8@u1R`2xfuwSe6`D!$x3v)$;g0Z*~G z7&S<#i0Hb7rwfytgXbP#mbgT8>4DkpmuGYSQ)s7ZB`RuOUk{b zWM=Tm%MomS&2AO%&{N)K1l3h0CzJ*oAi{WDxZV_Lu}z^sdXGbP*R!s;@ImCKSB2}v zT1Yt2=SSqy6NVq+DdYAX28~BB0;jn3s2d z>-R?y*I`R5BJI&pod&4;22NANT2+q4t-zrfGS6<`EoMKg*4}>SX#0`Y<$PV%kq`3a z=dh`|=&Jln^rEeo6`pdMxvN$+g&>i4E^bjMWYR0fa+YzB`|S)2g*mG%VS&=8 zEzX{1-mBog9tNDYFSAF-C)G`@l?#ePBI9hXBH*44G_7+M$}T=80~ zlcVHJfAMp)l&XaBS`i5WXFBVxki${h5E7Z~{NYojP#HD*$K*2E@@sWN=bm@Feo9bc zF2@jhPzdaG9@<;Zb}TPj%pRONeU2QE$^Yt$|0kw&m>p@7q4%&M z_LjsZH>;3$m!YTW&vqVMv%sI%^mI@^@9T9Xh z{6>WO_<9*dqFfqpVyKSyf$yNL0nw&^`>4W98FKUEe1rWAhH#+0RiuiJ$xgsAPFxxm zYePIJ-#0pAVVy>*QSQiCd22W=rSlVew-VGN9JAI3w& z?`WF@S~_#;zv-6P-rX58VF{NI|LmwcM8j{}Dnn&rJ4DRGYNN{diHt-l?D|F-&={#Q ztL-wNi;Jg7Zr#J80e|>dk1XVOop)c$CvnmpHeC-_Jl>nppRkyZn5)jRHGA z*PFuawR=Hpl94tz7c2FiKxf?*NJ+QZZhx2 zRl$v12J?|ki{9!jJ&(Fc_n}emPqGZY_62l0`H$sOeRtWAnz>=)sSFaI0^s@!>Suq{ zD6{xZCMMmiHd52TZo7K?{7#oGA9dKlKgLM&zCU8IPgR0VJ6|Uf)LEL$KDZP<+kUw( z35)L*GsT6G(!ktlCNq?)5^wzx7ncU(6KJm+a>kL8*v)z@16Tg`k4a9YE%Z+8Jzc5% zSe?pBlG)&(ZjmH%+oiLlDCM(`%T5!xf-%e43yd#Lo%uIk)GnMeBNMzkM)0IcC6eq4 zj*8fu!MN`0*J|*k@08TaUb)qN*W|!v$Y=|dDm$P>J$G&QoPRt(AMBiEkt3kcsdZb& z@mQ?t+h{jr)_P4HTX+icy%2H*=dNh`ET6*`jlI>i84vtNR|CZ=CfaEbP~U4*Ygah% zH|Pe@uEActHKsB`AD&qt%>$AM_L6rDcNUc2#NWy`KHNYml*w23L%mW{sZ; zhCko25b8Y#8Lx0((lOYuFCwxz6yGCrvbLq#?@hO8KO`$b+ufBtD=fUAHm+;z{?5p8 zwBk*&@2;N9$J2!~5h#apZR-k=nJqHd@Wv4kC=z$xofgi{&c@&^TfbQ;xyv7yU}_4j zy4z<4rK*N+hNz0vl?#mA^sanr?rb}p_r}3RW}y&=YImG>Ajv;m zZ#rktxeZ#6MH|=getJSP+GqP}kAE)^9!NND&tbZV_w>n~vbQeu4Q^UNUZOw96W!_O z)eC_4(9nC25lvXBHHFeC4L=U9b?Pt4fF|@TXNk=18XFED-ddx-=lVrU{+_g8v0=3a zsRK0L_YPI`_W5JNORYbvicah5#&~?F&b{IG?R0OEuPk1a~K z%Cn>IWD1Lldj&F!H4|wQ-q5#nDp&%Ddn+!Z+tP=$@_}XfEPkm7Rkmo8n`RqVXtBav*=b16s@2Am)pmmKe+hn1@Qwy?k|E`6a0* z(-8%?kfxXrN{-P7^3~dJ`qQVeW)r*vEGDIRs90|3cI}VeZ;3<5yj(i_-j~2jdlaeT`4p%Ft@=H5491OhwYW9#edaR)y znQ0xiF@3(Tj867!%8-X68>Ttb0vl^Wvd<8;G3jF#@SGcC0y}gt*#&WZFJ`I>E+>T{ z6aT5^NbP1Y?_ADx>N*=Ma^)=HrRZ?+quW@B?epd3@~)1-)HIUF0Qiw>yadd@Fb_Aj z)l_@)O#}6DB{E3YAd%0(6k503tJv|irV5{Ci4&XtN{U(mJ)Gbi-ncdm^#G_Q zRf9)Gl{4`|Ks&BB z#=@X)P(#;qm-b1Y@Jz>DEG9z=BX8Ndnrb=km=Y#dl9N1;wV)=z1#XojocP*I(FI0BGb67sbHO1{EzlxB}U|jT7e&wNnJxjDW>d^ zDbIV^cCT{XKNj`;=8u062tPVy9(wJLefCEkd{y*n&L)B|->{kg*zYI=zJF%_X3zIH z*x`&WkTS~8O5CT8k#NT%xtI}Q3m40NEGCqK+{+OrJ zZeW@}&p%RJN@qNjGDPcC%NFR^c|qEizlyhe`PQ7tS0lfDwkckog{rh>6Si)Nb8D?t z6D3U)cn$?yH4SOEwR&8=A72 zeA%S&61wR4{3mVd&V_Q#_yBmEu}f)%4VFvsb%|_v`*axAiBfl`=T&Idy?*v!VQ^tk zrCuo-Eh9wwu z0h*a!MH9*cW@_2*K$5W-VDc^YYvV@*m!mtXGOCJ&>Z&Vj)zo7PM{b!M)Ian~uKARI zFnKg!F1NO8dBHexiy`?*P^U3BNq$^pZjmjwdwz6m55+8|rGc|T+Huma(O;v|hiGBr zGudX#GQWVKkk{89jUug(+T9)d;)~NPPzDx$_853v{ZHN0d)mzIAp)$`UQGg?4rBHs zB@mrgzxW+iLf?%ZjpU}uE%auWX-D^` zBUE&a#%0A1`OH{7jV6Zz;aO8DPGv-iPOh-g3~qOg!hdY@8`l=Xjc0o(o|^HMYcM+ zc%FVpLm)G%GMKwDq<8Y$zHyMoz>(C_p+|fUuMD@A zyC;hD#d@_}M33`=c+%}2MXdR&!!X#%&aGYV?GS0DuVwMu!0NhxF`6bdxymQ1O0_}? zbJ0Qru{AzbJI7z7r{fmyEa>Z@%7WCnX}2R*b%)-ykO%r`j#nl)oHU8=Gj4_|ZG>E3 zUqA82;Kl`mcS^VcTMwuDjYR68y}NiVk{$kgQlBJ_4*Eo*i4|-EiA$^BH5>}7GbcL# z7+^j(&s>;4oBw@bW2bVzY0^l-)jZ)TtNSEi`BE zx!lw7{UyIWa)7Ccxo~yYpGbQ#qC@xmTZe_x0iKR|^FvEfTgDM_CWX7Ic1TfAZwUMOLx{Rl^mjSGaATXn}y38z?h*C{6j z$^@ng6L2UzG6UTe`GppyHCOI-d0jfh)z}W$7PDssg@;SjYZl=_6D;O@SPP(n?lr}y zE%=h|@Vocov?ficq75soBi#g!9~sI>R~g}ee_c#1uVn?N0ZLTyvD$H6ck*8G>eJje z5{FL;YHD_#cZ0l}eD}LZ_52UTI?WxEsvvc+_(`1%hFrU&0AlPkU=Up8umNb^h>Td_ z5olhP%iy+tbK;p(wMF{&>VW2#+O4APHHnXQ3=)3t`Ru=bG_X4Tf5PP86PR3l0+T83 zu`V=-3tk0x<6UvAtjHz@J2@T)??ix$H5U38tdGBUvW72Nbf6hp^VHYms$9F_^l?Vf zW@;`=gAP2^_z~ zq)7R!ZJ_de_bck$BVL($dcg^;K%YipIa@~S(d`9~RvW=>l=yL+35>sKUEGpGWw9oR zQ^Z5GgR~0YBg+s<7&GSfg*vx=96Fic)Z~aB8ekk&7977tQIGEuu=%>M-KQFZUae(n zhrM)r?ObR*zw6pPlo5tE1StAz@6keM)uYjT@2M7;SrY$OkL7zUtrlWjomX@=b!iXg z*4R*O2$8NKlkh0|I9x>mciqo`8_=;*N6oRhqao4))ZCd6F4kNYL{s50t^qfiG0uNC zH?}4ICK?TG_^MOg=j#@~GbS!#Duvkw77AaR$r8J}&I`QFl^Rsfn%MsI0k5Fe%b?%a zmRPi(ULUTXvEz?ltJHox@QDC&D1A%T?1S3^463-D>7`v4%A$WYX*sLWkZtclCys_gt6JCVpCC=FQFS;k#MhWNis0(+jyN_K!?z#}39nAb=)a zPyAqAliDUAt}}6kMKdQpV!BP+1EZmMv{la3^!q}gNT-#w3Cu@SN8L%E^D zNyiJLs&TFCygnW=E|89Q_p%&RVT+|YMU(85?Kuhx8wfEmrH<5GK^+o~mEls&e4WBu z&7oFWKQ4KnE_8le<7UIA$5Xzajaqmo2!TMB*^IHkfMeNZow<;bL$}zNX&_&l^6=Z$ zX~cqWVMi_{z9P{YA%E7JBbGbv%9o5XYJI^f`C|28n!&G+)e~cBv)X18qnLbhG7p!} zb$Wmf%@XA??7Cskm%q7QaTgPmuH!n4eS4I~Op^U5(FMzri+c(>pYoV}QPL~-C`@*@ zq{6Rhtx*Tx7;UUi4tlbN#x>{}>mR>+4-S8e9=%)C8$IOkTGOldd8Jik$ToxzKK8_K zmIWDB#eZ+ks^*^F5&q%1T$@UaXZrWV+KZ3%kaQS~;n(kM64_jM$aekYaW)})?Gmypr4i{?9*0^}v66s9p;;tr+q%_63-c~)759hgV_ z8m_Z?-g&afCAw;Gjn!?4klsFSjRV+SYy`k% z6Ch6;?7cBlZq)Gvc z^j`CRNF!*=T186pw4Fo`SwRZUue!I<&x1c+U*?~l6 zwlWx9V_)em5u82f;I=ve+~Rh#!o}DsZ3iRJYc<+#{ewf3*CD{eG7j9tg@79{nog5@ zIiIGJoWf!&XMYNAqaW#4+AcVl-F$ZLg2I=%I`-G;w<*EViLr|opgGb%o^zX@n`8z( zAc?8K`6mg&rjJ?1@&4YKrny)DR}wtsf8&H<{t#+MmLy9mU-KPxDD7y40#1k;SA6GJ zc9sNNz1Mti1Dmr_Loa!#(9~Pa0Jn^##`I}8MA2g2mAh@XVufcu_DBP*b7#%7NMpKO zI=FpryerbR#-mgU)8o{Tw2_!=Ri6VL+nkwhfRezQLwUpS<2VVg7Gf?wo8HGo%LCG3 zJWWtuNa`sm%+FdYP|Jm63j71C;pJGD)qN3XK@-Zt^xWP5QtjBA-WH^tATUkYQQ* z&B_R|B2^j=gyrdAdAayyT>Z$>9q5L&lhCxT1|mW@bK<= zNR{I_JCkf36X;r7Zs@D6x-eW?hr9OPu$sLcb(YMQ&RxxA>zeCWq*+H^cvSXerKQ|j zAnAHo`-AV~ze1`Mgw&-vx-=a8S3v!nX!-B?kB|W)F6T?69HJNCUX(iVwrNMN`7w4U zW|U)5LUM#-&r_DGOqdk&ZeoDdl}Zo^J}tUf&3J!z;Z87p@1xqAWl-H{C3*QsRpo)! zV0zC7VM6M<+b0{vvQA}{?S}c00HeInH1x=qE6!7DcsY9hA)rX0ZV_|4tNKc!0<--I>=jf zUdHS#^xn|`LmH-<;Yv!1=6=PT?ejTaUKOxo5_4;wPzOWGb55L`B%`zE;<= zOHGAHMIqFl&da-1vs+$|!n_t=B$X*8pK^`cnEfO>`0Neb_kIgJaWJRPSHNAnR_!^I z7sYAb;^(teEvDz8)4hr{?bNwxnVlY+?AnP#hs8oggb;WAT63h&dLzs32he~n8juun zQOxf;)xPDnB6E|ihgQN4!pSvQ& zI)d!G$FskJGw(|FoYc@* zP~fp=-;1Tqs}XN!hnE8-{Z7ica5t%QkWfmdlVim{_SpX@R=!clRiq*?q`}0xQpKX(8;ST8uQ(igt54<@&D#27k@mf06z_AQ9G5 znCC*yhUc!x{K7*>fQP;yGN%ijy55G%ouS*QCr)JkI^vT59}O3T_TC+kts9y>#m?=j zyhxv(*pu<{0FS<77?O~*UQ`mLpg2iAm|R#mmHuXAG(^9Ns)}B#pDSTW=0D5o+=hDRdK--oMoHU(@&R#2jF*SrKQrE>PEs78^-NdSnGLbp{wg zrR0q|AEQ>#aZp>i-j@*Qs_|rH-#Lh~!9W`&LVGKyG43hd>2sTmB~J(R_pJ5}*(?Ji znaPpo0Oe6#09J+RcKNgtFYB zIRugbR#)@(Ou~_|ADu1%jthy)~r5fj34sc=A;fM?R|W)SN6K1a@ec?{VLQRpL+l^5ulm_ zFLN}ukBN!3x^FeBy{4E%A(owOAYX@#)6MYw8G>6SpqqtWDUSwlgb+m@x&bvzQ>1?h zBJ~5w!piE@7H(-TZk%8r`(r>tPOaBwEj2fL?NY^b?V{u0Y?vMN_SJ-PDuaLACRz(5 zOI-UWpCt~NHJicqFHB{$-TUnqFNVIrdAoiK_$9J(@gk4D^rS3A@)E&CVODAnw$gb9 z&JZbi1CstRC28JwJ%o_)zH!4z#$%UR+8n{v4*uAGoE%BUGRZG-9d$*jPO`B3y?4;n zRhr`5AC4pihvIPDR;i@EFB7hD-u!Qn&$d5V7IhoTTF&dn1^A0c>OozovUthhjuAYW!Ytfp#j69bAI{rv10PY_y z?x3q)ypt>YIo*6gLnF(p@*_tnC@VZKe@&m>q~uUyFofT> z`PoAiUqN}XvQzY+9o66necZb}F%s8q-EQbHM?M%wHF#}ovLRdywMu^Fvs*WDSLjo< zUg3l!8|##ontkwn%AXs4R|kIM{BO^cci~~%*OMIte<;#x7&H?+7F&DSq#f-$vJ)-(VyQ&6ns4K!~vXO&Lr2k&KqaClKs!$s#>O~ zV-ewZhpIy8eh;P#l&{HqN~P_VD8@XF4da-^_{bN|z>liA;#k!muxsaE^`hsy^+M9^ z3?K<&fF^FW==K7;LZa!1tUTrgGDX6;@q)SQ(QYDpv!#o_0vS&qpJbyYB@a8Fw~wZM zFFt-Jjx&-SiDav<3YPij)cm^gQV~N@@)~;_Px9fjZZ4lfpePD{|l}w0(J(gq%B{_sW)~B z7d8C~5<2n~Arcz@60*SLmi#yVc-ZV0GxYISHtB78b;}(saTnQs4ieb*o+$$A?<)p| zQo-_TC<(x}r*4Es4a%fr2sIl}fR7fL$Z_kU-a0=0XCbY>&$Z!_XHkAPM}wG*EHIqX z&Pk-AbV1(X9E!cN@!e~z+`<1l+|(Wu9PH5^^Vgh!Ng1#eY;%;om0TvcaubXqW$36e z^Llhe)&^KXpEIh)-wAA)A&9m+c~t$O?eVI zOHn==o2kfMKAxbNF2nBj>K@s6syn;CBVMqF0A#ECu>-uR@wFLK*8q5A;Yffa=ea8o z)`UNX)9-D4Z;OeKwOY&}_^|e;AlmjM9;GmwGi}2v!;gJF+$a3s3-qrio>rE`&ks5c zM?+YVjjd0#<;C(*a~3YXfsRGp+2MD&1C~So`qe+d2q1%waZ4S89g)W4e*~kUpKR56 zn2FWAL&M$n3(E4$am^d?2P};@ z{`Zb@%Dx0{iE}PMhkn81JrBSMTNS;5p;X9HAzK5#1)sL6{!~?4&L%@0A0q z{OGBu1{%SeEi2UyqDR9_w#0ZimR3>4n>s4&S1tIL;@(gMEDtpeL9^uj(E zWRP9&tVl=GxH&&(LToHEznxZS@cEX9zdiUL-}#Bv$jWMg9!xQ+ZS=X+H!{OSG$ zWKIlWf-co;@EcJg{x)}}6hf^#)x;XiN-)(EgG5XR`q zGOnF@b2Yj{@t9FceoN0;(D3lFIgx^`qzg`YU|g*-5g`sLnL~zuF=LFeXGSk4CMVl7 zaIxCVG2cd-%BLKBmlL@FMdZWxTc{>6)#6P?+n4vX9{>JW;DcA8%im7o0bCgnGYpcg z0<}(lS=h%3;@kRaJflZaBnpeuYusbrh4bNRe}-!PJfyO(TPK>Y$$2UI>Xq2H0;~)B#0yNE>s9d-zpVn+b7xj@%ipqp zmFOo~^^!tan4~?y6@JzPgX1UamlUoE`eqBAhwwkE#|ITKFi}O1Rl5f3P1peG%2(`w z8J=j$`T}DydfD?YFMxlFfe04=?Dp6sTe$ExiWF@ms;JiM@z!=njznqE2RCiv;UEl! zMQ_9|Fl}#@y!|b;eWVBBI=9R4`Hyf7Oh=eRTAX{z9r0KSGmk$HaH)m_oe&}9P*8t- zgaEQKrWH4q8p{ki@O)MN7aO6Pkdx z<%~Ltual)s%peqT$Hw%AfPu=9r#(|jA%_4;m;IAb^!kO5jXkVGmpG}T98?9&JkpBF3le5HnLqlF!x$>qwRdj!exuv8AS;D>B zRU*&%q~uq~5aD0n-1|L8JXt$;P<`V#@{emMVuoR|RZC?_OD=D&KoA<)3P*9K)PSL2 zjR5N1+U;K`arc=QSXh<|%tjNbsHO?YO68&P&VKC}CEkJCeSLjI3c`Hy=hk$b(;jZk037`-{IQw?6ZB zqz#wYZM8?6BUu+5Q8jT~b63F(A%bobDOmDm|D%4y--pT>OxvY_2y^g`V!t6$El8#0 zj~Sl0=~flNUOr>$`YM~p^S2f9kmXzV?9a3lj$;+KQ6eNI-*Bt_!e?W~%YpD7uq#{x zM}L08K&R#=I4%eN{y{&j!y^{!L?o*o$8H)=*z4bx@1NhQ6Lad;cz~TgHC2TnWB=~&i8mq%RK(CHvS1-X z8^VJ-iP>4JpAHBo9N;)dN^W{gXcNpTHpWWMA zy$aZ$!>67TKr<)bD{9D+N7`UiMJk0kI7naD|3{2;j^G-X{?p)bkJA|QzKu9U3M}U- zVrlsj*V4T)0cfopETU&+m5fIO;7G&2;mFpg7x+4npSS;O$hTOlfncX275z}>y)nm~ zB!N~Jwk1KwSQ$kf1%8TH`;iL2ScmtF5wHKu(h-?2s3dP?L(C))0(1$Eo&A)IAH;|_9ze_?$V`KG-WH^*nQiRgd z&971FT+#b;l>pf<3k+uJSFcI{V8w1!BCXBKbn_Y#S@wX5$L>{h-~$&88L(AOpzD|2 zTrNfNZ{*BhIrOwY0Wp=Lt!+M$?6oQ~Iu9%kV(C>)So4G_JGin6`2&z>-U9u#q-SlbDEz5j%`BjRaZtM35Yqt{#o+({gdi6)yqq(vmi80Psjq?dhS;;-{%^?D0WWRd+qgd$ zewJ|8s5|Y<+JdXaNC-c=;go*IHD6a1n#A|oS!ESsB}hb~Uu3O{{=jM)^_KZoY+)I! zJZSf^r_h&uk|gs)WIB?%K<5sPLiWX(%}uvm9tJ09{(+&J%_VSc>?A+}7V$ zt-lzB^XZ0f<$t1tAJoxfC^2PF4crhNsMF_;OuXVQr(x1c0I9McVZNi>+#+0=uSYB< zNaA8!i7CXQ6jKtlvpY{KcT&mm;w3YMdg@3Nitb5uHRN(~nJcHER-xt^VgP`LMd3i`D;)k@BAu_9Aa^|gC} zsImN_$IJb0H>Y1O4x;z_t7nAzk6%u)7x}Yx`^?L_AR$kpWPA5su6)76L8LZ+I~SLI z!q5wZh}>hfUWdNDMgFCkZkS~#X~uY-)E%3F+6-7ZB6lr9+cJ%^U~se^zNpQi09g21 zUzdvt`Gv-~-kAbradxBpc-wgXjx8gJ_Mmr3D<$KKamA%;;q>S->Ke3uOo-*gGBp5zHUKuZb=@L@!G|Qe+KUfm7~JDrtGYPnDD^2lSMPP}#dWxP`&0~5_3{G|3Th+Vn%JADGm>%&7~ zdzU{DbZaLM0#FIJX@(~Y9G2i;AZ^WAy8C$1pvPz2J^dLC~};09_M z_`7|Kne1$zHB}a73D@C1F?gmvHYUx2jFC^PD%B#1;Sedprxym^~ zsB4+?@D4I3-*Rf7U-?xBp)pK3Hn5~jmFQ}0x_JrgD?@a}=?6m+@v8d-0NkN7_KW#7 z0BHhWjf_PZEe;e;!D!n5aZh24=srVyjSC(ftz|GE*}%U_??uxXrgn_n6M4|Ie}Rbr zVsxC|1t4K)+3%20(){${xX7=m!{NP#MJ2#VV7!&fy2GwtZ4-BFb>rA$+OdnV<#SxI{r&yp{%tf~ zL`wJ)$)^O6thHbC7gpBR5g|OXU486IrL5)xj14pz=mGqo{pb0cuKIXD5NgkYCYGzI zPL-_<1W9uihwfbZEnaWuznFFXbb?%=38^KXegqI)1dOSjmr%YG?Z@TM=e+ohh)+4mP`RQ={4i;*>)0J9z=( z)&CPmM9<~Kr|j~~SX($vn377@eCv=!N`)7~z~c%kb9$9><+j_Qzax5=pavDN%+&9P zscNa^h&ukM$*g+Rv`y9(se@nRKA%+I$P{+pFid3kI<)O?0BP8YU~Fx;k;3hdRPc3j zV0>-$zj)LTWygnsaF7+^HZ2r`NizzyDca*WQfA7=BE|t~Y7@8(jiqya{DzqoiMLjB zL1Tm}ZF|&!G{=@W2vC0;fhz~_c4ckMmz+9_zI}jti!v=RaAa?dCldvVbCpi^&W=xkPSH2* zkJ|!eCEY}~jn#N+jvAk+X?(9tyW5a+hSm!^b^}PW6H-$xg9hZghhgnZsvok>BP_GI1`M8n3reV{f!nPjX2XDF|xnq$&=T>nJy(?=p2#!J|&~s zfsqHq`(BUi2cJEc>dpLmpbRm&RsRa;NVuv_pwwqx@dGI%)@}YdV&0m!TKTBHk%U%IAvE^9m#U}FdQ=uh z+|r{|((a%xr)oQpY0rMTSEf<=V8p(A0Bnt%Kr(dW9*FM*(hafkdekbFKn$Bvug=^h zk%p2(8;Xps;dxDTWGH0pFkLpscacin3ZljZXW^UkX_N9Y|>-T|ZC4E@U4Vwa;oO;Dt z0OZI~EQj`Z65MT8q_1nyt!!LC{VOpdh1veJIT60l-}XwGhm1eHtI+l!eV=fEhlgW_ ztE*{CE}R?+tMY0Z9AdU=WsZgU8BOkJyKb9QfD8&A9r606zJFY)Lle&)e!g;4Rlsrd zY4DJ7xkq4y{h;Jx|9hGZ2;ch|G6kJt{hpV%<1mx6@$VLg;5wbIM*-$w83G-2x%M4U zFc!KXoBVkpIlnYyPA3|&jAkaFx64lWQAHhvPOxoBcbUl; z_j#>uj;ngPH?+>(=sN$tL-kQmQZ0%WkBeHu8!Z(s3Be99xtmSl6f*_IUq-|Fvcg0k z2)kLcP{rSb+VcwhsBfAtz==JHMw zRq5RfA|A;;BHu+4cxJeTzP%W9dEU}A-N7r;?r%Aw+&JWE)nTytwJC5WN>!o~t&}F* z+yzvux1H*RG#(||B@4SJI@pbry}I$WrgD2}s3kRAgjq`d@0>9xC0V`B7^{^%FT1L$ zf|7PxihEUg_AVP6Cg3WsMAR7*#=(^%%%Rkm$`w9eJAx6}`#(2sZVrFDx#~9E-YpS( zi0i&lv;@W==o={Lg_Ss37xP>@B%3LW%&I+=?Feq$ywyS)%D7!vwZj{)tQ7nDH3c=? zmN@zu1yqb}t3xPdTA`ijD1Wy%gTQ{d2D7MtJ&kCWHg=EO1n#OUt-lK6sp~ z!F$9gG>KaubiVG2kGrhHXNnO^07Ns%oA<_O7#c#CJ~~WgD^25U8sh?~+BWBAc7YZ`USdm1YyS6HJON zY=QLnx1EzM zq)A@JJ<_W+TLS2l%Ql#IXB|ngohUljZS~DhC05yP3%xFCNgjF+;72SZFw?wbmrZ#T z8@KPvBeUO$S2ez0RveXoC|l_F(KUGA6NS-Zz-IdJ|GW?CZqD2yX#<9_e0l4~8n`rm zr)Qs6^hmFoHWNUA*+f2(h3#F*MN&5hxk?Af?R92PM!ebtybJ8fwVAsURjuH|U+EXY7>!I98y^QE(Dq zOm)j^&@GkJSH24WqtL64Tt!P^0L#*5N*BH{akB-^C(If z;awjD;eUaoOKm)rg=Min8l+{KZe=>|cHE!E61kY-6w8(ed$i#FPMLTX+&kQuv1}k5 zI__Is`=q{eHOFIxG_oy*y?xHaXCcx4x!c%K8g}Q~Jt74!rGL7p`N}xGgb)Hdu*q~2 z!v%1zrRlhc7GtYVu3WBAMJdL#9Z0`k{W-1K9e??0eOK@KylxxdqLb{g$d+jeMB1_P zSZR^PRgYf3CbQ1Ctm7j*LxPxhnB6t1fZEJCZ64n*Z#l8sq2rWF?r%gKX>U7VQIWN~ zm%X?@{ifZJjJ$kuN0b2l$C>N26*%0HwpqidjZ0A&K`CkD3Li&VxWeVRPP{S~2a1^A zDb3%rw_e(@e7tIN%oUN{u8VcfCe2sB#jm}Xbh9Q&5Xl0JCS-6uph=X{i)Y7{Br<_; zVTX|#<=HM1+hEcmyB;=3_J{s_<7UDeMl#9{L$3W7BfY|qvp?|(AxR)3^eM&8laIla zlg!Q}&?=|9#}OG`E6>1uA+Z}d+}=~dqke5w5(M|Qcg2m=HG=Devf71GcekX|Vu8cW zfB}Qhq627jJ7bm`&Y@{t0NQ6 zKZ@&)axT^G>G-mV9IlT)xA~gxhjImHrZ40F0noiNIawk*Da3vm!^e)cA2;5YcSWbh znK0v5hK8{fjc>*KGH3iJ_NM|FVjbr^b_Q9Lej2BG9}(zPdR5wwR$z9?2J_ULj=oPv zcm#V6FzpEK8>WE!fW}-kAA+H8*I3?00RiyyCC?S6?bOzPy)J&?OI<+v!IGcN~IdyV?<7Xrh&PwK>}p*&`Ywg$`O2 zc(b-_E8DL?G#nUv8}4LXob?bn_d%!GT;awqDReQALL-m;aKLfKl{e3%!O`%cU*ga5 z$WTEi33YxXG9eefuq7;w~urZxK^*R`@HgM7#IRM;5n#4~BMlC*ILsKLbI25KXe8=$OjnFq=|$mi(S1>b}`LqF;}(4J{OCXm35@w2{yvPARSmXF8cY#U>wtrlIJbv-r;*c#`X=Wcb=JQG z%uc3_R-&}@0w(U}qX;6^(HZ|cM5cbk?&G0K%RwiO3^b!LH~=RJKpHn}W|liV=xE$e z|f7?@%GgT+F zxclE%WG%Q$k~iM-C$`+m*hqs1_*+^9Ok35?uOK~po;1XaX#=35 zWxDj*V{C;7c`v9vmU8q+6v!ek0mQ=2b-m19*e%+MC+mg*STQCA0B{G6CsP<8a5me_B?C*f zQp6;8?~lM=B>^)bxB%M!QK3nHJl~6j9}>WDjTD&GyDQb!pc-_Bo5Z7-L^}(!eHUv9 zHnpux_XuH`e_iPB?{qg3-Hn3c|G+vQCjBwxs1LYPI$!z<5MXz%15Z9D0!^!k@$Rz* zA!n-VQvk*$Ju9BRJ~klt1QEQNNi`n$gIbj1o(WS?ec>T2aoXx~_&uf<*d0_qxLLO! z7>?M*JsoqD5D#TabO8EEpw3DfrycGWKyJ3uN#hZI>wXbeo1KvFO1o2YwI0okvi*W9 zKzh-9#|W4-2Z&RCXX>!++bH9bvzsNwHAIZ=rf$?U1VfK1#SZY1#6njmYTum(d%pvd zx{mgn%63j`gCHTUQo>MC_Hm=ytGNH+mobUOJX?VDh3jqIuXGBMj+;GTL{^C1p37{* z4?z3|F08&R1z3#8Ib`Z1ck5X9`MyXP>{$Qc8#@HK*c zpfIk~hYM+P?hf(veiauxGuU*Pv3;8+i5_SErFl%LADH^Iy?Z_ zZM2a{V2XLb)#s?5t)iE!nFowcw$&|6>sWBPd~pcN0oO%?kSH2w?PM2(P+h)wHuI+H zKkJp-@`YH(lN}J%%fILrO)p|LzkZeBk;Sb~5A_JO4V?;EW4u}pupX~WS_=c%GtFFY zw__re#WtmZomu5nj;lXBz59MmF3+;`0HME9Ul><2lG0}R^tN=IgNI$5mwT;BSWUU0 zR*56sU?&N`4~uc<8vn0gck47cXa43N5E%!*bVDQLXO4S)^Fdoip5#%m7!i#|7@)?O zlKi&z!+d#b&vcv9X1kKN>Z6F5W7g#knj_a-7DU_y*?>1=5qwOfv_apR43mAUrnU*W$kFK}tOUPaB|8VQwgv>PvM3{XP>5~(j!`D=NX#|z+YG#OcJA<2 z)x7Q~q7}`d%LoXo#x2Ef>g`ucSw@Z* zVxuvX*%W*I4@^Ve(_cb9BP~r{z!$H9%0%V258ZKHh)ti!es{(A?1IvK!g#L6@B@a1 zFSFRgSxN*2_&M%L90>7Wd9pbPr`Q7xu3%0%8pq6A@QCX}4r(60%>nQ-`CTkmKE?rM zwv)C8!0xK>_@y|7F;T0*HpB%5)YjmmDY=c{)_?TCQa3Qs%7pfM{%nC^DhNxgVYbPo zs-Q98C>H;VHbz7^`)eBg7uJ?oV}bxAn!=irnFfAVV)-yB#kRxzDDqs^1t6zSeUR|mf^W93?;d+aQD%_4PE&DeZw^(|)j;Rq2Xl{g$zN2BW8nh3A=B)4 zKaWBx>%OLDMtt~R01)_(H|}(@CQ%g-JQY683%DF<)Wyum{0WQ2!H_uET?10%`0FM4 zpWw%3LcNK{O@cV{E$K;)#@?$hL41B%i%gF%qt{`}A>XR^HH`t#R{6(=QKA2%1SFC8rK@YyjGIG3A1*0BAh|$j~ zwQ}6{QO%G*6ql%xU{XC0lm>yI>`KvFYxn4@Njk^P0?n2UMy=FFN$YJr_k>fN@WI5768cX(oBN~qSR zSu#hnARd_gE2KPlnj&T0d$DV`%gdqPSWg9I5)!g^&X`H2m}$Jt@JbB7kL0N70*F4z zOy55;x<4QCkDf(IfH=er&@;H`bEwjUYg}w}#*YajXUHxvhlibF8%s&j-A#pO99Mgy zPF~n0MRS5JiZoE@5#izWSEtSaq+H>~%RjClLrNEZ*+4a{fIfVqRbtrwE33UUM=5G21j#pQABo&`KA;@`zfKIW1uy=qzx2nYy!rrm z4Xn#G+pT{h%(AyV53*ZD!W8MI1h7t^TliiH31Hy5%1-4#Oxv>LIjMwU{I4n$^J!=* zAZa8z30f}y$4C1X`A5z-^=HnPlxnOJ?ucf{1_%x-llMLXSTeg_y`Y3V^1<_ea@zj* zhEG)iK^fzgNT;HM+@Y@3yP5%EJSTiuKDoOmm_(6YI9ib+0f|f?dM8SW2G=e`q8pEF$%HIsje_L61 z_oIg0OMn=y=1H<$)p_Df`RJCp^tA3}#Zk^Ag}KDPZ93H-up#zzh-ggEe}?c-m0R_q zs5#Ik2q6w1fdUL+`7r|j0>C~eTx&CcQH`asEG#;GGrUfl^3@3iB54KFzh}~SCQ4d4 zw?&V`IH#+!7yb1>fe$Wtdw=TJfAS19X21B4SAa!-`(oAp_ltc3cpTNPH3|XiaDDidhGxDtZ4{eEG%#-P z72r<^_gDe;{E9c8IDcyaB!;Ih5m>++rBH3zHAuwB9G5b+SoA$*@^pJlJ}OtE)hX4n z2o2bi!d!N9r4=3?o~bxp`S!=B$p&FP1J}}Pn(yXnSv?B&^F{Nip1hWG_0Pd`VvZbW z49J`+?}&e!0`u*2M!$S;aD=&&ac_GZ5^C5k4NUZ}3Q0CtN{+skxJbzvHo2}x2Qqw@ z+j$7PY_Dh7zU{_AfGxS#7uz&Cm2Ne_jAxa1yYtT~xqc4)bw{3PB)3jx^Z&=m#6t`= ztdO{E24Y5QZ-lC*eM{|DS@$L{c6+;GX$l}LYUv`PjB3BleR*kUDLpT!5cld zp$zBi_QkhVdLRfWj0}M&t9F~TtJ#g#H4eiH-*V`)?dWjILD_k9vIC@H%6YsZh zv?LQ?+_y3G;vCr>ZtXRQQDII89uQVTSpIGk!Sf2IM#uht4DFQxj)K^ATf|X+7154} z+iZpV3edHQ=4!lDNT#}Qi*^F#Xosuk=_x+p`}8y`9v%Q}LBDK_WhaaM$=0gxropIm zDML+jnHmXX{hmei%Og$H$b$OwwU3+Q`|+_DO@+Ho5y0f8*Vc`j7qNooO(!{7W+%PD zS4a0-!nsxZ1-qcbT0r;PDFHQ%tW10R{oB!Ir_nW&M@?Fr?Gx zPe1mR<@WuR{jDeXkJo+s{uUFO5K|OKM|nk)(QGgosBCnlwD!=#vg6gov>KpFyt6sIo=d5W+B8d!z@T=U*yCB~*#186=x#sLRBQ!| zS6)wnvnq>S`^*6A3GB`YZek8%1dT2p)igr%Yf@oO=YtGnohPnJB8T+mL#5wE`B%Qi zQaSxnyuTXK9kDvZL>&{2+NUX7et>r}N~RA?kEy3~FRUBTld^#+ZQHN+g~`#lzETp} z8?BZp&&hX%LA{(Iz(6n}spKeN!_df=WUpzYX~UI4 zr^5Cas`qtk%49;T^WdmOc+#Ng{H0h5>we?$m&o8{W(gYi%eeC@p?42vXXf?1od{Lg zFGVaXXKdHq?GQRi-?xRp>CUpv`$xT85i9YHSKnohf7o?1%qlj?kqB-4Y$5tJH$Av? zJKl!uOVcx;vX)g6Ii=50tE%Mvq$17orhfCi}0aY|bxEp)}KSzxTDOS44W2&&v zhMHU-Eh=(1&bft)cDemP0@Ao*XD{pe@cv8?U$Os@H&^^KZ~k}ol5^#Qa**lvqlT*| zyKU)MI;>MwDHJ8ghyXp|MuTNpqWGRmhSS|4hypOGXIH=rc^-i$)O>P6b#z*78(s<8 zy_poje$Eoi_(&@hvzejUOUmnk|FdQWp9RvHS>P9gHs&5aB_Vxvos^B>4EXwLJMZ;i z|6YIc9Y3EfzlP16z0EzBEVIeos~_L&)(2ShyQp$?7)cazRer}mlIW_>7VOW#c4L;# zK1;={OAN-#?e}k~MefO%PcDOPeh<;fX}e8*?uq1*GwF@N8%QfEC?x2+J{wk6Z&Ga? z=MN6uI+Iy9%mPH4)6oUI21oP=<0JW3IBHXlgbIyaZa!pPd*E7s=2F|TAH+fm#I?OQ zF*rNpA^eaTX^!dgAMBH*=*~(4keSrd@9?y)Fgmp&xces0wa5PEa2Bs$!?sf5bI%6t z6}<3uZU0j4@hAM|Z(QJ)suyjKYoS~8lD*tbL1cJ1tdWln>^`Ous@zj}iN$=EAr&q1 zr-*<9+B2);?aPS;{ zVf$ebt*uJfeC+mb`GU90MZHg%>&!>>f#BULYekN0#kb4cm5R9p^$%+juh#4(E}wE>2<(g(A$T_s$9FEi+|K(l^<6evjP^+pQ56mbY#G zC+qroD>-*W$@hieq6XDr?eyAD2O_z>1F@cU-p9cEt!YZY@>aSh8AQ>JDSM`NVnriY znknzh4p;6>zj8+*ukj6+sFQ7F3Ub6sz0`Nv%ie!fude)cN&(U-0Hd zg(aaY>Ag(ioVVY`B{9FW_~6iaG1}vc-H~v1@=E!MOT<`SPC-0qwdRZ>r70aaXefpZ zQlE1#<`p$DihAz#XVCko$l=obp!363BrGq1L<^|UtWLl zwYKrmQi8pB^we6a;r`{^NodIHp5%L=?WO9UYrlTrP_*Txxc4o#%B4aYQDa-AdRW|e zhu;Q8-)6q)R@V0T7)58)aVj;Ik2dIuIryk3VEz~u&C(h>m?)-*Lhi<(%h-H<%o6Uu z_lti`*9Vip2aE>ScS|Oosc}Bt(wJ)9??k$Ab|}ZbT&p>JV>i_4hkJDwH3nK8?j zSeAXpTs6pY5aj|xum?EPsMb3lvdn62&cd?=J8A1e4$r^8iHa9HAAt~%A6xb3Y7l=# z_up)~P*57@jO+_#S;p>{;}x_xvw3&cd2ef~%x@H9r&>Io{}a8J3?|uqg#+2iGF>ND zjapuf?DyTd-)_`;OFk1GBau03>~(4#{b9PR=?teqQj#gx$|Ea^;T;Dg^dz@<2K6SCS-#(b9%6E}yt8yBIf1{>*Vlr?7;&@-)mnSEWnTAU#_zHzb z8GgEPvN?PtoPYdek_0!P!D<@UEA^q?;@j_Ulq3kUB=7?(%o7Eu`{qlG$dW`I^VFcA^~kkKK1(^p z1nRds=ifg5lm4XX)49GVS;hhC=eS{IQ|HUrvuDQyIEZa=AJc(&IVlWe#l>eT`*ekh z+GpB6Hr%N`s6swJ)1vn|?4yMm{kh-HBe*=c5CE za*&eA8{^)1-v=lAR#=3JB8#maeafp9>6%tk(|KyG4^FdXjv1qO2gSACHarNr48rNe zdomGnbQK$Of%o{${Rg;}!6jw`DW^CAAMi}9xCSFx?kheP|I*@%&9pXT)S_- z60eq}7}H45V>DQ3MT&6}axjMQ{V;NF-%e;TRElFT!LFT}$l^Uz5(ip6Pas&gn6 zPGvEf9;aUCj^Za_eeV@aEn-UbAdFE^Ibjbaqb~(P`ObALSyT-qwJ#^42l9N?X`3!n zhFl1`IoHJnGIv?~tT)$`nFV0>`{aHZuWAIrhM=U6riofsp<834DbIiDb@JfdrIwtN z{AsGZ%Br5)O~iD8-GI}qKdo7?qrrferak9&KC{#6_b81afV6IsRXvwJdF>u{gL`nh z316P(GXAJ|nay@_)8XmXbc}B>T<<*!vDMyEI?8L(;cys;q3nPkE9|>esQR51J7sVv z(_Bqvfjn~CN7xtMvk&E*$kE8cC1Iv?_D|L9PY8JVYwk0_mpJ?WFgB*$nMQBxxq6mS z#y4?&0Xy8r*C%^JQlt*Mopdwy_Kl?Yp>*UAFvCEmBSnZ@^;8v!T#c$i6YL(!+;=5} zeyWI)V2KCzPFcBzJ(#aK1h*oL{Fvl(Q$-LjD2G{;3CEc1*>rv0i)~KtzTz;uez=GHt z8rEY!R|4043q84qZCeN3VSc6nWAKUE6S29&RVhbU2EL5twr9*^ZR{dGqYXH{<7{sdDTkdHG_i^$SHk-L`Nw;?O*Y|Y zNXh`!mZSCa=SOkW^EmxTsWNm%7&WR9@AF{@?^)7X19HWWWI_?xavawk-fgsvbnU_O z1{pL*m;LM)J`>{c^qs53W>6$UykbIsxRRwx_a*+>Y~zD_Py#h|Qde3Dm5Fo>*rA{q z4Pnb;JR1Jb=n%N2F>-G|gtJ4EmYydj>~VWLRALIFKjC!>_t8)IhLX+w$P zT*4XVWmbLn3U+k=WPh^%?i#IflZW3!(iSgx=2O4VgpHOoW&Uw~=?DY;dA+<(k|5;{8e zZdNr%^vRLu6vt|pEZ>a3B9JvOYl6enB95Ls3LQ{o-cKK@{-?2CQ%ra+f342hSY zVBD8D4SZZv#cj22LYb>c5KhH5FX`RFv=1T0iFm>;t7U`)is4)BftGmp&NM^vmYIB1dy|d}XhM z=Y$_LQM`F9?&XRkUjeLDo=9%k%ywDZ(K{S#;C(%SkBw%J{-mJ@tU>3&BVmp7C!Vg@ z-zwVnbh|MzOgq$piVfwv=n|+-u^G$-k%J=B52RXNd9Z8uHSM2d%r(@iAU=s}Ym~?$ z+&dC?9G+1H-I{Ex#bkKRvnTFh=l+PNJssXV-4Pyp2oJ`#1O^2S%y1RL{O4Lroi}gL z>OYQW)}Mb;nrr~G6cLGW;~tkagh77Bmy#$ zW2~3i%aMVz=GX~UWMXuSzIG^57ZL^GFwF!)OzOKN3J*fGR4kit(^e>`Tv6K)p744cy zWSf_B%~2FbQOevC)wIka6+)Uf4^C-bdK73&kiReq$1mSM9-hh5DkQ`+$A9U#IW+6~ z4u0n&MQR(xo3>%sun&UNj-E6hmPdcnxCHG1l;z8GZRtpsH8qHbZrBVE3 zO+VZx^h=G+t$wQEneyKYv9J;YQy96LlUHrTbOj)bzMy$uG1Ph2U22a&XM9s<_xwT0 zzK=uc$3$0k<|kdMm(u*$Yud$T_4ZGilL!=AC=9Cxz}YrK>1d0o@=VH!sjd|k0Zzis zIoJb^wS56#?3-9F!zNP>U4LZT0l_o>ana$%Dh^SfJu~I}gGP)Y!!X146>ruSs_8+J z`lG8$9&yhUm9`Rrv+7zti*K(=-$t=UUT+sUhn+o8Oc0e3y_sw``Es{IWhv(EiTeZn zkf3aAiF`2clSm;4ZxH3qbXAP2)4o9vd4THywQKmi(e`LA!+6@W5Ntg$+RCICwuH?@ z8MCj`+~4EZo0xKyt7?D3EXiodm)X`N4zLO!;|xbVSifsvuvu!dF&xY7D^kcN9gA=D zfDhe?(@=~{w>0wUdzr37n?*6xuqDF7Mt@ihxD%If?W*H+d&CdD_u!|X#m-|Fyw20M zkWj@lvAZFnF2`?i5y6363~TjAWXvxex5gtDr`toC2^7-z0{S{XPe>RCAR`#rRru%5eERK>{4Ur&H4B zhYVMycc^z1lV21(?t2oipR=aNcelSp{H4{$ z?|$(qheCak`bk4GUO{w`iWHg`zJcjLqQn>k1CQDOi{B4tS8g7D92MB?&syRQU!WpH z8iyobNzVw_wiHEINe~eV%6#LJb|wpH_*gh!{Pj!7V>&Bz4d$;s_|}!?vyq_Z9r$?e zKynp=xbSzBqfCo$(qqio;LjVRWBASP2)S zg~ZoQ(9zfLOO$K>aKO@$>wM2GDPMk9PsXK?UNQWYsHXK)yYl9jg=vVY;u=YC zqUAK*@GG?0pUvK*#<1n+KVR}xb%u(~kDNWh^fT5);LPNFp;?hI4J?Ya>s@ks@9dW}-&rXay_10U@*Q~c}cl1ve=8aod zbAlVUY8UK>9Jfw%;2}6QBY95xT07NPtEbx=CDv5rB9-JXOdb2D>V1st~R0}udZ;2fQR3VaedFlB?Vbk@yRRx3$Yu@z%K}P0Y z{W&%}#gqWna$htkB=6NwI43TQW35-KP}^}R8f5VPhyF0XA6Cra6IA&3-WB}BsuF|V z#d>fZbl=t%lZ>S*W;7qH{P=|CdDlEQrSNonGRy1^f*U=$D&+opK${-@?38Y`O-Vq? z1E&(Cf&l8Lgw#FDYjG|3`54`J=H@YY-Yuq|&*PAl3{kZYVnj7X7Od6U>?Tiq=**Ld zsC-+wQgmACaoBNxaxk1DWxK08z}m6ygpwJ^YDX(~_$&knrjwCdR*i!7qZ;_U#rE%hzrvRG9{I`7v_|Z({dGgc=iu{FC&nroCEuV>q;t)7us^6R>b1kHC>!ngH=pbNz%)}2!TDaBrE zwrAjd?P@%qN1WwcdXzQ7B#&P~x8VY(YUhhY)tom6MaPiS0w6oxKFf&)W!ra6$0k(n z&|57{O%FP@R=OK@)(b#+3gO=HiciTVYNnj!JvIZ?*42mr&HRcTRB$4xZujpfjs)}0 zY5r<^+fK206e*H9xS~oo-xz(=l7jwNh;P~Rp$ zqeDw773^1d1PYOX{-zChXwu~7yTyr+-Qve2#h0H1#uT&{h<9d_)FAjy{7vVx@fv%H6bv5IfiNhXYImIfNxj=@?nH@fvq5Ts zSf3EJutQrZZR-+W&OET~w?rI<5T6{3zhW}))r*t)_ExjTf~sy(Ke_djuF*nqul1_O zWr=o=_AiskAu{baAEW1R9!4X%rs6U(QSSbvDiwr|ws~$B0p?Wu-upy>c_*>YHK4^t+4;vY zAU=zwy2e&<=69wiUr`V0ZSfM&3X_*RLD+NWeQXeARxh-Dy%@bM|or(%k4{L<9Ru=^P<*^{Yj>HE_iFN)ez;`m2!h z6o|efhAq?(Xo`^{aL}@@R)1zdJXEz%Mk3N`dnm=uiTJ#`Q>Q+O96t zZ`w1&;4fs$*YLFN=4Z=rf4&U(Gaxgg2LUi6@bh-qMyWrJaV>W z^n$JC>z7@Pq##lTQ+3MXPhL3q_$!J)KlUnTYgYJVL6t*|WJ6Y%z8$|aVLU$B-aj7xx;{_^k6ub<(x&cNo7Is`XNl^b;6#m@oM)ZogYG;T90MeBT3@u%>Lv6ju2a? zFrA(=n-#7&GhZNmVM^pGLJnKgZLp|uWPgD;EV{I35s$m9asKu?ybp<`Ju=x~$=3b> z&&@gfxYuF+C;jG0cSbZ)(&)I-@rb$RGYCFfxJ(h7KcHE~n*67Dq(wM$8W-mRsDF%HyGUx*{zTlB@eV&COmry(asH&FpN$Aj7 z&}s3WiKN|F1S6q{(^`kG5ma)&k z`R(bOgGtNy0AQ9@um__iaw@#1U`Gh$<{O+f#womp4>1Hb$_-2Ya#ud}?A?9WCamLYg|J zS^HW&sARAv^2}|98|s{Lbe1~^$3(KJS*EMZdui9Jdfl%NJFh{?D}xa+gr#!p25w4Q zsxPXwq_^4rX!HH~dM{(JvgPEFc>#RS^L=Rxz{fF76(Y!~TC#AoKr>OFcHgS1@4eTV z!AY(Mu9mQ#2oXQsaTJm!Qf2U92@~Q1>~2W223@=@N={;tL$F&rE_PclWtv;3RR#Ig z?>F7ZiekXy7^9Y-05@E)F?o|*Q{k6HJuCcnr7JAkeq68I`OxlN{YUyc2>u(r+`f|9?JQM&zV~tw2=+N!hlq{`Y`ocOSw#OiuKl-QMs(=)pjU44R zkzVN1^@g&L$;l~5WyqZew-0B~U$E+xiY6I^#N=slMpu~o#BsjOf8;qGD&ejoQ|&F@ za=+F7J4i8J6x@;=@B%A(~DM(IqvWjQ|b zz?8tJZ!NNE$k zl<^JU(FrGOlU0Ceuxe!%f`#8%A$LaoTCD@a-ANQKzGc5Td*|b)l-RZ}e20*&H%EQQ z@MIQP!0X4EWPVlaI8tUQkP9y2yn0`p+D<}_8KPhZhGkp86?`7pYeW2T6}_J4+YCL6 z#(aqV1wTsYds>FRch5ZA>Q6I>(X z(3efn&JGNnQ(89~n1zce;gBDuVma>UU>KwjT$5id22Eq`?MTYgy^=WtCb&IO@HfU( z_qY%eAGKOwyTBQ6YUcRsB@Ns~|AjfhnXLnx(lWM&$zW=?z8C!26LjWdN zb)oGJ0_cOP6j+ST`h-iwNePab_X$=$8bpVTn_kA2h|cNoewcUjLQFBe+sn^zk98c$!GOK>2GpJsHv11uoUZG6MWtPwSXg`6p&$ zpns1~Q4+5$uX{3k&h(v$`}bG-z@hN2#IOtGw$jxF-XV^ys5v`>V*Eq_XN#>=Ai4wq z;=jU-n=R1QC!mV&!Q2Pes@p2Wa0bN+KEo}lihAB|J?Gci2vhM57v#zct&{EgdM)Ye z8j=XSf(`%B0hi;IO!)}yGr>zOfkTU&-%-*d6(+;1I+kTABNwL$+45!lXtuPHCUinr z!#ka5k$7*IzZQ=uCX67*(R@B1uW=ABrkc@83c?;T^i%RWE`CT`;feyD*ba%hH0-un zYk{8$tYPQORoNrMvbPF$6xQ!+suw4vg^YLfQ4zIFAJ09vGTJWa!(0WWIU)p$g~8v@#QliEQa0PH!0i! zDGOFCjzKDfBHC!l-1ht&;M&B>Qa|3|Wc3wsBBsEMM4>VmklDq7f=Jk|1JwPh?NDPu zYbx=gCQrDO&Ro5E6PN^oXpngcDy0%v!Xu?JJb7X-iqx2e{_H4{D|_BMHy`m&8=H6{ zVBQ=MTV|r~8{R0{%@V;lG$J3715j=wMP(iakh~b5xNnY5%6*I7##elj04N9<(TWK* zSZ95AJ9-l$it#0X79>>tDohg5{smRXH6N-aG3ig9rKDbf9<_btwK^g`1S~WVfwoA9 z_67){bq{|m`91_nghNa(F$h+A8>kMd1~l}tC07;Ha~;g9aywu@hR-M1o*aI7h*+3% zTDSuXTLFQvg|YSy7E9iJ?{Nqq!XN%Zz`TlsPvnm5-V}sW51BURMWr4?n0N)3YK@=$4#H*GcfL9lubbJnF=JchD+7Ilw_Z*)=}$;VhUk-ctm=mh1eMbx7E8Gt$lx>_ymPgZPztg zbMKN*Js&(=elZwStpieU&B%uSC$buLi>wx2B-R|~NVGB<{!zH|Hi+Fz_A25wV)_+Z z(lk85-O8+J(UdLtnAT5?5qJB|IlNCXNu(m}uu1V5Zow|&0*~1XON85!&8W4cyxN1o z$b(F zbd@zWk+$(D((4K15{vxt$UA8J=43tUc(6&6$S?NCU-T_^ro~ipwGY$l1PXSTAD4<3 zo)xyboi7Ds5;H+R9jZ)xw}i-rgi8=880Md)#YyQ7SMG|K_s?$&z33v@#E^XH94l=n ztnZ8ufNwPJ$lY;XhgbSJW;erigHPjmka#bs=|THAFfhbqtrqBJmRGGt&evMW6|Wga zSva;^8t0J)$*Av-tl^0pmx~q)1IDBK(9e@>h;|Lq5jam&U(gYPB(JcV_vHlF8h(vv zaEWy5vowzL=#tX+ND7vHbPT408m>CHCw5SV21&UDkiGI}5GjYqi?82sr)~wCXwzBF zR`S>~L!qT%AyY@7Wz=UcBS!%`zx1q zOd#nRJp6yK*LEE-8CI{N=6M4n(~hT8IKbL&EijoI zXD$A;C_NF3-Jv}=K}E0iONhgE&qT>8*MufHETTME9>5^KVuiE-Qv-CNl-?7EujZx< zLc%q5w)uCz@A+bjapE%VPF34RV7nX$J0FDRse~i{86 zF)Yuz;fv-ZfM>Q{1L$Zpj;Lrv1BVF4iFr>S_v0b}v23AGBiCXe#XhaA>Ogze zzl;DdPVp_Es0kXO;e&pQj4D!}?%&gabn9<_*PDFEH?tKdmQ?A%4&HSP1dzqh(z{X} z+PhKg;7N^C8*>k%lTWCLxL&(Y-i%fSMv6)ESp!io29LQ{P3!D$Y;!PvFmb(ivRprF z+8u|?OqBuvgw7TX$Z@DN4R|w5U#Zp~Hl81mIRRi@#q%qpZFPQ&8Fh0=`&Pg8)kMf~ zw0@Ig5v9n7Y#Ox@zV)e!^`{u2#&$>2h`yUjdSRbdey)#dk{bMXKlKm3X+7rM{9%Iz+-<0KQ>$>Y&M=Rq+k}|g zN!#w}#-ZAHMyK-okcr@WvzjaI;kmr`bmc`c{jox?@okC8EoXB8bkTZZtZ06tlCynC zWv0h*eU#|qcv_xYjL}e-!@xb>$rNt;!lq{DXxmuBoZhtBt5K_o?C+5!p}z|rZOV$rZVjrx;w#o(9j=~T-9)dR+0KjHT!uc+KJYW`8$$FVk zGhjJ>HZWWNec!dL!EIm${Vy=_dL?K0E#9t;pnla6AdgYdDOq}!F?ugt{%#1v!cHtcTHKk^%9&*dB zUU&UMp=>;qI{_Kmt#d&Qr+K5%{( zf=xM=W%M7B3@o1zU5~FR`q@v9AZ2ybVgLB1bhc{$^MvKN)u+iM?YQk@QGiReJlAsC z;+P`bkG!GIYkg{J(_e?&V6rMkDv_h}Oa_eZtPN6vPO1@vz8A5aHgplKOt28u|Ekq&r>n2pOw~hCX)}uu@gRhxtAAd9~ z)N9zPZFv_3?9i-nb90ksI{uPai7SOwUx8*bzX%Poe?KB2EVf(yV;oiF;x^ByfVWON4C6fbznsG+zA z=^`ng+Z2z=&bgt#havau4brlKhD@~k%o!H20aj9;c*-}bT_F-$@V+9ROt(YZ>O-Ok zbSDy;i1zL6!9ER2Xi}*DVH*9leFaj#MgeC$U&sDEpT($SS)R&oEoPUq%n)|Hm&A@| zZRoEB9WIs>2`CJQOn|mRbi-SXd6^;tBSxKjm9rSi+KxfR_+IS(T@T6F)`cyJ%*eSZ zrIjTJ1kwhsGt8(u{SOUi9%q1=v1n;NH7O?Vj&=4_OlOKoEB=6BPN|Tka~pYQ4LbK6e2<>8D7ED0CC=%h%%CL){u6Xxz4oK-3RUA9@t;Ehq3u872>5VWsKF>pTlk1rSW;o$NddyH0_Mqr5_Rq_0N zp!PWB0!w6@ppCnzFA%;tBJG!dO|GfL5G+luGdv7RwK>BSS7q2)xHq5}U)fwp4_TH> zt9oHScP7!B?8O$@Rsxh|d73EUyC0O(t&i^_d0?K75|6*q+)=b6R9H&BdtZ5xW=(J> zR*i9YY8Ulc2xyF>Dr0T+6QKVeUtb*-_13k0RFskwK{^MJ6r@uch7OTNy1N-d=|+a3 zyFt38Q@TOALAty7e)ybt&U?=H{G*pT7tY#y?Unbs*OM0yBN6QoiNfhneW_$Y>9>5> z*mj?U0(jDaez4B@mq0NQS6aqZ*Sn$4Si0fo2)RNCBH(1c{X$Rcd(Xi`uUW4Wro&qQ(iQ)ia;sv#VL#%M z^)O?Hrs3c8UTo=-{Va{1LYIL|f3}lBK&rekI%=n2tdVFc3=&9V# z_7=hwvSg$wPuNsacX{~lsMEewTTYQJrQ5g-Ho9-P8wRb?`@HR$t}vE>IPQx^cgV!P zE7k3U)?dCz+}0ON)6?MB@9){i;Cu}X1Z3y^R(+!r1Aa+QxgH5pXG6@tS&_XguoDqK zjt4exSK4eW3Yd=PmiDF9UmnS4c10j8W%gg{4?um@s?BISo%I&6T)BZB?duaZt~OSI zZ_a(bW7^qi00Y73;Yz15Fpa|;;}=FiYWK>aA(S??ECvwY9nOd${cbCYHcxw>&z9)& zXg%kRPFt4?sT8MkwdqU;QrrrbYXVMSp7CcdV{ofVr|g$cGRYVI%D0sY=CR!60J_NK zZdu5|bPNU|^xJ=Hn7Tp$UIzwcvD81NRcq_>p%T6MqD-ewxzfygH4jOnu)6a>B~%l% zNx1#`k`|-YZf2qGIqlfx-u3?L*-qkwt??=i-y=*0qGvg5A3Lvc1f9s2l9680uvn;6 z%dDx+JwriAtBznfsrop?|L0)Of9kUc_4#Sl4Vrh)aT{|an!+RZ2j{nPZ-1a$BL(-8 z@oo*3*7>{zItLmjkBZkzhQtL4CIDdHS0x536wAT+TOaE-@f0^q?~6`BT6@MGU~Tm~ zV0BUS(E_DZT0};NLJ*d=Tvb6_pl|faL=WqTWn{2ui@X{7L%!AInB;?bDqwl0QEC_7(=iR?*=3o%=*@l!ETz^Jaew9}7;id*WKIn08 zfd!JitEm{6fAN3`fet3HQ-P$=Q^sv$*A;UH#5ExsyFX_6A?cB|lyql#qei*GsZ(cfuckjIDIKC3r!1cMNzJ2Te8P%jL?HF z0J$E0Y}k?*@WjjcgO%F)lXlg&n!?~g1?MWf$337D|U?h%YI z2u3B?(Z4UFX0=%6hL;j*l1&8D2}f>6(i*WL3L(rJ4J1YaG@k6~%iobC=1ox37sv8O zm5yS-N&uY4bgU$-VmMU?8Fi{Lsn`V@+%^&6oA%HdF)?brh+wWRS)s3ZTZ9I{v0u1j;5#o$3>ev)@>i!jte;d4B!I~fnC)s8 z*y$o!<@-6kpd!1~I8f?i3^4?;T28ACxXdl|Zg`{dq0hAWhf_Gn=HxoI)=Vw*}J(+|4C1vsCfVhH2Nyv!2CUMrH(-}Qw4Wv z&I!_Unr>a&eH!}wKj32zAh`4r|3sXiP} z*l;BCHH&)(-SU@-5x4y4{ydL{X)Rx9E`XIWxj2xoFuz2?*cJ&V3dP~t8XYm{z3jcD zG%=bOpg)lad8IWI$7#mKYB?gfrCcBv=4!uBcDYjjW+dN<-$e5H4ZOB3a5izZPTRsM z9#?s>#oA3Rx@pA};kI>hn4%tPQIn%&xAbH+W(xZWR*mVvsI^>;t%q(+4B(Dg!|)kP zPkj0B3Aoz@vscC&6`!@nu68%2e(GQfQI$>Nn#0WT`jE&`nkP2MH=+*=EF+K&I=$Ac zxsAPBy=2ez^faAmk)=j_1{B3}vVyUP<+VtJf?lvQ1n1Zur_VB$S>4;+PP1ae7v>Oh zSBb{Q5U)43S7UkO zHDcjJNov(rV!LXUlmVSrXhal0Na?&)cChb_-rDvV2OV}(MLUz{U@1}in8x!hi#V31D3a7SO4b^7y@ueG|I;tnkUG|h+u4!~^SBk5P{S_4hu zrMfU~E237`!{~$0EPF;N5{E#WAWt?t*>(<-5-i>(8k&y0KB#!w^Ik=6SDQM}`_0{w zke^z;O(ALSPXF$tFLeG@qF#$dKh66*09~rope&6mCbvFhj*{OT%URj_J|jiZD&AZi7JdcNGo<;R$CzNgpTy!G04K94KXqK{fXFEJ-nxNg zbO1FDTi@LCIOd)j9gK-g212fp=>7zg`PQc=cTK^~)ZU*e#3n4qd7r9BZT%2d3fZ>s zftI8!5%WAd+cuk{LMISBcrH)6S7_PbnjSxK{%Y`2rO*&1k9aZ#z=5i}yXMz9`|hJX zp=S4*KuzKvcEWYrcR;8jtwo_m!Dod62SD*Yar#ZC*UGnHJ-T7zK9$l7_?RQIL>31n zY7_Ad{BETaHD(K4OVB=sM1ZF%6rD5!11*|P9!4e-B(B#XQxfm@5#6g5 zfGew2J)qHj5SC2Nq?#&O6pi6@(9PfHZ&lA5_1F}LzhaG!X4E!0^f@RtkAvO~Aa<7E zh+!};-;nar9oX@?0wK{n=6DxodpOniy7Qe3$K5(GzXX&bJuk9zc&dEenZAMtsB$y0 z9jujfDIcSEt@TGnPR#j7YEo}npbGY>r7Jy^qz?33oc(Rra<<|}?Otqxg*tn+uyroG z#g+M{5k;^9X+T8|Ef0?0b3zGVGicd#GeNFqe!PaZ;>651xxGRr61k| zf2<~;qdBo5qvzHDE)QLLttTpp2FAEMu03jKp;})T0kj;II9k!*s!iwQg+H%-x;ix- zNkOkk=Cwiu$vYmcnrzKh#yF(Bvqorn3*>v%eyE$Y($0E6If+UAP{3c6vZ{XMR9~sH z7e|u?@RM%T+pJ(0L+(4!&OFH+0mYp~rIywiHXq3h%nHKjINP2{D!Ty|a=o!8;L*HLD9XA495fzm;-Z=p3JUk&G~W5$4rXOv_BmR|g&30NBsV zo1Mp8M?eX+6!l6J0;_nkQu3rgE3O}|eE6N=F;zn4 zG5M1>?R&>GriUqG--BaR#;`Y|80T#-Y_7KO&l%@rSO$_Vsl?YimpWeCW{QuG_Q+T? z(6S+bo=8?(&0#VT@`$)f#LVR0TzvA z&d1@_7-Yf-CkTB8#AggRp@Zl-j*kaVdfO%q@pS~}AdrcMh`*;*s({Ovac?_bZ%z}M3$otv-(f{BPNir|Sm@Xs zjZNu!fh@quK<%JqkNWw$FEUR1ijlZhLTaMqM+YxvoL!6AI;Zfx`I@#qz3F~|0U@a% zHtYIBkFDL0W5~V73k=^*lqW_lQ^HAIP^^icIW|GU`tA5j*!JF7g=q?7T;AghW(rEk zlGPUfK2rA!hj_s7;-VM{wD8mHswk1Wo{vxGv)*&;S}st*XCC*fkcm3Ci2$jj(`|P7 zNJESE7bLJ%yq^?A1s zUOXyr!eLPBz*L#uj^*(QJs2^T{WWRhej-0K-bHkLwaMAYhoSlox%8wLyjGjh4@?L{ z#MwA@6W9)}Kd;}Q$Z!{@Tgt7ayAu%Ds;3tTFTsCHp%RdC4WFoKp)6r#7A|_+w65x1 zHrV+^ja-O$F!^@hx0q?~=coC%mJ5yKW<%eqS^lf<$o|O9$ohA%1#*hmfnbe$a6J+z zNjzT~5iT6)3wd|a=2kvT9qK{MfFAwRyi+fkMa*FFQP17&r*x?qUH}O|Zm3fs9kpP0 zbL zNvPUt;fzZdp|Q+5)>0aHS@o}gT)OcUKd;(>|I>;*V?AMhV1@$bHmbUH@n@|2t47hhO|mGRqO&8TK3U(ORV_Dy zK-w}Q@!aL-G(DI7&hzg9*nv>0&~vUYW+~uBUxZw_Bi{oT-V4A&EqooC(dst&jOqLY zvHp1)g^byDH2ul>){p3S%sS~lFfs$0uW~h*{xyjA&yrobP&Rvh_KsC58ui5U;=iO_ z;!jlQIxV0F5Ml?}m~v^W39bhA8h;bA*c;F&ZFq;>-+VP-%^Qdv#d4-KDa9YuF zBOh6a{Z9CugoLYqiAVMlyhZn4Bp46(=>eGj%}znPd(Fr9*D2dcM?{wk4NzCZznuqo zaSrs+YrRT<^KNo?I|xNyqtA%W8FH ztoExrZ8k?J+HdxtU<*M(0Vh8Nu-K%GgYKttU^FgdNT<&NK%~#-AdAF^ZvLqD-c@qYCuh+7!dY_lG^cB{%}fc?!^W-u5g^5`~qTyJ$(59k6fM-xT27LQOZ;2`STiwQ9Fka5~fg*i?Nwd zp$#Z$l=kPCg)~5Y_!KKHfKdvvsx@|LoM#{B%_GEIFE#?L{O-x>5izSgigQk4qZWX~ zD~kCx18@h#z}LPi1!61UhDb62eP_<>GOhcYXjbG8qJ@5t?kxCk|MB~L_CDStS&J}E z&;MkQr!>CM18kR#4U=Lr3FmO1*pcL-GXL+#d>`tG^oqA(=Kx$pGk_{QiAR=d@ItQs zTZ%%hl0*Sz^HaUg)`#7ZIau^+6jv;+`q&J9Ra+!ay2s`qXp?$B9b6AKm_&YB&!<>7 zoCA(K-#-cHdkIi5tu_1rw%;kcUnTSm~r=6?g$fD$i5bgZy50U?hY?omU|fe1BIts zBp5S7!7gBrn$AzytK@jqgqW)@t^K~!A`WXW1C81w{TnQ{Gt|e!O~ty#Y=OyD-;N8u zRNow1AX_3%94@9)CON}XM(a&~7q(yzqatOtI0nCC`S!q!5FibyU7?o0oB}UUpRF8I z{u5~UXFc~X@n}JSo&OM|&iywO*B{4opaDlxYxlda+=+|V$cZ=)i_L$27ON^Y63@w zwBF$#U2UDJR~X&%pM(h6W?0s9qy*&J%rH1v!4O7K!eQYlJZZ5^=|S&K;r!41NJbIJ zNb7}btq<`aP$r)Jmrova0yEp_}++)3hX}k5552E896bn(~ z0$Y)OmFNHW_2-j6$la+1`D?W6zdY+f{e#@c&c9oMY-A8d8U8ZB$I~jGs4~ne%RS^y z4)b9b&w(RdHllOAf%0;Zxt+Z}d**U+p?Vb}WRoy7#j&^4)@dKq0M=S_l%loe zqMjrHKby#+&2;3UoXhr^CK&n#6>!qsG=4+dUHnD{{32y=bORw@1to$9JgG8(AfzT5 z5DIay2!Lek7v)ra{TG|{hf-_dK0I^gvFV8ae&&DN=I3?Fk3L_LQT}+)?3&aMVFIE& zVT^A8BN?o|Z>e~}lmB@GF&o{3-9hw5X$m{!KSrrRNp{-jO(my;^7MO&TOqdgI1|ut z6GA?@U2K$w>`n&SjZlUOS{BSpw5CG-I;r$)}ylKc1*ro|TWMGMa~S2OVG`}!nd=t~yDQ&>#AFqZ^bfVgsV^5>$SuiY> zgIejl@ONpl>0;UTd66TXOMICCVtqs&n>U%$GmcE`xoiZv?>Rdi0w_ZyP@IWB&@^hU z29hFU1Bofp$N?e?gzZY_(GB@b{*^2R zAuD_?tNU?9YFrv6YQYPK^3y)Oh2y749fn7K&v%l$yVq1ZP53#sy>;3ye0{6WjRv_- z56jFS)R{8GZ{9<7LU!g~AL#F1t2p$XHMZcc_lf3>J;ouwR%sORlbxS~7oG5tQbg)a z6N;`k7l_}(aVC^T3;#_w9)T8pAL3)|-vcX0pcf5uKWKr+;Gf zhb3nF9O}yV46Z=fa2ENZMT<0>zV9Yy0@h6)3J2hr`iwEPt~>g<8+8X`ANiwwNYnom zu+Ss;pehCrs#4(nRSb9u$M1T?l!9RF_27;>7Q8IkNLZ^M3i)8dl}4>--8o^5hhmPnFb3aUK!d_O=CvRE zA6x*bNkCL|aj-;fu|=U9>32G)E=lqxEpx6s6X9?yL;p+B={7o8_ak8XMt%;1|5fb& zoWWxMgSTTppWf*D+oAmNhgU#6XL8m*{vS|S15Fx52Vya_j&t@De%~KaiOyt8^!fd; z9VAjXW!?v>;CRhI$l(@Lbo6cc`>n8`wa^gaqt!IMoXuN+EdjiWfE7fJFLZJ7rFTbH z%-M6c@fzVa{8BXNpw#Dws3*{Cr0^MFTkf49h`$~heoNqSgXDfP3{Te@(mc$XJQAwz z^yWGEKvfFdCMc1aa38jL^dq6~HQo2nmq~oGnBff&zbM<=<1>s0ysSn!5cVjA1Ad>r z^8LS>i2t0*0T}TitXv)+_(SBsQH=25JR4XR0>{U31r=>g&qopRZv8fv{}=P$s0OPBHmil$KAg#aZOswx1<+;b?#!E@m)7OoP~Gru;8|B>a4 zE$%27t}H6(W}Pi%e`&=Cak&SG3vGCpk0ILi@*aR+MZ%}7Q2HLb_#TspdVd~5vLdJs z1Pi+HBfILNzv7=3U;>$0<9{DU3KgIY_cx&N7fS#1`k(KAdxWr=2z|(u-!c-I`Ftsf zt9Lg$A|-_h-;2^Aq6Htszxv$3L?!@3cmy&J#B7g7pHMi6zx#yNapL0}y42=QO(t$7 zB+wuho*d9APVQ>|6}bwnhDd?qjA4^L%?g3ZC1akVLBLgVN0iz`&>S-3id=`n4Smh- z!gOcG?o!U$8GD;*`K$dRMV+tuFxl~*6pk6NhOZ~WtaM#)I;2fy*E;-mr^<~Kdgr^WOOp5eb%chSA=rGmHWt3JpoSk4fjCpB;7j&9~#D{8!+ z_wPUB5yrvIyu}t?-6%F&-5dg`&Rdu3@l_!(wMobGmQ|Ot4P$7rF>@jUi2QE5au~L$ zj96a?r{yO%5`e~A{ZZH4kxzyVQd8{)jI6w;&J&cdIu_skUr#oa5!IR~D}kBKFD%|L>~S}RB4%rO(;uAyo`c80fz)yuO9836&h(FU54iwoq5-y3|uYNZOAJW1p`$l zuB3|O|7FLoYmtdMfSs6TyBh<1!gSGLr1yKUw-dE%Sv*-C{Kx)9Vb$bmL#EJYzl9g){w;CyR{35G}ek5GSzUe%&9;`pQd;7-*IQ z`*OqpTBD3Ai+Fi2xI;on-TmUDP-6bTs{Kik9GRpvt40~IOQ3a4FjdYm?!>&@HnhX( zIW%2~Z@h5l4Z8`}hcUG|DP>C`0==7xQPQv~diAPNV5zpr`oJ8J>?#pSx_(ut;SmYK z8ZHHp?tcWIe|w3aCmvF@V*k3cuW&nX%7t2zquKrGqM=&~Jy_b4!7P8P>;CfX=#MYx z7hX^8b|tvy@R*CDn+)RPSJA-i(+k)@=x&eE!Sl5al05u)`w_|NJOKog$h`Qn5r$^f zQ(}gU)iY0e;f>r6G*1BY5xPL|Q**Mu8!s1)n3qZQfiG&c^b`W@@CZ+lyK%NDbYvE(N|Hh__MLl1Xl}4+6qj!%?c*bljlM~qO)L9swG{Zielj5;uIGVIhHB_N08PBH| z&GN=`kM3$Mp*Xpz6rJnnFp`Qzr&S-1+cNz}o6jNnYu`5AO<)>4*P{*F{$Noj2ouEo z{hE$pcdAZ1%xtU#71+$%YTBm$tlB=s!`pZdfQy1GrdjNPx$s)gd%mB2aiO*LrjkIB z|IqQ9fp(ewQwN~Eb*7jF7KmZgj`+aSxGomM zMl@aDFE|do6A1maBw;TkbWbN-Z^w^L*TS&nZC2<(QK$ zf~0V$>wELT88Q0Ho*qpw1w0CoK%3uLhSfr|Lr=^nxr9HG=ih@;@ZwWMXODfh{y*;x z3%Iw0sn!hrOz{XQoZ9yQnJOp3tF+8Wj*-cdM!%RTG4>9_st&^i*R|4cAH8HM0DF0$ zi3L8w-%cQOt#eB8VA0<|s5v9#uE@gsk*CR%JbC6dV4&?Z zuy}?4e&O|ca3Q~q99Qf*uJ$)7&I6_d^O`ceup0o0MwS6owTmwfC?9Mg5c155$!7N< z5c5`Nhpp#I@ybFzUbm>ijD{Q?}c4#*VBtf za>#w?v?`1d0d@zKR)qV+d#dRw3w(>2#>k_!ev81`fzoF4-f;{2!)1{m400}zG}Nc@ zhB=hlxqp>u_g%B!A3U}?I#WX6LH8_)q#j_t_28-+C=zoG?jC!}J`8L0KtbgQBXTD9 zcTWh|T&OB7CWg5TyA~gjL4}AZdDjm24Xi%bIqqUV`Z+-`J~=wG3e?<;sba{pWRjp{ zA|c|Qca`8fy?nXGg6}OM_rO?0h0O|O&`VlMgPvG{juT*tpUe7y#KHg@Auf>@!gluT z)!g&8?X$K1gbLdqc(2i3P_n$FQEC1f%yzF*GBiDyL<=vnT1v_buu494xi&uE>h4wG=Y z_QYhnI+&?A=18q%7d}9NSPsvJPrk1=J{B80u5k`TdU+>ePK`_*Co)GFy50RvTC-jg zi&j2*Amu#mW$&8eYS-0CpiaiWM+(J}zw*wN6HRCLV_&F>8BolBqgi7cl`a3?3_H{|6u%gv|VcUb|kMye_UG%5LD<+h9tUUz1uGZ58PS!X!fI+W+-q2V%c1 za3@0NERQB#*FyWvL#anhfJlRC#8mNd3pqMgT4s(o=C+0C&PJTresH#AUtt1fMcxK&btIg#oKS7YK^I(6n4APCXrAEVdK(R!h^vmg?T(|?Ae zi%;4v7JeD(dcGw%RepKo$gT3%IMv_dnh!D$ao$nV1yDkBR zJ2Wz7h;?zPeKZSnj;%C3RkJkH&lV`CsWhFE8n1e62G1{CX)^PfQYKy(wYti1ZiLxb z6k$=|=NVz`sHg|WTr#uaMc9N11S}i{kWxxwVM93EL*1|KU%VhfvYctm7uG19=#F}e z@31=}LzL~`;NEFj;dTk8QP0j47WrIgJnS|0RYVV|04=~8I1&;xgcXiRYqwxSltKsT zN!dgWk@sJJIN%RbrL?C$&<{`9-3<-RJWICxH{GXA`Y+vohj|UeW#;eyA> zevejJt_thk9$D1ZcVz9rN9;YQ;9*YS$!qaA#rH>ADNhR3szk@QP|ZA1KP*+yT!yU7pr zTk-@2n&dEhq=s97n0*S_1P9S1bZ9&|PpamtJy6q|u63z2il_{KI`_agWNhIxc_!uk zEc|2XE*$`Mql4^A?WmgX;=ES&vz+}VVy0XZEGntWr0L6DFIgZ1q}d;a}=}TO<2Yn&sq(;8WC5AP`~px+|6fVORu%l{DeyY zx))}H2QolM_~Y7{CGyV9fs(Y_4fW*wzc8nNnt)_Do+hUR+qyX*qv!)tPcs~`R?D+A z&Oj`Q3}L(uAlw}kYDNGhwMRH6UNfPI!21(!>($e|O}0#Vi}K_7>sBOE6@zT|_T&y2vgRe+Ou^a=&v1*6{|VEpY1 zevgYtTJYAWTL(2K@}2;jG`)e)+0K0Qt1n%}kGzRyOvWmUQRvoKk;L)6inzlzD~t`j z)ny9$6xzuVLx0T=`SAGLkD-P^Dz}Rr$=sdolpV7wWo`q>APQKzdn6RhO)9K3t!N@E zU!kg|R2G#bm;iF4!OCkq=O3&e*sUL(y`I0Gxf+gh^?d7e=CaoZwBz~g)}*->Ki#6Z z6fi~6IFQ}~TP^I@RM%&$5u}q`lDVu(+ znXcbox0k7IS<_9_`#khZ+1-S;Cq1j#NC0I$7t_#CfZ&(4d5GzB(jMd49{!kjrTQ}> zqE547*)+Av?P+v$4u4eKk8>Y16(jhV#9p@4GrLhg;(q-T0(SM_HN0tzF!7 zdPg7u`;zQF*G;)dO(ctf#$x5&JiF_vwH?dx>otyz8l{>Z0IS#YywLwH4M>1SA;;K5 zvBN@n!iT!p5&Y~{*%K)8N3(VVs9}p8OyjKkMUs_!g*qNiPrGh`C9Q@ldvuUl$C|R3 zr+51e)t`W=N0}e{-$J)0B(3HRAFkapr`BN)Wx0&JAOu*Hq_EB)EB7!UP(?Gtw&<h%hSLh$-L;!cdJ8zW9 zUzdgAG#MTkfndaL4gz0&QRWvR!F~LNc1c)^QltzeF5X@pGx^ZY0@mT7!CW*Y&VDm% z7KYO)LqhFqc7?7f!0t`iW_P82N5RS(LEMwdObJ6cq}|?v}5^ zL?!vOv5aY827K0@gr=u*!OugXQhUgl`2Gd=73|tMk+OV&sq%*xFJw{D-7i{r?A(r8 zqJ0pdlnF1j8PhbK=AsxIsuFOv>U7$y?8iBArZ0xfFYj(@{4}lx^xi*ISIdBEtMK=i8d^H1lmeb+ap&5A`~8gbO=`fQkbE7@om zVYse#JW8lP*i|h-^kmp z1_;=X$%}PmjuR?B6Ni#WHu9W+B%7lU)vHX6SU<>kSUeYKGq^_8G3y3TiK^Eo~bnl5p0FI%cm2n`)|@$6Rc$3Qk1K)p|X6GiRWPGdZynxeV$eMo0j#R zi($-Z!1Hv9NGfl*4pN&h6itzL`xWoVDb2##pBx5cgrPw@Nx@{cE0pvbFUdLla3`A> z3-5p8m=2W$Huy!$8ehY9%N~(>zPl6Vrf7+%d}NJDuz-d0OC@PFY(j?%E^7KMyB6=1 zs-#Q?;u+{Q`8a6YR|C>2COq$6po8YFhfCxYy&S=@IFQrK?V_1GjvbPf*f8pJiZFcB ziALl~V9##tT0Cu4@8JMms^l-+!WXsEhE+cSrL8;R;35(nD9UEyCB+Kehl5=f$? z%tZf*mDuDUsRO~{G6T7DX{E}hf6t4@^_nn40)3j?{aH@FJri@?6I71oXJXx$O)6!u zX`Yb*bHSvQ-k@bbF1_joT-?EWt~d(1`=$i`u&;ZQhc>S3b5jC8dSNxNugW#P16p_niKMX=yc*L$JXo1K;>b(R_{RDlsYhLGwx z$8rrk^x82%@^`jyZ#t|`&a9elqXj}jB%waDq21v{q0=SA6MYSa_um{bFBb>IVQ`K2 z%r7#t@{con7VnY*piq*4s|8y#R>&$!_0OZ;-cb{fB;JV5!Y7^$a&V8^>M*wyOxOb* zF5KAw#))T$)Stl5-xc1A$Fc}253Vua7@o0PNDyORuuTX>wf*VkG6Ux$U9 zY}6a#moZw6cSLOln;jPJb~#?iaXn2Ko@32dOuF8Swx0C(aCa0WdeB51N_cB48e0$S za+J1Ljms|>!fsWcs4%_^cuC#F<>51&t2Ty$T4eU4$chERkd8Y_`4mr<^8oO9{fB~s zujunFHiCMq35^DqO#gqX_pXKfi!eHkSqyeFwpKdD781%AfQmXh&Z>dX{L@diu8g9# z04TshkoiJ}rdwi1bhDQhmLr79+1@jcj_yxAwX$indAKJ#o0EdQ`kL^3)(&S$ z{}pQ-0-f4P9!Rp0ec!z`5cGzS$UU~GKE2+-KjIY*{awgjBUM99y%(uSvdfx@QoRZj zS63HFX(zfm$HOp z*;`?52`J1G)d)YU#`0_>o&d|nwqv`Nu26@vyhj;_%*YXf<|HC`F%z^GXj(gT|lUGx#{7YXL4XA$lO zOg#n*CpNunz%b7nGH=eic?dGlgjloh|M5Ytt_p4H%;y%^Z_yD>C`z(Yc6mCX{aU(e zHbv{L*b^OjEJNpW$hBkP##TPVU_gi0$}ll z)U!_vScc5)=N%@<&cd%w80ZyU#O`kQZVw@|5`$s~BQqRkn*tFd%XN~a- zzaPJ@gLr>D&XHZe z*`LTYc0Pf9;mXOmqHq{Ng&am5D9%2s#7UwYP2-S8DmA-D0jKj>5ShpVd~!Z--$>)JXJ$*|J)0QnyI2wjc$N{i4y9z(z8ySKmjV(I1Tl|{ zMqiN(3Yzgop%3vaCg6_Jagwz0qR~$PH&oC?0CD@%&kkD^aZ2gJHZ(3<_bt8gfsvF6 zjbou;ZAYL!GBS@zRw}nOmc=a{dw}=DbCK_>7H{DXEX1`zZSkh~z=i_OqX4S8_xZ}B z{ZaY&nEOj()lRZp8>vq$=8I)L9=730;b=J%@s5)7vRQn(lmE9g3ee=wghB5x1#%0F z)v)C_0-<|;dR=n>bW052r%QdPo*KTptGSb_nG&C?7jf02-2$@YnHHNx%w z1ic%j;Tz5z(Y}CQhm^Q5>^ZHTALq!mfE^~XjI01>eakCmAcZcHq)N0VaCmFWhW>HE z*^Y~MHrspH+=c7Zb+4Ob4`2e5YH}MIR}X}?>?->IL(iQ7Jr5le_jHuRw>*!Rh#;UW zUh23;34qq74f=n(di{6_p@dC>Ix;d-eA7>Ze#?KBGjXo0y+Xq>Aso^`PmxR;=w@w1 z0iK5FP>OOtIo9tP!hV*%n#gIl%QUS)HFw8}-W?kc-=AL`3~ z_Jw%OmJiRw*z4j1(Yfrd5|o1%!ufB7jglQ2Lm%HW@?BE|-0fB`$bZMTtcrgD&_WoW zceN?yE4#8obV$JrDkWcN=A46bLBl5|ip-AEPmY74EK$WHa3lJkvgivcQig;t8b9ev zq2TcUN!}fu$T)-U7LLyj4T@ihLc*7~y$p)7|IlCSxPJK^N830IgDcUnKiTZfWteq^ z+`5cK4Q~5m4d;5+6^CiNL0oN!yGu+6>?}eo`i*|?dZ_ZC zyZJ1unMdk2?fcR_90;#Pm^}Yn?csVLRSIioUpSN3?QMU=X3X#)e{p4}BY8p7)TZax zsl(z2JMu5dz8oA9{9_5Yw6YG9N9Icu;Pm7p4hvN)$BE((F=~91vs!-Ln5B=dmnC~` zF^lN~p*oizpPW~i%v2~|F?&UKABoOn##6ba6olxKAoZGu=3&b855%DZV zV%6_!rbIj75fc5p$P3@8@SM+HhC5T}vLR+a$~(W$$!)5Y2YT?w8_ArjmXI`% z*49VFIb2E_j%Qnl#WNe=NdtKgq4VOS8Jfcw+Jfg@9d-8Z(2md)1leHm0M~FFX-KwT! zr;G3>-iSxyM+)Wnwm=1 zg`9(-R=(}(OO3o)xKA=CPG8q{mUy@4^U0;-yWEDD%!%}`^Jmh=oQX-uG>}P*aFe_b~Oqcb7$2Ii89ql zQDtQEo@seui5(bx;IL6@KL#Et|CMtD%Dh=|!^TsK$y`2>DXV^{+||{AKDp3~@4qsF#w+ACVd5F}*e)J%LXc)pa%O ziVx#GdqqoLUunD6G5_XQ)L_mxYSdTJFLnhGOX3y!Rl`s0*R#@pqNF1hey7FZVz8!e z1%HUffAfa?+SFX!GwKPyLncOZ9yM?Bp22~u|GO}smX2A-ejdgbv{5F~{Ofj8GvWG` zaQ_~OM$vwl zp%K7VP7_qEEq8qn>GvdoK#uZ~Ssb?dQf1h2FXwEswRz`nO+a8~xqk`QaUQt^pW_0m zoPyF+l0qR)hN|s-{irO{H2Q?J*dwT!4UUAknNkKFM9Lm1EWW^cGfQl%$L}aPV3 ziKn0T18Wg>1pQz2hdOVpwXZ%M;K<&rUhqH>FW}7U3=@BXxpH;7oo75OBzOqVSGQZG zZp=Y>0EEqfs7w^{JD7*KbRkuiw<+D7#9=J_@p^uD$0-fQ#gF$g8n3>l{KNPB9`T!p zKR9Elq-c|uKoT?YvW(Jv^#%wn3+YhtB{QUA=?;NS>S@xV$+lfB@M0je*485d9{`v% zvh^dsznk#dwG!u9TrT;$MQ(EVxw)<~RIZKY=E3#mhIzekUauEQ=! zs@d;$ir!)()a+Gecc{dFs*InihsY=-}HoJEkUKIZRmv$Umm}_fq zOxkwwGCyP>V8K1s$rL;@!gu(bQ0#7brpFzGg^Nwui%2WE+-g&H*?nNXM{(4W6hUob z$N>TyZVTU^99T78vQ4_6kB?)5g8ZN6HU0Y+_$9346Z(e8UIjQ3# zj@!BZ3~uK?9->^Jb~g4uUlh^#eTKfJYi#!We_rE%71xm-{qnH2CXWg*K_JR4<$wP) z(&I-GT&qVK{FHCV65BNR8wU)p1E7hFIZ+ck(N)_Wl`LIip=5IC2tE-=S^RbGY&V(w z+I5ZutrXL=qlcA)(H_>4ZKo0ckFd9ni?VCGh7}M{8Wbc4Bvqsv98zFtEV`tnL3-$x z?(UZE2I+33dtd4y{RY^x_dbtv?X}jiwku>F;O+RS74el{ zDY8LA$7=ukMEuPY3Q>vunKr>U?*GfQ;fe!yj{O;lZ5+t2vuxBLvHDM}Ql6bUIbh{r(wEibJ@~50LnEu&$ z^|?NkQc+QHdH(~G%Ycp&H@_J}do#0Jkqw$x6pX^-PJ&&TUbI@yY`wl);;}-!{H26< zKuy`}d;8qDoZ8O{!9c2m5aqM$u3F%L{`sx3w8r^_zlK-W&ji;b{Z;>YzldM>rp(yJ z{cf^It%&rjdWrDrczE#JL^!Rd!|(qWLj2n?*27ccenuym-gy7>j8ZLI+t#Z8sn&v9 z!&6{VN5kU{9!5G{hDp^k4^I)wAa#bDnL)1KsKD_s(TsS=6+9PAUowM5in=u; zX&(jhqb-a4Q?+T#z3^!xPZ)v={(}Yn|M&j=l0OysqwbuJx2e!dNy$tU{r68leTt+* zBf2%b2h0~+Qb~3&SFZ^-*zekO3ym8yS6*vN>z#J@3*2`?Q972#Rl~c!R%F$qQg#hi zyaR^Pg0eJ;6qu zDfTA&4NUSb>tE$&KbxW{xl+v-`ftnlpTbz0CDk7iEQPS+mE!v^8Rq}}(`jkA{x1mn zSnMi-ugXZPw}1~EhtuFO8*v5%$ouf69CtaS@MoC)Bm4oO8*))0GS%&_~&}E zBK&9f^S$x^=iN_D`S^Re>DInYMQUX>spE?36@>d=`%6~q-JL8xHy=ILCzLVt4%(;n zhijY-uxU2AI8sg+%T|o*7|7gs-hquVpFaSq5D;PTB?=xYo9NYFq*kNKy<^t$=42x^ zaVw8n8s%^z{U3K7P`dsAgF+3}=LKSrfPi`c@c&=c`(OCd!&98{`$vX$s5!8hRyVax z=1^b{>e#4n<(j|KmY~EH=lXWD&e@P@suedJI=ACncMBcl>fYF%pZ%*ITgPhHjb_%^ z%=L0K{lk0A{Y7c!ALME)i=h|I@RC*We|YUGjG&8!V=u5Y8<5)S+eeWT!ljvSmJQk+ z4{X)>bGKIEC5N|l=xg3Go6^)be?|=!6racP61=W6mus&M>UOQWFCEbg`6RS9<5L_( z|2(L6+UiO>Qd=iN^H+#XGigvCZP@>lGC-gUy1_YdcG zBw^n_J)FQYEg#v<^Yt8RqM|blWeFZ8fL=NMRp?BOFIJIQ~cF{LhOa?dPA>i?QMb-m6JUn0L6 z&nzjS#1|@X8t>0o6sLgtV4CSNM!uo?Wi=;S2Y@PePmvVYM782h`r$Dv zMyZW4=G+5*KBP-T^z^QO z{(C|BdoUj4!GB0X6IG#qEI)0YLQhvlh~QWH4dVO@Jo9HPZrGvaHj!Mfw6H#)Sc`I< zWCz1Gx~xj9l%TFh=K2`1RyM!?b{hOpWXlB>=;i+)E&c@s|IY%2{o?}pJoYfn64i1r zM~v8MT_tHpC|#~)naUmyi%^#M`|4a?AT$Ke6Y#K)LrI4Ytxf)Zm(Az8-2gHKd&I~t zeVrhe8TP?ay={SQ`{LQ0h}&&ld-Kw>mk6@eK=h8+xYO`{?=+4r+K3$0h5enXLv)q`Ig$crrx z1JPwS^{3x@sL<{R5_8So{{_3Jd+{#z-Q2kLrBX+`f=Rc6#--l_ipV%~3*xJtHvVqK zFxUq_`JQ6)!sZLJTdvN58aTVemSn_j-sBJ#EM*>7hGm?So<{t&Ll+^`? zQq8pZu=`DbciKJI`DO7+4WCvbm_l0Ax7qYs`q$hKg=jU4-tFedjZ2r?PW)F|E3Xpw zJBea5lzedp$Jvhf?*xi=1<6_#RAN1gWvbLmqzlTLLH z0AE5zI&+IimC3Ix=lwc%6XLrLblh^_zS5LMC+8Tm#fNA+@+I;lMPj{ftAj(i!2RBh zKE7BW$ngeqmOP=06rfOWBs&kOe7p&HwaDu42hSUYZJCX4;NIQIfy0?z***l=^Z4&i zUq;AR&BvHk@$aSU_cv!~4!?zL#5w)w)R>ws7CA}S7rIL^FQ z;E=%aNypaR)?>T1i}}%ME~AOIh(~JGMva*T5&P@IiFe>%1xt(!xwZuc-wxjqjd4z8 zFCFJJ@wS2!F~%Jn0rlIvEYxc5+9%hmo+wIm3GK;~tpn?CW`rTKaw5=Uq3rKdaGC-E zNMxd+bIM0bzxaE3>cv=_>OE3DxV483)}U%;Y7(3KA70)q5LGu z4JMy!5_4UGhxRYj;iMLFHAfjQ436zeHd4Rr|4iXBqr(ER^3|U4eg)hmOm$gN%#t_% z!YcnNEtn{!XF~>Ut2Cz@)@@@}wX@%abR;OT6U}$5FxePUcKftp8XEKa=_cIn$rB%_mY0p z^ATuTJWc-XwahuDFn<)Y;A9h8Ffn^;*Ta_pm8k!D`xBrDZjRa&4b~26nY}-sGWoJS zT_Z2gcT@S{_}RgpynrZ%;DtZx$@V)yyLE1k`ShHv8!-jj+Q{FiSlB`w54{|D^@e-f zORZpnB@t|%ks~{{9ZxgtHUH6WCRS^d+KhixmisecKrD_*EPO&^rn48T-=|@cB8oPa zr-Vx1^`-H0WGdgr{`cgm;wv@ySjQFyTWd%yS{-@nqlMvPYgyY{AN}3>Lan6@{3W=j zx&7)BzQUHUxK3C6kNX9#J+?E!(gB>wFOT zvPhQ86q?yq=UCnS)e`(p3P69KBr#0yK~1Yf8omStkwejiQ!n-?CE3Sii#>)sUK@!* zCHsyd51CA$LG5HKH#IT!+5NirsVgIGdR)e>ZikRk&1%O+Vc(2 z4twytHuEw=rkUEaI-c*KbfW>usv~lbi#UegUZW)2FU~lI>o;$-b_8IDf=#_oEopkKbEa>PGqQvN~0of&IR-4bmdi6oOLr*N`ITpRX!8N5Wevp+`5-8 znwwIqREvOHstA5rj10I2xf9j_x~YJcaGRf>;2k3JY#O$7sfx{JF@Hjpz-hwNbUdji zs?d9PbkroQ@?`l^&yZS*i3{{=U7ULKUs(WO7d2vqWPaH0Yp5v99=7__X~BJE0Ofwy zq4I`v8t! z0Z|gjz*uJY)5cK(onN7;5ehn}(zwaMW9X?;`6m0skfH08I5##6Y_Ln#?LCNWH3sL9 zo46PntazJy+8g-oUUzCd5y-hebpgy6Nu52>L{c5~WI>$-y(4y$=BD%w8fG@2Aw*al7EHVyMM7gbte+56~8#o?Vw=6x79&l zI;Y&urN@s`^Od5Ky9Jh+_U!d%#oz>6#>FWO=V!pRJh79-8WP|PJq6b8!xGg z+%7k#Pe|T=MJHFxs3j0({txKpVTqFAAHw!2$-!#XG6k|~O>)oDh*RdWUGr?Mb_hGe zy82B_0UAA;VJmO*Mt2;(>}tAD|Epfd;@XVWJ9zM0)J#=;szHBD(Md0T>ImY|{eGVVYJ>8xfS20Wx&P{QW@QrR1(Y>BdMJEf_+I>dddDXFCC z$oq^R!QuoPG_E$88-mooo8)ygz zZkNl|%*I(>OZ#B0wpVkR!=d44o+oCRxyg1?G`){8h{)tTy;XQhslYxe%Tu$IIk!3H z>`qjIoKI@-C7yEIGCac-4P!oskY)N9hIVY`QHOF2_jR6J5=k=-5yiVwavoT!Yik@$ z-1XVMZ5Q_v4CDi%WFY zlM>xf-h?6UbM>!#GJJ#zgehhh47Z08ft$;s*csAH&0(6!JiOuJkeS=n&Oj9zRxT*2 z&D!<8o6!{7Mv5+6zy>D^@tPIt81w3cT>IMD=ZSt^o-r~UjVq7z>SfA1!(>}u7m7OFBv^TJr1OjICxceG z3E=N#tp>aGw&^$4H_R>58=Wuj?5(@#PzLzp+(OuFT3@d6*b2~>akZl{>mC-sR1|0^%I`fITZ}806&rdf}rxJoW za%aw(PR|(m4es%`M1|d$GpQ}k+I(16Gx4*l?H5}Y180l@gcMd~)-ZH-=|jD#Q_9s24YjICbi~%M+j=*t6%xyq%^c97J|w}b(Jih+ zd}?}Qb8K)mQJ4tkv|)gMEqn(kggA4kx76E2hHtyKrr{^nyFJHGCnc57_0?=_G)o;9 z1y(L#=*I~h(`0PA@VT>vrzSL9R;A+4LOArfRr0zJb-iu`VW`vQ`?) zswG;wuP*J`u@4YoE~y)4jW`X%0`?mHjz_aW`;du-5BLM+zkZo1nJ=o82OHNEGGL}> zTWyUovv+YWwvSMx>ZrHFAIe3V$#&|Fo!^$8FW#+~BJqEPQsWEGX%U0NV&cxUi-PUk z5droFsl8|FN7=n5E%$zMJEylQ4gnEihwEaRr-3T3nH=2G;|XHN?&1$!&t?oq!Or_{ z5-Dok5L@&KZ=FM2xRPBa@HPB*&?me z3%7e$=Krl$3IRR+somBo`P zaR@rc>ji}w^lYFqf<&5ty_u=gK0YhHHah3;=6ssq`!oy;jwTRh0Nb6shKpWuS@$IR zRw|bWQ%iHKIF#bm00l7Ep!7BJ{xBx-Z=eqb+4BXOkT%!1o(GvaJ4V}|5dLPMsNZiD z{4B+I20qAx4g7uS@hgSfgfM6-g;&wd&Ki~x$CxS`LQXD6Pf7jmfn18>%8yX}7!Z{ikmw)f& zE9+TnNqM{Maq}X;p7`;}3uKR4v0l{E?Gg6joNH`Dg)XwrnJSy>W!+?iYK@Wq9+VXILJE;4;6)fN5-$Uj1}mL zvRF8hx5-Q|IeN2oi|q#0?By@H=_2e+sgS4+!+d6 zW;o$HUq}uoIwBs~cg%Dw^`q^xG&txkwhOap!(8G9rI5iXn!bk;5NUo~jL=Wrzswp; zfK3+J0P4F&44TLY2E2!gj(n9`CQ*VfK9q95*XXnV^%{YOCpa39f$893ndXf_8~rYd zNAdeklihd6gg68}Jk8YU7Ijs8Me2341CE(U*0hxrLWv$67eb?TALf=Njp;%)Y)+rW zlm=^DvXq2?bOI#g!N0~AE#~cwEe9rFQ+L0Q9oo%<){U_-#3Xj(?cs$Kc&=D^!jhof zzX3<$h$}P|F&l?DmaRq^id<=%!xQruq^9UW@xOQ z8JhG?yiu(#OW;M8hdszYj z-X}`I{?P*(NHaqLWooa2*;#x;IcVTFXLG~&Kf_{Db!2jud67I($TmXw+&@laOE(1J z#7Xx1vf6Ci)t-ugHR{2_JVUZ1Mvpryut1KNoA9K?xjg5ev+5BON|TWbkZ!{yL&!%# zi8`w*&=m7rE!+O5aFbU<-G=s@vq9ZK@nLu!!w$H$7q?U*NmWYKcA~nL+g#*qaFI2Q zbSSZBj=8<=2-FVY_EU;Bmn8;1{XoE~}Wziuj$jNnRf@2Ev(an9-b~+I1@6NrC}{9qhF1J~=4d@X-&oN>JYHUC zdio?Wx6PlrnHP8cP~gD}(+JM!{hO5$(ZCn|m;{{7c;OqM9^HAzzF*+b3#$}q|JWtE zdu^NcO`~jlaBJ6;z{Gs$i$)I;L8WUt*{JWURgn{%cTMmXNzn1+EKgB4PY1TU6uDp9^uv*8S9_{dSfrau--CNm zA-pw98J*KUb9WpgTh>3MiFGgii;%T=U0!8$-+1j~MjiY|$S6?-Ia>Jm z?=A*Pdi2`;1FPd6;TO+v_AgxcRcuqt#AZTzV#d|d!m zqXPrIyuCTv_I>JVGIbLHoXbo;n7CfNJl(Zl%8e;e1}>9Du!{FY)E9j{{aA+IEq0so z`!J};9S^Q$ZRcI@qHba*}v7{Sm31DXzJF2>}$V$IiDtbhG@`kQKdz-qbX>#wgC zw+tP)%wE>vU4xmkyPWS0h#HIJPf6?zJJ#8vb zJ0}sIvTfqsDXf@>c2s+I)t8S~5>#!*PD8luSBgan+$O#a9+|#62eHuTS7PM^ab-kZ zj+oyBeHJ4fHe#769ug;Y#}d_0h~cfL)8}B#0bfHQeMa3Cu6c8S+wE~*L>#H7MxW7h z4wzXLR;*4>x6ucgD!0mlLA1*y^~;c_vnJr9oCLw?t}AMRKCzWv9jH7nXkd^5r?zyZ z_JBJ<>Af$F;kNa*8K(QU~RfGa*w?;d9L>Y7(2?*i&624q{Z}kyyo0iCMcRh%B#bwpmhr z2eP#N)06F7`<3n zH6+k=kA%X;VUI+1)DAn(arlM{N5Gkd{sAbi)&2WY5q@VUTl_5g zl{&dBCE5e6IK$7LpHQC=Ur>SO4foV~K({@Hw+J6QCJLTS{cS_^LiMOAIcs@64OXR< z%cIfm!1q;qCffaN^A8AqF^^iXR<~xNPRYJ3d$EWhsiT2q)}ZpM zQ&0pOi4XDsu5a0(Z)(BwPytt-fhuBl-aGpIsWjnsQ#DreaI~wJOU#v^TT^Q%i_E=; zM{@7AiUTVnLxyXIBl27+YVOig*vuztzXRvAGpX~ibn2a(_UG%@-P?rcx1Ac!@2W^m z820)Z&|pJk1V-17``R0E^=SwdVT6v_0@U)AX4{h|7abMYu5m;?^A}c7 zd(%1??Gu}jz($+;zg|kZ=HiZd+;Em;$5@(X;5INKWR#>-y zuncy@Jmn^7VDoe=y6(-8FLH~pyGk+c=`b>>(N70@erxl*8n`xi#^lPG!X3|{#WgM< zpf6pSgmQoR!woPJ8~M0^ z1T^dN93;Xx`?YJYlAXN6;0tSk_+T`Pb&DZ90&ieBk5hWCkyJ)=RaPgj9 z$`&uOP<y08OMc^zo6KakHML^Kod9}g zl#!O}y`7-i_o#FW4)PxH0_(v+7v_s^Ku$b8a~uAzG1ly1=Sx~~iYc#KplO=zX>q1J zb+*yF?a&8a_CFbTH=~ubK#etMkGd@n$l7e^1SMEg%A1C}!X5S1N{*cQ``Ac{b{oh_ zG7tBD(m{Z;6G@f0*rFq^ywD=rd}-GKu`6h;H0v<3Pw0prJnP}??KopdsfI*>C|1Kg zbU9tNR{*>u!$xTa}B=j!^8(~?wP zKIa9TF=rO$Xgi*4+mm-O->-s6&YfOyx0E)fbLJ`F(*_gvVhX3tXe6^Gpu86+(DM}} zpbehv_<0BK`xHEK#eb}GGdy84+=6?NxG;6*8bZ!Zb>QV5Dm!H!n%fuE)P~PAXvII- z02wC~R>x%>wBqqKI(7Lm7F>gJOF-Xb4wHJQn;$5Z3*5`A>yO$0-ej`y5T96M#c1w~ z{5|}FIT4<8EcNKJWx9b`iS`I4QGM1>p6@VMqB4(~lA*Za3$K`K){tI@;WH>}kJqEq;q%#)2Ln0;nl5krTdZLF!nfrv z2rAsRO@{XKK|gxG!?)|u14|@2%5$KwGb!SV33fbU^~371K42%gn(mLV3qwP%QuJlj z7NP0xlz6lj0LDT-dSTg(lSRulPed7I=*4s4z`Re}c9Ge+$x2}Q@zTl@QksNjN{8%; z+kv`b zzE;?KRhP;ES5$A7J}`lfAG8S(dOWlun7UA)$C6y7{3)41jlS$}QfbkX_polB9OHSv zB!Pa!d}JAH%(k;ajHHtEv@I^2u275Z3$8%Bi4S8@+kpy>OY9@E?~_tqX2$wSS2L0#a(^5MNQe>&z;7ygA;?J@~(H7-1a=)y;5$con2A19JX z`3i2~DyLmUgH=N7a4YHLV?- z#DIwRn%w3Hl-C6)b-30-A)zNa;(hzLOGeF=9alhO1=`jMjwemf=xv=gVSP<+y-VC zFxJ~>@|7YuzeJoC6iIe~1S%8^d2xC-Pf59IRvI7k8ACN|I-)%QU9nJbMDry^*zWpm z>rpczgtSptKl6lU>2kKf z09#An_0X<|h5}tsPtR=~739U64eH&~7E{S*su^n+k4sRIc+k(Y!u5pdq`<&6q_{0+ z4cMP?(RI=W(ALDCqd!q`csxfItNX~iKWJot^Zf{~*;Nqbb4P7IKG%_1bn4@zli4*& zCbIXqePZHUewCCT%N-l9KM1>8+t-@%k5z;NL=ok;KE6ZqZ&?ptMz+TZy?XQ`==Eyf z!qIeHF`Xgcnv@cW%;Jz~^P(f;`coo32RcC32Oi@$(?eTrrnd|v;!)mQAq-wPsJJ^+ zZzXwfwL{1_nIt{yS2iMwn|ilY_jeh>QqOn&7p^L7)Q>UYRE%)^sA4pf)tDEQ!XY;I0qPjksDl(ecew zKIGR9a43Q&n>xJlsjP!f}3gcRj1G5S*I<^H~Z6 zJ*){$1EtHvlC>$PGnv-P*MnlRy5vIoLE>@HUI(^jG8`_G=|~zS3cqFmY{^?v%yg9( z1`am?y43Xw?kuOrGfTa87~PQaPYKSf^TE(UD{4|jd>7Ra=3+mSifUXVe@m<@`ri+W zVpy7;VT;>S^ex8Y?gPsqHfWWKly1%E=9fo&L1aH~Yp0BmO=821+vg#Bk4<_z zB&2IJ5Uml{{CzO+`k8bkxmgz!tsTTDEbb$CMTr?%nTCZ=w{@=txRqALBTmtD;s{j6 zpLV6G$rEeU6SFt_L4J20vr2{+d)TQ~YT?^i+gOCR>{HO>m#9fJ%dvqSU4xDpg>UB# zE*st5B5q^#)DLZ9Q~elT53uCNUgrg&Ayqry={ZzaDJeJTQz+{SBjdtp=>mICbAtN! zXlkjjz$363KUPoPr`4f9y{qeoMY1-^9&rcpYc3P{@^+sVHG~1~n6i_>rAE8e#_Yja z4oCClt4>GXUg-4TmgAng;6Ynx|8i|JC$}Gj)TYdtS;*Q4RB2uY`BU^9#r{?Fiv6xJ zSLzgtKh;qbK8rkFu}z`z>QI?_@phwk_!YojfV*wit+RK}u!gwhG3aK$eW- zGcMJN#=v#=Al9`&GA`S%2|M)bu8rZ(4-K17?Qn^V4;sU)xr_|G=fmBqzD{ASvZsgl zM^{HJQE9y_h&)Z?Vf}#ZH3$n+%UGmjvF6v#)MR;IY#2h0^F5mWK+-Xr(c&!Wq)RZM zyC*!;>r5DfKGryd2InYbdzsh!Z_c5UXN@&rqj^6$WP3%e#QOQ%G!N1XE`MK{&oEgf z$nR(N!Et&iKb?8GY*ybc+#K>#2u?X3lh*{Abv@W0V}ZbqE5ZZ(fG*SGdv3i#UB;Ye zrT%9Z++<)1!8p8s0eGtAM52IlC*b$%KRuY2J`dJfu0CK^;;dR?=b(UB@eq4Z za7M{m&98Qg)?;*I2q$B$q~%5vkTL)!jSzjA!n`7w5><%bev8n%%)Jt^u7u{wSbIE! z%P6w>P2x0R@nV`7+nRPj)kY?Fz$=GhAJWBpNY>=RktiLEu%ahXf6)3a1;2(A$&4@bS_jQK412Xlr}Eo zSmR;3B^}^h<6oKZ_pIA)q9s3aBQb?S7LCUe2%( zsfmLBBUI|T!>j4T}Ly_VWL7Da~))2QfRhWJYP4)XqL&mj<0($hd8=;eg$tvhvM z9_xC@BW>n!Yl_lzVJv;%+3}!VEv5Suzi10X##&wN`80Kq6k_!l*1!$DyKww@2_aMG zCQx>`{nme~ArX!|&&GN#toE!+Eec{SUt4Uhw#Es^=R&j&(=wLkNK#0|!7NKy-GE)4 z`;+C+hm(rl#eh=Y9@Az4mu{QuAje=~Nq zCmeD00w)#1296YvR`{$eC_i?`Q(UrFoND2++O=XL(A~bTrOIFGe79QM)HWMje#n|w zHP`2gVb7I8qq~w5Ib}VcApqXPvntg*CHB^7tnVVX-*XT~unf3Z>EG6MjwQET@;)?m z@lEA)0Jn+#!r4WgRP2gf1Q5jaUwLXo|^nk z1OIbq$=%p&P+d4yiEid(mH#$;tAXA>Rw?fC_wUJv>#ZFwh7h)#_P(QE7`Eu7Q|QOU zT2NPm^>4E4uO+VD4Myw00=QosRB&(EKw?rsdo-RSEr8`Yu~CYm0c$3MBaFEmy4{9?0eH5Du_Btg&d^=Tgtxqo{TT$z*bz#eAxCRM2tCpbf(m>wp}a{IVEQBiglV;iG77R&Dn5VRr@p zv%?0pf0+%<^aP;0>sZ#x1m%EjMm?kwhEGf7yiz+O=M;Wf@b4_85MIwqqzFXT9)f!C zWi>xeH7|MKqiCi8DDKkxOZsa|;a|TbLZVzRg`>o7eLiPq39wx^*T;hfNjS|Z(2wF6 z0$|lD?r3dV06XjG#uGw{DiV;+j8o$c*+JT6;$KmDINap>kv7s6(LJaa!L8Dp*u-`T$ z)gLD^1ULzA6M?R+?v&w-)0h|G598%*)B^T}}!O#m99=BT&XH!;`a$Z`X z+dVEwxbZ>$BNU=FKkH`1wvkH5;V1HF}oeO*&!<@wN%=A(9S$_sPl z=OzJqND3d-y&uvq`Po7bI$3?8^SqXAqlr2O?Only(rZ4j(sozih~h2Gb57I8_wUyC{?`GAnmkF62R5e+;$=le8u*ow!^bsLMjKo3b=j zkG&4iLCQTZN0E4sRKAnBJB&OqlkCc#_lqGuPvY(`W;bBeS@u7A0Q zfu4?jJgC82SCd!q2d0?Te6wi@X8%((#QzkHT34&CXbYDYbFUWW2`8;zwJTGnG`c}1 zHFb7<>3B{s5T#t5WgCu`KV9*w5F&9v!x`oOiAx zj*+D8Z{Zu>^QNuqtzAyUyLx5;il;WII&2`j>#+t0t9bza7vd<&8wIwJ5S!2BWbJ-S zHCE3xyK!T2Hj@y*L=p(e+Kwo7x{!3Wnyku;NX*?&q14pWffp30p+%upm@UpGoLy{} zT!W+ZWc;Gn3y8jBkWLXl!zXIKsMGimu+ubDT8AIr-W4ewwbo3wLEfzvAaEx00{x}| zpSGg6z)9f7lycwGR3V}MoEyFE>SWijN=!iE^f2Br6-$4{B5T*Let&t zo5S-R9IN#^67vI8dTR~j0mV>LUrvH!-yqXNPWAuj;p};hLU}xv`X$YU($Iynq)SJ5 z4M;`kp@B@7TRatetLRJf?rI*W6zX@AXJc_)weSs{<)CU5wM{dz9j2yzpRFC>W~uAygMW1LOk2{69jC6 zBPHRcI?ZsCm})HwZ|Z!qVSsn ztB=GC@KZ)PWH2?(QJk~%x$6bmbyE3Kg6L>G)}CbGqC?o;gt)Zb1W;p!Tp6|5-Y$D_ z2&0oEI6!q=hYf@}JnYcP*ncldWUa$0vfw0>;=kd;vkyl#Asi>aTF=X>()=UxxJxDO zqEVH9f&^9EZfm`9D8^`Z3Cj0588_edy}YXDzgw2%nPC1tZ;HX?R-24S z553XxN@_rJvmMmo2t_O%`9-IclqSh}7qqko+U z7mQeOg(WCRLP()9w{yeBnOqyswO%_z{K;Z?q1 z_;j@vHbl4tmwDj^f;I=Ur=J8nB8N-A6|vu4-B*wA zK=q)b%xIp+u@cDQfXw!8zp68k(DXvZscths`Qcw9%{N9Q?LaoyYE-N60gL_HGj0d6{dXez&HvDkd+ z;Tq7`3yy`J_DBOhqY<}Pibp^b4Az>4^*GDo4Ncv_%{h_kW_A)*IhdLpe;9l{U&uZ#K|#%2ICbynOe(Uc=0vL}q0RP{i1IUeZWO=f z^mFKS2F+271N5NP@1PuYzd0;Z#IASUN|_8OEE!#l-O*wYdn{7AqN@FelNRFuQNq+HWS zMBY#e{$B4N{~Lg)*W6CE6(|A@P)=eIL8G^1yw=~OD2R}CD1i*p6Kssf!dcKV`=zHS zPG)oV=!n-!`37a(hkRt`eFY`*E{H?=GY1(m;lW$xQ&Mdhc=0CxCyox!8EL~%wq^9= zz$8L0Z_BX@|DZ7(W6O@S9!1?C!lnVXQFE>% zmn!+R*N6baFPfp3VIy>~O$qWooVJW|`j>f+SYcjf%_aH^vcOle+kT)bPg&?d02>b% zCXxblK9cUYF31fU>G}4=8N5nQF9t!6rDBOf(wHzDm{u~oSyRkGD9+z(eh=+4>fhnr z@6AC0v89vy$v%gp<6yw-8c_HrNX4QV2z=;4g6P8Bd%T#EUm4eiA1mU6%oMbsm|@=B zw{Zc^&-8`pP-2cWU)*}03zmYgHFh6S&QXFb-GguwCq5VYn zV>z^phhxjsbVpIot&&(0ALH-EJyb-wOvjSZ6QU@QgD%937CLSNaI+K14Y8pc+TQ2Y zvaf3*j7LiqgeHCgdGS8A85!9P$fJRJ)z;#Sb?gH4bNK+se9~?O$j%uPO8#@w@o|XI zLs}&p6ZOh5eGPwd0gDZuMu{L_ZJMx{L;E=KC`;`^SJSgK+^ANZJWE_GO#ULXC)bU< z>G$^b9>Pl?3^aCxaJL@8#$9ENVJ+4%K-fkxb1;fDye2iLhd<@2mG2>1hai_z{bqu= zUZnXS`d(1B_{7tkdxw&DRY)xoEc=x!C;>6;g<2U*lxFGX2;Jb)2=qXfa|(J#g9nie z8CjUH4MIeQe|BC24ghby6qUyLu`stTQ&XLDLMrC=ibLMp7Dvy8!H7S%IbTtnMHtd*(xoEo{A(}EiG_z)^r+P!#(DU z^P%gKEda=|YP$zHV)Hb^v>n6pkz%-4^0ZRLYBfxv@Kc2XE;x#3%?H`Ux6dy`b7~Gt z>WT)bcahzC;7;d`y-Dv`c|`Zn+)~lK5<$x^m2u4v?tzZDI6{^~tFK z12Y2rMddoSJksBddRy=LEqVuk<&hE)wXZq7kLhERiK5pJn%2Yig7t;dyN1P!?4cv& z1zn%8&vAif#8_`@ZT$Cn`(`ZF>7?kw9WN&fC_jA(X(bVBwqJHZyS>l>yF=cW(3o^I zrqIv6o$Z`VToP8aZ?r#{#Yn8lf{+OQu`_F{M( z9C0V2+xz?jv9bp%()dp^p)&L7IajqFXh&vd2qRuczlp?B?A3=kJM!v&yZxp+QQt8A zo5a65v}*RuLv3>nQ(RmdE)Ikeh{qSxzI0;KA6td@eX3>aX_s}cWzTJa_<>yGjA5yI zk_md=Kg>CtHHuA%Nk&?5p1pkU{T*awifh=r5x6OMH}krdi-d7&cH6vk$}q)>PZnr} z$j@O^c13}PL z=JN0hWfI;mxa77IcyqMoP%e_KV4~&bw8ygMeA^mV9lC zFGwiPyu`I6SS?+IxE}ud_2y2+5M>Qn{E(3f)iGXN2rr!BheC5uvgjfZb$4$L6gL@d z#9Oeoq1|Tsu&2s*v5agy@!CtDP!CLZA1posTj0BIw44?IBK(AXd%ny$Uv1GEZ+50Hd&Wy(VDLmTmpGgcxM#I!;2_4)NfBXywLHG$umWVgJZNw|)CQGGD#l3&)*#dLXtFXMni)h7S< zE+;bLKIM>@jcTR&;W!W}7npMIlw^Aa(slv5Ge-P%kWJ@-ZoBtDqNVD5-}9hgI^;Q= z!NZn`EUUNmMSX+joL<|2Bj)|WHR z#ppf`&m@}Ud2TA8j*co~to=r=(@ei}r4o-Jn?%j{H5?=03Yn zC8q_}oRRudVEza1r$UEdTi7tj%`}4#6~mkQme?>!JT>v!i$fw|L%XGUc)a;~kD%k6 z7Yh3s_H%P=Oi6!UD~mJX@z#~pCm?uQX&i{>pWc}V6Z_zGC$l*+l9%4ya=CO5g^qha zE>Ssuw2^884?aCx{1Wo>CW+nThf55VCsp?tY$3J!d<|&KOuzm*m37}6yn6Py@a1ZV zz8cjbnzGhs_^WN3g({^{pfg1@E^`14ciZo3C<)wK9~tzB(O$LstF$;QKe?ta`io483Lj)WAdE9o_B@2t9?xwa4g%(Z+CD&M-Ce z^URy@fy3F!yB`IwMq2Ebk}>h(Sk8XW+jB2yRMZD=G=xI$){cMTz8g%)s~Eh?A$>h& z-mojRKa^n7jRUVAA_t|r-E3=d$qy97X^ko|H=TS@J#NPVvc+VaQ}s#9a@vm{?bfgU ze~i6#Sk&wGKCFl+BBCH5AfeJJ-6bH>-6h>1-L0S^HFSq`=M0S^(j7w&C^6)W_%{;U&&Iv7WW=b+6iW22;Y6*9A_1%D5u;^icKMwMXvqXFxj!+P$k& zhs6B~QKHb1ge7$Baz<9B>-veA@}%>M>{!KWhCDByAJF}Jyje%0*jLVb`*n5u3C-lk z8FJK=PY4_{gV;{M-TMP=^GRciFDjka3N`P(L?ZCsy_4j&IrCYFa}*Ue zR=NEJpd0(KaK_j+b^4!*{Am8_a?OQjwGc$3#O^Zg0ZLNW9`kGB@e|J-n_0giTQj<_YY=@8=cm!}u5$V%c z^b^gS?!|g=7!`7ljoB7$mkArf@_$ut+Q)0yen~#`1LVWPX~c1@;{5*1dRom;F6WTY ze1E!}RYG#bj_(7GdNy+BAL3wAl>>>U74OJR7JDOaVzx+RdBe15zkk5DFbmwIR!eO> zV*_fyY?tfSr8tzQ`LA9L8B-FBUrnuhJfz{aIcIwEg`CG{VNWSxvk@@l(X7mlF14(e zJwMgUY|Ni%y@--xrJHSp4vcvy@l{YKH5@xrv^Iu*jX)2A{-i86=Gsf^su1mbd|#V6 z>yMn9rtYNPaIVS!-uz_?Fzh>DIte;mfCl{LrD`Cd#P$u4);Uu@=}XkS2j}LA!S)PA zHRI{aDfjt$#fm2p`opKZ#Irp&g9ypof!h8)BNAg(uL(h9f6i=i9-N{aQri_lV!eEG z-K}luB3R0Z}^g$xm-=?M(YQzdi;E(02_J$WnO60$B!pKrnZs|`-{ zZ@#%2&3kh>nVcBBI-OFnn9oeeRxfie(D7)tts&udeh}aI1B0W>F_s@TE7Y|5>W~De z)5w%Em2SiDX5hql!aB#_fqJ;I{4jCBGPb+99a?fg#s#USZN^zjM}|=b z(7VxzYd{0;h&U-A0lBgMCyEGMFyP*tIWh9xd80np-88WN=rH{XN8{k2H|w93uz01J zp1aeFXDy{MF(zBz`LB&FG+(5jBsLFwCy5@DXZ9JBIg2-U4WIrc|H|F>0w2l%tq(k&2ey4YPoKS8fB+hFG;KFVARq6L+-@{d6+QE?w;8|_oqqD* zv*du|p52gPkt%Wg9d}MsI?o}v_w`97(b%Hnt0~kg2#2k}&YkJ0Gv)zcaGmPZ@jz3q zv8e~osV5yzSJ$Aa#8fRQCBI0mCODv0t@7hTC;r>+su7^Vy*2iwVDimE9CuLPlD9He zZH4RF6wRBZkb0q71%#@HM{dBu#AMM4E~({~Ls)*#=a8_+eV<-$3x$Q=WW_-}Qy9Ga zG6KY;Rd#4`h2{O!b#m#C)U}I`%E!ex1J2vkTTTW_McaRTahv;iFFWFfE@yNkckxm0 zw_a0X5!>hAcC+%3E5=XkDW3BUsFcy(+sg2WP-?=BJh-ZuAx@=53j%Tme{<@h4>WV(?iQh zxk$@>SA6q2*V`&6Mdvk?U}O*xvBY6-J!N5EKLmC_3!gt7eobicDnMI}b|XYUqVF!3 zLe;nVi{bnC&G{&Hosf>|0uRROJ_LviI5mR>X@{epY8r6* zx7(7KlA_u!0w0l#_@YKyCeyBLub6%f#ObViRO zkLS~CZp=O5E1GSBT~#i=;8+-ekX#nagQ-{i^u*E`jkLu^k6CM{9^+}HZjTpnmWr;D zWWGcHGzde)p*sUJwobR*ld!)qJG4Zzt$w)7*>z#6-F#+Cbt3p9niTsUZvj9Gef$}J zVwj@t` z4E)V2*phXZw?jv=igxR`>zjxmqLG@}(F!ds>}$&Xr=B)TUou%;?ejX?ASFtitatVc z^R1-#^zey78hgZ%vH9`Fn{d6jH`98HCc&jh& z5v4`<^xXm=xt@e{gqZD|D|!zo)Hh2Nk@bh$#7PFTB`{a*ig#nHU@gZ0eZA$sjXx~U zoPJ=wmtY@Aq`*_i)MZfrD)n|Ako=7iz`*-Pz6PiP;9SmnVT3xzT5W-o4f4cn4?Z#; zQZegAmhJlSl=m~)wb<}<+S74<@iBmOWmFGct=VY@(^+Mc zpymIHUM)O*)p)If;m6#krjI@**bw2iB^Q3XJv6UT6Hf(`dTMU?2gBbEGFYa;0Q6xr zN{gJT3ZsS~X*}B;3(oq%tEDyBt2hKkTiSBRT9ndGpE@ zsxcW!arLU(+q5#fM?=8)vDfy^fDh9O7Is@TLol82F3!=13+8omji&StncV~0=Ob3u(=WMhKO=LUg9kvL zC*RaBkicU}SvpUn#h;(oW6)%csgQBAd=^lTNLZ*`lMB|n4`oLwG0CMrjAJGZ|y zB9LZJJ1gopo}(#*jpyEWAB)Nej&z}BJr*9KAoRBZ_?5FuUsy?yXdvIZ%T=c#DXsDM>?mioZ6$oB=TAR(k zhZ6NKkO(INa9(v9l>g_;de4tdio)Y0<#WnWHca8Om5fWA+{1(}@UdgiVbmkHTMua> zGS#s_3p*pU-M6Ti=9uz*1>2U;uYf65zv+K>^|Hxb^kqS%OmC&g zXpw9YzZ=Rm`M7J)US5P+_w7vqc7f{MWR2HfM5REN9laiC|9zFoc~H3eZ!NH$!g#$7Lgys&aej7W2G`l z?J3EMddqlK#%K>N1_wqOe=3h?Q_Sa)Cjp0uYt8Q&ahHyyZ@Ybcrn3G%tNU>d6;-f$ z(JhQoLX7O|*yOpy)~b2f5AcJO_48_8sEFOooxWntbKgMh6GkxAL^`sAWEHkdOTyqh z5RgHWEa+mfI=9e2?{~P|vY^8Zy}z~USw@lk&1l^mn5w(lMp;)Z-(M?}Gohw)SL{kq zE@qCYi8<_4DkuKn)?B8MNebSDO2lo-x{CTUkt*yz8qimo7!@C8t*S1(yoK7$ z%Es&aJ5|*@=e#x{Kj&A?rrz&>kELd!2fX}_ENViUkiCZd z$$uU<@JUBMKZx?hzpN-aD|c`VuIn%A1M_kNW?R>kx3OI`QNah(6NMUF1h%#R+~I!? z;LiT*lNu7uT%WxH(4)* zr^WZanqw2o|6|A6mpjIf%gr&X6oK!P{cSOqf2Df!Qv}siRQ~-2+#YgG0OLaX(`Ezi z0#{Lx_S>t-^}NbRMW*toa~&uvqFeN&&AF36E(*ha2Ew&eTzy# zYf0MEjRz7Wf)+_;{Ym!{uV64tSbynM7_HNzWKhkmlvE(66bl>pWvQP;B|i0u6{5)r z{{4OTL`UCc1kU3l@O>|I7fUKoa=@&bJjLylUAuW*8Om4JAXYP_b#tj~6}Q(W#|je9 zux`g_lt8OmZ8F9i+l#)H>)aSU_oiAbGr1h^Ju1`XsX2c`1CJ&HE9`()RN9a2#24DZk%N;@_f&68tt3OJJM?6C^|MZ;khUEVWFkD7iR`jY%N z@_8j_@%|4EktF<(pSKK8F}(5aQ_!`AzKj-hu6C6)b^HWeNo4+!=-Gaake$Lc-vz&8 zNzuUbzI9GZv%OV&=e1#DnRJ1=`zNSts)fqp7Z%Rzqcqc|*B`YVeP;qhBtA!qGT|YA zHUBo)@2F~Ps!A?jYUt_2KBERBorl?g$qawQsV1~khi;uSH&HsAFn-8=JE6r#G|?Be z8V}6Z8O9t?%n+gx^gw{l&~5Q)4bIwdzkdB$B$qSd)N8uNr{Vx6n&`6!d-A3%(DY<~ z-8ZGd{+VN=3>bMNe}_Vd+5_Ih5+$su?@$e1&xyxqJKeP1MxeBRJ{;lPn z*y^1S7Le#d3uvhLVR87GPy)SSzYzRHeuI4`N}u0_uZwoodt=-&XUwrA+dsjz3Y|3+ zEz*~%dp2OF@nm9X*d8*^c+z^{(lqP60GR`g`1(7v91y|158sPCF+yH+dIt!W`sc+2 z=)ot4aBzMx5v)Uo^3&o8LE3pdcA^)7AARmTT0sdYS8xox#c$;|9rAGDzVyG%5 zq=RaS1#YG-x~&o^1I%MJADn~qBLv)RWQQoyzrx_68jV=ydXV*(ewyuhUQ;fs571uY zKel!Wfm}t4?nQr-FmnQzv%^mws%_$&*2-;>uG{$5gT|bMR%_dy`{gxK}DR=~gd)96cFYuUIfR%V^%oJQfN1^d&4H`nf{8 z!VA?BS{t7-5fX9&rY868m~Rp{UPv)LE$Z7RsZpq}l#PEsn(K6}W?K|`%q0&kv&|i^ z(318)KPEmNFMc^)GDNlMW^X-Lm_aBcPnTTU>lH+Vn{S=O2_f`H9GDO{y!w{oc9vZI zrFgV39E+Wd+ZQ_HFHS3;!nok;B8GK{q?stu;z75a*tBu^v+8qcLs@h3G~QK5`?ezG z-c=XtQV4s?(?(LRs9Uta&55xF$9~SCsaBrVO=MJm^A+CRC|H>gIi4WI;Cq*2Jg=`l@&Fl zLf%GevZU%7QH)ob7-&-qKUgT^{9Od zX{+(Y7d~IdVbk%FK@VIzoiFNo3u!Sho04U^)lXkD4{m^G2<@(tarX0^ReAOCtWT{= zd7bWncHe7|j~TvCWMxDO+*;G*?AnA^=teZsV)DE1KV`62V5;cLmIzaLp;d4#Q&6yccl|p}U+M7L zgZ0sd7A`yG$=WeW(y3D2mPl-;ay>M-CY|sX)3E6Mht+uZKUj^>*RPdTIQS?5{csz@ z{iae#lrHv2i&gxKvYE+74Hs(?*m#RvZR4eLLoFQ%ytdd>`FN=^+Mq7a;WOw zy3Hs=32*GYDCI!mljBHm!{E-LY{8)LfciHwXhm^dtWub|(*Tt;6*-o7MgXw;lB zJRp#x=*r^eNQG?nv+LV^{8xD)sWoGDCJRs4#APZ_V{Q$BK_Y^l8yTuIB7^>#Gqny5 zjN~)31SfvnX2FZ{^yJSC- z!Ic|KCwKxe>whr0Hk2vsgU3bq@+>4vB*HW37eJ{0PB$NlkD4re>}WX*ndw z#%9=T1wBBm1Q0LJHSB@9Qu5=jU&Z{6GxezXb^iCWgUMLcB4-6P1=SMSjhqQG%OS5Z zb-aDiRKXvpzMUlwvu^t7N~hQ{c_sw6&5u%{(^tlpdcZA>eR7lv0qInm;d|U1ydz7* zbXX~$!3E`iCXuEzX|sq)Q>Ua+4CRTxsKv;-;BXqX<*+>rFk9U(+WiDX3dChD0&^$| z&g%CDOGV;oV{ctKxiJPHMFzsmQU>fdr1O3?$d~|8R)a=r8aWLvHN#ottV8M?dc8HW zg<>t^1DWWwJcBS3k1V2%t!;kp6ucmpJenteT{Sb^pRIg+{b+|kwPAzP-!kIDxi7yC zA0Nbce#bVPJZ`^@Zia8Tbz2Y^?`^V6kv0GxP$0o(ZR%iI_%fWVflGEw)p>p&yWwhGx!s& z2a=b{S#4}y+ECrP%VyCUW@2p_)wU=@>w6TuQm!;5-exh6@nj>nrfFOf`bTSZY@Ke< zY(pyIvACHV+-AEh7)|Cyj`CUoLPKhdTG_K-1a{%^>~rlh7ERsE%jw;TTwvNfhf_QK zg<9X+m?g8%?KCD@B(?UZ*WPms^z_4HD0B@+ot04P6h%{n&s zN65t?|LIf}WnSmlL9Xruo%!%5m>$p)sA0=TvrXXd1dwGVYe1W3y%hQ{DQDjsRDW6Qr0?a;( z3A*Mjb6^vn4o0H_m~hE>qln|ihivC4IliYj%rtAbdfTGvwv;mzx69Og>FV@llvRi3 zj~ZUt_HI%x&uhr_-=8}?sI3@ipXv5kpp2_4NlXq*x8L&s?t-BLsEIjrox}#7c;}(d zep}|D`^7>KqNg(=HBSx#gYFG~_6G7t9wtnQWQIb+nE)$(yf2bbg%OLhI)MEkbib_} z?Uq#>Gh@+RsZ#B_?(F6E{ejp1h;-VQ+L=O4@(3$3RxMSP(F>h6B0`$&jZ8V>HU^J* zx3E2mzY!_t4nIY(^`{6@Y+=NZH_Cl$eXa`%l^-r~~sST|!NtJXO;nf+>VEWh^HAV}REp ziP5jITmzk=ZCndv6NC#(IgZz^_XJn1vTO?)ZTAI%0^eit}SXxT1B&@tLDWv3lI+kdqYqcW3pZS-Ip?IJQv9 z8L3)VR&&Anf=DpL3tJZEkG8M=zWqkzTZ>q>kWb@AZaxfL;M=+sS-RVq_Mj(;{p0C5 zT4#O2G7HG|O~5RGL3tC#&s<^63$j^0yTJ51nS+9i_}e5L-OUh_beq=*%dZ*WIb@s& z8#ldIo}y`~=!52C=(Ba8qqLA7B*Eo8N_3jlpy?nc6n8^*mWL&6`tG29i2-<)f}}LR_x_a89a${r79#N;6x2SN*yoTJDbC~za~)F%6+;?phu`eU zyZ~Bh`9|l;#6I80qd}JW7|ABkD;ADkh=1e$zmQ$u?dP?I|71%1TduqNq9aNdYV_`$ z?bevdXBxg=ZP6+wYB*hytvDOmVIjxcSU`UD4BOCFx@0_UHau;465DqUFD7uiO4)-* zq4kl5dqt!g1J)*nQSp;G`F&s(B!7WIVR}vMuUOzGqqcbKPi8PTGDKBn_ZB6`9e^kg zB*z;6k;+OcFork3!HrCQrM>k0AXlxcejV)L57qJ0`@wi~e0K z%Jggv;ypk!{}&%=2UePp=a$;NB0Ke4^Qbr2SsUQjjIy+Fe=H8gt&CFrI$dDwqD@9n zu?CZjE|V3+V%yurh&yR2=Xftjanr7iRI%;M9dLEO&UXRiK(~Y@Vd%9Rt%)8mpvie& zE=DRK0`9wL`z3g)HN>?dPi56a5DxXp@fAV+6;3tMKThAI0BwYUuB zW5Zv`J^nA&p}cSD=gLNJE44!$!aM z4u)#uFBWh=tD~nm_HsR`D2IaifW)%s&l1mNokKt~7b1Q}AaX&EWS6yl7zE}We)}Pp zenN$(v?i+&eKN;9B2BbGTt;{?)$vYu)@Qc93}JNtj_$GQwSu}$o&@}_;XNJLAN$<_ z(DyLzQ&b0{XY`^x`b~I(fL~9#U_p^&mWDuVjXn!qS!AJ_@n+n2(!dERmW(=#KyOh3 zJ&bt*bP|f!4wMbOKi78ZJcs?pChtaB+{v>h&Cyb8(=o1WxQd6BnA6k`_MZ-i?e#a? zG>^0dlcux$$w!7jtU)J}#csJ?tzbJ{)3eV{Iz-C6?rEOc8#tadn<)cHH@#)bs{W<6Q{u%1pIZ_r3bk}{?8biG-B9`TU%cyGnU zL<}RT1&?`oZr%sgHpMZy5GBu7m7Fr!&)G2^ z9_IS{02ZqMF<>=0Og#ilr2x1*AW!<0l4V1G17MFiSS<2O4O<33#IAWNlq4AcL>`?K zbTv$}?rY-`V7uettud!h&8Rv1RxxYHn2ykX-&e9yc2JGwP%_&y55#^j$tJ0=MX+zB zb$IfCq-9BEqV));*?BOHMU(&M6abz685a2uq5p&UPchv9K*B{4pdGbjKHY&%8;hm0 zq9+OHq;9A!o!`87@$95*KP2o<^4WCF{0hO;`vu+QA9&K#3LE19<(>c9U2v8wE`ilR zKqgZpy=GgtT))w^rq8O4js={&Q|}cas8v+*wY*7T>g zb$?)y4^OeOm>#|`S}64*+mo6-Ij~7}YKaF(^l}3qYVR3pPQ6g_z}gVdiTV0hIT#qD zRd2v`PC)RTzs$HpL4^yv*SPh;*?NJXg5a6z!KbS&@rJ5hh z=N$cHT-xhnuv_fGkNz2{`u;~St4t;kTXvUUd{Gzs=*DLGgc~37;NGIYA*E&cuLL>O zkIA20R)rXV9b%o1UUVNIF+85w%qG?&F_iwvf`$%=z)-vd41a(QXz;7a0rbE~|6wwpca3gPWqLa|C~zPXelC|AcbE zE8~75;B+xtH26-7tPiuo*)RnqfH**%so$Lo?3i%k5E_s2G=vb=O{%-Bl_o2sBz#t{ zZJOM$p+=eMRuq@cW0MCm2AHC&vMX|0d7nASXtY2HX?N%YL#_B9Z} zj@9&cs@q=~M_cshj+cho`cWT4_Yo5S6!!0IwVc`4*+nd)mdDatk>%yCt95oG+N8Y2 zaD-21e*=f{cXglUTI;diw=u}>cBwwIzSTO=;cBY+)Q^#B&z@V;VDpwaS2a?U-|fHa zRv^k+A*PSO%fEH|)xt)T=$g+uc@shT=f&kB&Jn~xKx#vj9#`ZYorF!pCUZzn9=%x(>r(EvnZv>@Qb5DN?jb# z_Pb#-O?=NnAy;p55Jam$`i`0Yc=1bAZ`*~Tm&7E0C@(!p>YjUK>cfm1tOnG5BGdPl z@+{<26?qQUDS_+3#Fb58)9MT*YT0xHrYQ*KnHC@%l&dAW9IE}g=&|d5FBwCFS)~ zz{1;lV%{tCNJ+!{^XpfAa#4u%ITzD^s<)ex_uuxNeO`VLr_L4(y4S|t{C{!){$uRK zsA8}?R-PB4M)B2@M}1&0C%7Vcu4$ON`$S-ngxUAp9>l7igAAP5D($KNhi2siuO`3I zCbis)z|RO^Mt6(!Wf?K*pfWoo*CBl-28$+K$WS#h=~f6#Dk={-a^?eUh96diYHrz# zJ@Gt)3Gc3=T}+z$3vlkoiMwrd@eK(+VilJua9-Mo$5G&hj>G1soI-Dt*d3_is*9le z)pljKNx`~>nr@~0cH9g=2kMKW95Z=w8CGI>`>e;>MyOx~pN!@|K<5<< zV+^MT(WHj}kh2cUq7KmijYwkNeX$Ju*1e6EaX@7HK{PcV9`Hyy4EZLQqP0_<7=)M(~QnxX45G9hL1g$V&AZFE%&L7b2 z0fNUTf1eVl(qss0wU7c2aon&EK?_6=2`RQTfC(G$o1Y7>-eFTHcz0>GVP|AAORM7J^gp}=XAdO(pwDWk0Sthrzr#PpWzhIpF$ zocEm@cTVY<64{~yuZ&T?{|yj&`;3YebtBePSru7!H}1ptzArYvKD0lv6MnduzQb$p z3I_J;G%bV=APzVn0XMQKxe==G#FDQI7BQ73aLD^UJWiQplwRWhK(#UdAL1ZLO+GSkh{9TP#SC7 z*@0!Q7OX`V*Q?00=LJLx!U2eoecpVv#tni>VLOQ^sc@nMVV~B@GB6o;DH9MNk7qmF zP6Q};SzyA%%GcufmE|I}e3Nx`e&3@Pwc^ z1*N-o2;)AiH$S1^ZDaBtevd+g;;>=y8At}t?U2rALB8CE|FUFWwm zWCHqfPYWyVC2X4`VSd$SI}aO};OPi&z-s?pDT$f=^%jGIYGILEK3@cWb4*t;@#B9A z6dN-jQ1F3t2BicBdnM88tmQR!Q}d&@D(+3-Dc0x<6=YuH5}=-C2L+LFLU^k#lh!4O z0!Gc~Qk|OKWrne>lcQU*ovtv1%+q>fjO^@e98u92Lo-QXq{DW@m2WPYl6-jzvOTh-Uy1R{ef1dr=WPHy1;_LS`_=#I z)c^iORfY3YyXwZODv!=aHa&ae%wZeK_M>pJDd0jYN8^0d@`WRl6xMY=W}wAh)qV3! z<|mv3`e$Xkc)X4=-Uno}2f$?>uEC@XZRbZ@l_*^o6mcAbL993-+BZ*sd{NrnIZWs9 zZ@*8%Z;}<~{}{p2ZR+$O|DPw1Pw=NP7>`QLGQ&rYy72$=et>N$QL*wqYY~uPp!fRT zf!&jM!H(M1t+R8`eWV3)Y(pEu)<);cCwpTAAu-DRWYXPfQ@RbAn|xiU-3!;WD9 za}O~CfX>!QQZQ(#Qwj80B6PX|FDYT9OqV;hAhQ_on9U#4TWff}EeQl;1b}zt4(-_{ zOKH;u>%uo#lcIisaz9U6{m+vIy$AK|<6$NKiuV54YIN;Slkc+vEWBtkPvc>_Yz%DE zwNuwzwM5~3x35CA*p=VXEq4fzD37fv25!UhB@_&muLL%hVU#_o`tdjcgE%B)#l zN~B>R)6`|<8m5NQ6twZGf$ip34Q(PHPAj;zMyfVxDtM$1rn0+$?IC4M z$QBd@35Qi+vwl-~`p1e8utPN=Et8hlNI8=>Ra>b}%UtAv@!?hjN5JRDkXz=Ea>p05 zJY|LS>$li{m&;a9@z>kCdi828td+t@GV-5deM!^Q0k{EJs2BBqRxV0^N#G7PcDzK` z9T~tXF9U-IBX+k76w^UC#B8!qW}Tcgf-x-naO%J3VIQjSS|1Q5T$c*jhrvQ0$|NoyNA1N-w z@>oWyr{j2jwe+8?Hn8tk*Ds-|Uo6SpxP6Zs|atT)Sp-)4tKYXc_`@RT15kcMRKw&^t9|4Tmq=j~7cUw8AMS;4Ahd*bDXe<%gu z%f-I`g>T2vSqy+5>8c|N>&tJ>_23V9H04J^N@~+}^6;GCF)M0yi)(2;E>V&l*U*f8}8q~-;P@R^2!edHxtTcdy6$}w;J>0 zh+Y6{@x&f3)qYpI$~gicu?%Gsm}w(OTT`AYZeXQ-Eoc&n)hL&?Udz&apo}DHnUiWAolhhCcV7=ZGGd%`o!X}(XiQrGW z9&bY=ID7^%rt4;T+pI>~Rhyu4yNlPn9;XL<&kQgdoV&g|ZRxX;XmqC+2t?3c^5K@5 zUW}v1u=oO{%mfNybkFe~JWu7LR-V~A6WG9owJ$rLw#8tY<(7xsImU7Bwk=D}+|VkE zc(v0~*zR;j3y6Que%EuPD|e8In??^@s?ti=hzkU}SWIEbRt2|7$F-_0dLFLq>Cgy ztVO!sCAc}gZr6TOgZAc}bbnO0vf(*p!9r5(ty<;GM4o^X=%opX0>fFNUnz*1y7 zqsSRh3jq~PnE*#1E8b9@(R20Bq5`mFCk zsg94~M%x>zdGGrQV?tWg=62@1aORai`qKil^~Mb$0xg10ALhI)?|3-aVUa%ft@Bqy zP4y)X0xm_pGbKRsLT;0b=z^1?^J{z?U1~T#?77H?lIHrhsNo%(Ecm109FDLX<|xF_ zw$nbE|1kX?h}|@lk1~<>Kkxge_TU8^3;=DwrT>SUC3*SYO+{swv2_;MRioeqLzV3qGgQS?5UuetSacvU)zJ zQFVqhNtsKW)kN0CT&-;Ei%DbKtUna`;2+{ZK9N5et>V?YOzst2x-5lC_+#pqJ}21lc+_EHe0_uB^|ja-HVl z9Q|5oPv4Eq(9h$$RRbC^XPi0ayT`8(yD?EB3t?>yEJ8fx;!@{Yd|;5*lU%dfbA+un zw|U8HY*w_%ggj@lr>c=%v0Pr-7L-cQ0X#(Zv4Xa*Seo{WE~* z83ZlhfoKL2GG(FVXfXkIPlfUDU!BJnxBqaaDgMng0huF=Ft5Zt;^6s2($^zWnO_2) zEr0*|vd5mW#9(s;koanJjqvWg$3ov3YTmMVQuzC1J_?>05F?z4tSi_lv`$WCm%y4n zYQtLr@|soK3=L5G05@k{{AT+<++5ieVh!5~KO;mU&_rAJ{2cA*649{yEsPR`M&MMq zLmbYqlDTcm?Ql-I5pA;Z@a6Ra#$MAmIMXjU1xnGpTVI3+klry7HE*eTSSe{&rlz% z2U2xfk9-r?{JruV&N=Mou{kr1H9+Be zq~deiGIeiji;cC*6-GAU0+2Rl2OD)-cI5^o`9+_2)i-$UOhV!WjA3)hwEY@0j`Nqa zpWGycKhmh$vvq48{brwXalzZ8zwn+vOGn%Bs$P*nLB^?d@m23cfb*U;HSbRvX-aXT z#vq;XZX69?^@-JmmK)l&8rj>Kx8rUmOc(pXAbeLpy=BQ;NM)bYG}s4winy$nT9eOz zwuf(R6= zhuk=f0V3@u10K4blim%DuHM4Uw{o!*967Qj9R;2ImU=Zd%|3lHR>8taH+8dGn90Zl zGq%k@XS*WFApw*&S<1kmV491gB_%;R4@A=`Mus;cKBLS+H?E+1;^{#hYn`FB)tAO? zAO~J+6S`Y=+h@G(hLP=T54Z*@w(&mR)~=8XAV}87E>b)U+@nYglvVXyJl3JJ;65m_ zR&#ToRm=A1+p7I&nGa>ro~**&LNXL)!1=2Kf?xUv?-HDqs};ijTU`E5?JwR#bOMt+ z?%~r{Z}p_ut1Dij91L;?Y+25NK`<{xWsdLu4h=NvM%_;BN9?=LCg9t8bS;8k*@Oz? z2?7Ad*aJc;P^wn|zVFqXYyWZ6;pw&c3WrI*uPaF~KS>_MOj$vHGP-qvR#YJ?_!SoC?I44axKnD=A5W*|zZbC*3l`K|G zuKphj#!IyHW?G@o(%jp04XQ07h|ge)m{$M_R6yf_D31n4rq7|Z*ZHv}jloPUfCTZ$ zcE{3f`rsG%ae!y;MrLO_UtFY4f00`z$v=q6R@V#bN6{v46ywdf;V9@?+qacH5-D3w z`mF9efz&YT11hreJbQL|%(TzG!ljrV+I)Ii#t#S4P$YInY$n@OeIwMXJFC$=8FL>2 zC=ZKkwxj~C#pgw1(>1^lZcE%6Li!(tzWXD0l6m|RginETB6*sAyO?y@+RaD`VO9;J zQgc+3%~uSvwQ=6df`|lWgGb>+{rI?dy%S^UlzPDmn z8j5LhhOP4&%qmTmYAmS3`=20_UuJ7=eTV|wdn(|nilMWx23VEmUB8dEY$M<)-Q-an zF3GY9#c(0bsn_(^(kBjeX0>d8jAK6(nBaYaBYV;^()^Z{zG$IfNMTrS)~~A|J2XWU zz2$OAJmUr^rakS|REzL*_*=jMKj)`(4P9)6fU@&9`@e3Ex^?=%KK#~C7NgStG)w`Zu7XfoU)(e>c&iVWbQaAnd6uo4~l4F`5;0Cco0PQSJZb#!oV;CG-J6 zl{7x4pDr}^(<5ZBEAn-hJJADbR_V5VahM3>S&2`QC@x9?a<9E7ZOk>t>8g)47X0N1S^<|W( zeu;ET_jqToJZgG5g|voNKWZ%-fcBe|kjZ!P{@wDy)nU{qHt(B%HTrJ*ut_zC~}3 zHxyv{)f(_PXnzA!c^odi7UQ0Ku(Rj7$~QFQtuK*7dcHMRlwLC}!l$Yf;+V$w8le@G4Q8hJ+$R2y9k1AV` zE{iVCRwnwzcc-elc{fg;IrBdJvdZ>XU*nQ7IK=^qC3(xV%UzGcD`U>vJ%h{Wi^}rr zR%%%lquIBb75Hq^tO$7xYOg~y^;~rwZRua_g^{Hd@eISa3MAisAAQW+Uq}FS7G@*u z9{*aDV`Y>S<^mt=xy(3kOQD(!mI|MTLjMe0RE+^R+IvVCFs6~@(|Z$`G&fS8nw@#K zDq9^S+5q$F5!GQy99}s^&$W9Z`{FC87by8&c7-d5)dD%RJcS!aR&ovn1BZ!dR9`ow zYpS8b!_ILAH!O^KTb4pU2BH9xN7!%FU)z&SnAs zWNZE@>l=sJ4?WdZeG=4}zyn_YYHQAm^8f(hqXpeJSapk3zxYnbA4m&}8o6Q5leTuy z&>!y&wapL>oFGi1h-2=3xiLj_c%obKvQ^k7?J~|?TUTGxK}%0k>(9^2$KsJ!M zDLz^!cf+gb1ZS|^#1|T9eR1`R*+I&I>V!Jnx5kpV4aJu^8FryZZavZ86`okb0)`J@ z<2^-he`?kSf>*+!;O`l`h$$w;9{hJi3&Uo0%B!zsD#3AZjD-QPGniD0G1QYiru6EVH)rkmdOvwQa&?Xk*^~8iG>) zRvXt&2|bCELkH0m4CU1Yln%tSzrpDNl69XF&Yh%WP2E9ScsvA%cKxVzgiy+7;PTVm z=Nf%*BW$A85()c=yOp{@2zG$Lw6IfBMR8Eo<|-5^{x+FAfFzfm4#uk75>?P2yU$DG6CP`xJ> zE&^QiaP-Ge@(bI|ZO7JQ#gjuayAY>F(Xw(>KPO>cEB23hC+Rx|=7~U%t1kYKb4UY% z)Pq>OGaK~Pn=tlsN#l;;#1mlpztUL3#Ipl;NJ&Jdj*{C|YKby$?^8ZT^t z0)l~nfRr$FC|!b-FhjSrLBjyjjVOYG)X*_>4LBe*G^iMabPU~6Lr6D#4{NV|&R$#g z`L2sUmR<`S-uH?7{?*<7K$gR$J#npY#Meu(!6y%lvMd_9KKlia53<}QG`uV%%8Jr< z9ZqCV^4eJmDJ#hxmvcAvuEz0M^6f|;G;MLuMKsc&zC)Ppu z5C?yqM%Gu`8fsUE)@BSM_8U&=ZWXX;%Bu+SQ0=e>iY@+%4AUA6T3Mi~ePz4r`S+IJ zH!_!O&`NsrCz&gPt7*`vK<0BUxicR3Qfu@LTqL!NUzxTg_66Q|k+FS+cp;Lb^XYw? zW8G`S8$xnmA)RqiMW0gVI%Gd%aNJ!E?20oNh?Q~kMao1AdE~_HXrsD;V@Q@0I89WL zg00?{$4kj5%GWb6_WgqG7x#A%xvA`{6$f%5aY?I(@sIH!$cF|6vC2x88`^G?03t`E zr7h=t8KWI6*1-T{XwCgAmircmmAbnHp008uYiix!mo2%J(#UhM?J;8Z~X~+gcQg`xnMQbA(w4 z`I~0dZ(v)kcar<4J$IE#Tmwu}yEX=ZfNr#s#>R#+AeObV-0m%``L*uat0r;MLWSJtXdqtD?(f&L*`eKU zs|P6<4Ch{h&ui)Qk#FwLo!V3WgV9x(zaRvR1Pslcor;biOQ6{WizGn4-H`cb|Mo9} zg}#~a&f)S$Vpxt6Q9;6OMfS!W;$P};3 zA&mQAdnFbiFtU`uq_<#vpfH@B6-CB_{Pe^y3_*#>d(qwi+PxkB9y^1JPE^tZ9P_Z>rTwOM8h;@fL?B>b2mRS`4k=;^ zj8Uh(wP?_9FIRSH9rS*3tvW-w_pXcTIzuYj-+_S0xk2j70k$nyd~y zvc`Hg<8vxT6BeZ`BB@{8(Y~TFCkLDyl0^Ftu-3VBA56?oWaxAoCnm0YSS-nEe%>^< z8q6pr_VDcJ*yH2#>NoZH?LUAwRJUsJPX@!#-k+K@y4Li>k6x-7cVy)x{-0~`|FCz5 zcwb&4*x>lmjgcx3yFL2d=7qJNygV>xq08c^eeU)};C8aO3-eIjvAvU8+3@qB+j=;- z<|E!oe26O0r+I9UITjT>@jvWN`&_X8`Et^!VA{2g^!EG0jG1?&EKDZHzpv{S#I`9{ zen41l9MsizeWSS7^G|Ab{2MI~dlYkMluQn%RneGzmA{m|n&ZeWlv!z}z!??8U{G#t zo`0ZS)+h4Z>!*QzsCfJ@WA}k46{w{h>2j)-#dI0`L|xDkgRKLQG5{! z2u=QN6w}h70Cd~SLjd-U8?BL~u*c1-N({n>=nlSk00rEA|Gq=V^%=GeANOzgziTJu zSsvzyZQw&r(FDxR{>3P&4_B{VE$iFYFSE9Pod7&muix7{`}F7-Z{gpI<1&F4NLau5 zBv>R+F}J8yxHOnqTB}xGVni|eT1Tlj-;Zi#X|y0|PjOJTyshMKK_WUnkBkE;*CE#! z6T_|@acsYLS$Ud~bs>PgTz}&I4l^`tN&T{~0B8P~zMfMFics(4%OYNMN+v#oOIPfa z%CLhEnk$)Fz={hXzNA(V7;>63h~$LZqTO(h&Oa@U27|ENFb~agUbyKPXZ3ux?AIwE za#Zu^VS=@RgeZRUT$*v+2e~`1Skw&n?T9(20XU*jFJv<9|`ICA&4Q(7ko0 znU85cb9sIHtyB(`X{_bNw*YWB?b@uihH#kf=|t_2rJcQo+oI=3-!foRefQ-~)n>p^ z441%Wuefam6FvKhm z&s^EpKVHzkj*D10OaR#q)B&41F}(!fT@!xFHzr( z@g#}CK*)11r3NASjVS;pum5JmJ2D5Hf$aX~idB(vc&?(iPIT`gl9);$CR}oC(#>#A z4tSVM2N7>Di#erX7O5{Wg@yai;M5;N@?BQtHo~u{>Uwqs(jZ~MLy48D<5I3Hr!f>-(U98 zE24JyRgv~aA3g+Wo$48O%2usZ&Drs-oA9UUmB`+A`vqtPTMlcZ^rxzDz9Rq>Z6B8X z!eGW+V?i1UO0S@vI5WS(*yigm|H~_J)h@rja03!rx<5F&;7Q)p1ol^FWL=# z%8^L~Tf9Y_Vg55-9RT^%qjpT9jcqw-cdT9A^1+suT9dcmR!0nGt6#1l$eK+3zuLb0 zR}2f%X3RE19G-&cuMNn7qE~%dR#9RWY4lG}a5^yx-n*~%BJ9tO5ET4OZ0DErJvIkk zsH*YS=4a`=>wO=>t>4Qj7yQzcGP)P1`Vn2RHRIfc!2<8TtAQe}IwPmeetgWn8l9F| zz>3;%>7t+9+%azf)UP+k&*y->&34KS%Q3P&6?61VFT8N60!m%ernK|xj?2|6xHNRq z(qlUFjueg!3Qk836<6GTU>Urp#V&jyo+@X5dw6xkM^3O)b`=PRO@*wUyZ~~`5ho7K zeF6`^u@Ay{fNr(pD9}L{9~jg*q6qN!zQnnhz~_fJ4XQiKG`OG5S@wyd6H(}fQ=Dz* zmPy`zEl|7m1pq}U_Wl)$ft_Evz}QJmI>W`C`G|yM{Q6UV+g(e&TGKah_@UM}$89=V z^PkDjCFT}fa{{}p>kbjbnW5B@d%@dnR5~Moz}j=hS|Ga0BCyk=ekVTN16sVB_z)M1 z;a8ZXme59cyvFNy9pakm{8tBa;1)fC^$GlWt3*e%B96V7>9P80P3o^bJ78dirl+f4 zqqoUAPSLF^A2H3MRJ^fRtDz}cX1{C~Vw*Oe3lRR8Y(?GbB!Tw>AM|8AzLv3uS1uh* zDSDLZ`cVt_P0ZJd^ejcgI&}EZz`g&{Xs{&PY#_pStitI2*lt5x_ePs9#>Fc;m!oo6 z;FN*z-dhi@Aj}nGNc1O-_AXIkqm;1yM8?OWlE|*_&tGk}vV=mgbog{BzjGe$e41(2 z+)Y;ExObsB<$*z#Q*z9GP>y@te;{u*Uu%DIT(oSFe;#U~t_$B=A#M>JcK1Ak>ZsRo6R#2N6k0NGDyXj1E9&|Q!zh%p%RcCpd|kYL%J&{=$YDD2!aRBnJD$raey=={x$NiM@KIE+ z(fs7tYe?(j&#Bl)p)Xk0?oD<`o*# z!u^+OC95saf-is!(13uiob7HjF{{bhL^9=t*fy%y^ox!mb>Q$-tE zXF+lECa3@GEN;2NLU}XH@GL~>+=X|_69dJPOkWQ*oSr;kPa5rdm_>}AXpLYiPt4jz z3Mx91z=o_7nP;5!7&h^9|0PX92}!tg&HYZjzA-%Y88NJt_+^R z%&4@5{efUSkNsz@Nq=2x!V^Tcb*3}Zqtc;AcrcU4yt2GzO7{7%oNx#8TG{`24*$0o z^0$FF0BfYC@_HGu0zUpeJJed3H=7bCt=7#_q}L^@sow3@0$pAEJvm-<1@)-5C0S(k zePuAV+3?}TR^Zf&1)=xN=n8X0h8$rlWlxx%fhunO@#HIB-;rTvf)&L87NL<$d^{)`KSX8+~R*mp7W;ys{FhaCHElZ^*B5N$yA*Iy3 zjq_A~sxo)}|9F zbSA1VLE8Fk@SxNw{5ueCIm^$>mzep+T?0=Kd;b zP#t)ZMH=C(Z+AI<{oQ$H{sie%(8diQk`3$&@W>!Y`wJacn4bA7#&K&t;JxAJoBT&e zpDu@kixkw!nTrv1WU+LwHY+ReZh1@Am{;dFP+n9=M5xuYg91$oI>(~CsD%Jx*Q!CS zIHef&m^wBamW?yfuyYq)kar$9fByX0v0W=t9F(4hmA7p}@~jlP_qwbR)s|bbPNf|@ ztP408&LEDxlOm<}cUr0YkM?StE${W-1WUK0hBm1#yKt-L-yE|Uk87)6!bo0i3`@7Dv!8|=r6{KU>f*b!-NJe1={+U?iTKfXJGc6& zuzI1YaPtWw(S3bO++z+I{7dod2xeB)Qy2?azYv$2(lPvt0(a*3y7;=VKr}uQDh~8+ zN72dDNEO_jai_P2{19-9!zX|CcW<0&VbcFZQXqPT%+4bpUS-Vn~&gg z^pypz1m`c2DsoUHMVjQ(r%?MXh0)nV;e%5)8)spsF;o-WP7K5AdXtvb;V*yY^SD|4 zshkA1xHYVng}zEjo9rwdxo_JTv44j=v8;&4CSGF>xBYhV5sP<1r;CW>nLnbi?&U0_ z&!oahM7B=kW_fr2a((Quim(P)Ru{m>6TE(#Jgk?`)mY4;XqAx_<;MAdND6ulU*^mo zcJt%ILwpEh(f)0K3uE7$?0$)u-0-oJ>$EDFrmU$1jOxDJ3%4fnCit+OrqC@r5DLVZ&nLM}fLgn|QQ7+Dv_o zD);*sH518)tKDTH+C?quBya~VVQyV6`sx~~b&6lHWAL>HfFT&qSUOwkYkK$kiB$8) z2-ASza24Th6g~=$ad~k8vA=Y*hR=cYFn1lebI||svdO)kn!vMp=w_);ae7y;aWC4K zICSYky6<FgdXk~j#PGjdw~ev0nxaB9XU z#ng{uNor6FhIh#zGz2MUl8_1m7qE9(7l`-+@t7aPtr9B+hWqs0_4(ZNySQH2UV5?q zi=E8AvDb>+enzZojtWTuH>&6~Y4$&Fpnv^Qq58s&0);?%NSi|n)M4}{11Wtz zDJz}kn@y5RJT!lxTUGiyN3r^E(hpT(fNNmu>XB zsPt=Bc7y1U8`}oB56-DTK)*uB*9nVcQ=*33e^anXA${A6RUxvoNOGfV7lqf+yy${s zZK`gNLEx3qX){~>tJ+*>s#g^L@TG@wXw1?k#n`5YbL)V|ibEcYa($jEU(h@k8r!D6yOmS882SE_y8OPuJ(_+Z5EbT zfVdg`u1d4bZqGJ%$#LCom#M0IR zFc#K@vcc^K2khFS&ZpPy4wqHkviHURYKQ*bNc53}U***_cpl{EBRm<^D*_Y8wcN-} zz+*}79XH3OnFe01P)O`WA=$+LsT=-xh4x9{W~IYgMzZKuktLwaKchb@uyCS+l&wS? zENkqHRyn~(u)3J3742Mq;p`s~A&fT#VYRZ0-Mf-_;Ui4-HRTX6 zMC4#G$)DREyiOa&v=~T7BAtnL^Ev9b&O;6dC6R0+AG4hB$I`Nd9xm86^mhnlY+(c# zSUu2^`rCgRV8HM3shq45BLy`P*0>m1|BWKCHzG?1(K~m}2`iwPa}~RNcTnuit#ieY z;dh5*?hK+zJ~v%HwAb(+Vnik06c?-2?c{q|!NSj1 zOLah{w*P?v3hpqQocFU8eLg}aq!mmSXFk4%Q#Y>w6AS4{a#UwnT7@f-@4VXjY8w~^r(JZaevEF;M?;2=ISCEx+E8Ly zQ3mK`CVs79_(64tNIL% zdp)Zj)h>%wEm@x0qaPgjc%WVQ*dE{W%cxl*X zG{1YjLslRYvRJiO2f?q+B-5A=vlf67tC+VYLaHL2>i+foo!H*S{yPiczuphiZU1S% zL#x-3Kt6}@G;KN8<2#Jcto)4Eb`1~mt!%8H-fY*?;$X|O9$Xd6<(lg2o<3jKyzX!% z=+8D2o*F?NTe%iYcM561$GIcqi?~Y5`!i*e8Yu<~+J;Z>TtIvtXmky2On9Mj)S~5_9+p(f>LvYeQSXyCaB%28amsl z?mlak_cv=we)lY`LPIF8c@w>ut1r8NjaJmtMtL9#cw_pdvZ9DK@WFpQWFTItB^r7A z7pNHskztbGwq5g8Ub=qv5_`ttFf;#x6mhleJakU)b>t;T28I&y9BkUTjIS-L;$ z;z8eWv_7A?H?qv3Q&`e~SHzK0w4R)$g4CDTbB?p5SC3o&l@k5@M_6k=Tnh1{w!*ur z#I^32`N$t^E2A1$8=kw(7Tc#<2UsG%)spM#>-MALgNy5^1TP?b&vHnYb_BM!T_3i( zjZEqy<2oJgc$@xTZ}K~aWj~g3hl=d5&r+35&4kgUHk}$)944g^<4$$$^;<$G4TtNB zgXIT&%|OuXQKDp(@L=x9k^@F7aadC>;<27}i~aFKS`Vh8WvA68Cm>D0l)S7je4L&P zBE-Aw_CE{z6t60ZwZ{q+L~|RpghfrsI0Jf|)@OUr_+XFB<3rjA&=Rl`9N$~+b6eh5 z0y6S|Tb#f1W?JL0-j^i>$NV(_ioWBsKe`WWw{1JP%Lf$W&w;B2OzWDo3vYXPauxl! zN+$;dG60%qx<1=;E5EyPvH-zF-N#^f>kqFi6TSZ~K#tfEvl4L&wQvrF#q7oE);OL7 zFNruM0qA&mAk%ALR}8yzyfbn0I&tn9UPZ8E5EQ#dP4|;VyCbp!8Mj!>z}|dj;O7m; zzz?h#BiSi+qP1QD5$8zdi>NXytkkJ;csx$qKslUNKsv=I2T|j@hA``{mtol{=VR5* z5BM1`A=jOwY@@6Em*!ZgGi({dc?@PFx#6_CbFgzJO<`ywE~_X56^(P=yVn(U|+Fk=tS~o5$q0#PuWpi!0S2 zI9zd%rM2l`gJQ^KtbbUv!LIHRP~^|8c+p!s7MPQ|*?=aptFl>T@%L#m}ho(*CiNr%dRLUn8ELhdxjQ_x?1%y&STv znrX-py%w(!v4NM*xRuUdvdepD3hIO>yl;pV7n=vuvY=OU2sg{8T`xpq55B6Vtan^^ zBz}A%cv;SnEEh}G8WU!E{40PuTHJLhKAO#-ix>(5QjPw~bdZ)9E+5r;_>&ta&RckKy2RrJym=^!4hf){cM-3hsK#a>vF)2nK|m8ap6 zm@bC_w;umE;LCP?Y~C?afRq!2J&JO%_08SONpP z{cnAodtXa-j)n!TrpHG7EpCl33Cv!us}ZBAKHO~vWf)vAxzA604*Om@;hnFAll0Hj zG)|tTpS*lp;@ReT8oFDnh0Z@xDIEXU706Itz7?1wAzTG zrx8frvH|mlaWpM76j6TDvN}`z1rM%`1vLX=vJwAl8PR_^*iI`r;_H?D0Apf8#pUco z^E07#MEO~vxMk|!{!R*KzDn^6DmXZ}q&zrHKT={ShaeIfo!HrTff4ZVTfwKik+ttm#dOs$)RQp zS6gpO8O`$Eb3}-0vy(nfn%7b0+;&%|6rSL!TE-Y;%M}P>v`bQc&$zKD{F+ONY`1rI z;@}sw@BbQr6-`WP`kYh!M77Ixu=;1>ePwnnR*N6S9&ds3x{u#09u{`W7nIrcv=fJm zKDz9?E7cO~HT0mjhV(}>Uk+>z+>6;#nK>(-EUZMk3kqRw+|M~mJ!*%V`|reMPdl0K`bGS= z(6l1(#Y;lhQE|iB2KLjmrtH}y#mi+|bkxCdAD(cegJn1@JU*NM{#~#C;x89|E^QP9|`17;Wet4&g5eKuERNqtkN;y7_Yu%J?wycPv1x9`YNSb{Mh}5M^1Oo6jJPa8F2@QvK&4Bb$nzewu%+QP{3Dd zh9Nm=GgERP+I;HU(n>9PC{=&l`J;mtFyt#zOy)KFDO*4VQc?c=Szv4zS>o>1>59% zFY?g}Ri4>Jcr~Rd7JqC(1@{YBURKok=GGxQG0ukzmmoeJ>5gm9K8|?EZwCZ@q5LOR z@$WW8=@JQWP?AgaM3}ZjA4@f#1Mc)2*CRdv5Fh#qB;AGf2Zkm#2PIV)uDP6gNkHb3 zOumGPoS@wZ69|eebs{8h;<3@;ahogBs~LlDeITQYv@p9qst9RSCY}cu+Lw;8|neU=QR^*hVnpf-hG|Ff&+^ZcXmIeBYl~PB#AWGMl z*L2>2Qp_%+5b-^fO5w!U2k_AN*C@@|%~eW@kZGpha#N##UbG)c+Bbnsy%rylQsj*5 zHsi>G*M#|MN{(;51D38ndm|0+8~0g7Jbzv~4VwX3HYMV_4`~||C4BbFwA}Oa(F4Mc zUmqHLF7^tq&#|`lLg`I^yW(^r;FP*U1WUO${^R_`z+v*ic2oH35e!WQMuGU&umewX zz7~1`1Zbs*dF7inBL?k}?bv?3Qw8d{=bvGc55JIB>PSJCJsC3knA)B{eyo9A2p?=Z^t1gYd=yo_VyBU9vo_}>x|Q`pE~1+cD6O@Jhd14ze!qpPJ9a2s4&(9 zyRnoHtwd?6pX|53V6nc1tyi--@wHD}^~19u?D)SY<-a%0rPJOX)yGIf$Jft}X!nuH zEituxtf0||0KC&S1s4HK)bea(#^DH$pA|J~AyArq9t4}`^s*zK#xQNY=P%0n+^mK2 z#`~S@f<3TRO%WwsW;m%3VI5k&5C8DEJ#KZQy(iE3RR6!62r{>Vk{>udTB$#)65BnP*vepLL782j z^r@m_)N`{0w*rDY2!^Vg!?20>%u8p{V3z?k%wqDKi92+AY0of-*YT?w%BWQrZU6n} zAm(mn;p#v-vdp$isTTbK`$3->kBGdpEhFaA&guyaC^mV3(EUEvqsE9XDX4%LW;aUC zi%BXEs zgV9b5aDLGRYI=5c0#P4KYI=Ddi&?B(*bq?y9vf8ZYoV7lAk-`ajoFy>Q7~89(I(jv zW99h+1gCGlVi=N^Mf~W|Rahd{b5)^6ZJtL2S9%Pj_`D_%?n{5vzhEHN4MJhy3sJOI z&`1@yhtj*tqB`?llcg~&%T-?Gqg1nc=6K`{M)~2Q(aiAKC@=v8y2x*p<+UTETwZJB zT89blkL}{oDOw0*Q3NycE=0DS#=B&hoJg%;UHgI|8kG(V1cdvKt+A-NLagg3FxN-G zm6r?oUk_Y@Y#nZjBeQ{_O?lvc!Bx67jKPuPw~}ufSqe`Z1hJkEs8VXD!|w1}_llKp z%`?`76oQ=38cdN$O~~3F0Oo&$(+T-EO|85rTby<3&_RSINkoGjtZE!GZDy9s;8&k# z=#nSA=R+S49gn_jY>^=t9Hmr&JDrgMtg_`X_+{O>8+vtov+%)cmn2TTMVruL^A5Z2 zd^4w=+t3%+0ciTUXD+`t;xwZm<4q}(&Eo=G>0CQ>R5z*VY1C56-Wbz{k9Vgdzx|-` z_R1&=+{A{Vs9wMIID2c@J}3+LY+da@gn`+9?^;Hm+Hl!2=a8>g`v=si0e$J)F`?Nr@q99fP>X_JGm-Ycr=uc&JIiblvh=3wdz|fB-L1W_^4tG7?RxBOo|cI!tZzeE%Cl` z(b?UCR~!L5Q`TY#&pVy;_qGee2g+9cABsn_8YYbkr6GF@xv57vi@s&r5t?%M1*Mw7 zT>#7c-ewj;aPAQXR6IK7wL;%=oI4Wk8NPm`{A)VgO;)fkP&kfD&yqv*kthQqMwdFe z*GL7qowB(wd=gw&074x1Tap1(h@3&QQ?4oRr?e$Wd_3Pt#wVLR56XJ7l#15+$dS0lM%-^RI&Ixkw);lCwe)%O~ z29D~-ibGMZ`x+W%v(COi*k_}SYJmmd)DD2<-#3`K9Ld7JALgMNl zmCj#0MCI{?Ad(|)loClZiiy(l3xX=%IbUIsQe^rsU^Z0^kSmUoK$M93DlFZP9#7+0 z&Ujkett!rN@$%-Djph;PZU+_tF)~CTM$WY#-P?8NS8r2g}0N;QCf{rhgs*u(`^?lH&QvfwSVQXSu>|O zn5^J5ziPxqA6<$~8il`sq8)bK*H}hykE>1nZ+X?`A#vzi`;Ki?yo>Ph`y(`v^w0Ty zI1q^Vl-F57l1*3e(5uw3PgJkkHrxBCe6=Q)Lstc*u}5h&khVgmdlH0_uJYK>87y{+ zL*LQ+_$hPtz|a76NbNkJ*qrEk&Yak37eOq)7*+;%>tQC&0-n{P0UnM&-ZQ-w!B-nK z-Vcdcgd&p)MimrMd8sVJG+zs4DsUZw0F z#!PgzJvEr3c>H&whw)pTaHXUba{|I427LknkmSP)ZxQbCl`xoUP%HeC$S%}BRb=V2 zb=SC?0HSg+qXVcsK!^d?*{M+@xBc^8Av^`ClAXzkuZn`_MNLO>0oNWWNYVB=qQL7y+GWZ8u|r`vZVA zWG{8Em0hm8Uajy?KJPf{VJ#4OMe-~VU+I|AithCyZ682^=&+zS@i9)K`X02*0&u3-)B!<(Z7c0Aa5UzgyEZvQn>re*nl0w`nslv7T|3>njhGdXYiH3CB)we=Fi*jtf0z`U#^ z+6O8Bg$eV~hRA?8mI@0&zjf@phB{nrXjz8 zQ*mIc)Iu3B7a+aiT?Yjyo#{cu(8rqIC$k`=dD>}biRh1wdR>A1LVcPkyC#&kQzr^^ z9f17W9s;LBARePl-Lh?IRAFOdsAV0zz&bH05tAC`)Ywzi4}xxx>2(Vzo?0#!X&E0O zssA6D)~S(EM*5X9ZaKn+Hu~^rhq3#E2gl&Sw|dqWL`k1!%GgMO8r*gzxniF<8eCq3 z*lHh8*sfrxMTEgYJkxp-??w20oDxi{tDC5=k9^&5yl=2h!8w)krRj!DwktYu1y@N@ zf4ooa;kK@|1ApM<8fB|jT3vLRgo>S%x!%Uaq8Xtlak3O;qyM@4!M%%rt~+`H0!uYs z?fi$NVZ9$sVP1Yf(=~Uo-qu$c?6%7R3}@2P@6_noE<*&g9%BxB)p~YH92#b?Xh=GxMiHW zdI>;7OFXyqcS^hN%}^sv;tp17bWa<(*o6L}aqkUuO&xSPuzM9fw(SB)qve#$2GFX> z8HC!{+&y}?d~@`8x+Wvbl_w*J zC-*YVbeDxpPpx}wI5Wdk_$K3@ZvbrKo0*>kh+v8L(%-2K$u+*B(&+h}5GErd&BVk% zlZY9U06_&B88cBU@~7qjyRMc+jiTT6Jfo_o6iqg3~6Oqgc%P@&(qrwrNTRwd8uUZ3kIE!qzia zUrx*PS{lS6%S;Ji?0nHT=D9258uO?+6(r-#Fy27b`T7hmZst5Y12 zO`I#`)=pb3H=@`M`CPo0t%ancYdskhBl?{e#(g!F&L;iM)XFV4x3~#f&PqjxDUAko1?qcq?fqO7HCa^Y$-61vASn6F(^%E-_JA=D&SEhO1L-s_ z3nNmaFa~2~hIKK|rAlr-b9WL==5UtG$Ln9-glH8?o9%rlMz`pq3?sp$5f#Am5)Iyj z>2H6&+n`MC&8CtpY;N;Z{n>!S)9eAwt)jx|AE7zc+8hN29%h2z{NUr@8{6Ig(D_Qn zz-hS5gGj)7#89$7!$XtJu@~>eESTVP&fMYPI=54QviV);bAv7J&{bCB+Dd1K6T86= zvZ#_Fwz5J+xPJN25BA|cjyg6lZlT(y$ZV{)I4TMJisXa!?rYLS)=2_3N-I8I1=faA z=Po_`^J}7pIV}M3^o<&CGI2T+PsFz<$xOAIVTkdq?e8;Ze+&2_pJXTG$zZMvLr8L- zweF(5p_mN@lDM{OlydIXq|^zGmvSL+;w~9Dw(x?sJJm7yl@`)Oz z-8ZlMgSv`?K?;sqTcHlG(te(sELq-7t@y zM%+D~T^m&xoP8Vd=2dd62ak{wN3FxkExGr%Bbk+wr5gjoJ3Ew;cq3clcsRa!v?W$_ zXDGUskI>7$k1Y&c;$Qgni>uL~KxH5%a+FfL#8B}K;V;Xn-TU1PPXJPEK3P3T6J^9} z(%`GytPvj&J94eYmizh@fzt$#RpSGPftI zS+h?I zOP;ys*!!4@&$V{NYv%1!tr{KT8??v7RTvzr%!>k8xv@()$Jx8vyWoEM{ zha_jMzB|A>Xi1Z+1`S-6F8~DX(0_Z+3LmH>`D#cmalK*pJuqc?BY`4t9NfI&EI&QJQMo zI9U=-J64n`;(B~^;kq6{g$uuCcntBg>`qzyvrA-LD z1aVpxU$|9*YF(sddCP55O8a2si8z}T^rplIxw z|2tUuznw^T6Q!H6(yR$Hd<2l;@>SVZ-4ES7JF{DgqI8J&>V{3vYM#rJ%>Mx6vZefT zU`4AB0~RNsWGjkT|afvgWA7kcEN5nOV z>W+VJGr7(Y*RHYqd(wrJ#Hr5rHB=$LU)28i!s1{-kzJ|9jw>vgHL||q)}0cWS#lO_Z zZOa?KC}yXE6ql+fcE$#%X=DP;)EV1$;xhdcak{G%+{uU2;QcqYNX}~edAGFAl>DAl z@_XO1vv@6_FQ!$(>@kYLo%9dwBqTt*|>$4UsA}zdX^DPJ7l*{cDZZzqs)IwVK3| zmZUhmy}%gfj&UbzVCv<8^)~#{Eu%2Ro}-HB&Wi_HyoX9W2pz?mJ!$ zrJ-PQo&MOjQTgA3w1LL7ReR{P80 zm-VY! zX`mTeVRjvsXnZdKA^GXikDF(H1Nci{yVJ)D zL1<+txR^vRmeI~wm+G-}RxP*sXw}f8JshcsL*RWl(&!)F)y0rCf4OhPNuNLify;7Y~!W*WU z*9@uk25vKYUaj_APPD6VUc11qMxP26DU3=k^XDhlo19u7&v6;^r*1Ee%J(5{a1!S2 z@zQ26v4w*nm&Km2m&kPqk9E^qA4kJE<&rUXAPwN86@yjx!WD)ws}VS`L5~t6&!4}3 z?vJlsf-AQ>E;B@P?tZ3@n{%Jy3HX)z&fvIww^i4E^Wq}Uk3Fi*4UZFj!)swz&puR7 z>!_DTr;qE$8^n}*gzA+y6CLaC)sRH%6Xs!vspQ{iagM`UivaOdgvzfnO@@w4pvCJg zuyBLL@)OWV`htN<+vz~|=@g@6DCxJtnIIHQB(uo6&;S?fLu2O~#@_01n!tdrJbLFE zt$3D-(Fm*IfWs|;MLI3CK3Pi=i;!O6N8`HgB*&R1=2WZEoCoM_J;n`~tQFg%JCpaL zL0YrYQcK>=pbqoNXVI+crjakW3_C%B8Wn%1QUBiFo+bz+F-?&KbBdu4yegq?awPI- zjlFde^xv*iavYOXo*A!+EUSqOwrfMvS+{c2OJ3`EkRO&#$Du@u(K zoxn~^+MeQq>yP}>i&++3=$tXUCJ&V(&^_b9pYx~lf4Sy;FWCWcmC<)MIikZ~dWyCA zYUOgAf(hd$#`JvpOq_e&?Ti2O2#}yVKP@$HK?);$%7kOn6W==~B7h{^4ssGCyz)BJ z@)q0B&B+&Z7-@S+kM)4y7*^#9yU~7`7*4(9?kp8K8!S8x`0a4(M(2;CwXO()SPeN9 zGxm94h09Y5Q$g;xeyF>7Z|EkYN-}>;AjwAOk+7I+(8jiITE7yz;ag_y4Emqe`3bx<#cA!1j<@zN-}b93)!K45iS z8W1#+lzhbMv9wFTZcvEOM~rd=AY9kdZl3kqPKYsrW0ap17VPrTQUf9(c9o9%eYF6o z{Be^s)cBsXJr4W-Se)Lem)>7amjs9E_>~%QjO{OWnw#)C29olna_1Xn?YCyqEN@Xz zjS^N}17%#{w8LObzLpT_O~zpDW8_XhE9$q}qEizVbeAMRr7H;&ki508BT_PZ4 zz#W!PZSdv0ko}n2H?_q))+krkn+My9l

{!2`iOW?^ z3KS(|cm|r^-F{B^_>G4laqf`~*Ol3CFcR^HP;kI}4mLB!eM6Xrhi@`ELc$FyEuo`4 zM0c;Pj4NmUc%Qq#r^N8BO0~nI6a_y}5#{vAk7h$z_qEInkhI zWguHFe#HLs1-uzPvsU4SHQP2W;dIl560(J_@1jal_qPl!^R9TIyT66RS$_W@Qs#Sv z&n2-uoXb*fIo3NXRsyM=k>HXEr4#*_H1$2SATY{ig!yZE&CXJG{QYMdV3Om^LH^@n zDx{d7G3K?J#@BJWAIbV)eZLDBys)>)p`2M9^MPNXa+P1Bp#IWGgCHo=mQsXJ4jaXU+=zC^!PqkZ=#ik))9(3~)r@q)FJ5`4{~&)+|p z0CqSY!j2L*dF@-DtftZSdTzHv^4fgr7cYb*Ups!EUeRD6-~28rr@Qkhts{|sAcA1or#a|-Oulf>aD_dX zgyc~66d6wY3NL9{%sF-kXm+zPg=pu|xu!dyZL8i{;;I3`^c2KY^MyeRBiTvUMYy7N zKqOygvPdbex+rE+O>mF!R%D}-Wzx5h*`P%&K=>EQ;Ct{Ga3U{CySywK8MI~)q!u@2 zBBm337(7Qlqhk3C*oBQFlBuHCS^ zI&3=ZES<@B$f9fU{#&fD*2=%x&jh?m~i`2MSt-$^Z&=#Sw~g5cI|%KgfxO6 zA+hL?W`TgxEV>({ySqhcq`RdXq*iwU!ov?S`BaVKg$x?Oi zo!38ayn*;e62wv{CO*HsvOcCCiGfj~SYI^)wZL{iAB5R2>%H~AGCt*iXx4qY#^5Y9`RXbnF<|-Z{j}V0)z)IKIIaP?CU4NPiMkg zbFHQ-873W#|C3Gu{;>t*2O$yC~7TyB4bv#+ER@? zUv($>@S7))xv?)&IjNn#g241izV?V~?20m<;?b)q&?r?R;Pn#Vt%J`Z#tur`;*yI= zVu$pCP81{vmTypXoAEmBzTLq!Go)+)BM7;}m2N7D_&2tQpqwSYvzRdeJczYI8NW*- zt6~453nzFN#{vbUc#EK0qtP|xmdiu9Da}cjnE0)|3Re_hu@tv`A2Uaf31NH+Y$Z5y zhYH$6k_R56r;%Rk8GR3kAPqv_hCcR3wqIJIzFfuq@!ltEt*jX0c+2g)kHF)0`$Y~x zX;x_m0~NQ* zI0#5)ZDw<|-C?AGd$NlyPwd?s*{-)nO@3?_5%2-C-cr3G5m#^5@oH~en@;MzBIIDo z9YwD-QM&LoDq|sl^tmzyM(A{e{oXC#lAE2VJ0o$={yL}%A?l%#eE|#Wi>;lHw-A=j zq|`1)_6gZTdr_-$ee{+O^eCwfi(V?c_99YSu3yX~fD}&TQO=RyuwVUN(0m)4yN;Ro z#svSwX%EjFVK*YPBWj{NhE-=4p(lmgKXtP^%1d@R$AX{SRv|P#g{w}kIC0FLcyHmE z9Gektoy!r9#q>9r&)B8F1j(a+h#lyzj|rd%Y@tZ$SrHvIDgH9d`g{JFhn40#uxtOU z@ksF$wb4>5tIM4l(eVP=r~ml-e?CkLkiQ=t{rER`SJl3epxRD{#iVS^UL3hTD&PMm zy2xMY90+!r`^~SNGMwNerVnGxrLxeCs=;T2hY^R8U`f7IKdUsKxq#qIHm)9C1=Jl-M+sYV}mG~7}{ZVrcySuaeU%*Xhklv zG91&;;MDSqhhcYe;P_<;sh+B6CzM*y6SNxfDD5P6oOE2sf>1mGs~I(xLGLNBQk3{u zIN%TompXqT1c=viUEMm)<%Ye*ozsnGN!Xd251%o^Y9}Oo_)?kdQm3Nygi*4|M8bl3 zswazP1$?HIba_v%JALLEuHD@?0_iv zoO1_PS8$?QQ-A*a$FARMZ_Kz*5F#>}YJ4a4`%lhGSB+f-ph|uWVzDLZrjwaXSj$A& zvP|MTU#gY0bQZaQ_);Ggm+@!mHG6aQ(qNxOlQ$jb2mzdB98X_{GRVthfh_ z^p#5!2kleBY%=2YSQ*bF=VE1l-&g zzXqwIuNUr`7Jtsry)L2^4C8+2I6W5!qqx)e82nX6wr>*&596DCqu>+0dLS-x+o4H~n$kai(t>QYGV5I3A z9Ptv(3K*9V{*x~S^M^glguJzkZC(}@+arlG!{uHMRs{YFiuuE<7A5a_GJPWHz7#5C z*Y%%nUxH=MnDD23d|urlS0A1Yf*DPI+SR*6o=$R8^M!$!**Zr#0Zw{ z+Xt=b<~wxBcuvXF7oc!5ozCJlz#RzLZs2qa&3#)rSL>Nwq&(t@OlnLn*(Cl^V{-5I6^li|p|lhza{IHX_)Y|yYT za$KI&9EGh`u{v9JUjoa|DVBAU%RYD;L!5A&K)Vk&jaEZIyqy@lV{|E8eT-U*?ojW5 z)IZIURiPG%DV0GJA8&xmCc~%FZh|P0)x}Q(#A|IBpZ19{4<;wEThUJZ;O_w*9Au0= zvqVl4F2WbOlME>{vMB2`lOD65!DrpPC2@y-T@ur-wYzmRTA|UXS4YpSDHe=j6cLY97q2}u^E4Lu zZn-&Jh3oJlLw0?W;(hhpfDGb4UdF%PJP<+U4@nWAGRg9O`~TFlfMh@bCB6nDy~P#} z@bC?4*S-@9dWvY5BbgwY?c2M|j==y2J|9;Rn)H>!7lnD6Zc%ykR`YLJZLW=jFv$F@ z50fN6`#+D{nE{&8_F=8*3BKv_v{r1HwPh<8=p?PfA}V!S4XKruJ>hBVgLl~qCd|JN zEVY`mj($L4wynTvCC`9y>pWfrH{|aGg6arRaPvWoKePU+dW3e9c^SG#dk#cAPIjGP zZiSPeBykQEdf!evXyA7>$eMRQ87F|i(RPEQ5`tjXnsy;!n(UbQR+WA2vyG1RDycH=(dsOkIl?Dbfodhm2zb@(blYOU^SqTIV0 zgQzg{*TT2&&U3jD-un?kRKFY9=dE<&BOT0Yldc@iPRaYUn&Ru~n1raIWWTnZ48Lu; zkm<_36K6Byz)oK&MOw2HoIK1bS3pFd_w@(O&d-nDtySoutuk>8>WV&}ZZ-XU4WD(P z?x^?jCL+o%mMv3?`3CLI8GU`e#iM)vu0m$E$AwvPGn&UtL0rxmsZOwT#aC=>@Z0 zV&!(&0@y^=PVQuBmJpi830ZjNZ|-CtCb&r}2#{r!>PT`H_FQoHK zB!*LvHF%$sI-NZDVy$2Mb+5{G9G|vUg4e;J?=EGowTXI_ZUVYV%GdH$nr_!yYsV5{ zpryUVpis_AHuO9CeJI5L&4mM5_3JTNjLc#QX+T>-yCF zhomAonQYFDq(YG(N2`n(0^$|lzkT>|U7i+_#4f)~LE)W>8H6tsGW&ZrA!-_0em}Fh zb-x@H1EzDlDQRos4qgi=>?sGTKkqvF@8sybs3Yk#-fY$lW;-PcNHlASOEN=6T74&@Zh1QA&ff{({TbpL#1~B1bw-X!U*hKA%?9~o zheHJ+fLp$);XO$w{ALL}t@N&X|!Ki|1zmT2BRA=`x&i z+S`yKz;|n{dx6d4%DTyC{SvS!L#EEAj$`^xl91??g{p>Ir#;DLuMk2sywR`>VYVF$ zJt(-hOK=&gh~z3c^`;-+@Kl={?cH8q1h2>ql8df8+$6NTEvi|qSX#g!VW5{1mMttp z3AR(sGQ;k}-->wl&q;*+!%zYre38#G!=jH|{-Fo_>*LRP5jkyn&smTl7sZ|x{M{g1 zAOO8xer3RHHtzun!B6SEmh{%QK9gnz4a)r8nAttU8zV;cuhj7zZCB!#QC_iS7T?bB z8sji(X>88q=A!Gw#5tsqMw@R<2h}-k6?Aqbv*n^9dYu0v3c{j9Et4sg)^?hPv|Or* z6VpcbB~z1S55`M6xtty&?u0s@&GYmm(u-m{EzVLy(Qv-n%4GVudW#JgGG<0hO=;>4=Arg6X$mLvU&QN?J~qflln9TNQokEITqa`SSZ&I~5Z)&Mj;Sya}Y)hH_!hAGxk1k!ZnM`vi^W?GG=f%X;K zByFE*9<%soIMQgg)3w#uxTDJN!apGPC$T8{h)7!~zb$YsT%YQ;*;s-ux#6h4@cq5X z$RFT@mEJZ+5Q0|ruEx1L$dF%bwZX*PC}I80+%~^zqcG0__b+e9c-CrpGe!PxpmEDx z1Pydha5ew5qbS?TH<*Uop*d_0%hxRpq;dBzf_+xtV=(v1t6D9Sr3@q%+ZBI1FVCuM z_hby7?x;nGr{H(c{0D}FKky^jv-A!Ul4#c9cmJO;sq|k$9Dldfw5;u6v@?UgzSk;^ty9zgDFmnS{mtD%f$_3I#F*Z=zbS;?Bk zN;iLZkt%ai@l>`HJxLG>5~Mg)Jed>2=B493QGm4=K^q@ve!;W-d>@x2POm`Z&!e(X zE@L}=3}rPtbzchaI#}+ks2c!hOe}&_c^V5={xzcAlVCG(j!HTWN}GZ$jUXa~`gtz5 zCh0kRXSpI24B12x+dbV6mLM+})ckCN_m8nU!p=WjFB0jQTm+3(ns2znBFSX~d?JT3 zgtAF}k$?6mHZeDxALlPq0i}%i*rM>mowvZsbTx97>6C)cS0^Sj$CFJ5+Y;3U399_Z z8FO=7NE;XaS0UU~DsR%BFBZ3i?jcRmX|jf-)SnT<08}>|8re}7z5-2#o((=6!sGWz zVm1g0e``4Im-0S|-6=-5yUC+Y_QLjki++WllI7_1_072FFWrqQ^K9$^RQySQSPY%v zstNW#^*?u-KPx}I_y3#9&qwC)6>_7+bC&*=DtXFKV5ZUu6lgH)PgUn;0Tmyp-dH_b z^x^VT80A8C@{=m4)J;wco+z<* zGau0)`5QoDC?Fis0R@fb`78D!^H$xC+ec4(8!&~`XroZt{ADLQLn8?yYdl*i$`dtF z!IpT)M3+G4O9E!Y($bpU4ToA>NQ-RW7s%w}6Y{zX#!4n~hSDe(ygu4a z?P3T@R^S_-B{q0;aKJ_g3E7L8BcD=?99ivE&U=^s`bP{>qlJBfM!g}#0Aoo^YWuOX zT)=zPWPDmBiH)`HRf6%PRyXw=HMSI!(XPeVcGNj9H2!YF2le^l6Iv~0RUFV58lvsX zXc;*;5k7IP{RYxl!AL-XQn4tl(s>tc@H40nYyF$G{v`43&P-{S7} z{rN`P#}O{a19miukv*|C8U3E>-4jkJ49fgsKm*Lb5A;YD7%tcQP?8Kajv2&HWYVjq z8%*P4bfH%j)$0hw-8IxRQ0@4FXWX_=g1s204S=utN~^mEssrgw&=n4DR0=U1a${4_ zhXPGgd^V0vHmizxD*gN$Hf$Gru^JFJ*+gq6IjQ7FlTw77JL?{zs$RU1(k1$xqZo0At|}xb&|&FJxq{a4nus z0b(2e^!C?TBB_uqMvqH%0&*4rMg*#l>Mf=+66|3FEQW7)5GJXwHrB=yrmHLjwo~Iu z-|6(XSRJ_*s5eJo58Jk~6~=*G@v5sV#774_2#~$GI}y%6C0xtQg8%`xituQx;8)y^ zyYIt@crzZ{xQTf)#W5af36TkhW@_=&%VYwv*3oq)S)8q=-Q6xmZ18R-fM9JJ& zqB(B)n4VR*YCxpgvwFR?ffNDW*7R?{Lnr}!a2!~$0-3q(=q}RtkgO)gNp|yD7#BAx z@w9fG8uKH=2#7dEBC|=QWxdg!CyD4TMQ0fWe-+0@^IelrNTSbMg;VcG{u>(=Mhcap z?{{i1H^*r4@UOzr%h}DQ-(9m-a*%7nT|+{N`Gg=rxUs0Qv*&f^bBg`&)LC(sTE-1BS;7 z@tNdSa1d#L;NAZn&5@W}qCjQ}M%5kiW%qL|+5yY0XHu5&?plAduUk^oZmZgig*u0P zgLBUQoMPeF=tG!g61xTdbh*hKB{BrMZGHPmh~A&0o&yQ;H-5%cXfQY`FriH3GRUwmyH)~i-nWU2Y}(?5ZwH?tFVDO&VSqjTgwJXUtM@?| zQ`22s?pf8c?Vt0F%F4BlUTM>n1yK#Y33QeE$}os~#dumHvwB7o9?LpX`uf|&P-tqo z{y<*+%QYrpE~XNVCefgNbDmP-Z&B1h7)0+BrnF*|u23pex*85o&+HTY0_*A^DJ)dV zr_v;J+MT8)lm`Av(#O>vRbO}iENM&gu{&d^WCa7_#AU0CC?=$cMBzxb^HxXrBn{Uo z70g+z{;_MUU@b~dIB#*^(X;y3)#hXGx$q1JV}*hc1`+%xG<8wm<~~VfF_<*9Gz$x? z0+C0ha{bdN7qW>wc9GbeJxL#UrBb;hLwwJ}qoU+(U=+#5QyxcP(V1-%9&=XIjSUaC zHYy=|V!TD-D0RL{S&Ljit;3chHU7?YHV;&p!?((4U3AqRAQ+f5O3}U`uq}TA2|n)6 zAHNwObGS28!;F32pH#DQzx#3RWpc-(5>r!{x8NKm3=J#1O^QtBvU%ubwC{h2ZnNFU>X{;y?cNLttaG8)dC8 zm49O-d&uHHU`7a!UvZPdWzfJTu@^~1+*ff{{`T$x{@X51 zf5Wxvx2L~{mW^9GB-J!rHd;&)IlO*Q`p$=9QHDN`<8eyO#bKe4PW|GCf+xsk3g7?P zcJ^TA29QB2e{ecXKc8!o`SGyQdC0wxU(9l_<;NmXW|vhVpJttXLNJwLPc(okm^O#u zk8VhlS)owUXbEZpx&;J`oW{12Fr&c~TuWaHZws&Anlpidb`DAd< z<8D6X*dL*PAfv`~%*;e*JAQ~rp%vQIJ~E$3zcqedlI#8XttgbBz!iWkVHkR#CoxrP zG(~I=ekD>gaeV>gL-b&So$P3@9CVU`)^Pa*8o8{OnCawaoqEL@tF-MA?!?@VbQrOX zAJN0vvjLUSCd5@%xRTY)lJ()6l!ejePu|~GPUl@r)UNtJmZQ7%j#+x(%)mxY`sEZK zDxyivtik8mf(=*zTvekTepai1YJNxB2s; zo})7opx7VA`bJc&I}dAnr9_GYp zvl+FUGNu_qeuIfqrT!2BAx&}$;}{n`(L~MF+2xjdn&)TZWnn&isP3B=H1X1LM`uPL zB}a~~J40HkFFhB*V?dewpQXW|$e%h4-Ru8NQ^HS0{g|QS_;Bo%M=$AXDR-1h7x7Z< zW{mW7tWC!>7CX>e2GRJKV~`3W485U?t*1;4#ABf-LmyDmooJtN+Lf7nqmw<8wP8K! zYUXHF?-qCU1!KuYWpATZ4(EF#rd=Rp?NwykmfPuezJ|6aAsR8SJC)Bz!J$kM~?c?RebYq(zvwIfRMZDQ0ogZU#daO)D3`5v(-P0=6NAF4OkmGq}jIKXf=Dv zhl2n5_etRzpyE+32$jxaC+u4etV^tUS#$iuh=vN|N~`jIsuqjmP_{-NZ)L-_Lw z+{XOhT!Hta3jL!}t9jYOt65jR)1u~BnZwQ;{Oe7ynpSF^QKNk3n{D=C8r{bV?(a@o za4xfx7Y9hg)!eq5S&>R9HygJMJ7O!M4?e< z?+f5S0hCwq8DV$@4yPwc9IRIJq|=P^;yHbId0-uO-M~;E7~T%m9#CL;laQ9n(doR* zh)i2xzqlQ1tTOw2>5%u%yJ5UQ=HJGy`@Z12|CdHYfX&~{Sc&JArL&8u+^M|utw#&A z<~eidou{cng#S1B1b)!_Ei}?rWebzG{m#3Loo_=U@J%RPjs3JXps`dIg z@SY}mDa^Hr$(#IsgLYv)!9bWVa8*q_CT)#IuktNmZ9w~VQkD69bb)dy{w&##@d~O! z5yq&=Vvl;I6}epDZ-eezD8ixm(*9utQA6hZm~6qBEnkROA{t_gqs5m+IlXQigx6T~ zMMai7p67N&cun+HkKLJ)C=mRG0euX@q0XD(j?`h&;yWX0+w+aGVYoP4qrjn16HZm7 z6b#m=1CW`yp70gfw(1ANC~)IXtVjZLamV{rMBJ=Q~I-fDhHy3rLa zy!~%j1#C74uh-;E&l~@rpgmpX38v}%!pu~2`7x#CUO<|=lyuMr&=YeoSNo?q)r!x~ zFYA}idh(qZISN$Lzmy^Un_B42DDgMvgGV9p5&_b@pW0^qPu2YIKSAI8^M{R!dOzSF zjJb>C@802lm=`Mk2(cD`%B)_yMKa!m`25|2Y#eUL?zh+4uo#NZmWNQEMr{}s^lt}6 zNw)Ta)@Xw&R%1z6zy0>?XUCmsT4E!el$yBpPREn}x4Glk-#i2Yo z2ab)8q(War@Ac^ikNig*7vD^k3A`%Mr0s%?D%}AOf`Xlnto{P;9F^;_v7sFv>o>F* z8dZskwE$j73Qf1$-)%4RprtQeKqdAakMn*wEUp-Kug{pscfi(#adzodYJGALL^=x; zY2^U*SLdbYr^zwnv@Ps*Mikzj2JBMarWSD>a&NjG4r-GMhNH#-i6ON7;;bFn_2@E0 zQd!co^99XVB&n=cIE1#!F*82??8m);?Q!o@AY=r&UEZ2T11?9nL!dBFI0Kfc(HA&) zWTmU~$W*c|k8$X&k^kpJVjuD^1s4(UaVw5(D*w-)&A!W@uhHZmXQa{kOdS`ynU~Rg*V~#sFsPU?BvIQ#k~r*rj9}OYP#3 zCY%_X9NJB9?e}&)>O&*1rFNK5HfEjgKsld!8hq0^;4)Qin7z^+g~5%XlJo0y^GR8l zi?-vIj_u^idS}=xNeo}~5{=q_Hh5g2{ao%03p|s#Jl>#ch2&*PhPPPUtb`bhDwuK5>+yEX8$ub8PE4?i>~5 zq6IDmvK6+qz)@b+$Q&CFQ911r6sTxHqtB=pdz`N)#e(o?pT0mxbq5a&mfK3!Y%qc8 zIS^#;u`&oOI-EI6+U)eLf28NWOu%I_EPTT$H~+FJ{s`=#*|-cz(gjI1dcq{%u2ykX zFZPGXsF#wstE6S;NyW^!P2SlouDR>}tis@CGmUWb;* zoZQ!zhn%5k*R}9Ui`V-kG&YIpYRn|N0$*t0`{obrHGu%1%ODkP8 zw>4uyLUKE`&h%|r?K^*tOxf6olZ4ocL$3wXoO6vonSsl@;j_6WGt^t}Mq_u{c-NdE zEe4GXP2@{x#!a)@cfF(Ua=W=?ySL0Dd~(dAxKzusCP`%SC|6|4wAAliROtT@Gf6}NVBfD(G!t9F;yHT zL)DA}@dE-0kR~WjgTEH6 zmQ1P|lk(8`vHMv{s=a%}4pB1sO{DE=pOkWmRwh2%E17-P41x|pGAxZ zOX#uLi^NtM{%-QZGMRz%IYQS6wPvnd@tI;#sc^24=DD`tlb>{Xg>vw>C%@-aW6QBf z>S1a*zb=)N6WJ`N<_Mt4Rj}=GsK=)B26}!^ktVeA2)O67Wn_wzX3A8?;D$G7ZSFxM zYTA2f{N{F?TN^BE@xBk&Pv+rv%1F=1MA&h|xMK22+kcF=g>7r7=EE$?aLIli8X&hd zV}-077gtpQ`>p|y>tjDTmk_Tpb(F{qW3XRasi=}Xyw`J9(0ppaX2)Ed;%V_8dJ_yg z`2bQN{uYB4jJDR^%yRBwJ)bI5Zn)zomo-yjAzrX0C+|Q~3Uaw6X9jGwE6gbNaB)oi z+GHcWq^%c#!uYyYEK#Q&<$n~O?reV#sl<4n-K24HBCK$<-M!bBVAO6Ls<|e9n|uyD zSg~5c=nur&yd=o}Io$X!E4w?-pGu3-MKLm@R0B>!_=sL8(iDY`fZO>)n7utK5=60a zb!^5g0(v(^1^*@!fvFbV!=D_-sJ(fyf3x`6Et}H_xQ7aWvt~EZ_cMp({ODl0 zUDn-r2&ua@BL=@ynPn%QR;JyFDXa0E)5-}y!jcBCOG`zXHg@p*xM1U@4Y)W|_0S~A zQwR+$0N)GQ^p$`45??tEHrQ{JH=VuY_0iZI%^-juCU_XtJ{Sz!nqoT9lS`?S{N3U! zK5P?yMI&1fxoy~+GuD#Ln!GEA_=i8*t9M|?3$3)f@uUB}JLfi9E~JN-5#Ox0?6b89 z$R_WNP6UW{lRKn|F?%)H57j2l(tX<&>f9wtKd)!h4XOrNt3}r?)Gu1%YcP@S_%dC& z$F#d&XA^8q?YE}i-+Cp1CG?^cblY@twSNGMis)_AQZ+%wwANh^R?X`EOB^}N%*g9S>dtoFgB|6=gUb0z{zSa)5;N5$V+J%8WFI&jHl~AB z5PoYkmeW+b&H)nG;l*wOU>aiw0%Jn}V)#0ZZOf!>-&;Y&8U)t)nIGo!i!F1)s7z>& ztILX+tb$SYEN)YJbQ(hfh4vfHRPBFPnC2IigJ~vjp-<$6uRuZ7&zb8zN^a)$u2jhY zsn1OUv(LDz>&}P^+Piv&n92FOC6j98_IMvz1VKaW1pjT4`>PlI?~4UyL5>W$5Fsdt zzj=FiX7KgWw#;Dv8kaJ^yQAKT*aE)|5X({F_g7Th+i;OXQJSb85|QAF`67K|fY zZ?RgDbmOg^HJeIV0# z1DNZ#?XC!CefKR0dng2iAhj@D?4dM{k0I;uU@Zw#hFUU95)^~4rpcO9Xb zFqfE3?qeL5t0a;EQ)v9<&o+FKWWO^+bo2 zY51pw&#rtY_^h!OgcqWqz44rHy!-l&gyK0iYLMYx>;fDnEcJt_ilb&gvo0Zow$0&C zlig}cIL>OSToHAvOKa5=8?6aH%DR8lp@9Np_^nJp-a|^s)Pmj@R)!z8jrtR-Z0`^# zMJo=O^g3Vpe@nt8EqO=M^qfwvGI~}Ske?AdzTDZnQCo^jjhSoT-8SWiFOF~@*{v~P zQu)}|y~3DQiQSoni^SO&j+tt!G7u2<_gviBSrZpe+mEgS4_R+HQ2sZV2M{O)R0np> zcKE2a7_{Luz0MlFZ63Dj7%l2bfp5kS=RLm5ROEp7Ir40kTdA{^mA#9<)SQ9(+AEFe zYWjBoCDc&XqE#*?oUGsb{#`Dcw)aX{QtjCx5i^DQ4XxB{9250;l_tR*uPq-SZ=&q- zWedI6eym>KCB{b-d%j@7P)baikpQ>J(AKKg4BZIWe!R-bFPdNIgKYHr&c_g+%e|67 z#77Curlxvwa_i$6g`N6l6+ip($M^&tL(e6$0 zSS_8G-Hl<=A8APer)v0_I4_!A8_+xCPLnU}+5B@2jl`u|d4z}05u*&W8efrY+Xdt|!toYXYnjL#;&-qp zr8nPf0&EPIBylFG@eH(9N9%Wy=w3Z8N1gp!arR9{rA@3LbHHUmg41Vh&}f>NQLE{z zQnBQK7u3!WH{B)AP9%`P&1K-MuO?! zPms85ax=Y(O(twV=G!oC^;4q`=J_Ra1=vZu@+B1U2I_&9q)?!6fW|Lb_=5|KSL+>j zvH?h@KWVFIxzm##HZ>I{AJuV^{h54y>V0$y_04rP;y_5ANz|nVT~zVyi`?oG`aG>U zwE}oU`6DuJGc`L;Rx@K8GQn6MPU1Dk%A2_D*tMKLO z>`jcvzXT4Kot^H~I|^96sz)4<9iAMI-}?($ix3VYAiecqx=BUM&s^~fQO~n#{-FSu zbJ?6~#U`4c2&DARKj^mJ+?5a^07b%4 zbSklk(FWu7ZoSD5uq5^n_tDgsLz6XC4R_T$%nhs)Wt^-Z>eDQ%$M~qOYcOF*976u_ z(}_u|wKNL%)7%LUL-~S`~o=5JI%`|Cgqb@gD7Dh4t_3<@H zI+H|wCVw}`>6K4w+U1|D>D*-H^_Phh`e@Lrj7yS4EPLZxWx#1il0eiQ9rZ!&vzPDkk zAVMzu2$_ufQ^o1H6nA|$Rhx*Q4Pm;SK__CNk))#>ig^l>j=cjhAd!a5@sD3CJB^>F zomd;u0F(;nY8j1{8MeKHkLC;I>;)63c>z`TJ?M{_11mYlrBx>pycM=He}eZaw%jB)W{cQ;0Q76PI)wfr-6g!RiN0aA~9}+g55Y$#byBkZ=4X(HqYX5s* zR;|L78kpy1ij+A>M6uILs6mmtMn5C|U?EjgJ!>m%Ga$iYx*-N+(=nW0GEgUiTEkchB1fLASSmJSGBz{-OexOvLo zl>l?7LX(Eca-~C)>QS}a`TAas(jAdfj8?A_lJ}l7{@G z$b8MJ({4w9bG|7X?o^Y!h;qf*8$}dnGW3_7KKV9pFZDcByyXZy`)aVnzCCPe=A~BM$@8BIn)~V8 z%3X)x?;XY(VkXT0`62(!=j)F1XYWh-0W&>-@9SD~I*z|Df$dcMD6x!PLeH}s61F?p zll2=tQ=G0cnb48Eh}J*>BRk#n*W7D1n;@&L%6zDg?%2^9=u&a_JD_+$fK8M&hh2?}1!4-hMjkAVx95wmquP2Vr?GobpuFVtsbDUXIRw+mX@kfoCY@nKqdG37 z3$-Mz+9H7j2}_+}l#i90d){=>mAf6CqOA5usn_)upB}u}wQE$UvH$(uGRRCoBllI{ z7q&kG3aVb)wjX9QN3-+kJzp;Ji3Bi1^zxBASoZ{5Z1K$m=|0FLisC!MP=iBfF#l*s z05bebT!#4GIX@~@E*s0KN-1u|>b;){4RJ{tThTJZlf0ZcvLNw+n`60dqC}OtHTft@ z)!F`Vg?hvCCE)!?ScAyglS$?ZWBI!Ql4=H=ebEjJygWja2J!)Vx0dDKIdt0suusDH zsDN+K&~CjdmCHtt}U zfj26`4&pF{?k6xRm#uM&0)_1ADHV;owSM&;?Qi5p-QY}|>0%$18JD|BI~{0pz7y^g zg6PkdS$xKk?ina@f9rA>4T~#8^>|MS^+b~)}FNhT5!qw{qvS#zc` zdcYBIbmO`WAp6gkiY7^bznej`eq;%vRXzhGX{@u}CE*E2Li=VwF|#7gIsbtwa06Cf z8OOb=!oh)+|L&*ipp~Bvbe^3k)t1j?uvGh9J?j=|{iyd{{_tbyjZOS2NRS-5y?GY+ z7=+vt#GBv&d!18z555W~B|`yqT+7!gvaR48_JN*umQ z_rYSW!1sCQmRzZ~VXe&#KFM#G^fNRfoTZA_I%C!tvD`)j1kqfI;a53CARFw%;?gt^ z3*c}@8(gsJK%7U}qZ}BZ*v?1{5-FV+>g`^!yZfM8^joITbr}q8#xpJ74=bSdpr;)z zv3Ru@iF??1dAh^RvM!6Wxi%Q5%=v2-qL*jmXull31>|u>QXfDeP`rOpbEH--Q;Rg8 zT{QJs;|NqHS>*=F#uW=nJ70RD>;><)AkvslG(~Bs?`l9z?r}?jZ@VKk&5kH+NDxY? z!~&t-YfH5%Q;Ot=;xeOovIfK?7a!790k%pFCPHnCRjqy~S3mT?9*lHgjUTezdlF5h z^N=YHYqUX#JBScO&}(su2Pxf)Nd$;c{c|mr^cA4E=2e+d;^8E<+g+nhDO!zhU$n&7 zl@I{&O%)-w^rP79I@GIfK9gWGf$$c%c(Rb{=ipJaid4kp-?xGF$v&Qd#Wc^6ZF@eG z*y3d2y_Wd8tQ_}1t?eHNL%9pDr)!78Tu*;X#Ly;a+&B+_B!Wzk=ODW*eA4D=UX%zr z0s#T4?!|9V4fc9lH6;0y$ItO@EtTv_CQGK$B9CAyn6r(&^ML|wguLVN9}|8}nc zan+sd-VX?J-mcqInMjVSBcA?yC-Hw9i~Sui3wb?S8)T(P)&1#*a7a?`n~@HeLie%^ zA>-X-JUNwB(ce2SXqDw>98ZOaz>}rF_(i-?m>7Xf)i}3B`RF0at4`O%+(tt$qQaE#B8%nNZxKV!fCy{vKW@K1k-#B9qVU3>tBdxL!SgB6JWr! z;I@jKlsIgTC-3LMYx&J00mE!O-~k!hBRiPgTp&#a@-qosl~xv28(?nC&&nglY0i$B zKCmV3-+7NE z&VKkAjvnx!W-q5tLdh*m18{EJAMwdm2a#P z&S>zNY?HCk)n8lV~46 zaKF6?KPxdXoiB>eH&V51SPx%GcK47Vbynb(qveSHMO620{|sECB<--1;*6Vy3b#tRfb-@EvU#`wh;09Jt+@{&zB zh&JStm?PH8{#=jd4uHp)w>i0~@n^u3EfGX+#;F{qr`>2eXCsM1r0R1tUu(j0Li|Pr zr|K`;O~ha*j%A>k`-G`c_q6W(_ID1`W6mkZ%gSzr5_6LTqcZa5SDAlAFQ5#5UhkJm zq$!)U-mJuHQM5{;qXB7p@cOfK4*oVh#%$3D4K6Fo`E3y}*B(!woKh@v8KIEt>Kdet z6B<(%O|W${vr}&{ZrToN)wdG`7sSKk+vOm@V~Rd7dq@&0Po3o!GgA?7SNWk%XPJWD zxWRt0(y-&o@??{3x;-LIN5?R2o+qo7e4((dBsAFPyCQU_tSfGvO+SzN_)YW7cyZ!L z0*lcYnNlg8v)+#!VC?NO$Oi*W$NxkioOU6THpY@Fp0p@{3dF8bJ@Y z(ru7;x@PYyws3i&9=u%2Udt!k=s`9}#97crBQez%5s@NTOPqU!OQ%62V7fQABcjt1 z-}Y%+32Jpq3iV=p88#;#Faz>lii5Jmx4UGq^o>mz2>zxdC)9g2nr-B_8)aKgjsuDe z4C^C*YqYQ@q1NDPPw_?m1AW!0+Uw*hp_Ww_}#QyhtiyN zSXm|5R(z;hHEMom>jp9QP0FHorTQO!j{jC-trMZcJa0UL@cwJm_V2&>P6?FL*Q1<2 z&j9^7aJJa$KO92qSftXiB;B(Bw-e!v7s>$$?XlQRp8r()UPs8QrS%+a(Q>MYkpnEs zd6Y1ghB4Jrwbgo z9n4O8NQEGeE5|=xH9OvLK?2g=)j`zE^yrq^SUQb|GVUY#z9 z_rzRP`Eqj>7QJHE&88+`Xgec@rtQL9^*`f=3MQtRSe7&L1tnyOv*@BW`whE{ zvT{pX)$B4K;C`&y#4=zqf2KHhczjdX0=TCdTn}Yb@**ND7N1tn#C7UcF|Gj3+Ftvr zSOV5ilpkquYDmf#r{J>-UCPe^mjw7RA^&6Br#r&6O7HKSU@YTXB-0<`&f4>hA5`czkWpqkPdK`_|xfA+@zs}m} zvvTJa{R)&^$uYie->@tOQ{2+g_QfMboY4gB?>HCV3@QyC61{l$$>8YG0*uncdRnC` zs}Vp8z5#-80NiBxw!_$98h`dr<=y)S?A=5qgewH=z^E%9W)kwTSf1j4UhZ$X{|jPZ zkjDj(tpj#&>3^DC`04!Xjzj;~;YaA@>2^3@;mCVsKd%DlA$sF_0dqo*&1|KH?z9#l znvab_2av>@SilLK0`)5WA?|&l4WT(eZqKjPWT%gq-7@vTDsj0!RD2f#e6 zqxh_7cWc}{bpP)c`AbmwKld6>=q( zp7Zx^7mB?iy2JfS?Eij7|M!O@>iJ$^Q*u| znR@~2TA%yV@AINVf)_UjD8$@>Yv%jqbY6?0>onf2s8ow3=gTltUM0SfZqRQ= zk6bjrMVHU(X#0Zb<$InQzt_=#N&SwVU!n*BpZFxBfX4Lte}7mcypG!nEL3MreK9Ef zOfjPuZx?hkEP0;*ovrL;j1}9E^qD({067q;H^*Y06>p4sQ-SzIt%F&;ls})p z|Ca?YV&8^R^}9W`Xh3``-h}Gfi7+a6N5&XJ7GI{m(s!5dlUxjbY}RT$ZST}glB@(Y zKvmo|Khpg7o%r>ZsR9Vby1EOcWiI`=1f+B=B=D@uvG80>q)+xXXNskIu9p0ntsY46fHuU;2pz)1ggd9SP%NkFfB>An$-JPAvw+qEd8q)N}(aV5C49hMR zrOnl&#XJwziRz6^>z!)}uukYEY|L_WR zA!!r!bh$J!itKpP>6so621M+T*lM<@C3?O>O1$t)4`XNal-i%W_B~wSq??T0>Cfv%QrTBqvgau!C$T6=kZRp6wRoHDR)4HqNmK;} z^PEnbUz7XA-ItlKP9^E^CC@&A7k-G|-#V*>#F8_57&QZ|nud!dJ&ix@9U4Uw#6}-i z<(xxf7CSnIc-9ir>>Je&8u##Ce&BA?^Eq}@?+Cz%+~{;n%=JRDAuwE*DqMgTMnX(_ zQ~wZk(+2(f`>hO4S~orS7;4cMuDdPf!7a8r{L`Nb?>`d@dmR0!JG}T%_CY;@l+z}V zvAY}h{=4vDTt_hO8{nFE+q-{PXi5Y7g^o5|em{k^ZSi}T-+B|sA8@+&y?9fYPm>H} z1qu3pfKf~PnMi)8W7jH4C|4F1TyzQC5V+Fvyh|l+oiZuB0PK>vCh!BNoxJ1}SVie~ zZ#$p(lUCmwjOm`N&d@xWCa4o~QhQdyVKtZ{S81!x*xE7*Rts31fnHJ~342>*3H=X` z^Hitfo=tGMJ|`*EZMXHd@flara)s}dfwNMwFFk5`pP75#SD^lfvyMj3yUh(+2>-2Y zoo=0NvfF;+o8AQG+;=-Hk1Xl{;!LUq;-*}y6qfBhpqp|yYGL9^aITyowiwe}FL5d! zHy;IOW}eoEL8_frG9jkFE%XG{0wavL@{ z)l7I}NdH6|t5R4%W~x0hus#dn(7$frFyMo?5~wQb)4!$`vMd17E2g+?wHgPij%7=3 zE@uycu5EW);PR6NH91lX;{optU07EL!U_b^#Y{qU$-n%b2 zrmcv4X+qWh8M{cQaq49zyGiV>rp;Yq(+U&dLi)OYAw2M51r%Nh2xY^n&GqI0%%0)I z%@Md^(fEjg?)EUjYZ*E;%ws;;iCyCcH-4_#iayPPqa3X-3zc%jI};80gp$Ka!%!cN zt#t1)O8)Naz#*%*6ucxcklV>4;zdB0{@4@drC+GtQq=sRN$1C(BSJKELx+mzPxl7N z^G8*A1bU2nDbV^G<*D$t+LpZA7Ugir9es@Prd?5wl`(AFed76*%td<`^{cHpU}D9s zYPxm;woVv(;d#P|@b;E%8RmWR*c&dNPwKzJlHMnb3-e8#`c=*e*j{t&%oK*Y?2ipC zl=t{L5WGChT~L*N*YX*uLm`k0nQ5lAHW13cR5M+>jE^re?fmqxGN~b15v~Pna zf!_DJz!CYN1aFO|`OkP>u1~|*a~sb0FOtX*QEwA}&chaz&N4Bbu?|>{vs5`;kMgH| zecq`Zr;=@?MwsolWQ1h?v8}eIy6CP4k&6`=(!tJq%M7KjnE8?cc%mvPmmWupSDSU! zrRm+1VK1h;rvldJdZ&&X4xSsU+2@@#L4B({L~pGA)-kU0^8Y`V@Y@@z3GhD7s)g)J zqc#*KUdUM;z||q}gP>Yi&TeQS!EUH?@9k-7Q5k@<#?SsUPpocxygO@;ci9r6X;45j z_2uCsOmFyOyj!|IGlfgDRqpnd9YJri%=#rIC*^`0UG@)Zh;7}{VMQd*g`Hfs^E3V2 z0(Vr=9-73zNZRtx&VrWChvtOKY zAr{&XXL^92Bzlt*Yb&sVVHe(z`%2Pbg;tdG1ynLd(5I!LG!6FKGKVFv46#`<*x6iC zv;J}}g4Vf3#uMf>A)?1|U&R@Ry#xyb&Mrw0?agBd+vRJ#X zJr7b(K5V^N>bLK_kesOp0Jx_eE3<77$oBry;haf9aiilp%PhCJI~H7QywDk+@=m%& zM4+@Mwwhn-o6SPRa4Ufux$C$!%b(Xl>2Dk%H_M0gCbk2Jry*sclLL#D#>dIUN6n>M z*{YJKL!(8S*0wV_v0r(d&tc%oaB_>=pqB!)-^XP_@n(hUAJ0|qn|8vZ(g}F=pGy^{*Oe*Fe#afic()nVae@!c}V8=d76D|)mAsS-# zdw&9O;5PsbFkYb9dD?(yGkD{G2778B(mU8zACB;wa`=V*&DQg7F+Ska zifh>;U484?W;17V+K!qlbQvvktkyhqRyDg~NpRJ5NQ#>N-zF#o*%>Ue{6h^MRo;K`1YLQ2HtZvSYn2+9Y&O@Kw{>%1q>U$@tE5TD#9=PHSCue=%Ib0A z0z645at*rC#P99qx%ss*fzw*cWc81P$tveUw&_>4uckG<-usQ^rTk5pk)0p3B&*e=61&X1aK)*+~?^jwfT&SN!M%}LiJ@2l;No}nyj)#Z3a4LcET8TdT=ubsy4{V} zvMa>Q+v@Yh#v%s35;Ds7uQ6xN{$P2UtPm+_44rM#wyUR48~83f&*dBu2==1-sW90+ zrgGu4;C?9XwCFlLXBIK-i>mp!D^Mk7S;F=cy4fsfJI6ti>C2PBoDVLsH@X_w>~E`v zvJCTU!JU>;8JCEntfxwdIR-BZK0@vLp|-V|YkFBAiy@bm41uQZlip>&x^^9Tnfu5| zxhmEM^Zn^c6S#`W%e`xEC0;NanO0z}%`Dr;DE?yLPH_&UmravEo$=a#)PPV|JfSI( zGJ0!u>LjclnNT6JZP+OAazNbz+%DtWKI>Y+T|ZZisTEqe>{PYUpRDjajrk@(C+TdO zpQqU6bJmkvFXSI8`;W#G{aBA}H7$m}e=4=GYB37_jYYkA*yf(LS$#+v6=^m0Jtq{y zDpFie<3PY<=ZC*6FF$r?4HQ;SkTf*w|8k4zFE%pkh zD)fp&D>A|bI;A&$T`a$y(4qGL{zZyn{`Mdae2LSANOOZ(j)Rl$Z;i^PNy-{r%x9JL z$mZ+rKPN8_WJ=nD@1GD|K+Lg66U?#I!TFTDyN}2k^u6Y=3QPyK@z*%X!p&Z{@l0(@ zmFk1E4P1jil8R^kDk99c)v)of{nz2k=# zb-hA>AM5IC?20>0gpSoMKk)3}z+b2xr2O`^<^;!D%TBVRJ!q)-1)#=kLyzJbN>Rso z{3fWcogvuG9tgtTdXtE)K=r%fP&0M^FH4 zI4rSLvmNaxz8RnGQ4_%MsaogY$Xyfa!ET$B=2!-nj#t&$3Ci3GY5ynXi?iFsqWdfl z1Ew#$DQYkQBi41b(%<(YV8;21{xY37Xe!SDaiJxMJ2@ft@;`jlXjIg&v zm1sXbjVb#t_j;!9D6H-r*R#0l?~J+$FRZRkH@^Y|W0u}*CZSFZyBacfr9~0`7UQU2 zZ)iXthjg}72CfSY1S=eHBfZPKYmDAs-JX)Xngst2)ZDZ@0I(G&GsKQl?UEUy`~x~W z3$bKx*sFrzoll=TQquhG*!+M%F ze%~uyUWFx}@o0pBSbnZ5SP{LG=u_6R&TdDCl&TE#KJAVRs%9F3lT>m>SJfP0tjeB4dJh#)D< zi04pT6X{8~xV%`^H}~{fxX7m2`gR-njO$a?XruAnX{OQuhV`J{&Utb%Q1|t}yE&B( zIdB?c48^awh>qWlY<3)MKM~*vH7Pq5jap7wKi^-rxMAqgx>$}L{rjiER@YrWm33|A z?Hi9D_gW(!fYZ;Lf(|f=n|hGT!oE*y`kwS)U|UYBagkIqT(s951l= zKU1drO}1_)v)=O~F6?Ug$s0En=h*dSi`|LX{o`eIUPBt5i>g%q=XL+oLIQrDpZc#Z z(qy)2C8^@wIgmGs*og=*`++*xH(1Oy4n7f>ArWlVY0LQdsuo5j{vKLSR*Q9s*wY;Q z6AjhE+LpTGLX=u-x-t;ZD3EwYd!#_^}8L7^vfem1^ANkc1`?EWasIGnc}*I z5#&m42IOL4qMmC)s=4*%`yz}!FHP28FN7sq6h}D_+wCL-k2TtgvafaBrHpoBWDh_~ z=lVvB7zv(@E;_q&rSdx$iHBfL@PD3+_q-41Swyd~o{U2bKA$JkuiLCwqI+@FB+=si z&1@@!G|<_1w6l#5ld>%_jNQ!@`-4u$44Q@TQGay+4QQ-y!NO8Fy>c=L=$uW zhz1)t7ZY|%i)EpO+#Q~u7z{}VU6>c2FA??kVf1&_*iVlU8y1Ga-mX6$Yf+$$Hm@VV z2J9F(D2zs=WzVG|7AEA4itq zuWI!hZEEDTvap~WU1Jdhx>JSoBgAj7l9vRaLZx4FhLk4rylU9KMSD6@v8X)l5S#0_ zRRj!O2K&MMEV^fq{nlThM{%+%2AS*@`$h73Kk-`RhgnE!U#uEkc8;rfGl6lmEGI##@e_mk zPf)=g=HLbcZP&et3Z?m`!7tl8s0%M|=~X&MdL~wb>}q{!7sMHM#)A%@-$q^2nx))x zB%axNSW89IKEgH&zmTDMd!az{33YuQ*X()VUQ9l0&k_FiRB#R~MF8D(P3MZ=4arh% zu?=c&4D!_2jpiHHF13>5dxY6+f)UjtolIV=C;tlq2pW6jwZ(`c)rd@#zZTWlWDsOn zq3FI99=+3?Cj%V8b~nwn#Z?sfGy*0idoIGJ?mOdMW%`2Rw*`?+XSER^*Bx7GNJVo! zEXHiO6!Eb25V>b|z-Tu?H+s_Y3I3WONKSAeZnD-jo{+dO@O5K1WptiO zOUU{25eM$)d_T&krwQ<2!|ce|<@Z*4Vd;v=Y=wZ5+sYCs7ItUyY>?NgHUqLfu$VTT z@Gb;xG$xM(f;22ZU%N?*-x*(s?`UlP9w_3`R@u57{M4<(;h6$r!^$qH9$3;49@;@Y z$L`HzbWPjkT@LcSobb}>rv&^`6##sFe5`)7__>xG_|mc+f90&L1A3=#sLCmVA(bnk*WmF_>O^uWsYpsC>+B}qWpG@jB&+Oc?lj;SbD+;TEF8W|<&!@Hmwp4yn0dFz_5{Kl zYJ~B7)_zcOEDmT)5s>%neqhBu-mgD?-_hgpUB+j{VKy&$4#qs?T?Fo%s%-$iuNk}D zyGR@AGYNi;W=qt=d(sXh!ktm!N%cK6A}Lvt>l`KhHf-DL!c&zlpc7@cHDp^VG()R; z8tcO42#VoZaxMF`l$jheN%6`wt{p*Dz)F6KBcyNDjad#aHmE{P|r4P;^)CQz2ic!CjFIR0~f-A-6u&8kztE~+IR#(f6zw8Is~y-y)S zxXp@jR{Vb2!-aM|mM= z1wRy+1iW%sxa<{pqBL)1IL4eA?EqK8jpf3yDe0ee;JCu%YUHSZ`H{|5ZC#!;HTsl7 zgb#ALW2>99V86B|efuUT+;;Y2w|v*qDXTS;ncgYt!~Ss1h4PRMg`G=-uff#U59%=- zdrtC7d7()LFk{W%U`<>K|L;$EK~pUyF0;SOry-ObSFeRFV+oi zwAHvuR3=dhD3?MV#t#z(^!j*I)8kR8w80LCUz~HMD+s@OI64}{u|P@W+GI0+(;8j+ zV{}N|*fh8=0cNE_=n%$rD~Q#$cff!N*CA{GwztFyS0pNkj>W&paOn zw!f%4a$NPyDO-_{k>OE1{cj|zQprp5SMgK`p^eZz`a-;Ev6I&jxUZu$-YM}~V?Vs< zm-QnhPnAw7c2wR52k()u6X=y(e1IjD+m7ee@x0hY+DY^s zRUW}R{eg|l`O$UEQm64iN9&ZNhJk@p4CYmn64QDHnGd(hX9FF4!3;!f{hf38UBodd zyt<9ptQxvH{_kF%*e!lkIt>e~&L*@EMJUu zuHB%U%b*2SN!v5Tv#8k=6ChV=70Ki9rPDWWNyeWR3W9s+Tx?F;2-o9lB+uvtcw8Ui znml};=&5@ozsSgmeJGb5impNDPp7n3-*4@_v;WMa@}t>5w(XAyff1Y<(toDNjT`2k z(7L8#DL6Ma^W2Z2-;S{qv2J(qN1Q;h7JwJGp}5ec7`psGABwFE%s>5!$qw7lUlM(Z2E1_C8JKQl9$xa}8C#dy)HPnMaQ#{{p z)*_KMFue75umiUiCT!t*!>LS9whox6xeMOk?0(&P7`&(S4v4#=mSz9j9$S~$ev}W2 zL}JuaO47GM{mJqOaDU(tklr?$Sb$$OQ_0t}o6DkyHOHBcZ3xkG8SEM_gClX3%0Z*i zW@QyemZAibL=tna(|{2WtTKPXUsV5KOHc}`PU=EX5aDowl*OLinh zCF}VnAGFQS8N|3!rZSA(g&u}~?(wk%ba~vdl>UGoU8?z)`CwGuf+N(uK=onPP zswN9Z2%MoJ)HnM6_%VeKMkGV58{g>WwhKFy55GC)=%J!z(OZF1+nY*SER`1qA!FeGeBn-^zM)+3OK}{(3r^0*3$Zpx)ShZM<4K)Av+ef z-MyZirtMYx9f&_K(>+t#D5r(jTV-FlieZ}6WiqtlG`WaPpI?{5e_VX{tverbBRg<7 z7mC`Ni4Jvf7`>KR7>#4OJ;xnm*vzw9;5^ZOXu9n8h~xdjqis0f^XceN?m@}1hAzj= ztwWFyVpz#@yCri7RG;5*^~FO?cw4LpZ4t=LX6z>j%HGBoiWMoFe}uq4V03tbCM}c> ze4oNESuv*@y<>kmV;ne6bbCpLU9$3y@s~M&!C|KVEUQ;N?s{p7v(wLD(D z!Jz7F<8+|)$M;^TrgCtlmdGC2d-+@Fu@U=j^zE&4T!bO&9^urVmx->y;7^Ay4ag(H zEmB151+2@!i!{W{=36b`}sl7<5ABF+zOV zGMfE08i8}F@>6ZBhAKQ+t?Y}#IAXBYrcNS~41&<~9$JWPxn!n+^o866Cy2U-;0`ii zGq*g6#)Q5!x>DcEBBfgtI+D@5LQe0=0O}AtV#DmR-2fcs!0K^v+D$gGd^w$mVN=w) zB+g!hLk#!^&v*MZnteXBTaCOhrV9w>2EX^bXpuUX%Vd8uo}3b2QeP0v=u2M+icDln z3fg3Dw(L?;oGyAchfa?bBlQJ6E9WNdKC_0#cQjI>}CeZOT= zB-z@v#!_jhPKt~#(yYPz*7Oo7*Jv0P4_>DLAs4;6U!_cEwbK z#NV_5a@rLo3>s~g?Sq|2%)+`fJS|e>?WgbIZoXMDLNt+qDQLdU{n|B*(OzxR zDtW#Q&soQpmGsMZjda=n)krRDQgQaPL%L2ir_{1(k4{6{`!<`Ly3_Gs(x0r%)?F-= zc3R{lj8Ee89P#2~3P{ZXY(SC#ly#7je5)d9;}Dz>hHq4Pj~N*>O4TLC=HbNYA|FZn zlIk=!Vr0>o=w(?*A@Y;^yJ?e|qF@aYbogBD8x+Qs)%{6ii^Ds8l|v0 z27Ntx&nTRZiRuvCAC4benUfLK?8--KIHsk^$6gJW>fE?;f*8^x7BvULuO^l=D-Ln$ zUGbt_@V_)rxOR)v{JRn;wv{pL;16@6yS@;O-da+9F-2Q_|I%cTSHr+-V37e5C0s9| z4mx`TF$gO^<|{?e?&vY7RNn=d*cn_tz}_q(Cp;xSH%gsyWfRfPVhZ{mHodp+Corer zjF|NW_aS3TMIOJ@PNzJ(o8`px)9V*1-;QK`gw)L6SN!8ga2!7+$wH@hAMNiAWHfOE z*2g0lDe2=S>mM(AXIqZeP+dsKuJ5+lep2Su!c?Iau1FG&&Hbs~8avot-Ev2aRP#1KYY_|gnPg^4lJ&|RJ^8dc zc6e0zM9I;b>RzBwy7$MvOK^f;$ib^kzpR2b@t2;4!Au@mVPs3#*w_p;#9D0=p9xMJ zAn`#7LKlAdQ?y2|ger!ld$?f8t>w*i_J_R(#bSQ`0bH2HjtsWP8oKE?BA$DZlaCQ^Q2q#3Em8M5M63{tcTZ2!BuOC6SLuY&} zT4TDSQ#3A=G95ou^P~u_GBqW6SAVs8xyLp6v_Go8OdWJT3`#n?upm*CPT3T}8jMel zIH3zV-lDdW++ILHDF$g>Zl3~Y;Y_|#bEB(TWKNkHQNWuhk~>;xVD!c>vMILqKF~zu zGfABkoqy*!}a7H628 zR3T2)=5Hwy^Mq~CVQNw5VWmviXL?nAwe>)$v(3R(pl z>mC{{RI|ce?s$Mr1>u!iV@6Jp*f z|C)iU{J5B}a))5GwcRZdU!!8%q?`P17Ioqtt-RlaLhj^JR`8V^1Z}4nJ~R#W8+b5f znaG_`BpCHXg5&3?V;W}hb&7g##A!u#)r2T*>;jK}|h-+~2fgLKaOSAn` zu5)g`*ZO9wNEp?~(wl5HeY8aqt~q=sm+Vy}wM#kOL!<6TcgkQA4&Vy?0% zu@+8^k3blsx1PJP0qNy%!~IO)@bW4{84GZSb_;U@JKI6Sn}Jv!T-Vn$1mER}u9%>h zF?;+Eq$EmG;k!wXphg#>6Hk2~Pi+Q>RI?<6;amZ|rN<3_SJdYgN6Fv@xh>j>VQLme z?B#0J1~i93d|f@I-wK?JEFa1(;l?D2jhphPdsMr1R8g0gYPhbh@Z3aK)jZoyah3cb zaU0>4KZZ*>>*?58OuKm(pX{#s#+E^hlbY+sl>c5oB#K23$Sy90@b5&nHRge>;Mk>A zD>8+^YgcG@x#-ihq+mg?=|-qE5v{<0VFhc@D;}+!R=?yK6y2J&-(9uHeSw3Wt3_>sa5&*R&(arvhRD7uE& zf6Bw-{IsY4yL1-N)B1D&M{2ua2su=4C1nQEqSml)y)Jh4(q~lCo4i)plBjr$lgJ)R z3@eSG#N%=O+QWxvN(HP!Tmfi(0ikvxmBmI`6f8U)APs2JfyoKW&5aRf%)J6T>wFKl|0!G2BX2DJfRxLT=F?NMEg$4=jn4PQUF6E)vJloN#n>;ly+Wt>9$HQ%xFPUW z6B@8b5lK@{jHg>WETN=p!JLZOK3GWZ9wxbGIY`xAf!~+KC|>B50>)T8bf_m3`_p!e zFKmi-y^ISMwbwu+dh21>7e|gUjiK<(SQn|F1d*5? zCwyYlce3KB{jn>Y>EK4o4#6`EJ>olIYR`_j7co|bs(+88bR3}e()SC65pJO?2{s*= zF1)vzr;~q#t9oe-)pJYlah3~+@1Yco#yLV=D94{TjTh2h6_03_3I{ww&`w|N#e?tW z4C%7ZMFl}&=V}=`Clh;v_OoO6@k9s1aVp7*_b$g8O@|TQsLkD0h~3EEjHLFCSnPG< z5Tr%6kyh4c0tDQ&PGe)_yfO)U89=f!)c$7iLa;<8kaV4%MfP$O)!ZB7+0nLK=-wR1BZAffh`X3LYEVch=$V-x!>?Z0{ zS&poiv#Lmh0X6t7K~MnO#`~;|weCz$BcaFE(RNxk*8DhR%F+yN zZ=`z<#Fx%b0Kh>itPO#`cW=|c*YSqq^MI;zOY z!ftkL(~#u!MjsQVET%4QuQIh5o$B^}RbTqlnf^6P*8L?$nYFq zri35D$LiREg1RZEEAfVEbg*55L5tqaCfzh;4iB~ryGxtg;U8H7!HS)&HwWJ3mQ~Ss3rtg~eJDx1!pQ*vyEZAfTQ(g&}nt$PR_x)WKQyB#o?}!_g3gp#P z_6poJ*!nf~T$b-h4PTh!GmfJ`{t_^C-(r=8Jr;_Cl+5aO)J5d3NKM1jB-O>09N*>R zW+Fg4HY-{bQ-9I5|7neuvPL4lmO#M-?+DkOp<50-ax6G?rNDWZbyxO_$}cDj!XyV& zZ)hB(yWc5GZH1OA40h^BpY)Hi(oWOtrp84I(p=C87yoIt?Yt`4QF)+y}h6F%A0 zq9oF9E8Mr_qS!^W8ZHbA=EIlX)8j+tN8HcmzKLztbC1*FTjd}zsR9GPknc;~yX)sR zGenc!-Kx`WgkJ9`(EXmK1!>&bU3s-d!KMyxJ+nCUly+Sfy2T7KiSUX4>G0Ff{8JE6NUZWNG^8fk9&qR}mO_RU>W3uRk|yxu9hSF- z?7cEqbt0qqhLB!OnVkLhANAm>)O8<5VytQOCU!9SEc3k$bKyC*MxNBRx3de&m(*Rq zxCHMV4-#K1G6Q2H*5HJfNRFzde;nKs{CjM#&e~vc=szOtVa3@)5j5j5B*u-reH?={ z0itw23@G9BLiwx64o$s)R__a>p)Y4Uhhf2Wv&-&`%7D_dm*)=Hv-QWxfSFR?y_CE? zfSetGgQk^h_vR%VupzpWHtJ6^D(e3Z*ab?Lll%iE;_BvHtKkNvhN=L+^iMatT1A1) zQf2o6NWW6;uL{e^0sMKQgfWvtZ=>5;JXTUmdg*Xkbu3Sb-Fm7lF+mjy3q5QQO&<6r zJQ>ZVX;?xJ2+yjGOyu#C0aY2aax)_y)T&2FI^0&}yC**js0*KQ=nX(vZ6tN4N-Ax3 z7$|FfuC_El1y z`$Q4&OA z%z-%on+*#iklX=Kg}gQomLb3N>X`Q>PEsXYzvsSnj&T>`QBAh9@89Sh-@Lmyh`&2* z*_TtrIR)sFZ@MiE;w;#pU**fE>pUq&e>8(zVr-UMWoUk<=^nHQCf{C;%R5JNCHxhO zM-`}$g1#}5={dA&yYZ=3H_Atrug=%rvjOl-v(#+K4R5+S>Ok$3)(1m?F1yL)aL%Bt zaaS?Tbnu(2Mw7}TZ-WuCA<26m9%-l9BUEfH?GMR9L29OZB1;rJPvyv)SS1Ms@P0bYF`ns(l@mB@N8%&bPjnb3_+|CFZt`L+h9482N zbCjha(}fz0;bbK+_)pdwU@X-(f7D{T6)k9<_z-n7WBu+Fr%xbZCZnhw4NaTfgq|8=jZhf8R0#^g#c2KXTwgEk(f*-5zGBw@5W$x<- zEK7Tm-~p#vjs5OEjXD)&5JlOZ;F3@Of#mUJ&d)=@QAjoySpAz(%OXg4tk7B2YUW4A z2d^^e>|Taw$!~AqfG79oZ!^T5*<~1yu`KgBm85Z*?n0AM^KzwGn(|onTbY-JW!1=> zdn1DsA-`O67WpogU|OGdPFt}B^2Q+-c&oxJ z&C?T6#N^t4?NSRyLxR`*dbxMOM|A%ZvJDWXuyY@h@S8LfMn-&e14nHe7(n((JOOhL zt3fM|iFwVgYo691*}$P3Wr$=wG&)#*KGSje%Q-nL>#r{(eOw{cn<9$R0eg~t4ki^C z+WVuu(`@C7`$k67Vdd3IY)0|R#2yddU!vsQ>*u3@s#+=d#B2k+ozk)_<2`CW0?~8N z20Hre8uNZvW>sQq)C_tIgtAE>P#so7N)w*EdOQ zo5PYIe_5W_XS3&bKdqC`&ojD#(<`l7WoB);2A>RMc7utaii$Q;Ydk{Y#BA9stJ8Oj~s!UysSl@R2g)rb{k!pz@CHA`p;6 zr$ZKQAOp53>)a|NTzYB)p`Nb*B1!*n3p|W(X!Uu?$EMblSWnKw^i@&Vy~#W3v#+m1Tm<_MNFixI_=lsp-g_z1x~N^ZR$fntZ0sj$uEn{s8q z^_JtZGtrKPWSd`~F+ABp+kEn8!k(L( za|YG9+{=xwX-UOu%DMgcLJ9(NG=GrRyTtWY{4 zC&TR3Jh!|p>)+#M8A*cQ1jlSzN;4El$aj=>fQ(+na0S})wf4YdtDesZBzK>E!fvBB z)p@3ZnkDf4AA+}rlLa|iA~rhE(y0fDrQ+AJRS|uz`GmI%T$&k>DV+B7jVa2YhWkdR z(}3R{B#Mv2BYo&T@6Fr);J9`PC()&QVj{KLfw58Z7z8iAdB{sf5viPE`S95Bpu7d~ z+5hzj3C{|-EQRmV&SAI);bX!lWpX5@^zRmdScwv~VQ}mi-OG=aL439gYGe6rzi@GN z>_J(_1+Q62vvSjhkTP9PqjF?#3ttTfVS5n5!8ycOx^xEqUr0>y8ksXWtHeIIgzY_) z2Ex|@g-A@!_s8{VxYrO}dez66J0A+NrQhmFnip#O|M);1WKusA)h*^2oB#~b<{}=L z5Gvjc`>1K0^qy$ZO{_()PYX%#NqMr3$fXj*Bnx(MlB`;bXWP;rc$PWwGrG)j5)=XT z&g5uzNH8WfBoG+o^h>|aGoh7rt{H47yXf2V4^Ch^!z*sK$E1B`I_y{Vbkcb)$6Mj0 zahaJ=RCmwwJfy71|Y`0yHIDCPM{ znxOkPk|~8-w7ZP4h)VqK%<&>Lhh!g$ScI4&j zr(9zTU!0EOBV+W#w3mITxbXw7O6NP#A+RNU`KF#4$%c#jdc0_Uqf`4q)fSOYWj0G^ z$cihjF`>}LY>qJ0qA&)-ZLO_N5Oz4vbc;pM=q33RtCe3ZPI(bL!{P$*SAnr0ZVMFw z>4AaNvguDv-7TC$s|&F|gMys_p@_)e2E<~m2J6n)kIaAYX@5c2c;QbsjQKuCjp%V= zLaEx=z7qiJeU%*=wG_#Ck+O`hL@aMY@m?=C7z65ibN;+oN&CePMrE5%RdXGuA?M*$ zY-Wrvcz{nSo1$MxyXOOy0l{jPN1O;ts9VoOJulVHQ9Ppt;0Byxz~QiJ_fi4Oa9nCcc|YHl7wKcv@uF|d)LO_D3YTmk;!4M9oJQE`gIe-H zYPsrB<7dFi>ibaykjM5W2q&h=z4L2UyU=wJBSehi$O%_CC4s%O^AtRC8(%zIhCF%a zxF{8e&_SHR$9=)3^VS?V29QNpLJX4U__|#ff;B%kX+#(Onh6wWL+IAuHT@V+HS@i{ zzOlzn<)Mc<&VeHY&?5Kcb3JQXBqkJd3|R}2!E_G;>ieU*XHK8obm_(I(Z6XSX1{Qu z7VMwLA-@jhghBBMaf9SeB{S?eOM1R>y%EzZpC1qoF&k#TuL>Yz@*Sza^uUaFS=V9e5!PC@Rvt`LM#i0 zFS4X>i%;&XJZNXSCPGwNqE2LcB8jaYmAp1^XvZ+>fI$2RyroC**^iOC6xMS)<2O0z zbIWyrHpmj&mnST6+gn)-I6b5phK@DdGn4NCsJ*by6z5>hzhk#)eq7Wqt8i8bnD zl-fyZIjF}+0iVk-J7e_aRd;4Q(~XDO)Y114<}G0zE+#IOZMvMlMhh0D|3fT5#3q6Y z>KedkvrWagQE->jaGPy(s5Eynh&m2cFP4D}?2@P>WO>$Hz(5)Xmuk^E`YaD3KQ!tm zD9Twe9)QNGrbuKk2?oT1=LMHPms182p;A(XNMP9TL@&PuiRM?&+%f0eF3L1DLAxC! zuuW+}w~-0g_wAC%eMDu_U+Gp~$eJVYMQ$Z`*qmhmGr#PHxEB&xJ*37Vw_2t|PJv}H zGShjP&Iai69w1;+T`Tj-6Ze{ZMY*zonojX9MB-74n@m}3t2$7m6=yfU840L)E3e%G zG&^4VbiDF_b*BXinOq;|65ofIaZ=dipPu^83;UI)`hN`|(Q4YzPa?Nj?q{dh{#Ga= z9mm%BD!)7k;c!Dq6~;05+UV#`PW$Xi37p1i6QY3E} zXOO>9eO^q5!`|QAd32jn_y$0PQ5#%nx1j+mx2HASG*Yj6zPLmm2?F>%QeNChpN*q? z3YE<101^*yGu~tSgTjw9(ov5An&noaCCmmXq)S@*mit8v4xKS}F9Dv24=UxPe8AWZ ztLeutH&;<0>4{tn?~$eGuZ)`y$SzT*AJ4eu{Y^B}&}KgprhB-Yur5V4j7@g49<_lS zb$z#!y*0+NN!x6GF#KTL_FLRj$@NYfW%v%)#}Aje3($pD!!czp<&3VyjW~c$uk{kJ z5v57RJ%VkIk#dy%oLH~qDlrBhZR;W}d`4~!toK0Ye;HlI)yiCFQW{DRES#?%FS6Rs zrZN6i-Lcj02UCccFT6FUp^%FbGo&5}T~@{GU7Q``_EUx31{7x-zO)~11uD=5&?}9(Qp?=v*g`WF*3LE<~!v)1#U0r3D5>@B~OwpYa_ad`d#DVso zmyB2Q!;vyHu$ULE)a~{{ttwB_;}ljxvB4w@cPA&DPjuE}0zvZg5^(-Wq-m5lV=E)M zp4Ghvyo6PfE9|MZxdbd}I>iX^HPY1Tt$9ePLl-YZUF5Lnk+j4ycjJ{2i1~28-RX)N{5G;*B%Wx5tV|0)iX5i zcjg0C1A&g>A$wr-D;e>a6l=_GvIf4DgQw^U*yO=>^JF;W8l{!A?a%l5#j2;-F=*t%>3QPJa7KxXf2+bjb4+kQCfgGfsTw(^=5Vm`bYId97vCM&WjTa>@ zCV>|LZPN{+ln^B*+WB`tv+A$OVcsHlUb|A?l7nGXt)vd2Hqb&!3qbYLGCU+gHz`zACl;2+)f>onb+CIT*hME0x2M zew~T+QExXx>+8%W`m+`s@cwGIV!>|lO2O`Kglq#y*yFCoCO`_F`q|jO#(9rN^N4e4 zEYmsS8gwRwwkJW0!hgopm+-Szot=ZDb{9}lv72<%lMJ}vigcm&t)@P>Qq!= zy*LDHt&J!bI3C({P!&>yYK@?$Wq?Teu^a1_zSdt#`njV=$2F6zWNnq~DaM ziDd00G#2|u-6)6$=o8|LAaIAPIdH>vB#1cFc!%>-$IB(+h$5k&&s!c!!r z2kd62O{1=r60}Q$Wo2hmRT9HK?+-07U+Z>;v_dopwE*T}_5o7!@cV)M_|o<$-Ba&j zR(_yn2`_>!(~)8oFuyuq+)FtM^0PLa_S~l;%E%ebXQN;J3EGU&HA_BQ@yAj38&@Ml z1U2#=7Z`=MDKU7Xo|kJRUGRw9!GnK#^J0is`Sh^CWA7{Z?EOrY?7VQDQ_tkwM_AX* z)R^CQJ#kum4MTkNG%={!kJYKK|EzJ>HI}euLO{bc_Z{#0wiji{F6$Odwakc&xj&D# zVh7iY+C>C5UTF*ONsZf1oiPJbCIBpuHL>@*NLD2Naefw5KhKYYdLbfJD~DFhX={Z` zHN@KRyYxS<{>l8*8h&+@^m0iu_ruWnA(h`y=WJW5oKIeo6|rpqJ^(HxGK1`BFv-ks z9&~ZGVb>a+A2c{-KA0aS&Q$T7FOFSv#BPxxT*Dy~tDlz^pdu==1oNqUeIVNjY$;i1 zX}70FyvEsXuzX;G&7e5`sR05#nhS3gx6x#2w{X>MK*6w=2J>x2lz$OGedcJrLO!VG z=>Mr_NF|I(-E8(t7NW1!@~A?n{$OJ5&9?m)2E`glIz<;jV2O_Qtg+*IEqfsKK#n$Y z2qxwFNJYD9kAmggaz0-;kQwKaIOVWBeF&^yf_I>~0@KY@T?z~vYgIyGeQR!lNUPgZ zdm3hseEHN(W_eF7Snyd^ks#?eZu&YHrc018!*&p1An`C&-)M)|Ys)xF1=s0pW?IleoPy!?U!$JjI6NqlMK+0zku?CCTuee}I#B zy+DCzNAM1aHiXBSH~11h{F)vNAiuf{>IFkxv~1 z#);W&LoS17JiK>waUWbqcJT{s*9JGiKo$}N4ABDvnt4sl$}5AxdXf#{N4D;8q)At0 zaF`z?ZVZQ?JaD7#L{+ad#`IGIbmN>71mne#FA8fTaV@GpV-O+e98%;PngsrFwI4ppu zDWj$NPq*QK0&rIpRO^6$`WbU+pe7vM zv3A?4r$k(IgClI&!$!QkY^1bMJXUlDi}tP|O$f4k-vWTuoEKsk|Je`D!SbWihjOte z3E{oRlJ?JQezXa_dm?oe)D+T6(!lKUs(8c$3ho>=ZG)5;Q0ap?t;RQ=q6@X6F_jBk zl6wKWOM-l#=oJgq5p&yu<7+qC0A?{$wLzgo`jD7sx=Dym=P_+ca`WLzMPTC!<>kD- zVLY9>lv1v$=^3x1b*O%P=IgTtk3cqD<|>s7!1(}`i+-Q-J~r~__rdFcbaxJ+puCviuvM5H`nq^bq z#_kemZNzT3F&O}}vJTc8+OxBPgk{cE&*W-G(DsM^01}q%)+=&D>(DVw^}JJPq`%|p z5KF7&!g$zp;yjZe_~2-gMb_WYZMe0U8?ilp zFj1y;ShSVCku%hT!~f+z0#DP0RxwNIUlFzMK~}Z#RYbsZ-xPhtx~KMye!eqM zJPt2&vvTj-67?cgKiC_|_tS0L z0iBp~)=Ui-rQK$L2$jFebud-gUDDo&SOEy;WbvO_UzS9lB?0Cj`8KG#R_?1dz%Oz! zt+#YE4r=(=JPQ&R@jrR7lcv<@-I#ZX1?Uy?w?`dOb+pMZ0!v`R-^y2uq|vL|8)nFf z0E~blJKt=j*9MsHH*V_La5J7g=~y1YZG?BxF}@fF0bmA_fq}}oL3J{Q84P09?>?aE zbn#(8SS5xR0!yg>=~B*qx)jwAo-=1S==a{DLCDn4cyNAM8%=M z-mFxeu7u4W^+fp+#YC4m^y5KGKCPGQcabdVA_o}>%8drh#ZMab_AnvkYIy?BHSlOM z448?9`1+y7v%;zoz^)Slc0)5p3i5G<2e-B;#;zCT*p;o<=zOL|%e^W7A(3ycjgRpa z23PE-dQ?0~$UEF7g-X`(t@`A!w z=~9faG;NqaE|m)qqX1EG%8+oNgQ?3OxY_R2nD>LP;9fn(>Ssd8$1irMpv}ab)z#A~ z24Tk}TqYkFUKM;tW7as;f@Lb9x5o3wX zxmLkDdXg#U^ftNiu5!<=<6NFqg7wA#nJ&A>FV6qbyIuhR9)0ek32CI|SQz^BhRj}w ztm@rhCBSi%p?rRJpt;h#f4GrxWOVGM(;hYKEBgBYJE(r?k8f0kU<$EbSw0};ggytx zwn33kbm8T;hi`}``5ksOk7ffW{R_580Ww8jb*_`c?!#JO7dZHwb_5vsa{NaDXWd) ztK)qCeaBt=o@h-E!Hg*Dt<%;%| zG7jKkh1u@GN}Pz#0JD0$^a=1W3|8`&T3MP&{y+MwQ0-;Z8nftQS2~ zoy2+#w|;f8J%&RkkY5qvxPNEZA8%?kj{wsq! za&-p(TQwuNN@lw`o*meW1qrq$FVyWIA2zQg(^kC$qR`fQ^xN;3LUeV`xk>+qXPC+^ z5pj-m(XycFg44D6Mq8f>z>M1hagHG2Jmxi23+4-gJf+QH& z&eQ^s0wysv_%B2kki&Y>hbc`*TFAu^B8ikVzvqP(xN~K-MuEQUfAex!;N{4n8ppuZ zp`+;4QC9(s2vRihGyC9$x9-hkqrrfNPQnrb55GXWoCgXZ@9JBas&I zg)^c37e49KpJg9+ar5-Pybg!oKIQ-1F)^k6{eK~~&HN99k;vqY-urD_bKUbY`6I6}_rDTuBW$n` zp;)3$+v;e})8Cpmd*Fpp_wM5Z@$bKT4?|g2-F@SMsNXopx5!_vq7bTo&C4FeW@rH1 z)7JFA+%o{^1bVbpWeOT_C_Mkhp>!wxJMQDllp^cN zQ)9`0L~cKmgj$#9YxCf;-p&C#2Z;S!cJYh8dCq&LN-U*QIv?*+Gh5C7syy_ES>XE# zV=Q8=fI!k1%=+9HUc26){*T<)PdNS(|LQM7LI4LJTV)M!ys2qrkCjT&S1hcnne7GV zx~_W8rdkHim%4OBJ%cN+)Ww*rwE27#fKpfhO=YmPy?N;FqU_R8Vu_mbo?>gRPkJh! zz5Wy3WeJsP`^+4blMhceHUVEsWDiO;k4g~KM%4(Jsh*sx# zg?uFurV7N2*A^a=D*4X5Gr8s&9>00qNotQ3jyBgtaQe5PK)&Olu-?=i2-eO$g7WDT z(m8+=J_uOm(;m%8(2mZo;~OC&H}w2l%k5R5i_K)LT%1ne!kOw@{OV>^m8CnumM zre#zS7rz(19-rx0Y2$ZmX}1(NBg7b z1MyE5h18_m&3Z`{Ffai@!U)hx)uJKN{~%xpaHt>>ax{0^Zj$@v*< z2d^!faddb}E;TMFj4|pkdFTwC&?V@ZxeZ*?W!U6^EX%1%pJ>PH_I*?yC?bPLvm`Bi zu&?zE;&>(SiRbGBH?n3}xyp3)mlCI<%n*lV%LB~6gYO?)d%!-T)G}!+PaVtOJ7l^m z(-tP3h_EC8#WT#_2I+UiL}l!?ot@lk$t_#hWgV)uNnW@LjC7`jIH8AL*v#h^5?^ST zx9~S9`@){c5aUL+-L4*3L|3WYwGzMnrP6y=G|irTBn=eb`EjR9dW?WFhyI!Igeu8n zCBiCOQ)>L4^l)I`2DoZpeNO(3)^>>pbGubn*g^U8_6r?UPze*JNGZSsc1dhrP-$&2 z2?nZuLCWF4YS5Qk_fyx-TdD}hRppN{R?!;W$y)1<+|9DlwJWT zo{+n3^Y#1}Lol)^Mah`ibTGfMNRmN%d}!%7&VyvqONPV}K728n+rHrdcfJ1mFwRRt zxs6)(mqmDWGCkZ=JLT0>l0+bYYjV43is`S)Q@`{F0~a8M%w+(d;{x|&UYsGiCQ1YuUhW(T;LF)9Mzz>BsX-FBUwc}Ar%tF@BB z5zw0=olcY4wTT+YJYjYykl+ge>Xr>2PfcVr%_^5(&~6!6RxBo=HEcI@O7owYeBji4 zS;VgD&^)o!E8auM()%DV{4sg7{;X)v^|KySZXrS03|s=xj(?s7wWyKpcHzv}{s?Sw*6*9i|^pu=@&p+*Rk7k>5yBO1dKGM>y%U6T7r9nhP4K zT4%jcbrKujSowU4TVS{*wczAH6jS!LC4rM$Vlu(zB!_hRIWDu@9B^jGrw(S{l2 zY3$6|YXkk})Gs&qHdim{;MGdt(I|`|c1u?Ajyc)7VF>gADdfl~;YM2CU{Y0Mo<-)t#F=M4^s0x`E>DaX zJ8vVFSe+J6;1taO2f{5aBteJPbh=kqh!2(&l#o(}t?dT*Xu-s*i_q{C^SbL>Lq_k( zghku*Ur5}YHgb4E!moIYPpg*kc6YT~HramkIRDuv@wDVRp7U3h%xb)gWpi!(%ms+s z;%&gX1o`%`&Y7kUPFYa`xAtUBCG0{t3E!wLym(F z-)wx%6Z3mit zmmjAZZZE!Ve|JQv@H%}2i%SP*a+7*rocihN&2Y&Ea}JoyBiZJ4i?ru+Sm z4^}9$6`}p$ID+!N^t$--+)|tcSSY<>%GA`OEJ*&l?ju}Gt!VU`Ta5vO z1z7QJOV~WLUQy2sQ#vQ;-bcpqI_VsW$I{*+I*(yvk@=t(gK)WDi92Byh^kt;F~m9H zGNcD?c}_AT4nbh{a#N=?*%s@PgJwfX9Wo+Ei=VQ(96w<84D(PJG z*o-GUfGU|pjUy~`bSEKNpBYPvPwM30TtdzLeY)wWUH98}4RfzfbdQU@$%h~krK9UT z{i0Pb14=@1CGjTeE(C5Z6Fjv}dxzxE-lXOolnsuO8tddvJfoK)=C*G!3K;8DjVxDP z$iWZRb$_WFSD|dScDlPHkB_a87d<#zkY#LjV6Vm3Wa!-IW6xMx5xbW&yyLI>Zf6fz zjw5{wMY3T+%7&ozT1CYsg>s(B_Y8Mb$F!8tcD#>}_R{U$j$GsQN`{WvI_5&%b~?P1 zV`+)UG?~pFNF_ERs1fNftMn$c84`XMA1=GSuy@V1&eg4{T08co&^KG|HHRC7=REc? zGBSlQw0rnHYt#MiE=K)o!|qOVb<&lNdtnDpl{*k8?ru?HnKZ2z`9TNHXUCF4PsJ#d zs^9%dX6sQNeBW{Uj_U@Wv9rSpIel$MjdAy{^88cE-<44&EC^=o2Ms(7;jvvUM|E#h zq@8UG3}@DqWzLor#=~-mqI8|E(wfz4T-j+%gvW3~GuBFA6F}`VQ{em*q0r2!fg05C zp&P=ErR>TUtCZ)1t<{wHVs!I(xJWmBZS)zT``NdfAjyOD>IG*D5$;~YskbhO;Tqo< zUcH=r15s{q^(O0RLwPq{%pIWrNn!YtM_?k1nC>5jnr!7rioFn(}}q^;BW zX+@=`i|cC3b^M|3TcG|2Z1@pz`GpY;32Ob!v?o)q=d*Ccb>4!9N%G@81lr?Ae0_4m zb(;ihm5usXi!IJ!?F2na_Z4rvb*W9J`IJCeW@~$}C~>epp3W3I+KStB>Ws^fMH0tr zC-~(oIsvh>z}$H7!nES-(2_#uDPJCx(^f5kU}Clney}l_PL{MxruaZdamx+7Y>Gj#2NzI+B5x1n4Uz!tRQ0esTm8)u%8O6;*|1`QUO~a{?YIAkB zKqbwx@8Myp=Ej5l0gS_&H68r?6}e@$4oBOdt(vaHhLVrsb4efG!$(X*6LfCMlJ%>t zn4S+iPtSl@6&Ro8eQn2qi24!bdwdM_2@|^wHXE+=_qa=J%JMCfSJaQ}&$ja20Y$>X zQ3B&FkO;mQGH9|Z*DLvVHg)_Dn~G+97YvoL=$dd&TAneDBDgPsBT^-6HmLRq`gE@+ zPmPQIi}1Y+i3*?PY5`_ul*#_F+89_O;Q}O zrssqkAE?ZdkKedB+Jr*bnX=!Q4t2@Nz_TR=vLO(quVdA^*_CS_9=Q&OIerh)Dz@8j z;f$x}hi2>?`x7cmB>KcOlNE-xhsz`i-P9#C9-PlbIGOF#7&fT-s1*fNIyw+`%(A68<$U9fDYxKVxh-lLnXbIs4~bz2JZ zwcz_93Rw!a%R@>|byf6LK?iYi(;Jh>AnCL1>hA|t`I>nG|v#zQNpKYAmN&9We<6vVndrLC}#S!RZ)91hO-dDb$4F)r-8dN zdmFL>T|0u1yWpfGgkv?nCCy)a`+qL2roYa6PpD+!wZEX)-07P)n%)EXgNw`k#;hEz zWW2guwmNkN9WmZ_aG3Ix_;O?fi=A*8^VinUWE0=t^vmkqvfX$>)2j7Z)0LB~ldR${ z=QGm*xi~Im=dqe6ssZd~BMd^X)aN1^{OH3(WEA>tbw~Bf#|~D!QM0f(^y)Txxb>x? zxA6VLvMnVl}{cJgq}e@_c63-9JDCaIQd_?l;Z zxG7uV@|Is&@QE1(J>HaW{~chgPQ3WNro?PBM*4C;@th4!KaR22!EB?GuH22cfX-u( zvIIQyvDo~&M?YI)VrSkfrWAV0F4&64tl?!;?61phzCog%sg%3Cr7B6kU`*SR!7x}0 zU3r6%v(;A{Tb1*u^$kY4rEc5eBC!s^adEM0Q)_$ClaljRf4gKUA_hcT)I1%37JVeX zTDgU{YRUSe@aG@8Qc2nPr9%c5fE5R+-`y=k%|pjyIIWbBQ>wCX?uH(X3{p#-c&@oX87#lLbmV)fYenta}f{A;&+9o32BO4RfX z{RLZ_14(@`Wv{u5GIVSBbVslme{+q%3kDFLRVjFLtgFF!rB5ePRRRBYa!7LEIR-*Gx2-3O$H9G+{jN{Rs~XM8dnX z3`cfhLd&&coSZsQL}hyx=`6{j4{@im`_VQp?536j)L1@d zqto@@=d@?H8gPO+cS8oV7}GaJS#)sz}6&c*m@GUq#se77jTg_yJ0n^c}DsIp1i$BJc!Dg53+xOS_ zU-I#yV4{daO4y3q2J#xoUNUdEG%9iehf8s8Z-Cdn1wg%~t`wP>0fc09qx)xmYZ+GB zXK8p17mj&W;Uw1EeTH}LMGM1rT$q(%gMzKXGaGo)`FyNF-#+W;g26KII^`orpM1N$ zHdK`@1ptHmC6cK3#QA~B#?Y?|w%&6LoLT(K1^+>Chg~-uNIn?d(*x{KUTrzhOSZ>q zG>{|ZzP2U;`od|n_Yy?YN)IFll#AEZrK%2A6-RmK3GG%!B5&PWW}Z|PmVwGypx#85 z3R!4pEcL~u%~A8|Ha^)W*?luny&XOg&IAzzIC#>8J?~}nwY7~AR5|Qr-7cNLh~sfT zMWUjKmRafnW!itzF21N2Je~{hg`QX40Yiv3?q^gfb$u$&uO_G_E+&u0gw?u$}hrgw-%ZxW@gB1-pK}z z_T1lFtw3XK9Lh+1f=+~4r%H-)V*^-4Hu5$(^$Y@?nO#B$^8uTplpGLm z#|je9S}Qb6*9@~~17fRnHq9M(9iDDxF{qU~m1Hn+t9*#@l*^6k4;kJLMY2ai2@Hw% z6hGsd(YMlMJtf8|8|i@5$dBK$OXdHwl3Gkf*gkH)KPQdY_D=9%`Bl%Y6NXkK_1 z8}+NIJ~pq+IW#a_Nf{{^=kL0Z&9{^gD9`YX)fx}vGCFG@GzF=lj!nNxS%Ko$heN0P+)hI*cSn3g?|-n?aP$!^(SOs%0y*x z{>Vg(LldM~8i0Wj3D(k@hK}=8SoPM{a3fw3hNu-exTC7#2PCiV0(dIqi6{m>+cYdq z@nODZO@fDQIr?FX?3=kXux`@>YU$RjP@bJhrI4`-WA+l0{uk@vNC8CF3TeIRt~kVR zHRLLpd%T$hD!kpefql#A`qJ?|?2}Fu4UZQ(WAOx25{*ub>|{S#R%Z-Fd@t$CTS>Y_ zuAHj|)@=_7^Xzk|$xcWq72#CIWsuKHI=y>@%puS!2$qQVc-uqb*w^w|Aw%YRvTvo; z36ssivZ;cI>}}&nC1OO7auvq7|9dz<+L3q@t--Km$|cFih}dQloB`LT5fn3Ho=lKM zOMbJp9TD*=OD2=*o)}>WLP~w)F{vjN%3T6MV9z3zX_E-3rQEog>M0Mco!)%ArYkR& zqMo|W%K#*Y5${ns<$RU+Rgp#0iI~h~a`BT(Xp=`Zn(HV%oK~GKZD%w+puk(Y^hl>o z;tr(v!;652&uxqdzlGQw7EN~<%xynz3#HG4;ByBY#0q>gPRda2Z)3Cl_IPh0vyib4 z`mn@G*?f(mXcjsL?nQ{5>xC~xMusHl$eEH{Y@u-WKT{Z0Pz~#fCVlZluTy+Cgr~|5 z9;(!l8}Uj;?sg-zpf4Bp06&3QGtr|$y(u~!eRf+Y@A2x$n7Ri8g|dju{_60IsT=-Z z3|PJA&$zP{p18N~S;cLs^E;UXUCEqhacKggY|=$|jyS7DdQj#_p8I?bctrZct1&#i!4l~h3=^muo(F{tZmTIw4zM;B>EFndf_%h41fun zWtM~W38otfu)c$bukx>@Z#F6XE2s5b%=Y8>x9ya@^<;*=WaacnIeB8r=}z*Fvz=9WHXh$s>u z0pA8gF~21yk&WTua`|qb861)LKxtni3_Pk5XNG}1k;ZMz) z2C^!Kqx9@d&ls&kde z+i4kIm{ZWSt`$_MKU1D#Lr=@1PQbSisPQ&79)`m@b7(_oEQAM(>K0I$^Ev9`n!c)gVG0{B7qfb5-9m5C z-xgnHVy`bK#`nT{*A{wU&?Q_H43#WtJ1rQ}Yi9Oz16Csjl+BHO_na&PlRBLUniXQe=t=4frB#8wBS&7vB zwJ}}yX58G7p1l?Jx#P=da ztVCHRdRIc0xn}{*lCo`G4QXgo#wdl-o2_B9k$nhbf{5U=rle;j2~nclsA%Gp-Vq7? zCUkQrJDdJGIPUXjf%97SSS}kA`Zb9K<4G%VXk5|&Q*UP)usKWi3Hv?Y+)RI^XRu(v z=;e2ix}J)$ko!f86qiUDR9Y>NRIr&aK{~A3k3OU|zK5$B9+qabMNv!VeXykn_dh^S z>i;OKlc!3ltZ3Sol4^2dW(G^*ZoczZo5+p#1NEH}VGFj}xe(4=`^yFY@!IxfSE#S6 zapXN5_z+1ucue2>GM^aq&NH$;4_85!a;mO*-t@U62|nfmgEa>dr{ovvBm$EUzEob< zQse~XD)#S#e0p1^g}pRGz3JTm{D+;ZIhcimt(>p=LKhsK#OI9ieFoHyIR2;|C$|+q zA1xVynG=V$v9jGXX`r>3L|Hb$XLo)>F?*d-I$2dw^bXong(@H|$kA{9{dwmCU1)pQ zhjtd%=>kOc5t<>u=dsL#!LtvHh7~K>C@!d1+j~2m-AMIk4HkYGN~eUKYbxqxJElor zqNgcD1ecRP<5-k@ejKmg2ywgnp?1j)4c=p) z`mK-l*SXeij@MnhUGBFF)vD;Hr$CTnpa)>%;C97u(ob5o1dO6tMff5GkOd^$%LeC-MvAef43qQ11*JDRSzJ{SccRBEIvj{_Q7)3b;tLyDLc`sMuG>4rB8tTH_@>FlI?qh=O^V_6v)y^wMkbXK zF!RcLW~sccpULsVoK6q#Rj8gj!3={erj^&&oWBx%G8^k+Ut`rJB6;SyJ%6SFGv4n9 zQd~%B6MSd0iqmXW4}v4XGOX6qIra-3+2@3W!NL*F*<%}O*WvVnRBW_@VzulyPG{-P zsEYklb%99CU@q%v@iS;<_gVW2{W~Rv;Nld|qdyDl;pPp8xO*eoGH`w}WDx)9{OsIM zE`U>KpC`Yln_QyIde{5kcOEG?CIs@*Wb!KaT1rUV9j|ayRAPeD4^hS z;t8E=13~no*QHO+J7c+%R7df4>n>6i^?~2FXs^hd4YudXaTXh9>gH4?mvKz3RKj+s zoVS|rLRjA1@^zfY#DRdy#F>x+Ji5kDm&5Yh-J}Q2#}bH!ttglEUAn}gv(dp&3pi59 zsS0pM8DzV={mj9o)H%BJH`Hv{M0~nvLJb(r4IOCL6GM{r3YV~1b*bDLRfW(Nx-fCH zcJLYJO*Oofx|VvJ&DbW#2r*PAYps->Ty?@1w9Sa)nkRjw<4zgtG#?!E^_g|8r5!EY zLvdeQg&X2E5ne=}HIKGJ;w&#d3m+A+nF6>4)+II?D`y%!DyE$CiqDWxi}7!sMTzD| zBK2r;8WpTM?e8z|@gHOH=d*sRB+%t1vt~O$6w;@G@-;r-ZAAhi-O8pMevi!JXj^fa z{WT3|e-_h-ZJBI?$Jj&^{f%1tEqGE{o+5pdi9=xqX`d6U*jb)mlhVHIqj+^jzqa(dxM?!LCP9hz;#y(C3ED(AVs9zP&5 zYou`9j0K?Oc@f3dtsLul{ja6DchWyodn3cciAjib``Ov3zZdWR2z5-vFHb4=?t8c@ zx*z|occIzjhWjzFZH2L@D!6F$0BM8aG*OP)6wn=>lG?7+eU9X*BXBugr2rJTjm8T2 zfV5=cc6P%OHKoPrA#Ga>=)qiDBt>F>!QDS&2F$l_`!6#@UI~UOM&DS zU=TtD8$Eptd{`5~slAoKq_fgkMm4%TtiRq8`1Q*lDa>uF?>aMyZ&xeMZV8GJ9uL%~ z3jHUP`%|Xf34G;E@(BgSa&LY8vljp9c?zVi^LC+Ng*=z(;o5-4JpJq8{>WXu?Eu~f zGpkAH^6Rnu@{()FIr2ZA4~iwG5K`RfNT`qgo7|V;<#({5U=jFN_e?F#el% z{CuH@S2cuj%>Vr@O<8CR_4Pe{-~%w@*_^)=E&lVMnAAWy%wS9@gC?`2{^8$0!Vke3 zp!=bjw{y#K_XfVg{+ez6`Dg-|RZz}aa-^}=DRw#qUFxT!`C*g1Y zD8Z$;JdMTzia1yD@+%>KYjfvEZqfxKY84PC^TSzZiZ*eh^aW<^zOsCc8u%L*|C0ye z%$on-boPJ$>d)>Aimgr5RpqOxyANCy?XTsm z|47E`+)Lj_PD6WaVf_E+I7R+fbp!;}dth_`rukbbeSKB5wH5w%XX%>Ns!`{{C@xkj zC<1(=_TPP@XUvzSU|h8SU6uY%4aWbaf=BYepv4oVosi#JpLbVz_t{eNe`n3M)Bn&T z`^{UqWs%n({LcDaYP!r?6B$irzrEvZM8rd&2+LdJbOa}OmLUxcgu)!To8$N*>Vf#) zU?(hBAr%TLEMrbt;UVF5kjPdN?O}&)%lH%YTbufZ{>n57X#YT7tSYR?pa)f+1w_A* zWzw1}-S9mca)Zx0p8+#04cj52cS*qj>1=o0xhS_rwGRH?61PB{=7md5rl;~j;J%ur zw%CKIP2)^fj9q}Nu;TOZq?BxB7k@e~ki!bOleE4L~U7C2KbmE7vUG~7(1Sn7j5 zOtl0`8_FoJ8n6Ybtryp-vCu*WDuf?=uuG`(*JEdM*-Vd#xLi(ks*gtSlSR=}b5!bj zI+Lsxn7?N!8ZUjHPR4%l0O-68BgYGOP)I2_n#!KoJ6Pux=pME0nQ%s-0dfEe)%IA+ zeV-TsPusA_6T+@muWh4)y*5%3E)@gpq&?px4rNk*KL#mF0dkYH*_ru)7l&@R?#!vl zqSD{{vj;OJBH;@CpYHc(s>`d3;`6|^KRE1>q*VJKaOqg^w*^y&cRTUL>SPQ z;?o6Ph(c*J!&FPHL1waPvDFT{sS924#`^gFb%!%(ckU1wvvuuu*iSyHbULC_%#aBH zinOfi43p*)_ZcOn@5BRbF>>BBBAL2q%58DHqY#zJRjJ1h{`#rj;{3GIvM=uAfO0o$ zztaBBAOc<=kSh;TN12}SWL^qvudy$7tNGKlfypL}>QlO;n+SJw$lw%>aq~Gh9VK7_8aA!Za4|#KMcqZ>zN`3m2 zp8*YBwq857IX>OF=>FJnqASBHnzzx{%jvq$cDCVa*gEDsS|#nOT4-IN#t!X=VtLSK znt2Mw)DIUe7#_A*TFyw+M zWCqQ6=L+*{+sNPh#dqgI%H~eQ9ysehlBqqqV0IXsEYL#pf2hkbI96fhgE@`1rOvE>~gC#c%V{OU1(EKmgu04lF?o6q^d;p)v3h1b~iLUCfV!(Vnn4=SCmxs#YWwQQfx;@^C=Q_>m%AO z2BjR-Sbo=!alDQ%`m?!vGO*lIBMSwSsTg&K6kz$)(2T>aS$-N}kKJNe^7KfE?#N&+ zzj^v+;TNqcOiVV0K-puY3CaV6Wl?pH)B;>F$$BPT>nOTB^Ibc0FlS&RVjIUJrYwJR zXs_3PsP&~BoMAK{{YDN10Q`-abyHY|RVq2oO86;F1s@%2_j0IoJYO>D&S*Awxy@`L z*SySl>Dnmmyzbrp9FJ^6lZPm`)!UoxYe|=5%mA`tfXDNyPvLDOSwd)E0wTEX zBCR93R0cym<}q-WuN-$Qh)NjSRR`wAcw9~3Qb*dDNmZO7o=!Obs?U~3Z18_ z?L0;w(^>o&9*uTcHS${SGbVS7(@HGTQS4OC*N}bQ2)z@@6&w?j)w}pnxNm$#U2_~0 z>2HuU-s@+!Fpx9yFt>@FXDaN@$kLJT!#&1}*ndmdZjxyaG9)o|#^;%mzdbZgjo&onhIz}@#Z z_yyP-pAlhv14fcj(?Jv%Y+I+0x(lEPiuTbBHJ3Knmh>hXB0Z)8+LISswKSg#`I7UY zS}JcU)6U0dM1WbNHbsHFczIP#x%Bl!nK?gD5mxk=A9C9W)$EGFVvN6c*-0d*n9U^@ z_ARns80a3uM^{_+1t+y$c9Ya9AH~gOz8B_%k+!kVw71IFeK)U*O+7gvm6`t*nen#V z%-HZrzFNbmeJne_-@eyCe}l(+3X2+n>kN`)RZCViRla5=U&?$zp;r*@kG?FlS8ztKuM%Vq-Aw2{AF0{S8{Po`} zfJ7V*=X-d3OHDxgpMuRl{aB!N75qvJ5C8-k&Q$)y3+Xl3oVGb~kyOY>-GiF0jFVOz zh2GhOmiEn(l-tZRz1oYtt zo69fGPWC?b(^VLOq=^boPL?K(AeM2;6>=hXFffuT_Xr-wGJDPskw4mL7dPtSvv%z3P3@^A?_&2)|ItvZ;riQ#S~k0h zzc$o{{-U84j<6kUYiw34v&GSE3z3ZsO;HAYZyD?q9AbHc-aPAnWHnl;i?p}G|1ye} z8)2iIuSWI7<|cwcm-O_7VUej>T*biX{Co}e=Z?}fE?^r?Rfup_z7um-+|v#kuPmn1 z=O}9EaDKFNQarHkOI|@S(0Bd3C`x6?IZUQWcA|iODT)^X>F9)IUK>SC%d9mkRyZv{ zJ%mQPd(3_WUA3^T=P#qO!KzVG@q84*ZE0(1gL$Jg z>-rb=IHVQJy0OUboPOV;iBTk z@iGR>pG4{M$4&3c{M2Pn4tJFfD%gemfQt#~ub}HkKC0g1G7jx$Re2)=w9wBc^{74A zV=dpFooiR_JGiXXZB9@QvmUR=)Y@sjqo6V4cA{kYbkQXs~|u*P3!W? zUe>GZDE@z}y>(cWUDx+-AR!0}BHauf(hbrMAq~<7oze{=77fGD-90Ehq(~3l4N5oC z4etq;Uf1pQ;``jcK&q$Nte}e_dC}A^&RH6-z==IAM76 zaC>3d^YHXD6^cQ*JP{Pi7<>4_wFbdJjLfW-^ENcTuze@oCpuT1DHNAiK2p=Q;0|Yu zc5|pnM6Ho&e=nTr z0tNx};V7CJ!avr3vZxj>W?nFZ=6l(y1SdOrIEZ8XYXf$t{27WVbMlEQZsEX(Y<{n9 z|FocMH@KNDHt2{}LLUh6{qZ8F#H21A^<;hdqGhZy(ZWl}a~w5Cuj5Dc zuJxdZ;|aCH(z5v8-mS*2baI(6nv(Gj`AwHnJnxp~;Pbl!s%?HUu=g?_WqLIZRA$J4*=<*ZqfD9o6!*1WB_D5Wruj;oDTp zJS(({*D7p;$H&Ky&zDVgD#e!SwiI`i6pCAsbTT&_o*eSG%WIcfr2?%ovH6(Uc_PME zSqG$vtX<(t*;w7FQajaRGW*U2>25ut%?!sP&|0EAv zyM)D8EE#JXZI1qsZ6m)YRtct8$+(OARX7Z|P{V=w{5#l%i)7mkV6C@Yw(k=i`@wW8 zrGVHrtPYI1MBn$B>R8f$LQXa7l}*Xk^LMvX=88;QEUooF-u6{TBzhPTe{x9#@F4WF zqc$`f%vQse&!$BYTmA6mnf3S{+bWwrqvh_;xx{u+HjRa-K>S6nHRzhN&F>U|jtP*X zT6d`Qc%5QcbgHPwoZG@1@c_QH5EAE+EVgsHKSf_OXD%iRHk7nF>|kz(du$$}<4KU4 zy)FF6+rGG}GekGrvf(1EfI};v@g)gtJ6;oy5=h7=7X%>b;zbMXVJ|T)ZDlPihm}|A z7`ZG~bJTS(evq+>>2?6{#$n1GJ}K*o$A{ZQTKCR>yrgj0#%ab<0zy7R=OUBM-sKZ> zjn1}X$xBZ;n?zS8z2I9AUXc0pbIKN}{Qlv>@}{Lt5)U1pm3s&(inOnr`NILnoKQM~ zsjk%KgEq$zmfe-^kh)XsahlJ&@EA&sSF?`1^jh* zcz-)Nmnzkys(=D%>@O^qam({P1`!pb=mo2dq)~+&i|n=)OfLjxTHNVm{whxkqiIzG-MrbPJST&h z;XmiXV>zgW4V^d#6W;ecyhA4A@hJy>uotDr9$ngV}x0M4r6nW8iUF~$}QV=<|sb=7Jz=| zw5(*ti#aT`>X2bz2>RYrN@Y1#Lp4b_QfP=fFpC^2>tPIMN(Q!z;5ZJa8VrFLbM#Ju zhj>s`2Ggyrcgg+|Zr0+ww%uPmQ?PaL5-fKPqtImlH8?-_=D>)RExf-dSof|0GC<3j zq8WVnf@QX4Y>rX!>771?a4No6;f!5a%T`lrinjaf)rGEUuH+rBbM=DA1Y}gt+LNNq z1;l}v3^qDk4rbIHpoa5PYJi#4a(Hhk>;!8>cdPQ#uh_kl(Vs$Nch9y+6w%jP9%%Ci zR9>Io7aM1}5q^q-5tfWd_s65lZPUPfs$Q@}>EjJBvG~j?ldB^|iLSc@)Qt7-S)%AY zCq2@cWOjBJKjZWR046|{L0ymRBUkLcd{zpJn7wEm;WVwlnLAqOie-5-e<+XFC#96` zc<|9iYOS$^ar6BBGSdx!dWh#Xn~GOdwB3Z@PA_z-GHAd!1Bp0v&c^3GNQK?y)MsWl z&3dL|b7!{FoIK$7YW|}Zb@B4xEz-~2zE?jGqKWYcvfTRJzx@i)xGzJr+dzm0$z=sD zxO!9_5W|(L^4!f$$@f(dp|i>xNEP;n9svFL|AM}z`03~!%5KO;<|hFNV_$Op2Q@N7 zL#sgDYS#fIZEF;T1hKR0I8ga4AV^ZJddfEH^^N>=tId?}T=y0T&UKg<{r(v>S(d`o zbxMp9InuCP1>17=?7n7v=&W6>{SrI#Q+z1_3G>ai$O3%bpkAp7lZ?Qs9vmn!2g~b0 zKj1!K={ppeS_3$^$~jcFpr+_PS|$FTdBJ2LFT}?7+5Y=iNkq)9IU6UXqTwXwZF^JO^KyY@m7bLStpn^s`I>~R(AGvS>|7eS>2?>V#lceo z49n593N2*OEi^PQlia8ym9P_Zq-tQugV1#@QD-i4bb{1?LPH3tkke# za(5u?%kMRw*I#HUe^$nnlz<4T=T8w-Df2}HrH%kV7h()1)$+GhNU+;3ug>EhoX>Bq<3}U#0sm{8x_}zn&Izr9En$af>8Fc7Y1;BF%W`2De z!=_mPcYoYq83*ihthoxE@j`0I1URGQ*??nco^ab!isvtB*e|nrt!av0W9x!HhcI01 z-W}3ckN|1ojl6gD&g#vIPY^uRR)ywSa~C^rP8%+hi$TT_Zb2scx@oU;R-D&_4~`9O zTQEj~Dqo^ttx+nA#mE!#B%PhQ_Zu>MnJHAAbLHaUXvC}0q<;lzSdHH;p-k9(f9I=x zzq5a`!em#~;d9QH^MZzv5A@+{Wx!$4mQSO6Rwj~Ys2~kUg%et)t`=C6S=(Bgq3SK` zPMLggzWGl@?V@e$8_r#zN(WSLizm;JtXy<%Tv=dw%?xDB@8;}&{-0@4TL)p7aJJmN z@90ahf-WX!Uln77#_kT=JFZPqH4}fy)h-J%q0-i`*%+LN1@!l6 z>mz_;DV5a_2@oA^xyNdZ2)XS4NV|28LySw`B3&gxJbp{(`3MXr)^v>g#!> zNt&ah&$mFb;Y?tW`7({JSP_3huAH7^ap{(^X2s{-ckc_ate185?^+m!0D0Z49?!yo z-KZY%Z1oN^w5`<%x7V(Fq;%R`tWhF9g}#2lX!5RuBF;ZhU0n9Vy*obsaDlQ*-iDhS z3YP^Z2)0fwz7qcsoZJzcYTEr}ve1x=b@stPs?;$y3g=kKU+`xcpin>7U+Teg598cN z?9I)ri*SM6?q>Se7eCWhI`8WHJ&x`q-$cRe8)mD|G78LD&QMz6@qKx$6pp}caXNWS z@X?*>thQ%()4T9RrpA6}e?>`bg)r8OmoKxQ&qNd+8P4XQ0(F$w9^1K&RO#TQGanR$ z_HKBt(cU^o6oZ<5(vx^WI=c)xGdgw?v5#5EReq!8WocHr0wLcw7$M%%7g^n>_9Mz? z@C5C31t4_*e)gZuikAj>?-!rf)&(%0zT>Oq82?J_{)}42fJ!~NYOaB$XsZk^qhh1X zz~boc%4pk1p7|t$47q4Y#a{XR1bk}{o4Bb^M;pzP7&#e$^4td~Pf0_BDwIcGC&{w@ zh|8>PrAa;}H(7l0eXjahm0`UAy37_^N@`hHrL-GqOgz-Q!ePa!M{kH;uhPuymL`mCBg4fK?d zNyr|HUsQqMuu^7T6zoGS_*Y5|M<&`EZ5e$4PxB~Wi(AFm?wu?q#g=NJ1ltiHF=et* zb81UQ{GOP{5h?xgJ-n}Tdt40Z1S7)t1KSX$!K$?Qy$ zk1cDts|#dD7UMO9@{>%`}+3Tu8y;QBga`=^>W+ji#0ZN70o<1}{A|P9*lv*d~5d8yap+o<%faALI zf=%wYaJ3sm+fKt_5~w=246!PX(sA&)Kh1t2sU&ap)})z4L#eB`oQH_wf8h94zTinN^!*(Aw8caZ@t9D#%vQ@<@(Qpi?2}cz;D)$3vwu z7+7sMDBVV#F;qj}&4G$h9H7ijk=yoJH-NYHEe+;}ba2@F9V8IkPp@-)Dz~!QaqdkX zrI{7k{Jc#_xCm83IfQ$n7ESKD7>~2N&F8tKRIHgfOf~x9CX3#5 z)y(sBotbAQ+#r$wgiIpGUbR39Mw&B;3?C=zO>`A`ol!LBI1KF1BL@YAw@f)fdr|;T z<9}>kVNuqBUUS5NK9IHk7-%a{&DAsG`8M<8@Kw63;q*2EdpViM;T#@<=@2o%$~W7h zMj=1uK$IW#CHA67P<;e@Fy?3%!fx`_fS<{|e1cbjc+@^yKho1|PRh}-HDC|s^#3~J zgFP|*{2=O{VKX~d@c=-qd>KNmyu^|*>l&~p#=#MHTAxh6$X7CJ$`2_`+QqJZz#{vY z)FA?8)L%Oqboiby3tEXv88DR@VNS!*TBQWnhw*sUf)o!1ZHTJdHOF zD}Y)deNL5!C;^AjCud?zfkHLg%31brCI{mk1y)O1yn@cBO?MEXLeeRo^ZRkd@X@5S z-qJXc72qS4fnrpkA@xk13eB3bi?;9Rlzx1vFF0Z zJxsN&edG_-II%mh#9`nrk>5`duepA)iXSo@UC$_`Jlf9b=6&^N&Ki2#BH5tQCwrv- zh0F)0j9J0W83pMtI*Pr$10D>bVA-MHVc1_eX!7izi9?82HYP48%$4W4(A66Vs(acc zlgE1f60srkd7Y3ndy0a!_%5pH%<2YnSLfXz|e) zG2XxSvY*lTvz5zFxxmiMo}I9v=IP*qFVZBL(}UyT0IzU{{{(&E%C`!e{rrdvP%dd! z+5=@~_FrkzU#Gedq{|9UtZN2RG6*Ik*QLm-90RP9b6?qa*3 zI#mC!lg>XG4d?UA(eA?hpRuWnxf^+m1j^r@Y|{KwrT;R>n0SnFIeUMC2LEQ;F2J^Z zu0MipQkUP2N8-OCEiVb$G>6I2Kf;y`7uz6V87_m28S@3RdgVNoT+l55E4)~r|Nmz= zasMk$@WQVCw>ZI*Y#O)IqY@_2Au>Q?Y_l}~VUC8YF0xiyO#d@|C!u&rMgA`kcmK;w zpuyH`Yme&~zqREbnBQwi(?GfgHE_%i^}n<0M6JKq zkd&r=^W`7Bs%fj)$a-yw3Zh`8*gJK8A04P=@;9uzC z&hsZXq~BfT0@PW4`c|O#fr8F-ZlCuF+3#EQ-|tGhsH3gCETH3?97+VVXPFdS8h#|J z=9%1ETY7ndi3Iebch{UA&n4VEX;zse^K?d$2E@{6Xx;-y=p+F1K@b>w2}mvppP$5& zU9kSUQJqfO>#kgSGZVzcyOf3`j#c0>ligv$Ln zY8*1rl<(m3i{I*~?!z60fIC6nup1&Cr^|*XIa+F8P$kbDPuBz-`v&vJ78lP8^Z{ur zvyrb{;KcKsffbXPCgv^Pni=VsiQ36%pcI-!z%k$3m#JX-BT0CtgU1C@?7vwfY7g{n zxT)ozsmoQ?o$X-$!a8mUPnq*PnqjXQss(qI zb3!La@uLyp|qtS?Ee_NxbApvRs+9mp>Athk&Wamh#V zzKZ~^cO7E>zpy|S7F7$=b8`tro7M71Kl`jet~z#%ukfvb^!BvzCMNu;8w=)K8#W4# zyiY8Vgo#Z<%ciY|@Dy;AYZHOnEu<~=(KMoe2RbWN#9c)`J_1OPsbt_}+8Q$3zElUL zlIFI{q*<7#+7;lkdVxx9o5gLm#_qpDV|ZPEjBXnjF5pE8ghuh=u4IT!U^+^~tG&J-otdsP6NW%P* zR!0Imcr5NFF45JW9oo%4;_!kA$|rJfirlin;S*x|eJ_Um>Kqa|#>g)Vb7p+b^#@n$ zUUeBD6xn4eGtCb=iKfHvBmZ z5y>h&<#isFZjLf5TXv_Qf&X#vT1tqH;t+3&Pf97H1a&bi+}5b#%Yw!__L7u{T`b_5)*bOSk> z@M;*)ts{(bntvgj;5G4QwWpSXnFnlUg7LPRvaJFrS2RD98J-Fll z6V8YEdL2}M5B_j2`ZEIE5=nEO9x504yrX>L!xHSQ=#BOV7kc;L)nD;vZw!DVe3~g8 zcUm7$X3}JDd(a~(X>KJTAg~7V+p8{+i0$^Umq!xfeGB0-S07>L)_78H*8vP}nCAmE zM(IG(+|t*3n|mo6HOCQgW&_Z0%s|JeFGQ2)mk=Ls8P9Yr@ko&hAe1aQS7yIiI{m2g za2s#2`#V)3p*Fzm&9TXMCGyB2N(yfkG^>>4s4W7j7LFFaC+*C!g4WCP`-WVP9~su)*>Gl zzv8E;c1Ou0uN*@{QqnRBk5wOG2*7%69*o<(X$>ohI8ToE)-o+d3NJeQd&5MAE)hRt zthR0?HJd=dDF!)dxyH>{1`urMeycI5*Xx33XBn8W=AatU!sPHPUPWa6Fhd=qr?p=j zy~DpfrpW-{z=mx{CG6T~UO^Y4Kmi2oiX(;T{fC0z)F*5Gaso1+BxJN}vMWg{d2h6a z)h^9u_o>PhznfRD2d)-V^~74h-mmsZz9BVc$G9XNESc4njZEO_Ncg~RENdZ~cxaqaBX<@N0dNdb z8RI!{-4E-VH@xrpNA{(CGwsjKq=j=?r>sNHHB@ni)a_RWEk_IKA-$RB$}B2kUY0^y zN<%Cp{kwo(3Ex2Wki;2AsVc~JJHmvJ-vWcn&QcD@Fhz`MX=zN@+_-smu0O}vPYyFc zERd4JJO*+~0HHk$21RoH8`{`5l@?av>vJQ~Vj1lL3tKx&961_OYRL4Ftas9ZUX8{v z{TIiI+)vXv!K0N6e^F9kS@Ei!6nY@aG;I?6lLuzx!)1@|R> zWOUg&B`Wd6iADyEd>Qge!N{|Hr6wSM!A(lK?O&_yncn!|H!AtBpl}1&!7g>cwwk?@ zX5DJ&ZFv9S7^^HV1J&lz!KB&ZB@RgeO_8dbK*y7W;+|m|b-rq+`D7m3?)qH1RhQ2NsoxShQ|z_TWj0s! zQ`9qXaE3>Q@r6~{M0&15)!e9ze+K%-lo$C;hd@I9zAx9S=U%`hTGT-DnGJx7A^`PM zW);#TOaLMc`6~yUgpsOSXYf%1}{Jn=Pb12i7q$bL$3f=B^Usbjk3%<6x0d z7mwMk&Y`wCD@@Fo_lWpq&XoJ~%2Ae?9pQ{boMseX6X;Fnwj`&G&9q&P&Hy7Ix!_MkvEJ_|qPVHUtEjE<_O(k4kCRpvxs~!B1XgzPltVX0-p}94YT(YorG- zid<-^ROdF zr8Dj%t}=Vm2V7;AUHI~j1DX31LDQ~_x@BR^9MEDTQJ!g96_RHA`fCbe1~DgV@a$ps z5Ms>iW)Pz0AlwHcEF_2{NTa_3G?vg$EF@}=2RkNuxE_BTtQ9IQVhWN4s$qDlb2Ep> zfmAT^Xhk61_Qb^vc4Ex022%}vApI6G;uNowE<=TRaAIYpq&M0H_K<$-^-?bz-IJoD&&7r^?u3sR>4%qgcJ7+BA$&6! z0|{0X%!e#h8436+Im2>KhLY0uc!7@oq->S z(AHpV?k&PHB$`u0lTp8mtK3mCIsckQ1DgdP_fg}UJg_$RbUr%(ajqG@X10kbA$0b3 z#6M)`79x3$u}o#5bomYuFAho^o9J(uFEXIfZCexx)My=KN?SZR_;>qd$8OD=Yu8xd zUTT#?k0{~coC=Gode?3=^P($JmpYc>UzSY ztpg^%70~SzbovkEcn@P4Jl7V9Ly>&F*twM*UZv8!N14{IQj8Ro?0FLzrz~!s-o8#J zN3S|3FD(jcKBr!jA=*megQ8esre=t5j_6-1HdwNSZvetIKn0V^5EtI5DsF*?@fr;$#)Y=vIYtq)%fqjX}Qc zU>{M*fqKX|a%^q^Ls&W>np{e=S|db5j9eNQBxMr2~) z0@|bow%?#WneOWV<+>%&;eN<^{FsT(bpDm?gEC9&{_=2)U6>vLOD>Z3Z5f7eS)kX; zuhz+j4v+`5CF8L^eX=Hb>`=o>f{4T&2%E_{*WzdSx9I1ksRE*(7kSOyy~@hdPsV@R z?a3~8dt-xNx}QBI=0hJDQEa1L4X&1d>H^?M0H*v2M?QOZd(QBdxZAOq>f>VLLG{cT zkF!W1#8;_RoN#@QaH?X3O+Ov@TxgQ7^|9vsOduis2_`P_5>P7M^7v%ZnqNF}Hn(HS zg*u#@S!Qxm)lksQ!zo%^J!4n)?6(TD7DNg?c{K~M}*ROuRi!)e|X;+emaxwA>gDb3TeJ*IS;2#O?CSC>9fsZU+)<%Eo)b2{}Crn1Ru&?_WV?fJD6x_B|FYHgnG=`uwi#g*Mq_bmPXcqxR^cSwIv;tM1|C z?H5g9v|cJ7o+K3N7MqsH=p|0TJNAHPLPJ?ASaECL2UMA@DUptG!K`O>C!9`u_eXAP z1I%#k`pgtEaIx`TIv{jJq~=?EA3E!1{q0+5@yli_f}niO)R=>~gpcYI?_Y_O*)MSK z0r#thCf@oN#YQIem-_>D-}>=%UWPyHzGtbIyRY~~m%-*tGo{4+M?l%WIPwMOJWxPJ z5zmmL)vvvlYIyQq`v{;K6E1{(vRL3cXZipTMY(A*7FudKMX{fL3Srh(@8Nd53-5Qz z5Rtf5Aofny1TU84LU#VU|AUVVy5L%MOGRa(_nboWK+kULgE1p4CL^=`B07s2RCo2z z+_SS|O9tK2H^jAFNwbGVnF9!y!`t`OeF|je9%BO6J#729@)1K%fE%A2_%3`-9nyi@ z$6NthLw*={ma6P*m(zUS;a1g!REYKy#!JhH*AvHaMIZug|I*(Rq6g+ z$w0rX%^KdS9}+j{-n>Ea!{_pquKM98^>T|7-!+1SPklvz=+moA?Pbo}dM(3+H)h+N7!S40t8+u;`VMZYK1i;v{S$$n>?2HRwT2f;#&o!RPtyzH#f@p802pSO! z6MoU^5**OV@^VLOW}MNa`-&xpUDN%(vW>EdQxF(x5yTb)p*!@82Osn+)jFWHLZb4t zOC`Xj1vxNo4SkRN=<~&y(Fqowsi8QRc{+~O*}m}&OPHoueHb12>uWbqfBtynk4Ei_ z74ae^twFTSA}LvK^13E=-PBXpv7w}ZfBxG)ufDuz457ZeEF#H9BSX69pW5-}7VEp< z&-;^ZF>A-WMI16u(83lum6Z8~_Q%m3mnM(f?Ye5e8IfTq6u-MyufV+!EHtE+uaJ_4 zLGG(pv@mW>>b8oujmRx{zdwy!##$Ix+HQ8ZRwL5Q5KCvDhBoQ*34!anyKE{I#M?;i zqApTrGuSS$w$*rZ;wgYNwUy8NcZs}o-CqxP5#690<86e}X{xA%ZMGlARX1loCHDq$ zs2wyd@$uWscmYCV7zBm2D`Cvn6(MkBjPd5x;y$bnW**&@BTO=z_lGMhUL3)Kf@3s_ zP95b8CB`~*b#((X zFb*tX-Y&UB*W6gHUXk5R+A|AJryg9ExWHL{f4NcM%#!l8SJS#=k_m`{>&BpFd0_ zy{R`vu`kTJF_)TzM$c=Q_d}pjP zq5ySwUO(mTVK{FOb`>Sq_Xo+gYnTs4340usH-tG&okr^B?1*jW#KUDvUwSzN02gPq zu}25Ql&)9?UyV?l$4Rl+`ARGk5;V9SLEVe z1@diutk-opisx8ejhoRq4Cu*>R(T>!|56I<6*n&fC3c(SV?pcJ?XR)lIAmrfj2B{u zJ>lnalmct2Pk4!tb$n-Xw0MWtJ@=Wlde*&Y!f~prJXtc4m77XBKAg=zh1$NAuSXNb zA=^qsX)8iIGiu4HlM^q_D=2=%q4t%9d=B)sJQO-L=Yz?|Fr(GW()zp-V_e&>NdXE) zqdPG$2FDO{?7i6Tl`SCjYLb*UaNmn=uAc?-JZ*2wQOoVnJI1i_b%Z1>SQj$w0zQ!Y z)S`E+pPuJ~{792EOaiQ#;?~f@G0r|`96)Ls#J~0F$7s*jv{)-1j`f-$9ox;PMN>82 z(R+N~8$wy`ZFnCWMFG9>CMB^gGYkUS-^H=Ic-&TNa^cfkQ-;){X3}6OA(w+C*C+>o zB;Llco7t_KD$R>0>$arUE!T4@Wo!|fFZyIDH*DR4u>m|W#Hi(NB`sBK%4#~!ze zmsjPAZGTU5jB%pdWH{EamwwUt*>SWF7GYlI!nnTEX`o|7@rrKZTG@tilfGTLsWlEs zm%zr2?JdTFila7`>Xx`yCpK2}uQaiBxR)4PeJ3g`&0&@6O+Stn66_-Q4!%(YdJek# zLTs&VgDc|sx9<0)%i?i(el7Xl9vMSCip?Q2X}@jxTx{OyXpgJ@L!yCk*jO6~-UO0t z8fdMi1w)~rA)*=g(X3F!*P2H+AaBc>^-y9kN%-+K^(s?RQtIM~Pur%VfNfw(@YVT5 zhH>!vytVb&1oQq_i8-EKSNl{Y(u~7OO=)W@UM!xTGhq6yz=g;40ld3%WlW{iU9B6j z?K%6$*?ZP?(4}>)7&`i*&~-ub$Lp~+Lk8Ou8#@kbh5beC*mSWpGRuWy#_=vW1n$rH zuW!FWXSL&y)8pC9d8J;@wxDZ};CiIVVO)Abf)Gy4t$ghP|B=$xfukU3+LT~?{($&? z`!emm`;wtXtcc*A^l{m&#-4RE+USGYEh5H@3rg` zmDc7Nay6~?>*K8@X13-!*r_x{XFIh{>^QVK&qvFwHv*$r5N;2+5rMeJeHHP?A!wLhvT!YeY#?^ zB{(on-3lvQ&ohT64NWc2!S?Ko>Jq5@%FJXRvX6@QZzjtULM{B%&liG?Vz{*S;2huf zmlOUEUkj`TEp>7*d4Fx#3t1>J?=!s0ymeAd9K)RvYNbNEg?x*Y+0gF+L8J2%I&?yc1#r4z+QxwSq{rHu0C44?U#ss#QQRvpziUX|}xajca}}6_Y1bf$W}J zo!ff#6wUFZ#S>D;s>2Sn<_ZGRVE%dM?ak)IiZhWZ2fXdtjgvOeS8%*YYMOnNLzl<= z5s{UR2WZ56sdvuGca`L5-%b|AJSEM(`~3x(F6Cyr@q0_98sp^~~yH4Oz$JF*ySQrA}zvUG!(g-jLgS_~ZN z2xB*Zw`A9c9rS|E5u4D~u&;BCyTp6H0?rF#>^`~yp7u$PqSMsVdy-84~ywbsT zT*jLE@L_C_SIx?!?Sgmc9UYGEzcwcxq{_;TBWU6Rggu}xtDCf6XX|fI3#!6w9?q4I8zfNOupPst4<~qVzO`y+H7~p71$61npL|{z zeVb$jV`wchl6}?x85C_keqi1arXWP3r?UE<)b(S0$vQDrn_63hW!z%#n3soxx64Aj zlf%JqHML?ZWTCLtc45D>rmGX_AVPrDZhge4Kf8X&ZOKxTJ6pQIx{_^fE*0y+s4*IZ zjA(^8K`xp6M(PuRvCgU^EgvNQbE60*O*2e<_j1{Y*yAruL)2iO$YJ0+9(Fm6f2JO3 z-TL|gLumBzo0&AC=40_FJiMw^qc3jT`DGJ%K`5&tElkC=WspZpv@(cxuNe#F)b>TX zSSCB>BA!VhyHeTvZcB}{mXvlOOmszRlP*I{PUo&{@V!HBQL9+X3bXJ~gAxGsg@gRk zZNDBcw!>~ZVUEq*PINztJ{4f=Y2h*md&>z%B@uFcJ7Vk4%>Ja6`;2Ovj3ZK4xKqb& zH{ED|0@)}oRhE5a3qcS#Sy!NdPfF-EK+w2|zvaefc{IVIY5Pt-D{ReeYR$Y!3vc9j zEWb?tvxo7K+8yB5H#s(s;|#AZBKuFcBS1`Ax3kl;z#a9D!z#ceo(22;`AaVj$M)z9g~Z9{B)9%EP^F7|1UYy{Pa{KkJeAW+HP13xK zR?)2%eIaMnQf&hR14cd5jgAk>)@huBOoDf8S}0KnaAWi`$!8dSEwEqTGxoa0g|+LdG>DUEalpGEP+kiNW?f-LgT8i4ya{ zIioN^b7v~P+l=aYuZm*8?4~L_Y)6|4wzRIT!-<|J8v*;qBZYJ8$*e}KZL(P zbEh4A3oj(Sl96#NI&jr?f25S*cwa0MeeYPVV#$$XX5FnLzR#)%Ts^fL8xXf$qPq-# z*=%jl-%Rp2Wp}~DVdh00-TUlhA@b~|yy+9!yjO}=d-u>CP3N5}kV47(?6 zGbYv2_mrq?DT74rgFLrs(0AxDa~sw!XFno9zxBEMvKj)w+BC z=?d=4{EWq-l?oLTdw3qd`i*4}6 z47$nIpdw3jF?8@`A(Z{Ty<3xB=i+vqQRp2&@KxOANQOs4gxDHn*Pb5I*NCP)=j>t@ zn%d)%*+6qpZ^=w_?*~~#BwSPY?L3@L`Oiiw)vA1G`Hk=1?_21lDU9Ylf;`F!ew30{ z(DR9@O^sE*Cgr)0MxSTuo>jDUL5_hRAg)DLX{O}SxvelH0cpnh-f8NyWO^+5@5H0$auA%eB-~%R! z-1*s9v^W;2h2xmzGi?uxgtpsNn@!qAxh(PW3Xsx6!QXNUM0k&}$(R}?z(!Dunc8cD zr2jdizY-6os26iaNiB0k2)*|x=|0l(^787|*j)OLEJ3Q@-|z_S?ID5b);o)pf& zz^_-{rSuo^IC==(lDXp5%aZpNqyYsCEnazbJXTSVTVFpqs-+R(ag^Dls-_k@ zS?&7v^tbfLKi2kW1^wdtIstoffhfUML6i6N{hyB=G0D=|#pM+E&%6J5_2~VDL3mO6 zLTZo=uXu>-NPa3mO@2-n2+^ibEbNAU8TvoJ26*-M2KYwucW~*2ZT-K#5w#K|z07}G zrBj#cKN3H`eigLp(m*BuhhK6roBvCX#mK<$)U}dVWOSVC_i6t5l}x>c z|1gVBFJ@7eO-XrjsIa1B$tpGODT^A}492hSh~d1yQaT zi$`qef2BYTG&OM|CnK(zSX#!1rkAQ-M)@cN%5qaD_YYR>pgb zBF1QuVgQ#7>Q8$-;UB6WF|#WRrIw<5Z*iqxxUcooe}FKxjKWA)<^ppHoGO0^9arRx z4&M3zxlbRvx*I#K41>YAg(|FLZ)YKUxJX|0b+363;)Ik>W+r-AF)%W!ph1>2L31pe ze994#q3Q5bW_=)Qe8czN(F?$VU-ACoPe_oazt-vJJYR^~02ensdkYjwKz)nzF%+YQ z9_9-fvzQn_em-XTbVJz5=a*0VZ8PyjRUPAvL#Wg9L`q7yxJ?T?0mmQB%stf( z@SuTreo%d3zS50!@7+=_I1||huC=}}D#yLYnvRw6vO!QJ@F5z60;I&Q3tVF73lY^( zJi?(;<@)Ws^S7(8;JpE!@u8MkCgjiF?*_7OyAEblMKXi^{ZTP7W__K=dS#OpZSS`` z?P#x@T4>0Z=|)+(z|$9Ym5$+iw2vXsxl#~Xp_ow^l&fs5w8j@$@v@8Jjj5D>f95}f zc|Y(`?`8B_F`N|->dh};o8xQ>*HeRIi8Y_&&={KgN`MI>@ssKP;E11kXI$*Pav^l|^x+U{O>J$W^-B9C z3x112@bf7bSkND)-@U{!U$f94TGy=dD@bNpZ$8*UF2&$sPufmtk1*N++|MywF<0z3 zPD_9V?y`vu7zAJWOy7|PX@#F|`9iiz58JHUddIfZw)zp{&+n=(o0+9C3+1K(CekIf z#@LY&>-aEscmxDwkJj*d=CqftUh?GKs@HwT)HF0=OB^4xa+%k#>uac0racA+^pk12 zYL_~$F|6jEzAvVh%fJS;wSlDY`oUx)g^g<`_|Fw-r0_p(`d#@&pCiR^2xs|1Jl(rl z%XV;JIwcwDtUb@%H_?ruP<0VhLTVZ0DeNI`(}IEmyVfxN*tFs$_HpF}PimXq2vBxm zDR-2w@=>cgD~AelqhLX{UUa44LicZR^e;RA@}BCh=ezRf6f5!-P$_Gg$7ssxsx9py zj@B!NrH{d{p=7#N+Q?xNtx0;=lx@0{X~?`>&y|DIYxN^uPMqK;M}X#OweONqOJ%9A zUNvQRTR`0pneYb5+;E_d^EX5L+e=FoLEP0zsnRb#N$T za_Z(mO+lU`7w?UzFVkGE_i4g~>{*Xz?fj`gvDGZV0mEfNV8`9B85Ij@$8X1=H;g7I ztQzm6G!3I}TMh1{q(=+uh3&HZpsf?xkY=H4t~fNz536oCvG23R$Ll{xTJ^ohfa7+> zPH-KG{Z{Yu^7bPpY0+Vp0E|&RY~p@rz3sm|Y|Y~YULYP~1bafinZ(OO@?>vGgPtqb zYO;XC3c;WHcO9gc$a9gOstlkxEj_aQinDa}a$`iJ4tVS8l#UkgeX0EpLP6m$?=9uA^A*sN31s_wAR_tFTNjfh0N&O-M?2#0eLAb~;A%AMhRCbp?a z+I`nGcpkF;GLzrT6#D74ySX6h8zW>T!w0R;=q*jLBE};;A;k1WGBP2mVN|+bIKzqQ zp{{v(z{B?&=t&;L+G+^D1(X~Bjzg_+DYjx3z5pKupfrY`($brIIOd48i(~y z*5M^{sb`fmpsKyOdQdt*-4&a4%5qRBud$B=*yT7ad9;%*+c!u#6CA?AyNpfjqt3TC zHamPCYG-J-FmlhQG>OIe&KsELovRN~GLqym<@nUn6~!$9){d3dLSs^1tWsxrp@qa{ zYj+be!C}1$QafX_4~OQbU9eZS`44R#5iJ(!zoC&@+*Fjf(u_a9e!HXGBj99pciJ3& z@a!0|6A9Zj0?iL=jUjWSrU`yR63sO?c<@*RBPJTS0aj^D`$Y<@pp!Uz;g%aXO%6qF zMs(s@_6TUkP4V}W`magU#%|&EPZLf>rZsf2M1wBd09z$ra2+5XK9)d0O`wYTQM_@bHAl>nPWDbrZ3YCpers{mO;G@#k z&x7E*s%>YJ;pvG&*^}Cy0#+FL=H&_#5GP~3&(EFAejTcRoBiQyx7cewkdVH8H!OgO zO~G;8q7*IfZePMZ*0V7~tGJ8-@vPLNhCLbGk+Iq2@!d6DRcPK^`FJnq_SGJZ@V3cn zN6A~1=gHsEN@-YvXpK2F+!Z4xgRBT&1`L)p*iaZjbqXZFcS4Tp6uo_Eq>sE+&SU48 zy<4KLbO`q=AKgU_&qTeE(eot>S#p;zeL^9`-Z%q7U!qXTuaUUi50wA|Blhs>5gXJ` z`fG1kk}K)}Qu@}i*lD$<-#CU*WH(IQEG_dNs7$ddl&!ctN73#!tT^Qd(j`~K8PJ^9 zO#aMmrqVoU)2$Cydu3nA>PkwwM#q^{CeWT5^cf(&(VY?ou;|+aO?|xARQU&Mu)AHX zei^yWc`y`#0}8pEyUsrU5P`9u5-dgn0;idH2(`9FKz8bM%ciBD*a1S>R@jm`l&L|4y|$nScK3GVzXY7pt&0*A)afT$<<9F@*GP@n2{5 zQu_M3R*A+hgWhSon7+bPZ2*_b7Wc00V z%h+(~z4Y~G^Tl(oo85H3ZF27U_lrd)^TdH8-WThN_HBC^v8(^}>RjwKnuaQ){WI~} zcNsG0frc!5{`>EibNAiPf4v>GDy9Qi@=i07?kTzKnZ_OFrJmdUZmF-?TK+yMz3sx+ z-GBf3{lcP78hhTkHOV2lX+mM`AJvj0%D3G67yq`fe!Dn#=cD3VVt3Q6&3CD6|8lwb z>zp06$-j=wb(h7Os*b7%^qxI>w>oD2v>yIrcb$u`iz)?PT9lIP*{~ge{{rotBWL1NF$CuL=pZ8{WUprYC6I-HV+xPA2ub9GJ8M9@MUj@YzFzwy^ zom+SFy)*VP#cdi7j=%U*^d<7~twp6pGU4K~-u;Vfx9(f|z13sNnHhmWat84VMz{2i z7nTOD$(Wx}eWx(^T&Hxq71kD{nMmU@7Wv2LI>F9a_q^}h^?g4d6|1^LV~PCR z#b0-R^R-mJUat!zTUuZ+nN# zFJE4!d6!oFEnTnf(*OBtwl(&$-z!!@>Pkp|#$LJCalcR6t@FEGyw!7l&c?ktxwqoK zSIvDzmvv4FO#rl;4)*{6 literal 0 HcmV?d00001 diff --git a/packages/ded/img/ded_transform_2.png b/packages/ded/img/ded_transform_2.png new file mode 100644 index 0000000000000000000000000000000000000000..d67398cdc027680863a6dc286bce88b8010f9fe2 GIT binary patch literal 340557 zcmbTecUV)+);>%xDoq3wrB^{gKtLdLlwOo39i;aTp;x5|D7`lYq(*uPMMR_%dZeS2 z009yRz5X`OIp=-O^?m<5oLtvVhQ0U9o|&~~&06=mH&GgD@+3ECZ(w0zktiz2y~4t} znS+IeH%&wUoC#)rt%HSiOVU#vHg_NsQMIhqtfV+sjTkvJLONs3SPgy<7e`SlN0%-qq0R2 z+vqSEHF!9feR<)&Drr5G?S~-6vf~h8e#uixDwXq9>cRa@b#*nx!bD#z(mm{Zzp%nP z2Wj{|ed@%1B)hfH5514|v0j(%v;O7gCFFTnHw=LjEGL^a)Q?z|_9wz>N#MRsgC&); zyQ+Cp?$s^s;oF^9OvbET>28J(yVl)W)U7BP`a>J3u-K?b<+F%`H!OR`ZZ@TB$ks8u z;b2l{#FL68tx`9hx1j%FOFkoYpW?@>fEOoZqUk|nDh!j$F8mQy{yfzMcNlwUR@{m% zbJvd+*m!mMmpgChBtLRhDEAn8;@sfI9-&xu<43^vy&ld;L8c4F#okS(7Z3FkKHxQp z+w}}ucVuDHMP`Guf}cc^Fp=I~eesU_Xz!LZ`TaMIGQ+l^I9{M1zT~`r5QIM;I@CvU zbaVOV@85evt=W;g6lob)*ha75c029HIb6@bUWP&QabL80Xc|t{^L$3W+i$cZ=`ikp zzTXitkEwqBQC8@UV)@g+n~~By`f4NTaoXrLL}!4bsdcu$jtpp+iE;kH~!j zzv}SFQ%h#u^h)QoV86AF#w2z|tbSi2#Op)E?W5lkyWYqqE5NyYef&C$xi41d*OJxQ ztm#8%f-2=ev#d9da$aN6d^Ti&kyFWa_b>g3sTRo}*#)Cl7$1CtXXJ9yzRWF|0cu9)lh>}^Nhk+i!i(Cnl=?S8&@adv4_*u(I$HsdBm-u`i{{{{ao5yW>ib~36q6QA)=q}0U_pqDu z0zWX*tV^!qG=yeUHcD=jOyu)dhTX>^oW(ye`_ndD!)>7#-B_rXfBE^m;oceg=^ZZ% z4t}Lcw$qP}f%GMI#T%mK%!B*!#~-^hB(j_*U0|>aJxPmP!kMqRkE@>lk}f9^dz;-I z_l6`mF8dp8mDgt49WqEINA-l@@?#xpb<%N)v(AO##AGY}g_55o@b#D$NU)^pNi0Em zZ^8N-X)7JHypk+smQBOI$1zWms64e4Bed z2i7kXsmWy#DvJcyiLMVT%l?njkGF25sm4TT?tFrUrvaw727X_xU}c5eN8vHY8lcUVb!<-#NJ(xV3C`#vQ15Lj@( zirtjY_@LS2^O>?K79{8U5#GabM^;Lj5E|#yjZitc0}M$V;tY`M|URzEO`+t#di1hCUFj)5L5aG#WW>O zrX)%)a#G5nZ{8)D=r{$|4f2YpZM2aJlNF^kc`CW^ZDb@zRQ8YVAK15}KC4%A_#_r6 zJa~m&5?-5A8{rY^@pfGGB=2*%MZt3UozF?7tXf<;T)NX09)|1DqXLC63(sn{sl*4* zS3edfrhaTl%q^PJq=nGgLqyE$(rA-Eu# z^TqyZ$N9VRRH{^BR4IL6s;ItK$=O^S+D>IH`L9ZJv?T4g>Vlh-^i{=G1EkLLlr%lH zEX#Ja5MOk@OqLnH3@CY_Q=?^Gs;b5Pid$Fgi!jHvOa^?*`ePZcV6N-|p^4QhgLso?b$1>t=?+#}DEO52O*v{Bm+sx_9J+^;b zuT!s+K51M*S`p}|>PWLCw`Ds`HQikc^>{+ZO;@j0ImDlhD=O?Eu}-_r?|IxD<7w{+ zS!;ve&qow@!?`EQ#-Nplin)~xUvfXS%d|^hwqZM&T9cbUnJ`W4xEIz&q0iFt!bLtQ z?%9(+aZGkL)_3inb-HAlL4OB-ta|zNV~^O-N z>>MgNV|D8)zB~bRt;zGwb~dzcxcKJmrp->K2Bsf%l>aIp+H4c)$}-C_YnyKAYFYUH zgZcZLqUW()bjsCio&5c76_%MRe%$tDtYvR?NOZ&}eJ34|%t%_KpODsllgx)g+Cp%L zsQOzo4`yQPQ@1q4bfJ%+H=xP~Us^L;zXg5@Kq!1yi2wNgqc)4P=$B_t=x)&2J)jre zc=k?=T1@C!+XG8JF3<7kmyVy>M4CibL>;}G#q`}h*4F-v41O{Zn-Ou(=FWn|=Eo7! z3RtTwrRnk<@c5^y@-!IQR#H^nG%_%3Z*GD{&DqWQ&OM$To8_K!=C8dw@}BLzJ3Ss* zP`n7eytssKvkx_x9(~r|-@)B&-=GV7jjTGWn(3A}5W=j2o%gqQ^G`n?JM66Q3hu8Q z=^RV!3LGvSZ=wBu)>>K#96m8Q5j&1KCp&Go_Nlh2QX??M?!Yd@rVGgkAr85Z!+@8L zZ%HtLw@(NqfDuXDlOZC$sYl_K==fu`x@_t^e>=ZM#-LN{`=9SZ;o>(MZqh^u%jZ$# zQgMv@L+>49K6R-^&(Iz6%u5F9 zoz3B8;wj1~7wG>v`myojP!U^^JFz)Io(-ndmiFcYvx2P(TOoVVwgTNfuoW^t-fSui31EM4JlCg?M8 znNO>~^M%qy%`MdX_SgOs+g! zDO?dG7JMu6eX{pwVzKJ>ov9clIU`L_ae4YEFDWIeM}C)MS(w_UgW=dKDt4Ksw^Jtf zd-QiQP0C{WtRgb9-H5xm5U6=R&x-9oZxNV;-w5>15V?){fb+18TW*{N4UT zp(1ncVTkPv`Ser))Zv@rKgnIr2#!H#W7AsG?a=OayvtXb1^Uc9O-;l0zgM3hF?STi zb(vE`OwKBjbba#&O3GU{`)_Y2+-#4#@SKB$DGQ`{J#sgww-s@1aygErYUB2*7=Nu- zySq~wsl8veUZ$+uZX{qkcc2a?&>$={C=U-`|c*^%#LTV zi#5FRmr=#U_QV8~#GAKF+MZRg)$b>&sYTe-*}Ot_Yf?13xjMi!*J1&4ZhPwdfJkiE z?St#rgAXhDeVw(Ph5HKUdnXs~%HLJ~O!_%gG+dNo1zGKse-OV3vh%I|lXg&L+5NDa z<^cofrN^7a&ubP7B?FrA2JCgS;@SQu`t~aJ-RWNi5JLpn;&VS8#9W6?XGbtOh)kX* zJWmZhpsyFUrvs0?;R|Hmjh^EsZtdgXsU-o#sPtf?L zcoR@>&~Bk$hvvrEt~EQX)Gx~~?toz5I8b8S=kVr83@m^x$nH$aL7^E!+hrNki&YaUX@AI%pgLCsN;;BRMHF8kGUd2 zk*5f11#P2mu&s71lR1AwKhKVAAfkx2e647us*1%0l!>tLuxYXIff6=wNMPUpzw!%g zPAuHN&f{QVMc88D{res@;P>kD0XVMe{OcDt;T;ws@YikN0O#TS=kA+1dAR>6<4ptC zu%tC*6%~PBO>;L(ODA_5XODY01PZ_jViyHHcPuPwwyOhM@f9l?X#bb3)@zT~sw$%9 z&W=207S3-hdBBb?SM6Ydz@k9W(bB_=5$x#T{0qXRGS>gsGBO}Po!b3u#2mTUgw(;>lRL}58u?E7 z(Eok@)lW;X?cYywa{u?RfC2JeUE$^9dBXdDZ39(7S7${vY{8ZedUCdoz?=ckkl^Eg z$`AUh!vF8m-;eySs;~d9$}b}P^uMeA*QNh&Rc&`mH(6&#;GrH8e+%s2mH+$Vzbk@x zug3mgbMdc<{_89-(-Jp8y#FUPi5roK>-8&q_>-ab!8etwlkn=E_^B2WU&evb_BBOuxYrm{A z@sovcMi;z+{@JhdmZB(RQMG+l*dP`BA?FapF;ESiQk`SXM2jD?Lj~Md2hw2!JQq8e z98AYW#3a~wqys+Ekm-T{aBL*tP#S6Eg$0%QdDqk|E0R1Ah(1!XaY3_7`3& zRtF}pT~3Ak+P%5z{}+AiP=q!THbU_~35MzC?zMZb4(-?%E$(sjdYs#(&=4TI_T-23{0+?Je< zMV^(tH!3zmX=XZVg%;8xhDaYHCV7bB+>HNgyi)sjdW0`4BhrF0ZLcu|Db+i`lNEJ6 zXGfp!F1@Rx@~s`qc$#Xq6<Jdv0@s>tZ*q_s7hsMy%##>QWH z*&LLz*ATDLl|t6Ov0S@6I!muM?XKtF)H^W}ohaiy^x8H)p;K;>*HO#)ygm4FJYXt( zP}x@gu#_V57Flvi@5o!yHZOyBpRHG^^FXVv9qWZ4? z#70|7%v-Ivpfm^7-;*5VWuXw*=FVzN@x>VDkIghBU-{JXaG1d6nXK0~B=Gxm}p6Up`4?ZsJiX!FN& zU)4)Fl^M|PX5VBD82Le3`t0&FGQ*_^{qw6is=X4LxARN`iu^pENn-?ugmyf&*^`p{ zZ=3 zBW?0I-u-j=I7P3&eo8ibm`~416k`6Ip}y~@x)M?939&KR{j}kxcd-7M(L+?KUd?LX zpRSG*N;CZ53-l(_!k>|BVgJ#0%FHy5Go8bkj&-i%74EVjb zyi~s~QH2#QQKdGfD4(#u4ny?AQ7PS$8N8=8Zfv5=DjVtO`ggT;O%cYLhgN;))WAd* zQstzVVevfcwyBK^WbVQ}nG3v$_Aoo%Vh<<7g7a0#ER*^JA}X?t2^oS622>Hkts5z@ zwLuwg!zrBQ*XT`?($APjcB91f0+i%XnnRH|4KeF z#t>RqXx+5EAD$K#g0O~c@lZ&UgG}mdP*h@aJ86S_`i)@-*k0# z^>T@|aS|1`&NS2Q+ke;|JH`h~j8!C>=Mo_&dZmN%$rT1(ww)CnukrtRdqQ-$jkQN?7!1d&#Nz*2Cny?>-1Z zcc01J31n>d)<>rz@UWO_cfUMnbAN{hbSTJRLQ~6nt~Aae*)BH`qRgK%G^Q(Qf}Dkw zG;XPx1f6Fs9zW-(OTzfkuX>R6*v~b(P_{_iy#bdN1nf3uw_ZKSfaUVsGWiw?E`8#$ z%fLS*09P=uiA2zC!8-knyY?{+=M9n#J<7S4whRTs5fA+ZgHC-9CpOkkd=8x24i4*v z0^0x7Lk}Ns`TcEFFpL_u25n7VpG*R^R|gGDaYuBGd`eh3gg?wd$CkTu+52fs0=a4B z7|y?s-L`7ujlPkCe9dHh7~FoGR0L_~%i1RlLm<)@kM)M^;^8eVAm{_yjpJM-LJ>o0w4#?MyY`=TRBCS>owc)(vTj^-(1O}` zr%W8aoz-RfDZMfL>|R=sJY1&_?p}@Bh1Cb_o-`<19=1J#8p+OEd#itRSJg0@DYu+i zM!d~jhSZgKm7CA7_gZo^q`dGn-}E}KbCqxQ7dT}|Z+HVGra&k}B#9R3dvT9M4^8{y z!z44?blUjxcZ5`LFCSpyAKfYNgn%o}ZF0A_kVu0W{u=j{=8>_@ERVN-XhX!49r#4G z%Y>R=j=tH+K&9$RdF9{@FQInl0LOQ0O*!6%?#Fu#6V-2IGoGqOCo>h-ef*?9?zwN! z;0f^;#4x0{+eHYD9vg$-D91~PH2EBW1yY?7RmH}h$Et0Qzy29mqcsGoFX3*fFuQ~W zny_Fl=9xq*>5C!hnyHifhTZO~6Yv4=KjRbCoghvZl}uKH$AKBdJVC- zOQ-2bE#8YoPoqZPVwH^cm(*!?JNi4PHUgCr9^{s#bM|A%qmHCxw?dKb=Vh9f+Y2*n z{m%|I(;lT}kN(u@%6+o#oW9phkXlAN7kEK2+NQTC0UJyxVCCr(_|W`#5QLSGvgO9v ze?O=LL$YcdbaXDc{F&vxVjS_F8s7_X(WhUr_oe2!W8PnKj7|2826;`Du6C!LN}-xg z>ONU)!j&y|Lt`t)Ucv28>l+TETX|J%0&|+2d`;HQhcRdikq)gL@9F!i0-}D$UiZAL z#N68}KTc#G_9(N&CGrj+6yOUMrRPB>r~0QN6YYjB6YGwaCNJXrEkch@ro@M`Ac2(z z!fGz>o*o8Y9yg2PFRH$hX&hHa`~LbCJ|yUGJY8?uuX7Ba`}8^FIEIQ$(j)iBPx>?Z z(XR(A@e*uhI*^YBsuLIopF;Sso~r(OR`d9S3v^PvwvMDY)ge#T}l z?{MTM&U0ilj*N`##;ikqFw`QWd(c1CF^4)q!7pJJ81QGYk59Q?!Vw3o*9fdDQ z60>>eAq;_gQ7XsBy1hM|;9(irUEw(}kbCNyGCvUg4essjt?J&K+`oIzYoAK!%lVeK zWFJG&qa@3I-AElzl;?L>ew#%sOxq$R2rf>huoaHyM{nZ46MNR`mi&~DYMz(QKmUR2 zkKdIdXSVd!Cz}|^)-yYBEuZMpdrj67V{tLw?A+5?wN1|!!)I&$&`b5iz!VYpix2H7 zkCG=V^p%R$`&sB18|~cjqR1CI)?MTQW%mQ-*Te-ke-KZkNpBrG0TgMeRML zD!aA-GvcMSixa|LSrTPcM(FH2^!VivvrF#p$Uu!dVPc0?Q{-juvIX}_sd~J(dz1X; zGaO~7vh^pEH)s84709$s;@}#kl7klC!YLX-0#;(mkPFK z=?7Ov6AhvcTW&A0Si}+EvWG5(vJ@IXLp54YTc!mo9K(8ORVK}CIged1U%zdr+8+21 zZA_}X%bNZfR|Qrr1)X#-9O$p_k0DFlhxxXlpKIhYn#9Pk)l&4t|#sm_RKEZG8{7bPlUv&zi(KUn_72#GpB5({pX+?Nf{g}e@buw!NS`x z*88`gv43wmJBQ7EFzl|~*|4R2ChQl%DV%WJAbx>aWPUyd82{9%XNZr248sSToCnqn z2gAL_L0*LG0b0^42Q&jFye`|~t$~gMo+DeRw9?CFWB9r_bOGd%4>#&o5^(?GY+U2M zyNOHTE1nCjhk9~4wXs#;ZOc4fjnxr{Zy>fEPY>t{BnxfT>d@{(+xDUG^P5|x+T(}Y za~!U&RktZAH95hR9mwJwpOI~E55y-6XbJipCW%yCYbu!)-X(>`^DGE&yu6Q|B=>^W zJ343>c#j6gOZey7uDL`(e)$@b_}izQwfSAH2>4$hYZol1YuBqS z*4^&ka-M50%nCets829UKPHmjnNh3&uQZZ_Vag!wiSZm4x#Ja?obnmu$JHxAGmK}h z;?2GLosfE{q1YLxi2eoWF0F^cG(p7S8F0ohYlO8Nv)2Y@ZpUXo{O#=ruccDh%q# z&r!iX?C&pz!pS`A=yYYbPh5iQ-?8UG;3{R4kk?hCm43&C)((;LJV`q=9T@)aRrjy4 zVq^am&#h6qd;#J)Jb#rSTmmj|+wyt5<;W57XlFP95Pps<{Jv2^Ho4fO!yL4Zk#zL5 z$gb6Sh?=f%EBTzYS^A<9`EUQ3`_6Wb9ZpYB8rC5`#{(~F${|e&32>6X;-L|8C0&|A8KX)~w z=4x(N(|tR03q|1i)jgT$@s1&I&uy=acv_;X@%we>w*J1J>;&ys?@)w3(^=*elI{Bg zL_wnd^zYg~H99SmSQqUC^p{uyNf>`DGMRApE%45@~mCGN`&RH1A-dGF=* zs8ymNHrq^gj@AOcI)F^Mpxff}e4p8^(lFyBklZc!q_tnG7;cC1RjIIIu#?G!XINGk zUmR&06;|=}2}tXZ{6M;*+R&Vu&&7H@>GnFX>&BJV)J%=Kea}-UH(j6hluKLhi?t)n zyo~aKCSq?29|j}p;C}^P(@M8NLF2RTj;eP}3>Z<#Fx3^;3ihD%rUe*Za#!6tF177x z^;W=b21=gx^a!y%3|KK&XLLbp8ooM9bMp0@IE`lld5x2DY11l%+7RQt4eB-K0PG|g z=d6dZyk8LVV(4USK)ifnc)xk!WaE|}YW=+Au%uqhIM=r95-C3Y18-QF-vnwN9B6wL zUjKzgp&LJ|a=Y2@qwYI5>eMoWT?dI}C9fioUs_o0JF8-jroQ9n-in!%6`R}ouBY9( zMGBXgp%e^ZmU-A3EeL*q>Zbo-rJC8(7O?JiPSP;t36nTadupR$GJp3l&gR2x0FP$S zxzW$oMvKhbn9(DN#Ma5TkoH$H%L-LM?DhP`8&@-0zpG1Q4)hrw*xS z>hQs_nsjL6KE61VoEOo>E_O%C)zg3zd{AUm18hrNqwJVc}fEKlZLSqh6O{ObtCeY zJsObri5>omDm!cIM0lR$X+Q-@-F$!<2c=b|wd@FO+y#uJTlst%zvC52`}SNei&;L? z?fcsORN%?zHCjga2TVHzG&!*#5_ekWhdz6viGMPsPTdr`$*tOj^6Q3uq^G0pVWd=n zYgABzynpsQW!eOsY0H`ITlXt3oQ8Z2Y)^XgjT~t>7R4{(C{@{3^}VubV+BHdJYO;t zZ}su5(Acvpon1J+sN^@vvKybSq zGGpJbc5Uv9QnTDK118kq0T5Px{)M~hmos#d=;*lCDLeuvYn2wVpK3 z7XoMiwiOBgf^R?3x|>Jwo8r~*d_bbwjn1v-^zj;Xq#rVxm7SWloJ3k={hAQlGlm_Q zl*gor5%dq%MSpUe&wrixCO>B_g9O6H?8|2LdZ!s4?|Ii6q^PxpRi83%yH#mGLlWVO zxvgpVx$4Uf4C&TPUyt9m3(9H1{)0cV-m%&dDKypSTH}u%k%L}L=o)|c_3N%{C<4-Y zQt(5L#=l)9hhKX>5D{Q-&zQSdY+}C7&9}W~=)=M4YudBPjV(0{6)2a_z5czAXO`hJ zo8YWDluB{gK$eKSvClrqJ+O2TWgZH7BWJ;W6=E(nNSp&jq27z+T~6`mU5eBr{WSy5 zk7-Ok3c#Le6PWP#Otq>&@L>HveyUvqvyi)j=uGN-Rlk)yt<}|g3_x#FuvXTx_Vbr& zLFbkwW7W$Tvem_=Q^Dcjtxd}rheqG_lD;iG&2xO%<$M}DB*S#im$Lc52{2tQTOX{0 zs-)eD_3OPQjl6JRL-jVAwx=SRt_HHr7a2etTIOWp96F&t;#XeMcRm!)Z83Tl>(&k+ z$~He;$Z`;?D>Hp#CWD5$Hfz)*s$Iqni%nkO8LcF*49Z5Y(uU$f>rBk0^6GiOldq^f z&rk$|x)IxDX8jANXK*b=$%6bEy}(QRnD-Z(>bk%l6%7>yw~qL%pFIUv4h9%sZCme< z2ZZz4_F*fuAd^j78oAD@;Iu<=aI zpC&b%-jnZ#8TJKTEf0CXfim3|29Ia&v41#>j@vJ3BCBO?8{5N<;a0a_DosKCrQG^W z5`5c>2x-&;apFaa{YibQX1vqpjT|wm{%rGS9qxzw&VkM{NC04CDQfnE;!ezQs2MpT zR`FoKj)J%w0#^MCWPA%b94+iu7HrYE3s+jA$qK5>@^)%}bLdHygPKj}QqSaCEY2D= zcxMqNBGNp>*+RTzU2<>DZ-T}SJi}@K~3+W+SgwIcWQcMOs;#~nd_Oi@I+VUcuW-&5;k}N z*s|hyg73(*yb8!FUQV5xyHeQe`_U6p2|J zkWBav-|7qoeFuSuM?v7lr-+M@2<|wCm%@u3?ucj42jT0Kk#H$3F}TlJO<>rp_a)0{ zb(b0c#s!ph0O@y92VY14;Dg9_S%NBC^dK_9093PI(u28U&Ze!&`-a7J)-dCy-$i1E z+I^SD)~&NZh_XW(0wsja)H^;Fp7$>%36nG{Es2PTfc_j4KB>@Y4@~G5weBD`B5PR$ zX+AuA1f5>sYsk2P@SgW<-*TTwPMuQvLo(1vCb|2$To0)ub%_M_3er&z%fM2k*yzqDR? z({{Mahw5G@H?<5T=9QhaH*!`;a!@lZ&#lDwLmdqEifaYUz6}-m+S}@XC4dRusoc6p z>95Myq3fu>ew5Q-)!$sb4++~_ z*CG$hg1&)*#9hrw!Vnv^z8HG@0-@>J8+AILytr~83-#*TVDlo+QM*w`m0=^t+%pu; zR29eA1nRU2xdH$T$_tgMs#KfxUXS+Aj#9M~OmR+W4dXe@(IB4YlvW-6uK8BCgIs$} z%Z}1)w=2-^c-jXm@7Ln-XvOaL;+T~I^UOZ&Vw!;owP#Z8uK=u0s1MT-xBG6$)2@&t zhj7<8-Rk=i?K4UE?AX4&yxv0&t-uHJKP{a9&_K(VQ;QhBAQH7V5cta_3u@qx%Un(LP^n zCU)-$AbQFmu{E-GE2uADIOCsqe0o8$(u{OYe*gZK&qlBO=a-!pGl%_fA#xcBtHU;$z3X`Oo$BRtIB?FE}+r_G%Ef7$bMK>Ob4CRQc8wXmJ zXL;E%G@Vt)Y*_&)LA1k?85v?V|}m2*_I*4;GAeRU%zc?_#UFwMHhq(n?mR z_lGjsSf7sbr0(fHA%J;qo3|Me&@c0w7b0cffo%uK%}r@|)SOiDTOWIA_WBgl!AihwR{iu%r-M^o+3!kK zFEj)Bw7>7)jW=|C5BrAkqGWEz?5EemjKbooJ8Z;)X8=uaa&nW|J_)??VI|mGG|+~! z=xOz^KgINOzv!0|O>~hwg`_#{=A|h?z`5g=9U53;_Ycm?m)mVuKI*j;5!OeXNcGDG|wsYb?PlcsHJdWl1z42-^j=@`{^**j#u7o)ED zCR@AA=`Lco2>eX)m6s2W29j_qLt;(|`gL{`poWAqnQO3Ia9GI4 zJ1{Xk55Ih-P1AgQccq;nj%?ZGd7O62Vv~TW{}}t|;@T(H5_3Yub@zhsa37sFUME!h zwB;R`@+{Et=AqzjyRE(97~IsYyYu!+M%z|l9C5CgYS=vQ#loBWT3)5R5J71qLPC$# zz-y~vj?_7a^C5fi#az}t|89ZWXp^?|gdvG~5XdvR;;5WX&|iG-y_ZmVML%sY{ox#c zeCgU%dPF^-KsQ$Ot^2!k6A6 zVP_415-a93akG)WJFff9?`Me8!oPE` zDhFv_kCb!I*Kf?&ADt`@#jbSb>PGw3d68JzF&ZJVnmLr?p0riavh`qcdEB%?@FttP zda@m~i}0e~m)lz#{g%bGDLv@W(;;|^6TQHkaTpN#ef;o&913~&EA^tLpXwVtnf4L< z#`MY8V4-aJcBhBz%f>F*{zimb-bi}^hv8#cfxxwpoow<3r}mxM&O$f^$-ZNgz6JP8 ztqRWrQ!=?a_v~NRMWg2ttJ6?jD184it#r>j^0c8funDi$5%XrS=})QH?Tk;f z>_kUm>R@w!56^1kk?SK=cKwErAiWz;aj2UtAw74o^k(4h=Iwks0P*Uug9L8qzS0f3K` zjTtrFs|?UfNX+C_tovkWrUPVc?V^+WbM_nz@WmgEN3}!)Y_w{s+B#9+mySVJaW=n< za3{3qss}-PS&6rqjm);HhZM_RS+6WBy~(nEHh)jO3<`vaK3e#2E+pk3Y=vDb(ChF{ zaaq8`H%w(~`YT?hKJ$P)>d^tg@o2(|lq!e}6?%_=I|r$cc_UsKzko}QkNo^Huqoa(V)h@lZ49XnJsG&HPQc&%XW17|JQ%l9it9foMCMgr zQK&9DA}DdUHRhuW3)9IvFrzjj!XI#GciVghP+kfZwQ~bn;Q)gwzQvNO#h&pz-E5Av zP}-1@Oz&}b>3s&C-nyHTAHG@yNP8aG`Mgq@h6F=~o4h7({CFzKhi@YN4gCVSj~+d}penBa zSko+cQ=twm6Q=u#>OWbX_hI?dKKY7O%#1j689%9Mib=?6f)A)2mGeAvy^l2>qh0r%W1lAw{a03WkQiOHT{w zBk8We@ebj-4G>#H&{ve&FCy*Qixg*M=WA8sg^pWtmvnuNmd-CK9cI%X0;DO+2O)C+ z@j9djtznz~z{uvdmKd+xD{~zW8~taS%5@l8cb~GZsPOP`g&68VHs%5}F7L!2yfoHp z%!?@=Ky5}lYEWszxJ##-Wb3-L#1|AN+#|x^cI+P#?yyz8G^4L!_t@@u`H9+JTa3fQ z_!Ez7-Lv!`KSUFAnD-cbZ7Nc+!o4CE<(JZ@)U-7atGeTt+Fqs>WMWmh3D8(Q zFr{XDvn{*Xn#a~%L_|l_3X0JQzrH+)j}0FZe`Yrx3b8|k5802ik@h8yeD%@NN;-~8 z0#Mbcn3$V=KKu`_6Q(}`!u0-vpA!FkcK?gz|BZ=N3VlZ2{40y=8jAUM0~*u-8O-vf zIm0!2{I?($$${k-NMz)oMsoJ}F>)i|&B4TooWH^sdar8f9qW)Li zs~Jdo4r~p2V#@mK1=Uq!v7o{#%&WD3LM&S`#tcwW{^c_xb;7KBSt69K;(#d;0fyu2YKm z0BDWu+8g)MzsGZpl9V1GxYXyd0e{Ql8l@0fh2X_wCXXr+?f+@X<*Q2Ha`g>4_?xf8F`Qb~ZXj|Xu&pY_W?g-C_As9X%~Ea^vzx&gew zeF1n3d;>*JN%wol%!26&j*kyMY;+l!nqhl1%BeWX z3p%!ORTrR_;qTrlfx(UAH{#uzkNio%X#a~pE3_iQge)Tu%1J-2{>;N~$CBPHZF_P2 zCwyrCRK*?9TzM>|9f!^1cT94bM((v<-=Y>8YvNeU9_hbaNrt zWI300{*Dq=n8lbmd7EEZH#Jvi*i%ZECE6oHT`i?8F`?;H;e&%)<}wJty-i3=WLZxa z8Lc&Y^F%FMgz0bl_|Hl_*oWVmDm_x>IuR!lV)8fRPo04t@ESDDYwyh7F@uYCtghil zS*LKrS-6=01P67HxD4l7QV}J|t7yq#bGF;Z1?vblEEwSzYXJ-6OK?tRCih8=q=0UQ z5RhAT=Ml9Iy_SWO8l*;(W+A7VBVYn5FXs#NzX6nLUB?085O2+UuQ|TkTZ+lOgS)w1 zw4_vh_fzq(c$s^ze!>NtB;DTK_~txfYGrm7WUwqSA*e!^0Zztg%DurukD} zN}v;^o(2wG?jr>qPE;^G(iV9+xyFb6hEKNh4``LO-Ar<=CzD^Ajuj17d(Mzf)%i8h z<$KArj6-r+V`Nu`uDN4L4HGp+^q#Bs0rWA{6m-GF z8!EBbfvLM+Z~tTZR%M5(asLweJu@7H^yC*MdJCHH^&~yh&Y!Bg2$O!pQ-=2$ncjrd zn=!=s4bJcvwCo(|b_jebSWQh0n>qm6d9UvfT+??6)%zx9vn`=(Z9s(w^VZmDc|f(m z(y98ZB>{7y#qNE%hQ83CNIUJ8nW{1`MtT@^xHs4#)X*Tls`>|>KYkOI<{%WjyyBKK z7JZbKnk&zJuI&P7(O`2pY)dRCk>x;U8apinZzhZ}tqLww?27caiD&h#5(eDhG1E&e zQQE$sSQN);!w<|kfm&EvPQ_LZH}TK`V#s$7Ac0V^i^n6a!Vm!XQXq*3dra4UO$}!3 z!S{bV&{|v`FnaLW4|4GOYD1#$FEn~qr_LL1Bs1watJsCP4Wu|6E#1E_(;wcuNt9%; z7?B(375iHN?1Zy6baK`LT6Z7aAq+({;lYgDTCVAmgls%oq*sFMEgnl|dS#SbNp}Gz zOib>@c=aK*^zOzPh55FibRO`k!#sx_8l>yyj$suOGuV~+&Q|C;mm$?5a?L&O8x!Lq zJ^!I+vo<+My^adzSYq1Hw-E8&&BCJb8Djl{_CDo0a{4PNHeRX5;weLMW8AiuPy=_C z5@M+A_z42Bk{OK-Br>6$EYpcca72q6eEYuzV zEM8g5WebEt;N1@Qm><{OQohvVFwq`K40{!CxzC^Yp97jE0Z;W<`OEbo z8Hq+vrEDG~-i?3%#B7(#p=#u#HrRtS77NFc!X*@ePl3T@xkCwp4Gt#HWaD@g1Hk2-9X=0FPuasSv17)Zs5aOOS6!A zjk+Mo61ZzZYN|IQIL9#*@iJkw(P{sgo>kPfc68w8J1iROz)JxJUQJv%5ow>jFGBEq zEaV>7EI*n5|cPScC#rJUn(Z{ceN6wiV3}kI}whRgP zD#6C&AXwsjYg|JMO9JYeXAYT_QKcNoD{EQ^90ee}oHT22qPau~BhE zmE1oa$ffdL;Q{9Vd3?|Tlp;SfBh7UP*VKyDOa&-H&|1e(jVH$c@4}%a;!AcyA z^%@wur5V8h7(r1&%YK0Is2do-}$cGR7zhe1XKDPfgTcWjjQxbR?9Bwzs z6b#@f8aazTI$kN^w*gFHoBEoFMo7kA>Z();&dIe7-C~!gkL+8;8@0b63>A?3M#0Gi z&Iwxdxre|`0p1H+-_qI1T5S5%!+kyLOEiAxN?)PcAPA=%$F0&OLS~n3`<(FMfReAI zAsH+hlYohJinFk`*4$}XoxPDoe9iXn{4gd2Y`+5T24eCJFw2(0nL$< zdD?6nNVuxqxym;}@%+X!?3V~_F=)HDmls)r7%E%0I35B|*xRXNK$1%_KEqd{2f5316EidEoHjVRB*t$$Yc?+qao-Q&U?N zpa?U2AcESGDR7x(mF5|-g4lE^xi46?6N_OZ+)@9c~v#yUfm!7ww7nZa0occ0JqcO1_@&vEqpoho* z=XIXv^?z!m-z*jt8Gxj7CMXl@g)$MTDP|b_X4H)0R?dKriCQ0 zi&N%J*N2tk1pu*Q_fHlz$iQzoTARwT1*jvKJ+ECSkJ(NE5DTTknEmspV4!r~|LdbN z{`07u%KtcYipIYdRnIV1-t^HeBr~ERGwNSbZR0mu`ntOl+|O$(w@r2vb&n35$cAGx zTFw@`0eq1~=+WE%hbhc|U>V?R{O_xqxieen^VLjkZ1g#9R;`$ zIy+zTpAKN0{8c8XB`-h8Hb8rDl>SJqoVF5r>IV^jRZ8Sh=pQmZ8}jqP|FMV6`F#|) zo9rL_go2+zqg$<(>~Jb1nh#V=PQvc$k0VwKQz~^#h^2p=qqC#YizjK*^T-{QS*Vvv z>e*t!!wV-7E(R|G%l}j;jfbh$|Ht0vpTj?on}<=SDt@C_Q!yN$AzI>gWOO`i$&R3} zJCbN~EMkVdC$SP5ccRh7alS#K?7SxOx@)^`&c+}99j&5&?|;y4fAM0zp5gv;7o@|yfeJfy`Tea!jP7z@vPO7C2m*n)@$6ac>NSaM*vW6P z+Vu0+O{nTUY}hv7Ps4oZk3D<)-cdPud9kZkf6&iN3wM8a75O{51}KBtxBduf zl8+N=A3Tw0P8%-Y>a(^UPfSR6_(6Qec=`q_iT^Be3rIY9%>GKW5I(m#`g!=@ z--*R{4v$C#R^IUykFA{Tw|OR9I1yw%U>CQ!d8(_cPgX9Z^0hB8+-AdQcSR6`t}c4r zo=>L~;#*3?sUi4gt$F6MywhG3=LWVh+>ySbSmi)G?K+V2`o)#n$8AwVr52JZdo^bH zp)CIb^t+^@U8$Z_X(ozrRzS@VX|ECL=^zGtZ@n1`#;RK+UPC77n(+<)?}M`Hl1Gjq z!0uYAf8Q;A&lNdS(+UM>ps*XCXM*hQ5hrqp1|fDeY-XQqiS;g&F!`cKCpbB4p)|$+ zn7@;lz;mS^jy9x*U=bP{+e9!h^+&r%3c=0ML54AQA?sIA&SQ_>$HmDEdLEIzEHzw& zrH%(IS?J6U>I-h7KBfTwKkRia1lP6f!hl*R%XqIKXXsNiaCr(E~4{2v>`GcHc5uAeU)4*W5-5w^8e<@0BikL^5#N7!i$j8xozErEob zX&s$K{2eG|;oNCsWgwkO^mWE%bsS}o$3A3yxB0@&zOrch8(dlnr2_$3tV2K#3t?lj z{seK<3yN=L&BL<~Od5SvCMf<&Z1C?^;7}19DBR(__z0z3eu4hY!Eh=&?(dQ4%NNJl zK-A`9H)5mlktCq%8M;3(FRA<#)d@tFc98P`w`ekiI;HV~j8>m|GeGRi^om?A09a)s z?5EG4)otlhC$d-^87v!On5l{i%BN2ecON*55PFK0{f*F_O@C<^W_ueBcHFg{)3A)^ zXGXn=j)s*x0JmAp#p{05-8X`XnQ#au4+wG)mAYza%7>HQxnl9v0%H|*y2YT2DcU1 zA~XZZY=d-*BVzzdlXynR;qG*<82awRCA%ZU358eq0wWiGscgl$r&~iOGD%7vphn-S z(5#$BkaYwYg$hcn6Q5?AhZwwgQCxQTYrw!1Y#jDN1Lwb{7FbRWUj4Q)s4o;;4h3Hd zS$2|xEOj2_41p~uUV!ams-^0b3feXbKTcMm;YOOSNv&Rh&*BZ`&rI`aLGn5_9Rjr+^ zm)_B`ti+_F837auWv_A?X1t`{%dL+4g!=EFE(LCduF?9G!A4DW9xY8hF_?o?dF-m~ z3yoIVUC|LYKnn~jFeB!HpkX`9;tLTp*_Z$QgP&7FMpsqjW_C{+9UZN5Iyv6xSGGFc zg#4EU;N;X_CWaEfvS)&X6LUa!sOm3djnl7<=35(KSXtgXt{bD74tt(1NB$3ZYvwqc z1wiF4ko&Ct@BSflO(mu7{r>%Ys)>6WUEb>LGEhav1b8*h&o5?nuO4e7sul)}0iUf( zC3@#10<7ZrE|$*^1G8f71C|LHuNFo0z|NNlfaq(lv3!yn8e^M_yNj(5HI^J91zq&3 zB+n%~yEFGTL#>(g`fNOGCohF$1ejjTrqH@;`qbvzEivQv!x2PRS682n5|?g3pYh=+ zY;`bte$1iqev`k)pCZg4w7}{^7~AlTt@9?_{C6>n8Mzw+N8V!cjw5)CgcJbU@mOEM z@y>fda0XyC%=6h^fV0ovKJ}Ng4RfB?2O)LZ&a%^2t5XGg&HNyQfrkfC`}*%`=*G`n zw0nS(s8p9~7umzNKXS$2+`QqQzHVxF$BB51>f+nG-2ET;i*4gI<=n^4c$XIN;0WVr zEfF&y1aYFbnE zTmT_V930B}7{cnSHwDVG$~P-n6ceA|gY8VHdcIAloBaNo*u%LP_;8rEO>Uw%w)a}g z1#LKvHwRUJ9;hx->Hp?4`!+KFPNZW|SztD{o)9Jt#LaM5A26$e>2Av~OE9m`PwpZ5 zn1j>$Z>@zECO!!e+jYhXsFnA0!t@L~;sDPB6u;D9R=6uQ9F}=4JY!E)aPV=kFGZM$ zfW}>ZhF3F|)XRqUqx!$Z^3r0;?Y8Sf))(M%u0xKnehrwQtOx})sYv0`$B3R6e^^6Y zSiQu`!v;0hHBrzBD#OE6evT*C3`dhv{f(nfgZeUqgT+ zKZLLtkA?;OV99OZAM2jZ8R;X0kvLsPy2JhEH3|bco#K2X9mST zwL(K*IB#z(DBZ_+&*_afJC%jLD}0=%H&pys$91UTTaD**_uSS`Y4@oHgUt@BY6m6P z)rovu;Apu@6+Q&#dS6XS%6uXNb8oQHgWnb39F#7&szeGFtrHxpSY}E^L<`e7qGv77Ane-U=7^xgB7qR$*OjxxWi}zgPe8;Ny#l{P#5w z!o!I=S82bMU+ZcQz4aDzE;N=b0W|?}f8diWM!_U@R*$CLa}A30lxG@;gxqbl>r))1TxbCs zO~f>wUO%zUpe@7}Xad;m(;s0sWy+BjIt*OcsN zu-869M5YOOC~s2cy|p>NK!$HNvSUx=z^G~NcIe$&&*<`r2HW3XMCKdX_zfPIOJg5O zjRd~V0kV#^?q{M^wfHuT-o>X*N+N_9Yk_B zVxrnrE<}`?7+@5@K`ZiX$Sj4gnx3Cs8b%1awlyz=Sxid6QDpS#7DI9q(;oLtFl_5= zP{0p1TosF7qhDXB#p|%+(L?$a8ftaOXhGxr_W&=x6+y4kcCb@i-W_j>5*?mh@czUl zRbwDE1s_sf{bY$A$%TiLryIxVO{QiGX_ZGQen0(iAaRF|IO&@BC~~+Q)A8D z2$^fe`+;@Z<^tb4?uB#3uC25%7bblB*o$`h?PFk|vr73(Z;V7KZl(5fL6oy6}@NaPZ~5 zDs|fGNqpJbMpnR-ME!JdwWG6hH~(CFX11~ukWit?TInvz4z^8E2<8|$itbwQe(v)2qIU}_8{~cbG-%5oZ z$B|k@D2e=f7j^@T3^cJjUw=Tcm=|ahJoMx2o?b`Oa^cx?LOjHY{P06}KN9#3;;;vn z192XcH3@@x*-3eE>OX3Qy#5NZ<*cwNJkXr)5?W(p!RKspj2DN z6H|oo zPWg&rRzalz<4)AqTDf|qit?R4E3gV^VQPQRqt*kI`x;Wz-5>)XQK7J{R<>m>%agb; zeLvN1^HW)#k|Azj4|$h|@cdwdYp0fY)n&(4Sj?uvMwBIKlr&mTv99_}iQrh6ux)dO zF;{E3JF;4)b%t%08N06$BTs4@%PfQFr^C4vU%wO&+#fQM?OKA{`$t{i{8+DaN4BD! ztf0|>#Ox1Qa>(>;-)6xu_8Pv$6+bFT;aN(?mCYLx@iNm*0m@c787fVVvy)i_KewKXxy~Lx-O3Jd0L@%VX8eekEAmI;?mj5bd)dq4JGcqI=hP zXWiDSVCJft;Mf+6GVC;<3*T8QeMZn14Eyc?3yLJ3e=x#;#gt5ty}uthxid}O8N2ni zR29aQmMJbJD)^4Qv~?PXfx$iEnLs0-9rWd2?rcJsO9Wuij6_FC_++uez=7oS=VecM zRNjq00SI_NyKhbHaK{M)7!gvtOhIp(vfI7PB}DT8K2XI~_1{spj@ulBlwY7@%yqps zG7`O!*a6OcNwKt>u?B29N*MpG)^MF^CNm7loWcmf?y=k7{0>X%sM^om9_m4keMd1d z0fGX1Qod`!u}eCFc#EHs0Nui69~(ULj9-;0FNP_j6IzuCfqlEWuP$IhW13D67d}h{ zLTw(RcQ+u}4$0R7!@7R*Oi;dBlyU4gbrWA5vn-{(3Fw%lqAYDN!0Mhb3W(xO-odT; z^zy6U3xZ}c{~Gh1~fTFQjc`9*|xKFEz9dcNp>C^&c(Ia>!Kqm2+DE3Q^r zfU!8GS==~XY7&U(EbPnZh9J?-W$|v;>6`MWEn(q|^dhHMyjZp3if7CsMBotHWM=o6 za(j?D2~CSro8KWt1L!By`1;zN@j8!8_vuDsM99X8WxpRM{AKE=f-^(>u1Fzgm(%47 zC*8iw#)TQ!hiyN7HC3`$X))&|Kj&uQU8K?qogPKE&Gx&YesAdaQieR;WTon-IWaD3qP3TA_j3Per4!yfR@)e8iVl9fFdGS| z0T&jRQlHQD4Xsl#^9Zd;`<5s0;@a8S6f5`MAU_DmTv>H&POYG6VUm%xc2phIo(2RX>zG?gBw=6B>5*K6A{y#g!l0&Z4( z1;l0BZ+P*g#khaJk)$Wk47szI7+P9w#WQ=(&jc)Kc!pVX<9rKySp{UXk&QCr2>rMMWBnwPA$aa|1z+u7uG9jc7jdeJuG2 z`O^`8s6t{9j3tQKhG{`8m1I+t^TvxDrtdCJl*V~xy~uJ{i*^ZJ`OS&)mK-3fF2h6R z0{ZR*DILrWReKvWX0*nrA5@2|1f2K9HHND zjE$iKi3<|Miz)2bdI8O)b8_`RmTa{I-29-{kWU)T+*ta*#itRFDg1^*YZDeCn}X-?kfHqdr+{QP!M2G8KT<01fNJn&@!7Ae?_yIe;RLV5&f|;q zp3{1k6{o|_>FKzt)p^zHWB|#)pQ4b>&pE|`AEe=~wLwBIc;^{5)@}x4;stiegL@jT zKr&bH%=Xs$+&n6VyU(n~r_u6JeX77@yg8WN)p8wdE-BIh-1wCijf#Q%=}ud4oe)d(s07)jZ!e4|E6=hrfc=w* zoU`vyY@58e3w0NXi8HL_t8LbtKZ95=*W6KdCM|L%UVTf_-vv%|n1su`CM}#aWfJ3lG@R+}3vS!2#$?KzIDbunOW%)bC$wMuxcXs!X&)?u^82lpVQa+E zy8;{}%{Qv86~fJ}(7iq1*&n*~)ou9Dg4v#S0z>6lfG;VR5}6{In#R?E5_rz@KSwM7 zD?Sta`ii}?HWITVD&wn)nqzN-hH1;ZnOwQU zOaDQ>c|^jp-Pc=NNt0!%omY>U*e4jXu=g1cO7cw;#CtvUc(zHa7UMzGX1hjz+bYNV z!V4#zeM&|{mws_?uOUAquB|60vfk@EQ4&5>v8YE4GUeVUOMmLJv&Genx*VWg8N=V8 zS_w8W#NY>s*G^Ra6SlS}V2z@^3BfROcHMf5e9^I{$dHEy*(+ynIIt~MEW{<0OhLE4 ztoyY#`+u|J71bTOH~I|f(I-uExFH5Vl+S zUFV}$La6gjN2?0uIc#CP3ctqphiBkGzoTpW!IG^OebsDz$_j{` zLa6C1B7Q85s{0Cz0|sl=dUW}E&Edw{+w~PnAjm(GCioElBzA1J!VjZOC0LuaIMV!B^P#r-$ zcKY%s;5!br&D!kWrZ(9%1zW_xrJR@tzdv9L?57(U`#G(VP7#k&?BTI`@51&PYZsMT zp-I9Mn4g6++tp5hl09QYdp?R@_T{ItTr0G~aH^Ef|5#Ov^DwbHUH(@ZI)a$1s-M$p zJ7yjIq|W`Vg4g)9!+G1}o#%Zk8*57m_GOJM)k$z9@$vS|YxI6VQ;P@)zdV1}8}r%) z-a6&48Hj<`gy&Tlm1#Dc?~HHE2B!%(3%gcy+b^SH7X8S|f&0_3C8m{A)r`+9x{%{8 zNXUyqpy)AH$LHZcPtGUk3wraegi&+?BZ)FR9}BZ)+t8oj;7TE5t2w#9nsekF=DUrX zL0MGTNq)ASg_iY!46(c_;q?NR;Uvt{MoVL+e;n%)o)LN!OJSc*il`{cD5@*77&ui- zde|0&$`9|6`!c&&C?uP3q~pM!SJOK2jojQGpYx10SL}{=eQa9&usVh55Z;3j;aT0E z2>1cB$bS^)>py8H@@Rj5i<5z_9c+1g!qs}ub?|Fo1zzh(AEPmld`hl1zz-Upa`r(u zt%sX&3o_R?@iyOV@9Jo!M!iizbyuYh&-~UlWbxaA4qs;%4OcKOZX_CgwnjElzQvjs zuX+oc6yL2(QJ1aI0!xHvq1+TRXX(~Lqo=rE)~j9OzoR#>o8@KMQ{_>qEAD5%lHU_| z%Xsx4)|%R#A@41Yaq6TiEsZYikdZG}VC5HdHPol9%Z_x(jcoTT=t&1hyUwB3?O)%U znDfKwwoVgOgska%tdHc4=H#0Z^jog$B;fE5(0h2*O_G#S*e=~6Q>FMW)Tb(WWEeFm zNtc5F5?0^p20|lxJ!QB&482Abc4gjGbhRqTnD**zcrWKUB?{95YHnog_uYaIR-(C& z2PZkQAm67r(rqCEV<-=B=NR>ZIugQ`Qf6M^e5|qBsmIw1ay?{wqhKTN>=xq!kecNX z_1JG$hbY$Tp+Om2|0E>g)e3caWNT9HYHp=PWgUW^k_-%^EgA={|AgDM%d1@?3;}!_ zk8G6rr4ir)aFI5xDHe#p#jLeqE<0ykef|1%qB3Ea5e6jF6_`-)?Hat|LgD93rKiX< z&+_gMUX{ZYYm)6-r?-Qz@~IPQq3~bI68+Hut*i|1uIISu>&f*WB7L`?Ycc(mA6I|9XhNy)v#m31*%8iOoYjm%V;cR|q{Iv_C=*R;BapEyGC zqb%S@@Lp3(+}potCcS&1EJjb|bZd4_E+++z8zvLcj|(5TmVl9Q)8*OsOmSP2$ye^Y z8n5#s`InesnFKY?MCD?z6~{c*E3B$3CZ$YQh;O~NdE{Hm=F0eVfzds3q~8}>sQgQ9 zu}mvG}Q=0-v+=*w%1(XV9<+VzvVHUv7H_8WB;>Dh{aWVU%I z|Gs-a1eXh#z`tLGx@#0dM@sP%U^rKXriifw@mBpb(GoS5euu2am!ONDJ3XtVhkQ62V7BNj&&*ixW@b}qZB4Hki4ypcx<@EB1);&&d>h5<6MpIF-B+j5s=B7a*4{Qd zAKekNjq7G;VbeW~w2)rxBRu>bAiYYZNnfD7rfIwji`mwt zPFc^|wUmdN0Fu^{#P?BOepI_p3hpXIR4S^I?e{_^XCtfD280K@iG13)@2IGO3SBI$ zT8C$FAb9pysF|DynEEs3n;0I5gh{L_fTG1kki)MQ0zm zOVh%)S{kVb1dQ3r9su2t0I6DMR_ zM6Ihe#fCr5z<~B_)d52xxUgew>)gd4qwH49(JQ#PwaLD(X#ZavYnXGeUOgC_A`N=-IIS(KCBn(bN4hMmVb($eBw<(wt2(`z% zA!>DOSfm~5stM2a6^o{zYMc`_XWu?vf8q5zb}X@X&t4TX+(){w$$T4Cu9#1L^!zO z6|nMqXmM)rk!Q5>xNGGUM2=bs(A5i7v?5-tJi zhaj`V(jg;Z?1(93OR?#HSwB>QDO8 z-lj`7!s3NGF9>m6xx72440oHHtU9XQ_&l&0W`}X5EnT3||u+S%H-D&`g z>1ZUhMc||t)$Yi+2tMrLZ+?_M$aCs+a<-CSLQAx4r!Ad>KX=p7nH3jFEa>_^Gr(MY z{899$$otjO-xISPuWQ!~m#QuIgoTWEN7S(^O`XTRAOki>rZds5ju(KnPYCu3Sx}3| zn@)M7{@#*4DEq@{cgs~z`!!&1%I*B81(w3NGXVuxO*%XKvHU2$>ZS)bf8ewEbG<-} z*l^G}wtoZCC(GmA3|rloBh>f_iod*$Vxya_@3?6uji`@$4I$;A3qp%^Q6$CN$R2(j zcu&T(_`=)Y*7K5W-NQbte$b5x&&Hr)tE9xCayLz=?UBV`X~`>|N3mH5d97mMw@@}> zKqbCGL=n~p{}9#HguDnJ)q7-Lmd4|D-YyqkdKwu?8bfX#STlIaLf_jQJPy8^q;B zMximk7-+&*Fp^jwYdHVYDC+ZEd0orUao0N6$x%T{7$93J^(W2Leso*ItZ|0<++)`M zMrq!=={p9O19}b*IryPHmcd;6$G#P`4Jx!twiUBWe_CeQ%8f;WF*0vIym=$ogq z^uUpyl1oetRr4gOEM4PEXM*4Xsvp>QtOd)p-A^Ed)C2EJSeE|gChcizEc7vixjqE0 zT{?OUKtWzp`RVJAx>b=@4DK+*EodrM0*ff+ism*SdBp;H?Qtz)|NFOoEtb-mJ+JnK zR7?_Z_FlsH!##ZNd;Y(0GJ9ESz!2ZOI~6(aURAF+&;(^U!=KiM-u%ozcoqnyUl72D zv=L)B_gItY&s{2Shc4`z!xQJp7eOZ>jU6vCHpz zD61-|`jI7|#J+%<2G56x+x8Mxr-Ou|iJInRHoAK8I}*LoXWD?(D2!L_<>SzNBP$A5 z;)}PNwPo<=o$Vo$7uT(3gOJ&;sOG6sRnPV$to~vAuLQ&Y{D+y>9P^M{)~ch@QeM2^ z#(ScHo)#Lof#8y6-aa=%Fq->beDA+){OZ|Md+r+!=3LAgHlSDUw`+VBGM!9^nWR7S zTw~HY{6txEC95w3;vSSZw$7+B&Jbk@i5wI*9-*2Y1UgU$K~ci3n&FBA_kG^lC2B$V z;z#N=j$-{}j@lUC!Uk|9LjGyeCe1hy_+PI#>ph(U@-JU|a{85cG_C`AX3D?E3V+WIC(D{hwA+KCieZXBawI@hUo1>tzT+(xp*M=-> zVQ$&Bw{$J9N!?4Z8f|?iSaPYdb%R|<`X-lcN?!$9*^7{pdBA4)`^}-mtFBk8Rbk2^ zGsq8Up|VTQf;cyA?}U?@)2iYCsW_k=HF)|oNA$rNuxZih%A36Q^9;QaACO+Syi{}1 z*j{^V<_k-s_!lqsHWtbj&vX9ajdX~QdDU@UEi5u@V{iAw$yrHe!wrD4yS9kt|4IX3yd2&>`cy^Sz!`jrcN6IFKZj{qfa; z8|mEQ1P21>->p{oQl{Ffp8#^HN%UT3mG8J5OCi)4YZYu?=Q(|qUzuGiJ?|K1>o>H- zNhHmWFMqiadrm=$a)s0#;awRg}H-_E^#4!RbU!$@Zo~An^isz0vTwrAX%EC zKQm+goro9PIQ&g45RD5Q%d`0iZ@wGiZr<+cY~C3cCw3K}M=tWn*bI?s6p~rAh);yq zWC6vSw)szPz_a;XvVE6_x+?{2KO3L3eB{?(zHABrZaB0&t0^Edf3td_B`UtwbO-2T zD#*_78XqN`W1v~>jf#?@wsqy?J{gt`r+wKEm<>8x*~lsIsm@E#zzChUi+5srywY%n$_g>hTC#~mZf6)<=!n; z&DYWmlFn(HL0d}hK5I4%-pP*Tk=@p{sduH&H?r{LD;kX$5`C*5)U@!^#;--tYwYXm z5S2|REAYvmf=$9z$_XwRLbB&PM9Q;?eV9t<_WWVU=gjuVVARH&X615!NCnag3Y9QD;MW^lob8B@hpc`1{bFzRT1f5Yb3MX4 zHXIhbHCe36M*z$Yx!(ZJ-3#ciiaGHAA`WUw%<_GgXSDMH`2G9e_XRK}LT_PkrpRpd z{K4da_Afd~xwi$t*atz>9CIXjM>NJyn$sEF95^^pD~W)#4HXy_>}BRg+AVaarT{XE zo^Nv@O}@h;gwRpo#iGv$VcwSd zxM!7-E>=wNVR};4GFR6U#Xj`x2DO@;a&vfsq?Da)`*G?r_Fz^Yi5qrXwo%lm>WMs! z2$%P1_*JsD_xc^R-&Sk(_wF{$XXTeGjr3h8ynBbv?>Ov?i{_Z>`0#?-+@qE?KkZ3r z;Buf)CR+5}&`&z>0faP_(3oUd@TjL|*zY&VGG?uKW?e1?YnXya`l8EW^m=z&EPOwt zy)B@m#g925I6f2faTbXv&o zG2!?T;BbU4=?aCd*Til!_=CPV`Va$ zMz3?H;#>n$~2Hd=YHq` z{O)*=Dgiw4{2o9~YeE_xlpzQxT7157(!}v|;>YWAtKCot1%N4|*)eaTMohSDxcf!S zq&03*EA5(nt;Fo@zYIP>n)v-z*aD@exMAY7v$@PD0LZm#0F#pnv|!zhbW$I~6V!A+ z`m{g@du^?QM_$a9m!6^%$R09uZ-+^7@kD~^A8PK-h^R?be)J=a-a@Y!ez+*zr@6EC zox5>V3hWhkEKoF)NNqW$S|>!GFqq3UczQ;^yHpPNj=fwuD{i&?+H(iJULi9S+j znz~a=`4jXHhP)adA%h?1NkC^gc2d*EeSvPcAh7EbSg)T|BJf$5A!Xv6kRqvbxEzNB zD<7_zbDaJ0)@Q!+EL5FSBu-wUw_5$u>#=j{IFp#p42^iJ{9r#w4-Oo@gHcIi|c`HFezSNNIA>Bk}B$HV{a=*)n6VQ?=v#L1D84O9YmUPp1 ze*c21E`^2aZMD4k=F&UaCSdonroaivb$jh~rPnd7yBv{=l z)MxVv^@ta_V~SEh+xk^9T%eC+W*IYp=|E-#=id~(FUC3B;+Xqg&GB8fekU_=yTSW1 zP>(fM#yf8HdWp|X6qYJ(^4l}0e`nfJSblIit&7@2AE|Kr#_EZjhG0{{ z^7G9;FOC=_C?o_e^%n4(mOx(KdQSQba2E8&ofOf>FRxj(&3o~swA7lSs@)okW>62m z*cDm(tgm?Rj-wLQ!J7tCySbF?u4gOW(=iUY?%820QQZ0X2|xz12empUcKqv+m6bB?SwG%iJJuy&%_5Y*dGyaTK-5&D z5F&UfP(M-hp=gO|!MjgLSg~DM7G^y6L+p-o8nD|~G7~am$HQ3!xe0>5Ggrm!1EbcY z$%Cm|Ki1#(YNu6Cptx_=k4}Jjn0qs$$7mqQx7ix7hX4u_b{)zOy23N4&Df?9W1nsr zcLDX{>`kUX?68Wf(_&M*Mt_#%{IR9pba~S{yC7H`;KES)kt{sx$9nZGcXk!f2^#|M zd@qhWt5B7Tb898?pBrX{3X7kFdvU9uVfX3)caQ@b3=~o?E%!4Cv}JzH|GXSlnd0C( ztn-{x;LvZ+br*_+A`aGP!=y@?BInez6@p4P$+TSDjn%1d)pAIG;U{v*T9MLuQU5(%BfPFA?MKHn4Zbx%zW;<>z zGuA}*#CAt&&rgljrARaIDc;5Eh?eN#W+h#PKyq1kt^NE^0jA*T>~DJ{@kV+1$apr= zu8*WLtCG{Y#-+6+LMM%^Z&Tg@7?BW2leYf)G`FMV4L82-A)l&y!zo_XsR_?8yHYqu$qPk~w#1(wOX&KlHBbU8X)CxL;xkZ=V%4>gSCh zUGA9-LQjbBs~>o`JzKuzob|$Qm0J%WXL|MSnXwyBN)4wT4L=v^7(vu=_JVtBQBt0x zBndh1=sVW_6dV>p| zd86G`9vzJvB9s4r7CROrFU;>|SivSb=Pz||A>h}J@TBL3O;mp7?X)V|$cofq?p$dt@=BJc^xVi( z4P84Z9kvYxFV{a}Tt;2-8kG^vS~*5cJU}zz&4auUD)qTumY?{rj*1=eCkVTmftBw7 zSJjp3O2sMuKw_L@ce3ygG@mA}0F-%g(I#>ca0x)dCmC6KDOiKEr?W`kiymery?K9* zx0UwB`R0=&1Hjk*&_F)}uL zZbsZ>T1`(05YYWukb}6$jJ}~xAFT79I}jJ53(Ty2U1zy8{h2qZ1A8_k&ma4r^uYgW zO}%pNF!>I&%nfzA;I$8@G|XlSJFK~F^MJwY!%&EW*#e0|{oRWug(kwf&;s~0z#W41 z9!=O>1=`w|+mOhMnL00Cs)JJ%78`6@?cgOXWk%~$t=1r~R$7@dIZc@S2j37c^rrTo zvd&a%uMgUDGe8$boD|g$09KHG^~V~xDm$VS1%f8hK3MYO&S2=O6~Km1|1PVO-Hud4+d z4c~pR8`#Q)`;kCy#taUV8Wa23{Xs^H=V^c#)&#kTknu9 zjJ)3{E56fzH_^Iq{KY#vxM`5k`LY<4V!5Rz&Yv>}ay_*Av7fEv7d4)>ybpCOjxsgu zdY#8nEQD{QBKnd=WtPz+KYuz`Bu8 zei&cveFA1TJ@9n*ll7$2LjQTjC2kI|crWe`R0sN0O7pe<9_~ zi3q6A=vXEr`&Ng2H7kEa)CLs#l;k3293$$S*`8M@J)Nn>)%j4XBA$46v@)5mm zF=ru|(}=Phi)Fid#aETBv?jd~TGO3?h4t9wH6Y%6_nE9JZrG*YC<0)Vz8CuoK4rUE z0fgOU9fEpIaw-rlNkMKS{83+U*I(zre9?C%IN~5ZEN!JkR4gUDy)p!Q>3R zG!vG(I$mW6WV;FVoJ;rKE%+TYy~7FYRrPp=W~Hj{%AVa5ek8}`p@k~%xodyaTYlH4NdK>;JTamL@T*{pUHVn=I02vSdgJ1g z{G3^YSP(C0LibLt|uDKYt@|A`D+0V~>T$(&#YK3cFdpvgow8T}J zCgA30^QLp@Bei)OjeH?m9&DY%1%_7*&WXMIHNfYo6*SwZQh)En;j4=6k?PAE^zeJc z7e{}zHKtlZF#>^Ba`~s#>UT_@e)`C;Vjsyz2pReY&ApOq!PYi6jX%y*|7`7Czdu#SByb@K4w zjWd}ML_j{6_!&iG&9i`cdA@g^RS3gd@bY%w3*Oyzm;P(;HBXS55l$uxG;#HuIspZR zH*cA0z-d`(M~-cBSFEf-f|xA`Ifq3lBxqm#t5xDP&TaiWz5x1umI+@`psLo3M2Ere zwG$GfYqxa%E6p3<$kj^!SFQ`8k?Bj`Of|1C9p7S0PPVK@jYg-%z(YoXq1jwKutI3p zm(`sjS><&=sS2QY0m4xyy-RymOqpE9G0s(S=?rDg5rACSu6JlRI5-rk^U+07%6c>D z!u6TGfDijk6?WUimZ+r<+>#PndpB`>504`zFS!5ZZN+iBjYvM^Q{n3=ZKE-1^O^Xj zsI<;c5W@DnNjsJUVLJi{y7Dcs6gGUquM*Sy8}nS4-d%uVn%_u)Bwo)wtEya@W&0W` z8B*ybD*4p2qCy$YLXY(G9bywiXajo4vgc2P-PdSq#mEB7ij2l(sP%spQtd9;D%FKX z>2d|29e|e)+um^M0)I{G+3pwM6hK^E6gkxz-HM7zbi1O4ho%22s3>Cv1uXI}>T znh=-Z)3qoYR%7(UcI~x~^VKFg5o>H%owGxK7Z34R^y$$q#e4W~p2FTyy&9k&* zQbglGl=kNf?*Q_!MTf6u7@3oEWsX$2OT%hyJc+7FyzTuv+W&~(X%{R=fq3T3r|;Lp zg`OV6`k7i@AK*x{g+P9gS(a)Lwljf&hrdY&qFrehO9(R~H}5DmOcYsh&7BuJ7qwEB zGVBtj{6~K6RqW6o6>;=r=a=m8{edB^G7!skJ0|G zvihAoI_MgIor+q%CQGLP8Q@ODk=$gg;`A66F}Zod<$mExrr3eeeYrx1Vx3DoEhFT+)K(Mh<4m6S4{^&wpcR+I`D%=PMx z#Zj~ezewQz<6nS2@i_SFOK+GbLR;CxPSQj@LFJe5-i4&XKAY~0TGCyCYCd%4EsO4y zlO+#Ks8fm0fB?6@(9m(+)h^47|BSKq^*A~}SG7D2np8dr8(pgIX>Nx3Z63QN-hS^& z;fXC{s@-hO7gTNF#OQZa9m(n?RlT!3M9^2Z^LTcVd_>}j^5HxWflGn7<5}QOueJ_3 z7XW5+5g6=Va& zio-DO^7sM;BioZ8qTf5P4d9+O_3)MC1A_vhMAQn;;LJAg(Jp*cCU7XmRX^MKcij}_ zBj%E{>-Bs7X4|@?l@y>k@Iig%nQo<7R}<3?Il>KY``7So>g&;09J>-#Z6cKw8_J0= zTjz(_KHyfG5qw|iNC&`f>!RJKOgK#{m~Xwk5A!&_{v|UAT9Hzk(>X~ zNB@89y?H#;?b|?UNN zF=QFr7zQ&K%X7~6y6)%tKKJYQ{XKcz|K9(7iZSQsJkR4ij`MxIkM{xbOk8giW5RN1GwuF(dEAv5G%Vg?9hVJ-WvfH+M#UBq2U-ks z9d$hV?-d(DRr`43F_joI5dG*}OMLM=wEBRb zA3!3a_O02o|J>#4zE)j+M|p|H#GOK@k1FJSH0it2ljp@KXi=NOu80Em_a^I_S~xSO zi&n$@CRiOW-K^m2nycH>&NL_XtH9K>?JUbPtIjk7GGRnCz0&FJtN6V2S^*DyM?w!e z;i$yIHa&W6*x+;BSqDv9CDLSTj&3eK=V8c}&AXtrv~u_Lr4zQv_eSKZed4uUYvdm& zE8|yXTedvg))nzg2uTQt~+$4bsnfl&@ z;=lj>j!N#@3medIc)AM^n%as)9dCnM9VM`Uhjs{7(S5z{3;$5#O?(U3!BE~RP^z6s z#0S}KF>8;zZ2?@(D|Si0nCyF9G>RkE9O?NLvV3Ryp4TvcCW^Z2)z6})f2*cjkB$lSG5;Cu^ZQa;KS$MXhp=^FQ-hX_47lf&tc zMP$Z;>4I1xM%+xvvTTkxL$6v33vD8t`iI@)u@%bC=H|-J`iuo$E$7 z7?UTbJ59lqDd{aApu6~Oz2`UrbR#W(6xLo;?qv?9E)(o$NI=LS2gJy@Cw94Wxg#d--!Y$$_^fowQ z&Oh^GvUp1v@$u!5|L*K)C>(!Ix+Fp-W(<1yB*z~G$~2&0Nhsv(DTtAT?Yfx~z8XYL zyBy9OCP!;IFYk_0jdXLh&wtX(y+KuOs%$rcw!XDhl3m&iWIay9 z79WxCQ<5$1LAu$Av9#Fxrr#us>=L&Dz#xo@)z>)6r)IuB8BYuC`}DA$ZW?u{tfVTx ziRU?f(>0A2=bYM+YVAGE_e;{6L=Q#wcvzqjxG@BCz*HOS#I0u{C6A}B6b~Gkf3_2y zvWjxk%~5?6V}1nYZ}tAfA7F!j{R-;D5_JrrE`0#s6-Ze^EY2I<`)PhejLriv5c!o! zR&f`U-TB@m|HQ= zXxg0N3{2!%@Zm=C7~%@8k_^c$ZSo_UljqYMzBLM0v`r1XSd9EF*FmUF2eoFVPp+Dk z-Kq8rl=|+`cV%IsIZ!B!k+m$GR22l62aaNZvXZQwSz}T&ZZRKdhy9%EN$6>14vL^o zUXy`Id#E_{!9@YV?nriiOAo(7d#?^&oT?0jQx1((x}t74cFUM~{M?~gvD=fo8tD}T zYdjn~eA;0-0>Ja?yPaaBbl0e?2G^t01qx3Oe=LiRpq{R_OzH?qg z+}P0>4y&Fo`p@oXLhO6)UR3*i$L6ry`}?etW2h@rGAgmxRmL)9KRj9i(ED3J2C ztH$zHeTPE$oLt^yzh7PgjVPTcu?Q-X{0L|#@1A(cSnr`hjb8RACR--8PJZgO0zJPB zO9yD|zT8Klo4Q{gL)B8QZLzF^2Dv`-!$XI)eaL=V^WVHC&c9<&5KRD1<%Mz4HmKOj zvG2V^x;=$&U~M6@LPY;QCep&2*OpFLw%ca0toatIC$@^;{YI zBcyy0H}CMe0msLY z!b1FDFmBtC!Os&+N*#DsA^-4at+Af{Kt&+&ksaf(UX-_&KaRuDlt zz2yA>6S}y_<%+H5-yEx#QaLOK>BCz3%_@H~s;tm2BHjKNY*`gkLHF zulaYGu`4|KU{>|CTaT?q3zwzEfpQ3+B&djTg26OYvvfTo;_*WR{rk zgZ-L3bS}rN&fTCVM~yE=j+~N%j@9OFkG&NK_7G(1y)#J1^k?7&`RM&uelQ`P(C3Kf z=!mk5%U?61}mU^a)m%iDh+fVGS z?W`}K%B$JY(ps_Ofc}1^IZfr0*@0svc9OE>Jxro`WL*l;X&wVQH=vLwDy_+)SFWnp`EzR2L04M2q)bMd1eWGj+gO!cf4cSaAA3AmUsZ1 zV0aiix&yST64A6es;6BhH>}{1;cZ^sV+autogADmoLF?Uo#`5`=$}^H4P5y(4e65n zm#eMffCR6TI{qV8{U3g?b^n`dDE{@-v6LF3Y>e@U;kp?m)49u;dg{==1Bv^&oZzv2=GwRouXk9XQ%0||)`I-dO;uWlXI zQs*qIgzs_|N?3%TrIRY=A2T!+l~+hNOc~a|Ge?GX*a|uWM<6ra7>6gcFBAY@xVv~n zd@n65f%guH5EvV%_pn|*&FoXLFD;P(bMuSmkpm{j!ceDV<=@s&RyR42gnMEt1b*bipt593PMl^ z$H)-wua^-5FB42;5?A^U%kv+?j*uC)mnZ)9G8{gx9*eS-a+$;+j2e;qB&D1S@h15>4#P}#A3fG@pegADL?-bK8BcZ6uZ&mr;6iLeV(!B^Ezc|{=F<@Hbl|j1; z{Z9tYfKF^NdWPw}uH$?nmwfsH<(Ey={CrAZ#Q*RQs~kip3Km{N6i*lemJFIS^fV<8s;w}Tp$$xsPyN7{q(=9K`*GP9p! zO|M=kO_hF30oYqD>mJu_U&wLrvGZq~XtK@~U^o3CDdpe4M)5Fg7z8xLqCC5O zYL7F~XbgtnM($tv4i493Fa}GRb9-Hws!L!Q;8-^cQM$t~G(bnRs+2#M8vT1~y4?Yv zJBR45)uccEG6k&2OKA6>kQDyi_8wP)&kY6!L%o2OwiidOy^Nys4Rs0We6YFRMS9lnza26Z{xig&LAVW179UTcyc zNDcpDJPwKR(^J{27IO;lVvy-kS)1s6bS(Ek*RcbQ)^>Xxh#PGn7~v=1!K`wD=WL}^ z$3MzV{B!CkYJz5Q+;NjUTiW2waM+WV{#c;*@2O?E52it>5#Mu|7TbeCQAV$c?{$5Hz#DYCcCi9o{)6BU ziP!*n!`e*bnq~ZZz7pSMvF>sagu7LIhIFY$ltW^JEdBOz#c!dCPC$5?j2C1n zesgKB`{)(jhKIG^$KGg(dQeA5X-O@$)#@m*Zc~lDuN(kS6Zg$k`_?q!f`qI0Z~tzN z!9OnwWIng9M_#}R&GzQU>jFmjl#r1%P2LCPWL&BaH6pE^+;p*7&OP?rof(iEO665 z)>^8)i(N_l1NUnz0W&f8_C|@A z4-iN!QjW~)0eUhXR9x_G;-dy++=jxI9i>td{L=Zp&xT*UtsBCldV;?-yMr448ZD`~ zOIlX~{k)P%DqqZ+*=0Omw7X%|GG)rQ)*CYJ5f+&uldejo7d}O>-mE0ARUQ0^TO91) z)+YnwJ_innhLAgKdtFy?y02osi-bk5g{AP?O$Q}}4-w``=r^x$#myEK3@sjmfg%?} zn~wFa#p3hswqLfgS*WU0ZHbfLn<7b@^TLEDI`SJYpk2!o0t*0*%M={(S-1iCSJyo| zjWQ(U^1FAUx#cc_qTmvu?=F%j#h^vXb@+muU!7~EluPDJkx~!B2yrw5Hg6F(Hyo zG9appK1yw;c8>AWrZyTEl4@T8}A;(#nk z$_WQos>&g%@7kQfRH`mNzY#nmj=w$LyT;{?BoOyVmOb=KvD#3s_}43DjsXsK|?hEYGA7%o|nVku|)(NWD*?qnd+)&i&#?Pd1j z9Tf+e=G5@oT(r^JEYPRQcvT}nZO`2(ZXt1-09(p(#dW`5MsZTE+(0rkkftsORDlG2~ZDB*{}Sgpo6=}w#h=jMW35uzKT?{7^e+nlFu2@x`Q5Fowm8eAG^*iJKu?aKSkU*2rNUqb z#YyRK*PuKmrjj{T`wNXHfpB=q)9%N{rGA+Uqoqawo}68{loceV+Li#l)WeD{FM+Pj ziK@cS4K29sLOdHW-ma##zNxj?uSM7xF!hJCfCF8U?q=Mhv-k~I3CCcrBNa*jMn~5+ zsKsAOlrGIzBTWi+JoDW?7`5=OiWPz@u}=5&uZ$S7JTSp=t};ns7jl^SGx%gsgKQ@Nk$^ZL z&fE$pw6|ykNFd{El>6bn;P%p6KGKk_Qm5OEZ}N`Q`l(X8hf>ErMvrdS`S3sb{z9w~ z^ky5aYhD;Zc-#d{M;JW=1IW7fK!Nh^gKU7%1o(jbS|2xmN=fV0dh`RO_9YJVlynpJqyz4~zrrT*`i7;2J{Yzf8a- z>n2n;?S{RJi*4I#RY%74CQQGpNeEDhTeJBI(MS>ij?dkFuEU;PJ|Jf(|1amagcyD| zfzG7VIgQr#LEyL>ild(mJZRNaHH4Y36Jp*AzQ(0Cnb^FLm6QChTV;v0!m~YjbMLoD?Hy{R8MGGoN!cXz#n4aKEsqTAJ={uPILGOvKKdiRlb26q6bd? z+#dUFhg9(&=L^MC{3C(%q5zwSS**Bim-^PTeS)#O_Wmsvb@H)moRVo&AefqHBHCXT zW6XK$)-76KqV^Vo$N}jM2j+6*sk4{aqUIZ8czD^xa*_daF>LOM1g6g4NW{GQ;wPR! z{geEfb`qs301%~hWItc;VZ29Iy`&LxlO5t?cx#}h2ktD?nktmPfD8WiQC_|kc^^b$ z$<5sD4~eBAAc_U|CnyFnP^-JguQ+VVs|~<5>t8cp#h(1|u?XY%RV)CsAXoh|KtAh# z1nvNS9BOw*$h6WWxih`81+XZmfGdgFaH-t`X}1`*VF$OMhdCohU~7zw3n>3NJu}O3qM!$)KtW*hEHnu zh?uKRPvibL5#IuK`$Ye<3IC5zWBUQd6TI)^G0;8s zx+Sm3L9`E7-6aKQX#ou%%LLBKP^Ibdy7<;Odey|+_EWiW>^Vz%g5Ui)06g#?@)`f< zAMl3Lu%z=+uk9~9Q(QgTmLFlD{@zaVQ9^La_TqO>Gu|}?j8qx zKpsknG4HcySw|WZfg)YjPTZ`cj>7TnOH(|_a8c_(-Y4Rh_ZU3h0hz6pnYHMo0&_%w z@$aS>0dSXloir~kO1f4|$T&1|7*nk1!~)9lH}h7r0`HNts@zce@@O>Wju;Ta)^1(% z)y>+z`SSmQ0sZ4R{(0IFro|SKXGG$5wbCwg$$BTeX1%gr`Sf&0mtS4id)nX+iV6LPXsYYX2b)c?Bp52nq}vIP`ty?@W_SoT;toeeO)p z{X)@+8MeFGY(0B@jRoN*J9F!27>BrV+`f&~HH@x|&)mIcyS=UIzL1pjwBg2I(n;Fc zKGXsPx>T_;UXR1eo+Qy^Iz_P6YVkj!rq%{5JkBlG+SiRvw#KWu^F4*P16uE!;xY9m zT6M?4V>6=56U}TzH!a2y_=|48FP6AB9aT$Os5fAj_ni5nUu39da>G@GCtxY4%wnYU zbkSj&7y+PK&TJ8usZ+S%?5-;izNSb4lEHky3v@%MGSA)unJpR`u2dxmgtwFYm^f5H zgO2rI;gWtd0KPqP|1qUF6fC>Tf$x~OFtj6Ej=$S1$q1<~|JPQH*PZ+kvv z0X^Hgy$IA)Dg1@w+#!Q!A-gN9TK3`&u4M)?K0f_zK)?GcFM>PxDNAFOWqjb?hIsrX zN63Ry;NIm`kO6_}I@CST(9XDd9&knzL6wQ>`13G8pufOf4y3q+=B1nxBH2V#U;XCq z2m-?A@$^SdwE-2z>Wr1*``qg>3Olh{=~A41ji+dpF#I|&h)AHPz~#%TC(4wC#K6)hYG~BS{JikNkxi%0iNDdxGSF*>p+gB$}4ur?}jUK-Tf(@#7E4 z9=qPt9qdC@ZrNsa-dd!|E@3oen^BsH_t3<9l3t}Rg}k3yrw{D^_i$B4L5Mj-jl_=yc+^qOHgKp^pZp^ z&u>%7iAE7j9w#cCx^Ew3;+S!m#|1yD-K{?amn@Rs=~|uD<-MVQM)<*)wD;UEHG51| z>bb9Uy zeNZMQBRr;6hs*5coWI%=5SKX*H!AWDKF4PpZC&=LguM*8vyjzO_LzCrSW0KXGDXOb zo;hfxXs!M|7a7$XytNzw_~^!@=}sYu&qj$rp~M{dMV?n8a8q+*dPIq2)gX`qExiPA zPY(2k(;dr)eRJhv{$w-iowb04uO{87!?t_LM(w|P+_T=JJZL&qTenEvU}$^DCH0!y z2d*-UhhfDU3BKQgSoQL?6USYnzX)acIN@%QCOi4krJUoW?!GCDaSZbWC8Dupy{N1t zSLUE643++>08yL*_##kM4d|`jvGsmu9!jWw5f(NyKIgYKr%tUPEL5fU%hES1Oh2l|8lrbQy%#<_0PY-l8+bN95&7 zmMXaesvaxP+F(tS4GN6fSJ}lIW%rF1TLy1D9ECu?S1v}ij1(RfzGR&wpY<;eIgC%RHjLRLOW~6SP+u8Bo05Bc@#k(&jJD|yH z!~o?__p{S5nd10P5!R>8YYnOg4l#Y*se?`UI02$?G9A#5LL6mj7e!^PtwI9_?>TBa zOb^-e`O$HV1(&Ha4XAPU7rnh57Jy=J>U+ht2Lt0hafH^`(K%hRr`XaGEp%4eAwjd` zcGvbM`E7;s$m@g5jH7z00R0n~A1ID5G%oSmWM&uBzcERxlig<;I=D@x#7h>L`foZs zt92S8k-dS0|O77;O0zXDDRHFyo*Fgf_ECCqN{UbV^o zr$r?}rTish8+`=>3+mI6XGG(`WnMLA5xbzF43t@HN9!DuX|>B9?G}bh{)P`3QNNU_W~Ao}h3%!Hh2e5j4mkpI zYO;vAZj#6jC0+hPo#IK^r>le4kL(IzR(@?V2|!7crWaq=c;u-SRxmwm#J4+NeR2uROT$${$ z?#=7$K`I?GTEgh>TGTn@s^*@2_+MH8pm@G@$Xo^#sVq>!B|XL=_iWVPxG857Gy|3UEh)%q31LT?ufyUQ5bPML#j)P$ z_@`isZ-pLIZ$Bdp+4h_m0JVU3KK1A}efE~``|P(f{N<5Y;N~$S9%5#)#ey)1iQfR} zr5Amf13hljEwBc?BXS~znUp7-Av1^RHI}ye!Xm6^;l15ZPgJ0Io|a&C(a|Xe4~zp( zG3AE^;_1d`9P++%q2;CY)nKvT4L9z~3FK|xcq+fu`S!Yu90*EEZ2H`(oFb1sLwsds zCxlIbGc|!Gf-b&H` zy!!Hn-A_f8T4}Q%wGxJx9vF1Xdd*$*!PmC;4J=@MaNF*?+mt51C5T92X9^&MnTI?) z0yE;M(h%8&3RlMv=Wy>9GJ9%*EYuQzUfV4KfR^SCmnxstGikk0}y?I*k z1Guw`M`0|SFbLZFEFdZmZ%`CS7#?r@KwTac`_}|;g4h+!KaVW{GTZ3 zWLq~YfeR$cv5Q%Ke8VB3JEyR-u0_3j2I3Q4Zw46iYdy26w*Tew3rwg7X9s85-40G^ zSrW?)+lnl*!^>Ry)WKcIl_z>(^gd{V&elKr#D*v2<57C0rGVy2ww(5|1NQ^1P}`f5 zEdoq!$^l=d+sfx*OHe0Jq!oT@m@UbjVR!q-K~(5^Ow=0Zjgv)7ggVWmoC0e*8;Y^g z-rZ?@ertaBK|PaW8f4y;Ie^{1Z)IueDM(~io|6qS(}qC=LE%qn!5f^9<%!mKfl55b zC?|N0_yGTz*nDY&&-x_QDRuIWjsn-)%o^`jv_e*FhY#jF<#hGk*CsrhAXOBVk8+to zHASFyEh?Ng?$~q$puHA`Y-Q9zW$=O|*WLP`_co|Rl=Vup>Ev8ruu#9FvL{yoYAV^X ztF1yuq5Szq^8y}Kta_q=Sm({K27<3vw%velZ5gH&n)a;;g7J0p+X2H5mfs&DcxVNi z?{3Z)_m?huOTHQvxOg!F>%Fy(Cavx6;AJfGJOvS*n-wfv4Vz5q3*|vIElMl~PuF_! z*h(TJtrCC6YgNhWJ;PDe5YW8Cwksn@p|RX~#2c|iwVnm~QW-bhdc5iYGh>)47?=MA zDLi??e+0L_h$70*A7C0X$ER^^6OYd25xdMRsnh5zo!7>@f#*wDsyAxTp{!RP1iMxa zhi_WMaLb9%XzI@yl!_c#6J-~xu$Ux3aQ)*mU@40}&TPr79JKYmP@_QAwD9{{={fVW zp4r#_CR{7M!hLe)gwfJg1B*f&UdAU$#%r$S<6Azt{pFxtoW`~QhdPk{vie|f-b~3# zxM&|4;eoeqB3Z-kVSOT4G@>{pa$mB}m?AwtZI>`}Z>eyXf((g;IXmdcp=J5di2=Q) z0xGM&9`LCS+#nJAJ^ISCpxw_I$R1hpf$D8WzN+rnObyV0^eVf!%8NtAKuN|lQ!ZFr zC5D5afrO7)dyRK{RD`C5mGsZg`^s-LWQ#dBd`*EM@fod|i-~a?Vy&;y+K~r`A|!o&>7x>R*63J_0#r9wq20_;H6nI|Rljk55FgX&cqCm- zor*;Jw8y@0uxk5d5A!a4D{Ca;*ag+#_I+1nALoMgZ~d;U0inKiUY!{=u$bw?2EmWA z7hHHA6%9r4z}E-KlH^d{>@qGA6@~3xhZnxW4mn1 ziv5Ufjr`gXD^ZhLeV{b)DMGG&-R((E{i&D{>Sn-ZMwfL{iE@c=tC-OsQf(sNYVxHN z1iM=Mb>dPBkbfJq_i)M4$CFm#%UTMu7X#(n>BDPE&T z`*+;DY|4@mGaX-3qhN5pCSbW&d1HFr`jg3x(%No_cPO5f5hwCw__RCj#u>^Fos^5N z$9Tr8AJ6viThIOuZWx7!?k>FHXEtw|j4yYgB-a~^2T*R9MC9S9d! zb!LVhDwXgZtubPOe$r{IR80X&r%dzxs^<&nszuy@*faFAGc~%u@}Uz6S?-9spB-NE zu>OLPspfM$2X8Rak!8Ru!(!(-7F+H8RcWd#KBInRAe@Q9ndU>58WAoU+m1ClXp;C{ zugMt5DHgMEK=kv_z5^I?_`J8XY5Ul%ZGI4=!-96s{c0WQ^7yX6*?{xaN|SQ@jqUie z`su$;spG;Sci16W68;s(xVK){O4z*lRb<*6G{$BzBdk&Q`nRl)OY+s!Qs3icZT97J zeYwsf;0oqysZ(P}wkRbl(OR2tZQ!$XKkM7i{zTTD7B-}{P(O9!nbdIg04N-?I`pet zODILbupr4303ALA<$@e$;D7_{)?@*giA|FBuz~Juh`^q1Dwt1|%K7J*RxWy@{0o=H z<`RWE&u5jR@N2V^c9-=kG7LUJvI{LKZ?Q72I{`uuMs>njf|Vp)2JK>WSY`(228u;N zNJ02C=^|44wEF^dHmE#BMao$ozCoOXw4D6i^{CKYMUbr|L z=vvpMAzF9!(J29wL|j37`^Y@Fs%S(nNH1Jjm{v49R@thp+vjB70`wQktS}_ z@o;yG}S7ef!6k z_ulDUF%-7Qbwg%b0VYu&JDj%rWQz!BclSkpp&SDpEak%0uKMkR%~p%^3#GP{d~yV; ztP>ZgiTj}=RibbYXmKChApbnyyI>r{DQm(Z`H?te3+f{N80UNmSBwK3z;hCS17!>( z;yY;FE{1GO>}9VyeE_sL3jlOp7B($=3Ag@6rZB?}Ehw^|rQ3h;__6wx9#QAy`GF@a z5@2h$#=TnLwvZoqB_hBAhw7FXnwss&8|E<*GeaBm%zoX+r^6?#%)S7Ve@PW=VsmFHMwlz6%-E#NX==MzXe~3&ze!q7x=pbJgq`?(<93dGZ=5eM3iCj|Sc>K75UUpl z-A+w*p2#+L=FlF9trppNj@Qe7(fXv^vASz^)rrj*;a*NCJ>yQ=fB{2;D7yu-iSZz#@MYn(Kfjz(NDK>58KCi#jk2ykchI z91Tw}Lwuf3pqYKgtZU7%Cq8o9Qk~Gu?NhEWv~+}>+JCvG({d@GeR?fUAy|Gu8i0+7 zaI9bTa5!q`^9|P>S6>+rHHoeU8ISHhM9y3AbY$|g3dzqn^l}AH#1xNhfCjo3icGQV zBWgiA8!u=8r$PA^=LQ*I?BFW#+Atu-=~clP0>z?uPS*WFoPBF>vpaV4_45n_N!H{J z035Db1|UaVR@fkvoqf-}A?~Xm6N>M(dI4O5C%*O3gt_yc5Wwyesz3`ZH0QkNwi*nA zuzyVB-l&35O^6A@pS)Xp#?e(=)+~8#3UL&;53B?Q)%vV+B)IrDg?eB zQJR;iTo>6qe6~*XhHpy&i9FJ4-U+&_$GulNh#0Q*xnYL1nsx8?`(=`7qL7h;JG=aV zkOt(*@Vb=caJXLDjUe?hQW@oUG0AgEouxfvNSpuarel9UvXY?cx^yn z2l}<`U6=f2!Dt8I=J94w3}{38FeK>PH=OQgO$Hh;Js-<%q|bF2Rk(~+5P=1>jD=2( z{gTm||3b=J63B}*TBg)GrS_Egc0)X>Z3)Dku2?_bgXlxY0+eZy^~$m8>wxHOKllz= zpyiV$;VMi!n;lTbU>dd%-Y;>`p1)m1*QHnXO93D`)$_I21MWDhovp$&^%dwPjLE%s z_vy;;me^wAltgT%KC84ZG^wjNck}7bh1UoBQPNAfwm2uu)#HnznnCM7cQ4Z9v`&&Y z(F(f>Tkk2=!x`t-(y`4Ms!JHvFDidb!T_3yV3N|)%m5wuxe9HP;uRoQdL_?Amiy=; zTDZhY`sB!KpX*4e8K{6M1j!FZV@8FqS9&q5c++wxkp>IS z-?O_Q+|dXX$VvjGB)-F*e0iX~!57C^EaG4A)?B}vWGi1xf2=DDmwS1W!BVYqdqs&G z=m$`jfwpD7YF=?$#%I>Xo3NH0qn~6dNr5w5>b4nFeWo z7`GrQ7X&)?xt6XozA-8=RL;{(qj}6oETLDY5~MuRQ}rP8;P^-a(clnu2fhLhDdhq) z+2ol1qGU;DS($XJ_4#7;mFZnWk1W)~_p39r%pLQ-bD%GR3^AYYZqE16M03!d^+vo@ zxbllmkWLkVe)-J@pQv7;Wlk+|$rk~)8uTzoHdL&xnJKRYJ!`hG6dMg(&;fJvGKck5 zd%avxA439(*Vg%lyKRNW9%g}_&Fme~4r3;0e*|$~*1R)76hP7>KZ0Q0+-2Ug)cOMi zMr3B#z~9~s?S>uv5>#}$I{#e(!DeE`#|*bj%8k4T0J^{;AjUoXge1uYJlKeZ>_(0D zVB=SkZ(TKf`Q9?7sh;`Ik+H@&z|eW{d=m6TJ#Iz|O9rHL?Z-qATln&40n)QQIk7Pj z39nYZ+A9-mI!)V?in1DKEI1N&W*Q7&U#cvua7fX~uhly1X2lQfKI+4_zGMIan53)b ziymeTv*P(Ef;~$kh;X#)B!g?4#JgskZieDPu}Xpfr^KtSSr`(ej~v6iipmzvxZ&%u z0FpBV%YFeg%t$)Hceg!PBRSK2!I?O=A&!<46*4SzU+YChJT_!lCxOlYF^lGeCsK?r zENea0xJ$lojV4mo8d%C5`Vy@A4GfEo=PBy~rvK75%=Y9FzxN!k@_Y}NVPhVcnZaL^ zCSYc6(AA%W1bdA?GOnKYR756kT9>Hp3am7@4{B%1@JFSWB>&vJ{zMJaXQepA8G9q%sKXwdMD#o}Q-#v!!YPlmH3U z_ESt*alksOHhqcfHQJh?cz;Teh!>CROkm_?g8v~jt^HInk{pinAfk5Vsm5z#ozL;Z z_`ee@)$CK&iy1z-Jq@gK+u80s1kELk(vLkb{u@8gc0=Q&E_i1M?VWdj=STLq{5IOZ z@pyDLAnSB{=K0Yd-XJI^^|S|W8(yGDy#zQ}+lysawXYv2RN1RE4-V4$ajzc5Z*%)d zPJ@JxO`R;3*+F*X0LbM$`4t;9-_JD(tSm!`>_j1~e0YFxhi*qn$vIb#1ExOmVDG$? z-D&%mbyWs(0W-0;K9u0)NtWKkiW4%4wYaGT$qh*8KPKUw43 z{`TDm7bFZ=9Z|YVX0BxcP3llG;^mcDI45-|^|Yk+Twl?I%dNFc%QUqv7~oq|pHy_(POZ%ky?>0#JQoG{ z*YQ3!9SL6Zk~dBGBul};MhhzXi%eAWG*bhjn{Ac?hDfX=GrSAjzavH7;ImP|oI@`! zH0+R2&9F(C-6hv!oZvq)fl5`|CKD&niqx4LT%L#%Q&w+Hq`G`E!e1A>|9d}>&xxzO z9`IrwLL5VI|9ZW0;2`n>5a;w-bN==5{VH^pVPmZl2YMqrRz+)Np1c&(2e+>*GDDci z$c;34{nu63D1E5gE%;#_?nL&F7Qir&==@*+d<^{J0qWg=ef6?8f>-m27ipN-PWAgI zJmTKZJJKYY0fL(@6?l=B3h?~lv%W+TBV@9ZU|I9C5~e1^4}mq3v=|%fC49e*g%xe? zw3oQ;Dy*ei~(tHxp|r2yKYtVmAk zoZk-5TcdLbS{QUI(B1Spa-@<8 ze+&j3rU%6Qkfk$cf#ME*hT=5_G^@|*YaZ*x{!{zMF@KYQ6yJp1T0d$RM)b);37N2) z7kKd8e0tC1Z`VH;u!w;|bJV?zl-&qV{|<=Y$UUq9@bVXFRn4z*I9grd+~^3@FS%#Jye8*>6b#YY)H8zdG%iw|$iswa0$KN*yU>%;ZC;gd*0 zFM+0$R`a;h<5`TnuCYy>6n3Z)$ol+oF6WtIEa1Vi#IdzL0d@QfN9ms|ZT)&?U zJ0W)6$vvS<^eo4fN2i);siY6Tvb6W`!u#l6>44&r-~P65&H{CfTf7fK@#^{GE6Fy& zoUTA}vu9&zn&C)ha|6!V3HO*v<`T1S8!36za0!(x0*(bJfKz&MSH$BaolQ`Ic6(Ah zILr(dy?&V+dK8FAScg1hh6(k(KZR-T-($6U32)485f7ubWkOKf{p*mwct6JXaCF`%N1&W!gHNd8LD5*Vq7fm_Sn7>PmdyEioY+I{3yq7IXGnZQ6I$i`HdgV<&K0fXa_{E5ou7%~DV@IGw z-{1!>DZF%Qg1#=#B%UE3Q|yf^cMHvSR?_UFdt?9xt6OAe^T||(Gi2rRtL`IvI4pqn zQzL)uuttFj~<5zNMP2`Wl zoQl(ajql_Iq5d=^(|HfZN4ujP7NccQf+=+rAWQvT%;A^nCy>D0zpakknC6`AE=a!N z+;aycX22~%*s!(=D6(qx7gH~*P_Dyi)$pr^V`j;qak+^?GJ)_zM?qLAg841rQjbtO zi;l0839?r8TN}C`8V`7znr+DhtowiZhfV-!FVT_s@w8V;yq^xCx9f6?S+=jbV`btr zb5!kKqD0E}SmLf2ODm6>V5`}U+$P;=2nSW1Mzj5E8#n7rLAto^z&6O)-SI>I)F1~U zbq=y{Uj%yRm01%Y=u4s*7fm}MA3Y`N%WX-C?maZ|d%rNKK%}f~p^w6L<7JcmkHDyO z-2mm-!y%)1obh7n*am>Pt(v2`NcpS@B9`!4Fh8t+%!0*mCp}uhtVV^I`{reT zN}!0KUQX;uevLLc21Y;29$TC~1c2U-%|%%O0Dh}{>tImO1_rv|;S)?wrR`J)lfIT- zAixI%074gb-BJ3NEw$tLH7?2eEXIMh396|*);UkdZ^wP-h(t~GG)0zp42W!uNAMI< z;_h+>EZs6n!CEe1sH1*>0V1Vt7jh3s=oJUJgiV6U7Xqrk5&EC??~B=VOcMLuNt0>? z4pi@rP8rLnwj^Q47;H^x^muzQGQk7irDhxm^JnzGg7T+WE8L`~HC%3f33^DZVm8rI ztmwc%yFZ6$Xr};g3d3`G-yk433W8g_6=3nfDGw%*7sPD){o~FnsTle1?i>JdsQlA% z`&^Pwo=!5|`}ZYw^>oxhT5d_sZ#52(Zx-eX>Q^gqFo%e^bV)~-uwtL;XxY#anY=~0 zYTBL4JkUYG(DcU}4q-t(75egQchS0MM_?eAY%$%HIbUsq3JS~x3{kiwk;aMc`+9HO zpPzOkcEmGNe{swCw~?lV3T-hWfPecIx`NjL`V%?Hee%|Grw2ShlF&Tqs>S7@66|cX z^Mk>Q0RAg0(4t23NNKABuCNOQfT76B+1@gHJy})wdGFGh6kB8BFgp_UZ|rGLP%``% zds@A}aA+ZrX$vLcT{v?yGt$DNbIzb5qBN5*22S`zs>mnbMaSDfHR#Xd3jhu(^L`A) zgSKzU$rf{bG!809Ux7w^p4McNsmt4`_N0+<63Nhdk=^heB+;N1w6oF6Z(EYOJILBB zTS4T7lBVBwrc1V_^QjCsmy)(1AcU*mRQZ|vfq6Atju9Z zH%OWqxiE?_t@b2b0ePL+3c~PUVy#3@;KKTK=)zYS@0&FgMp4zK*Q`^3K47)=;z$Yl zbH7~uQHz1k=Iuxq{l#1^aJ@S3&E!()IPwGDkF4j|rJqmxFY49c$W9RUvhU8Ck);Oc z-cIu->zTawVJ#PiUNi%jdY{o4dbKitS_cPPI`QmkZ=iN@v| z_DQS{u3W)$Db_%F8|z~`jGrqG+TLtGv@+d#s$X0VyKdhaD<9fXO2(y2wC|W6VNAE9 z^tH`JaZ0`QKZ@l$Q0M`YeCK(Bs`_`*p9a1B=J81KxeBObCleQ;`>Y2|kc(j6aS=sVV;sQfy{(&T z^A{bH3Sn#tRxS6s?^THVj(v)!Qzt&l@7O#^7Zh}4Ul@38Sa@h#vkE8AMXn|-RQ3=PsRkKo$WRVhY zLWG!Cn-$s<_;()KS=-$)3~zyMzahfgWuf| zqz*?Qw|~Iz>|)0obhA~oWFN{u`tDoPi80%?SS8wk7K^&q%ARS$Aj&Fl&I!6AH^Of? z{ru?}Z%|;^ij^iNeQ0{^H#~S)1cZx7qMi^eeQNY)i$de$%{}0&|B7=$#!eib8$*2h zC`T^3uA8sTHDKEN`8N}%M2XTbj=Y^6Do;+D0js%CqGOXgzQn%Q#@>~o9_0UgMxl4Z z>vqD;hp4HxGR6iK8tQEcf|>b4BX2>scdl|VDhL858_@#Rb*!LcpM8lrEnzi(vdCyIA+=IUZcK6G4yEkqFT(zgx)R-NbX!evQma=+reB z2tvB$&j8X$=<2E6PbDskk7{dZq-MaIruiUlxc(5c2S~1A!C{p}+{VC9x?aghcbK-Z zl!emlgyqCc#E}dQP|aiA-d{vYWerDdM~_$oA`a5F*n%|dSUk)l^OT$^|K$H+?aSk# z?AyLegi1tG$x>P=%D#-H4Uv>A*+~eY4B59-Dngbl!$^^`46-$LDLZ3{$*zULWYAc$ zzsEUs-Oqi$@16U-p6B_;b@^21@;i_H_#WTm>Hwj2 z7eCVR_Ds{c=Lv}AwysTQSb0&ZFhE8b^PKwPs5?@UEac_`NCS7gCSS2Fe$=RH6Ryyq z-Jm{F*gg(bX*ux-79wSFW@9DooA6*^Wb?uM1HlhiM#2oQ(P-|QdA zm63}Z#OG=h0!CnhG{^S<6@K zk67xQC#H3Gy|Ie&m?0MnVxb&?w0_kFp~q%DAgPn~QTM>yb}J@aKC|-#0QuisYu*Rj z3YRlH+MuBddk9pL{W&{%r-pBK6^viD=}L>bex>~Chd?8ugq;4dpfsKIYL7{;MnenB zJ33EF;XR=3QrtLhL|&v6n^K?zsfh{kok{DM9eB8L-eqd8@G9S+-bKih=e!?p<0NF> z7IHV)FaEx8!{0nfezrWilRPNc4-w&2hb>w@}v4CpH^PL5_b{+v;kKAbA@W8SC2xQ{ z)KIPtMA1XFtpabH>)16d$*{7wmO@a7paK77owH95A#h}X4Rulsm;ApV;UNOQ9=Giy zH77)KHbkF;!LxC)kL%CukFPFWe$=aX=BbFWZ6Ocp=VO#^YRJcQJ-zBH=IGoKiQDnP ze2OOVdmUM%S@(!vLBc~gO_GT}ti`o9D!%>r?vBG|inw;e<&T%5(>l@`U^dXq@O7;I zyLa!dHTTY0Dy^<)p2om7WPsN_MjY$!$XqugBa~6%;qu;P zac<&}y+L6?R=W8xg4*oJAzxWPjSNP8O-+1S>Zus5tSN69N5#xgMfN`(H-5f|h$8jz}Fy%&X zi9Teagssb=d~%&DgZ@5jCl$lOuwt;UsW$Y=Gb4-mVI&q(3e=Fyc_T9 zR+(5ZB*Ho~TRlk;owPjX>jNf_b_fk`!kU(P=-g-VG*(y|5s-V2BZ1QBV|~kl@~-#y z8a12v7FdTmlRNt;u9``n*JkRYZWrHAWMtWWjWH|#B!N%*S-CU0zv}XoQ4gH6sAYqG zN3mEvOnZ*nU}-Z{{b_>=0L)FyahKKSuAa#}VUg_6C)<45r_j_bsqkoyU@>NLu4JB? zY38oDOJRwn>#g|<`xl4C&>b*dXY#$z5LWYkE_%9gvg+Wyhas1^STgl+OAk%d?)>RB#GWE(Rx|BO`DSE z@~WShV7{L^g95fX?*Yp*AJFN23rgpnw6G0q&HFoP z5qLwTmQDNX0SY-#4PdRI`i`4*Psf{8MYi$s3PTQbn`d>r&~(V3Jp~wgR4m6LkKind z&`UpWo%2?=t&2O5PB>v*1v@>)pZx&D;+V|}M8-oStroW}CyOaX>RQP+8FS@%R=XaI zm6i~KLcKXqtQhG_wjZ<8DiY;@C1^>|ojRP89yoA)3+z44;ek=YA&v{>t?oIuzC#-C zv_jmBI4DOqJXq@nN8JJFMk1rUj-R3f9-1O~gWShQBrAOMAU?_L?-A1|g|n$@RZ=mf ztxsMk!|r5t=(Nd%%ee{{FT$ka{$IGf{lDdC$WdP$nL=}iT zFHJ2K=}e(^LE7*Bchmk?K#C)0GLg}hYdJZn_kBmE16J5rmNxEPev zl5RF@M*_mvmA9|b{L4mKKofnf6S^+{opJ+^@s##KK34ZAN(kjoMY6IK^{3$`r5>u) z!LcPCx#aDivdsg6c@#|+N~YgLikLRLKd`4~Pe5K;Z^xynUfaTO(%Dm|z2yF8p0f;ki=)r5u;ejZYeaXR}y ziksm{PA+@6OG9z|HN3E?4CJG6fAc++w2)G?cE30Q_(NI|-_^j09Gm7rD02-Z!BU*R z5zYHQLwNT-W<>{{24V?>r9G-0k$5Tb_cz}B|07*~Wn%mJ;ry9PuJOYDn&%=QRm7vu zzs$R&e{mQ6@8#XlwizQfRPFVH0ckk=dYcbuq1(cB8GLZLg}-}j$AQ6_b-1u07cLi! zT&@kiWnp*bH~0UpWrOQ=>oo)bO|>slJ4)xu;3Q<35@jjBCqCbYD80G1(8uqedz`?~ zTx_-=5{DPR z{g!7o`Srg3C|~>5;<3k`ihT3+#}P| zSfH;mxA3w&w!G1xC!wc*xlsXDkRkc#O1fXUOkP|X@c5Sd^voaKc z)&t2K#FW=RpmTea{hKzF0va7>qLv$0iAhK6ZwNJift z>t8;~uTbe4HPS}PPF}OHDHIkteiM)~ z^A9>IpbKK{dEy)}Lssa7(VAZ$_D^<-|0ak#Bc<5<8h|MLkQihNLUY4$U597TJ8=x8 zzcID-YwSh*)^nkwWgB^swONddOsM^X4PQDD1!HG#kx})<85a-71~u-vcFO${^S2X( z14)Xzc@a8D)oXM)62t>_VJsXQyNNlGDBHl5=YCn3Qc#gk8g zB52nI7_LNk1?Q6fQVlFU&IrE`5H0zNOevqy94M)i&SG08yoY53s%Wpw-@vVi8-Q#1Jm4JS7`6s%K3m|#MMV`=ljzKpy3<&&EXji zWhlC;tn*(7M?qP70`R}f(PEpu@B;3u z;CjEw<=Vk896C-vh7?Rs(^h{at_NdA*2Be0zP#1IBEQBbm_*2+e2;xX_FW*MsQh;9 zW9Wr+I*6W|d_+3VJoDGs z{E&~@{vG-Ee>i7$G)vUh{Hkv&J!2j*N{KSdug5p*6m*3X(T$X1e=ZM%6f^U3KM%_1T33KE)HK ze@87!eoXO-zWun{lnf8t>2@V-EJ^%sDitH#h?d+?PIDscPyEX97f6x`ljqWh2= zuV1C>M<+Dj8m_t9*kq73*gNZc_CJtxvm1b*oGM>W2?bA2D|+XH5iRVFI9H+vrWq|J zn44ve;&?AsiOQr)PeKV|xsUx)0sq6#%u$)nI2}R)K%Vzas7G27`dxRwsH6I^)K7i%Tui z{|Mgx+g$Frd4KBsC!>H7Swd_}LYE{pUV)Wr#9yvcO*3bM+b6MPanPLvVOiq*=0uE4 zi#yMM(xCr01VRpmZctb0nJOJ9#sg~~=j4N7sdme)7fpZ`+netW&CtVxpBZe76}z2} zW*Lm#lns^PJ>=e zQz$^(m$9Dw-49;B?Xy&VWi?^PE9}|!jFcUSb)0J%#Di^h7s>&-2Y+`R4u+y!iMD1lPV}F2e^z>~dQA-e z5}5fV)6E6QgNDKZvEH*5K(aWE_3t4hPsH-22@8IQ2VxMOw9Bccz=eQ_s_<8?EBAG<48t z0aDqbZ)YQ(SleK1p5nymR_{m zU05$hlnEdeWuh@KRqabE;1#1jqZ<5&jm`A`*0k-)4*E5txU#dN{AuVcY5GQ^RGsD~FW1~bJeIQM zIRF$7BC`AksfDm%9pdo(qAS=yTqbD_F9JdD6i1;%*mr;F*&AXIe-d4K4{f@^ttf^c z3p-yiO4z1%A~e^!ZU-Dr=2)6PilxhDrzT0pnEV_aSAcPE&H%^r^MmNGMOvXC#?B__ zW|!{DMwg;-9uQ`t!hfKc^4|*|>v;c$7ZCET<3J+WQ*=2HvVriNL?I3M$29xyU$OnT zc?nSaxM15I7a&iMnTWhZJBzmrjYcYyz2onA*E)c(7$j#HF0AWttsv@wFD;KPYh6R>c=T9RAWcnDA#0NtUUnX(2z0DTux86gPcq1^eXjgy&W zYMhPn*a;AN&MS28wwN33-3>! z$2gFmuSfNDfoQqQjQKa7+=@3lQ583Y*FWou3K5(9sSJW73 zYG~28mdsT=200t}6!-#)7-wiA_w%WQY+D8d(6*(2liPf=Ed z=_Cp!-JeqpM9Dp8omRq|)rj_N;g18RqJZfuB9PBRwJk-HB-@P4r?K&X;FcMH6lB?*E27VIy8ut# z*K$Wmn*r8WS-T$7f9|HOnFJ-d_fM37O9Hf|Cl2^6ZcVely%ElJoci3~%txF(W7`Ad zLOEY+b^aiGH0=SGrWy$xg!yB2fT87m{T13zf*glJ0Ne9JxtnCgc)wgmZR;M?byx0B z<%!=KqDfY%H}?SOTonoI8&uW(q^Shm2?K5HIggA-t?dBvof*WCC?r_bNYNN_A3 zmplhyAT+S5hcZ4>k3<|&rS#&B#xM1a{yc9j<2J}$ya*GdDS*9v?qQp^$RoQHkYQYG z;+&~|eWgU}nUcb5ofm3(Ss$3;tmTlZ8xO7OR=0mp2y2RWI(zEWDVl_aKl5`P={=Wi zS96dg4Cb3Hl&&U}uW;4%{G;th_JgSkN4Yz-+Fu?r3cOkXgleH8_YE0RDjpBN!^mgf zZ()8maQ@*}rk`9tft+R>@>>~_QFPO(>9&Wx>%O?(_NzL+>ND>O{Ia|&h&&IBrcvfOzz9M$#e^%AsIZ?`w@Y6o^`)a)$auhq*}0#G%L zGJE&RTpRQ&bDAiq@AJ;HGYZO8Fj*jlrQ+# zJ~%t-=?~}uR~7X(&Pgul=_D6FX~FSe9GqjIO2~G4y*14V%od7|8j!>w8XWlk1aynA z2mGlZwuUXCJvw5c2_Qe^OjGHxd%i30Rw9*$MkTO)KwDUHAgm zUzzhCqgOUIx|6$5ra4Yg!8^B2`O+({xEUk#CK-n1CwClMQ1qNz&v!O|_SVuv{zrG* zQXX7lyZ4|i&_keDP2iKE*TGOS^>A2__l3#7V zx4(Z5*yqfxtfjhG^lSH*&wEMA0SLS?cH&`3t#6_+@F|izUmvjV&SU4f;Pu9xTS#2N zrGCH8%#x4A)uP)IM+R0s6LVHNKh`;|ZeVykv%JV!kC2=|Jp$R{gV{gxjRXhPDi{j@H=jQhIRQ4GL+_#BIvZ) zX8%a`Y{j`oLDEAVY2xxs_>~wV-!Ss{C^}=)*j>V9+X87#1CU~Dr*+KY8e>QP(}%+j z29O$_W`%7NQ0Arr4Y7;+{18_LetE)o)sDU?bkF?Rtt%u&QJ zGx@UFASy>dX?it0B!sYJUp-8aw{c;tIeHN&t1kz+()ZHMrjce#&oR{V2^xMFyU>9S zy2DAYbw)|Cr|~$plrF=BND$B6bd-~D`7S0RSz!GlW9l8|z@Ee>{tCgCq};&n2#=8N zPzxUaX+bjuGR!|*NA)yXV`q;ix|ESUdNSN7#kj)%P!_>uD#dNV60l+fraN}s)`{NA zyA}IeUimG;_(dHsGu6UohNUz{Zq&e!Aw5x_FV}>wQ#{{%+enDcykZew&nru00c(7( zOPPNO%yM5fGbcfZ-^hF1{jCtTr)qfCMPBd@iGojJ@HeA(etV&O`ngc~LEUAYxtzec zQ!K<$@_rW|ZD!EezE${wLE)&`y?3b^2}fB`7cUMsd#k)8#Mn1!AR7z)PqEfQ^Xgk5pO0vF05h@$ zO%FR7HL26P@C@Zn31?K_9<4}7h?pTu?j$iobS8u$rs-%r|1n^(=Y{Xm+tp_|l%4{w zd0Y3F)?Dd)LSRXdK}-h=L2R+c^^^RWn`3kc0W8>_4PKSJ5uGe}MfxQq!cINKO{aIz zOd)q#|ITX@++tUvVV#U}Vt^w<>!zdNuR+!a?&;EMv48kc(LiS-=;rfzi6M56n1;gq zw3yum-K+&8=mqRgD0VKS8;&>_5_R>%qut*B&}ZJmZoC{~Cm(GWzBU~zI&Sa2TFOxE zLAo#we0H7H3wecBwZ#){$VAR&bAsq3mJ;IjF{3%f{3FR3MmyFh+%-lF_ z#p&;iWXQ(n#iRgJ@yDoR^n3-ilDY}7cEcF4hAGp~hLsJBL+|cw?%W=-Tf(SbVJR%9 z@7u#22$91s^69`5;BMiHic0US{Z@B5b7gkWz1&Bnc9zGKdr?p)?Qj%t=HZSs`GW!~ zkDm|}46X7CuTLfCIdmD#`YdK{;gNh-bo+QE+MCXJ#)z@Wj+kK^PmsDsDYke10?+{? zPUNFn8Bg^ZZ9024F5TRn=#N6@WRVMg{&Yh}=i_=BqgRH5K7G3KFnG(v&dih9ca(PT zP`!}d>=XQw`M|oE`$zB+^n2(kL56dWoxZ=NQ>@vmbClGZ;MzYbeTbVW*?RqAAokAk zv&dOBhe;#8o>CP)Wc#K`${0SWf)%U-sMCJ{)R=Hh0)b8oeeh0&^Mcxkt;c!gJu+Uf z7v)zKTxCU+TGOgI-l9k7M_t?5H};ELcfC9{{O}m^NHUE#@uh8eeHP;hUy$SFYA{xM z$Zk$?Z2g|LijdGJ_#EJo*yj5Dv3vYOljt)qt#QzhIi5 z#VR1#ET3+Q$TBRfO!G1+bg*|hFB~f&wAW1G#t46FN7D?jC?AMTx}-N?iQ0Aa(E=RH%u8hiYE`h{qC3kYUR_qzW@9K z<98^4R4^4-l6IQ6e8uCuL%DqPRQ^n5{2(NwPVG%n4H~gxaz%+K7d7X>zQVrNhrok2 znG6pwmv=xLr8h3L!*`p(=yMiZXHnH5sgde;kG}woXto+#S+?6<+mW4#GCl>)2C2BJ;O?K;nAj$Xe~nR#itbch1%wX;^5P#SV{w(coy~z>VQm`B*;{+ ziQl8&q3R0lneE>ZIEyfpi^^}9+vxf++iWXK-O|j{9+ldz-iA7AQlXn?cY6C!duJ!zo$mNA z7#(FwJ^&Z6v5~|_+Z{1u4LL-b|KeFP-}|F9RcU;d#LbuSLkCjvZFfjZJJt-4ZIHq7 zZp>v0(|UR>B}CtzfJp^NuIf15tWv_(1kK00gk}qFh7R!3m4v5_e&#(yQW>;G4y^l& zkx1sIPl-05dD(MziVCkSmKYkwYZiMFKgx84D*b=PKwyXEn`P&MVX6-5F|HgmQQCIu z16m3|*~x0_J^7oreCz6YCx6|OiLeEWS^x8IZIv z`|wp$qW#p=)UdD}giBd(-%3Ax{5Yz%b~2=OH@y&3vXg&cy>5>3tJ4E8KKiD>WoK!m zt-5V%WyxqeX=mRZd1Y5gf<5c-Hk76sW_k1^oVQ1eC1uK%=~KYhVaAMbw6Qlfc?UJt zYQoyL?7*R)4vJi4rsT88_r0ZyKlBIZi)gMYl6kf-IC9 zp%0bEA7;z&JxO|z|1`57rlWplDrqCxD~oSzYW75Kh>`&UE7Y|LUsPqGgXcKqj!XIY zcAOyX%h`H)Og5fzeHKz58*4n_u*M@O@k9TPS|JH~{O!6})MiQw(I1sNyR@mE*=w;Pr&Q zd^H2tS?7I0=0bQQi`aBCV|qAqt+@?ST8m4(>HvMKKUSC8lHdx?(xbhi(CkFUu^xs~x zF(E+Cb+Djz|K*CMut){39zAln`_q=K#XE>w?C(x14|XFOKZ`~x>i_IB{`E=xBLOvo zZF?RME!wubh+`0ks;WIq*V-6A^9)shZArpkB?DgXvtvyo2QVe1&I|wp8y=oGLa62z z#GKi_Bcrw`Pu%Rx(tt!JQ!*0BzV;2-x%ba88oXv29Pq^tBcKDLNb}G$4yHcSXPF>w zz(7H_E#6Q5jLC0*_{vjUsKVs&py|a8&pGH`!$vZ9!T9a>zqzlc&cATnAH%ACVDA1n zLB%^HUB_G=|8+>39+v`_w|h;KHDuq8BtzOl zgNCskd#-Dl%j7!UkgoC^zT&3BUy4-A9mSfLO^*5BgidsVX=dy<*?;)KHSOwKxXscV z20QS4eh1)=&$D%%KcI~RQKw1)0Gb2gX&P5{;5RSE;_-BsGL7m2`M1&9N_`W|KtSS; zRL~FAS6!gTsaDM4r4Cqq=k(jw3BKt%;2~bB3;g2eqT8X^;dVt35Vs^G32X}LXSypm$gNNw&U$HHLCRh7zAX2&CIQhy>UZ?S z8X-ZLF5<&FVu#Aulm;I`kXAeopFpR3)t$OQsB3OEvX zS?sdzZ2fQ-lb4{i$Y= zBLRNC@b6cQuhSYgf3j31hypa^(z=#6;Gz2RkRpNS-QO9;YXihqg^Xq19nqR`KJnHW zF^)XvMGIpD8JyP{iwsNo?&S9I8F@5f{IT%vh}sA=W5c}QzIBCPRsYo>{;Njv=YvDl z%oMA73!gg<33jODN2Fn`!-8!_EDgn5zr`X2nGZEJnBokVKC7}XU%u>@l+@iPP$j2q z$Cd%mQ2#85FqGB8nxC67_}hUfFU4h}FVP!8^7Ep@@ugImDs(9fB))I(6?9U(3COy@EG71*1BMdl`m_OwiF^C-e>MzGleo8d^x= zhDa>YDtKy54x@9MA?GanPPG)ZYrZksm7A*VG2NOxA$pgWN7gyA_{X;==BESi-uxKl zDi3=(QFBY^>W44izlXh%T^q2|$l5z$ z?L3(fU|fr~GY$GOiQuhRHF-~~{MnBK?u!YYQNfyGv`f}GCU_UevB$e5x7@U=vuifx zuV-=+F?f62{gCSLr2+3b-?l;DxgTvoBC0SQx&b@-^+QmK@9N#K1z2sE{6!!Xo-Sl^ z(-v3)SKu&kkWa*5zf|wd({3WwU0L9`(NaKj@{h7Y*d9cUE`8le6R|9$Ow}EH!emW> zvw?r2p!|BT8x|%NVSKI>=I$%4otZJAQVvHwXTM8GLjV6jk?mtBNj-5PcQ&{VP@=dU zOQzC{qc`6}hQ4~FAylvpWdjNQYw(KyI$ZVS<8K;X?+G7nHYxgRmfi@8+UJFuK6ealGF7k~Cb0_upRTJ)1I2Ogi=cP-Mgt`n*3G}Nd@M(lXeD@zPrdAD9Hd4034b6cMI zVK&9S-k6Xecc`bpKH7V6wr+WDK!j6BH_~yA61BQV;aa0+b#U~C8Chp4Ja=uUeNXVC z&j(=hQb`d=|W%|q|qG-8d}Ro%`fnO{Cl zZCqNHhIdf-+UU9*UrcS5J6$5!_bdK;TSPaUD{N669Acfodv892YE0}IUbRF1^B+Jt zL|uNMEn1u&7gCS**|&jlOBnG!tLv)*`*!7xEFK-Lv-Rl#-%98D(RnlE9+m16nNB8c zP_&lr)YHN896&Y zE}gztgl?$k6#6!dade8W>OH<;C^RjsV5>Ncfoi>E$1gup%)0Bs zNVB8lt_hd1&L=q*{dw;`6;1t8f6|_1-q#mT_RTc`nV%Y`(trRo&Ln5~6n)OeNjV+} z)XDBC8@a`zOSN1%@a+z(LfHBZCQo5zu zB$I|EXZ!Cot9V}q|zyU2_O4XBN=|^hA*jy+J3$o!9ZeEUo zg2sd2ppH8r8@&6s_t8`sg=Avw?KOjIMfK~;>1>4Ea1(Dl=Nz<3Z6!EW`-Nc*vm{;n zW*s;DwK_(YySv1!YA3fj?mYR0(pRKj=J}(pD4%@I**P!Alre9-k{WHwdzi{~G^~bO zBK#0W@rZuzwI~K#PfCfq*5!K`3+-Bc5jj^M0S%0VSab1673)wD85aShu?;}u`JR_e zN_KJScmPS(sPtC5a#u=Pm}B?b%1b%G8ltG^8osFq?7*48Mwg3T&GB8z z0|F|cs>V8JO#+(}$pZtgOmOLin(^XwJHPJdq|Y)=EojwatiVV)n%^ZZ&X9#z6|QK_ zuKs*cB0YFOD9-^ZxbtyG8oUQ4ICy^Gv|qm&8C-gG=|wOJevy&IjswCr?}tvaO=pW&X20SZvCCJ14<~$7xxf^;gC8 zm($M%`yCMVoHoAY7mYZ5_t~Aa5a3V6|3Op!CI*7s?Gb*Fa#Tf8&&UZ2*n0W;$D2)x zuHQdhTA3&DJuJ$4woTV0-|5~rt&`?xWFy_SgN2L)-|li#+s+J2`o=>Vao6wGHLU=L zgrs1+2rO5l1PPjnV@MA|c#m~C)EzV~x*c`!G3J%h4EM0P&p^|l`-BOhw$GImQMSDB z(1du>8Qsd+?eYQbEh5$H_M#-MbKHLxF~GJu<0Y{FCtQMjY}mXl+2*pqp5>-y9;cw) z5%O*;9eSo}&3j}Xm-(*D2coXL$;(;!%DNcrSqiI@E{!h3Hn(U%J{XXCr$2DDm3cG5 zI=Y~epYN#3o^uq&0iTEQ)BywmV8E6ZJv z%vZ2sb^eFtaLTo+>c?YqsS(<*wYpvbInGE1#WZlHeDQWx@2lav2gV_;awS+oG}D0# zC;e}HOhv7z>Y(Vu4t<&W_ev~OI92(MD{bYGJsPT$X{+7dsgpn6&@Ew?qF(5bmiBY# z5ec|vBu))NxD^M?q;>tqR?Tt8iab1m)3S|otynAu@VVAQIkp`-Gn8^2H`(;GX>VOg zoT(%IGakmp8^AuYPvRzTTS+6>|33;PE;$n(Y0sU zQ-K=1Epnj9CFmP$^h|Su=1e3Ccvy7@V7qMX`-dEs{k?dtGB26*K2#xY5|>_u=}9so zr*N5uHK*B@;1PGjdszF5*M?Dgf<{u_9JI^jQ{mfS{u**|f*kgc%3}+fi7hz@Ce}`@ z+HEZp>z~X3J<{GSLYP7a-J?$emVFU;DPG_5_f!Sowq@z;T+U z_PKqYC!GoW&@_|_q$MV$i4u}E!4ID*vv9{1)0M$rEvlb?)!Hg*-z_fmvFs~33zo5A z3_IEfbUFy$0VLnmH7CzQ3t*_qs4n03^6;o*&e0v!iH zSXm@)oghuXI1#}^`pC_qo&RH^Y`Hnj%|SQF)g@2j zC^+n&Y<~Jvy}XmeK3HmYm_vKSyYkMwR+07*vZ^tsiC!SQ<&j&*yq$P5$_3_lLev0& zdu&#`5b#0rDUgY-rUOsU?_87?nw*5hi#6_12<;bMB&+&dXE8$i?GHZy_Up`r8Yr1p zw@IfXE^Aj5sf4EPIf~E-0UwRDAT|_s1Rd0f+ux^sU>fDxH#*|zu>FXZ_M;ugt~xxD z&*(4G5dwpjoiEbz$Pt97(FA9t?{3|X8YPyOA2lgC(|Ej~e9&D_qFN%&wix%rIMu=a z;iE_4UhWf5L%Bqry7qe$fyy9eaGqjZoHE6sxw8s)xiDngWG9IbC6>DFARGagh)LwB zdqF#io&JuC>|9(TDQeML9RmczO6oxk%x;~gKo*|oq8Zy}DV-i2X`$zEMumo)ga~ew z=0m&DliN^*FAo}LAeA<;|7ik&oD~vTM!Jufmq+1&6w-Uw&-(O`!Fkw8oNQM}5q0=} z<+W+KN%(UJfud@-rJjNr`!<}RAAECWX?{XIwk?H2zEjE#C+9l$QNPpi)3Y?!a-m~} z1>tw*xFQLP%O9mf9VeGyN0Z>rih1KuWYYc>%l6lDU z&OaF$Y5nmw&A>reap`BoN1Sm_nj5ZX#+$ronj-jOz;i<0N-rmnSl(BxB5K`yv??$( zY!~c0fBBeuzo=;27};@1O$eL%K7aZx`(`X=Zpd*d&;2rzxc1Xh<{AAb?=C%DMUxd| z^LFsmig7I#IRu4Uhu6?3hVZ`_)alBonGt0Tkdj4%)&3Ca^bo72cA z;ss}qK5}NVHyQenNV4f42H{HJ`Retw)25|2mFFyK*F1Z6x=~R#hpdXeXD7V{#LEnH zBo%KC`fZyOo-$+B&%2p)w$QDPeUu2>b%1LV*yH!c;s}TBh*?r;vE;Cs_fuaF?Av#$ z--CQ?myB&*+J%0t`z$ zS+Z+s$g1njkdU{U%A`?fA&gYNIi-Ul2I0zlU=#M&PjXHJdu8bzHxgVvSq)a`U0b=s zp!HVO{IzlJ(TjV<)z4fagn`YnBsrn`HZ1#W2(meR=O< zf4G>+1&iLL$pR=o%q=0^#;Dqk@(C!s&i+-@F@rN_6gsO&%l1W(ve%FACvLBi`zuwH zBh7QGPp-Y6aO|iaFM%7lLYGw_7)@95Fy+i>-nSsq zE~sEo$E5G5oiu%;us^N14nR>KXYA^8ENZkZzgx2FJo9U%EPfqWT`?K!$Py{_l()EB z*t9I0hpQr&b<{Nt&iBfogTwF?-{I+9FN)r7O~k0f?wkV+P5QuYIgo#cv^r1N``REg zjvT)bqae5kpreQ0c=zby#|wIb+eZeMpPdZISXaDtuzaCjX>|DpAM(HmTaRVekD)j7 zK}}ARExyUBN$=WTUsl;Adn4x3OfRy%LH57(Gc_ha%>?BKZktkgD!~MtHIv?gQXkFI9 zhCYnFk)L}<$(B~c<@tprqg|I@2C}J$7u6?dHYmoa-S{sq023tn&fjHGvZi%HTI>;$ z&sD+>#IJNFH`Uid4s!!t4E7?k&Sp#PD&A>S;bT4SfQ){r}P`Nrdk-X<#g#>~i zP(}{@?(Z@}I5Ha|W4nhoR5>UCS*Ho+M0L=gGD!q~i?n@FHUb{|FY_xXm;gszSmO(s zE&g^OjJ@NDNH0o-=~u&^hSp^RP!ILl>yZb@H3!Y%4!l^@eW0cI^SRO^^E2!21N)Kc z0Gw|hH4DaQ)stSSq9u+_{4R~ZRQz~Vc(}+%>R-S(G8_AU#pg^=+;)F;b(&Teo`gj& zXp!dK7Hd)hu_Gwgx2&Ep{gr^UGc>&*U*lx@M-z!Amv=ydc*Qw+Xm>#&LRuA3)3Rnx zunt~fLq!WfLPilr2G14nioY9&|1%>EFSRP12TU}w2)uEHLG|y#1884hFT5-3wqOeF z7c5e7th2Fb`SZttnWpFPMjS)tK(v#rhtw%z|Cb~RE-gzdc}_#gD~;X#FW|@jnjC5V z!Ya6(8~l`GA&Txa($BYjtes_|BYXS05FSmMZ98^cm%c3+BvxE3s+YC|L1`cIww2~< zcls_Na-AT3A7EOaY3ltih)$-Uijk2VAa{OphL9j(r;A^n?MZ3bFxT)RRAC>{)VFkC zg-6aMf>TIOe-UOY1lnJoe^a0jAe40I3@(l7qf_jJ1}9`B4|+siYmE8ay)`&pz^_6F z@FhMvG59riHQdwz_iw7>APmC`CI}z}d*q+%$^Wre{O<6@LKA_md{505z1r|0EBB$H zXdrZc8e#$D#Ex}*I<>7YrF<4X%hkopRAUfSr4p>-cT0GIaaBOr$Zt}tY5AS>e?EYNDqIst$T|DN;RsT zH6dzE-MWeNtfP;TphK!j11gyQtIodLHz<+WIt35_#NjHCMC(;c-8npz$Nn48_0wp?VI)In zkqNyzjoivB?-20sp0s!|iA_H}L$;w<9bQ7fM>>=B5i!&*1lAX8!1jTY<-a@tf&jvM zK0*K|f2S9zw3A_pVfO05(CFY@SzMP^`y)FvQA7>pl@Dgt>;rOcZmMEme3 ze&x+<4*q5vJh>$u!k=b#F~lX_u20< zqaDRr7QP5oQ_bbR-~uDycYMhHfoHLaWqHpcW%Z+k@4U|RJQ8iso#i~fu;}?TwkCFB zA#rZvV+`x6*O?Grc|qu7iZyTB#5FsoS_mer z9^<48u6P6DiX(m@EA-4S{px`8@1aYgpT+tN>+20s%}+C)tJ%uzKmCRE>63^Ss*KC()thD>1?|qB*&xG4j&?@dlq|1m|dqIc_mKi+z z$-hDZKCRE=LHyA*q8WZRWzc%__d_2c{xL@UB_2q6kqGSFF*Y?b$8N)R%aQEQA$w=O zxArl87_C;SM3-i*qDAT#sfsP>oucMTn6~6w0(OR3UW?j8$>4a9 z&r@N8pJgLy<8?gf5W)^$CLM_y%jU0>unvF?cj0(&EGHdzEnl$5HyAS%P%wD;9eX)Y|}Z-Y*${+YO61|Aw%50 z`%HDIjI6%J)|+Z^+uja?8f49HKfZ3Q44VG~V#TD790K%L9)d`c5BfJSTv@+s|2~9e zN>$4CFQt-1ROeL$@oAN?E<_o7{m0uA@882r@U1DWx7V3vTqz|ka{6z2j}DCY9e~bV zcK2=x2f>~~UweBpClB$G4 zaZ@!Iw6%miD#~wfR#j_=+RYlNl*8(*b2=`Z1uD&JEzw-bzD_!DW0I?0=GYIO*Y4y1DIK{aob=)o3nC$uk;;2BBRn0w^Pv!*Q zt$8-0^5Vbs!oNWe{@X!$v8TfHsN%j$E5&Dwxb_zIhBw{n+RP=4%rFfREy`83R}LSU zEiadLb-pU_fx-Fa2uVOuy&sjtI4BJ1FTzRQ<48#O^7YGIJ)}V}9!A2;=?28oJ zF{ZmG`CnJ`E3PgHEY2?TXKmRnXjtGiw7W9I-n5=aaPVa`d{B?o!KAD@xX#D)&Nn|_ z{2$uh0~*e@-4}n;L?S_o5`u^zdh}orL?i^!JJEw6GTIm=A|fG5)Mz7mCwi12h+anT zW}*&8AB^sQPu}B@E*z8R?*F0ZZkI(TCWsl{{dH0prIy))Sh(*%Kp@pK9pn@Y z@a*yJUlu-xi1_&KR%A3io)j&baPHR9pvLRDPMfU@uAM^{^ki;P5h-Q<5e;E~`?+ylU$+1elGqN5p@h-C5^L3M znu<_kW?%d|*nqVg!8TjJCCep9G}O5K`XK|`NT*3xoa5XaILRs4tDbeNOAITX=S zdS&CqBqm7@&2yFFt-!cA*y}RgKunQi?c&;ijWFfOo?Uol&WMMMasD`mFsK2lJ~ z4a^&7z_z;_tf&`1yg>C8{unG7rblSn9}PQ9-Z3aQu-wXew_Xo+=&c}zWOfvdoQ<_c zT$s~T&oq`CB^*h?2#GLtu)himNr$=<>!BBz2B{=sNVkEcmOuWGB zT=wb>z^5-aQiz4@+2TZOHXkeKlx!hiJuxO4-i-_E zjRP%wjOe3~&lJ?&3-^!xu?I?p)*ia{_3yv8)QB0QZ%UxWRSI8D7C%|7!l@|4qqB6g zb2fMw=0nI=#@p>0N$BGpRg*aU0&1*Q1<>30YP(?-b)>%5OuXz(iKCZiC9I?a`rbXr zA#(L?Gv50CE9(326NQ8ASKF_>gi0t86BDp{S}J6_koU+nU0{#wA(1H7n&KbRsH)@9 z{XFDk6*N;MOU7}+_M9w_?&tcCg$@sPGvyoVIeedbq*vjZKjDd2ZeHEE#?}rv8JaHT z;(gzHXTo)k(p`@a31bw>WjHda-3KI>-1W@ZRHKQTlGgjxZa#|I`NljzC>{gS+tK&2 z0FlgtDky|T0|G>GxttzHK?4pvso{gU+H?U;KYzA<5p8Mzaq5hw%Mf{Tf}(zfjk#u) zQPw5JXwQ3T=8HFt!RhaSAr7}jtSCUd0~oFEE7D!E<#W))n_|TsV}o1+&~=eqxOzR* zNb)GTIJC8}&e+=+O+%G_3^(_8BKH|IAS{oW8Z{CQ_rJ0P5OVpR^f2jE)-3#3F@oVu z9G=;E)Ku419{Pfonw(Lj?<;YXy`Mc1ZUWluqS>>knd#}d+`{tqRY~|K$NiDIlQ)N@ zK6MEaZs;`^u#Q?gdMUm4s<*`(6{~69MK@?U|Hx4xbC&32cb>ECJZk%uxw&~TrB3sw8~MF% zt9|ld`M?)1;t%-8k+ zP2)m0h_v=1y%l+FiQlNkT@9>|Znm3lAukep)z&|kxevY*$CL0XtB=!70|Aw69~?h) ziP9Eu6?#{~kTcGysV(iGvt+OzuW*P4YPlyq2c`IB&lRTY8*%?eyF!Lbkc)2{886j$iRupkWUtO>HxYC2dprnjmy4;X5i+maqYirM5-j@OsB$nExGxMUllcWfP z>v`@(E5-o!(B!`bbb&VE>AKD*Cp3kiN`4 zFCMQh1;*@KV5RWt=05&&(j2bPtsS|y`q^xWZ?a4N{G8hgng?uRfGfu)arBwp8RrY- zDf+c1W{Gqe7ZGz`{|f9&R5>-XC^a7gNwxz8B7O!2UA`Zimy=6zbGH~oBcNZ3ph2Un zqxEEsYtO*Hz9Wh!vjA3MUWZ->3DqDs7C5k^dIu=x7Cv?JJ_k38-Zz|Iv(Jwco@=Ie z98exIW5lfyx|Y(koy+QwfNj~IsoK$K$ryhAqU5b%Bez5(8LsU&t_tKi{}It84SG}e z15rn|7&x^rwzWHRIo&GQcB#^9uhGWpjMvkx$J-c5HT6OnbA^N1 zCo_Yhr~%P2AU9-nlmcPvA%O1)`UUY2eo;kfO|+VxQ3ca6Dm0w=Og*&!1EG{S=G&wA z+}!kjV4&QQzbfk}ZW~F#f0Y3pxj~r&A5Qe;CC}-HI}48A_CegZLMX8CSFFPthefcf zij5uFFZ|jMZ(`C%y#i$O$QSrHfGZYu(a!uW>pYzLv0y!3%Il!LFFmOhl)TxpsYV7j zbh$G94WR`sg>kMz@^Atgj_MsMbY!}LpVwu{s(mpfYi9z)2wMxI8o-#*u56KtVLk4? zQw^{|P$KqIm+6Fr8Zb;gTc59UX%8&q%C!yJ4cwFc1vZPMx>OS2tx4`4E@mbvu2~=4 zZ%!A@s5>gZ@`l1{dA{Cvf9cK9y9+a)zV3nCfVr|^;}~obj&HKcMUX-m9dPLeCluQi z(RPhpF@LP=lL$kV<9I=0Y7&}OckqyISHy%w4{CPrtj6a-uF>#99Ob z-Ql8+XjwYIz)e*M7E(!V+)&+KFx3pMNUC`CxnXm)rjp2A(k_`a5#6Wvxfi{!izm3^ zhIq8Yqd}r{(zBr z?PTM`kST8;?5tRQBJuPJo^ngaZ{M>h)Uf3nRFoF9Ts&<|+6K6o%(02iRxf6;py2AbApHc%b?-TsRk#|LqM z;yb>KM#gIv>MLtS0B)kDB@Qf8IvOaXzBRN9T6Km^v7qlYOo4o(7*E1%gp1v9+rq*N zx$K{QtUnncK6`V%OMFQ*t-v>;Eut$)lQ}o9_<=nx%te`slehr7nVIV=YCqI@e=UVV zS|~?_$ZpVjI(`edw1o$TLd>@C1eQv`Ak7gVe8i} zR>D;>BgUBS7E{&_uNCpK^jtcE3C&6L9v(~Yd#umtECTDh)2lVz5#{qR<>K`)u%*?j zNNMa#*Q7MzGtg>!WrT!dD5M_?&Lzh%%e{ZhtR;D5r}fc0FXuk+!sgf(o=s{$BG7En zPZ-x&eB8nfW4?Ln`yb=ysui>{F?rpB1EiXTMkV^iBMlDC@-L-{oQSDCDb!AMW|H?9 z>FJvF2BqSKRQYDl@)x5Gq+2{j#hPdxf(anJ#0o<*3_%@irUJLsdGl=5c@U_&oDh3z z|84s^)wYBO$Pc5%OWQh^YW`-`x{&nQL-I%fxHu6U`5(7Bl+?almzPJ+Q@vdGeBG(J zjd_x~96*F>W=PwFUp_MdK%m=}O@Dc6o>2w5SH!77*CsFL+jvZqlGJB}DxqAo&3tLx zY`!be2Hd#_3LmemQoHf7rN;ksiyF2;pPq=-{yKAkX+fkgJ4pdITu@reELXv2Qlu{K zvg+W2Jx(K+kYsrd34f(tel^V2SCG*@v=rde3)gC ztq)W;=|SQI6zB>Rf~ebhmJpqGUIjU}G&O5dshAAD+Axr>^cbg|uX*3|TWVf+QGQrN&Ynx$z#r>x}8Z(V~5@I8)^Rg3Wx zv@%ev{Y!-yU$Eo&Cx)``cW>X|(r* zM%;lc!c(nZC2B^o~U6A0S0^kg5$4+bV^uc_pLfcFF~ETwJEw#;rQ zFQR-!Vzl}($Y!y$?R@yZ4b-6PD|aIdKcbWXUcc46vJO>?Y`v&UNA`3(O$0yH{kjui znR1I>)XQ{jKF9sIg~{h}^6hTNuD%o1U)9L!n;5#ye$|6?^{Ax~C>4+XL#Zz(A^Xt9 zImdbsO;#f0INID>XdkaF0G0w&B6YXa&IR4yS+uhs`}XMQB*0MnVE00V#lQ=!sOP93 zwmxK3oEhl2WkEZh{Ysto>fa%gul$LW@Z--pLVyM56x5U_i!MsNm_|W+OZ@4!?qE*e zU&ncFl5wx^0`FwiM@jeEhg!(h@xr8<<9$2r^%2O6`MgoiFo>MiVM1QRqVT7As5PqH z9E6|AYw;MK&jd;fF8blZ7{KhXWt=BS0;1HjW(RHBq>LO39gV@_YX;F?wNDYNgGwIR zI)E@tYh>cN!K#P!KQr25mA#P?#YyGSQ)tC zd+}gbPqh}bM-@iD*GxJm6W7_?S4mRN`Q9T=aSRhDUMarF2aTj6?ggQRm~S6*FXqCG z84%+ob^#kJx2)p5rQxdy5cQ%!U~k)w<`#Qx5d*kIi+oC9s2Cms$j4U3eLAtaM{($l zp-?Z==YjTn`26xc2)3Ry&|sHnfNP%zW)mO4PZ0X_dSi_lai)8&vOgFdd^Nka7vz-Q z)gcVOzZ`vjFiDIrL7FeZJR{qYc6?!J#$dzHt!J>`h05h1Mfz40pNSMK$AAVfOahB? z_3+xoFg!I}bVhHeNKT@1#pEO$3_IGG>pRJyOV<7V%ZS6IHlY_?q#?R}YF;ZuYX8Pi zUiLoT01W}Iy%i~b*xHUyiyG-eC&!q#Xqsiv<~NF*&L$d6*v4LH{#&=?v;^YG?>Jc{ z|Jnj&dLfo74e)s`ZVOKk31|S7c@jUApYQE42kLj&d8KIAv#73%;~^nZ^n8$$1ZSnZ%;0+TROK;si$k%;xY6~n%F$xVCUd)Sxb0`E9g}_ zATe@q$e^;1>5v_CRTk7fET zaz%TY9f@hVk-BykMD)ISz)6I56xrVX>GAom@Ewl3VXJSk@uEK2vMnoVCYaj3)BwQ= zPXN~uQ|MXTrCcZ6V})$Ooi(C*@DnbXCi}NJo%8Fw#|@XKril5=lv;Wc*{r{7iIl_P z+1UF|DV~SD3hH^fy=m{c&YZ8ky@pD1+>&;h{(j~9S|Mkn^tPtkjPB9)w0sa1(K5LM zB!a7KdDhlLp&_<8m07wQSL#~kfg4+I`?A%#VL)9Mta|D_{VWi$KocDg-+dG?Z8)p9 zTYp}?I1P^*4rP*No8!`qd=yLv(9ah$BWZ83$-4U_D7jcc{G*VYlDCt5b}CA6 zE}Ic~dd0O=^<(U<%S#e<_CJ@uEu=Or`FVPEDYwAuYLV%VN$3y}5z6&&P#E~SsLhdA ze;0;sYZ4R%gA_MVJ}C>GJvKa%5)k*un<)j9P3faj6Hcw{)dgz@u!vWr_9^X|h;$qf zH7Q#gY1-yt&^|xj-bfMk*=@cnJl>(IZHN=(ce5|at<_8BE)5p~6;2J?Xt5dMrku zvv)FYQ9Syi{_epOpb+H>&9&`UJ9n|QORuDrcbjGikFDdgRE#NigXRYSABpynuG(YH zdffVUk~OMr5{6gIcpCeu$PrT{2ZUM7Mpe$AQ|oRDzeUlDefYaKBQ6UnH zfrz1t6-bhgp$lOaUE%V?Jt{b1FsOvj>R`U7?uzfQE4(a7LAE&gCm3}Og}>vmJXVHF z3(C=ze$kUlJRcQId=A1dA_B}7=^>(_mv;!t0nyI>FsPWvR#uKc5@qMeQI|?vxNvS| z5P_12_}2fWiho5WWILf*?szih6f1Y$Ckz0_;$v?|?;bzDq3}jUdbn<)M(S5GkA8Vn zaD45nWz=VuYER@5m&?(m5LZkvFc56rx=~`WTI1&Bc4ORryfnN!QT#DLGxsMQMZEVH zu>!BRXnUE+OZj->L?ae@9Y^AI6@F-dav&*ebZO_}+27?L5ole!Ty{MoJ*Yi*_FlIn z?>Az)l3sG=8rt3$*$!jF505! z+NE#9@Uu~@N>bql4o|WkP}9&jzAI2o6ytFWxxsR76B`4JZ)|$9J`;J1YLW+5+ca$; z0!KK+sC-$la-*64jEd2H@JN4}T#g61pL<&oti+bRS=R-=O(z_@U0D9|Gbk4HI3h1n z)3Y=@2jVuAB?V#{^|a>f5i`feK3?BD6NHtt?s#c?>@3@?1Zf)+`NpUCkas~|?Q0NE z(gNx$aqnQcINe0#|Kdize4&LAkc7D?-!tjj`R|V^844jDW4ue2%RI$V-3ia^= z*7Aarllp88_F(IjW5-3qCHfkmVm)S_{uwfSAbSI|FO=o@u30CyeICe1?#T}9{Hk0n{fj`p@XR%cn&(dc_6^IG{q0A> z_%RpT4nQCeuDj=r%dfDQ&Fbwdwp6+y;{3tMThL-MwMC<^(9tBd3qt{hb!?{j$FNq3XwI`LJ)3=CclZdPFuoo@ zwx?}ri?5kKAmk`|OnO`(n3eCnO9T)rgS7H0Id$_2 zl@#rHKHXbn10Bx21bk_ZHo6jOts`81a)=Gn)H-F2T-Hv0H973oOOO;7*VoSdR!N?M zOV`W}zsevvMjD2*m#n2Rc2_eS@Epj~lM}tsK~xWPM$)o8E2Q7rL*lBQK^A8~9ROB`kQku60lW}%*i!atNUG=2nP6$!jt6xW z_1&?@)-s_60iZSZS(nj?5Y6q6U#SWBy`TQ=74v`3&jkxu$PeV5+&z%S-8^h}o?b;N zvv%m9lc`P#QN4Kw=P|tb^;xqw;Nw@W51-SrIqZHTCz4w#YBTZhQLqQgb7`cUk0fy} z4=%h$Axz1TTibnzO$vRCu7MF{Egy~9SzVXlp~2O6Dql|`u4YC&=RRX}cSP*qsPo1Q z7j~@*$6EK)bCT^#k4tq|Kj})>#?3Kkqok zNj%j7kHKVr;%^$jKm3UP)V}=B?MKd2zW_n+%VS6-AW`RA883^_F}^|jT@X&W4(vRj zgrAFn*eY_^I}c#_w*p)xf4_x#BCl6F(EIlv{t5p6-MjmT-OS}%lt92nY@Tp}MtoYi z+EFCiI3>^=pV`W|acYgojYbg%V4{}QKlSz`gZel5^P8Q2Z;|*Xzg-Pfj1SM9|72wo z4ZT!V=>7hll?`};h`SULfR&B>{hcBIw*ol;j69+51#VA7FEc11js3T1=Ks}a^}noQ z{-w&`zojeyW~pg%;74A40t5pEWB>4o{qu7EPpnYDUGayUAb3?r;;ZfrgG|8mXPRl1 zbkT1ALO+-H@X>p>PeZqK{|ZZe2>v7U+uq-jt{)M^hEmM_(%(j8J=O%DdkSP3u%WiV zvUEZcPtEGvfj?X&ypPE4Rh+$Y1uVz$ z|4=&jfDh3xBL�f!7TH-xuz_Nh|($uS*HsHDQ0y#(~Gui^#u4N&o-xSg!oTIrI1B zJWE`3zTg!9?ML)q-Hrn)^qb@x;9;*IKJ178EsLr@bq7E^f~Txs_^nv^MI>+|5=2P; z){gZKkr1H9=nAA6M7O(D#NKZU55_ApfBJy_Pv6Z63a$4>$I01r_bks4b-*qE=s#G$ zSIfPbj-)0`tGs$!E%(YT;8#J@TMg3d6;~6U-Fk6#RodFYx_USqF1HyI?}>-RCrS!R zNZ`AdyN!3}^DdvJM2!D&Mv(N)gDti{rT`DHqy@Sow|ZN|9a1rShK%&hAH=T_r9T>= z@F&bkC0E=DtCD+rMj0)th-ZMh(JE=6ZEbgYiR|<(O5d}$AfXSw+`V}A!5{zTtCkXc zV;^P)Ut93%o_gRvRxDGbwm?m3+M#ZuIvtm;yfBqPT-?7uE-Ndm8BT2-KlawokK^v$ z4~9l86(RbpDbHp%=eUGyHk}m{?(hfS5Po>S0&7V^suuj?_)J}Ydz4+a-7q=j*+%JKxoDf_NZc+{bh2Q-(N_@e`!iIlbqIUZjXcbdMQ zt{n5eW}lEj%YRQ*?}32e*7~yQg==hInf(r8(;prJEH5-$!&1}YmZ<|(CutG4Ec6^s_3ca0f2~{P-qP~8*Q70(5 zK?d0em*FIH-B2<>#L-Y0Bx~)ShO;hd+3W=h3t28bja!xUy?DKqew*$^s=RHU*Q&%Q zw)UF5&ap^UQ_hVBXs+(_v!^Kk_%~mf#D`DAjfs;2JV(DDhdX4U*yyJz;d4Lg8waXU z4{S$MF4(V+K4p^fOq;A0QBN2t$``={&bqUT`$?@6p1RU<-}fR7?*pG>Sk!UVnkp4n zWcn9=b6afDkIkKxYUlZ7Sm2dL|BFLJU}v@R}r(`Ru9{ z&pyd^FKXD@ce!=sR3EyDMJcsKunwxg4ptc$q`ku#A?}ZhF$t!2^u}&s#Oum zq2BW`B6G1j5kBy(o-gvA>1jO%#`B_%lhiZwr&+Hs2H|JhF_a5 z2F3>JOPU;ILQ*mQnNO~=Q_ry1JuzNYWjwVUe7uMMqn)L@D?u!R){egvpD)i#>V14n zVIdtm?ALNSGz!c^vF^uM*QAq~)02Q)_xj>z*CB2PHuJj`X!?)l&hOm`-JZ3;K+*!Q)bWlndg=U8-`k!=4tqMCBMxdO7X|~Aqt8iz^HfSw6Qm6< zhO(abO;QRVXGl(a5}|vv*_@0CZTEjQ*B;$hd+(|?!!BLUnmhS?r6H61&2u&GGEtEB z4g!fVX8q>o@ezD_3jpite)}%lnKn*ZB6SttGgNr6HxXR!Pc6FQ)^ix(uH-3ge&bSje?u{Kic=ejm2hxPAS=o%M|ls1v#R7<%}G&M2}46glIutOkZI!sn; zq$@^c$>Zlu%&1uMRj#osQ>WCh&gmeHi7-Lvb&l4bER zg<5&M)?D;5qd@!5Zdp3&V5aM`BFGj?>eg~Qj23BHVf^gcK+$EGYCMnss=Yov7DC;U zt{U^cc5j}Z!*KrEdkTEGtSdFy_Nw6H!1(QRMGs)J>%Ngs+3#5Qn&e`{ZP4Rl(qtG2 zq`kK&o z&>={KbM1WV6~DWgl-vH)x(h=-Kc2N=AegtXe&H*JiPeOK7?XJQm9atp-DB>_YB!S( zgf3~N_0#yf^49I{xFH7H-WVx@;bAiqiggZ$0jS6nt zj*P)b0n3YK^;E`8foD)>0ru}Bb1o*?M;PXliVbE8qM@ZQpzRNDP%BKjX6Z@jO z+iF_hkS=7mbJ|N}(F?Y^oIN|g<7Y*n6H0Jh8B>s`aJ+YAsD!r2CBA#0z+TA~o%gwu zY3$4JMWLYOkxGTYpWE{(@)y+}KmJhTxJ5{koPi&|Wfg*V%X&Epc=r+BOyJF~q7X-O zDP&$5pe`w{Eqtsy(sq0_p>mpAU(*a?oRy0C&Nn#CK!rtmlU=-cb-GE&)wl~*97~3R zol?V7uUMS1Qb~Hew>ekz;u8{O0>@t2hU98gzrQ{hhcW@#QQ@bb2L&FQlM?F)sqvRa zbhy|$6scP1@OmQ}NuZZj9WTY*rtX0pV%wV;e2UVbnXY3El+Y=$P-L5iRZqJXF6-e& zijeKV^Z207?+@V!4EGzxTl4Dpdo~SsIoYVaV*^6X4z;(kII!$Tf&G9WBnD`fdBQ2l8)c(ERUY;Vdw%N?yA+eZ@jxT zU!JCy>%n zL%wEnW>T`v-(7tUxtb{xr*b7;uEnvyJW zyuwaithhR8k3fEzo?qqKeXc7v2tk_-owqY>2RSv~?rwZM2Yj8dKNyF$8=%w_(9v!0 zBRzNjPIgJpV$r3~scb#X$_5`hvh`-z`6=#1ws4d4^3uo&tC04LreXmt*yhKN zslM*%!~0Itq^e78X}YQxd`m1lIH^N~qs=NK*in>0F_k>@Lp+&hFHCpr>m4+nen5>Z z8XkCb*(VC!r+05z(yRO6v!aCva5;cD{N>8G2D0987C8%09aDb}nY|EZo~J=Hz8|S~Lh`U5xB*D3f2-oFhZptJtR3%Y!jug~rt~fqxj3 zy_C)O5#*J6Ci_6)9oA51wR$K&&M9(dS@PDoD8o=aLALQN@xq_MHw3*Ea&>sav71cZ z?;{I!4RDu}QHffZQ)@>IU$)f>$>xn81PECT2zh4J zD}6C)jFuQ|IxunKAg(o$-thHZSqInTKNrOZBSH>ip_67yt&Txm#H}O1a zn&voe_XDK~vzD*#7LNF~x2IR-?6i;L^Qk1o7E|JI{`vC_cn%F~#d-;{hCMwyTnC$> zG(vg>=3VkE2I(1(iU93m(cUG*z2123!qEpa&6iTu(*yBy7P{3AEP&-J{{cJRF4l_{ zUvJA&GO{=A{ibtFG;)Qb93tOPy^tQG; zNx(KPTCJ+IS^joNC#&LJ)S5oz(XJ9*|IfFQ-Z5&3lhN`=_h!#sk|QBRtdW@b9F^^) zU(q`?$>c@fiM2%>41Ag1OMlTTyNMI+&p>@P*<4@l)gv9VYwOd!j#2NFzv)3(;-s0{ z(2=$3Lh$M3>57;f6f1xvvmUflg9m#=l)%Bvg2ZR!nq~3^wke?|D*|%{R>TVTJHfXL zS1$Oqbd>Yh*?R4b4~yv9{IQEms_UUIRUQ5JE#6n0(5mBR-E76tt>NLLjJr_Iu*@PnO1Q)~f}q@Y@AeOnBpxu)k) zl59ti>N`G07I|@g#vN&tRlNtUR2&f#s&Npbd6PQRl8=*zzxIRUNv5bY5>CeMWWzdk zHa)dgS0vo#_=lBA4@+wjx<$~}lLqaEI%Y=A&;tSN+V>awx1AJpmvB3q=^O!$0@{kWwQ{^`VzXF_#^MVKJ&S#vWVD3#lBq-#fUUO#@A_Obok23G;wZ4%}>wW3{; z`?{;8Cc2(GWmQ`Ez1AigdER2Q^YNrlNQk49&WACr&#zH49}8I@28a78YMK{#H&VC1 zL;9U{H=L~V!L09Ym^(>J3xXq3R!R=+oKjb|ovgZH_xX|+1Q*tL&8F@ zxmew1iR?M6pHSZO-r7#cD(4mZ-SsKIb~9*UfjJ5vPo{>_#KZc=&K;gLC{V(9`zePH zP7roCuGzSyk>{-aY~YI!*n5Mes6|lfb_fXvtZy%0$a#sV_<34kB~m^prsH*2Qb6OQ zPf@PI6k-A~ul5Xw1EXwhho?T&ot)W2r=ZD3%7Ha?tPZ#POye^@+cPotQaT4Og}Mj# z-DG$_VFkKTGmp=0L{ZyFc#Ultg^lY2S-Ib?ZAd2_`hYjj?I!QU=c4&POMxMU!Qmb< zLeIF`)vv_HbUtq{d~&L>MaV!ibbU?W*sHm&f0saa;-FDCHQ*?Y#`&x{C9K^jlXrRa zg6Y2ifYJNbnUK)Qjt|*iuWCn)bauF!Ze;o&PRcZnIL+7q7Er18iauFrKNgjk=_^N~ zv8bM&4Hr#4-wag6K`8lyAXOfs*VS=pUQl?Spx&8rz!tDKD7_Nc{zD`!nbf z0{8d(4k(zi9#7qlWNviZx0pJ&O`CYd9w9Jj;BL*uRimYytjVEqaqVk#lH_pG!rcG> z(p*5LTfeJ7!nckH($Ct$S^cpaU-oZX8XhXJBtl?;BV=%(mdSqj@#;XikwE|iq59>X zv3rfM2a6UBaIU>RScrL}7`O=pw_iJ(?P|T1*;Npc#v6hbt+yb*s7sdgju!jbQ$mlw zf?^e34R>v4fyDW259$7nBZJTypG4C0f7%6ybo*O1YdF{v8OUjQtEi>N1=rYqCMT>xDI*9H0h6-N>-&E z_il<;G)48`_e|F1LN;Ui9z6qa6X3WSwe@{6)6H!PSrs<~fugcGr^?)|qH>=ZF>;1> z06*r;DVCNi@MpXR8ENgDgk>3MTVE74BWk8OSWcqc{wpoNd)f^@%76&Ut4f6>@mv4x~mD`WYkCzvu z&Nf68NCB$_b&s~PW|<_^mFOIY<ax_I8~;S@us}0S7sfw~&4?9bYZIF58Zi#V4mH=b$vdBCjIvWp zd3eEQl5R%FM>Cv~QvDpo4E%G|i6-6J$_>mpvY5|kK!)2GO0vC*#X&p{zc`@3E6ZNu z#yFC%Vywc?pWnIiOG?f7IWUgr@R7)p4CM-eK666jM30LV;)EXYweJ}9ioNCt#m<){ zin_(Eudg|nxz6t4S|KS2>*Z0;6Eu&RRA91E%)y(rJ%G3MCFp4gRhNCphbv053>6sP zu0@1(k7f5!j~z8bxukUl1u<64w`ID zk0^DyQhR>scy*#!<&^~F zh$;c`;M~PoVO0?^ZToK`I$Wq(u4q(d;k6re+!-pX{f^%br-R~#bF@$7cVdq1m^ll* z3u)JN&NO)VXtqIBU|S~pbL+#vC*B=$w>gd&^>{39m;3X z^rH4DjFJ#7>PkMNoa-At&5U9mk%xd@WnAOVwz%)tq!ir)Mpq(w39~rjkEf(#OOIgp zEbF)G{KBy$q9!pj)wZ81^`!Yc z`BqAX@~0FL>OE1Lv4PttAnVCiSrLyj3QnSyebH?mE4S~wC~vYF;RMHV3(lyfQNCH9 zxQb(ChUomSwHALkajm7hmHsvmZ)|@EnZo+!>i+Vh6!A5vSbc^hX_n^$K+=GU`|djb z1;?+EJO$Wnl-yQ19dPqU%M8TawQa{*fa_ zeBWzt{hVqrU}b=~kKFdDe4Wn0JtY7A$UEa{nm zd?7>SUs#F^a~f7*QaoI#2yZO0K4qbNy;Iha+7l=C#Uvt>!8H4<`Owmi-I0~q)Uc7b zlV{z>4<8DhW?P+>R!2jtTy0c=vCrigU=5~Vy&QTtD6UmBX!et!hqnq&8y)(hgIyq;I>ncz9yRv*NJx}=t4W1^0<_GihoVhJ>;eopYL$I-Xcgj<5@(Mdl@KyHXXzhI6yM(2u096m^ zWLbh)*%fFI;?|0e*n-kDkpt)d zNtPdQS%!H-#X>&#ib?Z5n5l$~^qiViD@t%5qNPDzW}24=>zg_5*~bi;7`^zQF}G!2 z>L*F5GYSMn-`sqEmCY3G;}K2+&r|QkotKyqEBQZ5kjbv|tC9ycZ-(zx(gyjXLHz=& zAT8eYslA9Z(vDnOoT|!ngV)x+XP4ndSUk03?aO@osjQ=h#}G6Y#8n<+l&u=f$uVSr zr@JIt8bU}ctJNTU@@Sc|6B8KP^=kg?b{mfA_|BNTfdK&V-tNmQL48N}bDz9fhh)qq z)5POu60(TDvfXm}|IW+i$&8wtNUKCSDLQFd}B@tH>uCNDDEMCxc$&r$O&GRs#<;dH(vG&cBvPH+~f`6Y9SJ2#+8J8CInonn(o~P5DpzC)LVsJ$HOMPVyjW}

Wo;q6Uz<%XruHNxVHud#&TCl{ZRMgG- z{xSvSu?iu~GV#%`T_yfK5Se=TnZF5vUhy^f2bQRxsmrZT=fany5+4V-m{C3xrMU%J z7V}ERSn^etM~$XT0S4?$5%SpzDy^X`TFZqd9rV05D~X`F{s9OIK98&m?n%wt7d|?v zv{kK^3hjokjqb~Txb@_gy{$z~4EZo$=XJR&oyK=&CM&20a1IQaYf+!bO)!5MfzcE| z4;uzUi-61aNX2Q=x`o^n3tT%_$cy=WVT_GZl;f5+9eAh8KVES>ss5sNGdEaE!s|_( z_?QA*4?R(`FSfsktlyf;5x5Gl5o!)yR<*3Hut2#a-oLK2ZeHS=du_MY!<#fn7 z)xL~Yq91&DM*3x9W z9P_xfkKE*-o!5GG>PBCBNU({f_u&HJu;EQ`G0DV!UQGZ0)x`u>WfZ7kF-z|EG~jWp zwy9~Mg;5@H0Jou#rf}NQ{``7zTUFeZ;WgEi*DCLx7e@;FQw;Tgv2b_f6;Y|Mx|8)a zSUkx)iS9*{nSeiEJ^4@5ZTiD>bBF)WOg9K$X8lUfpTl;02pKSugz3`0hU_qI!||4S zv4FXmz0F%PiH{x3&6m`nYeh`+Bl}xm1u2afW5JDInj$qJaN7r8GKhMC)DS}y{Nr^m z57t?Xx=Qc~%U5mTF!UdcvE|PAWXl~R34RmDFF>nJ}{S&9jQuD%;|2C=3 zMY{7;iwAWG-Z85mIT0Z75ymLYd-N$`JHmH=WTRpxQ`1KyVj!~;v| z|7tUvcjiY1HZRj`a(ts1mDKqgU z2S!U4$Sic=PgWq-XkLGg#ia?VAtV_l9I0=2p2Esh?Ckx;7bFGCDt3NJr1lF z0r)a8H@KER`1v(B7C8=3BN8nSf+6PTbyg=en5hiM?+3eVW^iB1Du8q&fAeD=2or!$k(P_J zzUlP93CLBkwBo-UD;_hDz;8U2n=UwvDI4nu3Sbq$>z2Zw!C~CR83tMNEZM*JQ8b{e z0S?(oM9Uip-UvEm&Oa9d-#!F)`BycPfBp)M5)>{Cw6)Cwo1Ft4qezz$aVp}K^aw6JiT%j;~Zon8I%8EBE#i> z@1yWN&p^VexydO4gjE8Bl^*ebD=gq0JY#%(Ha);eQvc>jVk5xA)uWa;xWU5}KqndV z=Lq8y=I`8nNN|~u;K~c0UOJ26auWzHO{~#0{o-$`x9~M^3kWomA{f9eeGIvdwm-QJ zs^5J_$cxtRY;o{{cg%nefCAi7`ro~!(vX=53Dt@Px0D9Dr7Yhy(Fck>gnrXTPbmNs zU815w?*Zxsz`7cQz92$$FsDbQm$oternwhB0}1POP{d6jEF~bUzV`o9VMV8b#<^dV=?O+mh`L|K8}{mi+C zz@ZrQK_RExZ>slAZ*WUJ^SawX`TN{0a7$a~fD-kjSgk=>9>P{}bZl&H@^k$MZYcvV zYQYoRLl0SxLo{_uYESaqYErpXeY> zu==41Pu?_vluVqI zRas|tsrm;JcTBt=T9q;w`{JrMR-}x0)e-aSO3j}_SQCiF;Raqw(HYbb zP1}~{b=K~$rlTkKcQYp>>fA2QjqaoJOy;f+RjDUap-(FL=)iOm=h%AC+e~?(kP;Ko zCkbj4jg5_u*ADY|%f=5orNg(RsQVBU1Fb|7iDs!E(w-PP#H_!4x^%1B1v!q`WCGP= z`%2L!;6DHKK)({bHn{I=cbRH=@E_EqLIG5G{ZB=wYlp)Gt&dV}iHAIwTAFY?4TbIF zEFKT#e~}1nB}%GE7TGzJB=3LXeo3XTRX$UNiIDzTSiFdLOY~5WdD2F|{)kVMG;@Un z@(PFf@TIXZ0sH%8>~@|Zca+6hR4Q(nFLQqY)#c^oMlV7|a4l~zI0)WEk=zX_MG-%q zYYo*H{U|MvHSon;B7)~#S~Q=fN*X-;Q_TPTx!qCw1Xcb2~HlVJM7 zs;mR!lcTsiqpqt%rMkrxR-2E!Ntozkd~xQjw`PlW*ex9nS1tGBCHdM)9FDE4!NMS3 zY1F|&Lcnaz$=Ja)A_~<4t5kw-6LeU3R3D@SzTPBa3JIqgD;E#B9b`@|R*M2qP}}UC z9!+#Czs-1BT18p0eWNMSkvwtQL74)HW_ON*vWGf1vgWsp?SlpA#wa_k`JXxWj1dZi z*?z=!@N7Pyx@aocDHug|%kZSm#>I!YvnRB=NBc;)dZKVfj51HoP-;V>^ZJH-J7dXu}01N6};^eWl^n)$4h-)h+_u!bB13@OMh`B4 z6#||7#?y&ri~T(uS(%De!NE=Ty%oK?Xuq}t^Y+1u9JZaX%Ix{q7Z%gyvl;WXp7uD|@S zC&h6B)=%Fw`_r8Tz#So+ZhdX6tR*5}JISC@^guz~j}Z(KvcW8Qk+_u>nRRZNu_UYL z&Wq$_ok@Qe0!MYzC@k0xJGq@>$Ek+t~wdnvQt9!}ELX>MO zrtJPf!=}2K`6l}eeT%#*b6B3HMB7%9kD22k^?XT%M^DFt%B6G{Wb(7PpjNof!VB&U zRp$4&Bv;{ID}+-`%JkdtqC_xf0Mf;&-4SX$!?5(a3MZL_NvX zqvYM1PTx9)F!^7(TZRMz1^x%iuNd+j&MgBC)&j%KTJ!z+lj20@)cG z@;K<`qQ$ykyYW5|Of~mS=r%Qv@CODddLfTX1u+8Z^Ax<6YZbm^{4$Z;hoe_vh9g-C zdi%yvy&2NV03FIgpf;>%hfHSs)wx`e%l(Fdv6Tl)GpYqTH^2hVV3@VZa_O)^)0N+e zjhuQef{eP1PVE7JMlV4bLHguRH-B}WF*ZGIrYk`toZl9`=*4Bw`+#1OA{nh(Wk)vY zjZEVxDK%f|m8?2mvt8^ibxmoV`zfEOfpXxXuQ97AsLph&IxdLM2T<{U$QVK`+yiJU z(J+eWcKpQQ?o2Ul_0nX?v9YO=1118C^fPKsbZ@jcGgUg&E?RnQtZLeN^MmHx)*KUu z-U7|Lk$K#a#mm?2>C@86$RHX*#HH&n*?W3NP5ol4z3GZ0*o6VzD3q}i_iw4%vl~Fw z?u0o%1m%T%AdKRy$1k(29JcnPpM>20{50mC5MUR7VX!miUnh ztj1>F7@B-!J0X#R{3;_X^HHx3r|Y!NsSp;TC-DjGyYA9d#pMmV*wNDMDl|12M`C!2 zbb^gx_uE9w>}K@2)ED z-%@0u29YnWO1Xvd6{`Dp4|h**O*mGIa7V!xIs_^pfaq_(F;Bn)w~MjW4y!k8(W}7& z*(wr%C+y3Z*A=5pM0)WYHct$Q{g*#jfl9%!@-5&pxm}S`u>zq-m^jP-Uu)+b)bzH# zd&@@LSg@f~L5fP>bb(N%qjZRL73ocy)DQs?1?f$?G%10g^d14}AW928^eTiFT1awN zJo|U&%$+-P+~;0rbo?{PcYW7--{<+f&th@kvC3eesZ?HlYei%aaY7ho*FH%7%V1*? zbw|W*I365-lw4j;X3lN9oPdYng++o*g?z%~+QqAtJ|;4T$h{!xL7-~ttFW`Xil43#N8NLI+8vOwr;_#R&+x*!E)*U(_>uwOMl&cosrGv2Y zfc-4%GhRMXTj(PV8+(R-vUBsFbZuY${G%Db!R92n?cGk@Ua_ZNFJ*^1vN9|rmBBkE z#CIIA_Glz0IOd~yjVrqj{xo}1DOzl-Ht;cH#g*%*|v z9)y1@rPdB*_*F(-<982wrfYo4+()VCguUK7VNjlV&wAd=g=C}Q4RTdUGI}qMRtBsC zsM4uv?I<(&_P3;r%K=-%we$2Y z$B#d++*Y}ZMw(YmV$P?NYtmY^dI>F1B6|~m*8Ci;)7;k$@LOmBy~b}ZLY8SivX5_8 z;CjKEcw94V(%_Sn^B`Iti)rwMHrhgPX zQxrGR2vaTuNBGWSPaJ4eR3gn_4l|DW-jZa*>(o4mxlF*>L&b}Yv_{PHCnUEH(;ZUuxx4)qO$Sio#;_I84CGk}`fg5vjuf4Wr4@V<|et)fj-7%B@5?|mF zr-`ZM?)$A$i*`Og0y3Dc?_qnlKN(Snsz5{IXZiL zzt~u5VMLSNepvI}=96pVB0XtKN?)+c&g}}pTUm5XwdJ-t>IpoC>{dOVC+l?cG`iE^ z#2udP|f%8N3#|jEY>~59TN7hy0*}+*=MsluMQS)xLJv1 zt2qaHrX7D4bK8T~LUYv?+^0<%v`_Aa-QZt)(Y%x#ze!{ejPbF-2!y>Wz+66DL?HGFN7OOk z-dltz9i$rNcerq`!I{{RB3AW)Rz?ZnO&?P>Fev^s3C~1el&6?Fl$<`Z8{HMpH8zE> zDD%KO!A8y}rUba{G)N#%Et^VIY^@10-e+kh`+7twg;zkDHyrq<(!3f=4`m-%RV)C@ zuPCE*n!u&y}NSNcH2=4tFjv4Byby)LfBy{E0Uo$yG^47dECE>|eywbl*^? z&n~SsPk}8@oKLduc|WB*Vxq6GZ+2m_#NPFMz?)x<(e}TiRsT@sk*&UdcBjb=i--m1 z-=Pn|j_qK5w!sjKzvDGkV(wh3N=Qj zpSEm^6Yw#wa2~G=D_k-PVm^ECI#8uNfav^Rs8X`kROtxCwb3%fV4-14sXz8yIzsEf z6XWzL4PAwm6?Z>)DTN=&t(1b2xk`O;`5^If6U5CY(XE zv)__?;c#cEvT@3jk)rR81|xUIb)FA(rYQgW(#~T#ScFT7X_-8h`4|`VAVYk-9a3*D z_Ni$H3{S6hdr_w$&H(YnV^sMId4<|#{Sx#8mu^%1L&HenY`|aO5DVCvYVc7(7&tm+ zt}~97b@n9basYX%Qqj+RvtE|yC+NNHWlSJDT+T6jbvA?co1_3*$Ad-TPz;)tB#!l}v>AAL;F_PnL`m z0Ph^%%dO9K$BC|g6p2IUa{FK!9mgw8`*U>}jAdQ`aVQVexfwTC$x8nJgD2DMx9Nu~ z%#9JWR1^1DEqCA8=BuA9u#mJJ`PAsRHFX05W%6{uunIg?Krac~6N5pe^AJl-`(2p} zT6h}>IbT%amp_J)}42B1NgJqcmoPk%p2yjEFZ`xFZ}ZV9KF9NzkliwLC(D*OdqaV z#t14>H7J#Zb1iT^c5>=Y;EMsHLd#X4bwLy^0jVkusF0mN6zlEom{mOI?p5d1(B=xZ z)=6pCuUeh)+#z7>#&{6c%llW;&eql2-3h$LI1Vt*b~i)JmL2RX(b3s$T_6I}qYfUp zRG3}pgA7~*VN^p)qai)(m^Bb#ed1&oct+3q#!Cz|3j06<&qOcv;OA9 zBq10KAt^ac))wF3(f#;N(0PLguy3Ikb5c%j0ZdCJWw>}AT%FYQ>Q7yF%%jgwN9Cuc zpmlFApK`_^E1Z(=xfJ@5TCQV5c*#!(J5gb*M0d*#B}zKeHzd;Yyk=i*$x6iCqh38v zbTt?#62|~`bZY%CH@Nrb)6w~cn&cuFZBtPNI_;Ukf`R@Tb?WgW4^Si0i`g!NIQY3? zM?t3v_DQHdJ!r3!c}#2NQIX6tjo`8r)v-!jj%ZfJe#gFa=~#|#gN~^NykmSH!l0N3 zG_lbf>Io~-*-95Yxgej@2Qws6Qv`MkGF?VM zGgvNtGj#;Y%FH`{Au7QlGP_Q95g_u+PM{nqC9>(SW?(JIl| z9SG>n?co7M2uDAqkgJPJ^m_q|j`pp&xAxmPG18`XstLkdlyx#<@+Sf|foBUjM)C@Q zkHbRN7-zlzjTHKAw@&ttEB9P?J;iq=Tw#B}^7(1oAl1gkhAWA9 zx(1xHsid92`aLf;ezV5I4=3HR-O=t6awPk!NzYL*PN3;U2XF7;14(R}z zN^C5=ui+OKY~x}S04E+ouh44_DhV_;cP5E~F%#Ft9_H;n6iKbt-Il|6m}h$xXYakc z8O^Sd+L83S>(Oue8Q#b91r8Gj;W;WZTnpXtmv1D#r04*{FP3Pel{!<;d$2r>Bu;Us;@_5zJ^fj7!h7&l)K`Tv9JBf>U(A(`WWL9&WHcdKAE; z+M;kaZMw#i)0XV4D3A}0bIng%cShYBW5BeSYF%Y9(8VFcs&u?5jfZBHPLsD_c=sD( zRp&3_UoEtq2Gvr74|U8$jayfs_duEzR~7b{4V=UYYiQ?H0sW#!21?Q-W$Ce=|Tuw%FB>8AUxM?Y({s58(A(^i=l!ZhrrjQ`VDM~bs;;rJ#j(-krI;lp|u z-hg;-KhFg9;{I$azT=>QFQ55iwZ~e-)^o+}s1IlN(R!I~`ZM*96Q21XL18K5Pt=hP zr7_*tUn<;T3?5ATGh(_%sQ8Qp;9c^_&Z;RD&>Pxf6Wa1>Kk01MYhs#8NqOe;bCGl1 zuW{W>{=YI*L5geOQ;*sC^o%Lg=TZxeL&k_cw39LrSqwJsjY$&kaTGPXq?5kws_At>#hex;o%r$xrw{{PSkyl>M+{)T=+G6Q~xt&z$=j zkyf|Rzkt~8VtcGV5VWvJLa9VJ80I`EU=669-}%w-=8^^6-&{eAGA{m8^X?w=q7rgyp~Iowct z+}~=3!^?j!a;LvkpAvMqHCuVXk+!vUs3=;2EXsqmG(Qve_n6&f5n2Dkg($x&?=*HW zjQ#>w4|x=&j}Ib3GHR=OW9XIGc{EU>EA!CLIt+@&3l7?VWYVy^K-Y3g}w(pS)vRjK)u zhX@XXp7%#_s`VOKOtJ;g}T-Q=b(o zVs8rkHmHo^OvKB&!CPjzQLotFV61H0U+w==$rCr`Vf+14jj)53vJdX(_LN)i@pnyp zB?TAv?i9l-c}gK0r!#%01^)Pgdas0{` z1kxpV=PX=-_@4ps=DMSi9+M*Gtg0~=6n|8h(-F;vzlZse0yd<#K7l1Bqy5`U!KnFt zjHU{GcCu&Z6~$JF!AJK$=T4WR(K-3{AQf4`Uo>#UiB3pGY3_9X*kEj?fJJMZ=DEeh zb2s?9R)nl^;=npg(BsrymR@a-&TgNd?-Wv^*vhRf^{#QvWmlb5h~YQC=?$C(#)Cts zYCKo&v%bBz((Q~vrPU4)ao-8r5+7D54is4+Zeab1U-&ogIpzmT3IsM;eRZgLo&~A^ ze!{fYuk}4fmGDF+#f1O@k=mRvXg^ZbR%DWHULP*5xX%Z`U+IJ0peqLxXj$QSs zIc)HdMD&H~iR|X}rK`Q(T~QFP&d2J5J8Gbt$H*<=pV}=eO+h4f&yCcvz|f_SjK9~8 zO(&8!${d?$`54aF6!Xbbem?`FxkvX0`eupS1e~AlM-^ntJeNwN%Z`BzHdlVB5VgAB z2yWv=Khr6BK_gSLwEO|MZvuWF^pJW}+Be`8qhM}Im8&j`^_F&)!e`T#^PJ2hs9xp8 zw&A8fU+7&|46Z^M{WZ{T!`R!d9HQlAQ5#7w{)o$9)3B9PQ&-2k$sCn=86xItvV?s@ z6?GLt-QgU8f&H0|UvJR{hTIjhgd42&Ka|hfUe8Vl|SqmpIrPfQ4UIamIqrrXPPz%&|5+xN@Daqm{O@-!}xPnP%Xm4s^5 zE3{9X-6UPM%gY_n`V!?Nd85h$6R|`tU41a9;Rw-BHu9fX#p!cd!LhfFE;9Lc2(V3T zz;tizzrEUcO__PQN1)sp-PO)GbezDK&IT^q*>RB?YJ7TliuuWYohMdxe9u&oqO-x- zE*<9U8LJY_DD$??V(BIw+&IX=DxW5a(-?{rq3l=8a?-N5XE!DMMa@V&b)$3{E0-B9pE2YOc zGzXoi-@9)d9;+itH>!lsJ@d(klxW9$$hiMd0ku@AGwG!G^J(a)RPF%Y zCz{7l@U647-2|4Ke&udn&Ntn0a0|{twf1K-!-D42U@DrZDHvrpzfz_KK6GjS-Kp5Z z$BW@9aE4%cA=L;*!?e98r%Of~@P~~+i{BU*_1)owinfHh^YaK z(4O;H*a9Z|vfTp6v4|%ZR*^Ch{N0J)62Z*}kD`f~r)TPhjB!H(mfdl2uiDT*^0^ik z1wcEQAp=LsM2XsuslaXYnGXi9hH#xH&QY6{6oytEJr;fZ{j9APs*)JR$fk6j$-#3s z;2UEQeTI*nK&}8XoB>56;#`rdk*3pVGxWg3GF~D=&m9IGYK#780T{Z zau(AxpU%84=pN$ls^glfJxh>2jJ0Kx)VNz_uzQSN$D~Y{0V4`N`X$RWpj1(5g$MZ5C$cQD?*EE!$pP) z#g=y2+xR{dRn6uDRN zX$J61xmwYsF*5L*NkaCajgd(fD^tbU7u(03oPOrNi|Fdecl}FD!c8&$gK-&+-o0i|$H4Xec?goF-Y}u{?*#ijHtqTb(toS|7~x!;10h9O#mX z7Dnmql*sAB^adGK(#e*3&mp|q(t~(EZ#UzywBn|c>BFMlJC>DO?WplmB2B8`OE7nd z;#QFXjgl7Gw(tH|qonP!{t2W=QS^~5At|4WQRdV)6Qq?CH;!<2E2?8)`yL3(?KT)- zc101a!lnBLwd9sSeXx9oFi6RZ5#4Ed(tSOHuIcBnbZt_5Jtab)5(6jz>T#||#ixcB zhqLr44_myB+*Y2J$X3`vHG?XJ$HvQ@oQ`duyug*s9!536a(ybgYD;{QKf4aq`b_EG z4v&7?O11U^S8i1-@zDJ&9M`2-`!M*6K5e~qZ=Fxr)*_mUu&PA*{B>7UXdm#%G#2kkWpgm6L%G__c5ZKX!kD3{5OQd6U^B+~y zhimAYWGzfRx<%pbRn_u*ZKjCP^XZ5nFmx&y%9MZ(X4co5gosXc%*E{`v;)))iOiiw+FcGfVm82#FdB)^%2YW_vf5&R01R?F`1aC#g+^ zbtZTA)+HsxvZ*8@Xr;AW7kZHA_Bm9nyh5NNPj|W%E`fDFroBk}jkLN#M^3!!? zn}$xxDrWuGAK-Zbe<@d?K+W!r;ESH;rt8O%ZXn+jjO28-l|bp|-W5kmu2BOVueW{u zdy7H9_P%3A`6IqR`WoW$y@-vN>k(`(U+VtClY;)nlR{d7T;;QGn%)0`aHe-R#(TQ=U^p9}M!uE*(C-WS$Gf%Kg#z@RHeYajRc4ztkU^(WP>=9H~lG}Ug z-+HH;H|?~Auc}6Fr1c;LtvBQiYaQbA)s_J-Q$xd}XB1LRF3ueKOBz80U71Y|RT?mn zp;mpVJU~&e2uDxdVNqlQx;lQBi3blqYE@SB^(dRH+wXiS$F>UtZ4{kOiBUz?ug2ly zRizPfNq4OyLlaD0KehL4V*;mF@12gxa|Z6W(2fDt+0nFgd|45@5)MN9!s6LF-*h%fG3 zGVf>&OI-L~QWw5D9{rPgZND+Ndq@rwacHnLaXiL?6%*u+&}5WR1Cdf6sVQ!IIWb=Z z;L4sG!nEq`5H2c>Ul5v zLDWX~)kNQYrYL_x$Wi`tXS3_0L+$FMe}YIXe%d*D(KB`%(Rh#OCv0{b)uS%z-B9yvCJ#U^P8x3X4@Jc~ zk98KBca%4-+)-PegIL4wZ$b{BZ>GIBQ(Vat87IjAvmROMfF98@3%A$-2H2oQ`CUA7 z)y5^y`yL<$#)HtV za)+%N=~kkx@{U9%xO;M_HWq1zIh4sLg;bX?(z4fsQ1|8HBp}-|+J+I$L#sM(E-l=blkP>4=DbgL; zR>YNt0Chy=hd=t1&okeR=Z@dssl?F>1D5G#N28Q655ekNGC%kQaoU&1wXNE!iry{+ zDg`;uxDKJKEI{MB9wwQr|0ReXQia+G;h|r_Onb|QDuHvB8FHY>rC-2isg@Y!V$o2T z;%m;olX+Um3mM@!S*hEm`Tk?e(kg6qkTbmNaAAI@k6x|ky?|bK&_LPP`8wuGTBS)}a3ik6V4 z?Y%N;QTs4_`%A)zzr-eDcLQ|N;fxOWBMywyQxbI$>85mCXuO@IN%upHA3w+jy5+UO zaC`l?Sd0%8i@oMHeph|3zFq%N==uDT6r4D5H@RBP%tztk_l2JCHFTm->}dw+NE+^s z<+h{uWcS6m(}A7sWToRT{z(^XGP85iRwp~7^1Y;|I*4(ig0fR$c)z#aKZn-PIz?U- zof$HbJxL;pV&hAXdK$sPqK?Rl20tccj!h0sqZ3#_aXhA@AqBSiTm*zxZI`n*bvj~h z6$|7p-}!?rU9xhw3o6`!?%7~BzyiF43%&I2quyG@0K+Xoa*WDK^>+6W^b%No?*GTO z_DkDP3RwGOwq?@0G4gq?KT}t8T;WDf#;qE+h3{C9=W>hO^{))Hsn5t$IKq0UV^_Id z2d{=TIsyP8?}|Q&Lmk>V;e9Sw{!mcRZ{!5ooH}-dxQrq1iyiJ`>H;pNo7a08!f{%y zp_Z0|Z<;DIN8ulIDg78S4sVgb#`w!uwI6|cW9qOkch_X}`s4_6w_KlD zS6Q5#=$_SY#XT*z`Qd>6gxPWi+JZ}O;n1pT=(SGE!~VlIDE8}6q7NuWft(^N?H9o) zpaOd1xy`qFA}qI6LUpK0&|zCCKMu4FUH^ zNA)C4IP8NtW!GY<O`FYhdm^7^IbXeCuRp@re`XBUKgT^xTzXO<^pJKDgS- zu5>BHmhikodr;2rIajRpU)mmGLV*jVQ~f;i(&u|#n^BCC{zg+?M`|F%km{}y9xhe`{`x{t}3Bq7gC9@9!S6sRn?*o6I? zg;$2k%0S@n=rEM9k&nqNh;3KUmO zGolginI$~3x9(Fk0$7>nYI|f1uzZtxv!rPe)JBD_wMRZlL)u7{g%9*z^Vp(wmNEUV=!1EB7`-T$H7b~OS^3JJnFV2lStwm@jC3MfYW zu-D!x1ETGYc9v3f8>m!%2Sxwl z`>W>$zHAKeWv2#&9*6Lo9H{RRcFU?!dIgNADtU^Xjy#I(j<#Oo1rWAG`04PvkD6JE z4>%?JWzPSjPUG)M*qmu%ViFqfk^SsLnwT{G_#lk~+?74h^mOQBb1Pkc-avpW7KCWD z(wl>ju-MyugA@!yHL9DfqVr#fFEn!iTn$D zX>j&n1j39>8J7CF7qkG2b1&{O`UAr{*R9w@53>L9{^kV3nL1Dr*OMz^`>WdA>Bbzt zjX1rr`DJt}D2>$k9hNo;;?ltAU28XbK3@5g37^)D&S>7SIL?J?JFgFX9ja#)o}UEe zdSU#ybD3C1|HD<5cWb(A=KLSc5#*5)BLJ6>!HMpFffK(S7{PMtY>{b|+{9#t`VZD%4&B>g z@ZN)FU<4+bQ+I_W-rVkLG0%IYlE*k&s*aw?oUNVj6VxB}u5 zEstMq>C`_GSn1CV(kD2cyDa*QE$jZ0Xwt{42E>rM~W#eABX=KcX{zw z4vlX0?bu^)H?=Wg&ih9OCSWwW`7;@f;x}$IQHo$Bd&Hu|uS4A+w3umJFjqZML$t{J z&Xx>uWcd2`H2MlV)x`%%mRXliQ6q~zQbbEVvC@AhQufVQQi5FEH5AbZ%$xDja2rJR zrHICpg?IECT79bCn=$=98<-w2#b-_jD>BbmFw`#v8Y0u|rs z(9TlH>Cm2!*Pc2q&g-VUkXlz=O+J3+K{C=;5pNyU4896>_2hd``LC5Jp9pw-`RqW` z4iIHji<3n}UWIHiuYuW{ZUCb!r1Yk605q-i=^+)92K76=*YBKwp=$;zMAOF_o?a1! zgHtv3P+O~4ogo((>{jNSATx1N${JFOEg=_G-_Z)pua8%?k=~inldf+1P<6Rpxd2u= zEBP%i`tQPA&WZs<`%@I|2 zS?%E07pp8ngI^e?&*igy>NdWWa_^-r<;3GJUs=M=vzHEjRdTksQAxfh5k)dhPEAjp zLFWv3_RZPkER5^ucgMgtI(Hhftfj@OBCUixBuvF4vdu~mcDY#w2>sn0+rrLy)v&~1 z=~#vK+c{p8 z(#<t6e=b=RKAS1NJ@cvN@*0DwUL<#ROv06z!- zz>d9*gYK#NIaC7x+>x}Ak$ELABSZhn#nH;f&JqB48JVbkOGkZxB2)iUtkjzvMcg)A z1~rVAxH(~qX&+;;ZZq{ty{gKK!h;xcn8;|$-Yw@7&DGJl>ub#M_%YI~6VfUVG(1V% z8$KD%xVd)SkhC7j@I?>;Y*~aEUUQWaN@Z3`J)quJRaKEMi1z^y9s=*r07AQmDWB%$ zbpttMc9w=(r~z^H+BErkH`_NAvLSt=2#lcTGU+2jh>d4{w*jr6*hwh?QVIJT>iEyq z?y!%Mb^{(7G4`am7_jziy0ofVkfF2Z{gmr2g*RE7r%O!S z+B|FBcv^`Z&M(W|MxHn}xG;yySK)o}?>g*%9Krwantpj;`{4^#-A}PtP2#rw!`7YY zK$?gQuk@fN5d;qjNjF}+V?RB-^Ng6YRh`Ro^CKRLSPhKP5HOjG#GiUFo_jU>;Si z6DK2JCST4MfFEIg)@2gdB%zi3knp|cOwz_W(J&?a6O)M?8!Gs1`6;n?K&2L!9ED^$ zzDEkT1@oOv)IofA_(s?2Ev!LA^bsly*BLK^C>P^K=S(M^Veq5Y%&OJpya}r#PL*PS zX}TFlrVfBI-+*qEnEZL)(CU|{YT=ymeJ|8H{ewy=KsF|B`KAd^KhE3e_IDCqEPJ>Z z59o1Hf`}g6{W=!Gs2f9Uv?@h%O2#13Pe+U3My`iQ_XpBgt!v+keTd{t_}C9reK>+? zN>90{XptA%y-3__+aUusiVGvbh9Mm+pN zpUdeGbg^vYCDeM}x%Gk9DJI9;uYpC3$&Hkj1VYw)yMYDweUGH&qYoNFS{`J$r2Edcrj0x5G+3y!X9}Wwan8As<^24C#YdL$mLdm#tl)=8E#5-NbY9U|)DQPs zeE(oV6M%ZJ+Y|M#Kywog4m`yko+nQQsM&i4tJumZK<`G+*rvmdOzE5%RJu1CF%3E& zdSQ(86fM{MWIDz1qcn3CEZ*_CFCVA@OG0ZiYs1~% zx`jN}FFs~xPh<6c-1iti0l`+GzF6d^a+b3%N3KjR zO8$A!i#&2rEir?QMbn|IHAk&POGDC@tuClJK~Gs+*#U8oRb=v4=cZHKW|2U_=d3JgQak%25qkB9Z-U;vSf!Ag-wDxp_mc z_eWagPlbtA+03f0!5ad@6R9ya_lDDZbDeDtY~VK5Zx-~PbAmYQwd%D}rj5Xa-~fAN zd&-^XJ2rFVbA7cfZck{~Y3fxVBRmGy?w;w-N#)tEaMd8A(8SLp5A9JE{sd%lGR+F{4j=B7jl(`xV zY#<~Md_#Q$Xme9bpa$(x9c0yI6}(U4Sm0p8%kgM;Kj$L<%&|#%uTjES%9o=fd8NDrWU-~vK zzAlMNy#1Gr>ay9ZoZXxnY5i`Eu9Yr$OrqVydLHEaGDdYMacl&%LS}7EO}|gT)makFI!(u zzNEQFDdaHRxcd{bs@S`fY$9$t7kWTOz`UU% zCLnK5YW=N~Pg+lHZnu^@{jmzUHGM{gQOe?|r8CUM7)*Hm8X2;CM4VIm)mDq6Qp?4Nq6QE`EiYMpj$et>wOoII$05Idf`)LA+Ue* z!eP%u7CAQgl>lZ|XT~_sgxf}I3X%0wYx|6kUsbXec>4TC-U=_ch9GuRuBhe50$CQ!?CSOv(yu`1x~oSV8@z@P$EQC!AXZeVa0@W^pBQ8^&ZR*>4B3w~)6 zWikW?cj_a{%1Z|uNE*l;e4E9cec_HDmP$SEZ9j(pbT4wUhCyZw!Be|aQ!NCZ+-1)| zjQnlBy?afqf+mjUV40n1k&NbQf0HbWrGqP*3&#hyMaNuXohy%H*K-EDYr6}MUS1uZ zU%xAV2kA}d9Vr|u{A^XR(Jl8NW?RhGr**mEX{Lb}2N}#@!N?ybWPKNkGubrs#$i@8lK_()N>j@X1fm@5t((YWqsV8iS$g|OX z(%1z$={39R;)<9VS=IKdNN=WcI@;zxu8V>_s_Aum&I7dbS61(0f_~TKd{!D?km%3-)Hr8{Xm)Ev?s=IpuOac6-J_FQOf}%^!t@igL zXuVKedkct@0=h%V?eqTAnPb+?iJDP$Xl#4=h3!S%nf^?JZ-{qD2t#!8qYLs56Ios! zfL9wCz!nd{=OvN%AwKKI0y{2C*Yfry3y0*R!S~dFI@FDLA<^~1JeJ9lhu7uXbK6y5 zL?H(89&qfb`8(v8uCfOtfr3HomR;moYGxAQwQ^jRaA3p*g5ss7VaMnW6kxpIXW;AJ znSu5w-dpO(TPZ68*wF3U04yLC02|!`q7Mlm^?%wgfR6!~fAwPk0O2+Otbg63f$_Jre6n8UX2ljo`1$hL&r@=SxLm)(VolH!qLo<%gf&B*E|3*FA;Rp z-qOvK-pk(3!BxadoZ+uKM9}SD-P{cHf8F8+5@*m+enl_i=weAPfM%yB3=(+s^z>pb z7FHr^&tLp&IQo}3!y7j@ClPLLPft%SPhKuZ7i;dP!otGbPk6X_csS8_aJqUsxS4u! zI=DXidy;?8^W4(a+{MPp&BoDz{@1*wW{&P|;tUMG0R89l_c|@TZ2p1d;QFt}LO&q) zuPfY7xt?(UXKwURv0uF+uWY<5?R1~p*rRcVh9U8kkB3j}uL1wBOaFlUuc12s4CN8# z`+p4muS@^;P)%1$7a2!;G*CB*e+c$3xc`0eUjxOse?9wu;o@&Z|J94ev;>|Q_kXA+ zfu~zX14R?^fz5MO4fGk!X1_id{phd9f1lB9j9ScklWcUC6hQv@GYv1`_JXI$-Kn|0 zpDdw=#28r8dz@~uMj9Pl^mqbjZwISW{x3qpfzV4*W}A zv*6qGK>&Au;EgAlY zM+Tr*?S1Qiz_k=0Seii!Fy9?A=f$C7wFl<}t(dJZ4?LGwRy}z#c)=AYDalGn%Jxw~ zb|8$LO>yBkoS!1Zae-UpRH! zp4pEQHW)4K8tIj!-YH+2X^6Mt)t6Q)eIOXH=E!*l85Mo{^tH$Cydj@MY|GS@V+nol;RG~u5Ze`?qk28iH6rIgmceuvM@bms=XxxLm91cgGMKTnA5@Bc)4 z_in;cl6k-%$O-)@n%FlF#V8Y@3t3tL+88j@NvAoh%jKHQiDFHRR4~P38e01CxL_{O zB&y+EhmEYN6nhYe$?2p}v!jkmh#=VYVfI5*wdIh4l+;gGXJJV2AIR969-3k~a5S^L z;K)bZ3TvdHB1ICemWv znr1AV=79U(4Ghzef1+&`(ef&&K*W*EdO=Fo`g8v*8863l->PLqBFht6a!n(5yMZl`MpUx2gGbR%L5$J-3GDc(Y0(@RG3vQKC@~&C2pyT(`|yj8Un#ypfle$k;gWP9Y9< z<$T4&rqdN-SSC&PUiI_LX@YCpU5F}%<+enBah9C=m0!iZI@5FIkGI@56 zNoN?A$%3A7$*$$uno$BC*EfU{YAAAPJ!dfA9Pe0XPmDf2D+?<%^Cs5@6Jem ze_shUz(?aL;4Bfg;RDpo5V}fotPxo|xX!%?FoueDB2<(jI?hP{CX<6^j`FF#%<>J| zjWn}UlGUisS zuN5i7N@QgdNv>r6Wc$M_4N}Ee-U~df8r^do>wx=9SZk5_Py-}05*T^I#dmp>bXV>jvs`;RE6 zQML{^8FayHXgy22tw(YrWHx}4G25%ku5bM$XtLJL`vA^g zeYz(zT_7Ux;j?drP4ZHbxZ{DGEY{1}+YMt-Tr}^CRdD`Xlh z8|-5I_^ur9yJ`Aw&XwnCBfv8*I@brPjVI?S{P_)MtBZ$5v_64xQ~suT`!1d_IJ+`4 zqhUcf$4gJ1t*3E8SYh=QnNjz}vPl1>u|$f|+Dw@rm0tg-Pj!Gdi_0^eA}e{@3-(BQ z6f4G1)xwcJ8Poj`$=azZYy;<*{(Z^FuMi7)Y6CMdr7> zi$sYG(Tezj!a{``(RX?i^H$g5<*y#|Ka@=DdA75Xasq#A8IgwnupbH=&2!$T?4y`x_ z7^iarAg*UkZJ4@X78diG)b3qLG61v}tD~a2#jxJS#%4O8$_xTMXf>4cSgjTbI7N}% zKOQ4fD^lUS|Mc>86925IZU%_1p@E9|wJN=M@D9CZm<1NkI}_-8g48vAk~TkMY9Klo%=?WbOjdyx4#xiqfO$BlCwuWwEayQ7G6=AmR7$|FO8 zWPjQHBX5{)273_lfk>h9RrUF}ZIPPVI;3Gk5A=-?0ceDnZl&8-+agJj5_K#4n72y4`hv$))tTZ(E@u|C!aIz${vMvdM)F*e6ZLG4m^k_U?#zNe39zDr(t@+uh&v zacrzC97>)jv6()iuoq&yh-Q3GD(fl^)m%Jv|AFhS_RK-*rF zfmdrgF|p96S*ydrVPgsvSXpunQO;UL@HX`CY|v^uM#WpEnKR7_dAzyD+295?*NnVz z>$OVx38M`!qZ0Qrd{koG<0(0+nfsPWY=-}y&*Mcul1CCf-(%B=bg?^5l0C0xN3TCc zQEA6cFzbj;+^hS@YK`6Fe+DTRxHcYM;G*`RsVns}Hd(~XZ3{@)a(fpg)X8RT~lhUAu zH;a?z0KciNIv(F+v2l9~3wfJwjX4JXN9$^AJgYQIEuLAer{6#>KV@l{7#W{irBq#< z(8cyz&4U}}EwD#+-1m5|CW>yj6qBx)1_oHC4cfj^MzAHs)Q30PL6a{Nzh1gVGcsBF zeSg-yb+YK1lyIA<0Ww=+?kntnUh6(Q4d#js_MErHE(|<75<=P%pa4<=|Jx)TM4IgX< zvJ7qUBlFRAs>>!*MuB~rR`k)vF(wc-Kj=*R`*vaaUuL1?Dat&n;$$Sa;lgjEocT}| zV1O_>T`8+Rh|zUf|MF9O)coV*qHQ}^a>H5V)gxBb?j$mwjXT|ydM zJ&EO6Cq7wLRSQWXaqu+KZX09*OI6~89_djLI+#dbz>j;b>N^6P1ht}(%u`K_U~Jdj8uFeDbq(9 zZ<%r?9ZDtXs_1&aTi;jOTe0YKMK#V;?pgKX%n9jlXwzPvZLCpDLF3@RDNQMwum8bd zo-yy!8FgVQ^lEqWpv*ioiZ;ulbQuIa-W2uy=6Ciit7U}Tar)J?ow`bquCdY>;%qKk z;IoVe@~EDt9+N+f=r315wBaw$+2z~z*6c!yp$*2EIB!O&W{+z6%UBfZ2`&M_@Ld25 zaQH)ev33NsSRVN$^*yY`V@Kfo>LAZ$WO%u&Ti|H~qCC6qT@G>zY>r)c#7J{8U(+qi z?%GEq&i3eq1ozLMeFZ7FGDvrRFL2K8cU6g%r&to!yM8I6p26iymE(ACU=Txfu9ot$ z&pq`Jo26GrwweW+WfZw5XRE5v!Gw|}h0SjT`Bk{CH*L-}ugd`-Qs?W_O;5 zzJ>ej#x)9o41G|;Fyrcxg?jsNv8(NDJR611m?SIxca@wx%zp&8gI2Cq0mQ2y8OeXGf3!`Hg3X3mIP4;U?vr z{cxG7E5Rm+-SO@I`PbU_7lq3D%bgt839* zs4lE_s?8H=IPS|3VhZW|I&`->)BbHoU<$o^Mf4Q7vOe1Xd}3Yejn^R!IKLUUD*CE3 z6i0iHmmCTjtlKF=5}z&Yi|>zD1nQHAU$}#JZqpL+0Jnoyde#>9V7kC5Ysa<@4Q5a9 z9Xn-{>uSv9HqogkQ%y0EI2OjxGOz|){Oh0EG6+3v-R@y3w+75*y{8ulrWU3#0|eT} z)0?otwg3ab&raoh1gp-svyW&BbN4Md*>r(Blq?m*1ZqnQZNUaJjjirkw%Okgjtd!T z>MJ%JYS>&sVV2-s`|zl`+yf-D0kuQdwmh@JRWa@ZP|!SK5Ip#3h^v^<)4*snRWWO{ z@`OU~yDdQis0QX9IQnjy-#z-Gm#Z?GfH$#`ztL|}0|eVb_$Y&SjlPC*-%9ZZZ(Nz( zXsM0gD@c(l!I?N}j#(J{qLCQwB6f=aRaT&d(-5*M0=qcztcBzSn-M%HTS6PF`u^?L zWo}+U-nR_0+Ws|84jienb&%qDUP`w+Mv2wG@!W zDqgY43^Rl;;Dv$!25|h*m;|;&c6n*(+&fLa$x|m=L!*jKE|%*dL@bdw%^5Hr-x0qv zRGz%cRASPAvfy!bZ_ABk_>6Cw!gujzV@sNP8AS7HYyIS;1{omB0lVE13XZ|T#@2o2 zNZ<#$@ahs`|KM<|!?C3<#%;$XEt-FeIgc$doLC4sBq6D>nTgcHWOUoqSceb)Hwa)rpM3nK#lhr73-mm<800{X&7WGlWU2Y=-iBwc1xd5ykkwtA&8bKL9 z3QcB%rrK^{o-dh|R(MuJGT_kLK?tqrgWr!AE&m-Z@_O@PY$z#;R#G5uu#_9|)t1W` zyF)P9={pcs&VITNR3*sC6!O-)j5?FoadMVJ z>9B`_V)eUwx#t(ZJzZ>%KA08;7%gbX1{{@5MN6Ggr~@wsA{7hlm4urXvA*!n+urKf z5mrfga@hVT(&dNFCvul-_f3bg{e4ADJzW{J#C{3q;!BK-()YJL%)y0}MV-%ZKHRL` zj#Q4-A>)E|Ko&!2wlmwTpyY2n36HkCv#zRS+l?E$pQ<3H&iF44+YeK=V5`dHu19qt z?Z?g67e9Kmbc_(+0F6|Ew^5am5%8VSGbc*e9!#8?9&rF4wMr913?jwj7QLkY(9 zRJy%ZknzP1-tx$(QPxxt%u1iUlSOiTwsg&x3uC#tJ$cZy+1bXs1S8WB?Z*~LE}STl zdtY?5dueN>DO`-EaWlMWY!Aov6fCAnZPA_VQlsOWY#so=%SJ&aKE~CP zAv#{`p}u&D8nyxulXJ^?lNKrTymY9bz3DSfWnF610@{D0@AH2wXb=c?YdOdB zE#}ax)mWrC2|nDNn!uW^aKq}z;zPokcC2o7WQ;Z-TI;O^o9eASK|k=+KVBXQE+w*a zL7$(``?dM|Krs-g{Kx^u`*ZhZkB1yxW-lBS zEtL0Q#<7@a+DnB%6t5*L!qQb!*`_?C_|QA#M%z!G5v&ByG*pf61lqPVaP)QmO#Y+3 zOs*wn!e7+Ojt>86Vv#W~c`-jnnx-pZ5Qu#1A@g!MIb?}fvy|nkUf!yFhFvvfYpLMt zgApJK9b+paJ&1|&uu5%y;jP{|%?f~EN(hjDMn8Pkj_n3IGPiLJ8`vMVetU4NBMOkP zJk~n%+4X2@2``~qEN=DJ*{BeucU0C#-bQaw_I-c`qGm3`EHqOHR}7)|ETFx(#D2V` zR);?3GMw;1Luob$T4bdy(U29QWwwV7YMB>{-%v6GAindKYZMcqRo8zW$Uafun z&z^g#KvYG0CiBt_DoU}yHNylsy|e$d_(lgoNW(Km0%#}$!zruKJd@bAQ)jr;QuId1 zFpcIF3&3HhO7^!irNOxz%kcm&(_8zpfXm5o^L@iTeUA6YB2_ZUz`zP!JTt(hj&yZ7 zpJwDEX^ebbFb~%Wk9{ZMnb`(K6=ply!N1kUukDtZS(xigt#03J%D_HXZOi&AtJku#;+c8nJNJGeu*l( zz1otz#ELD>agK~Tuc+J&s|Asax4h>ERpGLKEstaLdeoUc>#|)wK(BS^sY>6EnG0Wm z1U>Rc4_3E{3Y1R;J2Xy4&=$_=z}@@Di_&Enr)@C4+9EeQ%&3brC+F-(5rOTP%g=y4 z`BsN1Y(I{riF#Pl*pRHp4$%$51VI=3hEq$&4;N7HK^`Fr()E;%f zrQw0m8}hT8WNyGDpD~~^?dtkR(gP~k!^S*Zl3U)8t*T9fZz{4jr%?_I;pvmM+*)8Kx2iraLt82&)B z#dBwlvs+G#W!KaW0q|OAu3OK%pskmly?Hv-gNcFh;9&FC6Yh)|+mU7QtIGz6>)x^!Qe)-_s`q$RcXdn6dy%|y zDgeH`I1Od0MkiRjQO&*I3IlW_MdLWoK0+cow6{LoX%BXeEK*UtfmyX^oJ_mQDd{om zANPo2ELZrq=~1MWu6P<68aML|7qfw%ZT*x43+DV7{N+t2E&uFMX6v8G;;MN&2}?Hd z&KjvJM>gH8(*h(PWHHJtrR?4FKr*?nZB1*IZ>^y<>!@<2A?8*{MReSVGOu*RkU-Di zkh=D|5CEbAKc;I?ntYL_WjVd|)dL%~5Kg+5LqwsgqG#9?jhkM!qi76C=NeCyS!?PQLUBhxL1IsmfGAY#%5=@Q(%q57eAsS8e4>6#Kel^r zxx$zSu_PRD`YvR@R}i%J{&Ql%jpcn%9mRGYwDbkGqE01}l4GChdb(hp53oDrX$iq~ z2BBKQy^DrE->J{vb~^EAPFU*HpgXw>XjsC(njO!2Xy1o6;{A&bhbZX?kc{6q6dz== z`6G2yuNKkyBC9qLD0gbn)>2hfxa`eZtqnOcZnV`zb92|vnWd@Dn2rpCn^~{N_j_&u zkHcm7bb=nPsF2VMQ-VQ`w09GzAM;Z}0%M*r6%+ZOoW6PB=}*d(^C`Zj{r8IN8)-hi znm_~0WydygqtBcdin}eIm9?$eP5jyh^RLe~5u0i)9?Ei>_9wmu)fP>ySG&G{MU$2| z1$Dz~@PaDz>RuT6U)gVtwS(vRi=q6-I)1J5zDtj$5$RYR2yPw5Gy(g#vWj+t+(8RJ z)*o#rEQ76Q_{s$b!OW<|L36;ok-qop(Pc3S>Aia<-pFRHv_M{drHULMjOAU`RR2H8 zv4ei)FOxWpJcme?do+{kMsbXr}R>wtsV5NKB|Bw2tUKPMBiq*iUNDI{s(#E1w)*%pa-N z?RgY_JLzE-S}3==Usip*JA=iZZct#C%&~9}#70e5wNb+!kX9Uw{G8tf}kO<#)`C{O50^3encb zxO+NIJ-3a~cyq6|YyBpxFkz4?k7jG2fM#o2GTv8om?dNZdQ%5WMVkW1XhX2BWD+Zh z1vXR$;|dIduc{=oEvN=I&+ApZ`=UP?O-k^lVwTn#dy2mj!YN4JF=g8OzHR?{l=^vv zZyfF{DEYEs-M5^-RiOBzCdmStyN%Q}4cXs=CQMvL38$X3LoRX?xk%{8nJ{^k>jFHb z3)|B@*8XDe9tdrPacyI&=8yV74of@SjyBzjku2B->m}ILVW#paOdTEFvDNI5aA6$5^M+Mu%hfx; z9W+;`<@X+VrMYd*ET%4rCy0TL#m?Szv5=CymYz!s#Eho-n1qc_sedslb`?tgp&oN| zRuiz)?jMeu2Yq8$q&Y;PR-nL?0yU}H7BqfLW!wHdpS)kZ&VS?7JSL`=(9q5F)}}*g zP!>;)o2q7CM)%?`=QXqfbA43T6%6`;^-DJ=_LU_oEYXP8k`t8Oh+KJsXdK&w^%P`Z z_}mEsHC|(?1O0aAu{UVh(<(j9*X zb{r|@*jiv}qdr=vBx|Go5%RhTy_O`-*G-=iK#R|Fsd`^djZnVNf`Tl~eCKED(Jo-7 zpNMkd@Di8t=)$f}J5DII7B`cpk*+a=^6hyCs>T3x)>q492J)h{8!OZJ!nW>#kk2=& z>1;jL65F@SP_6||)%h8X)TzN@hO&nntThdK9LnC;~$ab7K$;%_hB)0EE zf^?t9)wT43*I~-UZMDLEP2d?Hooin2g2P=683@`9wK=^E+KRSdw{J}NMHb@!hK!Vs>r;434X@m&xdR6oBwAZmc??*0`duRY)b#ET)bT?7u z!wMf>3LFg%avFjZUrF`)B5Vv#J{p>chYYB?QAkQkA`J-Q9cSDpNkU;N1YRIn8-g9s zguB5)b180`wHS-)=(9fYCjmL+Lf2hijkmMTcAnJHLW|@uHz$i*1HP)`<2`2P&*Qx{ z;Q#tcpHg60BjBb>%onk>HwPWkunC;en4I<<^Q}tLGC7%Q$#qr9Xj9$*i<;q|F*y_EKg`>OioS;N?c)$IW`d1fgeY!7`P*I%1Y;6N1O zE9H|dEv}O8wX!C7`H@Yc&lOKd{q{77U~tv=X<|3ea4dXlX@rbM$m!Mf37oFlW!+ZT z>+vdr747M5&epX2n0DBUzLKKgG}==8>D&83(z01tJ7jK-DrM zj8NsmiuLN=_kp&8u0|Iz*XXoLrU)mM2+ZW*%z@R4#%J_3 z$+PG&HwRe0W@@}@kwS?REVfxZOG`9HRmr2|6IipaC{^-Gsj)>rt@QX6sH}4}k3~g3 zCBh^rzeabpq!uB}{qE5BK-TUFzq2VhfEd&wh4S}xp&t|4aXLj9D;-Vw zJUCdZds}4Az%4-xIKhZ~c*c-zioEC@Y1o(^oX}JXJLJ5G8NyQkX%O@7 zs1AQ3zd#Y|rQ5()<2yP~(L6nG(`L%))V81^R6}L~d5sOaz7GIIT~b*6K}}zO*@}(t8J`$<_F5favH7OsJKd|pApf+DmtkAMdy_r_r>emF9o#y*^6b|6O zmiu?rVGnlBxo4s5_;<2kbm%E%V<2X0DTPb=7RHNgyV=LA>V zW8zy4wtqQLmv5AQliWHBsTnnnwZEmJpr(*Iim>duBzY;E!JKy7JG9u1tH#CiMFWE< zN$q23g+V~8GMom8ALJ6w3`_(>w@tFgKwD^Ns zU)0{Ob!A?KQ)>-5`g)`%H7tKqn6far>Xm>VU*`>=C8P&&!1E9Tp_c6y35euM5x%V& zcHw$j+Ed2O&A-uT=D{C+ewyW^L;6JxeoC3L^a zZPDBN@o3#Py}RP){j)k%#)84cM@5YMoC^q7Ui31g=^tk&PktaAaAPeEv}R!Cp?R9f z8}3kYZD>L3nA1pt-atxT=cQudSY5Bk=QIK-B7Z+cbAyMjQN0n{ICzaM1}zPQJMIG2 zu`h3HcGwfvhbjHL0<%07)qpP-H}_NHDh=fs=kq0O#Y!RZeZr3)E@5V14$|M3pzAht z`DsSxRTMkLz+iWHy3hWe`2>&U`hb=F{vL+ahB~Vasjryq3YjVb>7M)mXpEo0Nk8_~GljAvfpsPS&&~iL_&s9MA}$`mxW*bpK{ztjhm6@Y8E19Y~hy8l)s3O^C%1J z^74|Ar#k=5(OyT#SM&=jMMFHCzYY5~eJlu#dfFcXv{CW17al{YjXJ_!Jg?OzCd5DN zw+}6a4h@EdD&(oXb}QpWi51Mt*;`&VIbeC&)g{d&Ce|tiiI@G8I_pfV+d;l+IYhrt=Kqp} z$3bX{<1fpY{z35cziPmPSkPF?)cEly<&ghC$IC`*Q;gGBI;4La`#JRYy0YOAzOn*Y?f1v;W zB>(*i;eW*9|KlXT{9Lh^y1NPR|A!C$sD-WA;rRXA)Mh{c!zMG%NWGH?7B+<-z99E! z?`S)GsLY#}CY|S;uRFB!pe?lpa5^3jCUMTGbLX*z+Q|>2B_%eWtj>>O0#xMXDQ<#Z zmE5B_8`YIHuW^P0T_4?t-rbsx;Gz=jG5nJ{d-VE)27E6fmj>(7_|ENxzJZAwX{app zQDjrkfWX$?FsUFZ&ua-r(NlZJoieofcy%DUqXZCpbP5Kd_{adN{6N%Qc7Rcd9|?Yt z}b$inKKSIoH`d9r}e5jqp%W3=hIF;`|y2w0E^+wS`BrA`3IGl%N|TlEf`+wc(R;;_R(hJtB*!dE$p<=KiT|# z>DaqKAXFKCTmZ6kB2d^8;N)DGo4c^%H5jRrc_rm68Z#=e>WeGvahm{_4MQ?_UfKi0 zW8Kjg6oXD8oV%8BmI1t8V56RtsC~g$MmB7_UaG}B1Z4gsMG5|yt`Ae{fSm5M+d(-+ zk3omWFSbQ-L(zpZ9xKavB$Xjc$I~yy*_J$BJC#v23dh>A1%t?c zVd6DGkmJm@2C!9tykp1n?H}SHOt*tD^uiwQ-H~uPOr-HtHMpijiMkggZ09A+V?j2y`;8;vxDoCWR?Tqo^%R=)bZq#4}{>Z>%{kT zTKj#-wj}l>;Wwq&Z%`K&-{f^$9P+;O^a$@7UK~L|*_=GN`IBYZiWry}25dn^`S}rn zLAXKM9C|?1QQC>seB+sDp@(drwZtFsFny5JcgiO~)QlVW(q8*gMUnTJQ;~m5mi-G^ zRI3oyE%FhCCDWW|VK>SM!uRDtIBiKB7mCre;u|h8=urJ(Enj3rM68uE)ipbsW%vNs zqugaUSRICo_#S_-ucOudV-5_x9k}`dyozP|?!Z)t9($5~fDjgT>ar&gq_N3mLKM2b zre|`J*;egw)%&5NW`biEo&VElP~l|NuK$og8+$Z;vRw}} z8u2i0dvT(Wj=a3RTil#QpEa>jQ6lx68sr^szNG29BPVp`Y+(ZtNRVO% zUQT;f`u#t6lj@h9)M1Sg&~nmOaFK%L)qDocZ6+YR^Y!Q|>>bwmowP{w^%D$PVL-dn z>TB=Invb7i6SjPXh^V-7`rm#$R z$AQtEEwq`=jP4(U^0!(ec|lnvhqf5YatB}xFQ-^sx1u!BuSE(A?a4`FC*FRTO?(&< z#E;(tQ32*!1Lq645@Q2bchPa$wTX+=wE&Ef=l}Q(ztal#BSFDkJJ1sSNo0Yw#J~P3 zyJN+wR$RhdIm|w5%(J~!QR#h$H_2mLAPN>Z!<98U>uJQXz&%%_j_qCP>we;Jj33!C z-*jNPUaDDb5BK?)7Qn zCm6D<013MloRk^~h?F=?p<3LYpXG0w0XQW9r)bQpQ~0EU4>D7A2zk7?2<;rcJm7h2ak6| z4Xnm1-QC=36+hebD=z67<=F3S0hen7@%x?O zWNUCo=&u(b2eY4fzC>zq(hy^H(A@R=ZO1iR3h(X~-m=CySM1*1DCy;Nyt|2jQ`tw9 ziqdMfkR78oaHhe0Wo_R9G`+#t=*%Il&wSDCmntrQ4Q{)iTJ}`bbLUfmVv?`e$?WS< zMZ0a&By-0Y?{3SbMVrau;7PE0-{O_FL%8^9u~N!;;!xWSY612wSJpL2!lRY!aVZeB zy_*T}@{oQY_d9Cmmo8ks#M2?~7~Lav2{@{Z%}&qyav$wmF=D@$2KfCS(%w8A>h}E~ z9!p7uN)k2EEfhsrvM;5@5=tW3?y`mKW(H#nE!=G=F?KB^+sHb0N@XYOU}g+uA2VYg z3^UI)_vdqezrW`=p5u7x{{7$4+g#VVyw3A{ov&-`+dKcRC`!OqsJInB#)xsYywkCo z@~~#15&n4hu2?>#CFV(%QkbK|THhU`E1jr@&9sO!J>}lcSbQQuSPM~Uch-A&TwO<7 z`wGjUez=Ivy1l+we{6L=sUc{_A}hBKSFWIPEGmop z)jS6dgVmyxyI&`U%REiMjMk#y){UmYeBHUh%Ijx+hW|h^Xl1nQz?mM4qVwATr$4%B zNmU+!y12t z)b12%wY~91N~$D`rm+H-kbpu@nWm_er+1}R2DtRT?|Att&^Xts;17FE$76fFLY+-VSF(>UxZ-RlH z)P`>S@oS$$Vus7SywcC*TxsiDC~@t2@w3Ui8O6|>_OH2-x664twmQGgAIJxkxSHBW z6SPv)d|q_emfyr*F*J-7SItdfl$To;I&@U=Ayb#&%vGp@o^?q6^(MjS1u*=Um6dIK z5}(&zU1h#HHzeimJ~NpvZzBdw+WFVtEg`bY)Td1yhj;AP ziFmsQBB6)EgsM9suo9iZ`2JT8Uhlq+D`aiO?V1S8UH|jeivQ8Y{>F~{E=6;K%=Jk+ zPIqduFv4EGZL}?Ke6mkFEv^?5)H_*VCl`sB2`zedcs(}9^{$liI+h#D@SXEeZ z;QejV8J~Lj43zGWA92fo?tpI%c$eO}-*DhHoGB<;y&FyK@9tT=f1ro5kzzM+N2up2 z-9TtW5$rI-F;3MUE8=3xllJQq_?c*3h7iUPo};}uf4cj1C5cEU&=6!Z*5>t@zMKc| zY#-1R>(>0==Z-~lO*WdUIVhTIvpzJ9Rxn{DOK^!ota(hRF}AWCcaJoCE6bsgC1JjK z6C#N~0t-oR z1+&-0nKcRJ_a-{RUl86WPMlcmtp4e|iIk|QaqDzicDNjUP{E}&HK(us&#^ydP+J|H zjoM+f0jgZE4^c~@NoAQmOz~-*(+IHNNJB*GttalT3V6L=kwzz;8roJaj z%?OjBM?>igI`}giE)S}s1QWQne3U(pW9?ObIezb%kNBSeo6XZZrE1vicX zh2idxnuYfAcVZ-%(KoIUX@IAK_E`J5xGw7Gx>JQPHNBdAgyb?;?W2Kckx*u<9G&7) zK)Df;SZzY@Eno(oe<43=<}Ic2jCu~_$JcFnGiFCro0&t|5?WZdE_xVgu7=d)NGOT= zBB7_C?Ai{vjYG3Aw~kHIBVpr@OCo=$+HDP_6jr7p%hSL%!wkCV^~pld4CKlU>t=I3 zwg>%|Edx?vWiH{{WM6!DVIRgX9ljj)K6JfON!oQQV5e^vu4bjp0&n>7U=C z_ZF0UqOFvauyYX_ryj6Q;%CGyTWUNU9_jN99dlP(e z>{~@Sl<@AZ2||PWj{WC3Zc1Ni-8tkpo!Pa*7npO*ps@LaKZ+!eZs{~Is;s+IR(y1E zMM|vyOMs4%f?2yKL_5#K15#u0^@+b9rma)F53c9PQv-IA;$Od(q{L=JDwrBJRP(Jx zWp{F28tf)dnRqlDYmwd`46nz!toJ#NwcVs03W?jMp^0IZsL01Nj>w;HQ`{7FUmGY z^axxG$XbI|RH|w!P1m|3S#=zrfsXz7@oI}HBy0GN*>Z@o^ztJ8l^ zIgV>`Upxv4>u&zaDZF~4dOjLgT&c+}y0L|vNpMnHtAzz8>zy2QbbaoTmaX9*P^<`+ zqSC7DDvOIf@!spxjSIyfG|luf&SG4?e(A&9W{~9t4xNn^k+*K??RwU_UzfEU$KR8+ z^mQQEZC5y8uiA(wu3Hs4$fG-xss2z><@)X*D%LI= zznAMJhbdpYh4VPUNh;&lTa-59@y=Tt0t)z^QLmh43oFN^$&P&emFDcrEtiFL;bPfZ zfQ9u+<=!5tL#&bMGo#3<2CjjF%r7O|sz|ja@pADlS8Hu?d6`#cdKLlS-&O3skdRPZ zI(|9!>r+hYH`A0kY4!3dxVm_DbsV59guc3IDa` zz1`o-0zCU?xhs)|--s?9NJ755FlD~2utvcrNh2*~V}(Mv{I(4fm!$00Qu5BhSN9&u zp&tH7swTs}L9696ZxM?G@2yxQSC(|OJhdC%+tNdxNR7zKKp`|ol5&u3+j+eocm z7}YNqFPM-cq!!=s<13IX$_+&NRes6PPRpLzYDd4h-7@{mqdz$Lc$6&j4~PTK44R}q zhRSiMO>XOVYfn5;-?3(JN9e2Z+}KSGxQcFX1t%}Qa}4X4s1Z#^TY1+PWb|WhKsG13 z6^+TdY8stL)+3BFag70GZk*$(>#a-jSTP0QayN4R8s?|?2h{l3?dUpEHKSRFq4Ot; zx;yTrw2ASBmK`%FQdv*2%dVz_X$DjN-fb9#*y-uJm+?8*vonoK5|X&TJDRTB0U$;> zIF+MW7MWsQaC7!UIPC-^JsxK^=f3&TQ*TArabhrR%e2_JMd@;e6<3Bbr9Ifs&#&i0%eLsB8=q=DaHx5(q}CiM zfNpy;cvItEZe3K8+u}?nzu+M#qR|wk{HPP1!irNlJr?HmcfO>}Xm}Gpe#`anwr|*6 z**N6W0xE84C8eGa$9M1AT7Smq+>vm7`s-bd;5{GZ!kLdVTAZ>|>X#6CZ|L7+8%h-L zf=GfbbZ&DaJe4Mf@1HsHv!L z^E1~1p|!e;-31@Gj}=m5JXV)bmf z6-qzM?#`EHH%o0Kr$Ga>x=g1Dg29yX zn`iVE)X-1XMU}ZU_oC5gVN<={E75kPZ{J(Bo0^yk$01%?E@7bMy#-tA?KaqqVlA3x zvJSYn51f0W9B$z58w0rs^oo z8wV8Zj)ArRm-XzC-QI#?|ulv8^aJ}V@3E|fcMDC!x$yChIB z1{kgqdSP~xi8~3DfdZV|eG0PLulM~)MS2@#4XwvKe*_sClz`8*D$4~4{)#4|?q(Id zGEqM$!Q${Qm*J8KZmVtc#I)oso7+dv9mzuw+&l&eET`E}+kR6Xo+q|kzQ|`df{HNw zikZeK@p0h-7nb>s&3otQCD5hSs%Hj}h$Z=}`?*I&pWB_}H`=I{XB0T!^^@PU|0A;^ z(J{&&zgD)0FJB{?Ps3ereynd7?;kEuV2%OPxIMpR5?jdo=!c=j%_;ziBI zBKk1b9ptm@hT?!Mcc|JV72&enRydS>lfd{^D@CfZpXkZf0*g)Wc8i5%n6QCYJIlRx z%U8}G8F>c4FMDN*evv-p9n2q&%ypnTJR;UbXM2o+o9X@`?QdUri26ojL^G;0KpeuR zF(ocMn6p6{ed@gvDh9D;zd?`{IS^vTB58x=6n4a0RZsMH%7N$MT|nb*n&1t;;e#ZP z48QRqdE6KZ|H0aK@Fr0=b;`?s(cS3GIp2ak>Gpe4_XMR^CV@kj;~aXegUwMb!L;@= zrwV>Ib7cOb3y~tYFgi)^c5OSGc^5mi6nN)9XtYBc+KR8++#SxQKQqQa+re(XPu6VhdWHUXO$Okn?IJfkKU z1&k-QFwit1zV)9r&A3gMBaZTrxUo80 z60Je_^xp<&*V$u^(GzZvn%;}{E|dW;1xobe97UjpVm4gvB~|7zpb|0H;SXbY+J75& zgAnV!(@03?vCkJdNOj%wt1+kj$&76qs2#3QyGj+{kb>Z#&dKjCH6}_^jg4R2VX+2|R{v4KR6jpT`(sY( zsyZ*HwYIrzzc}`cRJomf_pX%tt=cc(F6y<;Z9HGV=9XqZ-VQG~`9QJo$IR8b)d_3J z=9kC3IikITE>u;|fml8ETE-fCiT>!wCTxQ}9v$(({@cW5h#ebs1vK{`KD=OLcx8`3 z|3HpC!H>klC)f-Y=8rmFN&hk3EA-s7f7a1-#e?Gx_|w4*&kzt#YzzL-MRZC;D_(KW z4!f4;l&$dgoZHmuPX^g=X;Q3zw3a_mD}&OpwkZfANjR2kwu{9qTC%vye>2?gca}#f|T#*e4!g*WUd3*w zx$fcH_)k-vDT)th;&K}SlSCObD<^Qa?^ET|->HOm0lx||>(sKHx1B0780ieqjH+J= z@b&dOLEHZ^;7E!@hIz_q3yU82%UP!9N7vu9r|tmVbAZwvD;7Qwm&P`hc%~=C*tb3rXwgrS~bJ_GM+$x7Kgc1 z|6>p@BqH|;^L5vh=KUWdyj5wk^RA&`d=2;lTSbgRSlLoB=%Q(}^NC@$dX$pwDSRUu z>b)iS2XKg;9yx%{vq&vf<_e_-U}Le&Z1ao+T^vyc%v`?PUry0t3IWP%RT+A2@QnNS z50xuJEP2qk9l$yq{rc1`G{Tfw&t&n5g)p{O_jqb;WQmR^)TwE0ly1NQXl%B8M6l+X zUtbb!UQt_x*_rE2BiB~?S`-}9r%?tHHXr|d)27Zns&M$%D<{C^ER+k6dQ@eV+dk_t z^03~(fZNo!T`}*(Vu9YNQ}+AJWrVrA)NadM8r|Hn{}H63)n3KF=-9EWbcrwbu;K^i z6iY6Zb-G%z4tExUg{$g3tHL<H8@QNIfJv3^j05c5 z14QJPsZyrNDlfeVQPO$&D3WaS|Isd~%$!2!r&YfA4z)Jt(z@g$R{dp@DXQv=*pD#Ym zvZkjf394@uILh25l$RaW4ZRu0-V(AY>M7d@dwQT_B8pxI*EGm~vP=^xQT27K4S|XI zm0gpAq`!Rm$MfXU=J9}; zEc=NkZHjS#@DD0qhxZ;URgv`xiZ4OWc=odRug{Oh&o$&iXtH51y;)tsdFQC9rE{Oj zIXT(VeY`DQE)zbC6;J8;FJG>|Kkwp4*%RMDdNg?X^*ldk2D0Sn^}_wB(1B*Y?*~?iVg{R@^_>_fpAcnGX@@9o$h$9-T z_SUIRLW6-sDGBSlN@ABFru=mKsS-_vLsXN5xBFc7(TpGNjJGU5Zd*Oqs?d^d@dDLR zccIwQ@Wcsb!m&S&WmUNsU1&a7(uKly5vKwtk*?o%OO@1g($A2WH1O-G)ZjWj1iEG_ z8SYi!Xce@c;b>(Td=~lZvwunHhzrn$>x3Bs{E0Q)vFV83X16CIP^4LoYu=u(%P{3JvZr6B*6eIaFM51{viKf9(-W9(A_mb5 znvT`JSsnJ|_OK{YS5fLxv{7Ie<_`!~bZx9jBI{h^w-X~VD5>F`kj2b}eYdJg?Ug8f z+Z$kuEpf700hp=lBKPYV>D3b*{7#vFe!Bk{i%HhUF~j@X*=pRQA?8Lfdjy%Xg2%k9 zf_d1cjb>N0J=P4T2vYyjneP9zI53A3?lAFo8tyZ)sCR&N(Rld6ULrkoM{_*i_)i!Y z2evR>$=UL{aphFaV;WrwaB9!BZ{~^4KFP3eaT=hB7&byji3HD z_{%i|Btm6ZqTpy{KxF2+K7*@{%a>H{S!9K$HbC_9mm0?$SDopu!|<(QR;j~@$&tIlA3@URZ zXR0O6c9l+`-lOOn4AI+dk1M-&8W$g`7{PCq(c%=+v{|P1ymn?8U{Y5BPV<6GQ~AN zmRXkWy@2^yS0VGuvEAmz=v(g56OZaeu2iG>__i5F9~Kog%=N!)8p9qpa>}&$x-&h* zW7poj*Y=4(Q|^fR>WChl?|Y&o6wxLX8_zu|ryeqdc42*M#PIb_<(dy1m(dY_wVYG@ z8;di4S4EiXlJ*A@)vK?X&hR{Z*XWCxX z%HZ0mAtpUqIloSM`Mayv;38Zx3JEeM)x&^L3lGnhGy;3rJw#m~peylA)8Th-d<5X0 z5F&I9?xW}S=o4aY(4G5-yFf&SKum06qI&N(q99sUWX&vhGVDWQ;!SrvHjP8@oJcrj zYuu5{&?MA7fKl*mwk0FRmg#4ls(=obbZ!w)gFms$`72~CCaN)uI8bvi}W!7>y?#legtnXD)L)oB>BpJIC7lDVwo{~$PGAp zIo*B5rj2NM_FCm471su0!M=XtA+UK`dXH4qZ~v0MN_!C-8+$?ZtWu2rg$oaNADn*~ z(AaUrO9ssH{L01b#3S+#LacKX(dyFnuCx-?%g0XecgGBfm(8z3hxLrO@dWsHafhH9PCxw$Es6tywUmO*BiyaGxV!=*jC+A7i{mXW<{I>k^E|}W$BN5qA3yp&e*7G#8P68x#s_Rf)}e4z z%B*H3B&hAcsqrk#_KNJ}h0&u1&I9>4?Uh&Dqi4<}xc?bGmAE9bY(HI+<=Wjz-AFy5 zlgHF{*T6B=p^noEyw1iR@Zv8=?sAKQ@zzH%o2Zy-PbVf!wQ9UX#LeK z_-YS?#m;vrY&pe~5})w>P7WKvd^xg5_Ls>h{~@hJ9NX3d)Xuo>2#k41YF>_(Y)O(j z*78)wy3~LeC;NOMaMO%-u-aiFI=Ke~gQDsv!pc%X*ToCQ7cP{FU%@*eamc_r}LDW*2S1S_Enu3VouzOgTMMx z;5?IF-v+X*bAM~U|1{pf)saJ>01UjIB7>$23~z~wAH5=r3)yWGy%QP6Z_Ym&r-`d( zf-YcBwvXfbLKKhdt={*~v*KVn$nGhdqC1a5D_7)gN?e~G*6_cOYn|t6KLrn7?sl~( zosM6%TtKCp>up^aNmcLGWGSytU>q~OYpZ&GB)MgBTrM4OX3`KNF93h0^|7$*GZV5d zDl2r|zjJ*qA{~qfVa4uCGDDtFYnI-`M075~uyMPEx?aGNK_a9~2l)UdLa^kCQ*G$`1 z90DOuir3E7E1`ehMk?Fm|C z#FkytRMwrZwmRo%R6U7UcX_=yV>~8dRjAJ_aD)o@0DP1Rpi7eSAwBsy7)q@(+cf|< zhF3WfZu=k$ru<@1T`3lj&F5;7&F?yrHKI;B6yFS4nf-aMnh(^G2V{N;_?+{3-T$)MBbA>hNS^9i-3s-z{gY7h?vG>u_ea#A7z88mK^UvBH zma6X&5sPoz=N@>zI(7UMz514StwN#wo#($5kpTR)lkDK~)tdLx!_*dloY;N3bbI2i z1MTvxu&~wA{rKTpLhTwHf`-pt7y{z^R%^`dB?Fb$GpKhzkFNTOA12@4_K7N8c6(l3 z{$tqUxETMA9jEOZR@O@4Tns=QK6p#(2E}6Xy;AY!&zO#zdg8i^f6eF?I0@(y>~S!H zU^tq!K4tZKD}y$qNl&o#d2!0NJW&C!X^jELZ8&!RQ31B^G0!MJGL98Wm|ZO(<*n5A z7ucGIX~%vqvUS7f2Nym}<5z}OP~VZpChWBkMnB)1Qte$){Wq*_xaO48_ml(Kwy@10 zF}1M!0jZHVlc>mK+Bp1L#zLHVf)UoPvS(R)b)k*|W-Te$@mu5y_qft~Lvr1(a&P3_ z3bPgN*Dco!^^Ag%Awh4AbPuIzArhvl5hYa*&5Jd$g{I3_hM~32EtE{NG|jisCoz{K zwYD{QofEjPNPu6l3PYany!2&w!m@yq=J~u&921Zem0nAeJ0tUZ`-ibbyqswI=8gdR zvMsdX>HZUmv$Fk=AVT>m4yv1MLcNA>rI*i^T!`=yct}xN8A6}$sVYcofEjtJ&FitX zPn@&j^A(8j%%(pT2xm}xZAT7jwiBO*oeX26a(r#K4b>uJw0l0hxK8h_#_Wck1xh76 zqr*cXE5oY(n_WNsJIe6QuUf9>`-X&XF86jV{z*kwWyBmlV<&DiwFK^YI&|=mK|%Ps zsuFDD*#%M_vTpu<;PiazVV#f*4&rOYo9j~<{&RyFN`cddEZ&8{0u)JAdWsTky;AJa z$pT03GYXub#4pU^_a~4#%ARg44Fs39mDd90IuhdgkU!ie-F?Jvqeo>z9kR{r z-N>84^uM;3pfa*U$~=_rd^w%h7?i2)4&%}DAO9=hO14>AW@A8C>j=FruIUJpm_xRI z7g@71aI%E-_M*v9X>f@c*}ttr$@ANl6G0cxX`p6bX)i4I7PFaKu8s_Ed%)mSFxuYW zb|u4`WGli6;~!#br)xWslnM7DA3bU*5b-Vnqwg_;ETf+?oo64INX0^VM!j1&kVgxx zA;n~?%ST0DZeCEnw(m&No}FDH`y?MNZ8v%RStIkx0@31)r9BnUo2>)b2VIn{lOXCj9R!ScOFKH>-nT z!zyk#=*?AuE7cF0+&VYC9(BoUG-|KbYXJn^(Qv=jnpi9 zILi!DjVKh&0^vFxveurYJU)V?or$_D>qkBAtw^3*yR|sc=5scq{PTqENrZhXJG&;d zG%%%Y=die(nW*&o&Idx8gbm%167G$v!8d+n!O`c3)DreKviXfvYn;fEs8TT<104RPFTT9e+fk>N47tyjBFrT6Xk_~(p&F^I+*ZBqb{a?Ba| z_~}z&=G1x3@NBTBC^$;{h_HC$%hU}-z2WkuZhEl?r+TADSAQHKsM6?l@fRPYR%UPHWe#jHv;szww5+3#Xvwu~Yf!za$omc3K;(d(Q?o zjo+ROt2WQ5TV%bxs2RvT%4EB;|hZoSpAP1oDS_?y*A? zx#s0}PGBJNSJRR&@(@-z*wLL_o>l8UfMd{(#$)S0ZJh9`itu5t%ete{UhZstFSn6W zu@aYW&onyW9$Mi|w?3`Zo24d5<~5cBk3ux_wJWcF5A zKq?dhxKfynl|#ogGf+RyKib&>z}uW@Hzerl)!2Tc&9kx)EVRApIrL}yf8ZaQUyvYxjI7@Y~6Bln^PVS(gQ;x(_VgP zZoa@Z-~H}VOQVolpxGJc=0i#WAhwx8h_@^6@qj}Pp+dYB10gu+o4*%dVpVy2_CpYe z&4DHyE^cS|R9A-W{er77j|8gLzAAOfEdyd5i4%78%h}6ucV&GA?t9MLHjb{oZGug& z)!YpNbi$qQ?-f!tS_;YnR%UwLu8TnM0mnqR&E+5?AFfFyEv*t3XY&e!6-b3X5&(}s zKe;vEcnpwF8sJGOt%hAwNJBtElXk<}Srl1F%RWS%;hF~{Gvn%2Y8sM4tSnKv_g&vO zp~h^|mTTGCL2P`E8Ae9PKt^(Jcn*C$^M+6cmO)*c1cj6FkB5tDhTg?!HVtyk13=Ll zXRbr-!xuWre|;)~C@1lh^=B*tbui2ln;7~uAnDq>OUYA#J9R-*ApE+l`9284ucbK! zXrTGXzTpX~VLgxzgfKR)p8Hi^{@?#jQh8S<5~6+f>_Fg`&NTT8prA-{Jw)A}ZYetd z%4}RPoCy~)pHU}?9tkt+jJ$08=bx{6d3h7{OQ079wlv|2b%ZL#O2}GEy;&>uMs9_W z+Ry(&qqyDS86}zl*14NqXK1uuFu?#_)nSdP>O@G8zkUA7xIh7I0?C+zVc$U;RNM7J z+HWSQ`@OvmSk&hhzX+Qfg2J7@7`?ha)mb-CAgl=nHGikIfLX=mAO}tO+}-k(YNfm1 z^ZduB_qJrzhg;@aUMn>S<}_;0KNnX^@Tn(xVS^FR#g$MSffN*9q8IgeUC4@f3q~(v zzk=Oh;3@M$Ff|}mKi*EUQ7C|L`4$$!A-Espx9pH^E+WNX+b=D0{WH;xXg?WCB**@|%Lt5* zMy$Ki6saNUtG@boXoMA19d8jRw-EQ z-!C_H8ugy(F(T`Tt~D*cx89Qzb6DfNxXswoGUvkYC|Z7qRq-0OjE3qYPm@$iJPe}h z{60Y&%7nun5y1PfrIZKmqcyOU0S;K2(h$om(^yq1o{!LIsA~lnH6kxEPJZlNCPEi!_3>hnH?k)RgC~#5QKlT66GssM)jBjVG{gH!BGd{-%T+h5rF{4@{JD;-jv^j%3izn!eaUfx7BO4)BRR7 zg^`f&&%^@Si|XEZBhzW6T49ccjQQ#5gBlC?6QCwNlU5IOWm9S7;ca%JNUyUm2M0o~ zT)FoaOL}+tIS~8yzAJbw?we_HbC(q#onoBuD$67x(Q~E~qz|{QNLx~6RLkc2QisO! zJCJmG>K*lxbdcruhHHlU9H$p*z}DEAuhB!AMQ{3VAnEC~lZn~sp%xA(Sge>2vD9dL z-Ey(;@W2nL80~vo+JAroN-1F3iOpbM(H~I=Wm3I|KHjbkb>CLCOGNHuf1Y(*6>RpV zeOb!m?QJkWz6O}q$+`S1sVYWi(M3a*q6MCVK*#y)V!LwJUy)>((Fq8PhNK(Shi!Fe z>#XJ#umkr=rSAnsv8Z-gKs~ zC60p;khltR_5srE#eMjM*fLLRt$@bQpPh%7#fm{ogVX!CQtR4*bcyWuOPlBc8c>WX znLtPk9^Ehvp-ud*rN2L52uS*z_Zp5sq0$=X?@OauHSXMt0tinAT@adqX^H!$p4L#- zi`x$B-PnrlUtmTiQ$A_vjb*XNe?2QcKl|zJm=6Ha5kAbzQ<-3zzohW>ZCXhT5MNtg zoQMZw8I;;eDe>v{ckIojM3L`;n0?a5H_y?-_Y2{Xng9}ixk+F9_PwW*D0Mm7uxwT} zmCD*;8d0p+51Z4V1NsI%^;@ge`%hR5YGVqEkhH9WmoHyV(GRN&UC&1z4;gW*`;Jr( zS^jIC1)}H|{w>GpN_B-`Ao$~ONHZL1`r+4^%N!gVdxN*<6a*^?^ltTwu&U07pd!*= zpNg86#78#3IN-^~bCjS4@%Hf{7hQjEdvv}uvVP?YdeaY#HXal}f?|bP1A8hI;Kzp? zQr_ly`?zJVr1;dGaQYSx;O{Wpp{Ph|qs#wub zvLOa*KLN0`(a2{&LzdavSSh*Bu6#)}-}`?Y;#P5Vh6J>sR@?HQwD@Z|w7HL46yPvf zTs4~DDS#%VH8|b5b4*jt`2KzFOy4nirQLlCKhZ{kf%&}K_)Gu>;Scqk*UF-iLzZZ# zgCc_y+kB zgNzjeKHowik>6_>DwQ-y0|`}9gX#{>HNSnAsn4o;DQiw^^ALz z_=$cp&*;YJ@EF12r8syBm9i1H2NI(SF6if-f;~aE`FHLt6=LHDy1UPS?pp=#8ed{3 z891{9bu-P9;Zu92fbbM~4-a5|!-Od3^!fOq4F%}z0(2vYp8p0XOhYPkYoOeSLfAb7 z7vAqmVCe;0J^rKfXq<2boTa-u<@kd>#o4;sx98yW!@4pG4$6&pD|#@pddstF&0E%T z{Q@MS?G!i>=63KWsQzvMx7urnhg7`1J4j$O3Epq|_9byokY(Vj{R);>7biOcTA*F2 z{Bb{J&5V7oe(Vp{ZUztQE>i`=0Ng+{6LbbrmPvKvYMtBm=u6%JB5So*IOkEda(VZ^ zJdW4kI6g+!ke=339SG-q1;Q!nXU|&w$j>+^zXN-8-mcQ$_{C>yyO+LY4)iYILqTgA z!YskksxT%WuVMJgyW8Gm@IO3-E|%k0fv6|}Hn2m|cYPZWk0VC_IE?Xs^Obtk^Y@%& zPcsNxMhLH%Z!j!oLe$um1> zqc|i%jTcMU5C#rZbf!pV2X<*`vgH(*$h-iuqogan`$R-exph8lN%~kasV)%4$LrDL zledHuSu1ZGq0QsWN*hP&JQ-i9D4Mtv@1Ev^oLi)y(+a1M@6MNm{mW|{1(#3?T`T7z z5>{{GS7SO$v?8=9gEt>PHJ=8N=95za6%3zS;^ni)ckrLRJ^y<2PyRJD-dpE#zQ~c7 z=qLLGP?s-U;@s|(I(5}cGmL5T#)qOUK4RvzX4^$Qw7N5DFf@*#2!R zpWPcxW?9V>=xk^`jP(^fZyLlsn%i(+{~Hkaq@mP637h=8C2ZafJ4=Y&-Z@{~p)c4W zPlh%yI|}?DQH-s(ADh-dO~$J3_f`~N9k|#?s=5oY6GhAuXqyEvWO^+;s)|}vJFvd` z(z0WuNt}yUDH4=2bfh6b1Y0TYTiba5ovkToLa;(~!4Rf*HDkz03)mYi89Dd5YEoU* z^Uu#iRu$b2#4&HiprBv1=jxeNT@pMdZn!+=HW-kInQ*Kf^_`38dHy#`(ELAqjkrgj zI7L;)9jb05(~6*i2#G0O%mAziw4-i$(qeJ;_%dYvQecs1ol{A#TfMy#=Zl=egptPa zuh{{5Gx+kqDSpB9XPcp1CKa2dQqGXZt?HmH#=NR09SBZ3x~fiT*-w$)=O38^hxx#9 z7@td8;RKV)?>|;!e-qH`aOR2#+!dbp2s#R{UK=11jGmWGVynC2du|#K;JyS0%H}vA z$Ib;*PZ3l>FpKs3JD8cC=bI1O;)@04*OA}Myv`n+@+)*aE`7<~opvuF6&}Y#iDtPp z+a;3Ob8nCPBXt3DOET6t#{cni{#}l&a0cdJe4;t6uP)QW{gIhmdzxj3u8%QuP6IHk zB!2>>OGaJFL&4F74Yz&Z6aS))s>tN>jn{Depp~@+ZlVABPT%ZO^B6sH7*qUzKk+YX z5`|z0F;depkqJuFrA${;-Jgv0)$B>}_H*ExIe?sbWS?fZEllqXPX#6l2r>Om)su8< z)Dal4#jW!r?nx;L`iNVTuCr=w9a6EToZ#$O`hSym*&Yz$syX#k?S27$2+BPWQS|#&!6w15>t2l8f5=3?J;7USHT3V zXe6Pfc9_i*23()(4}izMX{f?sF5(mP(~OlkG0pIL-JlQmhBqHE&e_H96!DIKW8e^Q zLxJwQ`S7vQy|v?0GUYzZ^Vq6cIX9-iAQ=AH4fqTmdwxjgB$ZJ1g3V&Q*2Wi^ytS>G zoXyMf=x_B$W<7aZzUkxg$C0zYQD{W$KILlzreI0SyB`QU2ec_&lJw-j@;WlGLo1ST zI7a9cEiLww95sV_JmaL}iy!tk^5EGuIA4b+0jz>F&<$yOuC~==M*}mU1cG;-q>ke> z%g3HogYW*xD0ay(tS&E@h{y2Vv~NYn-eTa5Rx9At{9qowW7QeZ-!c&~6Uj#2hPXRM zrpHskw8p=0PqXgdcc@tcgRm)uar^e}y?tbS?Xj>0&cQ(0VVMQCMK16w3knJ*06vs- z$RJ>U0mULi%iiapB?-iu7=5T+Qz_Z(L$CVS-{v;pxV}90M-37SRV{6vPOQsL7>`~_ z`>=G!>8Hik;T#PgW3KtHPY)PJaBmxr(PPEJC}*47ZAv;$!RP}Q9p=_+=+vU$n&!uH zZBq(_X!C^lnShx5>2E_f{7-k!U$E?}#@NZfa>1IMmEp3L3eO0IN3r{@}Iq6Sk`|GxK&x_nx)A0h{Gs zge))S)G-wm%c?+{BmYA=<7;q>|Y5AM5=hP$%-`#oGc`%VbE5G&MN8o!xZlo`7OZ?pKaBH{LV%~pCYfQG`yu3&j`9oVHV`98inUCcKsIZPsq<0`$nEw1=3#Tr z*X^U|XDZ-z4Rg-AR>_vnmmv(kfzI?(7H)-iWoWzCSmuOQ6R$6E3AYY-6UA#dofPHw z<_Um2-3B(`$Ge*{lt@+7`EsTIC*TN-py`r62LpNJGblM&^F&Wi_sC(Q0} zHUwQMvBfgq>%ih}aXM5ve>=K)u_d1`0c+~WsbLb6S7%ksb}mi`laSbWWy zan-y@MGyq;!uTDJ0@tW_q=Azi*xz)<3v`)z9dQm2;lRHwZ~{W+-;I?h1P=J~+Zg$I53_?@a{V28Xd zJPalM#~Qr?D@3(r%uWo+w*WeRs6mJFc-u>TvQdokN^NYJ-1 zJtCBQM=Gb@5;gn>pq;*+f4!Hh=0=;__zK=(LAxuXDW(lUrp7(s6KYxG7dFLs3*1u- z@d>Y0nPePQ4GJc!p#!dUB~Vj6coXfFhvKS-QgV_&`nSR!Kf^gMIAXqL&8 zAnp2@OTRN5Yv!n+E03CtC4gdmg%f_QK(YR_KyWn7rkH1K6whbWcAz7Tk3Ex}G4a&_ zWh&~Ky~aLQ=7DHM?wSGy!)8&sI!mL|s#>BXPAPwK6VQ)(lorq8*`6Hzqw|>OYf@Fz z?l4pTsm^$3zWJC0)Jdo&JpLbQdlZd5cDb_9%B!ScWy^}sN5GEqqb{bo*)W@DEw>9} zGE}UVq=6f;vf)s*X;*{NLIg~$7nXPYt#k6|$&Gf^1DzS3Rkn3YYT47Z z1VvnH)yg5DnPGmVa%vZ8Vx49W=7DtLNUl~F$QoZkvl-EHL=FCGrmw)hfHHs{3~Vv; z1pAZ^9~ZlIIpkOuVzn22c><`}>E7=5N5N2~uqa?kA&30>1t5UG$;iJ%2?H$z=`3%< z>0zDutgyv<%yQtyvZrp9$8!Y7P^$F!N}n#{a^dy*ey+_Fs4d_)S~rhLMS--j(vwX# znbZ*1>A5|7^#kfthy|dcZbdJS*Zs;N7Yh z8JaL-K?&VE<$CKuIhGYG32jFpYHB~1t}#FH<-4UEkBErSMGpR!EM@awoIm%6?N~Z+ zuzt>;Yx$3Z4ZY=A`}82nx%vCp;zCoKz$IYrMrp%Bt%*fHCqlXAv80gZAJQfqx9-Vi zJe^$g`$>LfZXN2a`IqOLn?-q?+(o?GgUeDe%)+EnU0v)ahXkxS7BEu4^&y9`Ja&pEy_aBelcwmv31FhN0--BXpu3t}#U&hACnsXLJj=6QF8kxWTJ<@l> zHc*Jw>#GX_L4yBRUDFZ>+W6+bIRoe7C4x&Ni9Z7sUN1ifSu1gP9uw!E5)42k{u}8C zBCpzFGZTeH#ocbthmkgj&0 z7$l&b1Idl8eSf!3{xACa;Fk_tH$9gM59idyVM70|=9Yw{-xxX86`_Cj?_S!%KfVNh z;^Oc2)UJcVsH?9qCI$RN?$HrC1ek-&Z#Eg4<$yJmw5E(}>}h__@oq(3P%htK05S(M z_``3SLk=e^&ElIn0AUDpKM?x=15bJjey&6p2Ano(B=Kq7z3%wp1M$dSEbQhWDygM}o|uo`p2f7)@yK)iRw_I3nU*uH&- zk7@Yxg4M`|x#kAtUm-I|@;0pR1F-!4-@_;r7)DjQd7|6f`?$1aWXwK)es^rs?iDZZ zn(Y`?UwHBDwh9LH`hPe*lD0d)G?`qvS99Ug*S}Z@gLJ!3FJ%!Q*Xfb>WSA+uZg1x4EO&%oD;iJ)x{K!o{O-M)U$86o^VI;{~zY*TkT!L^Nfv(MD zl7h3p+_Eo2&^D|xM2$!Gs2L6^xg0~J6CY1be;fK(QjBU+{7B**6fib>yTw)7?fzY@1ez#UADm(qf~aX4#pU=FJtV3vHYIt)H$E? z{hinObiS|ee_nX;p6C5M_jBFXecjjn2+xLm^y~O1UOheM5_A2=jpkUDCHqj^IM<&v zbynO94wV17SNn_Yaw|O;^gsjT_v=izKHBVKQ*e30LZ@|r)+qvYH*0>0u*>B&!6Kk{ zeZJt9_6ZRaC#Q>MlJULyrU@SY{?#wo#ID96)+5CTTq`7knUmsr5L&>>|D%d!0Fi;7 zi3#Q;(-12Zze2)kI^Cv$%C}E-j4~6kFKPE3Y*6JEUIJ828lrq4W-bEBxmAwz#?XC2 zc{xqO&*Q+oNFDxV$@BAG6@361+~hZ7{(Ntw5Kt- zg-!7@cN3ocj*kB&^iq{rc{B@S!!q9fMqKc`L=Z`-*;^xM{f|y|nwf{Jj|p_yeR>E> z*VCj-Q=c2wIva6Sp1-j1wMtO&hcPe8< zX|a?_bq0S>>FYy*&CdL|rtDe;O7?-?Sp$u9qQ_aR(~u75k{%ju6qQbhGJHSDC6Jo1)CfrYRUK%mR*dw=Ms#CAqiX zU1;YbqF46@2~q&lg_yJ4{*@CAD}yL%_2E?gA2e;)8U;6l9>wqFp-Auk(&`1FqG_~>JXSB!=wSc1wmvejXCd;uaEuon64Io21=%vI0@tu zv%Ll5G11AhT6X{xRHs6n;=dxNki$k`7|bWj1HTS3=p_J@8N-92qmSvY~Vw*mrF#ch`| z=`7i;{Cz+{{+MZR=TCjbjlb$E8mg$+XC5`)_y?(L)Xy__>s*-ncvEak3NH)rfLV}F z6!%T)4+N2M9MCQvsWuD4)=T}9LapVTkTfxef|l13_1$h@&kY)6z7QkG-y0}>3e4-3 zfBg7iyOAYiTeqpbM4XpD#>F+C%2yZ47$-~0^P`G5yI?6YWa?$}dUQ8%T)1r_>FZbXP>)ynEq<&j43eY$I3<^Wuw5?j|ss8WlYmwus_V3*TM5IK%&Tdt#j zj}%WwDuprz?FMW@eLq-_UY9b@HPWVD7C?lS;sY6k?J(=g@sV$*)CKO0v$84pmr94z zH4@C$UtKWSeA{y0`w(f>Mi)qCqHY;Mws25bawWdXJBsfmhq{YPUUzk2dG>U@Si9Us z7HIBi79k^dr$&a-Llty2;NaM0u7gftWV9?3XiQc!1s?

N)=>npQeNJu+V{&xilM z3;%(K|6@#aw+ucEx*t*4A{a?wTb@a;z}$p-yJx!Xuhmb2rYWHwI>Q#gQma3Yb7kJw zNR+PXeX~A@bkK-AtD*(M-ek(1iW3Exw=pfL68Je;LKx?g4{WC#^=S5^g-n?&L7*=j zLfc4HOnwIO3ogKFI>=?;xB4rj^Qx-d2}P^A9safMf2D2y4q66lo^w~>9r61-rDCpmBliH_Y}9N^ZmUkeIM#b;1SnOV}5y*JSTQ2P^vb z)@a657=hc{V&}^J+uvR$-^l>jVnfn{C2)-Dnu04Y!1v}nHcUP-SEmY*xb=> zM&QtpshcJMW{KW+V&AISUVGMwhO-Koe~8fE9SyHr>NSHl0}I-e@9R0S&AeBx^d&}j zf>})a8MiL5Z}swaAB@0edtywoyiQR7y0fF+J-av5M)CawB#NQpw#drWBP2$;j1%en0g8)=Subi0T~sRH74_ikF}=} zgyFrnIy&xuu6l(D3_5<%^h=Z0rtd`GY=~d?Pj(-Iy8B?TeOOgTLP1#!z*4x%gq0)^DX?jJDltrm>yKc3=dVZ?a7hcnnf>Qbx&T(eE3GWr@&|DR! zY8Ghy-VOatukyZ%@7;zsd6YMkzQvebg>#R>UPKUan8<|%ca!RSslb?|$M;p!7Hagz zkMU*^Ba+2a_3c^9akWEXemL0=YX0` z4vq;-<@(zY*6@m!O#xDnB8u7Z3-e#?k?gNyBeQ1Q4f9!A=?aH`6fP1C_~tSzatmCu`rn#crQ$KQ zCFvwZFDmQLuv{Gi&W1C`a=lVuiADkdrvn`sSVH>*R zu~)B+Ew>wMCW^k*Ll2~YK9E)(d0TaQx|2Pau(d3UkC&OvPF{i zfUQ0?LuS?8zYwTZtPiQy#HMD}tt{!D02b%_cCJ>uc(2IV zx$&B>PMs0ZZaqe+S^uHQw!U#56lMe*o0-%$@iBpc- zPhPz`x~;H*a9EMsY+F?&XS;UU>n1Z!7BbF=0K?qab_Fxu$wNVy1!b%LrEz1?g$xC~ zthPOELz4Kc3^MA*m7Ek}2;~5i^&4=PS#fejXTL^ZlHxpW<72 ze>{pZk5WwytSK2QRc`Tn#U--h(Pqt*shfP~@yKq(Rp1UO5BG`w_L6-7m42;$o@zax zsIaXqU{#Qp?HsW_4|hs-YlgNbx;YIrZV)REo#H39`D0TIGgQNcqr@C^CjHshdyaU; zx3xDm+#1!MoD{Z@xs7!h291|}zMn$`iWl%I?@0F+X7@xh7|F7(@1D+ZxM)@Lnx2c_ zn_E|IsC$qQBOo@ut-^gJt7o#~jt9PqNk)QVvPp*DqGMtk@lVq*hrc|`F0RxRL+?E? zgYv~6JdY!s!`~`%vYW;tvp_$@?Qbu9#X45!_7HW3j~G-0@%v zN`IH#mnR>WK6ToO+AcKrZmDM`uUo+IXU?e}_F0>LQ0gtu;5SR9QGAJI@na?J#?4b5 z%&$Ei0~UsjqYfv@Mn|2Tl0I?KQm`%zBixgVPrP@7q_C$|tOenmvtbDc6CJw4Q?9gY zo7=Kh5OWN3PYyu@*fmA+KA+^@+}YisaCgpiOnkfB_uZJ;BA(%Y4S@jKHz!X>A8mN| zldF~dsTOMJ7r}W!K+vJaPf&X%*ATh+Q!hILjfu&fQ&A6#Ws4K@71Xr z;N0{S;>rEgUtl5IFbYz|4+D!8&d5~0^A_bUY|L{#^G!lVdE)g>#&gfxd zcr+E(8(N&ZG9S~2D&9*mjt^y0bV?j_{#;wddEx{gQ!nCnSZ9reP=^vq7~l#iZ0DP5 zKSw3=M?cuF80!;n?tG0av?UFZ#@b|a8j7q76Lq@$@gbf)Qx)p!! zlpy6gd~Uc~&xp-7N(gv%;r2q!)HcHup;qz^oB+#qQ!cWQCCm3YkM^#o)P63PZxZGzJyh8b;`ZKef(;^33(xjTb_F_q@ zc)yn|WX;wBR6&RfVdv!rB1Sj>eecN*NA5XPRgL5J{fD8gX?{zWJzv_lvL_4AZ*MY* zesbJK7?vpa)W6ym*gQn*r_1~;JVqndO>CJ6sc@UB6e3u5m=f+hoShHYO!=;~J0me` zySu}!ja{_bf!_o*#@cGd?fIGV9nqj2Jtfl<0VLu8>@vQxOcROjBk*qvit zrudZol1%c;0(eEe5I)wYU8ccFmt-Xt)aASj9&<1)CGV{z1{L}=^j<0w&eBPX11Kc% zZk&jfjW*GmE4oRs;GY=}ZYp5+*>K@7!hwqr=WO z4cM8m5;K7@Mpz~eR+9NrOB2M~` zY)9R5SlBUoV78~TsxK3d@}`1C7pKjmY;1|=AqtL5UcQqlkC(n*^Ui=3PIBr`1{p9$ z!F$K%uc49wD+4TpbL;##n1_2c`zP2pu?raCHEGMK4#OmI^#e_)*%Eu5C@N7Qo97Oj zY?GI>b_%E=uQ0RI@UTuWL~Rw?6~BxEMI#p7-JxH<=_ZV;;P* zCYD}c|I({7xVdZWjJ+Tg=eN}q>pV7YOsAQpLre)mQL3})L8*Tu-)nBAT5jz&^K@_7 zdy2alVkWznuc8KlKL`@wrMWCBj5z|Cl>K)&^B)mU1fF^+BBk1v&qjO&U&5{K{aZo* zPAq{jt(+Ds4N}VCefa()iCH@!%i&{FO1XTuyv5JCfPT~|-k!k^n~S|2H6tzuZn<|U zU+Mu;N1AcQsfMSXettqEcDjooZV`)@BEM$&zTJCp#!?GX?Yqnmj5=IXx>7;;d!`3! zQzhA6Ql&L(v)@X})qL8^ptp+im|NE-TgNLx6%XsPa@70wG;$muVm^m7l`)rET9NbD zy|U>A$ukm4lCDEGpV1>DlUg@#%LX`K=|^uZ)X_Nh&-7mhj#A=i`_=o6k>|c7g8WdoTwkT|#*3+Cx$ec(j#JqF2*1X@IG#J1GivAPnyv_Ttp#KCP1W#SI5; zbzqp3a*bar;liO4!ckJ8hmR3U1BPqc`OFI~CIM4x?1o;QxK3)2{?5+B0^ycIL{(Gf zfACp?1Ee+$ZdCpW$1&-9^d}XC77<5zL((L- zFDA-UIGGK4Ym4C@>qZ7%0+lCdZN66J1Mkr4VC5+yf0-otX0Vg8{G^G=2!)N-}tTz?m~r zW%Qy1d?0s4p*>PrgD-$D2Pw*+ zJX{ZKgtm)S_Ag8u#gl+p6=C3$NnP>0UC)fSsQa+9&VF~nPw=%ldl@g>RbPfy z=LbXRzE3N~cFheSX=^DMdx%xvSE~u|W6Nvle&!sQ)u{jISgJ%N<-5Dzvco_lci<^W ziyTrB;+E2*wV4kXxnT~7u3*bN2LwsFRo9%0%@f0z7eNUK{a&)@=S>B=efturo$LYu zn7OvqfdGrZ>@$@SNN~0Ts8+ey5+XK#+d$H#@4_A{goP!ixY9fZlR3Y30R-MOc@AMF zxjv;*{jHG2bId8{`1o$j*JPDfV4zR=il{=c+u#gsu>Z$6`|qLHRthA*{lu5c)dy@Z z|ICGx@G?P#X2`3XtK4HD)%dgeS#2@W(015b%CF$4++G)2Gm|>Q7S6VuS&f-`#B*)P zb-?F11I1En{{l!qS3~FAT9YLUjs*rPw#!!?^0{P;a%a78yB4kKM`k+@Ryo$lXvzW= zA6RaaJ=U6R9Lm6b_wfTM_2xL;=L&^*>&=yEOoki!hPsc>4q}(7v&wtFqm%a$Qpfw} zKnVHC85j%6>R=YXsdZgOg|ZX}0?uVwLH}KtyDJYluMuA#CxVG$wVVR@TbVN>CkUAJBD+I8&0O-QYqW<*kTCT8Y;)dgM2hB& z)IB$H*|RdEl3wj=pH1ogI=^)272QGLGMPLl{O{#nLAp|+@+If?S}c#lmHBi|@_zc1 zx|nZ?ZZnea_52|VnGbb`(ilcJ>B3WXbXI3x zeB;xMYXL*FZo}1tu3$Re7v?|9XL!yUF!lO}_x+rkv%x?@t`T2Q*o-91M<4>=eK|h{ zxbznWKqjd&_wjC6^LTUoc&v|w%Yz!j+=&9gIluf0m&>gZnI3uOWjE*!pR~zMc8>ML zpVe9=-QqjE+sLo!CI|rqK0y=c=XOKE`1oQwO?Vj5APlR~YuaIooT44p@!kXu3IjRV zHcE4LO@Z@xUf8mNJMHFBa$-uttFOlU77nort8E}?-vD1Out1vbxpAbOWHk2<@5Aby${^2qV z!Tv4d384)Z2C?_Mal*!#Bf}sn;1A`o)TUg7ojnjVYfgYeUugxxGxPnoU(k*4*n#&{zxO62~U-0T=ZW>q%o2 zISN=l^si;53JUMnayJ)x<^0$+-{=&We4?MFtC?#=biISV{qbFt6qKtUvm12piUpEs zqBUkecZ)q)(W+dJj)}{yZqTkNCTeqarmqOe)$KXc>+D1+bH?6am&$P;X5@**Q#=m z&6iUyTh!5aFd<6P|N=7i)0PJq_ zSZGn632KP4BjY!hkSA*GjrS**U4C3$W~EjCLkLnp?j|P|1iN(vjMQ?iPoAj)gB*`w z$wf8crN^q>j0?;!$4=n}W~OhV;r_Dt?-PF`)*qEQV8|MgA9!8=_A%Z zc=1oc_59%MZQINzN~b~0fE5;G(LM;thH%B47Yxd+Ept99diNWJT5WWxy^RBNjL&Ci zD!K}pQ-HZn9{>t=L)GCfQ)X7PYvw%~OV6^8BS>iS1NN3tVE%76SE2qcwpgMlFWFM_ zQ7fq}fkhzQnd#fer|i>1T?X1dIWXBQN4xQr>G@bDMSp_hv3z$0?-|rPLrlu$ZJ;7bL)r}cPMt^woyumQ<{Cj#R6ESP2meU;Y-hui20$w16a zi*^0aF|+cUI3v0|6uqDE)J#C&Si@pb$YXCw=b?>E!62M70;zxFB|G$5 zQ`@>k_my%(@V=B}#@mClc+ z`X(~Ls1i%`iL8x!ufh++nRM&*mFZnpr&j}$_Ev;vgw__r+#J=Dn)yEvsPgBmB8}5x z4m^(*)uVVCwJnTtV?bq3Ls?nbZDxx@UO-OHyhe;>t-?)L!Gx#4VzgVA#C_`2+)OUU zIdG@4y@nua-}Io)iqYL7f({f&kArx|{8dy;{ckT&2n{y?Hwq``&ISeT0?{h0Ffog^ z!cmHTK~B1)N|vW6ZhOD3=76{WkM9TB!%4NF>_qp{sEI&CU$X;+^J~9#y_kZ%$|5 z9O=KZn!ybI*#Z<`gI%faO8&q7&q1{q0VT*5p?h)&2=kh$w?Rni!QrEsv=5H3)Z*nz ze*s3NAh1MCMf>bz{_eAYyXYg3c!bA3VFaqB2*72djKdBNyD^*of;6Yy!T0vh4~PPp z{@*2k!BgOORY}T1v4f?etsPisZ20n!p2>z>B0Qf1|bk4`7oK_}!1k zI)FU%STXev&fMGQ?$DefmRpj1CymT4chRvcJ!0(bCwiY3hksY7k5L;7LQs+~et+Y? zJojk?AS&v^g^a;mVp$%5<`{?|zFG?g?Y~7c*m~{IuQ#$c0sKjb+0D#9sF)tf1;2ay z=@eL5dJ`Z3fP0tHRy+;VjMxCnfcw`nTmT;}xGc4W?hls1hq??L{$l*^etQ9YH4E>` z(ow$|by__|M!On+F7wcCGWnIGR_Qr+G3vf>0{bEp&r`cR)-p36QER&Pm&J0iJ^Xv| zx2}RmRLnbe_YYbEDpF_{*&$XnE|o3*yYgV1FFFQDt9)L`UbSpaEF=xE|cMmWW^C|t=O zoB>#_9?hVu@;?`y`W|a7%XL6CLtCq4lf&D27DRbYX}lOpR~t)tt1h9ANuv9L3l zMoGuzS{HlP>r4|cX`t%em+B5+Pjvg?sNvz^+l2u_obSNJZwi|kLW;Vzshk$3ZUc=S zBbu$+w_;Izh95xLtVN#f_rZn)-`)!Z7iY8D%ws4e=}$BG!$2JT+s%03aIh>Fgis!U zq7D+xkvG;}1Ebe)7`!lWd5qukT~-f%xbK~z{Qa>af3#!CDMcSJ!9v)E0+IyNhta&z z#db~CW%$pYRYq)#v-THz=Vljh3hrB)j0YYlDl_jz3M|orC>Sx0J8-kZGV8&jO%yTM zWe5R?BJ~=HyBxrRIYx+_2a4{7q7F?wpi)L&ds@W|teq&XeHFKoq@ZV5n&RVuC4ZlO zyoj0bnYU*qHpk~?34y!Ue27E5y0Pco9*ux0nz5jLv?*F8Ee06zX+`mAJ5f{uu6RvF zxC~XBw7r%Ws^khV07DP#+hLn3tPso)I+~9m4oCq2sW-sSq`37YM%ZE?q#IAJvFL5P z;(KG*9z+sUj~q*_HaucoW#7X4`Zo3Ah&$@OuqSZQ-+>uK+XJs<15Jdj7~@||>woKv zuKR-sePC~BEhiJ0>fEaxC%kRoN1hXaGO`_0|L7Ra*I8&qP;*7Y$&pM7TbJ~bjYbi$ zZ-*Nr#j-AJt=}bmtP5jO-`;#_n?^58aRVcxV|FI0bb>Zp61%|osD!-TB~5~xq}I+F zu8S9J|IVUYcY#z&GkvsXgs8TE$JYZ5AnqVyZgDUQ6!ZG4#yQ|Oc4+tUTnl|sy!qU4 zZFMVLAqp7Ht0!Dek_i5-+OTIQ1kN(^ zy(q!+2!Ox?owOlb!D?@zYO z%<=V2>Su{GWeAN#&8MP{&7EXB`71#4mTczPLGmo-QC&M_{@3n+_k^o%}T?) z`*zA86^z^C@i>jg_s8vUYp$Xmoje>5cKSlz0K2<;4wAr`(${(YfY~BSJGXb~=31ET zc9plN{}(m5xlpJqjXQ%THs4Bj4K$eV{eaR)6tx=%SG}nJy1VB#QSx>HjVGQ@H`V1@ zn}m}=ywOFgVplN&To+UjF95sZNPF$%rjMibwzxRg&bRvf9m}RQ-Jj{+bY*D*=Qy%E z8nT|sy{7ikw9LhO-q&-ouj}qX>)B7885-&io>07kRk@aZ%WHvKkNVJlt8q+|?eUYX z-m{67SsIBN6UkUG&pS?oMJUNvr+AV8s6yTEv*-n7PHC_8BCQlr!=2^X!p`j;W1`>m zBF;4*YkO_jo(ciR!8SgpwQu1x<^u$=Xj5@Y(fev=`oUNL(<}L}{|?Znk36dV`rLS| zrBd@gbO6QUd(Zta`raQXIh0Np?FFk&okalzI;obek-&uZIJ4w@Pe~Zicj-}MK=_28 zmR@GHnNi`6vS@nyFj3Zh_;g2685DR@e`kL(k4MFq-WwXk89y5Q`Yg5xyMdV0!42h^ zc=oTaVvF5~?2U03lK~IDQOpn&fBu$vvHY+jZgpGOw?>C^+V)|eskdDD#Z1V92kVAr z{qPa~Ltv~oV`rJB13Wu{c35W8)eH&54o}E&)_g(e2aCsi;RE8n<%1)Trg zUyGpzMZpBYUelLmx%Vks*Pl z@VIo1*a5ER0ual}`@D(b9yaOHQ|q(U>+ig#2i0YgHZGVH8&m=7*x^r54bYo#b~WYl zvb=14V`h#Y7@z??4;dPLiOn#~H5!_AytK18==(+La6>0iJL)xRoa#7c4T`K)n zlU^&p)rBpq&VrGY^l~)9N3SXW3<#&M(qD-MV+5ns*_R27pFXJ{>s~*3`0uedgmzJ2 zp>SVq%B6BK>8y8UK+O8l|1pCb7(J?+B z*Y+Du2e7R_dz~3W|4Y5d!)X zY}pp5@)sv};$E=H>hL8Aj)0ksvHRySB6?PnUzv5sVyk`ADu^@->qS1_TEu9j1Od{& zI6+1FkGggM=!BhM6$wq&7-pY47~edC<@p?f?)#lJ1oQAsalRIR8j>LLl$U9B>&-vg z*ZvDTuViyvt%zm;;7fIITk={|c@>W*w?-=CN!81*4s)&>|0nnM7L z;C)dRs0DodFJECbLHm`J25hiQBB39>I2Wl?V1bb&eyC;F)j)kC64o_>c zM6^PHAFl2)URIc;cC=1rCc*cmk~uZ%XKa1lGg;o9pngGqELGWJirhnuB#_w-< zvx)hYx}t{ah+uxCyiwk5VQJ5?BBX5K&cj4wZ`sMm+<`8W0b>o;0*l>UR2W%o+sGd! z4~JU$}*WP!9jP@P0?+zgd_o zwDd9%#7f_-Y>G_)hrdqZk{e)R-U9(Aw_b(&nGKLkfaQ?r!=qr_8}2*)96t(dJ`Xyy zrN*)}8}}^(lYD+{cB%5^R5{;gFGPdg@=Gl~Dyv9af9`CKyBH7dsYK_Ms1vQpI0Sp9 zuz7kB6?M@yYsQ=x2GSMJIrDZTpej9k@^8KW#_(00xC>S@Ag<0&#> zH{u|RkOugW>A+}v$S2sF(=|CAY6j9+S&V<8k8_B@tZ7Ab@ z7ve8a=ENo=W~Hk(s$@3Ar!=cx>jPRPgl=4V2H4m;O*7K)LL>)dFHl~z=s8rAjqS9GvHEH}m@eltc()^XK zLR_RSH13S&#*!U9J^fR!Y#_?h{G_asZeHnNw^`~K`AS*@G)M6?Mm=r-GQ?SN6^j3G zEe$)h+1?VGG23_~US<~f;0Nw)ke1LSMy=O{o+jk=J#{$qCsbW2C zx~U4hOoO|%t5si{KjK_DMIMd4qoI1Mp-aJT`GWbnMMLv%jK?1&m(*X`GC6&9f34~( zc3u!U;sE4rdc2Cna&#ugTeyLNs_+dlVF-U%YtdDRjGp;GETz3^Ak zL+PJ5^$(BjdcM*_#-Mfp-!{qIcRb1lK>3ky5qRRqf;g@Tl+kvd>bcdyER?MiiZiwJ zL8>ex60{$w>?{Xhi~dDi{NdXQJ{$37&+xNqAEM00N{KG|6UjV$JnG%!=W4fa8&g@G zH+hdzfZdU^?O+If=jf_b`t_$jXe6Zg9x3@#8PH}w!64OygTq%1Ah6}{e{w7RYp(=Z z9pYJsRJ`Xndi2a@G>`hRtfvkDPy&euim(^_z2yJ#?zJp>woUDV9Lp=2%{}NjMo~@wv#nTi$(V_|d zLKU&0H~$k|`mc5QuU`#g!5-W8+c+sl)kMKC`~M@c_lM87Mdbz+3%Tz8!<_)Z{NOJD zcF)DXxncg#E%yJXq=WuS;{M^19XL+qB#Wb3_5@$2LL~IU|I5_^+?eD)xv@WcjloKw zsf6piP@~)twRGwMKSaugxD7lC0UwU*pG4N*?t-7MWWgDHI0V}NFlfJ^Zu33=q!pI_ zK=J)=A%uq7j0QOoDR4R>feM_A3Hmg0pA8^P@BT`3|LI1cc8OVua6kI#;V@4Q`dR3q z7gYo&hw?uj!yrWvjmVQdcjpeA1`Y;zC@u96x*Z$#y>IUgd-I!^{IkUeq1XsK8bO$I z4|p^x(TU)``F|DXz-rwzit;@jp+;RT)}jB0s|5jN55C2YB|wjkO`_qv<9LA#aD5$P zXJ_X|(yu#n$@^#_)~&{sqR(MsNV z6?0MFbfV3d6jxXe{HXu`2kih)V&%+-RC>Ev#bIp#hc-lge>@N{o=@apH}di{End+FI=&LG*#VQ! zRo*pkXFJ&b?6Cgh#O@D%zz`&2Rc>xyvzuB9C0I7a2ossOV74#7#E)1o=YpC>KxYuI za!HNZdYMr`zM)>TwUN=?rK<@P1n96_qg+0C;E=Q6+qSqLU!TKqP;%Sv0z~UzA)rs! zmZ*F=T-dxlkQx=RO~3Z$(({AE{5r42W3xpDo}Q9LnCBSeTa#J+w}RyoE+*rd=;_gzM~3nvZ5v z3`}+U%(1S@Te40VAaeQY%jJPC@Z=^)-(ZdN*_`xerU)RVH0=04z7}$G(?TUK@=uyyf>RAaH{{dH) zf^P%vSOZ&h$+7QEu((_Il)VUZ)-n~I0tg+`W0m(zfA>SmDPsoCOz}@pd|QgFGolR# z$cdRokUpSk8ou$p0PajuON*-9>Ti|zxu&f@SSKP088#Ujoz*5{(_L9e^w*Rsn14%{ z^JW;eh$r)t_d4-Xm~w5OJAsWl+VtRwHUC?7qsGp>@U^h&FteI&qnhn`+3EgKZ~e>u zm3by5I()k9{1U*I4vz|qsN`;m2c7T@zz6_LQs<5~wsbq^?Sw6!gyPonOP!XB$66Bg zWqcl}e0#wuGOz~Z9(GE*3QKchc4)Fm<;E?Zzvv z(e3J<(T$~v*!~jxzGX1(Q;1t+>w0hDZYQE6Yp|qUE!XHGkHf1|k>4U)_u`TzTrboO zv7b59s0=7!L%q`5>Np2r%q8kJczwgE?uNjc?JZx=n}L-!pF8V9UlzH>3K~U7x>`p4 z_?o)%N_wVkzbfbr=5K+tzDCzS%08BQc{zZz zzBCb_tP$^LD&ynA4-R8#z-x*mXwB?Q*ST0S(Gm-|#=17x)bQ1{n(}i@{{y_K#Q@;8 zmA0?%H+kEg9ql#Wec3X8+-G0yd%D@(EzdMBxP%s!qui#Dqd}uK&iCE|5s>hbA*^Z4 zRC!j`JZIYSj{$n%pI8A8pcZLR>Oqr@i9Pr;G)Qw1h-L2DbIBN@?3O@ueRH(RbG1YV z!M>a2biu147w#P}N5Y0u&l(CE7rz|?j(Pn~__laE|H9?fP;bx{z|<6P3#K--UHa8nth;xCDt8&VW5E+NY0p*4FitA?&1Y#UM!GP` z4ReN(&}B^A&^{B~N)o|!m#@|lT%s?n*b!#%mC~mro4~JvmT8h(36>XiTwCV35d1^hdsvB(! z2nfe9w>&CXu96T!2g9;b{ukIjOgN(EPO|`PE1RSU{^wY=rwXnw9+Qk# zi(D-B_J{3m3DSD>hT~B61lk#2s@>{Pz-Ds`**-Dwnnv@WG^zjY_Wo*tFh=e;`-uv=P}uyIWoqtDwS0LX z0lHRl9x!fl3G!L4&iJZ~mHGZ_;&--{@pR>#Wz08vXZqN$W3_WFV1Z@HV0hQ9m1a>L zCDT2#?^V&fgoJi`{+pI>m8IFB6N}43R%06j-o%aP3L6cf1mdBzFgk|hfhGcbZ?C8L z_d(?D=?ySj)>VWbveSkV%Sdy?-dqjiZi@qCu$990oTqPw1wW3|uDEkoK{FgKR4igr zssxB79>uL9)lfzbYsI?#j8o1Eo@BMy9Emw;_EXTo55aR1qj?4yRj!nlz2%XFza(^L&pYl?pJo1~SQ=Bef@;do*;)iITrz zQwf@Lgi-B#{)gLs0eX-p0kR$|WUMunmy&0ORESbd@U$$!FERuz{&IHxc%3y z(CCcESDk(*9RTSR0Q?#-RL8!xpF_)&|(G)|oQ z@dc^FiO{T^cEi}q?{6eOdy`u0Wj>!VDNC~eW>__VW*mPJ0Z@$;w?>|b9C%k#VF@wk z3FD%H1};r4E#tNtslw=!@02Mk!eMCGK{pc9uAZ(2EhfGIf`YvU}PRwS(?= z@E_v2`%Np-P1bkmxPGL!SGpuo)_UuKfWe11uHnKEuGJx(v`_|)0VQN;V~TdY94@bn zt~%u+(4Y;JK}DQ<^SqPhJUh;+*nST2h&pra2F3Id8H@;K=FB2xV$EyjJZDF6ZHQrN zE?=1OOImq6f~B@hw2bcMdpFhA_+Z4=B7X-a^b+DTk6DJ<9^4^?Bvt`Pjc2`4V}t@) z9_^FjS5E6Qslz!|Hji(a9HpH;v6dvirq?{7SJmC6_uaqpyhRlpjRbel&T>0E!~C&e zc{{*?xS5_!o7I`J&O8+%iYYDtG-$dKTs{+0+fDPu=l7;h23}H4MQjSd^UcF2%hEbX zHDW#fPqW^+3K?d;-agyjaI`M{YJl#^L9R_VMa6C&6tIF?}O9G)?|)O=+}H7PS&6tH>YX3bo;~IT+;pbx|G#^V@yt{ml$0 zF*<_E-8|@nWJkN4#?k`I`%<%*pp0C6`k6ZMGG)$<>mKjXpFHxn3RwERQSKuT$68iH z@M%)y00I4~82scPdH?<5eb%M+9lH)O-{Vk-8M<}?QG8R-Fz-AAyJW=o?>9}VY_l1B zor9p6^ghlRH}Sv&L>S7zZ7t-EbnG$ZYTAj&vqI{GhM#l{cjk5HhbZ_i*)p4Ro%>yu zuXg~$1233X-`-p!o@-5#1pc$(jpY|{THYNxnY1pS@L%Eb5A5 zyIp@(e254yChVag(&aN4_A;mbgZ)7N@G(o3!5WaR^0xZfPQBd}8)(G5#A% zP1Tj2=pHnyh{;)N>%xIGM!px@->>y+kFOTm)dmGi-bVYhIx)LxISS<%i5q@PmU89` z*jy>czVL&Bk+J)MdY$KDl0L%y>0NHS=yfHTzdVi6-Els37S-L0J zN|!3-T5g>+DRID&n?Tjy#VTLi5`);&XqQv6c6rjaF-pa#z}%X^Tw{$OJ?^JJ3G(3i zjKeDjhjqT%J4|d=c5at(Nj4BmrQ3NmZW1GoNV1qyWda8-6P@clWI7D5hkEW=b5%AAvHMIFB#EhF)#) zp2`Z;TJ9RX4C=mRo&}cy@)dRee#Fezzb@X{#nYU2xNY5wp^Uw{1WfhTwIp?zy{?6I zH;w3k!=mW0rsbPCx4TpI#Pjw41c7u8@jQX72O_os<}5gCN;G?f)A??886=ogUxO$Z zAwad%32Eeq5XasvPnwzOu}TmuV5_#@v!C%8gDSY-lM{m$zZGI6d*rZG%;7?4ju*j! zCfnu`stm$TFjm1T>y?+N^}T$ac^A`d{aoGI1i@tYkYuBPJ`a?nCY%e4Iq4|Cft6nIW@~#0bidubN{-$1bgVizc{&QEkVE*yi{EJ|NXvT;r6pebSO}xy#@O zCpgaH6(f*!DT2#VL7I`S$n6hL&})H+erKVEolP86FI&%!V#k{PZQ9g@7G@yo_|^z{X>0z_ouyB4fW4T-MD}wvIo4mc zUvbZ-{5a%8Kq^-ApoY!YXN_Q7sZDsAOn?TWZ}rg}#W{_kvpq##6SRE0 zhJOV^)RiddfjO^ar97%pUh_PhvOY23fT&H2+PQwHGD8aMNKvXsQJm#YRr-s#?0I5! zug)zJai!xDCUi3ZdE%mJlQD;60%XLfa&ic6`!pLuxOhQ}jtS8fx*I@gOV~(VO$7x# z`lrUn9k#{4bD!unY>Er`MkgH5ZmoEU%5-84g@RC}_w2JQIZ;mNTV zCa4A)w$XCN+rDs@-5LTgqETCUuF}uFXh59DWo4DRc4-t?p!iyokWpn5giMDt0ihCy z)+Zm2`D(Egr&N9g)qTb$4?&9=N4PEnl*!NY!^Xpy$wK8TGz%a#O2R~48ZfHe@tWpe z6I-78c()Vy!K%YZ=%pqh*RjEVPtk26+x-#JAyJ=|1C;nPHDYPoJ^me+!76FZ=8>BjgJLUI8E5({NsZxF;v^^eg~m}nVA4Tazs3?Jnq9} zKgcaTnFNDm&&vIQo$jwvNiF7L#A%?*;hhG9bJakX=DEZxv2U9bow~cU4QD{zT@B8x zHUCptd#ciAy1&FhYaQhdWEvom8hgnl@4^C|{2Z$lRPFnGV#&7Soldlr(kZZ_KHrOQ zvZU&}LXmLYb%(5H^z<@dzVwjhp5fp8nU^$wEf;>!UlyD;f+SwVydvVbgr`$iPHeh* zaxeUf(*ayIWT?=}N`Is5DKc&TwSsq3$l9}{gJWDIpo7uG#alh?=AU^EG=GgiS?TtH zwgRd)SeYu;=4ys)K=b)eRg1hH?U2Xpn8K)|(B;K#8*cgn5hzq@^@AC*fPP@8|3lmN=K3v~YW1!-N!$F`%-jS_&O%Q-#~8RAFSNX*tBt>~Z7@(q-dYU- zYK^AH%dB%{t2SL(+HoNB|Nq!~>!>Q%cWrbMN{JvyNGeE3ib$8z(%mqX?vQ4Zih!UX zQqt1h(kas2&7`}#;XKpdT5In;&bRmH?;Gd*bu@)0x+jj9QQ;CoY z>Yx8cWA*WUAJlsYhW@)xT&h2Wu2-qGqX&srcIQO)Roa!5fbQS}j<>0n(`B+G&rRvE zWj}1bOjjz~N%zS&AI?GG>{?5Uk767xj8ZW2wR;A}u0-)eN!qcb*z=x_o4Yz_aYRG*8?0*T&`uTo;bE z36&WQSfNE7fIxQ}Td{tmHg?FP|G?&@19+bwmtTs^mYDRG_?TG@Dio{bdagf_=h%z| zQJ27Kg(MaAvK&PYiEoP-bGO!G?n9j;kX<^>4a?W^?nst7>K0YFqJJ zJ7i2C@!rOcwFqz@$}Hckk7Bzub!3>Ke>Tg7CV5~iTl3PgRsui*Y9cy0UI>}Ku9v)t z-)*J5p({99HF|&KmIu;ScAs6IXXc08q$8t!b=Hcl887#hEognB6NI#_4%U%_Pzd=?SgNx$H4Z#7T@HG?BWQzB<}yDtjYi;$z)txDE*~3{izT7@7^xCf9pJvEHb84t;$ILm z2fzCZ_6U&K86O=VK|N6E`CS|-1IIj zfyf0gv@re4cVFyT^S*iz>0!yFkt-LSXHrz%o%U^yuOT1leFzMjF))keM&*eXs|I_Z@Kp)J`+?T{fLg;cz z?%~l`*=_`>GSV1`%Zv3NtguP~BoP7>XSkOv2AAqR+Ti+PHCf)dQQ!#FsX@CHeseXG zIFKwRJz4(ZCvx%bLdX&rUzNEXfnc;Wm?mBGvIgpPAg0G!FexiOt;|zZnH!?Ak?(dho>zbo>I#RPex71XLTzviW>jN}isN}Z zws!88lgPWSRwpcWwh$te8xg}Z35q_W?HZg^`5icrMNFI2L%M7W{iQUYm0{Iy^2!ERaiWPgocO0RTQvq46{#J!f#;_x~!xSKognO;i!Z-?aq_suVN&MP+Bf1Nl5jMye8_eJHuFc>hXBJ<)SYvbA4ezm0&CVqDw zSiPvUofF;%<0`RiP_9&$29~Q;=bOIkqLVRo8GqL62s&jn%rRW$qr(bzb5tL!N>|Nk z(e;u=?XsW+3GOG;cU_CDb@}qEme0VlxrhQT59U}dFN5A3rP4qdG9mbO>yaJ?4M>=! ztcEg+F#3a-F5D|QJhF_WL4x5QA11hYwM5ikiSSl2oMu#D2BYesw+?07F0%r4~J9{CrN5*;CwLn2`G7^Z&Whqye)$Dh4 z!UcPR)%^9Wk=uYeYhgrP(0{@7`TP5K0#vNgQno6mO#Vs+=oj)jZ9W88NGBGP#B#5T zJcsS6=Ht#I4HnJgag#D#kv7DJb0kx%zJrV7HRkwgha)xcfGXe{?fT8K92-Ljj*1(Q z+AFuN{qZa!4$1K{=YFw5AZ^a(q}ez zthAE7%nlXjb+C;fK+@QLf}HCjHb5(Jfw2ZJZT5k~=jwN5!J z+7%R$vtomsRkk{7Gm*|j%^B_A1pd5eu(^e22;t}aO*2Ur3o?RFRqoHeAGbW&-OYLC zy8rkANZ_(Yrq#h2#G5q2+uF+nx}I1+n^1%i7k>b<{E{VFphms>ZyXFT;RJBHQzHmy z%<>G>-$1G%T3bMWaVHXpB6I+OAsQg}SUkHB@)$TRq@ovlY#7M1dr2J}H_Ql3iL3mr zU373f1OCsDPW5-Zb518pHx>tb1&?mm+Y3ZW2NJS?wxKSKe5;@>oh$^J5q2>y zVC$|Zf?QiW_MZd${{cSJdj_rHN-e<$DBfBjS~b z6+y#ct@*3>FM7+C3+Hd--E0Q(GLF!i7rgKv9?t(TwElu%KGU6-Lm=p<(5QAOyfS|`XZhb>`#)~)F)iXQ%u1sfk&);T zcaixUOn31L0yfEK^y)o}s4tK-$6u66;E!g%mGBR*H0p1@7#>NC%)qxBr#{w@zaPo} z2)+EG0Rk3XWQ1`7I_huAeIo+=I@U1`*c+EaYe8@4=8Y=ptT0~@#tjKP`Nv{?=#kYM z3p)N2b4oFIAMX$RrcVPxpQXa0v+G|X1=F2CbVc@3`(0NEz~$Auu;~ORRy{ORQaqci zjrp4}(Qt$sCpCMLUMv08|2DLMvGq^TTIh(@IZ{cu4608P;Py||ZvS;gt^jyi?WWFw zMrUB!KI*?xNXdj;UkZoOMEo#QYWiaeDS}O{Az|$EA{lYU_1wI25F7=bSA=*>Pj>Fw z$@~3tjvf;F*srhxjh(r#Y#tpNZg2lU;Rxc>0P;Et;*B;YT*=>HY-xbi{7t1l18i6n z{~pO0m87ryuFp;kP5&W8>))$z*$a&0wO8Ek{Yo2|K=voxf`^D%Hd+hsGb~iRJj7ue zxX`|}`;Y#EY2kl;SUNTLffVHpfF~2u-Ti}x5o$2vNoh(Ozk894SU9BT^bfudG%sM- zW`EtiPXz#5hEx*>{A1q#eR+T^0({QvT=l?Ia@&5_A zjeZoMI#P)6FZ2Hyn=gWFG48edBULs`7`S=5!caD{zs~(G8ZegYLa9%Gu%l$w3Alm! z_!u25B-HH+a1kyZM7Cc(@OG~8R^>*1we=F7r`I;f6%l&#*QZy8-yq00=)2Y3+DJYP z2vj_`MZ3%&oZ)#|aNw-v4uv5;sJ}7&Pye!Dh2%^~ok8mf00uwd5)F^E9N$K$HHGdt zUp;*DMj%x+$5^Qzj-}`(=E>u-YkTHCF7=m$8U6lG(cSeZsAt4I>eluI0U@cDPY*yV z0|)S}I;jSFZUe<)VUw5I^## z;a`9XTIHkUAJ5G-MCu?Xf+QblxF(pwW8JC`piQfAOEYfgwRmI5=O zZEeR5SI^!q;#LAdCaP|u{&{(XDtYL{VKa<9V|=z^qruAZ8@qFzOai}dLV>C-kTH2n zT0nNDbbSn?bUoxcUf*(thXEvc=Z~xf8XGu2m(xD;vFBMtPjRPvrOATdFek*5I`N?V zt;H4cK)S4Us#4niGL|^bOh+2`2_c9NGgJ>V{vaBj#slN5*M4>z)IN0pG48>^e*rAW zSV$62?3OKdJcW=`BUTaEq7DeC@ql=$kl-@!^{6RVlU@3F6K7fhatX%1#a=f)lX#oe zPFpejy4mjxy;fgF^EvxD*I+oV%>EQnTKOOjh>JydI`L3bv!$~;% z)bfLQ_c9~iuUetqWKtR^Z$38asHUE# zTIV?QBq;jT85kC*GCu%Bwu@&N6}NKa~wTn7X;UmARA zc9hvk8SS^BdMr(7Nq%$Q$xfU1ZW|^eQk<{{CpEKP>4km)EzRiCcD#(Ig~1X9OSz+7 zvH=2F51i9w9xMT#0p9&ogO6kk!Bs8glLMoC=~tkQA0xHlHEDN#Y}c|}!{r{b#_w3y zPad@9=H@9QeqJ|lA?7TAE$#1rvm>z1ch>~^YtrN5?$#L1k(I-`)9=w14$l}8)_ZS%amksU25)v_RG1e zH6@1amU?tWql1F}T{}(zn)dODJA_B>0?QW(L!;;LkrVLdPbN-+%hr~2gKoFR!(4*{ zJQ8{QCRo#FU>WrX?u%`TuR^KL9KE1NwXVB;Z!kC$@gF=(4S7zx!pkNA-8m5H{kSpZ zQBbgwshBPk{n&M1p)wlG;y?H-w8~G+>}5vQoeX%=$(h#Y_V-+fGkQaJoSRPS%<~gl z%?47P@;-Z}o6?*)%PiSnG2R1^gAsUTOI~iYJ$AyvKfe2aTe6^&A(EPs$SzbL(cfjn zCc@3rI+G%_0wo9nEFd+&vA*r|CE~DLw*(@Q+Pu!@CManWoSv8W0S6g5nr}r{TR>;B z%zBzd#4q?hwk5B2t()Vb5xzS%Hnw97m4JNwd45-n0IO1L-Pqv~36Ev|!R5ixQe}38 z4CMI-CXI@*<3Y@}5TS%l-#VQ3-FpT`osm}XgAxH-Faz@W1@wI;IA<&j+1^-UKjxiO zmM4gU*H*#amrqbklEpRT+hcq5MD1Wi^BToj4Lm&Y#ZX2tX=-&31xY46R+B8@WkhJ#a=dMN?V4@KquuT?a$zIE>(SCRJ_6YD zdu5nMTVi%rDRn1p8QDuO1JpLpwa#v--@45uo3(I>(BBExFa7 z^t_^U-z{R&+>gd?vxvR!;j)2iNC{kp4>o(gGTg2SS*$%-cJY!&aD~^VD&tiO)S4$* ztKuu%Jy%`r;;WBUqYw$g`4MzYx_a#!wahHs^ZNRrdXX$>n`a%Sda(+7+LfE(d6#!G zT^8VcdvI#%skPXyv+$ZXFW}`+9h6zc9nvG`p2`BxdlEtmBVLt1d(`B@5tJ$yN1YM#SaAZ8C;_HKPk#yfT9e-M5X-VA=~frrtWunqwK5+ z_=PmOFXV373VcTz%BFSkxE!;y85=9#FT@9X8Eu2fa5`D*FB!VEe-L0p%Q%tt4Ii~H z2C9YLqi(dXX!!Xf{jj2lv_zJYmtuK^xe<|$L7ij( zcE=1mzBK%`3Z&Lb->Brh)5%hDRn9x{tr^OW#~z7fP*vJrbd~XZW^lgW`FZ4EYYpGZ zQNK3IPs(w#3aqPBc`Fd3EXA)Xvmg7k(q5)DXYS;=*!Cs9@Z=2UimOF9e(MKfi@tYx48mnPF?NZt_e084G~Q zD7236+R>7QQLYGNu^tLUkE`I{G=75SL~T?8sn=qv9&z$ z1KCwaQ0TC!qUWk3!gg)wO!Xo<}E% zMW+vgh|Z(am(O`Jypmq5WKL!(idePXEZhp}BEl(~WTjl)u??1>h`c;Ye46;Nvep8Y zVqt94@Jkl($LpVP%7LQb#$+dVA&0x_srxQ!pf-kFl7iBA=Crhm>S{3XaCVk{h~bN? zgFiK`i+N=lq~iUeFY^Gi~RoG6S21@Z>8=FDN&V-BE>b= zGDcpQ=`WR-c%@oTUnu;12MzPTPZX7j?)4cC{aAbjK4L;qcbUd0st$;|P z^X{}>q24E*#pq>`wnQrqr+wB>9+o-Zsn@HLv6^s5Hfl*H`h*_rRHSGYKyJ`E3FP3XlT z=M_e|eK+I$$XvNVFX@D5=G%QD!p;y9o+jZYvU^A_hDFa?+DFYV1rPXBUxy!1+(uKb zcG68Nblw;#ov)P4$0$2m+McSEF5P$@Dc8g#zO-lxDOcIU7`TI!tQ8&=ZDz> z$$a;nHy8~^$+p%iMY^*aPsn=g!)lRj^DU02a!kTLEFG-$hT3;8X%6+yd%_#OPpxaB zcI%tc9Iw3fx^~s|jQ8eJ-o1^c-3~uN8&x&9W3zeL>}$6`+j;cVzUA@O17-foyj|4U zOS$}qCk**89{&xQm=fMCJ^XSY^ z0NIv9{HnxoBYHtrfLc5_tQT^ljVt82S}(gkgYLj*VKl+I$6|YIQU~n+L zH)P7rI1}j)O!;5tj$4Z`=-L&W{`W6(=^#iIM|j>Sr*C8UMx$tD$(ZA{Kl_HGaP##R zdn=>?UZG;UQbg+H=C*FEVHvPrGT8W0nMnvsIEMwHs=!oAG_DHbQ8w<9Oje(GJ7jLb zYuP!hRpjx#OJMms?(#wF%vxnpjib!5D5+sTY7L&^do$W?C%xz6*rRi9L+;UU?$oSc zV*I%T7trSL$;XtNo~*Ztbx^%)MXmBUk;a}@tMY9qgVf3PG!P6XQELC%Y}$CLs8zQo zit#PNTg7We5!hexQ0vbXCf+=yv|w2@OB#B|M2-)21b3H-ST5xQwZ}Q?EJhU`3G(6e zeq)Or5=WJozzPao&+)wC9m+9Le{g($6l=C0{vefTowU`UW|^Z^Zf|qB=i>)>skz!< z0+Ev%#d8Revu0QPE3l$c=g@bUD|K1xa55VC18ovQG04=$ahvekF@vc*3R210*0XGRdp z#PP+L6RaS31UerR5_iGJ?BR8(mE8w}bXr4Rm#1vg_}jZ#%4t+ibIWfx5A!&AG8@+! zZv+16_c{+)o8@r%#A-79AfC504RG?f54*bGo`l=y5(Vbejbp?aDDQY4)sWnp4HYoS z_9E*BR%6|B+xZ0q^$$P#v`FX;2Fo@2Di3ij(7|5|3@6>4ebk7=f0wKwh^Q1f)z^od zuPiN+IYwj3#Eu=SxEpmAA+%IZakV;-##pRZ9-Hw49i%`diyxbk zvo9ONX-~J@6TisfS@kl5A~Vr*%mx4wq5DvEE)JMBBCz9aqMp{A4+nPU#m;xiP-lA+ z1X7BZvO}5eo}Xlie&Z`EKu|@b6rYT~*{ftLnjIPuAT%ePR7W;}-I`@oXG#SiXKjbI zObGuoO)XR^mLZZwccTX|-6+b7>-HrvT#&Q<_}o zQ~?@Dd2@i+rQkDO$J#tHcwEZ=I&)utgohFn%^_P$&dDKrUn_PyAZc`|uKIDRc$H)iLmJet}P>GYTX z&xwPA2^FeSI|B)YwE-F`G065tb$~k&Q=~3&Wj04cEYGRtYrV~H`TOJKHHIJc_iMwR zD2o%Mcc%#K;N-XUrU)3QTiA^D$i}2puWNk#^$X8Ck>54O?U>|6cP!W4gCGpRs!XF0 zxENWL4!By{QA9<`#=5@!ssMD^%qoz;g*0wSZ)K(W zhIPCgms#vy>fZJ+MdA*!)%>)Dx}$vrbI8dDdneFu z$nqVlX~^G=BV^GMKUijd==4|)XsZtA4}LQr&6Wdzj_?z5Ggc;~icO0-rI?ik2@uep zDAN*U>!l#6X6g9&-6el`5!lw-p?a<4J)I_vrcbm%C!e4M%7LucKMUG_d1Q-)6+r7j zIA_$dLN26#%mR;sOpTfa^H>EHSvEiv>`k}|t#aI<=Hl9=MJq`~o$QX`NM?zj)V>dLcb*7l?P2}T znH62Av%&n-@zsZ^2PtT_B%kB4T$jdr=k6Jhr_GWYu2Rv-?R|wWL29F|dq9h_+&sVLur_#)j~V9Los4Xw zy8;Y?AL&%~k)Uzw-ucmnLhz=h*}&q1=N8NN8B|tDb1DuW9DMkGHc?92*k2tIpx9vOL%}Z$%IXZg+A75>x6)G1O`bPNJgu{AlatA;2D-2rN}b+K zSKuQ}y1vO;T#kk^hdNI>>8?gWS;lKJ^cPrh0iwCncq)WaDCy#aQUN$#U#u&OY@IYt zj~kCiF>D^m*(@RJ(<%kl%Qfh|>>%Tl`vO?gZWUsICh>e1j$;qu5BPyEzrF zq@vD(<$+Y!!akbC&OKf0)I#pSGx+zSg9+T9+J`py>pyYV}IENw#amEbx_ zR2+`v1R*{ze}+?4vh&cK%gbD{*fG4Mz_QSMZ6VX4$w`H5OQ>`EHXJYb#}+-A1#fcxWFIxiJ0bhWcyqUbU9;4oJ zG79xle(%Se`jj8s1x&M}=Z+A+C!rImSUS_`3P*?V8f#r!-mt#?3!6Z%G=?`jriX7_Spp>0Cfs-S!-B5ic$Ai4^eu`=vxAy*TuFRUVHN&aCt+% z1GUb6%Mi1}ZZ2rMITJDTAz2|QN3Mjmb-WRU4VCF|Rm#+B+=SIj1I&hDzD57Wnf@PU z_|NZ{%ebN04z67H=&mg$$Z@;(oUYTrE@U?c@An6>9^d(^WO zQzG|0cs!@j0s7OoYq)CZ`+QT$bIyxcg)0(I$s?PaKZ~=FRSa!Z&(>mK#O-jQ59)ED&Z7TRN4-xEIep z4)LTCg&^;uzY(Fqg&_Ue$H!C#{D~>QD>^yq3vYB}+YMFRbqEC&S;ImD693m*vmIwq zVzHnlo%%dW`5xa{0>7glg9^PgVq;4Ju5J(5qGQ%MLawBtk*V^rrxPZ2rR)sAKjpUaXIV~H0qd0W6V=4rN}-4r_WOgks+Sz&Cpa=~W+=+4`uD?UPYt-eOM)D?cx4w`kP>p98A*YkQ~yeFA1H(5 zP32h$obcn)P%N*cIjnsJ!;ohaC9p*IGV_sKag_6uuM0+O&w{?Xia<^XxUBi-Aa#1y z4~e-8afUPX#1@i;ia^|Q1aT_`5_fCN;{rRhmoKDNGPKb_+0t9=C^Otbxo?<@*c4{r$N1^3|0@uLz64-pqK`jzwrRP2>4XK~~|UGXt8%=HhX#rBvE z&O=t?+WmI%9|3PBflkWc13~xxvyZ3&;!hUZMOH!E0oQv{3uP0+vN+QOZz$?V(!ub^ zkfD$O+jq-^n|g|-r_ZHM%$jj-u- z)#t`amm*p+xj1gN;Vj+w2`n^?+Slqc`Mf4`3x^LV9OfEt3`hE@VX1|MYFpx+9{bP6bNS^%d>7gNe+IYvBD;w)q}QK1!>utkm%#HL-o zCJItQM6<$dZ}*i#pVj_;f;`xB`NfV6g>cVlbIk9VQAcJ32Y$p`q~HFqXM2F%q$eqF z(#f1@JdYm;K{Q#2V>Ha5Nn;1h`HB^EMioRR+c*X_uf;dFc!T=__;B~jQw-Hi4UvQb z&05hwV`j_%EZ9Ve1mya3&!AsjcKot9tu9;u#_37{@BKCVTHpT^j4jMQY2Md)Rq@<; zeMk@AE62(6Vhe}lnPF;KlFxyr0>9f3t}>m6>ZlB)PQRH%-{d%&owgsaQgZ?~5|&)& zHLpJbp#AUehG6Yr}ZTqXzaps z)Va=&Cv8rZr0rME16_4kN8LyB$(t@YQk|pO^WMa912<{wZ=3Y=Pwm$G#hr%`B$qqi zL;(s#pB;(YTf5gY6Q!b!2-9{{hh^kevWDDig{Ntf+e}k=BJn;c8ZPN`h4`G+b0ie^n>VzcT^fnsm;To2DJGn{ckn_?5I< zRRKH6CzA#;X^pwPy?p?V@KLOJZ6Jd>>Q17creOB;VnsApFS*d*o3z3N7~%B6l}c9E zp~vgR}BPIsMb&Qj}{m#aHe*bz#u^1wRoP@e`55ya9ydPcuhBdc@V}tsQQI ztBoVBMoWSyEIv35azq6=`p`$>6W^D4@|7=4Ir&tP>6tIe-`z7@a*$|JkQ-yLz56q_ z4!pl8qR&AcMmvEFp3N-cYT`Y2XBn10Ky;EC?)`nw5B=~!vEwJlaT>8&*Ngo6QmN8*h%gJLc*&DrCR%^o_4NbOCHctPp6{x&{fVF)8b zm}E$$eNgD12lO%8UAK~HF6TXT_CF76v3+KDADwOMP?){utL%BMhqG6Er~ zpac3+TPSl4Lj?|alkb1mGSUA}zDXY(T8Mlo)h&?pd4q)$Cim_KHLSSxrUN-Tjm1e= zf0DBL`B9W~@hSffPxwmE)Uldl#Z<)1^>^S#@hN$h&YAd@x}x7Rs55QYYG(q|!R0|b zre*a1M;_Bp)LG!dlVu*T1A4)=biM9Xe0r}#MxxiXn0WL2uA_yzBBJP~PZV^O0;|}Q zCd+M<8%00T$KnR8fOUJI3Negs4WaDsH=r{;wzP3O-A(GU7%%2A>WK>tBw(hRZsrNQ z;Da4YRNW(%EYPb1y}M!sFmRv;xqESNtq_I1yJ5dnM8~T+E@&a{Wi~MuT|fiP?Mv?l zG(^vWV_yNyHk8u;AMf|CBgys&SS_2SFdG@dLjLIEV~gQ#i&PP~y0_4(Qs9a2c7B-E zrM1eH_;#_4wzn6QIsmZHx1Ghy!t%iMwD4y**ACI)mz%bI?KufpkEppv$gz zmD9#6(CgBiS_yjj{#eYf$D*!Rcz0XZs?{Jzb`jXD=v{E! z@_33-Dx_TPD>Db_VR!Cerr&RmZwHVhdQxg+6kz0asKUa+0XOq4pBd49#-g0Dg1So4 zT7i#)HjCTP$F#Q9T2fas?!*km{1zuX6Mjks)ph>w3 zuZ3mPGi%m(7h{_26@FE`%xi*!bhi-KqeP?vPR^gpX@`UQ;^98x40S&nLgE+Y_HOk- zso+R3O)PO3XV}}BQi|cQ$E&Pbb~NP&RYMY`SIrAPXUqHg8gK4}JjMXJIdMQ4`{i~? zdVs94tNyJBy;`&Zc_CdyW1x9#52znelW=)r?zISC-?Tw)jKXPUNzA8GBTjF+Uhkhk z88{OkXE?j2Q{jVLs~}H5sO$Kb`G&zUxtdM|8uBr4@>6wQ^_ zSLdBH<1K%k>HW)caG)QsPp<)`oOGsW_QA0t>L+?NF3+u}9#0h6M==ei*`oo{r4K*X z1si7d_!Zx%$+(eSIsARQ$GMAZ&l%_^`C(N&kX(G<0HZ=23=Jm;(Y}qoD=Q)%jK$io zYzyo|OM>^8?9;#mazcBnHtOI=SF{d`Fsyu(3E^%1&o_oD(R3?zg?Qafox=&dOOy|$ zDzWG_i&KYEUya>}^F2R(iuqS3(=@-lI&SA_pw{$x-<~zR<}(n5cxg59oX*6=B*$g5 z+jJ(0Pq*fjom>F#JOUrKVOQA}_%l?HTFGfKbMJ@!3Pnde9}xlLISPlh4m9_|MJ3No z;0Zdk-04=Dd}6SrfHIIY%1DurS7;7g3gEgDb1H7$Jv$&$D-v_6H{SB-s_WJl7DVS3 zh9KKYm?km(sl|K0ka@VPcx!gDZ09=$e!65Z0b_W^Baz#tGMWm_*3&*d<)DndNd~9e zt%;ugSNkVL#}!}ZRo(&gN$<8whLh~t@zzd#BoM^W2r-z^ia~6SiJ@5;J9Y#)^=~Pf?DgnLSJfzxg*8^H# zU~@EN-h)bwz8K6McCeM+8&PY4bH#XGj`lnlT_8SP{^r8b#?84>ga&FCG$(*ksLqx+ zIH%Z%Vurn}m+ip#G2t%ltFIc21#%V49<|yp%bz5ej&|jJ+t{l(>m`0~9u_i((Vz+G zC`x-3rUmU@k2|xy1Uj=(jatLyc5ym;K)l0YrAOfWaImjf?ep5RiukDHtzx4bDWr7p*vj-}t-xI6ieq~X9_WAm$Q{wxfupSD z+GgmLThpY;gz9uTBUevNQ3|+;{?r%Ix&6p(dF3&f5k>(BqD{v)HWWmE2&+Goczed{ zMQ@@I9T5>x_52|3Jvx3N(9k2e(jHkdiA=2Lwwu>zYIYnZF{H48Uos{pf|-QHh9uN~ za)taE2A;1qFB@h96w~f>z$nMG&eo4oz&!K5H#_^a@}2u9{y%>no`81f@#eT_>b(%X&V0kj{t%|2SD6wz#)L$|K*UmpG)e zH}MRPwNa^dWLdl5(lbP62W=TU+EMUe;toNiC?P!dA4C5zQh|RqCNY}=UdXrpTvrR( zIDt{vU5`C6YpoiWC*3EynPQ1M((30_ASMHD`2YxJMs;8yPq^*qypdKK#$!)=ex8GT z*t^jB!)pd9+9m`N7hlJy${3*=Sty} zZ*4ywOxj(i%XEp(m!hQib*^lq!SGgL+D$e~Ci?4hr!HH^Ai`7T&?~2niBO<4@O|lI zi_14Suv-$$IHTs@Y{Qmwc^p>z?&aC2kJbz&yHYdg)nuyKbc9F$u)d-t5wiBB-+7|@ z$(2bt;}dm?Mg*g7wNreR!xqitVf4z&sq{QUT8K%}#m)|VWk)aluQ7xYA>*N>vKdW34SkEYrWUa%PqAWwQhRRfWx$fl5)PK&Xw$G z?IL|_tFc1Og~pr2#-$)4Myk#+d>a?5%${#it(%pEmIo_0O1U%F;b6YW3t*y00PaXI z8vLf4i>S(F&m=~`Bw?zrVH9K?k@ki9Y4tT3CNMelPCD6`{LfLH2XUW?*(56t>2SDi z6PnsgRfrvOjq2k=fB89nOvEN!^^5p)hg;2a1Srpm_sGc!cU^{)Jhx;StpxCfvzyOT z6j)KQTsCwIdNpnSoF7YTTD;;_)jKe1079i{=QGGE+Mk`91lDgW<-0rPRDq}aJzbV$ zV0-$)^faL8SvuHtW3ds-Gr@knyWCGqiZ;IrGg$ugYQB>vVIGTjbdmepg79#v>(Xt^1C3lf07+1p zFc7HJ;qG?r#Yx9<+Vl%g)mr2@NLr27h0z`+Y_YxHU+JambXXmV@bqA8VaNA|xm68D z*@)Tb*?X8a@2eJDSC{2wiUk?(yKnPDwaP3%@Rv(Kdh~5l3S-F|G#{oCdB;}1>kQrn zHRmoIk?wuwEaUNJMB)y6on+8WqUw9V)Gz)B83+evjWsDJ_~Bp?^c26aKMi2};k<*i zx6>J=q7k5dbANs)bL;n%QNi=iweD#OI1Bpj|x&WEMq%Is#G9DV;oO!g)mEw={ z-fSiKb4*DQ-Y2gEN2C}5SXJD8ryORzWaPi*-qN9mh>=7?)Q2XqpzDVprkUuMxCN#% zlmNo3vr4L_jp%YmHp!;`UTbe=F|N@@b2h&pnDQvBun4R*2Sq(MI2Xl2DzTI~F_4DT z$y{plNTB-ykql{oTukD&TaXmod_I*VLMn^eLp9W+>(-Yht^V9;Q>E5u<8FI=>(i4w z@0e*XM)fS_*5O=DYW+7?(d;Wt^%>QRE*hy8j75+$fZO_-vBD2lJASx7RV-q=&~jvC z2Qw%g=4@R=47G&Wy$CtMnr(@erVVjQq0zraik*&%bvkBG1mRUy8Df>Y^Q9Ts+d&`J zw)h;vV&?-tI);uOVV%E1UkM=>dNQ7`Q>4(fgT-q*Tc{Jp&t)}P7M{F{Nzf6)TQ*Z^ z9~HxC!Dz6IeLK-BAwetj3cu95=_*%4|0Lr`ykX<^dN!Jh`{2r5c}3zVnPh zvzYiZDW7oFMxvmH8t=h@eNn@xG%p-zR)sI0ohnv4W zps4mXMX-rI) z=9=oo_}k${`%>d0yfrXmuqRJ|=-gZnw_3aVXKUDg(nN$V&4Z8qe;&Gg%%quIfg2m1^eQZ)KazRU&~u>$J4-W6{BZE*S^`Y+`p(P1NyIM1 z;trAknJD8VdtmM7(PCUr5YYtD5eXI>h-g8V-1l?H8lszo>noKOJ64=O{IX%5yVJ9_ zn>4MI+ugX6^h;bhONqw!{mIiO^h+0@T8ikI`b;{UvOUdbPZ&>xJk=8qQviVIRKAL? z`$C%(J=^V_k>^SvTks{me59JCrH=n{XQJ{Ws0(H4uiZXQ{Me%UP{nk2`jO}|*qj{2 zQaYF}+c)(^Rfvgpx|rvMQ%X}16E`Kt+W@sloAu^w&`wO1i=R$Cg_X6cbjzx9>Myj? zLrjny;;Up+zc}tCyN2^RnrjB#Y6nVm5siz(IfT+^K**Y_Z^&%>K0^z6*2fw7cwT8B z&lPqQ4!O+5opst6iCrJcf22F83Q)oMsV^Q;Z4Xom&`3wB7-^HupmS~im1{Tq<=vVP zkkB7ySd-Jp6qMusTGEz4{yBp5=;wP0)7kF|T+RgbT6}Mn8!mYUu3}=9lGU!gkZJU} zf<{9*fdcxY_?B_q8j*_;t)UK0J&f2haexg|lBsu;_Wn>(tM-ty_` zTGJ&4FHNP7-+`K_91ymSuvbs}m|A2I7;lthw18o*7SO4+54|t^ld%#||6rO^dQ&;i`dc|-O4r>}Nt<$bp z=38^w<5Xgu=A=(mC@4P*n_RIs$1-rgk~pobdv4cgI_?kNq!gsb;{C6j6r5hXotUHv_G~yE7*H==$TVBO}bssb~1h>ODrT_^*#GSIlZgU_O|-jd5RvS z&bA*(tjbx4mDeJEE@T{vK)p{-m@SC_4z;Gu&y5iOz` zwsnH2Ke1sUawIWAU=M^}Z^+1foR^>%UxMW81Rj0=se$Xair5%b5c_!qYx7A?_9%xq)}y5lIi~9Mo<5s|4z&^*SJ&X zyr)l!sLETD2Q;@6p7lype5zi)5_V(`d4D_P3)Lw0hPomcb4X&aj?2dBS{=RmsEP)1 zD?Ru@+G*^?tXE>Av^WxXHIMzwbd^&oXkKWjoZx844`#snR{MWt>WnL;HZ?K1a~==p zoV-|z%tamQiW@JHEpW{4HucRQ$`ksYZ3q8K5w62 zStcR*L*HML2Q7!&s(;k#o_9>erl}EddF}tf`|N0A)Io&XzC^^;?dR99btr3F8M=aV zf2N}JlQuyI+YDNlmC4=&p$t&rbbOV9P3}{+^HC`j3_$h)+F3Vq=$N;pTifoQ30!?8-QA~6o4J8rs zOr6qbAP4KF{f;-M<*zLwJ7kfA`A65|v*ASyy8!?C@x+E4!x4_^h^@oVM~!fM;n+ghJy}jyE=M<^A0>GB2fTFyL2%Sp;mzL9psaPh*D)7 z?3B3|R44J7g05g=BuiGnx1tl?L}g3(plCN1AL}P5R5CCcx2({Xz-?27fZpZ^lL&c( zh%bsuoW>GFuSlQg3FipDqW&*gQgvx(AUwVJ>~bemP{89{MUMd~8!rJsL8bV$lY})% zc=VrsPJ9}nai3zg{u5Z%DF%8};Vdmo4~_2?;vJRk^y%_SGWy$k%t#FhICgL|Al73- z05uT%{;}BKS^$rX+P`W-RqP?^(Ph3n>j`_AzC9iHrcJJe_iQ%so?-G=!q)~(+VdoY z09+u{VN*^2{OY1i5mBng93SpKayn5%HYco=i+L_&ZbtZ(h*`@Q@9|Tj zi&%_o@{hw*73D;4_SENX3F>2T^3BWS!XHjB>A@z!hFkUsMyPIJPG$G**J#@@jU7;n ztCZ<*3_3+{>tKAY6s)e?A-K6|mRkYMnvuG1jVD7cXH!hK6HdD4HyHhK$kS$SPL(f( zUKfgyp4U~7M+~tyj~dsURnD%6q(NDA(>bk#r_aYr6Q?geuX$iLxT1)cnny5KIT&6V z-x=nUD#Emw&gLM5!xnJZh-70+)7%^_6nEg$%=#lxkmOUDFTmR1$M4=*D}z$6Im%UP z&~#2Re>u8-dtr%3*=eiIp8OtC1)I~AiycJ?NRKH>mhn@-H0=)?E@0>eBk=a0sddG; zcHqa77|4(}nbR`Ud%t>pbrH_}3QuZt(^7Hs`aPPGf?-!Vy)WP$`Ix=}t+EX>12o%5 zH|gB-teiaF>e(tF^(Hk%YNChOOsC_61+pIi?F{JjXa;^mv4MZp-%w+Yl|n;Ij-4BV zN5Lrf9yCsadg}9r^7yl~)WWwzs~A8m%T@MHPx1}yeyV<&)i5931NSed+XzH^3QT2^UbnT5d4Ei@+UK!3q-Rv@t`W`Ax9raU!{Ly(TC?qsau!0Y*|se z78|OhTN12g_iV4v(Xh`I7A4?K?h}vg!N08!+t7-_U#9xDkaAh2fn>8?pI@Tp-%b?#_t{qNKF6G)%giiF9{&cX#uRxwd`HnH3XFPE~_Z`M!c>F%OYtB##Fuo@PiF?E2fmUxK4}MPf zLZ_!bdG#u#M>X6Vgr=nD&s=av$0@pB0xq%DEJua{oh$He!=0I+r@C)o<+5M4`S)-* z@jdqSdq6Q~+!o>uiD7CEKtpld_+jAp=kU!LVN_W~$d%?-p1_1V%^%jZ;MG7TCMSIrbN14_+-+9(yB{H*Yi+#5 zs3m=tB_TLb@qR)Bz$}1x^dogM<%=xQRxpyC0*3UAPMsq@;Nr5YkOz&x4ZBHT344`}E{BqpPa%p(DZQ z8vv7%?1dH4CqOC8bkjh#Oxywenx5vSy^Iph*jn6`h9pzx*H=EOUh z%{N&pIu-bF>~Y+x93^JMuP_G&s{!Pzr}jmCN{9|1UZLI2pIKh8zRdc0Z9>dHyy zlB|`?{=Em=*e>YfO*OPHAvJF2Y$SsEH2##r!ADzyRNOu*+*&+)YPZl#e;V~qE}s9G zZfBmXar0gqFhfNtL%k;v2=2tbZ_Rms3jC%b0)s08MAAZEa8NluB5$L@+qZVEf7~ap z4Rb8~YH1hu)T-#n>l^s?zJ|B`Og5>0eXY@|ACA`)v-wrNVnW-+Wg^+sRkTqK;wGb8 zm0jIFy~=@R4$_5ni;PGMOR{HfP8G&~!KHkOj=4aKdz?Wa?4CXoJDES}d=O$cl&i|r z9)-bvnrhu~Nc3s=LS)BzrdEsOsiP;s4R#eCY0MTq+Gp;5sFnfM;dtEus{bSWkt!8= zcKH~rwc=N8=^y z%*$%q5ObEBbakDzPOa_ z7$`j?0A4on=4&9MB9qjVy+EQ~Fd`=84c~OQ>j6NTX{-H$3o0OHi!_!a4U~m!t(=%~ zEJ*p$Y_vF9q#r}8D~gMbqn}Yte#^JuVt7q#<}yB?3g!>Q7g-b-+?Oc?onwB3Er-Bx zce&!WxP3(YGqX=aU#vy0m)23Ax*XX?S`bw#VlZ$7fb+v)F3v&qr?(&Eqb2gn#G#tF z3HqXA$X<6`yv(f~yjcjvEu5M9rk=R!bEE#I!MYc`T=}X`Dvt~BA61fF@6;b3tSz#P zl^JCcln0RTdbUNd(0pQu?0{kF)=Jt(NR*MBgZCxee zAe1M5Uul0sGIog#eIZ4hC=C>f`fA*6C7+CUWZ(lF zG1)h0aZ12O>SXCO9-q}50n-(?1$r-_%hY?vI;FI0Lrw?L7h4BvWngZ%)w2gisgAh& zhRZ}T3FXoyBefM7SA95Mk&1PGLoMk09_zNlfhMe6l+|6|ss?c_Hya$UcGRp^COoAp zBiErsJL?%kU7x1HdWK*9{hI$*5cxd2+6iT>@O6l3MB{~cXtwBJmHFv|+c;O=C79I0 z5wpmOVB=4+X61=%z=Mj1#1Znz!CeSpzPy&X;6oKk3fS!&=R?kWtL@jWX1E=D8MdA zhsQrV<41t9khWd(CZpBnqn z)p$K@=!m`@;m_$4-QgzqG(%yoUQ}|x0OqJ%g{eM##xvadsp+}$10O4w1@>0rV{w(Ow7WNT(Z6pZhsTTpT{H4Sqa*|lx0 z_Zv9A$>*FN!14yM`pAy(wLoHI;ZhGMkv!FU(#@ZXq4^8S4iMpBWT97)x~#@_)yLGQ zaRhwIPog@1e$d=j+1F|`u^@HuJTHlez$F)Qedp_s-u(IIAsumSZSWObEBuLPB(1iG|FpVB0MV(51h5y zoMkYB*}vrPlrQ5vx(Bs3%cxN}Z<_CnE^XLfV$p%t*$^GtZ%--bv;w*jWJ_jY$rH*# zEWgz8Ko7r)UbV=Oz3~(b1*NnLP3NgX%;zKL&XBN7t~`ydTf*%Z@4V?C4#<4KpT;y` zUVWN$V_~Z7tqIFVfzoX0rkX+it`&&6g$sOBKCMeGFz#|8^)vbSu&Mw*+^@R(Fc+bb z7)0CLUcOXOb@$Wo`)-XJR1l@dI;(fVDdO9`|Ljkz`3>60jCQWIx#tBHJs8QEa3%to z;VXACA3~g&A+(Kdr=1yg@gI*-=p>^Citbgq2@}tac-BEx+0VGLKP+S08%Tw-W~>M& z#Bxo+IEYfL3mWH-r>}qRi#+ZypF;QSFB8wzs7_TWCKZ?6Ix<^d{4pRXRA9(`5)WfE ziy9zMD)Z$JejnO_(_M1ki_pZ;Eie5PKrjJxIy%m;zW=YMVXh5+n% zOI@7Su`!TxI*SGLWy0_b5Y!B5qN#cZ+;M_1sX$7>@J&wn!h^FzleuLYC_FS(Y7d^H ze1~<)eQzNH?<~#Qv8&unzjo`SHH5Cv#g#d=MQBgOiRnFq_>VV!jWN+Rnn*t&GaYv& zz+A(9ush19lz6(-Nh-fAwP{M&ySL$%_S3(DbBrQy~Y^$ZQerf*JPNYx!7^*XJ+5T3x-cN_z5V zju9;AN5<#CH!?oPxQzk;5p&23Tfh0gp%s@WZwojdyeT`ok}CD2b?lQCO6V49mjc=r zV6w)kks1l?d(MbL1S`aH?CQ3b0revfbhIfJ@Qu?f8c%Wl46OqJ&^UDDPNOrRBOf^e zT(+f&BEa&|Xs%eP+myd2{;JLUugN4I%0`-(JpaN0^&$h^UafFE+CMc-kLS8b*eIt_ z;v=vKxKhZsEr9t*{ZIcwrG5M%0hZzr#;4Sv9(yS2^;Z)D4PX=nkT_!SI^-L*z#9X#@O@_g4|*%e6|}sYfIK1!$Xf5= zM&5ry(*1r@1@cW5HlJJmybw5ri#%_*N=2BUtN9VwlsPuvzk%2&7XJ048y+K_avnyb z<)1&j4!NvlUuD2zQZXZm0i5keP}EuwOaUjK0Yr}S-=6+|Rm22OKk<`61y9HP>*?12 z|4bM@ufF`(4^O-SzB;L%mHPFc8+^+{@HX8(QB`mbffft!jxDnQ^0(l&B;a-ydXGWs zLa6d9)a)8aArP=@RK4fYze9xfeCG1r%rWLQ-Mb$|u4&M4k*YU=y$q4#@MEAQ5lMeVyBt`S0WEAa7w2t33$Me3b~;3CuT)fF#yTziQ4<`*uO`@sj;U24aK)?$SY9DA)3Zp zWphk%nyV~!x>qju?cOU|Gm4J5UqDe_W|b4V0xEDuOC7C2Lz)VPEv6ma@ra+sgX?!; z*;6mT(mB3IFb59z3daekppkVq#l zRXO2{fV=WFueELxV2u|u9`7yB2h>qA`E!d*E+tt-rlX%My$gQVLhM$0zNi$Nl9->i zFy9WQdl#v@58oZ{vYqE12QocrtJc_bQQ?T{BqXi!`l22Z@gg(x<5Ge>D7atN#mR zG%c)i04}E;3h>S5*b(Hl(6;FISFx{0b^bA&16oxyV$a=_c-Hv%`DKw9xTXsb9BBuA z02TGcYQ(ks8|gTKggYVx_t`ZBBAXMphI2J#C(5kMd@3|C?e3IM=;K+@_3ZgG0MdthY~|gidO;+XvYNagW!J{Gl};cV5nO!5y)-`6*l(AfBUaRpA~*09$sEqe}2fg#Q! zCtQm=cVk~}1>)!8#+l3))|o_K52ysJkbOD2$2SB9?2!Z*=~Aq#c*E8ID*4(Xh( z3+1{v05xt}6LO$;Dv)K+!w6B@_A4^#2Yij)+pjdF0jzMa$zo&JF*{x&;O#Y=AES;r z!vT3j-yAvR&<|cVH&$0O*XAjJ{U}&m7N^UppO8<(Ial_*O*(ihAV>^&j24}5;eUSW z5^o`Wdb0qvIB-n(z&KSugW50dU6KW!{5BNVMjx&st$O_mcUl>d(>dRX0XXytvqsj} zn?}EZXHmR5_d25%-vW07WCFqbBKFF(FDR$HJl+=mNy0@c115tFcWEfI+2YkePeBEY zAks+?C4mBF?>{=|vjYfCb~rRMid8k&{fYC@#sjL^DHpHLS(gvzs42&nz;|S=x zW4OGLGk&Z>%OC-aP%e9E7cxrw@FiJT+e>EcO0*F<{ikzaE zrTj^U(|}@%v9?N$)yBzNl_J9j>Uic2G4Bmkl3o+uRl;}b6s~mGPMW1{k^|0k^<-Dx z`p%kuVJbGziL{ryzrDFB0lJJzrA6~#{<6r%t}dr)&}2X~b&nhTGgJqf$+UkVKrr=GaGM zhecdKzVK&2+-OueL_|H1_znjRm_r!`ekrWzGluHZ_fB$v4;H=pF%{{B?s*dDyl1(}( zT;P#hQC8|QAS^Eun1B1e`=<$BB`Si#n<2h6@ zt52JdAh;hK^@hz|f_sxpScpzaZu5t$+#6L`q=Rh#OZK3J?2{2u42b48q6koZxFH$6 z#pVUb>cheVhE+>9L+f7C4e82>A2cts9-ObOqy7ag^6YQ|>|t+Zb=YSEIz+}nIYITS zKQsV1*bTs zmvX3D(F$&Z`66qUes2yKXVylcXKs_Q;L(D+1)F^X& z;06H_U-@IY-#WmlgIBoy1v;iH6MB!hK!=`kjHW`zB$(s~rE%)&$4dG9`I?$&my=~{ zzp%TY|653!-bB?~kKu2$=XX!^QQ*Aj$JYFy#PkHK>6h8@G$t3d_cKYQg{I+ zTLi=L@Yy#(ruc&vsQ@*?gZKR?hozJ6F9_ zwxn6a#hxseY6(y$v9eTMIt_E_ZwpvEz}ba>K46CB@-*ELt;NQSKSq1RqwnTNTK>O+ zco*FLm;|f}mSY|q3@V+HN4?acbgg#jc0ZF9U>6`h-G{xU^Q4L%=IQ3J2$(5u+`dg@ zTv@Rcq-{mvz&Cqu`-#P~e3Q~_f}tnrXftpM1ZhkIF+NbzWt)EBjKasSic87y1=+%x zXJMT(fN4~+#XH6Mo(dHf+og^5Qy$u6z=(HM#bHSSK&v@p*Dx8_)g!n1wa@;N{bTPG1P;3H?*#8yHbW$O;NitAsfy>+A zpqI4lxsME-9TzM`S^ky#{_Vf?dLxr#gB(02Fr|l$yii{L)l9VV^!Wcy4BqweLk}+Y zJTD}8*cDGZCeAjlwY+phUZKi!%G^uoYd6ZvYp#a!_F-5qTDSPd1d@Bl!9>}s|ex>>n*@Q+Cueyon0juGm&Gh z*0b^Gkl*zrW*}CiX}?>4OBRfj=wA8?UyFbVx{&1!?Jo1Bm=Pz}+S*wK0Ha!!>2!kE zXpCGu=J^3eo|w_=fV^ecJ3{=WjnY~P8w|zMM$eyadkgs!538N_zxWWcOS2}c(W6z) zra(o02(?d!jQB^WyFuri7Efb0Is9u*mslb@&5kJ_`;Ev(sb?!c%xV}=`%u$O*2Y3s zTrc5E#GY1e<7PDH*{hJ)0NYvz_MihwQWOnua#3=z_|$5J{h@Ayq?p^c*=8$HyydUibA-a zUD+o-ah3yY7kZxhI+nUPdN04kfBhO#AN}$r@mPxUl~WQr0;UkfW5j1RQRX$~%hjWj zg%TFdrb@@Hr0@?SrJn`a0s6>GLFhM=j&cM-MW#e;Md=RC#x&cI8!FQU1)u5DFlOkd zCQK#M;z%u^THm0_Ig@*5XBfL9I7(u^@_W0O=PrON9-J=o>N%`ccN2T#Zia7L7joD< z0Ms1*Bv7Lnk0~`zWC?LFb2y^T`toeP^C@U6hLLIlKGTQo1&mkfBQ39Y@H3EcxrmX!0CjalqDVi-~OVqae)K{4zYkHS0Q(3lmoE zXzve^OOrBF@oIbuptw}_JmdnF-z}rC33DSAYq3Gt<&6yX{aKMs0@=bxK?(Q1ZUG=& z1sTgPR;;|yRmGH--hq7(YG(71Jhns2bs8@Zy>`W7ygv zDex`2$GYbar03*2Rj|L2TQK-hzG6Md0W^HJ_mTbEtW5XN=VNX|1V~DPWcgD-wVdI! z-!xDz&kucfdyY~r3~u+RVG4c?nlUWBDN{l3?Tllv=u+8as3@JBx)d7g1mL?&yG6`d z4fXY&WhDi8qwwTs1flpi`$>&UC{p4I&L=%=l4R|t;sfI)l33c_W~y%+JJ?pmPjcHb zoU}OveCIlY?X8OfLdvlJ8vY?M-TAz#PTppxkvCSm^6aO+ho1xSL~SnU7VohviG~ziZn3w zlf8kB2MVZ`svMc@lsl=|?)Cte*`RdeqVWr^1sGI|7-|GrQ-*GaPaomLxJh`pg@CM$ zkt?w^uh@fqC4ARq7ZuyyL_L=Z=R=3niyg;~rj9TIY0&XOu%A>X$bl}(YVrwlLlbu9 zBeLDW_X?N5(Vo?FAO|5SoLGASOz{s#HlH6*A;DH)CEbzkJurSz0@*uQm3Qi_dqIT9 ztaaE%h{XiB?^Q;HuTDY$a9rYWZ76Z7y0YDMv9{8AP`fRZiT3m#tY=_W5IGCN+zuGW zoNj!V9cVXSxUgu+iH&A_d#{~m@P6ox5?ZT*$GwU$*1V@a^kFlq7`1>oOu}4H*=Qqtsd9gwR8I0P|*(ty?$IKSEQP7?ZYaQud`M?PxA|K?3h1Ngso>_~l`B|c+T@mjN^04U9g zU?q1*VPWA=Y<^9}66#&8Brd;@H?-i6Pfieh`L|d5zy3h4C%EHrq(U_ySF369eZOv; zKZ<#9*g2RZFLvA3Jy;pfW4+b&WZ!;sydOYNR_CtW@0q7dQ3^p0PX28KMC+OFM_uB#Fng|0*(?oS;cP#|6^nhxZzN z#l0scE06E;d*BkG?if=(2XtYp|D?%lI0E$wZEt(J@8FcQ5O@?8TDkKBOsc(whzKL7 z9Jnc^|Mc=LbH`)WSH)STPIN!Tm_hnApau*V`A`js zX}27AIo^nnY67^EIaY1&zhnmXW-?I;!f%{xj+d^Em>LUceJOon(P{#EAAel65Ns3oPb75$jG$Fr7#&BlLj~N&6_E1dNRLq&iKo z+`Uk^UC{Q`G5A}Vf-~#fbhQKf;yv?aPz_A8S#}3%n}I@?Pj7^=Do-S4!S@$h<@s!P zs3vb$z1YQn_%j#FRj=(3^d?0F?8U#ju*t>=IHf!8&K)4)-4lg#HAD9Ch1~@PS@Z92 z0<8(#xrMi@KQEylQ2|E7d{Zd?;_95zb~X)50noC6CMCjltSNF5jUh z07qS&=C%+mr?FNe^8bn@cJ4#WE)*-|_65Mm*v8KN#J`@(rLrjH z_JJ~{?nR13c=7_1-2KWXyQiRvUUry_?3B1B$l7-Nd6|EG7gt3&T+gZP65=3 zstvkTCq1Y;Gc&Ms>#(u8=^YW|V3e<=d$n!kSkY=0ZwU)W@uQ&hSFa|$tReA_-9t~f z4-xFPjNJAv4fSp4fc{}p1dX(U>G|-hA8E|`MEVv}3%QptOeMKvAHvIz^wJa(aT-EJ zAUj(dZ}wjsINkPT2G|#BdpO_)JtW^J>yBA`3xH(_N1H0L>!l(vI*37uj zkki8bjx$Wa97^_?*2d6eVxy)@6PE{|*Bj}D5227G$V41((ID< z0Jv#gm!5Vw-=)m&9AKe}zz8Y-yU2!~_`N~uri#-*hN3hcQZ za$ELTX20v_W~(|agC-5vZ1F@#cSSb2rG$j?5ky?H?4Au zdXe}H-A0G(SFW#?-1awdsgEfyk`^<026hi3u?p0ZnjS6W>t!B2YloLX%VR5#O%^F` z3S-PV8w;Gx=j)^uTVGc?Du>UO_ztGw0P-WwNt1VK0jVz=Fqb2R8z#*Y*xBH z!nM#lPfVm2k$X@II90R?zYm%5wOt^t+>^tu_ffB;9^%^^$-$qlmH+5h`<-*`PjP`)o@d;yc&vA+fTrrn@=_qHYso#KIlcOiPP^GoS$vSXLiHVaNz-$EqOsf`;^+Xc$!*DdqKq}-3TwntrLmU7jK z729)_E3Mvmi5C}{aOIfsAGH*0^4St^$6q(OY@9GfcJF2u1T+{8Q9d#1g(nTsm%45L z(k#fWx%4(ZRf}&2426pA^9Al$5ni^NLktUb(g0*)Htx`F4Z@HT#%4W<@SJ;cr5aBj zT?69S0@l*Zk<9#2J~s6dm2hFpov%YTBjoeR1zg{?!>;D^-lVZr>z;P1+P7TPs+KMu z=G~nyvMxF6UEaNpwsaNRCsrQVjjMdV6wm82MRUDXeTy@G_>-|%XFn<;MTKH|-Z3)v zks>_DCsJoewMZ?qd*ded1HHTBKdj^zxN@nX*IGNYya+YeZXcBMI?Wg1d9cO*u)!rR zUNNA3d!$@xXn1*_WTpZT!W1%Qjtx`Nn)rKh2Tr6ZYnohew>Ua%jioi3Ji95jBqJMeRk?3&SVz)SJT7fwz!Y&1sV4D8dmwkK|f(%6wXRdPo z>X+kN=RxwvfG`}O&HB&(_z3fT%l2~2VD0+Kt^2fS$J~?`^krE{qWlsQhzWA9U`sD6tL2Ly%W{-8O#6&5HdZp-S6JG*0#t??U zC%M_)$w1Ma(CHQ~1+{94Ik9?JDd6;6%ayv&XMVE2tN$+k;px72R6+=6wxR1*XwPHOa0QOtLBUf(Cq?1o+K#}*llk5*+X zcR8VwPZ)*&*o2GcaVcIHELUS=WhS^wr6*ris=W`E6FfU^k4TY>?%Hc-H+Yv~T@7=d zI9%tB9Cs@-%sIunzq_41t!gtgn8coeK$C+n?62iUU#MOd2iEIL9~kHkWic%w8pj=6 zbFR+$L@C@)v@)QXU*O@}KoIDp!?ot{y&}5h<#ZLF9ckn)v!bi)fx*#SqXehHmdK>! zlqOI6ZUpzi)QVtR@S@ee(kqe-%mHaQ;`Q9xNoIV0!&Xv_gUGQp6h$C`>!BX5dbY!_ zx>uZTXQno5DN%zR-OTYh8YXIXNtu{4TSq;EZnn`^5;ux9+#CI}S!yC&68r|_;>FZ? ztKH6X^aJCSuHEC@o&}O!Ufmi^61x8N3%u#!<59Ckd!_4}A#x~cux^s4CuXA+cHRq$ z@tr{UuO&OWRCh4VMAGXZ;pLe`7&9ThipnRK4E8th{7l&RE{n&y6(~5Cst%qZCLWwW zu@{-vartu0)uj3?_u2K)LGjsFn47lQ!1d42JeB-&Qi`d;i@{GLcb(puqcD3glrqj! zd;G0JonuAqG!d8|f`?(69^0IV`jNAM(cXwFX3vQVI}^gM@T;VIm^`Yz#0}<_O&uXsMq7C;k z+VGO=EH;zftIwE6E&}W#+YMMCQ`M?Uglla~v(?Vu+_P`Y4&@v6(mdcX%v1J_Mw++vACUA8Re|@BqU*cK;(Yf zO%V@!YIde|d4}Dmj9zr8gD>zW%A4-9aeVeQpBi7|pMia6<-klSrPdOeRroO8cVln+)7E0+e7$GfEp z3Fk_9VJ_+oxoq=}ji(>3_W;f)vb(Ti2C^xnMt4ob_313J?5@SGtfte;tK)X2qqw-< zdv;3&x_2;T5)`KqPZI!^HK>?*!1-VWSD%bL+%5a<%fsrDZx|TsO`ak!ki!NyNvcFz z#^J2;Qj+u81EWU-y|{7igG0?n84s(GKRX~#c7Kr?J&>z89wW|J3zwd%a*|J#jHd&9 za48trKyqoz6p&PfvMQ?~xWwd^B6}|HkwS*KCn_BftSSdV7;ep7&qZ%(^22+MbOHs9 zqk>5wK%0_MZ{p;QPTH-!PZ2{WUEP#!2l?-Q@VsgYAlLiU)3toGElfq3UcNe$DP;TM z)XQ2g8FXpa&dcMCKq63uAykR^EeZ!ipyLOJDyTba)n&!_m8rBb*mR>BCZ$;yPXl^6HOJn3jCez3tAZ<&~rxI~CJC3AE%WmTtM4T`^qoHtiCnt4>v?uce)~ z$_37{d2`gt6Wy00Ke$uB;I86+A}8{4zbVe|_y-yA7#m47X24?*LZl6`-%i#$wsQ%8 zmiqDd6_`|8*%?aM5TkS(K#Q2aRf}Kgy}PYbJzb?&d3L9ha~l7E9d!kE>x?JqNDhWL z*=rZnr#N$o5(0z}CavL{OzV4S@#>eP1Jj?|l+v|ow%`50JI8V!f&>NiFVr`-FMK{W zkjPQvl`O>Z%S4PNx!0VD93Y;!tw1WSyl^fhZXWa98$ z?u`iyx4_NI*RaKE)l1ag>Kil89SvhugBE!kBfDPj0?0DmTZ_Nfgwmn|NwhQw^GljP z@EAo%k8%ATI>q)r{pXElc-v$}G3J-!bp}2^rF=O$d36<~NPD3Y_)nYhqfKbo<~0;d zpjwAv=mg&1EeVBjm{aL>O*k=kaH&E~V-iK?pq(q z67PPy@@SQvFUHXN+H?hGnGhxs^Ftt0`0AO(n4!9M9B@X8kO?@v#=g@SD$C6%b={?2 z8C820Cs_H=CbdHwy_UAgFTBETo$pNQ2hUp?T3Wr?Pw4Oh6DF}ru96(boXix}?GWqS z(z7GkL8Wn?rh#9n%X?qMFFx>~Sl$X6uBL*RPxp;r&cM~_YF}QzK(Umd;o}=a+oy2Z z;DDm3H_r&}pKO+5twp%?xeRF1_DsJ7V{HX+$BQ4dPp_2@ZQsak*K1y8VmX_`F05Vw zb$|nR42HWZ!gQwU;C%Gu@_MZ1dUbWqRd%xc;8B0_+j-YE*JoYv!nyADE*CXI zNv($#J9S>ZYlWeTmwVc0Jp1P?784Jqw?|rwml~#~V>?0Fsd4x?_cB;sdwEZKQw(wu zU$LJ>`k$j|@PAL1F)z$eELonK_No#B@$(ZOy zd#Dcfn~}$ogtMy~*PVc~$7`5dDH%h+6rynA3T8RvvJ7RL!z#opa>C8gYeVKWoGr;M zVVvtBR?MIAAr5&ilUS%TM~^Pk6d|P&J)b<5F&l7kUAEpuDvO|QXo+wZ(eBIufnQ-q zo2{>Z8zWHd9Ai3~LR^=-*i*_eg^uN3EK9}mHOT_PCr^b86)q|Con3tTHXsC(QVqWo zCpa!|b*5?oif`;df3R@M$HuT~)g-sIC*dX8@;&Ff!Vq&PGdmQXT!pYqI9QuhRm^(N zq{ui1g;d2x%@aWz)s(7pPUWyMFff8*c(3TS~@|r+E|Cdb4`3m>9&o7R`85npP6|juwvBRf{=JN}hXHckfV#1-+{NiVHWn!CWY(MW!^}?}lpRo& zdQ*8su3LAqE0?MGLv<5WRNqWGA3l8OVD9wL?I#8=yT(NV0lVTx+;9`F$9h*TV(N9t z_DBL;8Ac@;RYmU<*GX%ll>2PH0oOxJOf1vGTB|jTB?8kK#_aCy9&m2AIi)_7qwJ!I zvXejG)H;yS|By!8Zvgu7sIEBWpIiVI>nB&(j~1Uf1W-6>Ht#wOQEjwtr)3nU|ECNenASb+n$4=w8=Au{2T7S&~*=BS3mF zZf1{hNy8Vl{b=UXHIKXlU0DK!qGYWXFCx+;15Y1{cnH2jyQhxl_#6l$Q{p`>eepL* zGBE3%`zV3f9wrHxgv_lO@zSkTPBtlOqXjoNhq6`svXpH`OJT4W$Vs^kLOi2SPf~9^ zj72#7&Vx_yVCsVvfF;R#w(k|tCC^%LKQrq6NUlzJzTzOJw<<>23K&%1bVjj9nt+Us z_Uh_tNks`a2X#gj%C%hrhdcZv5mV}>;4)5rst{IqsDOZ$0-E?q1 z+f13_d`Pl%NJ2;fQ}k*HBUO>$Z{nyK-svW>2Kvz4N<6A|Q(1 zPuz&%vF=`h$iWm^nskutQN7jgaIjJ%~@Cb&f11H$0hA7$n67Scw}8&U3EdDV{dDP1FqtL z|3JtzyvT7Hh^OuVF@gkdcRMvtpzaWygPn*3peU3=sF3+Tp&RS}$#;zpS0+i&2KeYHo!BPL6fz zd9>O?*Gju}dQt^+OScu{1<=iTJS-G>__kNe7DR|I7jE3V6WS;d{>HFICPOy6;=*dt zCrh(*%5&fQ&I493<hQh zV$V0!W%d=m{nb0K`p=yD1CtA5#U^W4gA0Hg2rhTPhtV24UepXbL0q3p)fo>4Z%tN2 z;T79ycsJX96>u*$XMxmwxN^lm8oFdxuhNB^t>cy14P?lxqEcdn9t)q;-i2JRriI95 zSnG}dIE#v7POdQ?Oe?V1rf}NGZ|-=^2N8DM`5^XP?bhrq(DR;jIq(Aty0Ji=i*0=< zHzHPZBNU$j7VPTua`A9jwLNdPUXsuf?Be-a?Fmn@H!1Xk+O5XJg!&ow!F1|P=%USf z&k>-e3(GJ@0F0_JS9`398L19+A`c3!!1U^3@7n-n2|vV^s6=@9ef1oYp5NYy*A{}E=4 z?SJ6IELpxMqF9zXNQ-#;60=A3SX)}o!ADPgqBQ@V1*=2lS4J9zvbp$jsfdn z0W^;`o?T`)9_qXlpOCoq>sn^(ECSb-%Q0Yp9qAOjD^SaPV7^zL@+cEq|K%1Uz&CD> zNh|(|ThO2yM5~=-_oDblIFhH8R5iLR8Tr`#6A%oYvKkElg(1Qb%?M-oy>oB`$Tq8< z*M@*NW88tE1hvdq31g?{d&6a)pIhjy;or$E9!z-pmV^A3=Wmy!flP-@N`k$p{yr6X zC@5%{78+ zXERy?-Lewn(d~b{Vx}7Ww`vCqWZ9EW9=>3i-yfJ6&DO7%!glpSDy5%zZrGV`3i^M3U;MYyw zbAow;VEzpl6sdwGWc9Eh7qv7DJQV+54|M_m&1HM4fb$O?It(7FUfJUVLCp|FI+Z=z1{DU%8vL6IxC)7$$0qq}=!)6b--gJO_rv%}Kli@!N zkR6{2vZY7bX8pIdcNDYi{uf?WR!C@8jp;0JJcU zb1rqcexH{AbSk&N4ped{-a@_Yn1^&5OAU$;rA=lO3X*%K+cR2^WDVFPntnodkM|Gr zB00!^uk#yhuo?38Y#d^Lzi}TIK#&y|6XoXxLB$2K3T3e||Ep)9d)ac)!1w1RKitbF-Dv@^q3kdF#9NY5qvKMrTWVyV*bQF(YU z079kGZ5*)6^#9uBV{jObr>gbz{$Q7Lkh^T3K!}1S_YJwruVqmt%t5B`kH6}ei*%+S zsrlzI{|`@`Q2{^7gjnV7bE+_;x3D1i-}_OG;KsVUyBpN={e#ObT$68nHp-kg(Z3?% zbG}e;k}_lK8ci26-BN1{5JS}fq(5u1k&;fu=RNV!wUY>8qJY=LYH_0SY82g zPqtPtXNH2fAC5S$=6C;_*^TgWa{SZ1sR65xtK{wg>Pmm-E~xa7^)Ww|BpQ#}8$eja z+&dr}LXpJmasEGuuaO5b@qF9z^mw{)nVJ&x(-^y`hI7z{BYo0Ohe>?R(`k_buyfO*odEB6!%Ok`hGeuL?5Qm-GMH z7a;sNQF#zpV)G zVnQCpEmGu}%0zQCe3MuG*}GUYww(3BXVix2?%{g|#6H?Ay$*^PR3Uk0NCoIp z-{n>2TwRKs?#(SPgTAMEm>7lA$U!U*lN`Nd)I%;!IMd%jRq^AV4YGsqgsK?gI)$Fqg*n8VW!x$0jF1bF84q4 zUJ+=j_@GH}1GI}IK*rZFd<=t{jTf1*ARD~h!sFDxe#L1<4nLrwyDpu&tUIeV_O-VYPba$waxP-f~3c zLY)QT?XGrX%7=tc$61gZmN(mD#S&L#*01&i_WeQ`W$V!L4@VH{Cz3TM+G%Kdw}SyA zb94D*SFC2+>2#MwzV<7+arx1?n8K-tbdVbJO}@9w5mG>y^I@915Zx^t*GK(nk`a{d z7qYJd$P(b6&)>e~Dh296D)sHvOIs@k)5MC?nZr46YpN20*AEq=7Yn=F%ny4Qez9X(!+I@8R3>#e%=b8z#RizT6!O?v(-;M4#fd8)EB>km9~ zZE@`lT#w`51y+>Hv(|B1v8G7qzJ90f&ddv|v70y~tiD8#eENr2s?z+(xu?*YBG}c} zcpT1;%vJ}=3z7Z7-c-$%S_|C;Q72$G*85A6PN$1w^q!Zk&6E-!QBNf`$#HVzis2YK z787~YznFX9VtDZ1`VOc`A0e~UC+wH{pr02><*dDAt{x+!Np2he)aVn2Yj-TS^pv}c zC+I3!7){qy+hsUW@Y()geP1S%D*9UdkYrFY8VA8`(MuyGe5rr1;(%<8rV1uNPC$`v zz}?T+CL5<%Oe*Rj7|aXkr?~C}8^>omnJ%l7p_CiyLlW#W5^yW+XsHbLQDx31w^Vr)#{yGYK~ieeK{ zVVemAxGgKyP0=j}w`l(dao@=}XtC&%^A$xfhcRcawVmr0zz@jC-Js#_2SKz?1%889 z@cXuUYCbP?gvpnfP15Vo&~(%x{bm=+4uFic%+X0Co5%9)87C>xxqWa}PMliLv*9A# zisQ5MDVI`eHt)$xc;IkapqGjXl*dbhHu>#ae%At1<1@X_u|1|`!rNYQpu$e|>rRqBsm}9m(qX;bxkmc;n$^x+k(^Ei zEAUmI8WRSZw|bXnb^$3XJ=U^>Ux%APCt6jhQ0VOPxKGAuMQ5caAy^5De=QExr_5!x z)GV`nF_gY@R@l8{_28#QzI6&vKpB5;FFSi4!)udayvaYvQ~xf{X+6C2-u?TAP4Q-mm>qLkAs31I6!xft+ONLP^p>r^%z&y*f0>;)`vZZq5@Q%2*i2?jiHAQjpYS z(^|aAJM7bmPwG+&_j`ddx4pccZ=12R>EM!Q#gsq`%MGZi5EP&QP{WMvskf zGn}R=APm$TB(B{p-h!_GA{Z{exA%^MkiuQ`nb`!Da)H3?iU~CD-_Zh}{|znh!)N** zSOM#3eG|X0UpelDQok81F)?6PU-ub4=G)>1LpGzSW~%blXX6$DKX!`ErQ0T8C%a<3 z>%D_D!j7V$C=0;n~Tc z36b&r2(LetC1f3Q(YXqw?@`Y#^Po_<|A)QzjA}Y-_l5(C2#$atA}U2`5(E^K-mLUa z2py5)&}-D=J(4|S2t{}YxMd^aldy!6n&;x|>?l?Nm{k-R#amw@MS!X`YTEisy zmwoMP|JucrpZ!G8qU)2!2^a93{c{h&K6wofbWbPtd|=T);DA=Vd9co3cA`Eg&uq}~ z2GQ~;uRiKdP+SaB_p)~lD5C>aJ(j)QHHhU=a(B#iQN;YEvjR2|V2hRoUw##5PX|#B zGzHX<+NRacI{kF?srZ~M3|YQ*(VfEkEj%RTr!KEejqigdb8z^(Z0H}ZMy8zRL6T#% zP70rX5VQo1KwuDj0;9PyKGQx^8QIF1JPYfim>BM*4<^R z*zD|Q@EpzVtI~$$7ihWQVP~`5ODHZ&OB;r@m)J(Xct)Ssq9>7g3nIqpSPHdiSAnH+ z<;;J^iS*>@bLdwf!fobrJWBI3EJtf>o77AT4s{JEGnqC=sdslAn$RE@XnXf>%3b@iiW^jYX zL)(tDfM3+FBN&`YdnD}NxqjYDpwx#|d-)x?2Rqg~GelCGw?b`9F9}JE5Eu2Febtp` zXy{1XRC)@S^9$_kzhik+6TyhE=udO{~$AhuTay7do z3d^pTo{!K4ubZ&;HmqyG&2EtC5%HxxI`lbjcSK_V4b7S6Hw~0NUozxY`>X##RWR$1igcZ;g>B15SytAU{IsB z@?&65DO)|C7i6eHppErQwf%lo5D@&EwQncg{G4(-4fMiLF~fG%58@+JRf=g~LlM;= zY$*BEW69^=Zc;Gz{DArlDdXrnzo9k0UCdGtv1<#|j<^1t1Cmi9a6s6h?R4^kl2AY$ zbY!Uyg|2{Hj5N9KY=CeBxo<>MIETCkj9$#6BvbFql=}D#Nahx96ZUtFtJ!@13oJ5Y zn1S;I1e6dCg?QGmu&~u{8~v~%97NP!Wa2Tf+DQ_{<&at7G$T7iofq!r6Qo3wyecXn z5tFxQ!~>f+@qyAu*F!^b@pid`slEYzYa(Q{NUfYeVpv&@?(Xgq8l1u)L3_0{h38jg z3Hu)yGbGfuO~7ZmU<<_fwgjOnd~g>Xf)0c#v$ZWq?k?Y? zzig)h7&FjArs?A;_>6X4vtV48l)T}#6igBq5U`CYumMhmt@}DGWBdwTSNzqgw64I1 z8LWT1eR(zc&{Pc7Iukr)%23!rrow5iH6920`Jgk`qDrg>o97Ib;vlQR41=to^*v{q zO@E3Vop7KiabV>?yIhPQoE5x8+|)WqkI41pYO{Gkc5(92X}_+_q}!+7S=}70%WFZc zTana)d05%RWBph+K=lo#B%jhz3cc*h-(&BQGozlB%Ac+xk87j2GseRq2_3?Ns&n!mN}``2QhG!Cwb`*7*gKe zEEZ|Bs71D{B=y#luH0=@xibhD_=3gS<|8&jsfm`;T8HQ3K&P&~Hz(JGnj&l1$})xpmBYIi`_~O^b2m@JZv|OxL4PQ@M9&6-kXtyPbbCGUh!@;hRpy3*O614ly+`sX~-(F-a0YR+xXled4 zL^@6)s790$n_jaQz?lHX{ zOK<*DeUDv;ho?7uO*t3z8)b=4*NSmFRobw=jr$o&34Ox0Y8j)@31}o&%lcgBy4^V( zCxA*Q=>9SMrgjxlv%H5hZ46ERR!&+KGF-5NlQb}H_x416l(4#4!(qT6pNDB|mHmOW zj7a#-TFy}|o}~TN=5u!XBn6p0Xn%OLN<7Ow%UoZRAu$5OXp2ZF^fY7sjXGbTCPv2u z_EiL~--n*Fff>|*B3coD%)Xk|f=+J9R(pfj?%S*4hAC;; zw-T=dN!RRbM?TV{9}L6bhUANu#Z?+pZQNTyu@&AzYV){@>uYQ*fdM5kp_PuKNnRqH zks6=0nEW+_ba6r6vvOVF*kV#dj>JfnNd%tazHs7%u|g;yRo5_`nFR_kylS2fY}h3D z5NS@ckF0IMFlKx*kVT5oPdWI z09Fq%d0ch~&6RU7x^nKDY83rx9Pcue=q?3q$l3XPeteb-KG`uf%H~nBfIHpIugqq;6wPCRvh+4kk1S1+v%8|%y}Gk8 z-!l6d%i5=$ROUDn91n7(6FvDXQGQKeIiQlfgHZtJdQxEf++&18SZTg^v;wJKXySH3 z_;L7qEq15W_e=fQXr3mf`Jz~ET>-b*WPj>2!JDiEc-)wPX{-K27S@7z%m#jgG@2Oj zs2Y*4MVmGmL=}qHZ#+6yz97v)oCO10D{=;K`m_h9m^NyT62I?Zoy zk`k!NH&&l-9HBTDYSH`d{RtTv@J;&czw@I1GEBez;x*V_SU{1Ad^6V}2V~BZQ#!@0 z%*?fZW{nzDGK_@cEBz0OFJR9WZ*UPGO``^%v>6om?*QWecNiM*;=mUrKxZ%dqq8?9 zboN#^wJCn0v)2WeXcI6C)=lCiP%mple_L^6B?j&bj$N@Ws4EwxcK1BRor4v=V^?B? z9&KjnIR8)dXfpKR^EoG)Umj&%_93);$;RKjBmdwK_MQMF|MgyM#ynF(40;KL8^ZyUN-(^0rPVL+*9T?R35J!qxelg65l);*-v(#GY}` zmv#V0WH!8jCr`I{_03%RtY>{t5;HjFpdKAN^&~0D@ByyFL&9ahN@(WL?jdk+k>J#O z`2r}AR6UWM?}gjX9$u0r?5&D$NNI4@`L{jtA;{n#{C7iJSim=q8t9?{$2?SRWcCxq ziIW9LxR$}F_QoeCSWMo&dt|l=gx`@qJ`jS_z|An-!IWOoE8bi_b}GH~WkWDSbar>P z>^CuZlY4lobckHLK{e3B*LSQJ_o5IBlc#eP2TKaA2c5U48^=AC20dx1m;|iK4j++7 zsp*K*C7^789-BsJX~jGXI-PoBjFWClZ-2!hR{Vbcvvd0;C!u;5g`?U}GhQU@N}T@! zF9w8%o}>GF9e`}$G{}vq68~b|w71@Ab^`>*MfO+^G=2uUr}tzNxBY$9JHt>!%XR(~ z^20kD>A*7D0X$tH#2eoYgoABZj z(vpjEHQgFl)634prw**#Z>RtYBJ!T8V-=fqV+CY2yX4o2k>4y7{AJ=hNk) zQ1QYCQ=U4`OS@_{YLF{^i?@G~VG(8tP`yI^! z0~W$kE(Vim@SBTMvG;Fipj8M`QF}B9eQiEp?K00b8GAqN*RTt#%XO5ZZ5Xr2ghhGAZWj`$Xh)#3{4eEF^5y8GV@C33zxNc+K<^fQB0Tvg zx)!xZQh`TmrJtSSbewLDR874jS9j$2(1Z0qGKcdzGpWEJ%m=_F>CUF`OodlCeuSdBF~T=fQVT?O?gOc<#I|efS4Y9(EN)cZ zf0JPB*1(A&t^`eyL!EmMM z+f1HR9KTloro(oL_nI>FR3%_a1kLp5OBJM)lvMm$o9#5O7Bhfk=-@gDLQxs5_pWaV;>M6%UNRDjRr`bKzG*w3naLQpbmt5%<@#ezJ-J0xaS$tB39xa5%SR z@KbUU6kKg`e_spcd-AvsCU69xivliQYe6Gw2a!7jK%tjkHBS?w=km!218B#VnmxS9 zY6K^HS+&Naas-u@e<-GUHIU3eP^BG#>5ha*db=I?-7egnm?G3)lb6{%`IKC>Ifj_P z&f!W#C$H(pfnwkt*3;c8&mw;gXntLH+&tSgi>}MGO`{C_14EV{IFe-ccel^c)@}$r z(wLf?R*cJfu}V|u+C)urxA*+|$2fuc&XgQg+}v7JEW8-#v+cv{f$D=JM>8KqNyi(d zmd&?4B)o5qASy4$?sW)0QBxO2bW!b-K@Td zi)Qy{$EG%3mu%!Yv+37}7BjM6euR)xfrZ)dgFYQi=| zFC*QHY=OLmKwQO9xdU*2^7D&l(?c$!43W|A-gUW#ybSf=g>6^9^u#CGntpjN>#(_? z9V=*?AHk*DGgP;|rk-kcJPTeKES7v@E;-qa?X{!8p_R~k1eD^P>y zg98Ud#&U9Wz;cY)#TW{IQTRmeQ)<&Kw}ZpZ2+>_}&Q(yqKDEC$f&w;?7BHS!Q3ely ziL}UhOzMr`9e~@nsFlfFXCrEo&ICxZi_ zK%EBOpvEbS%w3mewkxa1s;^A-QN;a#{QSI-?;B?vxvvYhr+a>Wb=&LQ4Tl*`kHWSq zBLpRN#_yit*v)V9AJezH+iDpK=F+1G%idVK3Y)Sd$X2ms?_>j$SHxRrytme)69408 zp#|5>@742ay$mHc$&5x=!p|CGGBjzoOZ_Rs0TB9>R;jnUx8a#r?|g=r>Rq&6wL7di zf@kq^&p0+LbtLRj_8G#)d=6QOo8`>uo-y8elLZXxw9@!6mQk663dBc)Je}9?-smPV zF|7CEXFOS*+uC}UMYahryJFVgrz%3f0AsGMewO=GcI0Xk2bY4~;B&(E0-KsM2!;TU z*MVz4A1AP#c7HsvV?C@xQitE;J#B;7+UsBw-fN);TW;3UUVU6f;aajE=|^*}THSBF zJ|e(PVr%1i*60i0b&&p0;T&{ax72)46R;IFP&+}3A(=!nGW*u{imkra6Kcge*JuWM z#;s>2@=AA_q@fq9fbkQsOChOp>!A5zQ-CEnOXT8l3!lN%&AEF@Y;3@O8s(L6+8;PP z!vJxtSB$7J_# z6-bprzXOWLTBNvL_lx0$?;bH|4bus4Z*OUmZI=;xwu*r&L_A`X_+{0ORS|OGpdhfUF z0DV~Yz9B@9)b4(pr*co8p>4grlP0fIF?Ne+`K=#mtV*dPx&?i}b32eWS}uDBrvM|- zW2zuu2g*Sss0#+?o*QkL&kaOmVL(-eVV5Scp@BJUMt3yc`R7|^}RhbBM+bwywEVhi}maa3hC zjlhLhmHS{!q;H?l_&m0!g`fe3deXb*p+=5Q_u)?r2?zKu46wX?aTpo$`<6nqyk#Ss z;JAxlme?jhK->s|twPpK z2>W1#WEFrgBBug1a`iqOMgz<_1!^B1?VUqqr?k-xMhFQzZa(9Nj3~mwmPWWsnoF*;Ilp;A zW5YM7XlPQiZKL^?0LCQojST zZf1K0L_vU&t)c^^Ej*toju@YKkmbfLT z_bkhVMwzhnz#Dt^wQp=bD}g4o9z5m9^O|V69ldo!r^Jfw_}QzWpj{QI2SnZrWE`#(o}QfluqRXoctE@c*r^`Q;&SYY*J_Xlbs=i0 zcaHN%;sMEYj0Jev-@TX3&UWXfm$Zqe$NV2mt>R!cV?0h8*Ew#xxY0k8)bg7mtB(p$ z;)Y+vF*IkzdiM~tYn`g9)ZRdyG=RV~Hzj$Y3MkKo`ZKy;d<$eTGr8E7Fg`+?kpIo1 z#B=BGL+`#P!A0o`y5(hoBbqem2RHzd;Lv)9v>5S12i^b-!VI-N()SLHX>Lq`QWMDq zmvt>L$k1^Cj2WXh(0x&(L`%Im!Tufo>Xl9kR~RPya|QJ_p$!UV5DmzOGM>0nzurj+ z1Ot}{R>IB2!In7NbtN^(?(VjuTA>C#KgjX~SK=r7^QtU%42q2E5vMyujX zArnW#!?@IN9>}?Tv&lCvz(_#YbsP0ak^e;73FC%lFkIpz9?02%tyi9&_ES%?HA7?X zTTi4$z8Xv^Ug&&|W^U*w&*Th6NreOv7;JK1H4GPWCTuY=jL!IdbXI&OpnpveWGrl?S4D#%i);9076{wPAT?^O*_Y<7?>@tw3U z5T+}<&P!K~CQ`DWZyjVwZ8jX_owFf{`tI5VyX{NnRfuEW#xn4%@&RU8JM~>-yF^^W zRZ-GTQ0_{|g?F03>q~G(vfs_~>*-163Z?^H-{G`64XP@QEL6vAH$1P?J`vmS78Y85 zH~Ge@Ne_pjl)(&Y%aCxx7bAD^7W~ysP5KxB?Y|FDOT|Kc;;HV(y)lym+cwj0_&aU+rP{UgSkz5 zHG7+9VF6y1+N1NzaFGW)IC39wTr=YnON${O@7(_Yc?S?ozHQdcF>Dn+*mI+ssNol< z)4HU#{>K@h05LrhJ=XIL2)FZF#Q|I#QW)SmTsn zQ_)Hy?7~?W_NvIqF%y|dN^Q4Pu3jC?F#x?<&iu0n!9x4rV7FsEV711IpC z3DR-nXP^)hSa?O1QH!qY8w6;=&Thz}!JYBMi4$hL33dB3ZF|tv5jQy4ZRh)Dpccvq zl5G&Il=B|*8atKI4jxwpuXHnk8m;`B235JrK>P1m06+W>z^n=yamynBLUP!NHq=0v zc{e3;S2nX{^9?oG%`#(w@TWVb|GhG-C)oRa!IBz)KGn zO7To`0f|OCt)PY~ke#YVI|hg5?#zwYkw8z1>ssIT&Thz)}qnUC&Cv2TREPc#9o?g%o~{t2|2 zjNBCo@ob6W=DWhDHZtD{my3kPG9Tukl43>>z&5Pzzu-(YV1l@CNdXI`OgCZg9?bk- zlJOra6#kcF{1cDwiP^r_e%ei2WZ_e|7H_!{4!`@Yd!A>vteTlr*49jE4SHlazSz?jv;EHEXD8 zOJumE_ectH8HdeD$DcXgT>%A-^G-`GPz*2=j*F51iMrfm_S(`d2!xcmEO6)iDD403 zzsXbqZ|8g6&oo4b#Z7did&nH zbiVZ5&wRUUHR$sSM(>?^;^Xqw5?zoF$xl_4nCH5t0Xf)PMU>lPN=)3>jsE!UY2e#y z;9G+tF8l9bEAnx7fT?(wB~R<>pQ~tUC6#?3Tavcz+E<7T2&UAU1ON%cD&>6qA0HkR zb=7Lwz?4qC!}hXXtWMg(XKuXe|J@_+`iWSU%zL!l5e_7uub)vqMJHkX5}~-C5Z6eJ z*`8pA?3ccBR0sPM51}z=>e3|AE0BT{p`G_K#GYS~>e$J6%^UdLhqfhsl$C84iL-eY zkLT85q>$mD=ifSD@zi4d^NWNK15dY5(xKnCL?EpcyMy${$~|$Dpi`FV5&BG^0OrAP??)(8+9dOk#(Y8S#zeN z@sWHl>+%Un*@AbY=8S5Rymrigu1aKHrlckqly^yvne@FHr#`*)WJk_cD>b!1#%Ue4 zrsH4SaOauob;(iIaLg+lXwI9z1@t*A9Q0RWw=M<>22Ut6Q@LY1*xq~+z0i^4!%Y03 z!-MX6nmn(Z?I{tNFbX+rhlg~w(_C^XRimw0n?BZo?3VXonXTM{N$30EpHWBF{grBt z%>4)uStL_kfk^kj*&Mi6eJZORJ;*X?j8U!XOb?%GiQdc9t%_^YEi`R`9-D4IP$t~J zaeYu#@Z_RU5VjHdXmv$tdSv{#t=oE|A&eLo&7r*eq5UBC@Zpyh(^lVB@N&>)Ch3K1BA?TQIF7(+^f z*OPHM>f^5w=ymj=Em#&ym>e!2UES%+ry-@&Z9v)g6W{XVPs)x}MFG8WeQ<(ky4gpa z)$8N$KoMoVoi)g5-Ib}?Wqxg&t5Hpr4!^+U$z17-jRLNCxsLa;X?NceQ*+qpMPqKdFQ<@? zMf2#RfXFdRt~4b5uI~es2m)G~oJT&kHr*DP(7ez%&VpJQLp3NE zg)U0(3tdPIyC4f}o@}Op5jK0jN-XNQ?C%q=C!+3Xp9%Il;AUKJxwoSRff!Ux%d7FPmx(03UKTLi|5IF?ze~C zq-IxO&4K5=Dd-e6Zt&v0`IsUSoRsB8#K5S%VZnsb(lq56?xLAi`?&*{KLrRqQ;#kQ zJ$IN6(%U{#b^DlhsZDjuWeIIh6Ts9^^P63&)F-V);495Lo4Xzmcbj6j6 zZ3%-N`T8E(Xd}Pj441%DoEIkQ_gGI{xMgQP1Myu3mYg9ZEx?|E{FRa*e|2H{i+A8? z3vmIkL4kQ!S^Am55uExuB!vy9>)h66WE+ALSZ~(<(otp3FB``mWHt0gw&tu@-{B8* z+_=eIPZVmxpFE`Vg;PT)DKLKT9w}~MU#g}yKYB`+CKGl~P5#ka{7aRxH8YZ|wV8Ha z{)_`FrAL|&&j50_`x>;338f&ovuWq}S&ga1Ln$+7IzB!xb*XSF^xWoi?0^J=OA}!eV7s4!nv&j%Kdp8?SdW1(a_u-JYouRYUsF~89B+)WJyPB3yu$cDb#-aq3 z8Tk!1&k0YCRO21)9(V;Xia&2z1aVgvK*b9K3L}|pjo|GHr=!!%FA3SLsU`p>;=8|T z1@bO4TOxsFA__-N8`T^si8>D`I7dyAWfp(RfavIGdGD6HYZ*Z(R#|F%d_HT9*|1Lk z8}smULUy0tP%;T9KsBB6glr6JDTs}<2sh)4Fkxq=1WeE0dj5=%UL8$HB>_3NnpHXE zitpiWisUGm4eT~<2)4g|d_JDm3(SGeVSSP$rIfIvE*H(o0tT-|0^4*f=2*3%7LQ@g zC6H(wcKV9(fU$s8pG=Q!AC(Ej6XZ3hP5MzT)Bvh@)#yWD#*V8>_gjQC!@5DCNx*vz z+(m<`7~~>|TS(jWr&Vaw^Z&R};=CwgK9nXK8rkM2a-XCYOh_MB`+x^*UACGl=SsC( zUAjnFVu8QE9CE*UZl3)Dzx7YPYA%wJTLH!N~wMuS`s)TlPsVDtum#xa^dhtLa9ps?OnUIbjx4y6) z)V06s=s0`_Mq6nh-f;Rl4AR?OipFp122h=UFeizLHcYeZwfWv+be`%G zKR%~EJ1`_5YJG0FMbCM00LH2ED)jx66Z)EYdgno#A+QLhT!(@r(dP2C850oFjJjrd zsuN`BO6IBF+}T_-_OHxTNPq&)?e(EGFdZEw0^ME0c&K~nSIMN@39`tSbeoR=hHp*J z!mY+HkB%vx9i=*|{Iz;?{CvX70<$ zrUdEDmx0rkJ-OEwpPu3gO_L3OzQ42Y&M2Z{SfODKV;F)*@gSZJ=IO$-0QfG>BMSBj zLi5R$^%XmuMUzPVy{04i45akNNS*)j@IYFwG9j>)$-e%=rZ5Yh7pL0GPae~|iQ*on zT`yHv@%2H|TK-A$k(W3@D29Nqxn(E?Lk)@~JEa&#wA&h6q;_K?Co}u53wGqA6NnLv z^*q?aWssNJe0qx&L0CQ=ooHBHbn!E7Tj)n|!Ie4%J%Z1nE*o8#>&Oa!V|kEHmW-hx zId&?PcMxfg<4^G0%D|>`d4(ihep@3Ti(>6SdrNWxHp>Q1uxEl?X`^?GJ0>96FKr&= zj;u|8)Z3W{opjwyu|#-*s7qmk7h2^!7+Bz^lPiNzKy2})_^>Y3{y;x;XZDNfoG6cjq`+*rAzbA|RITG}B&!@^D zz(LiXhimKB@i9&44}?`tmjpiP_uROj{UihMY!0eXAleu8@^fm_Y#2*j%fRZnqgAwo z&y4O@1xZyNApLCkN0i~8!)k=5%B%p88_Ld>hRG9Bgo^DU1rV!}){&-MeS@C}wE82o z$$SnRe<(?xHnK1;3lOY6hRA<<^Ze(gj8~5mjud<1FTO5sSAzej@<%w?&vnpJS|H1W zF$x}1&f?<(ewjCo(AN_*1V=bQ`+mo5{Z>GVwqDn~^rqDQFppPX|MYZ-DnyaqQ(+Q`=C3Xsie6Up)FsF}H%d zPFW=1@cx996k!c{Gl77>;mOfAV#^-TxPvmb^3fo+m3y~#1f%z7YT7lLHuD;6 zPy+UE4#bpXcs&`~Pj{4m1{Lh*o)h8k#1n!Ne|bD0pw%e z25!uG^#|jt%(7oxWhJnEDBN%#ip%=a-o*kd{B(49p$YDqY|_<=)?cF+BZpkJM=%}M z(`1eXqxk9YU&B})&m#>t`8Da^z!~w9;WgK)Ke|7fpQJzc7k;5@3;0#&DO(65lkY16 zhKMAo(*a#N-I8oV80j$6BsR)Hm_~+)_7X)9w{kKs7T?2C)udv;y8#!2YNPlSs6 zSWcJ04Rm8+_K_ki!=)O}V8SSlM^BJd;pHx_bp+!E%UKhY&=s*M-qD7_&Cr6}A(!FS z5)0q=9orLcuD6NRsxF8%I%-bvcXPZ{LD;>Wq6?xQa_!k$x3oh(Aos!Sw^z=rwar;3 zlmeV>NE(a&wUsVt!c#&>8k5+D%oF%))p|b;&@~6s^)NvHJpPJW9sRmG{a-`23T?{S zjB*=$)=gI{p7Oc(3p-XNyGR5uvZeI*Ca>7%@HB4Hlul*I(c#mcoab)Ih#11w7Z!-S zuhe8sB3C;Ob#mxt$E+GHJya7myddl)3malY$n5SW#qOVgiRgJ-FGU;H^GI@Z3L2np z&`&hFAovCI=%#%J!M8k7@bJ#Gb^yWX?jYMEr1OuXz^ zY7lnlJ~l9VKCWG~*XurmqQWpq9w)Ad^V#CB~U%jB)s4_(>TiX(dDC#iZksW7H!( z=k2P4tWnyl=})<9aEUT=Bb5qq6xs~|OPp|9eCz}kmQ;4-f@~)f#h{VZu(W>x+&dgz zqwAz&W?O!#U%erMjJvQAD{Yf)x2Z})Rk~z+WCuUEuqn)H{pICq@5cr;(@zHca0d2X zUuy>9UfuRHb7>FAli;&xX`WGcs{yB^)6h@(H#5%+^$SFb16beA79;iksU@D0_7a=!vuw7MTZSkw&Dh69DV-0JXBWh%+Sf9!=?!FhwjEZx&VWH=r#+Yz*LW3w z{4W$5sagWUUfFa^SIMA)C6jlUhCxsvk-5S|i5~x`_Y)D(;Tr^NU}X;2GrT3T9yC+; zfUu2B{8nW(yUft5TMp(1?2o$6B2_37DmjEZ-=p3l_+!SLlY}#Gk!J9-h46F^n1p{2 zEs(SA&L|B+uEk041Dil3zCd0z$yKeOPjp%@FAz|dP-Df?ompT^1UDBO` zxA@FI-i}R!zQR~r#O0!d-G15D7&e6O_e6d~=Y$(je^^B=6)80)N@8QYq9#JP+FQ!H z=@e>_a+q8c-*pY`vWdX;I9%pjDe^86&C6b-lOe-HTRpx)TV(2{Rvw5v3F6)iI&weW^nKQ**-p#wJ@?;S#2bT;9CNULyA zCUtLa)n3O#OaJZ8r)>|1J1}Tc)n-Z-aiWN-M(p5u|2Y~IWGn0#F0HN6FXN!Xz-{sJ zdLXhl9rKK4S{U(UKv;+oRjwWWhImvnbVwvP6PjAE5Z2(->AOZ*fxV0u`DCC#GQ*AU znNpV;9kb2tb4O;MCD#$X3aLGoQ?VR6ZBUq^93Yiv zJ2Jj)iA%RQIL)z_+eZxB+J-)3$7(M#+?rP6Q| zbel%LH``p%bRoDiIM!lHlL>Rp`pd6;l}KmD(hpLote_dVX1W3mKhd` zm&u0aHG~rdtI&4 z4(UOrn}{csFUY4bAIW{_7GK|75_h*4c(BuR+YOmJv@YP-$wpte^{hYSlyJ)Kh+tCx z%-O%faY=n5yu$~3pJ-!CHo+-S5WAhFGKA!RI;$$irr!~>`Rv~9r>r;62t$Jhf^5gy zC|iPC-bZqLY?YgofiC8lpc+rG$mPz4jnww@u^k?v_{z8~fNm4j$;fC_L%h`?-ka8N zsiA!sHaZy=GmrDnzmZqU3r#D$+1N%thq}f8)_i!{0~=r^=Ad4ZRK;ycF?88zI)W^< zaks$Xxx9fHr0RpRw26O(@&m1~blIlKl)5hTVhwwzz-~G;c5jbb>WQgWa zW`lh>jpDp*6~NTl65l%--_V4D2D1jz+@?q@XOnIpjY?Zdk@I~9lga+4-Ek$JK6K1?GZWw1`a zdQWEaz)js|2+69g-Vpf<_C0m`li;z$Zu5^d@)^&q-yda6@teeJ9Qb7-r~GndS=DY) z4qk7UOnlxlqF&?h8Rt9cE|^H(*3c2FRE`)`cIJB8BFH3n#59y6!9!~aRbh6JRI2f6 zDf!mMYQ#yhRCxo_0&L4;DOaFeSgJu8m4mkzwd_VF`q=QgpsHBPTh zt!Nqyb+=5GC4?O}l25jsgdfSt9^1J;0GcwBch8@qE_j`s+mY4LPI)lVg42s;h5kB} zI#6l$EKI(=xog9_T%)@Ls^^j$ebKdveKzEl|3YRKUeawx!F|s` zuIF5p5zlL4pv^~AN3GQ~pTCmoe#SqaUnyq8IxA6{bcG|Y^4A_MxX3};-Fxb<_2EQ@ zBP^w}aDl&YV1f|2_zJQ^B#igW>1$>w`RjCUcQ&S2&rI#Jcn6%Vlh<75Jl~5IL)EjC zHhnltIh2?pooA(X-qxXWNlYn+oZjSZ&l*oJYaqkz8rw)iHCDTaC5XoSx`+COi!WLF z7R6k_8)u@jHuu88>N35` zMFZB7Jd)>WG~-`|+UI8=~*?L!&_;%;;tLd zB|~~G{1T^eW7)KJE2+u)Hg|)KY#dqeD4mGVt_|vC#=sj1c%}@W`I-?_IFI;Cw}y(I zt%zryUn8jK0u2=vZ}R!_N*yXqqn98qJ12&Xqhne)K*@n6~+}v~#w_7>-f= z8qS`=htTQle01D>^sH~bPKid>EUc)PvHVf1w+`aEmkwe?uOKH-QpH$&+3^`pou5g4 zPb|%m-%p6p)cA(v<@+8QYrz>r+we1>b)BRJ4bwX|u&S28#R9k4mJLeAFU+*ZUw9l} zwO+g4J-%UXU6?hB@yggK-M8!Qg>}eGc?P6gCFwihebE}+p;{u|@jYjv;D6~&;qVpY zgDhQ@q=6WYR6cyegq9azD7R3WBOmz;yKSj&JviVsr*W%;HJAq^&SCV%dU5<5sN|rv znCUC>!Tm&5!=d7edi~xz8A#cW7tGT>_|vCZg>YaR=+a$08(-RN_AJvm#xTj44}FdS=H(PZv__c}0HHW*&oS|T*+qLkCvwt8+NnetWF&Y7_ zDxT(H)ou9ungXaXhX&E|n85JNCemB>OfOd%kHbtdnkUBQLEl?v^6>!Dkfi2Rj&_Ca zl^OjM{A^8y$o5kK21p3C@PpaxLEC2Mjgq7teY&Py9^^>;I+jWQgqU{K*j|#0_{?AG zdG$y}8X;wlS_6oRlpCI24x0nWa@RfI-8Z`r83OmyRG@QP0U`1bF_#M0Rb&gX*%RIQ zijHB;!8-0mm>%qY&^_o=Td{?gmlFAmoU-(oADJl8O7m6Gv}kOV@T!QuC8gDI>D`|@j}TsWE^{6fMe^i zl+f4hKlH03E>6l(3jmz^hriE9`AP13GJBEU9PU&s6G^&_YJ-cPp|stz8@jIAi&%^1V3&7&nsU3qY#7dwSPyi|BO0 zp=ps{^9A)k>z`Gf7Z~)~*bi;A9OuGi?{osfk3h*wMd`TRw#? zR9li<6`WZYaX zkP%u{kx5!Wwh^G9Iq*<_Ob_}WvFaZu?(y5q3WsZ@_uLgS^2AMB<09pGkIQB9&XGEFQ2y7`b#zX!mP40NN6G&P^{DFX?Av zMmN?Cl?ROdKjXWbIMX#AIRXZ+f#X(g&#nppoaE__cf72=FK{V(cuT73;MIpUMA`&}sahu>MW(pfcv6nIE zkt{Pb6v%^e+Be~(GQs+kNs&EYjMKkugl`dRDtECiZt@yFS)Zt?>1EzD{rX4fl=AuF z$o@rAua3=zgp%HN5P{$h3yMGf9k0&%+m9(4yCd(eFpAS#JD`RrQ*i}8(|6ZnFA$+$ z=-ZIX2tUP?Avog)46ET2@c4+NC?-mWco&V+o}Pmbs3kL^g_#Dxuvl-sa9*zg`bj+} z-Q`@RU4zez%vpFgtsI+vrtpLD zYvh@y^xt~a?{xBcerC#0u2zFq>5rTk={as%Q4kh~V~lf@_n@U?fOuydNh+Gl&F(=q zOJs_sDV)}yk93DaClzgWFt&B4_RsSR#tSqgb)Ucws^kFAx)hxLqTrxluHKzbB5u*BiYa zvzR`(?g^cg=TU5Se+o}KS`l#E_cCG9A(9M87%f{C5?TkQz@VrrAgT9o5 zabc9b%B#G#QCQzKF&ny_K*)#Z30 zK|6i09xJBFbkbvIA@+SB{fCEdM@2{(PyhLQGL{E+ru`l?2}Fw7>MKW%ex*aSJA#xf zKd4o{*RYPdsCuDX^7Qxd0Y0^(#35aVsuj=+V^ffefC`*|38*`TX12^r55FG zT8H0(%eBK@Lx5{sWTZBO`iMfkB~h;SsdB9CPnIZe|NePYGGhS;>MPaTD)$;vs9l-Q zQ2c}f;2oH6x@=cdE5`U;oR0af`NG%NNE|yFYT1j;Y957F-JZe-b*q{AVm-s@SNV$Hc+A6>cN0d!mCLQwS1Lri(|P{XoN9*yP7Jr~8U5hd4Vdk)`^GCcZ+828(#Y$|N}O)w?9O5TnW}7a?QY*BbLZbM_&LuXIRaV}eHro9ctpMn)B_ zC;t2;g!mqS!NXezij5F}*oqLo59419l<);3*JwpkUEL}qfBEqO9y`nkR)p^V$J%#C zHJPpb0*WXKsK_84m7*Y^6zL!!N=NA(l_n*C^d1lq6$GRT2q;n{G-(MnK~a$!si7tG z8hQ&52zSRbbI!SUefJyBcke&5SZgqO+3()Ze#);PxHRH#UAO+3(DSb>;{X2BQw9*Z z#%(zKX^-N}$U#hVJAu$Z@<17smzcP}Ko`f!8z}A{ z|IH`;g=Me;leztfTfo9JOcHNThG<=Wq{mVC+vR%G1%ivQ`OI34mLHAtNv|@Feunqhc*wEfc0nm7*p6! zU|Yahi;M;!lH*Sez*|FyTcG6O?Yu&k; z092^Fwz(NJsDkpIJOki79{&#K2}=PRWk2_x=xGp=SD}EXaERKe{*7CV`xI?Gn7yD5 z^-bX}sqGoE#w4kL-fOUfJMDjI0Zg}L>3Ynz@@DnHc!5+UeYn?W-QC4O&-D$oVjEBp zo9>?0B-;?SB*?}Z03rq8S1fpp1Bk!vWS+L@<9)vuXT78(J0c6l~>TVyLv1P$fu%j9P(UUHyM5-f%EptM`_e8d= zI>S5C6?OT5BhCSFlj%SK0WUU3w9GElXeM43Ry^4G(ASQKg7ddbKl|rFs^4O2^j#bg zDmL?tGZISwm?e3*zvyjD^c7MhiK`zFGX*A_UnRSk29vPg-uDKsmA2i2QWOAo%UL0( z-n+GJD7J0jUk}9hOk1)obBI99l$pkh@B*nGrtBj_oh}k<6uYUl}04iyj$rV5a_BE}|xbbhD8ZOw3iUu>bCedn+wGKKJvD{uodX zX+9t_@PH?J|5!Fq%hJxmm@VsuH>{purBr9RBImbyGaD9~7fCx;egGwh@q>RD5F9KA z3=4*$v?*8rC`Kk))@`@GoIc4@vgdr#?aOV7eQgu!88XV`DU=-Zps)Ou|2~XS8i(Db z3*{Ps-h>$xI|)gN|OMHpuB`-TvDGi<|TsmD!*o$!3_xR zD!*<<{C7Gwwdgn3JEmoB1z8vl;mSPod7d*{ug{>_T(%bV0V^^*lKy3BY3UR?U02ku z^B1u!^%?ymE;;wRG5e2i$r2aT zIra~fBWzm}TV{g5(rxWK>g6UcN|)C~mp$&`V@xA`)Zmp31ub9!Rh`rG?4`7Gu9(@X_b%HrD^&u%V4gPLqhG%V zF0L33R6MX@HR+f!G(Is}>s>f<&$Bg7pi8SE@Iw*nxKLrFk*ixVNwXzv%PVE%xTZn<8W15c-PK z5j^VMJbD(?dp6%*LiXkfvu-G%*GYxOsSHx$kRgNae8L}GTwGg79S2l%xY;BSA^y?H zQ8(3IQxVT^?AlUPvbGsL=W&=(=hFfp*tuUKnWnx(oGf=H2s1rGi40cQpWM3E&~^(K zcLZE|C&&K{#uzDCG`-$ecb4DB;KjuBE))&qizuX_q$gjanD0DD{eT~!>xma>IjPo*31VNA5VV2K1p*_PK-;ro2%Y~gw0Y8^;r>DiyjOsKzt`3EhXRa zcyKwB0uE|q|9;xvSjc?5k7DPmdP0shiX<8^rFO*_X%VOEdy~2}A4b~}agsSXRsjH$ z>Y*C*qIP7zMZWVTf)RK~&-YQ@0@|l|clSPBSgP?Xxj@6>x-{msuaKPzX}O^eOSR~kd4fsvl(AxjVR#{0*G*TFGJ8LY_F zOeqmHiul=O_vnk=#erPF#P-D=;a<=8p>pp! zt+dUGMMd`?l?@v@db=OHBlSv`9elVNJ~Xp#E?qONTlTGMP&ydO4(|i$g0UjkZB2NQ z!gfvEVv$8ve|v#`vroDAF#X^v(Vkd7RHc}d+`(42zbsv<+_wX zC&CNlu98?3b*}{jTN*x~K#j=o`c(fjkUB>t^2XVYc@rnN4)^5KbB5;S9%GumqzDG;UuWX!o$AxM%jt>}*5XdzgI z-~4#2vH0CWt+%tX#l2x#g40Qk+TvVgB#YrEGvm7<*|3NZz2e%pQvP~r63zm-8i|R{ zn9`PWOx&2yb7XN|W(Y?TqB!*NvuKu_K#VJ&9P;5e55`7e!}6T{)o?H>hzJqpeU@0aE`)E#h zeIu+KW4M9;^k|%FgR|epe1)aK?Lc;*#yLOQC~O;~pl$3-?uaMET3x?UGI-$A2P(hN zf|7kW&;ubwuJOfXT)wBwIJHH9!W2H18F4CZi#@QNrPvw2bSF0?d}c;PYPu~+k14~Z zyrp&yfzV|7 z+_lH4-MrHyyBp;XBPM6>5L`KOA5u3*=8?gfvb zzGRl@YuKWpc@j|SwbGt=e+0sMzpoXUS|g4@_pjAypQ=7YgT$lbIhS5 z0*l<>zQ5kfLfNdd-?M%3Ln^9WY%)6i+BeQwRm|K*hgs!yOa{tt(856;no=T<{a#>J zoHrjxz}a{T=b%5Xe1Hgq81zB38We_>Tl?6AXDiE)_7gdddDyfR*OT?apXD8}0k1mF z1GqQ5xgSG<+eY|X&y{U2DY|rW$OW};7LUGjY&@U|@qx%I=O&Y?oP?2d_j#B@aPrV@W`hISre)f`yL7g;G&R9W63PwN&DF z={ZF&-bBs5&8iFfCSb4S(A;GcA`WrxclDZgHZ^lDIt-o*#7k#Ld4JDciJjz2-L?uo zHnh|qm}l;bfzkx;(TN5(M<28-!HYf)nuL&_QFwboE-9qSF|;^S`!1k4C^8`UOe zaaXf15Gy&>J?%`%+>5FKZ~UZG;My|*HFhMtsafP0yPox)#8sD+l978WgZzj7u-VQG zh9BvuM>prollo8{_-!d>;eDpNIVS#|t}pj|-5^PdC5}V%oN_J_)E_l|QX19aFvF!N zA+durgbVXKn9Xpo;lNNOJ`hGb;S;Fl3+RD1B^Uxw6^#i_?IYO{g?-Xt3a)!3(ZEb> zo`4BW(3ZDvPYEn?cqt$=KnE%5HUtUCpK+jz4u{3N4q@B|Z1)_~_vp+Af(e@tjr#YfL+21{0ygo z&U#qRc3K+rbxN1}_uTGE%E~~1cWUV&%(QHeWBC7ojsY2SJ!C?lSAvox1iy#6(mQiuQ7W9C9o8o~NaK&0a30eguL-Mz9 z&uGU06*#5SGEg0Fq}^wIZl{-eD*thU?f%n(yzHtHmttj9_LB)fZdV5BXRzg-PMVyh z7w_8j56{$qyXsfiIr+z5Oj;%qT5{bc`HEE|P=}?oV<2CQPZnYwp2XFAYqlm9Uj(^w zytTc~jU@@Eetkvr&Q`dPGmrAq<36LoL{C5kiEXH zS8q$LKi}XG+o@OYcP7Q5hj~`;ZhN#6wL7y0J!m(F84KT}UNzR~r2CyDt%97SrHexZ z!23u7f;nnmj-F82{210$*2$bCWUiz0R_+SFE;};=17>Vss0yF+IDxNQo7xXw$X$xt zBXDs857WxX9~rVK2F8?wAeVKqUcuu9Gh}>kY*fl51DThFzEb|(^%)6mT~IwLuQ0=P z>gt7eA!R&TZ`45O;sIu}_rhvrx`mUeGG77mSi6(iJvDdU6Y=O=h0)PdyB2%OxbyySX&y zg_#XrJ{#k>IB?ySqs{mucXJG90%LP*YU5NC)fkWliMQ`CSNpTK<~k`Y`Oyh38nW+a z`jHARv&!K|6afG}5~wg#7J5rK{M5=aXLrgz@GWxg$lF-DulHVIiWAYK*mpa0iF$LHJK<}HZu~nUrjF14-qBw zgRF?vy38d^8jdst%V>h?B-y>p(MjsAnYUgtcOJ<0zqEBB7ftH3h>SfiC}!XJy6i*b zOZr?{H((c(;Ikw<46GkIX`{^#Ds^9+Rn7G(nBWuFr5K4HC(rNw8bDXfx>V5@kWv4x z$K|(01+)OTWPOTGvB+rg>1Ogoj6xNEng)dvjC_glyqZJr@$dS1t0Mtv z3XdsGI@hBA#x;PBRl>DMU?lJLbX)Qu`nt=`aUhUXDQ?Kcs`h$6gFCW4p107pBkfye z6#b^Gu{c7w`#~_r5JCWrx=i6J?X}cx8j;Ut(sXp!Dfr_BAbq7rYVw#^S`sSI&x@x% z$=r(W$v*`A4|BMSVV@WNKrK5z!PUz6#jp?d zM!sY>L}H5e3?F`v9`E-3iDy* z9}Tmz7@{W}V-n|-nlopSbbWi(s!}Z|NVM)0Q?E1!g?Guh5Fo?MG<0wm$jONOsUnkh zor+)%q`rWY^jyRP*OU_Y4}B<2W}rLzyaC02e@A+}teZl??tFeX!i@{DDX0JueWS4qc-3borA>>W9r08lC{M=(u zlzQ?4bRW&>13ET`q}_nxSF)gSsrtmN6NVCN&w&!54x^Rz`f%yQ^t7EX1Pd?TeW!Gn zsWD$C^2Uv?Hy3giaM@)5l4VBRk7BfK;Fcb@91`)PVmm@ybFg8s6so3-~M z9}PWc@-w=H=OtE1`@V-vPO*+uXuPD0-cpqz@p9@$n}K?gKm^D!?`S0L{xG2BlHNC; zeLpqVHK~_xrN8x{P@wyLFq@|^4~VJp%fpAVruBXWYh2==&?mE6roThEOv2m*DM)TJ zwZ1Eqjzjgu1?LpK)Sw&27dJnVNTlv;!@xnrO6Y;ri3Qx=ftc68Bh#{nuf!pG)|-(G zK%-Xfve3}4`~lco?Dv^^^8Z~#C6B~axDAes>1HV;!Iy?!lmrwvRfQj;2dW?0>HJV2 zk)o9~;+I3763@u{cV=bi>8hbw#7W(BpoHWMsSO}* zvWVpdB3$j4G7-Z45@FT=qGzrXpnx~nBFq5|4=}XL84FyADk*As)D`rCNf6G`2?QX; zjhLF;MmCe)t2|Sy^&PEJgKE{O zsj@VR(N3wbjgvDS36%@DfUEM&Ab<_6CxJIZJE+s9U=$Fcd%~J}OAj=gpqvisPOcrEBoDkda3% z$y-@j8F@`7k){~bN2+R0`!Ph5EouK-ce$!ffq8zi{5lx>+0C@q=)nvg*S+*>){(b8 z*n71;Nw~!0(COl1-5>`2Tq^4R^R9Z1LVNsGQ@!2!$TKth$CyZ@1^jZJrQ|-`5AKK= zy_!GXbS$m0(zOSLF-II|0R1Pto+?q5(%rHksQ1UpSCF5ji90)g+0bUi_!fRCSy{^# z0vufe!@R}TAxbnjAg;J?~`^8O@{yp`|`M|N8BUQtvxJzM!TZ8!_24YgA>BEK5ZYy!*@l3jof*xij6#)I4q^kyg?bH$!o^>HA_X4R8&LOq ztJVK03OPHBavz1+7RxS#ZqP)WY?~HLvBUR6X3RMD!BvuS3tZLgG)yx~BQ;Sl8QJEy zP@qRt<4;UZMbM)GYTJlH4)l9yoVv1eJNc>irR?{-P_d zFZs6)ZQ)gEzPBZb@PD`+ea*0^xWF)bD}Q@Io$ z>%k0(UwwXl-lb#fPk*`G**5@|jX%9Nl4-Mc4u&IN-ZdLDY4}YsDVoN^oym^|A5FUI zo7++ZML>;mW8A};WJK*AoUw7RRgtHYq;aE=IQMd0HR{}JF6jPe`mAGHnO!!gDflT$ zMri^9hXq3M4w+JpY5S{_xAb>w{mL$`FAnN&iMbW;NuM?an#^{Q0p6n^cUKF)Ewoj# z*T%@p1MJqyp@&L?NSl;BY`jLEHb;I4>6Yk&S&#^~!6CBRL}COjY;4CmTQCMsI~*|b zlRgv-C(RcmU0kW~!28kg!NygO@h_^3I+%^DgSK;98y9nNNu$YEQ*gn@Qm^@zWk=*1 zbvVU~JD&AiuCL8o;Ll1w=od=YSQ^SoI{?E)^%r_f9U)szT!k-j#T`hJkBOmFX{kU4 zzS#CfcD%Uh*{wR4$hUI4`R5EL8RiJD$nAx<435BU5eXx~l(%&8EkH}s_QzO=-p&D( zr2K?sk$My$=?~Lutm;CVT5czg>SqRL@}Ys=hq8^fD! z@dr6F?8QeaGmy(4sm5bM(-iz?+D)&#e}e5CHz8iE`cNo}Z`=k#R@!RjSv~J(fV}Zb z`lqsPwNxAIhLjeO$l_w7VzcgCPyV_gL`gLkbx6S&)BoPBVZNry6|3O{T|VAsig~u_ zjji1}v{~sq5(FbD#-JiU|3Dg*+p-Xm4pEEB8YfLZ6sZoLXhGh2pBR^0X|4k2d0M_w zdHQwmXzHkc)-DdcBIfDvE!s4bK-}6LLD$UU0y`%yJ}6pc5q=Q4>fM^^I;FwDQ8aAx zwvvDnzRVR{o8J1t^IKioM#Rb4X%2nq0Mb77wilhaum6Tns;J$|{d)UXi=zk(V{OzA z_N|LD2%QYsVWRO zyFKx=9JLRdLwfg6K*7bMeXTx<#n@wb=IwB{ zzb9E}Ga7n$WVl4cJG0~xaBxXFH818j1k??k1zzSSPUkrxTmxc(`dUlQ3r6joif8$w z-?h_i*Y6}u=l2!LL(uYsw*?-=nBuENuN<_ib|ke81L?wK(?dRU`12#no zUJT$T*iO4)VM%njNc#f(yCj_VEAO7!yQrd{b-r$OeDJRNrh*MT8xgN0|WzUdN$fVIw%5} zll`RXBJpS`Nr)j55;OQSnWYxipFk+A^9Vt0j>qY0SQ z)v9NC-aXemfQUAa8z+=#YAtM4f4S*dY|?a|a+RxozEW$&x;Kwjqbf&cG{()z} zkZe8fo6#nxYyb#Bt55SSeZ^hmJ-6A}o?y^sO7-grOwmf_Ya5!`+CC@2l#dA|XaI9W z?w>WG9GORX<9*CeSSX?omOagrMx_71)fsVNuKPYZgzdUT@MSKa;V8^}hmIm`KjV<~ z(PZ6NQ3GZ)izyW1t1AaZ`^1&&<`I^tqhl^kxIzbJb6%v^pa49TqWVJe$h2UW#R{6<~t}AQx8{t+uPijq(p%M`PLLFOtj3sVjO<{a<)Gpj)XK zqubs}SMaFCarYv@wU_iY&#cJTPpY@`jFdaL7^Hodi*j_caQd%gsPg@5AGt5@Z8-xM zISpO&N3v%!CIRx{R(RQ!SLUlrc?CXuXvI4`g$2*>cs7$h3BRnly`Yw&6e9(6ymS;k zS%+d|H@*?%Y1$IIP++mP82`gysR5&1>bp3wc8#O=UU*n+>is}Jbd~}Eh-2Ph3hxPk z`9(_HZa^93b)-o|75i}-S;xG%Y6=&K`z(jSnFrB_HaF9b;ham8cJ+ZDCeORY;E_OU zXs1)slGl890McYKcw`WRYUbC;jE`pNuG`~~*^J$d?||xHu8oR0gtYJHMcipxWE@hW z6UvhF7agf_oL-PctlWA;dXE+KtCPu)e6VwBzK2@T3!Sxsur{&jyLq@iUC5)_dT!?A zjj(Zu1643C1oLcmlufKXNU6A}$7R&}05senNcOm)4K}$=P;+u?1(B7FIDwDTD$Q;5 ztKXDjwl3650JLQ0>1Oa;VRInTbINy){07s2dj`OVW2K!xt6c<8UAZTB*K*hZtXtWc z+TEdTC97rdRoP0ju0>*RLHtYWv!mx_zkfOgcP3a7hZ(;tOtNpFlk`1i+Lwc-u*Yv9 zMsdM3Ic}&hATa%!o5Uh!ANSZMQnSQD`blNvRv3^3lVK<0*|ULVf#2rul}K+cfTyxA zI`ZN9(?--GNpMNVD=t7+QK+d<1Y~>$qgi+nCM}x%uUhR^c0-HucrXO>$(lcdFsE`i%}-T%Zxk5PiBf!mmjQa;9dQvX(m%x(Z;k*U52r6CIrVp7z~C|EY?;l@+~iIM+s0SK;66}-)TbN) z;|W*Jzo-S=G32$fIoay<8}RKf zb6h&|Cs8Bp4Im)O&6Lnx`VHpBb5^he?@hKEf(1ZTZRV zJyF@C6Tm^pop81pPCM3lN=65F0q>Lb2bZB47(PN7>oOAOC6z)^oXvu86{QD43@o zoFMz_o9W@}Tj)Et&Zd3L(xqBczt4B(KIzS2I*-(f)GGTbAvEjAKKt10&3cmb{fA?| z?OCC+7ZFFMA~aHS(Hk{y52MF8{yth!g!x?ptBt!V!KljZN~W`v76Qiz_&zE1E!JcM zdGJ%!w0cc(u=+5XUE15w6^m5ibr*QAeGDaFE!0mWMi`t!h;r_>pzD6f+ zIa2Ibu!z}$@lrfU5;yoGB0xJO+oINMaM?N3zkTi=-_d2Z$uoG#N8J7%v#$Xeb%ao6 zRqLg0<ew$S>D~X~;tEl&Ubnfe8Sap|_QsJKpV<)5vbTlO zKm$V!?erU&HrKuR9fYC4X1h9QYdVGC{Tw(H$78IVFDaIqUfRNA61JCQpF>OD=DC-~ zE=q*03S(=B?pL!GB)N70h}C9~uHD?HanYWmyKPB<6Uff=s0;2W@`c0;E~IoHE}-3? z4p=^az3$)ITo0=nkDLfC8~{~m&g03HT)l5EMIl4I+|N^ltrF?jBwMYa2fVS0r0PTw zYb$^jXU#!RaQ&g#ZOfp(>oIM+kt|g1*-YP(!5^D=_1>552EVl@``g3z((d6VS2kVS$eU|uQ<<_4A8&d5c zM!s{!R?7{lw(Yosj9`9S%g^nPTN8D80QkJ~0S13w2UnKC{ z*eGJ13Zi?xf<<7?Cnu1L@EA*EkSf`%o7l0>*^#K;ntVm5peLuS`3M!2EodLDPp;do zH)V6>07L-rJVu?ne7EswkEeghZ&ZeGIZg>P88M6n*F5>U+JEV)xtFVaq6m4`Nomcn538N{X zspCHsbxueC%x&WCaQPb~lXgDjTNZi&uZmkhVqG9#H*32RK*xU=t!&eqlv>v5q#+)S z&rdFbAZ@{_fcY8n_S%Cd^^&gjogJ@8dXO7e!t<+$*c#nRS#?lCK5F3;7il1ijf)S z0|4e(t6t{=Q7w$0ZAlmTasA*Ykb`&Zs;_}Cbhys_ys+LKB@)mXT&T&Mst66Mbj6y9 zFP03qiJ-2AA43W<3%^Z4;1&cFi>;RCOJ$R?g7g%2r)<>YxRv636u3{vle1=x|0>n} z`?>kA@cF!tis32+5=^@t?Z14LaPGZ!Vfw`%kC*HH;ob0ORn{v5T?U7p!p@lDBw&aA zD11WD_^Kq+r-Wf7s~^&9z8v&6ERQj;UY68;v>VQ#5H|`Pb%}L;UOg=+G~M4}F8c86 zacTF}chQ^@dYQr7rhyiMHi{6KAMi_RAE_uT*tb;nS;Fy7HlswEW4Tg*OPRW=zQ4Jk zdzQSfk$`bX>$6gRot;Ko;6<=ulX^+sK2Z4+bH<%`o)9JF)z7un3eOBEPU*M0CV|aTI{9hj*^Tz+hxM2=6hvo$gqQ${m{?tH`hO?hHsJiC7?y|gLH&uI)XV9 zG1-0B4@lTgyXhA??fKC=FG$p9>Egoj} zmRjptLHf+Sb@j-9|4Q(dM1w%ez?V%KA_zQ!e5v>A`z&L|Z3i0N6iO#ygEJK+<(& zpvU;gm|(Jqq|%xT9I`PZwEpD~rh5o~{2@m@{X1Otvq!NqHs4odxPP|;0ir>~dRJsZ zPQcazT-(}bao`G_mYRhi1TCp#>(G|kHu~%xYHwXLA2c-W+m&?0xne+fM_0jA75Kae zF=|C@Ja;9WrSOFX(v;Sd(66Dk_+*H^9FzRESy>=CVgoPnE5^$w(5r9nB7A?EGYFf* zwT7xzxXC?3u4sm$wB^mEpYI#IB>EZ~5Pt}nwTd`nT470oJOHq?{qq%@qzlFV3;tG( z{;OdS-0Y{=o9-aF_^f)1iX8S6C`87xTCo4I6#VllsxIJBq@52!K77v?*rGwc&1>iy zB|k$;Bnn&NPI;b$ z6xU$)?PXG?k7Yt~X=P$}u7>~6fD-pr@+xJ3{FyS3s`}67%>Q1U{>^oDx{w;QK^5%V zA33hJi~X@MRgjDeik9J4B??SY1) zjinYf0MNkvns&Oa%^^$M7h4ED^tIid&5H8vTZp3?d(BaSzn%BKpx{eG$U$j21aH*E z?V~nquTL3_S+>+`c{)%5d>l`#6yFmR<_0Gvlof*kbkA$!aPO!HSSmm_;7I{l$ zl1nn|KGXj=J~8l6ga9|5E7tFykSl;^K@y9F<`RrvBz!5#mNZhM_wGI=!vgTx(NbL& z$*~?q>J=Jk4~LXet^%HKYcI(5f{8xe#m>g)2IT&N;C#<4q`++J%C6tKt!~}1#-3bF zepHDyGtVY_>h(b3nJUlic2ob7@r@f}*g9if$HDU4oxQyw&IR%Njdkk{YkqL0BLHxg z2w^Cos@7KzY7F(wG408NkFx6DtFvn}UPS6s1_28{`%aFWTQ4Ru@s5!qGwrXD!9?|8 zI3yR)I=0`YR@e^`88~EaSp}@A4(Ex4AEQg2=Q~GQt~-+Bn82604UAIM*gQjk{b+8R zx!ch8PpUCYiDd=TDEiH=$Qwmnkb^rBx%MX+3QQ}KEuq2m1Hgm{G>pvE1Vd%bL#W2+ zsma6m-@IafwVqCd(VV3)mgctrU@(^5pzW(sHExF?{#{33Nu0;kn~M1_mT8sS;f+ko zZ3}EW;tgjyh&p`x$~@W*Y!jJLo)8*N}d zGm@UeZa!8~qadDF+k4>)9}iBp+s3DaY5!n#yb0K{1Ru z=>8opo%l$ukgu7ndK5t*3G1$MzV9xpi<67LU>UG$w`7LT>uVy1+L8Xd)to)of?rI0 zvx_|u0VSZEhRwW(PfV>0Rv0hz7xK&G$yDLh!X4PuQoD0I-UzeQ<@J}?zhb?iMVifm zwtP`Nx#Tw+a@cTAz~E<$L;=+e%D=P#Dk-Wtds}DCC@oivo1Pw`f#Hwh{-*&W(UoBW z#Q)pV@xebA|MDj?U5H{Cgak>3|1=~xgo9b*@}6G4x((ryjQy~5A~PK-mP-=%tUW^*u*p+c`R-$Ddf3SB za`~nt5;4v|V$x+WJ7N=$!N7r6@g0TzRTUN@PKs!HWTV4eJb?{U+V7 zhuZ_MKiskX`s3dE#zJ4FKfa-|+t-otDFNq22S#HMVwG!OD`SwN|N7HYT-WuIMXZ-= zZbz(7=bBdJ>2*YR0JAi_tKgeocU$`1T7nP0U&s^vz^8MeFx|)$I{6ACZ`j^Itcbm- zMsDT^m{E>=MSW}D2Nm-0e_SC~+)O;yxI#TM(~-VTp1OggYyzLYY9-9HTm!1UWR*yI zfSyg|1ws13HVPELkC-6&XKQ?CiP!BLzJok|`h8^lGe3qEVnk)BCm|*8s^;p1w)Lhk_y`4(if5s=h03R|55fMNDAaiJUa0v zqB-c(sXcR1WH%tiqyIjPxcN^#q~ARLU(LeKvr)uWWuF3~RoR9hilnE583E&8GlJhO zoCL|O&{hpmhNBY&1pEjvX$mTmnB3$91)dkv{4x#_Qo=9>@ zLHU1lJi%j>1?--eqasgJ6pw(-G`LQ5@bK~f4Mg_8H|D~m$YwzFS1;<{~_d5z2`pY55z}Vy0z<`{V==uo(QbE!d$~A7{+e?jw-hw84h;9n9c!Y+p?1RX#eS-)=Fv*i}KtE^fdFl~WZ^ zG*!1pr*R5NTEbl-DqXhH8Ze&^>UaRR$(F6{u|6{kue$IUe3sMPU$3g?4CwLdf?$#_a3}xfa6pU zM`##YH$=pf<@`O`-l82eKnAWXM+lL)y~VzQk=l~EP~3&JQiNr&$q}Bo3~kn(V%aaL zbm`K1n6QCO^Wgmbw$LpUn0d`f&c+<)cIP6um#_bGBn3bpz7+ezZZm4&rB9DS50kP& z_DmHrWUxA`9i47!1Xs5jerGc(DylEVr$Ydx>$FPW`-rHfI{QbM4bJfOtpwY^JQwV&b56(3Q51>KG1L;obG=r0u04wWe9t z0R^V4A^|9AHzgm{>HXb7fBO3tTQ-3VJSj45_~IF~yPmYZg&0k}w(q3=`eKAZFzjXh z-h$vnmSD=#hrYZ^GB?nw9i4X)6infxQD3C2KBYFi7sk>;`J6WX<*d1m){buJI#5aqr)lBv#Jxoy~<2ty6vjOO^E%Jalz>@nD znnn&xoquv?mZAtFUkFcO`w%&w%Jj=F5_jFqo;6+1R3!d>qIsI!sBSLZvWFl4Dou{- zyuZd)+PC3<28#(xN;y9Ou`eFhdw2I<4d|x@9b%33Y7Nw-z2-jky8XPS=4T#@zp+Ae z%du^l@K_#^_OyCDoOc0#hb!1X{B7~@6aP^Sm_b2~T_Hy9fy>f|_hVU5GuI+P}K_mfWec(kP}_cG4plC3M}?SNL`w!4eUD|cA<9B5 z>%5YM-MrxtoRTdapYy7`xeqi@OVEU{)H7^!9ZLH4{l*VYxw}OiO|0n+aTv{2X_>65 zwkZaFlV-Gid%RM3HZCVM0tHwW-(RB1d4IpK4lpm05_sKoY-Jdq8j~tWb8o(0vqK2&L?AUJ7zR!tETw- z0eQxh+uG+coE_nr`{?zTvt7W;^jv>{qc_p_*r|9I(~8!&(qg=tGwtQ~$1ggLzE5Zv zeUGB|gT)LVv-%J2T`Mwj!?>-(_RRA@a@2HYHKCMiG@u~70P0lUK4!t@N01ExJ}DSk zctZW|$zg$E4%x~C0Kqd4Rf#0M9=~*ZPyid~14#g_kYUEozSdz7B+Do*i+h(ERBuoq zz1waBm92(`r;J)FBlF(#T@6vQiKI`N`B`||_r#j_Nnb-q~! z#a6@HqX>t{jFb=)WKeFU-?SmobhsfLeTF5y;hq0us!^S|k=?h$qt?KV*s0F4#zS>~ z<6I>%3rzxE)R#qeY0s5yf4EJbkiv!naekym)2YA2fgnLqqO|wX>QbOsDYIK-ZWQyI z+3Zkx8R!1l?h0RPe3dW3#}u)Q;ZEwm6p(3^Z=4m97r%e08)eOf&KNzsA5Zs&fkX7J znYbHk0YEn4`%0SF%I|-^SYXuvlOrsOZHE9`>F)P7W6Z~r4|l?WBpODH-seAf7a`<# zVU6!_IrH3;{4O;ALL6lc0MjOwQq`!GWN__}(}9;LsLqvpu(yHTRzfIZrTpgwk^5u26zJ{h95Gto2t!r_g-O!huv$9o-X4)Ac~EaHy`69&J`Pe z_l{Dduqb@tTs6Bn-_rsYN`Kq-18BHS6~H8x93Z0zH)!0=ik|B`18;q1u_uCP7(!*U zGD7^`H3?7~GWo_#sVEWksKJ0O*)G%UNs zNHJOqsgturgmFw}(Gb)?&AUhfVlKH|Z5?t+otVy<2WK&Z<0@$c&L3TdX&hv2< z(9HS1?L*EN%)A$dgXuz3gv|L`F+WoCHOtob3tLA0kVMl2o!)2q6mDg_3M#&n{cmvF}DwXt6|+oeJ5rjom1fecuhnJ~0^k zSjNonn(lMXeczAI_wzaK-{T3P%t8R<6xFqhT{4;KXaWQP&_9TUHviaX=gq1NfI;sr{DIIBaznEtql1n+DcFdEqKv->BV8n5$S47gu*-pdR7aoi1m1iYdYtv-r(C%9 z)ZW3GW#*K7a4=?aptw%)n}x2EpjQ6d0v%b{*jeBDsnQPvZ4Pn=uOG{g){y(uoPahz zrF^xtBl^A2Xw`qL(p9kp-R=;zg&k5Jh5PERj8$C{Fs$d}*FU(dshe~4x~-aLimm1~ zp$8`+MOwQmc6c}UUEdC&7?5c0M4sg%!5cx^Z<*#&T`mxXm}V$QyjT=>T} zsj3~%&OSKR(57x=aEWIVJFYp@yYFs*KB%_%cq5?xP2G5xoB;Dd%vZ1xtQ%@VX2D1e z3@&V!&ZCMTJ3Ba@=H>^M1shLyQ6mk+7VT_+t0apNbTYI<)kj#hB#$J>{s+xChAvW# zR7z=EP5oVzR3kBg8i~!E@5%o6YM?AI65gNxz(h7xx`(1JaCr(0=Ud$A%u4nR1#0iU z`35&E5qmsbV;Sb<_N&{1S3jd<`QsF3bD_5l905ycy`r+{TSrjE`*rFK0YBSEyihbW zC?`nm!wo&L_JqaS@t|Ucye^EM+>) z9`~~)OC5piIv-uAU6bXpvRMsS{@ri^Pzc#{5WeZ<4<4nX6n7X^^7Fu61WyVNBmfck zg^_(Hmg9q=PDWx0@;g_-=)P9kB>Nprs;1lX(B&8Nnc8SU;H>UG2Qt2DQR=wUuYg~x zZ%SOI=;5y-bM!jSuTNCsLUbSq-;J!=fy|l!Iq&*q+``+a%eU80gYG?BKf_LYLRuRb zIRaSgypQsPS7%3W#pBqB8LJmUzt;q0Hej=rt5$7B(%zJD;KaPe}q~pN~!J}SGwF{gY8UpS2zDq zjXxeAMYk0?%KMZG5I!z~xo~uUj&_)D=+T$uPymVewvsMlrxj&+#B zP+?0X5FhMOW`EP3z+PG*31;>>g<6d(MTS*6Zu|RG=M+5hAFP^J=q<^*&zFH~fpD|I z)1XS^2I!wUr&b-$;tQONr+aFKgTV%?lBIon6H#3l5>V}5dqMvbI47LM__xH43cFD- zklcC4qk{iL*8%r|O55Q2gQH;9e%Xb*3gBL#^Vv-uAmPNo-f&+0V=$bR;&JDHf+ao6IOu}v-@+w08jMNvSIGqUK#oMGKsVGhl zBEAM)6Al6m#O;i^2};5~R&Lj`@lI9Xe&lR>g5vt@HnW@@!XL3}VmgHfx>>eZS(W!3 z8DIo)@tb}Xa^qsa5y^{xc6|=L(k=fv0soNoe1+9xPjM%K~}vH3)2ZPoN4&fQ?o9A_=Zte`&dgN0H0U8(GxT1YQOd z{Ao0rAEpv8bLoitokKLi<-xZx{Pk_J1(3pl(sEfF$6N>)%~1kO4Nw$Kv^#TQ3y_NAvR=QOm1}zu_x+#fQvy#qLSXh=CT9DX zWsdgVNpf_{A(B+MK1fP418&zJQcS0kny86Cf6`8#Ck(ct?6i3P8+f(jHBPS#D=GteK;#|=jii4lC-eVd&Kj|1#*N z%ieN32UKc)A5<%(aa74@6A5!K=eAS}L~wM#YpCW?{44V@L^hOTDrU!a^I~>;bfz|E zul@b{L4HTJ&zOO-O|X3J?`ZHVfH+U1rY#BIH-TZVANgc%!=GaSZ-AA?JI~#u|NEc7 z0SDmqr~>|`%9HX9BpkaO^}i0(0J{gI%rBG{H~$et-$g)}6gz%BEBN=%+#mxcJP2C_ zL2wAsYk`t@lS0#Z-nfd--<7S2?()FR3(pvHm zAwLDao<2VO1o+5UQbg*L$U%P%{{GibS80bk`L77@;G5jwe2o;i(szi;k6IsW{mS2V z6z_jit|b2&xmhmlzp+Gf0fY4E`0wIBBi{u7L5PxX2VueHJ{0=q5DY1$2rxeR>^heV ze!V)W!0P^gq1ONR&-`C!&f!L+4Lay2!t(crSnw)%F=0?8dQgddB|YUUM!O5YC@#F5ZZd)YV#3on~pg^Yc&M8HX5YszR6d{p=x9#!5C=iv66Ha!`AXk^-Rx zpcuq5xYo&sip=7_zhHb76*U-Rs~t>b=LSRzRTBG!CWI(XtPxH^Ai)fz2W(b21P@65 z0x5*UnB#Le8Q4i7tS|9L2s0M(Jweq68hK$QID%OBlp~4W3T%NlKZ5b(8Qy523c#0b zpkoSt*E7T2))N%fHhl76Mwel)xyMpuu`cSeWvIuxSC_`g=$HE@AKGT;3ygX{b}_Uh z&I$WsBJ>587DW-Q-Wz9BGij|qS%gT^Q|x!9NQpT1Q|#l?HKWAYn$L1;CUDi@*rN4~ z#NH`TZpcOp`=C4sAFP31v*bc|R@Dx=RS*beUc;0rO#~e10!a^HY~d1cjXDiBc+?|v z!NbV%&ycoeC6@(o-e5RKs;Uci49M{K=dVQ8J}#`IUT6zOH;KqxTsCvy2GTIztjCHh zx>wiS7W>bg6StRtOW6QG>$7dpGk^g`uQDz<@Qp>Q>;fuiRS1*N-=!H!zrrejt2Gms z@Z5WS)dX(nmL%_-6LT9oWX)Br<_y61NM)b20mnrz6nZX=}5t) zkmSML4fI@-HUDMzEVXr|suFs)D`Qe@zuQ!9|G4(80gNK!@s4+*rTszG)t@xu?+~PX z4d*+}E)v=HHQBn}{m@n)5jf+g>Os*^Ub1c^GXccIVp}H3WE9xdZm{>XqI0w}-&%3M zXG?R$<+**Hykfqrqa5FS-?DhM;$g zV2zhY6jeUXolB`P&nd_sFY772rGS@=oFS$hKSdkWyz?N?wg&xYjz!aiUh&)M@-;Z(~)wdmZ%7AB>~FE4hMqI2fGBR^8EEEy%!$wfB3M z?{ZvHKK>?*&5f!JP$zi7B$RRax>q~3O7hKOw6xb#+N%ey3GHbW-D0vP74ZHX6aL3k z8w+5{CGxoY8ZuQ-(eK>N^t8OL14kd*29Ag2_T_c6&*&#&fvW!Pz4h^GTuh#RA<4_& zHM<;lFWOxJ|9eE_@Owmba9yHCc>4e(AMVG=q~m>J;H;2Y{l&nEbDW@2^6q5FK1EKo z|Ngeq!gx^SV;7HZsc|mrFMN~d^9SVZBpJ_YCSQ4jAy`m0G)fKaKLR)fV7nmH+<2}} zm3#x5RJyR^oRIrfW`fQB$m9VE*2YF_cePWZv*u`%=KJWHPAT<89gR}7N#4mMEMz$C zjt)ro*2|7+#v6{nu{rF^%RCZT#xxZcC zC%A+A%zOvO(AG+kgYN)-KTX!e5Nk73Ke7LESNvjScBC)1K19TNlv%6H1!mW~BcU=m zGb2n5;}os6o{wwB8-3)~FEouSwe4#A7-i+r!K=V+69KT%g7k99oI3?i15RK@Xm}xP z0m+>P0qSRs(|Al+0wc9E)i_%^m}wM{->RXH(U12BoocK`+lxNg$I)&dJHxp(fHo>( z?=3wWfVYsqY!o->NE3JC=|05Os{(!XiH%Lz(U7Q1B9@h~gKEH@9F%p~^S)BH+&<#& zHuF<`KcAB5&!`14PQwK&HmMXQN42pmo6#(nlwD%TrpOA|OHfOZRD8+A&&SB4ghwD# zHcnfPk22w`6aYVS=jOS;->4jCXqAj00YH*fK#zIsvPE%dDzhhw`w8x zy<(@;h2AgzIF);XRcfR=KJ;Z)zyQhM)Xs-9xXs#Kog=LFhT{neffIy0qXleIa@r9zZZ!aqj35 zScIA11E7+_wj$y2yXYOqoc(hM#tekdzTv`!V;xsL5Wh=uAAStbFLZYO+J6&}LK(E77^O$=km!AG;o9oZHp6W2)mZWMZ7We>CCq68+06U zL`PO$qEZe={KNW1=7&Js(zxF32R!@6lvP2q3^*-fxZJrHwrz|wi2_Kk)^9)fr8QIz z@ShwLrhC&()iv42N8pxG?Wr3nbemFC_fGR)jWGRei?}LgzG@)hzXG^D^_Xg}pgfak zF?8eT7NSMpMsQ1QU`H|Q8@y9fJSDbJ`xUp)@RK_DbL-wLUB-k8mmIng2Q${7DxQ1Q z-+E8_dI5w8bk8ZTJ#nM1KTlgdS4OvoBEG9R-C~9-$TUbLO}2ne6%**GjT9>|J+tKn z4<8#^VCmi8OfY*@_y8SQz@@yM-qjJnI7skpwCR$>Z0P1%o%Dqhh(VkJA3FDNI{Xn- zsN96fs=}W3E<_wk3|fK7!7MtyIj3l1S!szjmGIaJcdvfStJ^NExFwSjL|0ODtqc2s zi~n{brZcO{uNr1}1u*cidWwEe>6KNTAOZbwWf%9l|#NO_B8JOSu~oj4)fv*RpcSMDak zR!cDbX%DPGH@SPpBb9e-jb%w#--FVSOz&06ppep)qo;VXCKv9#i#o^+V+Rf<=Z%a}NNb!xkNaGE}4K^NiN_n)}LAV@`kN3-sr=BhquL$I1~Ttr|-yH|E|1MG<-S z>G5_UHGzJ$fRl2R{)zJZSm3;0EO(F%wBVLWfk@$3?ER7O_yFxaZa_LfX5EKV)Pn}_CXIBAunk_jODESHZ59~(;AQdDle&YmZ>ho zJwuE37fyN6X)(8_DQjhG@FLZH_P_m5^-4ZpGDN6m#m_)@CmZeH(5a`sTn|ga+HZP~ z77yibf9e;;t^$Q+{l(VQ`Gt5hm=Xk5MP)hNb2yQ_qeJnD04WME5_+z5L27ourd`bKwZQ+`NL;ZiEZ zCtkzpve97E(&I}~M`ctL7k@;I1o3E$B5bqSp$&m+6mJM@J<$`1IkQ z3e*bG&(1)IK8ubc<^Bi{N8~qxOi#Td^>->V9*RPDI{yAZL?g;i?q9FV|HEaGA&n$& z16%Cp^)0mc$Y8=Ouw$y_qnp#OF)@V#h%dT3%i|Sh+e;%3xmB_kcaP1+f_W2V)i$89 z&h7*eN8lxys%i@AS6z`Nq}F$K0xdvmRQ(YfV<|4h&`p3RqDc^k zPMPRK5J|$uVoYX1sM_0+=h(;DI^XwDVDH^6nQck77_E{b{OBlp3Pd04(8B=mY`rmG zzzy;3)Y0$Y0VV2hOr7&st;IeG$0fQAJ9+~GCSk&i%}7C@u_lV1D@RK(n`~?diFi+t zk8B#5Gns7V-zU)Y@ucPaVmZt3s<|=+1P$Tqcg>|K!}8pb$qHCE$IjP~piwV{$#3IzCbD+hw}VMmOuX6;pwM?}q!0r;0AqBU z;I~&zhxJAV@9>mio`t43NG_*H!rex027aTJLW>j@RXEtuwo?(3<|!IezQ8+sXl5Pc z=vEf9EZJq8OCJC5!a^#qvtjGcpJtbwKEiUDZBxTr#ZF=5eDi>Lp`Jb1FV1_=d1kYY zid*A9g=8&}+bcvxS-j63hGYI5&zO1M=Z8%^CcZ52Dcm=-4xH?E6{9E|s5>^>wVVTC z)4F1Mr2D`h!P`Q_L8qpI2ywzQJeW+Y+31Spor`-*N@5VgJf`U0c2nuFe~PU8V5E`U zYZlRl!UsxN2O)-5RkSmj;^VP9He@_ukqR#fxMwTC*!_s?WP+(!a;NvgU zkLH`0+w+13d_eNIGy_J5lS%?oD>P3~9cMS&=p{{U3z8914@;%FO{6M{D-3r+cCnE} zjrX)GqU}Lw3WE4+#%dhF|GXgtAC}2)y-+gH`#pd+qikp=#dkGQ-uMi)5Cz-BT1`18 z1Xkged>Cg%BN7>lFpk@>8mpwwfAE}kPAwewl8($l5j!!S=~a+;3t!uam>^pP)xIxOI4^cn+G}ZlyA-DiP^H#{ zTBu`Rwzgbsmu%8P;P8rV>*nXz7ld_6Z0L>~R!P1O6_O=t$tGVodum&j#LZtA$gAPW zUuj?C)P7zPSTkhRKD-7V1&lJ+?J@6C;i~b1DganJhego)j*3_{bNG#e86pxsSYUV; z@UoxZG-e#z)3SN)7FtIYO$VU*8$1cm+Y*O=DKV7UA zFy0ISyyn3bDWM6>M<+Q!lglue%F_TE`Ls6{jdvunhrJ6{3*zcM^K@(K9n?k%+en#A zn~23zJ+2rD3n#E?zJ#SjS1{teWHGLEPZ2$93?$am2J!aw zpGw9K4n~xgDHeYq&{{^S)9^9 zA5alvUa+g(plUw0GiQpZ#%tUP@{;77)Hk!c`kZz)F0)O)jb2r6)Lqmdk8?d5 zUPJT5U%%a}aDgJ*K_|~Dw^g6+I%LH}W>g|*@wJc>*SZF)TDPn+oLbHsFz+0=cF6*3 zZdR0G58B#8s^8&6#^_#hP!|${N@CsrzlQ*o2Io|K%lCP%rD>iPJjBd8t*Q zA(}l>k74HBJjSG9fCA9F?+=A0^Xv3H>G>fram#M|)y{azP1DZO71pJ}?a3rqafUzk ztJttCY_n$DSb6s3USF>t*HkF*{_Pe^i+RF%*3t&`9Ref+Brn_45dCH?b@}PFM*)NeW~F zzDKFWcBN>l0Vt*V^BGfN=68K6$XvQ86^31Zy0q#%fR1i5MJ08ri(_{KamyEsmXS!X zoa6jaI0Q)_<_OLy95;zcNTUO#_uE(V73Y3sEl(s7Y6q6<-e89<0dn%BjCWIEApD~5>X#f` zUGhQm(S|K?&Z`91xLv2SRJTLshl;2OM=9$}S0Ou|8%EbX1SgQ|aSm3&IWGB}2CQax zlNevp<&1iQUY4|lpNxJ8?&HM%-Iq+fR|JykI5aqFAMJ{)<4ZlC8k;s^1NWjxy)z-lmI zr3n&C%+%jR)(Y8Hj4elArddx-Gm)-YIqOzcAolleKU)b5HLxrnbc&@h>JqVV$WE-$ zju<_cpoIqU9(#{panc-^;%B=v z8hi77`MX4qp7>>(=L8-5qT;u`g0VxyLwtNJNl?`sf=vGezxRr<$XsmH5`jlMs};ce zxU5^>_EvkUvNUgRdy`KBYDe5$8%U6}%z}WWi?~!z!`S-7JFNL<1Y*Q15Hx!VIk9jX zR$x1IG2|%y#g}zXx$1=}uKVXFrH;NiXVAI)J96`=@eYq;p{!$jM z1ry^RRsA*Z8%XJ1(U-i70$oT|KvK(8>QRUhf(rVp5oHEl>hyf&%yVC0su%T&1MC>Z zf<{+R>Hwj7!=c;;yWBnXQDpld%Biw8Flj#ZUeCm>Uz*unfXIVu#w;6-maobZo95)& z!2NxxR0rHKPr_EfGt=jM@FM-3v=Kmo)ri|}kCNdVN73RtSR^&G_dMIOgx&}3AM?{R z@mjj^m9StoEOho4GhH(H7s*=+C+SE97{Df{-PpZ8;ytOkf1N{lJ3odqP}1mj(2rcR zCF#avPoxHB9ELt$EVtKzqgS8G2b^9#5sbmV`rRUX{o)iYkbV2sdixMllt*9W-%>Ro zcBWN(%*&ju+upu=bLmJ(2~ZyuBg-&>oA7%(P(p2wv4LChxQ4kgzZ4ETgk0cz6_3A? zr(aZ@hGLOw4K1uY(oDx9%bz0Uxw$!%@`ZfT47L@amVEZC^Ps=ze>VE2>Jo{z*)IRtd#qFI82B+?rd$h*+tS&QBw>|2uX=kQk(MosBPfSqy|-C5Mu zsw6nJ{HIXE5Rf3qlGmgoogvENa0@gxt8$PV8%Qs76N z7vG@R3OfPQ=hL|gtpVpujmPpC16OSp&<2u(%bF3>xG=iDH;{M_u# zZXyzGsO#$WR%Jnh>yvuyC`IytqqRkWeDXzKk#o}N%B!3dyR~4Vks!O_(2^jN!DvF*vomcaJCwO%$TeTy3}L9NM_uSPaBeb8=Gz9BdYP z7eqA?;Y*L>=2L2LzI@?P7uMkgv?~-1s-Vr*k#ytuhL*-PiHe+c;Nbp>BQV8MG*8Bk zA1Y-@#|t5-jh|oFnQI6dN`7^7%Eg4oq$pfgN?fgcAzTj%_=hbj|+)+x+)XwQx=H2W$}N#D{YH0glrlQQVA;*ChAtII7Yvc4@q{ zYlWH5py63zlmA#T>%EZ^*+V==0LJiEp$|(r&sc zNP4a;((wDI#mfcBE=&}>n#G&V*dp#BS^C&la#NG3M7f_t7+mm2bEavh~>N~f?+w4XmFRz z1zTKTP`pSSuGzSmmMa%IgS9woL>+QPKy9Q|t3)Z2jw|CwjKH(I%`qRY3Y@yvQhz5V z^S;-ci$+NTu#BY<%bGh=^{c`ja6FRixLFb5sqd%|2HmyXw2b{#hYgNg-|~J-8 z-9co8BAfQUP?R{bbz&D<^?3Tq6d8AybH&#d!a*iQ9?;X3r4(qR}l>z;W-_~S<0 z_GJY7ieDnPw@iCI%>phUJLr3DqU45~>D6!n2%G3qy*1{<7SZR~xqB;#)k7~aRjNw> zT~y@2!_pXaA_dh?i5>|=;87x+Hb$u13TRQrNQbHBC z@!ZTCZjDGR%qpaJevWG6)H5k6cT;1~bxz)Wb;Ez9q8g#_aKPt7iCu|NKV;`eJ7*ze zC-_L1;~epICsD{h&tKVya?ChjVLk1JYwM5~n=565T+&T-ei&X?JuUAe^3~}w^y(2Z ziWm}tuy;>H^6#N0^6QLudm%f3IyaC$6~uJUvgSY~_9wr0p)p()Jj2h3q|IK{le#>m zHXXVC!~!-}Pie+YvAE2SN268as;_Ge4UZ!}(YaSShSiQ$LZ4RT8p?8F0h3ax zy9H4f!FYk_Ibd(rCo|W&IEegq!*%*JkD6C6Tp1{(D6E|8&8}#&?M(bQQMW%DC=QXG zx}N=VuREM?k%@mIn{AwUtP!_3(3JC3c4!*`ZXp-kuQ6Zy`r~0K`qw`8-Q$i?&wBq7 zW^dRg4Ce&=*hXi}N~~OU1JYxV>VObbs#~hw2s(;7MFjVH%bueR2lMZ`A(iKD)^BX9 zUrc1xUZ`=K3p+i}Oh9cmok3o=MhU>!hr7|9GK;?t+;yGK#P7(*-W7+B1E-_vZAIMR!#MNpK z;No>Lj%F2Fm0%tZk>*5K-?F+MnFC=xpJ+mKC+`SLx$g(u%iH*c5){2yB&W3th$wCz z>a>THP=0fMo|-1S9Q{F{fy@M0Kr z&#)btLacjjz9(zAOV*KCdJQOM^vw(G`81z(H^@@(STW8R#W(34l=~MIyqxIBk#rjL zToFf&xGO63E*8dk-_(2P*gUqmQFPTwVahpkK0tg{w`Kaa?pnQ@7yh%{n0d)Ll#Z8J z79dmf@6oY1?bO_zG8)KVE8Q*|R%_q2;a_|fsQv^=G1O7It`niGJC)kIZ4i)_@*RkV z{8J~lJ%dBJNGJ)wb1&Zc8Oz4d#Bw9Y(Px>6KW7z_Re|EqfeZ(GmDs7 zx4-=Alnvr;hLLXJk_n&Tj+hyfX9ansL~6IhcP5CqWwj7=wlhWhc`_nu9`!CFiEtxq z>5M)EzdXS{5-&Xw@KNy-?as<>z{Mx>(*UKR8K8aV5R$HUC&*QRd)h|J&4}|`FEksT zRUA|_hSBfW!|ewY%2Rz?VNvHH-uD9ba+Q+qjhLyYeJHc*8?E=>UUF3sqjEIo*YCU! zZVfGr@{#)jdfF&tvi$ms86FSNLucaE8rBOnsk4ayGy9ce(%#sK0sZCCx?oG? zsDHo`{hu-JlPNrm)@2#|K8` z_A{6vz^M@hLy6SuuG3b4g5QshJqrNOr)tmL;QYsyV%&~Aza+-gaO`v?m(~^OtlY_- z<0{%00o4tskVreJfj7$1zzzWXF!lR}wYNE?j?e8FeLTgrQ+85IGB>TZ`087K%)h4@ zfr;5w)9s~7xDR@1rU|B``ruE-2^^qQ6(1a#q>&ifG(lLz(lsYWmyNUssKsH9dZxwD zh}0y}3`HibW~yyjlva^x<0^@0sK(9RSWTX`lnR<+Iis4;qx39EK4hzwOXstmvf$KNqqHUEbKIIEYEuCogHuH zQe(F@N|$&YYs9kW1!hEu?Y;r4+_0n$iW)SSa%`k@7t=T-b@;riE`6U0E6JtfMBYI+ zl`zRU>5iCL_G_5#0C;tlxn{JNX3p&L;81LuolZwdKnG;IpblVSB5a$2y&-7ai{%j!6a)Mq;l5@5)u}* zaS(W;DXC6$bONr2c|#z;T$FQWGTpk@$_cV-SPBWGI3WQ z7-wm1y(&Q3btIO<_bsFJ^im|tJvN7hJ%4qNFhkfS9)*AVM!Q3wGhXAJr?(t_zm(<) zJ?nb07FG6OWpUarpGOj-U=}$Tx=`tUv=KmUwZ;o&@2?b0QslmK=&3;Mj>d{WR@mpo z9R_kNsWM#^Tn~T76n{qw?$CO4qdAdBaK<&gVBdVZ@gU^OHZ0HZ(=0 zrDrtW8C`=`FWj*mPkjKSQa69}+ttT2Oea=A-GrCk^G$NEnq>Bdz?J*Ic=uz4k1M)g z1epr=^bU}59!;U}dGkej;zUcnHG1We#^W1xz0Z|&9@M{GNQhnq6d%vkNsH%_WbI2M zMG>d*k-lJngJ~2F{=bPMKuB>x$;O=6=9o%Q`*!A#}O}dKPHgJQXpEfvEb}w=xJaNu;a)dWSF^@ra5qlemt*{qzLTuXPQg%l0|aFJ zeACDw0y3B<+KOxys43SGDxIocKPOdk_!54P{21r32b$vAeXqT&M}s8HcUCg%4AcAkR4Dx^?!MwjViyW{%!Zsys-1q-RGg9cUU0eoVAgxW?K~X>Q|7`{3~9? zWG;-Cp?z6(Qm+q|wmOqE%%y^A(X0!zXX`6Dp~O~{v!{#uJ&fMTF7xBreaRG{Yg_kO z-;&a$h+IHltAXxL(jpS4f5kFLH7v*2Irm!9eJCis9l197C6wKlKYyKl*4b3o^;x%v zQBs3rlQ`SQyJtOM=!xmo7%7avvzSaL5;G;6L}6}{6WB(JPSs%lfl?!?1m?3N4Dyrf z0IY|Q?lk^O(EYzhw{h%JUw#M)=>Mg8!>0YFe|814z=z-?a<8`wS#CIf0F28KOQABK z3B9pM-V1es`zInUh~7aEswK4;YMsYN?Z+xJiXPbqkWX^omj#}z0;cOBLjCv-{6l!_ zCz{|W7e2jxs#sFZ%NM1m6^l;B+>E>O5eXE51+`y{vi2qSeX)=c0JK%W3vNvnaaz0# zP$2@N(KQR#{5y?-4p-B5!IX{!bZCXE1`2y$j7Sx3V-^u_a-VC>;Z#%}mhBRE%HP|< z?CsS^5pMZk&o0W+EDn3*7HM|^d4V|9sJyt3jjvQhPU1|w<8+Ylg1AfmUP!iBB29Mg zVzTeX)tN~KAZjNWZJkh4|=$*E2dNc!EJcMaW)>a@EC1WzQbypAV$Z-J`zXnwt`J zR^}GcduiRc9-MDF@XeIeZT=pYoUgNaybxIXE_8=QW*CYKe zrM@i|!_8}cxj#RO3}Ao1RdDtr0tSs~{tgoZV8p(pw<^sG6_S=V-rru<2NOfb_maA~ zI?RDp8|W@fcZOoC-*S09q)O_2PJSSe`nGO~8QG2f;S{;CF;=x9>9hKTv9mKXJw5&A zK2KRl0yN8^aIIZDW5(E#Sc>jkm<&F0FOIL=ZT>jW`8wY=?!RrHwt+suvy&pMeaC+{ z0s+t=APllY-<by6*32nHAq3T<&GhwEpA zmR(^X-vNX7ExLNF`fCn#s%&62|Mi5&g?{}sx!B=yqoKLZgvs1Nn@aF~3*D$N-N|=J zr%#3jiV`-lhWW6T>$91H*l zO!bXVSosj}@9(Fnn;|}r$gd5~oxG;op>FM3ngH3+7R|$qJ>S@yer0EffQ2{}ZSPnv zc4wrFqp8T(NYse9mw=2_CWX}k^%>?b-o+=9$S1FZOx0n4=am4u+vKDarNl5?cKh;WNvAOD&CouD@8+32Lp!$2Kvu!R}W%TgOs zazCR^{ap~uWHF2n$fU=>++T^(Md&XDzUXgYy|cei&K*Y5VH%j!u<@K^jZpx?G2i0& zbnj~&?|84D05%u)Y0~eqcOH6{siE#K9b@@cumY(igRwP-U^RprfkhbmZ6sqwnj+WS zJPEw+y?Dq>FJFzSP!w?(soD=Ou~8}V;QZR+Xro5;$5tc11^yjJ{wepv++aw$n=f)& z41g}w2zZJ9Bs9P1UkYqmB&(FSHSn=>hiEEng7@&zI|EoylPiHMw0Fiuz9(T)ObsC* zyypJ-ktC<3)A01M6NmW7WblzQmp>dKr@l;ruT2a9J-(r5e{!qtR)PPmy)x=%`#*%o zpJitc34A~CT#tf*nt}9D&wocf74L{Xgx;Gr4m;tklW_g{6_e^46G?wPEJL{BV%9l*(aZ|B3uXK+DloQVUgp1h)Z0lQ9Rj2V`Ts z1+1svE&;9Q5q4QWL)*?&{cVTqKG1(5rJV>42};wsn`my`5hECxdf_mnMGk9lQfr>W zG@Ed^41ll23D$vN`Hoa%+&oJ#H z8{0&2tJY|}1d%MJDQGI)A&!bXb<*#IPmc+a^Qw`4=dB~f~dFv}WKOTXXZKe?s<{S4t>E5hI>B;M8+)u!)&fd>K-Crbqg9yLs01gf?A;y>V! z1N!Yt&>K&^`0h=T{Ny6(BsAF%r=6VApj_qPd*c5en~|i0*GaXxF6{eTUNP_}Fg4*J z6mXz{K=waRfI~hYLo*17BfeYjfx%!nq!Py&{;!e$f3Rji{3-E2B&o~a1DuXjExnk1 z`ANRt%eC`=xm@4}{`25DWGuYB2zWr5`Im9Q4Z0-Oe9bE9h}`A?Ik4@oO6Ko755J?B zOd$Fb+3HBCjl(97}0B?EYIopXMNavF6W6-L6z9pLW*k&NPRsL!i6vf#0F2 zF)O#%-NGQ7faWsK`x1k-XS|Ro*qyw}q%9=?w$y(;Y7e=HPtH_cC0m6Z z?B(t;YVM>1LFP<-N$)}6c)xWoI}&gv60imV-k`wKe+i@h0ziT@q1^7aMU{xlc?@S_Iw_T!N`;DQL3sV3dj{dH=#OGoQ1Yp}+p+7-?w zp4jbBfK+!vs;AeQ)NC7Wj(fk^8xKMSo|g@HuLWA%IVnQa9MJ)!@?j{HcGC1Os_h}< z1xSD8E-&eEfz61>0JK{^j?GsID2JD&#-D=7!SK&gb4*kbM65TfVPPPi-_X>*c zq|-J;4%{&xl6qx=q*VNuN8%wxe%vq*W|H|w7@U`I`!unzRoK2|RQ9+~3R|oF_3PI+ol}6-{?AqO9u4`o z%g3Lk>faoy6lD$80E)qMC7rw?^x}4SfB}?%zF5FnW4Mh@qBX*mf+?P0|a7Su;&wiY?R*3 zt5G#=Jbz!F|Jwq70tM(P2zIEbC|7Rn+1zN5IimF~uPqMokGHZR{PQ$~I2D#@4<2$9 zF{S}DSIZ7wF$ooRcPH=J5Ty4HTC&sNy7gcJuXyX0#t8DU7^7rY!u5D;cn)p-B=Wgo ziPek2{D%(6{h-xgwxHVFB6=yXLu!BT5S~BAb>KiU{mZfPkUNF?ac~=j`x^rO%|A-U`Llgov}_56)|B4N5qSuwpv=Cw_Nnsjq|WC zy`+JOWY`Wf#=R9PnrYG;{!&h3lH}B#{&f*e@hwlUAQu+6f92*)1Eja3eu`w5JCr7h5y&8Y-EoC)pr(f+6HBzYDhraG?W*8+q+rgE67+KFaBbXxaVSJBZ06{Ro!V zu4%AbfJ^-he1P{H@!5m6z`ew8H6v^Z2B;yrB}y~`M)hhL84~3ne;OQ_!<$A+ms%ZtAWa$_M6{K5^JwcqwKIL+)iy<3sJd_ zg(1~q<8pk4SJcFf)AUD5Y_&s!g519Y@?|nnkF_^4rKZfek^6Zz?Sq6G)m(!qyo!|Y zo&QMWyfT*(EDemegp{7%U48gg(sS|Ec^mA6%)MCd0+7ScV0LS~mbFHs%V;}Jo_CNt z0YT1QC6882Xxsb@aq&V0Mo_v9xzjTQfMqCq+(Mh# zb|LqurtZsPcB+5AmBak0@^r8j3k2~tY1$YJ5B$Kz-hW6EAkg~QX7Oj9{T{j0&NU_= zZ>-cH3Y)L?WmTv1tUC>{Qo7}>H!`JMTs-lJ9KO2hl3?rBlp11hke8^Spm54X%;Z0c zABO+h3;KQOIq?Ou6L&m_r8FBl`hk{fJMYvL7L=a1v{-*%)uaiV@{X#VNnoH_rjp(%2~bxz(yVm<;wt_NyQ z+%0f5VOs$;0PSbmNp1b50i+pzp)RAXUrQJ#D0BZtQm*v6{0C##?b_#~L7U0vrF9o# ze%825J*|KESeA?hyA@I?hdYqG-J&PxKr4K-@eSayXHAj z`<;B-#7lP~2VOGCE$*?bFK!7IUD3_u2;Av0k03h6B+3wz6UFSzyX+3Ml;>Jgv`x$~ zzs_CiW;p}fuj5vGpAUC3%DFrBl+0V|Rs2=m{SziSwL7fm#bz6yB*`%zrvLFfl}+9w zHMX_ZjhV?PPJw1YWqc3l?M$O+-3S!-e($5)d4I&>?~LMc&ahB3NGEEd(yU7kmmixX z?iOF4VBg=U9HqY?Vy&C+LU?t)`*jay94G3ucO11V;T~#_sz2EF@A>e2phlnmdFcEq zD`HIQx=m+~tp@dOdFQhAe5?Ty%Oaiw3$XzS;(?|Q(zu8i7UHp7{!rAW-`vF8#MyrY z*p3fOa$XvMtE&zaFg^%8SP@~;9i~xEg7G@Jv&yn{>wCvnU;kPWuj9asdV$~UE3)66 zZp*!2pS-sfC{>@`a|kJ%e`NOHJX6p~&?Qnsp2(a3PO@g8rpX>}5oV@on^}%NZseyq z{-LF9+qgJECa~|!fY0Z*&UKRV7Weho#F?z(wBxG3x?c>UbjHNuDyUBU$_AA(_h_XsWdpkX z;11No-w5~$cK>=4;<3>oey4h#)Sl-I^fLqA=j_jId2$9j-7^f%YotgPcq}NKTK@6M zK=23W-?vNtXsl|zCbce0-;Pm}>jM=O7i=|^A?4~No-WMS6*)iX<&%ah?P(9aCt_|l z&SS$}%etdub6q!_MIDTVe#*wXnGb)~+?oubze0?lIW|Lt6N3B-*N(wkw{G%GI`IW5 zkDJ;fRodc-pQjp+ejaAM?Fp`b0;VN86=QC(ZgcH9O#DH;0J62^IBxrv7tAfHbNC2N zX-1oELU~N5V)SmmJgpUsuTWwgg^6=6(XqgW-ds{%-fBZ>-x)G?kAQ*+67ymW_T4at zU&x;4TRCC}pAWL&jlu{`RVwi^m|_+gti>8uEIh6W6!8nEWvcEVo(4{riWqUc=8spX z42&DPq-hMY^Z8`RCMI`a?*OL`f3#!beFitK`sr4(kUwsvPY6*6j~nbbcvrtKIM?BC z^2zzwnX6iR#}}51!5GzHxf*q$iy`jnLt}89h-;Z`{GjLqGPgMh!e{}IQ~dmSCN=uy z0yw+keYpqoO|vg#j93p&W6rsQQR6SZCp8C}Myw21sbU5T^bLaX+dn9YGr*^^ zr{Yz;zD?66n=N5w!>^HU$cUa;KmYz=$THHq`GUBE`P1nYxXm(jv>YRZnUsy4A6^v2 zsTuL zSSDEpV`fCiI<_$w49Qr>*v4QmzxO!z{ha4K-{+jueV*T+sTiNnd%3RH^;&Y&K7lN$ zUacYOH&mvcVg5a3p!Vffbew%Fl-MtBUjg#efQO|Ln1DsYpaF}y<({-`I*xtl7Ifaa zGa^)})QP8lqyajmJn#|js6OwhLzbXS`fYI&1+32g^A+Q&zJsjt`Ig@CDyFZElg^XaL>^9u$QsYF!ZpTJ zTa5`U!(G~0|L|UucH?mg;~*j z-)!}n>dr>t?;v9c>hC`6GN&)b@So6I`ysE#7?0cHzG;x^J5=?XQQ;NE%-!=ROU|Ns zoglC-Qv`&aEn=#mU*?_;TKYS1HP<-fJX5PpWm0jDCF_zq+iiuU$PV?4(>2+ATw_Pk` znmh^<3w+hy9~5~Ucx}Rm8778lu7~at178cB9zeU`HO5Gd#;Hnh?Ln+nW`4#t(kpzI$A?Bm`duMyUch;QI5?%w)%DKF%E>B>`=|83wgE>GdAJgd7 z!qkdX&9AQsZqAzE5{W#1B&0GJ;JfTXS0<;WqCDCoC|sE`Rj5T?OmWW)u213R4Mx0B ztnkAoDCAmcVqybl?Y5j7dh(?1<=VYGQ-xPlyCxl}@BZL|fMf2588r3ZY4UY){?O&Q zW;0;Ykhm;L0WougR#oiEaR=fg@bEVtx$4-Gab79bgr`?efA z(1SAh*$=3|C{KqRX-ADARmNo^AYcfW_NUSxq@=O*V5i)}JdSpjI1BjQR! zEyQeX_t>hbkJwbQ{NxSmM(;eb6I3U}FUnv%psvMi#jf&x{C%2j$}2HPLbT60RkYcXfWq3W#G{tufSMu^OUu zehM0w9ft#sy0mr2DD7=z!wUg8@-=S-%*66PK+tZEPYr zGkY_Vwcx=ow({n=2&O-=;lIXi|4#w%KMIBO=Rp}PFg9W}w_%&h+HvU*eDpU^7GP9P z&JSFAAM>&K#rG!|guvR#TEV57C-`RTw~kyD@bFWn6%Vs*2&)$XzWn0w?ln?Ys43gL zctW8)<|KI)p~gzRvg3Vr1RMaiaFw7>HiUSWO%#3AT4}E2*OQmUDS=FZ5JYP+uNJ=b zOHw{oDMy3tRJ8We-&~t}X2<@s-}9WOgLUc5mB|-!nT|i6oGD+XiqQ@U878YR9P`Wz zTktvkfU-<@a|Ds0Eh>_oa(B5xj}Gyoz(;5Win_i%zNbu!&Vj=1C=e+a5ITJ>4u^kA z!izaAZtT5yzZ%llg-B;da(-dVskk~)%iGyD_} zv0f#WUx6f|@<2ValEn^K#N6#+J>9G0e=!Vfd4D%ke)_k?WU?u!{}>Wns?g zu9W)#Q2QTG{Ga_%@B?Rv<~bCn1U#BIMuof_FF3aG>v`#PLoSHV{=3^&fnd_6FARb* z84mM$-^R-;UE@9X^Lpd~)eCt^uN^J|*n6XuQXH(-kTF}yx6|t{v`yiECh|S_h1UDh zY6JZqc3Q2@-5wcAl4^0G+}0&Y52mc)G20w%%+P#=AF4xBz_{}yx-U&EpWvwZ)c_YK zf#MqkHFp3UP=UFek=F$F_fd?;BozGrS1OAp z$))$Q_(p_g8t*bZp52U|XfMv}EwRsTh?ckoZjp(6jFw$%9i8QWnLh**I?bY^KAcUz zvAnWOkBdFj*DwKC$_C4PQQfh7&7H|w)Oh(JdR>ljLFhb4iA>W!vL(Crofph#7GfS; z6MXE~v%j|84rOoR;$pL%4_^%WGj4OLe`}!dWqj?dw4m0Q_@&D?ccqJ55PUtLdW^3< zdH`|I2pQ6@$(1gm-ItXcr$T@`O4SqW7|CkFegLNE@TaKQpw?`bCZj-yC7CF z2ITVQ#}y3An)N=^_heY=vFa??ugxl=-XFE<{j7TVQyGt+8}gMVt$|q!OU0-ih{ID-lA!t#>X>L$|-lNiR`g9tAs+Qq+W=h?7g*qT?E9% zV6r4BT6zA3sL1JyZo{>1a(?D4fqkDqV2u6D2b_#?(dQs&;3Y*$E(+pkY*M!~PkpVa zKH?2`!fcJxNz>CeKsX+s+sP#aFwe-j{ftj5cKUepQsActb+2e;eR%t(OF2dN&fCjT>$jKZsIv?F^m#SN6O|rzBMNyJ^-RX(6iT9Bg`9&bsF*EjNmfTG=HR~2 z_(c^-dQe(NMOg=<^BtR2DDSfVfL~Nio9^YDNpdtSfWO#_`mpEtTl<#S6u(*p>Fs+@ zwN(m)Po#cbGfca7C{i49;a#RSX)Bguvh1F&4i9G0e6U8Ck6Q1KAqBQBEEa`pxQRm% zi_gwtU$=SmG~s>gpO*(Nf2mu)K(Lc}b4mR$1D$+Rb;o3@ItIkM6 z%-q6`H9z&>b;)QMgUdvuaVN`6)qka*_H9kOD=;+ym#A*>LZsyu;3_80`>ptn*%7nM zFMEuh>=Ya&T+<&VY}@+F1C+K4mEl~zp50fvLMn%W7ja(zJ=h(vR9B~e;-i)MHdkVF z*q0l9QfAG+i<>?QuhfZU?_O78;uEKyObGkkLhbdfseljGg+(HY7e@;x+OwwMk+7;3 zKs)Tvl6Ez#=yseS7QXmV^TM|7^bjS!klKBdliptBS%0AB<^K76?ir$E7xD(lT*eGp zsx3%bfYgn5*goXJ@0Zue{3^NF){KByS2gQtEI;9gVAghutK>o)6+biM?w5*jrKsD6 zYOMICmHSMl0Yzf>B-O+>MMUlXbXkuwuPm2yev0xu+JWR($LpNZG4@7sJle#3vCkXL z9e)w(P<`}G3+6lpH1aWE8Wi7H-P&|Vv zfhu=|q;w0Z&PzRk7p!Nl9#H_o(ts_MvB4NE^+dvjmc$-K@21lP9IUUXCTytr_x>3y z?_+2L79+X!g=e^h=RkLNQ+V z4%gd1`UPoy?xR%XM5&Iz0^{BF6j`?wHUGk;8%*_S5L4HQ^pY0SQi1?$gj4C-Z!QKb zu7BW6iB8kL?|KY~#Kx-Lw?j>tAEi83hdx-ATrAFRxL4u3%dFH_KgSquTQ|{{oj2f% zMbZY!b!_iiv!Vm#$jE`r^_3ehVgq40I*6UXhy%awf768oC$*$Mtp8Nf;007^o=}3v z=)P5kF1V;{$t6h+ZOF%PYOb6V`8gqD4SW?6a_{r~ppm9GIsuETS;dn|-S_8;jt{Fd z^^%k{t#~w|d3VQp%6K3Y^h!QAYUv@7EuIuA@Ky>q|dy zaY{{5itoDQx$&&p03S2qw#&8@8@Mt7$Y1~wx?*dA4|Di_vR|eZX&UR$UKEMFS8(wT z>uA^@yn3ZVLe2LY{hYZ}lQYsk^ZGke=<3WnHJv%fWAKjNqKCgBx(RzjT)UyfV|H_Urzj-9z!8{mVBlEAOd1Y~bUc?mB*c%|NsTAHKuu!90QGw;K90YIlx1FHF7Kfb&WlETp1C1s{e|8vCr@cxA66WG(UV-# z6mMY|-+ojf@LQZ9_srQ5r1FKIn@hCHGYdUH+}&>eRo5&H(LOzZYkrB1fv@Fl5!gS( z+lp9|XIaSvP{7f$r8IElc^E&F^jz3c&B_pEeutor_-bqc5)Xp~1AL%6y+eJLtg9xY zb8z;W-5LIV$!cX67b-eNiBG6HHFOYh(6gT5;Co2Ag7W!-xH|J*n4nc0r1@?UX;B=b z;5@Z0UQV*Ku1@o+a`eC`nGm&n!0p#-Pctwox*D7GP<)$O2B+79Xk>w@(RAuDK$FP5 zKeMWtfSpZaK9IQ8Xb{BCT9psZcB@7wRgLfL+jLHwF{UT2M}h{)Wf|lJvi-i1(Jqrs z6x$Io`HZ~PRg0~wlcu>wqvbKwynjiqATguDf=ruw1tF@-zyY!Buk3{EoKdr1@*=%;l?Y@`) ztn2t+yOZ;-;LQK3c|`r(nv5rGC4DsQ@t{UVH=(HAxm~SPVGY* z9_`;{9jp=A5Fp%4L<1r#g0bj@`5^@$=F`#> zheZ9A*_(gi9S)w^6#+bM?%)65zc7{^UuffZtpng>@1!5|z?D5l3`5v<>AFd^9vgSn z!3xg7lm1Ebx0%5l6>#|&)6`S*wzfF3C1V+*WsXrrXG`Pn_T4`7Ugi1$Yb`N7zZAXP zA3bkn!F@B>K?M=-|L&FkxAz~qjq}M$@pyb#)V^$OIh$K}4S4jCtKQ2iD-%ue@+%)) zEKaUDWPf?s{OR)cy_df8?B4_SKbo`u*Z7e@fx|jRyDWs4=7tBpN4BV z_m`(*0~RMTQ-Z&&&5Z_M9#7U4DM!GAXRCgL4Sc!GVJ56BjD!CA!t(O6A48EaQ0y2R z)PuLsOVi0&Mg25*n|2+$(grqu6c~nhco6x0 z*|KBbF}8lHVSZrQ>9WOhLp1x2jBMATD&(#7FSJ5`hG?-PMOQ@5oX<^fnQuffaO`yE zBVTRuIsrOL#KEuTEl*IA0!%15dAsx`FiN@wxI&#s>l>LXK3noApFslULNT%4B=6qG z&Ahw2ab6Q$L_q%N%(l83Eo-7%7bQs=j0zj8lML#7v^)=7Bf44*sOmi1)Gl%etxFrg zP)yW3;AXi<{>knCZ_E2%?S+U2&P$WKo%LDhCvI>v+DGN7oz9-wfx3~#*kZuMt9dRA zK-ZYrzR%wMDvEZkH^D5_m~@KXv$(<#v+G}Bm|`1v<1%m9k^z+944h^7elnl5c>HV{ z-&`T&(9?btw6g`aP28KdI<%+NPf$=O2O=^ZAObQSFXVb|F2yt>)Yia>IFW0Ke!l1U zfgeG7TXli5@(t&Z%@E-1Emd}R^V>6dK3o6duXg@m10Q&SeVb9k-=5_RT28Ru@a@h+kmW2f%dwwPjc=1qyua&-f=I*7t#RKiz_sfT=R!BT> z9XJ?LsmX~FXa@JC%U|WdMx5fj7?<{<>^v&gzGDk$jL!Dis3zWDe8MZV&^$L{&II1J z>@_B3Vr8ARxZk-BAXzyVs<$-6LQpW%f(K6%lpLqccg_#>T@bgqTK zfzNcI-y={B(K%Vy-}!LvsBk}MBxlcXC_?0|MqC1(Acqr3>JZ_7>Xm-+rv6lP{>c_j zeusi*x2sP4**jo5#wRop1zm4#Fv(J-X*X{c;z%P8- zl>=lMD|_^QwoHu)X65N7s~s2GoT47^%3#;3pB|L6oHz<9=D;Q(jX?ZW#<%CLh*qv8 zQ|Z@0h_4CkCUoR8^kP#|Qey9t^68F?iOPKYOF#|jU|Iu-yoGkU6@NF zq)jp=`H3c6YNt=P9(SJ{_U=fa<2nGN)-gpnct9;lHNeZY3ELAgjH z^+D3Qk$WG%^a*Eywhd`;1CmtBnkxWN?sp(? znZ|NZ?|_FJ0-5K3t!gb21n;eMm;2*hGMfJRJ~)^-;@n~@mae$6|FV#acDkK>j(9;a7}aJIl%JdNXeN4FFt_qKHcA3CBaIa|EnwY{a#KL z)219eow!=J*{=O(y~GIv2Il@(6Jl{=fbK!H$jtu46W|5{{JD})*!;i(jaV4oTjEFu zEkv)&Kt(nXq<2CZW67;(GTLj>7NG{lK2mwk6TH zDGsO9Nh=9w_=C(9adrQuJ)gZ~yrJWLLh`xJ8`kQw-ih5>@rTnhPv*V@Z?fABma%UFSJPux;fAFLKT; z2nf4qe^rd7e+Ouo4F}YzAP)5~*Yw(?7+h(w-B>QW4O`c z0D`&Kc(2*)>Z*dv^a+CRN4=dAt2!s|q6?eBB!*vpDTvmqs0bU-q6A^u7XzfsRKWc! zwQ!R?zDCDO8Uwc=+CE^0uFZ+q9t{l*o#@GlDuGcfM;FJJ&H%P~B+2~boiB##+`|j) zFXS9RZav%nRMZbD2v2sXuGK*ruuc-Q4Osfxhwc$x?g+k8rKqp+3qIk0K!%lgAOcxO zjhF7?-hB8mXAPQxH7zj)1a!}KgM4HK*hf@M5DokK{>k6A?`@5h&zyX$vBs!ry2Cdk znZEnz^WP?CU3KNm%5z1`n;ayKi@rMoO-iPUmlG33Ee=|{LJXXQsdmk#;``mWGk*BR zyGKtkC_7hk&$<2ZWtd^Su>(jmQVGdFCu43T;Ep22w?BsxY~PJ$i$ov0)3vi8VAMGM z+MB*)0m(C3k^226YI&gg{dGIY_ zS9#AQHoMmhcTt#(V~=9BULV9|68e*cx|W!HAsFTpX|DD0%y$bHDC-UJM=&_kFO~9{ zgVNK!U&&P}cu)#6_-VV0xdMki)i|`BJ+`BN1gq=NQGPk%&|}0CVJ-neVpT_-nu6L| zRfqHv&m$%t)Th3bK`ZcmgE9jiM|nU;zxHcVm>*Jv{R0Pn#WUb@M^gfHfk{joLXmAEOx|oMt()+p zuka$c=i6_{VY5IFlnuuy%`qa!HQMJLE_O)@h~>W!k?T=1;8qPNaawWe{hgrJ=NG?| z!_;NRxtU_As%xwB8p6k3TV$yCL{1pd)_nLv5Ti{=`11kG_4{=D+xYwh1xI^2Zw^nX zn0ASHqJ@n)UBSVwy4xo5os?d&64eis(L~3m+p~*>I(6d?hGMPzmh=?8`=kNMI1&L_ zs1YeN%riCO7wsm9x8uTghDa*AUy4R{ekL`QYlzNSM%>3?Ao8t;beA zi?CJQsN%N1&#_5gbb*@q&>O9*-Vo5eyQi1R(x6pZZcYsAH#T(FN{TM446uo9({ zuMJPlBD~dcIGoJAv?oC<+H2c~g^-R6-CM7wdOYW;Cr9TYcO1I{UFZ-Csbd!TiRIqo zS)h#$n0C|K5_IlTAucfw0FI9B-)5Z)ue_Q=2P7`1$1c>ov}aEgE)9J+l%VWb(hzez z@9X0&-386IRe?&NB2J?l2Rq^q7TC}4RrJz$QShLqJ%gX38mt?rK0mnmmyhes5+Ia$ zCfv699jKvsIQ?ttm14fZuO_Z2Fr}Sv>Ha_uS%-I4@?OEvb$q+{Z7{>}p9^_+Z-wG4 z3NI4WnYpmDp}l9gho{PTslW!OHrWJecmdS?zE3MNwbz<>J)??4A9l1oiIm6AJdz4j z>5>=lG0*tqM?+6K&d21L4>Re^P*J601OB_7w)n%L#o} z3LOUki0pl*o43y`iR$cI^N=oeu4=9hiz>1l9gNB`VZz|Pv0O_(o_ZKf()<_WfyonW z;*uEOPK_|IFrJBV2@KS!Ls;k^WNZJG>`YI<@)166-0%w4D3tzFVQjAgE%49Uf*v#TOp3IAmF+f3`n2TW{s z1<2++Q8V-Gl^-kHz5YI1kfC}D}91GU{WU^X!MP}Yj>_GoCN!KB331D9wi3qv3Y zDB+X#WN?C>SN3?wtm-dzM9UZ=ZOBpL%459a<@2u9EnsACOcz)gkM|r`@Sxf%byxV- zn>Y-7io`N!K3Wv_WM|x)&qLE#!&iel05tY~y+?ZyUW|+;=Ga11N0oFd$%cZEtGB^? zQe*uc?*!T9e#Cv}8O5Np&M##Qk7W)zdIEQ7F6U%>q#p|aw7-=<2A(bwQj~H(YJ6U$fQ1sHZXfy% zJ~qa~hc0gwCnviwMZCIor-UIMho#vzPr22%k2G69HCh`m+(CE;!50JOa$H_m5QkD5 z17SMdMqeSQy=##L$#aAsz~4Pu+3}S8OJmf^6}=4jExC#~A`XJ@BRm)5gA92Kx&Pl5 ziew$%V8-D>-tL6d%Z(+brFI2<=L_s7+vYdvB%f^#v*DZxM-YRhyy}>`tTt{XCw15J z7DSYYA*=^$V_q%B<-+Q`7_PGVLfkZ6 zQ1QNk{B7jt)(B?1?`8FZRI5KD4~FkVhXuJfJCQyX+7Oa+20zYh9J*7!dSgACQ+3X- z=w3C;^j|ob`P_5tNCk)!+P;@KbmZzq%Cw)$qnhJyGq>&HVo&5)JGAGf(}XI@mtykB zhI#%v9qC%8sWzWXp1q@Ah0PE%%^T9UwwH1 zhS5nlXKt+(%jb4u4C|)Jl(NGuVxp6AfMRtMQ6lbCLtBFaxkQ61o{3X(;YEI+jgKYn zIdS{EMN6W@VZf`*#Dt5jyYwT=z*T!7zo0LmpHy{OYYa`Bl(b~KL(xQ9vH4m?{Sk3JlhghrNdyFsh0H3zThd5 z$N%~~?chbwU|u~Y_ZZ|xU*Z6-dx5=f{}Fj^*BiT3xc)c?KLC9!a#yv6dzl&vbTu*A zJ0(`Oxo}mOKlUkdA8{ahJo;&Av>Rf@o~hP5#50ItP8lupT_9GGP-b}x<0%DEKC*rY z2oq!!{p@%)(cu%)hwPa)1#GTTer5u)MMy)O1z1-Wa%O43fIY_hTvFf|adXCRb_M*p^P6^yyP( z81j06H_Tw}XZ@7l7zl3BctM??4r^@oPY#||1|G^+p=+NFu>MS9V%fYA=%u_-&9*Dm zr*Q`?C0peFa^feal4 zI;(clrN>dKbhXceFadh*l@EGQGpxT6pcfVpGc+f|fEBv?dwf`+LX&Zid4*jvKQG&B zrO1C_^?d!iqXzR-9nYULZGbEzYmz^0T=f`x#TSxCBMmDtMNH^rta%618acNn8tR#dJYKUNQ(B9SBwqc;$ebEe{hAdvMhi zYDt}^U<|Be`t@^~^1a(A98XE>=uQy&gDqV;>c`E}Bk;Q#wF z9sg`a0fk=`m_!fgB$Tv58u7&;DB)8e4kBt2949?DrzfHtfvWMAT;I%=N_Qca?y3hJ?GhnI_JC6$$fq*1IP{zplhAgGWns*YQbou7w;UJztn@E6T5P_2j zZB44xu~yy^s4<#9T;5JS23Wi7DDIiXN4?nL=JN zVmZ#LW-h&C0-Y^`b6|)DVDFWESy{&vOVqLQK#fo^RsDEP#eE@5EBchnsP)A`u$-7` z6i<&$gTuAK$e=Z7kxzo)(npGb{bUy{`3;bHeyX|AS#ep6?A(_btZ~^kkt?XCfe1q^ zJAHd4+-R)q4sKBue|d-jl&;$T%ckSnO~ktyTdlBldLf&zD*tH*Gg zRb6MHiKO%xwm$5c&S1~x1f7s`*3b8V;aaK*SKlhU2TkE>UU4tMjy{ua&vJ}yaUkcX zCNW|L}S` zXU(Wz;$j-3NN`rL{H&-sz~25nwz89DeOtJvl2tu-%12(Ms4 zPrV^9=E{i#4eIGh$F{R$H-s!sCexQaZnpD&L&yp20Vo1!E_QXsQ+^2%-#|`gzHdIP z#wD?DUzUWrzXLV*PV(i9>+i0Bp=}Y}gW8bI#ctC|QaKhu9pA&Rw@9a;7R6PO-g&0T z`9*S@>(djwq2V0&M6#L;hl0{vZGR?M8lYjf!1PXXX_HPC3x!{w+nirL&*eejB=HGP z%`6D$r2w|PLH)bTh}Vi?qst#z_wYexz=q0``u@biQPw(;CZ2`A{r&oGDuZReindCE z2AjM6_@)ntbo8Zjg(hGWbO%7W$zO%_PTMOm4%7;T`;4#;pJ$ zykNv9PLU0H^`C+HV6v=XKlhM--|3qGKgqtg>~5Jr>nSt=Psw1Y>Zwt>mNj`47@&df z`6(DC3jL5UI3BoS+wuOiX|fB2W?~%Iz{Ixmi&4&C zRKcixMzC}Bq`8RQ`Ge0lm;;qyE~|@~H;evHXE+>M1leco12~dZFHA>kF&EfKH;Rtz z>C-ns6fLT3o{H2SZ$}zoVnFEdu%Vzu8X!s=hVm>c`nCTKNH~oVAu2z&}J{H-2qr!rxYde^0Ow4#=Pa*6(wqBJ!(NLU|Fy2JW z#X9wz6&NwqC_a! zD#`sVj!k224T*|{iz?hK=YEW8m|L+!4O;8<>5sMpi3bJ6Iba?A@P9VT;t;d$f2`6y z$9m*V>pLzfnYjmc?iHZ6xL)iSd5DA)ye<-*TgiRBpDy2k7Y3F|=_Y>oboqIA8>kL$ zOTRYj<$Z~{T0B9tM!q1VK=goO(EtQ+X6T5$KYLk=%t#4tku{l)r7ffIQzkF>o$(wT zybyidplb_uZS5*q$>*LtM7|EtqQ;-TB#=EiY>;q0_NqKV1=&c z6F_7e>^_I#Cza$9d)m(N{lh^dHS30l!roPs=>n@dT`b_RAypmOcHi%#@7zVhz_>cr zaE552>FclJ`sn-~jsX|e56oJW{_gGjOC?C?*kQqspf7Dviq1qk4eW77{kB~M34Wre z@`F+tB4e$zhb z-_1>@1N%oy*Q)%n23&pO!$Dn6_aLx7!NZ9`j0q#`TPQv+0{D{U1I^$k;D{pLWoV~) zuy=zDq4girb$s7t=y2F;zoAOua;1Ne&rE-A{#y93{=g^9-8{^tXFpcH@%kdFfeUkn zcDgX-lt7ygxO*oCu;I0l{5P|2rK@eY3Fg=mBo3{V&|5En5Vo$alL$~OpDpv))^@xT zafH6Em`uB{O} zc|SwfI^P|l4&v$)6cHOO`jM;l3uA2wP?zK{wgf65lmWfW%+_KX=0|WGwZBEh*a1Hi z4&RLbv914^chr{TlTauWEr!~5Y5T?m_1b^NgaGU}3ygD;sDho{<2Jy#5|9tNRBRXQko%QyljwHrVi!asDNt2km?2+ep#25_JT{;hK`#px+WZL^fV+ZQkAA(B^0tN>}G`17h&t`J;Nt_r$tTu_zbqH3sSUh}_NAMV9w6gp&q9 z3m$I=9!$5dgIMl1KnaC0U>-xdmSccaogKiG5Cyt+4$b9{tJC2o9tWZ-E$cjki~n&Q zC#f(p`6^7W0oHKl)9s_j^*?_cIPB;U) zFe^H_$Ssv0PbZ@-gk_8k0ozp}u=_M~R=}wls2n{X&0~`ojLu0#2j5y3ay}MVqkZB9 zwt3(>_wQA{a8PAqcV7mUg6d~&wI`FWl#$NMTaB80rWai*Q#@_?2ZZ74%7b>^Wd$B9n#62XOH4=;JpJ;(=djo;ca3_cWUKiC)6F>mUny z@%zbprPsi@Rdi?ua3PO5C!Pa&aPgq*%ic-b@IOt)fxQ8Fj5zI8_bSQh92OXoJQr^? z$?3{%%TK}pdb4t*gmSxqy{a!IL6Oo5+OMKcUMym{1lC~+>)mX`QsSOdlN&8CDw9>Y z;A%D7g#ac#Y7vSlfcSU$xp3hy@cAQWtF0H6IQ1g|)A!B|NW}El;mx6Te`6(a4v3?f zsSkde$sswb1pD;0GQ`kRQA|GjKP>n|>+~yEV_yYYtsK*xy8T>?L|Udi!$lq0&V(sLee{S9G6alT92l)jE%^NC1km`AA$Et<}A=*6^=Hwz1%NfWJ@q7zdxk8 z1t>+$fTYp`(@hFQ{q&LXlx~0S5*uzOV8*@CQD3TmI|O#eP6gZPd+;+J8T@cW3CA9( z$UvvUs&1$52bEBAGcIAY**&OlIpKbQtaKLVWb}XZBV)LPMkbcPRK<1@Ko@Y*OU46J z7i?Cz-*&iGM-<|m*rhB?>`w&+&B{!5s1`zL!kEXKR3*#v5ulCXd*1+(t${kZv+kvq za3#2h^IpWFCg-9jp94Cs(DYpKAvrBjZk+jp{-hSe6B=6XCwr5WPkF!04BI^WK=#6F z_aa41;)cLpU=R22*4j)rAE&j?37G6UnFP3}%fYRz-iBUab7)RjhZ{qj&A}Woo8EQu zBFe17^@1%SrK3Yn9ZndHTQ6eRBhM{$xj2 z3ZG^dzYacSUTCrJ#@l134!Mei{Q{LgwC>{I$1RnT+x7PXCvpKJfJQ)k408c+M9G-* zY5zUw`G{CYfd1bpUmrI+_f@19j^-c3SvVc_zBqW`-#s%M&Tddp`tDR3@<4-!65dKjW|q1I()-@X{>o3g zbcDlRvy;EW#}k#h!CQ%P06+8rfMaEjWo&R{TjILZBj2M!L))Jju#f3KI`U(eJ(aT`Soi-?Hf6HhX z8D71#2+)|t&6SZne=5^g?}9hWHh#tWh2P;5$M!L++@nd1dov)@xzYtL-sJfFT@SJ4 zu&6bEcRa);QLpr5{BLw8!5Yw+TrJ?YD*uHg#s*}+rC_OtTwpZ)p3^-ufV>KJ@y~^O z$%3;0eO&JRN(f0e`2W@3oDh;v5uA@1$@d440g^)?|5axQHgi5+A-}cqFMK>Ea2pNM zJFEh@xDPk_2-Sb+BR-+Pllet{+(C|ex+SI+(6IG687a&wzj3fiIIv7~`7dhf!33b& zh_VrDaQ}t(GJPD3^^-4oo(GCPPDo6E4>-e_-xJT|1&G>PL?xX={r+ri59F0gTGA1r zKjNAumKM~wI}S$fqy?d2@L@0 zA$Sm+1L!7aH=qIWzgZ*KErYl8_i9iO%Xv$vwTFto@|M7>3355&58l%68*fSZkMlnH zsFf*w=bPM-?q~B_Z@cx}hL^5X0R=$ts@p~2NvIE?KVWC8#Sx7??oYL@3^@d71rSl? zA4f)-5iAL8*`FFx0g&{wRK0i9?-zd0C{yrnQwO+{frS+NI_HM@Q^iWKy2BmVk&%~h z&ORY%byiv~@zZ4sgEjwR&~;xyIjZ_hcZKmIj54&Zs{@mdqPa~tQm}jZxMXZAR z&wY3ERDtiHj0NuHSq*mLkGiN#iy-9>DM7uNMmhKnASSZ^HuJS1mOdirYmnL8x-=`K zI981VkzbFJ9ZgW?9iYS4d{U(@a-_aKi7IhDqfX&(J0s#IXKgk#4*tS(dvg;oihu9h zlktR$XNV)@gb9N)*q+&DWyBo_UX9Xf|0h2yB9amIp!VhX(|H0^WWhXEqPK8#D}zqD z0kG==ILGOQkV$BN!fW7^?jpnmVIorQqMdtE02h&r1Ehv>x8bnS6;Q(hc2SD|k7o+* zthiUUEvtC|TmyaA7$-=7e0f3;secHUI^S0u^96mQpXI zKP z3Qj!h@(bKscHC?-tNEY{?v7@jsS@K!A#}y=303ZPZWL7XgJty^td+db7z>F4L4MgT zF{n-;n9_NtuFVSJmh7IG$gr$=PMjcO@Z}Yx0pq(6tN7|%>=U6cE)-nxkJ?Bp^3qdI zT?|e(DeXk$^>-P^fw)O@7^=|s!hh;B${6b* zJ)Uon^(*$9HwFQ}CUhM6yqJ>Ht<08w;zvzKqa4%gpm*`fcPWH7#GK^tMvcKx!KWg$Kz&qbPJq(416guI zG9d|bQ!_l$9q9)BcX8Bz26AyFPsGRG2fopTAKY$ z{o%D>;qNK*d=Cri%N`W_K4{8sSvS7F^0`wQ7-TRl$g=EBDc zl6L*?Rpx)cRzD#)=ymK#vkc%#{N(ifi^)tdjFB;EIRHS!QlXev`+xWw!T~!_M$x&~ z(9a_1j=XKqE~D756}uwb!P$yMH~p!nkO=1+;5NA&4o>E6_-`-UJq=ml7lhaI~G~=t4`f&SHXF2l3!%sovfm_~5_cj;=a?8}w~HygA1KfiBWCH>lmPjmuCPqk=L^hu z`OID=V3szZz2pfD@Ppb)EXv$3^NT4Jddx_w8-j^k5p8v&Mvn;Mao*OKJLUXwdaL-l z65$A!^By1#`?oikgfs{90G>2DaMohsp;DkBHYEYl^VpA?8;cbHbrD^ey{eCVu(-a) zBI2yB67!92cnt)R=kN5Cy1kp|%*z48qse!(!|F7SXzLp%A8m0%)~@=8XeHv|NpMj5 zTx{i3`b>-Fsj;?U|M@)s336t*mI|?mgrcOi(7jC9L0CiJ%%hqib`yBoWE5DY+5jci z)4Vj;0Oj~4+Lltyt(EgX>(kp(HI&f3R)l29&RoB{So2h5-ihfFl&g$0bAqVn9N|yv zWdQHC*xq7THn0H3^iMfXDkT-cS-P28Oq016VkZ6N%r=0zs0LFivQ3K}dY=y;a$aIX zd=dg~!(AvlJ$dF(jho9Lxfb>qF!e3qK9bll+M|Xpc4Q_4uqA(x+tXu~0h#EQ`7yng z?{YgD*Utd!@?P+mEq1c+k}dnb8%vT_vhSoU z*@o=vj8gV3+h8!VGtAfrWB8rZx9@db_i;SWeRbW>{patW4o62}&d>Qd&-eTFel24~ zx)1~B(z;mRY9FRes&-HIdDY^v|78r(hHf zVC+0`f>q&qb%1nru$@798SR|Y#o~+@Z`IZI#(5u^EHV;tf4byM;kkE+rle)n9QVVG zisP|cfiLXqe<4|5=X>X`UVQk|nNtBGwFiyRKm7+c`}k2-MaY|UYmT&s8vZ&TE-`RPzTn9jzaa0#l-j|ER4foyx6NV`& zl0e)*r*N}&0yAc+Q=nT8#h(2T*b5@NcvM^uCI~7?LRQ*e^fpj7b%=DV@S%VJ?=W)L85!7b5&@NVnG_o=KweV zh3JNL>pMA;*gqFKlwg)`RE4#hp@8$KCOe?|rPI^^tgH=~|F_~a#QgV?V>G#xK{E4a z5aKHqC!lqoCe>zhd8BFE7M&S-?wVmC>v(P6VPgmfwm`26=7+~Jd~iH?dK9RT-CtDR zQQMIY+~3)=-gV(OHNt0k)L2kRAD#UDTHt($Z{!aKo8k`JCe}J*`oOIqw92;M*tuc17S#z9bKvf{ z$#|TVTuixZHh|3Q&0+6x0}-;-U=tIfaFz5dK?$cl?zg3#<6)b7X7Rjo`J?a$gSz{>s^t1N>N!%6>J80`RTOhd(8l_{{z?!TnRe7QR%jG zJ}4-6^a+zc6hu?xYkdCT?i^sVAE7quoQqSJwVP>uC;jP9@ zr&v=bFAd@se>EwM?x(Hec)d>1Xn7QsiPW7>EiwtNC4Z0+oS>f>M|uc2MMm;ypAJDj(KGK zuJQ$^h*a4P$^oCirF|sF96)}}<`EMmawfH#Hxri4$;ZJgvTu20V~qO(g&?R)=835_ zCvG|nKM}DV)1YAx2rL-(IvOgo$`p3HjCLX7s&bieccqe-eeH zu}l%8ttGE!>hEmp>|&Y2Egqvu8C``oCjM+s60UQcXCyuK#%Yd6cP4Z8s>Cnx?K?Je z|9ROG&I*FIcS}$0``vCJ1iS}k5Bbh$8NWI&M|-C`<5XuZdyoex$6k5(xJTxsOTJBt z-58OurBh^BAq7<}DXgP^=QQvsDi;UpnzZ&}hPcJ=Du%U|FCBjkoo>xfHy`^1WGv}$ zpyPUYKV!Wud`celzFsTGj4ki06+>VVy_B zUdk`yzP*gmtTH`<(*1Z}WFuJf=!VNf8Q)7_;`oYAs)ff5gHNao{hBoPTRG-@Rf&n5Fsawx`u1VMzm) zSN{Nqd%?b{Kt7o%7b~FCu6r0k&l8a<<*TWbz{@W<7^pZ}>3H#ROcBDNLZ|A2h{Kif zTIds`I71_2(j#wC`fV?>WKpQrP@xIG+N0XLZJKA!3v1{WABb(vZF=uvCo1~2_1>;f z2jg*vp9g$*t#VT^TY%{5Zrv3v<-1Ycyz`w!J+0PL)n%Nbsg8oOY0C$&BLw*41>Lv$ z#lTejUBK>%QPFvyJ06oq$RGYPQ9Md#Otv2ZBD?9V_<{?*_L_5AHNP3r%-5y@{=Cl{ zE&Qg(K3a7quB~?!`hKA0uW%UYlzOk-!w(4rVF(+m8qf=F*omST`)_7JJt2#GL%0`mt89CYBRpHPOIZNe>b*^Wroho>=u@@c>N>F+Hike7$AZWU2q33zD z5oFPE-g_N)+%rOOpwPDKcyQfu-_T%XP>#L+x^*7}Rqs?$Bp!ZHI_e_5gFzN|04`}4 z@lg4KM|X-?)l656a%u7sx|XDU1)Z1`7QwJG-y1jv=KnBsHOFUiizI|#{(1OoT|R`@ zN^+id`mp6T6o>0hlXSz5na#;%>(8YKO@&Eh_RhgVwt@dKDt|sbNLc>j)sy_Gkm~0h z6@Gg()80S7-m63OM)00&>Id@!&@_hBk$`G`TK+$1@GoUHa#97;vPvn~!Ot6SZ7yfn zWIy>a74No{9~Uj^Xh;a0ZpLMY{sR~j%P)b@^p7<2}LoHW~J z5$AGDE;rR_2Qyo)qtxf#y??I^do^cDDFB&zYZ9?T6)Tx2bar_U8o z`0&j2vRC1GS}W@Z5iBvb{nqVpBBk+QMOsKoQv1kTX82sd%oYcg51457m7M%ba};a_ z4rt=z5A^@Ox43=zjL!_2O9f$nqi41(vuP%bF+G7JBhXH~=a5)+_KLQ?X`Y#x%-*LS z>6dAcoo7_j*?_(WJ22$hs+rG70G4d8KojNnmf3Cn8`Z9D$GMkG!qzX~f4UXR@ip{!x|Gg51YvqRHgDtf>|XSm^gh}ebtBnpYE{2W#Zl-^;T){Hs{EHScj3S$AjT(Iv3}!PWBmSDSU>zhROdG>-j&!4eXCk?DLSVzJJfo`>-^t z$WGe3o24yHG67If@=5_wTmM{V3J)l+UD_g8#QU@t)49iG_BDVd^iq!$+e78o9&VU6{k@C7yw_BN=^aQbbSMrQq+i^9#7l8%{2 z8-Z8zt~<8|memwV!v>-VpG_6$6muVu-MtH_k`@6^vpiEobNF_cCB?`m<3revKLe&S ztWTQ)kHa8=EkOM6A{uZE?>(V%4%wLR>Bww)&?ROdbxkpbn+i96L*}o&zyUh$@JVo5 z|64Tv_F1|eb@It23E%d!iz8(TXL&X6<^)QA*TjuisV@x`*@yn5nedSZ#-bGt4TeAt8AMU!=9e`cg-ujT!M5kB; zVp8cKZu?{EVp}rTYx|Ql!92?G#W8_IHh;TcC9bYHcCP zMuAqfW=}U?|KVuzt4RYP8@H`A5&udL&+*#Hv=#lFjmCWKoa3nkk5#s&a_xoT49;aXt^#7pM{ z4K7^}bBG10b_(6g;#s!++%szd8S-LDZFe5|j<}Md{FQ6ggVl z>H=$1E%+tOgbSdRi2H3OW+`rze|y8!57kLTXMnUXu;V#_e?HAdC0w*uBLH}5BJ-C3 zY%n41-xcKlEg=kf>?S*17zsbha43RcuZ{@kdQHew7W1f?yt_*^t+1?rgB2w%bmR9W z>_ZA^mW9thPx_OO5!q+~@+6TzYbhIXgJPEo&1yZ8JQjxKWG<{H#q#S7iOd3UBuVL~ zYWAzV^D=HT$MqzgL9_qs6p#D603z+af6j}eNpm_&p4g_}jHdtYEUE^}p~~>Mc*X zGhA;t!TiXl)4JK?_rc44i9~`pZu3(759lXSDj~-~6j9>w$Z36mUPgloPc}l!LhZPe zF4(yZ>XiRVuKqnaPdAGA12ddPlD8>Zpd9$HQIJR<&<{`fgV8q_8jk=+q^^IkS?&sv zhR(~++;08ba}z@TPcA~^G-=#VSiW0M4f36l1SQJ%;D3^u?wqdn+j?$%vX=WL{r5P~ zEk5geZT;`-Z{YF+=HRQXo-*Rh6dzK-PsC}#0B>sFh`clCG&l!YLv+ay0b8|FNmnAi zy*X`?qW^c@0Lsp>YG368nV@@9%~Y{>sUD*%1plN4rF)@5dUpLIGx~Hdp8k4ve*fi_ zIbR8iW+Q=pcU72a9S7CaL#q87QukD-{;GCclp6E)FY@cEC_Xt@q2s(?-eMQ1@(XMH zH{+9#Rj|0M>9udbWB(}twq?q#OS%x`$6mS}SvllvUmQmC8w3CK=igp9X)co)cBK9t z9Q~ob5!C1#Lle*#*d7H^r~(;{Wo;Llsbhot6B_ zB0wIcN~(34Xh=oNv0P5jPT)U+hnJH_0s8_=aU;$-)>wQsz54ficKas%X2fafWQyeQ zZ;xB34`>vW}UcBZ^b^Q<+ zm7@MrchpOzVEJDJY$r;RA3qLO|22Cxd9|$=)hbJpmj8e540j2T*;bGHFOggaKarj$ zCis7%+%h07SiEqXD?8o2UkkSL|GHp-k^SCF1H6i$O9Xya)8I_KnA{k)G0(+r7<^gb z-Su*Ta!waC=^bAL*NNj9219UOfZI^zk=r3z)Rar8fJuDfoU?Nw$W0nqGp^o=WRddF z2ELQrHEx!1C~s`*Aio}0;J!~}SL%lckp~%Fv#!Hy7v0ssw|RI*wheKEHGJbIj)gUx zFqqeGGc&w~Ua5!?*Yfja!2Cyx48Pj`kJ$R`WiXv8D2>E&(Cga z-mk5u5@ND|a!51BV{vu(UUj7J_A(Q%Vd1m!o*}cqOBAfwsfW&#U}buIf1Q4AjlTre8@#YX zQyRFgPIBZKXTQ2>H>^?XNmzx+JC1IK)*m!q(9FE!%Oq*tX+n73qSWHNIw_~Q@tv{B zg7K$Jj_x4{EHBKPWH!<*He_&`7a5~{c2TPG*9G=g7vdeieEKp3My5vNW>+zvI#Sk7 z>Hw;wDQB9yQu>A|B%97OUO1dRIRY&014K*0n^rYUohNF!a8)>7;FwgN*%&UgAkREA zR)d%Yxp&Gnec!WPzVsdr$z+X7516N3e^TJh3~+6x%B$b*_u~1>%c+P;tv?3wZR$7WMYvNQrQXduHy` z74ByZKD*;t4a$Au>euWXefd0Bi-qL(200ASj}bpqz55VfLkuYxZ{| zXHx5{K&~~2CZ=y7(TrI}IJtGVE;~(_imSgvgDk5x{PdMtkKOm#Jr>!2`n+SwBdG(FoT^)KU{b=8<+{k{tru5pK+U-;sY;oq>6&wguf$W>QQ#+o* zZVcdQ{kq3mHf%BuHeJ~^);FG!uljD1)HC zH=&0Bz9s$ZqlU+%E@STk4GGgtf@h6vEHw5Fzg;)xr! zGXK7K0T=V_*fTzsWG*_y+1zW<*Q4-y-z4R19!v;B0s)uL0O6FzBI|1W_}d%a-SwHc z`rUPjart_?VV{&dc5vc|0tlvPrYprrGfQD{Y1)*m9!l^k1tO7=8u#4Gipkna@mB=e zqKQUdt}kQ+S%&2qrX3`Cz?No>0{0Y2Cf_3I1sptTsqZoZ4-^GVYA^e`&2HPPNhAOs zmE!sgudzGz%G>EP@zj%mkQfih7H#*0@r4GZiBN_$rsr!d1L8yT`FaUv-iIJ5_drg_ zy7LOK8jbyqz7~HgN6EkK4A*QGIxxnp^57C6amEArXuEJv7LBXIs93M|R*^>LQ%6|< zDl8Az$iHIb=lk)o1^gy^1`%ws+(7de+n243T6)EC>^j@ir%z{E*s5A58vMD8Djfjm z&pTq(jf%2(uu{|e>dn=MVC+$iCpiuzZGOBE2v*}i1aYyHAz@BO6>5noz-DY?-_8B8)0JjTekqA(E zoE-kpZQf6J39c_%b-N4F0L6%Xni10399()??Yb-_FKJ_& zt~4ugYW}T+Bvvh@3~Hmbd+XkMR;BMq`&MP?M%e4aVd}-O6LWD(I_=^q!^o0qj7V=D zfd{Zq{d~(FLhBli+0|{cJSp%C>dTG6poPs;k_8B-Sk5^TY%yy7MfMDKTPMKzElz95 zYaGOLbFx6UBE9(1_g6EtH=O62#shIpLZ z<#M<7eXvqCsBzPIVLq_A(G&jscqPGpiNzkcCRpw7ta**;nL%~-HnCRZYrd+FBttE4 zX08CYfUx2D-k#?QfNX5+II0)A1yIB?M`7#kSa1+3)m1uLuI9=c6E{@>@x^ipX@<(j zbW>kMKnb*|k=qrPFVApSZ#}zeQrSuI#rxR;+XqgzOC(?cr^NzNjmlFfd?GsY8YHEj zUu(Lr8cU>%cyVmzW+#i`JxthZz4j?9dj|z=`TUfiQM;yR4DIpP%_sA>TczZqm>;u< zx_zL@JJ*_^yuB=W~dFsp4Bv7whd549nsp>b)8K89kk8LZ0DbBOr(7H>1(oI zW9`s#c-TvMX27Ia*d$*^fM4+pPxP30MjWB0QmX35^*~%?_^5lPIWckWOJ$tB=qO$N zv1rPGfe|c{*fKu1iJCYf6tI~fYHV~Rh*jJlE4aZv=Hw6cb|6#|x8L@58+@f$8~3(A z*VRe#r>%%s77f{V9ie8P(6eZW-yA!%d%DK_!t*QM+!G0f%GgEIc+p-QZkjj(P*vWH z#OrW@6(ccW+L`RnYPg`@j)@}^{<%>YLu8F@>#cIMmNYH%!VsE@MzbZ75qY5YgifFB z(JDhTu|Ktd@**yfrTmTuBBW_Wp4qQQ)4d`5iHjj46vD9?-TUTgs7}|hdYT%8i!7m=95{5%3 zic<+7>Wd~) z>Wty2^0abF@Rx!}N6Z4n7%mAOcv#P^@&{9(UqtvaqAC-PgYDW{s`ljV9r6?e zQO7+wQ?W0LwVq3@vI$QetZad^^3)8KZ@2d7&?=sC1%=A*u{o6D&!A-!07y3d#VW%s zyY1d>EQ-hTknIz8upq&*CtW^Jbg(A;7S&epKpwqu zmu?fzS7mmcGn`gA0me2e-X->BE>+xp7!D77#s!%ee3RFrQDCi_r-w+V68)aQG`FD_ z!=nsLB&}vzPkS+%-|!@#tj&B5u8{(}`~vPO2Dr#T(L5Kh8|W(>F{&ir`|usz2B;&B zVaT@^L~HpPo`YY^)e|m=*pE&T8n=#@e_gA7*+1JkBJ21n!_g;d3d+ANz(~lJvwlqv{T1+4C<57?vu* zjcP}AJ%`$>VpNXW7WL(GSkWvje)u^PHO-x(;pxe1S{__@)1Ip;2BWmoZvg7O%9%D?; zSlacE&lAkVbb8b7$rl*5NxSEG^ev?|R~i&BMzTm6nC5LfjlF8xy2v~=xcCwEq#9)q z5O$+qdZRp`S7Ha(1T(|8e{$7wIF10e=w8A!c>5Rnkp_|DX#3`oTtb1a;E;2I3oXq5 zc@2?tt}scOC)1#6!>uclw|Y<0JKVD~BXhAah0kTF)ox;kbRW08vO+uG{1RBCYnr?5 zu34%5P)}iWBXy*kRd#GVO{ZHN_-2HFw0YVK1N~csJRMknuChh(IKk6 zfC5r|lPsZR>;#Ly1)|HhcQP;$T1;RzekDWo6C&LAHg_IX8Ro;_7A5Tk zn_~Zl1L(EPG%dV6+C4%dq8Kd;&IIF+2m1%R$%2l5hCl`jhCDa}$#{IH^@J+K=t%n> zT>tY2SWP|tfUrLP0cVL#6&Kom?aDzuNoqtHiYg?m2lI7|QH3DDlUc;>s&m6uyvNe; zmr4Y>_U(8JQj1&p$A`lRM7#Dk?8ZYg`b#i=FwCSq4MA@bk7>o-+~J@4O_?akoXV)$ zzw$CYpl=YVcXSmVyMS4)ce3A~G=tvMus6yLv7=GX1 z$dos+@PV(1K>~rp4d5B()A-S{9r(Toh7RTrI(!1eZ19)LGNg#!-FbtO0lXuL=NrSW!|zfy_YR~<@O{iwS#wDiO9 zbWH`--CVV}uex4?bT$nM83|_(X>~DPvd$=8W}m_K3g+9Mv}2~V0rw<4R(QfxbX;lB z;vF@JgZN^bPWPj-b=%BWsyfjj2T%!dlX_G66EuFF`$0`x802ggRi!<{&mv$E%$m~O zP@cyPY~5Bf!2m#`NSDhyzDH$vt8>KtLtJZ`#s_*Auf1C<=?tC~)o_(-MEMCv%m| zg$AORr{8?)XQ~m+F=T+u4z3qCfz6Cpj+=0Jk5|be-^{0OmKB%G6OE0qsD)}1zmwN# zwYZ{&aH4~eUO#-RglHK7^oX(nD&`FEPeaHWoYKWY@cG=USa`XpPO1BBr}dErZ%G^Q zzy0xag=O6%6I6S4-`$Gd7t#vH3L1?CTxb>E{z8*`NUWtynqGVo(UP}N9Je{0q%>Y@ zTz~#@ZP0iz_K=?5G{Oc;o9<5PAZkQqSI}L$Z;>}DrVzUHNJ^=j8d!VZcWYRrd0(u- zHhyd4OT!%%MFg)o4lXalA58GSc8knqKJ$zXWki?-uAJa5=mI-oa{-Sm0YYa#M4$7~ z7fiw$OAXph6&;dp5AMI&ZP)1fh9{s_j zmedAdA52CaZJhr8nn%Qbu#};$!mUaGXc;-azeYgu)hge#<;3YLUg!y5oc5N0QO=t;Y=>d}4rYL~en}Xy z+f32Ns5De~sCxnrMou8xNtf=1a9dABFBUQ#{xraJW;lS;07-DAm0dTRPBa^^^`CZRE+~#jDfXbCoMKql4C2Imf$b9Oud+M}RR-T4w zb~{4Oam8Iwiw6SaeZ2(DESk? z-q?YM69F5l$Vz4*zaecWZ`$YnP8bhhoBDL7!>l*(GN2CK?a~92jd^L(=thc~hSO=H zR5d4suNvrq%$s^noGZGnV~6zf@`O5V-oMBjE9?CNvJ*e2PP zYe5-^Cr857dQpoDOu8QA;n*)KJa3k?^@bcpRPr-5c_7%HG3eWs&Za!eBAxixXS;bE zB{t&$imI@YQ%ri5o6bPIWt~9r_{E0iwxn{0=(sVNOHeVBjS*hY%v>FR9lT7sp?YT2 zuF?`@TcDkP#atr@qS%$XiJmelWUIs+w;h`tw`#455vWuVOAuzraq-72wD?`Qziba4 z%b{5LZ8W?(Cp|J7x;wZ-s$Mv3?uya^XS#OwPikM%6PhdeXVULmt7kH6`pE4d&mExuG zHMgdBfo%$|ViNS22>rohE8{KB=$c|0H3VLb)3?_@MA%6m$nR^+ta{={CaThiK5%Xo zI&??RBK@eiCt_O~mseXfFa2c~>eajz;5j$x`_^xJTKM1dnMjqai!2E@h3O#DmU`7@ zSE4u{v`wnZ#*rP_>rk#RTW5kGA8j$31#l><9v^WBl$9XjR>E06H(quU2Fh1ztc z@|x6oY%wVzUA3}RtU~vJS8&va?@Gh%bDXN#u06A1$s$&G*!UeVrsTGRf&e)v99%Ie zURrl0e)9;=6&VwdyC zVi9*ES*7nzZr4+(*n8rlxm^gUMhe3t3ZYrd`h$~Zg^h`orLeN@4UzKR_cpRcS79ND zSF_4WQBQrl#8fX==rj^G*}QrnJD&7~7lq#YgZwP!UK!W*a++fVYObXNX%zJ6DI!%c zLD<{OLh=~%i~aY?vWiic@}5{>UFmaczRs$#^&nSI20QPqF(P10J>rWtJteu7HQ_Ia z4V7b6KW=Oq`tRk%k_yGW9|AzkyL;RH+NtYtMe;^c^BxCJYvBH;Vtc>VGYQLZ;_7$( z5|2#gXYBUd{D^ZaV<2-kj`r+ExhTlnWM{G#lqCA~Wwo35av0HK=K;8s$ zhR8ssuZD)djgb$J+yw@%zxMc+ITQ3rvjK>&wJPXM;5E3rl>BOx)=$u-nFioTx*14x zc6E+jAWGL+yw1I02~AE+nY5=`VWzT&7`JTOoJvQ2Di;6oC*%pRzn|$$MjdMe`cnQC z*#-8M(aH+*nJF%%)(U&Q*>KgA%fRjxuGfp>;4^BQj+9=YSD5=hB)KzQVbS$$w&-51!k8OQKgGnZ!`lj=Q zai0`1wg(E7d&=Pd@g5{Eu^)Ou_D3u1qop6H`FDe3l4+{i>7T?`ibna?yA8CY@n6kf zvmiM&p0!-UVj?x%-5^29L(|2amRO|krlwE?xL|6CgZUh|Hyq`tTV4^ zRxpjb|1oJJ(4+@w$z8p0$=mqg)*+2qb@|$kIyTp zIXGj0;30})x(>gqU24^K{b2G;`-QUrX2z&ILm@ zZr-`_njQoz%;>bmU<~w%{ljh$^B@N;No9d1!mza3hP9JMnEYR$2h)u?{*f}=d(ems zc@|xi4Ahj_^(dEGyE}IMXrrf^A(y1wzE5An1_2hNzF&zCCQUPUq4}19#Y*A45Lio* zlOJ)Z=`^rai$4f`(5ARSb5$+Ox*^>nF@JmSQCOMB;*Cb#HY9`)S}lpP8{Fra`W^?D zmMN+0r4$!9YEl`u3EalHc%ymBR??9cPY}83^Iwwi4M4XplVh7l3HcBh|9;K6REQ7D#>%xL1W#9@lSG7Jg(-sRr}@|k54EznYw?5j z2yYYh(d`nfUN_XJI12c`F7$5i>DPNy?9PQ0Msq+7QFFV~azNtdJRUp2R_RHz*u%nN zG>>l?(Z`u*h7F|2fT+wrVn$?AN%cW?fMQwY-uz>3jk88FOZ`R@wm&qJMQtDF%Temp z1yt$q8|;ri9{CKdqmi@qbSXL`^Q8B7o)tN|yVUuREKj#6nI8gM8MGgGC);zt3rt5v zrd!-e3W2^2f!F-sTkxpFtVjmM6&eUBfEmMVDpjC;#iXSoeMfkj zq2kF%>PY~f&>@wkfQNV-0QQFYe!lJ$t&L>mzL_%MQ1DZirpB&fJh?~jbXvbR_g$Z# zQ?h*p_7_kOT7XI#VJsG;mtJ6Kx;_&yGzi0_ey6%^&t)PV4`BX;d&;^ag9j9iA{2!T zY0hKSydAoQ73OVTIbVyOGf9WWbj$p8!h_HDS4ksp){}_%-mphgp=zbfP@$7Dj`W8k zTz;}G_PGb|Zimlkex-P&oN&dV=SS1=U<@3}Skj%80z@*l&9Xikt zn^=+8Ng%%FJSBFI`>!<7F;jSx7y7CANlQEDFUbjaleM(Oi-YaM-BXz10AjjdI;9N(RCyKX&^O+)rch^jS~J9Q z)xOx*pdmY1yk*Ow@;dx+Q8s1PXNcU?pq0lkj|WYb1c*L<>bt;Ichi3T6_UmFpW}l6 z_A4ycs=|>;iKIX_e8Spv3+no7U1!ruk37rH#4p|b!jOZJUi0oQF=iqnWgmazhwsIA>Pp-SwW@`;*%l6 z)|MrRhy^!DJEpi{E*Y3Mr>H)vs{t~<)^23Q*Xg$ivQ=T5gLjX=D~~FT03!PhkiN21 zVaP=Q>A}(NL5Ex!%;73b!b*Y12 zjs&L*&)$Go;w=9;TigBnCKvPvX?Oxew7e4Yr!tcAe|CRh$kQtveI%bfnll(`2Gi*} zR-Puq{FrFneM!r9Ul5hW;FfZ;5Ho0#N|kAUT&t;Ahd;qn)Vsk{1Z{eKRQs&AY&^A< za%;QDg;@qI@%pShcC7u6#*KdU?AXK`k4NohMjtf6Jndv{_TXIprr9o%Zdy#*zAhs+dz($2;Gya;1 z%F;l-Qwn$&Qys_6w$77VG`|C!o9blT{OEc`SC5hRsJ*H@D2*zn02j9{ME(KJfNacN zt(Lg1gXs#o;PAp&)_!X%hi0jURbzENbc6p-TsUl_LB{?{djO(xHBJ~OBXbIP1{|FhEn*(ElTRK64 zo2L04V4#QDNu`vdW@zPnYf5`i$=Tz({wKzFVDwj=(#T003{1fF`E+0o^V)^_zz5d1 z)IJcDoMwR|e4a}~73OQTb0TXoFTu3sf>nPG+p;J#HLHw6BDC0i9ZUn;098Kw6_c$0 zwv81MHeMR=ow|<5r^O`+R2GppAuzdFJ+mMauN2>fRO+*>f`0oa7_Xg8!`0WgbLk17 z2dTE+gFAg9z*n_#jmbY1D+`SB=c(g+Qe@3QS?3(N7N=+WIkQ5?eyFvw2<70j2Ou`b zV4)W)AAp=8bU542JY*Z#E5WnV zTSjt7t8RG&G19az1x}-<>j{$S#esPDt{vtUy%bqw{Ja;l1JZuY3Hfne)SFNk7q?Y= z^5h%eDyP7re)PSDmt&4si>ME(Msg2WCsw>Uq{eYx*AMp7Cmj8IJZUAspn20zDfYVD z3*ILSfh{m;q3XkM*n8-UQ%-FA4d=R(UahHrdrQA0vcrxiuUZ_YJhAC51sl=xxk^G5 zGCkGHR)-S~-U8Gp2Z_6{Kkw2nrEs=sjK|tL5^v&>UWdT1^(U~H1XPY1G z$P1!Qu~D4&72^25n7f$FQ#6hrX<&B1{`eS9qhilS^VSCFnzQeGf7SQNTz=8I+0{&j>AFU9#6^BEx`}ldDcxH} z0fm~7_k`3)y>HBA)#!nW8hQt35Zvam()WEZ5YPY@58Hz2-1&fHu70faL={nf{o?j&oRhdBpgJ~GthVm8kFkGj?OL(7L@w5of)Y% z|HvZa_f4Cr%RIkEENTL}H_SJQMZPYhDSr5XL{q7WcmY%ek(ZV#swo>emwvE`dwtbq zM%rNv2XzZjrGOJOOmQlueJS*LMBLQ96AE4P1;dmIF{KbXSg}r=PKn`c>4}3G87wy2kdswyPejHLa znjZNA#Hmer{7u6f50-N)va7mX&MxtUqY1dkV9e@37JrTbm!5D+{T>6aVE=|vGQV8RV- zJl^#@58wv%vS+f@O08#KmZDakW=-iE7V)ox-6@}VNaBf9pfX2YzEsX~%R?Iwz+-bW zlo(FuU_@FlNasXn+gk#>U7>2g^9XOK4(6H9R42cN1XJqpXnIm z{0DRY-!d!MA>AUY`X?MvwW`dbPM78660(39Z?u4k#7O<_197kY#5DYGA!Ov%jq5e5 zBwfVHg#L&J9q&^0v^bqeWK7Zi-_b-(nyCz9_b2j(J63e$DqpHh(n+p%; zgT?zuhL3n|>fd6*_y20e`DdNi@w-pJFLruw^LG$Cl;+7%7y83^$OapDlc4`pYy8n6 z#(s$uv)gJDS;H9&E)6{VI8f%Kc*Q_^{+|{&;wAWYq)!SzMWST?!@%^9Xn+v%D3H|W zV<{fPLP`Emn{-UP1ftzv>dXI?1=9d~{nOcVu3x*4m6_; zf=|I=m@|I4(cMyQWjy3Rd;oMWN=V;sInQG1IQx4NA-ed;|0L1D5{N@s4Z1J4gxo&+ zOKLUszq(-m#Sr(8UO`}23mgiiN>ddhj)Yv{Bb~D`a>6RonQdi{49GrOic) z_2VShcLHj#+@#%`p@<9}e)e_QcN?*(N~yk);r|I>unZ`Io&e zmWJuKp!Ee?GkJ#OAlPbS(uC0^DtS;`Kj29xp2B@%&8!nLiTw|vHqE2_T3PN=(VJQpEr*@|Ie=6NwW}_6TxhNBMvM&1wqPD9B&NI zVcmlbSRhf)vO`^Vq*5SFQV~!gO)#McyARf9Is{3kAY97l>PCsa8*@g^ZA*jpmUvj& z8A&gPAW^Cx;SitWr)1daIDVna~o*aPnSzwod0lE z*;Ot54b;d@CdGgR)n8VN)}LyAX@L)%ZD$bo#tMoDPGv3cIU>eho>P8xu3ONz)FyzU z%!2Xn!~Bns*M~anW8{<6hA`u!ph(hxaeEsC{BU`vOOfK$=u;(mvX$eaK?G{`KC;ln zp8Th?5}1Giw;fss0;oe~!r4SSzQ|L~jt&+?^J-c18k9aGDZ*igm|}$G_}-R~-@p@6 z1G$MoB6T5xdO2?{tHid7Yy+K%C2D)6^q)j~$-7~$c!&>(iJ6%<3yhZ!Kh*{Z?J+`D zO5x0WvOvJ^Fj}rCki6tdQ$j~1!Q+*EHHCO;`K*-BMS?Il3kkeXR8=8`>I z7ep04-hVsWfS-u5>PR5<`m;#jq43B^^5pqj3e9hrIDy@3EU;~B2Xy@`u!BU0R|4OY zn(-vz9A%)cx7vu5Z7(Q>&%sCGX4iw@Gp$kMaCG&Wzin?xre4PHk!b0P8f2fSi)-7V zqQ87)A-Vv8b>7>|BRR+Dp#V!K`(8&pK)?C)Qs5+gdceW11`xy5IC?ibJ|;&4zl(B5 zTU7{jYbkD9T9)qiMmKpoYCAS{3p_uW?NNqNSLac%a8G@t$1%y%j%?$>b%=16nb z2xrIU$F+y~B(`KUOw_nP*i4oR+)KS#h<}Q4PLW0RQU2R1{=XcpK@?v_AaK7eW?v9u zp0!0Na+oyYxe3}^CTYJnR9fmW6*;5$D_Rx)qvd%Y7^*ydGp$v%ZUj^<3o(>ceDx-| zk7QsHk-(KiF;)MwRXbA4YCCmgeb2sFvDj4l9>0Ia!E`ym9(5}n$GL%b&5g{u+lowGTi~#qDMB8Gt`VbI8k->9jIlGrlrXYQ@0wspz8pz$Xq8chFdf zW7TyUQ8F#+GflJj<73^$2SFYydzqvT*DgsMSzx9<)$&?UxO2XkTRomHj=!TdiqpXi z?@BTYsW2<#p&I!m83sUQTb)wvw)`~>Cg|Yc8s_%S&~Rr_`S|v7o95IZm?9AUUYC#fW8q zoJh1bCfz(UH5i|c4iw>7&X}!0qFs)D``cayXkR#h(YT@$8h$NBl*kUuDx*NMSRLPI zkRc_vJ}Y>|K=lbhl77PL98HS-Lcs4MFxOzhdHnvl^SX8avBO#I51a4@kx7pZOe%ElpJa1j3w+&oo<-`<*bSgdi!x?6J~C;i zhdAIboz2a#Y}sCMBaVvj>Q|Q(NNkI2fPCLnSny7J9DlaKMpZTlJq0~Cy`Ue>i;R6@ z>@uoKZ#1Y^ZtA=Lol0la+!CW9q#n42KU+Z%jp$ko+t#KN#8KOH(`5E8ywY2^*v@RUBo${s zr{q_3y-)U8(&Y0>27lQ7>NZGfan?E4-ZRl>%-)|`BN=*;`W)P8z@fE-@eO?p1-aMg zu@YH;VI6Dge?77GN)j+L#$c4Hy}6W)!O~TVkNsWf8Ydo;LK+fGV*_#;l<7>Pc)PYC*H++ZI5IlCmf!572 z`co%2r+<$ypHt@#7BF;Ph440)?9F2Bh8Zw{^xY%}=1+LB4?L8n#a)Fp&{kR*v z04LmwG)&@)cVH8 zK#I=SC=t^W_E^WYIL1Kkm{?XO45r$xneM>Hhjt< zLt5e3<9fZvX~pE6#Wewt&3$QF>==b_m5iJy{rW~EgMwClkkwO#psIH)B#0v@KgUS> zPpph8jN`8j6ce9w!s-}TR>?|Ij^G`%#zTs1)-A|^fP8&i^#EwFDRx%Xh0x)sp$iJM zLY;@FH(##@7ibFG8TQAye|{}5e*SeW!Pzb8;wL8lLy?!-Hhez`WtmiVCcCu<$G0HjQ5Kd7E%$H^QI zH$2ffC2sdM!FuEM@^nw|R+qt&drIMl1+=Fars45sRV;jk;)ai11+jEQA?70i#z_>rZ2~W{o$K7xQIuIY{Y_&kZxym zNPd-JMN4J_(Cb^ z0c%}I@gXU1)u|r)lj5eCW|)F4S#ehae|jzccv(DKegV#6k=}F@HEW2qL&EI4#Q`}h z#mB`UU)WS~w(hvg__HJZ`$Y9m%XzO;osJr(VdvnITR;WdSSEg>MaemDM#6he+I`AQ zX=*Oe=5{q+c`yvQn`|`%Q>;IXMj-zK0lh>T_8(!Vj7r*Ho_A=!2p-*gAErVEyuZ3+ zJ3yKo{saP{qP=8pNk37xgAz;I9$@~;eG4Fp@}9}F*#jSW;>Me%{Nx*IZk;=_eV1kj zG{8mTBv?1Uc_RXB43=nL;IbK%xy~I2rY@Tn!&*zULelMpmoFvM45AhM!$CKqJv<|T zj2`m7(MF?1P2>Rsbs>ASjK7W>7K5VnBjoUF_6utY&!`-7WBx25R#4%!p1>My@zc{z zpO(4uaD9P6Gp}Vzr@XKQ-c3nCk5|D@vC4R%ve3o|ixGKP?l!&f;*@dOEpV|E(vXX6 z%0UzvcqBw@`C5DBMp7oLdA0WRX4doFMNy}WPrDFAUO(Kt*w}t#({X^_y34YePD@(a zxGijP`W7{Vu`1B1N>!&`J^x^Buyz;=zGly(#Ry-qTGlFH)Zp-F8f5x=tLs4Ej&?v# zV8n@G%`dz)fnlXP1DoX9m)L-U-cFMBJP9)vVW3nVkYR%m1-^r^0s*e)(*Q!5F zFSiC-HvA|^JT^wG#taPQeDl{Aiat!EFQPmWhFNe{n3(VBx!DAj0Wr&_!))9YcGX8L z!PMg1-5(bWX|#;%=Ep%M*qv@tjdGIl!WLIAx@$Eesw{sDC)T-VPh~wtGF0Fj0xgHu z9^I-mu;jeu-*!k@ma5NpuzlM60qbnR--$q+p2r#I`&_JUgzSvVY%77Gi4W!ekt8@v zW{Q?th=CNMQv_ix+E*8;V$J+2K?<(NC2t1SaC!ZNrRo5vd!S(2X4h zdKK(HbqajPA8qGyUN(l5>^j%q?B~ujeDFe!Vf72S98hb1Y16@EL|Z8G=y%@ng!*p2M)r{+0a#7Xvo3thI2m z3o&7+kg6JeOGq!>;^7FwxWNm3&y5=<<0Ze6nES8s`<2mnP|5Oa%tnn(g$)d`eD8Um z=xAK{o;>&_H@Mm@^D4$6>WxSYl_$SyVBI&X>pAi93v<=SWQ1vk5~Ax)q3%1AGEc{k zzOs6!O!AGqmu3X`mM5*&_eQekd1JFplN(VY$zBEZorTvom8+8zn>)X_v{c>gBd?BT zGL0@Oq z>5zZ$T>ZtGyO%E}m&+u*a7;RWJh_~id5`Vno)bwguG$K2-ogCkqU~g2G~UGCkBWY?q}w7jeYO`>I5pHr0&zmKGTFP4VDBQ0Zyos-!)QTArI%Ro_jK z@f*215~I+Icg{w9b07O@8CUK3DcUqfxhw$%eOw29@L0YX3~&15m_7ON+Cx0G`ZvN) z%kWgsy@k$GiSe-ujyOtDhiewj&SnUsE|MDf3rYyaxHVzcDgN_7pe z!mM7NG+ki3kFg~9r-nvl+6Zf)wtX8f(OdCu?BqK5bN!m{8Hab<_MN^%m3Lr}O`3PR zHacX#6ApTJ&=akt#?Kv1FUP{p7#hysYyGZT;?p}H;jk6wqmGg&S`-a_eY3JmoJ-R2 zP}iRCBU@_hdp@SC^9*>e&J0y*fPi?Xj0h_I-iNYyQqi7=m;~v6$-_6DpRAocx-@OoV0YnC6-}HJL~{0;69;k*Y`>Rjrigt3$CKo zNtyci_8)>`u?k}1mOpQUCql|$GH_vaope8D=Ub|z`&aXl`YUU(M>ZEFxH9-OebZmH z`01*_Ae-5<*T-mI!s;7L^p^VZeH&%nieuD%)I~OYx;t@^5#kV^cIx!3T1KMk1aI3dCVMChVcnn!l(S}u!dEKcNKfbHm^g@a>*ET`5m~Tg97x0oa3gMoJQKb$~jDk_} zm~lDjBch!A`s`>%%!Tz297}nsXRYiWsM{8l-W|ljpG?SuPu7W zgt&?nj>eo-ebC=Pp?>G(-!YV>tT2l!rB*Sn`Gfwb>tw#l>-3LD+lJUYNN47Ebr!`G zal@KK%m8hb1_pQ|lj|@VPt%R7ClzorY z-21cZGcswyqP2ufQif5X-1vHC5k79woypu~%~hp}XjMbjZOGQ1qSZL%x%6=*!G*&9M>vT;_YWKPz5NI^)(CNjZB8nsHtiA#I0=r+MeN$msZIp=?{5M z6g_gsb(>~)<&N;BX*Ecs->k~CHm*E`)Y`RH_kt+wzb+e3su6$_>{x#;an8KK4?7VN zEa(((6h8t&V@cxn5+8lbb0nv3kvW)nt7eG~T{HAV%oNI5Mm~ zTQv6UqMVi`;|gNL&0p^3SGCE(!{C}n+6}uo)nMhpy4-T@b_}w9g!ylr>|i+AkMlHI zcEk1oM2&IW`~WlPn%i@}?FXuskMnM0EJptTN%J5oGVU9ukciC zMSTmsKmW32nYkgQU!Q zOn!gT{F0b#~7A&KXI)7N6#pzQ3eLJ;u1G^k7l_Be*r8D5YD*4Z4N65Z&_- zNRef&J8<_J$nvtwqR&+}&Vcknzzg{(J9-gZ`l#`MkV^(qtrn;{bHY@z5aPE!H?ApVJo4t-g?gN zTW!aH&=Lg9vVgzTikT9XqW!Z%SzQ!3#DeU~vEL z{grL2WlxNW{=kIl%N9Ls6HZHg-K3L(UW!~WXUhq}JR2WvwYn-FMNUo(Mg^2== z3=Z=+-{-8i$ukS_@m}MC=*DRpMj;}@V0pF8CqtU+^MH3Y@xNu!jcAnJ+#r&Kjzl-V zK0Pw&KRis1Ip>z*KDT29d545{PGkxv%18vwO-{tFkx*J9J}s9KE)Q{YX6gCFzH+?o z4v_c;B>%ckp2Z_@RmVVkdh1H8oVd$VsIzRp|F^x)zg5Qz*vb#+g@=g!T~`o-}Ei9 zY=JSZrDUI|@vY9|X63~p2e8^k3ip1#jt7AW-Dba<*L7<@0ch+xKBI5=2nXRGSzWgz z=QdS%D^)#tqRr#`r3TozyEQJTMNajxxQ$8wc_wX)DeYVmUejGU4ZH z%kLlPinjWnCZ9^`xUKjZSG!?-)-=NJV%Dj$8Rm5~gI{DL6KbnTM9_^92 z(A#Cpv1Sz2wACE4Vt@X|zRH)CCFwu>R!zgcwEp=8rGGFpB!1r8fiBD(kDck;e)K7z z`FiM`^&TUFEeL+DL13L%xSvNyg&Hz+jr^?X^(i4fJ}qUrr4V@2EgnB>I$njo;*aXr zxwdZ=H3`n}f8*mXo`hOBgz3p?P>J=UZ#ao+fQ9f+Wh&7K0V?`_Utuvr?v2PNZTK_&Ub3%3YTfjpU-_L;5QzYra&MKU4wy>m~#!18!*jq#X{- zA4aayleg~WAKQlK?5cX*RE|Z_Ql`;!WojC0a&EXAP1Gf+6JaiTIhOM}G2bwPUOz3s zJv}?_DZa>lm4H)NU0gAhUK-sMSIw)2#3bLGy%nuAg$Q?}@SW2i!eKwm)7&ZO&^hvgGJVu;?tF$DH z@QI|Xt&L9gCSO>k+1=%8B)vSi52>zkB78Za@H5i>?m#)CUp@sS{Ut)(13FPvcfJgaf(1UO4+j&G0*VQ*WCu}ul#33#J%T4|d zj~t_O)h4*Nt2jKnmuKhM-|HE6WsRu*EZ-YqP@QX=wVaUob2#|5^ z0*vvEl9B&0jMcE=^RA0E^v%gS@Bb6hX!?pB@mmYv-<+*~z#H>lW&Q<0LyiKtjw%CO zj{h7+I3&*x&fE|ssyF@TsJNNq(-#ki(xIe7EAU3u%On1O`9i-+izT(O_@964m_ZDD zaq(~`a}8*vq%9IQI=VCzI9ZENOr0751r4Yvl3}U0%WZF~N*x`yDrx;!gkt~CP@=Lu z3@b6>_Tp~++HzC}p|JIdI;tX%^it)P9f$5vTVl^DfqO%x)5h?==19?;It88{oK!(1 zbfm*kltaNxS}Cd>{jhOCd+=F$i)cN6G3fh@OZbhIYQhL}`3II#dFweN5yN6t9vRo? zcpU|C`wm4ZmmlqGl!PslWG97ZtMkX8QBo?fZoLI4|BYE^9AEga>j2JEkn7+&{5O;O zKdkgFTLd&5WJs6{a$?!B-^O>ZsL{t3{d4#(x;vu5@Y30a0AiIEXw}X2NhWPyp2A|m zp{8hf5fdq5*z>#$hemXKzoLHIw=8(ap(HR4#-W|Gt8GY)GgxGtOonCi-b)u?nj*ki zCDG7%;>MCe?gP)FsqW?3b*CcVfxR>^SvyAsv-`8Y=WK61zqdXclF}Mu+m+HP?K)qh zwDEQrFOQ-ofE2c~6YtreEB;$O!2XP9%WyB#;oU~hdaD~D*-Dho4qB+*5V?DR8d97)13Eol#JW&UTQv|wx z)X6AzC-#{Sc)Jo)Kty!Fh1N9I+!QO0^65(MiZabEo&~>GcZ`pZYS#B$8OV}xmY#f1 zAO!EE>x%zQrvck7SCrd$i>)tp)?<}M#>Wvm?VF~wBR%3|<1Vmr z(#yVQzl&@LuH%WneFXjxa=cY!{xZ`r|JJqTHzHGAspx|eHXO_?+H7J} zd1<#P8!)Pr7@iq&VrnX|#@t%fGl2~+I&!^x$J_}Fa=0{J+6{EgyNg_wT%FZhdTFa9 z&83M;g!T+&cD94(jyvm#e>64qjjMuAB@%6qHJR?o@j%HEpYA<1&s?umzLPu-uDt2) z2qN^Qy*CHT+;mh0E)sc18#LO#YJR{)kZ94?@f~j?6m*Ln^aBf7HqLm?a{w>a7_bM+ z%*kkn!E~U@W*`QN4ayy}c5b-dR=ALem|?Hih|+9PPxI|te>1FjRpj2iD~fI;$3)e+|2;X#cdtL9jC8WE_^ z&zK!GhDAY+RDkbjE@FDG2Dn9IrOCy`3GBQp>I<U0H1%ec)9YqN_Ur)knRuG8W{F1IEIq6 z(4iuG4-tckYsoxO{cd&xcUJS0o0lfnC`~BIh!hQ!)ux|WvG2$S1?DT;DCX%6s1F_q zRqDOI@p1_gi1cmyge)+F9JGcH3iqoroV=NSjDIgVYyNtn=$Z6HFG}i5IFB-SoXX-j z^2;uFdc7qAwVTYWd>i{AdPDf`?}Y{+$z|4XvOd5>%NYvmX11?kM70cE)b@8a&T<)uqBg7*__U;+|g4d#^CYXYjSR`pC8E~7h9k?1#Dj>8;cgHSD zADLWPof~jMl*@$hhjGi0m*$sv&fZUAQzFlF7^}sc&zlWl=j-uKUG)guvWytBMZ1U# zY;~%grIKeg-(P+b2;OvsJ2@>t|I*|6&Ef-ODA3aJ?-DyJ*YY{rkFm{VnadS6?D z9x1kT&jnBaY6ef69frj|4Z1fI#)4LXNl%FWK-m>Q`4k|9V_13dL0Kn7Ro`%SK>Iek z5$hnEk4BvIl@#w1)+g{xS|RF;Ea1F;N~=F{I6*9yi*5TG>nS?+`SBhmjZ+Mc z>DTqZ9#D5iBC@>o-s+OzSgT%5@ck$e{kux#0m2Vh_DUQv>e~2>7bx-@-NOA*qPu!9 z4>#{N&rrg;6m!RE_`|(X{#Ebhy|a{Y?h|TnzL}H(UM{FwZL1G>x2r%&Fl_d%Kg|bG z+dn5ZD0RxDq@7jSnzZDm^hqt|!l!xOjqSnZJgV)qoa&7pzUqx^a>&ktBcqY(ch<>`$O8}WF zv_iB$&(UO8gN5GV0`6}^wARy5U$i(5gYZlW$fq*kiD$Ty3oKee+DDROZpdXR%2d0| z^+4(>c>_M@q(e`U#pF5e6?bYG5vssM{SXMdlc zqLXPvc>+}N!}B$aw79!v{OXgwZ-;Z!ey*KioF5l4u&E0UbC-jEN!ZlXwDLL0%XdUu zF+t2DoA(5R$p zEpghi33O4I@C^u^<-~nsZgv7v*ownFEo_?bC_8j0$2eWafgSlyc=rk%ebjh}BOJ?8D zOob6hWeCTnFF=#@h82gxOvZ)IjW;ljm$&_EdTaBywEU?y_8;*GHO@2m&Gw6rHKO#u zi=hJozr&XaH0r!2z$QiR%md3ux+HD4{N2wi>ED^F21g0Uly!<7`WirxRoo@zCj@zU z6{X;coV2bKdP5|rlTKw3RDxyV{jtz<){S<;N;yV(xP`~FUM2(Xv#}~&8N7lFb8X#h z5y&lW>VCB4x3rbc8=_OSl*Oiav8b$X2qAZcse4osk0s`XG1xA@6dS)H(~_dbEn8R0 z=)^fBX`en7^hII6e9N@=@YHys`1!!Mp#%Z-_;y|a3m!2mRZPhox$gYiZA1Ldl@O7| zUHn|z(N26&OXIt+u|ck_JRiWM2D+E{mU7Cj2j$}rA8ngN8RJjtcP6d=Z0^2PFUGi3 zqpbzWez^*=$ECN8 zZ{#h?{5qcwZuIs_xKD)P@Oys+HgVg|+j7XI-08O16Hl|&D;)<7O3ittyuSs< zwE8+erkeHSxz8GKr;FYy$>mqwp98G7K0%-5Wo%mkUbo}@mGfWH91!8VPu!q4k_O}2 zhcHV9`~y}d^$~nIrHk@9M3c(c($}Oy{B)8rb*Dkz-A9$U+)JC5C%a^>Vb?ZqoBGlC zsu=O@>x*>lwD$z>Yxdi-5)ULn$wxxA_xB})^YkO@c}8TdYlEK9cg~X3NC785YNa9C zJuIu&QQD|-iZFxNOj{uE8GP6N2=a+o+0i{B2DoBW@RM-s#+N5%i)!p8KFyJ4hn8^# z(60bSV$Y<4kEaADF@JE3?lk^?iEOvB?<@p4G7afA1_&&FN2cPm3TCx3KHwxiz)At5U*O&uY0 zSAh(B&<&DdYRvLMZdI@w%>y3~hu{igp3TBhH>k%*(QAzYbg|Rt>%OtiNk*v;i>2Hh z@KdZNC=7k?Dip1kw)$p}W%MmT*J++BxzIOd!ONV+mAb@l8y@!p#I;s~dfW`JUgquV z_hOr-;ae0lx^W(sy!5lCq1~)boU*ZL5kH5|08R70X44Cal(sm00paPs)2`{I)+C(O zxORz+<}@NbSRp|otm>Z7Yp7T{@W_xrNub~7vkIZ=n32?_xf5ENQqBxG=KE@AJh0h3D!{a& z_f}k@nu>{8u*sKLW<&b!!dpSx5a-jEB;ZO(|Z;6{`eV{NS4Gg8MUB{Gd!#ICP z=w!9N0K6{S{$A6~+xIy0S>n}d{3^8iykT5NDq!v3CwNOc%b@bZQclJ0Bx0rf8sHd& zv`ZdWt_`B8anD^I9yZ2i8K%A=7QS>Ub5$?#aeHomBx}}eN9&!GveouPB{};uh?Gz& z^w~uYeLoK~I=dhOID6v>%$@9qF4)LV(MyFQsKDD~L}m#!qUBYTt1tr40T&E$=+809 zU8x#^PE|}2?UhbMlPeLtH@Svp@A$ntbMO1-!$^CkDPpz4Wst$XU%tS5mEM>g`KvMW z*Q5N5TipBp?{#JYkA>%NZyGlHa-TeBOvlntE|}F5;*o8_&fL0~v!iebl{eO0)UU_c zjh?;xdH&$)x3pKG2gKgIJaJ>(ZC3N(Y168t>J9lsLhK#qhe51-mXDD`F3|Ib@<~>` zP9q~JEy^zg}a-prdLEOQs zOlvbnfEoF1c8uqSC=4p78Fz#plq+9l8a}<5`1eMpm$&_rF4@z03h0}>pts=c)brO8 zhmUTyD0}}YC9&}n%;^+%uQsd;vx-)&JlwhAb2&=XSU3DoAFmhAA8CGVaTRSIjHO~? z92;Z+_8B~Q;fkDAPc*rGMp6>GTT=x0UJ$BVEiCtm!Hl%btD5gL`>wu-(!+b6woi6=Uq2-^+PnTy3FhO>intb6sFq&Jo zDm}Mq(Yb;I_nrDv%Tt3IQZ825mtVFk&g|=~xIfmi>n{HBHygzv{ux9#-cN2OjWn3E zaoAUSLoAGsnislH^x%s(d$I`!-}vj*E-OYK`r{w{;xeq?j`v-A6L3+RF8NToxGRgv zbC_Y}{iDT5U`@k}8sA?*u~&h=yeo~(?#RZ=P!? ziJ91}mV5~LCh5$uhW(%*1k*Q1k3lDlTI%!qMcf*P0NAi8?O3jn!rNy)ALqDbI8RkF z=P1Dhu4gmPaj)t7T>Tfe^1s>Q(V3wFa0}NOQHz(EIkqa%d(F4Md(BjAw|3TSbvuLU) zwh2dYFx4uO0g2mHcf6#;DLQZ{j7L%v6^m4Bzu+_^n{J#DoUW5K)euvV*69t zxetJNns}9M8p*V%HsqLCNhPHzld}y#g%c2RNeiP_0nfJ0JwCt`Y>g~haSQnteo9W2 zIyzz8;`6RzM@DSBtnFsYmivnlAtwGb@n{0HQ7XX6&ZY6I$7Hf{DrnNY-6Ah&9&L>g z1NNtPi>{5o|NKS!70Sa$Q-i71gL*En7Ea$jTwNbdxi%MzBu^!x({(g$>cz~Nt1*Sq zl{q@8RZ`tmaxz?U-WOK}XYdcNJe~Duo-tjxd!@V3)|`@Z!_knrfMi(2YQY7!8;BP-`i>= zvSGF!@5%q^ZvYx)cfkSE2#O8?s^;i!xLG3HFJNW_lZSUMDcFMEGxPhND(Gd$N-cF` z4YgApmCEM{T`AqA{%u~hwK5()Stv=zChdBOPj_A34rj4W`&D{XI^s&qh=a?mju>&t zlkzrqst*TPb$ybpwn)3bO8L5L03Xzt;5{YC#wT&PFE*EQWAa=tY1v*+P$^gs5$U|> z;PSSLKh|+4XQ6S$gcvsyJ1;}E3n4s4+{v=8w%8>%Dpsn%zVZ9!O9n(qQO>q((8*Oa z7%f-dUk)@~_sk}pjArInoA@~E{WC+knphk=!PX)0?dGc96t^30#GWq_Y`o`GM+H># z3H3NPaYm|CK}sJ-RXM2!JGk(yBZbYr@a~u$+rhOewpx_ERfG$nEty@JElP&)DR6b* zxtmS>(_P1cvA$L~VCAJbl!lILSM$l-%}7Aadyn$BA`FLVVvELA4tbp^*Ujr@#bHt6 zyS}=pM|Cv8+07W2yLOf%3|T1gRo|!WtC7_k3n4W5nBfwN`W6M;@@Bu{fd=L&c4?QL zK5vPIl#x%ca!@QHz<57z=N6Y&qlnFp}4^T5%P*+vkw{pL4frM(Na3Pu~Lo z8s;saXXoL6EaZ>+Y<4avOYgSpKjTs@U->OlpEK-`ct2$=Oz4fj*78($2WS{9dymgZ zILO)kaMsZILFi=G{^72aWtAzYm73vH9U!4C>%Z=h4Bj<>=KUsDSd zSkuI->!Y*coNMCBIq`!IxqaI0j=d#mh~@*J;BMk<0?GAxfR>9}$7rIlt&iRyBqSJ)&QX zy!o3fbp?;M9by%OQLj?f)68gP#Xl<$JC?q;E%sR_P$83GRx2h>a5qSG@HYi)1vvK2!(^TbrZg^)$GktIfVtz8`-i`_*WNi zjO_XMIp$ygU)~RZ&unWGR>cF?O;MuON*EYb zf=rDr#>5x#cC~?6?V{M*G2;t)!7SsUf&)Xv7a2t1-7iA+mMyqC=5+tH1pz3$KH6c^ zN76zEOEfn{r?-)%aSK2J``QxgT4ed*<#TP3?2^s;Y%KVa8B zoEURvfm0{LK%Xyy_k_o6%285En7xAn{D+d_-x`lW$!Gzu$!CILC9vKlu-nlYCwt11 zVGVR$)qBe_;~GZz*!yW`_WOmlrty@Xt|J5ylS~R?G#)8R1o5pug(rEwFm_0G!a} zm2JcP6LBXDPaDp9u2=LGt1Q>6p}Ldp*`X8fv|oU@bzkTxx|qH$TO1R8kKb6So0dnL zt(A17Yo9&5W4bt+48>E#1;)GRm!8AO!9{wSAR$n4M{LmV3%SR|yK~h}IFeU9TRhpg z3qOB>>AI%TQ&vY*+4|(pgM7@(}rU zYWz!RR570#)r`QhJrS0qu)r7S#Ww_R4Cb|zpFMca^WAqasVnJ=4>^w^@!-22ZhpGw z!XA0guV=y%&NOmndXOjlkV8{(<4rMg5x(K9lc?M(DQI(NwdMW4#FsNVd&my#uWhbe zj}K~(!{aW1cBj<*& zm4^F@YzI4wH|H=o%2(?rhE^8er|b*m6i|PD53o*&u9GIDZ9t@yRika$ach1!&#;?f zwrP0I2tSRxG&@kV+>)r6Y}XI_Q5=WsH8XP!!bO2O&yV@-A)#$}_%=t9S z^tWWbGq>rWms$+LYt`q>cO~ER-p^W0V9oN$e%7&}frkOcEh+B41p~U>5|`{;-Zsrx zA;wo|y}Ni;*O8U_Rr$2F=?*?F5N|?OSvE^_r)%N05`776#_1*n*_G};=8wR{pX0}A zt?c)(d*Aaz#zs0?WmzT`DdE3dlqK)fFYRHMvvU?No_Z<#IqCR$csCJqXu|Szw`Tu7 zpV>wEL*ho_>D87P|JBLd)Ssnr3>%QW)dH9H*0KDJ7w15Kaoi%CK-=pT9S)dv=)VDY ztwj{1xFVlI*t9P4$HT5BMwLG49al3=Luu*vAJP%h`__AwukQ?^is_2OK=`bwAR^|x z#Ey6=d-Z|67Z~P(Llt=Cnsikpc&_@(>eeajw-mkwCSkq7-p~{aYdwb?aKTb5ESO{hOP53>%&;7gBdq zuGtser|jmwYl?OZJSc8!h4o%(2wWX$;L}OAW21UeI>!m#MI>#2xjvqarfV_2ITl<{5| z(`!{;o*YyXiIFT~BnOAZ^z-f8BW!TFz*T!nheaKhQIxp2KUplrYXK z(~x&rM*hYShqs)bEY({!0kiKO9n;to_LYt&Jr;Rd=T?I1K>@8xRM;EEKc552Q402) z<+q<)!ibywxanZ0Rxb|$S$TVskxM#GeZ_m>J;oL2@;ceKl;~9;0)%%kja22u+3~MueF6pe}A<@qv8o*fZ5L$7cB0k&x@b#J9)ch zPU|7_LY&>~a`y-1z8onQbOqKkLG<>=ojm0wQM2U-uq~KF{0zLuuDSwtN2`*$ghp7! z?K^GM4xp-8LZtAUlQ+gC!TRda)7MKrAv0G9UwAOIou`e9jj{|_w7J1xC3Y=)weN5# z$RH;zco!JeMDXIMt<(=&YLvT zEj<%%V)>m3OX!$z)#Py?01GOIJEUvpJ-pixK5NqXMr2@VM41oyu$%uHcPs08_=e}M zF|76G;lC9jHDF{qzT&vy7@gkh&#U05R7H2eW4r@WR}Kfq4pz>-l%Own-fm==bF8$6o77ANc&86R>f>EcJ|R7 z(Ic(Ru2Oz$qRW#q7wvnp3q0P6>t@~@(k%`LITOToK?euXp!vHkt0bO}Fs?Tg<8;r~ zq=_ugc6Du8Y!#7o#NFIr3@p0eZO1Jn;R^sM*qW_21%g-oT(o0uEXy>=EAF$#v zU0Cjh>ZgLKGm(b~!&UcFob8e!XA#)!u&Hkd8wJRDi=TpOz+;Kfr_hCVNhKAZE1#XI zIOHl+h_>r$3!Vu>ELu5Df9)_Wyz}Y(Vf-bn>&WFOdxXDB&b^7BCd&4NaIO`(B)NMa zxh3UlvynaPXjHH9)Eg13 z(sX41F9rp<=6?ZR0hQA)68T%1-)GamS|vMtH6mO>KqO1D|4pp!KNOX{sc%67jE<(? z3Gxi;YliY|^szJbZ~o4Um+2gt7aqS9l_50vvog`qSn5o&ubhO4JO3^Z;bIVU-MnV# zUy90foB~Y_I38%$zxxyS!ldSfrGWl#MdkY65erHWRLI}d;yqdj@o#J8Z<%0!7I^so zp~!RJ^`5_kcqO>$w*#C5CswxD6V!GOy`y+GwTX@7?%ep=~P{ zs<%DeHK?3t{zW_X!r46n?$17ct%>;)1py9Vo-qF_^TaXT8nya%R~pj_^q+2Dh$(B? zgW5|I9kI@OJGg(oXD%W0cKzcnUVOc0o{XK9SueY{SlqJVbd5vw&F;?;mK**`ub1w0 z{K0S4q~FokgWh|?FaG$&REhZYQUn-zHH9AFOQ&(P`y)}=xLk$(H(s9HdBnNuz@L1i3jHJd9rr%H_=A%^olo7B$5aAx22J?uuRiOv z?C+@Dcjcdi8xGaso>>`b|B;yQ4PnWj)wjlO`h#c|@R2UDoIZ1Y`tsqIzsMxLe{Gf$ zwrVo2t%eOqQ!zTxQ*qksq#=#p?{RpDDP{M{muAV=vbM5cp74wg@s$2a(7SjXW}&=K zBwi&S=HQ~22So478348O$Cr2wY(ZD({TI5(*+0OAK-(i@wd2HfRjzsJje8)0`aebJ z!})aH*D0AsX^zM5=?O_v9%4e*+z0w^S?UuGrQTYQ#XGwM zIpyC8ME%K8e0&K0`mqN2{B6wd>68d!mL&L_9{b=VL_Tj+MWx;lP&d8xo;i<8K)uCT zN}2!BU&DkE!(sZh@T3ICBl$H~;!hSR{Xxz-{ESZU+jYDSrpf-t=t_I^Q1>d6wD5$3 zt0p3$Wn4Vm z^y@fyga5%3|KylloihaZi$ED-%6Sf+@mdu8dzH(u zll-r!d)b5@;XR!65B$%2v5RzNb|v>jIBRrS2WMi~w*OoDhjqvrT*X=v+sfF z@WrFjVA!TGj;pK_$UJrrUttnNz4SAPkh_+I{3 zkjmkgAaNOC!QFKK58ey!NqBYvmtCQno2SEOkskj{5Nv2-gNBjz%g^_?AV@pQDD(gJ zfgI6;z_c>RZT0&f{F|pR?+K4efmiP;ke~&Q(*gU^aCWQVRD}R=U-oy_zj&MzB15CZ z>#;w;70TXxz_7CE$poaH5qK}L+2eR_s(*Dcmy_fVORZ^0`8Bu zkRA*f{k8oJ5TM_H>rWSD|KPT4K(b!(uiPZd$H=@M31{4?>UYFH2?BzIw!s)_#G9&( zbr#XsqgS@2nFUI#Bn)Av``2lBTPn#|$ha)1Ga1?FQmNG72nY!DmL+2H?h~Qj{dHZ9 zmE*ke<6n*baqv8i=cAk@%-0KYp0FunTmVAN^t0|Xdh#E6l_ z)S}PT>8?rus-~I(doUiV0PwzwbAbN^Ld|2PelUiKll4*oCe$;We9CC4%fNj=pq7DxsU&#oIC+Oz&l(vo@EXWmC$4eeyByV9Dy^RF2j{mUlgg=7peKRF z7eNsha#(Vaksg)~D{h~0S>GJyORduBLUYS6Nw2q72Jl^Fkj>pf_=Cf)c?oW!cCTg6 z=o8+c`Kxu{}5YXh<3~_bF-TojS#R|x85%9 z(WYGq*kkE2=Hd+Pv}8#@?p}|}BeX;lOFb@bm^8f>3lWo_ecP=sa*lV`y=0=RYuS~px%*be?5*4{g=$!+TzML-Z0Q4tGBQ9%S06s1>1 z1gT1ujsnt)^cIS+!A6(f1VMU`8d?&Hf^?(>2oMzMB%vlk2z)E<_MUs+dp75O=b!!C z`=>j3@~pMynsdxC#&jP48SlHvG1b(bE|uqr9V@vUu~YS9o+J{b%`R1~8{ffF zY5wg@&!$YZX0k9(JZ>iOt;D*$Mv~NfUMgApS<75iVk|F}6P;$tt(S02FFu9wWomV$ ztrptcqoAKBO(K2h`)5`43dEzG0#N+(`5|n+YDJviEYpr48N^?GsPo|op>W9FQQ5Em zQ`R-xKL?3&kZ z#p9Nzet|7?9)sDR(Vnuv)y)5jaZQl0Ro6R4HZh=7yyUz3+nmQT41<--^qIAVY|TiL zYVG1*Esocw!!f|s1*p?h68WLrk==B>XPu~Vt(BU1CjzU`uXi1z`OYI%qbCZAsJgHM z!#KTjFt~~FiV1GPShPj@n(vX0%^Gu4?Q&g!?xVYWR}=)N7)K=oChCW3lv^$gG!TDP z-Dt!fkzs$+ka=Vqc8XFgzI znB9+$*Snk>K7c`-$(JYWaZfca2Ti;Sa3o0&5C;ne3bm@L89jT`rMhpmGY07w|NKzr zfdwim6D0I7OCkD!Z(bz6(6CCSn!K}h#J9p5m?nI1E#1?%$k58j zVBFCRuQQGtuzojw97s{ogH=YHRn90w5j!1^`cYyv-g9^oPDB_%;rU79A0EqVjM48I{&CSL)|vk3qaf zjKcMUY366Y8x1Xu@_)yXq0Y+jh>1;@BPr4j<=c5vl=qLlJ$3uS3cX37&Ixd5^0z_u z5nWE`f?NZz06}-4%69$fM4gW+=rd`jiI;J@($-xHl7I9I>wja%(n!SaX*iC#5B_|{ z$*-CqMu{TZD=lRy(muuDbeae60swxfa6&nlX6nOXuW!uYGWr8D2hb_mEmj&3d>g!1rO90{Gcz;E(jFb&R$rn`<@WpmLDp-f zGIenZbe|tA^z*!x+;q$E!;5$^6HLootE!zwp=MF!SsexB{JGBYWxARPD(|URv$MY8 zkrS1`@!Ihb@(wT=5K$)pAD)*b`M60uT_d{Mc7b-NsD5IZB!oP#O{P=FrUCK=#}8J{ z-{W>>Bb?t~4!Qz60YdZ^LaF%BKWF_@yVOxK0K~(WdMt_A;4{eEt9hBA$8io$FuVuf zUMwm!E@;paAJV_nU)Imi5Bk9U8np%kt%YVtr@JY#Zi-y}6w~|3{=f1(P!0cR*Df?H zi7cseEOf??*BY@)dBicWrM|0_(1RMjZwd(q>LP%wn$8F`?XS zWPLi00!fq6!T^as5Ft$%#dWSCcl8$Mv?N&SFoR%-Y-Kl4#4jwB!t6l8I99gKrWxcn z_$8|&j&}|+HyPMSGOTzCSL>4oQQEiXoYd`RT2{GTX1`3fsbfV{-b=&Xx-boOF9`y9 z{;S#0yT>;VGIh}}eEQW%3|8hjE>1g{bDstncQtOUmzYeCl)Zm@&3^W}iO_+S>obG%xFn_Pu0K`R zDK%yHL%5F~hLl+r$dsB?gfUBAJ=gQJ$Nl(=U(h#Eq)?YiOc#3O)YYsfpAXyjHOgwl zFCF10J{18?p1U;L#QssYJ@KK&yd^wRGvB;vXK|vasP#?qJ7Aw{|E;-JWpnxF>934I zNVy!O_PK^2deLHXkHy8_u#q$CU-34%^?>(AwNPEyKe^e^CT4yku@ z>%$uEc#mP^-vCIIbcLv+lc^SScM^0ZQR3>wI zkCx|3XPyx>%zpU3H6NI~Qqs*l8Su*UG}86r3#-z%at6UwlNQKusTKls>@X3B5#@BZ z!noAqbrRc5XR|?7Hl{N3>^m)O4JFrp6>m2mA!a)8iQ&B?GI|!LcTaO^#~I(?GXSVk zx6mj?%T%Vvz;Ne{?X2bO(?|-B^x^brQGdCB@o?ZB%J}E)HF*5`1s82H`h1kYj$`X( zDyLK8|NEWwFSt>5Y@-EZkeKtRp&Z$J#JAevs}A7fm(QIMG<{HF$oOM!&RR}0UHBma zu^^56Ah}S62^eS!p?Cb;|K{9He)Yvc4exF#Zl~?tT@t6H_k8pYnH)cf(if5lo(CEq zpH?ZCsdpL~l2&roZv4Hu$}!CusfTAku3a(5FwOe_jOkt80$uopS*+13K(hh^QHFy< z!hs0@ksl04V7~eW${DcJPVoD-b!MYOV4-qmsl>3{y%tz^*rQ*I6HmD`fBR6rl{{cg zaU?@$$U=O9zB@ujOh_s6eAUveIX>+VI>T3)cJun$-lRIz6{#hk6#ePgqkbIFgv`46 zF1Qpms{XM#ez(TEcwhyO+`HYK0;`Izr{BOkDop7^jlb?XGhLz75h7#(;XS{yz&%(` zAaAC22B4`+`v@ntBRJ)D6YT~a%zHZ%g^Kz$M3$CEEBL{tm_6WRj@IE5+mixKq>CW* z-w)jJF$M*hK1z^%84O5WF6~Z5>V+L$aQtl@NDYBMP~wQZ2h1s5r|gad8gJ@Ws#}!B zJ^=V!kq*G~SggdPzG>3Jv{{nMY1o4Qbt0d3Kh(A}0qY56Io}J~^?n(D`e#1o1Bl#J zk#k4>`J&*ucnBEdcxN^9NYgovHN0mX+KYmdjzwiJeisk8qdI@((8&WwXrl#nQ(m|$ z-hEiem3>NaCYLDq;?xPg(>X5~Pd#vWcZ=mXpGpN4wTkxJNgCR%m{h8zqKfEN z&w6w^+|PQpXRgQL=d>7aL<3%A$KM>udzM}Iii)cxQAd8lsktk?-aQfgOmEVn%46mL zzsDPg+TZe3z+@1Jn3!6tjr=+8D29lo{tA6FgId>k6V994K79JnHzp`7r{lmd)ZWH_ zTSv2I%xfH+n>b+Vf+8$T)YqSv@-)7z;r|%{+z@IjAq^3OC8$QWr!dYP@_T1YM!6r+ zH2KE#HMDE5%%)m?X%Xx-zD81Z)HLOm&li%xyZEh4zdL>!xz4;lu??tRkwd%gO1%;X z$LJjoaf^XG8+UF~hbl^hrLjc|0ARXjiT&KkBKDCWNifJ@FTCK=Yi8qei*z z0N?HF_y)*AFSX&uXqpIx zjlEBL7hzI29*O+gRW!L$KzgO8I@T{F3xd?qFlO#ge`Mft7nqqH$yrk>pu* zp&mCO*{Loz@q;nhx-&stc4rD=)GjT#{bmsA7Uh*n#P}(>&U7q5@W}6+yPnOH2M>>* z2f&NGZ8cH=@F20q>Lnp46< zNRO>)phhu^&)1&I43Ar;50C?N8zJl7^tcuGZwL0)Ld}SKJ9+}~nG$ZTI{e6COTt9p z!X2h}f#1GQH7T4tal(lswBr>1#xz^~?&k<#!ZKPo2gFUUyhyLfjlc`O#<(ai^JV}T zJyOy38lNUec;pcN>jeiP0sIztVn1UdxV?fqS-~K2jHcWGkGaP(@JqiB+#O~JhiBle zy;0{c0T&Jo0+i^tZ3kvg)Vj#tyB8Vo5MjI>?-&^H>3YGVvggu!J2qPz6$h(J?!Nrq zzZKZ4JnUd#ITduFd?B3Ekp#voIpSAIyvfvKjMzdceEvBJ*X$MSL=3p&!K5TG+1K zP^05}3=<|AhF4-eisGNzTpU~xZ9}2Z!7Q|~F<_?mK|iYT#}ZzG_dv45U!-3e z1CUj5jkEq^gYB{Fb?04s;Y6v4X~;D*MDfvOjF<-IU?zn7oZ3erM6Puyf--=Qw3_s_ zSGCsFYI)mJ`x@!1s3Ug!+J_W^`^{q}xO}|<#9|Zx8sgq03;SZs)TsP>C*l1KTbDdJ zVe$NYz~ucUv-#fq`_T{Ej-vP*)FrfsJ$m>2%dm@Vy8xJi&|u?4X=6huui&aLe^48+ zPkhW*PF-UZn$UU8<;Ry3qpM3A?TKPhV2U8wl{1q3JGye5GNI)BvB`aO6mqD7J5N&q zmR?lx&sif?ZwS;_tHe-O$XZS9jdcI^vr)KTl%wBb0q+k4-Da*HHn7m#UeO`W#Qhq$ z({dlaCrxiah!f{r6)ba#N(ZLcr~;jSJ}5A*%_iHB!y?wYZkjCnf*^PBh-|`9Aa<^= z%Lg;=pVc2@w_5KtS`N63l)OJy9oP>A>e$;EoHx3lyc-Gv5TMc2&Q^OcVGwZRfTzh0 z`t;RD+?rk+wCHq1!^LQ0&_J!XP5?XNFYP(k7O1B+5pJEy`^epCPuDmcaKS8&`PyKj z3BMgVle78WaR!F*9D7)0xA{?e_tBF0g#~@HY10^(3T@-fZA z_}004SzPW*Fy@NhldMJ8C{-CauCwE0M_k%Tx=B>f-tv16G0MLCY_#TCoC&A+yVAk@ zhZ75@@kL>9a>#_?fd=_tqwlnh(?y3l@R3_o!N(~x@-pN#54sF+Tn4O}^}kpt?Ep0M z7EXPjv5#SmTn{Ph55nsv9wHC?0IcX^E-26yn8H(lq+St0!by$Rd8B%|SeTvVvFaGV zT&kYI?+o9JbQF5@G3b_K|0CDg4nAkKK<(jTa!)l3vh&aum^P`U6T;NQus!|RiZ^SA zLtDT=3!Kbs&V8Z#W!Z|B9fM*&BE)tV{My)cfB1L#XlME7R@CmGsD7fIkpiW=?9#}E z4{W&x6|GviT0HG(JQXsn!6EcB!SpHKQFFytllEfr)vv$SJAi8Rf=h}xc|r0780=A6*r7O~t8~ul7nWi9?`-r3|@9mFnUJo{Q4mLmY?Olzy)uf{%m#B**i( z*64jSL3ZOBt&RjO<^K`rlc%Wgx3X4le>m(36#LxZir!e9&`0bAKpGuiovPKntl|9- zSPEaG+@-RR?M^U6mWBX_-|;zj)DDE zm+tvt2Hx8Pelf zPC#Ce{i_wb2FmP=hS|7^eNX|Fji<`#8`Ccs*BloJKgKDni+InYL^uzUBAovz{1TXv zOloR*dNcxl(6=Pot7i|h?i(*eadhX^3|91w@9VSj-H1Ua6sD&Gt zRy-rDeQs7R4!mGy<%Pfdt+NMhL!AxF}P#*i>-P& zm3WMXH%^||?NyMv@9^U2pQk?dBghH3r6rCs{_|ZpRes30jOwS=ImnA;oe&H_U&eRc z!gfLno=z6~Fwb2p1rF>nl$6Bb z9>EwYn`Zp%w<@`VlQ}DJh?`=ejbkAEQIG%v!rv~2vB}_nw-n7vJNAzq?I3vy1%{bt z+nN1|g@x6p7hlVXM9fUs7iCH|_*O_?PuQ|+1>@N@e2B}Oa+e5&J}9C>cwug|r$`uI zyx3o-8TJ?bjq614{Jfj%k4Ke1+S5g1GW_>5SVVpew3ITWXJablxjuuN$x9PXSv97( z=zJ=~UL(W(RKW;vo%BG2|J-|2)GrUEiTmjFWJJWINeJ`w$3^WUDjiqm0KYV@P1^PJ zp`1sQmsfxS!`-#G`TGsj%S)9a?{y}--H0W#?h4eoig zKWH|;x3t*@qtjG4bV$E|vqKbW_P?}_s7 zpUlm7AaBjf+uN|+ZWj;mz(Q^jS-O4jFM=9pz&#Wo;V~*keaP4oJb=^p2gOuS>#Pea z)4V+$?E}`1F9f7bSntP;<&3mcCP@6re9Q3;9(nXqf>Xe{r}ay%+Z>N}t4q5>Gp0a$ zHSo7nfsR!F7Qy^=A>>>K-^b_BEMY<$n@ah?ZzyTz*pz!dpz6rHo}WLf&0rj2a>G@0 z_W7rjk7xe;YOd%GTKGVY2G2s5!jlu6QJ;MA-em3Wg=XU0q+ebd+E>1?_Yqze^U)KQtnUX z6~HaJ03fGv8Ar;LzgKq^C5!%m2ln|?fafGkIrm2|$7suQ@qlOa>P6&Hdlwf_aojuT z@*k6sLn)lv=nPr9U!K_$s372!vg*uma}NYY!e2D1fAhos#|sF40N4i{9TjaOC*AG%D~P;hvPO_Y4~b%J2x#AWU@ zeh>ckL|!difnOryk@{ZY-2^7tZDUZ23c~AT&IRTbt-Q>@__@i&Kzl1IF3bzu2&JJv z);{u5J7+Y6F$c`R(*GWPAgav#oBrCW_3LHpt+jg{1MG&XL_`aZeL|P8ze`jQn%3^9 zr&D-T%9YQrPQ9fg4j!&d^+rQm&wrLm64+>x!gmAoiAg0d(h=HsqICH&bVJ5vad6=s z6e}PjsLQ!FuDUj7MzR`d#KnSEv(yQTHl!dLC{dO??DTFD)zs@Vj03w;$Yt{_SN8lC z%YOL2N&`%$eMEztImrSa!X=o#BAi61M8NVxV^Ldm=BA2Q^cp$KgAb@l({J zie3t~wu~Ukc~zm0rz1#qa&vZG@XB>GWNP?FIXd zO8rmi2nEf+mJrz%|Bd zXFS_dGzMoJd*p=$w+5548(@hWQWLZmf!DXWG$2A^6aCp6)Tlh>(OK2~Z~u(q9U(R?OC`znY(|gByqk7~ehuZo9hyyQO0)PleVE`K zynWD3R#I<{6;f`Z%I9m}WFE%po+&@Qh7nJa-9;OB`C+EH!E{S38>Z~}0yCx>fnCM& zB0R0ppJX+Q&7NTJO*o9iF_8D}Blx>`P~c;BuSjr(Bm#D04V#ugko_B-_g}Lf9H8L0 z?pSj1TLEn?L%ALEH0Ci9NtQC>`4j-N(7RjNrB*{Jo0L<=1GyVIm~U#ZIM~p_cAn|f z$;qEBz2z?Lt^no{yq|hG;_a1yqFYWnW`GzlHBm~ZD7Whnv$L@-4zdjT3RD94Pg#)#`6pg?!hcavmrwyK3B^ z=7}e_;FJX1aLfry$ue@&_RYQusH;t;V3gj%rE86!;j3;QG>IYtc6zZc(Uw!7fKT{ zg|<~9Ii#FYLGi~Om155aq9K6{V%^Q5bT1WbitdcI_QF=*xA(E5I!4YQZe_K4ly;yFiMlp;D_ZZ!i zAtQiC?3Fo;Y{borcv>LXay%oXz8mW|8T&O&(o6;?#ec$K8D|a6DhJmmvWP0r*3TT~ zuz92@{8SlVpDMnziy|P;=|3R`;f#<>+NpkSLyI1+l9Gl_FB&Fyb7{$))C}oSb$bpt zQWi~J`;Ud2SV*yj8}utQeXL_g2oYO?T>j|xUbi`2vDB7)%+J$Y%;+=5*2^>mzI!sY zEzvAc)e|>kJRCSSE5I?IWES{Nel1z~UFzkpezDcUf zD@{)ZQ#D5f%e=Wu`eIDl*5`HSv-DrWm?*4GMx#gLA)D!Ja9E+9ppX};z^U!rauu#C zGi(DD0Q-uAxqdEpH6xD+lS@WtiM@L3s7w9I@hUUR2*?~)8A&KfLV2DwEMv;L5>v*B36dwhv&f{dVQwcu0@pF^?xMkroKKYJLOn0+pm>b zZ^drAV6Iow4R4wG^Bp`g?$FXw1k{d?=UBb;66kS7_VtpFo6aaPR^nkv*QZtE zK8(tz(iw_5PY5EDgC1MrjQjKal-MQ*8qp7!{Ucw#j9DDw?;nsffse{%&fmwoz4wDt(qXlaNyCCHX2aNu)BEHqd=de@v=cSk>S+jcgCQl+L`V+ zBd|Fgo-Z#sL>sn2=iaGapRQsj2iW{{{@hXZ6e)K9+ns|BecB;Wb(J>#4{q5&zjX%p zBFv)-PP3jJy0I*lwUQ?(eG!&|9rlOaMi>)HM11>bO$JimEn#PzDjv_CX+;VmcdOB1 zn<7+2Z3Aw&5k&mzi#4{G7jyz5Hn=6d#y6TF@iN;oykfKPCZ{4c)2?y55#2c{KZ5;o zQe;x!I&9Y8{i}rUa?EAV31VAd`g`-EFvmT0y`+!Ji&aaxuNb^coznz#uUz`}ZNWeM z35vO%aLZl(sk9wPsvWnPbDR%?x?)8} zjoXIl7=xTA2t{Nyg*?g9qOKZ|zC~l^?Qfrr6It)zanFA5zyfOB)-S?NSt7|^D9Nw!T*!Lic`GF$3X&dpke7Xazobs`2;-^ zMOZV8^TUTO-d;F}{+r_^MCVU|Sm( z_v4&zp$7v;SSDaN&5)f-nOMjAC9{;ifHOU2$03iDIEVX|%rHd!<{S82<@=jr1kw=g zC$Zg{Q4Y*jCtZ{2QqPVAagF%&*oGnM#)3={a_`m)DAS=K5u_YWWUg5CI??R9+i?uB zew|%=DuE44qm>GCfMF)KS7PY~4fd7sb1hJCL|?b&7eJ?OMmcmAzX8Ro3{6Rgq|cZd zTj)UHz;B0V5`}YLr5^tDnHz902;3t1D6hUNY$qW#3*<>=&du*dqQ%m)wE>jIAx%?i zz{ph%U}Cd(q8eVx5Vwf%*m7?=xwX8WyY^|CNwqBdH_Po*d}j(?Y|Q1o-oTKeLPOkT zq-}GN7kZ^q&jCB=7(Lif^lCiNnH|lG;54)n0h01(&9NE>SG0IutDuL~u^(7}49ZV+ zi_OG4rH_qPo3}0n8Z(w1yA>a-dRpircI?)Afb^3MZZ>Xr>M35$^aP&Ew8>(cIk395 zZ(ziEW`QB}fC=N`Vm3>2)yd^gWeRXozj>A3@bH7Gup$o$AXF%s%(z6V68@;k>uiRJ z|2gijP<}=VHsQ;}ToPS0RF$p*ykEEORK_~`A8@gDI3uOh#JX$4zop@eRri^Fsf4AW z>Ul;s3#ldCx{G`~tyw)*=aykOO0M@vwOn4OS+14(rU@6jrCjn_k1^00$6HMe@xP$K zONApHZ{~ALKYDiid5$KhQ<35lLU6Y3sOTw@9P>&yASrJwuZ41`Y?M;_m;JP7a~YQR zzK$~eNDPt*!bF8aA7UkQ0?)iW!~`>1P+(%6510@3`_WSfBVpUuhlyjyJdMG{r4jU~ z$lLxPaPOufNAH^Okg7(x5$mfUc6kOvAI@b&^1H;rJs~6!zx?15wGzi&)nB{cdw%7_ zdSByN=br{e-cdfb<%|t;!Ux>p_tMtuyZsYocZpsFd)}t0+t89Lc$ zIX<1cQJF}F=U{kcwvWN;-2=iG6fT?iGLliqGtZN0WFEZ3dqMhcb9#H*ZgAo8#wFfR zWa>t+z+dRz|EQ4v-yo^7FQwBjyH~L#jEz|6FSAf8@N8p0&>Jx9hi?aCd~?h)5n9=n zFM}X9cfkjJX9h4r!s?%x7~tc$ou*WKoqEO9LmKHSC3{OFt$O1gg)(A3E2iyMcd~lc zCbre9Pgc?8ixkhYxwl~1LKSYWXCMM z?^_^a5J^vW*y1RgL=&y)d&fS}k=5-e^_C@8ZqLG5$xQno{Cmwaz5+mHY*!Q?vNsm^ zz!N(uFjjiEths-;>~yv2yP$WzwlByFyoRaY*BIwl?%mk%&j|b$zjumC(+7Y- zH9y2y(rD772%BW5LE@^(dyVK325vu0)ODuO9rjQZ7IG#}^A077=dVL`r!QT+=-@#D zIdHRSIC0WMVHQ%}C%w{VR-O8whAsiZd2f~dHFU`%bG>eP4VlNW9&n0{O`ta^+`B(7 zYDJFHG1$j)j_u8;%oQMhBJNk%Q&Cx(GPa0W9(LU?qB=NK=Xe0C=inZ!RSq>=O; zJB`eKj7aF_h|a4!dVQ$%wQ8zf1i9WD({`qC!*j*petuo0v!da|-6FKz5c)AqJ;->5 zj%V*>UvOr87R51%3S&#}t$MZf$c-|jk5S(4ool;3<^^4n2LqEPui-OM(4bfsYH(=& zj+CnRgxe_^r3>uw$cka2mleB93T8>!1+zsgK~*O|R?JH*`tK$lo?_^J_%UqtH~aKw zi$ynwKS52VD!_LfvLY%aB&tD|+pUK2sNUnd4lWMQJ@ zQS(B9W@f>6S`FC^TWVKz;Zc5$^j^+%eoQ}cXbDD$%WPEve&oTkU{!F5@>_{H`)BH0 z58mmK2}`mYIS6NZA>OtL8CrSvyDe6z^puE=4q9Fn{!~rJWz=CCcSTv`~ep- zG>N!yhEPf;9@2+@Kz>cVE%khV9yhTW0K&`><9!3z-n+j6lt(P#SNrOq`|Ep(byD1A zr%NjR=D$2_Prg(yU?Vy}`#@wq@7s6IfU%3ta8hu|wjtM^I<(?T(gir^BuZ*f1|VBh z*Lkrp(>CzRQ;Cj;(u<6L$ZA+|w{>K3LPhR59XfR~q7?s`t}%qYbnlryblY??Wh;0C zN60D3SoX*1cz94xY4D(%53ZvZ=fv)sI`^6huwo2rg2blIUEvbh37Qav4t8o1>e`B=VBmAmi zov}N|rhk!c0oU)9CZf%4n8xJ2WC9}OUONqOC>~Tdo^@j=CwTb%-5s$G<|w)Ic@vx8Q@`P2_jCQHGtnw2$&vQ?|1+s2eX zbR|2&$fP~tHZ+%%7w&Dg;_G%tSbTY4z~m@BK!>7lQGn|?MR3)s#vDHsB=zm{m`Gs< zWYbCJ`4;mKEK$b8fP&VY%tYF#e?U2AL%VO6(;tK5gicP1k2H z(&Hg;rs~O|7R$han%;VC)pW*etgyV+)zn%HL!1jZC;2@W6#v$#i!j57Tfdzk!?SjT z5+U|9ZP!xexL}F(-4c~0u|-4nRj)kW@jR%}BW=-L*xRw+Q|!fxpe*Bd;TZ`!1zMvm z_AE9fFF3&1@+Y%b9x3orO+wY(zV_Mqt3E-Q)(Z1DD6T(IR6AaQl?$GxK&8HKR39EN zrkUzi%e7?mUdoRDOn(g0r1ugPF63UDw4^1l}?IFq~7t2Vdf;N-jOq z4S_W81mf+PpGNV!RNN(#&D)+0kNQWRh`-8aLSV#B#VK|6DxEJT)n(uI3a_`lX&Z*G10!DgZ-~}(rByphH8G}%; zLls;iiaA^XC-E|RkR!&wF#HwKYdYF`W1Yasp!C;$YWilGYC)Ad7WXy%sS z04BweX4b=AH_qq?%kh#&91c{{Nvqo&swk1`61(vW)xNGQ%nwk9F>;Q(pEtKCNnZJl9|e^>M5KNiP0<1pO<5lwPTsLR*Fmn_EgHF{X97} z1xJh8`Z_w})m>_88IFTgkpa|QXKupGu9{v3C1o>RxIpT(%#IHkYX)O>G6-rBD$Zb5EeE6B?XqeaAN_b@QEvuo3cn)eqXn%{^D&y-XQD4OY?o zOXvEPM&xT`YgSw;NQ(G%ke7pen_c@IPahmU?(fxLkC3{hW3oyRcAf7#vDGYX{*LMG zh8RYSmHSxb&oKYJ?waSdzm6DMjtYtm?rD?bN_#-HQ%a_{Tv>TWIL=x*+~{%V^&X$?lsczaUjfnX|Tr>R<{J&>tnA*wxx0& z=md~fKEH~$hcofnWPXBrV3}=p!F#87+dFuZUNQ{aO?4%^9wC0+W*uKF__LR)RySV_ z5$ciZMXjEK^_%CO?rMb-y}K z<=E5@hnFdk8vjRD!y*2XsA`Ahl1WLBJ(WKj=&i2%Xs!7~U{uhsd_1hHO1;QT&O1umD1{{^vNkJ>a}FPgDR|KeOqKi(mXU$9PnUA%*Dk(mL_8Mp4M7!iZ2N~oN37kX5KuurAu=B#- z{NV}w$@G#N-(GVDjDLqK1y0l&P5RH#7}**`m6GjH4GN1Wc&8tp-VIAZG#LEdD!Y^T7S6G@yU!_A6biQ=HyD*odgr)pt}&OPfTfYs zxMGZ+HbNM|+5_^IS`_PSSRf_laK|-C~2m_7l8#m^#X7(9Z=K8KzC$q6m6pK8UYBa9MKOiWfH4P4eEzOAsQ-RniaRB zq2|XH(gi>!h_(c6!}`2tUdb`f|o+s4L7_PChB3o%U zwNeW)O@d0192EydOQzT`*|#+rCwX*C2qUY^)mr6ry3B^|X4_Jq7!F+?6zj8YdV>m- zBFhvG^f>U%)+n^(KL^ZA_8I^>L(3AHsG&E>nO4 z|7#2Qc0|D(1ymCQ_)64xR=^POl;d7+1?F!#Pb&3));Yu}x@=HeVOS-urJbh^bZZ~J z+^xu976u#L>>kH)I-TtboT0>l)%35IJu;@^v?aDG=OqQaUo1Ga6qd`E?o zWg#g#C0aaL6YIe6%UF?uz|{MXufMQfl3JOO;KoI*)i)L(>2QnT!tt&)w!F#ZvZVnm(kEZHLSX74VbLM zm+Pt}I)PeI&12=^+NQpl56S+4|Id}jS_or_yi`cKjCEwmF=&>v2^5UBDKIHYUP^%`vw{b$)xV z#0?_fs>l6G8Nj3<;K(Lx$^28G#j0K@#|}D}i@&&;!GAI7Gmy|J+~1Cp`=I<#{z_+)Q`{UVDu{1-{1RDfW6`EQo_ zz8)#s7$hdViOD~tk1J{dVhZn*E!I4)})L3!p9XIOF`YNG5`O4Pu|KUAwT$v8M;IWIM|I+IHuBDmThXwE7feQRvY%u71SzdpcMorB}G3xXq$ovj!UI&?_ z&wt93&p8Mb+y1-O>sDiI1JhKwQOZJ!uUX>ID)Da@hw!ntY_;09q({W2+oBS!Iuknw zQD%v1$v5fi&yhh#m!bgl(#-$!>IK-&PiG|d?J-SR_PM)j<1QgO`42QY68Ns=cHv)N zXMVaT))^L&ngjIBu@@k|$x_zC$kDfm{jKPqJDb~^_f83n7_3!2vo-%d%4(=EKK7DdWFTCI4OAKw1r;ts=~wj9^i4}&gM?tHlX8pXvi0|NwO zI5w)xo50NhI5hyhyw}!RXQ@@k-~xem54B*sFj-PTvQ$@fa40Ui;|*F|K)S9Bq@vWg zC`zCGUpC9X|IgU+MqP#=fiH_9_BjR>v#v@*g+PoyD1NUkiZf262-V?S@2N7{Z7x4!nh<{1E0JD+VYJemz86tHWjF?j?=E-Pay=*F zTghnEOIo1;&XzDN+ZC!wn6q56gnhy|=3~|^+p)XC)*V+Xx=81o5$EQ_?T4Z9AJkJv zr#HmV^RmE6F8IxP5koM9ldrVlq}bVj_}Q?Qi$U_oDLISs?@{;;0wBo~G!ZFZfO(~5 zUr<1QwIiGD`Xj%so!7r@pB($E`Mh~E+Pk^VEP)s_{y<~j>0Z0TofTbh+mID#VZJEbFIZ{v;zyO6k*8k zkz!0ypB_-- zMLdR93Y<54HBz^Eh9vcP239oFErzMi>`s=^b}D@^N!KiLR<@tE)998ne+jxW9(W@>2sBS*Yu{iQiZlpp=#XKwaz~4{Zuhc~FBt z$?P_%vm|(xgXllG_}9=+ z_MNSaY%{y}BDl>a{rjuzt!vkN7DaEJwY~)S;_}KAE~;kSpJ8i_r4ie5JGZkFAX-+l zQqC$mIstsz&{$Fq#IVwr7|D*Tqn;8%uBAvzIfQEV2I|fAB=fLzBv$BtqG$9O);k$! z)$je1U#H8{uG!SqxBhQ0d99`z5A+vWsXEtJxO)8`*4{I$$*t=a4hR-hEQkfE(iB7#L^_C| zG!ZGGLsXhb?>&H`s3;%^NLM-m5_$=cAfQN>8hY=chZ;)Gid*-7&w0=LJUrj|_Ajq} zX_9;0Yt1$1m}8EyOUyGRob5rI=94GpcMc3!zd8{K@DRzslqX)b+HYDY9m zz!^~tixNml0UC^{mo^V@30|1AHU~Q>w1}Kk?>wcpqa&T&uqQm>9kb9K8(wG|b%->HFVADGSA=58y01tX82VblvKfuav{dR6NM={G z65m-nQV#p<hXipa89~y*>}{&5K^bYshoFTKxyNVh?7E?e(N3)PbwgWTuVZ+VL~Z_yZp@{y?TL zySBXfyWsz8be<5At)66ND2{L*LWNqQO0@vDBEYM3m3O8y4Qq`BvK>*^_wJVMJsO(? zN2<6j3y69w_g_~G<0{-@hFLPtM%nD;$r{b{B*kRu6_VLW6&vO;hXOnlfcLm*HCo6; zI`ABSxK=hxKK=p3VCbez?;Rj`Z9x*K0augh(&xREP2=ER_|AWl4*>Y$*-?XKNJ;$C z=JMFYH+z1dhqO`OeaW zMKL^f{y@c>_wV0p%yzLYI8#1qcuk| z3{u`6*Y~;Ziu`z4t^ZO-w!SL7r${CBLENRzg_7!{WBwJ}YcuS@Ma!CxoqM&i^{$BK zO@(0hh#EXvh$jf_WEgN2REoH&JHHOPODSOUJ1i}+xj$|^eXx{w8Q0Q4b#(R5wyU>!uvdC(1EFZ*2@}y^pr_JAt1&|fSHoc!j$pZR|BJi){ z+lUHySyf#f7d(g0GvzgD>^=u{s~6|C^=$3a!OjADU3KKfwl3}i?%n}F!Xu$V_cx!A>_W+sa;P0 zX!pP{`USaHfHW*qT%YR!@+@YlRhA68D-)4q$nS=UE^5cUKGuz>E@>M!Qh#X?`gX$ zGUW<*B^hw-r! zC0Tp2ZBzbK;|Evs=7KM_*6ks#^LmB%ua^h*NQJdG9sD^2%us|@=dS{HWAdR;B(BcH zagpQC8*+B78uGUY#Ddg|%yx&p9ru~G!T>K@W`;JNk>Y-b{Hr@V8gE{|E)hF0n*N`a zTvR7ZvM81ywMWs4ndrSW9K0@)AC=w9wED`&Rlv4x}3~!>RJLED^@3w(%0~ z98e$zw>}{Y;B*gi(&qRJPFK)O&abz;M2W}QhIlTlX>Ma~z@(yX&TsgoY`S%}|5FgLysFZy4kYU17W6O)om8@gZ|8sFcAf(vPReeA%0nE$7O zYCAKdCHK_rVQKP8(}7W9I#R@SLNGuqS^h&kfWxK$2Kpl5`3~6s`2!H=(vl`bc%F;G z=q69wfZzT`2mT4@hjq#Lr?~SmMhYrT5G=OIE+BpW|KZ1k27)IX7YK_zM0th$DW0SM zZ+HT5>sVdA;YLL+vM~n%R`QQ6%l}zZ{PQUP^-q4|Wc#GjMvf`J+cdvkDwrGoZ%S1A z+rs}12LdU~UxVPU`Yp49x_1r>%8+|Le|`UO)k_`4@VBJ%cAWc3K5j!|Ex`psRtG5Y zB!WOKSvQl&b{-NeMaSOSIyF95N?1?WK4$S-JjCzg<&$RdG|FLO_p91d!e76>dHPg5 z7pH(-^M0NMz;xFre`DSYGwn3PdXoBh<5%j`OP@X+br|i?6?G(-~Uw%ak0AX+AJRUImjRP;E ze#u~R2{yn{DVsvMxpg#`EMWtNRvzS;&#+6S?@C*GMhoR&Ep z%e#-eh4n5-5>(aNo9Zrw?2xhjshelO*z=}7uMaGYuOe9`tk+xpAMhJaIrXHuVT3)6 z)0pTK+UZ}pugNooDZErk6e?x7$zTvL}1 zTyI3{oDC=CJXZD9+DozM0bR3@>>vtoARmVs^vcSznWJ_qlq5A3lEL({jct`xFILc%oewk#KuK5LkREKsxe$1vu z;q|vZRs8q=UG7LO;SEs9QdN%c*QJ}OtKG-?9p*Rz-b$S@v*=MOb+Vb(Mu+9^K+m6{ z4Z*e2LA0s=Y=RQ99@079T9+pbW?)!30EAsqC_6wiFF|f&-WHb0`ZlGPpwJ2(xYT)A0QZJw=oVL^8aiS zDVTvp4eRlD5ZlMQeM3W5HUpV^vO_q+#%CgsS7~TkeLJ_sz6cj8<@vmxR17pa7wJAMoI zPDpa#aoLfNwb7Hr70V5>T@sE-4N@p7TF9zr{3X6aSv zfl4Svvo2IU{iigv)^(wu6W@gjt9nUOn{f|$5j>in6lwHmUFenke(2b>#gl+U&PFm{ zl&Va+OcV(s9iX_gsPKV@f@9SvJIk|@(k(chuu{z07P=DlticwOwd49O0 zB9pvfHW>BBb8%ullriMdY0S2ioo7DyFQHW2D}KY3ByP9lYf#|cMrtE?9u<&=YRE`gv2Q^E{QXt0n-wwb(mDXS9;U~2bFmwL- zRaU*iOoc3{xw_b=y+VKavTnX<_=Iv~ui1I^&wWEfuzTK8daq8f0Oxhwjj2~1L+*As zNC~a`2{oD38JIWcgyuuf{_fn_(yuO((;gAi2iuK~juX@cSciGdN@A#y0DSdj_o~s1^QI5P#1q4T#zn*(NvyZLp zUs`z-(2+l{70k4o&VIZCEV?W#hA=NOLM!f5SLSE1mJrUWf8MUx=p}gpoYs zsRwk^U0-b~bm^ObbIaXOZsmoNkIuG7;hQoJQ+3wOmOnp#Ia0nc)2XkXqLhLNLVX-z zzo+zaWx{l{=JQv(+S_xizP|Dxpv>RrccfkdLq7E=?82GF^MmSnayKqEZxPO!EDr8E zjQ_ZyxU57|7uBu`>L^YlBeapn&-uaK?Yt-7ctqVtKW+)V29ZRmF7#U`O1OLbpk$c& z@9?yA39K|$!5aC;4f9`wt&^vysw5$Mo6E*^u+P4wIN+7701V1BAs*oci$7(0i>!GQ zy!wS+%i8%Z7}o~X=|d6GnCKcK86|D}?L7b;ZyI<4Vh~C|}U( zQPV;Z>!@fz+m3_%UeGc1LW2#%BCDumZ=vk*`Z#52Q&7~I1N}OifTLLu=Fh+#xk3}D z!!SuDV$ub5$lf&o=?coyt>8G^jCQ`5;+o(m)4LkRAcRoDU1RwKbIYNfWpxL3Ta7we zF>o-$5la+$9p9`n_m`3}u>Az)j62dskZV8$?O!b0FBo#EiW;mP2EKdHq7z*>UEi}y zToV#@TO5?E`yd#}p%SeL@5#GcUXdhjV{iz))|IZtPT1URWfyhbi?td+H%YJvJxlJ$ zQmdZBW8-f@j8c^7F9_SjmaF9@-~TksFC`@vlOto+mIz&D6OP+pknkVKuZI2rR{?U7jKCCUa1EC=g=waMo za5JJUr9q?$pL)Ots46;wgu0keVMSj_+L~gClJrF0|0L4sH^KmshVS^_v~BI8st%yN zzzT==i~~|)8suqdxNK*W2^C{0?5jSa3P*4G|rk_Yuy{@t<6vSPF_0%ecMfkns>xK3*T*ZXYn@ zBMp1G&|LrS0!*>)G$-S{7No!Rvy0P1;63z&=k-R!N9{2YTU9y;)_Xf>Ow+ZqmRB3D z0T;KgYONh;-dV&(O1Kj~$@1xy^Ge(Ha!A|uvjWYoQ~0ga1YsrM3c!?h0)TO;DhUg2 zNZGNq+0HPrLdzJQk)Q+M*j8$QjHoz_S_`5*Z?vMW34xV56dnUU0YGFq86N&6xWKCO z>t_*dNP;LqobDuUWKlh3k7U~nCL5CHJy{gqjNa|!7xH@6+#X(|UkrzN2c?CI4mCZ5 zsju9cpK3M?Asz=D;H^;3A!VyH{*yDb#0HhfYlaaYufWt`*WQ{okMRFqxx+r-W*D(; zr2n_~0`OOjxLtCv(sr<%&7DAhcsU5DzOp6V3vya*^|N8x94vWUVL@0~p;1riYh50S zO9SpERzGiRWgGDU$n+Fxc`OAe><6*oJF+biUMCntSi2v&0R3^!yKl7{MU^A2hMy33 zjWCk*R9Iu^OtBkDd}itPFbcahf%LQpem867+Y3 z?4%`h{ixGOOQ{n-&H>-q3{p0LhF4^2dFmVaNM_!TnYHc3k{*9~$1M4PxVpdvWb{cs z?5kga%~Bv{@EwXvG2&{J3W+eq|050IP1<`gS-O`AoZQ;-<+T;#C8CnvGyPd%7V-*@ z)$a!uJEhGErU(g|g>%f39`$8>dOyS$%Z)YCGZByQtm_!bGR{G)pM>gxfv!jK>n(BI z!5oUQnlDkf=#XMsPrUU+J^g5m==B`h4Q-EEH{jB9|z=xL2qLH zRMI`gJKI5bEs2&A5cVR7$82PpFonJnY5=^09?8IusJOp^y!aD?Gl^ zK>YYg&8ClAzagX_d8QlmUc_c_J~A!IA zg&nE{W)EzZS}1`uxUhN9>cW6L7+Sm>c(zfPVl@G-$2l+V6oPKhl*84zrP<7k+K_RjY54VjRdeT$`HWF zphAzs#Kh>gz&y_>TE$P7KO{+u0|zT7@@;K|rYw2u6BtP(2mtO8{nAYcFoPOuE5EB> z>N1ZezKiF}&`7x{TS3~B&+}}N(k*hra6DjKCAg1$Z)!_2m$n!{lomW~tyyi~wZtK= z8J4*?+&AsY5_Q*giZKPAXDW@j>8|jk@#> z*Uayxt_WFnon)bBhE=#^GpcVOQR4Qa{;a$1pktxRP2QCBIur(lnN%eSw$D5R z4tF{1wOkCn{Mc%3Ym>w?*dlmWm2#MPjuCLqIl#>yx-cLWI@_5ka;>Lixy*sMA(&@h ztpwGTc$H+hI5$|KJ-FC?ceX2=FHU;yQL}AtR$;Qj2Ls~TJR1CHzW0*m zoElVzPK3u7Pgoqn@*lq_6bghb6@nKAlA)PeE1S!7TVAVAbqk+`M@247MOLdK%C}Mr ztoyX2kLO9cugHNi2Kce#PnOZ^-UPn;wY1Ow zjfUxDcVnXf(SW5)x+cc!B$)-I0a3@H%HaH=q5P$0jh?x^$ye_rk;ny93 zCpC}s>FsM3!L9u(kGuT|H11E(-8;CCdh|6JUrKPy{r>(UcM|qI`#_oZCE!a2Z*CO< z5PiHBKz0p*>iq(*?;$FxA32ZxI?Dl!Lk%kBo$BRQJBF$7TX29T^Bz~P~ zLSMn|ZCWO=tAt57I|>v1JqV@O94pEz>A4=+j!giUY!atxyn)Sj>+9c1=VJhCNmwyn z*oW!`>k4=>pYMeX;x1WWUQ-`wPbXxuXWGkRMU6sH+s#ux7xMem)xx})|TE=tZr@lVbFOyN`+0pzMX zM&Q!FO{INr*8rm1-aEXYSB*jspu~N=s&?lY4hg6}p(_{UM{iP{bYliLvWq0JcI(aC zPAzg_pBvkfwpB><&;7<7;rgjD*NfVddg*0g#E;jfV4s#jYI5y{aZQe4rhM?V)7%dj z+c9QM9y5K58j7(ZA2dQ85UUq7)9iuB1Xh=_S_t_r<7-I zIG7px3yCOy2e>VlS_U0B_JmXp)d)=hWt_E= zru}o!y2)&EebsyWn1p-136_L?kKqRB2p*OJ$BKzNhqC0E_7OYjp^kOhQ&|%`3Bnv| zRo$a>4dTz6-u(>?n1DVK^98LpqWfsf`lpc7k`9xrU^80y0MZ!;`AEUiD`|!)5R@h7z*7B#eVrj++~3ZA?Au4IISd6~pDyPF z;M&)q^6bZm{r~&x5Ch8T5SyvL!+GK-uo{<(KKJj()*u}$mn>)E0m{R2WUBglXX~$= z-S(NKaFtX%iSUX;>Ab$z6Lfbzu^0aCdiy=3S{U-- zz}XH)YHM&FOW_XK$K#)T%>Y(5>ART2xx?iJPO9= zS2;>!Q0k)n9H@C;x1C-`m$IHx{KsV~SZ6Lgnmh!1Z>$;_1DAweA1>&S&J8 zs)w%|U|k}65f}59{@MO=uV{vev`+L(Wg9F?qjI^NuUwr5YX06%{+E}gm+4AfcH?W_ zFln6TTso4=e`sGXPKo^D+MXdij~qT6;yBf!h%T5(?2fY+KU_jiC0&n@^A0Fwe~WNo zg)Eho`^q>=sXgAW-)BkTbWPG}H!6cmsejctxBXA&@c7ierI$U8Ah|592c7*gS!?q9 z(f;MrA6E6VJMN3p!Q8nxfls9#@~-#{768`-(OU zz-e^>aZ({cOyZay%8qIon4?uPv%1AG!nJw#+g!7-b5oDkQgl7j)zj1zv)u*hbBYd~sCr?{5`unn&C^+ zGDQC~5G;UXX(DaIV~TAQyRPac+l^F>PS6uup6dgB>zBQSo~meZwXsOdCE%P#rlf_8px)S!gyOwhX1O6$FL=V0t+cfFVEd zDDy}#IPfMoI5-J4*aK?u>7QO;EMj7HG0hZkfG6F6^_ex>8W_ZH*gLSD^2m=eluL!7 z-S*oG{b_ybD&;f$Y`|8LtUD27dFG0NTw9teivtOdQqG%*%yyVq#HQTdqYUM?Wd_8% z_inYX+0b{;h2+AOc21f#Aeix1?b|a~uFkZfS=z+{p=c!0sMYD%79u$2Cx+JGAbQGA87(N-{sGvpQ(3rrCjt|4(Vg+eMQn^L)@JBhF0c-7 zvj*FzZKk@Jt7MOmsxrz5!Hp~do63)!JeTLuO{6_fy2P$|Zq@kEx8XdBWB1;hEbe(b zOb>ry9l*v(Hu!gC-@_YiZ!B_yx<4nn$rzxb-+aok?5xtRgAy}6`H{~q@`v+4Z+e5i zP}1|ssPV%4sJg1VfzM;5Cj(p63!ineS_8`8hsDXpBW+zXFMD!C;x z(_b2B)m?H!0mgI^bZPVC0?+a(h^wAFOlBpxK>sd;+{tRN`-zgjx3=G9)};jMN*}e( z6d>)x6V9V`2B1K%9QK}XfrFBoJ%^HV!)AHqg!1Nj|03ASd<#~k8@yHpNUI#Vxz@}Le_ zc-I(;ppABk2+9qcsGIiB3%pT=A&|{sHdzzmDys2(wtivg>IH%NS8Mq3{1Nv1&^a)) z6|Jlf1Ypu#(Ev1F7gn!I)?$g>@ZU4%(gmG(qQU?S@W^4yC;ca=Q%H(lzgK{S| zGq_;8KPu)*Eoi}i!hEH!bpGbxoqfw%PkAA>)THO_gc(xI01L?Pjw+Is<8@(8Ue4bZ zZ)NK#zj}9}LozE8bnBv*oy+JU8yg#uY6-y+0Etq}bk&a@gEf76d}q=_%EQR&uzxWq z1?gg;~FhJ0=xq-A`>^BCX?=`=m=cMpXN+Zgbp zQr$Z#G7t10IC$)1k#%1^H;b##yw>Gj8s7vFcXenv((3sju=YHz?u~Ys5S}Qe<2L#B zmOk{GaK5ntj)@l{1sb%w`{k`^VPhGp`>@m$jb`SPyq zHUpWMg^nv4jNV{QJ`>@p9hN`UT#sbJDkavu;Y@~XQqdQn(kVB(v@%_+^AC100wU-o z-8?hF$4f$%TFNUXb=k;gaR=*gLte&+Px=%~W=+xLxjU0xbRqB}5o_NVsSe;gaZ^xw3(ofyjkp)0Y>19|KkB_le2DY6idUtAfmTvlE95#6pOVp0)1Zg z_Y6XzGCXG%$|d1Da!~3PF3_=zur+TH2*`R^Ko7X>oAO)f%I7px%0REPIjvz8W%dK8 z%-8trxY3^``9Q=JxYufEeDObBFVf$FmAS-Sg%xS$nKeB_(=x1PG;R_tg}O8qQxF#T z>m`nmes>8bC+t!!i^F>3g$rVHf}-BUf~)#y&Ag1+NiAwSLvPOwq~U2v52xCUu8Ol) zAKsp9+-fe+-{{5qNL#Eliw9vm%-_=Zp8&{tW4w?C2+60dAO;%)80(nL&CO}Ue3j^% zb(-s4osGa~oj>hCTm%gd>wEx*290&tOHf;vUN&3|e?rgnGuB~_*TdjJTsK`34YB)HBrYwkv91 z+eoG?aXta2f5PYciV$<@kz;!3yse*)6M86zDJUpph`QnJjuZ7)j-I<}7uy2jA}5H8 z*Di+h`VL_nwV$|oX0~*HTECbEKxB!tKS^*{8C)Zj~qDSFmv+Y+#%sOx?D8q(p-kGEio& zYO!o{wB4pq*KZEHhvv8&7=9AOvgJ|gP*#~opJ$fGxZBXqmZc8!2rsE;A5Gx%LbWAG zad0?)lSF>eOG>-4bY<_oXS8^bf2eXX9pc99xC`Fgn_^d|cGaO^41Wb5IaHc9@cd5F zqKdx0kPbh%hL7>yjdX@-rPxp1V!8$^u=9&nm1rkTw;HRbJbM&A4_FP+Keq@#W%BcJ zhMOOm#9gD6rg~KZDt$=1?+TtSBV#39yH5Rz9RL)*k3>`wLs`x#&voZE#Xg9Y$ap># z{*6B%VJDp@A)oE!Ai1)y0+l_qj7S^syTz4fH6gZTx{W+(-kEN6yzY}!wpYL9YmWOT zVXuyDa@6ecuM7tnZkx2WLEDm)Jqe31xp5eKLc}o^NwsItOb+UmiIwq>=Ch77sD_mZ z{|kw`J4P)l_l@n;JI?6jxTRzbm*^-0%kvJg89<%0XPLSq4 zq`+6L%+KlGTiLYb2C_uOD&54U;=zx=Ya8^+^i2RP4E$)WMBTJVq|x$>!Du}MSqlF9 z-9RwsdCl;yc8*PV&X<~ZBYgNu;HD=RVz#K|o{tV)qE?^z3z4 zYI>UmKsF4iM;MmDuO5ZIw3vdFNR0$+5hlt+9q)(eNvndnR2pvWhhLY18N>6P%gUMz zAqD~Q_zao>450Rcpv*+!zzZ1!RvKG5?T5@tED;Rr0de9nCrgAdNCswp8;K|(&mum^ zV3vi3;>XKh-fcN#bs7#LRwBqWRBFaB@!l-RX7NySgi(b@Agu{rr6t2OGeUi1zL?2- zZPyhHYVFhpYloNcMz7y_8JPZd`iRMU#QlZxCeTiQCv5*5tNHL=S88SkN@pv~O5O4^ zulKpj4t0cNCwd~duVa>jx6f+pNUD9{L+5pd}O4Rkf;{nqfdwB*@ z{5_Yb7aU)H=(#wKK~@@#r_-V^cQqD=iI?EZ){o4Ta?>KG@EbCK0de0^0i@oOi*Hoz zfX(GMz)UF&#yh$imst|VC2&#_zwOfhT}d0SMJC;-ieH%8+gKO~1GfwSBT~F)SwApO zt!L{y%zt-Q+7*2NwQ`c4dVn;%k^%nfAK&yt5DE&ZqWx@zEhgnX-^T%3Wv_A6ZHFmJd|^(l@{l%JKZQP}je z2Yo&R>>C~DBAxEy&#KHSfkHOxale#Ua5hYwGw@t!F;Do7jmH(3SzI>P-J=tZv84I( zZw^a8Z(I-gc=>Eu+R02naVaA<`&N?E!r?~Mj;TWMSM-2AmWm@8lkrWK#m!A2G$3@ z=Xnfpwc=e>2aNa1MN@k9Cpaxa<$@aA&=Em&9YJu?PKi~a)vj}KPw~Q+uYH~I9@diH zFfkZxvFuS`b{fIDfAB$H#*^DS0!IOp|Ca4kp9h)2A!BSBR75T?;jr~B(aI= zOo>R_3}E!TGGIzS6Re4AgE>adQCsuR!QPVfl=L5`>qU#U++D=OqBhOecUTt_z8|+# z{OVQOh`sW7+4ddg!P7;@fq;Ej!joYWH!Z)z7a=}f7vCP6Dm_>!8tDr-$K~ zjCrO@ZpsQ2c2kw9^od=?VM5AWYcCTz0LB@|1z}Y7X1g2U;|*)L+^1QodB{xM)ylN0 z6iqWfWtGpM}l+z}*JI@sVfbQVj&!P;ImPx#pLV$I^F&2Iw!@WNLM{Aog#S7PE zoV=gY-se(`eQ48P&iO)9hnV2&ll*jK$3a69=O@cF%h*OTe#0Uif8^;p`J&evSp&{x zQN9}?r^fEKlqq~EA7vWod$$V`)Ge!ru5XeiyDM69DsSu^XU1D1L8^E5s?ime0?Wt8 zoMH%O0MgQTpkLurzmAHPB&E%X+v&8WDYF}j7v3=Tc#>y~lj_N_h&h6qb+6TOY#Y;c zoL+DBAt7RPmPDS)E zX+6&Kooi{^H|S4n-oleR5Y0>_=3I_i?IX8?03yXa3YR0f74Hb#0`;(t6bn#q;mj*Lk(d1bk*e_i6rIGBZNlWnOsktBiM9dP|Dj zlena96LoCP=cZt0aW-t+&VZL+4ROU6kJpFw5wi-VP|qFh;?m$qn1)AVvLam|9A=Vqj}JOjcjmks=N2^vG-IEBj==hL4|o3%h4g68fnr9+kGe`WXAUDGnXYu{hg z?#kBZE{3`R1LBV>)f)uz+;)roM(kTq0|F4k^WFr_aI>EZZ)_ynZsy8zfc5d3uhq3C zRUdV^e&C9052emeFNX=ZR2`E)uN!c}c}_>lH!*qx_P2du`f;hZhe|dyo*W27B{Gi1_jaom}fK?n9AjmoZhYtpaO z^Y|O6P-C(^J8@o|cLiqF)x=x;{u;xQ3E!G~a}2F4{_Uuk2#Ob}A9E`(ZLh4_V^QxF zTXuHZqB5SLIoM-obyoQ(F^~m-L}AXeN9l=y99{er24!$rk4z;zQJH~Qfe?0$h%fhX zTC=p))`c$P=sVV27Is)1=hvK-q|6*&jWiiEvaVH#$QH@@sqAbLxXREtDnmv?`~xqi`U3{oG*{Gt<8 zUvr(!bvM2Eo3eHtqA-RLB&@I#3tke2!Z>%`1jUJlh!CLsFG?$p<;vQI_xc!1cqfQo ztKSEYg^X+b;!!40%)6^@jRi}OSFF#c=!NqD3}f8gGtWp< z^EoyH9=dr>Z`e2Eg!Hwbg}J@}Y12K;p|DwA?I=b0m^_fzeBo~{7mu$tO5KPjoZpny z>HJcdk!29Cy}RwH)h`!)I<&Luo6)nmw6ZQ%I0Jgc4F^awth`EdlzC(8cJbp` zTTGlSVm640ev|V8zJ~w1iXhY}I|PB8V`9H|KLeJA=)6nWLHe#r{I2HQM{`z>!Y*^H zI^e{_bDFoaG=-j;DHGm@f)sX(Gc$ajve8!^JEo_hGW-N^dGNLtM?L!z3 zMA~K)7gSlweNSuRkv9pobMY-sILC64LL=8uo4+NU=K{Xcj1mepJQS5}y&Y7Mh-(mS zv|?%x?&?;#*!cnYUWu?c%pEGehosQ;-UT^r^t0KZu+E?|7d-m0v+83e$WR$6M+A#8 zZ_>RCGTU3$XorHqvwNFiS-M!=@9*Yp5jviE5tB8K_S#Tm()>oD%09b%4O&RS3MrPZ zS_zN5qIeAdfT2;aEp=t~7&^Kbd5MIZ;7!bQ!1F7Q*MCsyEwZvgmw29VTiI((kY#bc z$kCc8FZgAnymaS2)C!L#wi;IUY?Tz+zAQDY-tKKeoJaEJZ_EkzYX;!LH?tiP+8Ljv z_=j>{32bckOwpydhoRN4!;sejS^+cqi8VOcFBAtDBy==0YbQfhpW@Bl+e%8Q0IzD& z`{h+{n+~DEsB0oIcxBY&pIL= z1T=dyQY^JdC49aU?4uK46%0HGA~%;ud;8>xnLJ-zRh*wry-1z(TIEpu za4Dk$X{39QmMQ6Z{`>Kz4?}X=&$=EjoxkzK&17{fPl(5>Ozp&?OFm`h0!S=Gq}_?d zZMx9><{euh%PASBHAkj7rv61^#pJHWf%TgdcDR$d%q;`uRmAuzF$jEkSZ(Wxob;gp zdPp(C8-L(vWIALMT?uh>qNl;ZkcVyZjTRSz7W*q;&~zg+gfD)Kh!t{rt$pYdh@QwI zq-Ew1-IogfFb)^egwT{w8>u1*Tb^Sx#&5>#@xbF6y58q02tGs7wQzCHp(g#Sk)7ux zR#T z@QQ|Pw(ngWo7wJmnH+M+C@?hbN=KJ$_(1@?{DVWS-c;SUIqXa zAmx6MTx&n2%;$Dnd7R01eiA&l;~F(7SZ>ZWuu?1m|Kj>$p4+{5-|u!dx~I0e4KcHn z#2_v5fhSZRiuS&KA0R7?zW~sY=9?;YRVdF!2S>@zsYUaahQstbNbNEN&DynaSB8$z z#FvB%f&HSeNZEkkm}j*fgC2yMr+8GEX_xC!mCmI`loY(@x>7w3j zdCNJiri-r~uXl5|sCIaYS34!v{$-9DlIV5PJ-a zb|eUBzMLMiNFU69xe^5_*^Av)hq`U3V=sLX#_!JW=w9qM_j3*=F88ioZ1b#CAXpwF zYG24w86tt%qu*B`<#0SQ#@QNwL*l@2Jf4h0Uu{khPD^TXH?Ke(+o?{ZZ<`#r zmnhrh(M}&Ip5dDgXY44>oQ7=rU&$XI9x;|dDC3m|c{RT+F!tmtrM{bC9C^a~P}FNx zuGDQNk9`wSTQoUiK+%twjUgwB+ffAdVi)==hIy|S7Qo>j1^}r^O-Ovu?KJ4|5{o1; z^^!--wS{*CTQ^WlPA|<2nRP>Cx;nF3n%IHApH#bsI@W`ylz?)?%PZ0Yj2UES+Xl0*3KtO zKyG+H0hlBx1jDQEYGaCcOv}nJ3v9oK#BzUi- z+L>T7pVdNx$DPb_^y-YfBISimG5#SsM0$!K=%Wtc_oSW<-N_@G3G7a0Zd4%O*?1ex z+{;YBoBJ6L`?xy!0xmmX^LWbF^4Cufmm#Zc!8F+F+HiAiyR&0lt2npdGYmn;h|<>Xuk7=)l|;TJ6-7?pf$tcp2tDPtproRr=@SfE!P89Nph#T z-r258-e_auRwX@HXA-fRL}t=~F;Eq!VGUT4>&A&1#O*jKYlazs7F^ILO)#8xVYKUw z5-<(|C98r`_|>fENL18p1G)-LuheNMy=#@V|} zip_4c^*H)`!X?qt1EWMLnE#^I4fM!no;6$V&%`*IIZe&n0!@hM4Gin_CE-g@!d(I}pc zX2-7W_$)&^Fii%}y|mR7skS;bXtoyJm2jMC$kGPGn%D;t)_b50sccUlgn^Hx&Pm(V zc-4IqJv`qm6FiTeX^958{u|nO{4&sZV*}aBjWOLtp452(l zrmcDF8b#0yi;47DR=#G1S~#D~w`}>kqLm`R)nPsZ#(8np#QqFe%Lg#4BWUQ?g)lM2Im4g0AYFCu0OI5q9sdb4;+;3)GC>(38Dt@Uq3BrBd4Z6?&n9TG}I3>U=9-h@(bH+7oYU&aPAVU=-qQ3GFjH&nPh(O>__BTDxE9JWwl|laYXLqB-Ka z^|>&kgt?nx)mCyHmp>I_m&vSei_Y^TxXvmye!9`8ubByUbJx``eTnvb;=ZA;lDz;Aq(#GLuw>*@yF_*t&*5j3W;;Aa* za9!;i6WB->2@$M|laLwHW*4j`r|1s#$|rtSlZH@T=$`G<=mA|1cX#*Is61WWYud26 z63|Y)psYP<+gnmZ^XbrDqOXks5`LwUxKdji*9SNZsAx>HkM*vzYr3U5$g5lK@ZLnq z_6J5HZ!L05rtXd2#-Ba@zQXyq<@+_q-3!{8dYlA|E3%t8_Jz{u*?O{S|u&b3bFX!$7}b zb$ek!bLToy`Lq`)wa?);n5E$o z#Tu=~(=E@3gUTeYe7wgCK^`EX(p%1X2iIwq^yzzVeH%!9vE?Bt>lu7#YFI241KWN1 zQf^k#%GzXzkv4M)9h$x8I00j{h z0V$!X2vSrCCLIY?9U}S)n=3`>bJ*0deTSc5w~aROcQHNpgRI!R^WJvvWVO&kmficDLD2iZDA|63 zRmvVgv1a`7{7~=?KL)sdA{_<|K!spou#Damp4X$dw%|=to|W@?)~kW81BV6W@zcZJ z70(&+3b)IPxqsFef4l|^mpulGsUwcFc*i#wAwb22SnV((`tK9VfzgRISYvu#mjOVWdkAH$S51a<3kpK7es;(Uh z3h*F|H~j3K)Vyg+Nrlcazd*wL517wGnNW9MEOk%^3C4WJ z+3_)#B`{9GRv^UuWcJ4~6-D~~DLeL0aP|N2CI02D94cUZr*aSVpSCze*-3!#RHt#Hitxbog zwn3@vFOd5FnJS^Mi@^rmxciNPLXYWBauWUj4%UB?M*i<${aSqV{=b9uZ!Yh@NtXY= zJy>t%r@M-&xz6Nu#cmU6U3h0LC|Zu}Jg~EyXb^XPA=sCVuSR~IQQEQ2t)(hx#|aqJ zs?GdRJz^8q9I#Zdt*@VB?6G0=)?dU@{SmCo${0lgsbHvXhu=;{dZ^h0MFM|9dD$Vy zjZ^U|{xz>6Wl%k|_jhW-&Kr5op;QCTJOyeWv1=B|xe0GKkQO12F=DXX{rAhip|M4k z)gLIz^U8|Iz69I*BT-wP2oIieLcjt~2|wRAG^ z5=Is1PUrNVng0TX{_o!+3W(&3dDZv#17?$%kx@;Vfp?i^oIcv|CY5RN930k4KgAFpPp);zO^zGAdew^b=hh=v_efXz5`Mn3CgtA z070!29r;UKpf?`U5iNWF1=0TQ@6eQFq12dsy3-SA+#eY`XHkti83?c0;rksWHsNQ` zt>*?>D+O|R+1U?>;i8UVCuIW>PtAPY)`^rf+UI?7JYrNvNkz!nw_>jrT~-8%zcw#rLWAAPB09HssMe0+ zljgU-S~ubH&AAa9{3J`Fc~7sjI606p%39irdD1SgSJ#&Ko#(vrc>iP!CxWjYpImmm z_(6OP82@~W(UKSQ>3hZ7srFWYbzhZix0J(TO1=v=GT*jEoo+EXVnJxhzWnBNfQ;Vu z(9^EgukWue2`T{1`Y7zQALOgd3o;~x?C{T6f3KJA+iSVVT_XAyG! zb9{%6T|E-AeZnBzq~t*{X@0U>RJz%y@H@|_{u-N)fqnf#*pd5(zJ*I-kEjN;N0`tP zDUMBpphusyEkMptTIycU>wQS4t{chk!jxAQr!%u``3wo<0xSQBRr-tNLrP{Gy3SGl zR0JCzGN97;RSHdB0Gz;%7VG37ovitWPV@oPHY>61i0_O83HTVteYf)lKeYUQ#^P#t z|F@Q~Ys6*N@E;!@Ze|37r@KY&K3)MLYE3bf3xd#%0HFcl)?>d>gDdQUntT6at`Gy| z9#g2qZH)&QT|r+#h#pY)ad$?xs0N>TzlD|SJz0HEKFA(w0LtTl78BF@ZwFaNRGC*S zD#^=k18Q7)v80THhMi8w6F`o18<*&H#hvLlXSIZPOV`mYzgUN!yr0%zOlpW7JNS^M znib)dRBlMC%e7h{9qO|}~& zh~;fp4ej+`<2v%p-#%S6e%G^_Ug7l=%2)!G6ybRdmN9b$6(=X@m)H<~mYV+o!ID+(h|{fFRE_+y5)X{6DVV zfh~;Q_T%%K%!5-5Jqm1g?oUO4xWl<`z?!d3%=}VEW1@P2C9PW)^E~S$t}nR-;)^be z=hkBzR*(0hJwG4E?H#CnW~ziQ()NGN)C2s%;O)Gn7cDrC@6TfT;%4yPt{^oxv$Bm+ zc=ymqW4RDOaW7qXwag%muADRgp|!($*+$x&pB7a8jn*d^b?Y~#+%n{Bopk%)4qUpC9iIX5~b8={S?D{(M^0n4*&P4r|>Y0!&{)9!h!U#Ff zFFMP%t@&?20aeeotLUJ(m1KbRbx+gw`gH;okwPdn&op4lJ0^|?XUe=gHM=Ao;Wbc= z3Z>DRIA=(QGxa5cBr*-&*=JrZ@CqzXCeF*5LPWQG-Hju@*v=m(<5u$Au8; zlJrq>o(dO=6iv@xD@>9lxL@^S4;*lftM&EVD(OeH8+K)**e2 z3u(w-LHE!m%ACsyRt4j;x6a(5mu+0sCtht4C+HlcZuVEsM%WsX4VhQ2SCZYn17<+2 z>5F4VFK`dJ5O`Q;M@Z94feQ>!VmTq{Ga2c6W0?*eLP9J1^l;%w4H)ZEioS4}tPBt- zxDbYdTW3L9=)Cf1*KSJT+t$pmRQXz7Pc9K7A>}8p0{o@%=#R~<>v*}dS9ERiF7UL9 zh}G&=NSS<@J-tx6S68p2WI}Ib_Ld|ll=*>uRC9w-%Ei4LjZvpvGvYNU@M^hE=nE

6L%2hHjOp0*kmSaVl&c zB3cn=43jY8+E3E9P{8xWiNVtP>siZ`{QRU?*|Rvd%0-T64vFcp%xc3iXU?x%H}YWi z(9w$&=Ej6)F%KMGznT>|pLQ|(D$}87-dp^3rC!~Tfc?=O>QWbeXCy!&z&-nUM0W@L zM?T)?JGAl_1IKf=kaFL+d%8+*IP_D_Xs1g47I6RazuYA7(gt;Rp=o6yxS~RVl~3-f z{jpaDJ+YRmc7ystxa3sgg=*dSiUCX zyqd=Ue6ZcJH_DrubF2O2pIQJk5$>^W=QLM}D{un`L@(cneb~FejgXAB;=mad-AqzP zP4*Cf9BUH4Gko;rzEc;a?8}a7dDC<`bI9lxqi_kEhFpGXU_DC@*^+t#E##T4KmC$p zm;c}d@ar|o!?IJ1+>VuA@ZV=mtO?9adw0s@?&P=y$tx;Sm(QX8!dk69*6Ar!0t1<^ zy^;|{dkH$GZ2MytUT`hvX^|C|-R3=5c^ZvD(L_f!bLLP+LDu@`k<>Zh>9 zt=1ypkGGj^E+DNY3nFYEG!x{bTb*R>7X6$iRt-1K;FDJAa#W+T`BGNPHr(@tMO_(z zldGR&K9mB3O{mZ>iSSQ5#{P4^jy^NbX#ggRDILFz9xH5u>6cT>FLit z^j-0#^OyyN26{ z+(L3D7Ro5Df&gy1($eYC_Sl!K{cV|Kbxz@6ldVIEY zoNQD!lrGTj$VIyed%G*Oe4vrE5G$X@ug?t(AN(MSr6nmXI3~v}HGZ~tT$NNtct*S|oBTOH{FOGie1*9cytD zJX++LtqnFuZ2J+CZLjvqsK(>>W$)yFHvD!{5rrp2(o{aH1yXf=aYUr-x~b(k%hX#B zrAdenRE z#hfjkCmd3wU502Z-r-}qnb%T4Kg8AdEOZ3VLXM-Ash%_sOQObk#=yjCsd4GqUa=?G zY!-98Ug?`vS%*)rI7Gq-K=&QIEf&QxhY`a(iE`;V{o~r)1pTR-7s(hl<_!_q$t6OG?xHvUR73nn3-oXQbSSaH1TK1Pa*I{#@N&VJ z(A6KTpMes0^&|B%fLQOr(y5eJW8*zSuoO&NlBH2EqP5@_t&c<*tD-Y6457ZAAx%H-KxwR z1xc$b)EohgeVH%zuJT1l#P)XB?@pQ9TswE6x6OtON+lgr_ovv4rQW;MN_)2V9_AFC zf1*Am>o$8J4^(E-ow@~PsP2m8?vB`71DjdA1=RvCKgUNN=6F4C9ThVlaNa)f?EOQT zhNVUma^phUEp9*j6iHI!^vY1G%v?mh{S7pNc573GjH7itSlhZJ@e|7Q&shD?Nx={c z-I-#r%=o5`?B_f8DVF#lBEmCb5VcSsr2-E-afi$M~0T>wybI94Y6(#}z4qe5}d#~{2+G-JMk)mlbDgj@#=_U4;i_^-Tgsp6r#vtd_V^qC4-Iyo52yCo;q}8-Jq2Eu;*g^IwxEb zIa8@6soOg0e#nW?bl5|05`VHhQcQYOUE6M2gG=3oBUpC3VXQ*Lt;}9JcpzJfHKM<0 z=v%Z+k~7O)gAGd;&aOr0etVLetiC_~j_TX?(nm0RP1kREX4zEoc*5jMIyvXD`T_iF z?ej?GWe0FE^>6jUe%RDKR2OAg#VR-PKXcCZa(bm4!0Qklks%$=Jo70;g{ zo*!*8_qIvbd0(bqXl=W&#PAD-;bFLZ6WZURz6WSl2~^Q{PVd$E_AN;X_r0(atHC+O)>^ zj5H#%EwsOMY76X>gHV=vy|hkum*mT&IG2XF$Eb8ON5a6eS?_Jn84JE4GG)Ke_@j`A zXzUj6@M0&(Ve)9QMd=BkvS}gb667XHm!9ty)t*8Wg;qk$M0KY-@q3+WGWRl< z@`bzI(ik3YNgFdw4equ!Dk1rluhZ5E`_f|WkXw~_@JHlemJCnzTD_0e#BOsIT{L?y zN6+w|+k>>rnIM36<6n%T{_^kq^qG1gFDc>&Mf5ERQRTYQsI)+CaXY`hsx=I%Q6n7J z<|x=TuaDE4JNNzF8)?L9srGxvZvmXAqs^%HOl|^xdTHmr=0qdE!H3=h^tSVxqbW>9 zO_N6|@)nm$WMrR+kUdIuk~LQoJ1H#=TSCHzmoa2@@i7(-L9+cErA&0FUf9*{?tIy2 z>2aM>T+<+n51KUdR>E_wDY8V!y-;0fWjWn>oSLI$g!fWb@!zjq9f+H+K{<1;eGkpk zJc}%Z26bZ8Y39eV&whLR3pw)*xw@1qm#Bl14>!1_zadWqfDQ%`H{D-VYS2cL<0}!u zE@1)>tGtp9s?t7|MD23!1d(}%;rbm*(wvo))&HJ zs#fMUO~>X>PnC69=46{DKrVHTwh`Q5yLZv2f*0@xrLKqc zH{PRe;5u=mxjEZxbm>egDxl zZhd^jE$Ng1dT^sQ#F9Bds6iP%6ElUOyxOVM_^e3lyIuP*?Xh_)bjff-$B{2$z?lb5x~D{?j(+x`3-nv z)nFOR1MJ<_o>%?%U@>z7sz>^!4JZVggOE4v+`BD3gU6g!a}9Xtl0pW->TYu_Ws{pr z{dZ&5G&-ki&?O!%_gx+tyir;T6u||({m$^~}xTPH)h2)~rcf(pBVxc|H9t+S)<6**(@x}BvmA*nw zXn!J%no?U^b*G*e#CfaK4>DosKmuX5J=M_1Jkez)O)z47;)-Mp+vTd7= z?<>PHpZnS$WR1#Pq+MqclG6pWxRZw>)cTz}m3;BYTNHTSk1y^Byj zkoL1v@i>=(m~?$6KDJU|zHoxZ!}E;Ov+`Sx?+WX-C@(DS%vz+;``bbDd@Iy9zIgk= zuW3x#!qe+w7A9l~;R4b=DE~9D<&;msckL?b1GJ zha#u(mCvu}Gd0C6*_5H>et$am+2O6pOhbDUHG`^Ccdx#WQ}NFt$c<$t)&vuA8sTS} ziD&=#(DfQz>9+@1$sepW)OG(fO$78E%!^Cw9(t^r| z)cLPzN7ANx<2x}u-kaF=k0RUp`?G{}if;NLT*^x*BjpR0opRudtCL*E*Fo1wy=plc z$U?HJt&<-DE)zsd;Ae14+Qv~`zeif6$w>#U*v;`LbH< z*w_RJr(L-LU{~74lVD0}Fvz?IA!$!us)h;)DNYwDp%K zO`(~c8H8Q3DS4!r{N6|jo4Bh<7k4Nv+pe36`%J1=F_d=A21l-v3$M6M{6VWSsV-7J zzXb;-&#wg3BjP|!#+9~-T#Q1Lp~*&W0|T;!#AwX^#!~UIc26PwR{)x#GoVkNRU^m57=+orjoH%Uqq*^3H2CIrQO_|VdoUl?s_K>T zu3Ev%TCzKo*GZy>lc+qr-*~WQJ1(%cXvPaWIIo4 zsMtfH2YP8bijWhNRNp4u{oc+(k{gr@J#F3yvVi&K1S6tXI_OMzl?TE0)qPcW-BdJ& z6uX;(>EUhD*+iIbe7-#NabxE7^43B!^vOEQV5pw5VsvqgcWgm^o=C5^xfGmn`MDWu z86CvreO^P0sqFUdu=cvHrmD%4(+&TFcf)n@g+vN zCrYlDZXx6;c<%w}TL8aq+Af^hf)Y2QeJxA=K>zjF3^=y97{;?n)`*M&l|oCfW3wdn ztsNZwTZA=QhG(NuWqJuew`sz%Tu*EB_I>$n&g1QxiE6=@>6>1bD^g-LD`eg0t>--| zztrZBVY{8y6q$MsU+_%LPO8mmYs=O%D6lNIT2OhpKRs0&pG#ZViIBWSssCWBy-wD! zWJvkZN3>u}Ou$x#<2?ne&%_ckY_c)K+h;@D%W- zyOwfGv&EKUcHWvp@CB+fpU_e14&wE2kl zFueN4$m3Lau!!+7dt<^paIc`t93!H+hzHa3vXh*x$}&O6Dy>Se9GI&7L@&{G_nI1X z)=BzMuJS)?A5-!zSLP#Xu0S>n0Zby7Y65u2dnx^0wfonioL>nez=81%XG52rPSzUGz)6B(=>_Yn<{GeM7?&NswPK`_6&N!N&LPUF#TPM5Vv>)QOgY<3F7^zj~%y+z3&FtXz;FwDL*Xn2xaJ2D``DK@qvBK5>g?g%&HF zQd5LSLm&V03e~GHJGG2gxRoR9ka^=%E{c^WV z>`oU@oe7k6wR_1Y-!Q+Fpd!h6{F(xv)9`W3T5Vw_22ZMfD;Ux(@A1RWve|_&Nn4gn zhw!9(^JWZaYGs0^)LrN?=5K(-{T(H8x4Va#zc4BzCRilAgYLd`OR2|wVe&1DS9mSu zaXzCmrI&?_jXYG)fyK_G*Lp8HJtblh>k%OzO84mI{Y~5}Pz8nAlfWH8r`VO6w7N<| z^Ir-cFT|emnScgiY$W-uFqoQPCl(F}f-J6x_DfmYh_h^VQf;6gpbR6{$tT-jevvQ3 zGIbo>+!g*I%>I{G;9uvA>^>V0StDeb!o|Q3&czRcP4_$Kgv~*0RONxzulH+=`tFb~ zz+1n*e548K7Wa{dLf)IDIV(KDT4wO??g#&LBL1=}{NptFFf$ftN`GQgC!H(6 z@TreHbD!bPIq`RQ&VT)V{xZ)2!{j;)PtO@42VWtW4#7KPc_8F1Goi^O`#d_kbp78Y z-~Y@C|HV&bzs0~kwX+=|LY&1b+|jCikCOuOYT0O3-%698d(_zfutc;*7X z8)X=*dX?ayA5!doag3j`l}~3~m&L-4|E2dAC6X5nQtZDOuh{)Iz;`+P;m`~-^Ep#^ zW|J*23f@1ggII`VDhmH?bU)AxrkMXk_m`5_{aLap!#n)DkIJvULx$JO4%fMNGEB^V z&@b>a{~6@HaFg4A^YH^O6mIkWTOqH2q2kQ|^?9-VuZ0Ij;m)`^uD_Z04k$6MPJK<) zj~xn(j)*sgsfhUKcNrB7cJ*F-T7QRz{v2QpYOI>`NVSY-Of*1G3L>p zy09|R1DQ<}IN&NpV462WO@C#g({Y!)qQ}eq;%W_X=Sv3y3vKCF%4xH@J}XNtap$*| zUr&1BMCr^-)fNy2J5g-elM9fz86HmENq;V^AyZQ8!S?T81H*rk))XG?W^O_(eo}qg z9A72)3{y;h32j@xwRFS`wH<5v&-N_4`@nAU{ofmCL58;gm2MyA)pO;Ccp z1b5J^u421xyLQm=wiwK~&MjyCPA%|gma|oBAbw4tHcU!e%6_nDK>W-h?}|!B;Upmr z`^%qY6MWy_77stSn>hs9tW~-W?uOKuL;n|6UfIRu3orJ>7E=e0LDLZ?Ymv+PRG#_A z){&J!VLi>-h*SNFC-4K}Np`N(1+t!qU~_jSQ6)<*MATTf)w*LMLK5AX(Ei>;_`m@L zz)GP2uX=-S0dFsd1HNq`>;LcqGB3dVCiR2ywgxU^kJvO+T8dtF)CaARzR#ER7rLFL z9Ts2T{`4YspC~RN#IEeeM4tPCExphx1nf4_&7)i|Omr5YUJN&&lGOL2qk+_I*_2ef zY(nNMaT|EnD0OQZ1fY*4iIE};d)86-3a#(Y8G~hW*cqE7XR@nGcPYl&w{xbFP1^2< zpIY$ITkCs2R7s);bUJ;Gute1?n3;7O2-5q}Z(>Q^1P$o%mfCPhoe~ENt+(_u6F@+` zk{ZAdo^!`3#RacwLdDE=;#}^ddse__yt8n^T<`|w^7Y(1sO?qN8=5-U{l*!`QCR)I zmAiaY09v9r_TcdrqW9dBxv{dObiM2=>1_HVA0Iy_N#s$@MkK{^))1flb{H!AZf~hj ze5f2DxfwG~?=B1#>IdogMvD8wli|1EHju2p=)kWTarT`1@WT^^C8OyhP2z(!qNt*K zvFyp=;^-3`by4E>Np^$ZZxKA}OA2-$U%U`5NfWjRNGPn;kpWlBP~EH>oPEnMy0-fI z`U99Z7TaLjQqN4nl9!xm7{BY-)%HT|WGyMhX}yWn=3{SzB+*8t=r7-2pLz>MjBy&P zJe(r>XJojPjMEXV-skxmwgziRM{>Q zlvC3_dE0^zZf zGFegp{`Sp$V4D^jZqxhmv1P~T`ciU&s!4%O)0fG$9LMxDl)C|Ji(~gAOKP+;yCU{U z-0?eYUYo&7bWYJ8s?%(lYS%BgUEC*l@n-hGW~Mh+7*QVuq4~d2>`r}M-(xJzStw8G zRsrt@)Q2|Xw!}*z)}KKR*(B}Gx1B~qj$>`1XOtJkOdJ{NRrc$Wd@ z*|KSQy|_(hv&=cr@F2;rUVgfh-=^L@g+o&^s03;7Eg;d_bOscTh0BelLoEl;yN=zC zc7Dgb6VlB{!Fjs5+aBb& z$*{ngDW4C^%$Y=f*v|Auo$;g;|0nse;xL=HKaadov}db!yvj?R9fBKpJ+^M!*8G$M zGt%DB4`Kz05P>byF)&Aon$TT$k03=D>JT$`_%VD6kl_Y4!~#74Q_oThZK9g6^fQW9 z97X$O@5aEq(}Y&OU}Td?&QVN{TuRW4>~yz*=d-f3wYf93lipz--5FDejn5OaUD+U5 zfz++^Wwlr8`#f<>>!?Q?8ZQJbvS!e91ho17jmd<4ukLA+iWMg z-W%TU`_vF5tT(GhDl5G0mi&r$w$;GY8sD>E!sqjqVf zama`9ctG1*`K^FfYYC;bx=r$E%H1@5|Gi=tE`^BL?+9_r3!LOfc>Vag-A=%T2(wdRFj!qkE(KCL(Alm!g zVsYvgsdun8I@`9pq=UW4LOom}vszjaa6Mzfwp}sR1Ejj~1MJ@z-7MFc|5+dE53bDp zUo?V_qtrkWeoFVpsw79Dm_uppfY^c2DGHuuIY|w7xzO3wK5@ӫK7jBD@9Jf`1a!{&-uNk zbpa^O2y=q*0X!qWdU?`Plpb%1x-~uoc;SL6;^WR-)91Qp+d}&p7kWP9df`o>}tNUa|amicg~^~KYQXO zg3@k$3^}7`lJk_o1^>{Vl_!2rt6`Vuj(Tbg=3v4Z36kgbPEZ`y`d|$1yE#iF`cZz@AolwThE6hcXuAUha`lD7G7L z86T?I@Eh3tQD)fyL{aJr((L=5xrsI{f-Lm~E=s&9)q$RY;ybgrm38mwbKt>kuVgo1 z9nNwV(>!4UCOs3u>!yG@a`)}p1*qX`=gB#@;w{S;qQL40v&vLp+jL<%atje~vhvRJ z8FqtpCPS{UEe{f*1#gl*I9G1~(Tx!{TiRxbqXX0-Lc?1vIaAS71X7IR`baq{cGD~+ z+d;Ifhd1pKh+*8Z-x4 z)hi|6UV0~r*Ma;B+NFPg3wMCr9aVV0iETDsd!wwZau1kn>xAZ_L<(6jY~$n_R*Y}3 zF{V4Q(=j{+_yLy9Id!~l7f9NC`6DT;JQ5?N;+J-Tz41NI`p4uG4f)w-soK6009&>9 zb6*%+d+fC`Vy>}A^3b`HxFW`s7kUSDqsS#~GReYGML20Oo;s=mGltk z&iv5e69!2PxPklp_-J!#{0U=RMn*?2aTRQ~u0Gl3wLF0}43j}e*_1{jii%^FXcVjI zxX<&Q?@g*wUTZ& z^)olI@^r?6TxOB<|${HK$1?^b9US=_R@-ab`( zgeGE;Z#N)hRrHN)3^{3f-h8vqR{=);iTksKdy~afG-OdJvq8?WQ=N77_M@SB{ro8_ zK+Aq|_rUTp^)$wB^LB4Vx4&M6oHs1#j*_CiqyMeclTips3?otUe|l1F=d)-Qk< z*^Mz4v+!axy>~N|@s(l;3wbs~CyARl*F1cHfa<8tnj4tfv@oEPWD(Q#K@%j6>LAd4I!uxV^kqsaL~keg3@@E5eQh{%*MOSR67!+5 zW%=QtTd97c0jX}K^%*#CbV@CsJ-DJr#btmo#$)hA{k9a>*jX?Zi6QSC8;~u&(Vs!L zeMpy#z1HxNgt1>;9($CjW0Uqq@ZxI)zzY+XB+m?E&0RJDQ1E5nrB@tJH)I&(hG4T9=7nNGGmCL+Qw-W6(s!F->fU<{8 zJC*kF^H#UsrFg##-yoW*XodmXr**hiY_F3rwm+!CcWFn5Ri?MxGs6 zs#C6^bRNllV#&+2`DkY$i`*mC6diwg%<2OM2pdq3I`{B2*TMRQ-rv~q#|1M$fNNV# zA?2~ghi(gDc?xSV`m4%F`89u5H{{X}?SspaXQx9}?|;-yji`5>s*XA+{kZbOV<3zS zc3n5$pZam!7RD_NZw{*jb*3`y2U~%YrEKdDPn~6?tn3Saq%4a0Zv0mo|LdtOK9o*+ zsbzWFWq!3?S4t&BQ28#`6E7{4C28y(`zUGr!=fu8h-2F-@>B5>*3rAOA^oUqTM==~ zYbtFZw>`acz~(Cr;-`{Ms2orm)k0FoSFo~)xG1TPS7J_GM_zIxnz*M+23 zyA!vTU(vT{OwbJ*x@y(XXG(I)qmBp~Mv5LN-w|iC^5_`%snb8~j{vrJJ#FFY;P<`d zo_KODs@5QXZoj*e`rVQn9gR`Sv|^WUc8;_nbH74(7w09>q~<{i=JN0mYeR$7A|O08 zua)IdDIM?Glf%SqViqi0rV2yv&H3_{bX+dPHgvcGu5@&1M5R!vbcCwEdi#SGkzQz{ zf7WX8fnj>Rpr96a=C%=fa{)0~zr-Oi_;^_Sr>7hv6(8hL1)c6`*WPDvoLy`1I#^+! zd5TBQ!J9S2y;FU$-0R_Pryo|1YIJ`{tbYd|6dN9MKQjz1 z48-%(LD{t{{nGZ=^G^;p&CYEoXiD@Qn8ATP0j#(uM2s4`z{%`KFt6h zT6|96tj#2*KJ^JHPftFSrWJNlZLe4ob_gqjdOs$4*LJ8g;Xcxo5RAf%6SE0!^VChT zl--d0$_g@vyYp2&IbGvpGCv|6hL7^3MW6Lb03Gq0l$Ja_%#h@h<1h+%mhMs9IFGe_ z*B_cUn07gqX_V^9MkMG=M@iYgO41BZo#b5sze0e!q zT_&0IVDaXV;f#mW0T;xIQFO=ly5E6>&OrE%UlB&YI?sU7%hF+q_jA1nVhi^OZ+%Uf zyL4Wk&@YPs=mmRuCkrM##yK;rrKRk;GT}_VJAsmRJv}y40eQO}K|yCR141mwvcUTD zaL>A_KkJ^mZS(`*rGhYSpfMlsNfX`CfZ9Yz3;vy8#YyE*1Vc}~s z)0r+RtoUGq^u3;#G@Kz(u73zwDy)Adxr>fBC>Sj$0F0SNw1g3mkiHa#O)d0@Uby>5 zb&#B#PG5=9P~qt@!aAw?k$2f8BNqG6=EAB0pXQgTb?C*T07CC3=id*Ce9l5=+jCYY zX~v!IR#3JeX0?>0-Q8`yKi=KbjB;T7Kbau^%eeU`>v8{p@j3*%Uppi3j+w(`ei|Km z(fUp{fa{hUOa$(JfA_R{s951ChDBZ36vZ}#= zTf@g}fRjModBtDLEj@%|@I>FEl80yk4{N2bAAlL+F_0#1bJAn38qFzcbc0vQP92B_ zmw^*E3v{awzBx33;~p#79MVp+McN~7uUHMR=r*+=;f;@*k+GAB&xal{i)n?e1OdV) z6Xz)hgCOci`}=+&U@cneWXI`>gqKWml*Oudq!sR5Oxf}9q2w5VO(oi+q#e~fk@mSr zy*QnXf-$^g_wnMMu40T%#<}`^6cCH%_$o2TS&cVU?vkqu+4}%}DLAWMrCUxr`ISw? z{P8%cW!$-jv>*ulb!&A zUf3H6l!v+T7GqC$Ox%NwRQGge=f#`?AzhamvA{9vc!#}^QEpi}61Y?zp7Z0^gFN!$ zNJm#n_LJNgQvEPF47d`HDSVk!TyN|DUm-ay#* z?f{PU2ir(;2=zzq5M?0LaDBrsZt)n`g#m?d2{d%uzt86@sH1e1zq*pixg3^w!Vs6C^q8yzpr=&*7B%cx5>S1Hq014vRupJAR2SQ;y!p{E&z?PZD|^lB zBFe20T{rfyv&T4&Nm$mf$y?TT&Yjj2V3xD}e$rrvNAvJBw~TFoWlP2+>to-dSo_z< zOx(b;;)8^*GotJ%_3@+3Iu*p1tptcFEEt~01}Foku`c(T2OFQyS`ct)t4^kG1HT~=x5`d zlzCdV*~BrDgj8NKjF{H+9HRSmHmsE`AdnXkD}UVhVgubVi4P0f$*aMsN1}k=V^B=X z<=7C7v`ULRZ(m(az9qJ99=|G`I&f)77-kKmD1g+}6U84yF-k*dtzo%hF!8RU$e+3z zHUZQiiEC&kvZEzFUf|`}n2g{)QlX(adSKSz<&Lsi4g?!-iG-)z-KHxLHSIPwAyMTa z|FHtoWM7@+tnl^U6VJktoOWqwUWlf9jG~hT%#@Xl&xrl?_Qgao_szF{gBcfB2J6e zzIh{1gy*ibv7wS2RC#4qL#l%?MBOylzXSyEYuwJ3g2FgWClk866U9Q_;oC2TWa_l} z%c0`VvDm}_a7(c|wEsMXE=zqUX{ocsJdBqGN}c%qX|TfecQwkOK6{{zMRV=FNB za|uYVE@snj5m){esg$~^fOvcZYeBq@)=N)-VkAt!lVlz<`2BiJiKC?(QN2`<-DaM$ z3w#iqqdPs@&x@K7lKe{@&vZ{nIFpp-mdo&&i``I2>}_f^6%s!G%v{{!<53vd zFS>90N$2-*=(8VwEQX0W`ykEJ9+T6U76By(bBxPD!{FC#@u6(*K_MHU)@xKg!B`Ak z&A)gsRIQ;VIJ*%Lz=i#C7dPIsk4>#M#CnPGs7rFzM0=d}kyyr{(_iA>A=7dDke^=h z$yytwTwW&_5sBK&wm;YYWbFLYeib1QU;*IYaidaO6Gk3q&}^mb?zB-fQ``rt#Yx_@ zNGQ=eNazluaQxZ_T|vTR*VsZiW|)W$>6{ik8$0`5^JusA^N{0uSbz7<`@*_Mt%P4? zI}5o|fPweytR_;P{?*|8$^v<NrYlm%KR2wd2!#o93<;TWaup`pK<#AzE_?Xtu0uBzLms zOL;*{W_b-?n91y!jwl+TLV(lHx%mb_k?}y#4Hcl6rRj%T_6uAd?@(thIX8U>a>6yg z>MnjYR8A~4+gx+rp&*(%D5^s+qPJid1ck1h#4mJd$=hHFB@LK7Y$nWFEy;yJ4DOPR z%z#dpg#9(zvlmjE|I`BL-o$fTLQuV;)NWu#Xwgj$EuUxKQ=!PZ|MXR!h?9lpVnJ9; z`|{i16Navkjg!`3qBc>kzNdRb5=?R|oG07sHdWhH;^lGIi>@U}7qNJT*Jdal99jZ8 zXtv9A-zrgfxN<|e#%t1x>+x=!1(qGnQAJJ@VXPB8hx6vfXrV@;Q(=E2wl)2Y%*re6 za4jgUS*IY4vn9!KE3u7QsV(9$5>TubcrrG*gQXeWI#?^;UV%+LVYFPkQ=%SN4^Tag zc*qmRc_Vm#@dd(*_RD27AmfeH9_Dk~84Fy;KNq-99XKnnt3?_bVO}@+I(541f~fqG z6()^#v%{x8`}2`?TfO#ZmpIW&w)08fuDS$n;FWtCWxl{JYOc*#Fz|F@HjpbOZP?09 z(olSIb~@hz1W@2}s}#NczDKsnlcJ;TiZJQmD3Lov&4{h+`cTr*y_M_4Xf$T^4S@G! zwH}|9Fj=K9?B!Qq47~lxZ%1DQ%Y$fn%!eoCo)LJNHAk^A21_pMmilY2nZS{QLdovZ z-2^fBtlr;Pa>YeK>`%cC%AR6+qsC~zq<{h~xGKVN>!met8Cvjs3sYEk)ZM3QOpwru#=Oyk;_Zi_LDV*%qd$wc?{C0FfM#K#*fYJ0L0~ug9&vb0gG}skhFUWS>Ao9v zd@Xnjr_hv(X4v&#=aDHqVn7@Z20v8=bj$=}$7K3vbNdJO(&ru*Gc)sLaPIs_$8~|? z^sh|Pe}Zz883?K3ELl#bD;F5AE%m>*EB`-W=r6~5#>+YIzXS~RSvz`fx>F-k8e_OF$+h40PZE{|(alaY`pUNp4qtQ%SDDu2K=|Jg-Qf=q z^`DpJ{%^sPU0j%wMQ^md$&?UFf;GL1|0b zYuUQP*&FKIdF?dLE~A-xr!{?HKMK1VZu$EkZ8!tu>G@B*rXM5M%tB9hmRn(yG($6h zPiP4c4Q_F_eE53Fum&PKZPSFpsQG7Mg!#Q^ah7SbmT^OIjpY8in=c-CAD+^Q*yDCW zbzH^rgFF4=(&6sf%Kpgh{||J|%I9jrRLl3hV%AXHTUC=WZ_R2WQo(xl?h|T9syyc4U};?&25si}A?zlVxpe zgI`eC-OT>Z(l?lTU{9jGWH(?-4_qtUv|$6I<$J~<_{!!W!b|0ZCPW@QV^EX*;J*QM z?2+GUE$`7Q@Bab8{Al;rsMB7OdDX+fT_^V(3lNfM zuQ)42BjmGd$r#24M_425Om&E8wB*_SE15+u(*dw$NJ5r6k6kx59`GD61^D4n7p{5G zNq@j-{6ufUh2FQZRgZmxTf%cfrS*qNPqEN7h8)<$dEh^*m9T@Yq( zrOcXeAl70WtwgR(y_7)D>op!xMe`u|I#w_^*FU9u?xpO$Ex%wx{dN*gPN0QwRFl z7uY@St72OgM*wi-7!ZFgiAgWjf`m-dpD#=jRT#K1>R=rTAQcp6kzqiB`^Q$W$=f!i zHknTzLqx%Zsydk8B!SHvkmk<2YgE0p*R7oLun67xYnc{UD9qItdOo|qNZ#LitD_Vt zO_}R{bQXhWx<%LY1(uwsp>*QKHy`K5Z6YnZK)fh_0uT@@pF@o7m`E)7E)7bIl@DoJ zZmdHafLv|K(X*Ff@#hGrP}8sPzCHPfCzpLAQtEq^JLj7SLf3K>{Km?88T2}4!6~S~ zW}D`X8NUa={U(0Rz>|%eD^d~rdyPy4eo;T_+#WbnJIqoKHJ_`LKJG5LjWkxua(~rp zml+rIE`2Ki1wn9_lu18y`}kq;gAip;1S(2$BIyYuPYxXme#Hs4 z&JIZ&ff$;oM`(w6UFkw)I& zQ_+3+0%$$eXPudT00Ox}2dq3bX$QxMpYGT>88#y-ZeA||5Ms8@b_a)m#-4LG`8GG# z2#}Sh#?qTaCpE-O@|qD17Q1-$$I601!i}40#!`e2T-L!Dx@4@PLc~zIWx#_4iFrTme7))@jc)z;*o*DjLNrTA0&UZ-SMz z0rJ;efFEH6&K&bXYt;d?t*s{pooQ?d6c`4wuOBP(#17&*SrS3ktczY5qlu%za1Fo8 z4vggST7Nu#p;6h8zNa<#GkS`vdO-Rucn{5$#&!5)(xPR5CH=j6Twj?{m_z81Rbj@1 zfp4NPQA^4ImSjKpT@I` znGg9D^uC7E$N8Aq9Rkwxe@TX#Srnyl*2tYme7lN5Y@`E;)04PkYm9@zG9IwQgA~69 z+~Jhb5`D1g2LRg*h{_mdTpG_qmAm)75I0CrGk57gY3mznt-g8*-)#ow5lX`vcL;HI zB`9Qt`Rb1QPPG?x`XamLhf46BsR1B7bXZkGi~~5ho)D+#qF~7A&*$?RB6n%DzICHg zVUx=8IZqaec5a`}7Ye&hn)W{M{%h~v6Q)CfMJ4GEvCq(q9_Js){40&ki%+qFp7-2R z&S{zFOneJTET1s*zsW8(kvsPETX`l_rMm-dB1LS@eBIw{lw7n^*I=}0KsVK{(d_*N zZ%UaqFg}ZlKUg@Bhy7j-GJDRocb{E`OCQUBFs6`TD_`ws|R9~6A`h0A0 zR{z5`?9xlq1a+hN#NaddzBN+AWs_j=^I4~~Vyv3KoB!9Gr|Y-~(q1-o(K@RCfli3uT5aIyKE|RNpNPdKKkxuAjse`%t&f&3o6Ov z?7{xb+JjU<+e~S7hRCb(zk8{1NdAKddkG^x&0L;XC9n173w(nn#5P>I_)#-#sLD7$ zk%^vPr)$3{qkO$7tm!|h^|DGf;Gjjop1F_t^mm>mi`k=dxU0mpWCR{zf^R7-2^F0Z zIC`I;0UW}eDHaretDq6z5YV~AZ;GU9!G?0~hV|~@UlUeLpvb8quWD1prKC&sm-zxS7jA?`(bR=mv$n5l!vGi~td`%OV=Aqe?X&QS z0tdwyYlMVFT>;;8r*@MT2!D1~_+R|6mC>Y#=ws9q_lxZgZ7NBDy$pz!Q|tP+g#+Zs zEOQAI%H?(I6o-Ye>L(m!$*p%KxRWcyb2#XWpJ|L#&?{z>nVR?1d#%j{b!32U|EG%g zLA|-7R&pnADT*d}xq|FKn(;;weD05d)!gVC;yI^?505Yeb7*gNu+gPqGvPv-V?aWf3{n|Fz8-Sq;?c=V%%{-KA9-JlRLbY3 z&#DE?-j`P~FR^WV-J7!%YLu6Ht!(JZROmVX*4h)Mp*82w4+E@?y+#7O!u$@_w_3~> zF6c=lwRWa81ObgLuJ!=oGCc_nkNeXPeKfLSEDK#%>5TcrOq0r-8y=sh=%8ieas33* zce&~+jT%HCmG{lz-e;R=Z+vjdONCWr-1Y-BHOdXs;Z@$Yr<}sdS2U!@$5YAi*)_y220Ne1gUpxgVgl?xBAUt zaK`=lgr~;g2Hju+9B4s#ET)$p6XEfyyj` z5yr2Zc?z{q9_)F?WpdwygM)3~4EK%a(7!UcIRnmp;H;N2G<$OCdFFeuUNbYZXGet- zr0Pxz&(yuV#y9FK(YaYX1mXJljE7JqE3e?xnWVaybaN~oj;d^Xpsh5UGUIA~8s_Nl zV$o^(5Xa+<3nSDrU%g1Yy^MWn={);cMk>fSz_f_LM*OSX#V4=6FO?KlfVvik>kBRv z(1dtw8zLClO5z4FhT_KCe;KOBXTRi%!Zjg1L)gc54bJz5dm~PoKlxCc@XbAZMAr9> zCzgv(O%5uSLjI}?898@ZM|+)i^YQACO2EQXt^g)^WHlwWHP`RmwWb4*_%32YT0Sv* z^;VTPMnw9#RTH^0H;f<~F#72eDeuH_bD#L7lx`;yk(E@+kyZ0NJ921$w7KiNh= z&W@D7@ac4$DGS2x^Is1s>~p%1m3##$pOks(d;W7%3-y6mc=UhSwNH)iIp*o*s|jL#`eJ$iG0R)?+jI>1cW`0K3oUQ)9;j=~8FkMK#N7UjOSl?{lP$98s_RrYY*XcbnQrSeUs{&D zLev|Az+$otzDPqny6mMBaon9f0#*rtipM=mPEC5RY+K>ZK87_Ka$gbctntyroZh!l zGQOih?!pB%%1pUti`o0z0mPCXyY8#R9eVyb8Nl(qHB?&;W=SSCkoYzhp<e($4=Cr-LUk%K3}zq>S5UWR&YP^C*qfp|Iiacz++M{*?(B+)P%X+(6XqOcSa_&%-phL2NvY|}$#r9VpIpf)39iE4bz<~YZv519o)*`K`@bPW={s4QjD3vx^7bw^4t5i8dQt34fKi|_eEtn; z%ZoP+77twN$KG&PL9d(yn+iuSLA`b+FOY&uFL>0gnR!79D0K|Yy4N+*S1il%u^%z&tF=?V|})bkr{`uU7zj`)F_TIFsZ(i?XO3J z5TXjGcb0cTqDCNrZnh!R(qw^KQ&&yv{LIjvbD=(aW4pks(X4zQOk?zX33 z!3wm&g6*nmmf*J%!;zF*%sMvLiIbfk6>mf=B2tr58)({@PnO}0n_juW80JD_>+6$W zgx|~BZWi)n_LkRt*lsE9rE;=zO!>K&`nt zGBdv-<9fB?$<*##_w0>syo*`RBOLx_7jz9BwYi^Pu!1MOdT`l{P|g53Z7MVBscojV zCHbR`pZ;q~UbruRiD$e-{U8*q1 z^vijrt{AD5(omp27&W{r*=vOc{e32ccuuj-1e@7POe0~r+H%e9u-XCggEEr3qku9* z1l9HF<6~*X3AB4B<2!@al5kw*l6_Xez!z<0DfrahP`BY1;<34U+8$GcHD_`#@zzWS zaTfS3Tjs!ZksA+||5?A~FG;*${R~*^XK4ncCjGS*N$Nl;aqW+1>b+>}%IYWPq8i-I zZ(9kk1fOa#LiR}4WvXNeE;%|ld`p}v&We?JCLG%E@X@8Ax3e!0%YjmE#53n+Uu-X# z%Zc6vFxjzby#MTyYF&5ei@xQ+ZzI9L@d(-?=dTGzdOGFzy};1#F`u7yx;lFJka>}r zh^AvFU+7RdF;VL*egf?#56Fmz9O0vJ`TfOYnVqTBO82%T znL23p&33tQPk0z2+JSUdwqj(SzUJc_L;4;I(&1b)uvWr6IK9%6(W#h@2s$E*iY%C_ z3nBImb>6V@uD?yrb|GYSr77FqN+gH;dTW>QIe6h6yAeu(D63-o`o_oLHzl4p(ys@V zD-5IrByBHB%~ux^p#rYI^b8=-fadyR-5spH*bxo~{N5FXczk;Gl(8<YP%7Z=)MtA_1=2OyMd z90cHD`~<>NJ=>#^=@(E_f9>4Eg%PsIm5+0C8>%XZBcDUOf7F5;f7|qo#u3@guq+^@ z{Uxh26%@&xtU@B^J*c7s7Ab-t!2Vn`rZPCYK&N}nGFPK9x_W-XN6q#@SyvTIjD|Q0T6S%wX zLpY|f_)RSpu`>{jKK|v`3it1iFG7&iMR4rBbnW+RL>E9jeh|3j5nDYP_r9tNR@Z~x zY9QDR8Q7}Ma#Cms4^%{K*$|jMj)n=w1y*ZbupS`K4?;!m&*fvVVmjBB1*r#vFSCK5mJ1qZ?x8|$FF%_2#ZLuC zE<~f=_`xQp*t55QWWdnc1JYXZpQp7@4$fAnsD9@U8L*M^=>sA3Ks0#&Dy6?a0GhOV zT9A#yqnLGF*}0c>UD^4Vd#qmLj{#HbNYKY}ZLpsf-_FYTKOZvH8{nbhN8(y68-9nw ziq^h0;OKmRKj45cRNS_E!A`!??#JH+%l2oSj)t?l@^O5bkG{rWLqv?i!=;~rQ{v(I zzRDV9hYonC>32TTMb9s+h3cu-8ac>b5yg5L;$iSI>yqkU*IR%ZkKEor&Rmu zKXjKRcDALv9;dp%JDHtEwi{drAM5OnsJ&@&(s1GUnOmOovJ_e@&1l}TW*@6cfP};V zvAgtBH;bj5ds7$!P)P5Y$qOe~Dd3$RDEmngY(Uq?R`idh2@4I!s5y(nq4V=)$Ok=~ z2O|z2GC5&-shGp=6C5cfa=yX%hhANu@^Ofkf2)}xO7*<7WxmOcz(gQM@{XIoH7{&q zjeE}?BPws6Ez=m#Ty$9qI44a$RQ?DtPE{%No~XyZ$}uhTpR-Vq$lw-``Vj0tmuoV4 z<;sgM>Xq)HdQaDHQR+A1p5Sfgi-}D4Sx=Xt+ys%(rF}e%g|@ckNip_{`>ZdS1yo6F z`TqR1(BTD%A=5vDkZMBj9$jKEW^e9&l%n%uOzh!@OYZ@ok6&sfoN;Q03!6UJsN@`Z z3L8eVQFjR(?XQEwz*yIC71M2~_@sHR*>JggN(u8q)00^O2Gw^!;BCqP5i~G+0Vkj= zpkr3LlLoNJT2K-d{mqfObc*%d^v%lns6E2D zzqHri-k}RD%3D?4$*A^&cbV0OT_6pY|57XWz!PrS>$bGSiI|qp4=sI9k3V5ky<~(U z;b4iUY25s$u3g){>i|^{wzlMKn4)DfV@S~NI0#ckY}Q&7-pVkScz`_XssvQhuK+C^ ze_nWj`*sRu^VWMXJe{~GVD^xke`(eg-3*LCspE|U=}vN>gKE?m6`BJ?or93@mQLZ^ znCg*5W`OMYd zp$83<^lHhAKQGH{&dF^sD41$o`^4s*roZ;@|B*@ojb@`q8;f09*vyWUfpmRX7W+zi zrdrV2?n9|sc6Q^poHdjMv*zEuld{SzmA~6QeRyIgyE5w%iw*$gZ=c9zJP}%?|ZGPxHZFaEkXg_fM8>sdd>PS@W%R&nswXFz1x@fL`5Rv~h zzwcQ6!Ym!vPv|c;mp<#>djU`*yyH4h7#%|tyfY7lFM2n%Mw<;PW6Imz2U4JQmbhaQ zOK#GET`AhOuGoBwT(g|oIDJCUYJ#PrD==rWK23SSw)jgs7Hj2MS3u4@8XUPsLymhu zYA?oM6>0Su8fb0hzA?4WtOXy3UQhi&sQctv{ZK!xK zAC7ayhINl9`WJ=U-`#q#eVkw+frF#T*?ZmHcENe);hG!meZcQyQG95mA@K43CR%Td zoRlS5BU#<4Tx)it$Y(UE&ulzx@@audMy_d6aL@bg)tZZ>w8gS}J-s=Q&AxbTwSgkg z&B?F!M|sD=W_oYZ@s?Ma9=J@HdO+`ZWAxeaH@0RUF4+-Rz?hR6mgBSg-fEkgaw%x- z110y7+iL+!9L4CrAeb(*9;4?+Gd6G4epSdy6jIW#DY)e?x$b^`EWmr)SOD;L6E$rE zL4Q=<1e3TLyD=qnGyY7vzBDlFdLjcZYz)8i$sAq?^b6t1{~EVuGVI+;-cT#Z(0$b0$4L7@m6($K7XamY)r1 z87C|YQ=x%i_@eu&=|&B3A_3#lNWk*R46fukioQ{A1|(^f&6_YLbP-M3CkDPBw3V|6 zkNH~s5x-s(^OrbXMLGJ!pL4+#A|;I02c)On)w>eUoJS`=^DmnnP`uXwaazwq*H4*= zh@SQN(3$}6b}rEd{I*;yA+T`>V+{$xl5K)l#`Vq1Zkh9lsB|l6O*KECe zH_-6$UzPO#6m1cw#^{jBrlNP_zDSyw*DgF!D@F8ixz@Oo)igA$0o|%6 zj)WU1!Rik?O2LfN6fc8(+#RuvL2HPdM7Dk>#0wF3uMU~Dc@XL&-7>u4(3)4$w&%XR z6vtK&;{2EKqT}OPvXn>jnteb}fSR^{11 zpCNemo8&-NR}0w-RmPJy)rP3Byyy#X2HbZb_%SooY`C<{tjlU25ARdfLlA)nE6=+0Elh;@6L!-`gwP>+#0Z+P5Tl~ zE{21&ntvp6r@r>Qn`Peh^Fo83-IIXg>ELMY9xK&qg~_lo5%h*o?w08 ze5qb|v%~`M`MbeMh4e1>2`ac%Mq6l;o9$F5Kc!hK9vzbd{n+|qFgkH|t9rs;j(Rn2 z8g}wGrRAp~Wt33iQW|IfLyDr0_?NI6Klbt#%za zr5Le!Xt=@?<=dsbPE7~ACCUrpPY64fH6@L{XSSUhlgS~_>GNjF-J56K8l10?(BcwUC{yYg~ z^MZwpAALB`{h(6apZvZ)lrjBnxJ+}xZIaw)mt~k85_KO`Go&JSV5?vbr;`Ri+OM6e z_U>~uFSs>u$R`65XlvTT=rh(fRp2Wok5s+vasUOAY26MQ(&fiQb7FYMhRDVbP^=+jO1P|`({6u$Vp>-$|vK`u9rzyeT8WZZ*=1aPeT1DI6A-6F%RDyqI&uVNu zb@N|@jc#fKeT4QAeG}sJx0jOr<@l6j1*bxmdd{dQZGj^joFya`_~0p)`kg}Nm4R6! zf6`+bprmdKkAUInu53uGh{ZkyeoU(#?nW=7b5D8rL0vKferyw5`6zt=j%1k+|G&1M34mw@nH%mEpByLnrFz_=Bzu$$21S-BgYX^0}H z=`E*$LhS?Asy6dksk0_2ppoYm;>?n7){F9j{T>3Yi~Xj?$xnW|^B+DuUkZBl6+3_U zq7X7S-@ilg4vY{Guuf;h_uQZO(Yai3Nrw*u|AIU)K&V655a6y@gs=ZE zCOqMoV!z}mQlDxZkJ9mK`xYaIZ$33i=X2ZQSSC?mK0XUT4FK&q{)PmviX?WSu%Oa6 z3{=0Aq(C5ZdE0tC)eM-X9(jo52EsV1q1Bs1yumB|P4XQv_>3|SK`2BQDX>IqC+>BN&kqI4czU+sKq zSzw*>?3p5)B0Td+ID!R@R+|9iZL4zB`&n|-kl+^uxKe*d2FUGF(Dh9SkUqZHfM6|- zdphtIROD}n1i*LOA2-zhsgl`Ph6ry(MPKSeSVa&^hVDBc&{hZ3*uGXZnntr3|m5{f{zyD1q&FzL@0oSH8Kmd=aj56qLkioFYdn!W#-s zu|UWfko33ShxjiZ>sClddKHt&6Mi`7zBMQTsbL5cV z`$kNIgrDwu!TrCN$QnG^sGzFMx!jitRRJQwzRM*JZBqkU0qqATJCSX9v8?%ZG1=cI zF9?$V&RzsBV}HI1ed7$cz?mRqpnu`)hFLEX$ZFV&$Nb$+eUfXr<3F?jw%S_#2N`bQ zKAsH;ym6y)bA5uBG*V`I`K5T@2Av=9GGm&az{i0(+O4u%U}VVrb^c8nK;fr>P^u%M zN+jfMe(~LJvxi{RF}4Ehsw=n(Ps{Po7yU4*PC!6fvtcm!Fps zr0H+_m;i6fnVdtzo2!KgPleNg+FE4|pcsnju#&u1C7?D50KSvhzk||`KZ2|j;%m(6 zf_Wsn@$W+6=GoWI?c^2ifBPx2%%|xJfd8(U=b8Jz*~nq^-)0*vVNC;{`?K-$w~x&09L6>5sVBdN(xOeR`t=cK-S2&~E zu!EhGBbC+B(?7tf1-IB}{$DLEuA>kUo9-x8-oxL~b?{~9srj3~@5r-+a_&l-QAPgG zh*gLC2V`!&#VHU(LbF-j3e)W)JmEm?PtT$CwZBvhhS7-wog1L2|84ec6bML8H&){8 z>au{q-srBL#~T9v>EE0GKXS+a<;Q279Q&_AMl9w;l-v?oH<(5c5$08F)F;MfzikE` z79~(&b=u@~;NaW}z`Z?~tBG&H(4g88uNsu3vB-e@IV!N3xSnI0Rc?3+uwNTk8A25L z-@}6TUx0)Rw3_EGwkzzp3qWetAn#liqi~I2$Vh;SztmNrjNS`oj1+yRt~z0KKCufj8+pN$X#!T2HH+EsyQyFM-%Dc= z9Qz;?92%tsM$&0Bi$!U{3zy@G&4wxFWiI9ydBf>5I7?LMauv8Y=2SBuHj~1El_}BfTF{zv*LfFwW&sQPva=1#0ch-( zzD`zz0MQP>9M}7IZBq~%^&zX=0|l1GEP$db-?J?+WlAnlPH4H@V2OJyfC(BDto{Zm zlaE6?kQ(mhK-n+;#C5265->qQA9bKHUTgNSYk&50pUGNN)`c1fv#Voom3qB10T;T| zXkhHPH<7h9QC9!$tvSM7Jy7lb3?~bqK$AC}$h&#|ExW^U6D-Vok=TLlbudVv7uMzi z@x4JbvxO_F25^15qP}V~*L^!uv*lAOKufXT$*LOfL{EOPpkt*LSX&O~sMNm=NAW%upu?^e2NguWPGPeSN z`%*YvWKz+*;ib62l>bv!I->K|JwTA{@06l9f8zUZa&X@P%eFEnSB=Ek#o(8Vw-Mu@;WKK_7 zU1|um#h1b7yt%?r>M*0rFLpw=Q>h9>zxlvQqg1tmM_-w(sWr-B5B>M^aT^P~xN@jB z%VPG`H*|MOI3E%K)_sg@;mQ%P(cHJUbgk(-pW1fY125eDAZz`of5?~Uzt$e~Fv(>+ z%P_+Wb~!~NL!NLzckjq{yFaFpvA)%qxX!_mm}8&j0i<#|{%9EA<3jQ2j zM!h;^J>+35n)S<1cS|ue=CYmhm2E*PU4?yYRD>%`&hhJ60Mv0E9dlx%D~uQ7+r(c( zRt}jK!Mir?(^~OK3Q;QNHFzlkd7~NTo)?L8`4JtL<`Xr1<;T053MVpdmi%7|l>eie z88c?PKZeaT0D>^<9^a=E#|MQ1>|`J4unTx;3z3JB9(OpyQQX>jHt_fpM;G3^>8QhB zFI`EHuY$*59fZTCQkR8Q$QvXz3vv4vIo?YC#oqMq@Ig@@}mY=l&~(sjgk zHgu(Gq7g7*A1MUkwN_cqI`UJU45pASqLO*6rO`n;f>?j7#3VU)0@Q2&$NK)4KOVmu zVRc5w2r?4ydAD6BS5&SkXJ4hm_K~innt&ths*rmBmUBp@BUGX5t2mku)Az z3lB<2U`zITmlD}4boZu0R{VqMccP5Zea@;pV4~z)!^V7-YXw|vM?+&*YF{}rI@Ri{ zuajejQPM~qQm9(XeX58i(Ph8(G->vGP994>wh8XJY|U3U@DACVVE}8YkLb4}7TT!6 zmQ$Ttfkw)8(0bGBpuv$C@0p6F1_&MBL1t(&uu$Hb4Nw#{#pCbG#l7t&#TLPcO!cr+Z}yu8Va?jsd3kibd1zH_hG$@q2X|y12+i3Ayy0Bty z$=vk$juli2c?D-c=Rn^lU&2r@u&l|UrGP!{jE&1f$Bw;kj$r$pnw})&-ek<&=(-NH zZ4#t{FvU(?g~I9qF74kv{btP)jR|{5xLleLno+v*&NeoxPKZnUp+7%E*)NM-`~ASw z*G;=$H``r$Pr85ceP}5g+&&G~YnB^Ve*yaRG(RK#*3n}}`JI)H$zC{d^v8WS6^)}u zbwP{9^u=9gKTucnM325A@mSHNK=xdiYJU#~`kGxqqs|6>PQmHw%Vr*+w&Fi@HKKC*qpn6KJ3Ts#q;qbKr#9p(^^O)bpyMP|)8f9svpIqzr39gjm?J1n(#Q;MEd*S zGO1$zFX?j2_*+#z34lDAsR^fp_Rg*qe}F9j&v;kM(3)CUIW zZn-nU_52joGnyDH5_E(w9r>Wz<&&kjv!YOb;3p^sGQ4l=M7Z1kXm$)(x9 zJQn?JDc_6EPfBS_`Ho&c7M&8LJ>TacWQ5Wxkd!jV1}G@4E#Q^Y%?n4i8JRNnc)E_z zwe_^~W9P8hM);^(HI4;Y8!tCQm;8{DnhYQgYJ%C^mP)P2Iy0;XTu=rk8tJh?pY9cm zrc5B#E^gb&Q}t6-SGV`x*SBoYb7a6JJz+d*fan5+h-V@%k`zds;k+<|$#oETs z;l(@kMY}2~MKuBNCSZd`PR)U&txxT2;61FBb6(#_%9ND>Q#MX8y5;cgmD1?MgxYQDvo6|oiWU^_{&kJ`ivTZc8abr6 zqCnfML|ZPZd%~{8V4>c_fb)hKT`(V-yJ)*3q}S3vE!RD_Q9l>Qz|#gEJ@4VQ^-(XM z{aNlCpH@d3BHCK}STAie6jU~;psPs(DsQIX>cIAf_#~%|&oSs(w75Y!N^OwTo}@5S zE&fA9{>}#T3oeeJ05p95b5_J(h86okd=<&wp{`acB)vBPh zB^Tmva+p9uTGEbz={Y@^V^_A{k(?2$%GolWGw7R)ih2fFzaxo}C4cu4`sB;7C9@sz zU5|}H?Tv)TOSvb%3M+WEd85Qq_#|C`b1RnzV;WfJA*L;gZx@A1?(tHUI zS`D(<+a|MwE1mJKdeuiPtno>K-Fe^p;j%FCjNeuc@WSKIp6T{lCeIBVHaR|?P7oPmltTqlLB^sfUHa*c&F!AceTEejxjlI zJUjZ?ya2Hl^djdG&^9ffuDiHo0sN`nP-Km*LX>Iz%*eDVYGCE*u9wWTa zmYBaz=I6YWRN?>X)Ri`I*ma;933yD4v&wf?t~qI|T;8v_JbkQlxpYQh>4yP2h_;LC zayq>_U@(-S}ZspHoWnMs{0{(XkfZeibZvLU}_0GKt#|7W`vgl>!F)O-&9&Zjnl^^oQ z2enwJ^P_#o%I>WCY?N$@;{CBUQUSJS&U%b|cOyRbzuMlMmxO5dwf4XScO(y2+NC!? z6>%n)%}-YQ?2h0#G8QH=Ql_4x!yS$$6k{L6$mQN1b-S|v@I345Ng8e%Mn;Fcvu}x0 zolv;@^{s&Iz0BdV+>=RM-Yu}AcSM@ia#GOtq*aG_3RQ(JXH%XE>Nd&%f;0;z%eCr$ ze?NW*GhqHif*kWLb_R%kz4H+Dqr1!zDk{=~GUF_*DDe!J?y;`g;n$mI2_fDRd2SaM zMuAq=^z(Ezzv++5qAG8r+c7Ytdfmi~=z#-;_a8n9UdG2FamqC*ookO<2g<@Wb{MDd z_%lm95}XM5dz+uzl2v`nYv%Ha?a7Y1%pgs7z>Emagq}w~3k4_-tz{%BO>0YKqw*E8 zBM-9ClTgp)^$kG?#_NbKpg3c*d(wr||I=xb0GUVL!a@pSf>NDbvt71MS3w- z$|oM@%#&mR^3ZZX!n6Nlz1Hlc@ZAbxD)6g?29;&NgPlk_uyuk%=eBT(_IT0IvB#o? zSnfGx4c6SY*e^#=@m{uxxWQ~ASyak)G~49^=)d(XO6;!tWTqrcy^P>X&f6!7&YKld zI4p>IX&nzx2n#vu%1d>@G_wII^8^V)7o;`WcGIpjqNiOp2W5t0m zz;=f>>aP9@+Ou>~ObM(psSvMK0j{Y2(+f}-a2Pb;)w-s)!Jzr2OqA8{W25E{xVD8| zmsndMQc7N_!wRPje~re;K(yRv(Nbp9B48yC=+bBW9!Jq@{4Ew8yMl!AB~EDI`RSP( z=-J;Ko6`OUwK)(6w)WZuLRB&#pb^i`In4sRv zt#HG?FLCNTVOzh>G8zW0f~lDrU^`I&ExE<}N+um}z-GFF5VPw;zAl5cNm=pmx`C-= zShCo1C>=j%jV0~Xgg~p!P68pnt5y{rK-#T}Ms4Ih2}tZ7*c;fEcwy7WCKXrv$tkE27>AMXOt$9}_TcHyq4P}p!Y+(O$ z!nFCSltbF(sjEpE6Z6d{6Xd%!3}&y~gX%}qGcewErd2@d37^k#rl+iQ1b z2k}vov9ki|K6LTdA)RgPXE;X2Dry3FadHZY*uk4eI|%&G9i@BME$%=1x~o$_c%C3y zF6jH>XO6$qGH%39*`dyEPD=qDBjsgjA^vzd=;_?u9Xukr9Vr#b7-@st>y6dW#x0F(b%dz zHeEk1xxw#{lM!e{D6nCe+Y9ZN{plcCynPL9Bd1hb+!50lT*5;1$si7!Ul2%0< zN!7Gc1Tzd>v>a5+3{y513(e!gS>}Kd5g{eT34vJxf=OHIdNrdIdsx*3M(m=L4z2Dk zU0e;x&Wgu>+>qEk4h-`yE;#lewv!*|HvAxm<6Vdl?NZ!`Cm+1@+p zT2D1CaB;|Tbz`G8?P8iO&yU&#FkmKWwb=a-PdoN8cZbNI#sfKd=6TpJsku&s9aZT} z^&cXY$&i&|2kE8$J|?50N7K?83-AM}i`svT@9ocO=-`yI&AY3cx)_`G5)1^DC;LV2 zxSnvCFxw3^)?O@?G&_uI#8o<%%npV&tM+FYIGH}KN!-Mj8-mXIhsJ1L*Uxg8Y(R^b zxD7k!pBAJyH&|$DQxcZjX?i8$Xh!qX4ZR73AiB9rD~~=pH=9a?n}&|;Xdsz@rtd(` z#s?r@>5_X_pm&F9Pc@j6?JS~?!i~W=;oyRUf#JX)TPMwJZ`JKj?3uyy^x1n;x8De! zb(x;Ynmf_{pdmW+tabT|pqI_D17)rP#FdONMUUPuITq0OUp9glJC>!wm>bXpsD0dA ze@=-nUeXn7QMX2WrF6WYUU~7LrsGpk@ji&!eQ18SDqxX55tOXiEqGez;gi351^G1Q z`>RS!4!%t4%Q|`7{T3Le$N{R`7BGQIE96ss5GiNzhZ&W|w&o%0-h8`7f25`(lW|CIbS?fQ(aNfql3AF*vG?N(cPW-t@#bQMtDk^W!+wWRa; zv6@xJxc$Q@$M{86e4L~aa0rG=+1Z&>V@&(#c^3=)H%?{4ANXKL4 zt>YVvWhI2M_M~47uuKZ5$6PqH2xIPZO5LzyZi=2+-_^A_sWkt_a^5pCkyWaMlKfGH zT^gqP1G#1vn>C9wpv~(wr3qiQMu%DM3C~jEZ?FuC9jdpFmeN?Nw6rQACQm24nK-aq zLHQE986So?SC}jzq6$OcrB(#e2>|5&5uPd`B?jdfMxwQnZGt`wNH_kDSc3BEr{{&YyeF;T~6mw6tvgG*IkPcNCfFQ(M4G5D=LEQLk}uQKXx?4;BBvJCqw*~G7ND6$%@V|+%o2i9omBTbflfN5)Gi( zeIEBmN=*P+5(`F}oo*kw7?jn3ZQM5(Og>W+Cvr*CZv~8-kkF!G>pe4fq#Gx)H5QV990cQjX-fPeGCwg_piN|XYO zw9E^xvk{Gw{?xCR9Xb!b&rj+D`x8wAH1e}v-Na;N#Pc{2&8epyiDx1K4eIG|X_%pN zhrqc)$05Y@gFV8U88}aayi-YqS;HaGRcyWf7St@oX4ebH30wnEo_ zY6;*ZMrzn*t*X)2VUb71koBSFjwNF4Y8vqA`Y`z8;$nw@m#&6;K;x!Rsl%K_hC=4x z0M7`{9&kgqf47m627y&A@W0Zy=@ZHz-KdBu*~6>NLepOG-0n&}gP%*p zs|Npkv^{$7d6yEmStZ=nyExQ(eY;cD_MVpYhG708hUqN0d7_&k>&f z-3D@XKmAA2fXw#Gw7I6;?}Gi6)In+4chIy6-rApIl;925Fism0Q~_4#?t^5YRnWsx zq&^MYow^%&HSeZqv;ml47Vso`#{l7~%10atctgC2t;1PYFD}4F!`gDLk#~r@H{fjC z%&A#(gZ`gKNyBA5;Q#+nscOOdw?irmLOjmTv8MKhiXD7wROjp(qmn+_i%RO)0syCq z%}bpqhgm92W_;cymwbCtLk3!T?T}|%_CTJ+Tv9NtP(>8It2k2U6oAP)ZE9@TPeQ_^ z*7M6LT5e%4&&lHx6lP=i$f4F9YryfaQ{b8#Wc}8g0`)z!OGAsT3CCXQnlO}4uhYKv z%=XekQ73V;!z6-R-h29iGv}zdGGC%c>_+oub2OJ$=$wYR6>5nx;atJyE%aA>{VC{5 z)~XEWC;~M!K?tMQZBj_tgoESDh~=TEHR?to6jSt$DY>n~^U1-V0p5ci1HWKu0X^S~ z2*JWB3a-fuQ*~{9<@bKsPW?ZfeR(vSYxHhVRaK?OQ3pj&2U@DA5*1_VK#S9wYRo~+ zL(Ef*b<}AoT9lZgRr6d!5J{AhQezDvL88VQf+9#HxnI}suDjO#=dR=CzpRx%-hA)= z-gob3KhLwl5RKKz5U}I%_KLC4$DaML)_<`Nk*ZeQ{V@N3v2DYxc~J<#-69#(wAd5A zkUI8hK-+8!Xr}yga(6cZT-4ad!&E;0S0nLXA!^G5n5PsdfV*sOMR#AAEXSAZkRxLNbFS@!yHeF<;@(m$5K0WrAH-RR*T+h6~A0gQ*w z5#mJg10$7#%lomL9enl~?(p3eV75>mDs+osPWY!|H4E+w{g}nE=`mIg5ypcn+4vEB z-UOfv+3l^US(!$WE$SEhH8?hljj~HkWi|wh;4^plM3$RKJ^{wV^{xu9_UWE`fiJza z^5eYD`|@&t_kp6-C-!#`D!?A+Typ{Nje}NS1G?^IaB*-@ByEb@dnQT;=o*-w;QOODaj_lO zRolGT{E01<)?1kX-e2m_d2g915FRQ~{TCJxV827$a2=?;{NQbQ%7M3FlUPXKWfxFe z*J@QitZb9@>MG(~X!IEW3vr_;H~JzVL@hL5Ow<_`fkTC& zSbzQ!?El{#r~lX27%2BtTRBwWx4C)nTz2qDRvVRHAO>9w38oGerf5|=O2??O5~Ok! zZHF0DQ$Sy~GZkPo?W46y-(8hk8@;N@(!VS-Y5`bEYdV%&k)6xqmTp87o7@XA3|hFX zKYDf@*s0A;Utvs57NYYa{U_gs$C#4BO8!L`(A05bWToj+IVWYfW(z1#@?=R+Ak!1> z%_PVai|q>vJ&8V8$TW&y8(OwAGAEZ#U${dxe|;fd6Ys^n*<&j038>MsRXmG%;}TYV zOfSYuVd}!Y_JjW zEPIrNL0WjiV?d7h9$?It0fNiCl@%XuU%>nQj_Gh4CW;yK@jWL+RC5pD9Z=o25vzUg zbmQ3lcz3`YKl6-l9GOa7_u!(?H?|#77yD!X<$L`yskz`w;+dEK{yPf9ar&h&k7&uSMq?KhNoN ze-*msxQ{Fv)t$pcj5Kd_tAAQv#;CXLCIkKlPCL@uIVTnoWVh6@ivDSYYUFeKsG@kZ zcu5etscMY=ijaquv#7kuzCQYDq&X|E$;W=f+&!Z7;EicYzEs!R;+n|S$NFi}%*lW? zrU2ZnnHPz7J#gu}0x*GfBAyS4{P+IgZv`>haow!e=^Uk{&w)k&1>5_Ndh^wB<8TZV zsr8FGOMv(Sb|b;hHv@O@KFq@!+pZZuLPtYW>rSis#DECq4SyUW*|R2_s~d8qoM*O=IocjZ~<= zaK)y8W`_}?G>Ek)EE_YJd&_hV&;DSo;#ua=D4W09EDn^O2>LEtAHbx{`JEI!$FE`N z)_l9GBuf<|ZcCGwV?Im~w;(*RG4H`n=C|jcY{cQKPxTfSzGeip;@42{J)f~k^AX-e z1!$}OpY9_pkoQdqKb6A`h`~_`!Pq+3@ zLCpb`qnQK*yZXZwOeBH!KNwgyQ=*02ody6*U9;RF-{8rUthe$nvQr2K6T0Wmaxf$( zyMP<-J0RtX8c#cnhKER=bB!eX9ePgw*6QVC&~%yPf9g`2w)MBG7PqAp{}l4lQ$NSw zP{-lqsF7~WJHpA8rQ>$B+eqB!3V&a!zm)XUQ1OC?bfZ(i<-qP32WzK@o^F)0mA$(q zlbJsjvb%P1U2Cbjfd=Pcpcops?MC!>WD2%gm1EQWq7-O@YS81F6MTOxOX+8ZQ!!BJ znun*K0fKZ1DAiDi+6Y`<_V9(>MipmLLRE6)bP6n01R8#8C>x&z&<7aRqy>kjAXt3RWTlTK0uSnqxRAhDu1a>$3> zseiYEK|XBlutlq-v!^^Xa9Q$ zCo6J|A=%vQsVZ#s_JDZ*UBSz6Od2fvu;#NR&`C9Apds~og z98v*MOUbabyZq`Ezn*LiFeI4Nlc@l`j@u_BJRIA^z5RL}eGN5JB^}D#Mv@f>@)(P^ z*R0-%fRJFAPc<^qpLUB3=GYWi7%>@NunWOG*`|>``p(AR2)K*ZX#8$~n7VN*1m5|4 z(0MkVuc$sCr_%aB9H9~R(u<5WGFCqz71Kk|ZJQkm&WHOijM-RhgRRH8VCu|e6yh(Y zA70Xv^NqqSdjd2%F4wbTncn=pw_<+G5}Lt7#X+&#d8VI_5cB$AX2K~n>D)HIWYcL|cOW%46>Aw}Ea)ZAM?Gc)Zk zNJz+>Y9SK{GJvQ!X(||RH-IyHC$Tp8)ztW)X=-z>Xwh{~ZZXp>su-0U%w$)K|NLq~ zTiUkUo03V@GC?YK`4tXX4YX?{|I{A(XeP zw>kfNkP6mv7M;AtGc3PE%)nY0a8WjJY{PqNyU{*NC&UXMw8wT+wg z`}p{%zH7qkbM@HS+4-|N;s-Dzi~VVn^(MaMhPaa(b93|g&w(#uOiSkl>^mZ5?k2onm0kmzNBYNl0mh|o?Dq!c=CXdg;njLCAXnc!wAe@}W zVQ&t$MeZBzs)el*aBl^o*s-}R%*aAD03TqV!h<*7ZsdoT2O?g!06DPYJ8W>+(salI z-~(`Db}d{;7V7@&b>kut?jOrLZ<42OKA^?8R;D662#wx0I`CajxPeasjD6x7TY8kCkQOgddJv99iC@^IQy)ntO z{hKzTUW*i~N22u zhi5c2+=PsEPP0Aq-!-md*A@1>h;0Vh+1a^JV%f_llhZ8Dp|@2wPY3fcH~hXILuh$t zAH?VS#lL+Ej2!zqK43hFc10#h*f`UsT%ta?`BO7PPoAC!nDhTR4HSG_knXTzm&@a7`Y{C*n9 z^u!k%Ht|cXI;|5^<^i*l%t3Heb>`C_jf5{>i&u7^4{Cii2eB9G2YbI25qf+9Tj_RV zp;Yv4lTCj(Y<|4{(>9X1hJ5M*Z@OI$PX=6JHgZl*xOTCC4Pj)RVRySG6hTXvN#FW)ae zpdzl(Ha7rSSjdD1mj{p%CF&vb-xEcaFfz!RteGcur=8P%(ho-6whn=nSqsD!z^YJ}!*0^+x| zLrV!}7hr#E8O~qyiyA))?ci>qPI|%S{k%dmxO`VzQI_&ccvfV(2B?~+b_@fCO@22k z^g#|&Z7yh~^?U((XAip`n{tPo&#eq-u@V1+jKV!2y7r}>7q*&qnjZ8n8s`_+3Xw&x zgwN=dp`-VgCezF9T!DUJ@yk^$cNi?BJdn{p<}BMnok8Ps>mswNxqes%EESYhW1Y7x zls8V5RaZ+E!)R}+#IWQxsgV+s%-S(G@5`h@nTP4!TXTE^$Y>|uXj<#@py@~&b<%03 zllhu9m!Gh7uQ(>kq|rRyQMjGK7y8crQaDVFO}E9X*9u0k*Vd--xkq8s z$F$GN3*HROO}~A0{DH^7hs768!cPSXuY;)ke%&1Z-cUvC@^Fo02pvjJ)dxKYCO?|t z?LIH~PzP5}Tq!-zu?f^l#}T)BIVrSLcGC$@=N9uEaR{MqLQm58Hw#YkXbZ{gyY>~Q zzVP*toT56`6*Rx(e?K??py6JvPO756S^nexyw7b0eP_nHlDBQ5&A8h!90O`RDK}JE z^hv>>kF!5MEcOY6+903qiQdUoI`LU#Xrro0-6;zc3b%3Z9BVD9U5|~sI@u7EY0BF+ zU^eHIcjJ*)&U~kZIJq^l=G@Jyszc4fDg&_I=mdvzYt|_CO*UQoch}#nUv2%j zQqA<0G)+dUGYTQ6yct*0(>JCb=2&nb3~4qz;p%=*jgw(N+6*S)M~&vCW+HTVobWe7}JJAtEdlAuI?&Ev*1W zNV1*Xx3TF$d^$1P!@X47aK)p-=#Mt*?pGDP<~%5KEaTzWwqBY2t%(sio>l>al(6cQ zZo0L*yGJ^mCp3RMGwApKfb}TX}-e;c1t<3jev)C#duH z%@avx`xBA04>ZMZ+n?>Usi7$Mp(U!yy=%aNJj7Dt{62;n*)s0QWU=fD_t6Gi? z$LgIZN~0z^+H*vYXdE#9FRIt9Q_{v%VcpwEz4ANpy6G62@po_8&pg9j10-*Y>+##O z=F)4LK3*B4qe%hfaRkEH{lc=d14klmQ@#lLCOm%-_Pu#EX>|X!HFyR7jv?_H)C?{a z-4)dB?t;pBfFLVs@NzY$em4_}`oE?Wt^AgH2){;l@`+2=3y>k+K^!hfu?0LPd3Sv>C*e)Q8eeQKA5pL&=sSrKV^J$+|5R{>;jlF_dzUSV8%f zDhD&!t%C9O>5UdcR?`ZKsXwuaI^OP`V_5VM)b_~?g#6HXv_~d*|6##72g+wvh~lGM z&CCF=iN+2Z>fEF5&!XVXv-_&fz*Q87z@lGH{7F}LsEBgy?E1tx>_B%BkoTlhg?rc&?Qef$cVH{=8oiF zXbIaUU$+1AulqVUFwp~do5L4y(cCC`j49?+eXqcAY6R=8lm{U6@DnZ+VJ9 z0tf`h&c!lLojasKAM8D~VGD-TQo@4=W?7P_k{}^p#eUK%HK%CJ!Jm1TLyT;=zdU_7 zwh^21u-lB$WP%ZHhr{8{UO|{XKzsag_`*?|+DV+T1-c8Dn#6*t3g({C>Roxi5o%1P z7(S-BmIl~R)FZ~Kn)d@q(BAVKL9j)1bZ52(Z7{XC;e=|(A=;VG?W z{YyK6bb(VN(s215GS?51LpL{hP%*CMpO^Dp`rN~ z$N%5)Tj~~D>o9*ifgfTr#4_03&XJ);25sfYc;QN!LAl-!&I0RInohhMCK;v0t_=>B z(xo5lZB0XCD5&Tw>TX%2Xk2)3iOR^?WDf?$=HMc8kOGEIFb-A|B#hX-B140@dyr+| zm6MAh>4Xvw4T>IeZ;F|6v}J%o7ovYt<2XV#@|P8-Zd{iEQg)zK7cV_I2&;D7OPn?( ze4tMpJnJi3z5AoaNk{;Qg{Y=Y z#i(1qcP@U(kVNKu^LyBiHz5k$nJ0eGQ7W zl?>Z?)flzZxZ$2nym)uAjYs zy%nrn>pOpoMHHL8-lVFS-TfP%^PF>@ z>-+xmdgi(|d$IOjdB?irv%e@QNMfK7qQSwzVMt58SAl~=cZP#Q_I~~hR?|NwSPTdE zLc~f!LP=Uef?UZF_{qxF91c$EOQI%K;+0>f8vl3VkLc3C$0$$~Xmbw6tD%88Xq)?U{5`v`EA2UnL$5Uk#@}JvwcQSd655 zZDGP$)ACU&vy@kq16YVQ1DoE$Yd%|I!!@rq>3+@^wc$b^o1d|-aIJPK$!X+CFY{Y}3#>15Sj_SW_-ZzQfl%gb2Pi8_(p-7G-8i`r0Xs~2P`qK&< zB1-h~r;5+VTP*$*zezc=nRR>iuxf9Xnw(eUeFPhh1y7kf*UQwbn(XUcXc~!34pL># zBWysBBTbleHQG;~&htLH&s-FbEV9o8Lw% z<%shQ?O|5iyFr{xm3bgsG4LBg^@nWocQ_{MpGnS~Ry$vDn?}@V#Y%9SNSAT?qJK8M z=``|d64v-eff=qom%O=wHB11Bqc)OcI1UIbyT1!-U_>f$&A)d4LXD+l38>qhH49>KmC_`tp?Zdc_?hA-c@DFk|J^SGcixuU zj@_>u_R-lM-XK~*YG)kMmle3+=O9|t@NSV0Z{WdMzA=;pJ0hD1pup6MMv+5|>1_6j zAR;)FMdVxK)wZ!(Ml@qXdcd-Cp(qikvUH&r4;fv^- z*xpp(@4y-R(a}e35wlDbNL40t^@lmJG7N!`^xh~F4F9O~AB5Ge``=z+RaVf}OmnR> zYv3zlPQASES{{o}{KURo+*3Te6VX!XFCu>%`K+uzXU9bBlLmY`svDAUI`cYzRGxqU zUo#vz)NnnslILBG58}Ah)5!1>BHR&fP*9L$n^QI|+}shS;ZwoUcML>3k^#8yHmfo} zLmV-a4W1t}Wd<`xFpc0;dz{%+ zhu}?(n3&LHyV=>^aT76i4^%Uh;oF3c-Z0FBTo{u%P%3ooG$QJCP`D$EbQk`rJ)ypS z=1pJ_4O-Pa33C^Dj1;AQjkAxMfy7Ob5+nUhhK?cu*A*KRcjSj#aoTZ|6xA+v`Ip0E zeL0FxxE9#S*gQCUpJ~6O|Lpw}AE~75YInX&|O8z!0ugolG zz3f$9LJ5@`g9d}I%81gT@)8{*V;a2|T`wJa!WKiN>QbS%!cF$6B%VB;0AA97JKmQ8mBe%g zT6Me9mTZ+`4K)#KhI)T+f{wh9ypQNZmW-;4ntAD|+E$T9(M+jX6`LTu7?@d8H9+9N-aRrH=vS<{Y z0yepaCsU)XUJrlo$#Jkcvw~PzSVDE)GutpXXf$Y~%ovnomiq$a0R#u{53CmO7JBQN zo!LkjNg5O?M%dF4`FWg$cL;abU2eb;E;cTe+ikN%*;|FZvy9WFlg$-Z(wP-xMVYzn z;_YHjZSZzR7TBh2(?;b!0FXfK%%#mlxDMPY4e@!E#B%RbGxdBs1rTDdB= z&$4ygDp%N)#8hO>c5S++H_}Vql17*YA%2>MRxV?*en-xe#fPLdaS3Q`Nod0G4r;w% zd^JTS2nWW#@GGbIK#MYp{2WJx$`Gwr%Azw$ZitZ8tN|gLC13Qv<)vtn^LOM z5Dg3sp&8E^+daxX!aXl;H6p__dTw>@S=%oSFCfH_$cE$tB>~N5re?He*~_BVwALTK zxjtJ`ol?=Uow4d~f&4|hY$RwT*2JXzyS$+S_yXL#ZN%p97+j{pl>xbJd`MgwH9R@q1-tb`&ZhhlSkQH%*pH7Vl(v7LcA*#mfqGeO z^a@{cpKZDWFAh($@A7VJPj*hZE;g<;ZiG)cuGVf2j=g&7%s+8lu^HY9+(bNJ-L+eI z)O@N|cxD9O0iO>~5|A2z8bE|VhLnPA{%jiQ0;T!c=yTyW;?GghwO=~M1AcDSl+Hh7 zA7vpMiu6A+<3!#C~3Bq_JvtDMuETugBpz{&!Em4l>D*iH2ggZLkIJ-t zGl`*;vXZ0Drztp;B6&@~Yd73@cv7(@+q3-5NXU30_zV|=W>Z0sTN;34G10*(uA{PW zSjYOEP65w?JU!hYWogvhVb;;`_};zLqtzSuDDznR;^=GQ8=;h?lu~xDTJPF{+FK;1 zj%OXE`!V~&^G8lOj;@<8Hfc6yHt09TDxL;x1Zy;X$KV0n3m?p|qG$pGjj z2+z(7Eacz?0e)RBaeKW_2RU&mw6~b8nA0zxKAfIz#&BaT6|CH9<1(w#LorB9Ag}+E@L*b2fFII@-L(w&Tk(>%R(!95_(1o#tM=? zRc>}k5=ZX~T6@;5e!HwT@1^f0ASM%3b~gEyw{5muJfs?}OH;onl0S99OlW_x&vjWJG5faCZAq%pVQ=#~O&{bA^0eDp@^vXZ9@%PkI(m7SxTM)``1s>k zY?`dWZ_1^~g~aRian*zJVs3MEQ?#LAzu#%TSBL8E%00J-8qm~kVjAuWz@H~cX&UHK5($ZxwqoNS);*mx(nxi zjn8~CLypbVHh+Fk%Ovu4Ae;!U{`g6#0P7LDh-9?v>V6-1YrO{lxc~wC2!8CHY3SaV zw!CXa0zRc6itU%1)Qn`zNBP)HKEKa*TliAy`aebw+TjeL-g;gx9qBNSBHUa{`jfmo z90RQU91aPd5Dpnuf`?tg@I?P9e}t!lL;R~A0S+$A3J&S-cNAdv-@h2x^}Ef#?uc=r za44|4(bFu_Fr!`?~!zxhirL>*k z;P9z`U+~f@RL8LX=d9GUoVDcT_)UQT7GpD@i8+fq!2WkXaDwjqup+?R*_hlNU~A{Z z?=D37*Bkt>^6zR^O7g#6akden)RI>smjF7NlXJt^iH%YijhviZ(9!G@zsmcMe>aEy zCq!xK>}=1^%IfCk#^T1o0(7)seaFYg$I8ae%FfOVdxP1@!_L{*o!QRm?Y}ztcR%mV zolG6A?47NEcI3bNH8ugdI15oy{vPN*zkkis+}-NGBiT9qy)4)QS${uaeaFJa`k%gG zO$C3~@+(=no7-x?w*tWS3^s=FJ5DxE!M_^(e;)mJ$bU4|`fpQqJ`VPOHvPw=|JzjE z$=p!_2!IXhEc{=B{oVMV5C3i`$ohNj|JaLvZS-HYu$>l06J-4l)r8UBiHTyu2uW=9 zUQrEphq2l3A3_`K58c1+urgx8Hzy@W7+Z(8D`*eT!MUq%C7!?8A9}bBe4*t0)+#eThS$+kGf`*5y#r~Jp ze-A1H7hord{Xfp&ce6R^ALWS9!o&Atn~VfIQtx^7{jfj0b8xWYf002-ngAWm956%8 zX5c$hsvgpwm@?4OjM{+q|B9W_s1p9y%75@7Uu#PB1wC<_2L9n@{OUunBihdJS!FA4 zK34>jrtvs#6<$&g6zp*i5w$(XJ+U73J^jJMKE9~QmDUtW>D{h5BaFy~K-AZ+la zNa>qlV8LV4NlXrDH`TZ3HzTY{?24Ui0QYP8xTkkw-MG%7Qm3FS&xrnpd zv+jwYlC8_&lBTGVuUq0`8tBiAL^VZ1NGM}q@CH!LXN&lUyenFRV28IY>_Qv(>|j2X zNyd|j?fzy!jmatL+%mNS8dacsMOr8ev3!NF!yLo37|q&dA0qx7A+EQ z%f#h2Q>4trRhn;|zDcB^{54%h+so5^EP8q`uVh)e+<9{sG29m?ZHlrH3qgS*h6hF@ zANf-5<VCf5#lg$!OUo2Q$9rV9RX zWaF!_!%%Fngog<2WnEINN6`rO&qX!EIM1mvsx28N-b_*g3CLG_C-t7 zl(Tg!MX#nmqtux|M4WdgNWgDyV#2pD3bw*S$B6J8M1)>ZK69pdgLs_>9!@DKQ zO@w^t<2E0CWtbs*>Flp?64;0t+!XFMc=cbjD{i1$h;;n1((y%g(=4Tt|FVDiJeyM z=6W)m^$*!%pD27Won(sy%2lU=Q0i=E4fq|`Uz6~ACpc~liG`pOyo|kFYX87tgz8}82xX4eLq@^577e(dx)5B1UHYP_DA{D#D;%HZODdNl{Xpx4LGx)( zl##`}mro%sX)QW2glA8i@%yqz+5*%24CanX$+!7K1RV!z&!yn}5Ky9*OLaaIw(61N zF>4ug_c9{lp`FRv7pm<?mILh$f-~rsrP;NvpaH0>6DLn*4v+nj2 zo2UE^?JCp`3l)U>GKFGJPo63SrGM){fM7`2GS!Vpy{fY_XCxs>7i=v2F&^p1sl_M z@7_&a291=Y%-mnGS&XnTsMoyLNvprPEgAzjIoe|X8NW-thuJjfY&uy2{-sSbDNm6) zl%ZV#E0WQZ87HbckBOyf6{=ngmkNmJHnhTn%7{=E40nMrr!;kDxeJDkx1%pe^)PNI zE>^JXf?H@^Jij=aoxHU{fI76?&8VF>)amIULQ@c1tQLA%RX-|DG7K(PipZC`>MNnp zREvW0AGP@7W|%Cd*&Q4-)NAVtn0E^EH<*SwmI~JoXOrY@`IyI`=k?;}t{Vsot6;rP z80V{^XOmU+oD9D;K%t9H!-XL8f^!o8488PphP+@4(O|Ds!3)xY=)x!*{RnlhO|tzvQ{>@r(@^`o2YVS4?F~6}-8jEEWaTZ5Us^ zmMRmW*XFL~uDel0gktcH>FcHe9N!QTmD*YK8Qp%j0EootvQ*yzms&mud0iFed_bSf z3dsC+F5MhE2VQts$Pexk5|Zz_cg)PcU>=@akRGN+fEFuv@&B0y6ZL$aM>j_D(n0r1 z*sLF?%q#5+*S85YXitD$xjd>YlJocr60R}mr+pf{#f|5jSiWg9$W(t7o#<lPkm{KH}78$WAU>om6fX#mPTac^L=-RX*J9~sZC1x@+Nd{|FqUC&-% zU5_+Oc{+G!iqhZ4?M^Sk4DpOoFbvNVq=28gjm$Zh>nID|cx?5J_Jw)`V192c{+ic* zq(N_1GZg<#tG+dz)^03OSDEVLbms5}4$aK0)X}YX!8z3L+r1$k3s+b2ajxb9^^J;n z;bt7RihG*OhevV4TiY}!$C-?TIVEYp7185VA%dNr0~ED%#`M{hwFKtL$u-aIMdsVJ zALjgh)5H1VE*^H8o%d~e>H0K$Q6hGN5&(BHtjvh4R=+S+P5})Tl8?;Ruhi8Sx1LUT z9;%<>I@G^Ao(>9U2R8F) zi4&lG9}{IhX?6gG$QZ-s{dSVhoL4&m>LGW0zQlc|ES$Bh!+I`(+{7)mbIcA0N~OV` zWktQnVdGaP4)MJqf}{+|Xt|n=yDi*4U8c@g#rD>QwY(w*qmxagZdQ(4$(Gd7Z&Q{N zOD9<&m(hfUDpu_WY2Dk8U9@#Eh==U1hN};W4*FD@F*8&m&v1?^jVVYff{{FwEn~Dl zXLiAaNMXnMV8LY<0>n1oGSqs_Z$^%cBa0okRMstemE9$2 zb+%bfmE6&hvXfGiU#yT0qLa11H@!dIU_77hb5Oge*X$b|jpjb7(X2Gct!dFK#Xl;B zYnnM?6!be-xTv!@@(qvjEnDymQ+z&<@>Wjw=elD@XMWwuX#4g`*EQ~ID(|I>wP-q3 zqpXF^(#jS&#SB4ZNZEC#)6`>-1_Rs!B-N$P?}>unW0zAJ?^M&!<4Y>1-Ot&z-Y42j z%z_~?F>4Wx3O#whOg`DBCd!+;;pKdGbD1}{_6dpxI&CJ2){-v=r@MpacJZL;+r6jj_{;ry#onmQEXok{@!HX(eDHojNW<31UBKm`fG9w>U6HX7 zYwPJIxhLu-P9a0^Lj*o+?&c9!_5%v$c!z`}T>=PNWUN0ua!-aovGTT;4!E><-m^Dd zG!eo2`ZjHW@ws!M2IijFpE<>z=rASmFud>K3Ct9>UH*8*jccP64bx<;Yo*oaN1^g+ zHis_;ey*_F&`M%B`!)T7lkS^Ud9DlLL3OKydc{&P?e}&pC(DE?H+9adxqFhK_)0Ph z=WWUsUC*>y;$bFYR|iYyn_QMRM{iH^HLK6v%!_O9ILLk1`M5xKw-S-S!$~fdrQ5(` zaX^okMLJP~V19Zw0XA)%LV)6|CS}zHtD$hQ0vioG`zQT`DsJhoYy#|x^#ncpDdH~B zw_d0~mOWO%XmoyR&B18mvTt?f^eYI4VxL3w%BdTp1eaqwj?;*V?+J$^&a6 z`r}cfOzTjx$LTkpAG92O4#^FaO<399H`mf-{NtigTaB2k3}NfHHh>LlL~C}8hz59VLS#>zCBXm!{ixsrIuo* zI0!(z)p_CaRBuiMn6F8X%H+*QnEep`Du-vejKaKhn!BEaAx4C(^;jG^?&02Lnoy@@ z-C`h>3q5he{<2@yuhjoWHjzQ4Fp8{5o!@!i?zzbz7(_{_*1kUSWlgfgWiMBi&l__JcQ$p>D+NA|EEe);AiPdPJ*aQCQ~R)fBS zJ~;fzy%8E1`VI8iXE2#AnT5aOU4MYyBeUz)Gp;zGLI)Fqf{q-A@&;~qCM~8~=;M2f z?7`sJ0YB_*1!`iAKMadF6G$m%HJjvHgWZf^zT969i6=5R`U&`sBtsyR!QnNl;RVAN z0858AOj2bx_WK#5O03%^tcpt>#H*Dm?ukAXWiX%pZ7tJ0mj`Yd9rLMq=`?9_{dlqrIP9s!U*DZ~lR~Im6DfJ$RNJk&o`~I~MxRtw zgEU(&3R0^xXuYHKICD*H(~#n##S70DuSJ5~ar=H8o(!BMv+rKxVO-Y;*sH`RB}e_} zR;(Fbk}#ZosrrIS?vY(nF3D;q$*IJ#K}|Gi7owx3#lRB1Rb@*aHc95Fb&HFMElaM4 z?rZ~p&XYMPPu8NYS5MtrxHUw=z{CvikW%OC0@Tt0s4i@C1De5=w3-7+G5Op<4iz+q>m6|ch<%_q*PYXTX~WiQU~ z@7*hV6RXVQa0w`nL^Pt~{5*1TpPUgyVjIH|;SIj3!32-`}>UL_^JI*RT9KXvX z^&4v6J4@wP(8T%y6A8`t1QB16PP!HKW(W#zI54Qf92@m|Pmiyg zn?@k62X)5X^XPvEJ?v1=bp)i5t%@}s9Fj4q@XF%T>S9j%Dnpf6DzqLPK*9{41-EMz zi!5V1tzC+-TkRe`TF+&%v_gwA(A;ISbPHJ9U(0!%try%~ zZZS*QO+HtoDF!ol*cN|Hr&lG1uKRn9E?Zll+FOyoQl zx-+>psyIy#@YSmdp0Te#a|P(yyPRuIH>loW!3^@mF3&$R$o-cP=+T_r_KC^VCTnpy z3gpLXo2VcYjAK55U4db|d780^*2qh%CB+&FQH0w`hrK6HD)jCoVP(`*0V|e7H%6^S>1pk_i`=bRJD4A%VNyg-7GFz;ZQDt8C4^rLTrphDTHz9H%$QJwYZKcWUM`r?kCh9td=1*HY59&#LHqH= z2HK^{hAz6D-%?JXwXTh78nC5pra-MOIsT=Y&hge8F4v9VXMEKisgKr>vAv0j69ub8 zJJe^gqK%SQBWl_Awf(O0=x<;`Q}Xd@`=VG{OPlcX=SF#`*JZ8>wd`2ogC`*ZGz1Ml ziz4%i$98ScYPo24I_R0>>lRDn-AOlc{q~m%KAvtI#9Lv}q~q)K9F6=g6oi6Bna28S zjMB(p*(AD;4G@hGwe{n9C9RUEzlc@9;hRa?xOT() zv%%2FG^-`IC)LEE{0Wdox*mhiZ1Dqr;xB-7mQG2eO?5Lw?VNMIJsvLk^}?4R-hfC&U>&z=o{+gdA`kgKc^U+BklXRqRYs&(51 zKNoQ3y{?dYGR!0m$6)+JlXQn178|;nciM6}3JhMc<=Vm9UJ|lnPrn0@wDQ@YArsWJ zJw*|3a|=Ji(S!P&hN3Zx{9>5U`NdH!dbOPV)`}k`iq-Mkymy=^C|E-m=Ds5==(t#% zZLBxoQ_UQntqqK=HHy~-8{(#Yg~c(b!MG?%`3M(s6_gK9@Z@=Kz~K2C&8?A6z-tt+ zsmYpJ{<@*tV_McuAYWr=nR1pc{!!{)6H_22X+gt`-Jj3zEjxSGYE5`$U_xUFwX#IJE_0X5GG*gdV>!^?aQSI z5S(pcw}Xlj6_zt*c^z}d174~8bHWYBH~7;FhCc%AP|0mDcXYA^a5c9_Y<04A`JL}g zI(t*IbNltAS;ih@cG%RRIyN6id&BGMzmlP-bm*t8{|w;|S%J7=n;z)PhU23g2av&s1LOGMKiXx%yZuwJX%@5u$*B(D1Bry?XG+$dW0r zIY$@R!COUQuYpAUm)Fc!=}^(DzYVe1Nt2!Hnfw|+7yLO>>O!_yzOLDTc^soTR z4R=2L{MLtvSlmi6R<15F%bkM^j${Pd_}EM|Qb^C~(JDtCum69e<~ zEXOgVHf4YC^x$bMFw#N_eV+z@`;g5FU0ML6Y4tcl4@1C>+YiscpkvPl4_t3fWl1sw zuOS5pTAJ0cGAH41_hjt20}8YPFSe<_!7?<1N|~rI-Oyh8fI}3 zZ!dX&WBl~w`1LdxsmOZzL!)(lWio9&Q9GYlh~0dJgS`%nQDOX3EBnC?_5G};Fzd#a z%t|5ahl!$Y6b!M0_D1omsl?vxNVKM6pW)R|7%d*Gbn5p4jrp`cCLJtQapH~OnQ19B z$0c^P80h&3a0MJTW09(krUT7v5!->50~dDsLXfn$pf8hY{A7+n0FsewU)KkkDf)8G*`%4-(2P zxT3v7S_d2BpBMm4bbip-lx3b|YX|kuxOA;znELo{}-m&z6*w`?)RIKQ$)v>hv+%I?#ivP*(UIDSfR$q5m!8UESiP9}o zQCM}b4lpUM-ZnCFfJwp~H}Z7Gnol)W4tRQepyPkIdh2H(h-1p3Fr<}*ea+q%GOMGFmQ7h7ZWVw^W1`r^gr5pc)`p>dYzoHPHJL~f9M(5^i z!@}qEAMdPWcLhcRGQJ{~fU_tU8I^jAHHi=}#jwe3>M#}J zZTvzf%_9cf>R9O#8rci8a`CHfqO0O79)ZMoH4&Bpc*kmzrfqU)%Uxg9;zBEd)yRUX z+FppDUVYOyYgs`8Ait~_ad5I|qZq*Rre#8|+8C}YOrDTd^hIOih z=S8o+>~R{;zbv`&Cbho%?IyHkWc7_e)%$y%!2aB@l@+L5g9p2u5 z!yMi(&8w?&<-wfS+}!<@gaBPw6Yq)oN|AEtXzuPI*WdqY`O-TP;U@2eY+|Fiw(MDX z@fbkfFW*OqMs~WX>vs|~b3(dA4vX|Oza&S$e7AI}#M}wf#e%%Jrqy(dG*#HN!CHku z{qFWQHTbL3>Di-Xy60F|7?#ykpK$_*HNw?G>S}dbTbCG`?Uc ztJUjD6;wg8bF(#2+CWKZH(4@mQ!EuL9$GTHdDrN5C7gPCA?LYvVLesT?X`RO69F2A zNs?W?R;aX*%s4JdvQT1v^!}sDtewyFMFJ8S1Xz|XRLsogcUj7bu|1)^8T!tZ++YXk zNbG|+`9B~>zyiuZzPY^!}@3E&&*^vq()IXl*QGu zkhwuT`HPH<(&Mrvd71?S8CZx|qRG%V)`XAP{b<4*Jg9DH&hTSe(r|k+QjpzD2~_^j z`w|g4ab?v`Tqqw_SprxA#h)vB6S(3DLd-7}#->gpu5gEBcfS6un5Ur|Kfl1@ z%2~R^o5^Sg>{b+BvM|FrM(Fykb=QHyl#^96X}Ldog%OmqeK3HmhUa6|rD88oeFJlF z%Xcd4GH3c#zUeLqI;^Udq`^Wty6Q!3E{x(K4YIFTWh_S1HK%Lx$FU%w0$5;GyBdQn9F$|_R3}(}rk~;9Re$HY)3~E6@2wWzFW52PI@m1`N_8w0 zqdMCRTMWdf)g=3cipwPDc~6(bgcVwC7y+8{SYW9bk_W1!B%pwz2!Ic`-G<~VOVB6& z+h*$^-kqUARZ_ga`HTiP$ zR>Z9Dt;MW6p9ZOnPgx0w$%{{+#dh9sw>V+ZUJlpS^)-COPOWhz2u*4RNem0@{g2#h z48K%JnvJ65IBWF1`zBQEJ$wBUi~r7~`X4$z_c}ez4aIH_PAyFy{DA%_DA6>9tSU!ZGmlexi0GCm{t!vIzJ~YISUXi|H`!2X zS_O0TPLGe3_GEbPe}+IpjhcrNel)0gCt>^76*61M_z4y%o@GuHv($@?(m?@ zmG;Ye`?|#^hX<8&>l9)~F8TOq&1Vd+lGt8XNV?eV%sEyJwfRT4I=Hx|_yv>}U9E)A z)?n4JE>Pi3TzHmArO9$<=9c$X(91S4)8aX=mq4gbpAE`K;DOECZeY4!k<0gczp2Qh zWjtXTr0KNvdvGkHu6Mn=wq{S+jW_d{(09cmx+L0KrjN3q@2U^+45yBcfpYy9n#>73 zelnY=Qe)!QrA|aVzjG$HKG0|U?#FB}2T&wK2Il2q5Y4=8nkuL)^pOy7J9t;z_s~n` zH=$#o892+HxU%J2Jj85lp2A|#B8MnURD!TfB2cG#ww`$-!t^^&Ibnf#8>hAn(*rvq z%(~LFis>4l`l>p$I|XZF`uN80VR;r$TlAmgsdc?(vi~J2g`9loMJ~PalbnBLxc0M|) zAR%%Aa#TMn$8e@?@YUH8u+Gwju%Z$#w~@&!nyk`M)mBnal|U=?9UTB*q6;ncgUg|; z57J*?(EHNxQI%nV;+>9MS}F=hR0fEb=g>op4<_pAyWlKU2yJl=@dH(84N_|8Nd09V zp@*4Toiv_JFkF|pg<$lPqpNB{m#bMQ9@=xYPhEO z0O$y*QA^j2W&_>00+-t)QrOKY6-N^uYC6*eV%N8}N=ppVKq(WDXi}jZ$><#Qe4x#2 z&QtXW$(DaO(bYAgx<5L{6F8-*moq7^rB8Lux~j>jDj^&f}Xu0+PaO5~BL1fhTh z?t1y+7wO52-!hv#lQ-=@IHGz+TN%clnq$>jWfD7>YIArfYi$OLJ*^R}m3|R0$s8}7 zLf1lblC@D8C&WdX(1i;)Jjefd_h;Xvsea@3kl4D?HMX)PDOe7bfw&k{HGMfKc&KHY@tjK<;o zk}idoTufj`IbERRBO4+D6E-2C_RHXbmyyoY1Hy^EPPZsyKa)## ze1DAUdx>I^_3kdQ5XzAS^eUR{oNq{hz0ZWru`btSpaBWgY{nmU&*#CWpwz!{fc#(B zK&WA|&?>cbB4fK`{-2ob9Dk$A!j5S9pZ^(ztFi4j^v@!bS8k8x!8AGd_T%CGRNH%P zD9Go+l@o@~Ec0r%#71a%)tA~I(aBExq9GTdl{q@_puwDeh*?*}VKw1^KY+QZRWw7e ziJpzkIME#x2LFfnLn9}65Snu)7*{Ol(zc$j#@7D&EU{Q?lL-vGTk3iZ_TGEh{j+Ch ziJLGOhP?D{VOPp#Yez~GcR56&V&TX&%Lt~>QQLA&>DqfGu)4A$hK#;R3p@&@jpOac z%!>a*E|Nus(MmV!yHJU9p{9%7L9BaZsq?aUqFp3nvI5P&(U_i*|Az_+)f|5#FblUC z`BDFv3NSqCMvSkE5iLoJM;DFc)x2#sXVzlG4!B%0+LZqO&@}w3XIuqDYz=!%mt2>I zbs&S!IAn2+;ApRvzHSQ+A*pk5q8yi2flu^k4B74FZzvK4#k^8FL?4s)68Dc}T!H*o zQh*&FOGD9A`ch(3B$;8f>FPFq7+AR&qJ=z5qW$A<9M#wdwJinFRd$ZwM_v_c(MY;K z632w}kFKtuz#xuzwXMrb1$RnmegOWk_@8C6v86PA01%;+PP+<7fHue2sQ1B>7bwcF za0!x`v{caD9krO6Ger{nam3XfH?vJrYN_fQ53i)Jjzq$<@32hi!da=;NpRB|d?s4s zVeI>ax{iL54`--|ixu1?&#Si^n!mgF+^Knr!nH3w78_Jq$@+980T2K9>h5Nsuv!U%JJBlZ8g#{b`+EBtDJosG>0*}YK`|3mA4E&dW8wvr`D zILQA_)hA%s*3*|Jd$1m~~+1 zMFww6_CJ%=UKb{6(91E?-v6DuywJ(V07q~A5B_(u+A;pBK02P~1wp;`dH-j<0S7OD z=Dt7Y!#mOyL>FZWZFIIpG0gnBDCS#teA1bJCUAXoGv}}^uw1aVE-gcI!2XEe-P8U0 zQ+LnLlI)j6xDtxjPmOc0!&jcjM11AmwA|CXX&w97H1%}vIL*EgP^mNewgS#Ih<((V z9K|4d%#)6{7@MLur3WqvhC)5Ak12*>5hQNgIkRuce7v6z7o+krghUETDqF>ML3V}X zrZnT{JGk_kBgCA0X&!afFjU9m8NwqGtzyQ>WZMIZ)%Ms+&QC)G_X)dVKDU@thcfo_ zRmLRNkb-<`o52~t`9q5~YEs9G=e%)0(wnj9oM_tLH=jFzmYi3XWzQGS@LmiO3wVAf z6?7M!ER@gEYjP~Pi6;FpS(B+b(HSC(F*seU8m|LG9}5dFq4q$!Ba(Oac51ih#&JV8 z>fhZC^Qh8!Sr!=!SBU;lM~Wi?F8I=1g5;Z@egt%#-^8$54Q;QSPmZ>aUD)tgc3!{S zJ^byrd0mla!4M!yXIBvAX4mo}v4@3)lEz?v$n!jxmi*27ynAMEkQJl#!Z`_pZUd*! zIaOyOn#TtTVM9i zx92+wtnF&COTh6A1D_4^-H8o}F7`$Qcqe$9-n6o-$(qFThbxhZ`=j>ktSq@r`IJSw zv11|Yu`JAb8_0xN+esvA8?l6B6mc%!vcg-xr=QCbgq5b=Le+r%`P$4-zjxuOTsGoI zC(BAHCZ?uVr&Dk09J)T;dhYTL#M6QtRPifWwHkw$qaWXw!!U3_o)Qa(H)|=%%2<{Y z2|IPBcPyzK7SGHFt#A2$b%jM2$wQ*lzV{xCQ6PTRl)t=m%LK zQ2>xdq*cf$P%oVw>j(-fHVQyE-%Oj9W~$I@l6fonLf(}~i~Ipug?(wFoo5aKX`l9( z%D~UnPvYaNTEt_HLMq=J7R(0`ypF`ah zG5Xw50s~s?9!W*prAHFHP4T;#!0Y;rCQ@nhR&0l`Ee0@ROQ8g;_oR7C7RU>M-3qLy zODuV&^H0`pX`+u@1>2h4_N1muHPx?do_-!*RRG)1gzHz2P?kKJ+qeZf+$`98HoUag ziWLq(MWO-Tq1732quN869AEEB0c*dqyExsClR547HP!N@vfuZfhbNZaxU61<&W6uK zJtPPhO0};)tbA`089P~{Rp&X|gkf%c=0=WN(h}ltgwvLjo-qqa+8hxiJ)Dc2o}a7r z(o~yL0KB;^Uz-nYe~=J9V&%EHyX3W=D@p;|?PT72zo1nlEyyLvQQ@JA3u&W~c&1BIw2knvp zrn$e5auvpy@iQwH=6XP%Cn-ww_c%Hp!w)KR$|NnVtrL!4t1BXr?s*qO=}C|u(H(n> zw@L~jUp9U;B%MU9v4*XuFogy|Pdfq^X`dt|B~_onm~+h};4t2TZ;V-BRBU54gji&Z z`Juibb8iNa<$zl-QT8VOT4J;%G>DnZo5`T&tFYy497C&CtmEd3+`Sc^o34C?->4R~ zbdliOy~^_Qjn59}2m4kD0-BhxGy!)%3g`0B_s*5$LPPw=hEF76J%y8jPs7RwJZt{n zz5B0Sa|_ADt%#DaoPB(J)O6Fh0r?^5o7QeCI0%^Z_FHzakn{ud<-rk$#m-uVPmxx2 z4sq4UC#{ddwhLeYZN2UI*CpW6Pd38}!C&$83YoWQ+)wq9z8hG6%bt5KyZvPMsnH-i zq1$oTmm|fxvr*?S!j@{x`g0V1ycY0f_u&E3ggjh{Wk|0z!o$-NNLjbMInpulgVdQ* z=}jCTeA*5E(k<(&VHjTL-d+s$8k`|H?@rF$$;CXl{#n4s3D|XKP%H9pV1Rv9#*JV_ z0xb4mrf+0_tT1R*7!@%z2&u9dy-j^wsEKU5w`RK7nT}jPT7)4VUW;eX+zTbl7Hw8C z)^7!1k~P#b)NOL3kP286zD`k(@=~qD%%SV{G!?9WH)5R*cCjA!9}S)O4SY&r&wnxa3k_)qxr_u@ zvxFm@y$#_zvpVTKio&7WBcqWH)pG8j7=s_;;)&y|iA5^FTctKLuz zE;c!(FtM0EY5WA7o?URE_Vo7jjH8gb7FcA^mo7=9l?4;IzLe^Bua!lqR(?JwCAw5A z=u2F_)cYE!BL3;LDd-~e6!maHu+LE0&9Buja_pLuii32$^9vACEK1LCaQe5r4!pHwuTfgg>EXK7u4-Q$5H!Vo2$*C9OO5p=D_uAM#cw2DP`4{pR}VxJr}z<+-em2z>RMz6CAl(XpizFBb;U z=Oz>Q^wVBj#$SKJ94HHaZFyEFi~42otdhIm?ZjdBatXnt@NfW8l%US<`dh zQRCsOd7U(A5;8!_l%R0Eivw!FIev_-bhbAge$vv2CCoq`)BFL$b?OtI^SYi2GB`VB zJhaQ@b?Mz6M_8=y-@Iel(GwQF1fQ>A)6(=}$FNG8O|aA(bW{KS+SN(+g3P0qGQds| z=r<7m_WzOgmQi(W-L_z`g9Q)4-6245cL?t8L4&)yJ0!@)-66QU26rd8ySr@QEzWmu zz4}qr>Q%dc(#YJK#awI7Ii!z1`ig8wmDb7RbeyXqqCnXHs^dCKH?42^)O>e;%W82$ zo;re=d$sS2d+=&CX$O?fHMNXC6~AT(7!z<=Kq4Kihw4>c;##k@1&7$NML(`jC=m_H zrEtgZ1e(ET&Hq-Ho*LZFRX>NgVT6@WqJI$@^K7+898TwwuvWfq9oD~+-faLPN+|$* zqcFGJ&ho{XpGxedfX0{Ia54S_1IzcKFxKSDV(K$O_3cX$MP!HaPs{CR{D2Fd*@`mUu>6gE`JchLS3p9ci8>J|N zYRBPU7t=V~miWo&^wtz;^DNb@{m0pCJ@K8gfYf9dJ9@o!e}?#Yo({&1YE!S?JI^Ut z0HGgL=r%GrpWQ&P`A~H%HMSBMom6haE&dz-rA4X2g9v$C;wa^DWlf}#SU1)?yhBAQ zF1s_E*T)rn9mfVvazw;S#4F{^Pm(uPa=f^DTO3Rv-de^uYCH3!K$%4>KgRL&w9~!> z;h}y-uX1S{qD91d$uB*TT$JJOm9Qv%_27HG4f{ujqO!fOkKD@TVNmfk$|O^gy4P*< z+20(6_rJ9O?(@*wc$6{kGyLKkx%+H*bH|!{dj~gN`O- z8?9=)#DxDY;Pv3A?<(LeK+xA|OwoCCcixGm$|fvLr8ev+l~mDw`1pX1L)Z7UY{ftH09cchW)=;$Hh;%oGglT zmTBZ?zP-0>$)+|G{&Q=g?8>kBjq=gTd*es%-1@Jq#L<2I%UUpjmeTeZxE@qz`Ra2p z46?lO8My|-TPT}R~TxiQEMgLNHu6DubW;*<7 z(0{(U&UB1OCmf9Iy;ND0)AP`Bi)a34@X{E3FY?N8L&O;rb5&Uz7T&gRxq3&&Pg6{O zyA8?GAAjlf2&(UR`KLtR3WxoMCDL~wYN5{=E?>24>5|f@h3!o%JjkXXJMPY7`r(q! z|BUjyA=f9%X&>W4kK-`aYyGKT8>z%(tT`8`2LVDy6qmy@C!u3aF5(jopqH@B>iY0=#^c=jt0JZ`E)DF7nJq)ixhe7?c z{+Kk;-@e-N0`!l1n5VIiQ#$tET)qoh9bgtOW!hkVUbmIfbJz9r9ku_li8HSa^Bd=NuwF~rk3&Yau37$02N#OC%uPfB{CZ4}ud;H2 z)0CDS6LMz{gPv7&fJyAwKnFVLiT}p+JSyh!v}a5KI8Jt@pN;>S@(%_(DQ14ApbrJ7YC6O9c&@GYG3Xn*z7lijCVq2-sp&g<(zY}zpt^feWQ(eoSGCV)3V+O=CGKq-P zOf9XyDRiH#>4@d&t)^PM+~ToMVd+QhmG+nv+pIQHL-{_kXHDQIWzB+WcXz3J^2?F% z-g0+Gd{mA%h~PL&yG{q6@eh2Sl&!S{3Ie`)zy3Yl>WiETve!4SMM|P8P#XAC`6zv) zs3TMsV+xAP-!-@8*#RU)2tWpBG&etp6Wpk;$iBv1$~bLx!tZ7NW! zb?Q6KHg%Alwq+Y3@YHp_5m#TDb_D)wFXd>9z4)vfQtNF_5s<@8SyxscxAkb9C=I6N z1rAM;f6}4aQT?~M)PKy?mn;2czLLy{v{_Z*MVbJXagFasDv{ntnR~hV$>xhf-(HdM zAy9?;bh??Z@v&|ilw+Xd?}r3)!n9`fvUYlx!86+|E#Knxh&xxT2pZZ7yFF|nZ8h=TU0oGAVBX!?F*O<@j-2N3 z?LAvQNrPrL9Z&r&Y_9c{yxO}$t6eUjQ*o(AsjuaFpuPFZ8P8&E^ad;S(`aMn;fZ>REy&Akd77#fR@rJ|G>~$c86Vr?Fk3d zVrw%3y`~GQR3=Mg*$n3S9dhJTpJx28cG%X-9WxgxanO%XNZ2y1uBR-#^4N@wm`{jU z48^9WyZ1fqk9?Pim~@kPY^AZhSQ2xh&3vXicH47yt1*x?IJPb)lXR9Y4r1TGz6!M<+kU&QB95j-Zz zt$8wD>bn7HK}u&sT(qW#0IScI%557%H-?Et@>v}}8g?R{`mv46gwmGf>>>*Z>&SegDzE9)}mdvsPoiEj|tBllJ z-I9Rz?nVXDn6fI{-~Jp6^@aFOYZ6mzpQ6Ir7f8KbPk@RP$wEu-nfiaO+aY^%*i0*V z_uIZ&Qq|z0!zE$t0?R#Qogh8u`eUgHbXWG6-UsIDZR(s3ky%>I zVfrIkJNji)4dvW%g93ZcRzBKlXPbMV-9A(UPx$XKIZ_fzv3sdhLVzX!REHMzh za;mR?Hg?ATx!!KA*<*qKKexvhl|=hFbH9DnU9OVdtGBL0&O>(c(}o#42Rm0hB-`f` ze}MrYM^XE4i!%=r{!Q@HGf8JlS$ik@alp)~j76KK5fx7v0o9{ii`i6w)6NA`OaHp~ z$RhTWyRXM-z52)grTbOf1h(}bmg}n&E?(1553^4J(s22WKnfi}JejdJ`fmuSDcC4@ ze^{HOkh3fzoSPmFXpeEw+FR~pWAg1w zRyXaVX)|lZYfTg&+= zxQZ4&-!++d!TUg1lxBx}=v$%E21|ma#=TP9^{M^9C&lQa%FEDkZS%=}eFscdc&B|O zq6-^>ugH=7Ni1&>^L7lzy3AcM#u&dEl(;V)jy`F9;Emas{vRpj4K-Qt}o@Yw^QRyzRz zt@!3giEN5`ftIz!lBgW_(Xa2ZJ}&}ABCtP;zlLAR7veFx9nIocyeTe-E=$}>TagpL^%Z7%91|Ouew=wZlUCd7M^)OcH7(g)4}*TQ`t+zQ4V^oi z#96luE+5QY8v)cZfVuqI&%SlvV#4XiVS0lV^0=oSa>dwjx-lH?xG$53&()*Sr0~j4 z#h&suHm`?gHnLFh*y3SZ-tIEFw>|CiZsYEbDH=XPEW=6odG?PshfG}Vuv{j7w^??5gWhK zte%6hXcZc5GE`8Nj|B}YNAi_iCitNq)DyMvIuPA%4$#^aYti_6J13c)k2uTWo!yV; z>Ek{;>ubA~E?@mE1ba;L;P=lKe%4_FB8Zn~KBV>$@4f5Y{OoR#jtzw3Wpn(u(^wy) z06`DZqe7%CucZoW>G*-lsKAi(I*A*epg=IL!^JPgx#W{>qf3A(r*yljDaHST z$#?uKk?j_3u&IZA@b+JpB86(h%k$lx+XJ&#w(st?l*)%neI*`qw5-8dGdl~O6qEGv zY)1Nt(ua=2L^={udPKOs`qM?~uJIGU@^z*E1OGYiu+W&VKipQ|`55%JfYe}G3W`Da z6M5icRn=yThpHSXRo9q{AK$Mywk9{pj$Af{VTu)dJyhO0^@ZmfIwLyOLHj>a$kTbN zd>My_I`?Sf!5$55YWnS_?H;ds?G`0Dsf}7)l5dh0Z9@!z{TeCX#|UY-T2G6_V!U`x zm_A~8i}4aZ{fg|QUjAh9o(L0IOPxJiY0422NfKne$9z8j9rNWr_D*}UyqhpTzY0hk z7SqWBzMm}nl@bXlc=6ce4A#3F+b?xnnGE97eYltR;u6b!$mXf8R51b{;w2GXERk^4 zfj*DbE1@hf5f)Wa^^t5|QKP`FGtimB1n>0b$}UAi7ciZg(#}xO>2aehT!@B-b~I8S zg%j_?kilt=JCvsMC@K1QLCg#O?3;|5xD)zM;{(;M7gyQQ1Q9AABE^D0e($d&buXDI zzx!jO<`Oo2NnV_4?i-+V<~wAIt~97Mg>N{zt#I+$alYcKcrewW(d4gvsOlZi!C4F~yqxd` zc9H|6M|9&(LwxEpQ13Ck`pr~gF48|l&+pEuJzw^DooLArkLIuuT%+oc#YQowXJz#z zG=TJB|4{kPD^4Y?NnQX#oY3~^ltL>&a2T49KdKNGB~Jx(mOnq6xxRBPgi;a%8qL3V zi`VCe+tgo|IjNPDt{jOwG|Y9C_9rfh!^OpoJ78{tf{Y>0zIUrNT{n(09{!YkkX%=Y zq)ktD{+Cd|J^kcb$0Pa$FvW4{I|ks6DYa*tQ%b%%|V`IyH1ll)=tkdHXBqx0qK61^cmb0smp zDFq|!mZ4YeJ)i8v{AA(fFYoCRW}qSdiw@nQdo^iTM7%K#*`j*D|2)A4@UTZ5EkULB zX+#3xl%PyPett0NqO9XJ1e{sx4MrTjiyQzOUu7p`LB<_v#>U2e!o!kIVS!OJlTbrO z2`MI_Bw8DKL%&OW%gbvPZbbYC=<)ULyGT%~3ENgb;O~E-H`(@)+bCT@KX`TCHPq&n zsYZh14DzcdqUI9)F$E9D+5DkDEuKiwX}tvc>stDeT~4hW!}p(;dkE*NI}7YCCo5tz zrlUEEWFf`+zwNI=AzN&r-ggAv$!B&5h|o`6ZjOV!0dmd7z-1x{HBJ&m5Wcr@?HC9Z z>8KEwZ_E0`=Bff(Ux0wZY@@s@!nS?`!17~_-q0^jocP3E_8ja>FzLX#CMH>}jVhrc zSVJL(m@Vv@D+sJ0s+|PHD&*=u<67AD#*PF2Td4F4K|Xrp@0O?MoQMVyex4??BJ#JD-Otu5+ z7C^){Z5$d6wOS*ipg>7`FJs;a=R~xRRjoDk76<2)#>-HLhsCIy%L7iP(QV0RM@&Ms zbBEyLS8#AAKOu&8Lho{$fkz(`>_Px0O!un_4j2ObyyM-y&D7MC6HqM~2GLQO07@}4 zv4SjT#P1shxnfZqP6PPO+WY`_R0$%8sKy(6vEP7e_q#Negt;dE#s6*^U{MICWAg@P zE93S@alVN~ek$D97(JXZuS0;KdS_HfqTsh6L2zJA(oeoj6xfYJIXL`9MV#I8Z;~mA z{Mne)%l8FJL2P+52A(^C+dndiVP~kV3ypH!2y)T z;_r=?>IZx6`?c~`x{us?ye4l;dBU#49$^I}8@Q0>FGCy)3SD}FUF?w9whi|EYQ)6A z4{rE^T`unfwf%|2ewQHwAE2$MfIH!_w1R*C_~ZZ6$AXQgWz`gLf`S4Nx=^bn<)YEI zVP0)*%BjzC*H;k5`GAcOmX;%{`mqkt;(pA2uO4YT;Hq2dFv5s1m=DtesLL12l%Rj} zKQp_!LC9`vuIXnyAbrafZj8j2IQa+K>2nvX6n9`Q7aTc>-(?~+@>zi2I53(2@sOY^ zI%g9iaN;!HPu!cHk5J$4yJ^7*m0C^@--$9)LZsI>wW3ZLj}6d zi_-2>rysi=Lt#V*h`$$n;8&gawWR0qPVqbQxgyYX7H0&@Ik_q8LEKwBFi}&{eZA~`6G{0L;=_TENB4L zk@y!O1^g>troAGkSY_xe08!3Gga; z9i9(t+5l{Ezg~bplyNaR7^&e?qbyLd@lnWpZat{gp9}bG95Myc>+tL)l)Euv58#SP zzyIH@jjzTDYY*sJ=0@B&PaDrRLxz-u+c?+$_dIa}(?9$OeEU}ruq6NALs7s}ANsIq z11H$E3H|Suz}L^w{ylnXmc+k?Uw8NY?M*n+LoXM-v6ru6iUf|F)=$t?7+2*$&MW|! z;s-QZ=ncgW5X->f`a6!R9q^$aj}QvADg$^v|JtSRZJSL02Onn(|8Fw}m;5)_++Ps?D49I{_##6c&4p^m0O6Ir zqcecm?ra0B=03mALAxU`FRq14VcQICU^Sb65_z2KysxHn+obkBuvHz;wnNu=l7QJd z5-{G(H^Ts{`TUS`KmP7N|LaoFEgA1asCMfAZp&>>L<#ef(bMB&5Cdl2ZP{ovYGW%h z=1JpkxH8>F#Z#$t+LC8^!h{$*h<%gSuMNW@XkdzmW2q292iGV;ha}6Sa zQC-cs^EWsUVYR}6yqX9oZ2?B>@Hl*)_*Vk3cuL%W5a$yR+x(A*AXg<1H~4`iR{ZzW zw|Hm|w_f@5Uv?6LE6K_D1_!9}rcT{Litc#^tb>}ie`34_`_aL@?@Q`_z>PhEKb?I9 zRTgxPPfi3)CqqH(qXSOi|JO78KUxmJ6~C_#3WO^r;ED-+jyuSk2|9Z2e7UZTpTpmu zGCc5<0hU_E1srhft!Y(RlU(Ku7|{+~7DWPMnv(&e=}-+7v1)GytbZs!??HOxyU|~S z=sV-A1J+oCh|p=g4>++pCw_*m_*%f0$U#Bj-Zuoc1cQrUH4id9u6~C6o;mLnh0g&SvHCtA2^!3n-6;IWSQy}- z9s~ksL;d}1REQHkTLX5P!?V~Z?Ti+<*Z?nu?FU0jycIVIfmK7$BB$R@W$0! z(3$0`b^0y_y%7X3EU9?SE-_o&`Kel@vBp4l5U^>$mPd9GoFquX1U3?br&+ZTGBq$8 zKUf%D2TfppNqlvSOt9~fepg@sLvtChb|ZvZC&^Ink^Y8|P?C-suy!UW^e&?iz(d2o z$j+8#paZT@6Z)BF&ky*UJn!EEVrXL+z*X}A&E_gwa(9=0FvJ^I|IX-7@nps%IRisX zkL_CS5U{4kGwSOB z?V`kaT#1$A8TSJ3B%ElxXNvZx;gLivsofR14A1E`Z`gxIRRP5YD^2CU2x@_XPly`N z{?qS5cPERID&<<30AEoof+sO^o4zlj8v(T{UeIuRY^l>agS(;V6^g%T4^Wr`lvr(Q zu=qTDq#A8jb1REtieyqCk?sljTmrsDiu%3S4dMq~ieAL(+sBn^YGlji`a&#BR;T_){oeuSM{y8B26P*{|R-*HCU zE%2kS*;fAHXMG}EMm!7*5ya071?#?Vffn;#fvFsphF%=9Ko#EQe9e+sz7;KB zM1b}+%8|{G7ifT_b9YSgj^@D+9%tjQ>`$KYdCobW)`D@1oqzACw5WtbXFR;ih*cYc zJSyn53qQ3l+z^!NG%E${M*V17c6;8L=~ijeKzqv81y~XQ(kcrLPypAx-^fnaeZwf_ zu+8H;7A?r`z&51Kmznb&Lzhp*%B~(+0*r|hzD!(+fih?#^>k9 zgK&U#;8KOK3TNNC-HY@5(SHZ{P|j?J7PEzj-%C`vGt+#r8z{<`Fb=JG<#7Wt=4#g> zOt2WK&#&Xq>J(ZW+7L~)k zee<2LoDjZdhh17Wvsszd%&#^M#AlB07hB`RXgqeIdwN=Lb}e~!ToGS zfYs?ig1evU!!WtQ8R06=@8czb5p}SXuVdGe*OT*{7N9LvSl{_#<&!jIZP`FV7e&CK z8Js-=@(iI(@J$4$Y^v6c^5-`1dN-8Txa)3LJMcr2pU`6}#;J%xgH4LqEEgP!c~S>f zKG7;Q{W7>D5fPs}TK6f!Wh+$zpi1+R`BRJaR_9X*pnPDVVY8KQPJW6juLwr8LRTo$ zE}}#toSk@Jh(FeDuqx8?{^wmP>j-)jARf&C0&~SaFM!sLUq^@u3O=t40sm29rT}>z zgOJmqHbBxfKTAK{IXpDi_^f_H^=rkgR)3<(1a47HFcU+&{!xODam3LKTVUV?;QWb+ zt`q|F+dSq1XuYzer8alOjE#Na$B!bJMHp#TY-{+t&YIh<+De)} zx(|=p@)%^@UU2zoz{Zr-iw7vUOn(>L%umzXe6FwVYL0fg5^RnEL9CfkO-FM;b}mHq z^l??xVVjS_yY>d(<>d(px4VxQm%UiJQnkct@rRE6NB{i(G@~2Tc0a#kAjCQ49zgem zgm6U%Jeai#kb?43$Gpu@YOf}uHiE%2hViiKS$)tDa82)h6YxKMfw(hsLO!-2a!;zs zFL3OgLoWX)Y`u7)SZCJF`_5<1^&|l$D?K?Hz5O`n-pHfwxX2?b_6tLxr469g_@Jn; zff6PGLZ0@l%mH2;asK`fRxGJ3wAdd=xS%ztpkL1u9QKLrV{5B=4$ZAQYdfxgSO1o* zpQUA7jd`kVX~1t+DR>20JDRbr`Vt=-Hlv|Y-{iO-1D5;tdlEk!Ei4bt zO?d4_^}fGx*n&{4_i$ulKT6PwbOYteRE(i4$UaEJtyxOqNxj<*x)LpqHwf)wh>}23SKgm(IU9Gg~z8tm@ zZwn(n?Ea#QYs-+Mrts_iCpIR-Lt%n2Bj3g0aOlk|!jI1V+I*AK@mp6U-1nJ}OY~Mx zii!Bb!WBv>4(me=Sk_-x0%3Dhnj~n<;T<2UULD3E@fPto%*F1{){8JlK69pLxr(oq z-5lZvhnM@LEx2=;oesD22WR4%|FoWC~cq8Kiv<> z^xte=&?{O(diZWPzqTvhm$mQjITTEHF>y0j{`_}^NxFj07KIaMOrWv-7e%`qgKQWr z4;sRUw11)S<%BP*!cwyneJC1(`wF=x<_Ev3co`C6vs(iLm-D zSRX0mGo$z?v=^Ck@JzQ+2)Koh=f9wxA70B5MSyrK5OL^ejLYovJZ7tetm*j*6g}TM zPLbKv0%vQ)%yw+%>vA$aJD}E2sZj?!Wbn8iR(8JTjHawt$CpDug-$Iwr=_&*d6y|l;Rs(D(hTCu3cQ1hzgz#s{Wa7(-gs!Ap|-T z7?xs3S*;`lczio9kO12;#!;}Pg98C{BR!ro=z7j13>oEP!X$jiuR<@N9XubqFn}`7 znKivWoax8dg8?aDW6u;ufv&HI^?jWvZA;gGnD7QYdYEDHJKS)#zj}CFTK^Wt9QLK_ zB#U`6i7y)eWeFLHH9kF98ZpbQn(%nq$UL0e1NrBG3B!CT!G3y)YROSUEKn7my35a0 z$4mWscjUJ!lIVj@Gk>hHt48A>;~BsJjgNwsH{-Eg?w}J3i-dNF;}WKoh3N9U%*}d>%dtqi zr*jU#xCs0%mqF+L_V|a<=m+fxlXPN`>`Q~et-B#}DQF_XtIC9A^SpDbg zzJhr3^mz$1%9Ak!ttFQC9d(9}UO)%T0vkqWF-@Ijf$Vc!GWlOw;_E0JKGC%FZs(T} z`kftF112**%Fn1dlJGmW$xHnl{hXJ(x;LC0-@3Q~T0_Dw^tvd6OFYCofEb$e$L~~o zVTqohxDO{;?}hYy-|6IGqE6_G%18Xk$Os=@&WN^>3nHK7Xu+NSAk@(s;h6rPcsA{j z_;F}qB5)e9KuZ)(jscJbno8c!$O@D+>4{>W4_r%>*j>GtQt-SRk}8E=VR2hwF1(<&QyPc%&y;d18!@IP6++oH-yC#avOR zJNcZsx^GZNB%k+&6KH5SI1J)LYR^fYK+;L&afb;EsxlU)J(RSlq8xDU>ZyE2F}Out zaH1#>wj*hc12%v-*)M23vyG6l7Kf*5V)pOf9m$`XZ;$4)Ibd=&j!ALAtL-#-Jy6Z;8s20%F$bLKpkqQ{Q-ijf^9Qww~|e~u8HEO z+|h@H#I>@StXks}>HOXy77NzGeG!;BuilQ(K;k*VFzM*U zmq;NxJY=NY!%(ke;?YGE(&`qtEtolY)&bRCfZLC~R<#H$taWt~iCmY=x71D@Dl;=q z+1m~*cVyPeVnRRD>oLGDD70O5!)oq^5TTMx&F79e&oVBzIK$>JAYzSXkDi;xL628< zysE`Ca=Vy`fapN+Vtw2_ib9`O>kJB#Bg21@yOzQG{mEe3#&aNmaF@Xr5MFjeB;5y; zf~0Z}8VjT+2Le7m2{8HQQMs)FwC7Y-OA$`mnkGWL|9E^lcPMvFw3a!Zvb`^Y+^V8S zpCDu(a`zLq}>ykEyi z1G7&9jfCd2VL}N4Z&)>6i}>OEZ1ap?*P&`Sw|ay&k>-VUxYVyIhI8j>=Gdmk((YNB z^^|IMIGi4p!VVYFKciMb{ME!eE{*aMxI+a@U!%=>;S*A7BofA^iXQdn-aSILw?@-B zQYp}pnC4fy^PIf{Eo5-l^ToCLDt5&&e+G{)4Qtr|TvTR&bD+>qH>$eYutWSgRtko;l>U5EtO`q=# z!%izZCzi)`+eq#b|1i29jfyQxUiLCEa3;(}U}!;DW$n@!V;C#9ZtOFHEz?-tTV#`$ z=D@-1XgGHVQ&|P;cc-m8Y&|{j*UeX2GLwUrV2nav>p6?rM$m5s+3Vj*^)a%^H}!nT zh%?|nLDf;74;PAup>-WJdUCB3fXnD4wY$FaE)v5KwS2UZPvh4Pc|N_tac{S{zj%S@KuOFL7828ZttO--fz+=7>M}j`^W^X z%TnIjnok+Lw`n)pRdyw99UiAGZ4FmIK%-JUrQqp<$6*aRgv%}78vv$UiFy&-M$>%J zzi91oflp(blY>GpWQC6yA?AzowvRzo|8Q^)=<7_+=c)USp=_%}SvOj(<~&})lYJNM zDs3aloTQ{)rxE)2l@enY_dIiw8@F%$z~2^cO*cn(%57w~zLpoDpc#q~VHy15k8wU? ztM6VX2)#7>%}!wARgE^ydh`IVTz~GEM_Fzi(DfY`IrBi=$VOaa(+<1;FVZMl4#S}G z`PZT#{(z3Cqve>36EGBn>&}>f)M&wXXhRf;Ir*u^8SiJLSjT-@b)B@aPyvq{iH2a| zw0Z>G-2<65mClL3ZU_C*X@#fs9op2_fs+a;MVg%-jaY)ZHIU@SymK?u92v2DwUY3zt`-t6AcbjLQ9^EL_Y8Bew`Fqgq>pVB(K z;WE*n)iN7qt%wm~q*jMc6g2c*|ODzq= zIHj(}m%fft)m{rgrw^q~y3r5tKQaA$`p19}a{S2i;Gq37NN4jo$W_mqN|B*Vq)ek( z%@S{8AO`J%4RRwfh|hgkpx}+fdyi41)dt>@1Lxq7*ZOkOC6;mRyRcm zcYOl;90B#%+tkLnX719jrs8x4qg&NPWLBqo)L zSC;DW3fR-83nG-ca%4BWbLL3RUvaY+XuInN!(J2FYRG|JXd>t zhW2VvehX-RCfSMQJW_OtRb}@*h!cp`ZK1|o{ZY6wTn=7eCZ2ByWI})9M^1-?kFnpF zyyng}De?g-@D1jV8AEA+x+fk=Nj3J~3yZNtlkmyk#duk3UcFG9&20SL> z)b1%BtI3)VPAb;9PMD%Y^H{9p*PHfXy!7tU%}-Vk92eBffpStO6ccB@hDMw(Rgt`? zpt=VMd}&;1@(CQ*Z=&uGjjwZ8Z}s!)hWqo5cE}1OcDJTdNSl^KYhl79swx#p%6j}3 zE*Hgv&^YEK^87o^htE*R1d9dkbf*Ieh0rtvB}8R%(*pnM19_{=VQG=*c<=cl#W zP5F>;d6i}+>Dk>T!7$Qw&zwST8m57c6z4I+4d3;ux?XitLY{uihv;IQ!dU`G?{R%9 zrEPQhTIXtKwk)MxHD}(MTXO93!9~LxWzI9-*Or$;T|SGyAWj&Ox1S~&cRu#BhrT;S z#+&~b1%ey2hKOrdC*;QuWT;eV7YQL}(37J`%)}ClOnh1-_H@(iG4L3a*`fgwNz}2~ zaa5@L;ppGovE{SA4Gt|A$y8oc7Wfm#oLBm=x_J#IbL!|>PXVE4+W&rs2k4>3Kp0%RMO z(CM<&IabMkz|ZH72|(GTycl?$+%Hpc^)G2uSVVT)Q+WeH!Iy{Kwe@z3E0Z;17|nL& zlnJx>G?es2WmzqO$6w?8VlwEW* zgGF|Ykk^>}^!bw5e?u+*pfPbYqtxkf5bh5Zv>~nS)S>j2_Cu#|ABE)RjJzZIXKM9I z9SN2n6Ge`1=~$6(A|-aQO0zm&X1mJ1ri0FNG&_}cF=q>#SIn@pG6@za&PX;8-If0k z+D5Gc^f?jT)?1R7p5odf;{?rGG1ouplzp(s2NYv|zAv(xPlX5Sv*nhaKZdT`KZpZP z7=ltBqh;CkfPrHpzzPh$rdjntkAYhSa)RuJ)7B-l7eQR?uV$P;{UbP$Aw|Tt6EtPw zgB^(=>jE?qV3exXmX2HybKc;6RY5P|DASia)RVKs5;sfB2U7KEaUxSk&p=~|LDf>_ z%5ZYN(G<4e>B4C40k^FrFZhC zS?jL} zKQkPV;ktLvG>8Y!t&!u?1k{%7o(8oSqz&6-`qo@RGz#jbOTloot=_qs!v zdyE$un27_%4jMnt7dxWo8SN5apIIQ+L;=`uO*HM=5E>goo@9eYm_ta!RmK;ED0o?z zh~NIf6BXCA^=+g2bnQj_>i$46Sr)YxrfAta)Ge%XTDV1GUGtTi=nWgn2iEHinHQ~) z*lQOEvp0X28PV$}r*J(!ce3Me2h?iGC8GtFP~|)hR%jVQYCiS;`8q1p{e^V&fb^tr zY}r`DBtR;KS$PjHdJjpxT#sryeCP+BkA%_m&LMj;J^Sl-J!E9_L)jTg`PTus2NK9} znU0Ltmng4wgQFJ5B)z4|ysuesTneV^H**1xV#%NobK#&v0lVZj>jaK`c;%(EMytl~ zA@#ot7?HQk$fJV*0=Y#7Ild#SuP?sNj`=Nx858l7QcR(2R)Ni5=tG&|*vSgUpFhUa z=gxqT7F7c7kIGu^OcHd*gWi1Us>B_pff^Qaq3@-v%6hZF>x1&scGiDRZ#|TUW06*_ zR}Y*U4un4NhSvcb3;b}~-zm%W$DTCzzUk2k)_J3;DSh9#(F|c4b%HG#-a~U_{0GSf z4Dp|@R*5jrOpv&cYP(2iUx@GRj@p&o%ouUlHhm(+66i! zcCE^9MFA-ri#4IK0!Hl)t%kHx`Fzro)#tpM_4{pzUCj5WI?9_)lszVNRtN6t>-fU9 zmKk!QJNHqNK~%_j0&(3CS-+i~*#r~2=nK=lvfQsx6Q0V7IeS2Qf%z54QS-63?hiRM zR_9|b2F{b>JBOVnU)S3`<=<1N_hLm%TS|Lx^0nDQN185L@D_Ypm6Y-R{t2W3nmE_* zV;fptV_fgPl-fN>9NJrJlkzMqUZa=<5zNox+e<;0TEXQD+0AN==l5svhj6lQM-9BC zK2+0HTfpmKs=xGGdJ~#jV?Tk+I=^O(j=#O=x!vt1YhQ9c58-_md~>m-#w0 z#!MZWwWfjKkj?hz`}M)|jFt)UZ(T`ne%k1i4`N`Wj}HVJuEY%OP?;7S@VG4$Im=^t znfS+HGUZebfo?CHC*eiI^fN*p5!7c9i{*@rSe2t8Z%MfL`3KsK3ls>5-=B0>7$5DTZ=2W9LD^bJzPk5{dt zFpCs$Wq~>ycn8tdc*dCC`a3_!UDn#%rSDv)_Epz)@wK8p%(W8UsuJOIKzoV!IFi4SEVL~u-^$8PEv^0ruj$4- zTUH3W4lm++*z+QO05d|l>(hqUnF#bsECDaAK=7L_nZgZ5!;?e~AibGUz#b0RLocE$mo9&PB?bp67$J zWEwU1)l`HVySLjwrU?8MI0k5)x9ccgSb_?DIv=M4MYPYuCd(u_Ie!2(I7UQxjhf=kWe=htPJM_eDN=J-oo zgN>UYo4LZX6mO0)EK>S>gT6y1)_7MV&8USZ-qEG6lupNJSDlVOu0n2^+N6o~ z=yWX$_prEhf#O859(=u6)tBd!1zK4`1qo{NE7AO1oo?Km{ zQC2l#GpT&iA&Vn}A~bnzYQxPwy{1PCzSQ)ZtZCo3B)O{XBn!0UnEzV~KzIa$%|av8 zVHX_q3O*(ZaR1ii1Bmln8tTVSL1UgpuHGg9h?&Jq3r>67nF%^ZeUHwP4N&~y17Ypi zZbF-bJnnD>-xHKk(ZpQQaP(O0(PG^js-PGIKp&KM(5IxMsIlMXzfe9vQ6#BEqngw(DkZQ&zf%sV z=)^h*c*Qskubq6zes6byXkwDaXDlsHz4_CXWwAvl1Q49Z-yz%b)M){FJ zmkr}>A=V(mm*>_wUt36JaD(#53*PqK5#ulM3IO_D_^V0eUUaeC>Cy1=88xe$G){>^ z&PV6N+4-}~7Q2K25S{vAtHtdf4?!gwvh(&NO&=DfJ+EDmQ=P-3msBb%P0Fsn{g2u` z>s?;t;Uvz>T7LVUAoyad6eVWQ>ciM!)vzy~1ra9j?p?-wS8gx2Hx6>}?$jK%YlgT2 z_OvkaS%O5q3A*mf1VF$n=jr^UVp3jw}aSh;XKVPU)fEp z*eI-1dx^S7GgXmSsdjT*`A6qP72VkGX=fY7{3?Iy3U9MaKZNV^Xgx9b#(diZP1Q3x zl0HpMF_pEXz!ylNX6wxHxP3QC*=$tQy`-7LJkE0IwOtf`+7Oh;q{K1n6wuZmkX;fS zuGU7jsl7$LT7ZXMgo06tj4<9YwTFsao%&BF!SH25IRA z0cq)OP`ah0yIZH-9ceFdt?DaK{qB1H7EdLL!a5uyUK^cG?L1)MyNoXcl({apkI zgw<<_i1E!Q_@7fT->SKIsa^Y3Z{(zfi#JCSe|^H%G*l(e6-FtQi_b;=YE6~SGrVYt z;J_`W`Z;vQ9F*hBkZDx$88g+6yoTsSaoPhB^Y6qyv%(-Rn_Y=SE|0r>)&1Gw-4MoO zw{l(-fx+^agRe+&AH3!Jk5VWba9?bhk?#j>Qf@ zeMu0F9l-||w>h4chbP$rxt8O#s7MTLOe%6?+6Wt7c~l?`#)zQZXZH5SExJZVh` z)9K}kNG75Ht4m=AG zd4P`qn@_7K8Rz`=%^TM*t+_J32$ozOZu1HPveJ2=fc|FtdwSzBMd63!iebbBbWu|T zC9FCo$A}92#}<1%sdDu$>%;|apdMrw0uy=k>kDq9=`t4xJq8+Hw{x>>e_Yy#coCO3 zaoT!(Bm;+Xe7t7PrS*RH8gPKi8wl-~xZ3r|G)l**@C6x{6R3 z_EW~Q%a9ofwiFVW_(`CJJH9_j#M|A7Z%E>HaR>OCKS&ZThK+BZ6{|jF$g=&w;mRWH znXhon`w$#7)25Ly>-px<@0=7GARj4=2!Pm30tUh1J&yXBR~k3_nZ3O2LQ!|K8agdD zQQOw`8OTMB-AFVxfm)tZE9L8ymGsW^i|X%#Qp3KT6dtI1S&8o>JI}U9ln)kLnyE7d z{(eTWU-?m><@=TBgFc$q{WT{ZgYHt?X7#Aw#-K70ms>K;N*|_crmkF&3))tUw2Iv0 zuNOax4IJfz$i+NfZDDU&g8D5!^zr6}3|j)Y74D`LiT=FYa{CO4J<dUA2}inNrHfn-m|P?wu=-X#n0qFUZB&eEwxvV1o87 z?8QS<48vnEB>S?MhsW<1%oc6rw(r&B>zzpxtcQNgElc5$Xtw-ChNG`vqmA@PQk3zA ze}(0Xu&GrP^t+Sb#m9F`^rm;_OVbAk(Du|0#pfm7s(Nz_5kB|*6#i%kFoyE)+ROeZ$(g*K2SUta0I73f(H?7~FP|c<-Vx z2UA*!MsIB%6W?xx!(wYKsg_Dj39c^hvl2tY89Q69=+f7)kmlf#g}ph)DEYiOCI0)e z>#yJVXbIl^1a-mE&TEiAVni@hW@s~b$&&L{g4%xJ^FF>CNip^J5tK2;HFZUPo-$|* z%MF*4+HxI(Hy4W?!3dX=$nSZZ$jQhZh-vB!0OjQgmO@Y>i|#qe}2R zDSt#kwQ69=I=fw&CRoGfLt_S6IGPfIFsX0rl9ku__&Xgka9s!eWn^)*L0U+622w4muh5-Bwn0oHM2=RncK)#37I zZT<69^@N-hcm9|WW3NZ=KK4jkPBNRkt`Aj03keY%H6$M=K&W>956VOfV{Q-@(D)Ac``!n)?)qe629Ca}GsrU;!8Fk_hn zecM%VWU#3%L4k;bFzjFiOZ4};4wc3YqFp!J#6Ox8ee)CONV7%#W%U^cbPw;AGY=wG zX4SXe1c!mzU+ikXxUYF@H>U)cEvH2M1{d5vB|XCYyR|~6V^~%pop*<&s{M=>QJZF; z8?Sg=iP12XmoX*DBe`f&TXZ#AuqnGO|Gzu>Q_Y(o;@3p&%Mx6o32;m0?BNy&LE=jE z$%HcC(A33&XLhf8MMI6HfuOr$7DX{+g-}He0>0=ybAH{%V7>RPOetd;;g{9b@Dr5q zL}0oG;_wqGnAYIyaJMI}TU{|=h|jPfo+pA$<==}BoIC6SGC8#j*v~Ncl|k#}sP##* zm>_Ie)nVeEa9Pcp3=k)P*=@Jhu|um+{BWX_ZXHyva>(5LBZ;&nK>YWbq^quu{`}hc z747|`CR0+o|Ksac7}z-IF@1uo3v-xDGrqnm;EBIp3!gVc+Qy0z7nbP7#Z@>#K&^QO z_1x+@2L!)m!BXc@_MVnV^npCYe<#&aSH~gfy3GPGNY50K=-jKss3#~MDWEeJ+jUkZ zguTLg>+Ookjxmn>4FRlUTHX-Y6#x07_3Ov2O~!UVfe?@qj9nQ^Ojj>e*)pag5qt}h z?wu#Tgmtx8I!owKv-C`tBpJ9K_s?K^DBM2&u715j;VQ-K8TDf1{#g+OGK65iJn?#& z!lwc1RQ!Uzk({Ad>QXHn^%M)7vycOCKLHt8iW;il>{;BOwI8rbp z@j&?2$N!l>beC+Qa@b?eLtX|71Bt&LzMhRB)PcrPxO1$QRlsB+__`zAP(!odKpA1f$Au;@gYtg$bVE$aGwQ6Fk5@2EZsvfg|Os z>#72_3ULp7Oc3;So{`OF;ZpaW4j#c!{}zGHESz`e8<^OM&_6@ax%pz+O+g3Lofm`m_o}q@n77hMCppo@GQqW)IIv8LJ)8$1r{W0vn*uwC$V zCo}E#48Q~VMT_l_=|W%i?Ai9hEk2ml>iT3G5M4cgx8ag}NG zh!o6_5=86-pivOSVAn-}*RO{V^^p^fOdLEHJcSEROppwi2MgQ)7y*-__jDT;O8^Br z6pJH%@cLVTiGwZ#Ohgs}^;>K(y=ZY~4%uFKFlBETX_XJqF~>4x@?H^A|AvL`>3@C> zARmHo#?)>?GZV4C*x0I!&IKVL5O--2hY=8ZDuy1ShBJz19@^5`{0(w=%^t;1{Hxk0CEU%YQc-Nah z_1bsx(GdgEklyN3@5EihQk%`mx{OD_ZS-GW+v&cKNEgQEi?#HOHq-As0{pN&v49VV z?S3?+!R)l9kiq~|6&84N)1ZhPS3|RPH1y>U6Ur#x;(6VM5ai>=kiW4bcu6t_h^W@Y z27=?Zy*e4LNYDe;J=$b4$!=p6yn~yov$g2~cCb~}=gu}4fJtU?e0=b0bvr==_Tu_N zxQ*{I7QCQ9F>*Ged&!_J*8dI{;_wt8YAEGPb+;DOfRw`+8j0{`T*@AG(tb#bqfDsgET`-?<(2ZM2$T*T7O^L3e*NJZ5Ax zp(BHWKMOY4FvG_xNh`@D?!b;N)V!)?&4%@HwP3v=4GhCbUr_ zq!VYf<*MFfp{}2nMWh|t&TFH{@jpHwVWMQTcSYp=jy^dlpX!BtU$ ze73;cFHh*E!0??AI0kPBtA_~oh*1@?^}9( zw++o#!HL-x+85aA1s0$6ze9yNteQ@OxF|;a9Q&9tpE%?#mR)~t*o^B);+xaWk)?`A zDht&d9zj(387;}&9ag0&%8vl`lSU>QAQ_2EoBGaD2AR)xi_ds(Y$E~^%RwLTn66%; zl#hssjt%JZI$O|vs;0$$QDLS;xiq`O1MDeziGi z!sHeEk$;8|f&ZlqsH1d-8qI5cQ_kd{2}38g0b`t>j@gup2g3p9PUr7JHS>e>cGYw3 za&;Nose-mBs@G?#HVqLiProS_np}}WLk#opZ%(JIa{Xnsm~;wsjQzFH?5ZZW$BC`) zuTdJk$MA3OjsnX-zEZQ)gZ1Ur=cH2WzWbX-yDPT#fQPVeh!!I`BAKZR7>K8bF6UTku@-F?p*)Y0oFOrorQHMv?< zFPRU<6kCja9`PynniR`TG*(DTWzwl(se511d1Eb3(H?RLs(Yi!B@vfYbZj8a0kyax z09D{DE9Gejp&?7UiUGdqBlOC@>DTzpg@6k7NAPJ;TMqc!Sf-dTBAZkm)aEj%X6*gJ zgzl&RyRRwjVkFa#U%W$DCxA1iciU@nWo8{QH8nk7M`L7=PyFUkh?ZzsW0?D9Bh39^ zo$O|hMR~C~RCGK!orr+dGEmie)1GdfRIqMrVs&&NiGI!P%9w#xIYV1qY|Ou7k{-;rnUCBka-8p0UcNP@)?a@Dgk=g zAP}nn+vW>a*85*S&3nW1pCOcXFaLGzki9U1b?M!h;aZsL+rvB@T1zE`JiV?p^3$&o zOKGg}$mOi(W`(Hb8%BOax^32qft%6DTl!bIa)zQyOH?Ux&ff*5HsY-w?>#bL>>_Yb zSeKm+ZU6A$w6A*a*q6%_*;tI^&@vvWvLwKm8jvmIPb@$B@04?gEEaVVc~En%9>4 z{o2>i-N&xG^O?1NeNB;i6!MXR>Xa` z&!SiV`e1Do*L{h?N#PS!sKJHWN$e0%SX2W<+@dQ?v3qg%zq1W!aHp5xN#&(x?;`1M>|8fX^iqEyhoUf%zX?erN^{cib} zN?PgR0{_1!GP<3f0z?Y8c)vje)JxHes{nge)>aSzJ%QxH2yBwzZ>RVi@fpm2k)S8A zPwF=n!gH|3|Ce9GZGZSp>4Xiv%j^;S6n38p2vV&xiUg3z))pz6w;fZs@xRv%7adQL zdOXL@Pw`#2Wc5IB!0KEp;q#XD8N9&G|3WZfWWTIayIcUwD=L*ImAqs;V}6I-XEq+M zVJtoTdxP%xj9cH+lT_|q5}_rE8_z#W>0!@FD~v$tv?{&9W~heL?P0;)XJee-dUTU9 z(dlt6H&AWLY_c&ao{%qQREL2)6b2pV2GDvDP4Ce&`0U%WJ^o;j3chJ5QQlQ}jSPBB z8f-gn{lz0<8qE|74A4vEvtO9LMc>;Jcs+u2dGxszbZt!?R87lE(Xk=N3_K0_u+UVh zoXKZ%^&+46sy-k=`K(r}65oAqLC;!RRn`hIy;JuDXQ3|o5sSs3i8)K^yA3q(YPROx-vAKm*=t|+#@NPpx{6>-wn z*LOaxXtR5Hut?RVe|~pVy497(XJ4jOnOYKZ_;RLnX2)B!lvK!5{mmN#R`O)~iLCk4 z+Z>AK9pDvp@W0>1ssL>mJjUs_kz1v9bMS=?gnIyp z-ye?gyKYwT@LT5wFl`_NkOA)D2-O>s80=#huruL zmgj)O2VqhJ@(Uz$1Yzh7LlWPlA%u+v8|!}`b%Z$l`*SFcFrp#EL2kiAVpsHZPEY8x znaZ1-OmOtYTdZ%@w!5-$IdpCxtsge};2T{A6!f}BQ<&sGxL+LtTwNmVbgf(Yv^uqi zuSA`;3IOEu#!-xzba=!9G_q1=3$jZGg*9_2@~|xWvJce>kl19js!`Q?QK8)>h`u|g z)1gg|NiI^9ph)RAs_qUFN(YtA@PHZH1uG_W{u&3%C$dttXR> z{@|x+>ctAQM?YV@J9)Un96sBh7b|MA)0VeC(OV4!McqFHciY4VJ|l_6jc)T?-qo*v zgJ;HL(#~5GT=x$}#rp$L+V4oL@mFbwubh;2Q#o26*abrl(-PX$daqS><9(@Ec$WrKoRgyvDi~9!sYHEvh z-{2?0U~6c!%lhjT4mB1lF!%+C#Byc`1<+8o@$JUz81Y7^d;H%)fhYdYKi?ww#X!Sx z3SwpgY-|a>lju4bX+;oIOY(!%>&T)djiVL@NulztNw(1dUK*y-)IHHzmVz57hUXT32AaO1b>E|ub$?hT)9X3VpeSL7!dW#_FnhMzL@w~@A^x2Et`vDW zcXK#Dr5M;6o`5A?R*)nxJ%2=+Z?cowHEwmHyx9L~aOUZuuKAnWVsw)sVSObrqS(QEEdeD~HlW8aj^hvSdJR+23teFuSuSnc_tvtG7+^z z?Nfq<7iQ?oma5qggu%ViLG;ORXKk+4{vdG8badJ=ga;{{mR`R@L%UUI&`!K0FbBT1 z#mbQ@G`GMHwdBt{CwMu)aYXyR1KP);gC+0o%XURqg8JtF849=E|D({(C;)MCO7+r* zIAC>bsmkpJ2-q_TnKd@p1_xCe_J_HbIrq2!RVQ=xbdbxn^wGKJQnX)|d%R5|3N(rV zj#No#CcbdyhmSkfbK1OaA0q-D21ylCSr}>W<00tl%~Xz+)Ht)bb}u7wxg|XXBw*N> zcqEt$&V`OTtFxsl&j8oc8nh<{CJeYbD6I2c=X%4g--H6!I=7){33_pArxEp4Tm3q` zd?6m5WCfH!e;=l`&n7C0bG55)J|jqau78tfkekRN$|oio9E$UoEkg%}8ET883z3)m z`nau+6DTu!8j`XETp=#`tczvNh9=~mD9b~LYaM3AqZ9Q_9am$KxdUM#LmnZAYSeP- zpua<-)5mA%1uwa+M(pU^?CPZNzL84ubDi*%3;lbqqSYZ33i+l!p9j*QqnhDm)8`pk< z83J9WbN-;cqyJ_84!BF;hXlY4^Fj^QrFGlmbt&xqyAT7(7W{dZ%wvP2cmXGYiy@a# zAG^>VfA5|ecYi}Kp}`-qOyTlzsXB|w>%;TMa>x=|X&h5bp}Foau<$$Gw37VO9MtZa z*zIFF463d>6NTLmw=yH`26HvQ-1+Nw`NT5j8>se9WL)_Fh19V6U*1?j(G;T>e@cnU z1?fT#jf6ba`Uhj1>On)F52LA!QjT2@_^db~rz`%qwpRg92RaH_G$^1;RBrcbht92( z(B+pxIo@eeo+ussg`O0Rki(Bi7;i2znv(es<{P59iumc%;0*4C<#)sIPk}q6I~KSZ zfvs8cy=9^4geD&X2>`mabZ*4Kkpp&M0U4qay;ZIM#>Iym0VyWtSod;e9TT=kywsp{; z8q`lyR!K+QM&-THEehsH*@ER;@aW5gb+JUe8FVTcMK@PRbDt};DrMuz#0r3l24uF{ zpa~$7{Er^}M?X=QZm)J534y3Ky%RLRV!ZgX7++(ElCN2=frb;n_TiZ`z;1m~`|q`s z^Thlns6;iFjVF#iaSn3bWj>_hqlU$qpWf-)a!5w))`E^&kjiQ>?021Oj!+=AD{GtJ z`|4pEeT&|)^}2L@Ku*#Vl-VTy;1koV*M}WK!ZFKjX82Tc-wnn%P6s`TWQX;Q>opKS zHW~YPT)v4jB|Is9URy?iRCycRh&n9PeV8usAIUBwNyR>9g43o?2L57{Yz(1dDB4r} z-=EcgJYJe>tSqrTmjm}yND#Gm!>zsDY$K)n!E9!QPOaoXw7lwBMc2 zTIf!bZ)t#tvQ&6n0qCAERhlch7ib529fBQE3axqjEq{(FjSsEFQ^k(hJGFG*_jr1Q zU+6X`cxZjXA{BHCSqTuL-n!nTt}v=3>N-~^I{2fntQy@5U^&E~p&-9G4j>rC4aQ`@ zUl98dJ|MhbFfcZ7e}KVc+{vI-Yw0-UbRSZFKBFpkuGV<=!$y6km9xLmPL96jRJ=0+ zIg??CYoW`R{lWQ?eKeJo+25cYAqC6AWs3~Ryv&qL;?#R5IIMP4?;vnmjwfyzb(9U8 zk4)n=y6%vr4wkN1j+t8j?FU;NvB)B;Xl!zt%$=y+WLn`c*mda*8 zyAuLYdBK!s(v16tu)tF+_mw2H;0u`WwSry)1z6IqJLa2TM zVc*avkcID+`{x*%MpIaKsU*^17lVRLcuP6OK%a6t&w~ARNu&y2qi=`e-){dMG7;}n zO

mH1UKsk=MJjw1RH?uL1vP_OC{}rVWu0UwwcjaJ}f1lz=P8$C)T{7jBkk694#u zX!J9SktDdZAk$GO`M$U3Z$V+cELA&mwt9D*f29cY(|`cwAfCW12Fa^P6BYHF)2)L; zf%Z2c4oi*;jW2=Nk`Y>zpubit7OAL9+U1d0-c3BAs9}-G#72liVTl`73o~ls)lWN} zgB)d$^|c1whNkG;r0hTwX#rmJzh#8Tn~=dA5Y|-Z_?g9vyP+&!mP;F#kCR$nod@`g zubg~>kecwgLDOnm?P5>&25gD`8t2SVNY{C|@LaWq6xzn_CO}T`1oq+B0$TKn z&z`beU%^&9;*<#jY_sZ7&ALG%kG_o)jchM5vTpW2$dhWL4mJH}^UW5qyEC*Nm0n*M z9UbsO;JM*Mr2+I!@1gl;jaGK|Z9C7_cv5EA^8ibMo&O-ss$Sw7o}(3WTa710*FXv5 zZhwp~O%DX@WP3aQbMnsF^s|VmvA7Y|+dK7Mc7%q8ssYsTpX(FcWI*U$H@HuKBkh!O z>DQx*#fez%zRw{sIzko9Q{s94Yw|~<9@c;0VIr1qUH5~aP&~%B;yK2x)-Qu2s+VTR zE1Pa`w!$}719QRk7!Ij5gQp-FUXrlS7<0XFyvVq4)5fZbbpYJ->H4iy<;s|r{hI2{ zU}S39xFnig5&_W?Ljf`DS&FL>KcPlPWi2M59M3RGyaW&NxJQNeq5&5_b*#@)4?ZN2 z(!FyKwg}))(#{d}N17Q_HYk7nN%GvG#B(>?|IT9Bpv6{!*G{;BL%?#Mro2ohnn5M+ z9uZ*xN{s`Q=!=&9iNI@9v8FvptTCYcECt;=QOg%t) zy+=_{_#Vm}Yp_%)k&dKFiL=JO{zi}7n#iB~B8uAr!7m7AVF8Fk412t^->oc&U2OEu z)aC9_2Be$<%!a_c6x3CU#zN4T^2LES#_i)B`EH{%8fSR0$HJ$x)Xp2lo+|Ye{qs+| z1ebtzflUK=Lf?qM*+ciQw_o)9R47WuHw?r^Vz}PDRz)X%wVDvryfJn!Qw|hiTwF6N z5}Z4W?nT_s-`(y$UF?Y^^HrIUF{cKIXj!QY1ws`X9t~{SUQ%NLk4n;W$#JE@-itNTY?F=vMTRfR3?m9( zK#b|Oi=|ch81ugM?TX>(-2g%TE6b2WP+wLnoiMTneD@NWfXAC;BGXsE-D$9zRR6M0 zt8@k z<+Vns5`M;Xl2;Za_8z2#RWwSKxySTxq3NPVzj-c&Tv7i_rMyV}W>S*Eyjun(HQb7XMr^YIEZ6oRe68{t_0G@~zBDLP~=p zaRfuh)xEe-OD*nd(`(j1Vt$8W(FZEt9m2?0v7uVgLY{|M-AVg|!Qzs=xThsUW5laW zmEOAOrR-wBG=GT<5*yCMYpcT<#8wgUxh$<-^iW?FUEb$;_7t#3!K+YQ$3m8Nf;QSwU)4_Cl4(nk5`p$Z+nZz4GAkzDOfcH0Mi&2k%Mv2t zi*Vcj@zLjUm!>I6QT1_01Ho`4Qx$C}9b8$`FqxJR2h*AO`b{hxmz2@uJC)`x>yK;6 z+s3+INkpr9vKo4yT@EViV^>|)=r;GR-FE^&c(LjZgVOtpF_Nv)KqXLaU+=)DoXbv! zRLg};cKxFpz4TE@9VKI+LWUI8AhU@s7enCFe9BObS&eNAGNDpZDa-Hr_0lV7--W=@CX@ zLjvJO>&GAvDW4y!wT@q-`Ge+}Pa??Z4QrlHedddx=KtRFNThMO+jZ4rW7}x4cx>*y zq(;m2gn_3<>14fsYH0$xoO|3J-S~%noT=4*0g|tT{UgLGkDxIi{b;mH;e8p>-@?Bo zwd@nIX}@n*9)_BqJ9ZX6;Ir$Mhe~DP(2gyv_&!M)Oqs2Yx@i$bJXq=G?*mgc==P9-hc)hcqyVH38iQrUgYmZ`D>jntE zET^?L+v0337ein#FCik{r{kPX|h+1aauV$?(!*Mz~>-VlZtj$JU0gKvoZ`4?g zQA+_h8Cc=qlOmmDY@LQ_9Xntay8&%(_OD>E~XRVE9+MDNkz~&SzDxo`+>=%XM#QfOutOIJzxM&~>UL!1z1gf?oEEt)_L*Gk~TCJMiH`HTk!sRCBdOCB~^} zH*su6V{^9PMJB$AwO_rzMrRfPWJR54zOrdowpM9CiB)K3(%KvLiskzqRrC{5SQaQu#|o_dX}2A;#751_-Kx@EiDo;i`# zR)u@BE$`p4Iy1H9=68P-ShLhtoTL)a8;=vFYN(b056Q+E>IyqT6;po9&$pnvz=)^P|R_=< zAD*F;<=;ex5-^s243C?>H}uEUB6pvwIkI@dv4^>>*p06T@=~xs0EPH()jv8+m2)*? zN97Q&_oyup82Y1J0axvnxp>6V$eWQ5p^Bq-ugvxtl4*ZIo+Vel8K;Y=^01*2{<=Gq z>H&LA^&2X>MA(3`p8d^cVkz`=8J9>?*}1=ineS-S_qsWTjC+bFYpMZgsGN4;OIvSL zGt6n9V!gA|oA}e`y1!l+AMJv|m5|-@D9PaYWlhMgih8hE;-KAHBJ|n&#i>Fuxlh%P z@L{9ES=Bl))Wa4H`1VcbB-t=h=UW#JM=RtOWb{v&@#_9=jd-%*;CbrLFrjuMFgZ~X z(33^sggg#E9S|-UZXs~$HOG<)dgvH8qnjz?95mNS=H0AGkDHSST{eLK{%d+?c|dN; z2?X$mHt$78gZbS5)N3txepBnIdg?WG@eBQu;i9`Iz4&w`wv+rB-CX4Q;cU|TPxz(Z z*KamlY^U(}yP1DUx8>-SbJ*rorU>>|3UfP+zPKoV;SiBdpk!@x7 zTptD?Z-pZOjY#9Ddlch=qqEY?JWKh);@G${fO?QG0qs0+0l_`h9%dH#^1(~|R*LUf zim(c^_s@_b6M2KV+m2q$pTbTM5HuoArco~72QyqsDlLu2S6-sa(M4r+AD}>F%ntHy;u2Ofw6?#$07Mb~~b z1Jg=ts+w~e&-vRkXf^oN1%_9Jkupp{`6qccoR%~7xmTihG7;Hnswf?OIf^;S>cu{N zY;l#*0H?zUz%0+7*)KyT&|RYd&S;j$T?!Y#IVf2gUHX-=O_!WK50`MiU2v2S&^WJ4 zo9*aJw)vt9{rbVi=dSsOs5T|=JxTujZPc%a$FFGYZx$M7o3cAJ@P%9KbZSRQFB~nu zGw?*c;y;Vv3N=K{cghbIQQZEnuTA;&-nSbLv2l-VxkIDN$Gyq!0mWn2>WZoI+Bu`zUMCOZmAw`+LJu|P{)V>K86Pr zZ=)~u8!hG=-W~frBU8cNYEoBel3FRtzsq&qDIfK8FG^pmw@{EDCxG%qW}ov_8OSnf zlwf5%d1}lZ`r8bg-kfg}*V@qqsNq>RND?y-FS(s=*78`MW8I!c3)iQ%)~wbc`k$VJ zYwD&&y-1o;Pg2jBbXC+?wC*vh80qbIa&d_Xl0vAmMh;5l&JTw7QJbnoll#Pv_t=lwFg5qpaPMd3T#=2_ z@YJ<)zg9gUS*_zig%$BU&h7g}ijC^*-=I}!Hzkrd;{8|6Y3#J-`Z1<7_Um(os=fR3 z88zFf3XxcHp)62Fjok%4PY{$0x9wnZdhz^anRGd-3z-?<^5X0OuF!OXX<_K4#?;XZ zeS!S^zx%n8l{T@@pdL4qMoAHmR@_nPKblS-A}D4UjVjW9)HT>%_@JVrTQu~*p2^;M z%5m;RZB=DenJZGY+IKF~Lz*^|zZU@P9?54c!4h?N;&wZW1cfhhL zKBFC}j>l*>%fjREokM5-_yI-+N(?89Swxuno*(8Q5|XCFukSOpsym~!hc^&yw_zH=A|(S2!W#DJIp%4IpDDXgq$RLS(% zEK(%b&ZXIO4nNth{?4Z>d}eacx3&UF6=51a>`xTw)BG|$1(>443Q+OWnVu)gMg7J$ zpbuxza+u(**ZTGuG={3FjPWt|Fd9F zgOc|MdP7srVJ8fQoKQoB{!*OtBJY4$F{5(EkLla5LuMjtfo6}-9?AWavwg1iCCz5A zd2ME8$x4-9$~ksjlrYNfkAR#k5btTWzhhgdw@GPCo(}Bgz{%vYzJ@$%*1ZkTLwLCJ zJ-9_@(rQmU4@X>HABdU;90C=<563aj=~r*=#<8=8W?KYY{UmF9a#l_kUh*KyS>?!x zkxBI>lXRad2!7RHyFnw6zN`DVLaU@r+lM7`pn5L)E1`~7x(?wkCH>)U~ceI8B1K#0&$M@3_ zVkms&#AH&_Sce~IkojcLVEgH}Mi&Ef3@7QJhprs_lRUs|`4BspVbn()>+CHbgMvTz zS3!f3#8t>ZAbXqPWH-gN0FbgOdOyEX3gluTczxIzyuPqnRd2L)Gcj>iWr%xnVN$bK zse6gqA0DxtVWCME1lU}g-7sxC>(*{xeofmBpjni9uo_MIfqlPQgQ#6gX&+0-Z!@hu zS!nPFZ=7<*yxs9ET>C4Dn>Q-u*#^nPTXG^xKOv+H`l(+Gv~02m)v)O7KTFjt1_*dB z%+@RWcK9Bny)bOeQER&C_!x=C8GEsKq9w)eK_{u`Y3KxW>0*t>Apw+12ev<#85@b# z7h$WFoEBS-66b8`MHjf22;j|GF?dQO8gO}h7?5Hke!)JxVo~y*Pu6bk506(6E2M*G zrO4%g3kVBhMu+`i&AMd#Vd$L8TYXQ;SN(Yzwzy=Zpe^BBi>-|xiY`DyrIX~@v zip}1`KGzzWEJYkORDR+j3*fj2{lb$6C9Es^TF|&k#N=LC=k|$65cSat$x`HD{Y&{1 zaQkJ==xPS5VuoHVsL+r!{jTZln)*vw8_)WGgr2&75*BYc0HIgd3&Xbh$H*Y|P34hL z{y_%_QOr@fu~13_y(tNrq$~b9bM;6>^dnoNBa}j_h`ON}^3k0H@NxcS@^wr@swd%( za;5>NoIht{G0bx=%EQ6j(8}Ae+fQc3De4>>UwiWRQQSv-d22&yKkG+6S4eYh_asD; z9{IUtUlIB36vWR;MyN%PDverFFNWxmvowTjcdV@Y0C{pk49Y#fFZ^bRDob&R_2%J4 zqgq9F*ro0R30cjQCDC%BT>Lu&v>9PJHTP8o(<@WH(HVc zY06k45s7Z|f8?4N_hde^g%5keA2qE&<(i(^!8zGJj9Zt_jQU(=G!a|q`=HI$y~^+I zxDQZ>xG^CS58`!e@Nk)hOdN?D`XLGb>_i>^xlJ<;30Hmp7s#b4xv};0;56ny{6Vd4 zaX?YW-jgNmotu`mn|h2G2n_M&ru>u9wxk4rxF4x04#Q(<;L})KV>P|!-Xt0UW8XUm zq*GjmqbQ*ZH=4qg(|Az&cQaFcWD9_m+|@oprHe7WC9*7e+l;!3o+cNf0dGj1f44v1 zqv__2z=(Ik(dPrCue{?zRak~Aa}^Y=jS`(>l4Lzl00->19P+EoH^N47<5kP+om9y3)BM+c`0rlgUU#BL8(?UzYIe)if4+CcX`cSq}MuIP8dcXc9`x z3M5yQzDsJ?anu7HVDEslSytlj@a9t%#}G9x#)P*a9xqc^$X^BrN%m@-ZmXE!SgKHF za&X2SQA~Wf4nyn(N&$-Z638Fl6J`H%_r6x_5rF5y6wCiIlJ){HMU3To2~JC(0R%r5 zC#9pQ>8DIyLs%ezmVq6f5LWS#im=?S@|&~H*6+I$T-eIfum#@?$OBY}LGR5fk0*8* zi2zk><#-nbylF!n)ymtmPOb26j@!OrtDy-Ij6zdt?=VXhDNde&Ye5w~kTQZTviFKKi<3r@%ey*~k`R4%gZ1r&yS{JRfc05ie^?Z9fz z!T;S|7$3$#x{Gzs_yUK_U(HP(JmY`#Qsavp6=OFjdGY%@dopT=)O3lG5BC17P7d#r zT#TKc(Yx-jC0_LFVz>{cVXeYuQIo$q$5adS^F3D?-zh^Ey3WauNGOz+CiR@ z6A5V-55G4M4w*C5I=ikMF8dZM6$Ya5gB&Ge^r_?(<^kzD6QF=R+TCG~%0~<5*_dBB zSJi?t_N-m~*v3#69F#SYzKpcTj!;)Wf*&pBS2^UHLJ?m=S0vVOR+MQAU#%1Et&Qp# zO=^eOzZV?PZ+AXp>&Zn`6TKAzV0TL{M?;!3m-L&i3(dt0m=Gmg^xt1Qe{ef)2z=M* z>qF4;y4J8^+x|1-r0}FKsE|Mrtmh(nBGtwoZis7{fUAf*7>P@dv!%!|mdIf$*-`&@ ztXk|!zVCrzrcf?Uy^^n*5k%BBHWdL^r0#pO${8^{=)E~HL9oG_BRDVpI(@w#rS!~LCU$gX+AO)MJ`KyV4GDLcBn5mD**4oT@}~xGY6G}a-X&9i&u_9>{$4-d z%79XbME%|J=I_yo)6P$?ukZFc;JZ#pUb;6QnO1p0Owc<$%+8ds+E zn$~1RKqB0xCZQu?jFQK5g2&tUIN?*{(a=XAoUX*Aer^D`^;s1b>TeYYbV`%)wsm4H!ZJd?Kw@LPwiOt*Zkc?e=6nAlTK zg1n0#+6w@+Z8($yJpo)^9|#r9D0A_@qm{7et+?N?#Blk7#61nZ4WrjB!fg``dD?%q z0Im!7_3xAD15--kfpC&cC>mZ~Z4aa3>Whb{c6a;Q&^27y-Uz7HgmBtcnD=3IrjCZK z>E%lLov@?nywx|)flqd;`5in*T>%H`J|O8E_d(#?GkK`nAF0g#t_G@Cc7rYh$6+P* z7UHx}XNtyZ#1+00z+Bkx_7gou22n3Tzv;bXldZPa3P$`DsLlkyhb2;+L&7e`7?;Ov z4!)wUQviU-C(&CD;#hM2rNf-c=!Aqy%~E6Bwm}Z7*%u0#e1AzcK;>tueyeg9l23hZ zocdi;B~1?rpMdRNai%oZGX-(=3JyxsB#7$Q}le|W!vf9GaGnn2qYUk!lYEU4(G1T+UBPx9B*b8|JTsrq%bMjdO61#NQE65e^)#9JRd9FhqZ29CtM zSOP0lD&qd`A}5KT^>{vg;gE0ar=#6}$+NL{v|#{0{~|i_ zUwNkGFh0p8jRk}YeSt=Ckds7!0RqY`yXUm9%-x?M^)Ze z1GT%uEguwqV(gBe*hZeBKnaeD zx+#~Mx|I;2Vr&w+ULyhPP`6~!b;+}?dh0?}v;{J3%nYnpl?3`tkr3x0(;8%dm>AE= z+#W1irg!A}WQh4ohh&4_tZ{!3E*#RCTq8im7w8c;m0rTKQwDJ=HW6JEZkBA5Y6dFl zVQKhN;h91cguWGx2F!sEK=kkBopyv331)d4)}|?+73M*K69{<;3)g%pknK++I7vtr zTw~DH0%I7)uyt|h@z_D@xNumlTpvn&CZuQ@)H^SLG{64IEA?RjDT%X z)9RZBVvK_z1JdY6mwZ18x57@q6Y$K8*xMyF4IG@#_M~X9-!Jz9bu@pV6)e9!2&97D z+N)p56}5OAbjWa?Aal2;!8ijL;1{#l)Fue3h24*$CLYfcVbj|xg`a`|3dboQE&m=% zV-0w{(@CJ)KtM!L0}5>#Q8I4oQ`g+>y166)uAr`4*#8h@q6=(C54*8<{F z^T$y3b?kpCGs-}!%%3ogdO#BXoxCHQvGqt|Kx=qzqME-U5SfO94Ne<1aJxg#M-F`Y?N^Z0)HtKGizITBT4qLjbjD){NH0pyfn4U{vR$c1xw2C<)4gSF$JEx zJ$cLO_T1Y8&git5qoxi<{!(NjK1H2{B>(C!4MX*p;{VZK^00XVxjN!)T`aN*wVvnT zM*^JxO97@3Uf!DraUUn^JyPuUl%9oO;hbfKM`@#<<70y8p&AkiHs4t#`NUsosXQ4A zQM(o9!h2_MxtByS#anXO6ZAT*O$ehE5J7JjT6-F|$~N7HH1sVU*V-tEz1HQjy+$49 zGa7x7iKyX9zO=IXGfoG}-%2ZWqR(E!p6Is?nVRyMqRc(BP;~mcxBx_zV+~_Harb5; zI+juLiBC?@U7K=Z$5p<54NDbWFK?3YySsTnpxR%D`yU?e9n{0+K3JiG7jks3jw{$; zI$C^>eXf}$h90O;&>&%I8vo~~jxj!6MdHH1)%L)~kg40&Uw0s&^AeCF(r{>10Aq-* z2myuaX9oR?9VZkVnmVCTwCtYtZEA2MeItRowFAPR2#cKl@oOn71bz_G{5dP*;Fhwk zkkLpLQGAyBc}NTPjWP3W_T?N`}+f3U@gi+@ficjsHVQrr;6P zR)60X6xYMZro{{5<^)SY#S|v|fvQ^k2q2W^75A?qx4bwL{%V z6i@Zu;lehBu}s*zJ4lUD{Wy<_Q>edZkC< zF;fku3GCip>^1rg5HVgA%3+iMT-0N3*BQ)`?QQ>c3nMMMBxPkxeJGZK^%PlDiN}I( zx#mK_w2DTthz(OQR@ApuGFtSJh!UTt9f6(+_f`MZfTMui{@SY**GZ8L*Q2XA*PJ_% zjPBC$j6KOOW}dHaT;dhm>f`@-zNT4eaqQ8oNaTC)nxR8S)QIFx5T}4sIY9R=lkiqE zma!PGpiLC=tP!6d6&X;B+z}bw5Bk$|;x`YJMaxZU<03uow8%P}VnIVXwRU%#qvr9d zYvzsK;E(E+9#SHrFvM+-x01Ixk)9KZY$Np1_}|qZF7*a)HxmL~?%(GIVE@D?i z{C>Q{`Rch#8cFvvs@+4ouZe99Ru6?Pet^{cbSTO;}*!TdNs}*_ubvSQ(Rg z_kMT%l&4#QRM~hKO}p(Bq2>-B#R;m?OkK>~IYN9^zL?6fPutU`1}RJW@Pq;)ed{5& zMu%mK+3LAEE#5pmB%)JR|R)9Ito9>2=bIxherN*wcFC&bJ)phrhh!F~?N+ z$xA$8CtE|hY})L_BU;6}Z|u~OvEs1$O_$?n%Lb2|mE&~!_IWuHoIi8o=VrNlTI&}u zBw1X7EW!9bH{uvMA>AY&%#yz?e$B!bf12-FIE}xO<`=~#V)g5&W;>;$KVtT=6U!Al zbmE?ukMiwETh%mSL%X_7Y<1ckxi(9^jd@F|vACy2Pw2uaxF}9rGUm)zzuf-1zZBk{ zw`-cKR>bN)P@qv5$KWa+(@ihl_%my8ZJrarCIK@g)9*DaFnmi z|F)9Yzwc60Jm>G0ttz28onz!;)Se#TljXem)o|JV^Vhh; zozn-m_NP=oNN5?*cpmtkZ{~{eeCUPLo-H+$y_-{-C2Tz&AzHN;CH1dbxv=I8UuP?` zW0b^VT#%ttT;o$NoA^w`aCx^bHk#NTr8oZ5j_I<)?}kmP`hrJq)LF!F?WAc7Q#>sh zhrZo2)#*qx_j(MgA>s$m@1yb!ir8L-!BosIvP=sIGN(*Bh8={y_`1SJSrR%-E-W%< zFM4^mb_ycrG<+Ei$-%+~yU>d|UAG6xuGKa}I>6InzjcB9-bw5A(oNWHd#>}LH!rnV z-|KY}VSnO5`S65E?9()Xsg3#U9_=lHIa=Q{`Qmw(_1)nDE9qJF$k0WGS5FuF;AGC$ z!j~*i+_P=9i-n-*mmc2^;gr_G8r+g2pi22Hx5&aDZuAgQ@k0y^$^q0Z#M_19PIsj*mCAX>L|F z>mmV7;*R;o0>w;Ob0-<-tWqid&Jq6iK8YML)@Eh3lgD?y_mS>i$0EPug?2@$3mXo$ z*40o83<5&6v=^R5d|00ecGF1jA-H2C*>T%j=S&Xwu)R`w-5PDY*A3JS%lI4{?o?S% zXyE6QR}lnoC8rAd#rn#={0TB0av3is-fq&r3Vt#c`l1kDpAM52k}^%@%75#|`VH4N z{aVhGSh%11b^Ev+Ch0f;L?Oh>W(ojG#`VG#=p0;%=dM-_m>g4%FUY#mZg>>+-Z}g&T0_^5DJ)U|U z4tu;W`GECjSmWnBV&{QGado=}`dtHpflRJOA^oOg`q@4~3U%6$coP1$h~!_>VY{X` zYQ?M{#wlBlGiv*nl7=(&SbEekj?Cmlu>yAR3#ZPf)-SHVM6-Y%%4(UO_j_6rqh8-g zCW2Z@+EXyEXiwEzT|crf(RPvPRJ6KNo%MabXZQlpNWKRmvci*WSnbO`Y5UBe_vpm7 zs02UuHR(F!$wt)it@f>04BRtDA{Qya55|x=gb_Ox*DU90;9aR|gHdW_)!BnyA2pA) z{uu5!#1SST4Q2c~!E!29t1ZJE;*vjJxj}cG3pYm69Y+ly^P>>@!=lblDQ35(*V>OO zedcx8MNS8)3+&D=ZVndPJU{mB<#kQ?z9Pf0r`jkGbKWTN)P?odQJhW7DwlFh#q02+ z&eu`Xy+S0RURW){@h@yKuvG{1JceXEX0e?wS2J_s;xxOdgc_XNf*#(&W#kR`2-o8& zH-XF1!62>X_8FpzIl27}v^gO($VmPGok_id`Pqdq&SDZC<0|G{%z>_h3JZ$ypJ^4o zK^AYDtwg1S`=U2B;v{Q!I7m(wg#L(I_twT^iaalP387f++djT}_R##3hJCNi{eogv zHQ$f^LB32l4AQkwNOv5(RhACA%i&#Urou?{5ECaanp%R{!!g$*A5mRh+nC`u*d_F# zX4m%SI_N9cyo_&gVI#EXvXV*XQl7v6DmMxDaaz)DTmXb5K(c1HPd=GjPoY1B;;d4h z#pC5u{JANWD=)SU7fy{Tzm>nlV#ncEFz&aumd_Vi7Dne5uC8hvUxTtVG{p+d0UEEe zEdiFj&k90P@D`>5-RD&sC<>oyPJys2Pi<`f^=P?mXFhejc5ap1vg*ztDdpBcO*|d~ zk!!{cNW5F8-oi&O*gm76G$^SUaIyEkqe{Y+WNq<(aO#GHEwb`Pjs)p1Jhf zH(hc5C^s8})(#yeacg$)aU*s2XEw~9`Q@+=MBN#1iHm9i7sn?0B^PJs(^NEdWA`7t z5t3&noNb);EOKyFZ?0WyxsszB!V%h4Q>bt)ZDb^hhP<~wbbqarYsMt$r8v&eePO3bcx;`tUTe2>u874LNWR!EeIPCJDjcP z`G+?UqVWym_H3T#%9I_6oDCK?h4Zbn#s_}>$qdWoa*l4c z9uCm@T{HPz9wr>sr4Ai+<8up&I_a6%X{mjVpe$r<-uY>Z;@MiRrHK;eAta#-;KQQi zwIB+uGrj*+eNdTjwq+nkOk#g*gkjFxDRv?3MLvEMVk9CghS> zkRm0||jm3@YrUspVGYwWs^$9ug$c%SY!Dg51)?v2EX(19OM7}iW#fLdhW z;5@@I>(8!3ZU7K4H4-1K$JJ#Zsnu0r#4F>MZ0E}IZyD_>D z+!UZB%XyOjv-pFLpa1VZCUcgJ=2v`-NrFQg@C&z2-JD@TV63`0+5B?L{51TXsEhPy zq&rR>hXbW~d&M1NCzhb=ZYiW_9ZG<*y-%WN#+oMlKkLyve?@S`)D9&=tcQ!y3P? zW$0DDuv!i$=OjY*N%@dwKphCb-e(M;gG^?SL5Kw7Bp(3PY{iMwjg=$<)1mXP`2lH_ z^GA@sO6&#QVu{jWw=vuM7>Qni51+M~X)_Xi0#n4Hvttf;Mgqi|n7RBhc-nh=DGUc* z+)uGUR*gS(70CHRe!im1545Z34z1kf;B#1;fcA54y}H~iht`z>@v=J1Jv7Cw-Swc1 ztt7UU{u}wOeMU!x)IHbZwEx%3dEvc+zwjOV;VD0t*7BRlk*VccB`iiF31B85#K{i^ zZC?=It;4^2{Z+D?^j(NXcN!LiNCph?NvnlAD|&;DaxpMp#)6@KDbao14fZGdl2sBz zoe?PUV;k~sN9g0n?=F!f8JPZ0oMf47QLxefc?^(DVu5h9WKsqE!mCqvs-K*8nr-Z3 zr&1Rb-AWQtHLj))++~goYvXDkcWtR8c4Oew%qhpR%L)j8n?*>sHV)T%>s7LD8@-NJ zDsSTSbU4aA%LAC?J!38$#G*zc($z?AvwOHN12IJ6A4`4n`08&Du8n#92Z~s+bYP4S ztu=Y9Mld#SCu4T>*LFEbUjJahJpcJ1KFtabe-H8TEAPW8>f>7S!L6l#&u7)k zHGHAhApk)kDjr;eO9I@3=*4C`7>xY=R9rJ7#Liwkf*`x*vIKHa}=_WBduhlGCa^kijB;9K$Os;NmAjlQHvy1ALN-v2XACP@g&A zFOYGW?_5qSm?GfRPsL7F(^LashBROaPjt!|!PpKT{onaGWbYqCL=tNe6oQlz zOfsghO1ALmn3~w_5l2>gYzmy~HVG8NLyyT!;oyIb!x!PwqPKwPUXq|icM>hSv>m^! z&3?LXsC@GDjI+3h%Sevt`h;ox(8QJ$2p~skG_7@-4p@*dmj)epI}lUFo#oDH7I0bW znNV|$3zPz3CPAH*BEn>VDCl&CS1Q{8;b<54E$}e`6a247-JT8exzzC@k<OGyQqkv&a7UGm_$Y~AqBq>{pABd5+(1~gJ^+5a=f)cP!eMMC zn0Y^Jp_>ORmhW4Z7;su;@V@^y{{iPgoInryJfH}uA#%>-&cLY<8}Td>30Qtvv-_iC zWt(fx<{!u7|Fm9*l%HtoV295>Lo~hvCD%XHuA9bFKolE%ncKhrvF3NM&gO(-R5Z81j61=vfITKB z7*Ip(oXHgMX{xd6{0rWI$BI3%?rAdg7ig?yD(Q+kDE3!pPh76I6*M}a0hBsjOg7#`5^;E{X;SHc<* zSzN5-12Dc;j9A?me`%mTA?b+`kXA`>Utov!27;%h!=6L_m@yJzgCT}sJ}##N8zdZ1 zL*kry+VXNbpz6-F#b0a^vpdtDuYzm^%?}cQn)u?X4et8b0B5cKW2_=h1|NFBG2G}g zZb$9Q|L3Fde{-&a_a)<*qE{zbat5~!zv$i4&O5lWxQcHOZe@_In+Ens4A93r|LEf_ z;6y&JHdFIE8Qkp);bx4<2bX93|9F_~a*&VeTI7S3$li*ztT&Yci-Wht&Z`AhRpaz; z`D`g#3U0f6|B(+i7H!_{=@6x-i-2D-1C{f{Z7)ox!pD=TpjMbxgG^^+Det!|Tmv^I zmPJykT5$QFgN?NgTZn$<14@`<-Oidl?b74!nUARHYN_R$HO#l1=!KszI2dYq9CsbH0D2#0)n74ZK2J<+%T+!7SXWfIr1n&?4(0s=?e>>n5YEmieVl)O0ypk*JCvED z8liML8fAU%dXl)(?P4tKw6w=aq>DAQrS>HYoTx-jECC0^q2FP_#T~t25RwE*zMV*9 zRlAsk&hY_>oU<1mvR<#|7;k^b#4b#Q?jhp)Mud(ZP(U!)8aWPWvR7B!keG#?y zXs^G-vz^B9*&HbSy&s+h3)ZLHlf>eF41#qjbMUu(_UyA>C$YjV9~7o|qU$Pu8ldbP z&kl?|TzVD1@~+<=uNr7N)A)SPLw>r-ir#J3CFK6VZ4xzb;6WI6fA>+^8Z9!OXV2_ZiUCC(COP^GR{G=gUcp31 z3ofqkwXt1AojS6&xQzttX4vPwQ7|%A#~{)3m(N*qx5(HZiMZ;68U^__$G6VGJ64NC z>?igMg7J*jtDbhdo6f!PK<&CYQwq+y!$hy$t@1R^ajTt`ld8UxvZ&Pj`SFc}X)g{0 z&Xcs#nrOWbVtbRDbdb1vli zvm3|f9G!?gK-k-3Az;aHbB8$3!rq`xj7w18NDgZIdLSyGhmq($h=AE%L`)rZ<)(H0 zB@Xf)Uj^}Zg}mYWS!x;9=7<7T@exRP#0g46=y<-u9lA zb!U>5EBeu+a^aG9^AN15}bmT<_0b=F+CArW*B|R#>)Q%#3#ZTQD&n zgV=rBrS-;OlWXevA5+N_UMBxtcy7H}U(#vH(Euh~tOJ#s>}lR* zns>?n)dahpRXZhN7e zU!4W$jgkx<6e?!fNN$o`!~grc&J`0gL6gMgLEOo0iwV{iim=`ixkt;b5S|V~N!qo?QE;=7HIBL&6>7K~2xQD0 zRTP6(g-uvP1noo7zoMhLU?(KHm7b|2W@)bl1mE5@a4Y=QVBaKlw5Df`PH;HRR!;n_ z*P9!$wI8Xg6+L$5csdI->;8&0q3qZ_8=@!T>KO&1^Yy=d;^0U1`;9Er!lyAHla?#d ze7W`8ekI73R{qbI)$BLX{n~GFvXca?GmB}73Z+A%>So=gjelHB3w6b_#(n#aSIR)t zJ7@BS_q!6-5R<>P2@JdM#D#KVP;rcZuTaZ+6*+$sGXavR$>DQmS~y5LecAB)_0k3d z_6f?#bKkheDv5j^)Tp5FhRUklJvc!D^P-ubP(0Mh-Wnn9vOJv$5KAg(*LV?p0ZB7?PzDxF(D>4oLQVOex8kyj(1hpP}?KflbaOJ$wY^m*(s{iuv68YkWzRdAYU}*0N zRgu6Q5xYgUI|H-2Wfl%6>XyIERXl7zDR^k*z?EygTjxV9!t&VuOSMm|=_A}Mf`2Yzm!uH8`)N`n)6&(JJxU?nR8Bcv{1f`C zwNr0pWi>k@@(<}DEGQv)(igEx3Rpl$vZQfo25307RNxP=SAsk$3CB2JDAT&gvByAK zUp9xqGJZ)S1#r{_8jp(_V0N{2#n~R`z`f!hMh5c@JcqtW$@!oi4oWF#eoQl?3wZsQ zh`_7-_)7<@+lo?UWNLfBoFtSnz`aC}#dVP}QbGmhiA>x=Es0v&;Y zm*(l5;dA`fAL2)ON2xobs*ucWW z^%KQ`4~p>pp{w|6JO(ChDCmBo=!x9=35(m7yC&7dYT4n)`DVJv2>kK0_t+C0-Y2FO zj+0F{>8}g)6^**OXFpv~`RE*FuPb!p(sXs4F_|1^DePzU z_*8$bSQG^;hqZ{h;?yA(o+lesaf^->xRA2ylef30#!l+9X+0(*#{~FS4}Qw@tnA_^SI9EC z1cBS& zBX-=w7vb8wr@dU}J)-&B)$8l9w`SVliXMjP$x??%Mdxnuy*4R2eNylc}GhB0= z=5?NMMLuFE9!Oya7DVp0#oTR{yvIC1r7|Zs+rbAi`5IxOgV% zFqclvYx3S?W0>A_&k_$Vq+HP5w*y0>p=BWPxoqD@fuZ7bs&%_n1y#8!oAoY$h1+!OVyE;**kJPPM^f6=`vc)iM6yH{szwv(8E zRYhTFg?GPB+v`XGH*&(xeU3B#BD0rQ*y5Je)X!4+9KYYMe`gjk1e>9=w@bAoRA|)_ zs5HrAB=W)9xY-+rMMuyg%b+rt{Qe8S^@H;-e0gm)Fbr6aOV6{yGH+i6GAH^*ge@Bl zT^%#eT~qy?>vc+tL(-p2wACMU!X;vRxCV;%Z27Z4d}BHFX`gqRs=?JfNo<~((&Si7 zCYDuEb7{QD53I{i#57syDei7R%sjD4tAUzo^YyY}-g!VMapK=tJZ-5QM0DLRVn1Ty z)@!G}6tIN0lMl(9+u$CksM*zs3jomCAa+~~e!lAtl**Wi2n?jw-om)0(Evub2Ef0HXPdT)AR8C6`m}l2PYe;c4I%IPuuTbCP&nmfIZz7K_EVm`L zqa~_Yfn^wKsxi+!oxh>86(ucyI9mLsb7-d(+S#Ws z$Xyj?J-;_Aq4l_zp4Bd5ks`MI~PJN31H?GkRk#v-rfLF?q&s9%j-p@0qU~!2H`Z zYKptJ#-rrWW|U#@umy3Fk~WzZ0Qo89AGr5k&4Lp6jElf%bgK#DkpQPw%|8a@qCAM| zYtYp33Xv#ytrN{Ap4_eTyR@nvEzmMjbqbFPX4mD}4mdB@T6_C&? zv&BH&x@GKCn&Y)xWr}!9H}5_YY! z4+Hi>)+qVC5IYKV+ONDOTV!7ogzjfZfP^7apiW;jfNm$ZyHW~baYD17&RmhS)X>Sf8cc=m}(&$O%dN?Dex-y`TZws_|*5aNyM?KW)=v z8d_)q$8q9}+q_t}u_EVb|8Z;;2Tq(~e2wZ}&6U7aM(~vnF6ta_tu0m!r7LOxR;9UUZ@^j+|Kdw8#Qq_cigeVNdJ4<3KgCX3DWQRgw z#}#}2`WNQUz0ce@c0T{5;Vr|yyAWi(TCrKYZFcso^j*u-Q(3X5o5K)3&#LTvRFj4b z?%%_JyU;X;KEpcqC=h(fAm?}k>Lj^VX{j6F5k3-qqL~Zh1l<6?78y+E5t>%rbq{*F zcmKKLN{q%9H0~aK3=AAV*k^JS`>qdUgTy2+qYiB$LWZr0DU|!K9*OHT3+bI7Mfc35 z`QZvf@zp)jmv8AQ4V;Gw1B?(K8hL@=%^n0?*cnJG)5dqx&KsA*=zH!22aiILPVc&o zDmgDX3>!Ok?T5<7ih>nKuF2UwdV-rg!snc+h1@4A?Qe>U(vW*@J~wT46RKW*nis!T z?xy*{CMp%L76pm1wze4AjSjzW?|CWK#ZQiMobQQA)B}5JMFTKQ4!e^>RqB0Exx#j{ zb@-mtR>Y$xwVnpB2iq=}nK{=kW4?8we|aQx9UgZ8;eL;RNp$}x9RMohGgL` zkB&SWY|O1ifahw6`{;Uk-(O4fg|&~JY6_onE^0o(XxnAAtHoA=>D9>L2R50fzKgBd zoU4&9ioK?jFNj{ipV;(5#)f_!mvsKHy<`e7qXS-=64li#yw`OmWZGpT=S>r8?~bit z2{(#IAS&%3X)fm_gT)(k9*YPBs#1H(S7I_4D*N&IA~|WP@8aRBZnC z*t_3zHzTR_1y_d+sE>I^MTP^&>ZJqd7dQBr^|+n`KxV0;F`_6|F1w2qjh}Z1Y#PQL z_E?KE4G*EjHPwqVT80;*g0~F_Uv~gXmA-q2%)^!F`3wBydLmkdX4HE?Tt2f(`vKEgasF=u30nlvlE<9Z%|}lH$dcYt{<2Cn1*VWPuA>AxU5o(W!2F| zzr+dH>BFrzLhMfHe^lDVM6x_mjliW#JQU zMcLda+boMnwv$2I*u@tOq&O?|7%m|!I7(Dv_IrG_7hAubofgKHKmippcUHa@cc}Z% z7rHI4eFf*-VP<__|JWeP1j`ry#xfj@sCvD0QR-Uy(^Kgdkgd3;aNWbnFMp(V^Vz6J!s6;v!xZznjJ`!&A`xkX5tl%LDr>L<2BxhnR`*ym(!SBi#g-@vVE-Dm~Y7 z-+8MGE{_pdRsW_;9c`{wg7Urcdd7=N7OALFs~s8i`) z8|A3#0{-xu#JrrK`Kn#h^LKFBY10pI0gf#1+D;#)`^&p7OP|yoQMT1*O3Pd%<@(01 z)xV25pDcGa+RV1a(rESx+RkYw7`;8^puX5Gv6-pSEw)tOAA0(|?>K>DIa3aeg*2(u zA;W!{ieZ86S)^Wt+lw2yMl7!7w#bw{7ODH4Cr7{ zl7Q8d$h5-s@@pWqqP({~X?gZdHjrFubWK{HN$!1!E&~M$-&r*+ z6_UsM%nxD`%m6&~Wf*C;Rk^@8JJelVzvN?{jZV{xfpM$5d{@sc*7!~`mKp_|5Ac}7 zu4P0m?9O)w?Ys333{QQ9#<$#D6an5f6a&}+pWS|h(6VJ*JbI%u=eIl7eD2l5A(O4T zZ)YOv42Ml6S9BoKKvWBqnzj82>*#;`dprDMqjfqenBarOi{2%&3)@P@al=MB0Ul6c$(RWMXqkpkzln#Ee}zLVz4O*I}`we-063+aoV zbZ|g#kTuREbEbNHsVo2-=)Q`Hd03xKXMA?|ar*Tylh0-KS6e}$lp`!#eL>jKF&ugl zL^v}F5{Rq{Yq*BrCo{w<7jD+wfRkx>t*GLX;h9=j+1sp-69#S@0YyyV7CqJ@7G0_m zd)h%a(pj%J?+$C=I~sewg|Hx{jRwBuuur?^rwkp=_UlYi?O=@v$u7^@UcvX}kTgDj z#GgIf2z8$>kdQ(a85q4UU2n!5*xt;d^=bGjdOgW7oaxmmIpw7Hh4kYG`(`pbDYs4) zvC}&>L{vr}rJ`b@KY`zYV_6Y6*|VQ~iSX~aJ0upoei83suaxk+nC(G@XhS#~m;dlZ zt%U~iM{ZzFNb_PargTNjG$?r}!de`m0l1X4GGSq_q90n!lR0|;Xs8BY261%%5O-adW}kS!h4DVB+c&uKDig-vOt31cshVs{T~kj<_LnRKjoT3G3Y)2p(YK|3KjP<9zz}2-gvfJ_T8FFUN67TbKp&@0sVM8 zP|44@{UG4zT^Q=>Ze6ajp8+~N_9uE**f}Bac5%!rd?;uXzWw)irtHQQoxrCWRKs!q z2<_4J;d+`O?N$<@YX|J&>q6=vr+4K9{$ah_jg5@Q-O~a9IS;@g!m+S-AK=N@Kc3C@ z_CONO@2po6J4=8VeDhGan9zM^LR#*(psu#nyw-=;#gBvU8dy&Wi(@-X4=j1~l}t>K zmF>1g%Xs9Hi{>r{d3&eq_vA#DQymv2TjRTk9; z2zgXZIZ;zy)V)eZ-e%Y!c#VB@0MrH`wU&?)fy&~yq84{_HBSWisUjQu*@`zjuK;o4 z8?eXauP+lePhXQdi;p9)rF;s`yeKWI%MUq>eZpJ|J|e@Dw|P?x0|qQD$k8P^#| zIq=H4WSMm5^5k#QZ$=_gG%^4pf(LLBax4KKaqDi=)Sb&>i{5c3Xh%ISF*|=taZS!; zw2Y{JKlNdvHQUM$?|Z{)>wJTZeI3Cg(Vgk)n>P~!UdZ~!8{_KjTv$`EwM9@(*PW5x zor^6?3SUxsp~Cf}`}Uhw+41WP)fRdExYW^`Gta2Wa@^YZ>JkIDK=Q%mE${6yV3lvX z@Z$eiKlvP>$jx1j_I6qh|^E3nmi^PDWP{)amZmfC&X>1f1I14gn=Q6A^%e9 zb%3O1qtE%+#D#a~>j{H;G5af*y=lG9WY*)IzE-lFL~Tz{$3PfAhwJ4*h2TmUD;{?$ zeU5;r&qahH{`j`fv&csPi_H)Kyifb$Ca+}qATRtqnfy#W_)xpNW*>6`N$RHUhi0i8 zUx3&g7XT+58}YxEH{;ooZ&=>v!-7yNAL3`h>^9>w>y77YBGl1-DKmsVVsDbR{eQGh zbjJYb=Pfk!^L=Ce52W0To=-6Thr5oGSAz37Q&qWrCJNU2w?>;A;Cq&%ICiV~l?JK8 zNN3p1b%<~uVmGZ0ZEd=f0HvNJyrLIE4%!p5)6M=(Fgi`PNl2ohw#rdSUKLa>!N2Zy zciCY~MH=~Ct$x3q6WS@Bh$X6{*2<7NZbUV@^Ps4$>1Ho*cB+jf%{K?BNwc>zoi_HPJY-O4Y&z8c3Iu-pysq3OF(`Ltd0tC%%pe{wf)d zvyhsN7>R69;JqTq;qti-WV)!cf`;`HBn#S)9qLsz+W&0u{a0sQ5#F>sKJ-u8%A07m z6?F1@PLTSa-S}pl;?tFHmZ%9ZC!89neqOmx@JfX-ox02wB+mmMWBUrZcO@fheACEv zk0-g%sC{|A+`wqV`{UKkb}_@aE7%1_baZwS3+ne!9IlZz&@BzqbJ4~5azlbs+-!GXct{cvIG>9B=SgfuK? zvggn7@^JQ3&~f?F_xky+r-|xv?aq|NfJ+vwm_?vnxR23sqrd4YJ3QRlDZ}f*bnKCMv&S; zdQpTOvqT5s$A2Q+82UHe1%@9(gvG5`^)IfNM~_E#dW=Xy`7qxrsz8PNBzP8{H#^Z~ z^ap%2pkm#~Nly**h2Fw-AV7m)rf&4b+Lxrro5F~OpKk08mWJS^Vj@b8`uIxUKa)bX z1}hfM#=m*;CeFfEKRTh%=8tjhn&xSt3wwGTdFmul&f~MKXG2tHK&L3tcPCd9kG31u zkK<`W7w3)Ej%OPY7^v3tV6k^4w^B855Cly3-eo%F-T2cZR*HPN?u~=6ZN2fL0tqpW znLWY+o79=1@aS=-NTac$i1?J%Zc&4ol}IZc#7}R4&2qn|YrM*m~;K6U@#)3&lnpQX%)y7V*iebYcRj>ZD2~2|dp* zJW8+ws`pe?Z3N!9MHK8xq!{^|?XkUg&)#>9xO#spwb+FVQ-2!lAShJo=aejoY@i!0 zzoUsQo?jB;cYQ8fO))TYjn#cbX1;vO^0@T-)h$jhnwlIs{35DX??QLagdi>_muGE_ zTnU+qXrtGzPv;@-%LMP+0p}N?#56R!ho3o#Ase%@IKIq*3O8vecnG)~kgBMLujjG;E z5b`$`$%*TMiq%)xj=bRPax4AS|5%-x8J)Vy(|B&HAjkCf+uQ(Q4BDwtCe@YVG4E!~ zFP9;Bbfz_Cny>G<$y8TRxh?Q_tNJ<_+CLiE#7LwHxl}IwB^(SHX`}#Pn0E?V110Z= zcqm1kvy>j)e5tx^Dv>Hu`OW$pN4^T(4^i{aqaai$>|(QPZeIv@CLfbxON=@kR^%jJ zm69EmC9X^SkFR^m{&kx%<^Xazm2BB|ISb#}e8-i)tS4(b)u64s4xO5w`Q`9bOxZH{ zu6Y)4XtYH^2g zIYgg&7oDV-%>1t#PVjh#ve2!1{^m^jp%`2Pu{X}XYUVibQ{cq7v6?99!F9MZa1ESWUKsaovQApC!RHeeeNB} zNL6vd4>p%9t!P6*ReXw7d92oVU+mAyYHZM{SH#uj)#;$U#$wo3UGz=ZU31t6!{4sA z&ezj2yHy_Mi|z^Mmhzfb|DBPS2w&%KGc?kaGKG)iMkOTM)k%$punr$gkzXLEUY)Ld zd3yIRi0a7reEj96TWb=qQh)Z?;R9-tHQxH}94|Ttnsz%aUrTvZHi*Z1T>t#&w|#rO z?bhD*M0p={ds4PfAbp;&3YI3|8zpqySaLdBX*V!5x%MS=ymlpwH`5!jJ~tSWd}1t<;y<) zbGuBCWoJ;^DdnRP40B&0&6oKO!F4|BF*g1VL$+c<#e-xw(zd@{?g-C_0OStKb(E^- zfT|`1i1KFPO6oaY@h8aCJy=u40xq;MQw)<+N6Ct;l$*{o9#U`=%8>%hb@IV~laL#i z$WL9$_nryt+JU@q1ht?p_Q^g+v;-n_&l#Nr=0CF#ex8)q&*Y530L%ccQv59m+p?i1 z#e~99>IO6-%CKp>AD*o{^0_YaA#s~*gm!CkHS5N>^O>qB>A^(CNy{DDup_qRYTj|@ zEEE46#dX&@Q`hG3wiOt%s%t1y)+O$#xUPz@>wAXvw6wmSxk22~T5GOz1bpA+?Y*B8 zmuk4SZ_w#-5x3b`Q32)tCoFvjRxq2cPDZ zs@SKDF^?g`*7oa1>{f#h4-so_+N=)K9>Q-u7RLrM5G}Gc9~~u5PW7!I_o$~OSRU+{ z(go;{08ZJTrCEH0u;rfj)GzF$Zwc&?kM;w0rz>9vSUini zgO%Ezq3ZMsr;pq#Nj?TZZ2lo3bN??Aa>eQrY(v#1GM?ygcd}ITKS@vIobDgV|KcF; zko}4P)Uf-Z7!nunL;7j4c2RrvvUT}x$_%fNS{6UmY25b@(Ls^1gV`X1`i=4UW} zOuW@He{}!1^9@~5B|eqtE;5Kt6D5gQ+n(y4KoNCo)4Z4Y{|o>4ghCX)QyX>lOyJAq z?m*|7PYYmH?YGQ&o{UAkq+vacxkodq`o?PAGHu%nB90;1jIxW|(qd=P4V6BB@a9jg zKZb+j{Cd570M_}ba7tkwB@N_ism9kH#1eVT)M&a%L?LB@e0{hgSwYXdj@JsyfCF_3 zbu7PrLPk6LP)bm|tSs8il$JCw(vrcTWH}CcJTe*tE`2NDcFQI`I|jB)C~uIrQF5m3B5w@!TNLe(HVY2Oz#;H5SOx6>ABGyZ+Vq&f_!y zRN%s_PhK)2sr=t0BR1XOyLa{w6YqZy@(^TI=YGBA@)@q}yatj)_ zXw}DA@Q2;xl!|WzOJx~%*veNaAqh=jj!k#l8f~&G??_RkEQxDVSaDFFYY?9&%v68% z zvI*9AihmWP0`UN21kE!Q8oepbeYB6!NH30-B~_>}lVAQ1x}&@)aY{KlVw_L#xs(dZ z^6V85U^Ys2{wiBBypXy(+LRk;xc=B2B^&iA=SzpT(BT z8po<{fR5axyJ#T1ewzZId#nhEL`j##gRCo>2<62_I#G3+UU=;U1o1o;y(=9yV_Pmq z-f01zt_Ho>YmEP_>gLuEKR@azzFofhQ`H#cDC}PBzh3V{e)I^?fZlWXFXtB~e-afU+X<`Kc2VrV+%%*gouf&mxEU&Oj1>z8pyQcxRYD!gVJGQ}fUYBt{?b zfa&6xKGj=;W<7+rH7jJ{fT?_W^j?6M6X#Rg97uz(gDB7b7*y&ON^WzQ3ARKjg$4Lx zfqQ6{nIJABdhn!Z<`B3p>CuEFst0I>)M3Qb@v)(p*b*SW9nQ47kjTBoTHH`mcq?S{ z0Qb`mz3|9=HRqy$M35tQyw zx|LTq^p_z9Apl|tfa;K^ zK|{?EzbHWV6rbXu5D`y6;xQ`*P`&&g(N8td2NIUi;5o>Is*rU2NHkDCQ@~7ty5^*S z*}5Uyg$HIR(I*u8B!~O|C;9|Rmi;9a6V(ebsL~vd0?H{aWET(nNn9Ra>mKj~V?31v z4HBK%BcjmC4`!JIM>u_;JZhE&u^iE%!NCk_spm>SeGN&5UDOwg;R|@yGZfwl7Mp1U zx&j_mqJ3omXrY)U8Y1xhe?1JuQKR@#z@UOnrEp6mfsGshAuWIv^SS*o#GZZ)WQ>jk znA#Z%Q;SDoYX6UbQgcU;P_L3U7>54_{0W@V;8!S2jT1D)C`v8h7B(FT_Y(s+2FY89O~w~H4OBOvHSx`pp4M>cb+z&P_GZ%V7fd#CTy(+ zFtZ$Jd(jEDPoQx{u;gjH!N0?%{V@QG`{nZA`Sat3?9OC*plyq7^9@3(Vku@(JeLa87>}sB!xX znlg+zqees=Eb=mYW}@800mwduwU4W;0z_8=JsDLJMyY?qAb@ZLN&-`P8gpy_=>HRZ z{J&29X#>2>>aI8xPCO+&7~B~E%6Ml;&#VV!MYppof0&{S>+N+m9&<2${>5QRdVpWa zgX5MfaVV>#$5a*R%6esXgL<{4Y9cEKOk@t|0^iA3NsCKhpXn+b&8Jt)Q{u52Ien$| z-W*Kk)4x`f#B-f5OMVgEg4-T)Fl6)`ZIc3eOOG2xOH#eOC&^8L{Q;$ufJc~wiH!p8 zT<(7EmZ!l3W9Lmk7n^+R6ENHVJ@yiq*1w>oJk2H;s9$a!W_Ly^O!27d3p#jPrhVUb zT};{YkJ2ul=;ep|m3uJz&V2_bAYP3!C98ZrE~>xKGno9+{|W-7`=FK#@IBM62Pj+O z&h$SwIsZ5I3#@!7WE}*qE7R;^&IyapF<%fo9wXUXuPI@Kma+4C|^-e_LL@GyXCXgO-lS|e7AO1ig+IeQJD;lw`ABdf8B7Gw8%!^4p-^(xm5XVzxD^{MLOIIm0YY8C@%3nOO}m;9H< z!qy#co&ar)TmXL^W)j(Q>NO}Cdt1fLxC7cR%^-o@Xn}N(;$UJEA=DFE3v?_>OfR7D zYnoC6UgT{27UIXn!qxyFHCLKG96#pM`sQ))eE9RV& zr`jueFo!cyu-r~LFS`L>Y`*n)6bJ#55BXwbc7asAq#r+UmprLEh&3BX6R`;oHv2A9zc}CYboE8nW_y*ZKaQv@D17NQ0oo*pO$LoxvCG@uf zFkv#i^BQDalq%?a=#@46$E<+FoU}>cHbB(Lqbt0iNkArO(M&xcasP zHFu&4VsNK9bp)7)D2dl#xyM@lQHq*?3N%?5bNkM7*#?&NT&nh7ZpQ*=wv!ynh;*ON z-TQCeo1dsQt|WO!u#IpYZWnV(pL9*Gz zoFTW#ZpI8>7P}d@kpmPb$)Nm@b87-t+T;RTCku&Jh&72-PJzmo;ks;y?A0yt33^|C zjblH`Q3-?aHCGSl->X?*9t-x^ZJ#vC_OKew3JLdSF7^FcuKzvVxZ!r&G9S^tG^%yE z{<(Dy{%|sM1vDIa?55c$xZg&pI=#zi;e7e!(Nr$*Tg}r*g$g<@WTK#?f1NZZk}uvwQAqr<+@??E}st6DS*HPR@@LGS)zxqP7pfx?eF zgCD{zHftu$XHUC%-kwVEX7^k@*&C#ir=hqD7$o4K?X}UgWTEs@KU`^ig>sGqhF5)0 zkU&26msRz>DGJ{bF?+w2_{tHeDnUI+6}poGLd57YQ7)YgObbZubfszjbDLqE^fFCN zap^pM2Y^$5LNU2i|4@#ktiZ;^HQrdCTRRcIj;gh5lm`GxuFR(k^wsVN)K&#`7mxzc zs@8A0>=6JV!WB(L=j|@5O|8#9No<4F>iOK-RVOv1#|}F8?Yw!b2Y-?r`O@ZTpHG(N zOou;69hD&HLf)0kyA^*F)0qP<0~my%a8g#?!YN+e9)7q#Cv?_OM$o;G0Tp}0j<2H@ zvN39jn;uf$(vXP?%}=wuGY(&&6L|Cfd2D_kAcUtmrm8c_FFxq=Ih2U~?lC3h_U^+t z+y4<+>UJSz&s)ZgQt4#M=so!L%aUGGV5G1)m+L8?=*PR4S0~~;{_QrK4X2e~ePsWI z<}wL1r_XpO@%n6y?0C7s*mHIp5!(+yE2=*M6iMFTSN06w^Q3SsQ-_vz@ta5S8o8_} z)xn-^y+EqjvuSE4z-3PkI{lN%o;0a)`9ffM4eo8@fizO#+Q$7&FQGNTN#+sZKXqB+ zo4~V8YeaHH5Dhdgak*I;fIH`|6gbZPRmG8~;lQSg%e5zdV-D#ID?Csi1I%@7CIr zy{DFA>y`QfAuHp>y6-AIWAoT6i=?NVBYT@qX4xmnS?F|&BpG}Jbb<0+jol!Dl!NC6 zhi+aC=?-UUd;l((%VH?igb4a15m!#*Dk+qdDK2?m3~PDaY;h%GlV3Y%_Ysf%wtTr= zmdy5;2S}`Oao;53by5)VlBS@Vz9&Ips);5o`S>%ZX)C6wlkYMDniz z7u|m}kNiO(t^gvoTx~j8?yFS3-K8dLuC@xhUVnE!cHlg!%umNfs*{HCR2p2YDmvhA z59(kMT(i6nZla546@3DjA_?#6)oZ#aLNK~#4we|r`ihB5_$>I`KALA*K4mvxeR@$`X#pI4u;%KV zAc3>xRD&F!+oQ4e2GN{yo;ko-97%f6=d(ry?afo(>q#{6qkWHshy@pR9Sjn$L27DB z=2!bT%txo$hlok|-Sn`l6&vJ_a!o$*s~WjYe%mq+zi(0$9m`)WTu@h616!JG+=DT> ztYfw*@R_ioURIs5grk98mSVX6_V@nB_f>7T5q}OL7(r7r5axPt;89+HLvG?hex41R z$LC#~+LJ$^I;HX8Gil=#9vyoQ?^w*%4aDs9;-vdGv?>M=`i3vMU$q9YR1>Cjx9HWw(Yq9kuVMlF2@2ArYMt#;*_WFF${%wIS;;y zOcoW66&uWul#3r+c3mz% zq+0yv;a?1R@!M4A#$Mc{MHg_Jn*+(t)ZG}u4fH7kspkRlbb%Ns<`SKXO(!0l%brH5 z1?|51amVUDuQkl_JyK*72seQA#~d?n~x1 zD5v~i3;y$KG62Ywb`Z`rAYx9$f3L=~!Rg5rixc{_8J!iH*;9jdp*rQ0Ueg`3p_!Qm zriIySrVAJ6jLLw5@Q&K( z%*hH5HXYDgM6P-{RO2=rF%dv;SNkh|(!P5JL~vY}^(J2t0u^A9t+nMAvvl%G2c|(C zl|y6+!K4DsJfL9tedhXK3y2wid@!c#SU*;x!Q$yXjnA;|{?=e%uUqD z0m$5@Phcp9A1`6rntHYGQxr}`#;(txNIn>SdB%BEQu}>3t{>1VxE87@$Y}v)=ZT~3 zfL{pv$WqjJbi$W4Hhs=3Khvt;uW!Fu-$l zAK=~RpI<@U<6mRU4ciu%SEWwbfD}<)Aqd8G_n5?TA&jseK9y_2PMLl|RQx6gyzh8% z)Jj7;dw%oA9wu&WNG)<#;Wt<+$ZPqM3tUFkbgiWkz1aa;$o7txfPxFh+LvZLj#!Bt z6bQpy)rZozi9u~oMcx^fY5sPSQe0%|?(Z8cX^8UF>fWDKCT>HXOMyFUz}sj51h zVoAFlWbdhCJ>3*>NTy~2LLqJGJI12+ef5F7>yE-L&bCp@zG!^P`C;Qs6jr>$eD86w z2-Y^2+Fee}eGU&G>pdP|rd+7MqA;iM5q+r5Z!HaqEmXOfRQMtJsi(xvd=Q#~CsQyv zqo>0MiE^M0juJ(-F`-?T^RrYCVU$90L#n0wFbdMq5th(OuF#B})?z*iu($z@V z?Hw&A-UHx34ET|Wjj`Fv8``&k_=%mJQ=Ck64A|32_cygECcjrNF~h!hKK?yq+H>(1 z=r`DW@VmToSGC>jAM9tCBldYK_Qj(HTl-A=ytOOI%VpsjW@ir@=Q=0*E`Y6}Oy8CQjrGi8a zu8=ct*q1k_bDLMxkAYS?kJaIGJ?J&n&KZgE3-0fH+sT0#F@a!DQ4Jl$3%($7mCh7Y z6eYLU@^fNTNsViaPn=)V=dHGIKcHWq|GtI0(}uezbQcQuFRrl}Z6|sy^nItsqiyP( zir}r1NN4T4;a3eO>#Tn1dkiPVViF%5#y9g`dG<4l0d?a; z#&Z%^sMX|)FU*6ZASA$@brEDE9ZfHBXgctQdLEae!p7m0Cp$BHo)(q$4s2u9I%d7@ z>9d+majKFhDGn_6&vD5%Wf(bxq@yGh-9 znCnmw$<4_%ECyNn6fuay!?TV>A|r!dD766K_Z)*0F&_WfUTdqr+ef3e^_~f#-ilm9=iNtP@b|RP5#~ZvFbYXqL;^Cd~Y6ucugVHjJcR za^LnH`9H8{Ue+-ioE~4R9nXf3as)U4N+)xi`USJl4Ud>2t!p zf9QM77r*5?uMfR(>o1~Foh)QNJ2ZNBj8%{b%S&``W6}iMlNCTx1-lr=Mh5nMne%B(?d>S0%#Fv#C!ara` zZxS@h+*P%iD48^WojHzY|82MJP-;yNa8ApsDPimGSuXg0^e{qgh23nk6VFtwiSJHi zVF*3gmcwGXlWRgHtbluaqEv5{4`k+@aq@@%7n|)j#O2s}bbcHCx8}dF@a(Z1{xwFS z4_xe9sB8tp*}=I;$v0cE31DIzF|G%D$b?FAujE|$%Sd{Rq%+vQ`ieRQuRi`LdF8WP zuV}CFwAQ>APJ(yX{QU9-v-%$~BUZ*io%C;-clo#YZS$~BZ6*qeu>S1ZVsUyPEgQLb zQ>LOMlu$O?=i?=I1LS6j!0OmmQP6GEr10CFRBm|@hwHa1%_esJd&8p41*??>m@Dl!|+{>G>gumO}HGblYf6Vb<;4rnRcdFhg2?#s_y?P`z z-8#paJSIJ1Av>YH!|w{csozf!Pdd`{>p&(A4xea!y3s0aEOx$ETn>5XY90lql2B1v z2r4$Sofdv!0IwBsG8GrOEv{FXu;6tHLZ!a%uhmbaEr0JW-}JxdGr!OFB~s}8c-JBl z+4v~5A21y@>Qv`mz$+kak|G=NIR7Uns~HefV}Fxjxe8JvM~szDJ};=4brCP=B&IY$ zD2~^uZL@1rRL&JjE`aFUn9d%pm>7C$t+%Zz4X}rP{+@Xo!_C=b-0we(Zq;*I0|9rb z7e}_IG9P)Smzc`B9}w4uvAsvkKn^+*8{kw|k?Wl>4eUGA>_#t7nzPye#b*m&c>_M% z?V8Z{AtU$t5ZuT(+3ylIIBPIH@Z-SYH$nV&XWRJn!L^{0PFWh z9UfPYC}Qg^KKStrVj8kK=X8=T>TS6DixQ`|rjQtwmqRljV=#%3GNmPDrO4#&w^tZ0 zrD(*y3q)PW{@u<^|VL%)bu;+4I&eWzrtV(>z4o3fwVI09RQ+ z?{tyKwYPHVreWmb#IgIZtZ|RM@TTQ#mod#G#oeg1PB}%qqUZE{i@M|#6{C52g>}!s zi6LWG^t^ui?5Tg>Z=hrbJ3bVcl%s~MCc_+);t7y1T9z1;zW+%tocWE|urz77K3VZ7 zvrMU}{A1alUVe0SkwL8Us7Es$YGhFBZ#FJUn4d-atC5V|$S$|TITIn_w-XV*do!!Q-+M<7RJ%^O0F`xQ3uYZD{!y}7;f>yWv!4CHm5 z*rrO^{@J9DQR5gjKv6QwuG_zL^db;Y6e%6ZdGF-hr%uaD7s!Q`%mHB-)%=^q&WsWP z+j7J2wTgaIfNt3fm=}B3r8wcvRwL@;pbxcw|3x?GU7G#zS8VUO%lF<3V*3Cp7An$@ zusm+qB;;0b6)alnMf_@dq4S6=YQlIjz1eu^g2Sj`_+^3mUedaTa?B0)q5!tz(=Eo^1{ zWU_YNoPCBGR|h#l^UqKG2PV3P%T;vrw|5xnI}lWOf}Eo2I6vS$i~Y|oZS^HW8N5VmWl zk9r6iG2J}*XUdN>G1FSH$ZaT8B_RXVdB?hbDCynoZ`+QRqi|70SiZw>0MdWYIjB{*Hxo-Cp^ zlHbU>=J!*B593}>Pm}sBg=&6LcTFAj_gVS*VlQ8;;`<@bV3MbUG}mAjX?jUk2KN1Y znFMdx6Y0@;f_|6$bHWEHZntn}4R%hRn=E0-hkNo0e^mUmQtIb_>Exj=dkNrcC2;ay ze5BKEZnsqN?7z_Rwxb+NF8B9q96kZcGdn+9`dujaLWF2IF+?2N`0hiuj&3#to?VAD z&;ZtDd&pKU`TBOqrihYw@nLKEq;9!hWWNwfVo`i1i>r_fZ>fqqxXJ-2#%Sye`WW2|5)aDx4e zHk>u6i5I8_{8~S%Bl*vJx{ATX;-j>3-sn(*80YJ_lj$b#>CRI-bFt> zJR>(*U%#pLAm3MignG=Jw_dk;rtvUuNqGCFd~Ysy?t!=-X837EG9I6Xm9;D}CmYvOQOo z>TnV8#yZI6{SlKyU@PX=teIhY8fhrYiBw$o5PL=j_ITPUGS*Ba4)6D~Jk_CUrGx+w z-o3fFqfLlE_JUf`!j|H5Pq~2!&}F068(XVO>YKY}pe^d|5ioN!>4MWeE5s!@A2_BD zvs}75soKE9+-pgp$Q~zj4OFi3Cne0>3r{Z%Zi%rv%F{j{234ALK50r?wntDrTl=%0 zl@>}YT+1x0X4g&l4rC`9m+l)cP#@PYF~SIHsOZC+BfBq#%^@AIE6o}F&`tK(95yuEB2Oq{NIZW(n$3AH_Tj%Q)^}l>YU{cDV^ycck+|B(m zg0e;G+|^2%R7``W=Pt%1Jg9ew{i+A=h=YQU;R`k9+01yeoH(04muBRH`{q$~v?Pwv z67SAa&M0|(Cd`%x5S8Y*W^v^8#!r$yr;0*(*3uYK3apf>1PWU<5jVS;0{ z5u5jHz2}6NB4#G3#ZI;l*PxI*TV0de-)8lsceZwuzm3s zP|*A584xXtQ3Z>G*VON;qCe90nqJ)VFM`2_G9+V|)vMeUC%P#{8E9U7UcP5%(scUl z;YE$kRQ(NQbAOfw7iM%f!`J?B_iCw8_&2J19s>H<@(kPes2Z0V_xy(_#DStJps-b} z-+x+?Tfa}V{INP?EpQQY60Vdt_5K1%Yur@l?bL0pUv^2pK2k5bIa!=r%lJB{C#q~F zLp@1BTjHDfm`XLfvski#`cqNsg&2C1H}gUC>+3UjXyqb0vu@911vL$W?0i6vj_Bi< zLw5|jwrt20)UtZO-g=sQt@L|N&};C&yDy+Sy4Sus35-=M59x%N~Z z%>(Vvisr}Bh;_cEcZ1O|_1)9ZWdB^Qyvnyu2sG{BSWBH!7WbdsOzB$g$C zfx{*3f$_&>oFr4?E2d$5)(kz`oObcJhP0gMkT9`^#L4%q$>B^%Vxvi+OamN_R9L`! zmZ(KJ-VgD3_cd$e-&{H!-CLG`=X7|BI4bJ zkQVMOqs7!U=^iH#9mK0OKUuCUt!g)@ZWJ3mB}_7`d#ObIg+m$ zf=alCE8*-U9c=w97B8B~q@e!=tDA?&a=VIJEXGCGzS#tMP07~Fg_ECvM`#U<>up#L zsx$n`EpFIDkR38k@Nt4%Kc}pR4?PL$z4Er{%3b!uSVE6VW(a%6bEmkLQ(C*O93tf` ziL4mB^?M5ou$MG-xG&M^+H85~;A*OeWHYCLFj&e89FhgNz&kS=7^JY4S1tm=GHLA`$4dfx=cvsS|Ks{h&{ zdwrJfpweZ%F+tAz4`F`}Q4F@D7yDzUhDyKV^eiUtPAl)E|MsU<) zd=4R$sbW76dnA^$JgaIR_*McMxSHLG3(Rnd#{foMiD9K0mTZs6(bdm}bc9R&Cy%oc zuX|{7syEk^rky>JV>9gI{q;G15>UaL=cJ_is{5O#;O=JIfb)z>&Dygy>!LYqqXq}7Pjkl{*&ftM)uag5K^ zwE6i(a$LPo<_t#SZ!Cu{clp<0vzJ=U`sRufk=RYqcHFUsA<;A$S?@2BzWu`hE+>!p zA(~xxw+rPHIU?-W{;0y%4?mOk=%de+>e48nYt>5o*)ghr`!G?R>it+t!b9e_!1uP{ z9F2G92G5@?+RJL99qG}vMV%e`eIp%vcQ1;C#ARa&j`;aea_>3cTD zwqT-JDt>#zD}x{JLkP5KYIhtk*9MFviuuyU@FkX_`S%zluT^Lu&@#h%i>wM*{SeQ4 zRi=eIfl=o(MdMrSHdN0u`N1WmjTgIW3FM{=>k5HC;~> zoZ$A>D8p0)_WHe|bU!%3j^$_D#M$SxF!7h|EJ@22?YsVIY#EJz?bwx#)u3;J0Yo;% z?_S^(l_TlF`bFe4<)>Bu6^Qb5+RvR(RzKwL8n*4#$q4c~pbH#Xb4c zM<-3*TieAIJu&*HgVnVj?`T!YfMq774Ceo1a-#n*i3xn`HrY8WtR23$|}+f!xH+h8V5%Y>GlKL|2d4tsYO5)9>Y+ubIVBG&)HI(OqRo z^$n$Yvek4`8blW+cAi_krepEWXw+k+N&S2?An?cW(3~>|V=Nx0i0$dCtJE8{)=|u$ zEr*EgX>B|?fcxbjaS1*ml{V!#7zwa4rcD|cSz=N~Hoy_j;7EhLKRoTsW zY?!BR%wQ2v4fht%*lZ~u>Pq4@7*0oZYj3%%Hl`Xsxyb^Vi3X7TdWPpA$ATM*NMI?V zwg`~1aoupHq`v+6!)E0&^RG86-)mUQwSNg*Fa-Is_X3sa{x{c~yp*m!EL+h2Ch3qb zo6ctjETf#T%RG~Ey~eh@^zDoq_N%ceW+uw`4i#vwY@zeJmjl@05eOx>(L`elfVWO` zWO+YMvX%P2sNUoZ>4HD z*kSWaF=1^QsQtjy7IJfyvN;v!Yt0ni5x*>E&BocGPoR=>It#?a>}F-UAW5qtr=`rw zIHeO<&Gi+~UDD*3Na4V~DCe`A8L)ZV(JEIrF*<_SCNI)r&ax0{Kw?|mb}ymV&dM_B z#drw58Pltl+M9F>BlVW-?nCE!b5YER{L-}<@x&I!wKQ;TH+&_#ngT!W+ru6S={JM7 zAdtyIj4J69GZtmVJv`1|Y{UywDBVP-RFhJ7F0!taDviruimbz&mdKjR|9I@^x2}D1 zqqlBt?)o9%pV&=VRkcsUrr9CDTXx1+9UViB11_4156_pY4d(k-u}DIeveqRq*Eh*Vdm zsk>fPl7M=45!_`6l|2u;R9=ul!x6ywkO$MdiKw#g2AjB^G(l+94YwvbUQW6G%`M9y z6^bFd(*Ct{HZTUO=gTwE8&*=)&OcrLe#dZjFGm(K%)k6H$qydW`f_VeT|;g_E;nrm z!?o9|jBV7RRjrqx`;a!zH!{Zg$Y==6J7i<(HUT3J1_SEwW3C(^3u=Ejr#Qf@?D%<% ze=W(GI7X=|)lj(N#^gMmjdjIxFdfL!QM=p@&TZZObX?eq-k>ZVmlD)ZH_5#$E2}qH zZHdM&-F+f|=Fbd&mLU$YFFG&A3vGbCbPP>e_9?=!#Nx#?r`?Ko>k(3N{8V!Q#d#Fx zEXZGx(dT{#dehb)i)-V_FngT_X$>4`-#_NFgu%uV+a}ur$`vPyjN&Vz`8EK5}Sb~{eE87+8VCp(bh97PA4$u zEFIk83Ew_Hd%XYiB%oM~vYAePf|U6Oye0xT2VQr4j+f-q%>G4g zT~LaY99YA{QKPZO-TwVubuUxgR=jE~N6=vX0W$EKH>+yag%4@ zS0|#Un!zM!q}g3Cp1$zaeROBDUc!x&m$m!_JE%nSvf+=gF0!ioRl4`}z6ISR4*1ih?o=Id|cl?@#X_{B|lw>^jo8V{V-_tn4dIM%W+Y3bYf0P%#e zitZCc6v&z__9AWCBs0ZCuG-5t{1>_;eq{m2t8cDT)?MjWeqB*T$k^lC8wAysDpI?% zf(W%>o=2u9_G$ZN5AUf3r=$xzRCtL^cc{3bYCov9Qa!_>fAhZ9?k<^=XM+@WY! z%loIVWJkAql4RdAF!MZR`|DXBA7lo&m%|$ney-GohJ{W2EyaDBYT^Z(RWEQYHWydy zSoSe7nF5B6`7dDV!R2~kNcnU&3J~Lz7p5eRzdPIGU$=-0_a}%il+RGqDc8p)pcZWp zPjYd(I>*;4*P-z9zDOEBh(>?R`qxwx_8Ziib`7b&s(+jHSZumalcF)}!r(BcKrj2@ zyuUClpWQT0{FyF(mZ%0nhbStn6G4d$IyHZadFz~49>SrfS?w_*PgH zd6Rh^LLTxKebbHP$osu|Fp5q;l<9Bh*58t*T;CLBBXa0btJ80Nez9_W6_OdGyD-zj z+tj?Jw^^JLIt*z|Jl!7kEzl}_G$wEJs=|>1WVeXyCYCeUJagMBF3ZzCWBT;vBpA#yX4jgmtcds3K?+IOa+3PL9 z8NvD}*g5mvhuYoNz(H?&s(Ot{zp3duUVWu#_S~Q8g~;pO*)nftD{)7 zaZ2>Q%ak9s2L4!|uZCTV?R#aRpI#oJx7mH}?88O*V;F_4zi2v6vV~V(olqZLDI}Bv z?U3Cco2zJu86*|L&pvQB)?zC2%V0{2xajI@Cuvb*iMNXLy{Q9BC+~$N&~Rip1AkY( ztuqUuRhEEaz(KH}EGBwd`{EC|{Z4BBs3+3iO(*j{=W;1hA8{JYLZU!fiAcs;wEM+EboMXlxi{ruD}QVWNWV@u?!E4fJmrxN zx*kv4R?~wY6I>FJ7%x=&?rXLUJ4?#twQ>+DoP8qBAFe);keB$b-%m^BaeC7baN}-GYJtgA$|S27mS&fzgC9&7`8^$SUVy#XMut#v9qA7Qo>80*1m_Y7EU$hG)b=Mr5p5vq-~>|B1o41EP_#CsB$Hyp36HZdol zD{=$iR8jPLqPVLt$diu7a5E{z+Nl1ok=p@AuH>(g3qM4U$p#oLn3FIW#Q8{24@#PHMAKG?z#Z``iZA#PfZ-= z%V4TK-xKo0@NeVC=unU#);`t`JZbZ6_Bne3e76ZZ(Kf6h+PD6EHb06IYhEH~Xq)PS z@8&A%zFpaLQ`6gWO(8nvXcMjC*it}$G??BTz;05m^9hsa)nJuKq%B_p{!%OglL9$1Q1=gY%eUe=R&i_}pg1sZ*q>x#~Zr z5G1#rD=O^YGeN>fx1o9ivCGZuYj!brW&M|MN>pb!EpMhV9H@mVsGOGWq#kuUm>gaW z3UwJIR6D?1UkLw0^fh|TX?55#;+RJ3T_mhW`(=x7%kN6%KkpQOYwVLpM`l zws_ap`|L2jA#;gGx? zNi9BsHitY~{$6d@9U1MMMQ`3iqB3Vr{k!26nH#25Lng_zXd<=h^0&MuxKeP+!gL*w z%P=moU5LpQmc<){Ns!OBI6uZToP#sHM8m;gUl_P1OK@Qo?2Mxv*34J?f& zCL{xoIY4@oULi)HYwHourq(NQ@;+o}gs&I|X^GwD$KwZ6wo=o^0|bPQa*%9xOc5iA zm~WR?+k1rNHX*A=hDx9&QVsT;lbrOo?O*eYd_+EI_BPAoSLJ{4RmYvEkWIP@DP%~0KSj!{~5TKXlKD&ScuC<_iL0PURGt7U-qn903 zSX@@h+*_ElY^?$I{I{#UKpmX1xiV)CJTc7Hbyiru2{)LpKj!zx(J9l%qQKFpafK#$<{Cw{SDFn@pY{#z8$=J@>Yl+ zHMcGB2ea&|4WQ%5<}hfK8vHf2)^SjP zGBR@?lDqn#h2K#QWCaw14mM=(K{656+`2Fr;sX;~7Z*6b_2YKbY2JbNVcGo<1b0-+ zq^~7BmPPqyd2rNP@lnks69JlwiuaWi8qNbWV>KQk;0C$?Pn&h<<5g<~Bai|coMW%R zD|h)4chhO;I2M81Pq~C^rlP_I|5M;5p?j1r?=9I!)w8l zhmk`rowO35p6EmMJ?~gS8~i(8dN4$Vwr)s|$+Z6qywu-RiVtiIJ!5X&ZlH=x0GH^R zNLz}&QTYod#yLTe*TS^yH2mS{DmeQ=F|leTvS{R>{`I$_mDO4mK%E$~UPYjD5Wa@E zpgm2=42T8AQ<18Ch-paEdcBG+!zYQx2pTT+!&_dQI#A+%%uw4P@Gvlmu{*3u90S2y zjRLwDK!}1PxOwxai*@-3xmh4DGDk4;(?YPB2?mfG~!qWH(ijZ7g~q z=u6Dqb`6|5Y4F_t=|^0d!j9w#8Ug6hDB~4AIG-L$*l85S- zzf%XtGY-`+1iBKz_S$7n8(hqK7hXMyiC^D|Fq`?=pCzG1BA?3j`0)*bjb-=Y$tUz^ z74Z5IDk6I|5-?rD+OZNF$u=;E7{iMP7&GJ=cK+N!dENK-475awX7jsHWz>trgR+9p ze0f+NYwv2BkuJcYUEXGOM(XO|S^xNq%#+ilp{vPjmJbI^%6q86O7jK{%-eX(2SYoa zuA=PH(51%}AJ9oMZ()LlLw)PN``>a{M)M)#ZSb?eE)HO4J84OxvJCt__;`8Afb~K2 zHTJ*zMAX~y)>nN%8TRj@49jB%i*@(sZ~lV^wT@zd3R=m9&nO1IV?mYfHZ>?+yiXvo z5MC$?@o&`h?|1)}$mi#qKeAx7fp+vIkPo(hWo_4X9Tdjp#GNH01Gr)R4re zhQyZpG$W6O1E$y)hagbOBEuK1Yh4L#mFSB9LCr}*k3l)V9EXHbf`^8pW(pjuZ)oRT zJJG-0EtvuNsD*v>%L8a4`mh$Ngjiz#G(a7Ab6-T*vi|LnjpO+Nl<0Egkt+(q#PeSk0 z-l3Crul&<-pVL@md#;)sIBxIODC?43U(f6@X_h_mO@1zUbA8qBHdprBzg9AE0X5bN zXek={<3RkzQC#G|+pws?=otk%Z@f(iaxG##R`T&nOUwFLp=oHyAcpGfnOS^g~)ux&FY zkd|ez_n{^HPX_&CnuXecUCn%z#dCzXTD`NmVWT@fVCR30=BpkYbW$(Is)}L9ts+Ye z1e}i_?9MfYG8jt3>Vo#z>wz0!M%I zw>UOSrokqanC}B+-{fyf8zWx@U4o5WXC~}IiTS@+!{Yq?Hck`;%4-Xwrpd66#hec5 zcIWHEe9w+(FG8qkz`$%szY^znnEhF4+PVMA{5FKsK*v`nGeCc~SA)GGV0U4Hiq?Y7 z*JYK`u-TbZZ{Cmm#b+{Y*)Ln}@!!p*&px2PAw;!jGT4(Z&PJ)C{SS=PEZNXpu8pqk z^fB)_Vk3+*grK@|ABp^x8F<^a2h5g8QWHOO&56Qn&ei^mNZYBZH~pLA30_e9d70*O ze5aL7QpF^ZLU<L(XVL%oL#b^RUrlXQW)W%l%+%=ODT#FLiQ;| zvhO>Eu^WXk_CdB1DqFIXeP4$eYe;so8)MDB@5>m@%XM9!^F8NxyZz3$>-wDk&gUOD z{}}IiyHoQUx_|i?e|b57-;gU&y>f$~SV}B$WT_h87kbib>Uu5J;HNehA~-+F zKqn$C!C|>3;9Ao1BaVSfuk6VTg3n~^$m5#0>-%_~X|_Z?pM=HU+<*j6bOv!UW}yw& znIK+2$7}NHIg}_0@|yHol;yz|orpz+RUe1NXif#UUb)4M{`@g7@6%@!Uz^yCRJdJD zSBife5W=`^-yS3MRE(x8Rz!otK(YYob7AfXFvKdku5kCAA#?3&n@mHoj6|zwoswsl z9M!!S`D}4$8Zf8U*W(2okmPF-8wZm?3mJOp6rXM>`p_(F1AQCiG8>(?&k_ne%wN1< zI*{RPjg+&nQFLz6+s+1_nxl6x93~}K#E`FISXZb8d522+#2kO)l|rSE{*$8~&o;i} zwPL2=(WM1V5$qW(G~qRwxwp0418PzNjf(^M>!WyP7JwWLrt)d0t3>CtKQR5Fd{4Jh z`}*V5 z0G)tDBo}C&q`fDC&UPlq1b->*>K?cnCju`iq3aC;C0wH_*Ia(Pd=0uX(Tw-Q2585A zg)<;$iFZHfm2C)NY%1cYf#C{X)=RfV3tYG@7tsKQnEMw^w=C8!TdJkcsWF_uizWvT*B~}sRN zz(_LvBP02^c9{rgJ&+>}q#C%cnO6(H8HO)ry@1io;nI1y37({>8jm&Smg0J>6y<74rQTihkS0yej4muP2@935O<>hGvIpY%4XYRLMK?I=k5)Dx-Di` z?H)+O8QIRaaWjVq_sI{ByQkym2J$eqh%wIqPOW?vnUK%|$L5=@J0vt+2G#Du@-ZTP zW^Ntv;z7Eli-`{Difh};UO>SmDLaALpB#U=F^IM}6Z2w%xJ?89&;UBeoqkb@x(kQV z;wiDX^r2LrJ_52!Dbbd6x?Uj>C7NUF!8UOv=mK<8^$L!f78pH1fxt<`p zdx+0gx^GnvMrj>9&rg$!Kqxkvl<70yuj5_^+tsN;F{3hpGqnYoHxa;bu$36WLdFC3hj;wa^ zBX~#OzWFNm(8S9vd2nh+c#*`A-lj9j4vT;tywl<{yRR%@kAq18Hdyt0c$3{wjtOM>Ud9*6V1?*xqY+RnV-#_!2P)uH1YU4Ki>?(})K#iunYKiOd*zTA`GFI61PSLJ7^_Wg#f?yksS{$6h;zs2gJ`Q3PN zhffsuQCG_6o5zz_3!$wcEP6&5v%7rN+chk+GL3Xe9-%FG*$~_^7IFRILhli=0nkgA zzDPqgn`XH);`dn;acKiEy3sxC<(6D8tp&fGMuWi#Zx6`nvyK_YTW`Fv-I;7+=1I1X z;1DFjm0At->y!s%p?NEbB`t2tMLsz(Znm=hi&bvBlRrMDJVZ|Ta3?%`Nt~sgnUfG8 zkf>K=rj@O!fx0BBc|C$4ng)&QSMnj7TbWx70#lT9wHg6ztem4w+MA(s+C)0|n=dIf zFMRkx39OGSny(tFHc5v&{6(~7z%ddburCCcn*Bcl5+f382 zG9Vi@v?MpvW_RMWBtG8fdlr5tsa>pkP2U^z`ApW3&Wv=A&M=l<2tHvAt*T?v&&i?-#dD37MjcNEIz2fy+2UPBM(WahDQUG_t}U zdM;h7%<(Ci?T8Dw#40m<28_0nxV|~VQ=9bW94IyZAbNjvbR=lY^zhZG_Ae+%UaWB6 zIh?LX7bs2I1yIb5RHy~o`8EbcWl*NvxF+OuFH0+*)|dbcQ7)?PL6KW0tOSOmJ$>#X zWa|4U2WF3{#0qz|pJ*;Ek1(}bLkQuUZmCO`rQTW{Q|hF!!gT4i!pQj0tX((`3nS;S;M5*6{~HhhK|^^Kj8cwM-xaECCjhq-(ljEhrg3@n`pT$AsKwal zhnq}<`B|fJTzSN3{Z$_E*5wjqzGx6h$N(V0JR}Gx@#;Ggvpj0}6+>?kXu~B@Wl5 zG!7s7nW1N>}1GeGXSh$(6`N9vU8rSXTg!Uks zN$!U|@x^dcXupuIU-`y;^$fi+8OjTehjXJAhydej<>jDk{#!XP7TpWJi2JA)a{en$ z)BH*HqrDbl(|U)mw%07b0KG!Q)zUTV42}aT_cz94ddzKz(YMd% z8r2-_SxrA@3^z!6>>}p6MTJEzcePUf6*Q;yq<1!yuTMD&uJA!yCyxl2K{T8JHd^WT zm*<+tUf1oiIo%k>j+}?A`}mP18sZWIZoJZfpq8@b$r&DmpTSsR%N9LAL~!?DYd&SR zS&~7}#@7f16A5yuLT^*CD_&p1)=&Z}P|A;t=00@e7UQegg_EsOwsa*ynI-(>wm)-H zuWad?l?k!A5vn~t`1luBA?2K)9vU(BXlp^7s<98}nbK!~+yaq8==NkCFqBxz!BR+|+601$Dn`Tiqu-#}AF9yPQtlh5}v$^%(bxk`Ik8rff!Obx5u-!fu}VNZ%+ z&lJ0+VKPHe4zt`ZcH>WfsNu1fF$GghZ53yBS0#P(h3p2TY6A5NlM@z`5buLZ+<+(6 z7L7U|K*89!Im@G5EUocXKKik_JhRAGW{LI$t^A{n>1^#nd-9!3lbhRQw1-!0!*RfF zl-R_Z>O_SNrAZJWqqz8U;@x!sTf68bvEe8yj2oF$y~qpw#RWq z5vW2bmp&)a%Kx4uKD27aH9Qr-%$=nj?r(uj^J`&Z`cNkZtm|s#uWvLQeZAP*>yPwM z%e|e)z<%D*NxlZUu>BtvnuyvU9Pgc95En82^)P3wfNp!S?{QSevaLnDxLZhaG9&{s~MBmdq&O0Asw9IDWl>xRfNsv!a~gVch0<~{c) z&l=yK9OY;oer6EH4XAQQXP{OG-@XZ;m>eoL{}CmW&;g0#*Ww0Vst$y>peb8^SQN3` z>ka5&IuxfyRwD8G5&qRDo3#3X(AtnVQAa9NuUrI2Dw*rz3(|u~zG%hlixY7oi2m(S z-bo26;Nu?CwDhgvbL`y8;-Ap_Yj3u5>%2_w>S--F8+Q6(ivKY(r%W zeOXDMW**r#uZq%dq;HxP|{jonE)eRLv{myW;K1f6=G3Hdgm{4u|EKFJD>eS~wT+}xEv}H~N zfR{~yFHdi8hQzteIYn|s2Z0Ps27~3nWYf#UZi=IT%&8?Y#PkfumyO={JD;RqjE zar*uvpEC!h8a^F7M%Bs1O6js;^g*<3z24obIGeEW*^X^q3TENFsE;{QU=~&n7cGyD zY*h1wO!oSci^m8(xF7OZr`U;AIyCycjvXk4evl#IOHd(d2eaEC=TM=Hgxkj7-)Aa) z#W*ddEXsb^$BFJbzCe|5)%AjWme2bu-9@GO6z`+L+9@TRnVUl5N^F{ZU$Z*KAXY}D zSXXHy;bQK4=Rxo1=}+uR{zLrii-};GkllFD7xFF5Jj04Xwl1tq&B!y2B1foc$D!am z+I@Xw_lIp-bwtE-vz-F@nJ2B$qO)e527$ocpHB*iB|k;kD)^f2Uuok1))|$)l>uLd-u#l-Lbi9t~c|R2e!=Jc=tb?kl*Z zbe-SnQ^+OVLK~vV#vq0~BHUHv0ZDMo;nf5VUT&~JU6-}gik_%k#M^s?^t?`g!(PJJ z>(<*~UTTef+*l##I7lOV@orDJtjXGt`Tq48OiFD7y)3q)fuX{LK|Tf~kOhOQnx|T$ zc+~IfT#sR6l5h_c<0!zWXMO_mNs;Yho0I+RF@dR(VM|GM3Iq8@GBy!IBEc<3j3bU( zB$>CLQ5hizNwiiKW}-nPrp|?ciK*fb6lV~QY0Kloo;j*plFoal=*A9sPFua&HW2RY z>(3hzETh@}qptP-G@m0r`y$RzMNkTn&t#ySY^rid*s^1EzgG`?mbjKkR0U640=H;= z7mrMea$V>Bmxt#Gbgs(>%o!^Dm8y?&Jwqky%5kLh&0gss@+hS1QOW6!gzY+SFWTLh}aL5SxsOtdnGm4>e5 zr6{^rEoo&M>78@TH^RuT)(2hX8Slx-rD%%>y@aDPxq67nxk74SKMN@mBmML;F#@-< zcRw{2uOGP$y%_#v^J}V!Vjw<>+dvw3AmM5N(l-7}AIDuu{i70{quUBUggG|Ta;Jzr zOM|=EjOA%0VtIsa_GQkdL`5NQmFvest@?ZQpx5lu5(0LZsWTWyWFz_Ek1>Y*>Azc1 zsof??q;2NdQnje?0O025X0$drWxTT&b8=k&ew*&CP>hMY!3;_#NezW>g}st$z=W`S2ukwK7gNRKLchmBL-v zresubQJWqGafYPSRmlLSBH5(&7E_i=z1Ngwl^mO4OT!(VPKVjeAD4R>?-HY%LKw4u zX4utkKwCA=cFGSM@JY$lZh{QCI&D7@NE$oMuAd($TLvW{__RJ9iP)c2C2kQAiHum! zjW18spId;;eN170fkP{N7B$c6cwxH`!?G|`%$B_o+WU%KU=5@b81J2Q{+iu3u#-Up-l$i>|p``dp|aeacL0f?TVTzygE=njU-wl1gssQZkg+=snU zoRQv&Sa?{ul~He#dBRM6c(Y0G+-0}!{A1BK&?`R4i6q_xdz5dX-;qpb8qB6x2 z)_-q(N@rn6lK0VI|Iqi;4v?McoujLVQ&ns;+FriT#oj+~ym#982GPdMt!IkdLLOD^ zb!scz;h2jG;?0#@t+EBq7xTSD?}E50LNMdtzN@eePc5ej!@!Qum-)=eG+tPrSUEJK_Z4_Tk)-lEh`> zH5$^U5Y$_ekGb>MbOtbHZEMWmZ>kv3wiDk_V=pJZK_9-}C{Y|oS=P5e!Uz>s#X!U^ zeaebMgCoG3;HLA1yweNT`uw!ZOxUG)Y;p zsIo^NePjK|qPn4M!l?=*LN)i-pSW!N`rbBAJyKa#8xwkk2qzcCt?|hG%{J|G!4;5! zFkT(4a!w|${Fy3ul7?ah0^r`O-sd9u60xT#>4k*9{c-!8CkEhweMGsiOxeW{8nN;x ze4;$MmDfqge#y)rM!ypzk3rVe&2eWwH)cTFpY7wlUdh8(m-N(i7S!)@xmDWibHJs# zE^e(%2k>NReGmLN)f+4o!;2hsl>hR85h>y9RcPX$q=;j4or?kqUz3%}MiEZ<#5WSS z=vAJh_phhY=iZN|y{y3Gg%dK$ zK|P$9mS-RWyz?(2QmEdc8ibs(2E2k4OpUFkp?4cV^@<}WM4z#p^vq^4q_|GGO+R=N zcSZKQEx!4TRSe6{wsq9vgr&SV^+TR*iRQ2ijdJP_iithMT-=Qkr#oo5m7}}N+hPO$ zg55i~XOuf*Ep*HmD013fKBE2Y>M51wnUim#Ja4@JK@k4#Jhm*54Di;wr%t-BcJ-tK zQHm>9Rj&237RznagsK-kLCEtRRK9=A6Lw2XK4PP0s>Z%g#DJSu+_LY-8ef(>z~vlu zoR5k@cfjZSuj%b)JKh2l?l+so+K!HO3GIj#U%sZHCxAg7P;tn&{lR>BR-U=2&86$|aCH>`jOrZS0V`R7oU-khFBj|amC-TKW zr$oiuUri(NrP7sq+APL`KGvyT0e>KAULd&ThlVEq&#*Qt(E_;#gh`8^=$+fApcf+s zZf?V*U-4Sqxm7v}dG$xwR;`>eQ%q#rfPH%W2(Hw$S<7NDkpfKryig&>Go^Q2Kh_yP zU%N)Ymo2o7Mf&%KC3qf@j3JSi7zEvO2YA@MQe-F!^O6%l9smq8e2MReuWhJ)+_6G~ zc!NVDGgx0(@>}eXT7hMcrn|8FMf%?S;NjBhE_lwd?5A6WEob8I^n!f(Q}?w*iO4jk z<HtJC~4egOA?ja|o<~^E+tLXe-+vx?XCZP~#Ch%x8os)yj>YfTsF3@@A*nQ>16xAI?c7=_!_DSWIN{UGZ^W7EO1)5+ZnOyiUpk6?ukdb+iKH z!w4t2m*ie#eVcsrgR==9k(4G)3g3Yp+P3#2^E~S?JJ243Dtz5TTblRP_0E;dSKA8$ zy*bOd0dI#YEh7xSA23sQaX~N4c0zWRn8Cb<*?V0>HSMHW(D~}`Kg#t%coVB#XyZNo z%LG_K5r=ZqUd03ngN)N?>RZoFRfsC+-{LHfwfMpK&O{pdwvyv>h3R}t-i=x zT1EBD7<=PnfFINMt!e0~PUvs%n`bwv=zP%iqKWv1w>@jiSE#7fK<|g+{D_2p==Wmt zPL&d8m#U7R9HLHF1vcERB1)8ut<5^Vq*L>@w25N`Gtc6$T!Mc;)!4pyfn?T4?%@1u8@@?)YN#u-1A zMD}QqR2(i29FGSiaNlq#y5-C%Wo4i=X^TAEFM3D!E~qW~NbcL-rk&RI;ck)X#UgR7 zw)5?7>c(HJ`eD8xAW4LHA97^QC^rOMy=vYOFB4N1w>`79&`ly>r4DaQ6YldTor!E= z4_$SzqC;rBa|EE{uu7R6ASudDc4BD4pXGV6E){Vp)R5a)2=4XdFH4W~q>}qu8{b=3JJ_xxV7HsS&T!)47s}t{ zn}>FQ-mow6$3XA_2+}=9>7_f7N4yqcbXpw>UF~gti4zg%ox4;W>C{fW2x_8vc^bv^ zc?Ot}Dm=wwLmr^~18wZcC=RA%;v>eEt^TZ=(8yNrVy}on*$g}y4N`wm9Gh{4hmOjt z8o5fVUp=1pFD-!LcM#@*99&?x3EP5;PH}b6O}`71z4OJcdbgEb!K6>Lcoj=kzbwtf+8=hk1ze%_(oo6sLcrq$k%()It%Z?CS~Ql8)l!yDn5}n z3*QH3?FM2c7B=SVNeD2W&8u=1zpO+p1iQ|t$4U~x5z#|>7e}{v(;I8fefV|22%{_8 zph7eq#eM9Zl3v{d)o8scJ^6(6)#i=|zyPSOs-v|fzAD5$?nG=$zH|xIHQ$U}mJMSQ zfQ?nB2q_rHnYG8}Q0t;y^-f!N-g+DEa-vct%YQoisv#6;p72=a1rT3xW<5#kZUAoh z4;cGjj*=qrwCSsc0`EJiD=YjxphN4?6kG0=T$qO*@X#TfL^O%_!VW*?r|~%fA=4+f zd7@tJdNrGFmUT4P##OlChM~@j$YbH7txcW<#c%r`k|f&H(|4|}EqCe0y>AqF8Yu&A zG;GYR*Ed08NT)N5Iyj`-_9M?2dnEeueF@7A$ED$_&dc`=3dYkdda|M^4kF(rkF#-X8zHyJSn^#Qe}t4{_9sA1lxt zdIc|_m}62G;^dem4{UwaB&}`UM3Lt~Ek&&#Clts2S{Ue<_OaH*lt~=i5v3Q%$qpm> zQncooqhA_AaW-DmoWnj#Wf~_=*bJ?CXQ}J2U}RU?F#havy**Se``*N;mE*xR7|vG` zHrjZ^Y7RGB)75ylIG7>HEcU%jyr~aerJVhowBa2MwbHR?2)Q2Rf^DW@;hoDsC2i&N zw*w|n-y-%8zLpXO`Ldh^Vjbv%fCZ-o=BIBSClpdup1F(+zw*fUN)0`2T zgnex%#qF}a5J3?FDux#YoHM zdr~f(6;0s33pirdwf1NS3v6D{Xd+z?I}5-DKAKH|r?#XZ5dx6%dBqdHQ{)5{z5MaE z%8f+5!!(726n}pmm{hcw3*SY?pOgtRoz`j{SATo)m050*+{zGDShxbaFc0r^KzwPt zSf>S0`&%cq&?)bi{~SRDOBwIfP+oP?@&XDeVr%~w3EX%bq{GlLiSPvI_b0V#OnWCl^vDIUd_U^{3BW9KLhZ6rPz!w`zH;(X-5?;=xUuor*x zc>PySZjI$+4ZG?l(^OeRPC6mh=T6q}q(SGe4wb*p2!@`3nljhfV7Ex_oY3^UUVk`+ zYpTcmU?D005hcfRvXBp-k4Td#pE`Lb)c@+u`okUgC%Y#R^7W(}<*VeA5eS(w#c&(kFCF3Myg9HOFK(RuQQ_o1lDYNo^X6W1#AuW)&YvXc zYO)k&=ZbX*uI=(z7~qxpMufn8n5x(K(P9&ZBTM4be(?wt2u^Ue$mk^ zX$*;HgtkPyQ3_+58>=xY&%;J9o5W?@J=uLz^#2gR`s*~Uo%go5+U0R{=mPMf3ydBf z-I;1KD5hIlpi$i4ZV|E%5Ubk!7-j(a1=PJco2-%|?J9Y+Kg%qJT))0P)reU1B%$qM zG+cCA3@KcH21LqWP4)jawhr+naU3gueY#0Q(2^9wt(?d*3Pv=t44p6&KniSPw94&A zHlGr5qnUlM%3R2}>0PjK<2#*5H^PAcw|==7GxG3KVQ=NX(C_{K1NwcqJ)m}7%#jM@ zBcy;<%12Hu#VQFoKV*V$33sL$F&Y8t0cG6EuhYTk}JApIco!Y<`4PZDEyR|oPXHQl!(6m-%Q(=cy*jXK_L{}BFLjt*}#@TI2kZEP+dhqEVTWL7g_E8SOybg=QTEhb0J*$K6DY={k*)b?)2w~_&@TwEX$R!j9=#X=xIuNYwXQ_Be_LP%uIKFVbyo)*g{^C*lDRB2&81w?1T^@N&N> z)%7(#(F%m7{6VyLeL^^>4AVg5VSMD{_alOzJ(A1Fs=2xf;Msfd#k5u|$}YVs^t!mu zqc;I_ka-*i!TLJ+$^E)v3573-$YW2m0v;YC!pCn{EoL!1c_+sy)PYtpKkE;xeOy7Fuw|!=M!4_S+*k|VjX4{=2;J2Rw zGN;gFmVyvpK+z$zyurJ0;;gJ|pZzm(j{$z3$3L;uKs@6W`P|X=fRRd`JIOP_6}Yvg z4l#-(%NDaUSmD4v(-{+F%#mGYYV4^*vdjh;C5+SZ3ID_uFXex+F}X1ao`@oygZ+Pi z_+21*sf~i2CZpvDl&3r0(vct;N-toYl#P%d;m&}2F)8jWYevB!!~0{r_1cdyoZX-lGQU+Bkl3*k4PK=PNr)< z8d09(E$8Z$o!niK z=)YiNUYj{88hHarkVtP*_lG$g-om)VSMEDvYYq>?I%1Eob~Q;h6&oV2+`bgOyTs}b z#ZC9&r>|~T4^?|G6hYhH(G{DSEPdv^CT?}hsz1jv6ZO<~Q_rr-Prt%mr)BS!)t~L| zeE;0dr25@p$yqzrzdMJivV3`ei28DP`MhT$CeR|7}=@s*X}3QDBuYA zos^1}LEE?_x6#UdP~P?Jc!EoVb4JjJFatXUEsm``&yk2lC!1cb@mQoiDt|3S;<8%z zKDt;r=`o3X9G{MsgA*uH;{#S}o{p5S-^;#FAr){@`psGLd(%5gp!j1t;VC3XD~_Ld za}Ly7R!>Mq#%ncz&j+CYlgf<1YoA9M--9`>31i4VG>_;%hX%#x7D?M-s|`q;@WyM2-WI(X9~E#ip-dBDVlJRU05Tt; z0Eu6`hfTBBp*c0un@%c0*iut7B|Tr(*~LZE;qGwOVWzz&`Wx4ULwp0!&>e!yLJ(FF zI_{{J`!MlnudUjhc62=HTp4%REI{`jc}7g5Q^~AA13)yi%tN`fxl7z){1k8}^%k1L z&T-ra4HSnQQqEpr8aAdIIDIi9J3Q~e6-IJlCIGat!n;tGoi?-0)a)Plpk$wS{i2x% zO*)yxyRtOo#I5(%CV++XPW|HCo2el~k}{zDI@d7LUgE9pA0BG_zu}?!T0?e0s)X02 zA10W_k3x8mZYc-j8b#^ZCSF?A#&30WMmqUAGiYct^u|v!-P&?yiaS zS5=~+zAPIr%$b-7qTQK_2JR{TA+ZLd7AYgQw6PV8FkK4>GSME$WV(!mVrP=%N!zOY1$aA}{a>i|Q>96H20 z*9ZqqZj!!LPAi8l(=8EtZ>c3yORf9&)D4d&gLn`2!j$yAS3Z28O7H|Mk=7gk;BbB! z3Xjcpc{koz2qHU@tFO$Kp_7>W+I@`|43>6*5D9sAwav zn$gJy=@A=8$X1H~oHu(bAHjFpIk18hL)@n)x_Mw0Qje-U_b|4zA#qvCnV$?jD~isNU!T*- zQIcfLNviiB>Z^-eD zEviO4?LFub%NH&-=XBe#af;dJHEwvO5YMLr+)@n}&L7J>Im^B!aSP)|2M;M74@A6I zsGCBwl|LqH!dKM4h~pV<%YW`#aa|sUTjLlOx1x*tb+@&E2hx{4aPEtx-==xT=Lwet zPA%?5Kh;z?u(gEB*Ka^v`Rih%1Q{vSoD+|kh2IKQ_G1JU4H_p_^4p94$IGFjBECcq z@bX0vxMB><RpndQ%xr!n{MjbhWFF0tmdn=`E@BnY8>^*JV9 z@`Lp-jTXl9Xe*y+i-rc#Mq|aWMX9a5U0Gtd9(vBD5wWS%NWzt4a*OzRk9;R5U!nSaX3qJX84)&j+gtMD#)qd|H0(yeI8r^%X;y`4w@i!pz_nS8Fmnu-M`($6g2NZ zSgkqMWa1nI9j13Z1YJuy1spa&Ailtx{mnr&J9#&^40OM9!bTqUCzQv-gkU3GNm2pJ zR$ZN9VUN30@Mq)28IO-yDoy;VRy|`yy;p$Oo1LRkdI;jwgQg<6Fu`DgC+bUmX||Sa zKzOEV#p5v)n&)O-oG3yONgzb2O2lkLhKjoF{Aw6Ml}8E{h3=$pjj* zD7Q9NH*uRp{71j>#uVR^|H$XBIY&{*;do9Z3EM99H~%xyjWy+SXm*7!UsuFkhd-pz zBPyNOOH7+DpI93u$vAmXR@DOfoTrHo9?5@#?7mSpZ~Ji>Sf0q#$0)2X?caN|#0uj{ z6pjpSsdAB4E2vGeM=SEtd?%L;7&sAknN9wh#po`)8W_Mbj%dmr{3=`>xa_NogBSfF zPcDG79|XQ?+3=euelQ_QuHUzHC)e&7-&!eV(6uM^__68HlOWo5OXJW}#GxNfR?s+x z4A&7U@X*iU2h;Cw(?9k!@iUee#5f|;7WGRImdhubUqy=3F+iIJ{U)Ppc_!)a?R{@A zDwZxrs@8^Emmppc6rSNe4LbKB$|pxsea;Er<@0w8ycdM!Jk=b9uZD5Rc@`F8+)60R zzj-Q&h;fvJ%e;@yP~9g!gT{>!f%}*3@7})_;7?E6Hh$(I4$U}O`)>jN*6xKQin2t$ zmA&b8@>xOCu(pKbMjIPg^e*;c=`!Tz(Yem6e)(^db^w))Su z`d>W)CfENM!T-()A-eJZmJv(@bL*;{28@O)S7V)+DiYtMbIIU_!hQf%uPsOI6$3RH<*(S3e{f&4CIGWz4P8`EiK@C?fK_H=~iEgdl4qs3czO=UD zxfh}y*JCFLw3Ce?d3?h0s?&$E5&UqUwNYuw-#Wbi6`GZI0_SX%|6%n{IBQYzm4y_10H!ncIyks+K7nGz&O`3 z&Y;hAVDs;ChK}}6!9;pFBK4O!(<@^1D$f0_&m}r@Q`QTDxK+2IeTFJf+dG44Zq#Ed z*;N7PQv~olxu^d*9qJ+&kM8@CIR5K(z5d^PY@#zvAjVobm(=n3Jj<&lVin;(UiHF5 z%P4Mrv}Y4H!a=HXu)8l^QJSXh^BfE|%k($bJP-nIluLolDO3=ajWfwsiCEtXz2Kp| z4Un zml%UI!i}qY^XYxVMeyvCMBrR^3MVLfwS@C(gWRsh`)l3I8$r_>vv(M;`2|uPQC$(0VTzWN(ep`5$N^=oM{VXLffTXh@{dN zenk8il*QC+OPm0FwO>bpUZ}D-CRuwmTPr`yYWoWqrgF8$P7}R#;lTdzTFrok;|2F# zOeh$dv+VG)d6L9Q!#d%+n^=V>0ll*-Ilg&?I$jY}b(Hj;#Hr`*p!;*j#y86?jTBV7 zll_*==?^f{x$0PV(P{%tBoFi)-0`Sr3OF^-9z;=jG!{8zF zzMjraz>V;Bt-5T?v)%A{CYj48AR_RYjPzqjY(-9HcF4kFU(?|ZrQK9E$)_y2?X8Jr z&nCio$1&a^1-m({T_O<2oN=g9PV%wpEr1+!0S&$=lrt{#@$^O=(gT&~{o}qc1B%*Hi>10E2E~t0jkqKGi&@A~p z*+iLpcE0B=HMrhbVo#RaAQ|gwQ0^!mYqz}8f7~w55xp$COOg#8&N5jLGEW$@p0Ip> zRTLe$%Rv>Nhv=IfPm&rge;qdF=C*U73~Jvypu77AOM=7fEs#oUxpsXiR^k)hX?d&< z?DV}#e5Ejd1iKO}K~V7cXX+NrV2y$p{SPdrIr@r@*qK7llWcgL%R^ zvJEf@HyFT=;+C5fKI#;K-|KMrzp6gWb zKt%1Zn;pAiY?mF@bKs+7=-jVNwdWsi`uXsGMR8tZ2W1OP_Us<0!RVH``)wau$CusH z;p3bx?i{uScS$cZey3UeNymp9Z$Rlj8PpeC4n~*8YwO+&7rW(yUNYmFP9Xo8d8Ijw z6QqA@c4Hui(Z%LlL$fB!h%L{RS|X3_2I?g1D0T$ww&G#6)Uvu>HfSduoHOCt# z>>zDc`KvjhEL)KMx#K3hMs2l#5O!NGEmklQ+vwAuN3`rb&}dqP^4Huiu-dj_6m!-lz1)C`kJgxpIt}2S6j5?VAY!Cr zJ&-#vQIBkKR{{y~f|``aBp0-;*LO>@#yUA#I0 zv~1@caKb<+BY$TJXC3MSdR0>uV!j{1`0pru>D>{1NT}S!?=r9LyFv44ICUF(junY< zKsmE}hD$HkZad@Xa8n6ae#yAX!Crh*o@}~o<~pb5-0@kL&`#dp-gW1Fl~}%=#<5ZD zXt!MxahVM7yeOZ6FYc}n=eSNJl)!L&{ME9UcDULj9ptXJUO_9GUPRUK#+KpSb}f$% z8;7fQDKU2+dWdi)MrlsBMmnJjWKMbG?@`eZ<5Fm^|GXMRIaWG?*XYUAturmM59b)M z%*``EQRHwb{CxOj-H97tzPjXb;JVF=--CHR;2`9DiBND6LXGx_Bk1QkqD58=*$2hmKL)XmgiqE_PSU3k0MtMY96f>OpSJk+90Qf ztMsl`sivZj_UcjZDoIyEnRkIOkGtV)M}ijaxNpFpT+&UcUBWYE#=4(h1Uq3l(5Uy| z^9N)?H9^4mmxUJ3rmedfL8vjdVho)Js4_@&&WoyDr|ks|as~<26lvtjW}M3|@9J=_ zwYm6qFEV0lAjcqmL11)kWoEZrHIkR5SgYOP$H%)wH7d21B+ zPwZ+Xvh@RoRF3k<(W|oxCBl1bt6cLkEGA@eM6d9%u*WXJeYSTrfZQ?W_^f4DLFS3~ z($hKi)+Hf7U19yqw^hL|!c?f-mKj0%$p2NTxDiW@bjY=vYUH>f*ww*m9GrS4Z!EEy ztNvGqw%M_6@B)3;G4)eWdB8-Q{C<#79t`$2IZ&&j+gwEQ6cn3kOa-+*2cg&3O z;r=R)Xk;?)Y-+s9rhSq|M)nT=={Y4s^wU*6qvvtALd>eEb(it|;;cIhRcFz5f(+Di zo@`IaBJOSfAOHn^^M;Db zz4iN{ySK9UGfKypm(rm}kHgaCOJy91`_nd@mPNM3G*AlLE1XgJ&fjn|?mId8@LzK( z0#Ee#Vsv{3y3wVB;eIEHBbJVRSs6R)?+=y>^{c=NJGj)1w-j}Uu?bIR;M@o}j7ycPNzCcr^d!Jz08Bc;A0q4m zZs>)vRcZ{*2o6iX>D-?ay^Sp!+iqqj=xZdJdu*1H{pw7g=F}WMHX2GFJ7qgoU2lGm z`m4vyZfYkzAjfM;{1b=X{rS0Y%Htq943t3c==I+lE_8?*tA$NTlP^hh1f$3-0=7LT z-?A@tp=(|_0R^b7-Y_Mr8KGhrz14~PW#};t1tN1Q7^hXIwDF;sikN*IjQ?1-$w7D% z{hhbduD8IOaN#B39{O^I90(FEqFv(1y2k=Gy>00UE{dH@xNv~2#|eArCQ#6&X=L~B zZOso)dk9z$YlCsEeVvkaKj-<)O&|A;>YcbFlet~y?1j}>Af!DQh2LSwsO#si5}MLN zIdR=~6UmI^Hpq*wlGv!WVYVA98>0SRWAFm+G{C9p+INJX5Pzn(xT+90Y^SYJ{^kL) z?k0R;q#a-M?#kV-`RR%~mQ!bb-=e^{UKtVNHmeDWfIBWS-`L=c*mA;`>26IKd+y6g4efefMO$71kpk#+D7mN7$ z!MkeNq(=gIWSr$VMiyp${)rDn{rvwR?YpCzPTOtAt|*`)GJ=3(LqTAqN^dHP0wPta zh=70z0)fyG5wN49^sdrE?~p(cP*A#b2uVbgo&*FEAcWi}^L^*6b>)x|&l*cZ9b_PSV}MM-*c=vac3ExtgnR&gpdq>$M2o0e90gnD}4 zd)ky1+Slv+R;=vy9d09ooo`O+yQY2x0Y2u!)7Z)0FUHE=t8doVXGG2GpmfPKByUn@ z1TESd_63v{5PeED(PZ^nQ=FN8XOL*{;^T`iR@=OgJXdd`>54s+io&eUYdAV>)mm}W z5SoOXa8U_dHY~qOG@Jk4WDI7oOTG=wrnRp8KU-s)dzw`nRa*lHWggGL>wDY zKUyZZ(4^$g`L+`fvSFp<&x+vQo`j*N&#F*g~!UmZ6Lvvvz{n`Tqqs{WpIc-CHFc zN`QPn}k#^B@B3sN79u%F zg|13&@V}%2_ZJrURkOB+gd+L+ZHi}gx5Xb=W4oWcZ-u?;2c<#c zy~Pen-EecJrSA%tG_F7q>ONb)>XIe4;-Lcz)vwR}hZn%Hi>TC@b%O@JNx&PTUHiGX z->Y=~sfFa5-xy3a z=8_V_c>TR&i|;9f(C(G~R^}B|N*f4ysV=PAt5nVyA9C75Yu`%Vec;SAri;22D{Wns z4YcO~@~y~a{Wy(TI*WIAZ`Bto^>&gLQ)L&5sd~Ka3%H7xIn!*RpQ^{~VJCK)W+mWU zYW@yNtZhT>iY9d=w#oZ@T0r%YJty{0-#HWy=9?KOy3~Rj&a2!+I1N@HBuw*vJ+XNn z(Dck*E_m&@%^Kq^`Aei?SFO{MC3giTS9ue)h!;ly`lm+a->hD#&Qjt{9 z(woxJU%#;J7lFUb?hNaJ=MUeGb#t+r!o;z;t-#n%MDFmfrBS}-KNVC&ek0x%4Ow5Y zSejf)H)L{}=T)~pN=4Bo3c)Xul6r35c=%WA_S6YxBAG#MH!_$>PNs0UOZ~Ie$;JVq zBuxfRSj7c;Ep>)LysFlTCjtvDvSRD1$(jr>crz{YJw2c{im;e#RCVl3X{QD&hElyI zI$SbLH!&IHN&-Kw9gTBiP!oAXUxiXHzplI9%upty@_KWwpEgXf_8$%ZOWX!?d=o8E z&jUdBe+FWOTJ1jXpT-<6cf%N0;>GT&xk8WHo^;vHAnCm{{&!kD(QBww;!1zpaEV{3 z4|Uj~GE%Io)^WkC+_i_ako4wss%e3>5~o9l4GtqnUc)qk$#*I9g0craSxc&J3{nu? zW3XanK_J)k>BW@b!$X9H0b@V7$H1vuvaW1?@VRFi{VT=I?Kzja}lp( zJ3DDf%Ds>72~rA9H@T7e5`*43Oy1hCJwm?-wS;k8#||T`D%M>i6D!@x9zE*z(j!t` zHkC+3P&YHIsB-F4toY}Eq$1icB3dK+a_PYW=9;`J!`f$w#w-@wJG(e9ph+*-idf|? z4*r@0d89*<9=!P39=Na%3=@^&RcKbVeKqBV0nKO?3;q_J3BN4T=oC%5OO4H}mZ8nw zW$Xt=zK!zT=zGqGL;7mqHDZ^9Ov;C63~XpGon@*+uTR$V{;C4o*+p^QOn)!id{E1Xa=9CY!;x;0R4okSH~O**;u z_Z3HJFz-IQ>Ug;{T&xSxK;UF^ZFIz*sX%R#V(u`4_aiUNS>!^q_f8h{yO;7LtuYFo zf48!q84_MNWmNM!S8>A#q6s-Log6}3T392-DPKO^9w-)DcjeXa!T3;W_|sq$)^>fW z@A@nLNd-O*SOfNMX<%9$;bwa>52-!VaWF-b@#xjNB_ovZD3r71xT9>8>8mf)CF0U_6_m>-2t#c?JCNYOb6$D2EA~68ZeH*@8n!2oQFyoXJ$ti>_7FC z%jqhrl^LRevSkac&PXyxrf>Zl^RJxVe|q4kY?n>mc^B3^>@BYPc2)gKOdH0i7Q=Ng z&~~aPqjYnBfJw0@|3pb`RGVg{Y!|?Ct`J^1t-&g2@DRg`Prbf4i&hBw!q-~Y9(G6H z$@M`5Nq8iNZVysE&)N|``jT+5!ycN%4$2t9E6FNss9KI1iN__0yKDw#DayP3~i48Sz2 zfYa7bc&cWhTzc+sh9*l|?y151geQGOf`7K~Bg)oQ?)FGqm3hyY#kc%~9vHx}S;p*e z<~fh=%Vi!LAk!%dJet#Fv`4HikMZ7aAa(Q?l8>ae5Djn)5;O~t;+_ku)H6%QJK|l! zYZRx$c-84HyaD@3nw8a^yAT29<31R4;!M7!oQw)wZJ4q`Tdn3=|3^^q@|;cUbC(nw zrJmzeKUoA`yKBThMsrtZXKdNHH9h%>g8}ZCKz5nuV;C@uyVQA%MLanuae~j9PQoWMpL$pAQ_|CGH7O?UM18~cB@zqW$DXkk}g{ELZByWZtp zcCJ$;jwyOX__yXDM3wKroO7w*Ri7+?H7rBT=7qLj1sqNSS^cRRE0UYl%T?{z10#&- z<_j9G69sBMWDxjd1M)pR1naD7U^S5|*h~iba*50q;}KT4p1L?SLA(G1xqN_Zer>I58+2;G=V+iZOK{VlEde0W`j}< z)vrS{>^pqbd$!xLr5bZv*CZ_f{Nph5{)kTB@ehHKvRQ^pD~^w*3;ViZ02Z{mZ<0Rx z?H_l^p#-k;m(rLO??&E+<(RoPIDwz>(ypDv?+25W{q#KeJ{pe`ffF=5R&tEZ|%MSd*`X`_l5 z1?@yfrhjS9_rpFCfS=kd1ps=&!s8CLKAXBby6cWgP`kP+>zGOxVx9Tc_ltl{j8pK9 zlG|o7GXkF#*4IjNv1Qdr1sY7Vyk|`F{oA{C+iJ8+?*L~=O)%Z*kJ6BW(FeY7e!-%y zSD|xt;Czju@mck|7u@*Lzz*R#$#vL*1M1}0t!Mt?x25CTd4|waYj_!py4ybAK4=9& z^Ph{sR{!x9#wdlhru4&p)?SjvnPn}}L6<$gf9wYraqGSx?T3Sh$_y^QK7Kax?ti(1 z|IHuw@`UaXndE6cJjDsrr!ZTw8cD_Gr30zHr_2}oHec?`@L$~_Q~8+-l^C02la)g5 z`bDvoli5rZGe|Lsj}@=Nh?9|0LjC#I0T)#xHV94PeJEH=otd$a!rE*#!)HgQz~@2^ zlAH6pFekQo{VO>+sk`+T7%vI3P0Q&iW0V(=nllS`H6`9(OTOEKPk8_KLXgDA0hZks z$s5=r1sQtyNC6}>_{nDZ+ zHZ7JHNleWBZ+`cG;V0e%O8J5?RLPn<&%;uum@N~%_m z+*c?Qa?q1m>qNY`XFv&p_^u!AWo)EgL%X})5qHfWm>WUkA2&b(7_kJxNPbY&lixP; zKGrnZg%axU8S}aGlU~aE`0k|K6GuPouxaPun_f?#c=0>U_m)C%zmI1I<2zNXJD_`ast{rnZ+h<$J*r@*@SJU zFNshqn!)C<`@U8xRy;bfoc8ryZqu_v6I_dt`CXJfw=ix(ka%L1_0^dX+|xPsjsAMc z;?Xd#`eNqB4T?4z*N_+tax2zK>U+FboFtYq_pFpr;lXk}VYrT}Do|nM+tyxur_OAksU#|aCiP0bm4bPSYIU;J1_Xy6 zgh7gc-*N_f^!|r1zDIhY)W~8zMp#})kVYNGYoc?et6pbyVnoTYHQ~ap{i<_fWwRJ|td)s*3Oc;ZZc+f)G~4tm|<}O4j?)B zXAs!lNsiCKzO_x8bUKQzrVgaO){Y8U^PUw2jY?^ci?TH- zoC+ud#JnNfeo1c;oa|(^plpj z8EFIwZJ-im-BoWKi<%zcx2ZWS`0Is`1a`mJqa2gR4id&sd|RRwLZR*b5v0<*!Sgxy z5;Ug4mjohQ{Go*dfv%I33b zTlend2ld?g{)!u+NU^WU&owKB9&J=b2ih?7Z)f%!pZ{&sV^E1nfJ!X+IT!K8)(xtR zHeZ1cx|uIfdg0qE&bP8%?cyT-asAp$kgm};DqYj$FqC)Zemo4)H7;T>eiJCupLj`p zUeyUlYG}&+@lV6$-~Zp<-#9Vz=Bv1)n|D6atW5n|yXIZ5hk_5~-K)Q`m%8;noYmhf zj%PmNd@3twi^(KCOIv7TCq5Jcfl5*T)1jktpSjLhl=TKP_J%M2{_vrNB%6F-zh@)f zXYAr5y#tcjLW%`5unCxxo!&M-%Q88gvRJLyWvDHIvXT}(a6X)>X?Jye1M`!eN8oRS zLwP$kML_pR(cc2wr(8rNpXJ74!cI9jgrOC;+5|#%O*oRWQIM2bQMBG_S0+Yo^ayIh z$;x9j=cuMdhfi^R7cR;ZFplMbg2%J9vxQ zYncr7**;nA)Bs$h@VR@}XsEzus=}?ooxo1()puWEbl16#R6Q=Ru6@f;!DoRP0l7?C z0AMgG=P424k^e80m>hT@*3Q7B)3z2?4u#aNPD|`t{XQkT)oRm}b;8*o|A*=fA6`NQ z1zo$QH;JoZlLB0Ovq$ya5xe8N51m+p;*Y`mJshwG!Qj z>ElS*nS!Cny7P?uVxzGpODrlrm`u+Fs3eHo=7eXMlhi5_3Cu26h}_bcYA$b_QU*Pa&GM|%8zXrD zI2SSQNK!&hy9O#)n&zTshcnK^%jDcCzO}kEkgt62TUxF9*;{J@CcL|LeT7|FuB=CzMNpHi2AJFA2cdRV@>;bN6w4BRzn_B-1 z(GqpHA_MAHoH9MfKii|_?SBZ^`G4WMBG%IYo1XP{PMVt`!nj8YZptn`?-(7%k zv`VSWf5NBoB8akF?0{Lhh!9pqb@dD!j`Le8>u=4urj8gMnC`7EwXAf_07k*;qVU4X zgr$4gS9A5%SV+S$%QYu&qTie$q860Ge8qoTRK=$T)*`=adMJUSjc9X8Jk*HQ(=|h2II$s-)kI$?7)wr@9S7|Z->8Oso8FUHuE-% zvrA>B`&ck>8y@?0tO&X%+(6X-@KW-k6tnFNlk;6WI{NEELY^O%w*++Qdf4_Q@3AKC zZO(1CBkv1HTBN-<`)y#ze{t3^vJB!Nuxb0QIJOSe!^)_L;Xe>rA>iCfc`~vv!A|?O z=g_Rv#G#XiQ%>1y%e!`;@57iHlhsqtRl**+P^v<{)oJf(IahLeSepl!xTvwREcid+ zETccQ<6wPIt2&+M32nH#wV(qAslsaO%VQ}_%s{q%rc%2XS}PC7+7a;ML3S{kerFp9|$cTkqpl>f}B& zW?1ro3iMtSc6vu^wd2zmdNrK3O@4fDXu}y#r~3kWdKf^07q=*SS*vcP;9fyU2H@I4 zB|X4vv|Vv#D$6uCaQtR}rN#VrWuMuqU{aOVEb|nkP(tma|BdW_?^Gx?-pp|pT=D$=Ou`It3tDK= z43fP8C5;xh87^4Ai_r{lzj9F8Xe?9zr|@KotaE{I!TRJoUeglaT{NnoVsH|^2on@l zB#w$L7xzx&OREB<4JL&>M?|ZSdU@Ghk@$?n*aF~x@$!B#y2&Kf-Bhsfdij%y zuc^Vxg9QiF=Ub&stM2__h+CKi>a<1l7vtf2556OHuZw{Kt|sr=+qKXJQlnE|F?W6L zkyR%3(+D~Te)7PLitYVZg~?{kY%&nqV4t(scX``U=&c{#7v{=pr~n#H(Y^EpMfda+ zHEb@J`Wq+)(6&awMG{?FzXT_fF(p8MKZc`WF28O{8K>pF^qf&ZP!=|sh0mGW1%2|O zIPD;XB8{VQ@GJ#cL(VBh97)EKf4ib;A3oWY2wW`~g-tDVHs7Hq4f)(xnYFOrLR=yR z8r$G}=BN4#f&$u;RSaha@_UR8)m-dk)0aD&pMBMCm70YRWtem>T|4~gV04?VZxa0ZW7k11inc+Pe)>K*bd&WFVl785!2=^vC?HFRW7t! z+lX}~n0UC~kA81e9oX9cS|fQR%TqBFd5lk95ejy1?))y{Tc(pd|Fh!%Tj&m~ISk;~ zH?+oiC@L29R44U2%=N)6fqXpz{Ccf0^}eFf#=f%4e7VC5rRuEY*Lg#!#xEvHRI+~Y zgbozgSk?N|=d5u=MVcN90x zzGhHge<)hnTfDu5nyBhm0_IyVa86WoH!Gi(pLH?MzNWR3|E(;?KY0-Ik=2r0XldFA z{SBw2xKZL%*=&nN6?eMX;(TntaB%f!4a|j_V2ITgWtLBvgs@zftI4>( zX^Y&gAE%aR1BRxUnrXjrs#?HpaXXbzq*r}Sr5{@~UytO{ld-h8#1jtoPmope&pI@_ z{Cx70BSFe4tPA_M)s$LaOS1YXoS=OU@n_xnCw)k*@j}cGe;d*@0)$|Oi=ON_7&uc` zNyWKrxTDbGoG$K$-O_LR>veX>|Eq`U^{Mt*!c6zFQo)FB5~uq>82 zocdPpV^tR%bU@7KaD18{xNeo9rev75V#_rjxPlbjN!rokX5IHUvD6mSJib4~nB-&5 z+$g#8an9c7PnPW#;=Z#n@iickcp4*_Uv86jVfVpPHmfMQ%CBRt0I~ZN9{Znp^6*|r zBj9c=wo03uMJyh=E$%^MITQ*ffx}g-)74aJF)&JBa4zS5v0y!UyF!=nXAUqG&+u77 z7^nMBzO3is;_3z~tOE5Q=Ja#R@s@$yz-Zr0r-#Hdb%*gi%;dHuFp+a# z^?U7FvyN3O*!5at<@T+7%ca-Ai+2;5f@)y_(T6QRXlaiqh0*dwj$bxSe;wr+k0BX= zoVo#rn!@Cm&8b;c%=UY=0KIsz_l+hDVNU|2CND#(96Bepk9OU;|wJJf^RJOZnnyJGUKC>2?$2ATFckr-Rn zDi;qA9qMQvS*NzLhGt{R-by7!R_hzTFI+B_<`0(VLFuuNU&6M5M_Ssh;wscbGDOt; z_Y2X*O&U-m9c*K39g?|SL}*+e#0N!+n-=6j8JJVf|HMauZ@XgpTv1;ckk?}QPFjpo z8hjYCX65&cxd{)k$?Yb6F9f9VCk<0(ccEzH5X}s`z^_YJy$o@5iaeUCnr~NWV5qkA zp7lH59U5|5o<9G*()gPJuo|`(eC|?#5971)>qHQn6$og69_)rT@6Q|R&9>KBT1|_! z$soXQ!k_$2{oXfC$ujXLiQg)Ru2$i0efs4({QhweGWd7q3tDZ~-+pb5Q+GLeZ?9W> zrans#suQn-zIF`srsz+<9R0`RooDF*!mX+wfrQ->-3r``Eh=%y)j$RRH+r#B2%e$M z)||F%Qw{(i8wNW002xA`$3uW|p55yS%i=7(m$-%D< zdMQV%_aDEs_YdPLVAb#lE8jIg8ZsV#07g+*@`NpP%~5Ixd%W|tKece8ln-?<{r9sY z3=s{Vt7r3=NqehjHtieSd&nXFCc`d-?ZB1^&FSwrxC}TZ(d~E3bb@Q8`uyGcQ6~8+ z!+3+|5diknb6wl8qQ@_q2nEzPg!?myXnEhREDq+R% zVBt_15PdZq>D;Q9Mo7Q8ArKQr*kGN>ll>E0`eprBE9@Mt!*`_CrLC>}I<21|2W!=9 z!EyAC#+{MDv*NZj%gJhQNIO+IHdx5z|J|+IiQ4f|hR8aOrVi#5X6pCAK3>WZG<2hDN21@7}b&uLZ# z)XTJiI+o6458`OP!ZXcLW9~9fvmZV@b@X=YncJ-`n9pq_6_wjjvo~(vrq!D7FM0Y_ z%gkrm?R_43VnNAe1Okgo`)OzdqR=;Eijuq4H)4L z^^=4y#P^XWx7N=`L{L)z$$r{yx1IEed}+KbzPFMQ8GMY_$9r(@)ikIHXh%V?ejPT1 z(}RLvN(8Oa2bwzTuB|AxVr+?w#f47Y-ZZ10o3U>ehn%Bjop~HPV@&%Mp6p_mZpZ~! z)f(=DXu(8%A3WXP;h(qIKM=&WSAChxG)z8zuR%xQdSUP}Nt=rA73R^3?#T9pvr83T z>vamY_`nO&neE>U%#X0$TK+mwI$VaFXM3-zq%=oVa#TTBZ`WMHj%59(%M5XoD&II} zU%uP8H|6lSkHW^j;qUNrc$<<-kKWhZ$~iv|E>uKN?LunPphLw9DWTVE^xm8q>z`;# zDVX?63_SxT#Md5dHQa_9f@PSnSx5K5^C4cS=uBXX_Le3co)H%kfScNg0upmcQGDg% z4Rlo)Iq2Ov50Tw|cf!lvKR@;%0r#shNOV+*O4&^GnrOQQY?Gx{>AE|O5uKn2JdeIC znV@J&P>|HI6-nLDs97Y9V`KBEGY1?F);NzlA0D@Rd<6B>tGDR{HV;7F@6HT)R;Np= z+hx5uZCvHeyw0p$9j< zuUpFBy=KVY66?iuC*zI1r{%9r_vS$Vr^78GbJb^dWx^N}P$}hKdvlXwCmy!_S-xw2 z=0!j}syYAoyMONWZ37>H{Kh9Y_pY8}ACTx?=^VJ?s2{IdA7oqVlx|0j~cBdvJ zlzJB$kysxVc9kytt?3EBoko#i zlp6ic=f?R%8zE(U+XN{tSaUAvAZU-q2IC{8ptC)8}TA>!Vg#Sj$6GRamU` z{i=GxFs2PHygpGO`2#?Q-h~`nuE7DGK}u|)b$_+jL=bMsfjV4l8l}2_@S4ag%}Rul zA=}dloxd>A?iquBU9_QSIj0G?MdMnq0Yt`87%K~(;_vN3G`*V)!K4#3y43u>`_`_y z+Fp3R`UrHQ1xj8MGw~lE_hm66oz7sU``m9^)|dm6Oi>>7IqjyFD`ABA*3XzisI%i2 z$5Vcz1o!2dnodX&7pFdc5r4^+*Js^*OX$xJfW5^*mhx?M0M1-GQ)>O+EhZuf^Y1j` zk1n1nsh^yR0Vd3W36xsZzZp!cAg8zD0qOun-LQ&`Kan!Fw9coyk3*Zpb>O`@$8% zbioC}_M(Zlgo9@;)jBiG{gt&gSJnwQAxU|UhszNe@ulP0rZYZBLO{9Obh-J$X`uA` zPv?jQP3)HJ3Ia%yU;KJQyV5dIv0&Foum#*N*Ivw+I>Dpx^azqr?(lS%msm+I{5QAB z6eX4{NBj6Z%WukYAVqEcHPmK#*+K#GA%B2k!D7pf#Xc4H9pN})M4jDH!O4pDpLFbS z9obAjQEpM=z|6*;$Tc7|ZTUFS3wbM;^FYkBxQUflbbHXR1}sN^k5(LnFf2 z60+4A()&YQC=Js7LQE=nATOK^Sr-t(>TJg*$|2HMb|0+XTZV}1SpL;&iM<=Xx=1N} zv>mIaPxw{q2;k)4a`i!J+vx~G88SUaG9g@$v$Ec;)(Df7h@Nbw9f0+1m3WsPr&^ng z1h>g`B-<7-R6vL7tqJ@tnx zys;mJ9BrO@pWi}kjEL&xNZ>#U8ZBWpoQ#{s$=ehWDo_M3SfgO>{wBBwp%T0(X8cg( zLI`Uq_BwuVFNRotMYpfeT$ht_pC@>iAz9mNZHw+_UQOBSWW3Ba*I`g?2#Y`X45xqO zydEwJem9Js{Z1Wg_jHuIwY+zuzq^rR3pVP@W4#U7NzfRfk95`Lr{gS_hNa|^;Z%tm zy{%FwS6v1O-TTjd+$d@5G7C7HXl9JK>2-4{JCEjyEn`hDx`j?Wjf8tc5DQek4C@Oj za|+S0_*DUn?uD6*Eu_fPJ{DEeZ|7)`p&_Al0$QpgkQ<+ed_h)ZXr_x z3w7c~-#_jn#R^jkA!KQi(;}!=ndvGmb#K#Q8v1UUSXmcy=EnG+w*IH{p9n}`fcHFQ z5K47ww{oG@Y=hoC9U?+MMFTasQ_`-uMLv)a>YQ>p&j(?Z9PN%}R zm|}_s-_udD`;rcj#3{p+5$eKtyOqfb1%qV4{iYJ}BRS~-^tK$l!vX0VO*RCM?6QLp z9n?H$CMf5M0WvHGnLIpA*K!s;@BQnF7z7n~^{u*GGe0jx!+xjm>>3)otoPU;CGkKc^s74ByW6LN2c z4)hgivHo-hANz|iDD@_wDI=r1y;IM5z$C7}ceGIhhj6_55;>Cy;zr96Gi z!o} zda|O_4{2yYd1&5~secre_m?}sr(rwfyjyPnY!N=t_N;4DTp*d#4Rl`|kDz|Q?P5P- z6}N%*C1ZJ<#;UbwST!>6eGvqvNdSyqfi;Odov85*Rm?~B9=T_@nFyk8BbWut-T9^o zD3`*w|bBEpH^<5-cTh3{y$=RQIs^E4vTe3&nf8 z4NL(C!`my8M>rG4+_|^E{DqktPt-$NUQZ1fUHLO=;ZH=Il2?qf&-8oXMqn(yzGeLA z76hxDKDYi;S`V@g!2BBB20H+lFVwoW;-OYeqIsP+lX2|G%SsKlbTcdT!NEca%do4y zc&}yyj496PJWmEX*R%&Vxyc8NUv+Gck=JI*tgHj;if57Aby8u>=)ja9b_*?H-#=Go za=4l6$xv!H`cg-^Q3PV49nNWUv{9gzql#G;(gr*!v=Y_H*+51fOutk*(y0ju|IC{+ zE;7y@3*-9Wg<(@+&+N`Zu9DMNmQ47_abC66-tlm+jSLJteQ7GS#le zrfxB%AXr`yNaWYBRpmcr@!`3jbfRKN4(#|64|s7`Z}skV_j7{*=Qk5!wrTz>?yO1n zwLgT_e6Hers2ozmVq=sB23=_T{q5=dKzv_m`d-k64o*KC!@76yT zL1cb;Emqzq=R|nv4M8;e=qIoG3IgvRTZo*CPb#c4dvSPZX|}X;dt!*n6_u|{(u8KX z)qi*a#GEo}Q?0Z}rwR=-+C#plr}9kAxZ}Tu1C>Dj$Df_EC%})eFNAA`V>_v`SCRt_ zFtslGbIQYK8@!FXw!-_wIp&(d`j}#6^z8eT+JJ5Evd!`nut8n&gBBA7qIXuyTulBB%^9Tp0ABrgnG44*?lFJ-{Sz^cyVSgJpQ;=} zagjD)&M$6q&#Qq81&j8YRHL+zFBrFk;iEG1hD!W(((z=eE`(06d!6wG;E4>}4`z+5 zE1*beM#ly`sUaU=x5s4Z>DPAHPmk#L=Mt zmb?9V?{h)5rrTW=233_-3YGiIsArx5eZ4&MnXL_2LXg1+d^6g}{BB~degEQIwgFA^Ld z%%0GDbB(A>n}RK7R6ODuT##FWO1B=~&Gn#k_v^3Y@#9!!BBtUO{Yd9h8l^UhC9^fWo- z{*yQwJMQc|op<(Uk~k1Z`rnAtWmHd>@MPl#3GlD9zTtOZ-3Bl&+HJ{!2e<6t>74`; zR*r*iUxCdPP6;|K&~wTlsksc64WGFB=Ck5}TO7m__F|8rxMg0|?$sA^?LCmcmfEFl zYaY7&sHk@mx>xZOy+?>AN>n;!I_{tw;XFbp$Gvg{kw#E)O2&HI;1(;HbsqMvDk87k z*z?Vzrfnlph_RH_p#v8l-%|0-0Ng3NK#2~KPY&I2_){rkkx?BZZIvltca<_8H2+Be zV^kUgdyP2DWU7myu5$g-eIh~GvBdLd2c>DYRk;VXZr^E}d4ef9@JraTv7B4K`D`e~ z@k%V#%U^{dLz&?_dDWzlHz1Bho{!i)}^9ZUY-^C4;X?q{t-ONzyQX7zSa8|It={|2+>NcRDMSGEq0{638 z+w7MZ)7(s?C~7IQ8Z9JOU{!}-+d|w8_J+Cr`LKG{kl$DGRM!k;F~^0t{;@15N`{;G z>8f$1jg)OocEg1yRX%P)m+)XKtbiO$gK=>HE_^ju100;IeG2yl%np7Px6ZzoJut~F z1(l+Hg1m8QrhZ?IpRD2tNzS@cA(RFI_E6m!a`Gq!2CUZIQwili}_%fZP?0T&4s2(RZ9nn})E zUj4a|?E|#|qA=9cixuaG6}zP; zE=;K#CGR76g#`Q4M|?kPG7`$&OzMIg3Dkw*+`{P|L$QZS&AU-d!=n6IK-sU6M*K`` zFUqU^`g{yoil#k1C}jegxi$2BkQf)gzYVl!-URA_N%{)`kyfa^+{rfu_I(dyGxE_i zlAy+@G5Oiup;C_`J8RKjPyhnx!A^D7Kk8a5hH^f|l-MfdgYhkkC^-nsoJ z2Z=}G$fG)urh{?_rXq@0MD;u%eI_jbrK>lUT#8mmk*GtqW=*lOzM?-xTkOb@ zBkuCH-3PnGL_-1zW1POcGdtVw;EG+lz%+i>e)S;2Ne^kruzi0EWmJVcPn`A7C``{!n ze)0iSO#35jM=omWdi{7L-JUjJmm9dk#gR&a&G9=Tj&Y}H(WT&!a@h)L5X_f#e+<`F zr_09@t}T25htCnOFW|PY2mJ+>A`cK~CPuYbZ`9gHY0HYc@d`-m!uOr)ii@_to_A;F zF!L0G@J45^#tmB)*x@o$qYfJ-HGe-fFZ-BZri;^CId;xJA^9;8OS3EKl~xZ)wf|A| zmk_A9V4{ED*-#clCsPQT58AmAgk%UU#d{7-(&^kZ2BkmWsy?BLLlFDRz2@)Ip_6L! z1boMfn4>z&oFRqfPz2Kba;);>$`+N400bOK*HMn*y21>OLHAb&-GA2(*_(zVo{{s- zYzXMtod+k?y;jRSC)%Bdt6#g-Kk$P(FJ%lL%!=Sp#~12syS_zjpAHwW?OK`{FwLAz zRQ8>_?-uaFp`q-AUJQy^U{P#x)}e`O!H5_IBlH4dVj@5#mNoa%_n*}JQ2^wE(`Ie? z?nLZ`Vuw#YGmu7ma|>&o9yG>U`<_Entyk~1yt&C3$TgSNUq-!!b;>!wyIZN?meU`A zd4g#(kMJTXpnS__qR*|-qZdGm&}mt9GgRjGB^m+UoBcIG8G%toPrcnAVi)WFj;sfL z2Uz$SQC0o;#X1};Ydte)BxyVRTi}7=Xf10i3qg{zXfBlQN15Ac1cIU}xl%+;z1O-Y zTOHDChK$CMqE_gia~>25bc1NL+^gB=6Hqk`!}}g_HgENExlZC81+nkCx`aP(xW3T- zmcA238!FZ17dP{~32D&`BXIqT!Z9{#QcS?00|sB?Z7Gy3HbpnnEh}A)3Hbyw^DFfU zs6F}QB2u|KhyUCd$?YxqWvnSEFPO!gNftNlE!9N>P;83?%R`vAQ&gNj^GkOnpYu2h zw)ql2oYb6#^8!$`@g|+^PbfEq`J_OE6NV?U^^3mw`W6yJ8bgp7PxzOzcI}V`bEojI zL`64@Q+vXY3*K>gZl9nGDx0bL`C(aWw8RX-$^7mWl;fD=7HY*lwID2NxY9k+D&dl?n4dug5`t1*AC~GgTz}xX5Ltm5=?WeBL zYlFRd-R*KEIo{K;RXk=Fp->?c*d@lV z8p7qB+U^9Li@^c@CA`yF2&HM@kDNzpjR@s~6mF~^1)?f#o55IbEP%1$G5~+i` zItjclwruC_73BL~vB@2GyEVmh%Z@#A^|QCBrL}klp>iPG=$L7ng)+1QgbyGpTBhEe9~y(%(Yv z5xr}BiCt8np&DZ!dD^z8mX1|JPq9gJSmHw20exSPV`py{^BDn0G;CfxPbAi??b0kjUC` z%%RDk3q0-QJwF~{NGq>}>98bxz!wiDi4``Y+|!icyv4#Qm%7BY)-`wQECXWs{6af& z@v+!~%1C+hnuSz~XPjs_ zm`>>%s;``%RQVI^75*ufgg)RqxtWNrxpnfP_`UY6DME60-g65nCMYc2fNA}e?1kUY zA1UDgYk{8sIo)|2K{fZ}HvyM1xzX3JLKT_37cDEOY3+%X(+k`Z2PDkeLhii}sGRwr z)mY}nu+>lcb2WW;JbEQ93j|WR{H^1xv6s{+4dLqpy#6_BiH;`4+Cu?5d_|*R#vmn+ z9JX}nd2jYy&@>v74J-+13{o8nQz{EmQ1f5x3k}m^4+9V4kUX-ji(uO}TrSjG|By)e zOUeeM7ie2Z5b_!d0Tkt3E%gvl0vnvdE9KHuGU?ZrdnL}tMJsE^^yQMBA{K2}yCGq#XjD?yk z@}Ug7HFTbRLu%7sYFG$8;`A}X0G&AQMo>>u?%NINC~~-LCeWOlNY|A~#4lg()JWCl z!1(U?A@|{Db>x2+{W>`K5$5sh~P=j87mT3dm+5%7U0b|BO?_a$x{2=$+QOB+yq<;14 zJYl{*@Jl>TlaW$Op8WB}IPiTfxyWw z*e{Xt$=FbR)cSjKR2FQdO>{QzS`oDPARIa`3Tn0A#V7^ED|oHR1S%)ug7f2AklXkgO)Gu5He&Qxp?Y~&v_*HtXB$j<{F&$% zUg=?psDMWH7Ly}4CL8eCS z7(G6B!KsFPzWVYs#R3It}eoK)Lor=*Yjwrryi{K9=rvcOdHPW&MJ*D;&%X-wL^WP1$*}Mia!aQBYZT z`eIiTnFGpXUUVa>Lg+dDR$CZ*Is}OD23-(o6TF1V&n3qWOR!3Q zpzyE(!KH6;n^Sd6YhwvjU(6d1{?4(Ln+}NPLhyDZN1uF9CUkcl!&8PhI$UU~EEF`@ zG;F(fbXnGKT?1#3SGJz{$=c`z|qRfIUJLjxt(Oq;`{k5lX>*rr`Z zl^9Ski{2KoH$f6yy`K`sbDF1HYnR^}t9<@ePEPKIs=8fDd#$u}YEp`6{766U64JQ< zyHLW7K30dd&stSxrOF7ImYFb0Krwyyq;0O%Z4k(kS~{|-|KOF2es`92{PS+Mjpry- zt=MuknH6db-}ST5@WLQ&!7$sfG|`IwLTOO{B>Mx~_B|^5YNKf9WVRdw`-@JReH9FMCWWNx(@IcY|{NC;wrIu%98ksd7i$(_xVx3lGO8C<}vS#B|#v7pO z8j~4^@GI4pPX`EcyiC0j)dr9jhpVBkZ4`WsQY}Ixmna%iIgJuFBy$X_?}6Y3$XLu4 zz4MNA9ZRyHRBCT6;576gSzA96uC=2V9S;thR2cEZCL zp*p;;dMRN0@Y{n4M5)s1WW(u=(eqZ--xh2x)H+8=A@%ZY3FBjUsSLdhS6t)a9DPCZ z|K_tp`4{0vlK)?Xo3Eiy8&xu7ej*L^3laUB#zGz|sbpv1dR8|qm}@jH*it>*GzRL+ z3|($D&D;~#5drVvTT%R$0S5wm`vfn|l!v;)PNm*B@p5~MUt=|O!6;}!5Q0iw+1l5M zeAJ>R({zq|2|x=qLwv6jdDR*#`81g9B%YrfO{xSyIgIGyr4F*mHfLI+6<;0Sutoe9 zI%_RE%%%OMFG6bn1s;Re0a~*F9G19Gsm+?&>zGa%^5GJ*K_g@9K{npo@Wkvze?v>R z1eWI5HKoOn9x`zu z?f+>H1^hQ+!QJs1MvTrU{^G8O|LW_g_N-@vSy*<}rul)`s!Zy>w{_m&keAV~jg#^3 zG(TKzFQZxLC#y-T@u={NN#b0pNoV#FcjzZa+i3CRz0avPdW4(~*mh;{bng$aLWSCt z3Lp%Od$X#sY0l#l@5c=*3!Gvbc)nO4#Q;0b9@{R|1IQkm$8OUdZi5@Lqfs*pXV`jh zx<*@AVQQ}ZG|Ll9Ha?S=Bgd~aSTvjR3(R%%xz42u)O3{4zQxBcfi}}5-XCEd3@5hm zc^qDhv_iJ9_;~5%DRBR;Jhu9t9oUGBtCCd>4hO(E3$TlW9B+Gf_d)7V< zg%g{KWiPsoZwNBZz!D6fdA)sfbo?^yl32;c@8Yyr35zm!S))Q27Y2{VPPU%XdSH)d z9zW%P@~Bz{lZb)4j!TWl18G_`!4IywerKe*)(vTa$$eNJ)fP+8GUBRPI%M)3ELtrF zGE(V!@^XfXv$k!X{6S{rcjAnm;obxA96Qbn|6IOEBIqy*6C*ViIa$083Ym4kTgYM{ zA=sk#3*DkG1hAzk*l0z1C7{TJD(^nC4@u#e z@PZu@PQ&SRQjfn{-Yz-3*6}g2s|NGE#|Z^wVj*Y5(E+e4d5^&F{-SD4g;i!Q2-`7 zgBdHSwUII=yz#_D5ByWHOr3gunrz zrS9~0i;dM)hXh^v4Qkvk0(Nn46YV=>GhCJ^BiDQlV5y?t0xTfq zR{_h~_1NDfcMev6XC69AZ;_`~SQE@7mgs2t@zb%nYc(BCzf=n(J|S%sY1_5mUEtF! z)?=h~$BpD9TYVE{38cm3t{FM@X49`TEbf;U=IB-?T3*6`pC8$-TKXk*(m_A)n%BXt zZ?2vA`LbeTBo**g2z?42V|IbQVs*lWKRKZGs$xlEh)%K9JU*%hp0mk>Kf3QQ2WTy8p^>tK2Ea!a}vS zWT{O)X#WlsyOLwPESU;{&G)NaWk&(+zy`qmt%5*`O^Wl_yr>j+OB<>eNBN?}$Mhrn ztpcy{n34M&>f*BvDCE}dg+8xbU4C|spY}~h+i)U-S}yH-%uY*-sA;DXqkNaTD)ZH$HsbujH%Jfjt&SN7e0d{z6kd!= zqam^v`|3>1!l&9t{$NNm71bLpaHgWM10eF_gk*2PHq0>ZJ)2_}s7Lw4^PpwRY!-_c zE)%9sqpX@`8_V+Gr4hto;mhJ#`a zo+oLT@nxT$Gq$UY1_2vSRZT^(HmDnt2Zr}MmG&B@f9yh$W4H7H6V-=^p@JeBf zOWmgn@5hN}iaMGtcpe&ywc2?nf)npU?+|#6y$X%v-^Hgu?^gMkKD_-vPqNr-96-~!hY2MF{XU>?I-Ab z-@5S8L&*AjBKySoU-UY)-@m##uwJzA&?$Kt?J0s3ah>^${odlBeE^L_RNPx;sTL8Z z`rd4>d7$+vL<#saxlDz=EQemgNxJ_fxfjJinh9!PSLGvc>lUOAwnL!JpDFPxsKdcL zXRe7oez_Pq>g4yry2@oO?W9uti`fwC7TkuNurDpoZra0wC)-1DOAbn2U|c^r!^Gqz zo_lT=ecdzN<9i{xu%L0BV$jdj*d}-{I939wd_P{vP9;7Xxtl+-)FAQYDcXG4Qy3sY zrkTA#W(sjSu}wqzk-1$f`TzAy{6Fc+#zwD#vS4(*s9cAHrGN+y_|g7XMa6}aT92UH z-r2(+ysl_H(*PBP+=HXH6bFu6@I}~5m5zBzIf?+9^&gT&DU<<PDb*c>ES{kO#8l`#&a2zJa&6xALj%9?4(j z0%HO&E{W~Xe_nHd0xufg`ojZhOof&*X0kt-z9Yz=?9+=@ejO1 zbiDK)J&fwWa?h!=uV}mc$G7%hkAU|*xWQuQB(C#NdwUfUFI778|DTsCpB&BBmUC@} z0!Unve@f!INP;s@aNGVmtygSPytz1%&E;jF4JHlY2fglDyM6irbb=PomQOeZ0bNb? zcVCWX(!-PBD8@ffa>=<_zji3AolS*UxYk!05?Z8U#rXy{2l$?Xlz6@QgJ9t) z8fU}KB#CoG0Y(`;@mg8{;%YK{wW2#+`P?ni2V(qAjJRjpTK zk&~r0q7C2XU}Xijad^HbCwpT-*le^W&xSAzo)<|t30ESevnBo(?k106MGEXMl^g0d z;av&RM;~N}4OQ3N8C?OUYW4~hTb52c6AU~9ZDJx0xQXAgJ?tN{8KFAzAUIX;DN|4X ziUXg;jUF=Isxb!TSn<>$$NBlOx}$V|^Zqj3ai$4wOC!~s#)(N$f`}}DU?d!PKz&3( zcS{vG9vf&sgs@kwha0HBw3bRO(_J^_cS_I;5i67I8OV6as3$`|)~1>~@+jI@n9dPD zH3iFm5vNo9sRaKNajK33>TN?XeL657Nd>OLr_*P4SV%mwZLE>4&CM7<{t}YX0u?^L z#Q)EFgUgS+D(iud4f#DnjH2sd#DP+#Myfjahf;I9Ixw#SGp-oFkQc#@fgKLk!zpg3Y=VDih>(Qoqw!fAq1r?}u>b;ei0~5r^ZmJV*I5Dx_H(NEa zU+e3g`>e|0s^xa0lJ6MQ{4zrBbhjCbIWA)Os+V`yTsMmQA80rw)XQ~eR8MAOMVI&R zt{h5q({3ADf@TAkWXRD(>WXje&Gs>1=4?cXjDWw(36mFK(^85qDNDb%9kbFxZ$Y&M zhW0J?=bshwk#1ChU(p4G0d!0?T@EbE$jbClAi z+zHFO7SmctFo_?G8)CSU&E&DJW>e^fKiJ=WT=Ue}z2Lsro{LhkMgMv$*^(f^>Cto? zaV$TT@{e{}qBsgak5(iSgyTo5waV>M#psHxdKCg`xIuCo+ta@=51 z6Qd{W6PR0U=`oms*0gu<3)#@CI5T^U#t*T5L)89ux*vDF+~uPs+SNI4 zP-$kmhDbSk_AjwgiRA-;YDf3*WaPm~%5R1U(3J_}THKja%p|Z5FWjr4kgrQ)m4X9!NXW! zTW87Rt#RTo7xK&x>S&D;bet?Hcln-9b@Y47QqrRm$(~3Hy2ZN zsGK|!Cc^hPG*WtIc!jg|@k}^TFr!K?vz@?%WP5!|!@jeQ2b&^LG1)vgT1k#YExmLM z0bg)8YY@lvu}`v>sk)SawTG0EdntCz`xU3T-WX!5Mrolh?Xy_4OASGZe@7K4VtQe0 zo)%FfYvuM^US1Fkmk0?g93aM=shT@KV(D~zV!DRtsgqJnjvo0Ce7jV>?hi?yp$cPh zKoDa@2~F>N5D0X6h)4a$ibtI%$tCaxtBD(zNYW~@gijkY($`r)JuN^Duq=_9W zb^whUZH1(nOha+Y@HMpu*1P# zV;1zyd(MjwtBo*@#)bC3W-uT%HE+jNyJCxVKzv;F$Q#EUUArvk4#Y#*!LO$F~YRAQc=fNp8QlS6T-RJo0N~0AP+gXvc}1dXWxx%EZsgp=&6W8}p{BpK`~Q7N$TZ_NCQGMUfmq%)4o;$zQ9xhUN@?j%iJ0g>RQ+d9)3cr)@w{81P zZ1ww038TmDTF(&yDES8_XIsM>O~prEm%HKTk~!E0V%b%!M~DBGTd=iAHVY)st^|4Q zwMwo{z7$3mg21na9$zCRR3>G*X*Ft4d2Yn=ObHb;t{jTP+g<-nPQGpeY9t5o!Kmy- z;tcP@F`t3B+rS_PKQ4OXODHmj_E>)X&r09=^{dX>V29W+=#^S&8yf=fF2N0s-7wH0 z+6im0wmKr=Hf+NCUcbtjFNlHfJL+dO@gN70fp*|bYj2S`mGIx1#yY`gI(&yGdNMV( zbK6lMqT_iaGcc)i0p&HVYR;YhVq{>}A5eb2 z>QZgIAq7`QY=4nW<6EX~@!8_bNWL75W6|TuyTJFMhoe?;1fQOF(ialzI)$ZJ`WI3D z5d;<};NSNOIYi$oT~skN1C{9G|2T8(U%u(TKq`9_y)SH~Uj)%v$%l^~$AC_1-s;Fu z@dH&9kJ0}pq!2bS24i=2YHsb}BKrg34#ZK=WO{sox}Tx-wOk*F~ho*}KMeqTVpOGq_7 z*rzkiwH*Awst_g=ROLG-$JP-i=^=WMS##I+U`<}2gHg@zZ>4QrZoQC_RM^(V{$Y>J zVG$@P^%F_Qu*$5X*K)v*?R8}$>ex?>RAp=%avj5m9j)d4REo|w!P52Sjdrx2T=;qH zo7A3z56VivR|>P~P3DO52D6!r2XkF)8AkF%stBW_b6$n+CEBTpQ_SU<%m~FoYhFtwC`SaU+rmv z;lke%pQUx&-j@GlGkBUc>s-q_%=T-68;*&Nij9RLmo*wHN#j%yC09Pe$B5V)ggFAe z`M-!KKy%zH_Qp-hV?KO!%1sL{Y;S`1QS?LjDdgnYo1d&y=9w`ye+xAL{q8c=NGr2k zH3BYPszJHE7=BsE0Y&(VH;v>sZI7Cqv0VV87md{^>BHOL5TohX{S6`82WpPl5$wEta)75=1Vrrr-H{0q6)kKdM%>934(dF&MfGHUtO>2$fg5!-&+$-$atYMj12rK*|eGg)NXyNiN0 zBL=W}P847F>L||6(#e}andG63N(~|2HF2Eny~LBLdx91Nw*eE=hRX`qM<>>G|aihNqWwf9-pk zG3(}Y1xt|b4_*cypY))8RT6TCay+T|@ld@~3J%zq-F@`}-qT-WB;XmiSylVvGF=kTIh|3Etm(;Pb|a zq5E&)1K*_1IG`%OsBaiTovTFj6VK5T^bodw)eo7$9pJAH6fQ?c?9fjHnN0%9QvS?E z44f9BdY`{J#@q@a6>vaNeK9C7$W%|Yn}yK(0EGz7oaDyfDBoq>G!F5=GfcNKj*-(h zm3UGx-1yd7$P0#Ls_AWpnxiCzsA5a{#M^l2VZy~!jF3v%I=PzP@Aw~Sllprp)0g(E ze$~u;9h;Zyuph?KUs59#n0u=!19oOG6qs@MDUBRuTgHgKsYp?QD&YR3ZPQ8w-~ExPk& zHQ8@YRp;71eTD0$Cu`-d>R%K)%!QXDk_@>3WMTVLkY$hr5DT~dHp49VtGE&SXYIK< zMlNzdI@i)K@l4$#;5op@K%n=vb@h8kn2Q=!mP)(;kM!`FpR^lj?L|Dkt zPVxr{E^{}ZQ;V6L=GLzPqIj%!_DAmCGTSRicfu3;y29t}GkWQY)oRVJ>+I*Swd5XQ z`$pyTejPqdpKqG>@%zVjo}zLt4MfEAz`$y)DN;Dk&3csaR>Jg56qX-6_;(G39Z-{Q z(hIQLSq$~GFTSrifJs=EK@%DY;wGYfT(MibwY?ITVIaYWl(^Q!kqFXLG!APcnd)*J zAK3rWiGc*&z|0dwg#nCQC1NwkQAX9wu2i&h(>YcM8rL1PAG%S#SKz&OW~hC$vitzG zm&W1wsBC|;R#2`maDMe8>5$U$K;=)<<9zB31aPj zuy50w5}Xhj`EM_P`x>;On`|Xs2Oiu;Up3`}8P1qtaQ&rueYyHzYp-2CC-li6*Gjh- zfl>y`>pSNzWK(|rNrBzau;Y_)SLzn|E_e1*>sI^i8(E*uF-HCj1l*Ly%Go8 zUmP{<tQ<=`04F7X;2Q;jwo$zy`rsPpsp85 zJX?MQ!>DGl*KV}{K6EGTRaDkCg|TtijEGwgd+OW`x`-7^--|o{%eaGd#Mqs$c=c?F zP?dNsOT3%IKl@uOvc=eLjv7&6IDi0Nc8wxTXT5l-$H&?B`2H{zNpsv~y?mDu`;yUk z6yucv(J}Y;~n*af9 zVjX|ix$P$Ztj>kExGBz>OL>^&4lraC&;C!djQ@O$`0u!(F)y}`YA387Iirva<4|oL z*u6=tFB@C}{o-FLA=-boA@7@lStxnj0(|SY#Fl#fzbD>N$@IrI3<{2~Nwg1T!{N2FsDuUOB3Cf>6=Fuf)uiZp${ZbCg zk1YYrQu|VpOvnFZ^uZJkt>balb{DXFlp$8gV8)?L+vH;hTVGw>2lSyGNdh#tyQiIPe{$0H&>swG#-xdUiK?qHv@oq9 zPDS4T7IJV?tmwI4)$6wj4o7#v?Cd8ZkJn~oI7;y8JYsg&3sD6nh|z=Sy4W^f-$D>P zgHhD3SL}Xn`o?3#ZsJvphv@lAUeJWaB#lsc>cyog^ZS4JGr5?H|x25 zv30MwOykp=|Ld6Spm9XEQO8l>v9k|#`a|1O;pe$=bi=U|XRFK-%fv|VWAHyT8hyD; z?9C-S>a)9>Yp$G`%*iUk6@tg^7RR^A6K2&FjB6Jd{o{+7jazF>Dz_yw+{@Z1m?bl8{X*yW=pzfAVuPCU zc4B&;Go{y1yvyTx#dYH4p+A0+P#-=~@hafzJY1C%+DFbpQ80Z1t5Kw`z7JkYqNZuQN%U8!U31T;+mJttzXi4t6fbq*Xp7ugw?dh z*1i`4r+iT1CxdsHdN*58ruxrS_5F^-D?RzPRCbPzsbGTF^)@uw9|4KpsUy`D8g)mk zCmM}`N00==nfsD~zZAo-DQkJ)8Bl!RrJxXnma1P$*7 zLOA$C4PweCny{$mL{r8t9CN2zmMi4|_KdIB#x&Yq$bVnB?Rgnl(?=a!^mckaqi zdul$Liw>92*Pib$rLESPnDsvD_crHYCreM6?a}5?iRdk{ouLYZn5}X78K%jXo*o%` zK|>Q3!5w?M+xBz|BHksL`*C8(IJ=n^Y4E$`E3-YkxpF}u9Q?uMgsZAqE0BjvcfmN_ zgG+j|$DH46GOe`;!sN}v8b=Cb^#jgcKC->FbzzeJ=D;iP0N}QF+8Q&OAIeE@vBX;& zX4s{k5_mlEY}`1_fkWZ_r5f?VvD$m%GV3}EQge~UA37mKCZlVq7t@*Cc$1B$*N=iZ zE|^*39x$pxSH*3BP!i!zW1ssZC9FcUe>Y{jv3$!ql&cWK@n}Hk(`^T?CkY zDZ&*ETX9`q;=%@8skwcK1ls5cfNL?6Py33 z+-R>s{Uad}HU2eQ+f{Aij{iH)PpFw|Q>YT_glA0}gAvb<&enRa4V~pJ3|bI(b(VT_ z2Em-TyF8w(nJe?$$^KJOLbP0$cpsbq{>=TEq+Qop@^ngr2NWZCR2o%c&O2QXH&qh_ zXD~5;v$&<>&ZpVhZK<~UIG^8(57y4pWAm|=kSweZm37O!U-(ho^uV(^GuI8ly2&I5 zc8PYkbXt6LCEYgP&G*?{^|8ziAuwtA=Oe90uRrnNG0u8s3;8NB0{vd!E;u8ipr|v$jGG$kg9MC2Goz!(2`#Gk)#2jLK>A2=%{w!Y)uuKn6_t5yWPx>JEhDu4%j+J7 z@=C|-j}AL67qc|WqYh2kIa>6mSfkxK*Dn_S;`Wk^5;OIk+L%X&;Lx=yIL>&|Z;c`G z3F^-|?~QOTaZOE3$Pl;2_^^tA9JS<~o*YHfCv^_foV~2)ifL%=*DYv1+E1AEU{S@1 zw`@IGf-mKewqL)^ENOKXD+O!$EiH%o+q>DeF|{v3IW@nqOh>wKpW~|(|5O8_q${E2 zy6&ydA0`YZ>lo`5TLd|qOXI^cyED_j7T$yL&|o-ZZ0Qxdk_#d>)3?xNPX2M?E>?FQ z7#CQbeBSiIAH;mJOt2CBDpy%za!`w2<4GmVhd!>%<8F3ik#Ls4YH&c?7g9#`En(cZ`MVQDz?DDZmj%qzdY_Ssk4o`toksCt*4xHhARYx9K1-=~<(O&MYNV3YBDgzFZDl9(Q1J-nRO`Ba=W zK!_|KByXmy7)j5?OFx6D6$5m>Xlk)&mhKdiI+~68((vfXAcmaYSAkKMdQFwfwWkfI z!N2r$vWUD7;DWrWi7c!?X1|wfoHLAKhGRehw?Ws;kAep+*$>abhh*TW5B*l0;5NQ1 z63(u|Q;>ddBl_*9bmh;te+E)h>yPZdxq5S> z1!oIR=#zaZ-uisyY2mNvpA*zv;bEL*?u9csQ=V%L#p?@sx#1j&XZ(j-Wfr4)v(-Vg zESHdz{Hi@lA`-kMc)qVZl|S<~A&zS-1H2@vQqFT2aDe|>!&Xs-9-W$T8wr|WdbcHW zl9RK<=DZzxv@2Ed99gai>79-oLSyIm{x3#6(_7ib2i_2kcQs41Ks<;^aQLi`{WGWF zPi=Dmc}+#J%^Qjx93=-QX%i>9| zJnx%q4w}M97P$b-4H)(GWYUZo*xtNH_=k~#Nuy=#3Lib*4 zXR%0X`zNg*Jtm<@TWWGbcz`JO9{9-C9leqy6d0-dqh+q%kAl-@E6*;E6kTpt*-36= zQy{WKH!BhVbY$6RAw(i1CV36~B@mrBTuo=inK60Znl(A7$M(H27KG#nC4CD$e9^BmDa~rBQ&3oqo9<9D*gswN;0;V|kd33r| z!NK?|w;)d3NHsfUuI?_Qq`UJKnNr>Swl?C^n;88WDr$v!tKN#76IhX?t#{^OKWWZN z<5QY6QoTg=D$i>g%lZZe1Ex_`*W+D)7x zQ9r#WcVz?dwk+z(gQb!3h!1Q^Pu5Y|TiN^$=PiS4TGT#q(~w16(^5`)cwDNk&W_A8>zXoOpIH(Xu-iIIEYcX^ zBQ}R;Uv*qzkZ|65 fo*$x-@isNXlSNzTAO&ldZ$!66dq~QoRZ2!r3Pp2waD3=?% ztWk%bnAdyQzAfr1Bu@tUa5}0sTrHB$m>XId58t58djnEoU%%_Rv(8aYeVwzjy%M?b zKxyCXPRVr2%bhO7C7Dt-pMOx!e~V-}B#n<`337r;Zl74$V^_BCVoEYjpm|2+UgLm| z6bP$O8r)}M{w`HXA3P#Ob7|)$nY8NPAB5emE4tq%#aie=)U9BJi0il;GQzV^N`_V7 zF|DQNxOc%+^zPLK!R$y4xC=FJ6WqGfxHU^Xugo2nZ#9v|1G94ab1hU-Ki8(YH2EId zPAx!SUm!18hiTg<8HSZgvw|*%l`d9FPvE1*Iblb*C*k&UV229i+@p%kOS+YOnJRWj zjJ-hsqJ2-*wA9}3C_#RrJH-5CO|C)BYlvL7)=}ovGCu2IdG4QV9`5GE$K8CwjDqC$ zSRr(Wh>##Cb47&9GurWI6A2CEHgq>$s?6mvlP)C@T4(-Rg$5=eX;Chk&+zU z>}m{TF32z)-BFFXWjpnmFj}eNr3Ve>WhPU#t^CKYFzEvYvB4o^3vVYNwKlB+S4{p` zu#{5Rn&HaVTVxZ2%{dOrl2o+~7*aUS50q!0m>zVR7`V*3948C4@3|F;z-5ua&5$?a zE^AYvJIpoSiPmgEwq#B`EAQGYNZNi4|H-ObOY zXLY8PesyIf5fB=_dv||PmKbV=ubFiwkyg||ytVq)@;Hag>l5BQ^x>pTlCF0;z1}GU zt!%SUFZjvc^0+Kzo|yfV85)m6(^8fiZ=hkJKl$-i`f;^c}*@|TmRkSryJ#ctF5&ZwYw>hgOtDe=cK(g-`Di)C-!0Cfo|^ z_D|?;nst~KPveXt!Q4ZIiRq|hw)iRUZ>7p`>Jlz)26Z6RC@T!lCZd=quK$xOOuWb} zCrJDg+=yv!U~wD3Ao5}7&PVTB*Np&(K;y=zMr^qb6LeMZiZJR~WU$TF#ZK5*b`o_0dz? z<@^zEn^@vg&fh{=5fKw@&~u!!0=xYU;I=GuiRpCd@r~qLY{0*(0MPg3# zcVNd$4`viqooontSM_q_b_b)X`tnh4n`q)+UR(Gt+s5&Se~f(mdo9+u9;xHR%ycq~ zJHLk(^#1nhOe)xD=^l1jnIL79bogZL>;~rj7a>CpBJ+@DT=6eYRP^T<%8z@VkcUF; zD<^b9q@u`u@#*H+K+gb1{nY{CCn;~kd5tAS-M4NK3#5q#e_2S)NdUk{KY{}D%8RlB z*gcAbh>X41b}>-OvjbLAXxJ+%g9k?Q-1{d^n~N?1@i!!akQ@u_JCoUil}UL~m({Cq zCMxrhaqX$ZTnmk5K7DC92YN)5CmUrVD(>Vzet5c0kW?lR>IwL87A=baYA!a$f!fir z$vKf=0Jk2CuPIIa3N@?SB@O4)QmAJ-D~;Saeeqh!IV+oyqNZz&!jlb33E(83DLShL zEIrl`4?{!4Cc$zpZoR63=2}C-X3u&^gLcVF@mo|5YXiU*BwDMMX8FEZus3N>$xutC zbE0u5+yi8+t2rY3wAiS_QeV(~pQErNx!WN7Ico7 z0e|(Bd-s*1cR{(wmTKs>+0k)X_Rdzd``}HYLF3jjzXSrD*XqcF{k?07GcD&*-M-8| ztZ>4Lt`y%Xc;X!;F7IOvZ7`#lBO4P}NVQ4O{COUOTa=dV#`!PpvfhsIrzs`hcwDcb ze;w0jzMSA44wE`j$JO)XT0ZMUH=~}Wu%?`s(Pi)Gg^f=3`e^`xGDCXr*pp~J`(ps! z#<*@`q#fsb`n1MR9T`1MyejGEU_pNV=L<6EcK*qV(JB{N;0Gs-R1-S8ePj!vU#dRw!~e&|o*VP(s-7}f;-~!Z zcSls5F_0e9Cw7N>*LUt>w4G>W{=3gbijTGFm9|J>-XQv=`;_116ZA`MI4JE8XXXAt z?}h(D#T4BT1roe~4UVDd6pu81s5cun&+{`gnbNO(q2D}1T|h`#@8#?cIgYmJpK3A( z8R$eg7^FhV4r365h);7k4?=5apx~+IHl7nu;yxl#rm5Qp$eO|$AFfL2Z|h`h$DU!7 zd_db4pAJ)rZU}cZd+B$aub<6JAgx9B>ovCv**BdJdD{g2wJSGMRyZnP>5NA`OJU|} z^dazEsl5NW>B{Hdj(Y8Gos5;V58nEjwLaISzPnZ9wK7rZ>r>|yM&dqFn?BnfrvZND zHBBpzRsVD|AEofVMD0+RAX1*4-LbY=b03uJX+RY0O7W*6Pl^_@Nn%rqQp<~z$N=iI zui<*ZY^YGLt(({GiF`U507;wchLnWg-RHs_d}0jX&{%70%HoqLNq~Dqp`nffhqzQwIxYQ4~KK z&T*(;1!MM0=xSuV>pDiBlx!w_zLyi_tScqyy8cPwcRES5uhj zFF}`^;K?Qio`BfEDl_e5?W4d1;tawwC$zhZjE!h zMSW+HS3TvD)^@c|&&}ua*F|59oejDmsk&dg`&lb_fc9!fiJ{KtY#7kE*J*d2|AT`4 zwZRc-P7ITf!?g%rV`VdOXrEzN!ionpKJ|w`Rns193K>qZqCF6{ZjqIwh)O#`da5(J z*0|eykHESxdZMBcxSdzzgOW(s{yG;@Yt}E`?127oZpxqPJcs(7>=~f3$bc0_T8@56 zN4pezN%Pu5U1)+EILQjQwp{qjw${eUP9ndEmyvIcO2g^|iJ;vAcyS2XV|-|VBT3pxU~`0N8>oz*n?*Hn!2n&6w) zC(xGt)+x4BX%~*VS%znHCWNJtaztS4KO@ zHYv}ftWpC-t2!^oSeLMDxTeU3oLWL8^Un19$IIow-F%N342g ztxTw-$Iz1Y@V;@I>^+3rz7MOwlazD^Da25Zg_mS1s&uJ&?d@Zxa53bWr)D&PZ|(*$ zsX!k{qYt1bX5#1Xa~CDSOK*xV!8D)DJG$6R7Rs_@j<81ciqRwcEOC5qZx6rzv3BWf zeWCqcHo|n{;P+mUJ;C)9^T^IYs#BY^)eDDBkkx?9Lcgopy9=GK%6@ufO-5dH zRzlA8d~~L8$Ie+AMOu?8s(}xKSyR%WvDn>pXp;Y39{oT6QFH1@9UIh7=F*O^rZn$V zkKY^vD^j(Y>$?6|6hfG1x#+sCGEAHEt?lm-t~q^q=&;eO#i{<~La!q-9fz*G-#P5E z+95&Rw6Rr?to^_2P|l<;mjQm^dk$T&-}dO1xy|y%9M~ zQ+K0wXJvUU4<~1yvRKcph3u8If0eZs{JEEwTmLGjI00tosuVrdRn}07+-l~AF%#ND;R=XXWX>Pun!WVDcM9b6UVPd;G z9}!sd;#bzTS&AmU+Q&uKnoKuac89Zq&dr zFTH1^xy-=-p!&4Mp3IEtqtlx##%mR?0WM8vCjZY%BKM~xK3W}ntG!&!$v^rSD5K>X zt_#g*Rym)naM->%7?4%$T&W+KtC{C%xY8?BOM(V@QekSAPZ^cQ z4T}YIw1)ohJI(YUQRdC+hFWM5M6uufySVmm?Tn-eiB5KQa}7=&=e+5(K_{4D96zGI z2#HGJ{5sa#8k5mNRtfPCi$x$hVnT%blt*_oqYErELgrRHf@bk zswS-Skt{<^ojRn@vOl##1;Zm&xf4tDZ#H39)hv2ws}RPG)Yq>*bTL31sG_71pVQvbFnZc7vDZT>W^2w+d8=Z}BSv>(Rj$-ZE#J#Pr|{(u|3SqZK6&o?GIQWbSFO!E%2SR+QhP`)|C7!^RnaV>6G`Sn}MYxZfU z9i}k0qV_Z50DUVqX$jaU56_HWX~gU}+PLCzjI4@Lcd9eO-hB7nlQ;8(T3XZ%Cr+GZ zeb1-}iNBS~a(OiI>U^H;RLf_jp|Iu$#@AoWu7I&Y%uSOADzz1CI<=1#>T zw2&Pn>bgjRF1OdYv&5k#@B;T6xaQBVgF(W_6XO^8clL3LkJ*hqR~!V=4O*vvTLkkM zUp6`pUGV!TM~Ojd%i!}K^XnI>3-*pTr_6AueJ63sv1e|N5n&%zPuq&{BybmRp+rRa zmLH0Uu4nh>VIrU1Pi5RoqHZT`_qSX%e&?8&?LydOM4)OkjLsAWIk&FauVYU73&gW2 zaVqQwE=6@c4`G(NkL)G063?UMF;cH-oaPP4Uv_8=Mt}GDJdnmHhQBwpC_}m?78KRG zCZaAko2!}00MT~MS*L=JxbJ^w)hl%McP(#2jylc_MGIwDf8!Nj4x|v3&_0mjP|G^U zsS}^*GytYMuqJ9F4!y1_& z6j7<&7Amaw&c=6TZP1H3U9VgrnPRY8zZp_^0$m|lyBUOgJt%CKaxeVmbe>(Gt>i3X zxJYZ0GH*e&IJ=v-_A09+y)*a1RKLg<534-a9MYL8VSL2F>T9gaSbv4M%ly0DxG6Qt zjpU3-RmX|ik#D9>4X5XNhY0thr}4oHlO7CGp5pbM2m41sS9q&hgV*9&)0Z~2;#@@7 zNPVy;1>?yI7Xwtu(udK8QBBRg*A_XKy#Hjrvvux-wzRM?pJ^Kd>y3q+JA8xYBf}zH zoPp(BI=RH6NAe0%AqW&Z-cF6$~Ea^g{0%g5odLfLtjB zg|zMtt(X7lh#vZD{CKwjJkr&pOAtRx9}L=^mp*wD_@eBcKTx|Hw7`LHS$-}p97v`6 zNIT(W^c_Aar}Yz1S!yl*j@S~5JJ(@LCv1I$oL=$)$*P=Y${M>0Q|C}|&4$z8E$#eI z@)Pb{MBFp}J`AsDs1s4s(ZL;tS(*F^GpjCSDAbS5)i=6}_8aiCxKPam<20S79ajWUxAvhWjmErC(E1FPMIE^s|#`ExCXZY;{-=g0bpt|9e0}jS zN^?gbV{-bq@}fScYlk>TYYIZYGv6XUQr(#%`PBu{Ri)QfHj<{rytu@{YHCnK`9Agm zw){BX*EKi4?pvjkrH)krRi9@LPDd`!-XI{e{_~(Y*EOa+satK5ije>po0OPu_9Nai zJ50Q`4s z>R~UO;AoJW$sJS_Ga~Y1O+HcpB}KRGVEV`-)Y50seBN=aaP}#iPwdnmj(q?&+BQrS zF~Cw9Apa~PYuIyZi$$}rZ7LA3xZoGiAN(s(1W4I4D=pL|U8dlM`fo6Iv9?o`ax;!$ zHWZ$f=3S7CNM>0=#|lYcXi{{mNUzIToaHrF8aPNrsK4oRdqEOzbByK(qCd)Gt+nA= zX26n+uf7LK8B0|_tmryYB23lNCx<>3O>VPqPw_ktZbJCmv)ix$@GHx;P*FK)plw{taK|zJuoj7=6(xI;F^U;1khchn~;) zPv3s{kPuZ6$MGC=S^V%k_$^1y;mEQzy~I4H%WgOS);AYqUDA4uMU|V)YKxX>%K*R) zBoO3$oNrcC5zPgJY(jPEkzpN?nq8#149g!!r{WCSuKJ9oFaC_)&2PIRCoug#v-`t^ zMehVlYw|4}IKWQnS5mL{5`bOi?PRepE0ZKCTwQjtym!9PM2V%I=PQ zA#*P>$Em#sPFu}^FTi`-X7O3!(;>TrF;{zw*IkSza!9sbAJA))0G0bS1X}j_nG%D8J}c;a>B>L_y+8om1CzR7tQoBwy?r?d$j9pY4+b~ z`+?_;wyjGo1fhulD1hB}eV!1uey+kXdLAbeM1ddV zBE5I+CKi_T*sNM5tk2YnILf`ZMR}k%4!6Zzf8*?dJ=TfZSeSDs<^*lp4Y%K&BP8cD zFHa=YmRbgICt+4&uX_1+K}3OxNF0A?rI6$1J6;Y$nUpucr*t1O#YXLEoybbr3D?aa z8Isj@JN1+fCF*zcM$j{y;~`n(ty0(LMoLA@B-6Cb{~Ra0w8=}vM=gJdf(6mV-Z-S( zml~joh3X$J!TNex?;-145)Av|89bZP>RnA1FkMUZCug)3{znG4v^P%mghz7ZmIQA8 z=4H80>AqIcu7)d=veP-^yLYM{Ls{PlQZ<#`qOWabb)Vp}u4(6U{0xan-p8kKL6OEZ zYL=R>3Am_bST#27C$z1o(W5Eu1I&rI!s7uj=BR7iKYFcKvM295({if!{TMSacr0jo z;H=y22?8^y8YzA7{)W={M7xWbx)*)EkNPtq)qRYw!fJ){I4{QTt)uz73#aa#7OWs5 zO<3V5lKUw!#WQL$DezA&ySuq528nwhP$GJ1xe$Aq$qm~l(j7ukb@fm88K1*R-O_x< z3hqRw!M4SAaaqgrEHUKr;ko147tdeEY&sR4%_#=?Ts$cloE7&a}Iol?nCR#6>G#oA0>0vq;{zggb16>e@NB zY%!H)XjNLeo#RB5U1%U4Wt2S5Y=orX=stDj~}}3&2Zt$*5zk{m93f`#n8T z#)vMR6`MHB&MbvXjpy>7jUh-T%-RNF-H#eVEfe=X>rC;EE@exn&^gfXJHAZ_eq9R8 zJuU6r+vxajJ8|bQc|8S}?a_{wuCR?sm{Vh0$4W}68gGt2h}@T&IHao8aBk=gSov{` zs#$K`@JfkF)k!{FfIY+BE7|NknBB)2oW|;qqf0F@E=!GaEGqL zA^b(?-%J2rUICY&RzC8uRID2Xe>;Ws-b+;|wBYe7NUc9_6wLTKeWIU&MQdDPS~a{J zYcZrZFBMb#NX>BX5kFwO zp?LSZ{cQL>{;45|E(G&y6K|Cn3C<+#MGzgg`Lv$P*-3>G8R|=hkePBQUOmjPKjtu$ zQt-v7@n9w0_j=$#Ddsg1p3CeU?llYw)MRmh@r)O@Y9{WLCn;!!aR_r`8=+>bZw!Q= z+f6j+S3O*DKh&ovCPZ~#sqrvU5qw6X^-31y@7u1KO>)z&z7o~MGX7JvXgV~|kA+LS zd->!@JE*kclUk5^u@0tkgEok#LRCRjB--7>#(Qc}@P2H$8A4kPs~HWcqwb}Z(MFil zygHz1DumS|7RW?e^E+&CatG{WEEXRUr+)r+=+951E-&CupDs!KEM z7-!e_goA$yPSDdZXkkVOgX>gcPMpBqLltW`UMW*QcExt)hN0$kXhwarqhW{3Nfr%j z-3qDpc;80E@GAR*KgZ*H5&H!?iPq&#vPpb&4NQRzNBc4VEStPxh?u}}wxuJ=GQpIP zKjIn8m82f&oY{xi9Dqy^QUBfY5~3`GpB9s z9GHCbi64qJiZ-@#sN#qWA(cYym?EuO;Twk*75huCYMpj6xVCCOZYcNWh@odY*_QkE z38?rado?PveoB+e*VnvuP>~S5pKXc6c1`b7@=F0+D4HAEt_hNqFV?xhSD$y2q>LIQ zKfJ#x;5Qg941Mm26BxQn-}6)Wi}+9ix78nBn}x561;)C0N-!qTZ}(@^R5~50DS0c+ zaW_D_t8|(A`DlRRh=Y2m`(>bH_s5wdy%nEosKec#w1r?Jj#iIt6k{r-6Bgc^4FCMO zEr=cTyQ^V*rp^{fNLSOxRV0}zt1rkPH!Fl3alYM2JzqamY~{qHo|!sNIzU0cd{HP8 z5!fmX`W`b4q*mm7@b)g87>Z@~227g2L#`j}n5ZBlb72yR_5<+R+i&akA9{rPGsPk!PReU1i#K(A_vFc!MhqY_Z?T)gP5;}-v<2EXHW+96d9 z8PwiB0^m91g0>}}0e$bS_}O_P%zTa`4TNwjW-Gr2_Os-S1wYoD{%By7k>C444BXo8 zoC6tEgP{$%a`~5^5AtqJHzYUvp9?1x7P+^RFl#rh@xA2VaKOP=!nZUxPI@fHXEvZ2 z(0kjMGtaMuDaUG}W7%>U9T6+Bx{h)qFP zk1rc*m7UF{(PiQ!efeT2J|<0$=6?KM7Rh16wLVjL6;90f9*8@Cf~8Mbu=24|7xf^hAk_(&c$}HB<-wi+xXtbmBj3R)k+(PI;T|u%;wtP zsHjVx>>_W~fMP2N!bmT}&DcRM#@(A&9`C*eTBs=x$37-uZnFusz65d~OTzZJYsmO< z0Dg*&KCFG027G>&CL-A=O`=!hI~M@8RE7v-j8>f3K(e0)pzkJp41*j_Fep zj|rc25|`B1fIhtHTzQ-%7@_B$-DzNnWz#MwxoK?S+Xavn2JMVjVb5$D6nD>y>s;*Q zHbF2pU{hDCG>=U$C?az9o-gG*BW!X-a4I8=diC^r|4&7j7_p1oGo$V1<{+KC5@~h! zTIYF|ljD_ll@sl-jQRr|{2C}=bp>34u1kP@8Frd35xS`sViRYj*B&fF~$s(@OYcXV3U{)X<17n%>F%9Q(xxF&%bTcM30d>`u0G7ggO$?m-HZ~NYeeRVT z4n1r>tc>%V>L@cL}bLomP3mEf~(#|KA5|SJo36cc4_Pv zqTzaU@#N?E{xT(sLLqHtZq?|b-7^-ohQ8($QEf9;42?kPbUkLkcH>a6d(>+UBUJrNWVznJ6d87jhvcsb0H*)$jI*!WtJm=Hrv#rcgr+V8g zJ9ABRucA$cS5{4zYIGM#N{hi9+GUBI3ueGR-%B0QrKX$GsMuya)bEhl&3I~rX3=Pn zbO*y@me!Ut=p>jNDpPXXTXeCHjx14gAF~?Y>}l&N!Yf|Tsg+$6dj5Q2Q zCDd#f9Z@3g^+gIn<*7retwO*vN>N=ExY8cG!M(Etyp^iYJ|sSK2&RCA*-KB=#2Gs3&KnXExo1gB*RoSJf+9#+wSU&?-du6{kV3a= z_=F9m2{$d2W0=j6SZdY>4~4QLs^yD+SgXHiAe;7SOA@^7aUvqB@K;=0gDdM^RNLZm zYr03J9d`LxZqV8wRHJI`^EU$v(ZXfdgL)Ds)MSN0CX`Z3r9hJzS0^LnacW$>tG;pI zshblQ5@`7X$5MpY@W$i`_ZkCa98b zxVM*_!%<^wA3h`qX)IfHk5RpHCwYLXDHYtQi#~3!ehKyzqga+Ehf3!=s_rR$-zY3|pkfJMKCtS4GF3qn3vKZ+pvEsAbrKR1gJ8D# zA3G-7B^?#$>Ih}@K7YAV0;in4vHZ`HWVxN6;n3-Fx^Qa+)p7dc{&}=9zm5`~vtvx_ z3c-}K)xJyiFev2xd}ccX#3vPMr{+4DLvfW@jbewxD(HLhn5Mt64K^5EdBGBSy4@0a z6)-WsRAfK3{InPn$5*3KTffAB?&t2`e_zDJ$noE^ZLGxqeYTZU6a$u+j34xY^2NzX zTPL1pe%wmA>oWhwl+~BQ_7WvvMr?EY9O&^?s~ z2!|gUIDyRcwV`F!sWpJBjw~0GC>EO1=kr<6@Y$~mOMaCgdzG0nk}H2Pfl^jxbc1l# z(0w>@Ovg}G;6G#*{lZiF5@LZ1jek zk2(GTBTB?b^?T-%wd`?4(6(_h?@wdA(ucGMj37WJx$lxq_cNxjieHvYdBG~3%-IgG ziH={o<>tqxlAr{dDZ(EFb%{yxNPsgc%|_o}A)1A(ZTA0TBo1+mnu`Hu6lS|_yG@pf zzJv+cfcf{gKDD)?C^^LL$S)`ZA22nt0UGm6`Vl>4#&brj`DBs5` z&P*z4HNo{@`iOif><(gPo^DOn$2feA@j#I_li&s@WUCL{Q$AU1*I=X==#`!%bB^%;FXm{W9tBk}=;!{D|Glj=)Iy*oOv z(h~VZ-+Z=+_)HsKcLYeY3xNnNG#E_JN`fczUnS*6$kYay z@N%`k82;IUO7T2o2@i{`RzJLh-6tnw?-3cJfne)AWm(lL>9kYcN8mp2+I`M|t-Scn z(ceGPnf#|9OfxwmgID2-ZC65Lb$N%G0t4|{9B}4H8gxgd0!Qw*iD*EJjAAh~IiS4c zm3C1u<_D2M_cX^<>S8$5XvN!=-Itux^vOmpAa@uor+LaqoITn7)i|EX1MB#RoJAT$ z!yz2qZ9bd}&C||HeQn0|Th;Ib1)EWnz_|N0K(4x_S)M&B>nk(reoMyjQvq5dsWHOa zxslKxkTiwB!fB4~n2cA`Ybh^HkElg2ApY2E+b9lh8c?xn@TsgXJUL6S`|VhC6=qd! zA$0YCx;ufJ8|k_01^kgOP+X2ZAG@MobJTXmX~7&t*4*ZsE%&jJ&-Go^5SIo0vuKA^ zK8+cC>R2+@vPB6riUvkSB#$^0zweFb;&fH2F(*D|?TO;x2f2R(B>)%lQ3y*u^A+A( z@Llt_o|mYPeTj4Uo|JDMWxkJ|42bz$n*n{XWa8<5SzEL7<)s0;nJVFQ08adM3vC&!0sG3e%~E zf6FbJfLZI4fcT2_MFLkrDj>CgSnx0J1Fk+@Cdn=E zjr^2G<mtM5fAqfhpiJL%cn6mt|s##&+rMeJ1!aFj_mHm&zZ$l`_c z3AW^#J!DSx-cYxtX(QG5_52@=BEYUAA-eFh9!n4y9=mn=Lln`sCHkT8j8f~%hB@5h z?0N_}N7E{Q6%vRT`P~1+CXxaV)I>`EL*nlm@1|LHms{DQ57s9{-)-rA)Hz?KEK4#g z;z-5%L60$BnDH@-1~$o(kp2i6s>zR_g6wEe!hL4n*_q{a-nnI6&w~NG@e8Muw^ocd zSqyCUInw`UFD{)n>R`IH=d89?OPxo1j%;!(k1V3;MBFmy6lGx z6mCimQW4SFPlYiau{iA@v#oVo&3?x!`WCZk3E#{>Gpk4d(X*q1B0-n^NKM7hJ6Pz+7Pgz1!Mw=e9w4#20ALBi#_v|c2d1ZLa!tG*+o(0RMiTFFJ6QgQ!wRgV} zGyg>5Uy{K;gU|sam}JH7q5b*Ew#xZI^+M}$=ep2RD5;p`BSmgG3Z4a!sFGO)|}d*T?x!ajzDhvX+SAB{(lr6{-6KA z=R*A4p@6lif#C{JJ!gmp)d3rkBGAzh zO2###-N=R7Z~qN!`H!dO$wdOd6W5agm-|N^7k>?cXaMFLt>-nv7cxb!|G!2mU@T(* zrc)J&=;~we9{hu`PyqugaDn}wZ}ETho5z{pGv?3ieRP61+E9HW9$$A_;m?6{g00x2NIaw}@J?OxP_HPEgSEFj21~6rFOg(-sutJ|YJ$ zdtAg}BSwssq+6w4NMzxZhwlbZm=hEE`v`%L{XdsF;#~&+u`ics^MD)drpJYYjDsM6 zux6@qLsBk7G%Xp)KXLCS$qCHi1_0=&9oBadPNMqYZn6LKn;oE@!JsDxBOR9HJE&EA zc%eW0&66R1{(Y=aO%gQ7X99*#4qO5`x?lM0F*DHh!3-MW=knosr`q!nBl-Vb-F=#V z<^sZ8qgb@mCa23x=-(lAA{(sq!L?DPo^mcs+K~G!De3BYRH_@e@;KcN-A#uwFB|kl z&L`-FH2vo<*z1kNlS{%*5^>KD9^f_DUA$tpOBeq6qV%z!|H^t%pS~TP4#LF;eu%;v zn`h33vjFcuTz4FlE0tXt$z`$b`O4?`g+}O=p_%gM$tk1qRG9Vysr}D7A70WZZUGA% z$JPWa#nDnncE08O{%YwxaGrzaHDN%=p08h<_a~sr0%JdL6Bhm1)>hc^kBt=4Qop#X zLQ-BvsaKhbfr~;0Vdbn4mA9=}At`D)^)svKX-+H!@#Hj*{zQQ&1#nb7l8zII9y*I| z|EahuWNW`&wv<135Arp`KpVxV_w{De)ML{sx=*!2Ta*oUBA+}t5|gerg$z#Mv`cO8 zqG?`6Ucb93a&3D5x)b+D$X`4!US3zhTgLBoKalrxveRJA>@{X-T5R#&LpPpl}vGYP?SP z?e>wVH*oS_fYmvmkVu(+_VldkiL&FfRRX4E<+};giKV9poo~T%mO@|6t#m$7wKMDa zm=wJ)8T(RKsFvX2sS{q$25NTnU@MAX)5=e0<&E`_O=aVgRRWpy9E!gS5Ec2mE$cAaaS&?SFSVw45=A%K+OhAMv0Qq{zsn@iCB9z~L_2$L( z`0BHSxXExPt&xuxpVqlR;C*xQdsxafu zF^h2|O5=AbqI?L%H5teFq-=w{6_v>l&nNEAz3&3{WgF&K|A@h?TSHb1TiRL6p4}#8 z`g9PIKa?2zx_D!Y-*K==%dK!sdFUxbp)0a+2y}Lgovt$Isk-^5+}Y!TZ5;{FAAyTJ{@%vPHD zAGDgwvf&6`9mC98b@4Z0Ag3Ao=JNh>oRJhz)wDfD^xlBae4^R>8{Q8U2SyFXu2m zSGo4aS^5l{>AyIN!F=)!+~${?@fd*X_+QyR9KZgt(yF$T{-Cp`QA}SZVV#<|TOy7L zy&&tD`GeFcxJ;kxNhLL1S=MX2J-9i6Z@d|s=J&>KqcUkE*G_iJP_rY9;z_zn%cmOM zQs*K8(GMiEQy}L=K5CY^>ni^B4Q}%n&B8GKW817;yKFAyW=Xq-V-LWZ{8_3PGEWEW z-oViW$U{jFw56MT%;&LY}t$Bd5b8OFWNBjgkp5mbfHG~w(4gA60#?~L=KjGKH3oE8>+(bx&tGr2$= zEz!qQ6&f^p-bEIA?LCu?5AR#L3TafC8s4-$ruWSooi>ls{cknE-W%+Y;4ven*>QUL62qy zUXrA^hEf%Mo&4TbkP(847j!>jba9(~HSMAmqR?=<@KqBm*kE{(m}C5yoKQD? zmt4Jr-%ZO*CIHSHflIMDY%8TYTAY__q-<^?;_+EvUIljrUkI52Sn`v@b(Bz7IF8$N zxF~3p$8;>`Z6VIw)Byi?@|eXjqS))yFqXo|yH;oA5>_TbC;`CehA+e}NafB4;t}~9 zY<^lh@2Tm;Z?3eSZH>&cwTRDBDzOb7IVi8A$8&VGa)We?2Ldq7nYS`Rp#6tlr!Us_ z|1PEjFZkm7u!zTY@qLH|KOa7r`(F&+{>1}&%v~Uvl4&$&^i8WNfKD<&h|G{LD#myy zl8knYg2VKtL4UHSSo8OSjgd2vO#qp&$?5Y3uII=tDwfYmEo59nQfhIfBosfI)_=nm zP|`aXhQ0TQiLfZ`{)axj64>P=4iLbY90;jGq{`V5lGP$|pM3ua zv`ugEN!?kI=^wEV z@Kx-Vx{7F(umh_7?^_4e)QmfQq(WUUk_ee}O8v<5neQH~vNrEK?=46ssY~>}MF2rw zkSZFGIGlh*(i1L3{D6xcSZs9@cB(~^v#Ki+E4k80#|vmJn+*FA(?%ZV3koWu(3yc< z(|}1b3G4W=T~$uBl(_OP=tf0#wCE2s1!sf{@Xp{xv8a8ZZGE9t)HUZBh4PC0O3OP#^|_gzP1*7CT2{ zi`0%fwwAhM6ycIoAP0vGl-0lcS^-;ONoCh(xNW6foCxH!;=tVpQ`Z3RE=g$>i6Q~{ zxHzqunQ$)24J>y@T~#byzfnbAl+ppZ=b?(I{IbN7aFcwHctvVL2I_E&TXnfb`qlum z5+m~_!fN~-XaZLr+~*j|A^bwG2dBp8n1kmiSNxci{ch5fo<)0oMPg51?B2Y2cIV;d zKwb44;MU6hu(oh8H%~{W&M%(3a<;?*g!z6Xc~GH$$uGm^E1f%S$zRz&Jew#BD2VGP z%TDIVkat-8FwiUHdmEn1{_r~~%aJIak%?EwOZ5i5ir^}DxO{VX3eZ+k-cdI5SNP-% z^b;z5FbA_}$yQsWqrZ%xG4@c4(_)<`fUC%51KsJ-H%3|9G^a|jY{L%YtH|qAbxA?Z zEGpKk8!)BgUNv0^kb#a>Pow5D0lj4Go9(ML*}WFWRfcCLz2RaO4X1oJj@%bL>{{)$ z8!2tDzr02EvA;BpdSfMQ7EYhOUKi}VSGUZQ?*4&(9iji4dt+8DcO|BKSI3c2p$4yB zd8IQEj=y9++U(JHZ*_+VOZ!*W3_PD-vsMt*-OE=CE*E$gL+`TuCxXMJu`Rdgd_*0n zXMiZz)LAhn!JVgU)uBh^^76PV^sG@H#Rm2&qOz5rd$$ecnuURC4p4cdZd-gIcd)0| zq*}Rv{0#h(Nj_&BPEEX|wts;vR%$~93fw{0sP4qSlza72$V1_P@yt3RK@9`&eA6ES zLb7lZ^xTw3GNEe!0Pk=YQ~&8MC|}#tC6IJC?JHv>%>6TJHqcYTrm;Om9fnMd{5GA_ zVQzF?lGB2#Q?RPz%njhKO4MOrx>?ZbCgT$^kp5&rZgckx+IICWl>$pS!sxrTu){ky zhC>1?SuNIhhtzq#7!4VYz35rPgC4S62sYr`6J7ZZTe@jaE*>`62t zF6MYDXrjW*^6C6r~_)EK(8+S?PPC_L<7+ z>=yx_ykGDRql{c|P3mP|*_!qI-37@}b=(+KIcYHq8wSw>OL3T-Ef3S#(%L_J+KZVT z&1Y^0t0}P9V^|1eTDFm>-}e}NC-M~Ss+fM#a!Wz$o}Ef&_a{Dp5c^JcNrQr^_iCFd z95Pe9i-GZ6=TegjY|Ik%HRsD`FUVvXinLHmz2+8b>{kt)m%3g*r+PF~*HK;Is@80* z){l=G!^&b*ie(*_dFRV2&9?1gZ3JN~6$Ea?rQ^E51sn}ORQ^1iwrziCg`CSu=ol?|nUOq3iuEp8T!pv-3U zH4%VF-yFYw=+xOL^n~UwHk&uUVlF|qX#38~JhO`hOADqqEY#A3{Mm$jcBvLT3%t** z?*cgG9M-0{JxppDkTWHO*(e_me5DrKL8~jCtF#eH`*hf6oLUgu4O2VF?k>%V^mS5a z=`kpO8R~0SxnQEzH!=EsJQP~-=3|gx?~+k(G8>e~_Mm#g++hcbiasiFp5iK94e$6w z;+(fSs;95}s>%dsJfBN4ZVT0%QQmZ0*%mCt0Fh{(03xexMBS^4_H9v%a*5@X%GqX) zV3Ls=h|;KwdaSYnvrgQY4y+ zv{kA)sCN4fx0ZN9rBEpZ0F5*PVQ(BKnJyb#JS`LPSW3goYx&yZ?$L1% zQm_Ko(JFX7hCznyi}Md-1q-KcOEgwn8e!v6l=R}blT-8~&gr6?jW>Vkn-7&&e9y-G zL2u0X^)^x%8D%Bw;HY5Ir~DQ|c2}{rpEYQb|0*tt@`1H(ll|i>u2XPJh)c?{WuvK) z)8`|0c^>ki$FPio;yy0(2{rXvvj(#!%}>C7A^(<>oZpbqpnDz5 zpV8{hX}l}pidqh-1`fJ#5E=HN!c;lyCSh|z&=fL1r-BnG-}fmwg3AnhKmYk(bb<7w zq|eS}C+pp4DohZ*0H`^H9B%V91ZG%V-3_U&z2@Y^_EA&P#>vTlVVj@{iKKdKebX}Q zA!31K+OEOn8FFhdd|=lja~kUw0W)%RbUcg~oIhI>l9kIh9Q7nn-P)Rg(KI^j1Qlsb zW|&6ZRu=aH@gV8Od;7n`pHMCL#218-Az*997_pNs-m;}G1-v*8gI_&l+lFk!pTrQB z^}U!rN5DA;1T2c{?aW;LNbEIuRwa|8xJPQFWigqk)&H|))(SAWejvqmeuWmIdsK3n zK+AO0Bp4VBb!U?;ZUR4`kjD=0DvP4oI^2v+aU8LnxI5pX-(S>gsL{~}EZB3po3pid zb(@cp*=~UJzgyUXf?)kp$FWSGjA)_(Q@_b^!D2$V*;~LaI{hP<|#(zlj`9b_oJyQ zH@&Io*WaiG$rZmnl8P>BZNA144s0w5Qsn)%O;?Uz8Xnw_!O$|0En3c2k_@JcRgiU@ zgq)pCxJ_U{Ljp-OTapoSv!wXkFsG3UaD>X96oGjw7G%>5vK@26(2way{WYGSkVg4j zN!B2)+?i@R;Qo`hzlx9fKPbL_gtB(*F*cj3;awjqB>c2PKvgTE#MN=)(0!lHlCpeb z;BMYJ7gvEsXtj<0#(YvQ!b3XP<&oXpO{11kqXl4MH%3-+s8<^M_}w+782&{NrnQPR zx(^x_yZ&a(A{TZ1t%>#`KM4$*VdQgTsb+7Cpb^XnzPlrO!tub9KLziB2vxhXMZL3UT#Rc zbPdOF<&Hi7tMjxgNU?N&=>0qP`KCRLikY0YD_xf{0U4B*ADhSX5d|GxOZeeDHngCS zlQ8e(HCK@ikRZ5=__e=BDoVJ9-Imh0QL_~L6;40mv_7InwH$#VnoHs^3nZiDYA^9{ zAgPR4luoEvzWldRxG8Tda8Is>3&x=DNPhj1HMp>8Te4O@LlTEn6rS zYWF`IK<2zROXPQ=M%Frfl?>;nAOiU$A_cMR2kb_=I*ai{iTx4$*~9F>P#XFcvgALA zDE?T3zSLJ_1f3q|9^(@aEr@+(QZQJcvm`}EbQnEQNw}&^9FdmCu)%dJXQeyl2GMWX z&FGu;CwE%E+z2}*UfrI~B0Z$x`HFXIAq|ABOGLBWBBK9rNlExozH+g@j<;n?GsLp} zuG$T;h-cElqWFeS6d9*hT1R09G&%Ofj1C6dOqvv`(PH05Z-(_HzP<+z`;LORh;Tra ze|gggB2^yc<*`Y|Foj+|bGy#-$(&<+)@pO7f2R9{a&05!O%)!}v+(0pP+r+o&EE0} zPbp;OWBZ)~toc~FAjp2kj(TseaV+Zri)M~W)iV&bW(2KW_L$_%J&4iK6yzToR2AR2 zRKHgxC4|Y6BpFT-$M)xOSYcnYKO<5#JhXFg(81lczww7-YhAtQjuy1&?gOlf(OC%A z7@7Bc9g%O~d7DYOC<`a;76i1`>-v6SdvW$WP47iMfdYt=ogWb}-0ps4viKn&q$ za}`Uth$>;d?aOf4!!xITp)*{S#|D?H>K~)6b}BB28JBrgf%Xm-W{Ok}IxSFzwe8Q% zD|FXm!&p3#a8O%&23$r-41MSP*MzIlVNy;k?Xn-?A#X*yR24rW5-octLs*6mfja~y z?dYx;hps`#uj{8ku&eqJ**)cddbGyNJX%N+8g?M=16#J6zXunW*~wa5-GCb+%K}?e zQ=BJc2K}w8qvSAlR?rb4^8lH>b_g&}-o!-&dj@LQsQ=(N?{?+j=Y}F}m@tjmcy-hS zm*weaq$4=FVZFsv?8ZaoA=0E)J1efiX)R(?<@|2?2TDqSjwc{iwzJOQ>r z*0HIRKbo^+UkKRLq7?@H+_@?t=`rz{d*rW%3?I3W{BikCvr#CLypY>0f; zpO80VfkX~v7 z&CBBewL0Jh=?TMI2&?Il9r3U@!X2DW% z#fKf5$e_ee!OSUl8@aGp7^X}}<)jO>oKk485qcsN3Zfl!l%nhthBtTGPEyZGf$)Bf zeG~F!A0s^`?Ewr2nf|+GxG}`b!_k;)2gkr)&l#`TaD7BWi2D`yae~pBczhPhP$MKZsOy$n*$W}s?IYQy)Z==c4iqDUY`V02pmFL_d zI^&&e8I9;!@0EU?)nh&^rfGs*pSs;>sMCNlKJlzDQl@VV!K0RpzxTS*3s?I&u|wrQ zIA;I#aG#RA`Q$H;Im7+BBf?GTHt+-w3Z8)O_^aIL{$q+6K9>5=7>91!{(Qq(6)Pci z#}v4gS_vxNU~H^AI*DON-4f!iPaVUn5k`mY*Qu}CR6!)em&y!==cl5@`)8*PxVKTQ zOC8ZmZbceDEgOv0erkv1W70%Nm*@Y4^f^4%NsTeMFzbr z)p=}+g7>x^>3P|2vyT&-SG~kuerTQ?OCWr)F#^w?D9DRh{}_j7zcUTbpQ4}R*IyPu zzVPOt`@o?44nF1=QaNv>B&>lEwEopiiJ0gMj52e8#QCFt=6P*6-ZCd|`oQaP+@*wk zfhfP1t&zfp1=8seXraiGt;{fxvDZ4JYBbl|>b$br*vP&8n?&jI1ns=QMoHO0)W=dn zAMPSnL)*=M{7T^iUOUot8v&=S*EQ>p3l5Y<2YR{SmD8~D6zrlb3^|JKAyDRT5ept& zkxk+PCOtiNpOaV7gukO5A~A>F+l5mC_O(13Rzz=Na74|VT(@?m5}Y-r-ZN@VE_D>Y zsS18@ze+BHVU?YfMKy1yMRf%bDUTF}iu-&LZGSm0pFLQ0tZY9_VO>o3)_tx&;V-^K z_D}@AEmC1+UOZdJp0Wp`=vSA${PaUg3v{+F?tq43&#TD&s<+!MHy2a*9NJwOrQU3# z7CStBrp9zmK1TJRU;p82hpi$`EuQUSDA=P>OYkzByl*grj^g)$!o31$NR_)y)1WARpNZoRb>SJb)n;l zhMEdWhg?%3m0ox?N#HwjIjOMN<_Y$V)0=axSMBr6|KTv=b;Sc8FJdCEWML`7M170hS^)_Wf)E~m>5xQz+6vmaJ4#&soZ>?p4R!b#V}#>G@hT(b@aD! zrSz;L8LUc&YnFolmfqKnuZFzyB>X;uttz+iOuVMzkk(u++5e zt>7#mnNmf&397C4UIAgB4~yEX+%qX2=iQe;Q4lDKZ}ddD=h1RKsNf_5>eIm;07S9{VqdpQMsn@b7#6l{8RSBEy!2UXST);s7rrd*t3nrefN75LL^M){+ziA z3o9x3^B|UZyuyqP@L2x;UWk^DkTn?J+eu~}_9hA$B5t!AIZWfm)8!%5jq0O;-zc~V z`jYsISCRmAz!J+%^_^C9Xffv(2l;Cgi$jnvNJQX5<$HU@bR~{sy3tt>_GL7*;Qbdd z)`L2`l`iiBHIDiHD6`#z=?sKAC1z{lCt?Zc#Ex>UpF4UjCPqZ7qF5W zhUzyi>QuoR&o2`@Bl=s1+Uy9K6eXOggaQw#JcbR2v!&nc&NZQTnZg5ZJ;>H8!#)CG zN4<4_PVOe8<%#IG?s_xIS3kC#uJbh=-NyG*vRX}kfc z;OPj0!hia!jHVA(&E7xbeXf-EsQD|wUG&l=0r#Vutnu7$GyEJJASxKz8zDATRvJOZ zavAHmK97mnl=>Jn?+~|4qN-|xeX;{=_zY1zn<_C_cA^T>5KDBCwiU|zD(IBnM$B`g zJJfu)DY%Ys=Ma}|z~dI3H*|6^d*;^>Y`^<<|H&NU^c-Hcm3;E{>Is@A55gA36piSg zxQwon7wQ%bB55CJf)cW*zKrP)4PNfT9>mQK7P#<3g^zpCTd0KIwtqIN0@>YSwKvIk zRiL9W(198YqjK{>yt@=5T-l{9`lPNHvah%^*VV>(+h2|UEL7}?WG84VzeN2;_zC}~ zGmOd@C&*#qaozli!zQpo0QT7vjWu&7$)m>*W&;R4}>kk92AH z2;+oXHbHE{jgiovjI&}BIX-ds@;KL#WdYu2-uC(lNjda7WYkQRx5=J z>#ZP_Hs;D$f!~o&`RZ`)Uk^D#$$BMX7;kSw+>EZbM6`u`HE1N}472mUBCO`+ZP_u3 z6}eUu^3LhxG12M^wVL$X1mc`mk+v#f)R3lkm|PHm+kIz}g)Lfo9(Ys=;{P^3>D^9%0=*zdP^Vi4uG8wjro>B>wLnd=B zl}*D4SEKc91(in0-43@q3N<|6M-Vsxwh<4#J~pxwqVtMIsaIo4BBA3D{f&seOo%0I z5r~e~O6oWzewDw$2{2t!6Tk7(A-mD@{gKvY>*RP>G;4sR7T;sd>JqUCg6*1`QgdgXPdbC->k{E5k7hAT%cZ$3-Y!k+mNy(swtMse*y}E z1IU=FS^IrT(VMR?@hg3*uX0`Piebx0hn)x_WkdVT zLvKryd%yo0@i@o4aT@h`|M8iT`&R-&O(kMHv7(c!vN|4b^pw=pReF_`h_GzDUsyY~ zSNTm;gjm-fzF)t;x-G{_SC$igSO(=T8QX|>2Iq#-Bl;+u@x(&njv%v!5ZvVwDoLu;qc$jh<~j({0@8cz2(zbD03`) z>xX3(fgC_Wvh@BR*4{fR>TKHg)^Q|5$zt&{LaU7G#J)_yOIiFWbXy;sDG5V%YJ@PM!VSQ zU7XMBufl#(Nj48n^rTSN%H1irq-gfA(e^c+aBLcr-!t|b z5QwvgR=8wzmEIGqZ|cBQBE|*K411x>JJVHzu?ea3Q5o(ZO=f z9!93ijA;$J4`ID+HpYv^_SYp}4;9fZz5V9f)dTXAU(r-iPoz)4FMV6k8n?Z>D!9A& zQ$L(7(d=mCmQd+ZdU;c;<&nyn#et=f65AmThuJbaF-|Ny^|oL>6Dut_)%NX5JUww= zvT0io|C@;*fbG%DnMki4i*JoG*7xKbg0-9IDq^d~;3rTQfn zP5s3_MJeySOWZh*#1^}C<16J^!F_Qk?AfgT;RL@nk=D1lQ0N;@PDpdXYx?WKW5#X< z#7O0Wvcu&dG1uwqyea5UT8|qY{8W2PxTzn7)D#n1}pJnO&G|`1k zKYmR^nO;65#%y$w&xJ7%PL;7-Maq`jZn!p1H$Zvs3PcmAV5dIUx;D`=avvMk$(g=X zrMp;2bH5M!Npj~Z@hK-B{S(M>2(c%hpAeGI#ows|)UWYsCd_an6`1pX+ZM50#EWPO zFeHVDy&9we+C2aK_E5pl*b~18`#AtWTp{35OH=C5W{JipVK%X2ly7~5?BDLCZ^#8~ zX#GA|t+<*R@eG9#nu4aC`3Tp_x{X`C=!{onRlEs5RyE;~`FdSm@5rF-S^?|X39Q*& zgV`2rE2*Y>bD8?Tc3(4oL2Tz2$+;Itv2;f)z4hs2kLS#Pk?9gD+>#L+slntL!|t=Wjl*UJ3?% zU~?Bg$8GaYf1449nd3upq*-O&#l9RT>4}(w_W(fizZ?JtQ?uNs5L~_WrXr*<_qO+H6igi<3H~v0 zR&ET~O6+Ir(*#JhF4Mx~d~yLjL8gRSmg~dNL>?#fP4!L~00jexxgqX6)w* z>>Y0u&Lxt?D`IpdSq__aiJMvmI&&WR%T#b0*1Qc9bDWtZOhKI(7*8LK z#Gh-WzEk1w6pc*9UAbV5zgs1V;BF0-kU`Ea&>|mvp1_I6m+BIhwkW$sNdj5rx7eG~ zypRK8;Pwo?Z%U5uFL?-9CEd+Jj`Tmsz@7s?er78T+^LRE3e^1a-)=wgPr9k@vpX%u zZQA1!xx3+z7&_~T^%W!e=Wx<(?^Re$7!_h4%yYsQA>%A;81{bcJ+J)7Hr}E`0f7vZ}I$GA;HFj1) zC||ft!>agpiM^(X46Q6Et(07-+~tHUaH9EoAxvDdWCoi&g_L#}*G=rbl|R)pwmuWLpB~BK^-$9*41yJy$w+tpt#{(P<_c7 z!;+NU{=MD;vW~gb!tQ|7eWlGy`||<0&Hl+pIV|W+gnfQ(c!j(D8pu+M&hhe_EwOQ& z_K@E|@FqX+(VKc$;QeFaU0y=fcb^|{oRyITw?Y_&fa>H8>iOS6Phpx24L9UQ>Sa#! zg@G^V4>qbqvTaS`#7$e@E_p=#;Ya;^_D(K?1WC9ez$)t(xjC!A?t_U65XoUxR+#HC z_IoPJc1hApH<+CEXHmP~&g|u>hLcZ(bH>sS*;5aWPAsK7Pbs5Y!W0HyH_zbo?>A@<5KY>mIBPDn5l?n1t&b<{u`xSj1%+i=D8H3JEPp?I!Cd%%lHeg>H{vkLm?4) z8@NSMYWhl%Nv~t_yI)MD6kcGFz?>RRR(UeT-!gmyCNek`L!k?eQ?;JtL+}yhJ?psM zI!*n`6Yr_Rcwi&!Oom}ZI@=B9T?XS>A$oUsI5gXK&#}ax+{AN)g^4QH|K$bn-#768 zK^+D-u;c##(=XJRKj0Hn&|idTO0M6hCRhz!odm09S=&wt`WCv^DC{HMoC+nPN`g8dX zPA1vBPRA+=PnW$azKghftTs8rTyy>prKaZua!7hV{SZkx;1I+{e7q%`^Rw%$(QA(pN5!mA@$wNh zkDD#CxEHgS{iMR$^PycU=O<}l6iWl+6fQtdF9q8N%LC~KM#_9y6+B%`sqEJ+4PR(7e&GPVz#5EcSeSbKW6zhKDS8Ly0kvz%?|pCS2YZhE*7dv zU?D*`Vzkyvcpf+P{AE@%6D^tok#9~ZCY99x03VZhJ(msiNCHhYF z1DCx-M!oq8Wu>9pd8*|gnpVHzfNdY*w-d}UVqhHh0T7LL%DInKa63VW%LEM?Z1*n$ zthOzZCG?hFN|;l```eL;!r5j+Z$p$~d{ZSIg!9yrLl_3GCz=txl(svs>2O?mT{$vU z4oIU`)gMgDpfU}{G$_}Uf`~Q<2OhQIioIo7Iz>x3N=?O~j>dqKQ~K8QWQk@|!skj) zn&%1!p5RApOl3abJ1Q_Lrjc;BwvoOIirbu)IU^GH<+7SBsT$ip-QpJ8r|zc}?lS6x4C`e8tP|*J_4djH*YFW(-)M zTxE49jcP^dkf5!X;{?xW{@oA%4_$;C_~a7-oBYH#HeqD=&RC#{7Re7+a4!Q9 zL!aO?@HOZY8>m#agb?4$CSx&fUKJMkSM+O3%NK<=~ z>Z$v(9<=Tk+w3_N(ntg4lI?hdYFGoG&aKkYI=gxjAXLlY^|NdR4%T=$89iMVO>GP8 z$)W`87!5=8DdwN+iyk&TcKt=mH~a$FYSH(i^7r2`i{HMc6#gRA#axcG0c;VtR6ZzO zqK|qM<^k9N38Lz~)?#1cyS;1EdsWEbskpLwW1DNVUu=e~K5aBYI<9|95hoNdstsqT zTv+NY#|1z8mMR%`QnrBm36Yunr6&1@D5*Ept3|Wj2yzldU2$G@S23FJvEe{oDrgI)1GtBOM z6oF^d9w~eQV?V;cPG;#XX!Vog<`DKfa;Q_qy%P~@-K*Ov-!08|6W<)&DYqCh1t7Fh zdb{zT6^{PdAh*50jxXby6!EF$>H}VA(LJ%i!t@L+{8eEYM<^73gmfh%ogpFaHeyO- zv{1u}Z-}F^sx?jdB{+n4T&u!Z=`@7X-$*H3Hweu&UYm1N16~J*NS}b z4LP8>2(D~yE~pk!^I1^9RsrvH14t|>2fS^K zBSE@MUL4)FFFJw(Ij+RFX4Flry~3gcB; z6q!Z7h>cCA?ZuvKzIG-OgE}M`wBsr%7$gmh;((!E2>E@Xd6IT}VByY9Gb&bz$2ucy zcf2l;(S6GoXq3UO?dc0vO#7^1PTX=<<0z|B4D(7)6(Lgd_m;lVOq-e@H0fK>T^8z`Y zKx@wTJ3`j;FRlQ9etjo5qaye#_bvNI2Kh;DUTE^Qy5dGxR4FNx$;L$bz43|_x@YKP zET6Gz*i6LZ)!{{YGryaOZ1ieCQ*nRVSCO6eSHxzca6)c}_LAet1xRN7!`VQk%C4eI z<27fd{?Oa+iMe{wC3fTwTfNM1n_HY@S8kodWgz%;bOP3$%~diT(x<~soOVY^tE?u7 zRg(vGWG{BQwJ0{tvtzm9dhwDaXWw@V5uLsjJM~8u4fv zCW${nJs{)SXF0^&W8z6e~Fbnb2+$vWFzKl4|Hh)}1lGS}=`Q#QZhk)t2FMRS$6t|JFc#{75 zR??l1mK1E_ls3b*{+BSK@XLY*LWG5yxp#5jyMYyqYpZRcxVJcpKfQp&T571Y^D{O=sht`h$QiP(*MyK<_hzG9=hA*ml@ zIW=`d51v)>mY=p`O$_^J*@%w6<+yGjO4QC8*8+m8^^AS@Ljvrh>d13O+|gND0qx{jC$pp*4OpzD)Iq1(TPANO4sp;BF@)zc1*|v1 z-}(ZO8|nbAaUm)}4xz=Jusq*QfCgvE^jDEs_waq*imSXDjCC%*{Bd8OX*a^$xf@WxTj!HO z(_e2c^EltLze}W);e8Zdmndy{Zh5Hq&B4|jgW^O(9>iGAk@gmruWD_i91N(~HeWuL#j5jXx_*&MpY`odi%=;btRxYvR8WHQWqpV2=x z&D$0L7`{TZwql~BE@0CYAaU4&{+X0zUIvE&Hrpb!A;M+V_{=T?_xYS4bh-aBC?FN9 z;k0(4?ry6#1n8JaWlpeHV`0>nIQT?AvmUrDdK_$Ca$B1O>w7p8&D=4gEI|Ho?;_YA zEgeL1W@*=X?rh4b`g-;9-8NAE%$CEXfdhe6+I1U4l)TF%5~keKS6U8`QIyj-;*1&z zT?>&X^e%#LJm~T~aBnXa0j|n2KyPsQpDN~sDEwU6X<+Lf&W{OG<2OuLuYd*Wm!}Q$ zr3Jc~%)k`Uc8bvb?_JLS`UYosBE*mHHwev!kLh2r#l6Mj5N%P|kAwFtO)Ye!{3@f* zc{Q;s6NF0iBLxbnJnCvsm}NDv(M`aCp#@G$?iylRm-^3ad(_Q^;is(yWrx3(?fPWl zMcvnAi91kXo3kke(-k?lYf1_05&bq>9av+JtzJP zD*oNK$=~Yb--+LJ+qczoT%Yt@MY}&GNx#aU@+O$nr)9}*!nGC5e@9E|P#T6D&1Nf) z)>G;wmW(1_v1SmA}oHV1uYNPwPkLJV?L4^yXiMgC!rWm z07p}pXyrQf7<#)BuhMlfWj<>`E*zdCg@PRz5S_aTWgfu(=vf|=^kv7#v7X;wmL_Ur z#IGPNfoQ?(eq_mrd?#1%I`|`|qN>ssBF5KhpI_GN0WIcCb8E+u`1cRoG2^IUfFf`{ zuPV^3a*SvAfMDwPVbWC#ePe*oXx&Dd9-I@Q@^pJg#~+>IPF>(PEf1l`PHE!hz4!P#7CHUJ1W4Qjg5Sv%QzVCIJ(0fr4L3M?Zm9MDLOxj ze>dRa3|>#)t4azVVnPkyhnuNG)8C%p8apj>d({v7DjrH+l~ss@Y8rb;x&_ z+N0Y+VAZ7B2iMpC7=g%dk1{SXz){hMg3Um3O&Drvue%97;adIn=$gtV6c|rPp7Zir zmk0G26tb!MT(8-Tb)LD26a*WZ8<19=*9MT37Pl= zgTbL!qQ>U@GJgAqaM!yevy^{yAg5;d_t8!li%<+WgX6nTz7_pU{punq=cCvy7D=Bl z{^4^o8;)Kn8h;Vjrkx`)bN{3F2e4f=JW~5(+@XwB6rk(CZ2Cm)6Z%UdtFdTo* zD!=gOOrjW7*t_O&^*>>5jz{s|Zgi!mK3^{C5+27d%uzs;=c+JFkN*1mLfHQSQOG~U zL)%rlDZIqKFMrq6cxW4cuD^+a|Kx`xA_c!s(AV2eAB;I)lMZMH~L0WSZ^#& z*1J=co3<)|2{S_T1~yM>d=+o}PsD>w8{@WX@*f;E`;7}k))~MYre_rC$_Ex=0_Ii_ zgX>AUbJh7}&-?Len`>GHz4BkaPP;UC?$FWkKYtB2h0IKyct1?LC0=3K6Y7jQ4g@YP zW8rh_GNd@F_4d`IN@}o$IN418qzgC_IIezmN}hPl$juAT!nXi9zvlgZRkXcnDA}Sb zne*{r0a#}f-1HSlR)uW#nW3+yS?wlj4z&|p#n%OT3}3+)V(%zZ-qNobG?!)FOvhga zHGl|0>K{Y%)fuMC3HAT5%=~>757vnZ_c54=InqlAkXk@qA#lae| z2^(WQDk&|sTdSG(q&2bJtgqfu@UHD3`_oc$>Cxq(B4O`tDGCNDYJjeTI>D1giN$sL z!MjsnFO;9WHhCz4zjl2dqnbyKy{gzV8JkJpkb! z7(~LcxIW|@8yp@WXi)YS*sm)xVZPXv zEOz0l0COO*CU3K5l`kJYyoXou?G@{Jm%$N4AQ6542*w*$h6%Vg6%Vxv_SgG#gKUuF5+wFgS55kf;QV z>%WsdJJt;8Qshvdl5$j;XOgQ~ItUR{{V3YHj`r?tGSmmFQMxm+-!Jn#tM+oe@-3YW zz<&enYlP^w6P`yO==HSBtyb1P2M|gSovf7pvJ3p|i=NAUm*8lG)>#xVWRL5scUyW( z&7nAx;QZ@T*zme?Bx@_MafsrwGM(3Pp|~oVGS;4$V7y}LcIw@(mob647T(e;tB>uB$^5x2R$-Q1y58pUf)Hs2l7zTjKD_~DkP2J@CgAXwdc&2GHvTc*Ma zFk`G{=#lA#f%8jwwvu|sl9KCT)aSg?aDGa_MQIr;Jj`wKk0Oq~rc|}W>2P{5C*>=f zpT@Vb_&Q$!_drWd_HpbDWV%#(vZ!4fCFGJpQ(13=-kqGsab&=0S^4dio1K=EV~k+9 zil9A`rM*iZ5yh{sePSLKW!?A*Vb=bBwmY@{M*i?-De4q7VePJRQf6%w(^AY1(vchH z>7cBQ!xN&HYyKZx>i;dz27Z*wAVMy7r-pq|41Ll6_00{#yedsX(qRFET54kQE5Sr@ z+$jbPFCS@r(mjWR^yY1@ddGsoR@+41Gj0u3{FuSQJNv6>n}JftOoc>omr%uniM*I0raB{DNQjhGKiB4H zc}q$doh>+&!}ezB$2V>Xa1Evz>V zg@Q&Zg+P-729t|)1d>%j)M)`xrxRPjIqQHWy&TQ&EsD19>=;6hrW|9LPy}e2$0g4y zhIc&U~@^c&3*Ore-ID=vEUsb2SC{`1L%79!}_1q zmxgIMNc)CA>1l?T4FKjj)&qP`xOQ=92i(;C-9pz>u#;TMcUu=yZqwGmbH#8K>lbD_FEAFR(K-FlVL*$v3gKE|HmT1^IWaIkW}B@f@fYV!^MV0 z=_U-59u_aB517FoV1k(I>di$urR5q)4DvopJI2#^Es#lJubu4@Jx27#!Q=niJOB4Z z#RUz502)lUafUxxVpH>yX1;;;ry3pM=8}Hjp9jJ$pG1y8!9vmKg_X}%y4b4%;SsF? zd*KSmX3U{O>jU{}%e||EOLw63Zu75a3k>Qi`e=bAi&AqiX*6JZ(Ap?pLguGm#?ZVC zD+}=t5wPQfb2h`D6sLSVPgw4Y5qu#e*;NLcD7sc)R_zxSeF3VB!rpLsn076flD1U0 zX42v@jobSIf(iXt6<|NwX{O}p3F;O22RGGZ>gp3@BG1^`J#whGxAz>tp)rGXm6U7_ zkP+253EFVE1|kHHx-+6M+z75^#qx8y#*UB6(e5PtlV0Wcr!@Wq<8o7Ouie!**CUuR zK^E~+Iwggwu#N4nPDKC@?IqZui2bC8?P%GhmQYG1uwTb%=_j{gYP~&L;x)5)#aQX% zA^1Jl<-2NW_v|IQwN2JDTS84T$=nt-dp?vi?1&Md>E03RRagwMg32uPQVkf@vq*4+ z?O1g67VGOs2XA%WwJwk$f%n&zM`(Z9Djdiw>QPePW3YO4_iWLa0eo3gKm^f2G9~Hx zppx5VA%CP+`CZ*pa}g16_wsX$fs*v+Yk11)bk~J??N7S$Bo)OyE5Nf+`;)<&ARLy{ zzM*zFOvq*776qFyfeM|V0vLdDTIgiZf*U;0QC%Ob<9vHXAd8QGA|+>vK64_SjBaq~ zedXe}fG7^daVQQbwZZ1)@E)0TyYXLL_aRmiUc0Z56;)b^tinF`;97?~a_f$PhC!FQ zfx-*nxA9D13E)hS96w$yU6LtDSImn$m72W4(|LxH^qFR;;ns!wMPf=B6Y%dA2-hNQ zkU+BS^-;b-l%7-!x9LOtcwY`UtT)sl`}eK@!YGH#hsh=S@gxuAo)n;8E&TNO3NdM# z#d8(rDz3N$0<<6ckQ~_5Ivr&Bix<4ZuU(y4N7vVS?pzNobVUK@?Hb$hoRakC=_XS8 z#$-^Yky5=Py7N@bFI+_CeCLzmE%im`lJpv_xhsxY?kDWW@Tg^3?=7Eeq7oOo;ec0? zrfFfco$QG;WkJ1$`H$+gr}%o!y>g*zcBzis$S90jQX7nnBQ6b#1b!XnVTk)!YS1+Q zbjurCf_{|+r^jl?)ic4#rYbJ7NL;C0>>R>v^Lf9wEzr*WNG7CnyT@;Pz7UR?RO}hR z+<;^;i55fxEPp9aolW){ip)oHLezfLAE=P#RyP)(mYY5pEY+cc;r5+|hpdwS@r@`j z>E5xvfYXqacF*$MiFY3TbzL4?=dzf{VQsncbNMA_FE~e5h!q;KyjO0fyan|3$*v!E zBHqrFw0+nI1~iJ57OGu!-y~Ea91ghRCu7ErTR({nnxM~gj!wath*>_#^Qu?G*^G53 z9>ajM^viFO5@K2zE*&^$zhYK#CK6yjcXWc=dw@o|u7w3V$tDa+Kk`7ICJCzv!BZx5 z%EaEE>HK~rdjHh>{iaL*6Uin37O?mrn0DKow=JCI-66c$Ie>sTWvWW+-c+^CRgK)o zxrBqh#7Hpl{{C{i`p=&svMlgdK)%5Mc6@&pqWxK-T@3f+FZ69N-_d4<$o~W&4aUtf zE-Lq0b>|$g*1YGk|7l&!ckB*-KqlO$%S(jopa9k*SG-GTgqV z*+#Koz?FeA9dizAIvlFp2bSrTw~xVd2~{jjlZJq5nQ~4~jNVuSl<}cp%`=Dj53PqO zqZe&Piras-zC-c$!Z1-+m*Ij0(4}!&{$#Prrj#i`jhq`(4KTYYDnfM4eV~8w`X&h) z`n&&8Ltj8j^cXNl0fYt98JU#gK;QR}Byo)cECdgTE7CT33$HTJAbxj3b~lnKd4c^rFD|f{6SeyG^x;zPl#L z-%GPl!<^-O`dv?&#|gKr{OCb|XzqFN?wa}AD*#G(mzE5>r_($JB1qrR*W#8R8r)K@ z&!@d>D4`QQ=pktda;U8LK83jRf*u7d)VP~v4d&>;K6{6AVUv>DK&edfiMb& zaK@pc6-_B=X)tq0e!z3zq4R-Sm65XN8Hk_rT5&_~uJVO~t$L3yH(dcm2QU?S^F8MJ zl1sR8Pr7V7Se!?#0!gGQfty)={{RW=L)cCQ_hz=xqkC%%y+Lc+YL(&r<@oShx@`K` zNFwUed+h$c_DZTI$;ukvdr3))vrc-#N(Dq~MsMl%*wZtd_p~zV2*^7Mq+`RS%Z&>trtUnzXesq&%%7WSUEp@Ehr zo<-P)2uOf3L|{HXTEEtb>7}3-z%sOeAQH-D>#lth9UHI6R929F<0vHs^{T#pTK552 zH&$ETjsf?z-0T7a@0IhE%)vu&jeTocI`vF~!HP$;Yu9A2wgN0iD|f>Tw9>bh;bcSV z=~At25lo$*>n??>rppA8MV3~l1*YRPe$_u7vPSk~g^)*s09J_t#xT3McD6;Jx)RbV ze*S>1l4|j>`O=_O|FYTe7gu-eBYIhrKzoqRPwUzN2(;|N)yv;)6h_J6u{ncO^`+%A zVg}=?pO0KuKr-~IG=vv{i%Q>!+wGf$f>b8;-M$@?G2!^(aCLh!1i-d)vq2=^l2QKf z?zK?Ym0@K3ONud(kZmb?=}0*EG^}h*fUM*YV^pp$yQ&~ zPGcqE`G(;0stYGaRG)h}6rVOCH(WSKQuG){(j_fLeUFxSU`@xj*Yn+bj9!fv1lWs> z{}TpsO+LPzHlYMJ792WL9s}TvQ!ZXu{huNKWIx@cs)Mefe8#5vWt~yP zh6604DcD>o1r}1wQf^+$a@DST3pX|MOgcw}k&Nz65RT)efp&QRwl>Sr`ar!Hd$^=lwebTMdU=xgzl}+=M z9odQhjMTb{zXgrT3!E%2BJh!?v}KBB*fcc0 zrhJ?ra1s0FG8E!sCJ?Gz4TnSnUDWD$qYAd`qsTi-3ntns6cC092$-z%THAfqVa|ff z9X7#m(AK?G@ro}6@kaQ<`<@4Ng}~uZ4y2y8-=`F{qj<699TjsQ7wXoobY+0B4&SmGV`v`6eFi(sE#W<5NInaAFs@&pXV z-hc;=51Z)hWQ<3{zteo4Dl-Y9H0%&2y(wljPT%^Lu5z8MFsi}ymo-bMDCOWMhzdk- z-Clbx{_Ut@7-h>o%S6}KOM5%WOs!g~M4Qz)FLb3h)pcb3icpD@Dd^I*;ue-g<39e< zO(-!ecUzOt4RcAC^?QFxc)q}UvOqn--&q;55rFWhF~;?Buq> z1P;6Q;P_z6?mc6sg;lKek`nh8q)6LrY};HSk-wcQ%DBOU6uLf13b3Tu>y^!}CtiDl zp3j6#vg+*4@LnR(={LmQw0_*2$Y;!J=3fq2y#q=qbzNz}Yu$mOTzcNyiornYgJ>A96rsV}} zX4A?W2mh5pLXWQ!$@m=jQ)hC1=J$n8zdwtf22(Vn{kc^qs|;&@-!SZ7JUnP-XK-{E z2IUY=MKl>c+XupdVHXNp;7YiWrc>8N!TWERAB4G{FyfI&kHc+Rn(I%1^e?D>)e9v3 zU=2uSam!}`N!;9LprX)9JYfLiABAw$u&s868bh$t&L8YtxeaXjjP{e)Kjs4;f=up;ZTdBNWP z4fKIC>S&uD1k~?}GXUMm9Sb5h3$f>svCaAq-V||w0}Y0fOsren_ly7-#BBJrrOYC( zjINjKQA? z{|kcw1~t|bFzu-`0G#T}GPgO_D7p1f)NXrDVY9m$Pn1wKA9lFAHade^vg$vpC4u6J zMN9kbPR?g40la>X5S;o%7B7?poVqgWe*~ZggP%;^H0j*?|`hs&!Ifa#DU29st;b=6~Xl+>Mzi)-G9G27R9Y%0kJhecb>gsy7%fv zUQc33bBJ&A&j&lFJUV-uoA-m1RQIY&42}qAn?rDUBNtb_KRqqv1*;VzXBA17_Kxym z7H9qkTllwr=}QfMG{2~j1v?G)g5PuDf&T~w;SQ_5h*DrBsL*GcYtUV4HK2rJ3YF{)CYI<2C^R3RLSZyu@*^bgx-$!XoGn&t9}W`#4kRb zr@7XuIclk79r3sB0~eFjG$!4M09a%_G>=y&g|eDr0hY|2}$N0z`)f)R(gPM;#{o$r=dp+{cL{W))Yzz?qR zw2Tx0{d|5~B?<)p3x<#{R=_4{wo?NbekTtQoq=G$R(r7tI?D`rsM1KoTE|P37Cj;D zYU&N%SW1BP%Yl85(IPfhSJ4RrxLJ`LY>4lNe@xHYgDM>#0WdwBHK~x*E z7@Pa=nHg|cuaE7Z)D4L%8YytZ8Qp(-h4g`+K;U&%MtqBgRF_+@poF{Ssis@GM7H6O zuGXAyKehxuc(*5&YkgS85fmj==fLg4U^cQY4d@3-U<34*FujBac%1N}FhmLT6u7}Z z`6zXl4d_D2H0g zJ+E}szeiX9zs{J)ukqyl>!NP&JUQwsc=EmvKZNHNhfzzv-DDQF@u?N5fPnqxu^*-j zlj9rLY8!2Koo;3TSke8^DX_iV7C%=}Y+O$UY>t8u2!w=SvVBZ1w83MG-Na@LjK@R( z*>{F~cAiD;^P`7}Uejr*5@pgBt3^5_(y6Nzz(xL!fX1hsy$1uTxbTLKvH1JuTTLoX_)(C$W^G; zZ+hz0c-19F5&QRRl2XvzwP&26%Rj~yA>8(bjD}UOE&*>RCV*@|sH7_v=^pA>bWNw_ z(=nM4rGh-Gr(PZ`%#GxJIIr(He&L!*_9gooD!gK>2Av7hPr=PmX_aUweiV8F*(%XN zhyoQ@Fwh=fGn%YL@`E1o)o=r?sKZz&ZycX#^MNoD)i+$HiH~|l2!>22Pfl<`6+CJm zHP~Xj*U^<>CAW=opR2NXP+}%`<+M?&8+{&vhI#6#IV_8Uy20{6VM~=#(lysqKMoe? z6{VGQ^2fFFz;V$TZquhhWlnPz=pM(|<)srXZ&NWb0PRx)#OQ0AYI0u%L=wHRu-C!M z&Pw32$S=1cbK;6}TYH}Ek}$oSNP^wy14VSwzrXKi?Nf&Bk02+0%xAY!``K06`?=An z*IwVqczE;S8}^%M^u=q}xUca>u%~|LkErsIXC%rwOzqLzxF=aj{w@Q>;$g_vIVp~v z^zMPBNzTb`;Pi;7<^DSNKmX$Ki1-2&m2dlvbiD??VU zwil%kXP=7i;%duZev9qWb{*#J)~k3~@fVMJT0AK5$EY_0VD<9=umnq}t?E_z%urix zD<3$$MfD#|h@S3kR|Tx6O4d9CRwQdvYP}5)b}af!?D$4Zz^vO1uv@4s?yK^9MzbR5 z)f-X9P3a;n`=qKFIDqnLz@HFLob?7smpJYKE0WxG5@5?~=S~$EW?|dSp86N!GKITL zKKX?x2%ldC8n9X1=awo*_ZW=Tqq826)vuE5Zg5sl`SsXO)Vrt07Crr5A{nsWrYc*` zu>s(>M?;9IstHzUFD_MCN{TW;JL?&`X4@9!F?b4wH@6yV<%@a)wc|MSsZsG1fEgi|I9C z@)!wikLYssM`@@0g|N(+I9%OTPZut_*rT4lANR65_L)&f+_e4kD#wzG-&RO2n&&@^ z>#hMO78vrjGvG@MCQ}3H}MoBK!7hwM>Lw8 z9XvxCVbl8)zI)3MJ=Ce?ScPk{kK~FZlUjFzSY+qvtbYB8=Xqo@Y`d^CNpe~{Z8*xk z=98XzU!+Qo@mav{yIAk0(kccY6=ucl`Gb5oR#K{uke@2nn}EFWnQQAh1H}a&5T`J_ zlC{Oi6&kIvNM6TU|5VGUS8F_~Fm2^6)WpFG_4DJ`7EiOjtbrACNkRvNp4r>_K=WiY zvQQXra!8Z(PEnFBkw@& z;{?RqL^-Sycy-N_CiKHCD~%-4H5tp*_?p38f+ilhj0x{<0zPQ6Y{kstq6;muu~aF?VC?qo*&X5QwJcxkry9(Q zv|#n2h9m5b`>SKNBCqUvH}~6BnL575>WiE}o%2b)yuxN&m{W4$s=<2*Zcyj_R-3v6*3ReA9 zb$05h5^+A#u!)r<-%jPg(4F2!+cC02?5wg|<@r*PUf9-8?)>_D0qa0Aq!NdK*O#E4BxzIt zznTf17L4X~^;l57K8nubwj0`g#u@hL*JIk;`-RTVtD{bbRjoYzHL5BjPI~hHdqVj) z=X;LGNC{kR!MRT^T^9~A{tB?)cr-wUzTVC6yO3TA!MK%Nf3Q8TQR^uGJykNlL9gxu z{&|kQoE|BjU{?&ih#1PMmM82f)w#g~>74_T~UkLVH9tPO=l#g}W3#Og3@99y~>5)U!^c*bcGe~=- z@O_d7VTDNwy6+KU+O}R>bHq-qx6!qT?gP88kJUg;qt6|ecz|82 zSoob42a{h_8!kQ5vu@DoSVx(lc^@U+4l!IL{@>F1zde0w4+ea)53lSN;hYJ=Cwm_L zG6jT{*qimvbEi`*Mj7#VwHf|mw={DY#_xkI%1ADNr{@T4w?{CAcBtRoJ^9oD)P3`y zW22FDTWx1u2J_HaFaSF5jQS$CKxae4{rC!addruAl@E&mNbydl?ZR;bgoL{ssaUYE z&v~|)xbN-Mt-qg6L3qr(%HGT3#piX+|MOWkxHk?y#znnrFyg8|%01v;4zOPb=e0?S zkFWz*bTe_$KsJnR*1_yIc|HF>Yoq_iVG0w0!=&H&24UZ9Ca1>irgK&hJkmga0Jh%i#Cg`P1J^{eo129QG&M)eap^9+JA5g6QnW3!O>7 zs#C;s?r(jd;ZQhWpD-S#8YwZ1(W`8V0gz<}5F>KS2NHdd)Um&*-H@nt!&v4*2M{{u zn6GGS6#it=sCQdqpE&UU+;JTr5!xk*9TcRItR3TclaNrbEHx*3eD6-?opX(WVd-c zV|wMiSHWoC_q7Rxq1r|xt^~R^t_P-{Y!PgdUQd3+^6>yi$v6Q+30dscJ(A+oTq?b17Y3s)t`hgYPrumL}@m_bZO>`M(&T~ z67mtUf%IwzLGXw8&@)~g6M9kB*^a!3&#M3Y!;(pH^Wjd1^c8AA$qTZ<2A>X>=<~$! z>3qmjO@2In*Xjx7fI20M)Jt9`M7g|!hz6hGX^|W@!C37>)5+2IDlnr80!q&wQk+edj%=Jz`(zhCg1>b9!dM6Bc6ZTs0*9>D*D>?kWNfs z;_+5Hn;Qw9YL={Q# zL2R%+Gp}csalWsS^MoV!aXdv0%|WBLyE*U*!Iwgh5(MO&7dmeO=L472mCekSinGt> ztk8K84M*13tS0h`gCnVpcpJAuiy}*cEjs1h4pxFLe-yAS+3I*>{16N*20;gw(Li-x zW5+b?P&U*ZL=G)d&iNLdqgALOzd!Qy0MMMdFERr^2+0$S)PQa>X=UoB7p(O9qg#hN z3vu_HevYn1vPypdzs2`{^N#s;HosVD^Ha| zR0NC~=B<0u_>()2+$^F#?}BTok_r~A!cyV_2#-1@98h+$?^&glLNBtd+d4P0o$S4~ zk*+dxTbrrrFMGzRS8keXJ6SfxN3jM?zGGQpd*B%~Sft+*3jh5T2riEr*(;2$zq?bD zG~EeomA6M#!Sq(NQUqg1;XwXm{o~{syWB_Fp;?fY0n2anFOz*S!_`HDg_;vJVJ}Az z>THG2vXM5^@x{--1J}G9`4cMhtiprh4sQ{g#~W$V^I*K79}cn6YqW?cLX}(*)PB-* zU>XQ=puj^(HtGv%__sg?9*zCkE}!Nxa;!6u?lnZ$x-29OE7;}LsJu4 zDtlU6nDaR4$N40nIk5_w2IJugiNdC%O^h#^K*k12I1c;q(I6z<>_9H)rN|SjfK+BRKTCAV^W3ujLdLg^C>HGz8 z_jUKA+lPGm4ElU8jT^llyuB)T6U5zUFiZC~Jw2UE^}`_RqE(x%`=&?V3b4g}9QCwb z`D$ro4P_U7?Wzy1Gcr4)rCDYBKN$dXW!Evf8f z&7SOg_H{_Mln~kXvSbT=sIiK$P_ooMsx0&mG zU9ao4JeTfQ!6E(IIFO<&KL!PlBLXb7(uC`xWp43|sJn(q6_UFpm$H zmsx>Au5iX(&sy$%(Aiee(;hHl;U9*gx7B=F0`}bEM9r@#f4I^Bw%%YUAwp%THzAiC zv0d{HC^$?-nLEdB)+5_aALBj+wtP6)@}zE^)t%4x>uxg${ng!mYB#j4^}=e4Cpr;m z5Cm!t#;|e;AMHI8G>a4%}3GPV7>8#{-ad!e3+|#BQJpkf&Le`5WtxYuLBX z_79`+El^A8sC5GINT>K|XQ>OaQfdDCdkc8RaE)FhU|EMa0kTEj4dd!3-(xrhf#P|E z(|)D@kf|>kTIcBFPi~Sb-4VB=a{S^8!nKK0<8N^b`pVCHn}`%t?z0L;t(^NOF3H&E zt}LIGlT*z`6t-XtE|Ioe3anP5O|(EeD~Xhp|H%s#NU}_&@d7RZZ4w;(xfqU_iT8bp zBJp5~(2Fi>75=OyYRXdJGRF5luZCt2CgQ37?bkM&WOq@5Ag}LlORq6X^xWBK&}vH; z@vUr=BtV`$YSRW=z2FVdRQyl&I=HB$bKi*==Dq=t{fD0(M%oMBXA#mfo(&{A*=?^C zD0od(SVV|B%+BcfU`O++kQa=t(9+({s`>o}&9C8x!G`)x-pDCIvUuQuWh$;)&_`Q-9q++M-Dg%bSl>t*? zumKu?5^vPe%F|%ZZFLW5W?;Q-Z@Vm1M^Pt#%qh#Y$wSHI?gukBs>8CLLgzBS5cRE0!B}Cl8B!CjWH*`qO+x&)Eg)ysy{rvvrnYYwI zt^4+I$lPG;aT><@*PYX=#~V+d?-l{7@9ymLKvzzy{_#`&Y~pBMU)*go+3OA+T?^l% zUANu!sLx#FVrogg=Dytj0SvMxm*Taeoc;#F7eVJYrZS48vnCa^GrA;Ra%?uI%LY zkdu{e<0=4}`x&%hbp|tt$jn0`u9byu4$TN24gApKg#5h_1*XWmr3=2LI%Q86B7>c6 zIH7GVqcf+0QyRe;aSwo&3U$`#3QprrgsZW`aex}mtRFT==#F|T=C*0bq4hc!sW z(6AU8ul&1DMB1`{m7DRpR<6yR(Y^}wSCN8V@XxGPV_O&jhryOOX8m~AwY9_tF?ujS-$&IF~%ij&qf^~E8*^Sp7Un$?g*`8tk+?Y9ZQ zX<+Pk-vpGA`^5wJ9;LVGqE{%uugQ_bj;KRCsdPRgJWK+2e8yKND?k<$^P2G~wCUI| zY4q?yFxD68HuZhHE?A(E75AQPLbc;Tgh&XY~(9CtAlB+ zp_V;y%6#fuoyq)*%mhuZMq8zL?4f2T2T*KoP7pc|6u- zrru5w#yUHm=aC}jcCbs6a@)I<2503}5zQ{G(USSA#sfR5B=Awt29YH(j4W{BOcA%M z6t|msJY8+Ka2H;O8jOq1xT{>K#cS2Ek_DTV7-k2e-c!5yA%*+>nzyXs?K679W-V7- zT1nA#j^4H?Q^58UJa^?mxy+A35L?A;293eZB_QTA%!S|p%ULk$9fL*Y0+MDeYJVG@ z=iJP&(Wsq69Bx+}tyk9WNsul;`%IgIT5z<`oyG1)c@ChBO<-?hy^xW7mm+Jdf93Yl%j^zxS=Rk8dIAH(Rf%LY6s(k-(N z0T^R=Vy<#rcXWm{*g9D}zLkq&-dM*-X2C=Zu>|DS@$i7w#0^B9zQ-9~x0OT)k;(sr9mpldPXwJ91LRpQ8nxX3QaIg&da=KBuru_H$xvvM zrx744^5_p5yUh(Nq>wrt{T-oiF~>I;F5kK4qElqqwdEHE&r?ab4Nag1Bi`298bPDl zlEuLURj|YOPO}JAF97abG?1S7#vuYOPv^_hUQK5%-Tj(b79};f)W@>a#mRzDSunZl zUHj9^|E%d*pD0S(!fabJ$!tSv2_kjo91WX38%)`}goHmWWz*w}oXoP^nNNROfaQW2teoJvpvj4`1F7 zUvAHjA1$?b^T^4!(ODrhaWnE4w=J1mC>uI zs{gq9%hSAP6&Vs^og8U#3lDnFLox(^hzY6m zhnq%bab=zt{%8ish~WS-sPC2*k+^jjGUzrkqfhLw$s%K-EFWiS0H4wG%g6A8&;F_} zayfW~anYcF(yVY+j9Nbxf*Q=$d+7~>-6fv8GV<&$1ZP|?(V^)F=O=!;x+`vtI z;Rb9g`q5dJwj%}&Zh3T9(BZ(oGVQsC1JkZ5dc8n!MeP~Xx9(A zrf(t!xtna0A(NXwCB?BG$_WB_VCJnSOR8?5*&&$}Zhwu8*XoU`$}D_|%u}^Nm{5TM z%KN08?}jXNZE&d3BkWA`RjQNpakv(ep4)P-T^-45`SvBz=dmRwu{Q1-7ThV521p24e zWc$toE|wp;u8>Q&$*OpLHnE=ENDE^G;Az^DugJTD5~`$FT_14wZeXUXPyJ3he?i2+ znmjF!;vxYJ9)1Rnd$9vXwg0+*T7xV?JkBh4MuMKd-}}ZLV?_TUlSan=z__4B`lOiG z))T-RNGMhhLd!a!2EyA+-dihCp&|a>HLd;#^~omJcunMO#I~I_|KzaG$o!Ji^MIcR z2Borqmlp4ZflUuN=m~j+RWT&Dc_A5CRl|N;`Ma0x5#|Bhsg3IjuphBb9p4#k} zXR~{&v`(#NRgHUn7lT){#&$4p>TVb*nNt7CpZ4JYB$xvR1} zI`A?x7AP%Rht?Z+aPNCb*RaZ`r=OMRb}nOAPCJ{FEv=6`Fp8MY%t@ZKb1#){p=tjX zb?$1nB!OWX2dLA0Z7lG9rQ^VM@V;OazuHH6Q1Y-^BE|ylxGzUNh&r##$oF_t95%vo zlpFMqnRbB?1sy}oMJWw2t6nZo^bc`{JRXT4<>#NHE)m0;C+sU?b zu;=XoZlJq$Nyhp$R1}%-=?=z&LNJuGwhXNO(Lg`doeC#268fm&I1HG`l!|W3(RrY0 zD$@kuxCtMST%K379^7x&I{>rFx+qqu?o2bY{T;R|03PrWF8DD)z(ubbvW+jnEkFJ> zuVnfBFw+e;3u$=y^R)+d+Gq!h6sfY-sAXhfY} z1A{tw+C_!{u9e~*v$V4Z57sO?=0UMrt|8$to&;C`%42+VJpMa3+*aq#rHHy#+Kz8N zy-J|Kec%Nm3G)v`pA8=L6H&7S09=xcAayc_FzGVTkj6o~g zt}o*V^bZHiuG#vLh~?n&gPrzI=dONFRatwqF_j@tz#zOIbZ$0op%F;Em01_^e&}GU zp6B6D*xF9}O++xuUzBKEQ8WjwCmTDHPj)IC2^JNgbfI5R=5k(gzanXoV9*$Ma6)yu z?U#2|eyTnBmobY3NCw#gycj$jE*dJ1LJcLW%+6IR3EZ*T}pAm-AleQqtGhElrujJ5@BsGod&=8nN?`X$SP@510iMUhlR2$-3 z_{&sAD)1n;KmAt%K+BCv0{Of4@D4cC;Ki}7AbmQsdfUjY4GH<_)b)k&*}@l``6CYR zFWm}G{q0Cvi>pRDtym6j=V{Ah{0@C0ds10_WJ_um%Kugh7I zlIt(eLYm1sO_>JH)*GZBX<(Z6Dm#wd@~-v7PU`s)*w0^FCI{s5XdD!c@&3SN24f2@ zS=3=6Ruv7_1kq;q`MaKM(*j71Y$BM8EpvRaFRrMwoqYiOs+bppkJ`xn)i}BwRG`u~ z25BwsA2})lx*VoFjQ_sMn3x-Zr#XLC4Q{MdRv)M zvt`_r^bXVaH+Y=06JT#f)Lb&ZcZ%z52_+A{0JO{IXXb6ld-ubzLPkL!th1^=0N!#p zIA;uQ3KV3My~O$(e{fzT>s;WY;S(VnoA8J$O0+6bt0Q^OB5CJMq0?)`)sd@gJ1uTY z>#eM-g_foUs~_D8*n%1~s|VS9=bo#8n{4LV~M}}b}}lT&(_6Vd)mQOU~9v1 z=9v@6*_Q$y(rkeG#H*SF{RpTFeZX|gv0mC~`iGd^{If{lyEgXT`)}g18kk(tYmc=* zKP%7mrwJ$arwOO*VMD)3z@GhX$f2L(3;e4`gW86yu0Dj?A^ zUO7EL8U7RH1}=6*r(KIL2oM6u>G<9RfqD&Z!mP}7*ei_gb(2$|tboJk(w|`LGnyb8$_fAfwrw%!CjGHnQPW)9vi}X9;(rltVm@dV} z^V}b#1ADvi6P4~OSgv5KZvHX6O+KSLFz|Cqz5_gVF8rMTrmBVO`m-!T4 zF3|)T*Exlo`Wz2{#~rnGxM6j@QbWP2mW(UcwRs44VGFrzKn;lZ+gs*Z$X)L>E5Rq| z2VOB(1!+s;F5L6VUu729};- zz1KnAhF=`yea{-m^=tlH4g8bHzd~(wmi`T+=f~!6ZtTarOHv_lkT&*nMY>dg%q6C= z<%`(@Usi9s;v>*?xEy!&kz`fiGs)zeU)s0qn0OTqd}?Kb@w6UFRPw^i3Tk8$g=u6Z8_bHowgQu-`@!KzISQh_SE916O4JZ#=)k zzEtpPR$~8$I~5kNTA^q4&zAd5Y!zpwzrgiobl}dT^}!EfI0nXX01hMO(|wIi5B|M9 zWdHHVl@lh2I^3jH=M-x{$8E3VVr1d*QtqXMK9%Je2BUE=y=kKoPc`1Jin- zCE*`f<9UHD%;C;VVF#uf?f)17#=X3#!Bn9Wrx)WjQzd8<%o}K3rbPD%Rrw7X=caGo zl|E>4t#X`g8lbMPN%j2(?@K8sKV{qUI)xL(PZQ?Mxp|4O@4XpvZbS8(GuxD%bfbk?#68-E1V+i{vF zFwP-^RtPcrfK2pNPW@rl0mOU6VY8?&#wLRxgV^6_0DXVzlzVpRHh66aWuj`_8fbDr zVv_Tcqw_la)kPNxR7;Ef2o~O_mcCPZJwRY=WA7?!)k^a{hR)%rU)W}UFob$g_EVa< zzaT)uRLok9(~=09J&PL+DBj4{R%jfDj?lJnM`Gts=;?Tqx5dKEoV@f!K*% z>Eb3ih39LP32vC_?X&*hqS;k@lWFH}aGyS43Ga%|hy?}uV_+)`=AxeJ5^ng#*9L=` zGW^@Jj#mJ`A_3S$oMfA3@LhEL8-Phi=8<4*`ECBFQ%8@#J_i~Y@Bb(3iw8r%vNsow zlP}bJtW}CTO{f6q|8=10nE*yg-4zS`mWSk!TJ6pl*;o*b51OeQ{{1fh!N}oN3zY^wrz|-k#(oe7D>T15r^lA$Mnlg<6Ue965prQPI7qzrY4V3ZNFBH3h#B( zrZ+e*{F!c1oTKE-16Ko8RBHss5>f=c)eGz&ZcX#2q{Vg_4l;EA zraqwn58EO@j3y3S-qbm6YE3yhRh<7SQ67akyKwv^_~j2SPxhwz8OEcO(2t@5=kRO8 zx1j?7E2#TxSix(`f+h2Qe{z<{RUpjP8TGZ9NLbp*s^bOrPv+KYL;hUmQ-{80f?bOLY)aMfmJ&3?n4+kT z9_J7Qn=Fn0-!u+>K@Z>qtu#muG@Y)s<*Be}oreT-2;H(Ch#zYuY05f`^K>U(eWcmF zxQ0?bsCUi%*2UQi`Zu{w1ucx|gyhk>N79Ho!mFooGDdubIypMA5XjHY2{W&rnK0En zMRY#n)rVW6Qj3t2^nH^wV?1V=m$eF(5$0}D*pO5im&lT5%?j(|rF_0_*6~vKpg6^d z7!{(Vx>H^IRldh>EtPYD?K>9MFmc;?O87KOS!}dZn(~(IQxi z6>4wT8Q7)x_7R(#KNZ0CDZ+SMrcUNO9mWsj2(a5OVdwDVO_QoQLQnzqL{3lsi`W zAFmlc`Mo?yF3Z9hXqMZc6b!0;@_v*W=*I1~3Ycl^>FsRDtTxt7dtz;p7bL;( zLEP!t3g^jzLpq}&SMu1SY8%iuLjBErd*V;5r2s?BqT--0Tj3Z z4>&XGS3((ZMY$MALQtI#b)$$`gMgtg5daWJORcUdC;m9Z4RSbSf>|Dfn9{o(V?^$g zZGYb>br^pPsUbIHaqs#t`)FWhmoG=wVV^rG{+BEO!id8QARfM>kQFKN@MWW719U6E z?;W3#5hsTK;1|zXh~4qz4Ar(XLfmIs_2SrCoz7_>nj52Yqzb%R{0W&4qAqej!vUJj z_Pxe?0|8-PjyV<0hjYQ9w_2b6?C%u7s@e|zx&a|O9nO8fV4OyjsQQQ4il#Fl3Y&!+ zEVG{T`4jjwKb7gNPHdVYq9MG_Gn2Kc`1CzFWh16;jg)(Z1f|BB`jd?=Anr61V?N3` z&wSKO8&7&AejVxe)&qA-O)F1L*b^0msCCFD)@-Ek0@>_J-#&WZ=N)BhR9dPDDptI9 zabHUzBBo6@Sa)WEHs8>7+s_#bzF`qeAKGc~+isNc0-h39U8NAW)$W^!ObK`DLW?4q zN0E$Efi3PUrTu2rYLeizHgb#{cfv3CaN}CEdjzxB?lu@Skh|#ioOiB_v=v~JZbA%| zGXxrL7*>is4s({l5vrHL@4jQQ)`-+}LM^Fm#p#0$$%_krMtkzARPC~mcrD>JAw z2sCVY2*PA%pdO52T_@>T+1KhU88be${fG2v_-)LH@MEQU1GyU?vu=}Kd>=OiMqaii z_BzEpCw?ziM-2Zu6m_ZCn00T9z7B%!Z?6P6@1t5ZFXG#AHp});OTP`!e4t|*TI+-f z7ZOA0Tn!rQSB?C1!Vxj$zGC&Nu){RZP3pQSPpgx=srZeV7W5J2B*_He6}oqpt(2AxHx|NZFgOz115gj(II>%w)v#xRPVOi#_o0C>lJ4? zn5;1yRQDE$GWf)-$&?Z{p>i&LgGeH;)B5?*`2_}yIannFIRWD2u}N3cDc$ShCvzb?;G+>c2cYN12c`MoUDTQUp9LZouv!x#o;=daGX5| z;Jhgaf)PV*u$AYCQY)LEx}TFq7*@ra9G!JAu+5e|-h&=5S}yu3YcX+8>Ukh%^@|o^ z;0~DJ(qhB~+u5i?O`Y$Fe>|n7WI|}bEbcJILA^$#Ao%xUURXemb(rW&wP60RvJJ~! z8D9Twm|@&{xSo95n;yN(b7->c-xQ!bNBYwG&fr#FQc-@YFSsza%NgSi8&D#XzJ>a* z)P9rAcw^Dl3P8sc)txTxQ^Gf=+zN_x8bjs0{cegf_-FM&aMDvyj`rO_8{ax6OTh#A zj|Kn$eE5e)(Il0kR#Nz)IJX1c;)U)cZTn_oBIRfTI!!R-?&H?>g~fxgccb;~#82k- zLwP1EfpJ$1829R*vcr_AkgVkKBQ`zrVT;R9Bgsj2;eb196F;>9LLr~d!V4|)BRs~v zIdMEZ>b48gyfb`&6<+hxo`0+GL1nwN&@ds4KMoL87R>gLfQ#&5KS z=$y}dz2LIM_=;~em@i1OO^i$RSgNI?zZh3k)3C8rb+OCtt4g_T0h4+Dcu67FX-T@Q zq1){)GMbEs`Z5vxKw+#_0dp>-ajNZi;h2r(D;jF_=<-;2oPd&;bmj#o|H(N5zxw(V z*FGFISVO^i9FED?WhyEXSo3F_aoOqjJik*H0MEV8X^ytFNi=8W0=9-{78({CX-1q; z4e;nH7eXz-Y@I<2;gxU+9~N3F@g|}{&Qc_V0o%n1t`hAAL)@>l<#y`k0{4|(>rN!A zn`ymIScX4c16q+TtqxO8h$S`?a*25TTPNAno|)m^cbstREB^i^`%)`)pCW)SK9ump zRu$`)_VD3NMtNice06Jmk=qUnGGSheUs!?K;7kOKDxV(B+dY|o+f;ZhR zx|6wawe!T?g2q)y+_&S=@0fd5wzE4ZY1q1F+F~e;6Pm<2K9jbO1lFw%-O_apa0d3f z0<0y2vBK|HA)nu^G|xX#I` zj@=vn#K0RcQB(mv!x?wjLW;mNt%e*u@&1FX+Ghqf+iefhz^H4}i&F3AJ;<=tOO(cr zY!#=^KP-z)uYeRmWW>_F@YF6y9Gr1e`0+of@`H$|RF<&obj? zz6|vm2fFJHyJIvE`>^TYX6eZ>d!^M0c0biStuMvu&G<)#4DAd%Ys-=Zf3l`VUw^o@ zS}I@a&}k-Uc+Pj(8?Vm0aNFsPURq6@TUs>4k!y;^!{M6^w7gh1NkYEpUAR@vzUx?c zjT5hp)0oQFb5}y^6l_T)@4|0;r`Qh~UYCxe2}Fz8t>4)Drc=TpnO$5w;Jk}g3Rz~I zrGK2Jm3n)xt=9g;uL`F89{+Ix)t|3@jfKHH?@|o4w?tcUACO2a(LV5T%`@t{PzzO$ zkmWnip*daS=vWjW7psZbu2#@&cBZp^Bx=5NRI#fk>~s==OBUS z?VFf1wNklojxNgKjaM?wI|nPr3>O9$dUIY=Ci^g_tjRP4HBY7HK@TKmw85%kW5|c2}Yy)s`{n3j!yIC zcen<)9z#N4byW;JwpqpSQpEaVCd1=ZZ#AlZ#eL6O^QqyPtij9ZbadyD9GMoqLb&fZ zQB}}PnvmjW=eY{NN;}7wzu{ZPRS+3|XDZu$A>|zgEuzeD37wLo-gJ%9?nTV=4$Xw! z2*qmJ*1!l#CVP3%lfgmamjXn(Q2^%9ZP-fCFdOn;(#B`Y1DR^DTieBxTRgrQ0*mW( zTmhOV2zuNGeNbzg+@x7oTWXRC$Hj3xQJi8Os(U zRn#0+Ry|zr*IRM4kVbv!2@;>?p=tH+GNyfxXwM#+Zry_b8;8{o@!ejK3M%oaX)S7!&R7Zx_q6U%7pKD z(f7b*Ih#H6*%wAB{#(PDlA`D>HtUXqF7>%*f^`mgJ8QRA-h_K=r_qixTd&pnz2U2B8AgM4kiQ#Fvmi~FsiJN~b`t#V7sOR) zkC=3}oxA!ljy0dPx$0irBe7+C;ZFPU0@{Wub(BOKqEy?=XsXE+>OFJ&gaO?Dp80E^ zQkCV#k-{h_$PQaO$kXJ$L7Ce7jhULAu)*K;#9Q^luC~#fs2N4p$8dqAB^4G=4XajF zLn)FS6>?AtQR~QaJ)Yl_U6a#s7*{qc!us5MSzJ7Lt_#2~h}}{jn8dv}~O^ag(j1j3jlt*&p|AoISf+ z{))9IkEnQkFxlrH^88GxDN(xfhWqR;3o`7tjbxca8Q=8=50%JX{bhM%F0;)vVz^l&Dr&yMHW%onOVu z`IOM$XBp|7VIrpkjhzKGDEP}GCFYOm!tTBc7psZe0oCH+t)rVFEva_RGKBG$0pOY_ z=-&CYF!Reya11xlWf-v3=HElHAI9Qyj^^2JnJD!Hx~TUx$AL zJ&m64LI@{jJE%{l+>k@Qm|)dDuT(BM9L&Rc8#(N1zXU;62>U#kZ9q)weNMiqQ=_}jClf<38y!jONgu96(uy4F#Q$p=%uEUHt0Qew|&_m6fZPD&SgZ)pvt+* z-A9^}^(`F5X9A{2gQQhcC)AVy)i%J*RWlP5e>0RKY1X85x3_)vNt{wx!DC2z;eUqy z-5dpD(ZIF*^wSU9ZvPS1FnS*5JmyTxMN|pHDs;*vF@bUDx=v4sajahX#AcO^?O1a> z(9M$Z(t1dbbrzf}HE1=kCY29U2RXn?)@R4{KB}7+wFl08iFSh1B1b+eG1D=^L|AFz zDsWb7ulwPb)ZWy;*o%w%dZ^3h_Cuih(yd%Npu2TzYmEamDjs%4liou6(|dJNCN_VA z=2!o&X6VJ$iR@KSs5J{v`flICl`;S@W4zI$rz1|pn;xKJTj&@G>vF#V`2czmvOUeI zh17`}{Kzdo|2>j-eK&(9OHOzgYR$?u(dL~Jr=)i6AdRbCbx5>G8~DGh=rP{Zdf@G5 zR3;5Ng|+I6SfQvg)2^JWk9dI{vtyXt*MDmP)J~Tfrr+^39L-Y~GE!T@Q_|)q0kKpK zkeB!CSZxm{LLD-mG?}`9N*}Y`pnq}aOp0H)N62YaScb-*Cej6A=4PC@5B5exbn=s; zLb1}L+l~fehE=vtKR+&B=9Drq#{C>nJmsh9Ck*BSNg6WL%G~(5*VLj@A&KjBEy0T-h^b{*)2h;yyb!n*~n26nWeM?sUy}uW0)dya-kCV!1tjE^*FL zrd4q;a0u<)BbC{LR^;A~{r(*)ZCOx=&Ej?UgLhs6t)k{q4dltGi1XEc4aCuWMNWXr z3`4^4(o0*XOOXwH0EEu?&$i*KSCL1_zC`j>E>J}VmkU$s!tm;U^P)R9h!RXZ*h$Fq z^58)efBH$4e%2NtQ=Xu5cy=&$fnTHVB@@;&(Uqy7Zx#}ft1(c=3tFZc?&Y9hVQ^@> zW7>4576t0qH{sd%#a`iU`(}&cO?%OLhlu64Yv!-HAen%-96lKFKGinl>tM~y?eS2A zH&%p!Q|8Rg;pSc)>cc?n3%gx&^`1)6l<{)XXQTqAzi-;?98V|YueaKA zIM>o_Et9OxEv3rGG<$HZyt1~|Vc3`|Uz66u;gvy1e^310JL=7dEwp3Ew%-}B0dH{( zwN>fK!Fzu+nD!OHrmSXI#?;U5e1VFR%`?`$5F*k$lLCu|m}kWvuo(E%5Q#*o3Vim#1VV*c(ebROPu_N+_pKZvmjp->lcH+X**4sIr%eErbRYxYI9>O0v;j;wGS^G z)ElQtlnMf~C^|O<2DR+XF)tbQ*t;#ZVMuVGjv*-%Oy_(R+<;NgTfNQk>|)`}@pqKw z$0rFLqdYAsBRXTnxJI)GN%e1Xu2-aN?|%dJd17^;_T$JGCzir#tOrfXf9Qy}I28%m zobn9A!n|?HeM5fJ@-9|PUQy2lZkB<;fJO#6i!P?|WCgNJyYrpQ{`*+ia%yj)us|7~ z%5%cl+vUbP!Or~MMdLv=y*q^{GXJ~8l4{5d6*9gcNW@6p6aCxjt$_=4vV=LV#;;uO zBK$dVCxht7iQH2T#saA&)jHYE4PWsur9b^`ex3PD-dk~6lX>|O44oC-(q6jiX&?1D zY`vX1tMA;D#=BE|`S1}(j^6#zdA4YwOtD!z*TG~Nhz zo_ryg3)8nDoJk>5dJLa^Mvh7L!~Aha*&4md#n2WP;Dpxgx~A`73FasE zaHs#%;nq>AA^*v#71v-akuM!p1An5ubeO4AXsl7q3Zrg{N&YqNhZ92ME_ab+?jRhN zVV{_nWQq^vK)XPu72g)DSFD-JQvr!pWZ&N3Hm5atjW;{Q>+LPW_IBzjKE>*}C`fU8-Phe7r0T47e~#M@TG>jo^)=g_0h(0%j`U-y;r zpOa_SMyFN!!Oh14-QT#>m~Ph*jaFNA?Jqa=f@i=8h|OH;XPzT%^?Ju9L_I-TiSeE| z?%ld;pAW4r$&&DZE=)ZC%(U79S&5FioscCVzJ4R`ElcH3mu3#AWyw2g-$zlz-WCVm z)rkSQ$}aYs%YqGFBnAXO==8>ohmMaoKPpIMM1=-&*4+u-q@<4yZu`_LpPZNq`m1%v zYqIo)20sYJ|L{F@(oZmR^6o&`=XQBsSTWYdqG;EN`+ z)j1}uq53Nr7;K;Wj{Y#HMCe3%7q$A&%4M#29P2Zjf~-eP?U)Axr}dOMKkB`5XHT|y z@0}5OY#mDEJX9R|P7gbA)(13n(}mkx9F!a&XXQi4jke>vF>DiFKxp4CYX9X|ad#(a zZ%oyAo2M~Ak|i+M>nGK_zL>HI+aVu}gmz~{oS6QH9eldB4Qg&y;+4!u z=+_#pS`LTBIqWBH^jr%9^h+8TWN--!{F;5$m)wm}1~QqlvA-Vf#g(qFx4&;6liU$3 zJMK?j*@JoX-D~^3mt@v=6Q4w%j^ZPch;4TsMqZwxzjY@FS?;)W7w^)H4*a1)+D89) zNwN-I0vxb(L>6)YAEn|gRQ`*b25gpsQ7}ZL%aQTiASOgugm`-6GbEhOdXTV6B`~LH$C!a>bUAa zLDanZhqvngjN$>lMCSj&mjF3E)fy{#KFY4@8AOKT_ceMVkoc|B4o%kN#5C z=#OqA#OeD*kz*o-l&3^8P>>F!Q1GmKfBP&77zgqq^&-zP%GA5%D}SPMrelmB#h|#vc98d;b3y51cNqt6#g=V6UY!CLjQ781*ijJ ze%Zjq1*JJ&%2Q;10W>uyK-vWYoXK*|-vFS%$Ihax64TgMu5b_P4f;($ zdaHEYqg7tViJYKaW`I#yS&D>Gj=CLiD*g|kWNq#Y9%c=Gx_7a%*El1lRzzd42iu7g(&Po)H-@{*+nt03H*M}}kBCK+|VP~Y)#*15> zVp!xdw>Cz;6%XMZS0|uJC5Fx4Io!6obAaGNZGmh+S}kU2$f%C@e(0vyi?6W-vsvt> z9F+L$&i-G4#e!EjR)NrA#hHue#gh?GBmV2Um7y$;feyNflWL$L*T|;_o{&HeK>`+; z0Q9!{nolzDyx86R{f%WItIPb*Ec(}Wl*=N1sI_{f)U37i2UHv3aJfJuBhj!%t{hWg z(It6w6W6?dZz%jI6?NYy&ZJ4j=u0y90n_*3M}&9l$%#?}@>kNzfEkbb@?Z^Vw)m+D z&}P7Yg{*GAphVBiM*uAN9|*$TBglKdy8yN78Z=S3Ov`+Oi?qK@JDSfq)7fq{4giP$ zDJdh!V|IAMV{z3LNce_bmh$WOVt5>HIGV4{%iNnlJAmEt9i$v8h5rUz*yc{>Vb=8W zX;BN_xtyitW&35{rG#XK+J*>UfbTan0Txu9ZgX=A%IUkhJs)p=28Qh--DF_%nCQMT zgs2Vh#rNi^CRz4PIK_!s(f-m*pFG~@-51NQqItc)9AQbscINAqZA-WRieECRAuk0rA{aG)0d zg(L>p)#L+Qkd0MWw29jamc1uVDn3`0WzNI1Sx%Js8w1DPD*%X}aGYjdHFKuHiv0S- zVf}rA+@;R%qM2V_#}yASe^jvHmnL#;6`<1aiUc@QL4+h&bhfi114YV zO#CKUXafWjd9?GR;>4915f@TjrMvuRh+l3pVU~f}u(Eurj+Y75Y%7`dB9`w5=}vQy z4I3ab=>Io}P9PctnDM@10lU}y_kehsc#bg>?QF|fAP`c50)ar`Qv-(;-f&kvouG?d zoOh4gQJpxU(0D>YUg4wjN8vRr7W+`X@o6JWf%W>$Q%dsZPn5ta3_dFjq;OK)XR9j7zh-dTbohPhMxaYr)P(z>KwH@}mK*e6B z7Uho{AO2A|h6((6!8ksdd7fkxd zW5?L)?%Wx{IXGSq>}n!r{i83JeE|*wrn@sH7X24*j+dL8(6LL7q8+@7^vjCw);Oe^ zz)1UO7yBQ%DH=iU(@t8S3K#_*?Q9q}xYalno4~>WMRqyE+Z!-)ii^f)t0G#^0mD)o zGYzWEe%tUGG<+rp12a%u8N_@f49Pc@9S(C-CCKavR4KFfB1WW`8T1R_*>AVHYcD?{39!g8E$ zcVjrx@PMMGHTK;TD{*F};~BV|SoiA4oDxsz&3yN+-pY4xXDLZx431cA*Ci|z#H=JLV#tlD{&tdjMbEt`jQBprgo2L zQ*S@fNJZF1+b+Jz>5b!!?`<}E$`aVL3#YLex;IvfF%;1L9+i{noqhE6<>Peju%DRo z*W*smx~74RKMo5y)A>`8l2XOk1L~5iv(n2zknQ9CHrxNHz}0^Yxza+^ND$B^Of@clE%Mb z{Bq25q9jGPEYO7X8*jC}It4$ip607xq@!S?k@a+Zy{73V;N;mCo8ypGniy%XU(<)m z*~CEi$#U0t?F?8}vwl&Mw(a~^h7IypW$kJwBKNu&YRau8RWXG6#BnpA|Cys1!%>5Q z8cJvb(Gg6GFAeKzi`RB4%aPj&Nia|J>b6OSw)9fb>nf*z;f?z07PwtQ(^z;UP z0xg>&qp}YfA-*@q2h9dPn1~cS&fx)6e~fh(97X4$U!pT`dX|7jXailXTKEQn5NTLv zhcn?c&PG7LI^9)Iy{8Ujttv_Hn1xDqFo;PKz+-@=mws|eq$S4*CCs<#ROG>OU8l`~ zzOW1)oFPi7W`>l*oP++h06FDy%>2S?sov*WN+d3oQ%}|D&6I&5QFSg^ExYr{$e~!- zW~NUZKQHZtXQ+o^6;IL^Dt495?!|fmXS&aTrb$hEKJ7>YO&rmgK(}Pg$J;>?wNbMYD3oNXk)Y)+XPE5(FPqwVPKDI4m9gHsxO32(;2{2T_$&+uJn@Rt zSB41TOtxgfnc1MW=TOt;iJikoVDt93&$NYp2E6yrPDXMQAFe)XmY7PD76GCOx`W1L z)U-d+Xpsh0)_UaIryG#sp1sGLx3t{+19tiibPIPfy@e;`>xO1H#D|@z=`l^s%EzlL z1YAMxD1RN&alqel*UF#T$*9WubE;%1Q~x#b|BJgfkB9ny-$&nRktCI*2yG}rC0nu= zrR-Y>;cYi4W8YGu4K23pOSWMQVTKuFES0kFV$2NLml?}oY%_D7)93U3JPMc58{BB@XMJ!24rDHb49S ztbVlH^a3+h`4IoiKsv^TcN$oWx^1rPeRWg>Mh*s^H}sA1TVG$TMIIFi(kXXP9pk%D zXPXt=I_3KcAa#O^Z+I><*5rwD)v+&?7Mh4mtdxe@ZQ^6M=LuX%x`o>*asd0uO+ z#Ne_W(Aw_=sH@UJXuLJ1bUO2H$sP`#xm074%S_q3Es%$&gaX!xg}%j84O_swxpCgS z*o>>c#IW6l+C8$#4}7Smd5%YTqKq&nSJkJ;x@VIGd5DMj`{a1h#-DBrU6>Fw>Zd%6 z`gHLP>$%kg&#m9^xfcfrjK3Y-4@>Q7Jl|zqZX_E@BhdUBfGxR6(fhA#l0?)B^ncEr z&8!GdV=OxC**BZ2g<8b4;l~~k-}!I4Yd+#8n24$FbI})#r`|N|dll*x0$d-}cymFo z4lA*^ir4AUO+h|}=?j+=Sd|VGlbKgM1D@a@=9|g5vAH|%-n&Ns+o4Q44Q6oV^d}EC z0?#)b;>Ejju2XG_HhUpH4Wy#q4*Lm`<_#Fzj2npAm_e#ra|dDgvt#if(7B)EOb32%w76}XCRN3dz&u_e{f6}k-42@pjgVO31 zsRp=tDC6lZe&wK&A+E}gOBtUp5SgZH7f8%`a`B{%g&4#;(d zQm44Yj*+^h>meEg&9RxQQLG#AjGenU@bv&u!KomeNz_^Hxy$MqUu!COYvSt?Y6x?L zsrUIY^O4>n?c6NCZk)&ewB=(t8Z>!Qni&X(BWp~BDHuQc^`(3pDB?{AJ(a7NA9l-? zC_UOaaqHD7i;oo(Wz$JgHV>OBK)!4bk}Oy&cvV)2hd}OyQQB z@6zfx^w@pFkBM%XHRNw8=H$63`cjho!?)>(x-Cnv(pd&?O_JI%f3~2W|Lx458;eJl*Q*|af^}o--u(8; z-WG5se|vNC$iguY?+x$OOYZbwb*dr-XZ>#5O;KXSpM|8t#&5K-aI z3@7ib<7KgF*RfdZI(ZxOGSQCCauO;y357do)Y)pkN`em+r{R6_`wOO~1oD;9(iH)79WfI81WOQq`AoG}X z*bV8!lvrQ#u&gyY;7)mFh|#0*eI{>wI|=jjfp#l&z-&%N*p_R7TIoxZD6-#dkABcq zJrCSw6xmush&%;PMF))Kj0@e-SLChHtk7}@WbANnHEjNPdnFeHo4R^=vwS@-=MLTb z8S>-TW=A!%ZDG1KDgCtj9-Q;K{}e>*TkAPVK+rLl_ppwzbY^@{-n|9V*b#SNsfL9P zJ(hJlwG@%KP983_=+!#YF>FEur@mac7-h|?m)@~WTmTM1v>hetX@{Eet=K@E8p_L- z7DN?FQS-k&xE0G|wjJJlrjq8jn=mCHpLi)nc;<63LB86jp=vLGm*ReSY7xx3^8Ur( z&2niKUj|ZnjLR3Xy~m#t7UAiyw+F3k@AqdrE?|u}U}3M&tQyS$!8{>V#(dIXi4B5V zTWE=O(e-MK(6f=Ve3B1fohr-`WYPu0OApKjLk|j@S6d#9@MJdg5+$ISiay`W#^fZ5 zP0DNcanCJ2uh8{nE+D3muWc$HmfAcPp8%y(i)$W#fS7OZvpUnwf;HxTX2U`5{q!05 zV}{^WyJbl$0g+5>Z_Lg&!2}>PN*7=t0a$x;MIA*K2m9uaTxFjrLSGII*A7H za_eD~hctm!^7J+%!FVVfG$+H=t{>7Jn)a<#hBJ5J4iGZKf=nt@(~1F3G`GFjDFL#h zI#BofjKRV_**lPQ;owQgwJGSfkl1 zV6_wcl14-@Pq(Mb+YWtp>W}|1j$MD3OHA5C##FlYxNKG438UnXC)o=5)G0c^29&5f zbQ&o^USCMo(}YC5WW8>ketj+Gy1yG@WwFko8Thx?sVI7@dErdefRl0=#GyH6aD(GR zyo9-4=w-i3h>vX>O68ITx=ls8*J)t*^DP-xhqdV!`=lK0H#@OoeQ{h682ua14|sXk z@!DgLs;1tTw7k|WfS5Kd=pevDUnSWXfru>A?2!7jwrbJK%7HD{rc=0B?YXQxPIJlz zbkA3<*&yEnzL$+fOeI{=+}ECVxGDQnPS7=0eq>y1)-0RU&Z zE1Ni!%&xgCZE@`ePT|Q3XNkth_k5^t#f32h!b#NAPVOUvi z5$MjBG`2*4syHpMuU9To<%Q*f!u$5)3{XY<3`X)JV#O7z&Khu&I$1;Yp62B*2C6X8 zHbSnsFzF)uFmPXb@oe`W8%7B!fpIF1aE?yn`?v8OUX_@Q4PJKz6vwNR=kh^-NH%n~ zr_e1yN6+QT08aIe(_sp0K2ZI<^dK8Ae;eb~c}PTW$0KVmQMwD<#(dbyFOk;1dZJBDQ|oadmtA+QZR@AIr))_D}zyrttV>l(NDNZ9KDrhgNtk%e>1o zLZ?oyEe=|N)c_OhR!k*`Z?$?J1n@*84nJk%%pWI2zn7c-c3IjytebsY3)p`uTx}Td zutwus2BNts6@y!KAj{rr=<{@C!ve_D8WJBB(+_jhoXjV6#Gz(BI%lkNLR05{=Ck<$ z(n2=ip{muR+RTdMJQ{MIGWog#U}eG->jc3}Nvo=!<+1c@8h2V)b2k^a_{^8^YZ5wT zP;4$~tR)s82=y6!3lL{Xi)$n$!D|WtE{09KKHg#aW&aV=QF7z@$y5@Yx0MecShwbP z1VjAq5q15S$yI5i%1?s+4Yi6$qw1o3Mo=Bf1K+}XH(t?LYq5^fk*yhRT5|Jb@CNxK zqE=^xa$`iz-=*Z~KC~CHwutXT!Dol0i`GU2wBKhR&w-pOfYID#X>LM~{<#mQXa9omBv005@tko(yaxv z!RNIpU3ao_j1rV$wTeFi-GiOk`qO-VTYS&_sm!9kLFUMgd-J!Rnw?J>hG)0aax^<`v za1e#}yBkw3hn0NOPd;ya63=D8?kk_Y-sdVaynW5HPi?lhK(R&1+38 z_Ove02t++OFlmim?*gCh5kQFi>D-Y9Ka`Gc+0&rwJxtJw5poyYUL)u6_wR-!W2W1J zUDyay=&t+Z;VSJ(3A6I1Or`BA?4s4)*TW7D&S7Hha*lIQU-CdNg=YqNu=Wo{H~UX7 zvBu9Z4`E48&Cz9+D1>=K_qnJ4U4ag;FLGWN2EsU9zkKiZ<1iMDL-C>rYkRnk7u@+^ z$;B_*4{|?E=dt{AgklW7-)x4llpBbAT3Lj|x>AoQNF;T-!|Gu(-KFE6X~~0j6+Cc2bYFTqCeEZN z@vB_QvaFH+o~gvmKjSCiklJch=~fJEvRmXQ2q=-$%Bc&sX0lP5j*emSA-f46K-vtuFNQ1`S{%MeK-oIBB%;WB(9cwk#Qt&QVL&aY zv8pzmANv1ulh(s4ck!YZuk)hMMPd#Rfb+018tQ5a50Zooq1(+MM5N<0R#T1X%4)DD zsnLoRKf8A~)(G7m%Mk%#BHI1n7^?Cb)Ux=Dg#qy`>!gGk<>mA!nC9b=^ZzytaUY!l zIFP1HqWn8mf42cx@!Gun9KpZU74!qhHP8_2e2_BEIzRx>OBbl`9=!AUy8Pk}Q3ow+ z++yIOVK_Bf8u#?@<$#j=`h^bBepf}ow1ea=Yv%%9m8m|Sqa%9|c>fuX6zD`(7+_Ou z)d|Me`*Un>A2+xX^nG+!3*dIii`y$bcYpALoI2gKYqyls-Ufnk2Gw~@Giucm`?%<; zbGuz;bP-z}0Ll2}{o-{JFHn>sQOvU41kYQKW#nl?0rLKSz`D($X|@jHq{6_W5%zMSED47_uGn8an=a7u>&_o{8_M|@ zwlT)uUo`mLOi^A8v>`VR`u+J!br7iCRHL{PM9wTJuzDQ6Q<62w`bsV2C z{nffnEcoTzwgihUpOba**#6hA)Vjw0C4rkViCL^OUpM!`8+WQ~zX|eNgn>Cb(jp5V ziJI^C`cySPfDf+CkdLcV_U~W_eXN2ItM!)0o2jXmVEZAve7M}fJWCB#^U>=BDRQQr zoi{`th^_b+{#ZV?w82^)+sU{np)pzxEW*gl`%OO2Df-;uM=vPgO9CY%9~?WpDx2^j zGn}C)qW|ujR8SMzbOkuYvV8&YWf#~RB?t1f2r85z;Kw2SNH0?M*g35qk?!rlzt8R# z@D>M|JRwNViMDA5Kee(}WFZLRjd`(vjeN;3*?a|To~2L+sG#HT^Qu2B z;3A*i#?Q$o?lMggn5he-<{Q7mz*&Ct%_%o#cYk!7V)YF>dpRNABa!b?J$f}dX5y@ z9KqaYx*gTo8#$y@=~WD3R`HwFi4A(OT7Nt+9Ntd@gJBc>+`qf_@5uii2Bv{L)<69K z;Yj1H=blX7or*-;aC*N*&`qnoO4aYe7@N+w;)JZP*niniS>0VlCzO{ysL27g=R<*! z&?Z2#%>owd6?klKTYF$Q&ZgEa|Dv0!5ATVPwni6%YqFIw7zJ!g1`+cpQt1%vmz}JW z_c)8pOA6b%vz%VFweQ=r`EC8-j!f0X5|MXjwHXre4E=9Z?E2#UkJEu5(j%HOucW{J z$E8ATlms+>^hMR(PT*9?{w**#MihqvM)5Dzqu{@`FM@+5l9P2-#9agqbG<_9%pZVP zIs2Ew!@~@4t)p?y-`*VA(EnY(7Qn(8CQtX{Pr{@i%k=G!A%I^zo!em93|_PFATxI3>N$+LfZ!59p{)Yl25b!HaBG8SQc^r3-S=i ziEEXwOueoTXUT4v&$tV_LI;bw1S9@;EE)KbubaP||E&aOF8%|Q>VF%Wc)Avp&O=`M zZ#K^^3I86%Mt8FYu_HJCcWg6wt-m_hzyIxq$n*zx?S81ri#!<2pO1LLH9*Q{rP3_%*xI5il!*^!Qezpl>*P+KnoQnNJ? z-m@O(za=RJe89zRO3GRiFBZKxqRX{XZ?(q1wrcchVvbm)nZ*;6QrQF2n`K>pZMP(! zvCi^|>uGqKoeLcuwbM<#ss~8Q(D?js5B{n+FgjVf1F#HVmEVzk+-2@c&Q}98bT(eZ z-D$FumJjM{aKG7nKLVlfXxwe7J|g1VG$=g`D;8du>HmL-HJAnsqy_Yak6wmbV+_Ge zW(r8&_%orFnDFHueZA*o1PHsb5mb3>qUhsfJ_v+)z!zQZAH~O0=J{`CWgj)psFA_4 zV}Fc*{4wRAN;PuauzKr&U=^@3hLF%&-8ss`KB0XJ$=rY3yn~synj`W~R`9nsALoXO zlkC3+HEzCij41^}WwCj9#rD_Nyn`T=GTp#`f_=R;Ua^8_;_fG|`9amCst4fFj*A0i z5YzdjkOY*34F(jae?n0Qgl#BSn~Os(1oCtUbmar!>L*+p;!IKYc~2L3yi$zt{q@Cs zj+mR75hVVOUmjKr63~lA@m`i$n$fW{+f>z=_8kO1YZY`JYnyzwa|!03=hor)Vdjrr z1Q5#yl28rbPiKDk*lBK?+4JsP<}4V;S}3c*W6#ese(JTxsoIqF;}8r#Q)v@XH6Z}b5y};pl2sY(Z z7kwyPTqg6Ho>k(dli208p2llk%FyqJL2`6UDj9^K_SI>!7xc_|f?-w9hG; zw~&7C5jy@QUFpVCNeQ!3Lj-Ym!r5DoV}#{pX+s+S@(gC5h|p3ma>C-VxmNsSD2FGh7Cfmk`7e?Tva;W7x0>Cl^MJK2xWmlwH5 z5PXvT&p$l1cW$biB-gtWD+5!nLl-E57^U%Vhs@=~{s{xGuB^+?M#wr5tf*y~NEcN0 ze^mlz?zKUDqm@A2oZ>WTPNg!*i~X)!O%?#X-QK3%FT=fQB6H$|A;`6%OPP%M`| zBDxI>^8#hP2D;o^X--!J_RD840kA3%=*jj>x|<+Q6~_EIO3d1)i9WYv07%pppt?5A zYcX97BG#r{_kCsk6?ljM{kOlk(Wke@RoBocK=hZoP^TpIM7sNQCQW!`t-zk8vFTc* zaRaoIsI2GP>(T;pRKkXeBKe^*>J8_#V-*tgaNaPCmSM*O#q|1zOa120Y+A3d?Z0vT zcTss>)J67mZMu_%35p4ltHt`Q*@KL9bH22>ZU9Lj`(cDC5Tk1hbjrPrdn;BS{Q3ej zM!bv_qCdd+0qYhVbIb%@m($}Yq12Bsc2i?!0IL#?h*TDWq-c(y1h=HhCsF-pd1AuC zYhB;hn5Pf-Lw*jMaAjWg%}-DIn2A{fX7YCvOAUa7c=|uSSGIMJO$88lzRGPt*hZaX ze1es2?Jy*qEw@!V-h^E~Vg)p}ZXhlSX+#4$?Y=xKVN8CYux9FoU!?t?7+6< zrIgT$+nlQ8`kJcc;3obdwS5mdreX+KsFO!zo>4tw@m)I~Wk{A*#S^ikddg#vynG zrF=;3!!aW+{u>$q(d*)r-V<_KOuJ);s8DzH3{b3`z-ZHAZ3gq(hp!9oA4a(89Y(u; z*h11f(lO!|=%;W$tR3O1^5(xD0#Q=7<@sEm+%to{o0ze9O{Pz=K~X+ePWUxv7#tcp z(c5WK;K>6Lx^5FNe%_ebx5j&ShS%m>7&>ydfbAv{Bn)-$t3r8MJ7^L;r$5++!XbKP zI|Tn0Ft2$A!>`9c{s|f1a@51fAXLFR;+n}>fc`gc)*IDV1Hz*_xts^GcU7@M6q8h} zk8404pmm)IO_1+&M-sT8AfV=Uf&_McP1dLIK^~HH!iN3NsbkhK&}cH6&5i~~Xr5bt zaq+{3rvNs4lfI)0@+Giasi1ZgIyBc+HZ01gd9MrOn3PERKKD$X{flFJ(8Z?3PKz>r z3kpDle^2CYq5;{m3J4cwdn*H$kNPeS==K-0uW}k2?$ZQy;VkIzGW&nSU{{ZfFBxP9 zcV^JthHK$`IgE+=GqN6iMj)QU5QxBP_oBxf06(}clTb#TY<1sOcFDqMqhiG^E3^FL zICu(x2<0TdOi&@nsh_K20T&`3#z%tNhq>kkun71=x@D<3Hq2?dDekxn*o5GpX_LUo zNb?v-n|vyP2N7z4zJJkX*Rr*(~nCkxquow zjC732(T$!RUnU)CHOC|dc&>-cyoDePbMsXIF9|~Dje0)a@xZsI$^!w%(a9jm zr1zp6F4TQ??7(5#;`fv(%9=7M=h40Y6+T#$KaL4n6Dq6=MbDB^EACTmao2*{0^kqI zPa7-+j^*S5BrwuE8xKDLdD<#k?}20ozdPGK>EB{3mY zxBobzMtkwjL3X-nlejtR2XvW>A#V$Fl&gZ;gOvQK@?9QxKByox_L7YH#d(jN(}Loi zY*@^-!A8lDkK?y1yC_+y0(E{8Q1c761DoE)#t3{}D0^SEtGld+f%am5$*(Ge748n8 zNRXy2&-S7H7e|g2u2k2!OcXwnD^YP64#?A^f0jR_^goUCA9dY!(yU#IxA`=1Zt*L5 zzOlaVCWA)x!6Huk;-rIqhQG_8xJm+X?elD^djzW`rRp}uaALd!Ycx_gT8gXV?aRO z-C1VxwS$T3f6Sii7r*%Emorvzi}L9aTPIM=t)$#b#_uTv z#!NYIyx-4PgnZa~{2d3Z+aRcJR;bw$vhZSMe*;PUt?iEwxWewX-H_g2FCS z;9<3{_CAuX5O}pKK%M(|TV}x}i_bGXd6|9X#@djP>L2q)We?R0++4XPzrSm8cVIo1 zp{&QU^TK}-hDdM2?Cqs@xj^n-bluMdel_p4dut-uZ7@4Eikpl8z)le7L4Hw?H2wOz zA7yq=PV2JRTU3R#_p{-iq9cTCWA5o^ zTHDuxCLUt9<|NkN2+RO>B!+K=K}NZ^*k&ce=O9nDHWYKF3!I9MJ~AVuXrJ|X za%bKv$3io~%@?{dF?gUf2qk~NStCPBeM1;fXzc z?*n)afqYYkW<67cp(fm_$|zTh3&OnjQAPr|Zh%z_ta8{i!5_j)0hK{KN8hDGU}Pwe z+AhD=*Q+0_3lfz2M4b;g?KEk}{#-xO6kUAt6FvX%hSP#9NYM7UKA*HL&FF^7>T1|E!v2H`~LU}Z2mx0 zedj90O<=AxVXZ98?J-n8)=Inc(T^V94wThF(~h(uS+_5zgKcg8YTy;hsMiD(|3#n_ zsMC6Ls_4DQU6+kAJEHh?zlBeM)M@vrHz$M0RS#^oL1qn*Bh&})LvOFm7yK~JciTq7 zbhrz*#oHNkeWjE& znFOrv^ToE0GUAXF6R=P6PML2Y!c(S@!_9xOyK~?7R)7>-Fg!ayE{O46otf@H8B7@C zR0tlX6fo8qf)K8MpAI>;CiYP~Mf_BrKyL!cM^W+>hvBz178OHN()V*3G_{78{MOAs z7lmPIK(iSl3mGs2f|kKzMH|D|g`s~{PF00`08J>(H{Z z+OZ`v&Ygg|)VUtchz2)du+(bWWYKeHx=J(6eYbcr=ojO}jgckbh|Dc_ASQ7fGV_6j zGNH3#lD2jCuH-bA(HL{Z2$M1cJ0JzM0qcoK2q4VsbAeR=o_Ug$pOYwe3jC-CV0-w} z8BOhC&-9cIeJ&-sSDhlfT~7hOCkI3sm)xlFnXQk|v?NDj+t+oFmx5Y3^ipxW6ekU0 zI%f4TsQHBuOPpWPuP=c{%0cTWyCvD;;}^qr0`yJ*@2mRnQ;W zLF*vubGG44MZk{(0s%mQq)rX-nlNnI=ezoa=L*5q6~xD+s5r!OIbvc&(+D-jR?5^i zW6uwsBh_|-_hdaPxK56kBc?-j0qbfw=o!jp?IrG#8k`(h6G5qP#+lam7Z+)4e(oT( zg7IC*Een4y7^pt<9D6f@*80t5o!2j6j`9#Cmdw<$F4;Bi0mScX zkXMy=^X1Xmz9KKm$r(9yvXnJ?F1N-9ashMuT_YIHB`hm~;5-LZb2F6DKsyCnSMl^7 z+4F-Wb>Bdh4mB(`gCnz-O95Bl)c)jhHn|O8fH!(rbEB~S{{f?NG*A`|VDeAr#`pF9 z_+VT7n&+_;NXI#=1=V@OY$p%eBCeYgO+k1ib80`g-^a}-J<_(CtNVR@wOARd-2lDRJohV4qMR44tk0* z?$NlG@7#z5uyXx8R(@3EZqe;*4H(6w-?JA9=N~{gZ(~zr3b^JV_i;o48sJ*_aqXF2Td3&#DL#^KL<6e|^DIfOm%{}Q zDZAkPY;_To=*u@WftAXiKR%I0r|+>5vTM!D2vXKtcOH#@GyHV>-Baao+&AHlO!J8g zh6zAT9_**=Pf5$U83QXw6CVX%_%}(ity%#HDLu@G8NH;d<>ArV)n85WGZg2~#bjQV z{bB*!(#_q?r4KFN5M!|7M8c<<`~TwZsNLt-nFpaRmixy+<@hh`6g7B&PzS7_$SECR z!Fr?&weHd~gYvQ$Ei9`y*LWKt|lcBd~^v6aPz-jSVlrMKHXS zz06*#RsZH9W`5H)|NrA6n7jY^hsl&`{L=V8o}LQ?=j3BwiBZeWA{;rVc=s3{?&B44 z{*g10c8lZb`}5ifl@q7$JnqQ39jkL_-{XB_7cQKB@#@uqrxzZPV8bZ9HUBZ?R>e0X zq1KpQYiny`dU4`flMIt%dkyvaojvO$^?V!w0$vxEVh>7!^!qRe@x2%=T)uO zJ#!csTjbwo7mfIbEga1GO8YB2fepn?|9xx(_0xa(i0t15p06`yx9uneb0dK}LcY9!$s(@;2;|723uZ0B%*vgO3#J+iB zGTm_`<%&;!I0?x02baf5=y71N;5M-|rjv2@d3c5(c>70#fLx3{FGm~%+JBhoIGl0y zXT)Dtm&4Vwd+jB=lrERDafL}fsHsjA|YDrou zF!QzTp6);GO=YqAr5xZF{;lQQVK=t&qccQoFiPCK2=?jDVt?Z%XZ$b5LtYA>ZO9$r zu+?`??aA4v6n!@Ia669&D#HsMY=w+#1D4}O?mB^~uw8YL`~aLJ!Rrg%VwoZKPk$}P zi+Ks<=_Rx%368G;k`ipmzCI+(&~WWh`Lwf1l^7#)IINbluVekm!+E>6xi5U(O_R{4 zjG(tEnB8<2z#B1HFX$-$P1BiJuMkF4Ndq#7eAu8-1sT+{xaw@yo39%$r)vo(mDv!`H1GZ<5Z#@p#3SYx>fT=p z2VHDY`m8PN-#ejTgqs@-e*)|!+`pwG048js=m=!Zqv5Qi))&I2AS*8V;wNyD)`eKy zO}x~L<`SrK>v!{a2+U}MFht|8GKG@%6KA+QHW^ z{Twrug{-Xjas`3?j08#Bp*2Anx9Xlxfio$CKm{n($U_D9;{4``cgMx9HqhhP z+K<$|TjfevK{sQDWxNS|w%yA~wjFcj&ABQ&rW-{XEs2uF!&MMRm74>17u%AH49`Us z-F{bqsGggPp6*ER1?jhAdZm`-H}!8UZ}cmr46qw1FLVq!|5RxOgWI3ZhKILU6%MIB zhxfu+cQ*USaY+-Dp5U#UP(Kirb`7|Uk<1~+ zMVKg#!02ezAc7s#>wyh;+;L*yad#0k%~t9GC4dvaM%@zp@~$Jdd0UeD^;OgR9#CUA zE1Wxh(%jX`LCYlVfEiRsZ%Wpnw(SZb-!Tl!Zz-;?zWG} zGK0a~gF<68nQ;G-Vr%EcWgP^GbkS`wXe+?MRzGVy=-X=*b}tY7x^n~tgh$0aQtqs; zDveQzC6KVw4hd4m4YG^O2?uJ#XQdsfaHyBL0JD>g(2Y3LMV9$<^rl`_>$DjgflEO4 zaX%7VuB`3%A{fs!LA<}q&X<>#<@UEmQ)VJ4!eJYR0I&649P_;dKx3N{D{Uar@Y5|e zLjY(y2HR^MS{1SM<3ld2k+Ky4PD=yE=6$JCrH?;$M6rB!`O3SPi%b;^RsFQ zYrOdGDFMaLe5Tt(8WeUxG>i2A{cc~^J;qn%HuM0Lj56@nZmt(%m5UEc6O-S_O6MfIoY0dL8U&FzI5nD_jRyzeh)`q zPX&4^xTm$!e23CvpF3H}wW0AA1xv2K^MP0l?9Gz7S53@I#i$rsioA2aP~e1}b!PyW zuDBmKvj+xm9b6N>e0!5R*<1KdlTf`*6xGdufh9v%`c@36$hnxfsrJ+vJu3XDpMZ>C z?dIiP1*%>C`yi~o{-9I%WLvsE^3_JFvDn4CQ}?C>M5SC8s+Uu658qMC64G9$h<6Q~ zyY=d!@A3@wl#5WXAA zU;#GH{oGBuLYlODMPnZLx`&rZ_#G0u@k!n5V80txQgFS=0r_eh2~lF>MdRd62go-T zWFAi26~k4T4}7aUy8A-+FIaXysj6_l)*bSpd4;#Q^3k}c`5AoBPv`TVBM++rwpDhM zPMjJKY)QNLAs?&wBRuTvb$^q7@q`h=&*^|K->+D1GuS-|CEe6cx_c3s?9WiB;}NFcbI`8nmB489!w*XHpd3x2I9Uq~rvMHkQwTS3;WaXeCZzh0RtgC62{3B6-Ms&^TgRtx(%a!F`TZ!)7S|2 z{tz3w%_1C#!IR6@l*0ZQjB*f=Ei3?#>CBjRrZ>SHe*f3g+Cd=FV5F_+UcDc%BhD=DU4En>??sJZ?s5m-5|3kc_b6@LOSV|xHS4#`6{wsm=Y3Vl&0`# z^(&vYNw$$GGh}r>*W3^lG481x6xg)S2CGH`tg309eL`_8%A0X&NEY|F0_@eRGtX(q z*#x!-q9DCS5K9zP-CqETwDZ6y9~Ua!of$f{F3=bLWA8R%?O-3wv?+x1b~v>m;!0`w zs;szq=^L$s0!R1z;&n*pv|-~1aTp3*}9+W3Y9!L{Ku;C{mQI94Pk}S^PQ`6fkivXMbx0;m)0Y9 zy#y(OE=Ud?(3JI<*h-eFKil{53H}7vsmp2!;?4HFc*G;X0W{(k+ay5nmYJI6?NVQ+tY{HOJBO2L3!F$o_BeHL-2K*09Us?M<^I zz6s)q=1DJNrOF67rdH-JhclMg2*{Pq65z2)Bzu_b5XH(N+HYb(1yO!J&3e=pq55-=tf=HEpcw-ZnEvX<{P=;h!LBwSkcC z%!nEHYt92ubGsW`{8$==&Dnc$#E(1-zdD&C?k%ho)Wr-xwz#=GFkp6maTs3U@gxiw zmrYrz3HAN*Cs8xU&qb@s#PaPHz7$aRjk9#P8s6wR_?@WDClec5N(Rtd3-8#8Kb_Dc zx_H5qgyMo$dGuS}O_GweTR57}@21LE_xTbahU5}3Bol-R*7}4i9lciCGx_$6rfkTU z{apMC20-BC{Z#IuV0Tq2@uLcX8=9#^OLa?a!KH_FV_z5)9Tll$_R@oD9`Q_G?pFhwmw2bPWV^<& zBW`_V**2kTyoitHdk$A~09b;Z?+i@C{}YhWA3w^Ac5X|9Bgr;C4Fg>BByM6CuVf6r zd@p8E%8=?5)6b|PF?FRZYb!Z9xlb*jHxGAKgx#9h$8}F+N-CXj0cqsZ@9bVp?_6Ir z1!lC+s>@!h_0)u2%c}gHW@UAsKchk`Bz6Ed(~g5pp6-K} z{1eK_bzGs^&{nx?Poef5SZfdOuL#x1lI`-6N54Q*Y$p!>Pm>R~~f;Ox>_--N~ z@E-HaJ}z`e3fH&1y;z)@3QXy?@CPO`Lsp6og+IDaotAza;S$^tl@A@cJ=<5!}B4KD29tg3Zlt_AHTNXxrYG=9q6u&wD?Wa4^1x!#pe45fHH zU!3Xe9gi!ZVm+P*TDcNE<*IGKP7_K$3x8#a^N*j#@JO|iJ!p6&UoEi?68-E)s(c)< zcPIs2wsn1QPvlF{o9RvIr1H>cU~oqn&J0DSP-?`A1`xJl0*w_`MMino>^Cl> zRR24n7k{&EGodk-n|Ulh|63F*%rrZau2k$vxL!(P4eKctAL;ioAb@K(pBnC?G>%s-FT$C4vuL z8x(gzn#yf9XiE+Hj+%Ad@&bKW@3C6WwPCle%@w|Zce&cSrn3wf!^0F;%=Z>zK-yD{ z@mt?bu(|awe!1Q`b9UBQr`jE0Y*vO_h<#|L3&2-?ecL}eEZ*XWxe7jfM6S=eN=JlC z)-(}IhNJQ^;=kgaM`KQ}u9?jsN%qSv#e$W-^L}0zXu~ze!Pt?)2wRb1rIX5C;*IDW!(2gwTxwoAbH=5Fiq3P|fdK3FVq;dvXzZ}w9Z*W6}7MrdjNW_VOg z82AB2wZSx-Am?wFaQdt1st2IK?#Hm5=Z2@x=Z4|MoDcC1cvJ<43+ifrT`oHs@}x*Vv(B>4zJ~Kr zaA>N$d%k6ry;*yu`m&*emOFWv29f9cC9%`j>o#2ZQYiS+NY#*SbKUiP;L|1^K9GkwvHVCE!pIy$2KmBUEBPbio;}^;2 z49`$z8irLux7|N&9yS7t!;bjon9M?oa!_m7ch`=RS%&h#6AJe=qYjy0q{5HOolp+= zewpjkwJ#Z)VIks5*oZ#2P^t>RJxXmHlyC1{i;(ldn=rh)0y-a zGE7!?#sv*Vh0peg(7k^}ddlpQ66j&%w(qN`+gV927T>DheNlHtqC?ns(A+jOFCZT_ zANu1x-46GfPpbNnah@K$`Vm4oKYhOYoOZ%$-M?s=N5520efYp??Rh}qs6>Ix63Ng2 z9WPpb7=)%1jC-|GmhDw|Z}$Cl-?{kXmmVx=RQavg+@gSG?jl=e1ZD9%I2In0%F5b9 zIB!1JF&rE4=WA!J5+N`eD05!?J{Ody%_4*HKyoPryXz6c$oKimL7m&) zs)Kc5Sz(Xso+{`2_2N`B^uSz8dp4PoiWy~wTay_JMXJSJ^c|nhmg1)@m4I%BLPy|G z8JY`@Z;$!}x#cT8N+^X$RC)Gmkixd%bMhX)G-$|7E-3!hyxao_?s-!zJ%~i4cvY-@ zRB(N@c|67>sC}e2Asm5inUpJ}zbiVHu}Tb6s0yic6a&B z6AChc1;+e3Rt+_MihlAZ*ph~sgm$b|bbjPY#B&Qn=ZVIw30~Z^WOSg{_r>}=czQIW zV+@$PyuO<`*m`7G1WS`rnc8!wx^-zppE!Pb&lyIhXb>o8%Y@)VoV=H^T)p(J4)FC= znA_@xQYGa%0Y-BCne`uYei{!(qX11e5;+T+ZCw`jS$)9}m@@#c+p@O+w^*!?GO~pY z-gaj&t&Ww}N?4T#eOYQKwJ+z=GKZ~{91^^~piw3_fd)0+|4!bkNm=Ok)3h_Er8l;m z!IaI|5||9Sio+211!4SS47zhVzZAYXrF?tac|7pUuNm6ICbVzH{6&$n=Zs+o2{WT6-fL^yrk)|0Znv8JMIiZ@9^TCI*&u2siuV&PZre!V#W}6m$l5C z?|V1qq!RIYI+??&eQSv?n(q7+85lt+R^AQ#9?YAxblXr*N-C`#clR~7MK>?_I8WF3 ztsNlvbP^~JR&56bW*8LAqDgsA1)~)0Be;O!R~b zszm#+?ld9%d4WArwxw@4*R+`VQ9wj*lvJv`QwHbynJ8^;W_|X$xJ_*UWw>}RI+y+b zV(-o4q2Am7@uJd(I*wFA%PGZ)N;r|FRmmDdSu5F@sVsvDMfcc}ct-T3xFf;C>bC7AFH91RQzNPeV(A>JnY*{!ed@e=!dQ~#RE zz4Azy=)NG-hl@O_MuOcd{gpElpJ=Q7>=max`xe57dzw_Lyl}@1PWv8;%X7Th84!lF zZLC67huIK32-LaZ3i44Xwc~Vh1kQ>bHAGpu3<&}siE*lq4xNtw z7e=#YwjaNq;I);G^mhQMxmBu+N2L?L;eH2ZdZI9~)P-D0pS+3r(o=%4?HqY@ioZxG z`2q@zKP7GHeyaA^dp6~6{*9>7SBP%1KXXt|nM)B`DuzGW(tul!RCec$FOpoE6Pd$T z(qo1jlM`(C7y-NL+i8bh6QycyV(Qk;JE{q!8e`k=7h(aOHz%N zvp5~k#-FSdU!c!{O?xY1tLgKj`4|Co^jy*y=VSZYsgFUs{B47KpE%VesCkmU4>vlI zi~nY*7a-934}@#-Z>z7*ukBS5E*q5r;iZ=)pGM!GjD0P!tL2(#J(z>eh<0`+m57Uj zMd`Y|rl9|{$CDSKF_|B%Q}Bz)pz3h^_M2;x`kvmslk&p%mhOP0Dpc0Bg@I8;A_l#;)CgWp?!!kYDa>9lu6q0 zu{ZUd<6j82rH&!TF!sR|&xz7!J5PvMQy8A)?=wN^F?vC33Ork1e!y3rwWf|Z9xI>X zFY!4}tLBPE<~iV!zz~r5_dkvW^`-0neX#w86YN0yFFBqySP^zfDCxbok+z=kT6?+c zJ6mhuEESTuy~jj$?G;u_yZ==!3tQx>l$XgPsUX1I*l)vZWbEElBK)E*7=*Jk)*bx& zA56GyxR(S6-ON^~=ROFDZrT--@JktE68_nK5+2S^4gV5zqbIk$`gbc34`c4%EkZy3 z+}d42qD9#yBk3^P%fhB}Mo4e@Z}AYi{;F!H;CV?d_j%nBKCerAhaapE*$pIuwg2gA z9KOTp3xBTKtY0IfH|T;wTq0??M2kG(B8(vIL|xnaLii?ZfF0zIrA*dI^dHM+1D%8i ze(u-5Tnt{j{?~XUFf@SVK@iyFSdn3&XnNps$;%UmmiyAL6Q0F;kKV*?(%&g;IoyB> zfw2W*S0C~{Wr<5a799HdUda5|OE!sVk{vX;^4&wJ5fsB9%4TMIZX^N}5wi79_t5*d z-+i>aS8^5w-_H`tW6A+qU80Z`F$Q1#k9Ts{GxVE04n&fzA8k(j8Mc-xayvbuAt z+q-B5flJbMpA&!c-u`i9W>ukXFR9+0@`vA#Cxnz3FnddlJde_jxEKxu=w=Y>YL?xe z^I!z?sx9-c9doWv=wqeB#cOeupP_;5eZjzRl}yv@B1fmOK*!iFx)Yt28@JczEJ%ir zpXCoVJO#da6|!3A#A9wUE5na2VN)FvqdR{k@uy!ZDo27!yALZYuwj(?&>z*>n zF_yd3&zeZP;E>5bbomn*B!6ZWpM4<*Y`OM>zoC-D#5OdM?9ck7SyxR{GnKh@Vr-8A zwY^$zPAInT%zhLvO#HBi@%-4W>lRosg+Ef8U!RH~xHjwB!|uM)s5(O4&<|0`q4N6> z0^O;GZ93m?*f=+*(SA0Nw35`j`B{tw2^7@h+&FntUIJLfaU#k?wE{0DYk1RQ^HI#n z!9C;c#i_WKR6R#|hF@pu5}&O%nW#H=z1k#ozMJ71wh-t$l3JY(=4~?8-3x;eZTp87 zd1Q}%u#SmR3tsrHd!BF591=ABDMH3$Z-o)3T2XTi}GrDcT32|38Mes{%YXeLrCAU;F;a1Xz_?-a;{r|DiR z76@E>``>#|N41543F!{@u}8-!AyY{N1#EBxeyNzK7Sw)a=+MeZIc+p^sJ0N0Jingg zFR|?68`kz!79;X1lkD^bLF##_vr1X{*O5fkCp&1RG-lql@RFWaH%q+&=yZp?#i|mQ z4=*)XT0zEaf=iSut>lbTb>XC%^L5cdt}7ho5Hh3q#GICD`-4xlEB`iX1NU!D6kuq< zPIlXXS9VQ!e{DMYZ*&);I34raTEdC(s;Na}&Qd&8la`gNj$&dF7<2+CR#J5^Rz4$D z*>i%{Au2=lQ@R`{z}#|Y*Om0=&}B`ZRt6GRwXySHmpu~%MK z0WFCP>=)1E>;1S8ii}-XkCk}((ZHnS_|$ab%$WAM4O^%R*^di&LWA6&8g1(K~Qr@)eF#BPQrC80c-yUY@&3F=HN+`Ci^B zm~K1YS+{23QDXg&E0*TMkrV6eaQ%@9CD_J+~h?G&qdxG=H-3=b0)31-neCKL~3TxZZ z*WW!5%9Z0o4*Ux<$)pvt<8hCS$cdc->rpC)dfny_iuAcQYCC#7xlR36dw})I;CWjq zN&^koyuvyh(^Au?bZKY0Cr^Y?Xro~sHG-Q9X6^83FOb>#mQy3KoHtv)0B*r22os^= zSytG@?w9>B9X!7IV>-~h+%VioZ?76s4tWp+MtHDPBY-47cl}VqZ0XFKI)@B8(^dH@ z#G16s@Nr>mq`g+2@7U)h%wt)-%ToKO`A^@99k9kvgpjSH=vHsarHjD~E?dPOLtfu8 z_g#04SE>!9nk-^&^F=+iqTI$RFMZ1C{CfPjU&EFtL{-4%y%&N|k3FmIdafo>rnms@ zg|-2)v3|{9gt)>%TXp*VGKJvjt9mW==ITMN_rqBCic3tXV$=;cszH#La-PjY8MBrctl53Cp4V?JNa z8k3rn>tB9z3Y^~Sj`@+-3>r0i| zGkYA}cM=R4{)E^R#N+bU&azj^>5hQyWqLMyF5Ek?9dxy@u+D+Bkif4 z2IhT>dD2pomtcYBpQP#ivWJlFlMAkIW5XfbiOc8|t(m(@=2dwfv;zFSbts-{wN(cF z{+s?FOwPn_8a2T~!{J4g^$c2iVL`cf5}yHaQJJ7r#C~g-nYqSD3gJh_dA1*Wk&C++ z;+%nLyRUv&DVqN1zJx66%{aFi*e$w(dQEl;Z z&bg<(2pNJnxWcH%nMEiEM*h4s7dqY)wkXz)HMXS{d`nqZB9PDH=k}@c!fQfLK?ycH z_U{r53pPO2tfes!^{`#d|Jn0{iMbedCB6FfF&`PM;P-w}28I{>0w^ zEwIYKOjLYG`fbdZV#W{5HVUlPs~goeO{kfYGJQFf?3F-YlLsCHS(3VT93_7`wkKxa zu`RbhM)dQOyFZ+ua4^UFA}B-$wkk_RuBoZfcidi#s; zDW{n=$lBNboW8<(1QvT{YS^Q@Dv97I__=qznqDRt81T|49xbmb zwZJ3KP`Y7!k*C*+W0Bn^GpP0HdeNbGt?xgyE(&p!)AG{{8+}@zaG1j6^@B6xEVw~n zvSWg{qh3nhGT%l53g!5NIftZP@ib)F$o^tzk9x3!r^H4-DEg2r95VQCdGT|*I55@Y zav#M$1#$9S`nNBFrNS+8jf+J`Bs6z}0nRzSp~e_`a>;~Fdx5=UdT7WwYg``-eI2CL zfB$XTX(i+`vQ{U=?4ww37*REgviki3vr`QPVbwx))y>&m14nS3byZu7Nh-c-5Uj3j7#rmW)*Hm zhtIqWu}KbzN1QbVXMV#sfTd$uFkb__C+yBd9?xpcHdH?IoexChzR^>oMZG?0$4!$C z4Y*t$`RUz-{fsZ>aaXGOY;Djs+Zs@R^LX=pTP(B^PPZ_Rd4ns$LjP4-<!NSo`!+ zb{%(q_13uKn%;l~$qPZl&!i-2dcNc|-rVNnCHfKeIcCsa0}-LngGQnx2NtDm7BSGgjlbFfn##vPJDU5Yc>t!SL`G*?Qf% zw(~QieIFJXHYBg?`5A>5P;v6@x-Tvz^etqGb%K*FR^3yty&%ydZdf3=-#v*2cA7bRg!en%4pK+N#i~osC zGVDVcCu4;`7pnQ0I!-=tcC%D#$fYS`x8w5~*WX`}N>gSgNyr_4c?}HQ=C-RFox6P( zSW#~{9-<>{eJMG0@*8+`kZR`bGfpOLs_1v~zcutR|LWWO3oYSrmOb5(G6KU4jx2~f&Fm;bcVc)X-?>}ro;@E4X9Vht zh3+bkRqKR3|JP+)S5YanTLQT`o<-$9 z8xvZm3L8-9I2S_7ONfP&sp_6C*`d2rA=u_~(>wnRx`fBw9((f4&6VF_CRPTX=VNjz zZVb%(F&Q|S(Q=ug_lfqZR5NRIpI>f{QR?`eFRQaGdrxTCZNtPP+2rQO+tkQ`QCko9B1V?F zRt;>luq;8$YE~ZXn!vy^(=h>I+Dgb6vWF zwjby&@6HGu%w3-cU5H=A9Cs~>UhbWnLp{a_FQI72HnH2kNl)>ZJju1NQRq9?<;iE)Caj9bv+-SO4~GZzRdzR{XeoE2bT0$Eh^RVoLy+FHGOc3Id+z-B6w7d9!Gm z2nokvg>dL9Q>};K16@>*PTS(bR5Rkm^#j&Xn7)+DAvfp_^osKqg_nv?#_Tg`u`tyc zx(^E}uuZW1cJ19FG0(0ta@{oRQ&pf3U^gyjBz;k!H{o1({&7YJ7O*8F@5i`$+OHgi zst=&J=6&942$RY=smJBseO9d>S!!x^pny?Y_+&8D*lG18gl_p-LT#lX8Bmh*;@gk5 z01v;t_n41S#-WG*vyBMXe5rR9a-?Uh*@5G+AC#^$Snmn zfG?m??t4K`#H9(bM?x>%slg<^;KnT>r(THehz_6nt^5U#pdmX^4!gmTzJ6(XXL&H6 zfi`@4ypq4EnSd9V_CViP_#D~!?*5-K`;3F$_HpzQl{^17n-=hL!F3_Kk^YKMxDjLt zIm~jKS64D2BrkW@sWmve?vlfJy8E3$1WrfDpU%Hrn!`>BmLz+3SDjz?Q!ks#Dk}a` zn-2j%kVIIPKVZ`?=_{jgV)Eg>P4dB*Z|~x#2MrY5na>ZZ94Fow+zlQtRul~H;^0a1 z*Efp<*QH*h9lH7KED-JY8f7C<)INT|BAy#ms87_ab*yw{l5W1ezxC>r&q#;`TXCu) za!5|w_fUwlZ~D5$;$4%bKZI(GAI#gYng3$mp11W%AP3jswP4nU;P?V9Lb~;MyX5#1 z-=adP7ku0LD1r`CMN_O-;xo-L`+G}eFT_Zv1jvfzc;@Z&T@5`K@3Rz@pW3V}JJ&K&Tgl<|xib?dK3 zubp``7se*}jql(6!sjuykY4ub#hFLO`)`-BDLnZ=p9i1DBJXxO1S4RepX3KglZ!^T ze3^v7owK;qhABt6ydAVB`}t)eF)13}+v8NNO=g&#)>=z=CLuEf!7Hfgb znd0p{?v83aq)?wY!8kcE!zK%|hc1kW^|(KfgFjmQ<^BF;Y+7nUl{P7dvB7c2vqcu= zhRye|2Uj~>(-HT?;(#mcv zHDT;t7#YA3=`@geEwk>6$7#{-9v&W$d)b^Iv^+c-_h$s;aBNP}MBz)WH%+8c$C-c+ z75g>!C8r&mdej%pvG)dZ7BGvrHOTfIlke=UEESS-9W)&_&l(8znkr6z31oi-1(QK_ z3;@UD0H2I?#XF9T#@89O@bB=~gijhMbO1R{t$*o{ok3`>lX(V$$rVD9^IZ1!M_EUH zUJj^G<0zzT@_-0nnah5pGP=N>CgQj6gHY(Zfc9p=L&Ki__SuH)QaGNx(~pR^w**Xg z>lC%8Qg$;Kv<4BjYXn_}q$;b*Th2}&2kS+PP-qKjvQ?qYVH5g_dGMN_1~f-n)!{bm z+F|ROkH9?->BlkR(ce8r@P5tQr1$U7#SCtoQbAvZ|DVhRkuM z;Z38OQ8>pWRm<~Zg1M4a8F;M!Xd?5FsalZ_Mki{gLkNF~=AJhu3;U%}G9-KTEvz>3 zW4A;3N)yf{Bv{q|DDRSbOD|ueHo~sr_-7u0_bOoUWGK~tBR|BSUgn;)p_C)=tu~B5 zh=WycBD4R-$V5>WX=L?=Em+*T7?k?Ce|rHuH}HL8M#CZ&zS)+0v6TExcj!5Ur>jg5 zOYhd`3FYQDq@jWM&orfbfnxH#x3b@oelL%Rq7NdqP<_V@ktch!%Q?P-Ub2&EN3Xts zac(f{SG$UH-aX}hne1Cb%KNY0nYFoga+zEgE)x;#=Wt5F<_LZO`_aPkDF0sI)0_8yxloz*x6A zW$uh~L#+Dind3qDAV0K<273-{+mD2?av8JDoq3r@^DR6ZIu1g7T~z7xogudPTzHM% zY2mZj1-##*%Uvg%NdYWEqUKJ9!*(M?p0W>-y_KyP>CEI$r7H?yA~ME-m*$R3Jd*zm_h z+%`4WicLiC3r}}fLjA$R%4)Rf&xaHwn?~&~NGx5L>&XZz&1tl(4$;w@_0~qxAqC3VVcG=h(ki z;fMa2uKSvL3ybj$4%YPBhf<`2CU(|yJ)VNBPKD5g^S}!049>yw1RmO8pk|V$m2WAT zGv9WgYi?3sxi+qWINY1a@I(dpMuV5D)c;wi)PJLN z*kIMBO;CPMZTkOGP?nh(0NgatDf4q2ckhFpy%n6d$zvJdl5uaDI`)&s@K^H+w@#fI z*aFTja(1)-ndbk0I$Zp>*8U(pe)wN|8B1%SA)O+t#y$w%)jH&?_7 z*W}iEe*v#&|2uE{zu-xDUh~VPN$eLM;c&#YCu?`^ghLpyQ)p14`H;PF@W9>W2Pz~B z0~L&`PaADoxk|Wn8t?&|t^W@HMo6Ljhn4VuI$QvY=O5fF@cnrx*WTV-aYp$4$^2g* zm;W8U9QJ>}$ECXXv=D#>5=IWd_)Af^%2nWV^#oqBjP3vI0)qC_fpk58U-hxQwG>68 zKg?hsUgk^uI|=;4kV!MkGFB|je8$LtvU%YspuOY{!Mj( zWA_hiVE#1B;5TaK=3}De4O3<%reeAnvk>{?JN!`S-2@N$QL5fHxT90p1I{&!l~-D0W)(7y5kG3VBlV7ypr$%qG}5o)8s-Y^U|q*Ft`K zXAd!6{6sZ(9Ou#XDlC-k(%=1;ZOE3!WSn!umcuz<0&*D`i7h|B6Myun33vd#zrhuL zg8pNWUa*K2Lg}K*90+#aXxq@+0^J)Qa)pI(FCy>C3FEZm2iClYj77%W+lXqjq%z3^ zp-T&f0hl*igP*Hh#-2w1axwE{c$qg{g9U251J4w#)2ae}c?@*jC{xa^;)Vl^MIFFr zra482E5omC7`y)|x`!gK>wAgJn=sc^YbvTvZ6o<9j4f1d0EHn5*7bKGDJlotCCP@p z*%#t8IDzSb%~d5nFjYl?b;LQ~U-&r*Cq~EM8G_K;0HS6q1AAJ)fPWi|BIR2-Ot};d z>5oM3Zmg-~juxr0*8JbUL7uFR7Fd7CDk6J-bFc;ma*eR`>aO|WoL~Ry07DvgdKmO$MwoA1=Un;9newxE0f$_m-BA8lSkkj^Sy|AxF2Ox>g zG!RQcREG`dVOwDsT%`KvUi$Q6yP8Yczb7kvVDy6rO?XqLhBvrRU-M&kou|xCKe=fS z*_5I=3ciH<7R|a!KJGwnHZ7R+|l4}g8?hZ_mZ=l`On%1&EqYU zt8dTJLIzjEWNVjY5aqjn!E$^`&=O!6*=*S( zkNpBTTl;|+M27y#&dv?K^t)g|nt$tEq|h$t$n|qYz_7hRD@`W2?UH?ux8|H-AeAB% zFCv(@Yyd9i#q6*#By2*hBtBbWOFk=*n2<8qV7pf68BL^KUn(YStcGa zjA!3eYr59iSK{nR;rEe2AiLkfoSe{)Zmz>1@-Oa{>S)S4vtfknuiBD&(AKK4^2K)| z>lKEFMBpzX4kl?@LuB4U@lxJN-UZbTgrda^oxVn5M;^F!)F$v7R5d#cr7nef_8c8* zOs->Mvm4@Zm)l&}3Hrq5HxeRL$O%Y))Bg}=2ZhVaHlEN?uCSb*uqHrzg$2@AcgiqU$FIzS~q^LIj91& z;p~ck<{Kug^#D`RvIYm621Y-r5>WjP(g(gj22uo*Twp^njM}cwjV>y85*>gM`c^JL z|E^+O;OihCeWDbtb23f%?K~VPvwA+qnyr{_3DG^UYI(nPapFXE$l_7t!m7q}Jx2iD zrbQW9M*TkxCn*!FrAGSzCV95kcw7?f(@#jNnzu^&hC+$1PgWJEk6faj-0ONagRTf$ zYez`WG9BdnzlKmO+^c0-%l@wKw(d`l450UfVJ{Wmk(y=mIdPgOU1GI=3D>))qd7ncY$IUdupV4?BVn_5S5PWOMe4h^Z|pW9a=zO zto|G@u+L3@V9O7r`8EuG%Z~DDUxmDsK|i@sLH8s`{Se^WbaXaKGo{f~Z}DYHbutjCt-3qGf=> zLi&9|jkvgPx~|XJ)$4!0fyfI%7IW^6B;cqVqiTRWG_OYzDz=>2mn`E#TB2;}ruw7KN}~goRjCJKkO!{8j=7 zS$}m=_T*0gLVeznDG%oh3yU|S+&2P9XAbYZ5T}&AQgr?Rc$qn;+7OZ6SpRCyFubjx zcMjVM0D;qu3Q=%8{Ks=)MP?Y1IoV;0%J(F)gT8-IR9|EfcQguB%RQwuyB26)dV(gy z#L9d+O`x{`x7h5CJFBN+K@#%gz7dt}Yf4p&_UH8G$Kk9XEkL`h%d!@r&p0LqT1l*V z>2vVpV)m(8H>LFOIKe9WQ-L>XQ*|SgeIc!PX0a4Hh)40Udt4q?yKl~7b6Qa2;` zt;M^}yYEFfT+@TYPhmG8gCz29g+}scx<}F<=@YXCWke1GB2hPRL+n4qsepSDULLVg zz5q-lYAe2NkZHnAwl$B=enZU+w?iVdUb=R*6JH`~yIN0?p|@ybczTcxunImwN5^*p z6>7=#5ADUlVgw|;c69;kLsj5Zo-wYYK5Y-Vzmt8N$0Cl?i_*br`U~%%RaqV^rf^UK zXZTHtYSu*rRFNlQv>a?i=sC{;^sCIhz^iy(MZ5$=%+qH+2KX`C%}<|p)pQ_RJA7K0 z+fe4-2D1L7_R#3J5fV7JZ=Zw4vPnQ^j_D6!_o6_2p4fr9gsSDAgx#FkV$e)`maF8* zi41z~wf|Mz{;jl_GR3t}g6mYe)9=qP=XnhhBAO=$7Q#1Z`F)R_3yta*g!Dh)T{Zff zM4m8#69@mLAa6_6p|^! zq+b(vpI*xe_)~hcuj1-mBR{5^tBEq;!jaq5a4U>*O+Iv>OQ$izuA-Qld%Zx-`dWd=nWzIdoP;L|+FSC%zpUK8Y3(UEP^rl*$4t5h z@h3)N+dhB)$Vy>4Xrr@++R+ID*N`;#h)(rxd!nnr)1i3 zokS(u@|X3&<8vEKnveb=gO=9}iG=j)>a)??3(h@F5fot<&$)B)euay=`Ndfg`>pXi zis;kJ$%(tSGE5Md!S8=83iAEJBF$b$VhBaccQgas0WZfjY#`@W`7y0%cnj;j1(AJD zb&vgtKHyurB>ZIk_gd^S=>_HHF&*>W*w#g*Qw(eTLVmPv{xzrML%f#Piz$<)?sG%& zPFO^4F+|Q}-WT`K%XS^5&`90}tghkVm~4aeINtV&0IeYJ#$F0X&KH>Qp( zCN7_u&QoYFJK&^qXV^H2P`q^J$zsyco3SO-nC>szRQ`7p`~QzG7G}K*;6cQGv4Faz zMLq)O@6D(RybyS6#0sJo$}l|nR2_5&Tivhzy7aG?4%JAd?Ed|Cpm(zt;yx>P6nR z9ZI*p3f43#=yBT?`8>zK*4<6}S!UlR&vtJ&2(PWjR}9&AS5b zpMB(#z%*)cSQb1UigJw8ojKMcCaj6|jJf`1+@<1c8-)4>$IxALyvV>w4d z-dIK-Zal;HKZvNjcnpmhlx$Ff+%uqFBtpUo2dSw@sUE}r^iFTuEm_Mur}oK|U0pJ& zwgbvQ>;a24=zbkc=*7}uR&OU>O6tzibW92U0^dg%c-5CxWI*T7^~KByde}Pr>90XL zS~fD(f{^<4q390Ki|8PQ5ijbVx7kRwt7An}HZr1s5!G=XP#YQ%tx3K^8k-6U`@9lG zA7S-q5V?m46l>GIly8hx*{1PU_GDfM$uGGKqVy;;9m!h3!v$c4mcL$Fw^-z>9(`qK zXKAh1$GlzsmwIU~Zzg8OHHo|~_^FCiQv z%m1jfc`^v5+@^y-(XltkG21b!;dxs+6KU}j!%bQ3|NdAt;%epFPR8_GN%{n2H2IUC z)I}@UuKa>LLL*#=SHhd>9>^N)sQ%?Jx^FkSqDOjEqj{s8hKxoB zFeGlrQ9BqvTjL!q33Z+*1W_Y%5X1{g7lt2e1x?(uKd`{5F7l*BuJ(WDrS|(eNU5q^ zC()VbV4Qfw<&S(L?_q_;q=xahrSzO4<$%;9&bJ8OZN2#4Dc*Dw?EvIF@)FT#^PaOU zA7XM5xegXn4~#bTR0$p<3PFW^;s{58>nC1z&4RJH6zs@gy zJpjU#_i|oKM16FOi}yq%-FSPa#V5%P-G~x{sO_kTueqjjxsSKC(S63~s8_&M&p(oV zA+I;rS$faejr^dcJ9|MZEh;`+9?xjD>`v1QEp};4D@xPRIsjfBR;$^U{AnyO2eGgx z&6MN9n$xu#@hx(lSY7!8*Z$lIQI2M6_w!qjeaFyCyUE`x@)LA#{i)AS4PBfedbE4& zx6r9Ff2(z*U)Ev}Q!!(ID|``d!@Fb`%#D!c6l=IK3zdtJKe5WKakfBdcb$Q zJUKOGF@#m0h-_LZ$^Z*vBf|JmtKt{oG@>b*_uIbXEGGYvl}b8FthC5RnrysZ+q!82 z3~>nL{)%rFN1ewvif?PTUcLTnDcwE{DdnP(>C$<%z-yZ#b-$h)m`N5k`v#czA@ z)SRDYd;DbEvn?>-`S(`NOJZxUMljK<8_#w0n@Ol%mzJ!Lsd-g0M*ff#TGyo0IA#GK zN6903a-O7qVPa_*`2Ke7R~x=UB~$|QE3M%9$5>08bI~_CRYzJS1@UA_&w$qKA-q_U zv@ya=o2$g6L%hk&PU?_dHS{5-jYeDYVw7jey@vp+Lb>n$jE%6hsjPOP?SA)g>N#Tu zLerIO7Nq#MJEQyQK8JTLfz8JUOP3;R;{D*}g+rLjwOA@rBHsK)r7dk2aTXj_T>2sRqR4KS^_FKoW7$L00> z18Q6tl|G#kSj7v^Pj47$e#MFV)xK}NUEK{wvi$5wy1?Swvn8JeBD6KX6Ar67vYoVJ zSx$?$PS!ZFNRSUmi3U-RXLwcrhJXfq5VC-8o5|fRSVxGso$`nq2r!~hPp zW_GGToD3=t6HWDBJ^lM@RHvxAhsG3Px)xnNAmSiQ zx~&Xek|q`UD~l!{^SeBu&_Ng85%ng9@<4`RS$A`CT`Cfa-RFEhqPDoU4Md}y{RWKkh*KceZ=()GLfM!}2oV9#f9LSf5+JQRQCcF7}MK?xqr5x&CtNsf3T zuY;GT%y%Qo8~p%bw!~T5yR-&8>Hs%g*FRq#y83@ehgpNL0`##dUqO`X2)F|DCj=CN&N2v6`RIk z4;V3j&?Ri`Jqh7;6}-_CWQ+fJBIaHs1MEVr~NVv?q{QPlO!o<$0=Z&5}t9$&6c?{|skI`43{9kof zsh+xD7NmXi8tx*`nY?>;Y88n$v3R~QiCBvBNmgQ%?Eco$HGm7D7<($52?f( zGk}Q1wDr;l3L!hs4eo6D;KhZ73E((~Itn`ViGh<~FVR!ZGJu@R(vYqa``Qny$hk(_ zy{#wyl|eXXqK*w6mI%aDwUFK?>`Fc2VuaGH9@j@ZF=aM}l!Uy#@~$M%5JZu6?OL}P z#(E2{j90?9B_Swxi9S)W3_;T&7&x?zywo0@uHnOz)#kNSpCqOOhNReTJ?bA`8Flgs z?T=Kg*Qm>&rU>H6zTG!!I&Ub3kZ(lrXuSG!f@?p>lnHx&jqMDTb3raxzJbw*$jYnLJ z7!4F*2o|P7l^nje>Eqm!ck*et&<~dLPhifqzs!FkJ>gJx<@uZN(t4`i(4nyDhIm2y zeZPjE4_{k_ZU*cW*E6!j?3;gUBMgHLR(&NUwSrentsV}T9(^hotGSZhL!g>{IXhEE zTaO`n_IKNNAAfaNq`XpuVR}E$IK9JL+oSG@{gaGJ+&H&~_GktWqVeg(QtU-SjQA?W)~s3B(cyXb8P?- z5cQFz@VNC1seQ(6FVDAmuaLUm6sJa(`m)*vM4I@!5x3Pb9oMtZr`8{Cg_-~yd^k6$8Cv7+d+<%mj6QM$a>%8*Y>m;QEKzOTv>Iba}j1dwpd6b zUn99KKX6J0Q&o2yrDR6*?z~LHS^@df&nSi}cgPX|SYc8#!#jr|eM4i!bc3&eOFvH# zU>}t@2OH>+&_@|8rw^@h<2=?C@@{l#j`($>h7im1sOr>n{l>B=v1VffwNR-RDsnXo zGc!>D`GWLja7?unitJ(NnI2PgW@&Ur7is%<@{)-jOI2gSz8-g36*3lxsOqGno>|vF zJahZ=)k-c^CuG9aS~}e=7}Yqq-d7CW$UU{NoRcAxlp1+!J~~r_`EfFu;AGH{(!VvO zaI2+LQ*|iBA?Jw7=G5wp$T+HHee4HyR8yHgM7C>ZZYON-IdMyBzh>RS>PPBsljpQk z?5nyWtXh7%zeV*jvR{o>C5mea2Gb;IrO%G)o*4>#dK0=MVdY*LyzH0}d{nKL%bjEX4$HFx; zo;U}__M8vF3D~xr?G@|Rk|m@(RNx903P{b5k-@9U|H19Sg>85|cLZ|GX~h03;uC_X z_0mcMRAQ)L7p72;-OEBM12U#n=9vu(t_nKdM!L9hN4Xc{YQ(cfaj7o6Wqt}sKR9ex z6Yw6&8r)Oo9wCkQm&-ZArKWQ|86;y<*f`FEY2$~G_;vBgE6R=;Wiy-P==7C0$%A@& zRt0u@EGYDQ6^&Q98LtS`+Ng11(g?Q6irdQh^ODvL&BJ)jnZ)l#6^P z6EHko?HX@vX#7EoR*Agi45D(2x0YT*663BAYx}!pFB8a0=)C@GTOR0-Lii1<*FdnI z0dgy3x|ww*KQ~=6?`BK~_k}TH!tPk9_DYAC=Xy&Od0P)(>xwHnbrZ4@0LVs|`b zp=-Ul;~$rqF@qB;7!z$EO&b#|aRjjt&Y*}2v`an=?=kA#lg0bHPd^yA*}RI3>aB2( zAO;r*{2itb@ud%3J6(5Z-&Q>+zR~r=coTSSJJoLgeY&ImsF1K1#CsmMYZDf#zc#TA zmdT%ck34N}f!Jb1D&J4iM;jgf{M9dDw(0ISOTyWop+M;6dYLA@ok*pdo!GWZJT{{< zN4z0@dz$10hk|7!28jqQ&nq?*f-g%FFfRR(4?@F{I7a;+E+)xc-NHDXfP9fo{9^XL z#-33agaDy=2r%XuMbp#{)#@Fk{q&3wZyL__OLkM(>%R{&{OBz(0(tO;dIOwMEW1D_u7*2V8I7oz6e}8enJE3YU#+!ORxl|! z;#gOXfagLi{G{B+@B#I3Cy5YGlnU8jll80R^+F1648Ea!=Y2o<_h+z4By^j7l+cgz zVTXVwOs^Eit1s6b>31SLbZ)sExFg*&7j~~vyrLFw0{;PoBQ7@pY;ryP0}jQ;{|W%p zt`>zzNap)kjbdi3>EHiYKQ6?{-SAHdx(nd?7W(8xZrXK6#=D=XPGfc!HPqD^psK#r zGSv^eNGbhzVL$!VB1Zh9-#ToQ(2~8{Atu+z>cy&u>bGZGa#a>yaW)6Hk>eSz^JVUl z+xL!J@bx&28)Q`S{OB4=_9bQDB0ST6mD)c|0ej0lNPG2U_Z~B4@sA+!mnmm0s*`hE zjFZ52CmABHVkFBew4;%ZjPlj($2Da3Z zm2>fgBGuqsRRaX57_8pyP$jL%aidKs8pWl{CV5TvY`7PYLB5r3IM1brgsJr23-K9h z`aC*G${!+fVYdwIzDf=6pt^4_`YCQa{A8TVHSZ@n(+>4lasG zj1Ig$1)Hz@64yrTs&!H%{;Gl&20qwUPV0tQL~yjwR;fN+5DXSo{R|$Ae?8X`aVDS- zAd_YxaLaG-jl%qBRUm4}$!MAxDxslR1D9&5wZh$)Ot4xR!ALjgr5Oy|qid-u%_2p@bQ zfD4NgjxRG#65E#RqE>Zc=V?*K>cUA@hc~^QVyg*^BZkvrw1Qsw9qKzjZtvxx52?18 z!ry&s^m&rWp=J#og}zh62ct)X*(sT)?g!ipMNiC{0}E|>)Kz88w7?4N>B|7GW3QK1 z9-S?g(z^9$CqwV-<55_9z4-q1ThSKwxNXDsQqN8m|LP9!9=Eyg(&Mf9r9nK_mynJW z%OVGR7zU=?Hh7o>^QX;0oO66$H}Ko95KAkmfIZ)qzWax-yITgP{lR9Bju+uTzj0apL~}n-B9YPH_A_=td98i+EobujDUjOr z0)qwC?q1!|6NiZFrh(z3Z(X#M|1|5YyI@K5$d~6T7CrLJKOZ_GDh-|aRj$!#!X+AF z^X+u#LS1xxjB(a@%lVCCL+jm>pMYH5vbYN6TJn%&1*vxDlA zT+QlAp-3e76ry2$W`e+3ninJ#AFU&$9d^18l`6B?=`6h{aEpaC{1~^5hH*;ntKUj> zNmm%3qu-m5+Gmt;UwnJL<$gzs3n9lSai7#5)+%`z*-PB;R zM+X*$1Lhd6h+0AiL0KWtKRh}fb7D0eb;YeeC|P0?t59yIIHdM8B4 zoVO9tvC3!_?O&=;9C^yza59@3wwlCj$2+es)h73=xwY(!lGAj6GITLj3o=@)cg}wp z;NFjtZO=28N>uu?r*ORcgxqU!UjaB^DVdkV%Js_Yc)T>YLbc3q^*H(kmeNk!e z+SLX7qGaJitPZOUuc=e-Eu0LvTv%8;coR|MXM zw%*6~1jl6Q1WGOU+~z%=O%s>#NbU%nN6U}cq|_rrp|~)N?`-p#8=?$gMOw=$-(cjL zqNG(Wy?4sXZ_Dv${d!=#6Jk`wouW4I4V8n}=he%?l3cE}>I3~|g5?(4h!`acer${k0qrljBQpv}SBx)|#> zQm(qrmu&fF7|5n0RQ_L^e6vjYhf@%o{`WUKD?}W2ZTcLBw1}f4DBXx{n2!lJ!9n=d zUj=*P(H8GJtx}4n9YM;L3ts^faU^r&L552SEe!BZL$4-@S~2{i=%F<$j1vx-;|e`K zkEy+sEGts}TIJbk^6rsr=S-d*q6Er5IAYrd_62ta>*d8bn(pA`<;lHrgl88#&;1m8 zpiM+~{5Jvil$g4kSwB+pN&eW@cAG{@#+{Cw^%%fBjzZp>w5nCFuitd4CW@+cnbs(} zAu;);)Lx_OVpBzSl`n2{Mu^JM(FBn(Q~C7UHVy_)W+U}^F-NX4lc0&K{tuft)x9m0 z>)(DNl-_ygO)n$7eK)t^YbS$@c7F3ocrmOZN$&U!FdZejgL8eXd0KB}9Qc@kcZO;D zbL9~{H<-`$ro^Zx10|#2yp*CYjfYrG67KyAx=XrgIi9qF&0kZnmk^Y^Q~M_Dq2RGAe-u1JU)O(+YJVThf-QXjYqbMNADS52^~sv)pfrDhqK;+P zMkQmBsXZWTj}dPz2;5M3x%6y=guEpLqaO{JyaEp4CU@6JSOWL4*R6Vqn+(OBCE=Sa z>s%jF;MuvybYST3AVKa>`y*_qO{x zPtoycG48freO``na(l+rJ>s%jmLQ5WzjCUQp7w4!RBluw#vkF=?}l(QO;pOp$gR9P z2KR62y$@0_DS78Ypv=*{{8274>mLK_^PW6t!%^8dT!v679Fpy z8&Nyd4gYGwdx94h7TO6I$;Lz-`kof30Sd;6TE-A`B~0X;pbppVWOjpX0uIR7SX*L~ zvbb;PlrgyJ=-N|)xGj+AI+)hRwkNk|nD3z#m|J-Fl=&0&0)K)J9oG;ary9DF{A{K* z`_W9TEUN2NqEZK_{yPcPOC2q{?#62QdFVVEV{RIiKXxk?g!f3!OikD#%aE;!?6dUr zOxHv$y>L#G$|O;;g=iWy0U0ffO{C*LeVt;(!-xLPEv0Ns{7P# z)O-&sr1a4F%W$g^-u8pV3jpBnXiwzm1fLNVeqw9(1<&^Po4Iq~;3j0B%ISp|?JfAG z=34)YqobpDSH-80khWT5NYfQQo8*CSGLDv=Pxnx{Dd2{a4fwpr5H`*~0b(5X*3X-4 z;mxNXzqy*^10L(pJ?jMuedun8y^B||&naj1bbA)K96KHP^ZDe^u7X9rWY^Wvr+e<( zcAF^t>p5v;PQ#V$MiDYz4_M^1K%y*5$2j)TQzL@E2;=O&33=FVV@$)5xyyB;4oKF2 zunIi=Q}QA7qbJi_s?Q%RZ90Upg-2aJy2UM+R?vHWpkS`?H8!inM6>-@^h_VloKUeR zEJ#OI@#x?XEmA6LPGs5l`jML7um~FYud2Yqmu!zzel0WMj zu`*;@;gCMGO6}uu%5l1w7B?fG2bHRb~kH9z3y7m|FOa-Ku3$w3gxcQZmD(Jt|( zXj8ua(gN1u%LQp=n~w}wcEmeg;Tb_n&tCN&>=m}w78Sdfl~cn#yO3?q4_y@jZN^FH z3d}!lJ#5GL*{&_4!(&a5D$3#A<82nQnqD`eJxzw2l5?9<$!@(Bhm{-(DuOv5s4i)a z!HWbZf$@k}cWJ{aLMPtdNzXH+myEW?Sr^fsD4;K4ZrOlS7?`X0(U{2&{&DQz`(=2i zQtoXNLL7zM{{Z3;f&~%nh6(`L_>45srE~g2w2R+FNDA6B6?B4Lmbx}6UHyFTUw{D> zn;a4nq6KV~&x#Ltts}l){vX!9JE+NZ>vxL<(T%8xC@5e-q^mUPC?e98jx?orl->fO zA_@x91*A!@p$9@$lq!TGASHmb1cA^A5XxQIXMgw3J$JtOPR_aiIO9xs=Y5~Dp7pHt zD~+^F4U4mvc}SdU+5C=SZ-bu-fQ+%w>>P=)Ib+kIHdNKyy9T z@?f>q^1>aiB7-r!7ybrg$ObrYP|C;l2!M(g@@Gb;bPK@va<%6N(Vi>O%aa}X5Tvb$ z1W7S(LSD@V*?SQxB`K`W84i&zmkOp_F8WU$Hg)|VkWlI!zt53e!=J$wu36@B2RdaOwvv-eIC;Q05vwW%l0ciQR>vHh0$1xu+Q5^=6 zwH2kYzaWQyBbk#A{!d@_PXJvbZwOn+ozvHE9XNiCysSp|bGe99N*}2of?BEfP{?)T z17EVpCGW=nEU|}u%3c0O0U8bPEO!vXSEZ*=uYOS&zH6l1^gE;fH8L`@a_KL?3M+`F z{TmmJ|NDLFVdtHX?Y`ocunbxdl-*e_!=r+QgR?Ilk0$q7-ADhU@-lqmKNZCpaM7V_ z$eoq^h*s>aL1za$BmI3cArZ62NY=zMbRCDfaL z#RQUcCh4co2SM40xIB%BMVib@}!Pt3OJOX5`V$ z0^EUS)%tvI#pC^<>2Unq1!7p)5O@{mxF;U=(aAB;BN16ULx)hDx4yh&!AQ-2lE)Yg zmRKTzGo5uW?4oqOZ88yvyhzmqanMNW0!Y`LWQ5h7Km7ZZ$dO)p`#;O*VeBebaGDj1 zfvqw8NQ;gSzl!iSy;40R2+~}+sy4m~tQiR;Fc81Leoiz>ScM75#f?~&j}cyLv$iYK ztgCHd4MFEb6`!yy;boJDUc5MZpqhN5ImiEp@tGgc#KAo3X;~eK;t!{Y*@aG=Y?-@U6EXGpr$L`tKWBC!sDJo1iRLHo}MJv zGwMHGa4iY)(hGYE9DdU2lbqqXPg0)Wdi9mxusRLOLBAW@;}v6s-;K1z_jA3q{S>*| zlpT@jveuS%X+Kz1oB4M|1qEr&5*sLLbi9=j>uRqSj~NhIz-w z7OByq33*Uu?dh_V*>lta@AxV#10J9fl~>eaKS4jdl9Z_&dmAW851@aJwWnj1(u~MZ zDYNb&5`>+@IousUk<$S1Yp5Z^iM}GLVT}ysk|A=PTZ?|wENNx`z5|J5K50+Lzja2D zGyc88P3qo!W8?gX<(ezg?RGEx_fy*pZ_vbvTb3&e5#Rz&uHb>qn)^KI@A6Pl2q|{w}n8ZzoE6aXCkS-?AQ+0?Fg=1t)90rWDgL?~Mw^%4Rkm41{V{I>})x zT$Lg?REnEGN)YYkvS1Nv>gz%nmUG6nm*BL@6dAq+omFzqn>{OFk#*wvi090o9!e=d8Ih}!1!Q1*UMhRMl+A{Rl%9Xdy) zPa6)o*G)8q%|#?;VlQrxgw^(4H5VFMB=&1+5>TFc8_4^L0MQ2(h;-Y5qO( z+xZQkM@KLT+NE_Qh-IrL3?37p-`Jf94HkQRuzJW9pM2)}r`a+8{RCgA;jS=VP5yA* zr1d~vl3N9rwI9&bbByZ}<#hxaRk)K0UZdb_+nZspzc$mOA8_>aGG5$uP!sx9a;ABp zkeRQDEqGct-;c@JGHglZX9VUCRaqs84YkJB#DO#w;WpG1CxisU8w zD>hhk8QNzW`VV(1xcd0K|~f#W5}Nmq>Zw-*ahZ zWkL61rmr15T#}#79!8oQ`fBK>6R(08 z_#LP#p`&fB^@Z8yRF!desoWxB6bi+kR+KktDo7VWxrt=TyF8I;HDP_$$!?0;Qyxn?#o|M_9y(^M$&dAm_0d9#)OFrAlqeF)9S`!Ma8F~XkTtNSGl*Ye{Nbk7Q~XxsI< z0k@&QTYsc&a?w4UJr`jFhb=I@ROLg@_d?HlzMNw}7J!9^U_iLmDoJN~AFN3s^ z1ex`zm7@)QAx)Z}?$DTbL@LzQ)`DG7>iHw1rB5RO`nK|8Y%K!nj0Yh5{Hs`s(JpBW z1;DKEULiRPy${V>A*ZiTHa9jTTn)T00QA)#2Vw~GX{rBKA)O2%0I!t$pKk})zkr~^ zZSnRD3k$Qb!~N8|Dv^*%=6+dc3iXx`*@h-w-0WOs31J;sx24FfUC*`0$cyHW4D1sJTcCTE zn2%atzS1xVDgJndGQw{|KH4Xa<(&VUM?t#q}ey?_7S)1H!ov` zaVvBuv)h|E6E{U!DC)++W{lwgs`u2ujT@l6kt}0H=d$OuRPM#Qp(2kNJ#tG3cmHg} z9UWAwb)@hEL7WPOr3;y{D5%l-PEA&WB4DCCn;~^{@U@p9`^hCnwF54j%ko#_G?%#^v|BHH3LoWzz5;8rk0J6FiFXR|g|d z6?Z9nYkwW6HIW!@tuVoMy6)e3245gG{yrqJZq4Kx|AtHB@FlW-3uIQzX{kX#gA8u!Y_O32OL2phqDKBTZdofNAOis`gy=ZBWVS%NWtgv`FEaz zjB4xE?~o+~Utr8y=j0W=NM5<`F+x7?Cko&?nIPug0~#dH=O)k(sBGBe*^L5N>$7D;mb;~%J)AU(Dk|^fRr~TGydywUHF^)}S|M?>aZ!0BN5x(5sfcXy~)yEquA z=HtK-8en-EV93-B!pVZB(>#zBv~{6mNy0V*pJG$7%*;?=o+!9(`LDmC4BI4Br2{{* zUxJ0Ibc#GGx3TN^KCC>3S19Fy#gsAwcPGwI!p)F3;~ed((G#Xrc^V{d%?Pb(KjUwW zg4^cvSW<-PTR?o_BSNK@t?HhxWB`vXSu3~St291%LY}TF7bJubcR74_dQ;WjjDMS( zHEmMElNLnCpaw4ej7arN)u}EF2BUVx%y)T`bLZ*OCxF@~e|4C;(PTa{ zNP9o^vERd+E5KQygDmE%eVm|T#Fa9T2se3mc4P?;s2|tabzaxs!zzsYM#~k_uB``1 zVm=j%Tn|fMH%Wr3v^TL7yura}J}W9ZA{21sVH+Ab!{j12 z4_%i$aD0*RFs(nqkfR`XAPq-nfKy@APyKCPddmkh^5b={ zE>EhDj?_eQM$~yf(wKynb*i1i0`n@6HN+x%6QNkfrQuu^p0k?{iG+(Hqct zNO&yDq}~nftyrSppKs)_6({62JE#Zp84QaLIw*>PMzZAb0b?!p1IM2ndHG6)SmBBj zwC?f5jXxi_k?bXg*ib!(t=!X=`Hm&Z zOD-boK}%W(^MxNboPOvchWwJ7tgZ;wxD;8Q8A^TOdfjC5%o=Ri)Jlz}V>W|nVc65U z$yJ^ujW-sKdb~X&b%%jFvgG+G;!2Qj$68k;tT&@ER!6S2|U zyIteurt$UliF})17)E@p?+(Zb*=K?6?4fgFohwk7wA!s6P)y>pPbOO5p(GA_NWvDY zV{8$zKx__BZ(`_K&3rUu zZ7n?rxV`z$cU9tSzXfTrV6VJoO)WN8^emP1e4O(aT1(zJPxm^&IC-jg3uRF9xIF`4 zPW5D9?&J8d`)5y@4Q0Hujk>VomuthXUwd06uKdqpzegfl#MylQy6x@C{a9da_QjRW zQZb8lmV-)&&HQhMAQs7olz!yKDB0n6bYY(WWHOHq!+g7c^QU&1#)yB`wO>SoR8gwh z%2%Bl6NOX!+LtBEkGR#1TE|p5xi8*bnv0S!(&V*SU_C~xroW*x#iiLdQX}p8XZh0| z8}siQCKr}7528yf+u-h}F@upt=IHe__IWB!wXW1Qo%=2~tIexfeCN7kagICx!_qq% z8LCA5%HyyvaZA`!?x4qzgkOAYOe_<2X+=Iq;(ph%$1W-PE~^V$NfQ3#kr<1qaj)K; zNk1>{hISZAGOTg|+T)t!AO&PwI7>Vbr}gy+otb2r~n zN-4KnbR5kJ$cr$q?|X)$thLh)-iZ=x5?r?>J$7?K+oAmDE> zG?3`d<<;$N>FXekdZxH_G#6h`{q8G^sM-T$LKL6uX=2&z_x&w^uS0iRHYBm`c_$5DWg7 z4^WvgKfWN8fNB61!V|&U5Y$ zm-=`PKk*zu?Ni%%O|R5bVX;-N+Ap?T&znl>u}eJo^l}h|lb5fPMjC0YpG*9;zGNyt zlN#E3b4zOA$=)tvXSD~DqdB$0;W#rlW6U7s7-G8*tN}dny z(Q?FvlvuQP7c)TF(wrMKlH}Kzg*5@|DCAB!7y8s_)uj1-%3zsgjD;^T;i8;Zkqkb# zBLHVy06ollgaF686q|!5D|21>M_ly~jNaPMj%~Np>l?czS82woxoi|7o7&v%hR6h7 z?^4NGxkvs4+F5M?X}t|ep*k8RE_SeMQ3XlJ(WuI3!jkEI^Wtv0TIHc+tUIU&S|^Bl z_ob@U2jf8g<@(W6+tPQZ+yw;cLtoa{S$PAQN z(m8!G_QO6ndYZ3vfmO`oepjme(PGC(BDHx&hGeGBbI+AX0iBL|v_zRb$f#*=_{44L zrYxTmb&@D^)UB(0^!YXdTa-EoQg%Q!@Obj}uXf;8AQ8}O|J)9oNn^MpNYXCF2Z9tq zb<<6LuLnq9g#F0&3m*iX>^Qejc!{UD;WP`77NmrM_Ee@(1#FKRyv z^lsFbBdzxfOZIpMPphnI1-h*Z0C}(ne|^V$Ki*@^M`f(t?gv;;~-fOX0ZBvY}TtVbvY?+Yj{j`2- zPrak$EraeTOO2Q9_*YIAl=3%Qjm<6VKpH`QJ+#5JZy^1Hl=IY{GqdCo`PXnA2 zu5pn(-&Uy6`sG#`pi10)ph22f=K=LGmLpDsaBTDgK=K?hiKDZ|aTK#v>cifo``Ml> zwaiITg#&3s9##t)>G`4DpGBtP+Vq9tsLD;VWKv)L&>-4Awfy6E(O{<3M39>0<4-7 zw7bcjiX*;@{u!z}jxx^wr%~*vRXjgtq#tyu1=~B6)U*g4+(F9#vCzL6RnOK&?!IF_ zsFy+lSHwYcEoYIsKi-2fZ7dN8-Nm5lo@!V_tRap#3l05J>S5uwP)1m3opL{a0C+T==qUK6@~EXc`J9J1KI=L8=bd675q7ty~5w2M^ryVVtv%Gph&>td-9A1 zM)1Y{h*WVLE8C7xrb=uZ*FPBHOE{jrg*n5Oj{x1a#$=GYc07Ysg_LoK2YK% z?e{qJsZD=QO5;0;y|n|O$M*4oj?1a>y8HBxJX9%*sWRk(@Rgrcz|VAD=u;80(IkF| z&dxI|wR$Rk?jv-GtI*E>hfa2`SGnyUT(YaTUoNhDkPXw8r?^Z1!7I>#UVQdAyV7sq zcA>shNe}v)_Xn$tc{I8UrB_MTq6u|Jkrr3v&-^o3npqAt~hjkiW1hn@QWif;OKPK{;|)7fwpe}nX9+r z)KRA09`}1=O(*El!EwW;4}V3(NB!wLu>h5QcTVcIsPojSmEZCwaMF#t;TmUwiR08+ z^dzm%=ji2@gGH^y!AX(d5Zc7Hf|2K+iD2l?T)RKPq1?G@twEM0C$hv=LPO@8Z-6c9 z3sWl=U9?Lqh@e_Z&u%@axPQUh7`5>80(5T(&$a-n@FPosUK~IF+g1u10w!8aNd=(n zHv^3W?GMtq4BKkS=li@2n#c<36;Cxt%Y_U-LQeC>A$;+LNHWyJX-cYh?AD99a-rG2 zY>??LkjEwgIJVQ039xeF-W-;uT6t}+X-O@;xmJe@(y5at1_F4Z%s7u+ zuzfveyDn+F9-hx*KAN7;%rt;1j@GW@k=vGzaCyHE3su1I1Q zL@gcGq>}VDUnm=S^R%+jjYJq^ls9v~ai~U*bUVYaC*LFLF9mouH(=>p(xINzn$f*9ri2nu4(7eV ztQYw(@GM0Dwjz19yZf=Gci)9aBWte2F0|Wmg%?D}JJt?3r#*}+E1(hY_u2LAQfzCB z;U{Y1rQEhZXcicJdj&4vORplYT^Iui{BTfRZ-$V5XDEMFlYJ=qC>4ns?fUq$JZsn? z{@$2VoEptlJsATsj!!k-cny}i&zA!jB!)QRtp*9Ajcg^__qS%Y+zYRVMU@u$gTfz& zJ6<*_#T71sOM%(q`wPN81sCjTZD%L9l9BPXgLfd9S?0JnMqf8=`sp?eL6zew7IUCB zQx(y_p8quUZib?ZwjOawjQ-F$yM#V4CTsV&joA__o>(N<#`oo?e~D0Q{goWd_~ipBE4Vfe-iLxQc@}%dzH8~Lzjre73-f!kc4XhWHSF!B+#=~P ziJZo&EJH5$C=+9DdKzA^s(ki2QX ze&N}`LLEQoXNS3Gs+Rc^fnU~~qm^s+Zj-~dJg$NJ_bfc}-*Yfu%jj5WKi22(~ zsdsD5J9=9aWh(g2fzv{M$4-7xzm)abh)~AK>O>vo>m0{fsj$rJJ6Cu)7D7%dW(dA9 zf1CXSp@zO}668EI!%9CVwcB>k`udEx=u+D^t1{_~2M(Oe^}VBo$Mf&*2>ar:@P zk+1VNqY1}SKf~pCN9N`a*I#TeHav}$GR^oNzt^QTE2Xn@_NTjEavbz`q9It~2d9>Rehx&qMwo94R{Be~)y=6o0U zSzHf4yOPT7-D+oL8xF0d=h7^qt+TR+^L|Yi7^3e1VR&v1;Y}R)Jq)zZvZxd+T1dIj zu;I79u-~O@_4H*L7kRgH3-OPf`W>){+kJxs;2WloDDf+-lS!BHZymTj-zlU-Jn2Bxiq|wD{}Na?sfZJ_{b#9KEV&yIqT5%W8w> z>MiG9^XBARZs&K3z+td!rSj)QC~0n}go^(Y4|y$nEwX#tMN0DxcX=jWhvoZgr%M;?vZ9d2dHSQ7if)JFJ+-??OF2 z(w(Q)!xbqs8JRKfm_=INr!*i30}F7hc!$C2C?2C~O-9cvl8xJ&D+*l~LluUEkpr8b zsm9fGa&4qCkF;T=_jqjke0YY+7ZyuX`By7W^M70r2o<3;fH&^PwkUgS3|J;b0mZH5 zLs#lt*sjM`=_y|A;a7HyyxaF4mV32>TTFXO%0t7wmoywm!>YbRX*EMmk8Sp3+&MKK zcn8t^_EG~|VnP4U81tUScj2JkUUgMBS-)YJ>5j3(a|~R6R~;H(0)uI>Y$$WKVcXML zJ~vb+J8(6R}l!4@Fb@+%K6lzeJzzSm*Dr9TmvZ%FP|UqZ3ut zACG94eW0CTomJwo??HRA`NX}xL-kjXaw`p9ck6fu5TWdttMZ3&&54ycLh~|#V z=^&}N;$CNXI^&uf=%jfH3>g>QhR#WN+)vEA-=&G$;qDOaO zra~Il*2er_zj$xkR}iLSY(MSBu;~7VBk{fa$eWwzHr8Lhx#7}$Ja(NR?nKxYweHIc zSe+e`2L%=TA-f+HMS1$fH+DniTEO(?)X1#mRyxfe4KjrTQzs6hFA2CXbaQLxv4Mhm zI~Hx5+O7M?d|-4n++6Y6TF0hu7jPl!!W~ zCb<@Q%4_vOi_bz$xRmT6&#hQXpBw}!FnfPMKtis*NTdwv==!>632Jzb;it3x%)$-x z)}PPNwj#yXiXD0;dv#ROmqOc@%%U@uv-spgs3&VlH{$=8xDAN8X)Ok{Eac94hDySI zC35QvL);>xU{QT#Y;`KexJ8M-&MwzF#^;kqy=%AScebh4=%W?i+kZT%eYFaHBwUtz z#7t!otsH6LsEW0lE@V6&jW97fJL9%jQY~VNLu1oxHkvoF_8?R0ecG~|P1()m`1_N7 zy+wv~rE%VHBu#yfO_KB{0O+nIt1H#KAiI3`-e>vYoOR-iM&{(wxLUISMuN8iF!U=| zRN{C*cxt5oqWyj?;vNj(!sK6LPT~gzn*y)j8nbjC{(e0 z{H`+Uyq@>Nd9S`XIGgZOEtoygJH+^V5*JEuGAC>F{J)m*1W%gbt2+)-&N1PR~ zB#Bs$>Ub1a3)&9eDW%)(0SxaXq6c@O;qFh;d;LTS&l{XtIcckSH}*WKM`Mpr&AYq5 z@cS@3UA&z^Q(%vMo!B4i5RD^p%xWuy%ne8`tbJ>mz7Xf0sUniZKkGAHC4&4w9c<*8 zUTc;0k%pr6=6004-Zqco((i?Rg5K!KnI4>qe%EHyE7~-r7(VTWy4%FU#|>t~LlgE4 zc*`V2K)|Z!{hUZdtSyWhXDB1&rS|4DTA+t$>6^@$@+u6oyWppu zT;Bj=d|J=qb{z^E{j~pOcn-4iUL{&qjh1f4+gkwYG;!MCk$%I5mvV1XE}yLOy+IX+N_SmJO<8+c zjDJL?YO4i(oT|%geu19;1H%}oo|dmY_IG7PMnG%q9>{5@fhSy|>zZ7$IpJLH%9o=z zy!&{%MiDAmqvu!X)grGwo_`m9#g$2~$fQ!uo9QaCpfC3q0qk{JER*~k_QP>VeXNTl z_$B`R!Ep@;Jts8My$$Aax+T*qvpW)|wzP1^1Q$W;Bs$4&S5Nh$1UnpIk*hP^v4K`M z6oV#P_UE&tuDJMdwEOxA(xnai^t6XdA;cdBtMI&?{@$k7g6Pxbm)l^X5zeKhSUKdw!mb$E>?edFfwy@aX@YZe2PHijt?wX= zs8zc0Au#16JNjG6G5&wOhXSoi6I8tr!TY@vm zIjT`7wj9K6E~G0)M*^a;1=I#Dbav)SFlo0MbkhFL9>kFbo6AlcizoCd9{Ep#<(LrX zL}LvvH18rEuvJRwM;IhlUes8D%tHR1{5E6X8TOg3)GAEQH)RjK{qMwRMfUAvCKXKU zvEY9WUk^~9s@4xpT$ixws;;cw_0m_Xl2wVCM>VMxE*K{3H|63dzRh`N;tU$a359Kd zc>f5!P_5d%U*4Ng)x10^>nS-O$!FNt(SP>0Uaf&=)pybd{W3dF;PbEBmDFqME)3*m zx-9e=+Whe75E!)=__h&qW1{|)Gu0AjXFgX0BWsvmQqo(|WUJEEFZAv$vsxv0QV$AK zYG0dm#Gph5r5(gaoQx5%3}@FLo2H?X7W*f$$~TESbW-mnJeT8g#u%nTrF~-<+H?jB9UbXM zpy^jIuXgkCWQ=hEzp>9|Iy7#-YaZagk_oaGo-4S4_f^8DqhwGH{bjZyYQ}9*y!PB} zeEPND%V!M{KBKie%hlI=pHyn+)#3PVi{BhH*^Pv951Fea$skWFQ zE+FG?&t-S!lk_W|guz*#aDF1EH!*sMe)LM)cQn&YzZ!de>#k3g1=F#IVr|ChIaJCQ zP!0n;kaL$JrMIm7OZ_HjL7>07GGowdA4YgEQ$1ZtUnl=}0vHqySaEqG4M{~<;sjewzVoIjug=g7Kn5p{|NaQVA}zeeIfZ4z^!^+XTU3!%8Q1&oTvil9AsA@iXs}3+u0FXO;T-4Cm*JeK)lRKlMZhk1;nfdAsDmIzW_l~=os^EYoy4Bt_T_ zEa}J>9NZa~L~Xs%#kE6vrB+31$@($v3F2xNm_*(o_qk3K`Q-5=R5Eqv&E#(NS#E93 zBBufvX9pkc<;4m}wD}7DB7r^G(6jaE_V_7?n@c=Bj9c}e!SMvqsJ$Pz|IliTa_o)G zyta7!(XUN15jpgU|D^>$+>OAcbq$G6VUEV6(wz!89nM}UcSWR)Ta=*46p%kaQR|u< zc5k!Y1((RK6ZR8uZiKP=-n>H2LWdFV8M#!Y*UMP#am!O}%PSb^c$+b6_6MKt=m;UU zesC(d%-VtM|8 z?$FkVZH@wm;v}rPoz>3P=XR#cA^q{#0l5+!L(#qb@bFat6^SS& z?p%B(qf50U+L?cxq?Q;Vf@67)ZQA{_jeR)Ec{D=VOCrh8X*f!7SVfPbTpi}Dz#sbA zw$Bs+vv+)jYDuzl{_87#sf#62(laBC_yxwq3MC_C9Q)m&wCj|#Lm`8Eod{3HZx#tr z9X8%8G)X3kg9<%#6P=?=U;aVW zf1mBbLG<~F^;Apqr3_Z{wU8w8n#Rt(_vKJ>3Xa6YsOFq*y}G$@srmd#CT_|Q)=%~W zVrBFX7dPN_|2lg4E5OmaUm@yR${Q@r7v4xukpvhgzYo++4u9jmu#on~F>IC7A>#W? z#JvvXmNc2ZQ|gocKSttLm?%kV$(tz~hEG@Qn#<9B2Ye2m^hzGmdErjk>R~%>46oi4 z6E=DC_-itZdt&nsXAjDrarr*1KpK}ZQM&`j6A;8ijXzyE}gpnc3Cx4IczDOC({_wB|c{BO`i3i*0mu#SIe&Dh; zrHk$+VAjPuXwRO%%k~(ouT?)xbUdJ_cEWai6p+D9#1qpS$6s@h=cGl(=?rCa!Zt=` zVgh^ih5N7|Iz~d7Sp*@48G*x{MTP^VGSH;6@Pf}q{M)4;e?NRg+@Q1wc4CA9( zgFuHrL)NLDNE3YhuhIto{#}s_dbU{5%8aTnxO%EPJ~zg@ZBX1+P(?I5-Dk_!AGTjaC;siswX^JSQyY(69cW z+Jmv(#XQ%cY&_YH`;jAgQqknSkL?wR#e5JaF<|(*XVDGt)b+Ahb2_M21^5hs2PCudFKJl$*EsI|D-Vd znUuk6=t@es9NTx`BU$z2vm>P+q6Q=I;_Y;L9e+zxlFvmy<8A%cDE>=t=sAuRUnw~u zGv)%4uA^L9oX!fGeXvh`I&nxHNeJ$;34M1$hRqA!FBR9+N5Q5e?@)+dCYL)A zgfE_F#XKtV^s4yA9%QH{JOnWKB_QS;tB?@xFsQUCTb&hYb^|x`SL(!XjB~TV(P@=G zdirO-t4(j@5r)>LMnVtAf$;b$=ED__d)l+R>b4#0Tr z*z}w(_9hw)g=VNQw;Xk~8R{o%%>KyU3I8bW*HN2v!@QbYHR>7l+uhU&IVXBiymm($ z5Q{vXEI#)Ml{l8l&FNg(Q8WQQ!?6#`4$9a_iA5Q=7GFQ@%C){BiTU}TwX&)^8>xuB zd;V16BQINByN`?;`|PG85-#dFac+5>AZ7A+ueLQOH=?*Huag>xlK)a_p)??s3{KD z8mn=`vbMjrj}-_O??LtZC-H2z<@-R^4o748RnygbCqn?PQ zI4FGyJpklX@qM(yfkBi7eX5gCUUYvGJ|$tst1lc8hmpp4A|Fo+NE^|J;h-#+rk2#f zCvNto#oowI)>k0Kae>pF@DWH%TgH&r&!iFB3am~EcHNWNHxOGqRigktRpjmQ6RFWf)dKeIdo398k~gcNu>By< z{Gfa3O6i{IT{`z%>g{>fAAP@vMU}OlCK!3w1ixh(8LjQx1du_xBC2;x{x+005{}=E zHKmAUC&TuO=Igy={ecd{oBY9yyiri&q|^1R`a7I!SGXm3IgNi+AfatzLc%Y~Igz{; zYWFX9i1*Cd(&~t0?S*?F#XX+*sa^9~7(oz+>fAhefSO5WhU zVckdBg%Z8{EU^P6qY+gC=F52#dtbymB_GMKa;|$ksA>gKkg2l1`MKFg{sabYMy2k{ zDDSwpiplySzGc=&2Wq^L_LkjWpLSO$IFry;T}@`4^}g$_cce>Cy8jiOX%eff>uAzu zC#4;~1(kK@$X!A))t&hFZ=e2F)aaUA;-x+ zu>Q=G_`scMxLdcE5CIClO3SBOl-Xwm$=zk^zB!?RHLSavXVbCybf>AH^|e4&-pDuf z89)0$MLY`3;mI4>49k%;=!ucg&@yry8mwgzwaNRQv=@dr54zs}b;`P7LpNFZu0>Tg z{X~)D08ko#_Dg!ZMFH2es`vSB-(tDneSK~h2wVVpJD+Fc-uX)JnanwIO{R(ZJ>h@n z;YD}G`bT|ZYDmXg0C&soUU1F{cmAx20tSEgCRI~NQlxBPT?_!B^;kNRIKDWp9LdD~ ztRM`O>_x;opj&)$b&IWB7eJIOsz*BU*T>N4i_A@T{Xd}ZI(#j9YWS)kL<_H-_utBi z9v306pFXZ(AUMW=V1b^08j2&T+gwo*w8zZbrrW3eB3T!k$&}zDr+svE=rkiNqxo;~o=L2GruSeL$>h93gz!7%*zE$#q>09m z@M=$1@Q2SF5FTz-i@eIWXMhHvY}rVAIQ|ecC*yeOcct(78b_0qldCea5A0Tmj+}C1 zg{~zJU>v3flDvydHZLjwPtu$Dmt%f6*>*4+VuT?^x_W+3>Pw^UYZ(c0p;+xucmsKN zjK8lhSXgge)=FxoYf^3g7VOtz=xz~tZrZUlXi7<8urzz3Gwf?`K zDa_+?4;qFZT+*md5Gk|Kj0jww4x*<%+iK~TYU$yt}c;7TN_DK-{^EZaPJ_ z@k@*@nl9OVV-l(mu+09#!8bMkx!c==|NWWy^}S5#e(YcQwJ&Z^q6e* z{N55iqw1^V)CQEP4h~6I1!?(`-$Zdc>!s&w0?{x9mmwi6y5 zn%a&%wJ|%6fAl65n02g0s&8~rJwESj@KBGNuC6OR37ShHZH4|=c7^cE#WwAhHx^RU zyOWJnI3K1ZOMcAA7i*hGafF?C;eAN5T686*IWAN>rj?;BZgDT-R=?@3?Nf(cM!v3J zqMa&{?i4zy(ZtZYn_7irMi@4}S~1!4Z@6Lh)q`{M&I!+=^^#i(j-^_iAw~avz25%} zIVVP~n-ddjAYW1591lkNprbi^4421)%T&r{j)XVAG#++=3tOxem!ad}>N^16Ul)PP zC@(Lvc2Jj`z*&xL0()Y4(%r1#6;g7Re4pdeyvmOh_LMuxzJ z0H86Z%ZjOo65;eekR)hbZC`b##VHYyr(3BTex(w-vJ12pv$>z#v%R^*=YkHa#!lHZW{2>J zT|4!z?a=;nL`&K-nm$>!5x6pkh{(41lXJ-;qx!1n$X8R#IPXrMp4NG%C1jmhSGZQO z*F0|h%pu|eSGGoa_2Z_VG&%VdUXhtJN8~Y)Ji318rt9Z(9u``q^XP9D3Hq&>b3SU^ zc&MBx6?*N$>d+_F+wO=zh1dJV;W%I|NGe)Ft?RKK?xfy7-Zt4`?k=&PMDX;*ao7@|%-EZH<#ARG<=9|{U z@Xn!-lZpnEaowMvu{Z`zx#JbTsQmU23J+^W40ktitjwo=)FTR0r{Iy_z@F{JEO~At)i};h@SXc5= z`EO%K`KKM1;8bqS?vYj~&m$@nd?W^*lj^(QKAk_>I>U5Dd4@bj`kXrxS!sA*}BT_!_i$*_Bw@Lr)NZT!EA1{?*1krFh z&f}+WW>Z1`m!b)dDP-MVwD&^GWxDv4VbU$^1c&OtQj6tQJ`SkRq^TdF(k<8wF2v_R z)*~AWo`WO1`{gG?ODx&pkZ9hS_Hpa~nOH+THJRNb)&I`zE(yP$i)$oGpF{N<=V)?X zUU(sj+;W%9|53LTZ$JI9a%h|6@NfW)h>;Aj%+W4vnvR|kBIQ?xsKrZ3f8Y)@tCJ3% z4>pP!jWz9>nJ+MRomFiNOB z-MYp~xOvyjFmJR_FXV%FvTyM75#}H%?fc;zYX6I~_l#<)?Yf0;q$*NG0i`3-1w^Dv z5m2NfRp~{g_YzvDQY?T7NbkJ`qy-376cFhx5K8Es1ZjbUkZ*H8Z#&-@_j#Xj{wahj z+1b~=)|zw8H5X6hwRH?j^+GRZPr;t;le|r@8a^=s{ zDww~ZaTjs@;9(c`8R_k*aipmKC)eGhphE?_dHMN^@Ys(S{{l=OdO$j8?v`@j>vMMh z)jTQu3_2v%FEA2&hYp2g8p<(3e>j*hoV#P}}>T)=#eZ-c;49qsIk7oHmft_r`8 zG8pl^pz2SXUh^&m5(+G`oXGSJsv|M%jl(oZh+w2%o@{ZYndK>9hx!jGilXz)m_Ldj zXW7o38Fnhq5bO-&LGxL!)?m7X#AKIKGxYq~UtxTgoX1_3jK3+5ciirsB!7|9gv^q; zWwajHbh?PoJ>1Hg`66%5RAySzVy+tDU8YxD6DC2Gv03>0(T~a}on76%zi!+VKFLP) zrCK1`r>0B3pm1J{mxSw9TRIr;oy=S0SyX%CQ{%%E$ND-Yx~@Y69>O*LcA(8Mq$*v! zhI6xm!EbOx@hAy|goZt4|_nS1>tgor|tT?Sma4MjhY2;NzdfmqTqgOf+ zQz;?@TV)-SSJJwh!!Ef`_~$py4jJd}<8Z$`xt(iF!0Axba-Am9K%8j0oQI-9|A8&~ z?_(hl$cSGbHG#b8bINRC>pW7yIhlB5&O^_E*EiYZm+H*o>wqNWG3V=?$aSrn;O1|j zsbqnquK)@?bB0*si5iJ7Xsf<cWkO@@h*i?PM){+}i=t7X*2jxcxi~Nx__SWT7T_t%2+VHzOP@NIuYESZWj#X@q2d9;)PwD zU(P91?qShwmIR;2vHooojpo}E{95jh3#1#t7ET0=^t#+Q>qpGvwkbrt^F8TW%QFd4 zkjOP}nvuQr;HDpkE{qV?wrc1DWNPk4ZHAKEuu?O5lSDxPa(qu&T6I3y277ycnpDQl zCnxXIN2dbsU%f8VFX!h9F^k#jK^iWQl9*!M-XB@S@SQp&;T+V<)NdEV=GGJv`0iml z%1f2%$ofXsQCGrA7H%5%vgAZ)Ai_IM4#Ps&ku zgM|*r1G@#AS9PckLVMZaksFMF?W5`OlRJn>>KoyUmgWbn^b1a+#GAS|7^N2ZYk}H36A++!h?6iqC-p zgR+ec;F1M&O4?tmG{ct-Sk?@X?L0E0+b*=Gqk860s?{Apda(9wGEn@sxbOEzrlK#1 zbJu>~lFUOF^7Ngg1=YQYu8Ns21AD=ktMa9M5V*!zJFQ8VDnu!fR}}?>D3{31_aRa* z@mYQNDm%|#(<_5{`A?ovMLJCz5HHI_wkTBXmreHh1T?!+ndX@YJ{t}qa2;ZH1|K$A z8Z&!02%h3cKFrDCuGjTec3D>C;(<;@X4qQe!&40rdETGwBF<3HJYlf@`5&dm@4Lb` znI?4O(i>bR`;77?*Gzu;{@DCAm20xb>++XTg|}0V+5Y`nMNoBn_tT0uj-x;*)ja&SoX+Az8D=_ODAJ35< z`7|35vpH0XU$=k`d7W5)q_T8NNOqDJH#`v2*pM`tR&QqNIcj(HHf?h~@(V~kd==4v zVwt>#2v8XDQp1%!G0QT`HMMlAX>~4JZqz#hr=dlYH;1Qdpu*!;z#J!lmrH7nO7ROv zMpDv0m^5Lpn^Y6OU!sq8ttPK}=WHCa*gN6Cp6ccMk&3C}xHE4>a}raqo@$B>QdZ36 z0caJg4b0Du3+gj0jU9_}v+$A3l-q+;d8c+TM`61E^wVnoDuIyGKAMMCeYcsVDs9+8 z{U3m+O+5le$0jAr0LNjuz-m28bnwV`q#qmBd^^3g0rW}oq|SSn>*qo zFY|)bOuNjx7ft?H;vSq-1^fEvvdi$uNSJt-qWxvIlu673%=~Fphl|3%GP7rlgol{* z#`&M513txZk?nADT5nJA5w#Vz+Sd38cf(n>t-~=F3&alqIoey9$7{v=oG!9`IXV%X zgqm*}b~xl_``fF9ICUCFq_&_^Z-AY-ZP0-U7&(r_vePQgvl%aj>79)kM|zh@FjfAx zR9S)ir`*Z*?z7CRYizl1z2w4Ozlw2-*X=b{@RIS_aYGXT2-HZk4{maA zZcEvW5JlxF!i|AbXktf?;5s>6akQRs{kW@MGY$3GO#)q$6DH#-qcEokC2KwwQ&%vq zFc7e7f3u>^d>h`r?SuFo?A+Mz4osnZeAs5W=}Cp#Ir(P5=h3`T`J~ksZQ+TcCsWUk zcl@R%71uW`U6V=#zJBX6Hh*B%_mcT&^g|yo$KX$8g)n+B(+;T$v?EPI@!iQK+Jt+7 z7}g|JO{-D}?oxe=a_)tTt`Sgusq!@Kq&wK;m&c!#Xh_%1zIk8xqQBPNI z9jnQ@0=a-By6<<%mP zsO-bKBVJm; zDO(kUQ^zA*4VkZ?C%~ap#4z=Rg)rB>l#^jC*EBL))$6D?ka*MGyKn`n9)IH@Ukr1b z@DY{*G1DP`e=V+pqs>VFb=EXWEH%MXX3>!;>ZPuHAJYw+Ym)?mN z-^B18P%HpCVo+d_39lm)mI7v&;)ZkS$}(caYe~7(5Zy9Yi%3_w%(@|bxx`3714n@Ce7x` zA1}fb&^~iJeb^f_K7}jT#Imo!M>yMqi@B$b3V=s#%^)oFRnfJgs)X4RGUV~&Kh#^z zq191mM<#*wR`NPet)W>s*3x0&msRwd;-~9!&5q?&>5`wL4^|HhHcx19+Y-Vfm;8f& zmA|r%m~ie6yP_}L381*uq>vPgOjG@ROw)(d`>=i-Q!1 zf5+f9;Wc|2@Jf{rZnNTcqcy+j&9%4CcTy0Z+rm$28F4iJHh9)?i- z01JN4kVB}RK8T_;-j1Ndeh%Xeb!7`4rERast*#bNt+w`*8}=UiMsdsN_~LxuvUel* zf)Fb!LD=*D(`Vf#N2Cu{AaLm)!ws6`<98yKIX?38f1dC27^_Nzs;X061@O z^!@vB>TD(3Xya`d#Z|z_14Ss0WNJk{Had^7yBGz+{I{rsJ9I-xwikDh7ZIu%P>v)cXq6mOkMPj##CVNY6IOGF> zz76rd7#Xz7@so$(-23HWt}cSLfvK1azyBNX{%@g5XgnZYVy9mCyYgK zoW_ast3qYi+w9}HkCH7%$;c1|!35Hl1}3zhe%D#$Rmz>hytQ*0Ilf_e^HE;st#JQ~ zCCz!B2@eVh6e3C+&?5w}*z&eI5nC8f-7@{zre0JlvAMZUietSW$~=HD?DTC6IrlI^ zfKbep{=?^2ZOO>4cf;tv??tT2!-_nL%xVt^#F zFDlk_PM|RWTt@e_$a!m7zL&Oi7-ABfyE0kcorp{mN*4T@Tv8#wb=8IZ+At~QR5Osn zM2mmgDjse>HL1VS5#l~A6u%2KDx2bPn!2C1cHxZiH-dkt*%-E@CAeMRuUy33{rnz6 zH+shUFL)bZ-n0(^<(fh#163}`%94{oe4MVcm5K5gHuwEP&fRU}nl}K?@WAj0Zb{!0 z6u9gS&}$`BlFtmxLuOCRAG$6F>H%PWJ=^lv=V-)CaG@M?Pv3# ztR3Inj*m$W@V$3++41n^Yh42rcCh3Mh2%5Jul@qrux&gf+&A}RzSRnoPsI%M{yCsw zlUFXL$jyPmnr%vCK=xLD!aT9fayw(cbU;;{=*aYzN3@u57h=R$CVkkFidlz6_BoO) zONlknYNNB^?=8*ARhw2SK4U{I09a8~W>n+m0P#oj>ssRDd#lhP<}KG2 zu~m%8gGkziM5ERzoEl*G2GTaHFtaFsY&Zl{!y)i;#W`?nGwb$7OJHfyA+yln##Ed9 zUdu3|l&qzV-OqyxXWD!Q&`19yo8yqURKpJzC?kOut;_xi5bDoD56C89Dx2Jkotd^)wMiVHj9)<$CMbmX{X?}UbS;s17cjR&7 z>bXL*zI8;4K>eU)Nr7KFUs7D)FM$+)DpNQdrAwg(10c}MzXGJ7KP{aUr8|P4i3bPc+r7^2Sd1uW?XW+4sLqTll=#Ms*(NY)X&RRY+b#>`JEI@s|SO?$;5 zk)w*>sSjOD&zU7_35LmI3Ixvr%^Yzg$v43a^&xH>tz6tL;UdYG73r;fV;^c1>^58e zqVvsy7;)O>fz<{`3LcW1n?DO}L@On`W?xLs$ zDC+ImnV_kAEwv-(*C&h#D;|P4%aqHy$BUKX4+Og`NXX_s=ArxMbPe%5Dl-5mUSAfm zp-#i-slC8-w=d22Y?0e`3Q%Rd83^eKOn^0GwrD%?O2aLE;WOUk8QHtT2JkQckVXCQ z093UeL4R$@U%C1e08QsiTSV+^U(T4dd#fXs?EzJ^bJ)g*InJyKJIX+qQ*&3d*GADG zbDQ%iG;m`oe@T&`Rw3D;07~#P-lSq^9o7A2G)T=|I9rDMi+OwRKTyT6t8pb(Mg9?e zEWn&c*D1`0krlNO!`B)SBzat6mW>{(#`XZo)sVd0rR0Ssz;W zYpP{PG+f^ue`QCS6;A3NLAnX#Rfrm+>2rYDS*zk~3mOW`m8GiTm z>6}K{`}1`qYSKwTYzbPV*Q85SW|sE}l=754VcbiH_{Tyos_qLs0{|XU(`T$h$LxHi zo4!?hfY}|sS9HYZ2H!}P%eFN5WH-lnUZH+ad!DQhUHlL~TY#NCl*q2#6T(~GXPy7+!1tI9AW#Ea zd2y3{-INBA5m;Ywgr0{i*an{+gK)Y!fT_d1>9)Rx7yl|;a-(@50jxv*#mu-I*)SB5 zs0Z>88Bh4HgCB;EeE9d#4;cGIi}7>~5fK!jC|MqP9DbM(6E{g%xH)u@1>)PNVavco zXf}Jkh0?H`g)oq8R}lW#o64M7rl8PMrfyoVQD87weptbzUg>MK8KZBmX~&X^))nwd z7@^i(9?n&MzK4o6*ld3|bpDU>xaUm(r+5=J?X^nrga2|LJ2u_jb*}gYdxLKmG&cAuTBX)?2@TEffp$Y=JX?&%+l|O8uA2(_5SJL968cP6MxhrE}NWlRlSh z)@?OXhxa$h2$_E~Vi2}?Q=#KXul}F7zG$+ahDB!C3u1P@BeG>%{^!D>$0%YJa;=53 zxkz->AK<_c4a=Xc&OI!GoJm{Ncp-guV&(MJmbMTBp!oa zh@PckbUvZ+4mp?!81+)GC{+dO*S)p=JJ6GWL7>PvD@RoU-8m|*8j^Rm0*#iJ%8*_Y zfqhOhqJr<};PS>t(eY_kNA|b{x!1J!>#KIiP1oaQ6@HY^JhfLG!*x-(*kZDY^>+WL za&PTHo$82qLD{~0)9R?-LBobSO&kGLOoo?vn6VHh`^MkJz$G(6SojB5B%+f zgwlJbTMVoF8z_Kkv@vFT!TuO@40Qm_(d$cB zsdS-khvoRGC@aj}`COOi1!E=1UiyrClgp3uRI!lv&BHqpN;(;C4So{~H;)!*`!_U8 zF`=7tnC}2o_$f-pBx}dG-J~+{>@t&v;DMNcs|>6h={^8>jT72@+)Q=sX%68AYXzoF z6-osnyUaL7w4q2+1!s1Mj0HR3V`ad@EDPFnkzELF4 z?taDrx$M4i;$mp(Fj%MF{cc7=*P`fLIkETsvy24bELfA5ag$eP_8LM4o#sft%3odH z)D`zW@uRkZ)afRGkjVyZ-D#4S8%-XL8s+Y>32!`88x*T zS0Y>Lb(l2A{`z91I_y&ZicQ?G1H&%mjIUpIR|#{aO73v@KF0KV%&~~(@#n#Jp7FEo zTfq%F2+1sJ)(ZiQL;mQYw#7E%8Oawd{j_2{3PlaHvZ7=S_*_ zhwU}93nu`<18Q9yPP37ypt-i_BI`S|?~z>6uh!7N=5v^Y?Ip*_mI?vSDj6SG7W*fjRR}fix@t70V(! znOz+qzu-ITQakxLD33;IvtjfsmLXf20&p6Q1WIeXfS+J3(Mk}_T4UZM+7}H4Jb}8oAW2(%EK1=|f$<%|-HPaTW46%Il_7_rEiToN8q8ndzm&SM zTVuuFVDY7vU0;6!bH@!aliH``!^embClz+}&8f16y%OBgf23%$Q#g>+Ea|nlZ7BB< zP~EU#G20~rlIr|F0~=6c&x=D}GCK{q zm}X8q4B^H$8XeE0na#OCLrZ!Y;WkCLZ*8_r49nm(M>?{OybP+j@Ut&4d7Rs&0Hrm| zkB6zD%U}a`$G}jMx9AsH2C1*vwG$1V4B>x9kCxPT#FQVk~^!n z|Bo#}97F)N(e8{G&f}s@xoi|I8of3LXH^|m@BSuBEb?0T3dKFYuri?o^>&=z4<>Rd zG7*zn6Qe5p1evB;@1xgdKoyY|33pgO#^qSH=C<*`#} znAXtZFfTJHXZTWF1veDvv;0GUhM8>LC6sZqdU^eFv+P(d4A zt1$l-2Zg=q%BPq3s|xKiX6t;ht?`8u+#)Czem=2yN`A;Nqni!MU&=HQFQ56)y#Saq z^=N(zGY9gCC`bdg36!kuqS|e7$#5&DVl7IThK;^v@zhr=m0t2^s7o!+hXp2kL;b8r zn#cXW8=flv05Ig1MXPtLdG+%pRcAi=Oph4nxd!#4LeSe^C#=Ysc}H5SBjKmck<`D^mCk2aF^!^1@Wi?XtEI`_0*`ai;B%Zzp0r@BE;4lQCF&=U2e9 z7$qiNSZ4i}O81$>@q@`qove#rCH)PqD*|VZk>+hYt-OS96cefhpH?WSx_d@g*WF-t zrrD|b{>#?yM)aV)by1q1t=RsLm&2)K1@i+#A-R}?OKJgi$fPtmOoi{EKz}&Q%eF(j z{Z~X(lKYQ{I3J&(bSEVSK>=hHxNAO_&l^hq&Ug;~Vk1PQmuXY%-du;=UD@bkbRSUT zMnp%LK<)VgVw)T`O>geXZJ%u?7X{7G(Un$T^sY2g`I?^H`Te`Q4m+W~c_=)Q6V z^A{FQaIrB(5Kzgzc+{zY=`K2X!UL`jDS4cVBXZc+)5>xCOmXaGK0Bf|J29+4mAg}z z(;!}MobYW0nGB%kFf0=!d7fY4pBwUGihvZ0;b3}ZfVneM=yG8j zuFS7lWI*6g!f#114*tQv4qq|}6HO@NVB0PXE7C6szNK$7N9Oq`iBUf>3Lpal;8}MH zRw35fRj(_f)Djoi>P=e~+&T!>-}m{Q8`PjSO)HCylt-o!^C8)?ynqO@esa1EKC0Lr zRaox{YSLG+W!E;9iQ^rVay+&{?|YTHs1&g?$&WiWgI*6>;y z_6;q-Tm~=&Z$2)lY2(%9J^)D6zxTm2@9dvHfW)X>m=dIU*J(KL?0B;Sb8&7N4I}9G zz(d&K%WW5f`5_v9I#|qGSe%>sR~#xqnAOBz^uF^hx>p90}20UX)xVcjq)me z*v)&?P5-kdh*xlT2B|UH8vh zMv21&TO;MuU`fN=AIN7(a1f`EO1w?35>$zNO>TF_E_~ zOTh5juWX@@t-82ZY6*{D1<9Jlk^lEg|9}4q^AiN#Vu4zSJWBB#m~hF8=}lAw&9N)T z{T1ePIkwS+a{RwPt6~uSDF!KsjPV)QlKcr*UTym4FYW^^?3>LV>pxg4~)|ukdCtGnvzFR0V zq6C8{g$9ZVw^Yyz%iyH=9YjrfRx+Tp^fmhZyyw6~8HcQDz0(fDg@!T2q69FRBjaChZHZ1S8QMN! z>`Te8>5Zemr==3x1VYQV9S+If;?>@b`M@!a^A&FlA3SH^ZSuvFach1K1@s5!49K;e z<_1ZZHn5yQA;Z6MmpSSwVsd5cpQ}p)`{Erxa6!@h3vfL@6-IBkU|P6*hyp$Ld*;}? zssYg`(#Hkk#_Xe#6+`3e1yD;3c9nPP54q#j>JX=!rd2Zb)7MW)vUU>S)sM#2^SOT#+l!W;QtHJz z(o31dStwfVoR}Z&92g#Tv^4bb>QIZ=Ct$>vw#MxqdF~p>_+Tqt%_d4;*ni(7vJl$L zmbN2uS!jvqZzBj#5}Lje`HX&{ulGF8>A@@nv+`+eC-q=rf;b|W#QYLAtalyH!%R8}g>wJAj zcC>Y1H2(*5$S}Ud)msL&RQ^R|j{(j|IQMGY)L34=3^%cZ-$Z2@m@@PFnvk&PS&b36ACa2Bw4VV0| zHhTTJA|bO$W3OHAsDEvSUKgt3xosduJa4#H_0T=q{0qem-f&dS-umcD$LRNxrHFIB zC*h~oMz16ZT}eP}a71E%Kd9hp3XlGjT1X0^h1Ti==BGNJoM{u3G(Y^Mx_A-M>qulg zE}|ehrtXSd^dvVry7*6A4Z0Kb0SinT8LlW8JQ#1N=&YQ8kZ&0rR^9R946C&4nJGUlU{blk$moteI3#4YrpN#zP1@J?nYi7lpla& z3wdr$`+{_SP@p*PE&cd5^}8m&!FJ~Q!&US0R7p|#-(N#*RALLOj|p2O_*%SUlg|+{ z;^T{Yz6AS|0PYVjZ?rET7>Cg^grm^28%4Wiw&SB3G@FT{ftE%7+J}vh^f;yzEiIiK zf(Cbhvqw70rGw*gGc3WmQ4Uir%-kC3sbnX6OpTJO`QE^OMDJogzU%A zH4YX7roy@)q!Dl_SPG%dlc;v3jobOHqQraw^(pzSaG`tV*pGCv0*s4BgB`i&{$9%5uN$ce(x0?5<$5jQZtV|Rg!qmA*LbM-j+<5>90gdA>vde<9VYq` zj=IPjT&&{^;O*HDlYv=EYDMbFwOU*Wf8TvO;N0K)G>~zV{RZj$uVvK&`iro*d?@?l z0>=p7kwiO@PuktbZ-OKFzKj`V!fq(~MD2~i<@vL|jPb^*{RWwh!?(Xae=?f95Br_T z^=#qR)%fKXkN2p%=cD&QKNpwIy~z<*_SX|g-byLuv@gB++mT-! z;rlMVsFCmv5oU)$-bgV))v>#34YygtPeV&Y9(!&MrSV844`#je`1CYzc&?ym7BV)7 z3uEDQN9%IQ8H%JP+4RO}VkW?ZZyQl>U%S$%oUH}X>8F`p<*#j_p*RUK*aKUKuaxUB z^K(j~#BFO+3y+HH{dVZ(w4dQU5kVC+A`pful-ybyH zuVXOkdc$~piRJUIyKY28$5Uvh$~Sx6e#60esGcGr&aL$&#+RS06cdr2%ytTP!}&Z%r%)5Y`NvFtmwbGc~z$TM=>o3n6I5h$E)7=^o}aUk1n>o zpo1g+BCW&^*Z3G`_+I4Sb~yb(udE$W0Q1Q>OdU3#TyeEDhXqHR>?vsKWIyK4c`VJ> z;AsJk>bO|Y7PVC=2`3HOT+A!*K3}~vNMS2wF();(N{vL%HLJ>k&;@TgsyL-+;Z^!s zi{%zgRu&&B4$>nFZ@ZDxu$KVcYA?!f{VKD1!cP7N+Pt{flPWDVB)Trj(}m@GZTHi}ZojdTXO;2;+^(C|rR(fQ z;nNM-H$7knr3aXbiyl7_i+YYX1E0U1n#gmzD|oL;Wl4ENjg|Rlm^OzhE51LVVUsV0 zKRMF4u~yESxtQvIfT;8TO)XP374H*rQDy#4qpQ;iPOAJ*~*ES<9?13R_;3q{YrCe@aS%X%#5dS%0d2jcC^X@G&i zg;RBp8V9|_8KsG*Xk!rHqQY}@vNL<$-qMa}?>y%-Dhy>1f*rOB;9W%v6dpT>!QU77 zvzcTa%-^x(>rNCu0LG|0YUYfr2)+3J&XHvmC=|&dS)*Ndrj_O?AnSTo*WfvM;zLc~ zmm2%KKhiyRPFUpt3mQ$k))(IqOvcAtLXZ_u)V$YCcov>aG#+F(EM-AFXAW(WOHBc~ zswQ`yQXlt30At&hzbLzx1P|@&;@>K!xvxge0!=N~S*7_6SXyL#_e$;wx=3_by?==S!GCi*gc>xqGdJGYN&wd49(RRRPK-$(wI9k#W=& zC}MbK%(hPhB&6CqSo*vs(SngKFATpiLQ!=M#XXInEJzS?FUozs&t7KBTtsYAAamf>O~00< zMWO9SI}eJqZ$$(f`Me}1*_tFrkBrjx)0{oZpj(qF4mesR1wXP$8Qp+jljcVUxpU(` zc+Wb=eW2Y~655P%Z*eKHF!7Vq-xurJ@Dz`?X9Y5$4AB14wqyJ}NR z?Z_RQ_RCDp!{#!R<1K0@R(0ZBPP(dG|M_F27wxXgJX_N*uD1iXAGy9(hz?p8q3xhz zmrK(Y94(Pn)I^k->nmHiGGOjKr$v@Mr}++Ja0%2E;C`?-TbC$I=b>=kWbn~q&_~fs zs?<_aJ@*IlFa#Sp1wp=UuN*GXVk(XwLZm%@MYmmw_~n{9Aech;iA^?Gj}q~sGdI{g zxf55kZ^pR2+MS$>3#EG(oAF5b>R6pVZpu=I-W$CT_?bs1i?xs}CQi`M@60G)L;bmo z=iDQq=Mub8r>)f?yh2B+t+LmpJ77Lu0f(bm0paKhyGPCwuZ5DtQnGYoGXSu_^6vPy z;HK;+zy*RPEzwDPaqa%Dta~a@4!E=G2_33RN|k97efGQESdY@n!;PgA8t+Ki^N<|W zd%I+V>!86A-D??ZtHpg$GFkCevY)tusn-jyS`gC&`xDi*q|U;Cgob}Tc7Of z1%q3gOx&+_@n3;P&t`H22XRZt+pc!;e12;QF7Ekt&o*w^CST>My;Y7d^|AxkcnI%6 zokw>7Ntk;eQvM0*rmf3#ZZ6nHc&Fs&Z~Mvg*mXXkb=NAEDKEZ1GT-6j>*ZRUxUzuc zgPxw-mB;OJWScTDT%*KGsSFUI!Zfiz1>DS!?};^?2r1!8B*K9FWPX?3L+(6Zk5kq3h05+QAlj@(ADXmHc~~q%m7*oICZ5%O>Zt-`Ob@N<$lv{5 z4?X*Hen#2wYvbXokh-*SQc&>ussoe!wo}{NM=o=rG9dQcoLMe1%%j>C6E{kRzLf*% zD5beJV`Hapqp1WSTLhg-G7{D+Oq%cG8$Gj>eVws8Q_V%+8W;0nF5Z04+y5O(B~P1U zj&$Cg4$&4U$tvfWq*th2mf871PigJ@Yer$q7R?MvH=~gK*6PgKT3ukq4(r8V9y-#b zkXLnIYu^r*vkd8t0RvDs0XO)G!e7SyOG3J*zQ@~!h&m8WmNfXQ=f+S~=KMj00+x(E zZDvx$;}X%cUm|*T+(@}Ja8#;F_UD;rEbW>#4*No1)Sfcl;n6PvE@GPiAeTq z(rZ_I!bO5KM$6}YnYn2{DlyiGKcRJbF@*S*|Fn4Rg0$fQOZbk9`sVd-r-98kx9i=n ziEKfW4~pY88b01DNZ+=Msa_gsBkY31b8+lzommnd*G(2Pa`K-AN3+QX15@qliep?T z>fT%{joNGhi!fM|~vATskrYDPJv2iP~gNj+x~JvmB@~o(6V- zPHrF|s1E(u>jn}!cg=+}f5G=)YUIPnlBcE+-E40U`)5wr|R zSgBl#X0y&C(1#U*t@oMqHjuGX>d&7Wv);y6crtY`?tkhLmMu7ZRv5p};2m)+DHc2; z+!m`~tfag~_uIPJllH=YhMmM(Gt0!VKG7CUR8SuSHTZQGA$q(Hm~D7Y=9uJC_3r6h zV8Vumlq&8<9wflRU0=W3-)htQnJng}wAVD~@{Nr*SWbh|A%X46Sg%gDeZq?MT5$%q zKG}A;iY&!_)E$V*m+WgTuSlpE4}h~oMJ>s8k74a?JHUD*i7Lx%j~0n{$sIyGU!mqh z3Vo%cpEKwCQZ(M+;rBRV>*@Sw7b-UesV`TGJY^z0!o&0$9tO@5K<7d5(+ z{G2h7ln>u^UVx(F&`W!Hr!9nWTLd*dfaI5HqDanFlz65moSO_{rZc|2*)HbRiJMS|NB7U=<(Td zU3_w1Q;n7ev3Xy$pvSHscTF$ZdkZ;)Ao+4BVu|^RB7?$RFWny#Ke;9_b<*QvH1976GfUOnJX$CFC}R?7JH(?BckI*s|Ag=TIE{mUpSeY1e7j} zji^@P-BYS{A@z>c@e30XR3e)+O&8tsj9ppHG2Zt>BPrU9Vn4*_IZZGLVK=l$W0Wmx za+#4O!|AGk>|hGNyzRfHmhl22{t`zCpJ%nqu1v5()FIsmZ?2FJYgQWiRb1(zP zj~d`MZyHp!j~9FUzI?2dKrloXq+=yldODz6?LWk5@?Cw?K+s_0;lTFg; zJF|Q~M#5i4FqJn)axDaf4qCii;fcGGo5PwtL1VWidb4=P-@GD#yFtQkG$Xb>r{jm; z2|x`5_Uy7d{BF#`V(#?JjU*%1x-zaWZP!X3Dz~5er#q9@;+u!Wx5!Q z_HxeTe^F1HCFNtHAXdY0dv-09IgvZu+t35 z%;mbJ2v5}di*Zp`kg0g0rel)Ucr4z(-;L5YM4j>^E~Y&+9BxZQqfkfUSa{}o^sbB8&9Sd2@KOa`vx znNE1DTko08=LG}^1w@TY{FtEd`M}Lfh<~`{Rp%rHQyI1h3FE2sJ2PV=7-|dMj=s$T znZQim$ZPkc$5bUh$x*&d9oA&N2{4TGgG@QWv;JAS5=uebEzbgPoXQV`yVem)WHv3$ z#Rk3`X&wCmraprUrg+3u-}vn7lk@$SV8Cnqd~zf^Iz6qsy;tt6yjbxpOOBCc0*gB+$OX~$MWsDSvS`^bGLNd0 zpJbdQSDBCfU0htE9%PxXntM~$^5b(=H(GCYIo~hO;)bRm6 z5)!gXX43Z4BtqfLBeN;XeAWUV1C{P>MoG~t)d#3=zU*2xfO(8d2u%-t6?Zp(5}46| zdghL1orYG7o_lSGjD>Qp)Vt4aU%M))8KcNar=23v&_$W1O0`!+YW?hqYqr!)Z)JCC zW1orM?~1SsYoq&f>yDh6S<-f4qVgQU3w7wvo~jBZKaY0%gDu}bm-X2}FCJ_OD}#2{ zC0@m&rXqrT!9Q)UQU7v(8c(;j_UsNr%M%qUQSmF3Bjtwts_YY$l`H#1VfTADNPfO8 z(dP==dOcF}$0S$s$$LCU%tq(3>HwE-Pj7>M$uR$)J(cKMxjVLI?Z-_=DarLVYbK6G zEZK*GC1C0~YMB4~Se6ico4G7ShIuuo()>Q$$T6SA@*~4g^+y|{`>)pzzP+7m^`E76 zth1F;0VnoQFTeIa>lc^tJR+etU?$~|P_1zi>v{9rH`ruXO0oIPVez%X-nV2i*@M~( za}WkCW<7vw`8+@oR23hhDwN(s%J6bIX!UdUEuH2-uA0=F%Qi6`S)}U@>zz(+GZ=Ng zC*Z}mx9!eu#QTN~TXCn_F~ksjr-Fn&6LjD2R2T%Xzc6{EfP+Q8(_);q?{+f{?ab(% z>7>$Zz%c+zvVowZh`qQ*_fnA4gSv%D1#+KPKg}=DWl|rRR*oS0EP=4fgbI zW{U10VH>UR-w&qtllZR?kYpq&i)nD)5)0%DHq^}hOIN~MvA4y3zKs7&)`e~T{)`JW z%knaOrKF+b@tw=#v7`LkSp`$ZI@JsNtLtRz6j!Qeu^$Jc8>+GgxHFcOz(88e;TlD8 z$2OH%<#(#77E_scLEmrj?kta?VbP>FVAlijLpNHTY_V3d)D6MyZxGWMWs`SH5qSP= zIxnx#(|}n8*fE-WKtyMIW23nN{S5_FX7V6+3&UMM#Y?afXEnWYZukEfFf?qwSo7=v zJY5A18l3SONDO>49GWRRE5YVmb0mSR(&aW_Sllz-w#XyqZQ1;`n{0P9+${vIQrXzpJ=}`C?b0fm2+T=}>U$p#N{udM!VaD75-)+o&`{Il% zKR3`P=WY^*?=1uv%O;-Iirmw-`co~=p4q%KLUp4SovC<3j1l`2S5`lJBEB|l?z2c8 zH`UA6za#@fNF~V`I$tuYYrkpvS{+N~S_$%=rX?Ocn-((_54hu)lYO&WHIQztualTx z@mEHJziPp*`DO(sO`#~~RNmaHk^YtRm}gD>X7shUA5DjWgR$Rwl$z^`h%RZWhPyP6CJ?};I<|@h3>G-?&%)s(j-sVGk5OIDA-A* zguKjrWCqa@K1!qB6XWy$QTEnxRd!vsu#|vEcb5v1BHay&QX-v#baywnK}r-PHrCh&wp&(8?U{tYt1$1m}87tb9@jN&h8B&33Q|_96Roa z!Py$6ak~*JhPE{%FIi(b{wLw|Wem07o(Rqy)y9{Lr(#+trJdm$`Q$p(X#v|DvmEZ% zj)P%_sulz;_PR@5d&QQToG+4Rd7t|JR)62VImL?yFM?91wsU$2;mpy$98T!njD+zw z-lR3)tmE0lV-TwS!o?Bg4q>K#5rAgDDCUYz_sKldX({cLlna;4BC_(ET^T1tH>UUn zN~Stf#}Ye_tFy^*G;i+AI@2Tne0H*kd*yo(8`P55vl(bBJ>tyqURg*7TFKSk(@tBN z*9hT5YX=vHxXdV(PeOUo5tk>T?Ah9S0n*SeI=jiz`fa?=(x#FkqjH;(Ldk}OMJbPn zFh2sTPVAz4Z!PFET>Mxc-o!6JRrSZ6;l*t^^zeB_2(NAbh%QJ+U10kU5qpe*kn@Z2 zWhX>#R%(p8EH3=kKc|(^+ffHM1q9XNJK;_Gown&$#A5nwfS4y%3xlq+vHKDg+qIvc z7$MKS@)020nGU^jKP64=bnP)h=gk$;FGX&fn?xMewLB9Msil$r;=U(hpcK@gS7Su* zbD8;(CI8uz-?j)vFkn|T(Xv^=OlprU8s7V3T>$5x%29f-?{wu)BFqIBUKQYNsLV$k z1IAjU0v>+TF19+2f{&~Q)HHu}*fhC(&EmopdAiN;3$4z(vcj!3oOgG_c77vFxUSy1xb(<)_IqKHz`aWtH!YseZ3&zQVIQ zim7^>iV*dq#x9Qw!s3Nc&RC;7YA)w*Z?1{GzNaOoVUH4G+p){uDCoakR#cocIxxUi zyZ%C#eE=1Nr@bOg0hR(%*u`D1wEUJetXX$J_Be|oDzIcFpDTbG@jP@W*g|N5BAmN4 zR&v0lKiv~+ID&Faw=j%#od&SUvncWUmV0a1{`_!vEGL-Z(3PGN?6mduK6bR4f8V(1 zcYJKEQD+Hn?JjbV5vCPR_E$6Q{~nWke^Fyu`B_z284pA%)r$$SS;CHngO6q}?aSOJ zC>X%>Jv*%sc{;g-6q)FJlf|=V&)dEX28u^BC~r<4E}sD7uv}F+W9rfr_fFxNvHTU? zJ8YZv@WhkD`#Ug0_k=o(h$}QCWp}1Bf8s(Y!};CM4En9pIUJBc9>@Wn!&$%AVTLlc z;-FxrD+@ycZ-dih(da#8rEST@d5m|_hkGQtP!G>7!_@e|A0!|y>Cj`_4&6(%fyRkB zp=DLTOkl+b=FnPt5fW?$5AQgvX+&r8wi@YY~Z;rUH}JWYiquan;% zSDv=!ojGB5>?j8zz7orPjJ0qUiNEuQeYdz=mBr6^2Pa6;N0<&xQhbOg?e5+Q>dCb@ z4zzHHFf1o%>n`$u$ESq|R2ieFbAI<`l&0&GR{Ytn47nXd*tpQ@3E+x6TSWJ> zDhp_j{&%CVC{cFN#*CoqcmBy}u(&@8)uI@$=bAvCPNu+Ek@`yskQxp~b_T;DVJ1_s zX%_U(k}6317bd3CainH;3CY|KFR~j1`E8xz*{-D@{1pz#S!QiMFc*{6_K7L++hSLa zbXnNL4>2IlJ1wz8S6I^31})_R?!(_eUu4>S=ojV8SABI?+oCZKt3B_k>=dzA0p>#P zL3=;xE6)JvXX;zR%eM8onQh76V8ax)R@1xQJl1NeeX0zan_&Ly$dZdZZ-lc7DaGpy zd2ui8nXPw3j703ctqBxXYgpTw+QNONHhb?;)-6J5BVOr-BANS`SE~O5p=mJU3a-V)d%>?&9k_ok?#m>0eE)@^!=vI zyfM))4czh+%LPQs`kRYbT@WJq2N+p8_e`uxPiq`+-1!=2wP~s4yie$xKJ~3sG_eu) z|DncqsO68TViEds#v@+cJ8WgO)Q3%^Ti4+Bq4AWr3xG(LNPxYib8SGY|OfmX^d zG_3AVcRF8fugX6^gSw!|Qfx?#@30)kH0crvu#4`5m-R!V4<&YqiDP$#rZw*m*hBWw zzE5vlP>oTW4znlQENHysVQmx*h;y5k0&}AO@7o&gfqfw|iG{)~%59bXb|kCJ3g%{( zlTah9Xf>@~YGjM$Pt`Xdd@q*B=bR<#|Cph<%RT6IORqY+=~X4W$#1)jqJo4P^+E0I zeq;{2HWXTNISOHn6fmk0_s(T;A{}|GKr!+AbNRh*QV&4jLj6MnxZZQws)r^mjpDc6}xm>)AUDSD9gE&VtH;Qlfr-84S1q&oXKB}ww zc!yRaN1(Jkf}^W>uybpl(8ubhfp(^nJoGaCny%iV!j zenl8o6Gnu3{I)~q$1#J+q?LoU&%Y`heST{JMPRj<Lebj1veiAv4e@OQ}F{KTN(BcT!H?zS;zvDNl?x@-HzE-o_>SFi)s3wNbI z8i*zCz6<2eUy&`lHx0SG|u9YZ>ixPIx;hLkS6y;VDY#l7nlu@J^!$#*t7 zpnJT}ZhWe-?CSrWbMA)R>hh*Qybk8pv$^|#+?czd)(BeC&KLjF^B%x5_19-gV1jH} z50@3IT*BnXQWZ7z z+E?tSn={fOHMVR99Zx^z8_AjtXP~x!#Ya>8>s~C>OmPqa*SzONX!j|ssF)wup>>zEXdXqjQAng#4mP%a5rohDT2Se1 zRz9hI&{lBUC=2uJi;=XYcyT8)XLGHtL@taztL^lWNz|Hk2JB;==SFM4GBn|2pgdo2 z0+0tGtbNrv8A9>7X%c$TPg0g$zrBHyto-#Mk&fv>=>SPImxBN_SKy{*#ZCZ8VntlF7 zuSXxu{x9Cr_JWZ`%zTkhm6wp~QB+6x#OD+*~mdt>k|S zE1a1oICgg45_PL>(1*D4Bdgb%V_l0fP1XG|{+J`OaExS_j*ey5;yKx0Pio3TBvv&9 z=uRgw*3o*0>9EJhe+7V!Q;mrJHn*bbq526d=7!yg{L&L*{KfQfp(EH`K9O04r_3Y(FOZp#`bhFUhOPEFpOx9C%u?>v!u2CI_=E9Q);|T!g($uB944AI5v5T!~&F8Dj`mnu7-|O#xXX| zGX;$7o@$+qFruZEadQAr?EJR&Eb>DiSL*fs#^aD~Y1GiahBJ>q*{Yww_RhZ1&a-Ya zCChHSI5*)`Fn4~Bw_|l0K$*PD7PIO|uvr}^ueB@NfRdIzO=tQ~Ef;vIx8B0?Tb(bE zdKZHY9`m5w4kXozAV9(=#sVY;>&^NeUzr}-F=#v!RxZ}+pVj){{^=A-`>VO{=DNeG zel@iJVb|xgk843-Lwmg84&$;O2@_j`VJ`C1U8`N7y8r9+|Nj}sAQku@FHlI~Q)xEt zHnRgqwX1c`PtLPD!bqnoM&}#p`tA>hJ?p1_1=8wNE=)xEA<0QdoxJYL`nkB0b%0Va{-nt#4eNv_LTZI z%V33pbB@$v#))a%M-8Shb9UvMjQRehs07p++IsOaLle}N!=3U+Td%gi35gLkv@~Kp z4bM~Z%4lu)fVo`8PN2$|5icSXt1*Q1E8)$+|2gd z#pFg5S&bO5;q@Jka8{5Iwz7E~FD%J?e(P|2r*!4AVzq050e87#RDI%^W})i0r*7#{ z7IN9zIk0&vG!y-1LpRad)4QG8?K7Y2D)ty@IcfW#!}Fv5Wa=VhB9z`X7SzMZuZ5MXKTUbEBgd@4amdhfa_Aor* z4Y?i8kb7Hy%g1A06ix|R<$PX8Wpa=cGPRqH@Q2i zBhnY7XTSV(A}m9Nu6j$N%(xNun5eVft!%;^14lNQGor$BUKYRmXPTR%xt;BmC7R2& z80Yhgn-mqp={m{6TYExe9p~IwaY8)(bB^UR4+fB@F$x{%gCOr@q zxvWiiobPDRiC%}}Fk~No@`q2R?7u>_7WNSr6fT~wFnj+%-8)}+3k`dpgpp%y0^qAk;lzT0NA(4T~J*h0RCo=t?0JvO;Vv>WNM{RHO z)T&=cGhYkI-mgKam;>{b+rLI{?o^jL95e}?N_WQ;FLCid7tLV%)Pl&oU^Vs|$#HKs zZoEKUyf3~orNp2^p)a15yv*-o8ch{>KUqzmBen3|x1kD4&FNpZw0%jOKV+hx+|Y(; zPvOvkO6~#&u;VX|FvF&4!3Nk_dx`Bh9_348#{UybyfVq_O~_YUSoB5Zzk$*8*xHCB z#RMY7G9qI5rH&tGLwBX;871d`*Fv{yYMt`d#IlQ zPV((=0!wJ)?}feg#JI1YfhaUd~>PR%26Nk+v1aS=#E zvc_=`|2CESP8WuRH5o=ZCLHw2FZr?v$ak=^mybm6x9E)gzY;*6g@H z&lRnouF=V_LT(%aM!3xtKoCC*v?mrE7O5 zlAQZ^fIjlL}eovFP1}6?!ql1{a#$qFsV`FgGhb7nVbMBiN;>Gf&|>X5{J}PF?Mc zvmH!7jF>*(f~Zk|Tj&(?KreV=Av9Zvte$upt^O@(fR0cyj3DqVr=jIm1F0A*#TOO6 zZ4%g+C|m3C6-xXuKD|9Z+}~KxD#XpxIcD>?FX+q5yLJ7lmNPpwp z8Jp?0y!}VX82`uH8kp7krYH@DJlH8kJIL<+nlS6Ie@3jTVT zUTaOtIf0Pe**_h4v|HrrpF#>Xel@^$_Jpwa-P^IXc!N&4%`mvNFj`0i*+h#}ov2=$ zo_BpiiO6If_4;DEw8l4dY1iJ%r<)@tp9CY8QxV)1{4Ng5M%c%_dXa+)(eh6Z7F!{R zbY?+q<`W9m?{YLKHo9Qd7b8oCWoCU+_0-u4zI6`gdxGU$kBb&Lqm80$kIP2SpQhtk2WHaZO|Jw32zXQWxQ3Je$q*-)M-3?mV`C=k0_TO)oO`Wb z9%gv)c%N@^iyb%bXD4(U-iK<;hm#8%hN2NT=mG-s&Gl1hr5x>iR@4E*S|9FT3$jc^ z#*^QS2*ZkwuZHQ8J@ip@sPKrnJc#;Y*+RObSY+9a`v;xvRt~VuhJNGYGiZI23McwB z3%j{I{?lm8y4wXSHz%xdTYVDkQWCx;jN20{QLoLN_@bZ5^tB@=F|L6Ax+y@L@ynw z<;79>tn!r6#W^~NC~ff%BSKhBhma3 zrXBHUWiI9^D8z&$3=``WW5cBI20|qX{i2z6FGkld zTrO64ndfc8gjgb5##3k1lWF#2R+W@OWHv+Z^0-VO1kKAD5~y>}HXhqosfx#H0&-LI zjCmmy%!j+LNfxia7^{%_nfy??5KBupnU9`*D?nSf2l@_{}cUFQpe` zSr3eCrnqp3$#{_v&tCtX6*W1pTMHJG|J&8C`}`;S!9R>m0K;Fyq61$!_e97NRuQsC z|LFz4!*YBrD1o8dr4+D2K-3Zi&8S=5j!7RX0PPvVc( zWHFvMps_UV-a_MqO(L0wy~c8c@EJddL=YMur$X=b1PK7ecTJ&=-=LS;e-&-=w#K8p z0h2(rCO!rWueHz{NdBbW2ID**l$*i20F9?Y{)_ECEKt(34KKCH5xK5zIqr&}DN>`Y z4I%61UYZiT6hnz{o38j+)a$BK^E!Q291<}k9}=_8`FNiCYhN@wX)~&TN^jHU7Z>AQ zJEy+56sY#_@oJxBA=KMs3AYA+qvHo?nXJd(t5|G^{KlO_TOiPsnQYDEmOgBn|6scEX+By%l zTyD}TSMpY|6CU1k8RbnMw>p^;p!g} z)aFn7m}=^{(A^&MWTb10@ONEL&eE5qI}ivE)#oByH6mO4J$n~_H+^~$>E z`NnFk!=RAzNYM2vip%;ADwoJ7OU!PR0(2Wnc^`AXY4K}vnvKTZO_v3Om+u3g5TuDq zV~i|GhMb-PDJ^!ls1H$XX))__Mg7pL`~2d2lm@F?J}^0uTe(mp`b8*Zb|6C$S&cQU zCKGYS(D9mtzS;GQ!{#VsbmdFrgYs!klb)Y_c+QO--)17+ehm|&d=1ZZ;ML$Iaa<@$;wI zR>p8GH}C%#47Eey9E2CDBcEO#8;8DIFGe;Qski08eF#?4MndUWqAz)l7*o_Tl06XRfA&Lfq?)01jFYGKF}*0RL{Ji95KcP1sJg>y z9l4f|=8IwRg$m_?jb2-*s4s^2HQx8w*Ws9Nk$*Kj7T(LB!|U(PFjm6enyTT|s-+XPU%DC(ww zU#}Ef5UEL)H|CMMcZuY>il;lN$qlNcXFGTKoyVjCs=kDj!|I{SuPRx!8`AD)aLy?; z;4FQiOx-K8m`Oj;BWXK~yYc?$#N}r@Hin-}N`!L~og3q~e#!7M3h$#@>tk>-gjLzT ztM%%PpuG5rTgwq-@7%9j?<8JqixmU`&TD;phvn>WhuXP0O7TBVCc{quYbr=8GIlR4pup3DvdE+eHJ| zor^bt#~c=uDAT_d`cuuXCN`E2r{GXi15&&|-h#=$fiH`V;SP7mz|BFMz*2*9O#F~_!+ z;XFvvbzW+r)Zru6i4Fp@1JNs^j&sCH?SMNVb9ajLV&oII5<{ta3-r@ge&0WXPfNIf zPlq3fi#+;!^bhcqnx6Z<0$t1kMV2QIV4;`@_)FA2Yli9|tuiF1>BENCdDBFS2m{zd zdUXEy1Aehl|GNFf76<)Yw@+x9Z~s2g{0pI6eE33(Z*{i_z!h48FXTiTJ@Eohv~t2JjN?6u3pyO& zFS?^YH4XZQ_vgR9O(X!sx;>PUF}rlJg}xWyXYShjK{w!raOp|!3^Z2p4;riZUs0_8 z8(jML#IA*~hlDh&p2iaBp{Y=S1OZv}s6#R+A%I3l&~C1)o0OHfG@j zj{+7vSal3I4%QwTfXr@VnTBH>h=E_7wa7)jKz(>r{wI|DH)|8X`yj{Q)z1Z&<~v9Q zE`2bCsKF38FnCzjC3)5;m4-rE%S}a`2EYN<2LHh(dVz_@d7AEm3I!O`0+f|M_?c zC_sS(6xZRlLsll{1-@ZV{N~t`r^~bQ$wKM1&ijf>ZK$nPFJ9hRzBt%#ydRFvpLi*G zlwo~rx#jMDxP(N`ZyV2|RV87&+>t7VLLe&reSkrEunB>LLRY|M zSm1nkyv!d{JRZZ}ZU{_jyx@K+^YcOH??Q?q5q^SUNv?5YSru(l4auLd8vKThyV>jy zsks9-h6>qEvaOlSdn(iI)>J^X907n~3D@Hl2X1JF65)Baw2UU|(lS z0qqrq>ht*ru#~1Z@V^*ra3o&}--=yhl4XHexK(&1egE?1`0nOpEf1Qy=L{8Crs#IYh6P&K~sKorkGYTgkUUxvRh+C8MZhW3$3(LI!_XJ znBDkPFFCp^(s|f3zFWI7v6`O)pra^$Rj1C7;)A}KYrTU5R6KU0_gj+{e;8+1XA=KE zuMXL>vuzPDnwz7cC-}ccs{hff`Ogkp5PXO+f}YgO*dRP2fhDf>IsT$`Wply8=PtN_ zZd%Bp1UA`(ES2_mqOvM;-wEwPOV5#pTb=5Kq%={_TGzyb!HQ-EyE(tivb}-6>FDeF z;r5rH(Wt{ZzR7RHpW^~tCI z?w4UCU+V68Wp(HOQaKNAwBa;HN^|iktlb(*GMp?}3Q)$mG}>Mj{RyV^6;`oM34Hfc zY55C4;Sa^a33V5t+$YVT<6*iKrT($v{o6d1%!F20naPYe==cuCE_#wJwJwF^I|WF3 zrYf$rN=M}QTkF3!V~RUQSS`cLl$YGXP@nSmDHEkyhXY53$l!p|NPXdTQim zG4c+KInAV#Pa57PaDJVS`f0N9lQsmUhFsc0M8t>s#6uGa_Rd@TEu)w2y9c`2WZ5SS zfw?-@J9|dZp!D^$9`MjEC$O!Z6=b=U4D*c!b|A;B^xkt?dq(aC!=JR@{p4Un z-uRpp|r*xE$b|a0E++Dfzw})aU9_4ITRi?`zeylSQW&X9ymHj3u z3J_exfZ7( z`iG$BEy{BXS1}<+8JGaskN{4$gGGZ6!UYNI0qt<=B7|kVMiO}&digjSUVH^HMq`=@ zQf})ZV8r0Dz9;BMYkyV{NB_Wd#}6eQHFnHfD+wrxlpSk^vlO&Bpx3Uki?(B+b3Abc znfJwSA-?S%Kr9#(=08*Ta$@?@;7b{X>qXD=_Jv<0^XjFa9c-f4FF4G?7fFy$*jzGX z;hq0`1YU=WDyPT&+do3UyxSI88y>Nz9%r*if{kgp=u}gs zhG{38!#o+Ndm;Ik#8?NhT-GpApsOD_zqAUbF}r;u2{Pq09y3c@<2wVdJ(zP4g@8xK z^v`$?yY<22pEHI!F$D&Ez$Ai?7%@=|@{8q}OsvR&ZGooKVrm}pGHLiM@DoqjGEAn;5yq1BR#XTc(xY2ukZ-UxcT6=%M+p5|7`uo|EFcP<$EKfaz;x40fU!57$X-`!{y z(>?!+pVk(P?=QgXh(qAe+I+jRS?ZSfmF(r~)!xYVO^s03?LGF%M5ovZIAe2qE{ad& zjX?G{oq#1N+*2rbon+Up=Br0~j7&=5fron|xBTlbSBbTlIPxS?7k?yV=e5@Zw4t?~ z5y^vAr?tqJ2P#kPp(Seu2`xxux45i2T7t>HtQMzy=UXMC_^TXu>@-*YiP;)GG+i2Q z;0_<_uO!SGq{>#-`_$*tbS$tv+wUL6sM4?x2!JdC8Dj)Y?DAjOAFswY?2k&4in#xR z!3f9ICV{0!gVz-U(cm)A2^>!EkWE*TdH)$bafW-OMX9ZH67MpcLO8eGCxODR9EjBU zP`+_l-a(AK&vEJ4!Ywtq##=0cZW^GKlR@i0vUI)Dkod8(&`CMf(OzDXgrnlNWdq55 zP<|u;lF{gjJNFPudTa85}<8B=k?CS zzCOat#tuT;rnmf}Z*UpyDGwNg@z9Sh3>-zca#%FEx||R;x!gD3SjNm(YCkgUV$fgV zecVj42Ip6LMjUwO{E#jPLKu}%m?k{P)9iW;OE(VwrMp*i1LWI;kHu(xP>-!|h6L5VDJ+3xGE=K4dSFq@~0OGQiDt2Uxq?Vhd^{;eVC7;Y@+cwR_ha~MI z-F`rThnQP`<@qk|%4NX3ckAdr3!?M->j-9xyh$)@yPuTZ=qU;J@8m;|_F3+GohHFc zXY+USy%)`?_gM4Nw|DPzJIWr)-@nVisOTSxZ$lb35CL4M!O!lWvIBm-walhW>yx&I zysG>RYQ+UhS_K+S`1rwRgNAH%`{*s%+cGJGO#!?(xM>v6Os$E;$pG)o5`?*^!q zW#B-b-^iOFrD901{Q3Uk1xgUrM?W9q)jZ)~N!G5;G|B{8%V?Q>MmANZE6Y_4<{GI6 zp*wP0b+qFLdCma!??6(<1fs^|Mu}iN+Mxr{yBbd$riuz;zeK=?8V)En#+lVvEPJwO z$l)kV%4Io5LxIu;N|WqF8bwqIMJ&=qoq1LzzoYd&S(|uZmB2*3A>}jpRBm*gRVxc* zxy1TwX_7~b>qq(ydpDBI@KV!WGSAj!ezgjy52B~K*qoaaq@-hD?5zZvOe^1i0kMLD z>E7!lGesbyea0IbMrWZf#y z&~snmxy`0{mEqI83G&1)@XVzhgYf(9tq&wCZDR@?E?q@HMV;jK33UdaGR1chQUTsq3$0M<_emW}lF z9ZX@CF^q!psL6^BZ+*?g<|8<69p`mAGHunH1{LdPrV7Os(-M)<`uSmmSmJ!pd!qdx zQ7EK9z(B0Rq$*R)nLlnZ*y33L48k-wRoK`)O2RjLy5l?#4ubi}B~GxYTF~A1FwstL zAXUlQUl!B&janQ8h0JoUJWA9)RR3j; z?~tw)x@)%|^9&{Ta+kzqyku~yMu-X%eoML+B*|=}R~^u&RWP;VZbn76 z*`>ql?SU{&h59**_5lX@q-MU-%~oap-fbU8^!m){2xFuUvW^#XYBt;BCRrdqni}j_tV$%$^TNp2S|Ii`MvB1wQ^;%}~nM}GcizU1= z@*$`=awI4e*+5-4v*)ot69CQ0cOlh%egeRXu}sf+^w->#^0CnnCK(R3j=0Z={<_ue z=_ODVmB)s)M^@V#W}g-6KGCHLe}dvtkf@q25uA2BSx#IO2FRr&j!lB`BQ&ibD=yD@ zjFD?2BdMntrTz`#V#VI}0W=+zS0$v%a2!}C;9sM7QA?~fwKTm5Bf$!o>xV!7jGak$ zZq7XNqt2;7LFWy~G&ZVim(`%+{acR=f^r`-vb}DLB~yEU_h~mzV+E61=a>stZenNC zXr=MF$8_o~Ki~;PHCy`IzmV8K`8WAE6W~!fu0IA)PAe_evyn_}I*mR(A8uJBU6L)W znwpMz16c?MJ@5|sq||m@z^fT58rjk7(H|=&8JnO{MiJ(B*v#+b;1B&h$i#sJGlFQ9 zVfv|~EK;kH3+Fv3UbREmsJjD9NS7=zux=esDGRQxx&x@m$X7NtZ$A5aGp_0<=~lBq z5zcd6`&!n%!ijg7HfwV~@8IO;5a)Sv$jarA@eVp2yG%dAmsM@u*J7FB|I1}90ZC(F zcP5oLEozW^aFHy0@bY+d-1g#Pdw-W>{W|cf76`-MbZTEYjxA*cJiQPj#$zppX zMtC&ZEbjpVHJi$>DgD7;sECRiK64Ft(uL|SAnDz4!xg z0+>7^S~Wm({{V5!QMDcRX*iFNCIUChZpAATeB9%N&S~?x*xv>dLh*dJ{N+XUWS9v* zCy-etERV!bO>gTl*yKNA^?Q zPX-uI!Y(h(>s9wuZ~9%L=O3AbmSe_7^LzGei)|Bx(I*e|pnI%UnpJ5KD%=kl(3!4G z=6(b)f|&nUTKR^vISq?*(B3nN{#&1dg|{Qb_Q)&uBnrLUOW14Lo;08y;Xp{mcE zB~?oU!^-sC&i%naXvF4ah_|@Px4(eSFlsFIYQk(eyu`1cgXPE2o@dr=F1s1d_~YJ+ zdLYqR8pDYZRORZ_cm%H9pM((j|5k{W6b7S0KInI!VMsP1kxocsY`#5QY9GVM-Q_aFiTZH*SiImrjoIuv`+=7=;1jQ&;^w?9RUq-&eQ3OQA!kw-MwwR`Lg94lYKD#Yj#EpS)`DG+S~qg@SX@iPu6tcSmUx(6U9^(akPyU|=>6zqEOi(YvZA9@cQGNz zI^^tKE#Kx=TtDlhcdzLEa?KfVxF$BDR927_tn>c39w-g38u|!TKjI!+oy;YWI1eh zAPd7}vEnl-VSnhHF^-=vC+wdCo{JJ76Nb9f;!;8%0zx{Q9b&Gcj(QIizWvYgjdp^TrgN-p02E$Z;W&_WvMXUl0a+>t`xBL7PZLLCeEhg8MD)UoB^A zBsgbD?=@&(ip!sYMsq@`sx%FRkP@{M0|Ka>20?q%E(ts|9VU%^eefgjBLIb{8;dL*GuVfsOSwSTm#Iin^ubybSd8wJ zq>#G8>UA^9A3GmUmx!sS4nbyL)bdr(BcBtOuG{0x&<3buos=|9$>q4|R#!WJu-bEy zi>nCKprMuvNO`hUS3-L={3BaF*RnHaesQIDug50o3qm=k!y#!7Qjkr`m&usUBITx? zq7-OirBdd5IZt<|VT>by-=zOper(D;0FFd#MDHEBIap;m$;hTdshWuqJ{@#Dw)9MW zKLiQp1m#+we`@^6NzpjQ{Gsw^`o`UPSe;jFpaV{*O*&~6&kswjXevTd|!90f(leCj(vV3Z!+JanDiz~dp z10JpB(iwi;bbkhtBX%xYOD z$DKKQpBM7b^gzqYj85RnXb#abwuroFY44dP<^|Yrl&@2YAePRYf>kP3yegBf zRJD$3r{U5S<6pu{#Ewn0drvha^?pQcExACuOw^)@BKX=q49XpO?c2xL{D~|Yzx`B- z?tW1Hrr@*t&Z2*lbN3~rP}#(YTPLx6V48x!VWuxGI{z+168L-7!mds!vb3v8s$1fk zO5ZGcJdke8Ij?H7k4NHS2?M9XD)-k}6}JZn+$troWs;bJElFP+%M=GzI`w{|rlRth z&aFgjI;=|D5(i8o8w)&>iE8c=`gwq{mI1lsGah;{An?fL&|!8ecy=nWN(UDIG1cNF zjErBdN{^f}=_HKZY0a+B&#JAqRE|24lZO<6DIwuO!wb=w3-YNBvpgFj(Q$Y7%^^lkq$8RggaQl%(iPA=iAc@m#PBQV{D)w$NWy&g~ObC#b#tlNF$ zN@XH-0cwz(kAKpx5`@(T1-(8Bmj^RGmfoi2FEzk@y4PAm;PyIPF{O0=k<-NN?hNSf zY*k0hOR3PA-25~ho726|vMpyx@#0r}y@Z`mKEtqawn9v%W;ZBrylYdALBlH+FuHI_9_grwM-gCTfrk%be9r}+Efzp2-@_Xe% z%>L=#?e8cxePt_u-_jL1cxYn@(7t^b8UYl>qLqXWejI<1;IKqdh|+{tQOE?{IF^eN zgH>96NY83p=S1F zOO!DDOs*qmwX=Q4Q9 z!&CNzCJTdypomz^f=w=o?G)KI{`9J(=e${=mCK9Rk(({FXY{inZ(jHue;u@LH;F$H zE<8-FR$Q%r?tQk0XqELlZ22Pk^Pge;w~<_i^Qh6DZ?R=icb{aIO`d!9un1Hrd{BQU zi6{1(&fQQ~M)8^APZ#(7?Qy}rP~HLdW2UEG>&LFialGq7>$B_bKjU=n?a3>(?nRud zCUV)$(QdXKpH_8GrZTW~a`iF8$Qe_UP*Nr!!uNbeRtnurs#=k=DjPy}D+8rxB~~#i z`r~F-v~wGV5%`t2{bPmuT3~kZuSSol4zYdnY;F7GbREe zgf6v=`r=qM#=JU<1fAZxiNABRM+hXb;Zt5=IyQY{Y*saRo1ct3WkI9 z5xIvEs`35lmbAqLoTq-UP<6&0EoX*Ub*(3w<3#&~%EmYnlCHdpcd3q4n5Sw{{h8V3 zNPVGp%(ndjZ%U_o)wS^2t2{s5Q?}c zAOX{bs@f3C^p`5gYul8G9ijX98bjYs^O{1gh2oIJl)$Jg;c%It_ZKbzUUTGOG8;~u?}E%4m9!Zjo3+bvhowp=JzJ|?sX z8YoYG?U}`-ljd6-pOt3E#;=jDw=HypxtGl6*sZcYci-b%3MSX-$|v6?Z-gP)qLaXn z$kb|Ns{Aj~-aH=az3(4CZB(+9a3Z9V%2wGzmQvYM))-8MWSg6=T)m zs+mS*wOo5w<-FzMCb|eXITA9R=-2 zycoheoyHTC?=9Aeo)9ox*2b)a1_6Ue>VoD&b6u{gyh$RF-nvnSAJ`VLF2&OdOkF?N zH8oT0Hb0{EZ%zD=4=mxfoU89p5e=O5+)<|JE3{B`5CTr2uvDQ|x7m#Xp;b(znRSu{ zpNO&#{Zu`Ty@C?XzA%AjwVus}L@BGD9#$wDu9?PwgTP(DZ)K?QGX}XzO*?THXJGeH zpHD_`=V;C7oydaZ@?ve=sAuD{niHs#reN4jpb#thb(Lo_0}2QsZbmm zg()8!pL({^DB|xUG!|$i?|{qCOKov!@TfY|nf`q*VT6@n&rsmpk5s7f3N^~4;VGzZ z;}31fo#yqmRb{im)^UJJbD@^H$X>m1%e}DHuNAx%Nu$ns-i}kC% z69wFxH)ht(%f$w24f158>A>Ha~59>l_c!v=dMjO1(oei@#usgfI!EgHwA zKK_UoEZ4eBu|lx}+kPPxY+j-N1U54(f6y=dP~sCgE%p}QP}54PRRBk9y&5^LP{B4P z(9dJ!)aZhoK%mF~c(JNv+X8PD@)gkYBxYW28%x0wFV=c9pJ+S)<5<^2eQz94s)DjL zSf1lQ*H`KQW&uvUI^JqW*oJ=%a}LSp3J85)_e|%d;9Qh#fERuzTx({1q~T>5r&W60 zQ05+8c6KNAlKU}xV_WxMLc<6S@KZekdv`+6j6q$wFA1F|A;h=KIKUu#INSYp!eV}~ zs0xxT{V^y0jaBKO!sRaleC7Sx>k9+2*DGrGS~#rtSR=xRy&T3R+P#u&;|^&$ev_d^ zDrlwfN^da)45AV1{nz&;4VRBSc;>G*;-MANG_fD-O)dI8f3THa5V5eCd8QfvTNzeZ zwK~@-9E%gV`h<7EH}_p%D;eC`19m>LvJy^rmw5Uu7XX8=;96&u_1Czf$im*&&HiYs~evh ziOw%dzZOKgsLKKqFJzJSA_{HOON+jzweSB`M+AQ|B^sm5H6~BAeA?=eLaB`#u!7GgMl$QPgPUl|7XjO2~PE^P5kY z6u!pcL;Ui1Hi5L45M!Aen7R>AVKXZ<-;b=WPn(r#B$nIh=rHPPoY_=(am9FB_}ux| zYUuhClfW=7!uisXBbH1Ln&kWf6)mCFDLT&yYx6c=kQ|ST{Ddc&~8;LGtJ>l1Lp6;V3RDu@ROv1y#kGLPg!-d z_QK{nrjIui!oJBl*WVj7l=8qLnR2h5V?Lvu-g>gZ;<|Oq7O~@4YZ;7>cTFtT>Dky~ zwgRF??C4ybzeYq_3Pa)N9Ewy{7!rnFox&2{8Ps;@vjr@=Wtfyy`C~XTEkCP7c`+W? z3(kg(JH#yF`*RIa1RmWUMijL7(?4wZk1Yh$yPYp4J>!@4%dW5LvAGk?3=mJOBCsu` zkUTyD&q!>9DKbi|=`XlpZ@k2 zEAU+N4(6#TdU2$?uI2`!jq;`ImGT37jk>_V!Q?(8$>UkaScbS!>}K>Qrs$cc41 z46z$UJ~KPi1;5q^gm zv?`yZI%x#8Gi0xF$j}upBfe2dfjmc8l{rQRKG|pp`{>nk@tt&%YmSf;&f23&x~J&j zr)KG@vP@IAq)?IMDGEcbU7<<8dMsVk~8p>6&ylhUigm=OL`bih)nI4A^{+1}$R`?} zQkU{4mXsrSVn-e$!(^TZ1TE;FT=UppIR>bN$?h+_ zZpgR8X*ZKlRAMntCBN)njN4;bZCs*3HI?GydOL*T9~zugFA%Q1PNg@)74SA{#p5|$ z+)Hk=#Yy@p*Un6ir7g0N9YfdibKvpf3EozvB_RIeeje?@zU=H;msZ8CJ&mFvdM*;u zJCf}~iumiiGiPO5ez2~rE0A0cLhNg#JZ^g!UC*xAh#~&iJLWhzdjKl6ZUtYvHsnEV zvL2!^HRG|s>6h0{>F1uvYwL&a@LZiSgo6mEhPzz--z%{dA4 zjVi_ToDnZ4FBh}OQ4{2lhvzscmApO_8c#~fRrn+2(lFoB&?$`dnf1rQ3cfYZJx-FY zJWD0GYv@OK5*=^Ni_R!v$3~rhM)-aHqCZ@r!|u`FUX2zTcDi*HcYscpd(@%4u{q>a zo@SQ0J+m!%v8Sm2^ltoLL9!2W`smS+l+ErB3VM2J8)b0jywCgxPTVD;u<(B4xu`ED z;*e;CmM`0p#H}trt728{>**O2VJ>(dZDR15vzq}Xx#0m)0fG?BkrLGw-nk)C*pi3f z+RLkS{c+|(L4Sm4ug`2q>NnxPPTZxg2ZL5l&N(8~aZt&qMq84)L=Xq_>|^ZO6Ld+Y zMOpVgeA4_7HmRSXd{T7elu?%7@%*8!)&7zk+ z4i9&RP9BChK>M?Gxo745yd_?p+o_}QX*uCeFUo> za?%Q9t#?z`U*mtD+5eqIF+*3c+S7xs&{-6^H5*;(MH)N#PD)Sl7wU z^>SAW6;{946VH8hTdX2CPF5*3ghht1QjNo6Gy=lushKT7`EM?8Ted33>MeKD|9chy zWqdq{G^<6+Y#C7Xz`hlJv+?dFDL`#NslIt$pKGB&;rLg3t$Yu~QS6+YIZYTxiEvHS zRQ?;4unj)T?kV2U7B8M{O>fE4oA0|4v{U_Cff{2|18cormG`Ye^VRVS5`L>Q$|T{l zHf)|0ndmkvlylNn`1}X=7P4a2&DK~E=AH*F8-nFQO)QF@bFYsBzT3)FtKfzj?*Y%Z zoM3P67+C9@uHbL_$3FwrJ*nl+k;p53#!`d%?RHBSj@rZJEUDX1Cs6J#6^Q~#7faAz z6*<|tUdRWJtNT>0M>9^nzPkq$?l%&>urp9pU{#$<{syW4PUW*Ifwg(j4`c7nqsQFi zDjj;iM9%R1$Fkdh`?5OgKRH5eqf+IUv*55pmQmn!{oR6`H zF>3N+7Z`}HQsF-O!W8^qFUEe(?9n01Bf(1)1$bg((^w@>b5(M{5L(M@S|p7o zXN3~qhpvk8o@l=g_5=UhYTAGOQtCPxwbP|c*cf4>TibVO##xVU9o8A{6BV^Tth@eO@WQ&qvwOlAw4(>ebC{Lg>;-ozK`?^!VQ9bl4y zY7D*=dJ-sFy_G%!z@#{#Y3^sSEesKd+-M-BiACwTIrTDXd#D z)0u7GEo4}%XU-h9+ks3@ca}|_Z8qN9fHU3?MZ;3B8PguN2HAMabUPVhE&a4pSTi4}XM$Yqyo4)S- zaC^&N&S%WhkFj;GFWW=R@5f8Az)3<1tw7~eiULv^(!rE!*l|C^;YnQ_G-{3vXqV&M z8o`)|I}CixOdTpPlRlvgt1GeUeRM0UtI136>r(hsdArnV|=vhzzcg>fb}NAf4N;fK4Dp_)^ziO|DS-Lok+O{i2A^K2wi9fT@COgmc6-YJ_P;@^gO6 z2;S%7gJjZuE?5*+8|N9`y8Yz{=lAD#`=9M2fKh3Qw4j= zGLBKl>I0@3j)PNky=r#kWcXPtjA!O!o0CACNxNIH@gkmoy?6Z2<$UbcDeZj(%_yPx zfTfz2uw1px2bkj$cRzV!90zH(B$UgQpwasmjB@^fYgqc$YSeD5=!N8xeHCC^D|WFL zY;JGa0Ro^GRV7Es$2;lr}}}BWc*xaH8hg-+I44(eTrJT5r_R zY%ZKavRXpE8UE_h3Jx z%qQRyBHi^K3rld65W&GdP&Sa^jtL7Z-OR%jmC?8(${pZa#MH9@ifVAK*rD7~A%1+M$mAxz_)w{s1?sYp@$G(cQz3 z_DgB)ieL)%q5psXvcIbN{~-siaB%KdpS}eNSFebAhO*MezWP5o<-d4@e>`vS7oJl+ zsnux`00E5EdaCYotg-z5U*{Qr`cYR)fEjg*tBGs=7VLW9pl7)FtzR{$>enE5glYvu zU{AXq+O0^Q`>3Ww{q4*Dk0$)r-#*=vP|u*99;DxH*|$e3dVvK((bra?U(eH$KQU7xjvuF7|ig z`;*r^6$3;dcIAA8#&5w{M}fl27EAnX{qQGN)Kvl`x=QLE0m`8VB=hh_?~ym;%!@nreO>mmD z^S&X#Z2+55PNs4oepN*`!KGkS$;nlbr=Jvo2SMDaF+cH(Px0;ykjCu604OG@EPb#}fJQ#67kDd!X%oAHnsnIRB>*T$pkI&UlG!5ev;Ju`}sqvvXQWPXd zS2B>yaqYm{AVIzl6#YQm>YUOq3dHyDS^taxVmEDSsV|#+xIN_(HN~d+x#gCNA`CrQ zVO!IMO;hsH;W&Bq2{Bhc<#vuDxr!WHf?bJZThGZj^xVGfjrL4us(|B_ zNf4m+?j8>a6PU=qRjmK5g=PPEoW<{MeFZ*nqE4cu)#)S|`wfIQ{KkPw13De8#~jyi zz+vm3d<FV!UG2$l063RYH zu^Z$O?QZM(ESqqSm9>5YI=UH2{L0%Cv>Bsm+nHRo()-7WSZS!WvZgbc&L?!ShYofG ze0$femdM=_r5khl*4cm!0kVWr5GkRk{L%Db?U>Wq$K?m>Dc}6U;cj3Y!DagWGc_L5 zhd=TbvxA9s=h8d3EcN48oQOV%Ccww z4>6!~L9mX{UleVxoOB~o0)@keY=TE6`8 zde1&q9U_jVMINal*OgUKp}wve5Dk32UTNUyCOYf=A?w{Lw7B|o=pqqqurL&$x3N>& zg7nTaYruMvN40m$CO5oMj;F&3&<(0yJM1y@O;=hjUM$V`2IlPs=mJgn|FDfKk2_8Q zbmJJp4&*1Bz|TZA2zvbWwZs3`7;wt!YlqJ|W>Beez!zqv1&N%8=>UmL}H>LjI)n?g2dACG>i~-J5TMA|51;}5;Sq4#V6)S?||sB}7lk+ep}8~ihQUhZt)Ew(H{)-(0EBluU(Q2O03JZz`m*0K7hu|f6olLMqe|+-rDgWfBHtk zysg*>SJZT$n}uR`V}elY6~CS1kLC#H6izsOE232rJu2bRDR1pPY|6S-U)`u z*D7+MdBs@>%Gt2=!FBpKaAZGsfd_-DkAKzSf8^DwRHuGEz&1S`#(qm2;xj+m3R^3i zY&i?X?v1@{!(zTNcuYHO$6Yv#rPAvo6|S|tMntxAsxeN1vq4X?u2H0`90w~Y>jqiD zOO8~txQ9*Qx=Emq-D~l8?W8O5aC82dp}SOPZq%K0)p~Gq;x|8?0~YF9>|Rybw!OW# zL9a7dl5an6QTReHNp=`TUv4_l_ufv|fsh|B>p0L81^E})!eMAf?gF&9PWlg+z%r;* zkL^Z>>wz8rjZOYv9n!svyQiEZ-EcZRXgkli*jW4U@$=*O(LAHv)->UbZ+LiQ;%+&s zFm?cgIMX4(9z^uQSs50M&<*n*i88g19>7Ek(fbwP9~Z_=3dY1BXqVNhL+g)61}+#@ zyFOH&PqOF#mKed;o*2Qa119Z$MOg1lpRSn*69}xJE)426M+s19g(AyJoVb{gD&caI zIt2G_;6A!*o^Ss+@i)Qo&oYtmy7i%3#H&_@R6}tVbQqQq3o2`9M>& zcCq~F#gXFFfXJ*HXci1*yO0`_ApjG2!Wc^9sA^{P^-u#*(<} z1+S@>NRR&iIU8{C+4d%{Z|Hfdz_r!NYv5|r-o+(Vll1+;`iLA6%!;00Tyxzw0(&@t zlD_}(wPk=l3wKT${081h&$l+p>WjU{W8J8eii-he+RD|RQ4q6bQaX|$df+hcn>xQ$ zZ92v)3(<1titDG}^2{r4tM~sqJaTj239A(%Q|Qet$2f3EAzg}9CsWn7n% zL*H2kV&;cY_x8?}30C3n>Ra~dNGbi~y7PktCW(9YZG)(sh(|T-tVCSf?9qr-_JO@T zp{fVK28R|>I?4s#`X>yFQ4Zq#ZY-LtKLqFzsucIqho>{eg`??DMz=R;`y3RyvQO4@`=9E}e=`0KtNSl{iid8ud zy#YX2`>5ZlU4KsGdy=4{`%U!#RS>;wK~{cd^}XCLW^R_h?*-Uo^zU*O+fd|cNWsSffj>d?Ro^>9|NYWCRfNS7h6d|h7^Ub3YI>?P zHhp=?taf^UGQpKUlDYWvN#XjTu9 zeqaCaNq7yGE42NPZg>MSAwQG~xD7g~=xz*RGryB^_kl|Q*6BJ1vQFMZXMWW`od$4< z;LM$q^3K&q_^;g`sf06SH+ zMsF>A?pMpjFHmqkJLI?AK)EtOUE%SfGyhk$>)jzBQTu^H;G>V72Bsn6-x2Yvrg0Jc zoCWm={l;&>zkyfTa}r#N{F2KLj<~ri#qu-5NA^p3gOA{&2|cF$+N)H{?jB|`Ew$+O z_%k3|L?gNUs`3u5wcmZN+sJ+GivyS*fm|_o=g|WmPRcX5y@Mr7D^0I2r_QoiJI=CL z&uuFdtGy=te|_@c{XiM-ToPde(b@xGjWo;i>9t;qDxNnu7+X{@mC^~w;3;bgfwdoWbHS$r%-6m{?EIBZ<eCGIBiu3fvX09@UXI-F7@NJ=&z=&i<~5PfP|?Z5RxUSR~LY zvUC$oU-5QHx5kPpOCuEd#OdpwuGh>g6o~q{cddF%kgK9rYlInFv%%%Nm^MevDQjmWy8aPI z8<5$v0jd3S`sIX#h{VD--7`{eEEPSzO|A6MKyd9kWiN)E$|el?5b?Ke;n zIWd`q{_BDl9s06j0MqwDE#}c6|Ca5LWu94X&Qxbye+7+uEcF}&we*_9#X1Iret(oQ zjvH%%(U}Rvep*D2JZ2JjXBR@yYF#Iuyq?=@nKF6Ks+IwHd14(^GSS3o8h0_iZBtcq zQlP8o$*B0+p}(@4al>7(C2z?OB@oP}w+jQInr?XdtYRCczT`1O-+n$1{HFR@yA|75 znfCa58f6c94gHX9npj4bwnz5P)+}_RA`A}oXE;E-dU4~|>Kq8z#8FobUT8JN(&r)L zS&41bAwyNFr%J0|3-V!|u>RM1SUrm_Xx+>Pta|M+$&#S6Td%lF_wsFGfJ$ZEUT@2B zUpI*rqY56n|H!i&18efR5;z5MU)3MZvMR{IcKHi7?IZqvh6o=!hX_E$6-0J!@z-r9 zzGf_rt$sKn!#mwRDoQmgdj0yAUl+;ijxX3JdO&pL`GtP_wmNBE-Ku<^?3sP`unnz` zEl{LjTmsqu#n{>2AA`++HiBkZvk;#^lXfsW8+eNRveiu5u|54C)-}!-%%-5?!S#J> z1~%0Nt(H#B)}y&5TwA>A@m`(lIA4=S#?OM2rL53wXrGEQp9in%w zMk5jXUI7&^4bg$su0N(hE|0+VbiUO9%8surS$X@}Uq%9T*l-XCJP&FF7JOU$AL<~`s5DU$rSN208r{{ehSvH+97k2sU1gQG^ zZaiBIcuUq8KMeqS#02Hr`njIYU5x3=xx1$h11{)vl|x0;dlRb^S%1UBJRJe1iB+fb zS>`XANt}tkX54vamw2h2dNF&dJyBO4wquQQ#$OPnNSsEG27Z7u_OT-4)^iMhrsuq0 z+-3CvF7u5rHl&K{U3u7u1S?YcESTU{hWG~jEz!M_|3_46fHPfwYofsiwa{8#P2N> zATwyKEkY<46#2WTS+;>adV0jEc*7-vnc_+#&AcoS4nU6B0AJWomBZlzso+~q9+KJ2T-G9FHcs*5>Il^ z_ovpFUvH{xH!VyUbdulyo$!{-(&~oq#7;kv+teq*V$!M1(={G5rTx34m6T$*Jfe2k zbdMy0np#dc3A#}2I{oVvmk!f%<}YVH{0eWtKe}j@n+V3J>iSm*gR$>+xRRDUQw~Y% z!q+9yd&IY>P0*I8)>rXPUCz;pFv56qZq15LO@*(B!bqB01aHZuM#6E!{G0b6grI4h zlgq8GcRA18En7;FPnJOk+7hh@+{vc9S16_*PNtu5?D6mc!$@;RmZUtcJ&wOt15+Rw zoah-yBADdg|8zNMYA$`HN-+(NoxdH>)jZhnG;|x$Luxj)$)B|cHEs$b9kSDHRd0S1 zeJlO9jKQ|Sa~fezi$QJ?y_1^J(e#Fsm)fTkRudC-nH`nlLlfg`~ zCBZU97jF)*1IK(HYGsSf>_*A(T{Oh>k&rYjiBYmNT8ew>`%b3O6tg(qV;8uW;NJ;e z+GR%hOw#dh>6*pu?|K{Xdnjk>&(XS1cDXG=Ga=n%_8I<-@L~I{mC=V?O^fyjH5PaS zB;C4uO22|f@zqIAOu=_c5sK&D)@ zU$nNtr-S$*rAEOEFXQ!Q`$?5}=yt7LH)jADUI*CC_EGEa>{UWPTjj0?NW^Wimo@Kr z_pT55k6Yu}>%&O0blC8NAn_#y;5C%#?3pbIX=q}yOE1w|Q7_b0MfeAQT~|?c(3#Kx z_GpsDG5qC|X2hhw$#}k=1NrGA{0C>wy?l9~QeZ>29Gk-~Q$;|9XUKL_BO@T?PzV@o z`8f>3uR^>3O@FAg6Oi3?Z*zYMtQ*rnMTR|;Ee)KG&$|_JL1|8weE{6Lj7Z4b_D*_Q z!pyji!CAwe?0W*+`Dde0bu<>2JXoMrMY}lCZS8WK6G^xeZHp)_FM{7dN%HvlFa^!71Yjc(i@(Q?68&F;-3i@%W2x z5|pY6T87oo*O+GPp`0fGW1fc=jY~N>f({zqKpUYMdzMD-gcP_yuutrJQ_ePHr*TfVkBLU`N~3Y*)&vWh!C_xY zmo{SMdS2`;QK{&sNt2t)t5|532X)WTM<|73<92AT4Kco?!CV?J{UyDG^CloS9tlfh z576qh=fLvM>r)jn11IC9s2F&LV|*lO1;lDwk1&C&@W~U#mY7c>*~!HPo5% zHYE;LKG~#lr_18SiA?;;*wl#)7B=QQKR?AG{~M`a~cP2#cx6B+vk$Ol(gULgL@9p-0HdGlL3IeQ>*Ws*i*`F}Gxz$r*nKT1 z!RmyiT#7TT7<9ceeVF>ThZ+wOwM6+RA14OnC6m7oJ_*IU!41mWeS3@vLv3~ZmvFDf zEkrAQ(DJBc3N+_4+Vt|^sZP1aTl|M{r(PFS@-J;$j^8yae)t2gC#uQ*1FJl*0jaNo zcW=l)Ki)RJTSG}04I77i0c~lOjaEf#g_)v!xBIrPJgy!JTd1^Hu;hN*_ggHg_i3EK zXL5-Xg~<<5vsBl@J3T2|R1wt=op*BPS#d4$vPQ$@IxMpd&1>i=h;3`RiTv5(J@{aR za%+5^k(1GUpH0S&?G0axdb$+%eNbY;SFnfH9X{4iJ9XoOo=i_0%myBPkk~wWFvH}b z+_$1&82e?@hLYI4>eR1c_Fj;+?+bmINs7f+zI)X?NDbO?AbD?R$H2( zW|Y%infb{w=e>XALOgjODZLA=u%|jjFi4@L@wSmU0yGto_0Pz4MDpi#xMkxGsYuDb zF2o&WfA5&iDX8RJtXbj0wcOg`nBs!%m%_P(2LTUKmdf2oyFME|1$sX|faa09p%evJ z^@NhqaA19)JUm9KEh_qKk6=o;)r05AQMcT4JnckD|BeOylZb#Ss)?<^tI4kgDTfs8 zN7vg!iC%(@neBI7ZmfSjfbmKW%az;An=k~iaJ`KgcFZO2wUhhVmNGU^l2X+pgbVj) z264WBX67jm%HMmp(YE4{7pcl1e4LEaX{q1lsOVpFIN?9pG?u>64%&Mwh)Mq3e=y@X zotu!%CxdhQSUFok;cgxgZm{oSTCt{!)BTce|V-Gbp;KeEA6IxUVZ zn|)RL@(haf2g^gePY@x)97Z1dT~#Yf>$-o2|dBlt$YK)?<%Wxj43 zuZPZ!tHChDdp7As8e{%|bVYbtkOvf!|km>i5-2KxK~rc9ZpsBXL{suoZPihCvE4J z(v4^UNdE=C259T2?(HR1sHI9yiq-LqC;WT=>;qv%!JbncoV$eDue!YdXrF!Egd9xz z{7%KT!amL66jF$0WbLs1Y7{}W62Vu;SYfAV9W|We)awD@&EhPs&L3MSRLRObS+e5by@xl6TX!J8SG!2-JYWrINGKFIWH zjr~Gv>es_t-X0(LAQ3EM{+74{k$7E!F-R&ST%RM5+6^d-TmN zSmPJQa~!H1id6GMmio;g-ev7nwS-C}zk2`p!vuDY@wCep6 zB-FnsBteO@R+%G(eNO=yZF+6$OoVhnDB}6VxoUt-EVLeOTeL z-mT!I(Dv;z<@>84|04_Is51jt+w*G-${)3+b{t;C zHS*gFUD`~K*7hbO)|HrkZ3|tw)YC2$?ce`QD6tVYm37Vf87=9x$GJE0+fM2P0vC6_ zzN_$B1)HbSZ^m#5w~*~QFFp8@8_x!}zkbxzRnWYtlJh8R?a0StOP`l5YO3!x)}h)P z@szHR@p07H6WO58#|4&QKOJq*H6qXeEF)}jtimjeV_}Jn?$o3e6?d0yNTAGB z&$^4Wg3kC^HJzzRc-+F z!dZc#hrRvd_|g(*I#U8rDmd;(k8Xc^8oV$2pIrCu^#ya`y|aLiLRAzqSmQZ1cgNF^ z_r<4MVqEN?$yR+~lp)vZuaQt1DR;zUYr56;dxj8pJie=Lx!rChEw9J2c8G3R`7LST zD=ahpZQD2gYpa|J7zch120)l0RX!W`YDPLOSR&-Xo zI_}j6oQTW9xYtd}!G*+W33jaYcskfjcHQ)oiKL|tilF~jp=S?#%NL0K3A-~81 zSk!c}IM%FWIi)1n??dLzdUJL0x)O`}q0#ZWK2sa7hn8qTYup7KUrCDO4ppPN1&vc3 z2y%K0(IAu^(5XsQ7NeK=P592$O>po(6I5N1#9L}qGzO3T!!Y0O8m5Ws+!f=Lan(6{ zzPXKt#-^$i*>#((M-#`~W-ZPVMPMhaOWXuoqwFgsQz={S!7kVQDsc4S)~TL%(5zn0(?EpQvY9 zncmx~13rGP0`CFytLoVeYcqUqP;+VI4+@F%UVX@(3^WTi zMc(f=0I8;F*dt!n)g)JJo#I#KOMa(LqX&;V`X4-lA9tViAZR*jIUA%NQbq63_;B#E z_LEghu0hN&k0UhdOX}a4WXIl@{BuG*4GjbNCjGNjJ``&QLQbRv1Z8P~b`*`|ms`_k zqv{)i#tcq2?BMpA1wOTI%tm)hL4a5t)r5ZPWtHdDUszY@f8!lhQlP+`-6@a0|{+ zr=|*6;KvN3EE1&jNm3qWr;L4d!F?T_ZMp}i?wD_UfslU#d;1u_7n^Uu4`cK4MJMQi zH7yz`VUoG98!bUh-|prsuEJsI|5c^*KW*!=;PKDOTlD+#oZ{KjW3@XjqcPb8!ISJ2 z_))bszg#ZgBw>MS*7taiM!UDl6hMIFzvQ-iHDbnH%e$uJIuBsv4t{KRZ4#GMY6lFZ zy%!^D9T+8KrFtn=4#qhRR_{d6JXdMbB=@di0L<<M%9fLNTN3ZERSADq!6r&TyoQ3jNc~JHknG_;9`tldUu!;CfBgphe6N7+ zXa?>4g=jvs5EHkVCX-nVZKPc^7GQeSQl)wX7g&C)Hy=->=HPoO!*aPNlTR+WE$$`k zg2SVpM$KM0tk5-IEim5P20qubT*|?~Gh2i;vu@#qyaSz)x7kVDu5l)=_`AVNTG4Ui zc9?F^5iikh7Bs0kBIfu;+(_qQLW5X_fi>;~U2r+`5Y4gLN~4*f@lhR(^GWTRt>R$X zZ8uOIDPH75Sb4D_#?OUtX4yCqj!6FAwYdLuapoFW*EHuJ0K$CB#uN+GUW2_ot>ahK%LC^}2^uT`=|7!{WU&U@) z5)W*;E#9z%VPp7D*5}h{VdRbov}Ak4_{7MWTd$5M0A|yc(1`{9X5P6m>Z&R?FZ7(I zp4_rBtXo7>C*jCu_+|7T<7Q@=kd}t!KpThNAA0f1Oz(e^KbB2SaPrKJRn9|(OWi_> zOnvBHIPI;K>5dO@X29B7%o$Bv#*XyV1|FUWf!E$Lm4JxgQSijk8V}vFN4L(}wHY%C z-hkGo*0FjuFr8)44p*GI0{-;gw#r^o68FS0qAVR4z4J@8 zlo)se?aolKxy?|Fp$>my3am}2REj#0NT=Dg_Sv~Fk6*uFQTgJyl;!=I&U7)evkf=e zk`K?ot|GQ83l&JTE(wL2B-3(Z?NzXEJ7gIqWPMa?m(2e%&o3z9Rt9aSy25n7)Y;%C z2R-52-W5kqsCJna1OZS`WUJC*!hV%kXGGQ^%XvN)6=_yIN6;2-d;hgv|7u;eWuoF* z|6_2kbWT8?{v_v6Tz48g1QmLCN={^O(LFWqTVXsVSC4kK@Gv2!u-j#H7dih?V%mm2 zr-uRe2?9&lg?!Jx4<6#HkSn21-a}4jGw&&QxMnD;(!JWZSk!oSI-QaHx1Ha@CW}Q`nzWmm@0M zL%#S@mAHIpYhd&r=$5mIzY5GVl|PITwCXLOzE;Aq#B*cyFv)LS?W(LVC=C2+{KO#o z(5C#xrf-+Ir&Fo~vW#lYZi(9mNaBXg^6!qoLLgCQ%+a;GC61Xq1q#VdFHMJsCdx3J z+r>QA6KJs9?Az1E56%Ha5=HT?Ri|lkI7?9k>mLWrGnI|sLixBBHv4{NZh$aKZPrhj zj(qDTBL0o?y+(6;O;|`ScnQqw8F_%{E-vaY!d{un!HeYmh3(TV`e&V|eHE;s1TVb? zO53Q>jbr~zaF_1l>V$)Kv@uknW3F{uaOTg+md+aDu<5;G=PpReb@u>hsRE;x~ z`zF6giVqZw-CrK;i=V+%ckVE)16<<9b1&_twED-2MyQq7mjKOJt8uU2q7f&oS~cQ` z49}dGzia5ylf$0C<`3C@c)@6S))4ThW_~4P9|4oLxnw{k2*_mN%$e!AwRxWj-?^Dbz-6~aw@<#V||g6pZfU|smO?q@Ss>pR5? z=3K>?QwF4I5-{N_`%Q~1MJ^cbH$AmuJEI4tcj275=<uGx5PiEGM(`i5bg)sUQO{v*G{Br2{7|u#lJ2ZjaP*Oq`(@9* z{4PWNzSJ6*t5v%}7Cra4dK8lV%Iaq0jnF9+1THi26EfYzX$x|UF58NHQ@7%71bTemv1b~jC=K3G4%{r2bsDndm9jYAgL-!;F#3dyQU(U9zEAbk z>ldJ~=03W5P4X3>emt|UI%ui>4=|8aVzc7dF110`Z$XuO&vuNWOlS$S?9p zS%66~MZOEdb4RSxXrnncaDm^}IX^E{DyB;xXFm{Tl&KuMK3~qW(p2wx=?ci zZ8hlp37!gvb~EAip^Ism`TF6>Gdy>OqI~r|GRwgrzp>RO>-pYUc7bxs3fKo}=R5@@ zcGHn{m3Ueq=@gkW2NRJ0v@OS4M7E?f&5XILXGIonTi;^T^h@h%x8T`RN^Kk%;StX{ z$#8v9;!*fodCOMmQTTAFUtF_+wg~rY&k#1kIp7c)C|<(_0M!1_j1|XO2UM-ij|~-f zg%T?b;dD)>8maFW^DXq{s$=tI)QCJ7Le6nMi*hv{z=$Wc^>_&doyur^(M$OrG*2Z&4#P?n zK0L7_xMC~z@~%->i&*|EV*5|tK;H>g7_M#myuEgq-HyanN5@DTr0qahsH9`dDjRUK z&;CCTU^5&0Ze)~I3>`kPU^5*>>H>I-)DN<@zds1K1=hJvI4PtvJzDyC{ zWE?fSYf?_KY#$+J=l06>oro!_RW z#}$VaTfgN-i@J!9W2r|fCc15* zq#*{h8f#59OYh&03D{V;Fxgyhm)N^pGdnet0*^TWm3WP#ZOEBW%iEtFSS4G4$z^J` zt?sF73&Z`!=IxJ!X!VvD>fFP9i^83o-#U;p!k(ijN7`(f%PCHk&DV?g27_~YzAa&S z=~tpsmAnR8e}I_uI;6P3?L%{{8d7!3b0Zg3!k+*I9Ram>Qju$Omr)I&Y<#hR<=ZBS zVQ1sh0&HT>@ifma+Qer4u_DXg$qbw6+Oro^XX5W=%Y!hM_TT*0S$2P{0>}JL~gE8iJ&v~}< zyzg_~=k)t;XnecB_xkx<_w~6hl{3TTX3_zRjnZ>!Ko#UI2P(V97&@7t%P7C&BFAg@ zjkBUHYXGwQ2H?OPDoI>UlQFl9r{{IIk9=+(rhOJHLO|tbea_83RD)jFJTs6HMZ?9m zVQa7FOJQ!x@pqMf$lpdhGm;tl=r}N_yPd)-B-0^&py2s!)Xsf!QH_~E8%AJQLG-p? z9gzHlW>CRp7O?{_Cb4n0+1zb&>P2KSPM^M+# zZ4*FtZxpo2W2=29REz0^t&1gwOtVNGuL=pE9VB$7BY%{_LB;iVPU4^|kvr9_fCi<9 zw)cb!L{;8A$_48Vs~8iT>aBLmn0IQ3n6+IHD6Sa0*swj^rz(Pve|D=x-Psx|wjK!n zgK}yMyAb3PCOz2vVqz_Yod9ogX?GG=UkQ!l5KwGc>ro;pC92I-Ad2IbZ6=Ee-{BiR zLylA4U@!m<&{frUW34+8D>~#~Yii}Z8lQ`O-G@x(yE${GtAc#0F-j@?46-~8eu!qA ze2Am!2W~N5FFIctSP+%$kr@-^i8$Ip@q>g73XC2k52i)fGY58*h<-q2PoPvTR4}qo zU5F80q|xmb@BHPN-a(vkEqq9O0ef_AJZ;J2(pBs$MAS*qt2b0jbrIJND%28ZwHqcA z`J9C-vFA(f%r2w-La2aV`!rY}!_aTSg`Q9JH>^2#gu-uhS}$<0FU;Z15%mZ#o0)?p zdP+;|E%vSz`Aj?Rj6lfx_8Xx%bW0h-OL=32b`f>SmdsSa`zC&@X1G0#GFH}5#bZG*LAE1bKWWCFmFAxG-i@mNYP=4&=RqoBw zz92fad(viNT_VTitlVo)pIdVh*kB%sodx74)aM%^=A+^ z;CH%&9Np>51|?2KezTU-gCz-hwlxlT#H@#`#jK8@2oN<{mKYNOnkENPNv)H)A#?JX zsIiML-dp5G`&aH%uh3=CDa4GXDhsGLa`l4}dwz7EX~_(#$d9N3O8!dMw$l#4maVb! z9a^bq^a-ni2mCH3paiE6);uA1*RjOoT6K`RJ0U#-MFS*;EKffwC@%vgbSAU}+Ni<7 zS3uLCNj0}7I=2Ad1dQb{zqo`8K;J}DKvD7uEq#R0EsaAJ+j?Lc; zby=Aa_{J%*>C3f@Z-6-pd8Tq|q^@Nw#-)bK|40k>AfiUrQ-znQr)~!F2ec4B3DwG2W}P1@W`8nxbgYQrsT$E)3A7%Bz`;g@=~zvIok$8&K>L!8om|fxgG2M z3S!4e{kt^lwpr0+tc?mzS%fJE`HYOfRo)K(3Y_03bYqn4DwL2tZeWb5l=Z-N*sOS7A624eD} z0JBnv^$mG#o9@&7GTl-l!X%a0 zJl4m(Jp(majkgIXzs%hjqnd@1Xya(jUJj_dw<4!KX_P%{HDA4hAZ0FLmuefiCW|$K z!g@~Jey~;(Kj!&NYj-GI^71!j_1B#H`x3`26L$MH#>(0C5{wu2CXAgWI_19=Uc=@$ zu~|`zQBR?7R+@m#y&;ONtors@M1nGLDE7>f5Ar1WW`VVhvLpP{;~#2#C0$(ERlKDK=A!q$Mfz(J${3b$Idplw&Rbiz4+nB-=`gpl;dOAOdPnU|EDBwARc?E zM;9kz4r=(0)rUPd%QA#+-uZ5D!nU-s2b7@%#=gX{y@8T#W1MWv+v8Wy4nHnCgs13^1>5@2>(kN$RY=@2wcEg-I&>_hEz!O7NEVQJteu8i zVxyZCYKByEiM`&qhYz=3W~UuY>`T-(r}xL9gdt?gQM=vfcO-u~_+ zo}>yPSFU;>#rnJMduHDp7I`-Q?BNyYW3c^hb>!F4aiAR%`_O$y^l9gg2pecWzvyl` zi}Y;%B%n#8EU4YjqpN%gqlY$IP^#h!ofT|b|40I=opIg^2gJ_zwx69+QE}gRA8;1( zNa@I}wcM!tI&sSF^r|08`d-;X4_%bMWLi|S!a-IEs?yM`m~pnYxsGofxOV@Q?ePhg zd?~Mr4h4nEF;(ms?!`7_w=) z>BKtg*`K{u7ZGrmd^7i^W8B#iED1qt;T^-6Mwi%FiX!(qL)WS6&F|nTwEjv?af)<-y@+{ z2gvxKd_3NF&BMB8)YdcmP=C0GWmHT8B0`B1EInH6xZ#pZ*UG=jXp{SlKUhvdY?(;5 zw|$tXfQb;nZI1M^P^H0m&Y?U~}KsyC-n$&rYCvbSp_6e{Kv$?2guN9hg!DTL3vjx$VizN$yl zspOkLAygVrWxaG7=mxnik^9-n8o*Tht(nH^Yw7F=C86|kBP>830cb% zvQ}Rm8<6&{rL=xI_?PEPT6@kBE%UEIEc5J+gtzh^DL9W%YY6E(>l>H04NG_EJJ{~& z!^Hr%eCNe?!Zh~Q$$^upc{c(b2zJsB4;-3F{5$b2vx=^7Js1`{)GYPvvr6)JJ9Jla zksRgh-K%MtL^0vz#{CX@A6x-o0-jnh3bP-zyYgB65oz)N+@(Y~yOibEwmZx?@8)DJ zoo|`OVi~u-?obTuIi4~$6yP(yHkoiKrY*_n;q3nu9Xs<2g|lCgimgoct5W6qG=F&h zO+xe0p{(gkY+XjW{O@;(pmk&Up2wNGIQBlz zW3%jHgtWJc6iHI-c_9IB{(~w zm1$$dFcuy$Yjeyw9ToO&(CB^;J0z5j#l*Tgz?D!Acd9?RCrRvChjj)dmrp)Ws;PsV z8hS2^F*~OzmB6=|sJ0dySw*~vs2paLF$?z_80C{(?P;XvU(GF5W?f~z z*Sjc%SPCV#Cd)m`A32zy{a`%V6ZObRar;;``_mz@*A>H)t3MjeAj%s(o$HVW-=GPD zeNxY%GAsvAC33>AhYlIOI{c-(Wh3^-eWmTLofJ)@Da}$_uWF$_Wb|5FYOH*tfN=h=!?n?cTKVIOWP=G&>OI`sZb1Az?CtSs~PO z+}m>;stoeS)9S)4syA5v=-Q37rZ>_!l4H?rOuQyD@2u}!b~L2Km7H%FmD9$4jJQ}M zXX~O+e#lj|L+kc8(-*&~UsEV?8#T9W9!FMaRady37FMu4)8#qw9+65kZ^W3F7cJ?; zOY{sXd!FgW^pHwyRm;=njm1>;d3`G^s+NAVy&Ej?%(+o}9zPbLx$ZxRh(C4neAo_> z^Z6^y=G+XDjCo%6hYufkeON&o_ef~;>Wq4KVl@#lmAZvRCV>0=V7(A3xYE}U?n;UH zXt=(Hz5RHm7u65_tict`sdZExOz1rw zLQS|RKD*sGu^2*TEz(l%VuRt@fYWO1e(fy!aB%mQR>wj;>2^EQrkC$UyUR<3cy>rk zJYCUqx;LiN_FFt7!JQ^b%!ug9SX1B;sVi_hc%Lf-q?)=ikHSD*#E|b6GgR;z$S0$c zNgero6_B+Vq}*!2lY2rh&O0!prG!ml@XzAgz^Q3i4i0(-bf6Z>MsYbXNC{OSv5Bml=rQ1;6!rC; zSsF1(FVkp$iPv0_OFbTH6ivn+}^(M&t&wA%d zC#hA^S@eVJ2AL9OwG~FM=8~C_$(mU;r4qesJ8#OwGX2LJqal~~N-x?W5b}=I=}Frm z9>q&}%@Ey_*lub;Wt=8^^K@S?O)dS7Qg6R)GS>DQCh>m2^yh)7v*T#topp)9E%$J9 z+L>Mui-iZ}FzHpw;q9v$A=FI*}+S{A#=L5GX<$F$e3 zN6A<$J|E)=?s$6&xf@H1fTuF&UmcOLDyU=?(_Qj1o60aMFcq>ct{nEDdt%LJvTb3*dQGk^ z$U|*Oktm?#lI{KK^I)l8LQY@y&Gwb)r3g`-g)ow;0=06;aAbILalAPfUc<5kg*m6Q zO77HMBm}RLW%_5?4z7AXRQFD)pg@_=`(Vey&z6Vb!yEcy(ZoWhtaxRlLxn$W5m1Hg z)UZ;<2{ZkjPV1Y@X~VehWS#vr03p#bf0s!u&&tk3GxDcj^KYpEVpeonn(=g^F2nd{ z#EM?Eb=f(y;B{NXWOJTs3Oi+q_VBU2ar{z@rB^@pJmfetV?D!}tKVcL(M7D+hijxe zc-W1R`)I=ASzv}=;~HWKDHQGAIuSa0wmC&96t81-+K!hPR)P#(EpAg!gVS0+qQ=&q zLY(JsuLsdn;tSo18O{|tQv{EusBx7Fc0)b)414W0FVsfsV2)wN;sv$#C!aVB=j*ez zZX6<`;})|tWan$L);SIymh&koV8wiFy^YO|AH=CQ{5gfZp= z#|2JTGpXHQ_#FFh#+^chZsYgrsIbhpX+jztl(Q}}_v|eoa7W2{w#0TqOwVGVv)fWg zx;S-p=pe#_X8u7%I8#igv!72*y6?fmoj~-)BX09ijZTYMYq$URrSD=>Dlx|BOvhs5 zIL*sxX=(ms)ea~`1-hQN4^$F86_&|8^m5J05$!zbRKVPZ?^a{imGV7M_2@S( z_nGY703h}CD^W7;#zQh>s+}>?%)Mgx-O5KaJGj+bCM1E`@O*!UhXtD@)T=5wrR}@= zA=#~`{}GNf2_;w8VUiteWUV$v`Fs=B0Py6-FRJ-%+hVQ;;Zvlz#&`3>DH%Z9Wah;| zt>qyfV`C*1o(&Ks5wVr389rPj)rac60;dnT2|a?DufVh%GA?~wU)b%NAf`AReNFhv zgyoj3!~WU8pN6G??(5P4d{qLi!tCZvt1~{0E@Fc!7I9tDQJs%6Cu4E-f{_M`psDr0pULuMozkV62VY&5l`>r>jRD4!DMF%|Gl= zcmXC{edL{G9+}4X7Uvn10u{?|?3{`Qb&1u-<}`l={MN^X_t#{_U6wXwA*ZQfVt>MS z{UZ@plk3jjDSthpUihx7Bs|;lwSS8DbeF!C={WG16lV{(LVj5fMovdYq1{#=?^z%3 zbEFjVxh8zL+gD%@&G2Gu?iSZLOUTJ;)aZZ~0AY~6cunUb{)-7?UIRrrfh*xX)vVd% zrrwF5+qSnus8O<(IUt*txt@C8rFFe_Nyn%ngsPHnn+qlOc_BdQidBU_#VeagA)Bv& zVzU=gMzMm2I!Ma{u2H~4gCB`5BiaEuI4LzZkix3p7#? zCe7v=DXg&ruKdBBYfF>DHc~y7>Ix3&7s_-I*RRK}(WGvQa?PozMN91C`vQG=#HNcvcgOL2I`+ zSgG$%NopFrto*@P+1W6q$v=Sl`Ir`i&hW2kZx-mEXVf~me)J+ah%+Y>`C-z=ulpU? z)EMJ!|3vxHWa5p5o8ygdh(cV? zE~B#`NnKCgNWayvqQ(yGlZJxJPzmvVwC;e--UjfW$*!V8RL`*TKMHQ=!CO?}err85@T^MZhem!TG@ zj-Vl%D;bDC$K(I4qeDLZS~ea+{dD_D!qv5Hcx+!TI41)s@E_}+Lbz8bAKl~CZl+Vq zjzm&qPR*>)DV`8mEF63Ts&A?#ruU*!lpJ}c`RuUXRUVzyR}CKcRms~=y~sQ zTFb8R#z*SXZeIa+TYGiIjFlnP@43S3ek=0rcW!HN;utvzSto`3>otzuBG9h-B!eSo zlr5^UB2&YNA8!Zw`Pm{ehkbt}{?JA<;EmcVd}xnphs(p4uDBhu9kXPuMlD!Wsvl_;GQ&3o?DCXwchQj;Mjc`H`SOpeG?pfnVHUcl;jw&zy7PI9%4Pc+=D z`oOeBfg1$tut`+jGLNLSrA3L+JwJ(Dp*)<6>&l+9SAVPIV`E?GYb}AUIcp<~k7W5k zRxpQO15okQfp3|FJ&60TEfxq*J<^!HTi_XdlEV!{5#?PLF&@ShM+{-^lgeKaWG zX7;Hb53HFvN@`&rgCwdQuWyzV$^^4_#1X+o3aNSoV2n>snwLR%~bP z5-JSP%tSlLKe1`@TA%YW5?kmK`)X@U1vL9W?^ zz`Acx7b)v*>oPl-cVD zc|2rJR7ogjbgLdLWKLu>#6BFXWX5ViV$NP**;Bj;Qi68xRKoOrly4X83 z_9_QseYu>nkpD(6 zJTixjJmNdiVy#hf_~Fi}6|01XXYO?IQ+9xF+v}O1j9a>#4f?Mz)`;tWci8_>3M$hF zs|>zJGgAMTkXWFB6A@=6St`{b{y2BiBLvhg}g)?>X^Cf1s_(o4#=@4%wAyNKIa>)X;wbb)4?bG`&=GGy-rS#y4z6J4RiHm5!}W!nhcVVuH#Q z0S)OA^Qp&yS1P+-zIl@g>3)zBGng|J#kPVB6gyunNF3n4?W?NtJcj6N(e(DjncKQ1 z#LgE%0uyrA-vcYznXi+{=A-A=;9fU|{(@qy;2F?`p)Q!;j&t#G1ia?4I-LDR&*lF8 z8n7}OAosc_prUHN&vVS>vC?9MXZF%}?)8B{FY2)VQ?vM0BixKeqm}P83}snKJGZ@Eh<;HgAwcK%O>q4} zN1lSNN3M@HtObr|WXf1?z|gy5wErvevW17s6twsk`5k&dJBdSDI}*=B+|Na-Exq+z zBqTvW5GYSxjMT|1LBl$RS=-;T+ceDIn}&E>#Kp+lVs?rsG?|M*ewY_ChJl1d4vHx- zlU%Wr=v~NAMxen&SG+m*{VTN#5N}EXTOIMfCr;Wq&nmgLd639rP)9Hp7MQ(^<41qg zNG{BjpgmcSS|Q_O$3W62A60{W4#Z$nzw6Upmm>heRBGcl`T&8CETN(E9J1a>vpcz? znuvvto+pRjY+nSh>g5JYQCW(^ z$>%bXklmS=DZ?`XH8XGfK{%MQX@@)aWUuty2|IIu_+pPmAd-jF=WOnYA}O(kthmgy#E-9U`V78v#*jcfNZ=g9ISSni)ElY|Q@R ziD@9B=V4kC0i-T+I=a3_0oB!j?RZ*w#mmj%5Bf+3#cH=}D>#Su$!}2T(1~(ShJ!}? z4~SZ&cbbNuL9!in{1O?f8c~zj-jr5nuu`*w;gRc9*mk;w^NI-g2@`bY4pwx&hA)7- zT*YBlZu?z#JIo3uC~Np{gtfSCeyXj*E2S*ipGYJtx%#vPT|`ly3d^M%?T0g-&(6Pk z*ZckZ*DH#BEtAa%+mAmG8Af~3)7$)%aK^T!8a}en8mEb3n6~RckxOq18rpMiQYjGe z>VZG1m9g{s=oVzHF^HwqBEPll-yTcftvqw8HInIbAmdYh1BlnY{~mY1H`_y zHSfWaL-WUN;o98C`(78vhm1FDk*b`ns@nAMk0fh+sd$D|?n z);VNr_`!}j^_|dro743xb@o02QfPJiB@ual0WF%70i7{t!kR&{KHhjW**_P13b(%@ zX>Bn~gNB-)bQC+Y5qf7hYc3c_fb`!l*PzKn0ajm)e0P+rl_nHO1ZO0Z24w(SA=$?u z@}LzhSkI3-6wt0-?3CybxG;U3d!kRQVT7U6vrYO8`~m9<+SZ+^f-3duydZU4%dP)9 zGmf8OI+@DyluOhN2u2RFhAtpl_bJ$?wO6lp;jWap543DcH@>v?>@xX68BF`lMDhN8 z`!c~!|ADMZySV=VR#jYeY!W7=mP9T6Xc#4vArz}~!$fE4hm$|0#kDHTtaGr1yrKJ< zWOQo1;PBSv&a%tY6HM6icrD^LpSBIjPpfMMjd}!`fnRE}ZXVSDGmEh_5-iXn*Eg#J zau$bxeA}?$*PwsjLY!TO8m|bGCUIv`*k+d$lIXEs!j)RgYg>Ep+#N7D2B|5Bzw+{p0-FQi>q~6 z5-6SH%IyJUan)t_Hj$GrO@N7^PY##s2jK{jjmjR(87*U}Q}*mv@ufC}m=P`1gq`jF z^{Q$uuk4jDp&%9E$_A6wLCa^sKSsmfe#VSIKi9!dsY-=Vztw-&YOA2hyx%TS<|y@Y z&eD#)yAls2N#<&7>xM_S?00@J035fvPBwJ$Oc)DKB$J47%_=-3TGbwUWdMY*U8Z08 zRQno|B}J?^*Nc?tfPNlft8EDqx~uBh+r~#uXlilEZ*h4rB-N25Z*QYzmm6^EiCvo_(B>^G7Jk(P(P*vC<^NAo!N7R!!%M@?`RDl{`4rZxTvXs&x~ZQ>h(^ zYwI_5b~9_N_`1`C2y0K)$V!F_+?9Es@|v$P{H$=L@h<`2-?~FArjG=E;hWb!pnsnc zIOfewnmFe|q9M+&>`$DTP%m;NG^9XEbq<`GHO;cL@Py}_W2-S-XXiFwN=kXU)RQJw zROc$=wYxv@;U)<#SswJTM)Fxgr;w*^3bnV<{42dg$@8sdfFi$yGGsRK>0o9NZtdhT zgdN&?Bf(xwiF(l9!J_N^Wr~uK_h8ugi*k&-W6`QsTRf?t8=@R2G^LWTCQrzYmA@fJXyE66)qyn?}62_FbbliOQ#SuO*#jQMh zAN-!iICFNtM=if>LGR?TNv%Lms*L6sw6Bgzi)H)keHD>+=<%c=ZK7Z4k?(NjU7oAP zT=dG>tHWF#%elv{x>{6zXapPpR^;KNx)P-=SA}dS#ENJ9zIYLmDb*>mw`kPOC;0E- ziqK(sTA1!^xv`V*RD{<_s#ix(IF=OBv7iFBI@Qzz0h8xVOD18g(*@8!&HEArf+}R`A{Q=R$*i6w1Tn z4mKZWyz0him4wFb&&!>Q1enUM4gdCt%w6p=&Z?6ZGA@2xM^$f0DoqJCl_M4rnaSWmeUz_vNU>G>BzpODx-w z2N^L-M?#k-75bkJz<$#xI!zm_GNDy!v;@nqFVFnogC#@^i?4>1Ldou-^HPFv71a*b z-6bg*`=V?uSBIg~;c7ZAzbTH$Wu>5No;jj4x*t)hSjNmf@3aX(u65y%GWT4=7@2)k09|0A6L zpFc|81n?~6x7n7Hdw2uE!FjGG49JuGVUsid;Pd4r!mFb{3CHJ+b7x#EYa&W@cs*!^ zt#Sj?iu#uy=ht@z`dLL;LCv~ z8HT@FH19M1yn+JOTw?ULXyxL-nt?+@%H+^*=NmI$Xu!=vhQcUSs%Eu=*UJx4UO8zO z3zJ&~wpE4_CX#FGv_Fo{Y=Nwj%&j9mo_QPqK(4u#Dxn?R?e`A`wb3QivKt*CxSMMQ z;9X_P{nh1%`CKw+i_1PY^j` zv{tfP3woW%KMCtE)0etnTl7UMFym{ninrD(tMJvfaFm9R-Y3}VKvi`MCVivP^$n@+ z64__GMc(Y|px2%KQ*`lX(>ghK;ytCld7N*Ajl;;Lunu6*x%V#j)P#0%IauH2gXX3O znF~Dmt4{fNU$+d6rSUafC%a}7M19&Dw{PWflR#vFxigm4Wd0?%%)i7Nl@J<18tw!o zIbKtP`MVCLz4H0Y&$?)lrlDBV1|d+!AS;x@BTS+^5fNYuz~6{GWP5p^BQ)*s!zE+{ z3Xv`v?kQ?5ITVJiVZlm+nW!j!Zzg?OY$~EHK2F={II_vA8@l4-O_8 z^DQST^i^DN--BXyW7Rx^!-+lB6&6EF!>_K8&XyET28DK0`LCkd09w3O8@5*XpdxO^ zdgkkDL@E*}Mu<{2bnEQJmeh}5or4k3A2W^m*)|EZvY?vn6T?$#7YZP^uaj}wQi#sI`-9(zbh_Y;{bQ?`Y9D~ zC!IfNp085tD`fY=_>@Fl3L>K#gb9;}&a#B2=!Eg#{_7Tb={In~3e}%gy2A6o z0p!9R3TeQqiY=IewlwKZWNys6=YH_XP1E9Mz@ z1KKOee>-3I9|{T_8M#?CfK272)mLIZn^S7pn9eZ)B=wnxbWTT>JGsD2AxYiGGHDQJ z9-^@nh(9&D;3&e*tml`oc(|BG-=K?E5I|tO=fT9yn=wfv{;I_Kuvp{R0k1bTi3Mvr zMTjij9li;Y$SfGjE9!@pgNF?6?AlYEUXQs3p}BjqY;0mO%#KVoSm{c)aIM&P`#)l&q`2NrGp720Rrx zT@)qCSTh%vf9sgJ_!099wA87=Bzuw=`c}@<#m}ox(QayRDV0rr;&Fg#w{3Y^%IqtN zWb_Rb%j3NKsE4=%1C!m)FG`(+m-h4EL3(k)EU{^Zf2OZA1<42qee?nVvI#ouw@uL} zZkibEn^N(ic8!r`7Nka~mdA9^o0VrZCPBpl?RsV2gRP4L+MI1~33dh?S9*E|LGMA* z8^%0c3)0b*Rzz_k&Bj_8l^Mb;!`23q z#E&5k-P$j?NG>nYSn>}ZPo2^+e!k1F$=l}_Gn-Zc9P`d1jmSUj+WNY2n{NtyJ&XeH zqgKsm+z6v|^Mo0DuPaOjxYz>%*r+)bM#=Ns3kYyAam9%rD9_bZezX6^M~HtqwLfuW zxumxXLd-GVtVX+yW-}Nf)lH+&~_hi*J?qO-_5uy<8QL3T!-gWI|^+I&$zVb zyA}`qFQAVPIL1dW6(s8nB-22kx_dJUK+pe-PI>Sok3OkOfz*wyat`YiNu`){FRn@j z734KshOtn{Eo!CX%DAf1?ekyYjJe-N18++Q$Fp;dzEb`U1Mi9V0+EiR3A1+Fl~#SF zZ9*4R2rp^h-pJY^g~AT5j7};Z>IdAF8IXX_0p?=6+nltJ^SYvK=5rkJ{+zG$Td(sU zVBkD=D(_Vmx^0|vHfmcH^AUxN%jXkJkSxS>dF3c0;jq>I=Y;12B%@S608^?MCCFIF zM9Ev51F~9gYMN8J@Rau5<=98N+26K(GEU)6DlGSO`CQKlZ`(+AO0_IbS`W^TYruxR z72^pLQE=!AACnsVROr6?+2@6yk^7>pvdN?&<`0CC$4J)MF9*?>BVWu;6u#~;)g^%VPtPVK6(SZx(h)J|C~DfJ?a z@|7ptsqFYz$o~nc(~ck`>|UV`-s-Bsbg@`1DRXK~BwL#a1HMefjZcT15}Rgm7)P4? zXihsbBHZb}W;nlujBv;WL7w%G_gs3(LE_N^>>(c;t5CEkI7WCjj=uahjk{j(_?)|r zmi!-o0soSj=72!gqbKw^h9?+&I3*a~4^T_jB_fppvnM672=L}UJ7}zb%`&5TZA`c9) zjcdYm;S)hHLa|W?xa5nR8zYvuQ}1Zf%nfNeQ{1*&@K?gEd|j(GUST z!pUlaZ)TVQevv2mcttEdH=p6&yL%dG3JeLRx{veKfEVH z8@1ZVjx3l4 z&M5y4lK9)>LsB^|JHIx6k=&yT&VY^eU8b17gR!Mt<`WV52N-|V6ZwlYXxM_ga@k#$*svWc7Ezd8jXRZ8?QIQ6%Tpd335S&c+9nZlq3zD%`zKLSN1rIZhvaa^=i|s< zcB~Ew0kNuuhU5vK}7oqo0zvw%fVoh;Y~wq;4q-uOlF6z@+ilE+S*eSViA zf>&}x0({)OlktC)p8v-Ur>q3L2|QoN1Q>$5ag2hcer^4aU;Oj&mCWWepK$l|b)LPP zH4;`qZ#nR1Q{X?&mylJCx3M->-bYXJActIG@T}4NCtL9e7;zKzYIlQkw+J*s*Fn7g zFL3SujT=?S*)MF>sldK0fwS&2?=GGC$q^~L%<0a(XCi^^o*0O?P)@;rg&Og1%?LRG zI^$H|!>fnx-v_R|FbTokKQ}vdB^|)Dju2`7c2w{&8#HK)EvlsVb8oUYoimbUGcEf= zBsn&uVbAJc{$wjgIKJ7~D;KzV1bKPD>+N?~4F|85uqhB^QOHgEN7H(jcoYeE00b2|2&-U-*zg zw5qfjHcaB!<<}Q<+TwDxQR~DdIU7x^YjUumlFMf57Vd3CpGYlB6R4vnlo7z`3SQr( z{eQk-|6^Z;tR4r&MGQbe>A|mff?Jhme$7c5F&866(||lx|5$U3g69Cd*>Ae*m_@d! z1K`O&>kFZ_+TuLva{+*5l#m4K#t=EWAwfA7?>vGw>`qJbeCMRCiEp}qpVdztH9R0N zXVX?^3(H*Jdj^MSqwHfU`z$IC5yuQcR`JKW!BY9ms|(i5lD`%FYZ2A-@b zb3Hp%(WO$$u3}bvm&DpD=(S=O3*nZOc51?XMzkFJQ3ao$qshxz-b+0AwO@bg-GQ@Z z(694A-J;KNpL@@gfR;n(b^%kjxUOWUVkPGpD^c~kAGP}4H=22DeqS2pB3T^F&Vy?B zyG=$UB{PAJ2i8PeG~XyrDWEOiuH2AR!RQ(Aan+h^fkYe_Sh*MpgYa(1BddL4s5baz z)e7=E1CgqwwhDhT>V!T1{jgYv6)-!)WdW;{oL=bQ;3pih9z`20dFMgM8$IZ-gzAl4 zn)6frNZD3Sa`HhnM^ikyXTEyU>-2f{;yF9UCf|+CpBwBiCLwA9zBm}^+L4RT7u`yr z#EX#xz@?p|+9`BUN|#VI-575zmmXf*CrrQ;3S5ty^abmJ*uqn-;7~Tjhe#N6Cqw*X z;L_2c+7M^LSdFrBxHcv&Ix|Dao#`qGm;MDN^E?ZZU>GhSekWn(*+RfiS3zrU_v&DQUl9hBB6^(#^+ zb?4VY*^nQoL8^gt2dUg_J0bh3v1jiF#vhAVUOw$Lr3*^9uKA$jv*6X6kOq?jR!L`- z2|wbpgaI2wIytCbsQTb|SPdXST>`q-e1VABuB$lbOW0R+2Gi|+vtDGzuvktAtqPcF z;5_F$M$ZOs#4i45qnIxRU%CAH=vA<8R>mTIphPR1Qq!^e7jwbp3f1SJW=R#PLYGvD zxmZLuGn6@q@(Bj3*L=EEv{F*A9E{&Ld$pf+S*(>C>C?rf1+Z4EENGnuhmYGUbU@Gd zb=NSPd>peNq>ppBaeA3WZp_MsciWOZGt=q7(zwL6T^q2D^y(hHn75lH&GKu3+BEMF zs)&PIPG-AGArurGrNc`Kt69wDM(GrHpiD&%tP1p7 z39RV*T(Y7yzZ;5lR5}MY%c!t?k(1ngwPfYYjqM>k^5BpNLH`n~{d3#Ug83(f5b6Q- zBIJYidg%8r?QdmW+q}d2cKTZ7Zl(^;b+-Dnf4TfdIdIv4UUu=t%*=3paeh6EU`3wl zHmT|0EIViw;_y!28is=o@KmuTdNB$}f%wZx74UkkfUZe@^z>_IQI(+EWdZjXVnkg= zp2Xw;tg>!sf+qw9x2NxUd>phqozL|z9%}zMdn8vmGZFfrU;OOH?xj|nd!IYLKHW!{ z9}NZUyIYa{D_kUJy=J$L)Xil2k&6+)v4(9q7re2s9!Mcrin7;4)~DW?XhB%&GF$MPZ;0DF5M3bm`JY0PmLwr2URY`$YnC$&MUL(8KjJpRm`r&a8)A}QU)#>s_Dr-tA>1u3HUHV zu-D*vZ+0u*EW>D=&jhKF;JtE1p~}sqiZLvR(s9aUjPo)JL7$qg65)(z9Wjh2Q`_*Z zS}-?ag(A+jif9M#o*}QrqEtZ2&50j=$S3|K4CY@w9Wt`-@f%&nkw}$}CqmMBVTgw? zpIemp5)anQ?7@s^1=Sc#ptyA^GhD)DmbA$Ywe6NVdbC`dwd{igmd$|#jJ;WFf({mV zH4}Y6Nem$?91oDF&D2n?PFgRXkk{fVWZQ^x-6y&E$n+LqEN8DGMi(C)uyi&Hq7Kw zJoD#*eI1Ol0e6bRiKd_q9hg%Ne~T&<&f>bah463;qHEDSzx-TaC+V=`%jHyJieij{ zV{aj-9ZB!$uNASsDkqm0CfVdz=5Fl z;Jw&SPH^7iA@>D*x4+#N3X&jOj=@)S=hBUze8~Jekoo9*?@|WsNCNFBD}FEilaJs% zz)3oa_dVy?!c)NU!4*}r`wLXEKXz|ODkmlUc%|Xfo=ev`A%1V55->*o<5&JQ?f&zp zy-zt|QBhZmP>3Yw?(WCVZ}UHyNJ(A;FY>C$doRGkjKPXX&F3Ba$%H4Qi~}QzJY5a} zSQuyq1##=(e+pv$uixPS0LhTkoqPp0a39d3)2d^;f37bCd4o7ZQgiV+z!Ev56SV86 z`Vt_@+8m4`GPfyF@NqaNvmH%WJob}~5DbB7^MH5w75shZt+?Ng{_M`jDFxV7>jwDP zIF8A7{+&t8&xO2_BmXK)e0&7-!yTT>sz3P%K~vCtZV&a}c5(4u;4ouk_P709zxC#XYgGDeZghpmHG4!5Bs@%N03vFlzm$*@)xcxocBnL z4z2yUC*0RPzyXbpT*8A@!R81AU=^xr0r|`sf9R zL3Y$4Vo5T$R(AHfb91m7u*~_FSHsU51Yjnb>wlgjab}WjBX%5>YCZM_IKlCFjof^< z#Ic`?9q$21cjQ72g>2+l?UJ%a z=xQgw|CJ}hMZ{p$(fz0Sycs$C;KN@t3(VW%xfPxWZDSBMdp1UESnzR`u*Y@s_j@lK zx*M-*El7ypXK-qlY_)fi0*s7B@M$uTT(Q98e42(V-Z=-lg(CiJih0}yQ=Mg;Q18Oq z?XFb77&Gw`m(*Wk)*o_+-)H_+5ChnuJP}0BiV^+Y+dWWI5;_EJJ9~9|vL*b<>Q_ zey@pM2@$sk++>O@`u)di?DfIdR|GWARi$V+wN%yfT5RnX1Cg;USmq2&a=q(Bg$1WL z=6HMuhIlbQiBfI=0D6H|F}=Vt5{3=L5GL=y6u`ik5)Frr6grkO?@g$p+xC+ERHWq2 zcWSp%jl2k-zUHK(`$H+($T|L4F|Tj%IqsILOu%cnPTMkJuaR6>AC93?QttHfOSI7Rr8zgo8oJi;v7s8lw81A z$jF>rUv~UrRk-JKO_z7)Y%Hh$xPO>5md{GrXYXIuH?Xw*bI({#EUJ0C(&=ZzuV)&v zFAOW*05wA#v45?@q{sr_K-(W~iQ1I|qWeOD|2)Bfd#;y1T}8mxE?0?^d^a@zoqzUq zSGm&`C?5&_-MoWe-Ks?F#*o46csh|CN-h3+OWX%76boUgG2H{qIw0zu-$h*3%f3d^ zW&jH~Z2w%M3bl}WHFGDS)ZHmkXFB{M6`ztcr)PL%#Qgj*Lrzh$>{U_ zG2Vd1*%vm&)Mb&K$l;;-s`k_WU4@&SJd`srUCqRivEMtIF!x#@ z0L^@#W)O7Hth5~VlAd;;ZE#w7bYZ%Qb~t*sq{M=C?Q&gieGM=UvcTwY1yb=rqXwJ{ zFw|N1--wM%_3^`l=>zwR48P6X^65MFkMtL--Sf$JzR3B=`{{KHbD2Ljxc zN8Yj5IS3s6b@ZH?Q6-Th)~XSBWGh!rRV1$80W)Y*ESy-?4)#X*}q_<)GnLUgw$TD>5e{Xk*K?fc(NLQ)S% z7pkPtbj&=U{#cHcHS)!p0{AeRkux%{wTX{nud!rY%hqPXy zrm741hD2&okiYKZ-vPiFAeJ*8uD}eMuTXYt%Ze*!cnXX8;sRyK7DFA5wTPK2F zbrZNkz8Go^>hXim_DxkfcPEuMcDor~RS5yEKQ$}cV)d?^8k+;&RYpx8L0b~wonH`8 zsYB2LVCN@FQ&ISIDa8wHwdm_zY_E@$EL%EiL=;O0eI=^~{HR`Fk%EKC!Ww`>uNKy0 z2^4fYGNfTra0Gd~%GhR98VFV-(^KMg|FjsKU@p#(&U*|qgQ&MHRgQQp#r`mwVDkH0S>dEi6yURdM>&5{(TVgafUS^t`*ZXUc_8&#{Yl<#*`nhApecTm<-L`nhSYAp8-6q#; z@{XKyWh=Xq9j<+4z53@J9xRd9Vq%O{;TOPP&-)*&vU=B8j}ry%p_-FQrsr$50l{*X zVa6rE*l|$nX;~%{k~2;`j+~f`Y72V&ya6!r8EFgRKxs}4#fV1cDqYHMkL6UN6Y2rg zvw>VBlg9;J{?+-B&&AH@8ky2>u~}wG?3F7(=QqI8c9Ri%27E~cLK5J^yMTui@ZZYf zOFIRE$%sWzhp|s_O7RTlAcSQnkb}Z=t};l<_eN!T#VHSrs!T`GJy>=G@b>k++?xp{WdP;0pRIa)Q~SpgPSfewO0lz8O&BHyAWlMN)|*hF$YO%U1xk%5i>0Xn$@bc zOR4XHzT_AHaqN=xs%@fBz;-TJ^7ke9P@2YQW~Y5pH%oxQ z7gCzB3o^tBvUYs8J^>#(NLD=G2+^&yob{1BKYI)+F__)+X#qm@AU}1D!%{|&;&S5w zbvS@IU0&$aNfl}p*R&n4peRVSb$!~d2)xVRlFlRRR3zLvT(m1L0arh*SPqIgOo<_M ztMk5b+2!WO*}nl5x4hTU`sm?OyzOG+`P7K!k#gdroIG(+qCbMbd9}4< z{?BX{Kvp@LUda7TcAeTiFi;;n z7yN6`5_eSG`&f0p2Kh*HOQH<>$;cl4TdU-(qsDM0IFZl1XF0eFtA&`dud+pR`7AcN zZ37D8;e>(|(OS6%>Du~XGQFhoQiF2o_c3hzc^&plBJNdz&eZ8c$2JKjHz9>#T-TLFKEgyY*ni)K}6E+J#1j^R=jvNB}HI1>&yk z@tLB5{iU{}tDUJwG@P2ME&eyI9^}Kq?vz0L;O1;V#Q!~f1L$6s+K&PHvK8nQX>%5ZM(f%)NMaqIYpuv*ajy|Qz6rC z*pNv0Kel2HE#jx`UykM)tkMqGdyBJsqtB7TZedanfZB~bd-5Ah2Ou+s!W$^xy#p?o zdd!CJZ%dQ3m*WVbu)u#99vCP93|qC^=QVmD^ysk5hPD<1auh$#6EA^(|GwDnMZ?zj zAdLMj?ECI9g~u@1!{S$WI9R{o2GDQ++LM)1S5?I)wtluvxxKd+K~TVY4+|GY(4qd~ zYv9}E+T|MdGxo4_NcP!7FZhH2tM<@>chheXJe9&BQT>GbZ!Z_)ZsEZk6;dyAZV`yx zF-f0)T%uaf3%JO+=*&DL3Fg4L4V9U6D&zaNfBQeb*}wkk`0i8So*@1p4EVU$)F$bo zAN?~-ZGkuHcv?nrmk5UYms`l*fhp=gzRACRptLOTo>9&gg?G~df{tf|X&~J(L-;my z30K79eIO58tCR;V1CM+Bzkk2~@EH$u@M*Wm@5u^C+%-Z-nWvYsHU3 z(2qG3HGV&u_kHrde?DsW;N=KrX9No%CzrKN`}fg8D}|)O@M01%&wbTJAC&mP;rDZ` z%eEB4mRqF_%Yqg^?h)v~ImB(Uy}vdK~Nj|z9RaBrf-&xxlgZ}+Y+Z}iBG3#PYW`E}+B z2(LQuY+9ZD+k0P|Dsz137;@rYtm@J7I*ax7mFFS& z$L$(S@E1Y-T4Y>oKv6t5V$u`&AnTyWFblHYlPdg%;<9fN!E4?37qB5HY2vEtkn{5Q z(Y(5_?|R)6#jO|idIA#<{j8=9b(pwaTf5qPyKJ-H{d{87SQpKuB>&8)Dhf!l{m`@G zM)c89j3joBl|j%kCaKl|A(5?o(rn(Bpv)1+`2uJrd2?b&c9b0#p^ul8&eTZm4{)+* zb5Kug*7@;}7&N%cu=!#un{W5Uzo0Yer|o|DxT`-)F7m`XkuN8n-2OLy-C#rA$gDVk zDHDABrK# z4C#@XmZzK+LzTs@(7XC2$0$VwS8Q|k=wAOb6WeYb;Q8UMF% z{!}W^Lmr5f9yWDeWp{}hZbB`roKKtr6}V@t%@W6&q_WfTLZ2smy*J@aW2W3sKlal8 z3mAOkIxFvvxXqLEW?R-!dR8~>_~i1{^ygSamFDwkWqQpai?93P%_6s<)=DL?di$hQ@0dR$okEev9z^UgzQ{O!e@ z>TF-hMA(S1k%uX`ao}~LR4xBZ#H|ygsE5T-9MfUB`Z z_1UYmUwuh^4(E@T;4Z7}O!eNEf#&b1jK^}mvH#SZ)JC|yL9XpBsXWnu;NMXqXfIbu zBW#Y=^;3>{RYGFgl&9U|iD@=a#dd0%9yTUM>m)^8Ql#~@jSC((e%6g?y7L_Ea~^3Y z>8q=S5@YWkUWzNSzS9?St{&>KKpV|k9WbdrzMOKYvc6TXf4DwN+8f=cum0rw3)Hzs zThX0m1QYnV+~mvUnNjSk-c|WuJ=iagnDAgkDHyNiXa_#y&Fnjm^~}A_))RL{oeeV! z(tQJ;_pYyZin?5UkNgu(r&N)r@U+}awi*${KVq2WW-08p8E4RNq&mhL$w{}U^5Ey= z*`%a!7#&L`SJ(RSMuW@76kaHTMv3rp%@Z?CF%I8?VC%=&n-4S0t=e?$P{`=0Pb`Bj-)OUd;R2~1XG-6%~m;9;@oaWtSYfEG!G$qy1`$6@k= zf%H;gXvHk<{ah|0^_Q)ngM6IgHme_WLgb0H;Wm&MKc`i4s})5V)O*WBFiGazhY$RG zt9@Bj;>X8JG?#~(w^rW_Q^(G=ff@T#2ljcIiloBExSn8&QhTd+dJWle!X$5S=mZ4hp|Vk_`xB^sN89BpS?`x zwOt$E4_=+G8fttx&%F*O=s+hIjU*4)@pVLjP42;3r^e(L*Sf<-5Qsa5=*1Cn7%oVfW_oH3MoEX!*;rSeWPo6lhsa2(FI3Bj*E=$D~{u) zuFXv9n6S+Dl|X`v4yTnMem9}5p-D8GKIg3ekP-5@pCWsgwaaKwXDR9*}P4By+I9g zB5Y^qP(o#eW;nK5Y1*l*28)ERuM{Upmo@=`hYN5$^$=InyD0|NgxbiVH zy>HseBH-X3!7R$U|2|EidarbHPH4^a>4NA`a(z0guxZ|u2iu&Cw(tKNBXtVhX>VanUQo!=JWzmic1oM;t zuE_MhV|q|X#5Mvsdjvo9|89PA!>YErRwR0RCRFc;dx)mk557Sur@|!-0EW7$W-@s^!49pdMMP z%0Yvb+AKd|-KFol04!dqayWO}ZRq#oijU*O^HxW>wit?C+*yqOLMGlsTET-uJ(@b% zPDei0Z%l@_Yo8b6{qdQQ_&U6hdtV8m`}PB5xh&Bid-Q9-0Q|1(I(Uf2h}ia_-Bru$ z{(+sE=|{rq?;7R^PT*D?c48l<1Ze(hvDS|e{8;H2b0_*~>Jeq8F5P_O6}W*>XoKas z;8BdX&wD}e!23IAA&NjK_J{C#z$AX0>}1Wy#+omd|LV5iMz2}EXOzq(cjKPlVfoH) zKgF452)T#l-UnQ$SY7gdRcfPpH`fn{(_~%pI)?C!*vnBrVxeSa zxJEvCy20o!Usc5RX}7Sk^r1HFI1%6A^QmRqpY7*%h1WGsiN)%5iJ{Btg_gzzBc|Sb3Lv@Wq7DU> z)U&zG6{UJWYx7WFTLX3dn4par@rw;Cf1c~gDNY*L>>nhH7)by#;h(A2)4dkf)-bV8 zlJe*}wgwSxl^OEIa{51Us#M<7)2S_QPOCLZEHZ5A6j2C?ocDw2@Mf!I!9^Je$AL=^FX5*z+a-l4eC5fy=L|JoAA83Aym3;m-wY?^9k!`b4F{LY# zEa=?#SA*A?YN0I6GYx10%vWQ3#v%9OmMHCS;%-WI_vcJTai5K$xK+9yI4sOW zKXHCU6D@8HO*bCYNk{}%*G91f{5FGsv7iIxH^?NhF$*UM6qm}#DNh8>TsMgVYl!b( zQ|!`LN)Ykw>4U-zQ&5)ecmzww^c=L>uEhx!Q`!rp@r8u9nv1k$zWb@RLVHe`V}He$ z>T%ak`sHedKJu2pg>=X&O~fwSb3z2`YP<`Nh%Wi5Z(=53Df>cl_-fG3#>XC(nL!?w zM7Os{YDfT8idw9)GI9>+@)IfRojk3c^jmq{@7HF?KCZIR?`$m1Go$$S$K4T%sdPOk zxE)WDtfj~z$s&2JD>Q4Ez4F#%bka47l;4QjZDeMk+t1k~ZRi4rU_j<+z{Jcm7iIC0 zH6gIw{KV<4pl!}QJa#}(`P#Wsg88pjkJ6Ke>D@aSpZ)RV5QO#v-kz8;O*KQhX7ht~ z_0l2sskb%gB<#XNpa`k*6L9?f3R1}I)|(Sh-WGE-GU+#6g*e+85=y$f$ILrdZky)t z$ou#sue-SB5Y7BLr=t7E%bWz?n$ zr0dlyY))i}KNcCleDV}&bCYV{nT7CrYje?bKfm;#AuTAWqdI)q=>cW-r_h5RRKg;E)y zDaiBi`a3eEJZ~tU-N=ugfJ6M{2KQ_s$J^}Y&R;iq_lgxf0apk? zSF4B>C~S=6#|pp05){)JP*f&d`aH!8K3kj!_Y|PJWSq}2evs|Bc1PsXhvKj;u55@fZruL_2PNHY(y_U^kA_jU@~v; z5`%Um>oQ|f=^_mD$G;qPsF$_|FEc6&aq}ph=T`htqv=pe*B{ml;BoNcW&8PgHhQ}c zVaQ%IZbqnpKa9D${&~(2kvK`WRr5Z0AxUz|E}Gzn_B+588Qjwk6VI@D320tc|3pV} z#;Jks#cbW;!qp;*J3-FAzT?e4GMGq7A@QIm$Yj-!#v6d5K_sI_lPf&Ie|Qo<#Sygv_54zmEOOz@>0_` zm=AFXR})^EWA zZZFUmE5-b;Vo12~g~8by5ZhY#9TqW*_BktLBd;X5dnr@T&1bko&19=5i#Xcc;4U-4%fQm`v5> z?kkWbG+$(X^(J~)O~RTQqw9LFAjJMr&;Dz1H`Rq0pA2H5RXtv`$I%G>X^^px6c0Fd zqh=RFm}K0nbRq%i`qbo<+BW@?Pr^k3N=QR(QRwllup^w<>-!KC=!%yh_ZNyiMxI6j z2!aRH!H!gnHU99`3@5~Jhv)y5PLJrfiAdSG43?A|708A^SQor|iUZY8GJ zz56Ud1=J%^8sLSy^m8gi{_`P*dIp_d%~Hp`y!7!v^NasNt@J9r6TJB=YI|8|xOgp` zP(XqMq==m(WiG4pLev1piATray_Yj_)c=WOe9%Y&km*KpaoukNoo-n48J3ZK`YlY2$w+X;y><*a{W^S1@eMwdpwoO_k)P^F z=B5H#S)Sow3?q)sZAq*%YC+AGC9J=Tf0xTG`k=5T?Wgo?v_i-*>9$3!FLVENmew{p zx4rs$d3`vHhS1{NI4|eJPq(pj7p{4FcJ9TWMj8U!!+1%tW3gEWE2A;+G5-M@L;i(w zjv9NjlP)MGeKQB7Bc5vH3rDe!xtz&km_Zd(%;;AmhQ)7W3-pI12flr6PHB=M99DzT z`*oU=0UJxy^u{1O{A>Ud0>u(_2|}Xv`wFFM^45an=eviNwARwzxa6u7&HF(hKLchR zL;WM2|9I-*!A>|K&fGhadpg$F7iNb^7Zh!WRK@-82DW~l)DY!UoO>1e50k)tKYW7? zOFNEX6!TRCWu8*B*H`idZ|GHRmjuP(X~wEi)3?|3YZXntw$&7P%R?DMe2^`lXyEN; zp9NouEG;c{Lkhnk)R!YivX+DDX7H;NpOPRRJ`Z^?V?r|!zClA>d2Eg=l?I{Y{%lWV zS#39OSSo5d@SyT{Nh4reL)TmQS$7I)&v|v(rOC@>SnpUp3ISHEAacKXv|2Zk~Ya!3#b|t)%{ttM%y=vv`JMtwN%Yuwg z(gu;k9#ChZNNJJ{!-FcN1f}cp)x%!$j&C_j_LQ&XWjhBA6PUhJWP4!HWaCw!c`Z{3 zA&-cl71srQiY)D#kvtB!six)YE_*JWt8+i2+B67?5TNY3I4U*#EI$YI5v!_y@Ce{G zgfl=S*3qb-@|xT2eZeD7G?jR~p9-J7jp7wGZVdlTK#>~pd>s6Qq-;^SDBZ+w*FNBr}N!!oNYrp)nIg0p;3rgKbi-XUvkYTOAT4dn}m zGIC?6-mnM@MeARTB3fx!&k;NUOWw(@0|in~sar9^OL&!C)!%KW4#b2rnO)k1(kq^y zZuB;d;4>BnIvg1;(=NzXFK+W~Zhxws9AixK;ztvN z)t(!C8@wn-fhvsP%Uon)CTatlHVKrs`daCs?7QepZ45jT!k#TgGLC6{C^Wv^YR(KP z*E*N|r^^-_EVp$r- zc!MXH2Mw7DkHZ<=f{{yMLnUBUcjDEk{*S0P>(BWI~t~sv2)B`;e zpEt3~Mi|+5sRpw-Z^tj(3$t*awJ*NE!+uvYwbT4mtyo^Tpa}9yj~zdU>dq@1@ov?- z9LcAZU9szD~SVm3L3es!?$5E6LiF33Sc-Y*&apA;e#V)GbdXNe}8~ z7YMS8A@0kZ8yQ1*ackKc-lj`bPD5$EJ;_I-F^Ccq-Q`D4p%IR)mpGgen$5 zv~K#G*qQXg@l1Nl9Fl7s7e+h|@<17< zfr5D%2OnYnxrr@XeC0B2qqQw-XC-9HeMQ;s2su*#H1Z6-2pfWG`Cls|B=(zwAalQk zHN3lLFDfe!PR$#O!l8V(bpm$t{oOOr1V6NTSZoCgOiY<*cm~Yu)d?A>PGvhWhCZkL zz+MONTch9>L#3{V=~99m^%Pk5=ocef+x%0_3X)7=OnjN8*Rh`frf{31K3^xN6o z_JL@7 zq0S|1P+0;WL~scC1sQ$uum=KT!yrJZaN3`E7iuW*<_UA-oXN;(WwOKef|uX+<>r_ze~s=%C_TuClh~xx|lg_62(+5Be2u z=CLTuMt+~?KZ3&PISiN7uZd{0ev1rgyE=A}545~wYza^_X2gT-g-!kjCvDVz>7SHw z;zu$YwO#wC3L9fT2a1}}=%hE8&F6kL{>BqiZ=3@Ogh!D_^o;r$jX9uY4z z28U)#hgu%`ok}oHmC@k2_v;WGj)f$B$Qj(JW6NLb@YY!xKk(W= zOC-r)i3#`N-m*dFvTRPi96=5gY)5TC`-IyMi3aua9`e=nUB?Ip2RanW_cY3ZWi_qc z?mcm-meWwG2I#EM9PJS?#I29;zwrDbK5#=!sDo6MEowzL3a|Ia?FGV%-i5-4s*%PavDh*QU8*su|A}X97wXbvI&cXxw@hob?e_+8Kxl*zK)T#SIOF zK)wy8!)-EvMpMoNHn|S5FN!Qn;(uyCH&YG&q?mGA=x`tDV`Dn^vea@x@vST0(rlrb z5E(+~bi8P7SL~DIf_k3(Ls&!ARD;yaz)MD}Q*o~y#n}dI6#26*wOBi6@)d(N;WZ&8 z?AtF?wWxBCOV{B|O^T%qc1s3szo8eTsy11B z!@XD~9SuSw)-C}70L1AupiKPX#qUyr5H2)ww#}}D zMQD4}s!j(FrsFXh4T3%r$6bhsF-xCM(3|F4s?0x*gp8f-wR(J;or0E}FS@Wl*?qpX z6Uu#x*b%Eb?QKMxC#S$_M?EGTF<-ue-TUq_nJLO-Je6 zIc|5+N7Zksy5cgHxXAXJX?aM8;NF(IFJ+JB!&-@77A4NR^OJW+&=fTQc!-!UXPIGp zQi4;381f@S2qP-l;a*Z}NSj1SFb zg^{O$ee?OPhBYSi)&`R;-{HPAT-Wxnm(Su5eunk)Re~T;ZbUJM=070>$utc~Ud&e( zc!lk1sZ6}Z?m~)kWOvcW8tw%C#5%~T{nW{;5u~Sq1ch(Tc^M5K{t&Tb?i5xM(|BNY8q^v;bWLQ)QA|!dD36QY84J#}9dzIM!)I{1z$c^oC72F{7g?V*dA6)q)wl zQ8cgxU4+(SYu{PeZM`o2f>T--*5F&r>7ImSG&cNFqV|w6urw5)&9dK7Aq8Y|mW}-l z({Tf0L0?Ahxc3*a7*vOY4Zgq>qxv-k0+>i`SqADd^!TNRaFileUKJr`R4OCP2=t3= zA%Rx?zu(W*9F}_jD5GQ3v<|<+TH)__o#2WO8gWjo-k#BqW>)ver@ zMB?Uw5?9n-k&U|7qO)Sh5hWS_3IVF-f5?D;`)uT&t#;M6F zXD%=Aa9FdeHV-IlmP`yU)|%k##XIJ)&iWxco1Pj#tb@w4jGO;?cZMa);*@ zE2!`8g*J)huznHVcci{x+>NAXsv}9%!*@MtQRc+=dH1^K;7;OBWL9+|_NEy4$>x1vcT2AhZ zSvK5zq+N5+@HHQmWX4PDIbL+XAk~(@ivL2=K4sVCv*`C@PeLumr+@BWg2Bvsm*$H;yhB5K`X9SvT#*NB z>|;6I517`w#QEYc1WBaN0Hdd$2QdL-G-pBTz%KXwrg}-y!p2CHfNytGfs}`8OTaSf zIb->_v<5|&(T7!pM#+ckmee&KSwP^^tRj?H&jFk~y5HeJn~JnEA>*Fc<6eIQ3$Lr=`UiF?PmL5o$cs91nRwO7D*XbRIe&ld z9EY?{@A*+=pFA&0r*EysWwr=jtsUD#S}4D6Ip=rvJ1n7IDN`=|iR1|cVwEH%C^4|5 zp_D0m&HYVeuh#Go9;omE_bA_CZ|}@Nd&(YL%{)?-P41fHpH5b_p`6Y@)2{YxVH5*s zkv{Lh5@@#sDjuT0^Jp{-`GH%hU#s9tFtKYcrT`+pmu*ip{AP6tEUfw!zvX$3epYYU zvvMCyBKc-0TJy`zTBGUC*0uhZ$D#%D!}YEf?wGv zB61bCpg^xlz1AJ9kI0p-tc29zyr|@-l$zJ+2F(ltl24I)Q-FG+cv5K4MRTVS;c6UW zVdmB8Yr&X&G9J9W+8xO$L+ESvd#p5f%$Ww%+0@qpT2M-FQ0kWzNwyJa^;}_mv%iQB zSIxL=3zFkd6l>)&2?sZvFg`+qs+Zm`kxi{F6i-vu`=C>g0nNad2h@p{7Lz;SpGo@m zG`9rc8Edp=0WapQ0ib)m`G*AFJX@ks`IRB|jA|9}DX!$Kw zTg}T~5`-hu)fZbhz0slm77RAE4H~+D_j(d^(+YhJQzM|8j4F5Yq2AnM3Rvb~rC=o2``6=dT_GRl0UoA(Y?E=#ET|QeFzi zR9X!A4qOZw0fdAV`o(x^1N?VAIa8^=D@x91(}x&k&m6e0CQip0eA=Sj^8E9%IPTe$ z_3}vhPO8UAH~}>10z)13Q&D+q@)4LZ%*Mn62@^=SF;x38ioWWe4E|ITA zlmC~;|KAnXD3(vcZLZ?>(LpSk z9PpIQ@nkq(Np1w(2n8qOg|b-Q`Q$hk_aJ5v2~pMC}g}*xTu&;eR!OP)al=Ryf6{h8No$iH0IIl)*m-gGp-j zYaZ?EDt*7#%l*-D;Ed&o(#|jUjHlGQFZ8lM`JTKbt32l{&6WI@l6NL9$t1aY_2s=A zLF<=>uI&f;X8SWW2Q7{O*61v0cZdjdC_5KspI&>1}PZrH&dbaG@471xwQLZqhwVFE{YZnUt5i1-qIuo@1{%13G_)-WZY zrSNF@;?pN$9Z?Bo^9BC-f$dE<6ww^%s9g4UYak|S#Xf2#YfT5UHn`uKG~INkL1{|q_v zfetjuj?)FD*Vjzqjgd%ixo`JPjTB3%x4KH@m!W^^dFza|G0V5+psv$$K=-F)7&A@g zMmX*D?OG@a=o0-`%%QXD2FjtNHD-KCU|bC5(^z;!g5krm@viuYy&KE9e1N_Dxe>4E zjuOwuV!qff&~YwQI8LAXpf`tqr@+@kaxRbMG$E;D#T9SLHFE?I z!p+QLeloW)Rg*P_K#SbozI5KtDEIkdVSHyO9q2;=_J*tskd12CusYwBrjD>Lg@KiG zxeid&5eMg_l7?;c2%4c(gSqKv*@6dE(t-l*FEd?g>F|7+N1F|vdzhCTO(J-VD{Q*qVH>N#Ggm`+(XiId71+P=a@liw8$(bdL2%{*O z6{CeR7=_){OCwDjYn6=)`}(dyD@xx8+nxq@k<#>J$yg8_Je-)>Dil$#Ghv2RRerkn zd0a+TaRjkBoTPDwP4NLRlQiC@TNM&j7Z2eGr+fn0$Rv6Bd5MlM7nFhEbXngbhSl(I zeT?Y1_}*M)H!p)CG@aYk<$Hf#!Fs|$oi`ALA&elB-WGN>A2mG%ijHltKELCG`iaI* zxu53T@7;c*KZFb0)2rM00bVd6t_3)PZD$!1zx0Yf>voI)5}#_T`@o@2gqEQSPN&-B zGT7eH6nZaVW$AyzcJ2Yu8ck4+%yB}^2mB_4o z?8XPfh~2o2>y_i4>)$l0*VMMfjTVHI#Rr>#6ud<`REtL#xnq9>@6Wk7)Y*3;Fevmh zQ0CCS>an}-vz2e7n}S`8N@lnsaWu#kHNyl+86? zpPk^|51_nYO5f8ZTKXU#_o^ImC%w>gN713 zSe@K$_sA|k918vgfNY6;#=P6w!3!TUp3ssZ^ndIe%fjZ7l6*ov?{lZdZFAQlo#C>* zgZ*r=o!i`eIPU#Yq%+GG;@oLsH#5MBW*a%+$$hx z1v(6LTz7?GsT@zLzm|7J6Su5@jRgMKbZkkO z!3o}c@E`u=UcVRl|4p+b)TCT&p#r*n#CC=Lv*Z$bQ$zXT&jye*KK_T~GLRe<=nys% z)IDsz(zRBxS~^~XBSR^uK<`*^ZhB9D!*X8wWOJ*2zQVkpcs5{6GU`j2^Y!yy%}*jp ze~8tO7Fd^K!g5k!=^Ce0CS zG}MdQ7f~ed)6!6QETp zmMSa7E5$N;KFdWppWScqm>LN=Un}s7{veo&lKXp!akav`_noSj?iB8hwMDa4_`mVI z&kQ3u!ogqF9E*7RJhr~@t@*9VaCsq%wTyVap%`kh2A;_qR6)}oe_5O3!2sCuA&jeL z42}nMAn{;GX-S%YSnelTpsIGP3V!z7&|#vUH-Fgcu+!7v+Ql1dC(vHu@6Q5NNOV+^ z55q3X-yDtjO2aNC1#J0sn){c|G{5fEo)5LKGj)}?A0SmS?l4sHt^m#;r=B(>DnjmR zR#SI%7+$na$t-ds%-@79|BUTtJMQ|)HUHgP&nol1;wzk9t>uvp%p8q2V4^NYo0_E( zA8ar55B1(vwUm**7O3+9!{5YL8BW=KmoP&`$F$-YKnl<0B{h-COtFu?k9yW1I;118 zF=r{zV0ZYzv)nALQu>OFOtHjVA?NF6F7D!YZ9z44_>ldZ^CZr>dE32?ijIYf~4OX@pf(C-v{;NlAK9Kb{B%G`{A$KG}KaW($(I0eN^o|8buJ36X`_d*7 zdw14$10;-^!gc0+1_!wO((dY23VWKvE_bwW%}QQj>3jy5+PYqGb;(;7digkRHch0C z%=MGZo>0SEGCyc$TtVxH<@F}!rFXQwwD)Jkgx-2RC;jF?z2rWmXJ^)EReZy=vkmg# z@B=a7of+@K);#7_VliOUD48TxiLq_^+_bB22bm#0cvJEccwP`9q42)81qXALC{~Ox?y5yUuL4-u_cZs#N8P(K+kB4g?icrjo50~tx($L zmuyPZOAf~h#$0LqRb*Jn1bMY|r6A#_Q=WxOvIG9-kT~tC^-kzzVUxZVLl*|)0!5EG ze;#rJy_Vw)s9#$cO_wMFg&CdH(-D+^g&ev|IG8BVD>0waUQ2g3s3+fsNut2tVmkot zzc-=gFy&vwZR#CD8eR8Hs&w-%Lc(WDnW;csPzH_Gy(NHnW&-{hx~_mg%#L6+#jURN zSkj6NrtV3SZ?mtg6A{kLUvg2Ecvyij^^&Gi@~w{pV4XxmIdSPQ++c++Z0k4!|d3blQa~$nJ4N{ zh4ImcoNjtO>VhQWIzL%G#UiS==% zPSQm?@7F9Dh2GgvUFOk4^lf>ngZKiH5AFMBjU26cI59FGcuH({7~{Gm(!^_2WxxL# zIIgXb^wT+mF$WXxCRl9Ckl#iFy_PTS?}r7`=`#HzF;4DohUj$LeaHoFZw}R1bqRBt zji$ojZKg=SPmy1GM2%fYJb+PxYnN<%)GpNQ9=b8!)#kaQSw*XaBam0m%k(*^kI(>O znm#dNnDl1O6K#_*e6TNsSe@W0w%?HW+g9fTe5;dA{*7<;86x9L&oi+!(RYMqjmTWz z{g@U$Uwdx64fjrs=-Ufz@{{eaYzi^AOD<^8z=P?s$*nUS&63PAvGzNG*bByiy>v?# zCqEs*ob$oPKLl&Hjv@hnKc&k5MeiT`&(fnb((gS%8oqP3(h>P%k183qu613|Cc7kg zs#r@&q0mo1;BT8VV0VMWk-$;B7k6}UzoxL@Hk)ent$O_}53m(Ubp;G16FN<)4}d*d zigAFdyJJCYKD2iq&KO~B^jMQU!XC?DJc*x$d%V>&3%*l|yph}+A96I@HH+lJFVC~M zl4jn+jFJw_?S~9p7ID7CII*|88%ItHTZ+hj=GSD**o+J=$g;gMO8++--Cz}eGG4lr zuvV|+Dc6A2(cIRx%WTTGXWM-967&iT>XtrD3)h~cym zscX}0b7ynj{~7&pAUy(m`$es&_$zuqjQ^%&$0ANbXq)Lh`17M?gICoVBlVXc4+fjD z&s-ar&LPh_JKZ4S1h|kOCOy&q>k@861`yof1u66s@(SPo$2b3H0EWO`&W+Y{$U1ja zGyv^VYzdubvl+BLtGnd4F&(%zQKQwJCdLmP$cfID3mXrb*6jr3aUI7v>^zvxh`!~i z$z@oY`6GdT8;kAK;@cDU!fxiOx5upC2YNR@9%Exzb$M@M-juB;EGl_FvjEFP{M0+^BP};N82e=H_X3LRt z=W9{I_)mUy^Q&|<^_A|wm$3i(z9bleZ*)uDQIZX})Y6Y=9=tBDF#lDwSf`aGriY&R zolAh=iRVuccKSU!PXE9oN;zdO<^o->$%@Z$O})pa%sq?lY}rZBW34WREN`)mHLVB4 za%xOCcq7PsWC5y$NFWF++rjEONC~Vuq7{C(g>^_nIO#0_7{^#Zsn`{gH+T#8{h?{X z-zdd@ePv+3WDHqASAVHEL9bI!R08#mna$+b$II_IXwi-GX_UwM?2TFVXBmmr!2z-w zhe`EIR*J?$MX%izXo7%4|06-WQO;eRTy!n>T-ps;FVFP`%o==_7#P?!a=fCJ%S+@t z0mzKH;BP*=O{j;<}iW4y4;_|rH0%B0RxiAMt&mw%7@^tYP* zUq6C`H1IivYb2eBCV(!#`dsQ9xhu@5S~pq1_R@2DwouxH<$=6qw~I`ow~a(0@mhIm zt34#KdeCPo$pZGb*YiB2zPf*j0#XjJVI8D=_MgB}6U9N}{Pv7ssE#%Nod_9iJI6;> zxfhuT_A6d^uj17jB#|X;O#_TZWyA%n+-bBjnjnj>x4~`IWGlDet5J!e2$z0+;(!?j zgaYk8+O6;laULU%Px%3IUyOjQZpZGbkZbP7!S z&wn;*cpv$iNX94=(bguvMa#*VF#=^hM||c*uFA2pqYmYv^kGCt4?skW*mvhW%_ zNQht*s~tLzH_9^A0Rp}DsO63XKkhk{)M74~Gng_MA~jm4H1f-D<8a*#Z2+(bGGS+q z*%Daa=vgmc#6CR5DM|+lu~V%OAceQ?S#-1mG7gJhzgwauyanl7e}u%C55p>QtYF5P zWj>xFPDigFIQD67&G+!I%6}*=7P9JQSnjJxcwjrO4FHAgQhETO4v1Fp4j>|J`5IX|#%SgOB8OyENukOkR#`AA|w~wHz>i zxrdtKDAdK>;F?n70ti_EJ?wXWLH)^-;PVvoJ;esOGHiT!#t!rFV=)Y!LWqn!}p%b1v;%m$#z-wJ0xfDovmsM%YLqj&lUQqE=XW4t3 z>UJO+&@?D!G~&!Vm-;kw+uP1EIRYPG0g$==={k6~7x|+~khQ-6)Jl#|jWgUHgC66d z=1_~Kpch>6G&a7QtNp9Lzd%RnSK{4Z`-ToZzK&8;R`cxz711*hL@)bu;=cu-SNIl0 zw22?fp}L3%?7;@_? zW>A@^@tDc>;85f&tFMzq<2YobWW> zf8;93ZXkL@@}9#JV5WKSb@!fE>2*4^cdKMj>SNvUm#*`(~Mo-VjI^rz5K`Im6@9RKiewDtoDhe@b58Tp1XC#2eh> z^O(*1Qk$MTGE9=YF;@J>?NT%ARGyEnWCjF(^8#8NwoMs0_~eB6yH&n{X-Z zA3X>k_I+FZHH^*r&)PjxH*GzO0Nrf_w8PZ|i^&>*`)m0TG)&0YKp%ZueU zDY%IE$6>y?U&U_Y0Yt?2#a&M!h5yueX<>Xm!9dAJ8BQ>xfNxkoNEW|(`sbV>`T$Po zaS#j`$9()FwJ9mZ4IejRDc(5d|BKWzbt7T#t-XI@xw zZQ%6`hmMelOg;TsQ>EkGXV0e&vrp2(c*SR+V5fX@`sYZWO#%8LNY;oCV=BOpS)Q(= zLVu!X#(LnQM&f4OuVj9u$DdZXvy0WAh-3W?AdXX1JF9C8fMYJ2Q{zR*6|Uc_cHQ=z zR3-R3)NB3~{5N1z|D!5Ro8aSXfGMe|3o~NHVi=>^)R+_iL}rfp<_pb2cl!{k8#4Lw zCwqv#a^FSwBoVW>k3udB^d3((`I{_sVO4ZX47sej(?44GWh)Hd*3Z@LO4cm#5ed20 zC;6TtWBI;cv}3J%jJW3(;plO@PT|}t%s>f%q0YU7YMnDoAm;+H6u5D|5BDPfM7z+W zgn+oPg(?a~3__TAz4EU*Oyq>vjh1R$ zWR|>UZNe<>!&znP&&Q$4Fw!=MN|Sb&YBUpTd`vU!h?qr&2#O0@efy0ZLc-lh<{lB%VULTREpc1F>?hR zjRB!%jzY}ma?g&d&}UVlm3CvA{e@jf&-}&MQ^&tgsfBg^q9iFZA~GQo?gQ5 z=;@0e?@bYsIg^RAl3sIBkHYDAbKINVxu|XdQ49Xj7XDW$?Ozu9e-xnq`U@nv1m7+% zF-iKo_K~s(?L4th2Z%duXmt!Uzy$=LAd0-)pC#*EXCWWK5GVVNGNh*g8~woP1)zeA z1+k|*%mpALe}ex>NR zT@?znp*Ja+C8Ogy5|mn%ukSkBf@VRLJ@(?}=H^ENBC;o7td>pYH3{6k6c7s7vbn8j zM~gum5I*&rOTx_J>O<9#_JeKOTQMv0d_%go`T3EPX#lk>j4T%vTl4{lDQ~b&+%A~2 zRfKA?u{lh9@k+xNhWsqNwtgrmM2kbO@I6)k-4d3Uut`ZYnFFN7Q8NX5nu^4~qKj!2 zybgHxPCvY7KdyEUP#-{P2lk0m%&>6uZ=yjo_{JvmP%>Dl(`xhTG!?ES~#-T%bSKR>-KV9xyU^xqxm6 zG-&p|-+>%)qe>kE=2lGeRr({wqSEt=OrSHyEG_JQrNA)j%rb+zh$E^Pftt?&N` z`Q+RGq=ALlsaz$igPj32wyf&vj@i3sH+&AZ6=Pb%b!b)|l$+wtUl;WG0+8%-3!)oT z9SyQ%30 zD6w*n%@@BuN~9P!LVAp$P=a9+!D@h34*<3E3e+;9&=Ovw1jC@Es4*}4tkSyN4C`)? z!7#;g!Kh4=?O~#KZ)TtuptzfDmS^_m_O7P>i_(-OHa<~d3h}7p^Via+{;&gRs zZ%$anT0-`4hns3rNpHfq$*#t-&1E65N4`G)tAhyb>T+Wfqt?%moWrPPo;P6i6SQ$0>IRRVE`)bYd7nP@MS+?odx}#&k|7${iDl1x-E=OO ztBgL?=STRB8gJo!@nyEq)w|^aokCYgOu^a8UQ6r(;oqqPhz(uBAl}~aNmj!8M>;9S zIovNkl~*Kz3K=)BS^YD%_j~FkfkOa{K-{!^hEX?U-~Cm0X(_khR!&uLnEY}>F7)a^ zT;XC@QlXH3rFEI>%7nf;DFf;S_p_qJMJbsyN+j5e>PZ!0op0BRQj>)8fx69|l%}oFjhBZPuA{gkQlzUZ z>;Z`Z`|gTA7qZqpj$MULthg72c1rH`1pX^W9>WCN>2i7t_S=W=Zm$+9BHg4;4DXpg zS$Dm_h?un^d;J<1(;Hdsf`8(_JP`OYFP!ND_e+?5h3?}I3^#xpeoW_nI-ySV;jV=5 z3XfLaF=tr9?cuWy5(8Upgtd29{ZDLf1Cqt)t`tE4;x@X&ng?&{XVvfo=y^N|*7qkS;^Y+<+C z>d12YT=4mw1X1qyjHBj3h+#71=)!bXbHCi1MKyq}og!_q$*ofeW$`uhlxo2S3Uth0 zA<@OV{J5C#za8=UA3}R7MM9a|z4j43gelu|zj(L(u_`?d|MUfVuo7)(P{C2EhGwoJ zl-ryCBOdOZ+tq9yEDb58z){+{%V=(8LpkE|uq#}*@B1IfRqrnKnSn-Gg87pSV>+MR z-1NmYwc_!rmXQ%X=ebU{VN_QwN!V3B%}4Kg&Vl(E9KUvpjW&x^secp8+?w692Ft2S z>pn%VJ@tosZz*=T*?YsuW_gnj^k{_;$?a1aBgH)Duo!Q)UeqtAY)8C{6SN)7&l-Ev zp$BjS?4}nNIaY;=5&)MeG~n2##t-*aasiZRZCw(=ozD^l>4Sj&`FRVMQ|lnebzYMN zvJlr^Dz`&^24Kcu3C3&iNyrtEa%7;yrti(Mip9Yh6b1e8ui$r-Y!I|KAULwoFY`$P z@%9j0a$LXc#T!ttwaef&aEBV?#qTT)89WYW-~!Ys754Ai$JLmmbZ=}5;E`1kK30z0 z+WDL#B_=Tvb?#%kG&=cZ7qp%SqQNBHFTfzI6L7?{JXE;I13=6+J`NTb$?IX$#jN09 zir55ZMu2=nMiXsf)m4c=V=OvyjOzC8S@%jqKYd@c>Pd|&pYK4Rnvt_R|4?bs;ztqf z%YaQg`ZX!FBJkX<%*vUFF()&hyYNKyG@pqtPWSx26TTeFu5n!()#zFLUvL!8ne>b$ z2J7TwWoGY;1Z+C}54LhYFiRP?`U$Bv9&RZuBkK}a)>3&O4vZU*TNZ&)exV~$OfWQm zLZJ;)pIHEgd--60pu&njNx~|^!<(a*rjn7zjPlwYb-%*{tK}&eY_L$T2ab$DA#z`C zFW5|(D7?Ff+C55d!2Vn_@sHExH5gwo{q}_Ba>j!L?}mtq=M}~q>lt+r-?@q&o1ZO8 zwDTzr$ef44utBFs{YodtSjXkepl*6WyI3_TtoB<a~*6g#(iXc41Cyq`EXfE0j92GLBPr-idfjDAd-0o1UTxd zCH7AQxSk^LIjQS9vO>?MprAjIEZ=63i2Q17o|>-(VlT~k?x!i^k8}Z-&pB!t#<1-n zJ&HMe&HHIzwx%`?GTTa#1S4oA@iue5;JQB9U|=(HV91YMtLQP`FU>k^I0!D7+FcnM z!E)=Bq|WsusCB1H@N{Ssy{fFS?z{ObiM7s{ai~xVHz@TX9QO&<7QvhV*o(#qW}8?mP8+wvOje`H!T^6 z<8!IUZI@PL-yBj2g+#r(Q8;bLTtDjz>aC2cQn`itW_zk$?Apck5IUto>s2{^_H zoa7y-e({R#2aMgbx-jEUSw#Rb0(s0`?qv3RwfMkad1%85yQc#(4~db> zmm^ljtTIMUBqf=)1hKXtKo+#0%%L@5SR?%AzmeG5mJm~R@1chz$!pC3&}psGC;xYu z{J`)1tRWz#j;?a?&%Vf@qU+pVmWs_3*HAa}v+DJkZ5~8g=`98Cou~NDk83(=D zFu%^*Zo<;^q9azL#IRt2zQC!!;0^~D&$_O47 z4uWN}W;#jYYNUIeWlz$qgY{T{ZfHaVSw>eGHDNiPBKGRHirfF4uj6m%N}^;51=mEg z{V#INN9E1jEq^vWLExzke|4N`7YuezuLX-KV9*jsQpeSCxuF6*a`as1TWLYS)tshc z!hm@EZy(-S!talsw@eYor8?hMc5fCeuaka+HZ0KQ7M4pPb+y7cp2Nyd-^Me;#@Aaj zQJ+R8Zw1b$Tr}_RRQ86G8EUYLaz?5Ga@Y^bfN?#ES2|Oy;!P6sX`VL*F3V*P+ZCF} z+M7nRQWSEAKp${xi*+pNUpvinF5#c^!}dbqJHS(<3k&W7v`m(O2e{kLbm8A6*}+Sv zGyF^-Iu++v@q3xX)#{C??act`c)SuK)gXdU)=Tv-1e{-7WFyL8yQm2p^P<6>q6gNmkMh>L8K2Z`>jUPc1*c%Zl&K&}`i z*Mrhdqk&@@EDQw5jP9q){Z&oJ{h3q|N3MbHYZ7w;ddlDG3#jy-(u$q%aT$!R8gr_- zqr{4c&->2u9qgoyNt&etm^!QL66F6bUnc$?MPyib&LN@A6Ta)Uk7;IuwTj2j*NO=iW)QJ5f1*_Xzz9R4o1e?DNNQA$QpZ(| zq!){vBbyczeo)M+m>+UMV!Yn0N%2aAJI0zr(&vGOzuow!COB%qv+qD>Gw7y+?K*KC zTQ8%X#)9mbz|yOCPMYl`;Z-Rr3JUHej8aMp?h$Ft=6M1qoe~4=w{CIXbd3G2NK@Wy zeF{xFOW1ucun63;Wg?AXScDTB%AD!O$PN+qt&!IW|+EqNFy#R6ycy6 z*T4l_`LBk_{9z(RMa90k8e7*<=%BsK%sF&ZckxgA@1x{;4j(Ck zQffLEo4J}+I+*neWyZdHfl=p%;flbuxmYv0WJ7#5bnl*h)3x| z2gG>S-$rHgWj2=P@Y0g@hm{Hg7+3Pi-g-Z|-+kxQALbZu)c z+wM=^&o*v+)jccWbvuJg%o9<&Q4SP3bM-;!-DY`eH|%!I#OyI<1kyYub+T7&eE6yn z0qKn4y>jWJL0g0Z<;CO2b$g6^uk!{9O6^DPQt#El8u>zb=em72US)e-O!@s5HZTsO zcwLv4Ce=t&3lUpAw(1o^qaLaXY?Z5?LHcxhb)+gzCkWrz?&zR(fe~#}f~tbeJz8KS z8UiSs5yK9N($#U9a;FF@s5UsL3ZyZPK*PuGR!kIE)*WkBL5?l(_M+p8n0yPlTusN? zsP_~4H0kPt#8tdOTYNOXP3DTJ`Bb9!^#E~TE3j8+QQ++4L|3d#=a)i_+C9)}CCx4S%z;^lZ)XVzrRXv`D3$W3m z5h;_o^IfPPo4MTs6jdD^YZCV*|98HPxVFn!*=;R!Qx0d(lj$wki){RsTj1_Q3Mt{t z6Ll}!{uIlTfEj#ARAe7{mpZ|wy=T>&pqD*1Z8%T+w}1c2nq2^<|fj+;j0C%b8(5DTp!w*VBdxku2?P7-Kkzp;VLy)^0owe*(zRao})OR3S}qL3lkYCCeP54hKYLx zQ=gamcwQUSYiVmDk9Zi*9OxpO#)}@C87iGS}f7kaW$$cSG^-9 z<4wuXXU3YxbAwACGo_6z^n$D`-k){IH!_A6I^@wT9eXeO?J~Igr17cn>uneEI|u(R z6hilFee%CE!0F~u_s?j;K;-BfTtGYfRb`{Q%oMZg!4L|OZ&{Ca(9r>opl_OTp(bm~ zRDyoBe(4B}Q_F)5?yu_=cw}*gFAe=@xY{XY3J@cj92!I+sNcJGVA|ECM=6#Q?S>1+ zNU7I2TQrn7ft-XSNB-;i8hhI|sy{LEj7x&v3XERe9~6<_077SjDp1S@f>?O5LiI(&|9H~Y&B@TzWy!A}{2l!O?J=~E`f8nT zcX)f=wZ*B=DC~rb)*Eafd`Kd$PQ}AJRm%c_(fT|pg1$z-Br)jpMSsPD!lu^#8NdzK&M)&%@X2~V(1hN+%i)#* zf8JopH<>Bmk8)q9k<1GyDSE0{ykd0QWew~3Pcg10*xN`~nXo~?Bb#`?t}IlF9k!-d)z&ISNXu zW!BOc1FE#xw%>zIezl*)8WPHtC}e~kt6DGJl6%ZqD}8vFXWRck)B+)m>0Gxe@a|y} z1(OLQW}ptIENkMY@45BJqXcGL^$aEEzOiDE{m2P0PAh(rZ-PSF!nM*w_3Cg<2WT;g zooU(hvc2hM%oIp4s!&|O<(X^!!(LwaBXI#Fx{Y@Eb;#X>f`;u#wLRLO@quWS6d|bR z_EiUI>_>TKorYSsDwoBJ;S2(bO7XXc@-MLtR_beEP+;v+3v@q*hl>$|g;r`qFcTBv z)bGT=|VFN1<~_ z4f}C;-!!esPG{ZoZv;sKtA@T+TaO-lmAC+7JEr!RWy%QnlOXJ3po2el)_9K^f8>Lm z?6Ebz2tizfMHux~ddY~fzpP4%;86ZY)(Hnnsjc_y%KMtz3tc*8*>YNxI)(I(&V{Z( zngAECc7?8e^%f>ZO*|`}H@WcX=5J#&VURW+D`O|6L08zw+&UKopHq zd*^-q(ocAxgO&=m>#o@Yi}u)&pEVt;730jh6maJ$=!%3MN5+GI<|6wM z5|h;EkdH`hYfI27jOTU3AR&d%zXdH^W(K9uRszAF_6AtaKM2+EMAfce5-tUTYc;NQ zg^t5**Cib*EW2DS!s$Z8!gVg?5n#fL4ZL-h8s~?*50~>Y9(WH&a_g7pB=q?+dGu1e z&I9oI7xCoVdNED?K}6&a?8hHq>Sf+2?SSfUzVtDHvCAvqY{r!Sx>1PQ|DQtx_nBbq zr2uQ(t9^TcsVK$42IYws@IT6;cd%ZeSz@|p{@&OdN6~QSRpxlL8VbQ7=!ggyW=-8@gX^b94TI`x+vYm%1=E_DZ;O zD<$*Yen#7KNNRQ;Xk*XLkd|+{W}Uk|(tAM-U-b+{noas>?ZOJzYr6jzUlyq1Q(zdi zU0q{EU9DjU=}PR6pa53Sb&$N(B6m#c6(;e7(<43~F*XLVPl@M@r&q zK>F+y^|Ui*{XsPkxBQBqm0;{%uRYVC?ttJoyKOGboYKRc3=Ew zQdCuqu1QEuy}jMUR>S&98}4c<_Tg03i0RwZPs2TAywa)g_MXhdp%qcyxEIF8^#4SplXmniV9V$l1wgcYtx)Z$DvPZa!I?uho%4?V- z?%97aIB&Pq5LA)Yc>ZAuW&S{`_gxk*p~O<>U>##Fk?N4IfZy*Q1^yVS4kGrh49 zj4R{0h03L3l8vb#?kJHOF6slJNLS;~CvS+*5-NRz7!;-J|H{`T@BBeLKmA;$eAq#3 z4ZMOIcm?V8I?&t*ZKqHDK4?n6Bq#&8()+$R&4T&1+d@AX85whJz}&_FuTY`Wr`EGK z?g{S@G(Mc@T@RqCs0hFvj}A+QIRcD5lZ&@FIO;$d%_SAspNWqep*%W2FMc{zEkT%^ z$er=Y;FNdd+vON5jqjpi@e~6IQ6=_qlKdHD^75Yx9lb=~xMhm%o=a4>eDvs*<{ETy z{^=IQ&lf?`!epcCP;>1ow1aEByO5h;e@See$yv$hW9V)cUis(zf7Y?-f6S=8>K z|0tG_y)BpjMA^KT+XYco4!S@NiGm&kjo(J6yE>Ig2u;5Fnb_OvJyFXPyK&>;B~NIt zeb?ye8@p-pd*E(PtvEk^v1Jz3o4SQU;QBVwj6+8mhH5UOguA#{!l|? zdj(W^6fFD28)t@;pS^u~iNyOX)}XW)d3xaqkoF*NM~X@>t%)!LX~voZ}dq5 z@6ePsks`+JPhUABd7W_P8+xaKk^s5vLZ;6@RciC|s^tyB?}lHG1?_CBl}@c>EL7

`E>m)`WFK4(3Un)BF0gF@{X`GS!k^$dIDq~Tx3?P@!`Pz^nkM@ zEUy&LVzK4Ls3)g?$tV{hXJ?jFX$Vzgb>rCq7Uf@8NLZ#>pZiOQ zr(U`^?Y&BWo8me5+nWJjUlOjZcfsLer?wISU&mOZVuFx_wLKf)dF&F+Gp_Py0xyt_ zPNmzU9-KPpIzwQUC+$uNpva7rq0Fu4{xR^Xjz73!mZ)beb%b@Ku6cg8-DQqX2NwnNfD@M^*sFeN zP)Bj>JIFna~^&#(D^fB$t$AJ=4zs%a|_mZ7&j~!6njWAJE zP}K-^Nlc9`nwz_oR0?r+F277oedW^i+)>Rp^{vkMy2ZcWyOLJDN`hf=;Y2l$1xaI? zrU=!ZK8T(AaNBs*&S&8^yVb!N!Zpkg+`V82K*$E7CqTazVANZj(pGm6eHWQd)rYYg zW*mU#2ll-5{Z+PitMyjc?RTr*rY2VG&zsudRi6exVdBXvK!L(`daEcLC;jDZx?0uL zbCaIX#h%SThp7##Qj=%8JqZID{Dr>yQa*%h5G35)>JKC`>(bBAUKi{1wSDd^zeWbe zr9BG2w_9?StsimLY%{V)miZm0%4F9+_{xLaxvzanui%JiUI)~++?FTwH)(%l_z~pEKiu2F6&!5)_qQ?o=71Ffi&t0Q-k=f%eypt62=KR`vS}gB;!X0Jo0IWExcZs^ zXCNAklPxW%Rxh>F2@E#*OU3b(=`Ubee2OOS5dovgPg=9(B*q@9iMQ z7A@}pR3T1$YJ*R_k_GJx^7Dff6_p3~dnC0o^3rt;?NUFhq-3kt8)md^i-LY*U*GFb zH^|4ldAmsou2YpZ*(1ie{zRNIq;;)q23X_Aye}w%1&qvZUS>Pi;U_!PI>pb1R%_yK z>t{Fii02)S3~RxRB^uC4ncLC1N>z4a&NTeShE+Dk&=;z!SOry8_d*4jLA5T}i5Zfk zHO{YfTjc~HdEV-w+bU9VRBxyxmsOtnf%o2RHU^bJ6l7vy*=)q1@rbsiwWVNdKB3Sf zw3njOZc>2u)0YgDh@goA(ge8-l$GVA7su37Zj72;^!-1pnd ze`{t?_M6QZEAsLTE!D<9%6y0gDb-hva5P8D!Bps#Mb4H3e~Krn3eh!I#~9YX0zPtX zxcQA!W+-O@8MvaxW@bAdkuNq_EldVoUP4P{Hc>zKlRrm%K^@F}4(z5cbS4#+RHu;` zARdAZ13j>bvIYh482MOqof??HYgw zznDd6t;ArLiv#7PKP1&=s05Xsys@$|)4V&r>NtvUu-$v`^7pMsJ=ixY?5rVAb0C>KY9w{M@Ls~AwC$p^$tFIgQ zU13SM57$ih?vD?&F(mp?YoXd!**QpZZv2&z8TA8Pl)i&V`I|QZCj}P)aya~SN#ok3 zpPhG{ExF##rr)?S_D*;bENLtiwELxqtuQ&Ic(eKR!Jtk5mwv^M$FK7y+% z=?@fW_@FExNpq>Rp8P&$Mvs#6PH{)tT~zQAR%+w1fCz``DvR9c;@Q(=f6Ohbnf zMS|Q=nZI?Wf;p=*u8wc5l9J{R%ZT>o%W5O;rV7%$Fq~ZdiSl4Gez}Gip$KV+_8MFsSOw{nJJNPJ2zyFoiW=h zg>9Hw_XSDu8Bcb58;OjM2) zKS#Tv3QM*olJEMyJ=|r^j1YpnlIg^NufkW%hDaF^Jq1&GP|uEd}kYz4; zZyUw6Ga{JR-9sWGoEepcv4^WAdg&!1Gls|9Fz)`uh3 zNAHSk`xM`^Xcx}f;F+)m(-y6*sMVZ^RAW# zwu8TEkXH4LJ@pSbGj+V*PM^GZ;F_r0Dz~G#r0>oQF+2ahz_l$ zi;OjRSHtbb3Wij_Vn4Pq#gHoT8?zP zKSI3rKgtimrnYPMlD!t97q`2=Kprfh%IE}aa*~DF!78WI_a!|sZ{a1v5@rbZdm#vS z6s-&Be8F+IAqDQ$wo?zwEM5#%=ur+e!5df2*Ac_#YZrwB(b=k*2yJyp{#=9O}9MfH&#D-K$+eMH0I1PvQqHcNg2GxC`G)?VmtICq>KD9>)COeJP z==3`?N_lkdrYcSa{%w!sZ3DFAyw^sZ{PMil`sCAI9T+)ekW#a+j4h_S$s!kIK%70) z4^8(SF@iurA0pk;*uyk)QdPjQYDH(L(cZhtslXe-AMTi0r(dz)Ah)5@1l!puqwYTP z`;2Zl@sn8AMmHj%)Ar|(Ms=*vZ^&t#VW2>(ZZ;*dnfemdW_wwc z>WS=M&4aqr*Jw#zzYFLpeCsTvU-sFv@p)0o%RmP#f#C6OLP;Ik3xtVsvr;&1VoIid znmC@nECQ<9tqQ4XBj&ocr2E5RPCIWB__BhL{LhEGC0ZcIaD7wTPDhtik{{@|okK2qr<-k0rD&n7K8yLcrKqj7HGE|z zJo>9^Xs<`TG~A@K(&ZHD!YaZg$Ms7=Q6wH@=2zJM8W4Qg5-)zte0{X+bR%LU=Cpy& z3E#=$iuB7C*S=VO4RoL`S=;kRB3%!96W-!O?~yu5Fn!Ngw?@WM%8<9-l!2bK9j?#4 zDE4p_;EmPld}%nJBbp@P4R@%+U39aaGCr4PGrV9ntfZizQMEFJ+y*)27ZmjS=z`_; z)#6Iqk&C$fX65;=lpd7h@hvv?l^zQED~vS7m)Vp!i$&}_c3Ow+cM*=qJg#ak1j8BO zCx*q(;F<%LLLS3q#K4u;8Z(J%^EVwu8|Zt3&O_~q6y?%qz|XU(p@5LvMa z-@QSTd(>$3WJ8^$h${On<2+TyYS@^|ieHM5qi%;TFLDEOlVh5ZntI!D0XW|AVRr?!H|R%;)l8R`32T)u zEx{d5cS|BBENm^5`Zq6%7nA66%MRouME^xqrc3$yZpi>PUH9N zANc%uf*h_YO!qtF!W?e*U=ET|21s^Cg|%*R14XS zE=|R5#~SWmK_f~&ZdK=YpFozR+m7!g@aUENbtR2=rjAoGmsFv6zm-)g6W z$am%wsCU;~dh#(bzJqXk`ks0TZ^<>?HNWj}Ay<2xt%Y6F{%;rGtzR6qz0e>BNm5ez zp-fX&u&Qk&b@ISuF%6P_XMPcR<_wvS!lQ@UYMFJV%GYp##I+(14+^{-C%jeT&?Jzx zU#VnHrmk?}U1P7FJ?(CAXZ zEJ>28`t|tO-WHq3(d%0;1Bv|&vS`6mb=U$cp0f0wab|JNG8C&TqKTEp;6tKDGkFZs zQ2*0go8cnpC;3S0$)k*_7cDSu(0G&dIPq2c>TwcyPBrTP>+Ed&nOy%k-q}RU;Z$1v z{Io*HQ%dCIVVIdXJunKDN}Que*od7ahB={MR-99cwppEGc`i%KJVeDLX2?9wLu$6w zhIVW*a;{$IFWB$?6R!KZukYvk{k*TwU7wR&9Y57pHW@f_nvJ73-C4>H@LIf!BJS`A zjZZQwl#bmFJv~HcgY_tjn`=F>pgw5v$hD>M))<;y$eQY+gUHF5Jsz^FaBEJqAKgKy zm+41Eb_v6!YlVieL<;i1+COoL#W*(VyzqOoMN-;!6j7U=tyaAEz9Wdz0)GrudN3` zXs)l(%J9Xd429}>u6xyiP+vio-bXh$hnu_NvqE|YD-OCh^8G01Y#JZqC$dqx zw=8P*ZVP||2-8@%pS=MX_@`&KepF|H-GA*a+;m|s2UML3cI>2cOzRp|fB~rYIB)RI zVVgl4P8|5wA*dt#uluo%T~x)vZ{F74g(T<3c;5P2@bI)Jag2~X z;Ig3T);oW}(||xI`$HusnbL5J>Z4+Z0o0cX=(Uwkx}Y?wWz2Akdd8A+!!AhbY7niM z>XL^h#=KT6SGD+RWKe6>oM;Z6bu3qj>Qf_Rd+kMC6laoKZ$gm(m9a_u)X27<&0cEs zTF`xeET(V|ju4f+yV3zPM`_Eo2fT9NbC<96N!dbJI<+o5{Ebskg`&9MEM&k3F1u#r zP`0mhL(zN+^e@RB@lE=5CKhCp0~%|rQB8B>a)O@tIlmt_`Zm%TOH(3oT&QSldBvB7 z-0VBA=%PM-wkgSUdt-eu(mtrsm+%=}x3mItqEb2SYg`{l4OGz*;06W>i#%Mef!dzw zkV3sQJJy(7o3=v!US=`xx`jc9D2eA!mQPe;RFA{I8PSI^m<-d;n*w8AV}AROMo=)| zKd{D?wsB5w`yyn!3l!Q3Rg_`1+(b;4+Yc4sZ52Lk+U59JWt=OYb~Mj-8A=1J%{UMBotj!(iO4TPtLD}U4`1ERj~&v` zgq&UTK!0oo2yS zylXcfY&2v3Xl2$Kb>jvB6doW1cb>`a(FlezUZ;cvBOFk0|3^xAMN%gUO1I|EF>4NX z&*y1#NWT|IhQb~#YBl|4+#)fUlu>lp0f)BeCiTmjmygUa!nJs(np1URqa*ht#Mt;3 zBcg!_%&3S_7diau)jqF%NV5D0=*o;V+NNmU<~3gXod=_}_JkUTcd_nLGJ1 zqZggxtnS296Cbs=zSnnsg=pW3-M#5qk7VGk4ut%#-<~3YC2p(cBZ{3M!dse++kpQE zv(>TQh-h~uQ}%}Dpt%gmG3y_}>sci##O>L>3=OrvZz82!SCBfwx)M^xn%z=Vw=<_v zu!X53!Oync(*Ixjvi^v`=2BFrMkdlogJ|wZ z61G3${M`}9i%Dg^T2q%MqR;;1Pw$Brl|l_aQj{=%otHiK+1;aDqO|VKcMuccR}n{s z^=LMH`lmn{*2l+R-fr2NZ_1AqYW4~9P~Q7Da-3g0 z^P_kLalo&#RkeN~vSjDG+mQ=P>C literal 0 HcmV?d00001 diff --git a/packages/ded/kibana/ml_module/ded-ml.json b/packages/ded/kibana/ml_module/ded-ml.json index e63e56c25f7e..2f44bee29675 100644 --- a/packages/ded/kibana/ml_module/ded-ml.json +++ b/packages/ded/kibana/ml_module/ded-ml.json @@ -320,44 +320,6 @@ "job_id": "ded_high_sent_bytes_destination_geo_country_iso_code", "query": { "bool": { - "must_not": [ - { - "terms": { - "network.direction": [ - "internal", - "inbound" - ] - } - }, - { - "term": { - "source.bytes": 0 - } - }, - { - "terms": { - "destination.ip": [ - "0.0.0.0/8", - "10.0.0.0/8", - "100.64.0.0/10", - "127.0.0.0/8", - "169.254.0.0/16", - "172.16.0.0/12", - "192.0.0.0/24", - "192.0.2.0/24", - "192.88.99.0/24", - "192.168.0.0/16", - "198.18.0.0/15", - "198.51.100.0/24", - "203.0.113.0/24", - "224.0.0.0/4", - "233.252.0.0/24", - "240.0.0.0/4", - "255.255.255.255/32" - ] - } - } - ], "filter": [ { "term": { @@ -373,15 +335,6 @@ "exists": { "field": "destination.port" } - }, - { - "terms": { - "source.ip": [ - "192.168.0.0/16", - "10.0.0.0/8", - "172.16.0.0/12" - ] - } } ] } @@ -398,44 +351,6 @@ "job_id": "ded_high_sent_bytes_destination_ip", "query": { "bool": { - "must_not": [ - { - "terms": { - "network.direction": [ - "internal", - "inbound" - ] - } - }, - { - "term": { - "source.bytes": 0 - } - }, - { - "terms": { - "destination.ip": [ - "0.0.0.0/8", - "10.0.0.0/8", - "100.64.0.0/10", - "127.0.0.0/8", - "169.254.0.0/16", - "172.16.0.0/12", - "192.0.0.0/24", - "192.0.2.0/24", - "192.88.99.0/24", - "192.168.0.0/16", - "198.18.0.0/15", - "198.51.100.0/24", - "203.0.113.0/24", - "224.0.0.0/4", - "233.252.0.0/24", - "240.0.0.0/4", - "255.255.255.255/32" - ] - } - } - ], "filter": [ { "term": { @@ -451,15 +366,6 @@ "exists": { "field": "destination.port" } - }, - { - "terms": { - "source.ip": [ - "192.168.0.0/16", - "10.0.0.0/8", - "172.16.0.0/12" - ] - } } ] } @@ -476,44 +382,6 @@ "job_id": "ded_high_sent_bytes_destination_port", "query": { "bool": { - "must_not": [ - { - "terms": { - "network.direction": [ - "internal", - "inbound" - ] - } - }, - { - "term": { - "source.bytes": 0 - } - }, - { - "terms": { - "destination.ip": [ - "0.0.0.0/8", - "10.0.0.0/8", - "100.64.0.0/10", - "127.0.0.0/8", - "169.254.0.0/16", - "172.16.0.0/12", - "192.0.0.0/24", - "192.0.2.0/24", - "192.88.99.0/24", - "192.168.0.0/16", - "198.18.0.0/15", - "198.51.100.0/24", - "203.0.113.0/24", - "224.0.0.0/4", - "233.252.0.0/24", - "240.0.0.0/4", - "255.255.255.255/32" - ] - } - } - ], "filter": [ { "term": { @@ -529,15 +397,6 @@ "exists": { "field": "destination.port" } - }, - { - "terms": { - "source.ip": [ - "192.168.0.0/16", - "10.0.0.0/8", - "172.16.0.0/12" - ] - } } ] } @@ -554,44 +413,6 @@ "job_id": "ded_high_sent_bytes_destination_region_name", "query": { "bool": { - "must_not": [ - { - "terms": { - "network.direction": [ - "internal", - "inbound" - ] - } - }, - { - "term": { - "source.bytes": 0 - } - }, - { - "terms": { - "destination.ip": [ - "0.0.0.0/8", - "10.0.0.0/8", - "100.64.0.0/10", - "127.0.0.0/8", - "169.254.0.0/16", - "172.16.0.0/12", - "192.0.0.0/24", - "192.0.2.0/24", - "192.88.99.0/24", - "192.168.0.0/16", - "198.18.0.0/15", - "198.51.100.0/24", - "203.0.113.0/24", - "224.0.0.0/4", - "233.252.0.0/24", - "240.0.0.0/4", - "255.255.255.255/32" - ] - } - } - ], "filter": [ { "term": { @@ -607,15 +428,6 @@ "exists": { "field": "destination.port" } - }, - { - "terms": { - "source.ip": [ - "192.168.0.0/16", - "10.0.0.0/8", - "172.16.0.0/12" - ] - } } ] } diff --git a/packages/ded/manifest.yml b/packages/ded/manifest.yml index 6599ac359e05..f7fef8eb0e09 100644 --- a/packages/ded/manifest.yml +++ b/packages/ded/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: ded title: "Data Exfiltration Detection" -version: 2.1.2 +version: 2.2.0 source: license: "Elastic-2.0" description: "ML package to detect data exfiltration in your network and file data." @@ -12,7 +12,7 @@ categories: - advanced_analytics_ueba conditions: kibana: - version: "^8.9.0" + version: "^8.10.1" elastic: subscription: platinum capabilities: From f597dea1a81363f9a0cbe9377c8dd7307f8e55ac Mon Sep 17 00:00:00 2001 From: Dennis Perto Date: Fri, 9 Aug 2024 22:44:39 +0200 Subject: [PATCH 63/77] Fix event.module for Linux Metrics Service (#10736) --- packages/linux/changelog.yml | 5 +++++ .../linux/data_stream/service/agent/stream/stream.yml.hbs | 4 ++-- packages/linux/manifest.yml | 2 +- 3 files changed, 8 insertions(+), 3 deletions(-) diff --git a/packages/linux/changelog.yml b/packages/linux/changelog.yml index 66b30df75c0c..b2c4fc96f519 100644 --- a/packages/linux/changelog.yml +++ b/packages/linux/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "0.6.11" + changes: + - description: Fix Service processors. + type: bugfix + link: https://github.com/elastic/integrations/pull/10736 - version: "0.6.10" changes: - description: Add processors capability to Linux Metrics. diff --git a/packages/linux/data_stream/service/agent/stream/stream.yml.hbs b/packages/linux/data_stream/service/agent/stream/stream.yml.hbs index 394384666005..2717ad685959 100644 --- a/packages/linux/data_stream/service/agent/stream/stream.yml.hbs +++ b/packages/linux/data_stream/service/agent/stream/stream.yml.hbs @@ -20,8 +20,8 @@ period: {{period}} hostfs: {{system.hostfs}} {{/if}} processors: -{{#if processors}} - drop_fields: fields: event.module +{{#if processors}} {{processors}} -{{/if}} \ No newline at end of file +{{/if}} diff --git a/packages/linux/manifest.yml b/packages/linux/manifest.yml index 5f020d44c00f..c34b97d3b429 100644 --- a/packages/linux/manifest.yml +++ b/packages/linux/manifest.yml @@ -1,7 +1,7 @@ format_version: 1.0.0 name: linux title: Linux Metrics -version: 0.6.10 +version: 0.6.11 license: basic description: Collect metrics from Linux servers with Elastic Agent. type: integration From 7e635a413441b03199acdd2048d3d1ba9e7dc075 Mon Sep 17 00:00:00 2001 From: Michael Wolf Date: Fri, 9 Aug 2024 17:10:31 -0700 Subject: [PATCH 64/77] [suricata] Handle empty tls data (#10756) It's possible for Suricata logs to have app_proto=tls, but not provide a tls object. This will handle this case by checking for the existing of the tls object before running the tls pipeline that parses this object. --------- Co-authored-by: Andrew Kroh --- packages/suricata/changelog.yml | 5 + .../eve/_dev/test/pipeline/test-eve-6-0.log | 2 + .../pipeline/test-eve-6-0.log-expected.json | 161 ++++++++++++++++++ .../elasticsearch/ingest_pipeline/default.yml | 2 +- packages/suricata/manifest.yml | 2 +- 5 files changed, 170 insertions(+), 2 deletions(-) diff --git a/packages/suricata/changelog.yml b/packages/suricata/changelog.yml index 8be7abac8e68..05072f828896 100644 --- a/packages/suricata/changelog.yml +++ b/packages/suricata/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.21.2" + changes: + - description: Handle unset TLS data fields + type: bugfix + link: https://github.com/elastic/integrations/pull/10756 - version: "2.21.1" changes: - description: Fix TLS version parsing for SSLv2 kind of value format. diff --git a/packages/suricata/data_stream/eve/_dev/test/pipeline/test-eve-6-0.log b/packages/suricata/data_stream/eve/_dev/test/pipeline/test-eve-6-0.log index 3e1f35cb9e53..d3e84d479157 100644 --- a/packages/suricata/data_stream/eve/_dev/test/pipeline/test-eve-6-0.log +++ b/packages/suricata/data_stream/eve/_dev/test/pipeline/test-eve-6-0.log @@ -1 +1,3 @@ {"timestamp":"2021-01-27T01:28:11.488362+0100","flow_id":1805461738637437,"in_iface":"enp6s0","event_type":"alert","src_ip":"175.16.199.1","src_port":80,"dest_ip":"10.31.64.240","dest_port":47592,"proto":"TCP","ether":{"src_mac":"00:03:2d:3f:e5:63","dest_mac":"00:1b:17:00:01:18"},"alert":{"action":"allowed","gid":1,"signature_id":2100498,"rev":7,"signature":"GPL ATTACK_RESPONSE id check returned root","category":"Potentially Bad Traffic","severity":2,"metadata":{"created_at":["2010_09_23"],"updated_at":["2010_09_23"]}},"http":{"hostname":"testmynids.org","url":"/uid/index.html","http_user_agent":"curl/7.58.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":39},"app_proto":"http","flow":{"pkts_toserver":6,"pkts_toclient":5,"bytes_toserver":496,"bytes_toclient":876,"start":"2021-01-22T23:28:38.673917+0100"}} +{"timestamp":"2024-07-30T16:53:24.501575+0000","flow_id":1548007570151262,"in_iface":"ens4","event_type":"flow","src_ip":"10.1.22.212","src_port":56984,"dest_ip":"10.1.46.5","dest_port":5005,"proto":"TCP","app_proto":"tls","flow":{"pkts_toserver":74,"pkts_toclient":56,"bytes_toserver":7626,"bytes_toclient":10780,"start":"2024-07-30T16:48:20.399198+0000","end":"2024-07-30T16:52:20.399556+0000","age":240,"state":"closed","reason":"timeout","alerted":false},"tcp":{"tcp_flags":"1f","tcp_flags_ts":"1f","tcp_flags_tc":"1b","syn":true,"fin":true,"rst":true,"psh":true,"ack":true,"state":"closed"}} +{"timestamp":"2024-07-18T17:44:34.733915+0000","flow_id":1357088669212417,"in_iface":"ens4","event_type":"flow","src_ip":"10.0.0.72","src_port":14612,"dest_ip":"81.2.69.192","dest_port":443,"proto":"TCP","app_proto":"tls","flow":{"pkts_toserver":15,"pkts_toclient":10,"bytes_toserver":4269,"bytes_toclient":1091,"start":"2024-07-18T17:42:38.368385+0000","end":"2024-07-18T17:43:23.464600+0000","age":45,"state":"closed","reason":"timeout","alerted":false},"tcp":{"tcp_flags":"1b","tcp_flags_ts":"1b","tcp_flags_tc":"1b","syn":true,"fin":true,"psh":true,"ack":true,"state":"closed"}} diff --git a/packages/suricata/data_stream/eve/_dev/test/pipeline/test-eve-6-0.log-expected.json b/packages/suricata/data_stream/eve/_dev/test/pipeline/test-eve-6-0.log-expected.json index 495075a080ff..d7e70e57abab 100644 --- a/packages/suricata/data_stream/eve/_dev/test/pipeline/test-eve-6-0.log-expected.json +++ b/packages/suricata/data_stream/eve/_dev/test/pipeline/test-eve-6-0.log-expected.json @@ -119,6 +119,167 @@ "original": "curl/7.58.0", "version": "7.58.0" } + }, + { + "@timestamp": "2024-07-30T16:53:24.501Z", + "destination": { + "address": "10.1.46.5", + "bytes": 10780, + "ip": "10.1.46.5", + "packets": 56, + "port": 5005 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "created": "2020-04-28T11:07:58.223Z", + "duration": 240000000000, + "end": "2024-07-30T16:52:20.399Z", + "kind": "event", + "original": "{\"timestamp\":\"2024-07-30T16:53:24.501575+0000\",\"flow_id\":1548007570151262,\"in_iface\":\"ens4\",\"event_type\":\"flow\",\"src_ip\":\"10.1.22.212\",\"src_port\":56984,\"dest_ip\":\"10.1.46.5\",\"dest_port\":5005,\"proto\":\"TCP\",\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":74,\"pkts_toclient\":56,\"bytes_toserver\":7626,\"bytes_toclient\":10780,\"start\":\"2024-07-30T16:48:20.399198+0000\",\"end\":\"2024-07-30T16:52:20.399556+0000\",\"age\":240,\"state\":\"closed\",\"reason\":\"timeout\",\"alerted\":false},\"tcp\":{\"tcp_flags\":\"1f\",\"tcp_flags_ts\":\"1f\",\"tcp_flags_tc\":\"1b\",\"syn\":true,\"fin\":true,\"rst\":true,\"psh\":true,\"ack\":true,\"state\":\"closed\"}}", + "start": "2024-07-30T16:48:20.399Z", + "type": [ + "connection", + "end" + ] + }, + "network": { + "bytes": 18406, + "community_id": "1:Mt6vyC3ztAuuRd8MxOMR8JAYlB8=", + "packets": 130, + "protocol": "tls", + "transport": "tcp" + }, + "related": { + "ip": [ + "10.1.22.212", + "10.1.46.5" + ] + }, + "source": { + "address": "10.1.22.212", + "bytes": 7626, + "ip": "10.1.22.212", + "packets": 74, + "port": 56984 + }, + "suricata": { + "eve": { + "event_type": "flow", + "flow": { + "age": 240, + "alerted": false, + "reason": "timeout", + "state": "closed" + }, + "flow_id": "1548007570151262", + "in_iface": "ens4", + "tcp": { + "ack": true, + "fin": true, + "psh": true, + "rst": true, + "state": "closed", + "syn": true, + "tcp_flags": "1f", + "tcp_flags_tc": "1b", + "tcp_flags_ts": "1f" + } + } + }, + "tags": [ + "preserve_original_event" + ] + }, + { + "@timestamp": "2024-07-18T17:44:34.733Z", + "destination": { + "address": "81.2.69.192", + "bytes": 1091, + "geo": { + "city_name": "London", + "continent_name": "Europe", + "country_iso_code": "GB", + "country_name": "United Kingdom", + "location": { + "lat": 51.5142, + "lon": -0.0931 + }, + "region_iso_code": "GB-ENG", + "region_name": "England" + }, + "ip": "81.2.69.192", + "packets": 10, + "port": 443 + }, + "ecs": { + "version": "8.11.0" + }, + "event": { + "category": [ + "network" + ], + "created": "2020-04-28T11:07:58.223Z", + "duration": 45096000000, + "end": "2024-07-18T17:43:23.464Z", + "kind": "event", + "original": "{\"timestamp\":\"2024-07-18T17:44:34.733915+0000\",\"flow_id\":1357088669212417,\"in_iface\":\"ens4\",\"event_type\":\"flow\",\"src_ip\":\"10.0.0.72\",\"src_port\":14612,\"dest_ip\":\"81.2.69.192\",\"dest_port\":443,\"proto\":\"TCP\",\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":15,\"pkts_toclient\":10,\"bytes_toserver\":4269,\"bytes_toclient\":1091,\"start\":\"2024-07-18T17:42:38.368385+0000\",\"end\":\"2024-07-18T17:43:23.464600+0000\",\"age\":45,\"state\":\"closed\",\"reason\":\"timeout\",\"alerted\":false},\"tcp\":{\"tcp_flags\":\"1b\",\"tcp_flags_ts\":\"1b\",\"tcp_flags_tc\":\"1b\",\"syn\":true,\"fin\":true,\"psh\":true,\"ack\":true,\"state\":\"closed\"}}", + "start": "2024-07-18T17:42:38.368Z", + "type": [ + "connection", + "end" + ] + }, + "network": { + "bytes": 5360, + "community_id": "1:Ukv4x30o6TArfA+5N9vgIFv82X4=", + "packets": 25, + "protocol": "tls", + "transport": "tcp" + }, + "related": { + "ip": [ + "10.0.0.72", + "81.2.69.192" + ] + }, + "source": { + "address": "10.0.0.72", + "bytes": 4269, + "ip": "10.0.0.72", + "packets": 15, + "port": 14612 + }, + "suricata": { + "eve": { + "event_type": "flow", + "flow": { + "age": 45, + "alerted": false, + "reason": "timeout", + "state": "closed" + }, + "flow_id": "1357088669212417", + "in_iface": "ens4", + "tcp": { + "ack": true, + "fin": true, + "psh": true, + "state": "closed", + "syn": true, + "tcp_flags": "1b", + "tcp_flags_tc": "1b", + "tcp_flags_ts": "1b" + } + } + }, + "tags": [ + "preserve_original_event" + ] } ] } \ No newline at end of file diff --git a/packages/suricata/data_stream/eve/elasticsearch/ingest_pipeline/default.yml b/packages/suricata/data_stream/eve/elasticsearch/ingest_pipeline/default.yml index be9be71562ce..3e67a0fafd4e 100644 --- a/packages/suricata/data_stream/eve/elasticsearch/ingest_pipeline/default.yml +++ b/packages/suricata/data_stream/eve/elasticsearch/ingest_pipeline/default.yml @@ -275,7 +275,7 @@ processors: name: '{{ IngestPipeline "dns" }}' ## TLS - pipeline: - if: ctx?.network?.protocol == "tls" + if: ctx.network?.protocol == "tls" && ctx.suricata?.eve?.tls != null name: '{{ IngestPipeline "tls" }}' ## Flow - append: diff --git a/packages/suricata/manifest.yml b/packages/suricata/manifest.yml index 9a3e3a8b8f7d..4ee78207a6f4 100644 --- a/packages/suricata/manifest.yml +++ b/packages/suricata/manifest.yml @@ -1,6 +1,6 @@ name: suricata title: Suricata -version: "2.21.1" +version: "2.21.2" description: Collect logs from Suricata with Elastic Agent. type: integration icons: From e208c2b322f177cbf364ffdd04a8651d481e609d Mon Sep 17 00:00:00 2001 From: Ido Cohen <90558359+CohenIdo@users.noreply.github.com> Date: Sun, 11 Aug 2024 11:07:36 +0300 Subject: [PATCH 65/77] deprecate data views --- packages/cloud_security_posture/changelog.yml | 5 +++++ ...sture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json | 14 -------------- ...sture-303eea10-c475-11ec-af18-c5b9b437dbbe.json | 14 -------------- ...sture-9129a080-7f48-11ec-8249-431333f83c5f.json | 14 -------------- ...sture-c406d945-a359-4c04-9a6a-65d66de8706b.json | 14 -------------- packages/cloud_security_posture/manifest.yml | 4 ++-- 6 files changed, 7 insertions(+), 58 deletions(-) delete mode 100644 packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json delete mode 100644 packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-303eea10-c475-11ec-af18-c5b9b437dbbe.json delete mode 100644 packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-9129a080-7f48-11ec-8249-431333f83c5f.json delete mode 100644 packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b.json diff --git a/packages/cloud_security_posture/changelog.yml b/packages/cloud_security_posture/changelog.yml index 0a747f7e9697..333d65e5afab 100644 --- a/packages/cloud_security_posture/changelog.yml +++ b/packages/cloud_security_posture/changelog.yml @@ -9,6 +9,11 @@ # 1.4.x - 8.9.x # 1.3.x - 8.8.x # 1.2.x - 8.7.x +- version: "1.11.0-preview03" + changes: + - description: Deprecate data views assets. + type: enhancement + link: https://github.com/elastic/integrations/pull/10692 - version: "1.11.0-preview02" changes: - description: Add `related.entity` to cspm diff --git a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json b/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json deleted file mode 100644 index a5add7bfadc3..000000000000 --- a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json +++ /dev/null @@ -1,14 +0,0 @@ -{ - "attributes": { - "description": "", - "title": "logs-cloud_security_posture.vulnerabilities_latest-*", - "timeFieldName": "@timestamp", - "namespaces": "[*]" - }, - "coreMigrationVersion": "8.3.0", - "id": "cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9", - "migrationVersion": { - "index-pattern": "8.0.0" - }, - "type": "index-pattern" -} \ No newline at end of file diff --git a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-303eea10-c475-11ec-af18-c5b9b437dbbe.json b/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-303eea10-c475-11ec-af18-c5b9b437dbbe.json deleted file mode 100644 index 367756f26646..000000000000 --- a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-303eea10-c475-11ec-af18-c5b9b437dbbe.json +++ /dev/null @@ -1,14 +0,0 @@ -{ - "attributes": { - "description": "", - "title": "logs-cloud_security_posture.findings_latest-*", - "timeFieldName": "@timestamp", - "namespaces": "[*]" - }, - "coreMigrationVersion": "8.3.0", - "id": "cloud_security_posture-303eea10-c475-11ec-af18-c5b9b437dbbe", - "migrationVersion": { - "index-pattern": "8.0.0" - }, - "type": "index-pattern" -} \ No newline at end of file diff --git a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-9129a080-7f48-11ec-8249-431333f83c5f.json b/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-9129a080-7f48-11ec-8249-431333f83c5f.json deleted file mode 100644 index de8b2e08cac4..000000000000 --- a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-9129a080-7f48-11ec-8249-431333f83c5f.json +++ /dev/null @@ -1,14 +0,0 @@ -{ - "attributes": { - "description": "", - "title": "logs-cloud_security_posture.findings-*", - "timeFieldName": "@timestamp", - "namespaces": "[*]" - }, - "coreMigrationVersion": "8.1.0", - "id": "cloud_security_posture-9129a080-7f48-11ec-8249-431333f83c5f", - "migrationVersion": { - "index-pattern": "8.0.0" - }, - "type": "index-pattern" -} \ No newline at end of file diff --git a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b.json b/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b.json deleted file mode 100644 index 7e6270c3125a..000000000000 --- a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b.json +++ /dev/null @@ -1,14 +0,0 @@ -{ - "attributes": { - "description": "", - "title": "logs-cloud_security_posture.vulnerabilities-*", - "timeFieldName": "@timestamp", - "namespaces": "[*]" - }, - "coreMigrationVersion": "8.1.0", - "id": "cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b", - "migrationVersion": { - "index-pattern": "8.0.0" - }, - "type": "index-pattern" -} \ No newline at end of file diff --git a/packages/cloud_security_posture/manifest.yml b/packages/cloud_security_posture/manifest.yml index 9b19c1781c42..c1af7aa012e1 100644 --- a/packages/cloud_security_posture/manifest.yml +++ b/packages/cloud_security_posture/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: cloud_security_posture title: "Security Posture Management" -version: "1.11.0-preview02" +version: "1.11.0-preview03" source: license: "Elastic-2.0" description: "Identify & remediate configuration risks in your Cloud infrastructure" @@ -11,7 +11,7 @@ categories: - cloudsecurity_cdr conditions: kibana: - version: "^8.15.0" + version: "^8.16.0" elastic: subscription: basic capabilities: From 384b5c2846029439ac20a4b8b20178f9f2f177e7 Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Mon, 12 Aug 2024 06:34:39 +0930 Subject: [PATCH 66/77] entityanalytics_okta: record whether a user's credentials include a recovery question (#10702) --- packages/entityanalytics_okta/changelog.yml | 5 +++++ .../user/_dev/test/pipeline/test-user.json | 3 ++- .../_dev/test/pipeline/test-user.json-expected.json | 3 +++ .../user/elasticsearch/ingest_pipeline/default.yml | 13 +++++++++++++ .../data_stream/user/fields/fields.yml | 2 ++ packages/entityanalytics_okta/docs/README.md | 1 + packages/entityanalytics_okta/manifest.yml | 2 +- 7 files changed, 27 insertions(+), 2 deletions(-) diff --git a/packages/entityanalytics_okta/changelog.yml b/packages/entityanalytics_okta/changelog.yml index 52ea7b91fd29..f40e7c26f7d2 100644 --- a/packages/entityanalytics_okta/changelog.yml +++ b/packages/entityanalytics_okta/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.3.0" + changes: + - description: Record whether a user's credentials include a recovery question. + type: enhancement + link: https://github.com/elastic/integrations/pull/10702 - version: "1.2.0" changes: - description: Removed import_mappings. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/entityanalytics_okta/data_stream/user/_dev/test/pipeline/test-user.json b/packages/entityanalytics_okta/data_stream/user/_dev/test/pipeline/test-user.json index 3230ec403f4b..b7147df49454 100644 --- a/packages/entityanalytics_okta/data_stream/user/_dev/test/pipeline/test-user.json +++ b/packages/entityanalytics_okta/data_stream/user/_dev/test/pipeline/test-user.json @@ -40,7 +40,8 @@ "provider": { "type": "OKTA", "name": "OKTA" - } + }, + "recovery_question": {} } }, "user": { diff --git a/packages/entityanalytics_okta/data_stream/user/_dev/test/pipeline/test-user.json-expected.json b/packages/entityanalytics_okta/data_stream/user/_dev/test/pipeline/test-user.json-expected.json index 562cef9e89dd..ad1c3454e6a2 100644 --- a/packages/entityanalytics_okta/data_stream/user/_dev/test/pipeline/test-user.json-expected.json +++ b/packages/entityanalytics_okta/data_stream/user/_dev/test/pipeline/test-user.json-expected.json @@ -26,6 +26,9 @@ "provider": { "name": "OKTA", "type": "OKTA" + }, + "recovery_question": { + "is_set": true } }, "id": "00ub0oNGTSWTBKOLGLNR", diff --git a/packages/entityanalytics_okta/data_stream/user/elasticsearch/ingest_pipeline/default.yml b/packages/entityanalytics_okta/data_stream/user/elasticsearch/ingest_pipeline/default.yml index e8ca0c75097e..2defa3e3a4d2 100644 --- a/packages/entityanalytics_okta/data_stream/user/elasticsearch/ingest_pipeline/default.yml +++ b/packages/entityanalytics_okta/data_stream/user/elasticsearch/ingest_pipeline/default.yml @@ -548,6 +548,19 @@ processors: tag: append_user_profile_manager_name_into_related_user allow_duplicates: false if: ctx.entityanalytics_okta?.user?.profile?.manager?.name != null + - set: + field: okta.credentials.recovery_question.is_set + value: true + if: ctx.okta?.credentials?.recovery_question != null + - set: + field: okta.credentials.recovery_question.is_set + value: false + if: ctx.okta?.credentials?.recovery_question == null + - rename: + field: okta.credentials.recovery_question + target_field: entityanalytics_okta.user.credentials.recovery_question + tag: rename_user_credentials_recovery_question + ignore_missing: true - rename: field: okta.credentials.provider.type target_field: entityanalytics_okta.user.credentials.provider.type diff --git a/packages/entityanalytics_okta/data_stream/user/fields/fields.yml b/packages/entityanalytics_okta/data_stream/user/fields/fields.yml index 904f0775f6f2..3e77ec8721c5 100644 --- a/packages/entityanalytics_okta/data_stream/user/fields/fields.yml +++ b/packages/entityanalytics_okta/data_stream/user/fields/fields.yml @@ -26,6 +26,8 @@ type: keyword - name: type type: keyword + - name: recovery_question.is_set + type: boolean - name: id type: keyword description: unique key for user. diff --git a/packages/entityanalytics_okta/docs/README.md b/packages/entityanalytics_okta/docs/README.md index 9a35f2095dc8..c188f0c616bd 100644 --- a/packages/entityanalytics_okta/docs/README.md +++ b/packages/entityanalytics_okta/docs/README.md @@ -280,6 +280,7 @@ An example event for `user` looks as following: | entityanalytics_okta.user.created | timestamp when user was created. | date | | entityanalytics_okta.user.credentials.provider.name | | keyword | | entityanalytics_okta.user.credentials.provider.type | | keyword | +| entityanalytics_okta.user.credentials.recovery_question.is_set | | boolean | | entityanalytics_okta.user.id | unique key for user. | keyword | | entityanalytics_okta.user.last_login | timestamp of last login. | date | | entityanalytics_okta.user.last_updated | timestamp when user was last updated. | date | diff --git a/packages/entityanalytics_okta/manifest.yml b/packages/entityanalytics_okta/manifest.yml index e7650a2016df..3e36b795595a 100644 --- a/packages/entityanalytics_okta/manifest.yml +++ b/packages/entityanalytics_okta/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: entityanalytics_okta title: Okta Entity Analytics -version: "1.2.0" +version: "1.3.0" description: "Collect User Identities from Okta with Elastic Agent." type: integration categories: From 09700b153dad21f7a539711340717a2623ac77d1 Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Mon, 12 Aug 2024 09:56:28 +0930 Subject: [PATCH 67/77] qualys_vmdr: use correct time format for last_modified_after parameter (#10759) According to the Qualys documentation, the time format for query parameters does not include sub-second resolution: The date/time is specified in YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT). https://cdn2.qualys.com/docs/qualys-api-vmpc-user-guide.pdf --- packages/qualys_vmdr/_dev/deploy/docker/files/config.yml | 2 ++ packages/qualys_vmdr/changelog.yml | 5 +++++ .../data_stream/knowledge_base/agent/stream/input.yml.hbs | 2 +- packages/qualys_vmdr/manifest.yml | 2 +- 4 files changed, 9 insertions(+), 2 deletions(-) diff --git a/packages/qualys_vmdr/_dev/deploy/docker/files/config.yml b/packages/qualys_vmdr/_dev/deploy/docker/files/config.yml index 1cf55e394bd3..0a89b81aaee9 100644 --- a/packages/qualys_vmdr/_dev/deploy/docker/files/config.yml +++ b/packages/qualys_vmdr/_dev/deploy/docker/files/config.yml @@ -237,6 +237,7 @@ rules: methods: ['GET'] query_params: ids: 123 + last_modified_after: '{last_modified_after:\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}}Z' responses: - status_code: 200 body: |- @@ -302,6 +303,7 @@ rules: - path: /api/2.0/fo/knowledge_base/vuln/ methods: ['GET'] query_params: + last_modified_after: '{last_modified_after:\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}}Z' responses: - status_code: 200 body: |- diff --git a/packages/qualys_vmdr/changelog.yml b/packages/qualys_vmdr/changelog.yml index b8159e068115..e274b038692c 100644 --- a/packages/qualys_vmdr/changelog.yml +++ b/packages/qualys_vmdr/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "4.2.2" + changes: + - description: Ensure last_modified_after query parameter is in the correct format. + type: bugfix + link: https://github.com/elastic/integrations/pull/10759 - version: "4.2.1" changes: - description: Fix CEL access to unset state.params in knowledge_base. diff --git a/packages/qualys_vmdr/data_stream/knowledge_base/agent/stream/input.yml.hbs b/packages/qualys_vmdr/data_stream/knowledge_base/agent/stream/input.yml.hbs index f5a7476c1f1a..cbd4b6279a4b 100644 --- a/packages/qualys_vmdr/data_stream/knowledge_base/agent/stream/input.yml.hbs +++ b/packages/qualys_vmdr/data_stream/knowledge_base/agent/stream/input.yml.hbs @@ -29,7 +29,7 @@ program: | request("GET", state.url.trim_right("/") + "/api/2.0/fo/knowledge_base/vuln/?" + state.?params.orValue("").parse_query().with({ "action": ["list"], - "last_modified_after": [state.?cursor.last_modified.orValue(string(now - duration(state.initial_interval)))], + "last_modified_after": [state.?cursor.last_modified.orValue((now - duration(state.initial_interval)).format(time_layout.RFC3339))], }).format_query() ).with({ "Header":{ diff --git a/packages/qualys_vmdr/manifest.yml b/packages/qualys_vmdr/manifest.yml index 86786e93194e..cfe3382611a3 100644 --- a/packages/qualys_vmdr/manifest.yml +++ b/packages/qualys_vmdr/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: qualys_vmdr title: Qualys VMDR -version: "4.2.1" +version: "4.2.2" description: Collect data from Qualys VMDR platform with Elastic Agent. type: integration categories: From 9532d7181266c9a70197bda6e8d56d60cf237391 Mon Sep 17 00:00:00 2001 From: Krishna Chaitanya Reddy Burri Date: Mon, 12 Aug 2024 09:22:17 +0530 Subject: [PATCH 68/77] trend_micro_vision_one: Update doc for setting up API Keys. (#10328) Update doc for setting up API Keys. API Keys for TrendMicro Vision One can be created without a user tied to them. This PR updates README with this new approach. --- .../_dev/build/docs/README.md | 24 +++++++++++++++---- packages/trend_micro_vision_one/changelog.yml | 5 ++++ .../trend_micro_vision_one/docs/README.md | 24 +++++++++++++++---- packages/trend_micro_vision_one/manifest.yml | 2 +- 4 files changed, 46 insertions(+), 9 deletions(-) diff --git a/packages/trend_micro_vision_one/_dev/build/docs/README.md b/packages/trend_micro_vision_one/_dev/build/docs/README.md index b8b389f59548..27d9cd6161f0 100644 --- a/packages/trend_micro_vision_one/_dev/build/docs/README.md +++ b/packages/trend_micro_vision_one/_dev/build/docs/README.md @@ -29,12 +29,28 @@ This module has been tested against `Trend Micro Vision One API version 3.0`. ### To collect data from Trend Micro Vision One APIs, the user must have API Token. To create an API token follow the below steps: 1. Log on to the Trend Micro Vision One console. -2. Go to **Administration -> User Accounts**. -![Trend Micro Vision One console](../img/trend-micro-vision-one-console.png) -3. Click on the account name having appropriate API access permission to generate an API token. -![Trend Micro Vision One generate API token ](../img/trend-micro-vision-one-api-token-generate.png) +2. On the Trend Vision One console, go to **Administration -> API Keys**. +3. Generate a new authentication token. Click **Add API key**. Specify the settings of the new API key. + - **Name**: A meaningful name that can help you identify the API key. + - **Role**: The user role assigned to the key. API keys can use either predefined or custom user roles. Custom roles can be created by navigating to **Administration -> User Roles -> Add Role**. The role must have appropriate API access permission to fetch relevant data. The following table outlines the access permissions to apps and features needed to fetch relevant data from Trend Vision API. + + | Datastream | App | Permissions | + |--------------|-------------|---------------------------------------------------------| + | Alert | Workbench | `View, filter, and search`. | + | Audit | Audit Logs | `View, filter, and search`, `Export and Download`. | + | Detection | Search | `View, filter, and search`. | + + Refer to [Account Role Permissions](https://automation.trendmicro.com/xdr/Guides/Authentication) for more details. + + - **Expiration time**: The time the API key remains valid. By default, authentication tokens expire one year after creation. However, a master administrator can delete and re-generate tokens at any time. + - **Status**: Whether the API key is enabled. + - **Details**: Extra information about the API key. + + Click **Add**. 4. Copy the Authentication token. +Refer to [Obtain authentication tokens](https://automation.trendmicro.com/xdr/Guides/First-steps-toward-using-the-APIs#Obtain-authentication-tokens) for more details on setting up API Token. + ## Logs Reference ### alert diff --git a/packages/trend_micro_vision_one/changelog.yml b/packages/trend_micro_vision_one/changelog.yml index 977c72552823..635ea8ff0dcb 100644 --- a/packages/trend_micro_vision_one/changelog.yml +++ b/packages/trend_micro_vision_one/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.21.0" + changes: + - description: Update doc for setting up API Keys. + type: enhancement + link: https://github.com/elastic/integrations/pull/10328 - version: "1.20.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/trend_micro_vision_one/docs/README.md b/packages/trend_micro_vision_one/docs/README.md index 65381dc22d29..c341c0cde951 100644 --- a/packages/trend_micro_vision_one/docs/README.md +++ b/packages/trend_micro_vision_one/docs/README.md @@ -29,12 +29,28 @@ This module has been tested against `Trend Micro Vision One API version 3.0`. ### To collect data from Trend Micro Vision One APIs, the user must have API Token. To create an API token follow the below steps: 1. Log on to the Trend Micro Vision One console. -2. Go to **Administration -> User Accounts**. -![Trend Micro Vision One console](../img/trend-micro-vision-one-console.png) -3. Click on the account name having appropriate API access permission to generate an API token. -![Trend Micro Vision One generate API token ](../img/trend-micro-vision-one-api-token-generate.png) +2. On the Trend Vision One console, go to **Administration -> API Keys**. +3. Generate a new authentication token. Click **Add API key**. Specify the settings of the new API key. + - **Name**: A meaningful name that can help you identify the API key. + - **Role**: The user role assigned to the key. API keys can use either predefined or custom user roles. Custom roles can be created by navigating to **Administration -> User Roles -> Add Role**. The role must have appropriate API access permission to fetch relevant data. The following table outlines the access permissions to apps and features needed to fetch relevant data from Trend Vision API. + + | Datastream | App | Permissions | + |--------------|-------------|---------------------------------------------------------| + | Alert | Workbench | `View, filter, and search`. | + | Audit | Audit Logs | `View, filter, and search`, `Export and Download`. | + | Detection | Search | `View, filter, and search`. | + + Refer to [Account Role Permissions](https://automation.trendmicro.com/xdr/Guides/Authentication) for more details. + + - **Expiration time**: The time the API key remains valid. By default, authentication tokens expire one year after creation. However, a master administrator can delete and re-generate tokens at any time. + - **Status**: Whether the API key is enabled. + - **Details**: Extra information about the API key. + + Click **Add**. 4. Copy the Authentication token. +Refer to [Obtain authentication tokens](https://automation.trendmicro.com/xdr/Guides/First-steps-toward-using-the-APIs#Obtain-authentication-tokens) for more details on setting up API Token. + ## Logs Reference ### alert diff --git a/packages/trend_micro_vision_one/manifest.yml b/packages/trend_micro_vision_one/manifest.yml index 05ce42731c2d..8b053e2a5329 100644 --- a/packages/trend_micro_vision_one/manifest.yml +++ b/packages/trend_micro_vision_one/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.3" name: trend_micro_vision_one title: Trend Micro Vision One -version: "1.20.0" +version: "1.21.0" description: Collect logs from Trend Micro Vision One with Elastic Agent. type: integration categories: From 26361ddad1214308a405879c681f88149b18e9de Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 12 Aug 2024 10:51:42 +0200 Subject: [PATCH 69/77] chore: [updatecli] Update latest snapshot label step to 8.16 (#10761) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Made with ❤️️ by updatecli Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> --- .buildkite/pipeline.schedule-daily.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.buildkite/pipeline.schedule-daily.yml b/.buildkite/pipeline.schedule-daily.yml index bda7869457e2..1f4e386861a5 100644 --- a/.buildkite/pipeline.schedule-daily.yml +++ b/.buildkite/pipeline.schedule-daily.yml @@ -26,7 +26,7 @@ steps: - step: "check" allow_failure: false - - label: "Check integrations local stacks - Stack Version v8.15" + - label: "Check integrations local stacks - Stack Version v8.16" trigger: "integrations" build: env: From 00b06bcaf7d77d1d37e6c615e9e1bb989970a409 Mon Sep 17 00:00:00 2001 From: Ido Cohen <90558359+CohenIdo@users.noreply.github.com> Date: Mon, 12 Aug 2024 14:49:53 +0300 Subject: [PATCH 70/77] Revert vuln data views --- packages/cloud_security_posture/changelog.yml | 4 ++-- ...sture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json | 14 ++++++++++++++ ...-c406d945-a359-4c04-9a6a-65d66de8706b.json.json | 14 ++++++++++++++ packages/cloud_security_posture/manifest.yml | 2 +- 4 files changed, 31 insertions(+), 3 deletions(-) create mode 100644 packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json create mode 100644 packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b.json.json diff --git a/packages/cloud_security_posture/changelog.yml b/packages/cloud_security_posture/changelog.yml index 333d65e5afab..4ed6379ec964 100644 --- a/packages/cloud_security_posture/changelog.yml +++ b/packages/cloud_security_posture/changelog.yml @@ -9,11 +9,11 @@ # 1.4.x - 8.9.x # 1.3.x - 8.8.x # 1.2.x - 8.7.x -- version: "1.11.0-preview03" +- version: "1.11.0-preview04" changes: - description: Deprecate data views assets. type: enhancement - link: https://github.com/elastic/integrations/pull/10692 + link: https://github.com/elastic/integrations/pull/10767 - version: "1.11.0-preview02" changes: - description: Add `related.entity` to cspm diff --git a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json b/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json new file mode 100644 index 000000000000..91b5c5f9999b --- /dev/null +++ b/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9.json @@ -0,0 +1,14 @@ +{ + "attributes": { + "description": "", + "title": "logs-cloud_security_posture.vulnerabilities_latest-*", + "timeFieldName": "@timestamp", + "namespaces": "[*]" + }, + "coreMigrationVersion": "8.3.0", + "id": "cloud_security_posture-07a5e6d6-982d-4c7c-a845-5f2be43279c9", + "migrationVersion": { + "index-pattern": "8.0.0" + }, + "type": "index-pattern" +} diff --git a/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b.json.json b/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b.json.json new file mode 100644 index 000000000000..39bbb0c1dcad --- /dev/null +++ b/packages/cloud_security_posture/kibana/index_pattern/cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b.json.json @@ -0,0 +1,14 @@ +{ + "attributes": { + "description": "", + "title": "logs-cloud_security_posture.vulnerabilities-*", + "timeFieldName": "@timestamp", + "namespaces": "[*]" + }, + "coreMigrationVersion": "8.1.0", + "id": "cloud_security_posture-c406d945-a359-4c04-9a6a-65d66de8706b", + "migrationVersion": { + "index-pattern": "8.0.0" + }, + "type": "index-pattern" +} diff --git a/packages/cloud_security_posture/manifest.yml b/packages/cloud_security_posture/manifest.yml index c1af7aa012e1..8d89a7a04fe2 100644 --- a/packages/cloud_security_posture/manifest.yml +++ b/packages/cloud_security_posture/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.0.0 name: cloud_security_posture title: "Security Posture Management" -version: "1.11.0-preview03" +version: "1.11.0-preview04" source: license: "Elastic-2.0" description: "Identify & remediate configuration risks in your Cloud infrastructure" From 220004bd389b04ca0ae029eb5e1a884d33acc35d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 12 Aug 2024 16:11:25 +0200 Subject: [PATCH 71/77] Bump updatecli/updatecli-action from 2.64.0 to 2.65.0 (#10768) Bumps [updatecli/updatecli-action](https://github.com/updatecli/updatecli-action) from 2.64.0 to 2.65.0. - [Release notes](https://github.com/updatecli/updatecli-action/releases) - [Commits](https://github.com/updatecli/updatecli-action/compare/3a8785d88ec4fa03d86521a181f37c0e74627463...a0c478c868a71d3e239a65714de69450aa1ee2c6) --- updated-dependencies: - dependency-name: updatecli/updatecli-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/bump-elastic-stack-version.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/bump-elastic-stack-version.yml b/.github/workflows/bump-elastic-stack-version.yml index dc2957d8137a..2eb1217a55a6 100644 --- a/.github/workflows/bump-elastic-stack-version.yml +++ b/.github/workflows/bump-elastic-stack-version.yml @@ -25,7 +25,7 @@ jobs: - uses: actions/checkout@v4 - name: Install Updatecli in the runner - uses: updatecli/updatecli-action@3a8785d88ec4fa03d86521a181f37c0e74627463 #v2.64.0 + uses: updatecli/updatecli-action@a0c478c868a71d3e239a65714de69450aa1ee2c6 #v2.65.0 - name: Select diff action if: ${{ github.event_name == 'pull_request' }} From 44489898d93ed6485229991f8d3eb6a0e67466b3 Mon Sep 17 00:00:00 2001 From: Gabriel Pop <94497545+gpop63@users.noreply.github.com> Date: Mon, 12 Aug 2024 19:00:26 +0300 Subject: [PATCH 72/77] [GCP] [Billing] Improve documentation (#9931) * improve docs * bump package version * fix pr id * add cost_type in docs * Update packages/gcp/_dev/build/docs/billing.md Co-authored-by: subham sarkar * Update packages/gcp/_dev/build/docs/billing.md Co-authored-by: subham sarkar * Update packages/gcp/_dev/build/docs/billing.md Co-authored-by: subham sarkar * Update packages/gcp/_dev/build/docs/billing.md Co-authored-by: subham sarkar * address reviews * Update packages/gcp/_dev/build/docs/billing.md Co-authored-by: Arianna Laudazzi <46651782+alaudazzi@users.noreply.github.com> * Update packages/gcp/docs/billing.md Co-authored-by: Arianna Laudazzi <46651782+alaudazzi@users.noreply.github.com> * remove newline --------- Co-authored-by: subham sarkar Co-authored-by: Arianna Laudazzi <46651782+alaudazzi@users.noreply.github.com> --- packages/gcp/_dev/build/docs/billing.md | 51 +++++++++++++++++++++++++ packages/gcp/changelog.yml | 5 +++ packages/gcp/docs/billing.md | 51 +++++++++++++++++++++++++ packages/gcp/manifest.yml | 2 +- 4 files changed, 108 insertions(+), 1 deletion(-) diff --git a/packages/gcp/_dev/build/docs/billing.md b/packages/gcp/_dev/build/docs/billing.md index d1d72fbd773d..58214a0c9eb9 100644 --- a/packages/gcp/_dev/build/docs/billing.md +++ b/packages/gcp/_dev/build/docs/billing.md @@ -12,6 +12,57 @@ For standard usage cost data, set the table pattern format to `gcp_billing_expor For detailed usage cost data, set the table pattern to `gcp_billing_export_resource_v1`. Detailed tables include the standard fields and additional fields, such as `effective_price`, enabling a more granular view of expenses. +## Requirements + +You need Elasticsearch for storing and searching your data and Kibana for visualizing and managing it. +You can use our hosted Elasticsearch Service on Elastic Cloud, which is recommended, or self-manage the Elastic Stack on your own hardware. + +Before using any GCP integration you will need: + +* **GCP Credentials** to connect with your GCP account. +* **GCP Permissions** to make sure the service account you're using to connect has permission to share the relevant data. + +To collect GCP Billing metrics, the following permissions are required to access the necessary data: + +- `roles/bigquery.dataViewer` +- `roles/bigquery.jobUser` +- `roles/billing.viewer` + +## Configuration Parameters + +### dataset_id + +The `dataset_id` is the unique identifier of your BigQuery dataset where your billing data is stored. You can find this ID in your Google Cloud Console under the BigQuery section. + +### table_pattern + +The `table_pattern` parameter allows you to specify which tables to retrieve from the specified dataset. This can be set to either `gcp_billing_export_v1` for standard usage cost data or `gcp_billing_export_resource_v1` for detailed usage cost data. + +### cost_type + +The `cost_type` parameter enables you to filter the cost data based on specific cost categories. You can select one of the following options: + +- `regular`: This cost type includes all the regular costs associated with your usage of GCP services. This does not include any taxes, adjustments, or rounding errors. + +- `tax`: This cost type includes all the taxes associated with your usage of GCP services. This does not include the regular costs, adjustments, or rounding errors. + +- `adjustment`: This cost type includes any adjustments made to your billing data. Adjustments can include credits, discounts, refunds, or any other modifications to the original costs. + +- `rounding_error`: This cost type includes any rounding errors that occurred when calculating your costs. These are typically very small amounts and are used to reconcile any discrepancies due to rounding. + +## Example Configuration + +Here's an example of what your configuration might look like: + +``` +dataset_id: "my_billing_dataset" +table_pattern: "gcp_billing_export_resource_v1" +project_id: "my_project" +cost_type: "regular" +``` + +In this example, the Agent will pull data from all tables within the `my_billing_dataset` dataset that start with the pattern `gcp_billing_export_resource_v1`. + ## Sample Event {{event "billing"}} diff --git a/packages/gcp/changelog.yml b/packages/gcp/changelog.yml index 646cd3e0d071..2b64c23529bc 100644 --- a/packages/gcp/changelog.yml +++ b/packages/gcp/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.37.1" + changes: + - description: Improve GCP Billing documentation. + type: enhancement + link: https://github.com/elastic/integrations/pull/9931 - version: "2.37.0" changes: - description: Retain `authenticationInfo.serviceAccountKeyName` data. diff --git a/packages/gcp/docs/billing.md b/packages/gcp/docs/billing.md index 5a62096f61fd..fdbf0866fc50 100644 --- a/packages/gcp/docs/billing.md +++ b/packages/gcp/docs/billing.md @@ -12,6 +12,57 @@ For standard usage cost data, set the table pattern format to `gcp_billing_expor For detailed usage cost data, set the table pattern to `gcp_billing_export_resource_v1`. Detailed tables include the standard fields and additional fields, such as `effective_price`, enabling a more granular view of expenses. +## Requirements + +You need Elasticsearch for storing and searching your data and Kibana for visualizing and managing it. +You can use our hosted Elasticsearch Service on Elastic Cloud, which is recommended, or self-manage the Elastic Stack on your own hardware. + +Before using any GCP integration you will need: + +* **GCP Credentials** to connect with your GCP account. +* **GCP Permissions** to make sure the service account you're using to connect has permission to share the relevant data. + +To collect GCP Billing metrics, the following permissions are required to access the necessary data: + +- `roles/bigquery.dataViewer` +- `roles/bigquery.jobUser` +- `roles/billing.viewer` + +## Configuration Parameters + +### dataset_id + +The `dataset_id` is the unique identifier of your BigQuery dataset where your billing data is stored. You can find this ID in your Google Cloud Console under the BigQuery section. + +### table_pattern + +The `table_pattern` parameter allows you to specify which tables to retrieve from the specified dataset. This can be set to either `gcp_billing_export_v1` for standard usage cost data or `gcp_billing_export_resource_v1` for detailed usage cost data. + +### cost_type + +The `cost_type` parameter enables you to filter the cost data based on specific cost categories. You can select one of the following options: + +- `regular`: This cost type includes all the regular costs associated with your usage of GCP services. This does not include any taxes, adjustments, or rounding errors. + +- `tax`: This cost type includes all the taxes associated with your usage of GCP services. This does not include the regular costs, adjustments, or rounding errors. + +- `adjustment`: This cost type includes any adjustments made to your billing data. Adjustments can include credits, discounts, refunds, or any other modifications to the original costs. + +- `rounding_error`: This cost type includes any rounding errors that occurred when calculating your costs. These are typically very small amounts and are used to reconcile any discrepancies due to rounding. + +## Example Configuration + +Here's an example of what your configuration might look like: + +``` +dataset_id: "my_billing_dataset" +table_pattern: "gcp_billing_export_resource_v1" +project_id: "my_project" +cost_type: "regular" +``` + +In this example, the Agent will pull data from all tables within the `my_billing_dataset` dataset that start with the pattern `gcp_billing_export_resource_v1`. + ## Sample Event An example event for `billing` looks as following: diff --git a/packages/gcp/manifest.yml b/packages/gcp/manifest.yml index 89a3f968d50d..42b6273ef85e 100644 --- a/packages/gcp/manifest.yml +++ b/packages/gcp/manifest.yml @@ -1,6 +1,6 @@ name: gcp title: Google Cloud Platform -version: "2.37.0" +version: "2.37.1" description: Collect logs and metrics from Google Cloud Platform with Elastic Agent. type: integration icons: From 8a059ca072a10176035015add82329489c1ff890 Mon Sep 17 00:00:00 2001 From: Dan Kortschak Date: Tue, 13 Aug 2024 06:02:46 +0930 Subject: [PATCH 73/77] entityanalytics_ad: expose paging size configuration to user (#10762) --- packages/entityanalytics_ad/changelog.yml | 5 +++++ .../data_stream/user/agent/stream/entity-analytics.yml.hbs | 3 +++ packages/entityanalytics_ad/data_stream/user/manifest.yml | 7 +++++++ packages/entityanalytics_ad/manifest.yml | 2 +- 4 files changed, 16 insertions(+), 1 deletion(-) diff --git a/packages/entityanalytics_ad/changelog.yml b/packages/entityanalytics_ad/changelog.yml index cd042752c931..c4c8002747ca 100644 --- a/packages/entityanalytics_ad/changelog.yml +++ b/packages/entityanalytics_ad/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "0.2.0" + changes: + - description: Expose paging size configuration to the user. + type: enhancement + link: https://github.com/elastic/integrations/pull/10762 - version: "0.1.0" changes: - description: Removed import_mappings. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/entityanalytics_ad/data_stream/user/agent/stream/entity-analytics.yml.hbs b/packages/entityanalytics_ad/data_stream/user/agent/stream/entity-analytics.yml.hbs index 49588fee255a..23459005ebbc 100644 --- a/packages/entityanalytics_ad/data_stream/user/agent/stream/entity-analytics.yml.hbs +++ b/packages/entityanalytics_ad/data_stream/user/agent/stream/entity-analytics.yml.hbs @@ -5,6 +5,9 @@ ad_base_dn: {{ad_base_dn}} ad_url: {{ad_url}} ad_user: {{ad_user}} ad_password: {{ad_password}} +{{#if paging_size}} +ad_paging_size: {{paging_size}} +{{/if}} tags: - users-entities {{#if preserve_duplicate_custom_fields}} diff --git a/packages/entityanalytics_ad/data_stream/user/manifest.yml b/packages/entityanalytics_ad/data_stream/user/manifest.yml index afada65a464b..cae34e28b63a 100644 --- a/packages/entityanalytics_ad/data_stream/user/manifest.yml +++ b/packages/entityanalytics_ad/data_stream/user/manifest.yml @@ -58,6 +58,13 @@ streams: multi: false required: false show_user: false + - name: paging_size + type: integer + title: Paging Size + description: Paging size for the directory responses (no limit if not set). + multi: false + required: false + show_user: false - name: tags type: text title: Tags diff --git a/packages/entityanalytics_ad/manifest.yml b/packages/entityanalytics_ad/manifest.yml index 5a0972bcd098..011189fc4aff 100644 --- a/packages/entityanalytics_ad/manifest.yml +++ b/packages/entityanalytics_ad/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: entityanalytics_ad title: Active Directory Entity Analytics -version: "0.1.0" +version: "0.2.0" description: "Collect User Identities from Active Directory Entity with Elastic Agent." type: integration categories: From a235a8006c4749d82a77715d7a4ae2ad8bba5583 Mon Sep 17 00:00:00 2001 From: Krishna Chaitanya Reddy Burri Date: Tue, 13 Aug 2024 13:32:05 +0530 Subject: [PATCH 74/77] zscaler_zia: Remove url field from web logs (#10776) Remove url field from web logs. The alternate field named `eurl` is added in `3.0.3` version which is primarily used for url parsing. The `url` field is not used inside the pipeline other than storing in a custom variable. It is also causing json parsing errors when it contains non-escaped characters such as `"`. --- packages/zscaler_zia/_dev/build/docs/README.md | 6 +++--- packages/zscaler_zia/changelog.yml | 5 +++++ .../_dev/test/pipeline/test-common-config.yml | 1 - .../web/_dev/test/pipeline/test-common-config.yml | 1 - .../_dev/test/pipeline/test-web-http-endpoint.log | 4 ++-- .../test-web-http-endpoint.log-expected.json | 4 ++-- .../data_stream/web/_dev/test/pipeline/test-web.log | 8 ++++---- .../_dev/test/pipeline/test-web.log-expected.json | 12 ++++++------ .../web/elasticsearch/ingest_pipeline/default.yml | 11 +++++------ packages/zscaler_zia/docs/README.md | 6 +++--- packages/zscaler_zia/manifest.yml | 2 +- 11 files changed, 31 insertions(+), 29 deletions(-) diff --git a/packages/zscaler_zia/_dev/build/docs/README.md b/packages/zscaler_zia/_dev/build/docs/README.md index 5986d3fb15b1..a393e3317081 100644 --- a/packages/zscaler_zia/_dev/build/docs/README.md +++ b/packages/zscaler_zia/_dev/build/docs/README.md @@ -214,14 +214,14 @@ Sample Response: ![Escape feed setup image](../img/escape_feed.png?raw=true) See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-web-logs) -Zscaler Web Log response format (v5): +Zscaler Web Log response format (v6): ``` -\{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","eurl":"%s{eurl}","url":"%s{url}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} +\{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","eurl":"%s{eurl}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} ``` Sample Response: ```json -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com/index","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} ``` ### Enabling the integration in Elastic: diff --git a/packages/zscaler_zia/changelog.yml b/packages/zscaler_zia/changelog.yml index 3eda30168224..8d1dc38bcb60 100644 --- a/packages/zscaler_zia/changelog.yml +++ b/packages/zscaler_zia/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "3.1.0" + changes: + - description: Remove url field from web logs. + type: enhancement + link: https://github.com/elastic/integrations/pull/10776 - version: "3.0.4" changes: - description: Update response format version numbers. diff --git a/packages/zscaler_zia/data_stream/sandbox_report/_dev/test/pipeline/test-common-config.yml b/packages/zscaler_zia/data_stream/sandbox_report/_dev/test/pipeline/test-common-config.yml index 36106b22efb6..1f0a54d166db 100644 --- a/packages/zscaler_zia/data_stream/sandbox_report/_dev/test/pipeline/test-common-config.yml +++ b/packages/zscaler_zia/data_stream/sandbox_report/_dev/test/pipeline/test-common-config.yml @@ -2,7 +2,6 @@ fields: tags: - preserve_original_event - preserve_duplicate_custom_fields - dynamic_fields: # This can be removed after ES 8.14 is the minimum version. # Relates: https://github.com/elastic/elasticsearch/pull/105689 diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-common-config.yml b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-common-config.yml index 36106b22efb6..1f0a54d166db 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-common-config.yml +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-common-config.yml @@ -2,7 +2,6 @@ fields: tags: - preserve_original_event - preserve_duplicate_custom_fields - dynamic_fields: # This can be removed after ES 8.14 is the minimum version. # Relates: https://github.com/elastic/elasticsearch/pull/105689 diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log index 2791ee5b91f4..aeac0d96f767 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log @@ -1,2 +1,2 @@ -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"81.2.69.142","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":"123456789","reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"rar","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":"1300","reqmethod":"invalid","refererurl":"www.example.com","respsize":"10500","respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_1","cltip":"81.2.69.142","cltintip":"81.2.69.142","cltsourceport":"1235","threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com%2Findex","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"None","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"0","cltsslsessreuse":"Unknown","cltpubip":"81.2.69.142","cltsslfailcount":"100","cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":"16","dept":"Sales","deviceappversion":"81.2.69.142","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":"6646484838839026000","eedone":"Yes","epochtime":"1578128400","fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":"22","is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":"55","mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":"10","nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":"6200694987","ocpubip":"624054738","odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":"300","reqdatasize":"1000","respheadersize":"500","respdatasize":"10000","riskscore":"10","ruletype":"File Type Control","second":"48","srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":"5","throttlerespsize":"7","totalsize":"11800","trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":"2023","ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"81.2.69.142","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Blocked","recordid":"123456789","reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"rar","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":"1300","reqmethod":"invalid","refererurl":"www.example.com","respsize":"10500","respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_1","cltip":"81.2.69.142","cltintip":"81.2.69.142","cltsourceport":"1235","threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com%2Findex","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"None","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"81.2.69.142","cltsslfailcount":"100","cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":"16","dept":"Sales","deviceappversion":"81.2.69.142","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":"6646484838839026000","eedone":"Yes","epochtime":"1578128400","fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":"22","is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":"55","mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":"10","nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":"6200694987","ocpubip":"624054738","odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":"300","reqdatasize":"1000","respheadersize":"500","respdatasize":"10000","riskscore":"10","ruletype":"File Type Control","second":"48","srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":"5","throttlerespsize":"7","totalsize":"11800","trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":"2023","ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} \ No newline at end of file +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"81.2.69.142","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":"123456789","reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"rar","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":"1300","reqmethod":"invalid","refererurl":"www.example.com","respsize":"10500","respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_1","cltip":"81.2.69.142","cltintip":"81.2.69.142","cltsourceport":"1235","threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com%2Findex","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"None","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"0","cltsslsessreuse":"Unknown","cltpubip":"81.2.69.142","cltsslfailcount":"100","cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":"16","dept":"Sales","deviceappversion":"81.2.69.142","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":"6646484838839026000","eedone":"Yes","epochtime":"1578128400","fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":"22","is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":"55","mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":"10","nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":"6200694987","ocpubip":"624054738","odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":"300","reqdatasize":"1000","respheadersize":"500","respdatasize":"10000","riskscore":"10","ruletype":"File Type Control","second":"48","srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":"5","throttlerespsize":"7","totalsize":"11800","trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":"2023","ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"81.2.69.142","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Blocked","recordid":"123456789","reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"rar","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":"1300","reqmethod":"invalid","refererurl":"www.example.com","respsize":"10500","respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_1","cltip":"81.2.69.142","cltintip":"81.2.69.142","cltsourceport":"1235","threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com%2Findex","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"None","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"81.2.69.142","cltsslfailcount":"100","cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":"16","dept":"Sales","deviceappversion":"81.2.69.142","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":"6646484838839026000","eedone":"Yes","epochtime":"1578128400","fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":"22","is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":"55","mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":"10","nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":"6200694987","ocpubip":"624054738","odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":"300","reqdatasize":"1000","respheadersize":"500","respdatasize":"10000","riskscore":"10","ruletype":"File Type Control","second":"48","srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":"5","throttlerespsize":"7","totalsize":"11800","trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":"2023","ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} \ No newline at end of file diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log-expected.json b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log-expected.json index 069c19cc37cf..d65fa098a97c 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log-expected.json +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web-http-endpoint.log-expected.json @@ -37,7 +37,7 @@ ], "id": "123456789", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"81.2.69.142\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Allowed\",\"recordid\":\"123456789\",\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"rar\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":\"1300\",\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":\"10500\",\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_1\",\"cltip\":\"81.2.69.142\",\"cltintip\":\"81.2.69.142\",\"cltsourceport\":\"1235\",\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com%2Findex\",\"url\":\"www.trythisencodeurl.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"None\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"0\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"81.2.69.142\",\"cltsslfailcount\":\"100\",\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":\"16\",\"dept\":\"Sales\",\"deviceappversion\":\"81.2.69.142\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":\"6646484838839026000\",\"eedone\":\"Yes\",\"epochtime\":\"1578128400\",\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":\"22\",\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":\"55\",\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":\"10\",\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":\"6200694987\",\"ocpubip\":\"624054738\",\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":\"300\",\"reqdatasize\":\"1000\",\"respheadersize\":\"500\",\"respdatasize\":\"10000\",\"riskscore\":\"10\",\"ruletype\":\"File Type Control\",\"second\":\"48\",\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":\"5\",\"throttlerespsize\":\"7\",\"totalsize\":\"11800\",\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":\"2023\",\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"81.2.69.142\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Allowed\",\"recordid\":\"123456789\",\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"rar\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":\"1300\",\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":\"10500\",\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_1\",\"cltip\":\"81.2.69.142\",\"cltintip\":\"81.2.69.142\",\"cltsourceport\":\"1235\",\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com%2Findex\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"None\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"0\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"81.2.69.142\",\"cltsslfailcount\":\"100\",\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":\"16\",\"dept\":\"Sales\",\"deviceappversion\":\"81.2.69.142\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":\"6646484838839026000\",\"eedone\":\"Yes\",\"epochtime\":\"1578128400\",\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":\"22\",\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":\"55\",\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":\"10\",\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":\"6200694987\",\"ocpubip\":\"624054738\",\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":\"300\",\"reqdatasize\":\"1000\",\"respheadersize\":\"500\",\"respdatasize\":\"10000\",\"riskscore\":\"10\",\"ruletype\":\"File Type Control\",\"second\":\"48\",\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":\"5\",\"throttlerespsize\":\"7\",\"totalsize\":\"11800\",\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":\"2023\",\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -461,7 +461,7 @@ ], "id": "123456789", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"81.2.69.142\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Blocked\",\"recordid\":\"123456789\",\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"rar\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":\"1300\",\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":\"10500\",\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_1\",\"cltip\":\"81.2.69.142\",\"cltintip\":\"81.2.69.142\",\"cltsourceport\":\"1235\",\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com%2Findex\",\"url\":\"www.trythisencodeurl.com/index\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"None\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"81.2.69.142\",\"cltsslfailcount\":\"100\",\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":\"16\",\"dept\":\"Sales\",\"deviceappversion\":\"81.2.69.142\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":\"6646484838839026000\",\"eedone\":\"Yes\",\"epochtime\":\"1578128400\",\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":\"22\",\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":\"55\",\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":\"10\",\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":\"6200694987\",\"ocpubip\":\"624054738\",\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":\"300\",\"reqdatasize\":\"1000\",\"respheadersize\":\"500\",\"respdatasize\":\"10000\",\"riskscore\":\"10\",\"ruletype\":\"File Type Control\",\"second\":\"48\",\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":\"5\",\"throttlerespsize\":\"7\",\"totalsize\":\"11800\",\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":\"2023\",\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"81.2.69.142\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Blocked\",\"recordid\":\"123456789\",\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"rar\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":\"1300\",\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":\"10500\",\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_1\",\"cltip\":\"81.2.69.142\",\"cltintip\":\"81.2.69.142\",\"cltsourceport\":\"1235\",\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com%2Findex\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"None\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"81.2.69.142\",\"cltsslfailcount\":\"100\",\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":\"16\",\"dept\":\"Sales\",\"deviceappversion\":\"81.2.69.142\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":\"6646484838839026000\",\"eedone\":\"Yes\",\"epochtime\":\"1578128400\",\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":\"22\",\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":\"55\",\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":\"10\",\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":\"6200694987\",\"ocpubip\":\"624054738\",\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":\"300\",\"reqdatasize\":\"1000\",\"respheadersize\":\"500\",\"respdatasize\":\"10000\",\"riskscore\":\"10\",\"ruletype\":\"File Type Control\",\"second\":\"48\",\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":\"5\",\"throttlerespsize\":\"7\",\"totalsize\":\"11800\",\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":\"2023\",\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log index 2ee6f1318f9a..3d2aa66c80ef 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log @@ -1,4 +1,4 @@ -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23%3A20%3A50.52Z","url":"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23:20:50.52Z","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 17 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.1","external_devid":"2345","devicemodel":"20L8S7WC09","action":"Allowed","recordid":123456780,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTPS","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.example.com%3A443","url":"www.example.com:443","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 18 23:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.2","external_devid":"2346","devicemodel":"20L8S7WC10","action":"Allowed","recordid":123456781,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"SSL","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.example.com.com/params?Id=1&ts=2006-01-02T15%3A04%3A05Z07%3A00&user=65792&version=10.0.19041.1266","url":"www.example.com.com/params?version=10.0.19041.1266&user=65792&Id=1&ts=2006-01-02T15:04:05Z07:00","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 18 23:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.2","external_devid":"2346","devicemodel":"20L8S7WC10","action":"Allowed","recordid":123456781,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"SSL","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.youtube.com/api/stats/abcd?afmt=251&bat=330.017%3A0.96%3A1&bh=330.017%3A121.264&bwe=330.017%3A7458601&bwm=330.017%3A2407754%3A0.844&c=WEB&cbr=Edge+Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017%3A328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1%2C23848225%2C137802%2C18617%2C204121%2C230596%2C222097%2C16229%2C133212%2C14625955%2C11684381%2C7222%2C14207%2C9859%2C12177%2C9954%2C1192%2C7913%2C18310%2C273%2C4147%2C2819%2C2%2C16344%2C1424%2C19204%2C9948%2C2196%2C9996%2C19%2C2%2C1082%2C6953%2C101%2C1401%2C9542%2C2471%2C3292%2C2716%2C1538%2C723%2C2575%2C9567%2C1375%2C3761%2C4162%2C8610%2C173%2C201%2C10406%2C321%2C148%2C2%2C343%2C1783%2C14%2C1322%2C50%2C621%2C702%2C1062%2C1769%2C1823%2C896%2C2291%2C2912%2C7568%2C342&fmt=398&ns=yt&referrer=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Disa90_67as&sdetail=rv%3Aisa89_68ad&seq=13&sourceid=yw&vps=330.017%3APL","url":"www.youtube.com/api/stats/abcd?fmt=398&afmt=251&cpn=FUB73SQWxSHKADxvJ&el=detailpage&ns=yt&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&cl=655399956&seq=13&docid=WVhG_sNVLasD&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&sourceid=yw&cbr=Edge%20Chromium&cbrver=115.0.0.0&c=WEB&cver=2.20240724.03.00&cplayer=UNIPLAYER&cos=Windows&cosver=10.0&cplatform=DESKTOP&vps=330.017:PL&bwm=330.017:2407754:0.844&bwe=330.017:7458601&bat=330.017:0.96:1&cmt=330.017:328.837&bh=330.017:121.264","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} \ No newline at end of file +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23%3A20%3A50.52Z","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 17 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.1","external_devid":"2345","devicemodel":"20L8S7WC09","action":"Allowed","recordid":123456780,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTPS","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.example.com%3A443","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 18 23:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.2","external_devid":"2346","devicemodel":"20L8S7WC10","action":"Allowed","recordid":123456781,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"SSL","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.example.com.com/params?Id=1&ts=2006-01-02T15%3A04%3A05Z07%3A00&user=65792&version=10.0.19041.1266","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 18 23:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.2","external_devid":"2346","devicemodel":"20L8S7WC10","action":"Allowed","recordid":123456781,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"SSL","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.youtube.com/api/stats/abcd?afmt=251&bat=330.017%3A0.96%3A1&bh=330.017%3A121.264&bwe=330.017%3A7458601&bwm=330.017%3A2407754%3A0.844&c=WEB&cbr=Edge+Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017%3A328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1%2C23848225%2C137802%2C18617%2C204121%2C230596%2C222097%2C16229%2C133212%2C14625955%2C11684381%2C7222%2C14207%2C9859%2C12177%2C9954%2C1192%2C7913%2C18310%2C273%2C4147%2C2819%2C2%2C16344%2C1424%2C19204%2C9948%2C2196%2C9996%2C19%2C2%2C1082%2C6953%2C101%2C1401%2C9542%2C2471%2C3292%2C2716%2C1538%2C723%2C2575%2C9567%2C1375%2C3761%2C4162%2C8610%2C173%2C201%2C10406%2C321%2C148%2C2%2C343%2C1783%2C14%2C1322%2C50%2C621%2C702%2C1062%2C1769%2C1823%2C896%2C2291%2C2912%2C7568%2C342&fmt=398&ns=yt&referrer=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Disa90_67as&sdetail=rv%3Aisa89_68ad&seq=13&sourceid=yw&vps=330.017%3APL","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.1","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} \ No newline at end of file diff --git a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log-expected.json b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log-expected.json index 6e17e033539a..73ba3678ed79 100644 --- a/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log-expected.json +++ b/packages/zscaler_zia/data_stream/web/_dev/test/pipeline/test-web.log-expected.json @@ -25,7 +25,7 @@ ], "id": "123456789", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.0\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Allowed\",\"recordid\":123456789,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23%3A20%3A50.52Z\",\"url\":\"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23:20:50.52Z\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.0\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 16 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.0\",\"external_devid\":\"1234\",\"devicemodel\":\"20L8S7WC08\",\"action\":\"Allowed\",\"recordid\":123456789,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTP\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.trythisencodeurl.com:443/index?qtime=2023-04-12T23%3A20%3A50.52Z\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.0\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -445,7 +445,7 @@ ], "id": "123456780", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 17 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.1\",\"external_devid\":\"2345\",\"devicemodel\":\"20L8S7WC09\",\"action\":\"Allowed\",\"recordid\":123456780,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTPS\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.example.com%3A443\",\"url\":\"www.example.com:443\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 17 22:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.1\",\"external_devid\":\"2345\",\"devicemodel\":\"20L8S7WC09\",\"action\":\"Allowed\",\"recordid\":123456780,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"HTTPS\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.example.com%3A443\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -863,7 +863,7 @@ ], "id": "123456781", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 18 23:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.2\",\"external_devid\":\"2346\",\"devicemodel\":\"20L8S7WC10\",\"action\":\"Allowed\",\"recordid\":123456781,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"SSL\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.example.com.com/params?Id=1&ts=2006-01-02T15%3A04%3A05Z07%3A00&user=65792&version=10.0.19041.1266\",\"url\":\"www.example.com.com/params?version=10.0.19041.1266&user=65792&Id=1&ts=2006-01-02T15:04:05Z07:00\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 18 23:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.2\",\"external_devid\":\"2346\",\"devicemodel\":\"20L8S7WC10\",\"action\":\"Allowed\",\"recordid\":123456781,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"SSL\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.example.com.com/params?Id=1&ts=2006-01-02T15%3A04%3A05Z07%3A00&user=65792&version=10.0.19041.1266\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -1243,7 +1243,7 @@ "category_method": "Database A", "class": "Bandwidth Loss", "filter_rule_label": "URL_Filtering_2", - "name": "www.example.com.com/params?version=10.0.19041.1266&user=65792&Id=1&ts=2006-01-02T15:04:05Z07:00" + "name": "www.example.com.com/params?Id=1&ts=2006-01-02T15:04:05Z07:00&user=65792&version=10.0.19041.1266" }, "user_agent": { "class": "Firefox", @@ -1282,7 +1282,7 @@ ], "id": "123456781", "kind": "event", - "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 18 23:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.2\",\"external_devid\":\"2346\",\"devicemodel\":\"20L8S7WC10\",\"action\":\"Allowed\",\"recordid\":123456781,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"SSL\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.youtube.com/api/stats/abcd?afmt=251&bat=330.017%3A0.96%3A1&bh=330.017%3A121.264&bwe=330.017%3A7458601&bwm=330.017%3A2407754%3A0.844&c=WEB&cbr=Edge+Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017%3A328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1%2C23848225%2C137802%2C18617%2C204121%2C230596%2C222097%2C16229%2C133212%2C14625955%2C11684381%2C7222%2C14207%2C9859%2C12177%2C9954%2C1192%2C7913%2C18310%2C273%2C4147%2C2819%2C2%2C16344%2C1424%2C19204%2C9948%2C2196%2C9996%2C19%2C2%2C1082%2C6953%2C101%2C1401%2C9542%2C2471%2C3292%2C2716%2C1538%2C723%2C2575%2C9567%2C1375%2C3761%2C4162%2C8610%2C173%2C201%2C10406%2C321%2C148%2C2%2C343%2C1783%2C14%2C1322%2C50%2C621%2C702%2C1062%2C1769%2C1823%2C896%2C2291%2C2912%2C7568%2C342&fmt=398&ns=yt&referrer=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Disa90_67as&sdetail=rv%3Aisa89_68ad&seq=13&sourceid=yw&vps=330.017%3APL\",\"url\":\"www.youtube.com/api/stats/abcd?fmt=398&afmt=251&cpn=FUB73SQWxSHKADxvJ&el=detailpage&ns=yt&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&cl=655399956&seq=13&docid=WVhG_sNVLasD&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&sourceid=yw&cbr=Edge%20Chromium&cbrver=115.0.0.0&c=WEB&cver=2.20240724.03.00&cplayer=UNIPLAYER&cos=Windows&cosver=10.0&cplatform=DESKTOP&vps=330.017:PL&bwm=330.017:2407754:0.844&bwe=330.017:7458601&bat=330.017:0.96:1&cmt=330.017:328.837&bh=330.017:121.264\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", + "original": "{\"sourcetype\":\"zscalernss-web\",\"event\":{\"time\":\"Mon Oct 18 23:55:48 2023\",\"cloudname\":\"zscaler.net\",\"host\":\"mail.google.com\",\"serverip\":\"1.128.0.2\",\"external_devid\":\"2346\",\"devicemodel\":\"20L8S7WC10\",\"action\":\"Allowed\",\"recordid\":123456781,\"reason\":\"File Attachment Cautioned\",\"threatseverity\":\"Critical (90–100)\",\"tz\":\"GMT\",\"filesubtype\":\"exe\",\"upload_filesubtype\":\"rar\",\"sha256\":\"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c\",\"bamd5\":\"196a3d797bfee07fe4596b69f4ce1141\",\"filename\":\"nssfeed.txt\",\"upload_filename\":\"nssfeed.exe\",\"filetype\":\"RAR Files\",\"devicename\":\"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734\",\"devicehostname\":\"THINKPADSMITH\",\"deviceostype\":\"iOS\",\"deviceosversion\":\"Version 10.14.2 (Build 18C54)\",\"devicetype\":\"Zscaler Client Connector\",\"reqsize\":1300,\"reqmethod\":\"invalid\",\"refererurl\":\"www.example.com\",\"respsize\":10500,\"respcode\":\"100\",\"reqversion\":\"1.1\",\"respversion\":\"1\",\"proto\":\"SSL\",\"company\":\"Zscaler\",\"dlpmd5\":\"154f149b1443fbfa8c121d13e5c019a1\",\"apprulelabel\":\"File_Sharing_1\",\"dlprulename\":\"DLP_Rule_1\",\"rulelabel\":\"URL_Filtering_1\",\"urlfilterrulelabel\":\"URL_Filtering_2\",\"cltip\":\"81.2.69.144\",\"cltintip\":\"89.160.20.128\",\"cltsourceport\":12345,\"threatname\":\"EICAR Test File\",\"cltsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"clttlsversion\":\"SSL2\",\"eurl\":\"www.youtube.com/api/stats/abcd?afmt=251&bat=330.017%3A0.96%3A1&bh=330.017%3A121.264&bwe=330.017%3A7458601&bwm=330.017%3A2407754%3A0.844&c=WEB&cbr=Edge+Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017%3A328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1%2C23848225%2C137802%2C18617%2C204121%2C230596%2C222097%2C16229%2C133212%2C14625955%2C11684381%2C7222%2C14207%2C9859%2C12177%2C9954%2C1192%2C7913%2C18310%2C273%2C4147%2C2819%2C2%2C16344%2C1424%2C19204%2C9948%2C2196%2C9996%2C19%2C2%2C1082%2C6953%2C101%2C1401%2C9542%2C2471%2C3292%2C2716%2C1538%2C723%2C2575%2C9567%2C1375%2C3761%2C4162%2C8610%2C173%2C201%2C10406%2C321%2C148%2C2%2C343%2C1783%2C14%2C1322%2C50%2C621%2C702%2C1062%2C1769%2C1823%2C896%2C2291%2C2912%2C7568%2C342&fmt=398&ns=yt&referrer=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Disa90_67as&sdetail=rv%3Aisa89_68ad&seq=13&sourceid=yw&vps=330.017%3APL\",\"useragent\":\"Mozilla/5.0\",\"login\":\"jdoe@safemarch.com\",\"applayerprotocol\":\"FTP\",\"appclass\":\"Administration\",\"appname\":\"Adobe Connect\",\"appriskscore\":\"1\",\"bandwidthclassname\":\"Entertainment\",\"bandwidthrulename\":\"Office 365\",\"bwthrottle\":\"Yes\",\"bypassedtime\":\"Mon Oct 16 22:55:48 2023\",\"bypassedtraffic\":\"1\",\"cltsslsessreuse\":\"Unknown\",\"cltpubip\":\"175.16.199.0\",\"cltsslfailcount\":100,\"cltsslfailreason\":\"Bad Record Mac\",\"contenttype\":\"application/vnd_apple_keynote\",\"datacentercity\":\"Sa\",\"datacentercountry\":\"US\",\"datacenter\":\"CA Client Node DC\",\"day\":\"Mon\",\"day_of_month\":16,\"dept\":\"Sales\",\"deviceappversion\":\"1.128.0.1\",\"deviceowner\":\"jsmith\",\"df_hosthead\":\"df_hosthead\",\"df_hostname\":\"df_hostname\",\"dlpdicthitcount\":\"4\",\"dlpdict\":\"Credit Cards\",\"dlpeng\":\"HIPAA\",\"dlpidentifier\":6646484838839026000,\"eedone\":\"Yes\",\"epochtime\":1578128400,\"fileclass\":\"Active Web Contents\",\"flow_type\":\"Direct\",\"forward_gateway_ip\":\"10.1.1.1\",\"forward_gateway_name\":\"FWD_1\",\"forward_type\":\"Direct\",\"hour\":22,\"is_sslexpiredca\":\"Yes\",\"is_sslselfsigned\":\"Yes\",\"is_ssluntrustedca\":\"Pass\",\"keyprotectiontype\":\"HSM Protection\",\"location\":\"Headquarters\",\"malwarecategory\":\"Adware\",\"malwareclass\":\"Sandbox\",\"minute\":55,\"mobappcategory\":\"Communication\",\"mobappname\":\"Amazon\",\"mobdevtype\":\"Google Android\",\"module\":\"Administration\",\"month\":\"Oct\",\"month_of_year\":10,\"nssserviceip\":\"192.168.2.200\",\"oapprulelabel\":\"5300295980\",\"obwclassname\":\"10831489\",\"ocip\":6200694987,\"ocpubip\":624054738,\"odevicehostname\":\"2168890624\",\"odevicename\":\"2175092224\",\"odeviceowner\":\"10831489\",\"odlpdict\":\"10831489\",\"odlpeng\":\"4094304256\",\"odlprulename\":\"6857275752\",\"ofwd_gw_name\":\"8794487099\",\"ologin\":\"4094304256\",\"ordr_rulename\":\"3399565100\",\"ourlcat\":\"7956407282\",\"ourlfilterrulelabel\":\"4951704103\",\"ozpa_app_seg_name\":\"7648246731\",\"externalsslpolicyreason\":\"Blocked\",\"productversion\":\"5.0.902.95524_04\",\"rdr_rulename\":\"FWD_Rule_1\",\"refererhost\":\"www.example.com for http://www.example.com/index.html\",\"reqheadersize\":300,\"reqdatasize\":1000,\"respheadersize\":500,\"respdatasize\":10000,\"riskscore\":10,\"ruletype\":\"File Type Control\",\"second\":48,\"srvcertchainvalpass\":\"Unknown\",\"srvcertvalidationtype\":\"EV (Extended Validation)\",\"srvcertvalidityperiod\":\"Short\",\"srvsslcipher\":\"SSL3_CK_RSA_NULL_MD5\",\"serversslsessreuse\":\"Unknown\",\"srvocspresult\":\"Good\",\"srvtlsversion\":\"SSL2\",\"srvwildcardcert\":\"Unknown\",\"ssldecrypted\":\"Yes\",\"throttlereqsize\":5,\"throttlerespsize\":7,\"totalsize\":11800,\"trafficredirectmethod\":\"DNAT (Destination Translation)\",\"unscannabletype\":\"Encrypted File\",\"upload_doctypename\":\"Corporate Finance\",\"upload_fileclass\":\"upload_fileclass\",\"upload_filetype\":\"RAR Files\",\"urlcatmethod\":\"Database A\",\"urlsubcat\":\"Entertainment\",\"urlsupercat\":\"Travel\",\"urlclass\":\"Bandwidth Loss\",\"useragentclass\":\"Firefox\",\"useragenttoken\":\"Google Chrome (0.x)\",\"userlocationname\":\"userlocationname\",\"year\":2023,\"ztunnelversion\":\"ZTUNNEL_1_0\",\"zpa_app_seg_name\":\"ZPA_test_app_segment\"}}", "reason": "File Attachment Cautioned", "timezone": "GMT", "type": [ @@ -1662,7 +1662,7 @@ "category_method": "Database A", "class": "Bandwidth Loss", "filter_rule_label": "URL_Filtering_2", - "name": "www.youtube.com/api/stats/abcd?fmt=398&afmt=251&cpn=FUB73SQWxSHKADxvJ&el=detailpage&ns=yt&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&cl=655399956&seq=13&docid=WVhG_sNVLasD&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&sourceid=yw&cbr=Edge Chromium&cbrver=115.0.0.0&c=WEB&cver=2.20240724.03.00&cplayer=UNIPLAYER&cos=Windows&cosver=10.0&cplatform=DESKTOP&vps=330.017:PL&bwm=330.017:2407754:0.844&bwe=330.017:7458601&bat=330.017:0.96:1&cmt=330.017:328.837&bh=330.017:121.264" + "name": "www.youtube.com/api/stats/abcd?afmt=251&bat=330.017:0.96:1&bh=330.017:121.264&bwe=330.017:7458601&bwm=330.017:2407754:0.844&c=WEB&cbr=Edge Chromium&cbrver=115.0.0.0&cl=655399956&cmt=330.017:328.837&cos=Windows&cosver=10.0&cplatform=DESKTOP&cplayer=UNIPLAYER&cpn=FUB73SQWxSHKADxvJ&cver=2.20240724.03.00&docid=WVhG_sNVLasD&el=detailpage&fexp=v1,23848225,137802,18617,204121,230596,222097,16229,133212,14625955,11684381,7222,14207,9859,12177,9954,1192,7913,18310,273,4147,2819,2,16344,1424,19204,9948,2196,9996,19,2,1082,6953,101,1401,9542,2471,3292,2716,1538,723,2575,9567,1375,3761,4162,8610,173,201,10406,321,148,2,343,1783,14,1322,50,621,702,1062,1769,1823,896,2291,2912,7568,342&fmt=398&ns=yt&referrer=https://www.youtube.com/watch?v=isa90_67as&sdetail=rv:isa89_68ad&seq=13&sourceid=yw&vps=330.017:PL" }, "user_agent": { "class": "Firefox", diff --git a/packages/zscaler_zia/data_stream/web/elasticsearch/ingest_pipeline/default.yml b/packages/zscaler_zia/data_stream/web/elasticsearch/ingest_pipeline/default.yml index 2369117470f7..029de9d0f051 100644 --- a/packages/zscaler_zia/data_stream/web/elasticsearch/ingest_pipeline/default.yml +++ b/packages/zscaler_zia/data_stream/web/elasticsearch/ingest_pipeline/default.yml @@ -1322,17 +1322,16 @@ processors: value: '{{{zscaler_zia.web.url.filter_rule_label}}}' allow_duplicates: false if: ctx.zscaler_zia?.web?.url?.filter_rule_label != null - - urldecode: - field: json.url - target_field: zscaler_zia.web.url.name - tag: urldecode_url - ignore_missing: true - ignore_failure: true - urldecode: field: json.eurl target_field: json.eurl tag: urldecode_eurl ignore_missing: true + - set: + field: zscaler_zia.web.url.name + tag: set_web_url_name + copy_from: json.eurl + ignore_empty_value: true - script: description: Build URI for parsing. tag: Build URI for parsing diff --git a/packages/zscaler_zia/docs/README.md b/packages/zscaler_zia/docs/README.md index ed24eeb719d3..30a7ce2559bc 100644 --- a/packages/zscaler_zia/docs/README.md +++ b/packages/zscaler_zia/docs/README.md @@ -214,14 +214,14 @@ Sample Response: ![Escape feed setup image](../img/escape_feed.png?raw=true) See: [Zscaler Vendor documentation](https://help.zscaler.com/zia/nss-feed-output-format-web-logs) -Zscaler Web Log response format (v5): +Zscaler Web Log response format (v6): ``` -\{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","eurl":"%s{eurl}","url":"%s{url}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} +\{"sourcetype":"zscalernss-web","event":\{"time":"%s{time}","cloudname":"%s{cloudname}","host":"%s{host}","serverip":"%s{sip}","external_devid":"%s{external_devid}","devicemodel":"%s{devicemodel}","action":"%s{action}","recordid":"%d{recordid}","reason":"%s{reason}","threatseverity":"%s{threatseverity}","tz":"%s{tz}","filesubtype":"%s{filesubtype}","upload_filesubtype":"%s{upload_filesubtype}","sha256":"%s{sha256}","bamd5":"%s{bamd5}","filename":"%s{filename}","upload_filename":"%s{upload_filename}","filetype":"%s{filetype}","devicename":"%s{devicename}","devicehostname":"%s{devicehostname}","deviceostype":"%s{deviceostype}","deviceosversion":"%s{deviceosversion}","devicetype":"%s{devicetype}","reqsize":"%d{reqsize}","reqmethod":"%s{reqmethod}","refererurl":"%s{referer}","respsize":"%d{respsize}","respcode":"%s{respcode}","reqversion":"%s{reqversion}","respversion":"%s{respversion}","proto":"%s{proto}","company":"%s{company}","dlpmd5":"%s{dlpmd5}","apprulelabel":"%s{apprulelabel}","dlprulename":"%s{dlprulename}","rulelabel":"%s{rulelabel}","urlfilterrulelabel":"%s{urlfilterrulelabel}","cltip":"%s{cip}","cltintip":"%s{cintip}","cltsourceport":"%d{clt_sport}","threatname":"%s{threatname}","cltsslcipher":"%s{clientsslcipher}","clttlsversion":"%s{clienttlsversion}","eurl":"%s{eurl}","useragent":"%s{ua}","login":"%s{login}","applayerprotocol":"%s{alpnprotocol}","appclass":"%s{appclass}","appname":"%s{appname}","appriskscore":"%s{app_risk_score}","bandwidthclassname":"%s{bwclassname}","bandwidthrulename":"%s{bwrulename}","bwthrottle":"%s{bwthrottle}","bypassedtime":"%s{bypassed_etime}","bypassedtraffic":"%d{bypassed_traffic}","cltsslsessreuse":"%s{clientsslsessreuse}","cltpubip":"%s{cpubip}","cltsslfailcount":"%d{cltsslfailcount}","cltsslfailreason":"%s{cltsslfailreason}","contenttype":"%s{contenttype}","datacentercity":"%s{datacentercity}","datacentercountry":"%s{datacentercountry}","datacenter":"%s{datacenter}","day":"%s{day}","day_of_month":"%02d{dd}","dept":"%s{dept}","deviceappversion":"%s{deviceappversion}","deviceowner":"%s{deviceowner}","df_hosthead":"%s{df_hosthead}","df_hostname":"%s{df_hostname}","dlpdicthitcount":"%s{dlpdicthitcount}","dlpdict":"%s{dlpdict}","dlpeng":"%s{dlpeng}","dlpidentifier":"%d{dlpidentifier}","eedone":"%s{eedone}","epochtime":"%d{epochtime}","fileclass":"%s{fileclass}","flow_type":"%s{flow_type}","forward_gateway_ip":"%s{fwd_gw_ip}","forward_gateway_name":"%s{fwd_gw_name}","forward_type":"%s{fwd_type}","hour":"%02d{hh}","is_sslexpiredca":"%s{is_sslexpiredca}","is_sslselfsigned":"%s{is_sslselfsigned}","is_ssluntrustedca":"%s{is_ssluntrustedca}","keyprotectiontype":"%s{keyprotectiontype}","location":"%s{location}","malwarecategory":"%s{malwarecat}","malwareclass":"%s{malwareclass}","minute":"%02d{mm}","mobappcategory":"%s{mobappcat}","mobappname":"%s{mobappname}","mobdevtype":"%s{mobdevtype}","module":"%s{module}","month":"%s{mon}","month_of_year":"%02d{mth}","nssserviceip":"%s{nsssvcip}","oapprulelabel":"%s{oapprulelabel}","obwclassname":"%s{obwclassname}","ocip":"%d{ocip}","ocpubip":"%d{ocpubip}","odevicehostname":"%s{odevicehostname}","odevicename":"%s{odevicename}","odeviceowner":"%s{odeviceowner}","odlpdict":"%s{odlpdict}","odlpeng":"%s{odlpeng}","odlprulename":"%s{odlprulename}","ofwd_gw_name":"%s{ofwd_gw_name}","ologin":"%s{ologin}","ordr_rulename":"%s{ordr_rulename}","ourlcat":"%s{ourlcat}","ourlfilterrulelabel":"%s{ourlfilterrulelabel}","ozpa_app_seg_name":"%s{ozpa_app_seg_name}","externalsslpolicyreason":"%s{externalspr}","productversion":"%s{productversion}","rdr_rulename":"%s{rdr_rulename}","refererhost":"%s{refererhost}","reqheadersize":"%d{reqhdrsize}","reqdatasize":"%d{reqdatasize}","respheadersize":"%d{resphdrsize}","respdatasize":"%d{respdatasize}","riskscore":"%d{riskscore}","ruletype":"%s{ruletype}","second":"%02d{ss}","srvcertchainvalpass":"%s{srvcertchainvalpass}","srvcertvalidationtype":"%s{srvcertvalidationtype}","srvcertvalidityperiod":"%s{srvcertvalidityperiod}","srvsslcipher":"%s{srvsslcipher}","serversslsessreuse":"%s{serversslsessreuse}","srvocspresult":"%s{srvocspresult}","srvtlsversion":"%s{srvtlsversion}","srvwildcardcert":"%s{srvwildcardcert}","ssldecrypted":"%s{ssldecrypted}","throttlereqsize":"%d{throttlereqsize}","throttlerespsize":"%d{throttlerespsize}","totalsize":"%d{totalsize}","trafficredirectmethod":"%s{trafficredirectmethod}","unscannabletype":"%s{unscannabletype}","upload_doctypename":"%s{upload_doctypename}","upload_fileclass":"%s{upload_fileclass}","upload_filetype":"%s{upload_filetype}","urlcatmethod":"%s{urlcatmethod}","urlsubcat":"%s{urlcat}","urlsupercat":"%s{urlsupercat}","urlclass":"%s{urlclass}","useragentclass":"%s{uaclass}","useragenttoken":"%s{ua_token}","userlocationname":"%s{userlocationname}","year":"%04d{yyyy}","ztunnelversion":"%s{ztunnelversion}","zpa_app_seg_name":"%s{zpa_app_seg_name}"\}\} ``` Sample Response: ```json -{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com/index","url":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} +{"sourcetype":"zscalernss-web","event":{"time":"Mon Oct 16 22:55:48 2023","cloudname":"zscaler.net","host":"mail.google.com","serverip":"1.128.0.0","external_devid":"1234","devicemodel":"20L8S7WC08","action":"Allowed","recordid":123456789,"reason":"File Attachment Cautioned","threatseverity":"Critical (90–100)","tz":"GMT","filesubtype":"exe","upload_filesubtype":"rar","sha256":"81ec78bc8298568bb5ea66d3c2972b670d0f7459b6cdbbcaacce90ab417ab15c","bamd5":"196a3d797bfee07fe4596b69f4ce1141","filename":"nssfeed.txt","upload_filename":"nssfeed.exe","filetype":"RAR Files","devicename":"PC11NLPA:5F08D97BBF43257A8FB4BBF4061A38AE324EF734","devicehostname":"THINKPADSMITH","deviceostype":"iOS","deviceosversion":"Version 10.14.2 (Build 18C54)","devicetype":"Zscaler Client Connector","reqsize":1300,"reqmethod":"invalid","refererurl":"www.example.com","respsize":10500,"respcode":"100","reqversion":"1.1","respversion":"1","proto":"HTTP","company":"Zscaler","dlpmd5":"154f149b1443fbfa8c121d13e5c019a1","apprulelabel":"File_Sharing_1","dlprulename":"DLP_Rule_1","rulelabel":"URL_Filtering_1","urlfilterrulelabel":"URL_Filtering_2","cltip":"81.2.69.144","cltintip":"89.160.20.128","cltsourceport":12345,"threatname":"EICAR Test File","cltsslcipher":"SSL3_CK_RSA_NULL_MD5","clttlsversion":"SSL2","eurl":"www.trythisencodeurl.com/index","useragent":"Mozilla/5.0","login":"jdoe@safemarch.com","applayerprotocol":"FTP","appclass":"Administration","appname":"Adobe Connect","appriskscore":"1","bandwidthclassname":"Entertainment","bandwidthrulename":"Office 365","bwthrottle":"Yes","bypassedtime":"Mon Oct 16 22:55:48 2023","bypassedtraffic":"1","cltsslsessreuse":"Unknown","cltpubip":"175.16.199.0","cltsslfailcount":100,"cltsslfailreason":"Bad Record Mac","contenttype":"application/vnd_apple_keynote","datacentercity":"Sa","datacentercountry":"US","datacenter":"CA Client Node DC","day":"Mon","day_of_month":16,"dept":"Sales","deviceappversion":"1.128.0.0","deviceowner":"jsmith","df_hosthead":"df_hosthead","df_hostname":"df_hostname","dlpdicthitcount":"4","dlpdict":"Credit Cards","dlpeng":"HIPAA","dlpidentifier":6646484838839026000,"eedone":"Yes","epochtime":1578128400,"fileclass":"Active Web Contents","flow_type":"Direct","forward_gateway_ip":"10.1.1.1","forward_gateway_name":"FWD_1","forward_type":"Direct","hour":22,"is_sslexpiredca":"Yes","is_sslselfsigned":"Yes","is_ssluntrustedca":"Pass","keyprotectiontype":"HSM Protection","location":"Headquarters","malwarecategory":"Adware","malwareclass":"Sandbox","minute":55,"mobappcategory":"Communication","mobappname":"Amazon","mobdevtype":"Google Android","module":"Administration","month":"Oct","month_of_year":10,"nssserviceip":"192.168.2.200","oapprulelabel":"5300295980","obwclassname":"10831489","ocip":6200694987,"ocpubip":624054738,"odevicehostname":"2168890624","odevicename":"2175092224","odeviceowner":"10831489","odlpdict":"10831489","odlpeng":"4094304256","odlprulename":"6857275752","ofwd_gw_name":"8794487099","ologin":"4094304256","ordr_rulename":"3399565100","ourlcat":"7956407282","ourlfilterrulelabel":"4951704103","ozpa_app_seg_name":"7648246731","externalsslpolicyreason":"Blocked","productversion":"5.0.902.95524_04","rdr_rulename":"FWD_Rule_1","refererhost":"www.example.com for http://www.example.com/index.html","reqheadersize":300,"reqdatasize":1000,"respheadersize":500,"respdatasize":10000,"riskscore":10,"ruletype":"File Type Control","second":48,"srvcertchainvalpass":"Unknown","srvcertvalidationtype":"EV (Extended Validation)","srvcertvalidityperiod":"Short","srvsslcipher":"SSL3_CK_RSA_NULL_MD5","serversslsessreuse":"Unknown","srvocspresult":"Good","srvtlsversion":"SSL2","srvwildcardcert":"Unknown","ssldecrypted":"Yes","throttlereqsize":5,"throttlerespsize":7,"totalsize":11800,"trafficredirectmethod":"DNAT (Destination Translation)","unscannabletype":"Encrypted File","upload_doctypename":"Corporate Finance","upload_fileclass":"upload_fileclass","upload_filetype":"RAR Files","urlcatmethod":"Database A","urlsubcat":"Entertainment","urlsupercat":"Travel","urlclass":"Bandwidth Loss","useragentclass":"Firefox","useragenttoken":"Google Chrome (0.x)","userlocationname":"userlocationname","year":2023,"ztunnelversion":"ZTUNNEL_1_0","zpa_app_seg_name":"ZPA_test_app_segment"}} ``` ### Enabling the integration in Elastic: diff --git a/packages/zscaler_zia/manifest.yml b/packages/zscaler_zia/manifest.yml index dde47f3d7b73..81ce82c21255 100644 --- a/packages/zscaler_zia/manifest.yml +++ b/packages/zscaler_zia/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.3" name: zscaler_zia title: Zscaler Internet Access -version: "3.0.4" +version: "3.1.0" description: Collect logs from Zscaler Internet Access (ZIA) with Elastic Agent. type: integration categories: From e6362aa697abb3c2b2ff0f6e200a4b7bb5fcb638 Mon Sep 17 00:00:00 2001 From: anil-elastic Date: Tue, 13 Aug 2024 15:07:20 +0530 Subject: [PATCH 75/77] [AWS][ELB] Split ELB data dashboard into 3 different data dashboard (#10444) * split ELB data dashboard into 3 different dashboard * Update packages/aws/changelog.yml Co-authored-by: Gabriel Pop <94497545+gpop63@users.noreply.github.com> * Review comment fixed * ALB snapshot updated * fomatting fixed * Updated existing ELB dashboard * Updated with deprecrated and New dashboard link * dashboard size and text updated * version updated * file name corrected * dashboard word removed from link and NLB description updated. * snapshot updated * removed deprecated elb dashboard screenshot --------- Co-authored-by: Gabriel Pop <94497545+gpop63@users.noreply.github.com> --- packages/aws/changelog.yml | 5 + .../aws/img/aws-load-balancer-overview.png | Bin 0 -> 273922 bytes .../aws/img/metricbeat-aws-alb-overview.png | Bin 0 -> 668139 bytes .../aws/img/metricbeat-aws-elb-overview.png | Bin 159440 -> 718059 bytes .../aws/img/metricbeat-aws-nlb-overview.png | Bin 0 -> 494329 bytes ...-24f3e07a-b5f5-470c-8305-47c9626db37b.json | 2018 +++++++++++++++++ ...-34021716-10b1-4338-807c-1a9bcb3da222.json | 1467 ++++++++++++ ...-58e41f29-9b73-4ba9-b5f1-3e7b8ac1924b.json | 510 +++++ ...-e74bf320-b3ce-11e9-87a4-078dbbae220d.json | 683 +++--- ...-eab04366-1114-4ab0-ac49-9041e0a584b1.json | 1824 +++++++++++++++ packages/aws/manifest.yml | 16 +- 11 files changed, 6199 insertions(+), 324 deletions(-) create mode 100644 packages/aws/img/aws-load-balancer-overview.png create mode 100644 packages/aws/img/metricbeat-aws-alb-overview.png create mode 100644 packages/aws/img/metricbeat-aws-nlb-overview.png create mode 100644 packages/aws/kibana/dashboard/aws-24f3e07a-b5f5-470c-8305-47c9626db37b.json create mode 100644 packages/aws/kibana/dashboard/aws-34021716-10b1-4338-807c-1a9bcb3da222.json create mode 100644 packages/aws/kibana/dashboard/aws-58e41f29-9b73-4ba9-b5f1-3e7b8ac1924b.json create mode 100644 packages/aws/kibana/dashboard/aws-eab04366-1114-4ab0-ac49-9041e0a584b1.json diff --git a/packages/aws/changelog.yml b/packages/aws/changelog.yml index 4961d78dda8a..922f4af1016d 100644 --- a/packages/aws/changelog.yml +++ b/packages/aws/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.23.0" + changes: + - description: Split the current AWS ELB dashboard into 3 separate dashboards, each focusing on a specific type of load balancer ELB, ALB, and NLB. + type: enhancement + link: https://github.com/elastic/integrations/pull/10444 - version: "2.22.1" changes: - description: Update max_number_of_messages parameter description diff --git a/packages/aws/img/aws-load-balancer-overview.png b/packages/aws/img/aws-load-balancer-overview.png new file mode 100644 index 0000000000000000000000000000000000000000..29e6d782af656b7fa50fcd37682f34a7f0a4f55e GIT binary patch literal 273922 zcmdRVWn9%;w=Ufw-5`R1(jna~-Q68h(%m2+B_It8kdp3Z5z@8jkj_PS*Inw~@7d?x z^SUX&i|Za%rQqikh7A1vzYkPG|244s ze;@b~rdbd6KkV(VUGGT>vw`+|-`gPn8yWtVP8f&kC5#tNx+78fe->I8X(~DZ3GBK- zUH3;ns}yp=s;W4zU%!4{#gd*4{V%1RoFMnJPjy=|S>payW1v(lWM=GghIH(osQ@gb zqT=FC5C{t6%8iAMElf0L9H~qO=O1!e@xmp_;8oYuydWWn&B)M8OiFr}**PTr_cDvr zzchjJXU2&ZHp{zrfeCrA)z#JUU$dZ-WNx)$R1sdo{p%#sc?OiB0swMR-g9goJm#>N!GE48=kVrgGY|6Utn7a%iaD=RBU zm7uR*@yo+QIJGg@9RC=LRWqEputT#mGZn!v;rVCa9v&ZGkoutW@bJW5a+^E;Lr4!0 z92z?M+SW8StwM$usPN0x-%Id+gd>j(C@(J`6|8+C<1<=sq;zzy3Kq?YIr(Hoiozc* za1V<`k^PdSRp4WCxQp~JTRjadG>q`n>}Kd zTDP!#Z$2#!2gJ}Azv!aGP)})ezNkb{P5=8yQElsug+|Wr0SfE4fWSxAN(Tok`sthr zjlR%T`V(8bXbYWmV+}9DW}Q%_7Q6m@bDMrT>oC$uo)jQ2VS2+6c7@LE)t_4~9E|)a zVA&{S;=j!JC0q)`BtBC98PL&9ZL~oK)xs$NF#Q1i?%gGCW^-vNZm4$gC!hyXL^ABY zi=00FyYB&lj|0UiY#(r|{e;l&(OhwD5-GiX*umhkptfEOx~cDqdCc^%U(W3SYfWg1 zz>_zk-CasLIvTUAQzhhf0c;i*Nc_(SXsx%$&+D7Tlb5_tBI@?D<&3Smp6fpb*c<%> zHbpWe7w~==7Y7l{D*#t&@z+2U=)d)d`D@ddgq0l3e~do~F5>~AtK81P%F1Si08jlr z*8147)J1XTwX2US;=8nfqgA8W75^t_`0S$~-!KF^PGM}1UfGcxjT_<&xs9CO=a0wO zDlGVjT?^}d*#!J7LN3^#Y_E?f%RZ0l{Or!0F>vIz94Xf}(z?1Nf_AOO*4BZCd~SK4 zUm>_B`nTO-XJrYZQ}~~~)+p1y?zpF>{cU#qN03|Mzi6q|OZ#V=5NY@sAkqjiOnfAV z$U@EqvpJJfTs%O+>Ro>l5FL#^JS?xQrxx_%8?~9a`P#ze3%wTnE*&e^w6$)diQyii z8VkAbwqSuSs#jGOBVLP0u>tMvf)EFytfPa%&d%;)bv$%$yt%W(<<-z%-?LD{uE&cB zbU1CzRi)0ALa>umaa78iYvM=?P=MNr$qK?Rd6lD~a>SmXuYoqSa+kBYU_@xOHHE^- zxrEfjw9o3afJ#T_!IIvdgbG$Y-QKTQP1R;z?T^o^yDG`SljeSYn8X}s1faJ1^5!<) z9LYTd!rtY0H!#h$nj^+!bI*fR2Ty-r1sX-jRiN=lMuPhL2t@($NDyO`ewj}M`BNG$ zw5zMDmacA&!*Q0?&l$ws-CZQ~mcWn@@fm^larTExk=I|Sp?z1Lf~6JS8&};KCoi{o zbqv+KW2H23t`~Yw*?#198;!{9 zkMGJ0O#O0_bAi+S3P=u)-qADw@A``lTIM#4o^@50(YL|mxQ#iQQ0dRy9W*=UML9(? zqhE`r;tpJ1boUL5+Zz~^T^<*9<-G;0jA?BW{*kAVEAS2pTpRh_c1Hok1=>JBMM1&B zb%9YHXT{`z6_%AnwYM*)d;3<>!=u|_@1ww<>-PH^u8RC}2_i~KoDi4bv4}jUrE5Gh zT*zu=B=m4|?l1>@hU!lgmC_6kH_%c-%9n{S5NO$$PTn!<8(q4w>olQ${aQ$k1Alwl z(alXb|4!|42UkxQNgts#z!p24k6%8a8XkObKn3R^6x4n3>wz6^BZgMRt zcfI1TD8t!|$a2}Dv&=1#`QCt6Q5GFJM#2D?RDn|*!%sP1M{U&lfQIM_Xoz}U%@mpk z_(quDOR{F(2)$=hCq*M8I~}*`_@cXaR6Gk3Iy1$J|FZV!7e!G43YgH{VHl#c{z4z- zn}ex#aSz=q8@h|)yPdX&c^>M_Ng^X{Fkv*gkToj%On-P)H3*oKj=Zt$%1=@L0sGuBw8>)riK%MoH995ZB+?)kXSd z;0+xe!^6)PSG$vlnS8gVJ%dS~K7YRZc}Gc$|I4Ew1@@)?ii6h=gJ4J;wDN(uDChB- zavb*9e#6Z>x3PE|HFvXP;n8pw)KKRL$MkQCT{;z?5~W5$hP#htt{U7es{N;7yGj$QOTvk3JMsXKci_&kM;Kl z$V@kCpXngboRB>u;PT#0D~7RA#7k{&T;zN&Co3S!5*L1k2F-l;%TqQtCLb-k$L?uL zMNivAKn1(G)u-GaA!?4Pk6w~o*73B|qK#Hma*Zk9m~4savOj~zsO!B%tZ;!VjyIgv*2IGy2QkfXpMbNk+3h|ZR08ar4<;nB|u=f7=e%-O;;^gS1N&dim6 zdh(lVv!oc!5-{{6Z)QnvX)*zWM66au2~a{2K02Q}9zDQk@VerQ^eJ+HVd8>+$I4jx zzy&xL6sUwcd`5NMN=M{%9BlgJ!EqJ7$S$Gl19om=7Z^lL^74nna!h7jU0wduA8KGL z+l_}?UEtxAq>dK?lYVo^)!~8@=w`E6_0qbzx;!(JEX)5$oBB2FMq##Jdj%)?b+CcY zDLf$|q0!TWVSMU*C1N3p#?uoStJ#TBsZJg7Y`Nj{&lf6C1(vboDbM>ANa*PI|1c~_ z5?EY}?BeP=-|}^t@|fYmUd}Bqkv}dzUVB5(4C48{&gliPVMJHQX@tFYZ7YU5cPDpP zEQUXQ^iHJjyg9F6Y{d47=35yYO2BE*@vQriM6Y?;R{#X%`11Lj11aL-Qf`zG=Bi8) zTdzlTZ*C?lPJT>9EXKN$aEfYbV%qt(j*nLeY>ya1=?KUlm$lpZl7B*M*54<$nz6fR z>nk0Wm@8*?dMAlFqU$NPQD9JBc@mP4PLGRH=S@!HWJa~lOlI?93}S0FS^gMKS;1AT z-MDY9)OJ6+iO|fr%Y>OO;;_uV|L%sPyr581IR%52^7$||_;hPr56x*(l=jf0RF8$? z{lJ?#jJO~B#i}$$+w7CKFtVQ%p{Ax**AIS(@-q5sHGja9lKqYZX1AnbIUy8M<7a5T-wSSN?)m2R26emz!-xTz_r;21M$m;zaq%6$ zB70I!STgF?H>S=T51-2gUd_!Be*2b4i<{_8r*ocCEO>f(RS>>_F^vMg@DV>3J=E3x zdBS>eosvSxVLS7=PomW{H!t-K9&dPXFf1*y6&;6?me!|FpO7Hw(K$PAU15boM>>MG zj@C;7DzddTEEdpgxNMDuk9=|BTYF~CdLN1KzlvRt8@SKW(I-8Y6i%;ZzvR=i94D{5 zO&EOZH91p=?ss?U-{`b~u>8ELDn3>D8LaS#X#uzV)46halF67#vb zon?p_^SFCY%HxH`=XTJ0FwcIQD)fqt7zN#xLAQ!Hu|tmhDEct)h{p_nI74^IdzcIU zg3v`|78*7uzlbmEqKLk+`LLmxLP>rEayO%9%lpm=T;t2lWhy}G3OO1Ykqu>CtW)dU zQwjK8Dty=|(chU>nqK#Qn#hV;>0U4%cn4pdgaR(6KRq5rP%>DIQK#3K;TBFi$Pq(W z10J^yC}-XRnZxvrL(% z#|;MEM*{b!E7wAj_V!F95B^W{;UG1-lc(_PSFEfN0zZdj9FV~muN3CN_}dm%%ZupF zJHr-%eg`+jN%6j3#jWJngFB@P!tQQvU3c$>ZeJ$_LDde~K_7mUeSF8VS_RsMRryn+ zuG+)YA%m&agdhdO!^sA7f1{KJ+Y*UE$|J+EFgX#PzQgdZ|No$v%AeYEP`5vmquXE) z{#nRn`91+qR-CiCY72_km}~V!eQtBFFaS>#+vmEeE`1Oy=7{Uyec zN((MGzqgEu8#IAP9_Zhhbk;`@}raM>+tBhci1>M+HnSTUh>hih{)SNsui=BK~obZ zr$6WVQ)2boEYPEVI`6cHd|5Z~3!^;E=q1M^i>|YsWh2q#(nO=+O?=M$DsN+Ldk)Jm zGSq75*F+E7=DI&a$Ysw^%~sRsyDnC;Rj%LC3&YFU!qLDY_Cb#HYlT+ltW=3c8Ow(` z7D!~K6k?_bla%}v71i^#?5CDbp^-Q}GcyJU$hp5qHu(jv3#nK*T3AgD>c@}Oss6^w zto0w}gXlHOr|!L}5dSJ@yOA%BXAzIv&uJo~Wa84khCR1mD{r+}O6*q*`(h~y@PsCB zKcDR%x6%%^MIwRGvvI6NepTiYMn|$WRhDCZAt7PLYYsxD`&XHBCw3e&A@njl?hQdLI^1@@wKT@S5{0v*CyW@x>^pPL`Hm;1T&?-aFvX0{nQq zSGSLZ(H^;4GJ7kqC4vjIrU>|;ccg8P0v?wUaygpCOyh!gc^68JY1+)+;agAcd^e#r7 z8&to0Usk^~u59-Hqguz}T{st3#+yS+40L`0XU>UH!UkeKySXdvF()S$^0RK+fc31)qykf_F^CC3QF|5Pd?Rq8~_8G=PK~o{d!6 z(=E-F+#AlQ@}I2naksrdgWj-c|MlMJPhL2sFF>;DZy)MBowrW&zq3(Ozpf0B!Dl{o zI%UYc0*{kHN`;PGzo3tin7#JBIM=V$X$$2y{2p$13{$RtsA*|wnG8(iGaR^qLF8p^ZBSJl9oY$v@;g+4zJrNxDr-6VawTNf zmYVVIuJ>c9q%chTM)g}M$8b~&0;*^H?+@L-a|A;b@a_Hhe7XbXI?SB!>ee$L#eK*u3U>1;$~6IJ?)RDYI=&mq4oIucz?O! zr;mxe)*&Jv`op$bmled-aYe?*4JB%aLB@&e|6%Uar+%c?)8765;eI0_XPx<(c3-}2 zv7JVjTejX<3Pf5dS_b`kG$Nwij5mUA!-QHoI_rhm{_V2D4wD7wV2F<4XrCh-WBfqIXP-sla)ZFCY&ql=Vr zFsL22-fm?S8s7^*&T7K#^Yd;!HhRlh8W~}X|C|FQDzegIBn`28K&cJ*`Qz_m7=Vn$ z!phleTQMSWZSP|EGXQy`ukuCB?igc|c5Hn;=grmrn8YF6I5|murpjdKJ@pksGJ+7J_ZJ&LjwVEM7%*8v32GW@VlFWk@ele$iK}h)HeK!KaUF&+vmnu5gwkpjuH_sz~ zrIPnZz&8L2As6xmE-qtuhBaPCPM-%|5#=^`2+&fh7HWEKX!kpT29{|B&IVt`7nz5$ z>CmGK7nTy54znBO;>2R2swfvJh3iD2&xvrI6O7#Pyl9@JE9DrlYrAaV% z@~Fvtio!u~=IZe)+!1)${&&#KO<5eSyr@XE2kYmGLO()LlTUhek559?CMV#}lJf2@ z@j$@m6#@ogpQj$KgDobBKMjFB1%L+hQZKQyg;4ld`%RjEUkN?6*J$b^11cDOK-m4G zOX;ghm0tFU=vtLs1?V=-3InZ^dzexF0?~AF3{q~WD11hfAuNAj%*|6D#au}uN<=5S z1%G!v^>wu)C1qx>=ryMoIF-#Ddu2>ICI7r6Q3g`pIM8Fc>}|%LZuB})ydjB(yMRT+ z&_ITfOXWu%RT$N(H-Se$Cq+uOVA2Bm3B2l}(&8=~>Mg;?$4_B1XQS&l*|2*$G#kiu z0F3Qqu^2z-XW!r4tVR^8a>Fk7&mlqU!=9YCdVbg!4Xs|=eQNR;z{dAGz7VEh_u_yA zRin$jcdbMGc-V8k=OpE@%a}^{{j9f>YH@47 zyb>#!gw)&$~@Q+v#wQgFl2^z%1LNnZZ#6 z%ubG>A+~9=@l;ZP1fY;#st`~II&<6Uu(|F7tEq{}=Ya&8z()U@@jiZgW@be>|GhT{ zLXI!S$CXn!tY1~Q0X{rLvTdXmuC1S!?xZ54Js)# zsS1N77XK&FWrDK-YgJH<6jwdTqwgB_Q$sIk#x%9RmZa>hEyi`WxM$nbVR^sA)0v7VSZ3dQRai}SBH&fd5)ed(f} z;T{S&t2vpWV=cR@BRn;>8JKKaD>csSR}|czC8Cl~hZYY*4e*70p2?`GY1Z!s`d!NK*rHt%bbz_cGmn3$NgAI4#X#_sbc3^S@D-**fTk2cE+7j6Z_#9*8pgE6_d zxU6ifKNdh~mo6d!mEQmo$WSBl@OqZocq~RTBFOmMtKo;fMc`CAP12AGcnyWeRu})g zyD^$S!vjrB{pbjMG`6&j&0T-B?fKN@iSJ^IJwXpaA_UF#SG12VdCZ4_9F`bCF%*{B z&V#v6YxfjyDWnn6i9;YL?Xs#c?P;5Hp+f(_i20a16BmUh2ASY+*X_Z44NrHPxYt{1 z0FdS0bMyj80i8)Mty_Dt`q}G@rEmu$4RtV4$noSQDwr9_PaqXTYFw2O#IPx#2y=If zO7Q(L<4&Rk6XD`G*3kdHOb6QcV2)L*>Er8iL(F1z;lgQ{hS`b~%ms!d7;M{_a`PyH zz1cnr|1Jv64<@!oMo4FO6?C`^kX?1A)$Py48btnS4)XKETqx|%wv!=lyhqAGUw3hJ zak}YOZf8z-oITjFSRb%Xs50A?@wtCgtaDRO&azD5q&AZ`R=h#Gnc_G!+ z70T9HIO2y~=qiAfQV_V)R_FNon3pqgo2o4A;`VD#zK8l4Ud4wo34>w_JaC$Mk4IYq zD{kk{%4U2_7jJJq(z%vQ_R}w_Dn~k^!dZD7^E;!4n*(JEkcd_D9;eS_HNX#0q-bDI z9<^pRD@vYS%R>-Bh6lr2H$O9rNEL=2s7T^qpo5v{6e7g>hNw?5;|B%F^Y_o|D-{9l zPTg<0d3aYZxmG#@gTqNKyApeU7j?0Gzpy-P4)5zdj9H73N{c0mq####0&MQS7@~;U zT8?EOG<_v@YtJMM@*M!Zpb*E2vjKp3luVgN{8hbv>L(XUe|XS zYz^7oM?42YmDx3w`}6?C3~uN{AKxn5*`vW|rQJ=Jib6}|iHV(7jzVR47wlEYVD06~ zr0N!HXRT`IoN0K=vCI-kjXg-uyx{?II#_CmrD)wHE`QOm^L%F;4DYf~>GIHcs?{L0 z)t~e?7r;*d0$r-{P~h~&?ieA%^DNXkXi5mvK0oecdw+eLygn>xe#kD3FOsj$i+}Z} z)f9^Xt*J@ibF%#N0qvqIL(}Q0t4D{A7RIaW)3=~sb`C%Zv{t1(T^5c?F7Fs7Qp|C$ zAivq1tZ=+sc(=Ke{8MPcp(NQ-w)HWatJ3>gkinpubTZou2GR`GYTDC)nF$u&-`xE4 z+(6jw7C{0WTlQmXK)XV_c z+@8d`_4dHRRNs#>Z%4C%{V?~LL}2P_pQ`~x0BNnJfp2hf!+6x2$DF9gn%EUYeJzMt zUmMCt`|4O*!%sW8J8zMVhGP)*KULLY4UGXGBD=a?EkexNVp^q<%RLG0Lh?~Y#`IT@ z67QEU{}CuYGJw<9Ia%`>pV1(usEDo}hKe!??g9cUn)_dkyBLkA_||`SeCcGBb7gb z3+^>4$>0sJEe_Gkmkl(K6;_^n@(HO_uPHJ;7Y_p$kaKXBKa^~GvMQnuxu|M6eyM3G ztFtTq6=>3NQvCBRpzrV~SDpw)@>}0=+r1Wz! zz&xataI=Hu=xi58U@_Je7%ZiQ>oDI%M!=-sJDSekfQQ-rh=UfJifAz0`Hy3`Amns zEO^7vD28~!s)`B{mi|I=>4GK7EoQULh-t1QzQ>#nUI0Wgepq=%JA;Vf9%qKI7$QX9 z%8PHqcI2MG>>QqQGYo8Q%3_ontyVBv}~q1zhywC;?ro2YT| ziMoCk5ehwVV0L!Se%Dv=_ufckZTFny9R(Gj3%oIHEfAg8fz-;iYC&)p%9gI9l z^n@U>_cfW3;?Z4VFD}Uc{?Q%(B?L^vB(S7~p!}ckg#sTsb_K<9cOcgj_vOo+6t*5r zGTtBQqV?x?kXBt-NSFqs)@Rz;G^=^8&&(7+U9Ih;@eD~o;`5vkH^{^zBI|j@cpLsx zOWSxd+uuoGK`HT}IhGvVtSXUn^BWZ0d{>;&-Ni*A78za-%t2--gNXD8W`?&vP602q zAb9ib8`*Tu`irx(E=U5Ttfkdq!UccG=K>BGN@g~lPJ7oHZ)pc}ce2(!Kk=G_8aF(K zv=@Se@z|zq?_8v^C*|^9rdDrT*GwmGx2u^VG?zuATMTD(>M`lJhh*}(pY|40Nyc>a zMw2+*o+Z5%%Qw0oCK_`DJ@qZQ7C z1=EPf#*`=UVFH2>JwH7XayUXYyC07RhJ5Om#=o_*`%vZAjR0rZ6vS%Ur-lWxjo}E0ohBdVZZxC4895QQDS*#mWE?Z4O99GM;TsXfI8{cS z*wi$%&i;nJw-O;CA-T1sXqKZH-43YuHMV_4SYl4#{wm(rSkr~s|J5SB9e)8Xi7EfCV1QM1_d^76`+-=E?3 z0KbHU21tkhlfo03v8ino1fj(bj+XyCPh+~$?(3czyq9odV`|$?q8Jt)E~cp&o4gB; zh**Qj=LxVhx9sX%#xl>({}dU~+Zi0L1*Wb_;|E<+aCdMrCc+ykX?4Jy7ONJf;MvJ7 zFusH`+YuohAm4ttJ#Tf&Z)o7U_eiL?p0WFRv`4{ezqCMN_p?4UqKdVGI&az%_hr!w z9Rb~XaR@{%a{a(3RJgJD z;Z)7vr{$#yyBDEf?Dq=ee3}{`-}?NxnP{e^t)p&0(U6_EowXecgM%Cq;lpqD!q&=2 ztBI1qGes3>y-2{Uzi$2wH_p*vIV1RGtnqm0g?TlkeVGY~k_D7lzrDdm`ec9*juU+4~0?dYf znZo+TPEdO-9CSWRG|37uq4ZyuicjzPA<^7eDo8Yik+5CvStD zk*FyfBjn(yTb=OaF4c7nP18ZoTD`QYg;2fTYsS1{vtn0!eJLB(a?SxE$LxcxOb4n% z!O1VeT*}hih4K}^TX;sA=`)RlD~S0vTYQ1ZNyVL-zIg3-AKozQ7Y&&y!98C3w|$P- z=rh?pQ@=SaynV-n*{&*#iN@bcb4%^0ihsYTxm?uMKUDHs@NQLK$>P?1<@s}F%hgLN z_9(-*?|m9;VgMX6u%i-?zTw;0RDDUcaLrRcTrZ_TBof&Okb8+0dX(37DkGg|HSwvdYOVqY~mE zpqt?MsZ06d;^Lq)oXcTkj#!w{09$i|A&{1hH|B$yv|c`X=P{|OUG^*|!IV%lg{D@m z@*@f#r%q^GayH_Y@6DoW`jlpU77-6N{#Sem06ZX2Q~ExHW;~C~6OrDM-uQ4&>dL$K z$#QaX-!C7_S^L|#@3rf%<>ckJz9nyd!~N0QL-~%83_`_fy=$t!9_|JA9oiAjH|Kg* zya&CjvPmpJWlO+vGkRBz(?zmqkcSMOO1NHr9faEuQldFz2r4TpGcvdC^nZqc zM!&idz*P;M#^DTfY>=)8hb8n91hatfQ+7&udF$)k=|MEbiSiQ6p}2TD%|5R&C@_BL zI<)s<5$j+mD&Oa>o1_pD<*3s$KVi3CKlMRK1DabsR}aqYCtc??9_*Zv+i~bnbpmE{ zghz(1kfQc{?f&@0zBLirZEH~dYI}Nia-;OBM6+UT=~}QHhqjpdS9xV+14k???4QxJ z!~{sl_Hf;DgCxME`?_IhL_wToZKqqahGO}pzM(q4KmFDARNby?X|q;`&&l}Qq`zL~ zv9V5I{xVO!#UW=!BNL#}I`JgDTxR83#kC(xtq>lzY_yi~K~F_Rg&X$4 z7*ED$e0Fw&nqDR*SIAX9!&AvuO?5V)PSbK!d=@li53*K!Es^1wg-aSz&C8uXK-JeltDB*gm&U4`PBsLtE0c^H<9mQr9B5N|Ust@2Eszo)IVO`H?8G<$QJj?V3M z;nBvP_`v7Z!RG)RFvwM->waIX@(R+cv)(1rsy5@nAjdF+a3ywkvNHp@mc0-Q6|%SP zAf39d#bk@~(dztsbJBPS&*{e#Z1@Wj9Ml!Jb`};;UzWiAyrtXOk5d*7wh#wh3MJg^ z*8N@X$i-5vI($g`)Ka-EH?D5TGP^zYD>->9zfS(!t>pbRsy-@q`lvFU-dK|8Y`?pt zWEVBu@3P7{oxupgsgw+Osk6Dy`e`3mdEVbg!TufZpE@w5T*agXdh}IMA@gY zETP@D-(fskyko%O<-x*Ly8~9{kMo=Jdn{iY%RKZJNR7XTXZOmS2SCt1q#)ABtMuJ~ z^7iYswrqZva42~%KD2hunxn&7P-`x3BEGHZah5PCFR90h!AkAa+~`c$j9HCiR@zq$ zX38wNvw_I4kmJ%)1_NUKpC93M*5y)jTc5EeZ+m z+bcHFb#nm8-(}`;iUF0C3VpJ#f4e=^Uu<{PbSI*UKhi+3-xC0YZ21J}mudOMe}kq} zB7-J5hMKF}g(fqN;`Po=*zq*hc)QL_F1o(eAqoEz48w~&NF^C7TtfNi)c6gG4|^jn zkgX^OZN`Q;WxDnCaJOld?IA)2pL-w|96JY#u$LrF)Jz@nOf;{TwcMW`0=e!ls%yO} zJuJ?zxb_=?CTD{@0ia-Wsk8@TtlgX=H(@ zjBiDfRd!8}A<;|#)r~}JJ6qdmrlppgIzzrj&&Knx^jRju&MIF-r^7+@(N-D~oHzek z2kzH8aO&2of7bnV*&=^&)+1|}On;LAA0FW#5fG45h8Sfb$l_)L4eRV}wMX=^Pv*=y zE*(F-6ud7T-3XhJ<{A?+eHcSV_wO~1!UKRnilE>MCn(Lopu@jV_D38R z4vvsyP1y`?r@beVc>7HpsjOv0rwDnaRCd|L16?m~!gB`STqB@-GWVR%k}k{v{m<7bztz?PSP6Lj%&sWe2Fd zN$;vO|NQqhe~HckLrjd4lAhW%H}@$4n~jZ)q|DCxH=iEjhdP8pA^HAuV(J&aKMZT( zw*Tklf^x-1e)Yes3BuRqh0a$AJvd;1#0V-{S^{%(b9u6e&xU`ro%Rx<{q)suLveo# z{zozYq@6>y^$Ue^gV@OIsI<+$8}OIigb3q6-a>fcWVjIha~pp?^7oj(K0l=Z;TkUx zy+{9tF8{~RTLt~Hh@b=}u|Kp>=zlvQZ~<~|27FY-l)v2e@6-7ozxV=1K2Des#!DMV z{MG;d(E>5y!z?j%XNUPP^)t5d!SvC~msEeMvj4CZZ`2*Gcdm8SZ1JO8yuUNXf3uZ8 z2H;2wIg72d|Fq{n1OGpKo%4Sk{6F*nh`@qekqG%lG|hiGfPbR`$SWeai)N=U5cK;$ z4~1|XAcXZFGnD{L4qYi%Mnb(zxlk$q=BwDg9DB>jrN8=RLGmIrd)NqThkLgSPj8s+8$H0x~i zFH)x@(+$Nb7m2#%pxnOBSNb{ul(D9RPNS5Cg(v-7tHi3`)a2RU-!HD6%3@Dv$YTJ} z0)){^mX?+Vnw;Dcf^dq0{^|<<-?r}|hs1vc!yB&$j4Vuo~O@lAAIcw8-~AgsLr z-(#!?mJD5-OjQg$rZLAqn0Z^)3hQzBAQBoIg*G&5sA!C-dsKb{Xc0ZeRLKvp?JXX0wjTtYmGI#ux` zv5gJb(k3v;;LxZ5^Z`_-RLUUcqQUwxQZ4S=IYLh9sSzxrYh$XdSdKxv4WOuqu(;To zp+NTcW#YgO{D`HGSWwWbM28zaU0O@^KOgpkJRG?Kda116y(~zvEP3FSYQiW(Zvv4ef%Y zM%!BUpXRrU^)fC_H7Gkae>HZ9h)(URAdJABrF*BSVc_l|<4J8cj|=YJ^FgQdF~r4s zd_ey7Vky^5EHWoYL<|GCKR0R_v+kiFnOCnpu0<=R3Ric$0H_yJjhbtg80@A5E$Wf< z@-{p~Bz#d(Qd7HdRA91%NDmlz@simE74@8k-GHd*AAT+k2D;kN*VUH6k1ursH|$=i z@8(cRs+H8}QfcfB?eFkDl_Z>p3V!z5SZdB{S@1ISzf}&70iGK@cJuAE8C&V|36n%^ zyHcpl?oH3M#3{Wb3FG`^^oTJttrni1%2|uIrNIPwWd|t>f>nx3oyBTztwfBmBBLTj zQVXaPt!*OJ#pIzPwCxQ9A@oyR;=Sr|lgtXv;v2=+!dHxLZk*3kN3y{G7Hz&$zDQON z!Vof$FtLv~u{MJlk*mXcDsZQ2csnBS7S8G!nET~yQ&}F})oQVJ)>rNB8gQS(z$g~+ z9oGz5enXQ!`P;XLU?hlQ1?{_3(TSh#>ST#s9x@S2$QBoh4wvS&w8wJLZJy=y{DNbW zgZHHZ{Jt?<;8t=?Y*Ku{cXK|EOHJ+ZuaKq0y18hQMM94X5LFEfP#{|c8|fyCk?4gt zL+D0GuC8_dQ#7GHJ+J4SSLswHCyXs@g32=&x`(G4JNdssGBupQi3ycu1}#lZL}KCw zjVyjN8y7+E`|$IY6P8}8o&V<5pkA>@jvqwH2CYNCcqveIaefuOz!ve4_1b9&9JqbE=6`%~E3NjEi4#a=%6bJ~ECN9bp78y|pSkmmrpO6vh8a z9xW{AC8&guvS(}j1;`Gw$f&HN5w@g>?a0A^=YVk*lry@Kl%b_m+7%;vI_Jkq-XtMo zRaBCfl*yWfW`*F5qhBOL0X!v0EIR4V+Hd?Cr@wV)Wo#Q_otfS_s@5>GU%>hn_iK>{ zvz)#>JTaBQBpBwdQ!Egj*m8^<8lCrPG}smoq*#Xd)KK%lB5T>vLq<4-V`YsxMfvKY z68_>_DU8qAtf%<5&FW7!wxv<_jCL&F%BbWn>~Fni3D$3mIEH_E;~mGGh309iuPoOt zzVZR?qj-5Olc6WTo}ZXtQ-b^yTFA&G z&eaIT`CVgyngm>G>ztk@)H4M9i5|TW0ZsdihCbL^-CcQ(C;iASM|1eg28=fRh;}wQ zdbuI>UumYMkFWgc85p{*mJp5YEg~UD`)+|I^cFsJuG*L4=R6w4A^{DJq_nh5=aoL< zc#D)JhqK$NpJ9t1Y~h%pWOkOmk*yta(s$e)COr|8k0^IndxJ!`v#K{tN_>=R^(yrAf0b^@p4NnhcCsxRUVJDyHp11~e>KkfA zc4FEqS-47A-)4SEiz(x~&XWod($gp1|Cx_ykPRbGtB~E7Pe1Fq6&Tv|=I(m;N(q*h zwJKuH{e-UB_0m+*g^a)S70g}tE5@CFBsv}4km!0BY_31k593u;jk|K#6ytd>Ha@)s zvk z3R~`pOXRbe!=`BGL)+7#>%E|mT>W!NXEw^qWDj08kD)B(H6}ZcQaL;{4!TVLG zRW<56zag1W2^g_X!cHTjVtr-znSdNcM8glu0K5-xH*%J)-{VP)efSQffyjt8IYCD& z*5zbl!zgeczf0m%C<>w>uyAk)rWQ#a+5qu_HsF;|@Z~PV#x?HnUVWjj- zZnbhX^QAWO^Yu@OwwoL313uCazqaPCg~2lmO?&g+ zMUsBX_5dgKrm4v##e3Gr%Dk1nzm<4yhlVgggV>jnD{fKC_?NUn`PH8H1|cC5Cc@eF zR!iUEt$bRp$c>>}bP0qG_*~H9m8(uJPlK|`nPPRt#K^=Du7ZjqSh2CcR9!2*xVtVm zU19{N`ZFVjv#`INq=^k{N=1H^SM2Z2YNI8@&9@MIrK4463}GUlu~_^N#=ki~N3Hs} zWN3A`1?|9$S^DgZI2N7lV5_vcHheq8AQMYEgQ>$M;ljIe2|^+j@{9?+@iy;SiDJGy z#oyQi;&4z!ynl1EQISc=_mSm8sY7&2Wf79DJE@T*qrf8fC$UaK>>X;F_ZtCmFl_f& z*>P~pitZ_?gd2m?FU%}s12?^kJVl6R&4Y8^$$<3n+cW2og5u2 zL)#5*9jIc%2^V|UM$f0Np6ebZK|9e9?YvkYozrmx>j>H6O?LgIK~ zeK;4L-4DeT!W3L$AKKF*GICqEh^J>&`WzK;;3T)J$>buw@7aKN$%aq6S)_iLCmZc8 zNN2>1Y$$`+KNz}GJqRukEu`%c*6^eCAsasC6png<+4mwjgr{^hGFd*LySxw|FeTN zS%V-gMxveFH{BoLq;8E(5xp=?@|M4s;$;a1h8!u0~c-=OL z?cM=6^VVZL-=wre-7{JUT&0Nw9^JmXxqJ^C?3n(J6Yt^OE#br3&e-ebXr^CPa9ezQ z9nmh!0fZpRUv)o^)x*~WJOLvPSFJ6lR&CqI;V)8B8WBc9^EMcb^F`2?_!|{q?yf$p zjwD0ls94Gd02n(APdgS1q3_RzXS|buV#3cR`>#LmgM-S+XC6$klG36a-1Wk;OWJXWJ2AM7%lIMMiT70!{6#Wiy{M!; zmW<5Ms<9~=1+8jKTzmlesxd5%FQeHGLHC4o@|YACoDK@!my~GR)6|DNv!8EuHD?BUdlm3`)^)9a-9w>asI4yET~VlDv_@g`;{9 z-W{i>|LP@dcL-~aZZ22typ)kqV@R2-tM$30!NteR zlP|#s&*a0#ZdKTMul?+eVn5a_TS2?t9sx}Q$t*#Z<~ytFTec@Q^BFbUwm6`HJ@ezv zJO~siX`;fmP-h4KjA1t~0vAM@*~* zwC0mUJ4DqaC_GDdk>l^`q8c9iQao5(%HR>pf?Aqnx*4nI9#XneH*udl>N%vO>pa}#>N zbR%AGzkKhez%*uR;0MiKS63C18IAWvb%Gw=C3brxF5^q&+zmCIY$Bw;5|kbVYo%(@ zjIfJ2La&blfyTJ!bh`(ueS&4v@>1sDvSdR=VKLk|ABd{*hi@BisF&%5b*0j48qv`& zZuL$h20*iuV)pie8JP$4!I(d`9(qcU(0E5g@*?qwF52en_n`)5hCmJOnm=f%&qtO< zrX%{2;!{KWi?|`Ip|y6&o*$F~R8bVz^78Vl>t=nvD6yZn1RxLXMfDgNhv$huE#yqU zyb#D$hqthx;UB{VIl0xE;+xHicjlf|yS zhK9aj7;z{gFFJJ3WrcSk-XBP?bUXoJK{{2Rne-oS8zlcbOxgWfi2!=3PlLczH+@~n zgXwC8&Yu=o6NfP~s(@*#lfEu3&Qxz$aYwELX@s%wdV8;*c2}9<&%gJ0uFNL0aIY7) zFt*MQQ1JHACb0_A&`preG*Dto~ZnSDe@+dDsr_^SQ#QSIc zC}1Mbo|Lu+4j6t0){<}%Z`E+>t<^1c%kiN}6zBW;qT~QSZfYXn0j7kb59hgK9Y@E0 zuuiV5vn+lXroN&@RSKI^(s#C6SGLYYKSplZ>!HKWIS)>J{WM*poqRa{={h0<3UGu# zX9T3KCA4%*XcwJft?_R9KZLzybey}AE*vv6#!NA@V`gTInVFfHnH}3Pb7F{@-Dakk znHk#5Ot<%Zch1>!XU{i(dadsD_A99*RXwVzr_{Fy(2Xr_Iv|D>pNjjsV6F>-mbM88 zxLbBH?POmPCTFCw1}xC++2?}Fax%9YgBXm813nm`-JTAT1a5aXP%HR|qQVqkiYiUK z@~jB9X#lStRBZgOHJp$!2@-}1#2!^X>;m{i3lfipKRKU0msMA?U%fA(i6sqaG-UmV zL_JXGa_ix`2*in*Yy^JTe)};2>@R$7hbZ78Oq$62Cd*6Cw>V4K!Cz^k>!p-dJFgzm z`QW0FGmtUt`g*S_>AAXDSHqzE!}z_2S?t&TwgCix?W?93Xvzv7k0QUmHZWn9kj-#A zrK-#F&8{Pf`i*WzS#@gUMfSEJE4*&j>=86LG57e8w@-J3VST8dA}I7T!SvE{dpNTV zA#|*7pQzr*Jgf|=rA=OZ$&dJQX#CnPq~CF6OpKx%J6_@Be|+s%_-Q=#k^Wtv(Sv3G zLW0i6q`hV5tGm8}m~bsR$6)KDw}?)x^QG>G?LA|vABwiuOLw)v|a|l`d*LV z#4Z5wL3Ge3a{q!aP0<`)o=RFpWlBm<1Cu9ji9#3_4CVU#Jy|bSMlHNMk>d8DsgEl_ zLpN@+KR9G@+uRP4j+`*NJt_ELLBh7}`**!SgL}P@kPLwr0>aK8kczw}d}v$o0}-N^ zhey=6PapnXyy)WIc$uMQK}NvEQKB#ztoSg> z?Ko09u1}7FVXhuHYBg(3Ja|# zIlVZ9$Xm$eaye)1B`=z8&p^0_zedAJi)74Magn%Rc1d$OvWB%#Znm2L&X(4E&eL63 zT-3p!o5fAW43zt|CDXexy=%cmmj&6lRbG(&cD8*Uz3!7BRHjl0C`Uk;pa3F$p1NUN zO&hDQJzesP3{yb=JmPL*xOu*ow`F6Lx_pyDC~wRiwdCdHg}YP@^Znbb6ZIve#aMD8 zz-&ms)aHAeq2qoYVbHcfuRujvY`9h`%-2NdgX}V8bQ=lQ z;>d!_NmjH>M#)+I>CM|?;K(Iy+1Pw$seqc6u_s)9)yUdB*j=D<%h2IZ6PL%271k-5 z(wd7c7J-DQS~NxjB%=jAo<%I@f@FM=gU?97dl#`4Z^Fjv1FbM>Q-7;)AlGuG77lP5bVDD4Y3%yP2Fi+1UHrX975J@@7 zLwD4dNk5WCdJ2|WAhSDAW6LlkNT`@lvYO9!Zv@!QzOF(l`*gIuxS;;7`c(za1EoVv zA|zaWtR6KblSm#U%;kLw;y|B5f5a1t@l~HtNbt^JiXs1+87;U`z{s~~>=a7GhY zUe-`E*W>d3!_&-0F4YuLD+rQhVt(6rZosO*4h4Z3o)8UWU1E z5?n7EDZi{ByrshU)t?qCg53G)jagD@2lvbHGQL%REcAmmOlZ_Vc+6?ZlPFC-r6vlEG?J4s3 zU~qC-_CDXp5Moh>yy4HH9zQ3xMG0T`k3iwFIoM`Q)y>S#EWGQ1F9^DX8ISEe(zi+>V4 zUA&~T(q6>K8TZKLuT%?7>Jko`9;cHquIyN;zR7RA-4kLs7>C5-{Hel7*FM`%PGFCs_`~5l(+YRi{6OPVXMk`WLMra%oxdk<`c_s{XZB}M zvdk8^l~;=D{adaMHU}oq(`w(!lIH8B9H)jp)YVW1F0#LpQupLQte0OWKdz#OiVp9O9jDr3pX12GF zCf%)#SqK#lLD%7HLk&kSFwf>)ATG}%W#F2Mr|r^V@_BYzYK*pjan~>DyH2FnOP?bH zDT2$h=jBuOSowbKNH?U*$mjdv3GcO6@Pl_0|je6aq#NQzwMBAVjQtb*XQPpdp1&=orc$7T>uQR?MfX! z<=`N2d7U^D9?F8`Th^dNxMs5xzD4-UOXGfp_Or(|R<*So*ji+y@s;y%p#IunbgXlo zaKV^6`XWTD>z3RDa0#->h4c@`@i#G50v%Jt^UaXeVq0@`8__AVg4-pg=mkAb}&p9<)zpavTB_sT4tTbFIi!nG0~egAExfH?*LD z2>R}1UyTd@)8e@vaBr`o3RemTeOmcU)Hu?2q;m1LC zqny@~X-}Qs1L?#q5r2gsGBNK6I6cd+Q|n_Ur;M-mk06>BTrZk33%&I$1o~TA`&|bg z|D(AKK`9bESz>yd*^vK6=={>~CmT+C69k-Qa|MFA{6HwL_B=k9q)BeO8EPfN!?giJ zkP8i`n358<0}aIXXEFrl3k*+;7=frT=SR=9)YM|CwtO&%j8Fzcarnx(Y|f|_Yu~Wn ziFMqs8|CTPsU6w;Z$D~1hzynWj_?B_GK|b|y(k%<6D_A-#lE>}e zr8)SQP3w<3vPzXr97>nORWS!-V2(P*5NAJL2>U;&V5O#C@F^0-tpOggH@P3cFT5^Z zP@wO5psigee)3c)vbBpt^zY1eJGd#S zYP#4{zc^GXesN+_#-U{?Q`}Z-x2Z)QHPDDSM5B^dDll=dM9cnRHW|gm#7QGNpW~J* zs_=U`2CYk@ZwhBOA*561Ao*_tB!aw0Qt(zFu}}KoT4_*Mo=+0W#+z(Sg{Wh zPPEU$=l0PnBn2sL#gMkKnhlS@F#fnZs*14yO1{ImVl)|(9cB;LaKPnm6nk8Qf4{EH_H212Op zN3xe6OQnZeT-(X~Zz$JRDxh`)kv!cG~@k!}5rj%yIEXrH+-dF+u$HnJauJrVT3v6VOHg#&%SO0m`S{@*QG4Ydc|~l8B)dld>gr544L(d4osZUI~2ZBDk>S3-gI^!$f)SlZIMy;m~>Iz56mZ zgvK-p4B0eRK~2+-e7GQjY*e9q{&?F!c)aKc8KA?S>x||}xRwb)opSj@d(|6FZoF9W z=fl{7^5IIdizK0(kx_;-J+Gc1_gK&!JSIj~tkd13k_9X$THk)N(SU1Qx<&vKgAP&w zy_5!_HK!TpNA(75hOTyMpIw-vY;sJ7n3l8Q;utIy*jx9uN#P>}z>bEkjpw?^qM7m0 zYk&vwbP>YO$D?}Q%$bTfQh-)WHM$Yj`XWMrzby(kIuo2{;5#U?0Exrqf+|p2jcP6J zt5$}I%W0jC8YF#rd*v#rA_EN$;Tu+z1#kQv;?Y;6&N25}HUeDud|aqt^wv_qWqKrA z0ix@1fC)Iy8QI7E3*~eKn4b?EXLnQ1%Rq78<>h-J>=6^)Vv*0{goqp=Uk!?G4q=$1 z{4|-Qv0@Z3Jc$T^ew}J%y6e?~g8UWD}uv+g1YD>n;(F zMR@`qV9kmhNbc^xWp6~TXvxLK5Y3WjDWP&M5}w#h)(54wuS)_-h&iae2P|1*;)t|Y zrzLknMYA{*tU0ucRz1!`bSZJ(DzxZ=4&u&Hv`@}_+e0not2~cC1}l|Y{8l`dr0hcf zWOE>=jQ-Yuw_>z3*@{2HsIhTytsKVB6xBZLj}%aBgtg4RRhRVF-!=ow*|8+^APkI2 zhWMEl4Wqm!t9htY`?=BkjRVb2RGCk8m{YL&)5Zo-?~%jT&uAnmiCc2Sr`RkB`B8EX=Tuj8e*eB5KQk>5iE`I&UPnPP7T z+4?#L7Nul8J!`1+qsRK=`<-tumA7-?{JBz#M75*9_PVBGN>9dG2u0`5_2rt_3>IEW?!-I*Au54DRuEOt`FR?1wJRlpF^UHoM5B9`3FR! zj(G5~q38G#h=-0pV`MD(2%waO;r+z1HnO0@GANM%f7Yq@HuCpW^Q%c)%;`PBS0rER z+pb&9A=vz)4UtQ<`57htn0f;fpdaVFIMjg?=6|MlH9^?HIH`DdCv{uQE*jwPSQdHQ zR3fo+C|aiJ_f-`3%d0<0_^;<+? z`Y3Ijr;j>QEn~Gs`8gBdjb9`thN;Q(o6UbIEig2jbqsHcXk&u5Lf|`mMjR3m?z-0LsM3UnvHj=5j%77FcrJ5XPuxtw4DAC}2eO`qookJ!P%GgC$isy|A zz~mG;temnG!yJ7=7%3F=*yKh+z7O!NXRMxr1tA(&=Q|a0Nv8emZ?DjR>=ABxulYR* zs)y$0v=T?3Z@C=%>fc$J*KeCY zNuVk;QHZQo%=;>FJMyQG5Ume7`Xn*3!|TOkYetDpU1eRs!&N}K6x#bcs2r- z<}VfuUhM>BAC#!8SRw&jXC3Ye>=;jm=!K&v1ZgA?cl5~l(K0(Sz5odVC+&Bm5cieO zy*N2%wNks0&|8Vg&Lm~`h%iH;r?~BHblYX|;reSHNf2ZCeA@DZ(n+GRFoO0IksO z%cT%eZrmk${2gzAH1>LHKp^i%=2pbV>7THO4#b<6R=8&FBiNrTiOHNC-(c$Jqrv>G z=^q)eU}j)!37q~j7l2mGfZDlO$fUIl+*?#!Oj@>#F8`Z9Hz0-T)>11J!Kskopr|Zt z$)87(t4Erdc&-PjdUN9&=GULN@#BgTu+s^6Rz&@|95lmjx*9?OTSMeriHQln$axk< z=}LBKnsW#`CM&oYjb%kTtZg**_U=8@)>T2&kCT+(-(=0g=f{5rc%_qDU;cy?ZfvYb zMg)aUg+sbJr_Y9WzX|rkdOUX{+XFWyw8Z8U^EW`+0FBDQjwj@hDl7^q^4Q!2;>wGb zR!h&ZK9v|_$JNz={*6=u_Tv^BY+zEAQ=5u+VlQ9Q231+u;7l5Gck}&L>eZb>v^}ck zHK;(uvY0Y^jrbf3$|7xD5Et}>wUUs*n-o{)dRlDX2$ZL{Z<=-#l53vI_5$kUpxcDa zzA|TT7?~&0%Ra7q-uOT@3gSSwA!qw~>{G4g6!1;#=3_0CQRHW}{nx?HpsF1rA2UDS zRrmao;(7nO(qCJvFdXNP_D4^dU-GLbps_a*xNrme*}Bgy^WQ8D?I9g$h}#NIHW0zy z8r__5H%4?Yr|78{Nsn#g9o+?;ba27fPp_u$*~l2pgvBJ$Dz7JslYz&F!C%NlY7e9` zJ@?H_)0w{C{J9#<)Z}y0;as9Im4^rNbbJoTS`&p`F_6r`F`hyA<`b2DeOG&=$ydh) zzCN$%LV+a>F!MB5L9tDk?B5RMXP(b2)Ix}S&WSK}lRVzLQWnW0ZfW3D%uUgi!Ru5Y@5D% zq3H>8&rmR`oPXsWmBs~efvl&36qIRU3QfdAM~AmV#C%}}dOTa(3S3GINsYfp;%;4p zv?L!o-agWdN^b-z~8|VYHh}|ZU=~64cjR7E&tmMz_q9IA0va$~` zzlbWFFE=X&$JAqd#mjNDZEMpQ_>-vf19B#1E~eKB6f>F4hsY7rpsmYD&kom`rHYiZ zwZ@DR0rlKUMBx@lK2+;tfavXdLgCzfgopVg@_9*h*!f`YO2o9d{R%0|qtItj$ra&* zVuuHrkef8r{n(*#wN+cFgzPs(=(kf?_R(q&54WBXwnIm<^NJ;keB)%*y;R79+M@97 z?t&s}Mh2W(Vv1vj%(504HE*}Bq*ersT=?D`iQW~rqbHy$Zq0N>rGR(hv zD;jv^o;FiT1kC%DxVU)@`-*dVuN1Pt`ja9-yNR`qMYortlFXS1=ejEG)Ad zoX`Rez*A&?l_Dt-8ma2Js=YcIvzpvAQKO}bodm3<8yS=T;$aPEosy<7sI|u634<>1 zNT?#~q-1>0)+D~=0P}Mn_#L;y5DaHR9vbp-xPM~kpjaz}wnJnmZ4(u!|ArVX;ET!Y zevWOE&LKXSKo}JS@lx-(fqv;r|9_n_e}U{O@}L7);GPiG^h-U^H_2(O8C1cU=sc{! z7^2my{IaiBq=H9{-g|j+5?L17)9@(s8S0h^8D~qZ3A;MphH9g~slKsCu*uxWI-M;X zYB^>ysYQOUM#IAlq2Rg9NFUaIXi0hyCi(fI>vLL(?fywf+Lry1N_VRru+5y$tQz<(^R9+_Lmup5Uzy4@V9Y z7WYXOj%$C|>nI1P?h>=t;vr1vw>0PEGfWjUzpG0{NfyC&(HPdLqc|_xcWH;`Z%#_i zubpjo^goCd`aEKww_VL?a`n6j491Bg%Q{w~INgep;cK3k#OXg1(TmNtf0Mt7`7aFTT=if96p*wc!f~<&wi`0cj{?dq*?)eUW)}c$DkER;IkyJ;gyVM&^ zo{uHuOSozC`GK7$x{L?@PEum)W5*{^twktY7kt!d2*>t1pyB$> zCP>#W8ze-A32(MYg&yPVg#$!G(7emiDFO9@@qFaj2e-5d)%AGi@iO$$umeXi1CNsn zo|tO5p-Y^<6hEEgW0Mu?Wjg13T)7R7+#3JHQI8ZUnp8NBCqaQp(ZIXXag81pDIrF+ zED+!-M(~DgAv+0p^EL6yj&vx{E7;EQbtEmpoRmLz3IiekY65wh?trHLm__SncgK*G zA9b@|dV@gsh1i@ZM7qq>LWuHRJw8@7>i1bs>=f)2yiYXk+;Lk|6sow&ii^)rSpJ84 zKVP0T{EAoO_Cho*N$V*+0kj64oE4p~;X~Wft|yLGQaJg&_mo=N0I(0714W6S_>4{+ zhkw>VgUTGCO1H$V;Kcph`-)a8e6AIZ>g4W>DgvT!Qjye_X;ZoK!R=5?s3m0edpmc1 z7m}(nvA+FK<*G0JsT$csVO+i0F4}TP60)?)rol5sQx)nAq`3|~#cu%2fDFU!nI1d#%2uSHD84#}$S`FsARv#ZkxbW;Xt+#a zKw{pVmXyrmU~hYadlnyS$|^^R@;UcSQp^xkUV(s{>jJ`L+kb zC&mU;(x_M&EN6lJE_p|LX12b+1y~7&-fu57Do&t{?Kpo4 zGGBn3hbQtSXu)HAI4iSO7%qxNv%{Y^9Pu=+AcR_FxcEn)f=l9$q_7-in0|g~zf)99 z68PAe1JufwJdFx07wHFx4nU3VzW20)GjK8Px79KCvE<|Nd zaI^d29G-L|#9K1Z_Z3qo6y(k@Ozgt@qlg_taNSJxs0RwS=4G$#R!iwYPQf~dE7eofJ&M>ap{GCS4wjMI|%n451Zt+ zO+RcUKEbn7`eN&mur8FiJN2T}ibqN>Ze{U;4|tVsCbw~!*h<3Kb}21Tf)=&s$kW?? zu9&iEBBcJPTybQgq=bic66jF7m@K$Nju<0L7Cdml;$X|iP?y%#;t)s;EiEo_GkRNC z`sMArnAUwc6KbGk>R_a(h&Osz7hQ3k08=EAN^}dMe7EMwl!J(9 z9Zl8KNz0XXhfVgfZ>LA(YkLMb&yi@?kbXZKT|!9c2Hd)DzYe_5-&NbP&Ak;rg$ykpe!s^t}SA4V4u zM#jGC(!#oM5R(U0flv|7=c}(JDW44%YYiCkF_@yi0(NI1cE-aaB-Fl$`=WX&yaHZ> zNEdbG>S>Jc;D8NIm&f6rufEJ!dF!jhAtCFvk1yee5!R#%R@eS3Oo**1eu`Qb{bBGl zv*8$a1ipBwfoY4m=-j6X31^}9XW5y@-bDruZeV_M>1B&^1$w*-2D67J{w>mAZ+O-2 zMNqc~?rHAVz$~z{l|)bN`f1VF-ouqq>l$C2yrLtzljJhBs#ofOG zOlauZMV00!3|;V}JSdQ7Kc&L2@`UkMlAQ-1RGRC1i5?caBt1&Tt(`X>tk_~3)HgO_ z1@FXJ&JlNPz}64Yld1n+Z|HJ}6|=YRL|vDrC=smoDBrO~CBTCBs`p%2q%xK&)Npy|BPbCJmp@jNsOJ~b{&<6p9o zq!b@u`v-Gq-qyp_qes@n_j2}%OgZ*u#8FY{FS3nu&6#h8W9Y+!#%|Qz=S!D5tk3(V z=ycN=j*ML@Vl5lZtWbFhD4{BpJvTaRPCObBX%a6ae8XUq4uHrWFzX~Ydj~pk>so!T zaU^p(BAvW=_zUa-&BTFSna^Y9e zj42kBWE!GlM2t-M&t4hKqp@Ln_MK%09A$MapKLdanP>G)^&H(9aq5X+g7yzUIg0M7 z^+%^1j_k3D1*w{j{*QSTdwsz0XwHhqrf~XX}?6*&AdVdz(6wWY@0oj(^m7 zL#02sa@3+V7IM%hOs)CfHJGnbkNAJX$H|Zo9A4OS$28XBgcYq0X@wn9h8xLLyZ4?x z?p1>jtu9x^Z*x6k{jf;Cf~zDUpAP(tT8^BtK^y!Xaf7lX!1YscexZ!e1P;9$X56?cE21vJItvTi@O)mEYczF zsHQzts>*1wg^#QSB#gFiguy2ac^XOcpT{*nC&xcD=U^l;e1$1$_1rdKYmGs|Uy&;3 zeXl?#%>6inyw@ELfka2+yxBP2AnPse+&$uH@K^8ui9n?4$idwOuK0=<(-LcpW*`%M z?Nk2}8JxA)rhKIvy=HY-(Tm^w(4MWV;8z$xjJFeXNEHreS6%yLb?o1&`EvllW~VLF~f9;dU+z)* z2d6{?7VeV5BiQMK+gVWtQ5a6BI+?g(YPW=hR^&ujE1wg(n7^7O?x+LwiUs8vI2|Wuh`w_D-mel zWu(zDW7e`IY`zn`Fc3Q20j%PtwJGi~iCsF#Z9rP&Io`_FKeIK@GIsu?SD&g- z1${)xbAlz&Xn$2{X$uR^VL3=EU8a$er2W};DXZ!>FrVU6`p@9XUutRxQkyLQLrXa^ zu(PI%H#g=|#2tVpuFcl!O@o$IHXv#hH)@$x@e_iT0kQdRy$3 zxohwktbY)jUpcpIg6H6gi-A8B&SjL90`bI~_xAT=d@cSX<`lF*AynOreTKgkd|K6(xbTHbwr`=kS zS04jLbcDM`=PsQi^Z>wY;%Y}s3HnDaFe0f3IRJ2V6PWP{=--NT?)W{A1r}#BPr_mp^0w<&ns*MEk3E;0k2kQOlwG0If%wLox;H zQEgq#6!`FaCEgt(2f?wc>#%xN_wgOCJ7W^G9QY^|@eP@JEJ~MD+04~OjGEe{z~6av zW@>8jG#9!>(><29{$|%U7f^XYpg!tke1bdV;NYlfObv;Skoh&EVy)m&D@oE0!1AiNxB^Ee+elxs;0NmdkD}Qs6|2q$6%^FfusB7LlWvK7p*#2K_ z{_T~9;FThQP`Bzm!&FB9kwEj$5B>FzAe}gnT5Vp5z4rXaHvc^ba`|eoHGvznxK9-S zrKx}T;#iJm2==C)rA&nKzm2H@9t?X*2Z}r|^l#Js53lTov}Xs&Y15i*boYN9lR9ZP zxOchXUh?01|M%teulILXN`T~~V<+Lo_pjgnGwJC6k=Yb2Bt^-DnWoOZoG<$SHm8Q* z&8T3~>h4wZwj6yTA6oRrmg+XC#rkiD3}5w$;Qu$FFbDmCq(F~)^tsFXYrQ4OkfzFz z($F%3>fuK1&wtEQ<<_T9&_(~R5`zMtH}<;Iw2lVedORz_f(pg0`~mlFbkzSwZ?XNV zu8GVC{lAT*R5rgjQJ*1umL(0!HLhs}q}qQKBjh;!7d`TiVt%AU1qHlpBmhz%wpI`4 zK92>}vw>06B`!#n{C{a(|Br)R{JPU>?|S9XD${2M)=?!jQTSBZrQ{j< z|36DXU93UR*HcUug&N0k>ev$>qklq%{&o)j=LYZKk0|mrij0Q5Ry8RWWZB4)8sgp^ znf`e@1a(n@%|su^a6j72Y$4KSjA0{O zBhV=oOp6+m2kBDUVW3RypcCq5t5u2~;7y2d=8o7xTWw6lyF0q8iqJM%O@AIYM{xDV zh?QU)GqMd@J{{Kr$QQ_!BzSpW%Q>Kjj5xvQncIp_c$``MeSs$Fl~&l&~$P? z1dj?k71CFat&ZN+Mn74kB2LKA{B$ESL#hOe+Ay@93sOKR6e*Wfj>2Zmke?4xS#c-A z4HMUH0jxAed6A;!aNxP}B)1&#>CP+B?91QB;o>7wlIF_VQ7A3Rl=nXz1PEGR_NJe76o3^v+pS+edKC1# zz*>JmbQA~bZ-xQEGLrP*dDZ3_O=R6ov}dl$`J3{k5FR+l@--5I?8RE)?z|C#U-j?^ z@%-3Wa2ZM~zKWEkz+JUhvUIKhwkQ9KjsN#9XhsI}cF`|l16PNebHA1tkeK0hO{K*A zVM&@MyYjPmZYG0NZ)_tT>h_1TP5IC)-k0@yT@xX%FrtZgTCNqk%(;DMI=SK5^!ExT zm4^AF7MeHbn#Q26WP&=%jo)SaLeNo47)7rod72|;1-9L@qN;%>h z7Htxo(%0;idxctOP|tM0nARC3UrwS*jix=~h8j!r5~(huBsfErC0 z&a^B8u?7ME209(}D#^rvU2vWb${k?7rTWASLp_fd$v^9x?!51TJ%$omVMO+fNQ*zo zgWil4Xb4X296oo1K-~)NJKL$3lyMl@8$o3gsKy z06oK;i8(dP8WYyCs;;Bso{z!iod5E|#U7b(-3QW`daDPZs~*d5y5EfdSp&S|K~n$t z^|PUFdRUtW6zCmI=~TN##-4Imzhl@)A7%iRaaF;@uq!o7`K(;Qw%JPZUPyl8R0;0w ztsb?+U|U{Ui2%flL-PlLkNN$+|EU#iDUgB02H)*lit%tAzRP)q zvyQCwm=_xx5a@7*7IYyi>fU`+62gmW%Nv&`*HEB(%7V#(_Kn~?MQ|$kaF})Y0mQl= z%Pm(LAaQ~nK-WXD(1<_Y3(+>^Oaw*c&bVdP=MbPEqYU0|bb`DRqRv=19w5d6sH(p0 zGG5fu5|`^KZtT<)YJ<%of_xbCXB;-C<2fr_L}Ub}JRl zX9qcM|D+Kr3@x8J1Le(ihbsf8ZG|;91rdXyp71bjK#4FLP|jsYx~H~RhGH;}JmvPl zHPFm)*_W50?_+tF5)hI$1MslU!WAqkV;b4Pa?XQ#;rU11plfS?)}{82>%;MeA@1{# zFANov_WwZ(5#e(nYS00W(&uwBXJjdu?as?vB&p<=xrG+V#IxpHU3X1~c*&p;znU21 zJOUbCdwlsJZ@xf-bQ%=?V6NJ;QYl69Sd*i|=?r-fC8}skQ9sz!mTvzSCL2 zhJe40CUtTS$&zt@tLn3`cLP_Cf%^g#7Pta6VZB-gx}`jrpPw%FLhf*HvI!5o$J4^2E-==740z__b;~=sPs(i&^QCVk zWUV>xTtTEX&5t4NIZkMv08B5>3D)5CM=Z<3q<+(a%T&dvG9D_v6aNA6x@~YmTglO$$^ZS1`k7ukdK(OR(NiFh za@CSqge+OqJ?Ac{i6S2-MPtWMgmJlS$-DB0Y5aT?!$>IdvXP;6;D0 zVWNaE5{>8{D!?kVztz(Gm_8iFf2PJpxo7BFm>bOxt}RFJsoJ01^V>9V~d! z=2eQ>NE`EY+uf#nX3;h;C#eO)U+xn8-2l&1|;KH&*=2dAU+4Bw(7rk5o85;W6rmBdg zF#uJ2`)YaSd~<6zPKpaX$_yrG2sQRnPH@~#M>jR ztn)mVtsgfez#HR}s|_x{*HsH)!iWGIz#+Rj_K0A4$e@~Dth6$lv7IW=bqETXf!+tT zqw`aVmq(;BQN%!*OiV9I4$i^?25s5602Zeb&Hes9QMRIVPQBZ*D6sdps8tvdb`-&V zJaWyqVbUNhXgv_@;66P|NxP**xW(EpZKw??8iihY^?ZH4m`ucZ=Q>Au2+j#XI1Rno zh#kFFK{GRMOzN4~K)W9myv2$BUSJw7Qv}7~jFp{Dkm=jk!2k;s$K&VdFOHG_dE^Ja zwOtx2XH7oVh2>2i9aVre1&n)SpoB7MZNeb)c3H`&)VXZ_#wvFP1V@1~oKrXUkfA}( zA1r@B>Lp1iX2b3@>s66e5bhJ02AmX-(`QSqhI_H$K2Uvl7 zD`*KdzOQmSANEmQy#m>3!mdwvLXy&~0xLN0d2kj<&0!tsM?^bJ(-c1Si~_I}Ku` z@NNq{>C0VcPL8r$f=J2;fHXm0wPL(rM_6Zt+`b?Pn1Z{Dc>f-M*yA;{b5jBi4YCVk zN=ED-eYQn`SYgH09ZhY@w2t1Hbk?S+R&BeX!DOI9vr)p!E z-eDJ}cXt4o>AJ6Iz+d70KYIpJ5chr@870wd6QaTfq{*T{>ai$L;q=f^wEPyFyA|ik z)BMzoT;Q0NN=~y)wzqLcN+Ts4uMno7SBm2HuvamaicP}KkF)R1cDlxAG|n48KOF!I z#5VcjT+f=MrUX_m2Cbn;{P@x$M4FmUa>R8nNj#vH!$kHB*-J-)*>m1hgU3EB_eVsb z3|igFPN1=57+z0{bOt^ah`Qwl*s5$|#*h|gbv*`t;b0g`HIq`D6cf%MLf2tmfqLwT zanF*MFfA_WTj(IFv7Lu=#pQ=9YV#^0t2F~}oi~<{)~B3tkx{bx(cLo-LkPZJ&@fH@B0>wFx&g%7 za(#lKO)h{Pq1nH@d|MB;XKcpQ;U%2Y!n$8>x^5z22Pq&M^8N+U{O=pqQZNt_0* zmJzl>p#{LjwzBGu4Y!W1{8_~5w6~V}qK;XtFH|r`802rSB=sp~BycQ6H9f~~>*74{ zLSRqgG_pTKxDlRRQ}Sk^;Gh{GOJRb1O>+l=SH2TDvouQ$@Ov zU%j7-dLjIZ*P^)n_)y#4WM6CO@s5s35YG-`&P~n-f7&lg zw?c6{;a?uNQt-8UBA?R!0c+%KU)N={for7dj;+ARx}2^ujfHdUK5`k68m5i#nRH6$ zmWp2rp>iZ;M_9&V4vb&_c?d}?>T4h z^Yx84-o0PefL?R0s#$ZcnpMB5IV? z2NeLTOwYM`tC6TP4NX(>9Nxr(ll3&>&-7M=44>Cu+JO@eu6$n-bkbw_gO9>gbD-zJ zQ(B>Kqp`cC6uakRV(1k3zi#Q`^mG|S++)7?75{=K;>mW;BKoqNPPiTINk2ITBX&9R z5#lB}r0^?V(fy6%6fm0?9Amo@_#m_8c;+6`P>(06ly?$7_==l`=Cerl zd{|;>cb@0dg(X({6MCos&3dHbY|ri-2~Vo{M~Waet9`&tiH+`0M%nlpuTg{ieZo^` zO@LvcM1gv2B;l&3`J@&f;|L${v!MG=Vz{!vb}#;5RD-c16)ojy;b2O+5NyZ(b%3M! zZFvydy?0C}9xFBu)qI%nS%~AsRdBajL@p*7w9QUH3K;@i>i%-b8CER>Lb@KMMA3AE zpbqx#V&CkCQ&9T5a_QBF@YP%J;uMmu@05gA)+6hrP|>W3V2Ml^Pe-Ubl5(No8)ec( z-(qJ`%yiF9BRYqWZ-2KnO%gQvxykwHE2s3^lT zIgUYz_wGt3U3iP;t^He!Y0V3f=W5LH+d*7Li9}I&&8vle3K_6}tolNZr{&&9Pd%7+ z$?goQuggS)Rb6P_=M~&}+dX*nLzuy?pm<;akkc+oqmUWEW`*ib8QVL#BBK=QF70S3 zz08wMy}2!Zs1L@beO}?{;Su;jGuSttwoegVn%L0CwAb!M8smmVj2JEMdxj~TjUxH4 zyZnAHP~9EP5!)pdHAQ~>2ND*TCJDy_pi`fyANgyZ4>8COFqQ?^4H03sV1Mk%`I5u) z0t1uVn~!em)LCtP7&yq6q_JEakg1*9lR7Vl+){>*zmJHvMHR~0KKLcisyAGQzI$Md za(8k}MlY|#{RqdE(bcN;Y>ZfX!UTqlg?<{`u!)t_e#aki{D`|sc@&dBO11Hoj^4oU z6bE@x_nVs#CV1;+-N8j#tWdTq$wQL@o(>VVW3KE;w>slcZtGRdnH>wMiw(?2(Ogww6^y#(YpYoT(R`WZR&BmJSmJJp;r&org^>vdkf%QW!({E7D_F}>U0Z?OAK z28l`tRu|4ExlBF;{mA&!kr;9)uJVSQGl`y{Yv=R$C2GMdtPau4*iU5yjZ)MRwnz9P zbOat(SD`v8!NqPCH8ky5pLF^26TM9Zn}2mE8@(dg48I_wKKo40#yNsRPyc?Plug2< zsINYpZRBX@nfi2-wQAEjp&{4`N#HWrfSpaZf{t!3FBsFsAVMzg4+dQjNRP~Oq4}! zuzXP&7Vuc5xz_jG-=Eaa?mbcatJ|sewNBUX=ZO`f*3E<(GGX8PR#mJKG!NH!-V9L~ z)dA>=CjqaL_bX=S?9AU^I&)5GS+s~%&(2JVt{AuBWa@$p+zCs+`oRO_L!z)#($)#5 zC`&e~>R>d`;UdDRRXL0n!je>SfZ{lXjp%%xMx(CbZK5C=BS-N0irRl|`!n!7=7)za z?paSj%e!Z~d1KiR*^lUM9s$t>SnO#$Mrkdq23gY;W9eyeg#LJC%E-S4gOS&5Q*tP-I%L=*OY4RgxxB*T{w>|(JXUcG@~NiqAO|MHt5 zWs}^|sM>@tr}E=f9lU@iX#vu+Qh~ z{^ZA*6NEUnq7JhcQMmsJxvy`(Y&JlGfnI9g?0`H+$Or;5kJ8T$_v5t)D3Q@Z z;5&-tI_nKOJmK~J%rSOJgGj)A`5Q_qZ)n`E`)(>%#S_Z8v>o|c@I=W!NrZ>Bv&q8v z=+g)d!dN(LwF?SM8QV#+*(&oOyub=U^@z@%f7~lw<|H_(-{SHq=GRU{8j%|U@}ou zP+kQx+m7+@!O3TbUGX+AX{9_Q&?`eTfh6!FORe<7GsPHaVX*JdhkHtqS*(8PNb2lz zKh+LjRs-+>8T58Mc{lMAgYsr9ph*-+sXv%!!7iT1DQ;vD);BWDs|%RhmA|?C{9>`C zl)W(Rgs_`Wrc^^sQaRo#1vBb<<^INUo7MsRm`F}%mh^r`Fl{$*U8#-KKK6(3{Zr0%48 z;%(p*O5orl%IwM$HScWEq@$#yMDY3X4bSD(lW^Hj2~KaLZ+k-K4+%jz)IP?_th}8n zF?NixIZXM_x3Qjo=-d9t6vh2}%t)WDwTaiZLdVvig(@w-!_!KN)z!(y3nZngIGVH3GnKZ_bsbyJ{?Bhh21UxOyHFUZF2~Qq7Kc}h*zRPoEc#w(;uL?F}2Z!rM zsHP|##@kwOTq7L4Hb$@E1=v@1S1WAd=jpo5dWX1+XAYdkmlwpt?XAk3v#WY;Uy!JA zmkG5(dtTz=hS>xmc?*;5YCIdGSd7XTr2N6tLB>K-82J79&G}vXuItJ4D|_KUGcpBg z<1RU-C-pfNpZdrgw#v{}5@#;jGUdqi@wBc(KH{4^=54g^Y+#KtNU87p=BSebKZSO2~ znRBh{yDWnzO#yv-miK-yJU26I9Mw|}#sS1x>;MO@E?bV*Tb(>iq8p(WnG|T(Ixpwz z1MJiMFu|1~$WLdgY(LlVKZPJQI;Rx>mUH5V+dXDC(1hpPW0~Qve;x9^eq%1klkU`= zyC9)ddo5T#bP(R+@^&3)MW0yIZ?bTnahh3EjfnU_b|_a8ydZ@d^5HAK3-M>uYS+Fpw8She6ZE+09Ft{F3dg6I?HHe0qS-`v`U4f7u}qSlE!AKh z3S`9&3j4CXoq2YqU2wDIDDXx2sD@7ny(4-T$1SHJG(h2YJA`BhkJtyxX>f1g(~!8a z6b;@ZR?>qBliI@F**3UCN-hqiJv6FwAg5=7JK?;V@Y{@|Ws?@5s%bkFgFf!5mwHX- zY|SuJ>?8B|`g=53rApiV1W;X4j1^;18nhgHU5auaMe*bIlt}1)#b-C(P!sTkPMhAh zJ}8LVt?-eNn+L%h%`hau;PMtX#;m7FCjl?s6d=<<;PJSI_Jhz9->~f-k%!i1!pf4b z4~ry*Qvb{PFP#dB8Gpul6vT&Q37J!u5<@`M!okcvW_hH1&#A)d?n;MOqO}ab|GXKw z2Y9qDj$$_KHlJk^Fu3x}Ve}yAa|z-a%ThGd-N@7N8?Kshhbtc;VXS`!Y6q;}@djSO z@S2hhGxoad#WAOGjLG1voDi2kMRxO$5Vd~Y^iJ61}nF%y_>@#g8Hm^ zw2KT*_MI@f;46&YpkI%U8XqND{M;yz;h*qsJ%Ixgd5Bo@i-_7>4Sc2pW9*R-7ZL z4>8T0bM~-gj8+d0)EgNpE6M4XQhLMDl7ZdXb*3RtM2ShQ-FC7b8@Eg6DjVU@-q2V&P9DRLjRN2G)GA{1~UVBc1Xo^vA%!p zBU`03fcIeNo9iRi*n88rMNp6?!qs-#DK?dqC0CFmmZJ3_)E zCy#<3yqPnTJcmEw-!-?>#^x|)sRr3CXNUm(s{i988fx%Q9=kPJBxgcmS+QErXI)0i z>8Qxis%pkL6lx2Ffc^#M@S(Hr{3YqPGx8`HOauHbuSBJ{jIY{X{xWR(#B2AFeDRAs zhP{^a4&M6j7$S^aP`auXc#Ci96GM*snYg2)Pq6!80Kft5&HB!Vs?I8lWp=Q@(y{K&ABgti$Pe;@~cKHX10z4FG6;z3VO-Ip<7-j;McA=8D4ik~n%^mHs22 z59;7hpyyHVExMY1(6bey>K~)k;z%V>T;`JdpW{ESyHVPjw+-Q0#r^Oykh0zzzd|-x zA?;a4wLDxSeBROBZpMzf=i3s+oe8sHCi=0dN?@mw~b~4uFx-u0=MOP zUQAF4(@R$&@bb;;C?{loMJ{`mnYK#S6O^9KI{q`vki6HZ49V!KR+b)5Lphv#d^4Ol zi#*C58*`Wc=8pO$-mgz9bp4N1xa$ssQqT*fuC4F15bK6)CD#6MrxmvL$QRO0S$*Tg zpOh-=I(w(_fdViiOAA)y){+mwvMX|O&F=03N0}u&1f|CG zd94E;vUOsl^l_!Xe|R7bX|#suq=UbOhf(PuS?p}DsJSW5o1%KllJ61;|Gu{Cyn06) zg^eq@63$F}0+=`DRt1Ei`gA;?${a~$hmCsKe!S?JjzsO5{1MAMJok3epMjD>JCC%6 zn^3f)5z{@M$T-R3t-&J<{Vk=}E9x@ll@Lv-W-gX&+KmI^xlXrj@sUI3%ohQW@O%@& z8m7fB(%Z2ixlA~s5cP7tWV*)2)#z@EzmMp!@zp&J|hIT>$tO2$bR zzo-j$4Tz5(iEJVTOpXtYPTQbNRU-mnS!8q^x`e;ZgY(rW9MOFUHq(E{4`dw5Jc7&R#JU(P59B7BC1s?r0d62?b}@Fmv{r! z(DXw+f+Y3Vf+DCGQ)A60I>?I)ve}HEem>QCP^~Mg-I4XL*)6!L(B)hkV5<<|k>%!o z!LBy$S^XAiK&Yh5G+(Xn(|^^3fXVPy5*azppdfkTh04dZM}PAm%#Q=8->cJncUpuD zR#N!E7yNbF=VJ?;S^n&X72`tctwr)vneGy<7b)DPlQk&2twg>Bihdp?8zqC*>3Ai( zyXba?0{UR$`q|4zgq5OYVKT10w3bgUhw(*M3!vj#Q+3hv9pgR!*UrdD=&u71{=6t5 zB5e_7la-+`Eo7DyavKv+Sxr+dam=)tM|CrqSFEu zD>Y}sa=FX_IIFnX+LfI~HGVd@$i+icDI-9si zJS$~)K)Na??GP8xV6{a z(q*@pZ1dsnrC~H*zgFLT3HDk?aols#T?lQZQZ)Gd^vjV>;~PVHUG8{~69GHNnaRP? z2xn4{Z7T08SP_ByQ!A<8epfsb?v~&rBB*BU_PgC)YMpy5%)PkG{qlD#Uk5#j7Yx3C z@-ZwN=Xh1iNjXrzKaAzq@99bi*k)!^&P}*AzEYH5rsE!~{cKg}$bMdK&i!M;!#5vn z4T#l`*De4=kg6;=z2X-cGYIVO!yPNoOlIEuzK@~nhyJb;gPmewqZwblpiQh_YMo{c zg^u+NKXU?4J0{w$Rf|IV*)Yx1oL%Lvis9vNxPM=ipJiTvJrR9DBKFvB$TZ!}OcIv9 z>KVSPJLh^;73X(q?i;cm=%TyVxGIlikp5J)F)RS!9XoL3gZAm3*eui%lHQ*B&(sgb zWvOK(XH|&>RZZJ9trq+3Tr+>Iou7*p1w859>0}hhg1F;WHX&o`;Jpj}JyO@vmeT9F zsEzWY)P}K~n2a>prDxa^1<=HJ=wy`ZQ*;Wcg+Y0l;Lp2cW$oLIcfbx2v7QqFT@18U zXiS4D_x7;xzW?3jzO{B4u|Z0%HSuxVLF=Di<<2{`OLjL<>yxy4%dbd`Lz+#5L1Thek$RCKqK#jI-}izQ z%{+Tt!J+ctj+T*TqyXFhzT83c!+t2EH^b`9SQM}H1+C)L&&vjAC)hk&_Kt^XGI)>? za?lsJZ(A<2ysj)+#xyn!kA!O^9#)eLS&{BujDj_e~wwA@q-rq9daY z3gh*0y~=(RXfcYC>%$HTndUZ{5^!sCvOKfN=H-*sys|GquTxxD(%6sx>OuhVsjif- zJg&N)bD%j08=VCGT9ut)8p)e6o)qrT{djU^{iVNN+*5%2iLr4^m?2V$7(V(cPhUj%rr zq*>wX-Uj$p{8u(vGL%@65(R^iHMhBhA7g$inB?h zFicUC@XB2!{jwy#Dlhm!L^o!!dy>?EYcuOB#trDuHVEXft8G2m-0&h@7J5iAZUYQ^ z^xlQlsY{fk-X41b<7V~8g@7UCqV0uoSp|EIH9Zh+g+;EXm%==L754Y1+!=u=iKhu*;~vi!cf|Da8{x%w0kC^xdpgxyuO2CVCvAU8p)x zLF~WI(qvpNoy@-&kbEyk)o3b|dr&vro|(D{v`fS@N)&3*>F|tiB>1_TzAA5uK?g`a zPadB$TQfTtiUjTN<4AhRh|Nkp2#Fe22=J=wZJR&T&*r$de}~k7v_+~UrdOYov$RNW zEPk}^sQp4%xe-hJuKYT(H$Ro#J!B~YY$97+!!omEEL~1$=Mpb~L43!_E%hmlF?x#U9NWD$cUH zZ10T;Iw)V5%Rl;kwzh&f2_bsdw*ZDMeDl5@jP9>iRw(Q*h&7P6a+yu3F%Nv4KmoRv zg-$hW&fV&4S?2iI3#xKZz9k)a!O}MxoW24(_jfqJZJ0Y3*BampLP*Hn;2sS0reGK4Nb8jO!+&r2KWBP z$sma+Zm|4fhjXP!TCJFTYrRGp&WbvxO-sj*wvP=ySvf2+_=|N$4cja_ITVHQT<7SB zAYPZ&j@xZr=J~X2P9L7{CKeGqC-a2_ZZkdC*Ks^7kYvMg)tM6DOsi1>M`QVH)U7VW z?-U}C7uu@!hq#o$!0VDiJ7}qa3U`X$?a;Uzz2JBOPEcq9dG;Nvd{g7dofy@9wY+dB z4rBrQh-1fgw&=vaiurh`GH{o)qT=l4=se2yR#Xg| zAH=h6(}On((1i23zag{(>el?^!7XHE!zKEVIy-&B%FNQIhc?B*qHC41RHIMYLb9Bi zhw5@+F88v{&DYFRXj$bN$&sv6^rJ5l1fHIttIlaG9fwE_rAE(pbGQq#xS>m6X+P*CPNCM_SxUn!9q z6;+m_3s3gTgft%9HD%5%xlFy24PGRTFMUh9cLWULdK}A)7-98($l$j+AId*n9CaHN z?txTE%1z$Z^6qaW8%+IlW4WY+1sn^sJ59=6_3&y|ngeemwoAi8_5D)s4YjWM6KgHM zXZqav*vWbf=~N_*b({-e^XCP1KV1gP$GTVDC|8Y)Pqu3smZtV$khelt${egE>lmSq zPa2ZU$C+ii(xbE7<1uP?QT*Optq@Yz2RCb?y~%P`(TUU_nV=d&+K{`*k*Q_PwV7qu z!=>Sdr(&hXBQ&s2Q7c={AsD3ZT(fwnRSA)2W$|9|{AjiRw*7uaH#N&>uAql%?z747 z&Bq4V>4F89RrECYoxE!rC%5y@Xlt|OYR9ALHdcd4*_XTnd-1mHGN7AEe9-ykqI5g* zmp1@jN`h1n81RzV0TKfhy0lHnhg&?G=Qs84nn{oIwTdEDu13zlj2SlNZ55`-hm){y zPy_JNIy$9UKU(pm^65%WX|WI6`?xiFs9Jp*CBsC$no~k`cBjlOc8qjIP$mZ9nX4Bk z^eF84rC6$VQBy_bc8&dLT9c-(4Lsq7)waq##DBjswu!OGn_GXrG*xczj>{=TLSE6X z;FksW>{y99AAmKIN=;gzzXo;JAWIQkzE;$fkm(R<8&wexhDaE`>h}Bnw4mf1xI@n^|P5=wzllWVoJs zI)BseVTMJ)dFOEQi&ta=zp$Y}mNq`dB_wZ7rj*!3)nMQKq0u;Y@sdwQ=Dm>V><=-a z>og1<0=Eczk*c6vTi#dA91lsK#0$kD4 zNf{vmM+uD)_1=lK_FsuA<&-ORF=H!Ah~&#`98!m$yc1U5I*1h}J#>7qQH9rE++)gE zn<|uNOxn8^^%(xeP7l&BY53@B1+-3pWiBb8iE!XD^p~Ym_*?f;9VBL)sOn|VSW_An zLww#wUR?{+yR3W~HEhvuVW}FKb%fYJ#DtgTl6&>D3&6~3rgf$bm74M>X+)M|$66Uv z710srR8896oguAN84?s zs%#Po7nB~x53}haC)ZGPI+$e@vb4_{(#m9_kqSVOtGHIOg*J(G9SVDkLnj9eBQv=R zk)}3rt~8`;w2q&C!>{^>5?m$;_{k2rj)hPqkg=tDs>CM^2um{HADGLJDDeB58+4N&X}-y%6W-QAxj~ z?^)niScsrWBkC%-aVN{sF(x~OVGSMk9ML+gCT&QuRDu9+X(jBdGNz#Ax$Wz@<;p}x zsJ;d__U^J$1I~x^j%B8YYR|OCf!Nvh9Uk@a^u<((CT_=VD>OB-u|v%cig zi1W$#On&bY!BTVdn3Wz>Z82(e3Hn(209r4{vG$q>_R{PU8P)%m>vfmT0F{}XRNnVc zk!UERIP#}7*e-;Z$&id`Y!Nz7sj${z6nkjpQTeixzcQ?0(`{c?$(L8KPZ9p6uCaU? zO}G3JMy4)kDQ@;U1NU>*%SXIP1Z$y6{TOb*Q`uzuLP%;0i@c4yg^j9C<&-mpwGOoo zv$a&2Nju-AwZTL4tPSf4!pd$K{`Z~DO$I?h>C1gc;!$;$-|g)!>@jRFRnQ^uxaB~D z+kW}9c_jAebCwY0+8f-`)2Gjlt($S$8pB}!d6cObPK#t3poqRxQF>Y3A_R8L@k%65 zKi0I7;I30AYmPBxMEbrHGauE2DyyHmNwapINxJ#sAbxHmvEOsWn*OS1^x*1a-vJuw zC1{1i{y>Xq7C{sbc-|b%6LI_b)cf9pc{EfKfr?UkzqLQEVl>UYM5kxFl*B9;B4TD| zP>Ny53Xz$^)`%qy^J}M50ta1RcttWr+jJ+ktCsQZ6x&Z1mXi2HiN40wdnOfNFL-a` zEz+c-F$&Rq{@iV0y-w|Ml9l0?1e(q(~)<0@q$CR|8E%tL@bNSp`{%MFI z61I0{;Vu&2Fe7VDr3#L5#zXW*$n9I9Fri=y8)j^pV{C=|HpJ}KB0lhJia?)uRx-Ke zY_+J!$!#$v6zyX!_c{#uRzw?iIZY3<(*%utwc|cL=Y+h5-SjgK2m-r@UA7CY_xoQ$ zi(0;dJZy3Xq6nCEK%Y>s6(G^XZtC|riYavQ-q8VzS{siaJvL*@0`D(jHyJ65sRtSt zt3bCi`cYh;k9|%V8A1OprcaDYNr<38(~)X!O6VT9-vgr&XJOQWoq6wktdL7<{zmMM z8xnM5^7*kz5IsOtYv?KIwB(R8Zk;j)vnmFmy?YRTV2ltN~_$pC~0t(l?IS4dEfpPOp` ziY)!Zesk#bY_bS|hOFqEw3tGVTzjF1DhqLA26owPx<52<;5WVrRx-pmn;S_$q z%+C7k`*#G0;RIY%6gg96u?=;2n0Zn6Z(}~&Sv>la) zMMy-&xM$GzrhpnVkDhtm8Iu*yzv<|IaPis`1qov!gC*Aec%^FI(x+fh&@&ho)_Q`e?wNzOK`yZPdy48wR;YK!=kq==Vmq84rp@Gua3tsQ*CK zJw`%)pO%0s+Xn~-^KJk&T3@F51}d$F#Qq|$mvrl{-u0qIN|2Yi5f$BTuK}@d0HT4^ zlGA~heB>+z=9~090^M1YgiQsetqEcQlyo*94=qerkE|)-s$y{O{3d2L4O@4bfSBw} z8H79`17{mfv6{_1o7YOoH{kdZmXNliWcuNUZR0u@&QM?x-CsJ-_XerOOQB`O;HhaZ za%q{e%Du>Z*uH6qC_hET>g-3LflkfDf++1;&PX}Z`=62w3~$TlyQj~W7vp!5PKvFp zccE#Y3O=UEjJ}BB1gvGGQg4JAsO75{zD^IJEJp;LNevCU&@l)d7JHZiMY5dF(`$7` zA|mRYR^I+^81v7+#27!zA&(3&D7hx+U$M#7xOoFbj)n)~YnEkAKWq&MqE7@})e2R1 zM`2W_ETAyBHYchHOY!KQ&AD|fmDy>tB(hQ6Ht+vhk9f&8i&XN`M%DPknTfrc>TfL9 zjhNptE7}oJ)kEf-;?RhL53iX~OaknEKk|{=^Jf@vml7Kq^G3OKVPfh>RO=EF5&8DL zcMqWWb7ub!dXhc${FN+Zdq*&uZ;&b?8Op>T=wQeHF$MIP?OP{?)kX9Pgd!gjop9m|>Kb$Wp zh6aYNSvQRDJ2`db#Oi3g*-&=-^tEE=%Dx~q`8WDS2h&LgC;KKt*xUtH7#y1)o|!Lq zHE50W?ckIBo9Fe<&sQA9cQrSA@&|$?dm16WJ@XLrr}-#{6|&)W(=EQu3$Ocl)aYgE zc^ZqPnOLv^ZqpLMOE+i%C6X}lT?Stu_*~GWuLVD|RnOq58NSzz^{nulazp=(yJV*H z9tvekd-<00Z>jTnU7ojdmaWpkBZ9Y+FoD*#TEaInJA7#|Vaz zq@a8XkL7c(;SiX*QE~(cKaL2B@TfS|{6Yl&AYX1XvJKwt)0B>S8u$KW#>JP8`ad%N z^RtQ3?nG~kCLhomUly&Y4PHn^g#|jJmux?_bH`nLPvUh90B>+U;d*dwg>SWEajDX5WJ$*&*_s9hpM5q)%`4%;Hi3f6mH3)gmAT1Fi%~-qVWz$I#TebBtAUv}F(#e!-7b|Jk{J8V1>)&=X!|3+me!94e?vZTpeD5ggek7 zC4Y|ke{cba1ALWjX3}a)MaU@I`hgsU06c;n?R%>nmar(X{#5n*3vitPTPtp70vdLQQmV+A1evHZ~J)7+Bb|=Rx4r**?bPTgt_hGyw|+y zV2vg8@p_9wJ2vg-krLF$6y*ZSGG5Zo|3^z=Kk?LdrV|@SDzx~uo_J|-_x6ETISgpoDkpZu8 zDH^LSbs8p@*$8)Pylbo!&QXC@e7)ECGm!N%j{a2^KFFj~2Ge85`igb~3e?~g_C2_D zt^{gci?#qLSiy4bx_wql4u%JHlIAOH_o4zt^4JgYISzAS$=Gw7kFk4cHj4x%zvJf) z;s;I7pZHBLZZ|J(-=&yxP{C5q)}oU~%;RT$1@z$O(Hh%kzMWs zDxPK>J$G(#G7om7PeSS4e5)I0mUmYKkaBGaW#u^ktf_-b25RbQ zLsfC{doTqq1KbYuTumj9{Cn}y>SU)Qxfby}oR%IxfZ0}jj}_z%SEa7udlE?{QyR>M zEQJM|G9NEamAJpsPs~W8?nk>hSufaBORdf*PG)k+dpbqc3gAF09t5n9`gsp3 z2f9khXuL4%xc!ITdFiBA7*OmFoHwmcBDq#!PB&Ri)?R)ZbseycRLi?Mf^;a$Ymcgk znMY`_=vQQj)=#8H=CTdwYNZOTw0OXXHV{8)9sCMs%3rFbL$^()4{%N0pP zboANU=lL3HNzw5i74CLR#j?q!DWkoL4YUB!Ne73;znJC!P=$dT_;gta?VnpkD6ZRx zc)-fBmvWH0@rUx&rdXvcjjuzi9FmG1H?1)2R>LBQR#{PKjOL-_L%o}7p*{FO3gTKZ zb<;1Z*`Gu0>es5X$ZnHP>0=S=t;emj<93oSfboRm6NwOkI|1|(c*Y zYSB%yK8yLN@AJgGPjCPSNe!mTGcW{N^i{o7l6R9Yl|jduWDtIO&9zt`oi&SDmGNT= zQ};qk$cWdFjpOJVCwx>E^4J|j%5m6P%p4xntAy`D_6_gCL(`R24`_s{h&4YHE5^pu z7O_kcgLigg*cD6DcCtuzHMyDy*E-;bM|T{)PZ`@SniiPReB93Bwu+PFjRnd9(|$B; z9}q*A6HITzLTi8FH@ToN!x_%#N5xg9G zK2CSFd^fYkp*<(G1$nulIH$Qmd$1{Z0-;}6+bxOZa9xqOF41?ZYYR!yxw?4TTVeH^ zj3K87*)!^U^|%Spwgmcz-iYctA%YaG%KT>Ln|5qE{f|{oyq(TXA4)tjy(O0vNeXM8 zrP4Y07cM8!sYl{yc6Ic6AD`huyaygY_1oerj{TY-%R}A$H5MJ`<0B%A0OPn4P}GayCdDYXl>?+sd!ci+FLdG_~1gIohxK-(1w(@^lz zRJ^Y?^jLMRv6l9%zc0do(U)ap-i*IiZ`#_s^T?d5ZRT{dUexvO;gO?SSq4mJd1(v_ zF6TVwG@S5hg;{Mr?3BW~%7Q$F7qehR=JMW#C*w|grA9q&R>?3#reD8jvZh65UUC*V zQHK?~%l*j5dJu9?&%_awo({_@1TJY4$+2g5P#zR z<5+`P?XPHtMrg3RA;kzwHGOxJXwocMk`jJvwp}OTdAnB1mM7Ybhtr4sx&2PqfpiNX zntNQcQYQ~r*Mo)R@mX^q< zls}23u6AQpED{#B_C0D^%s!tUDsecNE=Y+mXwdkI+g7407-sV@b4J=OAl5!zSdx8G z2iiH5svRg{j@)LTu51_Js(NEGRww9?CE|63SWpkr?qNA88~_uGvD%}8bai+9a{9qC z5P#{F((N<+?>0>|(LfEuci6K&LB`O16V~Et34i^?vJB&+JLuyLF64IvK4{=712x*9 z>Z$FlO`*($n}}j=gxG#!=F7n&MfTksAo*&d z?%c7T@@(sx&^rLQ{&>}RNmM65B=;A`itCA~KHsAowypItfg=O(j^`-0`2F;v!{rTe zn%fF^CIRK}|kH1yWC;G)9}A?|Q0GSFF5;azbo z0nOIfTnv$TpGT0nM#{eLfdr^}j7IqKl-Ang!BIaoJ)0Tqm(Nc1R1$eio-?d#v7aI+%~-XQ z0lJ(ry?wk_-Y|fDGCDfG5d=^{jblQEy~1=PWiywVQym^6XC1fpvtx?Vw3<(f(G*2i7@F4G#V%$eM@b&7A}wysBGb3t7tsgm*PS^b zdk4_Vv?{CLCqA1=G6wPT?Wilc2e7PCQv641Tw6&*n69>cF9meXM*l8&wYC21Rb@&c zan_TZO|k!(U`jV$gK^DNGx7qB-hPgYo8KXrdgScSx|dNKp|=pBodj3OfVHV5-1cP^T@9A%8$ZEA3rnJSI4mP*8n z6tB=*N2K{K4f`n?9`Y`ScH&#v4DIXm-SawnuH4LbhAnsv?tCiJUPRyPUwI~`rWP(X z*gV+yo6vyzH|U*6h>@TH#S0jJ@5+8rduFWk{{&fEI=ry%~lF+AN6d6zIiPd)85psJKw5&RcC_YWtt znEVeE#DqMkmKaWwpNSyk-{115#1Y}HCmMRMeZe1?Zaazef9b#}ymx5hT56zA=o5@9 z-=^OD?H5y;(5d{)HEX;mM0U2=WT`MB3cX5&&GqUA1@58$)2)Y`WkqrRJrM*XLMF!< zgq5Q!%m0lks5@G55$_{e?cFuda_b-IaARCnDvAERnV=>X_#)YHp$*t1L>X%h2~Qri zF8T7o^;QcRlY-@FKC$%YjTS_{)QPER{ng*{j|W%}#{73=g>z~F5B zEimCNs$N^B{sqnclP`2;IFSib)>6s8g&h8vA^$J2F%25^0p_T4K>h}6{$Dd(=@F?= zyeJHz{XWAA@y{OoYYgm<-(LSjhJz`#opi+itwpvmyai)lipGDHy|`Qeg78n&DCfWZ zX8xeaAO(kijMJ@9{u`11%f`P-_y1SY$W}uH&F%aF{`iXAikIgl`~z4~!a+h4!ICqN zAL*ltFCi!WmGD=+-1!wBoepq)>-$GIByHzg&sNgh#(RJ$`-Ws0yft6~<5gVCf^pJ{ zxjHrTr?EfOIeA^c@Ro95&-B}B~?{v*#6K3svX@!@af6_1;N3N6^u zEc7smsqmP6kPIF~pIrFk{%1Tk`$p0=jiE6&I^MN{{j<17vP#>(_7lF4!PTRM=@uin zGiTRQux>2qbAI$zX!OF=P6JpAk;+Pa1EV0bmCf1NJ>)J1{ch~Vt3 z)i6$jGwoj0jR#q0V@w2D^U=Yh4LC38=v*1OsWmUZ|91Qv?Iy01{SyIraRrQsjr^9< zYy0odp2FiDsox8vE?@qaXEzamOCs-oN}sbeza}$>uiRvK@Q7fb1Tv4^FnsMz{ZFNX z5crK4KC+5(pDC6;lUX4_Ka=6_!ygFx1NEi+OV_eF;Ok`AF5L_GrBj&)N&N#{n?zu7 zt^9lHFFY&d`yUp;F2c+I^BN|1A>6f5dbNG;wT>&n8Y3Q{|3sL5C&Vx?tQk05{^N#j z0m&)=_{Xf=zGR(qHJm_8$)0b9XN-j z%zyxchW@No>ObwNKUXwu*-`?-i% zx7(Gf;<-H0{a@2BhekL(=CFjlH^M&o-D6-2v;;EwXYl*f^cnET#bdUY8Vc(e#nIfJ zn?SPrdqEeoUDmJMqTYK_z+4_RQ`>07B`Q0V8s0LR`+2M*f;6qj9w%t0lLpgMXvXPz zcQfm34*2Xz$f*g!-UI;D|1cgt<;ffV=PFp-hP3rEd*@_gPBC`!h976;dWdshyPu(j zgX=oF^>T=c8#;eLRjj&g@q{xW%(6u&VAiN(*0dBU4o@Vsm+m01Wt_549Ndgw+WXdH zr*0a2cJjT=o}V12g^=EGdjuZy0lR`_PnKOkxtoyVh4Fn@vgTfD|JqbW5%+1+j*DQz ziQ}+w-7uxOu&Yc`x9^tMI~&jDP4|H#Y)!S`O}Y^cg-ik}D#pkKLnUQl`>O8lJkvYD zUJrWK@%J`b`Q-*-m@CIU2Dta)&-viEg>^4$JQrhK$yl^b0j}okj9m|`l^?YGm!&~>isuesux?}`ln;x!cN?|DoDloqvjq4%I=)lAKwC8r;cT#`fCgsc{;8Cdx z-7e!UPDf<1paHD(Jl4S zQ+{6hxWX3=SDrmv>|tg7Zh6r4PJ2wvMhyj^dTjemUTrzPwUbJ%b&>rP?vcZ!!*yn^ zWR^&tv|mCd@Dj11-qd<1Ep~4ui)X-$V~}|1qlC0j?jtR40<%l%@!?Z5ChK0&?v_h~ z@3g@!X=a{j z<({sgRaI3XDXoWESuhgw!xryRxa_QckYc>WARJ|NJ0lhPf4F-Kr?{4_eK>(Y5;O#N z2o~Jk0}R34-JJw?OK?qach}(V?(Xh`+hBuzlXFjU&VBQ{|G-x@MeU(__U>N2ddah% z?wwzTBa%ewq*vARPW|=3^cubWp0@GA?0(|AmPLRv$!E&iHT&9o;Qd# zVtAE`0=#mVds?!nxycB=6Yr*zX&#rhO3H+LN@Mr412b^J1NG+;yqEXFto4^7yw0xo za?qd${*{a;&y6WEr=_e(jl^ohj!E!pnO;Ln{4)>ba|hS;Tm`h_q497XzDd+Hs|h2S zCz)B&p~>dj=8^?=-c0ThtCHew!h`ROmG;L^d^1KU@SwhY%;;64{Nu)^O1PQ(Y<9@| ze?vyFvbqCcfO?fDvk!zjz=?I_0%WS9(9@F$8PtGDL9-ePM7!vp>{71N~uRw zx=KG?&UGqG9mbkm&Pgq!s|CZ8k3HjcJFslNIMTkXKYUkRW-!x)tUWt$!)!n8hmUT+ z_a?oSO-;@OVXS)@XVChJ%Ibj-YXRy|A42eGNZ-{N?%n3XAmdQZv}GqZaPO zF?HlfQAYXvLOv9y@!cDDsGgy7La)@UoI#a?FBc<^1Wk4XjnNu%fO$-KZlk@v7yaqo&I^ zisXyQhi(mxms&Q0wO!(@ai%oX`1uPL)70}bg8hD(VO7aTnr+{)7 zET21kz!mJk;qfex_Cp5v;oGwZ=@PGDdZ^A*FmHU0XI~t(r}%dU!lbHzaJzUtpxWRo@S)uy&4%LEkwkWlD+ba7(3)To*j0UrblH zs*WRokUixNE?xqocg{pAC!9*ADbk)wXJ)l>6*Aouna`f0<@4g`4(2sStn5G#`s}{l zo}al!(R)J!AxNT$(Kj+O9SYgvpgS&~;^2y$GLu!*(RsAcz$>C7b+5g?zTR+pUpe)| zbJ?3)+?#*_o%@e0PT&oEw2(KQk#&5oC?HI(x;=n)J+eU+b=OM%E0V|byOTv|i8}W@ zpLrc~Q2sOyxRaTyQo302hgMnyK|$QoF0heebW)}p78qx7^%c_`(4~dLyn{0x_RZGu zAzhB$Gq<$+1+cPlsq|@iT#7rFr;L%%a^mPjda7+^BA6bqw}Q!R-x;NnAMVxGbk4zB zF>O(jJ*)tlYrovK8V|@4-Mi$PwP+`P4wj`Qbm%9(ydgAScyeI%y0=;WeC~+Ys9T)r z-<;nI>!4gWv)>)gZf@rS11yztz4-oG{S%yuq3TVOY(Sc4iSG>uVpDe7{!}St)KdnkkJSsH z4`(^%A8^NuT7mi(z=73_vQ$^a%~|Ei_&h>cTg1(bq=LlD{S;R-y-YyMc}v6g!zzTy z_i|a@F1#nyRb}|ZS&ThZU1cQt*7ZKfq`GX^wAo8Z!h`kE(Iat2YBZuwIcP`H+H)hcV5tW?eKJ6UXPjd?zp<` z+*`VO9i5V043=3h0AI1R7)H*Jv-WjUtp+>qV?20Pv#^nhM&O##;L*g@I9D`o**QqP z7egzM&*bNByOP+sNQcQ=d?U&^ThKFJ;sL^ZFYqv-xt$qBiKj_}IZ~ZAW_1MoF?G^D zB<7xiqKng*G#Q>g)bWfOJW@W&PQdyYDyPe>o6&9aG4-QFMHTG<4dG0EvJ$i-x&{&vAeuIl+@ze;+Z}_qG1$>V-~6;_somI zmOdIR%OI{rl%1TQnIrJU z|68kt6ly!g%*5K0eC5l+LH$@w7c=!*+j_Q>5rq#?KWjN9{FNOJ=6SKf3~p6Ullrt8 zjT$3?!qq2pANQzhDA%(MSxY0suHXFP0uXHL)O5AhPgLvAoGc_w3FbNFQzxCRo;#U7 z4#iZ|d{oZE5UbcZni}YqsB-y~frgz&ZWRULG-M6|4wD;257@00l{3VqQ9CXVa5pcN zmk+AeT2>ZnU2b*kg zFjS*)&yrimRNH;0DKUy^B{O9-dNV{&)9}URM1WU*Ct@w|i~p5SsglV)xyR$Sz27BH z@gpL$IMUd*(n4e!XkxaN`m8F+-f5Lf|1x&q^ePYeRdgDJM|3-HYy1a#n9t#3i#YbQ z??1X5WhhTHxC?IL!{#P1)7fO{PTkC>k3|BVx?ad*?04_>Qdf5CF0uDRf&Q%;nHEkh4`@V&pXmua}T+@3FFqT}x< zX%+h&yYm4rC+!}bA+rOUP-Y9=>~BE@EDt6+FW$VehCr5U z1cZfuu%vw2UQm$=AQwmLt`rGq?6~K~X@db?I}L^vi__p@3((kDNDP+QP+r+hN%phm zVybf&t%1Rjsq=(MR@$;^fKJrm6YTS!+|17`&!Ox~k^dA70t7A3!4`=S@}o-|!U(Zs zTjU??jNZXBs`><3AGdePdxJ8&R3z`jn&~)HC}xr9vj{%pKrqyypD4SF{oWtMPbEp6t4JjPyuw5(^Yq=e#Op) z*Gk#F_Naf1g{nv(=sEa!%2KU_+;5&HW}1lfPQ;ravJ)`=O7ZpcfXNb2G1PP+fdUy= zg5v+Ct^(=jKau<0Ev_p5S^>H5YzYZ|1S~30&t1n5VEl-@+XSH?IqF>{yb*+ji*D5W zC$aU-D>DdoZy(WH6k6~6d5cKaH2^UQBeUOlcbXm>|>a>G@gMRUZcnUfzm)quWa_tsi=H>9jIYonPa;~gznwT=l)nC9g__z`$ibf=^amXxNNp3CJA0rYm?1Im;%CdX z#PmVyZ#sSGCy3xmg2UicgzKb?nUPa=3jcIy1H^AWduwwxNYMWQU;Qo>y!wfgGf-Up zZ<4J(L?x9h+xF=G6v2P8B>`PXi~ncv@^|$|038(qL+C?GJN+@2zxn|MX@NWx)cij? zS{M&eMReTH4gZ4z2U!k3Tj)w3{*Ut4D>$<$l5g1Q)Bn!~ zROFC#)D4?_{D0Tc@5J#1qy<4ds@wm&(g|5dii{BBN5!^g|39l6L=2D?ZOL=+e=MB8 z#giTkp+>8eKhJCY6S)0*rTRcxyxi&1{+|t$AQRsljL5P42j=$cssDdc4S@m(ZE=($ zZI&YKY_x4;^uOdH+YKX09yLVXZ^=d&<$HD)5VtB6-XH!idhsI)M{H{xELu9Qm!1R1 zGSz$gfrFp*<-oCe(7#kRKN*T3LWZukF_gpdgZQ$oyFXS`l z=114iRjIju{px**w;1{DlSyQUC7TGqxBqS1iwKB$+APa+xkWu3&_^P3~&iN zNesT4fXB1;TeO0heg{S2fXhd8pL~2fb3T zeBC1bFnMSa?ke?Z6j>y&rJzXUA+ zDFzQP3$Vuq+H+_HhX>0l`aT3s*DnzqjrOaQbYU5%5q93#y!vhDAcl?m+L-cPhxXyB zL|7%n>3mvDDBVG{__5=nyYp{DBhUvQZQ^achQ_r7+4F*V=b&bwHE<6VU`{FwQ>EinUwd!BzYS#i2Fw7zfYYrBxCd+kw75Ssz}x%gu0i)b%-Pz7-M=+wJZ5B+MGpo798kl^q>Na1nvZlD-c& zEeVH|vJ1xux9;XR@1ecr^yfx90CjK-p`sD7+x$NW_cNvI$P(94;Jt{DLG#JJ?|gn zA#Rp5AT0A=6UvWBJH4~_CS=ytPOjg1;Kie1*T$1~Na(B&GI-PV?*!r-ZkWN51Qr49Vc zBG-wt7Eh`p$q9F!tIV66t9GNTunpKt{V#!3`ub?5EV`zK!EzlhEJf^D%%QFBKtUl& z&-~*P$x~8FlnZ3Lx-)v-Fjr zxt)1uERb4)yYm-Vwg6I#P%XEmIefOoloVGH`epe?0!i zA&@o|33*e`7<=aw$D^|hUb;+aG>V^mP(}i_m}}8^dTqq%GWT32@g0}E?6106PVm}nZG|3T^T+|&bu@;NH7B*xzqRZX?arq ziVo@>(O;ia{1>DGPe}O{VkmE(|MR(-hv7qj9E}IJb?+B)(vZSxff0;BIn?ZSUFS}= zw!CV$JtWxv1?F}N{7GfX`blF-;As#WXfry`n#Hf3L;(DtS#;>P$8U?kdXWQV^a9iU zQMV(sc_~ERM?~G+;Z(P+%;?8h#CG8c58$Ev`^ya1t)j)0A*Yvi#9HUfV-!6J3CwL=9f_|VU#vjO8@5A<)^5$wB*aEnuTWBppL z1C{pl4rC)!Q=x5!KXv%GRG-O3XNV&SDO>RZNMjX0aR);7i+?nDwa#9{?7qb!%`@hI z;ED!zATn^BCjQDOtgS9~A_!lHR`^`PZT}ji|8W`0cV(sf{Yg2VleKtW5-z8qS`136 zP=5@$nYXs}Itq`4A)q91ecXrtCTI0+@xF|~A}~?4g{!yedzP9D+sECcTme=<7`6bV zn_UNCvf&Oe=&%V4hYp_OR@MtN(GgE1%n>Pn?i*JkF-|i&@3n!XYMA}dXIAw-E=YD6 z0R*kMKZcj2;KuPl1eMfrnZTF9zo195!xs|ZsMmh>iUp{*sp!XO(DdFoZ}>rHz1EZ{ zN@eMt@FHT;p*;?#pJR71N24cfmhn=$aX{0dwoCGtju$b~~YudCMh z55>_J1u#MhJF_wgEb*qjt+XVVS5|{Fl`LeLBZ8~#YR{%Jm=tm)GhK5Rou@tx5d=@v zDDg^Km+J3?GvGLn7=0}7wKwC4wwTw%o+{xI^pr?wc_dz*y`AWCr}wBPGdxyR=;#h> za2VWBFCb8>B6i5c27ZFJU#^2mOBW40#v3miT=?qY(rk{9N!40h?lx8c+%};dc+!SJAg0g7wB|9sn!SDe{+>>TDf3AFZ|T==7(+ zAzPm&g4JsTZ;n9a)?2!q=qCkp0>EdT)>H)Skw^=P=)WAMCl;NHwpZ z{bg}{ywn7sKwd7-46pw-On;jv5;#)Kbbe1f$Z;)F91iF=O<^ zcDJ4R-Mg=x%^oBcHLV%fHRw~}s*)wf-1&Q~L3$+v=`J3xPiheB;`wi%d2AJZ42~)D zZ?6BMa(!a(trcomy(U*Z!@kRpcl#=A(O0r2#6sr=e7m2&z zh%vzINL-J=A!?ZV${@NHVNZuHt1}RvgZ(1ckxxN!bd=Hf7-ML0$ROm78rA|DWJ&TW zel>VX3~Az;Of&KYP|pNQu^GM*w4}Pno(Kh-!PDRn)vNd2cj?+>y~06rU?pZSB+14z zfx=^FHQjMAH@eS2W(SnepD^iDHGXF*S4>}KVXwCky|Pu|*-;EYS1quey`(=GUT;Xe zs(v|aq`nv#A3&HFAwgZr$!a40bRKFwnTDIN_`^nv-ZsIvVzD!Yz)g2dpKyUA;gso= z>l#YP1@+2XD`e)!rabIUidx{bw3T;D8dpdyQ?aWt+UUsseJxK}myZWYUlC@<$~ZKz z`H+Z!`&d??I>zUL$0afk=BQ}9cVs0MZ~i=z_A4vwN!q(RlGKF>;=_g4yY^9iCp5%!lAt0Mx}7nhygIqy_THHkIC534K|)&HY780jyy zGG$hMECWkIp1{_IF9;6t1-`Z<^)VY#Tnsenw-?tZzh)#>85znaSl&EMW#F>X@L3$B zj6VLHs;xjVe#cHR#wQFx*N_&-2-9T(S&jD_pcMxT5y#jk7OiM(5E~imoye|6lRHyi z%Je5MVsjf271a_@T&53;L4kUOH0vr%C@Ymugue6P&QC7b>@Fc8%{^Sv3Fu&96EZ-U zp99@wQZ_pIV=zE#;;8q$ZE5~d%8bLjGMPBXC^z&30*hyEl&ZC;FjlLCP&3lU_mP{% z?%t_~LXuI)W9Uw`Q;wy(K>Je3KF(T*%yu9Hf%(D|qp!cXd)*CryuD07BMQ_#>4qt!l zJ#=~wM(48B5WLH*>Ehukg&(WcsMUb3L?P77|X{b?#4q=AK)33O$JX zgi>5ZWUvR8#GCN9G~;tV-&0A`I*0wO1kt2K&t1iF5Y0kf1$zJUxhH}mgay`GFYok? z8(?8!r7IUXR0dJkD{k#i7bSBYJsqFGobP5yCQSVFL{tL1!}!M6_-)Z&0YkhE1niBv zSHpN8%hX<)Ro)}eIps~7Y-u%o!VPhAq^5i1Oz>HWGi$YiaWGIGPakIrMojLS8!63C zJIc|iq~oD`s>cDgZA!7wGJpGK9tPCt{kBdrBWnvZ2GsA80&i43Pg;?pJT;(AtCZ=**VV@APsPhmwBWw7paF_+>VnA?cJn(!jR zJzBIgbM^q~Xz8A&6CeIC?eFfk3T*W9Ym1-Ss;DI=KV-ZB)aX|mX@n#8`HSXcc;Tlz zElEt*7$mUGrBn%Wn<Y};s zvasXA(8dyDY>u@s!>c@Elyb za>?!yXu23CmS|#ZFgj+`_!&`0aIrna*;4sgZ3j4+)77t!2YX$#>~Od4 z?YmD56+?k;5#t~_*N~c&yi*zpTJX$Z|IrcdoHLluk))RF^%&tLefz-clGBAxk^wbg zVuVd;tRYA?S^B-But2K;tct=5dPz z;n0f)Hg4=i?0959oOS4E%?Gwcgs>}4-`(P{WXcz6+}DE{91;B)D+?Hx2NA&s&zc7v z58=7wMpk@_Fh^|ZXHo$|dF#_--(Om|o!-@LW{>FLQ5;a*q__(zU$4^;?tW3;#t@8qbN3-M%je5EF(ING@hkfpX-E~kzn8L?+|O75MaPl$zh;=fur1L`+Fq$DR2~x?Xjy6@uv=0V;+AvJNS3##t0AL|Bhhi^ zE)%w!eFox}`yacDjhpIR;;RoF?I^muGaVAYvwenfD%l?|w^pMGyF|UZ4mQZzt)L{m ze|WUAq*Q8vt=3E~pMmf8T70KW=ou`xfCo8NZ5MO~kEL<~NJ}17ZFIz+wXHQ&Pk}nQ z#zf#0pC#gs8-4^+xO7Rw` z`6C)EMs(rw7gwbV{nuSQ+{61u8g=(H7(=w53m3j9m%0SGxL!Rx9$PnLmMiYEbw%{v3(Q_$!x~wQo$&4bTJFO{_i3rtC#eh7qrf$^*#pE!K&I^ zef@WGTlsU}lrP1<_k3K8{RrhATVcG)+rjE@__i1|CJYevp`c?;q0FoQ`TK+44k+6c(&JWLXBH}$(KMb8 z7Af)x)dbIWZo`--U+<0Ae3d&DCw_2w1H+~p>TfEyS~1;4!%as@u?Gv`#e=6Udp^;@ zFg`3{mYvMu%vb$#YHePkYbJ1GPuyALyy(Bo;!i=S`=Ftwi}E#h95?eVAxo9Q_iTN( z&&kywW>H~hp1sB}#y*#u98O6#bGY8~h!V*PC1WB-LUhGSQrC@SsNB5Td0rLo9B$9L zP+=%wU`dP6>gn}eX0Ew6pa@y$2im16xZs_dB{u_jWqSn;sSVhg0;CY6ypN zgVwqR)bNnSo0vUlGt?861R%zJPuo# zZqzlKkS|l50L-+!884pF?Hf#?YUuT5Q`q}!X_THPvN@78dm>Oc4sC-B`cx|69nSN> z&JV)95*wJqR(5NLilI0CnHRv77aV#D zN;kx){KSSJ=X4+6G!gNUCVwT9Udc`kScC6u$+jXvuPyJdlpMag36Zl0jk1$dZ*u_anLd?B;2Y2 zZPfW&rjU!L*FI?2=_+Qsf_|Yv4~QS*>Yw?gFu%RUhXw_PP@5f=2Q$b|I&`=vVn~-* z_^PAyS5k~JNJgPFD(>{p^4~A5pLfClchE|;LlVhs^^42i-5jgc9Pvo%);-S&pf@%y zp-&ckQh)_g5u~m7#$7|vwNzxS?r*b_t@%vkYidJ(J%kxFud+r`yp|NCxgK?Ql9vU9Kls!C;h}b*PbNcpZmE z&x-toYy5;ZM1A5pth@{uMPoPQ$kmo`l<09h7uYUY?!~KMPJrl4#W!;@iTRbge9%ehZUx z0x~w=iavMxwXiFraJ^+D^}Fkss6LJY2UFlNcwv*1n7*(>N1(v56Uo z6khEJpsA@n)^CrkaXm}VqDSf1SY4UiM)*2gj)ZIMX~M1PRd|@m7sU4aVSqSfqht)8&VY_I~C z$HfjROm5(}(n~6O+glyqR*w49c6j}m_Q?X+>2!})aGOHq4PwZU!_=#D0OQ42ttG4% z?am&D=sn{J7x5lzOu3E@z=`(w%Zr-Njm|1HPLxR?T}2VwjnM+NP` zeeY|T$2uXtG#Mq8wl7h#|Gw^YR|h?vqQyWE_4?Z_{=$!&T+ZqSSB4*EFf<6PJdJf< z z=#JIBucu0Qrd9O}tdIuYYqy3ASe*=f+4f-ID^C?eowdD{LcjqrR#s#Rl+1)4C?@44 zHB6Y#SlQ0*brtg=iW$7^-Cl;r=Jnu4HVFMu!vt-F@cla@5Z$tGU@xWL>`^c%iXLt( z#y3@4;LZovrI@W}U;xfQ{}p^#2bT^uEaIL_w`Kt`oo_RIb3)Y>llUM@HWMom+dks@ zCp5#t#iZ@8%jHwTb{4aeu9BBzEU-hgB@8nPa_Q!j9qcE&111u6*&WRqI@G+q(1eBrW zUkRMlJNnGgwrZZP$SLI=U_qt}J{ZYOjnU))w4n5y)HLbG@QBGI{ zHB0t8m4p#FEsprQA~>Jqq~f!#3Py^Gp1E~+ebDoAlyza8g~>V@uZC&c9$(c`Fr6L< zG|VHfs%v1D+gP;b;7nShgab{R!QAg{7^nng8XTvbe2w zL6*=wOC>)l`)Y5xGJiOd6GhA0r@Lp%;kI3%`2_|D+aXGU_e(>0>*t%}gaijfq`P&BlgfH|r zqlJZgGH3E{XHdr>HfVqS8~g9b0&?O0@~7!Fq1TM2Q9g0AFihRok~)uo0!gCW3@7xa zzJxnhw%ujNq|hh8H(dJGpX{tBI_qL*`dwpqz~(4^6H~B#r!!%tg(lHt_tx%#;MfmW zw!HgUp;7Q!`?wM)wI+mJbv!?U;xc5HD9ehBOP1=Bz5hN-;9>M?b|iUM&>lzA^FTNvm#ln7<>LMe zvP4ZPk+7BMa%{=_RJvfH$^b_FI|JKjTLWJc9lWo~9@wO~_+X%xg1+C=Mxy&Yw-;?P_(1dN^360QZ6s=LPjO&I~1( z+GI*SODxulaB=ssOAC$hYDILYN+TRmcnk%T)(I4a5-gWS)k}cMO5g5_1(*S zszpvvWqgBZYb?;7mji0cG>o2ruQ+%LGr5C*l z3oQFlBPE*3lfWQh|7NRnDNuP@LKo}Ofq9G;US$JQR6~)med&~cIOZewQW8tn1AUBG zUNi4A+2*Ef_%WwDehQ%|Im<((RN-rC_W+3iOZi`cwZMxpza8-yadvpEoW~ksS3`R| ze}7n24RS9NEz9ID`9O|COB#l;r;go=zVzR*!B1UmQ-RCwd-l-DXF6!rRPvXF%f4$P zxFnD63pCB_NVB=SmYEi4t)VjWE^T5;+i7Ndn^?fZY=W3w)l6n8(RHIkv}W@vms4UxdFrtUvMm|a z&XiRjzU)$da>0V_XdruXTEolM6bc{qXj^GUoF;w|d3UO(tGfr~c866?j#1c`r|qdr zaOM;D$i*vQ!&C%L`649l>#wK4!I54VYJ)2nS7vtEqk`)$* zjGmBp%}5gm4(;>KEP+=3w{ff(c|WEr#04vQ54Lx$RwxI%}Qf@3c?=wraSwc$J7T8Z|zL<#@yPDk!OldP7~?9nyDh# zn={KHD93;yGu~(=pYiDYNgtF4PvU0AE)kxM=o1)iob0?0m-;|0Z7hE6`Q*LDi5L(D zAU)`v?zJ=3gJ?>iG)``5BWEHB=a9>JS*HfuzyQ%8NvTZ!XIkUsc`qO|f6G6vcZze0b9yg#i{ZG4sgs%Z%M43E3?#TX_T`cv*uQgxoXiNovB)g~$(l)0H3@+jx3jUfvyj|2Yiv7~!2%dS_j; zaFVg^Y4UWPQOGLbX0sW=n!|?~ERs-V#z9vDo4mpnSATHtf}JCr6H3Cx zE}gxTCGY*m=SkR-%RoHs-@RFMw>mt4r;5{Rfa-9yUf^P*RhI zaoi@K#T_qw7PljzecFDV-{&rW(FJz&9fHjfPcq6eL&oiU$EF$ClCKmbiI}@q-DqKs zuxPHpgM+ifwws$XCWfw#srXuP{F1KQ4`vwzx#$zl=X0m3{Z@tOyN_UFArgK~Y6RCC`|=U@-8>tLpvn6js`hFv_z ziI&qlOkViTA1=58#=p&S^RTR%T>1)a&pZY>$4SzE6;R%y%(0ZSQp=D*7#C=gfCFBi!x15=7%hj)B1j85UojPrT7cTCh5JmGTWFD%kPuT zD;+;z+U77qhXwb|mbswf2c)`CP2@0zAbYIR>AXqj=jHHoG;l;QGZbAl8_Z9m=R@*z z@I=vSC|&n)d7WE|4``wAny5ZdC(tm-oH=Qg&kJQ%E}xC(GlR=J?tKX?{hkD|4TIg7 z0DJYSs4JMwB75pjv^mm)F->4g?^F*Y}KZhS`g`1TX+JU;w%6R)-({txqa3(+6YHE){*jqsS~H)@@U>>PQYI0VZ0(VhgA zHqrSJ#twkYIkz8cn&jm&T)Y7Gw!|?6`AUpUp6Gzko_H3=g4f(^WS&iMbqp;Yw1-v9 zW8>*^7WVucSlEl-2gkpVK-3_?LjuFvOln6ad3GQ8hHd1qGke%acJZr1=hE9_wwp&} zlxfC8f)RS{UZPs+K@(7>cNph*g!DcX=s~5Uf5m_fH&F}`M0j06LyP$fTNs1;=uOw_ z^K0=#%)Ws58%X{GJ|Qttm?dV6AjplanKSu8cE0vAYrdjOA9nL%nuaAHb?~Y9nLoQD zQGYnW)2-??4d)3$9^)NIu-onvJoY#Js8Pp5=VB?>RM&@g^4gO7`ip%llF5U&c>Y^R zau-7;6%d-|Fn_2Tk7eWGF!7eof7Ane!htD|ZaU$b)5T`!MQY&5H2YTm zWXc(S(YILLa2mph*`7unNFWgzER{G};Yuut$kOG{Z@fCeYRUQZY7!)Z#a<2l(nLmg z@+=_Rf;W~nMce@EI@p8RjoEN>QsyPlpSxg59~(t21$$#p@Zke?pr>m%Wvb8|LHbR@ zvt}E%E9B$uK%voo%^z=hUpl5sV%QzumFX?@IV}AsY)kHj?nm_`^=ukS!QyHntWIXi zz_}!-3m+dQsLnn*cJIlNdXf zL%xVVsbAl4e>@2@`M4kr_IPwRMTYIQTorW!TYq)iI}dB7BJ1AK_x!hkUA-Y}O{=ZO zRD;L?`f|m55CGjshSm;Ig%U>>#LG5zDA&R7tp0)Od|GLVo`Y9&qu7Ig zVGBP)SfQWJB5ybnJ*l>u!#;(T)TzJ0{#X@r(m)Ivl)2AaWz84WXk5b)_ufA%j8BGe zW&5hLm&Y9ioiII)P4}Y8XK3l{Rfv1Hy+hWtoS+Awoc%(=3VQ(+ZtYmPWvyLFQ)-kd3>5pb$n~xdd}YIU*o!abjjhy!X|P_+%}MK)MUZ4rS^`4T{-BR*fniwb1c}OY2pJEo7V1waD{Un(xpzG zvpDrj^v&1X@74Omnc2yfSD|8Gk~rV2(WxBsk&*I9W2Vs6PYqdYx`b!Vp(Uuu>@ zIAV>6%IGm1jEh^^8**_xpm{EXNI71`Y``_urHsUNyhcW0t*(0K0iMF5a7k72 zbd@;(=xqi%J$Efcz!ozxirL&<97 z)hLE4z6?%!+)%cR_ozK!o7N zX@9yJU? zYLNb62VRxyXbOF_o$Jn}I=-?iH8$W;`NDDL$~K;st-IbqcHA;7sG1?&HNv~VYO2Ay?M}+? zJF7t@LMJDB!g)c-v-JMgZ)K=VsvhN8)qXLiAjqP8F=Tj@j;7gqzjgcFY1-Qx$Uz)W zQ~6>h3jP9J_>al8VHS+w=+b3h96#n$%vJ;UTDDdGy1?$2U;30%h$41c?98w0;WIYgB5542tXdQ3^6uH7u`(2Lb}(O^6#|OHw?Q zv=0vN^5bPxW6nn7ks2G#KXb7v0}1R-OsF;fj`aSD25xMB7BrT`XV88H2mdkgHvvDZ zvH|Hv?Ej362+E6+=y?Mk(ZBx%xu%qc+!&3Wbb{y?ng*#|$UtI@$22_0z29YyzebjA z33;Bv)y>C)e@3;|`VQhsyo|DQ(*Entr_iq<_kc!>Wl{RaPI&4=Zs4`i9#i_?d20j} z>O}p|LDcssxc)1jfjolW@26IFGl*0Cs}lj35OD_(e%Sjx1AkrIyZ_|H zxf@XNzWpsBAHtsnO+uTg?BW0Ja1=bG!%@gT?Ej@Bo^O73_?u6p@xL8qV4K&^IQwbB zR6^&Ur9rd}ky@&4FF>9ApLv5k;zup+#4S>G6+E;7zfEL^k0G8&ps;) zK-qI5{WCO(o__hMr+R4Fi2v1JA}BG4fa0M4&9osRdj;vjTY%uge+XN@|DKk?0FfhT zH%)bIp}(cVITU>x?(hYsb0_mSBqb|tJn_$OUs}}=a7YP=DzrIYBIqQDPY?0{AqQEDI;|^S4^uS3(7=R-wZqNJ=t@vvA7i$fnDF34$<=DM?Rm zP4o;uL3F}PWi9XZ*mIFCc;!&sp23b3;Dd$D5MQEj=|;g5Taz(ihW?2l3w1K_>m)9^ z(9WW~3XrXhbXAgL2BSKop(B4>!**oVdsG%?j{%w5yN0Zw7h22;IY1NJw!kZ80)Ewb(0w+7a(` z@0hLtak)ZSnW|(>+biGeEgMZ_nj5M=|6qhwY^wA8Vzrx@e=UJNktE>~-|9xtfA?E* zk4`?(sOi+5b?*CED$qI^kLfz#o*gtA1?0R?a^Yo8?@^`qI+bu&Y43S&S}RR!-{dut zjazuUS*8fhp32M3baylv*IcRe`yojeO&cBLWn}FSXy3%8sKe8j*p7r@kN`cu(Ynae zu|1z+Jmy38x~4!q0BzaPNM{^6rX3k=ptA&Lu5|E1l{3M&u)lIP8`!6A29$2L2rWoycsm#ajCyC|b&i2pH(zZ_F%o^^zbnsE90 zwJM(j&cFn|smAi_Ny4+poS^j)AJ$NLgXo!czuZ{;Y?gy@3Tqjno~ibb+$@KMoTDfbCbAmEyXBq5t0ODia^#KN-*#U@e&yM28cRn>-{ z-ryw*d2@HbDh`Y9(rLHF5`YRRp^css;Y^Dqm=?tdYc`9|Y-pob;nI}8q+x{AYc&R; zAQIML44WJwsk?l(AYZE%p=Xr7;$aM$Y4*7N<_dkxQxR#IKN)PGy{7pAIjjX=?NEFy zQwFi)iq7cpiX8!WGOP)5%cP=)(eo?lxo?f|7B5vqPA0^0+>&!=6V>W+r%T_A+-@6S zx9stS$1HswcoXz=CGc8-Dt$+F~Okb1Ittx4f5^ z$rD*|Yvo`u;-0HVbd8H>uck+yS-8ERU$(q00E&`AAi|{!=j1ibm6wm7$V5am`3xJ& zHI_s()Jy}ibL+6TSP?*OOCx4pq1X2MUR%0lNZ`S|yL@UIJ#_7Upk8vp)ejJ*EW5gX zLcl|>wvtD}E`eks9F^%lJM^R=r6^)!{D3gCWT)$#=08Vz{hVcsOM3;C<1kW! zpdq+L7K>!Oy?Pc8Xy{srqrRTycYfhHDr<0sp6aEuGrHMSnj2~K_Q`rcI$qn$J ze-*#)e6W{+E>4Tx3yltj2E-l#Ctj^V-bLW{o*#2+g#EEigk zbTP<&RnPj>V{h4>k&I#}&uo2ab=O_SRH&=FOXud%7;%&$AfbE{N6G8pgWz&pj|?s0 zr>FAO7hIu}3?5HJ=bj_mm1We<&I18Q*Ao-DW-u$#&+ZNvJqywGIa}S|7~G>(;cHe3Cv32SPU)dG{EJVMCd?5h}S)Mhuk5- zmS-`aoZSx;h^^W=HRP5`qI+ksdBsAN6tQ%RFAGzgxeBCKJecZYGoyCW!~tQ zt06$j4Nc`GsFr9E`$fR@!%GiQ3`Gd+_7{P;q-^>N`2~wIk%L zG|Rsk)Cu%HC;x`o-ZXwvq{%=(? zDM+{!+xByi@fSYNCr@nK zd170W`DebF@A6!ni?h$(Rkc^GRm(Nb*QNA^(noci{Zeq{O_VXrd-@JW7~1hn=vq&j zl*Q=#Uc9U7e~|}wqzH#0fM$1YhMrD8<8`lpX1C|UrZuyD?k}dLeK6dQ_*MP4RX6P( zqAJ;DqKqm%`}iq?*ND`OE&O}A3;bBm{{6ETCofQ}SfqR&Ksn5-e>x$zVuw@ayT;#Z zTwNA7A@h_YpF@uSq04Ob5v33fDVhZ)NO55x?2m9hGW!m8DG%>8@zyi8?iBtUY2wu_*cfw~yw;TPiz)Y;ld zuz=ZE*q^^sfh|{Kll~t#=C}XmbvG%ZhuD+~^jdau2%MI8Gw2KkvEe(uu(59uouBO< zj!%3h0J*sd-`)lD%Nuj}u_1alh`yjJt+2DbfZJC(an{2#Sg}us*peLlq{#$EoM)}8 z-A+4c(1%{)WquLoLlB(#(pCvafO!dQ^zY?{4%>jS6>uOV)?MQ37Q=eIh*S%#3Rk+V|P}n8FAFv=4kn}o4cob&&^1G<8D4Dy)R!7@K#D^c3p5l8o??qm$D5q1YIYUX@!wjU0ECC&2jVtG>VSWXG=>ar zv_8-0ffxTn7ZKU51^12kkMGIkKd&cTVnRmH;D0df5lO|K#R;q3*;myHcX!hkPgepH zfoe>@i&_d3tnj3c>j(cbWF1VH-JR^6Z+aO8JN>g>MX!`y>3|6DYKbi7VPnMue))>o zU(m>1tWC~YQ-Q@qq&Rsr+x90P$WOSv za`s8sa9UpDs?~C1+NX2A;%XtACg)G6t7Dy1YUDVbkvdH zL4Mqhn5mNUp$^hA+cE>kpLj`?YxC^3*EUztv(c z_h#D#bpaLiKip4CTNTQ*G0o>AO708n%oUyC`Wl|#%jU+wCe)w+u4W(1XJ*v`3m7eW z{H>97cz)d8s{A4?BF7WzqDqi-h0YGmu}Ce7)uVIyT`RJZmh^JlFdbKbX|Ple z+ycQFX82+1&q;-B$kUF`QIJ-6ib5SC_5A(E)kq zp=%A#C^N*1>T72CLXX%w3<7(ySs?6O_kXvheo7Ejx#iv;iU-J~ z=9M(Uvs~MWhd`$~7HW<+{OnL*k^3Os_vZz-W2SvG2$xjbuAxhE4avvOmLu*v@Bllf zVi)IPyEAqo+%jaDs+bR-1ZMSWFoxuP_4pgDlo@>ts2!mTKW>ELB+aq?N^?wnvkC(` z@K}DQWffu1BpE&13i4KTN$1h=gAd`0_?viYZ(1q+cp#SeecbKcR()z6Hquyc;0w-) zJ&sz{>`!i^SFL#`HP%*@DKj&0!6kXPefYWe7}F`HtgB4uKhwX@A)!9Su|PdJU3fB5 z`zSf4P=;!~4ix#gag2LS%6t0#nOcgiQA1YKVEKkd=xr`>UJhbX5j&p_{SWuGScoVp zsg|q51niJ5ayaqeMK_vU@5pnJA^Wm0LH(9Zd++&&Ov59#E5tU1loxzKmV&4U1WBV{16cP3kQU_70@@V@HsfS{0epkB{yTYRT)@ZWe^ z&=-1{D8xw=<+d(E1vj$i7bC!~$JdRII+sKEgDbag2vW!7*;Sy1S4BUIAF3H=ab$N= zd%ChhskVj$MlJK%&fPN#`TnEL=QiufQ1EK9ylibCplV@hrxnz8dWFB;K+TTI*@H_aDcH@(C3kV#2?@?fha&pKM z^gS=i3Kcvi_HO^j#89)}I2e0AW4IT1j>BsJ7^0)BR3`dF^+V9{`DYY3-O;)Aa^Y@; zgC@P(-hIL47+H#}A3ygm<8jNu+lz0Z=9b!@uM>qoH!V%6$&jxiHLSOXycIb8OtD6p ziiq&?ii%b&ex;~VrqYkRls#y@=@MfGtK^7QIck@j&9s1?Dc^>Vg=QS*_3t_JbN53E zHxCnfLH8QLes5MmcZ2)jA`Y&VU6v{nVftcgAkx{ST!EP4%>f2r_EljV+u2tF)*3#N zgey9(uu%+Mj#`5}1_?att@xKEb1mTFZMyi?S563AcJO}AK9DOzA(?36RBAx!4uyK9ec@`szlT|oPXrt?Ktzj=_-Gsp35AjbD7(@Aj`Mfd7{ z9zD`3_+KdmSNigBxd>ncvSO7hmm-)nlD$21zY0GPe4h*OfOTV32Ktp6g(^y#q^sDs>A~yhVhPZ33F+&DzGI-C>XPG84sy1+gR+21HyApDvAQAbv6-+Od3xMh^{{sJT!yATTj!*k z0G3&A5t4a(oiZoU-x&uAsWara_bLz9@P|UAgBss$84o=o)%g0#b5`a#b zjn}lR?sX$q6a1X>1K{ZzCPnAB3G;%0@9H?h|A&(K3jHGx5Jco3kCS6*OC0}qR%22h z!8y@l<2L$e<@VN0D^KkM-P@aq45nH@tr%h%>~wopg6PGtG3zPlX33f1D9`Fo7&uQ5k1gT0OPZY=!306nWR zr@hwr17^nx~;n<@TWX+Q9jAtKIXe=$@(3M2#IdS>JRD z=f@afsc^`Dq)NCj;)p-!KjOhjsZ~m;9=yL?_eQ&@Y6;0iFx|0`Y4gL*F7;R8t;VpV zcd~S;vCRYjtVYZJ!s?1y)fO#Rs7JE1eQ$U#is0_{Tqx3}|5YGBxhKS$>Plz0KX9;` zTqA>C`mo8pH(1{{=`M36p8k+B1er51;l*{_KH2s)5HUWC3*G6AwnJl}jLjHHl#FUR zTp75=UxF!JtM#|S(xd@vYuN4p>sREmiD0hkp_IvJv&vSwV>cQJuU6a=8bVC%@JHoq z{X`{^9|Gp&Kujaxgq#ceN#8uOLLKWo-`6J;ec?-gtJs{Hy-Wz<$mmH=;UMjp(~IF_ zV1TZAEb9V-FeA~)lkrR+cbG=G(3u@f?pkxk=6u}!;aq0#S4oh-#!Q`WkMi?Fp6gf8 zZ~lDa_^X)6k@j{^L%4JH>-||SHWM7qcpfbx%Vm3tM2IdCnsx7-}oAu z(fYPVW?Q#+XG5&((L7QW0maU(H{#l>fRYJIY(!kqiTU)fj*fJJmfVAZ^8c#t(Mjb) zvKFsaL$vePZ#6}?b99^Lm+9w*?46!L#b`OhlAX}CVN3R>4FslnSxcsx(mzrrexb>) z?y@BmV-8TA>O!43+i^Bn5X34a8$BHQ9xmY@`=RG$^66Wg_+Ct|BqoDtyW`}C3f!8! z^x-9)@x|>(8%y39McR%k-vV}m$V%&I_JmBtjp*^(Lma5te8mf~9!{)vrlw;-^YRki zpK^!M;h?ZPQU*AIxK?gDh5Ds1?ki14XSxJW1Zxu=2MmF z`Rrs{+7haXf;AnC>aq5T3&&=gNML`0d3VDfnC_;pZDki@)bY z&k<8|TB1JW)_UG1jMkDbagDBRf7^3EAEBYo%9a+}i=-*s=rF)8%x2n3lpa^^Qq=m( zD({Lb-Oa!i|I+kfA96W$BzxM$OmSq{H84~_%QZ!?|9%4VD`Lr1KR4z_TNEaS++QBO zkk;_U-d?FvV%@>{^p1ZRW5Gr4*<9)$jWxtOY}RjmeCZ{K+=`9X8|vPmhp8?1VBn6O(6(aI z__fSZ%t6^{N$X#@es~ukTvjj5l-p9~T!p2@VZI*zH3@yKk?f64jo!Op54Oqet$nHP zk4JqC!QS)EOyh?7w*(u$X{6sYamT$DG6-Otw~L z=Z?c0-#?+J*r97gjoCod}F@l=P*wwHsAieX=jz;q*TApC;1+A~tRNhndp8R5(>3CX4I>^ie zdyz62xaTpj)FQ#K+3&NdNxpQyNJiuBWk^4mqCMOxWOIhmaL^xouo-i2>aRyQ6`^r+ zv#a@}+dj7R9*$Q17xp@U?e}UoWCn*?nt&Vf4BhxbfiFx_t*z6=hm&P&y7)Cg5AZU% z!i2)!>d~DXFDg%Jq9w^mn(z>atgF6gbhep0*CW(?uom_Szc492e~rX4=E%#kpw))! zE6R2s>piNMeeFoq=JEmhOy-f^@aFXWs@mi6r2*2-1%;L#l?zFzhx%{ZblSj|Iwzt? zbELXkI^AU|8Nzq#R_=PPAjQGwS@HP87O?5RedsE&Bfsd~eZ9mw#MIc-C^WT|!Zn3F zO!vyhjGkwbOp3KyR!+q0=k97&UgmM>OXVkEG^1~gDq@*yC z!fHC!M~CzqXVk8AX<;afzYfEp2cxM%`L}emL+lMJ2HZMb zB+oIkZ)#dN&B@=b8`&cFj$n|)=^sIpOh*daQ+`sje-4sMECi~l;kGfWu+|S3lb_IQ zW_ztsow~OFU-@PIibT7cGfD5(#8{F;wZn=m=@IWHYf^kCT!a2Qr_^d0i~w&u0*&Es zEY?i+kTUAi&_)?7*6e5W_Xbip5Wb!d!Z#Jxi>)MahsRNB*WhD)?OlS7;CPG*Qk8XaT`wKYoXz?M&pis?`w|#rNfgR;(_}I zee9O&&muj~aXnSV?gHa$&o%;%7M4Fg`>k%$OSq2lC#;nLlxdz`FolR)3 z9@JJr91|SoX8^zqgzt9iS|+;(*W=S+@@wv|Pvw51qA`W6KMjBY303=zJj>R_%OCkCazDMt4fe=or_K@o zI(^XA0Uh$8Dl)Vs7rWkmjxMc9E6imFS>{X?%1any>j5;er$>Ho+Yv=N6dT;cIEeNu z9lf^4EMVtvM0=VkRo=>2KHf`|Mq61pKVS5;Gzk`m8@US{Fcr7RAQk#yLu&4dcCD zkz%sQ$3a-k;#TJv0eV+4Io=va6U+*=+rM?Gi?mS<@~^5_26qlm?pk*R2;(&-Cmi>Egzw%L0lp zzy#XYlkwTo#DbhUqb&?$HmKR&guU;COqpv83G-)-DjPlU1l@YuRdWO$7sIi|Cn~s2 zM7MY5Z&zKhPiFspTlq9q6Vh0#@38MS{udx`xXN0k-6P!c2WLv5ETFOR8}Tie=apo6 za#c3wDbQSdK0EB7$62euVB}3hnNbEY2S0tx!NaA4qcSEE8UA(dIQP_VQ4%wMt*wn` zbQo8MEj*nFpH`bS;SPUYa*`ru8ro1*kuFBwB6x`aY4(xJn0Z=${+e(B4ydzAYcXlp z81h%@+$J_*)G8Bew>9(ZAJ1=%xvN+YLLB6ws1|t-a5J}B63%+^g*WB7_v1>ktn9T| z4F;_`R~HV)-{23jrmyK;=Gbg5_vn8|LK~@onDksOhF80$Z($zEVQ^L_%pM0Omh#&r zsI$q}F)Z#kmJz=)XTsjvl|WHkWpM`}He6+JS1|10P?^=+%nx~an=&jYSixn_#qlX< z{tnwatRUE~s~Xu)Ft6Re#&(YfvbwHfVx`g9LjbGlOU*_BrwJ5Qqn(aA9J zyPJgrvdH~4IrbJ)Uh#@8-_A81%6lDh%bv)H5oJ-2{2xSwMSuHh7V|PJ?cza!_^#oDuM6TE$*FCwOEPHyx6@v`e0Stp23q9VM`-*>$l zAqCVT_9i#FUSh37GyCc3E8qa^Un6vdw^3E<*kQ&dsqa29xcD6(hL!kh#Poysc5H@$% z{jo}&7JTf*snMq+8@rQj_fs5=_y6T+&e9V5PVe_=1gYW<7a){Fe1Q||iuy-V;7_-R z@pCs|%nk};FqoibA$bT+2-Sgs5WNMhr*X$7AwTh z-sCPr#UL97h+c19#vKWzqLTH2LR04lt=ShR0;p?goHOz>iJ`hrH1K)Te5x6`?LVH z=!)OQwRXoD=)WC=2jg?|{N5!^c($hi3OY0E`bBEVMYGm!58BGdy|+@xPW6^W9zsl+d5mW7rwb?-{xu+qL=l4f2RXe>uR!NV=U>N1> zP!0ouO@yC&B#EokoZACM)=}dpUZKZ2F)g&h;d3v@1m=12b7cCRSDy2%54wNP<*AYq zCzBH@v(|A_bImgyBC z;nTaS7jf83%MjwaCUN^3S?G+=n8+~F=k*#4T$wB~nm4R-Cv>%8@=v!C&;zFDf{eZt) z`xIlWDFNd9h$Dq;CJZ)Dij0aJzPgwWI*l!7m(?FL+AxW`jj^Kqbrw%CvfvROk{8YL zx~;*GcU^rwvE7fZ=$@Os7S$~oc>8P>(fM>ImV4bu(Jm)Q;2oCXYxG*LE$8z-C*nxU z7?z$Q>x?{dhqwX_t^H5!+2U7i%4TPC!M^zN(+an*PGUaj~x`(WtiLYPZH}%(}s=#au0J1AF{5FgHRxg-dvs zMZjk!vS6_x~{d^Cv8(ahm5?o23>v>fa*`lr!n zwCh{}1t}x%dfKZVC9<2+!TCK+RJkm}*wVNANPMC6rK@F+G8HG|jbM#fo}(ci3!VGP z73%efZj4satUezjid?bL$RK>-6cikcF3(o$&p?r3MTi^wCcuYPp^0eg4FO}Ye6kly zlPuYtSEqrMNlpo$2?gk`ekskI&%-O5Z)>O zA1(kxFU(i^_g5omhXWjDT_2si@1{)xp!3sPpa>CtYavGd*p+KEcLJ-?jlzOUpNK7F zy2Pa4Sk7|jT9~WL4>8=tYj34G#umyrgoG+%qEnT{Y6l0~)lxiJ@zr@ucX*D#9mz53 z^W?ys&GC0N_2B~D%NZiuH9}13LrfZ3CZapi_fyt-_$=>nt@JqJhte-hW1;+Tl zX6hJ@Sou23S3GRF45>!Lm=4l{OU!~?yHY8WcyFksOumP+W(18MQ04D>M6k?c+4Pm- z+#S*`?(tQob9+m+G~Gw3gu!jJ+tO6r?XIjFL!aMkHQ1UfqFXU7%`EC&@8qV{AFDh~ zkf!TfgcO)8=EGRDhx}1G930gY?*a=KL7o3A?+_x53hrj2&dzjjm^e2kt(DaDnPS); z((Q(;s?HGpM_th7ZOmYHzGdKO+@-xt?h8Z1>b;D9r((S~nRhA;1rg@R}8FB_;$ zxNTvFba|FzIMW1tlfe{Bq(cCbg|fP&AjgBiX#Vj037rzRM~a4T;$x19_jdgX_ZsWm zndKFJaATr88mnj%_eWz8Ey+!QTGncFfLBZOE#78$7Xmq{q^`qVpMq_W7&1k;xIsn` zEq9bS{o@+?EF8mqTN7wUc?7VvmCN&xcxF&kV)#}+UE<}wwX2Lbt5Wk1rH+V`noqB+Y?3A_dwH3Y7H#2W}ES5LZ;?Txh;dyWl}xq(r?*sjAA7iXKehc%YiiE=pM>E zabE7}?LoI!!URG|32-NPg4~`0<<$D9tG`$#Lj;(!dKbW{Jewo+9xqA=B?wR}k{&Qn z4h8E~G*67yIT)bUg8L?pJau}{cUb{}z4WMo^m+voe@AgiAR zMrqkxZwx|5>`G^EVYw1()IBZC-qsNqcv_f2k}MjUFi~G0M)f4hG6W;v+iB-j)qnw# z+S^VOx>9R0pQg6B2VLg9=aD$8-{4e7`aX%uZ;|F$<4jL>7BfFE+*Ut2WBFwxYej3d zm5J2CY*xrhs*qX#&VKzAQQR2%joz0#$h9z z=O}D^5^VoScy(LD0Ab#~9LM=FMK_hmI+bX`UteG&2|Aek+;MQH_S<~T@o)mJ6OGS< zTRV9mqZ9_$0u5-46W_9dxpLJ17VdtDSy|$ zCp;FYDQH!Xn5ps4=`KngA)Z~(!Y{%E*3g?zASf_=d}^M#p%?KiHmE<*<_zgvBSc** zl2jK@6*e#8JB`PQs50zcTH*Ee=a4DYIJ%m4+*0s>dU{Tj{zUhJQVM8jUa12t5Z3X; zbtBcOF$+4bf-fV`j(XB?61|72oLzP#0N4j4(r3wrBwB{lfl8Ua1=J|g(fkoEao+d`2L15;KyMu z#;kZ@*+J&jXW9Ptxa~`h&A^!rpS=`ao?kGO1=h}Es!95W6OAI=ZD{!`ldE={~Tpc zS4-%Joj6T0(3DUKN+vKHeO8FJ%X#frV1Rq-ht*=8u2W?yJ&ZBs!V4~_fk2)sE|^iPRX z^ps|s?Iu}Uo3`ky8REn;<&PXk3?&^Xzi4MPB6*0+MC>&)z=X$msWhU z&7EPnm-<4xcjz7mm zXwh^sF>yM9=-fJTfQefJx-6wV*{X%`-Jm2;8m+e7Nmaf;L44E*AZ@7n3-AglGb}s( zG9W?)sPi)U_4j~;a%J8x?PgZvhc1Bi^@J5DpY-p#(VuxT*&Djp1~>eFl7%=f7;*jApd!jHXL2 zI-7pdoQ+6%%5)8mR!>BE<(=O(j-aBFkl%e8)#&n$eJSO)abSI|4Zi>EYbRL^G~SRT zT%&bmm$~OO)VcuTt*;_~`i19I0G&AFbe*h#i(0+CBS~v%BE6zwbsP~!co>Y=RQ0(T zG`|n(IkivPcCUj}LSNGsZQ;pT0}Z>(&7~BA7hK@U8NQ`lhTOT3MdEz%Y3`1{zpssg zR*RV1;7%=_u9#!eDZ~=Yrt@`Q?N)ONZ@ENK`L~~(;ELC}ZSnZaS`$MGcXxdN35X4+ z#hV%oa84uU*-urlHwohVXJR+}erjqOj~5KXJ*&QbqvxT0MEu9BD^jm>ZB65$l%IDcsHb6e{V!_;@+Hv5y-)WNAu}P@vWxJT>!JvqS?M87zi2^?V-&R*on5=h4+29FOHY5sOFzj z`@LiZDMzAu4*mcK7nt_ZLU{kaB0W|cugFfLm2K8o*j$bbqT`hUX;P51s?HQ|m+SaC zz!dZS1(|EBl(tP?O}2+w8iP%ySpQ>WcyqYN6?4rEkY*ten|de}ldH7WXw#l<5P$)F zOFbi0z?HKOsArjUuy-2Xo>zYEK?@%mO~#sGX?7S`Sc60@jtVn}p>8H$k|a;l(9}1( zPBU=(H^*F_7#AiIM#hYCL``dB<6!Ulqe~8X$lQDARU-@!`(t1c+nA^m;`DHz&bhyj z^4BmVI}wb&hJN)ovr;9hsEAbG@D^9Jjm%lY7#VUHdI~2GPqAcNrDOsMG7VsE@bVsa zeKyBP6o%@^&DmvmZJK#%8upT&IGz((3lq~i5tDS$(Xe2MvYD6VrO)ggOomh8{{Zy= z6Or_!c6aFVGPlU5%n}m>9f$-hE zDUMXVN$fcEDANG-)6^?o>Co{}W|K$*cm$CC{0Chje^$Oc_8DzU`8Jj*~ zVdXW4Zm>Ob<)WE$CbUkF+PKgqqQGW&{4$+D{3%jRpL)>3Fd=sQ!Ic40_AsTzvUE3b%o1(Wb}V>0Jmb^Q**YA$gVXZ0FxK6-k1RomV!eYy;bem=yRB5@YsDu44wT7ThPcmePEP+_!2)1NHDS_VAyw{TFI_3v1G0v+# z%RxXBa-xxi`cOK>Mkv##m;(7Ld{G@cO@r7}sMb4lns4y5^!(4EqZ_S(;QKX30{=N& zO`|o!Hn_%!Z_a9oQe?=A@wBR;m6rk_k_7jHf_m7gfz{RB6ziJ@Jm?kK=#4$5BUF8G zO?XBh_$D%?yVpz;l`9Y?W}bXoe-@!M9<11EKjTL4glTey%ds>Z*r8=K#r;`&e1bg- zl5nMaO-2H=lqZCJ`5*(Y5oHfo5)q<4U06-{;9)zMk8vL_w8z8gW`CaPXKixCOr_fK!(!7swe2+b+^$5Ir= z|E9FyNZ&krf^6--f^@{HOHcV<{(9>_ZgdgX2ER7ypV$D?nh?h#o>h?g0T0;2ha!s9 zIXj9ExdcBmjs)Pzng%F8LKlamh>7Kl3cVP}c<8#gSYwd;5oGS}i?w5-XxM)+jo72f zNkY)!BTmj{5(I7oUE%%4>IZz!xZ^)GK*i;?u;5e!Uqu6yFP-ti?Ec@+g4g{ALL_OM zwJ`LmZxjj?{6-$Jw^@~JF;jswc@lJaohCbAT%So)8iMj${6@Li#!|bk)Suj$a-#5X zV%QLFY7hF03b_ohKo};sbOBqKn#+)dPG8BYCJb(DG6II`qUR(ZWvo_Fvpp0~V}9Xf znzZKaROSw@AKT?I5eYO5&Q+^RH%7y~0&*sz7?Ei77}sS_FTv;_8Y|P=a|aI9Yi!AX z)-oGx5#WZR;j3-!z8Hk43@r6y)-s{;W{T(gUEA}4{XD%!+fVUH%vBH4+j{zEhj>ZX zwR-kG*(QEMc6*Mn7~l`{8iByr?;T{|$+VuK)GqCQ(Y*Cyiv9R^fM91!^$i}+ho6Jh zUe5n&enNvg|KHuut+Zgc5>rmkLz2)$m32fxoNlPoy{_!ExmtX#3!>vs76jW&z;USu zRxRr66j!G{>-*s&)?y<+L>4WQkNZ$bvQ;?UQZh`om7y8=!SXg4Egu{oRBLga8iHfT zS_%4W{Qdrm`=T$8fzMHtD$zH7j8SHa)~RufGQ`@G`L2=OXo7vc)sQ;A=q zVF%)3(%?vP02iMEAhf~tjCcE}TK;*tdGy>+>>;!BLZd!0beOx|SzmV22*1&Mop&4k za$wX|VAr;obpOZ(p;mpoMokqG4kWCrBW!PhUa9$;a$T7&s+&4zRx5P1?(O$}gHFSP zVC;7fgAX-1g|G@qWc1-#JX=s%1&f0-LBu-0iCk>>5G#KF>@vE2z0BcOB966YYd|7K z^qQ53pjvRYLBk%$MH%`j}^$ACX%$8*`|+8xdj zY6+8xVQ0Lyfus*POc7$D+J8{`FXKL|bX~&-d>%nNJU(z#-(wGAq=nyFYNJbw(@Hs} z>%C4SX*VYI%m38D_O``sE9ESZm~%GYdF~#cMHL^TD>R_aFh(?|M@6MvUe z(mWO^Jt`hfoQbQc^Y@JBRP%7TZ)J=@MZ4#9O0~Dz!LSHl{AMb`Bjd|fkPxtUSYS=z zqaGU&Eu<>gI`}f=nS#71SWEjaBXvre-VJJBAbW4+7Y1&Tbc30Co|b23L374@qX`&n zy9UzpDf;{J%t?9p!G(2lH7 zFH;uB+^o3+FD3R+oSK>#QuFtTA~@wUj;!V6$X!b!3fc#R4aBS>{lb6FWs1>a%+A$F;y8H?<2D|&7(h{bPCx^u2jKwoUQWn zZJ!MOU}I!wTI(Z8cIoRvN1AKbN8j5v7}x1`nlIm(QXhNxN-KSX+qD8KTj&P~Xb1B? zwbO@cymCDqAC4MvX<-QB^K_m46jj70YkEFgSGc!(f(9I7Vxxulx(ZEjqzMW^j*j6} z)7GpL%ECI@;6U8aO>Uk2pTxdI606&dm$db4-^0)V`m_;or;{@XdfoP5tMo|-=U~WUN`YK)^GgU&31dm9uq5lBrI3|F#=Pr?H?&LACdG|NKgb-wfykAl^2ZqJx}!8 zQ>j8YC?VX*=~CdNwtd=AMlX<#a&ZqAF>N#}3?&L@G3Cc}^Y2La$$rZbZWvwU&gwRr zt8apWpm=um8+&BW@Micu@(T7qUkI5)y&}@*F^V+U%E2O6TzvK2y<;Om@0YIsZQ;7Y zzyy9VX%tH)MxCBE!gsw76)A=cU!x!av&I$6 zwvul!n1MENB4xO$WUJjXkj{cg$zjn*A6~|Nhn+YwNnBx#m<{Ejt432aXV=!@Mwd!= zb|<});=YlF^zO{#`;}V$;G}1nG%D}Q;be=eJ>3%O>U?=eGVI8c@cS`{#7eb6UN?4W zVSPU$0ho%|_Bs$H1utcE;X>x;gwlJvF}CJKnoV;E=vNk79UPoYcaFF&nKTeQ!X3S; z%{ylRQ0*8o{+K^Nol?|ftxm;cI(kMg!U4lIo+#Y@2y)zkyd0jgAmIKYXJS%#;r$SU zQGV&cmCa=T5R;}rlm7pU_J7}q|0lbsqbOKsmAxi1fK?pIVE!p4y_+UFW>}MIlSSse zB-&ogQG`&&6+jiY3k;T?TqvwkcS>7fhT6oXbylUfyoP7asxYV99{9Kg>pnP>^*Mc&vy)(@fNh6EHe1Me4N(N@SG zl_%WM9sMC_VoqX+W2A;2!G0#rzmUV0YOhwH)Q=wt|G9tO zl>VTXMtq2@O>*ZZ6$pbVIi}WzUCKA=Bv+V*xaCFQWjyN4Z~<;r!a-!qgu(O8gvh?P6Btx%91%u@5AnL8dwxHVnA~$3 zWYEQGf7+*vfR3pSb%UL&*L~8nzuxJ~6O-eM-YDqoiWDugXkY)Uk&7TPo&i})*$b; z)@6+h*yj8@x&Z;<2%9tmI4|y3_lx$AiKxqbhe>c-Qa-Nv_$%1ofoBl4W;+R{Bm4pAyijk9+D&aiyK(+Q1WzKCorvM{Huv_P z_2xCc-RPx&v|$%+U$Gj31*WM_*B<8s@>z%1GeyVcv`=+wskG1EEqb&N^i|F)gbqW% z*=`DhL*LamK8A;bDL?+&=5+92)j==uQ&UUq=Yjfp6zi9u^CvQIa9=pnYO|Bmz?yu2mjcA*9qhH{WMNQg+`ST?_hKP^QXnt0c? z#nf=W@%B3Bm~J|$JVcE8CH}twg!c$XfD)C^*mgxX8LeK2CjEnpbWHo?D2}rXA{xR;o_X|CfUtG zrqUF07LRHRu27n6^3{isZPXMrIp$Bjyf%$L_P6=VEgyX5{&a5Fc60w2CwHB^w3t|T z(URLC*vZ80DXu0C>6Ess_?Sn8Iw`)`wAikVuX)|JxpU@6yoXJ;hB7dU&T9|M6O>Fu1PNrTXi;j_?~n_>u9Nh|ZTaJ){HIStbi9Hk*lU`$xv2-Vab{S39Ma4C}ak`4{QENnrBB zt7vw^+PxTQ-Q82u&F3&Mts@g#|3v1*Q7-QmYTO90(Uy)Uk)13gkrHc8OeR7=4jG?Z z^23gg`{}B*XUml1egy1_CT7`8SS2O&H0~)PT8s3J$SmkWhJKUA(Ej4uY zxMe+rr++2Vz9)(y&3+4bZ^6t^{?I7@R~PRl74^jx+&MbIJwB~X1fm=d%thYXFe18< zW_tP9_y)M(c`+=8jFTx?u>Q--3{x9VHeLd4m5b-}H)neNE`oYbnC)1TqNd>$yVpAfZ}os5?={gh_${85oiDnTY99xkaI5M0eiUn9r4UUCPkJQhDB6&4*s zGB%0JgQ>P@gEllo<=}YVN4};Zm>$N-jU6u%Gcbw4foNtedqhe(<>1=1V8DBwp=r8`7L@l;LO&f#~3jMqG~zam?A-X=s*DOh1O^c6py>9+o;(z}N~Hn}$WL z#*5$uaZqM0a3@RC+B@5eYG;mjSK{f)u9~Af3L8?S#npDkPo!EeMV1%4{3K&y8j3KX zR6gcxMgAH-aX93Flu9BVv?aDii*0XM!@hCmND_7s$9s)ifS!xxkvz~ zCamidXD6qA!f*M6Vz3(5F|9H-Qc0umm}qee+tAcfniOshEVl4lLqp;N2?<3*L#x=# z$b*y1ee*bgbeOzSFLuKI@X+|wt$nk6J%hxKU(+QQyHu3=Mh;z-y{j8wP9{Rcw&uQV zQOoo983Q@CLIE4sy{BO{lcL_bFF86%1Tv8<>+tw8q!}UyZgt|3&EUQ0`L~^oU1(-0 zScEx@C6rk=Ly4xCOc5FlCdWmSZehB+V??eMU*5Cg8bcfce>q=XbZk6!v(QSf5eeBS zh?g3NwzaH_59wMXOJQhfN`4qHjk5?wYO=bj&dqgTSaPQ(0nz4DTwF3fb0cA50z!!{ z^EcLV$SuWd*TagMB>*!W%QglhjHCbwFviqaPgW>i1}R#A<{(3B*bea|=gPU3k%*L< zmj5}vZx|jOEo^iUlNuUWlhyHsLNou2S&VH31(l_vQ`b6i4T1DOTmW{CRjJ=K1bC6^ z8v?Sl4$e+PV{`ZuRVcgVIgND_>cl({`#T+I7^fpCXfrCp?+tE_eOpURQy$pODCLwH zz*SOO>neNuxfpmwl=}X)ZAjE;*m6pYOQDMHXi@Cz#b1N!9Zv;uVkn9FftjU07q&>T z>|4+B4e)?=~LC8Ab`#5i1+YIaEWaV}tQBJkEADW7zDx6b znc8`;yx9YgQBh-MO8VA^AvnZYNat?#aOIWGIQqfW>=w9nC_iIG-&mAY?%vgKPz1GASV+LL8qTvZQOT=Y_LcrVEaiotD zr)pyIWW_%BCEuyP!>39~s#w+6w~h$Drd#rY8oo#c2h?Uk5hV?u?hG&q`P4u&R zepS4uxWz<@1^H%v8GppS&3--R$q>EG@?|)%|1T{3e;wk1{wRU=;sW37iYSwB1jPA* z=y&O`@y3+8rQLM*(;`KW{qUw2^yO91)@NQ-3F`DbQ_Dz z=zAhc`)zPeP{-9G70DzicA2t!+ItGo8=a~|Z%?MF^L@AQ>EB*}J@L?l>z9{woC13m z!i*A&oN-DQ{U%RdF@-w%t)X>ePlpQ{$S>Hhp)||y*x~?9c+lmeL2=;W`pguM!gI#rLKEu?hb8n~ zO9Zt#gC3Z^%iehTA-%&NT`09m=u)W*S2c@+-st*sub5w2pyc5y3GYj}&r68Jhi(jnq#ZwQxT&z!NOE$9I- z;JtDEeYygxWGCI8F09fBd}R_NFfZ*~i4=Y#HQEIV^^^zxmSJPNAMlcJT{HGw_Ve}H z=2Go2&XIN2fxn|eUW-Kb~_FvM-|LHv};NT#-7Kr~*PX!0v1^w5j(5(b1g8z44`yY%Gpb?z^Zsho1 zBkby=LV^ExBOrvJx)xyne@y%i3;2}}`%~z@?Y{QEyT2<$3uXG>%>UOTa2@|QBe?&r zh~O>-g8y5b`0tDKfd&5}fI4Nm#@im?Z9v*` zgRof2r^07LxBSBTyr(Lg%{jT=1iw#x3HkD_h9*B5{`P;o-}~vbQHs+Mdb$5Qb*+YcPOpr2gYciX!=x8k)ky zP>0(Ox+!t_wZK7cI@V>juG=JYk+d$J(R|=W<%~N(tfV_Zd}sfX7TT0boxCl{lZ~!M z@M8~2{aXCaw$h&(chait?$=kX`dA*#@rl{T^5;Qa z=R=z_9&n4@&V?u<|Mx8p{GR=L2Pbof+4FEZzp z&kdQE>V$=^P+Z@5A$`}wb~QPF21GnRGB~<+S^v@CyXvAGxxLkyP+K3}WMSN`eIwJ9MsnI16f~H@o-rxX zwTJMIRvRo>!}$}%&256I=7*~iPw8vrUv@{5-IK;YK6mHweAWPHF&9nYk$f~4%8TqX zRU-ld@?W-7l4Kh(y~cAvq8A{UWfTwEzX!)}I} zh8WC#TE$g8>c8_v_V(l|D&HvkuL*FiP|0is$I55|66t^}>FFY040G3V4{uv`kWD?N zNqY`b9cIlaIsPvxJI0btRLtH)$wwV%-j=9|DtaZyVSBi$>Z>Lue0-fLQLDKoQ>;d1 zy*Z}vfbq>&?IagQ^tJiBG5 zPlTz|$C|}9e%O*2$h7CXfQ9BtE$l3tzQ0YqtE)MN-Jc^quHP@6U0*nVfXyR+VW1D9 z{>S;cOMd$;EI_cHSB6IZFK#bmB&>3u-@)NXhmE(fL^$uO`Gb(YbpwG?6IDH~#&~8g zP33|wv6eO3pdiu7Z_0*^e`cUukza9Z8|F|^XR90Y`$4W+?-Le+8FoZvJRwWV&{Tx^ zV`zq!JLr(0xBYgAM3Te$b4<_|IK_tg%T=+}AK22}tRmsQVnqS@)Vj;loU4h+4G@bx z)PZ${!4dt@>IDl_puF1w0I~2DhV|lj?_SY0L6#0iMI0U9ncc^4^2!D&MH$g-xQ~ob zfMJ)u@YjCX4_Rcxv{YuhYgjFaxB1p)@ePR2zSR3&4_4xjpRn1MqbGe0;Qr?eXBz~P z$nbSJgV5LvE$+m)-{zYZF>QTyHw6Asf7oA*fnOV0l_*8>e|~N5;JrZh3E|$^GIRFJ zCnY13GOp8Mf!NTf%6Jyly>d?f0W2h^>j5t#lLM_v=1L7t0=Y7OG8CH$WquV@mtR0Y z2}U`m5w7l(SD7W$c`>G3ZRSAfxYIPjB8WOOrMY`8NvQ#>mMU#r3Za1fs|~+x*iFgz zd2BNSb_m+c$jD~9YVXgX7DcT_c3ch5e`L4+Bq!_bkB=w}J1Ix0*o!=1mpDkog)C4+ zLiJ4EEwX#yr9@;j0cBB|^No-Yre#S&Y&52y9^yT*PWs(Rfoe0p&OcgcO7v-d_a0p~ z80&cBOB10V-ckxDl|Cwakn(JdEhJ%Qw$X{6h9+(K5|3;F=S*p{oOE@^@kXODNj z9Aq9WHb`swC9B0=RJ^Iap+~Xr;r7WQPR}D=$TYy}?})up7a5;6bizbU!qe@M{@3~@ zVl_Rf$pH(Sy;c+-atOo8?Im1y@ViYJsGou2lsrn_hVuCSqC{M#2Bn1fN)v)YZjX#z zH9WWz%fyN^clhpex+?x<;0rd{?ogY5iv60rBe-$?`&W3f ztwv_;?lVNBW4_*0nF`%Sm^6BSV`4}LI8>>7FuD7va-mxgji>iV15w@A*6!dFKVqPrO#Z8fC4Mi?Fx)MU^m4bG7^I`=7P(zW_TRy)c#=xl z*ftDV(3{#klkZUSVTx)>g;s3aNwNJ^Yu`*L7hrI`>MjQ)919a2$lkuxQa#>FX|Pdq zf^MhQccpRMLUF0I?BDK84Y#8fs!o-ny0nO-Q0zaw5@&beJ$3kmrpi{wlV!%wR8()LB=yYig3L$`R~O zUjcjPE2tFevBxcwdp4h*k8)_AA%73ZJD!O^Qet^atXWD#OPU{_kJ|Pj;b%6&J3Y;{ zQXIg}z*=kD1$xb78GiQkuXp9mrEe-WC^}muPmEy%XEdGHO?+0^F#Eaqj20|DE5Ec^ zC)fIx;Se~-XwTKSffVM3Ih?+@4w8_0_^AiO z%PQ>>`+m0(`FBLIRO*4q3xmBVeT!#|FH(ndx*erl1EtOnxif+8$X8~wmMns6F44!D zjK%Of{jV)W=G*>iJL2!*tljv=hf>y_A8ezT{>4(jxBuKIN{Zq5y}^5}@^rG_K^jhe2d!r_Cr4F6ZoaD^2HHtNJqTvEvD$?dat zkSwhKXe)KBFOzU=)ahy)ryo-Y22x}?XNO{s95Geuc+n00IfOn*!6m=r_rrUODYH~5{)eh$x4%cO@yRt3nVQi-M)(ieg`S(f zwX;Q-)6kki&Q?P-Z@C@v$qov%=)+=@9JS`!?AdWUTH)`C-QS?|tDJ71U{=}~R_ylj zDLgQ>1iNFAT|_c?J>~PojH*6>8=UO|-(5bw+1>;9R|-{}90EVM*Vr2N=*7}lV)bBp zMC^o!nluF34VIz^wmCxKcN9ko13bvQUDBBB|A*W*IQQn?Ria%8; zLI4SV;bLV-cnRCwL!l>k8XR6qEsDmK7>{z+4J5wO=l51)4`gUC#nX!4HToPu0blkt zoCRC|kve>7gZJWr=>ES;K9nC8Lge+=EFWaJFa%N2ZYuqu4g6gs?qR4HU*YUuT0hUb zx{f%PvJr9ri>;Sx62O>q+bG=^t}d+94W6)t%5LsGEyFTy3T;7SQ{TuSjbuVZPhV8_ z%}jQwDd1YPyJWAiYKHo*1?f<4F3I3CC$3Tzr>lW0N{uFV{{ozQPNG=1N*{BnfX|Kc zyBlWIf0|6?s8XTN#;`CKfA57?-76ML=peCGXT3duHx2)uI^^F&O?xB zpA*E7iJ-R`oZqwec;ru^zi4+tJ3y|+4SzJ0kQB!m} zY!Sh$HW%Qvlw*Ee%FOffNp?spTJiBm<%%ONvm@CDZoU816H;3HKi``o=tktwS=Y$5CGukSsTM6}*A9{$s?lf`l^#HYd# zm)jF1X~P#9a}F*+5r2V3xYbyXDJ7iXL9s%{5}VCdlGGe54g%iv5d{bMB!JX|fV<(1 zyjb~phr0sWrDI`1QM|?19kotPZ=~MC_jB^-=&nRq$3qvfjx)FYn3eeG(ewj!#ZYNF z9g<+CLVp754hSIaqb}Wf5tXT}(+yD)Yg%+C$;!=C>QNMi!QwetRhF-(Fp-WiBrWwV z3YB&P?c@@&cTq?m1ugV+yrAbw(5mOFH=>%ND^)0R^rhM$bKaYC)Z=b7sx?=?&pZ#N z%BTmMy3_W=&YFxZ*W5_NNTVyz-w0LTtW#hP4xJj4mcGq)#gCp`w$S>M>aFg-S2P&c zo)!uCsjA(M>G(aT_3^Y-+DsDmJR+ssse+ZsZY!ynlf-z2W*Z z*y;+4ee0)r0zT#4UiDqpFsUh))@ogZpA05s9B-)<0m2(QWpIJg;8D&)deb*rt!$R^ z0+4;TNbZr^#`z%b-ajfrV7d?6O0PHEDb2WawT4N)E*+QK8QQF3o+@(|QKR)w)Ca_k zV|2UqxlGyUGDAf7pVXmeN@k9Tfa6eSc1&pE`U3iUNx~O4r=Zh=nCr%WR39tT&ohMWuhaXVyspA50_Qhaw77r-UniERuHpz z@)MwopYGZvKB=8^eq>V~;mLNsTkzd3e`2@>vJIXF@nQ)z$HL-`-Zkg@oU! zRJ}a;z2&GJX5izPbC(S?Zi>NyiG0N|v86tlb+;27IcN}+Ohf*|dwlu1irC2r#FJiR znceORW_DMk>J?B8NgsI9V`8^^Gqy^5#@a^6+^6Cd@Y(no6=Quv9L96HUc;zdj>QPh zu)zM}jQ2+ZQUwRU4M>ix*@_coan0j%$w~!$N4?<+tApp&H(7l)5yR}=46oJPjo7Bm z-g1;|G?q}bRY9tZCzk~$jecTiBp$S8@KLid+ml?rC*%)=?X~miv&rfD7<#v+hye2`f9?0Hb*=Ghva)-5XPLEwf z=d&;rm05F6V-^t=4;d# z0V$TL>Ns@b#)xTArpr{Qj2=Vt#;Xx@bGfX}-ih+Wr&J!UJRyqFwSN^#@P9^SI^AqB z+L3WE408vhk}ghS`PxF@H_<87oB3L$)*n7D3unhrPI}Dlskl#y>M{W#)bXY1hBV}C zbf(Xd-agHAvfB%8$>l4l$IH>TM+amv{Xg_VRBJ^zou#EZ(w)u@`Es*T%EBU}+zW}8 zXewrxiOFACOOOkk!cLO?2t3BL5X-@D@=g3V!a$4y9<5xNu zO@tM#*rEsLntzDO>N)vbklw3Ujf5};Qy3Pdm3&KbAafsbiMM^khpWAc z*x!Z#Eu%ef>PD;CXg9)t2;XOLNqo%lsH4@#e)Q=I=bbMcPzWK=1-z)v zkoR)<6JNG;BZ=!PR%j#ytDqCd^`73!BI%sQ;6vZgdYy}4x(=la^vktT`% zXASbd3cG!hf4h+8l#B2iugYX4F5nCmSZx9FAFgHqxWATl>(ysExJGph9kXz#!fD7$ zI(VSfUjdx5x7l4w*c%9|LhHUCqV<1>N;-)(pkAT+?`+M#Vq>1CtdbggsW_YaQWiCA(=g!k}P!LRkaE0)YsrZ|8^B5wt7- ztW6Mr+8@)7T;U%gV+*6$AU*2*Qm1#SZgB06U07pD71oY{W#l8GeLi8xPX zPSdr-zk9TcL>g#}+1gDJp3m8uY<1+V4Tdyu*<+I9&|LgW7E;3>0Nd- zq;P|p+m4{&+A>D(`IDB4la$Yzyw2pWTnI&)mYX`B8e@H2fxE+3$yk@7vs@zzC;7>} zT?1Pk((~4QKkLHayL&sM&tT=}E$(T!(iWg^};q7NKRe2|#xi{ah&agb})tPLfAX9K><^%`2vcl8( z-oa%-KP=RzwW#w$5wFgNG83@gHpjr=&U*sS1EtUOIcw$*@NW#a6*+6XT1VI4EyAF!04u=LPT{Q8B((?^AtczSwc5?^(*Wh+kT+QbRQ0G*mOs;PL1K&Y-$~|KW zD__!J+Li#@m1-WLJ+mH5H9~$*1*8Xso_`wRH+q>*RkosvF)(hk8cWLG1O@V3L02=J@5+zL zb7+%A@?eVJ_a(@}rV9lVnr)dQZ|D&J_GBRUjLvn{!aBC8Gg;1Czj=5oE=n^0?eO*@ zPa76JU0*@#IfP1;$BA$J0uO7Y3NMI@S~E{ubNe8y)!nABPYH)4UqJ?jw)4uPx5hio zS_WcgF1r_Qbu&;RZ;@Y5r;feWPUD(N0@b=*caPIclFZ zFxzQ1xZfXPq02@`^7fVGN9U`Is(V(5O0V#6w)%0fTE?*CP16#sSr{C(CSI0~)SfCN z9E^3ANk4W+?_D32n|pGGizyUNuz0L&ISqy`ml3R&vQRLOuSz>^j-m%=3 ztRC|=3j!d3bv)CniR;s|%5R6}*5pl;+^jBFh%;J!ole7?JfD3Fg6>8h7z*u{J+jk5E+#OWtos;2<+SHyGfP z5aE7x43p0XZA3hDf48 zp8oRmMCuDDLB&Iz{9EZp($_l;z>=1RHL^^yg>3&c*WmnPV%M^ZIA!>%Iyt&@$etyJCvisNjel-9`fX~*mhz{a_ z?*iV}tS(=7Vt36qNg47B{)-OSn-V0368&$zsekV^=GIUi(I67Wz?Zf6YAoJ7>lyL} za}ig-F#9du{_NQKC)Ro|b|{_=1LM;BPlEYol0s|!jo+)297zJ&tu5Tdo2!E&=rd1q zlw0&mD0SB@FGT-*vU5f8a3-Q$pf}xQ&=Pn5P#7gE0~oKvp4NGX*Ec44W%+C%xjLgM zr}Y-}u~lqr(+a11R{rV)+$l?O(QFki70RKg7i_AlVAFc z9H!c~2z81lT$Isj#pv2BI22V(!8V&Q?3@M?bD@N1dgxgyzaba8r{_{z{mGyneRr48 z9WObu!pINpjVpH^XNdAjsa`@ zY5x@H+w2V&h!M@O>`gL4+wx1LVpv23xy)J;NgAzeW!6O71i~!#I-q6cNradSH&5hQ zlqzUtwlL8yGvG`6!+#1)msDPqD3X|uFV*^jtm#FI7TxAKKV;y>(jM)-XPd*8Ke=I> z$|!N?&jPzmR$E9tOp)e7Rg9XzCQ!+g*+P{gSX6G9G3-%asMpTe!CE6V$ZZAFZv*T* zmN{1{REJKKNREW?jV}x1bNG>IXq~ONQcXZV$afc!$I54i>vnI=!;6lM%%g~(KeN|x ziUFaOBi^J+U3bAdluC3uuq0`Xv_kxp9p-c_Mh8ow?{_KDeXq;mb9h}KkWHsr>JK(QHKV{%LW31`jGu7zAdQu>~uxOZ-Puj54o@OID^6mtlkaKCHIV4X-LqB%(0JW(QDSCoFztePSc|dqD>W=glv75yVDe zjQp8I{e*Lq>A0ZPhdCwgtQj702Pv|)TqL0;(b+;CJWeBp8n5j!jqJdwOSL?(bhkxt zi>rC0%oF{{B9_T@NHyDtI4*l9WBjz?;~8}kZweH1mgwkmrd+&9G1)BSE6(yM{#HkO z4haQm^3?KVf$dD0P`smf(mgV73Z>IOf+B- z9Pqk&hIT32^MM6^79Wne<;|;VPGc@m(#|g`AphZzkg=0RdBB%Tw+vGh;XhEB!7Ne3 z7*jw?{ZYy*w$Nogo!5l>sTGX5Q_3`ob!=?@Ao~&1j~055#XP7`Ze^riT>lLp1mN1-v^~q7ailaZ9x)v4B-1sgv2~K0?!0LS^No7QkJLrE* zhs*6!Cfwr0u@=FgR0r^X9M=@cL;O%^8mbgzw9Pad5r+q#HVZYyf%jMveFCZtfu$O6 z8p3T)nQn!mO*~O1dFpQBqJ0S&DWNfm$#?x+kpwubLP9npW#49NK>fgy;R@TZr z2J!p51q)QnBq=F2FhLxPwKlS{q{UbQ^*VVihR)r%aW_r$5*$by`@_o$>NUAoBa`JD zFSnz&M3*gC{i4E-6)$hoZ$ID|1B=$rQM5sh@o=a}<60KRRH4U5bc1(L*0R}wWGfix zH;NLz|)J~<9+gH}J%h0y&Ah*`3 zurzx3uph(}8gYx^W5bZzl>68W>eYGT7M6oi>0x)ZJ-sp1hgfzaz{gFEE2Ua$`=I0X ztBSCk*HeG{@V4NA=k*sEqa5gu2_KL9DD!1;XHz5LntjnSQdG=5vN3wSX7Y_3pG#{m+Ok zGfgAq(QvnaoZnGyNSs}K#yPP$Tb=3qhyy^xv!ShJpu|d7Yf0{*U){St{M#!)6(|0l zZ5b5OoBN&WUCs6^HuwcX+^x?1 zqM`P^yAxAF?)`laPV8!LHm^hS7-@m;pGv9Kgi&Hz8 zSJ=n-0Ck4^Q2xl-yqwXr^q(}eK~p~iNOe=EfJz01cG~pA!Df4#Ohp3pN5`eVM)jS| z#4YUSpiVW%zPVcg_#^uyI8+v&qpa*|loAmhL)K$tHuq<-!d~zZF{Wu%#2Ufrj(YL) z#OKBZdt@ie6)iSCr_%oRpO@D^WKb%N3q`<(FwtU%a4Q&0ectR{0&7g?vKugDhv z=yhdo3TP%*JRd>$@WWj zBR)%DyRfj1{+}v$yy=YL++l2wxHBons_94yWcul1TLo0+l`w^?2NoE{=Q~&^p*mMY z<#R2QZ=c!2GrRs-Lcy0DZ~2Nrw+v8-LrDTps+st*HjEi54WwrPPt}Uu$&)r(tLKB^ zg@O3h@s;E9p~~wFNZxwzj`lYGE=9h1vyW2Og?U;rcTs?z{BW#pw1(eoV1M<4bLo@Y z!oM$CedXdrOd#Id3Arx-j0NVlC{%eAm(IcdfI*0$eg9%RS}5_rhjF*U9LJKSFL!I; z+&1lZB+Op}^H}BeN*4=7ly`Ya>!!x9RFcAsleFf0y5k;4Lz`Hp>%qi_y)zV;6|CSo zbz!De5_a29-)v%Fz%9-VRq`JJ_pLtpZ4T5a)&3woB64?x!`LXC{rYboHnMa~UxU?u z_~BLY6M;O5;eR+I9skwTxMjGc8FR}f<%x&QZStw8*1HcfkJ7&F*VaU0m!f*LB0mcee0 z4B92i55F1azWssM(^Iamf&-FLVa1f2y%De*w+g^n3l%ccd^tNF7%ce5lT}j@P2ynr z3PbWGSfA7J<)2mK2gWsTFSf{+MuJ=nbQc3>7kQr^?%&VSWAF>$9TPfjSA$D>kCF&$ zi#k^WTIaFcU*QlgrXR{HvpHj_X>M@%K#`=^D+VUU!{r?$89t2<1gO(G=qrv~j2UsJ z;?{>Wzj-1^9b6eFApgfp6XveLsF1IBf2HOCcheD!s@Y&LozF5As?U*RjMroYm4A@N zdalP8B^!^1QN{Of|3^u6%h`137R>3J;q)0>in;Geee>rD9{MV1s<_p$iXz*FJKZB1j~b;&bM}{d zlZ9C;)0xSHgUY^X?(e6o_RO)s1G5Pa472qN65ZyZc(}~2mgs)R@B{SEoa2rv<-y?y^y>*Fh`Th){r^uDg(}fk4PHRS1evM=Y`dznUlGL*~z}01MovPKLVqK=PvM(;S4bHDiEw&|BAR8I& zNBBGhP@l-xKOZXFWW|47-o0z*km4W!cFFTkjJl7N1p4apd8=~S&By!2u;l^M;hdq; zYrcjJq~7j$eF33|SG-vXwPy*%mVMJS4&Te5Z^lC0vLvM^a6X$U(+poFTU*G(FIDg`xz&6GD?z`tPeW+6*}a zbFCqgOM;_UD~@*x*e#ZY@Ob}OdaTCO;SV)zLQVAEqyl{H`KtM_URoW;X4dc}4!7wX zk#1`{a2H-bO~&MWeHqKekyva}SVAVn`~4H$>23M}`l5i|D~N-#xZ+~fFg*FmO>j2& z7i9<+l?on?CluycD(LL3ym8+mjmKhWWuSY0vlm9~=0O`6oJ#-r5kA)$ata&WI1Jll z!F&PnRh6blZ6B7KsVMNLB*4$k4{=eC6NRgMuWXwyuhzmsNDtDRW=T_0RVon$IEMRm zyb7|7!|wx8od^%>lrv}rJGyF@>nlHW>IP}fIWwV0fd7|fU`X2siq}y3PDW4U*4?FEIAh4S34omtLGd`N6 zkHMTk>xsuiSNf%fsS;tg5&4`Ap^9rBADI6ws-Pdj|KR^uZ`Y(LSi;Ftg8 zz8ngN5~ZvFdkQHMwcP01DE0w>c5)&ueSrsad!G5$Qk@Ft<__5Hz>Z&E1ee-&WQCg73Mxlg=H=;*fVRG#^B4pbTOP;cOI3D%;|1*mku+jt z@^z+>`N={Qx&dmuyC8}Co1NT5#G2-@L|?4Dq}xnd0FnEuv(eh+N**GyZ*weP569u{ z2Z%13cW4I6%KpM`5wl8q&U&XhU347G{&o^JNsaNVzf0C>o<$HVq@0Ut5;5w@HpqLi0ml6%YyW2^LB zk=rRK7gH&ohJOh&wET~I?I&Fs4A;1^Jw2xiguC`{(_=hq5v$V-omFiyUB!`*Qj#1O zU}jAVjm#L%)cM*zCV68NYU!@VpUrM-7DG782bR|39Pme$kKw#?&diSdYg{q?)}*(O z__5J$pW+9e_zaM+Ede|IVYklOciP`E35&cHm%n?bgai*2{Wrq-J`MwO0T(_S@?E31 zo>dlCM(OCjl~Q|O39K)(exrYB^^xXY$G;fyY1+;PN+W3-mhKfQl1WHM3l`XimLv!~ z6VpX9@Q=~WERAJTrgMCy@3_GQ2ZSlD;P0R(Ff+9biu2eMN%{E0_4`3_A?XZFM8Tfu zANR8Lm`mYp;!+GdXA)vU(!o{8&^0hG5`iSC!UZU6*dlqw<~jtAIdf0suPSvDbbu51 z=NR$aa_&M0cAZ&Av;YD>LyBb?&0XfXpyeh2g7|Szmx$6c1~J2Glh!x~Ij_-Y)W!}K ztDorEDvx+ol`>nGBY?J{<}PC`1vJdRC4lZI-yR|E{Bg|ONcytnKtJOxwFjh0(|R%T z6Tih-LqK|ObYVcILoJ##`dwLsHr48_EYU=gr=oK-9S5iIK{UA`ri|a7%wbtMEW}H3 zhRs+=1#8UA)iAG`oDUnp7O&90X2Ac^8e4_kWE~&ExlN`Z*-iF!ex)~NZNKnUTeGG% zhsbZ_o)SO8`bbQ`|4%l05)#7gSetQ2^GOF)DEGViej9OMKn&AmWV>xssWQ2JDd>*-lEzv``Nxy*7SsOL$-!!fQuKvxBOGw|dKR`F-%%uCoG{S0Z< z;%>f~5Tq%FYcvUiGTci)y_>?5-!&`%O_@Bar;UpWM1HJ~XRC+w-Z)K4?NSttFB)IMDPKCD2X1D>2LKR9y`gN~Y|=cyL+t;_T! zh+7aehRBuBerbSrRx&QOaAF@KwPj#2gfEqX$XKhsJQM~I#n~!*-&ggpRoKY5A)TH> zC_qC`7#P|~;oB;R9;O@t?)ap>(Y#NSZR5;p0&;30_i=&1QSx%w=l{Ux0@YHb{&FMDp>=n3;`A-2S)TJn zl=7p3oI&F2uFqBjfg!cbYQ*^$eLR8B#WjaF{9)IsFvhjiN4jf*$1mB%-QT!jDzj-b zZs))PZhy#!D2!2U-JfE#nG(FJ^qvz^*-qENmYAebFG9LETEjFshttIL<00|+)+iLO zNz`1OwZZBm@p_xJynz~^$<&yP2_8-a%I*Kzxd>9f$LjPK3}vUyEIYhn_`+1J;8BlOF- z;yre#Q?YxFxX;6}os+osM=SByLAGKs-lK8(Dvo58_>lqKdRdQww^zdK->Sn!=EhOS zEdmKIx#8meM)N&EG7nf{jw7@}r6I`b?%={%$)l4BVt^@F8hDN9a_@hPH@*UpCV0Ah z0xcE^%7F=}SoI$-5>Xw)xMwM)Dz|+3Cac3Xg}bLemdAB`k`sQ5n3|h`NOi(P;t( z!l%F?s)I(a;VhMYASvnbzlG8|t2ybt9RSt!V9%LCm2C_&vxWvezuG0&Ni^9Z$eM(dpg(=Pd$^&4Q(d9{UJ)+**#i-B}JP| z8(_oP1Oo2LpaDC9(VK`|OEi%MJYn_J;+hR!7;XNzL(4j_r-+`WAVpyGipIamudGpr zWPk|dSg>ks*W`8>yWPt`zm_F~V_(($*T%kXKD^=N8E60|Yx2fOjYO>P)N+xwX2+vB zm4~f~6c}VNfn5`e2i+co7IU+-EllPG()&5~yWhs(Ji{3|f=jWy#`)Py-K#cJp*c#_ z<~hpiJ{=^Rjlry{v=5uVtU&n7<`mYkbDR~J_+qV>V>J*a{0uo zBJDZ*2!E44OEdcqa71MZp1)^h!zU^9iqYPiLIFNyUgZ(z6p!t?&15I5XhqauF&;k{ zR=ru7R-XViIw>Eiox|OoL$!HNL=~(Nk+xE%D5hD1O~zGsS`W#s#BYo3F~nq1;JLfp zla0TnRk9Dozp>*EC$Js!4!B2dS{wo+F09kLWq7~d7aJ>K$?i3-^*Ki;!Q3rb2jg2y zXq|DtqtwGOuU}ChHsa!mPuTF8CddGZ{oiLqElqBs5=7e^2@n1m6ek2N_SBGPd@8wt&hqOvI7U61^Hs@0#0Ya`XjP!!N_{|N-x zFEm*jN3CNMzTSp_RRwd>ST;)#INoPRIZzAn9eRB97fiyby=`YU2`)mR}sH9lEf~t zBPGld@{f8o;N~#q=G>v3?biJ?#iNyo^B9=W)#gOeN8Y{LrZAwH4Gpl1XS%22J1|F4 zEodVXmm#zkMlRBKGJVFTJ7YJf_Qt`5+o`wRFtNjMF;*DUI%HS7+Z*}0LZcmCJ}(j0 zS}Sqi)O6X4DqZsSlS2D+s@(IDjwv?uPpSjYBCU?nZX+{81aBp_j8mN`A2qj4@7hFJ z7{D9c1yZT#y20oVC_Wd9sYRI|XNRvNGsp|+M{BCM=N$bdJUh|*J+h-6{~hEI3+bgg=5kR-^AJsy zdx3+o@2fPLpRir7$U-0%1+K@(@n^E6&0?Q9CzX`8mveXe`F?@~SQU_#hC2Gss=zMU zzg2N}gFVt<_r8(Efk)ds_k%&)P0=3Jb~#&99Xy7nqd{v9Dn|aMr<73 zrc$31BMqEO0=Zbdp_qSauCikPJXzBTyMptYPFR#KJfP_mPN-M6q6sg%Q) zN?|)1%+#lN`w7}9iBIZie*;v0AdBNmG_W@hmBEda+fj14T1?Z*r2XS$G-O}zeITFh zQ6bM~?Ti|UG<=R;?AoT+TzeG5h&(uZX>u1vOcD`gY??0RGVEPV-E69GqlVg~G<7tq zvE~U^mnA#s9zb2X9wXl(I>JgT%yaGyRK=E|O?@W3Eoy_desaNGkSVU_`ij z(=pM47ZP}{M8wDzO3cW?xmZj1wbIHdvQK^zg6Jk752bwKtod-kbtK@WdQFH#BvBr3JSl$~H9ZRa zP}*@c+Lm(D@r|#j=>e9WqNEDM+6G)KHSiMx;pLy>jQ1_MeR{?eSFWeZSwy91PTJ@V zA7<+qT4*B(BQZDDiMssL@^s&Pguy#E8pNmT-d7sF{<_9uR7VnF4S~{eT=eY8IlbBg zyA`~^;`61k8;#z?83xnkeUt(jc|u!0t)V)-lFeV3*nrwNCtvqx8f$f%zq!+T2PicQ z7>aGVv}4D)z?i@GI!+NmzQJk+9)C2$z`R0UsS@N!`snDq0t4`p85;dICdJ4OZ)3bT zuP@0`FI=1_q#^?DY3(xB;|!K<8zUL(*Z-ty{rc(&!^TEr0zEI`Vq>vw{*Np*Dp9=9 zV63sVhVw1H*D(acq9h3w9rVdY4(3t^`bwA=MIzDb;}ZPJb#LIp7Jh;t41qBThpOdZ zfF2%&O{viR7u%*9{hmZSwCH8cZ_-|3v5dSGupbMxN`A4v<5RptSoNb385ct3iQCCf z(S zEgKttN2F9Tfw3s)&3HA+ilC|m zD3xD?Nk6~v8yTd`AUAhwa=W4Aqp)dUUMA$a2TLW*n(Gpmmcn>ZLQE0cCNxo^Siu|H z+i3=1r1CGEG91go4>n(U{9vb!4kQX}x-ds?BYdu{@YZu)Y*N~5U`n#chmfehY zwh&Z_RU}m&f81k!i`Z5m4IfchXWKA&G+X;C9R#eFfV2dMQa?N!Lyjj!j_9)~WDqaSesZYPX}<%jzW%CZ4v9+feVVR8hA~apcD* zvah<;n|v}By4)L^R}+!F@uHJvE!3$~ORZ(yzpb&n&3xxe8tu%qNU%lAt^+Hjly!7h z=60uiI~!>EepS5yd(BLG>#uikm&cEfy8(I|t-et0hSIeP2*4?n3+$>%L>JD{L&^4; zJ8;0(VRw&jcBpjQoswOQv$Z_vMn^s>|H(`4PaFPE{OInLL&?aa*x?{H->ox+F3i$% zzl55AS~ps+kw`r1bq~fcP*1!$*+?R;^@vKmw}m>#3L7vmg`1G+(r?mj;Qd#7UC=Pg z(dmxDE!Q(Ry`x8*--kq9zEVidyRk%SFV}JP4Y4Z#WC_q)kQ7AxCrbbfycY*V_w(*o z5*acMo@};AWN!iV$`kr230b0vL0pfi7D>9+H0szeVVty(9KOtqERv?Sapt@;sqzq| zL`)nBA#2wPOaJ5!auE*}(L{2^aP-LVh_s}fqJe=?P)7+AEc1apbgPOKMC85%vU1}M z;i#IMhS|@D#cV2aMxrnh6za?6(XC09VMU|*`U#g_CRQZJAYA1HC}Cba6)K2@c1$8; zlH$qa)68^3ThqYtrPBv=>k?c^A0Ebe$J40$eFJMD{Kp$)peRR_IMM3J_!h1=jxn+^ z@`SNvY)JzCqzPlfoq_55`n_<^kv=j(w9G6`@OEJ0QnAP|BctV&u|drE3UWe*W0>s@ zl@h6=$k=ESMM7{dA-Woo4NZ$0DmDmX%1b(??0d=hgMpD@P-x0>+0`M*=U}p%Gv(j5 zh=N*A=a_UQO4H1@QL)jaYEUp|BsVs6Oq^5SuUMj#kaiBELKKCvSQaMck&V%FXZ;CM zf7b>yCQ8SKhG8;_dUu+Lj=;E5`cbhlL|Qq*_+GwaHn#K&sfeU=YtOIVrxk<5ice+Z zNF-^+N|)a9JS8$wnp7jBoRV)VCo?i+6f|)mBN!MwUYaG}5v7oX6{f>9QeDmOhN@BF z9YSqsmq&B}$$nuWQq`v7ETT2HG~jST!bR2*5vw4v>{pz$$nF+Q6Pz)9*H`gfP;8tS zZe9>gJT#kIYWivEZ<5uah5v)BcZ`m#`_{hisMA5GJ9g5sZQFLzQCBLqjgD>Gwr$&1 z#}(Up>ptf>TpTf84NI8OQN}_X#N6# zMR@_Ha6#(q*{_k(p{)EtBOp;_L+J>*%35UXpK_8*O~Fyd^r$kuYjbDw7$0}5#GCp2 z?DAoFg7!xCcMHdeLPkpi7!Au+aH1R9A9 zGWjo=bcI_HN8V9;^p_!W&DCFk*vi1sBRAgpTe0PTSP)n$Sb?NX)(Mm{9KML{qT6xrhq*E)5j1%Cfo4UvZtfLnSgwL=9>B z824^f&i(1pQA-IdM&S`B7@k!<-CedIN^GD~Q&azJ30FK- zi-Id=>4ylE;jt9WK97vMv?{!9fx6SGOOl_`5+19+^KWawOvZsrWcd zS&PR)gIu(F2RoS_k=895HNsrU#~MujDBfYrv_3Eefs4>@`Ldq8M^WiB=vVud1)PjL za#?!TXAz)@As-@&LXJ3t=B?lgAFT}cNiDdW?#{Ix^r3-Rv|#^+ zH=fwkOKX~0X?EG&Xe`_c1KCQRqjwc24SY7TqI4ik25$NhtQ@{9_l1IQ*h5GLCPMfm zu;a(5JD& z5A$~gbZfxk| zn1`lX5$}JEZCg?hte{6uv3=2(5yU~C@+jn+dNB4mj|8V~lf&I^sR_!30~sfmx(>SG z#Y-MBp_K}3!Gt*rv*=GeF zGZo}#$e*gWp4>mFmY=4QM@;+;_M_XrJC2igfyhIbtd4ZsL~LIM*|9w-o?^ zasRux;|vK7JI*Hp^#9l8|2}j2F!_SHHyVYuCLTZZf~~ODkNI%rwOB^i{gv6VowN7V z1qoR~B-FgF&h?Z?ax9RJWtL!|?HX(anh?w4`1r)2J-mYJZ*GYh!L^@36*17f*l8l|P`NTZ$xRMDtsSeV5P z0UuPY=fwpZhd~A85h}o!oTU@ygoll^*%qG;B;bNIkWUbBuH{*S-T~X;7{%;3|;MBhy z84&*evkCnB&|D<`USiCkUq@?U|B!AuHT5(XWpNl|ANxk2a8wqRonQ9(=TDWi_hi(c zpU!BY$tZwY{Q;d<2kztSddY4xVsx3henx)8GkQ1CyxX?(7a8}Ks}qnx5S>Txv_kK~ zi0#X1z0i}T6d>f0vkaYex4)Cca9IKFq!u^X zoxY#5hPXGGW3E37G-TZy08^nuWBwLu}MZJC`ccAxi zA$y{PS$}7k*NQO%YhUe$8PB6Jph*Wq^Kb5yV;oFY8VrGJps|XVQz>z^vqus!9zu3? zQc!*uP-lv zR2atti3gY$Tg?xWO`e5fRXreo(6-U?)Fw#HVYoh@W&rHK-Ee?*ejwI-A|Hb`xikpW zbl{9*CJ|2Et|cu2uWqb>&-Ab}q?3r&nD~QjR?omX`2TV8{QDX9?@q4IR;-Bq|Jx8g zVST&R1T{$Q+=e~XH>Rg$88~jzC|ezVqu0xqr0{$FoFcAF%hZPOYQZfh(EiEHG^3eR zq6&{_1wYqy$;iD#ns`pD zn+fHbTp(&M@yQ zsPB0;T`lnk4JStg%>vZ&{*S&CCb5AA&{MyekJZ-rkHfNTUW67Y zEN@VKPYXYRQ@CeWvGh>5zJi1FuOu-QcR+@1RB6_*+3vYmxpFFMhWGo+$&Crdj6Ob= zRQBM|9pU0X?FtXq)CT&SzaL9o#ThcB>9oD9FSPsG7-5T|&LN|hSX_X_n{60<(~n>F zoS#*0?(N?EqUI;2(~YC@J};-}7v%rrJ9C)^URFNKlO$;WarM7Ln5%8lD;IbW*j90>lCkn!hEKb1V3NyyU}K{EidG@(WR*uX#>TA-pb7q zDP_M;BPGAY9KZ3srcS zI#ukpFF_!$wfgr@4VPT;|MN#zm&8|(a3J_9dO}&yq=DnPI+R7{bcO*Tfl03rHp>!> zk{mvC=K9yWGib-3hc7tpa$Qlwhl8wBL-}IJ4lw$UTB42D0PAc*rqMgy9OA<*q@k$w zf$#jMDT@6!Dni-#4`g?;{4b3xWUfo-FI6cL^`0kT19o#RKO72mpQ&=#mbAKA9B*@q zi)H-Qp!kBnI^N6KcYP#7x-X2DI%Z}M+$9RBPT@@;f%1y8C2l)OqPvFQ{v2SrocMmU z{V?>xU@S=b_Q(;@^JqlVrlr4=1pp2`s(Z{J5K4Yl&C(?N-{|C1|G$z71dl;7$u>Z( zT8M)))@yv9W1>jUF^1%9#Reg$4B7h0nfz9tx%qj#HrU2Aj-UEd#qYUw{QTVEIg8Dq zl5{;iGo=l7A8*VRtu;D*i(ccaZyo={gNgmsX6_jI0*>q5=fle!ZZ!vTM&gK0`B%vR zN*`@5@5{)7SPo7Hk}Ug03nj&bo$!-KJ;kR@jvr4w&-f;@RhIV`0GCZh;n=&bA+A)kC?S1t2FUPKs7Mb3Q1vJ%| zw|F}SGO@HzG~OZhe8A>xvyH?yguCv-LOSKiN7GsKA5lk2LnmUJ8>7?J;WI6AWVH4r z&C=uty^He$zmkj1NBumHCP`!w|NZKNL$z)4oN;TG{7OP8sP}6t4f1)NqL7w9M}K~( z`irD)mt7H}&Y&B3>+!*M_aD-3?udn2>K_~NZXbzsquU%aZKd-&=`zlk56?X|YvJKd z@cU!nWn3g3bHzXHpa}VnOR1jNP8XrSzHyrkx}b+9AI-7GEpv8ocQv(w_1fbgoFBoMxeVfTq}WbXKN7< zSxZo2z{$rD^6at=#5e2hQ9~$+)xdn-V{^o_hwn5{Z#X>-)s945V)?A&r$ze@#W$D~ z54j!rC+p^g*&70vifJsG-^gA%_4Y_8+RGNP`wwcvx9ePQeuNk?yJHYhUnTBry|Mcj zj}X2Ck)!7y9kbbl4$411Bx|=Wh9|AipW9pK8^xt`q`81*FHSxV(O#KdM}vUEu}Mwa9o(=PuaS4cEpX5a**I$yrRll%(BVYJI0D9z$b_{C!>_ z6@Y#g>hnpiiQ`rK_@c0zHa-pxlG?oZ)B7{8vFG6|;u-LP4lZO=fY)W)thGBc6?!Y& z4??bj>D77w;eu_k7k0gZMq9TXG|~66oqq+R=JV?U*H7cw5?W&~rkS_|9_cmq3i|M6 zpUJMlk*Cvp8+ih3@WsfgLu6Z|zA%o`p((o-DHTWyzGV zt`K&slXdkej2$HIU2We&@Fd@`nrb3%=^ak2wu}B!AD*^BOT=eZ2$MFW^}ujP>EKA? zchF#JXj`h+bx1aS@Q60pq_MzhvXY>a(5=c`?~kQvbG*V5JHnYFeHVv*S+4#(cwL+K zLd9-BCP6=K&Iz;-%CpWiS&qd;GZRQ-%G6<6?An&l(-YRu<^z2&rm)>|=TbG^F!j;} z+14rQf-52_{j>WFmll2B{)^Yx^SQ!v+Co{+j;QbG5`snP?BeqKv1+qwGZKQ>004BU zthC^8uG|dU43S1+**?95nS<%Tjpj9d){cMyQC`ab#t6i;?wLH;(=DvkR4fzH7uYG}pZp^Dh2Y4% z5He616RMv9ZFiSswcQ>v*bZpW+@|U6d-%bZ{^l4M7&XS6SC#hplZgDn5 zl#CAx1RtbNw%*e#9e?IFkyH=N3Z;L4&$D{hot)#lOL{risIo7Gd|ofH7FmaT!RRrbP>d@f6GpxB$}#LLNAT#yQ{@+@HM6TYe2>t$k&>GD~Y{ldyRrt>5_ud zvHIrr{+NyDnHgRrM{Q6H*Q+#idom@3l+`k75ekVqY}vACBU*cw1o|;TaH)3Y?dreG zsX`phg4D>vNO`O(m~mLp<1D`|*X^~P&zCr%z;cX=466Rr8_bZyZ2b_G&NYCsb*7Xo z&ziKGg*F`uv^`!ClHW!Y#iz`#k!5MU`dWN04#QvqQrRuK}<;l}!}?Rtkz669%!! z=y?t}$Unb294JxN!h6+WFo{zyc>KcQ_0kGf3Snjnk6H!*oOWz{IxxZfRZ z+#e*wO}?lCGWjdjX>@8QJVCAD z1XXlE^lGaI#fL{UiXcH5`nX&w_qVNP1tPEhK_D!b-7CJdE{S~trOf7-k?n%|&-+5+ zyHO+O_r}Q1S8KuEFtqVg=}z)*l&9trf7l^A5k+_~4~ssf2m)wo9H-cz(C!a?L;mQ%v;BAgi8bX7WYwGaL&-kwI1#mSsLG&`nw z3aT^s&gWf%RYjFl$-D;2=p$LHK19_^8AXNlh0>OoW5;f|tC+S~;nj|mdJT-~=s0_e zH8~jiI#*Cp_){@2P)yy(3O%l+RZQH$CDLyzkmLpYcBeyewy8!njbEh6Aph zBP=N7i&F#=>(cV0z8yUjlHhT@B9A=+Y`uF&QmNA($F|n`!MEcdDBMK*>GKJy6)f-_OjzR{>7zad|6D&W^`Uqg}E#*fHfKBSzp zzUNwIm&%&Paa<2OQNk8Q8XP<6jxCn?hW7%aKAf=o?I*Ffs`0DTUw#SMO)G!L$d1g< z)BYyCHf(PWt5NhnS^(p1fS$3%Kn0+(kzkh!#*ymd6r*UoR|Z!`%X zUn0DeNY%Ms%q%7oe#&;phr;C>^)7#&K%!3Ny!ane*WoVX?Kv3Q2Osg!wtGr&q5CE_ z92zTO*v494#|f1dIF&6h+Ei~trP~R=3ZGPHvR9^A_&_T~_Vbu;J9ztrM5hfaL?&@} z->#-ueViYS-D~6q5Wk8HkebJ6tcmU%{-{izwK|*XxG0>9jGF(-JW1YJsELig(1v8_ zKq)euD>p*wF_Z*ztK~o+Vcy-kL+mrv3*Kd@X5s>YKK**PA5~%d6T;t%@V@4mp1Y$> z;f>!zVKPxAW?!w_Im$NhO5w+1ySq{O7iSS!6ym6knM{s{zjC4^g(LUBC~b-LWgVAu zxgK#dj0(33Ppu@|C{$Cg3O>ZJsT9>6WYM$Xs`pbpK&(H){#L7Eix+>FH};1f&$QVj zXqOIz>%hD3;wvpy`Ma7(yXur0{@6$LtLw+=8Nyrv5JBe-YW0LKOKq8$YQ2VO5U()f zWjtF$Ju!t7i1pk+RO6DO3WVke+b2nfKhwdZQuO&}(m|rmV#hNn!&9tu%^I!o+ulN{ z;LTxT?P-A*vrO*vWN=RO4PsYEP;OT{6U~`;CbN8i4%bu`&Fo!Pb3_m!Yk@*_w%zv> zf!~P3d3a#-Cq~ta!b;<@jb)jWp=&n=C$=xSpU+zX5XAMb!4gNIJtddh->(qd2Puc^ z$-56Y$f`m!t89qbjoD8dWM=Bb9K9~nSBx4EcuNE#N2ri5n@;anEBQTh@|Z`KS|cZl zf$W>*fcqE3_#uWv&w_7}X{tTMw0|;#F90eoKkHxAg)D}%l{%U8|7ebUd z8Y_==2QHs)z6+S`c_;0vEp))w5$jj&Hh{M9G&U94C$T1jD3TVcb%XJSgq|+>BJyN8 zitb9HTYn9;@*%7^?6V(jVW||mL)agbN$z-=`4=MgkyrBE;HQ_7Le!YD>{movv*ppvc)ha}LR0lKwUFY<` z$nWuIAfoG?Il0G`Dzm2Yxy7f^`~G~$~X3@^K!c-jN42e^BaAc zv@d38Fkfn(7Kl!OhQ$LcO)T;@)82G-Pi;gDT0KF#t4Y>ShIh34=klMr0TZK*8^eKj zC-B`)Rd{613u*8w<_OIt)!AN~n1YJE}>rXZk)}a{t zgK*&U1x~xdR&U*wB*tS!fF20n_;q66sc>h)GWF*l3;O5H16IOAh2T;eQ{4&P#d_8h zm2nQcvxn^rw<4L;y1-hxr4ZzA2&kxzk#6;GS3W?o{4Z*wD31Y9unf5>4nM-()#su@ zH6%QbnaDzJtaCfQPReh+9e`$v=$q^mw07B|y7zQSj@8lgXAm}88N|>reEY1x@Cj5? zYQJi0V8SIiaa~fLSgKA(t6c`rCEt{DExPOAJjBg8iS1Rv?)q;i+HJ7`IsTMQdVjN%nc zV@ktj^5ae0f2Jt06f3is2;b$N-D7+5a>P{c{oqy`_vbzPLX(XDQ=(ITf#xEDz`XCm zjCa~aY0!eX`>0XM!uJLaA=w?(X5REKbPxr3Zzx=6`1V&q$CK|ye{GByrBD&`_74WT zQ#dav8;4~JjeH08gX3@~&dw)O;YC(BbKr;46bDEVk_T~ZUsFs|qXLE8G3a+R)aL*b zS}&EqgrJTBcF^pN`B|(vXRB{74P_)Mz&m@|0~k(<m+66&Ch@xtW*=yb7J2iE5?C=B94 z?(rvQB{Gvd!=8t>w4@we=JO}AJpOdNdzz+_ zh6EBAD5e|jV;v30P~#AtBE?f966L(uxJJJC^R89++Y@AN^b|asm@)#^Ua#{#y~32B ziX7zhh{1W|y5|^r1vSQCPtQ~#rw0!<=^sP~3@h9YWXOr_^Og2XsoT>y7l@Y1@Thz-{Ctz5*{Pb%`XiuU zQzQO1OeVXukT-9=aUY4Oox&tsEFM2a9>-0eq#!ym`CL*M2Y{rL(x!*);?duGeLh%? zHz$Vt#Gq{D5Y@wwG!>>}c}jVy0UaQ3-#^x7Dc+yddIWj;-3R;loaw!dsBWdgtK3Zj z#j-voXC)Y%$2ukk_=F22p4i#~-_r_(9}W>u*|&=g#+T6SBan5EfNMZV0y$QxHI!kWMhw@;iz@ujla{X!^f>)RB{&oKbC5jwEocNF zc6ViGhMOM!Y6w)1rQtP6*v30#882hoPEA6LMuvx26L2b+-dqnqb0VbC?(P~-I&lNX z+r00R(CDUM(eRQb69T>A$Zk%Lu+jEdEE<0Z5&KmBHZJYDg!Jl$o?LcKp|W(|G!YEI zNXAS7wIiOA1F`gm+3c7Q48wzY$`9nU_&Uj=jx{?eDwng}39yHPYOJa#k}J}77b}r4 z#M^Qr{@#^oxn?>WE{1)yfW}%{edxk%xLE+I^#Mn8b{o$Q|A;iTGMmg(!lw!1e7}qS z)q-d|Tfa+tcP>LDm(a+awC*!$2zqOdSm#R~ON!0V=k~AFsIT)DQpjkq3O|_ZAc$!H zl~_3L5pzzm^k7D-vjDHR$=Oo}Wn;Ep&iCA?vZY*jp=qsYVNtn68@7=32{U0|%7S)vwddPXSq97kFv7Xf#L%6C-Qo{_sCIDhV<nWxvnHDn)``+ z*|wV{z~oCvl=C^@D!K^sf8yo;{_+0di%6csFi<-#`$gj|=8pX0M&~5Dd#t6fyfo|i z+j=nK?|2!7H*Sp2m>L?rvDk0*t)^=s*Wjk1)PypOB7u@=^#8Q9^}cH8e_U#4>v zw1TTqW_;4|$DR%lN=_1HXmET@j))be(%1&eWvpnGVG~A;@N{_sCwm7|!Dy@|oI%EG zcz)irrrX7*s!VCBNvSIvFb{iRf`BAivFh_5Z<_S<33hcXY|odHV)2+~FL`KGjmbjc zJf=Eo^?809`qY-$X023khaFi)27j2^5Z}sQwWRXfA||>T()6N6QaA6#BUoPSCXwja zV|b7qUiMZZdNuWYJGc|d&|!$0DqInzz>&9|4RX~WJGFyyF%!^ON0Ck-9YqHk)SBma z{Z<}4b?vj170M7+?`3?7cJ5YZ!b@96`-B zWZjH0Mop#NLT6CyxZR1B8{hC_bsZ->Y7^?C9E z+j`~b3v5!F7Kid1&mrDp(uDd|m?z^KNP%unZm_6_`Z;@O3T1{%U%Nt=%QN4$-0;Qt zsd63%AJvsQcs=&gTBOhj9kB_s-83812ChyC-9m6SR<>|@+ys%9LQ(9&AXG15Nu1vOx@jdwwGXqQLw<8y@U z>ie<1(1C-%Y&w~=fmriVk;7-%J*8uz2`d%OLDRO{B3SQ7>fM7?bWD{=IK=M;u<`@t zZbT@M!+S0DCR|&?h*!54!p1COWu$r31lc;#(?xZHJ z6uH^t2)1`EOxb+$mucVMaCQz`7F|lweRW$`TV-O-2g9w+j%^`od(rc1otqZW26ZJaQ}$h04S2=jLSKm z1E5Ttw>L}SC-Io2;=TWCXvy(~8ltn1aFmwiXJt=Pod&Dc$!8iz6s~+F)@Ie%EA8!? z!ltg&J+cH=I-1?bHyB5QEnE9#WA+O!i4H6I3`wEdz!e3I4&`xd6_us60yD{(CNXbf2A2lA`7cbSfWZ#2n`7ER zd9y8vVx(8m#0n2r!Ciua1enF&712B`dojQjr?y9weFpD?{YR?z!PTv4@N9xp`Ehx< z!Neyjs^VDhA^u#72UdVMr+m-V&5STTivK6Evbd@aVvw;CFZX@WTW5USRH0m4X&4-^ zJe$I$u3@m#>HuwzV#SBm>Ij=OLgJkvc@2B8|OOO!QWI&fK%xKNa8mucoZ#m}Aq`K*fu>h#Qzb&J%PH4*;7(CD`f zo(7CdFDBXRW1*;hscKb@E4y2vdnpLrJuY1&hUq9ng@))PUS7ZEX#(?C*ZH4`#jod1 zUa9ywTuL*sXG)*de+YUvpEa&FhBSlXms2n0SVP(X`)lBaSXsN~#Sh%S}|W0NShqvQfEyYjDQ6Nq^V< zICvDZ( zX|7fuhT@ArWPEh7h+mm*9d0{85EI~Y3l$LqMtkSs+@)$#S- zu%O@c6lpG$Xnd5Zu~lL@0#V+Oq2t*_04gz6Oy`8#66M+H^RsJ*OmH+1?uV*HAPAm5 zLmxN#Qw*p5r0lx^V$k0&gHY&yMEn37!!??Swf|36?!Qi7tzX}CAlu&YjT^3i=8XOpSCc<=G5BpHp)NsV z82w?;Fl=pE#$I3)SqHZ7%t34&&EP_)G3$PUg#!Uw47TB;qu912_RWID&3oUp;X!K= zk4%z%{cvu#A-E<{b;nm$hzN~FK^k#Kwqp=!U4K5J7UP4i`U>%_$}oRY

<7zkFdg z9LMOV&o-lNwixmiT2w*9u{VOtPlle|BZ1^LN3Ugu0|0E?kZm*jgCFgPIC1%c?u%=O z>?w31-r=|SZy8HBv(*C|kBL-thA@^4?d!-+T-_mGlABG+Rb<%jEAK`h3Nm+(;j*ax zrm6ucm-Ln=j(OURbDWyE0E4#xm`ShD&w@WytADTuVbaxIok|mT14RD%5;^J_#{SH~ z^<4Fw(I^0h=351XJyF8t0+6Bk+os??-|lM5H&vn!mQfo z3mm;IC%=UzXP69yh^RgrKy?1|J^CZ`u}ZRo;*LDosg5-4W;~*r<*9kqLY zi>Wp&SEN;yfILb?8~EY-$9rr#`IPN9z!| zvJ6aa_m>sp(J-rDHjGwL!P8bC>TH|-`BTJ156AojhhN+DEGC#4-?r;4dUY^#6Xv@- zaH(6kf!4;76MaOFpo^*n#_j>(o%Ed7Vp02?g!#^?~}1 z_r!Tj3xSoF)G|Tkh;wpd zjo)Q1F7WUO$=RoLS_=>Q6yVCUPbY#X%zwU3KcHDLR(F&rRjDm$1+t>WDA@Jlx!?De z>wA9O97s~ddD3mRBp+QrJj+76H#MITFsG0?pKA$}5iPyI4Yiv$hMA^9H~MlJ4}IBK zUr3fpzTG+C3gMNCLY|)bd(HwiKK&Jh34bRoOPn<0$AC;rtCD@GF~Zr{o6M$g!)WHp zlQDrBJzjpmyTTptv0le$abOB>(GclFnZuFF6_u9C#t&h>KdVfggL1o-TrVPC&SQVQCxoxOT$tYGG$f6}pEDBpCQJC9e8=s3KP@u$cT1q)8jD907 z>SsxKQuP_K47tLd@z&PFu?~v=W7fEIUSFS5`Y)hyg@PzIPsV!_PsWiQlCmL6C;xe#m zJ3r#^lCECMaXu@QgeQKJT*y#uu-mZw^+ysPeTpmb?)ag<{9KTzeHMR?dY&4%>jaxy!7(0SK5(m%=%WVO%b zmFmAcjD$+F{-`dgbV<+X22!^F*pWZNk&c`9(3cT+a3R+xyX;@UWaa3ibBmH_#P06lpGpk^iY82zyWW-QjO@9xOKM`@Fg<=9c2yU2 zn}^84$-Yan9H`mkYwNvmt@a1#Y;NhDt-WJS)>XSON6BI^UW~%A>FL{1nyv?L`-1dF zjyh`9C}5{HbX$Nd=Qha6>(##Xx6ROfS!Cssyj0|VuTlraB+-x+Gx+eovsnpV0uFvd z1i+H?TalrEoH`O_DAALW)UnKqJ@fwP8RO}lOPixQl_%DUN&}gg>jyYztE3+8(6;y; zMwfs@P&Az8+gfPw=r1oXpn@sFt40Qe-CMsNpNv0X``tZ!+BAy)2-JHNg#S{Y&Jf)U zp}a)#h_w>kLiQZaHuLtdvz|%Yra>PXV$AA+ zHPK`;!*wJWE;xKf<=yyHfZ)5yCGT^FqCbC~$&+-pWY$7;w}k39j)s#&jzRbqVV$J2JA4+X4xD%Vv3Y_qv?VyY9!#Ox?MmZ<2=CJer8{_9 z&U3Bjm{FGLuE^KSf|M!;rzsG=GYr@O2~Zvz%2n*cxI|SCdmPJ+c}WW{f8|z~Vzybr z$-7w|s+6@pLj+suy}}PqW$nl-c0DEu>oXG~&h400f2LU>9N8^3aQl0g3zN&}68l%( z92Kl?(6eVe`%?pi(4wPs_fx(2%P^hfDWqBbfLrgWI7+Ez{lDU-hrUW(kxZTI_--qq zdv$3FGK4YjGL^p<+36@n5$T@Bu5YE3a6GOw0@*x}f|V|4U>p}>b+iNst4XdMFSmWi z-0)_?5%zkID<{@|h^|ZNv5r@V%6>O=YUY1hU(S~(UfXAlJX&3xx7_X`bXxofg>-j+ zw}|$>5*vz45tqD{M>N%oI%^Ui5zcl1yh=}DFBqCWl5+;U?lBodt*#>#8wKj5pp3?! zzG^ibVl=`=Ei^6O#^f(9V_?k@@w$qCO z`FBeRyyB1XJ6tt82}OKpgxPs`&dIlqU>qrSMXc*x*YF59my0#(!&+8SQE(spRJ0H4 zwbhc%ptS!cOcb73Ks!1#7Il-?+y)}xuW=NGgp-&bThJ43joiSdrf|1muI@pl@R(sR z+%^J7E(>cpl&>yE*&gV%dX|dC38Mw0d3!^)-)c_y21C_gtrpI=QcY3>?pUFXPS-RN2^+xdP%sRBSY8r8 zuyR}W?SKq>qc>6~l~!rYuf@d{{np0B=&hw|zj=vQfn;TO3&N+|`OZc+Qion1BxPOW zdWa)S-L&^uHds3od-Hc!@35j>bY2P7EN(gOZ?MLdz->t1eYz6s?QlhgcU-filAO?A z9#rr-#pMfa*uRqT|0oj?LkeX6iK6x^_h7I8_)BIOgrtc*fP8a-pQ_Us(ELAI0P3bf zkMXpYwbUPkAAc$llI+e>@q%U5OAPWy6Be_0FsI|%hv)8K9Gwsurp}F*&UB%<4Z)mE zdPfV*kQ4?^=4^6E-Sn@@!ab{A6|3$6ie40!hv9 zyY2}m5xPe@Ol33>o(N&@1)u4(XKZQ!ZEe8}>mA-?9F=MjhF{Agky_kq$}f=Il==Rx zj*c|t&H7?SJ0XbxJe&SJTPl@c0q&-s!Q`gO_zG8@<7Waj(cubPIjl`XWG?9D=!k&+ zHjTA{Sfl#X0+a;Rj<$}(K#T9ld3zE5p=mWUKWT553oVAl_Z?V8Br1Pi4FL}6)+QVR z;i@8ocjjrobI(?DHJi}jBIyeOvdDx4zr&O3XCgUT>mguTyx(!~ver!|H%Ool=FjtJ zwYhWj8n4zeDdyKrNH?O`8u|=)C_LU7tLvO=L=1B?9uY8j|A%^Hh*vSwc>eN z3(-^H?hnM)7a&Yy;PpJkL$;CA3IruT(%af@^V9Ri{WiA{TM~9EF>;GQra|SKVT1kN z^_#z7yxz=tYm0N}rts9QVlNMUrZ88iq&^|vqdF?Vo;j$6XTtKlH}wl}WvyPejU8dG zcsNDCgv-UCK5lXdiwgb*({Xof>2={99s(aNfWNipg^Y&teJalKVQAnKN2x)GNKbyn z?_(JrgcE?Qz}2y*(1eH3#~e@RZnx7BR#zZ(bkR@}hg(1JUa+je!QwEBL@+i{+sxS4 z_#3;zP{Y-9n^H+I`0j-x+l|+zituRq9=8?SOop6>Bu^MBc0D;ycX$abm<;fx_8VVU zuRENvs&Sfy2lWDC(aPpSqatbkn!XUF0&naRx8Cb`r3E1Q4)2YUCiF)e8BsINCu4?7 zM)oa-ChJ{F_;#`pKt=AR_Mu)p>nM_GI(^#D|qVu{o*nIN5JPGdrum$In+ zi>O3d?RyTpR++h0ZHbLAP6r>|UoyD~$RPPN*#+oLuJItJ^i~{8zj$>)pTL1OPOCP@ z9B;s|BfEOnov5mTkJZY^&Og`>NKGY$LIKBIO7&`(+^VC2UDQFvCN4}SqeOXlb-!&2 zgssdKl*)r?d1#+o{#3#5ET9M^5x9lPcj36UHIp<8-D!LU{cv|-5qYidFYRaK$l5u^q@ODmrI(=nqCzoTUzv}snN#nV@sb6Z?aXe_Kj~Ol5XU$iej={cL;pA{qD2T zCw5C468?8-6bhWROk2L@2H~!%lnPVz$rJn)3gw?TR#dHb|M9U;y}n%8_t^@OYDK3w zwuM}ko;YO1J=ao4L%w!Y8b(o^#N_a-)aRsYcF7d>LjOgFuOTkc!zSM*7RCV|n<&my zr~FNRIw`T1P1XMBFMNjyUhzkSm?K>*vqTSOXKUzpILPiF5a2qGa3)E5up%pC%(mtNsk+Kz=ijYP3?5T`2E6`Fm#39iNo55M<2q#&|F{pZC#<@ z*ZwE11ti(GB^45;kpndL&5y(m)5LBwcGko`&5axWfsE{5TFEvfCAHCTAdW&GI<(LW z$0I`$68V!8#qzAuO`opPNEW&_<+qi!-^H*WLE^O}8A_jUq3K)-PI@}P!o+{oWG&gb zqa-vuj8r-|y0K7e_kCdmXc!PI6Ek=m%cX5Bd$&kwP#6#-`UAW0A1IQEO4^$G+Bd~V z)xh#O3;kUa)=@YzDiSxB$e>9Y09j>rLLfrz>n| z$Z7}ACrdY3(^T&@eMi_VVWEO5Eh@@div=(<@y{#`lPrZ~p`nRDvGSjLh?QQKKnCoH z0s|c|v?ClB2gdv0zC{XRr1wlu%|g1Fl2RjBR7@hyf>W$=oaPqV6{vJp{0WuB{Nh2h z)JTn45ah-f1DOxew6d72=vN{Dv%!ITik9|oAW&FVlvP|^Jq7zXKP(wJHZA*b3mIh>k*GGA`}&*KBCz(qWC8E~P;UWDIgK>QM1mPQo)Qy7>Q( zv3HElY-`qrJ5D<4*tTukNyoPBjympG9ox38j%_;~+vay?Kj+!I_c>#{CU zs@648m^IZuk>EvLq9>v2>l;RN2qsu~6)tq9a1{rKzz{KWhbF0!pr;y`S_Z^74|xDQ zFD9dbKM11x2~-aa^(`aw<53EV_vD8e;_tiyKVzJCZ&x{0Ntq|-s2~u*60r-5rfCIK z$Fr~|i1v#0>6zsxS3!rV&ydPgmdnNuN9KA!aqQ96tPaP$@Cc%5s6~I zAP@+lmh*26LPBe5TG7ZT5a-JH9u1iT^vTf|+t8svg3owCH7 zHh8KrRG_ASU~COHfyRZpA_Hpsou>8Pl&W8#uVub8Y`7svK?I$wIge{aW*gPVET*EH zu`%XFP0-sveNN*XGg$PHdk7yr*(!#S}O^fYU>5v(`D7zwk7B$PhQ4&*Zt!S?cO+gEDizXQXkTvb^KEg$T+B3{=k@YDvagdpv1; zCZ;iCScX=w)eAWW>3Mz0*^6lB#5X{ju{~wH*3n+)D?ue|c%qOL z(_E943%R`>Pu0dm)$>c=dhi}Y?k;>xeHP%-KS%g*=~v2$g#Bx$i~$7@+4Q6yMrr@y zf=sLB!DoR0F-I9tddFYtts9U!9ex=FPdmzQ^k%LcH@MEbH(fsfD%BkvIp5bk?u#7| zrr16AcHIE+esfn8{27)I*|KIO`E`3*7|8EeBVktcv-`JuLKk2Z_I)bBOFTxr4&_tt zIfpG*&tq0L-5+{8X@IJVS`2apAp}zs9FR2>U)q%Xln{ zX#tS-GaB%Hc!+KTi^Bc{U+2g7d2jK2m(i?Hpp-8bP?bB6%^2LcDd-f|w@{)ap^S%f zcW*g3c!4HJ?F2QQ68{Ks=0g_Ek)t@wwtycT9un_(en|w-G-3z9d%{kekn+#K=Px=5 ze#nDPqsB1Nzt55U7x<|F2Mp7<_uyryKjWmOUjWLkoSw-^|DX5%`{$ROFn|=FylF_u z=RbddM+$HezuWDH7W_%)HCq{Bg$R1>gz- zdgYsn$U*pTuYWzh0sZ0gHsg|Q_Md|=|Fm6f5Pfv6lNpNoXXk(eLjWNr7AP%KWxm8Om!Hs5AqdK!U6w>Jil;O7{g!M`di)qFXDOl_@GV<`2QvY zm=FLH&kvn1&VOg4il~4!w_cHr_ZQQp<%Dq!+bjosVMo}BOMI$WvUXN+$pYHF+ zwh}t9ZjVvBsN201d+nZA;o!8qF5fDj`V)3WRbv!Hu40$EFg?@dT$&_tg@iYWWYf92 z`#R|ma#F)Woh{^Rtt8S;Y51OB@i@|UYFx@PIDbMcwK7#m(NM$i%{1YubJ)}U`SITf zJ|HLLvvvG`**%4N8HBvqRHeMALseF93WI~>irp})^zmnCQq?|aTW!v35<(rd(Zqm}380GP+-s>? z(>19{Bu5n++oyWOr4_N&@NvPYH%~K#>E!Sn#gSZpjy7|WiBrp|W*v%AM#;X8*D7R^ ze@4tNI`I$e>lKEP{)zn$EMcVoib9#R-1c0AY30sGKVu31JU+BN{O%3(N^c{5qJkzR z1Zz#gpg*z5V+mtPq)}yHW0_Xh?Y>NPvuD!w5*b}60I=(50{oi^icmf#^8->oRIPgb zorkH}Z!8n^Yefnr{9+K=+6bN*`kW$4!XM``{)4yk-~Gn{Hf%>8Xposy~=#n ze~xwC4w<_qI<~N=a~-;rt+VZELLESXb?|P=?u!&i>z<3)hus8=)b!Ls2i+|HW+(wu zk5DW*8D1Qq#$^vC0|Vb;D1u{^YnU3}Cq5l`nx?NjdfhPfv$gVC$Avap( z=tu^`lD(i*h%kJcc6!f6GS;@9S|#8;!1TKQwz*u*v=_8j`;vz{27XhZe0S{hCjAJT zK6j$Y5LUR9GLtJ0CCv<0f&#k1GrX1WZGRX5!vuk*;dCl6<4}QqMCsJaBALE@a&crpzpHF~PL#h%cb3zXwB!4gP7v;b%zApQGvl_+xiOOpFrh z3WkpU_BBc%o)9-alK06S4@%I|`2qhZiOA6DFa56%d z2iPZL)buQ@4+rwQcv?(lEAWYDcm*a&t z1_ZPWXp2S!_Y;dp0i3DhcPvy{+ejgIPkf%S$vrP4OfIZ@%%$nm`~j{t43}vj_z8XF zDzEXJaep@z4`!Y8Vf_-QPpW-(p7(?WxGY9jy|_Efv5xl7z%LDJgq`xBOQxb04VU8w9b z%*9`yY_WddKNT(1qtTe9l)i{>KjD7x@#7)goMPvzrkh}xGG%Fgk}mLo^7txde<-KR zt&-W3b*IJ}QS3|Fp>wH6QVx!j+jEj%H~6makM9q!E6?)}5+C3Z27dy#Xi$(*A5aiX zNzz!Ogc72Xzh=BAGjP~0BM!J0PWG8&+zFqt2wNQm143dzX9Wg$er`dr$ zFPvK9?S6;k0L##D+o!#rL)TeBsazQGDwOT_l-`*%?>_vc$cDAgYn7ieH&^Qq3dg7{ z+SMNnAS*FMkE`+`S6A}*Q_D~2u@qw8%3u{qhZTB3uV0KIKYL2mm`;R;cr8a@i-Zev z>E`SVVHE^b=fmE8gG(~6u{5VOCN@>^*mR+fAslOAY%)fnM)C>?mHKD6g8IrKKCpp0 z(M?FUt?(jE)SsI%O@)yLoKC$%06#5%@<>r4_hF?gW=v3puW*nu5xej5FWM}#SCrd# zZwT0UvMPKni?1X9*`bH+V9kLWraLp{NNik->1a8^zn3;KU^k(ITs0+zfzzG9fxG(6 zX5`>*ZgWlDL}p$5?2gDxy$cKkCqf5jFfw3f5nDHC*AUB~2xZdrird>36}BS4xJI>M zBHoq~UWOnGtG8`yVoA|8y%k5uyE3?VFR+B%=2T;Jl16@1i#0L_+}G;vwvSH=E#XZb zF}_UAIsonK#t-op3Z2vCv6=P5L$DCKu~OL!SD7{;3rv|hjKg_ zU)zW7g7D7-o9j6165G`in(;XybdxbNu|-T<~CEEtQiU zp~EI{z$pAit#_I6sc1e7c8%)0YCm6{-4IKgM})~amj@@TOQC5yAv(!NE`5W)S4L~_ ztje(8-WigaI=k@^)lg5mbXryHFKUzvjI|Ig6>|u$omi&jM+Y8yw_|4D7MkQV?c$|6 z4wlax=5jW|yjGC*Blk%#vJsO8XKYfK3=m7fn|om0RvlkrK-|f|V64R|&z~Yf5c% zA9ij8uIY^YXqGeEKa^dvA{FMnH}#wFqP)kGh}}vK@p4R{Fl1A#TY%I^80$}sWkRoI z2!(53i5_93a1|Uo4)bR8Dvvqj`c8f!OO#cKZ+cE~LvEg#qmfCKc@PKOa&>B7;Ql7! z`%SwzX=d*gN_Z~Su}N-G@RUOHP+KqvqSb^!uMn0>^``sj5u+_JEzj-#Gd4!8U)y%# zB&QrCl?VK`bp9pvnaYoIEQMQG@N#m&e}>RoEGT2153c*Q+|!+UUo7Y=cIt`Es0K$$ z_XdNQYhm2;hU5WT>%5JsXuG>So*zZ@C(}Su5*b0;*3$SOuhK(mU-LDypDPfu~ z7kAhD+C#M1I*TF5F*aA7g^Fnv(Xci+5KK9mC}kbQO&q*2?Nnr&?N5}B9o?c$LmW?t}*H#}M3 z9b2nS&hS4k7esvj4A1@pkRE56nYWvhn=5vA<$Qt8;j@(-fkc>P0;@m2j_>d-y*EK; z*9$HwC*hxs)dk>Mp#?x8ou@ULJ-Hi#mKQzIx*7x7@@nB*+#uDJ7>%jthgr}OG&;G) zxbt#}Uc?PHc*+u{jxa1#4IHfqM&5+NpaOc=-0-Q|eFY|u;aH#L%1$o+^T<+i9&?5@ zsls=Mx4lJV@bj-s^E2s$k?!QV8`W-ipt$=-zp4^;p?FwBs-LCNPdSo+zqNo`ok%r` zOwhA25j3}ED&WfGjRr_Oqbia}UVE7RPwr~WyQ`o-uWAQnybrF2EsnqYt3*~ZM&OWb zQK%RqhKzqm>SdXE)YYMv#@&W^VILL6lM@m2L|5<|O>=b?lBpIChBE0-+Eoa42_aYK~_??GMo*cEAuIV4P&@9-c;a4v!l|2jc|P!qe0+NH`cu z%kaTPA`n1C3X06&_!hZ$ZY>gbDKAc#8ysuNICgAcWD%I(jDeR%%S<=GAS{_19IzY(yU7JOA_EM#OThqFsKm5udH6F(z>mh?)d!fEmhaYiP`~FO zkFV776ad~N^O2dCS4ZyAh})Ulj5h-y?Q&vTjX+`4Fok?kF*!U%XesJ&*eMAc>)cQ= z$`E2oSznEE{|a9q)C83z(po6_(zxD1V)0y-*ZiR7W&)sAwC~A28Pa;Hfg5`B_;d~2 z!P50WS)vG70m7IvZG_oTFfuaLj7&nh*TC-#ADyvEN*cu#M5I(68XD+_uo1_s#6cDRW5-@61 zw3}k;3=LEUAlNHl*i+(^onTKdpBCv{m`-GmwiD$Fr_;JdmFGC$O5 zGe8bsimMgz>l(_$y0>0Zvr0BKkZxw=iL}MQ!_=ul<-JkJ>T2r`kp-C~_8N-)0_R-| zFSga^#ay*QC3z;#?xEFi?4?9Mb!x4W;>sZEhijmx#D+``emS_+h{6RoOc=-CQNW^^ zFL3fxQ$nitiULn@b39@W_1R=JTlaR#yYS#HB_bz}k1uY$ajYnQ$!(g6`Ig}Nw^32V zm!bfXe)s@fCjj|gxO_9|_@g@e^6n~5!iGhjb!2<-mWS4}kW1<@!uPYDk|-VRDFhN5 znWii$8aGf)dPnC$t#n4JQwfMIQopv_d$crK3SV-&7d=#F8{9kVDaLroP$4=vph4J( z=IFvV0CY$Heq{MoGw{UvttV?s)fu(b6t96uOCGdA2ubeD32fcdjyS-3C z6$hdQ3@^`=I7?wuq4lUq#qSIbV82;Hv__`&@v+Nd9BD2l6bf7?)K%)j&0WNXTQUSd zANJF#7Gn-$YzBb55ZSPjo*2aH6uL0Q53I~F4TdY9wqijYm)c} zjog@UueC@VA{6Qij+vYuE_a2*H1nlPq?LctPUyCLuRU382=g>ON5Ul&S|Nwnwd9AapX(H6^S917g-?0i;U2iY6t-laX8NQ`>|Q-q26J`MrI3& zRA>_}G=mzq;NIQhT-d=4!t)B_?1qT8_sw`Pf&TLfTi=W!y-0*|u(xv<&&s!|;{z1n zo)~_aRA6JO=^SOvl%XP3lAIfDA`_g;oeRkxvYK&O)EOaI$$>eL0}|GaWd~p&BbDW zr$vhE`fn}(eX^(`D}A=?89blWo4rrPfx@QBa)Yj<-5Fw&YtvMVABlyyo0}UMQah^S zbvY`C%2}>Q$a~J>TPK%#s0;MRX#5Mhd@7rKu#+eY4fb6pnw+t76ZzbCBrup48J^OdsV;yzM6QphLT10rNN0>=PZjmN8L@~UzB&5gIM3@niATHyGKf>Wi%ZgW^QRtC|HD%?;IX>YPa*nI&6k8B27OX`IcWz3+f(yh zH*2wBS76)KjwezBDXhdDoIP873rNvr-KCPA>NB~kQ9KX5>;D~_fVt}DbKviE1gfbl zjpL4{TkAkKJq;h5EV*^9y*P4ZU`2Iuv`Fnuw>H{u+Wj?ox-1WQKcrBB+`AncWUmay zLki7OHT8Atv7e^c7QLw<$J&hTFxapQYnq#zZ6Iw%aI>s6BNE_tC&N1?)=vi@73h9l zBr}=E(8aw%vsUePqhxf-^tZSZ9jVfWb=M zsJUm4BHm+%#R)4^oN@wcApi?Iie<88xXF3t@VG{yD0!MaWlfn{EA_1TV(|_5=EsF5 zH6~XwP9xEfd^IZ#rTW#@GE}7QXTer88Pdn_LWObSjE9O|>pdGCDVgGp3KEezo$bb5 zdKUwhqM509`F2ZvYCFJ0CBUgm)=x;NCO;M>Qdb}0+X45I?6e%gK&Yr;M zFw6%vY3NVOxIck$()kG2+Miye`8C3)*6TsX+gIOStY89LD&(N<)2lY4XhOmw%3u(b zZL`xEkS)n_+%f&9%#H|prI78N0>0#iJ4A#e`9^&i7(+bAw{B}4iR(%GVQHcJohO}gxiR&ZYERtJxDrvyB2AN#qE zvXrGrE%RO54px3!HaDz#P92}xi7&|3&-{D+Y@`$*i7f*#&;y1T_jee z8pbpFLl*t&Y-f_DSp$DO>KZ-oY4@sN`>7^6=)z3?XAtAKVeh}E^bN<_v)5TmoKAy9 zx3>qKkDs1I(o9@IY4bIl_R+f6X-g_CNrq$Z_Tz!wh=+KNxu18Hab}BckklSn-RsUK zBjbJj?>q%qV)H(~7y&(D-2sltUiFDvS=RN>i^ep3nk$o%y7Fe1-TFzS2ci3^W!br(fmIQZj9JCwmCkvsug@@Aof8&IQA} zi*BZVy`c&HI>-odwfJTJ5ytqin!KcC+|XvlpqGbhVu#Pv{$!jBQ${Pu<8-yC)bir& z;UOHTWr>Fyv(=t`JsA8okiN{*8OC)WIpX?4$1BjKz*(){l-ZqaePR$|00A0f=GSNC zA;$(dtbv&4>Np3putG69#<*Va8YDmoT((GB?+mhHJsMOQ9AR~6Ap^Y3e#>QU+2;WR zE;G{7^f07**0_B+ye|d%Lc7x{W~F&{=JITTR_;>z9%S4+f!X$LcsQQGlU0;slhGB- zl*y?(gZwHUtyPx>h~FvrRjIKpiu_BoL?sot88F=rS*^%%EaH2Gt2Im{VJd-zAipDt z${r)CrDDY(V+<1B>sYnt%W7uchL`2UQt(&GD4cK!0)x0B7DygS<}=JF5Zr7zxJxfe zgr{Km7t-aHU*^wZ9LO^cb2^*e_yi`EN;Ne)GlL{RWa$*6tdQP!Ge45fxJPbZU^%C> zPUsgI0?iV4on$hkK8l^`E17>PHJRV6iGt^SuEli&HtCUuZRDzV2*0)>6 z{r7x6g$T{fvD01sAMYzg0hzpxt?ZH$8qL^!rM$>MZ!qB<4fxs1Z(Q(; zl7Q@0>zDB}?UC+I+Ar~Ckttf>&7qT)zdm8c)pmcSa+I;d5b$z5U^@Mz+;7!C!>}+g zgzSKEX?s@damvV=0VP^d5-MCGIpl6_f4Yn=wS6zQ;|17JZUuJlf9#DHlw)HN?^7H- z=BxCsQMQnI;)(UOx`7f2){2ab(<-b9$`022NA|QYZ@$LiEBVH$$(Fq%RYIFkUmwa5 z#LA)7qh;d!A@d8lZzd&wBKYHU>-+aJ;ZlY6*DrzfR1vJcWk+ZIca6*Jceo)QXb?9n zjN|++D>bR}VAF$Vw1ozhV?Rd{e&gEI&GE?^i+oCMtYiFXrQVN?BJ#`1K$waU$cIb%!C* zc4Oyd=($bC_p|?ARg+>dwPgQ}!Z-XYwSrGP-z<+{eWXv{)ewb(5K`|HSWY~BY{q-j zQ_YOB7d4Q*bUZOUHcw5_pvGiVrkU~O(NeLeq!`_P=(-r|$;6LoHkJT~k^Gon2 z9tMW!BA2N_J4N z7&*lhs56g2M0D$<|Je?ISaL$XndJO(q#ZqI#g9yFm2MeKH2iGh(39mO+u2D|n%rUqi1b-%pi}C6&p@1_ z@s~RHWV;*tv4@w&@>*JaQ5dP?Un(+?ERWlg4v#OME}e1P!r%9S+yn1MpxSFQLv(7J zvGazrSUT8+z008ZZht8pQC=_FVr8iwa>r1#V-?W)5qtLV(&3q4clcHqqb1l{3#|^} zNN3h2w=$$GBG(bf$s!R~(%Qf23j%;0gIK@3c{qh-$;#dMp=~neNAlu) zNmB3#9SabHbI7*I^%%ner#2kOJ%=@7hUV#J=~FwuwFg1sxQG5JS}b4S62Vq~8WioKix1=1zog57uGsJo>GD% zN#m<;CX~rw<5a4Q4ja?t;!1+l-gr&Tz?Q+qrl|Uq|EV1* zfeM%RDz&E|i~{*F7lGz8Z?4q7IyVzJf8iOAnT;-tVFYr+1nw`yP8VG~z)j231#{fM zu+|5B^AWW5pL1yec`LxuORZ@Jz8iG>oegCmuPW^Xs_C?4*fR)@p0IiPF3G36V|P+r zNprYE%ldBWySroKQkCRO`p85n@uYIHAh>0RW4~@~r-7YR5#NpkI_C&>$dwh<4GJZB zwev!vPty3()VYA8zZ?6|dNw7HYA;-=&^Y&hd*&W6-*ADDQ0Y5dZ$*pDFPl^jGl>_2 zXWe*^_TkO>T-Z2fw3QPpoM<(gLqHP`bbk^WBzm3~aZ^31{Yn>&K?>S>~GOK3S0&Z2e1{Fsm1vzHMmP4TSM#tC= zP|JGN;MtB)m~=OFM7Q-SSA^q)gPSTHL6$MZFo2W z=T?w_%pQf7IGln4yb)xRZR;(Pzd`Erj$gHB za2_{`0fd6Oec0fl;JY=nyBCL5p&zU70r{b={q zSWSsZNc-|OFjcK$VUeY-mhx!`+pA`Zw0Ki4Y)qrhU@itb>fi@p8cmF~V#*Gf`}mhm z1&Fk6xl0Gr0UU|OYRb+AX;NrqJ927og=np|eK|*ynM8`3i1xc1UFlQw((TsX7&xZW#B(Mz}~=< zXd#mb={UY@ikx+Xi}uyT)d)u!o@iLW^ZDsSOAcdD!Uf1caMGQunnhuk-LZ*zG2*`Hzt-C1I1`km@Z`n2O z#tQU+c+FIn%Z0T=qCj%nHym#!IIZN%VJBGP`bZNU#pp#mF1tF07q@*I*I4j;ZBvCw zhWiUEjm&C$-KVv>Pu3dBU4m?{hBfod2Varuoq(Q#5NX9BTb+H|_cIV;bEMY1a?w|c z!JjN7R{5&@LKIytlvMoGJFXvl4s>ql?6n$T&MK&O4KV8C8uLW!iRL%381cl<3<^nCvL*J284x%1`9yHAra zg@e-Mkg-UZuOWt3C;id6RLjnY7_6f83m)%p>l_%Rxk(oK!s9rOnI|l;Y z*$w;?DW*v#79|lG9PL~!_PWy`sr@5#5-mdoGC8=Q{@9#+DcmvSn7Z;R=CIAX*TIQd z{z`$($5ZLlhJ<6=SoxXxK4Hy>@AGc1n|Q%WGY6$6S!iri_!nE>Oh%Wx>o?ViYi1b~ zrzX4EUCi4O`(X^iA>0(%J3dqk1k#gF?rR(%?au%b7 zj?0~0OVU$)O|CF_!D~_w|C&~bRh*y)KY+iuzoUu z6#w|SV!Bj&j+o6zgL#J&?$#1R68m-~_}mRAyAdW_P$DrDXl<@A^|=rD49_BGMX9$Z zAEzaX)^1N9`5;w3`H{$OQ+91Ka-GmC`*!ds3c=iWs!%n^R1k_N2FfrkCCG`3bJwvM2Z8;t0P+n zJ8CB=HV>p1N{U?|w)|~tTqf*abV;%-)Z-Gyu;l4i6A!t7=|@%LOk}Y14NIULD1Q60 zvAZ6?MClAr*&?DR?H7LQ0gt263rq zxIQ(mdKFJeqfZbGc)$C@Tn11sVwPjIA$r$2d3foPmYZn0a_#nYsI*z?x74)TVt=+CpYbqc1Dav zMcJn6!38v!iiD;upSUQJm^|R^j&#sN6gVu7G?EhQ3!MQa-e-XX#~JN+IR=eoY71oJ zhGIo{ZkZw(N1{4_ z!W3?fze2nQQ@~%!! z*2Nz)=v7A{FsuP8{N#sAI+0OQQ%H_pSR?$F+zT{Am1+!>0o&wQ$N}uiPVMApu@Bd%-+JdMBY&) z6QtGb=%b+kqi;AMxq5tKRq3&j3+Wu~f9ybfP%kndgsgYjT#6^czs)&FUtQJBMA%6o z8ythP7nz43G`-o9Vx{+0gOjMn8K)iDD$2e|g4ZI&$%h3Tnkk1rIRn_1-h}wTH}A2& zsB6f7ck|LweXLL@UJ&EBmf<3K&e=%{Hue~4>HPHTYZ1S z>%Wmn$PcAJ8dt;rDVi_c2SZYVTN{7)nejig_V62+kpKPnjzQ4BD5*mRf6~TA{ns{xV zI%0tObbTXjuApQY`O7ag5?PrBk|KJe+!>ptQ zG;DnL5xM{4!(N1aNQ#C*J|+DJhaarJe@OaXIECto@(1+^D!|iB7c1eBKZtx#e=q;Q zhi#CKlhz+X@x_0zSn~Tz1j0W={(}Pod|)Sg?0=!}1qPVU+=o^yCQUp?7)%?7MoC$z zqdi_r(!c;15ykqZey;QNZpK!gmWYA?m)U7@`m0a^qMVTuA*ZP5fklbuh9`&wgKbE( znW2%9PvDWudOCMNQxoxQ{q3Z}JKT0c`rgPcF4u656`T8oJfbC9R9u2D6S=Rg#vWZwQIxFya{@AFqc5w#G&K88j#n+Y z!y9G4^`MA+lC}4%D%I^Xz)fML1Zvy8{Z)RhFUN;t*v7M;h%0W3g-;eRdilmRP9*;L zY=WEDz!L3pMneU}5#}h=^+IUq)FdnylbKDSumQsA&|t zEIFsRcsclf*H)A7$tC7sZsIM65#@~`K!(crYaev%ZB_i7ap?tI8j=K`IAt{M*m_(wyR})z62Dk-+NjRL=i?d*c!ur=`K^#Or)yi<1pkH{dIh32Gd@w z+wXIF5|AEmaYnCgNvVgIJZBrGZ*MXoO+975wHv@gCL#h@CdM#2E@x@sAQgt0&UkxfzfS%}B^>Ug8`DcjJuK$}0 z@HdhkWWceCF?(}Gb$wXwF1B)$N$Le{O__Gpi3!qL^LpO_q-m$cK? zv>ZF3wt898e29r>;wyhI9aGap{oWJzq#9WPcLui{FCIk0N$ zQt9~$k}K)T^rkH^h!StRp14jJ@All6TeS@i3czMro=4$w#u=SQ;Ur;`g$*@9cEf5M zxjkhZ=_(HfB-BlxZmahl?Y~Wjg-PEm^G^{V9a`Ks_nX*OPE|%S*gPN{xiw8K&NF-1 zB33?`gPqx;_e#GHySh8|OL9Grjk>;!xS}})%`E5|DCg7WkJY-(yVt~K)K1Lwc!J-# zz1eK2TfGP1$vltc_l3VYHI8|;)_NHezCozaKLbLqVr&Bk8#ZSi?Hk^(^`h8ao`g@JNcoB*Cz=v=n3((3bRo>O$SuiQuj;<4KCw~wcXTi;OH?*H?9v_u zoD{2EY#fMInWjKYNWo=gDniw`#d*RaCwF=)BMCLzUr|oKIA4~ef zE+_y%ucz?=;p&$@e(rXX6Tay>G&9|sw%b&4p$6w$mua$9!rQZ8Th9|FI<>$XCfn*( zB&9yew2A(qk`1ODrj_>c4{o={v^+~&^6;S?TY;m$Oljf6nD1;4-S=Hga%)& zJ0JwrkC%gj;`_Ikva!9NC%gHu%O-Sm+dKE7`yJg@v{-rS_1i2hrTJFnCziMIShrU? zXc&TJbk?;RPDj#Y^E*x(yt~Rn01G`f^OVsa3;jzVFrU6pMt8OO_({UOkzKoLIHpH5 zZYkQ-?AG?^;Vecx#A9wLh^_3&)@He#f|J8!m7}gZXZ(Qp^|>kBK+u{=!2)6#7ffL< z2wgvRNq5feYn2-x&(SM<#Xtf~S#ICcoM!WdV5m+8q0%~H%{VQ6cxWG6NI)>POW!JHD!;%$U3 zXsXmaYp_={dSZLP7=MlZjBe&d8Zja3lOf_Q^En|~C~+L`3EF}9Qh$}bA!80p?)o5| z64Sk3$!s;6;M6jD+f!S`99TdVzDjS%#HKSQC%FtRHFm(`3UpiQVeEA$Zs3@ZevTFZJfI z&*Pnfz)6d7fFPO8ES+^eH)+i&l??vFy1ELj?pR;pC2^^xLbHuni%U^ZL~=i zTBA8y8_>SkoMHjx!nYf1Q#oAEh_d665e3)VO=isn>#f04@tqRNo$6=*3?9y}^>#MA z6o={9J-=aR9vs(D5My@Cj?Lw(rU&jMw$~lTY@tWkGIvDkkjK&<%~rD^%5fwOo;qY( zsRNQWxvaE1erhLnM_ZW3R7zVv-B?LAzZ487-+1F?k=Y$ra=2D-_8k`?&!XIRLvvIu z7V?SIA;!rub5~gjgX9L4t=gshQlsFIoHuEbf*; zBikK}Hu;WKvrdY8MCDk;@^LND8s7(e*^15Isa*XD)Sga}tSaxK9x%!@Npx0WIKBD_ z)8z%^9RzF9gAJADHI4aT5osSBg<(zwS2?e@V{a7@YgqS=TBv5cxkk+q+7Mu-$fO&o z5kH>@;=+XKTD#zua?##;bf<3uH@OU3jj6 zo(9#?;u(yY<7&DjL;#$j6)9n#YBhzBOzC`Y%ey#wlTfK#&3kDxLrzyeUinv~vmB=zBjv8v7M%Ev@BX&wot6_MC!8=Wb z$x7v01Rw&PEv0pG>*#Xow#|py0@7f_1$bP%Qk;(E0yZD1-PLw&O|lBzpRBdJN<8m_ zRTpy1#`c^jF~)u*yVyy10B^@m_%lbdHF~PonJ_H?$3!0;C=}?cYH`jJHrl`p6i(>R zXG{Gc6`!1*5@?sCVvRZswmHG*hvgEFzuR@IGQ~^WFrRYl*20v$H~GFrM8j{p(*at0 z&1=PrB3!2w;1JO=HPDR9T2Ne|zJ@Q(qg#+sX^APdSU(xj{0uA+SCmtlD>amIYKOIi zD|JfejmsFNp7)O0Kh`F6%wWTgth6ev%$?nk91;sJ-($+#KD;N+gRS#4-Fl8VEVI~~ z70M|dYvAVYMO2%JyColosZoH+?tC2K7=ei1{_dp!de8$u;(AtE_V{G0)8C~yAR+?GsPn| zYT`Yxasb_@*q4x%28E?zo>M+-w&SyQV&VfLBICHDX^bq>f9nrx3kC6nrb=--5?SGs z%*qsjeQn~>JYdj=rqdn3S6mR*?1|yMZae(Ciflg31x$OQe^~5d)Z6p|higU1~ z zVuqvRf}^pDBL{TN#aAslbBWw$7k9J~Hf(%+W(*V|rWAJgJnglZq$9JetG6fmu=5#0 zaC=Z~uHKw{%_bZ|fdW(UwMbg03R5v!Pnq5O{H=!!`;o|REG&z)V~GRV5=qD<((k@J zkGX0#F}Y_9-aF!VyyBuc1tF0g2yknwc9x2Jt*br{C|(O6hB!LOl<1$U-y1NWwht{d zU;pIz2>B6jkgsu0(%M8igfnSPmgW#VQ*NB^*NMKt(8PioPiILqw#`EdUDgwCQJkou zn@Y2{Mxy(zJa`@Np~L;(f``3pP8d}|;EHI|#o-bb_(^vl=2O|GI}_Fs);thaW5(RA zPJY&0cnWSiN>5yBImxJ5mGzX;QdE{!??r+(w_hr-IlCV5Vbg+|H@`AN!~nuKj1UJD z3=>P7mYifc)aJ9p(F&v#TD)GtI15{ctjp;Iec{27?BjKAE72$=vNOxOgVEUG8VeBV1V3Qc(f)ldZ4u!r+isJkR7VPa6En^9|1Nl5a?w;}Br}SX* zZg`q|h9Hf`w$dDC{leP=Zu7_tTbCNk$$bDKZIFG+o&e4DtOCw-p13hSqo?tgu{LgV zomq6FYHZz|Zp8N&W=r`X$@wSl&drg6SUR&w4^SE^b%L-VwVa>>{`t|AVH9%-4d!A2 zgdSpAyydR-0n+eGY{5gVmZh8ci@Pm{Ksk=EdPS+U6KKlkM$>x)o&Ay?^o2V$tP-TN z&eX$exGe1&T3Cw&0ir9`4z5UqxNZ3U*19f1E)fn8+o|zS4#@SnIi3_(`}MyX%tGXj z(M>Tse~@WnEPA8O<8aQ@X&}tzoYh#~+8EUXju|O~O%MMteP|ZF6GV>^Ku^VtZnDY}=UFp4hg{+uu3o-sg9| z`)7AQ-D`KPy{dNA`&Pa3-Cml1FMGErFs7AKZZAf(4#ro8SJ%ue7g}gM_KkG8T!XS6 z??Ii-0V~hW-QRL#!oPM5b@EDTvb@rXw^8**fhRHoBK`NiubRi2+t)A$ODFf$YD*z( z@|$ixWa+9`4%Ol4jpQ>>5+9MFNmdb6$?9qIs1r4NQl&iDm>sInb{s?%MJ?blta%O> z(r@S{E#%u~#4jzW4>3Fzv)ida?2?P6WA%&{(Z%fFB)r|=>MWiU)y*p&wEZ1YMI_5T zyv7lX<$T7s)NPKxd2=%QL}BP;FFdUIqgu~FLNSNPEAA(-@=gRTepXX%rQpG9P{&wa+#=zc^Jr+LNw+Ay-uJ7z)2P< z5HQ%$;u?1U3f$qEO^`QpEP^_cakn=2mkS@AZ>lHzI3{nZSPreYAUi;)3L|hdzOXlM zSp~bH5@aNwjz-?PI?&^rP>N-)Iv*}B9&I1;k-7ocR=!)i%PAxwT5DqC56^johlRmZ`mJy= zg=b;#d=rz=l2R4?QP19GIpIN9UNG2~T{vo9l-dh*eQeL_#XOi1<%P}RPk6&Br5*$u1X3D0%NMnpDu(yklg=QJ*K0=XUH0J+mj6kntBks1v zaD=uUVG)|L1}OXq7$}Kz?b>KxjGfLzio#z(!Xuqvgg$C?w7MqQ0{2<{G+rlF3AwKj z-^g58!mJmjeH+UT9nVk3zV~}ZJ1|}uPhx0{$YBWI-s7=1uV@d_!m?kuqYI@$1>$E8 z`27u+HQ)p)pD5|B)CRQW{)`eSsL?e#9q8IY3L~=k`HErBVQi8Lgs_!DOZA zSZebjN+Et`iPlE?(_zZ>x_9Pq-lQz9E>=Rth5X2_dyNyOopnIzOc$)nsOGo#Gt4dk z@S5a^`!7#n^6(gTP6pb~H@?Hk?>l#R@GI<gRJMh^yL5aJnz%PdJ@^L~-f|;6 zh$U(qkD=G2TJ5ZT+N=4+=~ro&D%QPkm`vs>-;(eaisiXw%w8WZ?!~p+(DJ=FNSd4A z9yt*V`|YR;t<-bO_oX#adgJukxe0BD=BYbt7vxB`c7#8)yR*NHdEPk>D=?JDFJV5_ zlK=H7$`%Awu+t<&8^r%#5eNi9bb||O`7!K1SH;~e8~Q!cD2!s0qt*DJLwHZ5cK+mZ zwJhWUQEXBg(Q!Efy6$E23d;iME^zQVI+l%=qxl2N-X_8%>bz_WlY^h8tb)(|T!Up}h*uBPL>&nx&rkbVN_2}En^)pvW!NA*kSv(u zsYnet8UK?A3KjC%qpWypE z)X7X<6i%&uw$r5tpZHmXabBhiE$P{gbX!#Sz%V`hPsL=8$+jSwK^*V6vqzAoeU`a9 zf}MY%{t3eLQVzUqb{#YtKtb2)Kn~tLB|blr(*zIHY-CFvzSXnmLx*5Dk-l#`;waYu z3aSwwFUrW-(tE~+9z7UFWd5Qal)k1=I@vmC ztWC|EEf*1J4y*$P4c*?x5C@CxZO3OR>?HVkdRn$=NB$bkV}ail_G>5h>QcH4X0TBQ zaE_$UTh1mNAO%mWaL^@7a@wKVTgkv$v+f(a#J4Qkq;dd%qw+i0s^B!XMD3QRV-LQ! z`(tC)kozL>tD<*J$_u$f026@<#W`5^XTO zA$+H46!h3eov1)-Nr>YfO=L+Bfl(tw8yWvHG9$d^fiAxxGQg}+#YRPW_uxa}32L-O zP&nyeOiL&Q(@OdoC$K4AO^jE1!V_u7Ua83Ul;a+-Q?*HBP8c@mvSTQXJId8*#&ddc zXm(a&w}f3x@O3t|xFU-wKEDV;^GqM6@oZk`(*_nx<3Spa#l#(tE-@PiwtA|nXsEv) zLAM#Rn9mWl7wEA2p#!H{Hvalc>%o}P+snSN=@E`6QNB|t;T@HMHLQXsS!;bX7c@$0 zZ-j4kTllh(T2_xYQo87RO`AD@`D0)6Xj#sKRs1^T?E<#ke4M<_nNn9YRqpH&e83`tyzE#sV&vlFyWmL6k(v3TM?ga*0}}INlTlZKkdaQcoIKzQ=CS zfLwO*3dg)E?A;~Gikq7QS4)ipo>frLOXJ^Z?fONPkBnt>F&MXWG92#Vk+JH}5}`)( zy8Y{$rw0m|vSRBQwoyH7_~g8S%+p>-m16}ygw$0~9~1Y&>g0+n$-h~M?;eCZ4hZv4 zh&VH4iscl45Bz-Wk!O%Ovska-3(*pYzqW);DR2X$19D|OS#|!j)rb8)02UEcbGnMn zHT0O;LIxQQuB4=V#o>#g#C3N*SDe5P;=mfJC)KQa#Pic_MOT1g{ zV%ox?f^++a6ycBv6(QMg^4qI^PxA|8lbRvWDT}**w0y#lKuC?TR3HrD#uR!cLcV%g zFfXcX37p%CUh?^*`U0r)!@GJqLO( z8R7GuY{lot1iDVvqDNPUgS$Wdc9PKxZy%0F3?m?nt5wIYDXvhcej@wfSjfg~u^Aa{rQPEIv<^ z{&h57Ew3Y3{^ZwLaV<6;Jg~ME7Yfd_fM5O2Yv1SoJ|%Z;`=xN+BBXEgc9?7Tc%=@` zQSPKZ?kb0VSZCri6%&lPx%9EnZi1o);p=MBuTfQrYf8$q8=5xv4WqpxZmt4adXh+A z$>H*1KCcHq6KhUKhBj1Ij+kQ2D~6T!ilUJyy*sLF<`K0-pyq2a9*!Ti%H@|BglBQXQ&pJox3k zZ-zvUM1U{IFC~|+wJn>zy;|959(T=Ze=^w~2!OHV{fQ$#=Vp48t;--DPa>+O_nrM% z?!$&BZcjeY!Y;*=kCxpeaH-84o=eWiDq(Gu@a;5PlhsHQZ~ViKcv*Ir(xWAQq4VMQ zSS{H43VW`Nu#9t^yRP7vin=uFWiPk~E^6;N8qBf-Q(_am`CO^{0=$+vMo#EcOwOr@ z+^+?N+zL>sC%@JokjiC7YZfY(XX}HLVcv4xp{NkjT%K$^~W0WpLm3us`K($zcda54gzJsf`79lp@*A{SySuzdN|^U9p50mH%q9 z_FY*6W!%TFD_I1BaxVXFNL+0HQC-<<-T~BE+ds1dOPeL>Q00jnvM~Hwn;Am}qzzqg z(kn($f##54zi|%{7Xu+6UoX8H9)ITR$Hkfu!$0I}Y(gboFZKS0yT;eq3Y^*|vT`{U zJxw>OnKTo5QJE<=0eXr$Xs9SWI5R%y@|V7U?{$y$q z)wd#>e5ap17aDC9&(gwJyQ&9!Nm#dY&m8^36^nw-`R?xH?d`+N&v&`iX6Aqi)|R=X zqjSXPiN~{VJ=bmPG>S112_#ul_fvPg&F2o=c*Iq<&B4rAZ7n`|Wn-koJk2G>ph1VJPMxw8G$Cg$w8 zo>;85C2%pGEYd#S_A~c;yRwm|SI3ifI(^{w>$O*J33Um7F$*!~PIW@iraFpX5Ka+j z7I_8yV348^FA4}TU)b;1n)|~4G9b*irm)3jjvj66v_Pg$h0K;q3=>^rDu}XP5<1E2Z&#@vDzg7PT5ba3_jn zbG5)G=(-h1tEvlbQ!|{ePr_~6-UO*7uJt-ncCyxvl*^gG@Ss_CeaQLv+u{Y!JsFjr z`)52O5YrOdEE>K}vu3)2Xg#frxYr==)PFF6d{JnQhxf%5qeg~7J9x%fOkktwcwNya|Jo?Zz)y4XH5!S8h!^`Y8H6}%i(_1xaizpaBSxjm8QOEUJMSis zzeAL#Im-qwqqQ4R#6GQlc`r~vb0tUWoy!*>yoo`O^v?{MhB?#kOhp8Uf+!F|GMit@ z@u_v&p93yrVrJLXuR}nN^xCJzRa3szQs!8f!yD`@$|oBdvlP*@WdSE;{gXlHQ`eUj zl7WJ{qsuFGnU%wVR3sv~4f>^(Zlv5HG=q_b3Zfo#Yt2rc(*-Uv7WquZ8qPlbY?>gL zBF&gI_&Qx*;?DpNI4#l7yRa)7DywBZeuBkL<@E@ z*Ms39=Lv$aKCIiggq5PfEwMf^vdfhl-lfv^n36;MTK62?S3_7U6dN%g*3!Q#$}I zFAv3h#fY=Tqf=RzYw<;Ib`{(MXeDecR|b=js&9GZ;lqyTIeOhjcUC3qw_GC--u7OE zNOue=x{1#Ba-=yKrvtZJZ}Q0%+`YF{)11>oZGPmQgd1o(Tv0N+c;sF=#rtt}-n55_ z2~Woyr%{ey0dUl;`fR+>QYkw`d&Tr9Kp>A`=)O>F$j6D*3T!UuDbBb>e6QCeQa*CapOIay0kN0R(ycGE%_1k)j`p`qm>~ zrEe6x{O?FjcJnLvGkkY8#%!nd<#+4SRjyCF?tuIbc|!3Gh}MZr%Cag zP>fBd6f4g<@yTUNAy;s>n>5aA7x)@vu8Vy<`CbL@FyR)6Lt8y#oleQ_h==Ow4k6(4 z8a7@k03iBnW+g?c!MNsIs|I@%%`ckTX@nF*t>2tRi26nkruThHnF0Gf?OC`8ysZ;< z(Urk`E+Nky(DWsP0j>~hy6@6{aOjg+ULQCwi{s0d>~6U$IZMBp3GC}hLp{h&6!aN@t@}woZMtdm|KM_@widy zw6!7@f{+kCP(_VI&-WYTohrW+Xi)6rl*qOgIGDemkPs2kw{Ks+LPCP$pgeg%I$Ls4 zYP>Li7BQS#W5}s(^w%g>2{xLSENWU|u*kVl0bhpF;Ey7Xbeym=LmO=omwvi{xlGsKk9&mLKI2FlE~iTbj6&LL{}l??;%_& z!T4}|KH@ldKm%=co;32KCbhHj$)+jMc0O7h#fdM4tRfSfgb z;DAKSt&s$<<*A6lq4^nr;8o3ez9-duOz#V;w6s0?jGNQ9}U z+Z|?#iq*m1Z-YJD>Ac0~{2?rLCXi^IM5DiO!PH-j)zRe~dY5(jP@xZ#u{ht|PbaPQ z7teukiYa5UPLg9}4mPG<&E4hnhd={s#bFB=e_dJGCu`u^OW^w}@(qPOZO3}M5|!kO z_iJvuH!okhK5f+XDi`arhy*#bz$;=lj#tS( zcam!pOVi}{p?YPA>mwi!#QWbaC4?o5^13IgyDLWYX&K3%cK5n(3@6(h=3m%luzJ>( zzGPkPBAmBH{PGR<175`p5)e5qaA#Lx>?mPmE zYF*$7sU{F}g^cesG~%gva-;efA_Pt@_Ef&$A@SD^tX8se6v64gbwOm)D>!6v;lrG= z0kDsbasWBHHfpzJoG(=Q@0`$KVw9yISGRUX?< z7L4h!{jH5$_Hq9Fz{~j$ba{`EVA%*Uq<@seEci9}I{gUlZ*9T)$2M%K-Mj&otM#q()%mY2JD&z%@{(07Z&<_kW44afhVl} zmp>AO@XwYIQh58B<J+sfe0+ime2U#fpBCKEoah&iJ?8rpX#UWu zN>W1dg7Nx*PgW(1l}U?RL)(*Zs=j`8G8cv~?W-LeCJ6(MU3)~eo>Dj|WI%S>w@^wS zUr(yyTO;l?@AkFbd3Ec2BT1x8g$P5eyQK$z6LIgDGbzpm?xPUAt*$HKJ$u&jjVpa+ zwM5)th7yVX)?`0)#Rj+z3(QpY2+_!93%zi~&44|IdGLxM+N$m3flv@k6z`*O=(GEF zJH$@eTqH$$0mJMm`)$AzaNu7>55b>~cDuHOs{~_T4Ys74Eyddnc&gAA)r(FLG42;l z_K4XQ$2iA1nsRH|_G;wX(6>ueE-V>+cBf6XoJ&zQ)LdYlhNs{&YHf!}i72Wv7{8sf z;kgMn;BCs)6~K`!MmB2p;q8!gF3LGjo$9Zl%AOpT+lWoD=OF_>M1 zOL18^dmO()AY3+wgHku<7Gabmn6_Ebr;Ba1aefN3x+z8J{X_?53ju4peUqC#fyA2W zAMv%ZS{#!J@Z^Ivp0eN3o9h{JcqjG4Wy~6n+gU_ihk9jMre!+JimM5QTia^JD(xKK z;JVws9m002&_?@pY4C|O?)FQRABlzFES5rzyI)k`_NCH_rwO{TVN@h^yqUB*Tr-6~ z`{t@2gZKN+@AwOlq&imR<7Dj#)5Y#CRDBt=jWj%f7Ni+7a5(4}A3tp*8Z48$2mJ08pxdT>6oU-Sq&GgvCk#M z6IAW>mA8i@|MT&Nm;X9NR`zR<;3zKkk;UUg>LlteN9LY{2H6>PqmH)+`SYEm1IglA zs5xeLq%a{fwlQC0j%6g0v>Lf}4p10`<1bTMy0)J{mczIzjTT*1U8g!0;%BGsg&oPS zLosw(5(<;bcT093>NVSyPH&IowcWHB7OtOPqQ8V-8otKUka-Md@35XIA=IrJbRPMd z$Kg1(;y!I9S`fCYokPefibnl@LB7wgzN<`4dE*9yvr~tc#llVfHwUXK3!iyL?c3uG z>fAer@!WDkEn+13Bm450N<}wap2O_{dhN8@bs4iM;{=R?x$dJ?$pYSf_!_MKz?va5 z8lcTMTis7%9rP4jTxM|com~p&=q4!4W&-(5#nY!8KWSFycj3Jda=RNk;U~mAHV;M$ zP5L=Rgyw|}^4<>{Gibz;NVO2~7a@^y&+YS_Fvn71^!r4$F4nLz=CGOXR)%FKIV=MD ztNp`Lhes{OIO`F`f+oTb$0WO<}^p5$(BQ3fH1#A;edj(c0 zu8GVay(2C%-01pnZd1(j^hW+<6EIfV$j+8$yiJpYQwxjYIP>-J?2*(hHTGzDJ}O&X zhAeV$xDGCEUz{F)73^Mpu+e5DP#z-HP(G0zisWOryd+XU==DxuykoZ-#3C_FHrQwe zD?d9G@+Q*nEQ1v(ECtACHQm{6e%YPkTxvDqeXPjX;T(k3aS8;msW!^d z*X~o_!gs4vh3oHl1z^gO9NEG`BOZxG^P&3iHYCs&n;i3+kl3C(632ce?r{^K+*3>4 zTL3EaWOKDzBM(*UZL5jMO<=m>C~2tA0(vc_osZ|nG^*V!vYd#U$Y-(hB zcZ^i~SPi3IkCWQXqOvKId76WGa<>s{cE$5_v5>6_Qbami8u3>syv`PgVoBbl%{kng z3#aCy|0VNkBzmN~p4js-OV782lk?|DBYXUFGW$ z=fa&~uY)y@o1NVG;5{`U>!YUwfu3O2^vhUYHB;xMDlpMP_L9JsDupy&X2`YX!VRZW zGPck}O~-idYvyRw8SIASbR&)Y{sN-KnPvbd7BXtfJ$~?ud|$hs*4>Ul&44`tuK-rh zL?aA_jo6w%Lz;NT<;knW~6-q4i5 zzR7znDAS+F=i;@-o~u4I>krzVXZT7CXh!*Y1dVbNj|;YrtMmi`q6SU+A41QU>7bn+ zd9B4V6B%f-0c3bf`KFTs^p}$E5mJ4yGYnQ(8}w{#`Wd-#8`4A{qi~w({9c-lv0~AU zK+nS3P|kb({0M{I;n_6#N22EH6|mlBy_!D%wtOsdO+;K?R{2F@4hdG9}M&K zReb}Ze{|cidI!F-7M(35`!nnhl#(Mnc8@bcNX(XNTkhy*o9(Yf^VMEXwUwUNC`WYL zBX8|BfZt-CAFVY|gN{)I63n|a! zJ}+!T-}rS@Z>`p5Dgvrg5lCD%D&)p5yl)Vpw3dtV-5P7}nJ^Sq*DG3ivZ}?cGCU2) zv9IOzj;f-mOs>;1j9SMfIBj>G-0Ei+DDvjtCv#AD=S(&ca$o48g{Pmr?*F+!%N3(H z_EhxTc=kgn02PI=k$)^ZrP%2;naxTmQX~ZK;=4iLTBEOGQwFP^brR{xhXXh#6q*5m zO$Pd}ynr98T9i6NKS8QUwi#pTaM;!=|tUbeI=;Na?E2|I#C^LO&q!xnmGa#xN%0HBMTB6``U7rAVbsH1W{)Sr;Hrx~kOdOg@S+)1 z#>d2_nJ45zw@r?8C@p0=C77&O2?$Rk>6RVC6^x-MJfv9-=YQa)r~wjWj0NjWatY^g zL>5EHQM}tytKN3P0A~ix={fL>-$r`Ynh-iekP2!=!PKC0`7RJ8AvEeg#z|344fV=! zJ8@TQJXWc-J#7nQlxMq+5QT3$mwnXa*MXuqD_uPHNb*J#yQ3}9XF_0w>czirEDKx^ZWFlmGGur8@zs_z)N81e8jlI;Aw&L6^R zW%T);-@S#>GYe*6G^_&0FOC41`a}FJ;V5)xgwjBqW-$TG69La`SWr{xvh(B zp=6uZ;a4%7kOL3P%lUxC?#sTs#_E%AZD&`A-OVY%GOkXioj1>I=oO1e;i4-EHiQ}T zKw4MFQx|+V=Nbm3aQ{9S<@Of#wi`%0LhYfC#bBJ}Zm1PLzXV!52cYGJu$Wb~`5aoAQB;r{A3jkL^<3;&V^?c-mshUV?1pqYcY} zrG_LF?&sjZ;&TO%M*2@jA~{OvvY~9UDArRzJ=qhYaWK-Lco~aN4TKlqg7UFuq~&j| zT9PRKd%W$3&sjHt@Om6P_Fty=AE@2k;l4fk5sw5}>5B<^&e8_KVHYMzC{qm@o_0}eU`w-AZ> zKJW4C)xIo7VV)5uMTJ^VbxY-lP`ISGM1+l8r4JxM61!9ah{+MQI?ZT&%IeH&=O04YoM z+l~%LDTNFztKk;S%y*t=12hY8sWyt7S2RrJ$RZ8dk}~7!8MFL=e&gk@x2g6Nj6( z2)0}LK!i=-6%VQc*dX9WPdxph$9HN7JqYOqJO5R`Npv+1O^VAojqYlrjhp(i=P(xY zy|T5iT2fEtNeTWif=d}z!ZE+*voTw6K;_;RJPLbz%g#dO=wjdr>skM2_9rnYPGq0c z%uD~jiZUot^mIq}Oo4=#Z06ZQ!zes-wQ;Dwh3}0JBpXC#knGlJXptGivZUcdn3&u( z6t|jbt7rv$h0Ot&2Kgs@nLd1;z)-!<6_z1)+b4@M2p6cHGWSre=ZP1IzY_}%HwZZ5 zgomR#-`}aeHNIBREJB*ne6&f&Dp%ro`&P9`J*Lp|4Nfgjx z*MU+Vp1)5x#WAY5VV-fM-U~w|r}`plLOKhyO{s(_dajiv5hjTfRzIy){PpOrI9%{! zzl~<Av7XMqVhd8O(}a) z-ODV{E#9x{4zk+L`iF5Io2Y`l8BRfX_z#StUO&i zNkoH24=KZXdcHsep4|@>Jf&y3=ivL2#G!ZE^C{pUtL>6z>`PVUi-d@g2^YOayBGZu z9Jym2CEK9ke<`%!8%iMf9esTTXtzUUWCI|Xe#;_0_Aa-Nic8Mo#YqyierI`dD7u^z z1d)YEHAqNCKyrF?>&nX;$}W6z>;z^csN%m^KP=jPXJ3EpOMP?-3)BZt4&+~^5|VdU zyWBBz$X^x$m-AIVx>drOu7SOrh{v*}>3i)vhdS4F&gxm%SeIfex#E9}#4S!VEqVU#a zO2=z-6b;q|s<#IBb$wuFeYv<3yBhS|L3@T zs6d*MpwwAr_ z{_PDC9S*8`L(A`RtZ^0l0yqm zmNNE?iW90!F|;y^u7V~i{NqzcN7_C0KaeYM|4%}2X+o!PF=yt^`VhJRa0s0sGSud9o|oFZh8 zjdkS4=pOW&wzIv2{~%`nVSs;L`i2O(Lf#49;&0pke=GVX`+>?XS^>SA|JtyBzPL<6 z^z~@Dm;6ohU)Coi1AXvG^lN+OUrT}hF$w6Xd@?q*DFXi2HGj&3bR<76ZJK>^=HbL< z48qXy49#r)b1wuHgY5a0iOGotz)JaoDT}H=;=~fzxJU1%!SAjP=#JFk;Uvz{vdpt{ z&%$P(UaJZe5!*7VBFT#T@H9k;{fA=K~2q6ldJmsYdUoUVl*@~l*vO7 zWgXGcSceQNgog-C9PNQS{>Z&%G6T=rNspv2Z+gTiJh+rtuq?@R$DJg9m$|8C@N5%~ zIkF-+`#lH}-BBzY_J>O}GwVyMNw)|Ei9XrT@DjH7Iw3o_Z!gD)aok?KI|&IIb8St} zyyCj+@s5@eZ2_}V|8VrMt=XU;Y7zS_B7&3Q4WnnbSuGBmU_#tCyx5pHoIzhBd@RVj zv&M)k>;GjWaDU&JfA+)a?9)skX74V_XuLx&Ol$1D#QZh^L+}Fy56kXA-SllSAZX5ti7P2sS1cAA|Yrqvr|od zzUi$&ZN!*OJZU5&kReDM6(Q(ILlp+|yt=c}aXTD z-sRSJJGSrA)_A^P)AHn4s(EE#dJ%I<;=Q*}+^51rDO~Op`uAscNwImC@GbLQnboyI z;+DPpfm4&GtypoNVP@Ih>ll#o>ya;x_V(bv?r6c(e>TK0=d-(6X6tWZ^Qo#tcmAp!0FgyGPxBlqV7h3fdDJxWLcs3Rs|`stTyxw^k@k+1i|$suids*`*Q zaUitfj^q(jJa&wI>OfOUAvR|T`SbXAP0ghL#_Q%0_fLX>*C`W=^|jPPrXkgbWL8QM zCK~l{D-8H66KyH^@z7%3*Ink;a*mu|K4{-Mcc;tP*Qi&r!fmAiPHb2K5ZEFlL-fZtM7Mp3sQ6$msb;NoWs-)7xr#yyj{90KXpdS z>bxNU7!}H}UhEkesISR=;I^A(2tgSqoEe;UPB}d=ZOr4>E(LLRrNw+3xFCs*dHXTj zE#jIwbD_4rFLEi(tHed7?MNe>_K^|A+6UyuSz- z50Busx>F@#0~~6fL7mZusz4H6f2v*MGalQF;5yU?E|{KHMR)T%x+4_NCx;GrFgO&? zo1Wg=`|)xM;ryS~v4pw>-?mdfu5?lVIj$;;-n);9;k1H?ZUNy{;t%IkudpsN6+THV zgYQ{{K-fw}s;$KEBPQMAw@F>-%1i%Z*r|kYsaxDv( zdE^-EF6o8^4FZ%bP~Z>EMYsD`Xt}~dd-8&G z4vuy3a0-{DD4P4V}Ds^_Dm9BFG)H(SFD{4qqZ|qC;VP51ax91~#Cpgl!vb0G59Ied?{%|<0(vK(vDy@2Q(igXW z289@e^dIuZ{dkiXx)NL4l44{uHMLGXrBjCK$;|^|TEtu9XA5UB7t)>a3QKLL6cYFA zuy+=T8}h=*!$Z77noT}z+2NJuLJXj?iADzGXuTI@u)nl7P^0B#`$i$k*XyTg9 zY_kO-YX?&WypMHq16H83yX1Zgz#8|SojPM*N~w6^MgJ@z+Bxym?TBTy7~oj3lxd2O z4FBaA*GLP&eMAYAV(j(09X*4)}~) z$tUF&XyEQzX*#n0r$Z{nsjJhi3yHGccj-l&fu0Zf#3?|4-4nHhi(U_*F^Y2H$LGu5 zC2Mpo1>j1@Gav=l_)boinNA-{0og4*#V4DgPZ9Gm?Ub^q-g8w;Uvg}^xwcR)7R=dF zk-&PlLTg1Vh@fxi5%T;%A-Cw-8hkK%w+Dh*nO{`aQFA&cmJ+B(V~O#D)w@eX{webG zY^@C#h_y)yRS}_4AlWUzR<4N+q4#}$N>IL@I_s&%oBp-RmslMbIQYJXy)lU5R7l*> zbc%N^cyO*4pw4J^nZ!68g+Q%ZN*ws&Rw#{Pea|&Q^iiNoME%nZ`g_rP43$z;RW32K zXJKkxUpDl@C^q(3eWZ?N%gxtV(tD;l2BC5R2!|>SB=}tfR}s_N4rNhM=>@BS9R2g3 zR2HQSjBtq$!o^LDMz&X?d3(@_Rh!ZNwz68h_jGcde3rKM(dz!3eCUJ*f_JOq=E|al zje+1&y4cMzm86DaW*bAoG2rCK%*MyG6ghv?3L`)>Z@D$s{^q$hQkClb$6D9yG8)})=Fn}j=mYsOuUZ7yvPS^wK}_}e(=D-T^?OxjB@Z+9uA=jY zQFpJ?e%FNyzOi~H*tTT#1_xaEM~eMgwpr4bcWR1QZjnym$}ryMwDS}a#Z*nj_AJ&w zp1+jY2hT*3=+7~%yvbx!ZWYpMCQD(&^K^E>wdP$3TEAkI_%B=9KKDD*1c3J$V;qMa zCr@_MiS@g9rR8LDL~qMx>QHotYbMMrCMu)zr~Ov~^wdU`z{rBmhDp$*TFJbqZc3v# z1;QK33Cg(`d-`2HT*5!mePdc}=eU=<&P)u7>A=2_nK}{SakkLGe($cK+-U1%?`;ev z5LMyYC7cu;qdmTvN5r%7 zdDA=gbS($ec+#!78T1P}YDlXR=MH2!@;W7rk_3qJvAfVsYIc+Q{yTW_4DM(Y3bR!= z4IxMO4D+Adi74F9(L7)F=j>lK3jbdQc?nEiK_6tGImWOhgH7hY0L?*;`>)FG_U2d_ zSFfL6{0kn7ShiKTyXrjO>A~CBPMH1cF&(6e@jEkd4a>16?zggRB1?KkOFM_{$w*JO zVa;F8g{(AU7Z7QU>3#Z+w+tt{8N&|G9Oj3u3s9+aUImJ!`|4C(s3eI`jaADp{mAaP z1nM7d$AWO28=I9E_3i?Mnwc}{*rN6mPDC*;s?nzD!Vy0R@^CXA|)s4E*6z|74+dtBh+ZJ@RImCEN zUZ?;{kokS+W8z|zbF4=@PRUEPyGj0@M;K=<`djVWD*0mib{dPivDmB;!?~V_Eowht zi-pvAuVa#&x-%66)MUdBEw4~1Y`n#zF()ik3yEf??47oHm`ySCus6HOJ)&K{F7rhx zwGVL3mkcwiNykwFU}+X>_OBN_qWH~6Z~mH4mrA`S_zFZ>SKlwi8u*=7LwUqY`z75x z-&hTfw+Pj$f45XChV S?<2%BD`TU?k%}MA1j?onf4yn!;f-!reOPQM1@9i<7#?E zuXg-v7U6{jm)e`K$-(M2N2qFbDux!yC&t&=pPaMGg+v%Cvros9X(eD`)|bNE>SM>w z znC9GLl-J;e!9U?P#C`bPDGcMDQOvDE(Wb~3O0ZKRY4e~nKG5IWa5n$@CKj7Oj5{KtguO(N~Z{H|F$=<{?8fTLjZ@$`>_@&qh}cGGG_)iub@()oDQzq z$XH5y$`Z=2z_n;E<|di%QD#Q?TKhv6Fhy*3tKdUBA$;AQaqmOf#*1#)q0&STIOoXUwzV+F*M()3B(<9>&m4umEi^7Z9470xlCrQjoFUw&bRO_h|?;K9zo=$C~UQ#aIt$v z=L%cmosA`ub`K=XgSU~SN78m`ISzz{WTh)rCqgMyWt%LHd>eJcot!?v82&LPhf}T$ z$K_&+&e!%UH7f(@y2McBg_BAI*t=iLXqAuRsDe~Ko?VUi7;q17?kJ}YM6x|m;wcU* zmvnX73dca}kW^-lEtU8`Y`s%>WlbBk`^L7dj?Ip3c5K_WI=1bkW82n>Z97@9t)1`s zuf0$HU8n14&NZv*sZnFxkKoSV%^s%W@ugDv2;Qz<*FgHL8AYE%)RGqJ60I9)cgvXX zm{9_^05Q0h8!mg(_2!z8YSL(#(%44Ip=jnFV@r)uHW^T_h@p+_cE_ksp^-85T6R}y zj6$92%)^zK!|^MOm%PY)tp!LnI_1ANBWY`mWY}AfN$JdG++0oF3#>HuFJhpn;3#IN zf|Y9QOP{wu5X7F*!H4#wa!|rSLzOTOTm;6ao*lryc50dgJCccFH;f0 zG|H}%)wlmzHh&j6-ixcym;pBM%vYOFV29tQ1{&pH;4zqWvUyNzp~M_6w;-Xk$+q>@ zCf-DdPMMt<9_hF5C4hXfH5&aJN|&cvwfM!fJW7iy18Z{5Yc8s39NimABx%fXj06Vn zwtSl-2!%@g^m;}=8@NFm%o9YUQnjJn9iF(;`5_A8cKpK1N>-{V-CW9ulUD{0t#H(A zjR;u<)76!y^qphUi-_2Kvusr zTQTqJ>m9B3EQqdhvD%8FRkDg#=u5pEpxcgXv6amkIScX zs?!a9OC-G1xhSsyzpxKXq@KPyjxiImP7(vEEuGBZX)B zDerLefu|LnBlL{>IyWQilNOTmMU#)EAW1Y6$)!{oOd9i-;rMfy7{JIW65u6gp}Rvk z$f&^8VvmGXK0&(EpFEx6_n&2+!usv8H~2$vD?WVsbP3k0@6>}m5bb5$exMOVp-Q9Fu0{Q8#;(qM1g3~xCw;vZ zhReUt@@@@f7EKHl6?J&@@XRyTsx{C7=0}gD0hRjKo?F8}0r)BEOi4!= z{p3L__&mAG!1>9@z+__(8k;0bd?X@=l$N}e8PY0sz=MlV@)~18ls;L(lZ|D{v(Bxy zv&IhxtLT0>z@T1}_d7SYTYrN#bly}{yt$)#c~9QXJ;qnl2Bn`_M?jD3l$ZY#XiZ(U zuz@;MM1n~_lzL!P#@XmbjVLXdb(?n9`NW)SPn2tbCXMr+2535Ss+M7$L#-&mu-+m) zGtK&9#T?fb=$E(AZS5RRIO^~)l07pq0$j@?Go(!wZ*Jw8`29+OyC)(^f#cDHT=myP zXm?Ub?|0ueIecny_wH%nXv1{$0A!pwObhS9&XPb&`e0^_rQe#39nN=(SlWYdQgTHuIjaTVUE+u|I6KXIgxR8z z%P(MCrD0Zzz7N1>G*%YzvBwnsDuPSVsySJCkN?I8I|4wUPSGAuSR3TBx(ZhRE;&>x zw|62X%Sm~ zB)sZu7wS`D@ra8q+3|VK2TzDCD$>i&smi7f2XrQ6^#Gt|<1c+GqrV0p>9HdJ#_k_| zQe{e}ykU7@fZ>W#>~OGKnuZm-PzLq=Y*Thb|558K!Cmlv8MXVvuys{&PfeOL;(6KRSeqDwPbM`L?u+%->qQbp44t%O~nIlo9W8_HowFK=cvgv|$#2G8JD$d_c z@+h~l?)EO(Bj+)H!Uz;q9y^$fwL+YSEJ}9wyTipfFLd1_yCG<0mJp>JGiDP9`?60i z1#KbR9ud7d=6jO*(}30)K|%Gf;0H_wqvpSaFTo(r6thLaW14fG1*;0h|ll zPd$4|8Rj(}Ty)HCQe&9q7$Aki0ZK;^+F~*|GBWP}_NOe?6+h7Fj_>G#Wxk%KH(vZW zf!F1TdxL29fwrc%$H#J`GaIQK@Mv=@&ToIa9@=ZwJl-1|6mQhHP|0LWTV|SkrjUm- zpI?(_CB%r((Ld?0OQP^F)fAi&S^YGY)%MO+3zArvWJv39{y$tAGDO@4hf{QXS;B^* zbMWb=M>F-_$g@dRP0r_Uk3h|_JM?;Hp|GD)JEc9Oy`fx_&aEeN zz+dP2gub0}K2yfPJ{#dX+#r?2Y_m6(pL)c!s7M_7)_0)3cSvjcgNjqc^uRiL?fFj} ze3;3zAN=firAyFc4?pKfx{sD8B_xRh$whIIEcJboyyxjZ@#fl^wQ@4@3jm_HEWh|h zNTovq>%2+6IjVm1q+D&4i_uclv4{6#NnN>9SCq#m9k}E4KKhKcP?eJ4brX6NNg?+2 z2b@_2R;p6n_9XER>w|7jZtSoLFHcAGo;O+spD`PTlO=^igXA<_&SVR4-6PHspqB0F zvjQXVt}58tI!&Bwx!?KYzeTxEW_LbzAZul9)b$@0ZZss@d*tFE@)m1W(=AUH_=G_k ze|CL)Eu#1`V+G^;c=HOKgf-m#p#Fj0h-~#@L~O1z2dVlWj_7jju)YRKRUaGdbHz!? zMV0%JMfi^lN+cZ8sz&OVX(D$P)n`nn{ahFRG>{4(317o@&7K%ya7(u=LC(8^a()Ov zLBL%pjUN^<``GUfvm3l6T#VKk-}?JwQ@YXzT-*aDZwUoaqOLi#q_1K$F=h|;(IRA! zjS~j3(Tu?!9v}TAAwLA}$0&GJiEj>IsM3;(lyG1oQ2!aBF|#rcO{(1Yj2$`-yu96B zl58px-;lvbnmQ#%>C8Ej!aqEYW*lss98(<#>2!sQCSW_WlF3HH&#o-IZ_r8mn{0)6 z!+?L$fR2lim&=L=N(#$nLmQJFc`IK^-&CL5qs$(mkbu8TlfC4y`|5Vi)%id;X=9gP zA|>yv8$PF>;{9zi`^{a-0;=ZV`|MJ4`q<~KBmwWAC5+{dOhsc#&n3+a}6iD`bwc8JpJ`K(vCl_QJv6q|hmOLo02QvX!q zRnk%kRxyrLw~s7}?!H61z~Kpu;ex7nv_f+l&#mt%g@QVhGZ=}lsNgO_H@FuNkX2t% zZOZJ-@;mBj_(NqPN$%wG_&AreWu&G}G{i7yc^yyN&PrpHV!Do4ZN}7?Lysh1V;=gg zc-QRGUus2>lIyB;Yyp{C3%g-;PT8I+5nj;d<_`DQt zR#Ei+-Acg6KF#ocKKC#&%+V;8sM2B_bB2PZ;QqXr_-st`!_02DWyS<@iC#GIxLi(f zXTuEk{asbkE(_>RnZf%c+7L2$gdq>!V;R<}?rxLxo{|g&^?}{~C+;unPpwBj$-|uC zH0ISCxX`%nAb1wqs*dKgsV6iMfrZm*!zUNzql+Ft@dGP_g@=dtaGr#kDJ+qF!WGfX zs_jkS$m3iqULtB?@8dn}=OJrPtB21eo6+-r^8? zC0q7Ts$!D6I!CT@dgBvKbnb7rXL?BlouN8p-KtG|5tQ=1IO zvT;3MZ_NXHBuVlxyk#`DXh8D@zN;l;nUZ)sUe{T*6zz7#Jr`^ zTLhty`o8B{3oaz{mOv}^5$@9wRLLQcRnYx&FAGmlk~roDXt~sZd^|khsGa)NOnK?GVPFDtBGbaNrD0{p^@6Q6qpo zW)Zs9p4R(0oe7tJ(OoK&tLFJ)TnxV~sCjtD0OZjM6J$`td=F1In6`PjC%!I6m~0NG zn|kD!lY9+VNEMbtHFo#+MGwv}#_S(efhv!2lOBu}Ge;SIFL)dWFE3{0ZhAglP1rN8 zdp}|6AGtevrHGX+cUQ>zeN+FO)N?43;ecz)6_Y3Xk`45&_27I3XKKao;p##ba;8h7 zSpL$%YA#s`qFPBaqKr-_^rA2}jZzmM&aYWGqH|F8gu3gzHJ;qo$-yR-=)4%?)<&N{ zMRz=HV?)!MoYJ_Pm+IM3uH=?aoO+c~v&}?NFwWZ*glOk6nTREFoPJWYQBAbT#bDA z_<-0x7m~d|$|Csx>jj9}t(D#M@HC}dXz4YmT9Le{{{FDM(?ppSBc~NU}XR~ zN;Dm-Qrdq-h>a!<>2-tliBIDgj&)hG^! zvr{ZlBbfGy-v&k23iwI94$3W3`_?V5Z;o?z#30=?C06v!rDcGFg>5bJ{Ohzb2vJ+2 zHtKKA|G&t-Dq-HW{EXr5!yo@FM zIuB;Re+y?@e1wddsnD%c5B@ZJ-k3efFfReBgEO=ducYxwj_cT)GeJG$2;(*UmG$`c zHSKoNDkF;(@5F(r0(W~*%lHQ#l6U3^JCvZnRkxhihju;3&LX%n3ICpG#{2R~uSzjF z(&>m2^EbD{e_R!`<9A$SXW5T=YiT;@o=3Cc7<#7gk8hb4R-Neeptmr7n4_gn;m@RQ z_})VLcal!VS*s(XUAXZwsUswGf&*Wkf!j0B=y58C%e~Ppeks8Js7Zk zlxUsR;-8zd5ZWD4pzJC0t;^zS+96Eg&YaGRxdzz-&F>1lcM<}=9F&nZpV&;6a=*~0 zZB8HY25-F~9;$ftQ;`87x)Yl1*O-c^BJl7Cqw0OxaWi@QoL1fAN!p!%lii>~Q(?<^ zhm}YC9VekcOJi4>?AKH-D=~N34sxzBW`~0bxBtfN@RK?p|M6@q?U1FnJUk0|XKXoz z%Qp1%uD`THoRnKU(JShzx^o$@cO|=;xiJovHkxna+E}La{$1)Hm z^_`=!>cz2v=SG^dn1eTeWY1$IxBE#D{Q+ODl`wCgIQ1~3vNo4ME(>V-N=&ieUt|Hw zta}81k{WR)p$4w)46OQ`mtu)*ae#ZzzYh++u_+l9tZ1qO6B!?IFumDtwJ!s{E?+8a z{R%b>ot_UN)ogf1CKzEPk3tun38i=3Tu1Hg{;nr|V9WimhmC8u`O13qkXH@i-+5$> z{a3OpUZ=+=?3rg0_{r7)J&;#+BGkCtJPR+mPoIT+xy7;9C`hr)Q_q~$CteF>g6k26 zfB>4M7rC#-Yn0hXu5x?@NY{(okr%8Qxx2d?M*TA~Hlz(N!wz1B zF@kf83JBTS+NuuMaM|kFX~X*S2RRq%bnU#Duuwq#xo$P63mn(Lhu`(usU}}wxMVyi$e}R1PUDd3k+IRJSsdgDSnHt zSwr`h82aE`zyMwt?VAQ%MO6RhMDp%5b>GD&=$rP9V%0|ejRQ;lRQFB}^Y_e|`O5IoM;1cYX_fR z0Uo{Me(!o(jGj-kB>%&{3obf!4%3k$wK2)Go0BiuY$pusX3@}70n*te*FQAjFbIdY zTX^`JJt1)1QyRR+$R*Fdr+lZ}WNM6mpo(R3*_K``Ei2h(lc1zzpL90CjuG9&3P()N zd{(Esc*r%Gzbh#`lt5Wl?tLHd+cS?FTbSyE6XS4;QQK8wLt8L2=d(OqGDE+@Goo$& z+`J3waeDzNQ-c4D!hAm@@~p@=cn?|*+2Y?`5nO-fnn{NULgCah+Kd?A(*k6rUUroM zPTIwChT38jkuIOw{m#UIzmf69D zbzkDb_Ym0U2zcDy)UbwJ$9NfePZQloN~9VM`sk5#Q&Y2t^K6P#Sj-ZtsA;2rGyL37 zsKaqpyta4)sKt2?{Qy~l$}vMUSoqzh;*Cvr)F%l3gYj^?gABYzj0U*1^Ea-{XZkx zv>ewy3MxpvUQbUMZzlfMK*X1PKO-Nrs>*WMWrHfTlVQykR38hm$>mAK8ir!2(ax#; zE&1optd-2|{C=<7lCHS;7QDmb(5dA2_ZdB*iwkZc5^xBug<868)WdZfDNb$%hu;zW zsKM8nTv-H+o&cjgYXCkSG=NZl$FYlU9_c-HiTUMt^T%WW#TUd`Q*{AM5k*pJ9nAmt3lV~Wj6^@H(gRu(6K_j(RAE01XSe;{0r zc+GY?{WP+M0e{>3=+3+n&>QXxPuIQ+_Gi2@te9gc-Fusf%!F;|%zNbysKlYj4u@Mac z<=NwXxdSGU{m`~>M#oD`e1id!g7p>_PxW&Fu#|{IO>XD|gGokw zV@`TQ!3qE4(0*`Leq!){CW-E9mz|Tj1>2voY5Zdi5}+URSA*tYD-8PX_^n>snF1LI zOA31J0KAjHZL$(2Ec7sveX?O(ewwI%xG@(kh6cr)F}r-Ppvztk;*D?)AdQal`=X+4 zDHK1&7bSmuk?EhKI__a~D`ZrzanuW>9x-{BH&Kr$krpVS^}j@ihQR=NzdbdT=YyOu zV`pB7GiTw~)f6I1Lxb0AMyM3!3uo-6**oedhu0+-)ws@Jo5}*FkRQ*FD^_{wL^#%f zQQ7^=;s05%2OFbCIPr8*wI`JHYyLuA5sB?!D3#Re3At~6N<7}m3 z!2>DJj$kx*1C$lVp7Zb-B- zaMfrc-#`OD_&}6Tm?W0t2N$Yl)uqE<&;y64pt$x!PJ0!~QGg8^HCI}rAG8#cj(CCr z!AScaQ_lp+r-~_9X~L&_yrJu3ydR0^Brrzri)%I$+aUyqkG&trUc*s@Xw%B?M99GX zlZ|xFOH5sz97`qM++uX!wuqHQu8aD*10^ePZl^#b&slR*wiuc-l#Ff^G$;+D#Il`# z(MMmoVw3AXE7UDoeMR;&o@H7x`z#tCHX7bzHI%_m1E{u1E|EdQ1E7isIaJ{mojEuY_HisiRyNaS?iWC3V zvw7k@4XA5piCq5mQaGi?(xw6pVSK%N#@1GhIp4{ywem+40{`a0WVr2aItX|Nod+Y? zn|*%Mf=ws~J*vIHyoMeA^Fd}4FQ2wbKUKTlpGXmAcBF@>V#vla_Yjqpo`>Xbw`Zyn zJ?g;DO0eN27FJmPO<05RCh|jq)LTNJzR}P5Dke%sKa#>?6YVp(*f@tveGx{#v;%uA zx2|f$LtY(cV7@-}>~E8#z^=elKy^Y&5*koBRk^8?b;}A<6poy^mXXEw$!n5_hqXj% zkMU(xpUC`@oOw#Cr6}JL7Ty5%T-C>yPt%$5HyY&+aeplCf{(HlUqq*vJk_-Ehq8$9 zS(;sVuVZi1E2%f^WVh##&3I%Y9LQJxYh*JUQPDe_HOCrV5RdEH9%`4_7y?s7jk#P( zo_~iYc;w%IR!FXe62-MPI=~!)3(usi7P)gn2Cu;HT<6243z5$*7^1szL7z8-6RAtb zHl&)c`bBXh{Zx``%rY~hl^mn4auGI zlllziG(FQ^JNdz@>!a1qO}27%g2wPl8@>k>0=jOSmKSM&Psex_Ge0`vZnSNXktH`A zRdK!LRodYh7=*rTr<|G6J?WX#kkE+(9&6aUsdyQTOVFPsKSxYM0t(hv_hH8O;rOf# zO@EOv#N|t>>_^2r;)SzpmK`u%jQ{94sSnL2=6i0;DB*MBmi2Puo}oNut$XP|lp%gNgX9C;f3$2y z7AvWTD+mYsxvDn2L^9u}GIb30!XCKb+;@ULp%128=fV$8_)~vVEAsU##Az2&dc`Bb zI}+o=!ZJAA5wu*rSsGl)Tn1_yhu!(!_pRz(#|)fG9qMYseJ9r)uP&k)qPOY@RhZKp zzx%{f@!?96?tR`Crwe2&4QoF&(_wAwY$NY14=cR-T7vukqo9xXdA4g zVb)K?pUG=2X4|2@*Dpc%H$;8nrmYWN9ldKT9H);GNleWmHYlA&7OGQVz&}babMP5u0~%t zBCVab=5!Ou?DE-S7f+(=toQs^8)WE$zeqH}Qo<|HiVI_L!bpn z(xWCf#drTWX14o;>xjk?$!b`G?rDz`>r_Db5EZWW7tFT~-ZAdy{LPMx(5)6 zmL--jK#a2$$-nyWs$2i1v=XFD`%lv5sTKT3106_EW!1z)mb}VjFSo=TdmSN#J%&Gc zI31wlO9=Sco^l~%O&{)77B7uNP5|UEz24ELJ?2!KuEE@8c|CN|gS6)R&ZRqK2u>rHKo)$?Fds=Ek%CqbhkpHy^n(G;$`ebrMf@8mSD)rj6sm(Z4KwX@Per$ zO`!v7V4J*bj~ue&fO7@fKh@jhR8$m?M*R_vD-;(?ofwyk=^Xy^y_vnJD({&mQ%$H{4ZBJ2AQa8qtFT6u88>U3j{OXHdW_O+b*4>;@<$Bm410ync$p#4=(vFZhvf5k+o|-z9<<#x=Q} zBi+v^Dg-#!x3$S#Cw=?vbX-I-ogm#7nhaPZ&vA8&&%_C?BX!gDB;xZ}RXBWv{+8r` z)#rjD&0p?F?=1E!-W{GE#@h5ync*<$n*pYb6ASGk)|o98a(ZImesBOZWW9s}uxjcw z@=#XqmVIZoK*RejOI51&#Y`_k8RA(+YT1MkJVVwZ)>jy#?-F)=KZCxq;V4TzNi6=n zzJgAy@nv6}wPp@+Lxt5&JBTo%VCDQvD)xXHMz5)HOXGICdGs(n4)j_0!@gKon-0@~ zCQswC?1lJ;UHUk`p@z96PAZ0gts6U)Nz&uHnv`tV1u^^-K2-!4bkZvV&9P0@6{>}1 zD30a{RL5`V%HQC~+U{&oP)mwX@ZVf8SX}PQNP~}}99~FQa*g}qyq#S{*QzUJ{0?kE z+Q||hdz=hGz6popV*TP%r;GXcbMA3Nw6;e_(01uGvF`ip+0_7t)tL z>s@UPVIg?-%00DsXjK!1r3p_T4DTNML})-7rRV#jX83g6zn0aptJ*6ARBs%3X*PSI zeln@_O@*`19d6XpHRV%3Hjjl;PbU&m0ltpk{hWu~X}R5$`}@wY9aRbef-^7;NEccA z;m^Kk9qW&!Vry04TRcN=s-?^}EZ}J*Q%p&lMr!(4dTI4$8hKBLNT?cgks*?FGQILWg^LQ7Gf2oO?xeh&Rlp`k&{`Ggmc~m)U~Ru<{CV9OKL( z2$sOTF!!IMwlKSkYFriGI2c2Kk1(l>{DFEw0c|lB0qrf)U|R&5178$=aW~(@v&BOI zDR9uw)~`c!nr9x;n-swnF-8nV)s$c5Og(-h+h}LMh;NL+Ra#|K`kNYme8(@Uv*yy6 zOxx53^`Q_u0{Hxd0iBotu(;q;C>hzq6p9s-;LtW1ovmq9yMX`c$(JhY6G}0D*#1_Z zBX6oS5T$%0Da(#5=T!0F9OFA`;>}rQnJ6sbQ4$mDabsF(=1keN+;SvzFCxe2c`lbqN?RO>wNdmPD1PXDl8w z5?-xeji4>ra=5mRutb%+!QvrEcPip%Rd=CK7{Dud{_&1@!@F&HU9HYsO4V@Hm4D>Yov*?zNXqx*TE{Lz8ayIXtqj3Ne{Iv&!eG7 zn3k2T&e(evonBiYrI?MTi8`feMheiI4!=3xm}G7&enP7Vxq5wLzQm3?x|d|scv`;n zb+PjyV}EK_OX`Zblx?;skE`7cGYV{*RM9G5zmDbrDs9joKxE)F>VtaToGqtE zv?Ho^k?Z0%aQ(xU`vxip^@!mxQ&4uB8&VH{u}e5 zi>wEIrVuYpl9vxB3Od#O7E7vIe#hHW?RRy{JAU5!*kQaGRBRFnk(u!IoJ;Ka0uD{I z%*qC=6p99gJ~E?XX_rZ-g?TsVmKbRi##h4WHL(fJe_Ma6Mb3SwY02L|Jq&S_X~g= zDfE+%uA8m<_;7Bp)zj7Z6-u{VUqT%Mo+MV8#7fWoR-3Hr>1A5x(PUig6x;qG28t@J z_u!|9Px2Vbwi!ht$}C79&(AF`$c`$2)4o*)x=hssTI$1taH>IXMK8@SW}WqJ^qrj6 z7rMkk+w_>_&#<{dDJ~T(NflI`jV^I#T63b!H@4SI|HR|s;5gnxj!N?ygB@Dt<_`Fg z0&5Hb7vOee-+d>uEl?8Y|X`JL1;*Rb~! zWA;=>@Z(sS7Zk6TsrlGYEi<bkal|Ng zO#)`A#K9O5DK~aWhS6o5SLgU-S4NeXIhwL4l1@{lUr6sK)XPcjt}Mf>tlrMh8EhTSXR`+0=piS zYrTYP)VAt*7*q9qO@XLzj(sXrGqJbwZ?b6biAbB(wlX<_i)-^7E1M#eu&if#LjxwAG8JcWN%%pGv9?}I5Ji$49(zFx|oTWlxA;Lu^CbTTM_ z7tD4(EVJR+<9vFyXLNjMC@L=P09%^aojreXAn-;ZczB307Z*1Zcy?}RViH&&ear#T zg~5WNh=L+oj;Vtn_t2PbkU0#UlS~m1eZjc2UcR1cX#q?4iW70JpSfZ$nomhw6;FmL zb-+&Y=%S>uadQKK zMOBui$rB0EMO17}a|&+(i%g`3|F0L|JqrF)##74+SW0o5uR@F|r5NZH_{pJ``&Ot> zb>@z`{xroP^=Q;_BX3TYVw7v2FE2R9jBm2TaZKP_< z?m8=@(==bv@xi)5iMZz^ZI#^x7#*Bld58eq~OAF=cnp%3HDQf*d0T$R;zE4y8hbkY{{o!pbhjGgp^V zuamu!R~}cb**PED2uFs9%#``7v{OWb~5K zNVX(9by4`yI*>dDq~O?W|HQrN2h+XuwxXOX`%AdwW6meVqNP! zAXYNr_$@j2QJq=>qF}u7ILen&Q=n%_MWM3xNU5B=cM%Y!lv=0fhnGZV2{_g0Rf#K& za5s9F0`B;;_#GLE8l~_zBXaLRXe+>l5Pj6lAErtsOknK9Je&MZl+LVpwzs_WU-XbU zvN%62=FTfN_xmo#EMG^Z6wg&Wpp=g`qj^tRJWE^kQ);9X>*^lESO?-!5GjzjudteG z5_jv4{Gl&57ljS^bm&dK=~AK*FG=Br>~Ga9p7`>wV4Z(f5=Q}&NQ@{Je8(P!;F=V7 zPq1{Y51LFAfX^m3OC0}-x<$D&po}dXar)>vQ$=V9BjYbo_{T4LWmG=JyuVtAO6r47O=w#wVyVV8D&e^b7~ z%zSM@oA3tI9NvHWa>lyt4Fy@;x!fKDyWC9VUf7`9>jU-F&dYW=u%5qMlZK)LI<0YM z=PzwRceyptr{(KuE`fYy0#oCMvK0Eo;fRM9SC>^A9Vz#%0%$qI!QtnxAKsw41A~`Q4*19T3&uk2KNj<-pI3UuwS zdHSo_!2ry@@T;UVKdhbT`7Y5z1Pqd%A@`+QOPr%B(yeG;9xm9sPI@G;O-m*SKtLH~iJZCcSx%7cf$% zw`Cp+4lFd-oNbuywJ4Jxs)LjMj{4()^b@kQe&<28)dA%(C^$9mj{-H1)kqd(CjNl> zjtbGVHWqv9s{S!r!s=#trClxweTAba7Rxtp9iFJ*y&DxowA})X#W&b+wIp^(aW<_! zW2LjNMu^No)V0+A3(ugawI>|7UNs(%c>uI3#4w8HpE1c*s1ShrxwFhnAZr%OPfGL1{)uS?+T`-niG>i2GzY`DxPV>Xj1|GB?5 z`=&|>%&>zH4(J69fTx^2a@5)3$C7B(4R0JqCa>%_`fg?$Bf36HqzK?=4aDUOo$I!7 z6RnLs=ssi{_Ll9NsK(M~Fc>3i>v80dWo;?YuchUXqcQpgcl>}!6dN_Zch>w@FU1)E zrK3h586_r}tOcwjkX}?&ikB`PHGy@3hhIEk{zBG;6gaWUG2B3?Xgwy*Tki_F%b2O&1WN(dV;Mi6;TPy@l!s$He991a@ymC z4wFE{pm9xA)a#|1!pd**|2mcM!z6Kf`76>C+R+n418Qg_J3|9G>*@Tum;Mkdc}|r9 zI;}wCrC_+(VsWQWPT9Qq?zPa>dGf!|zA^g$`_}$pPQCe8_J%B%fPpNr?{w2rG`#$w z!r)nFF4t#mC?;bv;%@jdjT7bNo6?yH$wp!;NV_-jTB0vo&Y6lXN*24{eQ?99;g>W> zrqIHbE`miE=Qs~E&TG*~FUIfs#d`MSom?P_c^`29MSFYK8KNSBhfoX}p_B&jy~NpW z!KKJp(#-fz^5R`4y9Zx}eFAXEgxo@u@tCooVS#Ht7Y`5Mikw8MLZmqBR*@yr#qhGLjh0mKEH#@AikMhmvED4gkkPHyj!m1 zNoGhyPcIBqCqc4X`Y2V_8S-m9L?P5&T{77AQ%>9E!hbVR?Dgd)ed4{W!O||}%Z^lb zgW7iMPvF{bYu<2GCD zQCi247Bt1dIhk^=emoX))*Sbxt;Cf;@=6MX;S(R1E;fr03fa6XA=LxHkCJJFTSwax zNVD|xA<#GOIQQ_ zOgzPrTJ->XRIcyyJTCu|*YC&X=|7+ZqncG1aKF8jcYpwad%<4q+`q1NDl98UYqzG+ zxQ*#&tn$0tzKdEUKVYt06T@f=fB>tI)%IYH_A53 zSv83u9d3REjRwqq%P(OXf4zaf5n1h6RDfAJp5?(!hs%{ry56UORegJZe`hcV&`M`D<~eCTo9;qyHSRl>?>dbh){u^-i<>QH1*flb*Aq^ z(b@{eTR?!6$#^n;x>9n$3Eu7z7gkmS%q>ykei5=WPam2@YmAA#VVv$g-Gw%H9Gat? zM&o+WziSTiq&DIYL_%L~hte)QJY8>RQ$5E}dyagEEi;$O)S!E94(HHF+52qiqfy!_ z?IYp74JDV$d4!GJ9O`)X0N2T)9@NO!M&wZoP(JRLUk9Ct6q`;oQQkN#Z5gcd$FaBI zZ2{uz;BQsXR*yJB*9~j04xaRIu~ImEGhrYIJpk{Q4+E&5n!)j3$!{UTOC?AhLgBt& z)}hy!3w|%qnYesrvCoJ`w1`Hf>QM5X(Z+9n1gSbZvQgQjHMK-CJC-0#nocqGuksb- zS$4t4`9{`w6;fCAwliG+@H!lv{A6lsa;86A-{-2fvkK(SXRB=CWc{jip3QMW{%rI@ z21Ngwje5Ko$^i=-+gO5_0fEq1_49c9xlzd4=Uv5x)1_8NdT|n3P8N&GE{kUq9}oL{ zsNzU%<0#bF8#iz6>dfW8nJmSfw2(WW+Ky>CknJ;uA%)Q1IA9Q5Ix#UVqAQ*S_ zkw&4|u`HxOK0}uz2j28vp^yaiLIgxp%;sI-{5ZqCS7q~tN8LPEEq6d?^4BNtvt<_c zDS}Ii1Na}&ASxD%tq4U#NoJr|sN}M8yMc>UEEHDuf5`K$Y)9rSc`45UJJ3?p)Pb=J zgX0krn4hclQvpU^hWIXagQFr$esiczEt8T-f&zMG6f=CC|L(skGV69c3kgRE<;cy2 zWx+$H>^PokZ(7p>XJdPj|M#Dtzvbq8*1@51h#Il3W|lf*IVqV7zOl`M8Chyn;%mAR z)6hYG@-Ch7d0;=vr2C3}ZV`4YXa8-gMuX#p`qQ`jju_$P4sTBDZNwutvQZDFd6=hp zIu}I!o3_!tk%uTP^_w|h+Y0BAr(^eMErvJoo-?KC$Zvtc!*iPS_UMKR!Nn=I!0>6b1$kU|oj9k%q%h;9s@++uILq+SzcTr3aS1qOyuJh`K~QjFuitrP@{ zPQihAF6Xgsd&8dx3^YL_abG-o%_$ow=*u|7fPVO%e0f>G%d7`~!^yTDt{XRn_j5On zfP)pzHa2;Ke&{q^>vlrLXgovpaOFAJ!bDcF$CW5)+LLLMpCbpToK0QgcHi8&6zI4u zos|<`JkrPJ@dlZ_*04?aWh6Y7BskCO@Lu2=7lrrP2Y|(HJZKUzK}9GOvq3*#uwAl% zG0wE4JI9s3ZaDWyQ9cGZPve0Ge3fo^n=R}AOi(o20=oZueu4zJki-{&dqG;{7e*h? zpVhBU@yqs0dBXseuVi@mw{${uXSjwqeq0llgFlWPsokT;XjkpN1scNaTZ_qn*FlHv zf|-B1a2CpfVH4-22SCTf8a(%T%4f|`4mUCP7g}Km@zViy4`6T9|JDe`*13*yygf1Ng)U7J6&QPJsv8vozf+LX~ z6DZM8sbs?I8cV^6U%0^0orcvG5Iw_~n@oYUr(#t$PAX&l#xYxb!cL+&vpcPl$1+*W zG4EJ<+`d`4J(sKo+-I%4I(y?8%}?>Ftplkgx>`-vF51Q#OIG7gaW?f1CchN|@yqV% zS*7bW4p+LGtXhN1ch!L-4=r#nN&ybUs;3=x!h)k-KG2^Urn6;quoJHno6nBMJWn)f zVSqXZ-0L4?2MEzs`LA>xE?o;ycb~Tkq}KhUWU!0(Gf2n1$$3ut@du&+9jwo{=qY~x zIWcL=x}NDC8p_wZ3)FX|aGRuTFNUX~?p8Qa?)JZY&e+^-bSAnpk@_HI3{Cg{2u_fx z8}1nMpH^RTlT=H^L?6sJBcuF7O@<%PPBUY0oAGqr8URgY*kA3UsIAfnh5vB|xW;8R_3_3X5HO zg<>I&pGP9x!C2F?y;k-bN%(WG1MV+aDJs$%5Lx11C?9zQl~7lQG6M1w;@_9?ldunw z=BRE*f6S=smD)ykgcI*5T}sMO?~iwVDaMZ73fhwpm^~pvo*~i2% z2c@HE)9NBx%##_r+$3`K&W1+9DjKaFWIxw)2nR^Z)0W%}Kpdn`Q)1nZ#tMn59&(uT zq6qf&25U+aLK2lEd}c7fUGp^3hMu3y+n(E z%O?xZA5MnuoV=~wQW~~a@(ELozPmn5q2m;womvOx@RjstUjP>|6y;~B;uFNEwcSb* zUs#L(n&w?*f&u?k!q?=uM9iRoqpY6ixlEfW?}8edy$f1{1F^})tZQ#vl8J*VbdAHR z23;bOVpu3QH%gPmv+iyRcr0`dy00aB5VjVgt#JfSM6T|AE5}aHmI}EewixjG=Xv%T z2hbtJ;_+QZc-wR-n{oRiG3D=U2yGGw@ZEc`6bh=pLo+N`xrh}ETP?1rfv*Aiqsy0q zdyErFGq8*^%ea(i8Ga`RB(U}{JgNgfgFpKXMm`P#?1V5CQvMECR{0Z=0RMwX!A_|| zCF=1ko98#~eHTx8FIJw^bGO+juF^X{-J*c+pPe=QH1I}`6C3`mwvw|@rLOK0nDm+O zH{cIG7m2@Usano9RyJFqRm{tt*{+M*I3MzMEUD*c_VOg&*x#0fs&!wsx@IBs7~5W) zj?o%_??_~GfR=E*08M0yl@)`z>Namv2&43Mk(pi!D~4StY4Ond8zb7wGgzYJsh!Yd z0dS6f&XED#=^kw1J^kiH=(v-sAtN`my)%g+$*C8jV8Vmvbk1E#*7o(k89>dwiGhZu zI@WMl4EJaQ6gJ#n`4yA?yCQ;kx;{BSKt0rhPOaU|jISd|T+?u;fVn&UIeWb|_6cZ6 zvc^|wS90ZRwH09^XKd@;+{mNnb$W!9vdCE|Q{(8@M_(Q9RmSE2!nCONEcShtGbfAe zE5W&GRp9LQypS{cn9JQboT=CULDzb!^lYigf*Kt8neOqyuK`w{1x6U5o`ZY1|JO=H z42u0R&rYNjhFL|}>gKlmO@2UL?z>u+z|r0jyh>7<@WDp4M)7|foB_v23evJPH(!w= zW8PqzDSnXzSxV9TvKT*>i*Zq6k&10`UD^;$Dy;~JdPe~Z9y2?eHsR_Ehfu5w0zwuQ z{5;>jP?W+nq7B4h@-$>FmjktnRhSEeJ3eVOnSWXTU?}(+=>Niy!-jnjF3Jeyga5zc zp7(Lo7c;nrFCB2D|>Ks40JPRvYW0nu>(__|>)NH29HX9`o!s+%w9k z;5+ud#6jT1zv4vO(~^dUd-Yj*JcGRD7Im4ZD6As;pVQB%bV;%jk>=UBc;`W4;WA+z z23fWNdfm{tr)Q)IF%(MaK27-9e5VBXg>^*|_&6alM?p7b4Q&f6E27feSP4Z6kSCzv zR5n)DA9y}eQm60RgSMM(+Hz4*XeD)yq4`e@bQEE>e(d?F=bzXmRaTMtZ?pHza^Rjp z0r~udX?RtULwPJtnSsLT_?(19)WT$b#QO$ffa<|#xgAzy3Hj>-D`Juu#=Rf5Ij71@ zkBjNB7%W_zRH>ERpuom_vLqTl<@owCN7zLW?N&YwRWeN#*M@?oc4}ZzU)d_Loi zY9>BxB*7A>%l_8^hH&MgrqdkrQ62E$?ybsH`AB$#BXu2yY(A<(`b?soFL7?miAePg zF$0EE+`@``-z&yXdr;~kk12(pZs2GVS*X0*MD`5kPJtVQf@j|04>57_K^FRrShaLI z8Be33kgVw6B866T+hQhPWMD|khw$=-nEIFN|6dxa2ZTXep+kIqgAfch103Jin=^NF z(gx8j%QQc{kz%av6fPyoYRpuC?gzRl6lNdef&kSjl4Td$H6}-2(|p9rh&ISZ|tf--SplBoan5 zJqjj90ytkE8MSWyJ-8e<@I_4UP`_rQSjt5#W<}hS=q2+!(DJAIwg7n#XHAq!jN;vB ztfUO~;f@uJ2L)}2UDB%nBZF6}M!J9IR|@b1Oc3j)j^*xEBxs`!*RyRHd~|+?sbA8V z-${zFi_a%ZL8IYTiRN#6tAqXhM5`F?zl@tV+y(K8V3zviu7RJ-zK!WhC6JXso;+1X zxf^|zQ#m|GN8%CRR|he7g~_ZEK5;6Kiha)*|8Tbx<~a#$f~lmqew8wU^cDC|Vq7bg znv(hki&--C)jcOA1(LDYt=FtBJFb-(_DWO{Y@9*R^WRK8ou9c*uw;R*sbo(vNgeJc zS%&WJzxl~N@cwsH3Ko>b7{3JmcYx+D*#CDcoJoq1&M(EJ-sJxNBP_lzEK(R~o_9b> zyyi6A=bHu;&L*xeTgW6=(Cg1Se%0LfH_!7IR?2Q4uht^d2#}+5Tz^Jka{koCyt*=M zVsb<-=C;e{%b_oWX(`kW3k>&>5+w2?jyNN*KJ6sDpa_app0x!KS3zFa&&a|)C#q6f z+6e_o+X#>3#NR(H0r`MQTr4M&$DTJu;*=Q|D|IxG>0zAsbxJiy~cC=+t?7R5ziz4Tdg2+MPtnVd3sm zCgmATtv3|_p=sWd$wW~POisn`)q5s_s@hjVOF7--IV>d4meuMrhhG`~K7WGl8z$9@ zpf#g2@AY-+IikrgESrzqoyU-E6&=XQ6lL^H;79in7>0wo+$9dC#cn zUQ-%Ei9AbUxTkk`!ltO4d%L`Xa*Fhpt+yiu!iBSJ;2R|SdB$A|?m6(;bMZG0c3=H7tMnq;LBk2zuO=e6jT7x z|B`w1piiQ|^%D3W**mTRx@9JlObP9{pU9!obWjg_GKJK_u!%RMKN*Sj#hi>!MY8OK zU+$23hg1kiTms2LlaWikAa-)T*}1p9|Ep_2jd1n=m}2kF26adaGbpfaXe$x}u!J4C z255qF%&eO6#+Ed|8~H^g3hqYZx!1sS<>Z~K-y6=tx8y<2omc)MD_5bNi& zZ@Obzq{KdtU-+=tdb;|(gNlT{6lCPe(BlHpze!m@-puXFQcn$1Te8{~KwsC-rcS0$ z$qx+s6xVMiz`3npeBo}n{d-tSko~bS-~%t6I+Mj!_?;@S^2FN|^u-U=y_v1C{FO3nN5pV-j#ZHzC2! zbhXxAATp)U{%52^5*<$hfg}KZLj~=$$MkKnYL|MoPEb}QGqZNomd$SDzw@-|Fg-Or zGRn(W3obi@nFRov%%dBPRt+aPjE*{+mF*BSyo8A(Z<{}D4T=DnLg`4aIdAtf7@7F$ zhf85?Su?eVXCoeBI=9{n9{Uz2)#PKa1UzE>41)2oL_ei7wBR)9xPkrw6~;DQ6yT&+f|R0hjA?C+oj0dpeC(4_R4KJa%gO?t|3E zOrZFZcUik%e%EtV_M zHdltQhq}0(+m-)X8ShvWFJ};ra0n5aCU8hA{QlY2IkA7x$wO4=F&7@1zcae4UvzrH zJl>cjUTJd^yaLd2dI(^+%Pqs>noaUJa;5aTpi3GHb-v$s0S`NqbBd*c#>Up!;+yZ% zB8x?rh*l@qd;4c?WUwB(79Aphv?j)^Z?yS9B$EJbF|b`MGpPY?Pj>~FBlPPlq2ba> zb4v$wKahxmHYHhCmX2$+^$nh;P~{K7nv`TlD-Rd$QN2tJ*B>f{4KZ_uizfM0g{J>mXq!bQvTyM{$N5PiXbp67OY7-K@ zJ-(So04~?FI7CBobz5C`v)`KHcUjfQ%jj?7J>Li}0?qS*qQt!zMXIG#7-O629hIzn z_(67;oJnbpdl=L!BF4rzGwo))XX`h2xxfg?3uNc7Jj|INoLM}(LET|3 zBfisgWqw{x;qEou&QH#`=y-=UyT8BrgH&o{xE{R_`#SPzcN3agt7hW_`FZad&<)uU zx)F($GTzEqHRhJ&%)w8`+ZqXh%V57mBH}%bfXz<_3;FR$VFfbJ(V=pr!Rir@doUKV z=E<3x1;YNG4bhcY@xHn1;AmFESyIf{*=J+n=z_%djJkkQ4KrHwm& zj1yjO(~@nq)Sz668nCD8GvU;8d@ zROe9SVi8h{v8vMjzx-<(TM9Dm>sPtAA5HD2nr!@{N$1+*2~=DR&_W65vou zT0O*T=nb}xY74#1@%x2xpLl7N@(LFu?rI&{tKvV-@f6>}@dH-d4$A&d|0Wf|8~eat z7iulu%5UzcS7RGGd+6<4GGR0$AK(!LSw*+aAXpZ54Bqm zZ5Tr~j`mY?z?BeFUs|DAYMP#wA>MKmYga7Wlazcm;L7*~oWp#D<d?%N5%KLg8Fy1$MnMOC#u4_uQ z&rhh0P^tN03;k3rzhEPFJo+S7hb11Lw_i|2hID?-u-vwaF4e{m2Vv6n$?pCnO7>f| z^--~15A?A;iu7u=I#}me+y@`S>UNtx@x_J)csp%$ zQrW03dj)4kpSW7K;#*^B3vpf(8zJM~wW|3GO6{2JE8@f$BSr46vxfnyT8#>7;HLr>S7Vl!4(bOf9pRlU$^j z$7&iR)Zr}P^nA2g>;IkxZ}s=SB<2N__op|6{-9e^;&nYiG#=)()0~n^QbR(UB|zzk z!5@mVJ9e-yP%)Nce>6x|fj2j=sh*rR=fl}$G8!D}w?2s(w2*PuXqIVtyBh8A%(O#t zS1s>Enbgr2H(=hMKKL9vbjuEc5wGff5O>eqyspp4bI&`Zm2{0vgyF_-q z84*Vp1~etzBWO4i4$7WdeXWJ+6~`KLRuerDRvZ5N=wbW{KV^EN%@>p`{4&`7jm;i; zk)V`xTbO01PRXAx$zR?fh_u{Nl%rIOrl%t7rzRN~u%}pLaM~=_<2^>_++Dumy(uQnSEubkGc82d|dA43{Mi(Drr_$vmpv(bX{ecjxhO_|GlWt168SrKOc8POxGpW`193?tsSj_;U$epu}r{$xbYw$hW}>Q53XhE(MFrT zKM?XA(krV6VK-$H?C=7+((vRXhA3$_N~yZM<|YmKc^{hpQ`hQL<&TK8%BXh*O(Cxu ztc{e*>odS-ludrE^IvpUraylZPEGwC9ErQW<8QCZ+OQKA$@l|0Iyf>iY$pf|71{B= z8iSThyx#fv@W3h666p(&yv`kXpSb2_pW|nT$-mF{lsow>7uh38&7*sbQK<^>jxE`9 zHs8`x@}r%M?J}$USu5H)CrgE>ui%!J-fE|T<%&e2BnAp*Yklzii}@a2wc>Zyw$?%Dva z8tfum=9uS!il150%l1Y{{sV#Q zO`kL--tdWlLKgRIEfL{U+Md<=1JTdH+MM}ZJ6k!E+|`eQ#!^ZHjvvCVc2@#Vf~&8DF#)UlqBNAy}YO;$iGQF)LTR1313 z3AuViVX$8x7m54QSK~~_19wVl_ngzB{VP}-oykT8^*=!)x%`wgh80lm)vKkETL0lF z5&auM5PXZnjj})+<_YR2wt-`J(OWK)Eqj*$Z6BRpe+X~`|FojzHL|G4ix<{Jb^ytr zu6e^9XTxKOcEf_h&wKd<3nuCF)!QxT!M=QnksNuuEsvnfxVQcJdi?XxXI_tYo~`!1 zl4wPJx@1YKD@6#>OR`SUz^ohTNQs@s)PK-`Lo7&# zr^_|_xEg=`J36S2*m>@ZELLx%jh-&n+I(ITAffrcp{3kUs#;vEM z!CQ!rE06By9i^ozz^Se*ZCNp-@y%&lD#R#)DaG7`!a<^J@e=V|)vCzcY(-DRjgC_; zzK7YF7Fm5?GtF*Z=1k)EenfqNl(+I-hI9V#z|SXho0H;w*YKc^cJ<;eJjcCbi_99v z*T>)u{=xL64VZsirDz+R$!WET8Sgd&uqB^NogUTUgasUQk>W-NJm@=#vL1Ew2_GYy zHfG-W12D6F46GXFwqySSeW}IAYRPJIY=i1YQtyI{=35{;y@|^#zZP0+vQZ?1o$P2j zI_4~=MGdiQ2_;#tcuYVHFbFt^6|oB)UGz{sK*dy|tI#+L*4AZnzuuOFs1y&i6?ZDG zBdi`uj8}6Uq6quKtzbhp#vjALOxioC|7^_Mt2u6d7QcdKIZuo)j!;>c(7B~t=hcYD@F#J zVDPaIK{sG6^fq2_!m1EWd+3Og+%P5GPA+MXZVoBK>Sy4L$lTB)R*3FfBYugYuZlpA zpI|cD-RC!IrM(i7gH;UKi^|t8lk^S*@AQm)$ME1S`mf%@@xwCW3Yk zw$t&CKm%)PLX33noKUzX6+0g3CqD(Wk}CYh(f)jKJ$FV?+JhF+UG8=G78VQ=?{O))R`RIlW>sle#Vjz#@A z;ydFwd!4;%uu;C*W@_BwH7|aTPZ-8OcXPfg%iW?4PuPcV`mQXNe>Ji()mC#*KwbpO zCz6<_$D!`S#i0VbL4f5Jjz-U7#iQQnr-@=ASJM@@ay$4T?>V*=2*FEQgb04ulEeQj zH+0dy`~==Z?*2N?a*?0zG(zdII#U`nnkHX$$al&J8=AI$aI|jC{OK}t9vzk%jrDU% zBu{8-vePKo4g#I=yODE-&yAJmhndEu4J^2Rz0e&KB3gF#2wKFY9$1XQF;XdXl(a@M zO$2v!Zl~Nzw`H{i2pnM!n8|vz{G#w*&1Utz*O@w}{qCdp9EedBn2dj##Eio3e@ttO zh%dRs#*2kF*Idb*YY3d|mA1IeULjI{y=N|nna1r4jeI)5O$4GXaqkv=6q;}_yv60I zm_m5FJTr-IOsTdxz568`{?>zN(lt z>KtQa*IFal_yf`(nk+pc!?Jqi+nx^vrgdv*{>DnLNFWW8L`9V#2y` z8T%s;I~+R~JHtqjxb9=QP4y*}X~sfhWq#d(nNcYyCcMt*S23q9o(VW9bJna|!|4Kd z$&Sr3LIS>H)QqlESkq)sK6(QbrMLG$v{RF$CIj!cs2paY0|H!8r%t~;LT6a;&_OY% zQ)|R|cZi|+rI}z4Y)xf7GCIESn@DSgxJR^m`B-vMQZw}VwS|!p zkqDR9xGK#d#1=arKX_PCb@h;1pWB{ZN_$Yva{;XpDRog2tAXD`(yzJq7fcE$pRw3R z>lGj=D)YQ6{+U``C2gBrc9Nzv{egKQbvXL#Xv8zn=-}fJoj#qIymgSKotImJ`Iz(K zQo4DT872?3x%jVvEz@c#C8Jg0=p_izt;eC(%QiA8|1QnJ8}2uayM6WN4rD~V78p>& z5-3)PvY{Ehku#>MCEUNEw!60;2TImoS0VryN3rFDt%9#NZ&<)xFcu*^#9($eyab`U z%r2Mita2+mAHs#nwzXU48*W+&kTNvwX z_Efr)nsB_*t$Dd6IdXzcwmD>dp*9GQ`x<@5P%R>?l@8~hdudjdVztJ{f>9EaI zg(l_FROJMqt8C91GtTMtTC+-5Xmc-&sA%sElITn)ETlAYg=|)5GPf)rs_~HI*kx4T zB!;%z^A4Qyn_?OpXhcVDEMby@^J&0o+MBecRgbO8Fe?=e*|KY@2AG^6wAx>+R2d?IW`m?Xsr6O;1zww2OyrZS!eXdqZKZ;eG9_s48Wx&xB;LEwV(Xi*JF=;b8j(9ih&$dx6x`KyjbqLYjwr z&Fi1raPSPm+s|xkMWp+lNw;Ut)UzuI(3CfCj%k3rm#a7bwf^-&z51^^3&jUg_Df_0 zYQoZ95X7bJh~SG1M}}W~T=}>Gqm;sBCXKvS^xhIeE#FNN8T+`}u*Neu#zOrCjdNytXq)Wlkt^j%SR5k`v-?K$hL9hDrwv`lZBjJh|GQR``}sPpy8;9ypY zd3uh-d$h>&m%SOJ;J`tq3YQARIK_#6G;?l%hYK}-&NM%YpZ4aeM`Gyz9N?fz{*B^z z^YNa(W%bm2oSXVte|MXi@CO7oi2}dx7)ak|NNy`q{o^DMD0eMM^;^0~?&ax$dyaE- z%H<1op)z)qKn*~vNOzqFAqQPIR(u0^JW&R2&!=UO>Yi~yw{|Nsxhu-r#I}<6v zdE>XU{r6&I6kN9@8186PtX3%Bi?T2|8-va6@l&7gZ%`5gU8KLfA#cqV`tz<9?!+SX z{D))xpUqeNVQz*J)#7hV0|VnDQ}fGxh2A z{|MnZeMUX7%vNzZzqs#g0pESpxgs|Ak2k{vj0+;9ogH(i$)7CDM#GD6!AA=F(-M`b z@Y(OKYi?H%#8a^pS?91CEdig#IiCXiP&ZyQAWSL{X>O< z3Mz#V+rl+?FR; zj$tAR(Mjf)vr(&X5CciS+tb6v3Ol}PNFDtlXcDE3*zUI?^vqi+R*c0D3Vwbl6qGIu zZu9r2+x(hE#ViX8*TSBTHW$BmQ{UB#msvk#eJAQUYM?6k6p?X*Vp~dnAh1=AfrsPl zOlc>7R0Nr$Xq)h!Lovy7o0P4GU1R(rvg=B2fa$A~BMr2CzJ24vHeRq8(V@1*Nw@kr z8TUZIG464p5zM?;i$o}5u4fy3FzDHlDB*VSk{O*~4(2;7YS8}ViEJ8h% zJ@Mp7K&~6zaYYFV*Hw>)>$Br%b+ypB5}@7uF!%SY&45nckuYKxcufH8_xj;-x_rip zJX_kDX%|b+nD%OZTR|aCw%@FYbfi|k#=|YHNOM7&*l_(p&wr=_@Am2^hn{el;}lRJ zqU(if!>iEQvKa`E|t+L8W)KEJic=YkrNnXrX+rsY>-!4DeN8Bv(RkUk zi?Y{$l`jU-F#pl+&C3V~YxI3f>+dSrXP9Yg>zJ>s(;OU`xr(*UY}lxuf9-D~OQ_LI^Vah?WKqNOb$; zMXzExF@=SLI3t^HF+!6&;u2BT=3hZ{V;xu&SND@boxp`U)NNs;(^qM!gwxZjGA|qe zDLB>Q|C$rf>^1y>EGmL3llS{wF~R6D#-x(AL}Yi5X`b?BdpiOY9D-?M7301$WzM}U zCI7)$vlVY{RrU!7Ay{wRlr-4u@1K!F9p7lb$FHZ9Bl{d(ZIp&&4mc$?m=PxI5Jj3y zuf;aq--v3>xjp|Cg`^ow&$cfVlWTR`RLxnx`pA;#c>at5wu#oGPjB+%yBN#=lK1j; z$GMijUI-ksp0epT=?9n#rQ0VM_KbnK_gMCEJVD3m**jm!B46j^V#0TK3x-O>>odrX zuE&gSWd;Vx=W8YuuOno0XAEha<`MGj=r{m4zb1l{s5P6DbBU54Qh~W51=0nW2lS6; z_azWJ1tBFcO*(VgD<$|QnFit3)DO_Jq(I{PIX6b4M8;Om&-MCw z$Hah;ouBGxLkuER$&FVvT8fU0ZvEs>r{8VUD;FL;p`oz0%S;JUbESj&fDSMDTuK(8>u#s0`G zw*lL9iH*R8>hfC1=Kp8`@NDo9QfBSF0d(4W{n7wn( z>GM`EFVD{}O36#EWT8Yz{p^#-prtpU&G2h5;+S7u5mRJzP~V#oRvV)HjpYx0-y2Ww zz@?dNUMO!$Sy&V$)r{zNb;Iw~U0djsfaX@2%RD+P!O2L}+SZSiU`#vT;_BQDc|d$< zu{p1;*e_v@06AKX=x__OKXX1slgyPG*t?^ z`BxPE8sZk~?q+iB*|Z2sXMb)!(^``;P*UB(ooJLSMNS3zJCYwt!XKY10+|QU5z8TOP$if0L^M^i!LiFM0}q$TKfTzOyu-_?-*0Ov%TP{Y2@lMuH}S`)f$N?b;vSEqH}RMdg*={bUqPA{kbN z`s_kXWWqnglQ@nq>3bs`lH2-Dz^ULDzG9pxtfytI(}Ny^+!%^E3Tu zj<0>v=;We`>X47?)YBLI+0K_7n5X@C2I#8|o7P1rN4U z=+^}wvMkDLg2SUnV`9o;VBn8$W{~!8df1d!Tsw~GPTntz8TWG#omW?1)E=s>x~MOV zP=}6Q%e1x%RbsSzwaVLtU!u@H9LmbIx0DEljOkFewNRXE3LRd}QX;Y=2TL74UA) zHZ*4ig2v*iQyA;x+xFTl9`HS*ztMLr>LtY$yhM(HZhk=5`2Z@t)on8Qjk=|rEk;?i zgsT2nuL)stE@MJ` z$x;kC7LESx4D)nsknk3F0{Jn$6X`-iNHWhHZ?J)hWyg$>*PfcCRm(x>(-rl(3sh+X z6itx3_nWS%wKtZ;> z)q^nbiBFA%VW%9`ufiVGqxcp|HlC@C5Qwd zl7a4I2FZ0Ww`4NLPz~oU+UTMd)SIXlJ-5uMwmXUSXg`9${#KT4N z^4OESMy=~g87-xlle|Y$_MWna*wL{gv#|hoLDr1BE7&_U^W3eo+7S8vJ%M}8WB*ee z!Z1d^CW7t42+zRqO-)QyMqlb?YwL2;KSnLDTWv;zQ5VTAuzfn~57ClG=LW|g5!C~u z0O9W8F?Ht3xU$RjYwOp?IJ`aj zm{aaovYjQyc>wy`9RzWTw%MWuVM!hQXd89($<|Jz;ahI_SFuQfk864r@kP_=z6emt zVt!SHeDe#g#>%((x)mGaDX;|EXT&ufkznQsEWhS2MjLZR`8nj*u+JO7h`kfORAbcS zwkDDRWiVO?4i{*q>18fB^vL|K zST{vFkP_M}5DYj?J3JLiy2e({?70(YgPC~llzC_+U6=ql1t9xV`LJ7__??d`KjS*4 zuOl8x1&u)Tk%0xOX3IR%_-QKX9MQ;L6U~$CU7BwH0bsPKCCKKj{%Lz7%7=50usBr1 z24Utt`(R8|5DXVP2pF78~`Xr>+hRPIw?R;tG>Q z@J-ElQ6>dl>a&G!IMOvSMu`Z^#o%EyPGPKdQBWGVl=}AhW~PfUSIsT`8uzB47dx<} zT+nRgPpzRBa27Hft40!^U`|0r-xyZjmLJv53Z zcv%?5TQpG-SrMauJ-;4%HE8nhX5L0(KVcvY$1LeFp;${7o_K)C2x&o`0-uFiHfuFFr*kAZ&f0YF1;fnUYi#eBLY3Qn?_m?)7RcuA2p@l@ zWS`P9`VoQ1KTQF}-wxH1TB(o%hq4zOE)f}J_6Bz<&CvlN z;siQwLlI9(EvK5p22Fz-1zJN#ff+$ed)f;*SmIYab>n@eB85kR>S$8%LE*R zInb1oVieEF3}$!#dNf+?73-2$Dh;W$-`M8k{sI903iv%}ZF+U5J7efX1NwHxJz=1+ zI55NjOv=%dDe>cNbmEg|lAIr$g$BIqdi(j&kMBa?o`nO~@K4qDLe@7Jq@RKLh<4hL zA1aPd%vp2aZQRE?H`S>ku!{GbuYXK?Irp))1sdGC&vlBS^1sgE_N#XGek0^zB{>% zYV_9EER2@JxX1i*1-=lkUIxh2sjA}|u%p<%pCh_?!yP4D7VzbIf8j3rPyB~}w03xu z);GOzhvNRGWG)kvY+Vy*79bzo)op@(4HgkpSOsos(u*vE0Cu|VAw3(Ljc)Cn)laBt zF@Ff?FL8agw||q zT}8sklHOYuN7FZoo@e|f;LEF<;ig=x=XzZyjr8u3Hl0Zz++!yomShnMBhK2P9)GO! zV6(O9T59WVOrSp?QIp_WwP+0$nu|F>$zaTNQ89nXc!+Wa6ezQZ7%)@$A2Rd(pNnoj zA|JOhqcFnW9=AwN{dkjQ2e$k?`4ZyS_#JkuMxk!x8iOq}2~w+!xu3`OuE)&n6^YS4 z+sU5Ncmh9Z2RZo<7Hg2lg67tn9QZTx1*HcxOoMhqUpwy93)NU_YxUHad{JSz8_dU- zwiPl3a`n8C4&)^4MS569vONl|?iX*a5fN~%hZ|Cn00x`M^7=?Cl=k>7ejP~OShq$} z%;N_-t=95DEzbG-fsnP{nNZAM5rE8kozu4#?@T1n3jR;-N&-qG2%Z*CMuK?ZW7p4t z4SeeP;X}>~!Q&fNM|HbeI`v{(i|G<{#~<13I~Ru85Pfc1#Kgv7C)HcaZNwvcobdaB zo+R?x*W|sQI_aBQLCVjWf>vZ!el?A5?!xFE?5Kh9r4b_F+nNYCXV>)-9cfKAzcj1? z&XN-`=4Xm!GxWY!s<22`Ll{movl>AK2`7m3oWEA-3Y>6%f18m8>NwBpU*g=IglVNpEP&XjcDsP8yB!^CW9cLd ztou&^SHTR|YxmY(uK#ou;7u<$!m&qF)(B-cD^7oBTpIS}g3&@~l+0)K<)YUv?znbq zF?W_x^2jeOOJ)qr0F==p%`AyBxnl1CH{R=CMnCzjxY9R-8$CbOxD0%hG}!!nHWZt3 zI1)Ocswjjtmt%K!{^RDx@L<{)JV-$2c#O4i;LmhGnktmRm5TmqL0~ZKOs{De5>bzc z4&*NCE#Te~lWUwVF*JCEgY6#3g3AYao9HByiNly^3czTmue%7WV#9zojfHWpTywk; zJk%@KU^j8*%J)B>Hj&F2c&2+2GaCfLk*_4r2q)!OD6U19`8}AkM$6fSB&L>C*rz3N ze5t!N<-OwmHb-C75SoxM%{y+>;qx~Xn>wS+C!42Hm}2Tr4#=;R<5p z@p^Q|UgAO`=gtmak-HUm3(N&1B6>|unl~T49nN8vmV z7YfcT5=Z#OyROr}umMT|q<}U{DR)X4L{v zm|caeJ_;E(c~U9pR`^de+>Io|tz&g|%)NL;RS1F$kXaPjACL(W)n$Zn`4KxJv6 zBB%}{q&AxNu3#vMn=H@uRK1^Ge|wvHS9faJlpPbMcfQc+{Z1|=zRUr;iWv(!k(%WT}~ zgqrmOx_24lCMrlub9_~Pzcq!p2Wj7!Nor+JGXA|UG8^plCh~5P&>W{IHQ{&0*N?xN z$YUHsR?VSkzJpt>>s;d)wn(MwAwQ=2r+!K7@lV!YRd|z6imgzsE-wuz31_5IRwbh( z{s#4AwK!3G`k9I<=51@{u$e}3j;3*Dl2WCnY#loX@x@+hWON?A1sjGcju$>yg47d6O2!@OQsH6GTVW1dt#oKE!r2%Bc8hF^kG=x3oBg- zILSqO7x|e3pVv51%{2wPvWUNKSp6AoHlq?_W^ssR%#mh6^2Hi@qL4#YFjn)(ypBjjC zmw(XwK7-d`*|R^iBUPLkP%GxMy7JM#+B%jA?`?2vgBX* zVq`knR1oY~;WB<3VbWV0rt3B!Skwd({bXx3ZohllBrK7TQOJ*0!Ogtfg4D;ICgGo5 z>;0+--#gPY%=d7{QcAzK8GOmd>qiojD8V#R_UOX*fY0Bk>ur2QW<#9UOKz$^0jTt3 zIq9PQV{9;r)$)hH(ed*d87&(HoEhG?VfIRi2F|zRxx%H-tjaW$@H`lCUyUIj>e}^N z93^r7_KigSM3{#YKZJB@1W*@@^b)(78~8gYrV9-t79$qc7XJ8ycI|HET6gD9woKcB z#%T&>-cCJVz0-uMN|7?QuyVq4^ar{+r_TD^!Ww=jOGjF4&=f&wz`#Jt**1|dGM=c6 zrDx=(kN=3zG43T3E}p*#@r(2G4l*hA=eoK?HtWtiiM{(+QE_B4m9bzOZE^Bg$|V{V zpoDqlww$K}5GwV%heRyG9#2LgUzyy1`%k}#2>l?lW!(0x)ND?Op%dNHiW%A*{Rt#jgNY*M3ujxic8YeTMb)I^RHd@WmlKO6spy}0R@Mf!s-or9CPj+SA(OY>oryyjP9{X!0P)cw{*#8j?ABGI6bBXIkYyud3Sw3b~^yd zGHxpzx|fu214-F)l?IexPHD+`8@Ef_x6f>n=(>9AzubR_NZq9o$}vfk4~sHn1OuR| z?;*g&@QwHb(Zri*%BHfP05KSrT#m`*IqB<1?wg)B8F(Q_hH1p6hBAadWb92hrNVOr zNH0Fv(2}HgQ8tFtkx*%lmczOa5uwm`8;`!DBTL(nCsToS3+3jVK-xQ^fd*^+N5!BQiq{V> z)0yZL13loxP1P=FdWEe@jS>xSVt$!2QuoE;@6W%|C40%M%?pr660vI%S)K$>wMcdR z-1)+6w=Oyl?(2vYBbo2&b@kU3y3O982^RLDd6+%yLm8VvPghhz2m@6@W$nu%!6VAq z8-UBA0X<8d4%GDsqUdCBgam+61SZ-fx#0R55h3_vXSYIzD5As{0Vqc%a_|p;yW?IE zjA;W2+{aBg!TN(e_TX^l^Ll6xFzg8MlnD{t6#z!I|SVzQy3_vVmD%X;TfCKq`l>hm-?}ml~QXxOd zvx2(c+jIwsvC1Ico4pf}RmcuZP=M^cfKRvefKEC%vqj*Jih$skKi!U+mM zytl4G{5u-|9P1xLLcezo&U>LENQef2;TuFyhB^RXvbqqK_3{qA>AY?p0<$87dJk;+ z$48DIz(f77P+*-w0MHp!&RI?vg9HWTn}w7|xDhyzdn{^L*zh*kp;?@)vSniulFaS;*x)%Kli8y`?d$E)7kROKSU zp@4g*0TTm7%4Y~5%1gd?%=mZS|JRU&-AM0j4-{dgjDHuGcyL8WVZ{FpjsL;$pC8`u z>;Qd`^Hf2U2z)1?D->92G61AVHGyKSclpu;V)WJ4FXIQ~@C6 zj!eA3GJM}vMsPGIYuDbPwP9T??SCw%e-cL-prtk}jNtk_0KClGqM4w9GlRVgfDoz( z4l~I+WS}gX{U7}B1!Vwa^Kt!4^ooV{y^W=*NH@4|HaS2jITBO~L~vzbm1@Jn{$GMK zVEfK?TOuU5A<}n<)E9LHX#KyS@t;Fx1MGN|>q5~*16KqX(t?TaC$LKfi2H8jkNw3n z0D3&zVW_14k5vT)Mh(!CJ}8jz+yVezEtysjx9=j2^gqz?uWSZgW?#Jj-E&MNptKn6;!brOWu)x-S7{qPgJkWs#3D ztzTC4-i(Tn0UMQ8DKy(>6FD`Ij_%j)hsKy%5v#*Q8oyhcsvp&YXHAYfU^ZaHgG%)* zNurMN4Seh|t!nhPZzm=Np+5Qv!9#`A3M0S4BhSuj%ybyEx0!c?i9ZrlJC0yBfCj#- zK}=Us+5CR$Pj2$;$B6_>swASAwHm%j$a>M zaJ=u*L-IV0w+p<7`fL8d?ki_x6xkF9Jqx+^B=x^UWPtWvB4}e#Uj|IyAyXuz6D06g zzIVcS(DtT+`}Tk{M+m%K?o*!PXK8stqq)l(f9dQTC@U>8wQ#IrC|_==zGPO$VooOG z8!7~a<+`XJIfclz?9SLs`3(iypX1?kyv$3EQ>@_^&vv=piyWTcEvPrKNl{C6I)zP7 zV>7xV%v9Ow$62Ak))wsPznz-ot?K+*G2re$gPgLzMDODmNxcS(wOQES7~G7H4w3RU zbD|5IKlvVRfFQL!A&NCS6V3WFc@CQSc)XDJ&xwfKxaR)M;Xn{{`(Qc6#!`b@(>Tu< z#R*u1dVNSkpi^hm^!KMD%qbVR@sghFm91)4-;d?wn;pC8b#@z%DM3^oPka|4&^yOs za?8ouq&2SsQL?8Zb8GC9%$DoGiu>mYx$Ywa2bD~^T}#cu5c`@%u@QpYstw+%)o4#FCXJWMqX zaMw_Bi2DK!)IU-W*kdk>hUOW)Rdb5*5TI=s&bqwfFy8L>`s}9dxiO{&5t~Fv{x*Tm z_f6`}`dD<_hYpy451p=^v*5bR`wU#BFy_Zbz?lmKKEc_mnvQTLf0!9Cxj%t*ROhs@ z$=p0|rnnD~nq*=x)bKC*nlw^~8jXNZ?Y^fFMbH-98HH3hoLnfdL%z^BG8S9-6b`!h#bOV>lvb)C+Sz#+FTbjmY7F-_YLPUh2zW=i>W4SHkqxmG;n_Ifi}FmTnVS3nHl4=TL+OHD(Ryz4OrY%+K+s@vc@9t z|A+P9Jg}qM6Y1HC(0b3c(N#tc0v0~C zhz8>axRTZGSgMya1IoMKOhmk$PEjNn1RDh8qS9+IQ*4Kmb>?<;Y_ktV0tjB+2PEQ6 zx5qHC)!6%cW6~eXca>`xm3w%fH>{11J;U@mHtXtWNB<1>bKcRydd2h3*vut_LC8#m z$oa}Kd+SdQnF}?ysD4!$iFVF|JuZ<$;I!X{MOY0&&cDFBu%69Wew0i`7z`h+JLte& z!zIHa^2t$J0fUoN^sTHc3^wBUglqL6aGk%Mh8{!u1+6(C*>!Gdj9Lb1iY?3B-T{EJ)BSJ zkxh`|P-zI6KJHuP$+`aHSqXATZ{E#Zt6A!~Y&K^GGHaFx= zi^}>D4#d8zgghANk-bL4Br}%@CMoeGbTm7Xh;4SGU!nz~&)bKmny=mgVjJ`ybGFu=PhWUu5P z!#n>tKj;fPwF<4UYnK;3uVgFm1f?F04^(xLE(bavV?pzaX-3P8h#GcZV&+v!{VnmC zKXFK+Us?-fi+Zg>(Xj3A(wsyxlkh+F%oek6ADUX=`ifmYChaxY2 zkTG9#EG%--(EQWvpdp(%rwUbx{CsKxq%|%k;yaNLFEe`avnoJ$e#a`1RmOTIacBn* zzB{6xqJL9+dyspf|Npr(Y@z7IWiNS91Xv*(GC7UfdjYr~U_KLJ^c1O00fOBoo$m+IGN594XZdq`_+}>W?|tU?M9%^C_md%n9HfLQUv5_; zaz)zbBCwW}V&MqzZIj6i$n7@$@gsvH^K^H#mbuy@u!g^!6P2OXM$s3z+g_#}JuWY{ z1ej@7BL2`#5!}KnE!rEcsa9HerHzwPZO1%YLTkU0@{I~YFET2hZq&rnx53rB>EQ8< zQtmfj{#^8&$)NY#rjT!&&kk#;jo&%^^tIy(a)X;3_WC+c^Fofc+Cl#$o>6MvX1K~5 zk14ui#B)y+_l7Aie9QD$Lv3?7)u!j^r~9^4oG<;(ud>qxS1(eVouH;>ZUv%bV?|$` z(oZO5S^W;Z7LMih2Bj9d5&V`aXzkq zGaky$t6`a56>2(9thLPi=?;S8L9r5T7&krVJOP>DRyJe2;f@)5sb$kx2|`}&w^ImA%T825)6OnAK*!cRb zhy=_fFy?_$%gki#{N zLzqBwRs|@tt3Oh{l|~9#3iSDA+N-!`DFir0Hzt!8gfbpqb|<>MC_c(8ucby5w*>3XfuXpwDqaeEW^Z0+Me>m=w z7rHXKiw%tuc7DG8ZacFR*koWN;q;l&d&OQu!_&iLv<|$5H{WA-LhsneTIj7; zdS8ty_|n}w*|sXPuMp7*8^O8%hXK{I&57QqZ!vg)ClM!SN>{Xv>jM+^Cd8wzja`gQ zi@7|ihZ^uS8ePExEbH?PglOck(w*=$>i%QB2Xp40CzYTzJiTc%k-_TiWh>MNSJwXWm!znsF>a2kJP;AOJQu3a1kAB zG2xHd)6-~V-@%C422(jWAk`DHLnEQKUs}KEn>*>9f#Zbud{ZP-Z&Q+4m7pK3{iSzB z@mbZT!c_MF*PIIcv08K`q^TJJVO(YTe7tY%$LGuOr0}*vn^)v)*oHH5kL}M6j0$*_sqK{aa&`Ar)Ej?Wk<136$XsO{2H&|da28{J8la`LokhfF;^Wr+KUn(LD_j?6OHDZ5mH zi!~1eKxU5casQvsM4sD0AS{t(n_jtkr&i0jHd z_~>m^Z#Uw0`AOn2y#)!&bpjd7U82MLN?c!ZIzgiSA8Osu@uC1m z87~igcbGftZeFf*M!;{44uv>H9C7TCJ zXS&jX#zvh$_#B5bh65@_+~*peRe?G*e{h^e+$U+;zHJ_* zIEuP5Y#ae9a2(|~q<#=-H!2UNfRW=BS!?6bX?^^bo0l=cpcCD50P)XTBVfdpdbbu~ z{(sx?n5zVmx0257&%Rm~uMx`R_52(VI8#l~Y(?MT-$Nvzb~HMZ!5ML4jqL-!+%O`H zJv7HmNzpUT3)g59;GpW0HxcJnVF+j_YFW;ywJD>hgU(pnWR8ePH@Rb624cEn6 z5vFXBfsoQ^aQfXCaORHn{e^N$_NL-j``cngqpQE;*Xt~DaM+!{?NCaioc z3OjRQDOb$`;TM^+=&O!^ILZq$Eg;@4--0}XV01|454*2BId_kDbD#1bGhBFu;?j1W zZfV}4>@9OoGWCPK>X1_v*-6r*_2{4Xh!wt-dhnNNSeH~CknY^z?i0O(taxs53qYn3 z5WZi|%%va=#CI*|Tht6M2CkY^c8jp{-ABkUJ*pVyG-CcL)pLrkkTp+h*)M;nTI`PR zr67n^<=qC;K6FVA#m~ZR+Z8@_-df;o`9S=EkA?o>Uxu@;>~~`@h(a~5&*v*qr%{?h|Tbx*>;>|5i55qMO?db_(@upe0Dcuu`{ZLTJ zxk`1|m6cyu>5T_cxlXX^*}e)+c9~;-;?5l0_psLzc(3?8FpX(dPKV&e1U|x1n`~Gc%&^1yCmn}a=C1Ca}bewUeb8~kGj>@^eIX5Tn3{2D@6 zj-^-2EY;ZFCyE7^3kYmuG)xu)V%aP3T9Y`OtbX0tauGHS_VUou7Em(0)z-E&UBzQW zPqQ?g-?&Ga_qRNAd~Ys)uRoz$3ghAo6cmpfub|s8?#iJnuP%%gD##EBKf=$>qo)~s z4%|-8jbD(E6skR(^<_DnYB?~*79pf0zCuw>;Zb;JI|xAVLA_?^V)5@?ErPBx?s)H< zK);$-_u8||OotVlZ@aOV=bxpNf7rN^O`sJzfFUrM?W$UX)KD80h$e;;ibJ)>P(E?3 znH)|9o3%^PAV2_zvEQYFqFj7RmqU|B#io5pM3nUH=4zYch6&Qem%nRI{O=ZT5SX%^ zq~KqG+1l}=V9q_DJGI~Ms*2p2L8E&4R#G}#UQOfl;sWizOG|U_0iLh2U)Xr~=#=eD@5!Ee;gm zeAx-gv~$3V_HTyN>-1pWZoMMS5&h$qet!IwibC2xE^B$W-`|7F{*ius8dVVmR!VKR zJXiRk%n6ScmNoR*Yp~TNrxSJm2TcsRn=hFXFDF`&@J*$#I`^qG?e%3A`J-Y^`5`rf zn;{wB-ja>@Lh}(T|F}}E*?#I&j<8yg_sS;>Y3%|#BHX1Kzfp?Qc=~yP;R05xr#q3i zaVOlCC&e5dAx}z*1{Jps z(q&0(L^QYjPpXxMYq~_Fd4Z{Bl4*^V<6AhL_B5Q5PH@-gVgXwBu|^i~_DAa28r<#) zKPUb8RkEv0`&aIOi6j^)CA^r7|Kfe=uX)6P#k^+A#8K-LkllFm;&L_xfijwZDT%&) zsEZgeU3$R@y0s3~mi(BtlWdb{z!S@IDs0P_=_kEbO-rx>tu%V=3BhfM>}m{mg`TyW zD-tN6c7a#OGrGC%_{n<=X&+)oSUYJf6D8eF*Da&CNOs}$B=k>pIm zQ7us)(3{t?r!S^ZvXGKbde+=`c8QV;;t{hYgtVAb?VTKNZkVX_f~q%TBzB~~sG5UK zR)>-n4^6PK=7>lt8HO^E8ky^xn)~Hup__-@6;i|_;)n||V^VIiOp)-B#a_!`xf_!) z&3fg3Yt<5x@&uDSQ0Lka)8SCjmc|h#F}QYORX{I^9Zr}JidPy%Q4~ zlc0F4yy%-`1R0YG*kjSxwEf+6*VZ>m%#>72>Zf1B$-oAw zwOfN6K+-C1HBo;mpD|pAyKa^Hu*_jHJ0S^K?0pZb;Zjfny*KAo_IQ9IxkdpxGeKMe1`rMJ7uiWZZTTpMepg5GMq(9yVM!^3 z@=y1tFR>_a3KA#6Pp0UL0FZuy3{n{3IV7<0h$bU~^TYcRlT3iVxNesD2~3g@j>~Me z-7(MMA^bkD;6T5ze=dlOxC4b89UJgES&s){y;LzzJrtZE>HeF$>)q3tM*syz5DWkW z!R1Y5gz~6>(@O`nhHyz97jReU;MP*>Q(uB_BU7oTst-(vsDW$-v)-Jxc2W<9C_t=r zbrVy_9^-HG&%Jkl^J|&|(jT5h1m%hQz6@|H-?3D9cTy<~08T19z@O=EH&Pbze|hbr z-<@TkEP=^q;&<~taXR)Squ{zffXM4Fs9p&04~f8?0t4^wcaQ&8PQ!2k!h~x{iTH;> zzeAG5qJY2j^E(>W|Axjtz3%_xLp}fSeoOhwbu-_ui|5_(*Ah%9@A*D+PX`*}r@Ht5 z);;$&!u*HR_J8gC|IP8g{(U>l-Th ze@1^qb@`cbd(G~Wb*RuD^)V18+catOv}Xr?BrXEZmYl=7gVu0I~RE7SbAi?#JE7#<=M0l}^7#X*nV z?o3S57U)ZcuGfrvNpaWb)C`K7YZB4p?A(2d#a6L(tP;}feIiSR2489EtG!NsD~YNU zl%!rz>zfiGxDoQ~KWgl;JG0ScrJnDboH}pkr&^_jY7-?S$vEP`|F*I4U20bYY~mA& z#LljqW>fiWOy$Xu!EJ0Td63TbY53HP<+tG1PmM2p^f9&gqDLyZm7}c`Yb7{5>dvgb zKPjU6niJr$pmXno3gicWLBo8Eyt|(wzExG{z5DrqNXF4y8U@1;EVr4zrry3|lLnVA zp`%3<6xT#4#Y7lT;BK%?p0BMEBi@!sal0zQRq7XB?cvl(IGcQx*Zfs{Y(UWy%4XVj1s?zqb!+_ZJ4m{+*&-)3qDHvwpf(H+ zXXe!_%!8I2+coA-82QH*15*ZEEra2N!}v1CDg-Y=^d@I(es60OQ##9=(VC&09HtTV zq58ea=jUf1n;4d(ua;M2%r0-?9^ckDyo$2pjL*C7T!gCfQyq*PQ6J>sjjn_kZkKCJ z=9|sh#>3vKDXFbHUfiXnYF9_A?$;RxO}rk~k6xuQB*Hf@6T>B_8-UV}n~fI$Cw)q@ zLx!QiY~Djr9HIZ?20-Nd8t{UzW7&ZipqKf}QfnsqbF+wp*aF%zUy}ZW3yFh9k{g1# z!f_U_-_y zPeMMl2O}31p-s&Vzhrugl?=SpPph$>yjdQ~bli5L90CoSpSvM>otI7SPgkxh8?W+0&~KcCfv;Lgd%#fKcvVt6ip?c0l8C-vFv zbnSe;MHGoT-vrm1O%mTjXf8?AgxLeRyBdpX2gB_uK6-_hfX{sD49y)-$||nuuLfG3 z{?zY`inHc5BOV{vYP&zWLB19@)E@ewpE`UpFe*4~E_gGlx%5t!dbP*G!cwerVg*HW z-w>eq7!y-C)2`!MedVmf>tmSCP82ND!tpv0;@7)l`UA!LG8(=SzEi;u3P)J;i5Y*q zj5VOV-ZA)Sdv`8WI~;fS{M0nDb}qR_`A^Lp*gr8T)BpZ zw7HGONpnyjRXetR+?4?>2nfe}`u>MMw@o53-|U;8cKzXkh9T&fArx+BJl%z})8kWY zVn>06e;Fr7SumSi^GaR#w$$((V~^sdll?*0TW3sn-?Tl%FM~dtw`-g^x?J)@gQgqFDNb?D;7 zhu7(Cz)!T_4i8A7@V@^9Qe&Q(;plBBLrIjz*-Zd*)yx?tH46w{CfT>cHACiVDJryc zEb~h&&AMb!H;Y|v!S_uRR#(ghM|$LiW78(F%tW1MBT{pXL6ZI+jS#J4NIX52>j>eI zaq?r}C0#cTTXucLBcRuiaCWAstsO>%CgrN;^2@V7&3$jWQfWZKldqmcou%na4f6vU zK?=R`o7c(sE;) z7l?p1#}XZmHJ(`N9)c?Chc>nqGsDm!ONc0F$bxdd3*d_v5~|JjEsY@shZ)tl5K!wf zPi=KKpCx;F!Qp)zTI5;(rVTdA3q8OSZ`8;Cdmfaq_nF;ho22vN$=tK!+AR(i|3Pw5L1{Nt$mZWpxJ>73Ufgx*Zs~K84}aF?13p> zq=gr+XjHnZ48fv(<8m9k=i;*!T0zaGWiQ2zhDyM^nH{u_0_{|eiMWlEV&YxRJk$vv zLGAlGc9DwoE3wm$(XKSu;9y=Z6=JUW+!re3 zE082?P(6)ld;06fq(MNE4J&r{h9*m6_H23FvNM1B6tPKwgqjtiGHTrPl^V0edyvd* znY%hPlf&si?Fz}d)$#JP8jgUsytgGdqBC%lmyH(*lB|}s7ghEv|9Q|h-KO?8(3fW6K1yy<8A*jz^ zqigmYN_4uzFn)aq=rzvCwF!!MaH<%sod>C_V*hfn7Q*6*P$Zz~cR&Zk!KrJp0al}V zPgjyT_s$vxH#JN|J3ej)ue6kMH0h7qa3LwbPZ!^tcu&#b1T$;zYBlwaG*)izzFhy? z_FiZ7Rxk=*nsR@ehL^_TA<~8eg02(Il3JtZ3esl{8y4awXCkPp!&&+0&%3YFBHP&9 z$`xhbG>JXDmD>sqL;@kUFmNTM&>wzA4;4~|SFQ6rU(|B&$PFBT@=W%8N8A3mLvQU}teavSdqDb02;8@DWm8;EI9@_&&0s>VvjOBsL} z%032{o>xJd5RULjzQDtyMEnb*^FD6zD0vgvX7p#!f|^s2zL_Y${p;()4(uOq{y_K0 zRmV~tWQ#rbnJU)5+{j}E`N4UkJorE}w!bS(SFWgSH-XJwKx7lnuj?%wxcR;@SZ)gY zbpi3_036C1D)#yb8kNh}d(;jSWmsEpuu`5|CPiou+bGfg+{%}pf@qsq(;0XDOB=q* zux1=4mQ+L#+KRYLLA*axDN$#&=b8GcPP=f8y6Eu_t9@o?+8egYtqr@lzAclfLU*$n z!-M;*1;3|DhZ*~oo(%Ry4?GmlJ4VaC?CZ6*K>Qse-gdjVAFC8@WyYdpG#}$g2#|~Q zy1S@Q%=8oKR?vQ%Tz3rB9mS1Je@Zo7bnNnyK>@pja%9uT*V5k$@+Va}85(%C;s+js zL$oz#N&oWbt1dcpWO7NmN%RP>%iQK;VmVTu7)Q3bN^rb%`!V-2Zb5}!*nGi@nB~WV z@seu?W%A3wPujU??IRaEeoo&o6`K6?M1c%J67vF|ak|B)69F}yvtF`Ycx^w!W7VVv zwS<*H;>%6^B-c0DGC{86A2Old>%s}XFx~ypMG9PjNbX8GChI<)a29e9xk^(>Qe-o3 zsI~~BW!jj0O*jq4OQd31CZ`3$33inNszIoDN^tm3s}#LW{3zPN@~wsq5=uQTwtIqO zkNo)=!bYqp*~s@=;oK`h%tg{{*Jz-*cz>?z7w56y0{OW<>^xy8DN5ns4zGjNW$2Gi z=XdzQPi|h8KXwWVq?l?=yB8MmC`zLQXcC zsW`IDN`znTO`M)+xs?g`4jB>cQps)B?=u@?;~lHOG|W&WFEqJs#P(VK(W1jM`3JkDnF<|W>aiaOe~Q@(2fCOgR4sT1g zN{DAHR(E|osAeyDxI}YNNfneDGl2<<$HQ!(Z^DYdy+-irz7?7Pwxu-O^R`XDEEhOg zAA#yq`oTSI@cuzm-*Vbl{pv}ci6HnDs5)WlX&hK(e65^^Gj22&(}GC}krA=SPoZA5 zNo%EzF*Q4u5>TayyHFopK3-Q{T~EyR%zt4|!|lbBHl`vikPGfk+{u7BcDcZRtUmiO z9CuL-@PEc%R$eR&#I1L>skd=tTu75E)ou@KIt*&*@}xG;<9%&(qrQDC4R~(Jz7eM< zVruN2;>@J*jZNWhTu&#`-6)~eI1M%#Ru5pe5((@v=_$8RsLiJFH{a9spm-QOqt$(Z zapvovX1Bt4nY#=U2%e$9u)AB32(+1JEb1srmAlaurk?M=uu|~Z9iQ~_;KWNP!}YCz{o`Hgyd3#Xh@u2{V>XCswar_pAy9kMx)v z+op?s9i)~hEX6!ZB03F4K%z2s!~w;xvN>dtONFmDer)A(B}zeVxWzQ#>jueWVq3X0 z9+&r}?9DWW-@TXb~Wnk@eyZ-+}T=9W7w!3&#gd4iB| zR`1qP@nXvpt(g(E{OZ?q6FnkBjYgxs5cq^SAA`%70{fR`{DwE%tkz%5xHu}mE2Z!r zZx5s)NL*PuN~*+r4qF+&V(Er9T8Febcqzc_EgaToz((}{Zum?#o3(|3C|)0>dnG$g zKEy(ddgc3+7oM`HftZ{T<*N?u9+f6+)!mP~Ru@lT11gf)p-!kpiu>V`QsAXD>$1M2XY+-wYfPsumP3j?LY5TsnItFU3_6Li><(j_ zn)En4dvG*lw91)ZNj`Je@@W*vcz|Jv2C9KzD9*cnVp>%^4t;EJ zXU&eZfu)=SwkSiaL4cq}TE4yFl+vTQKFxX-eT( zkVGQrzfHkuIpPjw*&O-PW_33H{JoXIeWfPb)f@nC9+s)r`NQaV>1f7O{kwq6n!w^| z{Ju&#Z`#111nlNQ!wGI^dEaAiewD()$~K|1hnsETh{W=zxvsC`{uK%0$Ehsg#q}oV zE9VT1z?s>vZPNUtVagquYjwgn5zth1RH55~&??A+HPMr#94K(sj_eL+wDg@lfpv;> zXG10F$AVu${wErDWk@&TdFLO-t7cr4H2qtOLL59DwbGcKpir*z`N=X*$i@bl?h`3d ztv!VP(gJvM^#ky?hA6Z>Hmti9!^6bc{xuKMHT=16`}YctKh==%;P9^D99LIEDLuwQ zxuzfZi}=I&AQczC!nmn&zZR?2JmwL_8_VXL4j-M2<@Bd0z?z>#gcfDo2dk-98&j0h z71wq|J2*eN{M1`@!b2Z_MQ=?$d2@nRYKu?Fwd@R1%xS!95)Zc_XY8N$=zE7-r4pIxVgWv<})sqEV5Z(;969$liFhqM9>>!omEP zt+$NTub$ACYL;oCH0?)D||0=_1r@8jY-|~)VABt z-5jqH4C%>WFNBY>okoKxstG_&1BgB1lCa}|byvo+XgO8Ww!_iQ?hH1(%{%9^iVLvD&TUg~&#-xW{jcMR6ECNvGH@i#eK!?qqT@0m)}iT#SKJ z%Am1b#-`+vTw2FBOC#i>G<>Z?lD5UFzpZ(zG_PcdM0RIrgU#}yw#Q-juOZVyd-HOh z;&=;|o%AmWOtYeC*kg-7a2Aks()lbteN&+H#qY~njptg{=LSWVzLiB|P)-;ffTJ?v zOY^mdwe~~OLeiTY4yUa^H>PsTWcGZZ`8wH+E_n_uHo7cauMm#8G=Z!w%Voyo@|DdB z4O?3~b@3;pd)PzW2C3&!qtQ^nFV3VHQR#W8b~R0pwPzfnSf#9dU@at{^*ISWojqLZ zTr~(J_uo@VmzlW$)rr^x8A^-ny=DeCFLQS)I*o@$s9vgRj9}FV!L$DKw6%|?wpiiO zNui77%!}~R1rD@+`r7iq)NU-3(@+l`1j*e~j=T?XBYq%!8|h?}T}LF1ZalsgcH#AM z&bxainY%XP3Eo1g&Xv6#CC-(Nt1&!P+gHKMi6cJRI8WkaMy@dL!sJ%Z;Duh9W8+kt z@vt1NDonvxscBWX9p!yZL9>gSztn^UYi<;+MK#g6i>iH|F@>QCV^Bba@L;y%ek+-7 zw{S!wGeEk1Emm~m*0%sLZT77&xQI7=foD}l$3D_JTy=VF5!NtzfnA^4-prJIQFu{S)?I>mI-`~BTG<)|zk(LHn&q+2+swqsfqWHO0TunFg zd$+}dwK$Z&n#W{^=NEoYc;?v~6IkrqQKbFQ3=PgS6i5Bd^RWbuNujvw3A`%k1y^h9ePhq~^7v`z9XVmqBYHigSwY4aw zDugz&ajDLed&Ir{0VgU}RnxP{yYF(G{f78_{5x=^%odCj4ap7=h(+BGORJTPW~jED zG~c$;vO7`7dzfxxn=p7DTkik@n~Y@(y-T%%$wjli&6IRIYIXRp&Z6=}tIWtJkzUR7 zGeq^y^;$V%I8GDP*qyk`3~QcGbJ3|DXGVGT3E#TX?rGE`Sz@jyctI^@A@(t(37)9& zfcc7p7{ATPIRf>eI%aPY!MuJ?E>-ZcCQ>uNRCbp6>ck$baXNVB(g?DDOl7JJKFr)> zXch7W@?|yG5Vl%DN41k4xapKd`RRko-0Q9DYDnoOFSh>bi#JL|Nh zK69{yes<8+IjcE8>LTz6)_tBTnXbl2A>;P^w{&s7y?6%cA$%78@Z@n@0N07ViqcpZ z5#u=)d4Ozb5I{PvYjZ&2OEocb}UEN%W0$~l6dyL;Dqz1-f|q-;ft^~e;Lt^v8nuesiTz(^{*+htZGBqChaBNdsdcjI@%%stRJ3RPDW?CiZf$#q0b{z5rU?v2rqFhI zE)vEqoxvW;rzF{v$lh`mEX7b*SAn(;vRgE%oLD)y>t(Q&>w^owEeFOC^!?yXTU{3X zPqi8R^l-+~~8D{QfU_jx2GNxHmdHql6RV9?Ns^^b*ewRmm zlRAS$^a(eDaoJq(q1NTr?4XV%^>R(~j=!67SwVVK4@S#_d^B)&&K{byK6P8t%@G*q zqrJq5#-4m`84547yWu*Wgz;kIVxYItJ0~V6I$e+`kE2>%*y_!Aio(s9-@3_d4$E9J z!PvY_=DO0N(6c#=Hi1!_qM-l%BfYy7DCQs?(pr_)ag@dEQjZ~9;gkTTmMB0`yn9*8 zt@Pk6a3chNeT*|=QyGl~9sS@PMRRyk#8gwu!p*Q3$?BsDpVr-;6~3@KA8VV)_G2xJ zK=~qCiEIL9KRWd;ddgvn-<=lJg;+el#q;oBgbw#d=3%l7!rhtIy2K@=Zy;(`rlyjMZj6vV3Aev3^vA}X+x1tpvE|V}W{I`5G*Xyu z4C#X?Pa85%WgpV0KKt@Vr9iTzOts=K-fbBLWZdc>GqcUT@`qEGMlYOH!@gk~e4Y4V zUwIa9yHrl#gC*BvrBCB%^P?#Ih_1+HLGq6j*G==bB640gl=RH64t=b;LP=`#oc>*; zeTMlzew!@eeEphNwWNWacMJwTDI{6(9(uIVy?-n|3+_NN<&I-~#oW(**p*dAcd|2&hFFgxXt0x;^8ZUcKh! zAIWq$QWv7`vm}3_9v3myOMlr8=A}wG<4fAu;!PU;sQrJ~`sV0LqG#QiWMWP1WMbRS z#I|kQ&SYZSwryi#TNCrdHqJZqd+*-2*1K=*e|q)m?#-^ftLm$-ZV!N?RXthDfYPj) z39>Ac4FmfOFWaKbKNGzO2O@8|f1Lk_zS6rCTVj*w#f&Fbrz3|tpu!QUFWy-5Mi zPP-bjwDO^DC_D;5lK)G`^Z3j^vtq7jhG<+a6-bK`SQw0~6W|UYrkO>DO6KG3&1|Rf zv26Ar@RjB@*sT;6k^X)=;)h}L2KA=3#56bUnx?Dv%|9ElsOQY8ghMq(0P&$%8bc|k)> z=sFYS-8Yp<#2Xn+!hH#G6VCKauj|_q=q$PKO_pKS=>*#);p$)8VfxUySfAbsKP*n;gvzxUEG^)0%Pm|fqCm&Kbwr!g4?s( zF^R_cHtz>Wx9$?=dUJe&OTv+eU$3+3naJin+mIQ4l+kph=%C{U*!s#qm@VReY?VeEaBmOk}v-2FfvWJM4q` zu;bmW>!g==eMKxEOl<9bw=0joc)C(&4GX)Pno3jS$l5Y&wU0?CFJDMrr#lR6ED1e% z2B65o2(0F2Mw#!(W?de)`0CRk;Pa8FfQwAjFL3E{+aSpgb>_xe!mTP$7v^Jy?U)Rt z#5lsdge{$4+&wb6yc}}4`%82;WKHKFY1a9IM?2?EWHbh<-$^qZv9hT7j$Y$}@o4Ai zo9=x+ti6nTQb~R3K8>CKeb?MzP35=F7<+cam;UDJ>_nIxSIU4Xly`zy}xm*M72CM7x$Ka%5) z`1z+p1NS&%LV1AG`4K~Q)8D|XJ4gubK6ick008KyJ#Yar9Q5xiPDj%4VC^}EN_H;K zuG6NloOP|{EJ0pj+s=(e?4*q-x$&`-s6KS@^eL0rIkEH*v*?;D{iSY;3uT^=gz4>@ zPv?n4%9wd?NlxM*hC=~_PaV}4WXk3P6%?EK$;EYtogay;Vsn4a;Hb4v`-B~@ypU)X zGDQW}*oFgJA-ukRFzpRUg?J9`cn&0LwaXEzZzyc?x+AV%sKDL7?|Vj{=$^%2ZOv7| zOw#Wf-p~ByU^FRbdaoOo^+f$_7R-gHzH6aq6>RZ!gL98%6G`JyE>zh9S0A{{BI~aZ zu&ePM!M2m2NXbRFr3j>sE2L7 zs5CNFg&aAROQJE1dx}cbu~j9TCHySn?rExTIbF7QYq(B|#EM5HFGK&;>b(E%oC#_DhH zIC7^(Wd?6QY0tA__#ezfhBI)bn|AeN0`nqMLFy{{6;`W5rED{;;}Gq)R`V}uf3M_V zJ*YA!GXhm`jC#51Qjx&bhEJ9g;hSlNXVCJh`3d^8y^_aodJGp^%%vY>$61O$OgO<9@u^{uKz zz<+=mYXVsM=tc2lj-=3m>cXR;b6svKGsO5Z21Z_cAgtJS?%&rxnYi zi*)~m1%T+dUlUECUzaV5p^LUs%P*?`y3Xxza!t;vg{GHBL23WJEaJ+wsQd}>W~oVd z@tg@Ob>r!KlKossfwZjEYBG_9{_Zy~Kd>X&ueX3cjg+?~P{u7Rbf@sgw#>iS&zp25 z_^X1|SfX$42D1QZ9jPwQy(;n)blo!T6|Hvgk81qFdDhF%mehyPkGd+wz*Dv2IS$qz zcXKey_!1^Z@t_=jgS~0Dhfbu~y#?hF;yu!w9QmT?L$Yu%V>5&f3mi$K*NkBAz8*$;EM7KFRj0FOj)`C-&#R9;(>-L$}a*GRf zJQt0rCUA%92mWL-3!5`_xnYmOAJ>IqZjB{Bcg+0-(_R^f=y0`GTEF%K&A}^+-&#Y$ zVQNtn_Hs@Fm$cRVCZUEW7^Ezo#Gg~SRc&)Z4O&ImwdAx%-Tp=L3IbQf&0>}6SjidS zfbZ~(50fk8W|s6ZI)H#g^G_)n07S&EpK}ap@e_;>=%L5rx#E@d7P8t)HcLYld|{Pf z!!z3?RMXisPF}7&u%5&1T6z6GVvpsWhk=VIpXcOf{)QoxhsoX}1moh1V4_JC1ogIy zd7D-z{&S=I>DN7TbQ){Dfa`k}S5&>F8T^UC6RJZaDlrwu9yYel>VN(|K7 zJ8clF$x8Wgge1haxQGU%GB{`qRBaEm$2PyYeD-JpX>S=HCurEM zy!qDI1tcnn;LOR+oa%ef8W#qPZ|IJMy?nxN_ar^4y;@jWP&(g_B)EA{lw$z$1!7Dl zYv$W*Ge!B}bXnOJoe^bmg;lx-;O-}V_9uwRM1PkQY&}KZ!Q<9Lj;wj7uU}7fR2 zu^r~;2CoI=cwPO_m*tV!b`@Zry?p4Kl<*lh<4|YSk~j7crx1FKKIoh{bac*^n_^~= zf0P<|x@ImRSOkH}(p7v)MrXWeq3BIz{%{~&cyDg2USLg0#TY#mPz9~|SNeS0(ot8` z6QvVpiwyb-m$tBUa)I*Q>eT-HOA<+65rH5Dq<_;i=8p2w`6Jg@42wE;v;p^i7H4jo{JqZIb66ZM&l4=^Qx<>3G6*mqCZ z=KUeX)7r!9^zftLug{U6CW7e6Rgt;>F4G&useGCoN9qPoPNQ?xr2BB95VQ++Yb&C` za=V!gFDLBZEbn{>n0ujE@uF`YNanX=9g|pwqdkdplQ}#Q<0W1{V)tj*^gP6t_5cHV zo>FZGA^{m4I9B%f<5@F=(2ifnDZ2c62*LxV&v>YvBq7VO^D6Ztrj5y&dbD*9z0e7L z2;5@}S+jfNF4^t3b;hq|zN?-YYw3KqHmC2eT9FB9s=j>{t7A>N_%L^<$i@{9;XY1s zknF#k1heXP@<+BICmUfsGBTuA*Y+GkR7&F^Fr}$e|s&!j*xKFDz;dJH7i^_Rwq(X zuAl*^r$ln|n?g60f6(=gU8|?!fLuHwUNS@l+?P-GP!s*X(SO;ujK-s#;C$N;kI~PQ z`>^%kAFAP0q8F&3fCX$)fu89ERqeUUw(qg@?b174m!1`%4e&r~ zAjJXZ__}WFyoxh!b79@MrZ709L+dgBh{Ug8j^~?~8%%2Ph6C1EOunlVDDmz&Hd9is z)KQXyXGdtx{>-fZi<%c_kLNzGd5uz)>&(@0^m+dypU|HPKc68ke5ZrQO+(oJ!xMbCJGAa$;h~)y3a7L z2MoWlys`zf(a>geLv{AAfpUJ(CJfls8J&1dSGez-5C2Rv6?L?lf=z);HQg`BU&T55 zMVfu=Z(~rmBC4Z>=@JGI8-Gd@e9~H8t&6tpGkbWfIos55>SQUURrs6Wi)6X_WvxDrwYKLG9rqI5T`5=Ym|BZ)kEYNpY^ zG8p5YAyQ#q7L`r;xlw$DT}SE1M-C@?Rq0#t4Uk%+4fCEpjx=!o5@v($i55Cz8lIFVb$rta)!9t*DTz3Kp|TSk&b>zxEl8?(w;7wCWKR=~Ub})e(JqRqG^hQ*KNV}eJIqVT zHPaZRWvc=7lAZyrE35?T@QSc5EVdHzUX$gj)*9~giR~0l-@N8+d7(N`1uU@dxKo7X zwZ%29AGiAJX+K9YZj{9p8>^6UZet)GY7EMh^LmlUhF>t|}onY?Yhp#eO%((eO zyV4#zv2jxn3V+wIudi#B4V8UoJ)qlF6645r?!?%`zZ`vM;;Uz05!X$TEZClz+_)I| zWqD_zC^ux+o%Mc6vlboA(xI>{h}%w@+-DrA;ZscNd?ZugRc`Spi#1|;_Em;(EvF$Q zLt+87&C!Pfw-!)0Yy2%4-V~T4xKiBb!`3=?eDY98tK%DRv`{)f)Q@6|fNd#H&*;8q z#yVVOpgIx}C+|P%9R_FwxwI64>fbup9D{Lk$6qMuqPioy+j2@o4?a}HYPKcLZr4Jz zGcYD%t<4>NR^qetoct=TuW`EYc%LD_0HzN$QK6PssAB~nmanYLE^LOLNbRQiLManD z9M{4YgzkNpuI%F3U~@&78;_#e@KDh?AF7SI=uKFJMW<3Og=!3K8P?!=vywf5;y^s`A3l5uuP$Q0rJw-hWD zB1{fXU^GKk8izS0VhN7KJnFOWhz@(!Qqea25|}RbObvubDAyi)3&$avX+Ejs^Jha! zyEiHAYk#0t$J$-{%ExV$)^oE{w`!tkf)9{_eEK!n>@M}jwtJph8u0Ef)uuv(o(o=? z<|;GLrHWdvIPgW5jp{_Q|J+$W*ifFM$4c$%1ubF9qbo(hriR&rbx?2)d3rc9-rt5K z|9hT#3lk`r#RRVAg+LHYn9*H>hZg=}ZZ2ZNJIrF*OI5)qLRe&*y8b~71~ahAprv{v z-0`me-o_@jCL=1T4%dVJZ;<5E(4<}B*<^~&Cii>nq0briNEV@)@`#{#J3*PWkH)h7 z*O|Za2435*8UU-f^xNM8kM=t|&J=2LSJA-%71?VQ%c&ZEIjjLwWRNCsE_AMk&z=58 zOvYV_*g(X9=?P(7j@O%|_x7e{CNW`pqW2jDnN1JyvsYgysX?lvm3kd|p12c|zlNq| z(Y!RleZ8@_6LehQ!-#nW1x4CAKXM54ihP+O)A1(?D~qL<15qa(1%&q@A^|E}U+CDV zEbILn>$c5g%)FTzo2ULlhTqk#0k2)qqSUz=mFACv2$HxS&BEFF*To2%^yv)Y6;8q|-# zr04}n)rvH2I>fM>RHc!*wI4D+%Ixj#xV+yOh1Hm1zTCam@rhfN+?$EQb-A9pByYvI z;!0jkZBF0 zHp$n!sP;pAMcHV;i%!Ddk1ob~{xY8~*Te>U(IV;bl0P1S*JQZwV1fdA@w8tKP|jAa zcD#O*$)2tXDq$hlqf?RyOpiZQh|Derkr9C(a$rBE~B z4ej!S98dk!CL_}eQ`MVaFNTvNx04NMORu`E0rJWS0!_MXUO-~`#}NR&)%`7ySZX2 zHAcTnv|y-{;*fWoBQZN%)0jW3vz!PN{ntKm=Y|(6cYno`M*MC4n5$Y$s^1SavQLno zGP30MJAP`o%|lvdv)(t!mwPUR-ZOrGx$EF}_8&(EG?-`Uw?{<#iz@bbvb?%o$ZU>d zm<+${c6-sRpxl?MZNd~rG5TBv6E|NCY#`%PR@aIhY~I_u`s<^B~@Ky0+gc&D>s4!0+tSvY+BnWfvlZ=tg-VyeC9*c7^_{20= z9O~s@uN3G`l=!R_V;{jlz_~~p%kB|STeV#sh;@)PSFRW2Vhm?{8(REzHF`uF+HI*Y z-(T!2q+Rt$pnQN`tX4~@D(l>UpDPgUCAzn~2+PUXgWQo+v*!}+QWVuWmyUlP&F$QE z((>g?$U(4~ODX-V1mo-O^RXn7kKSn&_FlU)XJns#pfXPi0bU3)OR*Zqu#2pnNq91>dDwx7jE!Xe+MX+ z;E7Lxuy_%Oac8RLeeU<3Ga0HXpXA2wO;|o3r6G>x!Hipg$PCiKE~7W?dwRn05a^DKQ~q?Au0% zkkW}*6c%6BI+tk69|l{~o2^U>jaB8s1}a4&4rs{=k!@uCg)S>>Ruk-RpPpfdJbvOc z%OR(9AxvHE1ihXfyX8x2o)+$g`!rF491Al0xAo2EpDc)-8T3gDvJ`z!^t%~yG8s2) za_za$lS?Z~grCy|#hL94i+YnxaheN+62w!o8 zd{s6Y)9`{;{fZULlMCCn8lKo1W9L&%Tx9G+d7Fr!xHCx?|58EqcgOGj_MuOX_xApz zkYZSt@Ao?o*ffq`M>JnPG*RFu6gTVfG~fO#~6=MA#;CfEm?Em}c33Oe>E z9{vCJ{_e=3TEbcE=e%W>H&HF$HF`Mp zZO0`Y3;T0*$~KVT^r7$SdM`6su2W2n?zBWX6$P_5-n?^uc7~ zobv&qJmKjnJp=B~oM*=c1i`PxOPs4#s%jM$S9gnF@EMDKr!lh;DwmBcaG|WIRx%1Y z4~B+W^Y%Hqx_Kcb3KuCje3O3I@)vk=zT~QXdh43$o^hUj+xU63^;_&H7}kuxXX2rc zlliu&>+7%n5N3vn#ySQof=xk`*R?SF#_FL1=y|=S*L7TLtg8*V#0Q zl9R|Nn@gGMc6^B)`;4zjItqCc7mHZ)j->{x<%<(5yo`gJ`=9(6#d0*NnX}yZPM znX}n8PZHV)6wOGKO9w8rj28PS$?#y8`FEFs-&ZIYnE@&_LbB34crv0QBFDSy^$&O8 z<0f3O?XGM|6vVbTtkzM!w%{u9@rfwnv)vLoMF&JspjH+elBge^ZVq@>_~dLN5i!2Q zXujl?ln1tFlSF6H&8aZ}g>`dsWdKtK1t`pMWfjT`!{Nit%x%c=f!=428fdP0uy6L7 zyQZGJh{||?ln^_7@eB@EA$^>g=xq`v+jU6oeItg{_)pG^PMF!Qc)kvth*!x-r#A7# zBziDaSNN%Fi}h6q)a;0aAWXHqDqp(n&1;9Iofl%A^q|EN!wnce5v`bS=yZIiT%2>W z{V2MkbBDuFL-6{BJ_SET_KpuhFt${`ni|T@-;zDI~uH~1W=LVRf z^!-^ba)4Jq$B95tmHTCiyE@li$by3{58Z_ut9mE4IHyQc3RFLjjlhTd=bJW@nk_et zRK`a~^y>AoFt^m5Xc3R(ew=1?t*1sunurmHJYsLMI{K}sI7%h&FRGOtn(sc!TBjW2 zUy;CD0A?THDU5fD&8M%LmH2&d$$NIMFa(VbT;bIH%8jvJ(le~s$^v^i&oB~Wm9m8l zUDqi+t(58Kw_vh3%^yEySD;5i5FDFW6-xxE;h#WZQs0mt7!l}J*j?P%f8@jN+paw- zD#-cxQ4##+q(~q2?ib-76S`q9GBl~+6OAnx zdRh4-V_pNRQD2f|8qLvd zN}%Uo>QV8J4%eg!lTn&G%yc|1>arfG$_oCrQTE$Zrw|&oywuV1n&RujJ)g5$#`uCy z|3W+1HyYl&26n2CvaBAZ6JT;nb=PO{Mt&JxFjpo`hh8C&x=HQ%dHeL#$%O1xB016{ z*f+No(7v6TtK3~tbI<*xYQ-RGQuX^2{YBW)Kou*LW*i&H{ZRA1HK6h6{wjFV0C({r zZ>0Ovina6IUAc3Dl;2+IY6$jb99MBMMEzcTO&L)xdvr5oL6fzE4icU7ATuVmw&FF= zd1B3HBs{%Qpww>e)Oo1lGi;$U-DxSsxbjuGa2&t%Jh8$INz@x1|2;YOMcgs3POtrG z##whc<|$d58MZdd+`oRnS)gX0_he1(Z&#aH!GGgPdYMz%7U4T$)B?K z4D+augC6ESayV^#Ya0zG*|(P_<|aA%O|@|V_(}gY4|v6fne)7@Aov9UMBss|ez&Lo z@#P*^vKg$_>kF}k@ayx@6(#2f<@GXJ*=c@}eKnX+|8KD0U`tY8J*Qb}pg`oc=P=W} zj7BY2I9sjsTe`~C6TxP0M3;kf6}&$zM3pSSudf+F`2{up-rv18)KSex}Ps@5qmK}?;W3Og5+p!T*FRw`8F3A+C4#!^455dM}Z#J69c^jfMG3%ybS z&(=`SR9i7Qxh+)5Zio6y(D@Dj`d}~fRkR~V+1&5PK{@x8?|LW_PMX>kIIxIoFho2s zm}Qx*k_q6i3m2aFa`$H6hLt9w*7HqP79akM`&u(s-jUTebp55H1NsT*3~>N42$8ir z8>?t?K%-PuR%mJ<_NM1s>F*CbuJ*4+0X0U;35Ej>Rz>sc*F1Gi>Rqv)0sh&b-wn8u zE>m{hD+0O=l!hl$QC1NA@3P}x{R=O>?binJuNqC_t9xJv`M}*4AH)GO)yqpnqv+z? z{Ibx6Y*Cc=hzZJ=L!%?3dF;bNfBA@(rbeTr%u@l4&2JKD*#B8n zctC@tcOgTp0>D=UJ#`gE6l?|!n^XuA0T8X<(L8wmedYo{okUIfm zdcMlffYUrs-IampLEK%D|0>sQs+cAJ`St%P0sig(Mlcmuq0FyY_21ktvkDD;gZQlf zcY6c{76R0Z%748W`HuEKOPL$!)7|UoB4x8Y1)!(4k%eKWzN1l!gW3ycM?`t;hE|sI zMVDS2v8=4DD_ae&820}+de;9&uX>6^AYLUU*swSt~fAso~OOdXMbD^#I8++6m* zumA{OJEDT(wmr*^gq%y)%i!QYE;RHgRsYY>d?}Xz!#OR3F^=9r__szuf12FC3FS$I zM)wl`H_|*t68YG_!45&|-ld=J8^l%&*b-8n`G(<=jlgM?)RjvMW+*>$8;>~6A_TZ06f>K2)A=NJ@n!MnGP?ipGuB0F+G;n=ary&zz0 zS??3}W~OGrr-08raHa6`>{Bfc`A;_h@06$0s6w5a_|t#w;EJE)pwywx7Dqcyoj8yna|h7T0`x%+U^32O*t} zd?8x3xb<)z4re%A+0`(bFY%(6lmm zLpOW6|C`oMW9fXd-(aTb|9&7;kZ=+Yu!5Q;%uXK|T)4DZ`y^Y=FvZD69-W8j+4#O< zvc5j$WAShmBB{zzo;1=bx8G@o)IY`mtW--qIZt1J=`P5s`i!k_T8gf<_H^jpUme%;sp1A%`oBR0g<(W}8JL z16)yna~;?X^={e2jdbLpa_N11$Oz*=VOs8~~o8tjO z))8Tx{$Z-AhKF507nvw~5h3Euv6yWs3Sw9|RfxBMg*fE81_OD~2kaNWkI%!~uzIm+ zfw8Ce%RpKZqHDaKv(LQ0TY?7D45syJv?A1SNoFM%Fib|)ILbtzIrU^s%)&R zO=Tx@(Mwx@>b;nXh{q!i0Y_|johagRdIU!0I9eUti!K&Z@4=`RTAdz6HB!QfT+H^& zin6>n=gI(qr8}v^c^rY|O833g4`qtDnbq%kEh+c+&n};skD5$1X7y*U*yU zPhDYDUr+>N23PJ(=Axf)qJn>8`_is2#RG9pA=0ePjo2$I>uV;0=bJz3m)E~58Xg1w z%Kv05#|3@UYi~YCgaL8gFtlEJ)$_c*-v3s3524*TGVj5|+tCn1zz+9+W${_69c3G2 zJ#B@)>WSWZkLU+>BUD_AP{rEenUBT4P2Oinf$vB3C(=@cT(D3$D^}wtmc$eX1~OSW z!N?2yne88S2Wi8b&HT<;TvYg(gFPCd$RE_rk%F+_X;AXaE#EPi<*2Rr;er?$(jwBz z%TAt3f*dX=4EMk>roHF4yWoiXVsoJ>)~50^1qh(KediUy;kNitKZ@N->HUy?r(p9C zkmlGl&r7ACqpkcZn0n;2pBatUV?R-F(#^E&iy)p9J~joR`*GU1u9)-?w0WkMzv&1o z%){Ar(`2}}!K>2jsz4Kw+*@}*IZC$n z?qFdpWwlXPie8WsSoZ9+?hfmoHDU84}R@{M?{Z z2$y>7=H(nx;Uwv~!L>JWj@#nXX;{{v&)2gv0Z4Xwr=K1wFT-;j7M8QuAE*y~NN+a4 zprdsK0^Md+L!Yvf?qqPE(dm5Lnd=lEvSTp6cqQ}vb|}p2v!((amR1s^+cXt+^o#$k z7u6#a>Nf_ZJgu+y@1u$Lxn4;Q_G(5RZ6a;K}JlgF4E|sx!F?)9;dY@*HwXB4=4Eg2hqYt@xk>oCdkddBfl- z$cb>NDi#@AhnLFv*<8`{#Km6sEiSiw1(&6VoAY#^LeOeAk&CyEr#G<@oDR#*PL#LT z@JqR0XMoAbcRU_~xy5|c@JmKtzR!wBWo`g4z$)L<^2^hDlAOfSFrBYiMu z=PF1oQWLzcI9ZPHhVA+Zy4KUmwoWZFQO7+BB8m?0fW!>z4-RUyHA zbg+F;6cQOZH9(@`cYQJbC4EbmfuGZ0dpU0uGzB*iZh8cy8M|BCx^{uOXam`lLiO!7=n=T%2#-2*&>i3h4w--d_Ck$3*2CXs5 z)P$FF{{DO<$*IKdBKi96N&HEP=x`z;d5F>y+d8)8pb7xd6bTV^+Vv{yEh#l%rAAzs zLtLgQ@~x}@So9qmL(aws(MeVIl&fvWM!6LF7V{zZn}u2BbTWCp z&d5+hSp3HL3iMZDVR2~}>2--DDG>!|B$UYa{_)`9X^f=Ald`=!`qYHv=eW4*&>|CQ zg}KGy@qTQmiS_Zv-W31wJ4xtX>Cr-$+qr_AK->o>e*?|pFS=rSR(L=AnMlpT=Vs?d z#>cS5osAbGlw~MSUsx0R;zmr+M(5Zo!hOLxY@`lY%6Rz?QJo)nkNsYQdr_tUFN)4G zHhiE>RWVJj>_>9g4l$qNpE5Pw4V(^z#xR)wYat7VRQc>8UNbdP$`L_EyGgS_1}s(u zS5~q#M_$lP?S5|lNU-MIEqjdnyBiKzYnvO)r?v>GYmMo2VT@lS zTDOy22+hdrI$F*XxI44ufZs#pCJ>+we3-ygbck_wbQ+s0Ej|rVZG3#tvswg(wzDTJ zV$p9)4YaEYi#%O@N6!t^KxV*UAD+|cbz)4z4cT6W2y)Ak{d@2slJ;o0HTyKjP+yq0 z%1=O`wSg2v&ZQlaUkpB_OBYYReXMpZ+yI+bBI>(=OKIeJ6IBt_)kGl@B8HqwFQ%#s z$70R1fqz<1oFz&5z7Nk?-RfIc*qTO_ga2OS+p?d z1vLFJA@^IyvXwlV_|jcAE!j((m#fbl>1J1G%*Q3~cVn8R4@TmXdY!I)lEl{@OJC>E zL72dAt+~D39&yqd@x`mLJ<7gX*5iN$_Mjq7V}19?Ao}N+rivp*EOF$pdOBn0Uas{)3bF380ao8;4+r(u`&QAZXazd6O4f^ur^CC)sdEEY<@LtR z#agd5KUprwr}9I^vyXqZI1DKwevp^lQflEYMNzz?=Sbi22U`5-kkUw?$9ZwwfRh;f zxMRTH1p3M}3nruv4hd&+qQnISC&QWHoQMn$8b9nZl0Vr5_mm{9W(qjpubSrY)ux1* zBi9dx@i-lfoGgkxO9j3V3wJMp@~ES`e917QTm(i z5KnMzCpc0p0LFI$l)#D$@yYBhC?4V9(UT2s->A)FJLNxX5G>7j1e@|gtq+1-P#j0) zLfhRGoVaM>*^tq7P0l8Qy`QYD%%qRwcFXuZ0i$*Fau^-Fk8OUdWWnM5cm=d1wmB|Zk)7R?(P(-(Y$?qBE9R=JEQ{iFckFw@zu zERGJ^QOVyJ6Mq%*JioR=0W$t7Dw74g&9!s7pG@WH;WMo$3v0!V9U7l;V#mqiYvbMz zVe>{w=PTCE!2?!*9qYWH&lUW*WJq~FA8AV_8H;6MnomMOz5T9wtOsvJFjMjdY{M>Aa;JXixs8M5YpJX z?Owwtj+O7}nnu=?WW+~I8Hl=RTt~`P2(0nPeEUzzBb?XDKg1rV)5ev<GPfr2 z7S-Cd&=h$EZ2u0`gEGCcI*6%f3A!XfkMQrO-PQ{yE2AFrz6RR*jfA0{?HZU%`WZ3C zHqgEpO+s^XGzm6We3qwudGo{kD+l?j9Tj6Z?m;C=TUyypN5a%0m}b_rh!1)P&?CGd zG2g#D{d)REXaUB~qC|FUst<94ScVT-U zuqUrbe9;Bn5|cjCT5dME-4aYMipCBY^CJ;8j8CCs@E?hcB>qib3c9ryUbWno*>ARGcCu5DpMS7yH(Vx(3QzzJ4cdCD;F9e~Pt zXN-Z^RST9ya<42k#W`o8c~;&+MlIIiqfrUx!D97k!usxcM7CF`GG$_ariP1y2C%L-w?Pk!c z2m7#HZ#?~?oAi>zx0N_*!4gWP-y~QXl^wB70mg;`~ndFs`K$D12q$6Y*3!9zlYM8Gdx{P`xM9wSd3e3b~=1(Wb+Q1=NE zD$e@r3T||6EIj3SQ|0mZXJ7J;_q9cI5M9^rjX&!OUXy*dsqB3~Dp4_?LL10_tgH6V z;@RLD-14ykvc0_eZ-NIs_R>LAAPde=T&FQK`ZMlV`l2fM7zy+qKm=uPPux1U)9P^( z;6}qEK2IMz1~N^aFGTDG9|V8-U?xaZXK78O%b-Rn=+Pfs{TOp0WQmr{)}2#J{{Hml z<|B8+vSrO~OY1ro#WjKh6tK8mv*35BjSPth1JGP>JhO+U+id^fg5D0;E{hL<(c(Tk^1Z%cG37Tjks z=!flVHfihu1!d}sa+z&%62jxd?2eerMt|kd20C(_d^q3dG)3E0&M>ZDu+38^Epi{C z@&^hOm#ch7`7&r1Ho8n z`)FKsW-Z+CT(2AZVtN7VDI5yN6ZRK>_C@?7t>!b?)akN_Xx3=$XXdKMP(*fVsZnGY zfUuR>SejCJxoXeY8h`Q7NXh=fbnlesUiV}~@G0Y9Ykk-t7xzB-~`wUw0P6NSG~e$HYK&5OM}G=ny^6EoKFGoEW-{IO4^^fqu0_UkKmjrP46 zaIt1_QH_k_o>rg!6*5|^Ta*6|mDW`Sx%gvxo=D%2*`3Xq=Wl@)M&1NLgZHEi7(OJE zv5Psa%hISch@atNBD?`_AYm5-%xfPU*gA`Q!XB#%$Yxw#5>(a>Y}0Q^UIvG0N1A4G zU*^J@d@!^cc`X|k(gdCeDTPd%%OR;ZEgg`Ge++Kf8=r7{vC5vF++A-NVF1g9QxivK z2gjk&CCLK>2+htIh>xnXf->v9h<@lifZMTPFzteSH?gwLE-#DGeV{16UG|Mn#A@Q7 zQu8r!JkXyV*%#UYHOG^1+U2F?R}V<_%%{$?v3!^_@(Dc+%IGP`Ugg#7H)4nSmL^~N zqC)-sCK`l)-V<=-us@nvj1CQM^G@D3_s)+z{Sd~n0O`{~$c_FbPp1z)r+JYXGJ}5z zm+QF4!-o=~j32B%H5RQ0H@MG-;-PUvVsOKRW$8?~Ktah@TAz#0X+!%RMn7b$fBOsB z0bqKvT9M8Sdpz7)grs%l^u}ddrZj{FqmO9IzT{27F+cbFBa0{E)?3&xoZ_7Qn2O#% zzR-R-wRA?bArOfk{IOiCC7!e|p@v}bJEnv>p^G9*nVxo^_br~Js)c7;^+0CDoI=}QZ zdC|-V>#Sd>8+bz)3%r%BEGpx0{Zn;u-H@NQSX=Jh{Sjx~x09GX1Cg#)7KD_gq3|Cl z+3$UtffYXvZ=$a>8Xh5q*+KLrEkC*TK@%m=%H$-<%fC%unof@9SSS%S)P&U% z;;D=FaYyww97|HQ)HQ&nQBI~r+IAM7m^ovQ`+67XL7UUaV^mQc8xvAg=l}c}^i~xd zbp;5D3CYR|BTVPI`Z1iy-jLrZ3-RTHvg4xHWGP5)aZX7%3w2=Gk-w-lcj$LHe$G{t zSNYEd6M7qsXnQL-Il8mx^M2Em8qT1%Bvp7v20cT401^pO|7@@{_Ua@UnL3vJr+-sI$2Ntb2s@E$3{MQ3g+FH=8eg^|G7SU7lVSydcVndY?Tk4xbkS z3BT%<==3fZ973LDwHQK4cRA*@C)z1Ba2v(j;h-o=;D%s7r9FHDj{}&9v?@gT@ zaf<1`&zQLUG2XWnaU=VA`zGhP-wASjDF~oPAfr9I|MUI&mu?1WfgF{h|J+WZWV-}E z16I`YaK7HB3jB)5B$<#u?6i%1R&J$;6!#0u_u_Arvm0XQi&KRQRc-~$HVggAncTZt znQeHs<~+CNo_@!knSwg8Qio2S0NcUL(~FUz7Nbp0Kzm1}Q3p!3vhlmLQv0?gklrzc zzIU~mJ#$qKyB3DDP)q(4s53d7anU~!RzE{|G6#m6ZzC)|{x8P9Il7YI>o%HjVtZoS z#>AZ1$;7suOl;e>?Fnye+qRu|=eORs*89G<)?4qtzJ0r@PFGiVojSG8-s^ww5t2nN zafb^N=qvg5gT#?@X@=d#AHTuPT%L{$U($DGg0?{CGHl5zH%lL9qeQUj}UX!bc=##q6?^|W%ZCmp*c z!Vd33an@@~d-sAfwgZQ?*h$c?smY)yjfT6O#3ghvY^*qdLX|%b(Y?|6M;+)|V_y@j zehWw3Ow;DT?VCl;Vx%m0y_NM1riV6q-LZCBY@d?LSNx;V=(ePFIWy>-V#=lu7a5TP zkWm%;%UgP;lGLp(4AFRQb6RxQuIw60lq5SRJ zq*1``O64Nt%B!f-Shcxzdz8uk8xXxY{!!R_*9cL+|68?sT{y~zCT(W26$vSO)Oax6 zemO~f2iAbTnqYY34=8Q=8&?zC_KBWWS`SAMlWv2Viu_a2=j--4FUGsUxNuDxDmoJ0*5cw$=&oGU50F%>)BqaqM;e!5%(T}Ff*3msJ!Y=jW9Rr^ zzUOnV@xN_z=E^0U+@r0&KHzhY6%7X&T%2fV)q(;#u0H_eolnAD>r(G6$CHhJc zFBAU_O4bs(d(6COnOFg7e6)8{BDlst*EK{KKOE$B zWnI+`;W$_3fGlNXBa@2#DGCedY5vK;K)uOc zirTdkH$hwTRz;n0V)yxw&c-Zo3yC8}jzBKiFnUR4lc2a9crtX1r;czv0j0%i2kY1P zl(Br-{k`yKoZ?)w>H9~uBi2hEnYq>yld~0`Wrs!VSil>L^K~vG`Ez0YoZP-ojmI=XCThuQ|}2R@55Hw z{}gI^YH8>1rhTGzPg0g$7J37_(%v4CldX9WH?tz~*TB~_9siB)Am(JybaUs=0yM2k zo=NVhKlmXhRvMIs8X&YOVeUAnA`(VmRAut+$;pxq+7O^E^(Q^%h9`)2=G;rsRt8(v z;6vl@@#N0v6>9?`UmmGNC5q~eM!b(~QUv!Y!`)Pdp=LU6(98Ya;At-9a2?&aa$Up~ z7&cVdaD=L0(;r{CIyKemCn;j*s!=?Kwh-U+0VjNWKR({&nAKl`R2QV>&>7i#4S4SzZREW7fPQ&^NQbD-%hBvt92=4MP2g{(3A8s++vYOlah7mzc=meMa zsizp;MyepwcS;682&1I1A`Z+5wvq85ipL&;n2rf0qVrq|CBIu&SR?*;WjBKhDOxdS z>*RdDmYbee1{wcaDVq^lf|d$nM=aqVy`G?V{iX2e2kA=9#IP{SkcvzWJaBskZuLqvNTR;NoA-6kI5^9bc+!92Wvshx!7S3+`49hk|B< zUFsv)yY?#5whO4%C90jLd{!GBxLgxLJ@)$wJ*MB_*&EBfeIH?w_nD%W($DS(5|bA2 zy`B!PGHkk+HEJ!7d%q0`JG(rTI`G;CSHjM+)hg8lt3tg%t`GjiGt`Pi+d>}0k`7flCy<9G?~jr zcCnX_e%tv)qPw@E?D6}U+>)RI#HE( zdqkhm!S2CXwQA#ftIfU01raqe*snVh7rU=nMyjP#7MQ?aYxIXV$sZ);%5X!!{))#f-x}f9ePUgTf(Kh`&UPz771?*2Q8htc}``F7@*KEvMHz~k&L3oQ7jfEJHm-YoriQ8bb7t=ko0K({78Gd@#vBGTaM6+ zz6pGVu?@p)&H|o}Y#45f#}X6>R?A-O^+(a#QWF6R>+sQJTqJ4p18B^%S9fbgcJty^ z+vALCrKFqafjPNP_x;N*=YifZ)wJkG$W9;R2wkSk4{+ek-s~y&$Ya-+2b%f(lJEO_ zW7HGX=!JIfYmb%Cxq5^3=H7{x=%g>CMHL1n=Hf@X;K%c&?+x_8D1i2#Q+SilTm&-m z-#a%?N?2_j2xl?l09i%uBE>ow8k`*F%X8E1bzB*m%NpQkR+%;XXi!I~o1s-kV^k2A z>P^)xe#VL!RlxGrp`2e-se-$E?3>?bOh@T2zudn)>i@7B5m6M%I=^yJ{)2i8{fBx3 z`qoY`Gp1@R_64a60`7YX#NZ>{GqFI7+9D^fY`8lccdGL3*87#-sUEh_zxYw zYz&WZm5eEp>NUSZxkaqgGhr7rK#We_-flbyUrMM_hK37gv^?L@T!Z8dRBC9b9zyNC z75!LB^iZ)f!p1DfJt62l$y3@1TN32ZLFRecbnUEf}SdNt}A8h2ujYy zJZ@X~%>)g|ahuRHg8D$!5Z^ISAP3$~zaRdrW2QTf4pvMz7F+(hi_w6PkBIx0K;M1^ zNK)QAAg_gXSXj01p#;MBx@<>IVBWWATk>0P5FcD>A6>7Gz!)@5CQ-=g*AM-tJ$EO8 z#J{m`scc`7Oac6ZsvkHk{5lbZ;(DuEJ-lZIyPMHZS>X=6JrK}vqNDOkmBrdIy%a21 zi^te-J?o(#l~s`zI?^Zo#vd1mJyV>?{F$P2b$9NIN7=?v)s_hmiwCesMc$qa9y zb3Af07PD5|IDGxSbGmqM2o%0c#L;VVrce8elqCt}M1pFC?=SXC#P9T^J7%Wg#karY zV-Jgwysofq8eHmk=3Ym;pISiLvlDaSpq6i~p%0^QW~TGm+h09G39^mv;$(PZQXr1g zv~Tn#dw-z@%i&7X;1=ZD(?pG(sW!0g@%d=4?hV@H8u(o{paMW`L2?tO7U&W-X9lp_q6*(?xJaHe)E zPO7AZzJ%4Nf9z~JUmj)5wFdp<>Pf-0EC-w3qPY0fJ6~yz!Ll~hWN$1e_D2ZT1X9m> z2EKiG!-0B`-N^C0V|kn67u+26|FX)a^fouxn@JTzz_vPPi;0}6xW3$ZHgHhX#TNAa z&nKsZ$@q;iTuum-O~)cFLrLlBz}si4zX&Cl;m5j1s6)uw-M8a#uJ{~N7NZITOGLWC zpSt{lHD+GaTzNH_*VISeCHXg<`)_@MxG{aM5F$b0kTF%g69qeMAIw8IEOyq#8P9rsGB)R+L(r(MrKD5 zTQKFw-un)#v%0;0)0f`H*sYlLlfy)IEBtcUnf7hCo-ql^U3-l^?cs?wmC=wJAJ0NH zJ$nBN?A{<^)EGtNo4XN2j>*6->b<&ydRjqKC*o*i1Z@4)w`(0iYJ+Fp zb4|n0!v<9p6hu`H(5VQ}oRLj$&iM7{(HjeTUNm@PR%?B>zGtGngp7e6?*NMH?}OV-)|prGYj*qqlj8j62P=s61!)Y|77c!a7?`)B8qNSf!7`Oj9pC-_v(+ zzwB3lg$W@tll6`j&XT)(vV^D#dQv@)?kJOX+vnOOg0m>XeFlX_{SA5lB3+@iC|5&L z$diu#%u&Yl>0B6vyzzJrZ@h=5d**sunj1LFpKc!cgaZK9k*@NT1@tt!>G#TV)gqUmFEEM*|Ezx+=|J8_H~1-ZUmiN6%zRuU#Q^&D_+~)S{^C zPiZ$3aDLfd&U7Sdo5f3ioWEO}N59^UQxFSxKN!CX=`?$DpuV9v#;4f}?6Q5KWF5KB z7Wh*gRJGOswWkL0#E12hZ6foZVuP)2`1%0dA=o>beN(#5p=MM92`HWp7$lF<*PHdp z2oIyA)NMS9dyq+ z3xl4MzpTdZ71Zv#^6}v~delGhaxv9fI^C9JuV4#?tOkrXK~0){+);G&f1)SRcBe6g z_RyMa^WAwzhF>IM53&>LA*6oa)@-BF-fZTp$OiAKPu0!rJLp`*tjxJDV;0rhNg6TU zvVRtH)_UcwQoC!mZwydt1|qf2YM#QAabI60CFEbbhkg9qh5as#+TxG z=U)~G9F(_e6F#(5arFpkiR+nQ)AOPfHQ{@n)wN(<%)UtfuZ5(=w`rgbBC+E0X` zzA{I^^oVFyhAb`9$6Av!K99>^AWnw2yS5GPFJfR-khR8ro<;mV|HwUtp^XEsxckl! z4Ig4LjxEcGXokto$BB96%XS*v`RFW?dh%;Vsk9M-S!@i)0fC!TFAcZpaM#h#!gPnB8$rtGZO)soVzia2@2oMjzl#7 z(z9od?cOl}rbXg@s-*vXt`XPpB#xt^DVZA(fwI?SKjC7wz{1T}hz_=e%_Zp`JN=Xn z{W2qVglbeE_)R?;d6f8N@i~7n8D6KOAlWt0mv(frdmxF3xkqeCeSd9uY0ea}C|^)l zMi0aeb5W_OKOE3UlG7WzxSH-i$?vr7@?I1(lw=g-&88^sR@eKi*yBXs6zb7f_Ql8< z9ppTu@;c&0o#Et?W5!{9LVcRrPS<_0a<5u+F$YBuZ`rRupwe=^!a>%_OT1W-d4{<0 z>TRemZq;XJ0z4mK@Pg%ye)E{#v+nQnw})M6`p$RI=}Wpg_Az)(+>*dVW^zQUs*;

OOo;JXKNCtuE++?2bt0P!t0zTjAGpnfuIs6O#_#&V9WkcMxuxHl4 z)2VR1q&+P&nIrpRHJ2mhO5Z7R)tO`TRQL>J#%(Zh%nB#xj3;&ZRKnHj13qt3`PzC< z(KF(_I0IG)J8}#1f=L;YXgW-4PvqbhU*!iSOTup?)2093$ey>UWpK@P=SIg7aF>sG z^;od!Re1l^{RZUCP}Ge5`P?=bxq&RctG#UJuJV-my?GqN zI8V8KnYLlI`9MN+i^%o-;dCCJro{#F(ZZHvM{3CF$k$y0^wFkgqcGvcS~jOF3C;L6u4|w}&SRbksAiHxkgj6#ebd3){@^Gp zeg=b`l`JRr^&E0qb(yBH|Z=mxZs0C`3xnM?)ZN6qaJ-~G)InnR56?iP>+`x>aR$5)Zk8o#CH;VWL%mok8lZI?J*E@QdN0#sDg1KW>pTq+@I4jvf}qo~53vzy8Lme{obQwdd%NUiqOlToEtEHo)qyp_jaW!ALE47k9wN#?VbK=8H6c(3P z)>SU*(}byjjI9Qr4St)JRHYrF{8@3^xolg4T-!GNp~?f6m*G5&Q)(1u65l?@OQCV{ zN<-t86vPKQ_8bE*P39vs1QK%Q+^PWPZ!)@yl%9*{+sR|lk5Tli`pT1U(dqXDmXNdu zD*&a`jUKY%Rf|xE_~(af)o6Z4F&tS!|-LYjOGg`ctlN&;g`fIEE47?dsqNizzDI?Ki39{^A9a6YjmiXy8<> zsu65F|IT=NQ)ZM(iT>T;e4+peE2E#+8i5SnCR|5)`hH1}-Lx$x2eXsC<#D)>5T0v* zVJx>#UmufBSrttUL~Z~n7qq}2k&~;ly1f-9;k*xWhc0)6VB*BXRZGJjK>d`9bs#S} zvvm8%?0q_mv59YHWMdpK)&2IGpt~a>prZrI*{LC{6;rrAn9lHUGA}5t57M_*f6pg> z-=)#UDoE3VwnwK!z6&v!$xuY=0MtEyE#t+mm#z5i;-Fzy2~9d^LA%=bqQ9CZjg!q* znlFo%U|{f;_LHhNosR1n2LxXd))#MiQmseiSB(a4rE}o`fNyA6Gv`_>9@a6J=2nd& z@O^X>e+#9+QWOr8=63fFjBM}YuZ@?ntOz&Iok<` zF#;bhnvGhSA}r>>zy>d%_@P9ip-jHNxC`qoh{harYp3Ic(;-EUwSoNy$qlHyD7Hve zOkS@5$Z`5CuP{CS(3c2^=EJ&O9TO?nEy2!+!zP1`o+!<9#deQ_0{Kyo=8$~83oXGC zK1r2Y$#0MQF=nyK$l@n$c`;`fAtlkFhTMkHpZ=(;o{nC#o(#Y3xcp9g2c2nOxRFTU zF!{0g{j=%Yzj*xUr}i6{kbD;L$Me&?OO;%z1z-Ix3W||8Ot?1-xZ~}v5Ac5PT6e2E6S+l35F7~QAQ6ybTG2l%XsJA0aAL8dLCi{Pv=auOdLhlzY-XR z=yJ`gw26I|`-}H{^DfpQIh5G4#UPPVt^0>>_D*&!^4CQl_8w2ThM;ai$&& zt*4IWu7dbJoI%t0N$Hhieb+J4+-NC^1$Y(dR@dZZ}+eYlp$;WfDID+xq zzFt2xccbBx=^PdT!2m2h`{654oE1iS<|a`tizHwHgo*_hg1m38e}73QMTT%ZTSN%N ztyVWWGzrDK0ectas!+bBR(}GSxKOOMjVmuDL*n-~eq{QC@%Uc? z^`&3pi4UQuYl}B?B(gXhHleycyfLsMNEl*&YfCS9_g-R6GXejs7!)U#gW zGS-YU5{HXb63XYE+iVR>Uv;jVJ6yW9cwa_WS+OF+aw5g(1p$hhQd*+c;fm!J0E~gn zf>H&Gnr5dKP5knv5jmq+vasPz_oFM1EmD!-&OnTwqb_>iZR{hj%eTlQ&&jr{+gQh@ zLt2H*QtI7Z*R_=gC1zPow;c;&B4XN1T6{wOY<4vHh;UTFrU}>c?-G1HAq#H|1^RP% zJto1010fE4bMgLrVzUcls_s$+4qiMyWudB7UbVBM#I&@a@Fm&f*{_h{>)pT!;g6s0 zm3X|Jzu>kz`48yhsRrku_KzM^B#8SjS45=KuR>^EV=(SSQar=O{f7I^&UCelLek6* ziOgs?hL+}n=F%kh8`HMf--2f;TKO5+Ljrl*U+GU>NYL)~?@mB(qfB5U?0$!$-M8ECu+Ff#aq|H+KHQA zL@C=#lf*1JVS1X*HZ-*aH}-*qBsAmt<=gTOO*Sqmpdp=H31Pflk*Z#yaR1DUB4_z7!`1i&Six zrT%Yg`8W3LQJwgt9#2UkIAm$#W305@&3g37sHo8(rf*yKoWjC;!<4ap>FgM?7dJOf zgWAXpB8tOlKWVt^#zN2&wtBT|Omc0^XYhrEcbRU?!WuM0cLp>9GhzHO@Nb%Cswm~C zZZN-yre-nqDBxI!$?lIVhrNLE!c1y%TG=EyWn4&sz&0UFA)d z*T0qvWu?mx!O=0-iT9-_M>K$BHnQKVDzEQvh9VxCm^ASDK`@_xZDhshUcnkz0f3}iERuQ%0$;s zc)WSc&i8HGK%+|PbMGwWOAHT-6RU}@4S-Fl`fzF~A0ovnCSpt!RlpcwNDC_Al4O`X zx3nK2Qf+yU591$J^0y-Oa4UjKNHN3ocm)MUDw3KRoE%3t*uyM2IvpP${mD*OH~tcd zAA1-}Y0K6Ogtn&5>N49<7EyL;dQ|BeQ6)$I-XY`?_Z{BaJKdx4@6zDmCQRrkX^w(9 zTG+zOEXTm+9Hv0Xs1i)B#TO|iCQz_g=s9Z5jP0f%!I#C!n5Vp zDQ(hBSPqQWL~G7$=|BUMcxyNw(X9oMT?I%f&Av37wDi4IPM@>~1zwJtMR@+d?y*=(5ia)uws(%3>Fn9d*5RwbK!q(*IaBrNz z0(Hgi#=$09kRMZ8)!p=1<2;#9JxZ7!Zry>(BpTC-1&icnMP{lF28^|3FX(Lc77 zRm#{RmCb%&3V0@DZG+}jT{e_>vjmsRR#vOD;oQ~P6dGwuC!c#Q?M0cQOAm4P#r!|nud<)!L zQr|MDhic7`PMx}SA<|xNXi%0!Lz^?0#8G#rH||1Zub^CE|Mr$yEv8NH>SMH>vhQI@ zVd+*5H0>Rf_tbl&3l7a%r1yfqGUn!mEj(Z9!-CFt<8cIG6OjIM<$D?zvV4TE?ccH) z03XDY>A@^ufpGmIVu7IB_KiVaBh0R8pt zmc7X83z2J^cjB>=A{Wv4wc}z&t>&14kWsJ9ky@SU%VYXkncqn*`u$&D54kKd=+dSC|x*c2G3kf1LHP^0}ugY^0y=6H%&G;bWt zpBh3WsAc8rMXXXcTf&wwBbaUo+USc1>{bLJCR=_8Du=O5rzx`YOQ$T5LqHYm<-JoM zVadDXW`-vE38j{Q(G?mI6?&fZ7f_>ZW(`*3V+1SxLo1^4578;vub+Zy*471^N3fW@ z-2Ym4a_P$g^M^u4f^g~;0Gh<`@1&14&HQ-}8PIq5qVwIkm?8oVqm03|he=)YT*Lu8 z;;Ov8(;&0QKu+0Xdb$G?KPK!=nRW$f!azWP$!7}QTu@dUAK_0Cc&&*X~^ zXv&xE3!E(`G&HbgFi?L#LBStCkdS~sEr@`|{n3Jk$o~G%U}o*05?F|A$bWsysxCy? ze<$(pJrJ*ebw>H0g?aZNAV5E`IdXr!mn8o)ps5%cmK@295m=Eeqwo$Wn7<~_i1ux) z|JLGv4EU=g{;yu{1n6%ba?n6a9f52hIKTqHJP3e9rM%A&VbrfR9aVj}2Mq~auu&CJa6 zbO*x@P?%8KxN*{Po<82bn5gqkfj88K7bXH*T2NN>$(krZ86dc=_pgO7Sd$&HuaJKh zd`%w;12&vY_zKF^FtXP`;4s9^n}~^Qe%hou0^&$EA@0vi0vhuzxkK#BjE}c(l`Ig3b|h#H|<<{cmKpk+|2H zAw4Q`y0>g{pJ+079FWtKi`zSdH-(q62aX5(pxuZgLh}PLF~Ls#tAcNzEh7Vk8{diG zwL0;w-I+DzvCU_Y2PCRa_RZgrnkI~CPPh%4XJ2> zB41tL4m*8RPKZrI5mol$-VIMNH#;-5KKc`2P2yDUEOBrpAZ?&)JTgDSRy!~`5=4Fo z`F?ih;Xs95cf|Q}p%L#`#Ch+LGjo9x(3#r0)w4UC6PB3HdNASYF}L_586T=q+7f&X& z?p2{wRj5smE_@Tsg+n;wmR6@1$Yg>Gd)B4h$%UWiZ{l)SL;-dzo-QJ0?l;z-pC>$W zA%z9zzh%Gb3hY^|vAA|@{QXWL2%I}rKHw4C6_KV15yf|?!2D1D4b*EG|G#(t8Txu_ zuxxL(FudSk9%z=En!!$^%qA{2<-~Mc?k&Vzn8}i7a`<(#6^VU7@`~)Sfp0AM7 z$Eq?4YIG(*MZdi}{r=W-2YVOX9j?IU{h<#>O-Dm|U!%1BPRt)2MU5d^|6=_BxoGZk z&_R_&up6gP>Fx}d`xDA(=5!-Cpj;$I~uLOyLayR*v{m>e-y0v-fS8!EU?YY zGW|W;prXZJEWYGVL=pDo7P3i@bGor?LPQz9rF^!wte6%=B!tBHD+$rWkipsUt^dwxolHsw18r& zUddm5d1{Pve9!2_S2!xetF%IdcUwznV+*?g7q>4qX8=2r9hxXy^&)y>WdWR*O!P(F zKP?{YHY28fMuo;Kp6}{RS@?V!!7g8yjE=SXcnCwDBx>i zPvwU@AHVsM^UPjMEPmY*H=i26f3@B!0M-CM#s5EsDTH(fByn0-@?W(Jl|nMIlU+<& zZm$6IJBpdU_ZuI|h}*dpd`>uBpuj5!Z>bXDc+co=UWEQE0)~^f7jY@@vuAh)9%hd- zdhfbcpqJs7jX#*5n`HK=-MenHNbTS`JeK|IM*z;9pZ(uFr*(A^uKgGD#byU6j zjp2vguL?+*W2&BNqj3i=T)C;f526{?XNR`PdSA7c%6V_(YbY`nl+D+>%nKpHmbb`K1I!mskt@NZjz^+XhRMJJ&6YQZ&nVIdZ zLHr~ksoe@9D>i$MJGds_<~Le&OC4Wd6?tEcjclAjZQka%pB$O$j75Zp;Rq7sL;`Gq z3@+!}&kJC$6T1DO(aocCOif*SRZ=xBo3##xNliQKYbKV;Q7kRCn&zjLYx1lw0QF7?x7%90{`5)K6fzvs?Td3gn z%Rdios>V7f{i6jUn;uk$zUT*E@OCKLt%yTp6~5Vt%1|*u#3kzVfg%%j7_!LbaBitg zbaEb*4FR3m;;;l&@c!m=Moo{v#1iJ^^=rn4U9FiEFy>>B_iU1k7LSB4v|gnxMP`Ae z&NkFPhiVDF@Wj4IFCj_U>76h=3{fw=kEOY~Ggs*+KSWgnO*X5og%1as%w^P_$bR~s8PS1<6Eg}O1-FYm)mEI= zgIb86kMGC0+2x5eO9M5v1>XaWZ%}0Xxlv!=-Uua9f#oW+ye+s79#cp{IrOo$2~&3f z{R~qJRYHZ~%se)OnrCDpvGj|)qFu)Eu~|H`RGg)mfythqJRH>brqP-*SwT$T#sCiX zl=U|rI((e9j-5S|2$!ItEKJ|vh_J=yrg<_V-sDIxnAM@EYx5J?y>j;Cu#t9j>E#DB zSkYWl3n52DL?Ct`DGx=&y#*RUvPeTqpz?urST>A=6n?cG7YP+-qKcOaXDIoZ(hG3x z!&J)2l3jb9VT3U*M2%U9LBJFxhqPuM9wzYME&QiQ}AKiHmxr?YdNX{pP1 z@W}r&6%#O`S97}*wl|$m!SJ%W`><=-n!5g$`(^wGDz7)L@Q5arwXY|kJ=SUcn^+XZ z<2inMBw3o@oDL3dwS9CLlbf(@YaP#^&&%l`r0Vxx_M{j~o-WBJZe%wtw!m_tKRL05 zg!kEQ;WK7|+%yti1cxqk*LO`S^d=a^qR1W}7+j)?^W_h=;g9aGQr`u9?w}SgJZ2Y1 z;uf>Ch{Ah@^#pu-v#<8QBe;RLh&4aIx*1AQV@?hHUTG(hJ3R1CmC=@Qkil9?xI>a$ zV6bvfbN1*o0+7=_g&Y zJB;4Wg+_-Gk(GRh_h#Yc%R(Xp#2KGP_b6HKw2Vr?!%!%1Bu_RELWB$@Xp~0>B_Lj` z(^7Wg%bSUSwG~-lt+marj)4Zi`br|cC6Q_reGt;-M$A^SRmA^)Lde}+}> zFi_5vc%Hx;Ff+VZ$0IbgY`lb=PEmB?iM}2ty+j+EVP))HSi?1qfMVE|4rd8NfTQ55 z_+D1bE}O+`=UOkO*7iF=`nbjPd2f~>bEZ!NuqiTa$()i%J`hcqtC zUHz>qGA1h9VFxJLK2(XEojqZ0Rp~ip(=^#b+xp^3SwH&nGpI+!8Zq3I0sxs1e&M~> z`>_`WD!Y+Bw>~M%m7VxS@VA0CW_y~EK1*H8u~Q*I(T>7DwDk5RuDzSchR(~*Oq>6! z;zlV@Mk;hy%%5oUaa9{JO1YUs2UVKayR(j|+xNYapMcA=d0=q$+NP8$=}0{MPiTD` z0Y>jcqygz^x;ookuJN7c-M0hY!t{@fwwKwy&rPpNJQb=I)O?tjiChs#NDTJIYr7%^ zmA5cBiBMQF?lvTIx;t#qVLnmMWDeU1YYja8I#1TU1y0~ztB-P)%Hoj)n?#R?z0{T^r_a#}vRK|O+ z0H9#CVM$3klLhQCbG?oB{&w|LTfAjxLdsa zle$z8;snp3q9qUZ%?V1%w1dD5SyYp!zvbN7IAHCmjdy@$r(+;X&q+cWfvmrR)+R1b z_~V3fMGm<`xZ+Q)+n1yF%pXHQSE;Jr$<8Kt(x33zal78bB{$}fp@E*$yjZb(5$&e} z3R8=e+0CjQ|M3O}xV5v$%8i$^9ikqTslnB5a2svH8O%#-Cs(xJrtT=>%_*3N{j7l1 zhEM32>%94;MU1Kq@s4@A6Fy6n0{*BW1dYqMx7%_=3uJP9nnhqXYtrsxg+h(B(UndTRGPhRqdea+<6-Jy8D|= zbtuU9(Tc}BZD7dQ@N_Q09CdS`SjwI7I7U){*}Xr8R1EMZ z3H&h%-tD7+ttxc~8_ z#^Bcnl3!(NU@T*`CHo$mZ3YzVv3XC`?{g+5|2xy!V#$e%=lFP@O#are{*=q#YvbTF zRoVu-O6HHJ(B$0<1V61M1I`(ku0nnKmeieV#y(>d1l6FITP9IhuYTwj027JxN$R08 zmlYaQ!t~s0Kd-&Y#pfxb-;&tge96y+8G}p^T35JcJo_NpSy3FVKEOVy>I6v`aMP+` zbgf?*%>;3c;waRcFQ8@@ChS{U@>#jUIqUfP$z`_L5aAT%=!_>2TS8;xgtsQM$xZ0L zr!l4HZ#COJmsA7}j$R)hhgNvvLLy*=c9p&&9C}USuMhkCD$can56RF)J*VsME&}Q5qDY_m-kp!B7eRr{*@J8Ha4x9U z`1FaZ|KLB^s9YH~QoeSFU~b;F-01yQ%{K;kJ0aC-BT2$AthAJsQ-m%PHRTR;2SKy(4%$~;ACeh;yi$CF_LxjH39i#gPekec-cAMaP#X?3OCy|f@&)(G(Oqg zvgHKVeHak@AP*_F-A&O7D@4PcSzm#zPz6urZ=_>0dV%#ccD)QUpJj7kg*W4HLJ05% za@T&QZM=0;$W|D1hRH%^AVg+d(-RzqhsA{7)tvIYCPCJ?@0OC11lJ&VPa-OO8@&n4 zbhAM}x#`y43_+BMEbv*>Qls8)4kn-9Rv%~|zYh&v2>EF|;y$*NFDO!wYt`dLxbfQT9BlF%Gln7BEtP$BP~u zChdq*afFhh9Vpu2Gfr@WG8BHK{49QX_F)!J5HS2JCo>~Yo55z3hXlZwn-FmusQlvA zm==J^VrFpVAM}bJ{#}MCvaPqp#T(aYSGoz?WugKYk5d?dc>=~9fl(Gv|G!@}z&Y&8 zx2f~j6@~0}8S=ETdmS)YGhIoOZ<)1?#)Ml_LTdKKS?kA{FHNy!ksrO>&i1Z5Fhi?X z{Hl3SSS_G0lG3GWHPWVKB=YPcqL?x#^^Ri9@O2U^BqWIGU$%nHr_6Nz&*eysacBV= zCsyM`QZGQIB(*Z&Q_e3!}}V9bIoD=aZvo*AA2~F>73F0p9sfh$GNt-N{&Yk&Y&NY z0^`}O>EkKIbxx&(Vyma25m(oHLsai&3preKQ2Hfmz8{eb5uA>8-?VBpm|a(YYgb0b z0fjW)A4)1Wy)ho*G6-mM<*^1n-xp=x-SBjHt!ENbklvmo*)QRXZKn-9xN%~=9!M<_ z0N0PpPi7U%-V6*xrzLdbD>_57hC+?AHRQQtux&05G}2$J`ZJxNoLDEhyPcz|&RpU?XVLhvkCi(7x^Kn3is`re>20L8Cg4BgZzANc4YqwuoERZbWD(?2 zr-aO*RB5SNYGjoAiuT~tTWdmvSk91skp;awI>F~?vl<`H_qI~U>xRRH@jp<(J#Lw- zR!=xJ$NtjP6rS&88vndRXD7fCVX@}BcWShN#X$cvddqOh=+z4b*<3HAr6VPD&M=vDP2#(9x}EWXM1{;)_bbibY=mo`7$nh#rht3z7;DNEm;j~Iyh?O#Mc z!9MXpb+l6_FLTTGo72Vt-XAl+-n*J()#~x&=$`!^PWV=u?)cJ`e-=n2Yb&RZ=B*@z zS+fPCeY`WyatKz)%zVk}pE;XiOyJAXXrVSXIn6AL?%fx=pO1PZ6)ANXR@4Ml(nee@ z%I(^2Adkbjp~9IHX|(jObiO)fzIn^!s6HO!9+P0A+wU#?FWTNSs;RDP7ryBV(nLVI zAkwS!8dQ1_=`|qIL3-$21*A)t-aDb!Kmb8NdMDJ-ArP8C2%RtYbDsA*XN>dv{MloV z>^;_+S$nOy=A7%A*CgJSAbtP72dF~?RG3daxWPN$7&f74MezG+nD=*!&e@emwguj? z&s9kb4=349v^Y&)Q&1Z`@>2suV?g{@9ZN&{3$j!Ej2pcvfD@Yu^8S{|!pm^NO}#nJ zezaLcE3#evzLsgsCgYhcTb;`ty|cfD6@0=#An!xpy)Grz-J@&%uJI_+_D|r#&{mEw zyqjPC1o}#PuzU8%lgn=-hO;6 z>M_5vNbM`Hb)Ji&pMpUbpCC;FZ-Ayl=Iv~*((O{A9*PBq9?suG%ra#flKAVa``*w; zjC_2rshlXVgN4k;v~R)aV8)bIEr*@AES=X^MT* zO~wCmnzKqi73dV(Q4D{Mn4LP-j~Uo~0!?qSdL5K%Y=@*NFbhb^R>MF$rD76X8vAt( zVmD^UysB4KPKlCIHe-j*`1No>D3)!Xdj0}(rr6{7q~d({+fJX)M3up>tqv26eC+0W zD;tP6rk=8pc9>gsM2bsBHthm`J{5Q>=E3{hw?*97iuCnr{u94JhQs~*RIa6^i?hb; z=YJwrmM5nZb-Z@DGE1FV>t}JB$M?R}eUi?g?)H+bv(Yxs(2vQbCLRAYPRz73mLcci z;fe96uGS-HBsOiY!Nvob)z@|$RAa%0qZNkURPX6kh2DkTl~VY?L$8Pi*6fRa>LfqC zLE6ma%xx7)=$yC|XlnK2>5tFHX&nnb2_B`k)Q~W83vO`Ol>JOl!;%+G`8b%#c5qIu zL(uXmaD}!o_S->O?oa5Yc(sn0U`-MVh;^5hz~7Ljp5N3Y>aO*;D_AnzQUdrW>yDg{ z?T43_&~)=^(ebx<#F36{a8%a`ai%CEYiqAMpXdv#jElD!kWeeVRRe3(XY{EtQu`OJY3bjh@RXIj-;Pa45ZeQghkIScGh)=rDbW520^U zk1}LYNY3s5J36ckVtCV?M?C>61K>k23@j`OFZhTo6ms?KMhq3!kbEM2-Nrm0fO6Ef zrXLqDUPBOBcgV$sHy}B>H(tQ%dbcsFE*=jER=)KmW}=_4I*TK<*WZ50k6g6nShv2|{yv&W?Xb9$`PD&VzZdS(>3Cbc|s$t2B~c3|DssGcWVvx9SgZv2D@6 z>k~bKc$U8CyFpP;M4y1#4Jg{^({;Znv#_D}-zf4*kN*zLo$Q5Nkns)CZNDx)R%T^+ z9RwUI%huLE04mTmxMSTF)<_$AxXN~J)4k>#R2O-5%GWzzn)clAZ8n554mIa%t1l8_ z1){S>4}Q)u4Yv#WM_<`a8-96fZoM0awgbHr2`<8bG%2yK8O%H3!iJp7DGwV9(ms+c zH@wUz4C4f>r952_J}fBDm2~u%i}hYPRjF&MLpB}z63h~fG z=wRg!aUs=@1U*54FX|{IXoaJnVQ)Q&T8g**2s_PAb64Tyr0)8-9@lU=KCjJpGIL!? zg9DZRHv8m@Q@EhZJogOMn6aR!GHVo|_!~pkuTrtw$5{Yc|G*FZa-@rKOL^%X$kl_R zo{wM&(j$r|3IRe+*h`*DwZZoMT>h`yi$Lk}&TSmyd{LuzK=SI!DN{QryUsIfS z6V$KD=W{Dq@`4B3Gc{j#sQ%?UWc*e7x8|vM@bgj7(<{(#*2H$+kMLT3?>k^(P}r+C zm8~llM_=*I3rKEjHxAp|D=F_rF+@C8!)Z(#+T^+K+zKpDTO5Wc7@Z62b8^R@NzN5P;Ryv3oy}ioks}`JG;P?2q%F1e1JFmSi9J#W=CWUxIw^k6)bRSb zQ(EpA#0=QKgw=!N&w$6nPv9C87tip=Grr_{Zr{G`kJUk@cW5SQ#*KD!==NQu5n@A} z?YX4V_~nr)Do^&d-1%qJ#}sU0jWjlC2!77i$-gpdiWQ^wdh%%rHKv{`fh*<_*eE>9 zG}2Z8#S7%MT}U1DF?d{_D~DSy)R$KlpcR{Z}+DF*Wa2PnAYL; zGGfK}HA!%;j@lgY?~G&uVyRLnXpK1SRaBO>Tw=T}CCq~*)68f6Ye5HeKbIN0kC|K! z35PvS<%tb{tuv1vUk#)jj=*#Je_jdwbs=Qmx!5F~evJDb>06_*WoGL+q1stX+k^K; zt|nOa#lIjX#Yc~rO>@ZKJ??wWZ*2ey9)rKxxs;-l>; z(^dRp`&QE6)IG(*+&ODMo=+WZ{YXt$dh>=Qfx55m1gF5|k`4{0;#KW&>tbet(dl{weW^20zKGKChB5*u`w{ zi<t-Ft-v@)migouQ)Z`dmy~Xi#;$Aa6?)*4z6?^l&UK8eUju z^XuhfM9Tww_Rse!Qqjlvk5`2#vQil9sx`KRH~A#zcEH z??PIszdi~WKr-6;+W1bX9KuqRer#{BXm7B5|E|f-k0h~gYujQCKUpd^iCJ{ZNMIDf z1Nquh30heEULIm*=S~{=qF!IXcj_GlUtvvd3Oq4Dr)^OP8TnMxgr2dlebSX$HGbE6 zOGrlrjTl|2%0d&FmD|n^?RYEIG3G%+I+t9mZ)};5-NCboSz{l zG~%O3Vq{X3SEn^v*jpYOWEZ-UOsjtO+I3n{(T6652*I@gNKr7aX{!l@*#;|Ih7+&> z^|5a;d(4eC$sQ%;f!7yBR7<-(0)xv63bekEU zQB|%+CbGVYBW0p;ofST|{a&BMS7DFUTt+iPZ@2vm@+A>s)TPd%Tbc!K(mTe5ZGAVU zbr>a?^j)8#R*$B}fkL=a#=LT^D(bErbEbgD#&G@3S#K`+8FSZB9CZO8ee#&X^h@)} zn|7|qhG>_1DZ5v{a+vD(-bhVU_8C@#yL>-mL%ie}E_hy^w#)EHf~yZ)c>h$RaQp6v z_?}Kx2lTQ_b+Nt~PPuS0o~WuLc9xa(nb%LJ&~*!|NAT~7ZL7g=&dCBRca#hoTYy9o z#rMWn0VT~v&?X5WgM`Y4Chp1PI<^^NEmkGP)da8n*X?-=qgt1VMj;W`SeGu@#H`17 z9cV+5P-bz>AwSsVHr2{)uRZuj{7Uyd))?2{iqZQkK}@FRipmi}tfW{|Ekm@qdvKVp zg^j9-y&Y^vx>T4^`)TK6RmIML@>L@FF;gilW86o=MeHTDS&8SdmvDtUt)g~n@3w~< zh*m5qVI_mYWOkKF7%&w5X}m<{mOeew|0d37UgX!@LTswp*mL{0ZFi*WGi}^_db^ez zPkZ=G`Eb#r)MpB>5h7zTu9_AkQfd{L1j zT`n&lVx#u$w4+Ah_qpQAQA-CnRioovIZ?h_Lko!}?e?>(oa3z3A9BSxL$L zZ}*K!RxmWvi@f0!C1aSA>~G#-{f>>jsK^Aql2nNRz~+k#;%5`oRZnyX5&Tm6TJpyf z6HS+vhg?)jh}Vz^CcX1f_u-$yB^pbq;y+XVqQ@u?pr$bN&p zf#W|ycs{P0O-hu_2r<*@>Y%=KbE~=8_wM>=J=Es6U;1nUr*l2b9;@SU`tmOk0*jwK z_#W5fBKr-j4-*78iHSL%80+k=7!R_Y*wMl03OA~UfVSL2K;PQ_YQm1_&hzIqdD$m; zZ`kWG>!HgRL^xaxp%4$Ie^1#yQzaLz`u<_ayM=9INxAt0LVoc}>iw3>eOm$(fCmlM-Rg#9u!Y;i*4BME zn6IXp+hHt)c;&%ZFfnZRPiLZW=KO^k5f|ddG=;XG)hD+#B~mMtH;g+iuM+S;Emry@ z#&U}{bn_GK6&qJSrioH;Y64Jrr`T&U7`CAr)=G(`sQ;_sq3J*u1>MJ%9D6^Vb; zkx8w#1}1Z~k}M(V`B>k{vnd^CGAgPeClRUZK=JGr;~D88J^G+z@6zCboA!&d3n(!{ z#4<|kgIre-=&4ZWY|$=~-_po(!$Q5?jQ>M`7a&?MJ-GZuUgh@fU;(Lj{++wG@ggm3 zo}v19B{FAJLvKSbGlVZq<&SC{i!>Le94wtYka#;aj^LdlX<=oW(`aXN0rW7=^Wz|> zFS3k_3v}HQ<9qy1P1T~p?s9ev31Q*zpBA?cKn=%7`RHa|`=gJFjTP9C*S3LN>#&~h zYMp(ff5`aQBklhVePko?CttA(yNjPX%_hH``%_sN`_)D5))Xw!Qb(%fv1`)~Z3?d@_n?|e3ix2$&@zE0ewjHU!QsWaMXFh`^QIE1+W4sladRth& zslfrmKHl~`Nidfkz0%Xo_U$iAtoL=#FaE)jN$V1=VmS$?xJf1MGd3q6_7s_UrZONo zT3m*O?PqkI%aijL?>@Of?K`FUaVgQV6f?=Ak0W|0b^5e5|7gIWa=A~6hgDs!JfLI6ye_H&dT{1$N zr;+3ztuTdwN??wepF6-9aWIE^f3}%TFD4wX?wI{fUG7G1*CYOxz5J%6@?QP0qxf%t zsCWpI8PQg>mMkelkF|>poox0ZQ*=AC=}_zWpxw^HZ2DmYe1J<8v)#wPxjjCTQ{vmX z7IVDxQNlmF0Phw%Xqj5I2_6_iLmiz9FG2EjGmK<7&`z_<1NOUxq~)aa27>j^rf~ig z{=9?IZTeZfbI781Aaj7+*kSFlQRA&6gwIUDJnd$dUO_oBaG2e7+7r7W+^a|K@E7x| zo_G!Gb$cP~9nFE&_wgAjX~>t_s0TgjiRhQ{uRmXt`{4(UkukjkJ!2M5R!IPSoTMxb zCqi_F(K8CAzvN?b_t8)DFa5mb&iblPSr{}iIavjG@>3Ptk7Bl;n-UiUt@ok4nZ{ro zkgWAim-0^`V>Z9OlXxc`r(%dX>?c&~&5Y02$oL+1NI-?ji-(-N8^^uKdH?CK?dfYv z){F}*BoDy6w&4*{=;1xBAhbgWoi|JcE!%m^E7TLgKDW_6XDIFby=Hd1(f)l^BNOo%u z5%O0O_F0#o@pjKwKlQaT>b?D`+mT-Y<-Gz%pep+}O}D>U!qbb-%{{*^NO?{2nK0Ys ze%zYtJ$EaEE0yP$lw9iMSOJSE{PY;}AN^wG;$^$Z<$bdFOsyNDxo7XHZyy}LaFafl zzoXT7iY_M)1U-%B=en*@Y0cD^*5xa#DtZ!`!RNPi(pO@XB}Ug>kN^~fIDX<}&W*L& zDNjq;1P3N?Nlo<8XG(rMYu0(3bwS9M;x!a+?Kq)&Ve(`ni>znc0$*U=IJ8?w<6m5~ z!`Y)S3@-Znzqsf}xvmXzdGE0`BST0MV+7{FhALIV&-G(Z20obJsO&M^&&#G21E{9J zZ{_$q8xy>#@P$-3^N6iL2kOrj%Zif-tTc5J_)?Ha>I_HX&qfd18fT!xj`e4oun zJ2?C=_-LY zlhOx$T$S|zM;PSa=hb0?#}RU zH2l~5O+upUn(mWAOt3%=sAyrsaw9foV{Y%==^PSLt^C^e>08X5afc^^Nh zZY*T;Na+8Wmq_xRoHRs{{&rC6Kc01wXz&*=s3{L`ZTtc7*4*&f86F{h{`G5ru^-YF ztkXj(wd2Ox8y`k-Gd*HTn$8iw=F(DkISrWfaj}G|$j3*Ue_Y&p3<8NL0reF(wq1;% zC~vduuEZb`hk(01?6ER$%bh>4+8F~SQ}+lDe=#!9*3(|ETm5%(-kl6R^{R z5Q&09%y$<^KmKY{_sSTV@0F+4@Xm;-mN6FAe-bpV{}WNBlS!3*`5u#tlNRZe1Tm#`mV`^8N23>uKL!V8Umuw{E92JDQ83{rZ& zb|LZ!?v;it(7eOJJtvaFZ+O{h5*AV&*~ps4y?S7SO8o%8*7d~7PBd)BP$Ud02F{C~ zX=ETAStuzff&v6}0K+yXRgh14ItlWw#1XG$7V3STU-bLgl@F7rQBk1IY^a#HKc08k zckJ0l`-Qz|0+c)!>PPphYvOE0ITC%pLwe{RM)e2Z^2i6yVYn~=XU!3Z%(3zMP~>25Rvdy?G|5BusR^n2hR-lAu_eJ5ARgIP@na96CA@#GNz zwO{~>SdrgIfs|CJakj|n)$M5btAW4IDZ1CvvQh@I&+5-61q6Q8He1DWJw|9qln(h6 ze+h9e(JK2CeEl331Z=$ud?BRy{kdQe4}K05bou(PX<1{x05RC`2inS4QC z$Cf@hoHo@vYPu)XW>0=#+C;trD-rBWpB7w&gDIF6SKLOX&GN{d8K2RIg^?)thi=V@HInM-eE>XzY3~2o<6;|?G$UA zeXkA1nkDZkmKTJNEQX9BEorWd)nYtnwZ5O*k{+&+4yuj(oWR4O+%+fbEfFgvNA+-E z_jjsVI?)*YwOwendRf3XoqWds@>BwK^^|1!^y7L&V4V<53CP9**r2mHiv9TK91ryR zy?&&@L8yhgI6Pd$e{}#zZeYfp#*{j~^L8^|opG5_hu72k;k56<+Emmxy05U^vI=-8 zuT~t=dC1~a!ecdrJVH2B=%jjQ%QR4*mTrG&<~{tH(h(2@QWpedz`wHLFRJ<%^#u$Z zy(>Szw|fFUcoM0tBFF#gB7$K=rg(U$?_Hgav>FQw@|gF@GFjiUhLrCtbM9)Yx{XEw zpfZ(sU{;sfGyU60kq7<#E&pQ7<#*~89uA0SR5y+J#x)!lziWmbhgYIcCC#YKh9EZwalRF+W?ix9utxX@|l~y?NJ)a64+MqvRR`}n3ns1Y&AxCh|l0Z_>*%haMU1 z(Cf$2BG{0POOK7PnuW$YBKO0^N%-XVU&J)!}jzuD@9y)Qy7$PirnMEBQy>)+FzFxX;wWp;$x@@=Upf(A{En=hn z9ehVRCxq5Lc*Kn{WZD-%8`8$_?=Kf=64QNRPgrHlXoM57YW(s_^+&?Szs~!LGNGIK zKb0DEk8a63mzGdeuf*XHlTU zt>`E47lZ}RkCyO{6)ttWG)tu|8Zc#Poe0(19GG62#unMH$&IaJGZN!FxoQTQCP|$n zrpaJ9)2Cul6St>NVEC{kdC=lbR@44lk0$I!@WCXnGK;u0)-*MNkjF>%m?mph)5~xT zDb2#^j#si8s6o~Dc`w8wb00c?eRt}bd9uzjxILA2Gw=GEHa<;q&5nabW}9lGM?8oy zK{`34nwOV(qvhRasUWO78@O=G^h=4?Stg$d;F#T`EB066V?>DXCjC-N*47Z1XJjOn zgWP_)$Vp6?pP{?e1c+S`ll4uFe!eYYSX)ZcPn@}(Vz78#df7jq`@98u#JH^wlrtYV z_67<5c$Vj~9#iZ^0;~T0!sQlQXP0E4m}NAS>z;#~doBJY_q?wpk*zH?BsN`@-9*7B zJ%tC{Y)Q$e`Q&`4S|`IVl{Yuw*A*R&VcX@J9V-i)XofT~wcis)`7Y|r!pi))7g#b6 z*Dbi<8>+f&vBTw&K@C+_UZJli-__y9f61^RZ_nbT-%OMwS<#6MtQL~{?$vFjh%|}sWzjgYQHgq-SpG3=u-1zuMTS-_rcXBrasDd&Yp#(G{t=h zdEjHk#R4&k@UF0=Hm~e^fAc3GUvez~lg0EeA;U}0{I(|i7E3h3jb9-{Z+Yw8rEG=9h`M_w?yTwaQa#G%an3UzGn09{kg0B$$)D zH~|S0x_&i?8^K<9c#Yps+8LUX;m~pV4lQK4t@4`+4)QH!3N$}wx#x+Gz61!$%qBiGW4a{6J$1xRxMO6h;uG1X>@T^+D{j-lD)rNc+OF&n?W;N9PMWH zEb@or-a2CXX;P0}Jt)g=d$A}0)@rJ5^NAJ4lE^V>r#@hCTQ`&XgEBZadcFMLBz)1j zZrEyM$612%a=>5DdbxM0YL~fbf5bd{#s|{d7ZoXg{%?i|sie~%y!EeNJ1ahYn*P=- zogV06a@*nb=Ls~I8DI|PeO{^YEu}!Z`t4h8c-sP}62ve}YX4bM# z9-0ww-1wdwFGYpFy_>nc@%HJy?wY*Q$3gL&u-1n z6cg~@n`NkMZM%M&KK)VV_-SYD{jj31X@}W2&4{!*k&uo{Ayf6nVoPf3AtRS-EMP|RWy}fGUpRuhsxQp%xf9In)9lioGRNdI;mzT zuZ%v_)>K0->LJxfi=KxN2p5O;+lXfl%5VMnr-NWcA9`469toujUF|?_mBuBG&w_Hi z+5YAT9cvjrtkb4^o^tee3Z0r9Em_p0)x@)fYsF4fD}l%=NE{;|!;BE2aU zr2m5j;6D39A`#n^K5PL?hOeHLG#YUeNGea1F#+Ny3|Q@yYNFo-az zFd2XwPrZm9t^V=nIWZHa=6(6&*Dc2?OMOUiJK7>*wBS%ettnuIM8xobFjj4@jQmco z(>L>JzlNUi=Mz~}m;1CfuUQjNk608>fz5uZvCiSoDE#cMBB>x__^ioFrJAsk*2-J? z4YP$RO-i}jOYNy|Iq@t% zq_P3V?RP0otnq!mZCiB!=CAfxV+nQUO_wZi^&?fFY5Q*YifqezVQAHiJ6c9r>n=&e z!aX&S#RMQ&ws@X!?=tpqjs&b0Y${3tgbz-pchbx$%Buw5Q9hjsl8=Bj^v13l@a;Pu zkLSR=ckdc|FB#yg;BDXQ6SYsKj=GaMP zigJbckgRep?pJfl&xDA^=g?ORRX)5Dc0r6FbVglka8IH*fpCad+%5~%nzbVFyYs))T z6Q!8H8;YG6@&SytK^&Y{SF@jevdU-gL$VatR0)m%OKmwNwvS9X{2YB z7d3bJ&J14LRs7MpSfnK$AJTn0jHAy`Q8QnWGCXHz;;S>fTGrdp&sANo?1&?E-?se^hcuS1Ew#NPEEy;t#^d9Pd#&If#BjM3H0SDRxfbPEBAlG@2k zr@4)7ntl1ox^!*BHG})SiKF+?cwl$%GHPi&bZNH*7F61vu?D|gK0lag>-&&R+e|C9 zw6;vT3T28|fkR3z*0ZW%Z_vm-=upx1?Kmpw&UMtTt8aY2X?P?;zuSv2=*9T)C9N{&~vM-i^Uv0XqoY#RG8|Bc@#$hx)Zw zZOPqt?yujJOMQxM%4~8DY*5soU8oO>KN~P^)IB@$HNL7E-`s`_oc0||aa!@?774N;F96GqL z3B4(IdpG+De!4T;caz|c9MA4DAX#2z2a8A`z0iRz1IUIXBCa3XD9a0 zE&%428xQYv6Boiun-F*=OH6Et7T!VMbpRZAJ-nef3OR6R5M_B&VN!_B3DS3@h?_p3 z-IH3|QD8 zOv!peY$&r_2%K&|W`P>_(ZtQ$v~! zP&1^n_m?{PNpp7`@oFWHd&g^S(_{a`L%$B0oHMN7jzO0nas$!|r}k+VMzx|C1mp*@ zZyhzBKkf41=68Yh`P{txkVneoV{nl)J~<-z_r@a>4j6z}-S*`=PR8A5_})HK__@>~ zhrF9A>z2U?iOv!y3=O1wA-8HE7^l=Nj*W}x-=j>S#jJr9!@B}w++{M?KhE~rfhHl& zUTuO^bZP5kxMXr40eJNKnY74C6YTSeA1}U~-GR1*ajzl&VELJwV~wopVA{z^+=e_l z@5KCcj1D2Z)xop~xEZP z^MrBDjSCz2h%B!`n(V|J)8xY;uMiT5c>+h-g8nPVe}wtJn!5ag>5d;1N_(q?>5i#= zDC_?ey%qED7oGBzEH_5<25`Ort{>)4z%AeMg@mYK`l0%NCb}g7BK0-+(z;mK3esQt z4aAjxHY#-83@UmrVIQ8@qp?_bO-G3zr`?ZumhKN*-A17L)Xp#b9aH`ylZ1VhtJE2* z-Gcia=j+Uv?svPQvV&5CL@IJ4xIxFKsIbZ=9$2+oM7&O;e<}S$p`T+wM3ah%m{p~y zL+ca)8^@n%qMeX(5l-~5!MXGOKiMAloV3rqy7@-J{yR9`q?n0*mlvu2iyiOLL|{Gd zv#@R~@)vS|7cr)|p-|iyhCCP#>{g9hISr6+60eRZf)e{Zj7_87?&U+y;xa{E^;JE{ z_=VqFLbV%Qa+p`Y2cdbOR)2M_do{WcTT;%G3SG3|k7Cr$o^bT_r*aLY9JeCLX;;tk zK&J8hjg*H;AX>IMZ#s8k)3&7DDBqTp`|`LDa-ix2dy zRBQ{*XasCZ95^`C4${-I>V&u~pLW1*S4^31-pE{L@jWunH$pPKS>fZ1D`$fAaJrhi(;&f$3$BjqIZyC0`IuFnGz-wTp z1*PAyvwkn5{Izf?D#5Bnw5;2AY==<9kb&?ptth6hFnNl<%DSCO?OlEI&q`g_`15x!KXny@&2UO%14Dk3kFDYHnRzi-TK+sLYA7$T zX`Q};o<5#D8rJ%E&jH?{J*#C;D<$l9%&WXOrxc`7RNwzZPx*%NmFE&_wnv24eWH$* z{N*9xH(SS#du+Vs=WS*|w>WzSU9b_Aufn2^S>bH*Wj@K$HG30lY`|(s~Iyqgi z(VAgMyX4@wepc8aqlDy%i%^BZm^Z*qY3n2#spl0B4x)70T*!8Tw4$BeeLTJMIzz%jb#zH3RP^} z;-1o+Dl$lAHMe%o6HD{7#Stieqg$_133Jvq0{hp%0(~^MKKxftpO9nL7?VA&^<_3@ z{;oD9KW47QY%AG)AtAQ70T`LG7w|M&mpJzz8gCyt6!7 z$OJ9Ue|1cMcfXFma^Hi^K)XnrXOJCGt@sSAuVK|n+gvqU(4(B~H@Pi|zO0K9P;oSC zHzuu-G4$BYs`-`gPk=xzQ6r1Hpw*Nq%&K&ZHAAsT-A|0A9()X!%Q}!xhqe%8 zPQ38`Zy!o$61|^=s@w+DU|?|`hU_AW$d;3Lu4=!h1~d?xi)@u>@N`$q8Zv-Zv{UiSgb4QP zty<~n`XtSP$8@?+Ha(HVwj8|6C4ISF71Z!+Rc?=iA#tmpig6hQ4dap~?+T;^%s}5W zn)#-H=#COC7`&KBXtQa0vq*j$?4oTd|E(EpRJi|#{JNL7#lHVXv&?>_!Cn}F*~~*! zh6w2Q3p}ypimBw1pZ%2ew!pP(5(g7#P!N*;TIt?(#kbdm5*8GVn&Usu9DXR!VY*hP zwmx9YTP>JJJxl}4{WWp}TU2OM%e8tV?01Z8_fE7_uD$Lf{g`c|!k>V(ob*CA*t5Wy zW0^($v$@Df>eadM@aM4%vW6Oc$P|-l%`WJ@ezqj!1~`i*oIr{pH`B~u?a>~TxvAB5 z{$b5dy)0~R>xixVJhuhS8=6H zaQWsgpnO#`CWVU%ncvQs7T2mm%_OEx{zkiRuJ0O&Q{%XW*Wh`yZeQU|o@eeqd!yQp zPzB0*V2&P(85}#OzI1gIOr`Q0njIh}CI$oTBMXK)15 z+>29c5ZOMZBmEE(RH@aMX4FX75zVb2veT@G)_c1c%(}2tW~Sqd6lYW}089 z$j-$fu1=1%eZAi_fI=611+Atiar2Gv_**8(`mWhP;XZLWfm_0_yv|5!ZA0Ky%bGbe zx%UvoU4XcG7vs~C7e;zre=S%1rUz&}kTQ^?GUmn0u_nlA?#pvnmw8PBv-aJ1{N6XZ z`^xWC36Rr$6VTL8d68smWWLmW$@=bUfd>gqGpvP05+AWs@)U}m32;&tH|xsvwHqcN z(O62`AB@P=Ijh;-e|XP0b>)XCWOZf$FVHihMrhhHl;5w1I&kn$n2e9;yx+gdxVb5$ zoHDGU-p#3bKs+10nO;y;`<@DRE`pBEdDgS^T*Zz2@*?ao3#*( zhsflr&G%g{I%FIdQ875Xy2Cp$XWwEEud?7Wz0W_oaZMUy%r3nF3{S1*Kn=_F0LVC^ zUG9_XQV@D_PH9J51y*R=;4F!K|p-OT@+w$mb$a#C6#os zQQ=a{q-z;ybT_a=Vm^Dbyh~yMJLW(_?6>%JErT~ zvS#2C@)Wf!L)7^Cj7ug6ewm8&f|jB}8OBizh=++c-qIBw1HYR_r%Q^*b4mfh?g7IL z{pC{krH=O}KdylfF-J0NzNHG5)^Uto+oB?4t$QJO2wwkg?|Oo3u`|tyE?U0HWrB2Knmk224iLwRb>^%;2iie&?vA;C=)#S?L92o zbGt!uulW_^Zf`)uY1b0(^I|>1Y1F^Puw@LY+KW?pzOh`XCwfSAw--}R==iwmaOln| zwAyc?XrQZ8uW)e}utNy-v6yo{tC`!O%q-qwrkw#8OSG?snzb1Qcdp4Qte#g@1AJf% z4;r(0e$MyMDCu=7V8DSLZ{P*J4D_C3Mfk?Fcp!{hoFk-t>?$n$KYnTm6GrRaSm>lD zYGS<38+keoY^-?9o&UF#XqL5iSdc=q;rshMXA>#?hYasT(TdScjd9NTh0oTdL@eb@=3y3?y`~pUGT}&Q;AnI~by&us=jIz$F+|jO zJ3w!3=BlO^@_D7sJ0u9bdBux$J@du_oaVG#5WL(V2e36Q8Gt;VkP*y5{sa9Qaj{(R z(s?#h@~kBOd|>yX+KBhYv+;g@Ukw!>;XK`+5PYH?a&*mHKexyNHg488QRUJ#Gpnkv zaCf@jCIFXb77&=Xn@|+CAhYSH5Ua&{{vDpT7Y}B0_V)hx2zv!JPne8m`NI_&nPKk_ zZ#TQ#mIgk!{n!~x2MgXsq0o*sx??fz!n?S82}C=br#ng_oDX_|dMU+7K3RR_Lr_=_ z|IhrkhVjXe=4@9l{*TB1Ks_}dQn*FS@~U*L!>lXHS4v(1YV_g1V8~LFczcPJSpq(~ z)i!l%SxyEqAvHm%7Gv+SW>!rA59!pw?hazDRuU?X*58|7fLs9509R zmD}_oC6C9#UT<@h!(z3*LneMM%J4yP*m27vFM-Z{?&9-am4a=+(ypSWk zKElvVqPgyNmK%h5>Ngi38SG3(ID!HYX3;jmI3SZrwBK5%K{9n>$vd_>ee1*E&T@$L6JgE@=am%2imQc`71ZCgUzrm;ee;sAB@v`~nm=DyCpwMHf1z_%O3i~A1uA}0M)CqF6*ZAN-5#pOH7(1DJD+DkJif$ z8ZEtEc{je-7}MO|?(HFzj%~H*%YIb-P}_y&2VY9t8%j$OMqinTh%oEE3B_`7_T|`2 zSrkNd6CiSEU4pUCF~%69?(Y;$`(KaSo!`{(kI(fQth^j>fxvsV+lb$R9!71sm^(aI zDNW!?lBkSQ&;4E|Z=df7@V*~W8uVDMX6Vis4L^e@nu!=ttE=lNfB2}jn(eJ@j=K2X z{0|gKJ#*y!vDBb?+7hGHM|E6gENx>~Hh;gWF|A^UG38?d7d6Zl+6qTqo)0+DA_0x( zq1NHDKkppN?b45oPs&MTpj~EN4<^}nur$zAty~%&r~?PeiOz*M!TBZkG=r!9rVoNm zvKj*|*UQVM&jYEk{7~L!pnaSr5X?h!|3^_=Z~8N`j}9g^z|~Or>}_Txa{JL^EoJ33 zM*qB0=Lgl`)^q-$*280n+ckWNEnS^W;$h)xx_WJv9Ng$wP$2{oEr?;jZ zAKQcZw;uhED=GM|E9v-X`~P2rFKW~N!IF%|#u|TgsUK3!#_N0f6nLi)%l1S@7dCR0 z)c>2H?DfOD70*5$W1E~R|J-bFFMeZ~BWB6P>m`_VU2yTL%V>(3dv$2DjJg}{Hy#Ba z@AnpyWc$yy(bCR#swj-(obxi7fz@(i9f>AJ6N^>w903y@$cN(4G&GMK|K$$zots%0 zhH1em<0&~ygM{Id?CFTl4MiTQF7h4AZUAGs<8kME9i5)-TI1xqu@%T}>?a0Kdv;Rt z6ooc(Xi57$#I$t9voMZZ#&fwZILo~n@(eL+P(K@MS4*LmE|b!vFB0(h z{smj(+U6dPWj5b;5HZ3XH@38Ht1HC08yx0b0Eez4L&vj z?Y@LLetPROoIUMnz3O<+l&dqM=Z)M+QXIb0lGB-Glkr5)UW3v>=iqU>3%BybCQPlq zhadNKAaKQXb|JO7xB-sjLQauoi1Wg2{tg@kj%&*oks}2OSNhxqH?93*M_KlxjF+kM z+Ku_K=03~#T&!?OuG6jr%>CkJ(x0cTY}{%H-aiB5c%q8gxfit;4;c{PvtZqp`^q;B z4}M7`ailK3-yIIaTRcZKa`(UcGffr~yz=z0eF>NiVPOhxcg!P2)RZJq4&~$rbBK>2RNs6OJlk9E0}|d zUWc=C{E%J|>XK>Y`d?u{Mk-9mPe35;xB;UR0-I6l9i*5oA05gj)MrM1Quhzg!5GzH zV|J0FnCk}JG4rVUgp+-fu)9BKQZtuUXN&Ax8lU}Vmx3-EK)@>JElYMDD06ylTM2FRveMp&jAFKt>%$)A4X;@_F53)^VVqs<35hPXl$UO4L*K-OX)!{6G7uOAbJMDxT01QzUj$@OrV{yiC=k&uV`>|38 z-vamCKGS$-(fBD(h5)CU;2eW-J*cT?U}UPvAg6-a=_WubqY|}u=HakMkD+u9^j6b#J(3MfTE3H6m;1Qd`iJ@npNkPcD| z2%;iIq>4y~5I`V6XaZ40DT?$KK~O2uMIjOd?%};xjC1GC_vf4WzB@yHojFPNS!bQK zpSAXSo}B=H<>rrV4tz~^souM3GQ_8)W%NwG`or_Ee*K&{mFRJ-oH74-%OVau*e`97 z=S4vzNA^JENZJJvdCN}&pNyJa%i##m!CYr6v~N6XK2l~*lDDzt$ix~AS@TZWclGj~~SCVdk^=K>iYo6}w*PO+JJ#p*fDUQiia?OmVg zhKkN;SrVHbiWgWXQilhb(O8)mhMzs}vV_!SnsssywpGaTZ*M0K)!&A}27hS*pyDaJ z1zR^C=O>*SaeY2>-beLD#ZNcee|5ZW2mz_WSLrDd$q&HQFa>ybpKWMuc64gypYjDY zKEk?BOD;0WIOSm|3GT-r%fnY^D$G#*i4Ptn%j?c=W(f#5cI^t8v-;k_P%e!Zzwg&Y z6~@-_^Y9zovb$oK(W+L;e?pv#Uz;I9zpqQUwq5?}35>oO2hybu9f~(AH>p-}tc7A@*E_3{{_uP;{~-MBzMkgXZ>eAA#ATt-G&G+92Fm8P-VuatWOQ_%$g+- z+^KfNx=`e0S3tr>2SA33WVmvK?=Y*JoLzWpA40W%DB851t8 zX{gaF%Aw~eP8hnABj@N9+xPh_FKlv%@^e#jxMf1C<(MYi^;10M*pW!42U3bBinR>a zSDGlK%U}~V@a{S)w}s33&<;%yD(GSWxa}(>BH8*U#Ew8J{1;Wh!{TL%?-BP?>Q;{LA8CL=?xj!r_QGn9g_HP)!Xt?uf2B%#?CBWvb%1D zmyVgJi{1Pjw5{*ac_plc$MUsy{D)vTur_^Czbqe}9r{p6+PmzHWxwp_O84yT0k`FA zI;Sys^929ZAOi1dC4NRE13CqVtXNj#^T$Vg1AV=#tjvxC#4LFtF4c|_wq&>8H^yge zKW!p@op(o>ThRU@Aa(W$WwZ1}g3&&QGafuUaX`{~?Zfx&8`-C;tu(D0w0$RqhI3n+ zEJUj*yWiIs?FD~26*eMrP4YufN)f~xVf}*cfTvWnW&v~ri~Pu~5DkDfG{9J}L`?3V z+Bu^eadUrd=xiMp2;aO>PF#RA6WRidMkM)q+0h*@xn!mXGagAvnXSA(yVCS9|Kb5V z8F7S15gDFyu7MUDvhQE+Km5B-Wv*7|<2~QHxg6_Na*)WJnLh1HEE7GU`ip734^u=U z27C1CD)t%k8!;%lh#kPD4>x6dlym-u7OI0A01DniqV>O>BmOU@w+~JKzYrB1dj0>E z*K;g!LLo{Gtfd-*?|TJe+PFFk$b8e^=&4iRjn_kVh6w`7opLEgkPgl0V(gHKk&vc+ z^^&YLewzBOy1tr2vQ|-8khdncBEj!*jcj(+)) zPekN;cJXCo%R7h12Qr&|!OfHX1x<~}h-4Hp|MJGx2ejWe32~zobVIJX;3;!WoOOw@O12uBV=segJvJo`a?y)n1B7hX0ArO~3Aj?&K4XaN1PBH`ak2>CR0a!^5)k7Q5+SD7%72r$M~2 zU#M0cmkfvqnunw*=9~wo>Kh4cE4Q;rc8<@u%c?#9ODQF^!}Z=>h_Aac*sm^KszZmu zgQ*+fqUO*gZXVl}W9`b?5!A=oathAAgIicc;Tg&25eD9zq`5L^UnynYfB(}%Fl{XB zH-)|;o^Hq5n#oJf)W_jD(pp7GvQFCv%?)}IrJl}P&u`I=RJy8mc&rc+Mqt0}B`K8+ zCQyvZ#+Eh8rqfQ`)a-ooVy$NqyTn-LV&HbKfTC>)6~8~RiW+ik9)6ds*_@kp%>bl2 zK*_Zv@;8%B049++oH(A_Cne+D48oq(8M(38lGamk#jGSn6iUWA1P^#6HBf^ z%vs!D6CKeNh`lVn=;I1{O2uaiY$UPD=M^Q_h&jLHEBgi9Pb0wZ*0SBt8d{0R?DmeJo zLy4Qjk_CK=9AmPSic-AHW!u?_6`?vKw9l9A@h8>lo2fdzZ|-G?XqKEh1rLvV5WG45FPvVJN>j-T)rJo@YPa}_zj5zG_c8j>^n_GRNm`1hHk?y{(&cCK#dQE z$!ocP<43RRzSdDKKf{TRoZYP_#FCA9rq;5pphKO-)#Vi@Aj(7ez`)JIy{Pe&RrkdO ze~h$3>qV6dh<+`e1lAHHEk~YzSqfP*p-Gj(in-DlZ8sePdtYN(o`9z{{9d1-@s_<9 z7yn_jQnJKpA_iuHH7hp_$$3G=Q4}$dpf8y~#{gtrb_;Z#;9g3EX9)_5$1G<$TvM@x}ad!fxy?*BzPFLz49`woL3dc7A;es z60s^7aORUMThu8&+Iy-0lF+?>wUhrg?Ghl1TfKW`j@XPWypmEXuQyG!81v}q;MC1k zO6Z>|8E{;gb#<|I!e0Nnz44qJ!ar3BFLi5|g>{W_mkx1dL_#H&jzS)X-nsH-!t)}R zH&vspxz6-9-xTUYS!DET2?mAPpnl$|@krj_*e#1oej`Oi%L-_l=@GP7SbRm~cES+O zRg{Tg=7whVCgx}_q5AUUe{xv=GV;m3knORcu|z$xS+AB&et46~eaORgB3tePqClVa zNy&Wu3P;pcBw}sXpoN1*tQ0ZCHjZ)g#Z%eq+l(HC$gLb#QCZm}n-mfVEQ3Os3Ab;GvP>KH}MRumKNFA&AAB74Bf zzm_rk62t6$qZ(3m6NQhCvJNKhf;KSI8?93O8$w6zT8e0BL%uAMHfOJzViIslT z62}!&d)424a&R^UkH_XFYRxJ`q-GQD#rg`%1zJ5I%SssHCG5y&c^5 z&;}C#G7o24&rWHBVwNE7Xp3(d_k1L}Cowz^)g$^!?qy3E>`?J88TBg~ZY~o^dXAsv|iwC~|&#P~PS^a&)3SDfp z^lxn}=K=dYa0KLxgQM1mtWoCzV?D6L=I@T=$G~h~RNdo9UI++UkxL+JrYfH@B&V%J z=9j2Bb}PWY6h#hSdgrLG``v~|OU~*mU*|;%za5*l_!)pcpQ7}Z{=iZRb$|VWV1%iy zT*k98+{=_R=*++BR*{yFZ|X0dU25}{v37P2M9t<`NqJ578rMW<-z~BULK>Kf6d30A zfx)6XxY_|EeQN$c?rv`~1E&kKl?hbrUXc}c5Q z2I_jXOP=NzDWbj`uRoZBNpQJkTjP67fxL zeJ?Un=4W`#P^nLQCd{O|P|!n?AGSX}V=8pr0m;P0l5e^eX-mM0aHaARw87 z`dOT2R8wm^r+kE)$p1A*GZ4x83mt$X;ch zcR$+XmxCw0Tgc~cn}DFfND2YGyx#7Mc8pkEct_bCKgcDgBJTVbgp-|Cb$a+#fWl<* z+>?>g_om7&PUcddfGZ;>1sSMFo-7hs2PkQq1$%COd( z88M!Mmkp!%q2P4&A{vcE(j}qK$M(q4(M1W@*GU8;Y`Kp!ZdgAc2xG^1qAC5k4G)Ke%2WHV!vjZq zA(dno`n)KX;xcPL;RB7V;Dy-J8D_Jr(5$?*aPKTHJY(8Z(3exx)CtJkS%J}A_EP8B2vxpu2 zT`3`HjD2t>1DMp*-Cx7c+IShhy~k4P=&z37o%Iy;4G(GioM=zbDTC&$RkaQ!em%7? zt7$G948)UDp$G#>o%T}|sBLcE=+xS@#KBuE@XRg1wt!W?#}U9^2uU6JUcTC#KOR<| zL>6YRkVdt0(f@wXuQ{omC+raxj?sJN#rK_LSYDZ-X{ufk4C z1VmBZKUuDby*_3v9lz=h-lP;~eyZC(?1>Q@>>4)|j)`PC$@mmkX%bEM#;_GsLhVNw z{wARSb zetVHD!GK}@3Lsydi9qh{HwL}DGE7&21Hw~<{IkEyDdfKm^}lTT`(wSv9^h)Wg@$|7Gfni-iy^T}5Q)+g$16 zzjlE99g*`EInU5m0WnafX&G`CtVxQsN#R^;kDg~fg$6nObpuYAn8{5!3Cp&mJV#nu zpJ3(+VadOMF*r`te;@UW(}*)tP9Jl0EM33%eN&hMR)!)}b@5SwJ}{l6XL~wOTmTal zY;XqM@ODl4xUJ$x1aDY^VM-*A17v-o5`P+2g7R#Tl@J*8KWbAwW@KVku4C*mA{^}4 zB0;fm8Rtw}Ulbndos!KGzi>!|vT(K}NA^nK=(LG>N zi+}(bl$7Xhh}QJ*Q!WN&e_J;ahm2e3=Ld#QqVqIXiWWiA#hVNfpTlh*`S;pD7C8#j zQI$f@Zx>4w1gML?uz;%`aLEMsD;Azt<@-wrJs>UptqFpMeec77J%uY+7#gi>vekps za1HM?G%V_`JxND@kLd9Vi25#|7&ytLuV-1DIHlO$9@Xt&$In8y5#LRc#ivHV8^G_f zCXc{mU|Q2z@53f(r=DqI%P{bUc5z~O*j9p!PgQJ5kJg-&xQ4gEmWmWsk1{N~aj_Vqh?>*%k z#$seXX{Bl~tYL7tA4gA%^QwR8?9;dtw-m6rjvy!o4tv#(8|qmK$F${+&R>s?p$rVM z6@HgF{m1-NrFitH9F2B0v{b6Lv*(7gvI+zux~uTZg7{`=>WI5RaI+7MyIG_k4V~Jz zzH0`lk`&xmZVf5$8s;11iHiwYbb3!~cpL*+cun+INmyA=E-~A4O|>9>2{Fl|N8?V? z7up`1*0>8X)(cXSS)3+++!4|_PwJOT@`5ALq3FSAtG?cMnZv~7;ikW)NL zelKic+V(N|0kmX(EipB-y@_ap4r@eE%r8^Pw$kbw;8DD>MzkxtB5O&xq)Xpt=jqwm zN7uCq=TU2^JG_LM*9~#*O7;)Yi>yO~4xSAqF@Wb?n68H_$(=i=*2j=bO#|tZZ+Z4| zF*YR%nLwScb&-k+2IE#{u+7~LJ;A?~m9UwDxnYTe+UToYPt4<1YMQ`066^?kimMx@ z`oB@}-;S(+J(C1Ru{P3b<&O`YJlID@`Z!4Ep71e%ggN%e_CLK(ejngI5M|+df+Q(~ zw5UKL(*W>oCVwmP$5~P{UIAuG!dp?yf56V~Y^aFS1Yp}L(&;2g68_U5d%#S#Qfot! z^#JJ=j&e@%0C+EaS@hS&pnr1-vI;OWZb%rdLVEk87hFpMWMFAIrzroUnI?dluNGK_ zNM<8Ro&XFAQU@vr&EDg;{xt6Qhin7@GwnBG-AHre9|k=;2T;sBF1IiLahAjzBB_9x zRYaBA|LE_-usCr4{}dKU7YcRA$c~GsD_=H59)`&8S#yXS2Y7cF7KdSR5DW*%a)=fr z`R5QV4g%y5Ee_G*AQ%qO;&(9oJ~~8;g8(^1i~q*3*rNmA9q96R)aM`rUg|2>l%HO) GiTnpOmVj;m literal 0 HcmV?d00001 diff --git a/packages/aws/img/metricbeat-aws-alb-overview.png b/packages/aws/img/metricbeat-aws-alb-overview.png new file mode 100644 index 0000000000000000000000000000000000000000..8e7445d0d5ed54b9ed26bb4f72792ffb55ac8fd0 GIT binary patch literal 668139 zcmafbWmud`wlxq479cpm-8BSvcXyX0xVyW%ySuvux8Uv&+?~c9z9yM-X6Al#@AMy@ z?yj!4YS*?}du@VcrA6RiFkwJIK;Xng1?53NAUZ)npst|a13!t398L!Q0kxGE;RmT0 z!#)53!3Pl&lQtF=z=xA!eItL+urX^_7kjQR|Z*YROXE{`~I5U^<#A|MH8tH4=Bc<%O5%iGJoFqtWdGOE|Ck4t5EQW!k5IE%{lAXH zdmD-8`lI&$UIs4|ryv;c>4Hu2_5XDw_uEMB8ymy_yrq9`)+q>F5X3XcD&OS4j&yq) z>2|y`_D5ELASiMws>}3{kPzHSoE_$Wk)RPK_&!@nQ&ZAw^k3r5VnF%`+R6}-Qm6Ju zASi^qbY`S|eN|QTf!W#K{PP21|1!fzuv@6@y*(lZ2Iy$H$$_ykv@d^si;3f10uIQ@ z(a*~(Af%vx*xfCdn4a~HiJ9tnDBNDksi%I&(yW*G9`@}xQ@BANCJ8rwO?6{ipF@jE zNW?+`3V4pE1peM_mNqmwpOzLJ+V1Ye%nYxtY*o_JhFC$(&1sr`G;i*f^KNf%e>q}$DYaZgC1DwEsBIgs*dUv?=KyPmh`%Xh;A482#NCE4okpIB2 zD4&ZPxO{g70m&vBj7_bqqU!5|g%BtwHvuB(JQ!8In39~F@MA+pnNVVaOC$(c{>nrr zNME0@sF;+1jm>BEAC0}2$dK8tSoV2B$9#P1Ac`TMqbk3FXqC1Hjo9?}t*}&^-hyuL z?lK2VCNjhPw)jo~QhcyGf%nw2za{)zm@+6pqs%PYNErJ)=1`JXNDKMBvNXNvDq%`xzYT_ewQIT?)tHa9+7N(2z_Y)`4b=%xmfgu!Vp*)uX`wgFDHj> ztC0*gxU<$~MMTM!*x#9b8ma&r!iy9@8RKT7LZc;267>K7Z(8ua5py@tW8(S0^;1|fs{zaj=*jCW z*U+xkd3lxx2Ps(XA3khuZsHyGz&?MR=9#b15wMUR4Q&f|63sjKTM)cNKtVVW;c^-` z12qOgkXH=a%HF=~sB+9dHI=IU@uh>+^M!C`Mlri0+dC(R@Y{C-J~1`uufpNIL5MP6 zPnzLW8$I6D)Y{_iXCSyl*Vm&`(~MZ}S+I(@x;h?&?G;LQBfLI;T4G-U+;)JAK)SNB zvsZ~`rl#IzHI`hkOSvOAU1353y{#xunF)LS(iR*)h~;7po3^Vx z?o;ixZmyyqsC0tp4@{r35lQkzTz-jb9@NusL5q4}8N6Ul1>N&AyMlW*x51Y$IT`%|&;9&DHuQ4G#vEYFt200paoHBvhNr z)k=`}J|;Fc^cnJ|XK)bO{8wF9KseUMt(P;2Fz4k5^*S?esZ?eH@_h#>DVNQN>35m_ z$q@Qm`qA<6N_5YK=XG^eyvhz}^78U{hlFDGa0QSTa=F4AyWyz|&E^_yS5lOSzau#) zf$S%sPyenB^pk)*#EI$Y9*J5*-HEIhY_>MnTW)a8j)(-Bl%A294?moLG-2U-m#Vy@ zw>-s0%Q|@7^SoiA)dYBcYqGPm1B}jRR?iLsb*{?(m$co%GPJffZj;>sWowIFuaBiC z2#LeY^sIkP$Y&%Zq@y->(y{W5B}4t$$+cw1^+tDwQ}9(hcMG;V3A>|X&F`)kpXJvZ zFJjs2Z>wR~l@k)2j;86VI2XYTZNp^C@;=lre_`G3*O!;zy4$AnEgg!%B

VX~(A z3SP&_-L6GEO*@4PIi0=!bzXNO!N>lHWpn8oYhb*?a5$%;;ytXbZP=%0 z>g8okT_Yo?@83xT1qCmNiK}<^8FcI}&v(sXxw%)XsvEiwnU019lUiFj-EK4S?lXv| z>`s@X$=J&e6qS^mtk*a5hXI$D{RfPOM_;_R^?y530g|jB z5b3q(Skj2E1eb|FI|vvV-wD;FL+N%c_4MFu^+)tsdQt;zd;gvNb#Y-pwq<5JtLqK* zypH-li+6h{+=mbAr>jVhH)nhM-jEcrWKw>KiRcM5IuS?nmYkxfQV*DTnH3mp`rvcr zudsXL^D-AE9vB&nSS*$+-D{p_?Pn}6a@~19E}v$Kn{0Mql*_d*$t`Jak^ZEC@1?ym zfWF|vA}%oNfq;N`)gCFlm8GGP(jFNd8>?s#A@pJafF|xj1J$e&+(^Z09Cu}+&=Els z&=IDxI~Gt~&G0m))0t5I3lZ_t&z3+A$HSlv8HDen5nq0kg3eD=3%HKBUYCp9M9`b< z*D^lyU!;EutU}LeEe{GBLfYeT6|5R*jtlDBhBpRC6A(zqha08+urw}MGZ>YOC zRCs7T02OeS0x`h658=w;TXQ*M*1EB;D}QpgvhWNU(_O(0z~FHJeY!WMBdlMkRmCZV zB`;l_M~qMVatw&@y-v5LpN*)jiCq*bfTF++e3wi_|0)ZXVLdI3u%i0(W1q}l`OChD z=TvWX(#z&$P((1Fo#L0QJaEWI18TomK(+pkdR}2+ExtUdmrUk6oi&Atsj2SJaT(!X z4drL1MCF~poE4vm1}D?A8bl;AefJ175&27V{+-u{&8J-BtSQ2%yl3 zB+~5>-BLkNym%2v0X!WIGm)Eq!lCm#}Z0PD?6)oNED<#V~CEdEU#Z^ z$jAx~5*!>Fs%q-i!Y1sA%C{>kE2Su%2aZFFi=Ud=*~x_&ZXm7u>M!wW1651#W784WmDs~}X(`1@ei2x}g@)Dja zv3-OSlmp9@ZrDDLL8gbqf9bF`|^5h>;Pt(Q<8f>*3+S%E5+T-sbbwm0fme z>9DpNVl>G}ktdhy4ey?Gy4Ay#u?IfTKE74#8W>bn*MHCC)aRS;?N3x)Wo2dc`s_Ka zZ)@DLkL!50xy1Tj%f3UGl zOw4REtOQxgmxm))nb<0)>9 zrTukW1_}am@;EgVcm$Nf7z+Uo-uJT7Y(T}M)+j^`sXi^ZzTet6;I>(kaPwr0KA zy~zjc33TMX@UDw^)4NZvv5{+gS<9O_`hvnj8xtG3Pqc`b4u#sk3JUT=69f!-$Cuj= zU0xA8nc8?nAnAtHS2C$(`K8TDW|?+mJdVNcGLPoI-jGP;8Ku6qApiX7Gz}o_ThtQP z+eT6~^5+w}_pl~pTm#X=yab3?K|WbaeM%NGnUJUKbX{eaZLh|oN~kPDgKtwrz+%V1 z^Spz9yraHAb$UTRmXhARgKdBLU{X?&^tz}L6db&h_`I3p3dY*T8ndovqW=NONIRJ$5aLGe zD``A5{Z)-K6@8GUS~7?<-4xb*<>tvM@$y{;XSmtYgVf3F>`puQ3cSbqAQAfS3l-*P zP$6(YySq!*&=3;P#eLVSs^Jd~Iso0BonQ69e+)|j2V@Hb+RSv0!+Lr*B%qN>r*%fF zr(j|Z43GOpS2JwtZ&i6byJ+W;WIrAh2Jq>~;0+d2P|HrAK|^=M3wgylaTrbTI=Q$I z($Iu^u8A&iS$Cs9B4Bq$5eQ7ow!r4(e!Xi9({_XV0EcLGO?h*?7}}jfIFiPYj_xXf z?o*sTR8qof2lzOa#x*Plo-4u?YA|{noscl3)^A&5Tje~QfJviP#Kq0cy}wpT#}l`+ zy~`^jgNIJ1)w|mEsLGqa_55%n#K*@CJOA+TzR7_G#P#+hFgf{CfpoIZT`zc1X>ql# zsfj^Ii(^l<@uk7S;$pU8)E(a{;+txs;+VOeXVZI3tBQ&>ppgFKPFcXxNJ*qlyKjbQIepG7A$T}>9~ z7dTk)N!XH!g!dbt&N^<_mDg#)a5&!IjHXmCNL|Xws2~WD_l>2ute>5YxBPtn0mI9| z{1-k6iGP1gNPa$vNP|ikNMVOe8of7qmvQ2!@-x|n2aQIHbGONvDWCQX+*{M(xpH9M z3TB&qzjL@55;uclWNe&URP-?r9&ZD}&*5ZA?>K2P?I2@UPF@}?gh2wlqPT(D1IhoApP1Ez< zH5i`^wy$>)WH-5xc&!D(;7+X8Hs6#SVdjh`HD(nQYg`+@LaiU3@Cb6yh1Oig&3<7G zDrk;D!|^HAkkF*Z&Eo_H+_SI!la`ifFih8HmY#A1efxr)!=&gPBJcGx!auR2K<2Ps zkg+EBMhArEePAM1r|B{*46C}2AhijJ8$PsBmgqYZkYc#JkAXTUfoaQff8KFJOC*y? z4v3m~bT@KqZP7i*3_bsKHe6*jiL}bBJPDTH{2(PI1?aczkgdYjPT~#>-xsqYu*|^W zaNMe;Lz`i>K+zNOalW+S@7XLY_Q1bmb~o0F^S z*G{jOg?dwTTCL_VwORw4?c1?*4(qWqP7&isERKMmd$XoU4$CAnTP|Idu-k>y? zErPv_(|`Wl7e^6`h=S5fc$YMpJK12afi@hB6WsQVNnrAv zO1Z)>qJdf4?Hq#J^VQpz`XT`xl`>UCTRUTar4;?)(59Ub zXj(-kr!$g>$F!Tcv^bdS)a{}Fw4ro0z{0{}Y)`iC3D5H>nC~5=P4Cn0sK!UD6HK~O znKV{J0|QdkW;+N;Nhx~cP4H#t7T@}#dD{+(m^3s3TAd%=%G~$P&aFn1vxQW1m9Mb# zl{%Ft{la7Df3j$HBn+8eIvQIejZPKcAfk31|gZwnd^2H zl<0a*T?&CzZe)$EtPZz%33jDoH=lR%*j95yd zvkA^VheuXA-{;6@gXJQP&i-9Nhw|3YEJ*8Zms`Y3 zsgbw*`Frr-oZufxr*r!b#*%KNt+5@iwiT99 zOc%C6v9L5!(#Y7X4L@3}kQ+BkAW>X%8=^-ew(D^XV@ACEE< z6ped+Zd^mOYa#X~gKqiO-@Q28*79`3ntnN#YFR_?wsVMjbIa{|gDv8wKp=Db<8pU% zB$*MLOKbAoaz!$Zb_x@g;aK|5^DUCa-a&-OoKmrUoz`s?PDVFYk?=~*`Vbm%@@BV% zDn052I?cMEO6QLVRv~=_)mfgg?!#4j0&Is5Eobe9pvwyjekV3Y{TRWgaqBfe{EnMj zzn2l4pxx*^<})a8+jB{uoj(KpmufypMp9G|Pa^FO^XncLQa###l6TAZFNC7)8ET{S~rIqY-xl5%Gzo#PV>4 z0?=VqEr>#w2$|oINx-J_2X8eI@$zZaPG^Ax!XCXUI-Y^RSe&KNSmCr&-#BcOGI4t~ z&f|`NaGQ`;c5=4jYT6nMwa!EsgAB~HjrhTh$l!i3xLvLwPzP0L-;)JIVh^(+Q&OG$ zYW!&%OSajD!0laL&cyu!;F3&x>J}j3@6x>Fc>(d*dj_UC%B$Jp4%CqFxcr)$oCcDf zpaJjS-(5H6mpP85or9f`wz=-ndZ;~dXynYO6o-RU%-y)xT{iE5=agl`#bXk79%+D# z(~bBP2W? zTSWe_@`Z%!J->!OPwFdyWoX9jVXCOiI5|2fcWNWDY_<~Gqk%)#gJ>0Lq~ubGnVw#s z#xF4_{0h!b={(z#DVxhbuN|!A}l*w2#J9;Q8kJI}p}GUo? z_NvtCh-kz}L{pD1-1iPaTvs5K>CPWcR5Q!dH#ZMotTm{ytj}C?mQ13@^*mc0^|3Vm z#O=n~d~a8-2vP`{(QvZVIXoR|&Ml5^JUEr72(kxtmFXdDW@e_AUOAFFoI?VAveg$U zU?BV+?WLyZc*E<^<$6}dYO@zQg1RusR0ct2>^mYBRu8Tn%1=qiDGH}mu1IS zJv9xDKy)IbuJkg444i9f*z+~d*Gx~GLguKI#jt~E>&x9yN(eyF0C~hrp?o@sbo5!> zudJv0k?C%*%iXb`KmdwW-tDQW8k1s_fzz#R-L=6u4+Lw-+Q`IYD0(fAMjnM@$40&OlrHKTRZTkr=aQO` zC>L;_xHhBlX!6zj0v~t%+T0rn@l&`4A3^+XyR5u2ziDKGnS_@5A+?u6%%Jh5wr{4g z1h$ys&sJrVrVMA;qma+hWt#P`p|;YX?exaMVpvGBMLEuEUd3oTTcfni6R_MtI}(X1 z97)W~bF4O2ETJFcf=V`t3;e#tnH_KDQ@wc(O4Lr{>olaWx1vBDe_V3(pgyxu#pIms zQi&9D8Bpcef7O|XZ^*#yjFiTG2>q-TT_`JQh7G)51&(So)P9uS;e!Csq|W64>jJAT zdji;OF0HGi^@_ycZ+_g9C6^TE0%^{7f6kuWP;D#R680`&Zjs89ch3Je<^9oy3we8KEy34aYh+ z1Ohi)FNn|F2&q0S-3!t!DZUmf6fU0THq*=!Q#zi_h5xj_*soA6Vdr+8qxPu2?XZh> zuQw&~iZvfeTdcLdK16MBqR^?Ssb%}I*Hr!WNC~7cP%osFOe3C1B;ul>r`reY&hDs> z-{U)&qY$Xua#MBd*Nw(CkG++ziYY9X5$GA7xS*gaN7P=H&z^WzAvQ8nVqJKi34&n? z*}Y{ztfqT|DDZx z>Y&8e&QYuc#MlnFwy#z82+7GYV9}q4MhQUOhVq~>9V9QfdS6dnj zfOWIFQgaD+vMx^77bMeGB~(~j1*ZlRIfte(FjhDW=nq?DQhiZ~M1Zkm--Yb*khH_L z@oYuSu*NL7RBXm4Yf3P0HkSdV$pCR{0@5b1Y0g=|M$6g7&B>v-G5Fo0?OwI*{HgeJ z{lP=i9k^z*oj=5dEABc8;`%oWnMGZS-Glo1wZ0Vq6dKGv-UZ+DL+E|0`wyUAKNPJI zw@&!w*=nYzuWxOI>j^-fCm0SbKMZf`EavV3wffprrE~VD7%+UDY*C{EA>xUoHxIAi zIWjr|xR796#QZjUXb%+$MOVvC5P3AOh4-?I&WdYy;vO8 z!6bB-adrLk>eIBInUNoAsdB<%Uev9filt?lRttQJdWzBP6wV_&wk~K~PQH%kvr=Au zf!;~;wWw6NTPpraDCZc({Z^MRWVPWLce`gO+9=R;=o=QY)`mm+jn5zQ7j3N$E=a)N zLs;kZr+{149N^1XUknx8v^~#hU@x`-F=P(_0j*Yx%OxQci6u6Nfn+$?-7wuKpOq+7 zgZVG*olAiOx2$_sk0(|SBT^0|b^OACL$O%W3tL_(#C2FSH{X}%$Lv%YmWJ;H64?3z zobG+n+(n>=g2XKq{a} z*nlC~yMW)T_XPC$F~_zLzU(==kcDeY8_+TEKtKXNH#sS+az?wq)`5_gj$Lgy?vZxe zF)-I}*?Pa)VU}S*}k zcrDUi3~7MJ>C7C6sjk_Wq?Y`R)mDu0T#nT~foXrG;a6u+VVqlnw!yO4*0-*wQK0wLNO>PES_I z3ejtBbc*j;t)aSk5Fz4{fYciCwtT(hS#Gi}?Q162ckQ2p!zPe|ra17gYvwQAL4^Pq ziohF!KBb<$gz_X-G@aR`sPeeoGGSvMpCNaaHbc7W4yXh*6tr>P+7lP%S;drD4!mn^ zLE!vlSMepLqJ}t00__=UsaZyYmf37so(T3Iph6rJIi*)@km%;#0HRDT5c?t@81F~d z@f?ONvK#4Y|FqBHu#<9~_JM(?BTG5yPys}z@rCZ{iNJ zbR^Q6yEDP8*9~y#Jvp(m zaS)Qz2R*8(s`f^2eJd0YqZvlOcsiYLq}$sC!fc!ar}_1X=&r@nmhMtucj!89gYElv zGBv6kHdo|!_SX|bE9vi`pPrt80iRCof(n?^u@;+1OEZTq5>GkqPk;hnX;(337L+jS zUlIr418^xR&M8iea-BtPtd8c&w@%{ETCYhVVaim0gg{tR{3%`o?x3PRUhM2;;*&C? zZIN+TS_ue(s9?mWkpp=U$OKuHg@K8CBipy{#m$`e0dj(Z!d-1bwkRlQ7qqG{H$Uvy zK(_k1VX3GjJZ_$yUJ?Nuo*UWn^vuk=KS%11UN#-mk{JuChkKXmv7%BFhaJe`@EKWI zQ83jp?_B4#SFe|I{ISReG^qO zpS8Dn=@_9>#DQMl>Y&$rq_@4{yjicPSSABjvwVREbm^D!Itcj&g{!ty5F4u*Qy_QZ z;Lv+?E3U$5YGs#iNqF4j)z#GloqGp%d|rlbY> zJBRjnr;o2IiEdJe%r+6f88HmVvWg&dCq&S3l$0c;6VA@}-{ne(eSR&eex2&IUTC`o z0p8i=si@7D>NbLQf$2fjxWP~UehSRgUVZU8ApWHSEEM(UOC;VYB5^!kosO;!7fNRa z0PDL0wZCS6`un?v97cqN2{N`Aux=cM7QqBdijP}v?7mlGV(KL$u9^+1k7vr1!Od1& zYX^eY*o8*kd3oQ`xE$g6`1ssBf%loMW5OXcKxs6tH*o;c? zccz<=9U#eMGIw7+4)WR3?xLv`DMQ~EwtnJrz48JA$clK+E*qp&=p0zT zJaNdV&}w9}e|k}=NDzVzJVp@a`uYkCvC8AEtZ3NSh+U`@idxp3004k>^UxU{B*6In zy|s^6hy}}+&)*P}kX9zncu3&$Aqxcp;V<>SINQeFG6}84lEBUKiHScyKUdqT1P20d zZ#N{XtE*{g0X4bPP2cyntAaWV$F&>6CuQe#b*`6NIdOH6GK~q``XkacQE9;K4rhYh zfv|a@5S$5eILBz@h5tp;gqygSGzG_8&3B20;d73&z^ts8yxcgyxW2$$a_7iKvq>=E z^>>f@e5McpfWqc-2=fIWfX@d;sHSz#>|>V_UyP{ui1Kh6%i26cRCW3sYXS#fNCdx{ z7?=n=p0OLce-^Q_R#=JMq9B&XIvl?q)F{EQ2!dPr%MAvreXuCu1AQ{l6A1R{~hf_7+4mvCS2@}ssqUVA@T zO~s&zSPecja(fCmVGy!Ajs{D=d3&C3N6Kf9{5W$1V_o^QE7iB^5=ABG2@FOVwI4z~ zmwE|aLr`k)osULU7%WD}wV&^tH;^(|mEuFdnkvsIK78Wzf-ngoEF4+d32kwOb$dAw zX+`x315iMV*@#n$2u;E|{50?6a&_o;Tyq0`g+)KVam71#fM8D~>@@yqyjp5$jq_$z ztj-^!#XNN<%-zm+8mUPYuUJ+5qSJ_eUm3!{O{lz7=0#jYv%vem$)OgkgB|r42tVg0 zsv_|XlSx+`w$C^`l;^KCUF;>^;>(E9+`AJ-H(lN40F%0oXc^W;M?{2&*AV}Te1~XO z%@oBH2d8K+TudbOgrMpg<^*-$$usI%t@GRJf~^n$skS0QaC5%Dpur(B7l`uhqt1#g z=yhsEzR{E1ctmfr{n27dehokDDav&PIEl1}STL)pMiKmyhnRW6xhF>c6PFP+YBdc7 z4$-EhI~94OMh@|P$!8cCleM+LNuFYbw>$-qhm>{ZsJ>7*&;_g-MaQL;(Ze8iq6(9c z0c&c&OXh?vHAL0b**q4rvT_qDhTlMu5nA#AmyZn=5Q|Pb36)7_3k2fRwjiTDv@Xrf zW;rGziPD-QOMq0=e<4pXwRJ(Q&x9hZ zd18^3ho7g4kNz4yk^c;cRYD|;Ge`s#4gb=oTKO*N%XfB>N(y-+D|QE?evM9}Qhqy0 zvt)ai@`9w)_@tWGyGz33g&(OpX~WdA1>>O5>!T~0s&CkU_t_vL6jW0mbU7!N`ng~p zR2kAF0Tz{VdDr`^j&yx?>ay!mQw06M5gVF3zI#E7%@+-v4YHj7QzwJ$# zv6J!52Wf3#MDuSAGWH1WCB0ScKo0NWz1d43ekj^SXq&^y`$q&hJ6xgowI*w1JogKK z!lZ5N-#nCDBH2tZr`#hq8ca=X5HgL3ko;DVcB>7#`l27(iXk4EoYsU6$ICzEcBJYj zENO*u8qMd?JYRmG7#kZ))t64uz0KnF(TN`#NCNbOZ?)3^o*XIfSz<%O9KgykFfozr z_~axiIoV&M5sVG$cIi6R%)dy~O5Pox#61Sg^b6CMD4nQrKJL2Mdpd-Bqv z?$t+QRoCk>+j=%*XejOmPzpqEUYtuPCUVfUoFk95CQSEd83JL2@XtcZFcS4m7+Xqp z^lFUIdj2|Ds!YfbY7ciRuCCtcNI*}HASPD9>TZBR&`$&a%kZfP zkJSnTSVBpnxA<^%bv@A_WxDzx$(4Tuq(4=;oaik4uw@C|%=a&oYkx7}HiG3aHzdoH z3wd&RNM^_i;;Lc)#OOkdM*D>N%kf3a0VjRfL&z7BUrHVYT>1Pj|^ZC9fAmhMlxjmLEo3b&Sy#6-N*FYuZjE=;G zhk=0sAaszoK?(^ap8Q%)7OMICj6Q@Y#?eH_ zL*B#GS*?4~VNLNEWt&d`*(=nou>h&|f_i7Q#)g_r;%~&7vHcX~;Inn#lfW@UI14Re zcw`k7?czrZZzi41)m^Ja5phrzidE&*Ahu<`8R_z}^)$&AC|u-_oXP#p$Gi(ffo$Lc z){-f*KN<&Q)~;J4egu88j!u01Q)9;i756iquE3*Kw+m>FXz$Kg-@Z>z{um7P`cCvi zvDQoZAvqH(Xd3voA+TPm-1C0(8y~!b;HprKJOepRGK3<1Pd&*x~%m`+1OJyGt6;AC%t zAcAhlY|&wTjX8$Ho>Pkl9-;Z$&3^<7PXsaX<?ftoJ4^($a#<$Idp@9a^;V7KYLH#-;!F6S4-8 zWFJHj=ny+u60a}U5!Xx}%ZiJ=Emm=c$K)t!(GFS$$B+(^{>vnY$mEoi!Y;xIK#@9q z$UpcGQvA35$wI&JW7YpRLH=!AvBW?z#bPTT#Qon3;02yKt?gew`%iNG{iqb;H^ttr z5-RpLM;c9Q>mc>kP`&}$g`f2zy>T&_3iTh|3CTiF!F zAGQBKegLYu`@in;uf2T{19oPybm`H&&zb>$B+>fAFa2L_XC?q>5HJ&zl(fR)dZ2Ut z!g@-Q;1%Br2uh1&y{XR9bIQxW=y2R68|r?t!kS`~6!EJSdwerNYQ2OFiB3}ps!QYl zwu7FX74$-xUjc69H)5xxS6Ue{wJ|g>AZTL)6B6ogt#vCk8nVPG2l{)DURa~jyt-ZF6P4oPCe{W} zOqYLksVYfrbd?x>oT1wv=S!tW<0CY)lLY25#K$N%r)m=tfm2ct9lFq0$N`CMJ` zW1qra{RtvSayWM2j9sqmUO%R7bP(nzZ`<+q)zyax@I*rJj4xm)5Ee#8_;TwqOPvy) z|Kh_Y1fet|hr4e3^{u{q(OS(vVlB9;IM&VccIMu7Du~y^F^wJmJscsB*B7}{OtDOY zK(By1^wvL?H8w*tQz>C~R%jfm@Ymx^@oAQyW&?Nhg%MO!l2IqGLjJKqb@lnc=&1V_ zmc$ldzQfO}pzy8$*fpW7Y=KV`WAH!Z{1eKLct`)Rk3J2mJoP4PVI`xiwn5qf4e@CZ z)8?T3qtO>|%ruaf-CuaK(5ts=9@>RRRN7^>ZZhS_+LTKm;$g{)U#oHoRa{ng_RYkc z)X045TT~^aK8^KZPRPRqIWh4jbsP&)2%dBS=i80Em z;oN{?1rn6i$pWxm)&FeC&Q7ImPNlkLQ@iI-@zsBzj9rTkeLe!jy(`tEv|CsQj&ev` zSC5$pnS!GDX)Oc=$$DI;H6-g-wyctZP$MmluAyoEK)yY9U`kSK?7Q#Z^M!Xd(h?IR z--$>Q5->pb2?qcUrf~a&-`np_CQ)VGCuC$m)6k5Hw0i;j?mhsCaEP5)m*6oC|LjlW zUxy~C+TwrxvO-vz*AwAytdxPFD?;3xE>N0 zPnzrbq(UfP^{fw`akdN2@%6;T+*F}F%50LDh-C>7P-O;1BIWXT%`ul5A>*kex@X;AL9 zPhNL*X*I^>z-Fcj+5(KlRrr7<`(eYP0Ym?*(&Hz7SxRm=CRA;wVhLj_u)E2x?e+%< zF4xD(Z`z}o3v$|sc&BGM_}$>f%a@A234NkFqyxo-GEyBRQfjm>@fRJz7j9o6S*mw5 zc9wd<+2%%IYnP1`#Ve?hI?b^`LXej0xrpX^hGn*EdJjlX)@w{xCdU5Ur;)<@H0GTF zwb`P>V?A*e6|ySjnW*gQC${wRbhZ2xl$8AX`k!lRYf-xsGIhM(1-kRuIJ2DHOw3Gl z=9jXpds2WrKic_*PIKuvA+cEoE_Y2L8*Z!=!*MRBs<jI|$8ks}#B z66vcfSyYo!m4^svxe*~F)BGYLm@_b!3&RAImEoDq*L)kaPXT83JpEBsR@j_wNWkWn z<@Yo+G){GPLcm7KETg>;|0VYmVf;oC7CMB02bX1OjZ_hq4h8w?YU?B1x*MYi_!CaN zVjLg~1jc=4hxlJzvG;pX-Ftt*2#`eiSMYr=mK;8)Fh?Xs=p#aiE&*)RTa4gh4 zzoTJMu_8@-oVHA1S<)OtOQrDE^oh#(55t_^0c*&}RcB!k6m|DOGhCF9 zMTPO{Mw2XQzl7z-3)#2r?!D4?6Vr;mf#IM=pa)Yc-*C579$ES|d^Pwl3Fz#;ZKJF| z(Iyp5`fzP^%d8*4*#}pRx!Lkbv zjMC6|>-;)m`0gx^wu*%Yu~Q;)GGy|p`~_obDdIKTw74(i*Y}~*!u9GY2U#se!-Hq> zSLxT+y=vY(gPqNMkJDCt!Tc-k{5_t5wCP#dfZXW!Gq3mABpWOQ1kl91^NQjSz)mvz ztD_ZEe<2|NmpyLbn5I`~?YoRma~;$+nh++Vg0*gbRxiU@3HkcT49if!&@JfYX@-y2a{8d|;okp6=QyHNV2^4Gt%$7LK{y z*%D%4L^}UMI#iwc3A{NC%_&Q8xd7yKKy)@}PVSZ!V8QsqzQFTiBd}x**MvJTQY4v7 zk3`x>g1|(aMW<5>p~c={px5H2lcwGC7Z>0MD$0<)`~28RR%N9xAP7VAhXZmsmqw0G zWyS4v`qHuM0~oE=4|qcnjxV+K!dClQAAP;uT{~-M+h{y@l9jM4KQ|2Ba_cCa5Ehl; zVh&?9TJ$U}f%OI4=4?>4$Q^#R!5c<1R>*_6_jr_eEF>Z*1@RZUJ%iGwUwChM zQ`LEzTAb8EgzXq}*#wVDLejcC`#}f3uIr>%GfW5F2g~|4huU-{JJ5|!#Z~L+yo?JT zJbxoTePed@L=R^D>afkG`L^R!CIOp5&6&D60mg>y-d}WV#J9Zx)8;Z%l~+X(ge)|4 zri@c|n-z%r=9N|is3&{Ky|A|NU>Ow)s0hSI#x6*oF_#Pti4G42MoSMe)QpJ^4v8ph zgK8LJ7?%ntJZlS58KW34-e(nQxDXY#M*&3b6K-T=B;XdE{Ral}+2eF`a^)=fJZ9l2 z>yNIlUs&-H{M;?C3?@^>dB4H*(XoXmx23VAyyVaBsbN2xCLnmC6^+k8zB8}?TpsWu zy~U3$8cDG>zU)It{C%5WMFCaKnWPy8I`g}k5hn;P0uJ144LjcMRU!A2Ga}G@PRqI(JSjUa==HV^EohRLzBMLFLceTspyr zEXcmR4Fg3OPqCDJlbmv2Xh}P!yB-vj)Bvn#ih)r&aQ6d82WH>m4AP2aDgJLZXmvA6 z_o^%`u;2F3t1x7!gc?YfprB+7qBFs*9_G$rrFj*_gU!QYlW~_8QUU0Lz9_I-N(-3F zp(!#F5{6W9DdI|CO>6$cS=&A+d@CbkDW$u%qkXj-A`DqJK#kohn(t28+>Rv;-!yCxDcbHlY0IIyp3WNgCk z>+gpoO`7;)eiM#vT*&x+?;1&q8#M zuCd+_wZk#DUtQgYFf67x=ePupjc8V@JK}k%lY-{Kx!r|9+a?_B0J-rG!paWJQ`4U( zT7NL^OK=hq!SZ$KS=m+jXH>xFeBER_OusuiJm_8>!(?AlZ$id}ND)yik~Zu&Xw}vG zZakJiH$#hw{2)~Kh2>{?)<;#flym*};hv%kS`9)34#5AAQB`04cHJYV%s9*mdIbz% zG@Mx5TI<5bwrorSyRZVv>;1dswy!C?rhU7vu^Ow42Jrx=Q_x#|VP%c!&`j=VJO2iX zbjFJCB7(X#wGgl`9_UK&etycWVO1^CCjhOi48?8cIMnZn{|4T>+(DEC4sdi)-;@@| z)n0NyceTj(`C@|_nW9~hz1|0RXAIq2YhT3B8X z7I(}~{C#bhFF&{917kW;^%qhuyv3bf7cMx|q{AXY#>$WWLLd+}KMhghpdWUdOD0G_ zX$$klraa`ws9;xO*tMj-G_}DgfspCl_>Lx?uTCiM&*l*GKP{BAj%XhQMrPb}@*+_A zLs%i{IckP=%CCJCB%X9a>-n{aQVD0~jh66G7H`&q;k_0Kv1Or;c6o4Q;r+vXWnyXw zgsu_@!Nb+hSZ^CpqlKCH7XDh$E%gL{;Y19}8__f>0y5YGQMC`ZhR~?(WK7Oti1?a5 z#f~{3oE(SKH(J`-*?lqCxPKl^oSa`lBJt#E9YaRN(U=~?x} z6Y0#xloi3hdVgf33B?DkPuxfxARZEcikZ*>!4-9IyvneDXw>_Xc~vHvbNT%1L6}F) z$5qzzT$R>s0pIU%ZQT{8NFj)s@uR4=wy}hw8CS~D2P3X5DV!p{Jm8pyEsZFF?BcX{ z=-%WL?6ngq1DpcLlw z*trC?WDM-7I=#0n)|JixA(PaZ2_%sYYZsbw;3GE6W`kkip56 zw00ERlvGrtv_2U%*1B@39$eXFk;TP5H>Ku<(W$j#$Q2Ft#-`5K?*pM zuwP8gNLg55bepR8Le1YI!0X+~QPWRt&Mjvkm@6*kYtG=TO6U#EjG?I|c|m#{oUFU% zW|gm8-*zF6PpmXN+q}s`v&&X=(#qe~;Q`P`d(Qy4p)0ut9dJ%F*Va7{JI!{y;1daL z#m}#s%I^ao@OZO+tJC(aiOxNZ&PeLm#o0v+AeX@0oQ2f~QV?G851}0adJgjqd#Im) zuvpMSO?YxLzt-qkAPuG{BhxY35;9SdMvd6Q%zS~%Z^T4BQmhOnXop0ejt}O@igAm- z<};sAqV4W-q(g-i19sx`fDaKMa&bNGP1vBPwV&)v;F`rKeuIO#*)1&?34m{do{Hvd zHn?8iszil3*r*jAD(p(Kvjf)0dHDo@w6kMl%WPgN2se8FWZR(6g`47stNC6JHfz%@ z@dh;d-7bShjW>a0b)CfuLf+UtISoZ54uB=DwA-_xkSv=TJYZgP#9eNKMY_JJ_wgurkpDoN-bl(v@tp`z4H=Jp^0aj(r!7oDu)8}}-GZ=g?s zI0m_bRBm2RM0YcTimQ(fuCRGm4azk)$?EYF<=k>S7hL1QF7m-O9eOH@s!=t_&k66J z=6gO(@ZHM7+y7D&u*aL&KBF4Y(@r~~so}&!%(>~fz9I+f*gP^mtOPlr2@NOLFO29& z@99bhqi$TqToA=v7euzO#e%4Dtncw5Ea(h}Co!`uLLj2T9`9k_ATOZJ_P4++oLwcy zi)Y}RSEMxDZ>jBuBF6P0Gi~F{5K0n3J9?O{_|$Hn-dbbf&l7NV;aq9YPZqbXR2jwy zU^@0Jm|j|1>kp?2To|do3$$ZZ=aPK`r#E%R9d>oh?f%Lo%pO4`pyhC5+x=VQUh}D8 z)PydT^PbVKxKjmqjZMiFcCSYhOZ)p@BFi$YqkQ{Sn=5Z2B&R?JU&cDTXceO~T!?3f z&n4_UVR9J-`#8vrc{sNAFRfqE=#tO8T5uxzP^y%EkTKtzAE`Mxu$f|0^wyP6Zq+Jf z1%X!zE#RPzY_eH!V2Zz;q^ImJbRw;RYyz63H4|%(>0msxu5O$>UvI%o<&XRIvd`{9 zChBr1C0xq`B7%sKs;9Xs7l%gSvUwLtY3opn#sVwupQZwDnP#Tk5_KgFr1yiCnX=qh{{IO<>_$UdESPFC&jng&l0rBqI zUoASa<2ydZpObl6cdX5Q)AQo!M0_d}--^1yxk&v^&YHK?Mu@z5@p_Cm#-oW#3sC~Z zWbCir0&a*yo}%AuJ~15>V|lBAP)_{w53a5cd3=zpOoB-DW|#Z0@~eT8*vg^P45 zspWqs43-CT+K3BsHuJw2a@2hgl`oRthEG>l3Jrp_Dfj9h78to08KrIB@rN>5gb>!( z!kjrFi4Rq*)9c2`Ud(o8H5Q{V*^FX0yD&Q2-Cs8tgs2aRLd(6e8NH=mVp#4t9oo2e z(UG*eY73~JCTw0_ORH;2Z6NwS(^_{i%fvX3YeCM=i}ILknQCq@^uR>ef)=GHQ4Rgz zk%1iE#ks{>=`5>c^>J0}DCB{B$pMPnTGRck>(kk}x8eBDt@Rdc_P)MC3$ytqOO%jzHV_2krw5GYuC$})-@0$-TKc=UMB-v z8%GPVx{xLU$@mzq)snBUAhtFFv=J8?vr*k`j-b`BFIg`AzUexg;+{|G0^c*23_VE@ z5ml}aXYt~(DP0(VG?#)+zuA*W6y|m_2(HrPo4b@g*Zk5fjqlmA7wX{0kAxNSwQQK0 zinXl3Zkm{;e{*+wAtE$F(Lfvf(w33l1i~Ya!_LJ#_$I|Qi(Wj;qj76|LZyFnz)8zoh)!P^GL{!|sMTqIJ3 zk#$&3gcqweG2^AStE0V$p&>Zp4ko-p^z9c`QRTbY*?2x5ma3|WB5i8W$GnH}Ds5^# zJEdwGd~gM$x51esZhWu#abYF3hPNtgJiMr~)(7wanA@IAzZW-TnZF(O{yE}7i2)=f z?thsjZ}i3312J?UdcM^V@A+)fsJJ8?y!4T#)@2aXxw_{tTI`RZiMfDy z7<-Caf6`jq?ZUC>rZ7!tH!pRr^sl!5-VBfTw;D)GWX)4U=uePS=N+vygz2X+i2Q0w zO&=OPB&byg-wm`6)4P^iRI(Odt6n^0;ks#98Y7co#74TPGSe=Uj9SLk!B zKB-p7wc3!LQ>J)u6}8^LNe^o)r7(7ls z>2w-nwM$=9wq$w&VTAY1)(d`Jo%|ECIUU-^uB_Ey}h1eSKNibgSJpJgG1rS{fF+|V>ZQBF#on&F{G0jB8yL~}N zR7Y_tbr|Oxv$W0Ync1a-;NcYAKQnceRJ;8d!d{m4TqIdBh_Hj!7ToaEJ7X%2dl;Bz zl_gmYB)@EB<#sla_P)8J7id0cJc^hhXA<6S*+27D@H4(gy$T9}NP1^)Zc{LJl}H8> zTy%hbOBn}c=aHCZy^f0vHi<4Lu|kJ_{w#w7CIz;}l}F&sjoD3n(4>C^jpL|GJXO^J z?`E3CDDW(JI||WUNc*%&dwQxMf{sp64+Dp~tSf^Ugm5z|XSR4y&3faqcp&$tk|zOe zS>Gi49-`Zqf`at4l#%f=qoqqW1{DX+DdX%Y;iv1)@>;`LYqRsLriY9EXo=5eh?ZVc zI^Gy9cz%qTHOy zp13zXp_xzK-wY%1f1sB4cIJ4^>4RUF{GNV1{r>Uk$=UL)m)BJaj8PhT^#%9b3n_7T z*~rJ;A56jaHxVgkxgZ3xc9u%TK1J1$LJqaJh4 zSKqL)kDVSKofVd;urS;y7Xh2wGiGezve8?DBdo}bG0r z6n90!n+~lZg`R8w!L)yHU~u@`o^YY!ZXAAIQ=5!K0G?s= z7MG=*zO% z%*-FGV|^gvU_Z!a4X4~Sd0fHpKX7(ZQtz?XEh#yLpsZHnw+oRMstTWtR13JM`rf@< zcyNaj74kcNlWxV7%@BY{LqVBW!K7$hHpoW3$1h&He{eXx)2Biao)g5qJA7`IAgCLW zkVnu-p3Q9&#Kk?oRL+~Wyn*R61@JJzQ$emLT5PXpU1JqrE#bGCXC z^!lbhU{n|_klB0JVYOOO|NX3g`~!qFTKk79_s{?VhP?QSrWCQEIneJ41NmQZ0$#qQ|DbhsW2~O;LiifpSdtqLWOT1-R{I-kb5x=_6k>1Usl#6PZx*b$%U#j+qG0Mf<;si>bHwQYry?e$ z4y?oitLt;bbW zaPorzX$5+^UnG^2e)hDUj79b-zR^-WEL`B0PUME0Q3|v3w-J(*5)O`@#h0FSRMeGu zqaO%i+Bb2sVUdtTNPJR&7x-p?Yx=-t2PLxw;3v-oT=@|RW>aj5(Hz|F@zK=ifuHrSLLTt`hGM7Vln!_$7CrMHOP`#4o<)@z^6&W;}2 z*Ww5@1v|eH*YF}dy4Tx$`nE~P5`pRF=!c@{t`vzRPn9nh8tWj$z0uvws{Fo0x2~`) zdyQwfh_L^MmUtL!4?;2F45BSPVSmGNNfgRWMb6z+DvIL9<{MS4)br<+r$Wzr{fzUV zh=z_9dfz&e_cnVRC)n*@3;pt^+SPG<`-owewXx&=1VPRV$q+Kb!m_N)!G^ctKnwDPfKiNp2RaLazat?BJ;^?b6%1A-fl} z1^37OYR`@jaMiZEe1Kp=DJLKKP~SsINl1x~Mb!7w zV0*xai}#BCq^zprpXPz=s8*cGzrmZ&Sdr-~aCh#z%w!{yKnY+6G<7Nun?Gf0xXKS#$N z%NSi!N#_jPe`#LfzDg1Mik>fxo7Y@T3i%`=suJMXzHnk=J)nb+xE_1pwZ8wMo@>z& z#3eq01ZX{`0@dxHAiUZ$f#Fmdt)SH}Y+-;{=THohD&3Xmy2<>!MtlGGk0(h6PxO`# zDBhd*6V9FAwA0H@(Ap2&5=6T$9v*B`EFUwjV)zcXP9vPX@IZ zz)^Ew6ZIr>PZzGS4$_ZAeeJ}U%Ho=t8GEWMT!!35x@-Dp()b9EPrVQ75$+p8(`ivc ze@0Kp>Q>%wKIE#kz?lsq=r+gQD9^akZc__pPa#G&LCkdULGPi5yHxo00J7`w7p_!4 z6~EY%k7?_SK09W+G;hP(5E!vpxKNh0Y7~Md=&IT@fpsT*>Y_kG>qVlI7e3GR6BzX! zr+C+oa~T^0HCaZQzUw!_K09^9<`(n!uYeFN-h4GZdmNa8(M{Obq~qYcRF}oPj231A z0qm{=$PxH;Oj?nKy(20&wnV$kr6E%hgq;Ye%*&atyu-dK$mAc8sS*a)u(fGV7*LLAf&&FQSpp(B~}TSm_xjUH;eV zec2jzFH6h9sZ%XSMr6e4`_MSDkXDF|e)Ewc&)?!vki~zmi^x%>r?C5)mAq96qWA2` zfP^fL!Nxv*>~c(jU|w9oM+~{!^t}9zqT7S3_?2(>EUIhcgVYdX&n8+apX1HtF6uDB zVdRt7%94lnISEg-SfuwS@;Vn67lt>hk{Sx%G7TP_f`S7sw`;aN{xS`g1Y>cR6aG#J zt{vVOUzt0_$^K#!3v7<3l;^kc+Wjn_AXACmlsr>d1!SJV)+`{auw{blxH9LB3!FNnQk#C#o zr9JEC7gghPQ(c8vh#IL>dz|97Kkj83=7Dl1&4&+NiYcxgla(Cl;wmZuD+3ptKNnU` zx6S8@Ayc9DG4dG8x#Y!Z3dSkeKa#nx_kV~a;>WzL<(MzGpnbfx7bO{6edghB{%{)f zOaGRL2i&J^f{ByUq>ihhB8(b-JvX<;pN~D9C#(2$xfue4m4zFjK0pEZrlP&b9@f|J{L2t0BTFp#)kO$*^~0BiGBR?j|}er!*mKI zV3Lbh}r!P9pOMM2@I*r4xn*rPkTzKj_M_?I;zE|))&Ycf;vbxNJ3t(l$3O#O| zA~Aqx1OQW<={i2vOyW zUatJ=se2Jppr^xh9b-Ik|5R(oFg=%!WQX1ix#h?-3#?CilkZ-yhbTep3-|rz*hQ}T z3L8?$S|th(^Ggg=j-Gw2uU_Zdy_qn`cIe;VDzZN#>9!^R(so{WkoU?pRy?olxcxzK zdbU?2X;AKHT?}oas4q9%t%JsmyFv=()e`I zZ=e2I$Fqu;Kzz>AjUxQ2Nk5I#R~_=lx2RsbuTto*&qI`a0uzvm4<2@-d{Hy;)O|)> z2X3pjOEFta!!xN(^;e%*`nsFjteCLhId0ac?h>wNl;MvyTsWm+7W_(fgUhNqA!DC6Gi1|J^G@h;=ofRVk<_!(CX&J>Dm%zwhSMckvH78WJB&b z@EEt{SoIj5E|buRZtOE*`B2QmzmTNi?2`KjivOwA0T?U*r4UZ5JjQ# zP=VCIKiVV}R1~Ay+X#R}>!&YWPca)sH7h3G8=asj;cjm^kw=S94CziaVu*c6(1cvK zGzt9WK*^EueUHx0{Rda_!PdpV>bX6KV&NH8m8>0ZDkRDrP_vC7K^t=-}? zJC^_f$?G=u^($# zzilJr?#FCy{^TIar38O&HMz=E{k-0u6|>wIbd~F;Gy4%dbyIYbwaWe(P<`>5YB;ef zUKgCeiN`iQM#y!Gz7PBYssV6sR-eK0$P!I<5C{dmh%4;j^9xG-l9J#}6*HhzFvvkH z4X93dmWMTW@Yag{9O7pAr77Jm=xSzi5A>A*ukz6(4G+*7wRYGM<3Ivtc*i5@3U*9I zT~`~I!@WC_+-bzAYis0yfa66+S7=g@Q_vw!^W^^RoMS{h6B7&P>LNdJFIL+4s9VP& z?u_3pm1u|U!}&>W313C#$9}1#scj+ZJhq$Ywp@O2TRnXYdDARUYBo5VE*|IXGNubm!p`YMB^XTY$J(Uxep`ZO%_Tkgqs~aK?7m zPF8)8q(4|_RJbVwNJrH!cM}15T|J-%et*7ogUjiH#M=RcIr?f7f`5a}l~RmjgFo*` zyJU6;aemLKLcBORxP_Bu=$V)&!wxMoOW4XA`gYvyZ5_^kt25N+m){AqqAH%rSH%l& zAui*hJoRyt6O?OsRs-=|Ud++Bxt2F|v1eaPXnZ+_aX_eYxvqpLmRolW_IB)vEs%T^ zxE}jy^e}yGEOtxAMQnGghP=SdC!YLSC(4em_Qw`9%o2ewQoo{=Vqi@))oQBcch-xZ zdF-Sykexn`XtOh4l)RqPOWtO<-TTHLX$P2Bmpwtny!d{TsX$;+4|iUJ-t@FW-bHpW z;N*Z0q4-^*&;CmnSZ}r0-o(NBS{Mj6B7ZM`YW7+Gh>c|5`Sl9697Agdf_magON(^x zeHs2%c*5>=SEDT?0o?kv*O{0qRr&%Z1T`XL@zqgOVCpANZ$21rz1h?ad2!|sC_I#H zNIvPiJ!mDW8Zp1#(~$58JdGl(Z;!vuy%ycC+hOi0Ol^bRSSy-;bdbeNo#AUJlh;M- ze+2EWkts=RhWHY=*{-QQe+%Xe=1MV?l|n}j&T|0o--WWE>Ba5o`>NI2M!JE0h7r zk?RM8dtX!_xNiJXkLFmzFNU^SJsabDsjJG1XYMde7F0%Gvb|4JlN3{f8xuDKheFPw zwh*;NDj3<~*1jt$TpC1GW|sg(x)`dlll_`=?>^A+;q+^itBo4i+4h1>9oXvZ>7*Rh zNI%~GG&Xecn$&NGqWta7#A`51#cTo)%d}I?^wDLR>XXVX7d?3vpRL1gp_a#(x~5uJ z53hyAr;UE9 z$No27{2R%vOu6chAS6=ZNp`FpE1^b*UY*C9Y zI&|;F%6{#=BLLtc=W9W_#$qSSMzSTA4*;-Pt4XJDjI_Gg>jegTY>F5lodq1V(6+|~ zqZuVf+yiqvzp*s+%Zrc|>2l85PDJlojq$PA9v>d!uuVxLgoUitPvowi&xnwVJebyt zpm2)TN>)M&-#3qkA5?c)o1UtfKgGJ3PvZ%LE;~ACuygXRYf6^hUQ9%}7PsF(VjCF| zupLi6H$8`(=wkyLFQ=`vK&HKQ*3JquzmcQ)Qom2mty+M)UBpX<8Y7H>ct{6&bB^bf z{Ka>7C63*$pTe0rnkDNF6P8zY3}+^sMnz6_SJRV%Xz3VR5MA`pQ<4Q2KIVr%UEjXj z7LU{`WTv7c*WXpd+o{P#d}h(Jlo2*y)OR6U^<;Qaero}5?Z0YHK1lKQ=tLMX7TYFo z`OYLc236MU7g@Q_68<3BD^8JQ`@U(#Cv?^VbDD7xZ_Eo%e@GardT{(TkwG3s`^gy%%2J8*Bv^NTp`y_if*lLV~=;L1wP5)v( zjT8SVGN|=cu}}I}fM5{&#StD~KQ9%(V>isr8;GV-#jT=EjtK)m&()|2*+QSCmq60~ z(NzV=01^@vAY>za(zi{nrD`JR8r4AbD8oKKqk&9CFezPe2tah4)eFIvY^2yxf8U}p z;GbRCpuKOm-99tSg3Yxw*(eHTJM_(h;Biz61D2xjH5awU`7C%zc_f#`1j|R!_M?lR z*ol_0?o=74^XEg7p2Z(Oq)eN0yR}(Jf12m#iA!{k>WTN2w&b+r+p2~}w?@RAFX@3N zpE7RBM3q*QJWZ`g?&V~#5xdGDWo&9G##vxQT<3h9uIpj)ZnLW&>rfg& z#CZiT*E8%&EZ!1%$kMD6Y_cCtZc%~lfqzYhEgB9cr?QTYr-uTA85#tCAQ-UD&ufT^ zW;^2P@NYZ(Cis6Fpg)I;ZR8L@b?EFfUA5)ISt(&T9*tQ77JVM})xLp@r*k}I9=F#r4tc)P6M0vzOKtl5lQiuHvf zwESbEXcZOtcW=&T->C_8c-R;5dg7!$6q}c;7O23+rln8_O;CH$IcJG?7;|PTvanXw z*JrYko_mlReE9;Wq7uVlGW@nW-+%KjM)O}pv}-E}pay0%vI|9lQ_a|0X{N6>w!e~` zg?(=-U6ww9cM$YvQ<+H&(6qE0h#Y9+G`{VSA@7+uVymdL4W1?$nTE-Gg|zEj)p13E z2%COY!h}I%rAkss(-4u)KMKUQhzAK3Uw>sS&7U{%_6C=ck@>QjQYfsU0V<3n=MsQ!p{u%F+3ask(fnaK6OM5gQ{gu7{GrXt$A%W$|aE z{n8}>PT^;Xz|L97h|7z`D09Mrq0?%N)YP?@5xNT*M#V@bmJ=s8LFr4?3hoxE0c9H9 z-xGJ$PuHNEkmps?NBm5G3e{qNeDRF!ot>=0Lc_Q--dSnx3e(7+=2a$na#|vuLku*Z<%Rri`0zuf{69%qO_t^!D0#i(?9BOC4|2- zFx}q+Gr(g#Q!3%Fne%TLs=s~6yaLF~XMCdE{(mn={JpKeTDTShy63K4IGO{}wX-;lnuOpQ}T{ ziZ}jCLGgd+p?^J98Z|)Z-NPG1`|BD1)-nIahs}ij!=;8r4tM%ryPii8nBt?XvE=_# zTYohyghDZH0nYcV^+_J3nc?7%+TcGt&42do^C-NzWntIo;BQdppGiUS3-HFO$PSsa z&W=xxS5{F|3$lDHYfRS9FDRJlRulBui`=>V8^Q8FTl(9bWj4X(7YLv1R?O_b%}fKd zd1U8z@60VNMby>HwjkVW^uQ65X;X*2CG)~8lWc7zSGA1T{(C3wx2&HZdu~*t+XQlWG-2c+B`fE7<>6KxV z%xs{+oXn^F7)ylHK7=)x+$&NCx8^|pZ$bTU!|_*R?I%=9`fzz~)FoP3`TMD0rHk5u zXG{F44g&w%8)YshL>cH>0H*gw@s72_ukg_F%MNCCy%;#VGdn;5nBJ*a9@rQdVhl(s zSWP>I$Y^S8go#sAQ-Ur?h2!O}KAn+86&* zi{*4?K>;#9KYb$Zfv}1w(Y2Pgw(~nBRpqGVPn0sWUjd~T{tUoU691YV+|i5v4-uzj zB9Su=an%A`2RM##b!FQDD=PpGm&F2T8#^hVv}GX=0WERcF`|X2V@C&BL&MUwC^Pe? ztb-^C3}_RRI6iIz6B{so-IC8JLXor|KPu}f_XLz?mnc7F&4M_+im0RC{c{BHYl;wh zH~&5_Ki|k+QC$*aaWUB%9X@XG<2H6|mQL0ea9!CduT3LGfZA#^Kh;R_a_}C!R8->~ zO;Mqep56ck+i%^Nq-iDnCi!4(6Sa3NG9RP$^?IIUnx5c(z*rU*ffGQ=n_IBa`_H=i zCM3`vGFgE*0(jCDq?L!ZLe7+vC2`_a6uHx4h!;8 z>65CeNLGGuQH*AU`M!La>gViY9e7<`dF(b1{4HMgS_i#XL|y zS`?<7XUXJyuAdd)W8>n+r>xr?o2gkiIS=r5`_lV&ZB8*P%-J+mlypE2;#hQYHxKF7 z@&vLBs$_M=hc>NF2T$@4yYBdQY&Hu*a%1f_SnX3R5x~0m4)SHzww0IJfqwv8@9lA5 zMxIpzrg5>Hjnf=EYS2(o_8Zc*wrj*1e6NGTKi}v2CK$ea3m@ozGe=jr9OW$&sX{7Zy0fBZ79x;en~5ooLt?M0XDMJkZ9SZ(e#j* zt$?_WRc#7ZQxzs(lSrV+#6G)qACo@sUI?a8Yz|XYF9y$Pc4ay-A*Zff0Ri*4I6irp z6zQ>9FPrg?v*URcZXDrqvJwFof4`arHP-~|S7G69I?G}hn78fP$#2%&eAi@M|70$Y z8i#Bi(rm($B@k{RGQ^Ql$!G0p!7DLD>)pYG>k2MZBSycBu(!cD8$#kKR}MTxMj8KU zO<32X5Q1Dhl$r)2fBQ zs`0~~JVk?8#J4C^+h`oXjEfABK418g$EpBeCI4opJ; zb&yq3tGjN6O)y&%Tyd~A>Ql#t|In8CuQ@;_7VsoP^bU+b_VcVqyb@m~4|Q&X-F_uQ zi;9{Mv89|;pP2Z)I~5(to}&v+-EsKXHe&U2@c69i**VdCnmAM3pv)H&ldbC{M>vGm z!25avCN>r!{WF1c0zvH6RWAc0qveg(A<#drfPq3|q~kLXZfef&!m;9%R6mn9Y52LK zNNkYms{@pl3vqo}#?Cpjt&7fTfpWHKzuI7)NGJBJtWuYyti+W4wOhwQcw0ulCTSpA z7YH|0BJgP8E2%fVoP{j$vaI-Uptb+`D!)*|z>}es+XE7od`ekU*KsIG?xyDa{(d!4 zaGsa}8)m=%WLX!&O+kU-mV_%Z0!MUXV*;=hJ+-qdmz1`L|M^n|m6#YH^CAE?29Tm5 zNdCdW5_fAQ4lw^5PBNF^oN~Yb7C_Lw&M~~KxQzw$VC)Q>B7<*U6sg>G^*uhqU~K3p zO)r=v#=b>Cmy{&p)YDSu*c3u?ohDRU3e-7(I2+fnu(TA?ZLv@>(XKt{kNT}dqokz; zqoRV5zhcs9r3eUA&<-;yXXfh+h#LMXd#A#04G{0L%H_hWJ2;t~eIbwKO&oH`?<`-u zfCQKd+|$+#e|6pi>tccO-KarvUJqwQp@l`hG3YyB$Z+sZlC{OC`R39H!=%NLb0P3ZoE9z$K7)V@QgHhnT`To0^g)p?gz0wfGG&?0`{t4V4!{K7^*!%s| z`iWHu{Q4INKKo6!;bA%EFa3b2qLU}PkIJ0*qNIrlR&`BHGFE&6%HA04#`J-sl}vRx zQ{S~k%*MvX=&uj#=&g{Wu$%W6Q_pWMF13k*w%BjSR@rCwvFLWY!{7K`=d}`3Qe1C; zWS$)$h(lLbS2w0wY>nPffH#X}b>FUw=|qmfj2QkHN}-AhuGcbJRl=c(Rde&v=bDYY z^UW)f&f~7z1AE9pfa=@HtZc*&NF6aWE?gs>vhf&QSXlyUMF<<9FTQ;yaqA5uS#Y6a z!t(rEbs;sRtGe3(K^bXZ?LLPKeY0=GA;#N7K<{3f0_r(}-!73_7s}DfT5dV79qest zdDYZr<|`ag6w-Ji+FH-40n@AMyd&qOT(d8Rd#9pOL;Z~=Z+I$H?GppY+O=l^X13~b zX?)0Lkp9Y_OWP^hnE948^-6t%b72sZ@7%LdQe?BDL+jCldJs)3%9piNR8`Mm!$GyT z)){FzVG&V+)_v=KUd*GeVhLrKnH6hQXEenn^y|Ft8Y>quDw7vSwfy@_eMB+TQ6^cu zfN66|-I=7j1l85J(p-E01|;*qSi)O-CN>sE1nZs%)7M9_`9+PI;970{yb1<-+K^IE zE!@qDj27~LleG#LQb$-%5=VIUGJ{G_-v_-SQ{|Ty2-|<7ymn?gT3*@qrB_q!R8o(D zZaqq9 zaI@6=ptp(+0n6$|M|6Nd5ToVC{hK--OSqn^olM_M4XOL?Yqn z_{T@-!gWV96v8*5|b?iB@t zIx^txH~fD8VM6S*({r;4%42;~=R!{fH~}m#EiM5bIS&;GS{eg`oRHrhJ11u+k=+a3 zJUF)dV%3HLm)*#&O4g_GIn6x;S&GDM50ViO>9FH-dqc;?uRSizU08i=RuwrrITT2H zbJu|w9+3ym3@3K-=xJ&D7`1QPM@JD}F+8)fvciUot&Zm%69xG`m+5qGx>$LVd9OAj z?wV31a(N@s(T}*1kpj51N4I*zQ6wKdT~xGh??S$(^-PLatsATX5Y15?J40n=0nIle z;4n545GHrpRjMreZ#(Bqd8kG$F#ShyFct(XYY;1GR7l|2$dSZa90V6Zl8h`jSs)bp zV|qbZp1PR?Ik};LZJ7`3i}yV|rjXq8p_J-{H8*=c-*t^Kxg49zCGkb~rIOjaU3}+c_Ikt|PUnBY zHYW5cqp}VnoEH}te{QU(U_KJQwskN&+COZc?+?|_hQnl8#KXg{TvwRO&d%-vIW^iG zCPY`DRkN`l>E#(uaZH<&O#XCoc1jc$5kc4U+0rf6zI*?8b27vO`;xAKjfIolEZ4Cs zNlxAci-IIMgZNGyVCC-U z>KK7_|M-QCIB7j>m7`>CjaFH8Gi@d7y}egp3YH>G&UV~;CJsboirg|>aFu{rYC48) z(~TZ||BGu?+hKymh?+Q%xmO9lo!)|bG|}1E*e!UDiIZ#7SLpNWP6tm{25{+bIrJ`~nJrxjbx=Qo- z+g88q^OFdQbhz*b8k+88*t0Un$=XKamUmKMZ_Y=0a!K0}uP-+I)Z(8ha(;JAc19A7 zeH3;*+`a%TJi87Y{mLsU0u#(^-5Q&O6%`W_9>(pf94<4nN=G*vqG~7wkq$)3$yo^i z?xmEB!j?c&15cHx)(z9>;GnRcFzND&&Y@1vwJ;Vz2AGO5xrU~uZ+IXT1!Z<-W@wPQ z8MTK-;@s%uPsck65p*5h)Ox|`eNjpQQur2~)cXJmK#}HiJa+%U$QBBwqN}>M`JC-F z7)5Q^fJO7W8*X-bNW%^FL#T6v9Q1+$Jb?ML74oyDhVs~|_yLlP>K2A~*J3Rz;Hj%; z0cd8I5b|eYZ0B5lLDqz?;#S2FBaIk9^4HJ!$P&0b{p}%W|KxC3?qCu9=ck9R5H}v) z#jfe;L_sl(m`|Euob1fI0+Srw6!iQUYBMwCIj@UabN0EdRFrvSjBUQ(=9d=yABDDT zjdZkWa!$L7qQUe&X$A8?eHSSx?(A$(F|@J@{PhdnYRT(|peN2)#>6^tR9kfD$`i=w zc^>T?ZyZOxRIEl8EDz;NV}d!BsEHaD-N?xLw)vP3=6Hn#$MV2L=_v}*A<0U@ZS5@K zkti)rzJ7s4QnOB!m@7UBdRv)zpV6A1F)oiASTo8_PXnL*cS7w zt19G|q$JJz$CNW>*HO9aqdncb#f|Jf`{RA-=a(HEq0{3GpOx?s60LXClCZ16PC@$K zE5Sz<_V+`MVsWZH=U3%$9E1qseHgc4fZq4b>CoRHr-V_^hm6U~hu02@*(>7dk-9v}y{9BR)`YL19RLOW+ zeu%p+u1$>w)+uA14AT|}scL~cgbzL7H=oEGTKpbbjFSP==O2aq&_D@nTRLV2;cR9l z#;weFB(&4%T}!|e6pjeEb215j=STp!$k|-KeW|ZyVCl*lAnuG*aS??QrZb}~eOJ-D zD$d@oj*o^HkG_qi<0C&*K6Si#kJsU>>M~{Ot{ek$Nc{Yewkm z%I%^4;lYkz5)R|X*o*zG2?9w_M#s%OL3wqxfpS{+xHLv@Ici4iPY{q1b{)ncYDWGB zO2wcv4(qNLT5J)0MOb~WCq%2_61UvBMQW=cA0JzaAsY4T$Qo|1Nx%q3Iv(2NbLKz= z(4gnPeJg*V=j`kx9tt88w-6|_qeg`Gn?va${aMfr-B<%&mV;0OgY`NVXNKlvgwD72C+alTWY6rNL;-eJp8(^t=uwoo{)=9UL5D{;Fji2oFEO zHc@`p&ODsNoz&OpogL=u1^fMKek6V4`+nlQ3;eqBgguuF3)tghBi{xfSRG*B+Qn?= z%Xv%81&S=TD%Pqfw?U`4|HLK25Nv!}Jiz6&%@!^rW8mVrEG3qwdGoD`>gtP7dr$;i zBW`aDD;om+Yt^PHZy(=OXIZ2wEj~ z=KLWC3z+a%;rF4_5S~uOH*m2&Bp?YJY3THnP53K`($A0lEjHG_Bg|fwhzlk(!Bd_5 zte0H7=I2qnLf(lxJ7e7*^8+c6?sAp)u69btSZJ?GbkPu&3yUMbs~A6hc1#xI6lwkS1P0_3xsqH-p*gUP&%vckCid zyY|>1>tSq+e}tLNY%Hzs%IASxMkbsatG#_33~_hF)N6Zkhw1r#%e47*QPyhwX&*qJ zv0HLcDd3K+ka}&!sjuxGI}}nUBuXKl-<6+Euv>Lgz;emMS>4-UkW38?#fYDmEV*>_ z^uR}8k3xsN<|(FiE!Lp4Pj^FQWuZyQ%XUrX{H|joxv|fKwwq+qU-QO`2yQZ{*Y28E zLoXVr&@C-CQlKEy#yxBw&a{rKkgVT~mi9tTj~#+=HBx|&nB0~k znH+*ZQQQyMQlI=ok-@GmiF6)cn;=w_KZ$_M8ki?ZMpCC0?f!ykG;yw{!S@Tt8!5DF zpy+@PPferr3$xda1`3iBv!p^aLii3%rvewi&%&=dy^Agg(sg92Jl-ee<1IvQ2RxnN#2X-%T!{jUiU7BIqJEIJ%gw1^_yC5bxS#`G%sxIb zUX=4!_42FxJ^ChQ&wZhL5dPqhCq7Qn`?;G(Tkp=$jQ}RYW2w`rFjgE?TqnHmeD#EL zMn?9>s$j$#JQ*bW6cA^;o)8~C9MH+d&^|9kX`hcDQl>VD(^Im))Ay;vLs@OZg?Vhe zKQ5A|lVD8dOe_08?0scaTv^j@<0J$P!7UIxxH|~}LU4Bo8r+@65(vSAyL;pAlHl&{ zE{(f$Pv-kZ-kEvV{e9QEe|q)mK4+hOs%ls5dUi=9yxzp?_@_UCiW}ka@dKY}1;%@x zG`ZgD;JhW(b|-y*Ea-W{kJ50^q%Ehd95S}`*=1(zbKTfAbC*n#L3)(0yPeL~=8NUC z8R2In(_zU|>tsSMSFawm>MT6J=#j(lzrG`2gxCG)A-OdnTAaj#>l+kHQFf4i`#mY* z>%G5>{$y}KX-(A%15l z5+9urr9JqIzk5l>?0YLKnE}K@HB0n|HIsyG1Z|NqGNumzA)>dpq&3IwJ=l-4NkDii zH_5Gh8xjQz4}uVo+F78&D8}>&31_BduJXlZPEO;!Y|Fu04Kb<%-7--1qzVlq?T;EE zi;ddny*0T)Unjkqp0MRey?gZZxVm!i*!se#H~o<`rICh#qU)9gNTYAH-h00(5h;3c z!I}2NCq&5llRtM+%$0!Qdd)>)#MIySdnWP1&QF)&bohJ)tHoTpr(PTq2d{?m3l*U^ z3lfIqoss*tuvQHKSh5wZiZ$|23|z%V{xL%1o2p`CtQOrRdxZ2Jge$87n@OYDSzdY| zy-@H*M(hUG!zxRHwXSVyGIroDXNh za#J;?3~eQ_8oU-7QNzQhj@sA4T2rLte&8NYs4m$)>qdHXMT%weFSEbd$tCd%AF-y- zqbSkpKq3Wy_G&&Q2pWgvV6|pumaGAKuI=W%iVEk$%_{wCD%r%{p~SCW{njF7o7?%U zTY3?@J7KS)XrHspv~b$_wePmHoZtjawS7f3lLuX1UWzz5p`{*%d4aL+Z`>;K9#_Ou z?Q^bw`q@KOf+G1mfEXc{vy};Mw>@}r^5T__mWS|?$l@;<>hB}T8Pe*UauJTkf%H0e zUHAu9a}Y`k0|)1WF>aY!VQ$gPuH}3bNJm}y3jkjpjikSCEOVhjA?7srDv=}EajsGc=?P#!A?#|-}*&sUC=vXIiSMf@heVN)0G_+16$rX$K zl^_Z!N&RP}F4vz^V+jlEgfbmAIgd-5XzhN}7GTF!f|U44^m`&R?e)aLPW?_{@nDA< zeHeaL9&}lmouG$M<2@`dXJ_u4`@_f7lv!N2SzZErYB?;QyTzUcb&27Rrws0uj>sq5@#1Ii(ghmurn-EwNpf3@s^ zH{7CIV9o5-J*<#m=Ld^ksMU$ycfpC(%5`5JNx`(8USft;U9DDO_9Rg9Ln3x-VlRkV zKB9eQef(Ld(#Ry_9;3gv$A~53otzuafsg~NB+lU1BI%-r2HVWFy+tp035gxG1~*#1 z0xob1es#6VUNz-N@+!w>f8jlInwVtVq}M$K%Fue0RS-y~cW?^i5m&-h>2M}JOnJ3iVM|2r^XR1hvzPMeh3{P2mEY-v{D9oz*!jK(atKf_UWW6K z`7Znn6SDLAvLOdVxtYGz>q-%M-Fo5V=u=$GxrB6iW&Jnk`YhjrsL&En((ALkfw&)>Q zuf}k9fh&DHm8F{Pn0|-)=Hb$UM*U?V65qvC)t&Vh_28nFC*n4RLJyJX)be|YGFh&7 z=ThsKUYTsIudf853h5mb(l&lrzLnNY&&>3D0Vqe0H0vdxuEtYJK-F~~=I5}s2E>~+ z_Puz)?MdhTX?;g0>vCu!56bO&!w-~7a*;B90at|fo$4QFQYIn4R0XzX22e4}!x9yn z-c0p$401mjNLPF)HnU{u=sng{8 zKl%dJ1%OI_wozc(3*d~%mjT_--yAMlUENB0`Gkft0$u(5h#M|!VESwgx>~z(g-RAF ze>4IKt~V0LuXL@ieEb|ok=)MhI^#wtF!AtyhC;Wu@sju*al-iT$h^drIj}k5Bj z{xf(*66`h!C|UlUn>xdTHve? z>x26ba)7?xND@Z^&Vs%uta&8hGqG21Y_B8g8Wom@ zN5<63KjIV?db%HR9f0jV@CHTo#q=Yd`}wM1MGy1`tA9T~+eTd)srt#z!TWGi;@MuB z4!6AiaS1r=S!u-I);vsrUZ&@he{&#?eOp4te8qa8E0~I~M6YU~ww+~Rx%&ko49_!? zh}CKuTq4$C2S%w2?YWlbnE{fa*Xxykw+I zVzTS+ju5T*X!5ZYmixtdaEN53k(<{;_%Po8Bg)CU! zw3*4()Zy_&qY!SwK=8}-nf^+>_GcT($xo2qzSU=4LNBxB0&wrh+vEev-uJm+r{3Vp zGn;}S-SnQo>1p`aNnFXqr?G7%%PSLo+~i*m7!u&qpej|#4d_$aUO<4qG>sNoOYil5 zB{=kIW8+0>w+tpzdvK@oTrnJ2FhMD88~e8qL72ZD+WAytY|Fra7dkP3q#*-0AuuLd@#^u7`VS-GB!;=H9^yIkyM5_;-vR>GYKO8VaY`wY-tEQ^ zEuY=TT;#?iN49m+NTQ&?BO+3)>(iuoY_fz3&(wS1P8O?ou*8p>2n8CyT)6>kX#j<~ z(mvokQi!8%Y1x~dBb?+AEk|L>gwrTNEsvHp+ z&k|jCd)pj_xUoT?#nI$9-`C0|^EheeU!SKJ;#m(p_z1*AT2Be7q-inLF(8>Q{z|BHVp`KxuThoimc za*B%L3U;h+b+t#%${HhgZJneu_|5tqSU@W+{ViZ)3Y_1SmNz<9@rr_pc)>}TQazT^ zUqu56)5)VeZd`0~oPaX1g7;_i!6Y28*phE^TJP>)8?Ptb@%WtBafb`79rmnXz`=*_ z3m^62rc^Y`z$};kyP5a<*;72CY0V&+c|_DRJ*y>)D<2B$sUl6yT{Oq#G!3DU>xOMU?sp`5CfnI}im2yZ!Si;t;u5r^{K+%~$3?nJ`GHS)n^z4QB`bWjVWVaW!IBhTMo$FLoG^1zAR)?_!gLWQ^+6 zNjS$;#w^pp6LMauri2UAh)R*HtmQK#+xb>il9>K0-*KV7YUQsqV;QW~$D=+Yt#3n? z!w7VruRGvGcqke@Gbx3cq%ME1d0L^;wN__8{#uVbJLxyqxP&ej#~ZN^!HZT_(oWe~ zmDqhTLf^Vb-H|JdWy~d=6X$a(V6QeUZ-@IjV45@i?J)t=(p*c}W@dFp>*IF~D;+_g zKrc&oS0chlHQ@g19%VB#R!Uel9wI*@RJdi%xnEnwIzCF+aQw_-Bz-vTj)7jHGZ>B& zwIpRrOYs$T6<^gZTM?$s(fqKW4`eL?qK0|sLlyc}guEj6_SDs+XK0f6HasQXPkgGd zHN@92Nf0+UJIMIw=ck@3$}89T;Q-Ux?+5mz$ZgV#co7`n%bRvA!+^Fud?$7 zpGr+090nJ2?rM_V!_v}9ziaP?6*Zx&sNke|%#nM0-Cftj2^zu5s>o5;rUrr;c{ zXJ^6S1W=lhPSkT*$)s<}dU`BD2SV0!ZR%GJOVyRn3fru8X5{}CtLft&_-os%9S^gJ z=O!Uq#Fh|v>{wYP3ZzI@l%%ES!?YY%EeRaCJ{Ss6NuRWJW43)yNeKmjy!OFu+DK}0T3Q5B&olhakW;_IxbV_y zE2URukf%s!BpoA})TKZPquToVkI;*S?(XhZHd%qrnZ+zsx#a2)La!ep=Bhsi1`y_| z58qf=yw>sBHv*zLI9kURV6WN()@+trF+(lW-=?v%*j(%(B%we1sVK|e3(IYa40vjS zUM1S49~s^1xY-h?bi8mQ@9&vidtXHX2jX+qTxC5$NDj|9nVJzRr{E_7t{ZIeUAhe9Qv@O&GfX%BuQ!%Z65vz5p(9l+K`>zwrN^bKQ- zi=jSgW7BCl@-nfj8f^h2JV_G~6_sN!#0-i$I$Os}?p-1GA|X)KS)81srLjYCc+{JA zk<-Q9(<{`%)EbHgI2ppnD3S#he80y6u&;HZPg0`PzAY;Y$7I?V8Nb_q+2RP58H~-q z|A6jXgBDYgrV?yC9{Y6Y0_2Vzj)q< zfYQU^Nm0gGy_!BDIrqwY%oWfYrLJ9`&n|X?epT|)#G^&D$f5!eSUOpNb!y7I^2hJFV{Mavv_&Y^Kh>0zDGANk2qduh( zil@nunw)r3;dfgK+D!{Pxpq;%DicYBw+~!P(@$1XiezowsY+XB?oVVx0D6xAc3L8f zGMtN-lVp7oh?+h22jT$mar%=-A)sP9b~{coJaL(%j^6Ck<&}e8mY0d13q5R0B1pH) zsTEry-;D zi-49lKW@B~OH9jso+geW33q2Rr(lphRN-M$GuuNHZ}snWe86<`&;j>D|kk~IKXLyv=~8U`jZ8cFHPt3 z(A_VIe{M3&$*1QD1K1wW2^{YAvjQnu!yG<`ZM^3D2XQ63=sh&AyJP>lJi|4y*^cx! zaR65JnlKEZ@<>rEDoVk9g@t?ZO7EuOkn6{i z7wn}U0ngmyVN2@CE0}#*kB6PuqUnZ9viK9 zpn$8Bci1;PaeB3hl(1{%nBhr5xW?%1SN@QxTNBj0xi!<4r_gXvQp;Ua+eZ< zhc;dTF7XdV#YXk_Ue>bQU+dKMy)*F{sW-`3c~XP)L!ky=rm6$r?wkadGz3(|f#8W* z9{l7GCYg>EEiJUA`4B>Z{w;K;*0$zio3iaVgQf;}8)aQ4E##j+zKF}qDZvY93xta1 z3!zB72&y@p{z9)>yz+1xTY|$1S~p{)q4^0^IMFlJ3;q0)oU!;lx@};7S}pRDeA`Devwj(^z&kua2eKjT z>TwhDk9`;S!($WqeQGL}snN+_0AzgHQgW4cLnjPxSCI=vOHIjlEqBnq|WP~4wLgw^32`rf`73Of6Q3Fk#`6_kkft&C-$f$jcA`;_p3F@v&$j`gNR#yqn3G1dL z)UuPT>G~xy>hc3v?Cefm-2;j1aXga4Bs|jaLYs9+USCB}B(pZVH}IZL>x4-PySd@W zD#@X75+|OtNGOqVj{6g@pXo_Vy_4|>#7vLFvGa?3zc4jd@n(spCFw@=KK)j_Dk?~Y zC5iueH=}8$&#F@9Hs9mS zxKHH#!a+_5PgMZb#dGLuf{Fi zckEsPVfuSlIqrNM3}5`*>K|!-`a!-RA?R*OAl|e^m2XN*g}CG|wZiBSg@}CSCyp!* zTjX;P0CqJii*wl`&z1H)g!(T29{4-o^joMWy>dB=O;!O9m}rj5+n?&ia{swSBS(u+ zKWe2lefK2%QMJ?8=7!(U@<}Ca4y-&=LXGqV?&|2lHzi}vLad@3QznG0k0U$@n){L- zY5UtmMH9~E&?-k`zFqXHo5AawE(#Ct>iiOk@8RJN)b(Pc7zEa`M5cspMU*;_d$&N4 z%ss8L(yEjLBI9EB%2gOpKm<2{_`ui?{|iz2(%{6iR|$trQSc(#3^?T+9A?QIw62s_ zv}B=M3D?uryeAx|w1P^85^=+KtDzpUi=@r)En4Ik>GuO%azy{08a)qO65z$`&Tx@HPT zERAY`F7r{^q*IvMv#1}ukWJi6^SZ0dTwN>f zC1*h#3hP-lt8Z@AOGMrT{Um>*+>_o0O;9d0%^&rNUlfC=y5!mS;w6(#>!pV_Zu<-V z6ptGgov-!{giWT~=~Gv4KA^k1DMrLiha)3nan~Ho58=HWuhGs?*|Oi1K#&0IZ*01jdiEPoa+k3LiAGix#+RgXCXqtko>eaW9TpI2O+z& z_Uv65Rkxqptpn*^mT5(E$#n2KAM(Kl2HDyc4_xj_6%0jCJ;lOOd`N9-2#tiyuW>&l z$0sMxFxHFIW5Peje#3$x%EDYioaT*(Orz(WJUy))Mf2@rTAD+ULq+RBIgh}l<5vth zr%$mV@e4z)3%CBxvUe$$_M7~Rhy15R9C^CbN7DB4)n6{XZTCh}Q8R~PUTfwf1jQoh zyjPDh$J^q1a6i&jLwk_)vDGE@Xv!ELVnHVJ2EqRR(fY<`^;v5OevweoOp$4yGu_+{ z+MUl}7*WXjZvfRX(N~c?NsU>eE)q3gcpBZXda)t>`K#&=V8u7`CI)-Ve5% zqH~3!8g0!sSWmTv)cWT1*VV7VGYZ45Az@XRPJ}SE$JYXGY?Id)cw3#e@aYcp*!ST1Go;T7T#VU@ozZ?&B78d>&FfMZ1*pqyI`XG|YG(9DL7#EmiW#Ctd zMf7wm?^r{^zSa58;7guUoNf!&0{gD&K&I8bHXY0*8et+^RFEK?cP?~rx@O()MWntl^__G_s+5bIN~4~kWK~{9NwHBHkc={+j^0ASz*y4tvdsjZ!?)a$Wa49LL zR;_@X{I!v$4U0~4>_;35<8LW+Ohehp?&ZoA8lMZV=Nk$xxi?O3L@HlIDP#MvqPI?2 z%@$<6Yv|7ze)dU(2XuLJ*V}Igd9%L`3wLzI-S9eQn4PgVr0+kM&98TtYlPJ)5n>Kt ze+}*TQ=3zGg+)DNakC zN>~C^Wz%Mjg0rcaqc=cw`NG?U)*51M9rA;oidR7eS|&7aWZGYa`Bz^4;y~IS!n{?g z-Kkb!NZH0M{Rwdco00DZ%gAIoQ+*uWM?@EvH($3+gT2`V*kpNl7?lgKO1^{>rX z{Th`Fjq0#qRE1LvKX5{O`xn9bO&oj-p02Og!{JM7Nf|cdhlGn~9So@G^JrK_gBrnJ z%tSI_7sl&|o-=YhJe*5RF09&umc2GT-HX#dbz8qBLaD^)1W%@)e~||vhHtq1i zX+s+qG(#)$Q45f6*ceV0Ps?UL264urhx=1a#_aY$#?9w|s$w(wmNbaW8KTv%Hn+HP zMn_4jF>>+QtFDw|tmurtq`Orliy}zvD<&JYsJarp;G-bZF=*bUn}989jMWaVFAWb} zy`lq~)%>%+0?6tavrek4t7}RtS6OtV0W6&K8_kbo_O9zTu12p{jDjlnyy8W_dCbVk z@m=x#p{xIQ!69R3dh4FJdDzuAva%w%zoZ((?<>#Q?~82PK`TVCD$FM`izGmyFzSD5 zOiv0c7PoULks|zc6Rj|9`IP=B$ZvZ4&TGL&u2pTsRW(!`AI*AMt@`LWGwblX22o`L zazlpYrf-xa-h^N=VRL?)%d9PUs}B_O9E+Uc~P5dN-*W`yX@Y>-$SN zI>3qkecpfEfL#MzVH;#8_zz|Dzl+Z2`!C%YV3mgaU$0ojAp_cg%Mbeh&d!`mrj+e?=wSwD15rH}IXWnD~AolkK_v_us`r$wDgPiLG zX6q@GO?Tp1-^y~rqdlG84~OVbibg9&7;>I=AUh-eL)Lzq8+M6s0Mas)%Q_a&$rHU2 zX#4M_QGA!9BcA`PXTT2o_Zg>C%dNs(-BA`y)aqGMws-jIK=bqZ z5vmWS8T{L_zn+`LxH4e>LFE6W$A)BDJKRwnib|ez(AU7w@>nJw4aL{6`R;5{F)7(p zsOGqR*W6G3ed1&`a^9dM_jD6Mr&8#t9RVX78JdOv`xfdyUfDMd5D;Xi52ADdphog@PD|0hjPb{~X%4_6C8rV# zh$)3ZgAD(L&y>KQItt}UTr@DSM`>}>PyV?7KgJ9s11^KFd`r6OXr^1OS!T;p9w+T5 z*vO3JVm}tOAEfxUu!`9~dZrnE*+^{2?;qyj*I+c4urGG6S&Oa^RjL&6qJZR8@{E#JR}HLlaQWuoScZ&&7g|55O>^k@^HP) zOjs`}a!&;d7h$2@R#=C5y6tl`Js6}MxOfE1NcRHClYMIrJrqF})yVgJix=jX5PY`- zKkEtCVT$@v`PJhEC8XKMRn@*QZrP@a;?cH8Xht2=V)0Clq{EQ6%+2|MI7eoefZO@1 zSj1HRyjEn!8hO~^O$V4A#)ajJ9q+#{I__5(tO8@ zwBr+a^(sAwX9!%|cmjpUhomQv;H*avt8RC0DiV7mn#GnpF8m%sd6h4P9AXow;?bcu z18$e2Kinu3ckP$B7d)Iii0=vvP7ew0x5sX5U5!HGfjYhlXe67lL)7t7RPkt33xggB ztSh1n65N`XT9bgyNXOW#qkwqcocl z!-JeE`a*V@B4U2e%K7d62|_P-p|qH#7>d;FlFsQvHBl4(x%GUdsH53bREJ#}27cF7 zCB0*fLPR7se!SPR3}|o+`QHWY!w0f=a5k}%((V$MV4Qr-!G#=r$prIZk$WYkPAwad z;1y@l0k>9Li3zpApmS$E)A>;*%EWE@OWul=m5LH{_~k`pN3$74IFjw$dKR3Xt?`q? zrO6;`*|9+FD)tko>NrCOb=RWwjr}n}b`IYQ%oinMmKp^T1BOP$2|2h+R~nl83=S%n z_KwH+j#Z95q_aB#Q3i)PJkr$L>w_a299{*xscsn%ad8^=Au0yV#t(d#uCL64392m% zHXRkPSDZ~wS6wygZBvtUD)i0S$McgDXfIMN>bx%``EWc7P@5-rhkxXT0TWHt!pKdf zZqBhK&4Ok;G>z}HkBz6tX!Fde?AA~wM#n=V8D5GO@j1yQw}IPj%5|abPt@6qi)s}49Jy~mCT=!jmmEz~gOuv*vcZSiutyO$ zCiXi2F1W}8Ab#r#L4wQ5O^$kb3R%gCNZI=|M(1bpmpQboFWBM0M@1Ton}Q2orhKBV zZ0y#feK&5>+6$hSRb~-jmv0S1pvOD|XGclh0vy$af|R0y?$}6(tS)|Th)j^@1BdLT z$JOV-a_g}u=f%mry@cJ-#)Jz?os4XE`kfq@sl45TC60%Xl1d&(omI-3*$axSGINe6y<*=%ik#sPh^`$;H*FbeN8&l&++%h{}B&c7hE^z$W ze8{n0Mmm19ck1wVTxKAl_8kLa$T+Gcn&y`c;oIDX2D9mjg-S2c=M{zFD(d7?H#h$Nb)LKLCXl}6WxH}og$ zsD$9q3-D!eXX8y!g0q0OG~t9|fdTw-XSAa8;Uw3R)W{QR_F??oR0xMx$wV-I#rWy` zf!TQ8N{ev~>3ui_XzQi#e<<`nj1eUzMg)w@#ZBtjc5R7cuLpX;C*@p0uvyeab)CBN znHhCMt~aIJjc!rRWIMeel>$|Z>W91{^FzF}Q@-)={i7Fhl>j$#w#XI^;?p+*1RQR& zlQ-s%LQ>rH0_vSg(s8?(#=I|6RiVU7J0r5O+c$g%a*1ZPCpjgf<_5aa*_X@w^`OUlWWoO zS#c&4UP?@_JbTSys@9NoU_1DqKKLK>f1yNn25Zxz*q76o%`$eeQ=G`Ca!ykcBlRde z#-?G`-xOO=&cXG_(Tc7M+mW2hA=H%BB{W+^e?Xi;GC)sS9drHw0PFWh`gf_XRu@k>{9g^XpkSSpXX zAuT@a*qe35NG0>Gzer9zuIjv_5ja0`gpjmLvV|DQZr*Xq4hh~y6xZE6J>PX)#5DiB zbvZ*0DoK+iNeKBj`4y%`_SFI%49sN?rIHr+5Mqs|X@HkIqJZq180#>lM{&|&^$Bb+ z$ZEYqz2R)ITW?hTi^IL^z}XNv4HDc@_|3XjjShGfj?&q@r0Q@$4yre_4L(#lcOOP> zO_l%hBGu#!NXou1ip_UQl0LazKfW@Q&Ci^*Eq;rzJm3s2)U!SuDQf$g=TY_kx>06- zu}ow#YxhH``ubqs#6faFmE8!~<96ec^%B2;`j&ITNA(j+~m!EO&#xPKihcSm_)e- zy0S;VW<017TW~`Q_TS8!&r>=KJ78T;>ashXO_@252`4Y*%sznl-IEvbZ_6KcZGuwj z@~p@}sZk?h_e_GKEI#Zy@AIBSJ}87~9w?_q znn6=L-aR~NZP`^7KNSLN49RF@?A>^r?QVMpYFfU=*N0yog043Toy}LIc2A!3E{qqI z5ozL@o&>i{6b~8kvdk2i9)?a-2IJJ9m)no$K_qmAocHjTlgVq$?&3bJ?}MAHwrAd| z(>G7uvN>-jnOiF@?Cb6pEoC^&IBpf>aPBlAkxrr)A?>s^$e=b3vz2Z%Al8Qpz=3!C zcQ0Fsw7D)kljTbSUqh+Qme*RK{qBg+2$d(Z72p`bYg$>4+sknC$%Z#b%YbDTvEqY}i1oTOz3{VjsV@XIgGdPFMzeS3-E^BtviO14qg zz_U2#mZV-&IuhMC_ko|`#v$pehpt3PXp5NS5^+&k>SMNA!+tBl^k_irLjG+rQ1lh? zd!>x0jhC6L%WW$E0MRe#x-t+xQ7 zp)NJ9#`JDUvy!md*E(*}ak+S2)O{q8gIu-intiY{B@(^oX{iI~U+@82QH|4BUx`+Z z>oxrHC#8_l$qvP{(E?r5bE}&E&G(K?R%rmKRYpRU-7b%**=@5mjjyAI8xs-Hn`Md= z(K?ny(OU0aq30vpD+#5u#r9Usx|e5pMMW(hd1XxC65u( zBd)_9$sHo88W-PjCR$XtwK*6h)T>&xsH+6g)>2(H_72$g5VKUqG9KX6&LbJo0nSR!oz_30K>(WZ zv10)KEpFgCBNPXb+<3h6`*$C!0PwMDFSK~_6G4qh4zC9O4tV|M9+ANVK9)$SBAtQ+ zAe#9#ru6?huWWkYk@bsO`+$>WWA)_Eeb_-{1L^Ov0Dt}pxJtBuHx?1G(f9@cN0B<( zW&U-JWODGpW#nnL?~i|BsHv2n{sDyjMok|I1i&#*Z85AO;3_Qgt;O5Jyozm|ByQNS zsU0uXk#_h8V)Z}1pO5|vnqv_7esdo{f*=|^5|hZ1WjI4UKQ+myr_zb@O@H(20jIoy zMd`mdXEiF+5deBqC-k=o;SEvi>XGkfS7h zu+UrkvI#=|{mp>aLv{sd@coed>AU}MSpV`$G=Tss<;S@Z|6Q~I;9~t37n_4<{?#e} zbypeuq9F!Jq-6h&yhGZq0f!UxSXnl(w&sqXVX)yfBzUtnfsu-3*V&kI6x zgGuL}3nRHtTrnc-5r40}ne5>L13<|W#Moazu>MchdH6p_ z_o)<_1zguNH~S7*ihxK2Jw&sSqdxh3?20|H5T5&esy=}Zn`%4Y@#4J>Cp2Rbty2t{bhCKX<;|i$)=C9`3Z+P|Bwdq zr%_-~vuRjFWCjX2UR|`EsgDzYQL_c7#6Uiu;U_IW&~t-6foZ?7yn3*D{UxHE006*o ze*xeM%xfrrF|hy|tOR=$wSG5c%b=UJGC}}*bhJ$kd6$;)6#ltf;ZmhIFcn*WX1L!@ z88P#aVSfZOz4+n7`G+vQkN~zRjh~(P2gJyv;6Fd1L2hl!VtdlsmYbP}?emlj z1KMHy9=VlX$@y_i4fg2i>@ho`4>Kk*RT^NDA_rfA&{IPJS)}t8W?qv- z_?Q;(J2Qp-u*g6qatqQRoi`1M#uOM%us`6jf6cDwwGY<+FwNQLV`uD%mGJGKOrrue zGb3(y!tU`fI&b(=fcvQa=RUpB`2PRv!|r7bp0v`Nbd6cS|9nRl=lvPPFU1=P;s^5v ze!$EF{YFY}AF4k|`2is1TSqP!7leJQgb?BBCjbus%OhJ;4*%im>_s%W+#;v6`K)$nD|(7ro%}Uxw1U8oLD1#8G40sOy|XfA_=j&H5gkch9r)&3 zCKnosyvdU~69xka)q{tpl2nn$q<~oEwf-+T?7v`hf}FREY5O)*m86m~3ZEgbjEw;d z+(vX<1 zs9@&l*e3YWaqD0>g2z01zPM>uHSn7HyVK#ssJfR)X4?zyMI7RytPhUkX%ZC5fppx{ z0-K^9jFxKrniX8)`BQb&^c_}}#p^X6;f|tp1v9xe`LGEIGrzSZnC35ja6S{z?irZ` z2Wg-0YbG={K^SY7Uvre;Bzv_bHL!a<;D}D~zLDOg>Qy*-rUe6RK9m4nWYECW(%VmmJDNYn*!%|9`Mn-LO{C6R z26B|_Z{js$r{VWIprEAX^BuL-zWOewrb~8s&#z!TATWB~N;HdI;j-Xh#_dfjaOm1pjANpf&pY6Om%0jo;I<>|v38X2l&vNzmbg9? zqMEG8G^t&qonFr(`ufM#xNeI_dH{WkE#0r0p|G>*?8jkgQoszMq=| zG_Ci-OU58HP<5X!Adu!GVlB0MiPMIfQocfl1p?)4qSyHS+Ezh_t14t^r|JoRU_k{B zI;-V3>-B=kb9DIbajc-aJN(^yN?g^EN{9V(OR3VHn_D|#ou)sSI{!+%^b#d#nb0n z1Xhc78=my7+4b%O$T>tE4@H1Uc#>sYu^GH>!mbgQg&Yq`xDF2>c-NH%7m@WVejD}1 zXV7|RFs~2vT0mxlSD;+YvRqV*s4gpjLX}5{_NP@Wzl4!ZelBOTry>)oi5Wf;c*L`Dv{%xY7#_qgTvhsw9qzoj-i$%E(RaUiR&^FVFq1?^M9HJ(nJ{MzlGVVJ2 zJ%-vIY~(0-3!6MM4dH0%pS(Pc**R45*N>nt(3^{N+)ytvJk2&g=qF`&HiFn;=id~` zOdu?1(D6J5Z2b@^1)NZ9buy-*^Z-S#;U}oOc^-2yKKKJ&v#hKaJCRJeyW@k@5al2$ z1RXYDZDqmQl-NI>P8bHrpXuq|NqD;Q%kU)Y^bi!qbyJWAda8!n33OgXLYSDksX?g` zxq4v>*;E1Yy)$ydtUAN%!af;g*qvmt%|ig5jvmGtqdtX`m8mHhX{3EZA9)>zjsX{5fz&;q-)nu z{(-dYX?bl~-Z@mZU0)D!zOa?(XuK3OUf<~x+C7_p=owcM_neR3vxi+;GaBgkM(o&> zmn#F&AKeu)HuJQC)3y^+B)$=JoqF2D;##JmH7%Q~#BelefCOxQV0_9+bl-Y=WBqPC z02fA{>=oQma7)Y7H_Xf^n`?K1g@zTOfdy`L^yb?{nY{_!Ej443r>*`eB-tS?&AED+ zLMjj*1y6flnLWn}L|x}}h5p;Kov|7-2;*eXmlC;hO7Y0WT3z%K^YnZQYx%%Wk&C3a z-v#3ewDp!h@Ca&?=TD^8|hSTvq9+DM-l$Np&1ZPQN=cdIALLpPbWx8g$ zLyRRe#fl}Q#YneK5!&$@oadAw;0r#Zckl9T8!jLz^)h1`3y`Hl9@od<*264n-FjW= z*E(2L>7A^r@s z338MwPZv3utCS^nwZp+ZhAQvg`3CnaHF!O~Uo);7&$YI8gji2y zlq`;OHJIn?rly!-RlSwv=M+(H(9ZB&Af$8dc_(l&Vn#WUpLxTv7X2_~X6euYT}>>G za=fvQa6b5%{NN{0}RD;3%|;M_&0Z!X+y_f`;md*ah^ z^=erO8T(D^io-56V9B)SWMbF-_}Xl&KK^wKh1ag$Ggdz5{mHpQ52})>+=82n(I=?T z7cN!h$gTG&QVeldjVW%oNZIb>Mkn!(7XxkQEkQCWIiSPOj>MJhFAYQR&nq|g%llTH z@;+=q&$}tOw&5RDJXrPPQo;_?-aIUw@AeP$h5~Kjy7)^7Ws6^0Pl`#q-m^5_?a#L2 z;)DmBj~_0k@7gQC#g|u`??N-rF3wtvUSDj;nxxH<5@epvDUHp_4o)zvL7|Nm6ztY2 zQHUP=TDhux>@`iT56?J3mwe8qv(%B5Ig<$Wr|Wpqx7!A;vq_mKyyJ??w_ndtZ;r-x zW>@X#a}>-S&2X|Ey#}Z5ipuI&9txsrS5!T?=|%2~q4^pvzYt0>9W+lloM%U-W)PG~8m9OAf6 zVV4+xcICz6*zjXA#Z>vw`PGe=4PR4~z?Tk|EjBxbWI}Ghx=iNx7LkH~>X$^kdy19(M zPQLBEt!FnYCLwtUw&PnYd=s0T*BCu^J}Y^+GsGrt`a>SZWqt3~VW~lVm(3-Q(adzJ zu!eNJLDJl0csrbz@<#Ps=u_P2VAI?C5`J0vIcn2&5k-feMY3k=(#gtk6Bb{dv}*TJ z?Ji!%=6_faGgI16<73AR+*A~%nh2Q>dBH~NICYOcbv_0jO_J?y!U&WTd;DZL4cGbshHL40;$rJl~$vp4cCaY4IFcsyla>`|du@Ia1Ow zwltMgX;y#KXcaimqaB9oDvoMJT*T*AHIeiQjnRiyEqaI_Vzd+)!P`#iIHw*psZ(r^nQ;pB(otl)-vNJ^<#6ViNcO40t!PDLyS zbwe^qk36ltNq&@uGn7BOEFuEG=SUfZlQ_f|v+P zWiM^6|1`wfbkmF7q0RkXb$k{wB$Sw4TXDOaL3MnxwLe;uDl;-WE8yVFwR#B47f6hO z{L-hKNcZhGABDe|r8mFKlI5w;$hQ^Uyt%a>@XLx0(YJ&lc*g}d&5w#>AJN@hL`z@xV2vZVJqb=<=0J<;gqe=_Eb2&?9W!3>RGW1ov8^|qq6+AkrieXD&1@zm%40gU zZsOFhT`cyfc;F@nwMd$GrZ^i4n72&cPkBH>GrP9yC!r2Q*I{%w2cOt?A!z01ekoS= z6`U6Y>GGLF%6c)rs8pb(llua<%`FeJiMk+yS0s&dQh_p%jGPcClFrY~%XQO{{u1`% zp@oRHEMr`)3=~;N5ne^*T35~axa_UN3hMntl}@oI_#9Pw##pgpk~&YOh`?;IHoz>G zC{FcYI?XxtLCT!odE&b!Z;#rOsWSbDuT3>lw5SOX)B6O-QmIeEWC{7LZKHi9o*>(= zooFalcYpt6|BOBR<&fy^af?jnhCH5DW^^y**#3 zhtfxq5O9d)PK8C=FD<#bc60P@vx{BoI#(CoPMR#H22~o3i81J2MH=64j4UvLAx?y; z8U~qSb zpcyo{TM{66aEBnnz+k~$0>OjJ;1Jy1ZQjW~&pzio=j^?{f8URHz5iydx$o|(>gv9` z>$luPghwFsZxU2^kd0MuMb+I& z7664U-|8&x5NjBRlj(t%AR#oql1R5HWM!Xf>zB0j1zV8eW8UrD~cMHQxMNyU8LuEnbCz zIdSDKr+YmnDmsLm#S`pS7aJyrw9^`y)@l{cmW$e3{)FTJVWTV2j6#^02k5e0XNaj{ zkj<{l8d4V!Awz9qI{c(n#Jr&g+VI9T7QMr1I{sG*rMl`0D3c^wH-9Yuq8&Sf@A!i( z5$~~nbj!W;Y^}mbU8DM*B0a*$gcCuJ-D@f6IUR^gfnK_J;*tmd)=TD&2lIv%!M zuBKu{f#tnzK80Nxv@-btr+2UVf@Rn9iqDqnD210zdoVC7p9~ZFPPN>WKf@TS`Dy~D zQcioIS2R`;2>wiPw-b!HduTe`odD(t85DB{Z>gnRtSSTy;mRFzB& zby*DGfs2&`Gy^9Gd=cHV9d{TYHUncgu$$K3a^EQ(AWPu0?=)C^=#;f>v$bEjkuV=H z+%@Rmj>qz;*owa0*5mpvT7#lc+z$@=Q5>-Tw;xp!|M>+zfoL&ab!35Hp%5; z&F+Xf_eve{`XkhK$pUA0t+jvGdui4-DG@TJ>i>M+fdGyzpAAn=rZ}oqjh~;v{hYrz zqGzO4Q4yO4Cm-9ioKcx((H(v##ocxUo2u4|fJ8vWLb4a1-IRgQ#NGC^0Eqj@56m0! zGEO)ZVId<0L?huZwOsDZ!q3Wc9E05sEn6^3A-`(Vtk2H$gTvp&sg5Znp7|dYzu7~< zu>lPd2ofCf`fN6P{akfLBP(n~)#gow_en*2oMQU&>LECXQk%#!FVMBjf~!bPSzih$ z|C5oVm!CYiTTjW3YW8j3Ts|EQaw3y!hYKX0|G18*>NdGe8e#eS$2UPwfL%4Y zO_#GoO?M$&?mCBFi(bpU!Z+XL$wwIghtbQn+gYkWsjD~`oOu9Iq|0fN9m3CFADS(Y zj}^-m*s7ma)Z`ppf0QDcxWij?ab^>$gF(P(Vvr&eS=5#K%tBwZ7_DYsiE*h#yMc=< z`is^z`JLo@xoYtyO{7MVwE zdSPl(t7|R4HA9L1TGQP9Mq@D93Ikb?&5=owz_NbnZ!+j0A1=>$sVS@6Wt8)>_xWwOtQ;qX#+n?!)vd=&(fg9 z$$t@f)kKkU$$|#KQG61+SprMY*pfPkOWEys8^_#11?UipH3{>nOFa6<2R}`(kH#Lw zLa%2trkeZ}h3YvbJXEC?ePCwp<#@SC%k7}v>^td0;i1W@Hw+v0i$yn=n&(S>hJ-o7 zhHEk{1<@ExMSw2B#w*9EPJpAaff@p5J-<@GYtLxo!ll?Y(4Mdl-`WQF{ChfO?Yjk| z!z{&fU7spP-)l1W;!FsQgpU+Kz_sR7My+=IBFH$9eQH57^xYEtB+$B#>f^mXXy8;* z(vvh~&}Lb@>)t9=Z!)2&?P{}KKK`_0B6+Vdh0)GN$@N0GId?zoP@sA>zNEzQfd0m# zY%GN)uxyd9d3%7j1lZG@1Jt(ky=dRC*LE$R9vlhGpS;}yZcjzmT!LrQZ)HPO8u#t_ zqLX+uVdDj=fywzNH%+ak6dU*4@?5G$Md>ysB})#hY~LGAXq0aOZBNA9--cPHom~QN zO6Akrgj7-%-D-t(cr~2i!C`bh#IUa1?m-=(lR>Dkr+rD{dMEqvxvHIlFv7C+UO~?k zw)iZZM?!_{=Ch&Xf42Hwc@ejaIJyLQHSRqJT@hXMpLe(Y@{sjJ^f*1wFbjO?PK)!; zI|43B2aNc1X&&3yaDz<8-q(xM@ERO(s_G6VsA^PM#qz7%YwvN9J}e_%XSA1iG!rBe zzOXu&EzI&B6TX9B2JH6kx$2z3(Bp|JU;BO$g5R-r`pr+N+odUK zF;yUY;2i$Y&Asly0W6@6x5Lzw$7qTl9(gtOF;R4(C;}iyPFLvVri(qXT>;tj)vPhK z-rvv9nU|D2(ax&@&Qbzu+hjbKyc(;(nYwT!Cv?YY=d7&Oy?aAUYbyt;!t695Dh9ix zv2~v~5SH*z{Epb*Hz#~1*7{Nv5@)WNa^_QPe9)yrYD+`D3x}J&qA0lfVL+aH{0rbSZSnhm%{O6vQMV3SNA)+S7Juu6E#ksus&^xv7c2N(HpV#1+kbEc;@x z#w%koSCfsw0CZk9SnD+_e9(WwR_-HK>$EJRZC)C0k+C^!#A4#)hi%-v_0fnobBrf2W88{OJX!)fWx{c_|&oz6*i9h%i@@HsjiOCEsq~xbQ zDRX~ J~@#(aVb3Efnb)sp3v{tM*(#O5Huv?R9Z$4=jV!)?vEt@=^n8(|kQ>-~Z ziOcpC1v;`H^19(^B7E;Uuuuw!BnCp;x~%XgPtOykp7%o*S~F_>PFx(8GD`Xy2y5R3 z#_#GzC+K_6HC=mhm^8yltc7*a@ilH29(;Rlg}Y4p8}f$v5}Oqow%OY52K+h;O|^4+ zWm6JsAlH#Tz!~X1Q83iDi z7>kw7eM9;o%UIT7zBUdBm3(;IlCd(_hb%W_D`nI%m-Vv-T&XE!L)UfSKA-a&!a zh%5(0*1V522A|uOptKwA7{bO^83OH8vt==A$%`BYlOdEg@Zums=J(-cI)-HiwdzCk z%{&4>N1f~nF2U})Q?!=-sGPy8v$?T30jh`CDZ8hRSh0Tnl}yT-rv8SCY&l>=vAlET zH@qEK^FKj8hvD+4wW692oMPJAn7pq;_rgM(@LoS>{*8@%Rrz=F&s#d&am4F4fPA@r zLOq>_Wo|{V$(hgY?Bk9vJ+h~`jxGT)oBAtezm?A z(Z0(eX2t&e(KKVZ; ztaQaJA|fj!)EMzuS;yR{;6BFaU~pK|B-?OPE+a25pOAzC)OB`E`zlKczH4~)8{wRG zn#)gI-^PCzeR7W_8U(w+Kkv|fN*Nnr!G3bLksyyM{uu4tNlNvRj1mS~PvJI7hwaVa zlLkJ0*74wIbugGD#Hzzx*9B!1czQLMmIV?GELgRmO-xz)(oY&ziUvKuWVJD^^Q#l= zrt(od_3%IaApEcz*fm14ceB+# zZaV9jX3x*J=Mf#c+lRQ1`c-`%r=Ih)rMYNNOc6I{vR(IS%HSm#Dw?yG;HG%H`=xFvAunF*NEvHd4; zWU0C8bJdvm{zWz+%z=w~q8~by1_!4h&CJBXPnqDT*Bdz6Uk`w{ z^@~mt1n)xUw~|)c6wrU=C^3`$Cbv0b-BjZTh53=FKSv@m_y-W|=ZFV~+IQGk0bg5w zL#v6N$aDY9VAFa9e=TBq4Q);lj#vK&?i>#n0$c$H$4@zbgX2qB?`ZxBj*p=zyh0FA zX?uHS0-~4IeFgpE#094vdE%kcs^y|SeacK~+PQZL$I2@n^9)c1s$aiZQ}lKeffE=0 zM3W(}!=J1?*$w6JO-eLN>Hm>YB)P)~&x-~veI-W06*PK|>*%DcyO`d8)A^h7;Q#+g zd5D=*0!XJ40&BITm%li`2@ijepwxb$W^(?{Of9wrHTZGB#oE$&0SDCE;OISEtZ#6! z_`f>*d1`+RAcV8?MA_zx{b#)+!s`ZpvLAnG?1eMg3fY)Z5K*uRj&C03Qg*&{+v_Mr zahOu{q#QT8|I<#aYN;on7V=TfKRpD_ZbNRwtUr$UMx%QJ?-ZdR0n4_*v5R~)11vi1`*otf6u>_c2p$f zxWW8V%9M2h7S3TtJL&g>*4%BMmW+u=o$do}{2!&dLG;}y))&>kXB~*;y(pXmGu;oL zAAb%RoCBkU^gbU$Jjc`#f6 zmArpC<$tsg^tu7gl?zi;RsS1eE1duIo8y7m-97y0`2Sa5zi3}0P;-g_vi|mo-+T`) zLK2a`Oi}zT(x*uHq;5DTbpI#);y>FW{7uJDGun^(ukQcn$^U1Je;fS&n~d?g_{oZR zyJ({%;M#H0;3QXtmktsNE=lH4B?B8j1jypLSomB2E1~EI)4c* zJ272?`5%-yqYm_nEY6B57fKgjKLwSjIEK%&EAS-ajrGPvTs!!Z0Qrm_dE#gF&-MRb z%L*>D6k;rtB()|rZ7q?nGw*t)s0yp2)g|jTAlG7AqfF!yQt5Czxjtvkd5Ug zinSk@ev?K}J255~Zg({gq#l7!&6k!e;+zU`)1NJftC;8voz>$aVrx^3D~-thq?7UhB(@blWG@eV|t?@gUwC*v(1{2gX2#I@jh0XkhcYm!^N z4%SjIzc$rYYNV|kZgJ@ebbAW@w+8=QYGb6#&SKmce#j0|-z=BJ!oMMHz|5Fvc@RiBIT>Y7v#dPdDI_F($Do@GKZDHjZWb?cJ-C1;(vv}0IIKiKrPR~mL@ z*$d}o3OLT^GhRRl>l`nC$M_Va;Vr86XfXHsy!kM(q2rhxiO?c_F2wTR3oN{ZM)RdL z3vFlK%r?wqfFB+#YggP6(MUSrWn+AyFW>V_xm{O(r+99wu2^A%ewLl_rd0(50rai^?YY*J*i-lx|}5j6mo7cAk`NqgVcHVw#&G( z)vuZ`1{MVkubz?T6&tFI2~_9k_L8!A-rVi_ToAZG+X1ElZY8uSBcq?{O{Spjr3spG z5f$UoTT47@$ebbo`LNbI$D>ZD+XdhVa`Bnz;uxl)T?0b#0Ul{!QNEJS*}>=VztRCw zdV~Y>$+rsyupelv^CZ4v36A#)V zk9{4Efq?-a-W+cYc(%0xh-`}^<9#S+z;H>}(v6BhO(felj(s(Lq;8_1qb%nfgJmJj z*3f8ZH8i{6-Xvvb>7@Fw^}$hjNk@C@T-ele(IwJAi(@rx#cSr?@jy?^)b;VFCRkBL z^Wa^(PQYEEOsk-7YmSeJZjFL?cD3tYkm1#Kk=_yp`PLprQcSt_QFhb!^cmjywetRY zQLCC505gkv5|deIQlUIPddOD;92OxL+~yvdrv~4(XXhhQ(bk?0zHM@uA+hy2N=bho z2N=Po$`c@F06*0dy5ic0-G!eI*ZAbD_2Te`qlXE3gs z|KU(nNHm^-Rzs&`<8#N{+WS7b{`6LvE9_w=1Xx{hdCRFwmKL2(F=qQ{iK*iRC_j4= zImJDG5q-VYq;Zkc`#zqJRU!EPkrc5(giDn=jff1G#PD+J*6bmE(J{#gTZk}MuH>RG zZHBs@(lOSuYQRxqp90AOsoB{-MNz!kSiKJU;L3aBeIux&QOTtlB$u%gTESo^;tpj^jx@eYxu_vVOYz z`H}w+vA&m%Z0odngU`^iR*$~j5Ic-(rS-J69QL&1VOUhiFP?#i=Ud?H&l`@5EfqP_ zZ_-G|C8~+oe$@NHBOev1BaPK{G*`~5fzzbMJjcjsTvT8#Co$tGR_*u`?lZJQnl(gx zmgbXtbfp1tufTNV96vXjQr_@GWHNFNPQtq9 z!Gx+)%=AMncsE#I6=IXcdTQk~J#aw=nSg{qX0ZJ(as1mD>iMk2fLtkR-KD;K7QVCpnEU18pwAs7vmnTBz@FIuej zzv=G?e#1*LQ4(*idZtBvkkwVdkP@!tM&W=t=QV6*?&|qG8VsK1cKiOu#7dz^ubS~> z#OZzGjI2(OX+>l`lvcQj0&lDR;~Q$WZ-d5hCIse3Rkl6!F$>C!$fIm)-xtyniVB>s zvWQl!s$pga=d<veuseW_pIxgn^666I$-R>+l|xTjGz3~mRJxV-80NPg ze}qmr(<3V+gVO3Og@*RE<77p#l5>$G#b!=qm?_NiBhjsOj z@qpL9g+BwTXHTNR{}_DGicMtOY9vc}b8;G;CfuFCL)`tPP^Qvp>|KEP4HBS#4qH3z zr9TffX9UAJMy8>7dWgtp1}F__p7Tya5+D zh3GaW_`TxpL0&2&+k^s`@0?UjVDr9*3(HNZXrhQ{qEJb4YsY|5b#eHk7XW9hzz3$! zzH3M{oZdCI2ik@%hZ(2*B%N)3x<_0gWdM?(;)|*J)uGA50pamf@h$(E({b{e z<%!i?rC%dcIe8k2@oZ;Qn#hU#Fp|3%#Pc>h%|HE%k1L*Xs6CyydT4eUB6hwGZwSFp zqfJ%l#gZGR)oYDWES;YwePg|qeTmx6rHk3c*{#mJgXYjaV#)-a{I=FlaO^NXfp+2xsE{H6$yeMo9q2NkE>Z`-L%fzTzulF%-3qQ8<{yv zD6}xMOmob*(mJErg%HfM+bXsa!XcU*OA8g(PA5l-6Xb;Wl5-^1|be<>NCX5Je{#V;{94uXKs`XQkKn zE!@tHq?+vPdTJ`yZg-RH8*`(ewFHwR!XLN#PK>-9M`F9kpZmImFZLedX#%x=8Gg-V z{f@KPtTClQ(4N31h_4yreO9P3KO1CM(r(i!PbGZ0tx_D-6_w_Om*O~aLT&ZYa{_Ak zRf*AVgtE}SQF-cnLQ$DtnAIRZo{_J3`$*}?uZ^w~qd+t?s6mb0K}Xj|5uvLe*^Ow^ z6Fu8x6Fyff9~87h&+X)Uh8);MQo2?e&q(#y6395_T-CvdAJOUnr*{U{_Bi0dmV+oZ ziq~Zx1Q@X+xk?WPlcmcsIdhXT6?(rA8ypY$=r`&y%A*1&gFq&c?=RD&p&-@bDd6)V z_MC5K1J<-Z16f(S?#@uaM$~Osw3l#cQj?n>&}B# zPqSIBEu!L>`q^q!r>WjVvS7l~ZQp>Tc7<(!W~a+jVz|rKiw-H^K&c{0ee&pzj>F-j zzJwJ;B~jDr1|Rm8&0vwh<|`|M^RI@eEb}s48_Bj-(^RJ6bK%_Q>Hbk}R21no@8l;o zwY_TJvL_7NsMkuN?QVy?-=7i6{z0+zWQ96>5Xk37AQRoo(-@5^Q0KVy?wd$StWvHL zb=>t$3QC(Cf(cW4)3PePhJ0jGt=N00|8RL${g+vHtBuo3l!LU+%rcy~SG(UA>MpK_ zU&Y9aft}m+tVDZXG3<0=>(E^0UW`}&tibDi*X`vgj=mSM0UU#fIb@A*3z*}n<5P)> zl3P$ZC$y3vjn=#8>POD~Fc#?_laK_qUNS}wgls(72FELMJDAbYs@(sC3~_B&`%3sn z!8+#mY&>WbK{pLLS|u|`39@!4nKz#w+Z}RKN)kCHe78+9`~C5mS$$wmX4+|-G`67Jud@%dCp=~)`k<`%FPXdk=eGl zlLiX(TZP(f$r0UCoW1QoE^tT|aJNw|R7NVscA;bXO1^d@X4rGLIQ;aYf!x36>3eTx zktR>Gc4t@1lV$RJ|oizCo@o{+8G3 zmgcKp#*$l^d8EQ6uSe|S2ipu5FC1u|130`u-r(ECzR^Hi{l>)|TgMsFdqM85;2g)P zLF1F9PMwf%B;ucB7zk)?Qp;QgepSpSD)-9ZH`!9I3A7g+e0tQXp6VJOKtw}BtEr|t zMLM2bGBOZ*B0KcVgM;knHXo$4y)tTGta*FM2N?urH}_edV`h?gJGN4{KYchG9XB(jr(d(?#bbAg)QZ$wFNbQ)KW@x^({h>Bo zWr>)7b<33C8eZ9@$(G5(IQQy_8hI9>ll4*oGiOEuxbJ{6^ z#cqFI8AxBTc6Sp?zziyg(TI`$;_Gw_gMXUvf(BQqd7akvrn7v5eT{J_-FY#ZePey! z0^N)Qlf9#((M3f+#;jdwKRQ$9VC0In6hi1Sli*- zuXGO68{Vh#RO7A(HPnjZWdyDz>uB<4Wk(t>D90R1^i191oM6NPq@cmK{){iH+Fr0> z24ED*2>ZGqKepU%psqNzqiC`)MDP(9Rz7dUg0|XL)+tHcXJGZr+cA3>;QII>Y0FBO z*FgQ|c8tt>2F@&PDc&BL0S2-jGM`SvH|tJqyPliAq-_}VnA5Pa+qoL!xGRQKu`GfH z=W}#4PI$fGSzdfgpP5A9_epq}?~~h!AXxj_c)P(F7gD#dd%|%tP~?*~vb_kcbl9OCgH+2xYzf z+AmM7EA%F6pPU`abrcKT)eRR^0lD+2sm*q404)&lj3EorQQBxP^cL zjU4Qb@Qsxfov230z`E(xL`j}FV#b|XU>nWy$VuS^jUibZ$A{ux{_&qLKJG;pt~8#| zTEsq46WJsYmF0XhXTjSmW`}>|i9e!FAZWo;bWF5@dWoPK-PE0EVl1fc_j0SJnY--7 zD_*pR+tZPaeS(v_=u|I$39}<`=~~R!I@T%&AVIC<@X=*oj4>*w53h_m=UGSKy`bw$w{_gabgLrE%-=X}b zGGUvoSGimIuA9DCvQ`Unn{BN9r($Qt_GE)?<%{~HdFU^f%Mk(zf_jZWfz@vpzP_@H zwJ$7u`;r39(|p*0h|xh<(r``i1FdN;a3`XY{zLVk4YvbSjFILdzj+=u@_pN`_@bRA zDCPM|ABu3aNKpQkiN_U}>cB%;%{E`oIYd*4dp_Dbf@|o(5b-*oj?}2zb@ByyxxRAF zZXrs}T~eimuBOE-82NaZUo~x^QY1L3x6<9f$*qb`U#O5yF`nEtKv|;vSp@^qaRrDj z^6WpaetP|nyJK8X+a3{&k_RrZcu9rs=$D;DyJv2Ry_HjbjYL?B=_P#~%3A~jcPRTW zu@A_6*^-*5z^h^v$c2#OUam5r$R2mOaZjbI0ZmjbeILR7jr*LI4rRM+RT>t9I}bWW zq*S3nXye`0=-i{jQJ*1VTTmFPNR&IOHM7pEUDID-<%;OM-*R2Z{0}p|gW{F_lkL+Z zZ)bteGJU_SI*0-fa7Ub)1J`sq*sQ4nRY>xe^vOI{XmkJtPo(tgGz>sf1^y|8GMjUt%aX8B0#@Qx0&jx!Uu&(Ck%a?=Q=E0G`z zs(7)u_z8bQ;fvSCGXc}tQO{i?8Fz^EJqY!jx{g30d2li8W-{Dt!2rvA_*_NQa6Ikp z9W8KlO_sIj$?@Pc0X=I5F?CSFK(v+EPV?rAxfo7A8%qU^Q>=hM$G!sP-V?c5rIE_L zxH)LPg@c_Vjqnd-pwRT8zC2&|Jjx&Yi!0<~jW5?hsK&BY9Q45uEJ*zEF{gMXzRbN( zJRKLbPzh-HW6{_oD!nP%&4x`l zW>IMhJh;4%xKy7gOafK4UOkP}^L^FHctE{XZZqySNm+Q#-aQ;Z1VDJKxG-`y`|Az# z*O$Q+;s_)C3cqeEO=mr2BbO|iHDucL0>lbL#VWt>=~`(WozpoClH$2IA`T8KoLv=g z#ytJ9?wJVMb2Nt*5KvJh%1E6^oLwPEIB(-_(a0ublBU6_(t3fvw&$$_{Y1`RF zWZu0IlMhG{-{uh5E1NS{qm0~A`sNo~aYt!@`xxi@(y*}JZzrqsuovnR`F>q8 zuORA(bjn1Mj!qWy!OhZUazjUZ&u85~e6CX79-m7;8>~M@@Vt$7j5g>1)*ZA->m`$K zlxWk7?V<*g6Qxd-@U+=@d^>w~p1qL76KdPi;+mW#GV*J|m$pn{FOJkFrAs9C*jJBs zAYDewX*O9iLAm;u*IFJJ{wG{t79b{24@rq~@xigKh*9Rl<((PESb;&%h% z_C`R0+Gk%CBYjeV#a|M#f|obM_Qkw&QlAl(DrkK*-tuT5g~U^NN18$px|p8Wvq1}5 zPW^{bAY%@F?`n`dsvrB12OeK$VKda8+GY^-?+mdCT?!&syF|aUb&oXGO$3g464u&V zUgsK!;8YCK!5c*0*m=1hN&%wn*>(51|K&8_%&My9K4VzH^%eW48a;5qoZ5P zHlNO4S$7SO^x3NiXk!|WA|e5p`G?1dlXX)v$@t%s=$eIm*izZ8lofQYzA8`5r2?(q zdq22wS|@|-wp0Ykit$~nIF?c@-L}WWZDV@OF%tuuT_e{p|8?;EpSAu|5bkv#^YIkg zifNOwi{++#kk2#lniX;>nEeX5y;Kx{4U_e4 z%=W3vPxz>W__g%Iz%t-ouG`hcvTuF8PWA0jLIMY% zyx>E`z%sYiWbymJMx{`8Su*W@U)iCu5>e0Y+dBv2cSJ5OU$(Trj*5RRGOf!yy8rli z<#`)*EkHxU3_)m-iz0eps`&WT=m#{}XzWIUpC9qmUhOf#$x{2?H!YqOvTA4;Sx^jk z@xQlLe`?#2f_EKA6BJ0MqYi=JnFP}gu3$xgRnSJ9{pBI!Im)LFUE1gH&t<`jA3%6a z?ARUsGs6AeJ2YqFzwRIim-#6oUJyx09Q0jUC#p*)d}D$VZ>{A!+;>>h`)UH{|C8W?;~>F{vqnu zuR-V?fWW^Mq@M1%PEeqT1B)#!%BR|m175%fC{K;h>i75z{WektP(d9J{_-ue z0JvKn)4nDI{GA*tY>zkAI`LCn9iAYlkx(MU=4#NT=f(7~H` zDr5lw{zmK<&o2>3{QsDMYHDz&&6D_BLFVyr**e;@>InJpkR;*N=i%l-`J9LTcXIeK z!0iB2AeYPxh3jb=_S^h19=JAevHsG6!Fjm2@JemW5j?;3wEnH<&?`{U=f9qB&ryC* zujJwUA?(wqpAn4C(f(Et5hQce>-vf0JVyBV5C;D?4}v=3-^x)T4Yz}-ywv9jxF4?U z!KJ!}j$yB||FzhNFVqO(igG;#sQ=b;IqJ8bX@!JDa3lS>uKjO)XONA~5q}H&`b{v* z03kaeO-W1X>FuWVJGn%F#Z$!fVs4b)*UlmYT5a61`!y)E1iak5d;o30&fp{`Q^M!3 zX7tvasf2etVYr~DzZ;5>el8L+`i1n|et%4xBOc!svwv8Do>iDg%2n|d13~IuY%D$p5)B?E3)P)*Kd)KNs7&hUQ57Nt#*%!+j!n+IbMY$=|;DwXG+V4{iwkF``TN zg$x#dti(b2^P+7=s2^VnU4HU=T?3-&fu?gzX5uxo##qmf*JvBC0k5mahd#;X(G!si ztLJ2Mb*cU!l9l>;B%^FVDoooErDRRLg6EdJ!sg@2f|y@~*#x8pVypX{u#a(b_Q
Z30vPNw^-r$%2i?uQQ;B}<-8L4@-$*86z8A6H)4s4g?AIZD^s))tx8B85hn2JAD5 zrBeu0#5+Jg8(c=joF3i(SeowzsriZ;Xuqx>)s)-%b+Ra`9d62dEqhv? zmcD3s^j$o}tm#bQI1MBUl313=#G5x4*C6Bd8P1UrLBrU(wErOsW_&PAWLqas#Piq^ zAok4xZ%*phaJ^Nd7sP{3^SpJ()~v_r{FRfOdK15#T*1)Pqjsw+z|vBa*vn2+NqPIz zLeD)v(B}v3%~d$Gm8=Dkk^Q1zz1{1f4>W6O{V_BY1vHZW9CTs^Rj@vavYIIjnPg4p zRBtF2{V2;MP;KvtB*9572_Pt=tqcTz`S1Wv=X?a$S6Tu{TLq%>nt*t(lwvY}o+~9z zzET?uTunyJ$sPHG#ax^9y%3udUVJAC(GwK~4^ z=&Oy)+jb-nF+5c!aVM2TLGk4Mlox52VUpxQpg|X{pq{lbkO!kXqE(qNvOv7bo`=_} z2nfkNkHZv(!m3yX8U03<1EizcI~UaNiuioVYS|+@qzF#{DEK+X*0ZNai(>U_}aSx$GK0c`$8`xls|4^lTFq`i_d0GUg)TZ(x+pfD@GsJOUPwQFxt zfc2AXH(EaBgYBGs5=}l^V$*Z}{)s_0?EY+PP;x{(`^>ecig7dqSkj{gL8m4Vk3NUO zB$KIobNSYUz~h;X$cA4lPC{G?@+e0NXqIBro8AQo2Bauj1Ls5N`6&B}@M>X?qL&rb z0hjI9n@Gp|lX7*#6hC(rdz9t`;ps@BH>7FzZB;Z06_cx52gu)sXzW}H!bPqQ5*638LQH#dPa~Su_U;au7w-6#NjV-Gc7iI;DVk$^3c4p;T$Y>1q ze?3-xzj~j_ZHE}2e3qsKTgLo|%Id^EqhU3_-6_&?dc^vfohdTe#Py5QfD9o~meU~tIY=_`J=D|U_S zOv~Fjy(b(yF&2j~_3tyqD9Ml=%EfP)%|2LUi@aq?-eI_@qENYTvwkm|bK6K#3&?`n-Usauy ziV?{#I@_g<)p$Mn=c5Cc_9XOAUWlSA<|me5rrQFJ-3;_#iQr$J8$5ncl=}9p*8u|^ zVM17iabj;VCdlUkc4H&YuX38&&H`w@BUG5&tf@0r#;R8OsUkQOvV&v+2_pvDu5W=9 z!>P(v1}UfaA6rW0_8uEUST+^&C4DOG6zEJOB!~e1s}CyN7F)(oqDW(!-~Or~S-;Jx zGV9HwzCYL+(gl+(S`b7-4?DUxUF|p?4+A;A%+pwBjAz?>0ppeaKiq|QC=dO_hxk64J__&8jPKfWr^*|$a1U;CwMI?-}3 zqK$#gmyo@!J6*9I#6DX;1V`=bC71)wu654ma&6vStT~4|p7g9ul9>tdeGwzSUp)HJ&|H`17gGTw}=z zkHy2xZtJHEpCNt08luqj5PB^b2w}k$0Wk?v^xHr+MtdMq1%og5wpc_0?lyM`_0}tD9V%gx=GC8tXtB5B3L>5^o{;yrK>cT z7ZV-v2|vO}TpZ;Cp(*U;Do^5QeNDa_hGC8N@@3h6qTIb7GJ5QYWLHN#kChR(7Ro6q zQcnPik{GuGq_rL>4q_6X|wN< z&d9GEFwd{e?ZK+LvDy@&8~0cvrjd{AMOdbCqv26x#ejEBkD_dcHc3Zw!c0%b;9#+! zkn%(F&O!8X?D8%l@+HglGt88n?@MnI9=P^rTfUJnqVnu)gQ4D_&CiwNY<@_ceOgoB z$7Zoa6dzjdN{tk>jy3V8qPTSw?~P`sc!t_%U@( zb@%-$F`Y2^=fC21-lghkbWUMt8b{y1G*R*K6AVTiL604jEa^CMC4Bhx%efBb_eIxA zWVG!ASzS5Nw=tETqih<3@+tNATaT7t-2J1ji4^(uciXFKRj;sRDwsTGe_X@9V`7nH zYSVe`)2O6Zabh1bIP*+A_Jtwk;5FQLJ!X5Z<~aMeLwiEd*3*oPrgP{99#Z*hJPr*l zPxswAb8e351!LH?IZCM(nctq(1-8?WlC+o*hF&r#teQcxpu_rcqD?d(DnIhd=ZcF) z%E^v22_AB)kP_;V(GAMct~W}I5Rz2XA;xerFgrrdthIf<@0mghqgxXwE{UIbv)!0n z326J*Xh@!5D0bIaTD4U(A8&qOj~-=0T$mAybmw*_n{O13;pCi2+jRi~DO56|EWVku z2b{*cg%figT7Bd7_4TtPlMWMQIPO-Ax3txp5n8pi0dQ+uRmFd32)KVq!6goM&e#+r z713dY61zkQde ztB=p_u=w8fmA|HSjFHU3;OqOG(1hpO-&-2k7_vCVn9p4c*(GU~8HPsV%){SYqcVJT z*pMR=F#PQM-2!H|YPl=el=x$8Ze^(D*0slmkB-d}Zv?|D?GvO8_0Vw`wcO?lsQ2tX zoQ8{5LyfgCXC964;LHQQgiaQLMK7^ls1$}rD`HSi=6R78Uc`7Re3FRG{*;i&@V%%3 z(<+l=>BK*9`)=z&01aqB`3CV(G+It-Vv?L9iKJA|?QsP8c;8YI$?pV5Q5pbEjOPd5 z-%m&;ngp6<5_cc;#?1uk5)*VE@GwPQk0SWx0OIMjyB5ZhG%l^>Tnau(G!HxyH83bd@7Cf7ym#qPq3+3NVwuq{kBU}6QI+DYboKyjxg#7JhN~mnemP!6#hA4{ zTBulx*|HWiAm22G-as`Ab17nE255u=mITuuSTWBv%qS9t}mB zTv>HPx;i>a_EW!Q&uk)ZYYY+V+UWjtn`GX<_4KSN_|`iouwliB2R~ z^p90okd3yqW1F*Jfh`L=$sZOpAMmTjxU2J{nvDD z5`H*-^jgsNm7f%cuqV21>b|%NjC=!aJh44P6n~YWia%Qhx_5Z ze*MinrX-{+fo(WqPnjE`t#K)HEd1)1x+QiDgQA5^X^7|pk?Q?DMvRJ-@(3xE2LyB5 zI6=E$GbV0EIy3CP=hV@lEQ^vuGHL0|^|8o&s{iu1NvxB0LY?2F0?@)&bn&m-^?qg= zbL;pfiR8T0G~&9Mcs09s+gq5Q>l9JaEV3C9`~tR>GrR@6_pbeNW1>QgxW!++pG-ax z=GiSLmaz30{7$dQ+@T=Jw8DN>3h6|33>4q&p6dj--+4Gb`U$&GVo@Kba?QHm`Y3?d zKvJtki;k|+F+GIpUkmlnm%d%1lOBqDs`8|Oxu^XLX~C%{K*OVg? z+mkKt6=1OJ#yjo{BdH{Nmo|4|EKiVki2AiWwPG*OE1@srh!8A^;YvSy(s*`b9zzr- zz1$@rh!Gyl;>e(AZeq6K|9z|W*@n4Zt3b{}%a)KfyStSr*8c%}K!m?|L5hkVZly|N zRV}RJpbg~FJ;L=x%XQ$<6;CqeL_SsSU5UUB7gq)vH84< zaSj2`vnWx;<%5;hA05x6q1*^a!Om8fuz)8-8@SWFlwtw!yZM2>g$*T~?J?9+MV1-O zqxbGd4h~MlhZi<}O9*>>mvmFb{37oH{M7aJzs`HUxd8mp_Mce!s2m+C#ItCBIt$lN zqwMSDJ85^A+HF3%KP|!2BX1j&l!z-Vn7)f*7RsFSb70L5Pn>fz9Vxz>hTwV5oz?4y z<0yN`qAt_$@4k@r9h~1zhH_-Q3ijiElp58_JLNv)eDL!Z0`M50Qye<|h?gm#Wob?Q z#;qt{@Y9nV8S$ZyIDhUMe&Hz~(ZsDrZR%Gl{mw(8G%=VfCr@xaFbQQ{Q>r&^g7M9f zjQQ;oE5P3mz;h`gI5cYk>kQj*Y(%ZR>g7m@3B1PXGk@?jJ{whSBg)kFplJo${0GrO z0&saILHAB^=5in}Q)H+cSW%-<6Kc2^=dUIU=g7i?$UT~1AO8oZZUvK}q={RthBT?- zmOFuc^OGLK?Q=&se=i29ss`5X6=~s71(Sjs6=ueA{p10z_{Ni=td3KKhP16;iemXq zl;(SoRcGWhZsvr~nTtGmKz?1*@Y%Bh&x6TKSTdPeC^gWs#F|x#e+)9W45imjCH#n)Xm?jCo?68;~S5l zQn?vTDmmtc{-j58=I}8R99z+$;zzc$_+O7?MR>fgF92W0g(x-5jWp3#RVL!8KQS^l z`c3Ff1(RaL2cBi&zWekX^b;ivG>Ct3n{8VTkfLXUmJ-Cogkn*(GrgOXL-T`86>~_9 zc*yR}TX>LcfStJ^S(#}_k^?w;*^#vu6f3~92)lKRb-T`!Wo(CH(N0uY3`%9cXG*uq zxhp&6@jh%?xg9?xW9$qi#D#^EWYv%fgFG*WL+IHqcD^x<=)(5lwBD%WjJLN z3!U-<@Q9j?aLkNFSx=j^h-XBoxbee)K2$CK`T^O8?LTiP7(+~Slt~N^BHOkeJv%kW z!BCBytQ2k^TgTp;F&J7{qNS8d)XPjNx9dUkN_OO=M6q?v1fHi`q9RvA-$aKx9X)Z& zxX$Wd_7Eg9!rnp;d0G~_Do@yZ#q8rNz~xC?-t5JJN2!?GSfZX0N>GX|T?Y1lbH2e> z*R%FWAi8EYXc5ixASmCmGwm9bL`xYWFD+-{o>)qiG(=6Jo*UXci#DX~fZlkNwj}<+ zJ~r;T$RFXF)UD-)Y58WfD`)u0_6WP^&B$}6{5-202J!wZT)YD%J414kbI?@JCdfC4 zOdAg-jcJ30;)8)dYrj8PWc_I0NHzsjXGC{nyoPP1^1{`0aeX^}U0T(F{YkYbVIV~= z*CaDJgqQKAH0#-wI&S7jvXVKqZ57w!R8dpTL040YjQDUOk~L`5a|lgJ=)V_$n-KQL zZ!Ef$$b|mgFxOEdEAANwwr}Q2m=X@w#$+W#lB8RXAN#bzR!2hoi#zPvypIps1hVG`6uHBll+P*9pv;gbLyU1OTmi>w=Ti3DI zFBw~F3*-r*1SRXzsP|A>yDOsLBrYr*%5tjHR+2=LhJ?5$zPwN^LI0tHs9xw2q)!Ln z>977-e^*udoa_6;!L!f+T%N|M#RE8}H<)PytD!{_H#V(c|D!~VEUnRz#1r@&YWL_* z+X|Ms^MH2(a9KD9dqnRDW%Txb3aJ(Ui;HE!djakgAp-mqGZmheT>s#|8%+3K+{305kI^@?L0cn( z=&(4P8ug%aU3YTg?y`T&K@Qyur&6t|*qfB6(f1X3|6}u9|KrN^Dk&p6ON)%y=iGm; zM1>!QGNQhH-h4?h{%rB)NI(|m7N#ht2ERN0ycd86?CisY$5m+KkU(6zHptrYc+Au`#J4nz7c3e6S9%V3K)kju zZevf=Z`FM287l7AhgrS*Du#}3sAj|y6rDo#&ckS5N*ljhd)c=BH2(T!XmWI*<;?<0(*`p8TQV+9gTQnU;d!ks7?7M9+Q_rYVqO=M6>N=>TMiCOL zM74H3X;Z}!wQR-pwVH?e^%>H-QeJSH5z5{r-bB?L$KdKZA344OvX@s`y7Uln`evBv zKx}9fDsF8U`a?|&Kgc)IxwCo*%hP+ZdQ@!`>xk3-SVgB<*QhgK8Y7yy<_1NNb`51q zbQ8w@)EpD#Ph2l3R%nhRuy!rJ)087Ara^qva}sqb(WhrSN*4T(EPu$1DfIrV&%=G* zO!rfwSymFEYQ~iHXh!qOmfYR)@$oYA=^3`2y3D0BVU%c4o#GA^XkAB_>l=5n^;{rM z9yM??HKuCA_Bf;zY;TaqDdt~WxRIiUo3#;Xu~Ee9S7Y?hR#?3E3Rrex2-mJ1Ww-ZH z5~?<*aRp~;)~Jc2VlL^Uxc+aDV`_$;N-CkjiP+U>L+4i2F)Cyat2g8Ejc814Y|zO` zCp#mFyZ2-8m@+4K1$e>vscp9ZJL8|Nu{||vx$^w?0_RiOmP$2h;%1@Dl|LKbP>er6 zazU*k4st2kYKAl!I+)VgdGmog30m0e7bE$d`G8v9`RqQ8gPtKt%37$V$MX1j0`|@N zGqzQnu#knFI-y?ZBTo~2@CWk_~HG||}8dthhWjWqMxYx^HPqr6?UtiD4qfgN{vqoF#6@E{lUf+Ry zU)KCH-h3=90MEqd#5&gA*JJANE*L7svu~{zQO+G1(7asU2hW+2{I<%Q%SN49(6ihJ z0r)5Hho3S3&kViJ>R%5KEY-)xLXYg2P$F_lGi1UKI4QRGEf9d$NW0CV<%juhz!+M; zUhtP1!19qZNNBT&Nli@&xq5)TS09ru%Nr=AaWAU{Eg z%#GvHg8A*|jT{R~#lgNfYS~HPW>3zhQxu=Nf)1rWd~-@M-e!p_tJvm#F#dVZ zb1{@EXMvV1i%`D@WLs9Itf@LFQW@!S;rKpFpnBIqbgJ!&`g`}wjKJ-9ExV0|yDNI? zN@T@`@+2agdR+(5rm9o!Gg4vC>t>p196qnly#2#Icw;;LW8+!GE?Q2!MddmsNK=(i zc5cb^4yB0jy~Oq{CwZlBj72dm;$uQkc51@#PIXYve!;o-?nf0WRVLE6kn!6po841J z5Yk{CW9!=FU0~2l|5%;w=o>4KbgG)%Aq0;W%~e6 zc4{?a<-9)F{goB{pA~>-^8D~TMy`K^d8NA4chu$i-Q!#dH)Ft*+4&FIkn-{x3&t+t zxvo1NjjK{D>L$M(520#5Px?2@8!+XGPub$VoZS!7sol0d_Ss>ad!$4q^UEB(`Td`7 zfl^2SE|2$P&8&qysXT$DofZ3`W)pF3Go!r@lVMkx_SH+09B__4Z*w=6({>EvJ z-q)bx=n?d6P$G8_Qq*t9s+DZJl|cap$`6+AXEa0Bg z09N&@RLCc=azf58Wx%3frtVrs`NSK{n6nDw?p}#al*b7tXwm6KjKd+;KHH4gA z!myRM^4nXB$CpoWFWHxt_NJ0-;`DN9nrUuV`XfGgC-T zxWBp3rM~NFJL(MG=l@Elvf2c`zvWH*A1oZVfIsARcr^SDm7p8!y&O;Vu0JxgOHK5Y zf>_<#lgJh`nB1XE?w+mje!CdnZ#^3AN3d{EbM!ToNPcmNS+llL%5xq)N*jOHK=WVv zqpvRjpUrANOBRm#0Y?)pWO4p%T)2j~`V*Me(vEjtsn>%$`R@aYeZr zU28h!ei>G(&p~?3e88kF3#q0Dp%=Xwv{#iSim_2$8EMRYww`=Rldj)mubdZvZ%it~ z^66c$(^4f{v7OYQ`GoXZ%(51CZvya}I(3-k)dzPyHRPGEIJ0yt7qx$2((tC3NTgg? z)|Z1BEg3Pe8CIIgq{RfYb(I%NHHR{wX=#)*BRPHeC~A%ks8-SfNlq$%99+k-2sg$I zX^B==G#h60;jv90#&&CjiH-z`B#p}}m#`tRGD}8yJC zYf~6LcRW?h)lte$=kmreoJecSq|q%fi9e6$kLz$BI*%?@%uywa@Oyh$w*4iY#*Co4 zoh}jQ7tr;WD29(3ibrV+l+t54@#{kF>9%5AuZCzVr||IDR(3zsW!TWR7;0;vM)D`y zKjxo^~rHA5StudYm5;Bh=B?xgYJ{d6tyiT3;0y-ps)Fa5@l(rqy#>g#cK z&Op}b4QJcX>TkBYxUirBUe9VU%5yMP?DZAP?76n@7Y@g{GktJd3{_G&x?wi+uNPzX z)E}v0Z2-~)ZtYox*JC#}cz410ofY6Fgxuc8jB|<19^4BHEg5$XtYM3v5ySem#@a|D z@A~jsM`E3^Om1$O`v%jQ=c+WQTN6`lRWieVXRh}VDi0ga_s;rcr#xfF94{j4jc0g0 zb5ta1NK*2)EMkErd-|#uHh4Dib@E%l!_KcYi(=fdBLUZlId+>Fc|Y!TG~2P*QnzY8$&= z7H7=3QB<%{Ln-YUM>cIkspi1kH=iVA;eTKbYoAqM+W3x`tGye5E64rLuAeVp*JS_| z6xWL^gRARCaGKss9#IFqSEu>u`;}<*9>wT(mC%>S3BR)e@105Xm^_+FRvN@T+Qp1D zezf>$5H+0iQObxvI?Li2XDQcb5FTaCQIVx^|Kv7yJTYbJ&<+^q zZYed3wSG3t9o-p6V;v+Cb=2QkxR67(G#kIIJs2O-oh=hQ(341zs3>z`K||KQ^kB@$ z0hBV=Br`sgEi0BHt1^H=Ez6>s70=b!J)Zz8`Gh*I^ z-0=r#8aKC1;b1}|CXQ~6dD6REpeVL<>9<#z{uAc#eR;Fo@hI%}4!jS>(PPXADq9uf z{EChoQyawiAF83NA}7Z8Bv+$sY1Xg;x*vp)(QF>llWWG^88@sA)|xp4UtZ0)O;L0m zIhf|9t;kLYX7jSuXw)4*d2^EL?Gq4htqy-%^{T z@ITmn`WZDFHo(qA2QouAv|uHVDhy$6J7-9J!KQ^?+_dPxylxfIRE3Q2>&zdwiU+dR zdGp`I2h9Fy0cq`~Fut)J>MAnQf{rqE{8>B}ET@(0hl8H9Nc!&%rmga$_0S>IaMUL! z^A%TiuEJ|;Cgb-N7J%mvA8?*It4>n0-%vc9%}|!7;&*B_lUH7#>ZG0d0eFE|)U`s{ zHE#h=$_&A?nSJhc`RwL#d{isYwx%P>*-@ODy@a#&otf9AG%6~pNK_JY$FKRm&P<;> znsTOUsA*`D;}$?tkeH!NBg$Yjo+WuLv*UNdXf%x}%iPe)9|=gX{_cY{{bCsVtKDf)U^Bz(BZyoHx( zIcq%43!0;&r;pBOHF@Xxf&VIBwno=x;lx&08L9lMiQa?`UdYl8nW}c>G9;4sZ0+UB z=dsI~(V_r)y1HmfgYX^fg{apQ#`{w#JX?#p?+=A5V2 z$O*KmZiBWYj>o6Av2=A1o!2Z=0^n*bpDJ4FXR?2$=<4bq6XI>P@#yO65*09C;a_Dh zFTwr{!r!tNQ^xnEq=hbe`dU0Xs`LjOM|Y!$;Lk?CX0OjizBY2ey-OM8cowe0y4zeP zwW)xCV585hX8IO=e2!0{0#YPV_n0?y0Y&B=U`QoxbanNzwl|Hqz|`TJY2dk@cI6B~ z62ncuJs33@M*UJ2xzINa<2N!U`NI|F`dpyhbXQsxHV4@cF8F$}&$uh=$2KJHwLgp2 zoTb6=2?~3lBTwYT*|m6_wPwY-(G*i9oNSM&fvps$bKn_YBv4Z>xWJN5GG zArl32ZubpJcOO8t0$KYeDfXA;@i_XV?=SZc%w=bAHKtD;P6<=+_iD}BudQ)$96^-= z2Iv@=Dk>M#FDYN{9b@i^U>rsdqqMaVqVKOc_vjP#nzo{txfZW3?O@H>Wb7UKQ#!v1 z@}#evS-+Mu`FgTxcs-T8)?n4corx{VVQ8R-zPas zI(5KAFIj0Hzct~aW2+q3V?}KVZ_lr0@{Sm$FP=noD?{YsXzuKu$%3Qt4D(t~{~B2< z?=!TpQzckEs6CivliFZos7-S4ab`H4r0L={^c4W~a3NmXO2tWY=~u@FJuNYxZfs`d zX*r{&O`?j{wOqw>1Gh!u>@txS<*Z5k{+x~T=8;%;JQI31##}d^dxtl2@@qMT&y+_I z|D?A#O@6ThhZ#3$;y97M4a%S|iQ)RbRh*2d!EA@FSm`Bm^T0B;zb?#FwRnB+vNdeK zR*Efwu2}$Zp{hrtJ$t#0h7(TG!*MplTa;2HU>WPlcyq&#d(j1H(X19$hT01M!)x6= zdd_j8VLs!m`;o3Lat-!dM?0MDQ^xVJt+K^qj`8w;q5aQ43II>Mh2;7}Yv3JOHUiI@~Ww#Q@zMRK? z^g5a>+|RJ8$|H2~+e0``+e@ff5!!U>f^DseSX!E5W@?Io?oX^=E&y;z$XUjZ-GJq= zMJ(u9PMJk5OTvG}NOpc{!VI@jlrh)lqyI8?KeD3F@cxt$PNb!Y+&i!g-^T^;nKhUK z#xjD=Y+}*AP{w;rqfsGc`g`oNgN$_9LY!frp9A0yBe+x2o-ysKAmlE~#NpgIdyq3< zi{s`tl8SkZK=d8|Lt8nM+?4qv8Yp|r%3|?fWY6OFo!PQ!AO$l6;PG$RvuZVO%Z_7a zkJRsrVE5#q+%M^byF*JX1OU8&6EB)|$9?)p%3A0m7e#Y&?F{xMv|xo(cdU&hJU_pc zMY}&UdXd`qJw43$dBnza0U(+5T#9S6td6+w`OS*i%FG8v*u8obHVS1)=I%;+W-(}HU zUNoNN-&?bM!O*k=oUrRFnZ6^GA+D}8D{aBU9rkQ^-4ZvqeiSy4^L(EZPP;>)VguIB z7(*#b9o}8t%lyONaP^o#c|jlkVb}kE0Qe%V>$hgspcW`QRw#RD9x2j~wZm#;1i&q| zc<8r=?GMZtGolLxt<5kpHbP%Vvwe~zgtNnU9+Em^8P>Lfs$aB(*T}#mD^~_KQj#nw z*Y_UEk9AG&u_+wk`Hf@5=DgVe;NhHb9M7IQb2Id;luJ@bPLX3^WWeW>6B&K5E}ORv zqL6C(h56pOY%VGF#xdNsB0nxKX6hLu+}$QpMsemP;`xa!>tWKMu~oP36J$R=resX^(|xy0Q{V!1@rCOVXi1e0lr+O-{>9m zU%QRY`P6&JX9U3W>BMNzUm+1UBgvagD(Herccb32%Xcl3u8Wu|^rY9+16;jlUb!$% zdU|oK!blePRpYZryu;kSK9rxog+5hN6#Bfv+>t{L4blz(9`BgQ*5EF$~Rp(Y(IZ#jFItuYtLR$|lH>iS?=5wLAU0x22Sop)w0uE+a*hOiGG~WU++r zw>Pu)f)-;{fLZ1iD6*vuf&c&@07*naRC2jgdA~@6NG##wnWe0KSykCnIN>~#2X3LM z?{>OYPzL0Q5kV~V*-g!Xu5_ws#jQ<4*&j6+cbAq}s#Hatgf94`2MYqrG1<`;>(olG zPq*>ee2-qUooQ?-=j4{9+%;~^)c#HQ8Sj+F9^gwmbJEBK_wmh?MB<7TRX*G^ZOznv zjg%Y>0>C5|k(`o3O0tNsr|0oG^@+*Tl|8?6-2;5P0c&?Uk_KPB*oLj^a~5r1Ozk{M z`*WtjY&=?}`y_E+F0y^yJM7$CscGP!p$E9|Jr1XuvS#lXN~!!|aol&d`piYQg%g9D zmge^Q0qhCy!o-oSDQs?xk)Z*)+47ovXS>T7-na6?y?t4QK14pc4z(#v%U4Qx_-42!tCayYXuw^sPS`nT6IbaM)e7W7w3c#v>$^*EkYorin(${M*7 z{=ELm`S$oE9-i0ewbCtX4{&)hPyE)i?`0ue9J;5sVFON+}$QnS~ayPU+&=H z=||mZQ?M(fodWgzxa(G-5u`Zv}Gby)dJy1`=@Y5G6Z*r7FkKO#E^>y%NCa*HCvj6ci79m|wGj&sv9H|8ochODOe zcu#uPw!z567$bcpHx&Hd_!U1Dec{j|FP>C$U{1HvNWMK_{-Rx!9X^u*RZJB2;Mgl0 z1`KMcXiKEHqVD7FxP@jb574KO(q9T`G@WT3)Y!h>@29)dY5L8YPpfhk3cFyC>Z51z z@ihCl@!_}dU3iT8W2Vx&oE82)T{vwy9rxi4(s(j5K1xQ|qf^Y=d5>-*hEb!iH6}*J z80afw10lXYwssjW^0j10n~G`ery?Ki#$l73)%%>V66CcdkO8h!sFPQ{Sy%-7XO81Z zo!Pi|t&DEMb!PWpM|sbc3>3;r)hnQEUb3dw45FPjGNV~~6Ki=&A}LY>42&Xk-cJi9 zanx-j0YygQ*rN_s#wHjU=_}hj>+W8rvB1_UazIuOu;Z@-T{+Wkc}rll>3{{`7PIU*XD0#i~73j93)Psd=+G zTzjsP!!1(}@X%{3vELzQ`T9we){f=I#>My~G-aPtn+*0&E)((c;x1NRierN7XewC= zc!A13ssrFZTaV^nIqbQZ`_;xNu(7l&cT;qPE!uv9EN_RZ^m;W2|dH);$TpG#Q zx#L-t(37o;dnkhK#K&tHJS~uc%h%DhoHC;$=G}2Tm)xSgvnwr2hO=svE24fvOO*WF zUo(z5uiLTJyBDIXD;c#e5ucqisHA3dMBkrr=F}A)ybj@Oa4@kJMQGZ*108MaQ6jBp zQzmPeBLJSliz7>M*rUzLz0)YKRRbzRVullGGMX$iq1{c|7YscKA5}K4AcRzL%s-K?_xYD@7uc zQKDK)I(KbNrTiHIPhlJh2{FXRMsaWZ3|8N3%!&h!l-JL$2e=$*N)qu2al}Q3b8h)m z?pusvwp&+hbcGYrStL)IhkLimDhE`=vlE-}xU9!=kD(OMPvG#X>D)E%iQ6#S^zV}; z68iZ&60?F7(fy>zkPfLe66aRM)Py1B^6JstFdmD$b33&BXVY_8H1oEuputZPnUxEE zGbP6?#J*-WH!3!W<#byr0D^M9-`vRXc|kaCUx95t;k5BA6US|*vd0=6Yn$=fZwV7m z7~!*E00q>r$*5=hS-d-f5pGkdU(^WyMIAVtJet{Vc4>z=!UrY3I)c69AzFEFVt6HE z^a8{9w6ZP4}|_*CCXN!cAdJ^C{-W}n4#F9S9@aF z%9Y-Ai=`3UMcmuO;F;0*oO7YPTtw)rCj{KO!VsP`ZKz$JEtTGN(|=I z_Whg>`iNeB8%htX;5#WX z!Z{s4%IvWGOn#aie0dZXJ;yWuWmyJytEnhKNBo|Xo3B%Snl}?$mr&Sme_uP!<#WS* zVC}RF=nV614JWrO=YhE`E`1uLlf0@2pe3^hz!e7?8uT~aw#bP2`i7g=Z}R$k6!OGK zek4cXpSw69At4mB35a2@3f_Vr&etQiuuuNKD>VX#jX;(#FKdAeJuMP0fBv06ZrW%ICYr z;&d>ca^b#%p{mEw$a?>JTn!fmP-4x-=YweQtQ7JxNr(`i%N_b zHIiz2*RlZMlRpe%&z$yYV4^HBf&;$ZMAsOk2++izud{Xi30}sFC}2~Hl4UDXvra9_ z6;<`@&!8*n0gkfnJtqL%P!|8o_E{Ogr`j(oQes1S7t_A4s@K8aOtnlsz2JBs*RA#_1L+bKS53PUUC{T2YO|x4FGwL&UIG*MW~4Fzp7Nm_)wb2?fuKR6jz&x!`h?+uBzv2+TY~iPZaC5C z*QDs0QlNBss#mB&?YcF{Z~QrD`)reS{K{#S5PWeBqfeT!b;(e~_YSh`QZ!DJhEdc+ zs;~#kkG#aXcplR7?&M-3!xQP^ww3OMvmu?A#d2%UYWCj^Ma#^ZqNOTOsZv$y*Q|s^ z7GtN`zZK?p<0?eA@84~^C1nYKO;j>syf&3LHTe$+Y>(r)ne&gS2fg(-%LEy2iY`LR{ z%dF9gmMZdV0f4Jjyk-~ggx_7ykeRXgo}ZE>16=V5n(Ub(q2hhU_*O0>a!^tSN2Ya|FPnx$5nOM_fbB&gq=teTo2Z?t04g zR{~VBq;RgEKFal{--wNkBUwv~G&+pu$<LP8uV zTG~j$9`h=uj%q<=1;7(O2XgS>4c@Yq|LAJv=+|y}+o_0NmaBVRC&oy_Wx+WB|skggvI0L@VUogmUk<{t0TTRoH1nmDo08h zsN{Vul!^i|j@lC?iQjmeR0wA`SK5`&ga4vV_=z2|0w|&{?4Ies=_1Z-bgWP8jr9!k zd5_zs#WYls$7cY*t)K0uxASgHN|slWB&BMFG=(o8La8&@1*cwh(TaY zw3Qpq0^q2)Gy~u=r_Ic1k?usrd_2kG1^4MJ90*z5VMgC|G+4fa&Sg_i3B|m*xPvvf z^_k(=55pgq@m_q2{LSoWShWC_7I{c|>(A1F1m;c51_1vo1dzvRIDIOeN~D+4MP8jl zZ*N&P0QhJ23~}U6Pj8lW&eZf!^@VTu4`tG=&g}5*LF%!YEIEopE0^%8OmD__twEIk zuLIzcT*%{>0q~#6uXt7xUGe8jOd7Wh8@rxVRzoHtUtQoK4VmTKpTb7qzoauK^qg^b zXs&2ECS36!uHxZ+nJ#WFG|3}mJr(_KmU1Q1oIbBRb*^ubNvngt{4A^HFGv2 ztJ#L;wMt@XX^rmpdw3sv$~dP#34kl@&(-FROm37h=+rhar=U$iOye(R0l*!vbz;k= z{uETLMImEym+yR1>WyJoYoP*2PD*?PpMyX0B`lKHw@>j>yFL@f_ocX5=992r2f(GD z&;PQ0&Je&?Hs$5T?W{llgT}Tks8GrZ3ky>|onD7qRC6vmwIb%tMLafKr{5G8>f}!) z0Fv=+*9cq=H&gh(+Shy-u|1jTuHDE`)2F3_nN?wItW7fbWrB)?{sH~Gc$lEz-Woz34R~U=g=@7 z1zhB@NjsLgw#WQ$0pJtxeNj)bUW=&cZIu4;cFK;L$)NHA0G{bUGfRa{RscTn>3({< zJYb~HP%369h1SNzyZ|;fnhszf?9N739!{oy#c0m!c4T?q^4vJEl^5DYFub&jCta7b zxMN|o$i;dwc)>zjceH1CGqq*$Gy=N!0ekSgl)yaa;S|o2fth;%Jn`Aq9PQ=r0N~9; zLcHTg16St^{>#t3>Z|}~+_eSt^f6`i!AX=!bFbpKxZQ_9-R4Xl*epxM%=0}Cta;rs zLxN87m)m%F?xMnkIe!BH&yBo(WC6g%@!#0GY$h?~`qH6B;f(Dn_487?L_XsF7yu4J zMM&)Tk9-XNO6b=R{Lh@HSa&z<+Zu8xC;M!Wb^NI^lSbagedIdI%~?Xh!1dfWYR1I= zjWE$p=KkT;9DbgM9z7ahs?LZE3ZmqETG;@GiY(t0B11p$@pBm8LY{E?%rojvaA#1h z%ss3%`?twaZ&=~GhO#|f=~~T(E4cu`72hODA|fo951+#L^g4)hcfQeWvMa3%NjbD) z0Z*-((yM8iOa#Q{6f0MleA%cZv+R2@HzB5Pp|qBR-`ABN3=tYx+|Ndr@7)!{Ou7Qp8KgX zaVmWUq6Jd;aAq}57xS@vW;Kp@@1<;CCpuKkpJh)%E@W8$d_T+)0B@$vr47F9`BsX4 zt!q%Ype0s$^m(w%nYE?eH3Q%z612gYxuKo$=#a>^(?1yFFpSccYI7U)0PmSAk+vGo zs7^H%trwNoF9P6ZO8@(5ZAU!pg#N^;E8;wp`fsNG9|FKN#cS$<{GE92PXpj-@lMmp z3~ZVnuLocDW%L3u%P(eafui_^Tms;dq)3jg^WcH(FIqRRNf8Tk^5}%KV%cHJ*efgW zelG)DC&zgC=lj)v=CA({06dwehrF4*F^~eq@}r*?)CgHiVaQ9g$9>jBDq3kH7sYUL z<9u$LcA%HR9;RKY&&CbIDI%=Rl!tisSV-Op6No>*3vv57%&^rAc&3U&E=%D}z#bNE zd&ii?uGGty>Ts(GEEfRywdG#S`BsmU3%a7-eNX{_d#9{#_*%M$Pq0C4?yw#|1TwvH3yyZxm`TqNbehJnmHlLG**i3AfVUjo)L za^YL1?OsL`oww}pS;pSre2liYqh_Ie7#bT8a%=)KPL|UMfJ?)!Guve)Px3Zo;y_!< z7qG&>(15$^`f)V*R{-$nY`!mjzQtefD@uNhY$wpWN-F(h`ri%BEGb}PMS_3s0B};i zu+P(rou(Z*=Gs<6X>1BF{FdUdR*KJYH>xNAW+^Xr*yD7z0c+Q{=Bn3Xf+|hKyMINr zh(;mrkW%=LYL!9WicuOEQ@|!a=7!qY1K`O2FK5^s`m7PLc%utHHh8gKuO0hbTBSLC z>KWkH&koYt`5>LAFCwiae%h31W1cS``SO^cC6uJC^W<5+?)0|@z;-KVxMdH{zT&FtdJQt^x3S~ih^@QwFO znK`95d5v`u3=IJI#~uBd z{B9t7=5$aUhKRZDJD9CM1pQF9K*=cs{LAG<%sXv@)6B7y%OmKMh_|yv& zz241|4c{2xHi>Hal_$Lk-#_x~b1W6BRK|>71Hhf0_hE;ZUD^RwmJIYv8Q?@*Vukxv zY-hPrznF=FEc})KPCO2LW0rabxWMjUuLoQc^Z$NLYoSDyt;Cc#FFi(SzPIbM!q?OulF;$ zxVb8NuxGq}9RL@4T>h$k&Je&?G*V1@OuJjTxFmbjY&052GF4*N+5v0J$bJAoigamDid!cBB)Hl@6E)*j%m z{(%0zKQWy-R|_#KRexn7f=+G3W9dgG?9P`D2phu2hnyQ&3Bjv3&i zakwm0EKQ+tNx>Hodi?q^ck>fQdN@t zzdZIn9s_;IH+wDPYp0*6z7IT3Leb__E@GY){1Mjnj|Z&r^5Ns>qS(5*(5;dM9|I4v z^U!$$@8@CaQE!^(5xmq~tQVmNc*7}#+Kp!RWIF^NLwQOZ{@dnrBB?R%qm>*u880OO zuD(BK26$5MkGecNM|=4@0JyD5FuOf{cv@{Vi_-j;D6VhtC7{f3rrT!f0j?O35&(ZX zY6afyl`*dT$2lAa?xM-k)%2{QltD^tFdMvmFljl7LCs2M;Xe{c2WM}IWVD+zH5K+j z%=>_Sc+5Xf%cWU+faksiN^azp)&2N}Gs+f&j)1vo~%9N z#nBBuJWJ5wcAymZy>qD}WI76$IsjfIh70pYvCd!=Tb)~BuJTu&omk8bkuCjtR_Ak0 z@*;w}*Un>Jtsmv{DOL=jH&?RoPzvMRT&R#oa7U7m=^3H9duYM^RfZJK^k(HF=I|prcrsMg&QzwU~^1U4==@EIOslueL8lmn%R|t87jqp5dgPJ zBIv+UW?Zsl#mb445|mda;>j)tChd;G{tp4*lIL0DwfHc9_8$tSai9K_4&V99@!X#V zz=e3{(zXTo#WuimLMJSRgxiFV?Dq0v?S<_OBQOWdi zpH91?$_CPjuZ}Zq*+KpqwSggj8Kpa8atR-A9$@aqXN+1ho%+88fJ=CL%9jbN5?OF) z7Bx-M5rrSG_Az^YkRs!%b=j{h?J$Gr5p!|xQB4WN%0&bn--yS-I6PN4P|-LAzjd>? zpo?t=Bme*)07*naRMig8(H*f;Ic###d$x_6!hy)nzf6J&GQI_FW|+q_rtDotjqnT1 z_1s6jSxe|!UIj4A#XMd=80XVvH3HzDuX;|$ zPyVZ!upo#*t9`I5V@5h>mYn3!2drGMipSN)u*<$)y8eZoW~}{oY7g&A(Ak@GneC<| zH9;lsZDJO0bETS^yroIe#ESJWGc{3^w`H3FF1$tjm?b^tq1Ar?;nyxvWy~A~RZGtX z%g_Tn{00uAy|5g$4!5?2&{g>eLPkJ*Tq1fVW*F+}DD+9OK5oTRJ^m(F>MmBS59!A< z^c#PRo}&!$4=}}X)FX*r@;K&-`Boz$=-{2|Vb_x?6e-A7V#A12Ol{Z|6d6 zbrv}H#YWjgT729pbf)Lt+JcB$Jyd+beTLOpXim4o3{%jJ4+@NzKf z^@`48thkl>yDrc&Wblqx%2u0qe|3O?0K8oJ=Q;WE%f}(kj{ds+4bk*sNu^H5oL!-M zrdKkuTrBuK+SX8|o-uG7qS<&%TB&!;(&B3vG#S;>{MVv9OS#)j5GRrO&}j$sNnpk- zr61x4wf^2S@5{tic&m-z+AnGm?-BKAJg#B>^d#%-GHejc3!Rh7OD?a>d`kdSn>x#G z|7Shl%MCj4{b)7rHwqxzgEaZ3Q-Kn)xiUb1#lw4fvv|nejiM204QbHPv=;(FOx;Xr zI~r~Ab?8>F{6)7$P<6;H{~vMS5wxEb>emAv>@q>I`##4)<#Gn(D~aR3;qOX|U}APz z9+|qu0nGL4)#+q}_WrF3=`Q+L)dbZeQR$MVL__%m{I+X_yIyLr%lT}RzWjk8L7mOH zh0J3{0hvt_G(B08<4rFoU0I{C*m;?h;I`p#mJ^m+>J(V}&s0xmGm>7mW%7?zkE9oZ zo(ge*=Ms&~Nq+qW*J~zdMA7V;M8x@fQtf*wIrv)>akc`P+h>gZ(*MbDLPDP)`EJNVlFw{!46Zc-_!ama9^k;M_j~^?0`)F8u1ZQkyG!nS4sl__l z`&VHJsn>n@6asL5V>l)tM@yCnn3Gh}rXzn-$*q47Vh?sPyWk$e{J`(V{9Ih6SQYcjOU>q?qV)+fp%Mx{&v;)ufzCX&@qiZ2 zg#b3R^p9jrTjDEa#hZ7$Tcu|%8J71SnIjEySndKgt#k{JSZK_nVdmG<#<}P%*W*S>NC*_`b z2PxuNFjqeNOKqyW|NY&J%jt{8tz3RDSeBMt`n{5W;(Jk8o!DASKz_US}i(#pauC zlwpq0t=0SNC+8O0?>U_03hbSqp7lEH{Uqn)DbvA zddu}M@$%p(CRy+Czn5OKmR#YbJ~+mCl>7Jmf*ACxA;R%f4K!8b^TmJpU_Qjyha2UT zS9IjBIf)M@VAJuOezy8Cg~0!|15v`e`$6eU!s0yJQs7 z0{`KAd7(;F3+$H$KtrPn-S;q{SI#A7>-$fF?z` z{oOCNVT);Wv!lRPshsGK0lBfs5uWG1j9J1bI^>>l}g*Mv9;e+E`YES zgi%nmoDW+ zNZyUAeen$^_Tf}=F2H47)cz_&Ji)$aef8RFL8{Vi8+%64)8r`ST^cIA)gt*zE4gn^ zmZhL@pE_HplGIOm=rqWE9fJL&2v4u1jpJxG{u2Wdo5@2H@y;s5>3Wa4YO7UT(`(xr z)V|kFfF&O@!a(CsS~{)kB5WDT9*TRzcsez%!Q8AN6Z*nbT$IdGu9nAs1zC!q)!)36 zQD6eQtw070XRdTWo>W&5Qs#7U;Jl*wLkNiduGiEA;q({b;>mV5Dfy$wYO^IN%;H5V zOBebQPdCBzrv*qyPAdU3VO9N{8L3^A>^FppSg?yCmmGHYt@Ey;Jp&%3YBcMI-Sixo zxKt=_qXUDPF%9cL6?IXal5OV3c<;H&8=cn6cgnXH{`h$Bt~HkE^0d*2H{8mBD!tcT>$JHUU$il`suP%W#lJ+CR(0A*Urmd zQNAYgDV1V^14Y)~mH|p8ev}J1qoHl7W9lxGRB9d260vS6{5H&jWe7vL8sOn+7O1FC zS;p%=9_h`PRr&3P#vf67sKfT13q(Z-*7C^4+y;UIJ1fyPcpoZRQM7m^36e3-pzo>e zmjdwb2zgGKELhU{?k+gT%nB{ry~^WlQId>H?tmDWUbRQzox;*mJ@( zIwAUDvMrO4-5@z}ZsodO`#M*tBd}(=Z~eeC9XcYCpwkQJiNCqppeVBTmemN!UHL^9 zT^b!)x}N2qr+nN%G7K=4Ph@@{a%jEeYT+^Z^^XK=Fm zM=F~gpUYjj8G^Wj_Y>7p2S<)lViTS7nJnnvEq!RqzH270F(cmvtcd~JM=DbjA#X9J z<{0bUB7Iqkm<#`?SRwyZd04bT)q;&xE}ZB2u#{x0o(}A%ghnaELROHSfqV0LYg0WA z;|3?dSu%B~unb)_L013u9wtwuLyj;tY{Ng)$2$~)u5yoCv1DXk^>fjWSbAgKRiK{4 zqe8p`;iAy2%1O5SCnt!#@`(HrUSwgl6EC|8gURVmz8`ELmPV1@x9%Y=Nex66zThBC zCXL*=W?0}1<;&*JB9C+qG?rOO6vCmX`r?)+vPiU63{wtri}hA~^@yX{6mjxD(olk3 zeY^EBp)&s7g;w8{|FVT^y^cQB>o8R2O5V%irFU5E*<1m%7 zp~j7oobyuS3^(h4OnZ3cfQr#Sv}wVj#|Nk3xD-o1LYIn4B$M8T;c`f^n$APY7ySxv zJl$$V7guZddWfjU^RSK9OAgkgl?w>0j;VH{9Y|@iu`(us<|9v&)R=ZWTJnO!eeBOQ zVMcNMCwXu`Z|!5$yCM+9r0^2HeVcw@GZ!r(u0oqY0GR0BMfdh-t-Yha%ym&HVmps83#cgXg=SP&n5Py$J7=(O-M zm*WxfHtN7h>T#j%IYL9(FEk$;?$OxmR>w2E<}ESmI;U^8E`%Jv`MHn%Tk4*hry9~i64eS0!0q(KgIp-ft2Vb{;@sX=@r2(Fv z7KtL`)!|AMQ`~I6(&H~@8qBG|Zw4|Le$cmA5Aq>yLxE^Kj*O28`SmV;9A z<`v=kWGSWg!sSNnFZPH#g-YD2dQL*4gY>rZONCKqYTI?mevzsn`v)Qj==U?gB2iJ<+zAtQw zqJtw1&b6hp2?F>yRO7Y#tW(81h;m;m*+1}i?pBFN2DLR4tEH=}Z00YNWiFtm@cE}Y z-EO63DHLb#Rvs_pQu)&Ah>Tln0Z@WvPyJPKbJg-M-r(I4yFXu(>*l6;wjC2cztG<^ zMtw))N!?3oLVC%@8>qEAIoR(9b{MNh5;)3!5*UgH^X;hY=ygTVm+Dq?7jb5!I9B1O zKOsoeiu~~DAUoOTj4RAB)AxJ&d{b_gTDq_+oPUCP&=?7Y^X(ap*YJ3k56l%ev|eAN zIN0(kbG4EGAv=j1HRE_Q(Cftang(+8qvleD@U)e7V5RKB?SM7O4iH)C1E5K#(LpQP zVw_(hHb}*JIN6HpqbU1w3o~eSf577O7gxJniLqUr^r-6fg}LLy{MVI*{&bxPzSW4R7=x5=jeo%V9^05%Kh!@=2eqOxd=XM?%)EaBnHNUa4rG z84<(!s@yK0&=eGR_`}hH`QdH8f8v^zEKuHdAlj!oNhqYVW`Sc<(lI{$xtqRxi5LY= z%To(9M$v5K;gXmiT!3p@7?n!ArS7?{p%DJ#h1&?ecf6RUFn0Pi4)VJ}r@QixsPFdS zBLHnk@+hHl)a&uxm?Z#BFkTiK;FJ03>joWxnqO%rlUUT`Y@r4ts#i((Rkz2PdaOG8 zc89Ru{Elj?6>Pi7qs(Bpw1mB#oqd?IP1=W2Xnt<`2=ul3D7}mG+3!2+6jL*g$g~mv zv6Jysyz-kNn`<;`c{cQrM>Dxf;@P$d4fEz_)R$|~r#6}7@JLGc+EbD7WS^z95q6@u z&qvzFI^4ULt0zU+zRQkQw7!pMhE&$5AgXUcIAipW8wx&{)GE+IOU`_=^R$%HbMvHc zzWcZ?{^9GF9~J5F`7Ye-M1u2Q#Yp$(5f_3_e%1c^<}Y8_f+oW}fC-(4 z9H&YV3$eaa(aE!Gi*qcc3QPGlwsOf{xl8JJu;dxTElSfW9ek&ru#U}2Hkk%WZ z360NBckC#+?UXb6G-VpTe|{f&iC-1LkHp@~@1&}!4xL^iX>Eo`hU+EWe^7nOisJN&r(I8? zTrMKaGl;v?o{xX@@YVxKUec4J@s6j~v7&C*s)wB74zR$Y2?AyC%~kYDMv_b-4V(wD z_q=YGBi}1`u1&+-Af|ag=s9g6Zx~b*YR96eF+37R%NsNu9BEAIwL-Kmw8r$3@ZhG= zw#zPBw>`3a6x1$y;nNq@?H|!B%OVNcuOx9U-IiWIJv#9EB)ll|JiYcev_}Mh(+0qI zkQSji2YYPVt0Tj#cY7IA3TospUvqL=+ccJGr-HrfxshYK=ZC$XI z2Ih5Nm=$hjw?Lt{*tT=2Fb~w8C%yO9SM9*UMs`mglD)1FW93rxPe^C=hu(z|=nAkN zZ~>_iyQEvR&4n@yg?mbsS+<}W%CC!!+T`Lek5Rh{dAR|zhH=+F8~>`*=>Oz#>AgDw z1Zg?4iB+1RU!xAmuufFe6#E*Ji|Eim?1}rSh%Xw|D%7gemjKFq-#50FE#uAxlBGb0HeBb7~OTxfj5!E+m9NS1SA4v`Q9^|)7gCf$8mHaM%2X1WZbUEOyBgQcs=apLq>K= zo}e1Z?_4!!@9y-&qZ$zkVY<)JPe*K{ zS~wegeCN7c0nC&Eaus@KXP22TJ#DjAxKgp7JZ&d`?%`V1!o_GrB^4EkRHhwA$z|@g zF21rhy~j=ZoPspY&AqFJwhy`V|ElYR!{I-u$TIp$?x?`9*la#H9EuQhzoiM12sS2{ znL(e1k&iSq%*q?vs(|;=hB|Y7cnM}$3pv0etgL_ zkCL%8EDk4ofF1hNk>}7?{H=KP>*m>R?F7c0cqyFoHV2IInW<2#r2gh~b~H3Q7$Ni5 zn^QjNWgO>v+$_CYSQ6*NReVjpG~n1~j2}f7xX_r;Qn*v;kYNxdSyrHAd7pg6%*wA} z)NT`OWIW@al!thyg5u9Tqm76z&kAWe>IPnME&4vUKWTj~u8wJB^);IzLQm>M;c(C} z=@3K!NxVAZL+Xb`M~&k>Mlph6mnMAav% z7fmA3@>C(<-{3Eqe=u+9`Ut7F2&uoX7oTY52@7{W9aB|+4QQ?(&GceV+G**Jah3+o z&Q9F|tk=`4tMLYP$=yvWXkQUxU$9@vc&)!XTo#^n61z#3$3EYHnXhA)#fK95X<3P9 zh|u4Fus1!&Ub*qvv7v4Cv|GG~N4MeZh}T%zfpGoOTHxmePTW3KpwQHEW@@9S`4i_14Q0b0x_xm(`WIYD7b zMjar}ajmJ7r0WyeEf0Z@+l=`kjWs%56Y%vMKnQ{<1+!-y8h>VNW0*%Q6-%lRPRS!2 zT$tF3l9M1C8WBybZz=?8#eQTsXqqH45ktk))YG@X6i**dDicafLz6WyfL7qh#Kt<< z*9WF*9B=_nmYQ;Mg7r;dNr$qy#7w5BFRN}^99gg;MUsaiC6knAXA~Kf$c{1OX|exr zoNPcm7!^A+P_rz;LjYEMNmL{cPS$Gi8HT8cEA}Lmio{6lWKrka}Czby-@mA_aVz+#c5v7n!^ipG^+iz4ra zX0WVig|8#$5LDufyJD$0hv!r-g+y#pSS(nW1@~q+*oQX;hyuF8_xr;p$m}d+_-2ur z2L>aM#+{k#S^8OG3Q1T=F5_gSLZgWhNPiwkn>AxVqxcTU)YeReC@)!#WKdoM4x#}+ zLB0f8Hh~EDgnZ!KNh3w3e&rxH*^LD+P>S>2*-zJSAH!xssHMk%k3wJ+=19D|vpu&{ zj8BpJv+V*6$?@XjJl;c$@k*JxGh^zk;+q}Z?Y7$&FF0_jrEBvx8D9=9|4w- zNw0JT%A$>3$AGh5;NbBGtRE1Q61c4a%r_-^0oJ%JIjEZ$-~#99>B*a*T_d9Ku~wqO zH|bfUHBTZ}Hh=qt>6H+m+<0pGz7Tw-`p_8zUD-SoVV8-lyl?x#YNC@o^3hnG~`sjvM`x~RC z>;9Pj`aAToSdCVEd$i=+^uD!2T85QeBH~qirN;R5gTB1`o6G$E2gLtcSFj&fCMP1J z!{Myt7>A`|CF7{WXFOHWp#AY0c~%Fia;H4zh2tXh+jtrV?u0F)U6pu|Uln##noIt- z-n2Q;2Z|Y3r}$n3HBOc_Rd01Htxpj#!^|K)@49KOGRmT3(`M(nH+{Pwi554gZ4Qij z=LgA{j+;a(4WMhS_iSHda#bgheIf48Px;|8vKHOkgNtD%llz!DV*_xGBEiD@du3b1MWh|?sxtnPB)y*m5HlAs1flq1jfH3IP5=4M&cqE zS(ExO5L_SF7X2?4fIG-B$ds)_7jCiJYJ;+Ke`3-80%!4c^x}}WosBdt2UhrG!BRr& z^V)j|v4#Fl7{qP>z2w&-$|K&i?4I}zynb?t!aWOQj=7ztr9_hfwecUlU>bCp{Bjzg z)5f?JUpQ-__9Dwk$%h{##vL+>G6f0wp*8Hb^VSc&-CA3Ak9R=PccPmtjQC=%l*LmB z@6;eC!xRiDNU~W1cNl&ek8|tS!+YJe;(3lEUo#(lq(37nKz8uVY63?uL;FS={XSfM zPq98-AeP~gdZ$Kb5>%9j2*fBMLlMi9OHfy@NA@ZW+-Q^WSH~~YI{BC}{n)&hR~Z1W z>R2q2u4E}G_SxI|M0yzeRS>xwlYJp}YX{ARFI7}Y8l5Nypt9vANV@$y{{H0fHj3L| zqr+O~WE^h(6&3JN{ayzI#)~`f@%Tjga1!SHQ3<=+Y%??~61P0yN4OAFuot6o#UGxl z^d>2O*6-iQMQ0yRRZ?=kJw4=hHHav-C|_Dh`5;=44IQ0G$f?M?8*JeZ`TPRTQh%V5 zkq86}9GUntsM98hiE4?h-2XOOpfA;&ODNC)fD#1R=|vk*bO^*;ch&R7EEfnDXEjvm z|7`50C3u_SFxz~JdAtVJZ?@VgM!*xlh_e)aw~h&2k{)wjlW#TASK=m*p-+2nN09Hy zu?*(KiMyH=-M$P_GYqB7w~Nz1u>Hj8-G0{JW%yn(zWxgH{{Bs0I-nSvAm4(@vM2h`8}jR&ud zuTic&=Eom-_T8$A4i!y!Paz1m$1*@P14ehx2aG%Mfsd(-awh&Tq8vndbL>rvBlE9{qNor+20KVv} z>F3FEDaTtG(gkZUdCWP>c%|SVJ3t5=_A!)<0FO&VX*T%5%Dl3L6anzOTR|hBy7iTP zD&y0y;D%_s0&nKgO~b8Cp%86)T}M8kejXE%k6${iP=C1q`(vvb`o>EnHOYp$kP@ic z`U~9L2q_pKL{x43y`UZ5R-PANR7y3@QIzEPd$gW4nCnA{HcC#|u_Z#e;LhiWA+LVs zEnxML#FwtSFlAnj=X|+U9;@ot0w#s!JQef8)G;6kS2$eIax0UW%EiM7*Ng$r-lzmS zy)&v97rFd;@% zEcR)$N9GG0*O*_4@vr;C+_Yf+buh-c)+ZZNawmhCZp?gip$VPZ zSe3v^wG)h!t?OD(@T&??0RY?-5AbbFsZ2w^wX~}A?vR=-d))OlL1m@`vB3D4FGwh- z24{0*p(+Zz>QXHr39PZl|O(Pd-XgGr!Z zp!)8pU%>{xw4hnsp6v7ZXj(;ka9f+(lPJ~DZ&N99{8pEMP>`73?acty!ne8?*4&S4 zqMk(-Rw>M|Lw+38p6UP}^IA*V$%s*4K}A_~SsYfZRG=oR%Dm7e<9AIHlPg`nJiOKrh$Qn7RRw%!diA=N`MD;nxNOg-(4xYO%W<6K zc9d{yH*sbFyXu=GCL$q$BU6SG6jvT=np0#Js-(L7Vu(WZtqjO)wu~PvkEQs7bkNk4 zq2-I&zX1eHSN8P3o1SzRT)9bcYqUah)L8e@CHWEH_G$e29?;DV1!@bCdO8}K&^YrV zEQ#tQXt3s8OO**1#&TB2t=<9w@g?wIhIHMp?H>P~r}O|pzyP?Q1YSwoW_UTH)#X&^ zwNZ)fA1$t|7^>}aYSs%;(wpfjVyw?&QX&!}WXqr4tA}n;Gk;txIV?mODJ8AxziA+h zRPqf_+y|2T&8|=w=88=BmmaR>{@xw6QJIlB`T|X_%GC=jhv1v=0YZ`C)RkTcd5Ytf zXrq#OBpe5P=Lp+*7N15L8;*Wb^KWu#d|7vp*d2&nJyYL0@Mw4eO(xhp@HoQjG=qQE zBLBR1LH_h7Wl{KPgFr_t!l7Gu+tp&TF=ttfBbXK5APX65TOb$yQjZ>kkiareB~=P zUxr2B4p%7agX{5L(5qny=QjOP=d#VMPgXu#(hq`@9_Yls5ZDX8mY0bgRsHM;hZC9L zll)NC;O3^)ehbzpiCC0dT9t4}cJ}J>bhSF!n)7U~y*gKAWyiD7EUpn;oU%}Yq;UPb zI}=nqAQS$3yOfdvKm9k+>wt1~sWmUQa9J+;VP(V~mpx?VczHaUE1?0Q-N&^A(HwiR z)^;uzubLQbw(6WC*arr=-LDq__OZ(bqlC2l9RM zY^AF!VfuPH%2R5x!BJeKv6LDyd!6SH!h|fP8xvs?kg?X?g`?q&CVpo9*Vam8GDRjQ zE0v7+IO=^uX~=me+lc6p%FJU>)A_vv7CO5tZdg8PE3sywBVI`hDP}LP)_Wt3%>&ff zO4aX35>4e{S#2o0$;-RG!r7yn6Wk4>A?0>+)cURP{UL5cLt-IxkNyiQoDg^qM%_SE z0ShdZat}pFuEk*$MZMtU3ok}OljE=X4WDF*(=wOS)p|si@zjx#cv*eX77LyvW&8;) zRxj)>L;{qoBFWOZV74>Pm@M=G?n_w`3gSJOVZ@7rlc3`72JhJlJ;raSU_?+>M@*eT zX?9lapcAF(;W+Arn}555>xAx=+{u)S*m8!SY(NF+hux}RZ|03HfT=6jP#;V;L1d+K z-g@09wB1gHnOY;=*5_?csaMVcPU}JbDaGxd@8uVpe@vCJg_;dVJKKx*`8>F>)@>Cm z>@b_SMjBlL&MKM391xFsE7mEmM!ug8NX zk6JSca3IfrIACMTt?v3jUZ1>NsWA&x6tbZ>Ay=X+-DO+GkJXoyH68QwV{(-FS&Pq( zl*32&RCzp&aytc-;Mtoot1EVelVMnVn_m}BzE~yx=;3NBie~V^q(IU1j52GJua{t3 zb;CC?GE5J??dd{%{ES>lHs-kE8f@v>LnuK)nI?gGu1KxRmjkQaO3K{vw>Eu>yt5`{iez z!u`rDrA9cA^N-eFNx{&)lXfP1?7JAcv&^_@&Lq$eHtm07rcv2CuY7OS20xO=K~ zUrmp$a=qttfsy*F5sRmVkOSN8cEk0bPBlyE&PqgWr;cF}>7y9R-1l+7(Hz!mnvaA; zJ{gCem#M}Hw*sF170om8a(&s6iwLaJ@vuax7IMl5N@Lbxp84N@ja&scB)$p*tcqDa=D@^ zwaIpPmAcA}=3}6A`vGM%*=bmy?ybrG_oG2Te6X|$R4~G&xQ$hSNG#6WyTP|yl-IJM zZMQ;i&sdUzPsmKwFXq*iPftkqCimSB);%)M6}JoFZr7+<7Ny=LAtGXBA zxSMc%++~OU2Hf$?^N|a>`$y^_MuePsy9o2r+l)qB#NVqXTnZ*^&^)bSu!LhO(`11* z?~Jz;jnMF!Z##3f$V1w9U&w{N2f5vdI#0U0g(HE%3j8P5&H?0C&rKvWivNA+J&X9bs3emM*KnvS$xq&uIe9tGhB3~_4Y?#FAZUfHD zGVTevUBzvUJA^I{_*`U848Tb%!X>+AeC z(q}e|ve?yLtCGGQ^HGA6Jq_yksrLBh2SG&zN_U7_QImBJ0++702ui9HNVx?;1j#5&&S!`V?>72NET0hh3%>Qu@ zb6oGMnDY&uKN-!1A|$BqFe*gt?-mBU;6WcaBw(G_v7a!TL&J}qjvwz7dtr6ZBy9PV zIUUdFPYK2pJ6CeRVQ-|59fiNpy78@7A)>QZp}uS-X}y~Gbx(v1lUMiZ&R&QdPC#Ao z`$k~7z^*-Gi^P~F&L$5|pv)PGa(kIW3HS;RSYZy9Dk@H7>+e*#Ao@DhjhY1|*LU}$ zG?vcQfs3{`6a|(doL&>|bQ+_EAPQ0p*0FIE%FZ@kgQWec8DSm9K(mu(QHAMrL)q?> zY{kk56+XRtz++0mNUWSyQ~ed0&5u^D65w_mWB;Mgr@r=Vs8oC=mi1_QeoG`^sXgyB zqr|gJ8xmX>82av8(fNR!JhX&&yEXKRNit!@X{Nc&pjONAuaTJ(l;PJ)zdY2`-CiZu z_?bM`OgAmN3|4O3*I(9k&YkMDH0~*vKi4CnZM}W3>$8^+w8m)|q;8=GIRH92KHA3Y z#oPx%&1A3lXQZ14)WWi*-c=8##qe`ty|M$c5@YU$9gQt^M`Jbc*IJTQZ=arcpD)GG zWwtSNL;!!*Pi|)Ln9mpwY=)t_2JS>2`ToYl)`@QYFE#YzD)||8jS4%(OXKOV^Nz?Q zr9ul_Pq%X^a$1WIlBDP1K}5I;m1x}iDv62Z&KXE`Rjf~Tdm zFlGL=--SQ}p1*H`LQNn2@@UXEfEMt;Wmsrv=nq}!4;u*grXMW7r=%HA&2YuhW{!jR{#v-lBy#dI~UMm38Wzlq@mv}y3Cb7;; z^^?e83(g}BM{kw2a=2Ea@P`p&Jtl-oo0FpUFBZz%SNJEqhhoiQ>`40tQCbc=2`}#f z>|c{@QnH*HXPTxrEH5zauC_T+ox%;3YLMr17)bXC_*R|n1*)-Gm1p_scRzujA?{jv zl=s1$5{!tjRDxgtnkndYPj(Bn)ug(?O6oXw{Fv5tC99bLghv_SKS*9~@5URZETlYY zVmewA^{CzTH}*92p3ZqmjX2ZS8M_yYzvCjBjIIW3Pr~!={*)94=^00RfzTgE=9dN` zFe^^iy52)pRD1 ztu6~5=xPm~zM~ggMI0{d!hS1S!U`i`vAZDI!+Gj!Erl1`=v$`@O=3No9pkBPsmK5k z^tbr5WNWmO+1$h7>pmLJQYAd$Fk`?U!_A@d9RF%%Z82H-S&XsB92e*`VMU3Y2)WBq zg6v6Cs;kQlHofu|d9nt@QY7FfpAyf zQCuSGN*Wv7Wov6?-~%49bg7jV!4*<$qkBvkc+WRu-$Q8t#-|#*eFk4VTTVP!jb>4O z?f83|dtoigM56d-2@Q1B{HUo~l}0v)`h*8yItE^caHqkMwA1EpHdqSK&#+tyk>+eF zw#;Kr$!9nnou7bR4`j*>rpM-7K$gWP*U!)yF6%T@v)Yb^JcM_5dSsKlrkL|MaK}kz zKlpH@{FpRlDR&c(+Y)oU-{E`ev>7NthOcFzkN$gLjPQ=)<2iKoO+J^S|92|-ky!!u zaHSVS#fF!u%S?1Icr05~O(Nx6Cq1x=A7K(#wKRnRV=%(r@h=p&BH9Q!SKm-YB5Ktt zYfqGlyOS^C)z);$b|L@MVffA0E_V~5chtTdXIm02*zI%oD8W5fZ1q-l@1`DsoX>Ws zAIv0>tf%?W@GkxDg{xJN?V2PQXInkz3K>aA063KZ} zk-}uz0xfYPF#m$*CQE=eX-AVMd!hqu7@TiSFx5n(;&iq3+DC;-ejqrPGPn8Y(RHpqW1>cthm~NY2=BaBi34Ho&UoOI+3rfqO+rJ(vt0Fn4 zUI~N5X1C}XhiiNp_Sm%w=Gf>wM6kKun$SwZhCwJ*v*!_r9l15`k`gytda%O zjhC#1B@Idvdtz`6!F+{tiH0&&>`#)y5)zXt#|yC0PhjI+fYw~OV>EC~F09w>&@s+Z z3Pz$mgQo}p^Iem^donz-_Uft8iZ8XzkoDr_*XICUxu+=XH{o0S`W4ac>&5j>0z-S= z)?i^5b2i+5v3ejm+v}9F(ZH2AU>|L*-(R}2_i(lbAuHf`x_rzw6QR7U$GQUlu0bB+y3(7Z^mhQMuQ5n6vVZs4_-o{oVp@(NxiFEBGc~;j|YV4@D4`b+8f*pg28j~x|_P-gxbj3s#phP|}nO%~9 z)N45BH*`^pM>)H@_~Mr%bmZGoQl2F&kUeOFgj7k+jhTQ&tJ6zGOb&0atMySy>I;Q$ zWM@SbYh+3+l<5RNH%He#jYyWU(aL0MUsC5|48_{$v{-VXWpmTdii%w1f9GxvdP(uK z9r#hWYJ)=!Sm?AV_d6>R-c=Mc3!};uo6k3W4j&?L*sP;LGDX@R-UrKt1=Uc3pkbk^O8Vnz*9+Ak z+!6Pv5}L(#F!|R<=+wWNz^^r1OMJ@w@^;^uPC~7=#}oKbyf#S0p0=MQ%k{dHz@WFT zB*L1c(>&$ydB9H=&8itI>n{`jx1yV~YImVn@N+p4HG~VpqQB3Bl&UgIOl^U`DMnLF z?0Oq(z6XU=RrR6KDL(P;>rK1karcTK$wR+b4wn+|LN3(PIg7tITeW?d%9EW=R${{k zV>(UIdX~c3avhD;0lK|8dnYpqlpSwvc4H{C7}ICfQ5E<3HNVunpf?@&J*9p!dk!P9 zbgd4Xqpg&W&n*T2**Rr*SH^|(Fyl))L271Jp6)ItUvzqEfhifuaWTdQlLec9J24pJ zjI4ui)UF%9XzAhgfff<7Bf0)l&xOzTJko*ypd|&=RN|wp&lWo4UCcM6_o7Loy4~3T z{m8bMb(=6hOQaLAc7;L9*QE?ayS)*=IGwA?n)sS}Avh>>z@>n98W7>%D?f*QY~h61 zUYkw|n03aw^0$GJt#}+{0iFR%A&vF4^JV$W+$#6XLoqIS8w(2*NSYP!kL13~Ta<`} z{$Xhyf*lGfYh?nDyzD)6m+X>m7rVZtpw&_Ju!Psh6oCWXldzt&9Evb^~7hM&Nft* z2-J;l?DA_8Ge${I;{rgMmq@B1WFU#n+-g2mD8PpvlVgeIthWZtB(dLRK|YtO^H#HA z;_sShpy$fTA?xhTZ5sZF$&xH5N1J3?0+J%lgKJ5We7%gp%iRihFF0^`Kb1IIK18&$ z1+iw!=+5RYMiQtHs?w%vBQfac;XrNkCa|*`bx{`o^!XLt(P2x|C@NMMY5V<1Pk!uY z-umr8Cm8 zuPtYfE4xaVjs{tai$_3EU7(VB@hZ<%fxISk1jo6EXn6iDxkC7}~Ng@QziXFkuKFm-k>#Y{mG0q`2 zL7#^~+~~8P7E5xMANoZ?*#b8CUSlZ-?g1?7Hasqn&amCm&w12Y6;+sC2BNRxQ{E$vV8BBD-44ttUNeJttDlC4R zM4?gv^FG_~a{jQv!7oc2KMHw>LDUoku;OeMvv%k!#~E+m38)7c9TnB7{)}50uCO-< z(tciztfF+OGDs5AN}7SM_Sj@jhKE94UXJ-=rt4Flr<1wo4Xr!U5->L5j4Nw$TBPQi+_&WxVxe3pRz;GMY7r<9 zl@~kS(j5xoMrw0+E$2o>Z3nn;ine|}NRmJ`jkySQxZ3Ao0rLj+#fE?J(bV~ti3{~T z7{+_fZ%6?`;hShxWVbZ*1|*_LK1EkZ9&F}UaG{7y?~<09GEkz;=QFS_n}8qkaWLoj z51GloX5hShKkxE|ex{W-S;~<>Q~sf>Lbe6VFI7u8_OA&&w5ty1xzi}MyVRNnU&F{K z8)C2PjRjwqa&AGFr<W(dn;KOkgxO`=QyZrkrNN0bD^UzW~EeXt;{VP`x=a&PvKCsNYc@k^!5`}Ukrn>;#tw? zWPx~vD%_|j5NeOZl2#qlIuCIA{L)fQ(s66RnPKV8~n#L6EII9S;e z*R92$y3QOI7Jz6u_JQ3fdM-@K!U;9vYM%;Nq`_YmECZ#stKO~sBWUt2pJxCcwC~IeG5&S?JVQgU&;sEvv2rRdGxl zS!OZlx~8XIR4eM+m;xG_Hkiqz$P;tI^-4IcX<_gae<0lVrT@z5wn0+z@@o-F2;LcvrfE34ITd=&)`0D=Zs6>A zK;Hz}tdinPRE+A?%qU4@pbTamM!2h1QSP@bh&?>v$zr}43Odrz(@L=~lNWTg50X3& zigCO|v3o$J2P=*hiW=8E;H)dri$E1 zhnRk~lD6QC3Y(-m_^dqy4FJ3cy$u$afr|%b>P^=)qAa~d7pk3Exwd#A>6*~pd&ww9 zNK1wL$~v1OhojSzAnm+LDg#Hme?q(f>eho|F#f|Yp@0dpf)d=1gqWoFogN;^i0@Y< z@Ps`aP|9d|CSr$)@pbkW?)=Wu2Z%|%@Mc;4KXiR{P@K)OH!i_Ka1X&fxJ!Zs50K#Q zZi~y}Zb@(t9z3|SxWnS^5Zo5`{Wj;Gd+x3J-dpwj@zmB7Fy$u7P}+ zAaEYF6>N;IGqVAETaDBZ=R-UUQxz_+Rb0*BU&fa)(*y$LwMoO#J<`@au%-Ri!4vZS zMIY&gLobR##&reC`E!I++t43w*03hP+KBvu(^d-zC$ ztriZ7*4c%*6#X}+c#t`s;=KDDlIf{;=9347X*;{}_9r8XM`v=iyuw!MYF!p`YUo0B zaamo-O@u*kjwWxrJ?_8Uh-h>#Dc)W>J38CZdSuUcUOw>*ThcrE-M-m9!RntW;yV%M zEmp0UPu(9j=Yf?}8E@#DGVxv)^LcJP zSbHxDc5uz1md(%2_I>Y`;|)H3?+MXn$Qq7xg)a>-fv}zP&E-Xiu=+fzsa_$oeY*Qk z=bmA+*{BCs2ka9I@t;vwTHeVAkz5g&L!HLGQhG~WqyyT-tyKffGIMeWxE$a!6J?`U z81#E=K}@p?*ZLi)@ktL{b&`ExlJp<@EKgic1hXk;c_~SmaQ@4#DC)Xq2a^4p;vNEJ z^1iu@IkbVo*_DdIuVtHUW~~nvqBQE6b6IE>2xK*INH?0j1(FxJ)T!*KqBWcFYK!>y zf>p%z+&^F~epCU}!^a4}P4(JO_}5CH{DT z#L#wki>Vg%m;nI}ciIR$y3t1R=;wW8>qAjmU%9?+yuBZkJ3vuuhG#w2m!rpf4c!#< za9rIPN(f)^BkdZo#1$A_8F$sj3aYXSAj;_4{E#I6C}{ndELs9)Z4|?wzH5P6_Q7O6!>io_VaLGHAeU|=MsdxP~rHJ{m0_uxu{8dOHF>r=m6wk>u?_8(u zHTgg-kJHveis?F^z7L8~l0teNh5gIL!|IF3e$jp-&%m z*^Dhlez*+LYpYHyh9sVV3r^k8RukseKmGW4?qc}C=8+_(yd=HKU)kULTP5B&*SIAe zTP$6Hi1_#p$+B0mx%@Vvz18+a$c2XVU2=LH$z<+Ii(ja4d^YaI4nY@qEl5H9PKaO?2C-9YrhxhyI;HO^s;{^55>*l_VNW2nS z;UEscQV1pGz+eS0hDyKy(oU@GYg}(H4h)XM_W)P_r~>h!qq9o^-Oy(#zFvP5jC-xG zcLU@<6yh7Fy07V?eRtLLOU@yBWp2XObSZ5N)EBG(l*%p1G!tS!*xa|TMfIRzp&~UNU@!u%aym-fj-}>4x+Z677Vw_|W$Y%QnXE+x*UF0x&SUjNx zyFLLXSmFHkST@5T#=45He0F?^w&A`91yv`ojg~*!n1}AA4e2enX9o1@ z#8Ayd#aJ5BcV1>xnfI`;pd`%JJuN-t86oIhiR4^Y&_-tHilpYuWlGYJ4L|mX$2FUx z8W%d<2|k6=CJ`0SaoRtBt&3WmDAgy^;rSI<*x{bL({$0KzKH|X`J3@#xLn^Ijt)C) z@x?(97l!X}o!0gC#~uU#b9s7f=YOm(kd@1bhLa|;X@2KoK06n>44TBNMLQQS>l{Hp ze?p5F&&hBM$Z;aN?Ew59{UGqcFH% zY1crUYf!#gaegD!uIblS8cjJ*Aex0#%>*_40mz$K5hoR7`$A$mu zPwelZAzQrv&8S|3yYVole^A0Wm8Op%Egx{EzuVuO_+~+q@j+WyXRS`H?qC%O??AjS z&DYl}4GtuMa4JG0qMfs*Zn>#9LSD#0(1mY#PQOpfpsc@TGQpCUSdk_I_0UNf%|K_u zfy?2%{4MNO<5$Tuy?7FXUb})~n&lkq)w73Jpqm_a^R>E63)vQ8?|$;gSoOe;71j4H z&v0#Hr(`;_^(J!=iH>|=ysJ=~>+$0KC!jS_oPRr&0@dfE_%{)4?WGbHegyl(2t$)=l>=MC_@MNGlBohwIbfDUl z=R3)PAm~l|E!x8XvYQ|@ej0tCJEoOg4Vb|{BVfOHQPsm~AK1JvqT%+p?Ls~4h!N1w zTss*~kd%;I4I#b3s-A8cs(aD3`o0Qu5zKU??=+X@(&ZkhsBimZ0k3(ADX<8xJuXQj zOAvQN^AkjDa~^ivZE}=u_Wo*j4TvLP%Nnjb)>2pg3=9_CT|VYm<4C4jjJK2O?0us9 zyoEr-b)_|#iS+R%#kT})qt{rZf+p$bcS}qQP;bsFPD>?uAUIrt;q!aUdraOi|~A z9cUKWH-3HogEbem`YP>@T=&xA?qk*?mgw78o^f_Mo-j_+Z%s z#@6=r-(=$#dPt+1yloiHTct)=PW);NqkmH93(b^N)xOH=K8}#l4x*iBUOIk2y4%KE z)@p_#&yp?YWnoB_Es0v|XdJO1-7$XDg_fwYL$kF-SXNbJtlHPI;z4rQ<{6JBCOWO0 z9hJ;3&=v7;|8Yz~nZ4?lm}>*-X}A>q$W1*VKx)F?Dc;i-qI5c@<)2q=h zJ!_@$=OQ5`(j_C^4$SX9yPMkH?zw2^>YTI0w`o6<#Y9oW8*x3C#?1{4b*Hi^iq`Lz zV-|&iEFb5MHs1%%rJ){F>!lfnk!<GQ=Q?`j3hlpYAk4?gpH{7zOjKEC%sKL@bjOLNttt?0r1q3wK5o3JO4ZgKCYpEuK; zX`ogrO{8N=k&3vIn)AThC}v$~9!vvUexY>iGaj}ECTwXdb{L;|GiJ-X*{Bs4u_ZAl zZ}g|9g;>U}ACnPAQS^{Q>TddA-&+Xi=XxYJ&Cg#ukUTADWebr!7eBBLg~O%XG~Viq z(vP5>vs%90{cdTfw~k|ccC{Ny+j&VwwJ0o*T6kh%DkSdngwELo99;zDe1{znNsmL+ zwGf_MF#-L}pA`?O%u+%&*!*72`Y}xwkfq>(Q$}=mexbA^{GuHh00s2(wxeZQ2m4zi3q5Y-7~4e4r=g;3 zU*#BD*|pu7%><-1@BZjplk|9ZQxn?^k%z#`?`X8qrEb#+g>#TZ;9725cZ@Y@v%CyKu>xO(`*LSP12ab?FUR z7aGi51*Zx;qrTZ7aa`c@euJay^~59y=j*#MmKXc|%9%{%YlZFTen)btLfgK9sxq|< z>X}K`MR5&HhFcBoXN@uGs(T*q#S|&&ALHB8x)Ag!)0O?xsCPy+hcRuD;OtL2PIwWdQ>&$u+tpH+S8aLZMgHdP^bW_|&D)d%LY^^Om#y(lGI7+XA)PvhH850-W}jh_l>ri23m@}Vf=CB zsqDr6C#(fAAv0qTqn4WfWzFH?=_O<_V^2-tc^Td50I(hg{0Pdd*W(tW$&Mx)xESb( zv(ueV;z>i2Cr-F!Ee?$g8XAq+40uF4O?nJ9e4Kj=DJPTkNUQbivnn7@IQEeql9KJq zH#LcBxIz0{%-LA`+#))^*$0n9zs5T7vhFkVsF2y&M<;pyiGp<+ z4ve`pzTu^kTIYPaN3&xFq`lKXleV)}Q#|NUM4*dD>eWO$U#LZnLCtqH>FF7q;P{{_ z+8o=~{5y!wCxK*#FVx1uD{?%A!D0(IoH*p5{f3XLjQZdY6Og19S@(7;x?WNC#s}@(@Wu1fJV|9;9d~k;-s?W`fe}9}bo-+B)g6RB zDd26T#g~{P9Z3xdKJFV%SpVQp)}R3EMXt{HplU;pvTCbBRv{fkF{N>@0En7R1s z{Mk=iu|rA0_iCg5@uez8K>ko9T^V9w24ypk6G20UPL@Mh2M#dVp%~HT}6Iy_x5` z`FHIXq^4UX6s7D>vn%P)SCU|TTGgAqW2B}oirt&6=(ryKMuu zwnapUG^VPOneOu&Be5~3|G;&Rw$E_?re%+Y=d+w&{HAZ5lO0J%fU~!Rx?wpKOx1A`7`NY{l7st=U%hLi!*HDMsM@_Tf zI^aTAVsG?ySjfO~>W+JK3yt2s-T;cyq%MMo&t=^w43t}&pj;a+{f3G-Dg{|m8om1*=V;J3^iFhvXB_@| zlu?--Vx*}hys2B4s3s>*O$f4lN0n46B7nE*grP^oQ89pZzI{5LN3M!nXk?Nnl&ZPve8Mv zcg|_oZMbNw)gQv{G-GIbvV4`^^r{g{HlCv9txiHU3dC*#eiZUn#pR=*H1Rr z#W|+-u2bEDhwY)oC`xH7Rmjo>q-~3pzUWSBXcyWcx)Sf6!>)_dfy_8(C{A`GUh>N8 z*^OvL#$2~I6-E$b^zoj|63w}Q8IRk=R%iZU3d{F-#;Q{W_(t*8#z^EM!7}Y@Jj~y3 zVcpx{ZyAuiwndJ}-5#+E0AD57#M?rl=!QY^F)2h{iomfO?dj&9^Kp>iWmOseSRV$y z>ifi3`6-I|MN5r%8wbd-sQCg%<1(u;|IGuO!=C6jSuDx}9wEzw3`@;1q7Nx&(oaMv3`5_g_zY*4lV?dv}FT~G$OmW<-vwTp2pr!400Ms+_#=1 z9|Fnom9Lpf$p=Dv$OK+iLOyJVt5*CX#D#hxv3i@b2x}H;sjAm~!JzMq)VRwK zLL^yeKp{Q&p1F236k6~~k!%%_#op7cFU4H=%xK*fW|H_cV#g>9Hz$^l2Z|QtdI}0X zNDlW7y~4dw=rmcsKP&C_^{tLB;dh6ODOj0dTA!W%=6L@DWp(-c9$dmFG3be^eYbB) zGBKmy)?_H6-J(l~Q*qzlC70woIWV}8#rHdJH=K1k+w4-nCc@sNpa$M z^y)P67Ma2{A-f{^TFATMl1%LtvRm6ZOmhA>VC?X)E#po;{0lFFo(2*CY@?w+{8M`Q zA#p}-Z!E#-BW2FUT&qJUL#LePC<9@Xr&PkP#}~V+cDcUso`cDsJO@+nQvIb-JimYJ z1>{^1@}>})<6LR?PtFr!l5d4neCIpM$?n@*0Fdj2P5suY)aNKEA?(furNF6px`jzc z-xwbVq@KpI<+u-g&Wa-;KPhv-*nVm*m== zy}J7V%Rq5U?JM<-G8%sH8KS4m;I(jp@)2KtZv_f#k-RlI%rh*pXN|Rf^&!BYlFBfy z(I7`RXrNL`Xm|^p*9#IGA*|vi=5gyUR3hljaf!|8wg_+(iIHx;xgy>8WIgtUGHZ3{ z2gPPn`BSh)a&y#Gku1Ps#Kpa%rqf)@qcp?%&F#gT48EM)tzV0-EL95qts|rNZdgn0 zMDKHRxqwF+&N9Wk(Xw)Xj9m0Xuj7&XYU3N#{Ac72Jsed)Hz$ma2;lL%-{ayx#%bt> zcvcIg4M9=?3fsnuzWP3l>{&;qMQ?&ZVA9H7P0N`O%2d$8-Su@SZZ8P39k0z$vLk{P zPMY+4N(r0`Uzw0r-%-)?$x@b;Hvt`cWndRWu1S$niGpPec5Sm)^H_gxEc!`K9jK4Jj{A<@ktNwMwhJXMihF3Qq5k&$Qfw!SLJ*r2A?HgJ0`^vkL-mu&qm>yLM%go_vDWWG&q;8>8H>H8+v%*15hfMb`|} zyZ6?F99lhNjivjERp9fr!lupZfQDBHvv^Efr0NgUv9o9g{l=*Q3@v#>9wNr1djf6J(yO>sj11-Dk93%t1@(+;XRwl zQgTN$xkVI~dEk-fhjG1g9bV!FZdo1bj6mcc&i#*9Q9bd$uHVWXch>)RE&#-_X7S1Z zt^Jl+Nr+LpVCC)4pYOCJaLJUSzQ9+1mahKE7~xui5T%y5R&cvUoyeosa3(gNhL1o? zd;aZP2(*o8{&MYfd{i(8;O=t6ZwV$hn#5VJwcEoQ6>z%2ESwf@x6&*|qGVTIz~o=J zTfTj|dj#gODSIZB4@F-GYrFT3TAmfY39zj##e436Mo&B2C|Qao<(%|Ba_}?cc<(PD zB5f?hWG;#%aN=p=?m8i7B>fy_BNq9^V(xp5ZaZB0%FNZr5(v8hOQhsJ3Jmq~n0TMf zwwH6a!6&S`=fSz1;iv^z2uMgk)R(|rJDiWVAdsv_Mbj~@`fW3ZZ&4`}X`^F_qoULC zLS4nfUNvR`TBrM*d91;H_L#sVKEBsUS9U`(Y}kx@cI}%ae~(8gk`9Ecw0O=o+0>-E z?0L`<`FJtCmDIn`ksdUkE*rOvZOke7j8Ql=TU z+*Ul3PvcQ7QI)&sJTH5w>lpWf#psP?uAfKYRG^ne3{Sl<0bEdoIToDy!)%?jTf^rdX#$?vqtZYQT)l90&B<7GkQYhm6k70S=g9T20{G+*Hc!lUdBH^ z@S>a9d&4*RJj};0D`Z^VKP1EImm#^hr`E&-ghPn{2M)DXR58ASwUBz+c%7q;~JF|+5=Z5 zmkZu}lw_ZO%1e6R?0@|8B(_Al%e*7<+gm6{Y58OMD*9Q_AFuqcob)P-(r1RC0_|@U zrVH>EDwJTyaMu0mU`Iy#b;`lA>n}OMBT(gn0Up!@;EC)|s~Erg*0`O;Z~@ibZ8>t* zT5x(rhWf>V<0uC|a~7P)C*5==i#NT`bQ#U}uc996@V)v|%z{HD|`MEj%XMOq4@|0aga z3*^`jX~QVGbvR6V`p&Bl_)h8PCG4WNt>6BWtCz1{)|vOd>7nETsuqH@lAV&HNXp@l z57?usds?E8K0rMHX~rsgxFwvD;qmwpTPd9g{!^u`*~9bw2Slgv)xpS$=sSx;d1dKE zXP2-otR={)?Fl2nj`w`bsoB||$4DOG&2m8DDaNX2zP;#$XNwiLh9hzidQPoyiiERP z{$jl+v#EuB58E%^93`J%6A#wM1P3^SL7A(ULSHT*c6i>EKhF{NYG6`0v z=qV*wY%(UU5X(-OOdb^eI>6_UJT;%A)_zPa8QL1Il@i3`UkT5z!M|Au8ArXAmixb$0^+PAY(K(3jsWq5lCz}ZNsHVWrqyhsl^bXA#g0c%^E#9}%>aMfQc zYcWv(#a#n7zRDna8ZSW;R;HwGTR4&w64A!z&zh!qejX?LWn)(xc-9Z?odZ~8X4);? z2IF|QOIEyteV;r7bAew-yOs`2@7?cJFI*|dW|Zk1FgpFN-M6YJjfXhIAT?_uc4JqVY&8jzN4am9HEydHFrQ)V%dK|5q;fcH zCrsi+zzXZ5bFAD;l+0B9x-bM32Ow=U*XkE)ynBm)!}!e{-jnoCt?tPZ%eV)thtu9N z8w6#P&q;H0kYb(Njvh}Yfk4x-YGyvkMD;@l?{w+ZdMz>f$kr;F>#Jd@(k7zD5in-dZ3XBa=_$n; z+|6VkcVdGBT`Tp!as1$4b**2Yb3R}UkYjY5;+9K@wrzY(WZN%TG5__gKdd*D1~&vk z=<49m)ZA>gPvnDsV%)Pjay=KUnt-v{X~Sh&6Hx3eT8~mq=Y22*sVP_my?MyNGZ<2# z8LYuRUG@;z6JTeaD$=!SSf*V%hY0ypyx~lkp3ZMd3$`u<-f4TO5Z9NRE!&>HRG? zVys*@&~()EUyLp5qFsbv9aJ!CZMH=Pq)62lk`9%Y}+I$6po; zXDb|OC5IfvMz^9m+-jjf8zA~Z&-Y?cevi5dm5!C!o@>v+1+6%?oVbp4rO|W;n2;&< zAFChRl%N}r>!xikAnc*-#m76Jq+Eaid8#7HMDu2mN)w#m7MKfgrKLQ32>!MACOh=o zTu~*C%m5U6nFb3JSBqX7K-bU28`sYVkI*49vfa1eF)>x~`V|^NZW#>8xM;HuGp1U^ zEUZK_T(G?2Ltb7a#N@U&zd#KvjYJAXS*OEl%O1p1Z%AoxAAlLET|Ch2UsVgY#Kjg@ zcNZO*Y;WN`#~s9(+R-99B?&!e;O`_WWa)K zfJi>a-1Z(n*`Q)@r+Z06QvHpJ$7*^wTv8JNZI) z48f!I(k0DOvVwPuiE@>-+WlEJB!|K_ITvEbjH5ah=k}c|QbGg$6I}M!DHlrI*Ma2J zFj3;Hibk0VRtG1QqP2aR;q;ezJNM#vQ@HmETxQA%n>u_b*Pn1L1*NhyJn@24-yRchF5{-cYaJ9{NsC873DxCaY@bp!zI>IzQs$1|SnKf`K+ z95mC;0G;QGkes!F9RKo-b2^MugK;f;p^HTCsGAeA@6hr3Gl0%@LEF1;v__3if6nP) z6_>LwA>*DcsqeRB7a4RXPD@^SiiT*9FJdf@*PD{1HL`?hX4@)nAVNjn0&J6VA;-<) zBz#BARX1L-KRnoYvYY=Tvo(QjSMUfoQ{h3m*f4Hr&3T=Pi)HY#@J&gDhK@~knp@%v?G0LX9bTvm@& z@Y$68XR<}}Ja`o#rqV66!EYM7;PkQBqi1A9F@v}MDLLzMg+&aZ@agHP2ZwE{Qp<<1{#rh~Y8m0vY|0XG5N*bcbQCp$HXUqw zG~`CSq$H4BLSRl;FfXm(8_enc!}E=1N0xVPI*BJlluWu0+4I~iG?bfB#Bw+SZ{#TPM^?&sKfdLp--jRHhtUoHYiB*Aicu{8O!)ToH#ohPaI}a3w1R)V2LFBi|DPR7m|y@EU3n##7AS*Y zTEKx<#isseqKi_0xt)5gh6&^L_^)-}SfMh7{sURqKq8nh%2Z)_{vK7&{ZAIPuy>5ALf5sr*MyT@MlYqM1s`Ni8N$Tw~hF&uekDp(&O+-(f zt*mFW(~O56)UcbQbX%U#+DdkPG@}TNPnfg=tk}kv@#mpm+{)L&EgF1&1+!9^^vCX~ z^E9T;fZ6TM><8&di&{Kf3fXK4N4@J7J#~+gh<~2%9X@yhhn#lu51)Q=c&E$&G8J(; zw=wBiEm*n&*Y?c_Jsplr)u?a>RS_UE+&1WmaO*zc)3`WJIQI*rhn-&!a>oBG&W7`w z&!DS#ejT)C*|3BI_@;Dc5-)CS{`NQtah1$WGp59W59?(DzoIvkr@hk!dY-)QEeMOy;k2Kt^Wtjd2i2ol28%`36ZMeLVoD*QO6dntImQon=vvTDc zWZ(I>>l2XgytfW2Q+T@y^P>XL%pwDZ?C6C0KV^0)2ILT(o_ce+kc~Su;!zTWuUarn ztmCQRXrg!57WD1V{vSwg3DAjNwyJqeLJ|LU#I9{x?}7FJP5Vs%LzW_2_!~UiUbE`0 z&nmeIN`I}DOIxC9-WvS&{2J1B2B*8K#6zsK62oo6rCp!lSrhqBsQwGTckm1hCu#O# z1`eKHO_o+a+>%i?;v=M${||@pZ%)sNU%|W=F<;9U?SDqff1#2R^)I-?HIjv33iIp;8CJk7oz$SM`JuHYDc&%HS*^ZP6$H2glnUz%seSDj7IO2XV zjq{P=@jvpJRR{2$%8@^c43?O)Lf_id#Q(1$I(rD4)}8H>kv5j(Ml~>HxZPVR!Vzf^ z{1=os23if_uZ>l!8>6GKaXk28KzbAknKb(@=4WVfVe#L(36!P#xq7Dw1rMROmtka| zR_?owlQ74Twvvqz#&9KrzooRn*4Y1G{w)A`rU09_(#_4SYov#5HL@a&GN3GN%^5-; zL(lzp-kT1bCl5S3(Hqms7-ap+k-qFTYMu0wjKaLg`6Z-xY?e+ErSYLo_|$=Ys+hZg z{_pDc??UQjWhi|2L@)PC84;mm*T=HB4FH_)nkc@~A^CbeJ|JU3HjGcDc zHQ0D%&+fjRSU<{U{mV?CyXP0yt`~!)0Bt_pK?ejI4RyuL?-3a&7om5Bx*`dSdF|q~ zosS)svBf@4UjNIHn$-l5<`~Au^bIX)XTUjCg>JC&k)`zHF(%Gad3ZdFu4fGOCHMUA z@gq9z5p1-#Y;if494Qc=rm(xXMd9LGNQ%eeur6*B>E8s}u{quA@OZalbgWTYC#(Az z<(X_b&$n)zW!ya0xJef}{Rgb^?EyO3=Q3Z&;X4d&Gm(L!?@%~!G!e{JE*EY|;Qwc_ z2|Q-}`SE<3sAni+0H>Y(`cEuuOpq_{kEdK<(*buwos@e>B9|y7%;RCqcbg8T42X}t zT0VBqbL_|4*o*W*Nm1|;xhhEh&%lCm63+;y!`D{6Z6bB`cl+eGWix+Hg~?*CA#N$9MP&^k#;H^_D<5zl^xZnAmF^0oIvQy4uC&WQicFl_>|5o&@Yp8QrQ_q)X06-01x zafw%g7$dTu@=IEBY9z-oG9$sBv+2?%Z<5J~;?Sn^ZyW1I#5;J#4bZhi3B zx#;|xw#&gry&b(T=Kx> z^>tUi3oWM$Vgqpud}%<&8rl1hA}wi?G1fn8%YWxHhJsBg7?)Fp<4{>CB_(6K-M6bm zrdDmDeF7Sy|DRpjqW)V{qz#L>ryE|s2cTp-761F=#h}Qdy;Rj=8a%t$RLHGXX>mL2 zrRefTcWL~u=UoSHC34v_B4#|m4u?jjYay_`B@xY)#`pG%f%PLsQh2;+FWL3EZ@^c! zZXAw0mGzhMibuATF!2n%Y{Y4@sZ#|qNsIEW>ryeC8BKBxL|LeAPu$%**I$N^)3>V* zyIX6sPeOhu(a@C$snOQz$5wBR|$myCM`{wR$igVk4eJ3;1aRPt~R zuS~tyUt;e4xWj~XS7`$HBtfQX^9*usU*Cm?vdBVBFO?DNm*$JV-L@~EjlX1Foo4s| z^M-8kn#hfjT#@#$erolF)g4S_#l;S9J;Oae1qwOIcyJk-UtVD8xiiZ~-w;5?_kkB; z|FLvb!vC5xAW-Ojon&<3Ru^}tDERz&>CO}WWD%->Gi6|O`XSnp?&->ca6GdwbA29g z(L%9~5Nf^9M&o$9FF*TK0)4vv0KWNs6D`sfB98rWwpdqPObRDOW9qtIE~J6D|C>SV zIXH+jJ^kA6@XCwNaaB$tK)l{Y?1NE24j)OEO|A3JzT6F!(8ua`p;n(8i$+oWwPHC2 z{*%=;ZD^iDF|@G-MBNygYUM(#%4U?D_uY zlGC+ZFCgO)*hCQEQ4yCwp?7uq%hFvZR)#fB7phzTqtB@G@HnWqp*{VaIQH?~@wk{3F#dh)P9qp6#oc~%vUKg-&Y$FzDxqDCap_;kj{fTfx zVH1dZ@21?OE8X;quRoV~#{;cgv#X1r-qrp!dj3(t1+7_xeTIv)`e?- z`EVG<>FHqvUrfKKuTCijYW8ygN5{TQ37lVC4*ClWoEd=$!cbFasBQ0nfze`JRnzC+ zY>xFM(T(B4p`|mMLvOnF>t0^5GcEU!k3CrDliV%xqC9iQ5r#@St0>m1+k&nT&hK2n z+`lCWR<@OEcOKJ@uf2mJr-231)ggEKM__^N!&2FlncRBKFOT#Mjce%9eKBA6;=(Z& z6lF%6woZ#4st_~!f)-z$o;EHSKJ!O^y#~bZTrlYU`LR~Td>R+NhEDFzI^W1yH|z6M zcr?7?zg}4P;A`GR)T!8dF&y}BfAAI+O=JeH?SzPYNIl(PyQ5fTJI@+rgM`Ge3?kQk zrylQpvzrCgolLK!G8;~X_pPN*o~v@t2jY6XQ?WN&;;{zYUM>!0x^@=}GI4@0Jw zAS=3z4`r@He8FyLn~b;a>$c$!kl~70N0(ji;K{cC$!oc73I@NeI|1o@28#8~Ala=L z*Xx&6asJ&x#|q2`Ag6xLXz&_tPxY#g^RQvo6tZ7kO^G3*&9<{EQ@^G=DW zqKEvQh1O6EKGgXF-aZS@P@9}=!1Ait$n*EP4&TmiXTef?H!9Gh_m3Z22?J7q?Yu49 zWDBl*aT_&Q#3FWZe>nVlYI_s3k3(-Yy~SGu_(p_g|m&=2DSCPH*`m8k!UM zJHtPK9CkzTO(%jcTc>XlxLrwJ(5V{AVjD4t!H$LCa7iua4JHjLk`LNFUp1gY$zY3< zw{ypx+=hbQnB=3E^-;J!R($O(90ht+U00`Ccn*}CBOQ(|1$G?t{u3dfusY+yLhRV+ z=J&P-^jqhG?=}n@@mLtH-x*5WWZEZ8Mt4f0cdBQyiusDu z82ZIMCxvm_Y7qs^s9=`!FE)F=lk9*csZ7TCe5N*dF?wIcUm?}o5B9og*Oro5KF7fN zc^5#!YJJduQL=sKG9ikVAu%l-W(^{cyc7S6}JwpTJ625N}n)JPa03~-;PG1 zEKgesr>+J6^fr}%^|Byc&Cx+_>vT#IFZLf^Xl{Mqf^`0+Oh)QhKguVAie!E&Cr1|4 z32qy%F|PU!o*j%jpyIX>iqXH|R0(Zyv3pjDAr;TT+vHnm`{-r9!Pvr67EqiJdLr)E zc}|7%rX*`N1G@*5Z%Bcc6Gz@vUfBA6OWLW&l9<;HtwKR`11!e1wD2GQ?Kz4}=?>RH z#UK(T+5?X6$j`l`;O-oozqg#z5=*O&CFVvVs_H@wew;2h0rL6Y^O)X<4n=HAT75pp zHzjQY-;^p5bK1S1UFDlDo3&iX_Db38$)<^KXo(EnE-RWUK1=bux{D+cCEGYT3>kAx z_M&PV99R}5;RGO8eR1EuqB7kV^~N%`@e@4r6`8lB4c1L!xag&dA$?}LA*7n#-|!SO zB*O?aC*g4*KT&9=jd5&1=DzV_!IOnb6ML76LfH-5=CQ^3QHk8y%x3n~7d<9}##dA3 zL}kx`k2-gU)ThII{a7UZIpJ6WPI+e2<1vR&p|IJUiVCE{LnO8Q_H>lYS;AM2U-oHLcX+m6S8#EW-INZQW( zQ+jzlzf*(1?oLdd-5VDQoAQt5S9{^*%fxT~R8c@_*Gtj|i0_4i5buxU9X&7Z7IxsC z3iHD6-F7{EYt>bXiF7XYmL0w{35IJfDZeeZ64Vi2$GokLPOUx`QUN_8ZyUPj8|E8G z@g9K-BCBw{JrQONQl+yD5=fvx$v2m0y6~Pa?7q_t-Yz*!zn$?DG+V6|ezxtjhVdH` zcNu^g4yHlK{Lr+XMi5orNs8@Vn=$70z_)Lg{@j3ZQk$#iq#IU~mAdBg z2)3@FTq*Pa&IQ=O#`?8d!!UbEm(|@xl`nt3yBnsME)W+-@bUCC-W~5zL%9Hau8qVG z4LBWZ(|$SeoFgISe%||@*d+4UKxY&o56iAHkpt`ac1(xcC}kH)Tay7my8VB)RJb>% z4fd6v$FFdT03B+QLLEzK{7W+fEW%aIsevlCMW`E;*y9e_A98RQT=H!+Q9M|Cb`3j> zZy>(Dya2A)ljSrXXXZ=I{z)4nvcnl06}oN17;;`baKqVj;g48BJTZ%Uf1;PC7MzC) z8b{r&y>YmeHCHqYRNkHuV3N6HE2IybLoA&y!A6$h{E!Gbu@P%r$3`?zbJk&5XerAF z_Kv^95}(@Z;Skg>A~@sc7#_j`Rl8i8+hFPqgTbg5=AbaeUHt|n&zz5^D1^SV(P9b4 zOLIdr)sA_$BZv{DH?Ph*z69f4%3N-DnZ%^NkK?2CpZaybcPFwOYEU(^(c8_T?Yk16 zyWPL-Wy6k#s$vNOuzANF4nhxk3OudGJJNmxp3*!1d&3kc%Y5#Hcz%Gy$38yv>~roQ z7Gvn0WZC^Q5MANtsAud*Sw|lDw;=w}9jp#uQ|(0tht}CtoVNNy-trx1>_Dc;L~nK5 zZf(#Z8w0L>DW7S7d|^98bGW19+YJrSXk}z}f^yzE+Vm1kbHHuG;mDS)bemoh6IhMc z;m6F;aZm7_PIt0OmrZ&6`8x?&?3F>ykCYW?k>mQyaU5E%{7Br)dn&V+8l_%7(%~YG zoNY(mjN_dDFlbK`S-&f&i$dIaD}0NIMK^3YrQ=Sn4LwS>^UelEvPUz2h6!Knn{OsXJUrEE;2qhW$4 zkCk|ix$^CU)aI*G;h@wdM3SjW)>eOL9P%FX`|BfMB2F7`5m(yi@k+hn<5z>{7T)@E z-3nwN#D!RF%^;E00Es9iWIf&hggYK3K0jIXRXqp+kpq+JxQs#~v|r-3=l{uleyT%JZjwiKk6>y#H=oEZ}wX zs@i$e4(dk@0LJIu)}--(_%<5?&d8%VAC2_H7@e`sOA;vs;y6XqH}Knojk64Q zKJoIJHqtDEthxunZQfgN4G6G#CTUt~le~=RwR~yjMN`a%2eOHOy`bycdQAn4iViah z8`Y8-+s;1_F%cZ2cQE!HY12~X*uEzUbME-;LHM%rqc9)!y?Hd5=(B>-fv>M zD1z>3!mg`HeG=z;+lLO1AU-=pCB}fkYW>3-3*g;)q&Ud^4h<8PXug)(TAD!Fnk;qj> z-=q5+!5j57Sin^*TfBqh6DY^@-gii|j%~B2d2IS%`d0mFmGC`CSFqtpBuXs5@&Yn9 zRL8g$ellG7t&8iG<5IjpDyyq z-s7!lzBciqDEeA)9ll~HI#3v!As77d z?Qk&*)ZpxcA;T7at(t57sNDrhT4bXCig*QP()k2SIN=0>u5SA=FW{Xi-j((w!+!&!5Ya=Oi(f2ocq9l?askfmKGZKb)D)4(v=r` z_3Kc1$A5jgeA&!ODEWSMH0BHVoC!)&Oz-}Ysv$wl5B0Z|hu_>W^c&(5){6jrMV9=4 zTJ~|4Xq*_;SOG)@IyGiaU*YreVKzl*vhJf;IVXeG#VYG7SSJ()C5MT;KLSx5Lg{in zOFstaV%%VLyx$orrHkliMAx2q%1m@QGETgshNHUl#;0iU4QpTAE2q2_M^G$Ieb^fD z^!rbSNQ7CMkXtx&pc=0D+ z>pK_z&{4E<1x-TJYD}d02}pMk?~PRZ(rmR(1-Xz*5G)9>b$B>Trf=A}ysY5k;ps`M zkPMZ6Zc$NdaD`+}SHn67{r6d1eAeGxz)1XEBqi1bE#H)RvKwV@)wohBWIkMvWHtwf zDEsG&tvyq+iODbMw7#bxSPqzaK_UEZg;6{2ZNp`;Hi%iC?6oB;EScf;=(44RN7vQ5 zfY9x_^qy*!6Y$9@8P((evG-O{aW+f9?qDH!0zm=xHGuJ z;O@@g?(QB^ zy$GbY>-X>#p?~m*%=5&E_C#E-bpFAX37yT_!0DfC(~+;$|EPd%sRx`=jrc^ z?ixX~4Ur#UtSdtEhuQvpx#2?-~<%PIZl=hV<25`r1;@dEydf06@0AVhU=n&HAUy%qb z<}*XUAQY1BefAj~r=U|Vq%3cH$)6dXHs@H^q-s-73#56NbJ6nv!`)Bdk6&G;>1KO+ zQfYb!hDOo65H82vLG4Vgu@pnIURVrO_8&~cm&@+^X9|bj4Fh35j>be@UEFWQaOr&0-%1AnyM|3H!;6gM3RnK zJh5L$5bRjSCT^|m69W<&1r+f{-c^$a^xx#fGG$CIydB3M;#;fEo*(Ikq8U+Al^h0r zYuzlP2jiMJT$giY*4ITP{e;e;-KM~ecM8N$eZc*z3))r9TiWul$4b{#w^tFXvUj!c z=MNQwlEG%O<+f=qfYbNBF|w;3k!U`@7aF`_x2u;M4PA-UAzM*d9{}One>UR_o|D6h#Rf#y%hH#F* zFkQl>D|7sHL#xt2q+lH2%5i=+lYO0H7wC#VQsC*V8}-Z)v>H$#=WA7Dav7G-+FRS5^lrF}UyG)3qqM8m-zR6u zG4pwvI&aNpeLCQGhtpL8eS&LzhQs;yJjZ}HkN|j&^iZoPGhEQLt=ad(CB!mXn~8eP z?aL*)VmaE&R>HdcNcH^5bX+tRsDOLf(pO_N)q<|$9JPrLRJ1$<)kbFyc3e1yHe!cB zGO`vXK>A^@66ZF=j{$<-LI!Esf@`CMV$)qZJ(*g)Vn7Vzn%q~q%p~E{IsUC2_8*{W z)rsSoqvO3CIA+tHgiN+lh6gqC1lN9W_e+9k?k|zQ*@+;uq_xEnW7xxsU2I4h!33`Ra`t{<`JuY1YX_Xbk8J-*@&_998 zW~N9+(_~sqDf_b2rki%NQX%d54DqT1c4-cpo6>z#}0iGSYz zq+q|e;0{p2-K&)dzw{p2Mj1uZ2I9#kky)&{)Mwlo_O$XS@jtLZkiDZ7OG%uHw|jKa zd`w19pV6f$0YX*l*5K&nFLo~$*Dtr0g#8SSrT~(4ulNU?)s5V<219$`;5gCl^m7!- zn*-$aQn$8y^LDo;=9)1v`4$Q5oZGYA2@HG>Xl>YOKGQkmJX>m!SmdfAgXYaGv!qJa zpW8nv5tbPtO*pFt3$0rTOmi{OCNkObVWtS+h**ZF609s}b;d9YChEH>$DL|i&}JP0 zk1_Vi@PmW-omVi%OS(WawOc_jzNcy#b%6($Nu+1eb5yw0^B(~rt4f7dhqudH8Nb4X z!c21`VCjN(j}inS;X|4SEmEITC@a}2kEdNaER-x{i|wChHQ4{0m^J)8L`8(B-iEQz zTjQ$xI(r6frpj|w_z@#3C|e0mXa5ez7%NJDUAEtBu?G3KGjht^mcs2eM7IzAJTF8q z*m`qCrtO~V6s29~5u-OsCT}TbF*%HLyO?$Cc6AUzGT-9LEB+I)R<++s0X90sinVYq~q&ukv_-Je4-0J6E>p>?x4u<*A6D7XdQ0ax+m@Y9rcViW`cj{e*t7dpyzKsq6Uxg& zD@)s68jWTy>Q{W1i?bVm4$%uPB&)O|e@*94?*ya~w_FxVhTzU($034~^d*J8N-(6a zZO9XpnJ-@c_^#1C5F;d~=;h_^d4U7V@u`HPLop4mJ>xE5j>T!h3=@fSV^k%7vB3yV zbA;pmqAFd)wf(nc9sse))zA*K-&|u+G9l&b$fgms=?l8P*>$J%NvHz zI5Hi1xIM$fw1f9g{#pvr;S0cK=W>i=B%>u!0fKeEjeeb+GdddWtAw{(w}vP`9sen27dAE5hLBIR`347 zp4qK}SZ1;MYtL(m#L?#z=|XGv1HoT?t55g(msF^AC&Ejw@;|=74;Og%2K}^lFO}AA zy}`qTyx@92`ii-=T$Dj`1Xf+0G8cxSEUu?sm`R62d7QuFblVy)*xGfh3!NK$*l9MS zZu$iAMl**K6{*hA@@o;fc>`{lZzXTi$(s3MHSQ-yz)LIa9o?M6h!_{s0+NhPZTeMUq1= zkB&Lg!#KA-Xv8Is3(2;zX78sHCwIx7KP?AY@w}DTh&sCx%`Rm~sfk!g+N8Y~)*iYS zzBn`1eRQ%7zf0L^xH$_H!}H%*e%1Fbj63+KTmAeQ$-^JIkvfO-zn z_x$^*$p!)R&Di{IihhP>AEn+6c2>8G8FcnZhqNnx7C~L`1TCG9$#@QSRvP4yu(rpj z_mrX*He(~g6CGcsfd$0!P8ou$&=RQ6%txEI+b@C3Fn!|;osU&<9$GIBKwH{laqX31 z66TqB*eje32TnGA`^;-4{6TGK`(WwUplZ|@&?(QNolnS|2Ph;F`k%ZF9~yrdfd6(G z)DT%XYuAtGoJ#44U#YB{7Q2$wwS+f(!3e4`>m_08)x_x&V&<1^n?l*j+IQ4UVRJ?4 zZ%bv{gcP_1W$BHzJ{$||e4WpR6cHwe(`thJzoS8u#mig{(tJJqZ)#r&hw zO`i=kqBhiNi2~&EuA(0udgVBOFK`R*2U?1KlHe>NwN2(qms_hjlGd=n!N@6$rO75~M);X8j4#CD1>WO* z)0s18=bx;@GELX>d}(!S5SZJp5m$GKtTb2yb~KrA&bCDtJ<1Q3vq@g&h^*52vT&cA zoF4A2=^iz>TigYw6VGygBt^Stmu+$Cj`NF{t!Cpy4()XB%wew+=FFNHLjB3Xps<}` zxe_IoGCX?K3Y~6~x~;>*u55B@d;7@?sp()hk4Doy8wTTlM>&7J0L=V-vS0@~_3FTO za|d=Z7hmuz4XYL=4sIG4W#bMfKVTkXo-PR0xoYrS?j=1x?y0Ce6Lk}Rcqr2ia&S~2I zF|EHgyp<-iKf@I+fwu%PVK8~pS|kiqq!(-dB++69UfTCspDJE>;Am<#2+ifE_^T;CnFq9#?_0g8_s1G zm(+%XG&PA>{NE6VLwrX!YRB2|Hi=>26R*q=m*pDPap)SB0?!W*pwM|JPM^d6_5K-Q zE?;fFh~3o6?VF)I#o~(?LeDjxcRxHqY@1N{e3% zb+PM6+^n?tRe{=jQ#+-}(k7RIh>Cx{=vZ6Z;r<%_A3A~OD+~fnpZKBBXGIRfJ?qU; zY5&0!zfhsUpwqz)2e*HQ^5MqWB+RyhbAj4uJi9r zp?^ K=+b}vvRj@5(+#=O-?D~f;phr@xPdGO~_ul{cm3C0H^uB&%3P!BTxZJL;v z;PDSZmPZYf(&O7@^MCdB>x;}^IF-6KE`ep~FD7f9`VI9TOg3ilFZ9b=Nv!i_(|;+EPcb-u zMM5d3FdpIjD{)#u%+G&%4Wqdb*Hh3LLjEtsV*gcVpt?+)=HI4_jI=lZkX7QcFe$GC zx1IkZ+!}`CyUSbb=C;U&ZXY*F?f3UM!%^`}j|8y^&)}HCfk`Pq<_^QP|KYYiQvVeRM?+#L+4^s5sdP}_`e39W0xk{sT z2r+61g25+@bOEmb$-+;cds0vaw(>s|y7lt!Yo(tZxfQt4??tanyoiJlonzWj>%R33 zQymIO0xo%f7`CXwap4S`Mh3pM=fG2S#lL)aoo^QO=I7PJ@_ZG^ZrTS-WR|z0GAE#t z2cj*;RNr=kmxPMcvv%41TOrSV-o5A`oDcdP%mV?fA`lwY8i0rDiZ|(*{)t`#xXF(7 zCt813lMl};e0=JkX!iMR-G>y_U*|g2d1+*MCM@ME#%ghsjMbq{f=xMOvk{@KBF`|gy&0HO z+?>JZkWq?nLv^Qq!^5n=goqD;c#j$8M5OaM1eEUOG`-jF;F`#Q2}ye+yeeknqDynR zOH2#1zbGqC+S>my@s1BL>yS)(uKUwLngaXo--Y{8fDGk3nV?+RYLv77sM?v{)Vu z*WH}qi+vXYs@#s}yktmTC`{{-I5NUI;ai)7CK=9U%q59{ou8& zES9?$<_@XX=@RORpZMm(-NJ2df-fVyzL8sK62EzmXf(ob=)sTNpfl4Yg=z8}@?X=N=k4LyT9gR7Xxq-8#1XU5+Wc6q35i%AjVqbUDg z)apc+yK@aCd1u{<$zIQD>G8`RdM|wtcJe$Lew$2-y`67P#8BuT0-di+}Nn^v}YgfGZOR9$G1{;yl?dzhglqgJGS2W^%J3|^SQ?2 z6pp`rw=dhonty(G*Q?(E0}yz{qB4c|a&o;=;=qmliw`e0COZ*$Necgk+P|FsJ(S~G zUphk6(nU2LuKO>(yz5{)*TfB$So=?7J#P z(nYYvK)mR#o@T6FFX{s`DGJj;Iw=MH!@)Lv@UivHnGRcp^1a95ItLR8*8Hkwqm!7tE67h_q*tB90r*&%3;aZG@Qly z_lu;}-jy!y<67YMaET*zpzKsH5`&K~6_G0}$n-X*I#GbeodsR0xKgEmfL|^EVTo9x zg^qKFIbc@7zMj>az1mCu$)bG$(^mQ#B2|OMhK+PQuhQnm;>A7*6VcM$VjJNZkAl40 z%rdajy|;mFvda8nWcUVtS=UHl4SfJnl0of+&P~;GZ;cIABWt@Gs}`E>Y||`|x^`SL zCxvcl6=UyLB~8&JCKEGsCaj!5G75q@8{WY#kCY*o}5=JcaFtfF%q!hV?< zf^*IOdLo(@?+1~{J`oh!{qP#5Y`6sfX7g&-Zgtco6xa&t&B;84xpfJN#oXN_v_kGM zbRuwZm3Bl*v~2ylF1?JnEbpEaUCx_$onbU?sU^Q43DV;mfEW1Bc7>H|DBwy#%T+Qet!5? zCjsEW^$S=O_IzRETMY3=<+p*mzlb+o@LhjhRb`(* zuNg-7d+2KI)H_wr2gPB;bO8r#H0~?B+ZM~dGSs?R z22GCAI)>M4X8KwBKufwaww_d;#*>WkSyUT4iF zMVzQ0?CvO#jC_Oh!IF*K@*;YH8=9s{rnpun#dU>cu!ryVEVm29QM5%Am+rmWxH?2r zC4Iu@Las??L&-FvRIp|1Y#Iy{9hmAp6lnv|f(|H;3f8qnadGo*Z7;Q?F8*i#))hO|2qFA{_QGIuFA{&F9e*~0|jY>ZGi-kKNCdExL4D`jzLCO zyDv0s@CUoG{XTrxMIV{}Zl>%9M{d2{!AEQFquToTC!oXaxpStOoN$^%Cb$6p3vOod zj^qq0t~q1upKqLXJ>tbB?z9S=+_Q$of20|sa}q=4hLhZ$3T=u_rbt$OLSudkzAKHP zzS-oPNG#&6KSGsdr^_kd$p9D3K?EPyD6I=hH4ym9FH7^~Uo<^6(yS{?x=nivzV){e zjaicUYV4?TvCoWHbA)S;{**o{@b}PW+>&Ro-~Ib!7)-o`Td=}@jwPe^ikyuL_mN}` zN7PA}f0hten(bP7IPjUrk<=Ng8a%-czSK{ewyOMW+NF|tqLI=X1ercIh55Z*lfYOD zS$yd$d|V6lm_@?|xdvz2A4=%3FHkJJkILy~-Vdbfho}O#Exmc zNFoszWM8SZ?+@T08Vycv_u%^sWBII=$l<69qnb^y)a8sxaLJB}l6ZyBPPU1EVclsf ztL7twiH?h=>}F}kr#x=Lx8jY)LUW>s4>)-Ssz*p!b{7>qGQqdQ|ABhYl@2Pkq;c78rm)xG_za@&5h18u z>@Y`?r28UReHF)P*(fzC7lDT`#;fYo9GH*c#7lj0uPP&EAz3qHrf{5DGd51#-1o4x z@eY`(su?CcJG?SWssBExhmxg2yL~X$I*C@1@k}78r_tx4fHPNJfJT;aEr&C0CHq0M z48`ZLGhED7t8aWQfR*Etl5h1vB0ThSr748R`opP#Y@i;i=ERY53(wZ>?$1?9{rcv| zrp8I5UV|!gsOIReJGpk+AzSvfmu64Gr_xK(MTgK}3yBE!E;A0vhmj3SEx`}PjNRGg zvKd1c7?UP1+HT2U#vkTKIfZrR*-w2}@5k z3TC zvh6XyQTpmT^>WBDx@IK;u`rs>$z?xL^6zLBG-tBSAz5~J&`rim;A<(d%tdf@#adp` zjt7>StNhS;nztC@;20?o!-aQ0!QQ552>0xUg>CFG)jGlX6}?)EY@e=&GXmE|Vge~VtNOfooEMwI zCQuC+I@c)42O3N@@HORM){47R-C-qAdYHMu83I-u3~n)TRIsU6X`C!r9opt%kODP* zUCTqa1eFEriXk(NTlMy7i#aF2*>N8I<=^Z~N>A?<5@efJ1y5@%eH-HLWQkoVPk_r? zzk$13d3BOQ_9>i9(hMLvU4^GS70~u&A;COtRv-kY56Sfe*q2Xxm}K{&xkXo}Yt<@G z4Tj`tu1>87g(S;eVFC(p!9&#S6<>(f{wD)9C&59(@k)Z1UNyi?`s(wBsjAdt%x|Dcm=JlOwRGz!!D)ljWC%%dqYd-mQRjAC~Q(g|h;0TOjv`&oD_NX9~dc zv&x0ueRVH8u)2g<*UguIpAiCe8q9oTToZ({y~}!tq>4f@4)H|~uk3aE8#L-bZ^0KC z6I3!qmVV%w3*|NC`TM|2>KR$@S8+P3f)>!c+xeqe*Wo;f#Ii0V@`tZ)onS%yB7D`W z<>ywri;FMXsTh5Mkc^D<+Hsf5hp$(X9@_LEokB>Y1YK6MOR=TZ&{e5rLZ{w@!)sex zQU(={`Znj4`BjD`Xw@Cwy0f_Wv(WJBAk`c~4c@$R$`r@&=#sIS7o>|PSWXSg?GIpHvTIgM-&f>^{ zng)0@M+7Q*F}3mSfzijj<5z0W%!o9fHY!lhR9^+t0@R?&`PPb@xej%mu`b3jfY3l5^BLe2Aiu?ppikobwZwweSA(L`AxgHuQRz+qXILxnpgRcbs3DZp6k_ z7ox!7L^b%Qz^bn+GJEr#LyeT479SjV)IqF9L#^RL67rTHUjThVHQ6p^5)OqPLEmIL zsG#qau&Bs2X-B29%}-|{`})pXXCmX5482!eUd^oMuB)V6lFe(2GGo0z;0*T4(FrGC z5IgSLQt3iiR>_zGo*LNCNVDppRei3IyVFdY1U&ri#YL3%_V()2rWD*SxgwDQzU_h9 zvQ*vHfj8qXMU!Jq8m&B16hhZG;}32}NrhEA{_dZo*%inXq4$}VYOTLRrR)A+b9o}* z93NUjw==CKdqD?PNS|vy6B&_?MQY53CM3LLP_ITb*~No^t~la7o3M>CnZa*3OO8j| zRe>K_2Z=iEGcSn`hB_{0RqMhiP!_inSf>gHr8U!`pJel-HxrS&=1w2smOCD{($9Pu zF^20!2EHZH7Fg_t0AzCV~;P#`Cg_x1IKTX<)^`8Fx_G5`)QSrWhviVhN?6mN

Y-`#jO5E2qimQRW&kbTwC_BIEN+irM9u9uxcILo}@ z7Lg;eZVwJ(&#XY+$Y9@Jy0lwFc2EsJ^N#zF`nA3JeK5XX|CGbPbCg!rbjeM4EsT7M z`3BO>d-DFXCMl6QG(@MSq0v1%tNbiqzE&gvn0!=jLjaSWs$$lk>47x(+K+s4Ph(8% zo)C7$1{e{ZyU2XjCLYs48xSmFkU!+^L-qbIw#}rec5h@Fhu4NS!DC~XN=ix{v$GgX z6&3UI__aqNYc5r5Z$Pr10}d-^I8V3Nw+-XGT3L|W$t9@YZODC4^Y@&W3rWFDl8X;@ zS3+(t!Q;^`5KKZ})rNbQ=Evs~k0%Wfa1ChukkK~v5DAE z?Q?Q-G1<-wQrlC-wDH}C=$`3v2|;c`7D2W?kG~YRQnEVl3NwUO;Bb!|t@nQ^Kklkp zLIt00VryPKLRx*>w|d&Y`y}0oxpG-p9(MBM=;&l#+DzY!^IGZ73qb{E&OR)(-`*W< zk(LTR?X@`CJ$*mKB7jc3gn$dhrXzQs9TG^#{XC`KJSX;dEYEo)udUeX-mcwYOf-Ek ze7I@8nOOH#`ik9bIX!f2tN!4^uj z^Yt3nLI)?AIyYrR3*SQWh!(M9kR(4)WD2ZjZ7@a_#NY~!sMl_0grAENpkW4nQBvAY zMkaa1uhGp!IpOSy%ggocZA2j<&{t_EOONvnU8W&N>>9gs+h(*T9~wB}HYX}M4x+CJS@XV^4yaoE z$CVzcBfqd|c#411G^vElHuOXc@sfG~#av87>p43;yulkr?%J(xZ-0n3Ncv$YJf_bWNw>!OUJ|%oRJ~mEaq!0~DJ|{M*RD02G_o-qX`Z=jw=0sP@Z`Sxj^_WM zm}S)6IY@}c6&Q)i8ojs}gC>g5;ZEy(J}vuOZ{@_^?&>`W(&X|)X!n_k-t6ck{7jUJ z#Zcqx&FnnC%&PX>r^^T%Onxz`oy?FbGEbQF_?rAaRX*ctXT#a-W7D%6JvFpy@#fwO~f zT2qG~5k)=!)Yclwz^(Vori*H7^3~fcPK?**o;3R3&jNj;TTWXsCMRQq1@X9+Z$?KM z?;p9^OCv`vt~%%2FBvws3?f`eVdLD^+Opffo7#T&m~zny=eYn@N5`3dV`GDg;kVaQ5fGuIyXHqOCiC&rC-kd5YJyrZ!XMoaZBobiDc>9tr!cMJxCKlG@+KJ7ObO%;?aXm=h$!Dvq-qZU9Xy=X zk0_fSNZg?&e2dU7M6=0{5U0>*Xti}LxhRs<^$H&zK;}vDsf{1_wZoN4$JmX#n}gQ7 zs|Y~yVuulB>>G>QtPn|09TwZj`UY;}G|uU_!{^!j(Z+KT!B2Q@hA%@^^T!iU8R&qq z`hj!7>NLVN83!|p%kS&FM{zy1)}t9YEN7cGLZ3Xfxe9Jo>Xy;`ovZgy9FD9KvvdMB zE$gtGSiodS6^w_erWy1}G;r<1$q@O}lkJ?aX?)WK{ub zL_J(#8xb_S3{*e9V7(wm3p{pw3{j_M`CLo7B5@As~ARb!W?)&nkCU`$b9a^#;Vw(9K(IPHs9x_MwdR{(d z@G@#W=O$L9vs@v}Ty%r~T7)J>s{&jHwFwszfNR+XW-pDSYKEL}>xXkP2^mAe-(`5< zRr)%qc?=9h-{;OL!LMt8R03o!EIsvkkbKHH_xkLz?wUc1e7_nyeQnLmy8OS3y}`$c z>=9;MD7~^gIy}5sY-fH$L=?~)9{1#}{4&Nm(=fL;f7s$ubjCYV*mMeF>q_;Oj@H#w zQHk239{b3^fcXBsx>}_k2_6;od+T!A|C$v(+x9;wKdtr&d>|A4kAL(y?<+-r>+xXa7pOlM~E;08g1BnCM zTd3l*96lLk&#Tm;I%b}vX(p3>?85k3n-YNcE=vZGZa7=ijC7o{yEK}DO7Az~LEh;-no(X`wAak1!woubrD1Po`xCey)*8_^>xQu=X=d>n^i0{ujcT&DdU63u+-^Qr&xu> zQpT;Vq~3k|9K)73j{XKyd6p2EqVtf0ZdGI^QVC_ z8-iK0BJ_M=dw=OD+XXwgy|eSX(di+~Y+M0*Cz8u`>!6V2Eg;>`#AJ?R&{|*L1k=}7 zmx7{aXgBxIpVy3xeB$88XO;;r z4G)iK$g4#!E`C2Hq`r`V6&~?AAS9%vigZc;ghlGUW$lS2ky$e$Y>4i7xk~wTT+O%w zu-;ca-{JBO;PtGc3^>17vRMBOGbEN4*g)NIQ3Tj^TlW#xpa4`k>ay>}2{q^s-!{^b z=v;lHHc4Qykj4d692|(s7;*?Qii>$zr`*>G-pVZCrTXFeY}nP4@Dy`|l>LUYcq5mn zKpF8aJSt3BP7Xj2sj8qr^~Xa(f|h}S;VmIHLzy+nAN-_*FkN+Jb;{IBLBZ8u;gLTx zGBWOC^Nn}7?KjyuZPe&_7Jf($$7W>E#~R@!;?WE+3oA_V!*xhB4-bywKvSF#T>JXu z;zo&kd-Kh#EaLbn8OzIGW1{;-mSdozh2@p+@4pTV3Lb!}Dl3!I(-T?zM!m(noeFMf zDBOR%B5|m`GGabFJ$)r6hV16y)-mmPNSQkTfV!Ot*4|NmTXDYP9Fd%f(~gjT2UsRh zQ35Bk{oUjll)iBSth09Me91k9cdlDXo0XEppjIVX;EAov*QNHTTFm=RF=donEbypHY8o{isf|oy_#O4hEPfynuH|$_Ejr$|ppHd1th(>_Jo^qL z!U9w{-w%kYhK|l;tgupv%GqgcAq6>mJ7Nr`TJOi0PR~vL0B@27W*_O!?;63`Y4ahb znLo`1%REqvacR20qB8IWmt}BT?k9XltWd{yzg?vOdLQGh=(F*l-!dbIBUsw0Hi!JB_4{TrmEotG&)@J^@GWE7^ zFXx$x3e$GG$4LA)DB0k~|F8f(-5&{F=0R;gV`B8~A0Be5OHge=S8y*+{m`hudo`47 ze&@r8&!(?~3-e74`s+u3g@^YM*|voQKZ;U}$_hJMGfqvh#=Ie={`gR5+2jDpjb29n ztq}lvS)+fAff+}k^57mMXFlV0z47$*<4&}%&wKgUjVWJgYevC`ZO7-MhIW&gn9HCduC6=^qu0_wE!FSb>QPuS(s)Xwm4j+f&BgIHv?yUuhERWFQP zkz?$rs%TsUZzY~nSYbv5mFN3NJH}#ITlMTcVP)5q<7ShQ6%~~UD=MOqc&#%jsm`vK zyRM3T@dNpdNi#BjOJ8Vrj*k&o^|?cUtDu$d_qNuTXTf6<@0!XV;V=#^E3>?`CE_ZJ z)w0wj=0+#7B!U}~{2>{ers=2Ya`NT!r@OfHa7U9P{#$Hf8qeCUE&~RQS^&xg%l+|H zK%)x>GQBE;h_f^XD=UzUlamm3R2{yH&3DW&n*ZZ=Gz1y5bFNQidsY0;pJ>okf%WB5 z`#9EXn$x4LfUvM1@0V_^(}G}ky(hBwX&qSxc>es^Wx&qK-qkm!@|toh7X0DN4d&Wf z6BQ~H89s-wcNAJw7h(WN?GT#J(z3r~2ojkICB75em%I^J&$)nKZ>EE6O-(0e-;$nV za1q21}A2PA?y5Wi>90=z0mJ?hx>KDG;83p(@OJ%Uqd0a|?vw!Y;?JxYnN){6SR zC*FkA>0@eu`%&M*lJ4wA$VbJ}FfE@jLYbQ433`ad|sKmnSZq4VH zt#Dw5YV!HqwFqtQrZu1i6ciO9MhiOl`a+?%ZKNAS z%s%cK06W2co~DPc&zqg!zWfm)KE9zA%p7a&9HSh7rwxf|q3R!<>!JMrR1_LLr>F`P+71++@%c6st7UAXJN8bBmf z8yOvWvvU~PkE2Sq-0RpgY0tE@w4`rr%oywE{t)E$lyP^_;q4lVbvv0UYkxIn4bROc zHrm-OmMw2yX)=oH)wrh^7!s`49n4Y9#qIj?6ENSfTCE7?b$(3Ww)@zf_BKwWmvW)b zu>}AU>FvFDJKIyMcd8PW#16#5#C%7ZT%QyDqmNtSlU2xI3&^RT@f)xEUK`d^ zVx3MNmsfYE9LoaHpr4kM5b7)WKIwv@V0rK7J6YdQpzjTjgk5)BMtnGIENzbQ*>u|K zJmO@!9e))L3>mbY5qf?A>U44GdVTG1{mhco!eNDpPwR5!AmpDo!r=~`M zP9}n|%${ig8(UC*8o>R%HOKi6BtTa3zlPPn!WmA($VGU+JD0mZ`L%fNSs5W2A#6YA zM+4d#j(Q?kMazo;9cfA*?j^zY=|F}<@^y5Qz`_jjOj(T(_e}B{Fp5JwvHj^YWnRAN zYsnO=edzOxE8;If`$KdaaJz`tx1STVw5l<&?#jv2uq^{@JuR`mkMac% zLH!B06;=Upv6oJjh1O;Lsm{|qABbM-z@d5DD7$-KWB z7vNz;w}W3_dmQs!FJFLJ#+t>WB*^nT_nKSq*HFyA9xXD z#f|;FsCA4h{VfB2mD4XrGDv{cveTa7gF?HKPqH~Rukb`UA9)%#QywheoMmUd>A8{Z zcq(sjmAt&!M!KSOI1j+O+idr2r>Lev#w6*h(B=!Qk^($kr#R-Ev>8voI)-k(F)+vp z3>`h4o@TS76u@b*S@qv7pweoL`Q$*e3Y!gs6<-BeIq+#}>VKa;%McQh|3oD8ypN;r z*WV*NWIdsCdwYwW?Y6m{!UA``WV=QiM`xsFyVy#?$;r7n90y18W<3O!)tZ@`31=Yt zdV3l6<3P9YtKcj)jZuvvd@u#Rs9J?in-ktSAS7#U?5?kEObUC@?RX!_p&wJ56s6x8B`tFKz+gY%d z5&P=D(WBtv>j(%gH4G8)oKk%f(-10GS$l%jd1n z(eoF&$3m>%zNveAw}~vJN07qLEpyk^)~^51po+t%=<4k??ivo!ujeP8sGkhC*5vx} zliUzjG3LvLiTovUky2diOkdxwNI`L-Yg!Eu#jkVCw#UMZUC|5*g1?Dl!3RK?kr?R>hA>FxeU{-J6)p zCt(+sWOHP=LhFW9Ns2{SZS%7#Ty#eZ;-Uyp1@gNeM#Ow3kT04u>rtiL*edv-`S|sy z$Nl10WK`dgZ99S|A0O=EL~U#giOR*XF}$S)>nSP=X1Z8$!5`jvrbehSZT1ktPkmD}@m~JD34^yWv)%y0+M=IVQYP(25A`WW_A%g?W!FdlT z=XP0c*!N&CZ!A|?NrnIKeB65LC5kELKDsc(uquY)S~hBiKQQ-|W&+c8I>e;89^P;K z8l9lQ7q<0NAz<3f0b6B!(6(r`zu|AE84`9S)eQdPP#Mpsqt%G=5|ta$&iWir2tNBi zbiHL%Tv4;G+qk<03+@^S9^55pa1ZY89)bmTcXxNU;O-8=-QDiu+hgBz_a5i|>0eEE zv(}ums^0ghT4!$(b*RPP7xSkisBO;)5EGr5rQ54^-^&W8fHCjG8SHNnhz#C8B7qB30Kh=izVLlB@R5TCH)Q+0$P* zHr5#yE(jX{G7YSz_?1@&v^v+X%+6ie_7uoGDJ<-N@lq={{0Y{6&v0KdiN*h_zi5-MU z0dMl6(Izi#xEMO_}}=YFlJ2%p_Abif`9x#fBctxW%bno4RBnrY&x zTQuk--N#13IBdj4#_t8?>srb0GeUAen;5k%;Jy%e-#Mflj-q|?;cw@x4i1m}Vp|D& z{xToA zioYTt+lsBDY3!XmmF$K(NdW^*7>kF1W>VwmN^+shv+1>BK_?9`+HsR!1{RRMX3Ri( zWXN$=K^?9tQ(SII6Yg4yHD~h@Dfv8t-N;LjmrDUSh-$wzyOxk>H(yUzp#aoGe?wOE z{3?IK(&zR7r~fl=dUloGm!rOe0T3AQF(^V9lB3cM-u`W(ak=ui9wZI^VNOJHs!N`Y z2C=c72Amcx9mMfcOk%hK1Jn&bBNuwVYE zGHuc6dTXTFVuLr*&t4Qj4r4^}LlW88z!B})tmZ{215dN-&FMcq;6Ky5e&rb=Yj zT3qm~C0j&i(C@GuYU-Lz+~t#${p*zSZSAQfPT&BU=j)Hg zT;f{nBUz-Fg&D+z7iaZ z+-ljRooIlOhK^Ka>5*54q@4^8(pq50&?}fr(DzZG)L=6oy}uY}nEb6k@d~|8Js{Q@ z8ABB&mdi9~;t$6#kSd__0(%1oGL!b#-$`JTfK*$wJ?D3C$x4UUUig*bRTr z{-Lb8J-4uqt}O`-LXz<|KKC#We?ysI@lA(f0&0aI+Oo63Y}&8= zs+NkACD+CllT05yoMkgiGd$efWFEyVS*}f_K(6Ac(71)tlUf@z#En6j2K?7CHIM)Y zMLk@CCT1+rwonJ52&|gwc=kjvTjf^hM_e}Q4vo+#PB}1mtCOax5gQYol-`vF}N z_ja`*NJNjL^URPSDz(wx)G*e3+gp2qQBr#&Danb|;mEXAaw zv;JI#DQAm0N_`OhV;lH?8BbD9z$(&_n&72p!0^x=Iw-&)+{E>~qer*8CU7uA!+enL~W!EhkO_dK`IJ&cQNQe(|@P!U`3K zPs1vh#`9fdU6Q^k+Ky2`wa~GS2-XGXK6A#l%Mh%2g2G_~17_zGP-1?Bj5LgZr=Yq- z3TpPRWrw$HhzAs)I!R5XLXoeI#jVwP+QA2gD28uW+Ur^y5u>%cSDHOFprI{hLeaHl zznEMzQ-;c*_bWBmF?`|JW*k$qlfK>DfD3p>F`1h4s`ChfxF3yMJ>B4sjQvaqnA#Wk zNT7Y!Lm#vQ7G91De--RMo%)*oZ3Z+-OP$@MfOXRy1p?gcKzP=fpDvpVoCO(toj*MiM zJgdVw)$`?eD^c)YE(}2hx!C0t{p@biXoFITtT2m9R=?%BP%P788}aEDR8CGLm=xF! z`550WDYYD&7a{S52O`x0XstZZCiEwZu6ze9(0*g)==5|NH(*M3^T_iT%`O#m1D?|6 zQ-tQfLZe`a|2n-%K&~F4cuR?NP;Ec^Lij>3#`Ue-Sg$I6ka3PqGAN$N}YZ`4r9Iq`s^esW%t)pNfsG{%7ZdM@+?m~i0X zg6n1I;kM_*Cci0NLkeCUfipWZDSw|9RH5LMO;F0ko*+0Uj2X*&MUiaBp(?|+zi=c{LscO6Q+PwGn7bv)s~LQjG(yu} z8wRMGk#v^=L7P3G&L3cO_|j9=^Dy4%pvp>9(X)7|DG*8+UK&c@1zL)6xE;i1dwWr- zWpBKJXt361=;o)_yMx2C=z86R1z$Hhe=$Q9{29FV7wp8@oE=y0QF?k*w`+7Yo^Zz4 z{>O4gvz~mifJIyJZzpLt;sw!zJ;Ei+HQ4m)1kgY>4aB9r9U3d7k7JoGRH)h)3^1o` zA;R+a75`U#^u7f0ja>ttp6*er0oH{DT5UoJo?Z?E#P2-Cpa=q(TjC*fgX*d})b?vl zn`Ss?=NZ%|-Vi4}S|Cqy?O$^GpfP%C1YBXbkRTe(HvaTbV(ONPI@S=adJ$6E?FXtV ze*&C}Ft$Bf(D>~zvLVb^~bX$Y?&pOk2~&bEVt-PT|6`aXCTcUDNyx#a@! zxl}xJ8-^;hl+ZwSz#IOCG}dEyQlr#6TVUk$jd>Um2u1^s+jiIW%P7OxZzL-V{)Z~X zLW~UO5=cZpDINTrcY&Ef(H#yBB%a5Up71&%sL9#rCRE!f1nVnfD4JQNB?p0s%5Hx z;xctJPv)mYEf`3(-U9f^rgOlq0YczEGx?GTL%-x00TO{*pkwR;I01WldccwIoWYkh zZYglR?heJbHaD5e>5YU{LyAG01TGF=?1u#Ui9=U@9XK(0I&{Eaq@4kX*N+<^zLT^wlK){27I=0Lbe<;8RN4U z3rTfzvs)(bu|kv%85iC^>}R=^Y%s8klsfPqI->zfSvWn7On3{9ms$Q(pkx!N9n=Ik zh2*-}4V+<&FH*kTTeB?t?ME33K)RCX79UD!`cda)ZN-^8%zy(YV6z*5WBm_d4!DS% zPLwE}sWc%K&b-Np(#KmQ$)~5MO|F-u2~4_-CsRure}J3PAbT3Nz90j(>1mDf`P(1B zDO-Ka*WB85;`L0Cv6Yq{!L1*0<>sJ(<{XeF+$m^rj@z5f?x;bUH8mo+W+7hv?$~)s zPzEKCcJ?2M-~qUtW?w3{##Pv)uJPm*7O4?6vQ+2mf+}M{8{-*wRRleZ|8*s^K}~1r zN;%DT9y(akg}+NI4So@&N#%ldLgrPE6cN?W@DFBxb2fz1vNJ5GR1 z|8mCFq=s<3Le~YCppq*cCF9xGYvF9sBJcDCXU;6(A{b6&a=FirLk?97kPt)#bA8v2 zWKUU#pY>yAqtuw1+;|YduYrGkbx)Zw&G%zHf{Q7YjA|o%q^)~8|CjW~YK)e^odZL= z#2NsY0mYM#Sjyt3Uov$KkzaQDdPVMW(<=wB+QiM@GO1#Z2{p`gyGhRz8D;f6$ z86*&nWxguD@y2?Im`SQem$e6s#UhtRZ;v_N&qMK~FTkB#RLnRAHK~PLw3OnfpK8|> z;0_5Ge?f65v!uU~V*5`dwju>_dTfyZ{5TJXxpL!O`nD;9gGjrH%)49a76*R_9yG+J zmqm&KPdXu2U7t8(Zwyh0?6}%r_jc`K+|C8Vuej3 z91d&~!hNCqFxg$z;k?jHHT%SnQbWodt%)1#>^XwPuH4W8%wXqmwWpypX048c{t9S4^E9G?2 zVPSqeIkSd@AT8b0!Wk;oP(3X3rORw4AwlJ__i@Wh5hninr;QDai;MZwIDvuNw>vg7 zkmolJ=I{mJ_Vk4TIXgyeDiEWr8zmt&16{c2%w@1a98hGA>~%ReBGBANDQGQRxUzm3 zO5A15u)ZVL%BoBq2Db894`q1a1ry`ORSgZlYFWKx=q|rJYD!zs&C-THv_wQ8SJl^_ zQb85XnO|nk;+5-4cP^MC`otNab~cm~w)65bjIUQ?_y*Tu&jt zbf~MT0rFUrcR6r>ode^Z9EQO^1WC~-U3pl*z5r;8JDVcu5!w$dIx7pbgqq?G2;xea z*;4}m!N+m;GA0H}b8iS*ABsaY6@_S1Blx$uxv5_6RG~RQp5ghA1g!h`7+*wcTf-Tdo2Oppr?>cdlNAn7F!mb*rb~bGHO}t)=?TEZ z&%py|i02PqHYzH)3!|7>T|9Q7?df~IN}Bd7#VJF zqJ1Lb@Sola6nYLAI2In-Ki=H&JO4?{!7C;Rmx#yTGr z2%I!83ID%56$dwnG3b?TjG8MWu)-Ou$AvK+H9?8~?Y0PWgXSPWcZ6zW?TkntV8 zx4)!3E%}rJ`Gi6lMYXP(M z1~s`&j1TpSd+=fXow+g!HS!-1p98*Rr`P?x-G!8SawAXJubB@M^zzqR>f<$|a|zZL zz|OZed6KWrT16#)nZ_%J%9oh8YsPWcy zw+|J5>RWkoa`Q{Ut%b)f$D5CfOX5p^@YGPnB)=6t1Y_$G1r zD&lbsKRTDIHqfENZlwhSpy46Ez5&K{odOl2<< zwYA->qA}p5Bmj&aK@rhFgUcMlW|V(&1Oxv>5q=vAP7eU6Tz>v8r|SXrxAt!eQM$qL zbcsM9`0>qDD)kT4Ujx5G=q|S>=et!XE~r*_25}uRjWKD5N7(xMMuWAKc-NC^7z#;D z-G~A$02YZeF*&KG0X;0Tw?tPYA)!+PB|hhkEc7VDC=m1E$>q7();QBtA{@Bbp zj!uJ96MuJYjCqgdkKc>#%~?D=kGuo7rM+BR;2_o6GP>$7|I7Kt?_K-19;2_b9D1*T zbFLR}t$?>ZlldOe)MR?{>ewm5)&Ey)D_}npP`3PUJ~&@h9S;QE_ag^@RqLvb?T}Xc(jrvwHI}YIw^d55A1OS%CS=q2_v!16NoRNG+lcDc z_ICL_U*u<=5a1C%+ZMWR4Z2bR_z9zB7U&IJK02g2PraE1K-LRc z8S@B*PEgsiy=@Q&N}>noRzv_(I0Cs^C{fu1UXH?I@EtZ=nH9q(;mI!mlXZRImipN_ zl#p?zGpkaU#oP`JVCnLuE#wMmx=9E*F`iqSECh}$MxeBNC8hOWt8wtNDh)Z}GY}po z_zyv?Wc1w_5$M4Yj{NqTj+(Fu z)hVyqYqKc9CW8wyVHr-DrrgQrH?x5b%1Vk0dY({n)X6j{-!zZF22t@r7deC=vTpb9Qs{ zW5Bu!=@pliK>&?=xY^u)CdreJx$t{F7m{(DRhwZw+rWZ;X!@S7Rip+=vIeCw^+_ix zReRij){>lvn-O9{K~cLoOaaoE55IT!hpY>@+3+V1 z@Pr8E2N?oBdjfU!CD*&90i$j45HxG|q?)1ibrpfVL|r$Ck0*ixoK^exk{?HAu>xB_ zbc*h?F@#mu82*M^3P@_Q45NS`nlLzIyYBWd(F-NkYh-A=)en554F>;1W+;er1B(HP zP=Z$_><&8~BxlWs+yh=oYc1rU9RyN@RE4f#1&C)V;ved>zsnqUulO#I9Q<1&c{Ngh zP*2$SmgFM9jl7_t9)6*g>Yvsc|cwh>My>5_n&{3G#&8p(U7 z#YWsSN&w%6b8WGJ9gB}oH;fDy3q3lAt~(>5$;FBDC%CrwO(rMhp61g1BUraKHlr4C zUQi_en+z!|P!{xako!N+Yg(fdIZb59RWrMRk&+5QeKmo6Cqr4IiVi2&=UiSf0Nm|= z3p%or7?k(RY^Cx)w0`-+L`vjo`gUeMWR7YYoa-^wPz9k7;WYEmLWC(F5M}T=AdB|r z15jQns^q~!Oo*%yMYpxsE&-=2yoXu5O^8-0llFY!$Oe8dF8FY>iQwC{P#u zt=So^%LN2-gZttmC!koU-(}!@aE2~BrLR7|G}M1VWcWX|HeYFdb!a%EZ|v=B;;VYk z58Mwt1{LQZ&}N;xVf-th4GR}7Ev?bE?cS){s?WRjzsdK_AbvCzj$T&vK~Md@8D5tS zzs%Q{#-{TOo~YHrM{(m(qPGVQ&-2y|OycKApC_IMOP$E3rcYDBZ}W|v{1OmpVRpZ^ z%?{NizJKop{+f}6A{R?cD>_-&_VsSXTFljzdU%+w>iLzosH6mK-$Vb(({iZ>j0wPF z^rtL08YFFEXW)FVvw*&5zQER?*55mfI!yvexBu~HF;2W)?t=zL=rDO=DU>xeBYVXo zN1$&5nE0VoabD5c{`7&QegkmEv(#4 zpiNb+$az%~DM;2gFS`W^*FoABNjao^VxFNDUfk|{E}&C?x~W)4ex0T(fb~_nE6AyW%ja?e zM4AAXDAqD7`ueSRZC>J3KK^#RwUo~v7Q$R;G(oJ_GGb{Z08%eW--o5(ff&!zjIr#M zN+&JmLoXn07I`#AJOa)MluZ)9X<|Vk!T!1P_4&P0Cw&3@^6~vB7+1H$IoR;qI0#xg zd@1h33Fse!w{rf}kx>5=A zCLMZ)(JJay43`STpu+0|7@nK+r00OVh_)ASt+u#7O#IKkeU||`AWR!TGUVm6B;wP! zy|8zUuom0g{0Bo(Idxkcqobszr&*&i5<;|Fod?%<`i5pmTgBnpS66=t;%#E@?Im$A z394;8K0@Wpye=A`z$P2k^_)Za-6G&H8315r&!+`ZvH3X;34590I|khb0L^$(w@|74 zlmO`sr1ao7qF2SyfHxV5tI4# z7&O6RN75*Eoq+Z+C6wHa$x>ZY^}a>VA7$^ncAxL4obD4t45#A50GJz7P9Ns%-2D< z+lG>Z{C?eGAS)bPkOKUA)iNr&Hzrdz7=`~ygdGk6do=da+zG$lJ)9l@A!^(TzQQx!Ja?y(kIN)w(bEXyN0zFqC z&TzDL<0d1qN_}%sQ(Gh6k3nu-Xb&9xKKdK{g7|Thy5b55u0*=6JtLUHb@m@=BZ2q7 zY#$gSe!1zAw^Uo@TiDQoE)tND);SaCV!U72QRqF_o|=}or^2U#;U;~mDn>@c2v7F* zjHe2%t#rrsXKWkV%c6&v)&fyTHWU(` zt?RHAVEyJD0NvK9Aw47k*bn2Awk%!gYbRB&TaPhumZl1yHZe4{`QI<# zS)}pA%3j_->%iM2MjOeSA0J)Z@et_&Jt(k;2fr+mC6j0|9X8V>fCu4n{`#pcXJN zFw#ek*nn-z5-Xr{T~XgiobnLHESa-{xKt%+Q_|wsmMpI=#Ny~l&`_FE1P&Q<4^sA} zjyuNvrET_u1_NHn3R?V0Db&z+R8ZlWi;)6Z4U;PIw<#FE=recq%UM&(roV;(A#}g= z3^?k;rn4<10sqdY1rTl*MAK{uzmSr-X$R}zl2%C8bU7%}0X`_gd)46_1P2$Wtq>=^ z|NCIakC20a4zi=%Yp;w zGCQ?P+nWCE)EqRTJYALF*MoUc&v%4fYe2N_Ft9VDS@(YS0#v8;n4PQG3BG}H0IqaZ z3qJ5>{TbdDd~30wH?b~^m0&gHoQIwpLnHvK!WOCui7q`~`Rq&$_&=w#K;GuL}6U zD6RC1>zSHzO$|*7T#8(Gl?t^#{y`Dn5kNYM8iDs4@1M-W@fgM!nob*1KO|b!21Vg& zUpsncKm?P!Nx}@<+M!cr=zn_+qR_`#lAnF^-t1`I+}}62qW@rJ#<|mqRRA%pfS#Z2 zbsS(rmdjw)rGi=;AsYAq%BCwEXt2AmM7v9)BWO?{ZZNPh2uaM)V56NB*1L;W-RR2^ zm4rn?!g50c@6&bLG6U->2FpOj3DvY-@{5R&ZN39IOJN~Tdhd(e%s+dl29fJ14hRTs zSHt*f?d}1b&yFwtzg{SwLIOY!a^6pL-(F{P{RI>#k^hl=aq9ZuD<#!vmpBZ)JKz4c z0+hb7{-5~h{mrGe1jAA7KI6YTO_!eDUhO14nqt+9zHJl| zX5uVeh_uu=)%V8+a_cs?eRlmvTbZ_qr(HxIip7b^nGj6yz)UZ1RKin2TSxn@tNc)^ z)r5|>LQU`h$wXHs_6GKYv!evVjTfG!?}kj#+H!{+EZyIEudEosHX(CUj+djo3oyGC zKEnpv6DeS%a&Hz>{XzS*8?kA+SO0~B3%co`J)u504Iv)`b|>P7v53y5KR&iUSoSV< z$1d;yF*aQM`^iZtRI5d3t$6{C$-)PT_9gUn^N@q{ zOZ9jlc@&-Db7g1Tzb`sd(N?-%R*uz@wO#y z8+dxX#%8RH#)#8+y@jzg_knQOlmg7q)eOK9Ojs>;1y+2T3jz_VIJdsRTf zZ6%n}7l}-!h%|}A;87f&o6^|=@q%3$2UrR*eP=0W8G>s{Dhxdfa42P=Lcxi->)Cd% zu`d_n9z=S*PxTjfSC~F$iaH`>&ZIOqiAA>_%J*E_|mF?4@NW-uz>uD^$% zwgDYDfB1!)dC>)6gO$$wqa!pMt$(GLGt|^x|Gwe$@&2{ROD|J0#AkJC8J(OQ5P9#- zSkn{-o~N||jFPRg91^lzZbF`$V*|!9qmVzvT#=AF9UMi9d^R<=Mzc2(^d|Y>lIiVB zkPP?twweox620%w`N=^|jfot{gnX1C`-dD##sLjW4NkeB8yFO#-tQ}ozRgFJiYcj@ zc3c!6y}|DTgJa~AgERtZeBAX`|0%pO%#w_T2Uf*6%gKcp&LK91M7Rv zC_o)f*X~ndc^#xaE7e{IZ^hk@+=#vQPTZD2 z(Zw=uHR(JJq}0>`b;S3l{M0Rf0Fh+6v9y%E8I^758Ufz!xSU5pT|J=Igb7~Q|p?7KXHS7hr()+oJ+**3TjhBZ|@`d7MjTUxoLx-)ksB zFHTq^hqO{^Hdqruwz8-c!ZqXZA&9Vo%YKrKFcs~8Q=GN96zG?0__{ULER|+J3twt0 z0c+luj=o!yX)r(D%S^!A9SdC*vS%g}boY??6|S_>TzGlt=hP>Zu<6gRhzyWj(lr*{ zeG`V&+^rU121>C4`hDg``mqEAQEcZpdnNa{%1-7{F8Lacvlt&kyu8h0kC5sM0n^GS z{HWq9FDPwVAe~gn(AYW<%0gHS#OR@*y8i1VPU`nxH=u4`%QE?)o2%8RDx2WT>3;Pj z-+txM;!X+Udw-MD(uCWrT7n9U-_QYjdW9NR#xkDGqAx`klr^tY<{&mSK-cQ^r1-M+ zBLN6dxD@hgYrh)h_Q)D@iZ?2Ey_&c*3275pHTMo%F%4T2~sp+wO91f=g)arlYx=)2-P|0==4dDVU zOVM|Xd`~xd17@CciLTaYW4;f=)V;HFIWo?RA+47XX-`H{slQ{Nkf!5BV zipmbYPRX584Nbed6DSgwNg@MA0`Mbpd-*>cykrPlTO_uQwo%6i{uC4x|BmJe;#5_B z_SaCDT3TY7B?66&At-#&J*(_>N(REYF_O$r=hFZ1a+{mqj^EpV zSuEK1gYBDrlEZvt*_Hf^y9xB2Q?{e+fGd2sg525IIiNianejkUONBFsqg_%F~0~HE; zQ!1TY3&HGSp4St&YV;>n$0PhC`Pxd0MJ-@bKSOQGjr@fwQ^k2 zE?PQPuHdBqR-(t*gt%~@U@@MMU8~K2PK_~zV{N5Ka_bsRejcj6gW^%Rb;Xo!g}0+q zjG1mLm9==YtIG_02@ag??hm-twiC4WF1eT=DD?lN=j*nQ0^k95pV-+BL|-20|EBb4 z3E0P5^K8JEx@4W52nj-OaE+1r{o7=DNfk)HcnLHAfyD+7G{=kc_b#A@GB2I)k_G&e zre8=rRC9R^G#q6tAt$Xtn$FGyxni8=db6|uk8s;XGJstfRL-~gSBS1z^{|WhS zbtlXV4}h;Z?v(!P*#GcMiHExzSx`~80&iXZ(jeNB0W8;T&a`7LAc1Fm?)p1S;LM(& z*K}Yw>;!uG4}EQJP7L~t$;p|QEWjFjFMn{6^)+8FJ2*606>V7UvN2Q8Sk zOioRa@FAf%wzPb$s+%2isT6@ly}7=*Nva`FT7CEe+1Of$&&bFa;~F0g4Y}iluNsKW z!xKI(kZA#GdVmG6LtYg`6FDCJJLFmC0$oXHRzI8#R8kk-gq1&%Kd z=RAgjB%i$1vFtO%D8jExr4gDBy#O^a9vS(*-$NiiJP|=cjW;7;PS=+r5(rphG zC;IzOLfSm8AClvI02uO$a{+C$w6k%IuuWothh6veCBpt;Gx?@PW*D#M(T2JOSA@U? z4Afk}^cm$F{%;ll%(g=*Nj`p}D6un^Jeu&6n@}^#k#=Dwy{KLseojmfmFL%0^lt>M zc3`&aOqtz){Huq#`)_RP0-j*BVpotNm-Asg}Wo0Mi)rw=GG|2>fjNWQH`5)G7{!her7wKo4@$LN(Q;x#wn-~+k0 zIrPo+UE?T4>#EUv*^zxB*ooZ9gPfA)b>I`#Szj$$Ueqvnj4^a=I!19ISo{b)F3>X9 z+`t+gb4xxbGKPR?BX5=cv`JE}qvj!ArgI@E`HO1`D`&P9jlQe*ccssEEBGV}&LA-6 z%F^ejf3#gy*!kkJI;d|dFt7l9ttYQZt%tra@TjS6C!(kp zBM%|+J0E=Ht8!=?N96!kWmoBwtYJEnut%-b*#OU?Xvf5C$izgEpqCTRPn;(bdIg_p zIpK_z5G?>O3)CC~euRFPd7b+elo=bKTSl48b`N2fAhQi4;O}x|604F|ApQ=|=xYnq z%s~P1Yf(#90@Q1hZx`=J3xLS-5c=1-29lp0OrFAN`es%k2~Wmxa>K>be^7Hc^9H&7gEXfbW z0S2FehmVbc2Rh_BT-xJ-L%g68;V%&#u}*9J2c)6-|AxlZMFLMc!mVr1s;Bvbx2PV! z`x4M*t;HIx3u`;}hbzUxmaM*TaYbj7m6atC6Z7=o+Pyj|Bs7Gdnu3af5rWhC)^?zS z$BOPNz!3ud2-RgruV#P*nihN*%fvoZia-ZV$3UBqaGU6on`YRjys_zc$O#?+C` zn4`~|TtDc|t-%(98e1j}ezKRKfz1i#LWy;I<#Kks|HSjLnA9PFn_{7uT~maH^@t?z zvnbz9wgyEib%K)F!YceT_QI9cm3V_%W zze7Hs(;%l-s~hrZ<{$JQTqJpp%C#)8%gsUBdR=q&yN z`zFzV(qv&U(A(bjJc{1mF}%Nk^#Hl~Wxro>ZDI{hQ>t`I;c=kku6j!sn-vww0j*EilZ3OCwVS)|!` zj(IIqU)5r^riAp!;S$;xpA#=Ay|jV&ce&BgQA=sDr ztcr!N-)Gn*Q#ti`^nyvM4U7{kqXkDtn_6Su-tSfD%Jbr}>!#0!S<8>4u94c4&r>-% z-Olg#Msu=c!#O=~Fu(DxZk`;#`uN!N{T1n1Hg^r(fWZQ(`qK4je#ai&v6l12RAcTqyBk+2sf~$eYB%E$B9G0k*a(Q9T}M>-m#{PAkFHN zC6&dD-;f%ZEflk47G8MJJlI%ueL2Mmq1C5B)dIJvh38T;USLYk4@IvDTsqJ=Z=Org z`V=;eMhbUQ<3`W$FSpx6-uw{`FA8WAi)GvEAD=Bx%fDlTRNHbzc103xZX%|i%?)he zJg6Rdq*h&=mM8}Ky%93tx-T+u5$K+~t5I(#G(|tYp;1KCYZx6BAPZ51z%?Yg1?VPYrrSMJ0cC>1e2_>Hp3SVSKR@Lafl~ z3>WYr5)lo!KIK;TjqQIZOIFf1;dv>b2H7%Tr=sxzO~+(uacGWa-$0v~F9#15U;8Lv z^yZJK!F(gZVIE);lBl_n$(iRtoTsdLN|>0~)dTq29aOS12fJR4jg9_=K|E!1T1}B6 zHzE*;8Fn!FyI4s)9^A*=_qEr0*7|-8cg{OFm}E3xKHE+0JhD4pbim+(&LLRbB~-^u zX&-%lP#VB=)e}xg%x4lLDaNcYf58a@-ViUyu@(E3SjsV)P4O_Stqs&wpO~!xu_@J? z&HFnsHN__44m~O{>lHXMlKu6#IagA?f-30!`I>Lrb8DPwN?5NH>}e4AVo5hSc=52= zTa z)TK@rI|9mkZlQc<{tEv=CIpA`WTK`O)X^cKlnoQr@&4l3#{1<9N#NSJbzYu>Knd;) z)fc8m+u~+X@ZvIzJx86d5P)5%Z(`B^u9&m(+~7>Z-P-!#f>4|Bk^w=v?;aSM1OMWogAwPrVWD9J0#N(ddOwx5q|~i;0QZ^>-Yt!ukqCGV8OF;raN`GBrf>2_y?fed>0 z{-(3i6DLJud2)3X+5^TzEk)^dK4oD8sm^6^0YqWF@fTi&HvzX~rSW%s{?S{q;OC}1 zUAK@Q#ojSKx_srTc>GZO*&@3%8ydy0$RUV?in!#2gi#XY7k5CwjsGT**w%)Ko?KS= z?KX25CDz6Y&cZ^JFFbRZsN}`>#X5y(_vv{*cO`6~vM7^V^z}GOYPV8f&MkHQ?UqSS z%2U*h2FCvSI#&F1;oH>1?r!(B!OYCN-z`Rxpqub+>~AaOUFket;=xVN82)yHtFJ%! zZsojNXqq)c9X!tU{+$q$Gogr6jYa1%ZOs2M#mH;2+lDqCO$xD2x-HE#6m}?*`1X#j zKB2#c7$>)_M6d|6ui5oCMQdZ1ZE$yEfiJPK`lR2J+x==+&llH{o3k7{*&}t62N@ABXwcZ8p?5LerYh@#jZ0 z6YjYsZ%C7Lk~VcJ^CLS~@e4M8!Q#}Jl!_OIuFWQt4~)oluLch`Ic^?Ey=BpRYaXZ{?4Sd6XgX?8c#I6E+E(laX`Xj3*|N^cwMV z{6+qhjfnL(u&Sb!4xU z4xENxsnV-++X)E?Ps{LU+;iWg^U`_UQOpA1+pENF&KGyhv7Uc89gs~X?HUJF@~ zPQk9uaUNu57^812!>``xZd3|<6mBvbQQh9-SI+S>J%2kIAF5^?oy#ArVV7~SJ0J%G^F1bKS2z%i_ss^`+Hbwv?pqrg8k0~ngPd-W zl9)-54-b=JVS(P~a+L0o5eMpCyz;_Of%BK1pROKmRr$)2W?bXCZGnAoc4em0d5WV+ z>>+;hp@}wKBQu1O7~8WgWQ}!FYRTDS=^!$DlLo^^<43^&|71t!%g(m&I|6L1$GpKP zmdYyf=>3sn#W*UX@7|~cS{WtzeD{?;dXE+B{s&!m%JGH5q%?hyzWaN7Jxl#qIyySE zD~0^i`VEafj!9Wpj?8Dc?_FV^XLw4UUtS#Mm80uHG>+aoF9p3NV@x2 zQOY#>IsFS&Mi+1VmUe<^PA-TIyvt-f4bH(KRPb@Rabtns-6amo{&xHP%uJV$&nvF* zZ3Z3~*|=llpa+6-ubEo$&boyrg%6|qh>TQSTnxMjFdf`slTmt>t5wj26Bz?@r5x4H zWANm1nK|rd!4(+Uh`tz5@KZT)3Cg7OQ&Xap8@tcwq{%?OR{p^ zfX2s!CR#`M`PWM-6-?KTBa;`1(Q5|N9RaNAMq8@ zwB0F7hkk)4?pDmGU5GR~r>rcEmpphR<%v(N@`Q73+-ySY0|k#A(+ z=ch+gs!qXcx!2mfM}>n|aw3X$SNV6Cy_uI3|8Zq_&}x5w`MK5?f%AWNFbDC&?#VrR z{|{Mj8C6vqt$}X3yF@x9q(nfvyFmn`TR@Ofy1Pq|7LZ2imhNt(Yt!A`_vJh1+;PXa zf0loAjO|))%=yeGLef>YoBGeh2fmxqPlwMU86V%DPYLt1v@8|6Jpfq~E52D%*j(b) z02}3YXxqcyy15%ZhyHRH8tul(7ze!EyMNPE3=A4Y`H-ymk+atd{W@klUTfPoB#nU5~AZ2KN{V@)ns(EKgEQ=;nhng4w@w zP#E)1fqKuUFTBI;<`!x9!ow!MPeom?Ly8MPryhUvJy>7lTru?-Z2T4f(!6;ZH(mOX z!U2V0FZX+%M!fEzn5Po4hk0i^4ZC&O(r-@h-|MB!299Uqz{i9KjYHomXIe^1s%?Bc zOi+MenMLo)NmWV4hn5mzSB@C~UlsFwUd#y`E)8{;2pX(z4(R}wPrs%nL0nwpGS5A6 z8M(AfO=m*~;bx~bLO`ArJ?uVjX!0lfo=^9yx*CJA_U&v+C`%UbEBYcweecmUshxTC zKJ%l_B^*I;il309!Uf*$X?4;ZjxcZzP*TFA5CL}b(z+S!8kw0Qzr@8&O>^eBq{Ei& zfUuX-yZS^)S zh=L>0Q1KldDCA1MsbtPzw6(RN2ZhkmW@7!fb;A6B)8X3G!M7rV+Lsggil0P0jvmGB z9PPn$UKqpNoZb`NUWM#|xz$|J{LhiRrrHaM-0-c-OD6@nFlmX81(_ma6X+4~uz|*7 z*yitiX%jTWC&sr68>G}C-y)#yq|9L{HEmycY z6FcFzU!eDs)7+WW#bo;FjiWtC5CpmR?ap;F5wIh+DADr%4tr!s`ZPU+Bl5nwD zO4f!9Nhin9+4Ki-IuwJO0_jI$R?1cX^I!&kf{X;iDUC;kT8Ch69_Cq;P@fnII^vt!)Wr+5G^a213CC(VfIKOu-lr=G3JC zJ*bL`0>VV#>8V3r92zpR%8^mG@3yvxzQ{NxqmJ<$zjh^oi=r#XORG6-+^x`RD3av-gasq`lBtvh$)a}1(3ZV0~zQdV}3;OV*f$qh{unRZ|60BL#1wrq1* zIfXkL8;sAu^h+4%H{Mt`I*PXPbZZZz*$&x~&s^V26w@o$dGT>^vo2RZ)Dj4y=2{49 za8cfk5`3JSrF40e;6ZeW0Pf9y@FCYpAveBXBp^_%{eR)Ud(<%EFi^#zq3iRB5&M-@ z0-4-Xh(+fsDFOGh&7tAEtxE236G_swwXG|txQTaLHx)mZ7o->z0xTLy%vc}@p@8!! z_e2oLu8r3k|>8(1I&M3~p$zXi0 zV4$iMZmjd1q`emc6ZR58B-Z9f7X z`LrA?_`Gtut1C!)&+BfUpD*US0|^2`AZ5DvtupZEeQ%p@v~vG{X5=F(KGUqaBK=#N}PzuP-&MpyuS?K_NmhQhf z2-MV9D@|`e#K?jaCeX?MI(A+sr?*+pcd8q+Q{imOyxRm9QfE{7*&4#*dZm%b`HQob z@NvcF7~PH>pGkIZtS^x-@appmm)x!Hwr7z)Hq?59UN|cdNcgh6}qD2Dq@Y+G0GBo zNsR}&wvhk$Pq>8EkO7hw(5pJ^o>ex074+pA+7S)3;XZ(tQ-M%dP7mWla)*ww3>H}G z<$WYSPz;e+5{272J&`ec@Q|PMJ-(@ZL3*#Ck{MCz_~*sY-?PLQlzPq9ID)A$_laq2poNqwM2Fy4!-bkioWMDO4?V^Q5hmYwPpriOq zq)#l2hozyT>iC@AF}?I5zs-@Jx~dR5Iy)GV*B zPL-nVgPH6Y5sZ*ya$o`Ynu?V)>{<9 z8WZuRGw^cHSz5ek2#Q&XKh{{s+EBbBlN-~QErQLFRvY|rdWyP#V@^G&@TsX-pSFOZ5%Ls^ zmS2@)<{v%Sut)PxmMCaQI!RieZ3x7cF>Z-p$cvqDOE$j^5!5A*47%)Wxj&#t;y0(m zrKdZFs8?stu=NEuHn`gfph@z7gJkA>eqfM~7AReM>gk!eA9V`|4z9Rxc6EK#*d*xg zuZqRBgfrM)Cdv45P1*Yr(d)uMxaU{L^6@XT_u~>xT;^b5ZPwN0;3Hv@Zi>ewCekOc z=!G;cz|ztycjd_9_3W>TYZ`$A{%fBloDVm570udv_A{#BZud4hgeTUf;OdQ`y06*j zZS3Rem(=rEt`(pUw?PgO(6(#;VlU`f4|Gws2 zXcbzQOvA^JLiu(a{vlJk|Nx5SEHlf z`BDfrwQUwYfgtjKl|a~BPli|2*DY32>K|nVjBn_);EHq_aIwB#l||0+pYMTK*uZOwc?UUF$8}uoL&9G= zul*yV`4S?5KA0A|b#jIl_;VaQmZ z;p1dF=eEsjpYK7N<#pY*IPxit=KlVj?i?{X%Wc_fOR({NwX!I4;_KC+S!Hfmb~YTH zvRr__zu>eYJLm7;pGU{X+c)s=@SqzzFj*>pGky*nsB37PrN6|%3F-}b^J8Hg-pQaL z!B5%AGb))Q??l-!Q@ECloDkOC-TgeOw&^Dp4!lI1dQClCugsD;D&b9BMswQ(BU5Q> ziuyooOs25aH*hzuquvjV;qkccG9xuuf3a)}BanZAp3m!bxkG<#V4?)hVh^V(nAUkW z5fOKKrU2#RpdUj}%ETOsM51?;+)cPEDEh}}9A0EvUo9`5?=HO@#1|wGR?Ea+$2J%# zyK_myiW@11hnvt6t!X)4|vykT`duLvr>M(y&MV*=`UJ0EwiZ z!fQ$3l|*7d`--l$qk{~nzw0u7!twL#;1m4F`csM5)+QPf6%~+++CflpuO!Qx`#A$ED)0yo1WgK@3Q{zf`p{Y@Wx`d+Vt6%i`&BNcZU;LxUhKi zy^(t7vEYQmVhrOWfAM_6i2Pze?jfhE<@*|-|hWGxTK#R5*-Kkm)j=KcxgfFUR=(3x0qA6*@0}?a}x!hDA6Ia z^ZNP)44sSfliULFmd<&drDBW@N7rI7HFw_v*X|{5BUM1RWzW%zOvov8OU$W|h{d#2-`hSlKq_FQ9Ux zqi@3H%8d+3C2yTtU1J9)Q>_-)J4o7j^69-Ba8jai_|B#)hy-U}k!~L1%||*gi2wX)u^HTTyi}> zvOUYkAgvAj4WsD>K^2SiV<~FX8H4GjJG;oG>Kt07T(#92vqo->&CTS}(LW`=%5#W` zi>YYnM+F7Z30!Uye$e<}bY<>N9EXC5E+VdmHxXK-+Z@ogE|_s-@*5|s0A#0$d5Kcx zDaeUAoZ`PPiT&Z2_*7%JB7oSZ{F4_83yV9izR6oS7=vYVFg-Lpv1AoE&34_pR<5kC zhXDJLkN4h9E^FP678cfqyD^y%?|{I-w_hO}Y}!1DO|Ovrrr-zh>O7BoRj*y#*>fp( zqD@^y^rLdnGI;ERe4WOvm|p)GQ!$8UN#!no^J0 zg0evD1hsuM5BY=p{kMM9lHTCHg=5}7z`n{q!nzY1z49w60m&?eR#tFXyVu9rdLA#1 z&(694%~)RG?tE>3PG+aGkE3^Js0SF7pJY5e@E2+Sjb|~EF`|dwoQ+(qF7e2TNpb?sd6cjt3%STG2)X13`=sbm_s`V=Gj8#xDqR{gdKg zvyS+je=J!A+mbJ4l>Bb;m#v}Ary#CBnj+LYhDDfyqQ1sBhnjqbXs3QTIZN?&g#I98_AsWO=2n+kLVp!TDq7Ev3 z%cgzcwEZ=eUO6L7KC#pos6J(sM?h>WZ}Za}n%&p0WL$rD*R0r{o0kF%&|^!u8VMdQ zG5FhtFnQkUD|5-zk=Qaf*A*`<_7ew(3@LCR zEz*f?tewuim~qXLnH4{NaDi$fCN4EvFyp|iDf-)+@tdg+vEI%yhx`KH;$hES9Ug;`LMoehc7+F@^F1o zmHECYj?&bc>E99sU$KOx=j=Hd8EpTfWpd%j9`e||YDdR!AgsvoIuLF1vvB##giOy! zftP(Mfu`bwTmOhWUxAuL{(DwBlGt;jwnI~I`y{IS*A4G&@`v0aLBWNSne2HS0s@<= z#w1t>_rWyie)9yq*DxT7vJG|{A2Hu6Z5jh&E`*=Lk6JFNk?MX)h;YG7b(TH^*FO50 zr@Nu!tQe(fs;Px9KR&YDA75y`PSuVI52>9FX2ZMlq(FoS`($clB$qqtDArIRJ7~W_7>9TBkS; z+t@&IaKXaBlZ=y`hO!F)y9q9tJ%`foMApoKE7_T zy?vwff$p4{m{qsI3Ga_4i#aM8>OMIkZacmcpmi5b>oLFk3zX0m@ zl~^*Jk4V%pN#D$g%;^IH5ZC^cMj7r+DHfT>VWt3Nt#XUaxGxJ~ruGSYqIb-T$I$^d z-EEhBW`4F1zSZ9kmN>*4gmkRzZi>~gk$MMvfq1IHdODcP>{yVOUFLiwn)mSKvvqrS zq!j|vwFR>FKi=V2qb#CodKka|?1`e!5l&qmA0G#&#yJJki^D=2EY_jR1+joLtE1mwxj3~RfrpHc&HJbSKaQJ^ zcl-DOo#RxdW$_Z&3X2*_V;NW3E7}RW?Vmn{Jaqgi`$j%To!$Hk=BTM9PITW=jh@3! z@$i>vmwedG$kUpp%f*ka+2XkIp?Dn-@b$9h%WS~%{h^}3ZLbFHtA1X3G}Q2` zd$`RrA&+YYofZ&NT;Wbf#`mtophF;Hx+I^HpPz`W=^DMkK0)(?@jwR&F;A|4yRgtb zygVTrMDJx>;0X|`VUyzbl55Z_rEhxvC~8;t{bPC}7?0qh?uen|6Bmei!sf7x2rM?v zY%lyD z5Y_Vn#!kETeJHx4dNIRriKM5x{E?8D#`2+1RAb(v2dSZvWyyT2w2B-A>HwP6t=%zF zz>zX~%=-v0>5lH+_9+a))1_ij{9AgZaDMx{BlWjge4cCcFUN2E%yKKXf!0B>nBneR zhf{Y5)~)f*jf9&6^jakMEtRO4>}{{_B=#~Ow&NtBN&&`0*pB4B{rok8gM912N~g?b z@pa8dx;6AuT^gGs;Nrb9Q%jG7hZndrL05?YBH0mb^39DG=hQ8%Em|-33KfFI&TC9D zydK<8H-}Oq%SH`za?Rcf_NPn^*zY+Z9xgQX*sI7)=ge?OaLW+RKYBG^-w!+#oxQH> zDb;J~%e+!scEwkU@-J+a8F_C8qqMLxrIBEL(&V-HdFH$RyyDYAQ0kw(0yij5^-67z za`~9Js3^|n@K5j>JzGq(nopR0SveE)*N%Nn>b&w_sKY^yj~O}2jV@pVc&rcu0JD#N zxWHsN-8fyDZ(-c%C+58Aq7+4Ap&A`KR(x;+zdw3+3aD#}II^``KvR&Mrm(@NhSZw- zT}fBKgTitPt^Dz(5IM|2(=reoJ&PKqYt{S=w|g+ywpk8uE8hg0=rV|T)qR->>-&6{ zt$bOQ%W99aRR1GLuc5{CRT|`&;&GtG=%oE-rp_KC2bXcl)0-Y?SF6qt)9Ym5$v2~v zO~)0lSFv#(pL07opWIBI=&d9b6A52T%mCw9 zyJz5O9U2_^3pga0(w)gJJLBpKseCA4Sj*$Rf-C0d&x33s*Z)Pv?5z-Ttb;N{_#}1W zW3}Qsl~f{}sjHGS9;z`u;p>(Uqtb8j5l}CFZYFNVV_M`O;dt|tK|`8@bYmhHe``XZ zDWxKM5WC+$>*5$0KFNzC(UQHb$*FX%3i1zULBi#{!G1EzJ@g9q4+reD$GHY zG@lTuSM1z1ovGW7)>d59;eQEn(G14FAR1RW*|7Xp<8(f4#liv=;6fBiC2F6G`&QT% zx*01#a7Dq>o-mV6PVOQ4G}%@wGv2_ zF7?5b$7ZQ9kYkJ0cz#N8VaNIL)|pl@%_ov%s%)jzw-mEuc{u}4_IJfhp2#lHI{9b& z3+gz<<PUch4f^Qna(?4CL9ra*9wn>?^ekupU^Yj?4tn%RlaAu#c z5eiUeN~oBeVe`7NV%Fs$k|!GJ0lO?Fd%opz_Y43&q)0CJT`f-`H$&BmAGnL{`I7L4 zQ1$%wCRirHoG3D!IbSJVU_e6?zB$GpNe_2)VZtbCb2zEE72pgvpQixXvPxtxuxQsJ z@;K#1emp(gD?lV1noc^6>qhsvDz^OF#eUTE=@VkhAP$5_Bw@>BlNw zOs`)ZI#Q{$kfqtc+eQa`gWiB2O)ObcBLRVtZfO#=wf1&}pwI1d)0!HM_}!7HA};_% zZJHWHuc2x_UaXO^c@P{dW>nq9fhqSb@EJ5qmVAoTg8u#Ethx1CJt32kQ-G+RcwXLkfzI{q6?e6K=H+Jabcbr-1-GpJ z)NJ3>W`mP=n|>lbayt6EUWPgNONo~fKDc{m6SPnItc^8hntfVs_g9*eUqtC ztliJL0ThWmF4qjpje=+AYv>Fw&O~E2ML?f$c3ZFulw*qSkBFB`=P-7}!-p;5gMVJl z+<$(1FQ%*RM-H}z=c1FdQx+o^Np-#&rImHy**ZfVTMDc^(UAWbwupE?Gt$|Ptm&7B zhUJz(O#?4XC8g8eL)4>J71ys&@#m&J8kB=*G2ko zFcioa3;`i-R&Mo=Mdh6su?vQxBBs}`PbPnro{V-oE^x2f(~79aNqA;G7OY<6InB?_ zC6`3_p+`DVQ*H?_U1JO+Ve;S?F}!{)W;^r}T%&)yP+v+Ck)LBSnJRu2u=?~?t$EaF zFzJFE6#UKT(x^UGOXJsW&$Er8d`9q$v_6+Zfsk(R?n?n}`7l|XxXWuo>##uOvd`g0 zT?)?*Csp*-&f%(V8?0c6hV$2{JIRea0u{2vL8bSeSi9m>)%`UB{)-7JDs=L2IxP8} z{CkbQwT9lL(}1FCS)^ai{;=Bmf8EFi64`uBlv}07H5oFPQ$pbc=;&U?;;cNJYoFR> zyU^#%;K9p8yc_Bw0$L#+Imz`;Q*wnQKHUZ#Em$#a|4X*Ncq0u1Ie9fsYt)( zx$0t~Z#T`f6_SaOsUg)5IYS$pwgd2H9`3{0T8zWpfpsOQQwcjI1|s$UUobJ^J#2;F z$jNn$bBtosSB&nsr}NV5!&Qr!B)IV)YtrjwgO%x?)4HR}zSNU3Zy|rft(6^dbijZ; zAYH`7#p2N_?qm5ic%5Blb|w|Yx^F1#R3cliR0qZjKho^u!Fg*x=-=#SvL9-Npj-69solaZf7j@<5O#=ngZHuS`rt3hlJIX&ct-9bjvn z8X}o#Psepd2AO=v8zDk0i_#{K;H>)l;rUS%pMekBHwWj=koHF3e^VgS7xcA&TP#sw%Bw9Rv(o|=O0zu`Bl!d7m|!6Bl4CSe z3>6~qjt;TBT=il2^|v-YZXG_(iqSM zn*?GLQ=?}q;}DSQngf}4NiuLPcpeZF9~ zcD4qIyNR;fy#0GJpt5RFf1crL^gqKv+n^!4?)K+WX-PeP0N)Iwkh5ZLZ%xKNvgQdl$O}OW%&w0W*AQC^Q%!H2I5r4# z-V-?0FJ0ub+XS>^&Kb z4JM5JVfYXKBw^v@MtuvwP=GKYft0CpuKsC7KGBW93|-P!Eb+0k_Hk%z&Cb!$Y=D7p zKbGI_+Xo)dDv!%Ya(q9D`~=J>tyuM*A50tcU;e=s&baFR)0eJ;DW<5*dthuBpVVPaw)ZnTjb zFlj_|V?WR8mj3+Cd7WII zOWBulXS?MW)$3G?DuD>s*V?tloF+`q0JSO12YuDh-QO>x+_PjpZEo(1DF91!7{wk9 z>XceK=GN*M5ct+VFfhByL`f-9s*j#>)qbA-d{lk?zyG%g-GSKffkWCYHQHF5XKbSY zY*a}H(#ShWwBxATPxwDaM06Z!z)|I=Hac@Eiw4oXyHblE)qSRS=xVI?*;D$mS~A&? z-jXc2J?ShI+xQ1Ik-TfX#}jCALe*vD%S$l@b7pGzr>B_u2K>92&I2esy}U_5-#?aC6v)%3EtU_2+{R~rIG~4X zneU6h-wK+fyEXj%-)QzU%SRcE-xydKpNA~rqYHziyRwM~rMi2FJZ5XvD30S9g+iYM63-7PFEB*b)?fB*i?Zqm)ETW3eCx2WfGKX!0@bwxl3MbypxhTPZJ=iAW0 z4=98fGjU^9+7M_qy^i=l>r;qJIKH%yjHI3!$YpcoTWCapurjEipU_1fy#vMAgm$yj z105Jt1*D}3V1AP8o9joN$W!cQViQD@mR`ezu!72Y8RNgr4zON2rVRj$PwNN4LXdio zsrNpkl#mXIuBI6(XyK#k1h23eD}vw{pQv0e2EN4Me|FI3{dE z!*1hWJ##F{$ss7;#HaNA|1Ca6PCtG}WrQ&CYbto3(qAt+=ZTZtQGqpD<(e++O-$j{ zNTL|22-F<=unGw(sob`$S%GIDZmeM-(n+=Sl7X+}j+>=BpDbv@60*uUntY8k_2wN=@IfQ;-`xDAI8v)gY z0t_7sa$C*~Rap&Ly2vEBBEC6i|H{M#J+{$-X%8VZq2?B?sJO2mT=aDBaYwdaKXcPx z^QsO@(2hpdq1$M%mt)*pG^&TUz z+J7rI(7&?3-wE?3E-t@)aS>y4GexVM#9nE49M0YCs`l0mX^O#sz&WNorfX$us6>4h|?M@B8 zz9zq~RkCYtol8FH87>Vr-ZtXbblcdVIIxf%b)JcM`Zid6kflY8D$W|33u~&krSXPy z-&Ja0YpZHrXe0r%FlT4SY}SSVAcaD3p>|o3_&8%>!dmb!_wu6{1e6iK3XCjJkRiH7 zQT8k_vR}zBo6o$jp{dOOs=l@NFA-Q7ToVb@etIcD_AjuJl=-DN1p2-ZT~e~EcepQ5 zVXE%~J^A5bSw#g%6z7=Z=ffr^e9hd7(fAz!Am{${f67Zm!%5=b} z(oG8)X$Wpd1ltoHefQc)Pfgp>(o(_yw%-~MD7{Uh;b-eNpE|Ew=i09YNw_FhwgsMV z&2`X+KVO)~HXz7ub+=p>f3di&h$|Kxq95EZfiXlQC`r_7&s3c@SR3gBJDj!g2Yaq7 zw7{|3l93g#`K*oGtiV-HNrA5rYCX?)`aEOh-FUi`>f+!RtO^5_a6erc)~mDIK?O7{ z_N%Mn`5iFx6t}V>X@CefT9Ron8=%wE(_{2}uIm9Cg=cmz+YIbM@vv^S;6gYkOC;I# z>46nkORXvS-=X_d3@YTbn8zT}oRgc2hLh8!6WrJgWX5YM|rOvjxnbTlcHSLXubWHDc%xe4ODbFi~FHY-YY@!Sd>3KUPBbpM7B< zB@_bTX))lc2IeKkWahL|k+i~dBn+0~MA91!vHAmTDyce2e$xX3{*iBbUiX>4O@NDR zYj4LbDY=~li9bRb9E@|s?kEv(kTlE*Z_g_@P=T6EbXUhX_8%X*^Cx4Pb%O=>#uhV+ zx?=-|9gI+BO4)M>!9Eo2DxK~If9iMfe*S?2dAv#01opI%>dVQ1aytplErU>0GrqCt zy1S(Ci>t&-U``P>#y;=(+3;*dlq*m8Ss)LP1WdQqDXD}AYieqG`|HC&V{UZTv6o!x zR)o8QGSYI+XPiZIQ+C?9HqXvznYEO{4fgV~(Mx4LPr=WhKi`aJtncrvV44%r*VWg( zXj-CSekL5ELhda-vs3$flruA8V}AAbVC0VoG|eSXl%2$c?>7<-gg*0T;YJ>q4!5-jew{4&vqHYT z9kbfrB@aCHJJNV7XTB=w8JmRteuS#^4{uq_u()>)DM!fG zi#XEd{mR=k;1alcA_3z=MELR*5|5UH4DI+*Yhab`j*b|)qK1aXg88kUQLY#w1FkI6 zR_q2_v06WeCZ7+^_Sq(wu5JcT(YzVWU{Twa)-R2}lH6F9y~&q1mTb_|TP&+SK+Ecd z)U~h?vZnPsl-Ja}oSF;7M07q}=y@!~tTa|~=e(%S%|!r~x&l+>a_~M++w{UcSo+=w z<|F#8=R0cMpln&TeQCFI%B9=*4PjE9%kIjqqslU_-0)Escv3`NubNbCJ$HEWA7OmF zJu8t#z4SkFaKR5>nvl3Co-Mr`i33;F7uNr6RhA-uf2T`Z%m|EnN4!}SDQeM}uPq8Z zT9=ka!?G$ZE&kX@^kzxa1>E-f+eR3@bpnJL!EplF5n9h!+$M^1=W$`#7A_8sErCET zu8py$qy6}DR=IRH)HTW5ruuqB;9S&pUKoc%O4`ZC=8E_FT;sF+Nki6`z;yXL$fTkh z$0R_uc5ExnU-^I2f6Y&d4GvIW5^goEXphIg`Oy7+_%QM5sVPiu?nL&<+OTkW`_*+~ z5R6F8#!XRaPLBrhKwlOfi;oczMtK1Xc^+ye9q}_W2i&lMSnq2Zd_26aw4^aroFpzQ zzO?5JsQCv}Nd?yzb9G<={Na%f@*kuxG_YG8%w|OG5PTy89yQmkG z8Q~thGbqi0S__8TVAX_ND0V#Eb&K`!F*=$!-sX#C*RA6pkZ|$V$;#tyX8z-0$(HO7u{W-1$A~@6euk1;G1QCM3EIt!SO! zA7aN>72~XKFH2lh%zQE;>=C)6{vj9O`1iNm-mMRJyfSG?K8Xgmto8ML_L~cm*19d9 z6#U=g#hg*t-UneBJbT*j$FhWkg{c4;_7+J$Y}yoh7w^q>oS;X{`PJ15oUz(hG!pn{ zuI7|RH%1JA4A#uL_Y(aK$(vP?ZLyrKQwT7*ksefUESB&l{s*>8d_FYh{Qv+@FzDK@s1X{2OvQaNnBmcZr#Pi^T3>K4Sj05T;Hh#F~a0~DFz<)ki=45U@Xq! z-#K3^2v1_Alg96j)7AB=cVI+XQu3LFU*>owrI5mDA9F=o?R{nQPUzl(Xq=PLP(X6Jg$P}&XOp6TjbO8=PIoYZDXH#_`0WGM_V1k+_T~zU zu#JD4$ub@-v~ED9*lP6v;$pvmw_{lnySJR;n6|F^Q-ae%G@rH5kqmZU*%IGF>l z<$B|(6&RV6Hr>Kfcr4xBNrMyrla*D43$N#ls%d8Kdw*{(EGA=z z-SCT?*8yGl<^*d7Rf^p!!8e)sX?=5ZEu0Mtnru!U3`VdN`ca;DA>!lR;2=1pooPf0!7uI7))p~ zypI7}Kz1cZ%}``Oex*~|eM;>+um9=zLG|`Og(1B3#m%pjbv9M(J6!;;VWn zuFa>G!LZcNEgj9Vu@KJ~7nAHrgoNc4X`b$do>O_h)}b6L@C9{`IVaoeViHFoSpWqG z=NEd4+QN50UusLF4sH=bly-M7()}BMF$WAr|4mLB9i}DA$d8CA*$4r|s*`Zk`}WK| ziQk#7$Fm{hr$3XXZ5h&f^GXG&N-_1sc(y*;+J{X6agJk257F zZAfv0n%cziu{a5IXGch;^p&0Pg~m&z458pe{d-oOQoI)+T=pfor|EnWER@y?)oW>S zvTF$`fsoKGw-K~>&C4HEm+KN*L1Dh`20WmB=IY&=$w-s7%j9*lMMYr-iOu$90cj~56a#=>~#62;Dr5K zNHQ{hUj|YdCNT5%_xImG?QTxF1WtPi;jiyjww_LyYIdVSkk{OLPXpsGzUWZ2+j`y6 zIa#|S$GP)7A?woF7GylG2V0+<4jVj1fuT7yD=Q*!<#jnLZh_vFHicB3E7af)15zN6 z1P;OE$lB}I8InI9VcCMAYiVuM`1o63ov|9YmEPU_5Ii=y82C&nlY8fTWxCR2Hb4gy zZ+6QvHS1!0_F@9lqMmONA!)bu&dZ{8?sZ=&@)eUi6E1G$KwkkYf=*8I4Kmf}O!U8M zYHI$Qo;G=U?C2dH>eyR$k7dcn7nQl-()XMK+<~FozA7=--0NL!n87ckC+k@j*L8E2 z`fYHx|4F)B{;w%N+82{mB5Pj!F`OP;IW18M6I5^d9t^g*Q{+C!xUat^^;pE_w1u@^ z{P_<<_2>q0o8({p?5)=hlb1eZ4~%r6o~u8Wu&vp3cB1fFrtn35C&cs5(*&Ymvl;o@Bciel05lt@GftuOAUp~#`W(+KQu&xsMb>!zOJMOPFR z?HAUnQ-O$MIddZ>^iiiW=b%8m*IK;8rw!c8H4Ae^_tueprK^heo5S_II|XzyF~j5*cUAj-0vwP1@w7JK+rnU%Me|mgLl2v*Xe!9jaWJ|{~ps-!2|JfFd zRxwV+mk7tS316eUl|()ZvC?xOJk@cV4ZeQZNN;!%npba zI+gI|my0mO&fl1{yuWG=LBRNdc{atz2YFKC;UE3DXtSVKim%yfzKyko1h6dEcY7or z_3}PkkOaA6X-%iH+^_7?8nHEtb;H1jp7PzhltP7q68Ec$WY`$U=T!vyhe(LcxKUrq zeP@cIea4AQFYiLfDaw)$qe+h4NC#n%yNXZ=vvLvJ2WzdaQOivOPjXFG$*H&zlEp} zkDN;5nNzSJi|#KL>p>&#NWe04(L#iSyA{}_vud;jU=>eopCk9JmtlvKn1A=v?`vJ{ zPF~y^egHB6z@+W?O&|{<^dR*iltiQ8EMtc}PGmIs5*fGz5qQbLfBR%=T8?n-{djdW zGx_y$pExbCOLsK`y7lx(6D8xlr@;rej=E=%CGjgGvlU{!P={z~ne0(Uc_@;_WAAAH zDaK>&pDd|FtP+3KBV#YNYSI3^1=jBF-VF86qDDZkI3D2k@=rAIsG)!CHe`Q+hJXqK zE%kbmX4Zt=2#t1lR!n)aq621@A)0-K_hT1~KFOEjFN5~Hj&iu@9PR6)=f`4`?vCoMWhS`Hd8;i1MGLkhKBdbvdtpE^Q23@EySF026Z*3Q>a$g#!4bK8D%c0Bou#=}(^${Bfd8;K8^_wr#44eep_ z2vA-6CMF{JZ*>xV8OCAEK4)q!iF^4t?2&nnEU4Sh7dJAYZZ5Y(H$GN5FTK}gQ5Vi_G~uFVx@v% z`Og_jHB%-R_oJ5975P-3qSWFq`EaU2k9eUHURQ+P-o_q7$Rc(SJc6;Y7~tS&1o+o5_C6Rz=m1)&EC5XKMew232`l-`3W z$qW1v71-Vn8D9Mw?8-tX$iM&mIl0C1>WAT`m@N-vvn|zc=p%eZ!d+x$b!6Kjh+sux zwW+jF?aqco;C5NqgM<4rAX{2FtN9msY4g2+^%r%uJ?x8qpjYn>PL`Do1!|)04G7!o z*KOtoq^)2SFcAC$oUcS4TYb_qyFtuO+ht;eySFm%KAwt=GsRz?y~YREEfp}bN}mTd z>v@@@U>+feehuS)W*G9yN#SLx{ApX zZ#?G6qiS2F+9PIAIaC%b=cvU?}fJZ2^3j^Vj?{CX577uYN9p(o69bnL~a9am^o0iGo z`}RaYBzx54d0q5a= z+509KK5_Htp1M0u(Jp!0Yhnwk-?m>4Nl^A*q*^Y3e1JD$^8GWb?ziz0A3kVgH)f&Y zt(sh$q^7$P;TTbcM4=+tTVN!@LxfT)-`zR_c;ehlAb}-`52CNH65V8LAa42{YtuF& zu-G4Tc=Ql`gT*jgp~k@9-}9O&lRo+U%*Oas93{~{*lLu>#CTk5YYyG6r5806KRqw> z_{GO)39F`gzv*mie3Erj1ZW)19y?-7%OM7_r!sxbZU=~;e_K6|#x%Bfj*mB%O0OZ< zr2nRc#^SK`q$FHk06Vm;rcgf^Nonaz?W8zsR{i?0vn{slrtF`KB7oL|hoE9*B=ia%3XZeen!L5LE?$o@u1ergL(2z5upt4=IHs; z)6-RmoY60;BmrJkwo?8J{{@X#WVkbPbJWik;jb~d>)(As239x{ht1z8(J@fKkdCS0 zXxu0Q)43CYvDRVSc6Wc*m~88?iIkJ`9dN27{rX8s(nuA>;Vhi}OFz5}?c1E(Wl?Ku zTH~w^BO{@zrROquE12cc9dfK)$W=2E-q~r${qgr06PK-#htM<1zN!8^raTZuYDE!g za<7cQfNQ67VK=B+#CFU7f7p7`D_>6Au7dgv}GX^?IZq`RA; zySoSJ?yh~lzuo_yv*+v^-T)KNC-3XNqQ?0vBIpb;zx;%u(}60n@oJM-7_~z!&&aO$ ztzC2N5Lg%)KMgbqxuMSitqdcT7L;~UeNX8_0G@8=-T+Zq^yTMFN z;T(razvFSR2jXeMzE|mWW_7o%{D&UIrl3nGW{M05fDL@94GVw()UFI2uE{973{gKE zMaA(HZYO~SnXSs=@~tL5PL(+C3nhWc`XgQ(A~L{YIH70^kpI-!$qV49{ADrVixDQ1 zP5%24K}xF0in>!h>|53xwU+=4Hns7*x01mmgg$_Z?6-`9=lJypV~O;n%n0b{ze37aQo)X{pD*iVZ7_UK z9$9Z2Qbg?$ZOSwZ+v0#sj*2PVtSCn- zSXzOOP)whfG~d9(6RXqcia@9MMOjN>%R3MbDrHvx3w=Jjw4nbz5f&=S{=0xD1P$cd zJK`Es3kxDrQeEiI>Ee^|Om6Br&9?Ll00RB%AH(mk&5OZ75L3>0+~1Prb%w_Ws8dsX z=<~C4wMUhqt;{BWx*cx%S>f*=&I1xeVtG}k0l)Qd9j=0IJ7g_~KL2muXjf&dtRBphb#`#)c)mW}`GFrc7eWOdRD62(1i-%g!W9)25*iw`bcz{#+s_!} z8<3k^>!7rrHD z+5ZIRuA)fA-$K9nwOq=$XG^Bn;l7qP)sX>zv z?pngd^XnVrJh0=y>V`(cb7S)IfY(p>G5RuVUevI{9{t(-cHDl#pty{eaa+<+eV=LA zld*Z4h$y+L8t`p`Z$dBB8oA31@T{MHR_Tz+UN2i@4_!`1+?nYRF!Ck%s9fgfa-_BP zNG>Ge;(6xp?Zj30i8rsT4E^-<6zp<><~i{3bP5Ci3<~xv^|l#4GVBluowatJj6fPz z@_0o$u+16Sel=ixc`Q^tqu_Xx^Q^vnlD|T&PNGA^Ft^ z0Zw!f*5&M-Wv|nHOI?ppRXf9*=GwCtvNqAd&bRjY#cQ8a{QuW5W8d=O@9(#@>{cx$*Ot(0LJ?3YiND0T9tMHRLo$pe#YQ;&#{A&mRi z7d=z+wXR~dJ?Qqopk9=VGG_*!N06VN$hiRD{sgQZ^+kVyIbu_*Kr5%qCA{l}h}R~Q zw@+IvHqjiMe<7F5{pdlwHVhRTccUENmmoclzmf_6nYnslsbyxa{Wy#DUyWrf9!>tT zB%zdLkEu&mYG4*KayLSy?MJjMnE!GFc#pCwk$IEt+|Al6zSLG9yLA2aW>R81Nl3Ut z0TqHwU0tKWF3HR@rX)a?_?&J>Z7CVWFyO@6kNOtVUJHsT-G96nU0Q2u^&+)QYiVsI z+%a9#-lb(8NhH#pkKAgs9UPJGB=GSyR=&DZb2# z)`xy;KbdI~%`Ci}{e8zgf1N)ImoA1(mK+)3U=>DsH{PO(ou){6>N+RcKS zfrjW!wx^Su$K`yE1!tyG1aof}x0Vh=wC|RrkvX-AnRPOe7Y){U@B@vAm*c9vI$lR-0k>$%G4Uf3kfZDW2Gt`1kE0v-S zQ5Y<|2IZU!x4ZM8#6$%6H(b@mC|-7ZDK*r|fuKD@??f0AB_%hZyU{IfW5YD2(y@o6 zYfz!bS1KSZ{SgT$xNC@y?d+K7Nd%GsUj#$V*RFNEH;)SvKEavO0KYrV0uhW)FnlMj z?*#`JR?wz0Y2L-F{V6I1!Y6vqjp0aN&XquIe^gOZBXQM=*RSxWdoqrb4maqR5E4yD z668GX)2pto4OHPUnOT4nUJ#^tw_KPhJ&t1?vetXfqyI!S^KUl|i^ zytgsxVj!~ODk#=utcUw` zZ0AWoSC^f+Kx{bg>*A5vajmGf5}Z%f?xx|Ihsw%^sREWFD}DsZ~G+Dpy&P} z^wpM>;38ja`jr?=Po&s2Ej_*A`7Hd2ly_L`jmOn$ z=DCx?+v4Nt))l3fQWw7(H11$AWF~Ao!wo zWC#Q-ueJ#RvZUJWvO462>(5O`uQnrzA-=W6+V0=eStls9WCZ$HSLCSq z8D5i+p>jC|9Nq!4RmK;dK5j~A0W5U_su{Ph<_T!>I;o_xZP(+`Hcp!9d9`6U9*K{& zZm{PUD1sW2)3MIpM!BVu^B3m+WThD0U#&Zjp2|?YJy9FsBLm&Ned#=npdb=^=QT^< zR!GWT8mP@{;fG$QM?_yX)odpb0In;>uJzy=yV}m4QtRf{sNRT2;Z~OjugvOZTM|xk z*RkrpC>WnfnY$J3B75zsd!^J|&P}k4Wm;aZn^AVp?Qw6J$J^D9*McSMPe}QNxk^vi zJoOiZD=pn->(h%~u17Uiq?`>f4Ch<}A73$+Y?)fc!y=FMjyqz*(>)xovF;%I6@a-R z_L>llI!_j!?$~RZu6=86pANSotUBuC1`QdBvll-HlfY_?pLi+qvXcc{J){TZVK`-S}UPdj?wm2H_7Q^&3IQZv#rCER%bbT;KV32hhwQL{+#LUWV@GG6ItrU|ix-nubTqW$|Zih3r zKO0-jiJYLHBw9YpQNp!($XyacTaH|n20)dta;VG>=1Mfv|E{K7zJLU<)M;sK4mpyD zp>@o4LbagAhRl%QT8igT=bwKgeAL#s20gynmq_MJde#>^siSJtgDO&)?W5@;oB zi|T&+7+-?x1AkdO+cn~iFA7Mn2smBJFS+syl8w;8ROW*C+J#~$1;Y$AE6feW^!4)U_Jt$4Ta09ua*-utELX;_?1fJ9y+;V4HsJ;Rk6;pCsq z?(HLNOlKtoL&qHr2X4nuDOK-v=A*TTxezfdmi}!4l4T5 zLn>sXqkhRFOTW-t4_YMX7?~C(#AV^c01>(kua%({peATvy$#)dp;&5ljs6{i&kcm3 zYyJ5^izMqc(X-rx<16{c*sfBvA!j6V3kY_rzprm$nxq3YwM^k-{;g9$N9jwQ{&M-( zy72x+55|W**2y9GeH2j8D_+H6!4$;vkBtlIt@%cbrj7PZ4i#5hI+ z5OzW;x*9Ka*^auEiecbUN%n%=JrNbx2PG8J@H^OCQ$#=Dk2jF}^A^w`L6;{u$C&v6 z%|fFWg+I}5!q)wKI>T_O(M6|ZtNRbyKh+>GEq{K$1@v}vr0U8g;H`=c`&+{}COIag zKJDA{A9JS30+2h`6C}a`VL1|@XhZR1?rY69AOI?RwKpDATFRWSit?)6PN}oR-{kk| z0~kh4d8*8R`{@8$|2BNI*Fo-oBs0*U8c_{*9wB1~ygwh|YyQe42)QJ_+!1s-P&0HD z$ee?P@Qu`8E&V`Wa%di4eP|EzqBhduqHZ1@!ctMOYkvc>4jM)3N_3HcuT&}rW@Qz| z+p{ys(2mXWK70uyFWLX^T7zCgdR>in^}? z2pGWMkSiX)Q<#h!O2nM%Z=RlpPfx3o3;Uv~#NjmA-+pRp;ybFQ4=E0Z1NZDNtJXV$ z)>Y*iM|~nG{0EMeOjlH%BGIH4x?Xd7b#5qD;o8i0@jB(7)N{B&O$EQ<_4n5#4HjCC z`K;0MfE9I{C$^OV_{=Qk>ygV7_VjndqJ@M&29`o-eYa&^P{E+}wp8HHPFvPyKzcgC ztC6bYOYU%}skkrnF8)ft;x%bV(Ll*sa&dU+K^gL4;Hb+`x6Uu+j~2fo_yF}%Ntt0GhdzbSb8+nSq<^AqNW^hr_mz30cpBPb0$PM4p zw_GMnh_1LZ-1_t)%>BU{3STQP4ji4U*fq!y6S$O$p+vqsHz75_`0?E7&6Q(7qIAH( zETR(rX-$%v+LZM>rUxYvJ1i)Livzxk(iIyFyPgwE?r$wR@Tv0u3|E#*EAc?XD!hWf zxLWt-X`%klFW+IHHK?35<7*P)dICZ%p^$d#s?+$-O0;~Sh4|REG*1F3C_@Ro!k>}= z(AE{w)!hFowrp~EPl=DW+PzA?X-o|SFIYH0qBfzRRbuJlO&&*(-RhQB<4r#%M9D5j zX0+=AdIoOv{%Z$Di2pxI=!y0E<$7HiEGr5`=lN_}6>#pW0n=Yc{t5hTY(?hQYBp#2 zZ1>;iCNqJ|CI=f z?4==JAw}YHfR?0Qp@$93i5lo3YQGire{+(woGs5zz%=nN)vsCef$Uqq&txP4Ta0MK105TM zym1zv$_wdu00hR}$sCEjhd`Ne@;6`toV<0pW4+k&ok$v!?B{WYUea@oU*|e$>#D*# z?3C`+)wVH72Vl(J2;%h96BC0Ij%kh~m}P>|Q4Zg2{`@daX}ebskqJPJC2MD^S}No!^`Jl7tobIp~sFSH2DY<;d@SuPvHhy zNQoI&Sd|7V!!yT`d@lIuDaFkM^8H83bSa0;QO8v#Tp!_3@uXnY(%X&<(HQFNE5eW1 z+}=mVJ2A-o8ZlJa^#9$U!aj!sN~YbLlan0;C#NlB4^^#i|39nt)kO=(jT%p~K{YaEE_Chixm8MH8nHas_f+11hT7vwwMF~NOwgr3|q>a=6ZjgAV%~S z+s3AB<$55-3&tPse!P@rp#E9GR0Ch~PpqVo396Tq{AU4=?u~I0nwf&lL{fhXqJ)1x zeiK_F;6|Pv2EyQ+au6Ndxs^9k$&eNO`tL!*{`a8Ge}D|w;{TZ&6aGW1T?+j~<9|&( zHqsA+GoA(h*f`xj<;g^y%oGdeN3yu3%NeEwlN|Va>+o;O@sGkw@abs3U!8&zX^3_U z0O!F%2P(z&)I%UDYsQ;J`oD;TW%Wwaym0(yYM=E+rPLF&jPB2=V~6rtHqu{Dz99h0 z=oJlm?7A^GYiVgZ-$yfonVy**iV2|?hCc$*`?e*3dRH;TB(WykgXDMD2v&udHIo?C zIz#U-f!SX?wt)T%pgr^-a{GyYz&Bp53j@3UVGr!Tvy6oU+nTGaw1>c*Hwf~KS*8MK zrf@0y`vW;P#IIN~?rut$5DXYdY010f;oO8_OEhGKAXwxvDGr=Z7H3fl|e~u&G=|k83X91E}11q`yE9A3)gM} z`|TA=(Ji*Bja;;}1Y|t6J;$jt(9KQP1=z1^g&~iN85@5q%mziY+qU(+&tKCQ8+?dp z-uF!Xb)wfVwLE`J0=B2>v5}F19p(k_bFU?`!q=%<3*KL!OR(NPxdJ5kU&vU&UuGNP z{TkgsY-&ug$_Wv*OGDT0{xRinEb!(zeiIc8;;HJ93`F*yTRnRuChxV2VchLhNX84k zIB>P1OA2~?|B*n%GPb-+qi-)-;NF1b=z_m4j$x#$u z1^BW|vENidf==@2mngxFQF%#Ta?WRl-)T*8`Twz-Z;rlxPFR*T7M(?0Z-}lU411?i zl;uYITh7_>LYmjD^BeYR5$HbbC^kux##DkGc~tl8#Y!1upn(vqKK?o>ep}XY^6jyF z*5b-)IW3Kc{l&}JnDdr`FX&g5GT{7fvRC2rUxPP>a!q@YclxvK`{MhAVN9*1dX4&w zPqPct9$%l*E50ho_1{voa=MOw2?~Lqt4Tc|H082h-Yv(m;}sT$0~|~x09WG*gZ5}P zeSuuvg>la(l|~ehBHa79VHL)t8Yzsh37n?&{uHfQ1%yQ`N+ZK{7S>VYf?%ZZT#&nz z8SVUAJA~H)6ZCWmWT}rfIBx=?B`L9ggfW?i0x?=0?ar4 z&ORDiHmtxxsT@gOEMN;khaB7)Wa;>i)?P4t9g#|uKyi{GYjQyil1~s-s6TIDV_^7v zyi-hyPPd_l#QB=?s`R2(*gV%JA2>2rP;CM;gO{e5c^g+*WPpPv35 z){_CLbVfHb8-mgyTwYh^dP0F^Lyc<)3uxqNRk+g5Fj*h03oBdGu$t)PY@)<`aIR_@LFb}U#K@Z5> zbcl!FjD49lleCQ;sa^7RUZD&~f?{p4IRuj%G{Md$Y14p9^gCjbeHHF|%Ohl1kKi?g z%8eN~qOZ&m{+ZH@RR2sUg`T zvyx$zN_Pf4KT9B*4ejEE1?^*#!WtUdPujK3&N}yV0NnMIJ6Hcss-J;yskT78TffcP zahVN6f(F>l?K{;aD=X`gAQ!7J+(2~Z=Qm%U#W(wnW+WKj4q^e*cWv$MvEG6R|LHr1 zhQ!_7iJzanV`F23RvOh(h4U+7E(??ee`pzb=Br{o-cG-AAjg-QU|n`698=# z-fj#8$dK~W#ok8s_dOA9UES{P?w@@c`Q^+nkGH)*oa7Q*NjVj{f8z~~RhtjFKiS>= zoNYU>mTW~0#mrT4fZLwf4=y z2?nG1{czxruFd=gCp+B_J_3}OP$Vkg!qWur-Ed46Ny?4x<8@~m^6Dio8c*R`{ zlg?7Ldph@>B&Z*+_@#Jg$IFa|#arm0Uq<6>V$0JuIqnD)D5VEs=612(R^{}@C7V== zF~xmcdB^tw+qI#=v(-=D%fFON@htuM8J3*i6E`%59L^(HkY6xYsgjbI-vpU#uK}}b zg$tC-gpYo|t(BD9Xz`Bx2t`SmrMS2HTDK@+gri&Zj|%uNA~cwGrzsALJZ3~@0-H$T z_yCJ6V*cv$>qB^O^b48|2zhy(FO8geAzT(Q zE`GM~OMUo%qTO*|PVDpr^0X@LSk_-|j(C?kaS}QbV}G3p-o67QC6b7D7O~!Ij~KBd z+oK-uS%mO`sM=p)%^-Fqta$<#pE@+~O0@p32zjwHgEbOwr7vGTZ*;WlEaA~Bav`sG z`q^KfE>Z9|duX@bQaPWk2aBIZRBIVonf$EK&(lfiO6UE@Y5e?SH)vWFsT}3^Z#89g zZFna%v>}TR>0@9h4k|45$)g2U z(81Bd=KF!Ao;bqR!@xF3Pqzf;4GBv}7xI+<+^zt=*SbjX&?4##45j)8Y2cZzeuEhA$_hL6d# zQm;8AlyH2Yva?cLSs5f9MU49R_4($G4%i~TPxn@jMws{Xm;Z+kG|=80H(xcmp3s?( zXTWmBk?`0q^-J7+&HNZ}V)P+~KvdN5`gp3o56V){|Efu&yFD3-U=P3^x(Do{6*?gJ>wH1}Y4$;CMcm9r2d{sKO@>as z9t}paeooE;m^pOY6)W-tj(X!Gkc&w8QOqMuH)cWCC{CF3vJ`h@R;lyDzn%J~V4D*U1lGz)+c*--tDg^^1~f3x5w~nDSv7DJ*^6CWXJ%(ZgZDywYN>X%P#^p65aiz z{1={1iFCy1DIhRZ1+cFP+ZuSs#f7HZc-DVk{a)u6j)^?Jo!RU261b`n2rL;`>{Q7j zFj0KMA~)f=D2nSz<4PD~l04&Ho&ub3`|EOh_hu1&D1ehELT)&9ps_aaHPXc=tOsbv z{a}iXQyXn)SzP+mb~CID%AmBlo+OB%wGrf?xR#21Sy1RD46t3p3ttA1K8Lpg0KhrD zC|&XVjszv^6pZ+J?1%^n{DbVjASz;7*5BKkqm(Tojl)#ZT&u7FbT2msl+)5yjGX=u zMg45n??Gf_O`74V0pHr7UzGqVXtVz7w?YR#{QtuRczqITYZtnB4b9$su*fz-vD^O@ z(b?BlYN3!G#NP1=6G1pG16F<~DAWH&pY0cwY~Y^ObzRwEFy5VwjbD!C@ArI=tbIKR zd;jSEo|m1flGPWfj#WKV;n(_K0|QF;i-*E0hZ&yT1Bt2(Up)A>A+k`R-XowL!|k-X zsKSE2G=I{n{q#dc{AI1$2@CK#n5va&B=n-62@ST$dZUs@Ov~_25AgaP4O5W?o~^7u zdKK4n#WbJD7;Y>1vDsjDgb9e8ZmsGx3=85&wfsR#-^m?u&}NvaBa!PNUZ{$@n#Z}nQG*9jM2NcznI^iwh59q&)3Nqnsh=a zUtlL~Q-*n_gczv7st%N{^oD)={?XhV8`_{IJr+q76S||{^7)4HL%L@^=r9m70^HSg zH<;kr0ngtUX-hiPV0GTbhZdeix1X!{4QHcESAe@H)0JvL+Xs7Ak6`ir@AQhst0{4# zJbypO<44DIpGA=f!vZyfkx_<3++_WB6ZrPnBT<-qA(_WD{}LPF&Jz9KUE`NGo+Iw$r25KLArdL$@op^N(oKNZ+5cip6Uup%u1Bm56&X>J}1~XBEUZ?#G2dbz8 zIn0LL36s+=^_=&yyZ=#i+>D3XSkrrW#P8iw0sogT4(znw4gU2`4vvIielulxfpVc! zi4gldUH{Z$>j8qEG`3(A*V#LtThf9NQblZOu2$Du&#*JdDYQo=t<)qbp$S13F`^6K zFMF$PO80{!swd~+gg6;VbaeR9UuVWyQTI5V&q24Dn{q=IEsJo}m2ih4P-A6tn zdnFz*0_hmiev$B_qaWqi4A;higzosH^fWY)ea-pAm%tF!E?!`*iWc@?$r}31xe1>v z!ReL7ZkbBM4stogx-rNH>D(~@kPH)79Bp+v@oFmVkj=g_+0Xr3%(2W$ULXp*2&aPh`>vg zMRszQQF8M`?AE2woqIvl>s)L>I?m*LDY;%-t17~Q1ZRMph=uJUuGT5tzbRM*u( zQl@$wP9DD^dRo#`(LRi`GxRo`v_kieqB?v$1GBW!D53bIcaxiWEThBwQ}5s5qNe)D z-Lmd<@H<>Ow}ZSd^Bq{GcKXLwv=uX>Dc*yRH2-JZM8>odI#X72lDqOQ4Hc7BoRHKO zd%4JRK0xkFVxGiBT~!zs7lSiI)L`fDarckEyIa_(Fd9OUko+0@`*%NOiiOGedsc2Z zr?d2~kJxW3NYT06+o07+RI&zN0D~;GmtU|u26^Ae3{b~25`*s0@`BuNmolZO^Hr3qno0w=I> z)?tt^DaBw`$T(7twbuY z-~4$+zB4AXGWm=99t;d7dN{w^$nC^gw{8(+TMy^m6^JeAOAbflz*#7su{C4& z?0Nw5ZIzj9^SwhO(4phC*97*MRy$zcY7|L`oAF~7^ij9A;paWS$3BLByYedBLl4#! zi1mcq`N-H0?;MmIB^eR=xr8D9-}Nc{hyI;+CMmq0H|QmacVcC+n~rt@isp2=m0H+v z4~O)G0N^yi4cx-5g3H=)Q!W0*QKTamWeO@N80}bLZHTK>z3-nHY%OTY4}!4|zhT8j zCb6Ltyoi&!9Sgck78?9zSLNAaR}2q#G5kGq!#^!{SzYlzsvLL+a(*=kQW3EQ_OP<3);6;H`l zw*6vV)QMO=@$TC^Po728XBxAYk3ss@@Srx-noCuD{3OWg5*}vKoOF8|Y%0H0(Z}lG z^g>or`QUfS3As5r$aD>M;QA>o8Uk7-v|1Hql*QJjp8ipM4LMp}?Kn4l;p==eok6yW zpY`#~87%3^W#WviQg(_YqsN(0BkKy!6wM(OP32$z?YKid{ic}ha-HP#2GLLebOGzj+pBH^h$`~CRK<5UNb=}eJFI-W6sD>=IVzyQ6` z_F(R49vdw;hLbsPGgyufBBVw^K>;!>e};z2So03Ny93%}?`j&p{RMiMeukb2B#u4i zu0cvgc);}sGoX7E<1emMn9g8(0=&*&c+9RWa0F)1;J3s;iS)p%DAUp3oE0Jf@_BKv zXSfBV83dP?qvqo^{S6fIo8xR-TU$-J!_Ry#7~D2|cPu<;f}{Gpw+t#r)zBE0-ehNG z`Y~Q~Y5rrzbB=pkN-=^W{AO_;6PDk;^NDk2vA-V?paqzMwGCx}y46bbhLN5=#zSUj zXRl{`o-hu_`26;EmU(+2S<~gnasqH`U`iU%eqLwxAhBuniw#60A1hO)POe$pSU{_R znwy2@c2Gb~r`%zgxj}_{!NrO1eFZa+b0PTgo{#UR2Xeo@-lB8cI~OOzf%RuwoLK({ zqauSUe8&qD2>xk%!kVJ;)94FrTH0c%;i+vWBty+{E|MJ4&oRaGYw17V1nEw<^R^@w zeE@aP!)V#%_vDv?0yf!L`WpkA2^h%LRb?sd2zDV0<0yI0Rs#%sz@4D{zzQG)@N8_$ zCFJkY?5WZu;F8$9tU~AcvHwU*JX+rRFH0LGWl)ZdY49)3QXMO0^M|VBh4d5%7{Biu zFSy#CQcxCPDT4!&9ITe=d)=ccg}aV{JKvVNg-!uyA`bggg&-GY{`UPX4p;cRSlmLT~>Bt2|BdUfmhKQMJG@^qnpYK#R*E{|w!XjkWMr7pusU zOIA6Z|ACrPVUo2lyHk{CQ*Qb^S;&^!PKqA(lE1%hZ(zUl)4N~gzE;t^8m2}jvUfz@ zH3l1fKSbJ}J*FhsTs;$vBf^e)eG%wxV9QG;+Fae;INw_K1Mf?a4u2p-ruu|`waeCh zjiYaDZ`Tx@!*a*OLlqe;JFBe_W5Y*gU)#Dq`m-FsS|POTMS-EwUDMsiWoy9!jN?Si{&qzn2?o0vHfBaU>#_6IKji_GKNe5QE)~wz$pb7 znSGi&EdksSL|=&Y^sPb(fa)iqSM};$CCN{yh={?cd(HG& zV4tVTG|)@=`U?~MGY7-h+X~Go0q9gl{okER29P3at};WanN-v7?4ehAwqPI?y4l#? zJS=+L0JziJITMAQ3Qu>y!<=(@;W-F$Vx0z($9>mFEmnoWOA*ug8`P{EBqnI_x!JvI zeYIr%3SeiQxM&($egRc@S*Nk(qCjL~NF9;`LrDEgg`2o3lq`{`Xzu|V-=IW|qkaSX zmO@r1gg#K=xf@#r8{p(G-RaxDtc8AFAer+6&?osfDj+tm;wKSGFqoQrNi?tGAcFMf z^MDNNIbcnyf17drWkpR3)nf@ML&XkfQD&wuRE0@ZKyAjwPSuqd47Y?mr%0hnj7o&t z+p?DOD_eY|_G}IZpWIP%gPv!o4Pu9Ou)lqi(Ee+>{@F1Ym*!EhmXH8jo{=&Rn~>0r z&_w_STuhvZD#m~>{$YCc^_!1qGcFyhyf#O&148dVG;PurQ1XCKM2yI{AZ3|3EvC6# zvCGqii%I76cQK?f{O`TGb<{(+0JlFaD`JC(ZT->HBP<;KilX^KIb`_}L7mjptl9U| z@oDdg@>Dg~L|{&@wM_p^YZ<}Fmni3otuGM}UoC233q1%%vmAFf#ML3JGy;`wJ2J!R z{w}Ma!_BfwgG&hIZ))nU6b|1{5e- zUM!0~M|TFuCV&y*l9*P7feavRj@oN{)Dp|$c4qtZp=oTu-7eG6?gY5}`W+7uX^X@H zKKHAgP!V7@cSF#l!&IB2DKe8`!Vh*3eNPB&fMy14qX2UIK== zuptcM2J@t29TRKwsS@K@WdH27^k1vjxYy~cFf>He;U5SXl820F@w>WyE?erb=KwEq z*KBSBIK#@{5(U_?vn%bARCp*?qyaX9Nu|L;X%ACPu*Joe+BX9Nre=FJ^%Oha2lMr{ z>!#LJlu#u4&Cyo*i?LS_%R?`^X!{G+@8Qq;LT|R-cg}vMCBl%s_JH;3&hHv!_zf_? zlCg;399$uc-TeopqS|UVRLWIHZGyjn)K<1f#;F)6C(uG;?g+Q;BrS_TMtHM88uE>R zv@7=N1?cTnM%&&n1WSwRGu!Cqst2}##})Tyy|hq=Y)zv{IIc~1bE5ITL(o|>)Q)>F zj-#JWc;l-`=zyQ_uT%>EKUbYbucf6%0-O3}e&(Rr^oV*`=p}B(+BrX=pBqTZgq9`4 zhx2Y}p$hz&9@(sKvDJ~YtE@^Ti-AmO03RuckYJGbM-O* zX8}#5SN6_uEPA%y%HVbF$AQWed}E~CFx=GY&aHzmD#%Hn()mSvym6WzYBr0(&&&lT z6$HGX$dphw17C9L+a12=Ay}3rETNYJrqS>k>CLG-PR}8fNcTsdwk3M1TFNKl8j%>2 z=sv~g=LrmT2qKpEtKe=+R*$Z{K~I1DU;lD6#F(@o-eeZ(FE3%aH@Dv>3;xW*LT7ny zdTw0hm>jQuFjrv!bXcg7y*<8eKrt3TZQ>ePJ_Wc(jce7GiX#9N&+c~uvLPQO0o|Pg zvtdJ)Bb}?zJvB+oKL>sZUM?6GHWwT7)|I6|C;s>ETy^#8@~-VB6B`+? zJ5Z${HjTiVJQIQd`7_(P9}(hmM$JBz0=tbYDJXRS z#~w`O44$miUl9S_2VC$CO8nH5JooP+ULV1sZ?x}e=JWEdvlm6&t~94s{;lxBVRNa@ z_m`rl<%Gznb6=3$(}knryP=1eWc_)YK7}4rYZ+07552A(vzdp3L2XYVnvjOYcZt!!XeYL_5BCYn&wcoGqTb)=r+m{>K565!(&ZI#)Sff41vT)FXTd3lC zxX264}EMfHAhGqT)9SReCv&Qmv_&gm??R=h}iYTWgSphSXig{1#mO}2-HM&+4g<;Ve<|kwZ&OlRi%SL zb{v+ve@y_$TePhP%XM6nSfus+s?W(3w!@|@hpw6DMS24s!Z$PkV zTaV9;n7(HK2YoXi2Hs7Vp7*#TA#8Em`#(;Rcw80>C7|0T1nt~*X|8wDM_$F7f$r3J>x4;$Wv7;A0SqEjvNo8B)#8!*R!YS{R`1{5L zRDZt^XC)=~X6@2$e}=zREYZsPW?7Bq&V*n4)hc~8_ICsv?%_e>8G2I#b$R<@_FB01hkOEmBE4Qaa0>N z%%g{MKGC6+13XKQ><-mu(fvqb*UeIvvVbKTKJd|J*e_%L1E>;ztbe&D0w=&)o97

5Pk)Ja)LC~Ya4hv97oR1nP)0b2t~n`fQ8@0kVDJHl#%&~7nr zQ$$>7LeNjKjt+y+5R;&W8WS-0oxdyR(12>`P%>u$k(diazn8O9c^Vj4%6$cLyQI=v=*GlV=41Cg-&vn#PyQ01ZNxP_ixUTXxyK*GtVJV$^E zNd(9P1e=<+pmR1E(IZ{44D9GJw?9*rx$5$6ZyN3ZZngb7GO%&A{$FIhWmJ@J^e#Mf zgVH749nxLWt+aGXcMph!bazXM2uOo;gEUCTP|_(ez%XzgfA9NW=bUvu@qx8qVn6r2 z_qDHZfr^5d0YGpK6Sar)dlMvi003b<k_-cdI69+<$ z7^TSej^aHEcY=GGaXtj}d(h0w&A?UOr`0*X**7RX^U6Gftixm=h$S2}86t#3v5^xG zofI|iO``fCpig0-LF)g^VNm!!5^vEoA|i@8sM935-i~p$!yE9nQRb-)!aA=Tdk1>F zvS_^@<=`-4?=x1V?y0HGEV7>EzB`^Nn7($`Lbxd0e7?K#v;06}pmjAsw)6-zBw%6k zTo*W=ex^iJCT^=`f1zthORT`(+Nb^pU&kd(O8+kY$rFRvQ<&zCS`cLn+v&9b!CP_I z9n!&Wb{v!(akEYFVzYJsg%#fmcHfW)s`)L&fwILq#~T-P(ZoKtEpYhc`{>JOIPMtL zA(F@R#=YJPQ(-Y|v!EwbHN6Q3{7{IpWk7DQ^qs+n1a2WpnR7(k9)XadMx0&PpKcmn zUJO9g@Ts;I@9*EMI)LHz$xzFOi;O6{Y?dGEosM5 z4LjVn8T&`gop|QGNWo#7HUf1tHWD5`uY`vPI$6-Z=cwjbX2Sc0G1qBK!VzE(&V9ZB z7`C@k9O|I6-J=8o_j_S4MuOnJHJ)z`Lf<(X(KJ>d^LPLLkH6K(Kg8V~Gzt7@DE9}r z$*u)19cez8qzE8=n){_%zpX)N^71*S)6)sKm0i`%XZ_gkp!4)cRs$v4Geuap0XpG2 z!d=;)2Dgg_=F9Gqg1eo}#hLYG{IYuoB@M1Hz>fF(nFN|*Am;!~mHN$RPreMCteBGI zc!Z0tJ8vk-!I{A+!Uhef5Y*0&+}|Cc{%rr5Tjk=QaLnBdt-^?Y(Hi@rba2G%N!0Z2 zM6|%Dn;g%#rT=CfvU#uHC3EN4elgm^X7VeoXK(^VaF0p2`v^t6qZsoXe9KFG%{8b4 z$!_I&@(;Sax4NjpeV!mM;^=+yW!mbUFC)Er)aiJ>uy4)I+&QV`-i+2v<-Iw@yU>Bk zkCR`chNqei)F)DXl=4plxFNx}sdXn;P+Bu7a(;cK9~X1;epcVv6M|k-T!AO6h!D$^ zK~L8o@&Zb$d>YzNYCdq{xeORF|u6%Z8LJNS>S`<2T;xTzQ2R8EqPFo4`H5!GkIE4l(a+q z^5FThDWN?l$kfmy|Ye|x!*x zK8{MX?g_s-?lufH-RTU}f#keLii#&Z@*;z+fx@RsEuZ&s>q5wuXdc6A{eyS7_A+=14_ ze^5s^6a29JbNqRHEu47|9Me}L$7`3xjSIiwcUevtf}MANl<5_@vmEjI&O%6I{R`{v z@K2jt%gn`(5sAn};?B<@HAKAwlazuH=_C9NZ?1nV`<+i@zBsjr`BXU3qZ_hYWYz8B zHX#=Ae$kod{=Uo)R{ZoL?+HDa>JCLGnK2AbX>R8bQ&Kl*1eEh1N1mIlvR1~X;c=0v z&9(}={#BE9W#^Hqe+m)&(7ZMA4D?OF>AcmO9iubAI|^X+{k^(!e;i;9kBYFk`yunA zp+UfU@kU1o3R;YftJcFn+pK2llyPwy2bolU?~4J7;lyFgGL!(_^#B;tXy&5y0}@$) z;~;Oh%oi6y@?n}g{g;e;4@PLJVypD@t(+x*!@?8g2|@$?0%!%xNGUX#>HCHe2m6>OK<0!VgFqOFaEm-{%d4m-yKZ<(cCL2xXbbp-yrl% zh7*}leLCM=&JyP#wB^7k|Ji-!w+G};e8l!&#Iu+`3RYst__iWth58WH*8i4vXo7&^ z5;{q0oz80EeEzZSifW(-U1)li7P<|&b697!4!j+fmXb4;ZcW@uy-iIdw*CwR-o#y&Xm>zA!D`1Hg{OHc3P-x!ZLV2#Ods}|Ovd%BLa zB7tah`%fvO=Nb$FuK!^6m7h0c0wDdj7K6vIts|SLEvQ0o?>kQ{UFY{e_pt6ibndc- z3828tetD^>u|O{A&f~p-u<(+_W@y*Q_%DFC2(W`u`+qk&Grs{8C9t+yjGoSp4tM@4 z?BfK+9>_duY9LzAx+%YQ^8eeCB#I=3ry%l1PQ-*qq~FqJ`(eAS?~?;FmgA7BeQoFr z2yoT-mWIiaW?n#@hOJnun2yia1`Kpc=}z?zUv=1uzkdn*U}3NSk&*ee^U=zzywiFk z#W1v{H-k{B1A0H4H9JwI_vpF~E4N;iKW;9ZFVT`NFI|fE4IF=~z0Xqp#kRt6y#w?5 zLQfWyTqHU3Zr_3~w5UK-Nh&K#(6vJ;kYLVer?{Q#fqiC{3Xo?IEj2(v+uH;*nWN`N z=$ub|{c^lsBhq_h^9ukQdG!HZU;}_j;sYO#n!6-GZbH<7ajmuVCwU?u%`E`8Tf}RO zzb*&hn~$AxQ3)3NXTeD-Hsg_$LOz6(h28&>>cqC3X!)GN)mUw?ojvdxi0wqZ!x(lfzvZq_E{nW6VUQd^?#!IHcGbG zm;fC9)!OUq|41VIrm}%3ak!z5kf!Efo0-A%tm^}k5w@28utll9IY30G{T0RBb#?s% zwA#@Dq`?iUe2Xa(Y;I1ie_-_~&lyXP+SZm1pbRzpYqEUcM%x^M6KsLjfBZ+Il2}q;XiKgCSm0d!ztZ96;OP5#LqU`LYr0KWky1PeJC!NHqIi?b ztS!c_5R6?@!{sar1rEZMsrjEEaRIY9fnj`e2d;tfE`$qDXPCuP<9YQHpjYbfH}d%Z zo7wIFzE`sRy7D(S5n81Z4O{7mKjb=E+Pc85GCZrKY6RR~;@d4jZ@PxTc8LHjJf= zbpka%8ZzxtKGMa*?|)C92+-dBTQm3oqONTDk8uOCwpM;oq7EcPMMjqYff7(UkX?7} zBVq=WQGzUb|0^Uvdo(Zqx2QH?Jh9@Y&;Mn(YGskd*Cys*@iW~OlJ$C|8UVP%Ch zhgu@{x?6oEt+Y7>_Zm!q9?pSWAbAQXd78*jz&QFvMjrv_COtjfpao11a0qdMr3Si! z>~u;ZaXWIi-Bb>$KFPkIlm>7NJ#OCnnT&lOxc>N(!^I|04EQw7=s&E1OrnWusY88} z2(Caa^*f+PQ>>5m04Zx}W!Z8%6f7LPM@dKDw|TPmXhJ$TSk{`J6q=B{l{C70x7j~c zcTkLij$0mq{sWktrX`-Cko}jWn^Usgrz@R>oNNFkagdm>+Wp1Xf2igQfJW$!$NZ=weC*NWYg7S~n!xEr#M)fAF{>EzeMB=K$z- zg~fYNfi7D=ggHgagmy3(DeUFm`fdNC1H>5q{-46L@&A(y+JH1ZjFw`u5WVARcyV-H zmk-Qa`zwHCiuL3aaLUepKiBSy#{kjzm|8-=wwBW}7cZi?yGIXD(r5BT>6n?(#C%Wt zdp^RmI+e~7g3)lTcFIrhreZbe#W@Hq>yRrn3KdM&I61PUaurDJ4`PNWMs?`3PA_Q!0bzL&cei$;7DCxA?rLTyE_aw!X;)uenN5eR%^9>AdA1LWb} z{ZmqB2pep3ReR;gpIIaM|7i2pqGo*HCJ1l^@^kjQW%my{-@NPsbhv>Pqkk|_a}M*$ znK8-E%)p(L{N?Ilsj2iE0sC^c-+g0_&@r*zp!p}vdN=CEJgLv=W}PV~88hJ5!=`1o zhT{Ehle4j%0SD~IzsGFIC@7Y9(=y*{xVxVa^lMFr`_T4_0kxo0@sFq4cqbA)fKR+E zG3pqJ>*?7*e5J+&+YG7giU$0Ua~R`*m|x>|&?a&s>m_uf6V3g04Q2W~OZ>Ft3mvb^ zi4wpNY{?p$fTOqrp^hHj2!1kcl>fRaiEc_yvoUFAviApK2gcB`q7URG6ddz>zul)V*v6Y}F z8$=m;8Q6MJzUUT$`71u<5Sn@QKO;WXj*BUs>XW2i2~NMWu1K=q-z}Bk@wxs5d{27^ zm&y7gaV*;@MHprY0EdXWELcEaI^@5ah+4WmZBOGyF9L93K~G?{@n+HZoqFR1vnGd! zNJVW5K>k!^0NjbJrGeDNy1gyP@6K}+5SX@!G8Gn1H#_yR+}Y33N7w2d#2@G_ON>@I zt$u?{GWjw$6Jqd$MMo!UzM3Gx z!p&|sT2Ki7`_jO;3V*At!fvzWo#W*JJ)Y(8q=Z4|12;12oyEyg^7!Xk!r06CMJXEA zLqTf~5hiugPY$}wd{$2*GX!^5HvtB#2K_6u_*f*9QJtNfk`H&P1H;Tbn%NZvLE#b0 ztz^DfcpOb^oYD*jA2EUd+`T4c(?3;lV)y5h3s?~-bi9C2ER5XB1#7$+!Qo4xUiIWPXAy~P#hCa1j?@H z+)+du{1RlGYtKL7!ipV|m{pN!<{N_jm!;y^(y{Bis`eB;Trq3Ut`aWcYimJqw< zt7PgXKyKXO&mZ=WC=J*M_)h#A^=$!pu8KcOOnqVz1B^6Hg_YwweCtGrY;QqQT`&W5 zmCn9+38QudxWuD*EF(3HiWq+zC4Ei^8>BP~#F6+tJpl>}o-R|OmCtx`33GC4Zfq=x zRWU#u;Ojuzo6PR@$ewm(7ZE|(x8(Ywc}^wlbw>)Y2Qh^7Nz@8n;{sra)&61)3=L31 zkzJATS%ZcWUk#qT2wQSobT)4XjY{SSxiXC_?0wJww~c~GO7Ob(k)n38CjNT#=TFYf zjjCStZLr=(?xHquqsGLFt+Uu6wpA2s7q%G7$QK50zg9yDGdgwF`5NLcsSY5?*rnBfDxE8=;+TlkgRc$gz)0m&n2|H5c$!QM8 zqZUL5(oh4a5yOb1m04T;*|k9!=2eqX+hvl8c@y59dvleJb} zW1Ad!0!lQCzp0Fr49*gCX><3E|EijaIqW|K)_Pm#=dq>|?X>LdXpRd{@nrl={WHA? z++7`65!~4Vo@`fK_eaM>0Ojf>90s+ZT2H{e^}Ed;&fXu>?4E9)iu1Qi-O`NxH2&QQ zPy~?2I<)RiK(p<9-VUSRCOlZ&tM~;5TK?L-EV7QF4r;^(2#`^Q-FRSFFiyEzLFi@? zC{HA?fD`@TRZdP$0BO7t`BC?doMGD58kVjr@WUgp1HoiYy$dUV^C%W-|GIa zbVn9WPOH#D@iS%P9BNMQwDioKwFq{AUui@AIEssfgAra4Wn99`2b4cJ9B6wm$$m&M zp)BfP@dirse1YduZz#d^NFo1$9OM5{q5p%zRow9YNiVTMwP7YY;T>u5EWehbzJ2@9 zP8=Gc4q6M_?_Z%!S#G;|^_%HeOT8mhl32FXxP_|~2m)<(S&vr0n^1Ij$IyGaWe&JG z7;;jm*KToI{^;_)okmzVwAUV!RaS%OH8a5UL84%1k0av`TW%uZGJRuVK?}HGB&MX` z1C)M}tu2d#na--C^LA+O%nSmc>yXvZpaL>(J{=q+I8|&nJGXCAZw~iuZ*;sIUQxhJ z1+<552h-Z(_XG6UX~ToeKLYkAvIqNqB?l9|-1xZMNBFC@=tt7>BG%r-P=spT$i%4K zCb0LMWD;Bu9OpMVy{UnXe9#Z`A7>~0`X$eoiRlFcPU5KDwAVnSn7Mg(fl^m~kkC zNa)(`jhhl5wG4EqdxH6fqAu_@c0~Nc3q{e zA&A(pJDQxGJxGjOp^-nh*2bSra-QoN($n#Cp0|1QD#FrVS0gr2>K-2`Te-!ftdQON zzo$?si_0o*-l^5|kUJE5MQj;)dD5%zGsv5VWZ8ZphZR|`-AyKVOsnwwLVA#*yPJ`hAJADxbdx!kiBhpSwtwgCzaSDKr z6ni>le@g5;B&_$-1HbDlQI~ZUYttj{=Y7LYrn5>-w})wIXAch_%N=CIVKHG#8NPpkrXJG<_GYeO{SPX(8^XQit7 zt?~EdeA9meAl5OWTV)?|J6HLZr6rZ^Etc$lPjlh^8`#FtxynBT=f8IUzscvHuxtXL z>ZfC3#5Ca23psES{*77jsg8cp%q6i!EKWj)wfKfYy;)h$N6_;~Nl8t1{9e`X=u!b2 zKUEhQ!OF~xnmBBCV03OoX=>o}OF2U-GQ@oV!?F{5#SKhq?3uL|+kkG!R?6p*fs*oM z1^}Xg$P1w5A02I}bB4M2!TfsHC(@S#7F`E=7l*L`La=4AE*m==*$XK2%BC2hQUX}0 z)c~=}VyO~c4p%<%ii&l|>}>4QC4oYek{;MVi0OCJm33h^X=L6_UMIiD$xz%N|1t9b?SGNIgd&1G7ln^W$aE zGg)o2#4UB=@K)f&bI2$a`;rPFqY51(Z^P)MNC}1gu2zJW$o_+5g_iWY;uo03TI=vL zBNGPg^9|qgHfX2sSr_c&3j3E5QeK!$ET~CkkizVcjbW3{_SMI8A+dIm@L=d9XKO%7 zs<*JO)2X?CnkPx^-%j7tr4E_{k8Y&RG~_G!7NqtS$IJ1_fDr~n5SY7*B!$AgVL2{e zj9{e;YSl&!x+stT<9E`KOIxsSNI<%&YTQZR@`QRe>bcBLLR5U(vq+QiVb3YAtQ~xb z`(2OXQv@=fS(it?oFotiJty^ie)kCipKz$Soy>RXfNm)Q8FVBULLt!S&Dib-k;Z0* zQgL(;{5%8>y@Q6_wU@?ztcC9gU8F;v@EeUzIY2>fZdrd+>{DehN-D$UEM5x;Y!>&U z@rZt~eJ?+2>=oD{>}Af)A5&?{hLqRk@A~w}$+C<2BJ}B(o$2mwCM57iacQZG%5Jh? zc&i^x+t@gw_UX{9Ua(20aucRNuYGV`=Jzl?G z)KkPAp`qVb3bJ&b&_@OZUGgVkgeubZ!4}npS0z4X-U?Y5mw@N@11>u`^Vm^9K@Og@ zpv|^bbx@CI3mFV)hQ(e=CTboB2M6mcJ<}%>R<-Z}v^nzw%Sr-*oGg~q_oQJ^gUlwv+m`Q|$>gmQ= zA{JuEpb66@d`=>+!qKlWL3$}2WGW>pD#%08adn&j8kEQL3bB1+55vA`@N0GT5b$?J zE*X_uwc2;bbQ033J8rEq!1O)&Cj^R==|pcRCA~u3i{?2>5j3JOkatsE!3WclGDtxJ zI9!dK2Ii7j--$pPxLk~KH0nB*CE9+1&JUmcc<(sm=-ewL=h?dTNhMC|>Pg|tm)9bphEQ&N^{5}r=bDq>20ug$TFML$ z#XHcRwZ$dc3RJ-C#_<;IDoe=z%w0b*7bLcYB+8}nb&cQCMmf5fgUI7i-@S`Yy)jua zvkzK^QOo^(X*PM+*UQp%IiEPaW-(AwxIQq$v-Vu+EC2VN7KVZdHu>p=0lPi5>S4=- zHIxpB-xl5kX27Ndq+-cJxS-597h1w`KYu>R&koywC(&x*WI?yNp3SrM&~uu1dgJ$E z5^|7`8*lNOffC?L-eQO(M0{8(872ii?>t{u+)Y641bpr)^Mw5)Q`PX19;cojYcFP* zrFtP^Y%PYWkE?g7&yUp7()U0YM@GX8v*zoGPQTLs_t^JK-8moJU@RjCNU;-QqG}x8 zm$yj4Dq_!MH^j<5Rpn&lh~l(%$4D5-V@ z0}hF8XxiMLK269S%Fr$Iee=Rg;}p1N*W5vSX3%pIM8=06LU-S?3kw)JSH1&ZPcTjweXCCqPz2JG zhlX3m{aiF9ngui%Ln@x8_FE?Y9v`$P9g>v8@~_vkJle~LGX%TRAPx7`*?7PNkBn7tozSGyL-|l|C;Y27AlD`EV|BF>oQ2cw>J^NPu3@61?`k33sv3KVxKmuE3R_IIP zTcL*9q8obRiSLlO`;rLR9ZhJi-JZ}T_M~`8<+0Rq;oI)`h4){c`N2}qkPkRE2~ziQ z%_n^-4)eSm7N4PwC%xjh22iaQdjp%x!oMF`nTQUs}E|Da-&a4X-M}Z*DmzL zRd4CkuU7e?UD3fa<0P!}wPiQM-4*v`tjD=vlBts_;H_&ovcoA-L_#VdU&n8<{i6N| zhBOQdHE>(O%Eq6sg-X$}`S9@YO3KPmbW}*Q!_dYJ>@J^)FhqD4;CODvTy@qaw#jV2 zw3?pAw2lRV;ISaZlo$TT)zFK-V}-lcDRT7mcTdoe@Tso9tQsEo4Q3tj`-Oq16Y4l8 z?Ll`l7=E3ml)(o);D^1bnT3@wIW*`cf5_!5Q3eZb;e-=8kb0NT5u#)2vf2Oi78K-X zO-LQ=l@k3b?K~25ojZFZ|KW|N0+{pT#%_Dp#TtJ{rn*Ye3nbta{y7B=xez5kKDsz4 zQJh&@8wm+KhbNM%KKxdl;=SAfvR>uX)dd=A9Xe;=_IT-u4Ck*msNn}V;eE8N?_D}B z`Wg^HU3X<%CaebLHk?27K&_DT{ZyV=UB+6qvbP$Jp|0ycvk5$ASeHNW6dyzY5lcj< zJwQ7VuBz`^fA%Nxh7$wyc%;5yzTOhJ+Q|Ppb6#TOg`+5AzMV%Ok;iCbi6TXjIgdC_ z*qk@!a@?8jYjQ;%N>q66D{S|dg!TSMu`x86suc(vE>eURhr~W~6=#KB1HxN&ESd7rX9ikVIN8m3Pq-on`HZTRGkaYsFgdVnxs%R7*`7K z^N&XVY{$VW7Au~Vb$X;+r1iCQLs15aHw4$?AqnX+5+(po0;KRH^RHNZ z;eys*XvC2nEdOEH9OKiQL#XCTCg|cE-ZIw!ayz14FWh)B`jG7Q8Q}u32fd`817~WX zLVsT-2h(|O6s{Ilgeb#OoDZK~w^(;GkTx|!2+$(m@|_p1NIDbR2kXDpldCQb9~}GC z!;EJ7$!0UkP!O|}zgl*+H$;upKS8#Ku*TbV0w`M zG#guJUVRbrbX(OSvfS*Am8K#x_9f_M>Ipv(deZ0mG(>U_-pva61AX$P6bm5jhUa!q zQXq;JG2P-sM9%J|r9hJgel<*qM?*KHaAOA}r=Dh2JC=*p$5pu{rjm7$TXkF6BdWP> zU=wJ&uH92x-v`MBZcmp7oetC4?lYu|FSSybMZH>A=c1mv5Sld=B9aki0o#h=>T06G zpeKigs42zb2}Z`}@`>UplAgl`lKW2IyG^PQn|hIU=^h}b`C2{aHgJHB<4PdGl3c%6 z?xG%{{&G$Q7enZ_`Ax*rWVa?v;d)tXKaO7U<_x4plSS_SSDPi@=!9WZea%qX?Mfu zxzeM?jqYP#<0Uh0+8>?E@nW|7_${*T$d&Yp-*y>N%b6#c*SR`FidQMuFk5hD`E_E~ z*x{+}b1L}#H%Jb$k1o8~O&GCiLch&tYt@1;@_47DnZl5G6#_sW_Aw1WJTDdy|T(}P2ex+jL1CM*sbRe1& zW66c&8c1m`z0yE^p*)m!tFGLg8uYF!geS$otl>cjc*jS+_2+43*(cP?+=f#AOQM-@ z{9DbFb^M!Nm`6aA`*SiW^{I2p>0E*LgYT{5;j2O=@u{dj?G-W2`HH8jbKp~LENs*q zIw#wyc$z6leNY4mzZA>KF{YuDmBFO?k#-J#y&Yk5q4*=Q>yuyH-}2Hlx|eTP^xigt z5n{H>zfa5=j4}t^G%dQH9LRC_D@yY->OD(69YA;y{v1Q@1XYu?o=7a;7K#REz@`5R zb>DD9Yz)&hJFms5BVS~Pq0{VormUfT+(?vqLQlg)Nu2=SHniN6l|YmqZu5Pm%zcFF zidm^Klm}ks=KVeCxZE?gcXqICOEGRa<7t1q>VCvjZR&X15o*ID)K;buzBzV%K6|zi z_{jad%Kc+XO~kG177wyHG6=bwt@TLjTMkKQV7PrK{si+^&yx%;SUji4qqevJTh4|t zQw3%j?o$W(h1IbHNJ1X(SAl6#O3-zqHO*mLG@KuZK*wR4BUL3kTW?4;ykUQbjFFaJ zUphUBWbv^Hu_qWTwGr|x?6UE*pZc41F^)9sK~Lke^iS<7Z5@OQiT38rl?ky9-le8s ztcDMh1>Jpo9AeGRDoB0xHxZVQw_g#60h+xPs?ko`+g^_H9P^Jd}mvGVs-r-71MFP@zU%xcIkf?++FhZG2@BlwCR zJ1L+1f;43TYzrTMn!D0GFJk?~Z6KuzyMlz2!@uuTK>I1-)a2y0JXr6fumsOpTImfC$u9KmyYTTxOEtO>8g;vRmk9Kv*4 zck#e?1Pl5>*U9u9tbxa;P?27|I&D1al_~OdYXVEx=SPzB-kr-Yb#+uzl2^!4-uV1` zzYqU;-=La4?lKF%PD`Qgx^HOt;jfE^boCZpE96vBYOp+>;)kVWpfi#LcBeP<|!LfjkKlVUv~pJeDk@jnU4sniK50( ztPIIu68behd_|WdGe}qUk7OXca59@Bq#cHKzH}LtMR|Ju^EBiUu^p0$CyC2Rl?R1u ziL!Hz6a-N-xb<%hCM4lQeMW?DUXhN7G}*Rp{L-`qwj&$%$eDQ>lT-PBWpBulc7 zW}`@74WWgWtrc&YCvH{e$cCqU!zSvHvbw(RrXGi z7N41pqMm5wIJM>$jT$`8#wPDov>zXY|Cc}`PqbgefXlR_Pt74^ojw}>F9J}hVeqb} zkF>T?=gSR9Kr*I{Lvkv!rd-L4<#X5i8r8jsJV@C8h$APL9B@sMxs3-Li6+1TuZHHD z82lCGL3H{_L&C}xFM4-JnW_HRr3En|9-iM`d!*5P+?D^v(4B@G7QH6pJhOGxc9mJg zs@L$W5~%vH3dDgfb2FJa&6VT$-5pqH zQkY{Oo$6C}%u<)eh%g(!J8pmOPGoZn-`KMRq__5Rg_=t0x^BCa!^olsH)D~vV#ED)nFv(1 zIMU^4mGk_jZnQi68Yo;%8;T5!W6VTWB3Jlsf^STwS3HF&d9u~)ot@tcEax`~<`f|m ztYU|ky!4~DxTB*5OR+NY+1p?$>4d`8j7;v1w0Oco9=NHC{f$wYrRF}HbBrqk;6Ceb z9WsV5WX`4lbY>A~+aA`pfpi8I9+C`Q42Vbt!q}WyD#fv#?@bA#_iVe$n={cT7(i~3 z4w@KD%H`opn?H48OzEb%dF>i`X+V#QU3X)T&LtBs5nSGmv@x5fQHEI7mu8TGoFdZ; zlEktd#QcL1-J(4T`4HX)Jn7<1c+_o}K*!4BO=`>3w?iIxr2fPw`8!cgiQfo|isGBY zRni_2H_aUoQ}W3uskZvV$7PR8o6BSH1X5`4*m)=0R*Jj@1YLUnR0)}L2wjMlS#RRp z2rT{dms|Nc>14%)<7Nw2D7gTz#Laxbpo?U}k-V)_i!$t*<5pUNDYls0F$_=Fk2q2EVTcq*i1Ua> zXNyQ9JBW>k7=A+)?$ke|5jjZY>0!@^q0v{O(H#df+tw&148^{=&!zs%zyS7xtJox! z2L)o;ys|r1EVd7wYo{TM?;*gXA&r$ad5aujV3gF%;e~U-a?g>>^SH$mR)-ENYUG;N z@y{W&gSaPcybg;XY#&gP4|tx?r3e#WIqmF#&|DKh4%kUr)P%_^!m+%3K^d^Lcq&K?xA z{RXvb{wL?vUXyZ@g6u-*6Dve@0QTtZvS!%Yn zO#}#O=zN8Kw-`)czQ275y7)gjA!RGrX$!$jzTWYp2L@qD1@3JbL5-jt?>*Dj0dk2 z(4N!K^FXp}$ixIl(YT5_c<=N)->|T4Y4~yn1fpdl01Ap+u@#Y*zk`l>C_oyL5saG( z6@%ER!@cL~bo^gSbzY~F{*W<4iFa~AUHOo}-*l?PgPk~v3CVgj^CB4mlq?^frSkDf z>E)1|dpPSCO$OOIoyhnb(ckHnw1#w;1sI{K3_5F+_54UdX1SMLNIlAYn>EW3UG74k zGzZMnl@-3Sy!+Bwj{Jx5o5Cv=4ir$u=TFfuNz^)h?!;-q3j-;1_Finizt72-6>G%C zsRW`8TV-7YPCE!#jql{4_Bc!kW@Z$Z4WL(>wEaq2|63R)3+kc2Wce=1?Xo;hdMPYz zji^JdKelT>Oa5axz-kz0jO9c|iY_RNCQPGPw!J20(Y7Xvzt;^L zzQeUf=G`a6$j?Yb(p&Vds6=CU>H{CXb(csE35XdE{fcKg?2Kx=^HR#Pjz=D!(fS+P zR~13&avmMo;&+Cq-~hbryhkofg@arQtNU!e>M)xM?3FTVDvpZ&DwI&>2YErfy7faz zy5u+;c!rf#fS?Y7Tc>33vlLQjtzsacD2Md$NpJDMnp7FhIEEJ@41B$Q52$&lm}<6t zWLfbTzO80oc!vNopfgfR*2|sswT@>8vwf_+^<=%-8n&-VY-;@`+G6E{!Cx zMr@W5uY|81ob=@`R-?!K_H#EQ@M)>ZGo6=ho)|ty1Qp=1@1IkRq4abnzt}kIj?l;@ za~7rl5bNDRM(VNZKK4PjWFgcpN3j2^QQMEE@MBDDHKU8G?yfMuSo9`5GOd!CUTU1; zDTj~CJ3Sg!NC^u~yrkSbJy*bGD)tA0=#_N=dp?uuvurB<_6@Ncnhwd*;P{E(Im(PA zjuRR$KRrMH$#(6Z5 zZX-ZGl8*0}FQXRMN}C)r-CTnCPQ9!_+Rdn<-$hK4sx6kcmf%?Bm)1LzUsHRbt3YB# z)WWRCN%e;?Q|+afNsc(7b23YxR}&icz*!v{OgL}9sl50c$-7zKhks$7T1<{swOCD_ zOq02vTEhvPAzyq(p(WnRGws!)^j>^K9mzDP?|qVLRUAEx4RK)Mv8)4kT??**gB!}W zaxL#NrJ0EPk1#HZiRwzIkG{%#MhJ3h2Q)YD18x2fq1{l&zt|nk$4PAL#lHn*81!g? zQ)gNTF=daX+7I1BK)H)EzE^C~PvRrbq_^hghi)R&c*JA2Ch;0&eGq)dg;a%5xC028 z61@pJG$pp0%&Rqg4-(%$Lnr#{gkTx^ydwqYS7p$9r{~sqP@aIpzJT?A*Znn#vefwL zEzg}Cb>t`pmMgYUW6M@{1+|>==#hPB?QRD#A4p@8g|~Yu8#ZHNGX<-CyI!dCjuYCLi z+Wh|PO4XAdO-othU{S84;}c$x=>kKRBt4TYGwP?gQ>o9Ql%ehlgd@^PVSm|?=ERj) zM_o?qh-9YRJ&5;>I@_!q!gXS+dUIjczt4iP*A)!QvT*Otn70Up)Gpu;H5vTdM4oxH zUmjJ}Hbe#mzn^GKlmq#V{j|l6e#e#``)Vl1Boi}Kcb4C==M!G!Ps4{@X>a}~yZ!Q(JT7ciy|;gV=8?s+^NtuWU@lH0JH0QN{+&@=T8YTllv0;zAdCnpCAf7V z(7x2}YI})ajZZKM;({7l+#p|0N2>hJB;iKKw7C@kt^^uvgw0%vYbXv#gAWP$#EiPp z@_hs`#gU5kw-o*!`B7X&XVW#(Mj6_4^I=h>>%r^QwH|#gkRJnO|L$i3-`e<+Mw578 zo3EA0fX_t0z9x7k1DU|cc(eSY3iaXJHW{bmfW>8?+sbdWDoE^lI*vW7fGlhB--3Zx zm>0g?!y?f++d3!T>^C8pP2U+olWn+&rX~fXd%iMJ#pF0fNV}F8`{*91!L1g&TM5B& zG8g$oIFGAFnX8y!t^gZnzmtwu6^nW$yeg1T9UnOmsFeR%u;_A5X04i5 zjJa_QqK8n;);(1Z3auR%$Evn&2?d2>vCI9C#{KUQzqt*QnUpW!NTY=wLmma0#b9f8 zW^Zh46il!r>DM=?#BTFeXYXoY&xz8EA^n5STb&RP8VJRiFwG+|%MI(Tc_FHwu2 z5ztqn$E~qJW#t1cSn&ADey9VNomI3jGTl{$%BD`YC?`xj$XP`u#96Xrq&F6|QHk;6kbKsx%b7wh z(JBnE2;PY>0}?obqwIO~nT!9+~8dolv)v#P&;D$3MJGSO@DcEGo!Wm{~)nxaQM> zpSePL;gImw_0En4|ECQ_v2V6Fh0#7WAg*fza}I4wUsZ6S4e)IyR}zzF_ag$9MjSZ3 zh$05&)gU(yH&!uMS63-VOPxBSQ{lif#Aa7WnAvmFl;>w9Qy~?RB~E__TBOYZ6A`O3 zD?L5OO5WoGd(Vg7=~oM=%v#(6tV|O#r#0=ZqU1d{b?8wi;9ED-kA+$>`$T3*Y1NphD}vs6ehkN_?+ z{6CCsbys#sn|!Da07EKk7K#L-N*Hnr9Qb&QBuKfU^%1p%sp>0&a;eEt9UWo3rKYOL zSn2pXV!Y5{3xPl$zd-z<2mIenwwdY-x4u(N?zW#?SIoxL+}RlD-4}kN*^NxmST;XW zHG-9gqDonms3Nk)VrP_0330l>ot{Loc^PmKEq_@l1CD3D^A$p5$ufv@5OxTdHhZ`(Vv{CUF__4-d9Y69`6C zxTZCD|XD#0I2OygE<1OjXQDRwh<7OIrz@ z#e{%r$>VP{TBqOJ@CJ}Wift(DNHl?-)yo^A(83tj@Cjid7M5=1e8uPMVGw}gUI`q5 z1FyduFlPWJZ#%*cN4>1N)KB(M0#7mcCF#aVd$00Nf#Zf~EN64t#}}*njzSvdn#%Mp zk8>a&iP<=3Me_Qi(x?0TmJ2UkG^4ixCcrdWmSy~v-T>r?78*tN_;l-QI=DHF4hTU$ z5f5N*bU9;zuY|zysTRb4dqdbjRID-E`NgX&$*hKgAGkP;QnLMS&KPkQA@8)MI62c3 z%SdB~Hp%lsOQzzEI!}`v>OU=c<(DjCL&A}UswaY8)#YNWoeGN7xpuys|G9=wV~4mo z@YfgC4|JeEh@Iug7-^=Wi1f~>7z*8-dt!Pqgm7KHT1Wae<6|qjmrWtI3xy+{5;c&1 zt@I|w2_4=hrS`DAtHEii4tOhIt2s-Bp~xGw7_;RLk#Af=)-CAXr0SIp;=9J{Uruv}^5 zSwktU`3`d1k;(~Kq#lC5%v4%$X*%_(9Y<8%a{^lLQzf!yzLj`H347$c&h%kM(VMud(m-AaUpirqxCF4Fgt*7{@wcp zPM=jfV&W-V+_7Y#(n9OFEX{MiHd+nN(myC>{-JF{?xo3T%Vi)O3$KOqs;2E73Fu<& zgwZ5F7X=w4E)oD%gXT;jZ^EdI|4M06uj)xeXZBhS#!&ZPoWvpnY(V;OEAhwP%_&+G?bg$`XnsH2ghsoA@Sq+V69bj2 zQ5#c);C#k_Pe@}Owvv__;ShHCE~X_bzc<}noLpsMz_gJ)6EgBhZBw1aFi(-tP?=ZO znQXTKD0y`G47v##SLj2pc0{CSpE@MtI+7I_94|TuIOi~N50V6! zm09XrPkM}iqHEETYrYF;677Tl|9K%HA_^Qo1BDcs<2-F1-+Io@&51G_zDYSW&@_LC zxPZ?gJO?s>1`T#sl-ryz{`OQFxhY{5L9Ra*=zq@m;*!K0rr#**2)fViXizqq45Gmq~} zVor}Bcj#pM3po5_h$zoH0D&8!Gsqx#jN;JY(C4c(F2iQEh0R`EYDinaesRe@UArk zm#YI3%_h|U`X`tvNRwuutdXqi2_5T8PQp{Y3C(=wL;X3HpR!j1K@vBFc7xI<{KTEK ztdXQ9%qh1XT={C1Kk`3Z0C-sHO(Fr5h*gmOttkWh8t0%xLTamVV2wmTm^74LCi7S6 z1uZ>@%r*fC{Td?JmFs6lM9@Q|e8bc*5e^y%Y-|OGGu#9D2-8iBLi5&D#md*^6$xV#)O?pJ_PO}QAy#o(UoFEEe>=c@UuUi;- z+BlXSUgtnzu>Axi?b!+=>T2HGmf!jZm&P$0{lOm=QVigL!T?2d`cuXU^QI~Nk!9PZ zrtNKQkI(3k!D;f*WKG0ff4c^rHk7#Rg2iNzHiJpUrkS8!J4Bpe0WUJh0O4}AqIXUw zd|DZAex(n56IbBvL{abZ6>YRg6f8S@c2_6qK6Utc?+%AHrtl)nw0V{%LV!XMrb~v~ zzq>&1cM!-wQ7GYQ-A&%r+^|tSSzc}r{qOF@2ZyaQ${?jAy{h@#3Hr$1?-`Adl{V*bc4|t7&n;4=3^OQZj^AJ}Msdomq*4 zH26*RzI2{j?JYS46mj!a7TS@Ym;jqE@!jl-AN;KzcYvKwZh(?&&Z3_ zSpqj!L;`Fqn?#^%GZXIC{Y_rQ8Q-uP7sDNI{MerX1H{T(-OJ(qZx!W#6lw7H`}5vd znQ!E~&91jDe>Je~<4xDC#v*_o9GPfmb0+`!Ar+|q{E&|upytT~AStinj-3(mS}SSQ+N&1^T+0nTasAT7utsn)b)v8Chkxk9ACwmyi} z2Bq#32NOeejz$7&i$hXsh>LKo2-MaN)}@Yzn>X_lJEqCDEY0IkAT+0wqMzZK3gxdF zM;CqX<;F}Ni^rY1(ECx7gLe<^3GCvCcjr$!$!*)~>C-qhu^01bV@S&UR%MVxJZ17) zN&h$L8(MiJN(ny`wIcm(+HD(eLf^qPJm}$SjA_=_|38M~%IP4g-wllK)l5#`w>qWK zt`Rd8BK~GnzX#YZs2Fn?QRaR+*{}YiUoj-M*;Z?R@S1h0{e!46s2r)DUCnbah3;f5 zcO3;ay3qLtt{Mzdza>_)gh!P7z_qs1R?ds7YXp+l;29f&V!sedhW`4#kRrCB_rZ@d zGyoozrfXHLYG}e`@0vO|qg)9U0W{HR{xN#Sjhc1;reHl+GTC4NNk!>nG+7iZw;S9_ z29o#pk6B^bvbKAW{xi1__Hcl&Y(#jSTcHDGn-+PFei3HO=CN7*puDCRSrqFyjD2|G z2ibDII0!bWhee2hCcIVm4j1o!{kah$T%7D<`lq~d&MZ|+`zT%S&=Zi~8Le=pjjyCb za}nq;JsGk{-mH?FJm`p?nV7VyICbluE$m*kv&oGkpH8vKL5e;oLnh6(Tw5=TAAcu( z<4jE{&?1MTG9kU@n?9(|mDP_FpF4i=X;aSYh~+`+dCZo%iEWv(na!`%8)vlgl%$g> z8aWzBk%VgGJj(k%QRO6p3sOW?3lBKqXU2( z=^-NA9@PCqc#i)=c!qgE*~?re{;0^vJAHAAn^$|sQ-^Yw{idj<2eGyva^UFsVgYEr zH0Mkiw7^L5w^6~L7WxLAngo*#p)qAHzonj0;fa#3krITGMo|3x3ZTq=QP1gMXH|6+ zhKgzyY|uq-c8;D`lO8DZ>;UPB4`TY~#<=INe)FFPpQ)0!q!kG1=a%Y550)3kj(yJ1 zI&V{HKCV!}5=3bgr*LmM+j~mht8XOlZhsY0{$- zQ&**lp!ntpujF_3|YyL65-yjeOt1V0V-<2CJh7tbx|=~ zdzcD9m0t_HRQuC7@I*fn>+MZgEvA01B7`VSCw$BJ@QCc|9tDGr%!d~9fEFk95g^y6d?QOxPEu_ZzBhTw8s*}YGzp?v z7iSwT#PCJ6!n$ER`19wtJ_Bfz!9p&taOpo2P5pmNw2>t|68wR-bK)Ug`wrMbm4Jh6 zuk(HW)zeC~_uGe<(qf%GT3-_C{DN)Pk~!{l zr#LFaz}o&?((*ObKmZx~DmmH*aGz~FlNLMNs1i=s*JN&lIAKG8Cf7PY0qCF1e?f>l z_lv;{`>lt|M7R)h$6RSj44b9Z0G79-gItYr1Ol53L=djVf(@czIOsvPBB&5@lfmKK zt0m?WME5xrAr3#tprla`3HbCeEcXS@KOOD2p5`i$zX;wnW3*!k<9B<|>dx(!;oF{< z`|FShlr2n??Mig$laBJ09Q|i<^kp4g@WYgElBK59H=_{wp>g2Oo_kFrmQO6X_q!Sk z$%;(ASWMtIP7MRzFJ#A`vS?6NwK#thgk;0BUqsHlAqL5ql;`Yn~ z^inmsxs}S3pVwhyfF=)^roMCt#EeG&jraBu{PF+~+zW@;QvRVmlZ3Z=dbhba-S@EC z<$+J1tOESn{dD&a7cfl&Ivfjtt@7uD`v18@HwTE(>gj(EE{F!=UW8jVtaE2+>8_#7k|krsj4~{{+I_ug5m#- zgd}QU>(+A%^+DT$pCrn7)@)FUG{*$_;y~mQ3kzXD7Rh0584YhUisu)|pJiR6RP+Be zlr-S+xH+(yIoseHa4aAIbT~6BxEva>`ok5nzZChGXeIgX<4g8ux;nJof@!RR_V$x( zkRUtY+qPXxeagJmQ&a1gIZjfc>o2cxOR)w>16}>?A?|okdZw`?yZ8${vv9S}! z?W}u%la1?^122-QUSGygojz2a-k_g0mHYYsOwE2%_cFvLn|p^aG$h2?#|{c64Z?pW zT~I>c`?_Xl^q)TopZy9JOtJw@JaYtK2xR>x5d8&|)~e9)S}5@nA@1#PrlzJJ4aVgt9xKNg zUzV|FAx}xl_JhRml=U1cRLV(g%@ha{(~b)*PJj341Rq&tN)1s;jfz$ccj0kBoFD7& zg4|djKzw@6#Xgr}FsbX{aXKniHYv*hyaDAMT~b%4l#7FVZuTDrmLc7~ z1lQjO5K~#kHX*5MzH#CJ)i)rI&29B@=>jkiBv^${`uoEXA(Y4+#VQj%6{zNRj)T6| z*t8y63WlOL5oc*|2*#te=Y3RDp+kx^v6<4$SNZkTf-mQ50|Xc*fWp{WV32LIzLyxm zzZ)z&tEycwKrKFAM*UrWnSBFDSSCgthba^buLWhm8z_t=2c&9en5rxn6_;6R-voce z`rNb>@ueKsRTmVy(^n#>7qmamZd0)^j&Buj50sq$l_!HLSwX_vZXDeEMUnQW`pA@l zDngKkum$_tUWF5|Ua_~qtxnqi;wm{Caf!tf+rN{K!zD1ng1Iw@eO`kWYkU}>Hg$fP zYj19Sn`{O77whoGN>4#_l_MIzL+7KTX0?fv&xn0lg-dINz)Xzwf&s-1Kos+Y17w;p zSC;lSII}P~cO1dj<6 zynvNwrF8j<;E%~maFv06fkKW^{SoIl}8^rC%zw`oHO^DT0_+H{!&-keqspDpw3i_0@u!*R-Z^L-TS+zSXX%|G9 zFt!G*^=a2MBSze@#*+yIYYVB5ozj(nA}$`K3z6loIGmc6c?>B|C?G@DK;}eDfNAl( z5?%7=SG#Ks5c~M8d-rxUqyw=Dt^9g&aK0%n8;FnMkc6=(RLYsMvt*Ioz24FGQKx_F zMrR@vP7&HJA- zaST2<&5*`GXi|A}0Pcwz%~AhT!*WFAl{pDTGI$DQ$el$`k$CsW_QkD=1G;zs)uoi^ zn42(<1BV438UW-Ag|_ZVK_pU~+Xqn8aeM4i8pCrgNZ}Zmf`19~cnPqM-9D-RnW(tX zldJqEjuK!X;uym730B+_OKvZ>W8udnyc@57%o9Dp6=<#!yGRCg!@r<3duRSe(voeFZ z|F<@t@M||3wnHRVqdB$GwA6+)1pg@Y!iVWJUs^K^Z%2D54iUsccPL}MqXwh?qXBW^ zS1Z0{R&BHZ%|k%4fD!+mNrbF|D^SYFsIbr~(8L#*VWg z6W0Z-YB&WxZphTVcI`s$hS398t!FBt>-sZ2&vslM}er)DRBhl~=O?`FTjIeF6ESvhc3BLvF=SC9ex+FIpt`! zjV*gF5TtSMM{K&qAQvN?Z5>y};*saDg|EI6XxnVq@R!&ApzufnlGTzYaW>?x5!4&% z)UlMs{)v#N3WWSJ$GChhUt#=boUkr#`fOX^O52grYxTbm-wGNeNaVR3x~xi28if>j zv($w+F#&eV%~{4p%hJYeND!||8;SZiCaIID=S+}8GxRyU#*>$j|41|^V7!*s|z5_ul zZ!$#qE<_yZ8USoyvFB^{hS19*lB}}80HQoj54z@LOn(!LNRW7K-OEaY0w(8Zx1_Po z4S6m@pG4cx2k184u6!wxueKC0lT_GZ?JBc*(!SDzDrb)__Xo(#zvE&6sS&K+n+a2& z7#CM`Cc6F1$;<}yTr8!j#LA~*9+^ZcX zl6|p`t0~caI2YTPYUi}xR?UThVhnDEy}^?qEUrYEs_P*q+lXQALc{$W7=ro*DDA#> zXgR`*!R8dUxu6_@VbDWeS10jPq=~@{sUFW(a^H9f$4`#Ks}KH|qtCZaP?oeTgV`FU z^Y;VQ15p4=X;ake!*ZFNh8n_WP`Bpk7mr-R2_Ded{qr=yGn9!6!S78A>0J5>1I2A; z6IRik*nt38KPWb}~~fARene2L5c#3)3(EYd$gF_mptcj=${qVO%D4`OKaDfHN(AP3qT;!DOD#F%DS zh%SeKE_wtsemtKp)_36y^qc)wX|McPNkl5DjQ!a#B!)^f96gf>9xDL$C#GK?d*s2q z?cUUgchVeWx0T?**lY7wj-BM&wtXU0DukzrEJVvGf(uKZ=Q3nILy$Yb>mki~f)}1^ zglc0TIG}7s*Zu3Ik9)Cn*Fmc~K@>h!C-H~oeP8;RvmhOGvG8_&?S3XFpsZ75j(pqY zvjc--TheLOWQ3}YY57QNUo6w>bVm-(*G4mCPcAeM_g z!l;K$y!Ris;kONwqU1Tq!P98H0Ww-rA~2MDtZL^WoJt$ddgBL|VGb|zcum@Y_sCin*m7GBt=xBzE~fOvvF_0Wfu*J< zuR^i5q_12l?SE)XKP7;!03xal&%AMgF?V&_Vkh>M%P0{4Z^0zmzyCs+a^3F0J`;@* z6|&{z+-uqrUK@&g;5~^`o2Bv$xEuGs<<~M^u>iqyS`Rj;ivOqHJVKjVJKWuxF=1TT zVrMZ5cm!s?t{(TIdR117*LRh9c<^KuaLf3AFSo=J=~f<1d`S zgchY)RS0lF4J1$43D`YoaqU|$yOiW)8PX5#AJcdMFSYv=b!TgQ&gm$<&4;YrZLNRp zVYhSe@Qe}Kf1`stbOfEJkQMY7XQ}c)Jgi_JrI&RqtqF zCJjUc)!X|n#^{Ix`noK=GxjZ;1=K!t(hJKY|1cXs{Wt1BxWeQ3iuEOrHha;aEg#+y zF!tw2l3`o7ydgKuEaQfvu5p=--7S;wH{&g#T{ED7%!FYhf}trc;}5%tliM{?aX1z7 zl8!xaNMNvgXWxzR;X-cxm2r6Cl6H1{F0t#iR5-R(ZWTYARd(lni|}d^!(NtkLB(@N zaYN?D)^s>3kgO?O>UBzkC{!!`Q~+0sQbKgzLHZ{Z@Wkxbdag)dr5yEl`+5hZ@yy+T zmM1y@NtrO(etL!n(L_Z1dx7kZJ+O|OJ{8&??3Sm61b$nY=Q6WJ| z02RMrMn}*+dV1}6teR7Kqb-I6T=m3u0$nG;U1wQSOyM$IJT#^st}sLUqpmg@c~3o`gy4jdEv-3qCoMXc99_romGa+4- zQ7$cD%5=TtK4Z|U>joVEsQF1r=z z@j)fLY+tdGF1I&Vp<_6FQq7n*VI&B1KYGk>cx`YyGm>(`55mZ&%gwAD#{~(S-|x^I zz+ObG-In}8=Ww}`K14ezK7i%h=&n&vN2FdD|9S<09Jto-3(WKXV#|rICRtiJs6uYf z7jI#t1=p^)=>$iY4?C!)EAt8;P<>~3p+Q7QC~e^oB(7qbx4e{BC&5s%+vZ$Zpngxh zvODYwXat`q;nuJFZugzHl9pI1iV_En29lJPA&n+>Fz&-5CZRn1df!1dz1$&WSUzM17}PXkWMr%bkk)$aMB^8 zkn?BcRc3T5BIt|~rnwXrp$03=TBlYP4+A8;Tf6n5CBmIN2gbO0u3MHn~(Ehk4utm=P|HB2y8|ST269_xyT{H-|!q}^@OOTh{Xhs~e z|54-C5swO|0s${8ZT=r1%8%%eN9vk){=}QkgKu1+MA;_8gf(Gz)U>mohCXY{wVC2g z)F}6>vn78{lG|BhNCur#;64nM2mEU978XUqf#z& zrpF>f$hk%VZZ%9LorbE+AYqMDiWa$~O?~PbSokjS!75MH0819d_xOaij6im(wgE$> z1-MQbcku8A+1(?Ne9!!Y*T zN*4^O_RFMFmcW?%hH9<80=UlVT<1_5%>b@`At%Zz$_zvhF7zt6o^`53piMkFc|0?S zv!sp|#F^rig4FwA{x-&OJhv70hYt~OkBwj$8Yp2jRG}`5BAuTqz$i+mB7nVu&{v7- zx1RiCvKR{-v>^k)Aq z;*|LgW*mIlu#oRq)Lja;9c;x`z~kL`(q;m}m@yipVbvcYyZhqt);okF zJK1ohqB-%o4&`r@p)Jm$frw4!%5gk zvzJv^+vlXFR%lV(`#B0UxzWwq$0-*NBwsf;U6ciJdo|MuN_;0q=KzS#dY*2;WgQ~- zb+<{~s?iV8X~IswTBFmMc95X(oe#fTvd>?vhWhquzT3J8oUU~Da#f}nq(~b9UkV2j zkqPrsM!s-1bVr=b9#^x{MP98bPZZn4=gMWQ^_Dg0fru{gyeHbKGuF4DBof5XQSU&pY@qJ=;V73G5y|ps4AE zvf(q?Z}V031A*&JNyAv-{X5k#?almbNXcrUVaM|YvRP>Z-X8ap6~vMK;QX2BHwPY_ za=9tX*=jTR!)wA7rf$lXN}~W$fn0zo=FSe z#855(%4elQtdXiVS9<+d?@jdZP~$s(hf$MlIRCJ3x_J|(pDN~{yW!FDeu~)N=^xZ! zG*>0l;nOyJXlHyhL4CM9Y$T?Yi-*u&O3txl$^p2Y=P{kff}L4|p0nSaX;VhF5W_?h zq*4cAr-4wkMA{O!SW@_13}R5GV8XmjgpOh}0^=Eo`Bn!lTH>;W;#Xz~x2gvvpmSs5 zcSF`Y_xa1ny& z`jTVnf2d+5#V>|*K@sQ;4YwZ<{Z(^Dq*{fxyT{20rT$EBmFqBv4msc&jN&Jyrif~; zLzL=Gg8Vqm!kn(CSGiFmk-hR}8+%XTOqxd#x_I(l_3ISF^05vp2NcTzFLz$$aAD0J z#LFi!2ARVfl0wZ?a(*(qDB2@NO3v`%X6I zu#TrHtAcgNO(A1Pjzx23df(0qkWZ(iuM>A@7TBu#Z%1LeWfU0*%sen<9c4Z?mzfDk zn0$B_+U2<33RSa`u-dEf5{95&(gPp>lRbFbv9Cbv3wJ)$D1hjnRmg|OFj@!=aO|n# zBUk}OT68Juneun-%FBLSR2KpvSGCy!c^MU0Z3*Ypg%Irqs4ZIlu#>;+d__xW{TE~@ z+PV!X0rZ77u6I{sp=a12@84t9iV$Hqn*KeSkb@&Fb5>Z3>pzu(Z_QMg6C()CKkw`+HxhFEjysN)McU4qFuGHBZCydyQW zfrZ)K0V3bP0IfSaIOp?v8plC}lezi1%lx`PaSP4?A%l^n4{;N5T7t8r;ed9WRPrle5a_&&l+>n+4IMwP;m{?sS+Mvz?5LqDWc;rM`t8TO&i%qO z+r1Gsiiqy+T&1P8qJ~I3K$VqEu0NXSyQ`Eo78l`QJj+75@d<3WM!wiUNu?S!Kbhw? z*y2G2iNhfxwiUvIVLeIXH%~~A-QF1&my`_67TGCk3>aknby1J!+-az~ zHFqkGf8a*@V{9UZDl&6oY$__=Z8KI&BdCh8F4SfH`b7(+#kM-)TNdf$;FkUPjh~%z zuJtKQVo4mESAE)`5(V?~y?NWaBYAg>sd4Oe;~B)4_G_?1ZBSDNre4-bF_)x;s(*$F zCogMsWuvc5Sa09-hyff}^S-nUGa;AhbyEvzDi%#om zB_awM0k1D0hrX!TX&cz&*;;d0q~l2IxrIJ_W**wVznv-+{I9ds{F_`*^DT_v#>&r6 zj9^)Kq`s7FRInOSbzA5PJw1OytEPrvJ`dkAu6J|J?eg1%`58|3A+o9}u1HjSIGA~l zOHCZr&D64**p%Y+52mgc&llOgL7C3B`oa__2)k&gu^x?C@YHoUt|$&c%S~ zJm%oW+O6>UcO&QW{O(6_$1pMB=c9 zsyZwPW+wq|#+Fs7P=1B|dE&d+bwrh0UBalAbtU+V7V^RaCTIw%Zrs3hgSv0%%8=d; zs`iThER_wq$47h8{*$;pk7%3Mw$B>;8#>SrDsdika2G)RKozu2IW|SA?o`OzWIrWf zyE4FkQTLzp;f~o@+miskIP;v#1I>n>%2ETL!zY?dNuZpLy=0$ID)@`!nAzKDI*3jk zb5ES9$wE5?_>02qfMgFppi$u} zS^r650jlnU*yO`B;D<;&!1uTeU;_g^m6EXK3Sp7GmGp)n4NKg{UaFzVu z`2K%14s3+J-#7IC8qfRJxIFwth;b40LoXO8>=Fv>6Q@3zNfqe-Ca?(&cmt8IoKFMB zrkoH|N=FyQX3Bt5sV*>}QVXN6>xRIeC(D8V3@HK=Z(0a6Q>_B@rx}%UQ}T2~=Z z1l?@>q?K7$T#U=z$PIRJNK0HRfPPp_?fmzC*?+?T-oFh7`eyt<_y6^3kf+zPvYt-B z?=qdmWzd%|=vtVV5V#fx+M3}Qn{}U@<#KYNADD!MuFo=o*$F*K=@f;((Dn38u{}rv z!9G1beNod3Elc-YTv{ThCr7HW&fom|mvyI|9zyv3YZcI)8esg!TEO^ufdwNILyM>lm1s4DGmt{Jv${m{6`6Rad~;7Sr+*7 zIx3()N4?(0ynu#(rz-*4Y~FjFzCimFnm2i4U;w+>oeKAOe$dF>9eNL2eX*VlDjq$L zV_67zrw=v*gs@x1zbg)&yuEc9rd^VC)SlXO2(876`H2lS$ke{r-eP|!!dC8t&AMo^Gsm*VyL+Qo?)CM?t;($B4WsF7(2{DbTRFq2M(3;*Ps;a@M3F*c+6fL?@b z6+=I~H~{PQ_Tv!SNeY-~K!hylAdElZInrO7<*`HopU- z>Sm(Le-^tb`?@*T2O-;lGT8dw6^Xe2?B8~!zoQIS4XPIDiG*z^r0010b>H0m`CNyt z(D{D50SgN&2Kjq*h49VyEwp^BGROIp$hV2D?NMTZW>BQXPt`9cdc&rxZxF_`fMaK4 zdMTo)h+0BYGIGb>bY5n3Vv_SAV}g_{8--$qZ0zP4dEdg>2J08oFH1YSPbMbY{RltU z{mh+sS6<*c^^ACQx||-@oP8I+#~fnz_r#`EY}Mc&SeQ9Ot0$|2-P}HlisnW;%|CMV z`7K+R{o&xgCYliT+ezenGnzQYC+MoL>LP97scB^Q{ z$8D(1UDY>doq5M?ZK`X@mj|VfH+|sF4{V9%(%=GibPet55;-|(o`|;8?;7nVlCSkb z>WV`jz(1khA;MoMc*L{6J6Bz}Fk3O7KR^2!Vgf1#O6&q@PcQDS0*g}@%nZ%)8lU?y zvIg(6+kN$*J_x+UvI*nOym-I5@St|tZ@=1fcCvc-IPT=u zl;Q_LLBSy-$6Gk_dn-tBT}CThA|hERL>qT@#Z4~uzYd*_j-3Cs@(x?_uJTxXt$RY= zd2n%Y$!n}cVVh=4u#0vX8uOV5S>*JLAU@oAJ}r@EG%hI6GZ&gomc4c=*J+7w7eVLZu{Wq+NaG6+}viCWqnRCHhkJo-8Z` zj4g-H6VHI$-_!Bv_4SRtJ=5rRm1hf8Iac1>to0&xht;psU;0Sbe0j2SKF7u(j$(-j<53iVV!o!m^VLt*izg0E z-kLUNpRO#exxYBe@h`9RJKSAde3xtPlv;|od|pY{pKN@LmVaTMoO1DQxeLGSe;xNd zXjnBui;H;8xOy%@BU|umO17AFmwqPNc({FuIsZ=hI&l{k7N%^d8C88Dy|}oj*t-7m z7JBF5$M2x}Y>~F1FlgWCi_0!d@ur`ZwJDj|6o;v`#^d}I5kW>pYS+UJAu zrp0KO#1Z|$yg+5Aoj=J$oZO9@6Kj;+_U)IG_MV3CtS~TE_tBW*SL&fyfOYI`l^jrF?+<#NYB=ru*>N~%$%|dv*Lo7{< z(v#ns9d27sKXaDJLUdIeyhBvlnz*-__u#nC<5~J9O$Noz1O90O{s~IDm+A>Q#hYZ? z`aF)fIMm;>BaAU3;;hPNs=DQINu;5i0Jg+iw)HpUOOEBQ9Loycoyblfj}7N1&DzF9 za|z5Xj$Rb*GN{KVAD-B6Ci|JWt^8UohAkHy3VwEVk%|XFU0mLUo<4ZlBo=8@*^bsjmh%Cnxx&DIp-G7i@@#_?Sh)v&roG^wbRTH>=N`- zc|UB5d5#Uei}>a7E;Y5b#*}z?v`;;m<4_=bX8%Xz%_mad`o)I`P59Vb3Ln*}&8z6R z#V)$@KIxd|B5kQM=LwmB!y9UFq3Q7)bEj?k+}s!HAbW=p4^LEAm%-cng|c^bZs5!5 za)kE6yA~28a9qL&b-2!vRWHMX6Bve+vQqWmE27odWR-F{C`qZ`eC7j{3kvWExT%_H zj=QX;BjPza6UX9ier7#6gw)cB*>)z1h-IgFTPom|fvqJ2SNdf*y_?6+M8?lK{}i`n zdwd%G{d;r&EHpRQh%M0kxNBNDV^)Nqo;udQ6y1u|wTi*}utZ*EJDLF^dO_(~fLMm2 zvrf-`UBqC1X(^y}Sx4gYQ1{4)6~^N?&iShQjZNBBOK-#@ks@is$^Kg(dqR)P=agsz);-NGnBS_+>b|7 zXS~?YsiiAI>&tg`s)z9^8k|qNKfbdSEoAJNdisc)LP-ZoeU|DQ81VSLY~Vs_LtOnC zP3sieT}g>0Hb;==FtO2YqIYTvO);m95_;EGw|49AUtWp{@9Z?5m#4wohoZ{TUe5%5 z6ATab_1aQ>iplntPb<4mbQ{Pu)`L8^MRif;UgxGSZLG$;@^5yEo-{F-N!(`s^7-cS z6gk2EY>#IIRTiWf=>%rie3X=GCx|;dy3oHdT{A{*B{7sA?j0aKGlSU|onb%&XM{Av z$gV@py*|sw3SCyAlGL41J3cu!T#Mm>%Zr_x_BehV#%{5gHs&d(v-W{jvvH;R^gP)w z`o;PN>gpdXa4jBVuL*gqj%Q|pLXMOoG{3a2-!k6q9*FcwbMo$0J2NJ3k&HLrEWorQI^%IxwM%^!wx&!Oh^SH;C zu@U=Cj^&l0vfr|RDb_PLryd+q6o?mv$GbdSCIOg?>U^jCe?!Rs?Wr=+%01k?_Iw!l z%bIOC9ITX&bjD2ECIuEufi23bseLY?pR@<^e||*>OvWqvOc5Gtub_ZzVrsf|a?(yz zWWMh6GjDNf%D=Uh-^|>6;`wRM5n{ncMh3pUy&a8+s9mpB=-gL@I5i_9>g41EI}0lF zIN4Oc&U`$Qgx*yW~CMnC7HMoVb+|I{tZhkNaS67g$nw6e45Cr8=IKd zQ^`D`L73s7Sgh*LVUtGIoQdhiqe%v9N$KWxk6^WVassV{y5HZFQ_mTFaC3JnbLNhU z%F~i^Z&c}lvtov#Tp6&Way(`+KEAhl2nXITF*_3vZ6#R1J}9j#*WLfYC&%}8nDkDB zd3ktF_}yjX<<}Ve%FLSSu#BZCh4D@Mdiszv0ys7TK`>O6qapsVNADde;1=wbaU~B_ zCd?}=L`FfmySU>PY#Ox4EhtdkpB);KQ*qJ~;O_+n>|NdEy#N-LKjykvo8DMJ#nnue z`Mk)BQ;8TGbO;wcY3Qa@RX<>nv9rC*8hWPd#O%SM?ypODIp-ik)m=5o(RG*rwM+?n z=dBU2`%FTTVjs~F)KQYTmm$?wTrSrckWE5zHJ)K|kA##Lyz(UWB{z#CPfkm_`UDqE_vy*W*B2kCR~7L=<&y6MTCh`VD~JMwgw0;feIqt8 z_+9pELP7~B{WCLtMooVjNeFPpWOiFxT7KW#^Hs9V@Nv*|$GAegVmx8hYquD9dOlCB ztk7s(v=qc}to0njJRw`hy0RSj-wEd^LH@pL*06Ve{Z*T7el+9^-R!VRL@{JLX3OMy z-kobC-8RX2z;)i!U{;+2v$cOje;j!(*vJ2qbdiD^?-jN{sD+3%y)teen%8<74L8Wo zl7+i~jUnlQ0O~cNG4h;t=3s1-6eU7r>+dG*2E57GE#DR?KmTu@?q%1z@gIc1E`%vt zrUp#qS2ftZt1Ij^6uZ)ZYm2#klZ10PV~P&6ny)Ldm-2dHxbTJge+blu$z>GqiD81ktN&B$*xRq`x-z4W%H#KSDKpG}?WO2)|h#J?!3 zMQ;CbWW$h|4+(*xu#34BuNnsolt$#3@n#KW#_L)aC+_wRL1lw4F@I|59Zu59nfd97 z0OSLyG zckd;&N@mTfWe<~@ZDQs^9W2AJx^obAIP}5R)b2dk=+WOG?yZ`hO=K&#fIp>%zidkC z$pwB{W@!szqmxx!7<#EskqaE)?P0O`ZOF=No7BTwqA?|5uZAA?4YG*47~^spt2G;W z{KEw>pD#YXXVOgprwKdYG^>pd43-c=_ILp2 zPwN}UscT=DzQ^F;yCPIa1p_`!O|zR=13jBhR-!4?`lKqM9}y8dPAGyXJ@B=(7N{kP z%gXSTqu00iRWvod3zK>J#}2lS8BTsdc^=I2#|!oR4F)!yjEwnY2|%-O5$Lh#Er`}uFvxBXo^ z<~5vMTo_$5`(mNck&uLSUw-L7a#S0rJknvod@Q1Q6ar!uF+>n`w5p4to1*LQ(wZa8p;WOfs zp%l=$R6o!B{_{tZGoj85iwy5)Vm<<>A}FdtlAo)m&|)99we6E9n7ZqCNi%l+3{v+q zmG>YAK0Y?}EQ`9`cr26&k*Gk#<(l*$LwBj1ZU&<;+D0RD*)Ig0w57fw$*3z)K?%+y z{{ST=C7<(P26`yjhxAcf#a|h-#+NQX8eENI{+9b^nUqxP^*cr7EU;0x-C1QtXsIgu zH{6S#q0W@(P+f!jPqyRnw3}j)P4Mw82fnh5lE0*_c!!TL{)d!zoRsqyjP(^HJe$w_3wq{Q;iC_kGl!~%oDF^qfa zL)0-a@ff<)^;2X))T#Dw2_V^6cHh_LYWQvTWy;jO=86KsM4 z%jtCv)C%#lq`aIyn=Kh-5g5N6LU&0>1b!&Tie~({^nks6SU(+8`6KlQ#4g8)7?@BN zaWniiH)b9{G55H!4?5PBZ8vMIm*~Kp=;3R?HL`!u3gq1m*BZMC!8AiJ8N4l+Z7{Z~ z#}_L%hYfO*yyT?Z3x=+(^YFo9|D@Id%IlwWOdI(9d-*Q<`<-fZH5FW(nox+L& zICwNt5qEcNGLKbeQE^`c7lj^0mhQj`0(KaqIaFKN<0P#OedxJUemvoy|u0~hCNwR z(-)(xpd_KnUY3h?W$95EWJ6dG?Now+x%ON5JuY4XB6M7OeBGg)Y0A4cLi*mO15~+T zO0?D5xJ^b#a9}wG2>0VxPhIi~=mR36Zsv8T&z5C1^0%SZ8WSE(ZdXLpJ>s1U3&`^F zX#Ov0IbH?E-=4Q?45YnchDr(`ksOob)8VU7p4mAx1LDFG68Mxa(&cwK%;~h*JDuw>61~$S}3^k7d2w*!e$|vJSyj^Wl9Ht#D_;bfFO~nLzqH?S@OiS)Fzb^jw|yyZpp73V z)(j~ZDyMZHj$O=p>YW$~`kDO@{~Mc)h9MU&;J2PNVoA{;zMFki(gf+Op1er#wEn9=HhTOf7z=RrsLGd-9sP6a&uhfU?n zJFVDiaAkfUU@vh3qJ6hR1+t>v97L3&a4mi@|lY2M!@4_^3 zGSrTS2664-VSHRPL`4P(&To0hgv;ae;S(k-h->7vG(-TnfGYvqwi`=Fy<5!ax51eP zllt2k9H@}ml`lM-CV8V)NCxo;lt1mKzt?%OUjj9U$Jkvg*w%pX(aEZQZRgi*$q3z zadi&aaxye>7F7srHtjFpN`K6UEOLXqrG%pne3e{k9BYIV%R;n#+Msmr zdTi4;IXRF$&LJdZ@qv7Wt_8ulsGm|O_&G3zgt%5}z8*F-j9uj-*(fL|T%x08HZ;gn zHb=*7U=oqgDOp7m8JlWY3R*??iuw)aqGZfnUP)!b(2nUSsUd3-Q?#upJf{)ERUMci z+iiGVL!W7lSd0Lcy8;p}=F8B%1(=PF8YW^eDFqxW*fwcCXmsCy=<3{KJsCVUINV$~ zuX*O;*4!)#+nL`~UXBqYy80HM3yXl%erunjorRxi?;Dd}%5o{-`(R>%MnPhVI4)!I z+y1l>!2{+&M5{E2Tn~;b6>^;F1WXOA_RUQvcTV$DI75m!-_M8O>f>9$Pgu{qRNp># z{D!@iPVCmQM*&id$rqW;4PtKYr7l*Dpq<49BqR}KvuC=(rofqOP+K@qC& zBMCNcOLg9LY^Az6yEKGE$BrcK32mJ122~2vl!fR}f!~v&5y@TG)Bqk#+^LDh4pu5N zJoif&>JA5*#6r?z-ijA1UexL3~dzwP+*N%?mq z-9o+lU>6NYMV6G`15aPSUD)|O(w^N2hZN}3pW*g)G{Qal^XIjP_!BlP8P!APJi`W( z)kl9eCfuXIg&L!fBZ-a#`e|@;R~uA~)c_7|&K|EirCaH?)UpK7dyJClSDD=&pE`X#Lr8@5#q0>`V&J$}RnRia@AtbKw?rX=xg55()cWWtbq) ziUpH4@{tBnz8xjQ5D17CYrgwX2N+D%TG5^aqd+cheQv~C_^Ya7Sd-qk~qK5#kH;VuN5ZIo3Di$hF z-_+V9pye4_%3c^3+o_>|?Kf7kxiyiltjH($sJnO)B?cE&nUFi`H zP}|<&;-MiYOlt5qhUS7miX^!y)P51HyP;}XHSRdf4|=88tDrt<1wxi>qjw+w+S?;< z-Y-}$7^&ehouwcHii3>OpCF94a5_J6O$cTok@&C1VKfqaF7j{6Acm;RSkX<~SlN8R zd>R4!1*#F1>5GSA+O z=}TdY{LB!0|B=}WX>%KQ^)W}A?_pD9qg&bf+MJ_GkQjR8@$!&ZB`b2(3Igd&vQH2j zlcPr32}n^UC*z~MTj|y(A!~miC&QwR7}eL8B0O%iNFdk<-TxK+nBI6?Zr+eEhhS6q zZF%9Q0)skqn)}CLD2DV9Z$F2EAI*v!pDdyc7yitdL3Q}~Bbz&t+N1Ux|IFHH{#dA5 z=H;R-D2*8bugbOc6!P469otQMsiOW!Yz=v79UDAid?I*ug3bZq%u+=F>K*=}VZkz{n z{UyOl?;~f$DOIb;V>qiHRF+dQ6Sy4qb1q~^(kmjguQn7+HKQaa=QBIK2(^8a#_=tY zp`D;wbUl^$LR(9APz3WWB<^>+kXb;10-eSxkBp2w#)4Zt89UZ$&;j@;NT^^Ttgw)0 zl7n+#-oPBq>hyxbOe)1IDzbR6GmNlQNL+80ms@hgVgBk;DRCz0u3aT&qlE0pq~K$6 z7}QE+^Vf6L9i4aL4n~Q3ZK$|DI%WQos=F$k927?dbRjPLG65lKHIqH z?|YNGzqU=Ap^!_M?PXa{4y1o>2%Ek?09=j|Uat8{EerslW#R?!hFkwb2Pu4^E2s&C zzmoU68(GS9<0~uZa&jfg;HYedFhqt_Q@P8XX-RtV0>dUQ{il5#&Nx)d%$9Fm;IBfgP zI9u90YQls${M~L0cqx!0d=BCDnmuGzX=9A3mP7ooM}_c=?l(8bLdI%W&iMwk;Ti8m zp#WkF&=-a1KqaOeA`{QOOCm_B68_TpM&j%+23?*mq?mOC5N95T2Q(7Qod_j@(61Ci zox}LzA5!`3m7Z@7>tzDN!y_@&a-UpI-n>aVTwkZ$(>-o4A$439P3~s z*;$0z)4)9bez+N+LCp{w!QM&lZs9IlEH*W_igS|D)~@1i1sFtWVQIxzZJz}DAs){i zY6WI(e2I$`71zIE>#8wzNpDmD^M7FpZYvmBs`;q3Tm&{v!V1~M%vw*xPjHmg5s8_F zXCxSjwbiOMLWK6XU!>l{X{{V;9VGcvMSbgGz76fOtDI^x`xa~~L>!KLDo)n8{hAOWA$Gi1*~N_@6=W+DEk6RNZa_n5vZ=P% zXLS#DiumGd3u?1yn}8dnuGxM@6W@d`8l>znYj^L?(k<%fZ1E<<$AkA65|4dW#HM#D z{2>sjV%de{ASeZC?RWKCN#skzQ(wk^vG%&jTM7Jxff3!3V@p)RA8MCvhYymq>ie6! z)WoV{iQppM%qKc4vJgK2f`AZ!WvnU` z#p>ixSiuRs#&QG;8vjXTnwXLq@G$Y-=8mUhCaFfV?|Y3AhX%7+jWenb%~}IIyobya)J#cO)M7kiIW|828z=S8DP=<2_c$PVfU8u;!5SUy{c%advaCEmR?|{x^AC3v zM?^iwDoQoKdpv_Xi>Rn?aB>Ei`@$*ueXh@_%UTbdT8FAjq)qmk<4)<(dY3YyP+pjy zPNLP%LJxlt&4c$?tJT%jeFFp03*)C;xu51LFE|N%+eLaSJlvx(@KKm(3R>-Z@%j(& z@yHn6X~u^6Xc;B1)}E=@#0$O9$OO==70|!*0#K{)wV=aF+UJr*0b=O%)Vk02-POaa z@6T5k?*{8m(w8!`4WaweYOTc}I{eJK_5Qq$me6r7C>x%uE&S2fzI#f$2+C4D9T_NU zc}fabjn!yat1d1sYzd2c>;%&@D!&xzrQj0u-JRBA4D+H|1mJ8fD8<}G^Wwyu>c@a! z8vPo5{qLAcv};s7e^Ra&oM4ju)Q6>r>K-YWRC#w<*`Y4(lJC~dqXS~EVCYB*z>EXE z(`mtfYc7Q_RCh2T-HR-vw7xW8GM z9loEaq6Pzb3Y)`Vxz#Q>rcm?qONA_Def5Sl*^>4O>`GZ1OjzA@2P}a9pHW&Zf)gdZ z+1M!eHiM-Zd}TGUN$In}emG-FYk$^8P_gHYRD0~%{kjJw#3hU;{G9&?AchP#);A9H zya}m#c(^093t#!c4}&scwa6{cBE=>n3(f7pn_K%dk zhgzyOj|g@&8zkbK@G&A~m*5`VaZ|)?Awj2tUS3`fpVbgo;O_gumitK`l_vM}mse2z zJ>j0Fwlq1D(z$bGd`x9bmS~=KOEiFT!-LxD$?8EO(W$UJGaAB=ngFv0X>CxIUOQm$ zDv=3p;J!)}1szo;48dwzNwKrzSEJPmgN8C+bW%EFR7{LAa0FzCaD&?tQ(Cf%rN_^d zvV|MJ*OR-MsHv)Y!Kp7TqL|@dDZ(La0pVV<7OXxXTI!Y^;ZD+ zSm4CBd>_mdeueO5qzZGWesN;qowO!B?8YJZ4lhZ#E7=cjFL0s_XqGFct)0sFmg zER>~2o?dI#Vfx+mz<7 z)lWG>uZM75zT;feBgoRIa@NMxgjPPSg~F&d#^=qrGPdYbU%BT-yERH{MW|(EWwns_ z4~A&$jm>5;<-MUf87%kC_0Gp0MX|a?G!c&lPLRzbK<-);3bdRTEXEh+_1Z8t=bcx3 z^icZPzsoiq`+m4+$T~U-#Q7=03yq6@r89WG(>%T#RWKD`}R3Y3H`g0 zqjT)dEOO6Ax9+u$NL;M$7!wN`!w8tvrzR}92Q^83im$d#Ek`)Xo^&wZ|4ZGM1rX2i zyLk>7*%KV0UfAP7ZX%zu_Smg%-e(-vedIJgZJPPsxYOWnc)Lw}NH(vF?KpaSXSp~@ z##RmK+GMMMHW6_HT}Q6D%4o%$m>-By40GaHJXuw7ZJTSQEF_CReqM00syO(@I+|NO z-J`s;BR*PTTQYJjpk3&(Vt%7z*3wntUv_P>1wga611Tz`V{!mz#AfiPOh!>rqn2<( zKAPTGQ;Pdvp$+oF5ZQhP9&x#06le&1kU7zdsy~~mH4j_bZ*!EOVhd9*pJpH5NaZ;h zpYY(_!u=n%Rr%RD49W1wYvpwq{Br4|HDTcdWrl0m48M|yeAg0w(7^OBzv-92sGKJdU#ZptrsToc+JcsT)3j37y>{NQr#D(~~92Wr<5CNA6J;LgD)oyq=I1PTD zzCY|mCG`KiIk>GP9C&x_J&M_j6+Mu7u03@4OW)}5Q9+oU>swiZ&EQ<@$G2OtN=zSI zJw<21zBOTwWt&??1u=@E6PI)-yoSfRc=|@WR3dnU@jWENJx%RBjZwwlj{Dhnn5E=7 z{mFP|=L~zV<#vybdJ8J?yT@?8cka>wimL0hFAxXT$eSek2<2j_0z&oE=M8O#!VNhO z&7RirvMYRth=^5wTeABkKn!_ZBw($|oq-YR^7-d7y*GxMaDFdG(D`h3^LIIMFOiHT~L?k0S7;`E}YPLU_<@cxP)IjN|ybCjr@A+`x~#w1okW9gp46 zn4B^%6ZO~FCGc6&MxwhRXcUrCDf;BFe(7@i!&Um34Nu<4N`aw5KD~v)<=vO;m^=P@ z%*YgVik+nz$Q#N|RKE{^CI9z);*nls(150jzsJ87&(dIv=$O{}UWrU?lMqD^_WpO24^u+?t*PV+a-9G#qS zQv$?llgQ)m!lblgC{30%@Hn^qc>!}AaT%tped=KuAbnh2p=1gS4W6MA5y=LMLlj7 z(|_gMi~1G1jW#u>5!}xDhYO(fj_h9{cDJh5g!lQ`wXmT*GLXul0CP*mPJyef7aEk1 zvded=Lxk9>5sLgKT(Tt^sN^##Dupp)=0?`KW&4Q-fZ$nA87^!6UU!nX4VHxGC4g@*c!7r@HT(VLpDGmTYKmAP`p+A4vN z>WSF^yVE#b#qmGF=Y0nV-0dT4;~1_oR72rgeCG29a%xO7#$!pb5B>Uh+zSo#GJRHf za^b-8;n*^^46fTP=I6=9#zj%iynTBMVxm@hPANQ}+=RtRh|OxQltD7*;o$`_@ZlI6 z$I&s+CuEve$u%{hz@a3KY|i#y=!skAvVru;u(4T7mJEvzg#IMI48!y?-s2NtfsZ6a zeJNQ%Xq_UR-1f(RvZJ$j7N_F62Q3xVS125@AoV~xn-CkBgUwGH$OF|_^?!z0w3Ct3 zQvOHyaJZMm&Y`6fBS*tpXz= z+UA#8ceQuY0!fyjkLc7kg;wy$m~tW#}iBoOt*wJCxj!NO>BFH~gOT60u(wYOP`i&LBr= zSXe_aDa4f%V}kGLJWT*1&CVts1(VtfhSnH(;4t6gP9fO29lkiuuSzMw3K5 zb{IIj{Gg-BO z%E_ea6x%ui=tt|&Sev1L46Up-as`gkf(M8$Z*D@AQ^uT!x`z=yBBAD1yNXNraktvg zqeDNpWJ0w%Y$apdSM?HroQ@xHFVQYHYKG@*Y;Ey!K4vY>(n#I^UIPKC0(ff{bWA!N z+ywoLTt+~yYA36x|50jyZUfj!fClD%)xabkx#|v#d2WHM79S#Z_CiFrch(F?`#= zzg z{fbXP{byS~VI~H@+T1U=Rqz_8XKlT`K;L#MPE-g2Ik`1J34#XL3pB9KG)@i7T8gXbH7>|rnhCuHc8g+)rXks%VUc=H(E{@z}kB+o0A>85WN z;qd5)THV=0h;^ShIVvulQmlCxU8LgpGl0~=G0TtijmW}5@(gK5D1(tsyQ&Qu(|A4A z=9d!VnCW*%bn1S#dka}E$AWzM9yyM87b_U@{zDRw`|*jnt1GfN@PncivNjYkc>E!6#S@!1s)M(6+f#f6P!uCxK$dT@BDJkZKoN;#Im zGFjMiE|q%U#_F8-B5H;sQt~F@{#{i&9l(=6o=o_;H?&V- zv!@Nl++G3D(xPpzGQlr9A`}5zE5b~h6CxXs5m75Tm&RkSbSy@kU)HJ{tVcuBwLX%z zfJv~+Wx?t&I22fu`QLpkLIsSG`a;V2yuraDaCW>O6=8#nNfc5R0J+^hJY?3^q64+v%9hc0 zG*Z$kQo|%G{rzXk;9v&J?b~mOETkf2L(NjcDFY7IdCgfOsgt|;2p_m=gH^O~M>d*mgi-AbO7K%}fP!TBaOCQzS>9PH zpyCm84TL@NRSv>my17Y3O;5I_->wNe!8RzTrSw0FU4!Da(gB0Ja%J;Z+#u9J{-(; z#4ydFPl`hZE_3ndXwayS&t_MNe}5G`cKlnXOU`wh#DoD0?=(CdEg>^ewpm!qk3()2 z55hdpDSOuw>#%s~^xZb<2X$3Dv-Us~rz!c^+pIn>`t`d0lcPOQ7jKAL3_%`-ca(iJ zcJm*idKa--AS>Vtt@*gXcJQCM0FIJ(0ifYai-a)~;emOLz9}Y@&zTVE4a{auqvKKM zOU#Rgi`CZA8JiscSvq0`>XdShaijUIy)p}y-Wy{rERgO_%8KcsRD5(Qj1S$Z{q7L> zBN&aa%%oJBSW63$DtChr4-1S$Lzd~ke<%!ryt#jX&(;NjyiKh*>HbQ^Pnd1!9||t$ zOTI^khj;aT3*SC5AtLO%$2T6e!S7=2&oeX0*;mb%XiiP{{*&r*&lxeYw$iYCuQK{S zx?PX{)iq+Y#RCw?%-2dIK50E9YeiwW}u(s-$5HP^Bnr9iRmy34M zvq6}e`raoggSDRG(iZSGz(^z`n;n8W&nhR!WWaKF{{zHLr+D1WX=?a4+}7UyO~{w? z=PEgkL{~jM$$1o%OMKj0zrl~nUC}!iKWcg%0V1kVRz}JLxJl$E41l}_=Wc(-ME={8 zdDJ!hd|iW9QA>boQWax*^S*E-UpSAlsj^b$-Xp7NBR&Zl0wm@C@fbey0$Wgajr(gO z1OIh1keNf$Wp@s`3NCi{kMYzT-9@N?>?(C0HE9zuDI<(uMTJX2u%v%XQ?7mAsZsO+ zic&f{J^#15v!-JUrM4>8|143|s}+}o!nbu%urABS*Eg@4-9?z>_&|8>Ydw-2DB1Y? zsPa=|K+0v6D?`zNXn~b#Hj4qlkAi<9m)8KM78V%N3f9E0G!5q0ud8Agqdo1&(Tz7wD$*Zw>ev5qOwoNtBps!t_S<^K>8)FBSh? z?mYkEt%XNhX^7!vxPM`mI26(iM4S16kAxU+d+D|~I6d7fH2Mpgoqk^Jt z`;PfvJM#MXV%S#$k64*+SWX1IQ47_)IqIK}|3YA7eI3Oa?Cufnf8w3ju!r&W%kjLG zh`%ts&P?;0W-o9m{xML}UI#?~naIE9qk;JPF|2P&y?Pw4K_}7V52}CG`V*#x!Rr{- z5&tf{`{yhEHD-<1nsX+YEY3fgfM4iVJyaF0^54CWg__~`cbxc7xQO-oG3uer@OJap zW#Gua694by%e!93(1rc0R{ei1*eA?#gx7h)ibIU5UkRG#NoJ&Z|6Kv#s9XFy(EBIe zqkjFEbfOrk&lK>!MRUc2uz$=J5Df+ahs!O9_LFtle-{K8gdXPWyb(g@`_6^+aGv;e zcK3+82%vc3P3l~o+u9wkmHsJ;_|Ke*QC^pY@FG9!e=nw9^{dZst_xiRdCcm}AAEvk zX})8XPJ#D@LYErqsT>suqKlYo2L|C7dKnrQ0hN&g5RPVNp=xUEXFqD*MQT8Nv$6~c zh>88u($c1m3%CIP+j}bHRa%^mzi$@ddsnc|6B(9QR745>&_MSd8&j%JnxC2O)IP}u zrd0G=Mxs8deIO~JWpk-6*e2K-8{t1fhC+CVTs&uo-*S_%A|8EmhyhgG14SM^10rpc znCrVdJPnGfs-bOdP(WVfOSh!D3Cb@ORUMU(o}O>n+2D@3elw+zu%iO|MmmHm12Mhs z*I5Q<7?A#=1hB}xv9YnB{e4YoDAagRsw=W%yaQv{&Xj_JYfCkG?grsih6 zY94jo^bi;Y7T{2L|{h^|=1{aoULgwR7$Q|1{0o{f&h|Cf?#ydpigR4{y-TKOjJJxL(I5;7S;fb`7l8 z{luER$_@6K!uXXo12B96V|9Cf*RiyOx-+8N(Rgw!VrK_KR`){Y>@ot9b;RVSIa`>V z{JFgR7543YnKW;N5eH<6YsC#8PK?@lyP!8JD(dY6oakdk$#FW_2hI=eWBt&e_V)7H zTHP*`y_|nZ|9|Bu5zc%6jbIo4%d2C~*U|4*-gO1qNf+Rplio`GJ4_Ml9tv?_iO0E0ybdh zOq17@ckYuR`A2cU;E|PWeQcub9TWtv^dl!ANwpEMgrIC}x4WJ@)$D9;(mkzR%{=f@ z?3@WKR=uOA7jqZE<}@;qBnF0SN6u5;6t8iiN%r*gWEWOhsb74Ua+ca~|MoHB<&H~I zHncaP<@U?%-93W9V;baKkGIREnxW!y>h**IlGT8O;~f|F$;5>A+T9t0Rw1qXSf_U5 zdZG4rSuMKpR@~{uRh*>YywZ>>ZOwdN{wz+Fx9JTEI`JXjJo2Mct~oJTt`0kFimhv} zWXri*7Nl>8p-T5wOT`{}`NxC%T%zZ0yK9B5NPLwUx2L2f$?~Y4I-#Z9bIO`WRy0vK zXGVKCA=W~#sVrf*I74?`_yCpC_aHYBZiW8&GvygZyp z@DB$yCGGJaW=mtgoOy;hmW_?D*U&zZHZSX5NBC2pbUFsQzLu2Dl=$W41w0b>_OphC zhPN$;JCYqOuwuK08FH<&G45<{ZEaL@Eek3B5=?jBRyn=6NGo^!_?GOgmfBHM+>`IY z?yDuj0rbRo{$eCpNiWYk6WqER6$OLQ8q?V4&6joflQgjiK;alXe~&~K@#?w1LryqL z+0hlX`YNzK)4lfmaO~fj!6G2=i1>$X91|NmECSsfIMqHpbX;8I`oBSvS{b1s_+`IZ zS}=idZ@tC!rek4&cxwxn+vfCrVWEYeo=&R(9Kh^m2+p#&^PBZt#n9B6?*d6n2ls{_ zX>BdH-VcZ5mlk4j3~fa4`)+1Cr}BMA%NtF_hHqOMM&)&~l90B`yu7>IvzL^T5>`?Q zqDvW{$?I6?MV5$21HXik^41s}#D~?{ai9l8kcc>_!V(cBe=zFWe2A|7YiHMA@)4%WC+}&*ebkSfq*;KpE z29cbUFEnvi(xJ+Ul9~gt7P7=RLQ=--v5o`K2YmpZs?^F}sMUNTQ+DkozG0o~30b@O zi+3j-)4SdY1%ChO_|I;qYeHSUy}$FzVZ-Ex14B`IMbH=Du&}T+-JT!(`FOgUh2Aze zfef@#?#>xhx9vTuU5il&-|%sN*lOZ$JZWQB5M(xd(p!Pv-293ioiSj;lPM(RE&Y?_ z5Ocf;$J;mp5dJ|Ar0-C{ZK#;Po*d4`ahp!ZE$A2-g=8IYj+<}fZy)Z~&f`cbv^qM3 zZTBa?%pxH21`iCFSNLUSQ7S2Y@oQ*!+tn>@xI?;ti9z61SV%;2w@JY8&cf)800%Xp zR;`t9Q3(5aDQ=+7#Ns#-KCOvTqPf?!Npqd90#f`{II&G|NafU4wtXsaA~!eLCWr#04~9dj86^)h&rhs?a_{p zk2BxX&dD#t)nN3yH`)sG3$`NA%BTDLWC?{TYH0;TM(Q2T*X!JmFOPZK?=VZ_fTa$A z`r(R&z_F=R3vQ=pN)oC0h;W0YdF~2U9c}Hu6AK|g&rOQfUl_|@m-7osVo?3R9~g8` z5BCq_V5rubIiLb(Byv`B^m)RMTyCNgWAn^_FRPl$LKR0 z;K`H)n@tNjeopu`H;ug3{%lhP>3(j#13iC6w9z35ZVN?-1OoTRb(ylY@tmT*A?=7} zr(;nkCv=Z{-PVq$n`OVt%MXtao{zGUT0Bf)a!mPjWjF!!JTzE2)LXj;2i@w=yCK5z zFX!s5oz;&pmMbl|0J_lE-`{B%ArM$RKT@~&UVVNs%s;@k_ z+Lk(heQEo}t?G0<7c}a5Jpo{u-GVO{tsnu95=$I6w_UoXrsmVIGS4riPl7Mc*mVtc zluR6mPAk>K3pG(twG!6W8TkvIR|hMIU&ydX!0wrv^sKgN+zQ~5prZ`Wiv#C1KlN_H z`;?OxxI%OD(;LBCd{D(4^MhRPWk~A_iR1CS_sdo73!VGRac!%2Tid6{{TY_k&L{Y@ zEf#k&W8*F7tLoZS@>Q0nHSK8am!*)h_3(w-_KD6n)~$^SDj)J7xDeadKc%Tt6E#8R!Pe+-kU|{8bq%CnYX zGRPDBR{70i2(XBA?$j zH2hFh*JXh%PAMW@cDZ>28f71!@GU<&I_L}_C-VZpA&jXi#DYMN&EF478rnYrUj*IC zs+3Zkj-II#@b0EXB|7H1;iz-A0(FT)ddWQzfJQ{lYu)N=o4bLtvmAf}C1z-decWOZ zG5bS6VA<~IY$NaVU`H3Lg9qf1w%Gb7Q#$alm&_Fd4o)mn`R42l^C5a2#nV%e@4oM; zZ-Z~5r&NAntwo3yQ>%E~au4Ho!7y5X!RbP0q2jJibkTxQv;tK5(>k6L`Kwc)ldoZEyH)aklaD2v_=bxLeorrBS%><(`X0 z?}8w0-0b2lXpWxcKF{;X>BA(~x{U5^ zC^w<%k=qu!r!J0&$w(@Gzr8-nnxO0PM)zf& zT<>67?zUgSlm6(b6TOAS_cr4BNH9lt<)O$LxXbZchqkS#=&bc+Z{>6{CSv`pmt6dd z8C=Uts|Q^QVur`H%56LPi!l=P^O$$US&8*?MRwWUw9~Wnq&lEeRuV2+F7Q|IX%E;( z`BAyJxb_6o243!#tfdQy|KIZ^>{YmnE_hGStB{Jh5bArfH(_#iPkbVavC7hNn=IPR z|FmhCZ*7Xx?QCbjN9MLlrrlrf@3ede1prr=1UM93E|!*|bRAOD=O--!0(FoD8UW6d zwyb?PSqjG|_6``!#Js^*4+QfOU_`bq=1sY)Lthd7- z<4yr&e+9jn5z${=&B9UR?M9(Vc4ZB^ZytDB9i zrvTCJr`s%aDOD=;TtN`D{Q1LX0Xx=kLRuVift2%6OvVpY%A2nqTd4FlfTwjtiK4HX zA$ni^9l>P;p%?zRk=SMC{Or+MSKQL_Lk(mOjF|`&5Q^b6O-~GBm$g2l{q%u3JFHar zRa!&F(sbF7tpsAmsVCuaLm6gbx*b0e47k1hUSzR$U<#lNdTIcqeOs7%JtbfY1ey;> zf6qoqy#ZbwV;~_Zsdt&@6}l+v^M$TJ#9=Xt+jYH(FC#6q`%GFR1}0&+=R>O?uH8p4 z9RlZ2l&N(@Y^>;FwNq`r>n@bq%%qega4}Of!J}$()AKej&{RpG)xYYBp6(q}FYn2b z2tcphIsGg+*ir~YYwW!%e{U{$Y)?l7| zT1@J^>QuQ3Svr}W2Y~Q-oDHrF__t9-ED9pJ0T1t6Sg$v(+^Y~0pYb`LzJK1zc$T;0 zjD}*Nr%#dgnweacczKC9+fxvvcP}d~ZC`m@5~O7HNPApBe_7K7(o3oF>%6i%~7Bu8E{%q@|>9K)|s3*lrS_vdRr!@se)Y95hkPL_BXP*xO|tVY(FT z)v~7Zx56UAXPbFsm~q!3WliCeo1!3pvzz9p>xVyg#~T}dwaa&(#>=9>-`sKMUHbcj zX6sn7b8>n)Rv+ zqD}6*xkeLwPRqWwg%gj!#YH~8$G`3x#IkK+{PTwD64X(_ zmuQTGs<=dp6r}5oUWJX}+Lg}xNh7|q0tsIz&#S9iMOAHvJ(2TsB%8H$WBPHa^<|*$ zQMm=kt1t!IG6F2?q{^M{&oVMnSTL#d>gg`~tiFB$>p2Nu6F41{ zFjs-9cuL_p*Bz@x_ZusmP5kw{m1fF4^%|==Uy%So%=2gD3{SMuQfB9kVJERI{v;^$ zwh0A6@8DpDppN2_k~mj3cpeA@N&dLrHDb2+f5;!@@^w$wbH0H?(=w=*D7i!otbZAsYmrYKU`iOOM2n&ES=iH z!vlO|LQ2Gqz^&xDis1d}8)wfIiP_ed_bq3%o^&HfxD)UK0zXYMT(s@jTW;DtY-RC; zy;NLAv?Emo64X_Jf}6+9m4`uVnf$^6fI<6?)bliFREjm9{3(MxE2my95W-_-GLqJt z;r4_sb~iaU78D*XkBBbddJN<7jC_E#s#*#7Q_qc?dM_7(4@5sjex7BKKM}ax!3ldw zi2JUktUSL%bjpQEy<>Y>_k66T%WQcBUeI#glS>ndf=H8QOM)y{s1_>CJXD6l1`b{5OZ*l`+_o>pUNM+Gl38 zlrtT^JIOFxVeJg1$iXDRvRtU?4h|+%fo*LqL^<5A%+s?aK~ge5>vMC_h%}*b{^0`L ztT@dy0V0T`55b*w`kndU)anYy3~cA|O?tYb7dbZEEpasbQ<6#gC!m4QSC=a}ss3IZ z<~uks1FAo$;Sn3Zng?QS@tJkn*E%Ii#JvLi{PZ3mT5vG{j>LDfmj~`%DJp9YJ3p5W zf-!0!5I<*?8?00i1bsL7Y5++bV+|tN{04)2jS~gnDnMbb{dXoe(vnv|R{9ksikoPe zhcEdT&d2jyPxW_ZhGhh0!VWmRt7pArc*>W(f=}I|NU?xkyjiS<=XE;9_4PNr`T5WOirfVMOc^jVL^}l*M0PDcDT*^a9E^^LcmN)L zYf)4_>$2{N&uKD%wml^;Cl@tIEY?k(x!&U5%Xuj1OmNcr@*8LM8=A#52S}(zfJw|U zF)Jh0w=#r1-T86N1skyafYHi8Mn@LX(rTO)kzF}I^|_JXgc5Xo{NQo1knq|nZ12nc z57!)So{$Q`^HcY}=Fb%L0BLj?E_Qn-AXG;yPcfV1 zPIiu1KU2Dy1s@hCGGz@A_Q$elbAD0daty`YxsD3Z-SALvt(8HJj)a@AXGj-nC8G-L@tN0=GYm_6xk-5JP+Fgs1~srr{mR_0WXfMo zY&K`Ux?;nlkwuaGAM)Nhs;X{_8$LAB2+|=U9f$4|0hJaBsY8QwHwO?2Nf9Y&kWgAW z51mpc7-$VlNn8uvamaD zRlVcZ^rO;TBT4M2n3#y~7rUPGNjXbV$GA8+AJWF}ArL^(hEJ$7vM4BZ+oh5p(fk&| zE}6ulJd9;c-hWx{?bnS3faaXMdJM;w>mbr&52teSAT+I6<=Bs@`hm6cP(q+S)4}O! zdkn3<{4*Kf$PliS{mkD4b>-kTYhy7jUX9SB@6fHFH9!Uskw@3 z&u(0XlwNyd%=>%Nzr7J}IB42QKJT?6$!3@FiIh+gOR=hoN9{r~JR$<5wR-87LrWwJvL_tWDnfLIKZnVI5;=T)^4W+|RRFoC{#K6WtGUgM(UjbefGl&jMj56PHh{H7$nHW`19<7?i73#UW>-?Ko@) zQ`#IX?>ABpr`D${`n|C_3J?{>t;j49m1<7rajbE|h zuK-lGQsj3exH(i!5`n$f=(%5YMomW3n!M7_0y9Ot6~@LnTW^5Nj5_A*x4b#X*=SS#HiROy zI|bh(vCYbIR}q058wiF37DAHWzFYeG3cbD#o;+q5K|)q-ZbK#}AE~9tcJsHm1t-=W zZxK{}@qYybb2fp9Nspe;57)iroyQ*YZl~14jQ56IDd!YZ)psQfHUA#!xU0j z`1t|wO{&@m%x?ltf0TW{Ev8LG4@>>;$MZq$@IW9hY7)w`u~hFYBSzV zz5Def@4v<-%Mb4?=e5DFG1l7XnCiZwSUTTQdGT5qc}TZ^yR89jNjPb(XN^GrjA(^$W;h_!CQ&{y7Y`&(i7i+%Zqhs`8D_>UjU zJn_jipSjG4NB@Nje{RVT>#wq8@X;v(Cqa>fd4GEoN4+&4gCcPD_@DyukH$Fafv9+`qFAizt|*v` zg2F2g{`kjKJ_yZemPWYd^Pjz{XMF+b1iC7yXJG=3Yy-Q(UjE~g#=n3E_CCldue%Qa z-bK(8pvN>E(!wAR+5wd@BKyyttAL(U>7;}*{@HUNipV+$!-l&R)b!i3>Fpo?m?Z_~ zmb%id{V#L-M7oIMG=z;aCKHI_gHzWqmI{#nSGQo`dEO zOa4Q*hV6AB`)Q3g@zr`($J=w)7iKhW=L)VCItEHZGH3yWBD|c%+x4v%MMNWO)E_>5 z3;{_GoP_O8DT3%ZJY5^Jxgw7 z=6K~5!EcAZkQclHJ9&cl!tK>MZ<3auFK_O>+)YqXh`;xBbDGGct}Kb#p!%~7#8&0n z>d)Q_=~0&>p%ov+8I{70?P&d);TA~4^e#5c+ib1AL8$#;BKxH><=9lcej@Dz_D8an~*Vbgb<5j zQfzUtK{y7w--205?hg-*KX?@7lALJYcFrJuX(>PC8x?Metstm20DAi2&)xDTJO4?@ zVtIhgs-w_nW&eEiFJ%75uMvO%()ko0^3N~*u?~N}8(59a1FB7oGZz2z(LbcrpQFQ3 zm(c)(NQBFGp8sn8&v(nofOjVN?%QGAiNn8mk(Ip_WT2r+rtnuU+>!2)dJ#%ppIzv* zd1&F79T)2V>`}Kl5Df&JS_OjSy|*Pp8XPEf#g7*P4Gg7}nMrO@hla&w|8t!G zT%&(TLWYM=9Ep94#@Xwv)0e(zXx%eIfDDR{hlcusxxw^w4nt1P6EY<)vp=KwC(tgU z{q^M3TW>I)CYJ~&e@IV_El!j0@~&&2es1`thl?(dI-2=$fkoTGEIzkh^mQz%@3a3w z0WuOI@hEf4?GGR0A{Rkr4fw6U_`a`2I7&O}M7k$q{EHO+&wU|teZS6yiilF)| zbXpq+f~Uof6-|DyaCw)S1onehkL!y%2+4i9w!~5t5d-DJAMebzJfO@*(U3k8 zq(1tPk{D5JfEE?QUf1B=KG1=0qZqhtX+A;LY4(QT1}D ze(PKLznsD;ld&dB9orJ2GA&X-$g0tF0~^l_gHW@u*JW9DSN0pl#qG3F*(C)t$K4~=9z7Dv}NjF@2po!t)Zw+j5%b|QM38` z?^0{2qZmAmPlwBLA~S8@$85Q}nglYYr3t8irCICWNA{k3EkVlKop&6Q1*>t#2+qT$ z+;K#2c1NXj(F|Kq*jZStU$Kj{;^i8}`k`fw+pP9m$B$zBL#33}JG$gG$tIFxf?g>T zyD?M=Fr;GixCC67yq8S)9tx`wihNu8GAg5W;`w0wbCn;_UrM2%E$k^(kVAO4T0Ha8 z3ahko${7AObmkpzW#V%E4L;6A3KX+a8v0Rd@$1}sf3^7-W1+y%pobR9*< z{v{Fr0xdyir@zWj2-)oi+{AhB$&M<=fo*zj6N zMgHD|)_GXp15#jM*a54CBE?=LFuK7o#a~e5*$*AwtT?O>nc-Y8|9762`?8i&iwjNE z8U7Yxp$Y=%Zktocqavg!^zp|-P>GJF#K{m#U89PGRD&ZXREh?pITEYsQn}MHQ>AUR zmc`g%kEjW8!LczhLhKvhN9K6tMDvxWqpd(R!)u#Fd6zD{&VGNH-myeJwqW7yWy4to z4<9)JzVFh}zLe}fh-CTfHbw`M8f~_jQ%3bJ+KYl-Ei+uE)}=+Ja7cO0?60|DOuf|- z)oJeiIfc`LxYN$Ln5ATHci1l@1-E_h!Fqs#OfD=mfxp14dpK^x<(7ov7Xaq1b1E2I zl2@Dtn@mYx8veMl5Tt2bi0#2VlP$`BoqT@iX18~Q&n>k;yl`cU-ZGF8<$mi=0IkP5 zIFuxO+{~$6U1X05Qu>rpNOeCte!HdhsBBoi z@*a5kW?rxO{6g+3k1led#fOey7SiEAZ2xp)>XOGh5XV+3J^F~D12LMa_Hefs_3CP8 zxNZyzVpgsvCs7PDSzGZxkUOPC?))MgS=|_*KcTNOAcw+f*;X_B2@^Pmw1e8=dJ(hocHv0Pr+ylp3BdBW>>B)pMW zPd==c8nYI2wz$~DLS+7|Yl(}x9NbUhDFvk#U`gsd%D*>&n3bdbV1V3z1cF^{fp#uV z>?Lls1dKl4;`?+%BN4+pt(}BY-6SOhCcOuQi$do2nPaW7bRI7agQeTnCJ2`+Q_8aP zl4OJ#5y(dpx9za>j4jYa$iOQ$Ck3j!qKu#A`d4Y?gHsEgwplVoTt#v_C~QH(Rn`p1v$d>ge@Tn4k2#)EtPPoU416OCTI_$=M*) zNWy647rg$NyL)v#v2}9^QembCSv>YTZd|9`xXx^g$dfBSh^9o^BmpSxg+mqosl4@y zrS&K$I^FnG<#l&HUs=w-sq24bNcESk%&1Og{mxC&_L$HqKjK|Xe0khqiB4Lvs19e* zWC>dmBU@KJOt|e#%iH9$?!@}978;9&4xpQE9s|iL>|wP_?6%>d?u{e0#ja*r#O9CK z5%3AiyO>)tu1ma*4+qAib3J_J-o8;(-r{fJI6Rfyb{|h}mrg|pZf+>vMnskEbqaID zJp3|9XoJSnJPJC;GC-pj)g*ERs=<(S`>rGq>4c^nqrO+|dnsp5uyGgux`f z*Fim#6V#dMRDuGfvsj_bx$NQaCNJmgId+=rPU}w#+luuK6N6_z+vdvfyKj$FB!mJv zTF)On{VTh0EG7^ieUaHf{1NKbr1RG$qNpfV_>s6ERb|p{s8vBy`C_Ch(qYE!ifo+3 zwx%VFpqt`{@4Ek$qphnS%op=2Qadmf623sUtL*|rW*CiMNW~BqsPurby919dKaAcA z`kkIW2E^LCQMCEcOaI&M9&qeCm|m<>PYgo`6R1S5=3Rkn+rt!B(}PQD{)69#zv@<` zD-lDhLr%l7J^5hzZW365$xnUhC5U~j8T`xbqTUfpx!Yd6b)qlDE#(O-*?LWfXXJe6 zG@%t-9Ryu%yf?*n^t`D`k^**pOx18v|BzplV082iw!;FI@BD6%4#8P>PbM@%R0$z4$mv&&l#r^wIX@Q&K0$#g4Ovy8Y)K*Y$ z>|kk;5a<1&ZfQx&l|3BP1Nl_uHX488=h#nl%lS*`AYsDueuQCRe(#UU;CkZxsn!22 zqyDk!PmEeG(45SKJg$$K^P4LPR-i_)l)=Hcm@1xBkog->i>hl+4{l-(BIpe9BW%FL zW`vej?x*vC44$6E6~=D~e(d`7$>lXl{&Kz{EV&Em_vCax7gxw}PC?+Q?~ie@0(>Yn zrIBcqswiH^l^9+Y)+8cNVo&x7yOlU-M!!0$3Gk)0%?v)@xE#~>+OA+YV5`Xz+g-ii zbTF(|v1^J-lb!}j&Jwm6^;`5uZpD+2PVnQ;N@ct)2#8jQ&$u38T_LSWeBiV zhuzuq#+2~ja~VkbVxXgU`b^yDda_4^Rs>|$G3RW3hM9Iu85;s=4quEsLd3FVE}1@~ zz^oowDU%+`o$l>H+~~*V=1qG030X_DsA*-dC9m_^UN{x|e6uDzh#i&mC1zI3crTJk zbiA<`eN7$P%3#i8IdnrK+mml*hk=6pSS?q+7d?3}J|ut_VEl-x%dzWw^!ms)#Fgi$ zwC3dIxgzMl+>3w6p)3#dVkwaDx|PY~XZi{+7&ToQFC}f0A+E)-2<(*6udyRsiiEyr z%7co=K$M!Jrt8sM@snqrGH};@o_BR(D51(U*RH(3?L`O_hcoK-TYgVf*rBM__<%B_ z9l!$v5i@~mmX5M5{a9yGl4wge7~`u}U8WsP3y4Vs`s$PD-;xepUwAu4%bhOcmpi^R z`Vc84a(A>;zUC3F%d$Vy=Y?Jop})bUPsn^nJ78%xUdqwy?4&T;!sxt@Y&j5mY;xIz zq3i!N1>9aQHA^Tdq8oa^0nao5QP- zpw8Z|+%` zqbg@>k}IK%HAuk9%`@;QHHlYc9nBjxhaBgC%PX!O_F&2)&uUU@98D> zz<%_lI7!<7;2WLREwqEr1kuyx??&+o0k7jz%ar-szER>l&-T&=0{$okMrC!`Ty{;H zuLFZTlz2R%-?BV7Va)NPp!i_3ko6)5HH=uE)GT3&?3cESx(z7`jK|C}xop%jsVbJQ zv*c1Dakh9=f&-yI?g=0ua|-7u{*LzuL2aYi$e~68%d=1Q0nMY^@+TcUVIDU+Y_$yMdtnUp0_m z_fKbkgN6FQU##8)U#9-_*)u+y|m#sBG@PtFasG&*1 zppGaw-YRE=hn0wUSFfX^gLWCeZ;j)gh|d*i)zHw!7%xqWl#!E@lX{^gncRQcQ70;` z)0w9GNn8h3Ox@4768#88{fT=KX5#S!bKJO^tu4go5*l@k7o)_gj9f zxZGj60!)SjS7*giDf$A<(nrkv56)_KgA$EUeiVuL?z{wGSkw+10jdiBbt!{rSm-IS zNq7Sh8Vie{1LYLf^Y?61RqiZ$wRSOZxWQ9-NPFEVBXC~_P-q-u=QaAjgA_p*%*H&a zPC`s5MPNGlf?hI5=sMNs; zLe>ucfJVfPv?KJmXU{(@%jK1c3@pRR&8_utoSNt-E5%%+hdHP;P%`pAKvVSv^p{62 z<*PdkNNYph@7`DFpWfr81n_PBMJUTsa`}s2l)q@FuhO?IhQk3~d$n-O4B>ZTe_pwn(loOJ1 z8wSVhc8o|hMN7b3&rrVP6_`zZ2pX~OZ+Wg!D9Rc7pD_83dMh5kDgR5v(R;(>seJ00 z3(SOBrHcDk>QC@g^Byk_kaQm^i&$abFI0N_#(^BPE{*)#_S%=Qk5W1QrQE7coalUsTbUAN?jK>KA69JdpR9Mh zvh#b9Cj9wBE{A)|tMfxY6O^@a$nUGc3COaKtL&xCD;Q=>2#4l7HLcx&-XC#NHr0AV znIEB+t6PT*{cN8hdBfyjNL}Q43Hvt)05U06E#x7+d8HaYu6Lbu%|e=>yv57s`hI?{ z?ibs;B)4-Vb&!OUq!YI3mXFuuN2;f4TIGj|KgyO*aHYxD*@u!gV3hUVKIdYO2}Y%P zVP%&oFEYxs&%3tBj})TR5D1R>mY?eu*Lnq}*Bs+gye(Y=!jXr!4gs5|S_OWF8FZn` z*I=!H_ebBMg0H^4rPg>q`Ctj+<}Z64kV$@Bs&W4P*7ORepM0fgfd3)HF>oqhDObB~ zPRn<$;M;}#t?SXD2@jb>0FK`+H*C=lag&q|$+_8<%DWygAPhe*;yxt49-fo~-(V+d z!Vda4pe;BM#MS*4`L(3_`E0xEyvy~RlGTfsYq$_z=;SQqqG=}+#U~iybK7~PU4*-? zm~uqGsvl6XO-q~Q{&K*X`!j@T%M(;J^cgmsw4!fu-Cp+eoM{`pr=NeTHL(vWajiIw zJl(_}*^czX=_z}A(Uqx%xGF98UyE|gFp`jt;sIogc9F?Ey(gAx1Tc+tOIa>6^7R9lw_T3;FZqi-;MPVd}Lb*v9$FPH~WC#d$)( z?PZhKWcK)te@oWQ+sRm*OP$x(d48P>^j0i_X#yBWmCENi(9xFd^{%5_-OJ7^=Znjx zWJuQ~OLsx1xBM1(Q@`fs#Zcr0zQXD{`9;De%7A(rn33RuetJ_2tD}yFhW-9@t(V{4h+5pkb%V z{J3tb8z8y@+&RnwrnmZazkKPCt!c!b6{y$hJokQ;V~U)fOUDht?4zn zJ=uE1Wzq)FiX)?OS=3|MrdJUq5twi*OU<$f~3MblpJzjxW7Jl zSbcWkjnzBZ0xJXd-X;QV^{A*F!LiaYZ4D#Xk5Fes3K2!p!gRs%yXWKx z;|OMb^Jx#}1x-2-lxy)M+SgzQ{vyz22q`PJy4Zu*-#{lr1 z%#QXk!4iiQBk6epH|*O{-ZnW@7%o-$y5*D{)?$8*v7(uNgc(mSuth5N#Z^%f*10~O(DXv-G?*I2RP)D4J3PJK>JK>AIf2mW>6 z3jNNPTFT$PJ-lsc5!;QYzrjVD|2Df0ik<;D&HVC(0c7aBoe&FSmwY`$EvU{8qIHra z3VD57T<))R{>s@1c?DdreOe}VG+@kQc#E3Tbgtn7O*|K9M0%mTrC_aRjElxN3<-mB?mCAJNDfqoLzD4o_St=(}4nCkpN#s zv}CdAL;Fq>JdNI|J%B)}A!{e%z2NK!0Khi7e9>}~U=Qg!YRtO&xIR!*Hg?XpTlD;T zSxHFi>&=|O_40XANjvq{mJ(dHm>%8LL)jYiT zzM@lkv^EC$b(%nx$-WJqlTPS30oO&$XWh=-e)Ib#2KIZA0LckhLnhc{BJbyI;FfMx zsW}R?86YvTDIkb7E&0jFcPdwQE#D8jlE69mhbtaSSjo#$%QHFP-WQokYe`~d!Vyjl z2eco(0vLMA7IB*nOUo|&`qp(uuLcJOy;~@)%Yi8Ahf;;)XJ5bh z=M5)qKtxZH-ee{Rgg}S}5MV(mrv9Wz^(ZF47t+$5Np|uOqNKB{uitKdu4}O)sML=! z-oA#4`ZfDigg;$l&6IPwnW*z8P*3u?CbA&+N8##kN+cpo=O$N46-tOCc##R#fYsYw zet{rPDWd|CAiq!Y7M0+z>;5;8uQy4ou!sx!fX<`ZI!MZ?mQYJbZ@$))qmqYNz!tX)TJo~JU-%aAWj+c=H zSW3EzG98WD?3uN0NE!JXQ`K`P3WDjW_s}mC$-RFRL?#ZpIE@9iw9bTk11;_O`FD)}gQHT+p zpP%cNdsV}!@>I5eYwe+Ad`b&yYN8Rqb5LJ1d$55SnH4yAud}nW)tD#ic|7wW8YLlM z#D0;nvH5l-Lq$`dnupP8^F=9%yRD}OOICKxkwHcfXUsEbAPGE>;5+zP zFgQN~Qa<5XG_w<6>c9+@tR^Rh;`0_iZ*(ad;@zk?|H(#)6Kgk5N7eHd{L+h+<>34J^;FE4ML+3u>N3bF{3FOagrY}4}X-Vr5SJ<))Qb6 z(gueWh`%CWM_zcDEWgum8n>x%SP@DS50JevcxD&Im*q$(BCc~Crh&QGU?*Tl(FrmL zayBJCWg()a<`uW8&`RT0Z&fCaHGRX$d=9}%lZ#WN3JdKQ`fO0*na<}mB_^G$>P#p*q z#lfMvHr(bsVjTJA)L=R^EMK)dSzJ+j{Fo};3S`7sdPvV1z+QIi3x17YMYuY#tiQd^ z=&A<}u+*~~6uFnWY{%#50d60U2xoigU9Q~8!FN|2AW=mJ6emAb4J58L(iwTEGTa&F zvU*t*_3f9pI<^_lRa!rc2wDGLBdpHFsmGLzVeT?HOTeX|q6*!URVj1Svc1LN=CtE@3N7KtN!x(gt)mmx6InANuH&>8WN?}O0c^>1Hig< zfNO=XVExSOJhRNv*6zN$*6Du8nG!pkSsi_PTlj{pwq<9b?Chk5)X~=4%xB|(xcJ-* z%_!|O>IY|+7gNEPoaffhO1QfXYy2Jve16;2ZYsV}VWz+)h+!d$*ZN@XRSgg3V!zLK zflCq~LodLrpN@?K@S^=1GFzqH$<|sQX*2h2$3@RajDSXj z({YR)b*;R7g74wbk00%MN);~I+aZy>hX%ixv#sYELh!nW6%9YZ^k9DH-{9I$;ja1q zPsQtB=+lhyCY77@I7HF8i+}w1(OhI9$D7|<8aC&9%J9XRQNW&xoqS?%HUOJ;CTt*K z1}GpQ`y)@}{DRvf8k^9OW19@6ZpwC{t4rR9acgsm7gcJ0ZGq#-vC_MR+1mZ?x{BP9 zY9&QcmgNaXK-&kH7S0|l0C2Y#`ib^?Ah0EIv)B#3U^i7B9s#I=LW~sQ{17*`6C$uu4)&I(Z7A#y##pXT{j5)Anjx z3Xg4Lniz>k!MlC&dmlNp{*R$v2$b2H|a`hQ1@f1xl3P z=*6M;Yw=-Pp^F?kC0(OtETeg@SYBRrD?rHyY`o*1!Z^nMxnKI|$n6QocF3%U>GC@S zpH~Y7ZE&+M;oTve?<1U?Fx^cm|K}NYKLtqfgAq{{7OWIYOx}rC+yf zI{L#m7TnCLG+`4ZdcD54fUeM+A9ES&o#nYqS{TidcZG|YKcu0dsqnl-NfU8?5ei?< zuTK?n1gd?o_?+y7B9XSbHKu}lRKipRs+nCwhQ1cq62FJU%RLuRC>zw$cnFTjI29J8 znpa=AjMnUmdoZ$ZJ))}%xSz-c;nK-dYgu=g)^?6&b^ZCy+2zFBp>*#e38bn@HC@mV zr&wV*=%XBf$UKCGEH7+70`8-D(LIht7bR$u#W(j&kO0{H>sP1O|FJb+>H@e=dlu)= z9)P3G&VBeUM+PL}I-tBFdn0@&A}m>_iE(kp+(9=T6|_?nt~jPAzMFD(=ZCL)f;J`# zEkaODl|B^dkgO&?HjRwg*ih>2?QJE$y;g^=*Lln-!2KsFkVsNH{_j@%P#Q5eQq2P8 z?vHsKYh;h*Iaw813yd#={xc8?&_q z2D@|l?n=dmuzMY$^KUigsVxLiknQpVPRpxrrfUv7?0J{=Dk6qn z+@&$H>ri{eT4A>%Ju=EY>QcxDy0DyKNZg3i8};nlOSyI{*)15acK8P z$%-@?L##zt)x9=)^4Nh(#!pgJHuxD^BG}DuQ?;<2cJ&@fWt=l%9`6SarHl1KX2Jsk z5Fu9PAnqr7&q;b1Sy|OfOXus}a4au#58Mhlw%rGgtz|2oal6Fsk+7(mt?xCvVAR#2 z{HEU)GKEjY0q9)ZCDajq%yOS3-kD8^;O>+G0bRsX7Z)7h;7Hh;VM(T131W^R;NU@2 zD1NX-s=Q2@`$T_2_f6Z1?@#0hp`qI-1S*OEDnN{+&YP0EL>^l&a|OD8!$*^L`B- zkXF)eTx1YM2YCgkLyBt6>AlVsTFghC9R*JUr|Jff$CYJ>pHb^Xi~C`c0M9qlTdvI2 zLgG=7q$QVll6nT+)3)GXan{6RsQOk&%%?^$w1@RuLe<>Nrp7%BDR}qiL7Pje7ojF!fQP?8DQ2X>?&v;VN8PG)2Xp z)C?IwowT>0g_(;=Hn_{)-uOE-{8+}g%e?(RpsaARGLrE^UAl$n%+sFbOSIIHpYOzMR)JHTrW@b#zKGwDyzB=ZBJNNJ$?@wY) z-j6?60Jn5)Xw+s~#X1~1v$1{s&P6S3AD8W2ph|l%m8(fiu^8*VExfWd?&V!M7&)3W zQuUmbE?`I2`$)9{wYf>ouK5w_wf`mI@_B$1+odjPV5EO(3gVo4ZfMZlJQuRY%<9*3*x8McoP<-l|PQNq$ zs9$EPi*R@r>TI9@iGPqdLuB#jwon&XedrUM&QkT)ad-x zMB3&2#EJ^%gOih>q$I0mn#<2_J~wZfkgnSv-hGR**J~gOllR0qs)+%r2=S@gS*G7nMH8xR1e{}m zM--rnxOnrQRl*}Y2uhEjWoVtTao3b0tx4=Y`$ z?=W62HKyCNV%k85LX=!xiqP z+AA~d%}*Jqj{x!iXN#`87G6$M0!4RP{y|5pf^I!9FAn;LLS+Uhxzp&)qu79RWTU7U z$p(0u6kND9jKGjR1d@f|4}hUdc>S&Y3&BA={-193PM$8I-5M6+__c^cK2R+J#r%j1 zI2{CE?ksM7f_kpN=z@RlG%oV`c%L0uI{b%`)f_0cgsm!;{4RLsBO+q$uk$K6d_8`5 zqvJ7?41MWbk$HkQb1D2J2{T(*TV1g9dk6@Q_fRo2ma~}v-$1fxltbzrYX9A-g^BpQ zIbcN&s9lQ^ih%XNseF_WPPmCXOw(DS(mpaWM@(#19;UCoKUHg6(0=Ex^~IdJPN!9+{5ru> z*;FOPNS$DQ)wa9b+N3m!@u`huY>k;`*o_HsyMD-KxUI&>y zPg?75&dxTm-dQrM=m&ODR3gS~TwpcU;^uk1F0DIWG`x8f=B!jm!&y5QLW^Hy=*gs? z8Aczw-?>*rK9VcTFR|br-gRM%i{jNX8dyEbVh*~ozJ!uh8n=-aKD#@|6)Jcq217Lp zv+)11q$=o(`@8yK#3~)5wI;5SHwLpFuQ(T8VlE~MTjJMn0n1v`Qzlh=^URc{rYpVU zAb)qHpM{8k?85#5+QEgyz|`3mj;=o_BPsHMhT>w8dwdxsJf^&X(H1rzW|jI!E%ewv{|Q2n49`forIWJ^T`ElD!}qadB*sN5{v3si~kT!DM=SO;%PcJXKH-nPzOE|_ zB_d+t(7m~ascSMwPFaA%95+5D;Z`hQ7IIv40=^|{!S@hAyG{K1m}l{O`(Ur7`Vc>H z3RAx5H@+9=rr|3gw1XLSOWK+{A(NC22SpKchBpn zwa%a&L|qwhiupdfQ8jm&r2{6^Y*Ia|_+CbgU6QymX7|(WY&!=?&6Dn3_g><(>VP(? z6N2M?x=zl4cBaOGn@hzk!m6iOv(*UI2{0M1uKWsL*@%cfFqdMEzlRwtTl$mCq^6EA zBtAa=3WB(JI3x-br@Va->+a!^cx&YLn2E`(t6!SOWz|Ul8}HMts5FF7BdO24^KHn$ z3-rYt>`7{K=}z~q*qn>5 zZ>|~{y6L4azj8{|Cvxh)hts4N_jGARBFq#y^jPlrFo7%TP6;G(s_gKe4b4|$yBxLV z?p_W&V3ptmWIp_`yST094njIbj;~Kdg05mCdqx=x*)WA1FsehK4MU(NsbRj;<_6Rn z;z0VRHB$7kPmhC(Lian0#A{BGBJtBvBz-yuzYvDu125#m!wBiNc|i7lRJvapYe)kf zqs1cw-02xqywtOVFaZ55O_A{KB+M)>kH2+x@ZO4#p!|SwnT-a3{-N+&LGLLh;5?FO zvAwd!qZdNgDeYV-+Z8wA`&_pKkNbd4!5w@AIFJJ)`sf>NZL$XkPKufHb89$G#4f|>Fbdx@+PA6& za$b!>URU&l?c?JQq;IaM{hFG~{nzOpvlJL#)oF~Z{WjT#hy%G*2OErpS&sV|e7XxY z{^Zb0e}*c(61-M=?^Tp4+gSz7b^V&X)@7!FrH#TT*4AcKHq$g*dIIr9zqtJ4H&3XA z%uYVz|Fl@8?f6pm5ev%8W&V~Xonv;GygPo^6j;=2#14w$f`gIwXoEl;!wt(u{LRdDq zY2xnw9%KN2dY(km=*%Td0;mmy`crzhdw6%u$p%`W@x@g0q~v7i-}mkx3oXefP|IqCORU z^W2-^=-AQ6JW+h|PHGc;ohDDh2)lp-}Nrx_Y4*~Uu<693NPpGZLiam9_N89DBr7vYF~N)8pIn)lMFkd zzUlOj-&c?cls?^+eg}A0##^8IdI8WU4YIznhw$vbh^3K?c`ZHEhIXd*ErCn-sR;On zIILX5XIvC82cXfWfDIC?`R$EZFrDMRVXy)4MhjL{mk?SMKu@lx&&O^=nKwHVkgo{oODIC{eQEJK$I&j$pl;xoo1 z<1&izWsXh)ay@O^L!z>e1 z{lo^!kM_*_V>unJ0(ac+qt{ab6?~{&p{cQeo0#odK!7y=on$@5qg&cb)|0@YLrm*> zk5Jl68hW$liAOV{gE{{Gd7sx=v)Vy>RRQtOx;VT}p#Jc?0I8#Q2E^Po>VRY3HNmpE zNqIOks{oG}8>_kdxg=PO};d@zT9ZGGcOnT_bs?(!(^0GyO%bZ-u$_olZfYeJ;#QQ%gs_ zak@I<1169wv|>__r2G^l(eoj;zTj->>7kayf(7;yNk7{OS*e*)^eAQ$AtN!S^>?~y zkD)2z6)M8;2?6+{>#78h-*||bt}mjlNn@w?_b!)d+Y>hRxI5ef*W;;4N8A9Db^v*` zR*}ZilKyP3*5U(NQBhIdDsv1MS9j}?heX~D5_VHamU&LR*2$|1I?n|`GAI;d7Wci@ zoMH@3QqebZ@arG~+V;^3Ip1*K21R+pP5>QR%JA(Tu-DWs)r)Kk#>#Te4Ry)$u!CDD z*V%H8**u6?K(Ca$#BMrkQ$}7OTWibdD)eTCC&|$+&e{N2)420MpO~0V+XQs8^DEYD zU}D#0{{T2I@xeDP@~qwTlC;7;Qg_fubOWROHxieG%})OkA>Z@6PDmLzrxD839K8Tr7&dlNqYUo5_Riug!p> zY5(NWykwf4s>Bb1RUnqMPLu%s3kcwda(+HuvRF@wKqrTNbr`et*ZHkzh2kbB^noG8 ze#lz>mJ3gf1q*z8`|R<3c@WYpmt zEi`5tIDUJv7O3c8A8AyA>mc)bo|u|CY~O0IjbBX?$I;QT{^i9Sp{3~s?r`seMcANW zxG&2>^vH+q!~8f7?b5hQ|5z&TRD(9!i5kI+vu#GSgW#~3-V%Ah?Iu7VCJ)vp?CY$S zz3S@gO>TqarW*Gj()k=n0d+kea&Z|t$nqJ>(7SEIi6H^}N~M_l6D9m0ta`)nI@!Fb zvdhS_8yySK4ZKp#v}b6}W&A8X*D;A>q)SC4;JVp(HevM>>D9@kYCTI`L0DMv?Ij>Z zM_S(|tR>E)`7PyGh&Ufs(Y*Zwq?7sz_>dZ^7Pw{rCRf0uMB+Pm?R&=FX_3FYsal(* zDPvX`F*iN=(S36LJ7D;%k6JAh-FdWPFZ`keaSZyOwZ*b{w0As@45->CRAVWT|J(M1gYWuOHj$}pzJ+&D+p zDM$lyX+1lEqqT#|S7#~&iA481?jv`Z{g{OrG*xXypU9;j5-aVakGYt6eMT){JAv*Q z(}MPX@_vQQpqTP!5rS+62IR%;>)!q!?agQNTsj72dd&nT_Or$tCBdr^j>P$ql1*JV zi)>%tAQ1(S(QJQ_NA0uABTKoujSeLFs`ZMPBbS6U-Q6nsJimwH0K1^0J6eBnb?2S4 znZgoKCa#zdlz9sORp-G)3>(&ecXREN``p@WXTFkfdb<95^P{TU&Gm&P05IE|Yc#$* zH57p^3*<}iJjXmZ`V9_&!N8&T&GPflj+|C`CC-s@E?SrUJ!h-|^vml*`Xf35;*#@STccm=Qs z?EOI7&PQF~Z%~mMxl$Wql)Ae2DNF=_m!fWwa>{JH`!|mVkZfk_39RtBZ@8g?_EwH^ ztv6#bGCP;omz(|~8E%xZ?i7J%XC)nrBSOjWnlO2X4>q_cb;#<&ws#a)`x_or#{{iP zb7698i@Io9Ks^d!mOH4(Mw<>g?L*L$qxp~wOh&6}qlmXTg3Z_%(mwv$(1fMyNP_Q> zLc8QOVVsxe4pC6mv0GGw8T$81S98`mp<+QH2RIH3OElc*Y4O<5z(CL81KY)w6|S?J zp`m_-SUN*qYh!5)Wlx4=E}tvI}M{(8vu1bp1!!%kU++)e|61a;nl(S^Pe*TOscCL~hfP-DO$wv22cW1Me)>UW%XrG&=eXIA? z0U2QT6s(!u|3z!%u~DQM>QtI!tmpxqY&M5sercskE*YZr#pVzKNzNS zI);g1x^ozY>F(}s#?hU_FwN93-Nw<~G2PuAha;ZPzR&ahyRkWPYI~Q`dCeFG4r>Ffw=aF73+E1NL=Wou>z6PuwpOg5 zl~(-l>QG?#fmhp)?2x;=%Ha4~rXqLpC?nqC#~N8@BLXWz_*v`#w9mnlA;&@pF;bi} zjL1#a+)Dfc%io=Wu?fc+`i~62lw)v5G$nNa-~&m#1$Eb}i+@jY6;kOP7n}XMbDZ4W z6Uvr*pSNkGmQl-HZy@h}Iq2^QJ1ktPPgrGczi$(v1WM_aw9O&C;eW#-{x1;}%ISLD zzSS_~3k!_Z1yo_#P8J{sYZr$=6K7)$qkkx#J^0m;BMjhQ{|S1V(zB@UoK8rHY;e&3 zpM{;kHFcVGm@Q*|pQoaP~~BsFJ~ z4L}GojHP@%ke=IY-z;ZlUbq#DS#7+@Z9+sV_$UcKiyPn?Qc8f$G%v}Plaqs0uEEsk zR#I;If7%D_6$w@P;kL2=kDjY{a?W7Q>Z>fi1+v*|3i~xI2a;ib35yLDZSaL2oWqSo z4^j$^5m!bYFG;S4n)ags9MCBt+N%Rd8P>&cX*99SkC_(I2W}hdgbJV{e9eSb&-o8` z>wWI?sW9kiorXk#WBcYW}y~gE`3%{V^Xb>h{{|_rC`Opsq1ETY@UUlOEX_1zcQRcT^stZYQey z#DE4OHeba#gSxVJGkV~|<>)NH{dA1?lJnk~k}Mti>(`~gdFlVE9V2~%&1)`@MH1gM z!d0-h*QH)ACc*1icVQp!kq|5T@j4a`8XHGYS!NrkCn4e|Qmwn%WA|lP;c}HEg%3c+ z#FNbzGyWlCCO+Z$GR{9-U9bS=t;myDBi5ovp+H6s?yF+hT9;hV~0wOVfB#0%?hM zkAQ*T*8E}!rN^vb;7P_c<}26TwFCmMV!`h2TSj5!XJOnsOsj+PM@41g04Clr<`NG? zHz{F)Z2ka!O%|h1wN5eClY`V4KoZ2!Ah5B7p9MS!bm{w*+E1tf52+Sq+yjD`M*;ER zK|NM*f7PQ06feP!@z0@y_CC3W`2_PG_pOgU)C3IfST;IYCN|eZx+opBm+nyLx)gA! z!o(%xw5eW3EB0X!S#{mwRTJXS=>COH;j3c~(A?3DR*T&m09py1Gw{Y4PATuZ&H7Wg z5b~!VXefO)3QF3*b`EY;L;-8R^j7pz%g6ic?4#Frwy7IGS|7YI!ZWO!iA~|C2e?a) zIOg6Ocx&%wE#K2`dKVuWoXq z3Uw9Uu32>qp-ER$J>WZ_SjWoP|6zJqX0QRe)ZthvxduwOGOP|by-|hKB?GhVouP7; z#e41DzUEub(%S_*XNj5eYD>1e5kH{?Z@e#Mq9H^Zc4YjEe*H< z(Rb;!ac3QYA#y}(rJMkkJ1IgB=VP7>M2&J6twa5M;4H=mMtUrB{DX6I-va0i(aY1O z?)B+kAdwPB#0Z5ou6{)XCQ@sN&I51pi;(3~YQ6XVI_%qAncg%Q)r1m1)U^|C4% zq&FXdNNmeO(NF%byv;ZTA~&N+yi zTcpQU?eftzQ#1sK8sVDX;{=F6hom?<+!^2Rxv6)^{l#iU-S1!|{~5*X;EL^K#P7HT zSDhO4a(qq~V?{zG0l=9;v{--#^s<)m7zzX%Dx7xZe&g}V)n{!g&H7$Y6A1?2JKF~U_~pvAKV|=U#Q6A}>FT2-AmhN8VSFPlF3#p~{Q2<=mNQwXDhPmT>^3|)a34&G;LVmB zqm=rgh~0wB9jLRBLrhQ^3rxKl3%XpYzwE;KMNYqwCeAA&h(OAkCGOK6 zwvSJwVw^yqSZN}6Y#rk;sXR&Q2_Wny__oF9NedwZw$6MRDFJ|14Y)8>nH5!DM{p6^ zu`u(>*VBzuD6{Sd$tvln(9;{o5C3&OpaEpjc&>;M2*O}5-u5|%b$?yl_*^BYj`D8D zVqfFc z$W_%rIIJG4te;J2>i+IMCgrJa{8D--0Op)Vy-??}z${1IfpTwmvP9Ir7ASGkCRpY&1M0ZjNx(Vp^T^)n^hbIM)SKLWq-$( zjm%40$o|Pe)4lIawURstz^a{~MdLBvDI- z2G@ndtm$CmI0z`Y1|$*L|5amvHLxA@I&`m>ock#K^JQ$>ZL`fBU4qC5z@CGZi~{a8+kmVPGv zqo0>%UCmApz}S>Zz0c7GV=N7Sp`>=@O$lqKOoUY@m;6BFiHn1am9w)~t{Rmf1Bwu_ z7pV`E#mZ<_>O)U}oED0KsYkA-fgf-d+a9r$A(>mR7%X5F>aPC20sG;3-Xo$Mqp0DC z#(${d8W0^?E2mh-|Kp~jpJIE#2z~+(G#ogLi};A=o87iB;jw1Ylj)t`T&>l%Z>S$h zHUm9`sYK%Sh6j5xlYF)bVjZtZP#iM#&1w0wm?g~@l8k~{FO^3I20|9>f>Kjm?t*H#tdG&Q|)xs&x75~PS}_no(+mG!q} zo9~uBp#3OU>={@5&^!fXj-9=_MD9lq8`d7uGoS9S3@t<2gFHGvnVn6Sxe4Po?GCxG zpG0pV@In<^Hn2CfX6&4tT4rf!et?wR8zb$xqN9 zpX=WS2WBy4g82w*#3zRhm4B!xeuMiv)aANn#&c7=`vZ z5tMmYGCk=)>zQS0R!S(`9mt?emx<-l*5G)&vChBqWQx$Spk#_WZ-nm?t+Jf&To?x` z$~s6V!>cD&(RACow71D8w;mI5!kcP*TiH$D{N^iqTE_z^44SM(@ds6$QV6|a^O-4$xbewU;IL@ zV}3uQUOSG9!npMGvxs+8JUmz$&gLVxzjOUaCo&xdld@TQ;B#?vFI=@giUYDv%z}af zKw^)k_`HiVdummfpP$5!efDV1nx2u417Oen6kre!&+M=A^6tna%POl4p&w~!Lv8{T zd|t1X8eV!Hyp9vfwS2}I6=15epiK1Zcq|cdeSP61bKS)9o{pr;4sT#QA%Q0GrY^)s3-Sjpz6e6nJf~fi_WD2z5 zKzrkl)SyhvJ^Cw^>VZx)WuA&h90RFDjXEwPODQtkVYG$9OL!l}F&|uz)0jFV*RK$g zbp+6AFooHi#(LWky>Yo?M8B^khk!`l7jg_>^$Hc_H};DxUvRyH7&A%gZTj}jA5kVa z%ggBtmwgitg{_)%6i{(QY5bLdgir^$xQV(r`V5)J=^#2CwoLy69ZS1#0rtTa+^$IO>UfjK_ z{(SjNx3@woNAOWs4o&oQId*55pnF#8)06bs(Y_V1cmrc_(0cx&TVW(e6ggodkD*mH z#L(kJdM3t+S-%D}I{E>+yF|HuauBCoYq7p~!>1P?+n=N;gswWhaquQ1J^f-!@ei>2 zAqe?&?G=p#P3HZL(9e9+i~c!-fRqLTfMSZ_E=%d2QfW}80l>vDDb{FlX=%aPa(!Wo zrI;Pb!dD%-y1LbtXJXsiR=NyE|J4HQ)@I=9uLQ=E$V<7qFI;e_!jCmH@O+d+)Jgxz z=5hJi@oeA7zv$WB-7S|rOcHP@)3mOr8wGb;yl1z25KQdJew|F~NWKl5U{MR4^A!U> z2s(8w$ciGbD%&VwFoT1kE2k2F&9!Jr(Y@~sT3tz(R4RTPqN)6@B6iN0$wfx%N@D7FC!`^^fKcT5ge*0$;8k zyQ{L`Fcc^Glf}M=2d!$TgqEsS|B9EB*0dFzxp6ZR0_O9$2Im?x3nQ!A>yvM8;(lD6 z3OVxj@#&cCq`<(4Wnf@1192OFyB-;wgrlISKxZBw8bkE_lydVC85_E272&>K>};{#poj+u1u)#oInh0f1= zE!SG`FD?l>3-e&sT1s|ye9YlT#LI=4P5L%9W5gB|JVeSgI_(^C+pV~;eu;^dTpJxz z0Pd5c1Gjm8aC71U)83QOKz{q@?8~wWrW{b1H)ocU_IF&6qpf3qwP|sc&o~^gm9u-o zr~_?oax$>_)b=)LT92{z&mZKp#@d9G1Pn`hALzZ;&kU$xC2f^iCdna*(wvg%i-R@Q z3XK@3qq#25cai#RuhBG)qkVQSh_Iv6>5!H^pRJp6x?;n^9OoIgIq`~3!dVU#)a1L% zt=WbR%GS^ilBdXf%~qSGLV7AfK1G*bRt#)g-zLu;!sQseTnB=y-l)Ms<8(jri))|z zNcBwzBccC-XX&~yS6$N5N;! zI#16{s6Bj&aZ0ok`#91YwdrE>+#;;6@O{gQ$mbty8t42z8RM)C zeHAcG3#ZRaIocdLnr*Cgx{c;e@u|<%oK>J0;^jxUKcaBW=O3p#T0d3l{39`IWz z5#yty{ecqF)#g`7bkSyco{E`5!%lLS0-BnX=VA0l?GQ-zj^eWad4wLwsc5bho~|fA z3Bm4nIbT+uEJ^?`56?!@IHV`9oBp92@1c%|i4orM@y5LmW6b?MGh=7r@SNB_y*vcb z)v_wmZ@Wjk>5oA7NY9UzDWZ%oqM*u?;ajoqv`zQ*^vU4SKZbCI9V;B^8p4x0jt+Lkait6$mxY^D&@v z-DJrTPNwCd1oCBWHFLu1KIBoQUzcfJT#t#)2v^5KRh_~iSKH?Bpt10@w*!0&BZctBQoL%-Me`trB6eHW*tzsVSbj?Ezy zJR$T+$2G_B)0o7Tq-PRFfM#}U+$ETBa)rgj0-KejD6GoIm-f0U14=*adGjj z&Q48@%j3AuOOI`(Q2c3ygWbz1z1?an1;uFvu(7u1`AJ$!W%zGdiYd%f6cCUgMiY#g zV=B#=Y!Qjx&B9L2TURW{vcvQ8sHkax{hrE^z%VVs&`?RGBgFjT@K+obXz<~U_Am;^ zw)&&Y_GZuzMYCnQH?%8ON%nBq1>l5{UdtCIB31X#< zqWM`%HcSB_#qMU<{HVt;Lr*=Z(osLCG7>|MpsYBr*PO7`Ho9w;mB8HCXGlFnTY!CB z*j4|4s&tF^7bqZJTDR+usyc!%Tt{S-lcf~1$?&CfyColi;8#WUB>6$-x%$S~C>44ddlZgg(9sP+jX+%nGMNliUw0O=lz+i496CsaC_z1Oe+o z2(*4=;1%*+F>B(XDgU&VYm|RNOBFv*?~Q;S@F&3Tq`Z_~_vG&3hph?Tm&E3ccXnM% zSFA1hRe~fA5N#b#HPwDz@yzkg~DTjjGemZ49Rs5d7?o7jjfH$f3;Q>{3^=l{Ge#Z$a;r;H@iCSn zSYs_bCUb~NUPjW*J3Tb3YDJ7yILt53S2<;MUiq9uKl`b_QJ>VIUa7vo+RqWzR44zQ zk}xZs<5v*d&blD!51Z=ajd}WHe?3HB4heZ`BFbs<`;1x>-}FqobA&TJ?sSWjlk;wE zvehheP_Y|Vnv%e;6e&6IH5bZL(n9YNrJrx`38$K$^?2_I>rZN&x%O@7yS>Wo2U2;_ z#4EW&=)2wUZK&jJ0?``VRbxd3W^!^eu>IUP8-BCyX!8bUb|$w=ov3I6j;N%xzD>CF z)w=Ipq&#ySyrI`Nbn#8R@)>v}(RdCt#|YvfWcsNd8z@VXlEHLD|6FBrDE5>`d(4tu-;B_5OAO{%`= zr#n8ri6A;EYCaISI{CJGeBxHRaShroYI2lH%a=F{>2ZAkA1`%RuQd+VQi8RtVEj{$ z?|iD)G^^{dRBi-^pnY`^IvvADm_R1DXDQV})cS_@xWA8H9ykkHf68}>?ie

AoOA zx5hfI?u7+yw}=!TzxS7utEDgKF1%Zm#=iKG-VF38{Vqw>W86RVo65?5Vdxv;UQVC= z;Ui!0>hHh(h&wnz#{m(0$P=y#@l6~L_Z98q7qQ-=tbZ{+rnfd+e2Vu%O15}0-rf8B zP-1P{*Y1!hrf!QzaS40uU_CP89 z0tP{sn_ZE?FX4-hZZQWA7k{P<$9^8FkqNGSCQ!GR--UA^5^#AYzs!DK?|v~FJ7#!= zj9A5r_Vk3sDmpB}@ycbb-%5&^$j|9v#Cy3}wddJ>kJTrQ(8EjX^%7HILBW>nHTN!@ z!un-3UU9YG3S(cpJP7(3pJCe$))`J|dLqn(gTKGle#Th&3s|6sBwmaxVQ84j53icx zma^9BOb(-qRol-ho19BXa3;;*DGv^WM2NJ+leU&r6K7|i@;QAL!DlFt?oukjPQD4d zu|1vL?wi$;T%d}p)W7_N6 z@?Vf$B7B8~fBpJpp-h2`;)AF+#^Gk7khi$aoTInCO^lQ zHquWCk0!TNPmyz!yZ6a8WMm^UJwk$>zgleM_BXW!gFet317e& zxap#sx8w>UnX?{LA@iL+&m(>r6m$B49 zfE*Ml&%b6pxp#W9wJDVV*8$JWT9Tuj&H420>F=j2RTYs3yNNqvt|wdTQkr52d=9;S zKw2E!sViD&Vcfu<;6+M#zgs;C^20-#rPReU()I$d%uC|fk!UDI+i#>VP{xKO8 zA~Pg?70$v?G6AjU;zAnag*Kzsz1w!QJu_LmD<~C&@|-XpqsLrSDZa~$9r@w6)U$1R zVrzp=LP-lpQsPhI@8bx|0)`Y7NQEJNWjnZ8#HnXx7s051es>6jBJvz9@T6-^{6LvS z#N*p1xdu_K7ZMViiT%oWgZodn#1-HgL+Q$=A7I++rBz_Tp#cozMXwc7@EGvR&+vuo zrDx};Gxs^1IH$mu%b&Yv_iTO7=t|f3F&Ku-^>;AZ`eVDq5~ZYwj_9Ec%^dRl18KGY z*Rj@LQu~x`55&qMgBLRUijqKvct{oTOU$yH;eF}3k$90h@~^v4|DKxH)|L#net1X{ ze1i3c=Qd%nxRTmCB~rAwS(@iKqdoY9cLa*GV5lOBa7#l1F+`ibkXUqQuDR;6DF*GA z+H%0I@33<7^KEneW$p`vi_fGj32i0bwWCh2L~JF^LQv=VopVLz7Z2ygv7e@{6dL*f z`#vz#69FBP98Mh8ihjLWGBlhLNqmy4UURxVIkbqJ|8yA$hFQf`-_w^E4qnvm<;Oct zJmQcVn#<9wM)9L!yx|twB}bJ0Y5Xd;s3NMhkI_!9dB{(3ElQ8`Z4PQ~1s$Cs*1RLu zlN824TdC%7Id>?73o-a zL-Fm8JNvW8!uILa@UaMR=wh+3n;{P6OVwopc&X=_UIemw+k2u&(M(f6zMbSHLUI2e z3;9bcfN=NbVy}C_^Ye@T%5e-sNsb7}clS4c@NT#lcz1Bw2Z=(a{Rt!f3ajTy|M~{U zjfV@Xq~yp3AwybIe92>52psAebw2J7j+!$7!|hrWMKlwHvqBc*Uc6!B$KAI8ieV&W zMl}0dJ23r_~RH>Q_=yQcpL%ZGU=`Ki1I*`maV?Por1c>~Kh3BxWX#1wdh^x>$tt{eDx27#0_ooDNjDEXHDv*Hq)DzcjfWFjn;U*4k|3QT-4W zv}u)(d4Q)knr-A*wfu}N6dVCkLx6|TC0EZbN5jP*6XLHXb_^#$Scf9 z9|jM1kH|sZCXvAp&zXz+OUu(a2i|KNetb_D362qdD6K~%=ig4+@`|zloT=n%^ZjMC z^tURDJQkV}!F`}?eEKAc{Y0_cJwxwg*Ac9VFE&vrO2EiD55W)OT&McL-ri^2Zpg8z zRg+eT3DG(tc_oa|!bfB$I)!rJZ{#<5)k$HpIeq|M47k>xP-^@6(}X9yocY5-Xd)L3 z7s_SzJOPCXty>2(KetNb%S^FS`mj_`T8|f2D$2kxPIHc#EZV6qWg6G8VTq3>l;qY& z@w1IyApy__(_5M+biSsl8>Uk@2J5w^OQGY>ZDC4s$ac5rp(#=OT?Lh&7gGmWX9K-p zc3`>MoSuiwDsbg* z`+!LPzNVR>%oElC{eq}&j>%E*v%=+_e%0if^&^;&FYy-dFXi5Y*-<`kkooeF>bCwA zJ!Lss)Wl(GJRU4cdLF$V7@l^0w?>*L4uTd(63+8piB%3f3*mxSB{wO;Bu;3mp9>Zm zlOQh$OiHCsYU;?|p9dEq;9Hpr#=eFbCiI@KBaU?W1T?i+)j2bZc?+nZf$BAYup$`^Yc+>H2uHu{V+? zXa$y;&e^_t4&@#by>@fYJ5>7}fvkrftin4JIvOlzjJ?@8JMe0n20lNkL!SXFYG@KwCO4M+WUZjXfroI-(pp|!8lI4wV|2f}zc z9WPdVFgyDCNI3JUwdP(0yxfd>Dl0h^uNlt{O~JRntTno8=^Cr9AgRu=8+If`?i7sp^6>ywyputmp5*X@`gJobnVI1!wa!FCo}Xnr>`oYwcu zA*~FUSKL z`f^d))=gF6@n&`9Ok?9_ZNXL3v{JOFG;?@zHjbr4k+(FgTm%*WGDdCNrMQ|Phb|l8 zVEg13H`_s>uBusD^S9VbH5_RnFpX8bq~+~#3#zZs3q%Z4T<@B;j$I8QX%udiURh3z zm@!UIQri1NUDj`-YC2RBI@1>lr4Ur(=xy2+WIEL@Sy{7Y<8Bfwn}}J_z(%)Dg=RP` z3W2EHT#!`%myZJMYD)Sp%e1VQ@}zS$A@N)9Lj)7?kZ-05jrp=4XxijV^VwDYY!bfc z)d{EYC}ayn(?}~;YigG31r^E>#1$_7SOb3E){+w99Pl&u5EEmS_cW5!qeA9#`|;wq zZ`Si=u_!P*qQ}15-T0a*ZNZKM3F=*&kqzxJTYk@I%&VV5VDTCaB>)16m~*Y82CYwV z75o@?{7zVf?Qv&K;6>*|fzDNIfLl9_Xw8gMRF**ON6AGgrBf5x^pDcgL!gmKR@ID* z$Mp*>&&Hv+OoL-;3*07uBth{nc=Hd4j(XQNtrYC2nyFerOB?P5CQFeuk=g4>%sid&F?M)7yK1iQSl(Gi2N;jKX66*-^@^(dlw792v ze|+ILLChz}KrO5<3s!E&Rv){fLUU#iL>Wx(g_?DOnco*FnU%pw!gZLl%Q}OWCybnG zJe)z93=%zPaO;h=H5)qzovlNm@W(6uuRn~Ie|huisKz*}1CGVr0DGT|94}f?^d%i` z;*+R~uI~6gBd|o8idl~>HPmLfbfO$H)X(Z>^|_(GKEJR&IrR9@%2q7;;rL)V$vQkh9Tg??f%`TI$>i75+#Z^@Q{pa712i?BT5e`pD)(INyRK_NaW_g%d%Ydzz)g3}#ZLmwaRozy zUNgL?wRX$7BC-*OUedrjw*LM&e^#3T<$%tQ7f~MtH<)AUuYaT#Csob;z*TK%D?=lU zcBn;D6;&lo*;i>*!pGrfFrWFp<=oCNQsuGnh1D0K!*)sM9BhLwhyDP|MT|*zV#FW9 zIWHbYo~H;3@ZStkEM@5VQ#;$4-W?H8k~{o|IG+PyeLFx-Z$2*WRsvT6m)6R7gIr3{ z#OxiPzf6YUr<2R0d%5F!#4C&1cR%$A3a>%*h?DYi;+yh4^vh;RlK`mOB_51J!IKqA zcAf_q3*~PvwZ5hL9q8pQ?L_>sAm^M>`s_@;ckYtgC9~Dhp%E$iC4_jmaNO$y%fCmS z--Z}2Eyj3OP=>ceF(TXv#eAUC%zZ!c2LRcJ2mY4J$A}z0W-WP52*O8`welnS+!tab z)N$L7&L=w~q(;|jod!tW8cgg?sLBCAJ0H`lw4HJ|5xDhG4DOi2pS6ET+b?o@g*roj zK9X3S9QH)EnjMeJiZ>O~_z`kBPUL0?ELMNmK?Ugi>Pb_96#jdcB76wkIw0(T(sE+% zp>Yz^ZkR|rj=ALxVEnD)*}55q5%1kEaca~?1cY3|w~{n`*H3>f*+8OX0n%$o&(JBK zhO|N;ff(steK*$yoR%@t60(Q^c!u((rg#WVgJ>Dzs1XkZg@vK!@44By0^%BY@+lJ# ziFhe`<9GDoK$Oub_-9#NVK%;5zKG54>QJZCHnzD0jFq^}Sl^G-sM^J^KE2v)#cc^8 z7wJiAbfyK)$+b}CzD`0fn6f8JTms;%J=fERHAV8*H32!w7^@GrTixd8TYzwE3$3pR z)Y{p^B6siI#Z9gcJIGb=rj6U9-J+QL$n1F=3_w=Ep~w>j@W_lqMd3hk5g|B`jJ6!aU6=nfTZtezP}))ne5 z;O5`m1ME?-rNxO&5CypguX>jI_1)Ky81LV{-~=ltG?LN_j}he`hx=Puzqp|++$5<{ zHS=j^api)B;eDjd0Nc)6q+%nM{7b}y?!Q_9RFI{iSdOy5(oa@ISPd?arbk$$n;3ypdvCmd zv5dcqC^9}44A(Ja5RuJO*h2Ku;+(Sc_UCraHk=~9t*suy!m2n!&EEh(X`s*(l&egDp-Mm{@Fl_To2N=E;c%DL$x_ehPq zY2H!M;&P}2Du|EQRntnc`9G(0OM+aJMk)7FU&`NidR?;|IakCtxY zMMs7LA`9uEPBO&OjS6}o`6s-<(NH+nqsCvb0r)ucGQ+%^YU__Bp!2Z`mYKP~0LDvM zUS7@&SJV>r^(8(dg1QiAc2+|v$ryK}y2Ri?7jO!F=_n|YeU(Q+-@2P0BgJi2U?`@+ zgj&{DZSdM3Kiv1~lJm#JeN8)cGfi{FJnkv82WWFbptqr`fCo1a{c%r``$Bu1VA zw9cVXg`VE7k~w<$8Tvzq(?MYV^b?>+}v4(44?oGU5QzBDMEi1wADH z#9bffB3spt$65pbvOH^@;DY3dkHwPbms?3mCUw=gc-Px`S!-U}0X5jjI|hb>ptKHW zmkDPsw$3tRIlf`~PF_%^n{z#11}%F140qR(a+$Z~)dlL8Ni$2dsdLw`fupRkeR*M^kg)3mHTUTwn4}4fyR8F8esN>8+mPv{nwOAn270*@=Ui-CRD#{;x(~zk`s3I^f zn{}|4F%?9hL5D_u4hJg6AOr``sHqh)$q%mO4pX5vFXtq8{6e2?di7CL;v(M}YDWNw zvT|+!qVr<3e7I_YyC)yQxo&6H2TXoqc6M{dM6++?u0bbQ(s`1>8%Xj^Y4+JIPjVJ$hU{(Se(q1Ei>u-XWa_CO`NJrHs@v=UxSl>|US zR~|f&XA5MNX$}BJM9?KI^JCf}Tn+^A{^y5OO(3MaxN7D}JH2JX0fZlHhw}&^LKF_Tx4wdYp7tfuyFm#`hNQ0xa{(DP=fFdMYJXVE{Sn&fMcYTOrj;2Aj7 zD<_~t+_`Qbudh;cBCtnNZ0w5iazr$=D?fFj{R7kc%ibTno^&&Rn~P0}^2hog)7Rld zEY#mGM}O}*-iy)l`cm6d+j*6H=P&wOwVZ5JzAt-;7u(7qydP}Y^-(p$^$mjn&?%l^ zTF`cWlE%6^5h`kJB=O!~W?jo<{|WV3%ER_x-j?A`*}*{KG~{KlI%V78yf%p-t-=Up}i*wu6D!0t~0GT1*mOoW0i2tAM`OAJ;V#@(b_}ys_THj zZ(Ug}yuQ^!sx7l~+rwt{Z#@9uw-qSx8(9(lfiyQO)_Fz)#sSppilKCF|E8k2?;P}tD zW&)_K1~Ot>v%1SO!!UMs*9J}vHoL+|ZZmWimOH!zgGWyIqkrLm&i^zHo6U>>ohl~M zhQ=6kh(5#RBxntE{=L-1Hv<;~LH?oBxQmEDQ}LLAtw8qn&@WZZb-7)^7{4`&lrkLz9W zH>e9paLeZMHzNqGxp^c@zGK-^tp!+Gz3{42? z>Tl*37J?w})yx9nJUs8J{P621{!?d1N@I?G{kr_@$3zS8r*yQmz|wda1>7^F$?*z_ zOvD9Vv!ZW(GQ5$RZGy72`(2+>oeXd&Q5Ff+!>US#vHtX#=B+mVk$NaTVAC|;jy{%z z$F+h_oQ}O@=ElW}&{4C-Lp}eVd-#Axj|S5uX`&JLn;pm3h)3+j6^YJVz!(J1O6ECh z1TJ+{x>A)08sNM+O;!K57;X+iUp}Jf!You3)@CMGi5z=dy@|=wglr0Fqvzt2ou>s} ztV8oEz~B9d!}m*h^#bSjTJH|l4+DleKnKz*?+#_5B`F-e@uD)L%ESmA_P8G>xxe|$ z@ATgO12=zOOnCT=tK)nVJmJqq$iE zo91XjfM8%k^NMzNP7|<|RHcQ*kV*pKj-Gcq^@bcP8Rg`JJR+_+Zhaj@L_#z$Hjig@zh`*6Id_$+g@(2} zYN5rFD)}DnJY`nnpBn7lyX77PEITPPF9uv($IT4K_VBFo4+ef0#AA-QO#4u;&)bQg5rVYo)>Y>y8$~+5=zL zBB1aANq3tX<4*G=Uoyx{8I&p|W9yHV(v?-CG`mySu_c_(a^HM*_Iw`&3Ro-Lq^lCel|&^kB{S7(7^`!0qVDnqu}^oP!G4xkpqW^~Fj5vsZt2-9trw_Sh`mM>B3IMPSd0Wo>MA^#s=5Dr~ySGVsJb8-z*115N4s<(C z9IS7!zDgUdzRq58s7er?rR7308$X$e zd_4n5z`{zS7)5^2z|UAY{!?#ZZ7LW8vSJMZ7*iQ4zKPxte1NCBJHT6JvCCW8*hK8A zc=8Ge3g+eI!NJ!a{1LAkzV?3*nc#HkD14dz19SnwWG+lhWlrZ4?7wyD@paO5pyqde zP%rPdLPFnf#BP3-_Z3-K{VJ1CR7|a3nw=ecn47}Akp$4#;HNa9wi1e)!lI&~)yiML zx^&MT5yqdN-vjcj+B<<4R@|UI@ta?)+}zw6mHEMkHbX1UUT4n|R@M&YrjwI@`@-C9 z`LfypaTNf4Zcv`RkYZxqdOcPnr%?^&uKB_c044JI>e^aBTH2-$Jb)b(yXsfOx_fwT zjQ+@H9yxsfq8(GFl11al-Hd4#l!XHXlhv?rUyHXRL(a1B>ve;WX{~7FHku8)0_a*6 zO1hrSO;n21E*MWWy<1$Zo0+_Ld+}Q-L!1Esi^bu;-?P9pqvyc(&CWvRX$tSq($yTp zWiasUfj!!aAzeKioKcJre~1Ap_v~`%q+eK|#wlKt_A-mb<*>d>Inv9d6h{yrEfwJj zw~KSTCg1L&_kg0dxT4G4M^$Ok=*$+4^yt)L*0AvEohlBuTemGh1=>pKi7H19Cc=m! zKu#_B=aN(FN*=hFJMX9lx&ry_-rG{adNlECmet0jEWErQem>{T)^TrnT6&tq+P*!# zLRZ&#!_d=&j|duvXoo?syshjH10V?m)S6A*i`I4uHjT9|=NsWKfu-pr-GpZ=RY-EF z%%7Z{-?Qko1OaNy%s)6{a7rf$J9&6Y~*Ab6eWN^z_I=7f=bdv)*^p zoE*+a8jKp{dQkv=zB!Sw#m2_g0nV5;1@tv!!XBuSy}eCd?@53wA^7m{z85Q=f(a?v zkz+5q!&G8$UhB{DF&x|T7t;fSgA&Th>`}6^#+H`BqODLLBs2f#UY^XS8~Dd3U#FLp zSZ3+XPKo}!pQT+yTz2;5|M<=01)m7z&&Y@mTg{d^hsX~*>kImCs-8?^P?N|8jf;7Fb&MOp-$6_RO)ZbIwMurqe{#{{Gm9d#^ zY-Ee;s|`Ky8W6<2A{WXlr)v==M7<*cjOf&zF`htiyU;{aiVUcD=kHVrWI}e>FM8$RF^jhsdKr)}tb5>>K4JW^f zJP$}=-R<$-w}O2%mUnsl9c$^8v@Lz6j=;6^>mC>^u6n0;8Hz4?UKu>ADI{)XEEFh(b4!FwE zD^yXb*A@o!&LcUzq@Ps9x!(Hut-eOX5R;Q*>SmXZDQ5qcu`23v{SI~q+#Sd(DYOp^~27dF=lx*pmXh_5)u+L&(Ou_k))?s-ZgU&FeK=4Kk$EOy5_Jv!?yplY#VFY zZW)WqwOY3AmbL8KvR%tq){|}9wq4)7_x;{~J32a^?&rME>pXwD2D&rf@vj}{gNw6zCy6*CLs3n+8&iQlvZ*$YTa6+~;?N2hLrrqNKh{0EPeCWf zy^u5rmpNXB6w+~RE?p6J_IN%ibn#HAVj1T3JNFq4b0SCPLT>ahHVDzj*))^frwy9x z7kYde`!Y4S37j&=IDyz>J|b`}NYp_9N~74sX8q)-ghS(B5#SG>7h5yM9&cdxV*aG^ zh3;-$KCto+GRb|!&*)|<>YqRXQCr4q{hJRQjxqAU?hAb12FO2Ak6t5#sO`_cjxqkQ z_&h#F3>a5-^J#O^1}B6ql!@yL#PW)(Va~-?*)3;O3`CK2n;LPa8Hw@EYlF^u-0cCx z1k=vLT7yJJ)~>)TaK1ayFg4LpA`Kn%255tQWIKY3KA4hE4Vl1!1c&F4fdL5kG#l~c zrJVeWAU9o0X!&zl37Ndm&tk3WJOl=t-aagK1glbs#b3f@q?J@vJNe5{Nd%)C-tHu` zVHeu=LG>#Q5I{9V+V0F8I?*sO_3g(9Ui8X5g%oN9dh+P**P8^cl8c` zmFbA;Cvo@lKlufEczX@GJfdf2Y5slw<7H&#>O%CM6(K(6?V2Z%Q3py$?~!s)t~n*L ztc-{%BrOf`1LO;L#xI~Yeg^|5r9HVIyaN};?1iDKUQ-yZ#tclYScew zfP+5kN0{2Fm=6NZl4rG;oOa;CprqrO$0O@0fjn-0M5~=PWcDEIe~Q8x#Fr`qTcrZC z5U9!R*u^=J5wx?8VIxAj<9L5c$iTLxdw-Z**c)S4^HRroNdgV>+Tu-*#K9OstR`oK z@i(cI9MRq|RG3v8K z=lsmm86l=+v<4)wNrr`A$bR8PF{S=Au#)MoE25-}JmI=Itd%seuo&DSUO|98P@v7R z192ueN(3ODfyA&KmB0yQA(W}B^YgvUA^5ag4@m>g6B4r^okC}Il{+zMqEJJK34dh>wqyBv}gwk_g$Bet|*0 zXy07{^Wj)}n;)arXO^XS(U2IU&YwJhxaNzK(=Zz7Wg{mK4gtZhAqf_cY+pR?F9R4# zltrIJS>;%?JWTL-iU6i$bfzERFSv#&a(wGD*+Z9~nE)g(q9FTRGxxW}brDffolihV zem*87NI40Hd0ME_-2i>OuAzW5Gd5;}=H=sI*;wug6#DoB0OxD}U|;oaHw`{eUc+>i zr(Y!7VVP|%A@D4q2j)hebQrIIwfS7Fui%0*VYo;4?;2+KtI+ru z=23|W6#2xXP0@L zCN)%KQ!4#?UjVOQL^NEr^F}*nPVXmz4MLE--~22_ zGe<-~UJkx4ybgo<_b^W3j+87)9pkl@${vaR4?TUbgp*4WHW6j^p_nuHT?K3hbXWc{A zyDaD~N!u!wl+_!nmI-Wdin!)IfXJYq)>>Xz)74{j^=JWpk zCF;oR2xUy;5>`-9paVw1naC{HQ*nDmke7EWNRezvulyv$MMb8qcB2!a zP=2p|f(%HN`%!K%0&Vb*`zDZ5rO?vHFPFK8Ht-Eh$#O^rEVKD(8x>I5_Ggv9Dzj^v z{4a@MH5Q!YKe?#=lrtDxf2-QHk?OD({=pxgWA`y4%`7a)x#o^Ywc-aO&f={q%(qhM3#l!hz0p_g zi4O->mQf2D;!con_`Wcs8K-VTS%ecwF#wnwiXr@Vc;$0*Q_ND*$3ic;h;MNPgW&=Br-BGc0a#Av*s~Y*Zc*~CLfbN#iFkHra^4HKOL|G31(ZFob*ac zy8hjg3LEXC$AFD&oV%5fkig;nl~99is9RDVygZB3sdA&)LPn5c6ma`F^86>qqC}AbN-A9v6eL@MHwA zKQsqPB*nC%uSEz9a%&%|u4>QwnLuSq2RUE(oY2Ckpy_u)16RktVG)ChF1nI`5qbUg zf(E8ihf2v%uq*P0hXu)xd&Oal!l_IrA^B+fXqvv+FeF*r%>W{{b551 z><1>K>nbrMpT^gj?Q|rJJn37oHt33e0*%DgR^e|$b3G2gb?SRn#FPGr3%HNhBgC9N zR6ha+h@w|DK+RE4spp?sLZ^$OgT#J1*`(8-3%g0&J0on^OYDW^ivx@em&tlq&XR-Z zO3OAzMo z^*%ezb&Gj|Kt(HJK<^R$0+^Z+k|FId=_{JCm*OV=d5NOx%DEe;vEBb9L~^xM7F!j6 z(ocl!!f6qfG22PEQK4qN#6kHe058%SmeyQffl{i*1nF*)CFq2ryGFw8{lpL0(1CH3 zC{P~N(C^MaK+?dPKgz+Ei}Uj*elOm=(F|yy46WBM$z@6o&-c5jkglN=~85r31wU*;Dr!q_Tx$hE`vOAeV$%siAku?qEaPv~(0QM#I zc58G5ga~z^2%HfUn@mAZ62Z013wzfL7LYvA@uNGmEQ%yG?7~fSN-1f45#But#*J15P5La)7(LTu;MAH#hCC8Kt-SnQ~cH zvr}Sdtv2e*EN9}H);-(vMO7XY`NawVELMbj8s z|H|GS?E{C?4T>v)r3Qtmj2WyCAvdlqk)qCk?z9Lh(9(2%DE1ugOW^_l%*W%^pX$F> z;t}XFtU#G7dv7flii{5! zc|O+kvak`zp3cKg#q24`k#e?4lHRxtsV|Wzcxt!HJT)ey_od$4Uz=uL0@4X6Fd+fq z<#~*tq=GBzT$ye(WJomIS@L$j0y%RB=)CoI{}X1UOo8LGzj-DSv0t}{BXqT$3JIVRRtgY*!mE}c9WNG_tmUa;dz_wn)B zZ`xm|fOVs9O^|n$rTAfb0Bj7@J4jeOFrGEv00iX;a&E;Ru*d)-fryqGWJw8T z3k)VK7#SHR>$Vp-5-`x2q4FE*>b_`cSq*K9k;^r`!lH=gaoK7AH<4iU@I>XGLQjN- z{J8#9h>h$qJRCt?Q!}@|5J#)Qx(C=vBcBrkmCIwQS%I-IFBj{9bBIkoq+(A>ru`z%%bCj+QkqtuMUX@M6+69&Km3U_tx^C3t!(txy6kjQoH$O4Vb9!nTFb zn^v0ms^@|2ku7vO2?H%igAZ{fosBIT=;mLm9nBL_uJ;kxS^C!?@0&w}t*~M~^MtY= z>crwwD^XL%uXhq~Dak`K0sp^Kj`(BUm$l4zt?g2+B$n|t%=>0oR0Ol6EDGgPY5;f? z^AyGn6YFp2Wyf-gk6$ye9PP=;D{z|gKM_kGQ!vVW1A;KVeaFyB3<0u849cz0<{DvS zxx2zEL2g!N)ORM7|1c~d+oY=J=13aPCUIRc%C(YM(l3RWu2V<^P_Ve~Qrsbc46qfi2CcpD zb2>o+Du|o7wOzjbXW<>t&+4)6VEWRJ{9>XwUH-CbCg+EXtej&|{{{?v z`RY6zo)r63(K{<$&N8t7m%YM}Ji{c-GkBdwwDBh@ZuC|Vu_MtS~tF;P^{ zI=mt6*xpd3+K>wcAru8f5F5Vj9&l*_MMeouez9sI5-^w`dwg0|^B>v-ikiSXC>#;V zmQdf&z#emMF&&A=+FDq+*BH;C!3+?0#uk|^KJYsc^uuOe1v`H@X8FOif6tcVOG9Y~ zd!4>qYd8`xxqx9otyMX}honUn7`_O4D6U2k@J`5%T%y!P1;DiXa=%BJNa~zng$8J) zL>jneEF3Amt?2^XQAd57JvC+v`!>Ga>9!Ah5&x*DmKrsR$$HP=3)V>8Ef{ibGd(Z@ zkbk_-!JU?x`|esAk748@gvFcKi2`N06X-xn55IqwZxj}Q`q?vhNLNV&6+lAQVE-;;^_Z8%bhrPBgd|P^HaVN9?NM0+R>@0f2l&3Fjl0^V?F=u zhOP)X@xn8%RI)BG7-G>TC*f}>I`S(e3|&H7@>>oan*y!Rpo`tH_JtF4-d*xDV-w~7 zw8fww{do`t&|n#vVf&j0i;4Hc?*3n>B_LZ{CiNCm=;6ka1E3_aS4F0FpDDLtqIcH} z(`*qKm6eqebfv=9NWq4#d&ubnG6o?tk3TXe6bZlLu}jDM^BuKg5cPa(vc6kYJVAV$|cbYa65&r~Wd|++K zEFevm*Bj%q{#)p?f0@`G_Is!u7IlaUFc6rw57j2@3>g9v2DWV{?=CwkBIKq~X0q|> zivs5VK4LcJ1aJ1eh30B6ei0=>WVG@%q3!YPf>KNcr7=oOt3Lsv-d^ z%zkfB_t{>+xZFg`jH>kGDOGbDzC%OWHRr1o6En`L>11QirNDHb%fJgMajU~ETHg4l z5J+MdA8r}xj01!_U=*cK{!&=X4InHH_4S+oc%q^VPxZv_*sR~42SQn1F6(f!fk5I5 zDqN6#5LcWE#5h(y``FYh69hw3XzakqZmpbD$F56IlmF%Zwuw$4cqIU~PyEL)7Y>WSp*F|4+J^T}8ZqKLW z&NS+1Mce(V6juJ85k%R7mqHtE{+mqF%$2JG$82*ylG_bWYXf~fCApCE@;n&irx4CV zJwqE*>zn3<-GlfJY~gN>>3YT@U9=V^|9z+h+=$D{hG?dTp#XZO@MzpM#4SMExw*_L zxhQzW^;WyVJF0!e5|()}-Gexxs@8wJIjqmoDL|72VK0sIJQcJWnR^NRT7qrm7qiKL zMX80Xgit{EBpM$z9Q*iXviV$B2!#*Qh+h(yO!_M%xr@@kCNxl|0l$Kn@-2mFA?yK! zXv0@XLP`qX=ekF9Vt)QyEzsXz@Z{7cX9yBi7WiFWU+g#NtBq%xHwM$?=54`o#e$vh zgrjirW#P7~z}1PpNLIKj=fo)9$TnjqKe&KkAy3%mBjC!fY{c)3$YaL%e{$x=P)>$g z{kPp|7fx6+#6Q4gLhC;P-~dD>6%fM2h0wP&gzZRs9md%QD8{@Z!@q&&hfnQ`5FwT|$&(6jK<-AVvt?ZtZFy8^)8S(8k>f4t4`*GGhv zKb&p+rJS<#k3?Qv4GO#xxg);)T-RmyV%n{)bxE8ZZ?QID!~l&v`*58QV4r5{4{(Eh z@m3*6Uhdayp+YaC_@&hR%nt~Dzr9Pe(k|XBhyv?VVOl7z*s6bpEbh#~>IB*-L`ldx zpj?Ac38|zk0d2CN6hG{i*gH8aE}0`C(Ks)V?UacxE7kiQm7W4lR7G=0;E5N|WEy48_QYh}_NYlS?p>g;KNgZg!|68jPT?wwuo zE>%&E?2N%QBZwaD@`{_Wzf2nOWs*SuGF^OCKP2)z8@5?p1d1{~cCh&!Y!P{7;Xu+0 zkk@b4&v2>)8_=%c0b0CGSvFJu1N}FtE_bvj3~{MIEuNUB3bytIAbLtA=^w_5csT|AECygxJWA0#bY zJ)K2mBnLk_tPE+qJ+kEZa(ZMSrp{M8Y^Y3pxbJi2v6hJubprgH(~;7eiktZX33vtT zHdc?Rh0#kDV&X(~GCyaU>+OhLC;=g5^J?tT4}J#RTY$_~-B|;GFxJAF&AM>OFcUO1 zjuAnPHJXWf+us1Se0dvje@s>%u)=MgogomPLc}Pm;Zieb)#GVuhL4|8{Nu`HyQPM0 zXPG|+mUnXS9|{rTG{d}noZ*&?RdIm*XMJsohR}u67_e|mxcso86U9jLa)p-4hM?bU z&&!}X8dy?s(o}>B_>Le|*Px)-iPG8%{ZZo#;VeK5T)a3V}j z%rJ++ct>^!;u za?JxjzbD4R^ZA#mPB^ojuJNGxJ6842X&Jvu(8kWIj>8TeokDMJO98gTreM`t4cd{! zlz=!@Nd-H!MI`LX=m3!d?3jO;@V)<5pXLkw8$<4A#;yz=Vmz^Pb;u)7AD+&meU zHume4HWNxT6IZse+*OZjn0iF;!{wS|Jy*#6oGnue$b8*P|&yc=0C^j#49_ zMNZ={6crb5W*7HV!v%=p4KZE1Jh>E`0WwNJs!V3c;z77O0KMus>nBaW&IdJ`*fyX_z`9%zLu}A`c`vYPD>sgN#<( zj%F8l6JU!6vfhf4K-)mb%TvDbKECrDS58qWEN^sTmA4@_$7rx^V56!sK>uyi7f|pq z2QmE&8k>oLik+c#Z@3H67CayhJ4{4TR94#6yj5-&07is!tn3$vc!oQXNt-hJt8U)= zY}${MN>eK1?FEZ2y8!3;ixNB291uQ)S=u`uDH~%`a;BN>cM3C~vbuT81Ga@pdOZmH zCC@36cnnHGKu|P5D^FQKRO_IR1!(3Mk`lm7-E%Fl+q(C$tjKY#{7J;Ar4$^!?~SO%ZF~e8wmJOx)hzvnMwo!Gwsc> z+h=nKva*C>L?4mgY28Br2A0DXRCuQOuY`Yp27<+6lhpijbGJG{4;IL7cp*;N5< zwFaeEC{w~o0>W8o#zv1pl*x!bzgu}TKoCLf+n6n!@GeSDCeN3T0M^81Pv2|Q}i$13l z$vI2|5B{Pgk?JMc2U#jX{3MNaeJy}62(Fwa5N2S~Tv8LMB5B7UZ{NAh@$TbqZ79Fr z{mlORH_y`O;+V8R*PzunY3h>oN^?vQPqq1HK>Z~)qj(nk(rnrK!~G);uNx~t{wCO) z_jme`!aw+TK{tX4BCxCNpBl(HV{V=+yQqjzLZZfXYh{K$>6`M zNZ8xjJ&ZuJ-UI{R01l|NC=YXXe@n^df$p!(s6Iaz9Opjfgr*`&(R{r~|0DvQXycC9 ziHPon-dZcv2fH^GZ+Lz=h6K9S3tN}#@kaK6Vn(CP@`#hR_@V6`TbC}Ee+93ZcV!jR zC^wF4YB+xC2CNTT5a$C10!cg6lRNh+(@P`25VC-XEYlxfZ`15|LVH>YhPKy2)v8yiYmazGBzvV8~m6+l`jIY+yh^#4Jfg&|P6b#+lZCzj?bZPT`9 zX4F6w7yg<1zC7#Ln+L>wnFfT>wnZf6Hh^h2y73VBx*ab1Sl>+Tn(yrFZTpv}Wfy+t ziCg^tJ)G4<;BG**tj!F&=r{14UIh0^c)esXrzqhvXQEp?~nQy7T!SN zr&~TT5ddgVi(=}}@1IZwub8r{YRm#~t9r;v*kH7b<*`=Oe=@{ee?hcZgd@)iIPu@{XW4$pJ z^ZI|xLOVv2@xWbXpmeN6C7s|7Js}ie;Cm5t6TC^-5s7PEKD;_!-l11NJK@SL5?W*~ zq<~%imbVFTF}Oc*qb*3_nSq-V!T~jxt8;E`Ipo0^gv$5qigNhxx7E~Bg^wcdO6?Gr z>5$&4Ew(986AyM&zFKMkMj z1p4)zs`B>$z&)0XVQgP=*kTT_Xy+mp2&zG!)v2$QFO`>EaK6>`OqvbZv<^l%n0YY# z*KkDo;{i`5_^vwn8v$r-bt$^04Oh{X5ttv=sv6C3Xz)!B&zw%ytx41o@@VvmhaN;C z*`qq5V$z zaI{C6d~i@5u&gpd{>c_odd`J6tC)Fi>O@;dj3ZJ(b^tWiNIdr(RA@aQVfO4PVA$>v*ea5 z3QH}qGWpJBnz~ZxDedHm_FZQ>GNz;A79S{6SHjT2)l0V^;|#O< z8$X7;iA&?xOccptU}&f0#2qf_c3kips;s;$HX$P*HI*0bz}C(V@uOWOtpk~$#|hLF zdrgWikVu&q(u_mC~Od=XWEji$vt}o^HXxvp8>OM@!~r6 zA8tW|C)nc<8|=2Jy%@!(>F z1k19V_#?b69%ut$%( z_yE>l zM>+J$eac2-2Yw#@L8JLsWAV)ya^vNW2`fuZT*d*Jg?ndFHmJ3u{HL}7*E%7=(sr#F zTE;;8E9~UrEc8b^1r^ordHMNB;{w-EN5_PhgPCo>=o|!;GjP(y{!WT%X;^_KB(yqt zJdsJv1GI`Uw<&QcQ5RKcVob^7t);(zDJv;!4TH{CR=i&958xo@l9=_n!282Vm84t^ zAYI)vbE|V|inH1>BIDjy#qgDzGWyBYJw)Gqyk&pi$>Rg$u^ z69USkhh8JpPh6Ftu&}{@ccS&ms9kI!DzI<79#m&tb~!10VidrXlKO)LK0iJ-V-siA z4FyEfL3|kOZ8%A60z56;onxx)>w8Yp^?U;5_dyv_D9dV28{EYjrPaTRB4shJ~YyS`7!O3Y8vsBW7H zjR~<4|4_44i+S*;ETnhoktGVnzd4%f8dS+g67z(4$r61LaGPj;fn;(`iX|BVW!U?D z#n|~{yiF!hgA^*bn-L>!ZYi4E5Lu5b^PFgs2`d5^=6;Z1O2s*(*1G(1bk8ZH$th9N zbuuU|-VtHiB6*4r_%vBilu3my+df&3_VJU~Ns!z{g_&3;5KR;>zWbM@$nyHi3XB3x;3kdt|kFN`-gF7U9%1vyG*1*$7O>z|> z7N7Cl=(I9B+#h0*lq~1ny49|MTg_N^DWmAn3~_N3|3O82uuE9)o#sy+lFMc@9hQWA z;&yas=5=DCYB2NBfq7nGA&#%-wVvB!ff?(BkYAggSH$TuSNF6LipTSl{lkRT<;BG%Q$R=kdKH8 zP*B89X7>OQn94HrbCp`qjB>r-q~?L)y`(vKG@v|+^ExrfOi2pVTG~QbB%j$G^%n{0 zr^7b}N4jPxh2J;>l zk=UrM7~>mHK1Mh?r?oSQ&M0M5TEi&$ALuD@xJ?VY|Hl6AI|Nu0kU`a%W-{{L$RG@ zqWwiel(ODqtk+TUJcT+RK`MU)kZzOta_tgnvD3hlNG9bG1WTcRaVBl%6Tn$3oO_U4 zurv?7IFjd>QuV}$OcdQNjLc}Yhu7DKjXrT4)~oU2(W)u-blPr3e4au=5Hn9w_|gqomzyN^ z5bR#F2h&I!QU5HLlE2FLSyI7IaZ1iuxJkfFkNxg`{;_N{OChtfzTCB%;*WI4sDv|?y9I3LgkqNeN*9Rx((iq{{J!ePC;}FC z0?YW(z`)~!_4&NL%MXdoQ8ET~7Syq^Xt(3jcQ#Ax4^Mv-*ToX94#@dJEVQsplA-R* zOn0mHUcK5J?(5|oPo*g#?AheWe%aYriQ3o*G&eVA=aoXr0JachTT@fEa5vow%>-p5 zA`la`xV#hl<7nLjg+SsZ^((7k#!z5_RPJ2Qks(gWi1IwR6#aO2PlE*qB*@L;7ad8a zaw-(#pQ*cGtp}5*k6LW8CT}~L8Xs`vy`NK2gj{4+FET80xh5PBcWeIzup<)TCHR+I z97`F(=H7p6{N#XgboF;Z@=uv?B128Fr49;6?JTAI)VkZXX+Bn4`KOK#BKqk;Se%7j zyr^m5CRfp^?_Di6I$RCN8A-w+PeBOw+~A9%%&Pz+arP{8o-B`rZ_ic zBOo^oPt0pu%GfKVckyKM?VLr1WZMEfvPrFU`r*#EbP6cVrS0B{1dKsB_;0kSG%eK# zs1IT+sS*|uHIN&l0y+=8^bk^Yln*8o7=fk2V#o&RSOWLbCk6+W=9>-IbFy%jh@gw( zx&k*!FJ!M#lVz>1Rx%~pc0gaN89pp-(hcp@3L_43DbMLOBH1V;+5Y$o4efP~@4a`c z_-i24bf!`4>)SD|FQDG~(Bx{p{(+E?{;r+J>5gn@n0{fsojk_2BPTzx2Q@P#C4l}? zEd`c)Gm%<8vlEc(>YG~fB7mqp671SvNzl;^s%i*$({owz2njm@q3r7`r1`nIq^|C# zv5XEVZ*Kwqw*}FGp)q0zKV^YjZdzK}p!#T(YYFQ8jm8Ht3SAlhLMl{OyS5036+NG} ztjSh1Jf?$~rGhtcOt+zBQ>mD8o6|B4a#2X@#a5*Xoni`*JOLS*$5v|&W@>OSRdQ+y zOMq6B7cJtcd_eI3v;gpm!Cep=Lo71Cht-$nLRSyf6lW(ReZ_1{`CV$u(ey8+Jdk)j z9#7D~lVBC57bPQzjW*=+$nBO}55bYdv7p`~`wJRWKQzmkIGvwEl?r(swS-K})*;aW zyH&1@xqDRgxgb4LO7P+UQ4Fla;3=B0(v`e;3!{LJ+x3#vMB(oPe=ifLnnDp%lj8tL zaDq*r#L)80bXdS6Z8lA+XKPpWQm@@y$nI1Qo01-ft1FvyIVrw{0XImSCky>U$H8Kw zdS*xgiY~(>w;EOvgb56|luzqYLxL#J)s2irdQX(S*CNGA0|QwRYhW^s%RZL|6483~ zLTtlOswAK_fVPXSx&+U)8FssZ=L^OxZo3B1w8nG=QFf@ewJlJFXaDw@gchl%AdX78 zdt&O!aHA*_d$*D_#Zk%-S1O7@h+AXoJs9~bsav1tjC5zk)hKX**1l;+rBN$S%+In* z3>z+H2r{&~eIha8Xm$_4jRihR}T*b*lQyBH0CWmR3*Zx4U^E7EtBuEFaouu{25gIIhNMzc6#eeMhZra5xfFLMnx)WYDW74wR>Gp^$52i=y+mQ z`~?{h_5?Sl^2$tD=$rdZG!`vo2#+t*s5_uDE7*>`v3d6QQ_9-)5HVKCtH~U*iFg}1DWxLu> ze41+5`anGe;-c>i#p`!QXjvZ}%&#F2^Us8PTKIimL3i!xR*l+9ezQ#NC$Z|kL_oa$ z?fWuLRXvl4sE}qxUi_iMjIUNGMFG)zpIb$7Z{LWUtS-KLes*BH*n0v)Q-Vx^Xx*+BT6jp8Y*mz zAIlJ8lA*@Wks!pq?YHN8AVLgM=mn0CPm3Xv$m1-Olk^iSe9OI8SZ@Rl3qrzFjU$X{ zk+woWb1Fe1lSZKD4{H-=`Xc$PZnbqU)TMD=-i7TX1wn+5ADNw9T-f~tFE!aReeY=Z zkYs(IhxOk5vxR*n=0&nyv^@FVp5LgEKUU~{uZbw_=vYRikPtUMx#M9S*JKTH)k61;fev+ zEE-&$Hv&*y^Kx>~QCAuufs6)oYwNE0bz)%!u8+Pxw8_Yp-7A5P26mhD!xghS2diY&W9}zoc`Z6x@ zZkiRsqtraq7PyCs1#hI)-MT7Iea=Xcw(QS+-cv)Is%=+yrmY#ysqP<7uJqu>HOygi zJ#sFl6{ZYhS5-!xF$}ip6cU_lAb`Pb_cP>`qkwYis7Pxb(Mt8K5z~mN0an}v1BT0# zE6;qardqV*3wiaxnoc3)ci`k6Gt0Nj{)jt#eF?1M{Bq^^9mis8-a|Y?DdcrPoYCnE z2@%6r2=OhYHP97Krp@z3ijmaS??9ALq0z>lGfQlVuzo0El(aWK0zT}-LO6wFGeh{} zV>(n)x9InDe1PL$d_3ORNbig@P?K+4ty898u2=TYSEFXYjHxiiTzjzG!9Yst_%g-C z;@ACdhuDu`s~?s}{mir(?#0Qn3To8n$Z%mSmK}laXo753rK*a#fT8TfYEb+&*xoMK z7bE9Pr7|=`r%pBuxEe%cl!5!Xz*^0+FN>1VB$D>_qdV8k&(4NCWxE7}teYk^WV-pf0xB$~m za$3ruatwk+1SA+ccaGNXZ%ZYro(XjofbohX8fHczZg*wM1$|EGxlNx}>25_xIR~QkHQ^B}CEk5~3 z`IIEo{}Iw1kN=>-&%uBE4wdDq{gY<$LrEF~yy@S7{<8bGc{`xEW#8F%Z9P6$ zd{5d)OD|=JV-trQx$FKUJ{AR3$WL>B@*u9NQ70x<-p7$=+Qd2 z30DXiHfE_$EuVx)1UjuP zSUdsqPfYoXlPUoD;EwGaN$&nK-LyjF2`t@#skA`G&45&@s+ORGRL+`{9kQb0S1MUyS0M zDhrwtXK@Gpr%T1##AGZ<6&eQvlAmiKPWBU6+#K(q%R?FKrY$3t}dk zT%uWUjv$Tk+VNMW*wU`EQY5icp({TKOZ=CL@(_kWGeOGsya9a<^KOe6pkub0?OjO2 z9$zc6V_akVuKcIUXJGRH*b@NRZ+M!H59T%8G#_QdpJ4IhCH&-#%D5}&Rjkj7l$PoV z5Es$W@+#lI*XGBirjoNpx3~MmCnT`%YfEbnCWLWT*}Z>B@4)M})vTuor$kQxR%=vy z4|w#C<7S>6owKDSbgRUqa&zsrX+1H9Lf*7Zl)G$`4uu? zVYkCi#GF)ixZ9y+x@o=YI~3swV1RkuN|h&!htB!lxU z<*xwHc-J0ptNSTd*)7tg>;PM0kyL6f!1(Oakx8ely$QB9IJZpk<;R8yx&PIp8}FvN zZ(7(9boiz0QS|r5d22Vhn`LUMQxA6yJ_G)jsk9MwZCf-Qt+s>SnllXS}>?qc+S}Te}>>m~> z3u13E#SfG1w!<^p5qEMSKY*Wko3pdjLiU_!CtT|MNAGqgs%t^EmnKov?%Tb`#RAUw z9%m?3p7zLYeOEf#{YUq&Gl-2!fK|P;?8hCXf=+c9mq`|9Z@utlFqWg#X7C3OSf)Uo zcHVseH$HOW)y(U$$ujH9Yl(@WhRoZf&q-Q#9w-|SJS4w$mcr5E0x;Phl`QH91YcJv zVf|#vn=LBU7bkzl*lLSdDd3V^MCor({pYQN1y{}|7}%NeuSAYs7QdgYgwXe~6&8K} zPYQ$If;RAd1jTs6zpRoSgNh*iN@ zjx?=vt|EmqJSV>~y6qpac-UN4kl%<${J6W(yK7L@2K!kn32a^wq7KifrF^A$drNDs zkneE{+HOiGkPZ zO7okX8KIzDj5q)=YzOF_Y~-{Cq-_482j&!gTFU$)bM&j5grLtB!3wiwXfdFR{8WrP z5|+8C-gTTc+Sx|JX1z0GXa15eo}v6Bt0d0c;@VYzdx_us0C({^ka_NRDu^37V87 zn=*pj{-%eAdts53pCgvB&}^*Vuc%YhSp|xNgX->W2V_6%PBVQ>zfkzIC?|Rz$2uPI zq11Y*NmD0K;IKNf<1Q?_w`ztsg;XT^Q~v;;O`;o&~g5+SSR9G5)*d+LUtW z-8E1tYhkT}z{9p40Tvtsf|BKaGlft^0tt(en) zI^SLRt$0_{Z z5F ztBkybh>TQd#KJ^CZZEUOGqYRu>LCAyDds zB)m6|Rg^ehp%DXs3kU>DkY#MOB3sYacAM6Z9ZK2mVbI8#&WXlqBA?Xb~1X%2pBJjNvy zn#I*Tpw!ZnSPE&p;^N{07B`amA9oY;d97HYACMO3Pxn0;o(WuZb{^GQUn8|YEQA0|t~EXuI3KiwtLEEve7tk#@cf8vqsQ=!Ud`M|AVXsLeErM5yb$l+eO&Ty9_({0 zp@ERmLRPUid?j<<4yJ~0PYaXryHT0K@5PvG)Xrz|Dv8LtH~2l>D#60pq-}r=N*p-D zeN$q1+}t_mQhLVsfC124MI|K&Ol3@Ut<@i~Xg>YbZ{jDCH_cTqMoaThcU;CFfj@TO z5_fAx^o-8HlY2a0?Aka$A~Vx2cCVjzVn_DaTT>bLtY+|xXXTxHET@yft?rhgWMSis z+Jkf7WF3Xg-|$lar#4NCE!0Tw_i0R@u8_piJk2w@Mh8`G)?h_M`#RKTie$U6J+sLB zv|?{yF3YX0#jL2PU?`e2_5=@}Sk)Z=9#lC0=m8sQvTkWvd}3}I#}T!f@o?J8$ud9L z(FWUbd;00252Nm5jS$->O;PAO_Q@y8)n^mKXY`D9r8@^JWb^|gwpVFKovO3w7nlU$ z_bso0@G_y_i)wbhLSym9n~DZ>khEEF+WcFDPFI)6gX=@*eP@w)#$4Y4N&_#C8f&Eb zVcnd=H6Z&{)y0K#Wp#CtolRR$W=hX`*E(O?c%SoK7 z#~$zew-)dMC%F2Iuek=fS`VJZZyq!M`o`Ho@gC5b@{k!WZuXsF-^cjpL?(6so7uZ8 zZ?Et*tT$QJz*xp&w=o`+*2h2^x8U86P`sL+`ue%-4(~>W{2v}|%Y_=+FD1$qvR?;J zZ>6eWkbFhM%Jg#Q`)in+B^7;7_TN7Tvo5-HlEloRLV!q!i3KnqZ7dqki#{2xu{9M<>yw((EKvR%tqSavPjwwB$N-CC|K+qP}nwr#uTz3=h- z{$9t9w)c(ezOM6pofT{dOh7_G7x145~xhJGI1tn!% zul^?2G4GHd)+2RstHL9iI1* zJ?`#lze9SX=GN)KA3kdbv6+4S_r1l#J%|G~*C(0y+b(R~#@rZov)oQfqfZ*@g7`_o zEg7ds_SMh3Tf@!y&$EkfF`mN2nU*pg-ET2(w{W`Z0p*eNOcIRd8SF_LdsNxQHQ%Xs zr>&`Xqx;2oh}V51zP|rm81i-_eQu&BK1vvyC>u=q{02W%Aa)%wTVe7R^;Lk?2mCF< zQeULQScmGVm$<|HLwM)p_*hKcg#!T*!637OEH@+Tq#Ivnsh_df$6>kP{UzvB{L9~?w-5d@ zEpSv3v=P?cu06pxlTrEl!)y1k4tUJB{*>TU@yUH%UhZCy{P^*PCCIk_DEdtG7HO`3 z*xZcw>t({G)R1UXx2?@}(h6)JN4xq7bx`~{@9F`5tmE*f-#d+&44|SyK)f@wWESZn z=jLDj1%z-#;s|s!Ah)$OoLQ-Scy67Lov=LpDxZ0cn%$6i3%!?LVb{v|b>^}C9(3yR z%Uk57;AyV)%`<`^qwp0#7+m~%PLuh_-dUL5{$}O>URTE&R59~7|7479%ZLhY_zBjJP zqzeP)`XV3E5k5aYa&85Ld~#lhi}cxQ?_7+1zM(<%rNik#!+6c0?vNFb+mwBNF}oL? zXqbF8x42G33MxnT-{1l9ceuE|OE!>Ie441hn|XU&=t|B0^+KHW@gbjGo=4%SJN@28 z(DB1|NM0z$Yc<{{`hCv!&gbNb0IvgbhwMqxXSt!nW<3o4CWbt>m_n-KfzkzzF%p=eiGY%ic^@vM+BDS7q z`>EfiU*&UsWQk^74Pu$U?mcN(UIdnvJK0S{DR{BJw}agy;YfSW3yf`uEQlWXh`bnF z#BV(-7+>VCJmZ>pd~%0DT8TP*bbtAyrX5n@h(0N>7}bDn^Zmm9+vhi=1>kJB`t6hI zjJr@QZJ%Jpq{j6ao=j{RuzNxozN=<nO&+wXkj4QN9oCS zh!NC@O&^L!(=qut*lvD7JIR;@s&zq)_i@c!_2ER6$N~e(!l9GrCjh6!$cW5)*Go3~ zqOGtDP;Z|%)=k$p?b@%XfFRyrU>Kp_n%apqekh7+-SgwLSCf--(MZpHGB~EY%B0B7 z9HOHE9}99f<|ee6n>El}dGS*)zil9IrG+2*{bdf6h`o{ozGv6K#3eYDqwe%`&I=WC z`U(-+tv?1yqwyVZh{w!f69PM;dY*WWU*7l^%ekv#KTtk)07G`H_eD=2U?g@Tv0uJChqx-R(d-e(x2KW;B8^~q1~WW;zgVxsh` zuV@0iRO%ZxS6Z`BoUezk8!CzKH&d3bAplhx`Y16W_U z868>ALN^@QAK#o^nWkQEjO0{#|P$G&}2>WTu@FLwbOZ=j_tEIi0>ZjHVo{~`D> z`Ay0N83@x(GX9m|l;s?3UPgRQMmge7J_J&VK+@hIl@%oN$ z!^+;kkBh6g2oS&A#QfD#|E=45XT8N_t-n1eKT%II9J#cxImshf=`BYo(Dw4Hh|$7U zd=|Tn;r8{yz)3byanOM|S36 zZ@+mDc80Tq@8E^-LMp!ojAc2slLN-iyEHEFn3Ot5PofInhrBJ2#bU9kLRsu<524wc zp{jC+e^gvPv&}z3-UYR91d-NiYukGGTA5#pEhqf(miz$!a}f{rO<3p!DO7%Gr@_w0JMGOCbu`kuwY}{r<`x7;dZ%ivJ3)c9kt>_-u#rYcGUjbk54G&jFIo6 z8OYTFQr=IZ&fsD9k50YNfA0fNqfA;T^e+Sj+JVmYRmzdZ#deepQI_!3QA2wdlxqa% zbDr>Kcdb@0(NJJWAd%V{HZ04@=j8FBla2X|&UQ#7tnI}K*tfN65=o)p9_CRHL{mcCSv;gx|pp%tVtKf<+y)#|XOdI`}ymy}&zmyM_gGEB`?K*3+*lS!oS7Y8MhD(TPjgV+npY+@tCr* z1(pGugqBTPL5acGRPE#&LpGfCiqWfr!OW;1inAGdZJF8D0Q2Hl{<*yv7WqZo=#`j*sxEf@SjKfRvk8~1+=zDE&cnkncQnZ^iE>)YJ{$;$^Z`H&#Wo6Ul zW?rsVHFxHg)-7Pg@>+$@s9MML( zF=i;1*4`vE4eCp2&2pm~78zAjIcEp{v3vO{G%&eJAkH>V2EE9>7vfU@5&`!L$bY>g zfC=QZt%*PHmfq9Y4IuqKWR*t^G$|}B6_ZCMW*A2r6((Wq2!4yu3FYO}+1fQ1D0<)+ z>Id5lP0Tv7iitL$RN3fNduYyiW|}|x^B0g83ZGnG+z4qhw2#Od1)1`Akr|Xxd7v3SNpk^9 zkRD-AnZ!*w-8@Rx^DF`1dr_>*@P-85J86*0 zpr5Uv?rs-L0E2~gKks*F^5I{v@ zUag{`0^HOV>D)Xm_RqI&1U%ko6nWpj^#0-$UOQ;qD(6`sbH5TgJfz0j#T(Is&Bd1z zBYi3ty2?#+Rw z4*n^OizBgGv6@h^ny1e;;4Z(|*z}Hk4O&cp{oDanIgdXK^;uF8fDj--C|OEfbwx;@ z{&|bLWMi6Bl$(t2cLek@FOD(xQ7)Y9jnKh-X@Ee2*Kwb2w8o(;=RM3In;zE+q=+#W z%f2(KZUM~U`i@@$HUS=H1^db;7+-m7u)MszaEAV_E^jH>KxzlbkX^W%(&A!ZHyy!p z9~EH)-|qoXxl(B|GU3CM5sqWkJ&?T;#&;S<8hUYEUA`NnJQMo)`FMK=XCq0G*gSi{ z_&OTv>Zqi#^xjG?vivvb8{`ku&mg%S0S6X{6P>rJAwCVuPN7T(O|Z-RQX`eqCphj% zwaPXZsM=D@7<@qzMmPFsv%b1xqkS+U!xQ#V8pd?YqIKQfyl;A%{$@ZQf^$dWAk>rf z-vD)L=SPDO@J2G}uNwT!%}aJsx}-<#_^Xu*d&R?`#H?`kLIwDaw$ilb<$W+k2^#H5 zL9e8!CP$g85Xo87{~FDyoervjoPQGhxhUhm5F@L{szZqQ+&Q=-Jbq+Y1@gvGK+yz> z%RMD|W519A39&c=yl-?C|2~Ik8OL0ugesYhE&w_qkW)GoQd*yy56sZ2jd%M zCnd7?`sUXIi*PHhkl7)^PBk+2D~^(?pnGl(7XS<*xUSzUC1^Bx!hwUonpkKZHv>qx z-lwpyrSH`gii=fVVY4<7s)~SAu}g61B}Gp{c!(!9$}S0_bI;D5dnu@Fihk(3fmg#^sh?1-wlQIRKqw|Zt zhbEDSzhkbG2|R8No(ll7%XBB@)asJ8&WPYittNH-Te{dF@KI*>Z|hVSm7*q?%QIUl z5(0PKQ;*1F-_P1|>;B2G6*tz#Tiu7O zqUf#{e5WBc10Wjpw0{F)nQo;Cl#Y}JF>YJ^r;>OpMR>$r_W8LE(83C^+hHlzgX>xfwQoZ#u zwFNr*dc`!TQHPBUF~R|`j#BIT>6)^sZRro0;Rc<=e4Apnna7~c7fO*UW#}3>N)QF7?cRD(Y(xA6`a<3+rk|xiDgNSq?@V zuY|qfTV={Ll??f47L@+mnk1dS*NJNfNI{-efHWeiRH--opHOAJY$-zZ3w+eQu1{iz z9IdUs=wZB-vLj;dg8HVw0%PY|FIoqJ9%+oQtgt%Ix-1url!`p68W>je400hjNUlbZ zEA&0q9znOw6HBqCb6)m(C<%-$*@L@^Y6rd=ulQ1J7Ax^2^rKC3s<}ds>-V}JzccKn zF(pwMmR|^BoDJuVF1Hqb3rc-A<~K!#O$*u#^!)66`+U%*&0UB&HBaPwyR*4vQup+p z?IE5=DBJ0)e~Rlt+J}&?Z~)lsKaSF|>WHGIW`y)tbtXV=4=Ayg_{nK4!RqZ+AhU6} z+>XDDNGB#Hb{{u2a&AqDJ9keTQD?JIaUdTZX)gW~P9;SVz2KUS>zVknf*nk}9y_=; zwtS{!Cvtm&GPkuA)zbrmSjq4?r-6ii%*w8Y5Axwfl9qN#Q;O{pxxBB}aFu-3y&`KX9jJqN6*_r93F0jSzAt4}v*5zyv7`pFF-ix9tdk z**+dUTBv#TJgdrd0KzLMUjQeSQx0?roa+y>lyQF|9-c_|uaL{{4KHH>%DdvOB-M`Q z94MdA4>;%Nepg=euRDq88K~Z-5u#ca@X05a6S>Ov?5t*b;q1@RH>Yq9^mL&0jj4!h zzJWMCgZe%al)J5e=WX}njZ zMOse0M$4WGlNx7NNz@3{7 zsv!GitJX9}yu32m#sNA4x->6x)xPk?3^YyeKkleMb9NRMMms6PFT(?AlJclxrj|H;dkq2O=jHyI8%8F>P za|Me)e;_Pt^9m6L#5|p@zd@0bb~7>ZVsO}D?Q{@(`U|u@GcT`jUjjPmZz?L}HyXCq zmfh!k`UXqW)WE~1>IEQN|1(*%Hg$Y#iJMzl7|!V8;|zLHoYOY9v{e0(Mdy1W@; zS!^_<2eLdI_D`XJ@u%Se038Os=0ph$=<9hw0RZg5(b29CXP?M_a@9)@VB+1kvGx9P z-k*lQkOkyK+Oh2awRBy`s{{oebE-uvbHrV{WB(rx=uML9iZ2{mUCyI}#Pqm$Fk)z(19 zmfy>{X}`gDiy=9^UpI2o77@U_Tx5uPugG3<8Blsk*0SAPhce^Vhn1J^(}hN z2kK9Y?J`~s803}(QGw@dnox61q+iO6!22TqxXZj=VKJ8-4ty)WV?w&|C*7Ha{u*pG zM}aVS&0J@wIYeoUf06X&Vu z!HDI4lQX-dCA)kj!$`g{{M7#YJGD6V3$C>0a5qHzq1P6^(If+^YrP+~I;NmAK=g2E zE|IZQlC}|1;e_@V(4(|Zke*QsM42#16$2*R+v_SGKIk8vmB2e-&q}FZX=y#&C3=Ec z+;3w{`;##on&$MwGw>MHDP!no49NbvVd{85oy|`(Tr7Gz#e4gJXz=7L!0F)>!YFEE z2FUX7f1eZ%Kf!vnmF0|TEesOY>&Xjh`)r%rXOk3_76blSLcrPMu)8?ndN$FK$4bt5 z*%Q@hHh{Ibyv$Vjber_4u(Y)Iz6EGST_AN%Ou(St^el2P_zhiMg#bUM1|1%=P!p5G z=kNa;t-ij&rScvhF9oN3X?oe8ig+XNSBa#ARC6SDx=->{3W~z(mUsp!IXOxs(tY^& zuDp*YuBoZ;xCvw~x`NL}n+qA&9yA^v-r@$FMg}&20@(Ww*yi^=OwOOj1Zw3v+%g-E zhm&7VSDPRVvp&OXna3;)tW zj9_>L|H^vMv7f8(>qwjSUY-%408F4P=pfuKZ_`PS+LK#v9N}}F54upUE^pJk0;ul; zWZr-6+2YTQV}RmnqyGEf%$5#hGwJFp8#z)n&KH9k4<;Ure}c|TKzyXAb2=6dL80IY zC|KcN#iu324eAT?to#(L*aw#@1YA2MBPE5&+1F+6Zh zPrNu*Yyt9{bNf#w&kFrQO`q2#UUB~cy%|iJL{N>qARxla9er%kcys`P2iKMZEZ1B; zhs)0NmbD57>u2(1T&IL4$5|?4oN>TM$rh-eRrGp*y1oJab&lV{n|@oz0wS~zc0MW;`Vc+@vmPHQ7g6p0k40jpa3Kk zG?RYIKiVaq3*5tMP2f~M%HB}*_b}Wuz&9E7jsU!A0INsMMhO4j&;YS1K!NxEOypxd z2yh~>^}RoNczB5Yy#^ebqxd@VcIL#f_IG$j737;!x;%fA;(A)Uixj#?Hc6!Fi`W?e z_$L*R*!a7lVc?Gxv|o8SgNQieuZ9HI*ss&2#DH{L)JmJD#L~pvmp+9H>C)kDaeDc; zJaBH7gbanZrVY#h*1E3XmjDQe%MR5W? zL?&0R%1~u0fKg5FHj zoX0N~VRs-QPy1;NVOFY~zKcCd!8vgdb8iMj!O0uzLwGRkc8f<6s|G2@iY(qiiaZ4Cvf=DHO6pRR1@INhabnnuc!+5U$w zUvkR9?R0pCkU;ZIkFu^LLYv>0;~dFT2Ls|_zN)R`gM`uhyrpS3lzGUnfR#1pmXTd_ zeTouIr!+h3h5+KI*5WL89~mA79Jq{ECHnl(=;-LslpkkfE|=3`9Y(U=Z)XpU7wb0m zjz0u_K0rVbKmOQ$u~>-(SbLBG%5AU~#t_K$i>;N&$&txb||R z084Xqh-sv@7NMWMMXuTqj8YHAcLV0Xg}UlU*!X{)>R82o#Pp>UP8|+ ze?E?DX|Rbd87hf|;k3vvF9);0O#(0otUO*x#6;}=)19-kiGO?1n_guYfxgj|w{M`8nd0HB9X8GGCg_H_eG%Vu>vrQxC|#^TeAlk=H}QQ4^}=5Ybn_0 z)qQS`JMOb{^IMBoF~HlMC6$2is!QBsa(zDX<$R_8 zP$cs02O9sno<@@q+|C^(lh+R6Nus*Tb{&RJqkR%Z1^N4lUHc0d-m&EuR7$W-;*0e# zUF0=nA0J|!mUw?FNgCHZj)|P6CMd>_`w5L&YJb0TRn@u0mp%^HqlF2h$dr-906ZL= zPVtWy1g!Xd0OtG^;TG}o+=G}2$sQ18x89t;zycm$YBedTVVtp%5k|gGHiR~(D?YGc zIiy=>dw$9V6D*ZJZ_TQMV{`^2d=YD-D%Y)gK)iipdh+-#A{>%$LxX4A7~pK661}^- z%V}(c#E9i`9GabAMGb z>*uZ^s`B57>U#0T#$gc%G60esCZhc;tK#j3rWH?F>0<&>`z0K+xbpg*61dFFl7{pn z7D0^4bV)xl6$}ds9j-TXda~%^fKWL+Uqo9lASW$UUNMrt!!U) z_Dv=*MfnzkHe>B}#dNve9nLU>%2F#wd_I4P{gVB=A4S~_op`OWH+yfs`BD0`PmWd6 zC!8k~%Gq{tufbj?C}5nO-zaLIM4%2j-N^=}X&wDpZ1rKpwPYAL>Ad(N3Wrw$BKv1i zS*eeYmznDHp_~q6CpROaFsGf;lanKj2jsspUITs|K)SLSd1o~_H8m8i>i*)oJ(?62 zZtJ!*-3P?lm=Y}lo-`z7W%T~HwW)PKw;Q1 z2+0)efUANocG+EoV^4p&>9)Ur6`d~#Y{Ip)I$5lno_55+!!z3X&31WxEofzh|1UbJ z>GL;)TdInm+hkONt%Ze=+Z<*RJltCyfSYs85>z^HxR=Nu>VNKhXKEM|H9W-kCx&Q)xm^ zH?W4G<-#NYCBOne8u}NCXdvt|0JpX8xW6N?_TU4&yzJdg@oQ~Nq(`}yWE4ytrB>rL zbi=WQ5{%2^YI^Z&hJcFbq<2G#IA8Jpym5s^g|wajJHds@&?wlZa-K!sLyVUCI1fRiF%h_uihs5B_iEJ;D@-DhC`;ri(_BY?&M_AW!Hdp zNRHo817B9BKB?pc<@IW6eyr6q>r8_{zwcK-pI#QTaNF5Q;#7+nTU`wg)Mu#L_13@I z)7LA>7<4aAPmO+11CL$6Q~)!#&>H6yUQWp8><>2AZSa*Z43avgf%6R({!UR*F(M7w z+H7G+SVz!?6x6BjdVXZMblA)p_?*LxB@6$S7VQ%{Oe)thy(;`HF)?VW3ISkJ%vyQF zqyQ){m|TCA#{_m|LqlL(926b^m=`%mK5K<>S!+tq5&T<#>0lF5=4Zv$_egSwHsAPI zHM$)A+azRd3ZbnEFlh;3n{5l~!2^H5On7)*n;Wl21fWGV>1jLoBhst28sE>o4>>g? z>7zI?wV!k!8K~f}N1U$y=#yuk@sT6dVH6O5Z#mE~#QO(aspaJH!tNCD4?i1bpD&92 zN1ISu2|X*xY(mN~?e#Ax@8ZQ?lQrcS6gQYhexeC)iHnZ6d4P|x1P2aJ+PbkqDG~a6 zO;ZBu30MmH8vqo*A|#`sOu*b(3|h*|$}MJ}cVaUSJnwLo+6R#KFu;;E)1j2k>ro2m0Qo zrxW!b@DV+J@$3MBeC!V*6|-R>HkX&Dcj(Xrm>kRP9|w#lTQLJ?Rz?Q$Th9MjAp_f8 zIezxx{pBn7^2!z9<;T5)qv%_`SyB)8IA8=!hB7kbE&~ZA`+epzaR4GZ$I-(MIoX|i za%v=qU;a}*w|n@$AQrO0*ICXS+s~k#ix2^_?s>!q*T5b@E9XE-)Hx^{3I2(2;l>CS zz);}(H~%(7Xcr8KyiHc9yZEv^W81yAz>|5f2g{ZfqvnQ>Vlx^H9~3>h%0(6IMlXeD zNn@8}D&)~S#3gcJ&;>$ZA?$Okn)vlqJ`e$@%rLdmlld)qmM;yLDQX{_0rm(i%jtMSh`AjFargUsf#RZ0P=S9os?i>G)oWc^ z*`v#_TkU1brTcCgLJbN7-

MmwtHdBHChOqQM>?*yyKJI&>=opmn;+J7$ge>bgti zS^uC-xmzA|-lywg`=_MypSQENeml*l4H*Ig;&pop21ri}J3nXeY=6Mt-No9BSonZt zVYw0_*e$k!!&k-xrJ}9oEvS<;6yf1nHuSIt=ZvUrz&e$sE{2KPU_GA9{;b=Xa2VLM zwH)GoG$kA4*!6P49T(gG*FhN-VaJT-rMw1p0_-70r%iAzv>JnlN$$ka8^7fE?daWU z7#uflbWEArHY#V=pe~8o8bLIQ!ofDlIf_SKx=05^B@N~>M4i975Ww-=f@CK3X?IPE z$a2qStZ{$`;jgokX{h-ODU6#_I^9?oU@oeyjcaT>3H!@2)6K>Y}6z_P@w_E^?EN zcG>2tdv$?Gv{Q(<&Wq`JF+f5LOc;=XerO!SNG+?gVA9Bj#A{MSoa;&Hohk8P!ji&J zxBO2wS63R(IvIR*H_+x=+FBvk4_sMnWy7YgXjpVTS>+`f6R#OzER_NrNp7mV+r)6n z<10yClmCz@gha?uXh9`^12wV?rg?*EijaU&#JIKc^Z+o2BB{xO*X9+{Al+NiG50}L zR}J>!k^}}+S~gVhNm3yL z(S6jfh9b`xt0DOv9cg0=UnKqtHSC?Y6Ks^d&Bzz8{iytcKSDntU6tfQYMs z&?x6s08ub#cMZ2nqKM|Zq!{*Mvt-uPQOWf9MgOM+AK#FAqA=<-GEq5LZpche*(<=W zyby?w`@3tHWO98uLK?{Wd{CzI@E}#lMkWg>t#*5L;$6(8Xy? zh>zVmvAZXudE!pi)-uejh}z5qow`4IH#Tz8Kvn+pnFSK-meC63z7b$$Q=X=Y5?3Iu zodIngT-5q<*eXY*r`$icLS6tzhTGla5vgT_RxOqe&AVZS0a)L!d01kMwwmT2hSv35_Eh z`{!OT*L5AV1A84k%PjA&Y8>X~1GY~Iw3(b2_*46cq=?W@)N^~X=Um?;vQ<`zX#vjQ z6SllZQXVj1rtk$rFL@9Zpbh*Uig8NV#dL2ZiKF1xJ~|DcCvxJlHRC$bPz7B!kF(dq zlpUG(1hk_jT9xUnmpP`ZQpzEo2vmO)WYg3{T*(9-FZ(?;h^Z>U3}bWCpyk`^@ws%Rn~hYJ_b ziAdr@xJBOX-$Uz78w`re`5JF~=NGsp(QX!kU>3gylz27P-DZdOs%RiHm>&TF!0TO5 z%N_a{KiR0_^07I9#^xzhy9&} z;5o^1i;MpmE3Mck)jR1bx(%fn%_*Ed_M3Inu*URq@C0*(@8jf#POW6VFbLQe~xBH=$0__ua`oa7nkhBUCvcbCA^~uX8Fq*?uf*RygthE z={8Q75$!KE3JRY&&!5m>h~_l|4fMGrxnW|#Tgig3n#$!qWEYR$#p9c~IB;h-)%Yb< zRAljc=vl}=EqL32QUrc)qLVh(;6=e3et)HLn?K`ea?fI1kS0!@9GIKp+fD7|E~qkH zY*Bl-giwCBM>#wp1`#%!Uj@%AW*@JPF+XMgcJW9WW9K2IrCe zGj~es4uM&^x65OiZJ(r;EFPhE-Rp>WDd|p!*SxSy0n_+iJeNmNPQicyuaaOMA7D|I z=QqA!6oJJ-bz&CP7FlWoVi+GCo)9*Mci75G;)mNr>aPsy7zQZ=I{hCd!+~;h9i#1` zkHaYdzy`B*)KveFA~558EL_}D7gsNAbr21;NP6glff3Y7@fCmWWkR?|0eie-8D7?@ zPie-4RfU-rLJHyK#m#EV#GEn#v6WeXr*_Gc?ud0qe{~->)Eq`WvPTsOeHd&LfG#3f z_@gOJ!7Tml#z&}aTJT7p_Kc;K3hXOG1aL#pKR7S{*pY*OA(x-;1N2PEX+<^bYar$oH_v%IZf|p> z6cX@%eh>P7M!yy;@Hgu9ge?)>Ah58dwW&8DnwJ~|EG(fwhXy(k;KD6OsT(d(1R6pg z(e?x@ya(0D(N~8E!Ds<`%qeTa2628Zr)&Nywi`Fd3_@N=I1h}EFp5b+8I;bH1q_P+ z4=@>D!8L$;SF#$hA4nAhB>FMS3>bzD!^{5$04Jjn@h!lUAc6M!%FCA7{|ljg#shB= zXN9Ubnc#O17XFcN2*Oe&=2~E^iG~~npy$+q7tZLMIBeaj3>N~|kztXFBM$UjGFO>rce zBc%VL^(U2rlJ>P7jC_9~yD%T|;fphjyq9%?*Rbr*CSGEoO>Y<(g6WN3FGWgGj0WNd zk(8Aq*iof*@#3rRi_#+ofB6f(_k-muhJpE#KitXlY$xq^~^BCTyDH~yQ!<`F&|tz#WD7R>{Hh|ceGo1;bY#E1V% zI%Xa}(Fg^N^0KbeeEH%d>%N7hkU^j=2+@wJ!3>APJa6p?xNEB%G|8J3_5CWCcajbs zoU-UN0OG))JjA~bRttN@tBkQu`GB&zM?`-AUgBeb!nHT{`1pg}{RO&`eHOJOfH1Rc z=uCCj%mTeZWn(UK0WC6MJqXhFx4h%w(%ei?Mzr)&D_{LIK6}1##iv+|xM(ZyxHyop z4d1KRlr9=T#Rl2qxq3U%zq_5W0y?BiU?hZNX(62(b<~_BFc~ELRP;s3Hb)zDew9uY zN6nh?54gq3hZOJr>^kIuIes=FVx#$KzrsO$lawm2FCkYcIF%MCdr~om*vMj_0eFU; zjZM!$i@<>32Poa+Ueeqm0>MjB8LgWg*lRS3lCox>=9{29WyF1A6CeXgr!89I(oyF* zUxq3EhRDeO@~2alz+7=P>o-ghhgIWx5t24`{vMe>^W@be$*C6`iC7M{xQj|!XXe)m zviH_Sr@bc-cX1=MCf0$-K|wCGqP5ivzIYZW!p1Qd{@e(;Y(BxvgL9&ogLqPvVgaz5 zx_E0i0g5IG@GGBkr_#_P7@;g7&V6z3)zD6$uy$G4I_a3t+36UjhTb;9eyFc z7LW(z;-w@#D6?*1YhIBsY)}PcZyA~Jvp}gT6{$dhs5V*i>SHO^^tN^b%F>`_1kElNoCjiTiL>kzQ;m~Ud7I+Yc-XbtQrv%IZ9}7Dhq3q z-|un1k9E?Y!oo1kqBC#D1cXP2ZN)Ap>o0ohUOz8fs!sgAxITZ0f&iJf4iki<#mG&LLwB=&^W9W@@#EGMMp=(#$JhPu7d%kPDcyaHTzLt zfUx$CPtL(y%!m$u#S3-M6tF!tlXbv~!=AvqihY7mL33 z!*d6r{I<60Fy{?!>5?fR#}>D-MUpiAywDiNs6=>2!?L7-uA!4v($C#?A9UGgIa&WK zKShN)_@JQ%RvjR7&E)6Qn;J6*S)SeeE$=p(9}?q!6cb#0gXE!D7- z!YMI-@%9F$GI4S`Mc0L`%)m`QcCHmoYcBR}zxnH5`sdK9Sn8CX^sF4 zXd#dl?e|#x{I5{p0IA_25o|%NY_RX4;{k)0*ZPBeh6rS@rJ#T}x0kLqx$P_W=j|yS zM|F@SHUt;8oq-oj^BXD>I-D-w;uz@CwS$B=ttLtIE2kFEoL<0#Wd+GNN3g@s=ai&k zYZ{QJPMP0kgfWV4ndoLY8|+d8(Kt~)w(Qrw$O=^~mUQlH-z?e_J)JHFog<6B6V*P6 zd*tu8ocDSd3m86MAM}tw9O_Q>OBGH(U@O$Ib3Cjeqs*{L1V(?1TdkxfxhYL)ZA(Z~ zj1Xi6{NPsDZAo-?9Rl0jKU$x6M;xMXZL7wSC3|yaq9;ztj<%8Q{Z1d%2HG@%^_6R#XX97>``6yzt~uYB{IwT)jkKL1T}MbNhZDJ$ulYpCG`SW7 z1!B|1VjBd!D~({f5oRMvmy?epKl8fO;vFfzbJkM8WqCV&1%dOfhzMa_Nxvu;&zMMI zg|vZfdPOU?YB&&;kp+Y!nKsQHl16^`v|n-s+r}_M&Wn;K?oIztnCD{;Utq)*R?HS$ zti)zs5H(&~CwH|Ev>ThI`MFKnIi^OqFy)U|DGf^H>;!UPeM5&W%~@~ZQY?lf;W#UO zkXP5rKG|w^i`@fl10q;R;y)2t)g7O}uV4=cLP9N28ta(Jp}!HWZ)*OvTSBX^+{O8k z{p#4~CU$Wd!`8BOVEPjDH9l1UP}!Lq1v0g*Jw6uHc|=6EC(#E1TM)0|!u~U~yncYb zH*`0WZ9rIpo8nRb@$t?xU@6UuzQX2Dtr|b2b~VmuAUH3I)wvW5a4&~55sS5pN>{Tg@bVq4EWu@E4KbD z2UF2-5Z1yOSAqS5wHG9;9lf<>%D3FQcgzwWuU(|JW8}gTHZ6CL+!dvE!JJ4V(fQ-y zPb}D`R2*K^nS`+E=<0UhFRWW>v2S%H++snOYpwJen0QvV7^gsxtS|^(q6qKQ^o12( zMiWUkH+G8{Uce7MRkN(D&txb55eJ+i|<9~T2~BXYMXl!S{&Nc7t=e@Qn;`I2n#EjNR=Is{Yq_F zk&>cA&x2J3lV#hQ18yV7&$=RE`v=BMFc0v~BG>bia0av3vJNGPZiMA@@M7BKz{ko$ z+;9AzVtEdYxlqPRnCZ)DzY9rr%vBKhgIf%N)OH^4>@qy!1^t20KRB;v#e`ytdJ$4_ zt__u_dp1I=ZTxfzR`&+QAnj*LvHMdS?5)v(xx)+0&xYbSwks{&`#%j% zzySzJnfBn<-5Owz@oPZ@2odl&!+*z&gGEH@FV|gBQ27D(@^B$$B*Ysp{8`2WvXgM9 zPRlhO@>=m$sIC&GW5s>)vjtJG*+t*=4UVG3730Z0**w)`smnCblbOnZUFU-HHet#p z+CW|~*ikYXyR*BFK?=rH1$Jh36zGaHAYUjJsy?Y^>#*xI2CP0Rpmn7k@;hpNYhvH#TRdtVhKeO3!|d(m;hkKm1Z*#%)y~z@ z9=nd!=>Xx$b|nQ%x8v}>*mMb4k(8f2K9%=Jy-2}!i1p68!!{UW>2cRV!pa}iv#0^* z-0m4K+g|?f)E&xBxT5}I1QLT^k5I&e~sp!z<`L9qOJx`|bHM%*0Y6Xsdc^wDR;I*z8hhmNXvFH8; zW&g;^Lr6=LR7&9OCZZ;@$CtQlIb<{wwvjVQFL6E^s0p(m2pPTL(krk@iI*Uv7MVIN zY<~sksR-*_P9&rSX0%YHk1v_rfA-DWtqODqu8E>nCvgpnqe?QkEqRp4ysi%KRU%4P({&S+grFPKmnk&G0n# zkD_cRz9kY7*(XVb^vH79x8}j)lf_*AI5#!^ZT7H;|1W0Pm|pdkemn6}-q z17i7o{dQorkcb;hC4wf-*A&Q#hDld{j&GUZUFsaVP zi9u^>N)xGRm@@~k$ZFwjEJ0FW1*F{<3wnL|h2#V>x)CJp#s%vOupXC|qNwIKFK4L{ zVxmr#_<$?HX1H$*>$h)NcR92eYV0BQD7I_sAc$>4$-*euS}pkh%4?= zSBa0DySD=fY;shYNusycZe-0-f-g7s$uV*#^4hXC)WraQDq&NX;^WJ!b~w=nu(?9> z`ByZfTr3%?tVfB8O z8VM%-QY+10-;&oTqXvFX&H)S9iOBF1UZp%phc$HL{e0r`;h`teCgtjiDr3hF=DaH~ zTe_5KzvE*?fUI+)`4&2!i2=q}TPUoa1KMVKqoO6WB8BdndttzL8M4x?HqOTBLV zt0FTWw2!P%k8EB}aIKC@EpmzNRN{PHy*gqV0x=iZ^MF?(&2sgchvu!mJpOu7TR4im zohOG&iLlbB=7`Weq_0&!8|RGT1d?>Hl%=vtb=RG`_6N?ozy@TV*8lPJmQitaP1kPY z1c%@nB)9~J;7)Ld;O_1T?rt}d;O-vW-GaN*xJ%;>-_CQ!d;Y^1(7X3qRdZgmD#+sA z{L@re9A+)?g@L7HhatX4m2CI^n4?W;HW8lTjc3y5C4RPUG-lw&!LP)N+!Xqek38hy z`lm0di#J|?W<)htV@Fhz@=eLCn##AKp7NgbcPIbvk33{j&0Me`ej5` z4v*hW2u9;qu~UOBt{Q(cMyliv-m)__d*=}(jJ!GOUqnv+boew#gV?oZ`TX_Ek6!K; z7zBT?X^2bQZ27+yEdqM)gpvlbjAsBmD6-5i{ zg_Q3jHA3DL&T)6chH7aIrEGx1PVAcp`%ZEjB^|nV*3m@)kQ<7IIh!O2Eht6K^{^G~ z-q+>%UaQ0a_5EG{inDbfZv<8AzaG@z9nXkP&Atn2p_EKG&3r#T-wjys+1BdHE~mkC zGZlVYB{;BlAkr^o6fG&{9!-*lpf-|hr3ho?&E?fU{4`?8XV0-zPzCZ%>3K}69lv~4 zZGzWN9m6MgwpMx56E=xV+n`z4M}V@AX5Qe~s;8|%vqp#qCDn7-w#B2@rg1k*(bFm=NPhtwp;;ce zdAb`dWZ!mSp1OQ`Ks#^U{#`Y&F4K(%BRdFT=31UmHlI|=>-7^7`l4{*jN$s5X|x1A zMAVF2l)wG5JjSDUJn~sIF<7sN8<^3?#+i{BVfPEfvs}{U=MS}6$W8w#ab)xSJodB# zWzFUO3=th!57&Gb1TizBt_!AmN^G)W*$J5AT*A#fj{ih9{%)#+n%}~cl!dOCl|Is1 zPYXg5hTMIK)-98Sbh;sSnlWW~F02o~Tr{Yb;M{GVCnYc8*m%O2{|QX_ju5%QGp#Y+ z%-bYY%+}%A(#lfzeJQ0GxI}gCYJxd%V4&Oe)#WPkJ*hpAXQ20soOQN&N6n)3M`$;y z+X7EI&KT((O_Hp_B8Wkqx{Mt)89SgA@gUFA7yc6eRg+Y>Vbm=oI-S3*ckuq;!wbWZ zFWlnPTf(AufgIlAPNLr6FqTF`S$9~pir5gMNdnk1uDfu^b_5}OkzhL~9BWUk{5LZ? zzgg~y9JOe?zmvIAjJ=AB=OXnU{?l=k)=|v4_!k*ArhZ_Zcpe(#>_5_$@^7m)#TXYv z!G2?46Ib^#pzY$wUdbhGS5b!jtL5W+5ajshGD8k2k35o?K3aa+=^5)!%pH2GGF4LE zVL5!g+8w!o5Hws`%vwrf)KtZtTECFX^RgAZyia59Rpe z_z|)`yBe02B?t@u1SHI{^s}-gi`l=+jO@qu0WGNY#NG3B+_ep`F6QH}0i@Jav3H~A zI$f<^phR$LuEk~$&AU{apsw>*kcHWVF~G}zKl}`9s}nJ`%GJBPepBMAdU_=@0H=Fu zKWG=xQjrr!X%20962(O(5lG#xt{1qrY3a>i!URo{0bauPoAF=){ydGK#>Fn*lDNXp z=+aV`uQ;m&LdBF#QJ(ARKIb^Q2G^-04sHRXpfrt2ZyPVq6Br(s^n%C;?Xi3X%a0 zJ;4`U+NC15$;`Tf8?c?fi0=3^f;JJ!P^5<-iW1p9h(lSVO0o+6Jkk|ftDSjs@?#av5 zb!kiz57UiTF0y(8rpEdsmPb7e>g+Nm(g+z`@-|K3Y@pTndug?UN^Dcvn>oTz!y-6Z z@NXz|Q<0nf`O@nQt2+;{fBwF((mYjNx9;d>jOPDXfM|H2Uv(fo8uD_}#N68(vYuuX z@8jm7AM!dNBFBil9KKU4ka|>PP%l&3(KX{1>{tubxyt+Q$^#y6T@FgAJ-i|eSqSUc z#%xz}3Yf=yYC>&dvqn=*Qz`5z4D~f1{o;qt?<4!Q_tg#g7uM!uxvbRI$%KV}aa@Ae z$2OR5sGD%9r2v@uMNj+ZAj#RD-^L$hH)I>Va@#Rt#C#r>S30E8IkFP{nhgRIFEk8m zEU?q<6{YS%EvX6Tsh`4-!^kyDm-LeZ8=K8L;eor}d)-NZsrcXhmMnv#kWJSQ#D&l! z)R0Ky5Rz2}-a6kq+Z>fYz+D+S+TazPlI)a$Eb%0kMpgs$rcQT28XHE zvKv>ZrUnVGmU@4?iFKfWietv_HSNVR6myuu8*I&h0g+}ltv}$3Z!SD+Sb`pSyE5xO z5K&;EUM;R<cnOqE=!yYS{Kw0>rW@t~^o?`pdY`vn||AMqM>D`9b5^D79qx%S(d zd&i?iXGg~!g4sR@R&@P6j#5%%naA5oGvhFH0C^rPeGx2agLcpqBpuQ1GW;at^^UJE z_#N3mk(+oWBe*1ofDra4__$3H@@t1P9Q}6iHT^#f%pBx0?Lp{RfxkS1)0|v^i}X=T z+K)8l9;p==(4}p`SnZze@Ww5X(>Y2UU5OeEw?-}4e$8*F&+c!Yx6BW1L>96@SN*L8 z+e#6{L(=;0^!$oE1Dk4#g6xq4^B-CQ28%|9RFfxc*D^32H+t+-vaEXZ&sKtD36gMm z<1EL$56`nRa>uI@-%*L!$H*a+a=V`h=g|+pJx_ z#jK-{uh$usjxH7)(&d@55us{YA(Z0}3!#;_2UgFwjc{*I^as|3N<3klg$N`XK3XjF z!s?yoJy3l#%I5rE3XH`a#f4MjknsQi`?hSYC?ntK}EdfgWdGncakjdg-Ux zh)iJFN>7J>U!f@M-(+w1pKk&RaN`Ms!%@N-sVEt!g%Q-;u*quo`H%R(d`}M4;|KaquuPw!8@+vpG=w&Eu%_xUN>V zHu%KY+ZTRU+>pD*R|ghS50wN%8yO0a%)W;nL)P3Qa!D9$~7 z1Sgp1dp7l7PXQkYlFoJX>!&upgm9n(2LF$9{G=F>FI;27l=Kf$-!&(wNx6tB$3Ax^ z2m||s<{#>7lSohml4^0!nHMVeYWr0?t>T)vLAnL;TeG1m((^KnXxY^mZF0H2EoJt^ z%vOCH$!(Us|_LmGz=4~;H+Lv(?L)%m} zD7uF^?1(aF@&;NL7AKmsOD)fv>bTkB7njV@fw!&;^8%Ovh!YOE>su(n*65E3aIwZ2 ztsvLNP}KC$pqfiU{9$ryiF~izPce^29+}gyb!qEk#uyU7H0&_S_D?st7|z2TR6J)X)xJ?luUW@l1Pks6kGO8WIh{P}0PZW199fFt5=UH1I^s#%H9&5W} zWmF3XH>%_EyE*D)bAMRj!#W;L_qz`_*-BdA=~DMmxX)84u~jMPwFuBcGZC*LtjD}} zANrlZxiQvn}cJ z^h?I-Jt>ZkE76?>emEhSx3lVNdYLVOD*I`{fO0;cVRxT@cyWJH^@)XwFl=UVg(=6X z0;dcf&UWVn#ezS*3C^igWY9fC0EkaCDhk6%l&`1#?n8q%=g!k-z~Z1-n?--za@t(p z@<>KoV7afa5&e-GfO+be$xvW>Q(m(f1Kh=l)fx8H5^<*3_eE7{cp#dZn+AvDPbsC4 z?tLoLp<^N4kBFZiHbp-Mn>c%Wd3@a#jV?C&6CHBul|%=633@7DBFyZyHu$|NStz4{ zcr7{l$$m7h@4THBqDxJ2M|a#(QwLSdcS1}GD)tEOcKC|%5GU`^muS%z_7&FOZ&p95 z$y!DUBemaJmT7J{`|EKC&$Sb0KLu~T;0RrK>TC#G`JvKnVdOPq`QgZE4A*#w{W+gg z-IEjMCb#VDnhWlXzaG@4bpv5>Cogh94uWfMd9{ROu*uNfxT8y*&x9FJGhY0<&kwc1 zVAyRIvWppq-b^B;)-2Pa2OzG!S>Eh6C)~y76(_~N^rsP{9FGJk@ZFrwpPvL7f+1t5 z;{46XZ$x!l{dJ@dGC2bm)!C9wp7`LA)xb5w6O}5)Fz!f|C84UW*pGJeo?isW_)KOG z)_*gHJu)^#-y!2)@%{aj;IDSZ0Ix6V&}3S%!)ftqG5Yh}7}OmFfQJ zpj2t`@+QE0sVwEQt{c!Ej}LEu!Y7vn3ezD^imc^h?qmM3^8vOL*y2DYt60bAFZE}E za)iaSRH)DW(i^B$J}l*ZMbgXfYo_E?y!aaQQd+7Lj2AoqX$%a5?jS2-n)8+yt`b6M zpl>Di&4=u+GSVoAevz>_0C_+7*W%nu>J_k>|F2Pj^G{TvMe_F6 zg~<~mz(!)_=g-S$P((-X9~$Z%82Fi!QWy>NmMJp@cCjwXQz)t0BMN2fdgc#SQt*0f^N%-`>MT_Pkx^D0PKoU)zEx`|r>T zTeYJg|2aT8j2P*t1#aG04B#$j>0KSqG?NjRpV4FNRZnqStg1D_g;LmLCZSfj)HRW% zUxfkb3oON42TIyTDM)Aw|JK*R5*8*dMeXxBy9-u zMJm3v=IGbwU5K5y@{Pez0E6Vg9FPH|3qqR(KLIAODmDF|I+$j z82f@z98@H+dydL_+@I?+TAujGDg0O63ssT+%L(XvNCP&w>`|8o0}tlcY>o*&zD*UCv4irogg%ZkrI_bB;i)xYul8a zW((;^A(GPml_aIpzfpm|+RX5T3^5u$~80wP5%l%KKCBD@=BB zDPorgpJ(S&z7OM8b3dna80esl5F$5WZW}GbMOa_ke{JW4vf@qbP(JwFpo!1&k{jKC zIFmTx5cOv@PYyT|RTuh4?zGj=Tx%(`jsl(@wd|&GQ<5T(4&NG%DG;%9)C{Dm$p9W8 zRq*Rz=n_09<)^Vju(}th`$NH}l@fVny5ZjknZJRN?C3AT#3-#gf5aY)mN?g-B zsc>2(xHco2lSV^-xPeJls(aR->u7Lf<`L9ocj+_ePkKw8p&AdwH>=#P5$I|tVqQ%= zPjo4FWjH(AXke5@TuQ@<7Xlc+INd(*n9_fKVCGL`m$VS_byN#Qk4#gZWepC3i&#qI zRCdffm7XLA=k%5+NaCV20;20aM_E$cliWttIc`nPZD@`^MP3Nss&d>#?8?I460pE4b6y8DMDE-?k#?biduNZA4Uk$C+m_Sk+&}osQem~< z{3ZIAuXT2*+d31d1AUVVA6oZVhZh7l3hnM%>cTd6bl8tN2)?{9orXWn5i>8Q2utC%})WtVrx{6YqqxDWBkVtRLxK zG}pURsqXp3hsk}Q$YsqLgakZR_uJ3?53pbCZ@ws=EO!&PF%=5}qV`9B%>{6XB4Jfs zpIGF1Gjnl~A(FV)6|&e2>1}tq}^xPP8H%y;tvK2Xl9{Nh^u1&_qbnJ*ALV zD5I8CgtSOvRErpd@X6{>e359#-wAcw*Ac^hDEW7a_IigzTJWC> zO*|X^AnKWjdD5DYjHY~P2!|NI{9Sk|<0Nd?@kmwno^tqrgHSkL#ySo>l_w^;BYX23 zVeH40L%ck8Kj;o3sV9+C7y!zNrWn+E#m^VhX)V^I==EyQ6y^|#Gpic9TjJ1g%mCa< z|9q%TH5jQcR6RNtC#=-!|0FqSM7`hcK@?pqb9dX20bIZe?xkE+-RcxJJ=$jMz15F~ zr(LaSR}a6R;I5UsBs-myREvKk$Od#@d>h72mdXfyTE3w}8Q+#mv|vxIDnur;ledGt z{KMqv?Y18}H58`ywPOR5-K>&8CpJ`5S2;Pu4CR0nnM`5{|_#?Aie!yjaGmc5>^czCCWK2J<7MzrFXYmSOyIV^X`2TWBV{#@pbWg9Ky^(O`n+$<|RByWSfW-Of0{C;t3oKwT1#^RO zz~F2+MHmkMx#AWNY(HKN7$HS&{(7e6PnHuc%QKe#w2n`qg`UptpPLEq5F}*jrPasuoJk}iRiH_jUmp5TWDL#13n5S$;&4{c-s_L((^(@+yU5}uer@j=T4I;xd5R5dyZ z)D(Qz!irlC6$xF8-7~uf7`FROjS7s1nM_J+7D``34fMZ43r@ydmZi#A7@~r7Hz>s? zpNqd}Oa}&M3&6$|Nat^8y4=WR!$q3=v~2SOI|u&h;8BuHzbO-$ZmfWc&<021Fd=%| z!sZ@mX_kxvCI(jiokrU&_N1iU06HWxo%#InPpts;xIJ%lOl^y~ZV-2wEdHkK695UJ zHkm1{t^RIF^_r|*px02`TIko+n46de-Wvge1X;(9CX&iLkrWXzLlC|ye>^5e>{`5K zIL(nV+zcWE{)#als?&k>k1@)O9iAP@CrEu_u-y z|1=eaX?{Q7H=Lv--JT+OqRk!lMEH*+BoTUijmQ4mxN`>?xroshho_<96d{RqA9XYI zFfd7bJx5RjHUXhUe$>$RA^C@|hbWR&bD#G4JbEo8*fJQgFRL7!=Y!TCWPgzJdsaQHCi7t& zojLr6c6wc{6rAbPI9B;0r5$g1bU|kO!PpGxwMH(qEc@73J1$8FS*JLe${wI~ zZ~sw53Q$V?E$pbZ84f@_P&9;qDZGknMos&841j zz0Q*S*YR|hx4E^ocXjn6e-`qL3Kk|Ywxtq0(6c4sG&=$BnKo6*-0c>mP(#wsd8n1A zLIx#tm7)c8D9M@MV~6oL>mMU6sE(bK`+|jnS?C6Fg z*zN5kzv0EKQ?xr)AYlgR|05}t1B&LGSO-bh1fmwZu~GkK$Et}is&0M4`6|y{EeH)1 zU>l_SvBK^ZAMZBt@Va^z4zc-D)D5R^r(pHWDD}%|`}IZ`oHVbHVl_tPOn}odHFBr* zyBZ8|;4vi25DQ(R{xcHLBJbQYm$5@bLqG8`!0>O3^Tv=75DZKwTGaZU$ppi~{W)lD zy^5yq1(;IYTQ~a}32Xm6?Txmn;L%$j>A1V0p!7t{V{Vsb(+P;$_vePc#wmmEJM(Qd z^mFyS6u{FMN~XW@`5ql$@(ZKc4Nml84Hl2(M44K7W#c4yz!Gq1x~jTxzTsBr0?nXp zZk$|Uw=9lCH0l1v-24(jy8ZM(1=HB2`AAI$lp}@xAwEg3l-r^b)9E0SQ|i*k><@m- zX^Ab9EfetGN`A?gUxfhcft3G*WNw|&PjAeH9s!PLMz<$Y7*`yNrqx6eurI^zX705O z_!z=d4vEGn?(%$~PtB}lxzK?(1+W9W9dkdx1`D;Zj27IUcbA}C;Be*n2=hZ_4XI4c z{+Al-1%W2~lr|Ix)YxjPQR4(#(a3924qqh!9ZB}U-1YF=%UV~<&;OKrm2-kWvu_VK z?!D?gRF@Ae`R?i*ot(DDhH^3ipX9%RdH-YTcT0mUKHPPj`t za`kGbhL@e#Tl4ziO4>YCI|2ZaYdC!KT8Gi&xFa+M2thm}pZR@Ae6n$S*+0W4#GOM; zPPQjWo1D%tks9fC7W$k$ECNPXmWJ4k^k8&b#s&H2HDLK=9F_DjU4D-qnor+x>Sp!ABkn%&3g8QKFeuNK|ir%tbG=XN*QJ;~;RD`|h^S)L)t!KI=Mi=cP5`YhRQd=PN>!I%O$QEO+`T(8GYLy-F zH#Xp~qJwU)Xh*87Jj)SPUSVS6M>$#8tD`+lpB^0Sr>(9qBXTd43EAIwuP|u(FJMy* z#U)n~)GSIaVJVFmMV!N0kBqL8MuM}HVXxpHrO`iodcqNU9k_TKt@xDAxM_9x__NyP zmd4bD{P9MA@kb}=BdXrwOdR z+%`u+;O~*GPRHE9-%qDD-Ga`^SOy%wwnkHs_>((603chDPw?Xf<70%B-*IK`2}vf2 zQu$nXbYvhy92od2@bEAqJUl!G0l`S5kRnOd*sbE#G{G~=-Q)ha z;_CY#0o()vswOM_udT*lUE64dtk~mJruS3m*{AB0r+eb(NqVJ@cweUc>_@PW$zU}x z#%9cM6yhCZF!4JP=I&PIM>8Hx-<{W?-v>JSLQ#p;nrweN2>>Zn3oilmw4&(acZ>5W z`#%Hvm|_<$%4H!_1*o4vPq|=+@i}Nudnm8Wx6oZ~*Y*C#+WT4T$D%t7?Ps9b$3ujT zm-#F$Eo}%T@O6^g#P`PjKa`Ki1tS8njo$G47Ak&XR|$v{3bW5_gwHBILjT%GUm3)6 zEux`FO6!YNlt)F0bPR`V8*%X*8d7i;5}Bgr`dd^+_QcEWn8Tgh*`s`gNW+bg&D-F^ zFY?#PPKDN4wDT`>evN*q^j*1+Rt6V%Bakiw4bYB4v!5!31~q(bN3ZA`uaqwc;Ia>o zjzpZDulo7e_P{@HY$Cl?y%6kQlKfoC^Oh^Gb=!+(N9zFNY*jUjrTzStEvC*?x~nG10mXQm>&U+)^WUr<)S|2{#Y zsp_7C^eI0i5V+N?{PJm*^8H3M<{6DaB6%uY#b>uUen1Mr;%mhD(rus1^@+GjO)cvGSb&f;Bz#OuktiZO z3t(cbyo2LWA438ibv#GogHtGiU%<)JlPpd>O4^~~%i($Z5!~O5%Uiw0qb})3l#$7* zwh0zs(~<2P@(nkKpTLgno=mi2;OWPwMG^ygRb%ff3`y{9%U#{+i|g(zyHKevYe&y4 zO}1QBhM;NgiMNO5O$0#2s}R}OqfoFggPt`9K25F0KrOoLI~cyOmZAWnxMOo6HhMwD z!1;q~bE}+qQsVpg0!y|~T|mysD~xDk&+X-<(aTfa8K2bK_g9NaKkJw2Nb{R^FD&a8 zEF&Qv#6=~)JKyP-VqC);V6l~rfd|Fw;gKSou#jC#fT#!z>A3DBuDy2_!)iwSyBvvg z?ZM=KV64eS0`S};UD8wu4cgXzI{4;+Iq@ldZS&9Li278?{4AKo?lsG@a!?9&F=3Y| zFid5UBL0F?^F1>4?Z*3f63vAARf(ldEc*YclKOyaSsWHp_?&5X6s}J#(||%!LL=J>z8U5SzR_u;-qf&6pO=? zzxCbqvK#lt&BMQkDe$V=r{x1_r!6Lm+%y8$!GnMDWv$D_w{dwvMD z-|FqLl+6p>tK4`t*W%4f=^NGi>7z}Y!{dpmLDSJA5xZ}nA(?(Tb12Ou4tjC5RE0rK z?3>%JhqLh;=le_a?=A-P_7Pgi{}h=uYcDS5o`rOToI?of;nP<5$9)AKvt=5T{C28m zd!_dZL_%ti6ZCx3)(4isZAc44`Jf00&>`hEABjwfIts#7ov5%D*zXoZiDxi9mk z{F~r-r^00My{eRu433&i5^vZ0!fw{LtLu4-km;dV#-O`!ap@wK((()IZy zTFA

6tFcnl?G{&dEJA{iNc+=C=4T!RH{+!T4>LO#6B^A^WB)-rMD%nkjqZU^2mB zu=9+9T)&!Lvda}EuFy{Sr*MD4%SRhObD=Br%*RA;)kUZf70ybsJ8#XrFBz%e{@V}F z$G;S9ylE^Je!24BzARt6xa=```ZT`DA1Q{Vk99_Qz6l$!U?UL#4a9`rAG z;IOh|BV+)6X@wtzh&Zvsi?i|nVSOwth%&wNRj z?#W}_L9vRJx!!^Ny~UHNRngur+BqJTl@QrmpNgfU0M6R_57U>5XP39*alS-U#?u_2 z^W9yxYVSF}su%XF@fNfz2fOEh*GBot?5ac`nmTMtUzY=+S%dd$R9%m0Qon`kqu2C3 z1DCAodB5|Q;ZBZs0$p(_p{M<74Ke0yh)|(qQ1vRkqoh*U#jd^4a=**X30v)8)*aal z*wpW*--vJh;QWb!V{eXV^Z~=5b@#-~WC0 zZ}f`68fTXyZ}kWnKi@6wq`aa_x$d8!U$^=fm{nhoo(nW=%=d?G*uA_fPe9M|zcmH9 z-ukbLK@jt`a zSj-cPsb79o+o7az`Yzci!bHgH!>=Z^?T%jR=n?g18#`jIf{>o|@gG&M4ZAcQ@`n!8 z@abGEcwTAWv3LGKV>Haj=ZOenE@#MNciC0UP%wtQeSN96D{tI5KEhWD55=UyXw`6m!E|}_8HmA;x~J{$5cNnAEDpxjGJVpoOl~!&$6#>gV{IeXBTmFS9O;S zH=1kf!A)f>*Go2MT>Xev4*(wd!yJ_3m+kK1B<8G zzuRd7o#gLRoeCF&s|~-VIMyc7!Zd(E;GBW>u+>$5Dj4DJSj(bU2|h~>?J0i1kyHI{ zIj)%PQ{36}^HnkKb$^)q0wflX(!5w??#@Ipu`>qo3eR390gn$QT>Uuo) z%(~b`%{Em84H^zJU-hs?&s(30?4_18gG5#Kz2)=K*V5zJ&ubL&lZNHL- zS03}oJPX*rS@d~ZyF}H?{_$>=t~AZu&rp1fkNVeSb#`<7;Am_z=S4vQpCB~?ba1JQ zdXsI?`QiQd7+cm{_1!h_OEq1054&Wo-7V;aYQv#ix&3sp=v4tEG7t&u}PcxsCb%t@JkWwX7?!Vo2wg$M~@`Z#niRp ziSV+Vmb)4sgjR#%Ro!(Az%Yg;custO3=T1+nY>$a%UyY${aOK~JP1*8$L z2Rh(Bgri<^NuT5^P5^jpyOKt@UhNT2d^~dJ2RQ4>0Vw7RoV=6yYH~c3Pfw+*o0-X= z;*nu4*^@Ni-7ZV!p&``8T0wp&fXE5Tejew|sk_l-2ny!ZcfkO>Y7fBLx4HrD39l zgCF^3;tBUGW|Znvif8C9zfh zvEX@&PXK*UQ=wLs`fp9vnro($0Auw(weDyxt+{E>nRgcdmG<`TZfE^oNK``u{+!Q~ z#(n|)NDcOYpL>h93p=&WGu{6o1atI<*Mvo{^8#Kv|L#& zpJ7;g)>bBpGPGs!6VxL5@N^stYsnBahK#|-_?gjsV$Q&xaB|e|7p>xj-TxBn!q#Pv z!q}E6_9imC8&xgAL_V2-bA-4DOwpi78ggs+4S$LaA{zoWJDIXA*XKz}4MBRNs%uM5 zvfqJFM0IuCK$7K{uqp@c%F$}*6QJagqdG1AQh^aC5%K;JCab+Q=rS0T{$B#-j)QYB zGE^pzoUf%&2SA>{rt(W7R2!(x9c$E9eIe-ShOe*}dSROaHd|v&`U4kH>*Jnvt-$8= zm-RFqjQt-jU5c_tQr7})25gaFeLgt!EQTz-S{!oH427}US!dv}{ewVkEY`r-AKnbL z1!c|L+_=0AZDZ|IyvS0u2iT;Jg9Vyt%sy)b_cPwpF-5!p|0k7o)3KP<_^X*LZ>J^W z(86!*we(g(Z@d!{V;wg(F1F@;&?W#h;MsUxx*Jit?@4YqzVLWjJHezIqa}z(^nGTc zwIk^Mr~EWUK1-(Ob*2AcnP$x>#n_Buumf0+p(c;QzS;GM1_U4oBxiFZC|jYj8Mmk? zR;auKq-QX;%(QPhS^pcIlkwK|Bf)D;19)oukZ~8l0b&vTp{p5X)eV?&dBVKD+Z^=t zWkn2QScs1K70|%=&3>V`b#V9S=$+!01K_fylz*XC6{S$^8J{P}IkDnDph?g%5{2lS(SiAvjj))^Bf}%>Ykd>ny>{P-Jv6 zo(AHv6JB{5R9avTRx1itsWg(v*Y#A8M!FXHsRr`q*OiB6v(w8SRTtD&i@A}V(p`_6 zCMV!18_8p1RzO6$7L~Kc@P-lCs!-3^H6KqlE&mw3nV)CwiWd33?64@>5z;{4K=fY- zg%7xdIe-k@R|JCesA^8%Kf-yM^^;$13E0-!RcZ*$MFDm!K$`%O>U$tkZCN_OQNbxu zH~89j>+l62I+B3>Y}~RT(TRVWn(%6CYauuFS?K9B>vAmgMQ(tr1{gKu6WoaR#Z~5h zE_S}Cw4B!eh`(=&3}{rlz+9NriC(~Mqo0VjXA2>W5uhwNBMi{ZHMdcu@7y0aAphKp z{%xz1ab*F^;z>eJ-n06g?Ku`e4{`LX&dsH5$@C6&rdjF5tqc%CO|eRH1CTR%4q7Of zKA|l4C^N2F=kC*jJiDYryRxdn9OYsWxIUA!2u|73rDeR+2=<7oGS?ZmS;G%^27UMh>dhx zD_GWs#Q3KqV)FwE(Ws*szc8V}!h$-RDEAT5%b$XO36Z7R4&bE#G!k4+2WI z5B7?G#Y9Z8)_5m2;OrE_;0M;nX-}=YvzmbvI`;`G6mV9`4Wur~=gw_Po`3)mt9Pgm z)hfXkvfUOKY29=eV{E7v8*M2B5EE?WS;MwY;R;8UX|fQH`~Eo1GY-18vHsHKn=@En z)yiaKy%-co5wugldDf??5~t?4d5oO*w$IEiJq}frpiNlkhTFKUmi&3hz4K6?PU81~ z`vG7q2^=t%Bs^`xh?r5@kkh5vJQ$v1C*JMOsH6m%J^_Ejs@4$|)zGlX*%9`?Cp3t6 z$7UBR!ueJJE>w@13}>wFNp}QM=5X}oP(HwO99Ze@hc`eu7HWkCq@fMNi$f4EgDk>X zGBPrA@sokoH*se0VWvYpd|y4k-33Z&%~>~1HJwftT4?2r0eF0O9kd*Jc5zf7o$`-0DjH2N6>wF3OHh34Iy%MZ9Uq*%YqOPDRknI)iBgiXH@UHsY3z zfM{AjDygSG5*u>?pnz1jKqKt=8)H3d+SPD;WK-=q_LiRC@Zom_FW!9p`OXDZ(ZZJX z7p?_O+J!xalla!mZmbym7GfN00>46c{#Zx{qBC>kH`?H*v-J^JP$(ba&(h-DcdRf> z8D`)(*Wn;xYwLP+zTkL535I*SvOFY+;C?qenH>Q#g$MQ-B6XG^#XZ}>6^Li-J-(sD zn6^Zatq74loPv8W5xMFSxD-Xt~ltcNg5}VW8@vF_35D2JqGk_-X_5*g2m!Dy(y6%2!1GGYtDben4Q!( z_JX8?;kMlO7@)UbL2J1X+@qFMUxo5+>tNd?WiM#+MV5bK zh5}=a0uOr49teJRQH?_*cD2NIlaz0!;iQcx<3IWon5t@#ry=2#~>th8;aTS4OO@)m+`&%&<@+31~QQK>5Xh zgBMSV5h`%`9TyVVB8CCd7n&PFGV z{T~M*Dtw3-EnQ0_vk13}YT~~+A2lvRxDa9v=nO7=AXHB=92R$5ntRQB8b0|ru*3Oq zdDa3Pn03R@Q+Zh@pMp4(?{f>w(239rx<@sI{0g9%2lJxrld_b z;huU&kfI!}Dkqtn{@m=ZUhl+b6SE=IWKY@-t(FnI-&TI$<%03IDR8cT+4m_KPzeS% zkq9!VYPIHa5;A2Nl(l!~)!WMt4^~FBpc&Le-N-%VK>OWORoAa0LN1+X!z7_B@S2}i z^_|Rg5V}Y1CtVk|9CuLRr)=XCLW*OYZp-F&FuvhH99;s!((TORFnwks8m%jkq6YrP zS=wC}%Po~(qHXTMF_YpbG zfXS+_73u308>Tkao`j3U4L6gx?78GXQbFY4sm*}+KWGOlmOH1e>6npAvW ziM-={HNfd(5Qx1D(8>FTV@=$#5vytj-Kf~<;?u57Pzjv$R=UfZv@4SupPb$an|~g^ zGg~KF-)vYK({UP=CvKgxVUnLC#-LqpRM3kkNMmzJ5?&w>wqPAAe;B>ttY<0m4|1RW zq*E@K(gFqLy;@mnGRk!Ta@1*z-5EC51U)1z9}bC9B;@7Rei(}N3wjEbETEz>dVgCV zp7J_tR%V`bV|Ub3 zT#ZXSP)_cs`s_#r-3xVNkPQ}U5igV4AwQywkS0?^r`dyZ)@?Qk4^42sqJQOSQ3Ho@ zj*y3=a&0(-ziXChP|OQq+f$1RHZ?W|qIGU>Z!`Lpa0@5Ebj-0;lQXcyXEnH zC`S?6XhBb&A`@kaBh z?^nRJe2XgnJ&b0w6~D4S&Ga>43HFOCN_1{bS-OP36f7f}Va^jpwI)u!Q3*PF!GVd3 z+Min*YZJv!KO2Dg4Ja>@dYd5slEK&pHDePsHUMHL#sysvC2Wt^p<=}TC3ttyPI9`z z3msD!(Eop=eRWV=!Lu$FTo(7>?hZi~m*9{f!6gtNxCU7~$l@fpL(t#^32p%r+0uo}O>Izv=055RZ_FC~G+lR#YIOq;SvQzi8VZ3Eibk zu~gM-o{*S@ekx|VkE@s_>o9on$(Ba;c=Z)ed(=Dn-mY3z7d*U>K$%7b`Mj7}r+gHB z3bX{GqtGpMu-A=asUZ%+T#S_(Z)6ozNV&Zth`4=v4hVI~N}WPw8D-=li-HQ#bS;PL zKXob zhiz9azTvgUeNcmVU`F70!pd;V(|dO@DTlV;gEdx(bQ1(Kk);wle%qYli^Q_8F%@4h z7w7HQEftPIzEV1%uhk}KRvh+$)E8D=HpA!+ma&m7=b*AX-W^D} zimm(I^OGKiE=Ip870j~* zsptKm)NY~TIqdmS3?UinU}u~Em)EMWQ#2v%5lY{c3G$k=IeEAsrGFb6$>*{~-&Rk! zo}K)G4}VajZ^a4wMDkLr0&$H9k()~4KHZJ+$OKv6`O#12hiv%jq$0^J^-q3`QN6*7 zA88?#yddIxrgvH*Rtzw}!nn(1kJsJN=f6PL0`_sv2B%EF&KePwzOV2j;3%CfkOOLj zDa;Jv*cAWA;ibv_Rcu2g^*}tDB_5yGg&^UvD^*m)+&$unbl~po4N(3kbqGCx8P&7@ z!a*+Gqw0~|CtNEm`9QA_mCL>_s|sTUilE_MXVw@9Oa&fxEV*=&?SL!fw(nROtv?SN zj)T^g->t;|bXXaLWjE8J-E>9$*?n$9f0)+_gLM+VbhXfnLh4LctQAIBeOACnjWe^E zK+JC<=9O}B_~D*?>C>9K{PF95=K@^u6ZnUotSna=`)2GRpcI)_Rj9Up?W>m^d#?ifbqt< z&0su6YKT=FVO-xjOWN&K5Y5{`!}eGN@5jXJE8HMm#6FJL$D0Qo4ual*(?b)xKPgJ- zt4+`!0XKQg7<<}?@Qe*v|4ZZ&;qAJq4P~RB3wKMMv{1xlcUE+vP0-vAt6hJwo}*=y zx$z*T?C2i|E*W2R=#>UqFi{v4x^i#YZP8w7Z~Jwkhp2j@k4AnDOnNzb!88+xBjxW; zW%afa)aDsO{5ICtAKX@dK|`>ZckxG$5hxhdSX|H1eF*H7v`l@zzXz{FdE)C8RNvY2 z14nOrVy7f!MJmyJ0{M3w@}L0ev&sCC(4%B1mooNw_rD?#Nu_F{)fdQXC^I|cQ=?AM zp_sNowzBs5ve=GJ`z8A~in+0dI?J?{OiK{OUvb0`aYW7)b>81qXyJYg&hDJcmsB6r zhN_6-^3MNO8%(6-nN;96aL{m@Ha@@PEb?ya%$?``J4vJ9ScmTldDG$DseHO=ay^zy3m3#RwKIhbBw;G!T> zj0Yj0AGa&rMD7J3A))|3#wex;*OlKCqIp*Ru8-W0+IN5tv9jabD|=rkT4?sobIz*b zJL?$G+8^SAMRt=nFwb~|f%WM^W^8{C9KBG(3&tatbbSqj?@FlA2xfTp&|Eq`x1D|j zsp>sxUs)804sYc^pNn1hw41W>L`_pZ`wXdnY~s08#G>&1 zb<*IDjfR<|otRm(9{Dzh{Z@5J*MH`U2yM#k#M^J|rnr#e4wJ!9yjbz{y@TYLRgw#P zD>@(Dx?4zi*h<3?0tsEm)KUn|!D6Rn&c&fdkhsR6X}}^&OD9b7O9h=uRXdv+%S9_C z*DiT>H|1L~pMXH&5Wz1Ue{|!?jCmhSxYXn}m3=qSd+K#akgz!Q$WRA(y((VPo$@LB ze*0a4$ey$K`+k+NtI~$!SH@4i39-m8?YEJy)un?5`4NOGh=Gj&1~Al$p_uQNBH#Mg)j}DDr!evV25D(1ZwKJ+lXnIvrRDb>KDm-|fdjUx)EI z>f5OyZR(u2-l1h0I__5Z)TG?2fh$Fb0ojC+aX4~A-D-U-O1=^)VAtmtch85IAw6=5 zSIJnBtJx7jGcQS}Xzx~;yI5#CB&7{h#>M_%XRTobs-US;YB_?Y z4zEZN3>WrjL)$)OE7FU?sYvDM#5b&J-j-Rj7R7;CL=rkzB(&^~u4}paUx#64PCqQJ z-i!D?4VandWGMV@Wl8X!d&zS7WSs?}+C+peLqZzJh-`n|GHR~8`{K#+tOvG|T{@>z z!yb{X7Qi6lj80D@316OMl$VeA#MpTo^IkEcThm!(wSM=^zv%IXN;dgNa+O6T|CKOe z)&8#1T;MGV9oy;P!(WB4_rA_@g1q8Ufu*;4S(ML^F^mI^VJ-Y(hqsYj5A7Wepn$+; zY`HOB0-iT?r(fAolpF(y;^@0XG}$ulnNLevE62&Xe0H?Bafz5246+jzC4!oE)qxRD zePUCA)6O8^vnu&H%8&tDks~A&IRQi*T@d55^-Z2(S{-t7*^qGiuHydP>HV+!L8v+b zl79&ax7F%m$DWD=<=zWNoZ<)!3~bqt2F>#ntsA;q&-y|jjb-PTvhOYESHbUstOH+%Th@0AO2ww{9P(bo_Y?@A zBfcae4?Y=Yl-DPsRYvwA`Md9kWPIg2} zj+=KFTw&;!i69cMUbqPkWK^`7g|$UR_Fz}DeIEVT^KAM^T&(8%@b;FEO6||r9S023%ML)CST_!Q6_$3Tk$GMNs3Nf!YU^Ra=BrHYn5Uy4Xnqb{6v+!>OR1S9mY zVo0#Q3s=nF#@sNUwo_yVwi2$zwr}3_j_CC%d|q?rNf{b42<-IvS5Rw<)Y&qD9Xb(0 zLp9VNHR;i$@Zra@e&zyF<`Czel+Wpwy|i*du|~~Z2m)!rihbx;9}pI0EjozG>)phk zk!k&$jf1C>YTm~N9E_4{y2pVXq2ymK0{3O%-fT$5SUOscS}4t*J-bMO&(`XUZ6=i6 z!wduV zrr{?}Y&)S(Av(H&FIRuH;*b$(Ahs2N2v;Ar}KxLhOFUhRd@3Y8iD zS_W#jCZ&>XkD45s@AEBX?VP~Voo8PS?Y40&CipOgIkOV5yy*7>La*`HC`el9yM#EY zz|I-2AE+J!n?v??9CgcV zS8sNklR^v{XsUM(Wom$FD*C#(bJ@OE&58w8ss(X#jZ9}%D)=Uu7(IIVr)51{6KvU>{=U^F^m>6FoHVWO1Y5`d&NNYo5RY=*&Zq4aCA`(+Hl71~2?dx5pKPvciJ<@~ z1k>p3%*JpT-Pix;clzFuWmPN-isdKpO>xqz`J=G;2c3v`r>2efFvih?p{{+jy04pF z$>9~~C+euv1J(7z6bC>2tETBBcuX`NKNpw#|I6e;RS0qxF8CL)FC&e=wl6cHG{%aw ztR#KhH#Yw>y$Ox*`*r$xo&c1G7+Fm^^GT?-?QW`*{`rplox}j`B!j)_ZY| z+ecF^{o7~<k3Zgae12-qFaPM~USA9<47zlYQyB;!}$q-<@`hIM@1azJ?E!`+ozG z5Y$dT?a%?am7Ba$OlOjVg^uh?x3NY6#8vTE&}Y|g7?U5{op!pSc-XU4)%@S@S1N@UBl%Cv-a>i}C- z6P#(Cg#vhGCE(M4&-lU`lV<-Lf_yPku|!o+CzCs$P@GD=t0#X4jcIjfNWyj;ys6}@htf=g;Sj4%EwX!3 zvW>R3c;~bZd1x-Ok9F1pd(+lrW1MWSVmz3cf#p85z z9@rYH6knkC_3+`rSP2XdBsUJTUZfF1f!+HNCNU;z?`CW}njAUho-6lAN8({X4eVPp z-r4wY+`N>5!^NnuUB-xIzx;?hHpETWw=X13`+bX%>~tlXjx*t!8lJ#y4S72N7HP-| zI@7$O%x;qECNl!V&yTR&<*wQo*@y32pq@}Uz00h-#4AwE@IStbe(EUZDE3js-+m?d zIYWdb9p97zhevXSESrA~x`->WN7j2f`KC=TJvI$p$fiA_*?aXny36red3cis`Q=Ud zAzR1C$^oMn#5W2H_*{a2c$R8RFkI^UqZd;w9yYIIMfDSduj97pUitftZYtKlm{AYC zIbZQ&l#kdbVe!sqF~p%u^mtH`G%NNz!yLOOkgs(9qI5% zo|wOwV?*+vqI=6@j0X2j(LQwe%Hywf$okp_4hRZ|cY|RddWpt5GCQzXd_tc=E}`ds zVh8}B2mo2`>i=~N%aR?*-;v+wPj$NLk9-HJ+}Q>>+nTjr!WX53s#^UHb4UfK zkP37c9Q1Bg^)w+$*Ov1aQugJ&l(&9Fh#iPoO&o|)z0dN>;7xx;BqvZOT}DkI$WQ--QL{?wu>U&VPb-TYdL6&bz(6-y(eKv2 zRG5A31;CwIIwhyg@{wbAr$j4s?%bOL$sf63wF*TPW8KWmQSmqp7cBWUGPE^GBq-^M z=Dp1DRX*Fp-Jz}6O}+SmH%|@q6myHR;}RJ8)k9$Nt|FzkNz^W9vxfT zj!h)G1Mq00^L!x!AT5*|o4nm`-T-*2c9qX@%XHZbTHWx>khQ!Ctr@mvizH9XMZBTK z{H)0E5n(EpH`ob5SN=P{dKeG7%eKn#^W*z87TbjL&W@cK)*zL_m(NNo-h@16P_a25Q4femoV%1uP$yd07d9X&2i%nc zt{rBRCfKI&owoRR+_PRFA?f+=c8#EF+s9KjTFRSwFUBrAUoX6|wNC#>Z0+^#oBnkA zgV(T(kQqwQNCu5i8fWuu8;#kVCq0W81sGh9wRgIzdfc>)dbf_el!QR)?mJqXB8QKN ze$w5cg|*RS$eHFp9upj2)m1J+x9<#-8D5pmT{wEz)kO(+)I_x29vgGOhZ%>Z)I&QU z9(v;)kymmG!kU*^<+sS}$d!b5fCAkfjCsUcc>ZA0B5hWn+BC23~3#oKZz}*Q* zQ@7bppza~P76(z1M_8a7X}X_xAcsP$1%y? za>>5_IxBIXkNC1+nc*T8b@&7ge11w$_n_)UV6Dm}a|W|_i!(;|Rhp+F2IhL!uUk&R zS3R3g!}`sB=i=K@< zCDz5b2|;L5+vf!cknyH#x}`rTqUT?q&ZorDvC;eDRdMOr=7g)WFVi z<_4ujxcQa_I5ts8@e55@__urLE>h7S>Se%Ep{KJ_blu3I$V{(88AWlf2d72*NNs2t z-T3w-90k|9wOD?#41g%8Vx&=cajB9OL$_R|ara2^#5A5}yN&zGL()1B14GRK4+j--`eu`hQ0}HW z-dWiZ$C;>`@wSpCv*&{@9;afx=<#9d3L9lQ5j3m-8|7B!UCUSb7HSNa_Ms5UvAYu> z{-okk=^xV|ruT_R=;C}bgz-g>*}pRXv3N42+gc;e(oKp67Lv01Uj1n)3W4QTaz-E| zsu8k)%r6=R>`JbGt6}hKr-YuJ!R|hJO_M|(jXUVP57yVs z+vQ?@sIAp2NCI=N1_O@s=RI3TvT8_NT0nRt`yV-4hNgZ#%bxi|7Tyb7hP|($k%Owa z;ON1~KgDGb`)4YPKAn%6PryLRFmXH$u7Ec$LO=XC~^%@b2GEWPcbSvm31 zMc82|s2GS+yyD>;*|FxYGiZq4(u;r2?1?4r=f8+k&It%m0uzkBrN6yoK#z_-5oH#+ zLk29DsCxzsn*>M2A2(Xq&$5R1;}U->Z7Z*caQ*`+LqFjPU1gy;%An{4OSQ%(-Mpy= zt;Hl!K_*cN)>Zzt5YVw*h|J}7Xsb0`F|bR@%oa<7nf03(5T(8etS9>&`pmzIX~L^R zuu0MM(BYuT-@Ixaki2=)#=F{LUfU`0rlVUFDVb^r>9+Y{)e2fWh;Z^D$kyLaY!gRw zeX)1mQk~B2e(@gfm(g9KyDuKSZo59AUHw+w#5FIg!-0(?D!Aiw!Zb?RU&6Opl{)#~ z2@Mp2stH9e=Zooq9##)`cQ-3WKN;!QZFeL_pQlAJfzfbVHMUUhfdgMe*Zwh|AWVj>u*Lw3~lfEnc%DUi=oZjm_eYv2sN;zT0L>LhEFw)RKCs78JRQpy= z>TwM&n2Qd^nv!AMb3P7WMatHMx+a7P@~E@b*(eMD$p_Gmn`$kOnChVO&YurLn<6+u z%CV8Z7P55u!an-zin>-KhUUWLrKM>n1Me^ku1P+Q=Dl0z0{Eg=edjd1hToI)FEi0r z24BbYX=)I^mQnMxqXeQJ2O}v;M-$jE3S`Pf)865u7mDam;zVluc)S|jxxqqPsAtCr zC;uuqE_k3)mbrhs=!VO60}n-Xig*e7`}+|^I{%tkwXl_oY=l`3SI=r&-;89lI;5Y7 zmpWAUW@Ut=h78!`fd$N>IKkqKW9K%}u126W;mjfla-aF=(ijxR6i!ccz973@l~&Pf zx6wDsuf8}2EPSjP-krFwhFP9jBp0Ep-=BU$xn+%A_v+Py^FRep3p9Y_22Rlkb2ToF zu2bJp8GcoPdrs!AK`H5B2c6G!Av^RL!i7tWoaB!q44!shTR{!O+I4%Y_}CKm3Zr|N zVZWM1YW!t`kb%MWIjVIGP*KKqI}QPsR{(4w=%~!K&FoFfCi+R#Jx|^-h5W`XGP+8n zVY!pAdE*aK0OjePd|nj%cFU(s@9F9#=_4(otKwZbv_phWgdG`;fvE7~8h*>7gh#Ax zZljH-tNS#$!0K9NY4AKZoy<5^2VtRY^YSUr3*#VO0iBaS;su&)$63)7|c}n^Up7flNwhwgALzOhK>8LM-{gFF z$Xt2KtBY*}0gcgu&3{&mU;on93i=6HOmDUN{IuOxK)ZwZVd#Zokazmx)PC&;_L)cISz(nDAg*1s!fE(<% z@PT#P$?3KnRm}F9o?lEu=UuZY;7yj~Hd)nG;j=kY%PH$*%@sNSSkMw54<0SkZp$!= zyQ#_kK~DL!odfDQWx0Mmq3WG#XHD>6;_*q!vOJmzGrVOhnd1zUUf1>!m8MA+{3`ZB zuD?be1z?p{6;)(2h!nA~+;Yd_`}tJ9(5UlBE4Xcc#+eAgbn$GR(lUkaA};( zxf_6{0(1^~m3ZAB%igI`ZU47(QPBH3mmcn?RkBK&WhohKWx?b9gnw_zS=<-q~g7_szfPP?&_D{nTAuG^t%Sf(YO&o)wW^ zXGZ8vQ2J$wo}0&yk!hz;$9MWwejM0(_Ck#mRU0Ndy$sc;$vgK`I>V>=J80F(&N>tC zbJS&nd|3JP1R)|OrW2fg=52WQoj*5mZ5w0dFE@tuPgvwyjaF@$cTYc2K0~TKul6HV zt=DGibX)39vVgq8aZLTJ!qgA|4EJ#RYD5(Po)u z<)G`gBJ}x;gtcO2PEn4K9!uW*+jIM^oRx?{qU%qC0SZBxEVky^LbQxxqx)fhfn}v) z*(faNyy*H*8N=JV({+GY1W`ra5E7%iCI1dP4GILH9_>Yxy6ZF$!GTSc@WfeAA9`A z6)mF_iG|^iX@mj(nrVd35E`>5a|50Roum{}nXCApsK0&#^n!Wpl|{~9yRT>O@16P5`LwQe z==;1e5l21J?m8^Ud=)`&GwRENEgW6dNh7rJ^3(tn@@>_n7zu_|Y(t)rc9JexnzDiJ)yM&GYjK zDdQub;3iCVEwa?Mk9@O2o|6M$fLn=2)XzN^hl7td{ghg0I@0@HSIP~{Nl^0PYQBo? zlX(Co_U2U5Bp2)QGrb%}^DIMGr5+`-ZR|Mth{I$&ZO$twrox9vZ%wPpGVOl@kcciX z+AhOpZ{To*Xyff17_^J_+A1ViO^t)hETMxzC+{Yk-@du~KREBD1?&l{vasNQyU^O| zMqngi%FnspmJPLNyZto{Ga1$glZ ziKHO)Knw>hEJ%4lpVrPBDHO@IvlDslC#CDF3iNwjHxPasaIB?*fYZ22;&4J9ZJTa0 zUex-NA+X@H<}e|Bxs)9V@MPWv(;_8f!^e_mZMq*xW>e9lu#Fm?YRs3_V63RhNju+u zt9(NMbMcmXBKf;Bmai6o3}}#+f)P?#ccREIRvhF%LMRBl-g6EikBY_nHJ6RjS?5+s z%O_>}O74ehN&Y~F2idrwIvNjcI1!cfAKrSV0f$a{vhMy$U_4>tb3#jIsH~iMy@7d# zkaCBb;uXKii>Y@gqWBr3G77vM$&Uj9Mz4a3g-OB&b|@L80~ z%7pI;0RQBk;PCL0i$p1tnj)1xHGd*8lIOSd2Mdl;P-hS7YY%dr3sV= z*taKEp&1)9x*9HkGvIGB;9KBhm0?i%D;D`%S)Mmk`(x08d7t$hNHNp52*F0juyGEn z<^DC~pLhqHA-40!(@Fz+f09BqKk3op!Qv_SFUO#75x@-u>|U&TjOP_5pV?3XP* z0b$&9w0{_re07?aEI+&Q2siWOfB5VXFJ^>518BZ@z*jD3Vg$h@y(06-;AN#p#HK(9@^|p zEOU(<(x|0jx^iJdS|*fz@-v%Tjab-rB8y<|8^l#rm%dmj;(42Z9VF(|}oL zz_OcRk*}w4gw*!>^2aRyNc<&vNfTb$fD)C5jfpesv7|o*>?y5AWxCAFj_&fJ?^5{u zy#-iBnppdMN=}OqsT?Dtrh(bBS@`#P<{QZ1zgUxh*Q?S%&#y{*Ca(ekjXIJ}yUh|j zK5*oCH&d%F3;Zt=rO0=rQ33e2q}Nbxl?flnBKT^T<&F_ujSO8)*oM}ST}_NTrd|#_J%<)26zsz7BwTN4ouB1>X9-+vYPRs~wTN$IJUI${BCSk^@OF_KvZZvvQ)|A#Ux;FA3h zohiX}Mw(#1ngZ_-u5hz}WlgyDa?$NGMReg!04r+$Lm9nr$>8(D|E04yxMbY4Gi_Y( zPBg;oylc*dYY&V+E$mzjZ^Hb4DdY2h`27D@XH;;V8B3RcGKvOTY$AeOx`N@b0iiE- zTm?v12ZOHvr3@UnGX96oMBzGX4tjImNCdR#%=Yka6A}Wn_$aTn)Rqo!BIv)S{r^7$ zIzmRw93dJ0=YfumEpIK~{Lqr23M^sCs65)R0AihFa|X;@&%j;0nY)7Av>)=@5^suF8$scwy!JvY85tQ?Hg;(U z1UDo!L;_-nzxI+&2Ry$HzbAqt=wF8t+>Y=8T9_K%8Q#rErAO76Ks(i#%$J4KaCLf@ zuDxxV3j@B*p`_l`rouZqHORBAvE>`}wf#%W<5f4Z3secnWKa`KG=4ZnFy0KXYNg0& zJTJIDVe6QAKacU@qJ=3xnn%FjkGcw>{JsJ{geyW+9zR6Dt%#c4XXa3d4)`Y2{S9)! z1ec4+oVxn)ER!QLHtN@q6&gMW6v^}KMy?WdDhg@%ZN*LmG-@dN?-CLZ?yzDX>ZH49y7kuy;O_Y7U2LbZjgFarCy@y|x`gL=z^I4#r zouj7pI~gJ(VzaIZG;so>&GnR1RyIWc;ck48QB9FrM>pxOq3J_1^uTRy8@AJQ09%bY z_9J)l(@l*SK)Xf`BHlv&?RxY?V2Clyv4WSjpVJ=t(5dhf#Oocna9zFA;VJV};nV33 zOTBXD6V7z)Y%M_}fxa+IPfxNOymb>N$-1zbI{riUgKIZ8`Fl3%cnHL2z2jnN0#)SL zYH=-qLYD0vgwxU7y8!5z{uTNoivXrkBO(b&{*~4tebdNy9I}@F-_KX ze5EOk-gy9v-xsngybC#z3OOey+>nr#K*LA>ZDR88HXU=5&a-*$M~725!_PU}X*pTUV8zHFKC&0ZHoH~DpMY8pC zF1*&ydNw&wv7JfF&Q=Hrkc^`ScZ5I&!~PZoO4EKqk2v~Z=cMm=`X7(`ePSX4*sWB@ zEzo^@wOv0VG10XRa*8c0E35b5tE5j85-JD6$EWMWLdTYONzg@9&%|MddRoYA29V5W z!Pb_{`Hi+a*Y6}q6-jnIj4S*Cg8~Spnrg&4bNeMjjhA*Vo|vu?{qDC(lv`+aFCZoN zBvA5T85wlX9<@d1_4BLk=EGbLDUHK=aHj+$=fw5CZQxq`+F3*DPeX1%fj<>$3^JJG z9vl7T=#6$~NGNG?7xV}Xl~$DZLoI}}hsWI2=}yd_3T74y(Sn>qlXpv?{>B%{H#|W7 z4oR@m4HUvN+c~sHZop+DFRzG!*rEJva$+zDqb?YHFqqvb;EY{$(08=b)H6SMq4y^4Tk<*Dp})QTsu%lI?* zU#Vk8#urnDoqs!K8pk1|w@b&>FTq|CeJY(P{xF;l=!rYD`h{XBzHjJD?L=*K92~@eB0mfu7=#Ku*b!&3&`8~44hC>rg*5!a~ zOsWHTU}rg?ejz4(f!r0Opr|;yB%*qme4Ja~z5T1x%D?&W`Sa;{Q1#UP%0|=V2$VhtOxkisJ_Yjr`y+W|*ulPDEv(y>q3SygN!`Y&)t~{pwCHhA+5D`_RG|OY& zzbTncPAQImJIgnjnSm>Nqyw`B*Y2i;v3%Z@%it=_px&H|8wi5Hlx~dy7f|2si`XwZsnGrEa3xLi99Ud1Co>Z^UO8LgbC=oevSH4ndbhip^S)(pHW3vA$P z?ie0JbJ|wYzx8?OxCkV_MYM#8FKI#-l^!?Gp^L|1xfPI}jwjCD&I*6yqv{jLJ=F&} zBNQpSl<30+lLxcP|J3@PHyF={JXCA)-y1TgPVrXi4skVII0)KPha^ zRX${oySoSSb-3RNl+gHQvWK(Qxr1#lkl%BW6ax8yrZq-mPap^@W*$CfeKHVWi%4O2NIB# z`CP`%Jwa$pOww&nx0UE(>((dDyV?&BuiFl^M+2IUWjV1Bl&I=#v~-qIlO4b&{$}wB zzlsS9E4oca%=z1TciGP!ICs_32(t@t5$SY1yQ|HD>|Xjx_-I8SzeNk5t97Vucf`8U z={V@54jgzOrXXlzRkp9p%DQWp?ScnF?ccG+C^AkCJ|%BG2$QKdyB!Lfw!2`y_$2l+ z-ZcS1Q$5-AXorP|W4NxjAvk{O^lfbM2z z^%lYaCijzs_PUk!?Sp&FD?W2}Rxugt0wp`W*|8^`|DntgEE=V!r;AfyDIU6Vt)D)YmX=b- zzBuIihkD3mS)1&rN$_bHU?^q6!^6cFR|`yCV#cr3G#X3P7RyL$^V${KwG8Hg^HAfv zyJfzlrXKrHhTh|k<~E2+X8XX7HY3hiJVS+lX$*w8zqqYrP>LJ26`emi(|??L3HOfc z)GmCHot8TyeiiFQjY_y4fN=HnzDMT)DQ+PyM2JoU0H*>)`%d3QdIE$ZNbr2XF5pjC z20%c8hy|36G6#r(7o0%28x#&)R0CXO*$#a4Vk{CwK&My5ZkZ%eQlKQ1aN$=hD2r~fO0?UJpHEt4CUb=4SZD1P#Rtro4N z71?@|;J~ZDT~g=Kv9T%s#)1d7ww_o1i^G>>pvb|&@N3_sWS-+zhOPxjwgwNICmGY2 z#>p=E`%$XBgOZAmhqvK}cSQIvnUyYmwDlwDJY&dylB8U`H`71o(nrcN(84Rd296h- zrD4^cn3@upH2Vjf+1aXE{!$D;Wny}5$|QD~l3Z0j6rd_M13kUklut9kngqpAVVM_a z&tD&r^D=xa!U2DeFXrp7Sj3*0U$GP5(?iAkzZnyImpcaa8=mc|%XjPYzdUxh_Pygu@nTg0R?>I?R9d5nsV`|=}=niEN6cyHWFIIZ@Iq9$(*}$)_yZRS()Gi zoV4}j*0+;pPp!bS%q@gfpZu%JjPVx08`7-|qO1mYn>CWgFg5B8=k&7>cdQ+nDxRb< zeuN~JWUDb&iK8RG+19c%e_}mICPal-9nRELK>WqDCC8RTpPt^H?40Eg!?rm?K$>e&CFr;Gw*q8 zugo`S*`u_Zq38cL8sd#+?)zb$q==&}xdvJ#Wu$Rle+<@r9r(xgJI|M_53|=79TLR) z^GT`9UbV|?W4(OF!+I~tdYC=!3f#kIAxKg53w5BaH^rbvk`wy05{&kD403*Lv2Kw> zt*bn}XLsvoOmz(;#njKEsSs`vARf&ppJ*=Xjamht(|U%wy$>MVff}4h!G`YrbFRvZ zh_j94K9tyfir;=6BtDCCHA0NlD(TeJVyw9{p||cYv$EFFfBJnlM}tQgHFxt>14&$e zYJHRgis;g4?bxRz_w4#uHX#)ok4a5^%I1|J}= z2CB30$x#Pjsoo!{1-U0Vf3%lTHDdX#>SZx@M1YNrTll0B`tfIr&z7}qo~3sgXHAx| z7~5ns#NZj*%8KyJxr}Y7bh*h$m`gK9D8H%N3>zz{2#uY?+I3>%FVGAF-hvC6IKH` zTuLg-z$hwDGC7%KqO77Zoh8@x6=6qKCEI7>hM+}kVctla{j-OhoPgp03uA<6Hsy3` z*p27};lKWyz9RGag&C-o5+1F%0ClqNl+VRY3mL_9e#pZ|w$<|Yp;PGyEDI~E6XC_F zhsu%h3V)v@lVA-`dsurs_b-XbqaN?Q7`TPsVZSD4@I`+2P8_9IvQ<@E$Jm_4=n}^* z7u7~qmh<;(uc+GmnLp_WJ7l}N2Que>g!_K=uXR01%KijFCu&{0LliHc+W!`iPIHh1 z7fA`VeNcSvs`)tIoVcW~{rTp`prO&Lpt4XkMwmh`%b`J3k(I_4DT{LQXjN*D6lcFM zg8iG>^z+dw#9-KF;&gJ-Wbn5#;i=B^!dMATEEyFQzHu76ps_MAaOTSR$p%xgt*5B3OQ&df>GO(Yfb4P|nCjXvoji#t!N3JK zU|}(?s><{h2ZQ42v%_d#9}xwGnWewKEGE;owQYfqeh0J2{wRv*`%%}Yf-(has2)h9ey&o2$)()NeNU^#?Qgh4fFo` zNYO?y<06#hR@uu<&800hg(x~}0gQ$(vt()Rg6@fzLn|hRfp&FBqI0bM=&q(Y_WMBw z&CgZ4W8UgrYZkB_;L~(OD%aue(Vo&omH!tKQcE9?H`c1Qcmw{xc1+-*Mb2@aU(Yvt z2gVL@zb0ta$~8AmF09Vahje#aEPO9vWXb>Tk;;780~AH19&M=uDlRT8q|Y~%V9Uud z@H>4-J-a5iV`F7oU@H1d4Mi~I`1ewZSlj(*i;UKkxey~hM=;VoVCxVf1u>ba3Hzv;z^6xQXpFdN+1sIj$Wop0$K6$9Pj zG5!5&go8;;=0IcMz9BMP08u0JXKSnGMfQI0t-!!`w$TBPZjqa*q*sy7wv1o5KFN-7 zVP!iOkI^f6QrwrNpaZAna(pFpn1b6EKdPj>ckMu*y&Af^M?3wVZ@B#^P!c!j+YNoR z3EY1vNh}`I$n+d5gYuwz5cwo?E54J|zU)`TXkqPPJp0zN_mh{t40kkC6psscbsR|w zF!H&e+EWaPfLT_*DTWC4#GDlV_!rlX#yq3hV$5Ej<#=|@w-%=^>eLT7GP$HbCWN$o zY-sde@9r&8R*NL{pVCRLsV*?aGBKNkFKg&co=KL)Xk18T(YjLT0)3 zk^Ifg4X}f9Rv|#QMFy+8ea=Kry754mmi$htQ&7~brMwz*@y5gR`uDGt+dZ>(7YZhY z+h*5RMd96P7Vgn8$_&@juTvRJVr-PQNdEqom_k3|`NV|6OC!;ng{MCO}+h?m@abQ)8m2)0OV&gRO> zqfr=s9XI-;xqZ{q4QstPBn%Z!urlIo*xR&-r(ilpCZ-^p&GyBC!LgB)SgPlo^h98r z;K<_uE9;=lyVrHYY_7F@qHlh9A58~0Dn^GQ#79MS&)+cSBu^jHe2MMPBpn-K-t_Y1 z;un}oOiW>av?zM=F@NLI<+NgITMor;turpZ`#Qb-rYw?(;uI7zpkZuDFtE2A2S9w zA2oV=ZQ_d=lKpos!2CKg|Ms3l$*@?2+Su^m_K(IYQ}oUM!`)kk#hG<$gII8P*CIf0 z3ltjMsSuLj?h@QRIKdqP6jBf%Sg_#k?(XjHKGiel>+biQ(>;IZ8h#aZ?RuUqOYXJy zz4lfc$!zbPP1z-&U`kiG6C5s!G6%65tU+sSH&?jsnJXR~#9s)TKF1ZsAKH(rX8@r}vYP1Cbb0D-F96T%+tE;2P$1@^?4k4WcbYKgR z(+y_UbD!hp&Q>Vh_dw1UKp&)f00<|<#|H`(#C4l=-G9{s7e+CR1MoUo@?~^*X|Pn^%qlC1n7cj2dV zs`IV2d(It9BUhNb(sH%rgrs$ihK)5{h&$}!p4*vB0F=}3=I#(f@y_c5*32F7 zpic!g>e-pSroY%cR6H2y>BCsxmBXCOvhV=8VlZtyLiV2mqczoWTD{E=`1~p~W{;_RsZQ|dp z&hTR;-+*n%UhWlsrmlFo?X8{3u^nvKwO1QdhgGk42i@8Z(6=f?Nf z zHJ23ja39$DkvQJ%3^yTh$(-Lf5nf?nhEa@M1sx2X(S70y8SMk7Clv4!=L$oOaIU(G zHsp^j(^x^|)5b<2PR!a>y?QTI^n=R$=)N%$%8p!|sTsadg=E`R2C7Cn-<{yi_By=V z=Y0xJfoSr1_CjGcy(V6@FtDyE8e6(B4IXnJh0W%Q&qm{GIguS?JHxh(KB|{HX3hxN z*$Q?;>^W*Q)X09k9?WlJQsdFxlSd8JvPw!|?#Y18Tk7mKC80<)=?f0jpm3I#$s8hg z3xry!sL@X=p47$@eH$T1dlbbkLc1jSvG2y?a!+QGOV{nDM2yW$dbcm2rMQuFA%P_e1nKfBFtHtS(DDB;lbVYgpoEO+S+ujg%1Gs z-NRpk0kkHIF<$Ghug)dMzDVMy-Nhv;?KoQy-px)&*=DN?45xJmtSbDl5F;E(T zA)cSmBJ1;~W2jk^8GrHi9FVf*kCIJyz!Tr__LU-`6n1A*hQ-y4Ky7s1X^v@eQnbXt zgIa1vM)m3U(u8AkJxcg=-XZl=6zCG5Xj1LO| zGSza=93Q?bPu|w516i|q4WqxfM#3cH8?FO91LJbUX^Mb01w=wFO6OlCZMK$|#6!7q z;=7vMGX*9lX4oY;=z4CBneZ5JoVRDk-jJBN{yYGD!KQZHQ~zB5t}bm?F57}a=rHyx9Z<8(APiMZC|R;IPV#6d-Xp!eQ&y$X67>8 zC7=Bi!*D@M(OXrt%c2k9&#*P=3UWKWO+8%thI*7==q4Z+zQ+cYq`K14VB=rY8Q%pO zUxp8I7OJR7oI0fvaGuL_`RR?eZHC}cMzeL48xmB?(*tUU$G>*-?p}sKJTB!-+tzY6^N{I zflgGFaM-JfZ#s1@TI3KwRb3LtXsBmhatQ@)ZD+ytL5(F~bbGK6vTkR*Df9(HAf8Id zixz?Z4js&vebnVy#a)#m52Ze6P7G!&Q2s&GxIX@-?{jvw@>PJf&rJ`g z+!a)qTeZ60I)tK{&XE(y#J0<82B2amRq=hiRX8kT>^VNC-Mc7hsNOw3PE=wc(r3%k z{uTei0PGJ62@aipTL8^M(FwOzleyCO2P5zkiIT=dj2l|QNmDi6&1=xOrau^Qd_N8G zeLxSvI=j`$ktEV?w8P!AurSn*A>UaanB>=tonv%~74~M5aD4VVBjm~Eq9r=e z>5NM;-sD0#&8_Q2j^kS_<`y`bjeT=ir0xON{gq^AP6FvhuJk0$)so&a=mM3mJ|9Fb z<^!fv3jRH6r-l%ZWA0jX5D2pqM%$kj*ilI|w0n5iwHELIsGo4|7%G^(H^UJ3qZImu z6%0F0B;0I%9xvTM3EOyE;g>QA@S3V7QinCj&jPf6r6xE`B3(}^`Aj0r3?fhr9V?VBEA zER-{RS#^1zrr`|RymlIEDaXFP3qhuk7H)#~$5YK1E$rTScx(!|TuT9Z?}uXhY1S_i zv>A7DX8-}M?zo}XcywNwB36X!aX77uZUQm~TvLlrNYSxz35?Y|KTOT+jwd)R*)TFX?Y~p4fZdS_ zF;I03=T8MP$bM^1R}4Ee>g4Ma!6lx|47nPC?qjg!W^c$ge&(>JZ!PR0UjUo|LGPa% zWtT^%*VEgaliC;_Rjons8tLa%d`zA|U~GI4Hv?Aq#j4Ga1PyvBCOtcYs+~T5?X)$> z71+9W`m@v>U_~n@w0*oCCIKd=hE+xq3S*O*rxTbXj%gR#K`+%8XEN-bNCk+6O$0eI z&_kCcIv-ad{D?ud+NtixJDiLfO%tjv9)koL$Crt1eMvLuMFIPili^KLS_@|nI~eR^ z3k$X&BwPX}i{6x|Sj>-6tcVvJn%~vWtKLAws(%nc^~30qTj0v{%A2MYDC3Ymk*dgm zY`;z%>x7|9^u-xG&YPx`Lj{N=>614@*})&?)zJ~=nlT>=+gHcZar9e&SDCkKxsJtN zbxI$TlP3GdkXOr)&mGgoFig}#2C{$KWK95<{=3Un%?71Vu7R6R5U)&6h}q-E)PN4= zY0|W^J))y-mQe`PG_l`n^+jL6o`OYqgKlSl%JL%y2!^9~ePX1gOAx9o@9>9N(GBH6 zO6_M5BwnO2D@;2LHHQ4NqnnwoYd{z%UxoK7yF%Qbf<(XbY~5pSCzC|G!5x&dU08pO10d7ri{DjgR@T7X~E}R|6#i3NhUP z54U6R4!N0VSkZ*uk9&H?6V>^R>Tm7%Y*&)CGn`0eX&O#BG$cv(`Y_%^;+9Bplm^4( zmn#~@b~5m(FUoR!%WbqyUTqao*@nhp4-Zp(YJs;SiXc1|(dSDme4_2}fHpmp(}Ds< z&L2RL`ucl-csSV`fk1O&{$F;lTjdUcZy8x~<+w6b-T-`w!*Znp{Ex0A{T%W7hd%1P z_(@tgUtNX;Kny{J_|8T=aS(n$7|RcbES2VlMg$P}t-i}=cIh{Klo86S!BK!HI@gS( zA0I%_iX?SA7Q5k1{x$oL0z;Uej%tX0#Vwu)$r&Uf-!p*7x>Q;(ksQ9a>PsT`q|VVg zzJYvC>4_!tEzyBaEZ8qw*AAjgn^WWaK4<9X^@)_aTY;oS`7aKL9tnX$W6DjUN-;fs zP(`ZIWl{i)*(4<$97$KDc5G`&doLdB@GhNU+a%Fq3g-#895Bi|ipmpKknlMWpKZf7 zMGt(zN>M1}@CFzyAwmCP=X`3x;XHV({P-J}Edgef()i|P?&fdT-4brt;ZOkAMoFWMRgLA7cX=f z2Hf+Sie%n?PvDj#wTGFvHZ&V8@2%2`xb&GDf8BXjH_>A)s@vcyUs>|EyOoLbhLxZICHUKXPfnr*5ZS6bS zuDO%7F?(R1tV~>!a`f+U1b5n267vr8?Wic5uy$ij>FuvR7gvs<(c$qQu_lqW3r&3G z?(IbAVU-=C>m|mMm7S&8$IqmZ@KLA*vZ|b*zXoLpu{csdfCK&CIt_Z88_(wF>V(6Z zVzMV`_V&`SO0$%ty=s%N;Tz!Rj{)nN7tal4RyGu8l726%CE@;E8J^DK#sflkp?8td z10o6zeiO^znKyT+TMI!>ISx<49-Dr-+I05AS4mL}tUm}GBVl&DP89uKE_*~a)k5Mq2LFqk1{Kk>ncs zpSEgUAe!i*sthTlbTE3po=TyVq%#pP-WS!5;&2X*T%5c?eA|SYC2bYBu*z`JT^uQ( zcyA*dS++ocvHD{9nMoS?h#8ffCbYOB5EBF0M*K$YFnG>VtOB2MJ+@Kcg9yKeTg!IT z+#gFvE(k!Q39IXr^rYmGUOb)M%ZB&tni$R@S*&v8UJr#adlNAN4FkO&`rqqnvXIS# zL>{D(LDKM+XS?(d+e~oj46kbMaw|gwKppV_tcmSkt?1FeE3rxV%%YI(NS8aqH~dw! zBaZ9sADUNNd1y50Sjdg0@L-j>lBMp|9}@%l=su-7MsvMhQ-Y7^HhNj*pcL^4PDqdh zD$6jy(AkF0?8S%BSHshp(pUF~(S0AR*$IQeLPLXcc@$T~17gXpWUfZ+c2|99L{q!J zs&izr^5rfT#7?dU2NjB@xW)iDodZ>LCz)){Z=xRG){l9*ioWK37L*!51*zjuiCu>4;GxB&iD#qWMpWp zDrRQsd?YbvyzlJM=ht@0-|0^_Hk-m|&%rf>AI7{bv*Xo)tZbuMs@=joHk|n2YQv%xEV<(Pxmvd+!!qr!A0BkREcXKl=3EiUKIBe_6shcP$eW^~1As5Ta z&OEa5RML-Iz{=W7`)#~7-Y!1`KEp%VjFitw+bD%g{*vLX^fx*#Ua}q8dD=-NX>H*sU>L}($^D!vXC&2fn2rCe4eEyG$PB~+<-!f1de$sS-rV4z8igB&yoQ(r9I<#` z9uvFKE6V5S=|Y6Im(2^;1NFk8T$G$v7FNm69B^MH2{0@ODGYIXf5H>sW^5|@RU*IU z%UNt3_0#Xwl~-xlJ|&r|R~R7NhF5oW;^G`}etYlJQBM24Jpn7M z7i#0OJHe4bPbpSWfO07G$mI&r)z)5YTo%ZGx2F9L37M`eWhOO^d)w4FkRbX^d?R(3 z<5ss0!Yc&%Wh2~A4qW24tv716VQotAk!d8JrOizjd)QTh;qc+J>T#28<2*a~j2;0f zH78R!1=MPrBfZ=L*tKF?rtxFuo$Cz)HMzYEecIa&KeC6llR9H#n*bdtnhd`cmG`<)_>2H3H0Fq=R>jZFe~kt!A}ko*@hQ=5Y&N1`moXLomW=QX9q0V` zI87SSw%-q3&Tn5vjz5GcuH)D>C*NmRR|j5*K)?_PM5;6$l%bl%0TQ8`V)Vr2im2Zx z{}M$4#?8Wu4AQR)qj&Ep?~s)l#u{{1j0*?G?6J_r_J-DI zm$3rs{rCYuC1io=#pnNobgl1XO#V6TQ;yG^nSl13-aJk^JMq;}f!+@cTEao{mk$eJF}PkJ@(@Vttrs-oOo7yImD=0Syi|D-|pK}{ZQ zPq|r+H<25m&Q`g|hILJ*FqwIfL_pzm4p{Uh2cJfuH&;0rC3|1IH z&kQPM>{?@w6%^0}vov`~#62`4DXtImzNaObgTNq*f9B4$G{35ef@x3)6J3Ca=1F1hdAPmaRZdGcA@>wiMo4IeBy znxX2t^yv^8Ya$Qmwh$}#>h%^!5^}IahxAUC{HWx_as`m zc5-&c!!6c0>Xr!nBAT&XCRozfR2UXa*D6$9To}JL9|*dQNJJ&gLOt=Zls=I0nO zy1l)X4i|JmCFeceHM)m!dy(&pgM_oAI3Me^t-nRN_LkVM{fSZ4Yg|QM>zaKqraA}G(q|FCfJEicw&T#>Hh9t&7b9OdtF$ehjcL7^;ZUT4)9~+_6=s1#@~M5jMX5Ae$oi+O(vt9pep=NRM?gI-WkR~RF^veGI*+H{8M(-)ap~%VkgY{3whEyf@0R0OV#5eUnsO&jP6(`DvBnfw4L)pT}Je6`XQ z9EadBqQ$CF7#dh6D*sDp|em0df?pXGYQ$Tq}GS?4MZ}_B!HUu_Vbsw8Fas;j#8#l~ZSLnKN9VbCK%X zO4UiKbCjS!EO!BrHs|9(P9S&?(%b0aiDb9euheI&BoPto?u5YkEk5n`pys%*QMIDz z-E(AYlxAZs=gwje=X$HZhgikL8VvPW`(x2yUQch>1VeN`zuoRDU*9X~YROD~wjc4d zdn;oW(aIaHZr@gSv-{~c6qsx6AR|udw=(;X1NT>O=B-_F8aEib0!p z|91rP=*+k(TAU6>VKAeB^EvcxEyo=?E?`g0sJ^l>VbpfR?&EAtjpDY}Hj>Zlz*pPP zP1^B2?|~w++OyD$=J|}t(VP(DW3novFR18TfmBc`%=%@Ygnv*2?^gtD6kBN)2h6SR z!?AcoxkO_SPNfVjSvBF-fDay0DgD{mnH{#~;FJ34*T-(sZ~aPv zR>a>8G_%X>dgkxOQ(YLXYpXI8I$HIzS2E;)dof;iZ4PNeECzL946ngI0Q_W%T=>iN zTib4L`HAgXIom}}0mwV(ghS4laan_zLY_3&aaM1{L}Vy-_m1N05?_1|j=c+yIvZCQ zqNv)zz>uHQPVHlqA(3md@v~p@#h~1?#I2vofmTlLI^NZUH>^{DE1q9DvGK07` z!-x?O46o^{6*;F1#*zltiPhZX#l%xHV@f)Oq=s2UksV9P62u;iZ^QY~m7-DUD^_>E zHnY)w4LCMvclvMp>qLKEVJ5ZnGSxERdDa#iqfoE%jb;@GD7 zu#qAoH00TQFx1^FS?8dxjp-b3Z;d|qGrIp3V=jZ8iw$jPWM4w8EFKnQ5{mig1tDnh{!+hZ8qOOOiCY*9RUC%no ziLnYD>xe7EmJI9gE5lVcWrK3!w#eC2vc#Zi@Jg6t{uQ9kOcT5nXD-F8Cl4PP&1e0`Smj`-_3iELO4;Mf-gBkyKf~}J1c-69T?z}BVE95v! zQ7ad2w-?>XA9B0yYH_0*p4K+l0YBdg2;jDT6?4dql*!j=>2l?Ig@$%OKtPby&_J}e z$E5!(xy|-+-Ei<>(VvO%wseLaoVaMKX1gq9Z_tdrrYK?me8?$x(i(1jFXQ`+3gv*_ zc7c}T7vrJg`2W^ve7NC1CN=u9&HDFxjqhXSCdtsqK-(T(2z@3onqiESX&?_Bq^Fx< z=h;Tg_9P2GIW#H^*Flh#UIUdo_PuG8KtLP7U36o^XiJ!7w@YYtu%qjSGnyXlO}e1B z_O~zmQJmZ@8@A84Ow09d%0HJbc9$Jw{8RIxr!%Ffz7=IxaPZ(fnVN$dmmM`Xb$;ax zeuVJ3h?VCv$33D8@A6i7$FH$~7MBe+WlB-TR|hEpXWd7nVS$+$sa@>8&(Cq%4nBa- zQy>3%RsL(uS{42nrb4U7Mm2PA;PyOi05@_-TnD-{f){tYee@t6SXqD&Ug7O~MTkjN zEa|AgEFj5n(?i}$3#QJkTNtRmk)QXQyLIoUji$n-W^d(DXX(=-^Rk< zK0<@N^;~&vVHuG)zolsFIxQK*ui?_s&o8MB;G_ojr0m*o5Tr%JK=Q>!J^5 z4N#tZaC@OElqUbL;`sPSA@oBSj0Q(=p}3-HJoeIz&1Z$H%ba$h#d_6-Kp1wWH=Wg5 zQ@3k^Wpd4@)7NZ|dlO}67g#GDPe=+VryWQ)YZqnB9brZxF^RE=0d0(uJj{zT!e0Jr z?CIajER}mx!XGsx;$!9kHEFuP*IS!~8QGb2f5YT`l%S&QI@%Y2CYiIdsMW?(8Xc|? zDk`}F-<}Q>X0UMxzfI&vp^}UgI9;=|@}fZLlflYmJ&{_x;*A&HHOJF$phf6T>b$D| zyPEwu>Q$>h%7U#rXYPb?+g>i&UxJ}G?gBb{0h4JT5e+{WuhY@*7$sH5vUq(2%+22>`^ejrwC=*{7kPHY?q&3<{HpWYkxjMQvh74 zscz%4ORQ75$H(t)2$^-sQ3q%nTH!=ph}4t1@|HiiLjU%a=6S~7Mjq_G_$qVl@qnY= zZ8zVzyTy1$dk-tkHv_$Pez9=kF6S@_xLOBvc5c$b+o@PeB^cu5SFItE3wdda2>#Lo z0h9fck&C)W-&!w+?N9yeRXwCV1#|lXJ)92wf-&~L+5GaEz(hd2g{X#1W9O;9wOxRZ zlxEF5JG<^~4v@hib0yOe_${Tq$Xb`A(t!ls5tapO??}O-zW0N}&w_cy`0hVHw$ir3 zG{QBanR46RAG(wCdy(r1RK;dHT58s_fVg}Hu{Az)n)Bpn?YPJ)D#kLjXa(_g9DB>0 zzJH-C_yGKvM6OZpfk#OuDh`GzQ>!7=e2di)6s~4><^Z_AJcMg%qwa9F-}l@|(%D^t za8FuRqo;PE*x}@Am3HPDyZ_WqP#G%_Hl788V}qW(>-#^vUS}T&G5B^W$SMqP1{rG|TB11Mvk8fg<`ejBi_xSUlE?fu%Q63Lflj5s^`WSLRTa7r&#(Mq4L0Sr za9-^e9QgP-04M;;?1e}?Ogm&ik5(ek=L1Up<1}c%p|@txf9c@&Xrk2meUivqwoq-s z)M3)JOg#`1O06{sE9!I3^79i$B9*`U!?n)k$%4-Gaa3fa3^f0R9ygNS;Fq6C9L=l- zvD+|(wnIr2t7kMA&(;Yq_UUFtNx++UVU;>OAUbud-vtcP*Bneb5~PAY=c z(r=|c-VgH&-TP`w6G>?)h;GLB^Q!vV&PS;f@55V?Dsvn}TM)?2!y`vyLRwZ{K6V2U z32ECWg<)~DMomq-){9`lmEv9akH}5p^^fkAzoZL3GEwWDpC`&53fkctNn-?;Mb}`o zTg(6F>i;DZwK*{Gr>MV*)}3k?A86zQZts=^gDA*c(O$=sw26I%+WPqX;s7{!V|5mJ z|IOXY(6F$OHgi9Isb;em10gP(TJ%wfZMRtdM7I1EHq(0`55ifE%>e1r>q?SO;sGXw zxb{o6Bn%+4nG#i1@FHO{{}gNg&&7zafHw048qcBqPqB73*4l6CaOgn1uqy1V;u znQ}5}B}K0erh@Z72c(ss)jIB!vKY|9d+X_ScCBl+r`8|LJ)(Uoz@pIaVwu;hrNv5BxMe@H=o;iggM1 zy;gs6LXb>Vxe&W@hRjNY)DGsCtf}qbEt9(92gZR5ui*bxnf`dgI}4~JDd7EVz2WAn z{N*?z=8oFA#tWzXas}2c4Of zX|;YU@wm0UjmgLNaM`EZ|5~3bb#;6D^~?HyTF3+?KUlZ9^jrKt?dAJiKjelkdT}+J z*6z;EHDz(Q{h6}xRzH~h6!nodCirI*Bsm2InaL}%)0-QKlJC5$$H&jDmAO0c6Xi62 zJ|*kjD|~$zU0A+I)xXws7`wN>zkMi0y+C-fK)2~lMWrK$@7f1)pa=PgFgME4{O{n9 zkp65{oHko)Yx2j($M=2mb^Mn2rj8#ckoO<0_Hxkij9txwDkH)egB%yQaCH6Nji;4mO01UT& zR;$-pHlagp&VI0ux98gUR#9j~W7PAL$J+4{AYH(l@M?cLX$vSRONKKBr>m>W?{k=o z-q_%J5TQ)5(B~`SatOFS6!se&WC;vLgvi{KnvXRyRa91%dye=(6Z5DVbHIu!`DjWV z?2k;?18SvRzmFP>PnTMJsn98eut`W#XY0L*a&l~XS3e`Pd*5HiwA}|QX|3%X&{-wu zH9LF)JJ>82qp)e$Mv#s1skHb|2=Nq%R#aA$n;c-0d=4MI-LIDY_!B=A+GB`CeD@tq zHUFy??;acNCQ_!3or4)jYBW`Q$?_65&N8mq@N<+zNOaDZ1LP{J8O>qa zgWnki_#aVVpP$u#*)bU!Zj9zgsYVdLRR?drJl&wpmRqsM#dT^wjh0w3R9R5Kva^GH zod1rHvc%CiV9G`pdiqrVRG1#*&{3DCU{>|tUc5q0LSrqq>{Yfah-7bVy3X+OIqv2d zO!OZX9;Kiri~IK`lY#AX{F}MT7CPD-dR?DA4QOMj_HQ3(Cd`Jrehe+B)F^+MEY(p( zoT0V$eXf(^ig^CAOq(v?hlS0J5-uWO$HN=IO z%Ps3rBE6R|`vpr>DKUSk>#0qMK<^CLo z=o6O?xEl-23J`D=PQ(szKClydS&XmH?*B$$b$TiR&*8Ky0VS)``ecY8Ra;FZ7~J$H zT5Vym%>T9u3PHRMC@W((9Rjl}ELK@9$RDTO(sabfzwXCgO!C->au=Lq{>uQvyy|Cz zBHqK#UVnK^M)`LL^DEvj%+PxN)5psAtf`-z&iC5nf<9cLFnSf%iN$hD5G^7Wy>e;r zDfsa*-h8ou#&k%-&ni~s4-09(J$S zsQAWbdZL!w*POQ4`bsXmE#cTZ3p=m6k4SAXSZ!@aMzdm+SQ(AMZoKX{)?kwi+*!Z8 z42OzW6vceM!)q>>OkN_HXmEmwerMQq(*x#ujeGc(8?AY!uvs&D4id&8mc60ZTFw^o zPkd_lM-%4h)#IfGx2wcHbAmBiQN`Z~tD;Xr6vCb^UA3Ha7gBdl%(aPk^psF(6 zO4xw&h*V-vdU{YAHN7~^l9pa-n97S z;kI6W#x=O&yZY7G@+!H4_)=7he4O}9Sc>VR)Rbrm9m74jLPGU++e_2Ey= zgR*g9;O%DSL8X7;u34ol7TDYVsRI)Z7C0lEU@Cq);`mHoR1DI|j>9=LV~bb@%1mmI z*U4%c{@dG5x&tOw?$osCy_{K^UdLCgKHLHKR9nZ;yHrwO9JY1VO?T#WwiwaOOfWU2+ z&_!wW6M@dUs4vR?R8hbV*c}A2$O+f#?Gt2^~m(OY%A)K(xkBtGTtVw_bgKTmACq!8Do-m^!Q^v1&!Gu2Lf)BKEH8J-*NJtWn-wDherP z9S;9Hq$KzRMMP3dz~Qt%zvWkN#q|q!ARiIAKxk}gG$z4>-v4QW(wgbBucDEEzk8-i z%x%f2$zvN_b;*;Pp9gW+dauDIl^}~_;Nsx$vv|n+;QEUOrBu<>>W-dij&o5`3WpER z@uFNS)N+Khw6F(bk^mF}9^cxckWQ9q9m8lNT+*I;-*uT~k6CUO9y_*V_Jqf0iiKQ% z*$T1PMqG8Yzdc1Ep}g6hBY3!`Xm6JqFy39sl_NGC$%y`;)V{gr!VUs0Dm9{&NTXGf zoOjl#Cs)Fqs_FU=+LzZrA=mgK-XbJ;t+yO6h0m6=y+dmgY4zcnsuL0&5pSX@sX=DH z?m3#}v%6R*>;x15(fJ)-U_(lW3V&EX$8V6yRr{ys)j}i@Pg00N>gKhvp-R`;G+#xV^GckHT>Qb zxa2G#)06p1y;AFQM^OJnZw`7ma!v>)1;EN?B%K!v5rWg?;ncM?Fk`%jeI^#0gv)3m z49g}D?(A9;SKkP(K)lUUP}@W~N!Ils{8aQY$?+G$YTDbAcai&3#;gu!0kA5rTIpOw zSHn`GJ<93gMW=)nEa3$`OEr3+DjR~RI!7WPFO2We)Q-U@+368hOFvdiu?nQV_=r`$ z8yO-O4Qfp)5j64B%XeWF;<877e0(~+VCRkjgJ}k;Iy<`uoI%8*xHz4Gj&k$R$m>khgRaJPDr*!up1-(ZaRPd4j#$ z!1ipFJDGC2Pyot?boS>GQYglvu#xOpEtl!;$MRY9T}4h}*NeQ>sxhgP0ljXRY02bJu~x>6H2o9#$n@NI*b32?ywL8HhgK z#k9|96x?CWHE_R~v)E@89VwGB&wKGOb#TS+afpz_rV}}=BamgANeQjaEtqPsik^n4%11FyKD#=AzSBfOpWA?;W?l4P))V@BT&hr@^St$BnHtfEh#-o{@^ZzdTpLgW&JG70 zz9ZSo24?0jMQ)agIoW=_otxzQLdUM+BUP+A_$fVy-7V~Hd)alQh5cElSPWqwYyDoP zG}-7caYB8c#s3E?=ldHf$ET*^mLzdAtQ#*Rct^>1yy(Lo{6`XPbYKcjj zC;aIp{`<(F0E`CuHga{Ze{1t5>JJNAsg}<4rv?3=$;$)@=-Yt5ZW;fj%}4S-f?TsQ ze%1e2gukH0AN^wtX{Dm{TM2ClN92`&2JWAuEG|_3rG3`BGdSsZl$o599G9zALn^Mc zq29jX;g%NXo@HD)Vd3iC={oOcZkss)NL?;r4ekeQ@?Cf;c8r^E|1vF%`b1w7F0FI( z%;@XsRoKEP-gzXdUw77H<$Y-m`MrYHNqsrcWP^eZa+Dq`!< z5XSMb&H0H*T{^DcfS41avB?26(WU8{1v?XFVm*4_BA}VMy1BIHxmfMCy^N&+?o5)JfMhXR3VX11Acttn3@2LTzH72 zGf#qzzmj;2-uE&G@pin zA}p-0ms4|T^fpUgmilA;$3^8{zj=0SvFBwwS9ryH7HAni4cc-6={}Z@C0yM25HdPO zP}%28n_xCN6qLTy_jd?%JflUeDW=4ZT(RkK{)!nW$8WIQ9$wMD8yp%cJ(0l4NHyR> z!Q}&wyYlcp{DlMln`$4vc@GO`M={KPhpD>!2&I1qxecq`Q#`zJnpn@TF7$ZJ8manq1 zfDzlUt>6E!LRUDUrG7htQ_Ft>|9DkIxBEO6eR~sV=VrXr{{3XROV1Y=9U__*HS(IL zr>Wx5)EJQ7^FykV!wR~07v3MJrjI;-Me=P&HzlH3N#f{U9RH9-aE;}6akThRX~tNE zm|Zp%BEOTJ%fDD)MA#YRRz9y#KLr{4`)wWLA2LQ$Rkk=fj{IP%=~vCV;DV_}dVgGq zU1{wDPKL_e{0{L&Hy81Ja}-wnOyKjh+~AWv32uk9(R~DHtRhZo4!74H|CIV< zkxa~atV|05Zi(xc^Zmo^Le&KE|;6 zDd84_s7RPh(hMND6$ob&A{{9qc9K878i~>iDt&oIFN?AWfhp;TPG2|`sQhO@@YNHp z6vxl@8Scx4NH6!rv4xkA1%h(TBX*1TDZhUcE4``%kv0FC1Gt0I&LON2i-lZHL)G`S~*7pCog9nCnnJ zM^FFl+uL0dKCh=P%1gJ6%-hRCk<(8Nu%_@iHQoVhwu63VGiqZit|;5&1yN;Y-jO(w zCuK76ge~wV7~qJDCB2R+tW1d}YF5R2gu~nCGPk1;Z(_kC?B}rosxz7GHCx}zAZ{k0 z-&+`+?v_9hm=Xch@n!JViN#bO_p|pY;HO1Jxy!cbX`kY1IKj)i*)A&1$23ME;d&Iz z5v_nqIe|$VZfq(aj#q1i3S&0wzVPAHA)bI?m82aM162aq}g`2$IGbV|@ER&%S&$mP4QLVD9!BcY37 zSj%2S2gh&Q^j_Yg{1E0o9q=F6y|}Wy%}pk1_AWwdZX4jgohmBWN)75-X^vuAftkSc z3LrFliBv8tem8Yr!r@|VmV2BQ9pou|wwtfF`b24yBKTl7__#+-8b#s%+(Frf*F^d; zlqfAe_aFW3`)s&VEoag!O}{)+SIlGGP-)Xs>x>tQ?L+R3rNYWHb+=yy6#fZ#m7HsRFRMm}coe4FjIYTXK>o39665CfxDd*b@>IY}|m`W7>cX_W?M<_ZkUhd&egyt#d zl8M&xntcOC$n;i=)MUhbuZe`-dI3FNZWJ0h-;$I14E-c2J$3#j1;-oV&ik2xtG z>jIxkg5`rRJ^CKS_k0et zd@_OeA*Mo9wZu1ldZ2i86r-(oLQ>Yb>?nGYBFhH^}X&*&m-pkV33{v+^=`NyLP zUN@Ug1d+gJ#A9$0?Cm=9Qn`Ic{Oo&67$5SoomY!I^2d*s5o-AtXa z&mA)^zC9E? zYkleOo~ssJx6M@SaUOZSyEKQC|C>t6Y3QlY6;@F5y+s;Kkt^JsR)cz-Ej`m|dJ|Tbv&yz@XOQ=(V6VoYQLXS0GaPj*HRWcZyovv{%)(9P^hX{whuF zYk9*una{%~>YV=TTlc_yF1>e)HFgpc0F&%`uZ0iv&P?M4UZ9sGcqqn7Kc8M4j>lfX|3QiCoNKj z7=&veaZxf8p=9--L%zyIR(~5sZ9gltyWXE5femiZ{NI*Zg+d?`+=WTj++nC^diZ@9 ztz)O;RijnU<7A+2N$~!n|B?+cdnT@fJIf9mWGcw-GC2chT2ZTc!S%l{19d<{WSiv` z{jL9268*0)dqJ;i+s-*k`+vRg->m)r-sk_y=YQ!7{Fev#zxwn4W?v6YA%#Qh&dWAe zCCtKZed=tq8qX5;^RIg@{n<&BNFS9ZPshv4t5Ih6VJ_olRduz3udY1L|3ei&rgqbr z43n8Hof>LW4t|-@W3=R#(CdEgnQTQ~@_KnhaZ@&HC zMJ~`tOcBoj^?Xx~E$Dx1mH+q@8z27`8*cEtDJgRdu_kZxBtK%Lz~qXODA$JEPJC_y zm&{MfG&0X)+m5~e$^!mNBmUEIj7fl-PFYDe_DnwrnFx(aX=%M@AZd3SVK-Aj2~d?< z1;#SZu5%VY2l!1&%1qbL5wV~bIN#qq|NC3Yn}J8KVwC-Szl654A{BStZ5xU(U;fYgDG@<}|M!9Cv-S4N&s zGmgHsfkFfXw?Vg%t?;NKy)JK-WznhDQEg|mtN%7H+>gXGTe*#8txA6xI1uj(^CX~m zio8&?-aDRpi?25h_i;&waR);;b28d**TGv(TycH= zu+AH>JtCEm0xXVWf1~XN(svu@z7y~U`)Qu&zX5$oTA<8F<9{AkzCTVNuCzMRo-Mo8jTH^hLO~L1)l2ga!ZeSffbzAAGs7 z%pY$!+_JW)@1T!xawIl}ctaSqQO-Di*nzGW3mCzP2Fwbaux||w4rYvUWsG=r?r<+a zH*n|^AU)%8)lpRY5$l)P`r`$(K=tBkx!mfO?hMZ85QCoSbD4$yL0v>;z^xBNpZkp? z_Ru}viyPt_uC75|Flld`!CC;5s)E9~r3yLrne<1$*-?%OJK$7@>P3?yuwjED8O}hx z;fbEJb_u8*Q8$=2kZjYA?)=fTFR29=H;Ynr^w&IwcjAAxK|2k)XMd1x5zlUSp&zH> zj-JLxW6D*Oq$q64Igv=@U}XzIyr-xPYqS-OnG%qMMGoUz(u>`^H$?q-OX72ukz=sE zBi|yGr5)WRe9tTFYT^EoqgKb_ECRKQi<1kmK7iT>^=^-5+Q7G6fu)jo1qZdq z*Wva@X@htKvv~ko&ZP&7^xjD~^d(|6rz?+3r$(0pNY^@bbLB2;JGLWG1vvHtrrB9H z#d){}t|SUNVlap=SbbfN9Q@sfa#SH@jW}}fdhh7Y5W|j}g6?lG8^wiNb3bkO1ChmbVc?sd3`CoAh zY0HE-LO5Exj@O$b-is9O$bcmbpCB>BtgcDKKsttK>_@8JKHwX??igikw{{ zaZCYS7t-McqLNKOk>M%ND+dNHkUQ;#a_Hf3?Zrb@v$B`y{*J17c*yD(O@0_*>apx# z-s4(7O7_UmkF>Fx{^1=)R)quPabL}HKf;$HH-d+RKcueKeLE}nV!(JE61 zZQ}QQnIsI!O~(-mlk8v8L(eDlkyr>HcKM*ZU8x9bg2}90a*lQJ*1cNz1cqU7#s_iN z7QRGq!6@G(UBUmt2dd-AihiXJV;K5L{x|~--;KRiC5f469J**}uV6CwTh4rMYArbB zCs->E7jDpq&Miad&k+Xww@D|$Q|7^S>CkpwWe(bJQ@l4nA0So3eMkov;!Cp8Zq&$#d+9FbTguvFcBf7}mv`KRQ`Cw-!7CybA4a{7!UEZ_z^> z4&l$Vb&m&ChSRL$)t`mkgQKi=UX=&zsq6F8Vgt^$LDx(s2yYKWa}ay#PlApxmPzTI zDkRFW1%tDDIJvH(+2B!lCyo!%Zud^jkMJH{*-vCiL2YeN+&9nVbU@nrw28M;o078#}SPV@td2k zWngdO)6zb)+m7}l{e7`2rk7^=O>jp32b_doB{=?#hx_cn%g(^c= z*1=&TgwH9@aQG4H8}RXIA~O1ozS zIZHe1Z5QAS3_%ZNY=>a$&ADbad22gnTyO=C%` zdOcstmq?%60N&@C*-d;67zq&6-F;u$exmH~oF7P|V#pU73|(9nvTVv65=ddXuBpts{sVSR4=s%met&S(h6 z#J50F9JQ&*vo`fz6nnd8LSkN(>*YG0nZn|jsRhY*+uLtTTMudgv=jzaKk{?>{TCVA z42M)>%mQq7uBlZN3ys4#7NJhaIi>T2NIMPr2Ko;;0epRPMMSskv;Xr`sH zqq7UOUrrn<$a`)pgL}MPP4|6tY%(a&dCpX`npmC*5SZ=xx?Qp(R{hZ3i>Uko(e&G?W_5O?gt~Gin~r zKfE$OR`s(P`@;PmU0Rd(Jyu@9S3v50(O^387Nft^IRIt5nb^yH-RUN;#j97(Pr7IO zrGGL3)Mx}i?k?=cE_xBi?@-axi|ku=w70j^VZ)i2xkB4`xI-Z%h}|@jnUeleqwh`~ zSwSvam%-1*UwjOicRzK~`_JqDG^Hq4tfY-HFKTXQQr}WcTOi*ZJQRaESoayB8pPf_ z(id0FJq2dpopLW6=K+G+%4}DS7ioZ)epl*qp9B=BDK?dgrzJp^0y_cYBMvt%Iy+-k zErh;hdlWgHk^62`5pv$E(}>K=&gaI6Mp|QL)olw7x80|{S%}ncYX-H{Zz~}0`TKf8IY!b#%dif+Zm$zC$CPVE4!ZqNVX<^ z=C)JJ8a5(n6(A>LGqNvCMH4co5Hc-nxLpu{%>W{#+C%N3l8aA7~mD7aiwOBpefh&}EDMbY)=u zsLEGPFF{=|fB1$S`|~=g1%Cdbm&_QkV6wt158wxo4fTIH7)Ekw%3ZV| z$m0nPu{y6a3R>!X)r?Sh9m@c-xcWBC*`APr;bhPKuA-tczy7_oz@&0-97PKEoC)9t zXE>C;>TAR7W%pOCc8B! zjDWVKs*R_{-C>x(n% zj$N0Or=EH#WC_&_TN!Q=KTOOxJ6Af*%{@2D;urZFqRdU$l1o>2tA4)77Qrn={z>F) zrz$;<;@ibG-NlYO(d~f>SF$vT)F4z`vzxBCcWy<*lXawU@}0+)akd(v=7u5EkYcJ? z{j9DowB`5j1sregLcQmV#?3$k(XcMq~&34L@ zFQSD^|1&K!&b#BNv6QfQ8_5>>o4=-^=v6z#(c+KD6sEvFEaCEqc3SX&ok+{tdgkvg zruzQx#`Q14TG!X1s1tgX8c($i{RPU4udq7^?~SJ%f#ET}Z^fh@86_Bwm$(Z#%tXYJ z>>INz_gOpu4A;WwqwA`~v)MQ5`)8`C5=Q~Z68Nw7lgTR(XyKW=K0fD=_`fC*7gaA7 zTrplj^sfL4ABKPqw;HXG@$;{bO-Z?eV<9`n6!TlQn@tI%jU(o+OPJS108D06->8AA z&3C%A*tD=;zqAaiClmx8zIzF1swqLJbf{J|=d01tG_tD56xs&+GZwCi>>x|nH|ajB zcpE5B(6jM^E2qlyBDwmu5}`ltjykP?nu2oY{{DCX!`wzIn_>>aX>XM#OMzz2yZ0931!{Es2n5b zg@~ZgsD;GurMu&~h(t0BaN2KsQzu@I{R)kZPkN`|%AWPI&BJO)ksQz-C^#cIbycv} zl%I$g>1f2uaVYpv^`@wVhO-wv>t37R=KyO2uVM+}DbabsJnZbzfIyV_GSs7eVEI{J z8pYZ~IrH0nou)*z%53Rt7(K6wM6$cp=(*`yPhm%P0o6Xpl$Or9Ia%_O>MkH$PptR~ zIrmlI2i1OU>N5dzW-ab9{hA8USCbs^)52O{MP5|Y;AvziI`sCciU}-#RMV^!GhbtI zPJ3*DHdFF!c^MrA z0P%@pW`JLvpJ|&I?=kgm-QNF`HDkC{0TUzejK``YEx1n;e7<$tj^w@x#?-i%Eh z$y1q^4ll#=sMz~7_kyB%=0>)X>4YO?^9e)j@qH#=?`>4&;O+Zd8|^?pdti~ zKB#r1+JKnG(-tE&AOYCUr_$86V!EFW$P)?-BY$?=-Qnx3iQwtroJ0ITza_(@+bGF@ zhGhcCDQy0m(_L1O-FO9$3F_?Yf*cXATO*k=l5QLb-sj^hUkxihec#>+zVY!;?(6x9 z-!I#BdT*9et7IPch~I16NV}=Y&>(f=hNbwXqPq?2NyD9>#`kM$$tB8nZU(|C>siS3 zCMub6gn95gMng2(NYi>0%{Uilm#YN^Wn(crZd1$?5GE_Cie8Mc7w+4P} zOj(nTFh4)V_wUv&#H`+`=;&y((Wd{Asru2#B*%IjNJvP`h8n9FXSitiR}skEKXu7j zuflpDQ`nWe+@O?-R66wp|CBH$+Gc{BMbfu#zIXiEAFlp$pE!rF8TjTXcSB5tl?ZJ` zap1PTK&}7zwp#UMt1EUvwG$LaCzT<(0l2w;O9XE~pCFkNUxLJr z$p}{qN{)tt?jF{o%M?zU_GsQ3LtrKQQvYiFmgafm&zgqmv}1f0>1{mhLplroCRP^= z@>oC$%eYC4BV9nKzW?mCyJ=+B>Ex9>m7d9F&-d%>7G8R|QgPQehOBDP10QVy1v$#r zKWD-v;(zS4R#I6^jlo$y=El;9GP$WI+m^QZ4Y?p_I}MRC1Wup-G`a2=e~8Xm5lbN3VAU~c{KHayn_ z2zoX)U+@M91Pp`0jJfjwy;-vO*Q~Xx>|xx%yA2cF%X=*#1)5D;bLnIUJI7f(6neBXc@D~`)ED5Afmu5PibZ2$Wbm^eWrZX)YBq5PB5xXOy7 zVrPn<^f=voTJkyGs?n}}A9kVG z-9Pu-1hi5j4#j)j>KP2MIL~LnCD{=O#CUX-%V>V6@fI1_5(-6Sb?N`q(tlNPsjX|0 zIa`~)bR+41xETFqNwx1MJRW@wwZi@hyiu;Vuii`B5N-CL;T!Y7?LOJd{n|l#seiMc zmzVh8TwfL)-5oZVZ8XdINOqJo&cJSleb%c&xeJ3iqBrc)_kZ65)$Jw8VrRo*7w%i?LB;MHI%|hMw1A#TB%SeAr%duRkxJ8rCsmkxDJ-OY*zB|2 zxi?nRBBn$ff`nG#`Fx$t+&m4lpTBc`JuJ)$(C2&8l%kDFR~PF&zg@lxt@3QK71c=z zN3{spwZM<-KwQY{_~%Gg^RRT_9cIyh(RY`elWyk>Y2wp8`|LwXP`;%j1K5WuOf`%X zkc^%|KLWgdI9{|l^9lbZd||YGtjcSu#+_19ve>Zv6@@Cc%{P$4u*6M3Q0HPKXbyM& z@;*r528U9&Vw|%j5seq59cNfl6)WNzOR3@*F3CrPG5>CVW}4ztXqJEO$`#|z>YUuy z?Zh2H!HyUu0hzO>ltoGg?$&{9q1}~u0}CuG6AKA5%U9?_N_=q zfJThO+Y@bGj?mNL4}fL7j|zWQua1*-a&?8uLZXozK@XBEG7+R1?6L{q>jep=B?Wre zn<#C5QgJ^KD>SVZ#5s=rLQdOefgs?#@z3G)5xdA=#OzqW`R{T&8RPu*nMY`e^2kA6 zpsGl#ou_uHtgf@`j^VYr#=);of;%41wVHvWwhc?{SW8Mu^m6W6E?KNTJ4o2V$U`CU z$^hoyQ5<1&b5pxUDSuS~p*}6;kSamKBzSjsy(T+G( zf1mae{u_qydN7e7fQpJLh9uFMTPKed<_H9*fU(A(cP$<~VGEYavJ8hX_+ zG&eI-y))IQuKmk%R!tdq$SjY>o%I$mHC>>9nrOafm~<1Bg|IK{R_u&L3O?Xm{+RUU z=TEW2&2iQTO`Je@W?)VM;Qm{ZhylopDj#GTxI+k+xuqZoMwtq|k04?SY{`z==z@rO z{Ko=*ml;INGVWEMEzowE;`y+t9tOhfr>YIjB83eH5ee~GO8X2bC;d7VL(voi^U~A0 z)2diON#glxwY=d|@{aVFyUQW3aWZPTzgyEsqN9*u@Z6rpd{9U=G~DD6L>%uF?H-#H zbvj`xvEh4b{4e!t^&eb}6#QviuQP(&nho!>6} zNC3d%!@a!-6Q!YnDXGNhJ95-X5z3ChdVyWeCe!l%Jwo1AV&be0I5 z7No?W(Bc=ZoPOBW+#3+mNiwfqkvTUluk1xnhuOw2?pz=VxCYvzG%&n0-MaO<*Wo~M zNlN>da;|~0I~PHhPGG|){JKBr7c76@ZU#N$wy5d-W>HPThBr;Zt>tY&7}eu5bEx~N z!MW*vwBp9nt+D)V&P!{~b+}Psu%pzdv_qf(9MO-NzNV(iVAeutC23#rl$O0zb6=1- z;KchJ;L;CN>M~$XFbf-w0WmTS6ciM@U?H;oYh_DXI*&F6O1it098vV3fltFOt{uH? z)_?UUldS!WL^H9GfuRAQWh`z(M|hqHqow`43u)LT=36?XO73jviw}Ga^Vdz5fXo{)U?1+3w`*Zx(aDf+H&`ZFVK*+k;fh|LrT}AlJ_`LZC^Qbe`-$9g zYbWB677PertM~B$yJ4+A6%Lj{Z7S>r?njB={rP@kI?L}vbdj8*yB!pExfD!u8LQoa z6q-lg8n$`rv^jR?NrACZz}l-%BAGWb(ojy+Cx_d@UHMhDwey*31SY1Ly7r;jgy0Vz z`6E9QH`d28xhouIh1+PU>6^ADJ(uda^3$ z8Wp*JndQU$4*s2IM9 z{NZY~+Nw&hcfs+*B(!w_7e*D|YVEw2xP0MdOH0dQSX)~cZsA>3PFa`$1aS~)u;0dp z?s5s+YkB(QGt1s=>ki%d-W)LkAdECEc8?#FSa-2KSnlxhH3w)-wVZI6pvV19YhZGL$Pt_cV>KDE-PE|tGn}>qjXQD(V zcmmX$vHzaBd1Nkd-;S;h55I@LQf6uPXPcW$jw|SCPM)F^#NdOqrrB!eQ(MWGBYp}5 z;114!Q4_@*k3iUM|L5$5z4o-|S(|IH#lQ8IBBK4ART-ACWh9_4Ac8M)C&AADf&xd-etd zF*h1cCk(j`Sv9%&h7x=Q@tK32CK*UTQg+DBc7mO>I{Yg;wbMVCj_;_Aq(0GbP@&hO ztUFo?C6kl042pL>0-8kqyN%cI6ex*l6}}G?Co>y1Rqgo@mbLUJ{sOUmH9$o((B%Vr!392T*j%O%TKO9Vuh}PjE z7pTIn4Ag2cWpPAAe*Yc(N>Sp@B_X-xZ}QdEcV=*;*@R>{bkBo&;i$MVXS=rIVo7eh zn#RMZb?!GYH!ocN(^Y|XO%wl;YPMx1BNZ;~D!A8{^g8_@dP6kV@4;%{ zCj0hf?L-W;x3629gM(UA&hF~JU3Ac6zMccw&Mos_RgF)WW+L~p9yhxr??%f#^hnRd zAo|B&&il#AOyH#I_u;$DY$%9Bsp0cV-&U6sym}7Rj|Zi0#E``el~B3V z#q7n&eS8d~^VWn6h^Ty0QbV3wR7hmm8eVXb_X7N3Es0Yg4EhaA)2tni*X%5ML^xxH zir;5PstjU#5CjJY;+e|F0b**XpE(DQhwy`{2p7_=l_D`1-+_8q(YLJ!et2@PXdad4 z#m0VU`25DbPUsZ2bQw$2qiaR9SdGrx&$WPIh>!dv(R)WD2AC7Z(IU3;Pz934XV~%y zb-~Uv(v@LE9>TnC#<$%G9eUTV%syHbc6X6-HvQVNfdayzl15WgGq0dP6C4M>Nfg3k zg&qaO_re>o)JO2@X&fP|`b2*r*WcI4|3^6#MLI-;9wORkdk}61LMQn4McXg%CFWFE z4m^1hPJG+fH?S0~lZDUNh23r5n!2G7^vz!uzhc|PCP9wKUKlk$BMIKn`~T*e?hjH8}2k@_%|?L z*vwFAs&tqQno%j0^!ejtNmiGjA72Y-nLV%6T(VU9`_|nuD`uD&ozy3%^9mg8Y$}ao z;;k6QToo<1WZ|_t^v#nx$Mxh@;&zCf<7>YiWBpBTzH_aa$}6xf(VgtNDlqZvD9mmD zc$e5k2)BUI-=X#>j-=zB|DB7+XkNA{%J-y-O{343q3;L-oSiE$haG&5N2hK$!SRhh z7UM$N_{%x(3f;uqB~n(J#Kb?NSzvwv<1>#~TxIV-cCn|6HbBP$9@ukl8$98Y6gI-w z+}eHo3u@0$&YJ?a$;DUYU}KkNCwWq4zqWW8`ZIhtev!W5_yIbFxqgG=9K>O)RwK`=B)&cSf&#)j=30){{d{ypquFK5 zOqpgYsP}#6l6xFs_YuN~%8&lbMDu_PB-Slaj8GVSimQE*p+pz|KKd%@BSw>Sj&eO^$h@j-2ws__u4gmm*teOIdkt8bu*n7)O_ zIz2<(sMHt4-Mvr@dpt=HX94|5+LM(;qUw>2eA`Ux?@J+fR7p)}A>5zYT7r3=|NDb% zY0}-}h}C8(gVQ@}}lUXLHrP03wef zLVn)qWTFEZpKcW$!|Pr93p&sKE%mQZ4C)sl8J~^w_>%tS#OjUzI%Xc%wJ9gv7kV-( zCqHm){&nT=%&$wbfB)KmNr*u;*Knb`iRj#uaP&y!EMJ|An zlN*V>gCCwq{F5#R`*$HkP4ecCM0P2P@S8R}B~=>PX9{ zERczF4~*sZb+zfful!)E5r-HUL%&A`kaCW>KgnF12_Qf0v24%Mey*#-sNRni{z#&u z)9IJ#_VtQkbWGff`x9*?gzUirPm5(bK8tc91RXGUYEKl_`+rB!=Tdlf-R&=O+zEti zJLW1?(RY09(U|$n7c=I8p-k)wKH`$ieBH-$QArSX?QPA8&w#8&|IMXky70UQ70vzX zrsky{6f<52W_xI8J?2u{XE~FhUxpAg^&Gl$C;QtsdKF){(8;ae3HG(IGu8Zp5nRJp z$WjEa7C>^TMf8&l>k(|ZT+wYp4$=kv$Kj=8_g}>PCl=trmgx|>Wnqrg)ED+ z&bJXc9(&8CHMdM(!8(s0l7hBG%kLRby$jbpIa4FECpsD3Eq4{c@TF)FQ{u6VNlv>Q zx(Z!hWbOERlxv6jj?lCexO=awzuv_2s(?U9Ixinldl9~dKfkAIKC5;xM4~xMV!yoe zc%=an#1zh=i&#OS-+F^4=P{ypKRVU2=v@enfJZM{@KyW zzx*9I#CS@V(|Cb%cSf=N8_(IkH!ya*c3^!N~Gppx_S0Dj@Mv2>TK(YhhzJ6 zg*#41tj4^JSXW=us;8!x49R#*(>wigj$1J|i1uMckNidU9@{W@21IoW-6v?w<+jL` z)w3S+r|`!2^7}X&{xiZf`)vG){}rC4hP# zdLLi1aql)kxO|9EggBev^?swCa+mkRp78GD54zt$n9mV7;;=!jpRgbUEVfhw%0ZOE z%saSoOmNlnaM9nJ<8xg)iI1MGz=n(zJqpOOF8cmm^Z7g-EsyfG%Yl?Dm7BGn0Fh(5 zpUS|V;=%Rv=PT&%ygyj}DNsQW#Vw<}zM^tb{HW$~to_jH(hJoBVgM=VX_A5~Cuk3_ z_A|ByO`Mz)Lm&h~82VbPinD`|FFWmJrgeRCxJU%Hkc9a|J zy(s>C^kd&o^HLsy|%5O`+3 zcFD_fO0VXE+N#>+>mt!9q4`LriukKvbvv|Ami)$s9~!u8$&{A2UH(+B0%6?(R} z?oXe}I80r8H*C{7Y&)uHGOJoI>9q^t;{gM1>B>55^VZnb6q7%He#6up`l0oWTR$`a zy*VCT?V6@#V?)WpI@>f}%Kk2ChEL#ZZeLpSnx6M9NG|0NyM+0z=g*lg(NmU`)bKmD zJRGx=y##YUFD%?qH(&hW;XWCYogBon#C_xg4GQ zVQUj3r>xDg2Z(789~ldtPxz?h^$gb1CP(PLddZ8epgw5sVP+-XzehIod~)ca)p_;G#}YTooQxG%#O?cha-tQ;6yyE*gzdDG## z)G7e7UAyn+RcDyvzqCdjAD{4ICBphvRRE$@1hmS?R7y%88v9V5&a@qDJqU&b5Ss-2 z4)^qFd$_OYe?)lfvjFAedD#~6d&e9bXQ-m$XDHz?Bi5AJtS#x@dG)L3-*-c=`}h?U zs6kL5zkBy?@qBjAt*PGjwFpszLcSdJ^D906#&$G>8DG)<;>X&Do3W84N}kU9OV-_= z2^Rh5-98CBR@BZJJE@nU*C$P=j*WS~u{G4gOpb^t(exAN8kXG#@>yD$S=M#^z6AA> zS0yaBS47+nJnO{&>eI^)XF>7wQtflwbrJ9)@{3W_JzcOk8+Q`zxjsW^=Cpbp4vMQe zFJU$##c$u;2}DY1@d-=yq+EWY#Z5zo?_E*9W_Bbz6&c0oxW!?;hRrd$-LW-kcU8Jg zR74~;De0R2{kZq|xOC!q7@pYmLa9k^)`$IGqC~@-8pWKGVzJNBx#F`6DdW2HJ(a{L zFfI7y@57D-%j2t7=?bp&ec~opEBwYQ{Dr`fyX(*KhAEg$7J9JF(}!^Q%-FayE!xKA zhzx2Ie9)3KfW-{iI(`^lyy`R5H2pZYZ(**H->}3>)g0Gla#6+RD`Wk=uFhRJjL3mR z>&|MB0{oo;#^xu+NgR2wRrIoNhN6k2NwfOF%Zh2YcE|ty*@M@M+ta>dh&e{&ZuM*R z--!;5SvQt@JWv2G=rAq8v}H718#cWEAM!4TbdXoEv5bero+|RvriBKw3W zsHy;EFQj~0VSVnjmgVbel>9*W+?DTqvbELTz7>od+JC-R|8Cq*`j6%%8nQaf)`P0b z1C9Q_j;K**Sy7(=Ygt8|ixYO2%e;<93NG-`53zBdJu7!JfOITJ;x{ix?|myUtXt#w zn(KK%mj045m|Cv0&knznrChM{x&}5pXX6 zDepyod@IdrnD|p0+YNHxz}3i$QM?39?lsX`t})eM{co==-J9i*M9VrtuZuFag|?VH zMc;w6ghKG0*)>=3eLwtnM*{xF5piIPu^4r@DkSi{b4j~ZWdF+-PW*Dw&a=UvG`zwVAA?`qj!CMtdhjo zn~r+Vo(8|7A8KG=u(;(p(>5lFZRb@WN1eX%de@d9&fT3VEWx&H$_ z2m)&YZ|l`XzbCY&rzn_h`l*Rd&idiZlvQ8;z({S;5v$n~J`B%G6HO2%5*2n~!4NRS zIRA&Ho%MI_Urvptkw3a^L(V#Vk~e}FP{-7Ar2!#@=t@%NF#{pFlXty(paz8W`0MAO zKS|&cCxxZ!H$KoFv3|r&^=HdzVc`oQuht-JChj06cBspbQTl^C8@c=z!R+wloP55G zdYukWOynlC_tuN(?pORGbw=;tgcDZ$F6FFRVmIw2c`pq+?fp1jQa)n?0*8am&r>g6 z_uL-3hBAn%Bvo8mY>Q?!`B-<7E7wwc7KK?j_+?aJSni|pQ@qoafzxdg^w8cZDEea8Wsy|Ro^Yvf?JC>(8br|d1y~J*IU!NVAli?IDZ=f1RHYY1yB*OgoQA10U-rl9eR=7*6$EQkr9Gqt zAAA|(lQJ+C*5ZxtX5yYrppPSvKs_IUQ*c5CzSL<5x+(GM@eIMD$PS4-NATR(9=eRC?(bHd-TH?MN2voPW8lzwnYk?lVBIh>Fsn2n1drYQ#ye z91}aGUyUy>C}DQ;zJG5G4DjC@ya#=@)_0s;{q{2~tgJ7mss>&x zV~Y?6lopomZG)|S&$eo!opyI6@vA7p!@9A!V@1+lG!a_kW=&Lk`=}!(X|})rvT8z1 z%w?YQR^Gr>eiQ_Lfy~9TnHk7;S9k^Deg()^=h^sA;Zym3kamsX1eZ)-X4v&gpE}tG zKQuGqcRIOps!j%&KyOBE`-V^T^OWk#Ru}C-zJRKAm%ID0;yLf79CYkhrBY3ADwXeQ zlz7zdd8fC9pAN6wNA%Lrgtvr?u}h?cd-?j^tjqbBp;9+mIQbrrSEgN?Ww`ovsMG$h z34Hdlek{}oAK^8heVEY~dvTNWb4u+(m^D`%z|6AYBuE)U>la?QK6;cjMw3E+;jcCC zZhX8&vC3VL>m?w5-L=Ercy)MtdczNF&;v&tzH52>^Rw5Bl|%hD_CkK}*v|j#4vo*; z#Ua>vYXT>=q1j!(X4X{Pzg9!6F4>Enb&51&U-?SzWo%>9&-jQ;S?;ydLoVvML!$l2>)XnVcFA51OFwv|Y z@XXbyN56uA&TM9Dx(q+?I6X=3QARYtW8135+9!Pi9_Lk$a$7+Ncww{V43|1xLDTVE zaq06FJlfb#CKr_*$shT;OR_^Ev+Z}tS(t` zS#!n>&0H!FfnKY6bHFaqxab@%ZmJb^DT-&@sHTYc%_;$fx}fB-&GzO&@{K!n8c(`{ z3gYT7|OJ9G3OQRRBB}>tP2Y3)?!(^qd zNmppE5;ZaC5`pi0ybv7XSC)3um%YJ+*L!m7&Z_iDXoXGK^0BInj7;9opBJ7D4nB(g z_%TcPD)0;o7QjW^+;;E+x93uAy_BJIdV6ZIWSP?p>p|=*`bRHM)A(%(bcw$#Sg$*1s#(j|hlY9nKF{;56cw`y-2 z{YTUM!|B^Uu{Qm)aH_Z^Sa_AAKQbG{mSXh2y4{o0-Br}={10=qqXJL(l!IYV+LFUkb!#NoKmi35?q|%dXGrbP%g=G{2*|5reS{C?`2OTG#li!7Tl8`#;?`z1Km!(68m3+xH3eiwPw zhz$6|h{kx@z^M}{i*Qjc25!ac=j{V|tVU?LX5qfJe!{e9UY+Mom znnUsG0I1+o3h0`#ADcJ@{WIz8ne%mwaL^Yqd_J-GJ0) zWS`z-ATxq^ah;;H-_u9c?hf?|mFem=BM7C#R26l&0O(%*z&(A_M)7A9jJlAZ4+{$u z@4b}ToCn3;)OL5L6A=-K`SghuQ_IHnc&`y;g-`VLscEdOzu&%dNAJ0KnP?HjAS@0j zC#1S|{xpZiu($>)g7r2P`eir5a;gEEUleXff=h*x4`p9-p4u5~n5U9*Iq`#&`w){G z_c(98U^L?ue%`;-NoEj7E2{=dQGI@>qdcf(4bH|FE+$uQ-@NN`gC|*TU53cWV zdd@&wk|Z{(FE+c)dADEB51Z4+FDdE4;Panuh4$Nn&+kC?@MD2*ryJN!%0Jp9=DUZI z*)4n_P@gpB&@9^k#3ChkHq~StWZR{>e{75@e>eo=ReO2KqgHKHw|1KTLg{+rZ9l&{ zj9e;LUZjTQiJZSIm?wWb2?^?skwP35AhWzV)JfGy?s>)R&&A34ywoU&IO$N?Xj6VN z!S#+oIt@XKf~fAzht9dxyi2zzst)o~^jnfwohf6T#U78wewiSPjHLfFGIE8VzhV;q z)3l!6z5J+Y`0J8}SPINwNaWO){cE~|e^Se>lR})Nhw#uQ$?ynID{{crE^1!9M~3h0 zxNvFGDDZ@nQqk>x!@FEczI?|n7jKY*;rA0!L9I5y&GQXe!LEBP-RsvRkdbD!=%y`~ z#W*wHn<$zj>GkJgX3D${m6U*tq5jlehMrqd5byyfx!}aX)d2x1bw*Xh{1tGzOZa$c zS_6_0`Vc-FD3qSW*K(Lnz{@4cJ1f7spZ@mC1Sfu_647!G?njoY=-y)DSRYOi8r9@b zdRiTMt+%cQSLu+;hyB%#N@G+VIKN$lZ)U&l)!*<7Wn2|d&xpVuz@7j8;V3>&096&G zb~Z&@G$MrE+>kR{WS73wyUW9FtV$E_4I=s5qW@7%6O=o#sAg{@AW=9&;~RQ)Ny49& zEqQoOtxclNkZSJg8Qw{6Zc5dfs~Xm%*rXS2e}dH|oh;;9u*WERc5iz#Zgbx)aj<{P z#t_LBly5+@TWdg!AYstFSv5b-!AQ%Fl7Ks2`~qw4tzhm;5WkHW!x&;8UJ)K^P(Cdw(H$|#oB*2>)?(jN1DAGa$= z{2)!0&z2&9KZfz*=PUtykojw=-*&L2Ri0zRX=TnAbneB;VFyV4>lslf^t9s@DJhCt z)#)Ih$_q5<2sY4-da+zZ%6R(suy2o9sMvY&l^-b`u665H9cCwpGJ4Jy?l0^S3<=a9 z8-lqpa-C>*1py}^{f}i&@#8J$TD_BT8I~=j&?rL9^M;|t2yUl{?C@ZSxl;wL$*fXj z&EMZKYc=Tg_v>9D{Mo*t?_-B#N-!h#@$vDQd3hIYM-dUElRiWy@7ZUqp|-o5CBf~T ze8h^uI5cllX%`#y^Avp*^!6|XX#6$Q z@8d8|%bd!p{vuK7^1(GHit|H%I^ur0o|er*FG1P7w>mnbK_U`jJ`F!8gV%X+EH9(? zdK~@Ea=~V3CrSfmrgB?HgvwCp+AdhjTdeE5s(Qrib7^UxN*xYKziTe8p=BIo;7Fic zXYBsd`Tq}j?-|f!v$c&U6r+&|Cx<8wbDnS08bnKf%&*EJK(!K6FeQF10{ zzy>X){Fl45*GI?woqb^`x9zK(c;kLu9T#~UCZUBDYtf+XhyJvvKtD}~{c5P8|I6b@ zsIn0KZiDsnnvjF956hpQTU%Qj{B+;Ee9f=>moPTLgk}aiXeawn5pv?hYL5D+HS$Kq zkhOXOyLrj=htua@_2lvwP}Lp2f=j@5HY!-#`6SkVAznESiD>tWj9E``kF#rNY6|Nj zGn?nH?*c@+F9>zC_F4Jw;P{i@X+LElV>^`x3eBYQ-uqtnuY=p$**;oYFe`sDAr)CY zfx*5iv}W8VMYA;QANT{=RO!6@e3tqzoyx+ssv$rY0Iehz1Q>~IZ|)4YR)6`)W>FJ# zNQ1<9zS0n4opnAdykRH^`~x3BLzeoVa$swomiy6WTxAOOq3Xf5vir_yV9Rt?)7*F< z2z(MBLF2e1C8|$Px;d|3xXnM)63K7hnw60qd`D?cii4FlpfkEcr2@_IdJ0O%ob9Y{ zr=cvQtz&;FJ*l-d9lN{kx^RC6%Ot8X^mH9X+)Kfd51SCaArjf(Huv9mHoZB>$Ath!(`c=h)t=|GK)=_txk)^gKGzUM)sT?ofo z$~mi35953*J_vxAlvVgcGvbQ2_PZR-b5c!=C|)hB-%sy=&;m-C%AElX?Lmb>OIF3;OZ1{h7}O)oqJ;r z(|vL0QWgS!L6(md+@BIUnIY;E(804YT>*<+^;p(8cfeE-a==f)n84%SB2Bm_K2n1W zlx-7uu>Ddm*Fn>#J`qD!jzB#%gspa7Ilo6x);? zOszeCREll5x&s0OZNS%YVDxXJJ#o>a^u!_a_r;qBPHVvP}N^w#dOeDo*SiohEvovLccrE@p_i?c?D(WS+Mt+A_yOv z7uyYw`E-4$$B*mMrOMH|P43^n**boGQs;!Yc77>DKHf+TP*hZ8xsq0O{#_&5>7&!m zfVNGW*0i_|8h0?$Zg9y_-i2anWfsz#UTp*RTLG19=nA^pc_NBPw`cW-_wv$*CU&`qfq3Hq3;JxgqLvk~72-enUju}Tnazn$rm5FM0CFk*Q;2+F`D3u~-vmfIlm6XA{Lc`=3GJB}aFUgwjc z&1m&dopSi_qIvP4`Dw+e3uA0C`A_EEJbeBcSLnE_~2oSXnd}6;pJWQ(h-R%I1J;{tF8r0_l}+{wdx2Khg7W5Egjw#1tHw{wBC? z^M3r^NMs@c2z_kyt*C24n1#(=omiodi)P$m%Anys-cMK4Wn1xgg)Zc$J+}y@Z^&MmiYaFN4CiR3lHO+ z#ZU7!Pw1UCoIL^@o#PGdBVPCYSUh&%sMo}yJ`Y3k| zm|b1se_7Fx{Be54+rMTf38>a&9^|A1vL)@2vPHbJln|(@vD~Yzs6xgaeE5+zQ8s2~ z%;|o)6jt6hcR=JEWNI1tV*ZGjfFo~Uv|GSa>LED!)SFN4QH_y_1$~eA zKFodi_^~Bc@OtV6l4+iI^n)PquDXMoTzzUZ=k+y@)HG^H*dy=Rz%^>j!1S}~?Otje z<-`poTLn-tL7BOdBTOaEs^ML&3daJySh$AN1!S6)_+rNx-NvJ=N#RB-V--vtuSBBo z_#+@^KDw!7baBzk|E9TlL|fan_OPZjHleWcOHRtOvC1>Nnh*Ujsu~wvy?7emK%c77 zX2d6@m}kGQ;#-z`(2-fcXmS2fKcE4}y|+5Wo%<)^T}g?Epz>yO+2fFeiw-pNAQ2-0 zLY2=GFj76#pp(ZkD%X_?XuaPb=TGgT+9Ro#_drXKStkx3(NR+l^uxhS9~#YqUpjXV zTHK2umTEo8o*lP4Q_j=8y7<2D2-EBVO|r@;*TUoSd-sopFR78VPrkb?wMWUE*kqen zf&^(v%{+a37lEd0(f%XP91mTG z%D1=Qn@zd6JyY6@rYs{C>Su7edz(XoH2b^b@g2XB0n0;O!c4}Ip;$jE#A84m& zv1u1xiEG?f9)`M{wRCkJWP0?5w-D{q*!vhyh_25kHG=Gi5U<;Bj3c>TjKDvL*tR_; z#DWRyfQ--N{6NfaLyv!vB*&8#$Ss@ihcQ=%l=rMn3W#mhGj137NW2~FX_PqDltD5+Kv%xpW%TpbAs5CHjvU$ zP*7m>Rx7{Wjw+$ua=>(ojHCBZhF9v`A#rc)Ba8=+kB08;Dx#(&@@?7xlF};GyH;MMCN`dmenYa z_@xB>I zqXw5>MA;Mm!S&Xp4P!F^qhgaS;WtQc#>H^DhqZf|%l|~mniR7%H5JX5CPDJOX1ojR zmQ9@SL!`#v>UM2-R(ses`Nl!I)1i;s_N@yp8yZo+w^jwtuZxy4a67^)^Q_)u7&6h8 zt-8*LT8in;JJ;ab>bGKJnjkto0DD!4cwuzhKggGM zZ04qz!fTI~=oE0E>tC(NkfXNa^Bk7o*BRr4R6(jtdh3#h2NSq;`5{;wI${OGtYsF9 zMoMCoxKf$eMNT!*10;=6gKHTTNkg!*vpWLx>Z0@Vu3fNe*%urI;k2bb-;*hFRxLnY zY_P&!$*wOoyy<_gyPmHLSp9M5)rmwTI6KU5)b5^G5ii1Y5BP-v3bi5Cm-2iWi?{O-)7JLV&^F1WzF z{1>59F6^HW)f38aGtybSYxR+=jPN4%LW-xUgM%mId~U=Y+ZhT+^jh>^)e^n~M#*8_LBuXQ$;M`T(L-gelwSm6y-$adh;=oT-M+zQN zVzmVOhUHw-ZIh~y|5WO>*^AXx)?;L3)LV@YXLEF%&+om>AAJyo+9vUyMm#6n*!+kM z#gFL8oTJ0VG->`ss3CnI?%^@=(=H+BZV{s~jLW5ib1#QBS$YtrsHfO2e8f&dm4CzX z@+mmWLia+-1oC4e5;tOXDHse*IB8 z1&2hV{&OqDU$F!4J}nY(gJB;Y!}6MYJkX&m3NI` zs=PE@~qpf?CSu!deq0WAARv`)cLy{}v1>);<(&Bv z)dOe{WTr8$H1P;(q5yn-hzPt&hr_wJM7yPm`@@+tj+Ud>Tbp{LOT-AG{sC;o%m;Qx zL+bP?AX!=Y;ssbdUd`XHb|?9XQo%<+?$@6h^vOX`;8!zBK7MS)#iW$k&Rql%3&Dqo z1!qMiwRmOg)G`FVNA;DUItw>MM80W4Sk>>Utblk60VLnCZo`(M#U>~%Mk|GjJ9yYM z-(f2~(*b}3ikaTN{Yp&N_-JtEw5wjAB=q3upIzNYI6{#dzUQ8Xl4DM)Uj#d({ne^j zSbX5#C^HqdQD!@M5nOC63qZg-yD*YScd{(U;qCgv4c%%NtMjtTOmFVo8Qovi0*Da# zTwSlbPVvGa0{xH0hqA5%h)5+f=0eR#J9rU`fKMzg7UMYROtq}Utbt+pqm=o zSQW&C$>(ko`GxVaq%nlYBKnH=kM=R|o9cnS$t5@M4jH$qMXi{Q74Swk@$&F!f5Y;v zvY^jza#8LpHf?u*LLse*rmrBs0NghkQ}jFcH`?0YbD>^b=IHgn?;8yI8e@}F00lNs>7c$z|)$_qAFY4~ZRxpUT4e*Qmt(^TN4~1>B?9h4Y8C_p~^{Tnc zwUQV@(AE%&FBw3#!JI{MqCg7M&vB3xhs}1rp$45-7+!9CH@5 zYty}~>yLaUL{WDYFO>&C5hW0< z;0IdJ);>tJ%nCmZ8AFn3ULDcpL(TGa!Ilt55fWO1m_rI(i8RGDu5<;}KyDpP*?sfJ zi4&m@pY4VX?XmQs8Zt{LS9ZS=IEK-e^RDCGttTSLEQHs)DO`Yba0@KQT=3uWy{@ac zAwd)@8`%TRLvP#nkePZ!_vO2h)#yC(BF^j^`@R(X7I`lw{(ckhtm+rK2fyU{*ty7} zo3D58*I@IO(L0#?FX0jf?A3WP#~hzQQEp^|e#qm_ltmK}bOXA<$}ymFvulBAmw6v8 z4ahq;oo^t*gifN0GnWc%!(84yQkF)xEdoe{FI-mMQXAF1LIL zQa3xF)h#|h;sfx+@YkQ~Q8%)da|8V)EQ z;xA5z8dylTAbV7Vt2Un&o&WQz>&M(n`M4w7MP^5;QI}T>os1^PHyUCpEC;ru2EPgX zD7uHz7ifA>#6Vyd;=1q2!!t>PBTdW@k!84l0xZj8j|wxfiFB0PNMYvrv%YrSSwH{$ z_f9j5o8{~mXM&t)>X1?(&~)hlOt16V2pCATh8_Kf&L13}W#MZqQ-L7I%*-8Za*4JL zT?zaHazZKSJ>NN|s8#W*p>mHAkqmWjTA1Ie$JGZZtl+|P*RS0(_&T4trTeb({DDn7 zxF=U>D81Vc+Y?QCns*-8p6kmWXNQ+rUjibG@;&i8O}3bTO34s>x+M+t`G)w`8}nI= zW8!53Zet3;!&acJ(em!oO`TQEZv(}$n)SqB^a z%`x3&pC-KKmwHcQytfCVw;oTYSpK+i@E_bI$&w6km*tPh&peGy%z2uNii$7?>f5Xr zGVZz$U14`}VDttjt}?sL4zF`T+?`z?pK_X8K4p@9aNc~#`cfs0F|;xp1qTi)$MqZ8 zj`VQ9EB6cH9D|Kksm)&+P5n-7{^wASnlviv;9}CVZ=uu(!s8#Rw!`4TJU0G#Y7({e zdK!xuKme?%+84kZ3P<(K1>SaTe0)p+ufqvoyE(H;B`#`5?5(u*&I^B5%LTZO_@sni z&$7dmV|I#Q=$8=kthzO9i=GKNYf{=6g(6~MVKn54845GIi9kfH2TBLm_`HEsy$INe z#iJGJ2UG9EDq#T_UyMlVouZMiPb(gi8^%;#;E%~YsFAIbeb+z0CncVGxRG$K&FhCu zzD%D9yD48AqXSeAf@)T!$@yCBaZ!UF{iwE=KdbHMa`o)pOB3R znUQF3t-#MtNS`Z9V(iFH)_!^3qIO5<_Qr;+hJt&8TU3>$s@uv@kQH~xq|OvX84Ji)%N)=^)YV{->tkb6<$k^4c8qTIQ*p5nXHJ{fM~&rICP6}^{oGBU z64~m%UD`?&H=atNa7vkEw$#0V%sIjQ^*0`qBg`o;3(Z7$FMQx_UVZZJ`0?oo9%g3d zX!YmU?#Ido=^7Xw`2Hn==+$lY^^@*vpPcm!O|HzW0#h3!MnAH-HmQ^o8Ah{({8Cj+ z*B&94je#G3UFUTb$*h{4@~CPr`_50#PkE$jlC|sO#|b`TzgxpRI9-wKk=5?*)1+FG zObyfCHWSy6#KgpFu<^w7|DYXDwPZX@T}5C#RVWUXD$KL``cbCL{SPOMRn@-K!rW>=XkAzdd7M?hCbwoo> z`35y|KV7k+>j3M#$cUCSvVF0;%P; z<9VhUP8e~qnVn?TTOS5h{n{QRmze9Prb`~D^-1N;ortFn@b!lLFMa%1^I@|lex;{D|LeG8wy)@99_iX+y zMYX9iEW&=4<%Veufd{X7fe#?UDiok{26v>S-Dhp_U?i;3l4tn*$UUwfAPW~v3;baKJY zPzwk_%zu63RBk&M0ATYW-HWXshu1N{@x+dqP*~r-J#p0&R{J!QqaB5Cald@VwUYkR zMh%hlX0+U+dPNhgG_v>W%HAZmdQ%7MFClzj!fv|z&p!1$in-tWapJ&euElpIi@}Wx zDJUrTxN@8WvK?qK?^WM^*6ANG#lmo)ZPt!noxJS)4xI>rA-js`3v3WoIfkw60K&R; zarHEu9jT>8oBLG>bCd7~o3ZkU)!miXZ$&#a{})~{ntjB2Djb=RmKOcQfNwVH?a<9zx1vX8 zu!7OiF7Ha3*e<>|Y5^dx_@tyrs?XS4Jsmb|%?T&%9yT$K6MiERWEp^M5WD*ZK@NMO z;=k1(5QCqRJ=+m}JUu=sBNShEWX?d}Q5wF#ZoY#cFQOV=;_h$HP2ytQ>K+JWq9Ul= zr7H13!f3-2b)dz0I{dAs)BD+?{|Z6y&n~3$TioX#&gmps`9nmI>KtLi)3j4efy{+g z9Wlehy}}>_=CfH@eg1K)g@&Tbv66@9ngKoXA{pFx7PSCr1aZD{;|poZ6cvO`!WKfStP2r@n2|lWHpPR#}KLV}b}{WL-Li_L$R* zI8qLdP5?*22Nsi#LkjLm`Afp@!i(6Ig-_V6ZpxW);Btpvu+f>%M3*+RBX$&wGc`hh zK;%56iO5*~JfrIBz4Hhq0L>zkr&;#4hPlBJosYccJHX-~2k_?}1|F)oWFmNtb)V=l=sVIUT>9;#r?-0If?Ayp-%MTX>(>fAKG*p({)Ghq zG@MO55(DmHlMiCDz|5W0sDCC3=)f_X+Evd;4DIdhz||F<4s>M00>2LJkZ~m4b7P=$L+e{@~Iw5=owU4l0OObnP?Vs4Mr5@`tRmXCL zxQ}i)cd#R(B+C>?*aJGLd$$Z`u~CUv=v2mVWAgBjQpCOiIJCUl0SHHZ?B+Hl)Yl`c zH7c>7ojkkH@u~whjZGIQ^4`umoeVHfEKq5!arpKAg@2+LFSG#^W7xO<4%hN;t8Dn) zHFFcbyO2FRL%u2d>zeIyfK@S_>lRR#;gu=Z&z8j0zH6erU$xbY44}hyAeC$|IXH0X z62GLw9cAWWdH9?vhOVoj;W4nDtC2(h8>?6){lBn^pgdNtW&;pAT|-TC*u2jZXDx3W z9E_Zt6cvEF6pxB5&d!O|n0fK%Kk)`cEL+hpDC`E%uQD$BNWm5;51hd7H% zO@8N`nHH{%W!C#VU-Go|`rcer+9X`+BWa05+*<%&C{hLWUb#k(kk8)FnMI!_mEzLGHG3Y=cu#bXRj%p@|i;_xp&h$Sxnjfyria@>CstT zWZ)6YRpQ1EMu6bsQTKvJ+o#A~1Jvh88aM?W#?e+_lrDSMXXuf*-Nds!u09`3&W&-& z(1-E9OB=pGcvFP3Ou@;OJUDlht691%kigE2_OrFO!OYvo4>t-LqqJl~NkENr9=Du) z^nN$gLi%B{DnKU&sbKyX7xhM8%QQzMA|b^V=jO9RItn%)e9`b>{Clv}zm1AG-HU7^ z&$yUt>oFX(8QQYrPQD&WpK)0L0UqK8Kbm(UIo_gSyIHjOVWS9?GKK`F{q-3lEx7Qq zrJ=Us=3UG1eL>~NV?P)Htdswt@BWM1=64ow%lt9?h9xs)%(bf8JJ?s!qmA}xj-ll~ zU&{@4&ciYzXeu>x;uu*0?gbzf{Z{HoqSZ~}{6Jeb_Co$Z!{FmGo z$6LL@YnM;)(bZJUiMUt=2wyrhW^fL%E*C%5*lB3H_m;irTl%TVH}&GW{?DI3t=Fqe;uF;c?pJT|OoSSy;{`h6zVp940E(jtS=0I(Br7wke*{UT z6Cu0=$A2Ohb&o;LcD#3IDdB%vb^C;d!znv0E#5b8?pSvx^&4ls9JX$0i&_BMu-x&f zsgWSD`*^AjX?pKYm{y~|bqi7T+qV_jyUzcDD>D3P31Nyxi(SZU`*R_8H>}2pyot5t z2OP~%_C4>t)_zU@gN5ecuWq$d)|ap#CleY8Ct~$QKSKfOIw>V3CUAiNT&fI%n`NQ# zX;Kg^$hG^+r`)WY5*dB=t63KiCd-@&#{wqGkP+l4U%UmvIaC<(r;MKfX9Nf8Z^+Cq* zyZ%gV?ToBlgW+d*n}=?hh13}U><`lezxa4#e{U&CNe1Sr!8q5v{!*&Mh=0S;?{f}q zMEfO&lfZ8O3u@*+Y5{1N!jtxiC%FJh_#ZMrk1_fDsIM1y?VKEhLBR2Ez4d>31>l!V zAD$`5f))G@9~JBNcZ6Bho5ECd6#Z=_;4zC(sc|B=$KEGUL!o)kp39a~5%02&yB0ds zNbsOS7p9F$$1l(Bu@OiB4>~<(J9%Wle$pAOi2N$keCHSV@V~CYiDc@pS*Zk%zhHr- zOAZTtU;`1_5!$oq!0wS$+93PKXG40_@a-)n)np66;?qd};wzgABD<3gCl-CIK`e5| z;^xwY{|I4F0dqFj(>kf}btkY5{?}DFWLpI0CwRj zti06@{=0ng5#1-iar9XqbMIdPmDpOibJvT%+uWrYz;A$-9j#K)@k}+p_8mQ@QW|8* zEOuy#Iu&rw`#7DbIuy<-pLspFW_f3qden74QD3!&b$8vR@m zAD=WcnjaYGRd9o?Jd?(tb4hvITH)C8q;VNXQoM)r+e^IcrRor!s8&< z6&bUOpF?N+lbnD&rHB>r2Dvf_IXlsY3^=TnchNh&%kFHx2C;vaIp3(OLJ$o&y#&Q$ zLpmemwH%2*h|-n1{LtV^28;w@D;uBur|83n%leKdK39AO2Uzj78+|DP_#e7)5u=Ay zx~Y)QM5Ym#1M%JFbIOx_`R}j~h!$eQ<_%J=LqsV#9b8ecnJ~|eLchmx2L?>5&i0!) z5a-6zQ7BV_R17o^+H30l8_#?I0SF`%#qt*PIlN_8{&QfdtI__9qSikVcuxTW?_wD2 z@j@<{?C~Xl{B7Pm4d!XR+qeB5JG`iz3R59W?^aOg3Kg4f)juPL#ll`geAQ2t%=C7a zDmIOK;c(hoh@1+Oku!C0rX{Jyg==lg^>FE7-7f*ZiB~sdu%&HK76P2M0o*xNWcAkJ~eyZ<4~M z7rF>cz0iET*_enL^yM=82hns5A_sQ_a2}gM<4bzmSN;G7?66Oa}$NEWx zJG(3{F8hW50P)zau=FjGW2<~C@va*5iv#)FMnsQ%`mXD);9!O1^zkC6r#F2TjvQeZ;qhTYdBX2~GJ3&zhJ#Gc?LcL`2M!3a zNv*A~55Cim=0HQoiOl$e)u;=(I@j9HR$VT14(;BgH8NDozyHZyFS44k>2m!8m!HaN z?M8VH)or3$(|jD?Nt^KCjB#$Rmjq=jKJlX87XwmmB0p}Me=v=B7|9>1quDeO8-B!< z=ovbiQmNb-VG+Zh6pkrvnPYG)qa`p`H8cJirX$>Hdc0|XjqxfBOc4}aFu)CBV@rZA z^J>A(FK0UpVgbY};5$MZ#X;d27aKps{#iFFo20C*ot%^@y$s-+^P8BtUHJv=-H^2) zwzT`Fp-u7@rn_dv(9hfPnDQeo%^%<=1+9YReH7tkh_kygMAkm2rr|DZxmgHZ?4&SS>?B|zRhnne3UGITIGJa~$j4!ofr3BNviv;uF`fwr z`2{}@xq|`IqyrKMVV(t{iG)efoF=*tv zhZ{LB;8dT9Y5THUE3Y&>?BG$80!2f_ot#IAwA{}D%W_k7LzyA20Ve>IwZH-(zw ziXyR@7sEIap#mlB8o+YCAsi8|{zLS)ebqCe8Dy`MC_I5rmKlDF0#Gj1QhI9!ee#N0 z&Fb(W`fxo=4EYLKdY|37U>!*z3UI*;He_N;{p%&lNM{0FkIfY*!fysv=AhfO7DM_> zuHX`5x82m{+w@;sLXSWa$dGHM{OSk2ztV=?uY%iKT zS1c)U#9W2&1JAw5#xKN{B7kJWVO!xB$zcn+9{uP?15U6OXug*!B>nm%Jr2o1;T_jr zU_X%mi8z7!(3vuR80m5U8bup>DRw(p_ovQzSRrC=qkEovL3tB?YH=BK1Z%&!Z@@NA zGXr5=qNtetj0;%P ztG2G*JuDGWmXtqb8)37~-@NK5Va2nOEtUSG;P&1L{Bs@3ZuQV|zD&|;cNik}#VGl; zROqJ)c?hho^_(B&DlrAee-d?zXj(-OQNp^a=n;2H-Ndx`eEp9i^0B<*Z#q(zm07gJ zgW|C=VD5Z^xYifLlQz2VHirWRM#o{SC{?x;rT8W}`5ic{=^5VOalifteP=HJUx0B?_`cjPHj*j+u<>%N5fsrx)^97jUF2#F=+&>c%7Eig z*!0xtsi}oP1Ks2{G|KMQ=BXQviO@cVmsBU~t9!)?pV!8C1h`VMbI6;L4J;}hDtpUGz%SKP;d>^dg)h>T&G>VP=)ffN`BQ{PwEdxvuNqHJJ81;;BXKtZSlIk4mbN4?k z0x9E~r=ic9+o)#^_dhm5YOJ#gv*bXXeECO_N!;K_@u1wrc zx0b8^0}>LaE{GWs)pt62lvdEwav-&+{J6^XHr3s~R3T*kZ)wE;xcmQyPRY2EjWr;5 zJ){Ov${M{7eQx?!a~;Y}hUV6Z9I)vF?9J?R6+jV*X)_iEDqpP3!ikQ%GY2BhMMRL) zyfa$E%}w=)84R=csUESW`j+EE@OB{bE>x=q9*Pz^8+-qUlmbm21j(@1O4P$$)$Uf@ z_z@n6iaf)1&tq`^?U-ppP~zP%^O?E`|CDGB)ayu>+#`VEG}D*soC(Ns)p3G{)>NnU z_ly_pmX9Y8L-F;3;!jrP^2WXfG0?o|h*AqM?S zGwmuh_g~664l}BrC*#9@K72dB`Q1((^!)t})rX&`1@Y=v+2~LkabaDk!jjquiEpId z8^BSou*+KbMLoP)-n11w2ei<949;A~9{Wd&7PgWI-Ro@GyR%s<8Z}Jw#qZ{oJ~5!Z z-*LoV+FwZ(QT3L_Hg*!6zps zsrKMawmAWk(q|p1iNr_hTgDTp2bL9(!1u^&&qs_So$Qd?UF-Q&Wy@+)`bQ@E&pJ7) z`#>J|erK#dRqT$+{aFY7H0|d#In+Qc(REApIraEr-ih>2PX~=z>O;up+Ji%yGc~91 ztaD2E(tb^i9TX2$?WiW{V^bd7oj#+zxX$KSOaJr9M zyMZxRubbYyZ0b<7R^N{q67$-uJj568m2CTs)aMlyTHT7V)BpX-hgm`MfGz?%H8Cz- zxojXVr+l5g_1L^I;RS*nL|;7!|D z%xbeF_@t~Gq2^&iJ83Y^)7;2_{Q`C2UUgni!mmHEc3e-6kG#pub}?r7hkT>66<4CB z_Uol5YcurwIW!_4B>DsV4T9)usu^$rr?|6eM84(sH<%>TFz$SRz2FgS97N}nJwmfI zBS;5Ie%EO)brsa)nnNw_9JNXK?+YZ&z#sP}#5IjJf6O>1#D6;8wdlHS>0g2t2A#39dmhaU>S3L2 zDEA2blsz@aPABj(=nwX61$~y;rVsQy&4E|mIO4g%56QRFdb&NivT3w3zu@E$VxZ8O z8%emgY@lxnLKJ4^kkq=`6e^euT?g&;OjzT}?_Q=;#z0T+IwHysg9QJ;(4=^MC|D`AmBS7~W-`ix*Yf zsXw@IQOKF7`9tG%X9A1B7Ynm*V>8m)mD>DWb>zMeyaxa~%Kc6L1H;tI$2If*PQ zEF~&chb;Ms1$AOS4U}HWsSxZ=olC|yb4joMZiw`0I)hV=gZFsOb43}S^@4>frSEy& z(I5VVNGxup==P{^B=R#Gf=2A>$h+yn6L&x0h8Nc${!L=+Z_qK1`Gt* ztS}aI3M`_hqTjyFu%^ysfisD$0(4~YAh8Z_n|6f3wP#IjJr;7OuZVRI+P%q&i@4=~ zc=-ArmU2VS;aPLirHg9&)bY_Yd%r^63FMvrZruSL=OVn4u+*h#UAb@Y{J?kkI zCmTr}L{1AyK@LzUrfU~2CYl+l^UeJF7Zw1RB@g|R=d{|*ClEbB zA9NY1De~GC&MO{iGt?eWWQo#^NAL;r{7ajy-o;|HFFe2AGOt8%^HOk>) zkx;aLpL#WiVR|mPw?c_sGj`}&q>4|&NU`{bBb?P}>OH2LwTKt5V-fptHMPCKzr3mTvm)FnPe?XoBBf47YM zA6u+G?IiyT&@lNA3PuR(-i*4D==;`~I)4(CW)@wk^|>FV038BLIo9*$k~%Q~)D}G= zN++Al&OTXu!^QVBxz^*4xV*AK`%bwW%Pe=18}Y>~m~>g-80Uc!nf|; z6;-ctj?Zgj0IN%p0g;!v2DqFVydeydx?miC*I=Z%Xh3PjOycL=scq?dWfD&V#?xN& zRPc9dV|={=o?C<0#OS$}UT>Q6*RxxGVlbD3!*9DD2qocg6;B?wXizI}M!dv)3^X!> z_vQa8Je#IZ?J`{=weima{usw`rbRL_Rr`odI1?jtmK(ee&?Ou#hTMr$ZikFBDjkQlll*SwV~Wr; zG_w};G^MYfDQZ-Dyp(g5T_LL{FreBA=YWa4Q!z_!GTNcMpKn^4kU)IUjoXv*K!`(3 zh#FJg@3(~!#~k+ekH1#BXmq;u>*oH<#2*jehfb*8LgIt%`sD3Mg3|t^z_V<8Y~QDc z-S!!WQ;YpL-_AhYi5B&#DQ`F>lKfQ|x=e2W8aSfWdnph$4XF%N-F>kN)!jkO1}+n8 z{m})4zRe*s%4`V>1Z~h)ySSU%htydf2t=x(2tba~dDA#p&7{ptd?t(rYN)MdiDc zm2oYr-R;#TGs=f;-37OkMUuC)vby?*NZMGVlVEI%)tCW z`i_CYO&LW8*DaI6K&3wN811MTWoxoY*du5V@9KRRF{T_cvqU5wCD`YXiVO&qmP~n7 z@9)<6``K<~s6IVlt0>jUgE~NrLP#5hhy%}=3G)5!&QNkEiD;_;s#a=%7umcIJ4BBw zWiCOvg&`e72=xhetuN@QH~nSgUL&0GZ>_G6pFZ8`>Jqu(Zkpi5saD~(hy0+b#`t^< zrFnqL!ke2MYVM(j2B7|HGo4e2`gKai`iSk8dNss^RMbh>>h}IZ_Hg^P`VO)Glj2wB znoSq-FR~6O;6S(18{@==B9mFz@VL>u}5~)_e`qUg83Y9lV+xV`$O@)TEibh zX0|kR*hAghG!bXCs%YeXOgRAoblso%h}kp=_ta{JvN=1ypAZ2U1eD4LL9 z%4MyDd=34H@IUT`LX6OAR`L4-y=LeBGR<*QbpX*5rT2R=4yKQ`|5*jL{I;I)5Kng6;4wQ z8Ysg3pny5vgH$=A?0Co^X=D`3b&^kxlQY3(BBB64=Qp!Ya@kd$Cp=g~Nx^M2wk_dX zXoM$REtt0`)v!f7XDJdthldyZ@g~4W@NtYKKNwtltM08J%z9Hkq*@Klsr}yEv=ThDbV8 zzNEBvsMFcDhUh#bC4Pg99vi>hw|R&;teplWf5p|!EuVuGEQ`A2P?(u7AiG={U?b!~ zGs4MTEe5}lKVKQ9TixDfg1dG*7!??MRZVR?ue!k8u1Akk&~Ne`Uh^}&?tr}n zm(BrI#(9gNG0rxBgdfnfx(cQIV%H@lv}})DKdp;Xo$?-ns;!L#@p{$W=~)`+WPKX) zSTO=SOKSPLeprT&I{ez?wuaUihPdKV&}WdiN&Mm%Wx7^@mrO-oM` zzbNBhhH!fd)JRRFw8RK0bNx<~-%A25 z$NL;A;n0dO)45OI++uHmtNU5Xxw!p;w0jep`2#`@R0>WsxET+6Yj7G;3#aVh7nhn| zl#!2Dp*e~F7hhi;6i2tb4Ft{N1a}V(A-Dwy76=yHH4xkvch>;Hf=fRR2RcG;QhnhX| z)2n6LL;1Q#3Y`)+cvs`E<=|^EXR+H-a8{%)9`Ht>cu-%ex1gA_F*W9{lz~ z5>PQL4|(j61n}C}D(C(VHevb7-p=V`f4|k;)_MJt>Zl8e09te&tI@2afI`UeWz@Bl zpcCvCFb`dj!nRJo!2W={t<`nUG8!G(38?G>_nPeeU_ZSmyL^Jxoq(RC?8G9@4c}o@ z>77YhKF4G42`%{cZ50ASSyZ%9X!U+u(ZgfR?Dp*!L`-lE^vQq;qGm#^?p|Vsw)P;( z{&wRIBVn@_F2*~_19NmFBqHK?-#EV__JD8ePn_c0W`;*v$UA}Fqk7DAz=|H0Xmd1wE1iDMr7wk zu)$x!f3*$)?e?>qyY5^9!yb(eClnFTyX*Q<@Wpx1X@M3X zS&)=C18u}c6Ojzx@o;6d9yV07;{N$Ig_9452JBPgl}GT4NLt<`TJ`A3(p*k86cju;aU&!z91JyzYr1|J)m&4YApWl{}jLMm;7`Q3Fy6>ff&q zYK2a~tCFyQp}Ea$Rz%VXqguzS!>+LY@*rBogW&!?j6m7B_O*PW6kq$kRAf+o>+SWl zaRa~W%dpZ9}gp?b^Z5+n_9 zf2B_nfb`4=^qgJ4$1CEcK=bf+rI7XA>}AU5lraPTr^r=ClD-#;n(y94=^UU?lZexQ z&dz2Q6!fyaQ!U_^#&&U#n;0EUZEI_LHB@-ps>g}K4N#4$Si=NRP`qVj!&JE$85qR5 z#nENtLWTO5JHgEK^wLu~P+?S=ogp%CT`}q+BO@cs6j$jBMnDyqBbgHwS+lgKhpue1fy`o+~ngqDx>%ayu}Z8b}48ek~$c+PHasL z_x}FAh8T(149bH{(A4rW*W5N1%eYBv$O!ra*3Q88_I88Y_QPz<0#gocBF1LWHH|8eP-bqz9EOw{dd1*KIZ`*4UuL2QdOlXGe+Ow=9B!4 zi`z^=LjFfFk|ZH6+G(=N^WY>a8DxJZqNi(&S?Wl%-%&S#^Xo>>gFA(^o(JRY${;U2 zw80Hl{3UyIkE2%krK zCAz2#Q=TV!h1`3BuWj`e6hdZPY8i)|J32Zp+xPaKKj2J3R~Ht=n8n4l9*;+U*%|>q ztFRjNQEN|`fOP4&`Zrguu`w{qDqs)+(;J*~Trcy&LP8?TN1O#ZMB-f{0yS@E{Ol@W zuwNT#h-9-HAz6Q6@bZz2@yJ9^Vru1Qp=*7z>DHpa;PV3=KZQ~!o1}!8S%en(^`(-b zU)04lo}ze~7Ur#; z)I4CpHRlA&lx;1Ch2{#SLIT3-g4M!uH^!e(U7}hiT;X;881G+E3pMA2&+!VWbP(Y7 zy&wZBB9fEIOhadsNsK<`HN;}m9t0)K`7ikdi)F6)K^gm^1~L7l?0(*hoFC?}HgAfF zT?*|9nQazx(@Vr}lXadNX+1kKD-9#Y#vIf}YE9xNp?3a=p+NalUG^KvJ_ga8qw3k` zWG)5MSkVYcj4SGzl@-bT<9)9KwYpI(^X_<`_CH7%ad|5yxz`rQ8%xdwru)s}c_5M9 zr|wANQKKt6pxr3v7&>S7HC0&I;-}8-k?BKZ$ z_;vV2!rw<3Kenw3>^mvhqR96E6Dk}vp*0;}#WmuIeg@+kycFxxWF zq4f^tRcEX~RxUu6kX(t;c2#1a2KVgV^;HGIHRiZ#TK0Hxm|w^Y8OMu>l7PK%a%-(| z`3{#BhQ)fG2UAw3!%wb(pv^`@1Rwa1YRsn)_5 z6DrAQXztCHLj|;igjF&#B^*N25c%CtlKk2vT$z<&eF=uln)=%OR_dHw244mtsmJ{} zXfBxi0?nRohvO0g8?)6WUst{FRLeisWN>L~H@jW+5d&Gx#jSo+eIw!3NtwJxBwWj{h4uPQOI^hbqwwZY0Uoe2 zjiQ`(!owOF0o!msqka~DRJ;ipdRm%*fek)~*JekW-P%%{ry5WjcF8M6hOYb+#3Z>A z*p`vZV}ndpXnsH=V7p?lxL~yjpRp@j3R36Z-quEOrNnR;%gbeKpU=9=3=IR(%?Nn9 z?H&h6IG~HYG`pdaaMfX@(^Ky&B0l&Xzx5jGJm5hBp&u7~DKH8sD5U+UNE=8IWmGy& zll&B0VJGp5bR!V4q@R+TCaE>OM@f^edvG%8HQD`iXCk>O-s6LuTZ)u(dR|HJg`FMEhoEPalw2Uv z9c2su9P>M3;NDVuzV48;zjHICk+AzzGyrPi8F)-kGj40pgp3Db^n)La9O9pi z<#T*j!jg9olwI9ALdG=&1z==;DPb8+=|h{Eo#k#lNw=d7>tDu?R_Be~2sRtLL0KqK zW>Ztk2g4A4^vwQ&fdg{ZGLT)Z$v67Fq)ACSy&qY*99USccB>E*x!m}e#B^ZcFp04J ztb2&5L`rlmuIkc!bDXAxauDQNn8+;TygW0&c!7uIT5o4xkXK;Rn;4M^qNG`Zpgv}c zap*D>Gi;rwWiL!XRAVrcK8m=zdBzJ>z;@V!q39viAq^1$+D%p=+`;QIL2lazT*kcf zbzbeNS_34>H20dc3;SKJ4t3+p6E6ID+vXcXlVz<1b#yUbEsNQ+aXb zq<_SS|Mq-yh9lihD!9ioiV*&k6P3P-1+KhBt3v0r%)#|bG!mrBYs-jr=4t@+%q*1X zl~@4uymUU+d(n=DKY@KjhRq>+J>7 zABw7)et3egG<%_v_7ZJUd|(qhb+)|6&;~r3E^VFP!?~S!O}GvVb#DgV8rjm4>GIJU z)ceO+jj2$(O(Km>Vc?Z~X;OLd%Vs2H0Br%!xXt_Rf~e^9cjN%Vonz_G3GtKV*hC&@y+6fBT}MsO||{ULm_AT$9C(@&xL3owmOf@BXUH7^cRtiw0K?T8t^zO zJP^^s^LxQsvfqECEG+nn1RS4#Or;*=pOdJ;&6KYYdj?6+qCh-w0pasDe^{7)jF#5y zFc8hWQ2znSs3~tfDGK$mqss5`e%s%%5H@pD`n zNs;GXgWvZXNj(|5-ELD@Y4Qg2k%l1tM_VE#`o_i_6R-vL7%bQG86gZHlKk!k|N9Dj zY>mVAT*H^O_<6unPTypmurnbU&o2#9u<5q`MM3O8%28o86U*G8hopf`A148edS9*LHllcUTU#GRn2#)%>0aR(L}r@q3WD|dTbg$ldobfe{@dGF3=|( zP;UMBZK58wJ6zAN+2tLg`dXtD^32>f{&*hH0#JDUdZay0_Y($*yot|;4BT;>apPHd zN?KM;Dv}Dx?-~R4gdf#YHv6gJ;d<>J+h2Wk1q1~~6JeAy(f3EACsrE0MoOxxKvy$9 zHbnWU3IMa_!^WMi3ZD%Zw#Jt=ecmsk6Eo5smzMnaSQVdTpmsX8pgrm#gM@7V{s7z2 zJu`gQ%DT)vnwp9COTBI6cTZ`ALwQBbyL!Ahba|30z({fW8+G{`8!Rl8ba!h2W{O*6 ze&22DMn9LTuT54eM6LnnP)89AuBGVSqpUUQ;d=7$@WM|g@oA^FK=VTFO1Gcs=g*(D zv0qc*tC{0dv_AlBGhx&}2bYGS5pqJFw%S5!~CN3_ta(SnP1ovfLfpwFX+5&XbIoT&8 z7Trl}?D9heBfq1dV%y+J6}!5UKwNpBpT}Xnv-Zp#%S+=LjRQ5C4s1-`-|JiK!%`_* zkJze)3CNN1TUKpwPYPi0{fGUQV)p*cY}# zE#iKa5(^e>#y!OfOaYq5N32(~^x68}E(nQcb9*>1?fU(yHt>K2>0 zL1yfIwU{2Ku={b!mX(d|vTI#zFu1Cg62kNgOal4yXZO%MEU=}yS{4j;T4|Gq;YNGt z=}Gv&LlLXBJ?A;Gg2co#?0QADgST(^-@R+f?`4p&%?yw}>l>&{`IJ*;MCWgT8v@^* z%X;};?Rwu5u!DmcaTzuHH7f7wl=4>FwRd0IQtsK9)fQKQd+KE6oW^kY^2}^d9oFW3 zL=0%1R=O(#l-B$Fn_c-7`nw3+8RiCUGvtk*12(IktUB)1566z1`>Sl84?abb(oIX? z)6A;`u~y*8lKwFzzI!X}w!Odwvq^Ryd&Ez?SopChnl!j-j#mTZU#Mx~{Q)TD(5X_t zd-BI`&NNNC`F!?}=fDW#h?iE<|KbyOWY^7+m*;&*F}k-o-*#UK;O$d@q74OWX0O0o zH{{JfHF}>;71KMc20GA5Pvw(!MD;p>(i%#!A}|q(z?i0PjKUXRi5(k zEwlw1$;#{gn+uTkWn6LA(Ucd3??yJftkPcn#Dz={>+Gzd$~$?7AoUkf>G)_R4@{Hi zEw)#g(44Q|{)nf*^L(Jo9-2F&X${Sq847{ZW8voc*wx#EgeXxwMzTR{mMvRWe7|+% z(5olrph!M!2bC5G;RtlKXP%WKgDbhe-&6<%saEW2YHvikpYxaBDwSjQW z*80oqN}DI~McN#((;O5i-e)OtQ#SRA-mk;MBRzT>12 zWU>8gjmhD&c+;p>nnAiF$zIi`oOx-wI)~15U&FA-dW-!pV=ah76TI7fgDuA*UisZ` z`CQ6Gd<-7IkI%)=RL7VM;x-ai`{qq6QK4I_s=|F#$nhHdLHb@{QQEJ=`}Q+8yZOdG zzCZ%!1uoEaXsYFj>X2$)#$Fkw@zJDLu~_YEz=!@Am*HH7kCu#~X2!}K3wi|}NLXU1qQ z@m$Y$4~32^TG>$*FY-GMho3Q3>uEXZMR}itF^@=NcGF|ncNs~IguX))z zm0G`Nzkj`~^hhR;i@_fjHJpk5Hb}EE8sZ-H*z$Cc;8|&LRojF+qk7k9V%wgoiu@gr|pD=quVA2gr#nPZV(H zu6ZO|-wxr;ah6V)q$DPCS7QJ@+&Z9$xfpj*TKW9A9!mmLN1R0Uz0y`^lTy(0X3wOT z6d}gD|cCLi{GvVLpW%0a=j3f1%G`_8ZBh?76s3H%*-Ozx84=Xj>CtB$LUasiosb| zR8wuzuJWFVlD{jWQoob-fwVQPsfw5L&EmCIc$i|V&#%t}0n99$H#l7r_)k$8 z(BY|@r4xrtPfz-aC|K6#^~oc1Z95W>S5|p2=qBam_pB(k=x3XZA9vmH; zGNy%vY8I9-n-?Bl!z0#m6oW{qoGzHSxEchYynOt=H4Urj(Mx=lXigW=S4P^HYnfV% z`DFGyrr!$1PG#%e z^@=$5@9!}$ox4lD10pQl+)I7-6VVx+WNUi>ZIwpjk?{G2h@a1 zAnymzYVcjxFF{FfFDOrgqkgj-EXDlV6==flSG%V!l)*oSmU)fX@!-vdKjdN2apu0rO zDsXKkg?tobDqLI_s=h>pxk%An4QIF&^olw0zHJamVVRAiHpP9H=P(l_0bL<+8s3mY zJ0OcPHqdkN{C4CX!6M>u)HIeaq$~mLSp@5?1lYF@K1Qybud|x6@gLp1JlN(&_nwEc z13T`br)$EDpi6X5Bvm)SyVO*G;MnW7{UAI~h+qic3r)o!Nv<*ZR)Q;C=U$Kxkc-A9 zVNob;8upcs0i*yg`BQl%QjL6HK`D|r$|QlgOt3U4Oj1-DJ09Pgpyyfc-AaJMj3o+3 zXLMSZV`G2?igRqL%{X4%!3dpoMkPk+51nVWwwc!0EbOiPQ-?74e(~REKBPFH< zO3=Mn>V{oppWxbN_c@_3(&|NZ`4U3tofZ}YJH?+@szYfp=IJHdpqsRp$N`|&7Am+7 z(t`Tmx)k$!EhxK4>&b$HEa|OvoYDtj0ta9G#8KKLy5E=jekp>z8b&Abo`$Uc=Hm;c z$He=cc!jGkK;}${g3gT@gnzMC(h~UNh4D*X_S7@XHQZVb6)FuiIu9s_Vx96M4{tr~ z$P5Q>&6!vo#Ny5OhZi_pXm}Ky3}zco@ys~cA(Mg|0yM}}Cga15;$Zp_>5neF$e^L# zQnE^d_aK!uebcf|mKR5cAAh`GuE9OY{%Dq3c$WtJ4!#5Zp!rg-pnbov0+4HJ>1`x0 z6vqb>(R|Q*4i#a6!C(y*`pH^aI{RPzmOpQc;x2a?GhCkl#23ouyn^FIw%}TQr)$L{ z*iT~=V(sRRy%4ei*~O!<*Q8c_dv`tNu}d z)(dXpEeA6U8bo*esIGp&is!mzgF~}nyZSAXk933iNZ%V45l&|kShmnK7ZZj+1=(Gn zWK<4YPDc<epOfs5D@*MGnJ^ zQ^H63x!UJP&_Xd-y?MaYpgF`Bw8aD7qG&l`G$ zySyLO{j9L!6x$2TAdbC*H1`3?2A^|$0V*r5Z&Uhn1e%J3IN+GT_35{C7~p1~PTeSy zTNtuvMcN6e(*SZ5NB7x6HtC7q>oUx1XCx~!mM2blk3u1BsHYkEzp6h(CFV?_y&Usg zFF+}zy&QBcbb`zR&Ul#0*TN^0=D(;U0}aqj$MO?86kl*7`yZl9RQWyjZc>P134Yg| z!|C*GKYkIqjQ9T3WfmQ>EUd(<$5o|a7c&WP$L!aA{+yh4ot=^GTq(ta; zU79!>n+6^Nnbup>OpY|_Lt#AM8uZ2$b1m8uy%s;5J2(UDU~1ky!}D%`_U+-z)Hf{*jj**ngx^SMlqnI9dlOs)_(-M5?3;|V;cL=NQXI($s;uOXX9$3jK2 zTxVF|qS0Nr$@&*?v>3U0EbyVjat;9wey@k=$U@CDc%55jkvVY-d3qU;;GppM^2*BJ z-%(o5p{eK~=hN3y1L$EiOossdKizH%tzKT^O3zlp>ps4p?!D*hHg5bih=58u9psfa z5~+6#MAi}VK5gf#j()pEjMIcd4+=7MoSOWy{)Q3~2GKMQrpBJ(+I%ejt36Y?Sq7t# zsxB&Oo1YUFXQ=*@K@fg|DE4*g8!;BTGUe#axH?jK3Er7hB-~DvBC5f+Dh0fJG7nMD z6X7BC0UV3FMNt-QhKNH$p&hYQN;YR3i1$z4vazV&DcLQ10IP7D{wb1yYI8n!_uMiT(i zbKVw5eZkdZCWxBGnUfR8e9#k*2#(>}-lN2?eCBHVQ)f~hLI|rYEYu)<3jvu-lO?V3 zB{eF?d;1VVTAfTv*VP~>n|$!6#1zxTHR@TAY)TkP)Wn9+>BXQk#A>F287@A)3K5RL z#|Q{`5@zl(CjYv~$20tuejOz6v;gWy{(v&5O=au7fACg9oJ?nlgzv{25LwVCARWS_vwpdx5pjc>ayH!#q{OV3R;WUxP5s=MRK!!x_z$9VxKrt{f%0FJLh6c4P^`CfTB2n zYn`S`<>uJ*8w@$1LF#FuF-M_lLoRFLv;#oHvhb?W<%nkOR8vl@7j2hkPM|Kx{1?zz zuIx__URHd|TTEBXTvXW82TWAACdMPAfh-No`KVlZ zvRc=xpQWaO9GxxBQ|@eLQ2*Q2)x+ZtIjz>yfGJp+oh`o&)d@DPC$qP(EV_sn;QZQ` zK6FeWk-B-r{BS+!$>Cu>(EY1R^%7+a2VZHemiE!u#M`T~kd&M)n6kMAz6#brx|YrY z>WcM#N_d@DQFIGe;i2QUxxy) zZ)Y-=kT@uen#93Jm|f%u2S`V-VS*`a@S<3bR|GslTkvAX51Aye*7RZqNLspbREQr5 zh^YIhS_1p{S=iW2NO(BaEeGj?8EeQ7rd$2+_OAjRhUDUX$j2}88U%WCYjDqX4J`urc*n?CvRkALV@PdAM#JAP|#>JpW9>d2uq=a zQi+ebJg0q))kL5oNWW1?Z7v=f9p%EdCspT%8p+?n$Qa4fXG*t(-DQ?QVfPoeyP*68 zD6gdvM#L9u1952d{r*l4PP1Vz_|T;bWGH(>pAA~XH)e7MlX}sax1x3Z!GA(-o)y1P z3xF^wDaoFo2WNW0(jA6N4TKA3%DWz3>W|3L7i}@4$3l57{+aJXXogT`z64nA{di6x zNL|>Tjw9e}Kp_RccbEx2HISGIs|{Ah-<^-F!doPepH1i)^z9 zIRX`4*IvnxYjH1!-tOLXD-}ilDOi-h<&sGc?pbm|`*Yw$MzwjAe$i?*hBlJQ5G|m1 z?XJg@MBn2x*CF}cF5s|b3Ms(wgg-`L>Ug`6s>++)<`D~rb*R?2Wdh)8^*>%7!e82~z9IKUcj zbP2b6!9Wy+giDFW2QfxF^|Viq5$UfArMl79nzpqCDNs3FRO{(Q-h`f^h1NwXwFepw z8OHb8jGO8#Vmt`!h`FSMe6+FhBdP!F`IAFXr{|Xl>eC%gTb>bA8%M3_;oCS}t*xO@ z2@+Bb3_2&qaPq-tnA(`m(e02W5g)gmCE{hdkXz&hig2khyaeCjLRRGaX5IW>-6(xR zG97DO#c{ed_CdkoP)aI63X*C*1ux9Cy3x8t6bxnyKAI~Il6eTq1o*ax?cC9of0(buxOQZIWVs!M`Q!rk{A451F6Ar{|S@TaaENGbTZS2^{_knJ5Q2 z62>&C)D7S9!x<0)tJYkVWd4S5%k6OqOPXU3=HRzTz!QsE$1A>t_E@qq9vKNIk?UNSdkRRi#(&gZ9C2)daH_SnqJ>cBLjkHAX#L)z#Gv=F9Bu9=9C_7;DjJ zFXN?z?Kf`9L7{SD(*c{$_QCa1zVGB@+Z9rc+7ie@66q8bCw!5MvpL0!3}%L8Y{bWcyOE&fp*)` zw~PM+XvwsxO1K)2OSTbjc`DZiG$yT4{+WU%8pFvI@LWMP=Vu63o<(Qgd=TH{dR%LBB{(&A#-Zy{9Mpb3$FZ^N$V zrr!$a9H4cw*!^vpWb+-?xxU)%6ufCO&2F26)CtvC^k0E2aw3fw|6YQCg2azHc83el zhLNLV^;2(QUhE7SVXyVrnzdpF+D~bfm@5k_HBWBf0vt^+VHslK^SSA1_TSDcv)>tC zTX<&(ix;@AakiL9;e@d);I}p(d*~EQg>eC3%|)s^bK8Q zJf`k9!qjP78;Dt^S0s`b@FF%l$I3e`7`!qlHsL*=%r8(a4w4m%qK|(uKKgwsu(+Z^ z6|Z0VdFbh+`h1;v$yjch*z_!&RZ;CX_mdFcsWq80Do#%M*YbNIpXbaAqByGMjCNIk z*q;PocT+Mm$zV3Us6||;=%=sRaH-s4&(PPy>T=0kf36qqp6U!@&8!3_0)hn)RW-GDXGn3VdzL>1fdttP zj`Mh>;?2I0%v0NcgV6GFgvZE1piB>F<*z*qUT7S# z?wdEUv!v71oQMkp-4}FbCN96JGoS1! zQgcl#cWUaMrPo{Uq}t^)bEWn~!ALJofHWTU4cN1vTkMLoeC+gfu{;XVix3P2#f@{M zFF+g3lh=-Jm8X8rSA#%vA|ZNT<-ffY*HTNG#hJ@bltiZwo^FoQG2wyuo2V#XM?bgPe1+I6p!nX%f9ou5RwBO(YN-EWc*Kr5en7rsweDJi=JE zj?ZjJ6t`iBEUc?Qg}U%s9nqXb;ZbktbGBigh*4%E%tR=YSJJ8*aWaERKt#?50C9V{ zoWveIDy2yOvyrDNYm>+33m$b z;&8gY5+Ji254%EDXa{A~#{RIIXY^p=Ji;WnWpff> z8hvx0=-!-ELW-2YxZ~pHHptbYBHd90wwlx3NMeu7z5Wv|lR3u5@Lw;C)>vKrzH4x~MQk|cvIdebQzB@e%mKsY|$xg_IU!!fD| z?QqH8b)nNLRM`x*TBy7G$7w*Hsgzk@Bj$Ri1bXtO8fsAuaRQx62&5nFG z;Nl0B5;e8;66>tc0gV;gI3nU&YLh2dHVKC%A{yLDS*UN>O;6Wky-Q-wbN0Zh*C({s zKaNKidVj10;XNi;E=f!9ouh2N&MJ}$DUg`$tu4bNtCx>&FODA|dO$CJSTUJpJcM|6 z|1wv;F_a+xar_yRD2Or$f_g>T7nk6bFo?i1)2%cf-XmG2460u@x(*THEw#21%$-BQ^1_)nhCwfASdIfN^9@zUXS0vQ5)f2b zZ9MeNt{8VjK~tcv@+7jjxnZ9m){pDb?;PK`fA+}1i$e}3PDKpX6w}#W|e(Ub4t^MqK1S6clTRwth}|%g5sc!L>ThZ)3c*M#xcsLfu3d=NLqMi z(}#cX{=+$(Us(@Y{qqgM(D0Ce^qFC_m(yYy%5`_x(90Uy4H!cgmTI1Smm8Hq zR+h*+v~#*_+j!^b&9*w?hhnv!Sv@e1c;}B(3_*B-D6bMB9r8aMA*_FE+wmZbEq}nP zv;@kvaz#aq+akGX#g&7{M18R}~q8xC4-oH#b}s>jKS9Z-BJ= z>(}8QIF0&^UyGYYfkj@QhTrHVM8uQTM0d7)fUY#ejH>t#M;;wegDM$p>ibw|^v%^UmXzls zki#Fb?*uEkxuy7@4+tHIB&3ehGdw>a7~~R_Atr| z^6K2$et$q8i#J+nH99!s>w?{XI$6iN-+1vob~|o+Y<|=?cqG<3qQPQ5r4Xv;axZ~+N`Rj9<^2{&F6NJ|Zy~Ou`@f>k1 ztd=3Nnu?mV2aK~HhL?0@*{#YKovtp-xNM6ZK7f)6?X(b!(mzZ*U_!3_tqEqUAwNC( zODgd7<}o!WlQ~<`Z*Oq;Q0Nce1~a0b+JGIBEm_Bh0Y0fOp=kf#Vq49V1E8N?0zO2j z#+1$PiaJ@O(M>=SY-rdyrlOoI#(b?!cPBmb^WR*6psTF6P+aZa{hzJJpJH(^%wyl8 z?W5hgUrcZR#MQ4~Z~*EpSOMHj0SKH-T#k`cVy-%~)%t~JQ2ME$&g%jz8|%FQ%pFWm zx3yEH??1*Te@z-LE@t9 z9)dttQi;ug!&z`_8tw*cwhm8lv9Z507!^Z?NUhk|?S?uml+ zHE3e^?A`86swgXmv7Oz4^+X6`!-r*d5$~IDfEQ`7Gxj}=f0z4EI^CP35A2}QAZc)hbqUbm zti0R0-5=LeH4O~Dn(X3F`f-x{*aVm)DU<4dp1rei`$wDwraSLn;SRPMVqvNm!%Pk4 zFm~b$dK$*}U`>mz*Wpp$*EemLgH-b_E(|UvN5HGT`T%$O2%HHtv%eu&Gu$I=Ba8!)Zu&A_#fKkzUgX)IINi3jEMLeG-60 z?3qNdwXuDel9Iw1&5;-;B2;Bq{()|yT_h{zBYtU-XkKn|PFbI*_@wg^d-BK##e7>} z+93U|+&?dXS1A8dOnCM#vJ7V($a8IkA}vkMaSCQ@Z&+Av1Iat$c30Z^mPUS?3RWSD zpzF)an0beEWnHIXfRDh$B5Dwn1fp3jEGz_yrM_5r7#n~4n)~U~^DOcY@SqHds%Ofk z`D5dwkBy`?!}gu|X{V=k^iOa6+?5X}d*~Y` zMn=<5PhE(QC_jH@7Uu-2?x&c!x#fE(SHrH?o(g6$ad5~IZdgW%j}qW@RaP3xcEyu` z{bS=oz9%DLef*~b&_D?4OG661{Ap=p1+h!J{qtUVKg;6oHTsX`mwZ&K)$p5c8TOif2aP_<&m&Zg#j=@FGD*0DCr3=qOr)z z;(G`E%Zz{@jnY}PHZ_&+3LzAv7j4S2c>nn}Aw+--*F9F>Zsq^5NPwmC2NV+ir3ds6 zHu?Xr`w&(|KuCcod_wns+&J*aZvHBKt=3zQ{I8|*3I$MKKs#l{%&%qnXIKHegi~tZ zNpxF|e)``-_?KN(!5$!FuH~u#Mko zXt?<0$h@72ndObI??O{_ea$Lx*(&7xN&oasq%k4(SOOTSajXk|K}xpS72dd>uq1` zH=dXF_%i`bku`aP^12%Cd}88bKM}D`D6SVp0Q^EO3|#88=u?;d!;=hvyUfIB`E@K; zOu=cD4d~%T@qHqn1CUZlpPqik##8$#00Z|hh<==#%Y^grcWv@;v`f49ek_%QujYc7 z=uD;mcC0mf+omyX;C=gF&UCD`-1+$^kD`S|D1t;r{L|J^mCAg#W9pZ$CBr|9S+~r6 zO1_kQ9fmD}wS`R@ybCWbE=JNSg@F02+2XX!1R&|?IwR{ABJ2guZm9D?^To&rv9dK3 z-b_eIS-g#L28SmYx~)M7F4K>Xj#4TP?7l0iW!QinGpeevKRBOEo`i$NNswRg^II*> zzJ(jxjOS&=Xd4K!E`yubp1(sp)8=35^>dVsGLt*pKn^#s1#*x3By zq7kB{qphs;J>dJ8N`{S>L)zAt*Ylkx1>CP3R+>zXmpRhJz{rdL9;QA7v>hD69h!Mm}1r1+EqRQ#Nl@Ra-u-1kt6N z#NFT9NPS|CBmI6C1kaA0lV)Ow=V7E@waJ7Wux+Jm2vrpX@JEC zUhy@C*7~3CXG~2kR9GAj;vBwAknqDR3#PHaP5xCn@qHw1bSvSvNjgst+@Sl;smIF3 z=8cxtr=>O@Wff@_w&%mT6MHFs*VYdm+UGmjwIjRv560cAL3$DQKm*%$pFb^nj)J!X zQV)7SnzmYow`&TIT9Ug5@#EyuIF5v*3^TzwXuUo6e2|i7v_x5VJFF*=!F_iuYZ&kzmo`=@I%49o^gm}0nck$)p`nowqqs>7 zx9+>c#gXVZ(tif+JFS0x^*q0my4ROj54wl8ZXdOS&i8FhzaQzhr+og*4s<2bEri=h zJs{_7Y(HE}sUzRPT1`_&V(o6Fdf>USr#vTt(&ITIJbpb=bo=}K+WkC6O|O8lDUuTF z)S7VX-M6`{r=(vW*21pXSK6eS&~`%pgZPScyniLf;@#eJ|L4`4MZa=(uDyprC$^@x z?axzbdl=(Dq!m$@enIfXk4T8@)dy)!&39X-h@lCfhS~^mIwUo^F#y_Dkn%QE%@^UI z4Y)6HSZv3{$Ep8KMuCfzuN?5L`N(7Y+f#>q^C0w ztP>EDl5#l0VCO4$w8O;;m*-NC+q>*lP!OezI4TUo8c*9S^7?ur2rfI{2nO;R9@>HD z#o#Yy2!I5Af}j(a5dgk%NeZNa83D6G`|^HRs_QQDXx{P>HW3JyCH|d6BUXO)<9C&Q zIlbvx%rQPB=+C0ma3qfXHf_*-P4^w}qWt!ckJE)rgY;E%#5vNmwa<^moXfle_9ivn zlJ-=WRi&R?9cPf{ud>y4pQl6$xf%f%0a}|^V%$E$^Lr-o*?QnJC(|IRRYPrUuAWC| zzST;X$oW*<#7NM?KGYoLru#u*%M=(_gVT>U^Q|X!UDu^OBcq-98RYyaTVZ&TH1xr& zO#R;FH1jg?wYrCGOuh86H{HdMxLj*k>@-PXp zW><&)pSK!}djD^IvycBd9Z3X;#v(c&{nY@~qV0^w3nDf)wlt~kM^d2Xj#J9}`mKm3 z1+3Qq)9M!EE?Uhx~-os78{O!UzA=RT? zRK&2|gScn~Xs8o;J>L4bG~yL`bC}=G>#B^tRR$p%Y0HrUAK+ZK`%;Kk@3*%{oCB{F z%B!p2(UX3V9*&H9iF*3Y56_k?IS786^rg+V-q-DM{aep)U&NmoKQU2JJ4K|&O~0UY zW3krJZ0BwUpxF1E7U=H=lz0wvbeevAS2{j2V=ttYg9pN!Y1_ioZ?GI9X?NevqZ0L3 zS@GYr#itF!9(E9ut@$toXj>=J~01rLdNpw-lO$u2Fm{`>`9#PFO&IBl+bYvGL7+G7Y}@n_P$022Q{C z2NWkLjwTAIgJ?*JCI}Y;9J~i8hdRujLeRf`8?%$XKm}|bL&fniG08!JARss)UQ+)6 zK<5QS91`gt=*?Tsf`T?q(aQ=-qJaXHlHGVlao5ZDA2;+`&j%3h+THJWnM3CuE8QR3 zeV{EIJT&VZ_}wl$YXQIZ-s>%mn z>?A+S?RZ`+Cnw)8>2_HP02V@`#>qDJw#JJWB!ZIP%6ZhG*k*aV{AOG%&romM8_k9G z9+|FO1ixYV|FRd&6x4B8MIVufo>$x-orNVOCtU>j1q=gl@cKX}CkY7#EWd?{zk=?+ zQX~EyTv%YV(c-w@U(mPys9SzMJx-ojUZ!(@TFnN5R#j_FVnT6$3;-^rh=5YLDo2VY zjyrTKG-38)dpItf=dtnf(q{1dYq!&luHl~R?OFIrY*x4Lc`Y(e2AcvGsQ6|`Pi$c zQv!!Ej@Ej{N|-Jy2=s>&*mGDTno-x!53E-{fM1H?v_C26y$^T0iBoHGkVnGfVlsug z5vBi-pK0`Tv#h!KJe;E_QlN|X@^U;sqtF}}s*=NSAdFK4+~adC@YI)rzNuWc zGpTLRX}WOhd?<`oMqQnP(EZL=t-*$W1-i^Q2ZU^aS9jY_;T{h}Lc#&zGh?`%HReA$ zNx&M=8mp=5OXodBjqkto#cR5e9HpkpH04M&_n@Jo0{6bt<2QOGMf;m&9FJnLrqS-Q z!&}BWN!?G8&4s`4)w$e^>*E;T*YDW%&1jxP0+r~B^zVlk>~lvaDCk@2L~G2Ka$pVC ztsFc)OVQD3(6Hg5LtU?Tz?}a~E)y2$5er>=b#_x!);jr_Q-5pwEwYcyocn5kQx#BJ zR~-PG*h4H_U7LG^YA>$}cHZ-5tTKpqal2n1vF6m&C?Gcs0dGxdlUe#!TJHpsl2pE2 zi;nhJAFyr#C0~>1T?Xf@v1}`J4t|7wH|*p9j(7{77ED--g>YhYWpuon?ne$#2?$Cp z`&$<(C6OukvC)09Z!arb2m2>?y7a0GuWvZbn+w+@E$YbW|6bm|R=xeNeN(efBG2Ds zY+nc;3%FLez_k+WpekTH@;)^pVpV(Z6{1pZYpbT0xA#@rh41x-axd$u{S7PhdB2M+ zfKxuKg}X;JlI7xXx{PPR=uDX7qyaDcpAJip&gYFAe*qD#;FWckwd4p`JexhI6Ja?z z2e)8oVT;q#6B`$VWAD_9T3(-CD9Ce$*QJug=`Iw1n=D|9Ee7)oYy1>x_&Y*@?FGSG z|8Vw*e7QQ3{&?xX4?2>l68MJMb>{Zm${hj3ozoE%0k8hCT!q?Nfe7Tf?EH(_-Wm5n~;+Ltj)0Y_TNzpu=0TvI2P`- z%G-Y`#NXZi3loO|lAWFc<*$ag|6u8NPJV$1zjA6nseB*8`d_X71(QH(Kqk2UEwTUi zWZ_itmt3pAB>pMxe>8-%09w6hf?~M;JKp|nxB7p?)v{lwDaQRwn*Xa6$|}$b)&WNA z=kN3LkBJa!(*#cDu4kgYw*2#dem^{T(+0FcK80^P{9l-bN9(W5sAXh>F8>R+`sjh? zuny(mD4snuB8C}FMcEeYHAnG3@t1_RP%jjU7RwA`4li@0qpRjjCKe`{ZQOykbGj|u zTwG#5%9I%|lQRegJxq%!_Hk6msJKP4hSH0qMroEQ~hIU{qggo7OKb1(%1wM>X#^=**-?18!l-0<>eKgH^ZjtUh!+*#GS(- zAc6$j==#4wp8t2kJcYp@hfc!if~#umMGd|wuV;~P?GH^7dvIELTTlk{Pb|#Pvm7L3 zc2dB2Apb830V|&ZGMY+=xMK(v4WChO7HwxyvIycheKwK$f35L1kR-qYFzb?8WBuRV zJBR~V-wa&h|3CKlYkoYyz@lT-DL763FM|7Rbv6O1dKZm-#C{|Fmp^C=0Mr4uLheTV ze<{sJsQ&^I{g*$`;)9xe>!E7OQlV_>6+a&${Pjh#29vaEyaT&O6e;uMeW1+ixrAyO^9RKdZjrYK))HDwiq-i zW_C&;EjEAOBr+y0o5dbxf}_17*+#oIqiJ*RlEHtNytZp-FH)h?XCe=O-#Jsq*(+Uj zZmc#&{N2O-*ffpcE(xtZk4aBnM=pfXKu)TgACz?&=$i<;(X7g>0+{(kUqVzKrdc`AC-tnPt+cbkg5~oa>4n>tgRYSK;*{( zFZ2TggChC@#-uAZtdURSY9y|1B!UQ?dC#g|>|FnDrMOa|S3k+jjL}svf`8o^c#rmq z79SN2{I+6zO;TUrcKQz%R`sD9obPh-GQ}rkQ3XQT)~z9%8cLNXWH(4nLi&BuE%ohw zA5I!E6hi>6YC{*WL;4oLP^-B-!}F%(NIfbE{qxC5{x_4`g5SG;lFVqzQ(o60A>*2I zy#%KttRffTd^HzVizyDRSRJayt@T zrMbCIF@>OxhLHu%&XF8+<$5xy2_!)Q0fyLw_K6-$AZcRVG^W7!b($|*qM6^Tyz{eZ z#WFsAk{}P7Qn0YL^r)`@XDDPO3@8$NR|mruOM5LY@_s8xSv}T*AsHk4+Sfnijjm^5 zW$l;i^W?N4RkTS-J0z%Gfeufio1m)F*}jaVM?PI<9Hx=4P>{jGu=Z?X5iRgf_s2$EzYd0=Ylsr{N65~vFWRCxLq4~s3(DjpDY zpD*v|PZzVw7__#uX$X#FKQTiV-HCTn3=k<*Z-IR1T_I1*c!Iwt71QD~YLAQVx>$bT zE;x8NSXosby-KLCAYnp)Oi1cj>V#Fld(|7mZq3*bjAdjS5cySW;{bUzcSTp4Na#y4kDWtDaBBLZKd8*z zd&}C%TSqD;ckbr)h~0t2xei-Wpx7Y%mfG0=e0HF7*U{*dc9dtW<^{6Y1IikPaGf0g z?q7KUU|@-h50(eYg*AXV)j^j^MF)KY@&D>a@D1V8ihRBylV7a#(N@qbIaeQ8% zrbz3o=|XZaKiWx{8VC1r`zmg81w8iXo-XIpckrCQ;5wb>hUPBE9>iKkpr?LgG>PD_ zSwgb=Fe^jjY(Q%AexQC^YI9>KZd&QKR{)PIJw&GfNZLaXq|8j%GX-AKGGBIq#5yk) zGGRwS${u4(m>H-y_MEzMn@qtUcn?>+F3Q!{puKQHK!XW~A^EFoa_CaW$DJurg(p7FW@ zvD;2?!o?yIx>6ExND0$u5kYQlZFzJd=H(g1#8bVAOz4=Bi`Eg=qls(fLKRHaY(p*^@@tHKl_YIG zBbdJZ?mzkh=zNAflpm0GsLZ@`oEqXg{pt}tD=$$!f@CW<9v#H|72%8c!_-=?ljw?< zz!Je^LCe=&&tUmDE^ngzh=AJ261)CyaSQE; zXj01|a0l2KW^~jE2W#oL6E?lY2eO4FiPGMZ68t=R;IO+jEael{9TM5RYN8S%tJ>0A znq%j1n_bJ;oX#V*_Y$XU;H%U(vhu1Xa8MQ{y+58u*A$daT_L4lB3{y2Q6&796^xb< zh?!*AVWv*!L3HnH`V&DmmJ3oeggyPrn%#2G0ebwp1dI6AeEC zj8AyE>}w7O?ZR-#s$QB{qkfgsp+ZJF8Z);yALzBtJ3<+rR}@kbu;8n?KZcvFixqbREIm^FqnuS7`>A$QdhP`ibgB*3S#_`6a^%}kl zw;0kTSD=3;oaZoZ(nE*YDL-rxtjHUCjVy5(*4%35cc9CoeI@&-r9gJdFP|1%O~@V6 zy+C`qRw&6(?Ttk$AcC&`@S=0O1-bfw*JPQQkQ;_k>1y2gM$eq1ue-Zq1CGY^8s^fH zxg*gwU3*VIp7FwetBz+1l4^%VXKw*`?AasY!hot&u?ya`cSXUMvEMlOY*=oA)c%>i zH7N1LQu$duql2;F%N%k$iyB-XNjo=Bq7mRl>y{3%wEkn4+de`gQh7`|$l!q%#_b1+ zB9ds^@-`%iGxXFC*wU?!Ik^}t-*eF4!kKfugTS1ic{p!Jb2wskF6OwT5^!3O&&lD_ z0BYC|gsi^SwOf~u;OV! zf2>D^d1OR%F;H=vmd|A7p0WAn4fjJW;sv)-=yT|Sly2i<;Si^8Rs6Cay{Dz$&N=M2!Em}DM}^h#d++7cLQOcoCP@w2+z z@I{xD9?7(e9-Y=4ywa$FWyhKx>A;m+lOq-}1AASY;cf%x&I@$V{) zq6pEaa~Gda6ZaWYl%8l@j*R9?@>!dv_zmn)PWr_1UvPqFPvUEl(Z z2FVMWh4n|;1%~|2&~GNyO>nRZEnZmM zces1-Z?qOsA8zN=ZVX-wSJ!u&e_kmlo2K2Jv<;GT;WWqQ4nFbmPfrQVh)H!gx|iK$ zJfWr0e22Fa7uFuV;4!0c)X`*C^Ua7VyZYTbE99QlNRl-aXKdqZK@y9nYo+^gdWm99 zzxWm|#0@a>*<4lT?t(d7vGEoAgJdI){>Wc*@XKK9L(z&rjGiL<v>I}O8u0IyQ#M*NniJC zm&Bg!L*1zx&0HePPMG)EaWA2^NrG|ptM^;4IZvl{^D90qpnuSB3Nc?!ctwA(|B__F z%faPtk-^0<>kPY0tW`uXA~&VWI#{DkZ{s!F{r$$N)R(mrdyTe>qRz9SyXIZ1r%orB z(+whetxnGHHc#MDiG^q3!fB%g&}atwEb@vQJF-oI^G zeoK{Q=N9G*L`!`pT2t$xH&$+}O4EzN+-3-O%Z=DF7aYX%hD@siIEW4RB+y(pEOGQ{ zaIC@{E$P#Q)PucRxA~${->pQNq3Y&3jV->6L#&wH@j;q8p5UFv0@>A;KU)I6g(WkNO*2dCpwwH zRj>qGBtE=takCo;MMmPsd2)Lcrnx&{^5TRh`XKM;nEv3C|I(QCc1liGI?D3|OR~Lj z{6&T1FzTgM0bJ`yXh+f!Z05T?Pwe6KprPU#pAJYWJTG9RRi{dk~4G9odOE%Qos=xeY&CEW1ECVh)HCoPOm#yZ4GBc#} z3b_cATU0~JHg%KvAy{LDRtXkiykW0Dl^4;57|-d;y9YRH@B{>gyN1}O z5kdkL@AY~I6B;+);5{5#yeCF*O?$x8q{D+g!epQDqI7v&gnCFa3IF+>E#>{OCvwXj zUNpzlEFZ-I!}jt8%?Qq`j?rhAur!SP!QiY4<0Br1Ju6l}(Vv;aL+Ok^yUQvbB3m*d zPexe1PZ#&JmCp81u}c#F#p1hSL!yl?C^nvre{YulEx_1c0_6VJKBEL90Ij@m<(*3w zUX~)Hny%*r$b(T#oD4{3;QNtaU35pHV_uY;A=aQnMGhWj(?~ZVQKGlT_~Z@c7P^M} z9)B_NiAQ>Ev)5(psP5jKOw-*0eZqn_VwJoQ_swfPu6uluyH=lR1hun%WAjymafgTM zdvPE6D`L60^{#pQ^4%rcQ%8f>z|pS~TOqvVQ(3OV<|F>8ivz|}f?kk4X0wN;?!8uT z`}LS|YCtu8YXB?j*ER3Y3n(^+Xk6FlguBnvD-Pzx)FThK1ZmC(tT(MTolvKd#`YQQi)a?Yf8_OBA?=7QYw%O zL;$;}oV;^&)WEGujUFUlLXG=vX2h%5H@c%myH8^*h>7Qz3N9QlX7%@HH)9kiXd9Btk*Ujgc1lL?Xj2G^L`Be0)+4kG*wS~56 zg(&xN5^ams{MgN>ADTGb(HDnAEu5yU9Ue9u#M};CxmHM!CSTHfe(4~lc|HZ-B=fBv zQK6O3xDm&>-_fBT2&}c7pZ1MWPGkz4tVl8EK*4w-}HE##&1fxQb$2|g3OX^&_yrf&G8+M((d z9uz$NYBYb@YHy{&jaKi=MJzSH4Qi~7z^|NRKhFqHH<&+bk<^2eWRvWW(pzuI-99+H z=4V1vbq6pXUyYk7MZLom~qI>XF z)KKwi9w*c0Si8mtAUHd8GECR;(EPblX<+r z-M&sQy{*&$S4{1OVA;t4LQKLfpauB}Ik&^&-!Q}-NFqY&(a850)_<|m`9ARj zf!nGf*Zrl<><s09KP?MDd3H&>S$4^Q{pRf*Sc$$bptW%M@sI9Igd z3-Py~&2gZL-&Mz8P-qV#r<3&S6BDG45whq_PtP}u=nFmt(z|iK=->5K;_7Q`PZc1e z?ujf}(Up}Jq-k-7HkqEgah`_9qd5x7#}X5WC}Dpy*wfnj9C(BkJ$}9RoSA;c{_ykO zY|~e~7x(%Kx?7IAl76+9o|TxOCE;qSb9Yn5^&Q=4v)>2zvfks#*HRtmEk{ne=Z|P( zJp~bYfsIEd^w^8g zXDGuhJp0aDkjLH6?O^uAccYyAhTR3(ZKaN|zq{Sx;iz{kjkVpx;&~O}uT}2J>Fv=1 zeY)OftJFjeuiiV_J_Pv*BUwvLp8L&y93$+^9zQxr+$lIWp8t&xU9hsm5jPV0e}|I|2y)efK7q!kl zyCzh%pdo+pHR26WpH{3zpT;Zoo%18*z@(+Y63!t)ZZz7L- zn;+Wia&sQI=myO7d+{0Q(MEiUjfKLE+a#A5-+%*k0GVKFkw*m7DKM5XPV{A z#0JOZ#cv3O3MHf~Xtmb(YWgikj0lDpDJu3fOW%}p`?S>CSgCgCJo4%=qi#p+#6^=O zViqKMNP(V)*w~(Gfu3ro%!B5nlsCV1meA%d;Q@2{+yttF_{}S6LDh14a;ihLF5Oz+ z{wI9?cXZ`Z3e=09iN#y#{aqKvi~wu4Y?PElJ@7l(!XK;!`G90BRf_ccM?Ic^a?z#k zc`1J&FA!)9&_I>ySDz9u{)}0OeMeYtAmH(5B4fKKA6IiD6 zdt-nhT!3y~i@A3Gca#Wlyl4mX(t4ESgV6Q+z}uj4_<(tNsl6Wj2m30_KrgD+2i8k} zE%INsPlf3h+3LV@?hi5|uLq2Ux7N1UAAKZvEdOHPKIb2jNEHCS$XUW)&;5raN_>IZ z)+M>Q^=W^QIncBq)%0y#NPeGK2(%kXpzo*j^_`(VMxp}sYk<7emaqRHC$tR%?C)r_ z|H=D4P`jJW9{itR`rqFjV*+|!W?Bdp{lf}seFQ3Qn9t~9gA)dMmpl`RGTE>}(-xNhGBk-4qi9fca{!aA(JqQBy=kPY`nm?w5)*qND z+WeBboIl878E*mR>v{f=JA>yh|2v}Y^JmXhzs6TPWVa#n2P}*o0rdRRXIS|+PxlM( z{(uSyA)JAo>i4Pg3=J{Q|p`%BpGTV@b}eSY&iAA`;~wU|Egp?&q?_v5=J(k`La~SF3~` zPU&1c|S% zZEB3P%gWi#z(|gpDC{fs!s5Ex+ua$fU3TRtPf_ZMQ~)nfyJHJ)Qx843L8`I(XdjXS z8MhfL_f0-x#oFsWF*-iw3PdD2h0~K&sFj)#hWE_l&Tf7p5qItydQ_!?Ux?px6Mko6 zPiZy*OG&e$p*?ah_yJEI(^D>W)Y#MgQmS{hc`C87#5veyyB zlHHLu7jZq}qs;cdLMl~o8ZMecl`WD6He^|cvJsdRytz^B11+>PhYdvBJ$Q-2-5L7r zJ?&5gEp`SAOK6xs@|qu_v^wnw)2<8~BGgGfk8gQBYLt#LSVH@v!^! zmu8ozwSo&~X%SVc`l=@xY@fVQv>+GXB(S6XE~S5gwj~M>@%@_tLG|#|qM}tGB#+3* zv{>ES1I8cm5OUb|*CR;EO>^lV14< z2Ep~L&}Q}lQ4FDw{!h|oukXUm5m?PtvG+bDD7=*q;7$#i4Ss!kYVQ$TTY}PL%`6&W zMT_-xlrr9uk2O@1M0fga`lFj3Na85Ww;~YSK4lkcZ!H+>{_4z9?!IIY{RxU7S>bXK@bH z7~d<9;-^eAhWF+T3?(v!5jO7?FKww+nH^rT!M8WoW#9!WT4@=YlFtv1538J-3j51s z@}5tt@uf?6HV0#n&$Ci-s1i|Rl8N(G+wX3{q@z$I zBp79>3m20^o(`oQoRWc?{Pm-K*PDh=QnsPCQTxbB}D3jge|q8mRdh?_SHPaH~}JNjjk zkm1TC+D{1ur|?ztS=srUBB8}bC&teKq4-WtL7>P1kati6Kb|BenzZ`M+geI+1UapN z?Z>G-xpBI8!da;)8Bgi)@?L}bGTLU^L1S*q>#o@cpImd^L*^Pm9FFlM>TAveKA% zudXse3-stk48{hqN0X;Tj=XqG;&K#>#_W2_&4IAwchfmOeb-Z20>u=KV4-(n>j1;? z#w0^?a#ll~tbGfp@| z9)5N2wKALAIi84!sJ4ko$ewI(wGgD5LTTG^bv$6+ zRN$~3X)wj-R>%cs5^vZcH*chRZ`0$rfV3@d*%jcrNxf=MwqRHZ8+*Q-rE7>Pynko-$u?U!BI!{)SB8Wn z6Tv{-fC{-d9_61DAoI~L-LKdLLad_a1;_Azab0y%55l9-7jG+RK! z(xu4@$^mLDG^%&fs1wuK!qH5AhwpsrzXotb(xfS`*wL}_Z%-CtCYfYizf%94Rb2`j zSW^+t^bt+%owQVP34F646-UZ4MQ6V4#NYt5`k?B9t5G%l7Jo&b#0>(S8=AJ^3KHw^ z<~R9>*jy3{OX|Z9{v9G}FQk@;B}ucJ_`=diyll#naWd>Un{Juz!jQnxcJGfe44C|i zQ|RzSKE}5{5oc-4crSPN+NpWRroL`?^|S2CJ~(Uqc?p$70d$G;dP*nFR6X(3wH6kT zvw67Ps?0w`-Ggdi3st9<*%qmruT9R#FRaXNWo5-^x<89a14RiTQ+0F3fj`<4$L`F7T~cFhGp#yVmyQfLSbhA;*-w2`DgAJh3uiUsKX=Z2qP^}%n0uJ44ST;9X338Ibb%lXbK ziSpXugZd||d=n^*Kz8h;QF^49s{{2mfPE!}9+^inOjP5$+18KOnXQuG2)?&UgpUs+ zhdV$_A}uzJ3Rxz(q|4ng-EGES+te-*t$e@m!6+8bH?dbL#TjxLKMg9xNV6nICWeUq z);uABv#s5_juQEde8t)+9Vul@VkeL@N$8De<|zpX``Y4~W5Ju8hsr3KMzPObZRVN> zbdB4>=F4c^&^F$D{4)bXN*}pPx67u6*RTeu52Q%)D{P1R)6)ZCdlkp8Y9<&I5~-c1 znJ-WXEMM>KDZj#O%VmNA-g99PUKwexXqg&n+(t?&Aav(4Md9dbF`@**k%&5@Fs>yw z_jL&Mg<@x>rR9I}0%TT+A$<=3Z?Q6Z=K2<(a8l0O&FlwvY^Vb1)-p|`x{e}E8BY;x zF+|r&N`|^0zkdBnNk`>b@R~o&IPO^XF);jx1Ydy+s6`|fRk~MJE60oSqQu363M!>5 zapZ*yQ3b;%Wh<>CrBw=yajh0mp%riA8kBJ+h9^4W_KfU`y4RPaR7IOP0GX z@q~DbC49GgZY80x)tZj=c<{O3zq`qgPLlF!OS99Z3whSp^YJA|pIDm0PVb#=8?ZIZ z$<4DEOvGmvtC8O%CnqZmrccnv4-hFDoaax!QoxiS%=eNj{ART*R7GFSjBn$fD2K!! zdrwPC`iiGa0Z0O0RBm04l4YarMKhPpmm=gB+x(j2=Q-wRV4tS=mf}Y`MY)=E-+C%B z>JeE@I_g&G*3AUGFBOihcm_4LU1 zB}eOiaxs!~&p#BntT&0Na_c4}3u`Hi`>i)!_B>vyDa+NT6Wm)_wyMQcm0k`GZVCkq z@ha#L9Vbmd=55>FxAmroqm2*G$0BSoIexvRbX`}hc9F9y^saH2qvbh^9f*lgpwgVa zFL`}4lIE^QmDzjcc8Qmmyey>oR#A?#ET#~}l?x^f@@H+zV%F|9iK;Hj#L|mn&!oPu zh3Scj(3tWAlCIuqj7PVHSJ|!LMbcaDxW3mBL9lL8ER_Jogqk@E<$2HZb9?%&)!Vd;`O8tDs<)6SKGiEfOu@*CjVzx6>QRHe zI*3DXneiZ>xUU2}vCv~XyJo-1lxIJis_?hv*a)wF8>{`)Kpm(*9}bV&C!|(9rcXUt zc-bmnY|xqS^(uH>~b1pybSdm3Io-&@rhbBa3oSf|KLvk|go^ST^FA}b93 z*;{6G7Zb*(qgLV~Kbo&ODyZh*m+&S-T*jD_a-ExwSoCHsTF8Wyv5?07(~Z%@kO=REoSR6%w5EqsPRCOLD&$QnDZJiXfj*FClAi>Vqp*rR*Flrj@S1E21< zkHI5@Uu3#^dpnnw@a=vgt-t=()N1rZdj2*>D0J|%jvR|qD54)fzN-&QAeki(Ew?7$ z*Jv2TE2H*WV%L55sH81L!?aJPPa=u%k$`dDG4W(k=Q66E$hdy5Jc2i8^}6{4yi&FC}z-cBre%<_SYZ+;#`*APffRPADr zRabg3A;Vr%#^o=J;1o0*aKK?e=sVe{%jjU`e1=Ooq4@0$Exn-HqOFggU2#fVAv2h} z9UAA;ssw7=o@;EnCSt4zB!%F7ZSHY@9*}NS^x#cIN(v$>LUVJoa*XM=MpSxwcvaOq z#ujUfZ=B`1iNWJo-6 zz&@a;$e4NOM?-Y}>fqFrT;G<}8G&Je^F{Tsf(d)Ixh>SqZE$49oNN$piwhYhe|I-F zrxP}>*TaG9tPn)L!N(wuCVZrzn&qDx>^7~`D4#M*8A^%27z_$3Ky60vPxgRJ8y)ve z$Ug2#bC8Bz;-bmqTkt0jkLMY?3K+X|RKtQ+K0d3s41*Bv*Z zD+fPZiuU8<>i%a;wrP@qZ%+lJYMKLlxIuN-lS>pzjg|$CtsgihpoM5h$&?}Z)5O4! zX)IgCIF{*=k)A0jcsKX=D|XEH=oN0qAED;2PSK;GtMRvTagtG}ahb;@_mg5K>~Uwr z!qZIeZZeU@1$&)XBIS%(>PemBBN*%*{Mn{enzA0Oh)gCpeM};3KJ3<$5vi-tVPUdW zm(*qSH_x7mX`@-OmgE(Dj+x0t+zfQLY3xz)eHb#gHApwbdGPh|k<%ztpq7fl4LkG^ zKQ*{Op)q-3EG|Gq&!=!`UT(PuqZ&`Jj*}!5z?Bw~5~72Mw^BL+s&zULh=xw=W-F(I z?>sqyhMk9~jPoY1HCPX0K`;wy23Ifev}*85Q7Der8gm*D$17~cpvUQ+=KPEp+s?y) ztv&yZYFA|CyYv$I-laHv2Yv^vG7au2>+fkjG30oz}TzgDCbDJjiEhhn3xFH=H& z)?{U$-g;<0m`d*Vtm#T*;Miw>da^ZRS0SzHygrGWk*qA;(~JG;Iy+hoEBFyLZQ%sR>-a(5b1XN-HRYohUqo>|Kld<>w1lc8H6L z_Udc81b^G5*7^Q89gmf%3p<=we#ZuY+pyg~5?>;$`WXXN_FnZS!B})wd{jE{X4quW09inS#LwD#hwg$2ZwzJ0GNPL@f<{tzSY%1`y&x{$CYqKXi5bfFEy;T zI8zW&juGzdy(Xr=8#%o?Gy5?D27`Tps!13XmS?*^-XmTRCcV8!;vpM>p^SPS3 zzRrQ|6JKuBu9g{p4T8~_%;g1aDFF3?0Ss$t^JqZ{GG#z$eA}Nz0CeyoXxY}P5^PH{ z=pV2l%!_xzQxl3Jh%@0;iiGxS*z?uZ zlgUI`!c!~mewn6{9KY^mrG_x-qgIFlUjMQrRc%(=2q6&~8>>P|j$nc}G+x?BQEb30 z_FgJNmE6UrAEAEmqx&rT`=!P(VrMFuG(L&%J4BJmZlvFyDSEyH8(0SkT!AcsWRHtL zg6}}7uiY{!JTY&IJ^Hr0f%2eYO)>EXz$T=(|9P=CR5tp)we$qKp{xRmZRvAzlm=Uh z$NB@)+Jz(wJ?V%{<2WZZYqpY7&g^2xQJJcIR^S+0sKAHLO$a(Gdq*zIQi@m&B@ z+~s~(E{w)h9V^HKRVUCNFKQhDZhT3OO3mgJ?pIJx?xdlS=KD~!LD?tlZ{I6O6sZK4 z99MM%+{_mj(E3({(w6-6G$Xd0dbg955QBnSredVrW#yZ-gs*11Kw9_q zvlB)1tFc&wJ-DMCYMN>xm;3-%r&2@W5?M|2GnbiSRcp}drK;T9_)ImT7q7b$aBw?& zrl6t(lmy34C?B)0ou=(Mr{niOJ?Hu|%a0nC%`B@<7J5MkjB-CCZS)uxn?K#^6CO93 zqnen$i}uptfukPI={t+gudqFk2*Gt`<^9Y_M7|CG!+h4OAFWrr&4XJ=bhIs;r?fp_ z?X!>X(DEZ}WNcz6te$w8Shk)fJr!-Y{mOGlQed>5 zX`}8i@Gm7<3E+4!jP=)VQvhfzPzbDOk}H@)8(idrqLyV&kUNx~iBOq&A6JHBAi8oc z-zr&{o?XE`hqBT~%S?^i8=lTqiU7t2mg?#bIahlMOxWcs!4 z#hAXEmbE3{mzw~bo0w@-9F6+i5wuu7_V7UJU- zWGYLaOlnNw!ol;;w z_PL5#Vfoxtz91H43P)3w8WA~FROvQv$;4D>ml1_ME-*ACRanvHD=;dCp;h1=>215L z#-+*R%iwo&TNt}aJ9#DIYuT)jYUsSLzOz$}aQlDnC|aj~=O9D1C4~#~W~~rQBuLyR zpOZE{`aLMg#I>nHbLP*R!b3VDMZ)L;<=*byas=1_RbmX-ZnusVPikm zSm$1bo*vm|e~KV452vv-B!mV`b$&P*PQ*@z0mRrHDeTvsr9DPP9Ua8L4WF089`*Y6 zXU7@WVmG-$cy>w!&=J0B2W;HZf_u+&*v@iQd zxvC+4{7C9YzDt;^agCql3L=)_R({I;1Z{z{`uueNl8uvdZD3kyD9MqY!}c&k*1qhB z9JB4p@B1`a7odAdK(*q|3O&e0i{kgK*Cw7ili_U4)nvVWjSMaZ))mY-=-BK zUB2<-g9{2CI^}+RL;|TvLS?0O_v~_Kr#hc)bh+5f#7%n7#*4e_PnN<|NcbGYJ)@@c z(2A4Z-z%+sr0`cyC`xlf)2Lj7;KIY|iMw=E#PQN2LXeIY0?sT%M3PYY4CVFjf0~*F zLFJoAU0~4>5i`M)_`UL!U?5b=}U&WmgH2^BKnSQqfRSLd{gYK2#BEBBKt@T4VzE3lnq! zH8FL(s~fu5fXbGIxPjE0ljc(qbaTnfhVi>G))CXQQE4v$Qc`QGVsXwnZU888wNyoK`rFq!t+cw zBHCO#>KDrI$8wOXarw_?$a}A9XPMHm#nFJ4ei*Bu7 z`?+mU(yLO4CM2%RuGZ<@CVz&Iq@`*LvUUaoscG1?g>UDRRo9>Fnl0ib7gPnjCdn7w zix((a+Oyj&tgPNfMai6QMqfn6Cx_>r&~-+%zgXSc^Yro}Rzqy{xkVoKtPaI!xx0g9 z^mqkALiL^(1xsTy8$mbNfH35F?2n0wv*~ny3>gO0TUARyrgR++tJ-UAKVHLgq91+w zDk3?G{*&~bC+`MmzA0ulozoq>GvdGTWGL%Hp*`%)bs#L4|LJM0@ufVcxB_KWPBh;c zkSnF*4HTQJnp$vkSXKwIkeK+VpY*RP)QxwUfm;}#h0ko?0~c4!>bTo~xhkM)HrtOF zG{9AD{L6LW@wcHI|3}g22mb zC1HmI1@#aanF#V#^Bm9i%dX3TR;_t>rOK%a{qiom?i)5cdp&W6PtOdH{zJe~xgO3U z(_H2b=}mCUa&y1en9^+Um#sIeYs?y!V2?z=BgU|Q?6|04?8VmMj0Q`$!GMU|@Vox3Qw?K%2sB|u^c z9kR)3X^J7MR@nL)?Zr>wM}$>*+`RMt!UtWT9ZAv+<_YaEy$4a+QBPAeu(Y1<)<5Bi zHOPoR{O|&mTlXBe9)oop)cx&Hgd-O*x3@D4PRYz${IQ;|5e*1~YL}l-%xT=fPfu>d z94<#E2i+^Z%hs$wy$jeyX1$z%#SELD_-r)9J?Rb)+Go$K=5vsmn&y|s(=W#3%T_zT zQg>yjRvN)$vp>)crSrflma27ndOyPxsThY_6}bU1yhpY1Ot$EZ)aA*7Dqno-#d0q% zO}_5KtaQi!$Jtv)W!Yu#;}6}9bVx}`2+|=T2uLW1bW2Egw{%M>DIkq>O1E@(^U&QL zzr#B-@63GGto2*#`ws{#pL3sm@3{80_t}Tk`Ydsg!&%YGerKk3V)YHY&iRosB2Keu zlsx4V!(K7!#-=p3!ooz$?#y3AXiL}5b`=9$Apg*;`%9%B0np2}N003M*Utgi&73l! zCEVAv@}Jtp^QdXsNCSgQIj)`IbyaSJt;_S>be@x>jXD(v2g4H(tk)2b2HxE~yj~O* zdj0b_wE=0kSci>+BKzKMX$c31Sl+;}Y$H<_2ltzQc=wiF4S|zZ*ugKBU)HBnC{xqZ z>2B2nH56&y06VHoMJlo*g&QNCAB1j=W(V0-1Pxk5)<=0&H=|!7WH-IouUc7YuN`I8%F|a9*nPy$7zVC>XhO#34$n-g?D)A zDKnW?Y1-qLLr55RG(PQ7kF%#95Us4(aO5~ITE6eXXm_0yzb}XeWMh^LjIq=VefD{r z@vq&pVe|1%F!j?z3$g5f181`)tw$n}j7*a_%XA92B6aRjqcnh1Qef%ps9p}Vc`kC2 ztxFKn@EN)pfuQHNWDFcZT0DGsoRZS0&H9|n7o9MCeXj6XN;i8}b8~a+?Nc?J?{YWu zLzT3)T^;nu8egIGgFig#xHrirq$NI$s-~(~FT6DTL1aKFY)eKiP(fHA#5g}A*eng7 zZDM&HLBwwuh3q*@!Nr|p!_P-BYg_<)!;;#2`W4|Y`@|5Y-Z5Zxn!=7715`_a&pNf7$i+_-hk!u~%&Z&Plj@iP zoMnr929;IufI6(s?n7296A;aDRRD<|KxmMn3OicEM^exIF;VkS@k^6WHo^_oTN3pk(X(iLoyB)tv^R@ z!bixfAlsX*eEAKD*TPr&Qx42+MAL=tZOuCt@5!T6(2|)uDHFp62)S-#(qzzlhaow> zilzp!deJIL*Nn3i-a7s>6#R(WC^>JA3?o>}fF&Y9CaP@d`srz4RTLM+{^n}%RXW^~ z!H%lgw6tP&(C(hs0~{Nh!s*sHx#5}9>6A2Zf?DvScW$S=h#0$Uw`Ex`h$AS3sJ*wt11As$!@<;8NTk2v*W zpJa1{+;L-utK_iB$jPJQ;==s`BSPZFGY=@9wIBS(#7$I4wb_6baPj zJArSM5wS9|<*$Zy`p=SZ(UvMtl>dAP5{wR$?fMF6AFG4{p2~IXW+!?HXiiY(k9lYT z1y@j(96KcnDKc|6#!PV%iGX{!{I>Ljx4su<7Y+-B2O;D zYDsHrYcK6PCiO=X003QquIW$%8V742)u+ssaiZ`FuF-RWNW_s#K9!#au{KjG9RD3I zt@pt~1LcK6n)=qXTr~NNoUP-5koV>$(c46J0^!DmKW_%{8^3UUOLIIh#940eY%}8c zmdfrKMl@u0P|Pg$jrwh)My-r9&d7WD5N`UTq>Qm{fqIXds>{uoL4Smhq=JG&*3(04 zJb~F!+`ije*iy|3Fehqm@|PLI?w*xI?&R#!2i89W-8e~B@9kyPOo^W<9u`_D8ScoSaOIrcs^2oJh(PX{)vvri%VtbSW5voP-atPJ%v7TRng z@*xzcAHSck`ey+X&9~4Enl5?$!ylf=hZkL?q6>5-|LO&R(jOf}L%;EQq8AqaD)DS1 zsIVaQb(4(5H@IrJ!3^%-uXDs`1FRQa=Zey^$iO@aUohVkxuCU93iFB2b6W0;y;)gR z{I3xCq*v!#^WwXt5{o3Kk-o+ZBuRxISVsdA;I2b*ZOepy)-!mN$^SgMUhqKjx4KyJ zxm(`ee(xeOoi`?!Yl%PIc#b0KDKc?K zcl$f<*8v6JTk|(3J+gzr@z*YA>Qs(aGxc!z-vu0coZqJMV!rNpty*mvLsUP~uo@`U zOSd6t-9%(Q3YlCO06~4oI|2R>EB@CjM-|5`q?(*SQi7)Qj6(`qk$qs9OOYZxA-Sj| zCXwU>I0D0IP1vma^zYQ`;LEn}96a!ciq6fvGy>ZmDE!{CN_jU~W!(k6eO7!5 zsV=YVFi!KLK^)4Iifjhc{i3kbf)FAHox6|@Xs#7WQzQ|$1bljw;#&f59nS{bqoZK` zMXC_PJXbFZsQyay*Te`gZW%=Y-?UcQd|ldC==Cq-PsV7Wgd|M@e0+MN*%l>bRh{47 zwb_8_o9$Xntc~=!mbCk$ojA$024y@wog?}IIZdjy5x@L$a z>jDue5n`Q&xu;tB5-q`yQ5G$$84niS@gYt$<_ICy%uR(#(r(n*Pq8qQjd7lebjd zgH)6fxD&Hq;CY?}YiRev)+{Ji{r>U@O=A8AyOrm&{(yR5H-?#GPi7<(M_!tliS7Bs z8&48yU~03Xa3|z9w8%`PlI>8uQYbCPlvP?U6EDUPxoV1aN ziDE|6E!%^&Zv|8JE&}gIUtr^sJ$;61l9k_x3C@;?0$3s0oNvR3w)DHaz?B{V_T^l1 z2|yOur-GO~P*Sh_jJx@5V|*8^^Jtw~=6e%XnEH4AChZ;SFz&;xIr%OoO1K{o4ikGH z{^&&2SDT*5qJ_>Rm~&?kIkjh1pvO?J1uncq)~MdYA7;n*$tdH_t<*OG`WFH ztPB6LioI$y;GXpcfK~7+v4R;KNtr6@Ue>tHNEn-F3JQ^*r%e#7%b2%@(zPm0)_r}& zRtfQg;!;)OAt>&06xSgjHiWbcl6(x%wL%e*uEJbRM$h_&B_24$Dikf)WFJC%cwiwNW+j(1}t1_0SOrhwICK zV4e3gWzn*D!Sxd^YFVJLsW4fRI!NSm0Zt%D+ zSde_;`Mx2R^_|`)H2k}gN7Nhf+GTC3_S!c{jQm9Bc#etrga>d9UX(H7|P zO@3kiuuR5c(Z_BmgT(7L1D-sM^`jLNc;}%(Y(vptWBk6*SzzV5l#i>G{L8KPJ{H@K z{-PN9z_O&{NWh`t7kwryM+n*9&0pxo`G;|>udX&PE>ccROkB&>#ASirh&_zdv=1S2 zi^&0*br=C}EwQAkH7+=+UJWn$wZYchtJ=zp18QbKNbDml8B7s#ZRa8|N9gx0SENTF zkM0SB*Bze3>Qo9TLVG#CuLq;aW9gn?3C{~#j{`C#EBHc^ghwFxFGBzy@()Ac04?aG z!XhZeucXiu$1u-XRjT2E4SHVFWPt$nxG;E`ltWmcv-Yg5lqwG(bZnXH+JHx|Y;FQX z!V{}JS`6OW7CLDnEWqn@9g|yrKtka^fY#FJf(H^P)R=qRdE29iRm&blyj!7vd$nZ) z?`YfcBY01D$D|wl>9=MB_;_tL>c&@6kGrJdZ47^|h&}~`$U|oSSMAbPABemDU*hgc zw9`k6l{^E_M(STM(*gd^-$;2zlvd*hR|;@vJeGIImB zcqc8)lf*tga%(%`)~iSD`Em5z7a|1$H4Si1yc7Rz&wu&zWWa}oZ^MCYqY?tiL-S7_ z(GXG`4Ui6Sq)B}F%AaX<`a32L1~WVq*iI=I2~@a^SiE;~ddHJc|4|gO2WO3HB9<<> z!Iu7Wb3k{>9(Cs*`x^)bYWk0@J*ue~G*X!3lz&{`XNbD?#hF<yKP%qk8$0d{D3f@(4r1QP7rL#izG%AGJ#kX#YRS zPw@WZUjly)_)lI%Mb#iM)VOV;ljQFD%%`+e&sR-Gwila_u$Z{lt%iz@4g(2`Tr?+Q z4~JmlU2&_OxZBtj+Va%lq{`|BVe@=HLb5X;i;-{d{kh+i|r=)Q_ZH!@260K;{d(9O`( zf{yPZIy`0{aWDIh7$1fz`kNSQLhyqEPCx#vteA5^UAbm6zLHseJ8s0zV@vgBW3NMzzkN)Cvx&|qau@5VqNDJ!*xyy-x6gc z+5`Ok5m;EbQZL4e8MW|YNYBP~WEYchQI?Xbcbfs_thZB@Qe)ir2J8}2^dAJz&1a8% zzS-Q$?8o@1p8B^=G14!MQhtp zE-&NMSaZNuRaO1z?r%9v_X7aba?>Ge@R69|gVl6${BU3hqbWjG>Gvk$AK28&h#`i_ z`pBAE{vI!M-wENzfe_W%0C;H&r;WLC>9z3IwPOBoIC;DjF(`SOD3r#`Z@2M~+2{)p zp9o(cKXGrejl-@rby=>jEoV31)CJd?7>uryTRS*(E;Jxf#q@IM&6&LYE~qW>Wp}QY zkRX12s>&h(yWG_Jc4$tmq-tU+jFy&G@2<1oc|EV|hvJ`7PbdMIkRz^9woyrWd5f>q zM$6(LVUBzn-0KfNv$Ls~nUU7sGZF}&5VeX4gtY8`)Omm?C}4q7H-$^BOO4s)D?xTU z^)*P15uKOX2~rif#04?;LLtew#qZkSBK3~?GguE2GD;YKv_peZZP(G z=hlMTJa~WZFN$xLBw z(6v~%ytN!5jn_rZRY)VBCLCC0Ar63eP*ASPI~}IFh7_Ufw-kZ*cdk4;s`s{iAKn#> zRiJ~L*_Iaa@DS)d$brz1zk;v>s}e5zKWRbWFUwva$R9LBpanvQ?VO)phhgRsay^Ee z&xZ(rGVYCIy1lnz!F>JGhuXL@Fs%TCqP_qFR%q9{pd*CV_2Kk{0N2d2^?xc9dM{Shdrd0@JAYE>h?jgjZIn)dc5K0yepXOIyf-fFK-}Gi( z9&NldA;k^jFpvzx@6vQ)@U?a+H_V?Jc3x?$S9VjyUZ}UqmSk8 zBKhb|CQe`9__zg0+JVb0?fKni)CFiSJ0zr37qAVuNpu+5dj-zA4(y_GgomDK$#HaMfB z)FyCxmBIu+M`2CKhe!lPqSa-)G1Jjy@!IavwyglAq2XKO9!P5nbFnkdAm6*(Ew@0A z_*kUsTULe&Zo&w|V1SPkxwA*x-Q7FUMAoCyZ{%>6zd+fy1_7ke%I1_3b{OL7j(C$ z#`tBCa+vf?!sqxWk(axJJbLo(&A^F#3v+D)8d`{=qH@?T4X2e2kvp8lNz$eV8qZ_s z0qA)NeQ30Lpc?3|_Pishe`ujsE&t4@uWzsOGfMpCGFZv^EQ#${rRUeIqu%Kz4%yQC zk~gMrY^T?>d_xn8Tf1gSBSoqxj0bhve`zo}ubU|xPIS)9@Vi&JkRnz3J+M_TD0tm3 zI$w1Z(=f?YYqROpMxYV0aR%i;k~E(y!@|KiC(&jpZ((?kRt-%)Y*-ZPG?B<(R4b+m zdqj*zv#4_^jK7+&)>BqdSq7I9kS$CqPwHM*bl)ETPyreg{}oGH1SpZ)qb7~2Luwq= zN8fyfeJ#*{;BA&uNdT$OZzM)4T3>o2Mscvh#e(U`{Y~TrQE2Cvmj1j0e9F`BQb>bJ zENStcgr-}>s*Uzk2R(ug*JRlWX<<|x!^t6sr{7O@(dn%{PA?hTB``X_1Vg93iFw}` z>AxU&{;h3)HzsF*ik3DgWjU6~KkWI{6@q(>;NHSd)x?o&ty)(&_!Ur0gtcO08;EHz znAAoO3G=Q?VrJE94B@jgDjUu!%|k)Lq!5*pd*0PXOgzoN#I!;r$VK}t-AT*CBN8IW z{R|P@+L9daukXZ<9kXuF%!pvn71mz(eU$$_OMb(9lbr4TFSOVO)^?!7f+LfEA##ie zXb=JuDx~@qOJ@EG(bDCy21#54OE8=emoxZ7}g!9(I|bOXFSV-2nlT<}>x=r#fCwBsVu6(Ux;+N_&GE5*^h9A_QqvjVB z)Kc1df&11D(_=yZmTyiVQnFTZZBbep8@FJUcD2O|n$U+dTQ43iF5R1mL1O1F%-|L_ z&oh4QyG}InS@gWUWdr)dxHB`+Sscbc*((PJfgG7q*7t1-5Z-x8zB%K8!*4cS(S`yzy+j?8gHYTO8x}8(Bf?IoOk(}9nOJiDd62yjlfcGw7$PO-of7BO< z^BeSrmuFEqy#U@+XI|eg4H-YvR{IZ5@R@2 z7?Y6Ng8YK$1P$*`vV_eY<8g8{6)`Ua1!L`ul;%>t$Mqk6Po5PwFqo>8t7BkX>y9(y zx$Gl(k)kxGz+r1>2tP8iZ_6b9BF4F=69p<+R;TU8leLqX(L%?9Wva!uY@( zT06D<`f1pgB7~QoP9+$a*(IM|QHVa8Ex%I1$mR4~=S3iPZt<^z9UO0^>sK!tlleU; zqH**}D$Ca@Sm6h|BFOz~(!~+cy_GPnM>@wl5Z0bNQDwKPT7^vRca`qEfo+asW`k(f zItDyP@Gi*A6b{0N{7YSme&a}S)1^NxhgFL2(7jw${4aI6gv!=@RGEa5?OOag>g}R$ z?fP|b>$CdD^G3m|jhRijtG3bX^UfhO?Uu0dW`=o=zGXw__V$6Qc`;IJ4nCgI0@Y^^ z+-Ri*F3(NYqEcpvLs=tq-|{!+OVHKV$F-{dX-^3*(p&R(T1ZxN&s~qsq<{BbJtT1Q z*Sc&(^EA z(2%x3?^Ff_$St^-N)*g|&vACy?(Ty3zBrDdfz0hj z;(q}4^zpT1IX@1>GX8D8GA^VjB+ST(8q>NwYuo8H%+g)_&@N^LWa&cY^U=caY>kHM zyoEOW41b9tA_ZapD~9@>CbwP`+H$6fqq@m$}lG{fk+ABW39;@HQtlAUWdf z566>E%Lf~wj7rar(-Xl&GyelB_905Ehphu==XoYiVgT+4-973{ty{<({|qe)WBpP? zp{JkUI*G@3JzoWeD7=LRvGpBA^HqQS{zq=ss^4TJa6hTFk3NV1Qj{`r?L=q;d=U7B zg?;urpj#auFs5wJS&M!q*vlH57+Cn*yz^A$alpQvbBho{@s8n43ZpA69Y)5&YP&i~ zu!c&)Qn=ZZ=e)YQjFCG$JLzaeu;as^%EC&1;X;jw71A6?X(6HI0T<7zg-mK@rl{WB z;)kTydD_kExq{wRAM-3c(62#g<8q*9ptHutK-c0^e`#ew5;M3}s9Q1~4k^-h-`aN} zp;%K~&E<6$u^6RSJqk|r@;6R1epJ*@XUx?XlrKNS=V)`V#`0V5oNHOzIjnvAzPr3? z8%ark1d7nY%zwJNlKN>^jdJiA49kvAPj#o{jqk&VD7xfrTobay1@kb;homngP4S-h zFUld!=rlOSGztE2LX`1YSza!h@r}i2Ab7(FnS(72%LfMfKO7v13E(e`H{K@kROWu57bv&sJan9efRANfsog3Uyz^8os-`n)po&Tzl^<9!R~`_Ts9oa*liw7^{`|#=E!UWchfr z>X(~b?&KW975A-Rm(Vr_JKKYyuJbEzE+l4OY1LSQ`{g^fNV2+Cecm{Qp3k2osx==4Jn%c4ZfsI{1Z!6siOhBZuK1EY$r=vWE`)* z(ZRABH}2Se-2O$pUaQ3QJ*}jqYuiBQ?@7{}OCc&MoUVv8Njq7zv^41ca)6$=fdiug ztM)qnmkNOxeZ!E+u1L~;`Og5yIDTGVU$-k1_M9UUKEy3)1s0Iwx=#BW!8um9Wz0;WCu$V3dquB8MLzs#E9bCnppu6RkOW z$|}3{Za>?YnoWe#Kr(Vgt2jPBKcC6aX#Gc36#+#mMIpwX=7$1gfTg5imI#7ADSrUy zd=Fg%D4Ud&2R0+5{=xMTpX)ie2vyx(z1Xl%s^rGR5tkECMDV`wdcN&Ogbb1QFvkA? zefu7!$S5|WF%Kcy)AE~;ATkYg{qnBvg32q`0cD2fad59H8RAm0$Id6=t+_+~wLKb0 zqwN*0;|sjgiOKW?PE=K?upr}{%0@+YStR8VBKXm>wbSo*=<|#zsB0ozf*(?TobFiF zgAtFO;Dn8KGUbqUgohA0Nu-PdCf0Asi?@7DNK6OS%X6Di!wMqvt(I|P0$WpuQ~a1? z<4my4PB zglM>@@J3f)vGG=6q;3YL>Wk~+(_I3#>hLTbCtkASs-iXPr!T$dKIjpRY>Ge~X zm=WZY(&Dz-N|=Xy<;KSYGSG|g`;KF+jTcb`G)F2g7LAn*@C2YAS#BfmwP+ z_oA-#6^wNvB!x`ju4w7S1z8rbgm zW0vM>hSFSF$4o4p2OAtL?Yz+t8Rf|nqeL%!bBc$IhW24btJ-k|Se?v&SRDZBnJG4G zw#eE1zfmDPuuB$u41GoI`%XnI{k*Kyds`Ks<+NYW#Z45vw1cEj}6o7Ak~&T#XJu8dZ-9e54xJvPUxqxs#T|PqO~n zt+lC(76<3+THWOUoWoNG?tf+AqL7;D_tLM?o?t^P({!AmKub>JC-XIO ze-&3X)!AoZ`TaMdLr)c0yo}Jz%?tnER{DvA?>#v-LCw~LeD3IojDhmy*Dq5iisu9{ zOFdqOvhw% zck`@Es(ETD;DPq#P6F+VGXvO|d@sxm2dU;!Uk~yP?7$Gc`707*z1h|^T<2?u@XU8kYt z#a2;K@hC$1OA_$F?a4!G_-9Zcltknp>mRSoD}C}Y(rD?rn+2Vm^2;<92B)m^|Kk(< zzILsss)E_u1I%&9GSs-#cFP?!v!`3#K4(bH*cj+ zj*U?-tDqKXHzBYoU=?bYVh;?+KbwT(Yu?){)U(RzCAR!z(NSb0ZoM!wgXw**h`>Ch z>ZEM}+79+HuZ#DO@6Im@hMKA?hvRN0fBn+6SduxISZKfG5@|ahv(q5$Pq*`&7z=Dk zA=S>g8g}s5vbjgxb88ft_rRru;k5ozSRc1lVUbyK=d;`F*ce#XO-fHjVWj=u76&M%UAmNn_UK2_>@P%M7Oxi9Rc zo|%FsQ7wrvp`depTGDt%Vqf$ieEO2Z%X`Au_=e(aP1rTnOWKsNr?&^2fB=<{Fd-r> z6w_nB`sG-4@s-o)WNyRJS?c;?LgW0*MTxN7mRa|09;=rykq4rK;KR)|U{#*d(7=g` ziXNVx?mBp!a(Qj5KM-dKRx~}hhi@z@PKMdJ?LXa< zr0VR8X#axXSLYt!IG}JLAhDPVakjLiP*+a`NUhuA?bc%2RXOYYY33r%t?ZkNxtp=- zom)5c#q4$C?z7YhDXWvrg!nIC;NPacsGU7{<)`DMlmC#lSUUc)^6=zr@A&&g*6(h% z=6+zTeZx3E~+o;xvS5DM)K2*BjPq!gIXVULKw{3iTKOp3f9;Mud* zhWNfY+;+)pvwTM-J5CvyUPToZALdD14wn@o^k51@71Y>?DsJ*vZ%`pFTv{<)9FFjG zE-)iSAwRsszIC*5+;k?+LeNs09J47Ni!87+cKfZZvDhA^i6x>bSCMmcCi0ZaQ%=hc z=})GYlT8&5gk}DQ$9xbv`Eu(>=wfHZ5Xmef41LhygeN)e=(5tG-=t2br9`M9IVXET z^pzq*a&of3{$S0+%=J2^wZzAmg{HQ@}0&=F)`uL~Hq$ODtE zC^fH#PG}vkQ;Lq3IH$di@8(imOeVQG#>^xSS7z4a&R(vW$+o%GCj@%>w)5XRl`kD` z*Fs`4X_8ZR^~`4ZMB46yb&ed+I*YALw!cws$zD5ESxI>qaH^~G!w}D>X;DH2_-05o z57Ha_p6~9O@9)fF&fmK2EY=7ut?C+&Em+^bnmn2X)P(Q)%}H@_vABm8#_gRukvHBq za})FZ8u^QZO;Vf%;sT#Ww3^y+h=u*I=4-_DzpoHKC?H;X~&Y({0) zcNk|~-KWV~b1o6r`nFN!XHX=ZXF;_; z6L+!^h1rxluqSoq-0X}j3~AWj!&0yPM;)gL6ZgWxX4n$#|K~cDj4Ew{@SC zXd2FQVM}geX}OlBr)B!s0^rrTg|;<0-I&s}JAR?yuz4>q>*sZTx@UU3zFwtW>}0mM zfGKcO1a;aVAXAD9yyYwJQnWZbJvN#j}6ybnu;*p^eA8nQswaQ)SUPE>3%s*@AX?Iu#Oo~mZy z=L-;KUNTbFL;xsy@#ilJ{n7feqaWGPzmO6E1T$h8kocV$3Q7F6ej>w*jPW9_yR?W{ z5$!?CZMp`T2534HU%!3(;0Iixk& zBEqVoLVj4Z*ugQRXOT6m_MN0^~~+6swSfTl7&O zFF22xS@i2k4{1Z*M(ws6N^h-+NWSZ#sQ^r~wtKmq%p3ImX$*HwA zCLI#wb?z?g9|G*gm zm&hwz=<_x{xr=(`)TADp>{dGkj*d?hY5QP_EPUZB&oMa7#mUF`|Fwb%T<_}Ys`POE zt7j?coihuV6Y`iPzpaS4Hj3Or*D#2&8p=$}aB0|`&e4hpCGU-@;h5L)krvvztf7|a( z_han`B%mKLcJfJVoT1P0*HrW-64Qf-$xY(_e1)51`QDe$rO4O3Gh+L$>_G5yO!?5n z9ITrT7C7e*iIi^B9qr}jZ$n9l`?%B@4$sBKb)2x4DTyg%V#1zp_Ssrs4RcOtE;==} z1zV7tn`HQ%-_X=l5a=!8<>geZ4K z=Yb_H%~(=d>EF;GG>|G3Db-XK0po07fcN#QQVm9fHGmCNmL@E_dwWswj)WgRjOP{= ziGo9A8JU^7R>pySh34`G+@Hs+B_zMt6-wBQRqmjeSeW|6#L!4aQlMC|Dcs}oadMIZ z7S6@9v2mfKs%+gmm24VL>-ZS$a4Sb+2?`DWCm+&|HQMkd_Z>(#|3?A~NLgv0jK2%l zsNONbS==0OpQMU2SUJO_=6~EJ0LI+G$cH2Y%1I(Q=A$4`t?P`9vmDTJMFWO@O0&bm4_ryp0?Pg zy}Z7D%ELqHG%_+gHHA)3kA&C?_$ot?zs>ZVfvUjp$Vlq}LaBI$o`FH=?yg&IVc}{; zkX(2;NT&7tG_GZe5y>Sx`a|l{im`NP#8Dc&xL&?IiBJbE0e~X_ z)2g~?Irk2Fr0e7QA}+E!pLuqvmb!DawzXZ)T1ed>VS0a5R-w5%C)ch}_JzH3J{s;# z%cF+O#fmlP5P}?2pe-J-NyG0bB|y^in0wWIR{fw7Ns~4&=A!p}-Ghz-N8FWRhBPDKyIip$3$=D^;6U!u&Q54wAB$$AEjggwUO)CVjI0&ZxL@%Hpa;Y5 zA^!%=5|IL~r^q0D3XF`5aDcka5HX7JpjK;5X(rLvMd`ZGl@;9j>wdy_i;9sK3lCr5 zOuR%y3_lrjjy=r8kb*IaVS56?Qr6bkNIe((Yb)2`@b#yyp_(ebH1 z+xefTW~TK_%(>>~#^4SBL3LtJu?y-em2UTcXQBUxAA&6H^*_)3of?oqo-_1KXNE4* z+n@yNR%OupCf7uDUSy{@r>;1+@R3d1sHlQ5Uc&d}6^DhrMTByQXOx&t3P&v)tp+)R)^uuS zX42tdzvUfh|50f{DB47!non8Ti)3CGMEMB$!=s~>tEgb3mRmk|wi_%my=DbFHda>6IzOWJk0EsELled&YLc)}PfaWx{Uo@Uz$fKQ>Kis~2 z?53circQ>&M2gJ!J;=B0Q$E}}v1pY+fScD#_!DhFKh1H!f;M=#=(Ic6#-3P2Dc~8h ze3l>A>r7^A&~$U(<-A=GSvG5U5>K8iV%_&GdY4PYVH>@NxxhJDtM1$uwz9Gyp&SZr z@;VV<(fEyw*BSZR#f5L-@{V%)lP6S?+Hz64&2CV*!)2AZApdZ7@g62ps49Z|8UA6h zx`Wqkp?UoUSmZcZs_v&Q$Brmdt^|94@8!&Iet8^19128Ze&-gG)pK~vD6q zbsPUmy>niM(=sYnjA}eGKV~q^Ng>RNHCIIWMcKY1KZpoqyugq{0+=16wuR!03+|A? zt%ii;3Hw7m^=mCMAy?EG`f%f%V}MFIKJ~ymejdH%bG!wk#Eb{N^=w`J!I96#(~ks0 z=w8pvqemQU?dEVA4}xihDWm5pP1eB}bmc~JfyI$nw)^u?)wC6NTk8V>Ya%^R17|Jm z1MM_Fa&wVsB-^38wV|L!-qq@F7aik)1xl7}KS8&~rWhj0i@v_pm*jbQra$aU&1^k4$@0ke0D zZLc7Q0wVXMBnNS)ywW|CL?^u)x*O1i9XV|C#)PEMlMS{b0x4TBrNrp!#oOoA>22Dc zmv>f21maAqW6z8`p`;Wo6BczPuH!F26Wmedn1Jb2nFD>}-8OT5xGgBHsq%WU)-_&G z3bwMMpjt9EXD^+nIN9?xdpsO~*80YK0?^bf04vRJALzShoOZ>8w1MwFn8p*Tly!T4 z##3rOO^vyVve0zjso{L&Z)~$Yrsn80N~HWJ?tX&uA>kx)w5o5Rlc!I#Xkm1J2G3&p zcF9ix8yC0FGBGFB{jII{1vR%t@UPrlQ8NuR_jb1LuW zUz07(m;j|BO)

b)~ij{nf^5!ZW9n-;3X#ED7=wwJ1FIH^|i~=8->QB^F}UX$VN- zv81Bm427P1x$QI7{QkYNlEwUu!+@#HG+#FA#?pvjqeR$g`9+(Vtx*h0g1*a4i*#v) zpP!I?s&F9a%;I2pk*u{2UzH>O{m-+AvNBuuMo_?IpbEO*ucJI3cq^kJ=I{6&lbocD zJ!zzTX#ef!q`0^?k7%=`CEk_;4e4(8KSnaPOk^o!#2HFGVlsQSr<>B3H&+?yrRkGL z7PHSSz8Pc>=2Rf7FY{z$kb0>QAx|=ZDFR#y}s)l9SgJ)%O0}j?LF9%YmTl>Cuvt?Ymw~RBf-boyF1< zgWYfM$jt9IyzUSeJSwzg%ilC^b5>mG==_ z>xtXpb-kr+JPRiz&QBBepeRsb^)C$M#`K{@yoKPireRES<*NzYI+Uh8Vw)*$pmWe5*qKaNlE;^Hz8_B=^;DC{slsNrv z07{6z-Px4pr`eD*XQu$)Ty3$~ukq$$SLn-=UP2Ve!D~Q^!!?l9or7kRe{!0SNhavK z0i3y{9bo)6-)5S?G?SjlL|sI}<;wMMeeH=l80kS}E!9Kz)W;$7b(7bUK5%wAFj_fj zK;rFR{E1?4)tAg^%*L+kXk*io$GO37aIM@ffhB36gg21P7YXuRM{i0Imw<;9#}Bv= zdLC}_^EZrAOa=MTv9V#npr;V@qMYa`nG4x;s1U z?9RwRv7lF26>zuf{Sp9?`;At{epJ?NshI9R--B6wvMa z)v20{zAEcSWfsOx6CX;%K=xq54?r{jtGKA`cuR6DA{caDRW$pI(d7Iae&A9uYe2Zt z!R!eGg8<&s%0@8kQ7% z*i{0^bj^KDz;VBWN82UUhsPp@mau231?RE*piZIjWV;tR5*ezSW{W!F5&djc_dA!3 zAW0Gla87)0leoWQjVh}%-1Y7cUf9VWU;lP3R4XU*qaN=SVr5i}6(%+X?0ely!07)~ z5qa$FvH;zHpx~wsIgHO&kKJtw8p-@Pv@kWdwq8iSyTs`w=uRL9|6Sdc=`=zLsXk5E z4TjVBt*D^{{6K1*w^Gia-gpR|x!835CwhPmJ4ZUuc;iLfSK%og6}F_fJ*zMx^ zj1YFsEo?RqIaJj&43>TQ%*{@O+@K}Q$o%Q|{|LsH) z5L97pY)XU3aog@j-Fj^op76tVGdfKP;t}ISfMiJ6$=GBLTUkYUS=*9=^3T@ZUY0Y= zFd;?-TD)!1C`>YFj*)!j-L!HaMk<4fkM{FFDy4sw3>c;!8n41}?v0HSs;B)>wb&NVyF(F;- zl$)LUBsZ7{;aD5FU%t>;dv@S)$RWPGCvbjfx`*{k%jac5eCF?Lk|b`6jaZto_~Yea z$L?a``zM%HSd@I2SWY}|Q@MPURJpjg^$!}wr!J>eDk`h=CJIf_{U${!LbS+NSAMuC z>Pinp9vMhM%@iz_@K(1DWk9JIRKqF2yvZ8-E!6wlNvG*bF`tu@K@W_hHvOvwT-=ya zw+ms%$S_I~lJ4$2=iAc2X^xY9H_Fnawdlaf60-np$fmAb56yi{+C8esz1JeNS>gIJMtC$0bo!lqsXz*!#KtvxC~2!PA!w^Y^h0{R5)-b0O@!@TYiG3drxfq8=}g@0 zBQ+;;=t&T$fPclh0ah76kK}GjePicjN# z=hHtMeh=!=-AsYH`Jg6wC{K>UVD#(>bZlVO+P|x zt7pvW>RFRr+S}{DI^29plrMEv$M^viq0xS&UN2pog%R1w(Q(@bL!vB;a;Vg1)NlTriZ)WBLOk=P(1{HE~LE!Tr^QbEXul^vjaghD1%Hg;3U%q0$ z%&v=QfiH1bF$mG)dD~Lg@&!eHx3RwEp_C_ATp%Khm9Y~eV$12`Qn!)6=$2>U1F~Fl zric|5E-3^Xe((_QU}{NQ&I1B<|87`sOd0 z5BB!RbZCg?Qg~zaFDgYCa>j4^%g8scZ)N0Ye6>(K=#BQ(5^5iBuw|*ZWf4X(rZ#zY{>;(Z)O`@U`o+*N z*VA3xsrHwBp$fFi7vE$v~VE6MA$ zyIUG>qDyaib#*dSPBQ2QFa-WXnhk_TfAK`zNx_cug9-1DC{t9{JQGO#B`o<2F)QBK zaE@lb0boCx^dF}C-#dL&5B$Jj|fPA3^NW)pfayO2%_2gJH7&h zo8Qd&Kk*f~-LSeOA;f%;4AfaDAc92p&_P@vWn8<8fQ;|}8?rZ2oRfkEJP|2c-GAlBf>i_TRiiYeX4ah;xo4$aZz0&wpu4KYw;@5-`Mdk^1 z8={F$=EP#1ijw=poWbPS|$0Ml#E90eWX4_lkM`uZp! z3s!n%Vu3L=J*{V!PadBn_WU`qmltvsTRyN}V0z5NB=#CefyjVwa#3ZaiWy*<}$Iad-&5*ZP3|M6q2;NalLCy!^3 z(-GZy%m-rWF^3ZHReE4($ZKKYd$2=|D2H&{s&aP7+M3}L9-ijGLEsi&K~XwB&ig&5 z8nb|vRqH0GfS;e=n&P^j;n+DNH#ZLY>L9GPmb_m+Ur|*ZS3`rmO5hAeDt$ITF)+X} zv#6hSMG^NT@ee^D^KIf`eZ*f3fgiS_C{uu=y?O}9A1_`!)zqYznVE^OKlZ3h$Cq;Q zPsJ}87#MJ$!WfQTlkjP$NOq9TNy_+DrR| zkW^GuO0PC7+5m!eKAb%732cc$P_Q4QlGL%TK#NG!JO8QehhT}2`g@50X}o`Iy1$p? zVnO?~yyAagw+E8?01N_%2_D>Uk`FERxo<8ecAG(j`UxL08k!HE%_(xnhQzy61gt!p zyw_U3#d~n96r$hx&3J_Oi7vdM)!4+et%MGHVS77o_5u4n|FtrMX;x)rN0`uOt@aDO>V2e0pc;+K({)tjS?}mkR(_%W+WZkn1+?cQDZCxj=o$dIZ@ElMWe!^1aD8;c%&SEKG2^)%MTdba22a;4gK}VcMq9pepnE_?fg^F=Iz&wkr9Ca zE!}qjs^{lVJw!8Q69dDB6v6iW4kqSH;37qA*cx!15*I-?`@^zL*ZzrA5FCY=hM9lm zv<&u}H&3-=F*SKx(*G4q(Rhf~|iyj_er z=ktyA{R6Q>pImlwZ~@`|5r|2PTsx=$M703u+{Pcw+q+i-itT!_>^^T#+usY8!<(pg z7WLjyNb_CZ$m03rVig@3i7<#-0AYD^@trJ$#bFJ~!eY9c$4WEbSL z?Vt1IY1DcRClcIm1OOL95*077uS*c{2E*D9$noAX>ja`58QH)!D)+>tyD1CgCGj~O ztE%{xk0*~b8#8O7D3`a!^9_%>rKsI~S5}m9s6~L9h(%n%3KQrfimlrSSJqY+S8__T z3vwl&K7}BNC$Ksf;OU1soCUOMw1Rd!%|KM^cmwE*t#PA06BC>RbpP6U_}k*=ze^l> zjGzGjlX(A!0*t^H-youui&$d5l7qVxTH8h28-teCKoQ#axHK;sY!mZY%=oHl(fpyi zRL5%Yeqe`1vU46rWe9QPz}{DYTtBe6W!HaE!- zkc?4Zk`zdyzRg$lDm%u39jaL99xORJyuT(x7^05E9yz>gZJju|KEFpH2s7@HQQn1x<}{pIqyD(QZ?1a{-d_U9y^4xnZ%?};Kpp*G*|)1) zRs~Q_bHeG1IOsSyFn_49`Gr)H6lm6arl%7Dg>VQZbYmlS|Ln|QxU(!L{An!%7bj=2 z?hOUVwxY-e$;ODfAK}@kKG7OZZ?69dHY|BT&SB^i{(sa~1#%~qC4^`maSxHk6dMT+s zk{1Ir?PGUo{qQ9|9qZ0WOJ9gXEUoJiCfdiu&t+|KGv(t0zkh#vbT^o^9IRV3Vagi{ z2x2Y^&Of>qc>5O~`ThAnM+dK}Y67`A6ZjNEMqR7k7`}WNen-^H& z8#hz%1SbgD;?dBEZR2FAju8M_VP=_IM8iWqhHv_Cpod!A+Um`W1F861p`MyrheCUbE|=wbZLlKrJLL6tw@K?>;ZlsYwN@t3+xYyR#NW9g34^RpJnG7?MxILIhTN zZVj1ZHJWP0CnU`qHuDC{15QJ^1FRlhHSa1zg017`N?v@#_p31dTJ`V{;&1W@5k=E=8qmUeuvnW zpTw~1QM3n>`fu?Pg1yhwh2#E!LRndbwR$*^YTomp7IGo#mFQ$J_TxAMmgqQ8u@WPJ_J)1^aWUt%L@}2u2`Kgr(^uBcb&R6Kgn=3mtfG zSRQRsdO+7!mv=<3aSQ9tDWI1HIr*(2?uR<(yQYPf(T(S$Tjy>4aBAvzFU8i{`zx#q zERm<(Z? z&5s@!nrg{WNV?oiqeL>0k>UFI@e>A=;3+FBV;gqAXfGSuCodSA+l4^GNiWGgyEEkm z2FBO7Jlyx2>2G0Tu0?wy@L`Apo2VqH2iFD$GawGhv5u;|12L~Ql-2{c@kfh81|Je zfMnmiHzC0}hSLDq#npwc%^%36X45)?6W`N6*{KsRSGQlN!GSkQB08W}X4+KPI%lmSi z4Fh^{A2Mk-UYa7GMSKlilku|M`MKZ&zv=HEkh#yGN}mcb&j9iu(r1YKf3%l}19%=GfZYw_9Q%?m5b-Q@u#>j2p1 zcw=kpmI^H&!*RU(qP*kuL$oAdPT}xB)YFqE2P=0%thJkDHSBaJ zhkRT(VgBJp6Dh*(bKAkKkGkF*=3BsT>9{U2op-mIhQ`DM?%gbio_}6XugO*b=_a^e#%;wu!Q~`_?Jf?1D6jLI_f$%kWoAP^*2=+pvYkB{of%p#NmwzWuHsZ*W=F* z%F6AMRwb4-rd4U3-a|5313YU(lnNmULugd|PJ}=?o$z4=b|F(`MGJT{HNi^XU0_|0 z&MzYlf+FM5JtmQBRf)s>a=rMq=fICkPM_OgKRCjN}K zq{1KgB!j>B{rG`xo;BA@4L`=~fQ5*jvU~3z*OH!J2~r;lZD`-JPUf?{%RhO>?l|NC zV8&7jVW3oISY2)pUP?@r#^RqcIeYBt_|&lj z6Xxtt#k7&z!4rnuhRpaUw+~XhIzgY_! zans*ol|N%&4J*7=9R^NDk8kfi<$a}15!9*Iu+{~DI`?OW%84bVvg5&q{|KXPB( zpwSGWY6sFJDyllc@Flme;~NA$z(hxcARNySXkejbR1vlDcy;N=4~RsiBz?Kk9~r-L z0=8ZY$CKE%urUqSUu}gd(rN>!VhF2q{=Z74$4y?m zJ~kJp!E+1q;3%c#aGSe70l?G0gCbaLsFME*w&Qm;fjBbt1?sinbHZ zUg7OdOx*j4=fB9q!&6fM7|`3@!T$c@uXUf24Cd%OzO0J7nHn3r7WUd4NB~JyT{E** zkC~!-XZl^?qmA^h8`XWzBHo4`fB5k6oe>P!*i2d#0uLl}&oBTR5cFi{g485}nFc8c z4!*n(viS%xshdu#-F@L=0-z;DXty|=44);lBI~aLCm?uv_MYB%2;Yf3eFyJorN<%t z^yDP_c?Bod6PEfr5)e5PL7V^@2z{lm)l->$PYRL`Raq>FXC%cUtC0DB)8>JsS(_>X z7|Gb7A+pa1U=ES27tBA|V+DY~-wJXhOR@l6OB;QrI5OM&lXK1Jc6e*#!cK~9_dGDr z(Cl(DF%}{+AA$qAW%t~V{j42jm-$0B|Pn zRt5r_%1u}WfX3gEb5W>GWF}_hgFolS99|;g2YMD374RE00G0sDCoqe*ZKh=a zKqnk{6(HQh#y4I}&ktGLU0l!9h`F*9N|i)cjbH-GIe{&Jwm1n$%g+K#hxLbe4gjit z$LAn+H_a>qfl5XN z(8sir47~j1#Pl!O5wNA;Bm{T$dV{!iF~~NO02ssLH;nNf+!$lw=~NIh#eCQ=h|BA` zT~te(06+nb&`*I=>rD0ihB+wr<(0-#-2ret=uKyJG{&TH(tb4TQzRo0CEeKmr|>S3fHND1{oOGy)(~=I@yX&7sMa z!2)jkMovu-V0y!{FPV@Qq?MJ%Bq3Ftv+0qXXg`t6Jt#y`?H(Vk{0e-zCo?5Wvs>C6)&GaIE=|bSy$DJ^)%A?HvO2drQp% zwyQ~bf5n?saveMX=4Na1xi*P8vlJ3ft!E)rRs62{P$fAMbj_@cOrJ3jb-yQ6Ct z#KBa9JZ@TJaB8g2-ca8FP0-X-HH~=3EZd&dFg7P44Ahgso z)6dXsx&q+jnMO-6SaW~t)f0nJn}!QW7S>`v{!$mj0ZF~Pn9K-J>oO0JOodr8vI@Yk zi6%}_2G1)USz4C}vFzbingSLFimMUjU=+UMr2|8UNkLYP91N6C;cvT%9PT6WdHQa~ zse_bhYi}=cMFo#x4m||OVVv@g3*(S|EbZUu3!6uiJgCe>wq=oZacAXu`^5$w_S$zW zQ@X5@yS00Y>g`*+?0nqkYQ^N6xwb_!&0TksZdh;mA9{rc)LY+10w{X4ixwFm`5`c4 z0m>7I(1tjxVF4-D-cywTR6v#p)pUIeP_U$^Ate>GhHOY(bv0Ufxh>46HlXy*$B(Z% z%Krr_fVF`o#2Es*nux~|neFen77>&D8{a_~8&EY#uy4@O&~a0?(HR(F)d#&4-k z3#8?jQ`tstFt9O5>e~p-xJWg3cjHB7*fR9xd&z%i@|DH%EREkNAB+D6rintaWq<%6 zb~IH;kVXZMX_Z3`{gc-YmjW6O0V4uoNMN20xuzH*xdMuuqD{CV?Fm(TbY2$Q14tIs zjh+Q1BV!dPf}R_{xR3ta_W*wO2Fwh#e28NHks|(ORr42702_h;A}2cs06c=OWonAK zhVcPS#1d~mb%~II-|p^#6$fxaYisM_Wj8zIdnWa~rTeEw8dyGh_H~FobXfY@gHoOE zZBYl)Xx|i-R){I>2uG|@dDMGj)FB%+_cdb_m1N4ZKH-h}Ub4U(w<)tgS%Hezmty?k zqnLsm9S8+zh1$sn(@^xFx>Jdx;UMt=Y5*~%8%=~mEF~b?U&_dRVu~N%HP;Tl3ncBo zp;&T8OTZNz86DMcJESxI`0+DPKV{7+mJVP`OGwaCP*5oEY2-VuK}i<=EL2sswTn`s z4!FS8Y;==K=LtkEGk7IJuqr&sKf5_JyYPpUi6eh|2&I1$L=*sk!WTF855c-e7B>w@ z4mOdS?!pMd`al>Jn0WlvuYWK>>fA5YhSVW^e7=n?t7JVqK;y!*Ib<#(SliHx6Se-z zcEhzaCx_I|&d$)Nx#&~i&6xbFS1p2juAh%J3ywv_wu@wEL*3t87)jDH{aV>ZW>=iHHmtx> zXc3AqdH~bJ)~9qLh7De<&`{;iCQR=Zm&_;S@c)8Y4Vo0cm!ag#_8OagSY#8*2eZqT zaX*~9@>{F-%>c=+uTIVIB~2y9b#y}jZ(U|#p@nHet{3EIy!$y5;IX0tiX9%=c)pf@ zv$w6z_SW<;SsKtE+9xRKeY^D9+zdDn0&0PS$u%=Xf~BQZT<|jU($`jSZ&2Na*Qu{w z6OqX_RVf5^TfaSEIGjdq*-(dcIf2&G*3xQ~#3LawdPO0M75Qeg>eK2YU>e45cf2pM zCq=RFh`KVD7)*YTjgk`q72+@NR9O)D{E4yh=^$A|o%un%#-=8#}ZpFPAxlMEcfUz2`(f?cJ|&-iFoM{Xly0qRMAF$7KKLNWxAIFH=78Gr&XM#J8Ye zG@W2aC7H{~QOPA$f0^W>r+vcLxe`G3+lWE1!9NA<-SBFgg8hEV%}MdJt=GeRS51pb zkY8yx-d~bk#xsULT9f(_R$=yOrm-1zD~#^ZqX&jBm^HO*tF2yAoBrsdcDtl8HMLl# zt_a>58ym2IEMC#No{V4k&B9KFdqYH+kH0soHZna|t9la^vg$3_G_Pj=UCUI4MVhm+ zrHcj2+$~(!VD?(0`tdz{EE}DnhSCm z->_c1)?VQjOg&Bmoc{+gWnw}_Mcv0pU2ON+-Klk}irZ`qXn?uYNRT<1tU+zytz)l6 zFEfTtoW>7w;8)NucBb;Kgs|c~_ams$jJt^mCh%;yAb(CmG8;{F9h;nU0cX*n!}9av6CS#t8Sg)|=E?a=T#rjqcix-Hui}kV(}XXJNd2#iNq!)gu0cmzM_Q z*6fW{r?g2(0&dpw8oR$@t*owEX)f(9(rnp7+}+6I<3hv3Ta%AcXlM>E*qf3=+S;Bo z{AF5UYQ75%adA_fr_;@IIFH$YylV3H=jy=f&(DlQt8A(}N7C0-tE+w!wjEhqT z&y$u@9lLCuOHM`gHM`k6hVAvonSlY1e~3%53JO>?|ENp#T2z5s_W}@75RefDs+DHa zGCx6`oaE2W&6U(s;HbpL!(56E#m*&VhPD`Q{fZ6ASdbIIoTZFn_@LV9Rbla!m<{h?)c$DJfZ|C-aU;6>5KKbm45o zlf^Hrtb75o5LzLjJW(w>ldC2qOV_5@c%3h$&;rY(pMV9a>kfZj!e)T!p+uD7-S@Vr zxWX%~6>hXAw6I)N;Osi!O!opA^(h2ZwQ0_oEi9W=rl3Th-fH`&m3@K`wEki6@EzbL z_>sQ&BV!4jT8UG+K-(NP_yu;8m-w-^9Z6FUe*hYK04JK!IN|<0j3~VBEUEgacXm>6 zKB2l5dB~Zui6lR9b{EOBYn5Zro1_g!J36>QHGx`t6vI&Xa1lQsh_&%lV(IKeK_%Mg zDZAtJQ2|kKfV8%y^|sI_}zD5_YJ{XjAiHPqtp6H zXYl>k4VAeOo0>bHq~^q>gHBJYJ7%TJ4dfMFrlh~hsJ)<}p=C1|np1s9C`7l#^EJ4K zlyB`yyXxsd&R|5TCE0T+Kc)BYs{(1~t5$ZdP)Y2Wq`Psix2%U%mJqv)<`> z4ZS9x6M1)hPIG;5Ws!;lB^Ot4Q7LOoShlYfTG`lW9Oe^ujxH8@^7#R63xiAGX&pQ* z@~CQUd3jpotp7zuvwRY|_n-EoX@~J_t_5}G#>yR)G(t6jlZV(9;K}bHNO))y-8nlB>se)i z;-4kMj}CHb#$MS*=0CAK))-AF)9X zZkrR%Pc$wbT)p4Ey6j(t&F)!OuMRfE#g9hBN7FXmCQB}8e_I1PRM^ZmqatK|!1I-J zyg#c9jf?SpVDzoS374g=tmlu9-k-MzN!Pg5d)@5gi^>Gy${r^+UPw)qIHL4+zMywg z+&PYYaJjt)yW7^*G2{;0r+@GX`_Rb$BddUOlHGhwcog%2;dv6DRa{>pTS|!Qv73PF z8uK-bq%l2+d~67)RYA1|-|Wo8!wr9Re#_fw3m|!IV8BhuXZZyrX$2o@>n&1Tw&}~? zmU(a9Gc90W5Mw@Bo`{7F?f!f*Uf4)?XHAxTTmdNiug@gl5DQM+;u36;Rn#-Z%+trxU+q+|(caH20B^IJy+$-B_r|np@c`&}Z z$K0KGWMXEL(lAGbI3}uU4Km*p2+SW1Z!ZjIW+{EtL~gf$G&Uw`v3~gYG2+PVgEe6v zHIj%s4>u11{eBSyKjh2L3x1DAd9B%5<@teUp`i*yrm4HPHzl5%`)8MbH^H0?7o}QG7F`nE)i|@9kDoT=) z0>UT9HY1~xbeOCzvi;*o%uysC!b{ zD0Tt`Th!U=>Ud6lePUQxI0LW!qqg>+e3;zt;$Jd0U7*E)E2Nb%D!tzb&t|ZAT12Tt`+rVrVm zPVGA~{5>2J(g&*7%cpgs?Kh5>)EJALrq^6$XIqWM?#xa7iK6nQh6iogyeKoZ*TrZ3 zjqbupRE;=CgVXrS^X@L_RQtO}SmN^?J<&4t+`+ST($N|p)+=UwBJM8la2a`w>$pa} z3tLl!MXaV_?T^)@jm$YjDVCa(cS4}2&Pj}!#|aPP_}z2AsNGn2z;9hIA1v1rtlktu z@^f--n5ousc7TG)J zIqmPXm^cr+KHAb**L5xst#g;?$SQW9!QD-^fV)f<>!0*jT?0gEi8xN{`}0nDN%{5o9(&5OHo2<_|3toE9tRj@|C%ZblU`6 z?|RGK>piGn1>*_btHE_yOa*&K(gK7ncK{WF7c9CYFv1e5dE&;JDjeZxOa0qjHzj;{HLSRbXg? zD07qJVGDF2FYncb8|j4%-0Y;^xpd3{7PQlQ37r)+7d`jpe1A0qJgBVTF}+PUK~4Rt zyN#~!)3sIFJ!*@_A8FyzY*9lc88V||xvb9DsH2Is0+#07H#Bx12zxIE(BF}YO!+m6 zCipkU&cKGu`q1G=7I2p918UdU^RC!N*bn#bjpwDJnF$H8VWB;0Gq64T88__fju1ET z%DuVgOe)Obd*d2=b@ZgmI_KW=k&U8fu%3v-#Fsx*^1omDqC2gpNNspt?S<04KHtL^ zg~jCIiWtc?ytjwLigkv3PfSe)TQ06A?_Ky{eomk!ZkXt2@tq zu`^q_lU`HfbLWjO-aLnJc$6W2Z0BB9OEM3FKZVv=QXU{hL^!$VQsi8+!meFhR zcd1S;`b!G;FX3We=Vy1qvc^*%q`m*R47)vXMBihfgYNKNS@~&$D0TV)N#`E*{OdJ( z`=zC2Mt(-j#t@_g>irWW(b)n0PRN;-&B2~G{3I}(U(4P`aCX8zn2ha>Lh_z^o+tr* zQ99B4*JJHyM3F19P81uhM>clqdU}gQl$6f_wx3ctKgTo_cL#IM;YbTiF~lqyH8JNV zBldH%^rRCBd@VgkR+4=5wfp4 z)=jSb`kT~`x6I*(SCRPX~Z6#>z$y?v~2%kHUI7%qM~sX1Dt{VeX+;oF(+7Jxnz}wpgjnpYr-K7-F&hD3-mM#S3;Ig)h?%1fb@-y_ z>V5%|_MDVfD}RT{&BLwqa>GEqOqX>PiYwyEL&yUv zwoH$ayoGF`c{zx?$-9Hh)B_`g+X55u5APTRpK41t4{1(qT-?AS;rr=_y&?LWvRD2_jMkt11R_H&@A5fxo;%D1_zWdGe#_WU5$YcA3Ec z;BI;Qg$#mIt4t0aXuoBDwsr_Zg^sb1KUZw5+`He)mOwA>d}tA);8D82MkiJ!EE?Kn zeV&C6*DRoW7+M*U+;Y-+C;H5N-CRw^MOyuFzE-_rIyakM=TV!P25*<!r9Gr8X*HT4s z5&FjTICo=|cP=Bl^M#s?AO3qWH@x1&M2k2^bfnz`7>0s}{YllvXo=0p_GWs%nhgV! zh);{em#O$Z1*OqxqWHRRgjofr4J(}K?y-dOg5}%^nPXF}5fKeOONw`ubaWWXx$TEz zUB?-oFh@jv{FPbt&}fT6%tMgc`-X+4$yQa|W6Sb0WPGtx0hy*L!2N=%{LNU%MAv={ zgZh4#84;=I<+39#oGAgmOWnX0OATnnp(myAO^ch*hJ$i8>0f*BE&L6@W^!lXpLA|L zF4t*%9?hncf-h>xCVaTQe7N*7iRcJ=exP)GTDv!>(g;Hf-Ml)bOm*IENF=;-=M@?s zo5tZjZOCBmo1SN%j{Mk!QqximOwjuXFTP`2-rcKvhHca{V++l{qwZl7g(o`dP?N37 z>2)q{)E>A|=Flwka{t~I3Q~c6Uojyj@(dPTq5uIHZ28YTA(i4U3-M5^sANiC5G)ve zKJNB@0K85&HZ`)c%TwpB?iC;0Ar!|{Gl?j5#cWFtuKP&UUs<5Z7+qfNm{eytYVDY7 z4fkvad9|K)ow4!C*h01f$!>86~EZt(Ggc*it?vF9L_4u0X zg48!r7%`O(yfc5ju!Ozixn&8}A7}*L_;@n6EGdH#wZ|`gAJsutfmF-+s*G7?Nz`O5 zT6b+*^?^kw^-k-Z1$WqP;~=%`b->{gx!cOO@wJ;Q_w(Q<7t0o|@gfJsR~x6Zl>}`4 z$Mx_h{OWzshrNq#m1t36@+ZbDP%Il=pf3DmVNtE1ym#0$N>EXSgv z?&4J8E6hZFLd9W7eKOw@_-*9Iq*gkf{m8XYR2X!eYB1xnwY44UQZh1NX&D(=lvkdl zB(^;{IbM<}>+4;D9U4e>qmPmca++yonbdI$m26a!&I>RtO z3u;v&t>{e+!NRhUF*h=5)f>fSfHaD@`Pw~r>M@* zl`rEcyl&#OEhd*kF48)o@(ClHLw>U~qN`PVO?p#xCX}mdD+8Y1ekOov{i$E8mXU`w zD(Q0c=!uaW(yZGwYi!TaAq|Z4GDC)>>rOlG_G3ra#b zownPFt$LlM2#ZEVOfaSBOYZWMOwtABUH;|z`g#fN?8%9VSK}5l-}%9wq`9>0m{T@c zt@hIIiUjGn%($o{T zi3*t)z}&DM4*N{dogw`|Uhu@{^XnJX(LPExN>sCTp|6C6VK2U(1$CKlEiu~PC`-Qx zwktdK4-rEBYYj!#^h5MdDMbIIpd&!8tIYB%Xta;|&>w*tx==hE#%SN6_*I5lWA0Gj zMPBG4FmJrKBaZHHW7udz!~KwZ@*r9G5Ib}hwnTO}9L(gbHG4^dIpz70NiK(KaRS`3 zQ-=>@sH0)|@@}slP1o((DZWF_*D95Mlt2+rZ3gR-r;fC(-J5X57Cvj~K|xNaY>TA} zfghU0x*UCW+Zbv)zL>wl$&h_XspN4aI|EI2k4bx;*t%&`LPRfcu6ylok{>>Vt)xh;D}e=_YKvmek1bWzjSHi%XfXh(SBhso1bK#$ z>y~BKN)4Gt+xuy4h@Fn=l+We z&|<5N_3im-3T;Q{@>=x`PtDctY)O8!j$`8aYVdRD*PM#X;ITp-mc6amIG*QGS1*!9 zg5Kt-N-r)hmLzm}qWBriHNHO(pDMRuqTJLG_knf`HRfmMr5Yu>`k!vkvK@@)sfppw zxEIz1cqXq=$a);9PZidkqVG7`i<(VWyyR?mWHm>O!R68Mxd__>$BkAXs(L|vK`Ak) zP`AA(V=Y{4vaCMoci`fH*DoV->_caB`<-K~7dS@?_uPu=_+n zK)@g;0vuA+MGg(3PKHpKwyfJZ`~EC-LaoA|BS|Ekt1>IM^4J<385yDt5uw?lJ(N)w zg;)1?#_yDi5G<%aq}QRiwZA}V173=KLEvOMM~LdM?;rsJDcjem4)ERMs+keX6fZJq zi_XUMzOK}f>R5e|whehNl?Yv=J{#L4qpK*XMFT;e0v#Ep%yjAQbo&Bo@jBRj`mA4x zf*Mg=E0=Y4yp^k~ugPnCyv#TTb~z#JW@0s zS6hZAIq%Zt=GDAJyQsEKYpVR1CYgM{$?WxKNF`EF;UK6-`lJOml6i9M@LhrhxvohI4DeynLH(&mh+k5D1;N6pLr|6- zJKDL!CBHg=oaf8*@|m^X!Ol^u_UNM8SBSK=i*l;fl8ys|NUycTJ=f2!xE~cFxosY+ zb%6{|b{6F{k3R1H{75tCAaYd5GyH=3zt>I*w13T1tKN^A9L=^%m{y;-yDb()TOHAQ zs1(kAGA9)?JfWb?My-$6!PO}Jr6KS)~3p6Xb>A~4nDXu>5{ZUeKMFwx zJ)9VnffmfR9r&q`@oAf9hYn6Ft70z2&7?exj9n-_UB&~=gbZXv^hP*{j%WXO#{+Ll z5Iu0u|9+FVl$h{f|Ke$ z`v4eY9k)Y$?|48uvMr?{VE*I3+PUAf!(}stjQC)*Q-u1J%Un(!#IPxAdAO)mT;|5B zfe>&>b8u~4@Mk|XBq{>C8!>QMc8NdX?O&I@-^77_eCw&lR`HVnR3vlB7ljnanjsmH zAU=G{urcBZ#<(#Z7HSo-bavWvaBuXNw=Btv?l&d2dO`4S3EtXo()9t~!2-2(8~l*= zftZIr&iZW+$hf}AT@ZZ+e$(bh1e{Ev_nY!x59NTkv~^IL=$0i@#A~Sl#50Ed>lq0a zJev_0`%~pqQqQ~~9rp%kA)pe5m>PIlfCl5XDq`c*~MY+-VgIJLY_F zClDWJf%q6tib(Yon6_o0@uu%%g8BU}YLyM>Lr8iU zNL2Uoz{NB{bMt|j+Ugl7W+0LF+#*R0C6yAYLpf{WFdA$m#ji;jS}*ZVTQ6S+#|e0b&jQI?_a#=tnxTLxqWhS zqF`)%>tN!exp_)@`ZFwS?C`2t)@ayt#7KmvyZ-H=*;(0xgM;O{hT%SEp_y^RrH0SG zzKYV)oX!4<9Iee0+1wcnLh6t}e54a)O+k zgrCsSy>wW-!v_lFslP={iY(-iM+3IZah0fGewahd54cEjoZ|&KIkX`i5?qGwU#rF( z@ssw?*Vfb+;Pu<+{uoD{>9faeb~iUQrElnyU#tG~?AZW1D!ibqtSoGLCo?;nLHgCJ z@B90fY^mqZq9P-Gu*a+dF_NB* zjgKqI$>FuNwFS`*t(b$(Yy(3ygmna9Z3(!+_{=6tp0llA@e%6q3EliGG@csCDKi-s z5U_9fjCFVfCX@>cGgnuXM7D;frsH|3V`FbGYu(R9To3TwL#z!AvHf}HrzGHq7NV(p zu4fj;ecLV@HQsYt`Xtz5f4T3w{Daz>`aL$-SqthDNhYuez zH-?80;atSwp|x2DX+9Dd^bv?bfAPi#V&B&{L5LW_7KE5!UV3GxOLT z`qA>{{7hx<1%Aj+WLPy+Clh2p2C>;1q(Pn*4M_yc^1TO!^+UW6#H#hDSAylM!8E$2 zMxeXDKWlw`eZkx%%nTQFUo8u?}7p}lkb+(xR-&_f~jwF~}e8_sh3o2|s2qed&z z@r{j*NKTz7-f`e#nNBMeGQ8A=ZER>)QMPRAGpB976;hS6nPQGe`@@0ovM|bL)4L|m|4K!e*K+qmwGBuj4i-;FM4jn<{n}eLa^E^SE$)>%GGXI;5QW=*YH&R)b%zJop8+cFgolFdy%7srf?>J8D(W9xdn@y zP0nX#B|Ca1Ii8|9x*X0q?|w&Qt%0f7UQz9&pcc!HUhpcB^rvepC8XV#-}@f4^)Gf7tmndj)jGzpN0og^`P7Y=4f@Jr@R@B&lUAQZ{9%H8;>`m54(l( z60EKkS`=(fy_&N_#tJ0L`e8O)-r3p~71Scjs~Y2gvP0oy-Xp8;0DzuV05xX!G|^Yb zojT_y_ht9lAN2dyy@DJi-FFN_$F?}xAC@AxRM11o61g=01uqC^>e(tNvoUhvbgCBeW>z*Fk z9d?B8mV{DJgnzx)ao*~My(W9QL91_Ssz$*uQhK)6I_T?Ytn*~9(J2u@8GOY1Kj*=R z9p@)x++V3g{(d43Ry_cYu=hPc7A$qwFXPz%E?4>sXrlQ-#O$?+A+9D#Y^nsbY=japv#{qa7c+p6# z;OTD=UO)9lGjeyXyt-P|64fj3(=HQ+Ik~_HC8wn+w4cms>vx@Mii2dNig$CHo*r$!YKcU#sH(1Q>W)G@LaxSaUCXcGy*x&+W=Nu9}-u z!RP2Rq6X5RQGj-z&S{)TsriyPer^ze4d4|QSLQfv2l~@C0S%PZXP^i)Z^z&ATkAR* z=c|IR_71Mv|pTcsEO}b=gPsjW`CqpNq^k2SzF)%`J9*;2H zYeQ=F|MWkP@l^B&!y6(15NFzb(=}u0mz!G+z{GdaY{$-lQ$m>FG8tI3UOwcyVNsr} zZ|-i}iI#WoXhc%!CMw0X<-Fll%?;0Qaxe#kDn69aSKU;sS@ZromX$`6#^$-Gvr4a2ip zfV0?KkoDcPH^+XMmsqaY1Awe?T&H&z38r|^V57V=w-hnRpxz@f4F^uIj~Ib0(3t2b z^s#JPTit8COhys<7<bKaGOBfl%Cd^BI3ocgWI1gc1hcK-_C z1-JV98Lk2$s`u{S0~U~3g`~Z{5(fh6Xv3=tfhSFw<@nRVpN3fbt(^nGapYM@n39g# z`q$)4KkiT!j@af^2;i|hiZ;zf&hTgKLCdn=+X4`-D5|x1xidj9g`H3PL5fMhK8>9Uq{-90@v})lH57YQ=Smh zY)k7jQ=XL4Ckz7F+Iz58Z8NP5K!Acii((KO)a5%_@GX^D?kDo@Jr=lR?4~Q>@p$J{ z33b;IU1Ui9$9=K~{Mic4&5~?TI2BQLl9R;!aAt+4Ph|wm8!VSjpIPVwDgP(3zvXsMsJWTE zOJ1LI6gwSk$E0@Ss`6wsE>29~@hU7>w~c+Bj52>9ZJW^3mgSqhJ!`aB z{8B>iY!e`<s-S` z=!rbB@rFXMG?$>fW%_N=4)0c>c9fKuxVWyHI-lcQiw+kid!cjtMy`x^<}MU1J}{8^ zL>_;j%_}LHK||9Pr;f6eaU7sCdar~Q*kxzFZbqD4j4O%R-ar^E#yh-+lDMty-I^kp zmPQ)>=gOwY04T)%RZxAuxwNnYDmz_K_&KisRD@C7|LId6K|49kJhZfhpuM3voQIqz zn>;sFJk;3Oq`amebGONl0Z{u)F0=RAqI-@Wxml+U`B5>;DI*N3000cwrgn?-vp~Ff zYE%%HCL`&Os)N>sxs7-)j-p@O8iz2Wr{?y&r_t{{^sJSy00dhUX5AYDZFaK-2&y(5 zs>*6s(d=5NXaCN@^Yv(V<9gR-j=}v_KQFl;IJ*_36X|yW}#Ry+jKD zW|NH2AF%-{Z#_T#m~)*ns>tX|y9%|AUEwZ?jWcd3{6f?Gv=g~D-qmn?5NpO80m4Heab*n@q|R~Q8ud4llY2#`m;qM|lq zo1!+GqIq}{5)9AS{SIQ;JK;T-Wd!)2hzGo$BK0x(jZ5s!dHpMiN}ze+XNn7@9Dy|D znd+O7s{Eg#o7+`%TtrpoU2?O~tuC=F(oX=Zo&+nUO0!n2J!q{#Ds^;BREm7@>v65qIbjqI3xc25)MEZ(EkhM zf~j(dbo7qW5@`bZ@1ped%5?gX}yit6dAP=_u9me61?DBUy+XIhgu~(z#VF{ zV)xq~v9kvsGfODO$sW_4FTwGuzj6JIFo8HtRMxa4-`O&dWWaHSRnJ{r+5Ap?^Kc;mPk4T8Bd3a9zjZix zqtiCYYvaerD%gUbhLzaiU zzEY(=9%qxpt~?IBx|e8?=o+UI zrZ}}0<+?GRC;x;w=au`}PUCY!Tb`Xc&*!NW^K~u)ZLK!)Ke`nsGsXC<;1W-< zXyiorUVEBgvROed%f+SI{u2&ER#j@V87t!XqNO(!7@~I;IJsbb}L|6joSze_mutjjQ)KH}_9x)&{3p9v3fF zhRUQY(Io%#p1DVyVlUR@_IkbKaZk@^xkvkkg8}th4T+lW#Ekmn%q$mBM;reGJQGs} zau?Z(K7#2tmnRi~#f4jZB5C?knD`*_BB#Z8F#Os6exGG#<_Wc$8vN<~`)`0Cq;2h8 zPCa7l+&s_LigoF}ET4`W-uwKCD78In5J(Ifj#GA3CX3n(>rpnE0Ib5XH7xfAujIb2 znc3OdNs3O)n9ZoO>}TueS>8!DgDL{jp-f9TbdLPwE!8Zw-&ISi!QpHN$U2jg>5Sw!f&SDfr0>o&c%lL- zV_ajI|3`k0RS4cmi(Xu0F@}2G-+_6QlG(uwH~#!75HJz%yAzH(VU})qZmGy|zO{)& zDCLlnc8Tg$#Kr;=a-+EF`r?#Mb~eRDZjOz%rmIBrTM3V40|4ykI}`0cb7kPd>aQ{# zIJs~lXAP&c`X+cfk4A&rK%Pv;oTg;w&02!_X+=kKM|dk1jcX{|;BQ0k${9IXzBCi$ zkp~tTsKUsNq84!00pt#Iu4rc3?a}C2H)5z`61UY8r9JT>(?_02uB}E39oMF>zmRD^)!N61@ z?Bq9`TKrtyEZPW>QOl?fUeQg{F>LbO zajKXYpxSjoESDyD67UZ`UQ8Np3HMIyB-m*`w)epcOn2#s(mb0C( z;<}0JUc=DQt`~Ao0`2b>_cIb-=B~{DA$Psh(=c7W55C`F1)G~x%^7AWD?gRpvVD-s z9IYu>w01a5m-Hy@X;+2nRBo;r^#)YAQ3xAiZaTXC68!ty%ObG=2!g*#GAJZ3HCx)| z{e|iL-0}LbvG?A{pIIzhX$}N;W)Z!d6Lq3%Yn#q7V~CA*r+ibK^O9L>=8ajUQ<`Nm z+ym*D=u&kAs4)J9uC{+RB>Hj5lUM?%>Y*lEHOavLl3G@iL{@p?)-h(m+vZo0j`FnjBKn01ac_qeBQCAV-x9q`yX0I)Z<@`qysz&QF zZ%YUQR^Tiq=zl$`0a?*Mk81V6L6)PV2(rDM&BXSwFeTp~ja`;h;66E#Yx~jBhxhj( zMA_ya`e)~RB&E$S4g#`6J~TraOmxO2jhw8uewMrMoO=9j@}~s;=Hj%=Mk>G&B!&MU z;(L#;Ik%ay>E0vTKi#}I-IFgt|0qsQPk$V68UWKmQy@P(USnK($HV;!_=zQE*Z-Jf z0443^K@lzr<}3s5Yip>0B!~0yA8(%x8~M^fg8{2y^eBF$6oBdm-_$J+#{)YVpvx%@ z{a;*WYr#O2M6!~qf7)=qBrh&W%)gNrl-vY_u{z7i0G6-kdOY_eaL#7Ej`Z@)$nQ7g zbT;$ZbpWyObl8ZA%-LpsY=H5SZ;tepM~0b79|%C~MFux6IV?4xYT!$D z-vTH%=Qi~4^ z@9gY2wd2AkN{WEUS;nhJ=B%e!`0};tOMQLC(9qE2`1mE6F%EElVzf}fQ=o|C;~Si4 z%314EUhw;mTnk~60&t?=_>L6=9`4I0`v2~Nz1F=3uo_M+&wWCHEU)Ba8ClEulp`HI zqul@<(L5bBfJ`c;8b1v*>9i~dSTjzIl9YQLn$$+0fm=tORIKLc=;)5axcsiMiYh)W zBO!W8{;0t{v9vUeX4OL3VPeNsPo*@fq@+hDJ+%AUmpMwswndm6z>XB=no()0s&-Ny zJ$@|S9YR3$@U?>1KSSNWlnZ~Q#1`s`NxFg4zd(^VCrA5I)ECf3BMTIuW(qWWiAkDx z*#M;eBY!?U#4|Oa+)1l$G`Xk9hNDvHq7)VvekDs`Y5Ds3oPdd9x7A zZ?F)nIUKB*7Y&BvYYD2#$~fYB*|#T5X63GX;Zg122E$H@wyVxrHvX>lgveiR;erAWyaqqmgR;>&q7u_ah@> zZ{MtgxWH!-EXh>)iq+%6_EEKWcejpjuZ4J@rI+;)ewV56vnBhX7#i1np3Y-&;ZvT} zD1UEE;q+{8XX4p8Ypbk|yL)$F$MW&3h28rfwIxO*!n8>K1i}a(*Ht}AXOTI^8-C8@>_c? zd2#mbcszIxd3@Pf_3mAQMJ|w&3{5ix6dgkYmc<+PfKETYpf-?KQ$S%o5@p+tZ#8Av zI#^g^%$MDR$7879(6O+HKg16;$XB%G2S6{neyfD&c{QDIT}Qh$`&gd81fWP;6MNBO zK!7gXk5E|AyTCL3rV?WP)86Pe8lUyJ6P&!`##+GE>%_{)s7!qhB$uN*;VG@y&D1A^ zcNnRasj1Ci6N~NhH}kgl58USLSgDm+;?zmJe0-#S^l~T6O^Q0lGPMTyt?j^Sdh| zkb6J$`scCkZppiq(rHCyBZ}!v#?; zQ{7vN2NEs?XWKB&=N}}l06XdGU&;D^+DU+trH_D$`KB8GeLq*{$IowzbchYK)hwJ* z6N*|xz*oeh2=UQ%eyK^Y>neh*ck=osMS0}2>-G|^qrUH;)jt^?)({}0p|}sTbgZoM zWAf(Bo);g(8bQ`gar$!U%l&iA4FO@-UC|i!dQcB&4rVSXY+j3x(~*1X+t{lB`T|y4 z-v+39#n+T_gb(pMXsVm-w+BJ~60H;IL8GhSB@7KfK6KEMbz%31sVu^T;zolo=ZsS@ zSM%d_!#UR9av@K}w8aDn8WMns1!ts9Am6D*KkJS&(7TI1rn&St zgR9e+B%x2#NJ*P zSl;v}Pr#lR=>ouQ!Odl*P)W=ALvV9$S75?jGyJfHV~B&F(0~P@nUN7E^0ohiAo(6w z{Mk3mIntRmZh4M1davvpECriAR^dg$vnV(jY_TXSVi1||GBF_~aK8Q}aRNA{y{3Pn zG-x2v|9f%u7sY7;sAvQ_Bnzk0UBaJO#t=*qH1_mY0Jt%T-Lmbj(D%BLcNLk2!~jGJ zK*<1p4m5@QpBx$gN#;rUHJdv9r+py2;%gzQX1fl8Ws4+ZZAnEvlgKh@B_o=jef-z& zwA23u#a$}6{^xxBQ8odIgmS1J@QwbVh5NfOPSPIG>PBZJy#)THO!87-9?fJd$^NjM zwCR=Q&87DdlvDqzY5vN@fs+uRkN#W29Y9wCoZEm>$zukq@&urv{w^*0Z~f7~)Ib(> zioo(-ii`gK8ULTr1C7Y@04r;KnFRbdzxw|s&C5&yp$5g+oBHubLNHympLV)x>v8N+Lol-1p|0Mu4O%~#FA_uxT6 zXXjJ3XV08jY!e$TReKn8fRS>^DJe?%`T0rNAJGd)RZBlVS;X4fb5ql7^y4Hbz*3A5 zTq=wHD-h-cxpUf}CTDS48SWh^0G{dqozn;;;<=Ys`agixz<)9_>?%NW$3My9{{pKJ zq{`hPWcHx6t5<6xQ3+k%I;X@vnq4>to>dbSDN%p9W5^1WHC;C@brL|S@E)%NR5*XN z5CG5ofARb6r*W*3YIk30Ds@Xg3mp0gMOOf$!?e+$3yQ%u*04?%N?n@0Bb}KUXL{t z)5xkj;>Y?sfE--5%D1<*Rd5MmjSAg11rgO zYS%0DcHYH-C@KZ-#tQ8sLsC6ohf z_h;~8(c$JKudpz+BGI#so%fUV_6EFCQkf#6wM0#vA=X3yFKm+AK0)Neo*~NYi)Cf`DRF0 zY}_mWLtkHz_ov=onvgy}-v$}tAzrwB8tg~xWmN6BPW>4 zR%j9ShZXF*)PJXa2mLi~>>*55;`D%ZBKIV&H#`U)f6iX8XvU%tb`CaSg zs!F%6UPRs##=R_VTIux8$*BZ`@yg&^1$v)kY~IY=y|@I9+`=mPq(M})1r{m@OgE>ucprBeCs{~iv0!4c`kH|o zMHQ6k=0{z@v`y57l3z{WA1c8NJ3J!$^&i?mf5hFAY3+Dl(V?rN14abb>!{u|)4c8L z<4CX|K3{dUlZx-s%3hM%I<~sd7*LsQ9~rsvp!vB5DYllk;X);(RStU5gOAbQZ46L2 z9X$iRY&O3bJ`N~yRk+oBae!tCAkGWA{(kj<5f1oPRei3wS)QJoFn(e2TEf2vZ!{xs z5!P}T@XS{p|MEBvdt##+=LHE*uEnto#h>`8cwHYXOa7y6(HwB0(Nm>*7IrEHIH(m3 zRcJ&;AtHwN&rjr*g}s1Ld%`pFaN2uet4tf`XlWQ8l0N_V;*_*-nKAfHuYtvd=|VQ4 ze@cmlYGLwEePY(L-sy@9YlK2i)de11KDLIL<(pn;hr!HRjNFopO^kU!Lhv(pm9jUu zBe>7qBh2X@yy+z1&-v;ePhNWrXg|7FWnkyf{CLz?;m64rOWzA`+{qzLR7q4ZgYB=+ zV%;D~uZin`ziK(#?^7}j4#M37ud<4Y=z>BE+ux7;scwjL5KB&g7c02@rL2^Du17{j z-dHQ)^83?pEdIHyNo%r1i$Uk3_7a(wOg5pJAd!r;^i^a+M}BJG(UC{u^VFmy72$Dq z`3SltL5g{CIuFQ9$y{d@7AHHjONHWRgq8B!h(ii?Z?>ZRMt z!MzwPoO4?r`tIp_w<`$jK+nK1d3v?fHQ2l~+Atse)v8ZDNN&6P2dTY(z335CgClDme$BO&Gr}m|Ih*ebj38SgPq9Dbax`?m)5M~9eFhd zL9_d*5!)|?N&!{>a}pMn>l!S1X%z7&^LeCcB@#F4-ja=Y}qtGYNj^g z52Q+GL)i^~y)gpb{AbO{o#%m++SJY6KYvQ5 z8pMr!rG@VYv9X<+r_Zu}Ok>^L-7QH?ed(>i&nx+636XWTs<=6&2^MkzAv?7IF=7DET2Y3}FrGC#DAV?h_-`LvPrI9;0 za4D==O3OR&l$LrB$;QqeV&N;@{&1LGAtFxO;duhN^-)<-hBCL!S%*bZ2xzU&J5nh?TwA(>Yj`+h|KTbzt0#L$rIqkO-(c8-mw7J zj^0sv)k?wza7&WqV7c!|vRv(b?+7Fj1iy4-O}nzXcH)R>o|8r{l}<)`m_k_sOj@&( zXlPcr*P7?HZlf5MhEhlOaLZWI057wtsj2&Wz7cUzDcC<9zK>2p9PJdZ1dZ6D0vLSO z79Qq^2(2sCVrGd9Siub`2&4YxNz3;T6IYrn^7eV8T-`y6pGSCN2M*#=F zZCA}J5vGg6qv}DNTs>JZm3JRLF*h)=lRL8%LKa`=!kW!IL2*0cMpqsQ2aU3`kFG)- zu&-ET@ZOum_*`ch{C+)iUKVsZPys1Nn^Nrp*cCN-%54&_Wjs%*>L1 zeh2r8=h*{#Z60wh>m_6D5p{^b;*=oL2XCfPw|(o&YPWeHl_}i4H6-SMv&gk_V+GrC z0(H2Xg-7On+<(Y8`6_3Dc=tmU^DL)#T38N*m2AJ?b0{FmSH=#oCCIO(zQcVL`EV$1O?!1hMtv%qLBk}AoZSa`wy{%@*bymFHN@0!9vBwn)#ej z*NXqlV|4)o2Hwu_;+}~gXkJOXx6rnEo(>C()v`)h5Fq-<&#L#RVevgZEY~-Bp#YRo z2%{5sCUwXh~rO--<0(d`FHiH??83GgW@J`GdOI7G*}f3LXvMxNR{ zbxEiLTTpuVmhpxD%gH~p-jAf^<1$T*H=k}=Va;Lp)Ks;KIst#s8MWoO2sTer>0?V+USr?QWIyl|9P@`KG4XV8%cqaVOG;Sx#WOB^kSl&y@+n z{p$WgCVXtTC z25IHWaX$^}`FJx8&>>v7KlV^fJMRJVMcSM|Z)hA<04BTXle0J{H@7B7G-~0I zU{I&)*+j}0)T^NZjT5|9$N?qco_hQZR#~MT=A1geL8*jU2yx0ZB{J(9;F~&L%!f!$ zN>Un3<1g9(RMo-@M~q6tLx3g7cBdfZnChYpR;NM6?APFlwulvV&yE`dk8A*4ckA+P)jqY=@Eb|UK*7Toa6Aw1BG zbhk43U>K7rferG4Z zc*JZaAz&5w{(e7j-nHfTBMu{cO=NvswF{h;r9s-R$U0J2CH#@pYX0NZxm!*a)r zjK(h5A~|k`hv|&oXKDAoM0HmE7p5jlExd z^Bq#JCr=1pO#d9OUbW$n7I0L1;J5&N=~Uz;1Qi+&Qs_mzU8iMjR;f{r6f!Mu*eya%j;Q-Dw;)GoVyYK|YW$l~6_XN0m^`uD&T0=1LbvG}>ThzA{5<{OaJ z#3U&UbO_~(tqD#1w(RP?_B1a^rqZnH6Fp!Nv}dMn&u68P$JOq^-<-xTn4Gl@^ovcd zkfQr0=lF=iIB(lf*W7(=H%QbWAB8*jEIRVFq+2?Q8SX5pu8w&7_ASu-?D6yG3>zDt zw0+q8L*!a4;8w8KCurG> z+@fN-P-hq}&CHZ)u7L0ne(aT}x^D|i!TW}bp8K~iEknObH;&bn>#gl&Q;&$` zC^jIf9`5u(_lTjiMCIhs7zh~t=H1?(B9jJi0nljK@_yKt zHmDX!#UgiKmAbjvNaSL@8L^@in&=J;M!Jur&FwWTDu*E%f&L&e-*IAFrnPR8YY?CtA6PR>R$}h3Q zb?LJWysuMI)RhsAg&I4`w%U{UXXJ8rsEEBCPpUpD`bGmvWY=GpG`U6@rA zfBF8Ci|fM#arFIt832fJamUfPJrjkh31z*Acb*c7`n}2>WxLt}c(kq@Ue9$83rX~J z^+06yWsiM(?z8%}Em>Mrol6zB`aP*2;`P$6;~m@YZlFNzFhr7+Ib5HN3fUPJo%i~Yt-d2OA; z0i^kM`m-d>LINbkbL;*LFfvj|Rs5y$sXkT>I51=)b|Bt3)F1Wjplva*voK=fQIHMDrfrJ;o0h3`O=;pEjJk+@)r z z(nWh7;V$}}r^9A6SN7W>!C=7Rg(ee5*{;blA(IEZeZR*`QGvRR7wj3WnO* z2sW@vz1*i>evlmt_Np{)R?HR8asZBCDhi5HCxga$_a*y~m~DdraN*qQ@Yq_Z5|z5h zQ?}uB;a4JWC3Qk*nGJoIW&MpS6)>{O5Oh*r66R7 zI~Sngv{hl=`gUSr9*7YB-puBu&bs}}?A!>S_lU?JD3W5Kv!=?*+}J!R6-iN>K8&DX zn+647K|fsmyTwP!V;y=|$iLI$XrNd(Jn07;dm+b@NaT1D_R8gRHz6zY61z?$|EhmF zkiP>f16kU4+1l7h%(}*xCX~oz9UhmHYEPZIgcE#}8;-7DsNbe{U$LYH-1Qmk2FZOP z!3FvGsv}}Jx`%lu+;hG1#M!-^aK+W?oYZv>N!;=_lYeG-01sA``#nQirD@?dU^JGQ zkmlszXvZXRp^=xXya)4qmO7A=lC~gUlEmeB3?ji;o>`x-pD++XvU`_`rx){Q(s`(t z_`yb34&qKC^pI;RRwn``;TmBq0Vr={=(p#)cWZ_ueg4#0Cf3e8Q`gK-;k(tJhZSVA z$@9m+=D52}a#eiDx!_;@Q5k8rlTx>qL^*x4xMfNsBR7XK-e&wkYZ9-rhssbRdgCxo zN591emDYhi)uC6gu}dd{9g`_NGp(tRfg4AZlL=DoE_)%yzuTEU@YLjbHXa4hNiHYteDTB z-5NQ3CiHzxb!oGJhI$EizO%i}3CsAgn!uWd=$A;trUoxlaHqD=)Bkd1xR9}FMGVvB z54w6@e7A5F{jhzID3{GFr;{p%is?@<`_NCTm|7__zV6@ytL|VxLzZX9e)0=3TQ{$? z>ikf@y)*0k@zzit9|Hz*5U@7Go4_yAzg8TZD)fqD^#r0?ZmIWYzCnlUfEFP-ac2p~ zjG%aL#vM;85#=;;4cQ_i2lugIm34+Qv(?40-df*-ddAB*Q7zQC(K1WEH|E;lua@8v z8vX&g$^GsY7YRlY`x1I_Y{5q1yr--G)qSH+mHMZ>fepB=0 zaLaBWZih95Wz<99iXsW*` zR##UPOI#DL!u63^q;m}wN!*xdqac2$ms!u?1aRj{@v%8Fe7%tts3e2!X~8tFq$AM@ z^@kbUZWckq5!Yn$%F6BIvnU|!AJPPtBy$fuU5XAywI6SLbl@GBkc*L_rJU-_bH0g*2?w$;T>P4LFytQdtK;TFqY*a8W_vEg9)r;c?~c# zTJ#Q7dEvAWP<+BdL_&5`D(LaXO{ocz;^2Gt%3klWPQU;0!KaGNbth7vS1oBVYXp_t>Nm;1`vQPwdbV&F~}dg&h~ z$FrZ!<3Jn(7po^r%DuLNqkNU*Tm}T-*%o!DQ`GNu8LQF7U>yoLWO*{y*X~P*ok1{y7IG}msG&b6x*fnBxb}4UxprxQxZ;#I`*r}GWsYp z&CtQ8Dm*~+QGU(6cI@kSR+4M49j-kQG`P0p&M(TQlCKekGVhc>N z&~l2kWT@F+4oRhDQ!aQ;uu3K17RWoKtf(A8oF>2Y>+`AVI>?Qe33QDvyqtF+e43xT zX?=~S1qO^r3Q=ykKN7BVpH1YBpr968ca0qn`*WHkUB&pd1qiAD9iwFZ`usO((l`{t z`{A}utzWO1i?ws7rPkdl&cN1YNp_xxkMD*;dD+#ssF;(k=+kxdheazrgtyRo*#A=8 zG5&Rp)ERYzLd9d!d!D3`?5~#Iyv4`~YSD=4azfkVg1oRtB>PLLn%zO(OC36o$SU~q z;PN1+6!=FGD;X;qtw#C)gUD-3vMrv;0iyOfY(KHz$TBqEZ~jzzYv;qTOGb*Dru}wU_){ZNrm%A z?(uFX69fL~!1S8SD9X!IMIL)<46KQFth?9J>zTuxCX9L@LSF*;wkpc9A zY8>ShBHGz0lT68&|m`xdcty zg_w=fb!|RBuF@rUFdMMX8%4a+Q1-6_DJb;E?88zCMt+G`5ZhIL(T~tk6O?d0EIJ%6 ze;MP}@j>HVPu#?_&a4DF*XEk|FM^EIeOc+y=En!w_1MaVs~pC4cB>ssjJZa#NFO4J zR|imQJzc@b$t=F2CXrH)!4gy!H}+Tr*^tbXS;FKD?b+l4ZQg;}X>>6f4Egw^8w3LZzQPCf%PavZd+3TB(d@$+JW+FH!Xgx%o5PPnCZRi5{fgB(u`_(He}? zHEnZBvh>%xi=?`__tDKro>^kZb!R@m-iROF4y+>UJMk@NH;K-%lSf6D8HrJS561`9h?DCviOGyK;tmjtHu2z5!TAe*Z*0UB!*{I3A^%9N!xs zX_IF|+@FsbjoJ^rCV|S#7kib?rK%%v=jTQJwy$3^>wkW3R?}@HBj$8F5QP}bOmX&= zCCuKnx)lKJ?j3Jc;zja|`$e+0j@m1(~^8LewOg`|Ijzx>^#!NLH-7m#ALm z5#5icT1&hGztO&u!bU4UwX$y{aLy0k0VR{sFOpd+5-RcI!$eRau`ZQF0|Nt3YPo_E zmrZ_Ot|lE#e>mu>;r8x=r{UJyJ2&6HU0o|7M*sA-SO5qFr*TD%d$&?kb+1OT2f*J@ zS7Cgg8#e;KRx!zAT&yX>D(=9^N1aR-bmq;d;2TC#wvsx_?>1&A$WgMLcd`KE`)uZfjGPz@ zMzQ||GDbowTLT&SMKFVw1=4@-#qY`kd-A2|Yl!-O7E8eq!J3u0YLORT^ywNs-@R+; zX0JY>&A~wAVkG~N|Dcz8Bz4dlR;_-tJw?OLnuC}aI@DD-o9I6CA!^DqCw2G@RXBa> z0_!x+TIZ=GSsu{ndGMmj?8VBxsB23&O2i&-fI;)y5Wl98T#6(nnqp!5oay9iOU0W> z9v5*hfM-DFDi>k4(#B_xtnS%9E}B1dL+i8)t?zF(UU}6p6uCk*e$0HTb~27|M-nY${UThPG}*14K}l=l67V^*Glz z@?*autcgiejK#hTY~Ns&<`m|Iz8@|(8UhZ4sjr!ALh@A)lhU-*uFbajzE5C!7~lvO z_<>F#@9lHY^ZEp!-rCdGclGROI_w^QvK@|zHL47I zt7!cAv4EwG6}#Yl9a!t;)*5`)Jfxl}XT^cb_L1?kWY)BaTFKS?u3nv1Yq6gcWiKA2 zd7Enk5498;%1E!wPRaZYN~mGcnGyfIe3@t9mP9NC+jGOLoNJQYZWOr`*Vc7(gl!i& zo@r40bs+2_5V1SbCxgRR#EUHcT(?h9rX((sD{(e#edz&A1zlsEmaj7J5u4cQM~>}x z8^=8r0Atb`c7Rxntcey~hK8UerlfF!pALdDCf(U4KXttrlbmg?sR=>T-pTZ$jlE$t zH8rAj!_^{u_7|JTgzZ~pVK0!+g6SyXuF0Z`QxRjda(7P;{iB2`J?4}Ln3cW*z0T%D zu%yF6wE-+#GQe7%aU>&44V?R2`18Xp?gvuJY|70<)sK2!0#mcWbo#8#l9Dy3Y~@%4}6PV(=?!Lyqe!gMdTcA8$uXc9okSeOmXwv*{0+iNXOPIC<7#4Dq-`~q&adFXg!P44ldFEhp z31zf?$F-TuJ6ndC?FPS=gf}{rk6MF?)JRLidphH+Lg#B_6EV+67n%mgUKYjPp8nww zae=H4@>A|boD0JoaB_AwX4B?)O?zZ z0p0czFsL-8&S1=NW#7g`h^{o1ep7z~-8c!7gfz^K0XXC>!0yx8jnA;9cRNb+@vH2+ z&xJm{Uw$)z?dtgi-RvaS9>*#7$1Zq28=Ea8u zUUMqo=zm9OZf=fs(A$vk-pYQYzG~T>EIT^t@$@O%`yJW9hVKF#nWY;&St3JXRyrf9 zl7*JH(>nKFnoWNV&Qh}sYW6G9ygo58ag&85R?1^5y-P(SZkdqnwHA>?yE$e-Gn|i! z6m=GeZ8arb-&ng>Puwo*MI2Mmpn9*|q;%bik5==D1gs?`DfO)F`?RZtW9OcSfBWR! z35l}Yk1fS6>KYn!jSXpO25)fF&1h;@w9F?h0b%|>@?QEO;A@5{eAt2)gIs9{jwB}J zjYm=sZ?Wws-X4Uj^jxhOS$%hZy*kU}tBdILbueaPZE16poFVPQ@3ea1=4$0a%m7SK z`u%Pilk}Rhim-2Ux>E%jgnc(HKT4l-Y}(vIrhF}&u4j0&1Q&x^KY8ZvUiY!wp=5B6 zx>BwbE3Xvq&SBzcj@(V{AsU6=E`9EU)f_e*5-}+F=%u z9~4ym43GBbi(x_v^!N7zg#qNvh`Wv%0y04Nb~#dhQKm3ILb5#>UGI+JN=bEChHN+W7^Fx2+mzrb?RiddHPcpR=FkwKbhV zEmsVV85Zyd=d^bO(RWZKNl=d{u8R$%US=gY;;yC!9pzAOZ>hc+xOfu+-?Ml@h!Y=u z{KV6_kYD~0woWsrvg*j&y-PK+qV`xbW%>%UO3d!wkFewpFmLXDAL!+(74Z) zXVR^i%0EGrJDT*+Dj=oTU^lDaI$ze@c|!8YpR^wL!d|e{`<`NFNXwIMQK#v5 zG+oI33VPWK$S_={%8xST%82Eg0hd<#@B7LyDmCI>CfS}Z2M;8udQ488pyMavNMwe; zN#xmrFmiRuLXQZjjU>sJ3|4gwr;QDt<=DKd?EAfIeDvzcu+DSPtp!7y8gXb!*i^2l z)<3iW9%<9{6&Vyg?)AfmzQag5KlyS`$}16#-z?94?5-Mo3D!Jo*YnsJHVxKId-X2* zeW6&me>?p8a(kZr%1if3H$-lw$2t62j-Nfd=%~TM4WZnt{$^F6Mlo$yPh?r;`}6IS z{)J^fgqdbLxDhqy1y(NGD6&AhqeE5}_CkV+r!GjaGzO&WSIaaYcIlwKg( zsK~9HCg<}!&potLRcn@gbrPxdluHCKS+imdu3CGY!G^ab153|B&FMnyUL*1)VJ|B_ zohM@qC%xBE%Nxd<8yYvs`$Xkh?R?~Wo%W>Osxw_8wa4T{9$IP|Kd5LxjE>PFeQQO(+?~gS;!0GS% zLeKB0^zWM9ShRI8fJHxOUvu1wX)#ktqRn3;x;QtW)eNL~7mm7EJ$<=0p=i+fjqtBk zXywTGJ&|OIxTD&aDs5e7vvUiKlL#u3>y(>4n?3?dWvM6J0O^=l^AU>!hD@E(9b#Ok zjfwFA!dw>qfhj~WN=n8eV|9i^m@V87RoHQ$eraDmCP(w>`lO(h1)e(fMhixi01(Q~ zywas}PLE4U-W%Own6KVg3cn%tX^?AOfCU#8S{y9dD`fNVRa;X@*OjRCYwx~jS(0KY zQvR9`}qg(yNv<05TYI69HhABJz_4^)TScizD!IPP=^lqHX zBRyhiF(Z`A1L0S$!xotbyPFa5vP9$z6j<=+8Qu*A$T2a@U3!%kNKBRqwN1UB3W3(0 zW;?UF_L@BW@k16<`)TqXTK^#M8BQwyXCkuw{$lcE|DKA1PwldR7OFfgEgWZmqGnM` zyK}NVVqhSXeS@eoH!UuWve=vn(YQv}M2(+^uXlMzFAL%DXp4HW=QRV-X*l@YA@-r{ zj*|#*+$P1SA#t+nMuUZ%SM4gT7ol+JzWP>$S9N~GsTqA3{BAdJ`*TZIBX#ATI|YwK z$O$VRFCM{aR^4uHi}_=4CLCmpw7I!?pf}&7Ei0oop9^=sE`HntUGE7?Pe?56*3rfO zB#Dj=tZPjD>)+J)`_Nm75fU39n8N3rk3?lGpnj?p!EmuwSJa5w*@Yy&uKgM1NLSHr zR;>rkQlHOWfwcFLUz3Q{w3KP%i48jy6gpewahlA zO=~JoMt>RKguMbDeqVWNhQmo~&`4y}^T~%YChKFRh|a7ibt9+oRboxoTK$i$eq$x! zH&%{ja6WA&qmJ1Gpv70W4X$i$(aBQL3fZr6xJSBg!qvknA;DY@iZC$XmAqDl7O@)c@?ni!e<@~SeQdLyP>88qNvQGrQ4 zNDS$y(LsuLlFG>jd;T8xm$YF!;CKOcECQq>QgVvDp%LOBo(0_T!2yajGrDrY9!<%e zsdoP(?}4Hrc@qU139ru#vaP{bX3$`na?uAVnCr9#^xkIm{p2u0i)$z94FN*VLU?Oy zd178WEJapWR1qLDJi=ESjI@Hj)T1c*?GKhtp~!@~mR-HQ>(i>PyNn!M`)syUNe-Mb zRjkiP&Y$n|_UK{3dyjD^)0cufqgBu#kA4ac2B;Qhop8^l27G#Nc-YB~N)%Wa{) z^J2v&x_AcNP&`@RZ-yLcTw$VFkqwRo-(&XEVv++$8ZLu_mRU-R9r%~(JtAvIEiDSW zcqb|}C2?D=PwK}K{^b^QYDjy$*4=}pI(OkyREZz(X5D%Z8jCGRfNOt;4!KYR(!gxp zpZLkdN!evj$VaF4Q@s#EE(e}$TZmp297lanXecV$A^y@d&CJwP(`Bu0j^!N0V`qQ* zZOUj-rpBqMo|7uQq&A%5`Ud=tSipgp^QRi-Hg`C|#oiQDPrtxPTEk`kvL**I77ZVJ z>(!AkMdUPcelRjVR%e{f;4=EG#%v7qQhgkNg)N#7lDU6ifrtjcLU={}K@vlD-muoo ze*VQp?XDjmsx1fvPHkv3%KJbfw%(@3>%-ym-&VFyf4zMmjRv(}`@Op7vktD!1%fm= z*&0D)62Mb;7`V8;jPsW-1t~=rR*RD1$*DNCsi~f0n2jTovNb%hk}u5KQ99*FzJyvD zh@GTpESXPR`v5JMYG*79i&(8!?JyV3Ckv@59?ABfu&!j!zQ0{7o-K8S4`a!84DDv~ znW@@-*-nu?QmL33bSBVUj9!(nzGlrGWFhZ8C*5{zLV}38}IfRt9}O}}(K$G1 zIOhcpdZD}nAum-Ir0tI0+TS7iSzBm`FJ7ea$IxQcHpJK%d)I>;WO^A((MJw(0_#Yk zy)#3!={i#1e^lMG2p))j7FsT<=p?)m02xZR$!xRRH}0nHPUrE9hzx~lQq_tpy~_Kp zH@-!JP^b$(?|dK{c*)phjD?5i-_<{DpqCM73+_eiJ48dt4<9!jk{WWp<6;!EF^QF` zubh6YgJn#C?ZX-XAPjjkBx5svD!UbyA&Acuf$z@G{~D~MG(M7LDQ#;tK4|I2M1yE% zwtH>g!8J4YF~@Qr&&H+{$SMeP-BZPeZ^;tAx6jV)pU!@(r>*=$3o#Yv6?JZ=(w%C; z>0r2?*sr9DthJ54Ujtaqs5H+O25wLNmiO`+?04pWZ4px1XURq;0Fv30pK@m!l6xm7 zCvN1xus8YRb@AsZd*GzHZ%W^#BJu`)epJB#Y^*2Ex)^4Wq4b0u%%`88K|x_L3s&_V z=)^+QoNVUm$(-ueA2627EfaVu>VS9Jvt(^5`jZXC5MUUu3r^M2qxN~Hv ztAA`Se^){v)beJ)2}=pie0d^t_mmGGp9Zs%fZYY$YdcY-1Z~{dRBC$s){J8~E;RxT z?cMwL@iTE1+a0;Z#!o2=jRKVxQ}4oPK)QbtVkXRcYDhp*tTvVfztUdBaUp`A#BSr^ z=0kAMdE4&q;$T6>!0V^Q^s8Igp`~?vp0El`cQK`M{`6N5smHZWSQK*VcOAs z$X1rc9+WN2-reuwiWjml5WY}t$XxGembZ4rsHJv`^=zyDwhmU>sPu}VT;${;3V8r8 z3tx@PTx80d--#^BElSZPY?fZB8=D|Wqj$JpvL7$J>w*N^{;im4eL+&$Vx=wg4Uv75 z#`GA^+YX5|z$gLwUTFO2{SG!GAo$QTcF^|7g);!XH$^)zxAk6Xstsq*Y)a4f#?A3_ z5UbyJ^p^LyNOub?&Hk*uH1htLSo=2krmkTGE4H@5JWgvU3k&MgChe1x8n<)A`~+V- z?$AS9he)|BF8gXl_~u_<+H3X5rQ#*Hhi-+39R4_4(fPp#Tt)dqAkrh|LwF)j!-N{( zJuvKO7^QG=p{yB(@vO29REC;;$X8;xygdEd2+rSmv9Y!3%Vc5VkG`|0two2a$lBXC z^frl2r_|eDhOPGg>ysixo|3<`jKUG9jcIfsBGMq=bCd8BBXf7>T;HffG1$cR zr^HenReR5qfC5_&YdsU!}c(jQd1qR}@ZT8*{!8t&!6ZW?6P8$_o-0Wy7r zc{2aC&cgL$;cG(!=6Bltx3yt4G$Kr#U#%C*gT+p4*Vm&*SpmLyU1&ZlkX}HqVQ7DV zh}Z{+3T#7!9()p_z}i~B_HA~xR9W6dCXyC0*zY=DX+@ct<-;%76VS^@1OF%f6h1#= zAW}|{2A^KFC@`)HQ0Ic!SRvoODxdGo5-^OFR42jgr37QGn#&BEj=!w$ConU>>bKsA z3O!nvNG};y{GZA6)teWaMGf*^bx1=(g1Y*60o`{r=%)(Z+Q96Y0hHNfV|37>^Uq>N zuo=!om6ng|>4e5NQ=>klfs|d&9LK|=RAZ0u|G@=_6zUxBskW_Pw)oPwoOjt=4n zi8=-+Z;H2!bY-LiNA)oBZU=*Qt}sHIEWnmt}vca*+1L~z=~aJ#XJAotvcUj}!jdD)O@g2~*+nDx#`6_Ia8WiD!z=`F8FKYz2o(kL5*WdNX>0-_-aO zWPNk)?;()Xz)a8}JBLs2S9GxSqCd^iy5xP=>HIOCr&w&k`;}Q2O;t7C*@Ndh>sOOD zL1t!jOw4G2;oct3ajvfDd1)@h?OLvmUf5!Z>B~U0nq8HOJipvn^S&`>H#O`>PE)JX_mD7)0)ny95NZ zy2T8ssl?K`X97axkS&kZ7(ke)hZu_CXcva3Wbxlj*W#$h96mO?6I=C8UggWF&x_<$X70d3P2%1$Y5J? zcKqs)($lH+26(#bR~$V(r-#`>Oiawle4{^)=lv_-Jz*47sQty$Mhf7%j-ujdX=S;e z_04H%Ss7FKyNkr%Sfxq_NSx{sXAhFrXPzc1I@;$3IesPbB8BDP@wiJu%P7{_EcTP=)%CrNWyOV5P(f1w|YVjJzA>oF*7&!rJd)hYZ?gh^q<}EjSF2j zgTkIpSgm+@>)7O))3ceiCqY8G)*N^O({tT$TvJmCxEU^q7t<( zEva@7m*EqeHaF5lrrZto^+D=E@;7|BS}W^6(a>DoDZ@?_GDQ2S`Xg+$gVZ-AWj^;T zA&}Tr9_Oflqv6Q<3HzHnK;xMl7yw&xq#6rKP}%Imu(7k3*-i2>=#)b}++B#|MI3&k z<_B%iYH4XH7TLHoFJ-@;^1+H>0&WpS}&*PqDmrsK%AekFv)vrom zNNu1P@UD&oy?0yg>5A9gF7`4_Ba3Zpow}zi`2k9J2?8~id3Kmwe|_zHaA1)t=u8Sk zdnAF(s?A2Pt*!XPPZj9J20<8SXXjLY{18VkD={OZ%GyXG?$1FhD_b@;Hm$22lBKR^ zT(4eHOF<4jaGTG)>zvayc?_t%hT*VKAoI987b{BUEOoq-JD7LIAV^BGads5HyDZu~ zcE3F80UAdrlzm|aibG!VzSal<$q}QG@=?Ho?wpE@byHz1Zp`8D=~TpkR0C6ISC$*6 zm&5)XqL7d=Qs^YmNy~8kd&|a5oe?L402B~nTFa6_Kc&`1G->eoA0B!xVs|dw6?l^n$7+Z7KokA=w;axokL^fWjgHt3pF4!z^Amd zvegG#(nw?^%Y#VytRw^&A_@Xg)H}K(u#U3Mc&%X2sr(E&+wQ<5!4BP<{Q1jJH9lUw z>J~jo`TSs3mii?TmsQ)%nf|8*o_9mbWL{Q&p%t+Q4PH-6Y`inIw#X3~JXAfh@t{I2 zUNXixGVt(EK=jc1+(`qNyX)6o)X93@kfU)dRtWCgl5jq|Z~RL|p45(S{$+ z$|MdZevtf%W2Cor^|G4rv)>*-65e>CyN52elZKc(~7e*An@VLA*v+koh}Hz77XM6wytnat^h z)Kjd@-&Z$Vd%~Oq&tW!(0Dno=zGh6{#WVihQTlxEqBP9310X3aC6;Z0pfj{|Q`|PP z4f&rDfTiR!CIcX640L%h69++pUgt`IF`O)j-xHA*Ls4#?5CJ%mT?f4OqebSX%0+8| zKgLbTU-J@FnNNPr$HMc+rB{BF`yLm=O-Kf29Y5XcW9RIw{g!mue7SMOm+b)YOxO>2Exe4S)y?7%7$2P zRcV=fn#`wll=Iagec{gAfd0tfvkl#qogMF1xC^jCkJE=&N)RnBClp)v^>4CeKTi}= z_bWz{2~!Fw4DWh(csI@ur|Q zXMeIF6o{Dx5hc?z$!7@pF00EYFvH8sqqDvnVR##hOft_AI3m;Tmi*;S~-06xi+UbXTmtzSoItmUs*d z45OuQ1!tK_Rt2msU*2BcWo&u@QNZ8`lDTZd9xkk|-g?kpWs-U|i1YL0Pc(OT_oRjq zL7fICRNDyq#=jxGQ`T%-j}LB?OiXAk%paM~kdq}o!q>D8ExMQ4uB-A6-}4XBF@EIe%6#-# zInZJ$8TrTIAY}j$BdoqHDwzXwgbc}~q*ZG3da776GMbW9^2|iGGmh2rwy+<@rd~Ro zkQXIy$Zuu-m^w=-(CGzBCU>>TX-Ja-B`)j`4GaoN#bCN;(A zt2K4VT~e}dQ(-Hcn$mER!yxowkZ52jGhB!-_NQ@aI71gx4~Sp;y$-N{y*`o!ZF{;w zz@S-;Brm`U!Iypm4e7P=_gM56!zkgXKZX7+<~qX6`#&@T&MqF0(4Bx(FGdlWMwl~ zTP%eDQ39z^GW?!{BiNngmW0MYDdlZXS*YvNIP+X^9%bNBDxlj|bMYl|v^2=>!Q;wx zyKfXd_p3<~5Lcw*i*dLymIHfujOS!HKEDV$TI5^Ze$5U94Rt+kcrlmze7LD31WtG; za}X*i>8i0RkriQT_rf zmF*1o_jW^diWceDlUL>0r@8o&(lE=+>|R}MzJXnxSh%>M!rT@TSH%JpZ(s}JNN7+!< zbB;t{;CL1CoEUA_i20qMm|Lz3HsH1XE=}3>EP}rhegh8p_9#sFO(((o{A7;Ii$` zCfTR}@$}S9P)yAz2NBt11Bu;o`*sb9z_(Y+HV2a}A?qdZ+DyvR!4CcJ*y`06zzx0n zQr;Yh<D0AF6l zY(?NRe-DQCmloS~GKt_ypkq?66^myo*QX?cW##gN1zjDb8Jq2t8y8@bV*0fC-Yr)` z49Q4@^g`cWV4XZPkWqKc&tne@OTxSO82V$XeVdwm zJ8ys%WrkaYbv&Sr+KG%X5hLp?NjE3)aq4iu7NOEu;fS-z2-B!bfO1I)lfZb1=y{6u`H0XyK6>;@6i@4C(mH8n64YXDw`3yq7*Ku*Q7*1P5&2#;MU%NqWnO z9X?vtfsLJwswUZ%WB~G8M>3kx)`ovtWNWlxk9eX9b}|sO(AzDK8+#Xkh7__47^9*o zTt#};rZi}{d}0z|FYLylc>ML5nVEy3voHpzzG-kJ-kZ#Byewo-tR#TmnIUY-+c=Tq!H^sJLdoPjNPT* zu(uvFT6=I)DU2Z~q;ApmWO$}Wur2AV>6vVCJZW=4-vc$0?yCx^IxYIhc+471uB)U+ zM;|n&3pKO{h#i!y=bM$XMG7q~I&0ghV{j6ui{`!kL*uhdE$|De~8xdnIp{hPG8 z((>}|V5Ph+z0(7B%4m!XKQgcMfcr)Ppk6ez6l`N;ycv`@;3-r%dz=d~R0m=Gk>%rP z*Q7WKxdp{93n#vdzJoh5n)Q)Y!x%`pRnPJ7Mc4KZCcGsFhxVuE1Ta$tq2#{sy@N>q zn8zz^lt84-*ICX%?EOkJhFA@3O`mYrO(-q>I(u_#lUQQpNeJ~RGFqTFGHsVM8+ z^v#%Zne=wV*tI_^Ntl?vZ$?niC)*<6QlVJ3!gUSMXQ20$_X+U;k+40rSovAKwwSC88&1gQ>BF;9_Ty9#@@rYaD@`{ zWJYcfjvdOLBoc%lpf+zca@su&T#m5j0b?vVO^rpn z4qKr8YGQ0G<(Cl|85uM;I?8%&d}%!vltwUbu~%!+MOdiYA~irz$i2(3O()fzJmS(8 z5D%AwDN6(|btnVRwtvps!bqF%>we|u#p(4UFR5*i@GB~_8H{Vb5`XZC9;!5EqR3tO zW`RxA#rb++Ucc0OFVJ(kw>grOpIn4BZ38j5ubeI>d?Kk}u$k|BIFRR2m`RPjI0MXk zg&zju!PtdrElenIzKQR9{R{AT;a$$7k3LOPzo3y%i%)K{U4JRC&~#>uN;Rt#*rT;@ zO?z+ePZ>_Ppe}#BRDr%N+A-4NWo;XOywoI*LN0(F#$n{3zb^51XEq19y`7TP`tg{@ zl@4YwnJZ?etFzO{wq9xD(R?0_;ogH_0jO>=K0Z2P`koe^@`$A-R59g>_V7^fJ}lJg zna?4qz$=(Q1ig))hL3{EW*MP$#!wMxS>rlyKzr5oCF+E5pxaO=(`?-ek6GyM%!b~o38LWl3IAt+$UAE16sZo5atyyzgj>1Zpm-;9Hiiczm=ixQd8E;pU zwT@16Sg7{0wXqDhJIb`X&`nfIoXW{|c%(ghcw8BW0Qbg#iIn*8;Khuxhm$_LDG3gKj54fGb8|Zx zi%V?LD?@1I=(o|mKmNrx_R71WW}qTR5|5*yrj)kuP?qED4D~}K9yeL7>srkd5*tNL zK^ph?I`wy0`!tX%>NW~`d+N&N>mAbHI$#S3GufO8*0>n~KtZg{=~NqV;xVX)>5GzK zL#Ae1+s^jCk>uY7D!BJl|TbN!+Uy2!uRn^y5WHT_1=OM z7F;kn4upAE8jkZa0k5TRWa?einA_xz?eDPupB~@WRubwrY7!DA)NEtyD;oze@a}g7 zeCe|aw1Sk-PEOS^$i+iD{2(?5=jRoDu%5#%SfEpf9pK*uJfG|f4)fAt|5QRgYs4)eTxxSB)Z*sw z*Jx+&XGIB-eI)XK3;67r0&%hV*KXdg2t6~9kk53@zZGEs?a=Z9C(F#c{a*6t zpNY0in2_Iu0sr@gY)F8k+Na9?d+6^v1?erp!tLV(F>i+==+Vl3& z+9$OCEr0?>B+>wRw!yQ;J;lF23;WzLc?XKqWPTL4R{!`hQP@&YjLLvxJi>Q({@@#hY(%5&4f0I`yfJqBmDMd6cXy(NAlVK* zmY3wbBmp33fkl$l9lZh(m*8eB2k>76Llq2BQCm@NAN@7PN8m?aS_z?t0bj8@g?GwQ zm@O^-czIM>3Or>4%I=?q48XA*K|>M|(eEm*@2$CvLvbxqCuz*SlN}aua!OAWaQL@+ z=(hxYze0*pS{juuz$E8nV^`Wj9(y4Oq+0k>K z?5NvE18+6RtXGFdlKIQ*n<@fH-XfW{7V7S#JXXf!TgzTna!DrEk z`HFR6CY~uzRo^A^|J5))SkfKMG;Y5i-HU*8~7 zVqkkIs@n1K;#r&2?L)bIG7|W#a`IY##-aAFW6uqK^Wih~3xB&RIKElly58OaMIigE zjpJ7M*D$ItZ!Fry&E$>`)IrLt&@a7-qEkFEgQb3yp3$K@!xu>Fokii11S-#T%=f_Z z_DQ|#8wgl^e}ETnBOx&YK$IiNSvw-D67c+k1q&N z-$_S^esC*pjP>`YIv_b%-8evU*ECmO*f1NGiFjjIOer8Jpl2%6UY*+?rQN_kH+A7N zIe2tHcsz)0#sL){UsI|iO3Fk{MM1?5AFoS#{CPoX>w|>HR@i1bOdN@f)`+vMf>j86A2w^2=wIvQjcgg98 zA&`kQYwPPf`j%8br!@||5~JB@o$P=vt~Q(T4BYD|nDh;3lzG+l>SfN%_?}-m?m|?@ zE%!8@anqu{yRo1d$4h!fff_r<1TJ9NU8nV9B^lzR;k6oRNQ~seOTP-nZA)#E*B8H#fN}3)? zzIZK#UDc~JI<#)HHf_F<>9r2rl}_);itJvA-E@z3r9y*87r4DmK@i{}!!EwOZt-fR z-`q9?7a-e`<9dgq{)#UMf@9>*ItF9zOts>F_e;DFbCDt9CO#hKBR@8>T=ygNsTytE zXAxkpB)ZosUQ(>AWv|+!^a9!B!&7_mk`@&{c7idn6|3*uU9RGsY+67=Hv2Su%(y+k zO~OY7X90mmUI8mRdDoLb@C}h6i`j!&?N=`xrD;&`chYI)!jdPnz6P*r!geWC8jHu_ z_NN2Si-Zl`u=Xj-dE22J-t~$eLKVI{FULro-kCe^$Cvx;m=|1!b z3sR5*f*_hLne>1q+uu6^V7k$PcNr+PFKE%%Vz(HOO*;wdNcOL zD(7C?M9`#5&gPlA#(@TzUmVSHtJPFX;J#s3SlOqYO@~?b^@!s3;pL|=@p;jx*jPm5 z;WsFx4=56syAWh~EpeL@4@x6uoiH;sUYP7cAh^ebkj4Hz{g#IDH|Jy*Mpgn-a`!k- z+6m$4TcE&d<6_S~rCQE*3HFeuw(Os0SCPWy^gyF zO8ik+9q1*=a%UF7aI3U%^j{oZBhxAX16DCyb^45sCjROrB_pvkwO2Seq>1HrRMp0* zR5I857A%9(HCiCJlt~2|@(g$^VG`5HQv>Uyg!G0BdM7P2iy0JoCbBsa@9BOBM}`Ft zGPxY?>VWNGM5>wFO7=TO?kY5{^WCey#71X?7A^?5b?O^hN48X1P@bOIN5?|X%+Kpx z)PD9tUTN0gDLaN>01@SUFQKgcidPy?6b@@=52?vdude^Dgh{XMs?`MdW=-t+8 z)wFPD9Rq&ncMXGcwX+kGy!Uo8u*as}MMbEEVZ19xg~(T4yY(C!l-%6#u5hj0Ly%Jw zL%@|?^GDw|l0sIf@PX1bgfjPGQ@x=xU#6Ep@bvpl;Ze?j0ox6AvK{gARSxk-7}e`} z%-C4}0Z{AQ92^&yI9m6oH$XxW$iS7_dOtW43)S44jp6@W`DY@%5`hRjrIvWP@CoET z66Ev%mu1FjZ6tQoy--)6Kkb3?J&eHbVDR{X(fjJ8Lqo|!eNxPS!E<6$p;#8LT>9}Wcc?@MW# zf0IaUU422sVWEm#oKU>bSjezJ$Xr4*&g`eRrkPeYX^ukOB8XzVco=1KNt=D@fuXR7 z4=dq}{Y1YfD@w{%afY;~ge=;2pPA@ZsQ}S3gRq`{1YtT(^8+M!{#hG)>cbQM0NH7I zIV6#0Ywww5R9%3$Q$(VROJkP~ng2y;Zt1VVA>T=reXoj#7yCZ{I#ano(IUc%IB_Qd zVjy@GyU8~HQGLM8`UUX7m6~J8rOQq|>(1Gp$jrm?hl3Xy=-mr810J>zOY>%dW$da3 z>b_8U(peBXJKnZp1I@Z8b59RM4W!9_QOJKzJMRK+2rJA9O(3D$mK3(B1$8Tq6#nM#)r0+(b?^ZWi)UuGx^58{K=sk5vXy^yz+wW<$0t$c)@F` z)vI$m-x-W6qy9BaMpJF#vLpmu=E0DnUqkQ@(mk<*_#w;jk@n4gwMr1_}aYaf~ z_{|v&UiN6I^GR3BZO#{8P874z#K+}?lQu1MnfYtj&m@n-%TO*Wkd<7Mfya(tBvoNd zBHRg=?~|w{Lhaf*PFf-*+Lq~v&$>NAte*G7Z9^26zS?OTy!7qDNS2 zu9DHB$(x5-=^7cXJZ6e`?RcWF4Lws>p+%glfHf z3U;Vs4&!4*Tu}_3wJ9P9yP^SwK%&wcSdQXGdtM^wUfrndEgBu93E&OOFTv+1@uD0| z67Q=%LedBJu$qn9D9i8$@2)R*p?h_DPnJq927*Uv3^6uhLSB;zxVZ}6Op1xgQ!<-} zX`Z0Y&7}2|XLPT7g`!ai4kPrOI)VpMjx)XN(HUHd_=U7ELoMjlT*_Y8< zl?8mLj>Ekp9pR>A-SKswoFGnS)h1GCyxvxrZc)_gdbtqm`l#F)=xwh?a#MrCCHEei zV9FIBoZZ$kB92o-)rAhBK^&+qcFJ&g4}|_JUQOY1DJH!@bK%p@FPr!*r%lc*r5`vR z?~dlxL9}Q9%kgBGEZKA*R8BLV`;m1aF&tdtXsP z@mIgykMKCDe8Lpq+AysZ;=>xg{27s^)ZChCD0B@vvT&%@3Lk}D>JbVgeDPpFwqc>` zO<+E3uoG#{I^u*%?I}RekAAl@%Y2)y{YKR9=^F8|=@pv%1DKr9_^_3k9lyi2mHXQE zlW#xM_(J8o`|C>x8JRtw$z`TUHL{WFyH!^X2JF_k92cr0T zx7lJ2o)_$(OA+TzCNC0E&ye;U(SU4^r1fjixskeqJ1O?Eb+D9&EGF%`Uc;?6%7Y%} zt!E37;rzDY<_zm~%QD4D+v&2R>ysCFHIm*Y-#}94V4gUfaH7k3y<2bTRzjVG3yn!L zZ@ud24(p_ftgZinNdLI~^|fFn9`)c2PF18wIO#B>c!eUffqE(b)WbEeoSQ&cnc=dS zWyyS)tt*7^2;Zy!;d8?B$IS~p1@y}N8~Ky7@31zn3|Cv+))vKsY4JyhAMQ}a`r}bob%&s>4sw-Vjm^LE z&g0wlg zra%!I8vauJ?6wMneV-mw4kFX~$5nK)!uZq zeSLWG`Pv9&e_KJ>Vhll$>@ZR&jV~)b1BmZ#6Nz5^8*CML_sra+nstP~8j{9pE23>E zhzWF>j`JbXXG^&QCeOsic8k=@DdEE1TEc^m(fy8d*8sCX7bAoYS3u8FU(9YyyjEq` z2c5b(^t%)PiAhNU#*_^PoYPPA`9@`nkLQd|sxN%vS;_KPhJz&elzUP(?01OKshH6gd3!vqc~n53`?pe1Nx{y%5M&K23;j& zoh8hJyE-w_if7?M`8-${Sn$VnOnr1oLffBwZ+ThO?{`yN%q4Jc8wHUV=^NT= zz6b-)Xsx>X8w%Y_h%{bbtIwQ2Am}!pBT#sf`TJnUg4eb))@K7hQ#uO6f-@A(22ZXx zlH}f;ay9bn(TaTOG3ajSSc$+%6?P|#MwEId#S@WK0`mPD@xXHO0GW6)vrMq!)7Q^Z zyWGIDyeX`H^IijVar>gMk|-cGIoaXX~}_A7|a@FMQmixU#mPK4(2W15I(XBM+00x1CgLz&m*v^t&!iSPhP zB>TDsfV~Pv^O2HY;ua59DCtSHcuih&zLA=_Iy&e&o0--+5b$;}!v>oRv)A_W2oxPd zYho@)P^7MC)-9(zUqHwPnzczVHtQYhV3h&{(Dg3c1Zb7r0fE4K7`=k@5#px8O*?lf z&08|!;mh>*!k!g^JFpJF^EXo3UYucj7f5@2j_6z4vQ52%hYQ}X{h=MdB70WC2?D{V z*@rK7>+)V2&MV8C1n8{2g#>Yt+R2Na*Nr1IMfsgy+c2b`QO288#}1s;b4gt<6IqtE zHR$>Okk+ZZZ+HVi7Qkp-)!LbOG&Y{+h%1?@DFheUXp12#OcXi&^8xlL(CbZ#&{KCO zGnwd3YLQFMlnwDA2LyJ@J@cN{=_L-*O3#^MO^BNQQ`W7#Y^SMUzcyAYHaG)!oK;{1 znU>fKXGyaHQGTLIqI*^2lkkBsi^C)HRJa!m=`8v6ZW;OYvMU+rWE}o_ecqYH+CyW2 z?;4peQ9zvA?quKok4Tk5JK|Sb$i|~PC9q7&ms<3fNYbQU$n1>F*4Zu%XkaMFMg~3O z$WxWi_n^k-X>2)oJ!qlou@Z?Mp`{HmT+MBgpl}{OcORL5)6jw8#Tnx8g47it}cavC#MJ}61 z%&s?!hu4^_$C6GyId$UDcxSj`OVTud;hsupJGK`Rvp?=nVcYyJuGf)Wr(S0UAK{lS z8Ir~D(V55_KZ7*vbNcs`*HrgPg&n`sq`$KcM|{r=1HBq5ncdZbmbI-ZthW|BxY8TF zZM@ofw5jejf|N#fjCNN<_DJIMp%YSQ6&BhJ?fH#+&6Tp1&n#6smCkmek6vGv>P7D)EO>ET@!=c_ zbTgIiK-%hRwEBu>iXpDF30rr&FVg8`JClxUqILS+J2_84>R|X_L9}9VaZQyn)LWgEqk!Gi zxjYzt8k4lU%M1GWa_V-aK7|EnZt2{+uh?`t69zKt9>J>ZYjp;szwygrNai_uQ{r^o z_I>{o;0mBB*9d;G^&soA>mkBywJ+VDw|c?$8r#rQ-5XQ3(PzSb#-18i2e+WrMNa^( z<%a)f6Bn7iB&W#Sqb|$AAwj9<8a>0_A*gPhh8`Da*%&lfDSGi!=N*3ow4v}dOo~T( z_fntysc+!j_%Y~L~%5S|6(qLUw z)GlkhZ1G?EAc)xjmu{TRe$*(X{gB~5tX!^4OB$MRq#GZL&#G-`Xn;Y8@q>8>)fs$u zrAs6t`f|bja!}ms&ei2po%^x-vRB5v3a`=>`Gm5=lY2Tj`SSmXz+25&j%m3_FT;2X>KOe(M2w6 z6v6vO^j9fEQPyDOgW3~tD! zS~(x`WU(9XeZ)vT>d!vZH4$W4_yzx-AiL{VYg4ovAsuu>)--1<$p^8QjlsAVH-!RV4 zt7ACw;@B}1d`NR!WV)@heIw0_%f#$opprNtoy%MM7o^d)9V-m>#2)T1sSKJ|zUp?m zKPd9fEmSDjV;cRiV@#7{zhjcIZGSYIU5FLuG5nuD+c+QKT6K(ZIG#iTRBy6i>D)e;?{I#V*T0I`pIpT5Hh!J zjf8~;$C8ulQa}Vh0_n4BDS#@^0Bz;q!_N>c(TU6 z5cmjJq^F$SwXt@E^KJukga3f}JnH(P$lX~-A)D#&F;~T6t6$du1zC@3^{3YXKbCaw zANXor8u@wSD9vo)eiKih zn!{7(4Fd}Yz8*Yue!lZn&mC!^$JnkVBIRCrzc>3W&D#pfp*?8*imzK^(=KPZ;xiewl8^oWMl(=b^LVefdc=? z{_t4r)v9+VsY0;$4+Ho8Y`=~V-Q#6%gnXOfD3G*=Q>&JB>`Xc?THr}S)_ z1lwImvfS4wrf|~({69QH@`M*WmG03X}FcbIRnwRQi{ zI2vxjXYtZ{^cbD=!a-=Fb4`>1{S9rS@25@uE|BCUAxn1 zX_3<4ear9omM#+hJZIogiD>LG?;jv^?&^o8aZTn98QZmv*U-jVEf$R<#WhtbC$aePfJ!M=IPB{kXr*%azrHqJK{|8 zHQ_^uX3u~khIniv^{A1nargJ&cO@JMewkzBJdEa*meV$$=O{u+`94Z*+onFLCk$xH zj7{)HIQGj7pW_HFoc7`rAW-Zob{c%*aLqS1G#!v4Iu{i3M(Xu*3h1%jT5em5pn-QI zp?6u9@@Uxj`I`w(2|E0?i5c9vkXv~1nR785>j!K*-D8FXOETVUP<3>&P=)q-9&R{1 zN@`ERPcOBDxh{q_crLWjPUYH1wVf(fC2+!RGO$LA>FHv2ktx;}9)8f9x?mO2^F|#E zec9cqz+E1G_*{>#7M{zj?5%3~`hmHDn?ep7(h!#-L=$~TEA;!LmltnXjo1V~ zj2ZH!@{q4@mAPN+*B)%;Zl{WM_a_E7HcyMG2^~Twj3+V%-^oG(y=s0E@tHjp7%#n-e$7Iv zb4Eg7C-64UrY+YKF_K&qgEc_7TsV^W`g?`ozwZ)6nGaOR?hayXRHv-pn$*3p(i1Vw zQZO|I(iqQK8WiZl1TkmiJMR2=6+O;uWf29%07$)75ESloJ(`1?RC9v$`IVhdE zmq7j~<|kX&lz#TyQW+chIJ{++>$}J)y*1?R6piDGUX!6+? z^uCT|cAt0c{wbBto5uH9>LYVW%#0_(?ep+wa-^1rQlGqrv#J-ICsGu-;)~ZzIq-bM zt#W3(7}>>#l^(n`DEKi;nu({&!yxQzZpZ$%SLb_1EBrc_)nZXy_u|edW(7g>!O;19 z;fmI~)EhYtuT8cLIo1H_(oaN!o@hF1Ziq&ccjOBLC*my0O-INIyf#s&%RQ9PEjO%- z7X=)~6E>vbFB@-vjN4<~-dgCA8VVwEO(MiJ3uDVOHzIhLmYm6=PJPekssHqE;FA9CYE$zS&{@?+~=O*c|D?~{}XscC=+g}Rs#+#n{ zHWV)SoPZENr%+3w=vtrtA#VEuvu{a+t-TB&1@-qOD7dNMfcan14nFICN+4vK9wTusBC+$>ImKog`SU}f1|Xp$!i`10xZRUf1s@& ziJ`3&E%nF0k7i&C&R&6s`#09TZhu~zfBt>&3YaW@Ps#-sxPSXy{_qHR(0i{cnSXl* zz90$v!pDejs{a-WFnsC-VRFfw3^teiYt8=n^r!nu{^?Ymlm9g@eQPy1TVe=QhT zxeo|HjGB*MD*P@*dq0>#DO%3FfdBh+Zxq27Zd<#(Lw}zx0eH6#>v8DsiyqrXMg_Dc zwC%X!_gBv_U=m-~IehuM#AQA_g@0f_kNNwXG_L~SkooMef13bUa$eYyr%y(i|1Ly( z64+CzDIvVy#tMh3_89!G2SI&BzfX5h5h%jhy31g{iD`Xjx>`T)1i`usn%;EWC? zm*a-R&%evXmKr>rxt|{T`&b{peE`$Mw@>*0b7^2pe%n;$t@*nY&qTo&uI?Tkll`t< zT0jwIpZk;k+miib-?+U4nn;EK>G=KCSwYxrGp)P0{!Df_HWA$9DWKL>VXsHqd2ps2ql_9@+{aUi;9*JrE1-c5btG+d+trzX-Z0 zfN0y$^mGy%8}KZlC1U6aE315FRAZyy&JJjP%hlMZNDJ!JY;JDaySM~LL=4RNRJn~z zgJ#2^FyF&=$iTqE+S+Sk^S#x$Y!^mGMtfIR4bknX@AR>0X{Z;fHCF1!D3$c6sbWCx zPxC%58R6mK6{Ttz>DGo*K5kW{y-ixk#p&R`A|!a_oc$FHgXI;XhTR00_2 zDNbE$?HyN8X7QfKJ+G{+WME;DP*TDQe$V*I)BqC`Gqj+99+b{!XhW|^V8>W#IX*j+ z&X-L>i}bE&?1$6^1tH~q`b72gDINv}1||;{;=Td7(NG3|?uy&1S0CQS?J!|ZqF|6d zn=I2u4Mbu}ghQ^k%m@ya>>Wy~pTHPWh_sf+8Cc4|jiE;*OBQrvKc?h{|f>b5RS_yhIBj-kz#5_rAS{f*JTEYuDP8{)l;<{Cq_Ddg5&kzmhjIO^)o;{fI?qAuuteL+qd7D;y5{w zfVV{>MXu*Cplx1VPZ!#`FZ#gV7){b&T1u*zrD$usgoNbU|BL{>#qZA7d3$2_EoB_2 zbo(pv<@x2g|HItRZqtly^40lpyn`|Yq1Osnn^cDFs{Y$pPlcs8%_aQ@_Vpgv|7ddd z)N68AMm^A}u~PQmhI`5(g;al?5z9{a{Q2|G_DBkh2zpCS*r1h-IyDwE78X2Pi*!q5 zVrMf-P9K*ONJgXyIXbWpWz`(k-mOyg*F`V&z*Y56?)~@vm)f|#3y{*A|Fhz}vjRo}^co=V}bVKjeD zE29W`R+2n;_)9gWeX{OBRkhPWM@;Lh*;MRHg(7c zr-D~z zksF$8X7Pkguf8yv7DCKjtm|faG?LrHv6`{~>MKNn9-+{_9tt2+{1h}Pc-vd^5hh{A zwy4)Y1-eUY>>k()`{F@8L8IW4`aXsS_CBr?IM6P*s-xpr)!0xfI1H7D$#2A`_pD|H z%%9)N+{}-1dq;$atJj8Jvl7qd8!~Sia@N|g`glNZj!Gz=xZ8^&zd6}DA>uOQ6PleX zM;fZFWqO=k>vU$oqFsd(h;kyi+#O|qw8Hp3vyO;51YN2?VHeA9k?PaSw2=Ach8&0G z5Usk`xHxRIOF1u=%LbKC`(X_OLho(^5);*4`nn4>2?>J=MmjrlZujk)Zlz(hEh&7C z@Uvp!Ci=yWzaCd^O;Lwpe*3cNG@R>Y{?u+l;?9hTD;}(zEKu!8XHO;nZ6z+A5QJGG z_RM+MQhuiphqo1Bp3B06HmrQ7Fqeln(9+8@x|nT8aCxra3KqpaC^PEfN-c?SV4yYS z=>=p|dv>ywuCis_PU~x~pI>a>zR#iDN_!Ts2Fh%yzif3| z5c{m%2oEYeNTzGBVv{*(oY?)$qXY#ja+VIehI~)*_3s9>RluM+WqnH?c3Y> z={*)uuR^QJhSq3#iNpEe8K}l%bUd;9EH zSwwopjF5s9dMawrQO2O$;7w8yWjdUsM8?~MYFvfvaJW~2{&1pCt<>&xW!P4bmFLw*KYQw@$E6sA zSGxP^v>bLuDxB?#84^;SpTZp^wNS?I2bn1Lbahd)i&EgE$Sr*MuvMterPkHSVGa@7 z%LIvf_%l}*>Z;mvRLS|}op(4fZd+3rpf=}JlSg`Z_V!qji@wTBBcphnamsIE#pO11 zEXQ(E?&p1~vIGNJlp`GLBOiRp@G*P3yP3tV*wt-Ql=v!lDVHL(bb`fx*o-CxG@RFE;ExDdv28W5g9}@ETle>GIBMAsi z?Mhqn;F^gfft}TO(BwlVVtH^*$06v&q(^>)n>05^hbK=-3t`9jEbgr68-?{(EPxJ< zFJvFCDMRl`ivfvqxxra-8ua1<860IID~oCYi^uEB_Ir9PS$?-K@@NW{Zv1?MZ1n{x z+ZHfE9a}zc8Z<=_5n|iDvU5nCXc1hkYw3HYLUch-Qji5NRc#i9p9iWsEKeQcf@Ne; z$P&;mgCk69w&-(wNh+$7B+h8*s6fc3r?UD2)aOd_ud7ROWa#3vKX`&cDim;NEM5FQ z$TWSnfNGq!cYmaLz=d6o5l?%RQRO-T($d0;phwO|MFn|$<0!C0M*4Wwkf|z}9l3rJ z@=tXn1P;Q?)Oj1hk?Le6YVDjnzM_WtOd_A<-Mf{%P8wi} zEHCBDG4!%OyYp=Z`Rid_5t?lsKM-?rzV*sLo~fu*$uh*9d+uFJg4(6ZsBH0MY!G;r zkL7Q48O1D0`Xgv)XmUU$3?|}yA$Z>%t@{3rz0v&K{!TV+4kncwN6&k+b9&{nheq7x zO>7YKP)rKR^&v7WQni~9`7f*MA&DZ`5IP7IEeYO$lRpilcl+peB@OCo0t|qqjSVL( z`2E%0;Mmy5^$mL3eLC1t2u)NBI!{o5M!4fayWNv^2hslbivtU~Kt3NNzpkK9-zqos zq_g_Lye+R%-@%d23oOR8*&zjmSet{pvpp2|o0=4*Yd=%P`KznY^BKW%YCb+0(@@21 ze$AV!4{v=Av-f@5+u(iF)Z#=|z zp3!3+94*jv6S`P2$q>MQ8vjF6}@* zI`Np|_`M8)H*^iIoA1CCIqxhG2L-ptD(u9_8xRjpG{p|1AXP&wE7PnRW&Wt_pZ-Y( z-u8W*0w(Ny=5DSeo3yIH=m=eh09SE8tP zDn^rYuj=X=Nx@dEm&FSh>iWX{!pdO~(;ps!f?lAaBWU&afP}|J64Y^1|8(@zC4D$Y zoCF`!+|=~-@~1aUTzW<(j1c-hDymd<;)G@tENmC4uCp?>vZ)s1l%EIHrV*d`aLEGM zTQ3cgDB?^o!psHTY+@XMx=)&5X8ZbheOp-gMfW*{jrP^z(rPiOY#m!B78zL}$mS3E zfvs$nZ@w@u{KVt{ZfCXzC5g$SQZyi@wPSseK>nt%$FZ3}op05qWs1r`_tPb+t=55`+m}%Vi@9&QN zIde?N^6lVtAeOrewd{1B&u1IFr z4GyJvglT72ZoMxlQV_4rb|cIA!i3(Fv1Ca#KRkXGhbCew(Z3}xI_Fo)`yf~?jb*8m zkrw^*?epG!>kDekmAdMC=VL`&SVTl0sw~NUOsK5=xBU{oNU8W+zvkk9hcHV+6(I(<~7-olhT!BSdAHo;@NR$<-xHx>gyb z;Ym4{>n90+)p~@M1*^PJBoVvVagXU6+d6GN5v@pyaOlo1+1NsQtxX{4h}ZutWt5Fp zevO5VEx?A;uhGh%LVz@c+nTr7$;H{Ztq@yW3vu?N;+Q^9D#Gj(GR*emQzh(_hojS1jt{dcf{*@9t`V zo1@w4#8W~_N`IgNRtM=pc>eB!-+fTU?_0Kkr^1VqH#4rUr<71_gcIS|%kR~Xv1V`> zvw=#DpOW>Hdu@x-eKv-%f9;IOn`+U}7QFh_o^S8y+&0BQZI|Xk*_xnPW)OP3ZgjXo zouGzgI2s*9CT(kr0R-zcW92_Um+H8O)5dOCNg#gj3|K~Y43<%OaFgw3j#$X`FC+-u z04PM1(}&8?CQnsWh=^P-c@BsLcv}Lx2mx(z|7=CYZ;H}&i|$9k)?uWy^o)o09sRfN zRSxuOXNAr`oKnnn`g&p6;|K`XBW3b(GDWSsg08u5(v$6-oH{0U1xNCoq}AC4dD$^R zramMK3RuHE^5*1jo~rIeDAOwmPHy}r=u^u4Nx`7F?jfJ{`_=Qz&?7_yf9qE_f`G0Nx zKy1+*ppl(*xITZeLb%c~Gw?99BYHj=?SNW3+UV|EhrOGVxU3bE2`w}4w=WyiE^aXO zb_Lc_)FIOhIQn8JU|StH5VoA*2zuF>+(_r|Q|+(4odr$K&PU|~w5E}ci|8^Jt?nAH zS-nni;N%E?S(i6`;Axo#)snwk-V`>fZuN19qDmdYAC{SSq!$ ziCkQhjG>`-Q)4PVb5&sbB%dDqNbD^UXQ8O;{&YdW?Cs5EAqy%t)Oy0E?c5=^Yxm}M;cQwT(#;Fl1jYIa{aZ|$OcG~5 zzX<8W6um9B!tPg5=;I;0VAbAI5p43kX*fUsQLcuXSlrT5?3$Bps9sau%<}D}yu9jw zHeS(qzLDB^01O(i5wzWk1))HzWALPlg(; zXc{km%(0rzp|TS)3|y_stNQbIa!BRYQbxmY%FA_IUySeW{rpPp?c-AxmEy=` zn%>0QXJh!)v-G`qP<7{Byd@is;gDR_PfXGV6-1%71;ZqDXZtUj>-2r}jEt7D2Xd(G zTqEY=PI5KHExcnSyz6YS?2k+N6ixeJ16xp&m}<_4|=%+PTAv#2OO;4yc3n| zl0%W>4plzoe|!WSmv}trC*sXtA7JWag9fwJ1%PYkQkW(RTw8CA2H@qp^reY{Teyj+ zi_eW8xmt0*qb0&z9Tm$GN3gDpAkx7_Hz!1zc50UDeM;m$3?mtdPm-0GEXFUE&HlCh zL;OuW+hNUh*?f&T#e*Z-iT$@Z;wXi}KFQ@;h!{3)5*gO3Z?) ztHxf_zR$^YOK#ntzq((W><}VV;m!EFo-&8WlCO<-w>4_<@QWUYF1_XT{J+|aed1QwK58qyExh_08}c^9K{ zH#X8rCva~pphWzlgl{0r!?vvRNRml|y{L{=dqAaDoTucoisaTiLc^$&H?i^Y#heYG z^k!~9asP2;B3fc)%B>xK!44+PizhYKlTQ;lSPyHx*Jz{J8y)g5zS!+B9)^6^Ke}Z} zlQZ85ODL$c7~$;fG6emlDYqgJw2O3JynQhd<1_OnKg zSN7NK2ChOj1sA}cVBqg^uP*KfI9{L7e|TNO?#{{r2LPIPr>Sq;2P5MHkmlh>xVk^4 z3cDvRVBZCHoOw?ifH39}!CyE{7w$l$_N>Cp$n_`00GCeT0D`~h-@$`Um;+nRryKJK z8}LI1<6yY1@UY$XfBR$}Tpfnkk7^Zg&6`*P-%t*9-ctznQ5ApP>~hk#2-m0fzDhCA z0e4sqo>xA6_SbSSw6QKrgN1+zf(*G{L@*kB>lZmNGZPI*ng@{xe9$qoMk)Bi-Q{WB0@RwaN`5#E<@0Z6Nx4Fjg-F!%>117PZj z0H(pm6?XCR0Wfvc3y?o50YGw;7M>a~VD(?)0ush~Dl7;?){;;Em`#tW|3cRpAX6$M zU>MsU%J~0e_6jfuJRjJfthBv{fG;@|2EyD~g1O?7@V3M-)q>%g$FNn0Nj93Av5mDE z1@=Dh-N^zznZsz0-cfRxE&yS(frSIC#9s^ND1>~j?~Mr)C*R+S6QKInOZiAN^!Xor zZv;S#f{{>j`#kUN{63C{44-b!uni|P`*?E9U zeopO!&jWXh*lTQ|Iel9Jb6W$Es;XnC?ldTMQ;Y99>t#s=#HYu4kqJ6>1)1nB$OhKe){6Lkj*sJm%wad0iP&u86!rq~C31RtdUsDx&}X2f-B!ppK>Ibr z3EfBF*G2tr`xGpGBZ@r0hPu+K*K&%>*)M->=3ov%Wl%>Iv%;SxF(oZ(mNJcUaaPzb zay|v{Feo9~K>Y_8e}3A?xb=;aZ4bc!oOl3@?}Q36x5CsT@t@f*dt!J{%M^Cw^`YiJ zE28hdvi9*H4$y=6pIEY@yZ420S}-6cn$d zO3F0zp&^B>)c6sq}BBEAm*e6h5_2m7|^xr0G^ zB*LtKo*YCLc8mdaFa_tCehViM^a=68E`lD;v!mmOYE{93fz&38`JG2N$FkmR<#H^( zv<9s>fYs=;9+h6oV?Mk{(lWU0?(TjKnZL1^_{?E7j@C?YC+Ei>((Lnsh24p;&S8F@Q|?5z0dKfjTXi3OpV5|shL?ZpTW`vGXxV^ zGsd)Ft=d)4afJbcOymJzYiVfdb2MYhz+gjs1=qomE0z8yK@meHc+bwx?)>6HKY=QF z@cdO|a{e%T?dcGgi%GAdys!HzVjN^H_5ng}(P^;d8-`l6;)m(#o?*OD{_}dK!aFS%C zdi#^Mp*u@K`Er^?*)uq#qPH6~^g}!XRO9|*m3YRs*9%{?f!Uw`K&dB&EUZjlz-aI%I+Jyt>+X9#HxY~l-!tm?c-1&x zelkDzH4f*^*+l^lI|4q$Og4SlwlT|UwP);@WDubn1_1Ayz6t^S-@SjlxrW{&2=P-B zl0^(l}ODJ&I za?T6SC(9&-H6XE>uOjpK`n6D}hN(M>>@6^PjVAYe0F;@#Gz;8-;uUD>NXJOADVKzl zle|xPi|*$yl7>eC_Ju}1Mp0JAo4h9{s{kt`U*X;L==@5(1K@vTRd zj9#r9e#&v#Ca{<*M*e6#wD<$k^6k!R9nw40|81bWB{-BWs;eRgF)ltn9P{>um@bke z_&vAy!G283GYg9+S)NDOD{Cu8{p>%K>RegTh=!%b;`75dH;IXa3Mty7LrS2U0b1tt z<}5l@q_sReRtB5~=rC$#ty6e5mz%$j9gz|%q^BqVG)T5tVmy&g>@Xcn}R3kdbQ z2s3#Seby4H{XN-cyEdslQ*9o8>r-z~qaO|wQI>FZjqazioNr=${ygBID`g=^uHbYF z{#k#V_tCVb`|WgrQh`Dj>SmSOixX z5hO`(7_mw#WlNxgOg$6)xFS5g|2c(IUNq(PWv=#&|VzxN_ul zH6eq8kaI5_4Sj(TfHIiiCG(EHryWC~pmKt7NXNHtsMZr@q0O0O;BqSBtOvzOgLZcG zoVTV3l+BH>06F?*=8H-gV~Iw&DkONW!L@Tp->cGe00TfN2=eJqyWa+eR{GtE{o0(v z{p#^GmET%K=c!$|7~&NbB?mUBhAP!@@1&gWgABpNN#%8ZkOXZypw-^FzR?xSI|mIG z)Hx%@;0+sXx!&_ye_l&mkC^j1&GlO_(1==3dwT1iU{htEL$8_%;w0deVOugSzC) zH*O0mxIU*{eg}1K^UqfMH8oN{>(ywCuaIz=A^BzsAOfmgB2%Dd+&Vs|+45MU>AGiq zOr;;xB>vz5oYS@>NJb)Mn7a0S*i`jCT(MeNWGG$qw`hGY5OsnobU4*vWoZoJI?N#Y z9|C^9zthy+pF6vYBFypvoeP7Dmv?6T?gL;^mC69Yrq3#FZCz8IH6bycX%*F8d*Y(6 zVByvG)J6NR4MC1GwVB1FFIs(@nV!b7`V{2l>vw~7P;<|Y%X$lXl9YsohFbxhdI7Vj z{~2&LFnyur10|gZ?J82w$WKoQB=h7&f7VLC4PA8H#-TVOPKa8kO^$gN`CMX!7>#^N zv$TJ<;SIfjn{7;ki&cqA&`j;VO4=e-8L!RHaDf`DkMc7bOdOI(XK}fU8$)H$-m6L~dGh^kK#FH66=o5)fOfmtuBxZFLmnuS5?YG0RuiQQB zjrUs+H%4+xWS#p42RgR6w<+^+XvsyK0K~4}kY{wT^%h>%)7;d2LCt@%L=~mTGDTgR zAZ*T5{3U;ZagX8$!0c>H)Fg}-qxQ;ALHNH-bi(P$(VpOpWKqRzi}9uO?2{%PO{-x`qDq7!iCGHqtxffsO(CW;LY`e+yp7VvQYWiGIP z?ma~m2N7XyqdT(jWvD}KPXO3jzru2Dx6GIkuBgggC&$}&Sw^@K71}ud)l|D9FAp!t zp9(?8Xm4P1^Ib%H8(sPcUy2&V>*e7is}epL?_^Q4=%oLH-e+4Q37V` zChh(`OP9In=SQ>|e0}=8;4qTBgA=2`Y3dh6fks*=jXN zG33H!$-1&%W5%s{3;pXfV{ENd2Tw?9A9FCG8cSnpe*3~w>Ag2izj*0Kt4L#?En>_D zDq|NSthTlsy9r%|(hq~KEiR;eCj71}dgDwf=o|yJx=GLCZWr#JAeXnEN~=@ry>Ft> z)HE;IV_-+{-WnsmkA|j1YXGD0kn3-yUs%&1*Awt01pdL|)B_f$>%P1KuqJWhB*}oE z*ls=ng6*oGXpi*)?$XQ7FaR_zW0tMhF+9Qdb4hJp)`w({p|m=g@l)#`4Z%MjODAie z?v3jsk8MxbJqMjYH)a|`FV76`cyYzJ5e_?-F`09Ock8CzO^%S%6(nVYC8T?xn+4>- z=r(HT2U6%;C8kL#5U;H}v*P2V%XwaFsxRxTTA!nt1;0dWuoc0xrN8pM>wpw)Z3kkI z{VbN}E`Ved%m)Hu$NP9!5u}ZzdJ+M{9@V>8O$x@6ghblxaanaL)z|Ay`^?KEShExJ zR`nHl!#_@g9{DRNN6{+1O!(*cENY6=6FX_VQ)#++rJ-REwOeX+VdUJSbnZDXbeahG z!SBhP@t!AE)C`69Tz7v)fOxAX4(%4|2&RBII5<2J17lJre$GfSmE)reqs6`~m{Bqd zqJR<_!I`D3c`UC6-{)+Meia7Q)XR+KU3Yal`bLz;&!hRh2ugKo{7a)s!%OFcXE{7q zl#+U@JO}To3+m;awcMb@WyE{F!OYqGvHqBk=Du))OLuTY${4>)vPZRElBF;k!Pf01b;EfH-VtK3bJNEGRA!_3O zhBAZgXC;bIo9CA z1|=cnb7~WzEK!M(SkwNT{Irruzkp{#S!*)~?@^z$gN>>Ji)WMyyKjqXL)(^^9{?;w zY2a$m=FuYNshHY*c{8WNS}x?l`TUK$$I=R;`j*N0@LMLnq=rQhF_Pc^DDLM1Rom6+ zUUcmn-K54&<@p4bfkbpy6Jpad+f22#N2F@{tfh%Ww`xy(EoyvD{xYB3_;S^GN{|n9n)^A)IV>N= zz3u|gwnT7({R3z=gB!`+R}33NlK%B!7Evdyxk1Eg7b=Q|YsY~rrNtu^Vhq>X)vUtK z{nxLhD;<9DfOzu48z-S=q2UVOW@d1w?Woe;H+A{c*^5(NXFINEsxlCgTBX9p!(-63 zRjON~L}Jk2eYDMMqe1o6GC_)IjewE0L^vjhOng;#{yqkV3U@_*P`Jql!=}^^@j^87 zNlCdrm%o&_n`y=Mmn@3V+14LJkX8KjWHDtoJJPxNA*uz`Y6#(D*o22<#Q4E&{%}Z0 z=S9N76QwhGOFsN4VJG=9o#%jC(|94QBCA|gE9o!ikyzMk(b?6LD|u{Y1?ut8wMOLT zLMTDlo58$6c+_XT(n2YC17#ZSbzlhP2T#4T~4$zM`aon-x6j|vFK6xQ<%QyP4z+CnkNKX9f=dZzq} zYw*LV;ISN)G1UQ)qO*PXk{r?EHfi6?oMy^4$noPB`DuA-y2OoUd!KR}crRM29hK#6 zAtsCT=<1{MXMIUGb?>!4%F17>tJ(5R5#gOSabElG!KAx7wkh-SJ)aKp7XCO``~ShY z3K%9V#n!01Rrra(;o2&Leof*828xWSwQvje&t2!kj4_}2d%CeoGaPS%p{X? zb6ae{6mNFSOKM`Pa_^ApBQ4K8osHvASY6G0_vU)8Dt0o74v#>2JIN1ab29R5$+VfLS^Bb(VDPx1; zyd|AygUNW0_^(C*UMC=12dE>Rn&Qc3x@>ljsia68rxnLAI0}BFUUbJRH~3pLZ=XnW zYa)-UUb#p+0ssPCcah>cGrP<1a6zEgzU7*MAORnUh7TH?ilnP}*-u)sL50 zi7~NA4_}pgc+k@9)joc5_IU#gR3kB2A+quozhsI!D449HPZj&%w-!4dXNZKFR_ZGTII+yN@5A{Aj(t^diL+MF#!xnod$Q%ie5hWA~T?_$U0I zVXFZC0kqgFh@d2NV`Mq?Xuu9M&C|%o&Gx>2JyxjP+^!Hx48;#ou>-KQF$fX=lMm7C zvj7Vd{jaF;uYG`F7&v!uz5wYi@(X1D>^FmL=&iA1nE_Y<2Qz$u0I(|+V6Y2}7l48J zFs{M(`@eyFJ9)r1{33h)&qDBE@pxTX-5`60#9SkX8jO1pT+@GWBYzMYfFM}^gCKxW zFVcV(@dT*9uI$0uGJx1&2`E4jV0@513`kvN1|)%QHeiZQh(&v)LGDe5W;QGY3J_NR z*G~f8MgZ_Oz|a4Sxp3bG)WyUq2x{GG9zQq$k;kAwvhz9UBK{;oq=)fR^$Gcvx?Le>VUY%MnxFzYm#q zB6!v2FLJ+FS)XD{n3GfF7NO-o&kEp5H9ru%N*tJGU|TZMmz?3=;+wHFa;YIjAg=Bd2MC`0Ny#A=O8{cJ*|C5HT#X4 z6f|8`^}RrkQy#GxX+q8VaG_mY4Bv+&l@+qCk3yoF$#!P- z#unCiE?)Lh#A)UuYbYyM_MgVKc3CI+mgf2OY0YpNsgt|6UT>kGk8&~*N$?BTUR4&hXcyQVbJzDE>GX*Ikl0c}; z$^m66j}L~Y^M2&o;Cr>Hoc~F*1|GC4Sdt-LON9MSmUL$WPM45=DiLSs)6kcu^Rr97 z%L$I!&YpbnWjWNasjp6$R^tyOm!;5UyN;g8T0KZ+Hw=XJrv{ydL2y8kmH{1O7>Ktn zwGpxvNKWDRrFRrux~Qly23>)k`%L?t&hk6&O=0BZ;GYH0`>?i|z5v3oep!VOvWh4 z$%)(8uz=cg>ZkbW9^jZ6Tz0MoCo2faqHU|DGK#BrB;@QcR!TI4lcr!-+nl*)u=}We zXncAFmA)Wv>0t56%F4>eiV7^yvq3tk4&+t!C$0D6>yTH{=@0h1+~BsJE-RDeRm z#x@6yZ-RalP|+kxKJ%w|#9dszL}E$EP6zE_R6Xn=yo2NA)$Gg=j#=(e1XLz@baeDo zr7pH+FrSdzG7poOT0t1%Aa>?SUmHVpLM=DsH)<3Apv^P62*koqfdc+^;rKcuF9^lf)#bp&4*@W2zS|L$UQ{y@~90C?glcV+* z`h((V9d2>;CNif}(v|raFJEd@HfI}hkCm!E+}pD)26-mZ?a?`^J+A$lfaF_tmY{KT zI$m5_$_uiOSd&kJV`pGdyMbgzNQ#NQ^<*p5tm6SGqYkG#9`EX6tKPu~8)a%N$*!(< z5se?_bwLlpvTI#sfK%jwppItM4(%5K!8=MA7a{u$HIdHkQh>7`9tH^*0{VdQmNM0dqYEPsn^4NCs^)+ zEzM8XnK%$qG=Q$u zYHw|)MwUU4Ssl*kCf^t?BJjv2^c6J zo0$-0=$n~?umQqO-|>5CytwHhPYaSu!KncFDe#6$o?U>TUs4d9y`JrZ1JXq<3CF+3 z9ob`Jd)(Vh`SE%m>VJ7+)zOi=)Cs`P&4=Lr|A%P{5yubhFO-njSbv7kp64wXdytUu zp{TvxKVUns(IDZ$SfvNqv-;ha=;?8ZsX?)^uk@OnQIRh|XWnu`PEIcM>)pl8oTa(Q zUuZP6w7KF}wScefn7xRIO~}l}(Ocnoo`skvVK`G;s`fRZLpquY^c>e0a8p9?I(d&? zQC+9{B7$&<9SS^ev`15fyFY8Bw5A-Al&C-ItqC~M>4Y5$xLCjLi%*ITN(Yhfl(+4Y zot+tyyFa-XRr9ODW9H^&pBQyw(a_TyA1CkHJGhF0u!OM-865fSdEqfH?HbQ!oNLED zR8-V=k$i#k&5f|&YYoMZi3?pLBkQotW_COFlk24|$K%n!wFULovnG)LW5PF>)reK1 zS=vETeuoO;3A&3^vA1+nvVD|VNUe);t%s7^*c5gjeLcQi1JGeB)F<2_g+Tns&$`(4yie}ej`h(vQh)vB)o6b zk36S_#kTn3qi&ANe;jVCpfb&v>@`Ui`@V`GkXQe70i5Z$cvo#Q^S*fet=%Y6fYW+k zU*$qLEMAFzv7EyJ8QF`I?d>b1f36OkpD&j`aagiQdQAm? zSMgdihQf)U^;&=|Mo4I}0f!}7fAL6qpraM(Fil$<*7FIl;-JNa#?&J44gLqQj2@^( z^?YvBY!rORjDac*FD`H)8YfC`oZa{?JyX0s;$#nm%k+IANFl-|4n`-b{piy;!KCW3 z+aSL&oDHkU*&1Nt8LO^WKZ zb}*JBCr`I-=%7did3`8bv$Cc0BK}*mILtM%16}c%}p2G*<(23mhnZbX~dZF zk3wO+O3y3A?xP)OmctUOLI2(5@f1U~0S3_PJODVf#h>@pttU!YP{Vv^+LEEJ{fWS- z_VF%(E-SWl2R|e%M~<)Bj7FMK6yeZDUdI6qZpY=5WG~JW*f}heMDcqgn(kJr%MU?T zS23S#RpTnrC=K(?_T9DSI7NzS+A3MAGrHqViPv^qm5I~8VEpN)F(RCC+-;@EjTs)m zQA5o5?;~Dx#r@Ya6rb&|GslwQyDgJc!0TDxdkh_UYhPy2LY?TYi6eYU#`lgoG-mOo zb7c6;-NCP1P(`pOtNCgqUrw5~AirE@uW*A%y~A^T&qvlk&a77LW2}~ehP^Dy?#jwL z)*082uLCddqob;5uTj+k5}+iWFFrxF!sfzC{i6iUB}7zFm6lbT{6zGa~TG01DN>*xX`<196grOwUq_7g>8 zI1mskP)duAZ60%{o9-_LY3>VR21>5ROnq561qgpWn=o*jXZZFu+#gfdULB#C_4PO0 z5bobKG&D|6OWigw2!8(jxfy6SSRJRNq1+GPWoT`C0%WufGGmgJ6g{WQwTZbL9s;vM zkz21@6faXZD~(IN&0)k8ynS<}LYC$z(*3n%IqqmvlbYG4gs#SsdfCr{E+$r*#uV>8 z`W?{yauf-lo>}Jc4PA<-A25zC0hi;^@sWyH72lnIuv(~h8DdqLwK&cK8X=R4)a#f6 z^aN5ta>AquA6wA<-)zxbyj z*$+d5Zlf?oyT`kBe4&(B;@}ok$opCF)0?r#ahxe>N@OWff@zEiCq5^jziQlpD6JF+sHBt!jO4)1 zXg&-q?Rj95)Mdi@Ysk$Yo$g|pnvQ(>Yp1=bV9;6|hSK|@-Yu=5;gX3q6qKljyZTw} zk>YunH+AyL@RTma+b=$~>F4Ly|7rFyvp?S-7muP251~&-@4B$1h6)Y=g#QVgOpBvx zI?qoVAq+azxLk!z3r)8pYhS0!cR$nw)@Y7Zx_mN)xm!Y$%faxtJD+9{I9^H10-fxC zs@0nuqSl@)u}ivivq^M{WNWY!122c#Bwaz>4Xm%PdDdH9Gt{nYT-u1Hp?pj8m91&do1FmKg#ZkaZxQlq zeOjNZ9nB5i-U~gA)~)a=ncC6m3hRllgUHIt67%XKlkMylIn9bqOiX>ZPN8^O^vbKf z!g^jzLU$5gaV`34@pOB%HDB<$(CyR>5RzI^EN?2TBDd!2+>J+dRYUkD_yHaCI_f#t zfi;f1x%xJ)MqgHh6#G0Xx>basVqlXZv5+%9vhz zrk+Wkl@KKF0&)|$O89H4w|2snA1-pxBaY%3mJ>LQ-***9Kk$9@F+KV$!MZj#;D*hy zI->b#wQgrj$ZQ4sGcgzOCdp+r^ z3Bd%<#`U8gL+}YxwJKyK5yMD;8^-Z9VPIk)e00R+VD&ruDEx=~9o=hD8ElQZ9*ZP^ zr}SMBZj#h(gc7YQUfNS|4XS7 z;9cyt3RgsY#nmJ&jBm@B`s#71aWG#NUoBc9tfv)8w^ZBtPZjeblTJx|BBE5)Joz%k z3f&Y6vzAlfEX-c##u-Dn#N9q`97u&5G3#D^Hul`B{R24~e%7b5e`o>3o6}!9>`bUe z(Vd)TfA8{qJtUc<+N(lXF=GIzqo(H8?(k?QjVSu?i7Fs^F;hv)eX3n*=r8FKj@$nz z{at!`fi;1O^UPPs{$v^{XlWcps$FRFsf&eZP{`@ThQo5|^`!(5&h%4Fj%VumRh#X9 z2Tr4JMkdHcJ@H5lW}^co;zYUgl_ZC@M696s`^)xUS$s>>;^-;~o?Bd>7HQygmLw+o z#p`*#7$*jqou@-$kiLzKaDdG1r#0OQ%x(*B38)Y|*<;9 z>0Hey<7D*8oMjdF3~4!x0rCgz3lj;SFEQ?CYgP!6la+^m3RmHpQczW1}C$Qwzz{ zsKpz5d!tk_oGm@^R@RAZ)bWBAWfsx1g<5Yj$~Eq%TO}^vcc9R6l)9(M$T~hL=Wco{ zqrGd(K~`X-mAqv54B^*^xM;3rw^$&~73u6cKC7PySA+p8@A%7?Crd1$0S*kNoB5Sa zx1i9@TxjWu^oIcW!(dpu@2tw3c92B2ytzt}Fd*$~8Ey3!O^%I?9}w(dwH+E7I$R?y zIAAq+0^8`AfB>^ly*XN24zYQ6g#uB_NB|Gjpo#B7SD6x;&ofGeX+}=SO-M>@msq~j zAmT!A#l3<@6F+@6AcI)r3$4D+*n_YW%%xv&37*w_z33Vdp%7mtt45e6pJD?(T%y1# z-Dk>{LsVnwlt-+MqxiM{^$0#W)Rhn$M~Bfp6-edP12l-5ngPth)|ONqc+@rEgsFUx zHjcPpAO;%pggHkJn?QJIntl{MnktMJs6|6XbIqh{J>&`ysr_2p(A(Ps#XxdpYA4m_B!~{#=wMn8Ml>Z72sR_lpzhuS5vu>GbuBD28yepZH z-ojcM=N=jJN~t=mzMEf%#oIcL<)#sop1L_a7DSrZ`<|4 zHwxbw(r?E`M>pAan$~2c2D$iD6#Rf3oN+2Dib5)JM;*+mA#b?rzK#$=@?VyPR^UM9 zZ1cX3fnTm%6jKO;EZkAeu0Dn2UtXt z#~e;mu99=x_+pxt`_>P7Tcu)(yp~l%Hx^enLo;Ipm>{)zD0KuWKJVspn^&I|c^o4k zUU1GC?pay6tc0U%kmHQeM~;V+%0XPjm8;dnp@YF$z(}#sb%F;S25u?+L~b@RvXVArX>j#biSp-A|)bPZ?j81|&p?mS0QzDSc{Gd%8-QS;vz$Yd%`kZHwH*r?grB_U_Hro07HHzmiCXY^dRh5-{ z%=J)9UWazCC>vxAt%`gbh<+OcZPT{fPA*U(1raZZNLjd0Zca^(A1)F=GLWLVxzEcLP+q zn!D)iE-Wcw4{{}fwE5Qve$xw>iza)yH17r>7EVsi|LaR3oR3y+XI-TD ziQCvb1VNOZnVD}_mt-iK6@#ngYeDc!1zv$!8-!jSV6gTDLZGi!1_q1s_h4ZilT<&3 zShF;mhbJcbnvYw5&n-n)5#u!+|YFmeUHNyj{qjLMwG7r$bZDN_n@n*8;4>J&9SU(W30D5OW++? zEoT?tcKN%Rp%8;4$3=zI&Uk$AKONw2kTBIC2^=mgFWx$MJTeY-*^9 z!o|_dBs4x=6Q7XK_aS8W#NO66AU*wEU_n}4(B-Sutn56$v^tq!m1j9W6;yQ)u+;ct zNo+EyT;2ACZQwKIQd+VUT5u@Ff(!b8{etJ>;sUiZIpUK-U>m1vg1?f3@sZ}%)+8Vx zpyK2t0Ht(nY-|S7vqyHn!N$eKb#!*Vc>NkVH!qKWLh`4hG7QWDxr(GKn47M$ZIkXm z9G}QzD^*oYGc&VTwfH#tFx3}lF0WqEOs^QiMdnR}i|l5}dtP}!P4%*!9kccM2EL~5#UVSS<8d>sI#B}!OP;_Vn9`i(c9rQ%UEG+ zE-^7ozpC(GlHit{wg(3ocU}B=z1!*2#H6If-QC%2d65PM;fpbNWfO&!&`DfGsGpE0t4;ta7 z78bIIE01WrOcDxQ_dej*+2v>EHRwuG_PFU()ZzJ&{%%3Mpzb5g?X}Yd-&D@UHwX`- z2q-|{mpAR)G&6$^OfaP)@1vq<#Kc2?Er<06Mn)RAx9opi25UK71G@3e&Y{N=bQR@* zt?zi6KKI9hLT*G04zk%A(EznE^j10+LojJ1M>2kGiiah=)v}!^Y$CV2OXqYK6C>m zKoSMMn!cAzMvsohn8QD*Q&oATgBkrWElPlSBeo6BZx6xV9!*(Itwmux^m40df0E%$2NZ}b+Mbev zu`LZPA?GM(2$6-A-ur{XWMTqd^z!oZfG_gIIV{L)668c6Fd*4jq2zVUk}z z0Ag6!_hXbhW0@RxNKDKo-8n_HHoGDvPvbMB8)OZM;U1Nd zk!gu5SsyIWwT8dAw&yP%-`>iyn*Ev>D`vqK|enA=&})05PpZXXW4To5!;@cXKG-?um5 zJeVRc_0g&`f~!9t!K=jgBmq=iOO5vh0W&UtHTk!?<4yZFAcEWaF9*&D>;mVg<44{& zU-R`Ld2JOmXG$dW6be)|<{C^4uDvM?kF(2hi`a;yqg&&cw@V+2UQ6{iX7uv&mQN%PXlP8TmwRvy4YRu*9xS2te;0qYY*kPY9V+|;%jSw9{gu)?6#`VWAo(|n zu>Aa5UX#zKMNQSxSSLz<#6fImoK>$a;X$Y#Ue5{ENzU8rT?FVSA?T+xo%Shk0maH* zjVR*z#NaD0934(qdJ4t_5)-cl)ThC|-JkJ#O#b>)|mm{e7sXj;9|#lZ955WU`WhQVu+z-s^Mo_e&9qC!6G<{$YJ3!vEh>-jqLWR8wcJ=vR^tK9cwk&M3L@r4 zAOhN2bJJY1OgR`Sw&Eo6dlBu`oTa_D`Dj9PEVP<4(p}W@(>iNvjlX!@HwkO?;t?C0}m7FKC zM)9$9k)+k}VfG=$-$Jn6;p-Z1%yLt(b3a9GdXPgObEyO>i9aA%MzDDmxFRVf3~p*Pr=0v#K+a1SncD~&t+=Xgf0#Y zD5gimY1tt2HT&3J*V`#+THMyq80`9-vbo>;jL*U%cT#>F-#7mR&z=)g*YlR~?%-ON zjU{s)%E(bRoZ(uh?c{zxEFSzEUOSF~5y2n61)`_n7Y&S7xdp{%Y(eI(<>k12Tb z&PDL49S^7`RpimC8ESU8al>2bwM>hP7kN1W;23N*mS(hbR)Utd^3QV*LXy z!^6Zf(jCXMg|ZYNH0PFH;Pp5?mGm+P)sg{lKm?LMJM=i)WiiK};)+_7cwnhrWB)7Z z`?oA68>X=!QMxG{!?t!*zUE8njKMc7TBabMbjRs$F>7CI>o!+C#8kPsEGB%Nz0QFS z&+9*-4bo%_S?ouneYWmVvV zCBj+Mv%ueGj@C1ra#Kf1u8_>-q08~9}8g5Ctu62C&zCySD z@G1usN#wR3eRK0mL`cl$R?hnlDcREr#UeNFMbRa4d_r6T@H8XOSvqr`#VbH;j@*O^ z91%IBXj*BA1aTAa?uU&_1B&$NTsgpoF%(w3ten(r??t z)7oW0t%yLu7SlYNlL-lEs$r(d=k7T@Jy~RYR<_OU!fi4ygu~-;!83jOqUn7tMWriy z^6vTNvC-npr4)J;TzJe8E)3xYw zDak;$;9yhO{_XuO>9}}6)hY|qQ5?w-THlpg)SX$d5jNqiaq9C}cJ zY|wEy$JJ88H(Ofx6U@J%9hry_-Sht8*K$uyY~>9ZnC~`UPwzP!-cbve8cNGWhf*jc9U{{1VhLW3kOPjob6>GKu8u0IU=2dK`0XhBTKPk zAQrar#ks^-W*3*W5e+r?U{vjyypBRs@+;u_BNGc0@YvegJ{VC7YZe*v_9z}G z!V6S%Sb;J>6CqiWxQDA?< zT5KVKr1XNZ=w#9HVk8AXP12X z&Xgm0KHeM~GB;}iXivbnh(tx*b{dv4Z6kL zNUr|!sbA<;st&uP`t2EBu&JU1MIf;>wF6rJ5&yG{g&BxS>|!kTn_1}b@EA7-s` z-1_=iY)@XqexYN-7{~%X;rem#CZMjMvRq@46A@wllAs3MDg+q~)OQ8nYMC{ zAD&m?d-}Ij4M@RD?noSV00}C()3Kuj)-AuhFlJ)J0xQuW4Z~{K=kh(q% zDr9_D2dsqzonCW*jAQ^X=Up`vPbVz{m=HA3xwund{U{hYwe(HkhK%*RwW-k3VEVCZ z@XcibS9yZr%n@iS6TM6VyI(>5@M#}EeQMFV zKPQz%=C$sV7MjnWy|z8n=V(WKTw`(@khd|(4qsvwT(|_vHvPyq z#PWg*CyYmr-1G*0T|vM@sG6@C2IK+yO=T59c7YWfBR2F)K>Em9(ps)1g&0L5v4 zF07li2)+Ln&SR2G%u|qmjE9eJjywFW@U=noZn@TnZc}ZVMyr zy_J7W^b-%CxG|N;H1J82XK$aP=N`VKiCm4^=IZ;33cA4OwszItJ(B%{G%!4tGO4X( zt*tw={OG{h9@3e8Q|;JNY8uJ=IEWP=Ty4F+07gB50+c%OV*r`ld;*2pMl zQX_q$8ShCB}Ya(C+n>c^)D7GIx)F1YxVR?@&lHZtv6QHMo9yme3Z=PM3dg;hpq@U2wPuBY4JDjPl5irO+!jT|T9Bvy ziXDktl9`cVuO0@n9ew2$7SzV(GkbY?$kplYtVy>5g(xb*(&py-g99COKhyI}z*PjY zrYdS`1`QiC*<5_BzF&pkny%n(3;ncGISCRO!vuc%O)gOjRC_kPW_8(x$#`lT4GmsD zJG&pLj);efQ|~4+orxnN_YY);K)Fm-4`J`SM{pi?9XzgE=!r>WtZ$zS`?08AG093w zE^gb~Iq6$kV8pIxKmjAje5Ea^yO@HJTJWN+tE{RjUhj&aBl_HeQY5+k0o6OMu4c9TB zf_MNd3CIG6S@G;J9vZeY7eV&nr3V%MbwZ-LM>T)T(9g7T5Ar}Vs&rMdZY6L+1-c%})Q z4eE5Nb}0-`E6fPfiN~ORjLs2hv%6-BIZJdoKAZ=rh2-KeXTfmq#0abmvo!iXco#ZV zX5@KdJcN&6yfkA?2-VuY3x@!Xldpv8e<9HrA+pqT(^b{Qgep-OnDo)AMuml2m1*Kq zYV%}1*B36_*%>ekU*RKbtI8~$mZDEYJD;>hTYuT@ipn9gYHewO!`HWUSh4v8GdE?R zrmp@O2wLrpMn3mQV?F^tpr)ou|JMOkBKGiKI9@<&f>D4nHk-76IS%0$y2NQ1`9)!Z zQttY_y@MtyNkL7#M&`SHjF%tI*(S0nzasIpy3SYZW7FwA5OjOo+~UU7Y%S>}Ic~;) zMhCNiSTh^%@S8A%f{8hQ361`Mbc^C4Z*B*>NlsLJM4m9+njx&?eUDx57e40zR+W?8 z@*>ZeBS?eC>QkZ16DbBw9xRE@3fre!=vyvQjdi#UME9xnk@&?rY71mr_QYdMyV=@Ru-3S( z|9$U+K-m!l$|+7m)s_ep_z-610w5ApsPv#g1lVeb-(zA5oIx}LG4Tg7R;2&V^O&Uo zZmil3suj=$f3y7zQftrQ727|Q4&iC-{}fv9J5-E1GOpBko^jY<`rR}EB$10^ku0wT z{=v|Jljz^pJ(%$-umMhoWi?6ZAk6fPt#Rz@yofIM^>upY(_cE0Y8&Y#=vzZQA7g^C*T}_GMm4NFc_Popv!ad`&LkwKtWA6Fg_lUnM9M=6@XlD=7i^o$6s@zX@;y zL)6yk!J7P&j)u6bn?mW{Jm@9>Y3L~@n6H6!h>NG7ypB%5P_doGR4F-p9wD<1yt}*B z*XU@y%b?N1;^JlyRKoG|^MiK-k&6tVlK(Su0WZ1@=0te+N0}|GjpWYNX|YNod?e~* zF|G4GIkyvjvgQ#nV1YjCUxB=Y9pm?@{l5@~_>cyqoS=g{r2EA}I_vtwr=Z)6g1r1k ztovJfwqf?eKxZ!$;CK9wSAs4eD5-jj?DVU>9ZZcM114>x_5|~s5mMWtxT&lFsg$*& z|M^B)`NPPF@?D>!jg99|oiIbooDpm4wehXy*7`7Br~qk#`%yZr_C?>7N7B>eGi8r6Xd zLYI(PTpZDoq^_aKc9Y@3O-M)xnA}&UrYKum5F{l2yIJUI>IhZL{3m_&XBr5Y?6l(+ zw`eAmMwIHu^Ywm?+uVz0JB~U61Ny1rCZHS2FA;boqzAnsP?A3^`M=G!7$Z1QGE+*e zwBPq3E`UI0!g~RG-!PHIi^1JTx7q=rB@p99h1DGRV-}#OO5h_24Q*R20+d=3-M=>O zE(lK4)U3hKZ2_T)rzg+=gtlQFYe2yv6dE`I;RXo3^WH;lZpuBY{DZTz4}pP5Jw2aW zqypOLfj*)g%=MqzpnnPxz!~?Z22h?cF)?YCKkz~A5th`20YznnZ|pEUo?aOl8G57f zAqOWm?ce?FZTFgKK-E9w%yUI{ejAL#+$3NytWV${~X(K7S|=7vmdOi5d_}>hh#OF(GCp={zkfhMGcv+ zxX145>SA>tbC^3dGBq_lh`Bwvm0DbR0+Ytdi)%7Z4{H5gtTzb1vY5d*`*_!SU-$mw zfliloh7ltr2SnI??-A&I5QY%e_d>mZ0=5x@tE6o{9Gn6`Z~dR5uVpA@jNuKM2oZAI zt=ROvd+n;jz|e#7l*fN4t(Fa+yk%yl=bI<#&k_I>Gk_a&2`_@h=DDuG{mk&eIrkf( zT(G=0dpkcVWgfN;S<8cfA4qX^7(7Zm2tYT6&#%zdj+O@ga`pd~cl~n;!D(Wi`2bRY zWCqA`Efvw}insbksP^VkcNJ;=$tYK;F$Yu3OWRvplhb~8>F38&?Hs3^mI>`{83_Br z_ouo&@tgz{dsY@4OgAaL!*%Z1=V_*LV$8SsrgHO{%B9z7)$v0fiJO~o>Lpgx?vzLu z*PLfEr)Ar7HDbfE=VEeIkwMxu=Zk}`B}F&WWq`lrKs?!>9^5ponDc`yJX5pwiAq!m>j>!jh&$L)U`==tJHK4D8HW}VcHci+kB$t|!^Vxi$)VRF_SL|OjO25-(KEHTK zZGApPS=4A&j_K{4j48w<9x@r?5$0kqdw$wcS3XO2pwyx_{nluZHzKMUXu z3O(B?fZY)eWGOyXRlL)a${kMDX5HL3b-VVnTK2!%>59pD0f7gYsyU0g7u#V0oUdCr z=dSDQjp`Q})bii7o|0DZ*tPF|#s3^i24$W7Frb2wDWQW+W8LpRexO5p;DsB|@t&Q( z7ZnGMKt9ahY#ED{$O9?TpV3YHc=Y4gu9HaO{{ghY97LQ57$(+y`aV6Gm6PWmmBv_$ z=--?dL)nwdFhy>o;|23Qt)P&IvuOi#;AreGAPtg|w7H#<;o;-;MOX4&fMNq2k7Mhq ztY;-ZM3oU(%~c{aelQRQ=u_JqsWKaT$>HVDyTpa-sj`F%r%^s&7y00wbx+EThpezX zRYpq8VFU5?y}==MPO?vrjf>?v6Mrbc%1YAOO4HHTiNN?nP*8B7LDxDqHrBVchklL2 zH3Q_#0sY>~ZH#A%pxT~szfD(JgaD$xSH>!QgjACt<^87P$XBI8lZR+xoUbD>C%I zApHVRE(t{2m<;}%aUIoPKNjbD)MINg6S&fbO%M1PIho$-QD@~rOxhG zpQ*7rY&`st`R?s?pWwmqZUA6u0Q^lnt_oK zc)iiDgwn1!n2J~3#ZQ)w$@nS!0cXH=L%|R14c+;yZhH)lK^G=jJ1L-iibz7 z3tf6yS=kky_c=PN+A{Hwnu=;uTiXMGc8fmuX=v)32MCGGnef~_GDY%UESoE=YQdxr zjhs+GRu(&t*AmB^=Xwkfez3=Wyn@E<+^5iR==Zt!7oh``vg9_)MuZe}FpJ%UmOSZZ zvS8yu(|UFxCe~Qz43U=BI)|rYo&`1ISd?iEF8Y!jt1F3al%?KHUx}Ek#chAn`9O)RDPD!`lC3t(Fh> z!q7}=z1ocvGfX-T^qA4HVA-E^_rX|WO%u0Ej_Qx`^3xOD6gcCteH5g34mc8dC9Pm; zaoL4zI!e*`dYmhnEX+JpTfmQoHx*X-BQ(4DH#arebW-u-`3%2XUtK+ZFE>2@94$MbBv$3!<>FXUPjPQ5yEjaq=i6;Tc!l(L$_DwlbF-Vh}kvPf+9#sj^MkPN8m=du`1wdr=_LwzP8Ex zxJG!KY+P9M?OTYS?9oz2LqFi_?~Xf(Vp%;=1JEft0vIN_R#@+j zq=XmdxveK*yuEeNN%@GYTwQ_9gO`vgwwp?R5Knpt9SJ}o;$+V?iOQO) zB4-zi9mm>(7URm^c*g`D`t={545H*RLK!>n(q6p+;OuVN1&{7k`L^~0AR})ucnd2(Ts2xdSgZ4v?MXjB`5k)vlui8X zo0dk+A3osrf*)Q|PXWhiXC`o9;4Sb=dv^f-NB|IY zUn?P<+UpWmWU;b6MA&(Jr=r^Lu$X5~AaXUT!%%@nwGwHTh)_{&UrIyAq;fA~4-VlN z9&_D+=N!d=2HwQnOB9H;Tz*w>gEB916_bdPE5(YKW{`)!Yoygcc1zoASY zmHOG=R1TtNhfxUoe>`BB+m%S&18^IR^%TbIT~l$|rbXrkohEY>GpRcqphK=*jyR%F zWU%FSRs+Vb4{>ze(LuuLp{+V-SvwrO*$~KG40EMB}rYl#`JXw^cx~u(X`;oa^lk znSYE7R>!Ml;2L<-;0jX5zd>>jDmld!BBH04zV%q<4qRuW6qZ_hx>NWUUmWWSzwHkL zRcY;Sc7$&ZtzC{!)vEfj?k-uq&J*sJdHR)|_IZ6SF5saUS9f&5(yvHEd?jA*J6uc( zp`etTjduZC?P212dx<0ffHNWTQJRP-h{^i}99$$0N~yru{mi`bzF(b|IeecFLU$lb zrP-lnbe5Y9;(1}oAWabZKGv!U0rIV9;d2DwPG{7s0Wv>pwMTVNK?W>Uj|oJ6b5wCB zKYyTtrl?{^@1>r|_O8A>lL`8SLUuEQ!&4+|@kR?X0dPrOG_Q-QI%O$9tG4~00=7pS zfv`VV9NJ|Qft5Hs5j0x*86*mqk!f6rbg`I5cd@_nRs@pROrlsUjynEEUHS9G1P?kX z*9TFmq4-n~d^Ng(g5d|p$FI&88Ux^yPfrWWN|q03+|Ma)WZ@3FV+?HW^nt{5=L_fw zP9NEZ2C?4$^hoV8n27l}8s2wCP^8+vC;sP8GfefAn1nze&*5;>*gSQ3@U6(jXB#xf z0Fa594zL2SL1o`ibct;?D+;RQ2O5}?{KrdYO(vL9Lo+5Bk7M6QUfB~~j-iq?db{uI zUTl&U*e#Jx*@3Tne>d)2+1WpLN1p7V4`U?l4e#pe>T=%_#=D8;YFvBXByO=FbbO-! zRZUqRh{q1F4&D{)fC>}4^1|7k)398-kX|!3SnkoXy$&VddwwpBtq368S3Jrg!~m)AM89{PSM6E zhktserVoVb>dMMrL04Mh&{rEF>5__d7Gatwd!tRIW{n8O*oFd#>f((gx^y}GQ$|Dp~4pBU?(+yc0I)wF`Yrm=R^ zCr-foPP_3@n+!oFTq`iFO-bjs%1C*2xcv#KK7uYLeihz#e7YNI-SzJ#WImY#O-j+i z;AE_@GhvWaP!X`zxVTi>Yq9y7)~uW-yZMG#2G#7YZ1?~bPjQok=kQn?bN!n>+Ztn8 zZ}^0YJrno^2c{zijWQ!R()p9mn8X8E%y$PGAoM6lX{7($9nHvJ=(;U?vr$I0u(~-( z1(DTaGR-jpO6obcW0g7FYO`Ijo5Lhss)ldax(wQ&gSbH7G~X$sAvN|5EwD%i5W)q_ z6i>!MYBMqj+vO6MS_w>Fhmx1FEb)Yh>9>?~=mLDOE?CP7SbqMidk6y}`?ipwf;c-< zUm^C(ph%@)~k%sh8)g~wvt=O8p5n&kdso>eWsjf(#n5>U_b=!ON>kOp2u1)mE|aBr=w`WB^S zlLdO6yzjj{S>7GFyqv{I6)9(%toX&nZ8;T6-7af$4@#)FH6t8P==nO?mm@aPN1yf0 zUfZl3ph(BE1nf!_w@#zI7g?Sta~B5nba+n|d$mvm#JX4wEnn$jRUEtN_iW&JU|iuB zFVg>_4lLs0UM51i5^>x;bf5?HRFAjE0S=RHXlrhql0ujpXgD8UaXvOWX8R_ws>Jwc zOxKf6EJb3}3IKH6H2*}X{w@>C^y+M6knVbE$ZVwG~f$>!|Gb0Pe**1BvP^!M)sE3kI$F_+@HEu4^J)muU8Bz_!ssGI<36T?%ym zEzD0l;8H}^FD{*zc|w#ooP+2j=2*|p^60GCMoyi7Py&yHg2Xu=AmYZQ#|goIRHV1uyy3NV^~@=Zj;3cEhLMgbHd#LA+F|7dPLZ)M;v>0Pcs8xsuyQ8&0veiZNxl;r>3D+mQh`O6@c zM>u7(ig3TlT#QbO(jYDfsM;RZ95*8&vAPli0BbXheg08qnx@BLBuBAx)s{p?(kVwt zAuzHjDfmoApgIj1TcE&(X+m~ziBcN5x#_!4;nV?oi)kg3XPi*`S`yU07Med*2gSUg zo-;GRKl}qJ&!vT^8JtW(JOJrRR{gTZ1X4-+DZShtm6sbIpYTXlPAg%|9wnRA%3wEA z-$yqnRIlJ_ruL0=Jc}w2g>h+|a0Nt2^78ZQ9pa%qNAtVCJ2#)RI+(GSJDw&EsuC?? z!q^lm=7ki7 zFx>r}7qG<{!-xBG6?|2dD;d&s21!T8dV~`#A207w80+4*oy54^2@NKl>dyeJE56-c z-R#rD1n#hQVJg)-fMGws&m$(&VW(+*fW0v#=`+KgIcXM4DJ0;8?1hpeQpPQJYU zYtVl|_5K9a|FAHk`ruheNJs#phTd-@ItW-MtZBFm$!yrp`V(uQ&1TR^X0TQXqJY*K zu_fRvutAqQ){ITNjO8I9+ynv6@TXkg6zcQKNc&UGmQPv+d{!x5L)DH@_BKYESY2&RCE< zvrU{tMa3+46b%F3Mzld_@!|A#N70kH0KP)+{p*M_R0wzMNuCqH3Oz&qJz4zCdI8U? zIPj7(0NR7)8lT#BzG=Dk38+!E`s39#7RCAp70}Dqba?s=T%(M%w4SM6TN+iEt&&n? zTet#QTlJNjy!KOko_XnO9)Im@^JN#oO2+%rk@~u2$kzT@fvMc`@aHc9qel0PrPgeB zPE*62<7R!jx?!cI93!J+k62iIDsF~iFK(3A_fE^Wg@)9ZW9RkVcbCbDQ^f8GPc0>c z^X|$D3eqpr8xC*GbyF~x$F01N#~69|c#f7PXKEL{%=fRVJWDRelN+K#&9|qQZ1b)& z>$cq=wkL#y2{aB5voCCJBG4Jrd5M*AI}O~nKQP@BCJ(FNY+%$D_Cz%CgfDgVc6i;e z)?X32Y`uH6xj#8MNfycd@FBL*+S<*fh}rr_mQ}JR*5k6i|J?z3(2rps6Isag!-F9 z1UsK@FAR=x0E!Ljnt>Pu1xOHF&fJ49-Dl;~v$EjnzV{W$kdCphFhPXj(4_3q$wvx$ zKjiL!3hljTap|ktHDjfV_L-f=L$mwRUKy({HCH2JBM+&lV3?Sg0GPbqZ{KUBHrUT{ z9)sv}4eHVM_350{T{k{Bx_bmkPD=9IqoNAABtf4PE-){(I11c7_J_FG*|C9ae$vTf zBENxsErpCSG6HvTX$z5?oBQ%kaq&7qXD8Fx5EQZ^#l$?b6jNgPI!k>kAb<+us^p}| z;0rAjWUT#GEjk7UhQ-aze76i0*oB&N%GO3N9AwO+b^qo&(e}l+#$k&sh^1JK-8u5w zO5@0Ny*<);29|>th2y}={k=Hg`d#Jo_Pid_WkD`bi~?W^lzZh3Xv7@T3e!S!ZujS9 z)?D=g%bL5FH|K3?T55qoL1qCHc_CqK1)eigQ{Qop?612X47heIFn9F(eUc!*@u(?6 zJUI{g8L%9Gmr&Y}LwP#vGSijl_~ZMmcX#`?#yst5v8`q#IO_Zd4ki zTS~e?Lb|(Cqy&_P4bmmu-JR0;-FxcHnfJ^&@89ot{+pTKu=lf{d);fTYprWt>z1ic z_npVx`S~?1ZN|m$hTZ(RI*+#6YhSaz^M_xpY;Q*9y0f~@gQU9^UTJ>svMVkwN(w7Y zTNB^DOiqWStyN8)f4!s=X~_DFH#(Z*DX0U9{f5Z6_k)~#+)Um&qTSd=1>%3o={U{3 zA$}I`XXLSY?Uu6F?{X`Ub1_O{Rdbiu@ubj9(caOG>0ADGVQnGg)MksHjvJqbX4Qgz zs6nKon6Zyo=UkCg>k0yK@0&g3YcOb_9 z6k|F6#pQtf@bcLuWZ%git zsK>s7Z|X7{pBWb66?U^oof_2jxB**U}i3{;5H%A7loXjY zn|A<;gp>1C)Au2<%zgzS?XrPgQM9YOq1{QjAd%TZseTKJo?6+VtVDS9w(@Dn-o)i+2rxu+s1If+q z$l+PWCQm89yH+|gpTe+|Qko6l%enV9F)`W9S#_NKy52nC=>p~X#748`9Zc9fccUxW zhFM5B-mBJr$b+=Wt?!HcU7CBaL0>MA~{L+6Obj9*7;uoATPv)qqBiogEM-5Mg(p+DzAu8aSDC zhkZYPKE*G0mVXNV1tkv_&CPSe_NH%YSg?>#2VSVb_0H6JV`yF8eA!CX!i03(Y<>YY ztwrOcE4#b5_qy?RGe!1z(9vx-G(9{T|7Qb1Wnbz1NQlEEhhT~G^YJL5-Ocg2!>bc2 ztb-{rn7!rU-8oG7%MepzHzrc6narkL+2kF{+Pg~)VY#2Omz;wEdyuI*{zvLW>0>s& zU%4&ML&hH5x_vG*KOQTjXK85*#z*iHuCFXMQ@PE6sa~sif9Flb^Uyxdaa2JrSyu#E zzdHtH=YB@R_6r@@$4?4*%Idzwaw1`Dgo4T%iLf)?Y^`&q)&5h}8TaOiA!iPll=f`r zL5X>lb!F$LMQg$LSbh5`WkFhu%=V9bm}hcS8ks$GwZ?Z4TlOe z?XKL`*R?f8oW-}p3-DC)Gcqy}j~UwD5v|-g)1Cu;2J{PUOZJ#DVj$EQqdXWL> zq7(XZ%5c7LPd)e0eO3*W{>Q#tMc0lv&Y;j+m3@)5slr5Lj zjijkGEEsm0zp**ldJTrEf5uUY(E5y8y=tFVk9zw!nd;K5r@LEE6_{cegnf-+#V>HRvBh663T(;$H{M``q5=HG!Dz{GRE7mCi# zgv@9DmsEFqDbJ(cdN{6a)$t55BQ}A@0#kQ*DZH+*C@7L&$}4@ss~n@9QP8%%*VEil z9ULl=QcFK?nQ20>!;g;{PZ`lS$vU5E;u>Xriv|pke@%P)t!VWN4J!8#&U!a;(72F7 zuu-Gd%xA6&Cn_>6vW;J?78$vze;j#j&63~z7wq*9;@iK`VS!uV__(^dDj`uHO3Hr* zmFx!dE3?wqhGwW58s>A4%}lHa`!I4Q{fip}>x+}Y%R{rf*-^hqK&Y8Cppp7l5AW?m8N9VnWDPoOzl)P#L0NqS zusoAffRJUeZNI$+__c4yUFD34&kf9G`OFn%r@o7laiiQlb0^*^s zf5_NsNoGH5P~LO>%JOobY^v1~cFmj+X5=PG&023I<>5#jg~0N1r8zb;bK~G=o{&23 zk%o!PS{Z*LduUbY^WP-;Si~^-`)#ia$6JP5;Pu->T0s*X=%0E=NBinw+u8lRPwYra z<&R}3p8}{m@b#D7Sl9#${q9PPTUd7|D080s;Tw}wAMPB$?p4h?2Y7iV=MaoBWJRUD zoTX*?INOkO&~ArT3|TWgb$l^aLDZ9~^jOs6U=ag?Pc5vhq2GW#7#sb9(*WPe9#FTO zp>w-B=Aa@0Xrgcj-?J!F`0VjOpN@d%i*S@xepA~dp|&cV}m( z0e|X_OZhZ|Z96D!TOSS?hJ_7Q7}Iw@dHlt7++$>9RB!E=A?3sI^9Mx3Kw=s26@dbe zqd>!o4ItDJTF`@e+2Id#fN}>20jrXn-0bVbdrYu#U;(a0l7gKbLZ#|>hVNX12rll;B{oEro;(*5^m(bm@RK9!U#&39$1 zO%nrdIBtl?nrra$kByM)OO4)Sc3dFqV-->-zn;;Eg09TyVHu9I1*xs|$0Z(OwWSOU z3u^}T{$*~+B_W;f)%h^X03BrtF0&Gtyggw6!W+;rn*=U<9Gwmo9Zxh*PhpuvfizD# zE9=L79ffX2(^mgd^1)7KJT_j(%h}GTX?|X1(C3po;z=oJsC!~)Z2itv1ZrgCsxLA= z{aI_HtPI}zXo$A1ra7;21!3O6IQmBBl$SI=H3s9<3Wz>U=GHpd~Dt^~rZ|Hjk!fI=!RHrXn1f8&pEZq4y zCaTT34<^@j*aP$WWA=sX5WqP1OLZ3{u)Ylzh~n(bdlJMb8~i9Tb$Wkm5h31LqIIQf zsqY7fsCLznfXcE^V;ui9AukH3@z@h{E&HuQ!ZC=e^p^9A>!&S2PdGuyk`1a$*DNgj z+{Ollc#%C%`1{)g^nI|$TDPsroZbj^-j3xCLjEQ4`jAcsblA?zvdav*D5+^?frRs* z)9xt#^N5WGETQk6iz1O}Y2N#SHwb4}`H=elaUlB=YS{CJa;w)F>8P(`nxgE%8&L0U zFJCPL|7TZl7^vmq3BDi}7{O44dO%C%S+E)!lZ-DYV&JWlD<^eUjy3(PukTYQ1y5BC z4dNx7lRe-G=Wr?~yaDy~??vpK>8tt&xPR7o{T%Nge;uI7M7_t z7*Pd~eyuEP2W$~m(3?K36mmZm5LtP`TK1{5P~2d}x;IrYbn!g11-eibULEa0d`y=7 zzBQxUd#>qi0}&k{2f_WWUH>2hmdADnq0(|5!U%5_Sh^VOP+|7(OhIld#j`=#jHvEBmECwguw$p8q3VIyBTNCX{l+FrJ$ z^x9t@Gf2owcXWNKARq-}nqi;?0gunDy>^I2%tinhtRL#?H0t;^H5S1bB3K~F4`^%H zL^vP((ALW3{2yx#!KW-KHJ*igwhVS*mo{FDgz1W;Nu+z6a=J3!9AZIy>XI*k(wrm? z%p7*?-Y96j{r&u;le-oto0Yq-&oTU`(o%DhlyC0$>s^Jgh{b)1Xp1qEGS1?4m^vaT z;8_h0o>9}}FOcth0wUohQ%wBpg%fU1FkZU$Be9uf2Zff!!wnWp_I=m6J*DvRg+FXr zPk(Osk|xgM8;PKZ$b@RH?Rlq-|Fi)$m^RYg99p$tRMNP-0v)NHW-IB2d5>7Vx;~lNw9r7=0jhDg-#a(BUhdxfsutl@lSr5+lh{c% z4HVd4I6Kpby~JET=$m%jd0wh5IFVRYR1XK*+y)bZ9y2EXJN%BjFP)s^=bUTI&xDS5 zr-|XO&I~*7;C4W1znn^1Muu^%FS(7^^@mQNn8glfWk=VtfRGSMTH4+Y2OChJFu^y} z)5FOFvf@ASvlU;f`E^CpWqkgO!|%8U676iY@9Sdz=gYG55eKs)3pG|yR!rMI z&tPJ`VXH-@mSF_HKBs3FU2Mm7|du9$R^NnQjYS{m(ib>*O=xYb>a2NXzJ`pC_F@ z7uYBfjMr!UMF6Df#~aw)9Y50Q0>P?@#S?N!uLeWcwri6YfXG;NSYGo%@=dk&8c%^5 z{V75IB@kTDyDtoggcdW^55L*l1HHy}F}~FF%2(~0q2_Q+raLPy<-TyTG9*^1MtRF< zcYW1jXJt*q9fJzA2;J!s0@L>o562HbYY){xKk+E(8@rG-WP4eTLOkpK+;f{!RAnl(W^tTsRi0ggWjxGhvb zBHAI8t1JSO3r}TrZ#w6;*MN@FHRw))f}CM~5?B*qM}Swp3J-UkXg5T3eVq6cz_#HQ zQs{uy@rEQ&T@&^25SqT?cysg!3l)7KVft%bgu}a`3ldTio)xl_wn|7MZ;Sg8rb;9mgoLk_%&(7jxruRq09mpg|DV6hOt`kpmr{(NI-6Nde8muUU*?ok zkh~cf6T`wfyMp1d{FW18?E&7E^9zIO^3PEXja??R8B*GG1{u-Kf+h-{A%vtKx4GYO z!7jX?130C;8OmTmSr)Gtl$m3CPt1)`U;?_98HX}{P7d8zcTPobM9Bq#S{ z(yyS%Wj+fE3XY6R@=j#WYx*%q29%ImCI%z#-81>ppCy;BzajI3AV2E|WswTj@%D58 zDFOH+XEkMd+#_DPy7ZmVjErXvL_q9zq{BaS`mLoQqOma@89(fPM8qEGGmz6?>m08V zfbD4+MPEro0x;VFd)AuaQVJJFF6=RIfCl2IdS;8df|GIcb$5?|0?Wld!ouu~CfJ;e zClp?YmRd>?#@l?b*b>krx4M!5L~_5DRaGpL<|)&L0z^&fykkO9PJc`OMm^FeJcn{^B8688XqC zLu&qj%g-WC{`QJytv|U3$D@<}W%?#R)oXzWR zevUi4J+L(#YPAV1t0InaN@|&!k~*o21XF$FXD7Su!QRH{&gIfD*0ppd;!R24h;5ce z2(`aPw6DN&m^>5Kju^mGhe{cbCW7YA-)fa?!5mCWKyC@UgWr9#hNb;tgYG9^O8&i@ zIin4Ynm^=4P>P@I1FV=-Cg#RHcXSi8b&fm$aRI?j6#q%66a})9 z$qQ7@7no@H%v$Xyfb8u)^&n?PQbekoG=zjVhE$AR&yNcxe>OV+lhjatV_;y<5m%3k zx;}?|NuNVVom+uYc8XPEAYqIw=|24mtQ?ncF~yIRh9>Q$nAS7_h`d;8Gnhmq1w^V%O=n<4C za_B-&mc#lG+6wdk*EBHTcE;r}VA33Jlpo}g*UXzEczqMO4|my!!QO*Z8WM;4PqGvN zRm8y0Vv^r%?`z(yTiu0K$wnmrLzibnX)W~F((s~d&Daarw*!MJlGXo`Gqvw=c->8BN%<}ACK4f0*e!f zDQ10bI8TX)&tl$IWPE|yzgeboyPM3vKlbF9S+l>x%JYnlYeDDMv!8t+kHBZY{>m{- z`TR0mM-TqGshJ8reZ4QW&D#CyRPY`u>H_P&uoHq|t|9vAeomhL`j3Vb_qp~dB682# zm}t+T@6Sy$Yv{t0K|54cO|6`c$GM&Ov%shO^c)>4HzH-E#l=7+JQv~filr!8934Ij z8__x@D23EcC!IpYDgI6j7&s}dG{2(OSo$AAt~xv-xVUyaPUwEdXKi1;oLU^hbu~5s z)u(KkM_7&e?XjoX?}V@S85h4>gG&=muEPOm*gGun9?tl(wx;F?nA|4s^AX^SysG@0%~j z=@jGY;$rQ3DeRmUttH_waSUW3b}0ScT-@z6IKC&HbYH&^`N4~fgYf*R53I~vBXRpz zRpkafGj+uky^}WkHezOPfcX{^Ml#|N zc3_Gfk^@Bepp1O*5!&l`d^e|k4TtnM(e{N~?tAVh9w!C!H?vI1JqE+=80vUL>;iX7 zED)wbmH1Ap>r0haAI9ezspcr`Fq(acEt;-jec8Rf6EiL@EyofhRb-xZYPLmYN-PF7-=IRyM*{su&lB-sXtssSo z{i+Gb%4B8aTP_{#t!A{{C0f&*PuqfiMhs}p3MNq>OqsLvlz(^YqxJ4ADJXcYruFKp zOn)eh027mJPd<<$H+OGz^gQt{Vq_jm@}4-jP-sN_c0WHq-(Wb8&3V&r{guSBuC9T> zD@?MPLT}#Nt4U)lsrRqG)?ct#ZN5nDe0Ny8mc;o5IUC6Tu`lj7uIK*nwk_QW?HJ9n$a5KzSsMd9E z3{AT~+XyZ0Su+|5PuOeoZOuiLWzs@ag=F+_QE4j9d!iDwnROSjTKB@SKm2u^A;lMivpgwg5a z5oKUiBt4vD=mZI?ljSZcufx(;#wVRBn*ss?MP(;#(kdssu;nDSd_v4}xT-=z?_Vio zA>v$tg?eM^i{MWm_}D%PyrI|&@DJc*Cp~FBOo1`QC=2U#h!JYGP}YRM1eKJEB*n1x z&?6>d&N@<7&Q_tcZwel{6%`tvOXn53!ukV5F*I8)?aevtW_tYN2kq@c**G|;844J> zkoxTm`B_N9nO2j%_~%hUg3+W}k9%-4z91UWz?j@H`;*kXPY5ySpmcd-rgm zwBa(!h>hyr$*%8P0#3xTBmO+DORMue-Jj`sJQ{lj4vV69eN|I@Y@O?J<|$gA&&H}|~NOu)82*sX^757Sjv+i0JPiWvLnrTJCxNyH72s&71UV5)i& zfH~-dB8rP6(x9@lvx8pLQ*D9iyOCg5Bw{#{^tUc%qGFftB&@cv3HKWE$R7*Yr{=7Y zMO4Rd;*ga+?F!;Sra`1|a_^#}R}QEhy*k?)DzdO>gox9!<48Q!ur{ zgIU92HVnW`a5Kc*U$bD&e*B1oNykX*FmSO|H9~l9^i@=pHt>UUkM)833s2ZEM$@}K z9WN>k{ddoT1GEe@5o}YI8|Y@ML@^F@8m}7N7VXkwL4XT?U-sjzDgrJVu5Rr%mdANs zTxxT$Uu&yVDqgS>d%u9)GrcTw68^nS!8ANzPyx#`*-znTFjeldmAs~*+n?jX%4e-c z9eE1 z4{zVB*S<}In<3={@1}ljPZs!4a>QzGu=IDXI`bi7HCPOeSbbKg*VFdM>vGfca{W&0 zbLr?OlH2UN6Rh_{Ys*tQBa4R(5r+rBt}vGzjKJVIH`MTP8nKLyv}=nN`gL0U;P} zCM3R;6Z{6SD}1i{!T>o>m6n!PN_TPjYVgeCrF1?G;`z{KVXi~2ypk8y?Q{1Ie*2T5 z(NQJ_2FWDs=-9-}L=o?DMX%{i6jW<|P4KjKC&KXHR6w9{xB$nr9?Y)b#e%u6ASkVX zYCY1{Ix=20@1e4^q)*-nGykem`*s#`r4p6!<%>&dB{C9XHUIYq3wutAUde}9Fx<<) zd8Cp9^Q!>n_alsnTy{Yc#d=11f6g-QZ0=6taeqqutvBq)@bG9$4ep+w{eszOn26mw zV&Gxs!AA67pC}hbM*!>zKUHIg2d@v+`YJ@^0{uBdlg&?I$J?lxMrFET^_<&iCT?yG z%$@lscH0(01<#)Ww2E)cifCpr;e4$^Bw2t3H_GjN_yfT4nr5!?Yhgb?tCS0T{j z#av}a$b}IPcu}9Bt*7PgJJzSsSfqf~Yiy8%Jn~8r*qRR5weARgh+p0d^i_nz&G7R> zo#+JHQ$!~#tMu#LD##O&mX@Pf77w|gpg2i$jpX{nc6s~7JgeKWao~fVJgNnMCC9Dc zHN6P7ou@xRJYQl3rqvHN%>VhVxGTTBTkQ}YUfL`uU^qIG?(Yd8CyP_jz6i0HdxiJ3 zut>?P?&?y}t8N)=frqYF4*_?;(F54eBs87qi1Vgt!v49S?e!r{=lV#Hkc=n}U+8Cu zfw8fqjt(SF^kZOP%(&216mt;aJz~V_RP79ys+L&r3@WGxZTjF=rvrO*hn^Q|jbJ9Qjf9Js7`;I8a}@%`6;pU{^F3Jx3Cgj1~#lUth?LpXgR$R*ibPM zzh3aik8urkj$JB^*SyR=ge$)Ba5Emr%adgV1(K*}XfzBAUAHJA2k4fTmP3=13^X(} zIK;%nJ_tJ=2GBgx=KY_YLotjvpq*fJh9(iE@&!fFnU5F89e*A1+5$PJxt5l;(40C6i2~~CU>1eEfF0ycRJh!w;J}L^=uy0H0 z;(EKZGw5LtydJC!Iv>E7sH9o{A}bqS-;(%W$CL_$Aoq6g{`z@h z`tQfU)qB2ucDo{fCk4XjYBJ2QKedB%N=jMim>6AEjW=4w zk>{cF=bu|U78e)0tiWZv^!oRPPP8z8`NMJbDAtTY10pvxT$bRP0M@lj*w{qwOlULP zz~YPpk92_tQi6XIWoVjMUmp8nVM$tAroMM@=o;NJS86nj{>5YQdM-vm1*4A4b#9cJ ziUdHGwYU8Ti1?RA-oe;TetjSdd_g3O+ahPzkM4TM%ujcMPrg&M!s|j^CECAtl_=JX zn8(I=0OaIk}5AhuBa|+3Ct^0j33aCdytn9@MBH9$G%K0B^wsfK^NtU?d<}!w-i# z0Gf$FEq4cMx%xd#4;B&@owmm;P2ZVDnnDo54-Txm`hLWX7D`j|@$vnyauB+v z!9-G{!Gou`P$ab z4&Dgw!z7)0%9y*m`_RY;HJI3pii@k{p~LX0Q1Eiy7yYM)tR^4f=8zH>kMBJnJ@Be| z;=N`ofT6DjXG32fG7%Z~l};F*G3u_^<3%&Bx;AKR%iB!pNec6nJsER}jJCc3Z*d zjq_Vj`R%KJ#X{gHFP6|jirK>Zsvjo?j^rB-9Tjok5#kxigiB0( z_3X`g^o|=a>SHL(gJ#>S=1@pO^&6zA$)tgLrAiMT@3dR&#FV7Cl~(yBsk?@bb~*zm z1I_XwTxv>z>#|HRy%-HtySs`t91YA|)W>T~EiL2o){G`A>RxDH?F2{Ne-vC-fzYkL zeTs}J`Y&(|utrci!4Cj$j|RLwYSY!kpGT+t^RdON$-rv1JjjiWjl0H<`h5I+;lO=% z90&LLFL}ZL1PO|BSa;`@dwXOTT^jomN=iO%d*4*385mgqVuXcvgusg)K~WZn(n2~Q z4b=r#0YwT{h?kckAe-whXGsw0kqJ>Xr zLL3~7{X%vMjn{4CYVZP`$WXh-G(vfB6_WVR;QAlQcz8%iHx#OKa8`BRoeN)=jJ-s! zt3owWRZWN!ZiYa;?Y}ymKV@yG2a%E37aIeLHBN^?Z{w)AicBlAOcHlyE2N>g1q734 z?*ZidEv(&&Lvs*lMFpCa04sqO*yw?+*nLWa+KNvrmM|Zsu=_TCx$zn1$KY@XOOu_Q zt-*SjWiO0Q78QW&MazG35^K7XJGe}8=FC2uq3lpYH+lIFOs5LxR(X2%RYqPOr4?!A zthaZElQNu&l1)iZUk}bmi&ztc=~OH1-^1-+3V#4*l7IvknkI>eh#ZZ3{yaPS!7?BJ z(KV5+QEslmyzbh{vy*5++I~RUEBS=v&o>{GV^fLMl>qA1-wwc4-Ff-+aN4f+sD5N@ zF0Np6Q(jBez#ylHnQ8FEa%p)PE^GT=$9+)n71B5Q&6NZDWo2a;FPV=3XeTkv`M{fk z?um4F4>zJrCAxG*^{*g~(-CBmR?xfyEU5pb#KX@Gf~-qP+CRu)hmO)6@>%; zH-NH(2#VGaf}m9ZRk#^P&gysvd&izK{rr_1EKF0bbGv>a8syX6$lfCKkN2>!5=x*M z$isi1fuLH?T+62w#h7!yL;XJg9c;X;3}9#wWb5>c zi@GkEU=5p+VwqOsvEO+0J);OLZ4jeKp%EThas)4#UJgIl@N{qs7GzegseQKV{*`0y9 zYCA^pp8$Zg*V*xDcY(6;>W|dg$tVxI%D_$u2CZ*Or#o{D{~5T&!@1cI1RSY>5=yrA z(x5)wYWJvFVp>|wJcOaE3s_cq=wIG{a#;}LoIfad@v|S5BO_Mho9#`3f-oryi>tDiYi8vE z*MkK#<5hck;M`+pzE77Soqt!ekv~K5k@CtuJ)5+{&uwV9$)sjuXE&IxwEY+sWGmnE z0u97Wh2JxvKQh|5XNNz+2%#4pBte@5V3{-xkEbj2=iP)ut7m_h!P3S*r_VwF(%zlj z{WP{++u^OLI?X-ZU0L}M5)y`D&*FMgT>jLQ|B#)Xt$U-aignS(&(8L{NpFaen{XAxmdC zWv-QAKvOL3(>$277nX~b39yaUZ?w;HV9uo8E$)I`;75>aE#3Y1a3tSzi;K0`n}x48 z0^b4wr!S#4mH*E8ODNyDJ^no)6Z5C;$Jhr*@eom7L3Mg$P*-2f<}{&W45(R(SC z6q>~9OM~6;te{*hWqo@J4H|!`$+Qjr8Qs4E8K$k$?RNUL-}TO}BjU>@X_Z(BGqWxD zn>w(i{(6nuLly^T>F;9MKMLBCuh{(blV01*H9aS^~>JYNT$9Da7TS>IocO$!*CF;X=<)vzG+ zNy=}s?;*s(1XyhD?L{7b{21V|w(*HxQd$}#L45%LfJTsM{RIX5;otwbwGsetWc&nu zlvKjRJS_kaE8|Mw?DujhYH`TyL#{;y&G*RcOj2CV-Y_J0lgzlIGh?Ee94 z|LB4If1l0%*E#&xIsEDz7H}69br*3+A7VGD5D~;9X)`e~v2hAAAtGMDy_><4TL5!- zQ86*pK*|Y+OwIv~CV+e?ZtP80*N?cEm>54Uw2PYq_uaj{xW-!{wML5?Q86)pfoMOt z1i-rS_eTQcwD_5s89%ON4@x!x0cx;9I#TOl9kqaf%=ho#JN*#I(Eib1t9B0O<`SZ4 zp<0fLO?!k*aY0XtmCTr_9l#-gM*%lsrWKE zIU&Jh5naGQMJ4~ey`%Kt5hbXHQbcsfz;xjTlIrX0=VoLqu#%?+zcfwMf)#Y%g$@_16($JXyK;T<-RT&d(>P zp0~BPcQ(%Q@9pDq@d13WQl+G%q~@Ykddb6$^OOdFZ5eAK zEKL3A5c5>UnkjhpM_?~8H5Zp04i3GsRw})`$pgS`ogpE zu~CABE;wY(_y#2lOmB^6=xXcgsM#o$(xYpDBAjw`bT^L>h4{V#V01xEY=q=AtV>NBOxK@8G&VwPYKZXL%B& zBK5!+kx#^~reg(^)yR0bc!oxzP+_h4TJdKUm;N2*CXZD7t#|!(z zFPstii0LRPQ$8}jqp-aTz{!AFUr<#-xHk7<(P`B5T&Q6Rfr0Da+A;%0o8iq=M(^^c z?w@85rY@bF=cNtaeY zK)~wGWJS5-zV@w{HIKj>I6ww|NQbrN;|0A8ylOoYHhAf1PG~c+oK5)mx|iQIvc&-s z0N4=OoiISvAVpcM|TepDM_K#Z$S41OSS$W_(B`>WvkgJ3SM>}1Q@`RoOXc*ydji~T*~4A zWq&6^OS8W)bpZ=@BbA)S&UBU2gSZ9e3fJ{h)bW4BO?})lKgO60*O6 zo~=?84lXq_^Qm_~dYd3a>ygDv@Kx|*_ykyDo{wi%&7MUis^QohQCK8fA zwE(4N6fXAFk3C<4Y)@;2y!<@C$$PH1*Y;?y^xfvy1n}Vf2X%ym4-3!_G`w8-tHngc zB$f28^V9H~9+n-po_{z+T*4=TXYG=i*s+2OTMf>S$E5iAB=t#?VmGq>{bfdGW-)!f z5W`j%Cy&67p^+axoXf{LifF<~atR1LW*t%Yj~n0H64(V1iIv*Vu(quctHg+zUj`l0*CE~Kmew)5NQF?%M!flObIwHTu{CYMF zR&1IFTY5Cyb(gj0hT0*#{qmY6DD|@#5|2qp9@=j1Y(<)nTbX)!`3)Y~Rv6Asy*~5R zy3WAB!0K6jGM-ykr;@F*Q{kaiFs4#iV=un7rN~XJ#HP(L^ zp43UG1|at`tR|0bhYy@2sc&xVjAd|Auxf)D85+V((@SeF7(5o-ccWvHS~psg<<7oE z^p8hw`colUo>=d?x;~ccx|=Ow4Vb>-ko~7mO3USF6htMI=fX7a7md-mCw{_u{iEmb{_YB1@}e5bQ6`K zw;wk|5ka6aiv8XOt5NBz`G}z?J+%s#T(bS|t7aHu*f6$x2+^q<0MldceV4AW}}O&i|du)`e|QOTvC?)z?t5voO||6{p zag?Es$+>H9QiWbo^5`^tR*ieO#&m%rY=?N>x$((^o0ursaI~B9=7+A#B7dOk_{ZUO zYAPn#)19fux{Hf!f}Avqi`YZc3#!myW7sRxwSQV<)Q0QQpBuPATE|NGcxnJoROXC^;oeQxQxvWLIDt% zj*+X(Ma3HD?MjZSuU(&`9$rod+=cR>_oID+Xsaf$6iNjhJHxtrW3bMjBux*^3qR7} zDvsaTk*V=$cymCEhJuGpmruZ=~i|Rc39vk{L zZfx$x2giRtu7O`BW@&Ki@48?1HrN$4ihgJ)%J61N>0@~C@bV(RmwR+{^l?IB;%26o zif}e~c?|@6h-V*fZ=X-9R*H2{v@@K4t+el~K~p)dYb>xR?zZ{TF@JV^Y+ARMraf72 z(*OuXTaK`2;nfp7?qxOgPv!T??V^2rNVyQ5zMLII-?%+kkdM2||KX8eqWHOFv~xBO zk6~U35M8-CR}07Ov4uKC4Q92gRcTxut%jd{D_JZFVne8K+#)hCcTSWEkq0Yl#|=A9 zWs|U-&o@j#bF3%}hg-LEKXsaGzW+YfQ-tvPlo~h^@9W$r<16o!3xme;v3AB58n>oo zF{E&DmrnK%9T$)#QB23?26I{P4l)$VvNb)wfQ7*{qvPhe7PDKEAz29~T@v!C+|wQm ztUt91!CQC%woh^nO$`kO(4QLk6-H+e-mRqAKFc6(8bJ^j&O{|#wXL;`=MWj)5n?n6UCHj-@FA?s7Cw$%M{!rf947 zM|yI5#=(@LeUc<>WN-lNJY!g{)VmUxfKLr>t4T<+P7DVZ<2pl$%=admm$RwpsA(Td zX*=C!c-+?d(@M%o4dAnghpTKk5@E4B!TNf+_q3nztwm6Li1$19z`_deoYR_)yY7Jp z(^y1K)#Ez#ZnE(ES%!#w?+&a3`dznr5o^@7s0d99j#gRfDR1E6FDcFXws0QG%gPqp zR#eJqJ0B7EpXv$~M% z9do}mh%CQu)r&7IF&Cq3ePd@{*O)P_RrY%Sxl;`$g|?O!mE~^gWfZ{+{Il}%lR{1n zY)JFD-SwNLGdxN12;*i={AnF8{X@=rgl9W2&Tto@@rQwnO(ZOm6!#CmKky90fS^er zcyGKj-yWE-S`TA_&XcC_*vqkhkJR*aqG4ryuCs&8-hUxh4$j;_p|#90S%V|Z^)~UQ zd+mF!S?Xf7n_6RgOJMAiN~=L*)ZV-oN62Zzk4guyA}ThhT4|gr&FiPLD6wtp*VahY z>MBK-;}ulnJ9NC_V~U1ylFhlzatjJx;zZ-DY~Ix6=2yuB+t~^xHh3puw5(>KKdByS z7zM@;uF@>pJjr<#3nXFsNoKP9Y4BNI7k+KCBQ>hjt9-PStf0o;t>eX_QK_llF*W7V zaEHg#Gv10@-`RZLaxV1RS$lamUdKt@2q8GeLF%1D-20Q`&e6|A49t&5oQV4A5fN(u zX2=PHJ;OLg+Y@mzYIlUOai+HbUX7JO%`-enL;d8!`D#q|a{9wQdkRJx22j2(VgWjL z5b1Hzt-am&nH0tbPpXf|{eJvaR*_k&h)T|DS*P&zvZ78O%4H?xP-|RS5uNDWqSI!K zb6`Aech&{j%L&9g+E)h_qod;Ei;u7gvnQ-YL>;JCUbclXv2h4c#;!AW*~#z5{=_fc zf^TWZFy~OXIvB8#l$L$X@X=y8A8T*S7Vp03eT9CZZz`UxaZ_9>URT{VDRoY-+XeuZ ze5L72SpMkH%YN^g=Al4t;hRqJ067yRY-)w`yY#`sU`OF0azcTKQ~`HwzS>&DWtV#g z)L=kkh|$Hb=%wIHrF}Lap_#~bLvU|7CeSgXG(+hOXCU<3SxFOxTUn^Dus?y>a1VuFh26NWU#u0b8}XV z1YmgktG0j}l{s1YJuB>{C9_eChjA@PU)Zvua({#=aw)q-?mKmLqc8sv&C%rb9R2t z6IU@nDMN~-uMT%SJC-ze&9|8PBKGo)gM+`tV~zX@ax79_rZRQP=NyB}O^u{3Sgjrs zZqMKlJj{LVlapb?3VtSZ1)P(Y6ZIp$-3?wON>Q_NGW(bmu_)P6?CFUJ2!PK6XnpsSZoPYPOiH z*EYFX(_pF~)f>rWds$Wv;!|3tw_{L+kee0(B#!b!~; zD_>>e1Cz;NCemlm^)st9(|JrLA z5vJWpS-McO)>aF?BPeyX+_Yutik$d5^2S$2OD0^TT^j7SMz!wTkB(h`&qq%d^rl2L z4@=|IDkP@r!pw_Gp%o2IB79uiU7P&03&Q$uf)Dr1{BGA!giBSs*twH5L&>^ zL~kHSfC>y~K%SMmz2B&AwD8?&*`aMESNUwlFeyAWMG>L^nqM5oF|FR{&g7K($4E=3sT(jv6xV;yV5oK5+!)qUyo*r@HiSj!C# z-E8U_6}gI@ye{BTQL=ZS^gZ<-8JQbQK%l|=f26%-R9#K8E{eMchhPDMySoGr?(PuW z-62SVyL)hVx8NS!-GaN@nS9@V-{kCZ#{F~0SU(n%*}b}}tE#K3tDYjVByM8hhBtf| zxtB^Qtg*Shi7JHT11Q2%LA(I9upT0R#sqEAOXLUTk7;a}!Br`hx#5XtU_1ix)pc}u zbP@|4C4`JRv^I|H0gB%LEW=810e3-%PjmGHdOfgCTjNNCCDUJHkC)gETl(J>j7cKQ zGJJ=bON@BAl|Aw~+E)J-9x-c*Un#8c&fxQt4QUSka)aV2a+04nP=R*A<)DKja3cd`mhAfkylssAcZ|g%}KF7Dn@TY{d`h9S-2-KACIkBjJMy z8cXY-u}~?SPSlWcb3j`M5DwE=*c;4Mp8Bet9yZ|s-I!<-w=)cX^%z2gqPR@lsq3|m z^FBB{T$<|`1DPjk)pgK6k!8R>b@Yc?QCQ;Q^Jq9oKZ_I$QmeRMXCFMI_%XfDIfk|) z{LvX62-FK0KC`}@3<$Fx5tq5S^PiQRk-cm^eZ%LGo5pmChoAm4q{*lKF?Bg=PyMJ5dB|-l&9cZW_sE%IYeg*Z$<>VmZCxnF91Tp!Dh|v@39L7ve9` zcfO`bMl&Sx5QEYds<|)Mr6B!Bf+KNS2V|$1Ofr}xo##x@YnKTL&c0Ozf0l>>WJa>EKClufixkPIA)?d#Q5SYQ`HQ-)AnDN(%8HRDk8C})=9%1iDL~loh)4`Vmx~pa|wwvnAZ`2<}dLGhxo+n@{iN@4ObmV^k8EKL&au{$h9Xl5s~b?!*P$M|`uneli9d2nnOm>SmV${BPS=Z~K;n_eVA?WoP#wwF&^9S0WHm86btOEE; zJ=BS^RCWrBW$^QKQ43@0(EMD`GrkUv2FbE)Q@g$+~(y z?cAf4I^}|r2lz7#YPh`IT+NQD!tihEg07Us%)FC?Y5P@5{REJA3dc>I9oB$Mcx?lw z?C+cP^{g>pA+696*^$qmaQH_)f7R;Yf;OesN&p% zsit<0lim4N*g7GycDyN_8Le$;VOZzT$If%%A9dUAkE~H5(&ee_r(g1)6tK+N1%t*t zju%;ho0wRjK*gx}Exn&Vq0Tfxw_3L&HAEJGS=yEvxV*-nwE*V&%@+g~4C&do6eNtE zMkvrs%Z*c=${)2h=W6f<@Rw;?P})SIt*5e=%|YYR*!!qbUg0C9)ZmYEF!_X(P5N4^^! znVFu?Mea1Vt5V(QcSsbm9=uIV1cw<|jlG9qkTpMS4gfYBle7Y4Z;+s}jD3o+PsYX@PRRBP^Al zV5=Vb$i0ffEIr~-zV=XQE0ZGLnkbP76UN|sRaxECd;kslqCTWy_haJFvyy$g8Tv&2_$+mxhXt)+$x3- zCUILnncP0=3AE#?`{71R%b}>LhPz;rAB~NFn7OI&ydE#Nb5fW{ai90Dal_h9=k&W< zC;0{Z;0cp`g4%>cJ{cY@vvMEr9LDznManlF*PYl)eQLD~Kdch%%vf0xDvsa<&?4xK zNbLzLAb>oWn3{Pcey#zKQE{ngWwKt4ab%|y#&9I~m!tV+38^e1#kqzJXk@gz&3N-~ zVIfMWNYU_&Up3|dw-_7*xxYcW|GN&BLk;0gXGh1vtFf`MSwhVxn^H7BE-otL!@1wn zv_^yhy?66pfqTY*mlf_Su_gY_o=CK6Llkkr_04|RJVORn1bZ0JcVNYOMJ)09G#slQnL>Cw1rssUaVg?5nZpNOxPOXbcipsjcbCOMb_QQ$S=nFBx2M5a;8f>A835(Rw;M|?CeLH7P|Hfepr3m>{d!0E1`tEd0j zV3ExPRv(wqJSC@{oIuZi2Nb^pl9iQJK}7|V3E4=>tCc?fumF%LMb~?e7lnAzegExV zjpl>9BIe2E{UQ|u&IBjrI_XxSUS~gX3~@sfNEo3zrd*>DC-C5QWPcI1 zC)s}aA`S-!ck+=@yQC=or5%)3-ycm(JgaLn(N%_;?q>?e5`P_LbcN6PXMYa}lc;s| za=<}~wcNI}Oumq;_Qm_KVAl77i7i1AZ_NvAi;*2`hq{|Zesfa!&JQMj-qkJy(GX(` zXJm*ye$-@oZOJyRWX{|%fjqI0uV~$H+C~!22Q0!7t)DKj+ul91df& zYDOJNftzqN{LrvXosn<|f{&nZXZ;eFj0Et4U@vZZ6QZTx!yimHY9~#$<1<1YrNL#g}k;}bIty?YFEknOW zn;QO)@JpQrxU9$@-6jhulBfyy(If{G*8IqYT}msaljmO-~Y^eQg=NjtyFtc z94(F62 z@PpX>AOK2`wFS1Yn1uP=vaMIG3AYQ|ACks$gRpRm81%Y^F^>R`)X~JfScWW>zA{Lz z>)jVpAT_wsz9Xp#nM2i z03%2;;gc_tlny3r6v*4>D-B?(pK3?qm<$~Je4t4(HudP1dPv@v#l*WzM`ku#Tx$6N z1mtYVjMNSdN&5Wuk4)H`;&c^&G7|l#(VK79oiq=tO z{OE-F_EwDN`~17Z)vQmcHr*-E!I2rW7yfDxNEVJ+It-WrX)VN1?Vi^uvjk(qgVQ1@ z@&!(F5%#p4f$n7#y@7$K#5Hdh4|Oze=d43Ny>yIepsJ2Xiw<~hbw&94M$@#|=p%Kf}QF#0($FJV#a4NSUe6($W+AF9U@# zvQp9C1}V$L!WNwd>P0cxtEJ^4;a)|d;4m$Lpp&UBL?mP>F|h`^F<<3C#h7-qoPWv}aNF{rvN<5eJ(e3*Y}Niuk%dz%SsImP7%N z3&b#`RSZMXhVd7hrbq{1#x@<7em$T1f0LL-EuFTyh-Y}1WF}w;=EGxVbqa&4p!b1A zn2za8itNtDVM>jbalhU4-zZtm%%na(K#_5gYheALUaJ)xS6%x>iZ?tf-g{#|s^k~d z=jMGg2K~_Khp{PNZ*+VRkNkP>N-SiHSQGk{s02S5s3~9>ePGex$a*zXQdxcVRnjTs zNg8jisIor*mcW^h%TWlp=+6(m(93QGjv!2KGe4_CGh-Z-ELGxtY6>0ni?Y2Cu@)@Nd>-tJxznBYDH! z^_vUnhdnZC)h{aSnEb)6L29C5-+sXN)QKMmaJF4ym6$-@?Ox;VJq*FF7FkROZU7h7 zP9`5PwSpQmDriD0GT4UV^=R?aYRbxlRpLvdsFm4&IL^RnFWaJr76Se=^))p|rUxDM zcQgnQYOYJOOw!xFpT&|p_lqdQ=Wb6|BtTER#j7CyFqUUSc>mt;O8`z_{D8l7@RCZ^?RuZTN5 zJK6)!5Ag5v0Ps#;oP0q8?ue8?Z`i9pf*`HTZY=FP2{vi;(!=KVBV zVPxd`X_9%8#RD>VCDZF(ozrnUuBYeD)YpfGyCHG-K2)`KMBG~^A_2>7PnB?Rku?vv zoBUY-ao6>X;lH0*IJGjjL=PZF47Im$Uybj+TQ5`%35GTL0-#EajxH&9<*H=xRUT$L z!AJKxY~Puc9U^w|0+$AJ?dCIZWsf0S8y(To?M}l`qiJ2&0%;$H@sRl`^89IVS|Pq1 z{*GyG7NyMuvpZE{pOhItEBtrw%KrQ&52x&PwL>kZgwfy5Vau9U78Y{PsZ5wjyswRY zg;jF3U}jVHkB?)$Je&)8f=WfvM9c=iLqp!xEg+m-A4=vGH7Qe#YsH;^lK^nDG@LD$ zXj~5P_Au6?7SuY?>}b)L=(LJs04Pg0^Vf2>cibqc_4Reb-(vTamxT+F0kE#~*gcj< z58#HrODH)wGJV$a0+4HSd)OcRCNkD*%@PJVxmO+X-)(^)Ap1*|^sB3@1JjYgF(a)* zZ?(S#qLCaB2;AfqsDU0)oTzH2lDZ6bb6dk9vL1%&ijU;^+f4Fc2m^W zJU^yklwGPu_x`>1#cHq^>pGvuM)mCbPn7Xesuh4Up@qjuFA?qw@6AAA>wT(kiSnA#^;wrRtjZfO6P?Ve9X?RJU>2PZ>{kJL&^<7Md_0Q}5H>T!$recz8$ z>*C-D7@}6fgYiFm^s>z4exx$CGW&*(F)E`d;w2tuD#$Bh)IrGYEn2SAl8sE+C}XSE zkpD@?=bAZXp*#E^8S#a{j0FLb#TO|;UG5K@ikek&7bewW^UHD-nOhl`Dw>+4fBx(? z+N&S6Z^%f8S_!NbKW(E+PM+)*j+ z#YNb#=4hc!`t|W_Vyc-!_C5hI#VGC3tkn{aE1tG~~h?*G@F%)H@-2yIX3ssReB55*9OC7b1Y8t;ZZSNZG z^SP=uDQgzk6ClGSIS>84W~py$wu#aPpk~JZ{!Os}lwgK4i6iPN?Eu2=zlDZRv6?e6 zDHt0$ey-^mZiq9xkJ_De4*w8MiP+U@Gv{n}dNkR{Nc};YjP1bO&~F$(E z@2=^VOs-3GqNNg5;?z{dK+aZM!Q&$Fv->B@P4CF?^`VLd{&yySH3#TPT)Y?onKYgf zH1C}ulJMSGw0Ct#ZWb1)vuyo#@&!Dcl!En^t62*xQD+oR0Ipc+B%!fFWd3R?_F+7dXN_ukyk|e-BlP^L5U7lGfQD1UJ@%=4Y837G# z3F+1Zz#!7mS{*a7anS)cZYfp)(BWaVN<}u7lX~2gl=6XGV4k0G0tfmSQKPWXwClHdaYL!OY1s|tO=?5HSPqC(TudGlGIQW<}D>w9^ ze-a42$N4?*@@A#xc0Qu%2FoTq| zXWz+?E#Jn+)48XveLRx?^kjc333u*$Qqo^GXOyqkTc|dUCNDTsjeM|e{igw{(cgXD zJvHM;%3YonF@pu=U06wvObuA}(O5@LzC>(S4PampvUO{9HQQi zQk}7Y8ny0#W-vVK*>`X!iM#18?fX_lsqF#9j6_)96mD^PfAmQ9N~hgK{w_AQTHk8_ z+44NlQ=_jAKD)>3U)qYV4+6Hm&xMzsCuEZQx5a?EhC=`gQ}gCzH9vX9db>U~RG=~v z`VAswbhXNffPJpVOXA;?K_@w2NvAsUbFyJ7@_XInn0R2(QvY(YsuT??lipf<0Zp&_ zO%3|xP>YA|k3|HGomc?$#i;SJ^xq8*_#zbo0(pmaK%+zT*Q+3~cc@t)d$#{<=l|W; zp#f6jll*C%H3(<-Pb>g%oT_92)D-=w_m*<(zw`pEeiFc;Ao6uo@edK-=x7K;j=o^) zU&#IGP5`V+!WWE(<1s$-Z*!aI4(Jxzhw$=U%wOGN11SgW5Cgk^Hzz&&3Zz8v6QA+W z{xz4*NnqOTjt@Yl!(S3A0QLfyD4Ya;Rs^7KrymF;M=;D^je+q?1GAQ@S#zEF`=>(1 zeZf3Y^)HqFen@(T4GfiEG>HfOuPy{^fuSOgdG8dE{IQSFV7!5DyVm-jzLM&tcaDsN zt!GwNGCT(_ZK5V+WX#3}1_#rxO1P1~Q65GRc$av7|7n1KxJiy<1FbY#RmI@++>8ax)O=Cn4Oe z4WQme$HW)_X$FkA7JT{HLsKvWc)-d*@B#~#b!y-(fTrdM)((M|=IZFEWW8D(UpVk3 z{4ghn1Z&6rsX|{~23zlAmsD^9P@e(_|Bk0t6<09upTJW)D^8n0Irb=|I_qUtz)f=xU5a) z_Rfx^r2S-$xJwD)P^>g(u#w=*IJfb*b5`Om1t^#)M{^ln34yvg`I9uqI>Dm(>&8WbO&f!OEV-F);4 ziWq-?9spD^28MPJl^k$+qM@QvqDG?vKvcwvic={QXgD}Ulep>tZcHo_CujC6;yErV zYW6FhBI@}baBOm?fr!52PCE@}_ofn)O^X3gzAJ{yzaPKh%tT!R1v(y10j-Ob*0K4gvK^r~ybX`IG5x1qFjO%EdvX4!c< z2egoqRYG(Nt$W^aUF{ z92iz@t+I{&IF`m6nIi(1ZIzlpp)-O3jYObg@!MRPdZTBMIV9qnpbWH!R{Ig6g$1=z zkp}AR>3zv{cImA~on?MI=-uyg!=n`!ltg-6Wxw)LZ9LZEikoO>x0YMijq-|$2X)4| zoI>3Wwv&~XNJw~IyVLee4Xk1JX7@TO^D>|Hb=0pxK|g;kgVkAd1QaV%3HEtjOye|S z(jsKGRA(TG?nv&;EM83S*HHba&@8|-Z&k!7kV)@tf=`TETEIaj;QJ(}SE*6LZZ!!K z5z(Yz{gvCrv(jnlBu*%9slh9XSykqmGuv@LCW;EfF6w+>4^DlJ-E0yhPclxfm%SP( zVI0A(>U=0$@R^IMC($6e&Es}!VoP9q@HmWmb#A&&wL%3aJ6oT_XM^eJ`1n_jy5Y=? z(W{^EP?3E1L)2`9J@5U+t~?tuA)n}AOz(73sa0u}@u3Xh#LIFj*){h%t$SrC*SZ#M zsy4R0A5yklsfSO%#QZW{NU+@Otkm&q{?JLF?DgH|yLFAyLVJq!n9T9B4P99DED%VY zToCZHxscJs903)qsP)?+3>%trt#Iao@f?HRi!YPnnBR%jI`o;F9jz;5#ReVvzz(Nr#Y{aT^MD&cU$`HcB!{myU z?5-CL)LNVo8(W-uQdse3=rMvi_+fyK4Q7uZi~aLIeKR=oIg_JZY-w>3ji-udaG2$p zUs^Jp|K&0hT*!HeS%j?A=H9#&F|KX7*a}|n%sCC#VZEYp5D+l;B3!6a1{W6Y+bt$r z$e@jRSzpgt{ct>T4#*SwFVapBt#?>1`M~0lWWiCEuk`>`lkJY?DdT7r(P%ZG(hayj5ST2z(0V;;&S@u4iYc&Cb@rK=!HL)UFj3 zNQF`r&&X$K+udczIu*;cdW_kMHUEI%h{C#hC7R(BB{)eq3_9QI!-h>j;hOW(`jw|^ zBaP@beg>S`^qNq>ow<_5gSVH*&(n57Oj`Bw*|{+p8FOB|_ZVe;A1oH75-SP~zGVkM zulEd2sa4sR!L>*w&>#^K>VEwilq1$q{$;M-SkmVbs35jJKFFMbUZ6x%QQS)Qxm=@( zkml9s<(-3(dGl#l@fv2*sg zB~vAFsnDn5UWWDR_bORlV~`CdoE)%J1D>Ez>&Z4Fs#yZ{Xi*}&K)v|4a+6p4D~NR# zZMnsg33QstXukAXwfK3G@jacOZA!+WN{uX5i!j#Oi-vnAUd8q~4h8ka4I9gDp~?cw z%}x%V#6%58o298JPUhPY6DrhlsglWTooH1c5-@iwYih*MVlq699bWYjaHdshMf12c z+zq5e>XfWK%GClY&ukIg8|bZ9+5>>%+g;t=+JU2ZY}UQ}ude!Mo!-T`UK24GRIY?P zmGstYO`)_)&N*I73BRYS(lx#Ugf2e_zuSNoo)+Tc1j&54wRB1kSUt`KJ9rbpRbKw9 z-xC-GvYEZf%vjSF&6t#7hW&3@DEDN7T9#=VaSax8a9-|CKIETekU9ZX7St8+nC(~; zW3Jm26dBY}z=!|LY8at$B;_*z)F|hD=R3?J4s$w@OI_}&+kdnGKfT$e9xIyEVY}Y} zc1EpQzLAR@TrAT5^}_9Pr>h0roqAXzwxD}(P$FEt-szB?n4BDw5CQK8)o_zMuoSMT z5ZJyQ(lw(Nc>=p|;!?;(ItiQM<=R|X#-Zem&d=oepPwI-L7wdNPyji`&L_`L;_||@ zEG;|VI3q6Z)W1m!q)`857(v$ONTlBdO-l@dQ8Pa&cCY+*jw@2Du0PyIb4R8*2>_r}tT!`+Db`lxDc&beF# zo|712U5J&JA2hTJvEjr+%Vi`zmWy0PfB`$p6+zy&%1e77Fnww|yp=3uLX* z4sWs6ESoPfjl&HNz)=^gql%xVr!pB=zxoOCv{K-;ln41;DRP)go9eFMb9xb9OQX|% zVTNX{+c47gF#JM?<-+8Xit%pyjH~mTOi+R$bh-gmm%vgWCIQaZu9sBK8UVZB-mi%g zXf?jJRGMoL!+>ef$w{|S|h70Ew$4(swwMkn3|lbKiyAQSP?@Gz3wxf66#W{EOM%| zqC_tO`>8Uuc|)i1jh zpbtJ%CwcvFyyS9zF4jE_O$ghWxA`Oj+Ne~)ZZQj^&E3!+p4y-+()jguG?lH-Uj)r} zNq_#ApDb199^KFQ5_*`<$J?J?9neV(c2oeygwl?;J>ei4nbt(P6?NnGc)@=A#@O2? zUfm3A;-!26`23IvVnk)2u8qYk1f{bXQ-BV$7(^vR3hc<_HyKqgZ0}MlkfE(pi35ug zf`l(*O|5;5V*OFe8qJ?*gQ?TvEPOqgU;{g(AyZsuEDg{`>JSaq#N~LgWH$IBC6WNT zkVvb2g#z?0NLo{QUaPsaXc&(`A^xEZlxZW>nzo1a& zm~4?-Y)IpDkns|CO$T*NRT))o!MSJnP^Pn8QVeiwfqU9VRbSa>i+Xd^4|5-G6!V`E zf$9WTzh`mk>+50Q;1rZaMBuO#+Q$DMN|6+LeVAviFiV-hpE3}BT-CRL3`7-UJ)=b5 z*tiJHl-r}_qXpZC4>K?HOiXZHg2Yr$?RJN3_0}tSiwD<7s~EvZguNMU&q4a_u$3V2Iv(z9xhb6?OP9W7!U8+6sb1W;H=>CE?co71UseVQy)w}tZ|4-Q@0@2r z^F#CY!X=hmwx=5aO1?QuOE~j0S0_D1t=*pXWVxw?Apac-_7C@6r!Q-`K+U)Q@)aGm z-6pi&nE;N|ji0^42YWygK6qGG`w&Iw{x&9s232Qbg<1)frBSr^YdfJ(_fKUh)S{f| z;*@FL&fHu>Wf1xf>_+?RX7@sA`bg_WyRG~KbqZuUDwR@-?V>aLQkva7>F=KL7XURb z{KUN}D~*Sd>h2OG0lbsQX?k2zkVI&InT!YaljZhMOxl#f)!0cL5$_2iuc0!UGTV)x zWY<~0GI*QwJ)M-NM!VA~1wi49^Z}zq-SvXQ5e_@a_i8@jhM3u8RMCQFADR|fDb8ju z?*ud>0i@MbmK`Ybi0ARLP?2F1+szj2E@0FPXRMsp@buZ;UbR9;q>khKf-8i}$vn$q z52={F@v1VxAIWWXbW3bf)V9tYJHM7XnvFJ+kYDuGn;-?;)=ejpM>GG+1WDtbhb~6I z)yaxB?_vLR&!^E4i1pa~r*Pj+fjAmPPCP0o{CxVlzN+#^7uW^U@#Lfi%GNyEGgqpCRMeI`}2;&=3WBk ztBninZ5>C7{5|d=zw!i#wdYZG6t0VczA1=g`c4p@%kXjU4UK5ETq_OvfW|T` zq~YCU``XU`aI;@daP;AsBoE6ak?uII#j|ZPw}AU(?Xr8&&W zXgQEh+iUPm5#T~Z4keSM@;5nw(_UIx?B^jsJ2(HLh>}NZ;7oKd-Gm8~1 z)U8M`?nq8#8>Cw zo;#J@MiqG*y&E{t=ZM{wALyr%llS2`NuBe&X-kSMF<(#)8&o*Cb$(b(d*>G6jn8ZXZ5unfe>J@p8&|(^b&-54irQ7NIJ8mEz|uvQC67 zr;*$Fc7`_3&zU*MY$&+`-YR-sTnyJc%NBe9{?ghT%SgueUhyGq(lE`_vN}2JS|ru= zyYU77z?-L*g_${VHgp-_2e{UFfFst1%=SbSi4-AY=8UUPhC;3#g@kf6YJf0}>-(5F zhw52xZ|%n?ca2&9>X-PfS1AFYq#bn8iwbXNi;H|9Dc4FYBd@MNG+^@}+qtPk@(f%I z9`d!w#GeniYxG@Kvs&iMOgns(9d_41lE?tRU%oQprOl)sd70Xan{)H>qWu?{asN;S=IRdV#`B-QfDyg@V>JvgMA^5-RP+A((%a(!Az*cCei_*n{?qjB zsW@3DNLmB<-;J+e7(n)Dh5n;=|NE*RP%93E$6^dmO#08$GhARa9io=)=zlk6k^_bV zWpJVN*N-eH0?%&JRCO@^yeV*lr3aGnyqBaZ{-?_*8DI_eA+|UEYK-nG{Ki!%Jh}=0 z&RLG=5E$b)mqTy#UzCs|ssjPHT}A%8@vjeW(}Vf*yMU3N|7N6f+TgSPdD>}#t_Sjh zTXnDScjEy8U^qA-gNknl*Z(26k?b3rIOw=3|MLW(;)3qm1TzhFi2rmc!1d;PeHRt{ z<}3Q2#&YY3u&w7HPvt&D-!W|ctEwjONY;n{p2GSJm|(X2FEY@2wgmcRM!;2sDql5_ zJ_Q8`{`QYQiwSgy@Tv3F4x5H%MBmW((0C?{yza!cU3GXTI7%2nKOQ$Aw% z_K=ac9fSmfX4^Vey6uA?^nC07XFR~rT%{l#n@M?)B76gza7t-(TffMBo+hSXL2Gi@ z@oh>T)THVi23%Zkto9$~^3{hGZ}jS?hZ$=+(ldG3baKy!UI*a(LL#Mn70dA%^f4Os zSBUWu|Fi(fG1w%cm9t-LYi{Od;lcGqYI0am2>(MBU=$1>p!ejaN}qYsbgM+iuRye@ z%>BDb^z}{rwQgn^m<*`V!5i5*ApSdq|BOa}Hh~aYq;qT*ZkE32MJC8y0g@oQxW{2p zy({TZV^#QHn!nBQ1DJ$_fU6S14{@?YFQlaQ9}k*PiTj|9t>QvLB>vqw)1f=HH9>WG zI3E5T(V7ADl7D!T2&~Eu76vg=(8v++Z7y|AP9m65PW{?HEOJ0tag@ow1cyCL0rcr2%%fjTP%mv4P4M5-uwc!($xsU-k1J z+5&>>>zkbX&0RD+y{v8*M6*~r$It*36DMGP9zuD$>;I;iDA^6`d{}4^! z|FaV(!m#;&Vgdeb^Z%#Ae>>5!04bM}6pEpPy~vTME%=LVJMqvMn3(*lQ1vV=pMpd? z6aUhTz&vzr~QV=b{8o7he#ji%oR{?--0cGKkr8FaY<_090oIv%yKMS)S4nun27!oe^ z$<+v9^PS_sjvn|sm4J@uruERj6#@}6Boi-)EFh8$q+l{gY?ak4!y^_OO>ZZJ|KS;m zED3=EDIo#dALiqGdZuOjYA2un{1bQ&yIlZ~QDXh*;?1QAKSBzGSLbz@e>>=0`WO{e z*xl`GJHMdOwLEfl48D%>x6&fQg9qkxa?5~ye>vanPe@*UZq*}|`!8|TRRu76{D|cl z*cgMt<3(oMP$JU)Oca>&UE1unT`}_N&SZ##(BR%kaA{Q(GJdjN`Wh z6{hrl!|g@bE!3E6^pEg}OwmLK=Vng~S=1m9oKhQ4<2r&lOrAt zHQMZ748Z6N=4QDmlp5Hm&>cPr&C`zDdvnO_x?%Z*{SHf0Ay3)m2i&|%F7Ct(6xdD{ zs=*}|#J|y;7?{|8b_au=ak(M@B2}izB4lkUCcU@&A7|Oys{Czq{mV}_4Zebq>oVZ& zpMv2yQ8!#LGcpcQH5@r+-P?n~WcMhD$)V0Ae2bFFGTib_VvvAXkOPYnQ4^I)C5)+W z0BKdlQj${zu?T}9)P4?aE)=i*_~F{qLkdE^Tgk%gHd(^6SpUdRxct8HRikgwk+x4g5_fzNqCM$tNvu04aLz{&5!X_ki$ic2hipNH+tOOD zdO<_1l0V5A3GD2A^YU<_Py(>iDMv;}^b8Ps#KeS64d9rWYfOuG-feB6W)jUALrPsH zu5Eim_vJoT-or413Vkjycu64p5_7x%V#gRV%X`i?%gdQr6px{R^`qbpC%Joa^PBDg z$kXbaH0rxVkarFaNy$l_FcMK!y<{K>yM1TeZ0`b^Z3I@TI@X074l0?$`*}|HW$N}eowbU+H=hVbqe81X01h!Q)c9vjTpr><5phrKjqM& zmZh-!H#IFRJ+p&UWc(w&Z?+*j*#BZYU~QaCPx~9n-~_Oo5t+rjf?!*Y7%s0!SZch& z+NAn6_8`Sj37|QeRQf|IM04HlpMHt(^&FgM8tmRIg@Eaq=|T`b@qnJ>5$I{1R#bf~ zC*i7<`B`5Fjf!I7=d3&4rFtA%jB>m2t>b(&DUSmy4Wbjy3F`IhIk-g^%^j8Z(>|7^ zDD{*4ErK_J4|-RnQ0T!3tEA8}F=2f+axDtt8n zTtU|!9kfaSX-?zrqQ&M{Yg{+{X;$YH^F+&*kP<#K!CIRp)~v!A{#Ix_|MPb7k^KVvN_orZcHPSrHu=mE01c?~!C*L7sqED;#-iLUd+_PGi6O^|;e+evO@-JRCQSI*iByPrxqO>oFz!rL19rfdHWkI!%FNamq*wEa~IP8=l!-6&?C&`$Pt~jIm)e=P+Vk zJ%MESaZTGSVM-5y;_a37$8(rIHCs|ICfW3(+@9LbHbaReDko$lm$GT)44;*0(#9$Bv^DB7V^^ShLHvRJ|FAoeHV%gkP+a&5@n&<_>{a*<&jp zW5&+wUN*_AilY6|kcUfYEPT56w*;!rUDgrGT|L3~^KQw_XFuH!jnj{64Xza5lR&U` z*#%MwpXCb=xW8ytfDxQ(2hYqo{=VU}c14{8Gz}hBVqU-}~{G(Wdv4 z(vzAbeB9CpYW)YSvPzb0!r4edq~N4W?5TcmJJsq*{99<>TN;EfkqB%{ zP`(j9IQ_hbGpyWR%4n?n1^!%cpKCI{`uhksgsh|NlVy54_U&T<#r~OPj?efhs7l$2 ze{?r=v5SS{=eImHI7P*G|A)P|j*D{Z`o?FFPLY-pkdQ`@kdzdW5|D1CB}BTr1w;g; zL0Spv?nV%iuAv0!5EycPd(OE%2k+-T_xpU_-@ora^TErxuG!bxYpuP$-?i7;)uf!L z7#MZ0U3Mq&rc`s(9bVtk7x8E;`x_=%Tr+|cg+&Pe7FqORlB+|u)?bkg@XLnc%o zG%iQHU~hb;d$rHogUrxFd$A0<89O+M+1OQSI?;RIv(lRMIvST`$b6sbCmEOWB3*Q} zlw{R%Y0D+v#?WG2{Igc+|Uh@2_9J!E22n9w?`m-(6{^L?I?|Ll?UDB6+$A^R#Vl5c9qIDUd2b8q< zUB3>~=!^@l#a)^0wUUSO%|!D}KZw4;pNQX$N)1mtS!(O_7TxW;V}AC@hH<)As}NE@ zQf=|#+==dDLyvS<&gWj~7TeH=F}uW{jtYrE@cEOGbl9a~v$FKM(Q3dP`FjY5h+fiY%hUP@+rrQsg`()T}v};p|yOGl3uNTky(q$NH z)tKRIoy>;luJGsSmD==DI<|e+FR84Q+-ExY)Snc8NeI)TEU`DWegBQj;@`Zd0o8i8+_9L1wBixvEa%Iyc3MdC1-!9Y~Oz8g1xT zq3AZeTv(u{4P4txH(+zYb>Rx0n2|HWd1ulx;E?wng1U8rOCmlVfIk-*B6r4GFYb&H z%-Iw?Kl0EIwg}H$=CWQMpQdQFkGj*rl+-sY8V@V4w)>e8M}e=y8%@py*h zdk@sLo`CdV>t(TWV5W3MElbkaHK^v%LQFK{bmO})!xPOeMXYA#_ROjG@$fP?W7vYB zy`?CT;*3v6pdGg9`S_1}`-_lslC$90; zkJF~n6b6R*L`t>M^DFy6cRoStahYEK2q}Cf)|^HpE=`!E*`!eqwxg`{;*sw!%W?C2 zKhKyaj7_XF61sjTFXftVpJLOKWB1oAk5MbE)ZOB?#T)s51rX>Uke!xb^1ng@-u9%p341vOTuK=r;k1+}ALxf!X{Eb7J@EfSxX4qdy1hQ^A?qK$^tqz$av3t!-st32XVUfzbj zvxx-JgJYTF-5Odv)vWXboU(NnriA*|xRvL6=uKXGuOOZg0+Uk)ZJ)0)5VNjEz7Lht zy1T3Put66sX~oOmdU4HYV?>r*U`zAct>i1E(AjExaV(h!#BvwO{H~37E|YA{!=%1b z?p{IsO{XU9+n~$zW~Rgj!*um3K@xq33SSz-!&LkmogQ~|j?SRo#|5of_f)kCDA(!m z&nqayI8I@MyQWv`ww9srJp8WR*^oY!#q|n!=`$V?v7cW`p{&M^iRXq!2+%!5u#DKy zhlfVfQ9xqlxsd%yx02q#1PNQNS9tOYQx>Azsia^ETfgw8@$mErCf68sQy|UFLqoof zYkdidXCLG1CPAp-Svk7U)RFAz0-;u!C-t?0rf4D4*`SUJM)I$Aw_E!(?wvnS60EXh z@K>l?JW6YlsW>A=yo-&*Z&tXj-&vgzPtfYlrUa^t@doM|8Qq7TgR5q!fg9_=qRC@d)D#r?MsQ zWrw}jBI^e+XUc&&JGdqUKXCp_IT!bfulRwwcTIQF*mgAbTdmkz5;Tpp5@=zY$vB_I z-$iUwcIB)=XEBBhu6-!>f7?o=$`Oa1$R+Ot4kN3F7NL?L#aD2Hw;x%yl$inXtX?gXvu#S41ZaErZN4MquV zW*m&ya$mrn^t??|K~1x;Q#ms32}h?VdKgn@fmVI6;eXrhnO`8eE3HAu$duCjy+C|^ zPPCy61)p!6Z}$y1m7m}eik)&>@7*Kb7^kLQPjLO3d6N@@A);xtFGTc{f*0~;h2Ll* z*u&!I&{aNrp3YtUK3EM7`A!r@@5+~XSf{p@OEE+ie=Ss!pUHJ~Gw7huW$|m9MWU8) zrqZdcg>D`3hq$_~o2c`NE7%`|9mzJuj`0rkE{?o+gexJ7V`8##wlk_?R=09&lqK+@ zjaRh?u&SFd7!czjpSEAfC?B;}e=^2@<9^)IU&?ZQv_Hf&WT3ge1A|<&Avw3 z@N6Q(|E?SShqlFSm~#90XlL@lzRK{A9_zIQN&6S)k{`r92}l)B7p6M#$GOe1J#k*N z$KX2|JtN+K;(cTwV-$&{_dru_EY+6fE$^{Osux#Ch@8p6$w&L={Xt-djr2hBVYSDR zSZgao>~ITypF9Hh5Mcwc~5-UYee)$l1pmbv5 zyB2tj0ex+|^vyL0Z&_}OMYn?|9TYxH1Jke}ihW{(OO&;O|L}o7CmkU-kKgV-^N2us zpldtx+va}u<(^jvVR|0I-TbbsZ9R(feNC;WOA3sP?Na7Xm^`^=ubDcWZgAQdG+_ID z6!K>cSTR0ab?@Gto~@OZsMz#wl>2zYyMz88XkK?bCSo@;7fQfRu+>&tCndA!*BkYj57N;=leyARr&|4#aiV3k!d7 zKH$>j{M_Ha1VM+@<6L@|S$8mOyK@c+$X{atyfP~wr<0V}xg!4ljT@Ul62rC~qJMFk zfJ=&rN5+%c6AN0GuHKdbBg`q;dw*%v#IB3T1QVRt9&+iboeoIPC8a_e#eREhka2bW zUcL9>(l@n1BF~ld9Xo#f-y`xxxsH76=7pk5U;IyLFbI(CZ$!H5I#SvPRS@VUNqou& zDJz@1rSCH)?-8Fcoo%U=`)k2D{2Th_Qt`GaKr_TOd&GQbAN46qN*)xQO(aw7>F zBsO!1`uZ~ep4R(yVEW5-9h5K2`UxX)1}rNDAOC&T?;#QggYTYO5&BtEKL=j~UCiFx%)4HkBG2xrsx z^J~kZ6oiC+)zyN6ckkxRV{Xx-K%vmJZLe9=dfMBMzzoV-?fvC`kxIpl)Vp9_GQ@Rx zS83e-{)a}!w!P_ljQcl@lcJ*u*xA`*xD3Srflj#-*?64MLwV5>fDsxQDIH5MV`OD@ z@*U$Tj3LJU>)03>CnqP^lg+y`)Ob8EAH!y_m&&dJWI!9^7cJo(cC<4ug^Grjp;z-9 zT}-EqJoQY}dG!n3Yc4|?e0=<19+sE%y2yMp>2P<%B?V1yZUXv1xuZx(LxIDqW{M6g zPGmrbP1+i{wVj@x7KW>7YHFgxEMcaQRP^`ib@w6OM_c+@Iy$!@%2!fQVS5UHE#9Y>SbPj-}d~-vf z)fYX+kfJ%30~*}s3b&qF@cEVpGWNX#qL-Agan6qpt8?C#QCH{djb{tErH1IFrkx|M z{+b=WSf(uQ9~Z~4SF|@9Zr7;svhRKx*{XR!S_F zp}{6m!91o90wYo6z)r96IUdN_z}F&FS#)z=2lLju0|8OU_7GjRlV)U!lJeUN5n*z4 z*ax|EC-JD-6v2(;b=E)2VEYpn|RD|cONLTa6?TM;c%{V8?ipWpFIAMZUa z1r=JZXDpBg4<}`zu6^EX6eK}!%f2%R3Zis3Z2w{2Q?yB7WB#-zZJ!;h$zdUa`Y6dCZH5LaP}aV4p;PkW zG+e>M#&4-{B)dvPgmY}CmL0yVnl9lTC@0-~y5=-KF*X1F^Asy8mqvkLI2l{`__)?| zwF4#CxL57Hi4I{{8cZWw?u~y;aQu36zO5@!)P+v$WJh$mZaYNOqaIXf5R6Yuit*-v zvy#~N^`clcSQk>(G&EqGk3k2~))px_9(xH|65mt!w9KZ?9V27omvt`N#=~zmSGQ)- zl$2^NoT8qe#WFC%oM2aFacQwBDXlA_r>j8qk0t>|k!BU?1>A8GBy7*mXq$%}?@&=Y z&QBgBtuD_8KY!Y{nvzt$1(u1AkEWw9n~XLHS*oFfWLNCZ@o5^C1__>40a?!T>M%JhAGer(aX=#fk47dvjpUQaG+<2yavz<#X@5YCZ zY3kYL?VS)224Xk-zgJn1P)`LLjoOmpUK0XOD=q}2MVUPt07UdZ1;qeCv|HcV3dU%# z=OzWkEZ_1dlRsSO)1`R&s%y;E`OwNmr>bzsy+09V5hNdGiq@>_PiaCm^uFNv@F6vD zm02k@7?hzE938%^pd89K)vXrsx|%KW{`tW>Jou9(PbB~gj$7AzE1Y5wYl?QuEm|6?)kMuac1SNBh$wFSUFYO;{jklWVX7N%horg z3W?awZ~0|#^Eq!%kp(Z30$LGQVrt=Xzm$}Z*v*EcS42RSeczjplEXQ8s+AA(Uzg~f zn5Bt&&?sIP2+Yn#LkaLNb)I3;N=(W~@*q1f=bBo&n65Mx*gBq-LwGl+tEASaG}%*t zGf-Ld3zn?cp_~LQuS>^@H7Ru~w++(DB5I#N`|!``=q)vzWP`u04!IoXb_Ln;Uu)MAPUGjZIAhmKLMZ zD%IUCCTT?7BSE!UxIJpI;5%0j`| zvwsO#s5F-#V}emn5#H;+#ROoB-C)G8sNgmmBzla|WH;V){D&h&SS>SMHKA`Nz7n}! zBTcx_(qqKMCqLH+fQaxy9ebmm6^A?tVUAf%K z%gw7agfHXS##$yO~4;wCnkP??-QlTS}O zfs^T{u@hfG@h^EX@nA#Tp4?$~m*r8l(Sy_2>T39F8klosWunN_-~xZUkpc>S+gbcH zVHchk_kG}?_R5(x0R2$S58*ShbWT5CMc&87d^0kEpM#=;2QtVapBi#`0SpHD{OOYK zi*JXxFS#vX%^+;F@yq-iiS%GdC;w!-e-+BP62G=x7VTNOIlvg$(UlnCMrq^oXCS1SLlSJ10ryusS<-xeNmFDytBVVOZ)<8U+Z!q)qmGog8 zx2{gMdcGc1<_>!2*Eqd`hGo64eZpD%Sar)ybv>s2dHXpBB9EdP?RTHUPsIaEOJlJ| z6^OasjJ6$YbwTvF2wg4*-V$#Bg0yWO?u6(emcYB%y>=(~W88M&vma?`CXk}f3Woz9 zAbO|wzdB1lhls5$&JX_l@+M0S1Ln53({ThpK-nUeDsP2_UP7J zwW^m5*jZokBwsIIGFbo4l^xuyrLap7l*I^1e&Jc&O{K>Duc1T-M1=nKwJN)rdlR3Y z8kv}!*>qD=;-u9bsg(FeSgo{dj-XugRZip46goK;Z4M;}xeZxSl)41RpxCP<08l5a ze%=J7#!aHg1sUmAc_7MZAd30ZvpxlZ{wc{`Xad&Fn>XqC_=xw8B7aH`z8$8^PI)Ms zSBmn#S-pUJHfx7~bF;wXkN<@p>d2!18F-?L=>F#Fe;X2bz*YytKSFg7gOUCwI6&U4 zAmPfdD9mFw^dHF$+vYOx)jwyw9o$2BW#{J~s|(PQBp{Sc0}=Xvq=P7TY{1z5T(JM& zE029Ys6>Ym(2B~c7;!&H;Dj}iwzs#VLqjpE zYinD-eN&&pnr&_9=>3Z&@W4SU*T4M>5Kw^KoFu(_G%-!O;5_PY9X(WC9UX10tyHC@ z4y=N2(t5;~x0m2>*Ti@4=)}a7&g<0q6r3FQNC^qUY5~?q3KS46uP7I&ouRn#HEZ#=E^&g+V{OuKq@=uD1o%Ibc3S-|HJ$QlH10RaCn`Z`ZDSW$_S4)mEX53*47% zM~}eZAmgdZnUeBP%{huw8j1S(kKF2~n#gQyQp+j8e!Y%@JL^0qaF6@nEmPw zPh!&BwgFCzV0;SS)*$Q!c-XL@F#dm5h(Z5mX?)WDE{FHm>&aB z360)zuf^h9HI2K+3pKyPh)S7=1XFO@a7jgl48TWU(!HrSrVj{u<2j-hI`ro~1__4E z`(?qVCeYh&clHYuROKA<&U?Ls@oj*jc~f@1da8>H0%IGSzznIAEa_d7>jOJ$`r6R{ z4G>4JIIG7EATHcD1%D!glHz{s=0zf>9T9sX1G4iBkI5q)gTfd`{GZn9C^Gw#^BO5t zj6YKae0T~pi~ZL|3Scjzxh@g~@k|@3qgM0CBhQxDer}E6fw1){cvlW!>xApd7XUY0Rp&zV)vMFJ6>exCGG3z*PMFjc7|ETG4r(P1y1-mp=|q_Rgteo z=^t&L@3b(8xc(%!9<^zXp7Y68;&b?F2;Z6-jAaAuVYa6#w_88zy1=$(DR4+RrB+@( zQ^}NeIN;6yGP~jgVGwsWtRUAeb7o-GEb{&I^g$s^b24UHQ)3n?=)K2B<+vEPTVth0~mkaTF+?(=yXQ^da?e48Snb6%3XWpDcrezvgepeEGr+ zT2blA91zYE=4n>FDX<#Mivm2U{GP~fzLp)ylir~njQq>j0yYpC&?y|60rY+ew=Zv( zUctamH|Yqsx3~Y|?N3IvyS~O-y+wQ2>NuhEc0Pn=B!;&uu5pZO(!|81^!do$ZgIyI z=SM9EIiII?+guC_X3Rfp`xZByp^lC!Pv%pJI-_6^P$LWTORYxkzF7N)4|uJ-H2ns5 zJnPYCt+`oZ(#VKETHQxjNT?v>(bkj;1pn|5gwT&q?+OcNB!mcq;>Ix0yyqJtVRnv( zhexZ*y9~QtA)ehY%_qq>mLZtV=fd+=ahXRknR~TMi^lePOzIry{slU3F|G%yORe#gsn z;~$i}04(h3FTDel8qyzrLV{PbU*MI|!(0|}vH6v#nvD3MwIwm>`r_E^9hk-G9;j9M zl&hE)MKDL3>Fy;bEjvH8?cK7fN?YLg0DiU~J$FOd*8Gll{)ab}x31X?CJGUNf^(_k z=TE;ie(hZX#mI1@@f-IIcO%HSvZPK&*Pw5NozJs$eEFVDtB9&Q4vL==UL_Aj7B3p^ zsO1hWoErxiog+AuL66$f7Za>}9}F?ju&ZI~c0R2oN9dV0Zy&8W;ZuqDgL?NogXKMm z{*@|C0GH1ZsX}CFUMI0@gq%rw(G?X>bHwztQFelG5?VSKo2+)fHl>00-n65mxpyfB z^{Y}svS!Lczalo(HBn@M{R-*ncz=01t_fjYlpVLa1_xL#0QWg1j`)#lT7=Gz&A6y- zBqVNlpPnnfaNG_&JKmdz&1Y#<+K}WZQWU>DKI_|7EjHjNw;Q_-Ja387{G-T=pMX3a zH*RgW1YS!5Gz209YbiJqI_p^yscWt~iR-3#AmAfGVekD4l8FX$TF zcHUrEE}!0jtoEw~O~_R4xjZMZcf)1ORqove3gPQ>}el3qir#GyrD}$)Cjb4{=No% zeXpgZAX^ToU@4;6xcfBMHsu}b_{fh}C8jGhB=(vG>i5uwK+A^lMpJ?!z1_!t{+gS`M=vaFVJSb>(WYR}BXkGHSr-XUd6!B((Un z{>k`4bUw-Mk;U)O+(ai{4IZ5Ns4czAUU4xyI9ED%--}UI9vlH>@j)OF0~*{=_QrdC zz01S^@;Ve5-Hw+R(B>T^M>3oIJ`#l5e`bYNk4swT<_s$i?46uGe>3ecV#DJA769^nMyu>|IDgC3Sw)H>hi>NKM-D zTfN-+wD(6YI<3n~ka~rcLj-meg3Om7s4Q;Lr{T4Lck)ljT%{LTEvUipm zaM1|ORhDIs>bI3p1i2ClFyCVM?a{vl5g;&g=Awyp2H&)-T1dTod-sDs2)s&=SNR75 z4?K1zLhijj$W~5%tY*HX)9REyD0k?UyKxm1qdv#{plE3U^KY(6h)4t|l zY=6$%|G-K}TBgBOdJ^Q7b7#UmE+yDiZm=PJ2yEj2z4E0{@&DH>yX#)rSzWaN$*|Um z9xPee$Fl+3Hu3bYS-l1IYtQAwph3xV1!f)Ec2UO~1)B2vH30t-Qc~i8?u+CU6vn47Md2&7 zT%HHZ%=Y#r%KL6#>#~{AL$0Dw>i;DWe~8x{_bP^* z8b|*jRm^Kt1~sC@ajkrx9H%&$_%mfmlViiZoL`C5i7)f%P&x0E2gZ2B+4m?ukBfdd-qx#v*N0gp$84yGluQqVsEH6FBb0z}2+q#EJ5)0+!D!VhEymETx2j__FIqG;G+He9=!JwRp4aG2 zVte~GglTANQ-GeagyiJ#D>rX!#%TL0EOwyiUFTX;JSyFss$vipro5Y?bb@`Nm3d%; zwx+r5_d^{^&l%&j@jc8GUebGuymZ3_qPDrE`4n=|G$9=(B$-0Y9;m^%VSX(Z?Qe(C zFmbV^jg4btV4!{LeMR|e8YAX|r1!EPXWT%r=RX77f-!vO1q(5D>F0Ov?$#e4UK2U& zR#wr~B#4rYqATSo(RqgKNw%CRW}eebd}Ghf;Kkh zOQtr)ePG# zC_ld=&ENzh)%A={T23ac;Dt+h_=9ZX_=PRZ*K-#~KH*gMCnu*@VK00#LU3|MA9pX` zzS-V&uW;mnc$k(i0XeS$;lJrAI*P%q<{#0ZNnGXprpueJeP1x~@jIg;NEaH8#9JeO zs5uPIR7qv4yI(;>Y%$>24@&*BSkao?iAMKM3|u-j^P9iSiDSxG%n{xvwti%w>L==P zh{K~eG8d(&=(@b^L%QyHIzzB?=BONQam@;JcWWJeChRblQe}J`&K1=BGAfKTZJ8{& zW2LXDnO9kq^U2S>ctewc4{t-GqGY|Ku818!K_lf%48fzUqGx23myYdE;Z^%!-dfEQ zsvO$Jh1i#&tCGK_mL;&vqO)v1C_;C;Jiy-&Gzw0CnL#~+( zt$N6!m94np)^q0EhpE0J*8H%djw++6!&H@JF)U*D=8mKYr(M3unwk<_>~tl_^!Mb& z3eh*6Rsow&bz9>p9Y{c2TsMFpaNTvR9Q!a6+S=+^z5JcB=Z(>yCtYSV8ZTQ45Xl#wR^vyyftcisd?-OzgbnzZkR zAiO99=3GTv86-RI{t!_s90`rYBqLe=Sr$jHkvA0hrs=dzp&B9Q0@@0GGoZkIgKd8e zMm&GpsaM)_f76{^k2?Xa`lmu@!fy`J2t{1*57oP~*wlE&>M!*oQDDW2{qzOemYye$ z^Tsrr0iHKl=Rnpc5e-fNdtnCUd=}$&?V)9To`AWpf@vpm?E%*9s(%XKpM2@$|gPCw7JBs6XIg)|#VvVL^dRWH;Ck#$+%CU7Z{p81@BAWg0 z1Hq5-uMXV=|KFZu$I&ugnzhq>?qWJPd&Sk~$L&Z;0c`QwBPF`JIk#;oxMfB4kItY> zEhE5XV`7blO>f5+HgCvPS-+XuMqRI1zy=3Aq;N-26QZdQNf;XDtRME~f4T}j$ zHorgSCFRiZecz7ygISeU!5$s%o3TW~^Vh16)L_4RGC*$y6(I*dRtlwGKAnysf1RL7 zck33^d@!}G+%j$#cI7Bs)1{%o0YnCbPyUPykm_jy$xN*cUib0M4izj^hwvB zI*Xs~8_v%o;5z(DOl@XA>9@aAYlOEE%tXUr zH&pL!zNm>waKY|+xlBh#haW9+2KhQ1e0VGWBR{2q+W{UiadMk!wAlSS%jv9#U9?{J zpS-b~_;iKq>}18nWZ>wHXCUp2OG4t#{((mr_Clktc$Ci9+ zQ0?MV_9sxzbN402KZ2{j9EGpI)tv`WC1HIvUC`}ZKYUa8FjPE{_<4=%COji#OUmY9 zzpwgruemG0weDkF;<5`fJASh!3Yl*n+qaE7XPZzQAho_%^n$ZyWh zf|A`7HGrt(m&jLlKG}Qq>b7V32CvA$uw2JB)6&onM=QLjD9QVVRYqcxl9CeiDKs#( zrqRb`G5uh%BRJ;DKByGmIwtN_>SkoKhMZc%EKf zJ6{5hj4iCfb7!`WR@j?Qqr!!6|E5&XVtQCSN;2j!tu06><>h@KjaTya_9nkZ8C6p9 zWq|co@%1nR=Qo!WN)Nmk*#WTaC<>rb^+=VHY4{;l>2>P-#N1pecUa!A#ic$_*H`>} z$y6o3R{6_}hOeBg?29Shf?7_l!mDwHkGus0d~Y}BKT2g1LF^Td0DHC>fUFP&T#9r5 zn2KoB`p3R%`0$JKkak+B1r04jTGbY5w>Ph)eiRk$-8Z`GVg%iCvj_3nA5J+dwE-F9 zcKz}*Zs2I_cMnr1P?xu9SWtV5$S_%eH56!$lDF3 zrtt|y6HMd#OACxGxqQgBz;4QO$ zNEw;@X>|WlMhzcP^iBx(u6YsK3nqVAKS)2tl_^EVSVu31`7x-#r%f+Mqedu*RMh%M zzU#U=I|)sV;jNA`)%%A@9kdc#Im2kit6$W+m(TmksQTM_fd;N#(!eqhm_{Q5)4wdA zYsd!$%>7`v$G^?J9dhocZTJ_@3B>L>IpNXx{JaN0PDxAe?dl@K4m$HlO1Hd$k%m@n z{*Jv_lozSegg85We}D*aq$3AG@IXYusyLJsc5dDw`u1M}`xCAB3J@Y~s1*jwV9?sT zxcxpCFG%O(+7lWw0o38*ch6g-)n@rvw!EH#Dg5?p3V&Z$|8QLYefY_!eE@Yu;MxbY zK$>&ogv@WYB-I6tLp-oE-e4X)ob&9YyB-^mGYiP{y=~Yj1a#kju#ss2RgAHFHBkfyjSJe1C!Q zMA;Y36`}2*{0p-EsZTIPMsoDzcTJg1RIW`1{2DNFR)1OYN{7PFG=MKJ$`(?8w}R#*OxJ9P zz+0W&3yeO{;JOk=%ls)`7dXQS6$2-V*4%BJlOb5aTz9oclz(LQSu$ekK;~1 zvukKX`{^_$yUXn0z>^H!QZ%1`x&fYTxl@g_>$T6|llNcB*SQ|T+H7sL{$>12;Lo2K zGxW2oXFTMQJNv_uoCyjcKb|TGQYoz-xPS5L1PS$)mb)zRy-;CnQrMN?SDNjA0_tDy ziB1A7z6QHlubeU<_sB#6pwni{zr4)f z(=RR!Ra)up>JyWbb`>-mOdZ10k}_qO_4c@B+xWws5bJ1rwzrpUXL8+6ifLcw>C-z% zPykMu!y7j)gV1unuBZQ9W4QA$UE?9*&Ksx~M}t0H(OV5ya+Oz1XM#EG?^4b9zN8k$ z9u(UbL^(UhAX!zIpaA2_Fa4*b$cPN4p7C%DqG8GwkL_U3*9ihi*7$3DAz{(c(eTI% zg{HuXP3P`q?D0+h-8&k5YEET!6j4lPo3zD?jUJ??-7)05&%pWdqt<*C3o|a_t4z%u zT+WY^R^_JNZ>nT%enHgfJxfnZv8s6BnRb})Mm1l3rl4=8OY)Q<1qr zUXG1bc?oNNiiPAJ8=5^#3+HOmiL(AaXa@CW^xLof-GekYVIk+_01t1x!9)D{C%N?e ze2S+}m+foyW`gN&-=@lvTb9hQK(q}fQ3B=5>H_dFt4Q=e=t+e8u$Rs0;b!;1K(JD7 zT%*6(8~btn?kSDnVGLH|Dj`BrYTw;`HNtBXO+qrOcohP(p32?k;XmL*UM?ozBQ5hj z6m<4#%-s+XA*STF@%wDs<%IKnzEcJ#!_Km0ZG%xRMnZ$_xtZtTF)J!MI%xKeVpc|hj5t-HvmeGxdtOC%Og+cX1qT3@ zAt4n#2=wQQ45A%Z!c|pOgUW(dr0)ok;MmO7P~sinRj+JK@%YTz(6tayiA0Ve4qjfJ z;v0hdh`bQL{WSzD7P0xxNvmeh8f?r2(IE}7sLSTr1o`co&dr^f#Uvx6qsBd7pXL=5 z5VoFYU~IR2`Suz*#iB6QXw4w%hEt<;hySG6Fov*rH<(qzEd6h;^$ro0-#!+8xDDZ!Ii_ zfV|{rt4$>g%pB}R?aq8x8l9LerkTE1{HmtTm4T z&ZK83g}+SdSg%D4M1ja+2&|HC34s@k)bcf?L87QX7^w9JSUZb#y(Lb^w+IQoR;YFy ze2E=ObW>n@y%sUZAxX%fzNxRKAF(!hm)-CJ&A@X$!Nkeue5w%eBB@gM@0Y;c58fSG zZRpx+2O>jenK8qF3@Nn^a{%u<-+Y|f{iaMyxJ%!s=@~XX&Hf&blC_}ehsXYR1CD|+ zYb&duYNod|goH1v=Cs3icDU)wCEnu#)Jn1a7k6uo&hm^H;?kSKWGmReS5#{cseJ8F7z3#%wtgO3kwCF z?8CPr(4isK|4uTo0+K24{LsZm@`<$IR)cwIcjd+ei$L5bK4E$;3=*4s;WpqLc>d+O z30c0ns@j3x>VK`f;7I?B?Ln;bH*{CsW}|Bshc7DeJ*M=Sp{RKjT<61s25s>|7^tdh2Wc935Jijc zrFWm?^xX0}NSd2BR~F|SJr?(I#X{^a_=I7=%MpEI+MGA}!Zybc+tj-reWCLdnOrid zRD;5|G9R$?33F}VEYcM;eE71)yN#5t!>;;5M|DCm_NMv)_=t@q)H?j}Ty;oPgqQmD zgyfzMQ^LKEkFXpzHG!7Y|W zGJUR##T>RAyg{1qcD9X~(1T=epMqX!v?o&Pgmw2lfdHiS30p2uHY-QYNKI2#{w z-Kt^kXjht@MY6;9{tG*72Nxt@KGOJE%R4WH;&3jNm2uFt^O5%m<=_Ah-bQQK`LSx+ zH*wWsW4r=`*6SyQ!EslbOu|a44^%DZVKX3fgQUIfdP3k6W#U0fWT6QcC*fDW9f9hS zNLeDWb5D|@1~dH5mlRNl|8vV0i*ZA@<19h-!GYmqQRGu97hx_5|9?XhS(L{ zG2Z-YnpbFXPd99t}Y@;kM*nqyLYcYjo5U)q^>J9AM_T~=iK#rwQ_OcZGzyl z!n@5oEd3N-RXD~VV2%pTX>Md#X@N_iE?y98s`e@1mUOg63=fcAaZPf-PT#NHGE(A)1tybvj>ir)9v!$p{ zVxiY$ z{It7WuqG)}fX;}2t@FR5Gr)Q#kLs%Bbmce13npmdBz5?OR!iWf38IEk%&S;}ZoxUH zEUV_%DvAi^Z!ra;!iSZ`&}-_?=j%@$3-Xwt-ZTEknXlfyuc}i9`9=0jIi zmp5M22I6Y6xX*D-5}cq#7j$w}4DFTEOllrcx~MmJpY&@-QVL`1d_+exA2c2zn}coD z*-E|mmL0KqvBe-$=6SZe0(J)9^S(z1l#n;ryi%?USK1URc9qzT`d7IBrvQw02zOYa zwpGGAAZGdk3R%9s-&N7;q;(FkW8s_zubV0t2H>x(zK1W{d9xb6N6Gbdg^*m_?bIXd+EkYHq=kp*Qr4C{ zu*IioU{~lS<|tZN_(4a6T}xzPj@}!a?d{T`n~B6=KM5XA=}%z0rYFP$kZmrJt*+mJ zigztJl_mBzR`{YaBNQ0R#LO6;M83FeIy8xs9N)F%`z$d>zdguBB0DC?5+jRZC z$+GSf7B#BU`(u)7}Ehy=YWsz|=_e+D>!Vt-*! zFO9$|fozMjZT0*viuy3$F~D7?b?qye>;sWvVRg2LEvo40`OC*KH7ge$SB1)f4C(PB zBro%S@o-IS`^g{Rs598-s#&@D8v2`zOt9}sMO~ki-z?S!?U&lO)Nenzox>*j1%PTI zv;XTKDVvC_nl%V7SiAl(ksICPkg9pJY9{oKwLm6d^AHDp<{86iZo`5X$5Re3p#i>oOZ_=x^wF%qy4`_*mLl6V}^v{yb8-kl;t z5E&b105lKg)1e&v#1%O*PYn%{NLhwgad8Na+1D|$67F^;8jl|bgH3M$$~-V^A+W&$ z8i$_zi%|GqFd*7{JcrbRfkO;su`Ub5vQhmlU^ycsBa6sQb0@y=M)C=Njo=TO<#*Ko ze^iP;=8gB*d^g(Xf|iw)^j7d%@w{NNkO{cR+C!s1 zeZ~(YU;0-x<+gk6oEape5g)3VFS}z1(GC*|;O{nB1U>Kx=Z!6FtUAGA9#^S8v<2>( zravxhu*3y0pwj{j75x|2xBnNB4ddGW9lEr5ppDcj*%h_noE!zCZ_okfqG@45=oBUMA=*inz8R=f|@2*VaOqZm{~ zqHp|zl#AI|o2MYTpYd})L(3~#?s{Rx{L8^ic%c;Y-Z zIDJ0TcbME3Sd`y{SVWWL^}VV71d@&Q`J-j20SA`L)JY!10JDMO=1nyZ(B^hkBI4u@7BQ0_^Qy3B)@#cVhGH<5Vf+hDz#kXKRfI| zNJ~p6YU1A?O95WT4HLOQf2+XwV^OLavXK63=Ld@yns^B#P&!I`pxdrBPdC81jydzigbO&xA3><+@|%$zhup$P`= zC--r2Wf=yNIVFr#ZeZg?1fnW~P|)hZtGw@G9+jA^71(IU=1}+zCMN8*kX)$@i#anz zMe12k4=frlIFx6*2bqIkm|Zp0@$qgEf;^G_jdfRR>z+GxB;`tY3~4X^n_lBvN#ah#Agzu-}J{puvJW1b24`?iM7tLvYvN8rFFQ?J!C>2z=~IX^JdYyYr@d=ZmnCM+4uq~f{+#d1>EbdU+@*> z!-t7nb6#F|E?T;hDvLQHz+>4-OHZPY+2d})lW@y9w{5fS3<{T}lQiGmL zO9M(Y9Naz-V&Cj1EKUdK3lO6=I?fFKBjt)g2gU*?j!j}Gw&){fx3;~>*WaD^zpTd>h*b1aD%h`fg25NL)?i=)o$vx0w|w! zJ)ar0S-m;>B8X@s|lGp{kyTe`BM@orv`2zp(&7?uiGC=Ug6-^BeCA z4#lD1J)c+Hi9;>V^t+YBoNj?4&TlY|^1X#vfri&()N<~{Q#r3qZ(&x2h*TxA!>%?G z&u!b2d0ouHxAqiB3f2xPl^~*Toht-(8%0FAFg8 zSCSoaz5Z?X*VE2^MBvwEuB!*S+$1Cd$eLw0Xmj7z4d^>y5Gg7`{uxjZY2SwSq1k^d zK?yPsSdf!b!6JETn^!3ih-0$Y=wwbKa|9|q6n{1JD*yX243Oyaojyl0bJhYyY#Tgo z^+^V_vCwL6f`Qx+9c?90;Slh8iKuvUaN**@2W{3lj~R7px?EQK8%upnuLKf|PJ?*iJZWGpNq9xqAlEq-oc^osS8 zMdPP3aBy}m7oovbc2ii244*L9t}ZW2Y-U3Q5Gpc)gM#|3AzB(6F#y^$S|Iex%gcPV z6U>G$*` zGCe!fSr|FVv`-vDo3BXbkbQL5J?0+#?rr#Z_4des&?N zf(c#^a^TS61Do`hMBuvfh|grZj_&O&-fO$<3sC=KeW1GHh21uJ1-e&V0CI-1sr~78 z?yRfA8$6?&Khp|m7*W&n1#4Nify*R%(NkvrfW<}gn$k|E$hB3%p z0p9E%r4i~{U4OVj(|%D1#r~{^M-O>2ocgZNw^*1%AQv#OKQYPjLR3_Yoo_X1AJ}=h zB-XQzuYym{%owgL{n_XgkQ2D?OFPw{E#2R^&A{>(RxxO%>nP($E26%=KJP@DV?u4m zvs$i~8E_andHHtTBmm$km|uXAmKddr+k%2(?@AWDZI}=@Fms8Zj7v_gDQDFN5|6And zTe3Cu=jm`&xA*51bffh;-`(TAlSC%)I*8DVLGa#!O_;IIA4hb@|F6l>FkqM{EEwR)oIE3mj1b zQsCK;Mu>p#4EN+iG^n(Q-Yi6uano{KTzs zz0H{ckzOx8vq$V*O#ld>V4)z`JJg(y%b$p9m=1^od#=&ryq6RB!v>d)a~KdVXo3k` z!0OL{Cu^*n#F3Q;6W;BF`axgVaT#HA)}#cv;zQzsK8O8;`hx;IExG8 zJC5KRcMpk}&tlY*C!skg9`BtiqV3NzGW)mfp29{ zYIL1w)b2b?j)MNQK%9b;*0%5^TqwsPP-AFo7k4sw{QQn~>wCrEOQ!SlvGXqoZEZTn z+voh#GNroW;eE7SrCrawEMDnh?o#9d43_g#A-3RQ>1HJ3By*L*DT*J(5hsS8=>|y* z9XgDS1dMkBq21f7dJhJ|n;(O-_fQ)kJ4<(YLNGIi+Z>nmwo+TrK-B6RE=z}w2xo;^ z9*DH6&3E4#%7Hql>S%#_^hZmnh^*J2OX1gqrPar|*X+U=hQPs0^zo2mCT+>jp3 zC^)D1|BQn;dJLPM8n{j}mVOnug2k9aBie3KYZY{2nA`ke>coz%5YZNjsu;719f(Lgzw@i`&m2%) z*}GaE%QNL7RL0BTEMYjAaKc$NUJP2?CkTwQV9d4$EG{kCGgZ1ALp1e=Deh(ur!TS(o&+MKCx&7c%}ghBw62qFGEW0x~%w0$M$#wk;* zeuEO5chBv=^&pLnDsiw=>L2lO_{aEzM?(AX&{NIjOxZPZ6ox=zyOt4xY%jaUsG;&& zPGqI3NR@|?xep3NM<`CRI2iiE$GH#o_>rD9pxGg}d3+?>&!rn0DvCJ@C~(0ja9c!H z%&@k_)K*qix#hXg60NEsdS&hKj(BGD5{;=^Yt{4Fu*g0vv>3&EsCQoS=-_%`V1-rK zw@KAJT!@q%>jCsabmg9^mRugH$G04vonOR7^T8S9u;$BB$r||K!6~}29%Uf`_03mpW%OD1+dmUCjTQ%pz;6Me%!9Ts*L7I%Z~bATmEN+unY{2b+HpXP-x zjAg=?Cwx`9fs8^bUW;0?rZo#7HV()avhO^Bi}{(H$gOZA%~9RjN=PZ~YOpp*Gsu#0 z;Hf>-P?5s{qyhEIuho~Va_sZk-y~q&Gd@D1nN&N}NilMeeB4A)Rq)}ekUD!9@Bs0# zseYU=?BJj+oW^MJW;zhptJJy`R&ezA^3o6pSEFb)eu; zOvDn1Qv33e>)2|eg#s>ijs3<&Iq9#YH)dsM_kGp;5WS@>Je17(Zfn`X9 ztf=`T&Ax*aIdVe`RS?=P^lSYCmb47_x*iIP7k6^rIh~)mimmkt*ph?hWkr&kJE9wS zihEDJUc8!`>(zfiF&Tb7v7&+FbDXssJty`!T9yirG}%hS`W%}2HC(YVprBgC3C|O} z!Bh0KvE1S=*mebPQ%Kdy)MMtEG*rCJ=%o_n90i>_upbqelVh2FJDQdZW7r#7g|l7Q z0;c7xo$V^2rpBn#c+f`n#K~7`^JSlmqKN$(^+}f1TxlTE%dxwCS(!6wu~4!-_EXvF zyUeOYF){tt%(yplR<_v|DuNugO;_x31V%aT0_#k^q~WLP*MD9YG~+^(Kx$8y3o+g| zk=jh`-sr^U-y(NCWz+m(Gv3YQ1na22t$h|VvIuo&EV_Z|i1xqXbiM5WoQ`MH=p6*Q zWHus{xGv0pM0Ah0h>k9?V3!ITdhs6V9of@UodFt+U|GGM{pTTt+EfNE+cWCaR4p;a z0_~k}J41UA0m1aIveX5)qZJ1Ql{{rJ8B1Am`|6} zuj=5R5>_P}l5z`FqT@@Y#3-TQ!L4h!#=4v}4Ld*x zZ)_CeBA!uvBc+KakA?6DD<;j&*EY}m)QN&hadt95`oo|UBD_DIJ;9=0P#+o@i@hPL z0J%a4Y1&L^fhHL|vdVjAA>Rn;bA^X`-!1pc6Z9Aua}bM#Y+-GIVLWYzRh?XsUV|R2 z+4q|v*y8W+2;?Mc3Ahm)6fs50hXVC9wX;N4(Y3zcj5Nyw@O4>ORV(|_7#_wFq{M2? zJ(P41qG-X_+Y+U?Elptur22#`@zQo=vMvME;>p~)N(iJw6jEvqh^C4CT)Zr!wz6_u zhF}DtemoWjj9Tdr83}7j&|HKvn~7uw8NR=Minzqt=AEX6mwe&z`qTn0v?-6-tb^Yx zn9i*cIOHIQ^Bv7^&xr5|LbY;HXCs|~Uzw?VQ~yt_!t|VQ`ytnKsN&h!N34Y3Mh|Aq zeTIRyDORwl-=Upki+%*Z%Xk!>;B|{bwYpmMndr_A4aY#?+2iBLDhW6j13gWmqjK?- zEkeeeD*Gt+vck=@=xmcde4QUKg$m5XUNgQ&DjKQ~{ip_oCLxwv)(fTVg-cH{bA}&F zzIC1u(Ytr78AIN&xbUUSOyn{u&p`DUB?w{>x^V?cSs3?sU;->bl5hQhEy3dFD78GK zeZyQ3-Zo0UCLOKidQkBi%9Zgo`Q$`6fsrO1Oq^Q}- z;RD2?anRe)k<@~VfM4=tNXY0O?N5kw+UI>Q(-L!`jv{>#7X)zY`VP$ru;-Py4P9Ig z8;|xArq;-ufv)mW@nvjY)Oei8jw2PtNcj=93d!LdkLgSrk@;Mj5LxNQEr*De4$}oY zg2W5Wy*^_RT=aJ-iAHU|Hgg8_O@om^w;yh`z)rGW7aMFOzkTCyB!!5?N5{bdpr$ZE zWEFw`(S_iE(536JI6MH1t2uMg(vkgWeI+6WIv6;0qWAWwqwRmSLkb@XXlX>W#N7{! zj0Q-Q^>vcYG%?G;GPY z1lo#dtU$o7=f(k@3oq-!QJpL4nF)2q;z3D1kg)Tj+5bW*-F7maw-tibSl*&1kuH)3 ztufYMBH<&44Q*t@r5w*}>Cjfv6a+*C)?>2KAf(>G4pt}R5+F*BbvYKO3`ibVHr{CO zL`lq)?{vY}68sMSW~$wseZ{QCUiR+jCr>bH9kGODpD3Mrm)aD$i$d=Y>kV6KKghBE zjF=-UGtBC_Kjz|lGkFV}3LXo@1gfg4zCWz(?Wb4dKa#Cc zxc1WDtBttJhZXtxq{ojYqoFkz-(PdpRiF)ij+Ociiw@$+&#fN3j}!A8r##>mR&hldg~=i1_ZyBxaZrVZ zGX=d3>S@kf@!nYw>AAk61m%8zzKAX)l7*YTR|dKQu~Gms2|7`#B#>%LSU3P zS+b=MnrSsz2E6Fsi~I0iNsu`FgpQO8Cau+}Zo(%Fk0q*3n9k884C?!eZ(l$e@~A!6 zi0(F(-Sh)joa!((9yco4NN3k`$jmwSLIvp}dXB`(gCG~parq?c1pblraR@|Eis7dX zXuFNxD_0{qeT8ge;2~M*Nyg0z63Un8;UZl8Oj-ShwZAtE{<=JJ#g^N-1uOp^3CBq_ zH>50=Qru^XT^fZ@jw&3L&8xAI_?wlZTxxj9MB{y>%OjcNPLWrH#x0{`G&6f$w*9ki zK)*z2aOMS3EbRtTQY)3Ba{(-f^OLBlW&GChxM$_t|VIp9PJKzd82H=1J#5?~#hxk66Xn*0Y?*WV(Jh*_76q|^MU(Q^^ zn&mq8?@V^|@Y60D1?KehH*rI+NZx}nMinN$aPvh z87Ce3p!9k6KwKSuJ&Bbm%LPI>Du^hoD$n74(qN_WqV;*x)3o$v_EpTpA=X-(mB4)K zLunD^?^HAxapJCcTEysM`rfNFmUpG_>0*-CyIR@!S>WxzdvxiZi{y{77XhjX7Rzi# zo^1d9!$g_XOrYUHOwRZ~g6(_;*RKk+j|qrBxno?n*>ms%q)E>M6^%6N^l^+oTPhI!TX{jYQAD&@T_$5?~ zo1snS5R!EJEA(pA31rri*#<#qwD zY&A%8K@~y~bd&I}B@QQ)(~1tGKaTlhNOBm0l4Jhjk3SX)8?VTU_Q*&4ljrGokaCD> zEveo5{3z|ziCTr6%4nSJC2=g`YXsEbt>zF@Axvwbla5U4e(H2 z$@@o)wYu$hAWsn`PHR)Cia7pyw$#{$W?8X3Be^Ja%c9~|v&Rp1nhF$^@kNA#w(f7| zCvMGh#X%%pZ((as_co5)b$@}3OK~&&>gV7_j)qN~?qqBJnr+>H)L2I1_V8S4-y*i@+1mdGxA> zGoT+HURVsqpcPp!M8yt4Eagde+)WffGX)M5exF=;i81}O(XdfvxcxWq*^}>;^MS& z1g&1RcNRUj%P81QHEOUyb8=V}3%9g1)O6pD1r&4eIh+ZMypHep+)8knh!;Y%f+9uS zq%eR9TBRldSM5*O*mGg2--xHG5);+z#%@Pi>LH<*!KCyBI+PP7x0t785?j~GVu99x zc70KkphkSOm6LeopeN5CM3l(B89UswxDuXdz4lG6Qt<>>J!Way;(0A}%v0bFD?W|Y3jMuc&MH(TQ9&tzs{6;jr_Ayo4Q(Au0W#gXgeGc_=V`{_>3Gm!ogl4M&$EBnpa$lg`-H;1p;R$hNQ- z{bR_jesXIdjdr!OxkMRK#v)7Z!H8i#&FhFo{#-Zb%xE!h-F)`crHdEUecndaSkw;DV$-p0+`FH!J9W$wyn0``m2Vu< zw0Y3Bs$>coK^5Mk1p#UpMcv3s6wCt8^!M@Uh&n7E)7eHz7HWUP2yxP$4E)E@4+Ahl zXGyO&si^ei9X}V+ijh}!EUQ4Du5|TcYzqM<;=+HI{>^2+)Sf+wWEyQ??+S=yb*I@DRQths4~HPcds*W~_J^r?qVCe#F-B!{8h z1J{qeuHJ9bvxE!UYS5k7-Bmid zWuZ3bDlGO`tVq)<3TNIkW?AP9PtGHdKNT8O;asmyiz0sj6jTx5s%^zoQ9cGz0UCOb z511LT%(Y(ry*Y7;K?Ua|q+Wf2l#| zD+N6?X@Y#e$Hzl8=OH0CfL)&ZN|d4E-cCzFaVqpaO%s?-EzpHCnUaS{D-hC%bzH@s zg~ManNGqsbbViDYe3~Tjbd=3Pv5Ig*xG5VDwJc%^8XZPMC%l=ZeiukoU1ZSJvz0mB z!w1FzbM&q7F13aAJny)?tK-P_xHM zP*)3{N`{5R><^c{F88eI82eH)`=y;GHQClSQJ<;0=2P<2i!e}&DW1plN0JWr@>O%^ zuCES`XNULP$61gZ?)|%9D#hiG^8KfLude+M6FV3X+5muwkF@D@d!OV_C#xyHa+qxs zBck=MeMnUu9df>x9ARPW7Z(g1?z=ahvR{+yi9qPr-=R+H zCY%%%qc1qy#jf%=JAd*M)BI2wXs%dYM_W8~^T6=cZM5dBrQ|iRN%=#?)TBOJx(wsr z888s2%zNK>n}t=&o6fA&RI115uet0M83)GnG9?-E%j5)Fkx_@!oJS`t=vWfuvaC|% z=(U08jBp0}%pF6gveCBP#`w6T|KbC8nmc^3?yX5I1hyVs9qybrW<)~{8&Sy1+eIo`Ka!Wfzti_}GVG<6~?2hWuLFq*Fj-^>d-y4bHLpB|F>?#W|RLe$y zcn~U-uStL^=V&s-Bst$=cZ}|OGg)Nb^z~lNG?=QB$(h(Uzwu3gQ4E zDw^_L+2>z!Vi-_SBYTO)E3Wk4coH`&XY1a(+~80@u^ZsW%gN1Deyl_MrHr04eWeT1 zQlIeK)Z5h$=?mLB>=RiDhN@Fz50OG?zj9IhEML~@HuJ~o)%}9(gEVIC?056M20{>e z*1N4AH$;T%j>7G{D9CxZO+fD#;S7E5*WfgKs>6H0aL5<@Wx21v_2qI?60?4{LcXbO z33GfpxV*i5(|!G7S+IiETH+7jDM0)EO0qsds7&$8R)iRJ5nqE0*(e(vrH=A`ULGimh>~dNbC^Ys>t0q| zn9tGHa4V9OrtZggjde|+$TVbO5SmX+N*-fOnZacLRDRL29hz|}b*&k@fi74W=l-7% zOn%2uIk>*c*ollPUgT7d3n7}J(Yh~JE&8o$lWB4s1RCnFdd*0iSYL&5_M3;&Nux(O z<~F9D{F6~L0zRMP8mMbVau5`RhU7i>LWXCe&`NWtXIONFwqlBS^%n$$3`>7}$HmW= zXK5p2#?XZ=+p^YF_-xw`eQ!QP+Vs&p&s|K%j@w*d)$eZKu!jHwduf;86Wa+_SlF>7 zs@zAv&d#rU)Jb1*a{Gz#_cvx0^nAX23eXzgU(I_;pb3DCV2$@!Kh9x>8RiX6k)r$Y1R9idhOxqw7)D7ZF;x=35VKx918{~nfrUsgq-sb+3pV~gvI2l)E)(ijc%r-N^dMTWmI4XEdRaPYp1Ci8T-CfA`+dl74R+)xnHi6B$z|=Mp_(rpzFa(C`537Nv{}!Q`62(9yc|Oejqb3WG&>z9a+^?8Bu;c)?6j)XV*M;H)`ti zEmZP}Q&Yttzp8j6kAMzeveNyKqE0UMZN*;C`yV^$No#Cs6orS1E~W2C6uoc&T(P;8 zBu2<^;K6}8pciD&6LRD6D1hIJsZ;@sOS?t9V50D5y-+|M3qrR^eT4lz&lFD!p&4@) z-uxcmx_e(E#Cq;PX9-T;%u}n!ilvzR z$+=Ebb@IO+PY!1^mjeopB^RT&o1~9H+JuqNF5YksfJt^Uf%r}Z=AuHsq+@smFd*Zlgkj5|4?1`J8G;t8 zC{T{l6Y$-ZD@Qt1T*%ry3ti?Wi6oS|JI6z#1djw^yhA+?109`5?zkTH+4U%-1~ShO*{H4PxFNU>R9w6tgtJ78qBp^ zK~?mm*)GRo4d&cpQ{sFAD=c2^PgEE=!e?Vrs3<~iX=lo-U$8KT9^B$w=!AbJBIujd z&G*j1ndytHOm5`_<(ULR-73;91bX5NVP;>wdhNp%DuR{PITG=Pb z7(8q)nl=J1-uQ{{X)oTEknR}(4<7ql^rZr#y)a3$NAnm z1S|Emf5p>hPBGJrxSfLV+WPwI=kE+!iSDPE{z&g+Pjk>A2EWExwk;odE!OZ`#R*Bl zGB_e8BXe*x-s&1_B~p}pZoR$n93$I;)n~o@SkG;^>Y(!r_To3UgV!km`0Hh+v&i$r zpLud;(f}I~azBXzk8Mbr=1-7+#>jmR*=J{c3(`raPlkg$T=Fb@-Q99)e&Q0!mBHfR zMX!AjU0**9ug>LZ9W++5G*OpL|siqzb8bWR{!D@%>>^kGwp1sooPT& z5+JYx+K{=#JHxY+3&n!rI2c|#CKoH#W@f?)3gbRm?d{l6OUW$-1rl?=lf38PQBbC& zVRkJH!36cbdl3BHYO68HhYYguch^d#J}W@mI4mkD^KXdeTv%MZ7Mwh3dHzcO*#o+z zbeBstl>gv%t32_e*3=`8Y7KiKDj8v1|Jn z?iCDMMCbUdxLCx*u%=J#wDQXxMZf9%{v+{o0k}2+xmZJ@>S5#tkNJTUgITE51&;@M z-e}XTllK$(H<@v(vLay<2Yfz{7PhlHD)DYi(%7+=V3LccV;1GwDy;jugd(%!wsn(` zVQf*&R*=F<$fwXdv};iab}zH|myMuE{#_fqj%%*ZbZzw@7JTi**w_xnny~G2<528p z)OCyc!~zbL1h(wrQV>I=)!D_(^q*$M^UjC4Ou5`7G3JzgrWyf?aj73SGGVhRrJi~+ z-hE<3Dv6@8f7UM4Ln|)U13W^=Sg*%84qwxd*DiP{&W0MuXu}T16&5`WweG>_xyBK| z8Lsz=i)T#t;4kK`&nbMe4uf)^?OC}7*nAEtW+y^tt7+MG6ZT+q_x7f7M=x>$N|9Dr zA2sHXDy#xa30D=Sa?cl;I`UbY$PBjqYb#zQL}f(jK4ldNIoUC!9;U4y??#UAeGx-K z7PVE0Id4GN5`YoEW~VNy5V4YpdtrpTK9{sqXXY8^WuG3_7>wlICg?WwUpsI>f!PFm z>2+6H3AQI}NK`qP6u8KA420?SmZH}t(bLf!`T{$4L@V50UWDOP_$e=^TGJCk)E|_L z<3HYM_ndjZe5<{68}0!+sjE{lSJgt*3KQ7nE%iIarv6G`#~xwLKC$Qx>?Rju4U*ls?KR{6GuJC&1 zecCX24Z6}_zSVi7i&s}itpm*3nY1M@bS;2PoB6cN+JxnyIAQkGd)pRiX9)8mEIVeQ z5B5qakudfT1!)APwE-|j;e$}B*AT;g`L!MV3Q-Raf=|GxC6ZI^Jv|?W_iKZS;>NEq>9g$dX+FhyV@VmI{S?>d)6ZWIGma%JP28W5L!$|g zO-~O3hP#z*!uCmOJQjJKZW>zNeIC}Kj6HOyZRqYEmNDVXwAiunhG@)8TOv@l&YoW= z;2gQSx;a2DeaCurj5CC29$I>#U7dM1*NVj(P4y_{7?)-^w6nRLpID6;x}@?+H#uVP zm#$1Z#2q$OK}CL@j$wX8um_jEbEKoIF0SD(>uU*@-KMY2P48Ldjh~FCaCceA&iV9K zF7U4K;^s)_(j#8EXWgBH!B!lsq+qc{?`?% zIy<>FN{R~B?bp#co3`VAJjK4p^8F2!(Ed>&5k>WAG~_t`ureR%xQvj;e`#?JUw7rX zy{~E9lWcJIldJr<{Zn>V`2+3)4X6EUM&h#!t3!3LQ&;)0lnBq}d-utc>Q_QMBA;FbI0O#SIt;^gz=n?KR|yO^O$Fv zi{-0-;`NmU+k5tk>9?`4n0rhd0Gx?9Z;yFH1Y580Ue;eNRu(j^la4Gk!~Jh{-DsiyNfOVo38?j-rvL=bN6wB?Zm z(7ufX^w@CJnLhV`tq@BQ{oSq1cUZO~2fPJb{^=wd7WS;03}qR{#)i1Ip<#XBM0cFM z^Yx+M`={Qv)5EuNu#>AfCxNl{Rq!W|%m9BPi}&D5!c3PfnZ>-&XO|CMjN|^-ygqu_ zmv*J6w{zceMo&ec&&o&DR4~gVE6+d|0x3^EF zS%;6z$dper(|_>TEpK(%-=4ef)`44$=6}e3cSz-ZE13ZIfJjaUdP1qiPvxCgt2n}}zZIRpLw5Y~T$<6`j{_U0@9T!Rdda(XZk zcF7ny-cjV|->v1T;v}T_N~8B5%sIeNQFN`oc9p_-eF*vvzNDD~zO+zuON6-g_09IA z5#a1KreFgr>By4=!bRN#|6}!Qz`+Ll-oXK%gOZo9C~DdZ>XRsWb>?FUHCk(y=ZUy% zDjN|{)Ja)zkf#?eN?YwnpI%&(UM{H(Zc`W zlZJb}oCd!1I~rKwz&aFxwoSR$v47%rbaG;1y51duB$;4EO?pA))6skNZTelA_-BQp zP{yvQ7SX2ln(<{j>qU+D0K44{;`Q#-tpiWlMQ$YilD>%X+-hqx)LjaK19< z!2}S`=>(XEXa1*x1;YsgrKfhA5{5>7Ar(+(N9f!dZBIG?H(tUdV)zB0!+HW$(0Nq0 z<@v^aZ|_KKX8_dH*1*?JUtxbX9?Jv`z;sf?y?XtAaiydc$~4k983?TCo(uFv4E7Ah zxfTJe40d(B(8AX{2qk4@RBY_LUH2o6dWq-urx!z>!zU4Id&5x%t%gIl$7`qSWOj$t z7x&fs1)PqtBy!?^SbCgLyj^pLpUSn`rQ6%+&etrpY!y(;Tfe~>80Id^EUj7Mbd*&A zE7I+>6ZgN{&R>0YPwrvZW(ar>2OC>NV_5bD*DnYiN8_xltvm6D)rDU02nm0ZJOB!f zor15M@>j`%Pv@>r%ko|UK0aX2kAUdQm(7B*x2Z*?$2~l~Ry~Gv=(0@Nfb4ODT1#~M z!}{&jyMzlanTlWV0NF|pZms%g2!D80*gzzG1yy^mTH^dT{2uR36`eA(UZ!I6fX zNIsbvtHxxcW5Te%9iwC0Rq)9av$(ie0T4q4WKl>w=M_Af9voVCJ2LqnD;@U@$SM0a ze->uWJeEQYkECzE8#z7>i3k}tRwqx_8<3j?OQIHZpLGQ2riDCd8JwLhF&iG1f6t$_ z@!oc+{iMAp)je%xdsfy8BEzmxxmTp~KuqV^_cWvfxq>ziGMYjpAQD`Md;s?5HDGYO z^c!%L0^edbKTf~|h)E1=?9aJjE!$SswGm&dM-0z4_SsD&-|pa0HA%bYg_*}` zm84_Y=|hmj)3e|UzSmRt>HY`7=jg2U!q*FL5ISN0?kk|rx39U5R_}fLXkyo0o!=CY zW?8*8=<6SRe&S+A~Qg_Rj+UaJ*D}A_U{B7x{39bVMQ-11D3$ z?RIFocByU+vh#`;Iw1SkhSovRGJHYf-_`9@W|P9ec<5)d(j=NBbw8;0Dl{gasQtO| z%SlRIL$l4szF$^W#r+pNA`)=zSz>v>mJSf%v0H6*X7Rztvv>Z-qlWK4~ey`F4Fu1y{Wjju zf^NU{UbnKCEoRxYn;k<(hrC__lg>BW9|XF(M9ymTp0K>y+8S>&c@^|leE>y0$t1it z{Tx8NzU}&3Z$SKM9 z@YW3bjYt{Tp@Wf4_BnUA-lfg3&)oeP^A3MJZN?`HLU|@FS6?T7-CuRGI`1d)l=A4c$ky6{cEJQ$nJsmf98_7c|rAn;&{ zY29}3mQi}Pr98GbBFNef`@BQ8`uyl}Sf4>nSK?Dq5j_f(lybgnv57{#EAu`2@A(G! zEt;(nn2oh{AD~6;tJ8e5(Y)#@2AtTJyo#T{aB;h*&X@a%XX}_V+JOBV{T{Nh4g_3j zimR=-9V1UT9V0Doi%|v4#)@8KJ$5zw7vrrAXlWZgs3=|wgvX0bM5MdR_xV1F=Circ zOkq}DU7ehvvz;AWB7GYKAPVTRUAL{l>|H+Ek%+RFM6dfpzp1+TW6~8)0yi2!*PBgQ z07&yQm5YD=mvT=C@iP zcX4$Ee4Ekna_DGFu7cL*be!40qis6fbHV-TkIER=$VgBBG4}jt_wbsCw%Q}CbeG{) z``&2V{71o$FGur=4-ebdgBJ|dvo0nkFntlYffVXGIl^v-vxKJR=6y@QSe^JC?;isZ zcDwo)VQkv2%U6mV0Bu`umf7^b9PNk@>1(Vd!(D%5uw&o?My9$ZhF@{e;9P)Q3 zVe5Z|VU3q3>~`^wA6dSRriT@Jy%J#Qd_V#8od6FvGTeScvwqgq z2W#K}!Un4W7;*Ajc0mlRxj^`}i^dTrDg~Vu~V>mfs=g0(f&R#F9D2uoWC2r*b0J6zB_AraC>^-Y@hoqbwL~vj7-?q zy4nPZ&uP{DQ~Ca`zx@>-m~uB~)vx0Mo6rBR02)cz+uQrVela~gjo{VIQd8qF*2)dJ zWU2k{y=ZibPz5!VQnWbXH+m!Cn1h~~DR5>F4MCK-L-pq{WCdLNtMu)P8_Zd<0OxVy z9L*_}jg5_q8}bpsyDNyLy)U03pEl(MdLxI+djU&?9L~cnIp$?k9~atx{P)Vhe{UO_ zd6BSWlIbaJL&^?FmOV#jQ)PPKg;z9*%&o=af8p^o1ZyA?erIbz_Rf|yuk9^*-Tym! z>Fj}7dvWk>7{Cua?7u#y724hndUrA3I{f zwV{khP65Hjobnv-JXT3kE^>`Is4O01(%ig^_NUMmiFdY#xA6aUR6&q;9dC#9--or; zCBW0fjNankSOD;MwvT|I@ZUG)Cp242uq5=P3QXcbo}lq@)E|h_64GWgEE0%w_#brO z@qz1%8c4VPO0_=tp!}6&{a3QJ6fQXrm@_rl^z#2Bqa%NNV3DhZ@Mjw`75d#l3^*M0 zNSwi5$WssfG@RS z{==HpCk~1Lw}Yax<>o<4quq{9;_HvRqDmajRS*6ZjTc4{QNQy%Vu7ga?DtfW-Ji!2 zfJ+7T?NR|AN(4>^4B+5pz0(gY;1zIOK0;vjS^N)AE8Fitr_9C5iqPx4gbJ0AFc45G zG)H`s>#MZtX9N;$kl=GtyQqrMkGMWx@RqDR;H}pbIv4{d1lX?sJ|Pb8{uR*PJ^@(&!@DD_p&<6PL0^i(R(%Sku!+m!3_0dHeAg9WT>sv3~9RjoF4*0mRF7;cH|ZmBR1@b|YtIA>zy{)4ftms`)g8RGuV3Fv+JCJbUB0e1Fvv#F ze|oQhQ^9f3zUg$CgGEP%c0S)OLj%;vSr6STL zsUY1QN=S<^G$;ZFjUdesQbU7;bhkryydTavD$jb)x1Qf0&p+R@7VC`nnz`@$Q#-D` z_qDsad;(teWxCErA93?@T;+t3iiwM-@MA290Z#8f7d~U$gZoc|&I5?XpT?cX2G$Yk zmC4=Q|JfccnQ^iVa@r+%!u9z}iE-WWuzLmqUqTlfd!`7_RmxYA9s~E5nHfe^wVnz^ zP;n|7kW&OdcMTpp$+Ban~GC)^|2g#KgD( z!_4v8#4$l#owN!CCdRsV#5J@saw_vb3{o&h|L$D5I66K)2~-wx`Z$@~gpIusFK$`E z89BWj&IiwxkNS-yT$!9dpZdRU`%kA|6nob*8H~Av{SCh0~-G0Q$`Ng(HSZ5IYXIEx#`;&FrE|?gh@}2Vf4@p1F-sB z_d)ibdjPZNp6Guntc{Hs^u3*gC5~-lF|2)jeE0*xgK7&mXgd^T8ngK(Wz|F^ON*yq6NbO3PW?(QSN(hZoEwgTEOpLG!XNIkvF zo28WcJUh(|1v*|p0$RBFW@l%|G|je`gN=_5H1!|$`rjD=f4}ujAo(A1zjFEPyzAWd z-i|(U>Oj8gEw2#M}56Zc``X`44;Cl+N*jVGa zk6i^`&77Z0Ki79n(8jQ+!e4#GaS~q-43s8f@%|yFX>R*WUb< zU#8B#G!9Ii_f~AG!rxB!-67{C%ixuNygtbY&}sO{$lMT<>Y=_6xUUV<|6)&%kB<7Q zKFVvtq|K8BG*5uki-7!U$kdVykI}Ry=yTVAK=dih*be-0Xm0&49>7@#x>Q^P?Bhau z5B$YF_KX4Y3#eA=l85=$0aVdDJgG7PX66qm7z{Q`Fp8()xeW9MfB$M(aSCMPUiI21 zizS36C+n_`SJEEsQp4*H95xzgK}A}+)c>0aXlV)5|95}T`Vh26%5W!c2kjfk660Rp zP-8Z1U%X#&t*j3UgealO-#BUiREPp=>71NvDRVH|XYbe-1i4@V zghk!CzyN>$p3(6h!U?TCPD?xEdX#%e6{3J0FK9~t;K8dx(CXRM-F;eK(v?cuAP4Qo zJ87Z8a=>B!r+f4#+V{u%{~pgj9!vA3b)U1Yw3*_r0b@;f3ea^fbo1 zzM@NQqN?X+AV%v?X9c)OO+P>XBgZ8JwXCsIAT77K0ypX2!-rvgUzvaglrz^LeMLlU zd*+Q{f=7>Jn~E_8|uMaP8BG#B63*ALl$ zuE}0wPiI~8gdFUj6n;E&aSh;6{AtNn?-~Ayf$p6H8voLkjYg@$)Kt;0-`iLvrl>D2 zidd$YobWg%1PvoZo=}m&kA#64VrKhON`U|WYpY4bcQ4S|`ib;yw@cdEBiuqa2svS} z3r^fGzwqCfYB&=yJmtCdo^Cn%%Mz0RTwfSMTxNQJr$s~c+aUssuMCoswAk3#fF+oG zC_oQG9-s)gy#LBS`rjL6WbiRp;7;aZ1_2}VKN7#(zLgu`Z0X?R{ijyP|8L~~whab{ z{AfD&w#CoYog7$l@b~YzMgT_$mj`Fl-S$5#MfqphaLuH8ZhRf+&p?fAy>Q@8tX{}2{ z&yI2Y)!*wD~0wY2oat#Pg7m}t=4 z3JgE<>C=x>oAz{!{QdT42=Aag&VDF=dQD9PE!j{N+3eowhbpz;(8!?LG}>cNz4h(c zpftgQvXMb7Zr`oVi}_{n%p2zmG;=ecZ(tn7v3x_pyCHjEyvOhOSPg4^PyV6f6)|D7 zV@r8iv!uAVxbzQ&gaMc=ATkoZ^5sn-%8N^vC|G1}-Lj&xb3^uiK< zjrNlQv6IcsO#%V}-}rd4PK(ll6)hXhxE(THli<$eh20&{18PUeX_*9c0Rp{#D0NzSq?EvW$@}IzeT&h_;3)$7Vj~g&`!|E31C0w??fC6^{h0ugw1MSu9vet5BmMnb$faav zFstc=G530hhOWR6iZd2v{(A)c#@7`QV8xb1E^uxh)=v7?2%l&D4-npA{ z7B)yJ2SvVPPcJ7kM+Ze5ZEbC*OB9iu@UAY*nwrP6>7iL&A5uAd0mlC}v*hY#5paFK z-M+FyNwKp~RHXz06;+2hq~inQ5rKztEw4yHdG7k&-k_7~oN!`d;*P6Z73j)QZI)88 zgF87kc(?LaN95SzdlspOb6<;Be7tuzxhi zC)QFi`D^b7Gjp8D&F{0-vvYHApgC)9$R$Z%ZS8Me6K9`leP&%^j=hQb%27U4VVcG? zfBKXk#QuVigk-U0LQfnSRD8+yAfc*sV89t2qwQ$9%W?`F8!z6?*-mX!EY4 zvojqpJ(aOsc(*OgX%&5Q3ukA6C|WL(#!uSlO~lJdFEm#f8RDV{(~Nyba=A!~h&lyq zko^MhnGv?IvgnVerX&t0T>4;+8l6L_udW_oJj`-m_d%e-j68!N^WCwRFBSXS5D1(b zts!@4k|!5k`=P#wp@o#2jfKQ4goHGKcE)mVar8hV&f7gp4{#$l>+T#DkO(X-`^#CE z=QVCSDv-|xIu@aK1aI@p%HLk>n(bO%p%j?LQ&yIn8msp&DFx?-vmD9T}zB*HvRR@dsY2tpECx;7MAIv{w`-8C^mO3n~S|M*@R@x)8> zPLMR))37kW(gpc3(9jTbQ65Ouf|%x!vdaeE>pN}_A3GTlUJg}^BBKp0FV1?rvRiFo zVb!?UKK1^?hlbJ=54(=(OB6K-wvXH#^RfZ2S)=w~t`Qu|>#~Rn~_fRz9QHl8ji1Z3=+{^FZ-KiuJ z!*38b*N-&o%#=009j!urt?`h4!GvbMGcgNgtFKFtUWgSU^D2g)=0zYngOE^n&q~-H z?&Q_jZ$hq%?*qLLoZLo)#t)jQg})lo000Mo;65|XR1kDqiMfQ}SFj6TspLTCsGf@S0*rXG5~ zscCMC?2y%d%DcNNjt=4rAXnp-zBe7{n!)4nUABJ!y7&bjG@Y~a0+9#c+2Sj~Y7#S^I$Ku0oe)_m0{&}|T;IJ;(lW%Tv zDr2bV859HeGRQ5|SpIVVa;Pc;^UVjfDMe04G$#eB-Uie{t|Wy#(T9Ew5o1TuiM*OJ zd7${3NM;N;>=~riyFl0ggSb@6CZnBnI1x#uEHCLs_Vwe;* zLnvv7^fSEx3>IwL5tp^T;Q%$}@II+8-hIwq?AUb5;T<4T`X*>sTws1i7Y+}d@9HIg zf4*&OwN#{0^JGij)nQZYkBoe;G>E|DcSU}8xYuCnq#WMqn9AezDo_~Pp4Phv!?-!D zpS5PQZ|6>MWRKSDWBQ}yXCdU-nyqfTxRbmYI&q=V@p|g&xq|`i`*8#}Xy1X_gP_a2 zm5#QLsdj0E{M!i|qQr#m!!*`6x4ZALplIYF-aL`nZg?Fw_2jTlTKQRS#0%MJqbD*{ z2UF4$O31kON zO|4a^J7Hm0nv==Zb|`UpM>O)(6BKAEC~^=@Evt4c)?Vhm2_xKTf-qkzB$ znQ7-0Cgb*ASM{=yc1qt?kM)kfKEVu{4ohz=5$Sq;^GqS+EEHR@!0Ua0X*m>&k1{9o z0zkym`ynx!LN-~P$f?h{NFvq>SrtW`yNYb@@Uw zFl!{nhYH*uI{vz-?H#a<*Z_XnUguwgq z>=%-`(8@qDx%pj`3pOD!KsSgvphGU-5^*c!3easshKfjDw6BjB@1=JZ=v7(d3Ev!bXh_f$;I+D`b zkeaEa~znA&%*oRf@iz4u}896uJD8-y0Fc)|aIu)wKS`JT7n1 zEoW5i(vZ(}oU5_wAjO;49}UfEcYmmd{E*I{J)p>F%Nf@(fxMxn$gGe!uef*&T`i8} zdzo7hX9%CsC~NquqSql+q^h&COIAO~`0X{vw?+Yqk|r8fdoMM zs2oa9`UR59mqS7RP>3*JHa%d+2#9|E{VFnF_UWc!Sew$ICL@YUTxOIO%-*5oMoiNR z`>h1On}kctpXQfdT~ire1zRV$=vv_xT#05ed7xxzW zW+ioF&5ycrZ>i`S5qra}fRy^J*e$UUW$q&k+XOFmXcId}ez#MSY3@o(urx)q{avGkXUDwss})P>%}z0A2=N>);!F zNnflcGW0X#@Lb-()FHKxPuWibU$U<-PSgl_RVcw;N0W~hy$jOym}ayL@DcV+>&{f2 zr6e!vh!;WOghB09=T?Haw-%HJhqqKla!~g{!sNh&a$5dK4y|l?mEKUrGw6IrN<>-w zdp^r7#LjjmM8YG{8-9I;4!Rp_^EBt!k(!8jhUeL)kbD=aImG3=`j6x-Q;18a=7!S6 z%t1qXkY4t74&!JSeO-%>IpcHAt$_QW2XrTm*Gb17k9$9steo7URbPA9o1sEW$qJE5 zN5PMch^~QWy#$KBu1N3nBbae-87x>YY++5FdJ2bz$gvylofmM zO--`$*`Lr^3LY*xA7LiKd^5X1esBv-yh*Ubwj-FMK!^eEWTmvsEfqr-jtylr7^A;fYS6-9F9uOp~q==Sb_L{ZTK+aFi-`VM2%SE3RU@}TlD zhEPwJf#YV6j-Xb(@n&P8dtVti?EcZCj1S{B zf+Hh)D4*PId~HfFFPn3!>$}-Z&fs>xRS}REpgJGI->2) zproihKcz7*pQE@FOCFl_Rd{~I<2>)mTLTF&RyM_?-~`WoW=Yr}mm+SfWb&*_;<1kw zrJlEZI28{GHg+LM*McG!Wm)O+Ql$Db+a1>pwbX+lg)UiR} zuIty0koluf$7I>-*rUKZlQK5Od6cV_%?A+|uilpP zD58=WU$3zYi-{GJ@W+S`MKFs+=v?1;f6r0|m%%BI-Y zui=A(qyZSXz4%mH+Oi9g@(`FZkC&Z0%KZ2qHzmV|oZzZoy2NpM0srvf| zR-Bj=lc_{JbzxqFi05UR?eP+X*mgYTamoa2TC|>nsV7lqTs#kIVhO0Pey}t`gzu@$ zr_`sf+lE(dE~q4*aF{)2^5dnaNA>d?g9hj3efXBd+qR;tNS?zN1GOFw0o5QUQijW~ zH}25JxesWSZch2Ozk*q+Tc_XPYn)4>z>K7Nk^d!syx^Wh@GD9&5xW@t%)5$;J4wtv zJw1m+vlP+z4?rX5o%wX};z*`bXRbGDf!H(hb%P6C`C8*6_BN;o-6}K=+bvU3!!t#5 zv#IqJJ32c$SW68LxQ&-((J?WFqZN%^KqcNyHn!-vxU77T0jKC=^K7J$bjwV&&*pHu z%Ez?Y>tOv!eOb?8F37)2r0%-EV3)zSO^Hc_n5({-mxCk>gCZX9TBZnXmIKllvg))v>+bI(cF5r8mJy( zQItP+;^80Ts#9GW%D+vz^F%~MRG_ikJzQaem>?;YXHk52v-ro#!>SZlHhG8T)RmEK ziWN6zH=7oIcNQ*XqdYS&*)D+r==Zj+IUl0$l!L+Yp?0;wU@n(SHWuOq-gj`>p4+^dyrDOt;s-Ej@Rg=MPWc*iFvJVHDwgPgGDXeOu$t^u}gYXGrhuJwVNsXFea%GE^&7N#bjr9!8%(W1*K z)ik7(nSAi_`#+!WcX}CQb8AF2|GEN97IXvOQ`X9@{)Ulw5Wk8 zO!~AUVYoU?b~iTH+()Z(+V+uPQ#f_VWcrW%DFm~Dw9na$0H_=sOjCRp=M0sjbx;QT?a&;`spB929&04O$4I8LFY_-TZ;~DWo(AY95|=LSiW(FY zjCC7Gb*<_R17n}9lt@rp^`1`4T5}P(@W~Pjf!kSOu7U>2iN}f?Dt)K>GA*83%Yp2m zJRc4y{cC}6(-X_`!sO?x6%`mM;bYxH>Cm+m3#62$CRY8e0MHjSs2UUB`1>sO9U3Yh zvubrMO82iGY&>?y7UAQZHiN=2>!_r$wQ&bX9i23&k9}FRd3klHnsx?MXDyhdjvL;$ zezmx1Z}jzuZO1H@*H{;DoaH<)t44euwI`O-($E?p9xt?{wYT5u8SM|t9Av+xtHcNt z85cW^{7)MbCN(7>_46NK=zfY10m3Pb#>R6LqdI7`x_BkIjjMk9#tb1L50=gs8_w>jWv#(Dc)d`@%-%UN_g)qMm*3lWmDfj+475Gf>k2pb4Lg6(RJuRvXIf0 z(zVeHyW!?J|NJyAxp1ZCI+^C}tf$0H;q{H!8H9{R)KZ}B&ZDZ@%Y*^-+w%_gGqpxC zY6P2KJHERY-+hhL^3jRokhI$*DJoWd3=oiN;Y``Juqm0H`IJwRU`=$b`{x%HvJoFh zuBHtnX-9NYy@6)GUiUhd<*dKuAMHg?ibL8C;Jt3AcD29OyetD^?przYem$A>!VGZR zf+hE()PF4>C6F(v^X1ac4sJZ}6Lx?Eed5dKle_XYBIO8_7lJBki=k9eONu~779iZQ zkl@vUNB%8+4C)(69peWKIXPe?-62nY&sWgUaO=LBT9BRxp5Z`PD*#I*wzQLylA@hf z83Ap{wp<8{%Dj=qQ{JXxAguOsMfa}5yYN9;>n(G6OhA{NyAqCxu`fdtigNr`*WZ)qPd5_I z!~xKA1$-_8s^2>tZpseO=cqcEK%s#*2s99ivx<>0G0l;Y5Jp&D>uUB3&@xALwbY>; z$eRd@kGEJIaUoO8uR-PMA$P|1PewFQo6c)E;&Jskf6KTQK2iGe~#YL!m7RkSBLJ*XE*Ey79L)|q(P+-8)KGg zg3zP0(}viz73~S$B;B`%OTG5Eqo7;0NS|&e+lr>3iQYzB+_h@#g~j^}j%FVGHqV!Q zKP6<}`Ew?0RnL_k6=~|#--{2qgmDuNk+@eEYFpK)AJS~kfM^8-0oubwS-X{hm&|eY z`tzV5qlwdo;4mt5E#t~}pHUsmRlhFvnF^`jdrzoit?kCTB4k}|gnburQ@~S^JC1xj zmm?Qg#p5SIASCvluIg=(HcT5E?{aVE{l|~rI=T@bI1HQY?tI_T0ig`>d_YqN+EO!U z#p$$i-SYIj0&1QFo+9jT0{3rl?ykuP;)8N_8(wyf+YF`b3-pma{rx$7!=~j|6Q*j+ z#+VtI8tLfibz$n!tegw%c6y~%$G5D;i-@-tI;E8OZT#H`IdA`z=aa91$yaL<6vq|z z+Yp@OJ>LlMOV{u310dWV6>TRlPMq(P>A|bgQbF8F`+)ZE-$nGYM?ke?G~v{F_@rlv zNKZ}2EZSzGoK!I{Ih(Mu;61uBM@R6>sPxr08&z-LUfztSrcMbCyCQ!}x1ALFhF#iN zjSpD41e3`8$D6L|-@dW3ishn!coR!w^HZ{kDkst`6&e@jyNCnCL2RtXvX#v+qXnXU zJ3SrZ^=z|hGrs7x0#F!j2)3OC`y8uOef=?>szLT`Kq~MWrm?hj=ibHb&IY!-f$(qn ze!kp$*T5)|8%uk`tyeZ;KMh*i#_d!&Y+ZJY+kN$Ee&x!l!!tdD{jm^#`sHEC z+VuAx;Xi<_nrl;;Bo>%+z`-|kLEDF(OOnE`2c8#wq%t88Cn0S)m{Xhqsa+dU<7xQ}Hos#ywcl|M;Bp*H*N30lU+MmM)d{*Ch~nJY)f5 zk%ZFR{&kpHZLzU|mcA9x3cL0DqLiOLcytxj1u4$y0fac>l<4|}Fddu;>~`-EJa&U? zzn|j!_mwnYzIrV-bT9bxoWa08yks;Na4|MCNeTAPSyPZN%LN6pt_&*ieEJyR3)vT+ z{(=zfKkhuwhZj&iOfVWzivrh=7blXN0HD9{>AVZqU|HbdnZkLV>K85odvD>Q>b4yQ z&o$VEK~OGE#CTH!exjcycf5>0_7nGirs*zpMXD0D!=Wj|0C-JW7dx(9nN$fW@lNz;V5n8w8^6>8Xb=F5UrmFb0){pd1^@V|+*ge8mz_Wm0_NdNN#CT}=&= z^+8=--=sv;`bgS>3(WYOfMwazW@>$kU2GjLPA2};q}I$I5iiIu_@*9MmpJpddJ7#@O+!w^glj}h`=k;<#hF^bfi7F)ITtA`jsbjeRm^p zC3OEgs27)nO|DH%eQ0hmR)6$pssuXT1b83Ty94$fPd_g_jOS&j$jwzgyLsg1;bBP- zm)7clkN{u?sD$j7j9IXG_6)825@6l|nfJ>Mt!J~Y!e1gHI=ND8x)xg{Hp@~|^?fnB z-$YKFB#RgKf-v!ni_?yn++LbfnySZM;i7(xY-jG5AS$+ejnkX?@-!NP!jDqBo11mI zxQ-eX0ILmk*Z2s7!4%Vqk47uI6m~(=H8Whxb-T%P|3G%77sy4NYLVgP9?y^>SVv z4QL38e45@RoDjOatnI}PN^e$&N-*_P_2UIBDY8@&f&+pg47cLe$Vg}+J}y56jcx&h z&qLip+f*8^4UK81M*}=LhuaPS3QRB0BtJNK0h)E!yII(kW1iS@OD85Gr7_y?CEu zaZcdy@X+u_vKE=Jz0g4JL~uPYx;|Ufbhb^Dxv^oeFikru+<5u&WpuI_nPQ$cmJKbf z=k~_Ur8Uh8M;=r()NPrt4Eadol0E{PLlM^kKk*Xkep=$vo4-Q9r^Z$^7P+*Roc9d;t-I%=NcXEV39m^Fr z*3xpP`J7ED^Nzm3DPEp7zX5D&e}`B#qp0YC%op@owS!9_`qU6LYhset(v#4FFS*YV zMjjJFdb)ixf(Fqvt3Z4Y;Ndbs#kM0HP(za@tg7v{6(KiXd%=GE@&! z(m?W@#HOV~^hIk7i^c0_R!^G%yN0}@BguonD+6#UBBJL(H2c>;NYWP?moEjX_&G=D z@0Vw0UTWwIdWsIKg<+kf$kR5SqG4`~Zso%#x=2AQQC3cg@V9UK%6?QZmF>)%uJ0l7 zjwqqlb@^%gXkwFo?d^mVRrpjwIdq3VL~ZKcG{|optVt|&$r7OFKx;I+pKU)}Rs z!P7eoJXhI%ipsty#}6p)*U+4+gP%&k5on*SyFhJQ;j|QyBWuriB#x}att;1<+v9mI zSq?sf4MObWHeju|XiX!wRy} z4>>44Gcii;reHeFm$xV9ef+q5YUw0!PDlj8CL3!(NEsCs&PU#di5q*luAB`UXUNRV8-9nwF5_r&s`DKBI#B z9APRYh!NsTZgcSS3r@SJihn{xkJ=q6i>MuG?qZKREIbo2c0XzA82bE#^2f=*+WU`r zb(Ki(cligMqShkCRUubysX|EmL~Uxd%rhmAj@g84Ckbkf_8Fe;Hk+S5FDkM>=Lah^ z>!{$mv~Hf}K@J@)csTf2(teipbPrnFP-bV`ujcPE0jV(s9jx~XHiF8lErbUseU# z3k4-{u3~zN zdp}X*LVKbg0|@cY#C~#OF3yP-cW=L=>(QYe92)*jXq*^snn0}e)D#pj+I~!jq)?|+ z^uJ82oggKYAWieCq4_fAj+UjG>C-ZjaqqBzVZzRsGKL$%N<3PDOhNdo!=e zoubavAE*HO^1qFGJGWG_*dj%eN?T!2KWbkc_;t;{{XO2MqD<~pd zZ#F-B2SpLrf%pKHH#-CeqF_7mYl}o`28x)t7uk8W6HMPtW>6BDfWoObY&BLf!-jJF z1{2xCr02aGI5~(%79D_ zgG{Ja&ikC+gz+L>1puBdQ&M#I_lJ2M;V&kRXmDz$6CP(oN`Bp?uH0Dsf|P&SMi9Qd zxd+wt3C~kL-C+4-cPtyxX%r-|37Ni`Q z&3zjje=q@#5BIHGGVASpT+@vq$@(bA_;(Z)zslf`25h$7J)Vcw2Ic2-0Rlhk=PzC? zcF4~)T+-@g;^&{`^}<{?RRh*%(fOtotMGhwVbj8j!NobTL(er5Zjz{-d?tz7{oWOd z+sLY!Yy4+tJD-{Ic5_gyS$q*;v%|&ND@3gJ0e2I2IH37r&SI2`c@?){0&bRHJy==U z>$g9|+<&P1mhYoYwP`}9+38}2y6a4bOSA;L^584i6~2dl+TPo1Xp6PnZi+nT z{Ii4joW9VQTA2yx?>BiJt3K(dfNfo|;XZ2Lw{tioZt1HCL9Q;#9u~Z*KyTZa87|v= z`J!wqB8kp2^K7FWMnFrN;is<;lXVPfE#hwtqV;m`LET@UTB=}dWBK%Gresj#x`c#^ z4e!n35wznI$0t|IpDcn}XU4mC5w>H!Uo{I1@gxi?@55e2x6o1$g`ovST<0?uqVb%h zsXk!&Cx?9zc!mqHzB0@3_0vxUP>J^fqebyYkX!(-zWuYYCK<2RF`;4uNkaWd~U+ zPOZ_;Mw}nFzPe2YbtV}~p?4^Si_vyWHucXc} zgVTXZ5lW9?Cklb(wHu>+OBu$l>C~d2mlU&MEp%&GZ=l#=!z*_xN}o^m6q=o{rN2F+MrF z_4y9xo25$*moP@dQCIogwK(Jb zC=37d^AhEIJPrK0UV@v@J5(*qk>3Ue@*?N#-Mnt(IXgSQt*(|ylNmrkR<~{;3OCK| zt>l}}ERm=BBRTa#zLLsu%ulQ;oomNzr$_OF@T9AV9n)K!+5Gp@LMju^{PctMT|aOW zkfb>9%IRrEm*?vFWIyX|YhASH8{o9;eYeDNk8I^Abt}1Ri?<0Dv-OBUuhu=zHA5gX z3YsE(x_xCma%MRe-_qE$7;_-k&Ixm$)IdKH0hX)QmRK5mJ)(UFIgVkCy}QOX+J1iLZW0s}S2Z%+Tjx*s<5B4|=*wv9 z+co6?Aa87pX~iv}5p`x97us`wmXQIen$iAn9TnaACby)d!O>-7b8DM-zr=zH(q-$}y3f{T;?`o@ty_y&>| z<@ay&ZeE8Vdz-Yc{WU?pfR+Xeo;J}I`|C&OyRUp9o?K3fxxX%P5EA%)dHyZ^*9G+N zoYx^X9ylaF2X?*N8q9sAsNsc|$vyv7)3^7(e&uloyiQPJ=EL7FjEjW@r-a+z`1v|g zE|;<3mBsmwZvS3G2}u5snO!^2XlVomm@B@Goh8=E}maEPb;u{HD0VJxD9 zQLs2lZmibWnrres}vV*zCil;Ng+{Ckip9wy~(ldRZX0q z$Ak@izAZF5LW-P%HP>TUS%bZk{`Z|%9sCX<5p{Q_x<~D8^ z%MXM+qx8+D79dtDj_xuwb}is?cc*$$)RiWTVEJoa9mC+dZZ~Kmx*DZ?cn()jf5g|Y zKL2$Dq>9fEDZh2OZiM7n1?9|)>eIe=?S~-ZU^idV7u{h-i39KZ7JFBKIcuI?S&+Y* z)aykuUtQ8S>6yQz2|5-(dqII_Nb8b)dnZ>@x8aS;FLZ~pdbl$ve-Fd43T}qtdeeQn z)#TWF%Xy9UbzR+Qnd_9*_RdvkjyafjOXQvAH%eWvjg3AKu`O}PNc`Rf->*j@Of8Y` z$rq8KVK%I#Z_u)S9qQ`^qNqBTCZFssEe*#fC%%+vkh#x(O_1aL8;GY%oXNG{yZ!h5 zz-tkds3}})nFyW*p1WJM$_1KW7}+O+i9FMwr$&NY^#lJ-`)1F_uO;dbHCnC`?vR+ zYpywm)|k(D#txH{5kr8*h6MouL68s^RsaEk=mr6S!h(hb{(>c-7Y6(Qbx;r!1gV_B zJp=(E1d$LHP;%8d$$)TF8CnS5Y;MD`BMRI?@o)RCpe3c*9@L8CM6J3a1;?@$u4zYM zMkwx2CQNvCcK7a41Va=_!5?>~UUsZw|7$$O?U(1K%LJFlM#a|2LM4_$pzntd06~6e zXiy?T@c;G;Ga~>417oSf;cJIS0U^M(V|gU(|9S&(stahCP>?t1ZOPgHb>tp2aOB?7 zSYpusvXU)ilnkGa0!)_se z@~=STXaG08CPrq^OiYRg$H((WxFw|E{~`VhUw&_IUKG^$4ZQGPRzp-5F+BYIXEb4 z>*4@-JxgRj0o~9t)p?@(EdaA^aAp>kt(}u^t1f`p`1sjgF`7P9z`vi8N5*q=4pthN z3cp}MKxsM@Q_>K#GviWtzSuq-mU115-UbZFYWT z*iNqCo^d`Q4=;d9pDhN(4ho`0os!zp)2k^L1V1Y#)ECDuaV4LciYiwzq_JEi>APq& z2t|Rmt}Ie;Fr>JIw2;01=auHBK?lWB;>zc0Fw5{zg^&+5!;|N%KeQpFqi!oetF5yZam9 z;7_@;i_0~f(gp^GC8YR0x5!8XwS-g*90RI!JN>QzuFf*_^v~Kt*4EyMi&OLSqHT?5 z=}-ZZd2m~O!H9zwL;=~~q0r1JdnWlnGFDT2B&^ur!({{&Z}t7!iq$}=9-YP6JR$gO zT7#^(?wF|w&A_JpRvk8h5)Gx@Op@&4N9nW5KrZE|J%VJXG zE6vT%53HH|Hu%y~cX8K7u$_BeAm&uU*|1t;=;2y#9tnrZuse~_&6z>-H^R~Vjs$de zD#l;_ZME^lzhetA!y@``b7kfOOuUl!Eft`mB}x((A8TBFp8eo#O|b*Uuy{Ksd7OmV z4F?zT0UuepLbKF9QsB`hk$S- zSZ6FJe9~^nPDE8_NsYA^O$-R{^>T^p^N+=g-V+G+Q-{V*>G>ya78aKJ>l@#&Fvh!6 zzMB{h4|5Wm_D1MQJ~pr{pGyQ*%N4ET#)916@gcha7?IlxCd$7_{mb-SQNV>kd{E|o zrvBau1i)yqyr3kk(TWG?w9u%EsK8)H#6yP{CNU!ZB|mgW6B-Uq$lH7OS#>ekFD{q3 z)$#CKNjwF=m@3rbD_FJhm~;OC1;3^yTv(XI+LtmF)`O`H)HdgL^)!=XEirkCkBvIA zJu`K(8Iu*R0QFq(thH|mq5QtNSvYdk?!Jo+C8DU^t8R@06bzm4Wj;J|cXbhP*=_dF z_Vo8be$GEOHfl<+haGvsrVYsn8LBJ@l3EdKJzr5kJ+U{uua(X5WnCB<(uCFJMSqrv$aV_X*yz(Y)uXM4WkB|J2kOV|bS{rfMo<7r5x^O>JC z><)Lh3W~GT2s&N~yE$9SMWP5HsioAtB*cui{CxSQMtVb0>(xz7137&|{O7~ugQ9Zs z$^zozYI!ap7_h_Vt2vA8F%Xi533J1Q;P^U`?d3O+EQ?0qwqj5ow9f`GwMn@C-i^e} zIp5^wzbw7AkvN`5hZxY68-$1ZeX85V;&a3Q{P{CBcwuRLS}DkzI3!KvpOBHt=+_Fn zRY^Z_FjoS0(BtRb93QV}d$;D+KQO>I6N33fRQPVa*6z2Ko{H&_c9|f)_-~Ij`2rM# z3Afvf6Hrn|BK!iNw$9GIU#n;XBO;hOU(fiO9S>oZloE1E3xjiWiH(d+1O((kQ3rVf z7!5OfgCo;w>}E}jO!w!GQ*U`jW@Z4uS6j0SUwU3gN2^Pp15?rV=KCW7a|84Cz6<)D zb0bhZhOxYCY*n2}rB~ce+9d3^8Q?r$_cc7c7w2HEz>#?Bz^31dzLsj7UXl~}Hd&vB ztLmzQcUj`8QK9Kq2XH972*o6(z(5@5nN>V_R6u<+u!r9*iUG+~KXy1$kO#kLor-Jy z?a6)=V%d!Vc9;zZ6CNl-RFaeBI;0v}SFnn8t*I&-o0HdT5PGc}5q&v#4h#&Dj;DXIqJv$A~^4LFU~>*3kiZ7fcQ1TN|L z5943PKj2_Sl$V!_e&qX6)ROYCwze)NF78PjQ=;_v6HiPu4jW>V&H7+e1{aR85 z(mTIVV4ejudf?Z0W&kHAr>or?E<7G*C`r-%DOad(8r$^B4|MWD^5Gw21Fsj*56@6~ z)4dS1{Igw{K2PZMx_2Iy&Gq&57q_Zeweur6ePT6+`}mIM3+S1d_|5L~1Ul<&dLwM_ zkYvtt(+k15al|MnC^#KHqEV+?Yd#k9)0-*xTWw!Io9dRg*X#Jn8tP?uOnZ2_@@(kDHRh$CLk1dO@m%+-0_$e3ut~b%!sqQs z4B?r%c?W})Y3%m8K}ku;7oLI=0#WW4Di7wzaI7ooKYjizthc3Yxzdi_(?euT!$#{n znH=7<>5ectsR5G3WSUb_;)l6EDY96Z@y7bGzCdrckgnP88sqAkV5zpaw6uGC4h?lM zIw&Fn_2%|Ar?}WRG*rA3M#7TAZU%~{qr-L8zo`kcoR+TI`nB*gGC2bS(&pQ-M<;n0 z^Lne(Hcp0$lVk)i;Yr8E`((fO$?<3jbaYg*o!$255zE8V)ArgU973z#o)ORufDwUA z4hJ;7lcY#GqhIh>^q9ARi3w!585eT5e?v$J7r88Mw63>iSWL{6JA%_(aV*x9573yJ zyHArao}{zS4S0BXn%kNNdxS#R-LrX(pXy64Zf^QVmCJ0ee^op&Pv=fv-ktfG4u0zy zl=j)0DHxQ{`GM32_iOhqgX`gX(hKQzkWVJr@tm8@fxJ?;E2`mmfp0=;tl@6}%ML@$ zHYEZB^J;{WmX;O}=-I@)KIBmn63W1IsH>|h!;6L9lJ@K^@c13^sXTWh!J-6)c%)saX~@NGf1I-UiJRJA`YZ6J$A zVTEI6W`!x2Ef}0EO)u3tQ5+}Ua9zBNABsy$^#w<2@@tU3Mqa_QHbOPWg;Srnb0b`{ zZYWO*iGK22U=V23(Op_ONSs%!x$^JGkZ-tl`MPN%4trg7kIQEV`qHA#K-jRWRvs}A ziIzx!9jYLM?d&nobG1Q=^>t8{WB7#FFc3|)cYB;s&662aw#_WJ$(h#s{V+tM!fYz~ zt-b`6@i}P!10HI?L9rPyb~!gzs6kU~8{VcOh|9{F3gmwQ$?5>%p}3vZ#$-W2 zQ1WYv;kcYb?sg#YmfZg!q4*oCKl`mfZ^_6+VKKRrvRZ8n!o}QVXmw7xyv^o`T}tx4 zVkGDem!B?4fSj)uA$@;;aVVHxR#8#;#QM4Sw40xjhN@>{B8osx9IFWZ#or%rrupT| zmt`_5%W{2v>zB!bnI{sMd|Zv9Yj*wWOuL=owr6;C1Wwp9qU)sA;dMs{=EBD;)SW z<2}uCw%IkQi4V*a`eKLzkn!*k__}DCad5u{1_ojeeKj-lRjJSr5Yi67tl!<)MSjDi z&|FoKlUEUtw?pRB%EJ=>A}MHQX12V;26H~gmMYasF#njcQz8jrn+nIp<+1l`k6&6l zV?T88BQ6R&oiv@Arlyd*M3_iycQ>K8=yuE8Y(Pc@9WyhFoRV7LQZqX~n;qk4=D>;y zI;fAySU8H9$R9p*?<;f_Z-&Fdic853b$HxA;KvdF&dxsoWP`i+Bz7cuZ4FQFJ{(2JK6vf6 z`Mmm0Rae)ZOUl7WwLr4xERyc7MdH$rJ_kHiQL;a zNQx*{0vZ7Z#pmnW4~31;T@WsVHf(6I>iGbKAVB+Z0mOi2NVWTXs>Sw{)a@{G-^DbP zOX*r5I@7zPdJ!`4W9OkGp?$- zOO*@3lfhYdc5{GU^K0?eE! z2*Fer11;@%jqx!e1|$tlLTEC+o{rmXh5NGU9I0fiwDjV=#Um&eNs{NdT~{SAzgmb!P1qt30S$&o1e zsie64Tb@|d&Pxy+uE;0vHMM#R2In)uu(W5y98XySu?`Kd^@!S_(EO zPR`b5`&(EEO`N(Dra_UNb6|+NqfTS%W-@Snt9F zBGt$UE~8-APoK9I0vEu!-cCPEwbgw1fORW@Q@xX1paC#h!}Rv{Zr8ND*y=f0%HdH^ zP;jL$Nlr_1F!C6Hwtae@qf&H5PIpe3enK=Z>vGsf++;Yy#-5s=-nO&atN}}+*EXSd z^x@#*AR%Lcz{XCcq^9nlHXL#T%`qH`N@myRHf=3>rlg{Rp;4(6EQ-RLZgXMCBsk)O zxy597+Bv8(B=%?f$sl={26Rul@4hW9AHRD(!mMd&$7aMw7Vy3KYq#BB-8-7+WK51F zc}<>o-Bh~YTZ=bv3xn9yG)2GzPsx6g&M#kpx&1d8MI&(sH7E{!Pgfg^ zbuYGJO=M(D> zK0KUL+VvF6y6pfSvM6NrxBO_)N{@Nh-g5=NOojUvDbssL!uJ!?pgPhc3ft`=*?tNq zLBN#wNG)Ek79~50t+&eKw1-CZy&*^=(p(+p)9f-Q(hIxK??MgMz>xXBGbA zte;&8#b{^m?aXh!4s1^e9=6VR>EE>{shyO6B?4{N&FWlgwW8S>6M>FT{sNcn*zR$E z_OSg-pca$hpNZhEd+;eCRKqC%V1W6VPmX2_TnAeoz&DI`>@L*uamcklrcY z14a-E3W{%DCh%fZ@oLgmvT2-&B0E6!h&G*RGa6m!X|>oxXf|1yA_6fdEN<5icW3Jn zWvW&B8|^K)j~%9y_*yp|{qigEA_Sg8w7>Lp0*t}}5XXgj)7XS2g z-0>{FXiQ}Bhsf~oKtDeslkw!J>}*1e9*S=S(TI4Q)oL;);wNNfAH$<`J4_JjnOQD- z;U*nkg+ijMhc$JSicfg2ZY(3by`Bx;{lLf~)&@nf*qmw40h$f&EQMb(!CmfIfmtGr z^;&b!i2P7A!O-=~ZZuzxVF)7D^EeZ`+Y|FdCeK&|L0>RJkV`Z^t&A#K_uT~R*^4^H1~9vAK@=H#zgs;A9`2#V#%)#`@j%(EFLvJMN)+`C3d+5y;@&QxtAFbY&`JF(A z{+$@dbcb#WT~3FbZ|zACurI9=Q*%O|`#exFm?V9Fyf)E)TT@r-vSWf{RfYgdSil5r z_lqYk0zz_A<9{P|`=miZC1hsOqIq@z9(uMgQUU`1T9np;MnTK6dbt;G^Jv{>(sp~dt zu|NuGzTyi=k;_8m~Ya=YXCjZr+X!J1n~DpD{u6&5W#d@DV{k730%TY2>30jX6;__aZMGYw7%3c{PS z@~OX)mS+o{C=$MsRrEpdo8hj-TDu$6dFMT{%`%qu9H0J%5QS zsK4;E(q5CaGkN`$wXu2F$ZX~=&bOD=-{?)H_VtkFxo7wE=6naU;tkP!RT;?JYggB= zq$M)l_lS=1f@7&g4@%vz%&b57h94*ZU^joy5gWlgqlwAaHAxWb?~f zPvRe%O*V!D;fX$|-4Z7S(Cd7xHov6QHPvfCq7o#-)bwzGj9P} zT3V&`{5hMXI|9Tlxw$C8NI1dHr;^-#BiKQ-8Y<;lVK{7(fs!cAn_l}?7zaproPi~? zg@O_S$Yb7bDJ0${G1YG;bxcd|t%Q6?@f5Pb(UTw3IlWRLOlm1gEaY>zg=&$BF)WiLwNuTNWJRh=S5QK!>&rbz8CN1DbQ(gz+-K75`~ zNcRir<)@QgP!{c>&|56Taj-xKt|tW4#|N)rb-vwg(uP)QUUP}^F~vHNE2(fg9r>CT z$quxg`@nzwD&=|8)0WKn`Y0wD=--0jbHnS&@Th;>h}SNZc%p_#z!Bcu>^h$E%6)Tt zb8*c;qjsLowePke?f$;u_0oKz+9+&Zu7C-uRnX^gaPZg-BP=hCD#;@3%hm{zsVnE3 z-Ify?73M*in}rg%vfALE5jihJ>>2=Z5f)D_SoY5Rf?E>cDWYtKVZ8fsmKm)?)Ii<( z^XCM7L_bwpT7Oe-uxq5C!sMX3A3MS)=~nz*(HOxo2^23K$G6= z_V6OsFw#j@it7)EW+ITy3TOr%WF5~p&^4P*jikaxCGV}Zry47uRH}4_RIr@r3Xr#O zSgrQx1`C2zep0z-8-PCm&B*q4g#`nrL`_4(;H|yoMDz6614gm%%V5^?UCoxJhG;Z? zWab7BHG21^w@7+R@_51Oh%cX;oTfJc{YX z@o}`I*O!Ntp{T6xw^ypt-INRY$AZ7nAhr8h@M$=6#xR`r)=|QyrwK zzP5j*;h23iUDz$0v#4T^@2&n@l_Dl+db8q zEDf%V{upZ`7A7anHMIRc_v>A6&goD5&ZZ6~lY^(LO=W1^dBl0_3R#j)0CthiS?hqS z+mxb|j~H}Xp$_|#4*3sz5~v*Zol5)^c57uGE{5wzS0F{`9m89UWSJ=?}a$ zRGj*E3DO^0E_<%Mg~68J{NWYaQmYG=k5+q-Q*VHu0JboN=@|mCGzX6*;l8RN4X#t` zYMq2k&<#r0!wR`m;|gz;S-}_KCp$AM>#t#(84RlM4111>%?GIAr*K*Z3K^`3;bBV8 zyMe{Xg|1e$?71PZ_8K}lV&XhI3d;PMHB8uWShM}{T2Rc6 zj-m`jpBN(hqsS|_hfxuIB*SU5zva~NzWo6_=WFm3fs+V@zym5i7@HW?CQHYDt!GJY zw3tOuq4rfwJLRhHJCG+~zosVZ%l)FdM}>xp6LO77Z?Jl&O&h3KQU%iKbqrZwTQitu z#13 z8?7SF*4uz}-VTr3URgf6T_gH}pFh}i#56QGf#*5j5k>OrzS&yiv9XtQiR3IU7sMz$ z9!MaD>bj4ru0J(F;XYk>H<`&Z7GNNO1p5~-X z8@MJ*LyYk(B%k+V%S(k$BV$ts`$-8@3f58(8KgcmH`zw&q3EnFtB@cFh>Nr3_@I|j z@Uw8hL%sy6+fXk<*UM>(1kTrVzic4>0WEy`O{0$e)!^Q9YdA$A#KaCnP&< zw7ao8zhLpLDxr0k=o(GhUu+S{5Nl{0EQe%P?Cju2m6{=L63mGG!Cs}v`MZ{Zn0<(w zgQ@;3f#${h;(O`5tq2GZeEMCJ=Z7QW{~l6jI_q#Joz8h05Y6kEiOe}lTA@@E-Q|tc4_g^7uFuX+1ZPo7LG>VkUC2G83%+s8m(h(5DR3H?rlDF6+~-R9hd zKQRZw_mH;1A)2!&K^~khPu0w(Ofd%;S!aC(Qrj6zp$W2 z8tRo?o?w3>6M@I8LlWXb!O!dP{kuJibodl`&)oEM&KD4hi0@!fNP57M+L~9bB9YJ6 z@C%;Z-2kA9`{Xu3$`&iB>LiHH5Ak($ma6qh=2+&Y3mdo)@p;Dqlp<1HcPljFQqn-6 zIV~ntKxiyHuGgK-XU#A^fa0G`!CRr{IxR1>A4$_!d^Iy5xqavcZ33 zj&YJe8Q%1{rvvgXw&&S4tm^5hN{V|chh{(7>}oru`MCLp1Wj=na#UU5+vx9HoXy|; zTa8{_X2e@ZK$? zJX^c3~Zw6|_w(AQVsZe| zP?V{ClfvWu`~=d!O%2QkLCCmg)0~6Kbone+J(JMUp?4$;5y52|=?miT?I}txkS|v1 z1o-6;wK|=``uO;qEY+Z9W@frR9ZqL|eSmuC8(2Yhy z6x?AT%W|}LG}`7MBm2nXaVu;sgTF}8lMu%|V;62vw2Q_fjgN!FYN@Aty>Bv6t^!gt zd;@X4UxT+?Fy_tfe1g^LavZhY7edH|upoEYT6CM(r>!-cM?rd?`toKe6ZMq&Ipb^tRQT@(Jfqb?-=$H>z1EvHd z{`BlZB80eD6&Jhxpt`2HYLqos$x24g*!os;>(n36I zbzu08pbqu+_NHff@oBt3crs{v=cB&*M)_;8dD;u}b^fFcki@hb({+nV>e(nO+kHm)9q*%Zv3jtg4 z51_rq?()tzik&a=bhIYSn+t=kVfk2U!KGzuY!D6%Jj`|?yu60+kI^DRaEwxpeir2` zQ+D02AbSziOcVSl=kw}D1qbS|&tQObb~GvkcmVQ3JbvMB%0=*b6GZU6qTsN8C#9pI zGX^ww;E~IwjA;6m(bPM6K1RO>1s6hQdg$ZZuoNPFBT~dorsN z${im2x37zpi!f5pcc&b=k3cNzq)xqN$}W76ye1ii?(Se3?7puLc!pH2lr%7X_kLaS zcsyxwn3|gdadYP4;;6Bem0ypIjWsi#g)Q>({Gdz}D`D=%hKWg8R!qoClUcs0fmHXWS5=`0W3(_ZSRPHLqJ^KN`MrRX0idSZD+oSh(Mf?gbf%yihOf-_voAd zfnKj1b7j5;*A~LGKXLi)b2$K!{t!#6L>&QH)cz3&Xa~2na3mxos@;&cVYc$3yKj@z zVB*jmci~acVARUx4EP?uks*Wbd5OhN|1MJFntwYxtKeuMeJoSVXIpl5b#=XH6u~Bd zdBF7Y;^-k2X*$L^sDu6zW_@sntMJH7rc^9S^$Kxm+G4O z`#L;{o>3SW7-VFGmZ!}(Y8~v=`Zv4YK~@KgOG<01+^u!+CmF&f>pygQ+~Zq^V*py6 zPe(hwNe^aoA#cNeWt>G{1zjaiy(Yw^D>#=s9WPiW?Rt!03J8!%h*7~%{XkmJ+vC|- z`GJtZ>9j+8$y|7G0iDk778d|Mj98%AWZit?(sJTy5r7qw7}b!-VpErIimve~*Nw;- z2*vs3`lHBX0M8f<{~(}ljeN*nXD9WHfmqAryVoBWZD=?Hp1m7H$zF$99tF8OUogG~hf-KR1fDcTg z_3FUn1?z%}>#vk)%c3ujP=`F8bay~ z)!+QSPDs)|>(hk1EEdKULFm-f2ZHaDJoTv2f4rGh}iCftmBuK-%C($ z^R#nu=`+pp9M&WnhR%wMAuYL1Q(c2xE0SgKe7@ZWq8Jc19nVBIs@bh*pfWTv z5jt-1tHo;6sNEw0p89MbDb8?5=tgs~T{=8lsNaa*P+gllDgaBmhrIk`%MVlH=ku{=#!cSf@oLWob$luP-@g-FxzFWv-lhx9qH%U zV(4cnq(7YIt*D=Eo-^+iFesXM77rXTNl zls~Hk9Mo}E<7POBCzu=k?c2yCYRdAcLQJ!|^`|7L=;G*M2_V*hha+aKQ9Le8BY^G_qb>}QLi$(xsBjE+N zw&#b(ByHpt)4qYo$dFnz&oRWT_rx-&8| zwj6$O1Aw7Mu&fc^>OnLgx*TPi2nU$44wWeKy6&GY>RTEGzW4*yI&j8gb)H&V&1MHP zND6p$UO3*?e5y}^9Nya1f75zobVQM@j2dOFqOp_>)O1roWKKPSFiwmJ+~dGTvt7h% z2qkB9?x@XrYa|liTRUrVe$;P}8b~cR`vTg&jL?aQN6+9JPbW5@paY`YdNagXuceTf zy9uO6h69Up_DXJ2bT?^Iu?KjZ&fVu-RX}2~h7?}uKUsipIY0{Fdx%Us{BK4qIsbXm z!ov3pTbGa`Q_ZE76+$K^IF~bU`wwT4X-&(pHLN`nk$wp`60qg+s)|D10=!UAv zz?YaseI!@qloWz178R>+PG+}E9A;2Hc-k{55Ci-me<52a08x#_*H&XZ$cGG(Z>_M# z;pJ%G?d=%JY0ULn-BEgB`NV4M$zf|9x2@iEXy7Ej%C+gTn^MwiI50Yfm%{3Xz^=2Q zA-^3RpUU-e7Lj*9U&H%M!Gc!w)@rOUnO!aTl zsnXGWRr@$|V8&|LL$`*8@uF=aIhn7bE`Qd(@lrIS6gU?Q5FmH@aa6>YDc2+J2L z1yRdxI@fw9A$JvKxop3_5U-_}&d#7l0ZonMx(k_Jw#U?kpT_Gmz5ekrv9{9qMfE63 zv)}bm%qXwYgC*X8RQhRU=d35O+m)tkqgY~2>OzH@+*-)tEOA}gX!~HhoG(RtB2pW9 ze_t2>pE$G$(6gnx{K+j&0j1xqD|mWFuDO_qP>{VtVzCsOUNq(2ziv4rPFFakS}U2kL}*NeNq@ChcO{|zB++vVqx?%;K+rJG=`gS5ZHb(?Yi(BHgJ zj^MXOLQ>QJNzeaH1RMqSKG3@a|E>GX1^LF6a^BG5E@7@sO@M`umMUlIXu;QVhat5G z2F83HmMrJwZ>IO6tXSOxw>`oV;Y>?Q$uaHPxHwsXxs!>qT=O1#hosMBk33#{S=Owh zpI*N8Bia9Ratq|YCIdEPTxW0{w)}nCZ@}#aNc7vd`6cZBr=h^?>AxqO!-U^WjEM`l zdx9(US`(7(Ai~<$0m&y0*2Aq)Z4$6sPI!TTjSe`aTr9{>ep@@|!BZ~3VdOT77J%$b{i_kc8qjotnoy;TEz#S6h5)7=*83LJ5q205Bi~1Ei?C!ewfGO#Qvht*kHn z0s^2WCWXN2rihlOznbZ5yba{XwtvY$P8I+wr>yLkQbI+ktEwmWDPrqijV?g^f!LR= zXgRL)FaMoC0~%PX_isFo`%qa`rCQ`rQ2VcWfQ|wZla&?S-%lzmDiZNP#}@ea8ne{z zNyg0MW&TZ?|7#I{eCtoe?;k3X2D({QSPbqzI}!ftfPZ$q_?i4Bvzu^O&6pGYPh)-` z*MY(;4g*riS&-v)|NBS&b4H*{X@M%(pe>T-{L?-0AItjpn14Kr1=upvPA+J#^%oTQ z4+a01#iWw?iP8FEvPn_??+Z1P0Y{@gwIqSw$}G3Xj96GtKZ86h`%m%yzt$m`J%A$j zAce$$+})HIc|B~GWieDoUyaQweXN)84{+Wy)2f0NMfDf}>gD+z<6;xpx6Rs3IW0M$DChra&jL1wYPgK+FD zbpQ(Be_0}MdHDbHM1QaR|6_UV6$2n>8e7dq;{W$8`?Y=m+9XDOcz8stf|{>%jl3ET zs^4*n`7kwg`9KO%sTnnOkD?Uj?2ih@k#UqK$x%5aGu)I^@bedc1JZpoV!EOa>W?Cn zl(}7!=9HkRM5tEAYR9Fyj;%midu)2T|BiwFnp~&7_bhpKem=O96N{OJg`l)FdU$xa zbX(sH*Z-tqB|>00LTCaH+r*qzypT{Mj3TAT&i2bKs`UpzVq@(Za$!2oPuo;O%b-}A z=pY-+T*rRb425)-3zFB!_zM=pUL(htIEc@ zSGk?A-kZW9GDl2oq#Ttd*|SA9TO8XY|xBGbRkQaU0e*Jt&MkZaKN7v z>s#)w zcSCtxCk$uF`cm6OrJi$8@?BX*c5+MHmI@fU1$}e7A|nxU3JdRKKh}Oz{LgTc4S~}9 zF)83&W^hZ`thHT=&DQ%+dwGH%A);OS(h=tsvXT5ZBLdjWfZ#_?;TvDP6eFm4gHz|K z%^PriI1;&Rq^`N{1aDgz?-H9=j7k+9;u{}}eKSX(#@|0UNW#W;f2pNaNerI( z2{im=VR6xr2JIgh&p+c_HU|o{#OS~{ojyC>%BRyDj;L4pd$%D+G2|Ws79(?AU=(mi zHnRsj;MjPnRrw`k-mJ4_u^haFQ+&->(cKSBYB&WU8yr93DQ}#osc@m=)I`x?4b@wh zS&)+t%*(-^OOPs;ySlzcCddl)_xIOe6CPozbFhz1N*hu^NlnF;lb5f&eSGf^@24eU zf`fnvl2cJIGT9M%H97;gvZBMn#^z3m7*qZ~HN+1FV~Hf*#nm5sfW@^cBX?@9jBqzeDJ@AW5RMUl= zXP>IppV7()oLxI3uoQQ!79Qw0G-q730;jrB;}%no_V(-0Q<&{Fg`dkEm9z7UK`>01 zKF7wzjlOrW1_`f8slFgPvZ0Mqj~*;{FjSsvKRD#|=CcO28Df3>$g1i%WAmSG=;y=kH=l&c z0nn1%MXhF&6B%B$!fDtZUjvkLVFtqyh52~w-#N4Pe6jIBj4Lfo$gC>P_Eqn|v*RI# zXsZ<7YRN>bW}LH}>uj7G6o23)NDpn;?~RE|fl}!H;W*FO)p{z_r-^n|0LSDKe zOV~s-^y$74tVzdOzfP0BtB(u6ItgE?xw<|igv&~cgkkDnE2O4_c<n4YiH}$dn6`CW3_+=*yBOVuiglL*m1WS8lX}Q=g0f&8YvYW$ zJnP*^FBM;pTn2Vk&&hU*NSZFTlYei|{os=qjJMAPA^NC&?q1(5U zM^E1bfMQ>z)#jJn>iYM3|F2=M0mgf%3S**Ba6HZ}U| z(z_6t$ITCE{cZC4XMV&i4=AIjum^8W7^L7oAIXWN^`$WWrN8|&*8CyPcZ0qV$thKM zc;ACVP^84-vf#$EwANk4<>WegkfQD7@_5|Z%#pQv;;D0+cGg% zl`n)oO3&iNoqt{l>#xeYfsXz!CmKs>BHP~;a)H*c(RjS%e#na}?KoAL$Sb(Rv_%l> zpE*JP@N>EH(~OFh-LCBLaL|2HNKRfQ0EvcY3NSPOJiw1>9U zak{8inis_u+{*IcE-eFMV?hvy4RJ9`y568|KA0QGUJ| zzX=3CF+D80@v%os7qwAzWqAC@&~i4r8n)T?dJ(sNVVV4bvc}Im!Cbw^EYv3l#<8X? zB+x{-p34V|dzKed4VNYCB6STzfz!{%i)BA+X1wJz=S&W7 zCEsP<-(HOf73%CSclcd&7;_ceGiIJ{TlVYc(e!PyA?Lfi%_JVA#l-R(W@g1@y>tD^``=+3MAppY^F66vxs+*qGQthv zJ23q+JdpB=tDys+?u0d6RHK-6+srXn>YamC7ZE*2&%DGwxU#_uLEZ?ivQ}na;&Iz! zuV|#w5)<&aVd&ozPvvBAF|#ncu1QLUV=>kfz~9_{z{3k6p_tUS^}*ik13U~!EvoN1 zJ2(ZlYK#~lG8Q)G8t&L_4NH9SG$9qruK4j!F2MK?{B$wyN}aB-F;%ds3I~tkVoIV< z?C?1`$XLAfNLsk31lZJcgj1eVuIuaR>_mG`@2kV(qrC^QVEXzd8W@RknV5Fv4>qZZ zSND3#T+q~+VtAwD()aXuHkP2=BuuDfDmK1l z5loN>Cz@&W;(w6Ge`n%yHowcf5^@bw@_tPftj_CS1XR4IH!HmzM6Qvo<13k#Kt8K<$f(8Op4bH-5cjVuqY*D z>k5UqS%KX$vWrbkgbK&q2ceQiH!CYiIK=!JJ^Ngj8BAS2pYX^Yc6u{WP+lBbpYDle zmWWGo{4Jr})95F9wNtQPA@!UxfpC4CXzce4r0~`PHhXM1m}sDxJ~%Qf#bl_4e$%oL z0u|M;h{V`aUC&qO(plXLk^Koo$yyUZIhmRYxHZyq)Ai=!kHI~QtG-vF*pPpt4>HoZI*V9dX{no zmYfCO?ge0a77`-Hda%(@Qv*yI&}AzVK{^=_T%XZ>F_0pz{2V-dwdK3VCc#wZZA#ow z01t~EuZ*2#cMt1bk>3ihy& zNCyKzI8!r3Oqhs;1rIhn9QcMRX zsT5ZC%NdCC40CcS5m_+qI&w-&{a-_53HiEWAZ%Kb7OdC&($~0M8|_4@@H5tWC&Slsi9lnRa#cXId^G5^LgTN^5-`ytb=1-W&{_1!7}u2 zn>ED#rJ~^4CU&x&b%!nXa@rqLLv6=Gr{Iu5JAsoBH^=jMGEt2$k0Zmwy*Y-wFC;AX zW_-e;16Lf(A{!6av6*M;J4Z7K^|=gxA_@1gM`i0e?0knW+Op}}=| zc=Zh|ZaI4s8F~jthZj5D9nZ10c8ww53n3L0W?RQ16@< zfEhKgyX^xIZvti@!F*jeHX3TxpV&&A{qnd22hqAEUN)-j;0z3QFLqv*xrhGCVXQlk z6xgomS>MLnx?-m9!T%$6`G4hwF8d6xWLBIwC3Zf*&TX0AljqgS?R8|Usl^IX!I!-Z_Ho_a2&Am5?hi;28gN^r zy=R>$e(1bJq2jrZw82Svj5>HbkZcax3zE({Vck^}0d{`h^})RT6R=e)>M%e|I`n$5t4S#rqved zcw!w)M0vJjVR-_i3c)U*D3VumZT#VuJGhZ$Xds3(`Jhz)^#q^YfepVay**;98UFua z?=8FPYO=Ob+$9h+Sn%K)+}#7g-Q696ySqCC5AN>n?zVAQq%b7=g1fZPw}&@fxaz(bKOj zSsaT}eJNMX_V=NrS~xd^PM%*ZF#H6FLh@RmdIQ$tn-|W!kOcUcfRn9Asr{FT3)IHzt!SPw=moV2x zt-hE!uKcD5c$BTkQU~vA#0bkfcMW$gsJM}p@)cw!_M!GpIi8Q*yBc0KueQ*?E7}lw)|zX8tq%ZuED`H+T7aG{WR7Es zzJ)<3;RY8887;o)q;7CU6lO#vyDhYRe|JnKu+=7CuwK<(8Eq z$Q)IFOiN-_J3H0eZ_g?t5iDoCINscE)E+t4h7#ATt;`UnrKRC;m7wmR$8%U@kSvY} z8BM+COURB1EXi4`7my<+To;Ogzg~Zj^!oK}EmdAYUdi`QID&YVDmM6q&kc$gG9DPR z^Y`_b(B75^)#-doajev_lmPJ`H2_{Kc_OSa>BBdTZtKi8KuDOOI0@soz_qV!nAhrE zd#+g@yap2dI%HoFvAOYR?tQwPU+7nx97DUOn zIW_p0sBnF(-adDDxCDjQGNa)04xpWLacOXP4PqasrPE4-}DcOLe z{oMwK(sQ@M?7zp21;$7~HuyCJRGoNhg%9!Bp^ShhENPAlhqyR5R1|m}1O;UG$RPb* z3}*Qn4}9;Dz{(D3KH4sxVPjlU7S!{UgyIO>s%yo`k4l4qMcIg+>hbZ~Q7eCckg(kJ zu`bDj@>xMNSl2dh(2U)?~p`7sIl?`HFU9Jh>Y{TiW&g7QG7s##|VpT zuuc8QPPb&b7fd}DA1TztKAjaW{P%~+hxM&JOAq_*+OGFcER%|MUwv!3Cr_?UH&w7Y z3Kyd)CP14Z&h#q&F85mZhz#tnFVy(z=jMjKSK3ywNt&U~hka_VZ~9V{IHx7Nqj{u^ z6a=4Ba(WOu2pF4U=C;sv<4b-7@zvcdCaQIxX)WV{qfxne4?y2KG4(vsSEwProGURR zu9TU&_wg3&MrY3AbV#A0C1x zDV+`nCjm~(2YxH07agX|vB^+`ELq@E6Due9YblfB2{#s>?L##3KjLe5=-rM6zEvNH z^gq;KT#Evg*JEy!$?qksK zqxI1Ko%P@TtTE7{<(xJ9PYpQ>wW$P$N{sfOo-zP}yep5aOvfRbLz2Kv?i`I@60%Y* z^|u=AJXuN+U7k0DwJcC{zU)n|X-{rN4RPhPxj7b4mLsvorDwrvJ7dbRR=@qkky{TR z95UqceeIZn9@st|(OzyP|Hg)CYXcnEG3By@;nA9&rig}WWPYsUoHiPii{{eghJTt%nb*+AP1+XQ;UnN zHPwoVC?Tyjx7o1*b6}(U=K7E;w6g@3NVhD}izQiOVt)J@CMjSwa0mKkn;BcfOHn)> z_I#%Gbv<22;l9WB@60BAzP}j!Z6TsW+ax)H$!`0RKw8)4Y>s-u@|M*<6+*}93z+se z1Gz~IcP*^H*ZMYsNXI1cFIVze#J_FDgqm6%HGhkQ876DnE>Yf*o?~heIc(z{#w||#KfP86c%LdjT#_0)T^c+kJIa8 zw|9)DHg_?hAL+R71r-%P2fRGc)|KX+CW@v0_`)4ex*n6o6VdbL(K9TO<25}Y6FF0; zsM#3C#Kg4IUu<+Pw0X(8_}&3(GyG7HJLB|}(8W40oqm;9;&m_5z3K|1QML80M8nH@ zTyhfw`j4sataMQ_kbsaEu9#fev6s~{ZtmJ#&8H&3Ur@4)`0og{xvTZOM-NFTqVSZ> zjeL}I!ax^dYuFL+2qbyvbtS-jR@N{C;al*% zc%4K)i5oEB+C=3|w&J&Bq$>L^-3RZk$cf<`6-3y|4OY|ju6a$^e`7?xB#P{>95)L z%^tVtDR>k><+!@Dh@&Z4h#pt`c+y}GF%kpKIdX<_wv@E^N4=|X$7uB)D&n$1`7R70 z+|eU8riI_SR@9n}g7N^Tx+wO*O)5H)ZuYACK256bZO->Sk0mQeyH^M>`% zdmcL1@j`6+?Fue!rBNx*XDn{OW|peR3k%kOHa`z z;0JfEl3S!Py`%sH5G=X(2udrbL1IXTk_)!wmV`oUqrbS)odv0gY0x5cb?kqs452jK zN8HdaDGWE7jTs&k77cS1mU(|d`dN2fv-4zwFTi>IqWHKqFW2rXFrGq)Y{b^zv!Io7 zX&BD&ZujE+>MA83o$Z|%G$@Qnb&2F^I*IXBL!C++>?^qEn1A-;mDwkcf=iDEhD@0T zcR2~ z;O$*gK6G_Ch~X6qpdRnNE+F^E(^hUScpXg^bv(}X>s)rD1d+*`-beTy-70=HmW@N@ zGTrqMJxCx;mcv(EjmGavNKW+<&8d;v`Ff5Q#k&V_~*3%4W^gT-{^?WjJ&p${C~4GF6deIX493VFSHOTKw@*6>iO zZR$_(Ax!4yd~~k6V%V1h+p0AllD*r~>1f@Ue?atp3Wfsqf7Lsn&7Ip7=&~4CEarg& zw8yI8w?sNqLI4K>@0oX+U$ja%3aE_cHh9aGoq1-;_~c**L*XV7o6|x_gX=4UpOXkg zz}Ss^Jz7-+B&?Xw0Kv4l+?U-C5#_v6NZc9p)c-1CV!9qYoP{>|hz+3`M!>xejk0rdxiJgk7KLNPwR+Yw#;^IRRfnxTB z9N?ZHk?~tO;+4kvX0Y1yL*G7Qj&mF?DtY2d z-@pJ<4%lRKwDt=M@mEHuthJ{2Z!rPla=oLYLQs0GpdzRB=usPb;8lnJ$-??ftvYG> zT0P|5$$WncVv0z;F+PH*r!XjR;JcM1aJK0o;;@hgKKYzN=1aumfZrE#8vue+ISaqb ztLq?xZ6<~Y@@I#|W3%0Wd>FOqWvv2q{n}7TgBg;*9_+^%J+8y9Hh$3w)7@@SynQH< z8uD_sT25pE1Du>i>b|Q5o}HCz>GP8EDjJx!I@{2k>kMqjuCB>9FOxe?Q~BC%wGiFk zyBsaGNnbog;_`jU%iCUVb=`|v!$tuV8o4uid{n%ZPzY8en) z4Tt*)m$|yBKR>ZCQ3dSqo$u{c)838$<~Cmy8{XJRhUDOt2iyBymGLGYcebnk8#s9` zRH84sJcN`0{5L#5u;6-I? z;6<|Dt2-<67L`1h&z}w&Hl0vmM_0@7b;59DY=atypL8SdHd-?XRJbcUU=Q0qsD9dptx|X*%KtN))f>G%q>qlb_j425~qqwl^h9H!i%SKBH}(a4H&clN4C-oQ3U_>IZF&J8O2atw2-BP`kk@70iTt3B^Y8DI_nSx*?vOv#yE z65a}0PA0v<*0pJyLC*&R#ZzA+Vy##Padwiwg@g=3C+?P1=GH*gR^sH7Dc#oOX(-nx zQk$i0xZd)LLwj;&v@KbyC_mXU2`H%^QO0B7rUw&#m#if!wx(ldJ9z zXTE%tY})f*3?%Sc8d@A`Fw%YX#am3t?|Z2!L$S*qI~|h?f3H7Tp^rD65E5(|6VI6G zk~D7TEnqtGq#w5I&Fp}S_%ZO(mob_PYiPugsy9uR>d>8O$J~|nEp}GG(2Lu%TGE7b zIyQZzKOj&k(pDFeDAJ6gWu3eM^;B*Bj`cAki{tqNQVOFB*=s8nwd-g^uH?eV(H0R< zXdde0n8Az)SW)k8(e9pt^&QFqvp9sa7frhU>Rb2Or|pUrznl)JHue1IwFIpN7uHwO z_+5Ua2SFNDJ2~TRx8r0?=`+2C9TO|ci&t;;gC~v-(W(p~oD_O@8n|3s2K$7ysXwsK z#MYCivH}jEa$u6WSP|V^lLq~M7d+=yt_m60Po}@^ts7}`8YZSpRWGi0bDS##Z70_3 z*}90R%QKIaZPUoSBT=*2JFW(07am|Qc?^t@iA_!VK2!xr<3paQI*!^ObEt>m& z6)mSFmW$DlnwN))LFpTV%lQcwHAle7i57?M=lLJKc9RViwC>}bqKMQuoXGF`c>*$5 z2~X>wJW3%}w#O(R6a!niz>nQK6|sAl$=PDdIOf+kcW#x zrC&FETTAacehaf%)nP1(5gsw7|Bp{&u4BkziR#d2V&d%qdVhBs=5FMO_}RFR>E%2| z_O=6Ny?J=;<+m573FpGOiFWHl??7=e{qvy)c6*kbc%`Rv+>nF+n*jqXqJ4`3dp|Atvh2x3zqIh?Y0BPTXtHf&$NX!l zW}t^AY}tWH=eP9c@p<%I-pFG<9QbRoaGcqpe$?YU?HMpCr6hp}HBj0KVZzMGh`qv! zoZe1+4BwPidmp0+WRtxMqTvn{Q?#()x}yGo!_s_~(e}h8#p5<``YgVzhC@n6is!6N zS2M_sH58Bl)Oe6e_4P%)-%dOjvdh_lrT&(ai<`-6bnsoVzgBQ-OKGtJoA#wv2d z8y;j;>4mmJ`Mr$nf0$%`@YKRA=CswJeG{egZ<(Up`6IBdbls_L!wM0!wg1bYjXu!u zWkr4@t4KP9gvGIQXljMVGS-W~#@Pk~GRW$L_~66#Ami218$5G$BrxY*lA8r0XblGe zyY}qolC0L`IOgGdiw` z1BR{1mB~Zdt5%BhVIg{V3Jhe7420F3Z-lAu`HSC|4&SQ{-?FD^QGy3KIKX8Uk6+~- z^$0{P+SSPN0RhS6$>B45qQa0Zdv;uNT;cjq;6le9%7YZk8ulJfff~VX*DudUAAe-~h&~Hz5 z1wS*v-T|q^a0m!J!E|l0>FMFH;;3u3Mh7Bac3(&N+c3U_C%42_Kx;qZ@(Js06=*4=9+YIV^G%) zR!EGy{_Aqy(+)GePHSYA2TGo5Q*`YoO2i=R#W)g%oBpZH4qw@|dkL)D0@#oU(u_%4 zu^Kz3$r@7FQK87Nuo1OtH%u)phaL51wfv=HM_>p3S2-($A#%>{2LdkYNyh-3sc#tc z6e9yXA1loS9j(s3a|=N{?z;!SBZ@m10LvpRN1H8lw6t`euv2{d#5+V13E4_wnun2t zp7!vX&d^Og>L~8?&CTI+q`h<1HVYN;(5}^mdV6ae?o6IM5(e)aNF*X7tE~_D0t3Z< zd!)EjSLg-o>X?#IwtH`+2O$8CadG1>Cup6Szp(6pqs`vXpNxboL}|K6cXDfQ;RkYh zY+_HOFQyz}hHv1pT_*aa!5fAU)ANC!vY#hr0>gHL_piT|Zhhfn0ImC_9mrlICV%DN zfQpVr$^BNDwpCbIu}1ZG7j4}Fq7bdy=Zm^_|85_+q=Q@d_-9S7ux}HhwESzh;iP_& z=wU!NZftcChs~N(Qu!k=A7`(xf0i?(Ra`|3f@zgFEp0hAj}z*2mQA^Zfm`&Laf!)6 zxSIatr!NbHNpZ31RP>j>q3kYZC69CeRSOWHzVGq&8Mymy*Q}PYGuA`6Y)?fz1ismX zaQ{NShj8cYS5B|74$v51XCf6jHE5R=9 zKp(3wFbl5TsC{MnrAt}PzS!ixj#nbB#>Fnz{f=IzWBz$t*1R$7DefaeUdAI}#Q?8q zcJ!>%=I~|d4L}!SjAZ#p`!Rt?xsDf)JP9Xn^3JPCR?FqZ9gV?L9L>)yBFZMw2n)^{tnqBV6QZC>=M531jsyrd0VQ-D zUGJaQ&1w7A=E*D`sSyS!j|Q;6SW7}5LfA)|;EV*pJ@5A#AN3~8@oyrMLlghVEq=|& z+d4~>Ncjx~Z1M06;#`{nxKT*c6Rs3imeF>)b0g+kcCL8JUAJxFu8NpI0z0y;n{S6P z+pB>%*+&YnKOX*&a^6^#k^gWWv~Ba;_ZZ7Q@n6iA`#F#_1VKh|P*+38SlbZNzmKsG z_F?}MZzSr_o%!bgBhW6;o|}m(p8Uu5n@e&pbN5mdC` zv-9J~t1OGWi-m!&$I;mh$B~i!z`?x>JxFYBX`b~8dO28;-LbpkPf4*9S@w2g7OCrn zjUxGpdtkPJ3*UtI8DNY|Y!I_9{xVc{Wn<_M$)TOM&UolaJV|A7OP-lF@N^YNq3MsM zn?7YqviCstCXh+q^^~C1A)LPjIU4zYLcBl!qseuX$uD-#{m2I&dkYoS$KDt}` z!)C3r5$}DjDy}?NE4i0QhYz1a^DuHxL9JkT$Sh<_;CEzo?=O4LhfAc6=UcgR4on@7dWX zBOVGErRgeJ0CQ8R&f(TAf!4aB4vQuH#u>_J@(5YWxPNf&VJr~LZ}RHX@F!`ePE&kj zZ&K535-o0~){YVuMa_zOIoDD=d@H+!i5{c!c;1v1N%WLj6&7|`yz!C`EJyl%)@A&m zC}VwM0oR94$14jmbIq<=Z=)#dXgv>ewSHXvmb?mVk^_%O*GFIOke5{BWT`aBMtgPS zcec^Q5!SmGs7P-12dLGY0`-ekPCJB;`LnG$wB1DlV(#QS73KZj#FB1c!tVJ54b6o6 z5!+uk&wtyv2TH$LIDqYKIT8hZd)Idntx%$S*P%FHGOMdFY`;eX5dd$#seye+i%$^t#ZkHT1{^Q^Tvn<;zF}fmi zVG@g62*xGYhrSO-C&7+ipPyv>0&jU-Kz~v>2SEUCMgVZ7`_IvVd4x5eJvzg5?*!V!z$QIU;T`WK*H4!l7wpKX;d3e;27$?h zsZ8Zz9C^s}cH!Bk0lQ?d?mxwUwDUEi5oUNWf&v>4E$4^5z_V9Upj~5+;f6&I12a6o zO`EUH-3D1-MuY(~DihVBbDSJ&8h~P|bAU?*cF*43$h+u_>)MJutApz&!L?HS;$ zct5Or1`DmT2z=Hw&Q|w4G@hpGXq{BBNv`P@Zzfi7#GE6t5SmJ_-ko^q_Uu&SsmvGg zwuR(zPX`O-4K&?IODf1n1_n+)A33OzyGNxduHOoqW>l^aZd04WHn&=P9-8b`t)-XP zuMS}lkFtd4TUg!Fn%dDu4kD9-y(0Zn?Lj2Y4jRFImHUEc3Jzk&ZW2NL!}& z9K~^rQyCXp!c?bM%*=JhS8{T)qjh*I1fnXNZ(A6|G88sbmJNO;-A*S#3Q!y{u`Px*9dOad;WWPu|KI9DLjuZ`Rg_!U|lnY#}EGw_WWbZbyrZx ze*s^goP{E~tMbqOZoU6@Ct_C{+U4|%rE;%Kkg%GO#lIs6-kS@@Zv~dbsI5H+QC-ez zn`~vftliL9L5lv*)9ACnqj>Rl1~F&dlJ3^0P@M+rD-mwhWsUT1c53C?jy`l2;5>rQ zINoX4*o?WGy|%B_$Fc99>N?iJ1e({YpG{J3B`u$6Wuvw+XlXCufCzG(U@^z`C@ z<`n*1nM~5{*fZ(vd`|ALpW|rnR;WoXW3dmViTGI^;JBZL!_)MPuzo%cbZC;o*&G(^ z_qmAq{djwSj6D= zrH3ywl&8uuR%#=+b5;8pdERUxWb?1x9=nGa#|E0T zxqQzu?(UnIterkrM?LU&Gy!wBYwY&Ufjh=d=|%7F9>fI)btMK%%e|hR(~ej9nBD6j z*{Wlrx=xJnn|^G$QHxX-7ke!B1fpaQG@?58Nw;RZop*NZU`z)0kGz#BTC28yuV*?@ z8V^h0Blr{mTC+e^0VMC#d9lhNJi5Q)>79nIX;VSiF?mj>$t(!=WutG@zFXAZ53Am^ zGEsnIGjO~ce5TZuB@kEx$#im|JWnA_nky5F6>?r3e*i@qjW)ZE-ap`17uEXp-X z{5mSq=osf8FdZEYq0_wo35|l2+mS*^k^17@YmO`;xnNO{d>tyjexoaHR%Q&!Pbw8j zx6>cjRNy(A*tW3^mX0fh`$4{@9o!2|3vjgBW)(s zt^>s#w!F+_I(}_P zue;#5g7z?@3Az8%Xy>rkx)IcH#U&c22W_dBRBQIPay%FnoGPtYTK*rh#c_?dUPaZ8 zbgmGO=N7Se8&wmN&Jv@o_rk9EFH~n9i-QyrXIy|HmytNL=${r(u5fM~sXY@1>1}M( z;WL!*ACo!lnz%*#}A)!V|e7CwU#s*Y5ET1N_FH)y_ z;Z6G#3*?YDXlwSAST~nHIgN?D_)~gNLIWMZb!b4+6KEmNg>ZwHo!cHJJd26xq(ffb zTts`(*vK?|6B41`xsDXsN)A7f3j(`YwcyYgu1CTW%dzVbjNY?QfOvoekJjSmSngYF z?0vIq{T2P6j>=c?1LGgsp6Xf=4-WeE@Y?I+_a-a5DPTFnYh^@kTxq+r(oJj-`#LtH zyzHPL`#UcL2vMi|`9*;L^>ByEXx$)gZhja}cgZG_vP`L~bP+{%SU^upqq9_sy+QcR zArA`2>*v$}x(O0t+ZQi%EG&B5X^q70H=*wSekgi+x$5fXjxy^l2A(^fq<_Wl|1#(egmZh#*i15&pgZYKCWOD z9vw?tq^Xd)F*h^=eS_B+m~cEnr;?H!hy1b3Izl=}mZ&+ywR9P9mEZy6w|k~^ccgspbaT5RsQ*pq{9Dk?V5++MaYc-b6I(* zuCxe#HRccPpI^7kejo8cs4k?cee?abmig&&LF1sBfFmixdEVGOcp|pc%@U znVI47@vhMag0ccaHTZQC2oSMRbz@`l(dX9ghW~Lo|B?G>O9K-H<_k)~Marszzf$1E z+m1wPnqSxirORX!S@y4mgH{U%Fs0!>aOxj7hMNpxY_YJAGGSw8cGMcxu*n9~u9{pds%HJ3oW*p>4eF9P zKIYQCI5<8b9OVWlB{c*A^Y*Tizqn`%P2;8u(JyacA`( zI`E%o{9oGffDDe=eVI|T_*wbyLiuOf=ikovUz(u{`oONPRm~}tzj@{V9`S!P&2HS8x%xF5NZ@frO#sXc__FK3Lv3MUnm_+vBKk{s zuGk>m!_ls&LHn>Vf-*ET#K}knF&khcC#$g2`-+PWg@eh}tN}lI`)x7%E-U%+8~ztf zN>qiwXhFp4>)OZck(H6rGcxkrg>dr}`dJBP^QrSDe1qCEWr_ax-G5k#|BFIyKp`M( z!(3&Ug2M5JhDIg_WGU5&oDk$pROH;Yw~{*8j~h{PmR0}j_aXZEquBNNm>L;vW`a%H zrtCedP(E(V%GPK9U$pygO6+$n3+mj%SmdaJv*8H1y^X}f?oLpgH5wS}&D^5?m2xTf zyFu}P*;I&7;o(AgVp++_-k>#*viRj9n5P+Z>5(^f#Q7hx{eM4P&_lQf*}Z3JI9ph( zPQU|#ZOedOuFfzO760FQ0?;AT`_yY&3YLwn^e$rug3?CZj)RwwkO_*bK^vEmb+}Qx zAOjqw8gX!`ZH!P4*VNV4#>J(Gdt9C((UJf<#3kE zf>Tq;5*Z+qEM{eA@v8|#iyWIJwIzKS zE+OOKR^J*VP4r%BpXQK{&CDc5ovf5&tFC3Gv4_0|WG4G1*2|bXAvz}DU$rA)dxgQy zApf^5YmOFhQDK{%Wr@qqPP#$2F^B0)O;UP1BT9+&Uk+4q4?grjAGmF6SYB1@o$bA~ zspwqP{O2-VkU-R;=wroZr-daZf;cLQ{8ztE6kwK5NPox4%1(=#?neRvosYUUtb-Uc zUib9O{lnRc7-@EJsjDD)$jQGykg?mYX`jJsYG{B`c5E$cIQy90h%Xe{NUHvZ`qswO zsLrAllkUZg;v(cdg_&>w7#L3+IZ$D*g#{K5FMfn*Uqm+Q+6dKgbv-NQRa-k#r=oS) z(0}dQ4;XO11XB|eQerCE$Zw0}p@4NhdSXl_`w`G8VQ#cw;3XGdptx@~J zh76E`I*-{F$z40Sd)j$8yKl1jwKwp4YHL_SA`)cd%#ct#J{uY?tEHS_b$yP!Oa0Gn z3Gn{fjni9_YP7tf5&l$M(u;i;8|nt)(!glj*yxvm2DX(p)K~uXj-N-2fRqIciDA5+ z!MI2e!ocKUxb&F6uFRK`QuCG|RF;I#AX9pS}M1Ml&wNJbC`^&)C$|a48#?cvu~!s~A~f z8L7nye7P>oNjOl$V}APE-IR_yseF8bqJyRO0USmEn9jVr?rnr`eur_GBI*T3)9{fI z2lwWaC?g`b&j@tnkDy}lD+rFJnx?vM%8P)ko$~*d^8=*cULq1x?XpVsw`(VJy)an` ztj}W|KdIF;*I8`tJql%SdH$jL4|sn41+0PM|rFzNfra%!2&?BGVj`kmOaAg6njKRhyjQNvv25KjC z!dO`eRVvtr(lBcghfB@C$$JOoE#CqR^fdEcx$s8Yz_L?QqyK;gBu&ZB4*t7k?Cy{Q z`A8leL3gkJ+}OG8=m6z7Q+MirocRBAf88zPe5&}UeL+M5mv?Nu@&7fsDR|K2a$Lc9 z|D{xhe|c?&N0*O&%3xg+5N=LCzuaqw_cl7}bDR)CehiD$mmh>SX3M$d+LO;aRDd}u z?&4j*H94Y<-`*kxhKTDeU373bJ>q~cB*maL@mQ_oLA?wvVgWFBdbYN%ea=e^|D4^w z+&sURsO}1^ZpB#^w48LmGb_MAA>~YcI4?zGRd&SP*uZCCIvBi z3b4t@%Ie$LpcwArEqT}oHaKBJ!>!9gaJ*pn?9z?P>}6N%AN(b$3@BjzI4%BdRBx3B zyBRZ z?8Oa)NGhSAddE&#XJ=;_-GE^A7AyD^6d&)xw-e4@Z;k&cg2xB=bt!Nj5@JmL%X?7) zC+1m}I=dqWR($Jmg|!8WhkiNOfu8Yx9A_F8-=I=>p3HK_iUi6`>+z3;gf1eezu-BH zj0*aem!XP^g1U%|jf{NPu5Nk*nGguqVHo|>Rw{5A0Um1u5uF^4gLqf)@WaEyfpKwY zw6qi3>K$C^Y?esenrl9V{Oe&iAF6V+Q-U1Rv1w__MtCU=e4wl($sY}Mb*Z+EDRSPd z9cB?N`bbd~mE>F7&!2ZmzK3gW@U@!=3-{TdJ;DbD1qFx+z2lu8?d^qP(WUd~Br77}BQLgH)6D4W35TQ<3ze1|s_jdeX_CZj=2lAyROV;!11UW@Sa_tA zf1TnA_o_yfUVGCbUME`EQ?#C`F-6w0{39b*v$=8my8xt;b3L_VNCyFgn~W9h!DLoU zZmyn878khl>3rwK5Gg%9A-C&!&ki{a5I8RhVp}#$JJnfb0GbdHqCu}AuvOPkd1xly zbF^+$P<9hF0*AjXt7+!>Pc&fHX!;b)o-2s$&&|fAB~jU=%)WA@*i5x1{Y}(T;s6x{ zz?MyiuVWs(Te+pIJobzElJUG#gILwGO-quxH!Yls3B}P?Gs)4&lhrOKlC2JOpQaL( zc989i3aEmGYT0I`RoEmy8kZLWsKCLyL$9Jh#YQclpaT58F$?54) z##GDwrV7Uxnb^eMo}CBmjI5pCJPfR?@Ua+lP&BzUk%-tNGK+#RYhO(_C^ES{2%S$B z#lFW-SA%#1iY?5{a3*zuXvE&jv3@0LGY!*Tu_I46*jH1nQD*Zc;2=$nwq8wjj zyr!?j#NedCsD4@6+d{v7IxsidtoZebN5dO}@T+-%0=o0J<@UmdQw-2B(A!O02m57p zNlD+uV!ptLi^J0D)M{;-BPMG!SQrcgz^kct-pIZ(!dWhsi`NxJ&EyGdK5=bHvfHji z3x`DSt!Za*HQZeByIw$m76Y}B{DI$0kDt{_?V~906cEdJw(9taV691LfjUY0ET(Yf zDa_y z?cvAXcCzrtU^vzf1Vc9ZW+89Kh{d2DHXJGe;(Pe*(KHDHwwJvS`24c*{uWa0HDpsz zP#{5s3j(G-nFr;Kx7}qgS36KaIC)9$N);LlB$ZKCxM~_*`gLbjF6SC{&dzbC>|7Ku zohfgh(9we{v$(@Q=_KOuP*7lw2XJQdx(cd^ii-A)kIUdVUCa}zs9uude+6Aya;)=Q&uWt*QPedkYH)vlq;b6ymWEDDrB11%GxE zl~@`Y{Bx)R!X(-%9F6~M!c|Euw|%vXugLWZ!&OXu^!!t|>)CRYu1`h?E{l$E)X744 zIf^)vYPnWG7WV@nDdi(#G>Im;@T6reI5607|0D_y1-a|u1@hTRTsdY`t@f2@zG6SD zv!hLKs7vJEM!Mqdi5Qyz&44QhFk z<#kJP%IxJk>>g-`9-H~CF6?wXf1f;sp|@7`WQw@Ho;g!0e7gPy3l*$4Q~TXat%~i} z!x=5VKU$oETDvEKkWgP>NLUU0YJ+)j_C{q#DyV}lV8bIuPw#`UM5!OKJIby(?y|Zf zAzo3>TwiA=<}vC_w=4hO7u|JSh^C)lKA!IitPghGyV{ncBhzMv76wR`Hf%BQo zh<#lhZTCo-ZczO`@wV&c3<;O>hRgqD6O(e|J=vD345NB32z7SWgTN7eJo+QCBIR5qXO0OMuxL>~iiIMzFG)^g_ z5Lt-xHqlf!)2{w`-0kqY8upb=wd)o*=VE^tYHyub!zmO8!ZM9YMG#sfza6YdsU~@#-fmgdjquvP#30D^$EZZjs{-DmtJ(Ax?E5Aiq zQq$5&I5==Fy@6D#P1Zq+6`I@q@C<3nZ>wbtxq@%4QO ze{eeNaSTQgP+fYSvRk2v-?2>bphzPkiinDC=cnoVFIjc*b=a+3A{=})e466Bf#RyS zC2iYm`uKD({)7o)4HRjxAY5*H07D_-3t!UpKqDl4f`y{`(|L8^!JK<{6~Z#z?!Nut z2PzbMyPoBIRJ_kb#Z;uW-f)XvO9SUF5;V+S~8FYHja=brdyE{3t zc4pjh{!zV&<*L%?KxuQi=&9BZ5Yf|Z@~&IQBlLOIf4cM^_>cnYe6fj!8>G{0i0uKp z$oJ{mJlgDtXb$g?%j#L*`T)@wo)<8@JnIa$-r+GBkGj=c&AhgHQBW2S0|;RmL7=KL z#j36{8C-%;7tN1uuaCP7%z*AjWMt%llZDfLo!LCEHK7aktJJ%VAIxxrJt2GjWVD(! z8kKnI(iXjZt^qcxg*p8jY62(uVHM%)ddk{$_!?B zfTTI@qkbKGqesYIV}4i-nue0=;OCChzKKesw@}^4&>uaK#zO$iPjq)4&UP%U_ut%e z|CB$(Ff3&WskpEao~jdJ(%SmqFKN^GI;MjW0TCjwMi4i~`z0JMMyYA>?iEzPdFV(H zx2)Pir`WSog2y#AlwJGJuIOf-`{LD5dnE-S|F`u{E}|SVXrT+v zZf;^}HeL$;{D}Z_e@R7pg)wBgP#%46t+{^lq`_?A1;mLaeCSPt&zJU81N3R@=)k~A zsjnT0H630t=v)URBtU}DwQZf)MZIJA2N6@s1@}imY}y^4LA;&&L$(9yve&yz?ynN| z8;_6AyO#rHfIYJqP*+*+z<>e_2&bJV_?NSV0nk^6xeYLXT(?~Bj5-*JA4+|(w9e7g zzEilY526<7%y{F5xx0*_h&oN$!D|isxBF(t{;4?$;?eLXT5oKH(cUekvB1=1xAdX` zC^L0U<$L4qI<*ODPzzoQI5`OqDV81m&IP;ywRwjHFpeMWvQXwAKJkce2mD5dRvu*k zNn6uU@%0k34WN1$T+ z!v!9?_(-qU&DO`WB~zw$rrlGmPaK4skO2wbE06^VXBw7(yIx#Gglw^5Ewt`%(r?n( z2ro}}D|=X|v3X=D5*Iw?&k~~F&4)%Hh+zZ78c5fh0Kt*3!}sBk4A7BqvJYujpi!MGIqf2v12Ni zdwF|VA_YQz^{)NkL;2-F?w>a9`wRZi58jXZ`h+|mg)?^MorZWt-TRjQei1ZEWC(^T z&PGQIi*&1@4@K$RvNk;)YUs0;uBniuLUIZ@d{q;u9?-$Jzr@dI@Tdp6-s*M|;p3A) z+>J5thiH7a3={BpeUxl}oxS;qeZ7-Ak-Y)SxSOR~=;L{{-(kB1T_bil zNl;j&QgIRu3v)Z+`rdB))}Y6vrIjh)(F(iicJrnMo*BSSH1&!P344#tlt#|QC3d0Q z9%BbQjeOvI)V>#AvdJM|G5y{t%zn$M|qZN{&14y)tS*N1y{;4}* zjs-aDFKnhdhPlhVIJq$6MtDVqi*7!Mo)jCd>ykNid*Q55W-xMkNnT_E$X}oouq|N+Fu+}Ks_7Y4QI_909^AnmrS=skFWlbVLN%=VvFCh8 zEeCcuNEBn{UrJCV3r-`uyJZ2MiE2RP^BN?QWA{fzGKgJi6N(es_5>puBDrJkCzx)% z6W#OeS>Rw)B|n7^V-*w(h~q>7e+ovh$@a36!{;5{<(xM(98+7q%Z6^gLR--r=(fA> z-A9^ltbsgm6K+F)oj*tvKV1#S!L_<8B~U%zQe@ho)dXqFwY?n|8XYBkp1$Dd)6MB{ zzIzG_%dOem$|b#+xRnG3LY#~MYE1MIOv-WQS36xe%&*k7ieCgk`mB4tRpyF0qdqZp z?46>jVw-~Sg~tMfH&(NkWG{`hhZp(3sx|6o1^5fw&z{Ouf=wPr2nyzbctw&k;xjT3 zsa2gms}4fvjP0Zzx@tC<(JBsTX=jqb1oHdyh%0_h@bpAzcGPZImwg*?W(jS#k^MD@1cv7urRtgNjgk6unLMz4f5%ua&WNmm7l)(Y9RdPM!i*c=aIM!j?;PIC0G~x$(K0MqkaVo)Z*M=nuZs%^{6Dp1QKB5PO#t(!QI{6Z37#32yUmJd1mID^L}Uk zo$LJVy}P@rt7_@J?!{`ly`4YNtW`m4r~Om`kp}|SH*7akBQMZf^v*7B?VCR!ai_2k zP5)Lf%HA*yx=@w7=8;w9E~`QLbRws%!H0_TeaPUU k=27}rXQyJ5Bek*^BR#5zr zTSu_Z%%DJ54x5gFgblhQ-czZg-vy3rWycK+y~b#m8&Y&=XAr#H$4?~&0t5GoRUuLP zh-Ad@Rx~vFe=cyQXjsWVWeO0ibTvj3a@iO!P9j#6R=gQT!QIYw$~CsJq|bTRm!4xP zd3hQ*aRd$hm14L?_`5a~GAE6q_h!JWAFi-)^7(B}z9(dJs0oInqrq{CUH?y0Fy8Ae zS(x0LM$AylF~Ys(HZMam|33ulez&L?-yuRD=yck(vc=)ULe16X0pLIKM;HGG5{`9$ z$;^elCr-RbBCZ(gL?9AicClq~_h;r-rL=(N`8oa=rq#+z}Cx7k}cTWn0GY4|s|vfaYK!pqlvHkKNdscZSt=_k_ek-fsaX z#AtEFfQ4EmA&bkF`zMzJOu#EtV{@bNXv$`_K=Xr}KU zbsYg9=47llmLfpZ2)VY&6}m30vC)N3;e|Qg1ahT~T%Cstw#sFEo7F z2ov(T8S$YGkq>X95N^L)b-N(Oo()KUX0Vz6gUwT4n^+ScnwwuNvaQ8p&>XQ`CzQV- z=L3hh9mzu*C=yMd$N&nfbjtmXNnlR9x?A2L+&RJ`L=)u@UUI5I-_z!-==ukG+=x7c@YBc;G4m|#x z%t+)&&=RYO`nx`06HsouNs(Eu?^E$t_k8HKphoJmwU;>k?%`9vX%xVe5LyP9S_#_N z^*nCzds#lJy%uPp=W9=;l^qi}o%eo*@llFVo{p=uUX>Pn9xpJsOuEcJ<2KtZtg&pQ zU7M8x%vDc~kq!P3ryH-R?C*iqG&KuWS+tcTh*8fD96GL%t2t`Se}|3g)!9KyWjl5b z4Nb|gkMVs{%OnBU4lxUZLErFt&Zio=??;V4JF*4xTs;}AKM3rCOIB<&G!+JKxWrB>9 z?=D?cq4J+%U97>UP$e~%CL*2Sd`8kpaSf>Y;DUB<^>~z)Toz=Kuj2JXOW}K?(WP=voY;j@$6t&gI z8$mP@p|1cF$Iu(@k#$&U$E{uh`7}Yzn>N1%|2sppm{{AF#Vcv6LD;q(c+;tAF6)_U z0z#e=pdm_>+1X2vqnmqN^FVL!kc3)?@S1XERN)i;*`gm55K>AOW!(U{f=?)f2A-2|T@n=8~nbce6ci4no7a^+Ok?$g$lw*H4 zvIQmL@q$@@x`=3N%O4~E4i`6!Ib->kPCNo|50QA!2iAiwjHYkoKqb~DP-*#=V3CN3 z=S#*L8(+RDXW~z*wOz7=I@NeYMg`NRp5?x zFAke*OqZ-p|H5caZ3ASc=$CaUxP(yHhCVyi)C6bb)2+V_5ZxqM0$Ow6$&B?ZFpDv1 z$RnjSgu{_11F3Hu1;ew+NQhTEc^pbj7dqXmspIKE00EUS@F$lo7-*dt{|UA^_})(X z0@BbFAWIq8rQmzB>Q$y)g`id_pJ4Tr74Qr@pQO3JP?;P`8$tf-e7eCyN$}6)zVBYo z-WnE-qRIF~N7qeBqm)Uh*tZ9Est(TkUU+~7(_nA(9`%}Nwr}!1tka);B#gI(N?G&; z?<7px&nsQ_Hha+5gK{NacwyTMS-*eaWR(BNL3EV9cMkNLl*Q#D$+Vg#?b={`;GO>@<&F)Rv5*o zs3sU*jr9&k?4hc~+5!p8H)Y6n1KNloK8senLhOv{rbN&!g4|J%I``9_X2R zcKYG~O1=&f#AROYL(ra(bp70S)U+zw3E|e8!&k`K-H}8408n~5S+8)ks&J3?y#AOq z*ueqYV$A1u7{R-l<@LZuKxt-@^<=gV^H)Ys;U{PJibH^Q9uz4KK?u*r{kw_RJsI`i zbzP&WMw=b4e!2)vo(8Pmkm-Cm=QcPvgssQ3fNnj9b_xzvWQM{CpgnCTihYkC`^}Gq z%iNj5VNuwcT|QCeV%0w1s#IT^!r#89-SEdNKFS~OTfO#Ic{)aJhi8DZZRY!De-kq! z&g@M@%mzkJXKpsL7rf)k%BWKN$CmmplZ8srtL_l4m!9a3!RPp>M_|1ZTgl>@#2(MD zuK}LB?f%FFUMz{t7XC^H!qq?y;!*3>-@^S71Ug&I zP9Dq9il|p>I|FRh3U0N!Y<9LH?>02z0iENjN1*jBsPp08=dCqyJd zQR}5F$Tqa_kv}rj3id+=NB9<-JA~ATRfQ@j#y^WJ0X1J*9^*JuBhJwb_A4y_lZA{E zCnbjf5ynMv=w^4E)(2_xpK1BUf{;{vg0%#VjxrctE#osz7a~=5b}^p*pM?TD>u>M} zOmAP&(-6AS_Bu6|2A*q;mW%X+v>1Q-KSwq-BD9jg@YamoNvNLxC@u1~TW&=ii1yh$ zC@k1ec25CHz`naYdoSSr`W2su{@ays=KXq;gxqYUmVg#iz^?%Gyn;N_`x4aiKV{$R z%YTN+N$9s7)&KIiC7z0AHVdyXES%V``ivfab$3QpI#r;-;cBxXOB&86{`2-na>db7 z2ear3_t;dMivZvCNeem{oV}eQY(YG3c-}Ri@yO~l%Ic(lCAO8Nu!4b)Ptnb3u<5eL z)YTI&E!R&5gzQ-T@BP>c$H1+;B8dtP%KYB&_awd9;krzbo>K8vV4ON=P30P;B5Uiv)vy}M2+Uz zV_mgS?6T-_9y;3r?m-A~2*2NBc`#iq>S}Zys+@)4U3$7$VE6Jonqi=^dRh&Uo4z?& zsSOMeC4bRv#EkEc7LT;ifI#2e-pg%5z~n0|+O^1C*(NFHU`KUl7x=>Ev1ga!-VD}_ z%nR|FfYfMcKkr{ox!%1Cz~?Y6Pv|SwQWpJ5`3-XRIJ8q2V^QXu%=E?LN2Z z6K|z6bxDf+2e#NFv-1QXY}NKcW{5`IY%+9v2LL9F+#k1QVilYySP`yn9=D&fBiU-3 ze2U>56}vKRb;2YzflR0tvd zw%@*?;Ms1W$$HH4b0$2T8%u>(S?*qH6dAvltj;7blkJ(C=y+mAv*y2{Ld(U6ZUwrq z-MOs8EUv7KY-RZ-C*6g8X)y=e><*k67Jm3$Nh08nxwNDM7(+>|0+k!TWzy%*I&Ll7 zLyYD4(Y-{3ypT~|4CyPj3lxZCh>_vFcaIwEyqJ1^N--eUwrXBlMqlA$Ylz%|v4B*% zNK@up4j#=4eFhNy^!1n-n`J&NBJY`;L;E%Ky8k0i@r{;|AImqD?;*xbo;xxuhm_GE zvo`P^{6rlkP?M_ce|eyViPL>l(D;ancWy2$vUUq}k?$Og?a33_V`_0f=^M!MrL%v1 zziQe08xu7WP(kUIi#_ z_I*|Oc*j%`dci|s*lWsgMf}6hDWCN(!grz(G^73oBBkv%mGa55pYf3J8R(b(N!;Ic z>^%pa*1oL|l+^AeA!1A=CKLC{zO{#N>%{B&mpxy~N7<~7be`%K5Vr;9`eTyjz{X#q zKD2M%S#A@^AE@GG95#ogJvC(D#U%Xvy6~N|2RiG`Q|mKh=E=gF$P!57;NICqSD>ZF zR7HL18*m|P&V_o`cWeDQ75yy^EuZYE*VpINc2tu@E1~$f@ixw^4ZxaJVrAt=>NvUX zsR~S4z2f?gVbi<}u7kd|SY97Xs74062BQD0Lwr$LkgiF<{>q+jhB`{@WJLldzIZy% zo!Aj8lG&D`%GvHgDg@`}6_{?_RY_J5>aRx822L0?s#37LRfMrO%2%b5&)_6P3X=f{ z20|_nA|J_5CTJB;5kNeQS-DJ7NpE$>CyynD&jOSJD`C{`y9-O`+PWZx7h zkbW3H+<4KBkWJL@`yw}$A!7H9Y(LS*hFCJ|dBli9aE8u+5IVhLdspEqI-Jn`)6~P` zQb3N`V^Z}N4~iGZjIeUgif;GMwa_{Y~`H_;g}vw3hm1p$~$%ECvi{_dytZajEszH~?z| z&&j*F@4ZepRPm6PV`HaMu2x_G4@lY)>4`0Xj*)Tn9GsHfgqFBd%0mud&3X`S<84cR zzjb8isP&MwA*?@Hr9ttoX1RR05ca?ja6ggOxE-D@Nbl=hg4X>TOZXSs^imA$js$i! z%+IqLdXRQKrOLMm-%gAA(zC(GP|u0x7-xz=CwYCc_u+hOao1Y6k2G!k`_}bN;kjKU zf69E7RPnY_W5+aa=V$-Brz?lvp_K+DB`>Mw}W(3wnVFJJm)vXq0hxE0xUeF6zx0qwoB72cQ7e_1C|9unQk?5K;>=5>E(TeH?dr zNg@IKvC&6izg@;muLq|v+3ZjOuSRuxdp^kG8E*`k+s6Qt(>D{T?E<7JhaFT2e1M#Ch!or`u|Ar9yE#(ZS)i6a#K`iyTju$%Jexu1{ zFIRC*cYh8@sJBdnfRfL<5VN+PZ`WxPW24Y^2+sV2>c8mjHXqCNe9zfWH}aQ0N*c2; zkw#t^b$@lAkEYmau$iOq;PKUZ+TWg#Oy7BnDUschTJv##HH+WN_p})rkNE*yS{cxJ z_3DM}b~uY|<>my#8~r#Q5qsfec z=o_8$IF7f-xb;0beIriCi%zXq<42zqWV#T^{G!H5R?MF6*qYK@Vs?%yI|ii5+P)1Z zh8s>CDWZT)oQ6`G9w=WPMa|Tm7==qxgD$LW+s^f0rK-s-W%|eiv(TgBi!f}A{4tQu zL7~!*%l4iw+9>+SpdRT`rQzqH^9Io%W66 z$ZHx{R$FI8b(aeAmu++{5@~H;V0G|KaDG&kcAXsRXzxNaDEO!rdadp2* zH`*ES5`7h>Y9`sgc?JxhsbV!B*W;KPRtX(Y7xXysF2Z%C5H>y$0SI3&0k)MD$R5dK z``(_4P^jUf+QS%zVq*_Pl2UNMbK5V4O!Xjk&vEUE)%?bMhfhJVvpDswvsu|Xzvy`1 znkL9@jlXWPSR#sbtowQ5<({S1eh!XQV^xkSFdCm93iT@8W!)RQ{td;%_F@ceu?_2TzuY+%=t9-Vr+b3!45c zkx-eDc250dLQaIK1Uf~#Dmv-65owz}Ukssr&t7sdIoQ1+qB?m!zl#bds6-+NUjloB z0OV6Rl$|H5u_m__lbkq+5GD^-Wk`}Z<;lF|c!^BRiBZuZEmS7#VCAO6DVnB7J@@Ti zRky1=%hq4g-14qfwO~RW)UY}iJK@hA9Wde^zYy1$l1AG zFdU71%Xs*7@7G*QFr!+@j2Fof=Yd+$m(alS(&kwFHcs$nAKQc;bXl$w4gO_}@%qK? z67;EzXeH7un<23PSITBmYy>}M+<^a+D;%C9q~5EqYq8OD2tJF`gi+9TzSFj{14PsG z$&wV0og=-eXcsG5ghJ51AoQ;7_MIZomEo+r&PJ0(&G(ZgZr_O{rq`BXpO98?PJGf9 zO~x@q0y>=|LHg~)5c~wuSMfcz$Am&FHz4aEH&0?}vND;WKM6fCvAB?WG>q5$V^z^f?be+x!=kTrX-TGe0i~5lG8aQqIf$nxBVj8KZkP?;|x@M@N&uJagtg-fA;AYqzo6h5a;(fFj#Drs>vc>3XLKsB&U%X7(^EY*C9c&kCdwv! z6_sc<-b3Emg5*jH$|-i->k4n!v^yQA$7PS(Ya-+b-uHSA9cT#71Kv6eLc#OR%N&)S z5Rmu)P_EcUAHg&N{C@kf5-w*N`YnNe*24)GMM+kypHBCjE5~rH_|J|s=jZt>dz!8+ zV)ZK|2EJ%tX2MQfT=T5sbfw)sJ9K0)tu%b`VY>W2?%0prb~SEWWLUoM#&%i@H7<6L zTB`I*;tS6oy95^&mJ;HN$lf@Kc28SvkZMzQB@(!*$Y@Cnp@+_rL+f$OWNcHv3)6=s zID92-isojXZyDWX2upQZWn>JO<(16m7Met3t^)dQOg>HqHZDeV|D88_n@6!Kg@LkI zaS*4lYTZan_T}6K~(pO7w0p`oIOs`Il44Yfm>vM?{(9W z{QE4f?A222z_+4EO)wd`C%;VYNs`qfYo(s;fjRKn4&Z$m<-RM zlr9K5HCTS8fl4OmE*v-PyvcY}UMfsSwz0S%F81=@U6lly<~%n+Hzusb5KLd{E^Q@= z#&+rlnWr`}xlQLMT^DogO%?fn!Di8=m4R-Yok@}wpkhs8Nv$5buljT5RuXl6Wf{m~ z*o>eGlP@`gVDohl;E^l!mqT@?yQkn`r+k<6aJ)rnq@Gt_@0*=S#LTc@rwX#={-TNw zd@n^+C}xoabCr~q+vmAl9YE6kD9<2SuCp(({2Cf^4745}E~#&tWp$YSmGl6Uk`Cp2 z3uJVhw>WLouT?-6vIqF7Ys?(4`N0uz;D)pH0l*8=@PVL=6P2euTRF`o-*1iGss_Sf z|AK<2J$HsF#t9^ABPhxgXG)_%%u%q^_kI^%60(YcZ=#H1qrtpiAj_#M04rFZ9E*UJ zMA8%jy8ts;Z)(WNlp&x)MU92hx#LqIsN;Qe%va}_2j^HlbW80eXxLr3-nOoSC0wBN zDiP9y=|6Z|<@bnQ0;PqU2IBr`wmZsaBgUmeuF$QbBdXNRhs4|B;lppH{CwV^JuB`~ z{m$~rGIA3F$$MFOf&KB@xXUzxjOTJl{t_>;wf3U(t3*k}r#;0J4JbmQx5GY=izlOi zX9K2lTs;P@phhID4#~CVIw1bdfFmU%V8O0>qRXZJe7UHsfAju*((G&EOP{@}hc2~a zt<9AB8gY#Ad1`gk`}cPbX=DIa9tA+I>&)?QG`t3S%W4jD%HGjh2=#snqDiG9x=nF< zOiO^$U(Uxxv{S~*5NOLDRv2`UPu--e3peYZ3%y6dEp3KW$7HXbe=2&tT=~>WOiaSI zwf&wx@8xPDzeueRcQ_GLyunDt;-4z00RNQ1-+tj4NgBYltz(%wU!-z9WM{_!gI9aaiUK6-=+&^b?J%p4}Uly@7xk{F2aoIoy==akE zuX(J$aPDt(BtN_`?bXgYC7-UG>sISa*KOs~a$4Sj+<~pKMPohD~!}a#`q+IuEDMi-Ej{y1l=c#{s_ICSicTa!4 za@LmVP`vSh-OT^~a_;cy^`#~3H5Hn9Gk?^-LZ_6!71UeCN5x~_AN5E$_LE0t&%rb; zAt;^AEU7u00<>lsttR`aU%}pcXbda$E7O;_iQfs!OVwTi{So)-<%LuousaB0aFy&U zYa=5^LmTY(Oe~ej6E?@x7SbNiEqFNe32IpbgmWdrF7fhF@2_VqoK-75HdL{uAqXj> z+DX%Cm$hAAVSi|(lJd37vnJ@=vMguf1%lSPL*!<4;Z!*c9&kO<1RP>ZHlBwDdS+2^ z556UY$A$2jjm!*Eq{=0iDO07I`_(9<)pzx9(3EJE=7?J!3~YWFnC-4}?osmpA=k-> zwUftbzuFhLjR3yf;Bi?0F64tQ*tAKzS(jiDm*%2cs80+z%Y70`xYDp(A`^DSX42)> zI3gWXAkbM5#Z^C9%1!h3HUmnj4y8g?k3kvfG<*9+vD+GC=9>3U_W>noT+R||H>Jbp z$BQ8yFS=imwncsv?$y-QZU4-7gJS-o;{`#uG4u_rB4Oy6Iz5P7uzJ}g9J{j_LrNIh zE3o;ZSJTJxm4fCjXf3(wVwNewZtvSA{F)PFSwddd2iZZLDfALPGvgh-g(k9BBlx`T zM;HP)&cnYM64Si-qPS){F*={*+#e#O4>qpUuuw6dk}sz7zc6I2&uIIWc^$reEep@) z-^Yd%F|w7uL~^2DG!C^I9(#ih>i?6W1vW11N}EF_@6fwsVRk}Ko`uq1XApau?1(C5 z33KAn5#4QQC@mt~bmGyAL>2z5f_%nv?r#aN&Cr~&#nEZj&b!a{+^}>w)e@T(5S+6< zQOSTyit&}%z^4SB!_Z-F_2;heEf)(>Aj|V388&kQx|@v*2_sRupr0WV`C`7=5e+B^ zNK0v1dTBB!t_d)TofZM6=@8>8IhxO2f9W^|RsRpp+I%Ra@_! z=E(iE+|uTlPtTTg$*OH7(GTAkYo;xrd;HJbd{kitv!V2vAskjLQWg4qQ_YfCZp8Ph z4Zb_xt3Kf9_Ote|BOd$BjkX_CO%e=shfP!F-BB5jvoOg{R)L6!KZ=z#VH}ZaSPa^u z6i@Vuy^Rj58m{%6u6Dn?-G98{fNuOFcc?oe9$Wp!vR$xAgJ|~X`P5i6t3h4CiS8Rk zU1|P!?Wm|>yUjP`L?WJ|#5^c{OGk&*YPrPN3ub*$zxxD2FhHpJaUrVQNE=pAiB!pL zTWqz`;8xA8H^04wF`fRz;CTY~6J27v(8kAlyK!Fs%Q9VvdX&@SxL>Wqiheo0|L&+) zDWJwN$U%y@v@v+_q#KY%$4z9QF;OI1JCpj!m*TMon>AdGEP2b~+ki?UK_M6Mbz21} zVT%XiTI*%ywXzt6Za*E!Rb>5Gc1?rUV=@uc<+kKu@5l#5Qyfgp0`c3vfJ%+J^PN_O z!!7oq7tyQ8f9N4mXk<#-7+q*j*?Fkw4QRR_IXpi%vG=BS^3YsNp&Nr$tFFz{c#_Y! zl&n&+1OlMtlFF3b+ANZ4;JA`mj8srEhej2U79cwxgh>lBhvVT%cpTQkbh%2q#^-Uh zDh$=$mnCS#o-@8scO6Z{7iQa~s?tX!Im6cMF^d8+O{4Qt8MnZw!7!wV{fg@p_o^52 zSp&VkB9ZL1`g5%=HiPa*c$I4V=^%Kv8rHTpl+807Tc@32oCqQY=$15_jXR`` zUyiZj)(^U7`=rS-F^?gn+}YEJGDw|N?-F%N*)^wmkPHjQQbGcyzk2Rv@XQ4y zbIXLiL1HY`s)W&DWY2z)3#6rzHaAu63W7K0PE!wTx7{OceQh7Dxakg0v~}E{#E2ky zypR9ocG4Wl>vf5ZFc@4uP~*2_*T*)Ofo2~ZBSWlIOA-_`nNe=uIk3rU5XgZDO z6G38ik+5OLzEogz)-d}q1>)O~d^4Kb@Wx0HKV-EjYg{UMLk`H=sXrfIDDvP~k7u;J zQ%K{M+UySbZ8af`BRd>ad`ZygeZuemV!>bC#G7r`RDHNRoBJc$@nqS}m*=1Zx-s2M z)l}LNr{i{AZ*VtGfl1Z}sPY5s1KErZ($S;?T@un7ZwOzhBZ7CFVd*#p-#XmYf6eWg zfrsAFk5kq;bc)X6l@ZEkGNV=s`J|Huz`U|$wjbDd^mkvwGG0$5Z|x0Y1R4F?D&?F~L7?G`FL8YJozYc(V_AH2_GUoo&J9eicV z;=6B^>A)mxxPxw7J&unfRh3o4^+<%b*s07pmN=Xp!D4p)K*7uUCIlHzeY?Tq%zreq zm;5M* zBr0M59WeT{P?l^+JoN&vEAo*?KnM;TJ0&Hr?*?E6-+jtB^4}O zAQ+m!Qe)|3h39|PmDnjlmEEhN zhf2O-To1rGih3+|G`OM3$~NO6-5h>?SNn%9@Hv^ZXuHj@IIx6(*=>M|^Og?sRX9?1 zYeZv!AW)Cv_r#;BI|DhUZaJ#6#f*+$5T$z=1P)AJ#P5V?RL1vBKuiURRGbtwMhDyI zAxVu&FRnTN&)f6G?GZA)Vw^g+Bed(3$W@XA5zcCHk5y?{K&a#&F8Q5{iPXWkIy3jO zUL8aLY(9k8BM%T7`t9cZkL-<84KTbre6jDhk`xhsD$Imf^UiQ7DFHes$kJm#MX#!M?xp zrlNyNzLFMS2WeG^SsoFgQsWejybb1A=2qZ@O4cD}A6Lb57>N=B_@zn0@fdQ3gBkU! zW!GdXREvWymug-^AGRKJbDOQ_^D3G@$@*R5*m9S`3z%u;$ezxwT-By_EAg6)( zod}*5&^yY3FrQgs;-EcWL!>v=$PphF0{oZ4_paSnn`<0hst0~au^2`3()|pB2eWUx zuLt$vUrfc&hk$J6E8$Er@rUgU zbmZ0M^<#}C#V>Q#B`0_IsFW%H#KG_SKl-6n7_?-|G7K{6q)IY(C5~D?*$z4XIbFlL zzY=;JY<{{~Z2S!RnNN@(aMNI<=;5J(rQ5B81UBEzhl`Q=CYFdB1Lm&(*tzb9sGf?8 zgtBdqDKFPaU(>zq;B!l=+|l^l_|wzE;8}AYD7jRX;lyv{m-a=DlK;d|M@UF; zvG+I8z*oHaS3FhEdT|ahTs{ zJdHzX0 z+bl_vDz#yKd`S4+txN5#2P2Wa!o}(lUtY9Z++mpwn#1We=(`y_>_?yc(Av{^5$?DA zq#)Ptv$M4u&spr&>gApd<3)9BwtT#HRC&lC1#?_Fd9M426A;u(!=|rPJF1YOpu04< zOw8~R>TM3ULwWsHR~-vH)vb@iwS#B$NQP9bi3Edyi7O{FoHocu65w7piu`)|ICMyd zP#pc*s_;N@eY|5SpD&A}5thA31D9uXsmC9!WnY?^lSfr>(y^96^SR=TvE!Ss}HSx<`PlyhDFhEU8rzxSSf z2(E7RHQkzQ@g_pJq#aCmqfltmCQ#>Eg&fZhCDPk*0+n>NK5nynIfBCjayUBk(Qkt& z*z9-MfY=7`JR*VPR?D>rWk+;V9DX(^=kn~5Hah`6Hg%ZYOi$bfY1$&`3F!Hx zuFN7<(~`yz6eIyexW-;rmy$prxKh1=dN&WV>!pLt_E0e1w_E-!x9}~C-4R+Y` z!%I80Ec4DpJl{%!u+`0c?hjE{TlOmL)dxwOmKtVXla$+R5|M2Xniw@H{Nhp{RHgnp zEoF{K#XE9eRuxD`;@o9?AWvZ#*Az-@$E$wI2Iu*TExuyWp%Lmz2%o~)nCauUbTcRQv>2XZW z1D8~}`b)MJkOWKS`nSgdFw!)L>ZMPvCNX9M6QVYcLlF*q4QH!ul|kNouX({BsocKo zo`E?91f+%hd0(^zJDVHvzRP^|&&0qX%eoAa5EhswJL`s5DYKrofup{58C_8OXEeESRudI&AV7Y7Nn&Jq zD9ektB$J? z5f#%s+j;2}Baz~gW)J)KCr!o>Y+=HTP^46WCWI?dCyqeEve7y&xWA0Mo>;EUn~0VA zrN=#rl}JR06_MiiP9&ZUZ(2gGiRz0|_b+uY@jm}prHxIUy2v7yDX;H6<*}r0Hhj*I zxf4uWIyAj@26!}|P9jq8Ndt^79WF$Yk=lgo(W?TYcX-Z0xM+zRy;D=w2tWVKH0w+s zP(da8OYKK4`dtV|83yDH2LwwIkmFF4c=_byEBW&-(R|UTN7k1I=N5umb zy|(ZiLu)5+7G2{Z;n*kg_Qk{-``T43OrN~&mm;TCc>MPt$O3kQ^lQ!VYO8KWlvmqjI-7jwyfwb* z!QAdWZzh2nS2g^n%8-y!cQ)c(o)+r|@htAQNj)}W8cz~_=`amrTA8H2`Z}?v&NA*S zy7w*)3TH7(#ZT_Z7&3s~4Vk7+tmI`;yNt47rioqVY=63A;vlAEj4tP42Dw!LY!7+* z^4UT6h7TXe7F6xAR~x;E)+Lck;+Te(O!3@eZ~I^E22(P4-EgI&vNTatsrT@!1MZEE zldZVWqVa6P16m=qS!dZmjQTGd4LpaOXAb30!;3lNVc3_;+V+z#Y0hp*%YO;u6mP6ZPI1;2BbIU?FQOxn7(TQ8Yl#u18v{2hY=W$TW-!q@83my)p zwCMPJp?lv>ih)rPM1QY9&S7Z5UC70wG@a8XX!(E@)4`t1V$c<5!JsijuH&mB`wM`> zl2FNF_W_m>C7*mE*RS2NM=YkFJYr#(eKSUd<#w?UG;hCzpTU$JOXlKn@$pvy_T<`4 z0_}{6aMNl~q$_=))*nbi4(D45yTW7H-|n$k~?$8R$?gJq^7#E<=d9m0Q#FZs@F}hLElswG&MBpDVul@3=0B$ zS^i};AIOnY!8#u3c-G2{QOF6tAV53{85?)Ke%m=CMR7!u2<=H>mWc`NX_Ki5 z$ONS^;ex()i~h$}CTEYYtHJG`Qhfb>X z@P&gl$>CyRK6hmJ%RR{^b}FO0MNRKB#1-j(cnH|PM2C^{T%j_n%jMeI+Df1Vuf02k z{vr28rSOcQGN+_j?@z3t#-Rl7t5trzVNU=$y1qKV-bwx8tHsop}i< zuhM1&TGD%8o&m%TiobWz(D-M|HBN?X?Q&3&HrSh7*T^cCNKDc?!;+IU5BQ*X@a1C& z!0Yfv#DQsJxLmNSOGBjY?kq2kh52mJ3jgtCzLrstV`-b4hR1J%0)j)Nr9P0;!YC@b zAGqfzs}6vmJyrYey#KK)KFL5M@xn?_0OTX6mHJC2rG8FQ?i{>?Vk&O|N;#48+nvK- zVqL_a@dG#f-XZ4>y|tpzTg>Y@Kt14sN*2({-t^`bSnTOpR zul?fgUjf#?Hs4@1jA|w;IW6X;YeCx@h^#FsjQN)Id-u9w8u*AElM?nkf>YOy0XX7c zM`_5Z21(&1MN6x`7PiO*Sp-Ssj5T6lqYkY%TKGbTrJ*z}e`t9IIe6ziymic-dfU+= z=IC4-l93S%K0x6XLI7KW;Jw>0rlu^h$Ip^zwQIZJyk@6WtWbO&|5&A4Bi_OMeIEWk zB<7CL_iI?B7^vl%u+js;R_-I{r!l{2;X*!^EKvVRahEbNfyz{o3O~sM{vXo>N4c1w z&&bP(tm2L3+|1WC^!@@Vr$PMfn+VRY1fKoEWR#ZfF0&K?H^Bpfb3jPjnT8`_2SWr1 zq;tII)J=1}Dl+m$?#xdQ8?uu!&r=yox^?yVo{K}K%N7;IO+mj5r-P_wRjFar8ar;! zZGIe$t*7*#>-vhUJ<2B1nt$5xv>tnQHqWTYvhhp>hmJN=dUk#(K=+~YAbxBK8jXJ* zYR@Y8ADdX!NVHoXM8I0|cI+2DZ3}M zhs)Ng1&Yzjk*nf=50zoHbp>0uK}%Iwror*GC;aC@8p4X1)IE$ibansTFr$5)D{%A4 z$*NrPBcU;;JPO3>M)H5Lp- z#2X$MXP2LP4|p+Q2;=pEE%8j%OSW?#gL><=Fav4k-@FL?OJDrwKKv{9{0~u)504*M zSWA2RFERVi>;E*U|33Ez;(+{Y#z)`|`p-%HkH@L%0)LVPIS2fY>;DY#{Nrj2GaT?X zkcsh!|GfJ5Oa6Tu`TxZsffM1uQn^UFhZE3D-7HLm|;I?-7p%0$c9MtTE?id%!Pmiq00}^@w@j`sDxiK?liUib(^>gq=vK z!f{2T?8XU#gU5VvV7jt58$J8bH5ih-aei#G{h!|c*9v}R{A>7kFCVOwtL#*G`S{Jn z4BhV~VE~#hUZ-7T8%;Vn%Ktq4|Imy7UixB+PAEYQ?WUPtV7X|hdjksp{nNi!>F;l5 zs2K=-H-dcmJcJ48U`Fotu>UrpPeFi&qBOq9r=tNLzQfo=^WWYNzK40+>1CN0_LoXC z*%SLOOB9n249==}Q&A+t0xHwLKZxmHw(9>_PEku7U~D?l+!?okz~?6;=Z^j_gG?0# zwlF<~ExA*c3#$hZ*EgD9Y_!Mg`x z)2ISDN`=dV*PH&K&qV2kLeiM~+2hKrjRXlw1>YpRKUX>B%d*4?bg79wf&&x=^!9z0F@IxDMc zRF&ipP9n?IEWzegJQrRqs;op2lSI&nh=4kCe&g^35eVlq^ew3T|7P~jy*7mN*91Ry z(mmbX!@=Peqhf%yj_(q^Ux7lyhwUV-dmtVwaHbr$6gl5uBGqP8PPGr3VcBH z!B@d0(t%@Klu=w1J3CG#adXhUFs|A)#TgQ2Cw6Kh0ltX6T-jq zG#0RjI0XLWd#>`_q9mqY!`tZ4fw6i`1@+Om7!QJP96joNsy9;H!AoYv{<3&>kMZ<--z*_Kex@G|9Pe~#2z6Oc z7)|D*^)+|cCfCV)UD>z#j(gNX*DMVL~uvoc%xV#R5{2!-lLlpE-Wefq!H`^u;)-)-MTOLwQz(jeU-AdMp3-7I?1 z4bmV=hcrkk-HQ%sq-)VA-HX1<9q#|xXM4x_c<&hJ+dCF7Pt5quc;@>|eX)>@og?`lP{7*mWpUu&)YNtY^vQzc!W3 zhK7b3Pp4l1Jzb@vx0OFli?w~h31GwkSKPllb^kYD`VEW{E=ZGB05KCXv{o(*%FhIW zQEI%pbMuRmWv@g4PP`tdE6-6$q}Wa7$C9eY@=@AJ7Z4qtzs{useBngOeAagRfEbw~ zux7!$62~Sn?~w^;4ep&;v4Pkap<(3D&U3$ptf*ijGL)ZYh1cS@zhT~`U@C1BZ~dd zMvXh=;Nu(r=~g|p)Uy=V{pItr_TBQ})+@k+1q-F7N=`JJf1LF~E$+{{a-^(P$KlKt zsyKSP+;`D%#BoOv2J=|E8+r)p#6*xJ+(&SQqo@XRGPZ$GgU?|TAz@*E--w>`*6G{x z-3jG3%gf9#CWFt2hIW%rgqC@bY#(Z{ks*Wk1E+p}B7a~V{0|<$BM{N!#wsLfl&^>y ziN*N%(}T7C3!w>8NG=hvz#<&c8-mPMJF{asX*HJB8l+}3_~S69=|{g*;`qM%qE%DS z#K0CPqX)w9D_IOl9c;bO+noM$8y?8=p&9gM&SZiS z!MW}Fie$bK*1#KjQ5o=xqX)mzeoims4SK-C7*9^_}hr16Q z9250!OE?cX58g2tYgW zJYUK`IdTd5zhET(kK*Y$g+W(E{?!ivXKRDBEeoUy*E?nf|EB99+B zR1H~TgoA=P)NXIg?|@)(YRt3F&q4UOOGkQcQFHH57fs=h!S2#r)+T@`fP5t$VuC^DC=D-vuRYg$g&l`$an0n3zb!AMRLQ@bQswL;V_?x8?WQ zey+ldR&NjSAB`5r(*!YuV}j3cadH`4cL(BX2W3BYbtf)R-z)*{Fvp@(PnYo;2?v9w zD3ifHw15W(R#YXSE-`jD99y{K(?XfQe2w`O@wDgj$gxUt`5eK%| zNPY3XA=&4im8_b1yJk&}|1*OXYv2tXN8T96S0Mm4Hg-SkrXLz~qoHj`iF7fR6L?!#@j1|IK+0gx5qZ7z6n3j{*G-3~HHDc21t9k_oiumeP$0rGnc&_Ucd=uD1ia=0UtncYTGr zkSD>z-L5Fb^BHPsp=n8fPjMyNhdfdUtr~+ZQaI*f_~-73e8sTL#%gy4BC5+CNMaUl zwFMHE_Rz)wk%dWX6UwSmdVH5(M|U7uHV0*((HtkSxYHAh(|JbH68A(x-FMFt^h}u`&d?1 zJBX?h$Pi6GvFm4lvdj>AM3~ulSd*Lc7$e2<_`;%PDK}+^Fj1xK&q}>O$ulP0J>RJ^ z4GwQZ|JiZ>G+eVOo*(5Qm?lJJ#5NoW$fAvLaEm3ihvsEMUHrivCS(;Zg1`+3w^FJL z&N5@1WH&t4XG;%zR00l0TK0XzaHAc^t`P|ySf%gxy&Jd{2Q8#Z5AcP9_{JHv2e|A4 z5aZ7;UQ~Czjzq5}`$^XjvvNN*n%dH#w}KOFo`P}|b4PH%0-`xzCsMlcrW!@mGY%rM zNOuEQQ&l7`ZaGuB@eT~8!5Lz$`J-^%N0iPvlkQ&aiPWAq#X$*!{3^`97@xkg+_mUnTTF;W; zpo+e>*P4H#B=~ud8*!lC^v_yQ;;Z;~PiXfuvrLGc4CHGBizL&DtB9|aqDN$D&%N;} zGWShr%jEjz^SWt`zf4OOM`J#|sjNXpFedgCRg^s=iP ztDiFGmQ=_$AIlc)4Ceu;HaTx)|2F>r7PbWKpmPFt(h?b90mf8l7E0m2{rw*a28rZf z!AxPe@V#3y9O#A=z5Y+3UfNq&z+g!^@3z8$4Ef<3I4AN4DwxB=Aw$xPad=FLVL?le zx>?4bqM9$iqMGuPp%)dfsKzGzJ>{RGn&w|ojbj9ZD}M|eXq(FDGVTvi%@0Y~BE3n% zSm%(DAv(bEd5b?Rvegu}$SRV|h-h46z$j19AI2k)cL>tJ24m+4#N)k0r;+2^`F@Cg zl@o**47nrVdNGX5j5IXCUE@YueNbTHgOnI0}=BJ}nl zXxx_fm_3#MV_etrAIH!!_%()g2yVlnn1qD!lNi}Inpc*OaB~Z`Ylq2{*Jqo-ZCPx} zf06_^w1Oy!&nS@6N!!E!l9~B;KPKTF00Ef&?B9R>3+g5?!!jsVLnao*f1XS&5Kdt1 zFX^lQ_BikXCXzf`)nDKIUuFUWGI##7#QyzPbA?|*=Au2%{09dAit=Hcb^TLl_iJwM zLa-tVWT$GS!CZmVBkE5w@axUmKut3QRsLc|zqzk|p27Fd!0}wi3R_h}Gkih^Q$TjE zDjZ+-9|w@wCV=H|Z%SZayrj8;=2`x{W*se<0MAhRTxR}xup%OuHk3xBWaa;nLJ97_ z7`6PxYU~fX2V<(a?Jp8~gXRVQcRBw(#qs|cb)Jn4s{gYV;1@gpXL1B8gln8P4Vt%y zVOgqfLgK%8#8uz96m!9DfBn;@~PfJ)?p%YtCQn=Muf8lcft>u3Zzi~q&QSR_xCvzRuPwWf{Q_xIQh_QC(w$9bm+G3EBH6wlgn9}viAN0D z)HmXm>X?)Li^%UGy%q(eaAaXqg>{dPA`AIcT(E7hym4c356+H0u>_Na5DO9 z`BW+sTx3wAU@3VKszYmgK}2FrC1&M3#q@}i)=9Wja#S_PictM4fRXr#21}7r z;SdD9lNZ(3cgwuUYBsZ(UMZx=lfi+7^y}-Xi3 zjHD6KZQHOTJY=d>DHxKMNW8A(VD>gXjQJNn(2V@r!Bq=>$0*FLo ziL@vOVLUTdmgoeCgkUfLe$&PS&aRRpZ8`A%FSJpH!Lug$N&h{}V|j^^y<8-Lj9bm{ z2?ofL$VqUZK2oOo5AZq?uyrdE85S+_P;q=8lwK~@dS36hBAs7x@JPUtiT zWIH2Au@y=X;Z$$myhkFLd-+>H|C#%>giRQc0h=%!|L+qzhkvA3;~v%iQb;hc|7(}r zEpWI0I@+!eWNFh3Ika-6*a~wE3cr@7l%sF8dYa18@dI~|TG{z$r^yr+` z(ZA&PZ=|MCgq<0Wz3#rRt-%1-?1F0+31BJu8AJk@*&Z)3(Eso7NO-2UKzM(p~7YXdddhZvfe~q~l;SSe`)VIqN8n$Or-*c3KN#VK~ zn9r9hmVvwLiQA$gA~hX8oiNrbrcQH>N0$*hQr3LKut3)i^9kfFelfRn3GwhRRvSWy zUa$vPB3X~9u^NTccTfR=vh8?;>P6Lz_HZQdRmS~6t^)^C1ca?_%zc*c8l&-j*t^?a zTM(Q8{mJCXsn#|xLmH_FE8+@WU4k>@Bta>xSlDvPr}0j4eRUhc)f+{$3-u*onOKu8 z-&fz`1!i9c zo{K=G(@Lyj)3;ocFke+CGTj&u=z<_Frz!FYfGif7oho}k>ytq1S)+8>D}m59A4@{^ zFv3vPLWO~BP<@7ipW=#R1sa%bqOm%FmZ(w$$<>2#PIMy?bL6%?B3%$)pnX1&rQgGJ zqyt+mzlOthOBv)lf-G8@BOGL$@{CDq4&Q^rnOQX(ZS^G#ioybUXH#meiR1rLfRNw~ z|AP;JeYF^^Gi7PkKjF$L)C@pIuy-Yrn{t$%sPSSZQ5lsh?o3iYipGSt=K4gThAq!W zad?ls+&aM@FSL~uNwX(%LBtov>KG2# z@`6T4#+xPbE}>2KO{5eVcCiWEryvqj85LFj-CERDweg6R-btGp-0h8MPqLIwo(M%n zR;mn`Sib$6SS|n#|Kk5aKBB|Y93oxV-#Vxway)*VtZh1}@mH}KKLH>92;sV}X6#eR zK*#}$KavM#U_6PB3h$dC63Sv{D5%pm{w^nhO_}-2E>**XEfRwI&7KY3|^?wA%~hP7oQm5qawj;Ile-V3OGOQCaK^ zsS1{JhHcP9Nra&j{C+0H{?Q(68;KE{ zcfPpq8D_SSBe&Rlsnz-WedowQNmmp;?iRN?-aVwXc4_Psm1B0JoFlkC?-XeA%qRAdrM=043SLXGdboWKTPWVMJN~iMRx;^uIvPDYs2np1P_5k}*iDHZy{&-hgF#*K>q33E@%lt9f>qqZ47&o)tvv8CwkwTzb2> z5zu|}$&DSwK7bqH4t?{?CK=vn<|gr|U$!!WB<++bp9I7Aa5Ga`M&2_6C;FvPFq3MW*SgYAc==n%}Vk6yv zh;R(SL^$aPo3IuKJ|Ro~4%rQ^I@#;E1YIG)K`)0yPo$4@f$y-wR!7CT*2Y+Np%+!4 zML+EDc5!?!@AytIQ6a9IIqag^#W^hSLxRS)<*Hm)=7zok{;amb2YsKmX>rH%SdiQ1(c(Nc&GvWf z)XP`tVh#-OUzJ+gIRL0!{80Rj{HT?M>t9~ClI^GQU=}Zt<@#hq4HS7%1gaV!?Z~!+ z@?~*%UsytoL}J2VX?N!wEGEn5I3#qePx^L7-&ud6na%l?8&;EH@#^M(J4zRd0*Jc56J-Q0*s9Uy`oCX6L#v>Me|(IR+qYKnr{+BPISX4pDgcQ}T zgBts&WudAlZj$3gYa}&u!R)kRGWbrI^&@0qgel+FH%_`g%`Xv&`p5O`wS{*!I9d=q zPsSF^7R&yyo2rW+D2Hg&)k;mYk?mtbFt&4fe)H*DEV8mMWXn3@-EB&>`H8|3+cPmzmRI~`j{>?!ZBrzAa|xDZzOe=sXfBfsdv&`_jK1Nb+3CYk3xUrFwGOeaoZf!rKvi4N*M8Kh`3{V<{CLGT?_ z`QW$}t=qe7Y8kdF7!ekYo#!?dSF&Z_SxKk}WN{L8E7zl#;P)_@@eX)#Fpg~DdX{+V z_DCFzSrAAF|MaQJT(cSWCACmE1Loc*|E!-t;P~3jh@N)+I<iQnPDytTY3N7fjt442shY%6hdDQ2gDb|d?$U(xj znbM*5OIrTsttj@*uLQmpa&+E;BUGd#JJDm5zsVFv(^4 zdiGg9j@NownAadZJEZDr-iRZ4;SY~S{Uf}+1HtS8ilU6h=tua(4*obnuZ7d=r^#ly z1{M98xzCM8lC+9OeneB23lF z=tV^WF|pQNs1749lV+;`+V;2Tb&IIZ#ct9sc6L-ocbJ;U$x>I94r)uvAp?+asgGxP zB0!eVyqBlBz{D=54FeoOL(5#dvN2G50z3gITSC{sNPz5j6dnklrbt7H43U5o#**;Z zQnZ_6%us9A)PCtQ%&2<_Ci`qhEpv}bfE5%**}8xt zQCsyv$|6mGV`DI>84)Be79o@3K!e1D z>m}{*Zj`2h??huJaUMM&=Za&f?(}7Bo}k7U?NMfbR|nQ7xA?e{4a+Jj9V2Ij2r+}b zwaX&XImePX$AhxY`*{V_w7sO>6*Zb@R2ez)YQI@A`{i~N<&5vriBd?Mo)a#OElqi@ zx3h`-s+DxpF)Go3yWu=TC@5OEFOE9i_L>5R(i^2C-X^T9mk|nsYC19gN4`A>( zuZnOyAgj&4Wza|qXpxQW8klb4ba+G&z`gQ@D#acESZ_Wd&HNDlw3qSr(~Nt4s`0p` z+>cX2oOakp824C8sWosH=ydm+^$Y-PfmXx~zR-Nv6px>gxr`aHm@jNQv22p4toSQ> zS{-(bJ=gKTK%zvJrDcWzCCc->?eo@pt@NvVpyEgZIPB0 z+#XXBd;&)!O|IW`o%}PK1WUFI=)?cu2FQg{C;MF>`3t2WY_vZheiXHs7(kg5+d{bW zrD2p+$&MvkQ=~$H>`idYvd55LphRKck+#|HNS{}dSy1zyg2OVhr4)Xg;2iDKoy8l&HSl;?0Q zuqL~Gqx6OUSKT~v2yRBhQ6KC^7h_Jc#C{fHZ?~hsr6!H%nFVZh2*>b8tlfdghVhF9 zL2dawQrODf;3KTO`~Lj#K1L3yyL!l8C(qilr-)F?Lu}l}TU)Q@UWN|kHZ-N-?u-r*77Apjk_3mr+%z|9pQ49zm@TD*eUjh71`QGqO|(+Vq}x6 z(GBksVTBZ?(2Q?-C8Us2(m*3!UeW;lZ()Z9zUpG}haEf7y}^(@#xK@ed?Z;*kew^Q zM_mu;orUY%I=IS;obWVa*UwieF8oiq7cjDtc=lfea_wU!tK4G}yJ*1R_&`nMmT(w) z&XHR977J5_ zIh+-nEW~A$s5McXH>j?~ePO!s=8*ZRdT z@xBwwSJ)e^a)&AW>&u$X<6WXSDxObfrf>onjrH3BP)Np`<18qOw+4^N+4rMrh^fF( zG7~~~8-63sZrp>JzXZY<%3QrQgQb&Ts7Rq7WE&^;7Dd%G;2_?a#t>jAu>YjUpNCM( zJxs0ZO~@3ZN*=HqZuiPVaWif%2HOyp(E^3m@mOvY?Cg=u6uv0h3pK!_6?ft$U1(#{d(!flWq0G$V*6@*J@Xu$H5LJ@Lsk|jDL zD1ysLuQPwxM86gWbX1fD;TdAZW2cgjAY;gij^UJNilFUP3g+6QazJxL0*#L}NhUi` zTD$p-j~^|;rM@g0?Di1}uCShmtA2!mo@_tk3-SBR4u42|D0@qJxDe6UZp&X;PxW{Q zxV!RWQY$4{vJV=MXmIA3M0H=e#y}uzHrvAP{xaP`Vykr#&IRH2uon*H&RR!;bhnu7 zVdt2cxxK0_H-JwL#Gk8ii^ln4+)RPUh&B%h#O6hY+G;vl_~NN48rYSZ|Ln;LqGYXXpU!HlLs7P zOUyG=s0rqXKBHdgogpm4(XM{ld^_{p#VFjl6tV@^>Cq%ef}j!K1EG>XNu`;+r% zdE0h4tQ}xRJsfl7ccHqyvLm?TH|jd-+HtkyYT#R#C}*7~7DcSnjTzQoH{W1rm}tFKydja1DKjh<@n*s{wr) zydzeEZ@Pn>=Z0D(a{Pzm&N%daqf18Tmn?4z71kDYvpi}BJr0 z^oF)jT%x;by;s`jjaCbs+j!UJk1MfnQ9@C^xdO-yW7WShD=6goD zJqvR8>Ne{hN2-Yzgu}^F=7=M&3Dk9D0ok) zD3(1s9~j;`*G}ZP<52@#Q^2BcP8$1`STG>Z8uoeevySo*kxTy!NhgQVnE5?3?e%l< zPCYgj7w>NhL{38CZ4oeRVV2S7d{ZikPo~8YS$uYI>;nGiLw$+M!B8LHak{5;rF{7fd{(U;(dvf z)jw_Ca67p5uSpCIl^MqJ8rZOAcq&GUqNRnxfFJ+QT7b;`sT^xAQh9m#&ZqI@Dx_Qd zRLflhIuX`0RrtJT=KEXTQ?Gxb;w6B)p95LodM7q;p`g|1swD0H)mk{{XBs{S-=*Ps*pOVS&{ur z182{A`lozUHEldzOPN#kB3v1--$g5Tu1phZG0MMt1zv{)XJpXUr@o4drssQ_Mu#BK zq#N+93)6G@~h=Q$j*iY(C2hRi&}Q(@QCelUK~C_E`ga+c9Ms#;yPbBHTJlp4EoHsVst80nnjmu2B?SrRBY0q)vL^bH z2w?0d&ri@V_Hq+9e!PC^@$2y)Om9+@fP>!KtG+=SL`JXo@DLEtHw^O-j|QITU$FpG zW9GhLuR1Xd71CU!^A|R+_KJE^%T&0lpvuz}KY>k>3lJ%;Wncn~2|5(MSDI0e1|PmKxC zp}2VqbwPq$;p!E?4@7iig8g&!lfTf`B_$AcDerW4gMP+s9sFG~dI6&XOz0b>Ae!)K zND#r|Z~wz>pn<6;!?o(@6QmIx=|8CfvZcxJ58$$0brtA8N*w;8F#Q!vN%(IfL)P#b zi(y48_D|2v>BLqlu~TfZN-E%wDaPfW=OI#=24x@-%na_$p^k6}7DihmfmCdmKfZx) zGJ;s1DIOB5VgB9(xSJ8EiU4HU`I3|f@)9sJGdnx}VYxxZ0vPLy&Ch!Uc}gsg-k|#O zO>6ZPCjEutGD)DnqOYAhP%(4DA^ls{T{s zdhJG>jF_wnHb+Ml{@RJV_pZ%xFnOQSd|ry^QU*R4=4hIhxPYR27pg7W@rGHb-*7v60G>1WK1=tT2T=AAOgN=@!{GGBq18?s;-Vf8# ze*<7T<9o}5{3KDYR4_Mt(Wg}2+tM)$64uPe z^ukAhopRmJ31IfF5^*wIlAOF8AwMY}p>i~?K}0~;C_U3up1eWH(p6Wm+$@diKkFg3 zEEt)*{80x1$XI+{-k*NEwCg+u`vOV-Lqe*Qi^B6mN0mkaL1S2}?2&@=zroNLQu&&@ z!sp1wP;(4fo|SCJx#cd~JIdX7U$yfkSYr9nJ7?vl8m>-&+~Zk`q0p@0I@^ z28tp$?^!tuDu~{A=R%Am|!>s@qeO?(mIeTV}D@p?CLyp{sB2Z65Tlx zdedlkadmG^ko6CM{wrzVP?y5Mk=52Br_Jm8sn>_JS0Vs$f1&rUd(Z5~j#{i`+BD$t z284ok=VX)^fE}Yh9rv&=85jx^R&Qr6(Z-tJ|B(OBOm1KS@;zfe$arw9Oylrq-GKw` z{&*66hrZ<4bm9ApOII>9LVT!unoP5|L7^Ws5F%fdqJfVh+p(ViC(Qk-3DGyFfH8T~ zdBm4xai1_y?{y>=I^&9cbVdZf;S6Cq5x(=pnm(t1I!y<$iU*&z60^+9mr2$xxyF*% zlSB>V_^9adou(U7?ZJiurq7t!!&9MjF_z>MS^CGvr#)RKaUX%+jUK(Taywq z;-ILRKRQo)vmr?A43|F-&sPsS_JQoDqj+i&A8zv_v037OnK0>jPb|*ixnCuz;4~(a z+13j4twBx;XF`5-ybr89W^AC%GkR4Iy9A$!D%V}En&$w1#+R-_&r!9osawyM%=fEF z-eHQ5b_ic3Z5oDte*0Mse2^W($L~P6_sQu?pu<9)+0%z}L%s*UWCc|b72No}N8=u4 z>~h9`L`eSy#)D9367u1JXH7<4TPIZI%D_VBcwD9Z=_rvRdCQpHfp>MiP>&N38Sxbj zmz!wY&AD0c;KE(4|FigJ$@LXMk&{VA5{1^z_eU*jjh>i1?OA=3%5w6ZiLFS%);F?F z-t}d%vxFUf#7$=`hPHyy3etVt=hH%s3(FyzQA^54V)xoTuKU^3m^myeUtDAWRjM6O z>`}yI7Ny>PqXN4WK8;J)4*x*%nvkmuH!Gyr)ayl(&t5AbE~~vy%^vTQWvgN~lr*>n z1UK}mpA?o&7wAlB)>>;5RteZ3@PEm}E5b*$SRzZLL`s%6)44x9Al=q1Q9CX&ose zrhS)m$fLS_WrWM@ygefbKy-$XAdP%fA2}JnL)o89)-_@k7Z4Vfu;m_{+t`HwFBI(agUmy4?J0mB?d$mPd+;86*Kgi% zEedU{e^3voiQLpcD4_g?90Es?wa}aGn3f!ec)t(-Go!bgVw69(vR}V5(QRiVLw@! zvk~CiU-mc!OlsWkqXtmvi-k*uK-C{j0nr79!C>bgurQH=ZVID+fIQ46Mw`#;O z^z-WWWF^@6rfO-}^|GU=0_SmLjhBz@Kowy5KEF$V6gQ&G$Odhvt<`8C76FK`*l{qJ z@WUsvFE~~Uuq@}>#}co5^+MHn44e9FtuZ#U&Lcy_zxJnSCU!P63Y`n+!foZ+jX9C| zQlm;QWj9}Me%CvT5TciD+y(t2Vl*0260$ngc4B@vrCBf=_Abj;@J>4UD2A5wxa51P zI<45I`c9Ts1)$3QF2bf;%ye{h=L^7aE8D!M{~k2lKg_`s&Sk16)>q5R?Z0U|x-KzY z?{sDpKLZj-LtSo9NX+s7md%M!A6NMTR7%`t3NVv>q%xGUBii{YtgTDoD)LcuGmW46}j6-D->x@7n5)|@_)S3=c3Cr zJDIzJ+D>zo%Z=izB?WaOPc+uLqxxakF}C%m9%17-u#FX7UK)?BtDoPSvP}zlFkBXY zB=GX0X(Q7n;rYbD63hk?os7~_U^hRe=!Z?Tg%5RK_rWm2OP`?v-A*~o2^f~GW$YoR zWoqX7;05x>t5RF^KM{lyI zoqn0Bc#ecm)ozG*p4DZn$!)qWDdf)+ghkl;4s&^EGrsTm+sYHAdMv~lr*8=>226Vy zL&0JrIwmDAyYViE?`?QcH**Kej;3x4`>Sp&l~wlepI7}ejQ@*|BdA5wj|dsOB~p7V zjIZ{y=UiJ)7Q}Vgp)>tyL5vNZX+s32*tM2c-=Z9xv z0TgVV8KUGSLbX9*EDu|E`F=dB@D}c*hW@3ryy#6p<7xBcoT{$f3F#7}p=j}9k$&*o zLy^@V^v~%y@>e7FnD5s)8P3^;LM@3KBuHg`=EakW_@MBvJ|x`K2XHyBE5*$|hIYuk zFrP2*{Bb{Ggorquulx<*!I3q#AWctlvB6(^D%ds7o(1i$WDqqBNZxdCO>3O#TFjT7 zsxU7Gkcxo19kY%S`F{+HHZs1ty(c+8^D@j3 z%KSXIm@2x%sK2Oe`5Hav9N-&)GELr)Ymq3BJgV0>+U1~qv5Z21mesAu*6&=uNh`8? zf=UtZw0?Vi3)&o+Py#iecCLCrK5~ps9M|!C)kB@zNkvlL*;0~<`vVH&lnNv}R!hFO z;&W*7a9*{I%^#|T{OIrx+8FY0J)J;%zZ5-LdtLLwXPfI;$KF`P-s{r&O3HYjY~$Xj zI*O>#6rw=>cFstmqv4*N(gzINt^OIoGw2pbu!xmfsnG42C{+Sj6ctR3y%V`31}Tpv zSN-m!)YK}c!xE&mwLa*rhTK2Soy|zA=(Uq*e*qmoZbA0|#T9UE#La$~o zzq|+iUXI7if~{JImP&Za9m3wVU_`k~MxMr8L}BQ?>P z+b0Aot;+)4F>#xf0JI#>Qkls#TEvKKda)DMjE?O7){bD(TJF^5;^K*xF~mD$_Km%i z=Lv47W3{5-lopRs5rC0K;ODnxYD?Wg&|_)s)9J$dvMg);LZ)pfP%1tg$S#z8)?d$M zv1=-lezkS>lrU}b)D-Z5`jH}E5EpN_G!-!q*0k|F4gGrTkqJEDs2CI$S@eZzULXQ@jUKBH4o zv&3bcJVC!5>&u-sW@z1$-MgetuwKm+?1;}h<<&DZYJnFK1w?%8MgZCQgwzrqjYKax z|C|$3$&RMI**DydNgtFh;7aB!Pk;e{v=RD(Ir zLh2y)K~|D0z9VIKNJa&IDQJgQrLLd-1{T-l!3^v0RM>Qm*x(Y8!*v@- zjvJPP{w( zp*OdC0!BQ9eNnbKo{dB#JukoNK8T=fE;h z**MXI?*9lTiF;65^av4DKX)fm^$F%c)|b7XJ~)zh}b5VX*M?# z`Qof*4ElHuX!Ywfz_6ZA>fxj2fwdCiCwT_71j)(X>4jOWc64|6QSU^jGT6*Ig-Cev zsrp7;MvGjV-)S3qm#5alu(C~;G5L2Q`kxvl(h4v548Z^Lz``x(LCMG`#zpl71E&*O zvB$%=j$*tY(2=7U|DlKki*B!nd+L&@b~Z*ns{HO^GaEgKsu15j$s(gIPMuilw$Vtj zXPXoW9y^d-1YVdr;B>wRc&hPakJxWCwMn>C%!ATZkFe!CZDk8m)HTkVpREHLZ{D^W z2*#4l7*#Hv(TC|N6+1U@Vb~-Ne;?a%W$g@lZ*k8>y*N5~5dl5k2@&xy=5D+7eMM;p z`Cj{EX(KmCfFRsWzNA;OB->Lel=bV-oAUeE$4YDMuq!WM~-}L~!X#xVf;z=qo z!CI}VLr$yQ?kC=vci(UzHvKo^d|#_TDJ<~7N%(ckm-+(7-CL*b+)724@47L_#FHy8 z;49Ir#>zn%a;wV{X^a_D)s0%=X`;PD-;2C@<7c54OP%h%2S8g-kVS+LIc^+k7diyNkyL4s>8Tx_?tiJEp{6fC8zz zBMcND&#p*P{BQPwN+pN_Colu`@d(BHigY+qD%RTYsagEyu9_wLvcifSa<%zd8I`p!Z4|{JFP*>2b z3*rP%a3{FCdxAT`-7UBU->`9acXxMpcXx-4ySohk%-lJ5?me&bHgD^pS9f)-?podT zeN{CDfPTX8@TN>(o7`5@)i*=*y<3s8MQA47-?{GofqFnnEBTQ58QQEgJY6FtZC{aU#cia=7?~(p2POa zNDUA3z)*-gY43|NBG6B?F&J$?R9Dk|YDMsgUT2Hz4V3F~ z5xaeEqqh&<>ZwlB+ndVX{5tfqA?N~P-5%t>mhoQ;ESKHKsIN-skG=qw51liZI|F57 zHwyX}f7}2P_4RA=!SrgF~k_y+X z4NfFyc#QnI!DZFHjv_1NqXu8PHlw~+<~(K1%F>t;wf!9c+-E1eplV$0e@=edxCw6 zouW?6eQ)?%AS zpFB1}sw|g5vgzfUhlSuz-aMFv$W~)mS~{+|1}3PDl?GKF1c4ERa%JM<!K_KTg%}nh>T?QoFBCDBa##(!LCDZn@wF+<&nCwpOM5lezE@D{S`L3{&SKHS7-F z7);yFkk5d70H+7S2w_D^OF5;u0MY1B*k|FOrLAJm8b?M3%VkWB_@%(`T-#Uikj*P<9rwwg8?nC_HT4NkDoBY zAuxP;UEg@UUP3+*RgxQz5G*vhWV44L(Oj>2@nOk>|0WUmg3*VM$NGFmX8KEK+3 zb5@Y}$?9W8^yO&>t<>&nVSet5C4CT->>Z~npg;zxMH-x#qBX2_NuEjxq^rMDqX9XM z&m?sad4E21GXexW@jhhNZUK3rTw0&ZMkrSag75vU9Xr_cjjrfO+4f^tuDN#$$3}10 z_W*u-Xv(Vj+lQiig!2--llrF`3z&-}yz2hJ{!FZHor`cQ%7XV`H z`Y$si@PbRK&Sg-ssXFB-`hGmMAvI6(flspvdE^kedaDzcR1fIOrJ z?BVspjk!$SO!@~PHR{w6m1!qFXPhL|jW5%U8bmr#V9E_puvv?BApgBTmq zx+GqQLWSNW4;a<^zwSuKyq)x-~W_aNA6-#ZD)Gj@qzBseOtiy?eJ3F(kX*s~A@B_#52pW&FW;SB- z_3PUw+GvkMO`Z@NUpBP$hyx`fVaqtXxC*es_`$V}pBUEY*Fr3>8n_e%FO@V881@=d zRCuyj5{AuquM8sdw(&C8FH$=K>qh)X48#21+0A6j%DAluUK*@3%rWRN$B!|F>rvEC z&FUXA+KzxOvu1Z+$v=!$z%t1P7eC@Qe^*cJT8>$rzb)aVeTA=E*4%EVe}~OR%YHE}%;Ez7Fn_VW z&WN+Y_&n_3ajg=z*T}sMw@he<3qoliqf&UXQFhVxnsKsklxve*P>0S zJ28>rn`*%x)?*Tk#0|Y@zYf1n=d&k_$|WB@wL1)Q)32(}|BmU7@3A$z=Q7c&m>kjX zALOG2&bQ$-vsGdxb%!HY)coVmG)NA`UQag(-##2$+6!=d*mKaCer+RfNX*U=4%znT zFt|NQ+F-e3c3!x6y3@_@Ko~`$7cv^pn3Ckk{ru9YRS5g`614kq1dexlhXa9$7Kjc> z!OF$OYvj`LO7g{ArPepQ^zMtW$)pp@oy;H}7(fw>N_Tb4&WxeReq=;xC*AAB*gjB} zBUm3_1j(`4{DG7|41*M5<4vkKaP>*8FFpo}Qt9u##dNLIg824RISb?4ZZRSZx4TyZ z{9E|NDpCvVYBqQ4h$^)Jh#ZzXt&JEft*g$D5R)0>8^>po!Eo z>R$RWm1uH2IB$jmC(fcAa!-t${{AUK_HwJ!8jl~I)F5IpQ2Xg8_VDwl$EmH{#@EBE z{T0KTNau#3;~=w3&J%F_Hu7f`YPrsN2JxX~slf7;c}$O3p@}H+ZxN)joV(Bxhp?+Y%&{QTbWwcG&+SrIW5 zf=9Ngj@{voty05(-b9S>U$P8t^>{FLRb5e-YNB$ z+F@-Qi={?$h*H>2q3E~V;znKOwh*bw3RkyJoI$r+;L;BsA>6)BXcVl^QE%a2(Amb+ zLayBX$kbF`DcSxyRcSQ#@%S|>1!tYZ)Co!08+e^r(0cJ*9L?FKAr8))koxu zD3%NP_s!2#XY$MM16DtYdxGoI#_oludHL=#I_cOM;KIrfA~F--t9NS*H$Y_31{N3k~UUz0o(qF&v{zjp%cAqJZ+wqD~b%aTsNVEJB+gK)1j zYP_54o$#4@n&S+GL-dc2T_+gp(jm3m&Fp5+7eOt=n(`Fp^r+4?`7q|KYhBN-F|m?Q zmihq+t1ZHbpeY!GkhP&DqC2x=d-+hT>;4Uf7}A^?uIB_$hL>lt+H6?(BcmFxID!7t zuzU^h0ZqW_X}foOTZ7>EUJ0#`(KCP~#re+8v|}U27R7CQ=ODgjx7U|=K_Z4{in(1} z3x4CqAs;mUcO$8wBCxL9@%hzVVT(d!zw6n!XYVX=TZ64sy+=PecG=$N z$o^(OTo1XPhPv@o{Ns(o_}f;-zk`h#P|5vv>xN(Pn@+~97xZ>W(W4_5342BPb&x8v zl_u22P=|>AYS(g1l`#%HH`(==OWgADHQ6P<9@>(Ojq(JX*$M$5)7!yhnE&1)VNbXGhvX%ZK|AwD zLik6j?l&zDad_zXzBTedcG5QHmgQ(V+|RkgxH$eo?F*s<^{>1bflEfRRPK~zGNiyf zwISP*>tnTlfIY9ylu*NoVfp9f9Jtdh+jz-SlQ;fG^f=wp%nuhMIuEam3Ez!p9G-Kd z(${q<3%tp4FWVn4^IU-f8hp}~A!!6;+y_jr!Vyp^bbeaSUP>9vo9OR%l&$d{8Wk7k zTS{^^Mo+_A=6vmxNN+4KxWZ6tpM1Y+H1B8CqBr+R&)s#-haQc1cbxuX1=24|U!@&M zU^%S)#Zwg@FfqSyiB#br@SSk2jmN;-h=JtskZAsGr9{I{x8P0Qv>$Piv-VeD7U&%d zD1jec4rdk-ptounrpN19$gx(E0JEcT|NrB=sxxrZvY;i`AR#Pybnwm zO?h3s+IihfUI6?AQKlK@n0EJgete>%Xxl~|AP&?zM;QLV${hW?L)U_ZICPf~qubOL zI(4t~lMIjP26K~iYx?x9worvQV9viGm!mrggI?i97W)&aQD>sxP2#LLS@b38>veHQ z5DCS~R~Lh2VfVo0gDzh4N4$;$)l0ofp23Yy;K+&8`XlHZ1QHWwMs5dQ%2!qxRw8sW z;_LJT8`OQ120I+|e14f2YQ}~m|KN{77Jj_Gm}mT}Oy^l3Zn2Kj`I-+aXeCbuEbAFR zS2&!#RdSIpn0Q?~=CFsKkS?q?_-88?n0PoxyiuabCBJIX9v=)jp28GqO*qALkb&vi zW_(l0NC~~&vGucg@OxnApM?5H9aGXGmkQ&zW}>ST7T@3UFI&4Nv29;=XHT~iU%+?b zq2cJ^MS7kw?gQg;zPOJr>k&!%fp@w=UJp0EHS71NY-+C+$pDxf_de)d>rCVE#r!J{ zrmL24DdU%t5i7)1;J*sc<|>e z$)4yxlLJ03F}v}MI=<~o=dh-+MsjHFm*0yFiMxP535O2nEa{RU?ZQHuulmjeT|27F@R& zuCwEza--qONF2Gvo@-O-=CYB8Jr`CuFyqC+@jHOQM!k`x^NfaI7yl^}2w4Bg&J(}! z8fhocgS^$vg3iMckVLV?1;&ZT@ZH^xNPLn^KWizjJ3AEpwzK_a!I0&6e#+hIk+`T@j4@Esp#z`S z#>3d2Z`(60SqjuPwSxZ{Z+A#Al+}7WwMHS|fM?~mituZE!RDwwGs7CLL-K4PQHXXO zW^&OVsI@7VuwKIbthQG|6}wOg@V!gaq5N%f+gdp=&@8Pp6RV)o(sd~?uelG?p6Krb zHNrjk2w{Db8)@CMCRD23?>9~3bTGM7_(s5CdxqrnE0i13e}kOi_U)2jUe>>CmZ$vH zf(&mDjNKO`fkwt06!tH}0>}hWBnv$eBt9n8N_U2zFP~r8Ah8C0Jc-j=^t)Hez<%$K zDlo|p5-6UmuuTEL3xfGuqDT!SUD2tcv<}g&rK`Kz_|`XmEkG0`UX-M%RoF%4i(!15U1R+^E35CNk->!gy3% zFuLj%ER#AZD|@!!+Mx!tSg8gJzt3*Z^@M%xOc-DBC#JVD1b-FiJ?%*CiheJTXS>1Z z8S#8_y*yV%Wg?Z(y*2@^B*o>S%3yZltHXC==vazQC)Gl;efWASVv>@48H+Z-Z{2f0MkXtaOUw1*U`TAUP2aP%S7x~QttSNg{J&5*{^!9on zvH1#grpq2>P?zgw?P@u?N1M0_L={@W#g77Bx2MAkh%~ElrzTuW;dK!pKq)Mb-7A89 z0J7xvLU<-e5KIA~3E6;=-R7bR7tGk)sqgriQYqcLNsZsy*aQ+8rFv7oH_~NHK4oOy zc{Kb8@RUYX9>t=4ofwRx{j?#dlTs`7{Yec&jLCQ85+*T!+F#4>=-sNZyKn{acoBAZ` zq8~};uMhI0G?Zv`DsWwakH2qwJ01!^;?laUprb5D~L&=OOVTT`PR+(A_+e1bq z18!$~XRaUn?22C5m!+UWE*iHpOR({?r`8R&cs2*4Ksr8O?AbSc<(>AnQ&Y-#-NaLB1G?MrBmeA4%&I+n$vlvXML7 z{9&TrG@;h$PN9XojD6VQwAw1Whzf<-#>5$~?2A#?p1b5n@G#ZpN`c}X8~F8^Ve4>1L#D5tN^TCmUDDDednq~L>nGG2e6{} z)Lg(QHFjp7_Zm=tm=??BL6@w5>H(8>_gwzZfar`>V>*%0dy2gH(2hrK_-#$2uo#HF zV2N)(g{Z%Ln_%Ce&g2N+V`;|X<%H@f2#A{{taiD#@k%baftoiI+#s z+#6~l`usf6Uf9ZDn6mYf!(Yc5Z&Al<4}(=KQ8q|txM(tzB!4kxdW}jaU)+}H>HbL* ze>KoED07E&&=vN62=Gm5e}-481mLtYc>M%^oeUEmr)tF7-$MTsDv#8ARNM_Myp!AZ z_{K9}i1^TU!a4JTBnu;eejo8(Xr3)yqU0-orUj!}d_?V~UoEyV9#K+W9Nu5CPG2Wz zH;FVaQKaIj<$w9`9fMQ{-<@Axlfppu=2G1LHILiosMfcre=7ONJsE93O_=pEfrhfk z=rn{P$EeUP!zs?61m@!4OXxz#8NJH6Vym3wl_#GzoAK0IiM;|gO&>Y6#F1#ku-p!V zF9LlTyX1aUCIrAah+r)bUZ}2gyAl3!tyfA|xgoy}1e4SGqMba9D)%^xX1jFR zGSymgGR(Dh=;C)}r5o#0;jS#(T8Ot*Fun+q@GLQ}(SMg5;&eZ6e*{&>?8%CjAT;Y66eJhA!@$ zBm0^s+31vO+(2o*Q4LXvBOBigq}HoszMY>VUuiPs46ZUoiTQ2 zj4;}6{>?@O*jH<#&le*y+-$Zlcm6xFB%Ef*^};Fm>6QMq7YpKtFs355#?njhsFrU; zag*dwMyqTt!BQJs18<%g8J~HY4Iy}uoJzJm0@?9=Yv>=@GKd-s7HZF-8m*>`pcyw$ z)M0Pt=(4Jz`al)t8XZ(SKsnHB2FB5ioDPGRY9_8@_?Ft+XyvpkqFkkN#a1ju6lNdK zC2Chv%N&PdzAR| z#%KCF#8t?f{bY=<0K=YrHTl`q@5!{$o0o0|<*`etf5VsI8tq||8(X>INvtzNq#`jU z|APzQ%;fSA)$f5mFaa}}B^aVNf&9;06FTYhRVpLEzj}i%ojvVyxBZIoNY+A%mE^Z+Jd|TgHFS%V-_KNIbT$Fgt9>?#9O3@n!dCLmCb)1Lr zIHfN4%Cl5^7_}?Ssd)!|)lZ~8ylQOPdD;<9Z$ipF+;%B3)}czch9NDtL4!~tslFc; zHeCMEdp3G=gIA?kr~ZPSjNTIErZ)lN+T3$#+V4I76Fz`9-SW-~<;rU)8DTaQdi+*> z&bR3mU{@!(y`F+@QGeXe8uelnA~=*@0?D2FmFc36H1m1G?d^FpUUsuLz6$Gy#Z8WX z7VJU4^35v2Zjfx}k{-BCqzS0}`mLGL$5#|#Cms+x{j}RYU2$4)L%8*ZG?y3@z0^cy z^C8Ijkaq*?rrY&~t!_FsRQg_8r*5d*Mhj{8Y8qIHG0de>t6GOD`uL^xU{>h{(JeEASC=`mh zuD|JKa{T)-cPbt|6ek~`fFI8Y2$XL^G81O5rJB?yizU+88<;R1@B9&i0CC9E&{D0x zQDuV}THm^D7q=AA99v9@)2Ka!5C{m}wjq)o zRw&*op{*#x=#4Ccw3}O*kV$=Fr95A!R-KNUuM6Tnz58bS0AN3lz*gvDy}Cbc=Clb7 z<0gFVr$WZ(ku3>iyp>9GcjflxX3wk`>)Z`GKfI>bhQb1IPm(>&-0VNh!(R~t`pCp= z8Gdzj5>V~p_xPf;)p6T;(zIYRucmT2ZT~DONS*F*q=o3fXC$(<l z5WLG@e(tmSFd}B{-1Ik_L*~<+%;Ir6QS9%_)N0e6QpyP>vME%SBYZ+J%E47;*cNH; z5mB5se;^9UaUQy;uOjk~tB9$7$4ln)z=+BGG`g$+hL@3p{J=BIgI$@=Aq-}BjDk-2$^Y$;8gdtb?K#2 zG5Pc)2Ky01B}{i5XXZ!6I-~ZAy*IzwrqN6Xz0*YLOpTt)xKS00>4#_`RC!??Tre8c zYipW^dFniaUTpX!GZ}8vV2?A{0q#%uuCYMtA-FN-Lf@7jE%rMik|(T|J?eD-ykNVL z-2U-J&oQ&tWX-}FSsT=axdPoG5o{B?feTQhnBd!PWbK_2-HkvAmg;PPBofQ)Jo9k7 z#B^B?3s~k0ViXQxydEH$xxvd!uQmE{pIR;I%n0;s>@I&H(;;;5VNR5UO!+>cGl{=G=HtQ>ezpV=Wi} zoPuylS03#tzjGm{C)Y96S8l~kHe&mnY|_J~Wr-V4t?d#wGR7}g?z)ocMA%0~+El`f z0;%E27eEW$YqZjmmeL)9^g+gsJ+ge!Ff0w2a3>N}R2j?3 z%?+_1fxpYL3J~=X>7mmlyf=}w!i$_bqgrDOVo+Qd_D5IYXJhF?d*cqF@hoKN0`jK_ zX5md$@M|r9Ql;Lo)8=ImN~_1h^_^LnGyaW}VEM+~5kRlj%T%QbcYlX1FjzWcdh~Cw zo}Ln^ev2U4e{SqWUDY4ao`FcOle9?)i)UVzl7=H`y&r|ogFfe$OiRqAl%~U*>Z;TB zkwt$7q4l8zjD(%+_(wbZNcO&j<=|a8?Y$F}M+c`qrL7}kvA*dqT~iK2dMANU8M~|p z%MV~WWQx5!cjGJ6C*P~s?L$SeVk;a!3@529m*5n|T){tz84Y)38&2;X0^FFpzj&u| z?V@%0+~oHv5>IalvlZe-?8V%;IZ4YNI~1G@qJPRP@n}@7N4IU*U4bUFZ4X<-1)AbK zOEdwZVVU&{09Ab;Ey0!$a^38$vc7vv)AcpCkiU(2Y2qx200~UPs$Vt18Zz2FdZpXy zE~SM;Q#u(cyY#HhIvGz&iNyKq2v$ivy-sTT_&1Wc(P@wIZ#)b1VXa(o+hwrauB_>^ zh2$}N6lm`{VVOolvpJ?X%5`(DcJ63Hesd*%a?#yZV*E{%do58n?PyQjAF2MCa53tPbX+19KA8JPawQ;ma9+(eBh7~O z+eNy*qRvf*Xb{LEfL+nJ*@k6p34O$Py*u;+WqZ{1g5r*o0*eBSs`#WfL{93d1kN-5~eL zb$kWy+OpJ4yV#(C)anO}1qn1kDV6@s!y+_JxIM|0NYVN2y?tTj zq*OD`=nukc2H7g}8Y%~jKP3+*3XH7U-Xd#NXtGmr`<9@bUNoi(rB(b$a!MV*7>I8U zU??sp^((qa+2P5}5A#K?-&Dvja5=kW#1rB#e~=l;tSE}HFwsbEukxTY{zWnDayre; zaqzjnAhWQ zrx`>@eODNNrgZc0U0AdE$-*>Lp3iZdLo`CSmZrhs$%GYto3#qM=XFamlW=48ob3w8 zQ?1|yiQQ$FXX37u?7Y=^l1?f8V`As{6@M4N26C3cX5BX9d*pn`AJ(VVkms>*o4s#* z9mco`AIqys6|+)?AlE`R(Ch+y2-kqLBAew0o)~GixIkSYWii~z35-Ev&QN+rQqx23 zso|ew+LKsa!)G;u*44`L#G+am{wP(?xe8$=jjVr38SP~exkbA#JS0Yw6@^ISY=4xf z|0C!dz7X6UY2YFV&KANTs8@EHvE_njbJo=6`{ylf(4zR1nTRdi?v7M$hM1R{b8{mk zDMqFiNw~XwOI4~;?youNLb98^7TCX1CQI4YUB-%Mj_4v0m>=Qf`#}N zne#bpVy_>RK;xz=!604Z*`8Vi6$jGh8>xT;Q%-JsJ;H1%vgn#KMX>IH5ZiCs2O~k4 z2v>O2N8AUfPG(rh0!726>%KYGC$TRV@RS#xMN7H&FGi>SRVb){4tZp7IB4PMBRIp}YQRjTseN1{ zs?O{{Q9NSH=S^_v{nmOHzjs2qd?4Vj*o%|=;GiASaqx0h2Pj|{cG}X~ly#Gy= z3nc+2!neOC8-tn6s?t}afek~7)9kDrTol~(M4Y4YYC9!>9b75(v;6xLyT4(l?tP!T zEOsUA(k$6C;RP)OmC3%J=c}IO>npq3psOeoa1OIIF{lcwBc-OfM4t;+@nO*Tauow_~LGqUtZ5ARj!&KV6F-0?_p zPi{M__hfg`_%irhNh)O?Z6f|4bPUC$h1BEl6RatmGbzHE^!2xhJUW_PSHsMLkzG&x zK9E@nefY!6XLdKBt`#uP$f@3F#dv>EX{i0K_?f2h&~>-*@d$pkZ{@0lDL+)BOj{wY z+pFd53KKhR0&eq8i)Ht8irtfE^pPG?JXtU4NnJuud;lWN6f2!BF~SQ+F!MPyxw=}0 zaqeIkXvguRHY=Bu>*alTDL1;bMrhn}EHt%YsbV19OSG^QYpVOzY$S!k-Sg!@QLkT% zTNL~5wULA)&US@qm6u4vZ9lc*C=jcg2dgBi0@Ll1&(;kbp`tl8kER`#oKT-wg3~QO zS9><|w%^Jo9RpA(3`wBXP-RMc-L_N;CW<<`D{1lvSz1y$l9UNL&%OMS6Hf?lW_o~n z%ATFXJl(ukzz}u3p2uM;b1HDsahxYV=Hspjs8eXLPhTMFI8$$IlP78JB|C^Z{%sEF zG{3;w+_IT=K0<%hc*;PKcNYKMc}izMu*4}0dV9;3&TMp$?V$W$VL=KeO-su9`i{h( zK=LsB7X_Yc8pk5roXB$;u?99_KdVlD-tkq>m~gxLJXsUr+)8&QcSl6WGwWmBE&PP> zODOBxy_6lWbc%m*JjRSu7dz9^!lrAQhPhP{6eUuJdA|mW?%u9<-9`kURv-G+r4zy* z50l%j!1y~NnOhTMpOx$uN5EWp#^ktS^nMG8>Y(YANVt3;UajT>TS7i}st}X;qDx;i zB}8`coiv8`4dN#h0xLCSv!qs|(faP+4`+^<6Xg=>hbP|0BMsz4#?{Aq zCky`;m*u6pmi&^enSG{0yoraf+dq}Xe+^c`(*0A>r+<=qN<0$0)1L^ITZ&?|m~Hwu z7?lfid$bG{vIb`nlbDY_2Ws7g|%v=a4N>`~c$4`7(?552CyLXcv z#r0_v6?}@6X-z|F)z?Z&>*+y8g(*bdNtDm~Ki(KiSWOk>M^FAnCtWB0DoQApxf;-& z{ub3WJl=CUllC{NFZuwxEbRH=FK;KTB6icV&%u7Zq^r~S$8OHMG;Y5}%)#Pd)Ml@r z(P`Y)c8wRJg9JpFdenYtW9l>(2(cDMEjCQ)&$nWK1|%Zluf(5Ti3&HlD8G0!zub?w zRV$jM!l>(xW~LDr)|GWL*CN!qrC*?*sD`U!qi@dPf*8DVb($)b8LYu_tKL90nQF3T zH4YN@z7KyG%%i({3j?{L*87LP{1&k{V<@bhku)bKxW!(db?+7ptl%E7T0Bcsl456; zjdXf)VhDJqNVY*a?zmA=);luBNa?01z3Qw0qHNXmVT%=$0fRxYoz9sMqq6^|z3ima+D&I2OiHiFh2 zA-GNORRa4VZf=RPP3$#<8-%3RPW|SL>VhkHDn%7sjm&f$kn5e&IEI;7CIg*IGCKOw zo(AnKUA1NfoR?{nrpMV9qID-MeJhv8eb!3Ss^R8=kub)dZDa634N$BiFx?2?d0QDM z3HAOC*B#+H_+uwZj>QF~fvtf&G`7yOri(a%%PlM=jw;8{IbzOyYmkWs>kA<}^fXf7 zPiHBIC7gYMBky=d#S9cLqTe^Qh-NHjNM4i|4^R8@n)M`2TPC2!_c5TK&+`;?k#myT zlifz*b!dn5b1Bl{Ec(aJ+crv}6<_7#U>+Y^?MO;s5eQ%m6CFaH;~Hn&S18;UrUTcF zFEZDosOGE~m>l}VTGi0?6_M2dgFo^)(V9xmnS<3jKPsP*c4LpL z;AQQ__<}q;BrVtyB|RQ)p z))>ncm1Z5N>pbR#q*eOYvcWK|miiClNgGrK{PnhiHzF^WtCB_g6nTpG^6gy0`0?@r zzc&w}R;a;#MfXt%^Qlg^)iRX2k&slrFuT~oRG#wZC#Cy}OopS8t5=(npVRz}j{((W0B6w3n(Ep@}5`bHnDuf5jg6e8eEqP zcca_?qe9Y3V;!Rp;^Axwz+IjyE1a{-NSPAEo1yXP1m;7S7|+meK-GBTTE3P#!0OYG|_F zbyLbq_}W!*e7J2 zn_)|ZjEJ>a;=-&>EODI(<%a2kdrT)=dpKng&4`K6E&d+p|9hn%a{CI}h z3>0t2IB&@9X6b8uCna8kmX*A21Xju19|Zr4L-p=A0t;w2CloO zTRN>{z1ZltYuqyaNG01wJfjm@2`1X=P3f^o&M4OU%ntt_^rJa3NxgoMo#kFyN&K6t z@uTpE+cYQwY{>)b0xJ1lyG5^u-)8=Xn(!jbqh|tJ{B^blGv$$zncHjFu4yQ*dCDk= zvO^xl0v8vd3m&+FEI*XEsBwqWNBEhRlt}3hkk;Os6r88|#2U&5+xncJy2|}3&i{Vx zmJzw|?d?IZ*)$n_v93Ug*w4vK^vrTA^3#$SRhqW;#MpIxIy4XV-+J^>%iFZBwjIBt zo-6N4Xda2YSUV})Lf@0t{fF?^|3!@Em7CM_2f1miZyFAXQq(S2l8Ql-#TZ}54&A0U zzb?=9E2G&DsyVlEp>6ae1d!t9#oa=5T@&shJDOTdo%}7^`*BMg?5$&aBsdo7tm5zL zz^`3}nNSbWlJa_t^wpIT+UiwS|UW1Sn&9)}fD==fR> z>>~?&8wbS`yZH|3wgA}_UM+FFm)GPw?-F9(S82DK+Y#vIExJA-EM5!Tu$Bu>Un872 z`!uZtND$VQO+3me9WCjHb4#37z!0eh!#%Z7(adq^>Phr`WYp${U?3V-_cQ1O-dA>!|QwPjb`Uqb+ zOTux-De)ddnB%Ui>&Lg>F$s3|DMII{JU>JCS7!*IOq}!w_7+(pH0*Mx zIzimEe=#|of@+7|m`rhLw6!)8RBTtPmj^N*Anc+iC>}XIYL3j^9-!4p$*8^sUF10_ z*?X?~OlTD;{+7kGdz%MfQQA8-AXyr<)j99`XJK*8G%eNWyP$(I(vQ?9g3a2BYM(u^ zw6(<)ODDa`XHa#`gDJmQoD+RSf&nN~)bJ~(LM zCeDh=i;LsFNiLPG8+fdZ`xGRq>~+Z^OH3R%I#?(v?}3Zmk?C5_a!LKREWA~njA{!l755bKwXN3@?!FLaC$D4pz>M^fJ?nx{@NN6_#ySJwZ2|sw zMg09JGS0MeD>zLaO_B5(lhqhZt2OS#+8fYs>`Q(x=@A?5ILQr*+xJq+TfcvHjx_^9 zFH$7BS(}p|NfZtfm+gk^-9SzvQSh&N41tV2jSX+*7(mmZ@8Z2?&{FITKwcpHLldI6 zo_MaU@-L%y<)jp-@ndfra4?1?evH)jklNwVNn%dk2+Fmy>#3C9-${f=;#R$lE@q zF6k8aBJ|Hcbju=VEHnjVm)Ei7D(7iJ#U#G`L&(1(wCO$uUfuxfF)-i=je)UK3|PDsZ%Lmq0zQUKje{7Z2zeXD&GN zJY5+6q1P~#5POqu2RzL5OBJ@b0Z*Zj$s_wFau5b@{&E517LP19p~0Kq{|Pkeg{)<3 z)^;TRm;%pY&u1rOgmyL%Prq_sK<7-_iBF)MDD>)#e68i5Z+fI_?8pASDNVKpTFDh5 zyx8haZQshWO6?RSD@2d42lBsDzB(a=G2rf;7|NRb=Ab4|J-3;ho{)SINZq3b zt3$eP(XTJ;Qep zQApRh7_BjtF2H^3S^$%Gk9rLK^^Yzid1VmM;4SG@r?6-a&>Byh+CZ)C-R7ZV(rpOK z^KJjvtayK(Q=DDLstz%jnyDVTly}F9WYaUFdc$1O!HtyTu`3qD_T=VeKJIpg*HKMq zFE<&PRsBDG`_CIG@MdqOP>bx*Gs!=eYU^zuH_wV)I;Km5@`(TJb3-DO7t_`?p*D&{*+hj2D)=BYkVqEedNG7bq0bG00e>e}0Tvvk^^weP(Qq zkF;g}%Khe;Y2nE=vdztz(lnJe`HZdO>`s9yOHj|Y_mNaWN?D%v9)GH6yjAevdT#Q< zm@JRy`NQK4^SWbIUF@+~9!^K6zJc8&rOdZ1=`IGT%yasj4QDJ76Z_~Wx1u1YnKN;F z1m<$k@|N=$utZxCdL}d!@u*Va_0UeuB>2)I>aqI<onxv z6$Ji(qEYWjK;Lj<;=L4o9#qso$&zQ;>ArJ>z{R6yG`nd1?+;mpUN}s%db+UlSCQZ| zy4qPZxYd@J>e9aaOZgk=cKGwdy(l$1l;$2LN^#9J>c+0Z*=Jzy`g!C0l*{$!TQuqK z7La|~oCdBf*5cRl1SVtX${+K1^3azhh=?a|0a$`Yh4@VbtIi-8S?|a?%d+OC20}~) zX)12nLndY11CoZ2Pa+)*?MPWmJmWI5%*@-CeL6A1%(<@dfIfRDPwr1K%XTCjI%PSO z%l7oLDeZo~;t!AQEkrpaNh43!ImqSw+;OF3j%!npOX-!`PRe^*7=ocIAqHm}O|gs# zVmo}Tq%VU10&YHoNx-~VLIWb_N=)g>xa8d%!) z`b4wX5@7Ti-$E9p9il?o5)*5Dd$B9P04VF>TLV7|7Whoyr{=32ky=z5T~ZQVO8d$P zaI-BJaqJpiOmR!(#n~y;X~N7eLl(=I0%SlX9vvZP8xHGkx;KF%Iezwl_;Ofxr?0jx} zQdFw}MqhhF`z>XkU+E#)nK-LFe;$(Cd6giY&IQ%>IR@XsaDYUAg3>Py8k|Y}_ME6j zvgB&4COqBOcxMWv@J}l;zDJ;vDU4nj_sJx-Uk)H&8U)*v_qiLv2zX#BQtBmmQ*rob z*Dblde9*=i802Fo6bTmz+?_ARj*{P_^QKFIyK>k@dN7-H(VQZ4DY1TW&{3T;$;TMy ztSiwvPUAnGU!kXCV-ls@O(CM>3H19|Nf$k2@^VdKf|hu0^YANfZ7AZe}N_@Ns;iaZTH^}*k zs4=h5)E;-+7cxas)19V7(q3DgH;YnivAGqoSBBpoBLgdr-GkdE(P=+rkwi$&cHq4f z#&UyFzcgjC<{rV-moVtpTVIult^&k9$P5^2)kvyRqWTCyd z3yjS}$Dfvi(LY^eiI-PJ_qM1hCa{|vr80U0^ArPsKPS_b1GCa#zW)bbUl|og6Kx9t zf;$9v3+`^g-Q9z`ySrO(XM(%C6Wm>cI|O$InR$G7t@rcZ^Rrh^*Xf$-s$J*o+6Tkr z+QE3?E@SQTu1wEbqj6xyl;0J{eT)0&>QvA(&FW8IU06VxDa*8{XELq}+^qktyhoN& z6$0NUzKb-~S#)y8d%4Gu^2&+x9L=)vOs(D4%TkxZky)V7r>Ubf??&x~svMJ5yobDT zX=ux0Ur$81_si4ZF@Ngqfduj z|4z9SYk70lUOye0xu~U25t1@zY4!?&nf>=a@g4Ifbkk4Fo)DB?l(YFd;K`V=Lk}q7 zH@9Ag4^cL!qexL@sRYL*0#rDO94qKnbA(ZL;3Nc!lZw1>yJvspBhpV!hK7bcEj5)x z)FG1P=K+ikW=9;$%oX3za7KYuDr=EV$=@ZLwU8ABx&jK-C1^E|-8%C|q@ao5)Z0R+ zDF>jfKLX^DZd=YmP-EJaJ&Z!w-OKCl_sKe{0|$0UwM)Bg;m$ujT1L{-GUR){C_3;- z0?UpwOqRT#3$$`E3^*ox4!-`%n^e%C=o73V1lbixFkJ}0)nS@lKOcah6`pH)yIIc0 zyNzq4JCjIo5lHAZA5s8>-i`i3zqL=_zz!fR9@)=S{&3}@;`;#jcVQ{n zHLtQVlmP!NqNn55iMpALQ9B5!tNIvL@mot#`bO5ijn)9e+q^XQpq_<((>sD@Yg~==R5>rsUO3< zV19(T5ntc*^EOaqoP2x@I?4Ef9vkKB8;=~|J9m0D)m`v7|BdGM?p1*};6+|i65*B{ zUT0@OX0Cij9|l5z{gq0qPMC~?DdDi0fpVSB4|o&C<{t=oGoa9kz@0}&*#C`qvAilA z!mEHfH=JEl_$qJmnAyJ=1%#?dk>E=Uv#U{)hiwsLStfpav2Bp=A4MvcD=KS(a$9ii ztv{O0p8)2A0Bb!}sX{pXmi1ecbJ+5qTD`_QES5}3O`DvwtU&sd??{C3ibR4@U_(Ue z&U`q1-t72@dQM_BJ1$O1OBZ{oq7i?7Rz>Nj!s}kU4wuqq=VCmaSiR?8e`|$KSd92? z*Quw!*zb5kl-XF3FZx+v?OvoL6G9bYR}p}?W+VZzNx>2_&vajc7uzW1A(USufY8_Q z2$q0gYNCmZn@~N8G>rZ=`YR)Ts2nAwrfjZXKAc-bZ_W8uaQ)wFre>AQpzfp9N+G&= zjI}0Vz&hs6q{Wm6Ug%67c>b55Zm`06nW~K1aUCr`^HtqjD3Vi&!af$nXaAAjL+J{d zD^!~w_!mszc30zLX=i2leRZy>rgxyoLDN0_01*e_7^1=i-&?{ce7L~(_`^NZpH=6+ zWk9^cl70XsJH-1s$6KVXf%*B;CdqKlnsm(j%UJ>^I}p3FqiyBS)fWO1)@nM#3YFM@ zpI^`_jvI#6VMms@NFSWh-cXHbL^a|kjycP9%g7jWxPNy?Cp05mP1h7%@ZU#KA`{VN zua;O8y*AsZ;(S8RUg7QXoA6Pv=Vx3ejfRh{S42qRiMF_%BqLm~;QnviPNF?+| z6a(El%O}q0P-26eFI$?v8Uauj;&&Wx`|L%6t>ocC80~En))!qY3$Ez<95f&LxgW^F zmXVL?lB#dE40&L+RD12KjBDDL=8BF~TY;Ff6?;~7hMD`+O#OQSiK5WeG#9)So_lnV4hOghs0**Il ze$w=-Dpw24yIPm% zC{mOe5&G|?L3f!|ZAR!xnLl(TslCb39mTfQwq9`{z%_y^Jtf6wws2K{XAfj9v(-63 z=-#qpGgAYN)|fP#W5D^)-m1(B*lebof=r8A~hHSluuo(~W>g{}3<=qon(?WlOXVnK?WnteQI z=78FGy%&E6@nz?3)@<~i<&-4Bz)v7#N72jp z<=Y>M+_ANOFsDHWqjHnON z#FcBb(AU3{g8yEUQ_iZZc}F`FcktAKxrvfMMn#pzkVbfyTdjp5c7bp@7mPxhRCU=Ny+=7S*iA zRVgf&v;b&17d&Ay8|=eJQ2z15|WtV!ccQ>%)DD@%IU309!X&8*MxM-gn%UznMo9l zE#u_EJQyu+j zw+g|QLN|c~L6Z-3cj7V&h@CfMxZ8bR{h?lJghV51Ex(R4=6<+#)e-#7BdWJ?B@I_3vMZe+EefYYb$&*A-W~8wfj$GBW><>k;NFB95pest%6} zMa}9}Y2YJCTNtljdv^{pDu<30H^Sw$*6ovkTvh^mzk z?a(JI`)^ZaMn^^pc9;$f#_etGxDdpDK(`(Og#Y4=z_JLdPorX(nf`skUH*|{?Au{v zvWKUgoMC!MqZY~(7>H(52z`>D2;(CZ_+kqI>H=1&tH0e|bM({Sn_T;73N8HXHn*iq zWsH}JRuupEGZ}RXMfCP-eoYC8 zb|I|{hMy_rFe^~_CYq&KB?_|lUR~I2Fh8g`dNk2~vqg7cGw(Q$x&Xu-Z(i-0c8elGfR~=AxTL>dna7` z$!pP*u164lI~3H@IZ{wC7~dCSzQN$_f+qq#Nd$7X#m**0{7S>|XWJFYk3 zc32ro`9SCp*WWSTvr?Kp8kv6r0%~J7ul3h2CPA5%asRfXT#iRFQ|AsV0D{5Go2gJv zB3K8LIu`u7mhE-?(co(8+P}D^4-QdZWHc~#42JygiAETlih;AquB?tvN~YUMt)F8G z<4x7>>kA2l)3du#F?)vR-_dW9(gKW~#UnRrYia%A(s;A7p=8g5zEay}_AxCB9$O z9*U!m&q6#kg1I3!l#|4hApbx3t4UBnN2p+EC4MMn#zUBPZ$u#3ogPD?!`6?Q@$YtD z+r%fpL%hX9ffS#bu#S6sn>`;vcY>vC1-@J4PlrZOySCmoYsiu4HA&m-A5v`ntHvB= z@E(_U8bwlsrgsmEai5Y(imyNjFV6J^ zz3D^^-_7OWDeSL^wq%{g4Trzn9HM48@A&1YB%p9G-&3@R%8zZ2^AMhYZ|S4{4023h z0pORINIyzr@(XA!EJDn5=aHN$vSy|aea*fbqtA=``Ao*2?3@aEb8Vfc0x5VCcRt>c zcXl@F9y}v&bimQZOo|*YDy;xVAea*Z3>7F6Aw_9MErmh+O~lI#7qxD4U$3a4y2a+U zDy!q&_dWWn*FsZIoE|XMo51f(U3!?3{h0IfT=m>oBS}kuy0T@M^T199sfwwE0+H-T z<1nQf!j6c_*B3{~_KVmPiy@3B-ngi8tNfkLDa0Pb7v9J8yIk@Uz$trIo_@QY1B)r2 z=5TWyJe9)k1BUOw>-%S55V!8A&HP&1wj*fjR#AI}R@=JN;ioLsB1U6aOY>2KRE*vchzg=Mz?CXJ z-|sWtelM|Ts0<=*U2~)!6FMsB zk0n?x+v8f^0MRurUN-sG4binO<778m7;0Bb)4RTJ>1V6L^a;sf&xmap{n;WIu^;nJnhv|1Cpuuj8PIfw5;_qxR8_zLSF?_{_e$t{ugbP z(0=!9;*$-@`sKlBaQ%XO4&N_obGf3Ls^Qf@i-sF{Z^$A)fe}CF8$7h#@ z)aHLnF8IUJG-q_j=y!#>z<_TF`293qd#zeo)pPh(ab8Xydu@Z-UL?@Nu3iI9H0l z3xRlt8@x=M3;bgfAiEDHWYa*B%P4h&7gQIQd2e#YBP)SrpE#s+O;|QLD1|@NzcHC< z`fHbE76wjka?9if5Od1WEr-3`3%>WAq<}LZz3eGCdwadaLjpAZt$vT~)K{DFe{}!K z1!?#863*!O~Aa+qID+=bBGV2O)}iZrGe@>o7i! zEdmIbb!YvOCoQoiz5b^(MTJ=sC4cz6o}kz74Jg>E1hc-a_~#XATC@s1 zRi}J5Zx=hkE7Z8P!%EyBIaT2X?<{UW_RN55n7*13;h;h2Dc{D(7^KXKPq=%`xu=9xYllIekgr#t-~KE6KZFG0m&=_!Gf zruS|g`!7930~yq=(6`E>W;ZAEC<*vKxVQhxaqhoxXa{b|P@hr4?pj<))jKe3ba&K& z1NuJufJ(zGyW^|DF?(a$oR@*<-CI>VGye}UnnXW{Ze@7SUZhP2AL9$XV=<>t>uQiS z0HdR4JwxwXiuRnMhKBi*PJsE0#3Kd%3b6;U^1oG4_9K|py3#o-Y2S5ks_~@gayH?-v1kx*anb|P(AS2Fe!)YY9PBDHnGZOk^9Mj@`O+qzrVo6;fWNF)4R zur-83^7vvXaeHs&%*>IgnV?5d`NlbXw-%J%sDqiot?8=}t6?z85(pAp7@8?)FKn=4 zXRM5D4}*6FK0|VHuYJ{aru4;S@(`n?A8WLvbXv1SIp5!K-TdH&@Ou*+;ep5D8#WgQ zjqPrUv<3M;R5B1i7f2;+RazqH-8e!xl^kq@h9EJDe4>?%J7`aO)Ca;Z&KIP8{peDz z6U;%?GflYL+NF?&JO}kr{xpdnw-rd3I%&!csXUsJ} zu%F&!$tvt$_`Z3t(vy3WPiKO*-X{+3^~@zPn}0_N^kUu~_X`j*aT_0ujH{1L!S>sZ zKMmf^POo*9@6^38z7mT7;;c3*Q6geqB}R;f0xnQKDMWJDHjSuoc=I^2j04k^9S@@P zG@Pp0yV%QK77Y;kxi8u7^egDgK3r9iV@*o?B>O_9Fwd?GB~NX+ZXo~fm-tZ%O-4?) z_dROGTBqV$cM;_n1KIgkxOH%5Htg&8GVs3rRV;$|&2^E%Xb8oU4U4Xv`&{gqOK*|l zCbtdQjex+Cses|Wfmu_`<%mz2N*x$lKgC49aZr(xm5>KCCnd=(o!L$RVllYiXiOpg z@G50?$zeWsAtXPOGLpMYpuS5jYcO9E>zjrON-tVd>mKgTCV%C{*`v_89fYE|7l<4<`Pb{cifv1Ld|DMV$ zF!#>*9U^AYsuo>T?y249menPaF~=*+^EYb+(>RL) z%ya0sm)E;_yHW&|kn7t>BxUv@)N+S7{{;HzwdL1ZWAPg*;(-eAo?%ysS-jbLy2==PwTMc%)>e8%hL43!w@b+h&qH&>oE z!vcGTtDF}^R2&|ujC1$-6uekkBp6M&d#yo+*k;Gf2V1nc9|?17KI{hs=kJ~HX@?j- z&n$9nVLy8;AZtEhVE*K2Q}2{6;Lk)+taah@`NKQtinNyA(BzB_aJ5Wv`>*L&@wl8b z!NLy@WjXO~ffkr&iVB8%fSCQ3ouY&O6jhobL(U2gCNE@0lu(mvDMcjaE7}@X+q*Nd zoH#TiUjO{2@aH_Pi~JcuTMoX2hoJT}(qs zKF=wsq?cDr9|+fvjv2rhq(g7S#?>Dg{OzmNdn#knFYL!ucly=)!ar_L$9;P-LZfjN zT~=Jyl+3d`=0R161|`|qcfjqe&=W-({KK5%WRk2@b%v@0Vo%%-g7Go~z zl8Izj$JqZAj0V>HsQh3!`VX#HEVE%pRtTKWbe=5LD9NA%7&)Pk1);K5HWELah2tZv zJv+7s)H;RlL_=}ST>%9vfAzac61P4PFI~({%yT?w_I(y?4q-T|JkUeYYu8=(r}!3% zb#-EIeAqx=)_P3#Eh%$ceCS@#Tf7g+Bz~4P?k&#J%%8otw{v8$ED^rbD3)=Rs3Pk% z+TIW(uy{SS1o^0};5S-=c+wGgMAXA=kox5&@r1kKrz>12p~ZY5v|p!ZYCpRUkAt29 zf1Ys04;hEQ(D!tVr`ydKcy)=50fFDQ^3vIAHFztg;{&_#P9Djc@%ds}zrBiY@=pbq zWy|NX%l&PprFbF}s^w?7;EKtAoJe_k{5pziwA-MA<1wv;)E^$ZQ2y3c|J?rLW8SsC zx@a_m=EVDzD%n;EDb_wj<}YTtl8%_&eL&p#I$`{2?2Ch+C$#2-&$p^|&85`|ikDXy zCgEODZ4F;M2(Z()oZ&7OB9@GXX?bbXoRpbE1S}_1<(Xz7<@ee zxxjLAr=cn_xspLkP8m(CS(KuAgp7NPTJx-=U%4Yod;2Ej(Etie)B!pY5MI{AcDa)i zCmNZYrle^aDIMM~Jlqu9YPF*P%b-|Qp(gtZeiDT))>2RUCCvOL+cyoH_^iP&hn6Vj zYRFpXpel1JSBDLZR$=VLLPOrArex^^*%McN6hRzDHPYZ@vD2C&FJd2wMD(HxJ=yqK zr4YDIuTUvu3)j&CdNWCPwS$_4^c;C6eDQ~zEI@u-mYhRA z^4z-1bxO2bOMTmQ6A@j03`S5df_iyk-Yij^4n2q|R;rVGjQ-NJ*4`eJ zT8MoHwM7m*kiVm+)xlfHMEQ0jcBOqX((U*@2+}A;ZH!XtH+H2g7qN&Po-LQ<7>^YQ zMe&w-h>e6M<0GG=uP)y#A@pyYNxbFvG}2|e2!~W zOlTQvySGH+;B2GEqMGgoqos@9y0^x|_}={^RD0c;#Op3LVP2B3p-O-uB{YfI_C9;+ z4SZYZt9efR^y{-!7r60U~tV7 zeaG)r=&lBT)(NjaNyw4WR;-viS(mKp8kDzpfUmoJ#Zp_tlkOBMlGx>j4bW#hJ7{Uf z;&z6ND>zX7uBI>sdl0=^)^dH+HCD@|d^_RyHTBRjJgN38GhrO~e_m#g=jHup=C{hc zD>Wm=*}=#VAesZcpJe9rf=b~W)pa7V^;?8u;EI*zn(C2BH3Ht3QnssrSSw{w=dbNQ zciNcsMn+u(aaVhIE2IBh2slzzjYRTT&BhjlZ|0Mc}`xKg^y!?`vZBYuBdxZ_? zD=-QD61AQOtbgJ}6@7uIbqgqg@MDkuyMC%pGL_kSBpu-W74R{8cG{f2UL*Uh1~;ZF zGIo$}|KEeD>b2&nMfcG~tzg(v_Jq#{)54?S1HAb;r4+Ho*^JZVc5{_M@R%!8d%l)s z>M~1Z4%{*V|C%R%8eeG5=Lsg!cU<>C;aIEp(KX}>Kwt@iuyz|?!?N6;4AV!vFDL*X5DKO?~jhB95zUd z^f_oBCd~Yf{VyF&XFrYQeWnz+fIDS_&3GJjFJgi3t2qcD;B|nIO7zFVl)?!}#psLU z5u4ePlMOEXlOMB^duOA`%8zC?F%U{n(WVjF%Bb#jiyxh1w0&as;Yg&D-?dC*7jL79 z6X@G@^S^1Jyj! zL^u`{KT$~i?e=a!bCX-3a4R!-iEDV+Wv$Gd!Q~`54sy6c9xNK}YTiyyXl;!-jegrs z@{bx|xS*o`z`X|HBF!F?8+ig<4RxB=ZL%i=REj$N=Ro)%#DIySyp?L-&)O!eV&xiq ziJlp#XbW2w8z{##bd6M&)Dl@D?K4(%)J`-v4(o z{``87$zIKgjifG<0Gbl+@&jty;3_UMur9_M*Il|fXc0~NRb8d7rlH}zrUrUkAC9$U z+uZ`h@-XoIdflT+_yKbkhuRgGg((?hUFRau#QZYy>37tbiIs{2ot`xSjPH2S==y># zVf=39i`gotQrn{kVB_oRgUX3sE>KCA2qgB!53Jzv~q=+~>-LLkajzCCMG3YU^FM zb(ttN)#ZYuc6J7WZY?X`M#Vcdo27(#vrkapwZXF<`}8OI5N+(syVGespXI>vCi1%G zD^+FWoA`72S8CwWY&)8ubrC++mk6tX~pixr)M z4IR||X}k%j4B4|0k*{u7>k+agg!S_{nC~DeoJ8WIJ6L{65N8}6aAD+H%EfBpho->t z;C2T*IPR))?bkSo^{IPlT#lG_xM7@?7BZ}y;QjzqM{6KdhC4n>X`rng@}UGvlXP(5 zOHA0gEiCJ!_Lowss{7SzsPD#4wEXI?c9nIx;v>uDWUHA)>r2PdKBsEw~tzxWKJV0P5gi?TO z7PcX)8_`Cp+Zohw^k$D!40nXNwQdP+C&DOSzEos_i}qwzG-GZQs!!1K@{fO<4skt6 zO#AIWneuohfUtjx$2eFT7)4Vw6==1_L_bRPv!!=?nlAXAGseX0X*GkXYrhiS%cwp| ziC*Mvc#-gorqr9cP1!qpGE0rESFO1b%h-F*74Sqzopkd$?IFuxAiF74moK+sBFpNA ze9x_lOh7+c$}TlmJ)p(#awS2&Ux-~qA*Ezqk+W8y5^C4ZV>yv7`lBKCZ zC{*@0sTj>`6vwgeEo?+)u4zi@BmL5u-l2qHDD^dP=kuZ*OCz&ls11zwi-`DJL<Y%UH6v?*ZCIqA-nOVX#7n?n5nu@nr!VAF5rX>9-a`%pHTl^M2m^ z$e6jgg(CU9^yXSEe6i(CG@1yfy&It!;TZ9-Z@>xlQh$0+1UjhcC?CI&4^U~dwE+}; zxHa1S-nK+-FKe+($^`B>Og_f&mMaZUz$4WwXBTT_Fw`yY7{ve>mw+UbwOCF8=|Fhb z|CDW|B}er>WsrC#yo5j6=~{vS_&9iRSZ0w--y3)c={$Z0t}wL{4OR4aa{WPOWK_i! zSE&P$EY=ZV$1HU%{{2vQsfLX6fytFYk}6PK`~_gK`e(yWI<>H(OsXN9@l>~M>cn=D zb#|?5D<=|zU$@0xg6f|8!q6A}WIL3$iZ60nhWN~f;Q7}yV&Wa&!OIuCngi4q&iX^j8n2mWm|i7*7)^{1v9iU;$}9+FX7YpaCMKOr@N2o31(s z(y^JU%m}CE7LW8Q?DBi>bIk0Gjj@@jR37zog+8S_F%72IaLz}-EW8rrL7~Q}>c%hr z)gouxEkfTST&BxyQSA4l z{T-KqlTZ0@I)Pspz$fBS6aW<|52PE?ca0v%Xw47Bra8SI0 z)m)doio^Q4quT;Q2DUTLZP9TqW>p+Xh zo-CKwA?%QYl1yv{k){;|=SEHyi3OP`fB#UT?F=9qZE29Jh7HeW-NdxC1)+(Y462*= zsQ?dycj-SaSIv%kkZQ=%2;O4_{-a*Fl%kad@%G_-Zq|lG1RANXQDFG)?rV%(QV})& zrVp(XlHqQi!Diq_1&0?3@zLVBr{XIOCe7XH0AzxJk62+k-f|A-;LW9icqNc>n!{-M zkuh2mt=W;9?jp#e_h`8#FM^^eH{O{V=Jc~VEg=6`%@S1FarMvSzk>{Dl^C6<-NBa9o zX-~KOVjbbdAGmL?Y`&<5hvw~Y3YdD??$uIbJ$ir((__$>hF(1Qp7W&?+dSdCf-uJH z%gm)2xCC{mEU33ba9Xf)&xT&g=q%7*7a;7fSK6!<>F52x#FXMMMNKAf!zGoFdjK3Y zn_DPxg5lQXtSy-GWyZX}y@lyk(m${-hDP3cI2V(&pZe~2^y(Cp2(KhkWb^Uw6jq45B6p#0>ftT-FvmyiDkC^GpgF@-DLLs3SFKlupHEY!XRq)< zNqC(d*oh7L1?8)FL&}2(&$rgKRA^g;uWjM&1b6p9wehqqu3pLXp{qXl1AioZ(3cm? zf{_$KTw=>rP`*Mx5SIoLipE>rnT4b7?ug$>BM6I{qSdP*9?6hozcN!>xx6T$+su~V zT^1v}@fY!G6mNK1a@ffFs<;Apf`lh=Xc(PLTs_9do$nAz=fiksCOUorT8fvA&2cvV z_G!{wqBW9s_GP?S!3X`tpY0!~aBiF+JZ8eAF@FnCe3H}o{zjqYujq7q<(pjcQ>7S* z@w2{!SpbE&%|#B+J`60X!APxf7YFFlGS}q^XW`nBqq(Jl*(j7rp~{rjbC*qE;wjWLPz8B|p>bhCB6Rx*d>ORxNnpo(xN}pJZcWtk(U7=r8y0pd`9Kb=i-z-$g&w z8igrCgJB-|IHj(il4e0>OcxFE$wP}(qr5&`L1UDhZ!K|8qO(zr?m2UXK6o%%87YF% zs9iGyeb4)UjSMN2KH?uP9%Pt8+&~>XJ-yby<^gJnb-G{)n&8M@eqJxyOv-S7r!w<# zWj`qOx1PghP^*vc``!e~Oho5gsk@E@llO4I;4@k;_ckU?dV%BRk0uZM^3&hlH5uN* z72OIsoqdVYzY0qnL*zbLa!&No`RQMimA#W56|gS3qlK8xfHL81(Wc%$N6>FGLKGs! z!3q_!OLWQoS#4Y$J4U4q8PB1rb1Y3|?yIGg2Agj>fTa$)9iSu0py~X|%D~zUyJLE* zOqRT4W4Be+zgt09)(zsb^K+FdpERYud1=|Cu}0s6$2S&PY)}N8lgyXZ?r#l;5io%Y zmvTu+ybej=z-!fXeXip=ybo+}hWJa9*NEMdU-?+=Wj>ao>4C}4E30|Gz7>1+*~g() ztE!F={QN9az4wL#ld!_b<^%#!jhTs6v%2(bp6k?OUS!@&c zd(#SLY7PMe{tRlj(>bKJWZ?X`vhMRoNjMVl68~{T{-@P>%xPc@k~G=N6<({u&iDte z++EHYIthq4$(>5T$D^RNsb=4d%l8W*IpAW@^_1GqH_qH;_Ccd)Q6h+*YkZcs(Vt(+ zu}5rFfW(Kk0a}VmrRyGoudB<%`nQ`^@w}1_rzy&YC|!f)AQ}RlI#+n4UL?Dh9u^cx zM}b)@7Qprq?NM49thUnNRhm7}G3PSy7GkoQO; ziVEM#+O_~FVP3jON}58BF84!@e^T~>EgHH(JSIKi)n4K$Crm7W)s+ItK*qClruUIJ~_>5m=A=}lk)%@@nXDMd>QD*CmEFc98{EBH#8 z;$$P_$zd2Duj#XAREUjYV)W~p7P-^>%<)ghKE+0FrH4(5*%X?EjYwYa63V^B=#oey z#jnPWcxKJ-dSgV?gd&$m%a1G7*zin%;`2+A{O4pRFSIhMl(YGQqt#LL9wT?CWC2q`xokI!=~+WhRAD zNj7hdQOtYm`gv%fKgZ(REuAkpP5<)xXD4+Sjz?qGgRO4-u9)5F5Ows#3)}P}aR*v(K8$jFMLllLp9uVrI2ZeO;@Ws!@g%Q? zXzw0Wv2ts7xs_p(a{H{>u&+#4M*Dom+2OB2v*Sj)&(NnFnD)vf5-sLXTIAQ0Bpd^* z%Dnna6Quc%L#Hr=Cnh>zni=FHv{nYu>mXTLApZRv-NE_Pmy1nbrFEttSGxpxgZ~#LR=>IHKQS zgybH*wLg^bFM=Q!U=COak|`w_3rC?^9EYBrf-|-NNyUUv1FaI*x=DlJ(83_lmSc zw78T6CQ(Y5G=s#>5H!0hdmOUc@`Mpx3=O#ex**W;L3mPSUDe0C$T2FdME@E|$i6?h zP&k>CeRxw~I#@j0L6%BJJaV|u+AgLd$&k+pprHQQ;2*Mf zqmq9JV2?jP9d;_Z(=D!{ zr3uh{o$W7? z${(4KknqGpsKAM#ecH=7x^%SHbaW^`510}k8R2yFPcSamR%M$yR^L+?-)6yVdvkO2TitnBL42C2 zw{GjD_;AQh8@Mn`oZ}I>_bOs0F`{4&02cVtnEJU|ApTOUMoq_O!IG=qpW(p1cMIaFpTZo4A|FRoqa#FNiF!_t<;(w18CjRmT5_B*w zewy?-`u=z8U;XcAMzOg!`JXrSD@6zW2m+^?V1K3hKN`Ccj`{DlLUhyNKw(y;BEvUR9?dVcjx}|2sPxtrbt83I>|mgx-ljF zbXPcnFw79{|FlDx&-c&A`HryjKLgDAzt#YfsU5gcNYT>J*?d;k)`$Dg14;ox&}LCb ze7{RVTaTaTA+yBAW7IJPiE89;WT?m~KS4lC%ZpGA*bn2)Sc)=*>|5+-R7&KW|7-!3 z{|V4zs)`N|4<9u@(%+Ak7k3^mFDe@YZEs)@;59#4TwEMAx3Dax{S@Faj6ITZ0w*m& zNli(bY*S!q6_(%Xca%=17(+uQ5tGnM_R5zX6~>!>GKWZl^`FCNV~GF#?aazpz5nyt zi=;PTsURt5@F7w0QI+bS8MtI&r{QPFJ?mdfOAEsdZaT6&hhkdn*QDR1x_2*Xlym>J z8`otFd!`6GeY~qx(=Y!nFLBuB1VQ=ByxwZMi<)A8aBGB34h?Y8jiPy5E@C`WHaQDJxo)>wH&cxJq^9aWQHM@}z=_lJF5!E~Atp zqy456y4FX0wTdv#Y&JZM1}tRzn!s?ZwBjfcsW;4VT5PJji*Z4>%L$dWzuz5E^wnR} ztxiOB_(QKP`9FK>e!%sjYW2^y^bEHQdUVMr6b)Q}a(1Cid^a-DS;`W%&|$PQnwN0K zO7u&pe;$G2sLnfEYM?N`DMPK!Z-k)!XVB1t|(8~Sf&7V7W5c5tE9 zJM){<=_Vsa%ca%2?{^J^Q#1lEl)4^EuWv<4(_98t>fe*&eH~RwD`4GY$B8LxSKjmh5dZs@I}T~%BtO69T>|tMFhxHJ z>!Ls1{?0LbO94gL8%y_xiMTudey&o7H_mW34a-Q>vEb|Ol^wtm+J1AZ#x2h&UWGq> zevA&Wf589dL0f5gz3R67x7%Gnt5hyp7+{r*W0JEhU|7^U;(9h>5tTJRkp^$goGFQk zF_X_5cV@*~Y%j+23-3RF!Yn!dzv*qq(~mv!_p!%y#{Tu}(*?+%o6=_ni_ytKdAu!j zIWf)+LSD!#PqezAFGzTruxAG;@*Cbc!TCi_Y>NZn1><*eyR)t8ucdtC`9^|&2E)iX zDzu10>(=|C$vcibvu$UEN@@Br4V~X#Ty2oEW-^(M#$YZVp`rv~z(qNk$B40|v`6S* zkkA`*U!h1-DHh9&STZ}RWDem+?%>9Z$;o#5zmgi6gu9dCRny#!w!(Ie?Ni&UE?|BU z__I`dkuWC_GIm|b5Ok9<5NT?QX0D?W%3Bnhy2p4lZXLQq$-)k5W7G3mE)ef(u&#$| z-fS5KANz~Rb(8&(xBe?~S*{JTob)!v@c-umM77U$OKdn_as{WGGxRlwGXygG98Avb z@zc(?(YVL{Rc$nrVR%?9%6NH&rhn=wHLmMzAA@(|{FrP)@jr-E71}ntY(?a8#~1z3 zN83e5MQwV@=cVXem8_5f&nivXmp*5r6s@of3j+R*gw8OV>S+^6wldEq{=~*0_Gx%9 z3-}sWBere5|J*MaqQ-8)u2#lsNz)ma__gu9lz}RtYBV8vS39;78}Wv7(!hZ)m(VMi zir?hyR?oFJZC}aHGi@DwF;E?#R>^xkZd_JF3 zE7|*eh>TfNXSQfndnET3Hv75aeJpV{1vmHRd1dr}WrYTK^KJ0Fx7YuIGtQfFqt&yI zci=a5_!G{a4Ro5FNU7p`ah89rR{qL@0E5?e1CDsi*u)FXIGP`^&fH8w-nIE2zr<53 z{kAE%#wDt0?MlqtG2`>FMq%m8LQ`3t>5~Yuq#O#qmIxZ%*-*@Yzs~fx`(ob2$N4K- zMi!%}sID%qU2CzgZmF_6P=T6^mKMg|KUAOSwf8=6Iw-~CB69;Vw);d~r-j{jOOfr&lGsDt*jcbqB zxIN@9&p$`O{Sb+Yhr-tTyEoj;53W{%$&Eew1){klUda5&yD@tIw}Q_}48Qm$4}kIC zBt|<-ha~&oBxZ~L;t78fhrWtIMdrB+g-L@{5avD7u7FoK#6q0AK6^EI;&o#PC8fp9 z=XoZ6sS3oVjLY?VyBW(+(0g{GB8?_@h(A*nN?Ml#uvnDQebLVrU7DP<)9wm)oyDwY zG)fe)XI$q9AaSUGmhE?VW%O1&=NfL`b^rBd9=Us<1FK@kvZ{Dx{@h^O9k*Jlx>f3C zzY((FK^x;;Tus#1`%N4&Z5T12_Vt?Apj zH6`<@|DFQh2fl3H>&?x3kr)&&N9V2{G^$(_L-~Ek$Y-orvkx2hmYCky#Fle!kywrB8`KT#E7Sy*tQn$EAL1$vZi{Ap7d^31#|r@4n1TdKKh?$$Bw;R^pC*M zz8GzO8LSwGks@DCBnST)&$HsKuzu>xzDrt+-L{bW>B7;Z1l>Q*iVGohcQs|-_5<7u zGseApf4bJNXP0m&q%?D945E~|J`t~Pb722Ye9i}geGwYB@t|G3a#-qTP0Gp= zAF`r>N1O?ii{~@Z${N#|IpU#HY<1Brp53fxZ0?$QcJ@) zF=sNT3J&7$9u=~WE|N)zytR}5Gtbdu{tDU^)%j!^lOo^Xdtd|mPCX$EJt{ZqL%$Ag z*qa$BqJu*(tzyv?LmE0sIdagK$B`PiHSI>9j*Tc}CZB&GPMzQ0=Xvk}%GRkv*Y+K$ zP}nNx`JZD7lk^0*QTPew&e+A(pg0N^wk3c57L5F}4fYv~{kuymnQ`6(&t@j) z+G1X(A1iuRk>8aj^w~A`?B2zhd%&7O15k>xK#_kIIt?&^rHA`O9*#LyR<+P9Sh=bsXzXGN{1 z9q?#ToBYO~b?37ZDI>t&*Yu=zvKO1Z?($Y6KP`F>rjL7BQqOEL1P6$B>#WlZ6CJoILz($iI_WfW2e$}{TEPrz>aFMr3FzsF+!SbhJD zwGs%pe3V`LeYo{9jzTV#>Ds3+HH%rPCCM&s=*tDoW;n#$WZ$U(+Rr;kj}o8t=j^?Y z=octW^A6o;RiiY>D{L$R}Zem+xszz_C+aKvly_!?ZLJti-M}T`Zm9lkv8u>dr z)2n+g+zOjFiC81<*I$rE;aUndw-T6Q0SN279>>!skgbPTsFdo#qt4HJbgBqs2N zH|x&EFkr9;4kqdEvZ$Ab2`RCm+&i;_9S5)RGFpp*73^U0zVW1E)((e z>{jOZB{O+^UmQ&{T<(=76L4-9n~%T8rB!1p+Zyro@_xMTn=oG4R4+{Y^P5~a<;$UKdQ3jJl15fC;+`F2;*^6}Hf}|Gw~~lH+`;$KX>MGKp<^lm z{&*8Lhn}E%t6J2p>WZy(F)9@`;LNUN9DQLx^VUr%Y!u7&D2D z^3WR^dUU0<1>C>r%~PF94DQ?zV`&rz*UaFmxGFtcRz@%B9Vd=nrhvN#ZL1bR8uOH0 zOV;ti*p*hzTrr7%#Zm9mB$aBx$j-Ge)=cJx_i8p>6Vt(?B@X)WTt9h?$byaerFB&d zb4co)F+wKl;THawEbDlZVwKGH300%A2V?L2+CUW$JLWOtc5znC_rN0J zF&kHGAmJ$oH}4~=$pq%KDyfpsRtonUOK)fMbOgAqej;agFXu?0Ijx&F zpnzc%7x(Svj#)ka?B5Ctog@VTzR2qtj+Ls@xK&N^r@Y5+|6Z;ev|zz+t+CNgzpN>6yP{t}hb`I8Lq-7Nm zt6N{tq-uTK>Xt?H;ymkC-N)X&7|yN@sbmw!)jeC;9a@VuOZ!kr2NK_&X4cfr=+x;< ztLjA{_#S(9pG3!P0HeFr#7qay%xl83m#(yI)PNe!1qgX?ijBu!(PGfAw5?K*B4J>x>z^o`T&5(7b{z3C~Wk{b&q5rcA)qCjB9qJhJkA=q=Xt zUyaS^$+W6akV5&bkj8&x!`xv!lvburBX=s<>+s;*A-3GoVbZiwxaKz^IU<1VD>m@R zs4QI?*T6XO6{q$c1!=}}jsWy8xLn@ep zJb(YL#mqXbLE9e9aLx};uN-CHWlj1|8$(Td0}}kVF?!BDTsyR)PAMB={e4)q^B&Eo zFQa2AqjUs#J+n}PULI%W#KY8{GMhTZt+2N?BPHrS^QQhyv}sM;Th^kag^26N_Hr!P zk!gSQr5A2MCNoIEb%)G`d z4sfP%-MUnBw!y4$H7q}#WyP9P7*&+(PhpZ@-@?oL4u!i8V{i>eMA6ULzIZ8@M5XcQ zR2N&xM=o5yh5x0~ymX(dyt4oH6s-pzW5kw)G_n%&;oKSqZhl3t{=KMTE#=X<;~Yq? zz|x_Ok;R5`|L9VtT(V;J*tXc4SYcyhLX3RtxG=?Cgb&0m&ivS+!t2uk%%+Tay|X#69EUB_I3_Kcf7k zZJ7yhSqc#$q1@W($@~wkm^-*01#E1vFwx=R-bt*!V^7Q0^(bK><=*ivoDXth#P7dQ z%v6h@({t#v>?u{7)TVLOa+sMGriAfZR?XkQ8{0JP-@C?x-Pf@FeKS+sZItWZUpt|C zbJ{D`zx(XndH}6vlbP7Q1mds|UYwfCxSe+VxwsR>t@2@GX2j!tV_A5)5Z!w;#?d&D zYX|r6&Y?YnJ66La$IE?U9^^Ql9PG6;o{M`Iv;CTcrd?X%Y$@UXjWe7)bcqM9Be<+C z1xgn7$TaR6vvabS8B#!`kN9>Z-2VxCw`?G$bZa`*DTS@0BZi6ZIJ9m#CnFu`+MzD? zgmLl6LC%Y6GyC^;*y?1buT3-529c2zn|}T}8JS^|&kEfqnf=+yMfI~??@fqGxBis2 zGRG>PISJu+*)n)8LEZjfcujjOZEP@0Jew|MlVW|Dz6q+drFG4cXoo#u=Z+KPZ!wX< zE#>}NhE*^R)@QBw^eL|b4o+az?Q;D3TXzZ>Xdp=lW6$y#yeZP1k?pE}I;>3XN&JV* z{)nAnBKHojVXjX!t-7|u)mFxfYd&l_5<=&{r_#3g=M*4{?_@bY4G2Cxmw{^n75+to zs?O*~K49-=U$krWWOUc+7?PB|e_@mPR+WMPU%3Oz0u^zs*MJfRQCv9e#rF3u>{!wt zJ8hN!n&td0gMl=Rb4#YOJ**s^+t$L-D2A)MHnJzFG3)>CL_Y1$1h{v%!i0vVk$>$1 z*x2O5SYMkn^O~|UuqrJZ)uvjR0)+aXW#iER>i71fYmFj=URlat`=ku}V;D}B+Q?F3 zIJsdqSF{@Nt9-wqo8BK*D-YvD9vocF@=IcxwrfIJ8yQdh_OaxyJ?oYY#Zgz~fBFQ` z%&8VGHOo@8m?I8`VXU7#nFsls@~T(b{-pF6<}cRW>`yuIep|1DOCnAykW6i9rWdTvo8ElK;Rn?5D4&Z08e;TKtMp? z=R@G%CBWBFar#oalv9S6#RT1E&)OY)EYY6vz3QtWU?s$ayd_FzMuGemim0ZP_cxgK z_g-8*C(@y?4u0Df;TvCx2?LraBMfDUJlem2(aYX4Ztp4@Sw?ed{5qly z1?AD#G7&E?>}1h}B*u;GLm?A25h9{cjxU|fLE}y=A6O09$2-iOy@kTPC*k2@g*fst zt7oo8yZuB4)v!et^Nf{$FDJH!Y$9nAQ

Q>te0Y!4I6t-)a-Em({^ovWc)w-b*dY`%ktqo5xxPC5IcFGUt>harDe*5) zGI7){YA@PA=VB?jCcsU#lo93WQlQ8Zd9ZsP(;k&!&5Vv%l1#wCMT|b5pUw07V3SQE zXPGFTOM4cvH?R<%Bf3&J4Zaaq=P+PS3cs%zPbF18^~8_&ShjE@4(-R#v8n?hr)M*C zuY@U+$52sTd`^InCHD?#I-z?Xi;=EKLk$_oBJH zDbaG=P-jYkB8pSkW1o0eepA?E`Q%CA-RX@CS|7*!4Pz-SQ$|!@aqPpK z0aY+ah3N4H8jZWn4anV!VD{mO_omC)DJK=ko0 z(`IbLX~^$*lr`bSneA-3D53Yro{B>dxjx4|J;fyr+Ji`Yaq|TfvbSb5Z(v(EtJ$n?l97pq8_ljsm1oAXgmy#vz zmG(jw&aU73c{6JI7j$|y6OI}&d9wUA zmlhIHEFruwdnb3!i)CivjlZ5NZ&H zhttfO?MM9)6KGi6R6&4`JfO*x$s;Hyue%~k;fe27)}9wLbZj4rnX75Pfu6!&+AD3u zpF`??@|PlStYFyO5GJgdfr~k)OM&9Iuq{XQMlp3zeayAw;`~5Rj2?EjR^(hOGdJVO z*Vl?J-Cz&0iNC-<v+M?6vfElI5tc8CMjw^Y`&4GWxSJNpkkr3d9bNELUpmLSsnTkN>#rkZR5|XawL)@D)%vt6~{Xye!FJ`9j-xtk3 zMCF0wX;Q{2b5Ue9DL0aWZ!zzm-4yESN$<+4yI0~!&Mq3siufL^o!W$qmt*AeP@e)N zgTBg=xO-p~JDwC|;^=l5CO^-?USv)#q#(fO@1ypwf779~wbK4QJxHffXBo475%n#U z{%f}L*Cc`9SIXS%qDjQFN|WICF|WbtzD!DMSXnCS0!|#jTb0UiR)3 z{ReHN+43E9EUY5HujXUp?4cA=?Jq*lO`-o9WBy#?Nkx^z6Zhr<(?+kSSl0zCY3 z4*M@l!_4y`DUj_mX5(Le1T(vok@tr9@b`pEOevVpR3N~AKFZ`jJ0gJq|Idm}=(vD@ zfWY@a;NK*`hqRhQfVm|`s@;$jDaGrwXIP*1l(14>3C#4!BP>2V;nvmr1O!~?-it7v zJ=fuv)R0W@Hn&Q zZ{;QSxHoQudxPqf%4eZSk02Arab?c}7VY%MqDocTG-!gGYw1tL1Rw7lhUczmN|dzz zR3J%~5W}Z^-fk}gLba8Y1i~V7J`3X9{HDylZbu0RvroD#j)~xz%!x&_Mp8yi(IR=# zslR9Jq{P5+bSPl~(nv0BT+C`&Ble7GjE*dUTf62kEvP#C#xy4Su@BRC-e$mvk(5hK z8Il;r%lp@g1^)H`03ZNKL_t)!@Z>2kZwK(?^;=#S?97Sfy%Z7RSrOohBAB8$f&y-H z(chndYma#G?gP*CE3;;yyojYTg4^p&X?`Es28+}%F6k@QcKDT$QLFi*p3%1v;Bsmy z@FW9A9;Dmql{7Ma&8EK>5ms+3V;dGyZxd94j(&NJnX}JOd)OFSl(S1WC!TKW!I-Dr z*)hEtskERhIhsRj=JCX?HKW>BA@b~eCiz-3WpZzns;MNTcic5&%;=8j#GGeZpQVHp zD~P3GDifc=$EWYG?)*1PyO+s!{^vA5Q`<{h1T!}|Cl!R<30t<$>#Zt4r<`vG+D=my zt;$GHzGX|N(L5cHHis)DN55m`lGzk!F@X-Q1v$5{4L&xLncAbWvWRF(3`f>4=C*kw ze(mfA(b*H=(!>b0_E;8vnTdUtQgP8vx)x9p;2#=H=2!PLMJ1C1Svzhh2R=Gbt!{0a zH+82%;r!VUXIT*7OQ&PnZ~|SbsqB?P|L39K=5Hp{HsOZX5*F_D$I{XAbIK5LG>>k- zr~7Ij`jpNfHI==1Uw;zg8m8vIRT2b?wFa{1cXwp>x6@_(0qmR$VwA=%#|OT}*kuS) z{%EMkEiDRr%JrK!xOMjlfiK^3KQM|aeN;una!Y_O+(yN26KLh6w6)1^uQF}M4xBvy zq=!?6a)gou#duGIyD(}%v(GvAW#JtCZ3sIm&0u?{Qh7#z#|K?!-lUn_5tpET)4DXS zUzd{kOv$SJ#F>R{@yR!tsog6n^i8Qhh^*?Px> zv7-^b(Tph~ADi{;9i*-VP7kKb4|MKD$KJH0*1rM>)O0z8E$$G7m$ zs8O>)zvS{06oYd5w%rXbK8vo+&Gn&ku+6&|OOF8%#&Y5P8!avx4 zlm25y*aN zc?bWe0X*`5$MaXA{IbrEU&^Qm@ZegU8r|^Inh~(IJ7b^sVCS@En5a+`#fPxvpT7`Q zS4M!p$Z7v&XPTJ+mnHH1qA?2^4-NAdqJW2n2YZ zK`DGlKtMp?XF%ZJB)~^`ti@&OV!Ajh2~Q0@BMh_2aPWyh-W!0uTXo!u7NK+z19orr zq4dCU^ehH@7S1E0d{6qfboxYqOI{qI-H20+*t(cTMyedH=?Dz@hVCZ+w3>@!Is#mI z#aj{K2FMBUKc}C=u~7~3r)4$(N4JjDE}|?)l^pquizkn9>he7v1t#Itq8GpQZlsKW zlqM16e;ps+qg=ijNQg!Ox(y#myQ+>n-!XzozNR#8R3aU50{N-kx&e+x@~AB-F&`ds z$@e5juiWQVm=?9V4rXMVY8YiqS&~6P)e+ze*2@X-2`IUe>#755% zd}yVre&$V2&kGFQG99xsYw&(k6wje8G1u21_SI$P%vr_5 zL~H6cs6>h4Ww8l5#N?|**d;IOmJI=JqZPr<`G2s-Ux(`TTq$0nEXA}wu)*&+!$yB5 zzz+vI^Xrh7n8`zn<&W$&>)Vgz>ENZzZesDx1UP);&}dH%R{Dc^ZXx`$<|-Y>j-*=t ztjoR0lHaoBkI_6W>&f`uwJ^&NDXwk!yt9RFx<>0q&QNsgrx+pk#d0 z5#ZX<=a@Bo8%FLmaLkaW$IPh(tz2w!p8we{8s88Bo~~$LP6W8Jh}p|Q%b4EiGwGZX z^MSQX|Hit>1UgkN#JLQFj)DN+u!P%Y4RcL^EA4TQboQ928%*joi;{Eq(aTY3kAvJN zGqyn*0$gs5l4E&%M!VH4{-|rJARsqg zh@+xg@l0txoErAQRVmWXkJ=)bDgvB-ilT%XiXxKdsne@E_UX7DZS0Fwqqt-2zXj2#!x4%=*&P+1tHzo)O^kXt>14x7j*UD&5i$;A!n!HU#*x z&VLXgZ@*?T^7ZeWPAO`YN~MmJO!oRLOQxQu;p7Rp6-s3(L@v+S;+4r1^bxLEHAq7N%DqW~wToojcjlO1FQnDt%)BCgH_~7i< z`>!Uz)#H`j(w7(Ob4CJOQ7*d$ZJ&aR8n+~OMKCke{D{ApEB_)bj%p9c6$JQV+RZz{FGb$w zIDd<2KV{8?X&n4$gj?NeRCFqhvt0_~ns8fTQrHfI@5%x@6PLa9Zp9yeP z3cggVvLwJ~{e{R)MSyS5dHJpU-geb{71Hz}D%h3m6*8ijuf z2;>R@fdJ1HOu~-@1Ox>BR}lC&32;x3j72cBM?FOzfxK{%B85nwdLVUL~|RvU(ObjhZs9S6z%1gm4Pak1yr_*t-khD6+MU^aQ}w^ zf6k|>?Q3>To6JtDhRo<5^$5Few$|0Tv>kjRMh)=yHBR3L-~rE$Fnh)^{UgOCGe#{E zsS4qZPax)Y$+1>Ip!aLS6t*O@v&2xV=Eddhj9zquj$`{%#K8dXH-4Bqq{Q0HNWT!; z(G`=}7g&s;-Rlr|YC6*nrl9YLmSnVy3<#8=0r&((V4p0RzGRB;+t*;>fW5Uj2AT-| zIkuW{2mEmx(v8e^v1p_$qyP_BsN`lqqA^n^k(UvPVB|R-4TDhFLz881cTb8uvx7 zXfdJ>`BV6Pn*iL-heNX`v)QyR9$i277mfD;2DaHixtVitcDfs90Dfa*FP1;A&X8Vp zNTJW{v_u5?;Ts0Y9b%WP(S-T2bHP}yTGymk^%Kz*Ck^osC(guC%U@mAASXk_iOh=3%#(@4klYEeBBRw-k|&w`#)h ze&>tADh0M?37`MPQdsGKz|v~Lz%Z_Ti6;PGeS!A?UOajLUeSR&2Uf7=nl-(9G{#9+rbzb+_r>#_633J& zV%MroLI7^+d4R6n_R(O;BxhQ5$?7KkxzuO^9!;`G^&>yl4sFM+ z{0Rl%%c(kd9n~{Nrs^TlYOw2O`0AUUPynut(C_ck^CtA|+mf`p8+d>^b#nqPcpWnJ2x6nj6DO~K}Ep3=L8w2CbgaJ z`l!bL_IA1q*h1q4YiXDvDgfW*$f_9~(Et7sb^m!-Z#E-qrTP$Rr~;nzR%wHygEhuJ zu>pX-TSFO*#0y@+KOY#1=$*b>E82zaOZMlJ0Nga>3NuEnAy>yi`jQL!B~ybRvu5mM7TGoC?*vMq#0 zoVJAmT?W%2s>FzXG0jy27<91$%VsqsMI29G>H_c>=cjJUL_Fh*_fLG;sqQ9xy@;dq zSE2!U_Q>&TLg#P9jny<8bc>;zCQ&MCvQNal6?E)(fHnyP;Qw@=!}w@FpvOI4h#r7L z#Oo_eowkL%O-gae{ZD=yJ)1^3iuVg2j8i&c zZ(px;J2maglL{Mi=;v{o((Ss@v~(uaudegwj`f_`|Av|g%m7!1zGmB^sa#MO zrbF}Eq_+mo%ez>6Hi)J!t;l1e;llPM?0K1v4lSyYT%qRH(G|=)q+#Hwu4FcT!G^iZ zFeuW5dL^@C5aP+!g$sC;vJL~;k1`DRlg(59!QL_lv_;P9QR?Y-xp>vDs*ct|N zc>QcH85O5P-BS8T3NP$f%KAr6jOf>fG*x(nh5Ud7Wv%y zl*%1CQ!Q&U-aR?PswG`heRhZugEwRA+=7nP3u1>KS9Y&t z)8niR9N3Jsv7Q1@@#@%Ax-asfRo|{u$>WIf*+o_^UQ18`7hIc{z}ooDw+X}r?zKBiFQZseZ#{hi6Ur)$VzXk297sD$2DTmfAWzF;Kc#P{r z2J@sZf@z}&=hoh(%s&)Dvkt$LBXbTM-%r#Fz0ZsueL2o=)NR#)RuyyVfAEU^Qt|TK z28ND0O2GlW_&rnfy2l2X>ld-J!6@)1)B2CXzj$X{>Xjmep&uueG%MI{*)TdYaMG)|0VrYij4tMw-;RwFhFpK0g45z&k5(9d?#t-Mi7Kcy^2e zuCZmoD(*SfqF?7)IGGuIb^spYeVrL2=i*SSJvEExB||bZo?Y06$Lg~bY0??z!s!Tp zd7VwmSMVTn8zyxqiFurXG6Y{r~NQ$=TWnJP&YO>v}SzQ3OE@A zb9wJZmj87WN9T9~@bD{4XgUUi7K3PB={M3PvnJd(W(k@^18}tZ{hdB@9TaFl=eor( z5AovfZL3*!KRr{&yXZ^*d{GVXINJB@pgZ#~JJP02eKOmD*M)7&+jf^a-3L=CyM3Yo zxGtR5^`BYm&Qq{ndukWUh}Qox2RHo5!^}+>8V{Y50)xF?mWNE zoegJs-g;{60Ng&1i+?U+^}{su?N*Oe#v%N3aswk5Kcw%HX_QR{ewUWha^f{Q4C_YO z3~6w5Fyr;Hsq|bHNUI+0sgOG@1_5{3yKX(NbGM{Z&3st+#ty(W5djHbFVb2O_~aDR zXKci%Xe0gcFbR6hq5YfKwdypPhsCi7X4I+wX5SE+uP|lEh;|gqm>OHd+e~aZ7Sqn- z=}eDvM^U;Gsn>YL?4_LEu{+J-W{6?N`Y@Y!z;m zlj-k&eW#tHOv|>^E1naxa4*hmUdkTBYK-a>S>HS2`g|G=zD>)~y{M8i9m#CMIW&C) z7ww#B*PtZ!MuD8!I+JbJ)6ru@XL8sX^ZLqPob$^rfIGw)-(La%(m{=|G@$Id8# zz00Ps^F;=_b!kpE+i-55-p%?ycXK9ZH%<>o>J0FtT`xV4OlHW^chu?Bgkq_UxpQJW z+Yi2`NSj{zfK3tZ&)&ro*%y|d&UMR^IcsVZes@?peHs6xEKQFV6>&0F^6<=GEIOv7 z$B1s^G)ug{etJ(-J>E^b9@{83#FfT5)9LSj#&_ep;F)8h|^Qg(Y&mi1`GD z?zkr!fai)Fzb174T0PxOyPi9#GI}@-^Vp+&eS>Z5mb2q@AU)#@!2Q@axC=|I8ZokM zSu!~}Vrgm=&v+qb0FKI!qf4i<_S`dk9I7yPeCtmZs*l#2<2W7;Avc&hb{U3M+S9pm zHVguua%{&MmaaQTz4-^@4ZsPy!@`kcxo%sQY9+E@t@h^9>Bro@_kiMUBLi@iZb9M% zzJKY~9{F@UmfFUT>3DPsZx>teqd@&^H|2Fq_2>im`k~V;sW0Iq}y{{tn7Q&yM9j zl;8V~A^>U1FCriT_%CvxWj94Y1d=B3BL(1SRd`+9&5XI5xcf$pv6&5(s+Z;QrJEG! zK1lz_x9&^ljf2aXxa2fJ8Uw7-=B7jKOw62fiN336P*s=7szZ5vYBl4h?d2sV7&&IA z=YR@a>9dG*2?XG}*_$D+@33v<5;mQAiAD=1cByb~--$+La$#YlCBW+nE9Nfd@Eu?M zznj{pp>daP)Gv`0g*J@4CpR*C`F=e8bkz{Gq|R4?p55AzH?^g%NH}lq9AWvw4V-=w zf(9-284KXjtpjCpIAMgExA%^+Wd1tN=>J`VWt!}??b3~EdDCF54rJfT$s9MV$gtLt zi)2QB{p$c+UzWg+8wXc0W%+3WRe+f#CF{4NvvX;Z>uN$LApqAc1{v`16!WId;`nog ze!mRT6r%sYUX;mXtzWDv)=L%4y<=;bx%@DmK?Z0Iv=nUEhdvF9<7lBvslHVJuG{G_ zUSHpZ$IOk~@HGMh4e86bU}(qMq_a^#K->YiRuj(COS_r7Xe)PKtH3~uQ|{9A=+>43 z>1<=wZTC7n0k>Ud3>@B)s=8&H1m2-0G z&TD%2{}_Ppd!3OAj(3>3@jl@i6?VDH(zj203a7EbfX@iPO|*o+xyAAsv)F#so1*>a zG3G-ZXbrbkcW28^Z@y*bBAAsxXen1-{EI#xIwZ;Igg*{c8xzN65 zA#~+!6FUD*w4t2aGK294O_?^OJK5|%-KW?AxK`!QrL7AYzve8a$?7n1Ne4205*B?) z0FEXcuZugFHGd4 z1@Y+gW@ate&!b>17%IqDqba>wR40{g268+BxHkM1M^;W{@orCoFhGNvf(>2i-=riC zaXty4<<>yPpthN0N2e%d%wTSIQlpoLjw)T^Hs#P zYfJL!&)+W$z~gA2W$1l2&7Z^e3*JQNN}QQnP`kqbT2;&)XSuFe{Y}^0_x)%7J|2eX z_RxR~MQh;NwK3WBi=b%;^Y`NHz76a;a*qhd?9^yf0?&~%+0$Tb95ui-guS}K+L=@N z^Oh0?8nAJ~x$9usmQJhxkxke4_Rk)}w1d7Bsn(wUuGL7c(cOPmGjsV7o(3A~XZ2;N z)QmnI>X6ya6oWVx0o6b8lhE}-_XDU#$*Y_DnC`xYoBjqESvyjf7XF*07SUS?!r4ILx9-(B*_yTa<5JW}rn};0w zYXgU_Ji|0iK^oM|#JjRBMh|~9P(D8U!S(*b25+oK~D9SeKQ8( zaUh&3oqE%wK`}xf9cK276sblASoeG- zPmX-<{=^Kxb=T|AH+R{xbRnD0y+mWEAbZ(rls3J~yzt5#c1?N!o|NmQGUz4S7fxX1 zVNW7Vl2fB)3rubv!l+mqeZXd-RrB`tex^=e$+Z{u3|zi|%1&xRUfy8+oay{|BOGG` zEhNiC+aA4fE}RAvgT(u5tg({XpDXLeGI-S!a+i0ef4|nGdm1|c*Q$aOzTf|g09@zg z`S%(oFWSSC00pQc$X2Bt{W{kqy=7b_tp5G|Ij#U)cYSzvcm|y(9-;ZHZM4aqP!0OH z#v@KBgI;lJ({!e7d5UhK00Ubm>UMUeWvNWDX0pFO7O~II-1r=g`w6p;Yknvazg~QD zuoDl!V~$_rJb%^x+}JUf$;&R|XK0K`s$6tyk(oV{_fjj)09;G>R!NaSt?W3CM@3tnocWWfv-j{g6co0E=~k!! z03ZNKL_t(3sav-o_m^)W$J8D12jIFNf4x09v1>K^EkA{uQy*;e>>!z$Ag1;Tk2u!77X`%+ZzJj_ak> zXbBGv!`R#uW8-)pi;S_xxcx8KMF3yZi1VEgqy^^qKZH%U9l!T}i z#B;ewYO7(Dv0A4^6&^u&xC(_u z65FR%q1Nbf_Rly!qdr#~8cc{LvOjPIYUIFPIDrZTTy zruZ)fy5p^mI^J<~N!=oh5h!AgAEM3|m5BwGpVVwlu>FZ#FLZw!5fFm*bI%W5e=s!q z&|eekZ*h--RD^~pF*P&8D9TUkdw~&c$KyC`J$;HtU#MD(Dl~*}15+%_;<{gJQ7NO^ z^WIYv+5c5q1(sGH%K^bV*7onhvpUllQZc?YJ9NX0_|Koj`b+eG*WC}58smR||4qX6 zQXQ_w(8Ms##U3NaPHIAwhFF-!yb0*;ry&su^v6W{>!%+2{;N?WIzCJ4{r+>jKfE^y zUNN@&weHU!8^H6E^XazLnuQ*1dB1FNV*3(%JfaIfBM1r8M&2KibPLm>`sDmf>~lZ- zdlIe}N#54`H|oaQ37o(B{R>q`?q5>wFIp`cWrTh_{QlCLc$>6@-rh=+;g1-EElnVJ9vl?+}4+DIfv(x73wwi+~9HZ~{MM0RF=%|2GW|_kYUDm5a$-a{yKJHJs%o z0zaC767NU%xbJzN{Tp|a(PcdC3a9++y!c1kYiX|th`<*Jgg$5InjQG2%}dFAS+Ldy z^WypuX0N`1^XRG6%bvih+F$T-Kii+E{2s7j(-9O|3Q{sxMifdP?w{SmtbINVoHC9Q zpDqIXwE)5|;NENnCFaehY${2Iz80%&=c7PGkQX;DUg7xu6DTWnW^mPP!t;L=P=$MQ z@8V@n9of&d%uSfpviN_uNTm7=d#1VbxoYEU9&zMn;qNg*zDN0ZFbyocG$6Pt7F^h*tR?9pkx1b z-+G>Rocp|=;Eb{USYz+C=DOxpHEUMY6zYRN1UbmNKax7BoLcbX<@TKkzB49yYp{3O zi%0YsV*`~m(d7BcXq?TI<44sL&jq-6x~G9&gHYiwY7nBtwHf+MF;$tyN4H5OrR z_s5xuoHS_t?BdPmd=I8lCSGsAy4>9AT&~q*S(0+|oFQjlBoww@Z)yx$0(++vYCR7? z1Msg^N`&m3D4&r5ne$(Pn>R6h$!dx09zvfd!A>nHmVD$^|<}6 zvKt_@(4UkT?7hejn3n_|llD%xVR8#4RYvjaX9j5wF<1^`t{NI4rg)HaL|M^7$gr9K zK;#z|@Qv;uKXo}x2V#FCX(lF7Bjf0#BJLq60KJl+lmz8l!vK4^02+t z^PelLbk!9>@^(J5VH+Ep`xgbD^Is+L3v!TwZPfztZe8`p75_H*_h29V-tP~8g#mH> z%XL}#TcGN7b$X~M{zS@xV3$O{YNQH)QIzQayolw2InW}LP(PSZLAKwwyuWY%=hZVs z2IOzbna)fBSV~s_5RU<<5(mk@0U!q33j2+B#6Q*?Sd=#r5HEmeSV;SSdD=h(h_O14 zdhNG1TKxuZg;aDF`fo7&V2D9mT)mM`#-M-kKe_3L>HZf0UM|WN-W3= zE%7MjzYqYVWSbWi_&+Z<$}9qqv5VhmF7~)2Y5$j}ZD1rp-q_L2@POP4L;))*Fp-x? zfckGRP(aH-8GQa=Js(~YgyB`_-((;N;Y$db2Ksi5FSCLML{Lo(q*_BTQSM*l0F+FR z+waKO&55`W2Z&%RlAR_t_s{MhSNWEuR03r&rf_`FmJp`sGJU7-s zd0EHU)byeMyo62nf2lpBe~LXg6FYnF>^k}6#)5TYP)M-PL$ip)yL{~6_;?}d;BZ!0HIJ6FJYq2DRLXp!=mFp~urKoO%1`_m zRFD3=#(|>ijimG@ElRDUNMX}{M*y~G3y@lcFKwuZy(5jGz46iI*9TyO@VBSSRm47C zBCe@zdN>2oxwkR4)Z_x~H3|wTzY*9Sk@@$UiEh7>8ye;s)K9F=qRTkflgrh;DS%(T zqeXaE{5#!$$)Jak8rU=#-KWh`{@vXDX#ltXFbEo4qjfR=Vn6>es+aI^z?KeA=(1w= zFDB+6oqE9dZEG;1>wYWa|Dq1S-(LcLo9zH-y)Rn-ORfI^=L`9}i3S(YJyZXC6a5o$ zcWw^=*UzRwy8)NJ4SC@$V7YE=E5#4g(9qB?FVFw&9WWxZl)^q+(j6rKCjR#ax3N&% z1vXij*m@L)bb!aBrs$#nW48S5X)h`E#@@+6mH?7L;nOuRK+VvmmxOq;;|;X^>nYvX1t5WN9W{Zw9$2Jk<4 zx|NGaxYz=Kmc+J_o{61VUYV8u&Wd$hHmXR0N=j~%{BN2r%VB>|c9qUs3->2JKnELH z8HE?MTE%0Vb|jHgdL;ZuHZRIx1}t4KhoCLml{;AmC?h}Vm^oEml%Ykx+zq2lXL0%W z8a+S+#gEQ#%!r3bP~Tp-H8ek+Y3+r5*4_L^JAlSN&+oIctY&JwMfHnh)+|!6QlG-+ zi2Etk8AP4Te-!Hy1Crn3kE(Y28NQw^n|{GGaKtiGA-%kX)bF^G$YUBB8s*!JI+e%n z?m-zxA6i}+c<-v-;#tZ6FU${MU7&eSB^USv6=of`dqnap;Qz&DH$1tkHx41@U0!8K z^jnr;`^2~`jY{2*kbCSPu~IbMsb7OO2FkoE#@{5ht-{{h)7iFDFkoO+ejVx&mnkm~ z+T<=;ULwQvZZ3k=lPAkOnhBW=|07b-Z8Xr0-JO_@%{a;;pNXOfHs|lfSm1_Kq6Q70PfHT_1=RLzowJV^wuH9`fkrl zNksRz^ng8CTu;IgKY4SrIO-JGe%ps|md&SVq*OMszqJ?WcR2eG45e)GfdGE3XW-+g zcpu5m@}Y*Jw*dEh!I`5}-~vI08Jg*ZGXXj>YcJ4XxKU6B0)T9fPI6MxfJAv32kAI` z6_ted?YRT8zYN^=DLkLYjtGkmt?aHxx;&BJnEUBz{}|?f)t(AN($@Qt0AgD^vDg3M z0m?9)4&%$=g~h@*7|+LKka5X#)0nWG6ao^pQbxutF+&skn5ZIHC~ZXCN>C`Mws&wj zQDXZo2qWWDzpO?YD1%F8Tr(Jce*U0zO0ukt;kId1p=x)$+(C|3Gp<~ zX{PK&tA!xQ=e-Le=^#vW^TXxUiDX-we%2#yB$kPap#q{To?DC7ohw>h|7gNM|J?`!_XW zi#xj1)bG1}QWt<<@_%Tq|Ai27EhDuQVvp8F}^cHN9 znVeGahQQvhepcYq`+)T%WeE-3GvQpHZ{RT&fsO83=Zshn&3|bj zutL8ppwg@QmoRMf%C&O45N}(D4C6OkAusM9DO-5x23$Db*o@A*i4j^p$>u9u5XMa2{IDQb$_%j21-CIN;2>|F* z{ho0_1W$ekNl^y+kPrx7w&ez24F1KT>D69pGa{6jQQrPjh}BFy`b1hf;5Oq+ya4+f zr@sC|BuU5|i{XRfH*;snRR~NuZ2c6ZI`3n!rYvtsF3RP???O?NRX3k?;hryybkE(g zNfz2_w@Sg+CU1!MG-~4i%cU071q+K}1hjzYmLpKeLW)yTQb$G_BcYJ>!Km3VvvG*$ zDgLln8G`A_s(1F#!o&T{YB5@P#Ws@i)z2n^A8OkU&LkJqBp9cSomb7sh`N#JT?e`X z0a47%GBQlqUuk|ndl^c5`_ZQL8ZVcuz1`X% zgb&Cv&^Jb-Ga89DGjVXOS&H3V18u=N%vGytH2t2jysc&Y)2ii3qN1g}%LvY5^A*NX z={2F$_Q9aiW)L3>?%%6~%2e}}ag0BkM{47U2Ms~6&b2%z;Y*)f$RRbYa>tHCvB7Q34zI`*;_`8wx4Oa zN)nBXtKAa%xjBNs1*wpz?I{S|;&cdH5H!6nq zrS@pDCP0JVn4?SYECr3M-*#RefCEN(3-;!5`WI_xpFji-0v-!8_z znw8ynyjutbZ$P|11S|gld$>R9A0Dd~KSD$GADTwERwz!eS&;4{WlK#Ba;)QWo7m9WsvsEPhQ~>OhH9E)?^_l4QQ$J!c4F@KT-q8pn=4gCJ<&A`4cuTr!GAwKecgldzl|?aQ=1#Xb(p!{b zB-===Pp-T2llNdFzZ9j{ ztrZ}bosof$6W!i6f?aA*4bA2bf9xxdHa~ixEM(ynFGtw<-mrCCvldr7S3KRO>3M!m zIAR$?#)mX}3rmaJHcDvgRC}_Uqk`#JVFGyRe$8VG5IlD3%LUcRo=_h7tEK*H4k37}{$72-%%g!{qYoR%7 zJC0ga6iRlAa&Wd&VCbGex8l!ovln4%Y#wggLq}4*3!f2Sv!C4Mw}tSs56K_&t5DNs zF*nqxTZM97?_@WLF11=1O)EH6ce>B|dZy;ZWF^Wv>zk@Zu!TmX^humxC`%*)ht-A^ zd8>?>tv1)VysM>&VJeHe^0@Wv;~T2^@*37o3`V&#-q+fbR4fvn-f@ZtlX-`4 z=FK8ReqKQ{-(+O?kZlhRPc46X;MhSuWRF(h@@DIm08DOIdJDaL0vA{*YYrb+``Dq# zr*tDX$)J?jQvwd!aJJtDEj6d(UPG#V`G~ZWmZlouyz5ewM2a1Lg`E$>t9<){Gttvz zR>KN$uvd9=eBLW&Ai|>dO)4pN!acJg)EVlb7R>?{5xzh-%~(@gG+U+leEnzw&psTJ z#xKci|NYDBq2BrXb?S-QsF5AUt=PT9r^mvLzhbmVL1P2OE^&~mo362^Ry0lTZPc9; z%lm6|&SM=P6fXm4Lra?wyM-?NOH2R0Q_}ijdGp~$ji)eT51VE)(HKnA21Ij_ZXU;& zkb?8~<~`ggH8%6|&mCVxds{Z@sZ(V86GZloIUEJJy{h^Od=HU_pO?p35ZY8fG^6&H z7OV)>GT_l{)S%wE0XIbaMJxN0bq=sf=R5U!6{q>`#rtE;o){XPfV>8}0D(wF z=i>sc%=BnfCX3t56i9P>H}w4sE7yY}r!_07N|<;g{#@8P$NOPfo55j290A7P;ijbE zAI=$uAFr!p!CMGUUN!d)M@V4tf|jG<2Q8wiT*nX`h!ne_8qdd;+a=&)W)73lFhtex zhYV(uVduFvOc8DL{n;leI-c#GfltmfUjU;aARQhEw}aO9k&G})hO(WNiX zCLq~u?9N&6051F~`DmjWtICBvT0K8*X{#jhxZP|~Z8SdWD8q-X9Qb8cF!IaTF7gA@gPw)Uny2p6=}z1+q0wo4S3xNtM&5CWkVt0n1~`W(@AMuOFE%SE8;G8*?|!WSpDo~88!o#W- zGz*5*)d+NDid7$5?Feg)Ub*LSbn49Icp2IdO<$_kOlefIM+eWi>%FkBF4kBcr42S7NnY%ea15Bmxdu{)Em)G9SU)ghh_W6WPHMw1#@Xt5nZth7g2bkq}^ zF437jzUY_&1@_HVM{(^?v4M)5rFOLF18dHHo(ZrO_;#fjMNF!+yjt=-sU7}GO?T0L zPUfQ+Q|{Eno&3B$*-8xWIld|U4p&x?y$JLGhWWM&j?9CN-<14-= zad+mnj`9$THZCgFYbE9%=BT{`Ziym6XKb5>rD}<-24<$AWeya5FVuW$Q+Xm%v#F$5UT{%VT-!CP4frl$q+<%x81ZZgt?M-6|y~GGG3rm6jiO7K*|j+--3Ac9oN*7rtBq=cx?5UeODJTLs0_L6kH%p% zYEML@RL@MnHPA+Z2Z$4<(~3UHGZm*%1K&f zA4@po%^x$SxUkQ6BPgy-y+3d%@Lg!g~4zV%F{Xog;Kkerdc~ zs)(1trbK6x4-84nmjY9v$rCLql2{;|JL~(Sk!@-aF~9^p~>D;a!wp=Op@hBREaQykZwIMF-!rRI_~3%NmvQy&JN`qa?P|CW9x&tgn`q zg~qw(73C{%dp=K1M}*1pDVCUNstVjbJ&V^OQu_S5rjOiCc8I#Wd~ zyt3!Q?HHrD%7gu~t}KNK340PSpK5v^z5tx`l^Kp*oX@I2;levF4s=KW1FS&bmb3Z}XJ_ z1ljP{$Sd18_V=<@@Z()aKTr6nnT;=uRj=Zxx`jk`(#67P+api6c&(`=SSe7v%tNi5 zB#6VTbB%=R5RPxt)`aOvxk4*oL7Td=v`3Yy-Uh4!+EFj4W`s(e#k@Fc(Ss&ItTd4Z zwWVe>m>~-TCT)1V5qQ&fAy7+?YsYFlkP6K%h4a%k^8~dhG3vo#nQPa~ATb_YSf)Sf zNYI&mq9m$^&fw_9);uvrfXfxj<_^hiR`*kB5N3RY@LgX`5I?(yA}bJm+J59Uc-h)8 za?M$J(6BDOsQyN9Q2L2I^X~lAp*#t)@(3zDg%G?Oxu-w@4!1Fs7KA9wbB#?m8#AgFveM*3@c`QudlH48!mF;mP^O_pSX`dZ7Ehl+@np`N|Oz zlQs1Hd+c2$UIL$%X$~A5lF?FjKl;Z@Jgs`up6N?otsCjj1AoO4v3|eZp*L5MXiPIp zkZk0O>vbxS?v$A2CT~*c+1u%u5F#}O{QN}_74jObJl1pbHh^a zfzO0qPrY~@BVv{3rz;;w@1e1O(&RgMA~}ecM$z(obP@U z$kcO_X|gllY?sw+Q8DDAaNxtOO&$ir_}TecfbDfLU$m*062%1yZ~mo3;B#KzHJdUnP$zp-iC zg{--_=}KEfR;XdW#FI%NJ1o(%yXs&W9+ehHdg%nKus+AlsQVusAKd&D@K5~Y#>}xa zA_{)_BjQbO;nlB369>mH1tA`UZ*nZ^tJhk{^i2%C>5prwjCSSEA&E`$LRL|(XT5pb5b5l~_baJ&?KiD@?KJM1!8 zezd7xRs;(wL5@}nf~!$$az9%wj;*^8mwXeHFfD~fWM?o9CKSKk6>YH;j&ms^I9oKx zh|vj@QQ@>w+wy_B_m1sbc4e*x9`4MPL9_+nc}bWJ-3n8f%ewU&x;lHF?f2(bUmzio z8pQO^6Yvwoa0~)9j(N%rUfEneCdxnj`N*x-^&YiKziq^si2d%7cCJyw!g^n>-@kSS z+`;7YD|@sQ-e;p^7K~$M-dztvZhb3YI^@=(6uZe5`KN37kFPILHb_|6^CwXfIX7%J z1QH-`wqR+U7mlXS>PT5#14&d0GuTDNqObA@b_SW1deQ@$5Ufv+iW|dOAAF({>ZJ)j znz_G&r!gNpC+B;gtg)T(A^N%$@gL~QeOUu8H4A--@)=93 zzay3|K`@m){4S94#c80{F%z_9_LR{x31_l=7K0{>^XKsGm%7A4i;c_|oQqcg6HW7- zIdCI2-5au8&%xsCTO6-)raf_Vi=WHfrg(M9SB>>UT=Kvbfx)Vu`9NciT_uO)hKkF_ z%1VhIoR5#%EtR02Pjir1rIX|Kp?vwS+oo#eSX1i`S;W@wS*X2PtH3!DI(9Dhox?d~ ziWEP29(IUSyAK7X)7DEZ?aK^#5jN~9w4DqWD4_}FcU_1w1gt=wN?5EknsEXQIwvcS zHd9wjiJbg%lWf_N1(rnIUAM54$le6r)GuRFXA>;pHoM3YnL3u7(uoy zf907qOKt7{7B{*iSU5#@vE=}s?-=uDgTO~4E=XHE9rql=b#wzNdoOZcXuWNZ5 z8Ili%X=_X8`ALbY-4~UmQjYR+!@OBYuJKVte{(%#?FX!G8DEB%54Npf(LL;8H7-bCt`DyCW$+9s8_kpu~ot`g>`Bj`OAJNkZW z(}SNzoYJlc2{lUkTki0_w!N{ax1xuHf)EOLjPkm&I2CzJ zq*7M47}zqEOEe8@zs3)etvQj1QSm*o2{~Ixb$~v6|Hx>mzKOWk_IjDR9)=*!iL;i= z5MrBk%i6OwS$VAm>OOw`sZNAeWD9tH2`l=DO6>Y<;!=wG_Np0lutY0shn!S&%+z?P zO&iXU3UyL%1WhZRQ=O*Qkb(n=O&yhcV%gNlIuZC~I$B_vfGudk8m5?|D?<^$KyVSN z;PQuExN`y**d>*T zGojr#4c7F;grpD_$R~#*oJ6SFafdUlQC4iR2CR?LMm}|-WdxWkfh<|FooxUjw_{PP z)v80)RP8Rvh80e2e4E2D{c_qJ)C}-CHZK+&Ynor*&IM;l{~9+875P2<^3DMg1LNJ> zL87*7vK-e6Xy~8eiWMWXW>%SF)&}8+3qe)EUa7^$&8bJQpM|;@HA&lC!@)D5sLoj* zl-U!F!^f=nLW4Q=3gGi#a4pgT_QkzBTRQUEkj*!^#7Fx`K*+?`b!F%SzN${}3c1(G?b7&~&;)o1mV3s)$JUIl zDZSwBJ=|FN(!kE=(RZq-QfDqLK3!1X5`{YzhR(pJIg6?_s>6WsPmc3l{C7eE`GcPV zN%w{CsvGV^l7ob``ndmAqjTnMgW3L9*O$8~7APbwKcSxt4U;xKZ*pT?F5K+>doVpj zwkOhoGgOk^s7P#{ zFj{fQQuTrO^7d#n%@#77b+1_M)4`ifL`@fAu|sbhCU|CIu6+i~gM<%$5=`a7BAAc3 zagEuuV^B>!GbgXQM}RrIcL3nI5zIl+(SA&^EoNnm>>b7yKk^b@(by;@d#H1WDc9A? zc9S5_EebTV(W%fjj!kzJ5Jz018=2J|pI#h7J+m!i?q^`CTqd{}ML1GesX@IyfK%ev zp2>CX*B7|RT&|CMNBlB0>G0RyjvMRNXYJaJ~-g88U07U9c`pVoU}fl-8Kp}Plu zOk;_p!HEfozS|3)69%m)4==qNlEF@;kGN+mW0B1h?Gx_l4yE2QW+&7G8fPD;yxI3< z`sMe{@U42NTC;u*Rk61Efr+$@Ptt>Ue$9+l?D5r=Fz=e?Fk z`)4ox!Fjxd34Cs#zV&Q9OBZm>`o*EnsN(=aextQX@cB~h>~-#X;4G?v5fv;h?=y5Q z7K>c%1D4d()Edv9>c3u-6XGf00HyG6@4R0734aY;6I=Z;^so-{A}2ULMbLQ*Hq^e# z@>Bzx#lzNrykWFR&pou^lywW*;`77m>(b9jR1sdMMi&dck`Daos2KH4V!*+y=^?iS z(pHH>Np0j8ngOVk{Hv{Z*3AO1pS_tJ&V`zwRD}55;_m6;vO3&ZEM<`-5BP!boECC5 zsF2#oCJUE~nJUGXOC zoIzD9^}x`o@iIGbMaPcIf9TEf_+J_NPI~XSPjy;T7px+gJ);RYB{PI4`4hcSonOw@ za;`=5IQz~^4%v4})<)|+$~i~Tw@)QhwL+JBCB-neQd@OOZc_Ybk^vFq2Rs8`Xwa5$ zEG(p2-&do$Mk48rjtd!R_v`zX$FsTp9y38S7Hz++&ew_!m(X^5RqR!6rEi~Q(lO;E zTDH)lZP$AI%d45B5&~IP5*+V?um+!94x9aaBK6)9zfEK)R$B6~y}j4?EU>)!78ciy zp?uWRGnpChmO5HTKdM_H-p2u^g?6>HEqIpbgOh|uDhcWx2)J_GZcCiJoxm&jkBx*F z8BT0YHYOLLV%j_eUdoq7!p8Ya^W=x$5+@A5jy~h+ELI)e^gGnJ=Bs8Uv(abEzrPVz zkJ)Z@L^&ga_s)OiGqaiLFjulgzdYaBs@Q4?f!_SeM#vV&k^^yhvdyW>*A-FK9UYbws9SF!j!Gc-Sd?mu!m7WszkzO=~<5OVh*=tFEn#fS5lyTbB+Zd0Jvhc{NBmd0M zy=REiDgGGa_R+T!gwJWKlfmA6Ec%+yyX3T9vC*-SsbeYYp*zF} z0V75Y&2*mRo;19?!-V-j4$9V(M&j37>Fh#o)aKRJ{Vlue_P!FhfPYLW>4j$VjT8@+ z@g4q4NUGqbQY0h)BZ5Z6YTi6&fWo?Z$I}2Va8TB`r5q|H1`zIijEFtMEd2djrMvYr zE*JKxAopzWJlVzG_gfxpTW?4KWc%);w`m-!zN9Jsf#XOh1V&cB_tlcC-AQ-Nk*~3C zmu?SCcy2>p25%M*N67Fft=AYGHLK4}h~pd2o#$OUwb|$IimYr{2EB3MM{!$xFnT7= zbX#4}3Kd9S%Ltj4z2S+v+lg8y?%dBMwgkTme%O5cf&b0x2DQ!yy2Cn#7^`-<{m6s5 z{*B<>RXv(LV=15hk&h(LMpt1;ARB!{fKN zG&Ws59o(sboxRZxFBHwwa(CA~?k*77aJ07^@*Jl=gWNi4$FDHZA3mGj7IAg#bwS$d zjqZEOLGqa#Q6j?3{fhTJ6lKlJXd2mB+M4oLgft2&W+aG!Jwi-mXwl>i&c@2N2(R?1v?A5U~UJ*NvBq zE~29xnpL;I4P19O?;~ukxf$_o7Py~3YSgX(NKM52Ro|eLGcB$I)4IKS2cn90Lb}@{w-2TaFE%Ap^9hH2Z=j?DhxhP~q|i`*fe5(n!!R5+ z3Njai!*kl(`Z_UwcpW|k+hFZxsuTSFl;!TB!WL=9!#Wfgo);2x|0E;7+lkDWYrG71 z+B9hL!6>n%a3F1NE#9i*?vn^ zDZxu7C~p%8w4OSzClPkp>&E6bNC!s(X$niyl7f;DGZh?sX`d>vNakStQ8SfDDjxb) z{DLvlSUKh+#pr0{kh0-^Y;g$*P@bydCvW45lab3Fjp&2e)Rnd%aI!ctaj_xj z*wDtoZmuju?d+gJKt2$2P~u}AnxDOX8UvmxnhJtu2qtT2gc6&cJFX6r(t+#w7IQ3E z%z1llAT_oByla3;v_q2pt}@_UP}%zMurF5V`-^b)Mq`(=`x%4dAzeVW<h3888rM!XDXY2=xh(fA74~Ki4AAO$^m(!ZuekA zes}xH`cSh3m!bbm^)kju7?>4D%{n3{18XS?vZSo;t(8tCC@|gW^J;1RSxnCdZT}Z4 zaQao>;0Ua``r-84UL?)LJs1G|cTN0YOEdiDA;j#!TG|x6<%d=B&tJNCS8@R1@*-~D z7l2n#gB4r|k!Tw4XFPt64=(56d(#I zsaHw-rqFcXv?>3p2JlTfA)u~Nz;DYqC|*)1DEL7-5EA^Ug?~IVO$S;A3kScQelR6r z@t1l6|L|)<{o`{>O@v3MN?{=I+aGuKveNz##veQpO9@&B^ntaI3;%z3lQsMRTJ{hR z{0PJETg)C0E+DwS(FoT621(~J-?yi1104U4AM<-R3k<*z0Q{q zBLxLUC-`vSI2SZPz`muOSERTkBo38(l(t++TN_panim4>#s-prAiBKa=<_zM(Lbhd zUg%HDNRar5tu10$2D8nU*Or|g_AQ;~;n_2s*D9tjBvB|Q~n6BDxKRZZBur`aU*3c1jb@`wVIa_8#^B~{(8 z1C6vsc4qz!H#(N~7wB3W9*={U_tyc{%~a{>Yq4=j5ur82=qbtl)6+1uN_o?BbNwT% zDcgsKku|X(KgLX*&yhF%|FQPd{9wvx=yqs5!$Z_pUI;y@-@ycY?&`k(LPEF<)@2x; zK|4Z0#f1#JvrTLK zkML4^L_Yk{ivlETIx@a|(EJF-bxXMM(y-rD_YD*1IFrtKy{=;PjRvh2mDB7xj|#Fd zbBJq+u`AE9pyKaS)g>4g^zZCj#++yC>$WCCxw&B_CaS{FCi#I786`O#Yky1(SE|rP zC5xT{df)%(F=DkcB`%xbYxn{-;c!Lab8~V;IzdOo{+c%q0ajFNe0X z%`RW^lEQ+Hd|Z9P&zki-Nap600pEjVq?nkP1Z7>gA`uW3)zl(vmh9m`J1RTDnU#!c z8f(QB6o{&HWrEAgSx0HViBh&Sr?h{UZA*6n?~!Lev_R=O4zaWp1#R_CtY8+K zOF8ZnG(hIz*~{K%Bf-a47c9fy^5f@Zn{GF$%>S9=c7G#S1!C&SVz|Om+42^=*bN>? z_T%_xU{{x{do?c3=%K5()K%P*citvZ1DF{1$B^LQGIyn+`(|@r`O|ZjzvlvMeGPdU zd|+o~MeEM^_Uij_(Ee)Rf*Be~R#5E^Ey3t%Z}W6GSvM06g6iAag7$1{Gsf6Fu%XdR zsR6tD(j@$Y-+ez(Gj3^PBLW0K^zh^^$e^)p?UWu0zMCuoL*m^gUW-1cMuyG>k}D~# zpa3lnm5^;yAdP@DBKC@DebdSe@V##pfXrbY4E;XPTvG#*e9Y7h$>TdZI+}~E*0(u> z)7G}<_?2?_zJJr;IBJ1QEg^(hhRW6nJ}9beByvw-?R=`spX91t+_k`zMeprZtEamg z?lIKeS5X*mFxdrAw)ZH6>lYTszXY$sUb_2w@uyRH)Y}JK;%jQfDn z+lNo=N=5-$BPbXO&gitS$P^p*JXfU(fV;G~n zokjJLO?o^zSXfy7^W$KPiyV8x^Tyq8kjvdZuYupkM+3?uXxGyx0-@5c$+PET8Z08BNw;;zu+)MY~KHFAcEyA6j?=h0AJ-^}?+<(>`^CzQh zL zE9;)VwwqyOvu$WyTX?P@eQsrA6VllU9vOvrF%Ej<^>TT?_53U`RaIOpu7ozex~e@8 zaN_N&sEoG+r=sKDxQ|T!yJ>dqhrocR${LoL`XM975OcE=d}-oBR;HPAgXH{ zgi`04e4Ja`3Yk(}NNlv=w7jyiy&i0{+bgkqHxX&8siQ;skq@HiK#iKV`U3~mzS_#{ zD&I7y~A77Y`<)4lbCcglNCvXT)y0MI7j;Jl`kx^N zO~A`zJZX(8goCGzj<$Xna2{AeeLM6%i|`^v`L2nQo=!+_FG&ytG%;hfq-+xubjZ%( zVGupuQdoXkqbnkp*Um>Co;E{MTk^VOYF;Y`OG#6o1Y-HI&nd$}CTiYnva*pBRMx^E zob$n5n;R8t6zmV=49O4h!exVAayr28_F%&Y@F>KgnnFP{GlC-l&tJmkEQ1kGQ%vcqwnmU!dK) zyv}(Qtkj@l7no`21txTOuyOIhZ}Y0F0bVN!ANt9h5RehWh#W*j0(tZ4Feb@CebOdbcAh_F zAmBWa7=wBru7yH6OuUZ+BS?>-8$>!k0o+M=J&+Vyi5Xs&pqW}`<{i$(xe(L^u2i#v zBdAxAF>@-$tgHvTPkY5rw!4=N8?QKAiLbB679lleV^Hob?O}T=884sQx>M*{&Ofb$ z;bJ6o&Qe7?zB^K0a649^0ova^i`yo{_T;?3Y;QAPA#B~=$TxP7PcTvs9MFzvwwq(f zXYxe=fXRVmGUum>@4z!16Kg!lkkx|03ZxIR!k9c{Vi00NTf)56sfMWJGM}Np4)_4a zE11f|Sb-6~+fpL5A*e2^?t;(!AhBOF;@wU`KAxmqsb5|;!WM!-geA1wcb8=OczF2j z6T-)I?oDH~9tm-b9~zONN3@@8mad2^$V&0JBw-|wgXItRq)Fvxw@ z)7xlqxPp6m^+x?5ETz6Tj1#kSK9q1j6q$dvl*oLpdX$^CsqwB&6tu?e>Z?xZ0KkxE>?%>No1DE@$hVkFb=%Qq@k^b zF!NYi;)J`JSzLrN%Ig)jEmT+23oI-|=c{#Ye|V3NXQ?I7(ug(a%&F%5W@9achErFl zO^8SHCOS5Y=Cm(uf zz+X1*?|U~kFhoT9A4X!j$W|DgSN@1naJK8sM5=X*N8dBgFXjkRATL)w&7<>1U*gcL{#mJF74xI<+ZLYBzu z?!hdag}tpKazJ?+hD*wX?Wb8;M-9S3Ju*^xc$mw;gaYukcCYEx)vx}&LOVJNu*ksW zC6_l2Xkh_KNehb9`<8Y#!`stLx>;GGXI7@B7ejBN! zxb$QaV~cRFoaHNQ3qQu_958+vJMtQI$jgyeYD!t~z+LEfrMK8R5C$L4S`dZ_$pw0# znk8+Y-C2Nof5}wcu+D?q?k|ArNJxpKb)`_;oUAFfDXM5bKq7RfafdvMEWWob3R~_{ zKnk@`Q_K~>#m!LE(~BVTzHn`5bltYM?}oOwXKZP2&2MhT5~C<`KTj*!{_(@F`Tflw zC857x7()L;3eb!hEsVOyMI~fA!cWlCFV|UtpPb@dF7gr)fA(OLosf;o%=|cT{-e}^ zT3o{MK$=D0bB8f>%p4wPm57Te*QOUhfQN?{6$2HjRoFjr zT*v(`jS3ZeJEVN6ij0g^CllF>@?ifU%;G}Bz)LLjAOr~jDncg0{7AZ^N20Nvrl$}p zH9P#wkJi_alM`d;c;06Q4Cpj6K;+LXKS)lj4&j2nb$vq`@dA>hTggSlg$+y|?u>!8 zn74d;E{zZZVLY|&U2Byp{b3a%3yh>Y`mYKVf;15uRab>S^hhKYSmONf4;u$beiA=( z{$z#1fC<`RVG08+!|GVpgdG@uMLIoySC8MqwaULmC!wwTP3`3V4vboYgclT$)pAC#0-Sd34a!<&NQ00tH@pfwF=bc}X@ zBgSqmsOb*L`?A-!rL{eLKRSC;KQTqacz91oOtw{%PWc!zKoSlI$3L*3)38#0LkgI} zgikE`6|{4jiQ!+w;5P*q55-{&s*C#(xUFQQ>P7&hgBtAQX8>l8#jw;uCFVDf>^bca z&N>FT=Y;2sw|CP|09sPi@+_a?PH#{BY4TvW()d?(XJ>fd$MUVcBZ1d0l$OnDn?cVe#!{Lyx&~+*VH$PdFvwhK3=^0Z%pw=m40V(+)UHr z=JGrv_kHQNhp)}9b8fQLW~|fW7jO`zdoFZ-xT)_at*4@-R9=qH;swAS9H>3~Drd|u zZGq6J(i^s^?t+1Lc8=Td-JVtg?i12CGz9nly41Z#CGb@B-MB>df%E-|BNLxsfzl5d z0U@^|Us@O0gLO7YAxq9WpiY&wXJIfE(!n*Z3G)P^s5SPEs)z4_#{EdRaV!T2~S2s{-Ki#894vvYHvU}DVv3&Jlf{lwiFetNBWA*>| zI_sdix@OHE2o4GE7Tn!ExVyVUaF^ij5<-CB?he77V8Pv;;C66_*?HgZ*4(L?JAXk@ zMb+77_v+RCJilJcloS%uM|`^{!IbK+>JR~DM!ixN>5IDGHJN*!E5Ja_{^n?BVjENN zM-31cBBG;F>7ajyB_EX>9v*F#fI+#5qx5 zc|V(YU_5gL6$_7?bpn})m$q+bEFG=C3o}aD>6A4!D?%OHq;~A=%s!zA!#Tg zJJ$TnHXHpPQNNzz_X-0%Aec`ma@7MFEEC$%N}|lZ2eP>g%CboaakGA>;79{e9VDcj z5bfK~B}^2n%Ao_(Im73(Y+hz^Xla@_)H*&!C#J6c-pk7iJSg;>MqlG}bj@?(cU#Km z7gTD+m5`cB7IG3C9v4ZU9*G1V9;VIcaukQ#Yvpa__S;4>G0orHIi-n{MbE~*6+~23 zRn_bK22}_BFl@twSesE-FHK*(^RgB1uuUcOnpH!ZDKqC&@A=&E4oD0jEn^_AR{ zk9%=v_VDU{>#mD}(rOk6OSMX(O|!Afg{Jl3>Ugftb(dXl5BvXQs+50x06crFZuK3m zwe|msr%7nXRv`y=&8^B+a-_e86%DHKagak;b#T(wD75|Dn6+ShlM(IU41Br9OiRbJRXHOOOVp%H_K`Iqgn<9j)C2 zbHaWladC>p8ox@Z`5bjG65&Ab%?;MP+rxu+&X0Js_trKxz?=^+YMTmaNNg+znnra% zZ7pgECme+Xy&=&%GEp*eisH>$yYx^uINynzW2;_H3QAtc@OT1A35~`Q4w2B+uIEDR z%@h94H4*DSp;>8Os^or?M{+utzlk;xOT+K=k}&}DX1};i8PTszLh4V>L$tP6NT|?nMb`TI`uF}_kBYT1?6jdj=QM_y83hI zvUqd-K}%PAOa~Mn8QER!{{-uEw_+F`U7yHpuJi42p=slnqTfAX2EUuV3`9m<(5=5S zO1VZq2{-kp3>y^{T7+m>@MZJ_85I{YbSQ=AVd$EOBUM`>u*^^m_TAkZ7n|N(o_8kv z;Y>|UYnja9Qh(r-GrY?Ozn!b`RxGsX)jXA8GQA*nlwE0^2X#uZY zE}kg%78+Xnd+|7Y9v3Dit<8UwUA$*EnzW$6^>fgRhOX$oms_wXhsQ@-+FhSdz#q~z zK*g<0u*m)-8hhdrA%WXtSJ>4i`#UQkAcY1?PFpQHdOoRp!7oP@Qc4kVQ7G`}YQ+@n z>{_0lGmX2LNqOC5=Fx_-3c}m1P{vl0PFBLkEE?4@=t1{m*YwJW7FR_#BA^AX$-(5Y zV`B?zT3dznFZ-h8l$6~=lPJX#2HoR>#KBEX;mreVmW(+a_2_(!4(jFcjg*6ng(C}n zw6eggl&K5_(MD$yw4*%azA0N^D&VUL3he{~`RI&3K$cC#4G~y;6x?kuK+{P`rQW1d z0_iF0&-Kc11686l^+y67#@p1Tov0Hlw{d*Nz)#i&-|r=z3p|tUgA9lmQu4Ccsl#2* zP5x+*_r!14niYDr1d9B%gqehy_nW^IQHY7@D5)J@Z_Y_g)958WFVUEr9v>ZU9a4FG z8q!4{c1fgYn#Mo%4MAr6@)@67B7Q2;7jYfQX35|1$f*=W!{Q1{z$PwHk*` zHGzP9MU}nCnEdNoiJh%k$U@ge8g+me7R}F-q!Yc*G>q~-SzjLEf9U?$xqExCWD(A@ zDU2!Hcs+|ZaW1SP{o(p@-5YSCGvpjvC7&4!>}AqdJ*I!7r}Mu>j}C-e^9h!M#@-f7 zHA(@8MkM{tf`|r5_p;M(xJpEE5HViT&eb+jMkP&ObfA+XE6ZTRqqAAVtdT7)iuF#= zjlCaSqr1VkM(SvB5Ywq`&&E}CetS8lDF%vy^)>6xZVqNdjZ5b3D{1yw!Exzgiz)ue z>51dRB}c)!)Zhry87ky`Pq3tTvd4BSN1oI}r0RaiU{ib(_WGM+_7GCBZ)p+YmoK_H z+7U?L)m2F2@H#;j2n!1fZs+Te2;AQap&A^1*HgvJEF7p$-#`jW``&l_baArfIHiJP zXKRYao}Y0XI$ns92PF_~lGfM#l#wYZIb|Xa&A!y(ELWcB>2>*uGT+?Y2%Bu{ zlA+wPMB%k8$|WTwy+Us@ilHFC=RPYfZQZT3MO3V^SxXJ7i*b{FKW%TOlgO1n zy4(zVwqI{wk?Ll&w^)@P9I0Pyms`>WB!{Yl@(hm7&fP%0tqu3^=kSN2 zQjE~su0t^@MmxQ!YUYahs*Y}KelqpkJR6*RUOe}uvq`3 z0OR@A4fy+J$b)Ywsi^ z7@LR_V{#N%*y~sUfF+!w2bVFl$UG%^0OER*I`t4!5MUA*`0hdjdSXO{Rh|A+;%`R= z8gbjZd(-q<(?L#UW|v&;Ou50-_O5WrFqR?$bnQ);$46@ckG~WG_{$5=7L(y;01e2_ zCNhT5OXK^WN^wCa{Zr8wZnd<~=_;&6{M0S!4Y+&l<%!2SngGf!iA#+PxJMfFG)mYB z{wt_!2SsOUvanS(snJ4s8M8m0jUVI*h71#KDZEjKN&W5bR877d{bEnEOi<+V#g=z0 zz_U{frR@JRx+o<#tD@qNSMU?bJ8K0RFv~7*^~o}cwKES6R&5YPNjV-wRfLt?uz6`2 z7zX`cx8xJvpP!$HJ9NCJ%~FgVy8Odxxb!}B4*-zFfJ1ACHfRA!(~a0I7je^U3cRnI zqCB$_SRG#3Q`l;P;lYlWV4qq3_U$6WfEtp!!{=W9Q5$JU5Zi}9J zab*2Zd3;1VHaLawZ+Q%K`TtXStPj$>c`RD?uLH6ebK;5_P)rn3aiRT?9T^51XQsMg zV)6Xn6F1-ShsJ*gcV$-(ty5m4w^Nl4P4|WDD`$+TZ3y>gl~5mCHsdH)9ALkJ$r`ev zW}!j>wbHR3RE5`dcnd7$e`K{##sCjwU30%WsIwW)*M)gr zU0I2DV+Ft-wS9DvevUP)XzSBgQ&{PsDtn1L#Lb^34$kTH0p4Egm@QWLGOnLL+lJNG z=hrl+m&#*x@9da_LxtUg1%r7thjtfV7qM z@8Pj%VW7!%8oA_{GMiW~4q{ zh`edwFVZmcE%(Mv{zynSXTE-==@TM6e~Ybp9bi&6!v^lBJBr}cEK?%B`AJu*FLctH z-M!a6p4f7W6^60uKIqkvl=#{~K%bDmej4#uB*Umcs6!xwQt@*s;$~lCTN~`!+FA{u z+R!0Wag}XNPfk)-oKPEhY0;s1*(bhaCDbOAIJx+fLM@#({QMaibSxop)KEC{=f34_ z@uy0n^`_FL^k=D@nwR>zI<*xVK#9(PsN$UU`DpjC8}k17niNPwtHAbVQE-F>EMyr+ z_osT0AfG~+eFFxd5~PkTys9BZ@(-Ukai>;a<(?N7ww#_4Zevg*N@pgb^A-WY#n!EU z?E8N;G(dyw_002x@LX{cx~a1=L&9GoYNsE9++5i6+y$lXkuB%;cZ0|-8yyUsMyhbS z`E~VL%iMYn4fUnbU+qU!!K3pQYUlLtr(E&zCC9PKvu9Nc4}&=j@|P=M3&`>YWv!^e;(Eqke2_4hwcB{ zr+)F5{|~5z2Ru*lzT|q<%P(i;zEPzjHY$>6U=a=M<}Z5#2~P7^7Hlkxw@uJd!}SsC zRP^0_{B^w}XG32(2_4XnU6d$|9pBMoKs>LtA4}QO54u+~pImS7h)7Hs-%wk=Fn2ihh)X1jATjV&bAcYFXB*e^kayMgU%B6=XZl$uQ(Sfzd@# zd)L#Q)`o3DP(i7pc& zKF-m&!M!eU_EArrTt>yvFN^q(CzsJ^{n-Ag?g(DIt@kpE*7rJ#W6*PXYwo#ln}6Q) zmuBMjpG|7!=gtF7BJ)jU^vW1|2F1B*dN@FB&!onrZ3{4>nVB_jIy@?}IyE%C(DRg! z+~0Me*~oBjD=q@N>ifyET>w90e0|r{DlI_G=Qm_?k#|6RSIIy1{2K7W{%igB>p?qS zLdw~diRC1b_1b3k_l2gj1K$oHxtsp2^^2wE$ul$cKRP(k8Wj}ZeMT@V^V>swgZr0G zu%hQ^`Uz04_y83GKsC*lznS`l_4Nfl+uDaFh2jDQ!uh@bwDVTlGK_N0+|utYh_|Uy zuXNz+I}dbeIs*5P;Zd`M-Q<*Qmb*C9g+QvHtACiqjT0%VAE2{QfHa5CDR|YpEB}E{5KRr&atiZ}5A}asd zH5TaR;K)i|b}IY}Go~y@Y#wJO04CiP+o%6C(ENU$V8v;L zY_dPxKY0@yucgg_@9r`Qkw8BUt#x<-D=*x^=S3aRpo1z)2;WW3-j((SGL{SgXvAu!zCZ*VqKMY#kB^U!P8ZH~Ka@r=5f)dLjl}gZ%HMy zCZWM^DeedjzL|^YDA7=shDdano^eOV8-`IlYs_k!E5hCoPfuRfQ$@*zxIlSztJu~;_aaRmt@?|aKo_{ z5qc<9_G%m;KR@qwZ3HG2Qe^qRTHQZA$UJKAV`FS>=9(_HTL}Q9h>+5WO0LpJ8Xk3w zNWCWan>zsT>d{YVhXfa5Ei|nOFrQa~^{{4p!QEx?Dk-WUf3RTz~ z2TuxF(2j@e08*QlP^LSo4thJ!C~wv5HvyWFkTDgeQmYP(+Z_n4sw6mFhnGQMI^u&Ah311VM!pZF?Oao>^+PM})W;zZYI+;|cO_b;Er)egBcgr=cFX z6QkXEUb_iV8$?W`zUgl$6qh@Nn&3oWwGY$cj1fLu=h(_h%mh7X8myZW!O+mb00r?Z zp-M6IF5`LOa5p%!cIo?~)!aVc!@?BLYiCCUN_T zJPSQ>f9_9Oa%@hr^$jA${x7|&p6=xuvrgY+#X-ed7elp)0C@0ge6T5U@iI7GNVvBQ zQ%XuJvZ~6y{pt?6)@}qQBs@IOe(D{d%{DtcHICKP;P}(9@?fH^t1V|%*W;_kvA>c1-cZqajYj?5gqWEiK0pF{2*`^vW>#xWDZUcZI_ygzyU^Y{%s1jB*karhxMC>vy zfX)K-lg-J9V^RDyIE zF4b_#IFGe8vyJri1`2+_f>rdH+?|bow6fL~OL<-dtNZu#u8@6JsGKIYA-w*3Ls@TB z$*gjkZp(h$#Xa1hOu;SY`I%SjVjx?+<&nZl4%?ITj$>AbRRpzkZha4Ks_nuD)PShw zw`@)R5B_xF+A)1C8?dVG&E&ln}M1Nx~=J+~>zPY8fdu~p<9pwe!K`y>|-IRHf=n(ThL+9m_*6?%UjkqR9 z#yBp=L0v|Gm5f7G^zG&I7qS){x%q1HUOMD!TagTNwBU20)Z(J5 z0eCO81y_F2H6)(m)W+Nj!kaIhZ^`N1yWkRs&p}mLjCvV_#>~;9TtK1X4XBlW-4YgT zh;~K67=KxT$f8&K3ukL7LDD*RH2rr*1$PH^tZE&54~zb_aGPoY(LOv@XstNW8P;te zL1u1hdf6d=7Ah)5xaFT}Ng4|BbDtrXrj|%pJE@=?hheD7(d%+^_LVF&I9cnRYxZ08 zd(lEEdD)$$^-?|>C~$E#ZT6McFMe&t!cAQ=;bDc}WUu7`9F?*%8x#VJ2tXVGB(ism zj0*Gt^`JOeP1Ud2hLFgLnitarxwX(F!hUccE`vMe!sh4Q^_qPMkLN1_@`EcqYh4Zw zXaFoOx4s-d5TX-&b%Ehe1)*2OB&uf%h4j9NsaImB#b1fBPjAUC9rKZJW~Qwz@2gmo zGBl5IJlCV1rs95FNxofnB5-eI147Fjp~$Bw@K0fL7i7UMgUG!zVOu1Ro;@k-A8WS@ znMaQ{)@6MTq2b}MuAlq&(6;YN1|%oIA76jC!E+S-bZ=2z{%o63K(AbGGr40QFxdH-IXlqLx6BQ*?w za`f%P#sOCSUni`Ohgk3#T7bXSevFozmv{3z6;Y(d-L*zi-j3nf$G3)5P@@8hJn(5C z7Ky}573uJJC$za4=fbu)#sO_WV0A47@sq>=0~FNbRw-2@ki`an1KzO<)Id6u9pn{7 zKodX}EOhz4>k)1l_a(M6n>cfkNfE#mn(2VB6K1S zY(vEn7^DT9E-UUk?N&Iqh7!;{pup?v2G2)a4x2X)?J&q59>(>ThnBG7oZPxOaxaMF z0J2tu0dUwcE-`g zNd)jAo_&2$a5foEE~+RtP@I-8e}Hi--KeXM@V}a>@p$bwMH^h>;2x|+QqYijIcmkR z>^6spl7=J%%FziG)6tim4+MUvC874UbNP6}fHcL$9aItJPSB?PE>#Y8qT*VlBA(FI zE!mh>F!sIM&rW@~O|7DOvwMNz3#ZyDF^n!(X4YQ@8(QQX8k=4&xbwVE#)_NHKaS$N z?o+Lv4JL*^nTra{4^ni`eqI&)bhYE{ez!39$m*l_9R^tyza6ax5{s40$xmEg-m{Aw z`oqAUr+^7V#f|(=Kc5DVn@DxNWGoA2*4eK8yJDNqAo-4t8W!fjz_=`l$7*jQ6#tQ~ zu%K~?zb$j@8ALClPuT@UIND&ji(@M5Y@6p~YKD~cq} z?*YT3LaTuky6MuL#~7S_-O!1rD3SZ3QbT5qZiNkk_8GDzP(I7ev zwk3b88%*oUqy=c}q>_;j5d%o)M-~CUF9r7=E-v^croH_vN}I<>wdU zPb@<3{@wYf(qlcmGWNZ@(9?Gm9II_sZBTVZ#Xv2SLga}P+6FS=gGhm&G7NX+qStZd z-35SwZUV!UBbwh9-}!_Q!%mt-3p;;DH#$DJ$~RTWE?0$cYE!C zNc~-uj^vX-YSoR2}OoI9s!D1r(UzrzLKk<>wy|y0@>(Nsinllza-m>p- zcyD?}#tHBRAVY5k#K;8a)YZ44vEerXZvLsfH$IDFcdgQdLp!H|%oa&L$Ga_gNacvw zM9zmV92Tr$kA|>}5B{!L5K-*Bd~_jfOj|N}zaWaf`PrI81*vF9G;6C%Q6P3Nkcb~2 zBOFH(`G7GWX(p8A6HgZPA>jQ_A0|Mwp$p znhiA@&2u9~`?(L@DGToEXJF6i2JO+W5jP5M?Nq9|I!$h`=oFQs*B9%v^B(_wJz+No z*iOP!>gPo&>xWgL&d)JK<;|h*3R4%Kg?7Ge`>G1OOFDaddWaiJ@;vrIMX=$!SfwTI zgIyGTyDcNc>-uSO>M6l6zE%dn``+{S-BZI_tH{9m`;MZduMSUVV}nW+dkkgmXXdA?w{4@8fU!S6)#wwWH%zcI-8_|UrxbcmWYl$OULj=um7TV$l4xcYm0 zb8I6!Ncc_8ZJW;`w@bM@z}+Un!NCmlqhp&}dqGuaLpqrABM94DCou1-{1?Dnd-<(-cl^%O>_!6XbyCNea2nnI5 zc1qOw1CEL-6Qm1jHw|@hkoX_mduJv7DlWBcBP$rau?n$VN~Ws|P{K+u)L&kibu!v; zga6&7kIym_f})q?C;x;w<4Jc2esXdtIi!*)>r(%>8~<(C4R8H+sjMn_U=R0jMJPvq z=Zl-Q(t*exi0cotP6u2?ePLcjuHKNo#<~6Vm&d$UgbBGaSheIke0QeFw zJuNg=uQzJj287@8N;~|N`?^0zzUKJx1G$4Rr~t=Nn60F~KxRQgn90U!yS%WUfOqADUs`azx^g5mdx-ALM~sA_ur+ zR?&~_DKf_ZhzD2ySMYuKt}gJI*melcMC4I#G1oqQjU_Wc)P8UCD^-(w;>PFj?yv)q zqQvg}*8&$T>EhZ^;GgLEERuHbT%0le;6=RMD2|>u=IQKCqCUL|lzS7aqNUAuO)%5B%xhJ9YOS9!# z@>fz9cz)Bs5q#(~olH60u~vyf>DJH4?2~y+EFO1chVCH)fz zjbJ{pHaa@+>FuMdtDDlsBz=W~Z3Tm}hC%4TkWvDJf`cTJp)4je*)VMx3YHuvV^*)~ zjf_ef%5-T>V#3sQ;D{K^J?onJwy+{Hf!B=C61uHgDTX#Ldi65)^!|5q=b|zYOsm)8 z0UC83&#bSXxOhJ^2U~bULj!ekE-;T{*2&&U-2ZTMhfK=H2RlAK?&#)*s_lXf`Riq) ztLqO;75jIidT-{e%UBHb`Ytn7ENT2k?=a(NZ)Umo*Trl8GjWo_TfDT`>ZG2saPYq~1Yf%jYIZ(P$7o<8 zUp>!<`TiZqCl8ppx3;ww76*=2UbZ#1NAMRSo*aIsgLS&KMe3(3Gfdn6He$xA44N5O zmWdIqleMz9$8`FL*+=f+c-fgI^lPh)%jJ`h+ZSEMy9s3bxI4Z_wX$Cb@x^8 z?_T5KSIpw0U-oY{zWhQMfY}XoVJTSw%OExU8@!yl=A$=AK5$_7so<`0qfue~zyI)h4GD4L1*!xuY?V-a;O z=&8rc%VoNc;He~)?_77ii=U7us&6IQy9lpuTth#;v|YPUA6iS4RI+uVHe%flSXfIY z%&Sp^xT6EZAJp!NVAJfgp2B zOQBG26;o$+Uk=s;vID^E4A{ho=(GX)b_-7B4jU0-P&GA0HQxnAkBS zK`M)Ztx1J}nL@(8Xm}qoBO3h5s7Wo>IBg3Bt~E#LW#mAcw4zxJ0hKCIv*h7m>hD2e3%-^)mN0b#!1%Rb7;o(|*tw9Q#whBGv#@ zUAU5g0V6{D;>uEwl4q_UcPF*ym-0=#I=-XYK_M&v`N)CQ*Q;def8EBf;o=-D7pB{? zv3mpWs7A%l?pqW2AGLQ$UE>lQ0IdHDA%tG$pyuGYsER4>hwqj_QAGXR%{zqwo?6H0 zjDMHqS=U}s7$4+)op~$mt6v;~|3GL>nXw3{I7Mwi)jlV$P6mVOaowYnB;)`WI$4@% z)4+ges5ObKy-nJcJetXxo$>9#{{<;7?)FYAM``}S|7hV6A+2w}i5x{Am7hbLRqnRZ)8LJi`HcGUv*Xra{N=RVdSCGF;v6cz6 zM?Y}YF*cL?0J|aFPJkPXg1^r zQ9P6-@ef6`P3$WHCJqBOU2AbvDKAv;+RzQ@lXvgswu~>lAY*eNGaohyL8AJoT4i0a zzE+9aPmZ2C!$4s~Q7ydm?Y1fWO*_9k&#V3fF?*S0>SOEv<1HI;AC`-6rk@0ZCS=(h zTgyO(2nHmN0BP&hIj*U?A)du0RM^H#SzS#Rg*ewbs=fMj7xoM5zNyqv6zKLqbKEH zpV)S2N88rf9%;y7Dt|YP@z*FLB0(Plfer!i)y)81b$h_qoB(e$Tv!+w$NQm3KBCR* z(FrE%UdbmxQ70!{NU<#&hef_cK@OUQgNB%Vw zG4x0&i=k7etF9e9d#xLRfQ+gw69^&rS4|snaVW4PW965M_#-hOp+!WbaEd{9bmF0Dn3YLQ-4(P{3uqniw0y zT(^n)5SN#YHGLDWcs59Nk67z(;q7M@==}Q3a}Nvkv3uh!%gFrlM%iLGy+u=Lc_|2B zOvNjL`L2_d2ZllG`XqOsPKV44Q&Il;=BZ=76Q`NhTfSy@?tG7>tlKl9CX zOMr)+7TcZE@VzX`$PD((eN|;8CMVG!_3~mW)r(gG>_aS_{3Mxc`h4sP#I0wkf&xok z^RF|A@9byL|IW^)gI-GpArUt{BDvh(Z+0nS0w7A?6}%vvOR=ZN^IeSCV4`}9h--n| zDu;U@H4UEl7g??W0^JMG5+?V@kY5Mx#{6ywn}0myxAFVGR){P;?|TfgF9Gj6`bO z2P9YX_@7|5n_uCfrKC?^!ZmT+y(GJ(IJ0o&D@(gzyIQ{hx)b2~eTIClAo>ZLi;b{f zhIk<@%^MRgiOQS<8`?(5%6nWpyd-&VSH4nbQg!F%rU?6*><#dJZ|v@f&y@scjz!+d zQ4Yk^zq>iBmH2njb5U2~Te9jY8;dcmiXG;*TrC(ft|9~ zA795IMLum3?=-?E=xD||!I|$Q5je50bQyXEA;`-a)@5cWp(5IX5<7PD{^B%3Y>Th;M_Qv-08^3Rrb}kle{c*5 zWFVR!GAF7AYt!ezPV9q-HooFvG`}}qE>TsZxKRF!1<(U9_tIg00654rFxEOeh@MC+ zOVF5)K^@_|_r%$1s7V4d6W`rx0*-7y)5dRki6q>!p zfd-3sshc-oHxa08Jt#*`vXCfvm3b#of9%T@yo3b@0b4duBkrz!mOL=Sr=x!5sDHma!-vR7 zIBSC#yO0E+L@&HF9PvQ>q@qqGl-Q@g-g&YxE5L1$UruO_*f^lz_Wf~^7u-;j@^$7j zRE_Zco?yEZq$#S=J3Q&xsi2;}!N*+D{gfi}RdX$Hj;IwUDRoQ29GSGk7T^J?1nH$= zD&dskXjlrq?#Pmq_gRlbVk;kU^PnvV(I{YdK>&p6r=aNSKZ^&6$UBNnjJY-W(kG&K zk*!C+VyM60Z(DGTua=>Uds!7CX#bL1I9O*WIqlnDpqpG{8ccK|(%N!}zwE@Cd9{$c@s*VaX%60Rn~oCyGhhvVIL3e7gO=J<1~9juML9Ka#R{2&H?#Q6Y#f;C z!8c|*$ow|4bhR8M2bPV_LJVGji`0MC~_iD3?=7V1PmfspRmqZ>|+BfkT8SNJSg39<$qJBSj*L9WH{b$oq|DUz%%?*%EPLKe#a*j*Xn_bUDR$Tc33ufSe zkO%{qjmVI*Mq(%sw1Ds-xq-92tH=hD(Z3EjWHwh^a8ZG zzX3o2{T|l4jzuyJ_rRHNgYDL{pzd=<%Y{K|W42fc#1=KFUFY~zaiW?6QebhG5#?ED zk`fPS$VcI$vK5fRAX145_y;`6$>~5fgqQD5(}r_J&kx(48a{KcWqP32bZ?5Z)nQ8| zfvh0hG&QEG3J)SwBTcZNW^+zB@H<8afK&5@yYPA0&Rsz1h3d_iwjUVx$*-twlj|vkQzfsF2nRFPOI` zC?5(dZecJ$h)Q4R3;8~Pu%)cfdwZA9)xCaTV0iqqNXAF$E2YnV7jc8|DbY;Y(O?Tv zQ=vDCKW{42x2k!s;mzH{u!$MGNj~bqM7lMwxJ#LoQ7s3nsJ14ehANDIx3gBs)Q5;| zx63Qa+!t)8m9tvjv@@@RPG7bs1bcS%E$z3@Ec>b{)EjKfq^zxp2*!e^^claeaI;b6A8&mStrxj=5c;mo*%Pi zD|enjAkS;1B9DcqCb#dcjBmtsc-3MUdV5+6Oi}3sy*90qCkUfk?IX~t-2Tuk(F*JQ zVPFA}WWINCocam>;%|TXEhj&6pYtw_55wFPiuw+cY}a&Q!u{s})RbrGsT8r1z82g! z%rK0k$Yg{08+?MD5}qRHT=u5Q``#($rong6;*!{@tgBWD#Mu25u0h7f+@b8%kTO=o| z!N^{&6SlY{B+raJ*m`HSg?uDG%*sEB4+0MV*>X9RAu}uDkCx}XqOwgO0jE`42 z-ZCnRhQbzrdh#agu!kdu*xsfV3-%)<7?bfA%+hymHQ^riuPJyVHe zKj@LF7?kajKWxTMyI#j3*So@`awe1}HjZ6)>%ewLZoMh=V-6+BSb!6;JU7+D)+^_c z^?wsgLvGR?GMqMYwZW<}DE$Q8A4!NI1_YZQDquEjnfc+j>&tz`u?QTPBC-&_i+x|; zE>fopdY88+GNm^*aH#K~KZ8t6m!@k5*+l1Wb#FC`+%IiNH-miISo_De!= z+jd_F@0~_Dli^YIIH-#Jp7poBBzt^eWQPx`BKg_)lNn@hViGj{s?e^THsI{37+zsm z*OhXtYx0IR70O;ZmoS$updo$raU7$8qV6LUT_KD6Tcm}TbQ)8vdPb9vV!{xfSg70o5?!Xv= z3e}Ruo;aqQnGrY6pT5;|;m>{;9st)b65{FWqEf$kS@DjBhTXSCjOpFvDDchb1u`8) zp;+w1Pz9s6lm+e8DJf!8hCN1)>$}CR%(BG@?=)vEg!|?xTiNvzbo68WdL<*05??<+T_97V}cYU z;ISEtNH{p&@p;&bD<}v$Um-4`IKRC<)pC4ci-{5ADvY<#UQ2^=P}jdd9R*R@^~aaF zBrHvJqfujg5@ZrmIUM4aUSK(dC(q^yK$YiGq+`5+pH>It!w?^LyZoO>-5c8A1t}Prn`Yw-IxqiFrg8mlH0%mhR|?OUd^xEmVt}go)N!Ge zBU}AIqAF;&@fdfxAYC3arC>?H zX-?n3*yZxWp(fo`JA>_om=S;LaoQv+GKk9JN%MVw^Q6wN6PxLG*@hj(M^^d!z#U=% zy;&N`22LCeLBX}Svd$$@H$rXG5z&R2V0ZSgN$IGQPOoH>+v6GrsQo>#|tXNSdLh~w~lw-6Z(qI zcX#To!-q~W-}bebWR~--Gfs$QHe)k|*nf%%Zj*QnuC8p0j3>0%2^tIrtfU;GO})vP z-Y1?^t+xZm z19M8x^C4=n4`g5QkVw0iD`YmlVfbPp$72B@l&mhz<3b8<4zu)BvtSz4f z>Ou#|lB+y#DOT5;Nr~vOk7souVPjKCQK+~>`dxPi1CtJ_e4hF%9X>B}YvUkpo*93o z)X?ot_j!8q)1D{aJWu5Yw6KUWmKh*Yy$&8X-stYwM>Mr?@wVEw(zOtM8bHn8(7J?NW>7!Z;pqDfr2bAZ<4KD+V4*) zDNC;Z^ZTbLaYjY#rl~!wqKgeo7GVr9Lv6$&aoscPl`L{`jgcqbggYI{k}S+ZtS$n| zRDZV#Wo`JmTsW#+h%GRswfdw=!a_hdS`Mtzht)vw@s(^JV_7n6@rS_g-gRi;0 z4u#zJungRKDz~ve+n5T)p?;l!6qT7kbD;C4;)9zMtiO1S8Af;}T*6r03s5bNPxf)-o@H^1Ekw5(=0V2D3K>#)mSDSVmljEcAbI?k8X8)eH^_ z6I|5B@9vh4Nt<$SM@#C(ghpI|hZ_9`?_tmNFf{sEuDWPqj_};Ul+R?BxNJ<+%Ui(a ztSwcC1!T`}HS8-Ab0}cUIjI@3wR8I3)D+!}%Y7?)lrm=cd$U6a{M0px zUHU*Cuj?t^yfv)K_|#F5f{h~-vDj;WI-<^5@(V;YL%_;RnmFPgvl07|ZcrS1LJb!@ zvdZ>VkrsU4q=Z^iw+_@I)#jiKtQNyr%uO>>p5uW*UeC?)M^ZC)&duEjGYewh^f03| z0vZNT)$jFLBH0;%9P7Y5pb}Zw@jw6>a4g17SR*jA6dFmhnCO?yjB~2*eD*^h@Or;> zZWU9YgwLIx{%c_JM0fF_!!%!P zmL@%CPhKcuYgJ}XKK~s1l@Gy7H(_om0!Es+KCoBKk#cva3OW`2tZi*S;w-byyYBs-@2nX(s+wE83Xwk3a z{%(LQ-NiWnz_-~W_P=;~%b>WrwrLv+!QI^a3=eNyBNX<98f1si~+-NKuYS*8A{~ZLb3w!aW?m^K(&`*fln1AsV^r}wCf~-;uO%2LHHu(9MRwfNKk7$yD!re4GCtE4<*2JFHW;~<4En{ z|6TTFaWmPj@{j*r_ONcA7ZXp4DjE@`C(=Nc!*FS`lG_D{h7%HAFB>8EElLPDMsuvx z(lVa909D?RZ`W#?&=|@xy8W5frQ%^Awyze+@b!7>Y@AIHVAO+Aa;5v*&K%?Z3+qpy zOFjzx0pG(ci8_E9C{i@GwjPknq|usKZ}aCX@u6-nFPBi^b1+jY!-;2tg~C%Rlu*pZ z$a&5H-o!~09c$diLeK^gsnuUfjP+*SW6)!t*19bNF}VvYH@}Zn05krfk1Mxr|<&AcX+?*s-Y_kuy#w8 zUfvGl!)H-*wEPQIS(0hbd)JnfpPE&EuyWVSRC?l`D-~g1Hm1o3&PvL+jZK1Lg~z6_!prSD_CniNP8ARvuy`@)C4~!L@KXW50zSzeK&ZS?6#fF)!H93i{ZS;}x{M@gr3Rzp6 z^H_wbY$zRd?>Is-aIg8ay1Dt87cBDccLgg4pfXG1hTgKR-6Ynz61YF|Y?%>@9>5UBsjusr3Hg&F zIb^sM$+CB2N&=QjE8jX>xk5~zsKgdx${b>6X8bzTR~DcQ6V}82j-fR$^hv=wO5~@& zLVL8~fN^oM43-wddHvK1Ke3_X&d}2T^stS>m%^2z)@;S@<^0{R;lr6HqQvGjZqCQm zz~|Qv`Jp%YE%|2U3^n}Lf#;O3DD1KE`&u`Q2j!l|k!_5?j7<$Yhhq7wa&aouNxoj` zWe@rtNgGNZA;)IB}SxwIh# za%nr~A+{~`W9w6DTs*ebz_*S6D66Q1Fd_K{*WTD$$!|hoW19gS5UdO?N>WZLIB4k8 zB-6^QO_fg>8#A!X@kA-h)zNO4H-JUuql$Glj9TC~O3tzH-#L?>kQJ1m-KYLG!ZYrAoXf_C-oixpa`R}qp2&v#2nsfuz2pAt-&S9B5< zzI*{ra<&9UbY-s*pP!|MM?OL~+_upqF+NKfux6)2&YU;K%m5J3No z6%Pc@RtB#rKmEF>l=66oQ!gD7tG^f8_AY8*Th`eRxp9X5@ZFBHvHQIu4`r~2=iX?_kBZJj395^H?nb`C^m14@KN%OPp;A9v zj?wtXfzl8~{&VqSoE#N>W6|j7IMPHUC$f%?=mbcLI}yAcC&n_0XV&uY0~RN!IYkYm z?hRGqt(f(3yxqu#f7w{=j;cnlZ3Y>sKYiLbwD98w1t>wC={ejp-R8$mzv>spGGWK(4lmBM>*x#H5 ze%-stiFErX@kTHQ270Rhmc=EHx-qJFwGyoRt~KMu=Z|<|Dy!_5v-DO;d7_f$CPdpr z6MbRM-YJEkN_e))WHy0U@0~Bem1SlTS`xUVm(ool;U)5eZj*j&+d3@G$h!Hyw@{BW zKnO!ONL(=bNQ{f5U&8TDB*ELcE~X(F+zvuvlXj~6kCJ~*zg1v)IHlzeAB`kPM{luz z%pPYEXt?#qdB33yE8|Ym%Vgkak$v0f6UO>|QJc{7I2mcN4P`+&z|vZq#*l<$^y-US zczAfo@J3SYaq zhUqHl-Xm9-o+>u3(wcm3Qx*b0h*d(8Icy;*A||x>b=Bw!BAM&qt+pMjP~D|(YJ}j4 z+N1ZS3?stL38KZ>yIEys(#l?JPWl*M-q73)0vgWfSmC5cf$F#kW-l!2}w?r;MF725qHQU`U^-P^|E2t?bx#|z#zXw*z*@YHcx*x2uHL^~^;o1v(+5$KYp;^AKNldm@QuVhR=S6`Ur)y#QCWPlTtkf9 z%Hm19Z~YB;BJkb}tWCp6)ZuZC8Qv$K>#2y3w956_ejzf!oZQR)Ux}TY70y87lw!W6Y zAWO7Cq{1;CEw{U{G?(gC%)n$hu%l_fy-@NFf zi4D8nwM+teT?Wj{OFM+kjA>g&jZs@CE3TdqJZXVrxkk``W!v>O^48@`cesgNQJuf+ zT^Ol%lR9^&6^(?AD|$Bkil6w<0Y}L~YP@5{Ivm(PC&w>!Kf|-c!EF2%5X5#}%=@v( z3BPZYYk!Tee11E&w$l_9N*pEqB!9v<4fQav(GLO!jHc6GJ_X;m4;r;N^~vrE-@M3E zOpxLRNi0%ye^>W-3;tZbBy#&zd)!rNuM3>gSv+(Zq=O4;zXT#ek<24JZeQFYpcoyO zPHUlF!YvO<-!<$VVcZVZJsveRL%k{*^dICTk+;nK=u=qH`hyj&cWVZVnD; zLq9SPZEfV7`bUxNzFz!PRSnGf*wuT9UZft}DfzsPkhoI#e>=anD+;j8&Z*BN&kzv_ zi0)m&6zJ~btTz{lZ!(q=+t!xhL!7VO8;iyR6!EYJ7z&t;wTxGrIIiMvzjoit=xENY z`yh!7mM`(4A-xyCu6uu0;2ih29jG(sC+<#bq)}-%aR(DMXDbQU1RO5gv3n7_b8i;uc?%Pn~u#+<_gnCZ!T8}iq zC&ghKOwnYBm8ZE`Zxnv!%McSzTyw9KN5L`xp zVDh)9nmlrTyOrVsX^6&jjP(psGZ(YhhzxW({%5i?8vA2E6>_ah>yCJH>t6ZD#jw}M z#4Q4Vd%bx;$2DKz)))_Jh5ms7?AVI82jCtQ16Sdn)w#d*T^$*tx8V6#Iy2bFF_D)SVU>v z>#v$4OajaBJc0#363lX&4NQ7IA9b?UVFQg34v?OCD~1Y7q)C z@h+lCiF=1RIt&?s+t+A^G}q0){|3Ka5F(uqO;KXgH?-rIk=Sg z-^yxh#c2N2D(3m$1{J9HFq_ip9SZI29=?VFXq|DH?cjQZZ+K^Ddv;Tu0?Zs7En=Qo zXq$65L~(uHieP!!n-SQwO=U(j+?3GWW*jdSh;pAg=H)%LA%;lt((sB4qTe?xyD-6? zsTW$fHqQ8JE4Z~WO1(56n^AcyTN=W)`T8N zVOjP!zZ=a^Cd=gw94m{Q)hq~X<6XyTFi7Id*yYzEAiqc&0hHdq+Z1iBt{k<}Wo<1S z+3*{=s28HnN8?%>HkA`c^z>S_F)&P9-pcWLq-?bPVakN`dn;4Ybut$8Vf|r`m2DO= z`p4N>_*3@Dg-^{+RYh&b;WrhhjYepKUe3T&Jy>(Avg6DJO^fKAe{fnJq`z>tqp?qc zHO8nk3{>khx*|RM9o>Y9R?sZ}?2DogD^n{*(UopJ<=B5W4@;pU;{=yvaVGFxS6hz3 zfMz;Wkwo#Eyr_{V?9cdlGSQy8Jn1pDxET&~lus>bUbxqEyOGY!lP z8gh1dkui&q7yHlF!nV6K!Zi@0$tnDBG$j2t4GvA4`e5wy;`1Hrk5CtOdQ`8>w^`b@ zxMSN;Pjr6$PGKPPmHD^K^ZL6QdKAI~%9&B*Xd`L;BdB*)Jj{BB(Om2+qmxPv4`pq* zFHQqy6_pwek$S$7K86J)$ow=8%!7=k#B6iG2@zv!#*wQyb_UQU*D(SoebFB7o$U1j zr~?;81$5-(?VIofsERGgGn5uP8)e3^y+{CTg2BcHab=mDwa5qi_j z%jBiA9APs6_DJn+lu5EEoo8cWdH*!@ zt9QX6g-@A>=e3UqheuntQ4ZQE!pkx<<0{QuC4wt z`{o3{F*R(RH_#*{JYR2xcpo`s8FZ)u;FP^kn}$QrIXEh=rRw>|!n6z@jv} zr-Anf5S>o%<6ZErk+m=WPawGYQQgx$jdE$j2+%%yE;rWVva^Ff{K5HMwn>4+?Rs*g zxii($1)Lu`iAO~(#t^=YrX=&q0`iMMB|>iSN~`%i%$*w8wl71=xE~46hVsY}px4l1 z>z+nEopVCT=$Tgr#1s+ko(s5x1K1QF6D-DtMW7_2I8|807G5`6PNcqLEk6bj1CZXM_K(B zj)kw558RfRVARmq7MsMSOo#D0v!D_vtO;KaEI7|!H#NQpO6w3f*NP>o2u?eI*y{v} zxbf3te{>6>Z+$k%HBy3Q4JYf9*Am~n!XG#+Jv~lfbYZZ>1*2v@Fw~?@X^|bm1g4bV z6PpklC7Zhkv>G-`HONGKd}at}aBz-?{5XP~3`SdT45HZf>|e05s4DZl;&RD4AVWy5Jl7b-jHI**QA; z%TW!*01{-mz&^)YxmNDFG=g2a<3UnGEKq-;P^;0sI%~)X%f`za()vnu|9}kq zKYlqe*cI0Fc`7tB%j*%*lSId`P}g>@{&fkEkUL`mWOH*k3EwnsMQG;d%x|>{&_yN! ze>x+ugzL!B-xw=GWMY*T{1ycIfh>g z%$-iynJd$t_RLbmlu^)%l+$=x8S8~s7{t=%5LY$sH`G}!bifs?oah^9#N)?85xQg0 zr0S7woxxSzXjWMYvI*q0dbl%1ychthe>uvhpk+}B->8^;JVg+(7$XsER*CeVu~&@6 zI5zYzNr2Qh;=H@mu0T~(5GGee3t8bN?;(RRyK80P7xXu4{6f;bVkqqwclkbcPL<5R zQnq6%283j| zG$T=l@L4R5agB_XhNKbO@#%O?$IyX{6GAkrz6^p%x=`T_AmiUz8Gp!0p?T3;VP`2* zsNZQ?3o8RV#Qdm(7sa~A}oGb2|#_4m|k#i|V4{R)gdK54i5_q?<_RzasQl8v$C z_g%B^G-_>PJ*2btdx!ONE^WpL0|s?M+!6g=ORahovXbS@EMJHx7q5Y(AN4*tIf5Tw zOWUrK8R2A;+O39CzNIkj5H&91pA!@##|lhFM6AB4(QJ<8l=#YT=BEQCC-TRHxF$Mo zGxabT0hz#h_mFN3kBa^$ASFx&T;lS1SBCACVlQ(V7cY*SXCBwnXhYwy*{x!Ug>2Av zc9wbmHw>2}U3)WmY>|g4KBf37bm2353DN?C5={{6^V`YZ$sY}FoD97uLBY7KQ9qsu z+xRbNr|`msFdiZI&NMHbi5}d|hSy6kW_hVfyWzRwL3+R%ff=(`M+c&@CJLGsi7=P} zYjl6!v$+a0d5^`)U~57L6XYfn)B4U;HGeP6&k7Ei=a*pqOO#;8*ra`*&+M_&)8h?D zHUx)l=0#u~nfE)_vytDrkKa80mcKO)gp8idNvxu6yzZ zu~&1bhYQP{?tzM68ti+?KkV_?UP&Lv^<n+@&mo$_be z&<6^#K;JtVSp1GA9?+&sW6h7wi;t)Z>WHq?jm3CbqMf5R-B`I%)j}dOYEh2`>S!#DnKNk-h#q4?((F!H*AHIJ zfnBT$(Z8Qs0+4)nVe?i_SUV=5&?V2FRi_ho5qOrehz!6d?H5^)UJMya|A|kL#%G{tRADm8y`9GHX=u5n=K0@T~Q= zWDN=FfBqLq-oBjsT}0EJ^6RPR(|P~FJc8Hbz|Zr|7DQ9iVsoqCA>w2`cT<7`k!ikf zF?vRGgAaBNPJZI7QSq~^{BQT@2vl2)px0tJED%;9WP_=;|AO`^h{ktHN{iz@!<{1p{5cQ!N673GPxQNyr|C?Wa~pA;#7 zIoZSFB|3D5J4oj#wqt4*6%g|K(Hw^hCD&0dpb8asFcI$f?6h}wIt=lZ#{bgHz%xq@ zdc-f5lNG#LD0*{nlSP)YA2UHYlZ0P=JzDpKo2ue94o5$7C~z;?#0mXcB7KKqz_t1Z zMV*LkeT2DBj+a|YbOXp4k(!y66A@iUjK4_$>|@MtnL<)bYXp0(?8fg0y+j*Aobp_Z zn-JeR`c-E|2)DP8C2v^L8q`TDL2ajt)OAx}U@$5*1&q~);|L{m;z^qf)xw=~USwqC z%U7zgpYF^Hn2$wOQf9PE>j+rC%R{eH{qr`cBC*hPIdT$RT7OTeIjYhCWo^`WW1Xqt7wHsV15_YGnt8{(0 z>Xm6-C6QlAOaucHnr8k`A?vKWt@Of;F{ezQQI|RSXgHLABdDz&24BgsynQ~=pQhP@ zn4Z$VTS6hzBo`H{PnsPa5m;pv0B*;JZPxxPXUG`UqqE?AokUq~cVAVXdwhxDKv}hh zmD8Aq=ax!qndU}>{;e8*E!UDPFggyw$UB62fupxm!?gn0Dd_lj(u(gvw&>Y43g^m~ zf-W7uQ8ieyjtby`88n8egK`3Y&F{aOJQ(>mWZ3$)UbZ0iolq6iGEyz*thk9H3?Q*RHG4JnZAto(2ULg)NmEUw6j4w1I6Wa+9B=-Iv+K z8eCcxh}%`fAYMk_>04wJ-NHgS5c7D%d+TfKWa2t4V#3%hU0xhto($aVmFSz=`0A=E6OvT`fEC)s9}RSh z1_eRc%gG(Br~gfp#^z~x0T^3>P5-g(pb*T@;2&oo&VMnOVI!!mA+Pb;r!f8m4ZuGElyPj|F-p; zJo(|ESO&wjLEm?ow>edl(bCj~?JXRQpgOsbrTGR>ddV)<4;6kyb%-svYgb--na{>c zNZeJshRo;$B!EoDkBbLJei%0O8H5KTFc5uGe-iu-@ko71INlGwf~syShBKgiuT=xT zj#wmZcPWM=XB}{EDyS}rG*kMAOQKme!}dKALna#s4==Z*1pD)5Y-_hf$Q@TXK^ZXJ z#@t-@J>BdI=c()t$Dy~Uu6Qmn0>vtl0QRnTF;RYcX6Czst{^RKnVtS83_`tyw{%67W@Vva^R;87ssJo_yi{)jUx~P}B;><48|oSFj>a zKZ{8<5BRR?#;r&{Kfwh=XcO2pqVkRr1D*l3C}ZF+SM6Rs33vO=R(B=!gQ zR3flBr=cS&YNB?E4x<(++mY1`Dms3IlafbZyyCh7PMV!{k1u{MV6x{Yv{h2EQV?|5 zwb%Zu2}eh`yKMT7xUL%+4LE+LD$w-eQ8i+ByD*nTKZJHpEoyOx(jPdtjC%qAh8R&8 zNLj?dNH&<#WQnh3L?!ZYZo{SdTW3;COt5IcbX;*0=_yyx2lgr0YC(t(hiK3V%F2H* zpY+99zz_5Z`( z?s3-rlgP2_^^20amKZ5aN2x92@ro$Pu1NGdSMwTl*uG)mV!1_ z1Vz>}WwQdcNEyK+BWpm?D3PDR=OU>$rmx0f%601rm>fH87>Bx_X)IHjFw5y(te~6U z_%tCx4AW8y;!({Hn7`)F5h#=&?;cr5bzv7rv;HG7WjhBR+~&5S{#lf|<&z=d(|+JK zG3Azs@uaWx1*kHFlulW%ELD7?P>C>YxZ!_aDkWJ%#L^IHEb&COgT6&gP{*mQd~xq$ z$sCv0^q?9ZfVlnk<%8kPQYyTt+)m8w4dZ-VoV#Y^>meDbV6%2;@umUrb>i0wy5u$+ z8x(l^x)!5U5<2jAjv(Vh5LO#tDf=cqHtd0B5sqWh4cphC5;`6UxH2u~ zcK(8Zd^0fh-#X$VPx!0-Fw*=D9ph6-8*F?d$T%xOoM=k zkoK+v5CQ?d#avij_*@v=#R*+@SC50-2f9H4PD5vn6J~3d&fyCYsK(QJ(AK%SZZS4%u zp}f0AgT=teIFQVMAD12X1z^-$E!QBSqdRmGdGh@dmkizmFkb-uWP4As&FvdV^Ym$> z4V$v)U|eOZRsc5{3v1l`^L3u5%9sMIv$>Gq?eQWYu!9hCySnp{lQ^{7Q=YjyoLSV$ zwJg6LsF%*lx=1(m~{~Idblf<8oeEllalT^V!Y|QF|O40v) zuiHO#`($S@vWTx?qY8{0+!U%l-i94KpTbi#lGG4gnK@tP&Xsb{y$<|3yVl?z?>)=>!<9e<<8Q8PC@0 zMXU$J!SV=}js#{6V*pCJLl%Nncw%yWgXIZ@8jP0gc<{g^JJr&h}6t$zIFMq!Sx}T`r3>}pasu(>iL}hS@&-7+5 zPUu?oEPxtfx|O&RNFT&W7?9~-v(e!Vh zot{dlxiF57mQSy*!;p}$zar^tlS&bwZbA(M)IqJ-RpW)3cu0{`sDgN6o!j8>KhzSWX z<$pRycSOS?_WlQ8jV}PZaB$O>Kv>S_eNxNpQu{yA!eW!%p0Ae!dV1dQstXNXXZ2F< zFGbh}1_qt0C*?Qq;Wry@wqZ1 z$`$DB9Wye+iJ*KzSErV&(8KNv|MJ=d@KG}bU2%VLQuU6^5TV0SMteC&&_Rb`ULNhi z0>#z}#f8O3*9}7hvA7Gf=ZAbCa0T8bit7I?WP!|a!F83Dz8JPy)utAa&vuUI zF-W=%FXa9%{lWs8(-91$3Kicrw>Bn6SX^D7TE6i4PeN&+^1W+2QbxS4KCiE>2QD+O zjd#Zu)gvuo?#Ri0xojI9*BvJh8LX@|OMUPQ_g6??if8#!sN8oAJKGaE6HZ_ER|P*2 zw8KQ1g6l*zH&SH0rFP4#M}N^jvu^6fmu~Q*oee2PCBIB9TAv!9zjMVk zvUzM->iLj>;u?Dh4U^@1&M_?f-hz5>tptOBa^y6RD)@H4(??G4omIsvkgI_D#WS%1 zUVFuJ^K&7PgbUsYk2BA`;_KVH^y##(=5}oSlCh6ZaVeaKHz&%d+>M+Jm^PvK^F)i) zy(`SMegHDQCt8AcsoLgNI9C;h=&B7=Tonp_AVDqL=ohR(=-($eOiNsmSqb+OBi(Fu z1w<52k`A_f>w$;6da8H9w8!S3ca^Hz0+NC}cjZfAAXx_jV;J7wn;?rjRQ_Y^U=6mf z_s-4*zt};23??v5&IA5_%RKSm;LTS$W#7eOpcZXdopRBCgjV%IV{e@qhtRHtUT+rR zL0{{wV#3Kff(w??h^kg1coa~uM?#eb;pHq zNt%21HF%LvMMrepy=-w|=^dIW*X_jVCm-A1frk-J(`iUT5vp#4oatvkQLt(i;mz6? zFd^mn=xT?IY6IV?P1u1%*Ma6b0wh%e#ziTc!pcg>mX=@=;>5v2ECu1u>w_!%FIeD9 zDjR0DwnJM+Wb%rtqyr)QX=wQP11uzzP2WPu8eMLaL2`@St~;y&kdUbdI=Z^yt*y|7 zg;xH-!ML5=UWw8;{hL%&_mafE5!cs>$=`YGZ`m7*tqfW)%Ty>zJH>K{2CE2vz2FE6 zZohR(rw6FcyPMn0XkByNByltC{jnVe{;3}NGJ&Tt$)FH8e zOFSiHXuqLp4Yln`KMR`w{C|WJ365@Q_^dFBdxoM@IWmvm9NnrNCJkMdp4-1p|J(h~ zT};dR$&{34W<)guKAr9Jb1+LfI*{o=XHnI!1p`}kuuKgks9gn`BsWec0U)}r@pL)X zDoS8WZ^Rbgp=+=tt&5US>ZsD&P0X-=U-cWAaVeY&AFP__eCKU-8)R~Sx$YgbPTW(g(`idl2k znO0|+4tE``&efxp=4kK@@|S&4d>Vr7#H@zzST=3Bodq1}v5{o1lqn|Lu=0wu77BnKBLvKevNNz@i+T${cc&N`&a4v? zsxxbF_UUJ`e3CCd(;thBi>0^KDT!OYKUJ}?AgLYYd;G!oC2mOC>boCTX1y@CfuAjJ z%SDmCc@6=qaJ|#lIa=7%lQ7}3{F&f#t~}y{gG+K!j0=`2vv)-7i>G{?1ghDWR5K%= zqJ${q+M7*EHM1%tpevYPP4-c`M5s(j1;4=-B<6Scrcl5u5JbE*c+FQ zR(L3_Uuqlh6-@y3P@=VVX_DzxE!(=Z7rWuhHHX81a2=^rF%*K&klPyT^t1J(5JY!I zMn&#JMXcB{Xf;8?MTB;;WdZS6yb?Yjw-gT=d$TN#WX{4lL& z;t*<+D16STbH_QJ4F-b%sG@a(_lGE7HPUcy9XsYEN1y?QTx`pc z;gnFCi_eBq^m!Fk@-69XSkW-fR47GHU%yu6%N)hU&@W8fcIbRJA2l+&$B#ehyC6r7 z*r*YM6TxULce;QI0{a+8W~!osX72TnfIK81+R>w1tr#75{PD-oZ(LD&N^{GQz+2*C z`3ya(&6}(l!uau7CCR=vAH4*A&A;bRTVoJ+-@1rD zxvB~9Lcj>{LI`i&I;a#?_3${qSSJeD^s`=f2#vs38Rxn$@H;nt{^lESyVFMWNQC5$ z-46s25uu!(Ogvm6fRjO*cwg{$FKkW?CH$#&ke4F7@;dgZ;3%G5Lgu zpQS&w*n8Od;{frY_UOh>LUeh^PQ+$w$9a13doXliWqJ;EJ82kWkv!*<@8QSOG|py+ zMySFFGe&YC4i{c8;OSr9-tQYyKYAD9DHWF-lH-Vf_*83Qc=%|Uxq|mDV86Mbw8fRt z1u-faNWqqL)Lv>gh{n@IHmt6C5C}SCK2(wSiizADzC>EkdrN|GyH8P2+ZvA`L3DNr zIwu>o{u#D2jgb5vTt@&4La|<(UhapEfnrwvCxu3)vZJS_mWKtVU_Wvc8bj(n2E7PH z{VnM39^9@q+VP0-#v6q$>y`6P2I=?%&<+3Nl6GE#@RwNlvf3@9 z0ecBJ_=nfj#zx0-ohM)5Y$3zP;uB-j{A$ zist#tf(vl@|M@{j%>C=r%>Bio;h=n`WuviVqoa|mx=FOev|7@S&t8U_bpSi2Ei49k zLTgEN^7%}_p|&g~(!xIZ@G9z$uhnfxG?jSghEymlLBl_NI%js3yglo{?cjn&+Ghsl z1Dt868dd(@ATzA9=Rqn+h^UOp!L!YdD7e6P`*fx9G(9hjv#|d0DB(w^*t?Bv)*(Pp zlBP}C`(UOG9x~}{H25t^C|EY?UlfgUc|l(D|2U0dRr%~t1?JN(axnI`xz(if-@_e|^E;%y zvVZ}0%`O|-z7*$y@n=#=rk( z-Nmn9SQwr@Qt$c@@VVV1285*a9&F<-uF}F_-W8_1m({p_tu3N!>Z{g(R*4~fjooSdehVM$_l#eyZraWJCi;XToXpozmyJnE*#1#4q zbob(-RzWyi*=fQEwT42daPxc=K^60I4I|dzpahC+A@|3FI|XHb@5Tl$D^C(@j)-3l z7jLV__UUfWw7zfhy|nyPa8WRBK3PBtrQ|roHU+%+Q6VM|!zuj^151)4@H) zM`l)d1S@5`6+LiTp@nBcaz6%GM%5Ws{L%MWC49u#6xoW@=W~J;S2d^c-SMuU$^R+l5=^Xw& zIGu>$aAp(4$G4pp>s*6^H}SA_90YMyvXI}X9I;_Pxr})Un-|U4TBPKqrRSHQEC>T# zp-;yeng&9%_Acmd2G19;t|cGGT{I2(=Tmr-LRWmfG?!$4M%;5rgWd1G=J0*>-y3z- zO*On03&r_Bw3OMo6S6Vk%gT#bQco8HKXR4@A^&9xn56)lSM1No!A;cjX#1W?W>*+z zvrXa^=ML`VEjU|GHvZZHYyosbQ)gwl#Qoz5OiF8VF*&r=BXrK8=#+05+**18=o3X@ zb$7-S&V1-|XPZ|+-?VA324DUnMZt!$n9c-BnMv|vrotEzLN;uEvQcz^r>2MLn{Xuf z%`M+WTHxTGS{9;}*GfhNmLi&8Ch6|6h~1^g$q>ujiie%a_1e@*@NVF$|K-uGt7|a9 za(1y1B=U6@30 z74Zj(jaCW)rKR5hs@?)bx3_nP{rU2@XgX<`U>IzmPT1%wEvOkM`uoW`Jot6t!;O@D zTW{fLA_KmARE(E%0NwPl?(r%cYh7%7J1kN5C4H&rQ>T$9+*zRS=)00LzgE~SzL6KMyxVYs`INN;U_1jSG0>BCL`KRm7q#GkTg_qKP1NZMK2bHW7HI}jQzyWm)ob&@e_hzafp(F@pGWwYr^biQrItb~e+mYP^%g4D-onmY1V^Ux#v-!4wYilhu+5y3v)BQz@Ueno@9U>WPyob!8^>1IHi2Z`{sj zLem&NUa<9QcPLr3|HR$*=Y0HwWYn4Nd91?5c>!3b>Tu~_~ODsWPUsxFsJ=HGrv^A#5%XO z6lyGAyo__VdmzU-5EYH^-CK-JX0)uv zD#A3Qo=zq9qnoqjm<+MP-esCEyN_KyF?XRQK^TQyOPiA4;(L&C#pxTR zG7up}?7LP_T~_PS4tZi*PS0}nBG|D>kxqj{ZujT@D*FtBm1V^O47)$M=KJJiAtYQq zp!dMHXiS5qx&$FMq<#m}8jC}FxN(o*_f%og-`UX=pr+9A=^JnbOQLzBULN<~^cg-$ z>f^>?L$$WDVT$JiQy4Yg&U+t0<@u0=U~3rXy50}O%^Fq~KNZG4-(p=+^*}+b>y<6VMi zKfaw?n1D=g8%c$e4C7v=zEWC@1SO!MaYoO%nOL$DjCaOS{JMPYqWLp05J1Ge3V)*! z&mtXJ2|oOc1xz6_cE+#~DG*`D!GS7rEzNDHpqncNs9z z!xj=<_m-gjLo*U5g_d__n(|;P>}7*G&cI4^B+An;dMy>VcVaLIk$7SPO70vmwM-|OS~%*>oUoPO8r2N`ASif%r!tFJCW0#jg^dBC{aih&!){S^aI;@+vz91WzJQ& z^8h|(DTzgk@h_%jkuWCD-}*L&z0jcjEb*iCi!GKHiVwHH1oDA~G!?G~rUIZGZI05M zj?cqQgLa=PJn{r1H!2>KpEgMCLf*b7{MAXu`Zd3>MN2t^l$8^BuWLAZ`p!CbtbdsH zFKrT!gk;iM83|mr0nRD1*{;KnPp7{S1J)flTxZ`6{REJp`nzS=`!Gt9H-CmA)77CG z?nOyL?zZ?csW2SB>JWm62{cbe+ zNMK%zLw(38on>rtRGSDp&{F@o;ptktB(LQ`Rk!gCi45xnus8*6Zwr4^#r1FZ#0Z)h zQtc?ddO%cVQ?Q0pv3HlI%L|g4*%BD~E1wsI!}+b)tNy2~*va!-uNtkh2-uZ_*|83g z^?}pQWv6HN&hN9Qr~g{6(4We_$P}PBj4j4zusbo~R(^Z}kKx>MvDe0=?F zsz-Un<*T=v{E>x4TOY&ARKEszPrbz;93U$Qt~K=eE2?D->!rTln7Z>y%{@uZtfA_g zO!bg|F@$xZB`%RT9KtSyv|)+dB+v>BEGJLi=|L0%QU7D$9PDyN(FD zVG6%BI)pX>v8s$cvkbZ$O&xF`w7Eyxm3meP!g}OTB}LH?+mnYsLoRpV?zt0P4mmTH zH}{F{`Ms2iF~ayk&m&HGE)*trNHGsGAFNgd^J>fqk=W;s+lmOW`NlK~B!5TM~mZ_#McphW)5`+Bu= zJHI0Fns)D9Y>UefVv3(tP*8yXA1C5d;V6}ZqVVrz46^rRdK{Y{xLc278^>(&zYStt zlj+T=DQw@T-8sCDFRJi~w#Z;PgU`)TV_ueLc(ED3y0x+dI=tIq3UCIewy>GH?jhDU zv=<@_RGbmAnAqr$C#(rml@xkb2jQf{XO7Q^#eaEH?;4RYQzek!$q-S@8VG88Sy4bh zdNH%|M?_Wd$3}BcPzw<=0hJg)DT?{Z+$6+y|8ESmvtJ9}H>tYN>*Bk4ShFd_cBM;U z^h}!a^*AB&=1_=WfNY?;5NNpcX9`O0?c@s{1}CCEkk;mx-v_2A+6Ca9Dofu=iZwEx z%*9wDJl8Z|t$c;gqwc%;yCr#~q5ZSCRmER-yEkqwrLG$S6@8&GWK8b5sgA>_u7%_I z&~!FZ9-VS&vVNc zOKI(6NitrlN|BCVHki?Hw!v(Gc|%4{mK`+G7oXD zDWYx~M7%`^Cq#XVrrEyWBz1k*^7~#Md3zucMVy!0-XVxRI_VSsHje0>*Vi))0SYJS z8=!+vysifJIk@qqve2!J&ZES~;qoM&Mw0@bEqh8x?*yPKZD+qoytY1Wi8=tP~%<{bb5{N=^3`Tv+Y3#K@`U|Zu(a2+H-uwa8b1b26L2*F`+cZVRsU4vVKyXyc+ zaM!`z_0D%rovQl_rs}Ody?d`-{j8xM=9^JcJLJ?Hs#;`^?a+-lXDy^5n@#(k9RVZW(tgZWMK z!0vo?6htu{TYL6l@W=j3H?GaIZV%oLuwd?gVzYK|U22>M$H%5NaWo!bKK))eY=~F* z562Z~!~nF*MLH+1MSr(W<1xNBzeZg0VhPp7o4$!Y{0+|wk900B}?ow=u;JfDxo>(-Q6Rzw7)N=Vp z@EFH(F9>=EZGJWHi{{Si(R8>h&Nwx!Y5(V!#g6JY(6;>n109*&fitS(Ria^nGb6>N za{06fR>YUGggmgj1YSvapq`zx_YQ@qbtQ}0j!d`*i=npITS4w($x_kXoxIZSTRoL6 zxz4cKpD=U5Cx2(vI8K{s8WGkAru*o4F=O%@K;}2xpWU_t0zA?^IQ99k29F4oPWw3% ziNp>nKWy*^VkD`%^Kx?h{_%1(B0VryBwHF)MK*)(j789)vi zG@x!jGgbc$Bf(6Px{9*@K??l;?+W3ln`A20OwumU80csqQ6#)8mpt9o;M?M-SP*S? z*2>2u49=j~6U*9%%^f$4m7`DR}%X|i~s^nOMlV|UzmAFH*mI*f$R zhGnBnu(_EE;2!G`?)(BJ3tl(Mo9kHwyHf4XxEQ_DQQ6>YaafTJ3M5_V4im05P@smM2Qk*q0Pt5 zQC4EdczoWg&Zz{$;lTk!C86IkTuEKcF$%dcD(g!=Lj$&o^KrG`Wcp1@(hi zXlAVs{zNcXfbV%mtUZ6fL;$r2TO6imPQfp|_R9rDKD^q!afb)kWRV z8GVxMyQWDn;SGAzce6y0y5WR0@8UTwR+Mhv)mo`MHhpJAj}af8{R1-mwy7PLHyVWI|H}Mj_1{cTd`$n68qnt;i6GFldNHCcilH;FK&Rop$ zVYPW>(Z?)foISk;ubaaSBp119wF|g`%29pL`WyqPC zd3k4}Q%u+k|BA6houk_-X2X@Pw!vUloEFCV?5vF5!GFa5UH*+fx!Kv1!&x8}xkhUo zNGvQlU!Bgszc=`0vbqcn$5(o5>8SLi-fk$u@%0$AQ3ZAiQEsJC5IfdOI_d!g zlmMGYmGLtD=Ft4Nzq@%HC~hX-5UGW08hUYn^9yPUFc2Hyb4cH+kO`WW-6|aI7Xz~o zTQ9tAKXFWw3|3YWe-tX?w(<*jC0f1Kk&lW^e4%e z1T9YjH~uP%XF>-OK*Ek)qW+!nDTQn7<^ii zpP|b4H`j=&+wv5XFu;mAUY260vp*XYs?yF_zTMK^P_57e2-lS#XE1y7Xt%0+kvn}Y z3J$wI3bo?j{$$OQ&=kEF=DWJM&h)|2+)9@P`^1{D|M9v)W@cjnxrVC1yI!Y~CIeGq zVC*5yXr0;cEGt<0Mt^Q=_K{t8e;XOzfm#9SvV6@JH?@uR4{D3FPoL>(dkVm&x^bfB zTd;OEBSw5MJ>j%WYp81|EHA;jU|!-$3?aWwdlSL2#T_MYM8wVWjFSekLl;#aEw0Px zushs!VJo3!zOzN}ad_Dot6y41q+8~ca|=(p60IXjmkS>e;+z9+&{D-l7#ms&V&6UJ z0nOVZ>hH(?Bt7Y&8cg$ot@bzqjOqx~CYQ8v^=_NSVMtp+yH>xuLbm>_g+{!pr=1Xf zC-&VijoGBeZ-5d^eqmjbLgd!{%~x1IKdrZ~u&Vfvf7Nek58OkLpSf!)Zin+Gn7b-!QqZ|aj)>gg(s3XMC*ku+6 zHv%e5&j-_ts0{S4l382Rjj}O_Ie%vpS~G%LxI&+Xty??z6}<3KzXn~$2y_tu{1$1a5G*W`iDeVZ96OQ@ygyz!x_tdYISq4Z|IIqk> zQua{@T9P+gq--BJ&V|g$gkAFA;re1^)!WgRmeEtUss6n(BeD7GeUGU_Q*Rg&B+Kp+ zH><8<6O(bW$qnzQAfUi9@ENO_mJ=bzSFC?G+cYo9jgoP81~RYaT#Td+aM;o|WiLEG zmxQW+mR%5`f6ijvJ?dC4H977O9L%J!734et5-k`bFuXE!c5}H74-$W1`H@VH zZLL|nVU>i9w%4Ow$QaGExVF7@mHNLSy3R(Mn}tVjKV~bx`%xk~$HXy1EPqnzMHd6s znD_Pw)cfrmYrFp%E(z1=G;~xM5aR6s)~P`MEZLDG-II=8-4~}q~PP}F{48|4Ns=) z^kk;=*pJZNFN8PX^#6_M+;&bZtrM7U@2qY~#?sgfy4&vBp`l8Ng+Cpt`0AOIRKs^) zyAJ!Zb|fF z*EaS3PQxSB5s%ZV*LM$j@cKu1+&eUhD{4rIU{jTJ3(wU3_T3qupTBG7oO7r~?TmV! z^uVZV!`mIf8LV`GL3ibpZSskyJu(iJ!R9x$61o*8IndT4Y(9vBN3z}AyB_|A%{)By zmi+widc&%qy$dt68FPk{QZkJ&PK)@H^V(6n2f5S5%N|D>yqbIiw`O2q)wyC0u9>CaiR5FD1DEt?l|C4VX7PP zl|f@K;SO_%6~^8X(-_i~OSgls?du*@kkYW>WyZj~tkP{SlkuA00Z4G`dG|T5F*pHM zaUfJe?gHOL1+=0ba`YeC0EK-&aZ7VClNb7L$pBUQZAg{{0+6Rw{7w4$={us`ofS@k zFNqY*lD@qwvl#h#pT!;Qcqw%EqId87`pReAr@v_(`{~2{pBG@r8fIFwyHeKh+EB)& zMlyxKXrD{ZnY?nGK};=BMV=&~M5kDyg=D_g-|HhYS`twbw}!t?zy_l89j2Nk7ya^5 zJc4zis+O?i6o{IBK6reUPn1}0{FXEWBPDH{c|>Z!L1!QLr6t(6z#UEo_RWG3%eD_Vx~_!!gFez-hq$-adQ? zL!ehrz}QfoZsb?vuP*^+?2T^d4d%AhFM)~v4AXbpb0)veRhv?gCHEYQV6UcM*g zB8xg#H`l^4R*;~eqe?0p7xJa-M<#}Go(el-)PfUGFi|s-{e6njHYs;=@E{x$ zZ^N90V|auS&GC2?sK#+`g;X!xw?9v||7x9@IkM2Y;@ik@p3?#Hbu?hg0k=*SBWjEK zY*zl)r>leUB<`|->sHYJhMBTUM>LSG+*-aEreYCW-r9oDx#vy+kr z47xwMD*xFSk0L6&O<~3(|2O>XEjN1VFmx)iwRnJ2#D#zL%@|`s={?m|m(VORoH^;T zVDj|FZ`@23B~S=NBJLn#NH9)H{tEJoI z^tf?1mdKK0xC=HHY2^J16)?vcrXwHC5@rp}2gw zD_b=}w{6ThwJkcwPeGLG$bNtmMBmJF3Mo!h4om ziXDoDU7@mPeQ2c>59h_u|!C33^;v$VrVHFZ&%Uv5>qLqss1B?ee?M(G z-h{Jj8IR4Y(6@l?|I4L;#Y3koXv0Y~R-Z*Wd-k|`zT5F+TxDqMifj>(SyWS}vk#UO zyIlYIt+RZ0peIm>k~W@&xY?n<4Cu7F4-lZbwti{YM{w5a@_l{F-R33g)F8pByIaCT zU!Ws!2~`i5Q464h7*y`3yP>33`Hw(E&fCxaD_WeYTNhh9>OO+ZCYm%;LqjAAgd=@R zOKOA`oO1^pknKb~#`a!3Tn(!}A^Kv4GKEM; zZ||3f=VuF@EyNS1snnh%xlv5ah-(xb!@v?t|H%+D&5Vr3X9-V2L{Hzk%tZPCl=0zc;2`t{u!syBXU*ZY6+FF@Je%PV{Sj^7w~#wQv0XHRHfYxrmZ~ zqzcNI*R>fO7z>L#v+7qO4-DkLiv|j47(wa!vDvdUrZ=w^1pQ~*Am)0{bV&GUZXLS% zrGuJ4TF28C>&Bx6VXPt0g?%*H7^%cRGmt{&y<632hr$arspRm1fsGAbN-^U1EN0E& zbDetWlj3Xj6gdRx7#6C^E{PXh@G~$nj+E!0Lp_d>2wLO@zO2EvND@=KU6g7<|B8Yki!~-dB4+J^B9cE*=*h(*A(kzc48Rt>x zFbCaZVwkJA@)NhV@Xf%sjI<_-LHT9n_uEY_0$mghupWzq5JU}H*cwYc4OJm+LzGui z`T`vjRboM%r@rY&SK~dtf zQ{0i%JRDo+XmF8}E5&#@uRm)?3ZlD8>e2W%Ly3FswM{e@AuIJ7N&pk1HZEsBoP{iFF7QcWVD`9uDA6uZ>OiClj#wn=hWRk8p))jv zx_RVh2kzSUIfT`^p5TXl@oCd=gSbcu16NnVhlfeIJZ|7-Lb@wxPwX8`OSZy}^-(uL zmO5HG#WlZ;Jgy0pHoj0wBSkdYm6z7AoSkIKZfKF^SAd}*du93U$Z zn_)p3%mnBKpIH2>S~T18+~dx0z(44w)D`J$k@UGUAYJT$9yh;-o#u^iv%=-2Jn!$V5! zyWHUBTE6UXL4l+5u2=X``^sTKewz~e%aJ6eA*u-}K<1(1w~aH(SYkme;-e$w1=xr z33qp+wpB^>EGFoJZFG+2%=K;~M(b)oUSQ7r<81J?+B*O4uYa2|TN7-TxpgC#HD}i& zsQwl@^f$jire$_8B7J1}?d{8^sO%)iQZ=`Whdn6Q4o0(om%{OWcrTiyV+GnFoAq4# zFI+wD!zC8E*O$_q-P@pc&4xX%EUiR#LBqQ>vJzH0`)LD9(7^GU-R8`52w^_8EhtQY%jM(5jyY1wM$yMe+O<`bp~@f_2T zBD0d3a+mjinmUC&fs!x_fBwuryzZQf21eGpFYOX2;qR~e8U4q)9Jhy_Gz$NlSsOlo z9<`A4G&Yksjq+*ph1zp$JiPFZ=Cyzd+_Uy0Ag0Q`HDNDPcKgM6pJFQaZ?l<3)Yst} z-Ti$gxHZtFeP#Q7%HKhXe|;m>Dl-Hk#yYG)3tXOCI~w7mRo{ko?BKDt9l86WtN7}Q z+pHGd+sVK@5sTgbh*;C`$VV~P$hSq5Sbs)(gtF{o9*tg}#ohK+0?Qd2$cyXp-InfE zc4-)UV41{oB`>&V08DqTbjt9f26AIx89Bphx-(JQ!Sm8y=b#VCuGyRC_QB8T54~f_ zvM^f0LQR1>Ixvu&@7JB<34||v=B4)k{&I;m4eA6=$1iE*ux9_UTMhZHw;ZCPLWGL8 zpEUR8+??lSWLPv~mi=8PlG_Z7a>YH2>}_Ke0B}4G(V90~^sOb$?Sg+;vTl!QTN1fj zW+V=DDI?CiqeH=B?_a;-;sUiOlrmzH#9(B1zlmL?vZ9Xf_|`i)WAB|RQSZ_({6IZQ ztToq`UOv>{9$1=hu^EzcD96{W=s?J1G}LO;5xb$@lW3H zv-;WswSIqQH3!|0;Wr*J_+cfWRQwHE?sa)3`h}b_?($Q+6{}B&C&G#QrT|c1}SpE!oa#K0@_k~P|8b* zNzF;Y8X6!t`x^K%>v{@0>g}S_aMK$v$ivt?vJ8}s=8_SUsV-yT_nfbLMAj?Wh(jsh zk*nhP`00HME9C2WAXMY^(gYP*X$c8VZRXg}%nDSFrt9xXKO$#72JRC5_{hObT+5mO zO-CO(@HNc*4p7=eN;> zNPLL>J6hhj^TZD4!5#j^rUj*fhqvtB%l`%q4L3o4ll!+CQP05hoT$Yf-Fj_#1aF6D z`NsOHi%!MK=EsDn-r{G`o(f}PUyvya=ql^tKJP7nj5f6HLMTnZcZaoyAv5TY?SOOo z&YrjK9_~lDj*9NSUuSHH3-@k#s(Q z;_+qD%dZ#a55y}Ug;~fGloOm?T*X&Z>kx<)iJ__sS z#j0E--iz4_wZGcPxxF361i$R#=(3!+Zv5|CuD7?UirUUym~xna(v3uB zmCj}Ah~bowSf@=Vd4K;<`_-l8#nE$|&?w?ndj~62i=DB7qO#{qxAVW%|53WF6=3M+ z_wJ{=KCYfWpRIj1RMg(;x;~TnYHK?rfwfLwsK&`Y{ij;S`fiT53I^OO*lw3trc)E+` zC8}P+l7#e_emX%pEN(y*J7TOlj4uV(vYYD%(m3~PlTD-G({STRMEfa>A;y!hW??c5 z4+Ca7vA&JdMZou~H+xi-PMZdze&OmLY129&uAQ|Tx6vu`AhSdg$9Rv(nl=#++SH50%@Od^0vQSL`R(}MzA>{2OClJRcu7;I>A?_Lqtq?oTODH+p%WS-`W958;}-|S3Dw2jt$8@ekMiMna-*O7vhE`R@#XGbP}IaI-+$>lK` z0ZYEP<2{G(tzx}^V&`WRhL=n#kKkZYX&2P-N;LXn@oTfXTJ$Tk85kP^orZvbJn5YT z+EN@h-y;Aq9Uy2@kjuTflP*Kwt~1SMb`jSJ3m8A0XMr7AfkSO>E<&)2rha_NWF{m= zdX}%Jk|6TW=e>Ln!U$c0?J#Ulg$&|2_X@Y`cTGJCaO&=M!sge93KU6**9%VrK4=ju z}#iaF`_?FN0cNvS`#*T#i z250mPZ1m9S=2ACPV%^p$!&rmkll|!1Ti&xkXj7#~GiU6{zBst1K_`W9Ub?#5Tbtqi znEBN>qJtQfm9^T{u9xXb040v-hc$_a$8?+6S+0LE2Ie^p{4*w34s>>IaIFFx0$E)V zUva_wP*u;&&O*2tNoESXyYKtE@^LQ*Cg6JQ`h1SS>hy^q;88tG@fQ+XiUjLjpAfOW zfa#pD=-@Qen$<>%ko4bcn=AIL*r{iQi7KPHdH!cb1s?n8)Ewf|lTSU67pfFG;=#Vi z^UL{N#LADmy!j!)h5BtB@3}#dPQ;`%D zI42WP#GoW3G&F?6H-p{+A^X)0>OG9I0Na#mZR`mB`%7@JM0N1H8-uvcXLpxLoW>c*o z0WtlfFGw8ZTg+|6z6P_4l%Qzf%TV7aMq&gjPWjkD8H$9Ep58}1sdiO-Au(4}QLtP{ z9WBXdtf?6=X{#K3yVvq>yeRzC=2|CFEDm@OMU3Yy7lk;Mfl14V7If1VK z2M3Fxpj^nDUwm927Yf~7R(An^Uz)r&-rlWAb^i%|Yyk6=c9Wf3=Or}^xP5ZUO3}Gp z7yVPb;Pb*H(o@r7@Q{h0$X~H_bTEK;8Gw!@4+-)_pgZ!piA-9zzv>0?^j6RyRx$}mWUS{-0Q0* zS`L(_;B!I5TX)!Xj0qZVc_XapK1LW=%()~=v{{&w@CaBz6o zM}s8_gN4Og@y+*ek2g%}@nAr3a}(%RxU*1s?xYPXR8@pXnal9qyQk^?W20}ZnUj4; zzEn-{1VhQ9;=Qk)Kk{2UFS`CKc`Fkb)9g)$E=Xhaoh~UD^kWf!FXs1F?aV?h8Q!18 zrTC4&^tiNnF`;fcsP)aB-jEuT$f-0>!uCxl10&1Kp%oqNo4%Ur--ui$zlPosZAL-A zm*CN~H=YW7ie|e0_hxQh&2ddS{RF`32*>BbwXcY51~EATqs&ghg;t^gjXb!<^E6tq zIvo{ELD!uOre|yu{pK=Gt3=o=*Th$8@8_!l>|a!2Abx4vXNNhYCjti4ink;42)$$9 zs?j@tbz30(on4Nn+`wg~isZ7)sbfk9+VkSsb-FW9E)h(%+C=jbKH;IddI!r}-yP%6 zFd0~02d~KeZnI;nm`;ATSbPfsR7rQ!Dm1I-UJL351orupPkql<>xU`_ zLF6aXQl}D7cV#7(e#g_rY_#~N^nZQJw%DS^IEXe)W9)JpM6jJTUE~{nO+*b1Y8Q7` zng&jV9{pr34-W{{CM~3WeZh^&6BA5>g6IBWotF76KTDZinngX--K4}19iB2a`1Yc zng!p4+w;1s7aC5Ju+*mP=Kq9-r_gBE8X$GN$>#|F2#fpUky-t933&_h{=$3~;}ZTE z^98CWC}O?suL$?U&?o+xorP6WQhIQ_hwY0V9G0HwUmG9Ceeziq>uDUb)Y0L+qu`4< z=@i%1(~WwV`uNjI!Tdjyf8M(B!?QOHi!h+=QHq)ZN+UHNE7DzD)-SBCR&U)}TU!gU zjz+NGie9$0>9_2Mhq0^fWROJ7ZG6uZ{Bhr@!XF6%D z_#c40YH&)#H!X9#u8PEH^uQbh?pu%T=ou^A41T?iEUJtR{IY0H|L9n@vugwAijoYB z0ntz7lJ}KI_jY&Z&eG4i)YcO4`5n?PZ;&=x(YDpw?qpUqggF8FqiDNODqCvF0`D6Y4P`sJDZPf9j8c-zB4C;LLY zYmz<&d)K@>-(NW+Mn$F?KabDg{!6|lRZh+4ReH zK$R8QU-s#E&h{3r*ZH1IsC-2(8g69bADRF1Aou9+ed$z3Lrsm)ve7K3zW4qr`i|wf z;f_owDJ8oBMHJv(+JLvxr-fL86YO8sw%#9vIo~?UI?9oIo?p?SRFwX|D#8&5h}Udg z(w8D{*B426SH7ML%`7w7Tj4EbI}g&nUH_{%z{A5Y_Phf{9uA;v)I+&5)S-*J<`2-~ zZ?sq+a9hfp3aC+$$v>ZB2>LsvNCr!u(GcKqaW&ufcEwfENEH&KW!E&vK&%E+XJe@k#R<-}(FYX8Rr)T-a!iEtvLXVOtLm8V;yHuoJ6DMM6i8BZ~GK%@@Zc)NCFWsu>%+CZ) zwum#|D9@}oU}_0@+eB$>@NFe}3tsjTqC?`5<~$zNx_|pd9W@=2 zih(%g?)CO!_UL5(03^Xd1}ytXVq2k5!;=#s^T(M5(-U!Trf5h3|IH0+v>^0>{RZcz zu|ec4hbA2HiTbX#%}CfX(2H7_xX_8P z$-*jOfy-!K2bEyK9ef+bs(#(AYKwn_?q%5wsxjR{V&gAMbSWuX+S*8<65hqtRY)`` zoR^Y9`c0st66deUj)FC-Pu2}KJmGyCv){CN3=>wvPwZ`wZ1}oPV?T72Cm?+BgQC z41eoPB1vSeKr&`1OAJZ#5dw5kKojay@}?KUi7u41d615#%+M@;>HZj)7snDrPM3E=Bi8Pjwp8Q0V%}T|{ zuCA_!{S|+{^bBU7@m$ZLoa1g(iR_iAmQ)d?u)J~EVxgtHs@lQ ziM9G|H-9=)pC-%m{loo{KWsHm0bHKbl+yQUXdWGMn&4y-^TmxEgn6n>;L&3%9#8+0 zQ1U+cYEH315H0|(9|E1GdyrAtgks7?@gD&^W-Xh%@2~j#D~XC+?edA+oPjfl|K|k| z&3mOuNCUymjAYU04T+xX!r~G1UHm6mpiZK*b;D`k;o0}Rvo0<#2bqM_^*pjZJwG-0 zKd(90=kv?pdVbE%GMHIg^Nr@OttzIW_R^PbRy?BV4=J(iZfird495#KceJKE`0(cI z=2n%Onj+_DYxV&?Gzq(7e%|9(b4x7BH!G_TG!isF#s+wcU}_V-{Maz0rzT99C5hO! zu@$xEkd)!_j^Djz{}K+~9n0a+QGl_Lqee7|S=wES2R=#@{=mOj2MaNo(~}>glXr!= z_PRN{j(5H9?Txq z=((Uf^C^w4p$xySG#{Ui%4j6#hKZC2yGLo2t%%y_nc3l0NK`6>`1~%m-`VM%7}hT@ zjZpn~{L*LGR`p=7A%Iqw;Ft+*$$Wz$gsSbZPmXi?P}*J+Jo7jm_-6{N6tY^Tk7{V1 z@tOP_AS`Z$Q-%Up1fxu}Ut1=gdjBgLkZ)n4C3k-CM&e?gk1%9+g~b?>_<{6K2^+cr zala34ys**32;wmv5FkUT&{zElEnG-3@BU!A6gX`YIX&}PC(!;n7FQYSPhd%_aouvO z@+9W*4nt{4Djj0ZjBj)wO4#HhvDuY>wMF|~d%6U_epiTeJp zsE?wmIp`XC@)QxAS%Dts!cj#<=Js9JJYkXH1ub=05RJdIpezz1!|IIeL}qG+?`P|7 zFjjj%)U%X{62xK74-UQ@g=0X8Bco1c78;xpNXX#;VfrAutADVSgbYnkp9eEPM8Ngr z6F7%IvbotKvxixqm<9;}+*8){Sh+Me{Z{3~1Dn&6jc+w(y8m1F*Eppz57O7O(~t^M zp$(?f%d>7VKTspg*rR(Z%`)o5z-sN!qtLjo0(ytkU3SUX{j-qC$GKSg5wdV!EFDuw&PQ5zgDsLQk%%EHVrDQc2SZ|%lO_0nX1AK?o}CnEALI#nq~gr zYkZD1kJLLo=J#je`h{WCRim|17hT|V^=EFRNE4lXG&G7Ne`zf><0ubWQ}I;p49CUT zd4zB~bwf51Qz6?atCCBGHV-8sN=i64U!@7Um6$^#bE8{Z$(e~`M5vX?<*RU|L1B@< zZ$vW}c2?GRT~CBf5`fTfhK@l1T}1jhjRX&40pRd>GZFyDX6C}zQqcM;=g1MIx3Ujl z3|=18#_rZ#n~iy>6d%+f3XZ~vsbeyFEfsgM1akPbtX=bp$1hPA4%mYu~vDddGU-E+k=S;wzY)m2q8CMKeeORbK|FgjQDKeJ50sGB-F0P8bO>q2CG=Zl{F-a5~P ziH04I7x;kdMd=KqEE_J1_a5QkKz^tSYw|GD^pGzzpZL^qrO~bp$46uu=zXcRyT3=n z;}Hy$Us(~fY5@XgD6vjEO~i$5eAR}5$^zXiQ&UjjwWsZZ##S<5!!GOXehjHUo*^i| z;&Z>?lFgR&H^vWBI0yra(!9fCm2iFe-?MqU@e}acLQD13#oPPmunhbmDp|4tzY&}T zaz&?u>#UiS zRtx4&Z{{AihG`(jLL8wQ^tmIaJjzKgtJ|WRwj-e*f|Z0_9a}W~3>WoWAlTvg6$Uo# zL*qx)kIMLPUVcvG;D6~`gwxn<$VZI^{2%lh{R+4gL}Jm|Bk~!2k>=Vcs2$hA0_a98 zEH48g?iMp5I~yt#`)_}kPoT!v%P%fjrK2(NOxnKCFMvSpPl2fyQVJGHM{q^sv#CV8 z)Sf4K6fq?TDNLx1+QZn|_39d;k(7@k`EwHpxr=U!&gKTq+UZLNG@)(A`1WsLvciml z0^SEya0qe32$<5SIhka5QWxrsq8ZROpYVIJ3JMBP?$_Pug@jfwFX>HCkXKhG;H9K! z8+(^P69SL%Q{&*F?$=0{g?Sb}uLA~gaX2X$$na(1z{vM>lc>#tFE=-LvTaoz9of#s z5CmuUyyl5IwclSdp>|x0$ZVpyIqm}ASY39Q{ zXZ$6GoY-&Fz4cLHV>UjYzg+IY@+{)-pjw0;@`Del{dZJ9G>#h#!ghY1^#1cvV#wV^ zd^Y_USwWpr z+4!Yy9jNjE#|OcGPp>DMGjhNc=vo{z*uQ`2vR>ql|5yy62c7o>0FiGUgd1_7!*Di7 zKY>cU!Y?wnrwtUkB;)J?mmOi$yi$hrOf+Ua2H6Sr$!-bGz~8tg`AkWw;~j*F1T%*m zB8GYB+P016aa*S#Gw2X^v@?4jejid#n%L>2{iTwFP_=hoTG2cp7g)n9)zJr99Y&ju zzqZRl)a@I?gu5DzwG%|Z6hA>V+Thto(#1UpVqgR45+7InAStSV0lUe4{z){Or|3aw z;b?FYJV#YKLm8f&ImSK=xm~mH=F2u3j4mp`xiaDrUOoXW458koBA;X?-&8~TZoD8`{L zczW2E-wW%on5wX_-Hnc8ljCXpoBgc^3d#;vEkO+2?d<~+64(?J)NCXa6u2zm8`Bj; zf0B|i)&)?e7Zho9=0Chmo@=DCTxGF>4@oY(L1BRy*#NuZoiCe*t*u79;9^r)aKo_Fw zcvfYuC%4P1yTE>c6$?yt{cWbrwm>?er&A5>ondo$wZX_-9aQrM8vqi zI4&Vi)GBIM@wS^eqrIcByvkP!OsF&sk;dHC+qx-a-5C}9gRG6$rk$Au@X z_fP-*m7}*+|5^zoF!0}>u!+l)P1ccX;HhfR$7c17`770HlR;%9B5bsVhu};tBr+*C z7(MP6w$h5yZcewly!vA5{^grLqT@9h9*(XNtnOck9gj)=x+s>bjYZ% zbr597Ou@9K-(O+`i+pFOCZ1Zq&J(MB(60LEE6yb92yqpnbR#S)@0(|P_`&Ft%dR|0 z{>zDm7UF};;2w5MccIve?@LSi_&3H+lc<{(=k}hSSjPUZ4rC&JhGFL;6#lB?@_NFz zb?*wG63u9Xj&As?gWZ7dd0+@_ z?9L|Sm`1!!9HyKm@*O-~be(hlcoJK;_X-7kFXX_~ZiSZrkMhX}0qnXoel93$Ck&Mc zb=}9`@CG7o@p;M*O#AGypBtkh&x>x{sr*%$9C&q7=DbPQ`eDQmI zPqfnPY@W~7pf@uUj3>m#{O16+#4>z+)1M*E*{UsT0rsEQ@@K(x=W~)U5SNWfp?HlS z;f<*Nu{tOL`Cc&YYp1QEAN3Uh#W;333&33$Pj$wSwd#8J!g70jRpR#(5Kc1M@#PJR z7>av~_E8?>HP9-sIcf*1_9i?#z5=BRzqm)9p>H^)0K2ige?)aQD7$)CpH!Sh*KZ@(?Wu`mIjymER>H2DkkB_(CO4s{Yba*xjOvm4= zoKA5ToPBILKa&cY6_m%zs@VM(Mme#r$y4@^)?HZ!24cPFwoz7C(hOf#rtbx^g6UtQ z+dkkTVXHJ&n0*b!Lj-dF8wzE5K~SQZp1J_OxxPiUp0|N5%CM8t3^f$FZ2(3%vLhn- zKk}t(Q&-cMcsk;{=Oe(Zoi0LnZM5XjaOD)Brd`TJVOh*VKt94n&+DmsSY#wxmZZrB z3?pL&U&{9=!Shyvd2Q{Ga4ljOJ>lUKlIBY|zFDalX$Vh)zlcblE-`@Re52_c8;UG% zus<~SHco&VqXB75X>5J#{>WC!a`}JQg|Fw7* zmH*S?Rd!$QzXiPBeK|*bxqJ&8A>wv80C4pu=ZX&gZIS9Ls6)NX?@8zhaDz1p)pt(N ziwu0*)6m^4>I7NcAR05l=0JMc{)P0L??Q;=y;(Drjg9lRRV`5O=U&7*mw8{IrHt|4 z8OvC&Iek8=qqWjgqWO9@Nx9nGQp|rtY$sYpGYSh_t4zQC4@HKG>)lI49w0FEqg!BA zk8l2n%W?PGv#z#DA}q(MR^%#MBu}jd++cmgorSh3GvPM$!oIPN$z=3$`R!>8=M$Pl z`^Xl$cY-^M5w7;q>Jk%pNtM?wl@}yS$@A-eyF5E|%i5v{bUMEz7$oZVBcl6_s_nhc zkw&Z#1N^cJqWUABb=fr4hXQKQjKO9+|2lkpSl-KjJp&xH?HnAF`7Fm+Qt9fScy5t5 zk}cz!1l=K=^widk^U!c}D@l}{Oc1e5>XQMl82}4t`MM0eGAkO;h5g52&SaN>or(ezMLJ& z9~d8pJ6@0IS?~nj1@|aTeEr6ds$YjbXvu!%-lH#CJaZs?XGrn$mx46OI^yKok8W^}lEmVJv z!+iN$)h^kG1<{#94*e?DnMxRb*CjFxp|GP00A0`Bmi}*p#_z#!7ItG)C_aVYvA>^Y zI-U9gM5>02Hgc=6#q_CKS`Q@}+I#1MX&o@3qv+HNAtkzjLG8{=60F9AK!PsVGiwWS zAsUQbH`$+zgm3xXY0arowH}zn8fP+eHxst>GxIAnehx7)pi}iT4X3uOh$F(Y{N8!wxJBc z^9d}Yp%U5JeDFtqkF;P`7h*H(E%C;qCW*20sU>?dKr0?YS>T~9SjrFGXcNC_dM<4< zKJIS_vzha}7jvwpt|dK6In-lYWyKk8k*56!Elh3r_~X-oB6~pBY`gk7UU~64F7JfL zw`?t#@{61wKhSk_APWDFsCV#+1m6FL^Jd$&?KaysH`}hwwry;-?aj8^jLELw+HX>Uany@S`YO%KK`dmmq-Y2xAB!JK|$ za0y8zYuZ9k#^yydG4;vc3r!P>u!edOhe48Ms-?sG4w#weKhkJDnBhjEM{rh>ojSR> z+F#J~%~Xo%g(BO+z54x#!Z=8hw%ge2-|bJ2h7($|hI$B;-Z7erO$}M44%Q&v*AM18 z<<(Wo=YE;zo`+$!r2Dp(mE2-;E8l}*4#9otMz%De`-t1K~Cs~W(L^>f#-8l-){t- zl{dh$@&3=5_0WkI&0ZMPNk98fOKaDRNShh5zW_7btUt{tSNnlA(fm{~+c(J|Gu9vC zz^sPINK_9ly8FI&`#!UA#~q$b!eTj)a?c)zZ;}ZO-8TDFqZRI5Y=%H4ZT#rE-u2+E zE#FLCXGWkxpCZ4<=@55qbA3YZ{)wTje`s6Yp68aPS|-OdkS+l1e<(oa%W($ZXv^8} zLW3hhKct(0?3m#xky0R+M-L*ct^-n6V=BA@_wDFEs;mM<8R?NRq5u-Uh#iAGtp;C~ zCnD~kU$R)nBT*F0tZG-)-JDzpe}x_;Tmso%ZbR?K5>zy4uN`JoXBOzO%1eRd$SSDu>y*^Swx{?7+lXFsmBXcU* z@XO?!#TX!f*@$i2%4j;1dl(aQyUMCCA(qO@dW**wbRbqhg=_qLy$y|sC}Cu@M*$^B z)!S`vFE@2`q_!_5q?W~yO?{LXe=^IDzq%W(MMnQ(40+*qc!C`< zpPhp-;jKb%-&@zu`CZeS==?1>&O-&4A1;a+J8+>SrC7m;sW}G~PaK>10_5c>?7yaJ z?uI2ckhE@hh-1Q0DU2M>6`FcJ5e2~d3HYT#r!cwuMeB0aU{P^x?@7kx^|J~2z>1Gh zG*%cLf`#%+K%v-eG#iNgIXfsc`m3_^6sPd<8k)X;c^Mc^*d3q%vg$}%@ITUuq9Ri7 zr@c^=tW3kz%;w(Fk>gocUbO;mhdtELz%=jz-u9DU6i7(9Hn@z0>~)`8&D3wOX)KhZ zx=dU`_082nIQ}GwMM4$dL@eK2QK&st>x3STjy9 z_TspaP%zXB6(ycgwyPa}4If&H6UMl@-kQBQizyV7$_~{f&=}TMg6wQ;#tKmqfpJyV zz{e=&Md7|T}wkOKzVfe?d#==lq* zh_@T*4@*5By&gby2UPz=CPyzUKd5WEtEs3F=G@7RWmwv1&;K(-ZM)c$r@2g<&5G`& z?IfI-SABK;B|H%D!ks~~H3YkZc#I0DEEXLP94vGFv}F4 zbaVy@ZtUjBR^#U?>aiC>S=8K24=in6Aq%RHy_sKpCwBqzyrB;{_MTZACSxiAo-u=T zxA(n@U@y^3y|f=!?>C#2slW3BUSo+D?629(@wY&2XgC-f4b z1wz4d?C<~np@nHZ>JGnJI%~S?M7Yo#nwSSA^8bL`+Saf4Ju?Bcqn{BFTsGKUTmjn= z1yaa=d3%D3yQD5-T`~g95k(GP7>d0KA!%`-@I%nD*SnEdRYgYpTJb5{HwP^}Jg4{| z5AwN=vx<2Grfp(_d%V8_RXu$kTReavv((XNwKMiWN(yXv9R3(!j=9yL5AVsnm20F( zZXKj!9>OsU<@4X5vKfaOoKJ>G%??J0d2Yq{&<~!-B4p9CPsTV?LhR|3D+mqwnUp^Jab<@NRrk4XUxD}Z2c;owt(FENbro$kD>a1s%4|m)Lh)e*%ZUw!#tkGRYY9R zDP1uyZ)JImzN)UE(i{|8Cn)s7rHeHh*t|GKB+>nI@%DX8(bn@)L&Vih9S=a{mwgRjARA|`#fHoMh7X!b(x;LX86qkTGe{Jy!DJoPcw!g0TA}oBcD*HPtWdv%Qh<^T z=5+e*ueXQeyi&Y8$l;uKwK(cF<7tHPD(K6Uhb2CrqS{Qf+d1ZG>&U0Oy(oO7Cw zc4sAo%+Q*0V`m;xWsB^I<#7e({KbSZzg##UKCB8x-oNBNuK%#T>rpgQH$C*_f*>Wo&c0Wz6HM;Pb~$q{{YS~gs`~y_2~Jj2xbsq(-=Ey6bXmfg@Kbt64&j@o z0);gKNa0Ls2SEKB%E;L@m9Ed9QF)Y|_sq5W!(#;z0|LQlrop*6W@_eVB*aM`baw7;<{Xuo{y#2&cC9Ua zEN1`EV2~3D1HpfAEgq<*<(Hv<$Hzfbgg)5*y*q0jdjJZk_TH~Gj@uJMU%yCDdo#0$ zq9m2>$CdZ-sj1&}b?MB1UkO@_1=wU$EW)Q(Jo`}Ms{XtD>_U4uUE@OO4TD85g8XKTjuTYO)OdyUPcDSgrXJiG=WT7d1B)1ZQ^2+>-ub_b$LH8NH zKN&Jx9mnP|Y^+8Noq{civ~_}oz(%29$NOs>x{ZbTcY5e_$yl0FSror-Qabs7fa`pH z-)WfneuP7USn5=yc?7Y?X8IP%AAU4c{GTwPGeRZUn0bZqG7AZpM!n(iUO&fx;EwEsDlbxLu9 za;I?{(9Ee~pS*@@@zDsRyKqn(@Sd>E_$2Nqh2{!71@Yiq2~t_){A#IgB$kL6Cz0Qn zrVpfhE3B(i4AP(xw4sff|Gl`m`6CQ_{;|s5bOck}-Oukc8!WZ(+HLmX;(wY12OFCq zy1E{Q)9l}0U$W_?HO0XkRcXd2!Oyb4`fb_ca>GW=*FBw_>yueZEWyEpD{3nxf4L#h zGfeFrACQ|S-xrsqX`o}JPm*qIZ);;0{Sm9n76-BTR!X?U!$wt$ptQdLRuFOV5pLbN zh>!(?_O+}iRZZ=RlE&FutLxFRa@a(m7JqC7l5}uUhRikCcCS1~Ts2ZqE`0j-r4z)- zM%D83O%Dc9k2*YZ8iddQGX~_Mp)V9438+4O*%K=SL=$OWQGszo>J^bkNE8w~*hoA? z9t*54tRiSM@!)2Y{GIuXBACd^A6WCSqz!Zt1j?^lf1GeqcD}u!e#2+Y8<0;Fm_(e2%kLpf8 zTYzLh##iLGA3ttAPf;Os;09Pbu15#j4Ww4r_1!YcO#Y?#C}^mJNlY}BQs^ZvWqRIe!r> zq%(_AP?nT6Va!T61jdJ6VaTh|WPDx?vK(=&M!B%3#oa}t*>|cOR7E)!FzavC@QGjz zNJNV2ImMHgupXkr>YR&b^iFcgfDxtg)Q;_Hc8(#Xm`59R&a-JzIw$kg^GFwIm0PpO z3`4M>ptqiBy^Vl5$4z`|>;V4~pz~(+0ROa)rEEhnC%HXp^QHQi1f|yliV2;4+3_#C`xo&J zZn|g1>Ao1UDv!vQ$ckS#{4|#dw3LO6WnBkV|F?t-WlyzaVX=Rc-)REq3J_|HcP?U zIH|M6@1F3#xBOpQTK@n}_N3I-lIvY0O$|Du^j>kb$uZl5Y2E{X`r)j?!fGv`4ym#| zOhVHdD11suSb_v-|bGaE$qfU5~Vm#P6iJDOE{E+*XaU5LgIs|=w{_ix(NNQt! zKDV_H)Vm`H{})VClT(?1lUXH?qOpwWq1R9~r7Ru!j`gMW#rSvy3=)zy zOjqTu^{l-Cj9!3q#zw04@>VET?>5Vk6VX#yeH;k*m002fovpixSZA*h>dDX7BTd>1AI8I$jTq97%PHDm5}^ zeZEdVB1k~h`nO9yN7MhkLfe2@f-Bm`er(XKeiWpSJ8gb1S?mX(&U; zCY3RET!0=;nV)(BEq2lmFjER-fDDzhD@hZ3+8BJjYd>Z_fQDxpzRXwXonGbq@9kto z3v?5XG1;F*>PA(3N*xm)qZmN#7#CECe^z=7c&Rq3c4WqGSZ77I>au!9~jRi%- z=2!W>rhL?`67v+#(<$?QUsIoFKDOB3+d|8nDU}QXeeDQjJSvps!z$Q)hkwMiPGQ9c zm7<}-3Ew{Ubur75L0HoNf_UXg0=v9`P)mc})?73bYd00z_iJ^J<5xvU*UlLl&F}PK zL?>Sq7||o7cjN4v4;n6HiF_hDrmrk-_?0k9Pczs7?>{z0fGLDO@h+(IE32_Un3dk+ zDfzZM#%0#D<-v8o4l533HYbjxaVRq3whh1QcfyJi4Vb`?(JMb~RanKTB_^d1P8<@% zXsqxl5SKlV8SPlrt0GhaQa>0#b5=K3cjK$4@XgFmpus4p`wj0jwbE>@tO^(O1#$(8 zJ^ch3(0DpRPtUFf(&R71Y%TC$hIwg0wfuYYEN!hNLv-Lm~eN?xa*5ICKY2`4WlMXYNfy##< zw?sx}wcqX70i0Xx|H|C`g^3tj*9Z8Brmq!9do66EI+bC~ZNAl6Iv~-^>zLiBJI`NdZG%K3?!|Z*R`^qX znLAvT&MFBY6GkrKy}q|YVNlPO-+9p9Ql%Kg%){tj4M;r?OMfyS7@hhF;Y3CE*yLm0 zxY`kCq`vGb%D^Fz4(#=-51n;wtM|RDZY{<@<>%;!C);13z^rGxq2oUD&yW8d#5!(W zM4$SxA%MO@=LFG)-(yS-qpPUc*P?!JZ7+`j-Jwf=7(03|2!0Q`nDMy#`;#=f+|BRo zAo_v(LHvLM=Geo9g(dTeIE>?QUza$rgXWxFz#kk!>=PBO3>r*`h%UYl4!WiK|VQeOyUEWcX(nKTMKok&%F26ge zfD8}2-E5XUD^`3e2fDj4r=`cC+HmWM=vr{YFf%CdrL1*ANDWrS8|x=U;#?UW4?#-n z(xX~$7I=c?MdR$Z32r(PI_b^;;pl%YB|ZSNUs0rgsh#!zM0=F@eGjtH88TI zf=u`U@0KM3^8D~1rl2cepdbW;#6~wTPi;DLpW%Ahm+L0M$>EROiEUucnJ)H6H5KyU zygcD^aa_GVyGX?3;T1)5FzMviOz+w`AJM3FT+{8U6c#U6{mcq_bZ|DmqrJ(QV$iY? z&o|u}l~XsVVb1G*D-z<@H{JxLTgAaBJD zYH!P?Hv0d2J$fQz$*Q3whB`Wom(S{S=_a$i!CFn;kQ#M5l%QH{+qAS*iCJj~rp4d0 zJ3c>KQcGWZ1HeTfV32V@Nl$EJ*k&4>XBxWxbXJvjQEhdwd6@5bKli+st?IKaE_(2) zt7~ee(w*r2>e8FRF_oL)3I2%+Ru}@(_a&%}ZuE0dBIHk#k5|VeFRw+u!;MSxbHMlW z&AphW2b25FR6cS)M;0hPuQRGHXB{v@2YZSP6KEvQ6%id9)TkJ`h7GBbeCUL zmsGY-d&R(AoX4(d)&}QNCuSY2iDZVudvgTH@Ih@u)iW+4#h0Bpla6J|$mYk5Y_#?o zM{MbF@9)=iz#j7k?m6GxEYeifw#{>Q#Lna3F!6v^?#flT@CsMaPz zU{9mzK_K=*VS^}>tY9nT8MEKD(BL@`i#mFGVgLYcxUuKd8&Z`9!#jD#L-9h@rKGAV z+Sc|+L~LYGJ`qm>NU98Ys!s4rJGQ3}Q!JhlOIAQB%pQ6BJb6e+-w9jW6z#?|m3v6* zi`^~EF`{5@E6NZinqW1PM4fR$GF+CcH#&kVi2ymOkOCFw(_=0Ab_5PnN}kCxECmd? zB#)gW1tDi->60VHuz+vF2YeRP+pS*Nq1?&qR(X%9708pDI?!;^-mLXsvP~26-aoBf zD*jO}26f*Xj}eR6zm(;6!%Jc71F)m+Yp5BFsUQkPLOel}z_jd~9ZtBSVP@Vz>9Sht z&35^Fkz(#b(tXu~&!Ahi4Jh~ct4@lBij ziF~Z*7B*OFf&TOM@|yg(lnF4;E+^!GTJEtMK%aJx>F73k84KJl*KMnZ1m)pQNM!~# z9p?$Y%kj6*j{WfKhJ}U7)OXLR?kKiEPD;4^z7tmq@lUj4aCIzW9J~?H2`~CTvm?&s zp$sB@N+S9q3rby^m?pL?YS|Aj->`^-tGO9Zcqsqa++_J2*01eG=+sXVQIKaCopiXH zFa|)cr5w=XwEsY_WfySEf|L`uGxgm;EzxpNu~HB|_X>0Yt{Rf*r39Z&!J!TIN)A&z z?~gLUARynG+6@epV{Cq5*aB!`o;hWImIZcAZOP1 z=hUk#az|u6ClefDGWNmZX5tQ#cX8;=#1(E{aQi-K;zbC+THc*Y0_xtz^i+MSr46QO z@MLwYytpUU!!T4*>_E?ssF&JSQm+CX$u>qfq3)#mmd;vjzc`v90`Adx%(FiKq{S>a zZY;lEpNJE4U&MxQE5$hCE^&XRMVZ^MSjHH^e5i_+eA|0{wPSD`rU9Rzzyo7VIee%Rs{4Ko*^vQi-?#u z_ZX^pf6VBi!$E)g2z8B}@b}($2(ki(^Zl))wKr$$Wf!D}oi2jmk12%cX^?UvbZ1h( zx3hH1o6})hEUc0;a%0&qi3&CA93G$F1bawAo=o3+zJ`-BX#Mfc>ieG?q-H-P8}CYz9>{k(tph29+;zu|oaoERY|hVyTA- z73L1{ux2XUWsZ?dy2p3^SU8HpFAvEsAoq`B&Bbao)R7pwT~6inRow!OoTdG+Rpd1R z|GbQPR{LQRjzy#EBxy_eBvC$1`!gxo+jDqo#`%`~_(26`uSCFi%Mmg>yNbJzqGeT% z8W~mWyXll#3c4IJ3jLee^&CoTtyaauG(e7*bK=mku^3Tu)5dc?cx!i9ue^7Ge=Q#C zuY!vR3+fz=ba9WEwMz>FMYnffFLd_5TTf;$1b%%27kYWj{&xn6ZUaA1hG6TD`;E_4 zrypl;EvpHlN6lYW$CzeN^72J8?fFghRsH1x=R@~Ul@NF751cy*qok={lM&L zF;gJUl1EM8Gh*5~D7UX)sUvB&+g8kmbDgxin@pVzOS~69zitK{JWqaf9F|kPkbg`z zJmK00Y+yJ`ZmF5~0gLNVwlw#uh-Ci`#E3RnyH3qO-{+f0M63oeBPW#GV{H4?N>96* zR!CYJC;!uFFfc=ZXe=_b*dEnqqs4>d){^9@{!KNSh%?%GV_V}`T0YhXIcHeWz1tsn|Pn>Igogr&84lF-nMTD6qa)rYR}vQ9%nLyd0oa@RV4p*eVc_NJwh z2PR`bdYR%-9d6c0b(gc)^p$E{fpSPY+4E7*y%5A$oHk^ zMMz?xV&DsX|I}sg!ydUsZiMENmq6wmNyJt^f%2uGPvRoo6iljIdwl@&mRyO4U1x0L zfjR?|>0H)C*j23Jq^XD5Eq;J!--~o!7bxcFyrnACvf5{hl|>(jWJoZ=*AhxB{BpB; zDdDa(j84VLpph{7xj2ei@*2Kh`G5d@m!eR~2E#wxBeb|2D4=ZRYv^L^0?jAlR1i{! z_pc!bJ4J7WOSjn^+>#_(Yukn5zT^UV@{vn3&UDUf5L}vP4I|ZgI|zXS>$5HiO$jd? z$20|(IA2BFZ~TIr;a~f%(8!7$xbzG%*ML1Q|R>Ou!>C z`|&wMuQ%B~W|Tm4%+7~8be14eQP+mn5Ul8iz>0wHm)p$2Bkzcn;N zua|>BC+E+lIWT0He5ZvG7RK4oKKykw;DKqJUPkR%TootCO&OcuE^uj)Kokm2Vk-t4 zM&sZ*#nm9BboX$5MsWf+TprUiLT~^0{BB$8&}T`=7CPl>)8i*;N2}?=@AoD_sukCz zdpjb@xA?2qV)60=bBsevXrbbTOcY|2!}*%q2&DUt!Y`Kmi$y!$`!8VFhWpRx+G|EJ znxZ|1Tg)BB$%ju{oR)%?7K|^}00<}@1Twhw0Ep-3!5FTPCM`0f|Gq2{#n&CNKwh@b zhB$qV?F1i-21v&&&mO=+RgUXfug`VhFIRM??iW~IzODwZMQ_`kZqRvUSWnLghf{wI znZsIg&>Zefa(`758B`tVk9%hqBcI>kvBERk9(5FpWVhKfb%5LOOnm`KX)V3<5x__Y5t$GYG>)J=g=f`} z0><5O^WCyX%;d|T+M1Xgpy2VMnqNF|L+PwX^-rOhie=?&R~ovMA(B0zg#Oy6Sfw0# zfE?ZM%w{Zm87mXxi;IU3`3jHQ0kN`%#gJAgc;O4NcZG4}5$xJFR!|#+$VDF#bs@f0 zooz4_Rmywr?^w%1G0|}La=KFC`LGMls}@sy=sP?d&(f;&66Gr2zQ~7wxgoO}PPnj} z!`u^#y(Jmn=*h7g@5b*M2=VvO9kM=NZ$#W&oaYltQ&ra^H#p7^a#9V?p0ap??|&Hc_9on|5jA#}YPlo%vS)1Mgf&C+&1sM9UZ1ka9eC{t9x)O#azBI0yTz z2fcMt9-p2FH2)bLogSs_O0iloHH(F}S`#M6=`jQO8}!=pV(Nw)54d+Ya&d9FyCp}g zb6F0Pz20h}5e>&#Pp)ypp1(Ub7KQWdM>-o`&cyt5E+K-O2VDe@1~sIQ(Oa{7hltl62aEtjFbimHL#6XB^1%B(UOUb^A5}RRI-S;8vkF_+_WK zCzc_ULdx8)DIp674@jL?5Mii6sRt^&ARG(Jp;0o>e~)1HbKo)G3wyDlR@o=K@u4Ub=DQi&Wo2vaYF8*kMUd)1R693 zsw8IQ{=4-TMw3R62I2An+8@-)ct%ts+8qdPMva>F_W^B<7uTpwwa2A(%asq1eo>)J z#O)(MCr=3&Qp4|e|F*joeylcg&ft`wG8d4sf zzgAQr9dX6JA18Y3BxZ`M^_WN$H3JeIhwxVuVC`L6Q<1ttcGTv!2!%f*f)zti)ADYt zN4r`=p;KS>sBm7PAD?oSjq;}E0w_({OpbqMA=kZ6pM&|gez`v?Q2UxSm3%g=n%aNd zf02;+dsLtXzoBgPFyg*eI=9Oo65&cpw&y_#)T|~gjLLNoKYHoZ;}Wv$XTpmdgebh~ zA@@6U`-M300=HXA>KWAjvzaM#Hoks5+^oW7#KFnUY=Y$m78bxA>5n?HNi8nSV&fjr zlm}L7Y7mKHm|=1xMA*RSDm-4^F6IIP6G_iz(j1q*xgvALx+F+v6R*i35tO|fuJZS6 zYf50FSrL5d<jvW8|ZJX?r_-ZEdZTqT+reHVf_jN;M`j^<+soYH>Ei@V&l#jO{o~oL+q- zR7XH|vme0K#RBWetONpP&!mzI(MCt9^4hrV63XjxxP|Gtb-(4$J#d8hWxyP{t)_`O zGFEFa;&PUqcuK@-fnLM7F-dQ(k~G}Gj5=e9xHyh2*gF>!6ecM4LsmFBSltBfdcC5* z?6iW1K>mss;cGVa5a5b7kO#u6yPd8BBDAK$vk&kmc6vm=%^X%Z5MBhE0)`p2W0Py8 zBga$_!!(hejdi#85oo4db&C?SCCpK+DmF{+3C;uK4lkm(y)I@O+wQ<%U@ol}ng1;J zP+!`C!kim@_0Bn5e+oYLx3OSv!yqj*8#t@bigE?fTOqLLwnqc;mKizujM9F&Sz4*f=ZWY!+7XQ9E) zGG_a`$$t4jnRh>0q6G2oO%HvTmL#l->b}Z?qURG-hzB+Z-ZMvI6&OF9dTXgIoQU{O z-bo=OZA@D;2xLddY%u&JTWO*CI5e?qRnpW(XAR*7S&J|+-;eHlT`E>!h>zTHh|df@OJDYWDJ?gzBgR*-X-J4SKmUP#l+N~xKc9tGMi3}&R< z*l0^50t`f0m-Ixm1E{`k9@~heIhWnMn(V|jn=0k7(4;}q-(HK%U6J$I(@gv_QuXCv zn9lf)k_1)^qCWthm~b?aq+~!saFNd9&`U&jLIn@iEYT{~VRkF+Wuy$y@?(9KWz^wm z=h82qGM33tb;$OwUlo~Sb2Z#{r|{)C!k|9R1i(F?fJ0Oo!H||O*ocY7KdU8Gd*hx# zmLYHz>0#f4VvHnx9I(VO+IB@~D~%_hKN8U_R@gfdk&CmxmP`QZfOLTff$9Mh&MMGx z^1!WhASYtcjQFPmDN$>yOf?u&xuVW8#v9q^J+7Vp*lIQsCa@T^ zHgN2Wd3htRHQi3}EZrqvp@@vOlXd9|RDYM77y`e}LLE8ocsAhI7}Pii#vRM%?d`3s zr}O)8Oi`FJnS_HQaZINfOiM=tk%@_k{|)d7jey{!W$7+qi+PX(yfGpxcYoot!R&>U zy*3wMSXB9V(F?Ki#xZANwU&gDQgI>+8WcgIl>o1BP6cnIt`clT(=ex}gu)s{Othmm z#ETT>U&)Y39a^gh5%lP`w^y)P7e(>~u z(>M?nYg(=j=F`p;wATf{AJ{eExNE;lZdzx=%1rre3^3<WLoIy1|oxON=^kL;~<&DRzO@wZ}wd&(EQ@dICuB2e&+caITt)UZ+ z!Qm{rpg@DQi%yf^H;Vy>GGT2?(3~XYJV77A0Pj~fU}e1H9*s(Gg6ba`fdtCE`3U`9 ze&2-d|3vQ3U2L!b_I(+Gmp5WOafgx_;FS;c&iIcTM&|N8;jyVV2D7qHxZQlcEDx0MPr-W$|I zbj$9-KG_gM?>(6|P5B2F&--~95HiB3gL@=GlOHVhl~Rte%{J~i!%UgO zS!T0D9(r|XCrEW4ap3a z-`8kl<8Hot&AE#Fz}7!S;s3GaY8Yqa)FM&Uv*>d8zdEMv$i++`x8&RjMT<=6~% z;8L`fhwrcOL&l}L?>kEWsFex7omz1<3lE*8ZS;4OC!Rsj*t=bNWa~`3TK21ibR6{T z)>jR@-=6lQbpyX6L*47N#*nJ_ue@Z3_0g&4WJY6YC`i3=8wZt5Ul8eAI$kM-4VP#TvQAw?1FJvK_}jz0uh>6 z1Ir9gAHv9B3`F}IoTP#Z{$1zdPAtHT|ENR3_hv;B-s)NoHGajrf!q8EL>d}wr1iKA z(uY&^u6CO>_7}rYZR6zz1z@U3PGUtKVV)cnh$ z@>~Ke?<~iHJFt~d@x#Ir{+ITEwtCUo$Fmuz%Xo#cD<_;)274H=_91;0Zbz8^E0Pq6 zKp1#r-35}{=LyW$*AH8O3RT;yi`_uGhZiquJc33dkOF!-NKXY=tH@(kbIpKm0a|pG98EuNJh^t`U%o|M1fNCm*>tLvk{B*4P-ppf8>AsccS?ywJSV#PrV>OKP1T7+IP_)03)$& zjxE{1h3-GU%3VF*P=|n7Qh+F0zjS?V#h*|hz}4%|VZYgjMlzr=1=54xE9jfEe%LS% z+ujw;O@d~J(W|8e&!ngby!tn8c6CWkhf!X#p1RJ90-wA4WL90*5lkTisA*!Fi2 zSjMA~L_}wa4Foj8dsz^!wXh;}lau!LIbEEIQNbq|y2w~F(P+GP1M7LJR}UwHcZmf! zaI7k66f(PKmKAN|c9G7ROl3VuujQwHs~v%s`a?6NuzzhabybXA5N zb@RY>4k}^XXjm8+5Rt9V&YBUn1Y1SAAaPqh@re$CyW~yt;J{u?nkyV*@qkqc=C26c zo|^tTxsdDpvF z^jfDn@Nw9;V@ayrQXhJwm`9-!`)ZN`g4XRpX4=$bO5-qJqD*w+Aeso7O7msEw|29| z9c3)vL}`KJ0IQBJGH|=*gK24&=-+t(zJSm?QZXZy{}jem>mT!VDrD5mAW*@-wNpa) z3&}I0l`UoK2P{P_ERdpP=^AXtj$uH3hfM~;i2@LSss|uOHI%-k;-rj?yHH%w4xf2O z6QL3!T0_|X8bl{07a?q?k48E)qy{34#=^5(^B zST1-bNO{x(QhF1qRQ>~o9Q0Q4K>^+(yfS}1{tu+x|hWK+L`S+-lB6ZZCyjzSpD5lya?yY!`1 zltpAC0TR`Tv91{^zg{_Plfx?dfu|1wRarA5H+P(ICS%~@{kO?F4*CNpn?KbG7c$Wj zhOjB8To>VyZcGx`1D0pJUcX6|P4!OHCQCTi(9}^Fx5R&2twH;ZJFWB*>xc%FU z`9I_xp6v*dV#wJW`Tf3Ko<-<@NNk~<)DWZH%0WmHT`3TxhlIV?>YAA9LK9rPk#AaV z=+B5qEMjWyvxgIP;A-C45rW3e^54}Qx&O@l)US9RzM#4q6+Ae&-5cRnqH7C13c93} z^1j`o6iXPyLji7vB9QMSN_AGIZ?=z4@VB!%7M1S~Zem1T_N1_M^J@6WUSbKq)Rw0I zch9<3Ejnn9yLTqTA-!)`$BYZz?lhDYj;|qbT^1(eR)Pe6AhFaS$t2}}rbPv;em-yZ z2+gUycI$O9nTiNxP!I&WPo;4SEOAV45%-P?i1OK-p(ndnYNom%J;JDuX}tY^E$!E_ zqsN@+28;tUSGzEK52hX+?fBk3iMLco50r^~bB1A~#~Me+X7!GWF#uHyIAk1@neV*B zw2+rIOLyg59uJt~L=@YNgdcT0lqsB`dPmo=&o&CT>Wo!d6)jHiXV|C~XAZO>z6GHZu)4{YK+voaH zk4UB@Q<(XnO`tbRm_Z2`LX%sgk<8+ZwW}lX!vnjic_C`#qij~$g@D^WcfyOnt;Bac zg084uVKQ<;QYrrJJ+C#Lfa;KEN8 zQquZ4*4-nO5(+qgf*Ew`{jGJF8#WXwz?>oBgrV6WNP~@J7iW3`h~+1GV80bm@aYw- zU>cl%!nKW-8}@^#@=_jg_kTm=Szw~ubTmA$zEmz@{xdv(@%;R3YH5kAtgL+5UUH`l zoN-$;i20b4wvWpBE)sFjVMuyedFQa4ehVc`tGPjea>683os^M$iw~6=VjPM z68Q0Y2T{vqY>3(9clO$@R6bmerJGm=7z)ldVKKuW>9W9`uf-i@a*!6)tC(%ESlnO? z(JLarSM$$o$<@A4>wMJtC_CaF`^qyKR1ZlP@tKbd=u5-C-;~-ydICm@Z(4^goD( zsKwWp3b2G%VNK5NnRu{W$4m}?Wx#hE>W=qizMCvKS=eGy4Sp4-r;-MK&us!PM4A#v zz`6AQziPU6g6xzNibxf>iY%exN<{QK#|B!Nq0>$?2Z5PO>d-%gT;BaN`M53B+-FKI ztg6BT1!X0t9A>i*5r@XY8Xg-l8G7TFNaU`XA`e`g955p^CdtMg2$89*au9J=;osov zY%q7D925y=<}MjpzYkRs3j>Dzp;XeqNGZga4*Yvqm&N{u^YHlWT<+fXYz0mQ(q>Lh zB$@wc#q8~oySnt>9r{^$p_12GNdQVc{KG{stHnLDl4GMr?Au$<;j!j9mw(2v7=EqQ zNDb)UY6INcU_GB^fP@~OM+aN$u<~*U)W{T9M&AXM7&d`eXaL}#Byu26<%8RcEl8l| zQc~AfVr&c`Z3@$CO*?iSp>`Q9_ltl0;YAGqp9oJ>0=zTg@%;$1N z*thh;>K?Y&%Eyj@=wR9sucgnC|Nc69TE=1Eb}T~V$PI31-~zii0NejZ6C`yM*0kL7 zQeA)nUgW=(g!h{u5eDFlCSTdNQDGt6>QsQFNaY|B)`w4cUF5a;-GA$i&hZEN^y0VV z-C+VMP4=l_+}5|==j8kiQl|V%bt(FZ58kcV22?dtEa>gD^x8H?9vG1+vO?-J$=VqB zrzoWulnnQ8lfWgvnUkUUi%rZ7*!N9<@*>9YDzjlv zd~_(B2G55tiuZ&WJ25-EC8_lF#1n6~t_RLFV{P|OQ8+H4$(^X>0oX4G$qU1x^Wn`$ z$cS46vqW7})&hy`Avm$zA#i{z#(rD{y)ArvXj{1F%o71S(5J;x*fS7hjA)Cs8RxQKwTUP>sT!@9Lx z^i$vWQ2tMtu1N4&4V#3_#IUe1AV;0@FzvHz|Il>Xsv!voYVegmrUiq1*~^o}xi1;% ziUH?7t=LuC*^UOdMDj1Efh={dcDW zPIEo;@X^1}g};)-w-uONK}f*vBSCn4x>9srWO}sNvul74NUrj7NcYA!qVZ1V;fZ>G zpT-;lmZ!E78TQv_C;yhu^A+H^4VGwzIvEnMR{-J;t0Tc+X>%c_qy*yYS5o0%DIx8} z;oP|J@|`@%$HJ2Ky89nCz+WkGQBydvYto~C=8cyAFPo}LV&jRKiL4~&vuXj^AlJv{ z82&Fi`WjC7wiBNbGz!vubvXU$M=r%9L3LS^j_oy3>zm|3(Y5>5Ir@F)=eRE~Z=}r3 z5r-;;*TXi;SOqL+>jSO%xkBpz_a@!|%CQ?QU4)$~I+1Ec5dWN3m@mSlivy498cd=U zERqQ!bVUjWBe`MU!+@e9JVOI}Q$+KODLlO7;6x09zz%Re6887PhEM%BqZbt5}_Z3vC(i*ciAfjFF3FY z*x?(v<@gnrQkC$)bLlutOrYE)g68V_F4K~O<+E`5XrR6}%DB?p`>OXh7w#_N zGV_;jb=><>vF^e8m3*}SFvxdfJ;E6*4&fR$I1$rxZj}~@zCZ(;iu6KFI#O(J;@oT?-`hzPk99=_7Y4;lm9@>bp6aix|rhOd(K(NW#;3)s$5Rl14)rH>@BSM;3P_7wSKpbFJ zT3%FJh$GPB2MwDdT#R#cltJ!Y#STu*P!%S3JUJMx!51Qrw?a(M?kTdAU-?BB3Tltr zve(l&nd5lcF*W`F*!ruWI-_k17e#{xcXxMpC%6W8m*DR1?!h5A1PSi$5Zv9}-R1mQ zd#}3t);W)}3JMEs8uo%`Q#SZ$u@pVelZB!wS~^O-0l%0_)(4ISL6EWc8YXW0=WxBaS$ z#gt5;@eAkonwZ2YPqT>-c~PhK?v?cyr;`YcLd|NHjd(=3@2d+r&%9?9 z@%(eoxI?@LuOBV5Ze~?EbaJ->iCO49kScpP>_05g;n|jTUmZdF=G1^={%xSLn+KqR z>t>C`utov=3mwcDxe;Qzj0u%+R{lal;rLvrekZbm>^I#Y;7@lrWA)Ed3_80i?)8&! zw3Na8owl1|R?oS@cn(DJ%&C9U^jqC|HBZw^qtHc5Xs(_-NPpTc|`j&gR&#+1LiHz{j>YtKw)7 zGsI>%7N(p3RO+ZP=TE(O%;N-m&$ubNZzE$$lHoFeu@=&=SL!pH9>L1>xH}N;Ch&+I zO5T%dnS{u;-8ysG7aFE+yW)o6OCH{TjRYM3M(uiBk3s*bU1wBmEW_DK3wlUu)HZ2K zEozo4KL2xnA2b|X_9E~2a!qT(EzlLmh>d@^0e6CLV|jod=227X#^>d{-a+Af@(~{^ zRUqcI-;wzL(NF&x*%hhMBKH678p=@mS7%S6u?PtzEaE2-8Tx9buv6_IpuJ{F7KG0j z0^@@5{y0UEOr*t6i%J?fXlp}-d+~Gdgc`17oRW$+^T8A35Pa_!Fc) zyF4HV#>L!8Ekzlz>luXHDS+}VQ?bLj&vP&j9v;4D^)Kr6^>h|h(vB$JRSp4pRIUTF zQaCi?uGGGcX%Y0+m%q?@l{|4b9}I6~q=Z%?1zFR0tT|4tAoAY;pw+9Q3|Uxj!=1vM z|2E&8Ciy5nZ9BV9>y5+VZF2ZDJUj)Rr#7u%@uv_#3->CCtBRP-a|(;7-% zunhv+X2o)oMrLw=C-l%2Ve;+}`yL!(m=rQ_$vWTBZ0^Gr6+@=63fs~v*ftkAtICgc zufE%uWwC}LA;r*zS}esx0hJt<3H?d$wkVcA_V8htRdMpIb`7z`A>a%)w^Bt{rkA^r zGw=p!I&hZJR?eLB#k*fu!q}8I7Gui-bZa$H{%izcXfRo^RKoe``?IF=5!*0ajFB*( z5=La$&f-oID?U-rTf}(;(IH>N@70<8W|tVS3s$moJbYXUVIRT*-J`b%$4%~CgL2IK zKbz=;66ZpUb~PIq32e+|#UFmZUigmI$VNxWJ8xUh(;@74oIkrDp_Kk8kBv z#<=n4Ce3r)z!mU zv%fx>PPkUUL>$n()!d;;zpPv<&S;$}k}<=1dm;ln#BJ!ey`qr+12#oB9d%l?D{W4N zqf$;7oUhDN(U$j`>*MWlj~d6V#jV<|!d|a$Y?fM_C^OxIYxzh4hx>1xZt)_J#Qgt! z97iRHD;VNFi%{Doh&oeelGD~HMG=UfG+<<|UXkMQ(tL;gIkHu`brdGfUmMIo^nG2h z$jMEy2p0PKM5D9LWY;|Z5(I~ajvfEfE5%B@@+m3=>r|%Rm0Q!%^{ADU*NR+pCXUBD zQ3jvRul^vQ?n*`dLq`s#|a!PK{bpVEmCj7<1!ZU%OXQU4$&7YMx;sX@>V#m@- zz#{`25sOgZ&_W5(nA?HW>+llQF5T!0Z)KpS$qw4Ly`v|tO?4?hUIHn-p$J6&gO(82 zVS^sKPC6*^7cVYB1gY&#fad2u)_16jd{xvcjIJS35=IIC)6xS2cYTpg;anPa9i=^! zK=hc-;!zNiyt}VUBq^fmJoe4a z;N`~P4vdrwS?l9+Pd^zM8oGVPKx#7KJfm%+F_sf?c$5}HJSQk}CG2XqW@Re5zRw4( zH52hA6GAD}z%go|-PKpuxw-d8x1l;#lanDc68sL**b5zM>=!L!-94ZEDj9Rv_l{dB z#an_IGZ7uf$Wc(8NBF8PVWf{hFVA&g@=;iW6{h{WnljS;k$dd0SR}$=v#K)~$&T7L zr^AP2BX-c70yL}hRb<&x<#%f}BM&}+F%h{sRpiY6ky-PS4wv#-3QZyr{=7;-I4HK0 z`YNna?JS?LWt9DoN9pOVPRGP3Rj`vLCYy+1uGW5aewt0dac^$Z?aP&<+{h%0?Q*CE zRmXX);iL@wT*3&jm_F}&q2-!U8!t_&+=hvECO+^ZWbfyFVl#gzNJx>Q1)=#ry_HR8`-QT~Ww-e7WEQ9^Vl)ZBEK>|EM|-*x97o22vg*cxHxMHL4g{t8`j&m11KH4s zS7yS=C?peV8l zyNZgucj~cjO0&WSNE6i7P$*=i@}bT`vB97zvT9Mz?g`4?S!;E&?TIBi$#s4Wd%tT* zc4=)k$>i7SBa8CcJGgkRmyhLdSye|OrK?D9?}ep{t;7s-m~nP82B9r=urRg#84Q+c z#3Vw2hmS=>{gX-0Ie`1m(x-Js(|fC_jdXw!oZ49?9^A!AFcvp3@38e4Mnim$v^`x3 z6Aqu1L6v$D^?Xu-J6$wQN=XqvP0bQv?2aoP{UW{ZVFD?>m9W=vg{r+8+Q0N@#mI^g zaz(`w*D|d%Ys{GmB2R_8QWTGY6sl-P*p`;~TpzK)HyV!XsJ+?1f%9yc7mb%*>FryV zvbG_*Y`zl0T!P&?RJeuT_5+H?__p#1Om_u`aQHgteV)yc>6VFvH#HDyOrq|DXzZ> zc;4tKW7b=YY2V%sn#xV7cg!y{fWaF^5zdEaN2G2jS86ACA$~k|CzCD+XKeKLfZcDUb!HI1GAxBlNipgEvj}AvyBpVW za)WoK|81lN_kMhrRq{me`@2_Q1FQI+9eQ+6V3V6NIIwt(4b zQsZb5Vlrvfwou)cU=Iy^%<$0%&_VaJ@mK@r$gtOYc{P*>#H>Pa)EtY6z76iv&gfcxtiSE(151WdKIr_tp2^dwg0+a>&@lJv0 zJ3xLn(ruEBgp~#aus{tX?{ni8^1ZtKDVr#XbhicfKZZ4BCm#MVHU%lN)+^pbY0o0D z^pW(*2IPHQ5vs?MOwHmdl-QVs+GjX-KM5$waA(9EyETwdqr{6>R-SH7DKN2Wmw71JJnyLMqxC^mYqj#>YL-0o0I zpb`efF=!;}$h1~cvy_>_^9HC6v-w#PaoOs5V);uGlrF*FUA=I8kCc1)hC&gG<#1f` zeqCmqA|2jl@G(FVC>w{|d3yGrGu5h{ebz^luE6~{Wzmo&{raf@u^PrOZ%Eth7McxQ z>*KwEkNP6Nj8}&WF{a0$+us!$#g37Kc*(UoUMf%)Ir%f_rY^kL$F0~41;YODZfl>& zUwd%yN)WDdXWcM)^&gbOyXBi$0|}b*9kVwZHDupU4ZzkuY{b~n{$o%6|H5QaOz z<+%;_2h;;j%$LvW(@oI>#=h?gd}B$B1=Hc`dOmPG*$4{!_f&hEL4~q)A)df_Ypgyr z&0b+jCmWuMsH5JpBj&-0fZ5cys109d3Qs0$CkHohQDHB6C}cZUuzH<03wd=SPp>Da z7Y7iAVzvzKX67h2D1qj3Y_c$k7JumsiG8y=VXixcQBl1eeY>5E%ZPFN+#b4eEyn-yB_?`` zc!>LYRL&UV?XtJeV(x*IQ!Ie;`(i<%Ez)MPGl}3pMsk9YbQI&ERkFMNcRG&ZU|A_& z@fx3V4gAs7x#;5S7K-Xw1V{;pgFIwZU#ESnFXP|%GF!0AJ`9;+wKSsn*R(>0zAqSh znV{S@9DX-L?LKsheI}5xygsJnMeK`*KBk{mFmagY=P#H?+wj4a;4PTE_tk|T z|D4I?o`f|-AbjOM)=czcx)i&9Ow+sqjP2+8MEf(N|CzG+ch1f(gEa%>4tbGkv?ew# zp{Ru<6Uz+B_V)GqPTn_G|HRrK9D>m?aisk0$kUOMX=4=0$*K+$=vsHc`W;ek>R4tE zC-i@|NSq!57}q*BcXyk!mZbQ_5!S-ZMJF&0wdG|~^3&u2R1n4N7{}8?`9og zU1$;ptuG_%gr!G%j0OH{=C$fTn~AqVqK+wVCKW~5@89UyomoT5g8fK-u#@Cec_vK(bvq%;&1kTc z^_ZzF;_#X=Ozmwa-TZXZ)DV5m6cZhk_#x294r;Xn<}ux`#~d5G6>|~=@SVnN6ED?R z7lOgF|InzeiRFO#9wm#5`Me^9F!q`NJW8*L5dh(a`F{5@;;B<{Zfr;`b-_!@GKhh= zrmLC!D}YD>sOnhYox(%05HgvA1!%y8gwLg<6eX#m97{p78GMx*2-1x*QS8Lgd7$VS7gyOm$jEbb4ny(bolIDx1 zU>&9XQDgI$M;=A~QbwdYOTZ1rED0Otn)&GDB1DVd|83mk=;%z`N*iiM8ATJ%&gxX; z;=~!F_t0|@7OdIH^U)Ex`%}>~^0rlHKove+u9=nr&aK~Eu4k2-5{!2Df3)v^LL%P( zDdhjP^nhQU`W_5DMhXVlc6GWL#YWlL>rZ>LjEZV%5eW&%IZGxcg*8w3xTxdW`dxoa z$ziv63LpXT|IIQgBZ)4NG!?JCq}(&@p7t84#*2-+H!eg@0ye_*{M{4q{l@}w-Z}t6 ze8IqQ(LTu$TFOxnBe^ag{HnV+jru6zc(JhGgM1Xh8X-=i!j5Rg1;@-Hsa)5Xg-K*D zBKes$TUC^z-L*ZInG(pHqv1o~ZJpLwVG@H=npGCVMqR(o6ufEP6{U@N0DCJJQ57yE#iq#gp4C%V?JL@&CZ*m}>{*i`oYXPMHS0eGi19`i z$I+ki%h2404h{UAaoEhjH-0k+S^7bJ{Ap+sxj2sd!_ZVvT9cdoiJKI7PVrUO8Z;~T z41DNRX_mViP8r}Rxf6uR>3_8QHNsqwV7__#(cB(v@|lXKt#t^P=|w2PY~D^kn{CJm zVG($$k2O9i&Xw*AAno`IRs)-b7d6hsM>+Juubf?m6zXmqeisk`6PH&iCts}hgBw@{ zIf1_GD2WQM3GF}V-O)8h#3rH78@Kdd+Vp$=mMJW;<<&5DE61y|xLgfI(5wl$Clr)L ze*XR=bxZrIU(lJ0e*#EYvNm^Bn*Jc*OX%5B7#X8sE#O|==NSXzjl#f)l}I3XLUwxZ z&inCg2s8|=keMgT+FJ2NeTJ{Xm!uHCsDC@@_!*KjR(**e*@3|j&Vpp0C7IY^UNNKayk3av8qVPY~SC% zK{b@1pdU{1jt5Hbrd~(D{H#=|fcE;|UUG6YvPbp^HMRuuhr5JC1fA0FBozH&1EZxx z5u$5b1TmnOIW{Jkm-rr$)Ka*Va9exz6an&Q7m+r{j(CihMm1S$WrnrOs3-*1W&P$c zbKm?7uG(2s!{x-s`wwFzm-(QXq{U}3Orb$vCww1MI$A#`MOvm~%ESN%V2Pw@9R zO33oj5O0^L;C~{!N31b(z`ngi!KTp{xLYI=ZTiL#%Tr}_0b^-OJ<3%i+X{MII*>&R z!EFoThKhoLb~0`8_`8!}uR2j*8@&pbrY`&!e=``k*ppHA;^8sx2+c#@!CPGm-aLR) zxMA2t7I8C`W83@7AvibAHYO+g$_h2GN_+0tfaHpe5Z~(_ zv}5E@-{LI3gf#EcfE=H@7Ls8}TlRzy#dnl-Y5}r#!8%@SN54OsU5n-HTOobyYkvqg zF(&EUX;e=L+SObLzC}S!n%WMIJb3B=3zZ3P9*9Vpyw&vnGoL$4lVz0$jH>~R^KRv~ zAwL2EPvGwpo@ja0?&FPNllbiHfc3VFfksYvz}t?DJEqs5K9$AZ7>(76t+tkF$v{u{^doZ?^b?A#~u zpWV4Di6NhgNo&^gtMjB>2>mw68_?pEUw>zg4slgv2QKjgu-jtAERW*=uMhZ~_azq4 zH~+9H{J0|fLL^WiVze%fpAnTZ;^OYMfr;?61#xY!Skj)D@wZH=mH1LkgE4;`EA$_kfJCDU%v zTLnrKITE*uKbvdDhluVzNkP6`ABGaj)zC;MaR94t0a#>tqL=?x`QH{sA`W&{9Jv zxSSMumIl(?Qe`xBtzCk%b$C8;IC~`P{%DOV^3HcX7b_Na8Iow#q2qvn!s+&=`oNK6 zJ?r;9aW2=~MnXFkhEU(au+vK=9?h>o5K`DR(VC$c7zTbQlP>=y7oI&V1T(RC$HEY9 zB*1@6LvO1zGu1bMzm$pE6YHTBpD$LB?7RS2l#|fs&1qIWp({BP;s|~y6HUdT4vso2 zosKw9t}Je}vQ8=_Qf)y#+ieA%uFPoxF>wil zCZIq1uV)h?Sw; zeiEa$2B#YYOJCIzwMOA<2Lr=ygq;~4cGdF!a2{i?U2)}Axfb^dq>Q0wprUqyL;h4=}9T*hmj zox)uT4sCqy8XF&7UWUcZ!F_yuyy3RQcM-B-eCAmYaI*L!b+UH-3mXAfPF`ea{<@qG zE7S0dyNee!7K6k-3HcXjfvO3`^*HGLR}D1KHwrr|abF*Dm@Uz7a0nO;HQ-q~ZDgU4 z<3zTLu9nw5EoK(?W@a2fL)a#7ow=dWk1e1y-KTQ~py7NStjKvR<;HUq{%!6r+q;1r zbFK(GC9ldz$XhXtu-XoJY9mhx?AHNxB5a`djcQ( zm6p-7_VrV3Zx&LN0<_ix8O^_}qIaLkVVv)@g0I|x4K1u`gllMF2Aijl$Jf{8PmL9* z`WTH)Gk^J)x6k5B9!R!R6XE1t9krh)=!rm|%PN(QO6i2YdE&rrX>~v{5|n|$01&H; zLDskkM(cy0k19;UDUB<-pJNRqI4~#I#T+^?IfC$5i^0CZvp#H*MR+bN;y>3a$;`qt z2#vBMd#Q~d(7~N>h19Ymszq0NVyXh`ud&v^JDREOYS|+++ocja(PyYE7=#51o+dtPN+W?uuD{Aqp(HEa! zHPQcU$)9^yWQT{|8lT~~`(n)gOj~ZzUOdh>-s5Tx<28TQzN!sbuZrZ2#T<&!1kkM_ z0x7*M|7Jgc6cAX+zThL*h0wtZ9k4^}8YV_!i2QN;r%PO=5N}!2(jGJ77bn)$evh$6 zW@gNi1|+;EX(yjE+HslG(OGM#(1^4##Ay0$DiR)+e?_!P^LYGhud5GWCWgXhRtrTH z81?4q;NB`nQ*#E}2n#)}`2s5xBtg1DiBsHt zDg7CzE}`Dd5+Y;)W%DEX=Dn?|<9a_IddoW@K?zHa^vt>_;3rXl-zU$ibQ@^~NPM*< zD)i~^Ivi1+uiNYP03D6KM_0U1~?@BRSdSu4lLjDUHAYq6G+3b zJr{ zyy3h%)~|PUrN&@BT8B?G$YUSq%h9hM($-CXv^ooHHWOs!n@gi zbFYwrHUoXzNu+^ewPerzWvHElVS1IXK%x@A4;>x+cFiXIWMG0kbnC zfmgv+0c6`~SW5Qsn?t@Xn99fQElYg&X=zY;X8|)11MNRwP`vS3;nscItY8qbwLohO zE8Oi!qG!sG5Ppxqn^fU6ik(C+89?i{fxnnhV<)w5A0V-{JK1C<4uT%J{b(_p0>j{k zi*W3U5HNF^N6iVnNW#cHpmA9b;<9g#b)b&h8=8E6(_X!yiPWBRKXfKF4u%dAX+x+t zBmK~Dg{==V2DY|DrkqC$5FeCx4V}3l;caog6eD*wVg1wQ4h!y9%ojE{>{QQY4wmGh zp?A@2dBK^04Kh3|89KHYmf&`GDL$}IXD=Zkk>4f(gHGPFmNo>#ECrzu9u)w<)&S7& z=!B;bczm+cyQ{rw_u||arux>noLIFPL+&lWE>KxX&zDLLfVJ>+s@@h#FN@+s00l!l zw+iK#+Xe+o&COc!a8>ks(+!SUX0{7hI)KmXDne58F3;2EryZl3^!IJYuWr-r;hp~N z8R|;F7^5$ozTo!D!eMH)PO#t2V=6HdlYM?JqnNiOYSv%2x}~n= z-g`A)h_e{RY=B~pm$qZ-Ga(3=(}q{5fwryM{MxVP8y>=|QHK0$LLonQgDcQ52)k36 zQO_f%oXbk27$2`cU~w}*g{H^naScXLa5DvG0r&T#G;()Y7gBNH+QKPnPz`%_|Hd+= z{Fl&i_k9igIZ+C}7E(}Zu~(Kl_volRymN(Ou%65G{6!k(_c4-~(3z953tMQX3DL-fYft4k-8r z?`m-I2Jzd?f-~8$PjiPr=Te}(-zD{hB@aD02bnr|OEKYkq0sa*Dk>P)I2m;dDfe@k z9Kq@jbTZ7}S$|X=1N*aP)mQ)8O zX-xxWB4;O~pMG}EIB&ATPY2SRQ8)dpf6fW|C&uhuwI)MeG-N@umiB@JiQAzELf0OG zhb&L9dpF1Y;eV(hI4CPQ*3VwgnOleCAW93!H0J@t*NtspOAe}IVs6=mY4Ws93#@zO zIb&_(!*Lq6d=x)$|A|QlGY&GvZl-35Iq36}kg+&_MKtiU=DCQS3~gFHn`{NJrMV=U ztRd|G{gy;QSOV+Hf_m(;vBUalBbqqldcPlbzX);Ih{ZQ?ReF^SPz)Fn(!FTW>#MX^H$4M? z-hxF2!Y|D$g+su`mYr;2sam8rJ}+F64nGa2uof*1;3rBx8SgY9zdVUZ%yA#0Vr@-C zl-sKv0%6h93^2I+)nI%-FDRRj2LXA;iIV0$aX^P{44p(-@*dTqVxks$Iu;zg_h?qhq2jfPZaUTVYm zawJOwTI2+yaeZIp*SMTW1|lCo+dXP?AQx5_sq72uQGrqOXe}b8n!HBXDgtG1)x3}& zY5g@2CSuRG456bOUnwUGUzAWrTTl!WXMq)QlZ*}dGB(|zdq`#xNo{HU29EHn)rhg} z;F8wl*A2QwLz|l^0Y_F+SoqHu-f?-a<<^VULIA_=P`r~@A?90d7^7_ad z_dBjn*vjr7I~jAOBnU&Ef6+VS% zE^!$p=AqU8>!HZC>UgRaE0^fe^nk17wM;Ry!?6OxlpbfTg#%W5wojwFDdj^LRgYI` z$ff9k6#3EF6tU5KxP?)ws%2orP`(0q#!4+1irmb((0f%a1{l!4C0kWL3kl3I<4aBs z8_XzQldv0CwWo`4v5~_|2g$Ws%sPIHBKM#5+LvbK{*8--c@ibj*k4orF$?B+kGeya zz|76j#6!QNUjL){tHt#3wN1bDr@TqNF7{sk=ZzySYj;_Unaq>aQ<5OTZ!r46^)}`& zEe^s6^fc3tovmx3tn3|Pu2y{5F7kCO4L1?<1cb_E5zI zTu|I)igT&tiK|p25=_Jy8%9ev4f-!CEEGr>8(_LBH(y2@;qDs}nX?hg;CP0`g`w>PeC=1$1FU=W%U|*{F(s>0F>U`VZBbnKHQn;|?$wN~=7t{-Gtl zw;v+a-pzxqZ;gY|z8Rg?vTXyBB@#;1N8W`0vH%iVf>$*09P%^I+s#^atNgMYsRx35$13>x*hLIl#Z{n+b5< zD^#?OE}`o)GGDsJ>pNvnI$sQ+blb?D+euU9nUYaNwc)HOp4FcKQ)_qv+y2ju*!K7%?o5C>J-@f!zAcLW&r+H} z?Y=%w@4FF9;N@oMxMwi1x9Qc@A+-3dEuzwS9I21B4yCLLzznO ztHc|vW**I+Va27SpNKf>24v_Kwl<>TF5o(NuL?B9m6)}~#S~{7b%dO@WC4wbzhT8c zWpnTX+EVFo78|K{(SgP6mMr3~xx*08U%sP!duehbzWO$#Gg{G~NPPi6IEs!>hm!K^ zFgt18u)MUlD4(NHeMHmb5=Gi|$+ByPR*Tx;Lx<3d&vi!-O9cOpMgjGqSpn*=d&xDY-c{Q^qyj?YHnp&Fg;U!0m zO?uyYjKXs{Uz1`8%7MDnHlAflE<-sFABqigl#JfpNQw$fht4j51&v)cf=RBQgiU%i z&Gc_Eq%c2928tqiu7|XvG#nN9Ioi=i(c24-wOq9M)~bm0SmWVq{cC>nFMQ!DHS3$5NVPbXFBgMA{_jR zIGjCLR00mf?&set%Nflq+VLLcTzk6POz7`@Ia1kSQ6`%I<7lmZqy0SPMpwxMHhH0~|S_g>g5p2P+8)ydF>t;Jse z+^@nXQktZ6=g464qbZjQdRH1|xKuWB=boV4^cci=$9RTAS@qW!Bjbvk@E)TzTTVDHH)9BcYYdA_pQc(Wl)0lLgheVF{ z{WO5p?qA~K1lfo^h;MAzU1eRSQ}*i9k=~N(%J!6`PTVR_N~detpOxu*l`VFsZ^Bts zFk!j0p!sX=Za6LWNFcC-*6=nFVDhD`Ob+L>C;3}?GPz;9a?YPOc@%9?m1AhjAW&_( zbcqq+ulLuW;`OPVOa?N@=kJ#Jv>@`X;+Oc6h9iLS^vX^9T7Dy|?hMk^L5s%FSbUa4 zW+3moUHB+k1DbYb?)SGt+C_=**tY-@=H^EnjKf6&oIeH~bo(s-=hYh#2clPyGx7Sd z7M1k7vov-cdab=p&+-WyTYUq`@B&Pxi1C(jk*w{C{x*n?r0K`ABn{DBV1DHxeMBLG zT}K@xaD2I61vJo|Wae}UJYAu>dwLMDkzw(6ejq$Dbm1zo7F&+N=`3nFfmGoS0Hs;- zhR4fVRh=!28%WB$NeWH!e*K!mG&j8m;$0dUGj@&V9~XTgYLfzfl}9reM=15*(u^!e z+B@e;#JOs00Si(i;%@@mxOf+ZwCRYShFqAF)R>!ozQqLIQw!Ft%TLJ8jw&rZzPi8O z0r8$H;A%x6Ba#x>I%K8M02{RYc;G*yJ^C?nR^P~dwuD~^W)OQx`XL1Lx^-Ok@ULJ zE~z2wa-I?FUB$R1UDIH@R;*3aA1Uiqr>slcs6R5avm7It_v_S)23Ln&!dhpZ&c2UY zS@qz6iv2k_w%GnhEKBuX`V|fAl+D#-5_#nq`Ol0HI9v-qR!MAMQplMtwTzLtMIE`r_&!d}Y6WYQ8>kX&Ibb z3of})FwvLWn2pdyS!Je3>8~eC=^uZPe$_T{#0VffT5*$y_V9vQrLTEZCWy)}f%g3o zgaIW;hP=~9z3)N~UtfZ`*s}pc#WW^v?8R!v^}5wFMa7k&0k1(1 zwbiGTom)T)8LX#Rf8VaEzv=I`u^PFz$2OM6jQ-&2T3S{)u*`~CZEr|7Ha2cg^FinP zJp4^eEI4M_oDreBfi(%JLUreQ(wbT<&fk$tf5!=Z)eu&WudphCqN`!H2P!be0Vo{n zXw)w0A~2E3)B+HHw_lZIpzICzOtnq{4N`}2b?w+i=qS!dn%&a_VBpxL!$mRh1SgtY zy*)bLSG!iGm9=9tFuF%KU=ECYoa>wF!bSOge7*>n#F$e3IrUGk1hOZRdj~GXsGi}lws_B-6$|!F^u?p%_T9ntnEt3 zd{yCD)E63r$Y#t12KTgOr3l(m$7XoUZiRCe(Z(yJ?@D<>^Ron_WdiafbC-RXaARzX z`#sQOmTsJA#$v?XsW^~qT}QiA(q$rDw_Z#2o*Xz2`1tRca1^b5^|QY%O5cCA{EXM{ zOLSG^U@PdUg=d-Np}YCo)B4Mji4||j7LWpYG!t=)K=lG*0&L5K)op*2-TPyoQ&M5l zXoULy)6a1&JY2CtyA2jQeL23d(P*IK(fPc8wum9)M-;fd9QATt&NNu}@ox*^)=FJa z(gf&H&hL6Eu=aqyJplVBA+i9)0!WBI%4PmjxBFBeTP%gXj|e%w2mJls&ajLOuIhRo z9|B_Qk9dVULp85!s7HeHNnntNo&Db@-%yLY-jG)bBc`U7IJc(YqOSY(ww`Sq+}&#l zW?b=mV-P6Ew0YoSjfk%6xHaA~(5yDrBF5d^zm~6`lxtsg-%KK3FREWRNf;SOzjcu# z=JMat>8%{bt%rOHKUM!IP9kf58xU6UkRUQMqoVU<^=yGiee{lv>wE^KtU}LI`Vqaw zeOqn#PEn!5g{}5&#VhScx$I!hF3c31c3=wX%i|h>>tdM4jwI++Yb#It^FtUDGe>A# z94GK9r~Tp%FOuH@9}O){I%ZLMdDM#3<4a=50`cArht^7f-r^k`N7RXj0Mw1_h%Qot}y5StwaKSs{S~5mP?xUy7TPMd}8J>DFA@nMSj{ zL>TAgG-&B^OvxbJ;w+4DcNd0&BEC~?6NfB*_Nb)be6>VraX2e($Msusq2pw3#fUZ2cH{8@FT*;G3iFF?@t}yFu7|`%ZF{p)UT)BzP2+Zo-@t zBPH-KCZqF5mjb$5_1!9AG(klp%1+_1dteaa^x&y)-pqa^=QxKnDjE(Oy*Ws82#HK} zL;H7OK7^I(^oF4Bgv8oB$r}HB(0%#iPS{BXf(}D}NCm7IB)5@o+9^Hq65FDD$tgv*n!%sJ-|6y7l`6se$CJb73F}0&+E((&Dokob{BsiBJ(t#_yVZ3`=`-+J zGvZFUQ=lIm`YVtyxwH`1MZQ_&DCt`|kTwy@V3=Vii~JO3(2c^ZFRkgAoz!c1Vp8Na z84zuQwLn0TM09O3^F7xeFwfJO>CN9AvGSwh1@~-{5X#1&L)fGW6x#@QeZ`@JgX_KV zhYp8qY;yvp2xOiPNrCEzi+lia=dH{9JIN?yX~~_DnQ3Td_QlUn-`%6NpjZv8CXe{+ z{QS%P8%rV%!W;+G)(Up|G(>m9Y~QsK?Z2-Q-v3*T4?%-`vahYI5T%~>^=m+gYtx#X z8)4xhSDeChcX@L`R92qDk78rp0k4)VsMWiGkcb-J4Ua5W32A4--?(;94MRw)`(J>( zfe=8`4w=^xcJoGJS+Bq9i}7HQ>_;szfP83G(5~z`hRezlomiM7lcPObN`4BeE>;PZ zM-vr54-Rq?@5F;NSD@3w3X!n{8^%@cXP=L(=9wFS8Dlt?2w9!7x8qeKM@0FBeZJeF zf?312fvP~>AawXke7uqF8M+y-ucbiLy8)0Maui|h%qs@ zU@MK>6%r)mKwRusT3DX83xKbk{mIKw)(1CEQw)KH{LNr9urst73XJb`mxWQ*lpana z!3ZdWw5yTy9E@M~_0E8Sesm5`GMXT7nNR2$Y$W3nHWOA=P2fOnp&4o@sm8RogZ(r~ zs!;3C=7jR$PEJlH{qqZ&MHAP$q7n&d3;a8(@!TRO2`wd}i_2Fg4vxUMCa5gDb8M=~ z5o#fEQ}p4*wLV}jpP(v`AY&KbKWSj(0aeq&B4K-^O(cD@?uYs}Q7c^6+{wPOJ!L*5 zT>m4XA%d+$p^b(tnzNQ)(MX$2oZ*_ZcX~M_!{dBuv^X`^t(3Rq7%m$si4@eGTsb3K zCmHFT;RvoK2~+EE<00y;0~GqP9(#^oT8)g5P+nBa0Y8c_4%Yby2l0!df+@59P07y? z<}TL^LI^ABh#w{(F}j;k(&&j8KTBu(HnN@*A7i&lj;w0!mtFb5^&T+B%(E&CJX145 z)l}vhdV5wNIEsxLn^o6Wf;Qb&3oi_{(5<#@MT>v`6_A4*$qkV z5%*Xcj=!EXFn=CVhrT>!z=uIb0)? z==9#n&&XDcH+z9pA4KOg8lNFdD5zdV1BV1~dzX~ML#ywgd6;N6pjU%~6nFxTc**dy z>*J8NwhVO0#St(*=06y(L^HJ>R5^h!uu>Md{rS=FV=Zow#rph}vbg{Iv0cChXp+3S zIY6GSO`D(oq+VYr*|k6Y#v=UOh1%o5G1>wD?0!`k{H1~p+PVEFE#V5XQ#QV**9+t0 z;pH}M*9>%+#=-lQ_UWGCp>y`C?J#Em->^!N&CK|jy($5Qln3H3xYB7WPFmJxP1uN{YxJ`AoGvmhF zC54Lb3(LpHyXo7HRfh@$2r_lS0dT)(l$XahI9@+qxZh8c!l3pZ{0!%w;FDc`@QDkq zSgRfe@0U4!eQICv%2YH+3XZ(3n`92EqM&VQ|gsx6YwHf+wp?3w7FZXJ zUJo{n18GERsIfnFUzi%_TetVmSF7pzQAj#mlPSCdC{sV6Vkg@p)qU&mUgi(4Pi`4^ z45Z-;!&sb!jp zmEG`Vj+1TYYTDhbLu4`eXF|*fDrNW3Dk>+6vZ9_6q`nLg-GS<5)I2j5*~{74-Fo-W(225fclCzXlnOI%A%+;>w`ExvK|%-DcX!<#H6ri1cbsmYN(L%mC*RhiXms zHwIf6fevRioKD^-MT*?3FPao)V9AR)*CXY7q9oW3gb{TDskm5EBO4-&|Mz-+auEIm zjliOWoHW9N!9-zL^x737XgTEBEem-m^F9qvJq>G21UT_T32s8t7Qz(GPd2AnT+VRQ6sRhs)QPkS1$ zG^d4WCx`y?O1{<(Ccka&z2&ZMJ0$?*u;*44T2${NVvE_ zIt4bWtDEneL^F9T%58yew15scO{P_68yrEZEX5nX6aL?i9zH87LPyVz)*x5LZo6D{ z5K;k~6)hS_mO)OhkK2x+=pSx-RA#D|1{hQ=FF9#l-jLQ&^1G|=iv|tHK3PwHbqf1C zVoLPiU?Un1nRyTdVaD8A_Y$^wuo)QXGh|=hJoEaa{e|+WWx`t-? zT(k_hnO;mI?b@wvLH%e21?Y_Z^NhnM-#gdL)ut#MW3qKW+sx0^-R_*jg) zhHA>K{%F$geT)+{8VV9lr^~>>3^(Uv7q>LyjVMPOHJCNGD-0i-!TmL=iAly4ByRng2cFO!uS*Zv z|5X12H>{BP=`@!>#AoO6>C7!RkH{Ngfv+CaDs?=tfF_XFjxk?NKoHoy&<;T;z(;7e zA7V6%db+LcjWlW35nhJ)37(m&>0kb-Gc!&y2sR(~85~X-YqShUXmGm*+rROMH+naQ z#CwP!TRqmpsju(f>jmEETTOrtrPuS>;RX8wx465Hev5?8jv3o@@pJK@W7>S36ter+ zX!I{_wb!I?mVi%ek14H;(^w9B(z9Y~TiXv)+N#1T0(A6wx=~zw{P2jJFRZLZF`~+j zJjye*OoFZy);1OP7dz~8b8{qgY|s%>me2@yL0!3=qocGA&p*H@LKTEO%{XME<(Pba zK*-=V2wqUNJ%mpgG}0Dyv22ib!$@Cnr4O8O|3B=#Ra9JEvo74YySuwP1Pe~^00|Nx zxO;GS*PtOtkf6bxAdLhI65OG23GU9n`hE8q<2&bO?{lvIn;yOBX7yZEHA|nW$$WlW z#X`xwe|b8_TG>m)RF}!0nlwJs^yV_^pf$6X<#$s3P zOBx~&_G*mMvmQbB=c*!Di6 zxG#~4Qpuu;%e+habaHOtv)ts;+-fYBX4zK%D+cN@A&MfCj`vHsT{a-D;md{$z3ju`Ao=pQ^;#l#u z1$zb-aFrQ<^8HSF{%nQ$eN)nCa9|?Lv`JV-6n4ayV@#vro=lRV?je-6&t^TEJ;;`{ zXrwFqaTW<~bKg(jZPBw8R4gB1oi_9(PxS6o>m$EjLJ7gf{FSRBsd*HpYu^S7WepGC zfoE+f5MY;&|DA03ukhTpHT%d%`HiZT6r#=k7yG%KltQ@UHai?bj_i`OAUM^(Oxl26 zkVeHg`Gg6MEcseBz5z0ri@~ZE|If>d>*=>pZ4n1^>hs9;jQ!q62r}Y3zHv4xxw*ft)L86C)|!j?Y=_!`zM?S?wXX zt{&NJnr4M`{)zXkfnjXhfwte>gQtd2AOoN$bnxwuk70~L9VYBf+e|r|o*q$)^*w!p zx+X)?xB?SK*%-fVo|B#G*J7Z(?}{7cdbQa&lSnsq#&hUnC2{?7r`Mj$L*f$o907Ke z`k(}QeidVA02wae9paRWIOx$#o#yBb&fe9yU42={$`jn^`nlHc3P54=?$FgGFL=>~ zj{4H)#l&iNB(0-6vDgUZz)M4z#{nkJ&COx?Qn=6CwTN@acW|qIW_V(0!5zb&>yh48 z7==xj1}0uz$8quaPE?!*?0uYn+;A0+8Ln~fRq>l{3)`Q%obV3;wf}PF=oGmVlTHd5 z{Y2HH;6UhQcf&JM`V5a2aP|s4cQN_`E3%AlK)~l%5!Shlgsq}HDLXr2c$igJUyp{C z9bZiivw8l`x_oMyQ70RbGUmD2+w}qU9Jodt3K0ZG#wP`~1W%CKrrdin{CoF5upLDzN0*Q3%&6#}zk*MISrC+|XGAm+ds?%n1)JZjfy@KY=%baH`Ksk7@7;Zjkj zbw@LefX@QvC?OJK0;k01tX(6YFHi#7SfZ!ZeaR~2|IkD zTQKn~ z;`M$)=lcs0DwQ=B+?+!fTr^vkkEuej$0y<$HqV`b8v8h%ei1^UGj1n;Ou>jsxPKS< z-WxF~aPr#< zh!AMx?*1!5&;$~``hsgB$j@I;+5#W_h9yeUACqMNi*5@y;aAE9WF+5*%n$L*)*ZP)!Up{T77w~kM(8WoFa4$@_eGyxwPD@mvJ)FFL_e5lVRQPAP?#8lhdVs6%%xow|*?ykvQ5F2a8}$ z_4t!3x09dBsq;){&%ad-8|aZX%^D}fHcBR0uQV*-E{uRXT@?!O_lK)8R5#`_OAQ-Z zoW#w~@6P1sfo%ewGoQjq3082I)1U((h)O&lOO8}QEwAsh-p)3`#%1eoWRz{OyMGNbb{^wazIxQ%uC&>0xWmW!*ro%onDYzfXe)FBsjz`K9-qG^fH zDUuS(txjfXW9pzb@qO5P?!yb?7g(nwWms<)tx46o+HYovq7qreA1Bw9JP4R^b3T8- zrSFvN&tPbwhb;I8Bv}dRCH|3y>9&aJE0%)|X%*a&w|2Dc2f`)D{{GN&p#hroMRn)* z_yusbdNuffn9A}&%4~k^ksiqA;`0rv#3J6vd-qQE)kJpAUD%#JwHgq|%8e{NLK>yv zg+J7l2Appd^BO!^CkGuo+{yC*xo_Zna`8+eAwwdDmgRuYhhn6)KE+tlV)kz}r~1CJ z$&Cv&H3YM379$CB*Qh``nS zZH}xj3)GR~!X8P1R4e3|B^UXs!IDry`u^t1`;7x%Q{J%U6U}cbeS-qM<%fsRL%YEb zIfrV?N2Bx7I8t^>uzyYMUhSO_H6^7PhM$aW1r;n0Nizsehaa62k6mG1KFQyI94qfj z4#Q0nz-2hgCfh-`)1t%XJ`8wCOUDmAY;13DH#Vl$e0WIdL~XbdEgD5KF}m3UynF7)zEw3#x_! zhCl)_>%F$EU&TURMb3u{=Pa@CS zIE0^>0{sTqH6k#~kAo&+rgoArtc+d#Wmp`*ENXqM$Xn-}E8tC*5LP4LkwNZT)d^5@R*AFt(Hzy1! zZs-118*j!Twjb7#&K(D!0-IM@>?aat)7<8sWX3v?C~3`YS;pC9p=ZxTDN06@c>Kq% z^hko2TdZep0VKPfM}h*2apQ}Z02Hnm<}N3a1YM4S9U-F-KVay0$Ge!wk4wQ_oG#$9 zm&#ue>g7JV-;iNXnLHtnTugQsl*F1VbObPJlI)R*+2Gxee!tr5M@L5|{`>)hE&<%d zMgqb`+mAO9)A>^5%Typq-)B_T3Oj63(HQR_rV>k95eABUJXk&c+oC9qbV%KM%>l4i zP@a(HRNedaGVvHf%)ukbr~FQiv(1&(sG{=~5?E){in4z37A zysa@O+`@83^Z0k7nd2-{R(2KSN`9E}d0g6(dJfp!Rd(qncl_#>Z22YC52*Rx;I=(<^?>-qB_VLdV#)}xPWA1+BY zZm&zYy47Ga;H^1SG0yfvUVF`dsW06*z6c$wc1m4`T+wE$u|{?B-)to5Ngsl7k zw4kK!SCZOmb%r$4lWkbb`Z`v9k!RV2uln1HEI+!_4s9)e;o@yYmA+QU{KAZ9uK9LG z{f%N^d+Io@-*bSCFmMlDH(m}2KjMrS%{P2Ihzm5!qwvR7YTUSNp3+GIzk}JrTXH|d z4@r3Fz8Xzo@I5jN47_o=dB#zEIWv_|iI=+_{j4FZ_vP}Bj{D2U@oE#w^9Ht%{zG%u zGS_?>rPkXi-)Hp8r-|joSpwjIa!4xitU30DmGF~UGNg6J9;dKS1`CbWK=0gOm}kW> zFXkM#DK-)$>_3O@_7rlVP-QHd43yvc5?Lk9HBgZ|zFDIM&CSeh_F_r?itjUTa;Adp z#zy1yLU#ZDe(V~mau6E#*mn~(Ax%kY#{6wDmyy@QP8T>dW{>7u*q^(L^VVdFyicN>^u zFS|O)JHkk8(xWa{%j1f*deJ#2j(y)HIR}>XD0N$(jfB&4`*tX-AR_f#Afv<_EU~Cv zF8pr0b<+0RNXZ_-02V?l5cnu5wmF@%pKWdlQnU5u@p3Wcv_V_`q%4LS#N|hFOrmhs zOk~uz>ZkCdeTi&;Ac1yZgVO%#5J83c38%~Gh18a5ytnO+Quu6zX|S#ZkE`QSXXLB` z7)HQW+c*n)zLAJe%rnGdx^R>jNh>*9F19+AiGlY?m*=i_kV>0J$GHF;puh(>+UzTr z$E$Z~K zDI29fi5@T852Kq8kIzGm&VTa~F+bg7Jv9L7#>Ph6_Ol(|k^8MNIkb6YJqrr~O!7yP zG0w61%TqXK7mvwdWj#-j1fLISUj%;qV#08_En&B~|AFlMfyo1R82;5KJ(Py--LwI)B$^RJ*gQA@+vG z=1rYg=}bp{&xfo${4%vS)YUuMwaEM2Tx6C*lO4|y??oiUvl6BY^a(9gJ&5c~A9Xe5 z-ZBAT{Ab0%>R-)PuEy5i2C9PnI=|{KoldOt6UM7%VP~E=l1b0$tT4-k7o}0Ci=wvq znpafi(SFl2{j;Un#7E887j2__5%4gig1B^oTo;s<47+M%#4Y%KvFpzr{IjHJI*i^2 zQNg}@n!eFuI~e<#8=-DD{iJ!{GSCzpMJ?-aBuCt(dw`2O-l}*KtOA?apN$WW-gG+= zulN!Jw9I;G0=obQYgB*EK{yA)KZeljnqA>oFK%9aBvqdp|60$^R0I ziuRKhJoMR?`D)GeMI%S%<;}L0Gs6A5e_e_8#>OT&5c8P znkw%&Q)|Wi$b;;xE`>pJ2~}BDX+S=Ltvu)cKQD*>P8I)yeSr;10Xevf2zPoiVH#8g z6#&O|8%ec%+Sc#$`T$$U+86l5alOI~?(cd*HA#0E6usb(SoMX&6M81Nhip$isCPS8Sj(-$PrG@jervKOfG_mho81-9^ipFr{_0cFC#;1|ZcK`H3 z6C4=AX$6KK5ZPkkQ~jE%&I5<-v(-AT&})>}k>&m9HhdZGc^dBs36!YAwk*i)UC9iD z{jl~5BXQfV*3Sdf$Bt55-lcYXL{qMCp8_3c^X>(lz18cbot)KXFz1>*Ed>JBAW{Wn!LcYZKw!z4& zQ)V?ARX^9QD&V)zXL+-i?-(|!QeT%_g@HxbYE1Ug=W7xfS{{!EZlC=`euP+UuD-dN zZxcmJNtcMalDfJ*`6>CDGv=4mM_rJw_WEU)Bp9X@nJo7aP1@lgxgiiuLc|Dh?vJ&- zZZm3Cq4B`JB8+pLg?g*p#(E&kCeZ5?TcFefsOAK&SfSx-SIr(8DBG`$(xZwMD z0-SXkW)_xEZN|{*W+vQ}Dc#S&afLKLQIs6__lzSSLrm#QENeuhjk4VA6`es@Szq;} zRmzoF?Ls>$1wz;H-w9~Q&KyBt)bw%i=_Pk<0x)%XdcOv%p3`{L@OJyu8P@Ett$A}( zLf~IGE#KGCN8ryWMbq3EvIGHuy4k*4-fBoNDgz=t^*p;nZ)hzH@*d)dZ(j3X1I`47 zv^quO1GEL}INAKxFWMTt1x`#4i!`qWqxJGH-&x<$w|+xxz?MSc2N1wJH!A6r@V#HN zvLX&))Q+&HS3TI_7A&sV^G(fz=qjqKrIT(dwDi6WUX^4-bT3V8r1v6g2L#ZDG7x`H zGJ=B>7i;6r93@i~rg=L##HD5)QqUOaI|qL&tjGHmPbtC1$tLW<>Y-LPzc)Ih$PO6H z^@)Wl8Ri;_S2C-G=@d=*eJ_*FnM`Rq_+9n%>}($vLJ!LUIqXPH)MBy7B-j{fUmo>g zsK(DS`^-pEpV*rDHu&n(6E?-(w3DW4j8e&++D~5Q@+`2Z+_sjhx+?t!e%pI@$r8Ej zlsDhMA!Oc}RAp}2%{BIh9_&y;4p>LV=YZ|`54fiRtUk_+k7D%xeZurKdeL`_Zv}P0 zWTbrEW)B8m#3{G8ZcWNpS;S;lUq-U1Wt1!MO=WQ6;vDspCO*CYq|D}vS@>!HV?I#9 zNRsY-$c8&z-!J}K52%91jb6LN|GaD$cgM%}=_D5b&{snV9teZ|pMOyCpB1dhv?q92 z7QW6c%#m_C+)TLk&@g6kI3ZxC*s@q0d(=T<#}Ju+*rdr8c@zj>J?-mS^Fp{$b2(an z;h3N0Kx!zgJevJ$70H5cZHIL6!`r6qGlE-xUu?ric%#sw)PDZtF889C%|< znWBEgOM{ZZRHJr2>uo;b(F++W=y{-4gM@=DeL?~Y8yieJHf0Z|$u&D$dTV<}OF~3^ z8nxu?%W&y8JSclwG-N0-MYymw&1j%;7AJ7J3=4ZQP4Hy)xzC|kO6(iJ2_!j!LrZZK z<@dq3HUs~8s3W=Xi-PTf=ak-5S)roaLd8V)EdE1qL@$Y}_wA z>^<9Gv`vv{V1gqG^tOJc3={cpt}eapd9^BBWxcxte8#5MK?8*0HP#26!_RC8Be-Gx zVYG`>dc=KxzXje7HUmek;nu7PXAr((KYLmbTOO?Fr$||@u`c+jk4BnN$9i_OPfm!U zO1TW*)FqZYbf|946jGRsuZnTi4068bEVxrn7vyb)#o|IXjTKt)3_+g`)Q1eRmzklV zV^lhLnGV6)M7BsS$>;hm2#IB+Ghch{vOo&P4MOalYiOxZF(c57{W9EF;ZK6FR zz?DrXedgz`M7Ew;A`i<>azO=WH$e7aXx(-(-hcZh0@ z;oK>+_lkBY=OrBov zz>?_S=i8l_oa`}j+Y65}a^16tr;SKwH;PgaatI6U=$IXdT~t>FiXuXW2H8IL>vNWy zfTWcuPTgSA7rte+>Rfg&&^#Fym9OmuDOM z*8FUQc;PBOKigxD6~BXYd&6YnK<0OQ-n)mU>bY&b~4(>LUy4=L%`YZ(GY04bEJ^K0NY9BM21T{r`KS4>64S z^G_-O4MLN2+%4At47fo|AS{qszTj937UH_~QV-X(4qTM!kF>TM37)#>AZ7yI&pSdM#t=Fmnq z=Z(NNUisFYIoA;Lfs=r?;U8kIg~U?FvtC{S#ugBSxu!gs<6h;)llWAu&Q2ubZTBMWshTKEKr3@52Xb6w56rC> z@vpNbq<^`-*eKunp3|Uxq@d%Z)tAT5ul@9BY=s*?x@JE)egw;a?EAMGc%VuH9BL3I zy_(R0lt4|(PAnDNX|F>e?)lVmo81U3ox*?wOxqCUdjBiw_j_Xa((Ub3SqL1vSkS&2oEHluG<5$4{N62RXQ-X zr8j+E8;LLjQRR2TI+NTnf8+$`+sUDWSBbVmMe@f&&-oeI68UT_MykJvWuAOF_KvND z9gQdR762-yu?x9LqwwCDiD}Z!gi_;q)dZ&HdEz^fKiwDnOW}Z&n7OzN&MN*y;4Xb# z_C8AU5UTmyok6x5$H4tUKosV2U>uQZREVRGBp=&GZ>u!uc6ttVzEP85pY8VzC z0Z9#orKr=t`&CdBW-*MgUcG4uZAfH~yJAb2k zco>=@GPX4x!A*_*^>pI=7RFhrj{UfSxlkc)b>hg)pjkof*}HnTX7zq+d%HHuA2>i) zP^TrJ@Y8cC==SmM!o;$;A!+L(@N(q^NCn^%5%n%Dp;=lsJXGy^2nGbkCp;)~I+?`= zHZ?WXGD!Ay^UQjGIx=mGW7ucDDo$3V)2| zDvLr#=jMBbdsC@f-Z)q^!QBG2AQ>tlKIXwRPA9KpwG%)@Y?eYB)(*Vi6n2eagd1IG zTj76>ZS&MT%u~>udhil8NSajdP=K%6Z4u!^f!h04i+gonE4&KI#z||^fLPDm*twa} zxLKLTxr~zhzO@CqDB5Nfvxz%Q3oDFG%~yi=vQX3CfWM4Ugs$=#{=<+DVF*HPd^9<=KFh)g_e1S{53i+ z`LR5*hfP=4E6n_`$qp8sw4XKZB}o&uL4N#kuw4<)fb%Lf!4E3gWmh`SNlOXs3o|!2 z-{xjZJwHb!H0dy2CGYE#r4eQh+LoDc%ikrpwECQc?u#TErj8s^TU(bCGi*yP5swx5G@+?F6U@Ni9VKI>t8i2U7wge(%Z{`6rni6G25R zi&sJ&x*-mLqibV2_?SiEE9aT=4*pIgMd9LrSQ3Cti822XUfkhacmjr`QIwUVf!Pl9 zp_S>T!c749dFokvIN?yY=VkYi_JcKbp7Z%4WvRhfc~AI=tK~M&%(&Fi;Nh`D<1oIL zgF3BppHeJ2RzG5mAxf5#Vz#F4Z`|_tv&}uS>^=RufwG9q4gp~xVM8XpnWP+);C)dh zE!?@zBQI_LVGbwofWqW_=I5t3gVbUt`v#vh57qxQT09tIKbc{~q1Te>MuDq9| z|4F8j231r=z82PtR;0gDR8y0aHs!7R{JL~#w3YmOIm6~L36wJ@soFju#o!Qk#HL; zc;URYo{JB2Ygq1A@%A@-M}sDy>_Ex*;gj8K4+K`$VG|3JRg56J;~M~BlF!8We5U~o z*nrkLX4`YKfeu&zr8M-__2R=xed*^&D*f@M^>QPPL8{3lxx-7UC*fJ79S>ND0LIot zPOn%pi_6yJey%R|F(a}2D}0dJdp3c1P0KG*&tozycWLqS0lauuqYk%6EBWj+#y6S< zD}9IR$dH%gTyCkq>G=)flLG+5S&}z&O6qi7r-0y@hV>6g`SLgXj~O2)qHZ=nuiHB; z?(d7&xW{Q1zZM`<;He*;aJ%E?B$#up;9eNWm6O!sZ!bm--WCc}k_~uA7h+IZV^Sq4 zc9^!5gailPZ>d;#H;aIJbD4u> zG@k$gOf?I|Oj#rV_MP6`wf*p4VBgiJ&%@@-tgI$KPe(>au|@n**+UZm-RtkFQ~T`&uU(+>rWC0pCDshUK-VMJVw^U1ZD5hCZ%_w zOQ)KN2EcGVcN&dIeDCTJ2MY-Ji2q%u{4bmz*1x&77Niyrw;8v}WjKSWnDhGv06BQU z0D%9r^X9~N@QGPKoGC-jd%I>W$w^`JB0M$qT8>-=*d{(a=<*>|{|gJ?TGMRBr3`Fa zHBj~;^|c}A>*Yr2D2&Uq(-3Nv%O(qMzi+(wpsF!3mXrqWm+b~ql-v%X0)uL$nDvV?+zo(A(pMe*$XsuWAC2?`C57LIj^v%h2qNK+DrI#5CfoWAc2WQ zSp4+Rd>}n_JI!k_RBn1rpUOU?VT_5noyFYq+$&S2$XWWUottP`U=**|blY4l?!@E=ejztPny~r;ekYcq~`vZG^+9Ma>6wEc_=5 zJc{VF8;;P*%Fz~z&?S^0JXwhx%?PToZQecAx3js|&5Qy2;`41l@?TZ+(OHlP=s!K} zGsMGQx0tg)q0w=JXuG0#d>kBzd#$je>|nxMhpm$$6y64CV8IT>9^BWYd;9C1)>KUu zbU)jJ7bZ0dY?35H+Kdt^I4|v8nDEUMtyJLaj{>eyiYLPy)d@pv}_XR6m*ls z*o_&O69KqTeMauofdg1e0nl7==hanwX=Mf6U1@ntWjq1UR3EH{v+e^pO;uHLW?FcC z5fRQc&1Obh6ck5E(=&zdHOIx;QG!zZWBydVhBjOl0I{@!j_MrX8W$7HsQLfr<@S{g z0K4B+2EJD&QSCdz!VUCyR8>))wEs+#3-a~#?U_#ffrA|MmyVVe{ld)Z6V@q@(AWDe zNXRfEd5b=>7M%=YGE$1HrVc3EUM!$JX#m%->g!Qrrm+<<32WihkkI`SpZS_*H?Fxn zlBiS>%hcXm?#=^P=L2auLo^_63hjF&ZCUt|U!@mgSq2NBk%aZW_KYut$Qh(G#$khr z5k8l?qX78Coo!W02yN(BSs#F+q$Lz6qUu(3z#IkdD6Z_i{syx*E1+qCA>v1guSN+L z=1lnO#RNZz8^eh6QvlOKv+i9VstIJ~EyQ3>rBG;{vG3flEKGo|0oBp~JBt4#$p3&o z*#*9<-kxaavb2vI-R{nA&U-!+Zy9^Zvl1_K@t!?mKqa;LgR^yumOBrsM!)Vug9ZT^ zbaQy%BI5pchcr4Uq7{u)$DSf2Z=Dy$j9q?{q0=C2H2mIjc7x z0CcBmEP9s_IqXNKSeLFE?)kfJ=swyQh!2A%ECKX_5G(Lf@-fire*j?s`YVd>+mCrl zz(7v>93<(t1z)wM2ri1oVaNGA32Tse7wqfp^O~J7QA8Zcx4W4PMD>GnC2@)XR3ezj zkZKHsEn&V(b&5{!!hC#OC?sBGqw0L9mtt@sSCdpYCszeIw>>YPBhnMh_VlZu>yT*? z-Z=m*1+mG=(@Hr_k+9%0ip8|oMjHxv%CFz(t{jcl0#)bdvG>rTjLcjNw>UWYE-bNx zKK;O2WfutPszM(9pxqxKKt9#y0C>RM04R4Q4QBx9uS$JiO@RrXnNrt*K0DiYZ_z9b z0J8ZRDhDHfiG`qw#>w8kM@Tdfyxz-{`O?h0{(TbGqCak5x7C#821F%PZ|_Ah!2s&Y z)Qfgfx9VM;Bu?Z&jmQb-`MDRWgSHT8zV6~wBox}VS!RtIl%mt7QWcb(FO~6bz-#i& zN+&unP{bD>C0A<|{KI=PhJM61psfqeaqFGTBz{(;epu1Frx4b7|B zyz7qI@y!`jwb~8@wc=0E8c{%7IZ!e(WT`X~g>o{lYHSB&prdr*!Jq%H70c52GRNZx zwPLH2i!ryi^@C$$G76Ce%IZonTPM4bd!_r_LPBIhuWpW!6G23j`i8Kl)3hia*(1_l zrGrZ{T1=y7lDh_40zLkw z=6i-gvv$>q1ZVXRh~S(bES|7jtO&xO-A^X`Z2!fKLLjr}a}R~dJh{CCP%~|s`W+s^ zARTo{!<TeIxSBFyQGC=*ku6+NLT|WW>gk zecbE@*l5biu`Y$5P7<6!oMH`a@DRY4^Yh`S@ZQFlZ{Ut%plk==4Aq`%9z(Yu9Xr zrFzPaNbS-85q&13okVwSG&~Spq$ztZYHZPfHKK|hxf=a801;p^2{m+!Ykq0Z@vi(D zCAVzXk(du;V}vfgH1mos4D?KsW2T}|J z{nkL%4jAhL9S@-P$eQ*q*~hFrEW{ z#lcRyL*>dKwO4^aIVyvft=6kf)G|VN9VkUnJDt9pkbstkaK#du0e#^pudM|vO-Iz@ z1K_0`CafGeZ~vFZMDv0NIDh2{Z65t^x;pT{<8tanXwDdn7XYFtw__Oj z9FCsn;PAu5$_}H|AQ(8ES9@-{XL$r4KvV--22Sd%yxcZbM_cBjIu<8qLQQSc0nFe- z7CW%wHR(1)NQu_)>C>G7;?JjS4wqYb9Q)Duv)ddR=Nf*(P6&?|JXDJKfgM-K2fUm3 z-{htosFMK-1lq@wS7o~mRe}|BfNOcMUs6&3&z^0kQ2jTv3y@{UJ&p`P9?;52w?b== zK^H_^GONY#5N%|i>XsWy%TQBu`q|d8Gb_&gf;v>d#pV7Z6cqUrZF$8YDJ>=P@X$~9 z!-xF*S{%&lrc7c9U?MU`i=P0FJaB$_ognk8MJPnPN$@>fk1r-TJo5bsp0>S^fZYQ~Vh4PTp#D_!OG_0d|#F zTlpB!Jn?^L$NmU_GKS1Yu8Rr^%6|*}{F%8`tqOX@4W?pbY-`L(QnI*pyn)FiCaYC+ zLi@xAk8sNk3b^v&1(L&|6|s1>4DR0)U4X$8Mc=IeG%y)n2ploHq|XL$^d~yDfIn|s zeEfY56Dx>QkQXr3iu=vdFU=W&Ud@fc5*@z=E_Ts_mKK5ePvJI;8O?2s4{Jb~+|Cy_ zS!V*=-!my2XO$k_J=I+>UYjq8`Tc1^xDy_XMHwffsE8aA8k#w_@>}D+AT&Nr3hy>}Xm00Sa;T zeH40KV0(*BWixe8|921*z(LaTH@eBxdOZg+(9}sB@47|Rsa^$I*|YcMge;Vm(PE1j zqx=Rapd%Y>=NA?awAF#yZC{aFk~rG0A|ir}?$H?(PBqNIF%Izb(7Ll*jf}rPomzih zFa&z`+~d=N)QIE>BAev8dCt_14)c|W{Hos6-aScQ@GS}=8p!?GVq zMI*6omP8$BE-OQbe)GmY8CVd4X|46vPDYZ1bY9}dLt$qprK&21iWwcbcpHiADKoIsbPXurkAhn(lq^L`&dWrXmqf`nm?Hzr++iY*J|H6!O2-a5NB zoZQE=FtbYO>k}?6iBj9yg*KOv!NU1Z%>M}sE8M;j3UMRucvsfy7qKxT*uQ&k`Dk1yg6gMXmw`bG>u&$?GeNpRnYZ;Ts- zB{nlnPS)c<0{LJc=cDTnmr16WFj!%;LBhfBSmApxO`&b`6P*~G>j#uWyDPYid9#(q&GY){o ziTjJ{nwkZFo8r0oI?m;_1yv6uPM~a%w5jVWz+NP$WF-EI-Rb__n+D^I8YJv?i4Tku zBEBp(3~ngoWb`3LMOD@{_mcJEj-^yr8#MVE9dnyOphUylKjQ5w^e@qOAVd8FOA zW}1?N=V7m}o?AANF;C_8!l(&HS3kDSz{>3hPCkUkC;ZfN4CmRr`&9S3wy`msul_X+ za^=(W3($|FfE%MX{Zt$-1%v`6B2NnIx1SM|46-L-8JJ7C(C{h7Bx(G^B<8vwTV@KZ zo$piA(h958CL(@>V1|LmKq=-NzVz>tZlD79k5p$ltP(K_h(<_0g z1JL%jGwK3M&ksT-eC&XB3Qi0#!EgBWOX#f-5ZaHvn+oA5jT@c6;2 zhm?Ko-h9IicoV=|vK()=UM*-|pdH3JO{rn?W|N)`wy`JzOJsW##UBnz7Jn#4YTf_@rG@9+Dp&_W{=AM4fLA-jzFG{wV)+T zpYGp7L%rh)3G0Iscr~@P{RQC{JQl9-zQ%=A@OXH5y1JQbpOe&yWOUie6g<=@mHlkY z9HK#zRGC>>H4ZI$B6p=_W#M1GkUaW{n>bhuJ+h#o#=bSs?>9ny^zX=2_c}2T>8Q>D zqNxdT6i}|7exlPx{ra|X!uKh06SLJoTCH`;xaWTY7GfaEBg+B&ulTX{v~?(|#8njL zw7i^@{FM)GZGEAhtIIiPt%C`3HTSsmM|nh79##mff4&B@^TDN@Wwelkl58Sg?@}AIIg#!nqR17ewJake3=z+ZoSA)8hO7@tNb|L+p{3uerY< zH;zGVlG)JE z5lg@YaEP-s-nL)@UZ%i?LR>b~O=yM#dAfLjf)T z4o|&w_KKU;zq5h6%c}_n89xjg7&`3Gv6d$9hkZI5uX8U9FTQGp5Z>R9+T4!7=Eo9J zHIqL+{qm!4oQ8Z8fnA=NiGR$#e8z!!RB_=+=jgDE0y(}sEG_Q-Uc5Ftx^u8`06YtE zS~|M*zni_|R7_8gX&KcsGw+a5(f=?zpPe||JQ;^%OqUraf0^JL>|Yp^zh*!V3sp+#)-vY`uViN=3(P5Z66xbT#g zmWIH;X4ezenHr~%Oim07({=OkkU9?^&l5u9d7G?b(Ef=$Wjkfk%_wOLbksR0-9y+`6Z@}+#uQ!%}B*fHabLC)`^+W8P)S*n2 zB>+48%7$&JRLot&LU4X?Zgj5(PMT1imUsdl6iesBjS|fAtn5ObI12GX2Jn<`^86D; zVDZ5URzrYjd@2EcWN;Cn{Rd@duOpTqti+T?E8suVsh5^gf|5f4GQGOT2Ul)-w$1|o z-8(bep$Tdhc>8dv0JAJ%;IP7m;QRs4BJi5t*!&~#36uY|_zp63{S1ZwgY}~#IRD+# z0yQU40c$_~qz$Z{LT<6m1z69(_}fZA8e;edfRkaNas&u)eWHs@5bW(9I|G8V*)cvi zox;|nssY?YArH32{gF9nDKf9n=R4?_d2%*h z26&`^1Y1>@<+nv52^`4((8WROi+>#1KXhRM`1L=h3zQ6xT3gP= zQv!DXGO&2Qx@&YO8OV)%Q6asX=0|z}0~rRd0Um9AgWf~}p!zLTJR}va0P%QRR7n;I zr4#u~7HmtQ;wSPC*xYqoEI~^lybr`e@XSGpW15;Ep&hmVW)Fk|H@Rd1SeFRf;(ser zt^*~5!-_Cees)U%`Js@@+MEyhcaIUKE)2BLyoT{}O9yz%;|VN2?uR&_ryAiS=W=0h zPlfe-38B2L>i}d|gc-O=p*oaxP%#{T3y2{=hQIy!P&z3z7DIVUK0pW`cc_dCY5F!I z(T@Rx3Ms5l1*D`^3nXM|enbK#gK+ybJ~(no( z^6rrk|IE(9=n#R|J|40P^?nC<7iBHWlr8c}evX@k1?BkonC>7n{!l##w&jUr$rK(c z4%ROcfD*{#QK+H#SC<^=)|a@v2EO7RJHN6L`WQkBr1xwT%7&s9Ro{eVWb6`%7XJ^J zJM4uEmIF)px558nu-NqIN3BE4|QpJQ{VWIXE6>3R=4H)mf z!9M!0aJOqI8Y2U;J-dPl^lu5f6o66~8Ol+V7gfiO+V5wL$FfPHVxvQ1e{Wkj$OkR$9s@Rvs;cQ2*iV(wizWZ) zGuyv_K3mFSey9h`CRDA9@7JI3C;)1GFhhmBMc}U>0DXYxvr^G2aU5-nk3zEp4*?>;~7IIpO z?_8B&$1iaje7}aKP>T$q%ym4i5q9HjvHpDwf&57iC6bej-(B0ydle1_zm}Di1&_Wv z4@@}w>)CU4ba>FyRJoM&iiMzzg@x!y-+AxJqHkdDM$Ip9dTy?;vJ%7P%;og_kzV|> z%-t&rosr!9iLDG#c35C8g>TExFGnmy8OrnTWYF23SCiD`yh&6-UmFx<>IL#jUtQ(Os-K6nA&0NO3Rj1&X`7yA^jUR@~j)-Tk{;p7*@@a+324 zPO?M74q@;6l9^d+*32}Ydij|uPJVKUhF!BdDC{4_9vS5U&2HyGorRa{TwNn43Mcb- z^h^uet0J+Ic9YcI;ga??hzl21YkF^YS#ZC$)#bzJtneBmx?qQ1A3F73AMfuAySU&8 z{18OJz_)0771@7b+Az3sGj8K^b!{47UiM$hByPx{hhkgFSRHR@3%~gs#)ODv+%r9W zFe=JNH2M{jmGHhER#S%jZ|v59*1@;nmskjEXe_OK?)utkz^vg=HqEG7DT>y#MUxB^Nf8?4FaE zNHRCMHp9A>bsCr{1}q=M(lXBwQ5o6OQ*1sVp%u;388J8z>)6TlhJZ1wuHvzs%AGG% z;mKThNb;WcT-vW69{PrlFqFRN@$BsEn5^4~`&_I95RsXiaSqTFqhR9rq#g}bQ_I~D zGm&C2=gUr~5vX!Xb2*M*RE2+u`kLe@5qq}#V?_pEB(z1K%E%A*+Ip`=vl z;k>XPdEDF^CyQj!lT4rw$f(G8{%`ps#&_#0i%?mor^Upieq;!F>*^Vt-P?ulmQ=JO zQ}h_45Ta)B3&cBA^*=N;bWAQw>&l(~dzAkxY}2fd?UUKs{4P(;RFI!lUyuC`iJ9zA;z=wCcF zGeb&2u^m&^kG?TL;1(4Z7Z>Tq$-#j`XiRoYzy%pD0+B%V7p`H0Yr&>cQ+Ji~ykqpx zfZ^uhsWe{wYA7u!>TFUNylh)3Ki7JTBIQd7xRt+d5Gc#3{C>_2INz+QVwlPNZ<#sO z=+OSgkzDqi(P*0uMoXQ@iR{C|!ooD(eE>t-=52F!#lD0B5r9l2A}$W6QmO{-<>ggn zs{j!e7KWlJe8kVkcNqdtI3oJR&KnyGtC$EE7kA*4a95Lb#02)AonW`d1_0?_-(N4N zs#?$K0$nhwm+1voZC}mkv4G+1rpqgv=RhVC`Zr>&9sz!IB|$U*mlMqCy>U1b(?9Tx z*6|JohJ|_zk_!z32O7)Y+APks$SJ#X07J>; zNc82ad?kE28XPZ~c`*DwH@+nBH4I!dnQ?(gcaNi-9)P};b>GMV?>=UrDT@9t4Citc zW=~f{2S8xTc2rAsw7EjCM(Ea9i~jTT-qF#_(mEmGj%C{h?9Dae-Y9ur!*=AQQA!1d zB5DE0rw-lGD0+a9 zPI%}1Xd(g0p+fV^d|;lQyx7aK@ow@9Fwii7Sa!tL$3ip#wymxX>F&;X--DB7wYb{m*DW^#M#uI_ zjGKZ^vN$K$SJL+>ni`B_tH`flUU&BoS{SyZyWelWn|sPq)6J6I+KDD`tkP#ff6gnM z5L#9N(9?<&(_{Tl0GTqSL)jou-IvDjB|Lh5o`wG~c8VeG@OkUgqVn$UUK{R9^nPyp z>eKV-_I_UDpW%$wRx{Z@#z*(}?O7Q`Wo4F}1#6jL&Mq$dEmP%Yr(cYX6Bd+SJUtCY z%A0T<1ucgW$U6Lm-Ha1p2vlA1+FFxSI zv!|QKd81i1rk19Y*c#usMvv^z8aN?fMgx%=7ISUZwS8~2LJ2(zxMYbgn~$7c)08jh)%%N z6xz<%h>U~*253pjt}d5LI-j~^0ko7XLZ=KjG}q(`C*U*s>?lQv*;LKMjPhYGB6`9O zBb{L!BE_n_Jdx9gX=5Y1PpL8t0s3ra=H~K_ytgmAvIqx=KuxSqJC4-n14CgI10+I4 zL&)f5PAbt0(gu?y75+B2X#y|DcCfId=qp3z=zHK4q$F$DY#4$kYiO_v zfJnJ9?xBT&cwol8{I_IX4KRzcu#!GJ<`b{7jmTwP@EUQpz|K@Z5Df}STk^}A_lrr(D7|wgB@l$RL47wsTVl)9E_XUBjPR|*hJHWx05AEI2~%g^tf*78-_JkH z)@=n8mS0|qCJPITJ7Yup#ZqEJCylps7`zJt0?NadR&h*=eqO)pr3H}lrh`#mp92oZ z$4z-KqTx7mQ`5=O`GaImAW#z0vIu?AY}*uq)oQT`Z;Qor>zbaHZZ8NYD2s`a z)sU-YS-F+#JdDn8jZO#pP?NF2gwK;6LA_sOW*^jA>9(3>58@Dd8X1rh{o+mJKMl0< zmIK#<_+ZE*gNa4*i5QI8KHv0fY5A}hh10=N+l>v4Nm=5zE6}=YamvI zwCgS}DKAo;i5`(o4=Ma(!z23CbaJAjy;wB?PfkHaY(HT5XO|$OAgX+z=NO2M!ztXV z_}=3C=UH#EP?EpYidQ9hGAXD6>^e-EJ;@6sLu=hPko|wnuAOn+I~;eLZ@M;jOR;h$=aSnVDia89SqCdEqN+96teD z=0^XjH16WApongBCq@XMNO?uY0vAC8gPbYqkgy#8RKAWePEE6Bwq>D8Vh>LyKyuyUD}7ad@z^p+ z4=!Q0uaZ+x2+zy}!$dZu&y57yc?ZHbqH$0`oXi}%O@YThDqS=W3?>;#?vjyO=xa|U14DBa!Pt#zy$0HfhmNwQj6;29a^0WdQ4 zsIEgJHJq5sVM`(H&CY|fPwMK{DSNWL)&YlO1j?|)=;#}udg@Ls_{Y)J-TtjTVo7jz zaG>8A8W~@p3kcuYH#PzE=2oqyac!^(dcJ;lYKTJYu1{NyqwB+qj$}Oa!j{2hi#Nm! zyf7CR&s#+TWxpErPNc$y@JIXPz_~wv#xmMgPG05VYlof8&okHwHD$NYe}4^V4XXVw z?SYt~nEwMB1)XD3b4rQ`M#XB4;AQh@N?Hy$97P_cnSG!$_S$I$2uncl2h|dSo#rwh za7QbdZ-}^m?!;p)Gdd1eLF1MZH{SIi#n(n%g`wfcB%*{AA8>l`cE51hR-q^|QJQLG zll93I>yq&L&)Hv02tr+YJR*~E(x6q_RV7}W(_q^af~_phdPVVk1d-OA&XshM>MIiQ zx(YyM`n7WN$)m2D(cceHu&xksZGU`mWwjF;iw+F!&Br=gYSl$Bm*}2o^X>cP+-c!}mYa6Oj0tWr z+9oI_&V*O{h)mG)!=;f%Ets*{NWmqSWvi^;sxS|C#fBM&-oRKFNHC$9KLlN!CW zsN+7eSn{)w-661WLvsLY zJYnCSHUqrsS-I}WdfCb|2ondh9E81PB;f4)@!|2I(qNYNxgHkz)T@CX8s9dSTtM=~ z$c3K~_0$L;++MYNakP@&nBzL9$SISky)EG18Yq}Wi_iiV@pp-PLRrf<)GhpZb!PK# z@e9gT_A*tR-yN>?Hg}GJQW-x$aUsGE(qz)*GYA>Qy3=a=&YMk2)_c8s?2o#3;Z=z~ zQ@)!0Ie!ZnyT@2iSUp!k`fI?+%TTC6_O(Gdh5^ zRDjhsK@OgyZtjrTaOzZojJgJlh@IOw!E@ky6-H|ZG7Q4`92SMuofwQO0s69?IjZCAbIxp(k+-aCDb9w^Tws?ps&u{ zrx-HWnC4BeLGLr7crb(DY;nQKGSjt*4bS>6oo)BKdJ*;Ekzw4K*qm-ZOR;{i{Z zM^25V9&xb183r~mGBAbx9*q&S$c#+L8(w}w2o$}{EM;ui^v_74;%_<4(rIU+Zbb`h z|9*7KKKuL08yid(^KGJlhlUsW9(7z+HLasV`iB{h2-{TV8c_9s7EE(cA;lGm1W!$e~cy4?_V z513<_YxraZ1bPV@OW3ZBG1k=7t;eURm=XI3g-JHipuQT;Cc$<{CJc!x2plzFS%8$G z6x#+@AN5+>0^_h3(7xDEKMq-Ny+1&JT&EuYU6leN{rv=?dNkYmh+IN2K0oarn=3@8 z&7!J!FAvrJV7$J8zvj#Cxe*IPE@s%)Vp2b6Uq$J5L(uudh1ucOw>emx7%g_7cF6!QqngAXUE2p!p48nL#~@M^-K*wtHuA9^&NuGJ=QXe_W3j zJiu%mSW- z9`7Q|kXl1o?4c6z(Wo`GG{QaJk?VV6Z7?`@u5mm4eE!CS53bd7n#?&&|53kl$O2WZ zm83TdLpL@x9Zi^x%IPN)CfU<>`5+M&gxhV&9WqKzg|rg3)q526$q81pQ#;}DBd6M& z*-INJo3GT3#K=U0lel12=t3XFr|MfQQ2LAu!O~-Rq-VdRo6d7GjH~^Ad{CBTWwI{i zKCIKi1Sq%M{x%EgH>Tcv!#fI$VShqstTy)x`eSBszKo)*_yU9YF-3bqOMf&oP%^0N z^>Uv7mpw_(5BM;eQA>u}K@lhj|3mDn^E^K#R~otYLhh8|a@hwg-0a_tHs~v)nQSbq zo4&|w`YWmU9-X|XAx4^ji4X-#NI=ZnR&Ih6_<>P1vVfz{Wq>m0br!hOHJX-`*MmtR zp?l&)J@Ik;9${x>LN6+tnPRT-k+@v5QApP>bl13J!J+ZjGw|5z?_KsO`GKzfARkVB z-4Fu$W=4Ad$pH8@CZr6i#WEn%u~=y+dqee>V|c~2@naMMu;C?LJn*nE5kgLqm6G?w z=wB7;HV4}4EmlkPbA^rwIqkI4LK@~whG#!Uv5}qyJ9DUnPDR14jmxjkHNOUO<^qK` zbG5gTB4|OKAeff32CHp_u$nm7_>K-R7FITMrOP24gF|SavJ(w5z;v0zO3ph{`xn_& zF|$es2=xc$kiXwvC5;@-;8M)lL?RlV)DKsnv)_zQOH4{Dx}OmaboM%i8CFhAjm;E! z65;@kBI?)f`KZ)X-~^6S+cHs5m2qEg6b^9wUO)q9K#E$L_3`n6eSaossSP>f(Sk`E zPd~LxYG70!Kz|C*rvLXgi$L6w(l609erKjEFj*H7XQld)F4Q@&TbTaX?NOXdJ_6Y7yt&%k6L=&fxh$)}I-Um)^2S06T=k%$Qr5 z_JnIcvPPP^&R`5jftty4#VXthP2po-d@e~l^2$T+oZZuZwqvPs#y~V!vR7gEy(Qha zz7enwd;k(-ODKV5EU4GF-t=mCSrsl)DYXJ z*5L~uBzuzSAe@zyFv#CEP%Nzf#=sR+%oLj{*^-IRRz{--q0(RYtd5Q4EUJ=}Y4VtX6p9L2Z_BSsk2+EEK3z`y(6BNCuaW-&N`3VnOW_jGi1qAR4!$fUn z_oSB0QEGoz*W7-1A?)n>TEuZiDeM>W+3j@TX%3Z)Y1AhdA66hvYFWdpKbd%{DFUMN zOF_HRa*Q^9{)cSiYyyl9s)gW)vP0ItdEG@%o(g>MHdqBe8HMz~4$`^q z@>QfF;zE~z#Z%skiKXh3Nfi(i`?NFKk8``9FGA`qDXRwVAb|!^9Lw72;|mD<`0hdRLG(zVQWpph z{@N{m%EQkV{IX6FGi+$*i+z2X89}}Q5&Y>DcMWPD_yC-^ zcvOa$1_1)9BZWR$$Es|Ot?6&GR<^GaU>YHk{3!qMENWsDNP- z`!(Fc!Axa%oLZurbg5ZWTgz{OS^3T=Z41Rq+MTEJU2{{@m48aEb`}1G7M&*dZOa!* z!1-OL;qRLkC8I@*#?+Qvin~b%C@bgj7Pj*pqRoZVxmCS;iz|2vt4A6Ca+3D+Y3^Ut z{d(77XGnPm?y-aGFPLrfDTcdk9vU&A_ciOFLbB)rfeo>qZuW+{WQe|Df7u-(Y;`6f^g!yi2l~;wHG~reVq{i8Z6vOf_i)SK0VDh1LT! z!1I+!yVvvJb!!)UL6hlJa#5M7j)SkB`3UWyo7bi?q>OFJ&2KkN_KS|)A3^)C#Z80v z_*=X9Px)#iVLgM$+i z0P<`86JE;7VK)?xF+#Z^trRy}4wkJiBLIaf4rdF<%h+e@U)u6zEIGxCdc@4#R^g5^ zpv1iYzK&$ygetGBYp@1^V9++Z>U6f@GuBJx)6=Rt)nW)5xWarXWW5v;uFh~?ti=mG z!a3#J09z+wDojyTAnl)#;ewEhUuEfh{f@}I+(Nu$V}CtM7!hD!K*6w4_T)r*F2Zs7 zT1BPB!V(JH--d?-J_dJRsF@G%nN%~1*ZH5vAa3?H{Q{O!M&RB9=z z3uCIZx9jw^J;xs^Iq&jAkbn96GKhOam^ZYG%agwJnogT{{Q^t2gAQU6u}ZqCbqVE; zRO#F9A+3~+WqCLLTbM++e~9hxO}ai~c0fKoDG?_;ZJ>Q17G?_|oG6&Gr)DVnVkq=c zLV~7--B9L+1tXQ$p!^XH-M{IlNNvu}&WIep)`HN_fa1N=_5C2_LF{x|g^#9KE9$LC zSzk$jph{mlugCYl#T3)Cc;oFOj<2_mETw?k6y~Ebp2jY`kt)_bmODjGk4BEliH3Qy zzh2G}OK~9@3@tt-tE*cPJgo3h7RpeSjSVxIi?f*pl!2iTg+EIA?eX1RR#7E1&|IkL zS{a|5L)6Ydf^oR9+Sml6j@{5M@MG&uPFZ3M7XjRPWwPw;@3P2v$+(Z_0Ci&KX4?&r zgGC)Y%v_3>bK;f#rKUIsk!7n5h#}ZR<4cYTsfrgf;@@MGl1G#5DLVcBM+?BK+!x(4 z-V7kCqzyY~H@A%$JXO*SB&JM)zsYs`UsaG zl0)z0p6QB;ChS0-9v=%!OA~N5yG@m&rF{JO3B~gG7#C<1+r6`YdZ?OGT2zDsaDupj z#L&#!w{Eut3U0xNyPU9`zrm$jRt@~p< z?*705>HIQBO*4t?9czY)!kH!%1$^ytc?;J5Q9zC9J55yDw;^ml^%;H9_OfmnXjCcc z>UzD2o~BTeQSe?f_}AUzz0P-kCa3;w`sZLskc@_#aRFBT zQjG(4JSeH+cLTegbz3#e{A7XI_hxo~v_PHj`AWMVky1m+;)Y5}%vlv$0m2LT8Y1BC zez%w@QU7cVJ7DAA0TM0CS#igfARdz6Ha0fiZA$Im_T4dCS6!XxCngnY{^**j=PgLv z+f~b}DTQ8Km|<4seawfQzpzJ5!X8S?a~vDrq^gb7d)UG_n)gz(rwAdyKv@g8>MsKD z#wW8wT!1bJUNA!oB@TdME>&-qx1`zUBWD-eCH}mWr!W`<%iz*N;ShweYhh+3zphEz zVZ1Fh3wyS+qhhh#Ci*BYEj{6B7?3gN2_Wg;RXvw~bH@gKvZi_ha+$C%Jbxt}08(19 zItu&mwu$)v<4oL@;{AO&X#or|Qpu#Pz3lwjg$QIM1hur@hvN?m?o6=^uQ#|HmWM#u z%rnvcxZi+o6bp>#+RsL_SgL}Q#2#(V1tTON@W}zL43v_Pb0QW$JR%&wuu*OB=;iK^ zkY461#|JcjZJQ>c(HIOWg=Y`5UPGxtsdkf+^1LYa6pFlUc2_#x-SUm+nPs)VloeSQ z>+Bt#b;US+`-R*5#p2jhD32SmDX)Zh<;2X4&+;P@z=@G+Xe`RP=f9sV(*T5c99D`W zKmI)zFzoA}4v-AWE$Leo7l2`w&u-3V#110ZPQF-;ut@t}oIDivMI@q;^5pA)ZmXu_~U67^73Ez4v$qIX-?mAE%ZTi{PBWzu7HDJmCOCJ z*8en_7@c11m{d@(OHml#m7mCzjdSuUHVp#VpxpW@)L4$0$tpdy=K_i$dDb zTrJW0Ipd%7&%(kN0N+MJ%M7V+F0t1A`@Rv-p1L(xvY`=!|9ySH{O4cKqQms}$D7X)8y~gTU zWhjk#6Oaj6^u&oB3W|o8pwP?DT`^k%o8UINjRxW%m1NyCDgr*56-#+pk+g zK)%<*WYh+*0Xii_y#>1GYgdHr@Pt1gUg6jEB3kiuD&tH*E1R014hz$CG*fC6YJPlh zH5j~UH8C~imvPJ&F^`LlGni%#K}9EUn8%rOn(aeq%YbeFv;jlgxy@NtS!*NPlM*MeWi~CRp7eXat6mDg!?WK$diPzm; zkUi=esfZ*?T~B$mD`m8Z@P&QICv7>K9pFKs;Qm-~II&TO!y$ezEG!?du~B&4QgBoj zH_bbFK+n?pfl_RKQ0o~SO6C}sJF*Bwg(CUJxp~<@;na-pZCXhRZJp(6iTo;Q zO-LE_wHnsYsIZih-`6yp#d26TvVVI6Y|k&&x2UfysJfj|`meASlo2>gYL}ooQwX_v zyd4B2u$5G%_4cz}{s8iD`l_lpm5I1N@hhQM;s=qY;r(}Nsl1B8mW#J~^AphQ%5u4l zH3iaXp$0C{3lXVQ&%q50iyjnart44YpAg@Zf?ipG^(nds(J$Iih}P%wM`g#QrxR*y zDe!Xd4v&n#4%TT6Hd0O!n;jff+D;-Z|DctL52aXi%8Sgmn8)ms4rUeSOaR~u8Tm&P zO{bHdOjEfK-GTV6l@;Dn^?LbTHa%Q9@Yd#%clO^#J81e<`vnqnysGVB-h37r=|3Pq zggP_$dBJP#;{`&n68FvZxx9Q+ZmGcW2XRF-Z0srmVmn$9K6~tAKYf#m2!I8L9N*nL8VO1FFyXWbQ+VFO!y95 z{hUNqNm)$`{CVX#AcXAn5$qdVn#ljr0>$^fwqz@tJZxZO`4JTzJuhmBFrCoE++4L& z^WukWKYI$~lSz8MX;dtYeo4?6Lnk_#2g9y4K%hFo4U8^wakAEiJn8HlobDQH?)^V@ zP^=^CKai-6gtT+?FOvZuG}i2~tJB>hWWH6y&RK9;%>-K7v79xh`s z*P__tg4*2L+Nva#u#s@Vj5^l?XJKL@@LkC-_?-0Mbjcp9%3saT(i#LB)@0!5pdZ;- zCv$OKrlt0bc#$5!dAojU!f!Mn=E^1RAi^Co-$LlzoQc%v&=~fuf}esyc6YBxR%@%G z@Yi{MD$+_nL&;XOphyPV3Wf8Af@V>&ngoXAkckQSsTnqtxn5&m-qC1#7#T zA#E?7(u;L~VuPN$&G;2{c$~g@J{MGJuCcgK>9Na;NO^W~HT43h1bw```2aN}t2Z#Y zQ?f#E2lT_$*3^GNyh>2UE+_;HRJXF9tst#QB|N^3OU^S86jSia{+7SHSE#6rQus3k zPsrSl^73-daws_^6=ef}bA*EV1)G0-!hR$4Ux=F{_*N0XdH7pCE%vX#TlYhdJ65N< zkiKM;c+gbTA4_X%Ylo%WkGZ+;;SdpjHkYJu>P8P%Hsz}bTcGyzRH|26_=sGIUDa)! z#Oo)J>V=5uD9(EK_I_(*}_Pd{Xz@mz3_= z5K|Z0S(j2>P#Z~DirL_n@Vpqrv}{^xP-Wh++3B%=!(U>0rGHguK=$!OBKRYH^ZCQW zI~G-ETT>2BPR^Q!1|cQglMhMSdHlN?F~SO2VwQ2#I5AUgxF?KLpYg2l(nbF}GvuGz z-pU#JW?e7MN&zY4l7x58oEE9C;|Z^Ka4-#!L)Uk-`uxKeVkBt#CNWtEbbse;YRCy~ z>4x$xQB=zqAoPGVVW%|GGeu0qqcg#od{GomV zB@!cxKK}!w09Y#dcGY!Xj?(`3-Cn$ZUhB?T(^e-!88CF3{t;o~|8VTz)$E9TbI&Lw zvTs4if1$`*fz8O`|Nl9f=Wwn(zC39rCWRt`ZpdJ&&d`2WN&{tDvl z`i{EonGMcLt-{}usdQloG73GWq?)3V!|B#k+37{wa%pba=lzIOUX2nxz6Yx@#CZ>iT-6Fv_?28M?Ik_aR~S^|bz*3{GhTrn;?~1l>?e?(4VXjU>hIgOb1Hm`6L2kqvo$YIgwdtX zkUB8%?9es=73A;m3!unJ_k3B2){mW5`gk&$AO{mbKeyJ{-S0m9_~HA>MFC!DEmF*I zzG;4Tw!+KJ)itxdUHA3$8PLqTy19YB|J^l-PIz*1aP{YO>j~%>D1Av{ z+3k$IetY`r4&4{Ny?#FG0W(>hZY*+Cebtxv#(wUWmZ2y$D%o@aOKpHe zH!Sfbqcb|0kaN`RR)OY)qE z)0lb~vS{14-!(i)3Xb>YrWV1Nnu)>j&`~tahXaV#t-W5cPhPKh8cr6r%^r^yy->hk zUc_WG+^vKvwYxu~;PD?JR@x5LrKP;QqA$uE1+-Ovj-SW6@2)#kY!dZp2pR;6mLb>-Kgo4l*>3WEU-Cge&Nx|^`MFr5`0GpD4* zL42b&t;Wc>LO;|Ulr?1-7 zm}JQn!t5SAavV!c|1|U8^vF?t~=gZ{k^L1w0Kvi@AS`TF~5GO0oe3J@pFw+vDe(!BxZd^4}3sYzuru_-00VaPicG}n!#1uv(2+%{b$^t)a0y@ffvYtN~1$Z%p+glA6G{FH&><~scHL~Ps{n` zZZyh@o?e$>&%nn#0UtH`vZU#ph6lPqXwIL#k0c=&v_3TZsM5(mURt4 z+a@82iM) zN`XTQw3m#YV0yYfeN`A&IVzN0bxK%}dIzY^ZjPJB7G}yFw>N|@Ke^q|;d8jZUvxU@ zjlE*QNQgE2)NwS=ynej@H_up1-(WUvw>2`<+x8sr%X*b0H!tr1!AqQg&2m9$$>v#N zxz+@=la_||e1yw1_=rp=D;DS z%z^YYcfoLd{i}(&rKsZ#3!M&&F7#vgh)m1viUv@fME3bJ4AliN4}LMgXb>w4n5sb~ zv(?qthgZK!Q)f%}*HnHL8dgq86PMhz8-!ENd?W z+12PSSQ}9~#6Dv1FNix{FNdu7oZp2IJ#8H!AfC<-cVE2sCku+eUk-QERT&)*roPwI z)sgVEqeRK09w@~ns1|2FH}(iXg>8Q{C%|4*myv0F%NhfEKoOr)6$RI+0w3L z+8=ry#j}JC}fVeN& zZ;p7pRdwC)07YY9AgrpWfY51?;snsb#RoDVoY-mSJ@@@q&RnfINata(9R&w9yhxGx zigRFK@O%yOcH?HzYCKkI6TyS%;uE#y4#eTt3L&6yNLs3{wfqpa&=2d%gvL- z)}P$5ocr|^A)Zd1I3Ym0`F5ZCwC&N+0qGxF>+pYzT3d|8IvQcsNW**T7TXNizDbS# zmS)oqNKE|rbo=@wbt$*%@;H3=jNmn%u%o~GhoP<|1{zQp^Y_NGOexJ451-!|6ZO{4 z>iABV%<4V&r6_~N3m&mm-UA&MI9nbbxaKMi*y0(qp;WO|k5;OYX;tV1wJgYW+@7^D z(x~N|55gC%1@!d5Ue12&DmiDc(uzVamzP_)pHw4nUhOkC;e7(MtmEVI?5;uA4%Fk3P_(hLU3f;A5muMC&radhz+v~3LQBF%Mc>1)AUr&xW9;E4K zuBr_r=NwHk2acBT@9rM-7wgj0K6xhhL^-%cX08TfOg{{1e28N3Y8H0o+O`u${_h9X-DfXiQn2>sWb<* zy-be+=8mM!Vm@4U*`rycfQZXc0NP`p?c*n~cIO)>wFVnPLboe$po}BK*BZ$3CqJL} z@#W~h$a+3VhFLreB&3T7Ie+lH%gH!&w&SsGy-w#8#R7jSb6S~Ajgm~D>&}+l**``(?}7`MMozE&{q`Qo)jk3rExw)K?Pa|*-{cgLr?EyQ2ev=Id&3$5p+sV*_IGz`6utdDL^G@yZ49D{p^Kv8IjuF<6PEjveA7f>v5zczyP%a znTRLc+Uu~yO!8%~U^KhB8e#SEW|mQpX}y5&5fjiZv#vgHmGE`EJZHeJRkYn;@jlM^ z0xpV`Ghp@UB%V+*e+8X!{3cpOH+Jtyt0vA}*_LG~<^>7A72%}1T&dtTKw z=#TaX63Xc9uU#2qQ&Xk;(kvP4YndXSRy}qtO{`3(_s$gk{mqsnHKH|vKHtn$)x;wm zQDl8*{>JHYR6=#_1CEQ61tE-q{8Lj?W*Fgty`y*_O`JAHD)?Jz7MLRX9Gs)r85?xOi zlB~|V_17nXdmRa|guwd>&uyF`pg92usNwkAK4&O{4G;8ke~RmHMPy9Yk>RxtI?zj_ z^6nEltW{M}DFItqn8{zvpfJuWmDUHM^2SG`uxxz>8&O^d{1B*Kn18udpkiNi#BKxi zLpT^i^H|&EafSH+A{=34pn=OiLl3RjO~~#PZ%iRTkZNi!eBVujqAz@o{1DN6(jwhs zS9we>_hq8TC|9<3m`%5$XkW+UdiWCREIFAIkucIeFXG`R%=a26vuAA74qdNHZSM2= z0HFIA1fT@39q{tJEHT4=IdSs(4W!R@A)vZ>f$N{q`y1L`UJK|b|9poX7#!Z6(0&#x z5*bnmLS5VO4wv#kC9a!UeR;74B4F8^5ehqx%lPBKkT8Dlc7FmlnE%lNG=eoB{fPZ| z@w1omX*7eS<^eL$q73IJR79)D z*iY?G)2BAW7Zgp07x&mY3STuXtn8ug+Ld$LW5F1DHodMkjpa2}3ug63$an+&?wprA zX3LV3BmWV{>|}4SpSc`&_xm*z1DW?|Qc{q*q{{k?Q8mhj(GpNFX&}Pw3-wd-3-F;3(%?p=%(52i049UTThSR9~;cRLsx7l@EbPDNM* zdEBFcIhK_}qc3TjU%%ohOXg+Obgm&ydokXJXS=rcmHTpPw_F44 zb(YrJqzOGprntPkGs5dZlAMaF$Qz{j0}%8AWIC1xP_Xy3O=15cg<4FZVRAWhe0SCA zL_$lenB$(DoQ#5vUE;z(VH8RRSe>6wy9qBoKnC3XxFjQ>J|Q9hOVr-;sn==BE-4`L zmq_KF*Lgf#ZSg)klN;`$F4D!t9X4llu`3S#+sWjy`-~eck^L>&LEqI`iwmcRAoXs) zD`?-$dUramghR^fb^2~s)cddgGP(;t?D_Qa_+90;5|peE(9szN`|9>KtD)h&b^9YB z!2R@~XShKTm8usszY@A_@el7lcLp4?3aDofVACb~4r@B@op6dvI@Lk|x$Ux7pt-O3St%2nju9z!ES%>X(Sy_y#Tk0i5plbXmUZ4>u=Ve%j49YrOrk z>2XCay*)Z;i*gF(EqA-^Kyga~*gH5YV2F}@r{)jzm%F}p()P8Q{LM+&Gh?ru&)0&; zD+T=2X!i{Jue{Iu%_z9I*^YIl9l7!wq&t`YC|=_?{@JNlc{8;b7l4wLl%SqGo>|}r2L~Zvci*kf2*^}vtFcRrSoa^locE>t`gYuxOf|7M zh}RbmsG8M&XSk4x-ktrzfeW>NW8`f;A3k6J>i5bS`>~%pJeVOZ zEjwfoHaP#jhgwi_7*j8;FB%U(?U5 z|0{z#AYRiEiH((r8gY}eDMrz(Kke>9_RvVf`ATxnk^s^yU9|Uq)_uJJ0Yrpe=Mx7_ zcL?(>fJV%|M`9SeK8HE2?Vbh{5PB&ITlF)xIrK67<*bZFum~Go3A_84U)lKn<{TK_ zDnCZJ0-#c3zG!N`dwCi4Iy`AKkEd5T*Kn*8|I{&nDOnqs3xy??>-hSmU4$@1n>?zA zRHXfCHlenmVTw2EQpf9=z=F%1Z;0KTue+xwv$PbV;^~#^7>STKpL+c-rNDLCAUv4| z6rOJ6wYP^d3sW==$^}QYUks!q-*RzKpvF)F6aLOZ^J8LS$%s5^_$R{xrKw%2^XBrP zaC39Xi?wNliHRCs6*c}S2)R%*QID@Ott!(d9KHsK@MtPz0&;1Sua4A8)X@E>?Wc-n zn*+PEBie3fJDMf(%IaZ}ktj>{qXcR-HiS1s>`>xaR6ibSX%jMx7sU^vyq+#G(;_f@ z62PMQ+U``Zbbb`T?%}an_MC6J+$|X(=j7I45Lqw%a64(zo)uC!63^^iYOJmu`=;&D zx-cLbvHi8PW!~o22Ix@Wzp%D%8UyGnu!hqJ2{7|mb#l|gj|yWMU7K7#u`&xf(Mq)9 zs;a8)ws3IJq7nPRy=g;v*R7)};WFDBF&-}^$0v;;xFI8x<9!-XRxdByXWg%~moA>Q zcM!g3_-C}eKx(0TY!^=hHL5$$9qL>l@cU@SB$)Ms1N|7K579S550_^)d=-2+qWIM3 z(G1tkS@xfjq>_1sFQmh}0~1o?N!4B-r|Ve?wpeHBrk?^&POPwp`xT&=Sy|N;tAH%b zVWO4QE*CNrRgg_|qvXr+IPcKmw~0m_8vh{J+l$MrC%^U@bSx=1rUlwR=i(iWZ(7AP zw`X=PG!(8iyU)L;CmK_qZQ3lU>UyYnbWI8X*^50Io*8*v8kB0_m#39S^IDOCC64Nv z@_zriw4t>ape;sCWFAImtSzYK*pT;|+vH~Usy02DW~#MejP61mdh;Tbtn7kgof_l~ zKaj!FeS@`+7sjWKq+|96+T1t)hrPFsin87Qhe?r;E=d9DM!JS>B$Sj6DQTo(=nfH; zZUK>&mTnYjknV1V9AIGHd(Ly7^PKnlJ-_F?fBgP@*K)aL*64j*_r7-TeSP*_ist+R zs&~ZtZ|1g$VyEHY26>@9=MF^>oT=?rx7z1HC-zBcdjJMDLuF=797t6SRh;;$)RUYt-7EiK16vTtHjUg};sLJ9Z^!T7;y?UDqp5lPq12-TBTsIW zJF3y-kWzNuMkB$;$#N#?SGU#@$!Nccosf;(4`&i?bo%iN(EcM1e-b?Q$K4~^JApME z1)1Di;q1F#@X!?1SNv-e%>2mH5-xa>trmhP%|EN`E*!k=E|4eR;@BSZmeO=$FZ&>k z1*QmEal8O<2j2IZQ4*$lqlt=&jm?gg$a69Z{Me+=X8fvrs;N@jlqvT9%jamt6g@Sd zD7^H?(e&R^ckDADZ__`?k0LHT*xOSu%LM`8A(dwH7X@|Y>alV+*Vp6q?iGa_ZvchB z#Pdf97_CjD@21e}2#$Jmdo=&WVK>-dtF32s4W&IS4cY|`B=Oqn>t0;RXAMfcXbw4J z{VWDsfG}V{4jJP&WNcJ5}KeF|F6dT8j&)6S;+`WZnfQLg)@JEahRrQVF z&!RgJ|LOk`|6%$$#I<9mWEk8J&|Q0TrzBsg=sidFhb@w|(EsZh+kdn`c~xAjA;|d8 zKOM7wAV*{cpo@Sa33HK-G#9Ai{`}Ppix7p zwSV1N-ADdkzYhP=rE_Go-#h!S?umCnHUC63xy5n|#AO896Y?5G$p3tq4zxe$mJ=j| z&Ykw>`ax)A|IFT^aAhQbfF}L^<@D2-e{COeXoz+^#G%psdB9JQZT{e9uS=2*7?ldp zgDvao&hsZBf-w>JS9wU1$j(?Me1EQwgsJ~eG&^)7L259fg{oa(ljM)?Swx|h?2iUo z_i{2D*}n)e{QQp!^a1<8wFuCt;}W^HW%e&Z5dG1P;E%FI++y|T`anGsfr4n~h1^p1 zl^~g@ySx!ikP*3`fQ6+**5b{KHO9-xvT~wTy1)|`FZYEWVZy)m7)OL+!$yHmK;doh zD(3RHuz{_~gTH+?voR*_FW>+j?;Zu2lOjxNq8-t>9Og`u0&V<+2bqMt~C zxuL#(2_7u<|7r*Xw7qg}B^Zg3L|rNBQDLh9-7%60|6fm^`PAWZpxTVRLT!w|g;JFJ z0x~i-dgB)kw4uF`Gwa|7hHJbAh8F;nPuF8w>)(16!8BkVNx9m3=zlmVZLq6O(~94 zpl|w)>zooIZlw;)6y4_FAHZu{qUm;W$VjUp`|Ds`0#OKYCZ-l+i+*$Ad~f`+xFM-# z8g%*TtdiSC=`W^9VB#UX9j8NSL=XEcYv*vRpkWGnpdOmA)eTWv5l5l-y!G~Z(y`pn zbNFL(^sVPbet7}*qQu?1$moA)`G1O32Q%7J!YMI-3DjQ{_?Hd{LZgxggaiTp`PaMrBdq!#U;meW__s&=_1q3EM6)k|-TH45 z`9B_n`0By}C=T4-q0Ybl=YM+K|Lv_&u?1y3z~Hr|2*VNG`NF;dV8;C$$^O@8%j_U* zBr-BGpbEdU+$};yAGH6Z^=@bHDEx<2*UA$qOn>3QZuh@`g|MKgC3-&~aoX8GkDX29 z6k&G26{PyvOVI}JyPq$?$~HPJH(q0NlX)si>ni#Q+J7L{U#Afa(U9snXbU6~{q8%q zG#i?WWa{nn-4xPw$Q6W#lR7%OkZ@uKf_nSK!F5(hfF$8x8u)*Go{0~#BDdS$QLuC% zv!D-A&_i-|IvkBUt}-)iHs%py`b(q!hb^V*qp>->T3KC9kOJonnlvslbg(<5<5QBL zaVN4z=4+G{u1@{^^7^v506ufwBgd#{92yDame2XfcFF|5t{sO|zH$EDzTb8DpgsNG zocozZ+10#&IfzVel7T_wy{asVC2+a918HxM5}3AHG7W^Gu~8?QjZKgB(x_|5hNAzt zaP=Q3(n0>@9k__}2V`}aBM2|Qvfxp?dil{6ZdA#(dtmNNaB1vd6z^5NUO|yH zeqbKK!;5MStWVMtNQN0-M-M6DqRhaJCOnIsoq-V zjQLSVzC=w;kOi*Imy}JKqow{vP zZUb!vYgd7RAbHmV;{%Wj@vHj7zVqD|ynequ07mZS7mfm2#Sg?>&=eE0dVq@|06^UL zM+%l?e>zy<85x898*E}ZR5_sEI!FAr;*gesWx)nznO1`r%>kL{sJVZYC zETFUjgSkeh`Lfv;ZtS_(gM?`PY2YcXXGpQ9GdED$`YI1;f-0mCdH^(m#xGvtQs2T? zpecIyhx&-R8hP*e2FY5Pr6Igi?+J!`g z1ewJ0OVIrE>DorSg0^E51^O;!D_`U6)O^u;M-HvoAy=C%?;~5T%S+i3^e;MfhK~k_ z-|fB}6;?UF8{5rg%m|Dn3t z-WXOwVbje0AP6$_ZDN20oj6-M^{#S+w<&{`E42dYI6IU($B)QiV(|pF4YH7NVG4wA z2>91XkccXce%%i6zFI6E9oC7DZ*Pgj!xieZNuGqRb(brJ;}|my^%ajKL>8-spUnq$ zU@Vu(7}cY8^-0E(Ry(h}d@)F}qO9);=ZBr;W4YhgP-rZzcBFBe4WlxQO^RR)noz~7e>EYWREb&seWXaYz;lo^&1>@-?ERRmB?Wt>Qdb{R zE?BsU7_c=EAE5N9_o);OtyC8kt2Eb0Q+gSL5 zFa-mu@p(BT*K0K3=*8u-@>m}*X#*01w*x!;N-Ng$j(@N9nk3Ae_p*EYjLFA=ca3pQ zTH%v-Do&B-8*h{Q}sNW_E2$gmp%!&$f;@+Rm!yV+B(yG(7x4(WdFvGU?@@?W+%jLI^vR;sxpE8){RUO|!w*!(It1dBM&dDe_cXh*N0$1p9Zo63pV1n{wSqjf2>({(_UFPp9uJuCQJQD-+DW#Wgk1O zx$U|t^tgdibM#6Fb~)VISBW#w8PY{xX53Cvpopu$pn>;gioz&SL(20x7lqGvhT6AP zys080J~LH57))`L0F?Q5x=D_|TRsZqexbNB$PFmuci2wZhS48W7|Hov z$X{kCt}SVNBN&%J5vGkDAZzc}tI5w*7Yz~NZVRak*Me?zN^07=yV}pXl?l^?^x8;D zkB>ZslCBMAfh<%g$ujQ)xVBoV$wLF@Lir)6Qw>NY8I5; zb0Pwl(*Wf@@ub}1TnNXdE$hCendjLqG#%Ysc7Rm!mTP_pL>KdNmUSI?s`iGto11pH ztNC%LtM`(-Z3#YL(sLho{!JJ0MiOu~@Bt>!AT- zwn>fZ@4)vufcpv;RoI4IwWr2L`k_U=WGVs%qP&XCtBytfsp((0ORM<-b0y6(uwz&# zQaXk(Qy&(CU(2w(6xEAY8!9{gT#fdMkgLI)yz~<&@%QuD8Q2_)cmulkUGdb8Kg6=; zjFF{t%(>Y7x0fsV>B$-S+!$W`o$M&rXOfo1U+&e#MThd#RZ^9q346>AT%A9LID4>4m1y8SRpbrEzLS7tS&>GImShANB0dyQInLDiBjw4+I0#4>p?}lI_;`a=%6X1^)L7A~*>3XiqWK0>}*>Kz;MOaj4 zGN>=*n7?%<^~}xh*3?#H=r(uk>e)Vqx6hQ$xsNTC;bZjIxnmtAJCyCj z?j}nyKT361N@&!FA`*&N3RI9=7E2PxZbQjiE_#i`mxRdYzTIm=5xb6U%XGjW)Mv~lX zUWZ<3I@?-K7ff$7-%W)B zkS|5`^my(mmdw>{c2`E?Wn_x7ijU#$-R-x!R6bY!^qY6qchy$CqQIy~v*DUV3i#n` z1*T7xOJQkO%gjA)l7HhPArUpYBN)MH068H<9|l`vhkBpMw^ZNx&EY^ z62Ag{u<1>pczx!M&cehv>2w88zpW`db9v#pg!>YcS~-=M`~Q)ka0>zItbxJMX?`_YZ>-ARY9^s!cIT|_9B#cx^KmQxZ?!l{O+Vw2L3 z}SB6Pek8r^uoP?^Pg~ zHlpM4i$+D#f@zCY0(dOUUTtKGgmepuLyk_TQda^Pko*Fd zG(eP4*_!pmPrV?rwaTUmp4(|}4;ryYi&<;c7E@X*5$z$pw99y)GY%HvfGv96irKJ~ zY%t1_$<4whxNJU#p8i8QZ zr=v({E&}fp4?D&S#gc513SATitDI7KUXzEkSPitgqBwji>;CbXzIJDl(s9wfig^~* zorW^<)39g{l~L#>I9tj-nDmG)DV5KMPgKZDeyvS|$2pc_u^1F@cbMfGxYz*Qbiw={ zpAinxq7iO3=ly;6G0Lc%p(Uh%$MUy#?ZxQY&LyM%cWQ5F`EJztC(1jAvy%*R%GKan zcE4(m>(@P2%A?l5aQL6=$LU|WdRx44Zu~K%hg^z9RP8W?bs(7)g;Iz%B-3oR&{J)D ze9Y!sI`M)2zUKkQvI{w;i1ocjdfYH4$DK3E)5D%jAHUIxc{w%8?ckvt?!L#h-Im-M z((hC;hbyxqO-GOlXag_4BmJ z_7iu9I2s0K^Eb!!n!@%;kDF;#Q{d61j}ua1YxD1Ngf{b}r1wP1Ouv&VR@iipHSzi; zW`}6C&UeXcN41l-L`oD=^WNQ;*e>cvP~HZ1r1%MtgB;mz!uW%;pCfZ|7zZyW8p~Ao z_VPjsH3&@H@KsYPLd)Qw6D!kGz3@iV!D_Sa#~%JG5^7GBHWD zsp1rEa3XW^-=C?zue!Uso^ch#lXsCyjtchn=(DZmQ6{i-Q7oM@pZJtz@zx72DKX0S zh4I@r_jiHMi17L>JEi{@MS_Ifk{&!}pF57km!|yf z^~6_-M=$5tezMys6i-PNpg$$Vq_WR9*YQ`2r$F^qpek;Py&t}@&%4|g1&*v-{- zSYb)hC$SS?BUxby?IA3Ej$J-X@X_XCRHkrTivD9>MV)E6E~o!Tm9Hrwa-~|b*z?;d zY#)W+-iRk;3A6VpP86x<0=My=F<={(lNvY6<*ODy9N4^p9r^!>y@Xz1_!YXnW}6ans-vmE^NUl+&41Qw4xX|nsT+#!MB4w_f>zy90e z|37Q~-)7AQBL70|a0gc*mwO9-So%$_>}@@8Up4f3v8(ue7VW=?0s4s{73znrjbBZw0KhyB zJww;Kcd0mDLP9tP%h>GGZ)EzTT;yt<+0l-H`BHR3+_c>fu0qwA%H=C({)>389IFTE z12pQTxZstW6h= z{U;Eii^MhO*+8ulEPlyH5P`FtIc}}=6g_j(^LD093eFf+ohKl6hxSG}1D~e4n@@)m z(67pHwe{kuyq}kKhCnmjt%g6zb3P>;NCQhHk0b~5s}7s66siUup3+mo(F^MzIcv;G zJKWxDujeGETs_~%+#*rWeY+|0&m!3{^$~&SIq)moZ(Y7+Dfwm;`(C@Qx~+g5zIFKn z{&TMQ-r%$~>$1eO=%NHpa$~b=TB2=K90Ab_=8hi$jQRQUQ%T+V1{UtG-vUnC7eI;_ zYwRSJ-T0;x_n7wrZpZsTZdzUg>_Osux8WP&?&LZp^x!Ymp z{uz+BE@3rYJ#F&0lVA#X(P2s|)Oipzc*z=Aba8QMtpKkTrD)%r9x1PNew}lpaam{$ z^AP>OHl_J>()V6>j#-keuFYr}LUXgFvWXaj&_s@vM&6f8PytCgtd>-__XHoiYY)82+BTIJCR}se$2nEbhEB7RJ2zUCcLleRMqJ@93}EF~%i{Msa}DE?@w71n z)aRvg=j~!vtRcwA~ zNFSR;>?a=?fBb~%dmnMhD#_nwKN;8ro_wu7S1d-{JH0|{3}*YN&{ClL8|*8@f1Fc( z$vHT9sAp@60Xec;YKsPo8XNeCnEHB-J^Mugz7Yz5{~Y`wc^5H8djrupPK|)Rs^>mn zS3AsrZm%FczEgO{D%5}nIr!SLfc#t=li2zqx_xdE^nE#nH1;+nHa7MosgL%qkB>@c zzWDM7s0jkYx)a)^U8J3ok!4M6w}!J{j(iI6#VG%JcY3;4>wNGK9*((y0yqNB$m!N3 zhGVUEgIpemgweS{qys~P-2e=<{9H0{H_UB|*TEp!3 zOgHapHd5ZdN6FHSC*?GhVoHv7HTMb7ggqjnBDpK|zDrF6IcyfKS6cY1^^+Mlo`+b? zkY#%xlJ!B|fUegL{)RU|9O{b{UR^}k_w5;fD<`@K|Z+sG^U~ZK27ckuU z3DAcC+>Mr17~rtU7XQHdY~uX3^5;zox2b}!FWYwodBA9whQKG8RpDya^WVVi{*Haq z{F3x-AI}=*+H|qY`%XgSr}d^T?ED`yJz+of3VOL_X5wU#bEHBT3r)WmF>JC6AZY*E zN7l3PH4R*JSITpbT&HV!0Iq{E+*%VE<-CG@rDdc?|U!Q{W<1^TJIe{itRAx;ShOjfMx~N-o-#1_Sy@|O2O-v5IgR&f74UEJ6gt-$)_rb%P@BigY*4KnTYtT|wnF&SNn#-PV{x__^uhbmnMH~nlZU@s54eWuIE`aPcYPmVVl9LOd zO zbLu_4zzo&V`&^?{c3o#Vc$)-1>D=6F+>-@h(ptpw!( z{Cb`f>tRb9aUb9t^7>HFc{y}{+F7blH}BO;#q<3MRIK9Dmkb}9-X-gCNT%eCEaBKG z9;|R>AOad(L_mWv+N2D4i3c)4XeS#RR_DjdIp{9U_|^pIO?|s!{^6NGmYq+hWv`tU!Gq~{1DrintMwLIqPD~ zuT!K+Pq^)iuXh*(99c}}=oLoBLKZGAf*coNF)>QeCJU!dK5&QI|NE}R>2ZDfYvct| zIxZWON0C7I_=s8efE8GB3-D972>_Z($ua`rnruAPEh4tUUb&=2Wwa;3nySUi!X?DO zXdEPYC$e`XTrwM;TSpgZx-FnRCseY}UXgY|=Xk8C=|{MBXKi>p%-u-QzNG?2@% zQ_FLhd+yWx;oH>03)!E-vR@TLK}C*+H*(ewOdo91A%BF4Md=Kx)8{ukS?L!$8D-ic~Y$08#Cq1L0lzvzjt#P%RFq zUJY!v&}Ll^c=b{`h!=wV`9h5W3@JwMLLW_!tSbF{OI-TVC7G3npNC2orE8^pbX&i2 zZ{Wue(AHnv!*qVmMMguzhPDrbp)52eJt1u|X{O=+8G?ce+XTljEQXz1}?#xAEYL&!3zp3dwkLiW?kIeWHNqtMztpeWo8;d7+*J3 zWc9Qs51o;5(ed&c)J}Y}c9*NgBWo@&if&`OOo@usz%NP7xZ#&BexCGh(3*vft*_~f zEGaDwJ?&-8*3jK5OH%GzCHAq%^Ye@@F2~>M0lVXc1z*6-2^W<2JxymRaxbXqyW-Uj zrUZebqc_0z1j2drFK^ysP7)x<_E21C5G}RCk;n`gc8UMVeo{Ee6ZJ>9$j%;R5Ykm& z-y>(|5x!|4r0*aF{<$N;nj1jmJ$B&pAz9k5_cE~K1<6bm4W5cBrhT_)v~JXSON$IH z7tU8cZ_0Ik?p3|HwkIYbV-V*c{=r%jm8j8y4fn=+{MZ1x91{Kz*C{;c6Q@)Lw`oFK z3@g!bXig3{DXc|5>PHgw9QMRhF0cK$$E|)BNab^qfouHZ;}g7Z2A%*HI4tiqV#iuv zku^3ouXY4?%N!hyixAq!KLD-+b^O|Wflok?ARCzoprJ5C#l68RSBQO4JYsROa=$aq zN{CIyDX;4(DC%{9^wBV$h*`sOyvOyS!~6sAp;#0V^Ta^B!!tT!qu(_#ZJniUi_#NVJ=RHF+7A{SA8m8G0R1O04 z!|*yHLldDA1UyIHX}!)}-*c1PRx4z4tY`Moh{r)9u6nxO+>`RE;h`ZSKV=r;=Sr%o z{fh8=l*-oA7W^DCF2j(L7tBv;)uZq;r^{wp1na1t`J$0>-B8ofb&~Tnf~csdTsLN1 zjT&7rCysN_nv4L1gDYUtH>!l62TA_Tp1?k2G<0I@v#X_+CuEI890CoMd1%_^_Q*e- zUpnzf3%Zj$!s|2c?Qt|I4GlP*G$?xoXEsTHMydL#T*k!(KjP727TuUiqdMJT-!uZx(+_j|0*BukxvSm)D7yY7go>BPp{*K_@ z)TE^750m_3w1g{mbuAKj0KX|u4A%p(^D|Asezbqjbgk3_L<@9)dLX?&t*I8jK}#qy zA!F6tQ6w$rqnP0%CdBA}_3T$2U>v>(0(@HZ&-djqDddBfoAhicd;EH)3k%Tn$XobXQ)aN@)4+Cvegq{tK%i+5dOr1kR zkNhr=`U_R{PJmmE534hEZIbn$U$)(E`L)2tL8Ai`vbAZMnIR+XP&^Y~h{2oXHp(n9 z#e7SvF#L`ZnnH!glK%L*<%Y~*Cqdu**MaMVJ=bR`F7U}{Vb{G{r71q2HQ^*&`I47d zaOEf(@h{+T*yd&IyQT4%j}9)YYu1pf%fl`n>r?M$!A`)KxXw+J1FB*3$L~}rV?<7p zYu9}qVTo`7VmZf~w0%RHU*opuu5&+m$G)<=5!VBI!|&w~mUifyTb@!0J^z4*(7XSZ z_tb1gm;8Wg-W1PfoTuAYXhhlG3k4A(&2&pb;}pizF2X1m{} zb{3n(=E56D+KzxW%9IMZ_29=ZTrU@Vj9Q4}(GBxxGHz1-E=XYYu% zGzkpeNsMgHP-?Xp2}O7D8?UY51o#o>!w@e}vH2^P*~p2=15(l6b%FSer#V$K<;6^J>>krJ6%;{vsba)kC zJ<%{Q>a_i$_d=XxmX>p|mCccdju+F^|C-vw?*bjlZx`3Cn6Tb|jSU%#bjC!6Wx!!k zCKAo&2Qx_n!$14hOjGg{6DxMcn;6>Q5S!}jr-kH6Do-s0>g9kfxfZw{!O)GG2pLY@ zCq$-0arNwbp&=RatBfOw-unE@Dt*@AM|Qnx>-pzuR3Os(`@k9S$~*k-&=3@ty-9^PkF!dFbpA--t#It*zG@LT@I=|BP)b@u1C6qd*fZQ`>O zL|;@9BxMY6$^a-dPY2L?Xt$7bYqdc&(v|KR`ki5I=Z8@imZyA~gGya%s*y>h9DUH= zS-fAYUo|Ri3OENjAjph37d>pEoF2dpkN^&>@h&9)w>`vW!H1*OpZMIXdldpV-IgGA z#q)*MeRT_Uo1=2Opr!1wcS=)>snE)DJv5|R3fw0F8YmWO(E-FW{c1PP4L(+dc&dbG zqQ0nFhEm;1B0D9|<3(=4ftF%DJOD;Rr;N0CVPPo!dOdqdB20CPq=PkF*(6Ysl+z?8 zOY913%xAPC(EFs*?wxX>{x^@0I>`Q~pIt4cu8$;ctKc2xNpoR>M;sg+J?D1Gs~bmh&k0wiICz0L7^<~9;GzCo*4rr- zFj@lLdilEM0SAxYBs2&8j!(DHz0J1WEi%=S%iunYYLEMh~Jv8l*rQA9uif3nD0y;V~-+c*Awd zfLpmYp<^c?oK2Bvt(Oo@D?~Ksp}-9{8=zuTU`S&O*QX93RMf64aGyX@bEHJ4wYl08 z>ayVj*v}Ecev~9R0|@p*6ka5-l^Bmwu~uk~wvOG4P`rVw=xOMLsg->_^kt4;^mPK6 zaSfvbPe!#eMf_;;91UYX?mi9lin5KozdItJH2u9$|_`64-8RSiBAzZcfiiU`$D*tK%VKFqAj5Dt-7Ysl}J` z)BrF8GxUJGaLO1B1Dg*(L;?ZvaZRS-;qpq#%JODrssmPAtYVY)j|d3~R}T--HAZf# zk5#3mk)P*?BmypOHOc~jB1v#Kzo@%M=qGPKdpb2!XOqJtWGiJ_9sTA1)6PW-d+9HJ zTvDdsA00;SnlBRU967?|eow||mv-Lwke9`XU^W$?;e}mEr4%9Sj+C41`;!7^_WK{c z6e3PU_);ek6ipGULXNr0B0rC<%ywE?z< zh*u(Lq%U(YVF3Wc-CxB^T(x*UT=2Bzy$G01E{$34p&p@ z>r#_R=>)yuXBm+g%IjHj>ILNP(78_IqN>FwIfw|U4j`Qgr z$wd!qrMH(6>a%(r726!lOaojq4!l?2sAuJ3Rj}lC2K*Oym$w2V{ra>80|2YUVcqti zImIJf-@bSUUO*PE5Ef7LK~rI`K9M^G#(T@rHrHorj`NT1E2aj|^uKDYyZn4x7A1*G zRzj6L=OL}PETu%zArt?dHthhJs7f7his$2?IEWyG8KC^WjnPbLgz8EKaYs#!`^k@D z(_F7g8UXRMLvPtX@dr_V@O=P)M+e;~@LE})_`IYTkAC7yOYiv(^JNCGt0{$EW`u-} zAl}zUisj-*+vie!-)mvy=I;_8YvimA1Q^uB>AJf=QqqcEP z5smK8YMOhcO0^<{x)mE!3}Ijd5NbnR(;qNiOu^0CNX0$7@M|YYH@CBuqz-Fj={SC_rb1Ru`!_z}UQ8$1(y|CCWC*(CU>{FF1 zBjTNrfp;#)kS?8ARncW5H5HAU>=Iv?{!SEu7S^r9ROvcNi2V&RU&zo1NOWHCD*5vF zXPHmODdtzP08vf__%>4!QAB$55qSAW0&WLh0gQ+b4fGGM?ADhF=cB#zZ|Q(*=h|u z9Oci4lQ0ycN{uMa^_-fyapb2zu&}TtgEspvjq~%CKLvfFNSxwj&KtAm72(H{fQ3AH z3*fw&cLzQT_LT%z5h&JU9GnY2j{EjyiLSSkOQ14(oP3* zAD~M8Fiyh;uuDt$fUsDwC{-=JUB~*}m#x6SZ1W4}IM~G*EG#Xw+=u^bMN6r7^u4mu`A96JCE+VS4H zbmi!X$qlSpc%z|IXXqHJf9?2C5_`pKk8j13jY0E^w#9u@fN(km#!a;b`K zF5Bsu9QhLp9BN>vNU<8$z)npNX($U}E}KG&ADaaO9IQPvD@r(64?_`E1a@nx)gbEm zz4S#1Z1+bqEPp<8v^tHYt*GdiYD1~E;*2QEw;K;Mb*rsZ0Dd0Sm`Ejqy2+J+ARz(Q zb}YYX$oNuKccTr?&I8tb%^_uvEL%`o1iyS6 z+9S*z;wCc|jg!C}Bd5ZTfRu~TnHq$=t+sKY=cIAsV}>{z2ZXM0B%d+Q33hx#GFeRO z-$v-QWrPNyNusYKY$nXF=Gx*qA?-4QS;qO{s!L~?967dgNc z2o3)r1gke7>Gg-rbVx7Cvmf1U788&3V4B-=3%n>RH~G{IgO-5Jvv)C zY0cb)+y`eQs@0&$eDQ-8SIlOjiY^1T?x@_$o%#Gn;u|p(4G^!dzF|P@T;*#z;0Ge{!`hzha?={f2vuI2sA6Hua1cQMQj*_H_!Gs_8}Ec$}r&NlIaOd}&nL zC4n^_-%4M8T>%{H(xwZ^fu5X?)X~vD^iR$#eq~CcBO`MHrSmX!5NF>r4T%RpOgaM~ z0Y1+b4+TO@WFaBFXE_e+e5KQ6imqDGJjVz59X$}s!?{Ug)}V=8H6=9#UEO+e@uJAc zX3CJzPzpIN7l62;zi0IyVV1><#0&5i_ZFEXzHP(+?iu#5Ie#y5`_Ma+;z8nIIUJQ) z+>O%B%TYzWV1QQnfe-M&se=4P5tcXtP%$@}pGmhYWl_wW-hv2XGz%wpsiI^>(Rb9M9!BUyD z-C*kv%a*o1JT@qgsOU55Zt+>}(xN9ox%eDy$?HF3_LRBU;vxU2}h5ft}IU)W7=IFp@ z2Hjfux|jt1>c1Y3E=Qt8n9G$uOv0E7Cdz-=F@)l+uJ9xW$gN5R(7Ql)2%a)ATbi}s z+a4Sm=NJ*S+1eGx=`xJJ)2uj{^L{Yq?o>+08J$7)x_&=c3h&s^ZV;(av%Duej2*hZ z#|mxoHdAP(0WeicFa4}qv55gkV=o9e$hSyY8HhvWLL^+U70l&iWzI{`V6MW?qsAk; z)#-XsQRi|U9CFwuW=TlMEbn3RGB`&|oLJKpy{q%b_mN)9K9A6^!&AkMDU-u~Q4|y5-@?MhQShfRz3!I8;$nTRS8e^(MxDKBM7H z|I8Qz0;Cwg0%l;k6s7U8jll0{heOC(;KTd2%aS;V#0}mVxD&MOjrmiXajWH=>Gg1G zh^wU{y_gsVE&LW+Ekl$5sCWpzB3JYMT*9O*(vbXKyDDJYX?40AZ-kh&!0TWkbi!tM z^?Ey-bXV)BM>;lb7bF_>=+0(j9nkQ~QAM+9@IW}xn)5CvF)oBF4iBs*pDgBPN z{nF7?|!oawDxZU zDo3`f|59L&kqHAEGQ}d!lp#BdT!iN8uX3YfDK`=>1L#^mKKx+&a)5@{*_(m-e~heTAUn5yBk%Zy#P~~rvi8Tihb+gqJ2ib@s8B) zz>Y&%LCLhMMh$)(_HI}a*HMGzr+vQQc7*1H>#lAM^947@Afz38dlst3F%yV>-TM_w zK^C?EIa#Td8!VHD-)7S2{WwF&x!4IvX+M1M=zv)_d^#K{aO=RQr^kpW zu-=LK%~j?OAm1k1+A*eJ(}eEGMDvcIwiCxWG@#TlQ@71si;39>%J#z=9=;sZQw!Z% zD=cmFV0^G@?kI~uA>t7}`&g+`KLg4zkTY`f zep7OThV`-#k&pLWY^2xqm|$M2;PWYbpo9iW&W@_9E>6<@5IMla$-~r$Dnl{GVejKq zy65NOmHh(+y7*Y{h=iyy1M?k{p9uS-b`#;S#swU279;$fF>=S&0D`T}NZo98dq#L2 zXHoc9?VgQ=p3Q@oayG?uydaEoj`zaC9mZR6TTb!#8@rr>2~TMQG8dg4v;~`yCdbP;&$Q`Lce22YQNt8N;~u3>D<+?^QER|m@lxj z!pKAJ>oe(3$nxWLoRdou4A;)ap_tTo!^awSagh;@bhx|AdY?013?Pwq%OEATQN%LS zPFFrHwj5hyv|VaxQc5~)N5}59cOfGS@NENl${Zft?R}7BAhS`Vv+4nb0tK=J0{ZsG z)hFuDgoHFU5Gmm>Ad)fLu4wi0M~Ci#elq|l!Hx2}rOeM)s8$3kLxAjr|LJZDP>>8( zq(Riv=wB-a8Z@FYKhN&#r)`aAiodw_JaE;VOQvqVV)(2Rq(r0PIJS}x69a}K26rhZ zNVcBWNKgtMhqYJY`FiZXaVHT4q%8_}9=M}gDzcjjcA|A6C0QAwVZdKAxY(Am%8`^P z_H8#74e1GaQ+xR)#?E{Ze{D8Q{^T1H;Q34>4QvBl!c%TiH$wkR7)^1Twun*qaeeNvh?O#zqId1El<@vE_9PsORfBP)_fvSOhP+BK!CL6p$$^E(mDmQA-nVyOFNwOY_>qa=Ecu z0WA-aiFDY2&Qen)@>>2Mny$e;&NtX@tTt`jG)ZHd8z+rzG-zyXY}>Y-rfF>3wr$(k zyT5y%`w#4X&-czZbLN~g?{EmbJ+VrG1#p1-V|FesW$@W2S@8)OA>&$)UER})W9d`5 z7nsXGvUnPLZ|3o)tA#m9MrJDTIUVtrx!k_-*AW^S2mGs1lK`l5PG8i#bW051(fim= zN7igtsmZ}?+76V@Ra(FPXYlZD{g|)!(mLNfwqJ3ylztQa7tZfDAq#V*(5f>KMQvS!xLR#)@uU<C3+}M_IGSyMsllHoxyLI1#5hg0O_vmbwW!$PceFPP9hLQ)*d_4M(WnJUc-;^Z+LnkKJ1e81@2<*5=o7GwP>E2sldjDRd`JB&^1(W?a`k-E`c*d% zVh~#0QQm#2x88jFuuPE0`ZzT-Y0Sw=iV6(GLqvh- z3?8SOoqsPk&l^Bx9pxXZG>yic4Wng;InS(PiJkP|e=Ce0Ar)sp+y1A8Dle@E+Qicw z*Sj&Q=|6F5sUgZh(3X%%_%8(!+D^&0;={j{5eV6*Yyje@ksyvyQ={_R>Un{L)7~o` z{g=o>N*F#vntdOH(emgVo}~`?NbWC}#f@aAvetQ#|FMqTc|z@oHM!!< zjaK%h|7YpKVG0M|_f}fS7k7mnMZ=zxo*q2O4;Cw=zrM8&his@Y7*GG4`nnuKLZ$2d zu3Kk;6$(LX+a@ovkZtU6kMdc*5aIrM{SieWR@WDol_KID5oopMe^u4+joZj~=v3C= zWr>-z|L+B4k*mSuMQ7hZQX=@}v8as5&haaremvk~_bteEFE0(UIbpEckkan#NwV$Z z1b>QTYjMN%i`UB?X1)hx5A=Vcb!FQduaJMhzXw`oX51Xl2Xe?rZ4_i7+DpB!ey79jeZ z1Dxto=S%|SONPBgNUOdya&k{jqfH>USBZs)m5EB0t~~kX6`}yh!abs;oZH zHs~t-WmzeCxc^9MtbCLQgXcPG)4*8otn?-0NPjxEp~@cRZ47incF>EeI~U%7_wsd> zv3PLM(y#8|k@Hz;DYWIvKA+Q%w80XgSL_dUI>t)Sx`6U4`>wda6&7;ZHLGoSr}1l% z!fvPOW2pQnq2(q*oX&U@?LOVE>9|0%jDORcj8&U6YKaX+Zgm1}FhZSp$pHQK#U9xJ z!t+mrc}B&*kvYVwRh0!#$%C6F&7u%n?wmj`1&)d?aY~q-nc1eJr^Ze7f`BqOOt&-$ zZ1P@fCP2%I@!g49v(Ahd)^=MrOzO?NiJ$JBbyxVE)SKc%>xQ)qwCpqbqV~i&Tr`l` zfb}#l^=iRPP4oil6=?C9dGB8G(R#<&9qsEdelwpnDAF98!dt<4XMD{ZGXeJ(4_ese z6a~B$JWY8?L^5vYxPj@;)&GE|JIuMR?d(}%VoJd;5A-AS@2vImyXwZ%K3Wg5C$m*W z*QNuN@b_UcMPQ{g(&(ao!`^yUv*U{>X1}igf3FacRHypvgnQkqwH{yueZy!CQNhc_4GwJ+avwrM|6CVbnpwpy+{64(;)9Nmbb z;(zWZU&42RYK^bREfw?csQ5Tq=zv+{_{Wxkd|YdzrdAa^p_+c&91{qAEonJ>DH!xOe@!&y;SxZwYffv5PY5n+J|1GA_tz#t%ZX{c zzY*5@qWeU(CK}E#a&KKF@1jzq8FiLVVuXo9lt+ZJc*7E_nHh2xFEka-i(W-dFJ&oD z2;0maoRdNMw$2w6D%bIS;PHO#)4x`4c;@EgZ{NR0$91D!#qvZv#v@+?k8`{|wfZLW zwM*v&t-1N>p8w1#q`XUz^53!V-oME}nEPlvxaDutHGD76jc6p^q8*N2mNF+9x0K*S z)x-$d^)kAUCZE(7)9(VS_p~b|*V0~vy(V7a)k>d}kO*4@5*HB?X=d%;?-i50M(uZ$ zZ8r10gC4AtVAyXb<3XZe%N;`IqSuUSaKjrT9%1o&iX?$3;iqe2sGmhNot>&%rb;&D zUP)5)1GyjYNSu;IvBRIPE5CK7H^_J3oz0q_Hgjo^2>ksCC^-zt^Vx%b2AvUJ=Up3~ z<$S!*UJB$YrM${7>cWBP24akxOCd(>#ywJ?bxubc+qP-B7vvkFr}X&)hWExg(W;Zb zuHDa3Iib3^4!%~#0Mk7qf~h*B>b>6p24~;SwXS2Zcc$2LK{-3(yTZCTFY4U_Q4LD3 zDj_Gc-_R%VqQ1MG7#LAU^c6CD1tlit(9hT_(nv5iqj+ksZ57#ydg@Tv?3w08$OA4w z>#Dr+MH*or3ooFPoN8^&4KVUP_PN#yj_26hY?vwVzEcz8-Bzs! zm952pAWra7qE340mHrD)FX3>d`upou5Es$dD*?I zqUla|h(cb?!iemv{DUZX%ReanNZTWuH*KKz1p4^x-5Vinm&-P*y{GoVUnc z-B^&>``}cS&coI#*cES>gS>yk>Xun5mIS<$b&we>{){`qk@h=&OS&*U5YJa6m7mVxu+~Hwk5V(39eKHl6Vpm80}BtAo7U;o>DmSq4N4elo$b8j zvvnxrZuXLeNzO=#VLxrmhs+EkTF**-T8YYV$u|sf=5)DcNeA9ykZ_JaSZ&tJzj5V) z>CN>;B&hFz0?96n&C7`?-%Pz|s|psazh&*(*~? z|9S@_^;`7yfx0BbV|mSH`HNscr~B){elcYHp~DSqIWc*)>*rY|54Pd+Zg??m&kRK5 z`)PU2mlfyxeE1k4OGjw#6Z4g6YyhErk7Hr66QG%FnI~%S6SblLci+d}H`kF&W-_8r z@9Fh^B@q$NPbAj`R{nlxYN7I~`^Jod!ElIs$=^CD-U|@^RBJCaD%!Aogb}torp`A~ z;p{|}f{PdBmr-i+c)6(2G|S=XwHh#?o3`Ql);e!aXDwbS7Ax!R(LtXvK4G1yN5mYz z{{;K1;0kDcgh9q|jz)r;^jRi}^t4_|eEe8C1*QY$o4Nukz%)DJFcAatMemJ~o%7d* zGaX6x-HkF^6rD2f1$N>Iz9#Ri=bgsQL0-KmI>w%`0;Q5*x_8o7llRJ_oc()aT;19i zV*$XY>$0sJ(dPN51)`6>7$w;^_vg^1vlulj0n7yyMOhd)_3p;-C#APzxX!m{HM=*> zfe;GDkpsrNhqBO|Z@LuweZr!PA;Sze25-0nA)#M>3+&St(j;d@g6zD~qjke`B)w?g z3nV#r86J8B5U#!TIn6x3znJoQCx4_YQdSz)*z7>uE^#F^KY5Cv>Fez8jy67TY;5eb z6cWDI8RUqVpr=ayDVA@S#CJ)co|+j)vF6PPS0Sj2tBKII*&}@_9ettd}dXD_*}y%tGm4&KO21SteFIT#w$$lvb?6Bx3Hz!Pk)k%Q0tPn!3csF8Y9@4 z?mEoQe3oNOcAvfq5JA|ZCzeRvvfYr1FTGFmVTUF9p2}~3I+`Ko^h(B(YmJX+;cMoH z$zY#_^NbjfJ3j_#ul`Es$z0`#PmR=r?5p@AVJ~b6`)l!gfqhi4fmu6vz7%wvLoP6a zYq0{^MqajCwgyJtEwieQ%JWf?tH^l1JkrY~!rtE@D9!Zg|HybL!EpL~y?9$q<>JV; zQu#~n@$lxMtUu=B()eTl9eki~URny-@X3L^)ws%E&3xJ!)zG-DWz6RMYg7+4fN;Kl%ansFz9% z!^J8=|C0oOd_rB~0vW%6GOw0W#7*CA461;-{IxMU-z)T5+xF!FwMf^|nd6)1hp#Jx zEaGwG$M|ZfY} zy-9xtm4O@A1>6VHWvG6h^v&sTzQ;cVR-W?0qmTUfkjZXN|{ zUr~~z>7Fy@#QU%HO>##1$rOzt<-^e{Em6x%B-xXm9l6~L0}MIrxm21LQ+$cWtCYD+ z1N`Rr;NI!uA!?PL#aUdh)mLJgLZt7_YK%#c(#vc$LPkt1`7b$}(~b^uiEW=pOC2qKs$Kd#)~OxbU&F+5@fYxKk#-ldn%ZeW;n^5K<^f>I|1OBKdU3NS1(UZ?&EKL=JP-EvBuzx#Seg( zj7aO5vnnz0e~B) zqZG==gEDgFaT2=1ld-$zK-*d>LIx$S^p+EKP33S*^xmv;UKr%WqNdm+x|3;>jJo{H z8=XemTcJcI335wxS+IkUjZW6|f((b2x5G0eWb4Usr0Bw#Z% z|AdX%!2wc`NN_DMAvab^v;_@4{j_&rVwqg@7oi6>4>|+!2v895maHMQxU(5=U@Pkg zMs~+22{Q}{TT^m!a9xs!l@TdNkVtn!pwdXsv`V`(G^sG zSPb11;_(bERAWlxtNg=uHX!hBW=1J)vX%R?0UqkDTjNpPc3uVGVox*qVq50*x6Ivg z!Nymn_))h=$>7b)@a$ydH?6M^cz5!Jm$Q=p%VCWtNJI{tHd`L%t{NvVJ=ry}ju4xX z!H7-Qh+-L)z253;quKiKLqy3w{YksR>lfbL1ui*!b9n%;yG}H8^jwmN@zigfcRnhzeT^Dj!uI+3&-rLE|MLL6c+co?ktXn2%es+&!4RsAUo6P$ zFC(m((}n!umn{e}tl0z%>RkiZ3ut2aQ;4FOhNns zUh?>IG*EFS<(L2~!Q{(zm??}!TPD?3) z^l1ezoukILXjLZ_sU=G(?Mu|8I!qwJO2!fmUGo$DB0`4TK}z&W0R}IC3dN}2d zHczKnyaX|~^mBzp_P2qfe?Mjufqpq;ss|o_c{$+H(3nFJKVegs*Jl>B9c+zZdaK+A z0ghZuleY1=ures{t%C^K_J5#6P-LEfa1gF80#$gkJ16(O{xsBQF zZ$J#sX|(_|iaZX%SFyyhAVBZl+NX{a>+TQ&r~D8XCTbKHlVrr&$(~T#dw!m6PdLCP zQhDK=9S>cXNXVdv)|LIPMjyPTor@Z^+~>O8H$BQ9L+epIEa6}OI-jv^M7O-|@Ri2N z9z60`&&SW*RQtCd{V5gq(ajMCtQmZn9^$|a`n}4=Po>9sUpJg>*yLjHM-4x(x7Phx zzlp(EmI~AZo5Y1yjrau_TS3psLVog>Hd|{-w=GL=spZ6!v;SygF^)SyZ#rtw-)$Yw zIgJqS_dv4Wtn}&R+uwp^qHdX-hz!{D;}hA$Fv3%}n4m0=T#0DoWIUxlE2?|ZTAigO zudb<5*9#wxY0;-lvGNgHjZ>mL>gx&}u-7vzXWlz+XdnYRZda^mEoB}!va%zg)7f#E zM>kQ#j-niH7;+2Z&}1`#N4fjj>F6dCqTMc7_3gOpBZd>07tIr>&RfkZ2`mU;=jVHp z%c8`3`mT4Q6q`>1m3+i!9#T#pr@w)uq`U)%{D-7@KN1Pjo;D;=98n7@5%f zF0HCvb@V$=owcY2^~cp0Zz6m0Y$}q+V^hU)=W|rZS*E`y)@C&dPR?`9{sm%R_#t`ka=7rN&1v*}?^LhvJ|oq!{LHlz#(AV!9^vPxeU$ z7x!l5#7WAD_c^cluv$07IhZw`#QkVn@I(uk<&K-zFN7g?&!%A-9j5AUq{{_tbQC5?xmwRFwM&V3R33a?GcDlGaTd)n^Us#iUHIsq^Vql5a>zg zGvny1%2|z@yw^R^bniJLW*=XT#dB3HwcXfq_)}nMSUNXBm2qz{MoR*TtSBHE|4)M&8^?Gp)bRPv$AaG!o zGWoh^k~lpTDR&_FF)osn$dqT8>_DEj8DB>r%|bbYEAf8uq*s0xF;mZsUN3S0EUJQj zd(+-%yz&}4qLS*o&U!NY__3Ct+F)qanuJw^k6SS0t>W~_!UwBDejMww(*gXm&M}%K z)5)kPRF_w?Q2 zu!&wXkf?Ghd4e{MB|U3x38Tpl!@cWx0Jf*;7*@Z2u^>H3Sz8pjPC$Etr>+IlFi&)D zO-IbShQ<;(Q#s+EJ*?Cix505giQ^G7h?*F=vJg3)j>H0=fAg)8ZXxY^p$qle{VTy` zWX}}UG2+dp<|m?)ColbT__C*_s{z&3xUzH6PB_Q_zHWq=Ju_nK_rbh!M6C`MpS)fq zq1up~S-WfWr>WwY21GyTkcY+}zvHgO3lOJ1W7M(W^jY+fJqp_j68Wpp*uk;@<0(m| zsOoPrqBYx=-6ivLI&|G(m*eb4)(mI8hLXWKIQ$9EuYQ@oYZ#terE?@zmR-Ut6WR-b zV&=`3nEypMU8%NsweK=CKawx&EDh9E@`CeQ#wOTWL`>)UlM)^?nUN{kmNLNBIMsax zTAOL%)8h_hihNg{QBTfAD+cw7L=4>>-K2pw+xCpY7abdJ+ObbIbs$OFSSBM~I#|L~ z=8whChk9=*Q>P)wkI1``D4-%L?51S;uIitq7!A7_a)dBu0F*7Nz|FDl#KNVg_-K)}Uyh@wqZ1svk{>)&HTbpAq#aMO5) zWZPR<%J<1U z?|+1iML63VXZATpT^N@1j>e` zk$lA1d*W?X0{ig|nMw|UaI(NqRW??uDEXOA1&hoG&p|GbX*fdgm{R%&?1{^5$e}Cr zS%WEgg*BDoeZtCa54>qdScrqm>zTJ1D_@ZHo1A6+Kj{$z#P1b^VzYJ z-X(ADISpx$&!hN|>W~Wi*Xn;qg!c))?Pf*Gbw3HHprjevwDjwVUYU!9mDTog-GzvX zYU=bg2-?@f3*-C=*hLS}pKe1pk18Os zu;YVg=~VX=JA1S`-sJ9%Eijc1$Vl@8g5?ZcJkzVB67zp;Y1aGNcw;lpWepT<|5!`X zAQ@&XAA|)qbXsu+)WQ(3m|P4qDC3L&IHPNSLE=?+L57)4xM3g~9qIY21hD<`eM6c- zmMK_siO_jrd$t08c>3B_r-)P7nOiysoe9*ax@)AHF?7M3+A8gf5wXCPWp{|sdS$Sy zF)iuSa^=hUH)#hCTLEBuX(2wrE)%QGJ`+{FjQdSShFdasl}fKsq>PTT(1^vDLQ+TH z$54_jN0MawY5$9#WwcfWA=SRou)|mLq)Q?h0x~2Ym^bLY<9;sst{jEOhXHp)YO^K; zu=Z^|=lYTBf%i}f?)b!m*u*GKNXzx?=wQ)%4n1GwNT8!RPlYm7!l2XWErl$4aM&5!9z4?3h`9y}#T`Zbr`*LA0`w9RjWA;5+DNy8_uf!pNxb%m+g^C;8#Syyv4Oi z6-uG6WNCaef5?a)eJZSliu?Ipzu{7TB!16nA*ki35~$mE-Jy0CHQ6=Wk03ZDL(Q`Z zO=?(Rc6lVIVTZ)_eKV3{O|rbNdLT4{^_>9Pwf5^3xvzB`A@dG2Z z5!s^|&Jz_-qP}dT**7)C`XW3?q+yhGDzpky1LL74i?&UlJ0^;l*2dxtwHy z7Sm0C2GwD#do-IF%kUSA_9Tw78F_1O7Zf|(%C&sYE^>7E{r<-NSj$$VQ<5+eSjMjL zK#X6Edf4Xa53wa9cL}O@D_@<;n%pcP9CWCsoE9kP?R9Il^RnNdc{havxRlhlziOJ4 zpDDJ@xjJ*Hi~smBvR+RrJeGDA{jzacr``)fY7!`c1{UqFMmg>}Kz>|#)w@w1hPFoBiWaOLl=LpOx z&HY2hO9JRsBe&5n0;E&)gV1gM_2)LX(+s~`m?cAp*}rUdL)sJV+4n@Wkw`IvM0+VS z%nzeU#ki_!OtGbg$S=Et?79I)6#~m1c;Wd8YwK(}c6@Mv$8Zw`nr&h1D{4Symy4m{ zEb_(PkIp+^Xy4Z{IPc1qgSiR0{4B&A~l75&Nzb4~)vSG5eZmRYE7kJUYKQ%XtC zAR2*ZRs?y5YNTjVUsMBt>4YxxyHUx~Brew?-Tab6#^;HUviP{iC zqmnzVQ+K7!Y{}c`d$#Q}y%IAqLaB-5(BQx+#7a%WnhLL3jC@n;xO=^Lu@Bj)l$N=J zP4zt`iH;Gwge?!;!cG3z~8+KYsiM3NrD*f_dzsnVO#+{lNb(unNJ^V)#a#{x) zf9I?zHM>dxSI=&wADiIoM+qsZz65z*|L6(1w|?CZ^|#|rFexVX-u9q?+YcC+fTvlX z$B=l$+0_V0lJP(}KYLNUydf-$A?D_k!T!9AR=tW&B2o1uqD!k|&dvB86tfRO(24kF z&~2NN#+3+6ag+Vq3~i99B<$DtJ=S(W@48pl4EhY~jQ%gS?J+&d4Nw`>{pV)eR?=G7 zYuIjjBot@oMRL$SuM=^?K(N}9`h8C{QSH2T8=kE?ne3D8k&evAMMdpeM>>MvwIR;2%~Ps0(^9?(KqpQF z>#Yx`7GJQF3s`j$V(RfvX55^_hB0orxD@z4e>qSaT2aTKkVB06B|9w|72BrzpV$!qZK0eeHj4>+C^SgcVPk6@JuX< zP&pM|A-s9ty}P z+y;Zdc2J`byWnKK;d>K(JL02hiuA&B!ve>!QchePF&dQv1qQ=sr!Z9RB0XnCOLiCF zj&P65n#1LiU#^PhD7~QX@tt6Z1R*oY&hiXt54R5EHb(s&_28AU3x>@kT^w^i6HCi9P|s!Q}xW7ck3tPcidsVE1791Oc8Rb33HIOZJGPD zzElXp>)CY&M_i5m-V}p1uf>X%Vmn*V(AHPa)~DQm%#E#AUQ5!?)YDuSSm>c#E=kQM z4L+l$`R3=803drMOleU0&Zdd1)$=tFW|ulIuE$*-5ovQlyl8;EAaVoLN#}r|@r0l9 zuRy8dmoIGk$~6C*@I3P|j6Bv^@BL!xr`flBBtngvAv zfWLqPJG>$F1%#ti(SSkUHB|%dJo$EHZ2E9^(}X$vw>>M!=~?3(N&EYSn5g#mY^tRQ z5k?ecC!?I}W?ZNTNDSt&Q6R}mIP&J*yj<0`9aQ|cHHqKZ|zRAf9Jw~+5hAsqdt&)et68tCwDA^q0 zuPg8NeAr~+C*ywt79K1o^+1p$@S6vMj=$V*ZnI6B(w^!Klf*uJF{fR#>E`&!uJHMGAJ0gXL=z+iG1-|NEG|Z;g6cWebEbHX!^Jg z1d_f_FLS(Wsp&C-z0iL%zAF%NhSZX-?>HLo8P=J23@fxeFYjwJI}Lq`K|>NOPa69= zxS2VO=mK!hm zF#3^}wG35?_=pF4Z&%ReN=te*{ib=@08hDU{94>|n$j6(5uYL{x84!JNWZRI?T}*U zoeKp1^OAaZUxM6BF^og-R39!Xbz3Rd$!Hk5%S}tNfN`+gU`YdbYDm**u8z^{Is{w^ zfJZw`CQR3y?kc9$(vQ@835_>RSNMdp>=8`jdu0|#7E<#^KX2%EKx%TAAd{WsPz@&%Xt}D zbgFKNFGr2+9hAwrwE{LZtk0C5JxA&ZfJcP`A z+WibPS}Q*`F5&+tIZU57R?AOorh(toud*&+p9}FDGyePd0*xIN(@iickH>!$Liv4` z&yQ#=ZmB14Lzb2G>tkq|1cGzfpj_R>xl~_qN1;Qpfo;FF-!}~FREA!5=4h(De6H2k znN{}3v746S0Sg(~V9jzAjZNiShbFeUsL2+*X;yXyU*e*}p^xH)yQd}2m6cVrSj+$* zk7c2N)?Q3ww<8D@ZVj(_%KcpUn9`_S>H~!hjTp}#-%kB!tcZOQl6yOHMgZ0XW6dfO?t|eqa zVq5r9V*{-H2$>`j3OwMPzn$2FIJjGmWY&%oj|bim*t@aDEw%2P{~zoH$AFJJx5kzu zAR210d3Rvgu%w7cpm4d;PXWFtzNFTx94vq*<%4R`giTFXR~@QA8INE3w$7W}^L-No zm+5GNZpA&7_K*NIN(O*f@32|d*wc^cp~e)roo8LAft0@t3&=kR#-Wcs*M6D zp+8E@{kT9NsBdCh3sA8pyBMSEuV_-qLD_du2C6aC!q5v+EI}}vaU@2U2{fH)!UG|DFnA=&7Uo8oFPwJ(%4{mPuV4A zvT-_&GhL7qD*;7O9(_eZP4aN)vT7mHm>K^C(&{2_4fgqEP{Up#u6bQEqW>hX9*+N~ zp5{=|K-NtuH33^TKQtxA!&d?-mbIGH?tQ2m%LhAN4>&2gw1($z(o>$GEB4eSB%gO{`^oMfX1lpxP?-LmG%m z_Yx-Dwec^+3?w*hq-eY1_A=>l8)0|kA`ge_ zJX3y$r}D&fOo*F|eEx5LU}M&^EmIWwj_iJwF#PasRac#;j>TOQN)_%N3m_ zAc&_mep9_qWT;RblsKAN7gc)zk6W@9X zS(%6M77+jefjyA{$@ra_C8LQMc;`4fUHjAgBCr-@;(ZW0wGTd|Je;lu02#^e zPxX_;FHMxvXX~8}dW~xnMaRJ2jh;B^H;D}8j!g}N#0ClX(z`vK6=4UEYmxBO2AhL7 zVN5x=FJXeV;WLyrMPp88PJb3Ic~8^fdlnQMa1P1qZnO@sdkX^8jTv6mv4FnAvg;b0 zgK?Psd^irZv2b#dGQBEWWL(4HUy?h}ewn}W~x zLHBgEp1w9_4MbsJX_0JIww1iatch5kjTv(tR{4ae*87sL1UHjPoW2VLP!qFIJ<+r) ziUT-LrQs*9B6Y9}bnn=RMX&-}Yo&s!F^aA58}cQSJY0vM;b)<7 zaGL)oT(HwEoae%PXvQpxkzqs9_F6X6=QN!}YqM{7g6^($LmXynZNv5IARG5#hSOC1 zexQg_vEJ`01*k5*=@*{MbfZ`AO_{Z^K#gh<7q{=t zSWU!SklFDE6P#4C2DD0!EF2CJ0vFgI%&(JcBxCD0?xUifEAvE_Kcpzl=D!!37bsw7 zMBXg1^#un?DT$dDR%GI$X}iec9@?7Z!VtPF=$n}!<8Dur5Qs;)dnk%709^GHV#k`% z-&xp$AyS(i$oV;$%l=LbhX2^=t0eKnGlU~ZajGa`yGOED5{iubl;a3Q9Fi1F8ZJb7 zYsFjIyDtkl#^i!I=x?T`|FSu>K|Tg5;sil8;4Q*U&S&+7{){O>eu(Iu{=FM27d~+P zvu#l=V3gEr=WE^>Qi1;=HujZ{N0dYylfCb0{m7GJ3V!%0A6Effs)L`yxs&8F%cT8e zZJdzlzO59!oXywY8hPKbVyQJ-m_Z2V4YR1Ty7X&EkRpuK-1T~;_QqBi0nXCsE$N%|Mx(hX15TIGn*0BNwP-t;jjex z5kzy%01U*&cB_&Kx=h3u^Hym~sK4r{M5EeT`$=JN+E+COGD=lKSV)lJs(o<5(6Qu? z`Dc6%3jSP)a6%1edc4m$|AUrQXIRTRV~XUC-nHAB)>Q!JAe%8c;&)2i)LHn}!CL!E zFkb=~)QMrW@A1(;Q2U4Q6o-N~YX(1O(Y>1NA89PFFB-60n zxW`1aKBmpQ9e(+Mv<%bd2kCJ#>hc(hbaF5?HC#5$IC`kLJSV7^SJ82(fOO=t%2Zg_XedvZ02`*UZapT!vUvk@b2MKoq*ml`HD{@eIx>+Yp5&al0$Nc?EoCO;hQ1Qtw0*-DA(U^=XObI_BFvQ*kh!A50hFin8M*t-`+M!0PG2F7O-RiWW+O9mN%U zz3or=C1~Tj!l5&PQXBqWNVuUW3l*zB8UUQZyTxAi zA{#+-v!*`pViyb|R@>Z}X!wzuMibw;9gm)j?k4m0tWpX}$Lu-1;^%5DEmZbiFNSH7 z3a>5<=so^gx81imYTvPfl+W$hqQCf|c7XO&tT^2#ZaiT#cpOPN7gp(}U9}y~q{m{N zH2!i}B*BEeI~l1lq6s*?~0=Pl0u=HC{ zy^fHbBa64sqO1+VSz|#Z72wJF*YD;MMy>zopoRuihzyb8dIOPSv=)6+Q_apc)sGi~ zuGF02Ax;G;%h!+gKXK2CB|fCYVRMs3sJX4egzMI#HoO9-HhmfNDSI=U)Xk_K--2(dFGxH05*S|3@0n=ITBbo3-Q-0sa>w= zX!4~8L7N~mfmb)dToEAXYiSH)YeqlrI2ATUNo%q+_^wdm#7QQ4>)OA)iI`oNZnER2 zGb=`#gB= z!z~WKz1I42^c_=Dl+amQYXb)+AY#qO%d68~-Ax#myn{^KDQSlfkxMCUPTS zG?P?E~6k)Be zJk(YS!~9l^&y&wqT*!sEvI9!$)lEYIFb=UpsYj?cHX$p_*BX8*^H>~m82|ZcI4z-q zTbNanw$>h{Vu-ltdPwm^O;2~v9{>E7Sl^s%&4~Ms9kxlsMfNEl-~-=jHy5n#QSc3s&(j-+57~UC?VDBH)31!WVK3?%=oiDkz{>7- znXD7y6_&;jH1BcqY+Wh4uzkIu_Eub=7JpE40a4hbez7jAeUdM^Lp#K#m?bY@=Qr|l z-W5C9EXnDrq*`U0p?n!PnnHl*ltZonY~fYk)L;Mh&t&iQa;-nchc_)DLxBIuCJz;g zU50LDnStLe9c4=HZlIp2;Z3KCcg)<&N>k=tr|TG1$~93KtTTP_Tv%$kIXco)xJ)J=Pitu1n@_9doO2-%8k_a%-t% zpU1gx5TR-?C{Iq~QBf@bRR|p_v%ZrLkm*z;eE+7GazvM)A~^M6Yu~V1AArQ4ePr1? zDtnmxb1Z-aSp7T5@*B4N@MXr5C8W6%fkIVVyi=uky^MHrqpoxjl5zOL zS_Eh{zZ=%VUs-UVNL`z4mNH_aFOz>buV{2X$6H1j@{L2Y$xn8O$xuS^`O2ZEHr`OM;7UOfW?$o2@3e63`eqGJ8X^ zoSLZF`9>LZRYtpzl}!BTcf4VazoF(DVA!&wn| zj9~G}s;?es^5pmeq1NM;sgcepcEiqkA&O1a`jWsep*g=MW^!FYTd4)kR>?gqbI&1p*5(#prG>*T)DMbI#f0rGo)O!A^jufEDaL{ zp_ob!t!oXJ0MA1`18kddDxsGf7wu9?+$Y_Kh9NO-YBr%dj;znm>Hu4Hy35u>DYjn0 zRuOZ02B^ow#L?6{6?@HzYJwK#wslR2AIv6hg9xvhh}%v$ciluYa6(oJn_1FHO(at! z#}@y0L=d{I%qMr}Dq$mrAu^{u3DQup2M+f6Q?VB^dp#=~&6OxQ{+gEN21(SYSaz(} zg`#a6s0%6rAuU!ylSzI+NKvXw9aTxJhiYmpa@xtVMkCSPM z4JLST`AZ+JbdS2COnfh2dfDUs-ZLbEBu{A;JFw{?ao03#gnpa=xr}3Xlre^sgaz8T zsK4x21vRx~)A`Xj;wKdkFAv)PqvA`6G=KuloFWS%eN_Q<062IuOA)-gl9Hf5&>Ml|*e16(COYKf_ zyCyMXmM0b2xMnHiB=wfKQe$LxbK~`xHjb1Brrk!yuuo36wNw$ZSm*L1@K%lm=IdV& zyI9f8Z=Z5~nHr5Th0l%1q9B;IH}s~1y9%Vd`}_-p!EaWHrFR4IyO5|JTu{;1IF;&7 z_F0v@tiX1;QGtL`hDu+X;1sj)GdvLz+~hcJ`Id{&+w&CNz}`Jsd?C*oP4LepCzYc7 zyQ|~}&x;zzxX?X`al4)(da1XH88(EbVN6KRQMZd=ZEA(H|ev--m*45>@MeH!n14!f!qk%I;d7<@&SkY_x-KOZ(DAt zrOsna@}?F6YLs-R{D3Db?Jw>B*?2G=NOrCjE*OYSnqY?3yiZ-#KO+jxx=n;G{mE7M zuS>(Fw8Y|$9aeaP_l^#B@+!5l0dh+*Va)995dP%)iNP0qL#k#{*T3Y zI8S7NX)iqkgMo=NHv4=%;%qRn0Hdj@$II)haQOyqgen}MGdVc_Fgpn)c`==F3wT}+ zE#%d@7dt4N$al>K+l^F+=1bA_D$=bpEOGHkx}V@4H#-fzef0144@uvCkzdrBhsH+Q za9z)z>Y)6V9##&|uPg}bW!aC}?c>bLw3M18uBY3}EN$9a?p{<2=L4lcedWbD} zwYh5win_DWit^<;LvYk)9?OC^zRSk)%CJai0xaO&*k(ZNoh-^nM_2lwtJEe=xRu0PTlpTC#}QDZIl% zkRry~e9y<|{mLsrN?d7F+&vJ(#vM=6Z-TtS0a1db+S*m2>Yo-BakU!DK{sv|XA>^g zFja90$|EU|#(UO!?{B%+yJvLh_A+(Yp91`;xIJFGk5!7QgQoo3qk;b0LMo(xQ^$8QcoCDm@9;gqwOP4Hp=Q~ac9zJc_1Mse7@%%`a zT@F@sW%T!NuplAsdT)Cq6jSqme0aI|>Q%K+^6b8wj0*^tI+7)`3Jrdf&|66ZTPD*} zK$4EgGj4BheppmgcRA0d-^`3r@qF|h3-CDqCv<8X9xnPvu4L;9M*}*;tKG%fPPHo! zr)Ak+2@t~{45nfFP7N1LF=n1t28V`?wH#$`KmOwqLuDABQHPoo>MxXG zvq8wMS%)*`(m5H6x9TC~wP#HW4^7Jld0AUuv^MUH-(YIku8QGr>4=#asStvvWorC? zUYCB7FaCkR%rlkkG#@z|j#`T7;2Li8&m~l_)uJdWLs4Ft!|p$PtGiE5P`%1km15ZA z;kBhmGR4_^d-_p*8k)u|C98jO(RgvAp9=LkSq_*yvSILNofzOtdj-Hv*p9?f8W zhDh0@s9n&9J3akk5n77bcC9}!J+^)B#s77f_w`Rd_$>eymrPB(edm-ajNnirUZkV- z(;tK3GB&P!@x?jb7N>lIlm$aCACTXrR=)Cvu@|B$e^~Bov3Ct&#hzR_6a`%V@^ z+npH1>gcFc_FbuD?5hAh%X%UiGz5Ceq8ErbUBmqgwKX#3JP)JG~ARM_V74ya-%czu82fk%CB9)5Q=EARgTL&5$O*n6natIs(Y4JIam`2c5) z492O7L`VNEjFXT2kq*bGP1Qw?{`{GB z@Y%^N`OR_mHCTmNt|m%hf}Q!Mg-lR9lqM1?lZokpBah`j89jP_P3YZROOt0+iZGyx zfGq8d_iUs-t{xX9$DoL(fmJOqJW*<+iIqc;W|bwUQs2UII0?&~xcGEx)!h<&4aDJG7egHCu?Qf5Z3*tQswzKcqDM_P&csiabgo z`IwsBTJsIFT#Na^K%w*(HX-T=>(ua)h!DdT{hjrbZ$P#LV+wAZ)m*`pT|tnf%)4o^ z;GvOJc#+UNHi_aFY9Y4{2vA{Evq|$TEY;(-<^d@Ge!Gi!#1*7HY zMg=pC8ld=rGTht$1i0U0#p*Nu+q-ojgCEH@0rhQp{t1mM{Gl_@|NH*WZ0r+5aeJkj z<)!J%#oC;v%OCV}ehq+d{3)}~9|1pxcPRsvf&Jc=% zUsNvaief~iZqQ%QMd3hlB+_HpMamh7J&MR2oRl~`0Wa7b@P9QKbyt-$*WELALy(_^ zkBV_F1JQ8D>9z15?&|K4mYbZ7=bNY=EN_LQ2{DF{N z%-d=NAE|nvjskVH2nB<}n{-`YFcZ4V-Fu>b z4%)N=u7Q2gD^YCu6Vjy1o#u=Vaghfz0{1-QvH@YbPUWCy7W z8!UPtyc`a|2d+kC49@qz{^ws{=L_$A@`d1)FbqFJ9y*xitT?*NNg9U!j|K3ByjI#h z-@3ov>Az)Dh3}l#7;tRAVF-(>$|BlyY-4_Q{hb4B%PN}qA>nS0g$D*@bUG0}thsYy z?~s}j05@yb#;JN&Ar6f9`<@~gO^D4C+G>NnL*qWOT=uDDFDsEkAnF0)wafNFU5_)) zy;UK)E|;=xrK<u!t`Ep9kxP0USW2bmmrXT!W7_tH;T#+@<%kU&I2mc>XbRX7oAIX>R%;~ ztyO9rsZVY7bfCLG(Ss+BMGs%8@FelV|Jqm} zaefQ1GP+jD7q3-RUtXsya#y zq@vVh9Mk46Q@C$5bOW*aQD4;RIrPYD^mK>UoFCi%7GzRRV|&%>kAew1587dZnlR0U zO~B&pEEQqoQ!l>JBlx{_n=yRz@Ac<7DIJ+tjY0OFjonY?YEtgPz|<3(j?tr7%Hg1i zPsjC$Ww7u{Yso49l>M9qvOMY660kDBDvw(0GU4&Lv$59wVaOvKq%sp9Il9zu`OcYt zfk9r&t28yfVC`1+FBrf;rZS$z=sOCjtlXHp4u~>qXp{Z|UJ5MRlmlv#J&cMg0apz~souS^GFh{!Vgt7v*+5EEVLuF2WY3|9bt=(C>XY z8&bVWxV09hp>Ok5O+kk%mC$i* z|Ier;cq{mBb($de^+8hcf7l)k?VQK`Z=(q+8-+dzZVqw#=3zS;`R&u21jFurBA$Ft zY>rDe2pLTf$G`o95f|94^s+Ar;>o& z5GKXwkW#ncc#r}PrRV?(iz5Yz5H zr${enek8p#jlhr=_A6&`3hA72LN`U=hY#}Qs&p7^>*a>=o2>wJ1rA&6%c223Lde9B zG^QQrsBdO`Jz{=`jr8y;Ub%8zb>jlkF-2{2Q?rF)%DQw^8^MolpdISRmfPo*>G1HicQD$2#>rde_ z$?oLzNIySDV6C6eH>$rRu1+0i_P;Is%^sO0)BKqfbpeA)u3s zBS;0AtCDX>`}_DZ#?S6&r)kmCXj#b|wd@2)ZCw);w71&3L!r;9?$~3k88b$*>)S00zvqZ$g*3EHZMMn7@w_+hX&t#+7IJ*=ghqkB@{hbi#X%g38WJ zIU##b$!G=w!mTYWRdr@!9v=L27PZs?M9!AWiqWfJ5t|?lY^>=H;%bqz6IzCD) z&5f)5n`Q=zrSWkA{PwjYb_pHRjE`q3$F2_5e1byonbQ7{LaSdbpuj6_xs6P^WxC(wtUFClZHCd3VL=*Tazc{Pb#!{K2#Z*Fv|)U!%l?QgH@ z>zg(&e>Fr(I^XUoYqOAjKm8Gx0mI5@#mCYsIMOm;wT_qGSHHY!RM=Kz^F5Wckz1Ya z>b_Y|>KFMg*S{a%nD-8Zi`tV+Lnd*_a1pq^SZ0=GpWSFh#e7-GzF92+z@#O!U%Z_5 zg!QyhD6(dxQ`-rpdR+JNBbuWTi#ukLA0kw!bCt{bTuw(dP8**gUcME=K7Zb|R+Dew z>-U?8pFDAM<<#9f!wJOE$jpYB`^M0oy^Z zLl3euEJgviLTqO7tyV5>_|_d2c$yt&H?$B2_OzfaV7e*swW5_nHuoN7Y3g-G z@MbRN0cAIn^&j8~h009W8#`Z@X6gRr`k1q~W`t@OZR?jwwfptF zo2Lw?BaWJICS#Bj@M6PSPEfnAE$>u&GqV+5Exoe#^vb;H_tEiMYpM!6#}Wb+9blHD zi4}vQrYJs&1$>7IbA0Rivh?k}z9hRS#_?>Hjou z*1)S7A&-FPHiXWG>oP|SG(@j=M&orn5Cnmwu&~IYVP76{^75R1UezLdE(--eJU{R8 z!NJ4lIcP9MdpmzXzN!Yw&`$qiwXGujhnw-?W`)dVzqo1pHTzpoakBqe{V_Y=&m1%8 z@1Hq~Zc(Pd+7mGEZ ziUaHFXP+TIItd>?l*>oW=kZhx-zW`-J58{CJWz!>T1 zp(j1xq}ev;_M`)VX9Qpzaesk-)VcElO4$3;+1zHSw^nBk#rz0N^4*5j8}mb>@cZW% zmWR!xaM8AD?cj!RcDUlC3*bl1%3JG z<>+XVsQ+)X?9}u3+bbIej>qk;St`Q4F((oUeBuW`{~nR@XKgyww*sF+?ps;(ZdVs{52qlW%YD{5D_uk-k*uMWB@Y zHTlxT6HOQ}I`qkI4y`c9^CmqFKYLYQls>;uOOsYPyqBHX4t9(l;+T2<*(cGa3%wf8 zdt1Uu4o>P|@Y0@-^baR2=noocIwe@3X3-5yAB|UzBSaIkT}vsSn>>DU_ieZ+-Bmv` zE)jX**IF2SPP4Zu7Vq-m$WF1Pq@q~*ki)U4Uw>NA;Ofoa$~@RVY~tuUYTt1)jQjTA zgmP<6oh3>EyX5!j5U*kS%`>b=rUV%hZ?blnr^5&hjPV~|omKMD`}&IPX}E8#)pZT7 zMkZ#Mt)sG7q@=Wq*|q#EZ;OTRnv2=5o6gzfK1g--G2?gTXS+i_3Z#uK9qZ40EuClf zGCnqB?+w6lto2?L@R`41HRv`u&%U4RbkM!#Du&q`ba;2qcV}t1wbgmiBInT;fhzrd z&V$UtNi{oyXz91_gI!6!p{LIi7-oWu2yHG4cTlHA7)#% zxjI7o{KuRT7R^6il?;W2VbQf^*gE@m6iuKyZN>y0s$6Hj)+5Rhi zL9FpDuDr#7@$y2DeXsKNIoWlx^PN!z0`QK5u*MHjgDm#FswYcK=r7s(Pdu*gjBkOfUn?q6BS8{y)9xSLe!ngG@`BD5F*tb2 z1<6-KCmW4?r3S}uR<#$4f?>-~=_hTSy`=`t$#q^HqQUa!+hG{l5aVtB zplQsQ1C0prjprw~j5AAj;a1>>`AXd#Hl$hN3yWZ(VjDmjo>c)3j0TzCp0~&$%9Q1A zr#qSrgT}n=j~CG)jj~fq>ulQlO2);*$Nd$DeF*oU7UDwog%aL5y@0?Cc60SJsyX6_M+Q>~vDRuoGFZtsgY-lwPL0=sV zd^;>XY&7*fd0{2zA;7N$2*}?up@1u9+1c@2?i{v82yf(AGXN?$y85(() z3uW2uS3sR~8Axuwug>zdK4V3liK?3<+8s^3=Um+cQaB}EmZK}x?i*7@Dq1=-cgvn* z&R&h@g%e>tThHQo^D7i-yK1EfLa?{HU7;v0I#;IkWTZEw2O6jS_NI_d<%cj41r~|C z@U;bo)W_d_Vo69$*wxVElb!`jP4_>1W$#+>$m(5!M}M7`5Wl#2NZ+bc_Lt_MXLr3TO{r0P2bR`A1 z$;m3AK8LSXeN6pZ9|WwTJMUArh}dvLzA3aY$tts(JZZ{U^~OAC8b#;jREQbcu=TPTmb-|W%kk4298FBDX>W6a;nbCQoX$1P$vr26~mPL$9eOl+* z?fYg6FFpd1hBwblhzxS-@$u(GT>MHPn`ve8`RUJFMVhbGs_og~CiqPwrjj;wb>Uc~ zP58vr{axlo$B_3vTDDU?!pL79@J2&l%CDI87DXw_<+bPQbh*HQ>YbzhTaQ@ILk_at zgd$2`wcCw@P2ri?1%|=Nla4hUBo;~xL|eo*ANGUxqb3&HnXyZWunB@hmL0!$^+(YO zts)QX$yS?6#Aqng<#%|Jge!M9)iZtcbTq~qFhh9Q+OlEqSD1%#9qrZmVd7&CP0i^M zTffTB$0T=_Rl+V4fhUJ28>Zf~cSE%si~rkiX^Rb6Kt23*$iZoJCXa0s!L(3fHGTNo zsx$S}_~fu_Nv}3p@@L{HF6#oCoh!U{>*H;o<=Ft&l~NO&H>i591V^DlU)dyN@uo?1 zr?3g8pN2X}1^O7ZqLjr56pj{^KgQ(PIOPUpvt{1fa~h|#o$G^dSC_Up8o6;@{~f`@WtGC z0Zb*0cHv)&!)XDI$e-m#3|8+A!-n<{704MR;{za1@7+8vP26W^-V1S9TDA^c_27?V ztGz|N5lTmVh`Z~pn(*tWHopbS85=m@-3&!PUiM$+s`q4|D&YYnWH`XnWhxaHnr@(3SydAhx0QuoRQ@V|c);)lreD z-Se2_QQ_@Y^8A*QL@lmZs1%;**w}!l9wscIy_{zv5-k2* ziA|*^FZLr=2ADV^9`oY>UzgWMn*hy2PWfJ5^;HaxHjKT& zT{~qMY^s1vJw~OCP|6N+rv(`!HGZpN$7UXO@ugdxADZL~y8uXKmPLTe%|J>#mrKhw z31{=9jI6-te>6vso+fU*2{+Lgo#QBN8=a$*5^txSpdC3DgcKLYpb&+-j0yxSEtTL^ zvHAayci?Gdi;3YszVaFTIqWEEN{|3j*==<;(!};32o1_-;@0|V5SQ&Y zDw9eZa7Nrd0a}T8I9*iSYHm@5*%HZU)#>{2ZRNC}Mhhxqa_H&zy-)S_U#){e0}KGC zRHqt7_~rEIJSv$%e$?kY%;!eYC`Pl9SaZYl)zs(Vh)a)eBcfv4e64{IUTRd;M88|i z&TFO0uSAQQ&h&ttjXe@_WqunoY2dJe6d0$RAUjnIn=@aGnLm$&sQ{Jvf~6O_N5V1E z9-gyXl9UGF%{yFoQQ<92p9Cm~ns@1M z_;E2nZBe5z44!HEQ9c25B?%zP|3?tPd^k@`eg)~=n(Sh3@XoVbBRrhS;JXZ@9#Bpf zvP^;p?)qhh!Z21jC~VrF0jzyxfznTY{cDKEgS;XV!3N)#5T7@i0W{7T-`+qjY!52{ zKij%3fNC`9X4lg6`7Zb&9|yjRHg zyPmuFPvpR!*_RsFZ2%jY3z(*6R5Vn!-z;Y(;ypLjDu_iRuh^{t`Ed~foU$1(!-c4z zy4w@GYHK(&A)J|tf7OOdzduH%cB|iFpc(6>`!^_48`X<8RddNiv$LnD;G&#zq1bs( zH0N7tvTl9gZM^3VcojuM;UBl_wT`o<(RhTN9spp6SJ5NCecpN9&Idrb`@;!5f5}%`iZ~JZ zI9K1dh3(BQf5@(109F)0+NaH)4R2e%UpIHTtAC!Ue(&zL@%ka+*OMqM=)tR#v3vhv z5!*|OW3g+j4LP457J>d3?FG^U)vhWH5`pAN>Wn8`C*hwoBAkfz$pO=bUoQX9iQv291>f9v`%Aa@s33=D=^ zl#xW@ki5>5-1o0!yF0DiZVm5%d4A7Fp45vQl*U2NUtoJq<0s<4W zHSH{>8U%c8(4~xXB^$?e0<~Qo6@0(B@+w({FEh;68UZH7y7Un}AvK(45!mr4l?Xo- znQn$sz-ufApAcar5A%{GLPpF+f@CM47w&e$JbfZgOK8KQyax!1GBL})G}-on#!pdl z;S7%S;Ku->N>PZd&0M~5|9ipaw4q zDgq~t5WnHutS#qc-3H$&iudm9V_ge|X?iFoUS5w_AI+`5v0Ihjb_2YnP0JF`Nz35X z_8&5!`g}-#npiK9jzp_n)o=Dc$sigmfv9JYpTJMUzGo zS_EVtSxP#X(R8ReNPm648$fVM)-3%$79f)d4tlZyoKxtCyZh`8-SluUkW0k~5^G`2 z5((|-5XSv}Dy~)uU6d9=bNZ50V`4a+Fkc9yV+ahxfGJ*zOY!N6LSk`0f?w|cP}8$} z&0b*f=YA5A%G83%2iGkp#719h)($kbZYYCKDR&=lDnM(ANikB_pCujFfUI}3Zxuky zZEyKM$sXQ^kY=0w$>YyZEDoNkyKW^{OaPT+V(qODOyaAqIQdDkS-33oFY26!K-T{z zE>tZd73ejn+18ZlI}jNj?wy>YCVB1AO7ceGhyAKPieNRgaM1(&o=Z$Qk6n*{ zF_D|dSma}R0ugKX)=Lx1YoTaMeDpk3sQ6PVgSEHLnNDG&+7lkz3Nc=;ca%~|ckzbt zfj+^MkzrBgf1?X%*7jF^pQoL&q0w>C?{gn9^bJMH$UJYM;o$j_D3;IB0S$R|9Y){= z0vEgzNPYEwRPi&tL*=qhl4kxBW{xt zK@adU(f%1c80Iykuwlg^q&+zYw_(=&3At{FiY_INjI5m!bImH>9QqgXccsI0tMr*8 z+|$TO30(skx;whtnDL=sVC^ImI{8WFA-C%lb&s>;TxfUrf;G=Bv!5l*p z$COaIA##}&Hr#>!d|qzl75^40Adziz&Ci6!(4GT#mXl5f)w!4r`nMK)7%JLYEKXnQ zl{vcF!fryT@ORf}Ds~RI#zcCS&|L_+kF5MW{tY0PqwxoTS#vxS+V9;0|RkP<$_4YEA!y7fYF`9nA5@*;<# z;N+lfG$plgP8N6pk&>;<6joi)>}?)-@&^(Yw|IXfw;|qy*k2k_A0nig#>cmIlp3o# z39l#lX4c~SX63<87?E*=@*BgHhcsG>=s+&IerEkIm z!9p{XU+Le<34_f@h;bRXM|uE1L&t7`VM7`7a^t5;=R$XaVRp);WMcXn%2l-{+hfA? z0a^X}fW0)&hr->38k6Kj<_w&s0jf)Rb9Vk!MQ-#Fp_HJP4ex(7F3ZRTZD$t5t{cfW zOF#xlczpCs(AMU8vpmh|nlgcMpUd0bFgn+*LYUlI{^C#T;~z#k=cGi7_KXAcU4Q=cJ+B_%t)eKo|yRWJe$8|dR{EMC-`;FH8ab^ z^hMFiMceArXAWbfG&1HcvmB4zue{bGw%VAarXdN> z)&$>N|J(_>vf%F}GP>99W2X&-R*A6V075(8@1}*kn{haC(-(nhUVa)5+PG3BlOP%j zFPTX9KoPn-(9y3$!xWz3kZ9uZtu81tahTwFd2Uw|O$sXUKujWBikx4u+QGCUIE8Yx zd7IMiXf>n5+J^@s65~OCwvkX!6Jve91qvp$k|RUxo2ED-(kj>uo#V9R*}e#{uUV@Q zX27l>IQ6{RkWNu@>P6~|B*bNtL~s1F7u0tp60hZlw)(s~yJ#xH%9Qu>D?K=KU;`Pt zbI4*sHoEI{C&O$!oAeZyRDUA3e|k9YPTr1DaEgzQbMlVtMdN^gQd1mrlI#=c>}EKX zkLyl;N9?4SR~A3n?-Y*tv!ju6EQx<{)%;Dt7bvoiq|88=^D$zO&?uxzM1)N00}ke{ zq&t4Y%K6BfO9=dF>Cagl%tDw|61O1rl)XH8O*w??Tf1uuXdWSM+ZWdRTG3u`Ix zzdB9(#5FjW<}xjNo_%?&%2#k2&1P;!?-t<7n<9ncwU%YTUD@rO&`#BVQUzo!fGhd7 zf%S*C0g7}oQ(V>U#VQ#pcy73(jN{|W%?@VqiU(%K#b`;Ydz)tkaZwt=&+_NXTqgUq z)>b8sKNXfR7a1pgTYaeahy9~o`F>mH4YwPke*_&-b?4T?9@pEZ6G+K;LtqJ?D$C(7Nhg6aM zLzWZtqxcsM%PDLUl4-(A=Qj!k9yEU!LtY|(yAcvL#~1Y^OL!<#;`ux9?(bdeJb&pQ z`^s-5a)px6A6te7y@Hr(Afx;3^FT{P+sOy5#@ zQ8&V1`JaRm&KfRo@&~fAJmeNS%02&5b|DCPMNsCMW@NIXYuM$CS0*jb6}La(Ij*=@ zv$?&i9p&FVqlSS@GZ-ziFWRLdlLI^_pN`t_n+ zmTuNl=l6bl<#B1&c?DT*EoW`o4+b&q@`5P~ABJ0TVij;*T9iF8=j{CYzIXEI^*?XA z)KodT_6PJjJDT~!018n|8dOp2uN{>EqUt{9?Kfi&8_f?{>G4!W1BFaYGrVE5t{%X= zqrYS3duoiM%Ff~(V5TW*(Wk5;f*CXay8E~|pZQ5nu}{_WMiS?K^dz&Uf&v-x*hZpK zMKyes+uHl~c$XQ;rd@cY-7ics$&6xV&o|g2NDQ-b6P=Sx)_0bFmZv`^!GlcoXT&UCUL|*F zo6}N`#=R8&>fWm2`bC7*TiP}BUv-x_{S%V@3zo)kxslumC&6lZeN^aUO<%aCEP=(@ zpw4n(+TDA7Ymtysx85|pF=vK{was~_@Lm9tNeY{l%5h1JfYMjJDNg?gGm42M3zJb_ zr}?+ZYoDk>uN68_FNRtQJ@4EGR$Akgmb{FEd}~WF~Hu zS)9wEbKNT|yZc1+`ZU#=?RH1zrpuT9PF*->2Q3 z{^9;j~Y(#8ui>87LJ?D=viMD(q4gQLLQpnj8 z!;bY|bm=hnI|KZUvd$2!SsF6Nzdh9Ozh&d`XPUlFt{?a-&)uQr7Zzavj#jG!=`Ose zFfC7&kwmym8l4fYK1$B;PUC&o02U%;1Vw}NqcSQvY$TFCZ=>RhzkO`=O_rd`v_TE%0W6fSz&y~zzlSdl8Ez`q%31ue5G z<+49~kcy2UD2=Kd;Ai*(#(kV69SknG{H}vd>~#>TL2O^^j@y8geiV+s*SBS7L+N6= zCtIUJG~?Yrp3GmdSbsZXL!N^BTB;K|Ey5p#8i@WfGING4$#6B}s{WzhMar-CZvq`L z@U`7FsOTt@qj@pE)j>IytP&~r&O+`^w-bwE+ojAK?jp-NWZ0;;7V(399f#_`-TJw* zmq#<{dT+v#R!Tt813uhX;N%5Nr2{ou%J@kIU; zf|@F2{)jS9tpvw=GI^o@CQaUP(Zm?f7FsL2FuyADo!yn0hn8vuk-lFx$v9R9hS3r2 zdcA#J7@RTZ*5+0$4PLQikADfkM|KCrwO@$`9=V9LcVg0)*3f>l7s4ou@~l%17b7I% z*{JntDKY{gQ3SCT4YZFNu;R=7&$ zl(_2NT9?Gh<}GDaF{u_HiOD-gqvQj{;_B)TH^Gk4CE~;HZz;=y7xfmqj?>>)g#%bC zT%}Vu?~2JcGefQ6hsB0$;BuW=F}HM)^sI^c5b?ExlpgnC_diW8M7omR1()fB*wveV z4XY`DD|cHtW0jW@^#~Yp2-40*y#FZem}+Zt;YZK@ zhPuqky^<*HPTqPb=gl%_Ehj-rR@d(hb=}h=3H?bDwj?NtvF)P;C&AiQICEtG#eYr; zY5kqzVcHCI9LvNywnQQBczYS6FneOk8I!W$X;s&t;E3^JJ;1 zrVe9Tn2bff1C0?f=NP&0)A9V)8BZ1m^pTAKc+r6~$N3usEw;UaP>|}=A&)T&q4rJLAW$T*{-X)2e(D(1| z=S#+$#9OAvurz$TRgO3cfuWeuNE{%FzNy-@a)(;|~ajoRR z*qLQK%fs?9(utPHI@&ejHc_m>a^B1GGx;(&nz;OnzKZ!i+x!Hza9lm*Z*2=Oq57%)!10iz~(h4>`0USW>>Ml_0zC0y-tz;g_A2RY8A zndriycRJQMJ^kaqMuxJFU#tP{(}*5{t_U-M8~R5Y@&X?*hdu-8_BCn9+u!SmX_?el0+ z0iSM|vhaRr`g%M~LJb4zB0XWU80)pOp7kaQ+~ZUep>4KxJk!xFjJKQV1h(R)OsyJr zLOi&2mOWsaAyV4ml<8adL;x-_DR`M8P@?MI^PAi2(!Aefx{bJTxVW$byAUz~Ju_Px zQ&l%zkgJCg)3qv&a!S%C2@W3XXI``&=d>JZ(&kii@|0M|2nmoN;+vYCnZX;9j`Cyh~Ai9)a+fx*R(#y2cFC0jo}VUgw?; zK-tO!eUq!UT^4Y>gV;QUw>fVOEyU%pyPxD_F=6|Y)@ZU1{uz)am+I!mKn;>6G;$Du z(V{unnm8KB)sRtr^5OT?Nf(9J=%^Q~^jzt|Nn*yN2$;A!a-4FGw7 zG^{2SlP+S0@@``y9Z~Y(TyYDKs%0>)?gSs1g>@D~CoAekiT3d6NBYcK;}G+;2}z&! z>(RAvlqRBHu=&G+2F}NXv@@in=*D+$yWXH^pNoAJcG9N(xwt3B#teViC|twYXCB(Y z#5#|?rhyi?mE)!?sD8@th28EF#ZQkfGhDejD3ZD0{&~b*AA6WKd*qoH8M*LneGxs? zrR`?D;a5Vio3V&P8b6nzZW)L=BInNUq$Z*U5pxaCP8G;gs1t{0z`EKXvIn+ykxyrNI%c}nln<3x|BnxH@zF&2|e^gP8_x3Y) zWKn~AJlG<$vE9!LsKK3s7g1deWvKlq5TSCl)nK((L=Q)*b%5?`;oj-mA<12cILdK3 z2JxCMy>k}-#(G_`Eu(d-f}hb0g`V_hcWFUxk7m$a9^q+LswWfbkS;_9xwB=1lIWz8 zgc&c!WKmMEk~qB~uX!-+gjw9|h!DpX;}}zQA!H+8E>R}_LQk-X&+LeNz?0{AYK|{l zIvt@_nR`q^3oAce+_03a)v;FTcdGx~qh?>fL}W-~rLkdt_5M_dhnZ0-8mmFsV1J@FHPd_VkH+a$I%?}H8kYpj*2}fq>$$Q@i<#BPuAGz5f z{%KTcyXJWKBY3>BCFS?l;+p90cKQ}GFh0&N?Y8!hYo|AonFH^ixl9S{fv}xWArp7F zdLA9`mm8S?PLF8iFWoM7-i!R)LHhGqQiG33dY@LKq)-~f@XvgY-iqBnT=3`)#$?{P zwN-tXOgc6$T0siY)cv za9B6Nu{5SZiykCQ8sZOtcCre00OxkDgcbeW#Ol!}Ec;O=!8r@=A~CESXSF5>Npb2) zBxDhmQ*qL1k6;^!wY@jkqYw86kVB5DEu^Zx1js=?Lzm|B32!lCc-USusrI7xRA5lDQfJ%LnNZN77hZbrk?H zl}$w(MH7s0Ug8u?$ab~MVEy(hyb1j#aHc@R_CdM!>3S{7qU~JH-@kD0>zywseFGJf zQu92I8lBo$TmBNNLXmrL;uxJJ=kaWh5hQ^@CBRf8AkC_P9vVlTy)8>mr;}HiMGxG; zBs5pL~qC*Q}diJ*wDa?0K!6GO=fUBHk7v0Ie{2uK%XQns&lU!qk(?Ojzb& zV%IBAB^`0C*?%;4?^UW6XI(Wad4e$ycD}Jd>;r>d*mx`3S%U$c)qMVkhZTf z=+w3H%7-~BemO*V=p8tDY7JD-jc>IGCZ#lsN=VaFkW7qv+z z?x~Yt=7`^sr~#RjP*Dfn{OZxHohLgUeTvCamGzzcP$FF}Cl$ta_$A3*bX5o@XWBoW zQ%+Ep8up92#_W?``MZa>-;Gc7Npv^z(*)a0px(_bT#-o>j|!tDsrWHuOVp1BNyY?Z zZNE0PRIep!D%baV6|AmnSuIQ2=F}t&He)1paSx#Ma;g8}bZ$=LYoc);GEDtA6OlN| zKfnB`Mv*q;`xOi;cY$XH^?G~Y&B1z{uneXY3Q2qC!!JCyvD__Lcb;8sNk3b`HaLJVAoH9SV2wGW$D!xF6KNP?hpW(cFb^P#$Sy^htJlx#y6!C4^V$zAp3tbon=&8 zUAKjc6nAKG4_1o1yF0W{THM_!5G1%e6nCdBUfkW?iUw`)5Zt+WzcKF5@v1pa3!r&G1+v=Q7{*4_p~AUE~59d3LU56b1{c zXOYKUJ~sVhi~(3@NySt|-cyJKOm?vr*Pyw8fMsn8w6)y--L~B6|IRGLc0aa*`X;lR z8Gg$XR!PAl3STb3Pb?o;S*3#oHIZA$+JfW*F$uye^E)=f+N!mbsF=v-i--o21JSQA zm+wU5H$*6ly>AT~@RTKlbU$o>Z7Lsp;O{ib6ljhcyeX>gO~i`&=pXH!V3%P|ZXjWHXIxW_gx13)l{L%nXel z)ok?<>KLSo<1*phKF(racOaK;6W1O37vD#eFPg68F^?%K%uOKiOOzR1j^nm*$IY2s zm`OhIcN}2?RAyz6d8wR^(eA#5saMt6iooaUYq^tH6erm>z%Sdhqrsg-K);lF-nVL6 zkWKh@VUu57-x6DTx-1rutN3!xv{4}UmCkduQ89AyH#36FsS0g71l?6RE+dmj`30mq z;+j_;U$$aKXsFgcRHpVvRw#bV4NJPVX8%0x4Md~`#r&Ct&$ZE2vWqP>sX*(aRyq2E zO<3br$ysBwM0e%FT-TB)b9lzwZ&~=tL;L2I>=#{thMY%%n`2$UqZ%?Xt`M#DBY%(U zkW`6<>`3s2v=Y{H;}C^dxc;fO>IaZ<_8gRoBYZo&)_GS}rV_iSamv;MtICwh zWX`iEV=UWi`*BP!@78pa5T%2uWGT^!gg3l z*x%2oN7qzIdF##_ox#p)$Fjm7jEdiJ`wfUPpo8yUg9T+eGPs2{lf;SAFCHYu<`^)<~NO{kI7kvUqrSY-}B63=NUOBNPe*4(dEr zTD=1m6u(C#-TYKF@#7X!8Sf{t zUjYx1&X2yF#tI!L!jtl} zuZKc1{?2wqP*xQ}eGLVGaN_r{uy~WQx&)O@RtL8S~=1~#^2AQoCK4T{^mRA zn+rUQ`@4Pvnj3lBEVNyyLuw@1e~X#S93>Is8L19dN&T z+m!&Ihm}N#fpnB3$hDG>U*yLHZ~2VTT!#I5t!6J1sGin2b((YYUJj!QQ$Tb%Lu>L2 zVW;aN+;KI(L>NSKjb2l43R4wro2WESCl!>Ih8Ps~Zz~Jen88dp3P4>qaZ{ow0aW^| z48QaeB8aInAw|_hY8^$(V(%EkwqPFT3LK9h`K8bGHGx1K0?ay}+W4h7JGh(BOf6L> zKAHW2-Jsv=PXg|)UL)}gA6K+q^GQFF&o@yr3_su~qrn8!LF1L?D0@}YNGo12cZr>e z;h``72_2u-cv>xR>6A4}z*25%{V<7HC4edaZ%RVQ{-F_Rtq+GK21~huPb|~TznI;a zntH=C3~LP!kyx*(#>nlv`w%(7KAXWef{VZ3fs(AUId?xf;s&%V#$;3|igpQT98qD- z>Nw~LBXb6)*;5gKV=oTL8-0Cwq|;~pVs}0&s^GE62=o7j^m22Va>bpdlcNmuC|RS+ z-@9P{JKVZGy3tG^!5wC^qV1SBBTS@p#@orp4;pRrCNcBaku+_X+*aN#AkkSdnx_7k zYQP_4Fx|@9K-VMISR!15ca9xY%g|G$%Sx90Rnr)ZTs#{o>kqF0l{K}raN>sA!)ly0 zQC{reMLLzvwX6tYd}5=!XXj3%3OuTI|FFf`KFym6m`&m+2HTUq-n&*`@lGZx{?SRp zCSFj&J3ftV1(_+qs_cB|o>LXL#>wn@LAg;r-uE>80~(V*z>0tOVsT;k5knSB;hKVYwMcyF4)Wg~WCGpYg$13Gp9stCe8XH!Ub|{Os1zkglO{~sgqVQJi#rct zN|OOoYq+Nq?+9Yh9Ww7S@QD_{R(X+jRXxMb1bUq zJ7iKk>CgiT3#q}nUZblAL8n4HypqzuP8_m78M4)I1rW_|is#A!&^o{u-5zp}b1?aZ zXC^8F;{(iX#b|c*`esW+-E(QTGyFJt;FRP0CWnP4Gj&cgX_9+oHF@*5$He5+P;bLn zv53Boms-ORK@6@eMH|^{LG6F`Q^#30zEf}2JW}zJpKc{dh-66T7suFl_ivLGtf5!i zYuSdur1WL+4x?9D1N$xe8IRjm@YTFQe>_@#yKio6`;b*@y~5mmvmK_pen>Vr%a-YV zCRqqRUc9!ENlV&&8D10929Zrrul-;O-@Rtk*ZYaP)^E{-{ykN=q#wnSclhwMDk|Ao zh(Z0}R4t@C!06al?A%pkdRnT8@vy)p$c@>R%iGPF>gGq84+GS;UfLoh<1K0|3&Q8=)cO~d}T#{VZ9>` z^i!D9t~pxJqhDb{be1620v>ed)GE=9;7F1!&7KcVW*Q$u$B^j zFkI*kb6Gu+3s76*47fB8@qX9s-9qv>KIb=fajJ6s*R%JOiq-mzQ>y~IJx2TdF7GLj zVHisRG3RTTs^;C{K7W#%_jAyNk6AzQRk|^26jFIry;30n4LvYZsNkat$EKHR!Jo}M z2K!&VM_vhP`tXM1(97#*8*-BLw<3fhR39{mC*inN;<0|3iBA*WyW;tl^}h*i?8UJn zKs&4Qfht>eI+iQ_aW;>*1QTC7_8ZIhH1zDVRqIhqA1OAgPA;#|G@^^cy*_fMoRkQN zWv_6AQRFj?h>7uhntGH8Y;gMSEEyBKTVvnGuuYuu873k_@QHFe2K-P#}e+=L!VZxG; zpL+xOEIz)shelrF7C-~Z=Wj0IL^_v8T^ER_cJ?Z6v;1OF z2v7)qirhI5e&Kxm*P*r>EY{0Ocp)cM&Y(rbHu_-3mqeGKFqbf^xO!j{RRB;Lbrz)e z<@en<@iecQ56b}`cB<)P&`oqu4*%lzPvgXogSa->m>IXMMJx<_>G1ob214s?TDVmDH+L zA>h&@3D&;!XzNEt!V{$jN6(Ks{Ba*=5^WJxiPA}b-NxK~4@j43 z8WOa9ALsb8j#(1XjogAHGF7z@@~WXDP@bZ$aps|bF)eNkIuW7wKYWxb zMwV0p@+6s<4ediXp&0v`Hj$-LNBRK~WAn=v6&4`VZ*Z7GZtuZH_W2N|y+Z7?06&i7 zq`!7TjHLcMj-#T`pFpqs)Oh&#QJ~v&Q25`!UsToAwjllX!d;678!&2)jgiB3~lSf9TsYGWEy3Vaj}5S^UoRUi0TpX}?_2eKQs6 zT4?rPp2p6WS#H2~+7-J+_ZKMVgXBU)Hiy;kau1Y!8XE&zpSos%+SNZ&X&?vC9~JT2 zb!?oJNfol7ijsC{l34192^t?dHt@=oVm>4mg$CBMAR9i=vPrTR^2+9*NAM}%_!Lix zi@;c+*@|vT?q>)Xi;U;qzg&-JKaQEN%ovpg{~zJq&R3?XyauQ(9{ zx>2;;>Om`M{p@S z6PdV6hi;Xd+uQi^owl9@0&8GHWjGqtc|rT9a@SHx25trqMm@Pbm6%a`XdN@b>eIe| zIW+?M&vSCf|0|QCZEF>;9GjCiC+&@Q{5*5$F{g3bO7JgjPt9b`G~4n0g|F3=dNK#z zK7VHa$v`W%P8w;f+P5%XYjBzM$0$b;Au5JT(#N->t}-3EimG_;p-G1^zDK<5A+cXq~-Y3&3dxbevNUnOuf(i_$cYQ+CgYyp3LFS;!o=&q$m-@9g=#h~+m z84)d8>?Wcq+~T`4UEHq^Ll)}$R#|x#6B50Xe4Y!LnlU9>MeIOB z$d4^KQC{UCX9h7=iS{}6dvbM$@nrZk%>YlxzVgM5-Ta%bw#}#&p{?1CRs@ZUA#Ou^ zvQ+1{rL4@S%Qu+zAB8Q+cN{^MrR5hbRFD4n43O z?GEia+{(5e#YTtA>w?^YpcYS*B~o&u8sXTD!+ZO$PzQPFesdc53z=ApeB`pNO9h?b zsyvTKT>K6Hr_U?sF3z}30^KW966^MJws6q(k&Gcvo{24)B9R-5_l(n(B?@MH9Q)hS z2LzxCy(;^IkwVDf9phdd6N9gD$lIwN8&pX28GuroMhnxm>Lf*1yvV*r8<3KDyLP!7 zQ+4prsc_eo%p1jNYG$huaS)~P_58jO2flUXEc2v_gjs?JFpk-``C{iyEU-HhY_ZG% zm`dl3SNLbpvMPQo5;e>c0Z2hmoh@yDCLqm6RhgTR0s7{WaVD`L4UJ60@m2l`$n=v?a_!72Q1|4&jB?i%W#T*-t8#fOILRT2MX>g$va_ShJwadhO>_Y+1<{^0Ds;P3gTzVY!*KEBz^Q~It zDEE^$__MzBD@V@EO!;K$$bu>KS?v}6I?WLZvnlV)KAJ@|tcO~IX) zBEIE%1Uv7nk6>Fj4i2S%zNqrb%ZJadt{(9qoK3bcZu0({NFre}73X1U#UTl!DY*;P zcbni80*wB3CG2!$lje0}FTv;h@IiY>+E%w{WX)le3)w={Tj!b>lRs}WVmD2zCw7)_YmDafORW&ebe za#9+qQ9&6yW%7p%gWMj&(50-|f09Ego#C;Z^~3@jqxH-^tTgZxWxO zg;FBCa5z8dqPgJPxw|`5GWQ>M-&NA}^mkhSdZLw+$7$te9PCAy{%-n)!Z1P@yQeqoCx4D>DVm>@WB;LNt z7)7SEF5aHc{bf@qJyFwyyA6)}47R{df)MY|Y8b|%8On8!M~~F~bT$|^W1hraHV6)` zF~D-IZ-Dj2wq!)31Oy)^)V7Z(N1PF()Q^s|QDRmX)cnmevfp0J@78tF$eoR=SoRrD z8}0FmYUTw3ygiR={UQ#1KrMZF4vF?bO26KA+gJALRW<%iNlI95rjkzn-inO1R_AU; z^y+<#)i$I6TTOfR=IlnCP3rPd1}@tpg5E91<%ST>B^+F9_&YMLbasEhWXOC7BgVn4 zp+-1Ut2#LjCZ!!@sq6_57S~ADp_&wQlzOc|?y&-z^52%Rt?ScK$xvF#(+@yueBzU>}GNUjXOX zNkV2)_kL}4lAqq6_Q=7H%0-z4cj#y2zUVg))S~8QT*eeqti$X)ZqrqZuX9aN=rCqh zR;f>)&Nzx^Sbu*TkUXuU(pj^Ae>CSPxUVGlA zKY+0sjtkjc7I>c~)|zt*0tJ%?Fy%C|B+W|l-esZvMnyP_MuvQo|E{SXSb_&1WAsCO zHx*BQLH-|wLUO|PU)zT-NvehA-an04vu`BH`V_O~zPux(Y&>*V;k+iBU7*Z;k9&~q zI5BF1r)J0~ce%gyr0BS4KPgjmsG{KlJbSR8C}@UUr_m~9DbT;b!NIVTf|CItg)|ke z8pg`hZ9TPkodEUcdnE$9>C5>v(j-!oBG~E_K5d@2Mfrf4f)vJB19tM4`0eX13P1kF z{%PGeCS+YgOu$yw4?QyoXgW&Q;sKA+ltd`k_ z7ne0tqN5NIAsSaVKwF6)76V4hd*yk12D(_Sn5QLS2wk3!m9>t z*lMRdS>%z$PWJ`4{A@y%SU(BpXCzBFnJ}!I z7W|j?QfJ%YUPkKGF3%A44-++pA28-Q2(xO~UT<~(+w4rev#XcZfWaGZtSFz(IL)@&;f~)a|CpdDK?9N{Df6hRB!$=| z|1X!LPK+Qvx>|hX7I%E1A*CZ%dJV&sUM>;RO%Y)R+Vh2MM%#f93wj22?qrYelY4LC zc&F@Biwm3_%1Fc)(Y}Z7&NHjt<1%tH9I6D5>g}vb(SSUQG5M-wxQ)eInKY!Ip1Fv= zV{0f`5O_A?ezu4-^51xIw&35ig5C8{I z+g7qf#(cwiT+{s=CGpxIA?J9~78uLBt;ks_Lt|$1At?&|2<(5t+2iQ$HSJ@~Mp3`Tf2PadfdgX;?aL>bTXw z@?-!Fnu}B7fuSn4!_mAWt0IBej8w6b2X^MEs0hmv$3;(eK;OxEYN%;;T`pqj+RQzWCB-(~r9C5$2)hJG&}X(i17XB5e#hf4VZ)$EdlP zW-LEV>!AI98x+UbV>o`KD6L=?^0m#Me*SRb7>Q z$&WOZNA=U0k8^hNh)Ny#HLMcmuo)RLL?-{@LaDRH6`ZptNMwD;;A%X54lv_QVxF2Y zx7Lb2xY2Hlu`r~WU;#MTFc%51^DVNtN|GXlpYSAEJ?`Ocwzwm75}JG0IS5d({`@+F zn4g&~Hz~;k|6Zvp`xQ9s&#a*gMjLqwKs_GgV@_GqQV&PrkpHq_{DUo?l(lMHI_M1( zvx5fXbP4|RW42*^mx|iLc2|}D&Oy)hfE5)*jlr&FLe_IO3bC@xU-Ul7E1T)YU0{s; z%yf-clCfCBSTngO zniRj9mHrW5CpL7;S^hoeJw2qTb9jE>hv8Ai3V#a@XmxfefZ!?Xoqm zQJp^A&VnMmQ6XAt0$pvhEMJ~`VRM0s?)OHkrC!X4epP5cAKxLW;KLz4KL7&Qb9#h0p2+hg2F}lkW;aP^j&|g@X^RDQjn3!k5&{5 z#^I>pAg1Juy^GSJ0C?I9HkTIu-G0csozdMmoHFXc+sF6e;BMb)bUiZEx^7-d4hnWz zq_zdbs-ARkbZ5bIY;L_I3F725BvP?@^l4?5NVo0eZ+C`63- zIbBjT0&v;d7LY_;z;(CstooGkfq=_i$mUOh!eIpQS2@%?rSii<2-}K6!q(bpu{Xpa z1yADYsmu#3KPEquox9q070tk< zp0y9=;KMP|aQzVA_D8lOzyHwW)#i*k9XNM47=nVvm}ph+c{YqOM=1L>8i#aS`lY53 zo25`@cO`vUWM2!eW+$Ry0{iA?W9}&;S%%ks4M)4yikch#<1s#llN!eOI?Jrcx(ffX zZ@@s%`F1&+Z5W;oc)%zsF5Y%&oUv} zZW4kamNz5F_+9D{nnW&3mb>PUL>Q4d=h_lL-5#X@tTx1Usggds5%RDppBK%-kFkFG zpQ?YnDIXqZN?&6@pQ$b)5^e9+e1E-u?v9{JsZ9p>;D+UG;~T$4U11SpfW_Ur;0wvd zCok@0RfrjAcW8i{Pq^*jO5)ACx@(*`spZ>;oo^KdJ}$l*)VL1BfgoEYc+#r!^3x)W z`gAuz{F1-*C>Pw{A#T#({YGvPu)Mt`o2rTvlb_A$+~A6C$zX0Da?#I9#K_Jq?gInw z-Knt)7LNWID7f8j=L!jaN@59Bp}`?z&!D&%x2Kf$nA^>Z!ctQG{XKGTd*qKS`23}R zpR_*hFIM09Hs$z>G z&TQX@0eSlw3yOgnyXk(Lydi2`$|Q@-O^WymNwNZ4K#|ewOsM{l4188`BJ``;pWg|0 z#ZmEJ=f7+Vo>1itggpdA1@6AO=k_zR2H3N>ZXcrYA?94uPNkaDAOxH_<;%8m)*aVX z=@Tez**bXl4P;+lDOwv-<=02g2BFWe9Lo^okv+a!30M1uD$HBQqUTy3;zpz7?QLB> zQqQS?ll#di^A-zy()d&0%OemQV#-KUMu9b4NFT*ODC<7868W-ipDFMNys=J_X_XO5 zWsjoTZ$3FsQ(aN%09C)GPqB(B+wVpl7dFD*%HD8acL8VZ3+mqV@pn?>kgR ziqXyk1(JX!f%scyeHPm&BXs&phiuFIoa{;yEihAUX1fZmr}U`2irJHMoGjjzP|f|F zJouXOAa#5H8~r|tL{>FpS+ znq{#)=CU0(gH%2nkq20)v1}J@?3SdXSvtZ$blh0<#0ZL$-ZBF8M6oHUk=fMnV{e)D z2Od-=`-wF1>4;L39ul3Qq7VPqKX)EayYrv%H04pyjR5!*#S_=+$JE(_Ta&mo6(n@M z4eHpS2k*n%tT-syZ&ZptYC4WMb6p=QP3WX=64U$8j7bvYl(2Y~C|$rAmk|}&PZvZ} z*c(!HwAgTnE%0f;0`?Tpy)E2SY84~iBGq0WAw1k0I@*?4l9uxMuK-I~G=OEvqJ;>@-)5jl*ZbV~i-d z3M*%pK`kp(3=~m3XNkd96EmkHR1BerQd`PzTeeNUWxx}&KID=8I?PRvPnzmQf2ihz z4V;-9&(eCIgW5SLanA5ZA}PEf{EUk$kPEShSqx#9@z)i(ojH$$Y5|4R(k~o)ANFGn zB%)$lLXTOvPRrk^wxpdO*OKnLE;&4a4;;=Ywk_Wx_10B2u9}7))Ovsjg3{*)I>GUh)GvW zSJzmCeD5Q)Rr1;WnEl}a)k4Z3F+bvGm1Si7MTf06vUdwsgKsev9J8(1M+_!^AI_UX z1d-?G(_-D!gadZ~+xG(D<@Ua?(NbM>%(6V*6nM;YI*JS{=-IqDaU$V#>TQal&#wOf z)fNZB6gHd8&&u23Nz_K1+w@WndLwVjC^CZjtK=P&tGbPQxZif9H>a*p!?$*__h_xR zmQ;R6?zoW{4A4X{be8r!|5biWHKd`HEeaxcJu;a? zvZWV&7X6`?tA~b67UT=R;pxpew>Inn6y|-FZw#;T!Tv zHw6(CaWSb&G?lGXs7gzhUXQTFYxM)(q@77Mq*f7v7^;FsxHqun7X!fZz%wFO6Rtsp z|4(Itj2VtQ_!`Cj(<1YfrS3XLD1wk37(H-ERsTJ6#pRsD@1^m#YFr_qu} zP9b1!lS3e*S}nk!Gz*7_CAHIjGQ~!l7}Ic31_@~(O{{_ zRf)R>#WRt8uzs-W!RcLqTQ{$$X>Ztrc+v(b84s<57!|I=I6j*vS&KiZd!cfm$OFQo zuw|ZNu(91i#3*-+p{EeFL?NQsVPphKdU z0HJ^H#2^KJkJ5i&+RqfUemZ&4-hbPf76q7q?h8EkZ3OsDRTQ)QnqZnJy_(ym)1OD3 zhkKVMcG#cOTqOVVE?w;cU%Npug@vY1gZZ!MSn6b3WNKL2+9YkzT;e8yxQVF4h0GWl zSeN74dtUxVQ#&A8g19$@;YOz*=ur4O^fzLuezhKWXkJ4!^yIf{LY8gxn_CorPc=?D znwV>@6mP6$uQ=s73MVT9^Ww0Be>-q#h9*Pvc)x#8u#Jy!mG3Ch2^r@%@#y|-1-<}J zgt7Ri__1|B4L{-w!PXV`%T};hM|O5DT)h5$kl8ai9_UJD3_c)omILaGHL>c6mMLOA zeuz6&JiEKmZ$A^{Yr6k!;=oG4bcJYbrV3>2^lte=@aF!jwZ^le$N8|@j!>WG?Way0 zIHNawW@fjIa@M|6NpaL6Z9}uS7>W zu!kj?kr<668&oAu5#hKOtrYK9w`ZxHA4X+QX>)i|u`8&|NCP8GFOz;WfJDXE6jk_> zq|9-XC3drHTjl(T^q?AD5Skbj4&D=hmTvkIfOgCa@~7F{8XS=YzC{4I0NATcO_nMP zVG>5eh3fFt$2%-i%m}w(-u0t&)=~dWW0OayzV+k65X@6DN1{JG;8UB+P6nO`oS+)a zyEyG;{S;M5NXF{?lOO@rpLSK^Fq%Tj`DNBPdv^#UnC;b#kT&5%wmB*6m>E4bGz)#a zf3{>E#pntsMsrzAc!wAy_umaKW-u66;svX*(X$AldiG;@-N4{5Exj090rK6%1lHB*5Tc|u@+ zOu4%a;$-KpbR=$UrsTMYz&C{t+~@1P(f|gV5GSclg0Jf%{=ia0(Z8)MkE63@Ftc0P zKX4X~XFUgVF2&AWrp_r($!A7k<|o~TkSk6qz9$5_L)bk}cUp#f&gJQ3C&tErR_e5o9v(x_mlQJ zwoungSuab1DVs}N%o7ZZC|=CtGsr{t8a(~setZN;C@JaZANeP@kA2tj$y-%Ogo5tv z#LHh%xcGUZ(4GNiDZe>a%UpOHuzYotImNl?lNm$I=P^t89?2O36t#79GGx8vwLfYT zdeG@9%mMj|Il9w%=Vr)rWamp(K7e%S!l!Tn0}AC6(i!e*ilnGyNe8_u(kaU&3`c;S zICL7Nfd}7EOoXY21}G006Z<^2X-`;|^XCX&M^SM{c93AYYuqSb>+fmb*yMSOK8JVC zen)-t#z%=SX%h_$p!P@D1uwne>xl|1d6R(S4?>Rm~hULhh*WIU=%|# zl$d=Zu^X3qJ;Y1=j`HSYHT>t8+kJBbq{hU;11mwoO@cRTk(jV}mvO-61l^)#+oT@l zC{hH+Nz=;8ikQIf0$fZ-PmIRSE^cjQovAG6PMI}Kac`9J;Yc7LT6ufA@`x8~8vwziO&7v_wI zd*dd{{(jEvZaOESXBRh@RWErD-H(@D%lXrV9hiJ|hqN+m1I3rZrPZej39c{0#l@XS z@Hhx&W@fzNoc0&!dH@AE@$qArLwWpdOhj~T70n8Z>|eD<;W&_)e_N9RztUAp5#%Q7 zrvt6>9aWPAgiYc8@ObAYAfDFL?fxuw&Ea(l_3JKw zai;!(pB#IUGVWNU_i*xp2ya4;U>`EFTE2I+eHP12z;jk1dq1^sGsgIwWGEyZ;Ewd+ zGDQVGkPYOuYwr5;E&i24w@PAoapLIIx*Oyg`=I+;3iUD;|BgL;>0cuuLA?ov&WVp7 z;by*4T2Lqbc$luz1Ua8)yLW*qz1SYRo%g-mUnz!@n(yAWyo?XM9zA!rwW0WTb_)94 z;c07YTRc4)yrPMq#NUU2!@?e>rS^8;uWICV3xe3myX_r80@n$#kscqYyT6^S<@?9T z8aWQvPP}ytNuj%xGu(s&^Oxa6_b&o)P47wNf$6we`PoNo*-N(PEZ3G$!$4jq>CVas zB{{SXp1LP1AK470ptB&<$c$2zq2NyO9GMx$kWw8*d-(^Ps}pz2h3htc2|t?g+G~ zi-;y`6^~Cjx($B=oQArOpEw1^`M=~)i#EO5J*QuL32}hG3}3Ev3rXD1y{2!W3Z`p3 zL|i`oyYPctelLzAg|{}k6c*wlr4ZH*snUKRQ;brTp2*Qv{2VVJPndYl*sBJ00&bO) zdMGZ~%9;!6+Aot>ZR{P_*P@8b*mNWL-)X6d0Rh1n!cXs_r!heuE z3QccNr5bP7er(+_r{F7UZztd1x1Bx;;9Wcb1+k5A@)>f{b#-5;VurBpZVD@$FL5SM|Woi2?KO_*_O&~ zl~>rzi^{_=g+-pB!E4(uu-PNbNY5_^>ZJ$LfaF3FEN`cmSG2^z(;TPZaVS&M4PWpC zxO#Wk@YU;(IuAb1=n1$8HX^=(mQsY6b&@VC{UC`Kf`}1E;S6@^FF~sw)-FJFUe8oMPk)Qt87nm{{n!?mQ+(^!s zky*zkWu@Xn8gP+9T(F2Du9}>;wfxgLM&J%sjGCB~7cH>)^ak}7I+S)nK-xjfZrHyy zGa`!61q^<>+oB}Svre=saUkh;V%7@(kQCDYWi&zNx04oe0w!Ue7e&sxxm@{l!1;@9 z!(y+*_#VgYG*5?tfqLdg%-hTSU5`|)T8ZB4fS2~?j_3EwkB0dix9w@uhtCFEnG^5t zIbn&n!|Xte%Yc;8w%X1==?PTT@wd}vW0e6n7edR&*qI>nB;Go?*toh*YZ!>zXbR`3iDSuO^bBq|F`8gCGinfo&?_? zj8Ah6>a7l6KYxw$`_l^B_Bne?Iqtt>4(jSeNKeO&TpawE3N`|zUkK$kgPq+!bhks= z^Ae0o17fZr?U_y;ltWy$IN(R|3t$HHEED1_pZM3u!J1tg zGU`5jXS6Bt{;_<^xh@D0;{Q|+Qs96;&+F%NYl-ciD;L?GKk7qrx#z=kGDM zH0ab#YPMxYX!elX_G4<5sp*wRVsL-RY8f%S#TYjiFhkgWSzAn_FS<1#Ns4e_#*2x` z3qKXFZ#lZb7W#g#^$?YN2TXEJJ-_>aWXyQ%ql=5lseCW6I7Ru?_3cxD*S>L;UxRd8 zB>wWO1oJLuK6QWhtpdj;2Rsl@ecFp9zx{#j(75{U%_@oA!YaCK+Vq5CTG+*9hgA>_ z;H4T0e~}p0{{uH$9GE4y#z<u6m)N|8K| zn2?eKEW&~gO!+HH9`5?eGIloeq?qq#%T=NS*MwKo_va^f6%dob0#lvZwX=^u8Lx>d~>z{dNV<4yd?slM_{Q%(VSK={eX9>uSe&>syL_V~F zT91!Q{dD}cM)%cnKjw{D&e-%c9n5oRy76TSYMtLaF|jRw%-L0aC<`7*{r&l>jRbDI z4+f^>5;5J2)u-$-d~kNM(tY4vj>S)M+H`JEqC7!bxPH2Lm_HnD^%s1hxNYd7XwNaW zJo~f4X;~i?G`v09{wE-@jWFaL7<%v;?S85 z$C{BPG$1Rlj_lLRvK%(ggs+y6+_mBBdkV1D)M;}E=%X0)>^|n&Jpz8m5Y2_;oW$b3 z=8w+iKBl`r8%+BGyUH(}z#4x4I`1}i$yw}46kd(7K|T^|)Ab`q(BM&```Msh5GT#~@RHsVd;6?oi@ed>$O2^565fywrhFOC?~bH~!aVXW zF^4NCHRAIJA6o6HArC5#E>Dx-X-^|-U-D>-OJX#a<=e~lgV_8_pXJ-NaS3|+FAC3w zF!&zIzJXl@Oi@3DxBrrObsY7@@7CNVE9m_FiW6yr61X2Y#Q%(1Y^$*1Q(d2D#=PE#Th#=k*3pDiQ|!0=zP z`j*32qH_h34>?aXI=ml0wr*Az_SNL5lEB-)cv?J%UHLhmU%sQ(xNBdUK129N1%e+b zouH4y)7SSqv}Y&VXBPp+V^FH@K}h?tahGU*%fy7elJG-0$G+F{tL`w^$^ZLSzv^Z8 zLl>2ou)M3c3QFF3HiuH4ZeLA91Co0~!^reBG2*)abFoE%R^MLdC0h|_bVfHEG*2G` zHRd#FA#vEnMQ@)X3x8w7*vU+AfT@o4Fb!_<$p z4H4PxFNa68_P1|5MDw5L84&v|pM-s9T8=>~dC+r7!^$V8bN6c(4@a;i#PD3dD!^!a zcgM7qD1V=7Xnd-Dvl}CT`}MqoP(1Jan>MJ|+3N7_Tj`TFh#1$_DVhRBT|`_(Y$gZh z6_Zc+k~anZ-5S-^WkezDp^4_Q((_w8U>L<3U3?0@6Y|~fpL>T11FG*n_B&TbRJ*@^ zfyaht$sg~NV>TX4VM9WZJu%~BaX%Q zDkUWsbRg{OW&~D?j?=h(iYLvvU!gPL9^7{}aLQr%S3i%R1s&f7w`6vwU2~+r916b}ikhr|^r@1! zR9)7E1R0W4Q#bFc-gJM|keMc*o)j(qB?gTEs4>6f*83aLu!3<=W|~$=jQ<>w!tOc|r(~ro_R)fqsTS z2&t`cHLafzLlW%a`|#Tl?Ii4wO zzs^oD(H9QTt$9s`s31pCQWN;7YCi6s8bz&|lh3Zeqt=AA2|cA3xFS?^z=CAHu{Ou~ zcy4jKd6($LtOwVV;#(&{XO$q>1}4gvbQry_X8C3HbHC2(yPEaSXT-S2Va(Q#R8jWk z5fK&M&h4=h)=%r5;Oh?i``mo!;! zJ}bQRbBDe8_qSOgiNhJxyG$tlD>waRKho{``TlHk8s1l!+QP99F)-56iF5q?E!{g% zMDTr4?L^21I(1$-Z{n}$Kpusi)$a7uZLw5vV?Z@U*z~m5eucqi_ssbbZdf2SS||g; zltoJUbdG|dVF;f3ltO?MRUYs{YhYmD4k7*Vn_$%9qJR?J#LudC%xvsLbHYNSfo%^~ z>#b{%&%WQ$XhAo9pG953rbNX1zJTo?DBe9;ieieiwd`o?PSp4;L{5xGLSJJI2W?py zr7v}nax7Q{Zm}e+(LQ)KA09$9c9;}O57CDKS$>TDMu&%&Bh>~1?3+*?aNV7?TA`o%+bG~rt>@A2CDfqG#BeO)ZdrJiCvxGQjr79C zCKBhWZX2hLfMJ2Gh{{NQ*Wyy7sL6}g$G};52eHLYQncy`yVAS*6(Qc0YbBg23!qm@ z#ZM@yoIO|&WoSYg9tu8ysl`AAW`WVEY$+{gXHP3#VudrQl28e#>=+U3syd8xSNe|K zChwK)y+wCnyeeH@t!l!jU7}veWNm{_yn7z^Nq6J<&wHh3KUUv4h4)K(J9x1Zcyvu4 z-(H|G9deo0(a)INtZwZ^2x_7Y5ru`tDL_M6+PgC7Dt*a|CLyR=Z~CN<{MG;js`+ z%}MW@wgi`_ZmWsKExJGp3#5$=BJbUNqFaGL72MNKt7-v5HbEfuuupD~nDK>yJp1-m zkV2?Yz6_jNIb-(mqgHF-`Nbz0BBRnPrA}5Pk*SE(H-U}x68}QpHv-+kaqDcN0X}6Y z>F;AX^-bKIF%SkYzl_lg^@sZ>S z#3vxotw58PU)6E!+ea@J%oq)|WidtLVgd{+6kv=@)75U&JbiO3GBB8u=HvPGXJU96 zwG44vS2n&-rLvNt%veidppi&BL|i(V$kLMGgNfr8Jq-dfv?KsrG3W8%-73gBTWnp;Ak zZS%At>5aK9Ex|Vw!Mes4Umq?Zdtwffa6}Jx_qEM|lhe~4{MBDf)P$IyB`CkYw8__5 z{k|+Hoz3jg?ZWL7kf~&SXIMN*C$!Ka8$s8JJT0~V4lDRdI?vJt$vN9eO8O)%vFt0U zE8|y6=j(6;n}3xJqr3%RGpQGBVy*N7dCOi5b9aXvm313Bu%EjD8qHx0!fg+NsY}4D zpKP}gPL+(ad*rQ)wXNmkzJrL`6II5wi{2}|tmY-wjHXIT4nppMcS$oJR9~CBmqQ3T zT7YiKn@8wj)XbN4k_(($6FQFwDH>h?&ql8!xri9oWK>|jkp-v_<-N*>EQRlfZ$3!2 z#@|tI10zJ`V4b1faVvWiFVkP_AD=HoXED6@&Pt}hFYjX)eet)4mQsSAc1s5>meCzg zInTk{0ORfpn`pe#z}G(^UG9nh88bt5-J&>IRYUV`6Q`ytbf-=0n{P0JS1l8+Yg>V) zpj*TjCB^}HAhw0t#NuiZihb$#iQ|f1TQ{uJnkEn9bVS0qjVB9U4wHo|_hM0>JU(Of z`Ns4)&O78e0+?bY>qn8?i3;z}U3H??779Zk%$r@@6ZXH|)W{?Nb@)|DwO$(ukmX>U zVkYBK8{7Bxwmi<6B*v2BlPd1|<>7x>ocj8j%V<)F&8I{u_IB1(hHY}2&=4bSVSSJIEV1z$m*R0lvl>yrd7Ke&k!jt5_g zDg%LnV_CT98R{jyO<=PU(2iKb{{$akB; zx;h$pGF9%CNFHGv=;q&eT>hHn#={r4Q9GrBUuNE!c~j~jMHK8C1yC+g|4Zm7orxmY zi%&-ixa~!Q6(!BNH{5M!)O@AgAN$oR7AYXfoq_+UbQ8E9F|6A?JTy??lyN>C>$rV| ziVC?ceZHm6n`OFBSU_9)g>j0DWY8u@TP24Q&NS?O;>S}Vz+-3iDo0q20W&y#b~VFno`lmFw!>+;Woug5E%Qo_S;{h7B><;El$tSJpHo7NRP~ zVhld_3Ful# zR&5!EK*4obnNNijO%=xYWMhQ`amQUXVIOUY!vC!WupR<#jL~Br=uu!3j!ywpDb^R4 z$5kopSWTTXwIb_7IR+|A@54ReHbLE4rkum6enxX8XB$S48`IVcy-ogYyQ%Y{;I*Lx z$}gvTO~|NpN9+4rf5+FLls&iSKE(_L@Dr*Yr@J0R4XkANs{w@xNKM>S8iQPU_`xsJ zlYzV{C%+Y;rGb?bcQp6m!gAJu=*G)89m9M+BE0TiCKy8qCNWZo%ghcf?Wn%aIX`7|7i^pPpd1Zf<1Uud82h5*3N z)X;LWYEGOx%&ru7?_Q6#EkxV;BbZOyixuTFJ|ZwN!Zh>e3lHg1jN`;qdv{fjGKEXV}oARWFT*BxN4^J9eTTC&vk*tX9 zv-~)#8$;l68QI8Vfn-ysZ@M&fmHowK9%Jx(9ia^JeAVRz1PeLJyU;t z_w~jyH9C-x9s|LPs(`73AAVmRlyp^u$4k+Ch3^{Xx^Hhvr6g!qV*v!T1Jy8?QKVi1 z+=#Fr`t=E&72f;h_W5=s^W=MeK4uyz0cZNKt*xz$v#I#MNzJo=F=J~xfu~rzm{f;= z(F*Vz1M{8JESY-T6UXwEg(2&`^+K34h zoA*W?%}35IwDnF`2Vf|rIo>{53$*__ma+d%67hz6V%$>3c!xQfo9OJa9S9d5^xEdb zt#)TT9Awr14l*ksK+y=g{t~nVdT`=1@d8<>wDk0@MG8(Kp=eE;(T$oh6{&)#z8DUX zxCrV10?ael$jCY7Fym)(CBoGw%i?1#3`Y{AEZ=?K*xRFDayYM)fin>;d>~In{0u6R z-!N~8*JyoSvxfqMyf?0gxwM(V0-GN4{j%5wuUPXq(n6+Hpfi|xvs-(4_6FVV5V3Q2O9BXf#39hX0iY~eVW+-q909^)CEPDv@RA4~c%fvh0sE11wE-B7;*36p`bDW7& zF~mq0aQ)(e`rq_R10W*6uAD|Eh9{B_F;3Uk2#p%O$#MhFaGRT(&&H*1Hj*N!B|LQ) z>FDXh5E5bvimgtQl>rzXZFE&NF&r6?dN!;dwzcT@TjJm~2q|dT>$MZ0oTz?Mfo3kd z-|xToN^k9r+e`IxHY9;6c3P}$c3cYW5R}_2e-5g4&9wfgniexvrI@Zc!3E50fOBn4 zNud-C1zZCP)|ZqdORX+T0G8xNPPo*-i2^RTn)jO{4J-Y=CxNj~Pm)?rEd8U|(4)|s zRz`0p6%s1QCL(Z*a-=v#RP@j#68C=j>K_pO|qPIL2X=)iOh!MJ?oU!oz1mY_yiI!TWl7@q#7gD+p zr~nN3ep0tADM3MngJlTVqpRl&fkyW`p`drRysysgJ;gka7UMe}oS*6v*Si7$Z7^r3 zkfKUkC4|H{gd^7WFPz%xisr2+iBKF`wk5ygh+@}JL`-7JupbJREWjv0+7|(?i8Mmx zQ&a$9(jx;tS-PB0poS6p1}<{b-!!-Ibl@8zH#=Jv45sYsW77F!n41l;Z~ZhbdIJ{BG03 zT{UN9Z6x?^6o)%M)K32~QDzqaTW+@-g5OAb(-P>Qczg5V0?)cQsB7o?5+c@s(TbgK z)-Otr(tz7Ih5=zel&djTe#};4_8_O=muAP=&tDMDBc7D@ozGuI?++Kw}V=6feRTjrS0AmTJXN2 zKGsQn185nn;1Rgzk{Q$C(*jqZ;sBj*sD(X>;m|h$;Q6_o={n=X$wKu9T!L{*<3yp& z8y1v+!OO>oiD;sy$BgMS4F>>Fxv0Q*BR(kp`UGFO0=@ySF#p>I1PnYtKr=8IGcK^u zEBHcVz+;Oxf2VK(UPvUujS-CO zG5{gPkc!xK0a|=UgY!UH^XF%P*+^ml+Ah?HnyGNbE*S#A6jH>ZCE1PgA4W;PK@y21 zmw%~DyGjoyKOv__6MQr9!llDDL+Ygrob~@Rk}nwH4@Ht|08+mwSYitd(S@Im5`umK zDJZPqJV^j1$w}f88UQbVY5xK7Rb6>#U8^sLS~a z(5AG(0L;?g)3s=URS^Y%b&Nc);q>@_zT1D(t-yN0y>9c9!`9eN)6246Uet7S^lDm( z5rc0FBje+*Z><5hCse^0U>6yj6Wq#$SS0|58UdQROuvSUr5ao;^A|pqEW#lNOe8hH zKoU5;NXD#GTMSoXS!bOs#zx|MU6Ol`gaKjk&ew+_oBo z1X%OGCssQ-C6cuHZ&pL!-WqcAyv7sG;#K~~Yu9Y3(!AseEiyiIYJgfdfIpbW_b6Fg zqou$9%?ACQb_QGKp@Q&!;d>SGV*bQ`fhp>V^X6HYbjA0$X-`Z#Ujd=xPv69WY#t@1 z0)n&r+&v2+L2%3m38Y)u-e0LvK^V34h?uKK7>44nk?361frmPN3SMy&CL#p<8tROx zY>&H4`UUzTGA`1tTfP)IS&Z#+b!dm-Sx<#l`18jLJb9YW*^;)GFK(UD;srw2<@MCt_&5^bR<5o}3>&`oT=bMn~)K7utMpcxV$d zX2r+ORmu75sE4Q_jb+gDs~TJhXhm+zLvzlJM_b)>@ALJV#q3JVk{IM%fd1C;*{=?t z)Td4K4rch=dUp!ho-If|x6k!6z1gq!ug7m+z&D-Etj{H#X@}fUx8JW|w*&+nMd-rT z)%zO2E5WU;nt%T)$h*4_r(gH$!d&ua$Bf&dGwpRYkG2b94Zr+Pouow;Zfg9^95!O& zrvhqu1J3)!b|wON*Pz`OBNYvt^tO%#2KLVePU55S9it`<-zrni%!g(_u(c{^4yZ7wL_L00AjYsrM0aNXG%z-N1cx;eJCx>f(9zsr%7*a^`yw3L8szSiMp}jWLi&Wkc8mpQL4Ow(Zc%r<>`UBIX(mx`SE$rp^90) z!H9~Td6&jl_|dM8T1!z>`*;b+LPw7tS8;SkW)cV#lFBQl#+o7b%|5_&YXqQOf6CR8 z!j`C;C;yWNfoCzXv4@uB@$;*q6MQT>)Y+S}U)vog1NhgEPDvB6$4$-t6Y-rBft`bS z!Hc%O%Co!e2a%)M7pBfIzDF@0W+LedI?@&>*joCh>0Cc4e%Ioax z8?AxdT|fD!KI-F*>OZxf&(;R;zBQE%L;ZH6k}ae!X1rBncjvh^)?3hfaQ%2J6M*~E z`KNet$F^U_b_Z$z)m7$E@?>d%@62<(kqvB(DvQ@4*MM2Pwj;ALrIK+)K4A0YUTpTN z<_bDkse9*e)LiNZIY%yWa44@BcZ%y+5p1-Vh|`7b7zbpW;cogaUSF__j||xumtJ2u z<+dKpc3&|*xE4J$56RPH)T*vt)jY%{=ssSLiB;V9`s}JGAN60KI6hio-fRwi+Bgo} z-?u*+j=c{@NVtxfZM(~P`+U43I+V+_vOSv_&|!RID}IZ+yp`ZL`shCb?YDkty_=aW zXkRvN&kQiVSaFW3w0X1}olOb!f^D@txZ zI~n~R8=MceYWM;+H4RU?#>UQj&!M5F5xI(Fq293+L51ra7nIfvN#v^ocQogoh zbuq%A&ODufl?eaRH>GL@2A@N31qHLabgTu%uGz%fmsc)@a>3<(d>pyu;`pUKJDV{i zw{sMQd;wG|vy3oQ8s^nQiUGIyzxP(x_#)5_fwlgdTr%lK*t7MlA+z}O^z^lfLq}__ z^SQq=bPU+v4?vm1c8A@g?P$Z^&D}OR2()?iSe`lt@MN&^#$)U$zxSMMcb|T7VC6=D zH4wLgD^a*Q;9omMpzEAOrnfyxS#HkOWM;0{9iWW{6C(V9*92A=#~RcE9-jg#&!Me; zxtSbf6Jk3h)Shkc?^frg_~dT3p}!vuIC62Xa0MaUq}jq=atbbyZQZ0R+t=^Bp2`Ez z>r9^KbJdXrGXn!m!IsYlOJd#*O64ik?SBkI&I58bF8-bpknb=@b%wnF%uqgxzsU2G z`~@L7Q5@z5w-V^i{YgVcR?h5S=!BSbo{NQ%@xiOs7PQ+DQ3XK>u-2bB^Cl-Ds075w z`R?w%4`$eUTcU4mI;cIFNtq|i(d%v&MC{JMf`3mz$Lq?zg<}6c&x6Ag^#XyH4 zg)R2V_Q?*)TA8$E&4b&y_0V?C^~LD3KFql6VRmLFudJ4MjgS!IlVIjowXuP)m|Xcg zF2ZKJ{(pzfRx8q;Ven$n(1!G*!GV{Z%0c zfsl36(~YpMSOttBF6-mReOoBDelQ$(4qGTz-l`lpaXTv=c#0}o@hUpxWf3nwD}FRW zvv<_Ym>(;BJoQ+rd1^Ttd+#6%NuN$yO&l*eO07J1&7b9vdNKr4`==yew;kKSrhV?f z1_AtKrV&||^J&~xuh!Q$${){*{qD-1+XqvPofpLKmI91y?-~<#${!u}We-`OQT#kn z=34!K+!~vhL|2Ww2!0MR1dDTgfNj~_IevMzKI$lSwSN#hIWRfW%p6RZy=}l;A-T_; zx!76g`ZW5GB#V8$_8BY-X}TIBBurBFT)aD6d0;bT53n(C!Q0Yn6@hY6Z}scmookCd zHZ5!1Ib=Me4Z+@Bj4h=pSHPIXxBY$U{a(H#UfrGO0SUSg0N!Caspa$JTo3G3Zmm|p zXlsuUi|GT@Wy#miU2JPC_bFoD=>oK<`(&6=aL*h_Y|z9^_~M1Vf1B5%?U#=5aGs;$ zS&Cj!d0QPZBk72~6NkNK-A5;bK)(jn>wp`K-cmo#R5nAKz>dA!hQfo9{mQZPE&0bA zD{-$UL~7bxqgnp%sDjkUi-5TAwlr*Hsn$$UfM`9`T@i>pZEbC4 z78Xe(qbya)j`Csml`z6ppkAX91O!d$r#1J6B+Yh4v$xl#Isyadw}#ALjKhA`)=upM zca**U+HQ+<`L|ek&ND0`B5-1U;v|>06SOLyK-GJ>H<^@}NW*T5gmifD?kPGpRx9`X zbrpJz#9HJLsiu+1;w|n5Ol-9%FA9NGvhU**Sx&M=H}+6e&Jt{-Ac@1 zy{;gy(l`F^Fd8j`iVF*Ag@o>hl32E+P=q)E?=*GJTU&dYa9NqW0ngpnS%CjwWD z2>JHKv$t@o36i(4#PtOeLl6wJEZZp+VOb^b@sMCv% zsLm=M9_{#pUKd(nU}DO7>!p=X>FDUBlUjcK7z#=CVeH#sf5XNwY{)T(SYU?Gil%%bKX2QoI#rG`HibDic zB=&0-x0HTGKYvWE$MC$Pkc^Cv7CG^&zw%{|fVHB!EPUQd;E%+>=Tp^vDsOH5w@%H? zFxE6^1(8Lycd#EJO6JdNi;huLGtdeC`7=@{w~a#2WZ3zXq?7EqrL~np5)Zw*TMDd5 zeqgU{#n;`_GYXMIAf0|wQc~8ABAk7#q;ChYESp+QG%NK5hD!E6d>h&_UPcle^0Lx? zxo>|kjCNfA^ZW0?eT;NprwK-whU#^f3UCiORCH_WCG#70Nd*_q?*&cd(p1}E76ITz zXvzNmD=jS@IyT-Z!B02Lu$=u2`_PCmfnTh(=K7GPX?iCqtKs(xUmh7@qBGQt3&~fZ zk6-Gw?(1V45RR8-Yldrbh+n4Y{VYgJv$Z_dH(h*GaeW`v>u^L&gu9b&{9#&qni+^k ziREs*bRe=y)4|<%8`QG@fv=>*fq>+dg@0Qdx#EYh%V)yKcqcKPP0`-oLVnMf_-I=S z)=z!|p2K*C_(9X+3tLis)$NJ~{p~%52wu4ZQuU)e{-V!)XP|zK#l7zH<0bLN`|tKO z)cr8PIu3X8$8Lm2M!Jv_4UvFZIRHF+Hh=+Yzsjq{Lj6TyZrAg`xB>`alW&7*mTt94 zBaE&+WW#(R#!`?xP&QN`%44yf!UW<4!CtLs!h+quaj+3=-+D)6Wo5<8&QjN&;U;r( zQKQE(SNt_4#Sprc!}^c0u+Xm_XKgKCXN;HKsV%FHA!t&?u@b~2#Qm?1HNk_XqlzFF zIuanlJM}VkA=}YU&BV@MsK2wCtHStOR?Kg4i=VsK|KJ@%i;SIQAw5c1-Wr1B#om?Gq5R6*~wLY*ctPM~V!)c~^<|R}-O_+4Xds@Nl7xy1IG-BrJq`<$?RH zA2}l4Y%?gz6A`P;2h9JFmgooNvHYc{`}IQ zr=&R{h&u}TdV-98ywL6Qe5mW#Vun*pf8%81d4i&!IT#X%PdU&%I@~t1 zeSY^RRFDDp&?Y9v4<8k$kMeN3v}Im~uJPo>9!rp$A)tg&X9BWCJYLaHhJUxYsStGK z9$To4j{Xok05Z2~Z*L!U>=bhzx>h2xVCnoc;UUqn92pnabsq;ERr(PE=Khv7g>T%# z@ImGrOyZ5Ts;)jE_~{aKeJC3Ab64RkO4MZ#@)%i%}y&a2O zA+Ge!9~AQB37x~5`38K7aZ-ODkA~YHha9&z(hMap#IqW@w7YH60uOpUu&9! zBnV5%+F$}Zb@K}OH-@dvH91s{h|W=|kCP{5d{(KR;8*=l*=SZhwD3z)ft+hBb8eji=JS+o$#e4=_3k&vx@avXxSv1%YR~)lz2kiSq_!y%a(Mu* z3YBe)+=m@TK;C#liJ-qIg}n;$sz4k4@xSlZud{t!4)rQxApVrxa(MEo?3j$P!k;Nt z@63cfk9r3*A@ymJhWO+evByizdbzcB7kI*pS5sUfV%Hf8(n^8~Us%57C6W`pg;*naFr(@D}T={@<5a=Bzs9 z4WqfqgM~x088=8LL!)BxJ@PeNmis6~<&Vk$Cv-h@%NEQ`WPtcmMFt-#lWGqC+2@dF zbvtP;3q346>H#Si1q>hegU_;xI)F?60{Q-`E2+%!aIp@*VVM_QzUEVv9aM$L1n4VT zizKr5>0+)kM%W3;`u>JgvHoPi@@(fF%XUyUlKOE}a^unVftsnV%~nthD@CMBXNTpi z6H#oMQ={j%w^Dw$XHrBLf_vYM6+aAeS}vfp6ang`0b#k)RGfTD^XuOM(WuZyz0%^W z*oovw{&XR`GR%z@?wfqgVq5Y&wXa)0zys&g{OV~uz9rLp0PohdmhCc$^%gfdeVS!T zD{Av4e6WD-(&Z{Ua+Mv@h41UN1D5Ku<3Yp2{(|3<9gqj2HnA{_@xkY_PoN zm-$gSotNaywOS{)+2cL$neAf{cz5Alm-mH>rqAkRkN4Ua?cL=zY#;X%`_EKNrsup) zhEeX=tCK~_(qLm`KpEH`Rj!|n|KC~wJkdtRIBIari!!Dx-U(#8o8?D^_f(NTe=1xU z98K4ddmb*vJbacSYGY-6Q;wfcqhKDwzm*osUtBecNl7}gwdUgl19Xj%T3%49$6+HT z@kW2_Z&b8;^~>GwF10o*l2F91u&9RzDH(aWPO`(=C=RH=H4p5Xx;}~vH7+i*p`fUF zWJX2R_mY(Hj_5bT*4Kh>u4(S|1Sh=#y(ATIB&_cc@`Da---C$ibs4d~H?lJzHRC zL*CHa>+w4v8%(j&kwss*Qac?gCKO949Dsz5N7Xf5QW88(7?wQ$*h~arpm;=zQJT%1zcmod9UjLE?tkI>kE>~i^-Z&S zhVuQnYdzt5{%cZ1b?8D#%yr5L_}JL}86KIA#q>Lgjvc$8^NHe^vbJ@Kz@BeM68>$| z^w+PE?{AP_?N?h|p&3RN){JhKw>Wa8;C;;0 zVx65wsWr_t(W~-CWsIkeJ6;kpM84nKQ5-Rh%>LF<>aQ%?X-um>*EG@NeLr>PB9v7> z;l!F=C|jgH8g{V&LeV*i-xmP3Xek2oj9}pxbv;RXxDXi3pkJG)2&)20TW~2 zJdbB|jYcU-t7xab3TS3+#7nGiZh}6EH?I=n$wHND+ zeLbX8pqt>tZPvxh;q0tm;IaPd@0O7D^ zK8J?9qM`-H-m=oyR#tlL7L;;vN_F>5wr6iHvJ~FG=T?o8Rn&!Apfa^zChjfOL_qf3 z&VB`Ui17#QWf3?Fzy657@_JYkfho|Z+S-b`f7w5RlhMCXxx}c&u0B0aR7e!p_ohXL z!6&F(uW7X6<^)Qfq)xb-1#+fU7o6LX_$q9&JFmL-xf?vV$`A%UH79Y#cUg!uVIR^h z=W*q;I;FW_UhhU~vi^}!^?qvmt#FdaPihLhVoa~a^cS-%Gp$h@LQT+GzTN3k^k&cZ zoM)NB-x;)SE0|h)CXq!L8A<9q>f&NbH{=pzZ1pg9bZ5|9)oqu;%j?w!J$I+}kZ|5p znPFcV{ZOFfpCi#vWiz$R7n&pagwq)XV#VnFHF<}c#t+Hz{9S871$b>pFQA2*#TRkZ z*_8KJdv+EC{o#w%-Lfvxii?Dj`I*UP>9+ zq7I07uVkSc(J5YVcXr(3be-!3-i1!KkQIe}iG$;!qHD0q+snlv1y#NTZT9^*ilp`C zZ~luUUzoQisy`0Z8-v8zDVJJ2>(8LgafV4;+%NrMmtWue5u9Ek*eHm{$GE9xb9rOFsgB?c?)!UU-j(sWvUq&LRKyOBw&24hoA%){oJ9&>LI<(^DsO6kf z^%Az_-;p4M!{J36lRkEvNCUQJC4q>)J4WW64mnPZQRF8OdloGU2SbMLyH|cKgFsAfKU$aexJu z&eTAtEGv`oS>PP@J&<1XfZ{4BMAkg*ho!D`U(JsE&L;jq=kgBjCUlkEclBeJPnyqR zVewP21-84SW3C!qU8oqHdHOOhy7y?;uMdve_tl zWiz2);7mv$imVSyTqKW?W}<5>oPM=lT(wD9vfNqiY&SZ7ElrPS6#MN&1F)RUM&NVpE0W{^J!|CTNo0aVh*Q zAcrE+A3gxb6@DWDn`TI(i}_Z{>`G7BUUDsN18&%FV4+lY(}?~3H&7jg<-0Ihy;k>^ za)pJ>X*v3*Ycjz(RhO*_DpY1jy^(9u!_wA|MMv9Q14nr;w_buWzJ$iA_mm&A)Twj| zqX|Me*#9JPpq{cDzW~Dy_v^^t)*s(i@5Py?HPUoRGD_o2%}nVFrwF-My)~+GQr|4l zMMFl9}qEkc~Iq%S?i9$*gFo~d<~u1HfIR|WAn6~eXBHbMiM0TBpVIBF8EpP zvt$i57(vyECM4=Bq8I$L_k#7q2QXL2Rb2AMavMlW0=u+*A^IC$*J8csq)7Z;+bdF1 zhsr$fKTlai8?Kge{NY?{o3Yp5e@Y^L_7_IQ!rBW)tPngh!uZ(s{nRJaGLnUe?J@*# zQZsrH(Ah+K?&A!(KDvB)+sT#0(jWaG47;4lAE-yojv?^9rj$?_#Z&_2I(=vLVgfHW zBM-bsR{AOE&H%lN5BJGr<}o78)wWNUP>eA9R95S=#K`;b%q{M}fMTd+wvHzhy-!BbJ(Uer@(kauk`AmfBGFs_*B4&0Kl8@G?peRp-75Jf?$d(G3f>Fy2M+wny z6+su)8<4F+MRCCG*mql9#yVoD;^sxQ!%Pv<+uLtGf6ljkrmUXe0e<@a67YIk-o9d~ zQ_3p@tx|BPvlT`>88@tq@0Kg~mmCRSuWk-#ripn-)esa~H~iy1@UnHd-nqnCX|+Os z#oVo#N>>2tF#NxnAQ z0X4mGvm;VQj%>?MtD1{}W99WBVV?fSy#icT|3HR6)m{V-B>}N3JnQKh6qg2c){P+V|G|=#C-&!Bh2D$y~U2&x@(bLf}Pd3JS zB@$`3T^lu%^gF*uq3cNVk|tM>e@RF&@M5k@$**f(lo~OM4jI4YBaRE+QjmdziSWoV_c+Ir^I(ZKd#M|rsb`MLBLF%7q3fX|s}@|1kwhZ7@*m~{=U_iyOk$mO@n>UOBJ$f(CyWj}-Q@;gJV@Cb}33h5Es63I@I z*WNX5r6UP4br83)41Ut337g65q`A;3l1A!JTGUXk6fOLQSu2ZB94W7!6|;cTBiT<7 z4&2O>;$vvGD%hZopi1pzxnb;kok@@3RZlS{8U`GvEc6Cxpx_@pUGkv|{%yfzUMLeRqN zR%x+_xgKApK3*a01Y^fujDW`|BFBBp6fHh0|79j_yWNMTxlQx7j7pR5@(oNDiyKzq z*!_}rWUc6c9GWq=708C!fk+2)bZ3aKG zS^s3+9FU07Zgbk;zraaWTWf&`QzMEn3jM=V|Cqkh;kMrUo*NZAJjCp0<>qGa&(iX` zY*nLO!*=_&uqBXy=hxN*zs$n-7+*tCW}SEdH+ATWuWj*tW_Z}SvLiusk^T@RC3hk~+|SO>u?Suq)=Gc7I0qegw;cT} z+$rq)Qx5&{7RlRAzv+tS^4NM#e3Y-mq2#C)nO*7Bk;TVrawsioXRpfGEka~1{^h8# zO3rXkcVVexF)C%(*HKf19Xh@-nml7c0rxOfkE6j2Is#JAT;;f&(cf)6k{OQZ17cuO z!^Ul_iq_)GnMzY?henTiz)f03i^Y9i8vddDTZH5)RluS4eIvL=K}2z- zE3BZKz2UuW3TC&$gwiSp0Y|PAqHqy&5omPuo8b(uy;d274%E}HlH0U|WQ2(PbJTvV zoia|Ic@%k$&}#BoQ(+?cgzY)AujW*Z`>JOF+f$gki%pQUR6Of$#T;XmuhG%b1eBEE z<#?rbsXP~&ZcMT^+IhQkN)fFXe*GHr8nF6C@Fx*wdNwu`|NG0@w3h1Z?_5^hAc$Ih zSIG{2(4^&W#T}W;z3C;q=nWEkJQdKlaH`c<;Q{Y{qw3hgaW%{Kr7;^eyB zjh9?Wz)Tz?IR7c80;j9%?a^X*yTeVug-Z0n)Bq!rsIO-Ys!k41*L}}GhLq4PyIVOV zhzCt@NDLKB<)rM)9xauWlr$5e77P0JB{U?W#_``)w61=1R+bU8ygP~uKW~Fhq^+MB z1yALbS;Sv^+>-}Xmzm(Y1O80Tu0$oHpO(+KD0*p4e{KaC82b$85L6<4Jx{_#VfYIu z8J|%$blj>VPx3ic*1GFUwz_p_bN&up?5d-JL$kzgkXTMKY%~6E2()c~H@ZMZ3`2{200*SLOX-=|( zoB>Ltu(Mg|5a}wj0W9H$Nc79Fa5Q>45uB~96hW6;=6@QRM%^Vg7+-@Q9Urs}bgca` zd&SrV&m@4xrK_v<;dMoXVj@J*4v3ig!YQpnWP*Ivr1=I?II;!B{?u1V{^G4PhxJ?c zOv8VySt{C#SKT#Ig0rH2yimNHwt!J3;W3H52b5D`r?%yLFjf&xn@lmU&yt&KZ|M#o@Ix!x5AMhs;^Yq>e}>b0fL3Y|m^tN$wi{-@`DRD!&2$eP@a;vy92 z_i$$cBzA%}xN>^CLy`xw!CF2BCE0aS=n7Pq_aA5@mwPDG&LJuvSx_bpk|3M>Ocno} z7k)3{skryr<2nvAiJCRyW)OXhCRjWl_T7D~^P5HkqSD0q`T3p;ywcdr0Tm}miqO>5 zR4C2F62uicf1YwM?2r=CGl51C%83RNZ619Y7#9LrmNxu!ZuIxoZ%7CF%^qt#7I!oX zdiRxb#q<+oDJdnz>RLfb$+0$OD5h`*?MoKQBsA>I8IotU^QV!dNyFA6cE8=q^^SB)+IlRTxM-lYCG^7*s|&VOqX!T zol|K-74lhe(;X@S&e(cJvF&ZXbLJf)4A-_Zu4T~1`M%i8)q(~t=^d8rOa#b3Mhc=P z(o?~lEyPc3yU1vlUE3qVV58n8Bc*CCE>8qDX=_N)Vsh~?S*SlDK9kMj3Eu&~fu4lV znQ}(r1jy2q-!2=$>(BP~_IKZ#<2cWJfj6X^jV^=6(%7VxGFIA!ZINISm@fb_QWKFh z|M5cGY@bOj>560o$_#CM5?OABe_P+5c14B*tbWrRe^JtyT?|>(sku2@Ve;q}ZIER) z;JGOc{kZoEDlXA7PjL70zupQ6rDWES>JT4%Vvj z3Xu+@QcNX4P+G6UuJoPq#QSJkn|CB;)UxOw*uT|?uQz>~a)i5Xum9t^eaj{ym+~Y5 zlbM|bc$&N|Uw1wKBWYr|Jo$pLLH-RoW$e;R5NK-O++tXuO&9b$e&Ge~R?`MUaYfNH zDxzdkmJY~f7qdy9#5Tk^|HNp(2whSoG0Tqn7iT$|_91Q4VHf3N?E%uWhK#Ev__#CI zkl$VnZS4!Pu5G+1bAf7lSI5+cC&YraAXmH2hPCoqL?+wih=k@*^ff&xe;;yAlPMsB z6?UXIDJJvyDBJ7T#bIeWIX-^}dLJN35vtFQQ&I zpP{huP+mf>xuEma!GHhGdDgvv6VE^F->(tlb4>daa(OE)eX`vg$lE6FsC86@V;4BPco1h&MzvPq$$Z&ey7ZE7fiSp2rIjzmog&y(*7A=TM16CrmSL z*ehD>n<640C&-PIorzi0?he=e`H~~=uU7yo=F@TF@PZsNdS`&nazOgogUZz@riT zw;wU3Q`P)-Ue9CuNR3v|sr!6fCju0fosHsU~%AsBx6;Nj&q!&C`{re3P9nJszJCc<^^7c(? z?_606Mx_pH2YJ+az_a?mX-?XHkVe=8(p$2P8)@s3I#72)QiG_O~2DZG0p<%?IKZ2XtgZ+IYP%ekQAB^jsK*@{e$vd+MJ+;N< zni~Ybo$4E>4H<-(J~h?{<{N+eLq z;qAj?8RB5>E~z7*Xj8PoQKkI+@AoH|iP)I5jZWDzGvWi%&^Id5|7C{}1P`UaqbwHl z-QO)lF1imQqvH9U9l{CsveJUcD>LH&3&Q6Uq^qT4wzi(KyHtukQ??XZ8L&li5kD$y z9F%J6i{7y8{&ohuxUh>jdgHj*id<8q%3HbrvQ$7%?`zipGN-wt5EfRn0dXgpNf_Nb z=_<~0{f2p|FGivc_AyM@nh)&EY~424-_qwq8T~^cULC+umt^p@orEb2z|zohMZoh? zK}$=^9Eeh_n&;xgyr3e9-YT7;W!hori&c>ZvY&H}cEa1s-gQye$ER$Re|`)W{qG{& z`I-@^HhY2G4yr8nZnc84$7G7SIto$Xp+_rzsP-9=TLi9nnyWdL zPCKu;Q{?g=^cKugDT7v#)mSUl3$7y~R&ZD>o;{-D(_1OL$igdz*y(C(TW;54A|MfL zVo0r~XQl`CT^8L^0>z?0OfAi2G?57ic3Z6J^u>|cjdffs7pHNGAuqLfaH*a|4}LJ> zbBm5z5y`tKP$gXh90%CV`T3_!QWC>k5}%*)^0Fp4i#`$mAA(p(0dkJc`O!l;4&nhM zmFPu*6YhuEsj2m&8!^e;Wl>;CdziAJSDvDU2s8iA*2^>+zgqgeC+v^!g&bpbIp3SeS0s+-3vTBLQ7o_acC(ELo_J24- z!^1&bSPQ`a$O9cypF=`MV3{UMA_Q*F!966CP=8JAO~)1g3dc#=tYLP85x_S#)mp4h?+GWapEb(ga7^GhIxe} zy^lNzJ&%3^cSFAmu1FHzA48pMK})T`u**If4{@g9a zJJk||9w9i<;H7%;w9WVAq^6dLd7nf`DCm0rwXHP2z3UkN6Uukz6O+j3Xxmy)M{2ik z!m;rPtI7NS#W4NHV2Qw+W0Z!FrN8^#4$u*WL(CZ33Wo-VTqiwr`J(6E`U{1D8GX_l z_|C{~0136Bh0VFfl4o1ztbvttPHYc&npOXQ%Nx)GdyAW$dh6v&z3NY*@mpCE2~_`w zz4r`ja_iPc>7XcGL0TvZC|!^aL8=V`ilEX#MT!*ZEuj}_A_|B=K$Ic~B1(tQk=_KP z1_-@{8WPgJhrPf3uC?C1KhL?&b$*@e{Lzr|B+r;*j&YBB-g8V#S=U}M9o;DWC0Bf0 z!N-qh4$qzi1cB8b5h%AtFT@`_^Q}Ix$LFnsXK?xd`As1V7OcR?S+hPJ(|`GY%v%gG zP5DnG|D^@^A2Z(n(+mH9;9^bff=1TXNl{UBG<0-A0s?aj^(Jn+H$!^6Gz0`# zLPHm}+0$MB0oy|5fKezG`}@6rzY+35oD9i*PcEPclo#g_g)9j=YJ%H3I;>u>POCDT zeJ%oGuKUiMZJUmM9t3VxN#W5Ld*|Kv5RXQh!_2>pxu(7lfXRg)-u6HDuS6E=bJ57k zDiK&TYhLsE;4t7?SX$aqyg%C!b@u(vVHq+m-q_Jyi8oDNzrFp^&u)#V)j~0^jj^TI z>@;ePF(^y}uULdLg6_yvN|Uy6##1H;0z-1kVw0VbxV z6RH=kMEEnFS**(}EGkk@F{9Vg(%SU>{P{Ca!xRo5l!)Nr;P`bT16{CV4S*5>eHK6! zyQ!$HWr1w3uimzWVl~E9v1bnt&lZ0E{B5HY-S+ONuD;3{+jsvyhJRLD>Ty@#jKnk| z#o8!lrtU}x=p+tQqg86VRTr2dc`cA@3ti;pqt~+Jj-#s}DUly1&7!}$5=ExHS0uUQ zRQPOdbA6KVsxt(2_|@|l#-7^~c$JoxdyjeK=LLK)jV4mU6SRLx3~G_T5YgU>1j$TI@_m$+nuxLR6TzxwYhuqTK@c%x6T zcZ4h)0p3ymV(HNvGZO(pL8cT@gQlHd900tqTibj4``eTEvBMl=1%}xn)mTHnl`Q6R zo1wcGMSv1*V#I^!?P+BC=p`*<+QQEvmtW(fxiE5Ly0Yiz*hzTMHwsqPc@aDG6pSS{ zb{EJ$T!ENveN$6~Qz14?l-4^C|P;bZ(U8JpZIv9E~0xgqmj=y(ty;I*5>#ocKY=lvMV2u15+~$0z358N>;Jh?u1Mt)UBFKdW9-wq{3YfLb7%a8dlCno4sdCmqwN`)mGyUAiVD=g z4Tg;tj|)E6xx$tIq;K-Ddj0c-^ZbiAPOJ9vObhk~+*x`i-fs^0!;J($-oSD0+Q#rqv!Z4CVa0{t3^l{|dE5VBh`f`6%bFs-Daw%mE_+>qR@_ z`6GR2i4@UHeC@08#vSrPLR16l$@G&FUo&y z{53;?K-lDVQu*rT)BpACT(`hi82LJ3J_)9+Wkl_T~EK}%nfv?xP$%lz)&{T_QBQR5%(3oDuJt4hubDvT7>q$ z_D?s^mo;J(fEuegU3Sgy@P{Jnco9246idkqhEkD_qQUmRezI1RXY0znrmH$lkKVh}(9YvHty?i$s=G(9Bky>=6k9<(u@Lb7blmT+wv3Gc>zJnVawFzPnSlI7ngI>+i#!Ta zl_*^M#sh{%@(dz;WWLFogpqjhA`zvE4B(1Rvczd)aq?8)jax{)jk zj7%|?stBK3{b9EMQ`r7IJ+O2NRwEONmE3n&09TP>M{r78hPqnTr8gNQIiH>e3LtH` zM#G&5%R1LQ|L1Zh^x83l8)_@qQ$`mRC<*=M5_*`=_nq%VjRfIrT^s4xP1&4rH7=@Pna%LlefP(B?sh zzYS#>C|r!gsIcE1Q&=~>tQKD9kH`HTzczh30n@|fqwoKQGPK#<8Rz2LiG$;4T|YlS z;0>s{+~O$uspT&e1Q0tUtG7~lBszR<-i(c8T$}t<5lNx!vG9>E^P!1J7%d|wsx9`O z-)b{{^J^D^aQKkX_r*$SDO&Uv;2VI9$*hh+6UYK9b2%AOT2$jG)?qe zyV@3Ix%Es8$()fR@ry2@3qF<^i%{i;6|;91Ts3Jq-+wj*uLUZZP1hI1k zScehvAJk+l_~whGj0+`xLBLonRYbWht0+hlD{+!z{#B(}x!t0(i~zR0K1iKN4>6(b9ac-ErUSDtE|pPoFa-p82B*b=yuc(12be_T8K z2e0M624Gf%m&@VPzihQSNCQAZ01a{16SwJo#879)`^uFj)!cV0r(CrFUgbf(pE6K7 zQ{TN8J-3gGD}S=#1F$0&2ir3vT7EloU3KXCQBq)E#v!H@(EUFYdvk&cT3mhs)WJS& zoaDCGb=zFNF~1&3MS=B*xl%mHZey3TWzBDS6OHLdF(E1Q-*jIL3% zOnPM_I_r-X#-|QlaP-^XI$}L{A+`=(JEQg;hgW;^2GPnQ!^kP!+6jUs0wVJGJ3NU* zJadj4a<#+Mn(;@K5$t zQy<`}>V?fA{(tdzp*{kdtQoO_*QMl#RBI|L`|Dp`ke-qo9UIG-+j3XRAg22A`$@B- z4;6PUIriW|>;Ayr5>94yFR)NcD=Qb*pajGfP(v8|fg0+msVoq;rM-Qfo;{NhM0)o* zk_kfWk$zB7M3)>q8|Q7w>{8!PURE?R0)tAe7mwDf{t87v!k@D^DfwLfUh-KO(}*3o zA{%>{zAXx-Gi$h)@%@~*Yv*@9%3`9z0nG0=#~-H)l|4^YDmHig;4fDMN=Ymgz)g^; z<~Iud{w0lERA+AAee}pFyFWRZb%o={<8yv#r_4XG6d?@Q>zY*6ps!xV{|I$|xADni%}znUGf=;8DgRXv|I-%# zS)A{LhtRl#ZPrZxVd{Sr?!d=F6SV;fu(SN_i$7arjvk=@p-sbI{%l^p=o8prFTP~* zM~gHuQ(0G2Ko78vXI9^ZG&NCxzkM z&F)LnG-wpn6}t@p|(yv0U?P8mH*}{|IGw(S~-Q^*)Dy0dm}!H zv_P}-?d6qUCgVbaQf$}vs1RaNqqqNuLH#cm(3!g>Vq|WflzC4#Cib-cvzYxj_NI*u z9wQ@*C>95n1-lkjmK-B7vlq?3s{WDW|DN!H$4!weIoK?-2d8OhKHT&2D=w>D6g0wa z0H=D1iAmAJ;xC+L_P!#5jePK6;7?xEbWSfs7IC|$*x2N5=$wtHoltAgdheD{NZnSG zyI6eJ-TU|AqK-|qqpfZ8M^^rHC7`#Co`8%Dg{`0=z~KGh#YA^uN!8f7#f($-%I2z9`TK9l}w6|ut-#&92vkEdWdbF@| zL@1m-&;V;H{@HRCBpR`&xHoD-Ri!QY;6(h8Y^pELSgm5;we9Jw|qWrGyKr*&z}~L)9mjO0sxba zepJ?et8@*$Uw7n&`c#bKj#)hyNV;K!exg;Oi1{u`YrBrV5$<+rpU1^C6L{OjY3 zSC)?=AKd-pya{2D7t};=2kY+*7U&Z=MMFRusnLs#Sx>nC_?szNs|#r`yehGc>g-M0Y2Wc(|vYs^_jm6VA`Z}`EHb`e6ko*bVU8I4SgBLmQoQw%zOUT4CJdyIoh zH)MBXn67jd5w8BaM&YIJs}ja~{z7CS09XPVDk?v7;Bb+JpZBX-ctfR5l{0*n>gcM! zs+4EP%E_15M3K{&PldzL7HTThis4f}&3%ar5k}LtWaou&X%h9CSJJ?iV)_ z=ib%ESOj4OI9*4LB09A(L?3#r&k>Iow8D>CZ2IG52`IO5`#ouL1i98(iT9l7PBRD^ z1|v9&loFE)c0s;pBUL2=Jun5>d92&KeHpqIgGV&GA$-L@giEKqE*$vR#QYx~gvQ;O z+hb`0IwIL&T$?I4N5rK2S^^)aZA!2$BT)f*AO4bGZtLqZQINC7ez5JXg&$7l}M8<2T4QsekueNc%sl-$kEm4R0v z?Sh~Q_Lq^ZJxSmge*Wm!wX{2%6TS=E6BiiNJx!kt2wvdI8m2G&tob~Lx;ar3K<7=Y zY+=XUw|>#m3dES#x08lK?lICBGnBxZEbvS_N!cwMExy=T}!}Z5+?z zz%6}XKSn|Fj>edp%$c*-9;P28;MG>pd+g}fT{<&tKZ99!#!ZBL#c+Pce9%azFa6d z6)U=ZERx-YjvzyE)YIv_>&G*bS4;fX;k!S@17-Z5DW5Ot)_(4O#+B5MnA7()xL(qJ zP};IxMLuUuoKWMHram^vi0g#ymvPOY;;X6~R=BLl^Xh(!TX`YE=f}Z&a4Z~AciOnw zfc9w>1(c9cHkV!8DbTCdBrN;vF*n^2U3Lwanq03&L)3?~^r1$QJz8mku*4d_Cyu=U2nbcDq{y)Q$;=`St7}zMKc*aes>D6kdRUK?hE`dLEV7VHr76S7F2t zKKgKa?wq5i2l}fL$EJDg(b%HhuW48d3Q2Fyjc|X|c z2JN(T(-9WCR(40{cPZA5zvKL;4}XxGD}`(hw!m$`XF)_E^@gFIWZW-b*$wOS)Vp2S zZ3K}!$wHAgA0BwIilXtGr{cjnTe!eTXCSIypTF7c>7@l6UTz0lw1$NviFBTHow*C~ z^n?%D$o4t}P9Y$|bRH!NjR$Gmdr1yhIjVNlc_$*XWoaSk!t5H>%4W#G^mHF^r^J`J{SCx_V~9vR-b|z8CPCyX9uw_P~wPzP{4_GnxTO0z}lH(D!&DvS-BjX(luQZh|!50!Boc8+5 zQki1RT3W+*)Q&6kWosah>BYvnKl~|UdC4&E#6qN6?L7ms%coe?6iG~kO4oJWbHJ8c zqbMqdh>$n%o5#4vrR0SUxd=spDXm^>^(v>MPO6BnN&n|M3`q2U#ruoUN|G1W^5;^h~ahr2zt4 z5+UG}2x*;`u$*}P=OdClKXI2VMNZs!{#%u`zC5+eYm zI2hAC_`^qR*{hy(7Q{a{A1d~{js-!$*<!gSB|r8S;4dI?iXY?eYu>aqSI_D@~46@hnivT$Ipidin7L9 zmYd834#oUh+TUs=*ds7%*+I`DpHCxM;i!nAxLrlxdd zD>E8g|BW(H8GQEZ{n7u@0yNpD1p6tEzp**`e6-WA|K7cXEe8EA?EQ8vtz!eqC<7-* z+F5*Y@ebnbQGb_aHM>~f#7i^lVD`FKQTpUut%kx9Z&DQb_c=T)|LFF1d_{n1pMd-|dI`GrHp)CHrP*R)i;+ZQ+7T7Rq& zSvOB>mHv~)|F-~Z9YDpWNkL|lD=E8fz{j%ar4Zl(i}iGl_8j~5OYrBs&Q$+5uNe^6 zqRy-F`Aq9=w8{3Lovw`{?cJZ=0pNos7}Xxd5&T{D|A4UmRw}JhoDet^!k7P;6a=V9 z>;QoSmQ(-x0^|Qs=TV*zI23w!&;QAZG-(K;0D%L08ld$@x&lbwK&?s{|54)41v3@` z5IE%CgNQ$cs2ELpfHkV8=DPWi<8Sx>->tI)2M8SUyR}n)tUyAUH2*`x_4=FGA1mKE zFi;?q1?5lS+^CjS2p_m}bh?>k)6InfY+3J_8}x_J8KOIamH z3P4(t@axKz&tHW-rE7h+;`wLla&mJiMGdn%QlG2NGo03%jLD5jiqqB93?Y9!{J-%0 zI=1Q$G&{A&0VNNsE=>78{!m%UbTktTXl;Z6PX4)Ms)Tj;x#BVV$v3+|Qw@n1kjyq! zP;ckgH`fb`N}GXJSk=T-XP}ejOsU>*(m$jl|73%Jd&ffNUa~b^4nR-&{%k{knev(M z*m(M$!VrR1$1~ZDEb|qXm1z&~&&WI(eh_r9CZxp61Z+n;_3T;GhFfq%DD|=3oel>7 zP`vfnpQrP8@lf$w6rvAb&P;T^DEDfAH0`$~!QK>i`_}G6*pnN#`NAygj)X--PP2DD znTs@=?ZC=9a$QyGqCwNfnSRLmN>SC{a6U9NbjwMMnEuDO5dxzrRie!F`exUio)z5LMrN^+%26{h>aSsIo z)zl#62Ud!q7^YV?==*l}1ux(ISSva8&0>K~RH_Regd64s4v71m$Y=KO+mnY`Lb|cK zn+-=)3M{}vStTVITv69FQx_-MBvnJxAIz`*+TC}#*MDHzb0Byi^Mbs*!u&+RxbmeY z{CB!%hf&Q#MwdAl&KNQ2CGwmhu8yt`fn}NyvNLAQudOn-kDeXg`E9;U|Lo1qk>V1_ zSGUouKp%!s-Mfl+S-k&sha~Kbd<2~L>rb93w=UYzXF-WJcP5Zhf^woZ<$8GfQ1+4V z5^~}}N)Y@IOZOF;a$5$<=HD#~T74XJjr$UZDdxf;5;<_3*>#Ux80?G_Bv(uCIi2G; zjmJ*TxvlEM`zdajKVFA}skRI1%RvWc%zwCbKng~3i;L+=x6Tm==UOKfGu4t1>cnp( z<=2Yb^nN5RCXg_`EEr!z#0x@D`b1t{a4cEb8NT@ah5spy4iY7_krx+jVU=fk-4TN@ z?&;Y*Jd#tlK0QKhc#QuZP)sua0YOQxfx2i5-xysn*pqh~!QR^S6hlJ>I$x>HPZgy6 z#N)5$<&w-d<#0ziP#Eml<2`wBGH6H_L;LydYm#!Z;uKg6jqcpv5YX5o^=zfh>+heR zcP_V1Od@E^Lr`UkTn3nXs;5}(^VnmtqR-KSrG3;58z7T|@k3HZ? z0FIKysjxtO(vJA1>sDOJ*GX|qQ$^|xr>I<4Zq zkCsK;atr{yg4I5U-#YcS8`zJ5??QM#CG+1TPp76GA}#%Y+@k$K1Fosp`xG%bOs32L z^MMiDKjkzGcf5Z!T4awc9YBBdN_$yL4Pe#`1`q@dV0=EJ3X&J(H22e3RrVDl8Zgh7 zzU=b6RqKNV_->_rmrgs%!}+c@5=lMVxABm@MUd0Te)Ar1t`YIO$oBSjl&M?9Ek2tT z2see87bq;mM>Lpx! z%ai;Ovz9-Y)kedbb!d3qw3h zs0Sp32cPh}HkcWPy>#(T+ov8{hO?(yy7kj+$hoMWeO*oU6C)R9)$xfk&BxdbecpV{ z+;)grQX*%=X&B6kcaZV5MxrE*WU#=)^8+8>L!EJcAIPAt;7@lcZ~GfoEm?kbJ2*ZU zPJFF1w#2n~QrSH` z;H8dm7ih&H$e*ll2j>OnE#kb*5PakmHDvy7@_JP^;yHmm|1kFn)ZKiR4m^c%OlkW@ z`D6gLn*AhvdUhXWGOLI1COb;HOi&bH)^JrWuaaS1=pN$KapM+tYE==#?D}f*xJ*5W zcglfCs9iyRmoe+gwqCD$LOtFXJT_1zM{rr;9NFI*CfLx!ig)K%rjBvRlaS{|_;8Z$ z`zE@ZWQ$h?M^y)pCBJ~^c4ggKZV|^%gJYrVo}Qj^+}s(jlHVy~9VLDwk;KN)g|GwD z`(kT2E*0EuG-&eK4~xp<=}9tu!cT1X z*8UM_+NNpODw=N8Pg04nCoo1g)6-rMHCO~}obo~4n_#f6%Jo>^^ zr=c1V*#3!Ym43OmyECtcQ|r@RWnRDQA>f07$kh-{n+G&Blv0`6fXo}{ZN)+fU1&RX z@!~}Ws-TiHpI4(bZ8C)f7TM**v>yZpc_Y%S zq5L%y51Hg_{p{L&g1#}r{PrzP54$<7+d2xy{I#}n5uy-mNm<2 z0Cw-PLGn~U1Ajw9Fade}dZV~Pigl*3REK45_Cl^k zIR6YCU%_1yEKbmbkK%1jX_~ks+qgcN#X)R|O%j&po7@n1e&#^caZ>tNRTl=^nfEDq zSV48UEB`oLdn^6!6?2lvsIXh~u=U+r>c@&*KWhyA$&*v6JFOrhSFxFT814Sb0wMDD z?}{S<(k_{Bq9_L1n9>-+m6Oo0BXb4@nbENw%;9cgmQm5K>3FNM*8GGG^~uHRi@-T` zIebsTD2^0bv=Ewe&A^TA&__2sdk75Ujsz9(f<(5~dreJ&ow*YOgtuCKmtfhUqk1D( z-`KzjM&1vp9pjh!NlNJ4m$~L2rkJs>oCSP{@amV>4_k+|vzf(`x@Fg+S?*Jq7A)G` zf59X~omp`7%-OB8J1Z&LRge!Y48_{k@^WJ?o^ z?nBV$VrN?!E}&0CB%#Qk;f#E8H_$v<$$#&RLJ5pYP_P;3?yc={^Fje;_?i5Fs5x6& z0mXde*qEs+BDXv?*6SsgXfR(^R(0SCKOpP|#82H9{d|1rt`3Vb-;Nj`S6od^yqL0>=8wBGud*a$sM)j>|*&32jMiCHM7^K%bxteC_UJ0(3L3Z9Est8&WT;@8Ll%+7LJC7oOh$g>dxV-YvqYHI&c5K+EV zSOBQCWwiwQ`RwbpwHvf;!2B3hviL{#3cjv~y|0q>?Y|@ONC_@nDQ#8z5?G2ZdH93s z%a`ZBkB2&eerEb6CKp{frdvMV+^+G~W&uTGFoqU&Q0lVAy{oTN*!jY4wkH=Y&rf)Ay3a413qoyJ>-qXB zYE0lR0As#G@Pr5}it^;<&X&PCs#EWOZMa<2HO&dJ0{rM=2JjD6hSn#|rYgYys@)Qz zzv`Vt7-hgULCQW_cTfCO5{Nw8<|x4uR)%;w%3Ba)lc`YT7NRe?WaM6+dqW8=tDqAB zRZ*drcbuDij;7in+R3czY(4CV>bqWe!oq43OOXBXi$#41ccrmV-{mI^pQuhT4CXX8 zQi6{GUvPu%@E!2rcbDO_?Vbbb2_?N=hE;^!PN4nd(y@0Est?={esCaP@~DOv3MDD| z&I`HD)+cbnkuAyN^vry^4<2xx?}fJ-BWKjr8BQ@R$Gi~w2+7ijGeZ!r_GdSQP}3*P zfk-6!J9;B%CO`dhM`JUnkYc6WrZtMZ6&jKx00cJB1qRzFV9Lul0e01JVu+*y z5=@i+iT#t#M963h%u&+R{-6u;`%L4oJ!TJmDq*@PI=5wiH28Zcnq2WjL`07!Am<#? zRFJ`aAaMZgmf04%H^tRtbWrt)_7j2%nc2vDTja@^DX|87C+7{10r5w`u$w9WOBPt8_%vv{;7% z6|!xA=DQn^+qAkF$l74~m40iT`35!R>L7A@ij_woU$qs&+qR)4oWsW~`pt zt%<7+T2dh$t8yfNS%}$25-?|b(>2Zk0%GjM04xDU>Lfe7`aN5RW&s-Vrw`^odx6sp zc5-&s*VCI6$R%wDnk#n)qwYZ#c9Ky?>QtHTo2#34_gb~ImB`iq@=L%yDNS-;{9<@^ zsK<3o&+^ff$&`)%$FN5sU`CYtpl%v1l|2Vw#iXIob2DrV@!BUI%S3PK<$p(LaH6k9$x3)^z@Wpv;|YFt{W3=W>HP|HgcHO%b5#idQm`g=aL zT^rWr_oe|xfWt85>i-@H69%q$q96IOtdn`*ZtsV#8;Pev5pZOoSE89MFbLzxoW%1C z@#-gofax$fxFH~8b&>%6`22^^H5BM=lAlhT<$S-}@n8q>AZPH)*D8s+ET!>yQ`m_g6+5uPuA ztnr%hv6Ph(2p+hmED~P@{T|L}C1oWKH*j)tZ3gD|HH(G-KEYf;UJpas%ZTH3&U6aI zizSsgbo4#Z0U;3)Zfo+oc)GG2=lck>=K;O{WHiA&~K5t{IRPtC0*0R0OE7)Fe9)Z0b+YY(r$ppg2o4jKS-0ZFiES zYC(|_R+(xL8{L9Ts!*u%!pxIreBPdFH#2=IDD8-SHiLI4KY9dU8{e;z&TcK355+7>8^K)?g{1zPiC{YN8d6!_ZGxTC8iaEJS=ezh@?RL?kg!OfmpzTi%I1Sde(~;n~ zw`pbzGe=bmWr%%)F@xv#LJiEM_O1=<7eU0<3D>QF4f8FfGx&)JZ%AqLYwtHk|fa4{6&G5a{Ii+LZ_8ph)?g4#pkAe z#&bsE#G$-vHn)ap>c6W|m(SZH!YT{q0VGqvdhQsg^w>l56E&twUA0{v2wYugRSN4G zmjY7DWDG+f06asJPb#luA<;z|DrSDlZcz*5Sok>8H02j~r9@`@r5cZ&w34hC0q`TE zxFf^!_BXe6>c7fUQ(l>BfigELW|srOHoJKj`fP1``#Nw^?8;F7!kgh98<`K^zMW1^ zW@q8&SGeNos+?ZNXhO0%#*ybRNu`>%|&dP_4lJkN7y|IY7;oQOiUi@LWSf%(+BoGY2ypj z3=5-xX*R_@rKMuNKt*3_YES-g<)R*~{YV%PiI^}o{0vmnD^WUJ7f)(vmXox=q9iE7 zvO`I8&;gZlufgBFM1M92Rjx+kSR!l}YhUzys~KD$$f}$ow6mA@E+&p)k8-2IJ`C`o z@Z!PsDF&m){lr8=g{u-09L>$yMCb|1@38*YPdS|WG;HEe*7fF48EPrDP zvM4Aib%&$Pi`w#fNF8M=w&clB&$^T;Wmnj@+C>iZFAB4o^~L}%JOZ(T1ws~rlEKs1ca{c5Y0e*w{uyc z1WM*=ci2!DKK^8KQ&j(N=eMKT9{rB$6OLR3Q8bcGG&psCL-RRS;<#lcFR@8W^k_bg zd3tBXh)34XhX(MroAQxTp-sPa<^uc~HIyF4SGw|@fanCWA8NsB+gPy8$-nzv=`Eln25bwb%(+tB*C$z6`bGba7smq1 zj;Rt6>^(xr=?LX6YTnn3#J( zZIUyG;GxmY9Q zd^d89FMoA}Udb=e^H8S)cFa<4Gv*1noWL`+(39H?{V*uVQjK63ta5sCPZ0{6V>;78 z8T7<}X;|bDC+nL>zrZpf;+OicTa8nk=SP|TOAC-mPpG-HX0N~uj0w6-`sG*$JrydE z0=>1>nwwYPvEs^_9Tarwo17@h)mB!@x-J%Ig=2Dm+}6oT0iai+o1e8|Aec}m>D5Cz zV0Y`>?zJSPFN0SYc6N7n)Xp^gVrTWNVS`(KZp)7>^7C?{VwX12c|5Mmem#ZjLa(ll z2;@v896kDMUpXBZUr%kJGi(f44ytRC>c0bOX?%;Pu&wbgnLyR1k@kukug-xI`{Kkv zeld{VDga+z9%t?N53H(rf>kLXF{f$xS*RWbgDc^eo6F6ASQNi>GErvi7HT1I)-keh z7q(b`8PI=_<2}?&|La_mqBw(llJ*s#1Zxp^j2Eto%< zUFcQH+r;$@6^q74A)Thuom(w-(>3?v&u*BuK9iZtSAYrn$a3T~wHux=lFZA#aAz^MUYcPi`o(YH(7wc`YT+ht6~5!| zDx0eAXC~e`rmI|{2P#9O;`@Vzqhgo8G%Y#PJ~&)u+nn@dcnG|#8pzFz>Q|4(`Z}9Q zqSU%uErFZ!CMW-lTBJK4nDv99_UZ?rRjk{~&`i`q1+=D}Twd zGS=q_k58t!ws{hhb3UYHxZaPZ5ahCc83<|HJqu|kESQ@xP%I+(LAF_%nu(hFNr@v~ zvxU!^GuC4L?0nb?;yitfe_^-dmVU#&a6_bTv}at1?bqS&#sg7YEZTr;3&jwxN|o86 zT`+=5vBbZl7=ULm+Jv0is>Cn_RieedRSdsMONl+IgueU~w=5*A{x&-KZh^eQwUc$i zv&#%sijC)~EQ)rbZxvDKM&R)Hhvz(V>QNmeXrq2w9}ytv6UL6tod!f@mdEJ|+{ZOv zQ;YW=CoS3e*Fa(9X5op_H4w$&s1^Re_g01A7QAKSm`JB6vUxaANp78T1A#h^pLcYw zN@;Abp%s~AiWV4PFSkjDjjBIm7~A7|uCktUdRhNH9#S?Ilf^0SzGuicEE+X`TfBnh z9CuTI=xH4gPj_@^KKNkg0?E)12nTZv2 zCy)4De97?&eQAYeK-4kXfJh;E+$vg97O@3DhDxWU^0?6W;^;PFhQwG)zh3=%996qPOg z2=xfH!eCuf&kG+~Ps3MP66L{MmOP;MyD946?e(fPaPL5xvXbq0OrQ?paZpwQbHk`V z^y_cwKn?wbq($6E|Kg&eQ$Tx}pZ)o0)v1*@JlZDc`F78yZx>j-2=;wTHO1ElKIT9o znKsMjbwFM+e-S*#bTCx`5s^NW4n(bZ5bu(YqKMn8z6u&XJ9$UU!Fl`p^I^p81&3mI zBjrV29T<4!INz5hD?O0>_>_?LHQvH&m#=aWsbAxK({~Fv;3lZ`Jh@K<;&ImDJp;zO z8P>hW>Z9O{x}TkDpOADQ9-=l%ZV;JNJYFgws>(AzKkpJYy6@mX$V@0Z&{)eu`>tV? zM$ns$s>cRfs!-ArNl}Sq0Zcd!9H{UPB%`d~-VKX39djU$YBVoC7;DWnS(# z&%5~4LB_)q``ht*W##-@0l)8Ms!S1z9{Sw7MVcXc%2+a;HaOr%?e(zqZF(n@aGKKw zo57EW0?nJH^*0grIE^gmtB_Y!Zq`=qIy{zM$mjk)PNyD$dYli#X-aQzslGL1N{q9_ zXZ@rvd>hW_h2MLP?|>d0o}DN&Iu?F)_@3fhG$iDEu*04gd`A{0u#dgHl`>Q1hzug% zxGt%YccX1u$;IN;OU)m{k3mSqo!j3(6!C!I;`;YJ6;~|t2+p@6;rHNm0N5}VE8;I3xBL~O{o(<{2)`~;0&%EhGE<`yayMe`Z z8oF2HjPvfLKg}o5Xyybx^Ew~Kq+2`}NQJqu&GM4w4tG3i#g`?Y!1#|V>b!s~429(p!h zfu6cNNn!xYZGbH&3F0O9W*$*9S(G&wsUGHd-H`|P8pd_V#SOE3#DKWrwu_QmDac{0 zxq|Exwj15EwSs?)sM)#Ll>%eNK%$Z?{YAIfHGYAQ)29MH)3Aq){#KHvO%V#m)>M3l z6uiJ#6}1h8J^H9aZ{IroSmT}ce)uO?KBh~9z3~NpYeIjkxR>a8)5;;F*(SoU4Cpv= zDUABs&+hIy%ye?qZ~gu7ZbGP%kiRHq>R`ZyY=eK{U$qTr5=U!_wRbD^FFf)g(wL$32@LiL$%jm?uH78ntS-M_IF%{8OMRx~?Z{&<8^E;nNJSE#BgzKJ}w6NC&*MgkW&QA@zMOi%;&CY=Lvd%3sSE3Xnq}Os*qLpHX zj}3$T^4|b7aIh_t7S(-1kog3C1^Kq&RC0amuJ>0-pWQ;bc*z}73+2=JS$IJnwsE*Ds zbdDNI@qqAqx?sg@xDhyX0m={aB(EMF5N<=XRVv)R3jZx64ULS1w|4deM~A=aLWfYC zh2+4uH5lGLiv1y;woBg?4cgM`UeuAu22Wk0$~>=~&&&-TVJg1(gGSfgh$of7wcyAx z+U&JYXr3h2Jj z#BjtEc4Ce^w=0)`sM@)P8%Hxwck}^8eI~ryIPKO=n&ftJOs~paqi{>kZvSM=`a199 zj_8UfQuu-a)J7@nF4925&I(*n{2HEdH|Lk_@JAXN+V?N|SxvnL_F^XYA;&j(%Eb2z*LH_pD_Dz=-)t~HDs*n~;V z>vLhu5!MoZRgyRr8lE>pr~$FWXZpQds!-pLw^m z_>;5L5&hfmcbuJ_+iNOTWIXI7o(^QIW7&?bKz-n_E`sAYEUUN7wGWZ)*BIS7K1EvT z1#clim!OF|*9Hu<(N#n9;+;t(c&gO!ukhIehy!*H-}4lDc(Jh(yNe$nc-4L*6?Bch z(0bLjShRJ=`5^aN9j~>+5nlr`YaY0k0ZJMMtBESRM0*R^DVV>!!d#)@39`QYznD79 zuqfN;+mlk#-7qxLAPs}m(ETFPB`K29GlPUQh;(;L2?$6_OSg1)cMhD#^FQZY=PO@; z>$zj^wSH^gPf1=SBxYV`@#~Jh;Qq&j&ilPL>yG=)FTv?oRaa0LjOD;=_EfNfkvqBh zRs}J6{J19ECim~J%UtqmYpV~+wtlJ)%{~&j-#vA|e)Rhd=RkQJ%Jlspp&RixOveAD z^s$qH8#3BXvhwpI_dkhe{TCk4(ec=5#QZqZoV+!PrO(cbyG@qD>)mh5bgmvB%06CI zb)OHp*x`HsC!rJ5W#Mkt{fXnoEOym46xAKWtO<_a+SI!Y|4&cv%s(|n)c)|(NHpCi zFR%Rk{CF1N%~?Vkn!_)37uhj>D3T&mN#Z zzw~KJ-JNvMHZ%;6KA2(PbO@BQwzoVu96$facC;U^%5cg+Fh+TQ=4`|pq(S^or_t4A zeVOjnP#@`5y(ITW0cYE~+eNy*e=MLAzY@cuz3L~2TfoD9KW4K(*5~Vww9=yg1*Ruf z7-R?%#;Qg40SdXc&dTRc?%!&dMMgNeQ+Vg3b&U4sea~j%WXJq}`B-q;*mnQTl(U~a z`=<{`8+|dYKz6iYJ?F^8h{HGDM55ob!x8)E5X}-0h;=}n)jKZ~60;b}DRDT-Nnz0bO7% zy)Hj=UP~qWET}_EbLH8b8joJ86K-(UuOs=qXcPOJj|a;oO%3}bk%7|<1(@FBa-q+- zPnDLV!zl*h7GkClo1>&5gq@gjIPC9>oio2?A>>ewr`dik8Ye_+gh2J!sTon;<7VF8 zRiem;qOaq`+PIn4uQ@bKD0*9{ODv0eB*)h4bl>J>ga<+9A$Gr0NQlvHQ)u+ZIq*R; zr3x|2-+PWD69EaK-iD>ZH@WFnW(aR<*PBO_+z5wGQ(G;+)6@-N;lm@dr9t|cJ@6# z)nB?Yj`vOdcs~*kL5R!eOXtXzLaBWw1OjHVApJzrDg|9MHrGNDcAj4yFY04K{^+VR z8RrY0)V5FeU@i*OGsgU5xA`ng${4?SM`6SMf4B?9Fr>oQbDqBvfamuf?TRLQ(6@S) z+)J^uO)BMeJows9?Z}8g>I!r{uY&=3CPV}ijfP34Pa7=yF0d@=BdaI*PA{WYMaR(} z{TBBYinUG$V2jX(YiCJKTr>2ANbfF7Xh#k9sM8!h-5xUA4T)uj)|ThLjg?B~yrpn) z`+%ACE~WRb<78*+08NxOo~O*IFPHi?rp~Ks%XwxPSXsAiNwY=X=wJJL0;qK^E40)W zsWJfs3^4_Tx}o%Nx9Ee%mPR2|K~~7G?y7#mg4K$&B)UiMzSq)kZm#N^l%jEIb!Bi+ z7A3lTN*l2rD)sUJO)t#+b+-R#m$6gfDSrrQw;t^JsY#ZhEsx)jJzM+sM)( zg_U;{%%zj#O>CCCAci6|hd3KEG3IjUF53&wu$s{^?~U_NO(uhjdXOvB(;7$sC)ThU z&CtMh%k9({2mBPC+NoMyr!dF7WF3oG9wvNu1XT-GQZ87}O$m5ge zMjwzYPU11?CLH9hsJKNOz<)1GO!M!*C)uUA>~r)WO}CS4nREIn$Kej zf0goQq}B+5^9wCPfEI+Zh?9ez_>pmJy10+`W^vQfQ8Kp}(wyL&Z2FS?`1Lx_FXx1v z0$vppFaPiTlxU+bQJwTSfSrR^w)+i2kkhjn9YJPlaJ~1^8-_*L85iUpn*{dfbUC!) zPSOnTyKmwEd==na2-1^9NE>SfWs-A#r6d2cLssm%PyUuih1@;p{4>yKLaOjIhg8>xn zvrcaFq9-c=wA;D3U#81Zv-pc!b-w4XqUy6a9vbK8Z@J`%NW(n9nv;N@0h#;7c7gaEf5UU4BqJRQ+e905>wsc|0>S zO&mTLUaQQ?qWiFPjpgh2@UOnFgBk)Wg5uedwZrRVF4Xqt2U)!-H2pW)OS6@vtC42j zgn&hk20VM*d1-$)R7yggyuO-i<-Ha%oFTk5nVD_T6Y*XNs8j*lZ{}eg$B2N4NPr7j z8hWqycnF6L?`g5Bg{=xZIyjuIfDtThH%rcI9iN#peg;Q47-G6`dN+C=VSiZqh5G6( z*Nz@nOIw>aB|3UT)9Pm7;9Ko?|3%w2dTwRk*6&-^*^^n{X#d6;%JFxPiS^_s=@qZKvgLw zwkHDpF2iQ?jY+~ux=t2Ni+;$DFCV)hFI=fAO9zMvzB7UxkpSi9Sg*nTxcA4shFS!6 z=Q)Qf;5EFO_#{>GnfM4B?N|`SL$;<+HT1k!BjL42Zdoago^EclCVragG&cNudio#2 z+;t+ro1&9M@dzx>3Eb~k+#v2nSzqr(ocJD6DuHL7yS{K{L|zaH;xwFMZKwvc}u zk*IHNk|xO?-jLt;Rh54_1Hb>Zpsx5{FvaY=wy^Su4FZA2=I6iABl&r8nkcrJcuxAB_adnHa_!H=a)DPTC> ztR(aA){;gNv!{t2G5R}z5=?Ex$9^fVsmUvS>mqS}Q4CDH-TMgNXq1Q`$%I|Z(2}Kp zOAfNlp4+U%4s9nV{QrR~4@%^;DKAs@zGKzI44i0e3A84kj4U#?hbn!mo1Ta_0+CojG*y4)M(3#FYRTJ*r4Vj3k@F!V`L_Zt z$NsuSYuF|0I=rt*KutBgdlHB3B0M$DIHBvjOP7WHyM5n!hA8lfqWF~25K12N@%)$g zeA*thd8BO4(|IjzxKz>D7eCgknMLr3yHIm~#g^LdW=>a3Z%k$S_Wr0)4Fy1h@0qE= z12v4oKeZA>N!!G|Td8JM(!~^JGcGAuoAbI*j#W2XihE^u34tYW$RzWKMu=I*uQ)16 zxVRNC@G1)$U@(#vVKijNLa{n=eX7Tsi`vr=~y#SovH*4RU$ zRRHvfowOa<=#SelX!S*pzx>yUD2IpNMpm`{etzx)w+;p)5;(*fT@hr*%guda1E{E| zr}IGZbofq?55D{Xm>5fJ=tK{RF>CY=$?y9||KyBEwPcNFN`y4JUA@5X8lt@G9~d|< zVFHZhe3!HYfFAo-rtmPyjPoW~u3j$r##9%`x^sp+XhRd|Bl9{=^y*#Pri-@=8HS>j z+>&u&{V;Z*82Hc;+++&LX&w!bN`B??J%`L^fVkRTnzZd@UHa@eAoa&L>^F|cc*>%Y zbGyAZ`#CEi5cq;h;$C#;u6}}b`Gaw9_j5lcG~X2|A^UU^XDcVHh|PwLpYZtj#kR{5 z1E{nnKN;&9Fge+sch^xw`SvY>=@V35$1Z%Yqfk?g-gKoLXzrq=2>)B=aNHYibk%4) z(SJ0o5xX{QDUK+! z^@YdvexscmfGLnSlsoNN5XFV@_|}w=VxwWO`>3m=o1PJV4vWT=wGN}Y8b12xKSLGK zg@@ETf0Uk?X7?%1Ix6Xu{qCme6sz2SBvVygDB*l%R+d6!N>!Vgy&2z02%+ zzMfLJD%V)7?2_nP{OGe)3Z_6#M@Roy=H27tPJn~_8lN75iV-7Qp>NTXKbR6W~w5|^AjEbVr9%RvLCk1^Z(zbt_33zZNQ)g-R&AB8w#W$Ag1y5ET75)%5KHQhXh zGX*1YOmzxG5Zsbnz~g>zfWhe&pme2=oZU^1qp+!&8CS!ks{{J3f?)4soGqf!;o;sX z4l%Vh-H3#GM}4;`;VnYA@1(DtP^B&X*I0oq176@SHr;bt~}Ha1W&+~iNBT; zZ4qz3rYVmcSE<+Y2s4{{s{dgVQ<9_9VoRpkdpX4(N>A@qws871Ky-Pz*R=X_%f(ag z69RTKFnzsi0&gy(J;~$>{5^`#%QGmWFWXqY?g@u*NVC)5whjJ=iL19(ddJbP8AJ1* zyfF89xKf^FdIP7CSfGwGjf{#K-!~>byGjlPb0yK2$m5MBOD{m{90=^;8~I>Jh(n8j zw7lmy^_tJg_hB5Sf=gqszVSMaxT@tY$E^pp%N$R-C%#iUZ(2Rn=&Kcl+(gr zY?m-+CNd0lV1~4JFV+f-rw8g`(+<52KCV!4WsiyeB-Ld6cl(eO+0?>-$$ctbA@*o zxB36PK@t}i7Y%I+XnYHZ90nBbhD-Jzz3>tBpGsbyhs^< zosn)f?j*!#xnEuddnw;JFzyG(ZL8Ru=oJaQJVFi$L*` zH^pSm?n?yFe5dU|IMZr96vy z7#Vp9PCucAF|_DR1aCC#r`#4zMnc7j*J!B;!@Bz!)FNK4>2m1xeGx{phZXvSW!aYz z9zw$PSjeH@MTCXd*M}{QopCL7pc{{RTqCKNTbLTM_u^lEORp#dC<&M0%6^t7$rziq z?Rfl7@!?&{m($fah~oXn*drswlbza-Xd1P|OoEtE?$Onqg-P;Z#wz;8px$fgM??}O zT{PcKUB&S(FA^Aa&=O-m0L|i z)v0HjXWy{3lL4ygnh*!@>;9!+Ok@K>NdRV(v^d+WhC?RMur446b^|Ck4Q{>98_u0R|GzvD4!##kjO12}qTrBle@!kb4u@bj zW4L!&3R4j~?jPdXc%Z>DlqW6}XA~&S$wM#xIGbNqm>zx-+|MvH7_nu%MWUeW(`Ez& z?EWXYW)1}GG8`L9bqBjiqPd}Z6aLwP94N2OiA4o6G^qQ%*^)zJdb6apV#%gf)hw8* zlG!Kxr|Xo%(q-XPX%`*E@3d+(0gpj{iH#B_)*+pD~d&)(%~p zKO5kATpRY9OL*IM3lf&DAIY}?4ub!`=3$f}4A0Ks?aMuw_J%2oCvC<^@At^Ny?=0-$T6`)zYOfENh}vtdkji7N1ztU=AJfY*XVaYV!@a9(i! z^l;H|P1+2dB>yWc)r&*&wz^Qd!Zz;{c|su-bW_8u&jU5Nbd0elJ4#C>c5A*kxyYQX z&sgr7CP^EU3HTZPA0m#6?-sR5gomdS_Pf7rq+|CGx+V}%4i(%0#9s~wT+k)UK7i#i zN%bPbH>aqcnmjV?mcmOlIZ1@WMlEI?PLvdDKW<{tm&PFd6Fk?}CJmu;{pyKxf zP=7R{Ju9m_^&YHs(BKfC{EqtAH=m_j<3tL)Ov+YuP36^eeFdG3>umDGg@XCf1E8)U zwvpRDT{dq$04;ztq1zb^V%&R!i%st3C+5lL2*EfAIukoeaQD;AUSfo|A?!m-Dl);rK%F4rIs1P-TRssVt#q9LM% zNyBbOGDu?nR?Dy^Z$6pFA~i%YZlM)eEfkzM*b8F+F&fJk1OaKfI}UCC^#G8FN%(f2 zrFp{n_TOPc9*1NS(kRFU@n0`l6v=d>ulE}1vdJoGjWRZnSh_t|3xL1Px)}E3OvHgM zHh3M#a6s8(tszx(oFVi&R&qW;s}|?BZ?lcgBtCc85vPptU?ZKCN`q>zkykld+Ya{hCmke$_&>Z>2OLP_PtVv9Xr=JR!(^-v=<8W58} zX6-+To~7&7E5H8%`@JOpL3g}SZU2M%?h&Do6y9VnRJmq#^HvRQ=NDu(?&cTfRuvQv_B52KSkfGowp+8R-cv?{)&I5m}*YZg*J{&j>BFs))9< z#^SFKn3SW2k&cmU6VYg@I6m5AtdKchTw?Bp`7%wH9px+L_}#mj59P&S%FY%%(+hvc zBf<3CvL>&#Qq((J)Ig_FaLz9=xVkYnK>re#O7O*&tS}WDu&+S%M!)V|Y8tWLs-|g8 zPjubAoMinXz@Zsu6W8fbLQ}xyDj#5UuNo{+NS;fK0VplEO!0q))g$nJKMolHjEiT= zWL;q`e&5F#*O-r>Xxl;si}z2=%<|~2b;Tk)zl+}5a(?yMRm8*7oLr^|S9J`ylXZ#||Ae(fSuF9@#Ug%Lzd zL2-2StlJqFeEpXrr4GlxXC@0%v4;d4$#bw?Fnk#?V3p0YH*)7Ij1G0atqb~NOt>e!s>6>>s~ zWHeF2DFAVN(yEb{8%N8ZrEYX9E988IOM%cYp1kNQQc=)W83DThb$?`~wDgC(-S(B^ z_F=-@Q67~GJ5!U07n0tsX&3X_J)5K8Zz0wZe6;jqc-J~Woa#ddw7OYd@uP&%m)ejk zwH6(;*HEqTK0csTF-nhE(^0|u1)=ZGVx~$Lf2c;Naa1P#bTPzJffMlu(kzp3Tmkj} z2n6x_+sha(7zNM$m^i!&nLd+eD@>MiUp_s0IR(dFZIJqxDEfceP8d6sX0M?{#58qS zZ|J9{xtAVYGf7B)_i$eju`zI}ZA_#z%LW+r1}`I5EE&cK6-%b;(FcMS*nj!HGnFL1 zly`V{K1%GW5!}(~__|SlW{ATlX{*PTJ}k=9LhQAJ7vCj*PEjE>#Cd96R+|YPFlmFk zC0M-s=|}jzf}`w@WYBF`L9v}wgke7Z{;zA(x=;3RLL{(k@1t|u=_!z$d9)l-!q<@f zQF4A(kpDNl)WWYI7JBgw)F|WN<`G6JoPV66#X#WQPmp7~Zukzz*?&Uvhub_epx$(& zFGzg?Rtu$|&FKr$Y3dwtQcBk~Z`XI?;2Zpf_i5?(K2N#vS<}N(C3gGrK33%9NJZ+R z;)x1-mF!zDh6iq}V9>uVmqo1}6LvR+*fj0`4HgHmV}|SGDDlpZ6-_zUN$01jkTAl) z`}N+nE7ulw#jeq*y?xrp=9G_5c(lpax(fB3=SYU~mlQx#hbL^?L? z>!4LtmyBxGpt!2bH;?N-UM`>hkWZaJ{P?1A*seb;_BGtwNP>y5DV&flye(I9gk(UK z+9IL$s)@xuW5JdAu6M8d4?W(pf_rijQ#yyhtwm#)UalcdpYzQ6cqx|m2Yt}*z?S&g zZ>Kq~ZQ9Ebv7?E(Zyi^0aqs`KS|&?ph5KhqixD-&g9u1%M$V2vUylh^$r4HC6gK%t zGg|cLhqTA#Ew@+{EH!+Evc(yikM-);c83k6U#O?kBm`RDZ?XrYmz}&4lSA_Y+@ECC zw5DpdIaTe;x_2^ht4=23ta1JLdn>`*cVcTAF!eY@LV1>ke#nawLdr4=%b(tBdV9>t*46!7JB^!6k>*a$?{Z#h3dPl|RMacjX!!%=v0`JtIbYrZfdbKI zk^kn49^H-$m|Y4n6y2`{ttEFQL)Z&8Y%B35+7=E!tQa!1aKP29OC=VO&_?$Te3c)!m6=5JKD_M8Y2wIWD&er%v;df(9RU$lfq`!M>FO=khK9JtSJMO|&H z@Q@u?ip6smPv)@J!tn6Tzs)R_w8s&wT9XqRUgoNfkH}w}ayZGV7UKcTM}}>B#E)fm z$2SYlX5hduq=?6nFp;g5YsG?=TGxUSXvIiB{U%AP2BCK_DdE-SxEkTAyvn5O)fmHT zh_fc9HWNsxOJ2vj`b)OppB{~Lbv?AS<*K6iV7ZD(LD}&&l0xObiuv%^yN(v(;C^E>K1IqY2UkV zkLB$zoEbZcHO@!)0ObljWTjBB?yb$;>FLR#wJW~Yv?LiKpsWA$zJ(q{B^ zyRk@5#k`OyvQ2^t(5I*%g*3`^;Qfozu$>!K39b$`sT#DpQG!6SH76ae)&<2N5sA$F zPJ9}%aLPL$_Qp@-Z{ED|w%$Y02ss~*ky27s{{849NXs)1%qq#M$M`JMpdSl=IOT){ zx72Y3;h6hw*wI4&>L#FW9T&=){j<@~(wn;ngF5<&oq!{dm>ruI=vakwO1?5U$q=3? zmWr^?R=3kC#x2WT9km+EocUXz7Aw62^M*u%VuV&W6`pi}s-aYpg(J`%PP`^I5h;Do zODf{_+2qf(Qg^UKh!AA{*lx3byVi^PbZw7_XY=-P!Xpdgq));693XLp>aIW{{4}X& zYm${QZvGOrjs<9q3cOI4Ylr9zypR~$NpGDjGx68O`u7&vl^k2)RbN{Zhzd*d$pMFa zO;G`-*d>*MFf5$#O&In#gOXLmC7w<>0ZC54LDOJU&LYNYMXriq+j)uOc z04yft>Cp5A7d_0|Z*pSXU_$X-vi|7!9;v!XiT$xfUV2{Z9-2z*NJnX^U02#Rwr?ME zU-0QeTv%&011SWmOK+E{NsT2mJ62jSTB&#bVtH^-@UHG_V@oJf>vMm@lm8*zAL?H< zqP8I6Ayu2l&}KW_H^o6*%tt$P1M=H)(i)qiBm~tDZY-6_uP?ATvB!Wg%jn5lXUT)E zwT1EgE;!Vmb_wcB@UwO@zjX)c=1naS%tGzY3wI6um&mbal#g5TyQb|d10V_^X3XXr z+TL#=?))5#c!rsH82FhoA3nUSTxyICxv&NCvc;2=%SScT*INztvH@Y|V>;56lhdVr z&qtdRZdR(2dFTiEoLSJ(uF``MfWZAK#LyhkST~L#p%kG5f|;?Q+SkL#qK+R|O` zW`8dnU|Zs_TGn{(*%^O$tkgS1jjIWvG!aTnnVxN*lC6+hE zrsK!aekIX&lG_T2O{O2{PT0h1!)lx3j9AX||3RXCyLo8+Ju7Z^oaU#7a=f$@cI(B#QX-NhbS#FODS>ewdAaZFqtpZ9{ELNT(;QiST478>K12|PpT z_R3)dIhHxWqdj?wV;m@d7&XK;-Qz)gB2rZGd9peBcMmlB`JH!f1}Dx6=J+qr#-H7iRh{ z_2_HCC9A&BO-B1{KQ)RJ)Hg<}c#1;aTGzrSjrf~YU>p%`U}L|z^k>-vM{)bDT{QCc zlLfz;BcKdTY;alY1ZE^GWDs1~tn{XTG{rY&-??LX%}T-xP74WE+ChHPN}}eH8#wt% zOC_s#yI9nC@J^sok9tG@KM7B>?=nt~BH1e59~6mf3KSS`kqi2#sP4~}&p@UZIzmrh zno2)989z|X0P<`-A>nltI$AF+vPRI%;)J+TKxi&&cPsv28ffB zNCf+%`=y9N=;S9LR{>;}Hd56!e`o*x5Zc5=xazN_ZvkRs7h#6ly^DDmudEp#(_8@u z-EfN;@8Mq`tH#dHxARUqA7XHaeVL~hFOwkh*|~0-15-cH0Q0bR?0rI>87vNkrC~5F zb|4?L+NPG}AEv|_y1~|ZvePF9FGa$k?Sos`iwmhdGy3>lD zD(SVp!c)62mQJ$kB_DS9uH&SB-XGPU;7N~cLMFiW4sr#gcJ`UC(t{3R{!Ar$=)AQi(C-Df9H!Ad}B*;Gj#FVw~OTdN>?PaWg zNQ`!NtJJW=nqVb838weo4P?2ChO?1Xf7v6p2_G}o4peU}u6YL@t*-p%ntAJ2{Ij2QV-q5#s^k$kjt2eSKKlPmH__;GV#!A8Xs4 zl+!h5KKN9fr~5wVpF;J$X0rEvcuQ|nCMe(W_&glKzv)ux-&R9owz#h+6)6<@iImmZ zeAyGRoYZvBR3grc;@K@aIZH~f118|rKLhrt-Mk;T?(LrnFE!+mh-#j?51C_BiY`?v z`|)StZy!V~efG0|Yd>dPu7tPvKQ`{xj6Xgaw2jl&^UeapHm^iS$b?sGU;QT;E7>3# zt@~}fti9llWOea@ET@8u)0!C9e6S`a<+kZ*H$7@ci0!J$emG<7eQ9qZv+3U%jrg{PX zs(#*euoIG?BGwpCYY#-Bk)rEcM*PuY*&uA!m4?8 z8Cj&U$Q6}#8u%~Xac6w9JLsRQpF3_Wz&8O2GQQ;HQQzrl-r5@4a5OcazlH-7;b53x zpNHToy=6LSysP*Y!ppe+C&zqv$9MRywA4ZpzSeKEVnIBfv4V58fZ16labFO?58q?> z-P;Qe|3E5ya2UYAjIC;c>pVUTNFxYfdco0;lZQDmhqaOI@lTU|#KZJ*_rT+dXBYf5 z(wDCCPZoC_c|G)Z#qU2m($gP2==kq8f&7h=i(_%nKmJ#rTUr|%ZgF2-=daNe2;__q z-cNO0IZh9@(Xop#G3lQOCIsiQd@Wbj*6r196b-_}c=j`-sN2f^SpG@0XfPE9hJ!s0 zq8{U9?|$xCIk|dr*%T|dU;dEt$y`PX>b&$PAoQzj#PZ{P>w4B6eWCl6h*a|S@ka|9 z{c-kkM|w-wyltE2ouKB5Q^&FDf5yx%7lC>)0r5XI82;Y3x zd9=PYywY5TH?`0{aGgWvr4tfJm;l(lNo=m@%;qtQk0Pq*EFPE|n&lh`=X(-(*t)4W zweWF7=x^){!6eQv9}Q9PFu`66zzcrXkC{MR%gd{Z&dJ1Zs_r_cpbaOa{wU)j8MMtl z{l@SEyTFF5SUax*ROKu`n&}*$<7wnH@miBd^8$5?tVjZ74UFf3`{T%>nLplj|n{KWshA^@x0^{p--V)#8aw(Gc5~G5t+?O*99$Tvnut`=YQ~I*9YMTjk+f{r4B!;PLZAV0*p4PQ6S&tFOtv9Q?N% zhHvNpibzTeDat>QCx~3kM=zUs1UlH8(iC6j)p@skp_q|Aoex~L2zp|&&wf%wG*H3M z;RE)Ng@=hV!NS738>hE~)N}#lWW|i{Eq8OCn~PSc%nDU3xHWGbY5zLAo7uD+b{46=#$byM3*GA;6JH%iJ*l{xqMvqsi&KpM7vWiN|=?{vKA{iGg%u_N_SUF;>qZT~9W`{RZ9<>mD{BGz*q2$Ow{OIjyF)`%Y%bA1gi-$nNAOzn48 zecAYM6K;HYAvmauCu&-f!qhTEUjrjUY}2?Vam6z$@Urhg?c3~pKi}NMw=p8}n>0O@ zBbUCybY0R}0(;J&X%>a!%=ja)*UC}l%Ir*zbXOeMCPEMhr2RY&Pw7hPFXgfRYw3J)^7m)|L zVa?Uu>M@ymbxz_KX<-P%Bt&AX1u$UNA4@NDtyEeCe%ys1RP&zo-%|s*p+9k206e(8 zID=ZS;D)9s{M@{mO@v5d_t}$Bk_M|H2D4zlG{y8+z;8J0468jALHZh+d=Rlzf7`z| zyla}$?5WS+AB~=1NwL|2&+!KhB2N?7EH?}D^DftmVro&*J%@9(!}R7eC${(bms9Dr zH&y=rlyKz-pd?;7@jUYaofx#&BbaJNd%@oy2ZgTnpSFgchi<|XnA-FF5nkoTajR9hOf5UPBZi4^4;I-X2*s(Q{ zZ?b!}RqlK;<0ei5>fEu_+!RMk8no^jdt`-zqlVz$FZzrQ=$oDmX6W6X>+0clupf@? z)=&4(fBmXf8^3X>o_-xObgXz?KV!XbZKJ*N_5FV~g)`!%^=Qg=6{u8%VVGeA9oJ2tkx-Eda#4}jn@FR-`=4bso89b; zB7mXl^?0AT@R}V9s>TbR*bhsp*`N-hb2ydOo^v%4>qUy~U$jNUJAMsGq;(TB0{Nw2}b- zg*{j|4({M1kB&NDhso<{`(}Jq{ATr=YXvX;rfX@3x2^r+f?{%HJ!sJ6TSf|(!3?QA z6J*WqNh}SVWo8C_GDrf(e`X^dYqHy4RXCqh)47q)G;dwR5>H=?Ghv>LwyzD?KW>MT zdEgybgXP&!Z?tb_@fWUn;qBbEhd$v*_lPE8W!U|sRUv4+?)HfRt~qRO6yNWqW#V1!Ev|_``|)UYV%5TTI8J=OIJl|E zq!~v0Ut(e;QsdS|%lV^;{gddA=RXwDuPz2B@0#ur*GFdl;|XwfGM7mdY9gd;EyvTY zy-1MXx3q6z$kTiyrj3E6rS@kk$IDIVMvk230;#80UOW7vk{}#)WmoAKn#EUY{nOaw zu%oH(e4G_@??w6`P3koPx@0*|H_jTbgXV3Y2QQ3*uPpp1y!IJCK88^@rqkws8_)Rk z{OCPE#6coLM|s-7PPO{^wS3e}$q@}XZ7<`MP+$-xOq^FOqh*SMrc8t z{QXS@!i)E3{(pspxF=TAlppQAYb!jG2+@kKnejPer>w)H**mLs#)nf*O`PaqjSI08 zL!!$51CppST|Y(cHMb9%$tBQIe7DTwf{Q{c@|=#N#g}|u&>{^%Wlpo!M${}Dmm?d5 zI%b<`QF0Mes;mSPd1)j8Ndss7nD5sm=vFCf-gG26ri-k!%j`CbEXahS(B{#b9erai zLKDA9Dhh8CxY^OIwYiKvaIJ;vopbQjh)}LG;~jD;#}zC;R_H9&B2o5}Q-_|;MSoMQ-*-pfDx^B`m9EM|a1*3_aQ@B@% zL#ybsS9TS&4Y^=R}9{KX=p!=21&dxlRvKckm;&dVx34TU8 z3kxznbDi=a#r#Bk>SsTB`9?W&ZRC#G2gjPHd3dD-!HLH|=8MH+*WNm;IAa0{kY^vZNwcZ(5JB{6CeGqi*;fva2N# zs0C6_&9b-*ZEC-N=js-%MvAg_Ort01So+{~vFcxG%5r$Z^~H&v$Md1ONB`?P1=icG zBF2o;w^+0%G74$cDTnx`Xub!&tfy;R8d`x{(?RHeld|jBuhw8yNz2O0z!U|zdoy`+ zr0(hC@?(J7;?+_n%pcnPwocqkN-M0fBr)^F@{dSxRzA||Q}vIFPp1fLW;B*w!~f!c z#1LZID)HrmF(-7|(=^x>jX2(yq6336kEoKbbih{K;oPaB#;J@=Dj#rWg_r8Er1A}? zJYzmHqa43y7n7sC-fuxe{w<>7=IlJoG@q^g(nDJ7BrQA*|GxsJKbp!Dw8*P8H(7+V zFuz~u8{$EHUa7%j$yhE}y=M~lPlb4KMdp@mL8N=qUO&`E(_D*|L3gr{?sQ1xd;9{D z8}1IYBD6Me`#6(hmnsH!b)p}L8tVNvYvd{`=e$a@-rUX-8$6#L%apihx?(`JR%X>|Vk(PP}Ld}n(iVpt4Gy;_Srn6E! zZlr1*3dLHVDit(x_@rj4PQseWtdJ~E!thQ^_T^`*$#{5AwHXGjJ#H(`O7I!SyV{gf5&pF9#6+WR1o3BQ6|1QmwVYB- z?)etwnzfRl7|8pNpmW{4)*suIA?lCs*gD^f6G^u&N4IH9;UyGfA!+oLwa>UgkVKE( zAlBV+IsLs0je2jV<&sKR%}7R+QI6FZmZZLuuBJbbzz<`aAiz#n9f^=wvXVvdwugTX zNLF!OLYcV=!BXSkzc>uM=mufzz;g4$2wyp8I>}l1zJ$3o8VK#9=AKFj35ank|KV+T zDJSAYf`atsJ}>HTz>CDx!|QhVG}6Umi@YKRXYKO1DDc&pa5!d3aT-4&qa%4O+2EaM zQLN&r7d&=El4%_PNnn5K%7)nWs_gIGNhmjSn8(7A?pauv1D59NvR^XdXjfJBqnn+s zE~U|tZl(gWRz}su=Ge214~TGkD(=F)ZQf=nJsZ>qi?IzD?$J(ec=n~(#R;fN!E0G~ zmGO40Z|@Gwk2R{WHlJOp%)V(R+4QU>qM|FsFfZ?JGtX5Zx$C5NvBL?ndqO^unqQz*-t;hWKqcvq} zj1~pmArA@@{lp9B>B^QfnIo=`&GCurLZ-0_z&XEB!r_GHfy0i}h_9%G+yOP$+ls@l z3t-k3n~eC3CH2%bxDdC^hH!p(k-D>edUYg?)u0v`N$@ocLlI5~d*oLqL0Y8Ohq=%$ zCNz|?p6%6ttixBw7Ck#WmfS4*{t}5$2GmvMZV(w69b~sZ8{qz$Nt)>4&qQ@A1EH(7 z1#(j=TV&?^lcaonQ+=^$&%uQ3R8Gq@KdW!JM-jg(J8@84;$J$9 zw!)iGlheLz1}L2VNxo_lh{OWl znWIn$oASnksEBQ>_YMBia_@geb5EucPTe=2&4X?A+I9 z^*qQ$&xdgW-BJwrUz(xj*3)tU&vHmt5VUS)P(j54I(e+ksadpwQE)Wuey9Nmk!QCaedvJGmm%`mOxF$dd z65J`=g1fs0cPR?a{MOq0VqcseK=I5u#~5AO+xqzTfL(cKNq&>HE2AcAlKo9!!_OSP z`s^+Mdnc_(>IDochNG|D-Z%}JoiyFsj_V2YGuVABZ6d2c>`eNsbUr5O;aDtjToow> zH^S2xAhu&X_a2+PW~dlu>%?U)jT@ouJ@C~KD1X3g3A0vQ42c3lYq$weFe0h#xX6xi$izWM9&&c$Xb45CzbP&sx}3w6UJ zyxq%gao||B5*6QscWg{V{7l+_NGB6JFi~udcoK*HnMs^o5Zp0Oi`Y(33f*~ylbt(= z6$^^g?VD>k5KutXCmk-2*Gnd0$zIz~@^4iW8E*TrhOF~kL-qyB%J4G|KkP>5T=0P~ zmm!~aP{2 zX6}92hJa;I`ydDY$$XuDU;>*>(JOX2HbK1nRuwLhRu98_sJNMFXx>bhE*iTPESi-|P!8h2U86#R!nd7Pr=)HZe=hxxBTlwt;O5phJ@xwo z*LC@)Ar)cLFM{*KZp}hnEy}>(n0!0TAHjHFak?$+(qht$h69xiwlvUNrBrW^5GG@` z%yQ9?U#Oap(~ZXsG=-SUX3|H}9A@v;8zry54!JoLYVwfC!XI~z+txVQ2n;M! zHn+%ZiH+Vh6jq^YJ2wCJ)D~x5Dk&9R^t*@oqA)=+e|*S90O^)W9p^@w$t;2b)If z{6PvEWap?Kk#Cm`T9;A^j<^tT9mejWlp_3uu&s4uGGskz_N_kBus=0}bvj=guS4x9 z|E7c?)Wwd#1)9reNFYCb(F!X82_OgE@WFE*8(UsmbkTx&RS(jKNkbyiw0$nrBF8?B z{ub<<^?KqUUJhG4p0Xj$>~F_kvB)Lh@~T|%3j%XETrN1Z+$$bgT}{t3ui1aXHO`18 zXmu*$VC3YLS(>Gi!YLb~5Mh!c7(4GM*%>~{N~)bxA{G~R;5iIKy2_&B;TBNR#O-Ei&ptr?P zcI`i*+F&4CHx=499Drlc69v90E60Dwg48$C*5dac50dA56fOeqW%xYtY5nrjwR^M^!_0D_xoIHGjg`tIHcK>!g(H4QFJs z1#O<>i-K%9^H=i{i{l93+k39DFNe(|!#uX54D{CSGdA>NjW>2*j18}Vr(Uc`?L2WYAhw1 z+`8o3!7wa3zpK8W0(t3ntB^if-@;h%DH6;C->gt^>KfXb5e81_%lEQyC3+B;g$I2E z6vF3H_figl7T%}+n(XAWKuRs{yPVyn7W=I26uxPGAH2DL`h(8ITzw|NY&Z%v#rX&& zHzzWvMJGC$ZX!zDBcIylPrU?ObrsaicR7{y5GBtbt@x%%BcTdihfot^#cEoZTm+4}WN(Zu@S(%&c;D1sgKBR_<1BpZlT+wR-~>ac51Q0& zE|n66KxPmd;UB>%wqSG56iK`3#qgY)uXky@8Uz!=p;Ue8f9tU^6i~6zk z{%!FfOaFx4L_&%;PX_3R!Q9Bi$ELA*j;dV-fCxByTQ%3th_L@eZT{Y!&*H76#>N!R z2-x;Y+mvDF$`Z^pKHQkm$X!csF1>cMW7{2UsJ}Ki$TmpB3tdFVr{rLBWy-G8E@Ob< zb=r9-Xxl$Uc$lQJ_ud)Xx|!fX*@?~RWGDNWsiww=(M7nXhw`f|jMJ^g3Pk`({c@#8 ztp91G=PW+@Ysh$flPc^_dcR(OVuehH^o(tfuGDwfvnegfd`8}+h${_*vTQ}e^3gpD zAymneySn6l?FjbgAEjnnrJ(L`XJG#yVrb%NH3d zxP49?pjbruo0kxJXP5~NpHbLcxF2~))O|ZSBd!3FhXA}UXXq0Dn=As!=FB16#EMSQ z6v*vl*_*3~yy!E2{V77ex#Y)o74RuHAFtuI&X3*~VuwUp)q%5;uCvx(0e#Im z`i8=MyVH5j(#i0GU}gv1N>7sK?r=z+%4SIyclzrEQQv<(si?QBZ3@1RA_~B(AS<12 zxDBtvN&EOYNi3_Znw;e5a_?Ez1}8-1D%m7uEY4L~e;2yHbraEe{G$YC#EQq4%GF9) z7Ab!zBR%9cxWEzw-^NEGVU^GuT zUzfl!=)iW2J2;6jH%|}!ndE^QzComGC7S#$PNH0>iOEi~3_tL1=f9&p6#fXB>9v|< zA-0DQcs04nLr%>M z_qOZCb)p0@gzXkG;7fzxA~QAz!39B#HUFzg;wl7PC6O^IA$RCZOR8yc-yiTRv(9(q z;_K`9MA~MkKMgOU;TBT}^jI1H3iw2TrDTbPJ$lJ1mXs4zO)c)9^nMMs4yNM;Tdtdj zYWRAyG7zs?2PCb+`>}pjJ#+e(>bKn3$Chqnvi+h6MEi-kU+{DLyw2Fe6i^gIF>hy# zUa?S#p(G{51oY+g7jezFy9>J4w?Cixx?NZV+4(48*eql|mM8s`|D3x!s-o_6@qMVV zzIf8-r-j6xtkU@?ChLk8qeyINHS9RlHrmiyRdH0`SOi_Gw1|^qqYOckbnq9?)9X(q zLLRtk_@ID&1MA$8KG}SGRS}syKw6~;dMNFB7~JNrvHJ~>i`}nb36V@9md&7 zn~k-Ae1!e3K83fX+KRZULe>T38laqjh^<3Cs!Kf-5sjVq7QYRhkb|$3tZ8NTL{r?U z2Yx91D`E<5vlXQqDiw{je6{-K{Jne{4p(}sQf2yUBX}@$!cEF7z_(McOOc9q3K8?8 zXw7dJUWY*!K`jxwO%j@1(47kT%&vhM_~Jj#9#XgsD2!h&Mhahb%DXG*1OM zaIi1p?d)spbk-c)W@zL&W8R)lm`yk;ZtD;1pR1RmvU4x=k3=`imE2#3eLpkA8*>Mr zUnUuwbYK3F`Hwtb3$5Imw3v46x{BIkUHY1FZppO8);Bq5zw3jE|p9YwqLR>_iY{#E8G5nLRP>sffwrsOhzN?4aa z8K9I~(ZP6&qDC%$>bn~olSr7wgZ_KoaB)XF4&zhwVUT+#5%GS6NS-x1LF(VJ+9(Aj zIZ|!%i>L2u5KIJk|>HC99 z5VW!*RkLNEm_v?&F_UdJ5$?a64Y8Sr4ZqH4boiDJUtnfWtYm=A(6W`Qy>?w^lO+Ch z`2P7w$SmhRr8HlQP1#QvYj4|*;Jp}t-A?X=bk%9_<@ngWosTX(KR2&wz4bN6 zi`n~tjD$%yv(HYxbUyn7=|%-#dL%s_#{Wc8nh@Z$>n}w9K^??W*+9uq2&Ao z1h-@?vTcup`t~LhvaXJ4N+nF&F5ylNX&6+}vCvL}10~UL`^yuDl9m~E`1lRFl{!Jj zq+eoqMeRZGhbV-Q&CTOfjFZeu48cwgtsgS}$!qppdg=(BUfPiycV7^_5IdU*-A`575Z!oPZVp}O~})YsAlI8ZPVe7)XI zXP)kT8A&z;Q&D&!;>MQ zbE%`KyE}Gq@8wvvzDow%&Oehcni)4hKy|6H(*J>V6eJUkN?f=|0+VYdVVtIhL1uJ< z7j*ZXRu1#ivHrD{RG)z((V+Aqe=-gUvn)%NGuzbtZj)QGMAD!z*Q?j93gS*nN{-7$o+-;U~mLzBut%JoIJ@PQup8yp~)p)_*&KzWT#8hbFGOn6p#s`s^PlWGq+u8!u-92GNKKhV5ZPsSk%Za2Ih zUN9Gi_V_-OD>I7{L{3dcu-%aZZ*5YJ{>lx|?X*WngI46~I~C48I#En{1TT zJH{!JYHk;8;4l+En?gZWhh-Ik zrF%x4g3_+*%^#V6mxcPNIYE8j2!Vw6UU%;O;l=9V>VQk1%JWduhlvhXOJ?sI9`iEx zD|5F3qMDH&mVuL#@REBhlph=+3hFdr#bdp`{G5FM3hvtAf&}b-MV@%+|8C7tb@KFG zVDxQONE*r|6wkJa_T73`Dq}@12`k4}5)~98S6iw|Q`sgWBXLX~zy9ft)RQyo@ooo) znpIZ%xv7_`rV5-N$Na#x`%DO{!_0*Sq&WKbAI83YmG0?NF~)5);YmsGgGOd_6ZFGqm;X;r1t`TKYRncMt^}>()6*eD)J)?++Y8)uBtO> zH3b5YZv(-5o8WzSD`q@fUiIg&CK|#WW6A7A*KP~~n%Z!b*H^YY>u`07a6fA-nWh8U zCwKJDm6x66Xw3J50xpVAziGda$aPiT3fdL_1$4@mX<-^;kcSdn!h-o{0k(fdZgb14 zLBKr@QFw1dkjB{LVH=kXua&DDxofn%F?T$_lhdCtTM3#b`)#JMi~q$?Kv&r&0ix)X z#3*`)aj-zjQVC%zJ)lrFYqG;mxQB0%_K8n&p%j1SlG=kuQY-0%TXK6RP)Q@oNA;On zXKM8to4PV_4AnNkuRbo}_to7UxBhXql)eV<2Cr`1Ol1p~$kEK;MXuBLAKd2Gf}NC$ zEQqZwt)z?NNHCxh2Y4Y$U&Nf65qTWE+@OA?1Xy(QG%&Ba$mi3|p=JvcFP92QBY!43 zUS#aZPu45nw|nu4K1iOVLiu&mga36%B#KA+EVZq$ha^^eB86V=zYFj6MWZtA$+<`> zvAQaR0J`ssvzMrt+poKka=1Xey6PhZ3hcPgf_bFqX5N2*)7wq+y`zDCXk4j}Y~0vK zx`V_*6dawXk`q`6Vq_N4)@(^U$rU#Sw3QIbRTU`Sfv+~;d^+Zp zfOWH={P{KwrZ-?%K4FlBls^69Dimom>)eDyxOE}CsYmvdNfvhq!QE3~CZl{DH?}%`I1Qa{sm}ha&z5;)4(TcFoKLn2D z*y(6XXk8)w4Z8EgU!7j6>6sO94a3+O6&M1kj9&Qn70R@+QrxOYwn=EHUE7wNvOTRo zgGD+hm5lPgGj!zY=bcbeBDHurD|%acRVM{^sQ&-9A^$R70^P9WXJc*RyUWZm)+A(V z4v<@gzKc)L1beUP(u_wUF1r)s+Dn|YUyLE z2==NKzxDA664uP4$AbUV>P&jIg^#ajsT(cf{)nux1(C2^qg`xMO~YeA^ryetwVfuk zoGvAm67$A!H5Ei&_H1;t3ao+In$Wd1gC<-ANeCgb3M0gC1V#VSk;M`$&I0;msPiqP zC8_lkv{ItEc7pq?GguT!ImDD$aASE}vJLozM+zM;%Xf~j1OzS~9W?K1F<(8R_&A;$ z=DU}0x~k9m#+xvoK8S#MlwZ;Mj|8or&7r6kZgc^?FE|LJ>Q^N~Pq5femaFK>FwXhw zZTQ3m;{OO?YY8MD3u|{t5C7_osk4W@q!GOA0n(hRzPwc@gW2e2iiHBx5umb;_>Ji^ zP$j~P2^X=QRqnz4IwKPQrX*-6piMX88(_eT-cokA`0CU6>a5`Cm9X1fmP1`I$&&CL z>8UrXIE#BrKTj^|s{*sq)I)L=p6swF@YZKVv_O3qA0L+Rb0Q_+!c~bjh>Rxiv1(e3 z_H?_;%Z-RxFnySvaDdVHM34G?-Wovf9pT z&g>l-&kOfWc2DVL2c|3B zO+>1jejPNMcb!|=!E*yb1U=CMJbc18ijYO|aPf6BlN9oIMk3>LQpx&bfN=}7Y|+m=u(y94UacORq<{p@gQiy5t9|ei zQtz;HM7<5v@XVjVs`)Tm4I+f~ae~j+n&>gJyO$rno`nrti1)$Q%|TypeVdPVW@+Yr z8YYGZl&Tj5n1s<#=0A2lAKJCo4YVYh7Y|-s+{&Yc09qNABPF~a>BaH+*mvq-MAtt*xS4M&5oP`>{yU2(~GrwIEhprJOZcVLIi%J>8h zT>rc^WhA5;e0}O&hL+al_`T#1`{>2dME$S$X^wPE`1n>#0}T42Ewqv~o^XMur~uc1 zCqyHS!UXP<5gy#umvkihV?y3_)`)u4&|>f_0Oc*0L)sNSjbV8zk_>gsS@Y4E(_o0+ zdC8wIN^gan=B-Syt=W?$ONgWBts7>BorRAKD@5t9`KyIyRMt5;K8$Rqit=&&IiAw~ zD_m(Q#15U~e^=ccA9ag{PM7N^UBMn^Af6QXQ)~+ox}azM4c$yjmlVw^-Pn_;*VXo4 zy?MEawh~ljb7H$Ohj3z1VJe(xZBaKeJlWILDnSd4aiXE{mk|?!QbhmTsW<(Xx*dJp z678Wv5Ej_3BScSJC<+a+Z}$DXHw73;l{|Pr{~L_6m1Wp<4uVdQD*-@++|JU-evmyh zzR0AmrCHw5-;^z*`mB_<4X{Y&w9<&IN;)M+Q5Y^8tAW)mgY4#Su{lE4T8c4qb0c}J z6!lo;o9}d;RlYSze+12kyM8 zqv1qHc3gum=j=6Ov|8=`S7U6KW$*l%28|o}Tk$Ef_Q=3C68akD5=2vcW?(d3?CTV3 z_ojqs=DU=ml;kwM8|(lY5^U>x-Csfr@Lg|D_59Hq&pB2VLiw91kgq(kWaoFWoI9n3 zKAF3;h3Ey{@)oO?3MTPd3IO9|$X0TVF#spe_-7l|xelyc&>k`z_3?B`GrTBSRlid+ zmX=f~Zq@5kp{DXq@-Bi2_vH30OIP27!+d%57rpt=|GPL<4xb*ZbZc#HXkO0TxUh(t zBfQII*Y`if8`E(?%T2m|4;S;v81P%IOnSwReXxzjhM}DecBKUhW=V=3GLsxl7(oGn zPpJ{(kMHUm694V1cz4ju+Ku?+vVGw(W_m|7y-%Ez+j9~b3vYbibl%G0pmWRv-!OvI zvCI}Dkhl9;yC8>{I+D=jUu2|Ahz8u_noP=1v3q_li%#79BgfUe)U1Kv+tdP{uh`;j&!G>P1fV1 zNUgS{RAOqk9N)e!X7hU&L6NSR@az|fj+SOoER|L@1vkswbB7*CRkJxGsvAvzq~uOx z-TG2;c4*Rg@a`5+M`=lEKArs&CF1Hoq;{cM1dZma(uBLx!!I4-54*ybo8HgvHdy}6dAX$S48+c^Y>|47y&CHcy(y%=UD(t=N zHQ6tpRF;V?v+$R1w$DX}StCQ*1sPbEHyeJJ!SEKCj7XX$cUO$bcK=2|vZx-tIXs*e zs2Ga;E-)?pBOQ9EEF#t~H8(VDXT-UbTAIi_s_oQ%)c0w=4<;0~)ia zfCJXJ9TqZo8x=80v_3kaj?WMFcL4R$+`rxHBYQ|0ytJBE!X5z#a+1|_B3zd1{8k;U zn(VbVPD;(ghS0#*X}o2(cD=`VQ&47&(*qJ>gjIFrnqqmLjg+f7&TFK@P!fL5(fRK8 zHK26=e^w?l&amZN1iB1D^L_YW0Xpl7ACd zpYKaLUzPEW%Av$gXK9#BU*eZ4ER3;C$a7RP2w5scBceIno`YjJ1-qE^uvnjDk9$>T z^V*aG^hu+@;8hlr9e@0+u(UWxo)F9A6XX0w zxTDNu@Kc*nbn8fKlLxtP&WQXVuA+!|{49a3!@p2e6visGMR%ymsBDldySm7+flPT% z%hc8L!*`85I%SzY<dUdPB}G<-GAKb@aeOP7sgG^UGYNy(ci}Z zqy9x=kuZ#AHDk_yMV~A-NU=DzN<#S`xqG-+-+n_i%Cr=U9%|!=c5~zQ5%Jo{@qNh9 z3k@qQ?*soB{#R7P(WuHuQ(0DF>MfoJd-qF`b~}%!@W%7+JTT7pIVl3>!Lw{{FZqJR zbjshIIEJqN<_KX0XlIf#w9WC2oM>$fdUlke(&V<;$--shd`c)FVZbE`48#qI(Z{C~ zS*VyXPQ)-r!XP8jR#gW?TL&SkH}`mFC2q5Oqx)RJ2e#`pNeV1qTIUKS>g&+BN|PUh z%rtFr8@$oXB=N{3^#$uk$!j|PPRjNpuI_(h7WtG3pRWGvpxY8-A^yN#opIK5L+E^V z>Cmrxr@XJ_6MqEMtB$CtuBoQM-uj#t2vp3Ck zo2xC1Wj>H^*8Tx^;`bMVfMU|_u0jdR5fCV4m7*XSMIu98hnER*>hYBy)Dj5I}7 zhaNpdDG==;PDUb&s9hqO#+x92Z-d??d{cIu_ExfEF6^|r*vPO%svcC!O5jc=wu4;@bn7GfR} zBcsbMnAhFkynVgr$sXrj+>G(cuAyY2z!RZgMOCUtUvVljbHz#A*W5aOv6YAn+YEfu zBr=lTy*O$sd1`kCE0u{G7?5CL@2IM)GeJFVUt6_B7Ri2}*Y6(Qs5o`KftUeD+~!69 zvq?UFQ+dZ*LVlv+M9g5{b~Ie=z#ANr2h5incg+1 zQsqqz!m{SX0cu+Oen%FxY>t-{d3piZLXbwb04Ie+R|F(`|HkYXVqzpRw2^%wc~CI^ z;;jN*cslgGIduryA~PAS3J2i@hP!))ukf5NUtC0j>J;`YTsH2-KlJD9E1}*%}#c z+TXmSpE_j)<_vt5RFe#tgFLA*>^5eG zt~iE#Dgg7y`1jPT4J=$`4*Z{{yBf;^+yW=7xBXqS46c6N)5Sy!=-~^pXW)yD2$&Gq zrPx>)cL%?eMYzm*t0vf%{agbTRdV^a_p@B&&Dq{3I@i4-j3@rQx#@wHDe`(%-5VW4 z8yged?wfP3DhFPnf5^xn&rb>0BmiO>=Edw@$jN~g_@uqOb7Ozj_tx_Al<{1}&SA9v zudnqPc0}FXRG$A9bJx4(?8BFonJfJHNUBZbhp2_R{?|CF+WJK3_GmGRb z2RXfHCV6XZ4SzCee4DwiSqjW~UaqbkvGMnA{FLVQYecad8G@WdWHmj!=g~#xuPoJA z?;6yxA^ZW(^jm8*uSR~v>5pMaDFUDqaKF3VXUxiyRnP=Iys@%BXjX?BS%YD=#QS7q zWyQ6bBklT1mVBdk)f#ZU09ksVc{o9EkcL zxvEiK1yH{aL5e?U6uM-5~{Lr8_f<1^;9coH zRA2K=Zt?8YiZk=;!f%g&K$W+$va;!gm6)X^It@(?#so5w;n;`Ohs|nG^`{0fQ}@7? z!QJcpU;#Yr>N6jxrzaMMiX^n@Ci0F0ZV0b?@8Pd+kp6U+=UwDdgVD#2_h-$GHBg8o zLSeugVA2m#&t2k%fj?|w5C|JLn!hmbZcvpP~`mKS~2l3#rj0HWGD~a+dt>;O~E*YdT#yR^z zmKWX%?|)mBs`4x(B3E!X*hnSeVkZ`8o~Fv6guH744&TRV;fF(Xk=We8havPC5&m|( zGb^61*t49-qr%O91byfaAK>8&DV?lLc6NMshCyoJ^+%@Pz*T^uyxmn)pEf3at6;)- zqkcjkNO1n1+OY#t5zB~RyR?V5yxt?}LKyR;Mv*G9^Ow_8 zD;scQ0N{ixdJTVdQ)cJpPS~Di+dITxnsZtWgg~^syGG*9O_+o`R>DojwUuukvR`1_kgP2#ykndP(6Ad85@tYO*wHTj)htLv<@4eb37*iAhDkU%GhQEZ@zs{DIw6ZDC${{yHj-cfSr{M1E?kB6oz@}jJE7!jmfUqbn zrco~Ak5ihW1GX`FeVhPQ7M#>DiCQ_4tzPY3Jb_s5CkH`wUCW6V>=52Mz)`qxj~R4E zw6Fs>BPm!UL*7qH104X@)IB0zI;#>o<~oLi3sVTM2%d~7@!PkCm<*J3=Tiuo3Lf3fR2e!H`uQELg#aE+(8lAX&!z$>E zaCHIsSJzidS52uP32FFU3B?aPScg}UO@A{v$7I4buX5GKa+vJ4-kt4+Ko1TNrqZ%}I<`M7hOMa)u;zMMCT_YA$GWN{P^Q97tPDe*4DyA+hQupquoJ2nb zla|q$re7bY-nlH`_m~su8hz-^{F(5y%1@1V!RD)cTO*KK`xiV>EWK1ecJLC2z4RNl z`p&H}4on{B!l8ifrvJLI^u>_eVpUTCdnPr?oqwm?Qva!*k|rHd+?h%a&DBi>bSWb< zRyshY>i@C;>R#XAnk-8rU}bF^lz$}=l0?$p{Qkqm_i4L_Tz(agstz5g!o3j5Cp zoa=JTZ^qX1{VM|?8_B;Y2N@nRjKO;c@@~?cjOPr=t7My)bTeiJ8rp(AM}tIi?Zk(Y z@BqkUAh@n!z-!bOqj|;a=aX{e*g&u+5F4>=lG(iLO<7#c7+q<7OJI#WH~M~U(Cqb7 z?KI99(8b8>tdX_w3n!c&ohm>uni0bCxMP%YrwRe#pZy#xZ* z7?2E?ow?omE7#OC1`s!Hssi!zFnjWdo4@o|mE2|gsj^hF%et$D|I=wQJ;}sF^L9#w zfh+SAAvPiLmkHX4G67v9lDoUF)k9s{F3%&Gkb)Y88T?TIy~hhXL(&&1ix>fOw%Vm>lI;WR4NSTdPtZ$m^eANkZKRj!{MLBzWcDQ%q-kprX zswP+X^9c|Q?q&383BUE;g~^6jsfOjpPmbPgHW&Q9zq)%|775(Hk3Y7&Iw8xR7Uqox z`*y%_`QYU_O7H$9V;$kx4=#Tizre~f9av_2tUN(ey5lUOp+VH_1b2!!lIwPv6sKA4D_F9xa9GV1P`C;Vm-IJrI-$vj!8iqGD#;yGK+=4KU>{-rt zzD)e>ewetp(OFqK5>irIM@5}j#n%HoWdnBBoP@v~UomB*A_hz-9e!elU+#!6)0zC|w8&m% zi`{la5dp)H>q_tCqXmz|U5FnPE{N?b9w86#DVY#M^AC z;um(VIjE%)vQbrgb;I9jr_Lf+$Ev;xS;awz-?nPqn=z-}9W6DY#qA5OWdDZI^7XC2 z(zIpNy-AzvOT#KAxcH?*h3o>PKJ**%6~mosIdY*Q21nhOdz?yh=G(PZIw#NiyU}MP z>+(YsZY3|z8pys8jZ3;oal2fEbP8rvm!Us(NQAsf^l2F&>&SUKYkq)@V)&Hzi(sg_ z?ZNEHI)%%y%s;ff~ZlFzf9fn6Zm-# zm#TVIGKDX7wjyeMX5n0N25Yol=DWaM!ZHnAJVM#@?}S@d;$z3fd-E-OivY)N`Gex+ zZz_(7Vw>-hOt*~}C!sLT30vWVUuCzj@o{5#5;F?vm=;bVsi2jJKn;~{E~yamyxS*< zl@0k5JdEC#&0172aQrNs+qTF;{u)j=?QLsE%8%f|t5<_HIDzbkoP`R~ z{>m)@9~q@|`#L5j5gz7n1R&;Vb{l|pO#K`x>o(GV<7smAV71upvTej^n5F%F3n$NE z0*^GMx}5(~Y1YHV^rg~ONAm@%(@=!lW}u=J)zW2yeMC=Evtzgom^nxq!vpJlznD#M z{d={O0(|$9?{Ci}<9n3)jRP)o~KoDSS_0v%pm;{+4N&@^02J!5MKN7Y})A+x3?XhEu@>#`3`1 zaclOs$@H~Fo7)fm9`*Q#MBh@DUiT*SNAx%?*gtLuL%N1;zFbK?vJKL!U)dDM?l?W>mOm&ChMqT$(0~*-obBVL)4@}bW>V8@+UzaKmg13LuuJ#NH zuCdhnRrfx-d~5JtD0Wxp;hxLRhg6cXrn3An25GdVyZGNA)EeuX;V0wW{b^w{sRr_8 zZ?gh!8M2vA?FI|a*76~Cfr5))PIlbdZzSPDvD{CJyg$K|36;Zwep+Y;N%2=v;+a1$ zgbE4TQ1*z83jcW{5l^K!E6vV~04>n*;m_<)NDzfn;mR!!Nb06o@axfe^gnFrhaxQl z0sPLm=+EDE*x9_Q8O_IqO}4Ksbd^hUIpu^d@oJ~6*!R-a^YJKnY@e$ zVQV;_2t&#|_l7r;Ji**c(SdDVn7@+Q9!~)If`sHE)$t2Vi}F~7pnK^5nx$a>$1Js8 zn7DTUS#U;wopMLzprJHmS_ySqpzDU*gG{8$1e*Z09ZMH~Bj9m1Nky43E93Vzpd z#ZbdYRA`nYZ@zlOSa}QT-)nODIP#e}2LPv}IQ>#bEGoz(xW!S{`=7gUS=N*i0`XR) zNg1witqW;=;?vjk*f}dbkwHo9|AY(7n z26Urf0jE`JXypszXC_gH3($HPFDhb?8|HdeMkM9(z;L{x*wF!Ga|3Oh4z%d}-d&ST zXF31&h3go5G4Ity2$19>OS=#?_Na!N^-~tBT#C%{g3yCyM*}d@8fa*Zc1!ubbvDB~ zYs!_qck_csaM1m(=B7mGm`On!`#>zm`p&N2iV1A;e0E&2$YL z>N|DwH2YZu5|EI_rMA=grBHSAjo7^H-_ze7&ta+FdK-ohJ3JKw9tD=l3PHD$|6LRB z{&!7uCz@Y3B(6B_uAYDR@qza1DrV%&t;EZzb*+q%AY*v6b65K;IzaWTBBiQkVY4WF zvieFFxNHKf1BXoAB)V<#6#g?2A~V(eLGG`u_;vr_LI6K{7?n{*Y%lmL02Sqaba z>%xckJ-=2TujU<-B?0`6T((XyzLGWjz`5Cv*y`U0s$&aVdtNjxOJlvSSUV-+2BvF? z3MUfJd(SHP`AlmR)BJ2j=xDp8C2?w~Y33@E|E}z}H3c)YYH8HykYKtnHH#zb6HA}? zIO9=AH;yK(!AHj;DS8P|!f+X+MBRHdHv?!36v#Ze{=)@8hP6)P*No1nN2Jryr)rQw z%>@!$2ilsVmv^gkrP+X8Qh@68Z6M%jNh_nRnz*J5rW@!F4Rsn$`}B44?;|3HG^5&1 zakEBao}u)HgeD~uL>D&@q*)G>@aAFB|Gmjfx|~@m%P6nb*(J_j$qMbmJ%%NBIm-W* z*1nMXzU86hbfUQtN>L-bOrkf0{IK;*NGaU85Gp_ZaKmNKB7;dwP!cWd_k%SrX}zQ6{%C^2@Y)WBPHpa{YauXKsmo$ zOhSx%-XV47%StYEGxri7@641oQxM<=A5_mY#~OH|pYx)aaY3oaZZLyw_)DZ@h4AG$ z67M$t7y#jkWs&|xS?nse(|Is81}*T0g28TRio2o3hXHlg$i1N`@0&zq#Lo9`2r3!Cn0wK~N6_YM)a1$qg)k#l z&G!p2MYW90p3>SYw%krk;)w668F2o-m2&J;(UhSQ5EO_VCgGt5U>}i8BQgjwe^HsE45wzLS>|y%x?dLtGrJ~eJgKNQ_%hgYb zBET>?q*L0!H}yaE5d!l6;i!2YDXYluo$_q@;`nhyR`Mdtnh$*xboLYU0bBb%*O841iS!2~lAm?H(kWfX?rF z^YUvZ{jAI6-<>_0-Ej4XOKp|mLL|Hv<`vn$&U~QpIB^uc=}$UZ5&otUe;wu?h9IIp z!6Hp5RGvTRq}&+94>3Pw6$$#iJ;Ncz!T*8QrPYVvt`oZsq-JTOEL*|47_#myGV=Ob zc!$UQoBz_>@W1NhvnTF-vxCTxrTgQbM$HB)yOjDXxe>G<(nC*YQ1(nkYl59NSCXH{ zI^MP?q+!)2VoK6(#w7-a{HB>4l;$^<@DA7d*M}y5$iU*E&$6LNOE|WMelz@g2O{A2(#RVW-qj&?u!8UIC9J zBEDe6(L($d%m@EMki*iu{`0It0{eNr=#ts1^Kfkn4nXlTv6wP@v|Qx;{=vAUv_InI z$HiObg};m#8Ler37Jbs?^?z}q|2ZgH3v+nz_Il2g%>6VFt%g%Nfb=*n6G3)}k`{|c-@p2~7T@!D>+|1ob^hW#J& z##j2Zw=-oP*5bV0`wHuh*7gswn07UUtMgfO|>MTQRohpUp7!H8_@7Ol?e3xb7s zgD9zLSH`0#d)4gUga~OZ1!_K>4K0nOQTdO=#C&hX-=Q2AP+lSW_>eGpbOjmw-NH5( zKjixNN`G3@lV~Bct#^=ZNWMOkj+Nl1)rnFNo4R!uO@A44)S7)!cx0M`wFK6qa_ODtZGC*R+^a>0BY3%G{jzR6(~*uM$)?K zs6g$%RJ&-lsv^RG%G2ie=YLl})i@%+=H^?MZA#_v?rQeJmb{zeHdMd^N1071$plA^IaZ8SuSUli3bo2U4zSTIijTeH||$VCAT`6x@W zC>n`|i|SIuG4sOi#;i&DPPatOYQ%KtF6p1wT&)>o{4>wE?Gc0aOs-7&f5*<2{{}S7 zf8PWpaUyNO+7KnmP*|@>C+y$iANFy=FlK`V4yv#F0{meCI<{7>(r0XUk5wv%C|%RII$7=zYs+%EIaVO@Xou2 z2e5cY$dn%DC+=DAfMY`P5oW2uy|_LkqvOg=R=9D`Ml2hc+3{BzCd1o(iSm8->Qui7$tI(6Uy_3>4u+V%#`u7@kyw z%}F|F6NXKZX-!%_tf64R3y&}E<~pFt?}qiW@Gt_hlb;kG*4HvR0U=TvsWTqC+kU<0 z+QaPF`>0%3MJp2A6H=RAnQ|iJ<%@5}4pVTTU-m?vWqXgQQDR&oVdw!4f@=%0G;09< ziLr0&HavOEtHIXq?fl1WTzRdAJpxr>k0qP5POP@0ZnZzOm}1$mK1d9-;_e zaWbzqc~GSggwvHih;>1efv|>(0tZil;j-fFmcKrhqw~w)ay3@`5l57bkyM z#UGs9)szs%pI58#(KimqY2|)q@WZR4nX$AVxP^=5t-iDgx)`mI`Aj3r-zTfP{08EH zL^s0AJuS9%zlIA^Gyfe3*oE~gGL(IuFJC8Aw{<*-ob8&4VD5pQn7);lIyu+{Q9SkK z_eVnKwg0Mve`Dn9Fz(d>lIVfxt>H()~MxI-(xOc(q6gjKt7W!ASU|?JoL$TT=!S@)nPQg_}j7vn#&pU|z5`pu#PEqIS!_ZKI85 z%)UnBc_l}ZHI0V<{47}o#}7N<<|bA_BXEfV%XNekropQwFO#&_30S4kC!t?+q|_@b z)#BW4S$L~>BV#anwxW5z2{KGY?VQ9w1NFblKgy^H@-m@1X`kR1O#k@wCj}1L@~ZuX z(Q<39?uV$^xCrPbbewO3rd#)n>VAUurM7R^z`a@qJi3Gx+0teyqXf>C7AE?Y@K$EIb9___{ zNV^(yVSFFO>O5Tj+_?3A7=Px%>cQAzpt>U+T3ll>u1N`b5_#!PwbUG?2phU`G9gsb zQIB|by~ct0pp_bym4?s*mXMvq{!<4m70<;Y{1zIcaGya79N%EzbGyZ;I>YB?*M;yk zM&F5lL6?9S!wkjw?{a_FC=OBRGTr-0qJYYAv9hYLrH7;>k)?!YPIBtCh6p&^`K{yY z$6Dw77l&W7_E3mPko@kCYlH;*p>F(@Ivm_RiGGQ$j0xd0NJO61 zjtt{wQkyHhaaQVI6)}V~W6ZIWSbN4H1htrGSr@}-I7q6}7HIq1z>1`C!MMur7tC!I z*g|uon!U*0(%7pE-9^4QtmrU+$bQUk`-48J-t)&8C0J%a)U~-ZX^R(D$4|g6KrFd> z5~M69y-x72xBLizS~S46wd~WzBu2cWV$bh7q$Efb*0*WFoSxxTQ3m(=ZfM86Fzwdj zJKHH*AIEG=<%h_=4d#M*M&ae? zRk&oNTjSf>Z4t56=}|P#lPj!sq_brb$wtADN#fNOqnMR&G>ks`{-kQWq!Y!fUoG+SjbN>LK5%7zPHlX}v7b|cy(xp8YF{+j~ka>+fm>$@#vkE&S8 z(V)KOmk1YvVN=4N8t|biJ(f|`K7ZXa1}l*KE<~LcGpgtoeqCdR;9d4vWWvZLQYywp zpIy~{H-sgB@Dd)d01bIu&LM_X;M_HRR71<%$Q~WNo=kWxlpR)Xmp^@sUs~L)oPwDN8W!N2b! zUbhNbYTSj=^}H-yq!NO>u2Evg4=(f%*~urEuUGD2w4jCar@{tN=l?5x$^L)oI|O(I zfvbsd($F^XH1{sGuRl~+mt80wVv&zA8(rh9$8pQR^rMETDPG2k1wrQuT4^!SHyk;oM6sE}44&wrLEZp=l8AUqu7+LkzOAp52$s0M)Cn}YBpC6r#ZLjvQ2Mn7Krc_JOqgS z+HOne+f%*6_UF0wIVaX!ZTOkIfC{~5)dqtWGNv$?+qa%8O0It(vQLTM?}_nUswFjC z{4bom@}Atf-_?1T_jx1zNaApG|%~3P?UEUxYe&fSv2_X@?VW&l}6|dabQ0t4ZrS7!rkLfRW zB@V;wpV=hSNmADFo*Dekl5$;76vnzfd}SQJX(|GU%XTiu;oSE5=t`8~Wl;({HaAj? zv8OrV{4maAct`Ji?V%$ke%>6x#=Hcz?K5^+{Ov(wDkv<34t(Mez@!loQo5o@weIs1 zyNaG(F>kHN z1eWVj{WTj8VAG1JL+d>BBc=tcdq{2D`!>ygZasoGlgsb~>S{-aqFa^+ za~8Pqa87tC5^W3pQ?}2233oemG%W6O{6G84FOFx}TqVU?cu*o>X)#g=ID|aQ3ufue zA|EJj`5>sLThA&)g?$VYMc_rAZofY`wE7}ZWaGvvAHTy$z)nbvb1=5&j>gxN;mI}a z?_o-s788mGwRuquVZ#~W9o&Osq%ko&>S`s`2_ zxatn4Zjc1W4i2%f;Wne@1`s556>26}_japr9))nNk$S6 z7S^cai}SypNJ|;kt=MIywe*$*?LV#Th^_s|OOSURc_*`*nUIjM{rqsPp!&JbRFk;l z*s-@UmAuWkgX|I>4)x#KgNOHapm7Mcfm6`5u&53AOCA0Yt_A{o+l;?-plPt&1fio( z#Xxv$*GEJOXh%7kw3dDN^;8Ma# z{O9x-xxcwjW-ydQ_f)`UQ|1v-O)LL!^9G!5c7s&^n|`}x_K@xR)za}1{iSP%4z%vm zn_Y0&VU08?Fb6ropWV0I+h!A|GS$sTeXA(rt)twRV=Sa)Hj;EY(<4r^P7|Op6&H|T zoc2)e5EJBMmJ}>@Ccd06*Ba?ae!@iThhZoi zcX;Gyrfbljl;uxAc4)fU|KAJH>V~{0#Pizrhy&AWpKhyRyFcj7k%`R^^nWc(*8f@< zvgafL5xL8|CH~Mb zq8=5hg^tT5<_h=k?sfx~Atfrhw|?918AekcKNWx?)zo7&p#^aqaesn4B}q|y-J?R-V0CYB=x2aW?Fo_I`Gb#-7k@Cx`R(nqpq-6iQAiIC zE?#hCf%-#^WLr5d#`j;iJ2;^{$(0lHH|CL0Eve z`-V95o!^8@uS*Bdbi@XqVY=7D#82$V(YW&1FC?`OK9f;bj>jsqad+F^szP}mmuX3_ zeg^|{(ftX#sKfJS9-IZMbafj<)%7XVVQCp29{fs6S=tS06<0a`lL;nw=(ykZnnoV{ zx88s$7oC#0!2-Wu?oEMctg-)^#TVmXhT;*w`%gpsnpU>oxNsX1YD-AO?r>R&C8Hx9c{M$Ua0YS7|-xx-S1rNqRq?SomTcEX%wDp3(Hp>9S>Qr-d>r}=fDSE zF5HyV#JV8j#zk9tC+I%L&tbe#A z==q)hU11ClvnY2I#k@c(#8r47hqHE(TOn8yCL1H&XXPrPYxneAq=ENWF5;bj+@C_8 z5h}YH#j6J`+ZL$o60^(R;_zqOO@pXL-vwhSN!(4!16$cZKe$;jLx6x8)%sCytH3gS z>Ko(zhwAW(vF+$Fy)r1)FW%L{}g0oRCuZpt6T+ z&?%xs5IcxhGjVe-h%xsKDSR*=(0aHvws8SRw$pmWC^j1Kknn_0KE_Ubsb@*F4ql3i zUS(pHPbmK91xLeEtDA==V_{PO;4Iofi%D19M- zKI|zGXaA77UQG1<;7Vy}Ak;KD6E7ptjoIteDOcvk( z&G?Bv7!#d=sx2q#(<2+;`WyUQ&&&Rfc}oMUrhQ!<DCXr_BVCtuUeHw%;EzP1Mdun`@GbShF%$bLJ1&hJz zJ=fV#g|$)o8TMZt%a;ceEQtoTsrS)vUIP`{mP|;axavsI_mpmK*Tlr6pG+mGA=_qK zU!xjE!swb_#k6o!pT*Kr6BFUCg3DCdB)+ za_YfP^Py-@u$7Isi$fGN$_-^qu%KlTwfP*0MQL~>|0H{#LpI5H#d6_n6}8!uZ$p_TmN~pZ99JQyt$#E+rYbW!AK~PC3!3#++w<7-VTw|z6{(rA=Moi(tAhRWWv#e9^;%4ED!5sMcz*Mu z8OmrEbn*$&UPQb6`u)h4hFdg>(Ih)f9#LLRPX_Bp_cL&^L-SKlDshUb_YFs4 zb~qJFv$rUxUO)_Qfifs34Ka`Fys?_xRkr@>MWM*n3}HJ3wc+cbfPC1CY!!HF3>tfs zL3o%8Ps|0Hg8M!rea{?m?c2~zE0li`*3NZ;XxQ2%wCt|ecHArT68td&?2QE; zrg#aI$^#EqUlQn-Zvg3r^)`Y&?OSEU!RKlmy8|GygEvN<)B^+nl2$2 z<5>u)As3$q`seG+OW6*^y%%pqcHZZMcdsjc8KvhHh^l(OPvenxC?j_S_CsnP^n^ZB zD2{)Ug$4iiJ)c^XG6V~sY4&#>Yk^73T=dZQjx(QyvZ5QVBKlf|tBMTd*idPFKZUeLU+}#0DTe zu&q;^^k1fui)Mh}Ts~5|leH&o%vw|YZJu7CU4Aatx(a(PJDHTjx3cjjO=h1xfB{8GnSIM$wmETqX4_YK06ad9{jTNkR$t;wBC9Qp=#5XLjgHw#~Eb5ym3oH!v$FM)u-?NS+=F8jnDMd0}j`QziGdWRDg?Ct>sQN*2wtQ{C3p=d)jtoh;Z?mgzlqla)>q)U?u$4UjM5$gJxGl* zamT*PEt7v9C#*5|6*+H=33pRk<3balV<7&ei1?0zN{~YfxmFT@ZjQ4-S~uv`79 z7zqt3RE!%iW1ft?t#3j`D)%HqxohYfBs1vHVCC3Y(>(8*FMsZI_XZMjrh){o<%D!i z{bNR0)hL-gCqRg&`?HVctXl2Ga$Z>8MD<~}FEcmulY=zRc%E={?IoJO-=XlCNB}u{ zOiZ);14EwwiBw4mU|Cf6Bf{z>d!3f}ka`E^9@0_O%S)=E{owYS5MJ*D%ge>t%H zF*)$eX;^hjU9)UNrsgHvXP+Yyr9D={riyUw%TH>a9d0^WZBaL$K~Gt%z7Ghwk#VYH z+rK{kYF_4y)S@4PuGg|o@Im6;`Uj=Hg>rv9WuOkKki#T8XNGWrMTM z+j)s=#fpN%D#uS>8T|V%ig-nk^viGi6p9rx*vkX1EUQ3W2XeAbr=J{A_X2$Dip}0v zMOaW+2|$mLnOBKzL8y1zUpA{U1BDZJY>)W4#H3BkfH9m)kmp@lKmn4rp8rv_&Np(iVCkm5O}QT2 zC_#q4S&U3s)z3f&LOS_;176m`ItSwOwG#qcUZuiZHWgzcDXSXMJhgw}))&J9DyFWt z#P`X1v zH&Bs3;ZKlCvE+E}Pk~5!cZfOe^!iCHg*fT3a6;^TF~({k{e)05TIJgW8I_%1JH(vU zYyV6^LjLJ1?q)n~DX<*JnLJ2LEpTFNV*9#=ot9si6b;QK`+nt$TQeE|a;n^fPFx&o zUzIBD&vDcG18US|t)SOlGi@gYmHANyJ9VdvSG%pcf(C>1^Wn=oRBU6ayb)Ef0k z=D5%OF?|Cv=aXdZ0!D#7XT>)xg`oox4)=gAENodoC2U6G>{o#JFck%H7>%2@;yX5^ z@08tcH79`ah=UJ(5IaCDL=o4J-YUrTu;bLzs1oV`w(34D{rtm@m#0+S6(ZY=5B96B z-`C_SZsw^M5?RW7v$Bk1r!ynDBj~9_pmRmkqJ-(NO0ddU;yTP9iU4kx=#7C@jk8)!jms%J-yp9Vb7DRGx{V;}_{O zj81tdJ30=k@uNP*S5gsDNck8pAAL*BgTyX3i!DZRh>*c_*x>3x!PR_?NJKOetT<^q zq~_lN556y$y`iB|MERDetyK;y#}jJo<6HH2!v4#~F`<*rq9)$NmRQ59iGOx=+vYZc zwwae8XsW;TopjInoVsOWCngH5eU<0G`L?*_0Z2$F$XV9YZdi66mFtG^3vb3_IpjQH zB22=<(eGkf8l#4DX3(a?!f2ZmZLfIi3SI969m=#z1GPp;0eQP_zW`r=_nR-ul@{IK zfbcX!Kzw?W5x7_sq1Y&MCu2Q-gF`U%3d$?glZCfgO|?Ho_Hvrs8gwm~^3xS0-5%i4 zf&ve`f9_|7fz}GpBk*`GieWn{t#+!99AM(ftI$D$_v_7l6WH`?VZ0&wn2B%X?blH- z@xe_1`43{`GDZ#9yt^vk7j0ix=sK?;cXn!$Mv_!2?J^6<##-O2a;J_L zc-4Ht;G%9rsq1zAnXBQPe(EKrHX~UE|i= zKRa6Ki;=4tJeHqr;5D&N3mF3~NybU3cvtr`SOtLfgId``x@5|P{nTxH-yj1(p^eN_ zz}SaT;=RjHTew2REv|#ENHmnAPh|sP&EHz@7)!Puf_oIO6A0-<#SYl-c(*@!@sttn z{o$Z70&p>HZC0?C@gd}T6yL8L-wO0O4|3;^t}LcZBsF@^IJx)0dl)NDhPEbdoAR7O z7E6>dpVEviZ<0lmvSUn9{>~r1lQ+w9L{U?_D^~gEjscif%kA_C1mh)o^h0UZr zF-0QS%`hApDau+zdZ_YP#WhUh{dy7G#N{NvIIHpI4a@7dDXv_Fp>_TQFy;gyulE@1 zrlt{C1|0hCVLK^=L@HcK@=0eoQ6l6v?R_&YrMHOQw(YD`D<0hu~+e}z4B!Ybt*qKH*uA0^{aFB zC>bF=NM%>D9AI#oM~PpQcYN9vim@Y0@4c$myO!z9Zki)*|Eqs@ozQlocxhKKDLI7m zO|ofZpr!SdHKCvNH&=#lc3&r-xvq?lAw7v%_H#f04h&+SojPJ;*!^4-#8SnL{Nf*gW8(tqG9{R} z{`&;1Ixlq}=?;b;Q5AE#0*Zre^g4WA=D{0xFM)92IoWRfTRLFJ$8b-Gbv^L&h^{Vg z=9aY{xKEZYee{CQX``s?`SstO-lnxSxRid8b>sVs@^TXlY3O0xx)^;FkNezHT*@>N zokm$cI|M1}s(yWa?WjXDMWuoTEZM}Px+?%AJme;K$JSgOx%T-&;>X8LlyCHxX43;r z?T<^{8-MIOPq)}Oyk3Jm+oX2+rR!t ztSH%=J@@!j#d>cJu~cA#aVOS@j9E}A5CAoHY76>TYuxt5_mikPg1>)lvrSMwIRD|A z;nc)L0touNcUynic9XvwKnAsilF=(p*u^clm={naSfy<-Cx^lZ=|AOGCE(Qd$#KMl|7Cdc9k2IupM% zdVpJcrDxsRjwel070JyEquQgwZ8tEE--Ipk&c8oQCg-5^rmV-~3AcW#oVxVFd;$O$EwBf48LK3KQoC?b18IB$DL{e^Q3#`1S?uuq)`7=a-K9 z$oCjsMM(~v%K<>T=S-&vyUFE%nM*Y094Lo|rnxK9o3@_@hIg!tg*#j<=P{K8$b|KQ zwb<|b7v73W{PB|5$}J7SNEHSS@zUK#rgYnO+Mbg&Z~u8#gfHGp|1A2<%TPVjW;Z zpS1TGMQ&#<^!)O6-JTC7t~YKUFPpStt}7^xd&1V`6un2>Mk{AU$<;=sloQLAI;O6L zJ04$>T5Mh1O{wx#hkIgV2XJ<%OvAy4Pi*-MZ)*e+*&4k5^Ly4a=QGAHg5`4ybJP+X zL>d|zuIvqS;PFk^CvCtSTiCJBAA2oLd4JzIe_6XA0lVDv6CYz>-~`kY9|V6ZD?(7f zxz@>sPH=LO|LEA*cFF`;*3lFB`%!jcCNX0&qlM-Ma35c0KyK@`o>2$;=e+ZRSm#4* zeoelz_A@jD0dW-dq9sh0mBWq52qUKa0;-BTX>=T3$2T|yya@CUs9o^2a3BZsA#_r9%;)9j3k+Bry=880 z4?eLyqU)+x2pt2QewCor&(a&mO@ZJW%0D@%C5kr-7S?w7aZ%weyY2J|P-viL;-$ zpRWAn;3*Y2=ofRIhZY@W1c30pP}qM`uon$_q(u{(DYGlW?pxpGiW&SBTX-D zQvA>~X(R8dU490_{R^{8jodPfsDv7y7q-WIq@(9<2uo1;mNd*J6kDq!aq0tU#n?{9 zC3?!a^gN~jgvmiNcCBT|=2JWI5eqG!gkIz9kO@YfV$ki7vgY>L9tUoG?ohxSj@_jo zwsnqM6W#*X0`wYQ;~Bi{^gKK<17qPXr`KmvDH}|x>wCN1oTiCqAA{5SJK)2s4w|lm z{}ED=W8kjf{4x0K1)#2jCOmMlRPlOuQR};L_Ox(8l9$upI_4F&Q}X*+OX$gkQwUM& zbs2f}^+{!=DK@+o*tYI3-Ox;e<(Im=A(#IZL4}N}4C#-M_%mzsg8;ptP=^PCOb^K1 zA9F;`@X)Et#NeE|R|4m0dxoCm%Sdm5_sn{}b|`+O5G}{IUjdEl5&{A-du0qVa^Zy~ z&5I`wLk~i23&wFD1K3;({5viR2EQI4bGE# ztvC;msh^<9)SQpReQwz_8*|cPpUU1nJ`@THlVDpB7K_q+=mNsmIWC^%r`^|#Vw)Ab zZ&(8ZE*7zp*)Sf!Vv}LTQF`9oepGnUw4?bZG>aYx(jO&E`KF~%U*Cn;*n$^~!;TRh znBqRCJ>>k`Tn$<7S!f7g-2lEN1{!kVM8eNR9)|g>lAZPUtrIpVV+I#)Zv{yWM#ai& zDC4Tovdtg5rUV+iZ z196C@o&6s?B;jJA8(Aa$*+7E-HBI)Yf#Hp)m zI528|TYSsyk#MN#l6SZdwFwaR1ABXizk8RB`-S&na&T;f;&$P9;L05l_4@H(*I<2L z3|LIIwl7w{kN6@*7i!$mzJCgFx_$vr$1PLZ4l#w-EM)&SxBsSH#7;HFEZtd`@AIPE zLFEAC8w{8#$*1hA`OdE3{=s8at#q%)bV@v)tx+w^Xd_rKd?;c+4=L8I`oukhs3XH9;gK zRLN(AuRb+#M~t$48XaboQhrumRzvtP;dV}cy;<=8y#Pa^%uamk>DTIV-mH`pECWe9 z_Mu3>hwQF=OIK^3^cWZ61CAs>wWXw7)x z;YIiRrXjelV3(^BZ&w2+E%G7}r=E!QkJ z-u%YZi&;V40o9i7e1AT(xP1tH$KJ#Y)XXpd=wpi(7k4{2GDe8tPa(dOh~U4A@zW%? zReQrpL&9$Yy~8t4pf6$9#or}da&8 z#6(79H)#)BYVjf1vHT1f2`|&m74cAh1>W{kqMD`V5JKR{ z8)+g0L;X)<_={K#fRahD&6U=K=8PmjO2_#1n1 zm)8_dwX3@RZ#ujR6Y-NAckP@Pwk5SFz%<~^8_tBm*QfN1^t;@nGdr6}gN4T$_}76% z0O$Rf@+LN)j!e}{OK?cDM6qu7!>`-I*I3J!lX$flp~Yt(w#B&Ist^mOkn1<+qKI4Gv0uUs^i( zrwBQ|aL*YYcaydwUt39F8Jf-Qkf|lxOL0pICVa^? zvm?_d#nj}}+Z5i=L&9WeJ?ID~gnMOZB5Vw?e6U3cuNM*SxP27j0X`V}4r{y~e)6IV z-zx)XkkYG0o29&43Ef0R$~ggviAyZzn4D}KZ_~N5&1#neIu-~62#L6Ktlf61xb3yuuA4m8BiZCo3@)n}5rvR+6^ zKQi@o-Nxbh8=BkBI$H&-V!XO{noir~Whi`qYdZnN(_0&?f%W1|;_Ig#Nc5;`?wexv zxfV$Fh6@A)7xti=7k_t>_&Y$3AO6yJ?!;QvfmTsL)|cOUtwx{)I|N%Dkq@8pMwb}P z^RJ}X1Kw1}O~zxf<@ZhUY?;?Qz5W=C`xvf}gt-SF`zpl?q93S+mz@(;1XLhOM1jCw zxGKenczqXZC*1dA3GAEF5nWX}HAQW0_Gxflq!NDTUcLdzTI0h_X4cQkWE-AmP7U&U z0#X%k1vt(K|Eaicc!kx9x9z@35?e^wKeFPJAqcD-99xgST8T+W@DmvEHlBuKww!7! zn|cixJ3|m{r}XP1g{C-;%HP9F1qvrP89Vm1)Deh!@Z!@j5YER@(+)k!%2T|qdK+MM zgS3E3b?Htz$aZQT^tVnD=N0%b0^uwYxq7t1KQ%m)r#ZKU#NZ^pR}ngBQWhOd9ab3U zitu)ND0>rEol_FUc~Rq43C0lZo_4`AI(B&W=S8X2O>)Ls8vnHX`Y>-?PXJp-ADg> zJDSGzt?E~*SRv7qz*-zFV&@~3;xK{AbMGI8sg;fR^Paiat!u*w$2%_tRg^PKpoXWC zLV#1dH~S%RcK3kSKlL^7=;&%)u7dKuu{s(KGyF^2s7N?Q5UP{dcgg4N+KeGl|>Q-^#+>D>bp4z6+p_vztYWW^4p(ciMz%+Gf z#Fzdl?%=JN###9=F0kSl_Y(q}GuEPC_wKc37D zY2EuEpJkB_lp3p$`Fpy+%hoCiW@uA~qsi6k8OK@_*i$ZO2opRT^^q)5dH0m^cD5H1 zeWCCq`%l2Nj`+T16O)-^l87@_K&?b;lLvX%0XQ3ZCUQ)+i`ZeryW5;|1 zn&|!0O1@7K3sFZA!4FAr2<=Gt?REVF#+V93zHgwn_&XzcwlxNNaziZgH&X8DZgYTA zWT?aJd(T|-!y&JFuu)q-F{SE6dkS+)^2gxy*xzQ#2?4&V?ZzN!1y6?dHjegA+d9kQ znwaC4)-h7tuXq`>#+iAX)O8fkc}z52p);3V-@FB@Wd1;O8*XUte=l{`E>EH-;$o+T z7}dd`Vebx%H{(ClmVzOrY$ZB z65eCF|I2&MJ2)KnBJ2ey(9Zm7X0pDpv_@RFtt6N*6=qX!?9IL$#6>WaxQ`-`nQ@pR z;D}Z1#*T@PP7V8aLf6@{>8gglZqrO-*Od^H&?=+PQxq>Z-;{H{srel?lyK0N@XaE_&h`2jSOwzPMUVMYK(-D?z_*Ht1+e^JJJUr6vFibEdokPxlZ6nVQ zj@09=hAdx6;{#Ug^SbE*_}X3*B-RLn zQ?D35EY+&A4SLW8K=+4h=o`*aWFz_>+l|OLy*#J{STOATY94-v)|ZFMLJr#y1rsyR zc=d*n_-}4#r9Pd*2|dg7E{pZH=D>Lo@yDn4#C?Nh4}o6i(cV>}sd~YT*DTuj!NU6S zj6nI2{&PEaI%Zx32{y5)lR-hXw*FFXTgk1aKHs|uWu?UvRT?Ct?@+7&T|9S8_sw7Z zBE(ra-Cl0P7NaSD>b*Qv;~@g~>{0hk{1JOS3(>sc?XGPP9bz!mKc9#6LeUR%-S#KJ z4?j{2tsY)BC8xH7ArV2ID5usO8OKn?I;JeiA5Ok|Q(DVckgg^ldvyipc%qQ0NZ6Pu zcY=w4L!7~DC6cC>%oOS>2nnX6R6<_6R`X@>0|BRT#Xwh)@a20-k24Oz3=Z*6(G~z785@IGy)5L__ zSNs}V-EYQrX`yYUvNGG&A44IkYc~pYKc?W@HniiylYp0jJN+wZIO56gX4U8m6%&fA zudx;IxD1F--4SxhT#szHQ!{f+eL1wyC&~KX_2gC#D2OTI38wya;RnpkXuWIStSB73 zID}*ZXcRQPP48}EzCPs01wPIZ`Q=;~fBt(jL$_opn3K-oib-Y!FsN78UONd;wn|PP+Hv$93C$L7J$1dXE zKT5)G>JqQ9uymkZXelnAv={_!e6Tx(+2_+- zr8qbFmhM4e~3!i83wIfvH44n#*?{1atG;dpxg&Dsjt?vy~arNx(6}jvT3)x z4}Fzv&?lb4vBZ{lN{kJp>1x=`{L3eG`Kf>Q<(I6ftBa~Dvj4m>Ol_1DO=?xcGj^Eu zijCh~RlG_t4uU;UtrFSv_v`(^3ORk}gTwIZl)F6MKvM1`{-jSsuquH#uLym1zB0kG zgc!T=@D1Uw$j{R5&XLlggkYCszZ;0TF~aX3_9B0!AAZdcLzrBoLe>XP`Jg}R;T69n zCEp|)$NjF>YuwBUh7WcI`p|^ix4KGK;&iRy+Y5#@Qv0TNs@ar-O%M|I(vd&E)Rb=!rXNb`TeV; z{7+^JwJ}eUq(OiMC8zq>m8a?VvLQK|f}_7A&7xEhQ+=sx<+EtKsw4cp_Gc?j#=eL9 zIRlstBDMVtxD1uY&R@eFu{3_V(>9z;VHH0qq&o{=}Ba^mO=)=nbfvWiy|zLs>)~X5){& z8+lel$+PVVCN|4b_XB+*o$fIQ1pRI0$ji!{2$b_bTBC}b=uGi>+F4oqRmXV8S#mEh zboQ~GjaI9tCB|CebqJLOcs6@nV^FG zjfRFq=JLf2#GkwAzpnoF--QRMgK-TwKBk?`b<@%$qLn#yV{RziJPbvGGBr!^c)ygf zJs!#ZZ(Qrc1I#))L~-#|2N5FO4f6whOKSOZ!@d1HAT3Tu|Gp^YLUV|VhG31a+y}ou z9%c~XLEFnX{;k-H(GGx}G5Nq4Me?U|0C_K!=jA7wP8vb1WBcvArzHVK)M?w6lnx$X_THJr356T zVJJaFL8K)Hr5mIrhHe;oh>7=^-}%nDzW4j{eE)dOmS@LWd+q00d#`)lTk|mWo|Fbf z><`TcK9vP&-PYOe15eK|;T@9cDf{VA|iFG*rL6vLMS$IPy2I^r=-Y0v1?89KPg#{ z_R05z!TvQy6!r5G!-FiI)~2HQGTG~%>`aNgd~>{E-58ThYl5~MqcEfLrl0I|8SlsB zG&#*>=i{Y1!ogz>wKs~l-$>C&{(V6kjed7=d+b6b_Ng0XeTdt80>{{SL`n&Oy7cy9 zr*gbIU^Pm&1|Er-S07=fSb5tYg3!CjkD-xu+J1;6efo?wqnFX|z|>j1#Ny8S{oyi( zUg>!z=T0Z#MCYgDAJOP*jN`&etGlbQD09Zs^XDD1qTNoCwz5tN4#%evWK6VUJBcS0 zyNZ231zU&wo68MTdj5_ISzW!l|1}K3UM%T6gZ){|{nT`+|-9e1=S>r1J-{Q2aDWHyWdDj#GH-Q_$gP~zS!u6NNi zQ;~g2dox~}dCcu4AK@^x%&$T1{fXR*Eq1PuH5@a>Zkw^SmVz-O0d#zuTEAf8P~*s@ z0A=Z*Lh*+vJPQ0OT+@*Z>~8$%OnkLt%H?RVP=X_s=NFGi);+VI)kv4l9Nh+cF`N!o zku0mBRBZbZQ7-!#-APSKa;tl-^?ZC*WHfs?S>bY#^TBY$jaF7CP~oFxY@{#x$3@H* z4e+U6iDhT5ny}1>Scd-dqrV&@bC+gq{A)!UiZeU=?sP*Qz*kY((|g2O_fRdCPT~msv2E1^PRMNE0TBJ*WpHf9$##?#e^*Vwok5uIdxA|xtd@1f z){*E=&qCqqaD8lus%@b|qlwHr&0gO3Dl2aS+XfK_hf8bBvyx9^JOY_L9Si8h^^E!> z|1Cw0X{Kd8EHN>pd`!=cyOgH6!S)o3$o zK{>aIj>Gvh@KlK(YpjO82Cd{A()=ihdC}Py*H}znX6OxkhUi{@;r}Q4xH+cEHSlPA z-(6=&C~g|1jk+82A)ki<6~0f$eu$c zcY65xJhCp5#%PDBgV3e?^bSV>L3z}l(&GHvmI`_gBvYWTYDgr#UbV5Rg?PdTk@<_i z!LQgfE8TCK9N1^RNxms{AOgIwM# z`?R~1u6K0)j@5m+M<*9AELRleB_1Ls9ww`8M|kxK&_;?gCxaZVcwAlMir=mU`j

KxOBaYW@^O;Y#*3 z9zxEv5^<|1Vns$nw{J;wP2_&2chq_IMf>F&@idKk=szn#u3Z^_01*D{59}co8o-F1 z=JJ=fCrAR9*>&dTyl{_iaY#D67=A^`&EO$d8)kP8@($ zycN4T_}f=d{&#hgX^RCE$Wbus8c2)wP%jCRF;!3OtCD6p4D7glM1pbdBU@AH3OfGu z^$itg0WU9Wnup>zc3LT-hFiRxErk>2H?i`)R2qnPb?9s9#V}M0B4DK1%k|uOTJ zd>O$t+lkaA6l|LfOv|C)(&z5C7*bz***MVZZQ5^>;UG zL4CQcXX%j=K0&^5QD`s=RprS(D+<0E^(5sc=PNzYSW#}Ynt)il zEcsbt5}!Sn&{KAUFfPgfDI?Ns#EJC7PlqQ*9RMKl2~9}5<}&ue{clZ&c`3CVO8%1*(yDz6aYeFt8r`ueuM5VhWr zMTtibJN(`njGeDR+T;#V%U1JLKoAy^lSmEz-9Z#Vy}=QA*scJ8e#tf24>&%Ih7yeV zY@n4z%@E^aO|a&v2leqj?8RVL^}rJOd_l>zDV4U;nH2DbpPx^G(G&x1BMYx=-86qG zs(b+RZh&o;9I4;iE;OLu{5H?C_ED}QsRQ4r@DolNH5p>yzC|iS8dzLhqAhnda9(8FSYq+1W>`J3-ku+)H+|F5`q{5OHoHMOe*vO-x-Vb<3tfh4 z2mO}=Z>RdAE@>$t{vn9+umfQ0d;dlFI>*DDy00+UmeI~f?5EvgBk)BU~%^T%L&qVkwfo7tFTin3_Q zj-Od7_qYXKwwRyBuLU4ZJHH-)`;MbU<5aJ}q5?C;EK=`V#9j?bSl-qECA5=AsZRy8 zx}_6Lr)oL}hUU@Q>Q-^Ow`?uz2o;{kzH*j+d{6TaUB$}G9WD-y*B_m{(<5yV2(~?X zkIuqb=U^cy+`rbH)Omf&aWLUtD`QsXdn>=wi9*Hp*?Q?KIdw?SGs8e=>YW1h%~h#& z+g^j|VdYRC`c_D$@DBj8`{%rzET5W|3&Ht#i>3RfYE4!jw&fvBg*1&{I>F|09(Wqa zMWI<*jpoQ;PhB%Jch=$2oCeYnV+S=1Qv{x7r#*Zvmhe9R*pSa_QdCahCzZ~`fR{>$ zS6~i97hj)bp@R%vnc=TOPClBEbq*zWUv&CP$7L$>)(5Ae>8I<``GPXw5{w$dG&i3c zkCd_4UmhvOOu7ifO`eqcpU?%VHp_eQK3JC95~?pY!#>y^sZ8Bwt4wRYJK{|-N*C;8 zODVD(7IVu!k$%o&=_y~J8WVG ze7uHll6BDe7nZG){_3@<@EoJ}q+;=GQ}d3y7Doh|Co*s^#FeS~_dP|sh>jx__bBjS zP1*`)cN&BV2J5)^^KByQ+Uj6=Yg_iI#KYGTCmWu6E9{v~phncXnX5xK*He^>r0K{=y-;JACk9(kE0r0t=7Ys!`P{7?}aD1 zy_Q~dD^FQVyD>)QU$_+`>FlpnAJs&9pS1Z%UJ$P2@=_dP1u{ms9;l=F+WsqoZ zWV|x|{myC+RhV^eBI&#@TPy3K*6Lw!r@&BLqj7BLj|SXmF<;xxm!2}Vw<#6dZ_EhU z`|hb)cs9;aaLvU|T0t7P+fm-giu#~ig!ltM)BidJeDNAL^T6e44>jvje8(kON_+2Q z{Avmduayia;15qIi#9EIzSGNYTI4Zzq-1MTpVxWql=dZ`SrIJ2oinr7@>+guh| zc4~j8B00pTHu}z+QL&_yeYa@~500H?LD~tDneFDf4UuaCF`9qkyVQASlk^BAwL^DF zW3rR2=C^hg_ML<_ZpSMHj|Uw-vwiPR`WMt5!9eDn@=ez+Vhff<{Wrsq7yKvQmNuCo zk29KIz0ZcdTLU7da{1aNe~UeJ9wnY$nP@^QO7Xl^WHgaV5dvydZvU)J}f%qVu%#*~i5@q4z+fi0JYvnL0soe1g z(yR`-?L{RXUQ%CB#kwDuHjS*n#r`CX81d(=6|23A)&_%70UzkOm~=N&CKC&dZ^6vo zYm|->hA;LT#gnh}Y1;<7cu^XWlPjf-jCRcb;KU6+den<_WMB}1*9zEsS}Q5v-h7?1 zT>ZNc2!5nu#C^_%;kv#yKU5h0odoiR=~Gx$z`0HYH^qnR^7F^H9_shW4Qr3wWu5mt z@IEzvZA{VHUv=KFygW#IWYaMHPJQ6rx}U|k#!Dm0WJ4th(to_(F@`VF)TFX=d2fPU zjLqjfTsGsGg8v!BCz)3$j^Kbd0ubWdj~(>BL4Nk_EeVhctM*>09RmVBDwxbT(%)-? zGU3D+8pfrUGx?-n3*(GI{x^tZR17_;99?vj?3&j`XvnNLUxhC&gI{ZcPCON;bX;zi zMyam$&4&~vsB5Nw|K)po$z-=uTi_7Lup2YbB}=&D-DNv=Gy()01qiZ+3K6L~>duKjnU_m+B_b)g--1cAk=oc;neD%}w^ zq&|*_atJbjL=qP~`CJIm^XD(EUfEh2e@Ai|^GWjDlBG+6!bJ0=dv)px4vSKRw?)F|cE-YK=c?dEq2o|l3fqfSgLX;-5` zNoU0(8N19v@AqNaLNilG9Y?xVLk&5CQ7u=ReO|_$WmUBIz$f?EIwF0neW&bfA!@!( z9K(+k4Rn60UysjX5s3&NAqDRfJWfUA*cS_tQCqO%m}aA$VV5O*;&c0BW(D&Wy=^kB zoK9j-uW*WQKDyGEDYT;X`$a+BEuA|$vGF}W2a;*FvyYNU+%Qn^;OC<}70Di+IbRtm z^$l{`+BZUEt6^F9(B)V@cdB>2vi-GQ@>_fBltdO#el}`G-cE3VCKrulW*Qgxw0$p9 zLos1^Bu*>>R>koLO`Oa~&oz8&&>)qO{$8v%lkD%-@aC(Ji)-Lk&G1xK$5UR^r_R7Y z#S<0BMZ!S0RK~oQnRHY>iH}nbK0E*u>K#k-Ns@>tzWPg*Mqe^5i5u%-y^ebQ%|RvS z&X5P6lKqOFzV%*@c|_h%T=CjGbQTJeguL0{&eE~H#Gl>UV_Npo*8a^Vww8Rqs!3v0 z9q@=^UY3FW7;#$ryc|O*CjR9xr;vxH>1O_Sr$%&1>x*GSD*I0{;!M{sEt`pfF90$T zV*LH^5n%BLVc7rpOwUyhZjorvK0{>XJYj$2yYI=)*Jx12Pa+W(`1c_@iR|5BcMqO^ zVkC^&Jx+z_t^KyFx<_{Gk=Iy;j=sLS|Haiu@Anlc!k;A=KI>`NrjC{}P}gC$h7^TF z0|{s6LdDRZ`cj_qse{*GTsxb zEIIm8;N7WbshcsLEKO@~7NmM8hjn8Idq3yX*XmL9p|zSQT&mn9$O_fP4fL~q^;29z z+YUcQ&iFiZC{o^-;SAFcKL9@9z4^k-+Cv`yoR%cZl2<3MSOh+3rp;4{%QSl@zsxnY zxD!pF6=h82r+vx*=b$y8m-mD!@N|ZC`u3?(-(}r-vSL{!y{l+it1YX0QBvG&2pik#RV z-u#5azs4nhzb^O`VMb(O3Cp301vhHGJK>;R0H<6Ir5-LOh6rvJoAShZ>85;)l*EAz z^p!05yL%WmUR#J6rn*hM?a)m0fp(!~PnpZGl5CP+40Ip*X~Ev8mL$o^kvf)jUif-6 zsvk27-|w33eO{lW_RSgru!xLt0d)6|yd4*pFs);(MXoz16n`{$p0*2%a!QC=af@l$ z8NFUul~G)|R`M(UCha?HqcZj4JX!FhAaF_qZ-Yf4egTfHbeCG=NR=jWX@ z7EW4G)v?%KhN?pWDUI=B{1MD30O0_5ELK`K$in+mBQm2IT+pI-(ye6R-y{KA1it_y zDMLSY(XAWZ9a1%&M%o$w&UXH>fjnDFlVgA0O{-m+2^4KmqOdxzmGC1b%HeIFeWzA_ zI9Eaw#-7Q6}5f`m^e`R)JT~dDoTI;_9A3KkL zkXcrA9^bfs1vS z{wJRE&NwHsr*92&gFJ>2X@tdVx6XPlrH7bq2tQ!y>I+|mRNVga4Hb33=M`R%ybNb= zv1XOcZ8|NP($UJLrxBzCu12SH+;P1!KPO&~VRQq+Xhsz2=x61ht?4tkPdYv=(u;uP zv!A~oFK^<`E2&(F0uIjoOrT$<{7LbV9tC;e6Hi?5mD}$zQOc5IfaYn(_T8b5NNLJ| z%5XKRJ?;NG&TJ`ev-V_Me|5yj#wvP3PzHf*EKejhcUWdxz5E#Qx9vilRkL5k;q^EF z@x~p4&$~DNdMXgLysOoh8NBpkcVV0|W6c3C=jlwntE+l`ssc6kH7+q~AvAKlj{KJ} z!Gir(Ot~p`3tT?`BH)GhBX|S%nF2Q&iOQo>zWLT{vMz|)MjkcvVYRrPxi3}Wp{EP9 z`KtARB+`PbJwTz1lvx(6ZJTnqnzCASw%gzJ*5>s)vzXbhh3s5#&C$_{ls;A<_mApr z4M~>Z+nTcn)53wqDW?t#EzXtp^2r)kMyt9cS2r{sk?~pBHOhXjZA*Rr{`g{o?JnC| zIi&W*qv|Bh>sUkyIt!AElSD3dFm+j#jT#qocOop3+)g#&T%} zYZi}F-Ad|}M3pwpTA9z7#H&RxM%*J)cD^&rCL_3=T%fzaqiMEt@joRIOl*b z82vxK;Qia4R5o7$|L+Y0(djeC@GJn`)HSzRou&i^$hkgck>Qp&$@&~YQp$Jlttu__ zV~(=B{Sk>vi|_v#H|`qf0mhlGP$5*aW%c6 zm7HB5l3|C|@J{c&^;)&l?O$<#(Wluks>g}vs{m*SbaXoYcXcIszn8Uelc+FV^!DG= z4RD_&J1iUkb{3&@x5-=?`c^3WOHTckrfi~Blt+o{xgR~J6*auhkE|2x1jEJBJ1`Wj zm07t*W4WTUJdH{+(sQ3XlMO&=48_rp?UC%m0yIf}CXe)~mntV5%jC3IK3#3FMsQ)n z=AOuVQk?@E^In?2v8x>C3!6WVVxMkL)NQ`pv_iwqVW_w-g+qyC%n$L&ay4)^AO}K} zAx~fE&JaWu;z9o$3Du)nT12RSeJ@P~I666}Oy9f6$;l5-PNL!Pbl;?$^6f0sBNB4* z+g`mqIsu``7AnQbms~dFgtT@*mf3PnrCR6Zja3a5TH2M>F-h6DU&(T09QLAI>@ESq zrNQLNG!6aAF(iLG|2+6r)*Ttc9nc9kY5?T)Cd*m;`pe%IJhqA%x!rJRZz2m|)mCTG z#O(Y<0f%-y0?s9Zgr@blby{T_g*l!GKq$4x|c}_*VzQ5Te|9DZ zf~#88r>@UhR@Ca<;wzinwLLGwwMYo zpZHdbL3em$8Q6<^J&+1A3GL{eSlsq{@JJ~31@2vNb2Cvd+g}jS$j3y($$10(4y>fP zyPN-+>GSx#Z@#Zf%i{R`?0i_Ru5J=saPsinoy~Hly>i$!B)Leux@l~Gmxz)};qTJ- z(z(W|@o<8RKO+dL8n8=vhiVei#*k0+k6rz9<>#n>T(1TW-v#=O*}ajVW=+eyM7azR zCk3YIv^XNE*Piv5UD8mkr&$#=fK%TkKj7ZhGt{%Z6}Au=T0tVY$@)G64q(;R!t;mc zglI)y5wfI4px-+izxKA~ldRy_&bYkaKFz^IGX`XF+#Px8V&uW+_{V*R!>>L{O_o`$ zoH&=6zO}fOYauqC$38ixS!^^4h+1kzb|BL7=w$;3;t?HtD@0FA)xh`n4s0?Q0~+a5 zogBCg`$?pB-G+R+YF{a~lp-nL#lOE;8cYjz)Jg9<6P9>tMWH%1rJCaK7{G6RIb+Z6 zA^pga7lYhLi@oXh0|w`z-itv95CyCIrW$>EoftJDy?f}g@D})R{YlbJ#xnq75Dd%& z!|%~4R6+D<4i4NS?(1_c2@nCt6~R>SA#K?q|L@pR|GJcd-XyJ;4f-p&ohso#x}y?B z%E#i2H!2F$$3=8qIiETuQU`BdT?VMqYN~t9--EAW(=vGSd!#?>nm-?@ZenVA0kx$4 zE1PQ?=SWVO{rwV68CcrgwR&ylK^|Dj4}P@*V18Nkhv{kO5gDt2Ck)p~1`M*}tBs4( zj}SDtO4rB}%QUrDwlWx5A2s6pq|!$a?YqB9yFEEYi1pXfcmze=r@uSL5g^br$5Z@L zb|P9^a0He$_2lHjbek->WX=h$ODuT10ynZR#A`h`qOBkECO`Y6r7rq;>l-|9@3Gt+ zq62jRBt=nOROV+S=sy3Ih(G(o>786@A6AZF^k@Gd`QuTk%b^M=ghBPPNixtM#@)Uk zPyamj7GagT!k_!3fu6;!G&jnbW-?Ol^*x-ddklJ(vWDMInk@l%Jg&&B<`0x+wm&q3 z$4vQOvj=eRFd5m2aEbqML(VdnOqc`gGh9oQM7bVC-KP~`QqreK0E2XXZ#nh;%ZFj} zMQeNol%l+>nN>D{UWzdXD>JW+JI7b0pJOd8ZxMQ^hIanz%6DiP^Hi33hBNA7Dv4C@ zXncJq>)TGD``Bb9Kq)`62T)Z2Up?Ndj{F(^XMaoVZ8gS8*tcj+BWHm4m8g7LCRcW! zMb81nyEw|@r9p6F+1gU|p0_5rnT1RdIM3XjUNvj|as%tEo}jVJrrX~=GN7mB`*B_M zXE1;hhL^X24QSIY0xFjZCK110@SN2u*|-9`jf<(JZ;L-0fM1fKW7S?3jlOJ6Ql?IC zT$Fu%N${i$@@?k~tkNwUpLuWmG(fMNcnCj!oZy%rIKf3EBhb!4C}_5lR#`j$CdJs= ztNT@vTg|maXP1$>&y=Yj43|KvZH{vLG_olhf|%QNtipW7vLuasXOus`a%?^T_*IJ= z8W^0Nw?X9NAQneBvh@S3t<${}=MM@jYodkKx@z8o4anCP-QJr=yTr;5xUq9|npmDS zO3VwcbpwZutlItQKTMBG8b&!5buhXO49(jCznIO`SoTWJ_t&qI5)xL9*9A57^!_Y& zM4Lo^sloJUe(VGAy^UPQlsYk4%;Oo(NrIXT|=lMZ9E#(7SC6}vUsMu=HJ4}X1-B+5$D8OB%7}Dbs z6@Cde15*6g=ZXO|gBB%w{{tF*-zoK^o1^E#Pj(!UZF!dn%Zr>UnCmK{7W`RQcxfEyBzI$$wfP3~U^64{1ynnDzYYwUJRbB8IJ9QN-vM1D~$r zyC=!?nvw8dVNV{3yyAyV^D!<`fey{j3@uhLsu5}_yT}HAh}Z8>-qg*Z-G&E0g;?a_ zkzJ~*J0b7i-Xy7vdUuRDiNBe1CLx5N3L|W**l)0c8U^o7j{FPp3D(_3g4#+kcHbd{ zgxEvNS*{<@+T)BT2>IPZ>k4^^OID5zj9nttwY4=T8xzNQcT($h>FW66Ma?wa8)1_M zuB}*|Lr}E|5}3DoIHGgTlg_b2XH;Z|ZCD7HkB>({(!T@9YkjhVfQ|H{nhY@C7aF#3 zXBXxZ2wD#QId!|ddu{PIc_gXaB;lFoN%okmXPL-pSi|48x9if+ptPWbVq#805n<^l z*d6u^}&<9NQQ+VR~J8`lh#8j z5m-P?rt;(GK4#14$|MhG4j9UO*Se#~;Pg1abRY5QYGin@sIATFT-N?GuVA#`z`64( z;>Gm^mT8p;``1^UTR?#6&Rs@s_OHr5<3KPtnUxIOx_y?%c!x`qBsR|;^L=#y1rR2L ztl0gN8$UM>SwxIbz}{YDFY&Lld=O@Qiypk5o;=3rXgxX3{z*`2MTzJFIw$Bb-ZFd-tY z7AifRAmAll=<-85C675hA*CSa=E4b66c7U-P7fLEChe1kAXrw2zX#VVE>bxm5d9b4 zCD`K@Q_OUmP#J9VdKP-qE!byn=rZGMGvChNpOHACqqlF!vdLpiuKBD1As>ud>A#pf z6!U=n{t?-A`|#E07{pG<6l~R~XL{xO)A4#67GqWc+rH+quUfHlM7!c`tr5)VdSRAG zr7`PzW*q?ejQuOOC=s&gi+vU0sE=iVHxOqO-wwd|#PKmH6g zJ_R4{GeEbU-_P#8d8pxVkA2`l1|oCC^*f~Vh2KkaD92w37KAlIKK%?ub*LKJcd_}; zc2*8^{o@=mch+DnKes==!JkNoxlYGE-j*NVl)`0Ba~x6~n!CYXKXu= zNAmDJy;a^9+i3JW{>Kk$nbUTr;LAzgJ9jr$W|E1Ckk=drv|Xf0kj<7MPya`hsbVKT z1;`28bi)7jjPFKVxNZ*W(P7gpc)y&{F>*CF7@hB zXfVOv536|oaery8{tD8hA3lF{9Az_3W?THOePS2+@{(`ghhF|Sf;p_s5ITT072%xO z;do>NHvEhWt|R^_Md%)$^a}9U}A8jWD}Hkig%rn@>Tb z3dC6CUywmkkLoI+gFP7wC~3>K@-Wpo&Rr75xt`nfxY{Y~y!yn)>aULg=+XAjgiSP1Wo9J@+Ut;?S7e@5WIa$krZ0((Ob zCuGv?-I3#2Tw;CFMNaz2(R$C7M`%)-M{!8{s!x={x}2?p1M}J2w=s!vDyF98Z_#Yu z;(_~x z^&#LmP#h#vNIiadXwJj=Hhf+V`(yw$1`556@K|qi2sLGa56e~2Y*9`jZb8yVq^}`m zJIH}n@gq|f-1#C>=aRKygQQ7MxN^C;At_|UsSsN6D-^i=Wo)rD{fST5vjgxWNsDvE z`tHr_FeO1K=K3vhPdCQy9|TxH=UJUu2n3L`*=J|KniHPdClzBMGGopHufNjo-$Yew zjb=~lH+yJ}R#wTAr9BUKn`|#hK%9-_tRgi4p0sJuA;3Md;qf#08aWM8NX7cx;t*Un z560~dNc5QS%;+LK5;zh5!KUd|u-~U=(^i)bHwlLI=`pS^rB=5wu4Zz$90!6KkbItv zga<%zK?OkF4tIC7GtDx45b619&Tqbc;1GdaJXjq+H)~n&B?ZWVFGlP)J1=-pCb^xp z=Td*+|JcXOfPpO4U1in5NcMi6XQ7gq!deWWc?z{wZ8sDF)(a`DIAeq`n>b?NtYM2I6>Dh%4Z!_F^Pr*%B(|+_X2~(nep2F1Cv>ryc-`dJbX{eR?4t*x|()+q&fN_Ce>$f!p0ZT&? zd<=B_>B@YYL(W6%&vzZ)kdLKYMQWY6Zo$?L_vgve$Ju0FLfUdukKdfwAgn06qz}}<6x`ZpTDOz zwA?DJX3R1~lWCRP)3Bi1_;)()&z1_X;ZxKzZkb+>eQ6;YcdGdX8VW|tlV|)TKrFNl z#>nz1<4P+OQwo7}-89BRjjOjh6sw4ex)3fp5tz2%%!19AseLk%w3`?CTMm=G57lf& z=$6v`p+}Rvkf;^GimsJlec3_!IYb;MiU#1)fC2H~d?5u4F1mO>IPMOOQ6T|llXBMhbr&|b6m z3aDB6hJz1`GL&qpxR%_Bf~%Ix{#8&v1Nl?o5BBrh4vlpi{eoJTZvr=Hck-Cp`#*)k zouIgrg{oz8>mzI_IQdcER(aqT@4H0iVR(HK*`Fo0;(_(DqpLs*1Yf>tM1^MHvB}6S zkW1cQVszey)>v3@^;)LJqnFJWb3l3z{#=4Y@=R-_WPKHT%H0|5l>L3j5VWTX2;RmJ zWLam5KlK1Mmj`<$<1a*-f)_M6u-D&5z-66cm!w{;a9wb$K+rM3bfxtn+ZCwTNP74JpNsNb^*%`p30^~*>I6k+7ZqRQx3bs)79VvlQC`2i`9DAw z1K|JSgWiujLNqAjJN#wxXo;ZJeI8owIeCAt;%9e;>mo^<)H z#moB@B>*e!Xt31nP0~}C>-+(3L91Tg+l$wqOT1t1cb`Ni9Iq9kiu=Av|3Rrz5a3}$ z#?MQX+O_dddSD|ZUwzLFDP49yz?H4X?H?*jikd!BrYPzcZCZ}pc(5bU?P2C^z| zet(q=0mz9-^geI=Mocq=jMH6|R?wJSoBb}yQctPzl=}{1N)`bfo}J{YeaRLesiy%{ z?7?%fGkJ?JD%2c50p`o6JAVMGwj;BS+ZKDyY5xBz=te~04H8wZ{e zMG;D>yVp8q?6%=b%f+W{trf)2-Rke+MNDWz{94U6G&h^lj5z_+L|dN{m|6$ zA$H!AWtF@p1_bKHcKXVEG>8OVtRz>LLDrw2C)^>j!Z*-bKxcgS4$&>b2E5W5+P~Za z4uJp1?7z6|-N%a=c3}MfT@f#h?OwYx1Dv+%z@7r2#0Mboaw*C@%bTmad3Rsb8G`%? z@hS+{d-nVp(BeGao)?IU@2hYXP#@Cb8|7sy{8|mXK7f{g838GX1kdl5|IeRZ86?;f zw2rSb=D-vIQkFl&#LL7S$Zy}ie)^vU5c&1Jk^G_-`>E1%WncuJOn|1EDGKi^{9nT<1YTy1H}HSDq4qpRsht9^ zPa6fGB0gYwm&gh)MQaI<@ngKoGVm5MK>d{nU-<8J@Rj*LW{elh+{QRc059pb2rw3X zo^Smopf?=Aa1nBQlR3Z}fe?kCPSi@dmJy($dVJ8tgX4T>2;agrzVU03=e+kx(nuRg zyMd1Xe+oh@%=m$kjislzSAd&`hnj;SK9m4T=o08a9}&@Ucyy#_Xe$#Q5wS2oipI&Bz#!-W(!{N zLE8FX0s*BFRpM1+LSsB42ox6oqxaAJ#6R8gWGE* z_0OFSD8*0+M_A1ghPMLj>-P=PzNoz&`1!CWcJ;I#_i4}lpHfX z!1`X$q-u3=R{Ld>t%x2>DrwwNXeI13`JgsB{w(LHJ>`;7%Jxe@WP`6JfyraKuzYO= zBL9)P@7{bwtqGwdhl>tg>n0?Dj|j<@WT)%5M^?YXlzV=xgmqnpXT0$BpF`#WXwNg?Q1(IL)fZq!f!dmH|7=>n#27w2|6In3PciOEpqDB~H)ZyPb z`Wjv67B& zR*|frx6B?+OAoK*34RI5{Z`dlFAkcbf)mI|@{``{>-!3KflokCo!EhF82h}u#70$P z35j&Qhx&^b^bRBW3ln5-18{V)9wpbw-TKM-RKJoO^lq~a!`l#nn5GJJ$4o;p!Xq`L z;{y`8gW_3-2V4dBxqimPr(vHgAX|_UWJ?krw*Mx|b@xrTDlM%~#=Nly(`bnyXP(2P zH2Bi>(13o)_3vOFS&lwza=*tM(oY-ZzoK?Q+*2Ylee>uYFIiS-GXn z`k*~I9g?6E*W`U>i>PN zsu;y{M1{hB+$oWdQ^>)qmv!y#-3%MlqH;_^LKmRPCGV!g?m6VEgFU89VMwiR;*|SL z+;N&VFCJ2eY&fPn3@$ zNjhBZnq&gLgpN8+K!^BQ%F1BR3r#VU9sD1mHRu~EU_(A&O5KW zJYlRWHLiVxf)K51?lW z`*Z{LxniZ0s2-`jn1tKbZ5I%2YiigMx&}w_0QN?HN4D+Qc|_X0&sqR?(;9QyP_?{2 z-j8BoUaBPD;5ZElf`V`__7D$n!SegNM@7GWF*}arDh8U};?v7r5|jr<<7j=(0g*G9 zkxzqG1QY*tL>FH|Y_Q5Os%m-u`Zv(*J(eph2(fum_XbXM!m)i#xLziUaJ=sG%0$Rb zL2d@iA3|zSJ(5e_ive=;DDx0G3Rpc<{^syYn6gF*()^OVTHgt4-aO)-iZL$;$yrZ2 zYi_HCNV87K-#AXVfCMeBx^gJxQ{gZl(WD_9o=v&B2!0L-VxcG`?3V+ADp(#lEwP@| zp_egEmN9Mu`2ZEXY(P$5cR!QckJz`S$W5S>9ppgXSn#V$hugHhf{z?CeQaw-vLHSp zN!O{?7+mdhZGq!HD7`aL>691WZ!v&}O&1c5p^J39I##DQD7{(ejvd``7A zf<^>DeXze#&hSwr=^V^H9&tD)v2_U)4$szw)~?^luVEC|`2jpE=?UT=YIlMCI^lB? zl3zXpCIq*JMtjU4N!R4Tn6Y5_7^v|jRjr4{6)UCSoFD7TpEda@3AHC}`zst4Z8PW9 z3FmXu645B>wWwfuaVWvRVcan4Qa2qgjVQZG%W{e-xaK;q+f?31yo8(IhrY=nI$^lN z*3a|fM$yui)r#l4y#PHUSq6>(a@$Hs4<;8iR;(sYw#0^$8&D51!nkzvM?!rdH2GAu z@{fN2*EaK-Wq^D?hLU&^d~O)1c0?$4c0UzyJQpu11_AJ2716d!Wu5CbvON)TBwa#zpOZ1R4aYL@f7wH$1v~G&pLa(r#WEneZe9#y zZn6YlvoY=kI1aKA&h6IyuEIggVVj&O5e?}uDhPB7rOUap^w}VkDo9=&H!K~j6Y9(h zT}JwyUP`06q4Jsfjc8RZIMj3WHICp~6$=Tv@O=PfZNI#6Fs#WjkWm#{8*MFYjUbqX z$Ia)TdWCK=jCRN(N8tJd@Tf52n_OHX<@Ydd8>>e}g_=v`mGB`rhZOWX6d^(2CIxL% zeF`UFe}XeO=AxDxA(X`JH+a;Xs`kpyN#Kas$Jy>d3(u*77iowam5v$E*pFxl@fiZi zt?TMU>EJ&LROKAsH((>vh-JHNpG8vzVJtfpGjnsO14_9K@c^3qcX|(!iB5&CqMF=a zp@~V>UhLDQ$k$lgTvlKEEqV|swi9vO_)&1}01rK8$%g0&TN3UYi3bB+X@@Pq;2)9K ze>rRcsjDqdWs$puvz23Qxv zn8)Yfi?)#)wV~%+YnP+w=r;Ka$d8bsertuR-g#CMq7y_MX6_17!NJyV9l3e$*^N?| z5BSzvwFqA*1O44u_l2?Io+qEGV$MBY$T=aTiQZA;Mv>9!RikLqlB#m3Q-Z$W<;e({ z@;*bR9QJ+ij`@$O1(YXYj|p6P*Scm?xBZqAZVy8koGCx-MNCidvK~$TY=dIT3HIZX zstNHexPBG#4ErF&qP?lcNBU3>-g8+451|^8#|=8>{NsNb>mTf6vpW3%$8{#AgjGgx z=wkb(a2U@K(nYFu4i}upNb~@-=4yHnyI6Y6fW;85Cxv_*e`VL=xh`#Zl?i8jME&>? z_4P4>EKCEr8ItaSBQl;rk!~RRd-Bk;CtR20520b}f)jFY#uGW@+93d ziD?iPIK72C9nj5u8X)81;^K8auPRe>MRVFW7^6j?Zv(oMQIl6XX2;D*w2&NX8|tTC zA)pHs_PN>_m*(o-YN!R8nws_lqVj17X{f{86%|CW0KtKW5$T2SEkr-Cdgb@(6 zS`k$FG*`QhC|b0>EABIw5))%P*%(xCPgQLMqhz8vgtk&R2p&-agQ1Sehl(ny0IM49yqju zB1U1F`Xj;O4GZ2-KSJYHLy}))c&DXVG8I=fB4(hS8rYEG? z3I<$iX;}H90MRkfGrscws%H`!yxcdGi2NB8CIwahZ}~ET{wR4S$njqG|63ttcqQCp zJfp=|p0o$VGohQhR$W>I$`Itt?f@{@Jp86$^LSzosC>W%XcLv#+V%j@{UxArKRKgT z1Clku#T)p_|Er!s+<1|1MUoso3jJylry#)vlz}v=K59TY!a#p)YF`-elSBt7syUV` zjRJ3&_=k*ycX;uYD+U1ZD*3*l;@ew!I0?~<)zcY(l|0P={(E@6ydgFeG%pQQMzRHk zm;%#vf;WTU(!gR+FL4WbKk(H5s%L5yyvTPzWJ{I=&#Uf)xhnx>36aPYykWk=&+3O~ zLUbsKWS{ZtNDRMzDB=R6K_qxdwPGcG4!ECqEJQUmi7maGwnK#Ryu@56GfEb4u=p^pi@iHGYHLADSp7mvBHv>=WL{I>ZiTqU z=H6ME#C!;Xin(SpNObG+5gZ!LyBvMBM|zat3v;FtvH1~laE1}+Hz_%GymWQEj5mgK zq{AuGtAdQN{R0CA&z^+>$=}@f?v-~P>!uS=%y^jo#dxKZ2_R~*ql{(6t^3m*D7#&XQg7DnKDdd}Wn(sPO6 z>TEZ<+^Cc!$-wNPwVMER>N5KLw`_UH8~sa)N7e~3MBPx7&*e!1Z}z`3hcliv$jmWK zd9dm)z#HcN1lK@GKgE)VKsW2Fmiw)pE?q#(5hMu+7WJMm<@qNI@VR~KRSSL#+@_lo z0mGT38jHO9eBSwkc}BSM{#@%rsO18bG)d@baqxordKD0~&*{C|`1ddo&b`oZHPwFt zxm}>VUgI+dA9m-+NwDr1swO_+@P-FmPeiQ?8eY##{U74qGb*a=Ssx~fWEG@ApixkQ zWROe)f(S^)K+ah*NN6&Wvq;WSP{|o2G#SZBa%yOz(8MM-;eWXI{_f1&cV@o6uKsWq zYq`%pdso$ds_LoQ$DC?sx9f+bo1}tC47ckXWEJH$0}j?%4T^{8gxz6;y_wh{`$I<` zgAdPRZ&xJ)QbzGf6~hOCJSlf;wT=MuwRu+?j**a4B*M=M=px~mByYxlW!Fs1qg)8q z%FA6}IPr^uOF_hXnZ6^(=w|=B7sQmAu3cTvdJ?wPoT5jz zg4>$ri3OZMx!0GW(uXza%8#1|&I0o}JoA4eP$ zE9&oEa_z3?DCXW?XuJ^mXf!Lskr~rWx9N?YBx7fMR?9Q>>O9Gg2^6cP;A3(5zQIfC z3^#vB-N*CdJ#b;dUC}3e#7YH~4x%(^V(&WK3l|s4jzmT;RnVVF`}DIey*3YDg&bf*76= zEw}4wV8SAo=d{o1mff=pEM%YOt^LqAv4w(5Y?A%s#KoB(T66tvMB zeh4#LEp+x?8gni13~Jalhu0cDM%N~YO~53YvyXDe#y~-(Ua<0u^5t?L!Xo{VylCUP zTczE-V04PaUH)HJ#RpD;MOS#><-v+>*HhedvrWP>V4_)GmUQC!587q~B+rX3@r$na z;$akHbT!^Dp8D9x(+%DJUh2xgI1x%2TL$~iU^>H)u$KufnL4%H;mb+eaqmygV5 zUNjOENy&`{j2gWJSWFi_$ zs_YI?d{Z>^)|a*C_dPR@I2p5|iP>S+AI$KmL2bIe^8*FSgr!f`5x-+wPI_>3X!7W-to%Mzrk1^FpjTMUqCnx_R=f)Gp9K z1~;~H5Cw36`K+rN^(1rv|Jb7Z}+_Pz54CJdB+Uc@CNJmlmg6_N^iD8%x`^5b~F6pG_u z)7^XI7wi))PWBn;QI-vMrtI0_Vrj{@pjqAEl@;<1LFTG+YWVHd@MRlW{X5?-s++EG z4;+TC3*;W2RA1jctscF4v247%+j1DQNLTOeI1)l{tEN`5I{v-D2eU}?YPPq#_VzEe z>-#L1C+FTyXqjFgAgqWqw>o3xVCgDJpN&a}Q1Y4&zW1Za_#bU zYM(Oo*)U~%{HndMuB^f<+osFg+G1E*LtH2Rr!RgiPL1K!=*JuYMzZpJ{6QvjFCO%a zwk~CSNcPMM;WcO#1r`dh95a8&{b=O7n+2MRNzHQo{G|AD!|lxA!RFWT z-n*VQaS}&|3pbtt>x8(&0h`MXBm^&UP{vu2o!@3Uup11;kaDb`CxD;GXFq-VRMOK^ zRIRS~rF!iniCuczrR_zSPi&$?t(*?0^6lD5J(xFbdoZaC;Ky+mj5Jl~tEytw&PG;M zRb|l<&$Gri@$x-+^2Chnn6EhS&Q|(|9o-V4TXqNUssFM z>MCQ2V+6(TUt>083xxMxGKo)6CH6gmWTj505*DM6k?lpAm7mhm<_6RXRzg}XL)ODJ?8)M^-rg8n2IuiHXYVz|m$mXL_rr8rmE7 z^l`!CM|@A}r4~M9V+rC#zkSOW5*=OXbFo?E)WD8J!3i6G&mA$dvP$XdLPmMjV&Xm- z)LOlNud1tStUX`H&GzUKI5ZM!f&D`dJ*I-0=3<};R|<$TnQ67Owz7I(Y+dddFw-Rt zFDm&~?ig!gXiGzJQd(4m^>%z*R$iX3p_hU8Jcr_`Z>)`?4J~C2qtJ-Dj0LRs`}^6N zL3i@OvB24N%7V`@Wrc`ZWY+5a`+L7U`fIA>UO74AvHY+Eku5GE zUW!??b4N!L`6ILOK6Gy7O*uAoXR$+0tQMY)gnZT2X38}&+g28IGl~nQBgu?!FqmXA z{3J`PVHS8nWVyAhTN09bk|Cm)>Qw1(}oYo{xWFr_~t32Hjg-LivqSJI*-KNfD?jGh@uF zARF-Pv*VMis}O!;5si0xhC_J;1(s_SAR*5#6WMgH}J&kDk!z&r~)xj&@=8 z$jMF6IV@;uufH^vHZ{I*4c>ex>iR<61S=b>&Msn&U;A{Oo~S|FrGe({IN!vO{l$H9 zmpseoO{3ni3BS>ifeh9bWy0!ejsVR!t{H{pW@gNlj+$24It%!0wR z?&Uxyu4hct0(SS|E1OQt92~7uq#QNRIq+<0HY%{i-7n&ZG2BAbB#lJ#l~R1gym;)9 z=ZZAq4!12Tj;zbz*H1%cX13OHvVtN9 zof@|czN9pTGwJ3gyeJLxpO}w~-wq}74Ln$3=vG=jkJO%!bIjqh-Y|%u5zCW-4!N3+ z;FGsNAIf<@f25Qy7X7h}o=sPj)QgAL9{Ccil-X>69R_tW(-Za;M0S+M(f zmNxxbv9Zp6KkQOUq#`y|)RN{FG0mM1x8JL;A-#QEvoHpc7Db#)O6j;De+tf@)jZxi z7f&id(^1sCqraJOZLgoZ)7Z~7z75g!AT_X`c&Lym+`3&3odrJwZe0x8ci>RScn0?3 z8G9o8Lel~Z*Z!c{@km%Hv&mq&y?-;-#<9~ykdt$9rY?pdh{{f{YM>lZ;IMzdSGVlR ztxL7@{&bjzoSb|KRUZy-du+q|zJrU1E+O~1QJl-t&;^#@77%xm+Z+`3a2V_1Ue@d0hZ+h{2nCHh^nW<|GY+ek`&oM}yLhl>@exu1Qt_?$L^ zo*M>4v^*L)s&O^I0-6tHM1CHf6?8hzDbL`sqzNLSjo6yBTb>K-<9}(W&2Mc%@-mu+ z;sf*UxRrqY+MKkuK@R)NXs}n~%-PHal8lx~yD`;E=F42z23I>y z9de5YmNSJo^7p)e_~cfB<1KUJuBuRGHny7cHuv@)39;#cKrA$gE1Q+)M&$|NiKTko z$(0~$KR;vButk~ZOm3z-dNj&T9MWAMn6vA2-@FMUD;Uc8@%<;7iAkNtjV-IwlWnUYlAf;V!$f=3 zsho+KiNm_75gAq>Us+qcTOqH^&&0ryNlomRmHZCmzSNZSZY2 zg$zLox~p?}GFG97YbLR~UcW=*840S^3CLSWX@#P;ptaWU?&tHUZ?R=w>tf;4?^HA* z3NqZLL?Z^%8hnB3p`_ZrACa?MuE#`&FZCO23A-Yx1HZ*~8P9hif66LXhf*@V)3M1* z3=|E|sZ`6tP_kgQ4eZNu+%zpC$qY|aD9?LfT z6kR-fl4ZB3P^4Ag|Dq`})%B5xN0y?C(C~@~MSrF#8NY7KjZAZwE76F4AgU!GP=rI5 zNA9mZQBYl4Nj^;CHx+d>SE|Ik1)+aQLiavg5*0UB7H{jIUKuuLLdLE1 zley{`8JityXA=ADl3oR4og?@XFFL0VRRhIj*XN;|w4Ljywu08h>l=g1tQrtl(ed>pC z>Gb=lVe7gyj=X$ES2y!FAB28W!GP^C?@zMKVeZ^c6(Hm?JrInb<-OOfl*V7$qskDp zd=PKN+@x!E>Fpr*ZJgBIb65OB|2D7Liak)sHcoM{zM@ol-iAxSAvofc+}3$o&Y)N} zJea!ykUQ|ZmFz!zwBziZIhh#@w_NcjtkkhFG4)M3>hzpZftD&$vw&~9Mry;BV|?pD(Df=}7>{9IJ={xJpD;x(-iMWX(6G2-6*<6tL z(>>2hr(J!KG;k8ntOR5Ppd{UnB3<{F4-1z{oQyBm zXx$FVgRQZYRX;<-nn+!ckbtX8w1I{a#RByDb>k_JU$@{P@7=O1X&qA*GotnMa4Eh; z0H>j;AOlp4^BmRF5n&m-R8q+6=Zr47oOpOZO->JZ2xjTDwS1~N%O-Fj5j~UVaxtZP z>WMU4AsVcB4yhG7LdH&8Q)`2AVWs+X+n8WuZB8qz-+O(0bcm(kgcNh^J_S_=7MJar zV7vtOGCu+)ojKJO5^h))<(7bLHBte^q4&dtqt{m500=vYst6vt^pluMS-DL6NzG8qpPhmL5>u^F_mIc8is(CvRimQmakOB9Wk~ksgpLw zSZ%#KRgx~|fv;DJ_s#NK-G|NZ>9IV5R#~AkX#peX@P>IFo>6PVXg%P1Z5jzroyJgQ z0_2@04BJPP@3&M`-bAzqD;u;0jMNae(Y*{giOvuV{P@v`EVM4GqlXJkJ!926m+WG| z;HqoC6i>K{x{b&g*-&jSQYs&c5wQ9Y&!mD89U57^KNVjnV1K?1?N5fx2iVO74YH7f zNWfxd2tMJ8;r7%9y{RsT^(VNH3F4isxu%n>BVLsI7pAR22;NAk9b>-2gHm00)g(p$ zy8Gm7bU0wpN&@%8VQO=&me40a!-^YDz!m2b>jCXD$|`yY0el#F*q5k^~^m7sF_1vbxm!$Kim z1xk@y`1lU|353K>ATPP!x-g<640AW(8cVyTOUw*U&%j78q3d0)OM{>l{6Jny5VqGcdbUWNg;K`8m4XWxjGbra*1K^+L_8urNsn zHm6Gph*P)n`Eqq*s@rDZIHQ~0baQv(*j+MgWv?cDpKXcz>Q8@Qfp+dFluR_A^^q!I zm{ZcaTh7-x5CZbvd0={IBeBGZz5Q^qWZjox{KX^NNUcU@(Ain1pwpUY0()|FT-;+I zC~wr>g{(RH6kBo}m%ZWm%gOsbFeC|zIj=;gyo2JN1uWXTi2@tXaSu|>GV!eGlz@Ps z-2D1(1T`<#q}^PVTLbD-7U(RYxS?3D66}a|2|oyYw{DWS(W`7hWUo|L_x6+C2lAHs zvX($8cTszz4x5kOb}}3Bt;Woun`DY%PT+M0L+-7y)6K)6)!HJFiHlXdwAmZU0NRlIPcMG_UZ~!qSNubD6 z%DMAQ*m;eHL-$9}*`b*hZC`_?K{!Y%$OI@!#+sh?S4e`_SQ0$YNm|ZJq7N!bz<(Bw zNdliJ#@e3u!6EC4uF$>LXhBUNOC*;FvG9%LW(ldJMNl4e4R})ftG+QpyTJFjBj|WX zakPV+;mKr;j^>J1?(bYI(Z%1-j&~|;tUsmZAmmlY|oo4G_X%h0>E%h7rD;xN!@@EigD1U2c zthx1eC%1-$2BYxx_Kef;IT-=m8eK=&K6r2c*Q~Aj4$f;43SBuO*V~NUKjyx52aXnG zde&`9N4)M2%s!}aWJ?pDrC`P4jQY~o+gpCpVkp8Id}P|5k4zGG&Bu2o;;b@W*VC@k zt>UV+WV@^T%44y#jrODFJ5@h+ZI@JxL0X+Fw-FjCC!&6Kmoms}ZxE36-5rs>(! z+_rzX8a}krIlcv@C`{1a*|3y-v|U-9s%Ww%5$TUm_qi$wgi-RF*f$7&t|5Szi;B2_+j9agzLEVRUd#oOPa>avVK^SKtoZ;&#Qq_Bu&Ez70ohtQlc< z61dYi%?jfkot;TjV8>|V*e#Z{Z1S$NMF|Evgh5klwx2E0dknX@#Al;PZ1KqEz<|>x zM;<1K2{%df_pseE(J`)Vpa`ev=Z>b|A;@;c#S?&CSwp&_sRCJEccl*J0gfKNkYaI&_D<6XH1>OT@hTQ>bfI$Eh;g@%pO}% zbEuRlKijw^`zQbL-7Nd{h8TGoeF=nTW%{A!HFJLl~WFs$Zf zM{dJuSVvzUv@9Xk2GT{WzDJVQm-Su+X=l~XTC_G!yJ+xBiQ2P@fVk>#=YOk5Ug-+)qXCkn1qw$vV^vA8Tw9ei}-j+8te9B~^V(b=AI-3tjU z&Be%x zh7x81_*}>OtwzBFk}MKqP~a1KiGj&lfDjU~DcdRB{rp)viQo{+Q!o-nu<*089j<<2S53%Yvpqh|dV48Bg!zkaQoqAB079CB~LeLWKtPPA>O z5ll%CrWF1w!J_orYsM*~TgIVI+gw`4oFd(30dI#nfw-TOk z$a0B2s&yEB{c)iL(G|hNnQ)V_Z}GjV^E~^mn3l+qVYLLVdO$bLZ*#weC2f=f_1$F7 z*`3OX)$si*f`bFwjDmv4q@61g zF_Hp-c@b65sDC-B+MP7FuSq)~*4Py?xPTkKj>;fmAnqZAoBgfj1T`&oG6Kx}-*>JNIdkjK8U+_?De#JqX_ z*L%{<$z+=D&fT32*3{=!J!C~udj`A&lo6Fah%UvtY#y~OQx+6VQ{mDO+RHx+qyuC86mI3Fk`|vaU#seIaTDrvbXPyvt=Bfw z+aa1IC@yryiovlzo+m1G*x10=o?G)XCUWg^z(710%S~$21LAXmA{-@ZAqE;>55fpU zutQ*oIwg9&6*a0z3?(LiCr}C81mTvv%s-oxvwSZN;@X4rCWv^C(`5`hExT4w%;38H zllEL>$DUt3xlS<48wr!XQfXCu#xuI^sN16b=*DQGX9vQ zu!Wh(+3kl?Bte_VF3b)@p(i(T#!0mwQ7QV^Pd)Drvrf}0MtVWc7|VYWGIZF(h#LoJTY zOFIUzD6jK@;NgeqhTRb88t=QWB${D^H+oaw8IA4E!DUZ~%r9H zS16~wUld!_IZc>YKRGN(uvhydhhg{~X4-5LblC3t>Qdns;+=We463cbzLh@$&$N8d z#3XMmRx0ze2 zf|jG(B|>DluB_K3{3vAKW!j8AEzycl&U{F}s{I)iUEF@_CcgZ0Il_|S*ag&1J0joYnmndAuO10c#jlN9432;}wvx=Xkp_PNpGRj!Kx9qBm)dR`<%&*e!* zI=1W~q=;1v}kaI=f3_%zMo4s*)z`0bJua!=Qqp z-|UtF4R?x(e}sKVNI0-?=xF|4mA;q$WjP9X4>LP^=dW+Ckt|o~;yAtE8%D0x?M{8c|0qd5RUSpX@tC2shtwZxF}9 z@YFuV#M1;#$(6@(e+p2rTze`+ah&GQZ7A?!!D`#5LZ6mjQ8(F5hoU)c2aIz&v9+0v z)NX53*heYaZuFo#&x@O1ub|D0#@qV_Vyl`AtLh#M#m{!U(3k4Q2h|EV*thw|)P?np z>wyzG*ppCm2l|YoNO7at9F}E=d!5*nn@0n3yK6QL)@^AqBS!mN8+3V zV(B@O%t&c`TmA9)rh~i&&Ir}ZtcJYbym^<}P0OUQO*W+8_^}C1lFYPSW++r+s^z7K zaxwI9L2am_wkAo9yU&fp937>1(f$1jWGb#mF$1t$6*eb$r{Tj0jrPj1KDob!3}s)u z(cP`vAlC2S3kS4!r^?3|-wcx_$65wDhgmZmGXVD@iX(QVD7E9mX8`YIHir-4#S?)& zD?GuMdAbbLiLm0Xd+gN%eOV60=lYl`jAw z(8A4$rmiu+N+%+6ZQGxi;%3-x86{42om!f_3OA=#sXFY=su3%!nQ$o?R{G$+G%Z1{ zMWrq-#4>H&Szbrc$}k%MGf2;ll{7Vd5=45^`SWBFGsu$OI4rN>gtmf~rO{1=4N>!2 zkhqcZI27+l6rGfo7GfH{p4wfw zO*So7#IS8Om2kGs=kgGm_4Gen0Ex}=F_(mq7Qf3PAAp*mGuAh%7K>C-yH=9rIOd)> ziD#We3an(LL+9lj(T=p$+T5vsEt9M%GdjE^LGO`pruGQ}$ z?7{UIDU(^kyX!#*lqv)?>|Y{o%_JUuj7pg6NsP&usT1sIPbnOz|4azF@CcIql9B69 zHqC$Dc?qzHPj#zksoA@_jpkq$9Q+y=OdnFY7Td`XRLX@-#Boij&vQM^=^in5jr=}- zb+rJh z+@4WZ>ZW#~uahq89fMhGCNCI=HL#*y!RSn*5}Myy}gs ztluRuCqDEfU*U8x%VMGAtSg!Lprb*+3?Kd02Vz8B;2h3DQ2phA$m}p?0o1IfT$tE^RSDM|w@1}|f&BL9a{k644KMcL0k%Id| z?3Qbc+-3G(tOlGO2eO5p#`x0Ne|o2`ZmuVpZG;JVn*?@|B_FMa1QnJq-TJ^+?M%@f zJ7ix-S4-?@6}ju1i6yd>Q3$Y}3WA>m+PVAd*1NR7W2EYfFW0`rhAIV|>7+Ld)+kv? z&QTQpt_3Ko|MVLH7*$~QZzNYyg`->iwv}Y=`fh970GUxV=fqdYLck5_I^yPg|By6|8m{-4OJ|gV<`|y#~h|uaO-MI(UzilLAQp+cl(uK`u`>5!8 zL8FgBlO>BCiCeXX9eY5Ul)`Y>_e$f33Akj@AS4n(nZi3|gdDG*ce6O7pLOgD-#kB! zb>4G_xSeecJ$mlYDx&cNRd*X83IF|1Lhy#itya&>TG)~b^IRlhHSnCdPs&y`rEnG~ z?IK}fW)@^4pPk4@s-JD)d3mlFei)bb*&^eYC{a<}R~(jaJrpMmB_$NnonJNNQO(5#z4byfbvS56>*C-hQ@(~`piLX}Aiz$5E zQ9lij*XKP*wLPUc2s{yA%-LRqaoh!n)&KO{u)g7tr&=VPsK$wTA3P(WgM>;SI+dI6 zK4R17UnHSEKOJ+1TkhZZn$ptu7ralTMA5%;1)*y+B|7zf5fRTsvV4QLA?ROE59u>` zEE{Q8B+EU4WSqu+3%v-R$i$LF5if;9iJ(IAGZHi@Z8i2$0$W-*z}wN9x~E58D1Pag z3pIJ|sU)vl{dx!*=CUE3=@|6PFo|5RU=S#uIRtSV&ph@#IJ+f!xzg^E!xf0kgdH`f z4@1m;-6s1*#Sp!)AmU2bk~Tf|DV=Xv>A)=IlszNoYWYwZD2pI8RmuFPFTdlrAbVpj z%7m5uuYr_6csa!3f)a=zQX9XF=GwIk`t)Qny^Jb#w zKe07x4Xt=FJ%LQqRP{PWzG8+!c_Y+_tMjNWhrVdG3VTTWlJfJtT{lg2^-1{lnf#iA zk{`OiKAe)<`nH);=CAD*MR9PDWcKZ$s-ZM7DlfFjO|}J*JRS}7m7RZaAmF{Hj7K}Ka&cSzVPcub}4|-K#$|lBV2EK2DHykxBGw#+C@5%wTowWZk!cAY;>!xezbtkz8};*noi)s zIN!KNgCVsM4R^v&M+c7eJP@yKPUK8B&k=*Ps*5+@0~i70awo3YG{4FI$?nh(&)%^6 zjlxq44r34iO-z(g`9ZK?B3YpHlRCGv@6Zpsv#vPAdq&fr&+4E+!>uc8>AMK>8)fxBYdkHEoEX%Y?&EEJq+go%Cl1-vzz zwVs@a2)nt)vE`7POybUK2_N$TrnLcxb1x3rruc;kdxrb+qdZ_uyGt&=el2S0#Y=ej z=n>}8k*(+X8KX|4q>d9E{Icnc___hAZUz)vqK*5>fUun*1)Sf^~$^Q&*)AC!0Q$5%F6)qy0;Zivbap-Rv5*jfxhk;}z z-G7t@;D8#QzBwBCM?RfEMfK)-Im@`1uA~?@?+<>W-{0Stl~a0VxBdP11Jv#$UbV9` zC6D0jl_wC&a1#Z)HR{obL%SqH_aKQJ`qgeT7m#ZRkh0_Ie`RRM{QwRGa=aAd@~4z` z_fuxH4j-R%V-^hSsku`F8H4OW-RS0IDhjKM-fHTp8e>j9;P`v|?X6*L& z^t=}~s0>%ko&?Hw{{H0hy^Z1l?0G|WE6Yc_nF?xv9F6FX=vZZ)RMFB3if2uDC?xc) zlN^ov9`=()apE-M8sKHnz0^&oK3wlFlVZzl!dkqGt`?CXQLPZ|CK?M{tc4V+t`h*hllcj8|T|4pL#+lm%wq|jc;?4QLh%O+~ZGinM z`3TfI{WIR6A7;48G{=~|&HpDI`0u~}SNYyQuO9GqC|O_uJ@Pc;S^n|N{I3%QAN~~k z-)8g>3-TFAcY!V6nZEi*#r&^HVb%5i>x@DqqJc`NMwyhi$v`uUe>~1GfpWSMo!ngkyKMtOEf~ciT)ho zlyHz^xn*w70D)AiyJvs^X53NcHCC-%;?nG*H!={fKN(vVL>Z-CPWXO-Qh^A zoZlV&%QWbR$!?AZ{C97_e~3v|B+k>q@B5vgt-UL}On7oZW=j}eVopxZy#ghmb7!^` zm&s3qUy~keGz4(p?$^;%QyPNlO2fv}i2b%z$K;k*%Es>C$@+Qw$$I1vK#@hWU#A*1 z%<9?=o$YkCZbnFJY6^Lu?VzX1jX}+42l7b*0w8?+{VXm$_4S(dQ<1BTq47!dLhH!^ z`hpSGjvDbu0r^loS{^yQK8(7ilV=NZ#R^eE7(Cc(gslbwHNvAca1HL^Zu3T8Y56b*;^T#pQK+0I!sqL!T~xw2rF zL87OmWMI1pBac-hDeA&dZ;n5y#4f?i5$B84lcjrKdOUWdJFbWq3BjRE0C%EfN}o zkH-NH#^naBG-TiV`dG^x#@^|`VuD*WH3gyP5%|-U=1MZsrcZ!XGt)ak)eQCYbj>(Z z+r;=THaV_7b=jScevXaz5Qy8atj<>qGm{o;*ydapWR^+;OpX2FFw+`|{pt0s);&Jn ze8tWhT9N(LMCt)XonIQ4E4g346?gtPN_E&@eo{HGB1cwcy-ANk&dSicX+MqfX8qHy z+Uwt7NBtDVP@stTe=LvRF&Wp=Nxx9zQMkV0?!sjfk10J^qZ!9^^}a^s8iVNmDFY?H z=WRU?B#4>4$!4KL0ARBnZ3!q8(eiu<37sU@haDmpxt<@b+g;p~iKgvNo6}^x$`FLk zyg0%oTwAW5^zn;jQciuSr>E+dE29h_c}tqD4{LTiQK!?I+lL;SrM776zKsMBYX&sy zHO4}X4bv^s!7hR3tNS!Ujzr=fNJSHK^JJi6aT^yPOBl{gjmXL>wCp1axLo>~FLqp; z1HI5B%ShJ+-Wb=5y7D^D)$f6xXT5~Vh)||?t)_Y_V6xh4WP|v#{bVC|0405Kp04OT z{T)8E+@I{^hFph948pAsBNm%n#Q~O2a48HW3e=_t(p_zs%PJ^zpe$eS!LjAb+(taf zTEfG^*cbIn=5J);k=R1u>w>|y&9Kf>2jl+mR3era;>V}$ZfGRm*Wz!TyBCAC_S>g& zjpsAkvLVs6xOfE1PoC5wQ*&ja+er1#sDP$KHTEonQyQMTc;YYh78D!z=El}quYsM8 zK=uZMTehcp_cjakms?ufe-5OFe(!ycwj)4PIXOB`2Gv{ou#Ct4*(%cy3*CSt5}79H zKTfC}RxG0Vau?)FvMd$?PTdL&fbZSDRSNTx!SK1XIV8D8F1k-QHv1gUXlvA%JkoQ! zvb3Hm!=>{%pvv%ERwbhP>`!-%awekY$B8a>zYWwrxLvm^e@aL(lHB54gp$_Ut|5}m zGdsSi>_Z@1vL>xnicv!HqxAjv0{1u$sgNd4yEg9FEl<62m# z(>ezn1oI@-_t=E8>DSz*^E_qYx0wlAygKe%o4-7#hP5Q~u6w~C9^g!$`exM)-9VsS z!1AKc>Fe;)OApwI_Qq_1axBJ`zt43jw8&>mpxF#Ov50O}R?*O~IGd~Xpi@c{4NTPY z1Ov62UB|QyS{@wnv+1E2 zpF#{DRPbW?9oEImD^`lG07;RzlCl|XmdCgOC>u^^z;wtrJ(Dy)bA_Fj)&#>gB!+T^Cujcm#q; zd8u3cN~kM>Dik0krecV>?HOn%88kY%`z|)dF9M7pqP?+#p=Es-nju_YsXTS@i4$#--#-b9?9x{+zfzmivVX_&(~Fz!}{_f=Du+b@ZV9-E9ttG)4KW=Ps0K^SXen_ zfLi_YlihILhT~*c^gMYBl~Ew!T{$_q(_=gDcG2c!@0nOIoXGC5iLUWuxv@+t-s#a6 zl<`wE7=ooNekAz$9@zkY)ySSdL_=p^N4jwOO_(YqCOQ%P^!1_Xrgr6cfim87EsgIN-|?| zN<{!C!Q1lzY-WtUipi1%saO{P3fQ~qu}MTe9r~Gu@Ar=>KZHOOonQQ6g#qz$ ze+K9@WTvqj;7xfpR<2=h&pQnp`JU`9lBU*L*PhOxny-$S^i!A{&wJhq zLJx?evt=hEnI*|Nlo1noz@2tg`8s1-k0aTOWHSN>VS339J{8bTT13d zooi+aM}U9QxYstuSW&uIMkSxf_N-ZyEp~{6I>o=>op@AuA_oFwSNdGlft#X#NE!&$ zJnd!OAC(_s5V3kVQM&kXNK8N6uswL0S|1$-4TPOs$xKzQ`$8jz(s}!q6G*{Dr;G3D z{%j81#cnokv8y-xPa7wjm5m8RpzQ@|D5!rhfDj%H^R^fybvjBO1=k1e)GGSBK>$QQ z!QvE?iAh*o=OxdFfJ^av$-`#d$0sJ1)M4i>BuAe6tV1bTL%Xl7Nfch&6YW9W_5%xI zK7XDgXA;?KI66{@?H=u@n>{(F=hS1LWUlM{fKeLeg4zL z{sMsh+gl#y2Tap!mptqbko)IZ{pYz(8F(v9ndpm2*#BDjzk8^<>1tWCKU(^SC;fM! zxt*I>I)t{F9KU4Z681Vn!(w*pFz&@)7s0v-)AwyVb z_a6QGM1gjke!ksXoq>hYlqvJI(l3dLi2?9y`2%K)sCfrveB5C?axs^`DER)jC~+~w zp>U7?-0U%f5Vum$zehiA`t{g1E1!)KZM^g#&5B}`;{%NEB zdmCvVN$fY2Rbkn8Jmh8nHm>dry-n`j)V$#Tx#H=bv4V=)M|tj65hFv$pZ%==&nQh1 z7{=b}Z^oBgpnS{AI&=N@dCOF4FdLH$!n%JTXbey^8;J zY@%y;RWrjMCgN|z-d-IDh+zDIb&i%NGpa#cD2Z z#O9_MmT{N|c1lc5J^FWwuv?Sfvu7BeTXM^yyy^e+@xz-q)=As;zS!%hf}qd$mUFjJasQybWwZfk7z}-9hNP-ojUSHlCuk6=9}P3-pB0Cx4#&3Kk&<}A6=1+Z9FEVKdrf!WfKYE0=DrFJq(1GwUZT4Tsysg z7W5Xc7rxlbIipWII=UVTaf?~^&L4s2I7-`En!g=fHAh<)=Kc8$KzU-RAH4dMkq{72 zw>Kj51F(pmO}CAMj@0{iGxR6or2hEQIy?NhxVNncOf~Jjoi)Fmx8v0ti%dT>mQL7j zKhgP%nC|dm2@v+#Fqu25xtS+$fLb_pIXmi>uy=T^UzPkxD<$mcRn*=Q2T59PVx-Rq z3w-~+1$3gym&|Vb^Bm_uIJWoWXO~bca!XS8U9d45F?V_$$rIxqHQQ0}+%u+boyesx z#W0nXfMI_7%F5n~{H^6CRW4%mDJ~(Z?#I)(>JQ>goTEmCDk?hoq{@PhKyTKrN8C^D zf9t`&E!_6CH9Tw-EAGt?q&$fX(el0Jn6$K@JRA@WlF!5I{=tF#2wb+)x9Ck3jc!E~ z-5zAUm{sPv_x*c3yfFzhApR!eqiSY$mY1f*c;!^sG4aci{tfreaKG#cejc_nU|c2& z1KpQ~GCOxa;^oCI=aXjsx<}8_#Ce|AG277Oe4m-Ej`;DHT>X~>Mi;(~)y(y80|=DM zI{zPgZy6QU+xCIZ(4Eo^5()xJ=O7>;Au2845DH3%bj%m$N%*HHE&OCp3;(D+bE@+(nO`YYdT%bjZNl)IO%lB$V2QHEp5pEo zDpR(|w0pyY$0oh)Hj{PZes9or8yreq$iSecrLGX!6*0IbduOJXBS)L(B~ohJLBamX zy>Lf^j`$@uKdM%~dwk02A~d(xxg7)Gl9{NgHH)uPqGk%y?A@0Ichl2&Tc7=dVStKr z3;0-`EYI4m9Z}VoQ#k?Ox5Vhp*fbTQ#G~ySxBz}!NCnS$$_u& zJW~YO4Fwc>%bI{W!GuEm{O_ma)pZ1>;xBbU(LKwSd&%?kHy&)}Gxa=Oet!Ju;|mN4 z8#Eb?fSo{(Cc8DWoXF8TL(APENqVSj7@C+w22GB-f|mA$m1BVO589bZ?o>`|w~#(Z z%!Pf@RWmFUb~6(Cd0S^R;D;Pah#y7{8RI7$e4kmeb-0~~2{U3a#Zf5#Uk5b6o#M9u zxaHj*)NGrrq%RJ3i+wXRc##*-RRvo2`-sd+K_8I%4e}F;5 zwGYpxFifh9(1&J|1e(chRM6W^4a0}_1SVRqDjj8S4Q7aZ5t>iC4j)S;Rd3_^ZW#-i zDPqo9HjVT?;9zc3wO9MUB6^r$C#0uZ+l;lSA9IktpRgu8a!jTlDm3&;6nxS&RCy2w z>+^sevp!p&YDY$Qd{spRFJscn%||Pg?J)Zihxp|*$Um4X%o;*AK0?xiQ2q)5i^QDo zKk(gSgLY&N3v?lFIu2G1p8Px-TgKoEup~!T5i=bj(3yyyf;^GKoftGt*ULcM3->$s z)3q4!35o#*?I%ZcQ3I= z?Y-C>{oF~HZ~ideTvm0ou}wF>K<4*-!Y&KK!6ChtV{KS;`|jw(`LOcED{`9lR@TYM z%a&nNXTq=z`sOygseQa|$#kbilg;F3bbcOMq$`nuLsRgSZEwkR!3GmB^b{r}4%SnJ zO%{Rn%bGsbqqiK_;)TkPHqP8t=yPo9cA##)1KQg6R^qiPA`vZuJ`&Pj{c(XIK-|tr zwV-Ao-Ov_E;(;@X!z-vCH3s6d1!mK$ygh=}<%fP&@n+`;zI*p81-ov?NA@tz?}ijF zl>M}yc!d+4f8_hcByJaG@%TwBPiqLP;{88Srx|un(U{~#Eu)w0vng^HCtl=l&PSzA z5GOr&E3+rv~51^zMQKcz59}Q1u>1kw#2*1(XJn? zWrK`yHXskpiDxFt15HnJ_A}8?gyVi5nv(6d5FLo8c-m7@Ri#L6o2ePXQ?p9Q&B!Qy zC6}c;$PsrB93WXwmRs%nGArflEh}`-1 z6g5_@vqHrFW>>T!;b!q|qxOVEgXMHzMWz^ebuT$ykxr%8?M#2PHwC249dg4Ws>7~} zg&NW$8it|X2Q?3VZuDVUS~iNh6!H()+EV%W_NkpiLQcR~ZbJL3`;&9cssUHtQtT9u zIcZNG7T1B6mQ~vOiq#3sNAxx8SP-==F}0DfCl$2Dg}pWpyjwV|+`ePayE=Cx^PbSQL&sTXom#>KQ7h!VBZwrnFe}q=%Ide|?9g^If_;-K7 zpZ@kI<*nyMvhk|rV$eEE=IRm6&bTmA?*{dTnXJ?}qyRF|-ZFJyep$;Qm%-vlw{;+}u(XSguyQ97Yq;Zv~h zFfZ}9!bLwTQ57kn5OtG(ZE_C!cz!%OkB4-HJd4t8EYyax5Mc123 zOCbvl`>;OoJ}pf$sAeiYpF(B;r8++`m~YqI+t$#00C(*8 zs$uP$$h+E;__`w#pR3|`n=8sZ20uam5euPENpExrfr(fh?R-_s(Q1n7icSqSe8tn*`HM?<=a14!LplOp&*Qyd_o%;7K!{D~*}c z_%9AtUKu2ye+jy9(5lnW^{iQ1y=?P#i`ha%AI8JA0h&^@ET;#QWa zC5ge*nLK&8`JFX!`&&E*TJ{){6}Zi9-TcZpSt%B zR*$S9pN8Z=4oVm*=La8Z|= z1SCr3h_mH7LuSdxoiscIO$RBlhs0&OD&`3mGeF29CGZX?(_h6~O)?B+;@nYZD$2)j%wqExEcPMtxC{b|$>lfDI3eEN{GqsEg;CtcJn7iGp1*&5u?^ zTqLcA(*kF?SPu7EhmIC|Ug5+f!SCr5SfcIde4YBRcB!H})_NqAoVKZ3j+7|NV8?zf zqQ*gq<;FkI7uC6*BIlHMyO)AgSsQ61>2Y?;T`m9;R!nZzBma$#uxT5Pr7Irns)dbl5wk9uH!zWM*6D>^TOq3!OW= z49|XG6VymWSX&QwIE3Ewe0O9Qwg%}XUfx)(n`!Hcdoe%{JNe01Q`MDAXkZzJ#J#Cl zCHM+HIoiw5)$C-CxV&LA2~|z>4dsX_ z?fvNy9b8KAu1K?&cL)1;ThW!QpQy8?LiBxXhW2E4N~_^TcMOUZ zJI$zNp7YB*IC06+r~V%!soY*dkQ5Jkz0O9U%^US=F6>7x^JL?~cO7tx{FTZA!vxz# zA%4ZB6GzB$1G8;rDzQ)v+Rb&7Xr-C||21)m9(b^x40Ev5D&EzRbtw8l1!YIlG&yA5^lg zHIUbs6;qR`L*jga23=61UfybJ9&zPnrU|>Re4U*yc;cD83%j@&=h1=3(eG-uRTDy| zz3|K<^f&X0sb_KDY1<{fikh2M@QN04ES7muu`R4d(wKlQ+UpAty>HG(ly0w=;{!Y| zW=NB^d6lO!wkX_}Gn0Ol8v&FdG3*mqXKxQzR>^Sh zD6F1iM4pT|WZ)9@Ax08UsffziP?+`rR)=SBIbYc8c!B=7DzOweZ+Xk1n`?>0w1uF0 zX$-H!Sggi;7|+(cQ08MI1WKIK&svyv*2z4rZ&fAH=Z}1Ev?0C&eW9e1my3@UZr5l{ zF#fz)4d18+uKnBj$65nZCNvIz{P3ZaSCHFL)c*)uf`+I<76S1KnG#wqVKu_JKWwQUqM#KAI2nql9+A@Y5>Wo!z_MB#OzZ3FT-ag;tZ>U*p3&r3}u&07uS95 zGB9`AC~LH{C*~Pe?t>SwDPDDnu;VxzXsLu1zq)nchi8)ZIcCZQ@>vtQMBfG#=(k0+ zI13@ictb6AWX6#7CufIbhoP+vVAW}s4q+ZRxlF+4`L^y;j9*yoMO4WB!tkr-Lgpj< zg~7U<@U9gG&x5!`;ZcJ~5vG}yN?!4fvrQ)9$*%mfv{i|<%GjvAgrsw&Mw_^28Q(U{ zyM@xj+-iSTx{ugIo>i;7zu|4LtUKpPa(T0766nKviKW+}BYd!Jrgj{IM6$)S+uX1i ziosa(HOas}rfN&acW6r%qWt}%)wK9jc9jm+ZdLn~(m7e8;y!_ znyby$55!Y;jNoAxlbhz3{i0Q7(XzQqw8U@7okD9S4i6*A1`@6wPRSd zZQT$P{bXcTH`4nzO^efoUWIL9Tv{3ZzoVCb`7JuUX8Ks33r($t>6C;A`W-Ptxh& zGW7r|G6hhjAlShNx4Hv1X6EFzh!ulkuN@C4qrcT z#_X0;jJgOv8|f>hHc%9Gy*FLfM2_x^^K?50utaDWjfeEw=B0LyzA(#BV)N>?1Vm}- z*H-1_Nb2*tYZ2MHQdyB*1E=n0+! z%YKy34&Bk~SE25{u=XJ+ifpvSWuMBOJAN>>RgRc28t@ftW#2UJG z4H1e=Ju+iegNBQ^Z)SZvN#_gl3w6iTB^i*;$#T8pnEzo*VNP&5(F*xq_pmjjbFNt> zfP2=K0h*vWkquf(!Rpa}hfBGf_0s3WagTWgF|cEe4eLvg4?JxU`-SP$?5`$A<|RUV5ZRcXvgSoVp(18(J#7=1 z$7E4*%+~UeQ$j)k9)reV$p~;xrYC;!0V}StF8i$~-dDj4dI9-}r}ZB=;pG^tPX_{B z^Tx#$-UrWyj~?^@H8(?5moRi9km(d~SxMgjbjIwGAEMy2_!G63oVsc*^gg+CgNbK_NhjR8i|hGNV6g0!E&iE5>}A84p$X55r?Z&hrJLi zqA#=n36p??tXJ$*IK9I8QU?oStNY|6vK;j8&Uvdd4eR2su<_UzP6JZWi#?-;700Fm zObG#>Bnt6wnypq*MFmH@GpY}7OA$veP2`q*&_=$_xkLuqY@|>3jdo@90xxabdi`Sa zObJ%_S7T9xw1TfgTfmQ#=-^{=%#;z6`057%m=~*@5G|Z+ z7kJvZOWx_5UYnbT1fQTn4>wbK4u!5+E*4OCj&rum_ljuf_Y2z(w6%M=WMq#rXP|vu zab2$xlX~t|h zg|y_aTw}Bc`_i#yTuDA_z(wY#_HsHNc>K!P2+wmY>FSg`7;1a>JM`Z{OBj5EQWyem zaiiAMDr(fo$){>Jpw%;5`5f?@m%k%9(k5)LRrnSngq&EtXNYPy<~wX<)v(6pJiExO z_@jomkg*)u<;rq+OFU*iC8WA4{l^9spP}L#ekVd6O?5$f@4bk8D@_5UjphQT6M@SQ z?V=XJH$w(iSDvR~ul2?RC=CeS&^rb;j+ONgbGg3i>k4I6gnNfH*~E?R9m-uY?!%n1 zkGUO^m{~rBbRs1`KmXXsR!i4D6xY^sD^b?n@ya$x*{kF6w^27bG5j4?1op8`rr9cX zX4Z1)7!t|5*qwdDVXOrDQEMhGaaWzaYPXq-I5MtO2#2nH`k%c(E;7P|H+&oSF` zfymC-58qDI=#9X^%PiV|Fkt&GK~eyyOaWcV0yv4hc*`fERw_0L>Ir6;AvSYc9Rgap zhjieS5B_3Oziwum`;U@?udSnlTXX%6-y896aBqpPwH_cjn)Y9m&@VUA&)qHVKrcgj z%JGROJL*10)dve3Zxta{UY8r4x@)88?A z(AG5?#3}mfDW$Br_~uw-uxrn~mQ(cD^Dv%O$k?+0x9QiuH<$Xll20rruw7SQ`D3L@ z+=g@gnSw`Ack(X7WeUhbzdtND^|60Za4a-~AM+pum#t87Pg~k1y;B%wMR8sVi5{Qd zTuY&cen_}#lD8FFLizIJ7(lwc`cKG^t=edXWMP~OfmY%G*|$$0oco{4qFaETo%N$3 zKF1QMcOER?$`I7`S|n>4-nLcl$e$kQ5U1S_3o@=IwzAuTD+LmW-j47&ce*H31iiqk zM|h#)n6R8rXiwh}=0hpW_Ht(L=kueo1~@|8p}ozO`!n$#h0Lw^aMOL}bJC)#S{O9t zl)UZMocD(Y4Mo_lu=_seFe`FQBJ0~fO@2D%I1qBU?yHudcqk_%7J}!Ic!d%jx-mk< zp=Ld$Iup=psi#k`k5;(}=cVr%L?O<*4CK(0jAZrizuCy%x*F;2AkI9V?EcR_7_~6a*95GMixyrDG#D8J(k^wqg~9 zPkWT^Zl}r)%Vn%X{tbXo-_7C&FW{t3muid)&EgU3KBR1MxcVx$NwFg|2LvIoD7WJWR^Ql z{~uEdKrrp>IBFmX0;@-g|2g`@GoagEI#(Xie;_qijDR({ex+O}_djp@>nA2C0)sU^ ziPpyb^U+y-z@rZyN=wK7^D3NxJ|38eN{@E$e>{3P;P3P(xR3u&qfOL-XK&N|$NQAC zn6U1`b?7+$JN8oeueonN1%{qPGI?qJb1h~Hz*r^<@np{b94&oU0jq(`{H5N1JlZb~ zn1-K7+2s9y?tMU;HgMpkjm^@A`?_S@(&jS4a`}tS+{y*W^_HO`elW(P~ zug@V-4#JjQSlOOq)7RJE^Hz3s75Q6_yRw0Vqa)DlLA-*X0Xvrn6XB=ALnn{N%AN$w zEW4LpbP*bVOJy1w5mL}l;z`tN?Boin{)gBu;b>}stSzUTn!MLH=sMNe;h8aXxi1Mr zhX;#_Y(IZV2>93;ad>g2IGzRiH8-aqn8?K?0zh0#&FZYhB4;6GH4KnDB?;Y#8AWJ%9;$-%+sy74Gk{O{~6d@Yqj7w;Py}b1qSxZNqj!IRroGX-f<$>9^6t`NC=eZeeCd>17_ZE z6k=;;YZ~;5WOXYaNH1L&rwnNX~)pi z^be~u9!iju0vhG9*VWZsRkRYfvE3H-U*J1+by@G;*zqgcS7f_iKHYN0yK{~)0mA&!7L$Qm3! zkOXQY-*+ejAaUT()y?TiW>^#ho)5myu8h+iU{M6042P}Z)g6e?P$mdwSq^{o_iy;u z8e-ppcPs3$Hqj3U=$w8bfo`qp{G*d5X+|cRcVGD@%Xvm9h=VH%ky z!v2;tiil697&;qNHW)u>H7PNerCXmlTb~fdai{3=UHaIu&fEtBL7FZi0dik%97W0? z&Zh-u#k)hsH`awN^w9I{Ko)f|h}Lz@9)D_zRA$}AG!>7=Fl1;y2qUQBjZ0e3+yxfNbEk}yHuxhCn&-B zto~|jYr}r$;CoBNNoo>o7}j{-pJf`Bd_F5z(O5`$?q2r*03E~zzxsY^%lH4Jj8oWj z%TilD?@~$d@>6)G`|U1z6y>2mI>$R94=r2&Q>BYGIAjp8TxQew%s8 z+hm6U5E;hF^HMY1X@7U}m$ll(XtF`Qts&HbOx1Foe>>6iFr=`^-@O7=lQyqXe zAZwA@7%+B`YO~s8=Aj;t0KAvI6bPAluhT#%g5a5 zIf!kGS;jdfV#_%v8B{j-U}>Ub|K6@wXPJ*X=1pjlX&lvyp$7f3cWW2Q`av3McWCB`C#d=h4U%&Zt8@KmdUHGMjD2%aA7)+3*NT&0jS2Mz05P z1R6iKs(l}|>Z~$+uwQ|(+8}yMjfrE?l(gQmJwFv4ae1skHV}Q={PB3x3LTr}cWpdo z9cd&*{muCDyG43@JnkoDA_)l(Q6=v0#V9xX%uih@wkJl%n39OhiLHHVU-Ul~sCi zHB&?h9UL5_4-pR#(R0hGE>1^nV)Aom&{w1KZSUlTE3Xx2wu<-3Q?5!4eQ`e~kV_Vw z7&WSg{jOV3pMr?8!3CudfiC(I)g3$aSctY)*L0{pURq@I;4Grj)yT`#^Z{U0R(5ts z-!p+#bjqZmZnrj99`h$+8@tGu5NPN|i(hFfr|nF+4J_5=$^3cY+KiW%kN<*y^9d<* zbggUu1tZ!XIfT|~PV0Gn5>V3R0;aAqzL;!S_bqi14;vjA+G4{qF*UtZZ4w+i81?7f zn7eSFqK+ry92ddbdME&J9hH zC$08|gI~Y*bNIG=xQo7nD34~OoZ1*v5$E|{ns`LGm7;rZ*MF$&{fN~`k+Z!{gu=6p z-qkK1+B;BzkF~ntVC;o^^4oO08V8xyV?0?kCCrqRu@&|8TS)FE{|DD-Jt#Ed=Em34 z$ERy_G-H1`|Mcc%jMx0Oe28ZoH}6C7zCvm-3YRH-hjzPDTJCy7|@6&qOt z@9BhPrLi6Y865qUIws?+GTu1H#1W`nr-X~~EEjB+iR6Hd4XGwbMyY}CdcOdh(YkeSYb#*mc zTSvD(fS|&M+qg0|H8o;oWkt}Mow1+$Q4SZDriq4@29lG+xb`tVr7%9$COf=ZmnX&O z*VB7{`bS4pJ%5{_E{l3)fet;tV2AXGa|;!fRYetX=mfpYBSyd<^SU2DkrQ&lyrzoO z=6LrUq^J}qI4jy_-}0*{v&owQqt>fm{qFVP2uFUxCYQ$hxY$^*t*vd-#j96`&F_Sm zl(sfD%oiG*ot&LH9w~!>Wa}1f6bjYe@wm3}5ley=JcBKP1=IG!JA$^It5fM{=fL># z%X7yA@OERn!fSty^Igctow5wTQFz8DaKCqX-u;9w&`Q*Du)ES%MKbll;S2P@{|ZC}lEye4ogeh{ta{ zzu#v=1?2d~c@UHc+r5)iiDAT3#lIH3tfg-EYLb%Hj0aH*3z{^vAGCtO;QVc#%eQ8K zBTf1Sh9oZV0?EfWW^{ip&COQcJQKnZcm}e*W3(?*ms?#{#=49_$!so2k^&Cm1Ndx& zl!g#HRgnwbBg&9Gd2@tyD#*xK!^>Y(%M?glu%nc>vnw%9@CTa2CZgwd)Pb&IVv2F4 zfI5sL)rw&OT8s7l)Ev4dYg_ z{8ppDr+e@shjFIrW=WIY+JaBRHFr+nHCVjt?d7GtU9M^V=}&e}@Pe-(9hLAfuYSns zR~#p$AL8W3cj2k3X(WHRPotdieh4UE8dx2mX*xam3qn zQS26(A6NXmU=x^Kl&J{eN^dlLe=iPH=98cQl8bO9pNjApsZNko1S)&4q^Bn)_-4I* z=qJnmewo3Kn%B1pIESxSMSc(5HKV^%KT8jg(@ycNufd)T3 zl0J{))wv(=)40u|N4J61Qhar@48$Q>blSD81!DRc&bjMz;MXU_uN2SQ|Fkyjm6eac zE0BbKKQIYeFM#^U%9;ANRPAS4zYfphKn|XpAysNv4cTgOET&WdznLW3w|;2?QVpnH z_1-=pr0?BuESd)Ho$99_69V|QZ%OyT&yy})E+v0cLI4;j4@!vk*T8CsRyfaM1kxBm zBbv`RzzdpKZnzF#K>oND!@C8*1{k&Xn*z|xVYCbu0GGH1e1@CLS3b%G{$l!4=k*I% ziR{`NH6eiU)aKr3Kmi11hHh4Hn;X19Fh0ctyr0#_&zJ{nvK&MTg%GZUSUd1V0QZKA z&Q5RxvjBYEx3EVlrU2msoBqt-1uvXhzIjIu+$ZY%vtD(K{AUcM*DpC>WV3bd2^1&? z;+mUi%0al27&W--53GMSxWqUVU{TuGSu{YTYSQ#4GS9Fifw}sFfw}HePR3yF!goT8 zrDoKz8l+UUA#FcTlprRB`dw7);Dw5oMlpamAXED<|MwJT2dCjUnV$1nPCmg3dH6lG zO$!hJh)T%$XMkC$CH#C&Z-j5@V?!6Ifz&1+6=@7E;fl1X_bd%S%h~V4`=J0WP5YbN zl7Q~#l*xPK00=feZd8K=N)dw`_US-`^qZ`YZ&BJ<4gL)&uBE_e*V9v^j2z^&E8a#- z03ZPAP^vM&nE!8()vyY*M3VKblFZG8VZm;fgEIWXXnipeunT++fsDXQvl>V(B5|Ao z&BVhg0djpzk39bZ;8wty{3>FG+YeO2k*rv8AO5Ncl86`S08@NNY5kCtgJ?bySf8W; z2z^5o@Mmo+K>$AVmB?;Dt^LoM$pS57AcZx#DSPX#G{ClYx>grT0A3~dW>H!b%d zR0Von@Oibm`r5fhn7TeBvRe$TL?TTLY#`SMPwZrX$rQ3k--X~fVRwpG+yf{}k~aJ& z=wIvE$>n0GqypAMupFcX>`Z6J!!Nb~zY?|(rsi#h65@xNG}{4M7b<>#@pk+R?jfTW z*OFW#v9-pr@WLYbg-UleqBebh#a)M*a0O4v-bv}|PWxTZ#XVTAHw-2r~3!n?zB zqi>G^T+?9^VBF@)y`cwOf4R%`VEL|Dk`K-q5)hQDRh!Y;FCd4}iJvhCr#Iu|21Qd9 zf1y(WM~4yMz4wje^jYRZYQiI&J{uyFf4wJg`Vbr+um)g^0SZhVk@C2QxmAk3$({rm z?$Jq1vQ)3#pQ*gd-T+qLa?qOwfQwA?Z3~b7i?V1ftdK_4=MXfY!`R9;P5A!>+}@&| zjgj9v<-H>P3mA4C*Li}|?BSOS9gyeGjS1^GHotr)q~D@>Qz6O+P$;{LsXw<3$H^;> z3jg@$(MDsS)7M`sONW(V?iXUuiv{LM0Gv|-4Y17Ouk($BSkN=9hQktbxGA2}>n?$$n3 zyZbLNIfs5C5%ikNwi}vEh?2V%4Z;HN6GZjgT{cq>w1D#g`v~e+dGr{oA+|kk_BG{S zSw4L2#!fAnj6*_A@R6_ypc)}wPrqO+$YC9nl;!2^pJevDKaZaW$jPGN+PNi6NWH7f4z>9Q_%=me2nMl>8*44RpxnHI)X97!hup96mBlrxE#BaE_shI6=Sm6cyds~$`h9Zg0-@Tyu{ zq;kW;`JNzcVtdyjsYBVV`P;nvKo3nteRtNh^z@aDKj7@=wS*a(JgWN7Sn2R@eC0S| z)taJ$xrtYfo*1FlhviYyk~t;Wv@}s?4MHx=Dx?I${gJN#)w`Erb&c&uxZ)*7W9Z=y zq0%5`uc+#DB8Mz6&=PA8VwYXCDPlD&QF_?G3736NbYhK7qit`y9=4CZC>RBFwoaOE za=^dV*AUQ@vNZe|o-I*hW%`hC#fn9~RT5BouPajA@&FaOa~OMKgGI{?7kRjGI;*_9 z-8_JA}RQoWmH4C!*t5CCN z;{?CLn=zi_^Zbc8hf7qVizjCsa0xMqK!D}FI>B!Y5|4WEC7V{z*+|OCu|<$At!839 zhb*8RDZa|oz2JB3-bUH?mln2v$)h5R+3iz0yKcAh5Qk99Hqd2%((PWy>neio< z@LP$)|H`LNraX?*6CG-@^#XItV`oX@c?C|2?20m?`jBq+QGN=}fUE;7u>e4Z9a`AG zN=&ZCE;4nmHaQ=9$??q)Hfvqe! zSm3{vJi`a?M=~+}g$}vyKOzahz8&X_Gru170|2+)%UoR&lEWv%Vc9oni2A+F!slff zkH|P^!GtTOdL7uH5E+&vs8Jq8R6fT35%C#ZoSwc`ZtxLiwaX`$Ng3YQtX zY_%N&OG-&|a*JW-sFEW8=o$(h$z8`}Ra6j2jHKXI8ZMNA1n&^BQ&lnK>fiWgD}bWV zLpTI^Rms;wWO|KyLnN|#UU75QdW}VbQyrr^@8U`+<1TuQG}zmE8xL#@x7?;i}K zLkrxIADjgp7-dPQTkw!MB0irD_2ILRCuGM;4AYI%XZOnddkcCX{QLyLrM^kG?i-Pr z&*40IRLRN7pVe{?4-Y{ly2CY>)m9>vEl;O>1&2M15b-oPip8{G4Ar$hT!HT$bZIh@ zr#67Uo}4c=<<;0hzyJJIbG0MxsA}9vMr|gcu6h(Ku?Bi^K7TS%S3Yt8lwr=04LCg& z)y$A(*k@(Exq7!c|M=R-$oAThjiRPxVY~*R&(l>upz2h2H^$NTJr@xq z+TEdlcjGqDw0`$$YWH4y6RCDo?xx36sh#CSbHvY+=3+#u%cjT}^CFd1MRo2%lEj5_@Vy`f0D5HAj{`Mg4l3;ZXkXxEr^dO0f>e=3Y>&tvU zKK!gLr5ryyM`sd8tv#!3oDvYZLg+id4^6uY5(j(xKhOM440sL(1qu^5aU)ktb*^kT zeytB>rJ19m9@$-5)Aa(uQh5v=UAxDDOpyPx=)Y(-0J?L@+6mK*o$o`!*S@?QPV*P* zUfZ{Zi#ThDAdT))b-v=Xq0CBhniywyr1T8t1l!$Rn|66Z&B$mxBqWs?KXk{W`wc!d z$S&7@)cUOYWD0AM`^AE!U9u3JS{olA({Z%`{ZT7Jd3$w^43I*GQ$QJik8+qm&f{)j2t@GT63ZJ1#- zsNH=Gqm%f4W-r)cs4+jeJQ*2+XA}W1G=-cL2VBn7`P*aW=IAOC6<-XghHH!hY?jkv zdi(O}7O+Xyi~0Vv2DH#9Q14vdYxO6L{#qkx<%)&tzBOak=)yt08)<>WdmZ|EA9TyA z%Jm>8&|Iot()X?RsO$M1&k$Yb19$dzGi7`j85sVUfIM7X5#4R>K=JVYdDQX?FLN!L zHZ8f2RlSVE>!jcC2m4PoPB(u+R+)O6zVieZe?>uSmT;gCl!6wr!Wj?TKyx^W}*Djyk^D zQ174I@^}N~(K)8K0g0eXw>)%V#V}GL-04i2Fczt&6t4&=koz>Ike!wR_{Rcv$IH zHCrW0d~gzt{aLNMVj49j@mW7Bx8&opkG;LURI0l#D*QndW^ZR^vv2pI|1Lw3l<4_v z?OV$S?=OzBH&g-UcMAR&e2i?VI#!oo+BsMtw`-YpVG$MQVObM^uO^}zzP`%>da*ZT&>(r zb1J}FaiB66zQ+r=S}#}Gt-aOS*KnO|?+t;MhH=B1uDow<#~d0OB)Qz*hypOl#Q1oa zz03t?`!YVIlHzk?<4~CU?vpp3d@qIGz()$L8oQGfk4`obKz2<)!!JsTBI`#Ucj&Z; z?o=8QRH}7b4+?|TM6UI@oW5JZigBR&)8aA&{5smB4iB@FTMMP3++S*#?eOeUiF7wK zeSc1lmDc=vKDA7IJ&Zqc`d)9Ug>>iw6T)bOy-yO+L*N0sGpWB4g`8jEt6cT6!k2Dz zN|dQ8U(2$g6xxElx3_3Mx1BeLh_u(q^7QuZRF}g}yDr#V7}QSHwvBA6UDonVA|2_& z*MrN1YhR;kF94Ph^V@Q{G_in=s47+GpnuA-m7;TK*!JWX%5Gns`*d!30v*kN>R~lB zH(zt#=9Jz>uk|U<)e(9o!Jcjeo4xlj+&}11>g!OsyHRaXT|6i(;fb?6tVa#8moIUx zYsQ&3>0+6iY3eNxi06_n(Jf!Z>pzpBYFZKRm%D1NJuZBuo7z&mY>GbK z_>wT*`BnAaS@pI)2j#YrDV|e@w%t!R=q^Y_nR>@K!eSg8p>9Vt^~)0?-?V&d_H28! zuUT^z5p#3aOlEEFANaovMW9@{N)WsWWSLm1h1=M9f~X3gqu@vqwY--o&+899dd+|I5~py8uY+sinojxXrY(wmlrYH(X)@bP~Tq=I#!h)}~(xbluW%<`BWh zzV$=(Chg`~90yGRO)rsuUVOwSUl-{TdF1MJTMHn*`*Rys=8RyIZ(^3Cp93U9O7Vi3 z$C!Ub@`xfcfJn~iNHM*Ik}Yki>tsYQIt?C+edEdM=Ew3C+XVV13R*7j0zVki=+eG- z1Vp19x3NeLDxxDx7uoZzJj-wxA6>`UEHp}cs)6-zHY`5Ae`Mr|laugW`3%1CWyQUNfry-%>;%Y=@9wqv#&3q-1+?vM6W)X1GU9OE&}_mapykzm%#$bF{R2a) z<}V&*eh@bI6@X^77Fk1G4`!9@Co=zO3LirItAcQao&?+ zQQ}g(q)*g3rKe>X#XUswj&;u4f$#C;PWhewx|fm9 zZiRZD_DnKnd;3)z$=B9X5lUH`cl31iIzJx0c>TH~F{mnSS##Y=buL%{s0>=!=q+m> zo|!2@H_#+4pa-)4HaMh;38{S^Mp3igRyejIi4GG-Af3gztSjn9K%kP}> z6KMcOV|tZiP+|*CGc7>mW%e#J0HHZcSYrp5S5wHM)IF5c9!@5WkE1g4ZcmZy%7@<> z0Nl}JJ!cxF*{?3}pgo0J24zRZ`$>%Pt9lEq1hGS1QF30BB!K4OJ}K%N|JO(9$oIeK z&$|b3-ObDsgTiXKwv-JXr zpT76ohi&STL2Fkw!-TBSpX56zcAS1*)$L_(g=XhyoS!~!=frgy`SC8{5po8Cer(up z7DU4O{n^tAs}YE9s&!?cBP#ECk+{YkqIr9j0df5|s`Ide`-Tbk;nhs1DM*5JsrGODula)kThP1FE32cQD-4qW*!3d(Q~y@Q#TGa!+c!A40e zq9i)EN?!7B>fZ0r5#pP1eL0LLd3?K|iLJnP`Vl}%@Z`WT3JET;w(>5S?PQR$9inB5>^=7G;l z514K`|Cj5n%iO!V z1~cZ*&DiZq?0;Y7UDE;0DL!XrlC!a~0jFFhZs&6|pjd5=RL!vJi%B7Ba`@h|Ym}p8 z*%@hIRMK8??)6rAWd<7_^JeTlVs^7wtOlMkyQ~a<4&tSy3|YvxY%&d+c5Rxi6{LvI z>f0G|a%HV|lugw|gAG|pMy4M(a>`WIAQyr<{ii(704WQ}c%NBp3vS7(quLo`Q+e$s zMc0(G=<6lFev?Av>%Y&AarOVr7kQ$;1(vXvwfe&XL|5dgnuYB#_xdUy@KfgC;k4@u z^dO`L3?F^K>h;Fm9_9cdt&lJGAF+d7soVLBi!L+70mP)?bMlBzdWG+jR3k1uD-d7> zBpT?hwP$-uO8z?WbHwv(;IL2=rmK!gm&DFf{PZiyT$at#8lSFx=dCPhgcbF(1l2VA z-35KKw@kdYb)ngR$;*$Yt}$e0`5-v8n7BuE{65^+1*54cJ7%DYPfE7Q*7f^JboA`K z`bA&J)toz412@o~8M|zt7Amm*)DknGz8AB{;4FiW~^y9YLqw$-_V%N}14bTuquK#KL z`S+G=GDL3rdf{^*Ozw$#JmGC@Grgmdiv^X5eASHw6D9?MM#byiRF{ZURmFb&68*cMLl$3>y4uL!vCha!(Sm4U z;mY#YxYPRjCUSE2#N-DI+T*ucwtWt9;3&nmvwrQr2e7!}4qVr_wq~fPlx7|0@%hjpF)-^Jpe$tc%}1*=_^($xCqrLxq^C zF)8iNO)kSx-drTsRiyrwVehAvS^G52x%?*Ix_`m4Ja1bUnf#ls!2`WYw zceZyfHTQK2sJ(3NBz%h@oO=hb0jK1Hc^(ph33>j;;I^Jpkk?%L_*;rhmwSqjrfMrt2awx<=iVH2~09aoB-3clDZ8khyX}3(Ng3FA@adTe^wnI@^RKZYLc$2OZwf_wC}Y&+Z9z zHdW(4=dx{|1JX8cEX3R7J;KW2o;H(i(mM|StJeA8#rtu3@4gP0TiZssZpC@skE_g4 z{Z>{M?Rc}q9@jBD5KBBOaN!D^=6dp^2dG#TP+N6D`jd|MJ=kVonl%( zN8SH>8=7o<6%?2-CX0JVrXhay1U*!oH4=1L?srY+*mb{U6J@-tuai+jwDXG= zsVe?QyQ>Lod2LVLkiu1DA?jNvzdmAf4;-<&)KAlwg34LPm4O>vy6OWZ|of06xZG%}gw~_4c z=x--S^mw(BqICkpb}Zjnr9*xb(AT6EUnInQGjqilbVunu`^9D-cj#-Z0?abHxIEnf zQ1#H3rEyp$EGkcCJu&0^eZUK+x5qi@CPb#q8jmm|HgO}0U}vjS+1QoKwvmZivi%mD zx*V9gwt7r3 z@*y5AqPCtAiX};iF>0SOWQ@X%oV$*E_P#PYF8XJ^_TzDkf!@;;Dr=1c+t%^xCWEK>Z zH>T8#P?gd=46ax+*02i1*i}wA;>;R({yVlEY4x|#3kCffYahLR-r#z(V1KsP#2hT< zlJG?oi%t)HomPL=OhCVq+_aUO3iMI_$vH(?l3K|bz-Mq?c~;B!1)*TR28jzZO$j5+JWDA}H5WttX7Tc9 zSbK(}P+RcpzFvP2Z+5?W6>7hY6D4aZ3arX832f6O?Vkt=+tPlwUuu*IwBnMa(Za{5M$MYB`|3Lp>Hy1ThpXi}*C zHMkdc&Jy__qaS-p!g0^fy+*EE@wF)Q`D$Sr5b(~C2%_VOebKa!T-AZVP2}d@7{1$d z5DOOZ<->7I|2f9pVGO0FD!dehLA`P|Dzk6UskKoDBPK~PI?*HrDfEnMUqA|VGI=hQ z7D@A-urVFkUDGS??Ql-IW{>eCl899^3rI7_)(w49#rNce?QzfDl?;0S9^XLnc_Z_G4kdyN_&O=b zX10?1acUs%*jdn+`nGs(fCv9VMRZ%Iii3$Rjz^C`K36*SXCS+RUSaCxPTMb(4ElFUp#AM|Bv9> zqy~|-m--Bzv)x@(-@ZaueLVeUV+6Dm!7?!%?3P|*H7}V=S+(i~)bAmpH-L7} zeT~;qopgHD-yw-ygfk8ujovfN;4zC%IJ%F91FB07p@hD$htL3F@B4FurZ{Q zS%Rf&WPFVIqnX1en+w~PvLX1$V!4a#ZZwX3XlFCTLv314rkT^z)+cFP7UN9{p_?0D z(0VKJ&lWNQ*o3Nxi=RDZy8j5OI#tF`kbn1zuGT6DG!>!z_-zIFE}#{kC{Yo$5vJPR zZqa28mt5)K;Fy@6kNslY^kuyhyIHW$f*X(}EQek)c2J+>x90pP9-B5C5=2$S8)lw<+q9^}5-&VzTa@ z5WDsQAHs2^gEqXn^cc6$f!={Z#bR`Fh!>SC>sch~hqp9GLX}@=$g(hb>)zFd!$*HG+yM*2Bm%}f4$@Y!T+|IE3xqJrvO7UR3t~o0b#B1v|Y?`;rhdyX5}wY zi?Odz22y4MeAWn?VF7!%FVt78t_MYiPu*~9_!#+^I6&GBFIm>#4Fp0O;3DcN9_&kZ z|M{d+R~hH?V0!ctvu6M}QxTH$OoKh1zI}esbU#u~GbJ#zyqmmgbd$V&uX@7LhPX$~ z?jHK&oJI@*ENpFWy_%7pM={Jz>!$ zF2;-Jr^+7p(2PLIM!BKviPfbO*wnF2i$%XxIbE}^!O)N9=*QRTIJRkgpEDin41^G>=}rz^?@p8B`)gmz+1pb zBjm+mdc?BamQ7dGY{D^jzgKuYVztGb<2|0ErvAe&F~;y`K0_{Re(anmVE0(wlfc4@ z|A&PA?ZP1+YVsH>gx!8j4f_CK)4rkRBF;Oy9X&T|Idb=!oDq)?y>HDW(N5hs3i|SH zX_>w1rZ7Z+CRd!cm+3wCIrD5XNBv6_pf$0MNC{_}A0F4LmZYk^B{@Q>hwQB=1h-z*h;QfBC*W5E3-D8t=$lRNJ8VkA81gk}mOX)JZ;0pNuG`8P3pr$4MeLW-jWZJx%4dV5Cz+A`jS~t!Wo84bc(B=}m2>}=Rok+6f80W(7-BKEdc$08#K^cvlSH*{C}xt znd;$r!7im{hTew5PIooJ_es1O;($Yh5mX=a6>j>zJ$hv_$3S@;J&--(z7Rd{bpG0@ zVLB0LET3(wiDq4X6LU_(h5({rR3r zryn-*J1)5;e-<%g60&8r%G1ZsS5gqU;YiV8C)5 z5`mM#plZU<6HHXHUz{X7A0)S0{Vy5Vq`J;R{R`p2Aq`)>xg^zH=!m0og3UEZlDOx# z6KB2R^|i)lMcItBNu-i1Af`y3pstIk1z4RS4OB)@u!H`NVzm1@GbqvhH5qT$) zA^5R=8M>W}xxz0d;QhVIpR+K(pfmKs@9TnQB!92uO-I|c75(M+ZL(_TTDOqs&*LD! z>^Au+)PEJa(IWpgLxtb_|qn7Gb-~NNfM>HE%Cp2x_5AQF7ntsIFhuM>owz&t;o$zNzZF>>)1R)hYTfeLP-KLg(ks4&wP&K8N# zNP07z7p+UMcO;2B4$Y)cJq?h-ky&VLj=ZiZrr-R0@s-M1=UM6(GePXXvK7>2Xh(*! z-jy17r_ES5?G7_IW#7yEjq}f?=)yb2e`_ETT+M|m&?mg)jM9&TsNHlbx`?i z^TOi=4gbfzFSy98@jdkgJrrhS|^m*S2s%WC;rR%6^(ObFI^A z;rJlo+M4uZ&rnD`Z9rne+|6JO9lv~5fe@HBu(`!kNPIAcW(iHh6M-8sd9Oj} zYgQjg*-m?4rL;KrF4e%bi=V?e2wELdoJ)FIQw?F-(BQOm{4;LuSN0Dm7$;+{rGRnt zWRh4!(FM;IF?@^8y_HXMQ%EH(09mGNLghU2M^HHv@-_>BJCATZK=Lax4*>$vQhH)= zW?-n%(@*IiFrwA}v#gLw>XWzxxyQB_%b}M)FgEBwVg3-C%$8z(~foPI$1rn}HCv>Cu#@ zQ}uGad_{Qz&*hx0*b}OVz6}fx{t1>NBOFN(E0MS6MRct5dEtK`15>flEPJRZX$O#1 z`Zr1L_lwH@{;2*^jbrfkT+sQ9DaSOnu?3aA_8^N48~$-G+C_lru=1304Vw>P7P8l? z!&9t{2zb}sOiF#l(5j^&vO3&(c%VeL3JLIs_Yi0^lh7jj&wv6q>ft@dH#@+xv=`b7 zjemD>iWWJL>XKi>3DK@k))%_#o^ujC!ERdD-8Opb+DM5?lDmP3$}iRVakC>8s>)R~ zRwex1_(JgK4qv79baa-}(zTD5UP+DqJW`PdUc3{X zh51&H*^PT!BiVy|B#!GW>O4jLp_ppBFGt&GYNnK%$~sz+4--Y@{-I?~?8n`uo(r$Z z5I52-_%Y$eP*kz0phM@Bx=6iIBvhIHCzrM_oe zv+13icQat6_G=Wc!NXHf%qBWs48{uyVCPc#=c{n1!noptCV%`e(7+;X%2!;V%+G6~ zDPVb%AN?FJw#*m;e-d848{Ge+0PP-zUM8PiCdR`~jgL5L!ax6a$UWlhY)MsBSbjbQ zImM!4=rZG-+EYy(WAzT`vhxiB(A4_o2k@>OzCfDRp`l$IpMQ2y5G*P-1E1_f2M3!2 z=CE(p-jG}k$cN|WA&H3;-|{HXaeqP%TApP7Sy-UsD@ETT`w;~<3twTyT%P^GA5}r= zM-ivemv_n=+*&A#kmZsp<-j1VsFBLo8^NZCe3Q~V*6u2ugzz){(q<$a9WMuI_&Z=^ zZ-BM(Na`eCJ7y5%x|^qm!I93LW^k%F4|uE zqB{!_l)C~&%y?ct55|9I)bxpVj*SI3M99&eoS?0H1_q_bty(%SHtnIhA%KJgg(K^J zH{`u%6QPlvEG&+E-A|e_mN0;Q>$rsWCepj=5Ny&E57Ke!K?9r4DSURTBMh~Wdyflw zb9|)AvM9ySqUT$+VnP6Qsw2|h^7KL?fGSsyk%&lg)38Y=dU_NeKiKwfb6)2lfNTqX zH9k%q>U?zO+L@1#Blk#Qw+%}VFoNi|(aYY;G}u^VuC=0M{@rM&Gl5TR$MQd30JS>A z8_3ZPz3f;DG6#2FTb_2J?9U@TJmuF8HTlGD1Z1C@CyI?#QS6E#z)TcS+hM5kFVg6>I4VPA)QY6r&@p+||2t~@)xn)RBg7#--o{dJb((l2k1 z$|rLm=PAIOun2#n+eDSq{9<98&s3ccx{Qzik|pE@@ADdTd3W7y(?l4Mm@gaYX<~vz z;_C?c`SaW5?VYH^SE2+A<2YQBpoAHE&Zb5(W@-fJKd@nv_Pfg5p;A%~*MB7nCF39AoH6D+qY|9=sW-1( z=mixCi0-c`l;wZdSIQp>e#tAwl7z2!$XkZW5aCry!zPQcDs`kInQ&m)Hq*_ER_9dA z#|7YV@^F&d_;D+uaOYQ-;~B`TMC$Y=Mx8%OAyYm4?1c7u>5~wi82ORtRI4duNsAR8 zu}YCJAmiA$s=M6FGuxg%lbQ|b4=m`;kVLVF42doGMYwFx**E8iLnk0Ygy9GWcSJLF zCi~)+3iTAFO@r;yL5XKhOv0I-Xt4DdHtZxI3ejftW$)yixs&JCi3KOg9hDS-(fG0D&fo4 z(1`4z@~>tbEUKhzWgm-P&C6i?D&o~DJubK*nZt>k>hVfLthK93Ulzz;mI3kJCq;?S zyn#=41I-dpfBc;~TCgOOEPM_Hhxc1YVk(cP+sGy-q$?hg-z8!&jk^u7U5bQLir(Fi z^jkx>x~DlIcDN*6gh@=4ayEX(Uitz83gDnu_}l)>uEutDLaaHS#<8|*jWSrp8E6KE zku;0F{Vr)HyhWa9-f7I|^|{MqZA--5VHIKvz$|7a<@$v3l?%DLu5M_$&r2fcp#wFR zf_IqY`QEhGG#RrOh!Pz2xrX$@jPLe`5aO*>z9J%$Ov^*^;txSSZio+-vgCd9IaDwp z4XrSzYx-rPSE2{c2!u=W<|5{o=4|aTJ&##aU2hM_tk-f5xehc}T!z)p*V z^L2EEsTvbx&(-%V6+#0xy`Y3ugx7}{i{jzs3V2U`|Kv#{X_6?7om_}uv&P5wqpRz0 zJmJI3(RrqXs&ZX*Y|Gg#w;<5nTnTVjE5A0edlk*VS+8OI&(WK9MIa(kkp-ZRgytqT{cu_yr(@KTVv^t9pQPR zYlhT^%inWi!w6AHf<&(fviYo60u;)0Y+E~r-z;xNFBYdE`Qbqa`sa~F2rrH28H7&) ziS;BXjjko97ay}-7w$W0^wU8xz zC1;W*-%U%p81kH~n7NCt?T&%$ZkaY~QCA6AXpH#|az8KhHger`I6;S~BFNOa8Zj%r zx`cAuK7Aa6v=8d3 zS+fA~X6NF_I!z04|L9uvV-a0%SJ&H2k|#qOQC$=s<&Ag^n8rr@qyna581?N`zxOJ^uoM_q7#Eo8qyR zLH019&EZ?Ka4!Z>C{;!C?dng1&qcHpQ?$w8l}}NPjg3^GESW98FOI~3UCW)*C{~(2 zO%-mKO$p`ZS|HQgKAg0-1MU@JpWLzFqwzJwawP5d8{iK^fd3AJ3+kR*Yf_K&9e@|- zLwIMknK1m_B#XM|ZH@2U4puBf`mqnN{Hv(X#C}FT&*YIAD&gS>8Ei^_3Z~2ziDahT zdp7#wL?3Mv2jlt?q)33NJPqTYJ2uhxcbw67beRU^E@#Cr^s-Ay+*={4zVTC$6?Nu)=!VZ&T`sFH(A*qc z!B>x@$Al(Kb9X|oGibMMa6WF{ZcR=$k1apBA+BRMuA1qb>)LpWc+y^U*)(u_w+w5& z`sTrGinD*YsO2WjJ85~QYL`+0Jt`}J-=)@* z`SBMuvhsOqf=QY;<@_Y>_V@b}q`Dmm?YRY(1yPQ_aB4!(+lu7e;^G!C?b^I4V{j^B zs%L5$ONr_Y9Mn3YGki_@37d;G+*Ka=Y* z&*s6TSHIuuLy026+}(7Al8sr6!K`n2J9irVE;Rc^PQj3 z#8XAzeeC{&x=rp>$;9n*ozR&WL2PvNucl(0tt}&a`)1-mtMogZA)0%Qj-Yu7m-myM zMdHoclVi7L$!~jDi!P1Av6ELu?Yf^wiiM2aHVJb`_5M@{14S)UnPXRq3ct+9Rab_v z7Z#t3Pu^~Bz#JvaSvnK_Q^$8LuCYyOV4j8$=_~j_1Jm`&Z)Qy8UH)&SY~B~ARp=L3 zq*JiVRD<L@DYsL~?+0Hur8{`7VU{6s$hC>=!CxkD7ZIy)rK)m^MBOkNP%?&>ID_z-lzTwC4e3cCxrNO9; ziinsa#2(=^TP?e?eEd#UpbR;%Ibw4}6D4H)*JP@nHb-$K_O$y4a$|&}mjdD`C8*uc zQ9cJ&2uF$fd|*T5Yv9mhh)0&~?;Zjyj~};xhcpuJZOru<+2@5TSbFR%5ge?G0-g9S7PD|~@#6_uQ{Y3&MR2oHJCvOV({GUkt$uWoSedRlt1 zk*POV-GWVkhb2;4Nlw(-8M>&b*x{w$BRK3seqPxJqhCFcftZAkyEhz=&>OB!lPZo1 zdWa&({+I-6P>O30{7b7$5KGW*0C2B@YUW-GTkOyr2?gNcklkKpl>@M zZ{9UDYl8+~JDRrz2ox;|``mi?$j-k<^f0%pr89Jc-8f=< zrbZO}GfPX;Pj+UTg->28&okQBVxfn&-iDC?mlM;)=1U+Y!&fM4h9_aA=ZOISrl`#o z{JT5uZ>W&qM%TN`+YV;cU#+%noFp^Cc$>FRW2Y4Nxq8!`_#(zW6DR5mWsj;*!>yIT zH!wojw^p%SY(_kAENuQMC2GBJJ8XBwDyWCOzP;o(*5LPN#Nel3+oBrTopelE`f_9{@C>I>@NCp9R; zimp>2(u_~3ykleAx3=KhsqK+1^pV64eg9Qggc6N>3+W%rtI1N+mn*~T@7(nVYiG6| z^}?^A3Z_a!U$Ue;l^*_A$4Tv*!>iRs?nxv%3?uZi zW74R_mN#=V?8+;;iKhki$X8Xp;)!CjeO4Z?4xjYg0jN5x+lJHplh*8xiJ6xXm*011 zr`9PbyYAWdx%18M87Ecde#CWkb!8fq&s95b9Cc1jKRMSpXm0rN&vP)|r?L)c zIY%M=vMrGkIRRL^A(sHa)+Ns6(LB+}0*Dm(=>6@v6FMQ0MbTVAIDv zx3l;36&MWebS6JF!mn|&-oZ(_C;SmH%?JVpv}nT#1L84evr)!^>0To3v#VX588Ram ztNaT3?);h?C2G3W>$+oLyNOQEV0M2|KeS!=MR;Ab!ua}b0F9&sbhEPJoLC7CSoX)LpZ)|` z*EhIri=Jb}D;*sl56o|?2zbBirRAg#@^`)B4#g0QixT2(Jz)lyLfG3b&HE!l;7{Ou z^vmz9oJSHWr@B;oo9}jclY~JzskA%fv#RM#{t%M<=NJP@d&tG-mF3uCzz-)^qCK_i z(9DCs757vav+kwr7$Knp>dJbQ%>5HD3qjYfx0AL?x&RE^f>Nf=wa(V#8++r1tD6iy zg@U`6VJpPOo^nn`L4ME?S>_6K;Q}p2`hn(SR@1aKJ@>pyPu} zSjt6gY<`2l_D+MDUo|Mvse5|+dTOfc8uX}d@*cg%nHa&5DY7qR>`H@=(re%Lt&yKC zR;89s@E4cww>!Cw;8|C;t{$vSV1ikqW$NBr_ubN8AH2(n{|-Er-R9Q>tDSmGoZ#Q3 z-dfGL%&%EhP6L;5A*{@U3(9TpX}Yu0bEq_wV&}k`vAjx9=<72@ABDM{os_jT(&bg1K^~hBGs@S3iCZ(x z{CCIx>KCFhHwPadD4=^38U{Z3t40;-?Mzo^r&<^#Ll>Lm_~v%&hAy3VQ$~5oUk#go zH>(5tBgp$ifC9n4#%149&`VYZR+hit<7tP$;!{bxdOH&6phHLU3Fg6yfT(wN^v+88g*?9?Y|^LH$aD+b87wgp%Y zeTjCBpSy!INi`;vP;BsllRRP6KTP8GKTkes8n~5vQyY{wGtNl-U9N*t%Xm6w=j8g8 zU~N%8sDW|6t*IF(@m%IDY`bgCaIejRcq$EQugLpAl�>ZO*c?%0Im{7xC)lmS5kF z4+aqy$nvGT0d#aMtq<{+k`Tn8w=Ft2i!TxF~4Q`ik z4H0OR@)eWvloHuK<|{i!YEG&>xg~?u$=I>>8qVs;fCahqGr$wUS*>AwFShbm)eoJa zfgX$rp^3<;rlu{jFrFkzoMm--p00NHrnB7nEL$GDOMBS88Dtm0NDb#FR~eVRmQonl1kR3{6&L$!uXtwk zG@>lq6eQ#y6y#qG4Ol>boiUL8jrN*u!{M+>Sr}u9@TyZLA;vMo%fzO^6I$a!QpDrdMPuL`CY z6Mdnd1M?P4?c!iQf^;FedCZTrP8$*Yjo4Iek3u(ox6pg|I*NX~G=CvZ z((h=51kt2P8e|kuQiu7GQWGgQE{4OEd2W!cjhX>FJT;uS^vYCqaczD8ntVX~{U)Wr}05 z_LrAb+rxwIQ7==iHvn|;+0|dx?T=e>fzMgKn0r1u>i5?($7`jO$WL1~COvEr@T+73nbL5rE=-}%*@MIp%%}d>X@%Hc^(pP_oXljm z9-8Ry*HLj_Yg4Lafj9TnL)p^0{r@=&zF3vNVSzxw{cIDq@{+@G^qgEt4KV`uq{q~A_1FaN!elEvXpLwEw|L0)n-;W9 zxw2k0;`T*DcOR9ruQ)LI7Pd$hzws>cQbFZP4-dZmG+(lmxOR(0-GK=Y#r-G>?{a15 zyww>X!&mw>2aHAP$oNZJM8NMx#+YuSViZR>8+|5at&L$bmO$`i^mU;Rk{<)K$Z4`Q zuk!HVPA(8dwzP=(Vj&Ar;-|zax!HBY(^`3yQ4h!g99mF)tHYe`l)gH~{#}NEKH#-7xw=!4pRfU9csOP4%4MFSf zHK*hsim8K<<)SZMUS5EF9$pc#HRF4Qe$1ph^KINl%?!jrI3MQKA0wKdIr{|P?pURY zi|yN6L>0k19j{c-Orj2l6SW7fAG$|Me7h=fNw_}BB|*Md+}RdD!zV)JnpY-J3h;zc z9SRm~dEKkYartU_5(CsEMu}!%rD*3%Zr|W*G27a-_v-N^iS){Ue2vMATR{hG#)9XJ6{jf>c;avTF&@R zb9QPgH$#FBF0DSaN^m8r2#0K9_%J?SIe7 z%0{2qR@(&ISl<5TsUU#ySN#?|9kGr{@x%3AA~-Dei)KI}qxSq}c?& z)t|gv%DUEb{7&<-{s6E!#OSSrvQC-7%9;J^z;;B0*3(1yR-59cx;4AQCDZ>89(1z}TXH<#Q%BFSX z^5R%~r;#ZB47!VTTMtI+s>Uj=*&kn2hwTn4run`jYs2n@J8H7c(SIT>T_K&pyZoDY zRN4Y9lw|?+ZhH(~i{bC{csi8aT+7NVIV|OyVr4HqS(`Wk$d2&1Pj0W}=S13{;9se& zD5Zm@MGozyx(jpxc908J@HP~Yzl=(h@`#&#L-a6nOi~IWsH_{3SApyAzPU^LmJf!0 zq8>8wIY)srDEd+*Xb0VJG?!55sH9eQIJas=nK<(zSm>VSwxzAaKpZuK*2sG@k8%q( zFOi-6p|wMIG~mX8dAx>~96^Iwd&`VdX+_=twD_`vG0}Hm!i4_=P(6}!$Fo=Oe?$Av zZW@W+XRLf!T3Rx^yZ=Hs0$=kZCPKtaBUbuNCeNCILFPIq;bYiV{Fjf|$wuz(;wEoE zf4aEz9P%&m96Vumg+!7Sslo`?H!hH1%8bj)?5Cl> zM8nu_+@c@8e{;p}Vw}JV9O-jtv$t|jnB1z5MJXd^edfEGs3(jUt%2UM=&)`|T=1{Do20KlXr4r4hdyC zf@*S}z9TA}1+jIJWZ@f(6R3r-3|;iB$CvWe#0OSVx2rg4iB%4;fB6eYJL8OWUCRjA zOIM%=N%gF z7TgSJYG@9@8_q00&q1ka{!a+Ck)^_}2F`qW0^SOa7)P3M6B9_&(5)p~R&e5}P*EA> zj@#Z|ChWxF6LSpl_W3zfd~ye?R+rx_nAu%M6c+R8@YMhqGjh&m`Sy!{3@gI1;r_YT*BXH1EV`yRsDW50WLrDssU@+U)O zKU`Ruv2yXyz-$l$OTJ zU!$Wx?dftq<9~f>0#wLkkUe`li|%MxSR4PhyuL4btNvG4@RT$Izw+`VO=4$MF{xU- zyrghy>)8LSuSYiCF&7k58+n?3*h}V;j*66&ckVA6S;zW^TVa7i3gFfb&y2-oQeT$W zSwIPaI|`yqXl&%(-QDdTI%q|L&ppGONKSx`>+DYqUxrk{r%#G_kQniZGwFrSkk9&E z{zt>Fc%NR8OJi#c-V2(xYkFK;%y_wUaghLIHphf2y-_xbvmKWm9Ua#$t&U*tAeG|R zJRA?r+txEVxIp{TJ=e1Bo9Vec9y>tmB58a)_EqvxAtAH5%A1@Fktd7>e@!ZLC3oJp zN|xRW-6g1l9H&50yGk!iB})LDVc<{syQ!ce?)tTQH;UfICJA_Jy`dPp5<&KSLMCXK z!*A!6#>1D0T%+62)bIUc`%95*pep5O*aIgVGsp zc-XbU?c-~WSWgXg&30+(tBO`7W%Z-FHcIch4-y}yv!dhb$))E2R{V`Sy@T*ewqA5b z-|f@%(rG>A6(y^mlu5*4X3NT_3Q%|Y-0sAvcb0AW;2HXeqxnytAEKbkn<7W=C1r9W zH-Se3#Ah9+alM^B$M=~x*AaZhVoN6fEze~qj;1y}2zz2AUrhr>c-59=F9EhOT1l+B z&i9f_XaS$2J?c)I9O(%kOBE4P1Gix2DjmptfPbC@>k+||O zYvtwh&GRmu4fyip{dnIOrwy~b;&&XaCcNZ7ng(77P~IHE9i+oo6EqUO1M~ulsy8w6H)wUl zy1R279+fxXQc;2EZkpuC2jS|NRW9Tgd#k6vB&@8#2IXIwuMx`#l%j&nNap+r3od?ib5*?3OqT z@uhNTL(*-d=qla9!xfipoKTxmAwJ2K0zroLR;=T}>( z{t^MNk&VyT6ozyFBw||~6Mf z;)Ut`YNqTeIkk!5@`854f|Dgh@sB-Js<)|B2W+T6qM}`~@41vlzd<<%j`$a&TwAh# zl2^aZ%qZtwR1X@$sC6(ismoJ zwo>0bI8#;#C;zxy~&0SBUOtKa?Z`TVh0O0N{;mupHooLq}wm zGdw-R#;0VEdTv5@yO|Y{Q_`XZiS_Zik)bkAPWB?8BBO|V>(+z78VHr)`v*O*T9Cmf z43?m*3MBm5|M3C{1$F#J5U6f!4E!C9jHO;MKE(p)6Z*Kmqqos@sEZOB8aRYRL}(wS zEqK5Cy3RZi=BD>PBM&^Zw-BQCpC-IQ-{VqI6((Ska&al3^l;`HobLgKi{R}X?lqj` zm`u^_Ekmoe zaSxDHY7F`>UYa@p=^B#F^8rI{x%2*v6Pj6|{sNH6JSZrT&Af_UT3>&jUemT(9tXKU zFQL7aA0iE!7GG+5r?6IL+nlC$8$z0p%mIvV5j!DLL`pDw(QvP_K{ObL%bz5Cj1#|| z{P5OOf>_pb^)k9%Y#2U?yud(! ztcrjNgL|&dzeEM{Y|d<=n{WDS2RuVGH$fM;wYRy_YhGdr?d)ZFc~zM2U)&)#VkRFZ zEAxLi-g8;zzB1v32E`aJ0Ft4f8lBZ+)OPgs>e13FpU_%+-c$9_CRu(Z$}3w zOs$*V=WzZ_^^L|#rue<0K`Pz_mq(8}0+Yl*8h+BvW z9P&Gwewyfgb7NB7A39}u*+YJ69O&7y_cXX{=IV+f*4GEf7D2JGsqDi1);=ogSL;vZ zw8u8+-1l2(l8GxnYisexBeAfEm}X2erdV>9VvpraP~(q@qK3ZJfzQDu_m4R_xdS>4 zFwHBgjMJ%Z;sxD6amU5Y)GLe+fsW?RQ7{yo+l|TwNhbL96W6C0AjU&lZ;ZWhA?H>c6(Ufd%z-j&h^B%FQltt9RAoA~Xio{6H?OUgU{8R~f3V~ep zDvvyQtsdd2OJ|oE&i<983vuOb1HcUlHq&vUq%FR`q+k1Nlw1r+KKYDxH0Azxr1zbH zBRyC1wi-#&z1|~JZ%(lm4SR9Thkqri#oW6ta0QDe1=Fwl-+CN*&DI=vJQ4?_~+4z zVVNBkq?Nyfu8F%U>Cgt>1Adwdq{IP5&vD&6pPL^yPuvpcf5*`Of$?vOK?389GYj)j zbSeBr(LF{G>(~F?4E^>VRMRGoxjchp$ma;nU{F2|g^4K?pB5eTnN5;}^bfpAAgSrg z{)d1OSdxelz@+9&okON$S9o#)?;krUzcm}G(r#c77!u;K_A!N4#%6*4ab|aoQOJU} zr;STuX^$jSctpVTZ!6GgVUT|whId&vq&VUJw=}(kSMt5vc52}P+b8}=zi|)4fzLP) zWwo6s|HxClu0@1{jDzRyG$=0Wq`fUnD)qOE4mT#R9C8h!W|$=h2Bi6jQT zFD2&$R{tS&c6Qx4ZeV|Se#~q54K@A6NLo%tTuKA=y7D6#JGokd!OHS7nUz~Bo1>>j%sSE9e6l1W zipvrlckA!Jvk>a3ZmiW$y{&5ZQ-h5gZ1X$~eIj=1paR^m;douGX9jrO~|3uV4Kmvt61g1Yl763#x|4etEp}l;2R{ zVC5I!vDw-gx9vX~KNCE@E+Gm1oC!PoC-`jod#nKlr=GTVk4NL+X3wpYQdsl?in`iP zx)S`u!PrPe1phw9yJP6Zn06ns|^cRN>-m zzpO?d#7i_1NpwpNFP`mF=^%^Z!*gRQUcu3q^DA5)JQ{?~&T$?g%e8Wt1pib}qxSdW zsDi`tbKNB$YD!{K+&NGkZ(X>vm4$dpSyi{FOtROZ;0K4_u{% z3aUI}ms{CsdoBTu)khrpqSu>*8_}Ozzx+|b$V+_W$x%?vnY*Vr0ONDQ70L3Bn8`9dm^xC=!(nOwLM7uWvYLDKNFzIbg@pE1JRr+T42gvItcHY z7)L&Tn+f@A64g&9!w_Xs^zqOpe&j*LdOySE_cQg7_=ih?6YC_*rE(NWn&VWXf8wY7 zW@KusP9C35=-M&Du{L$xQdkkb3&9arpA#-9bG@aXG4h?rhEXg_rIRF7JLLhftv3=(8H7NQt0A^hSfPAvXhPa$<+ztHz~- zYD+M}OijUllj~MdIDWec3i=DXdTg6R2@ddGqBr(k{@zE_z7-=vrlQEQ%dGj%}EuTjK(v1Hz8_;)`Ww#MIOY7CjLU zAB!{T2vE_9TWc9?(ezho0SZLpm0w>4)m1hQm2F`9g$61%fpi=+#Z{Z};Z+-H^gx&M zc8nQl=22TBw%#6Pn_zY1t&>felJ{}){(ilof;k@vm&v}hK^w+Wit@-h^TgcQ6JaQG z>Ah=g|L1uW;^&V{SwP`zsyA}9#J_WO?Y%~UN9kW$ zYCiN=ed`D6@Tb3^ClES0enW6URyaI84oyzx>J<$vK)KD+U;wPSn|$@ipKX1OX+O{N zvD2RFNdCQSQ|vGvt@^TGnb(Esy08HFs!;Dfh*#o)r{@^}EqRz{cyL1}d+9B;u%#CD zr*J7XH6CDri#g&*{PX3{IwN{V6daX~PNH((W_ zQ1AWxoSXd&N@&MrQ-sW$-PT`TdoDi#Qo9Ci<yhKz!}P1ev_<@Y;kU?+fOtule@@ILEa=J7+j3KH+^^~Egn3ZD zcz~MFOG;yIF4KZ$>7p8BgL0FWkr~vM9mG2!(6YcNe|g`wLhe1SOBW7BqBN}UnB@!s z))k}CrY}ShV{M7q$023Zf()tAhX5FfDw!F9!4>%%H*cXxOBciv}wWBez5(j0U* zyQzcFtew=*^DSngNbSo;9SZvEeX5^mI@k{SPzbtH$3zvdSWlO@>8k`1kuUG)X z))lo+H0M@{2O+*LZw5@>dhUAj-Ne6NV+LCgGl!Npypcf8dvSyk!jaw z$wv!nS}IcgYMt}1WL99i;vsMKu(l@R+|n6 z)Yr$m2ZurWo;0Es=EFTR+Xr`mHtM&|*F}yEuDQHzUNdwl`7>jEv$@nry7`pIX8d&+ zJ{VL$h;I(!F_q3Gu$=1ZzaJ16o$0|uEuQO|elF&pZ9M=QDQrw9jGY;fY|U>C;riP3 zJ&-h7(oqlgqG5lsQrN4t3mH*B3Cq-a!hApD zeG5UhGTAz(mZ(RaHL23E4!h4r3E?&1uU9@EYVTFi`Qg4@vte9~)dF#?ILdNIQ>Lm* zS$3=y6tNi=6==Sx!#vHzT%2SptM6FOjc~Ce3&Wp)GKP#(v*I6^ULVE}&D$DUb#7>r z0sb%dAB--FrBZ40=^rNrGx|?pRpiw8Jahl+SH_TbiaX>}bg~dc{T7kzkc5I%gtS5I z{;Y~k?B-GZIhLog#%D!p>{X0(KU% zB01Jb3uBkF=c?8onSY4Sj~R&FRE1{$tN}tmElX=W;$4bk(+?8b(&b#Lvc%#`+K%p8 zo&wccY7)q3YH+Ag9;4%WDTdV3Z&)L?em@m#UEtIv@IOIR+o6iz%3`~@`Pti&t7qsF zZ}n4}S%1Slhe$BB4x8^7I-=M*Ll8C?UT%oqpi|fKY>(OZlzDlme_fb0TD7HLb8rgX z!jXKrnjIv_Di8$J_P-T)KIBkRsG4^ z_d^4d2|W**J4)Gs!Yb$ourC+FCBca39K0VDn+Rea&m$gvDe}d%4+l4nrTGv{i3c)0 zIh{*B(X?~PZ|V?TW1N{Pc2Eq}bD&Fniy;Adzfm$0PpnkQI6pI?VzPmG zrsN-qZVnEyM-e6t)Lx+<0Byb!l273bcRABIiQp^qrNZ(;cdtmmitAOBSIOtOq&^I! zlJF(d%j>%a@%7E!AuLQ;FVw{%y!tPb9Gpr~n*}bfekZTsryd28x4vx{7I?*8d&; z62RgA-nwkzT2(3KXiXfpX3RSIShrnAb7-DK5d^Tw>HPznl9hl4-%NNnbYU*C@mTT) z)Pd?{3poB`L=lS&HE>4;2X(N+q5(%!d+|fL|Cp9Hq#TTcxAd<){mc z`=Wy}%l;v=Ef`9#^zY%UQa;~(igSo-3dwPJc!cxTaFI`e(wA?kB()B$DW4D4e)n&g zLG&?sB&PiOC$(`EnoTSX7P+wftoHmORH1)#mET(}F=Tt)nI9+JZ>1+*&O2+~BO=Lq zBM$U9drHsfI6GVv$$7B#c>#sX2fUYQUXe70ojRsSp%U=%+#OyxAWjl!5$j&%6YGRe zw(2Ekt^I~Li*yf%AV&C!Rba4>e-AQCNhI{*hinM=KTg)OIBfV77Mh#Us7wgUZ9K)=2A9TWFkV#PeR=LJ_In) z>qbMYEi6P86p%eV)gR>H{JElTcY0fXl9n?wAqju;-{gQ=gH)N;f0WRUs_u=XO?WmM zC+d)8uOE&qEqfif#@h6*E3LwJI%AN64;M*^?$qMSJ#XZ-chNV%B>Fvu3K_&hfgzLF zrsX6KClc}XfM_JcG!rU!W5ScibK^SaDmO)!>Mk_SceJo~Rrh`T+?CfXTT8H=MPjct z)JtGRo7|{Fh<7c=M{%hlJ2?X?)FGlI2eX25#QDuzvxid#|Ht4zSr@{g{@>6*+tctS zz(oW6-!O=CDGo88ocWogTdyKwC%7n@6GH4OqGD%V*xI1{!qHbRie7?o&$OgUmNTB=yA50MU{ zB)cS6kD#O{A2_&F`;Qn1pceUKO>xMdc8&B4!n_qKF!N ztgR1~1}_dB3Ju@G|jHyw$m$9$Wf0;HJ!Li=8Vff@bqs(w} z(slC14JS1*`D=DBtW zFXA)En>?FhPcNw!F#Mb}6#RQZ@I#OoLq(OlLLP{hUV=$=<=^$JI>#HYS2xmE`crMe zAkJ;T)JX0teEA|{nlC1S2EK8z<606j7CD{3{~Pp26vRKrrHQ_(Tx8OU`Gs`1jR2E5 zL?KLZa(Xht*td)>rn>jO1b%$?7VJOMNcQ)2?pk)c7|=+uNh=42zfbN%pAM0jB9okd zO0eHy_*Sd5(D!@jjK#dg3yj(*MzOt~f>_tJpA_pIyIq2Rj0P_+n7vQMU5H2nZ{R8P zpRk3)>o4uZi_bE|&JoD)q!K^uXJYo6ZAgaXR4}A1ZwG15e*R9iD$&(lkWMossv7A) zj(z9HAuyT@7M+QA?RYGYh~8!T36n&#a`j>e-%4X;$?(6keE~SzeRLdU79kKHipzaj z3~kd?MJf*T)%4JwF#Ow#0;$ms`PaYul?gD!we!zW!$}4hZE^EP;#%a`o8Xu(o9`Nl zGe?A?mP$J3Bj6rGKMg-N^RPpp^c(l6MyvBe(D0@ueA|TQOzV=;yu4*pt2UZx{8>F7@G0tqi4sT=M@l3M~v(z{^<=9GA=>OV8Q-Z!xzA{A;$OgIIA{;@{I|DE((WQmr&^8cmiO__p$tMnhBla*uKtjLI3jw8n8LsSL-Lh7!wi7 z+@)Z|N+;4Skzf@!VG!;X;6N&7+k!7>yfM z6qSt_l^r0D~Exn5rxS`p(YQuE8_J7ee=1aT+MG z!354o=Lg-Zh#S2K`^QgC^Jk}5#i@-XT_UVPe{?4vX#h7a0-~b)X8I8iFzRNr2cKyAD~4jc@asUXi7i5meQsQ3PQ0&& z-<)u25u!2guPXw2;VUuP2c5G2p=-az*0VxW*aS(1DwVT z6?cs~suVq!%v8NXa&Xkkf`4kzY0|t%X{6JYKl^J>+-Sydj6>gm`|#@4mx#LifV%$5 z&ZzWsLGwf6ynp_uKGA)rx;L(T{#)FIxsSmg;ox)abJO9L)p%PQ;p}sfADPVc)TX9r zCwn0vQj=nx?Y~cH zWP5BhV&5pRum&hk02}uiuyLmY8@Is!Htr<_h%TP-3w>8b!E$~1^=N_j*%gk{M+*h` z%>OHPR`FDA_9Vlt7cq7 zeAHiOsW`$#J~-A0ib>ILk&u$Z-5grV@F0ka^CxPuhA)8;{; z9RI9wsyB7^_Lh}(T^^`nf-@?SKu#IM!(y3 zNcY_^&(FEC0;Vy9daENP!uSDr@Er(Q&1g_mT)Aui3Vr|6??ybMp1-Gu1rAdF95k$f zvpgDUm*?U;bl0Yq$pkAd=b5^N-(txSV=R&r-I-&gyN z{3`o?5a-})n6qz5v537KGBN6dndO@uPxo#)QL){`7Vo8J8o-QL+HZE;I=^VAFg_NB z?Bi`po+Yy$%}1ub{976ORbE=3k0@e1MwG}ZoetDggQel!nEHQPys4-mP>0CAEXFWD z95zm&2pag81Nr2?ANh^j&w51mJ=V}eBO5V%g|kblTcs(mhC23K_LXcAJCf`{;|)cW zD3m*QLDM>^LqB>j_Ht66Oo$>k$eV>n6Rj5MFPPB1q^h~+R2ZO9A?wpTkQ{I}k87rw z3UWZlef8+oh5Yd#OOxPz+U&e?W=_$1^4E`|q-jONPa|pC5Zq!XD@y>|KX*V-nEu zlpvxlAx8R5tyQV%B;DQX;O)KV$=$m&>(T1kw-n+H_F(kcaJmT5X>VFN)iN3N_BF6PfJl0|U6fryUQQc;0@J@d;Zr940lyL~U*x&u! z+ENb#%o8z#`?JC8mdrY9Dep>+>7g2cc@9e{6P73nhPCO$B6;JV&+zqfJEX_<#rfIL zF8G7xLUnX}Y&h5#*6l>?7kRLUN^};!0IPeFzzo6-dhWMOdq`BDwv&`Lz@wE808{NI zQf4j!4F4*diZak9-C56t(-{ylbb19!LWh*Qwz4FZQeB**-yruUCzc%&xz8iWr~wko z*PJ1lhuZcaxTKMx&tbf)PX2zFX5slz&!E@qpIf31i_aJP$dVxqvn0G2bzpf-2U?_t z<7*{*utL5jP?LW1uyEb3U8(v6G8Mf=Y6|&TYX@Xotm0LMm2fmnHqu^PVD=z8;0wgN zgJP|dLfx4gQ1)M=;Dw{P)VAwKWaG-SmiP1(d44eq#q&JWf(g$B6xlWMni{{13Se$; z(?X-|caqiwPhnd1zCG^M*Zs=I>z|Q^O`??NC}K)WTjTG_S7>PdR`=|^iV@Q+55x7~ zAF=ApdQ}~M0gnz)*=%u1%G(w^o7?L_-gd_N)Ihm~#qe4mr7ECz9<))$&@+f++{6_8 zlER*kECN5ucKy5I=PWzQCqgUB$kYZkpSsKrVhhgT>8_-Dps%s%nmxk=Wh|wA927=F z{{jyoV-%#gKXda7g!<5NGm8cLK?`zO8k}pv!v5H~b&OwJbL2O!v z;79InL3k?p$g^Lkc*dT>F-ayn>5{IJ#IE%sq2spm8y4TRYvX2SVKPTjx2~dA++R_5 z$-&U$?t{aGvZ}EGh}tAN6der=HCbw`e|PkP=K*z0kAC}>lPd-~8^owHv@mY}-fo|x zx~TdZqY4#|XvT_lsH5^B?_jL~)rCvu(NK?-&lV5qjUPtA-0)%XlqqviC%IqbAXk{U z%0Eqw7p6#cnrJIbM@ZmAlyE7QjW-!0Y7|6h1FycQJ@C_7*PlvGP64)x3i_Q4CB`7j z+IlRRwb#Fi6BIm{`6x8Rf0BA0wmw|;RAVP&pBi1de7b(x?7K4|u2p>!DEh zP=i&AWhqRVNYIt@iKH!4?uPaVitPyhtsN5(yi!vb3Zm*0&L9mY6-i{%H^@+6B>^&k z?0GGpZRVf+@c6q3lZyJIsRQ%HpDajcQjnL%m!%N8grjXmXfqEcU8Er^M=4)F4rS8@lJ~{(aJA)zRw_Ar}PAbr>i+t+v@s$Hd@%d{HClR&|UMrHiU3$ZtAEK zE3rD=aX~7$0e#eqf>V{Lgn?8kvhXpd61q{GV#MZb-WGC|gEJyqhmTyL7r=gl>f4ig z3PcG8`^RBc@iT)x@~4wH2A@oa_JOz%S6=RbPE$zQTD{aEmAY~mUk3+4PCg`m>v9`& ziXQEOCT-o|0+sly#(MD{-}`EpguoiEp#BqMl*v*7by z!&GY>(26E)O&fn>C>m;Mat|%`+o3H<3N|YK?Qx=vTD*3b50@*nZ(95F%TOc_t_8UM zCMPh24B#>MbX&7d(sxJ?y8^0hU6@`kH{YuD_)ADJ!q5oi=*8emJC|H0RQxs0uD$|k zP3pe?|Mr*etk$thUq1q>dn#_H|9cW?=gO^YYDSG+lLlCcW}+rZ^a5BP%;?8}v_iIJ z>jM7ou~#lnb6qz0hB35&tzoi?$}Ko_9@k5f*~`RGq00%~0y(Jfw@*iGY`{R2_{Iee z{BWE^W$_Gr^L_!Aqd0|Gii*@EP9kSON@B)9HJ1?{U^M%4x zIV|+a<~%~G`;Fy@cbK>+BHP3DJ~5Vd6rwwT?ySA4<6i2}(2eJLXyCtBlb3&M1N$JU>#+ZC5TqmQr|10EVidryJ~S#Np(~0oLigX+!AWFyt|3I{ zgQ@9Hd-KoK3VXn6A%tcf92l@WsSyQY)C5kg0sGgipV4+WDwpD`;j?nQ$kuFh##cI5 zqVWdxos}cW-CfmeYc?Uw56?X|$0#ItHePCOXK^f7Q4n`;eHN2oc-T9mA@StVTz^mf zES;a%KhsP$dy>q&1MhlTEz$FN{`~j+KOn9Do(0#TBT82?SM-?hOkE_Xs^Fp3mJSH; zf?p^s>8UB4<%>vS2BXzv}I*qvgwYPJ;8C1 zINC5jB|KF~O_v5@SsG<@MuyC})?MOUqzt8lKB=?t8JF(VZLs%5;65{q9^{+&b}X@r%k1)f@86ml60ZtvDx5p_H0= z0nva*fAZy%65BnDxU4mqggX8Yn$TW2({l@44!KZeSlh|{*&@YVz#SH|V8}BBE=%PIy3X1co;78RlLK!dt=5G|-%Zs>c zY9p(*6XRY;(q02Gg@_y-ga9%!P@=Q(4urm3_VZ+=rS+8AykaeB;r@<{`ex?FftUWn z_CmLD^EJrR6}T#fgA$^*mwc#Q=lAK_(JxDDas3UDHE$a+a7*rBcBY8AJ^!={h6boA zP1X!pFW{eSp`;ur!|R;EUZrnCXe3mk2?~svS|%D)s^2vXQzoM;vjQ{g>wiU2yMC&C zB*6pRDni~k!|!bjtXdhQsu)Kp*ULE#3xAEVgU-GUV;S9L(0=MEAcKbQtUIAH96SCB zodTFbv5-W)wwub;#{KYl{jFyuD2&oc7PK|{p?!cik^ck;O7IACjKdQ)1bzBl4vArF z{+HiU9F*Z8Q5>r9x%X&!@o6eX3 z@%Kzv5+9dMy*gw(`6HBrz>_=TYe6)sN&WL?-9;|wu0`q&8&5)Airfoxdj$Xs44X^b zu*Uko*;6X;KTLGqatTC}8eQnVz^eBfW3W8o;s}a6OhNbJ*I~#0vji*&tqriHD(6{u z3S#U~{zf0gmW{e@?4kUzD}GqX_X*g}32@)^;H!x?@=uy2DVWo~5-D+|g|wEA7W=wi z6SQ6^&xZ-byYC_J)MHB@DXr?abMftC7kiHPFcQBk)ZIm|y({tOq0y<(a75D4_VqsG++n ziO3qIa1~g?xs1>i{imzc^(6k<3jL#^UKG4|%z{HguH4KZ1PQGrs#_a<7Y8H^uhVnZ z%UFxY*-ByM=l2#GlR}E9FIA4jm8jw^c5S6HrlvUfb2j<>pOUj=RvXRxDoQ6v7SJAs zDEuxbZy3q%TAbD-=c!RD{zKTs-Fz9or8FGZO>pG*rH4|!9f)w@^Aw7}Ext}a z`)5Yi&)8U6((-(LqNN{&g11vHDfurTq!qvRzF@14X`GafO};>pCjPp=^ac*`5?kHX zUWLHfxBza`>vfkWB2sZPi_bbZGxJ>xitiJsIRDOCo)j=l?d6+|l(szA?7;eN688EG z*&CN6bvO^9o1%x=y4ctmyk)GaXS4yUVf9Mwl>*9=64`eC3DlvK;_fi?ELm z?{X%YX#HIi4rDp!NG(F86ZXogW7U<#+z@Z9O~!V^T8}mv}O(+?O55I384xUg?g?z z-C(trMSM?zBp2>*Q9GXyQ7AnM4i)?&tYs=<_+TlZ1m7Qn@;iQ|74tJRz zB)1%sC`a{E>5zNBI5g!$eKt2gbyT$DR~vokDIj(RZ%^I) z@SXalO%%TT3)zJ@6GfwU=ADIEZ%6ZZZMum}9SjbC#45<>q(HBp#w-dEe+);=g~?#2 zBUdG-i~ggC_~Z|z6tKMRekP5>Blz6T-;}feQBw^aYRk!a1O_mUQM7LJpP%?2nVoG6 zei50JP)#a_EYMYU%?#t}%PupOTR1EeXQg#nB)VM-HVcqxr5u+%&9*!b3}LYj;STrE zq}J~fZwoX$KlDx#d|hw}{s)rVWi{h=+OiNQ--M$Q;P_T%>Fp8>NqFicfYxCj&d?@3 zOiW;k$9KaP}qWxC&t5}yYKF+9u!+U zBKikl=JDPRWRr1c9sGX+Rx0ZzK3>K<#f3MkKfqs(hZ7zmwtr6z2PE6;8mg0^ySarW zA#a`al5vdvuGmS}=Is3Xvp6r;wfO-&giaJFb09|c?IM2Q=>-?g!k>4i!1ucE%A+gWNG zUj3tfz?A$1!Twv9M?B?~SjJZZg;NU;uXl|U)J9vV_=XSX2KW+PZku#Wv zQs(Psmv3QIBsR^jkl`&kcI_WvfxSx3^uK@q{oKM!z~_wk4qO6s*2(>mcEiTiNHQ&c z{M_=~$nLZGn6zRFKxGccPr59EfGz0!`Sk?%L*<3;8TJVOqGnde!eVhzr*UI)w;*s? z_w+kUd{ZfDctDFyKs-hs{(~Ea-#%>(ofb;M?UrzOYkPc~5c}X@gBjG_YdJyooC+AB zf^lK)4XW!vqs}Mo?&;;KnbuJGD)ZaHou(9j6!hTm&FEdPsMy%^@qwwMB_cLH-IcQ> zZeIKA<=CIzxDwN5uWHQ?UWX2|5`D+UW|Ph=N7PV3zrTaj_iCMnq!S<0kF@e^oc{VM zS*8Vw>(pF9R9)-p^@h98vjoH+kxom&I{JSmW>3qx4=?7wkWTS^1DQKPlFlFC%o%IF z1?}BTZ2Y5o1wG7X2w9B1Gtmz%Ypx5; z@nr?Y(fK%RdBr3?I&OQ1iqIUI4FC~1vGQNIzHC*lmqkTSNdEZ2cY1odd2&K`Q@qqU zcb4yd|AeGjyRprs^5){?HQq_snJGc!P0vyC8uAl@@L!JK+FucfE{)}&C)6Q!MCZGN zRYb&aeOc0-yU73e4HGPz>ifT@T!A_XM9;KasN6&j#$(PuXf93OsG@b#OJ+BJj-K8Jqoa~@@WByFm zS%zDY50w+$A9w}*K!X6b%#9w9>eE--4;7O6`DM?BNOqB2+5H)3YWd8;>e4o_fZ|-y zZIeuem;B9@*NqstqK+c7W=HKKDq?eij!{+*FU~N9$%11u1>|aIML8brl4ouCZGY#R zQi5_Qvl~uduOHyG{W&AKK&N1>JNKPgVZHP(x@K}U3@6%4EI8U~;5rN8CA5(q};8u?S6;)7o&dCy5TKQtN zcM(#0uj<|D^-t{$cUV~v@_i8Gk17{9y1cqaXSl4rHedBVG0fo04k=$d`U>+nil~s) z0rC;jPtcg9H}b`xp@w=rUx~);2OYp_BEcMB7nIg~u;SxY zOAajusMt&aT+<*r*AsnCyI|j7JARrcZQ$%T2CGhS~KsDh>3e!?=)gJW&#Jd zYi%XJ*GhOLdO6)?e@MJA)Y}+S8mUG{KU@$K5Bel#Bq4FtH+|SoSpA+iXf>NRMOhN! z@SV6{>NFF0OFsD*6sH`ic)YSa#MUQ5Tkt{8PdY67^uBb49enV2B7pTf|8K*Bs5}3; z>t}5sGqR?v3>JtTy}Z2CobNb(e}x%8Z0kIKFI^Wt&O83d@SJ(HQtQM|_RjgY^RfM( zL=XuK*6Gef;2BvH>!8T{nK-b%&ot5>T`+$j2opQKW7n$7GyK5qI?TlBy)dtmp;+?E z!GS2Cg(_l2TX9u?d_qPI1a+PP5_$zNxq=9YLt>( zo}<1CK96nr)WvCGl6{qKDrvTk3KdX3=+#u0(u>AV%sWllAq!D)f*yboH-&ozxX>C4 zq!TBTq%ZPjTSY)n_!5-k;)w}B>5zKYynEI(Hf%h6z^GO_)&=}dU{q)V#EAzA%aLTF zlYo1Dlr+e$MRcIjEM&5Ek3v{#4w+<`hF0yP#fdXuNua%sVAt>q$%-t4dpO*4+p&PG zvYwf#r4l%J$W67#yC(jnfWKZ9kJsA}ek{rNc(XP!Zb=VA_+Dm>~lR5B_BL zp%NN|alRXCul4Vw7r`(2Gm((v@<)x!<9%qJ1iBP1Xyn3jJfM6}+QRQr=zQpSbcilS zAn!BpTEdZ#_l5>3dnJCq;_CBXb4>}(qxm3x$#+Co`b8~k>w{5r|K=I!nzQJAI z2+LZ)u74bI6L~!n0bv|~>L&W_a=pX*U&8lGtxIlmGm`F_SJTV5QA&1pZ|j9u*ldCr zxTu&OBD5tb8t|$i##Gm8-`i98lAT&`^#3^FT~Vvy!p4ngsZ7_*Cdn@nr9Rabcu3~6 zSkrHP@5J_mpz0|YSY$8^wVnRiZ}FhN@n!+z5s37S0~@p{ey#22{M2^&cyaKe5bfhcIo%Vte$v-Pv9>ucfRKGM_1expE*2DOa0!i z@(*Fr8VX2$R00O)X~(ZgOZsJkRaZODW=6C?z#1l!7>eYyx%Kqa(ySFd<50&aHP`f(^rlG5L!XO&wq8W#~YZ zFt-aI8w)e1p+OyV>Fevex8Ss-Z{cO};G^}zdu*}cBY%ffUv=RAav1aLiKX{hBkn$I z|N5%Pe%Fb!yL(Ymt8E#Sq--v$&SO6-F7_H1-sr;tz(r{ffDmTjF&tP7 zxx=lvG&5=rEK?bba%krxA*gHsTa@4~(q*GGOgsabb2ODz153jS>_9UX+SlGh$uImL z<5;Kq2mItU>Sp1!j+@}4rJYehv!L2cl?m!ehY+stADfdQ5CH#U9ud}KSp0hR?681s z4Kib8;bJ(oInF2x&wUQAbWj-9%(wbL@wmX%9dt4YwI(|NZh0VqKqu)UNQh6Qq+5v- zeQ>-E%&In7AANN_8B1GOt83AxUa4i!Qco(Ur&Aq;hVvBz?sv%8xp`+~bhUF6o%{4H z)*!R~55?B{52xb{Rke+!jraR;M8rXTFyW8Jr@H%>NKb_-=$5s3HG2)YmLd6eW&J=9 zHp;8HpXxh~5yPGQ61YO*Xxx4PqbdhiE?c_@q zu1qQwWmus#V4&yBYK`(=cU?~GCMGcNi7q0DG~e$o#6XQC8ck- z9m%1L!#9U_0hyNxmx2BcbqGec@?sSlsJbjId3Ej$S(}B#-+jyE(ybN8%m|y>s=oVE z!iG)g&>Y^ThuiCr5c=@@$__dxzc4QI_>q<>%UcQ(NDngJ>DYI{o{CCp6=EUNcFNc7 zaUITWDh?1G0KQAQ)1_8R#yf_MHFxOXB4_MRRD)&FZ$lEP{~R|6>78CE<{#BQaG z?RUI0L$1a}vHZlLwzE?{Unzk(2WOq~`cD6K9Zp7OUp%dw`dvly3W;<;BI@cw%$vNt zrRsGq{uy;u>U2ed$}W-EYaizE>r8hW)_#r@8LQzrC*1vF!L?%Ys zknnH}Dym{sA}q2vnmUJ@$Jes>o_AeMP0ZjE!bT#$#^eRwoPJlIk?Dba3JTw zCcG0}0{ZVq3HBLS7-fDMr#c~m1YI}#L-M_yN}lA<`rX_qSIXzQ7IH0&nx# zTgf@7o6#xWC&{Z!{<%|T{|@_$scmx=;X}D~%q+9mVVpvY;24vb-tH(nJ{RQNK?~le zCZnQs2{(Kz@M4Ug7!`Uwx=pBD!>?!ab5Ht%LI>UjxB#(AG$RZ#4zKoDj;;z_>OvY5 z?4(VTKJXq@io*FSSUG>Wck0s@QC&!}b&O;`f$piECr5G z;N_Rq3FG`^x2QLvH#bM#PsX;Zlsz~;Ki`bNWppE}7cX6;emX4gP_r_o-8c>q>KQ*yqWKV z@(Z84NDOoZ7lWq#6d?Y4B3hN&sh@dl{aLN*3-Fy1m7@N;&;#h6Q2o1%(=!X(W@RDn z1^>lfQFj}vN8)m!+x}XWCztjf50kIGcydYm%qmfWdyFM--x0mj4kg|Z%kr(Mn8`cN z4zxaAG)BP1N+shXE5WKY=OL0O{+V>rm!nGP-wMRgq>_E8c>Woi7aMlCCmt$rBf1l) ztEiNUo)=LkXjO?it)i|Jh)U5@{>T|QDleM|l15Jek;6@vKk4RfQ(Cygx zZ>%B^M#~K3OY;~+GKK2vC}!9k>(y!Rxc}0Lu3Gp4KQtjDL-|GqTA!N>q8i=o9sgSJ z9P&9;CNvpo@Ot6P0R_>nmvMM>RH2>G^iJZj2usGR-Ya7)Ud=2Ho9e~e*z-><*$jN2 zWV$)>bRNlwP^R04&9P;&tEQi|Dr4(@!|b)QT1y5xdwE6Ko<#O2BISOeJm}AIZdRo{ z`}OWVB}ei1x>nG$QNA#~_z{bbj}+R=yv$r&u-MqxePThqGc%$ilYG1_EZpp5B(9c@ z1+STwby*z{j!q9F%6a6yXqy)nYVj9i&N&?+tV%7&w@s@qJ1F1>HsTAX`VN5I>~UC3WkJ^ z${%a$i`%aHCaZQ3*eoV*q5r9HW);(RMsh|qEh-bSD_0>$qSdHIVgROoCv*x+(ox%VII0+$ZT4Z{nd%ds@1 zGwua@Xm-%*?Jo<^isEHz|nTu(~Li!4czX1sFqVhlxSZ)4xt?IgygH9p0Ml)SsniK-0*hx|0}i%(n)r3l^TzpSoMCs6 z=Mb)IXZ~mFsHp8;Q4|`BNHy51Ijql`3QsCB^Oh#*`r19F6^U`6C2XwdVpWH&U)^9; zeoXUlrPYP69t$tqtY6GhSC&l$sr9Owf5*K$Yjx_VmYY=fahuYQ9W2NuVl#Iz(+R@p z2;q~4TrJ(+T&vn&T)HO7DJJTi0IQJZDEyw#3fhto0tv*$V!xV_4r%u2vcqciuA?7Z zF$+Ec)|VOL^+X|czwy(?!75d%qQ#P^$awa&vhr#s|L6U z&lsBfSFlCYSB~0Q-03U4u)zz$x^Ar0IN#90USw`nzBcCgNc^}I$0_|GoTJE#m7vGP zTYf=W>%r7xy;E7_0nsOxOUL#++97DP1)ryH)GDtch2VtBodHW9JZ=`ayd=RTVi`zH zbIt2@BWdb*0>o=K&%#KEuYXlLt*a8{KXILyrxAfJ4i7<)?N`x>#l{XY0@e`j{Ap zQNGW^<$H0%yLy6M+6l@*&~W#M!**P^W5@$6+8 z&Xbxv2V%1*L>H=SAsRu;g}2UDpM|7xKt`=4<;i=eH3L+YpP3m0J2dhgs!|^T6mTId z?ah@Oz``4UlK{~qz$;&a>ARJJD(4xAP7$9Exruk;i0_^Jf;_;G7$D%9^`!)SlP2A! zTAcF5aaO!Yf@LXbAC53VgLEkvoetUvCAj}@N5P*?)onD^PF#;8VeSFN&Qku6q#EJU zHa-I*GQFc^X6#Pes!Ii3c)URvb%8j?w1t5)cgU{RVhOv3I^|anDfjKiw3UD{`cZ@* zNfr#<)Jk8GjN0Dh2gJ&QDOxk;VkiRmak44h7cCE3(#7M@yo+thDWOv0ems8n>x)E{1NXVSjcDMm*R3Ov!NzdaO;x z_uf#3ADOYWt3Hz<(9h}TaiggW^u_oGlGG3`}IYQIUYWY@5$+PiBUS@A^*vV8mKDP}v#@%h2=Sw2g2BovbCTiy@rtKck-pa5V7T>_h~h<7gvjmfvZ8Jni`* zw|#fhgH)-n#d$W$I5SVM^vr1NgeI4fIi|m}X@%Sr#i(;V(P3lcKq8}B#84!Nkn|i% z421g2tkolH#W$jCn{OcVIp4wlyT8-%ZfA`5Hyo|`c_=RHwnkS^$Yb!!4bk`ICc^?` zJwuytOZw&~wV7LxtEnk9e~+2fC?c#;JX(%FoAoYJRrX+Hiz^8j}f}hF)O%X9f?2eb2EnjlY1o2);y-n zkjxzM@~nZ(I_hK!sN-(RAvQGzf+qSVw977?by<*u;;mBKw_IYjN-#FP@++l$ZPh6V zkrkCFZ5ro5FlF&WzQqHqcWy^3y%elV(d>cbQsu!B!u$K!XLFBD($qrNuG2))o9W^D zB|Hj~q2HzhLbaOMc-QD%W%7nD@EOB17I&n1w#AJqZFF`xdfR(Avvg7tWmIdU;8R#x zvd~Z)81H{t79}GTAd)WlRlJb=$f}HxYXG zFg;6Z{a~V?j&i}Z{twj=W4Jm6%2l}>> zE9T-TNH50(idA}NBS!~!U+F))|L6-3e<6+fgke?mm2ye)8Pzsh*y`n??mrT;?)_so zug+#J@E3svuGB~9d9LY(=eL^J4ztd=|8-AI)3M8a7i)+h*M1V*uLlLtS3bKNjieZ; zFbu@(i83)G$%Et)h>;_?jIXt?<;<)fWG^MqEBk49pfLS&r7|LR@xC;lAFlxX(IA_4Ll6MHBwUpyJl* zd>*K;{?kSVQQEwV!W9HAWWM^QK5|upSyn4p?wj*2h@oW(U9B}@!EibE5Kcm?MO{zc ze%(rdSM=YnV34b=BlNmW1!#eT>y4g^qn?&5KYX|>I_DuEk5vnum2xS=fGWO_jUafG-#5B zZS3SEX>8kWY}+;)+jhgoR%5%d?Z&p=>;6CE{RA1~WbbS3HP>&>mC8)0Z)l*3rRL2> zt%G^m1>>)WT>tw{@C;~8TaHj?L6_9KLOOpmVb zrCc0g;FDOCa*Wq4L4kWw$Qh#o>lP^&gz)khk_eE3L!^lVeZr-vxOaILaN_H_b@J)n z;4rfhD3R`}CLGDmo7WVOgwz$|2(X9QOzD9*7iRk#4*F#hI&oXF17>6Ai1p;>Kbqip z9}3|tA}S+esbL#e^3tMCMds`%mt%ri|Ci}PUPUU)7$iU7{99fi@cCh_D!Tq%oR=-U zh+?hs*lgcak3c_bB-s}~l0+8Is6D|k5Wx^cKZkZm@&z)}nacTnogm zl0*Yb*k3!i>dbfDt9eOg0`X%AYotsuxmmgBz*xd7Nh;wO;&Q6yhxeLJWWA1T3pJb0 z;2>I_?9Pf^IY$aUN$apr&Wux8>*YqN14I-Rt`KKt-*!0IkB^O?)NA3pQ~=mmr%_MU zNse`soIxJtRYtAg)Z?rM%5A`S%UyX!MWvAJ;<9zX_|pTjaRcn?4;`B|e(+Hm1Gz)= z9`W(2ortY-`6i*|pxR3n8)VaeEzK&IBktomP#5ZH!Uf3#dF$$uO*1EuPEu{=(Z-8m zgW!J`!bW2IqgflmW8gPqPcdvUEY1OV;lKAbX}v&2a>TrmJq4&sbxo4F!*?BzTv+OD^Y(rjWVqXtT+CJeUSM5QG6*L6;CHR`^(XYnC}wlH;aZ{}17gLj z)ZZ!xX1xzx<)TKplWW1zGw?eZO!h3D*V52LR-d=1L3@IUVre{l;dJz>IbScYTjzWv zZjtIZ!q%Lo+=AyLq2teESHrX7%sE!|@MGb3-CM+sf0&0o1~zz$c-ioxjJ7yf+iJFZ zKE@ohJ;m>>58ndU)x(<TrQ?QB1#HOaQ8z-HJ>F@9@7aT&hdeNdZ_N zKFL)ak!@&6IigQ=DYDz?*Y?5zsl&T(HO^E&9zp+=NqAVO0lL2oqT9n;7pid}R_vJR zHM7WojgOraCnoiImE1~}t-KVpvQkGfd)IfsbP6Al;K=7wGt`|4mdtHdjWkBoYmx%S z28VO8+*1mxcM=LZY&hxa0Cq*xkPO|t-`cgE7U+XkX#di4PDBD$S931fjF*NQV`D@vX;Umq>l#zI63r zY?=0BB3EORIyD>6Z{{g5N0YvvqK&7*{mjH(KB?t_$5i|+C8d8~mv&4Ss=L|Iw86-3 z9&Qa#9UO-xJ}0cp~5F)={&S@620%5-lp37|;U_SwR& zt*>ou>GQT$0uLlrJoLh-i!_lY(_ZrvuA&FnJ8O$^2~Z4C8>eYC5V&h<_G3dCR-PTX zaInAB*ERE`zTJ;Pd_d;X(XXw4m(1-4j-jOk0U>KjI44Wd3Z;=ypt*Fk15-HOEzvJj zl5k4N&Wip9+ro7|#;8<{4mNh$LTnrZoIpuK|K-*1inMcfrq%_8Xo>UA6Gl)oE==9) zG->dPp6BFJld|#>71d3jW30l6z(!uu{sq2x@W<$I2WbkcSu$RKAtp~wxAYy_?VLf{ zc8D3UI$I`;-d8R=NJ zkt76Yr-rE1kUh04DiOW4vb&b}r&~%0HSu90`VBP-kg5&>XSbBXhaoBfXW@eI%>fbO za&!dZ3U{aT9Z+`0E%$GlS-|9=FQ?t|OvtuN?$c}T_PS3p+q%5;a}8^V4v?zjD3qHO z5k^`EX7;9^fm8T7a${^+RKWI}Q2P{rA^p|SZ@>~&)y7(EmpMoT3>I{kOK_VzU5tJK zdb&(T>J`S$6F`!@ywHcSg#l?-`$_mT5}KX{rp^wo<&MF&k*)GIw}*ZFd8lGdbxp~5 z-`%(C(NE=CX$vf%snef>+(OiK*TpIOfo{t@8sDxYR?IqLreNOs!)EYO;eq;JO=v8`J_VW}&82|xoQR&?bilz(2sNWIN~ zbdHJL+C1eV@f@`zQRt5 zJGOTF6zNXG3CbSy{9CQpSmhS0m!URj_LXpXE0Ox#8&SpQ;y zVD>py79&GLG$5KXEIM37#GTUA)O31jE#&=O(1Rj07-q~2`Y$aj5@<2{%g|4UT|i0t zy!w#dz#|$mYk5JZikg5e8?B>C!I#jmTJhAjUAxQ=d3!OBLE1Zp`~Ws7jaa9-bMp02 zi28tQfNu4a+Bax->(;auhoMWqq8Xu}+I2Th(9nP$4b8f+{k9e2>wpY4mfp{x@Kn`nd;W6m<|(AX}y5fHHT%E<(*U8;*M3M@fQ8= z>Hg)pI_~ZKaEJIxGpHnXK;75bR;`yNkb#kbm)3j@93iUaL4CHpmVlPXX9Cpk;5=f1{A59uNx z7ySL;U8EE`x%38j575@v3Llni_RkHY8|8+&2s(Waj;gW&Q#u zEN($M79gW5&dvQwd6W0A+^)e!8~_Ij9Vtl^3gxkQ9Qq!$pZSbozZ0%fB|NdgbcbS^7Rj?X8SL~gU4~RxOF?$1=taS~>AfDVabwi)B;AH?8svJG44K>r zFFfRIQNE+HG)CWjjsq6F)LU7&7ByTf&OWe!UOh9AD(R)fx5Oa3hbX`b+KP0D=RnLn z3ro{~-WP0(k>8b8A|G1}JG=Re3=Gh=mNz%91%CP{jdv4aF;U&Uy^x+S&$ZOdU*l0z zWD{9I+RXu`sc?{s5ypg#WmL zegteT*IQGT3{z(CX*Lde@%Ghll8d#{Ao85ddtNOD@%aX1RC>fRyydh=;!H@C2|Ugw zzSYL?jPfS@bGw#aK=rDX3)fM2TXorRJ{5lX8WwUqxsO|g$Ap>IQ0QUax7XD>@)mL~ z(eIMUszwQ-GQu_itwF1#yxt;G0auvhc6iaouunb#o4HNO2H0aQ^lVCH)V$f+7%qO? zpe@gD?7PfWE~AEZ0avT{p59B!5df%c;Fn1%7Bx8u*ZT8esKbHV!SD5NIocOIvuDLC zzCYY-=nsP?8CgoIk9C9<+V2j7J>>$9qKS1s>1(BeuGk;KwcUVz{5Kc}8*<3XNb4#u%Vd;FAf?}G%kenOaaDB`?yFA&UZ5UP|#8z3c z_RF;k7bFho9babL6}B5wEk!hCZ})(S@vxPG&Z%#P7&`w05NMN}rk&%*9a9|QiG>8B z1h6J}WjLvE{q$%=f>g=Y-lsYLi7q2hUoBrhK zlg0Z6W&%O4NixdQx;Z#QdS{)YgJ$&*oJ`+uO*(DTyIu zg~z7J$Y4%6?od&KuHzt(9z_j-91FrWXX4l$+|b;0IzNfgY}a*C_>KYx{o8~E3u+62 zoAOMF#*t=iYQqA0>*jg*{nr7phQsNJDofpkrI@D)b9Z;LAZ;$M@sLwsBlaI3t?7%C zqcj|lFYiRi0%p8sG<;!w@*7GCo4HTPfAg$c9np(H3rj6LJ+xcZHvsi zpR+TfT#VdOJvVw(>SsFLfRYl}I@jW!o`9eL82=Mh6eOY%P19r)BnEgPTec@)^%d2_ z-N~pERz^A+Jdf2iP8KQ74&%Kw4sO!J75WHg?`LI_YJ($!U*jM_{83a>=%8@1np#zM zHQmKMxQ#M;!2yAiVId$^u=PvczS}U$hfg1QI6oz-z-5fJQX?acV6GdERNNMR5HM%e z7VRhIeo5Uo6X@8XPyw51k=k*sQjjsE)MkE49uTGP#QEvg?feD-p+P8U=~y?61Z*y`4>Hla zYG0#J%?iLJ^C)D);}Rvt;hfau6lWf0Q9#XZE`!z7lhU6?`ofp5*BIv0 zpkMQ@>Z16U2iqr`XI_&NGQ5j1?pem(T*yc)WMQ);Q98sp(&uHyZA|o%#_4n6D>O?C zsHu72#+^DPPPf$+gr>a$Rc;2~^uNMW<37q1lO^HwW?a>>fV4+wtTtOW#DQL?D-e6- z9K^wDpZ@e#)*;p~{kydhweOQ0YV6a8&bumJmS0>By@m-)5cIyB^PF^^xL7%BG*CVE!V`FeN9wi^f=V< zl0yBfyemOdx`FM{8q4yN$$&;fG_v#&>|BmO5hS&MA%GL(D9<*G6hhC6jI z4I#;K^#UC~!e)qlv3w3*M!EE@PdO!$4uQBN)Vve44>_(AHUfEvcJT69RbsHaWNawv z&DWrMqcq>Vf8j~aitLM*)VdGK)za){KXY;K0{#o1u#H&`+ZVWEwOoH{dFvyAHg_Nv zzI2iQ@BR#=jw&cELLq`uaI>($ zm5#vY`MN7eroY;ycWq?FPdX7KUZkBpa|%{3S|SL3 zAaqj4ih!#inlpXgptIpG>$2XP{wc@9FV{lW?@B*a0diR3pGZmV&drCA!Ox^AAjifGU&I`KPn6ginu>kX!%7OkwsugkOR(&0v?}cW1oZxIik$&Ed+~~ z_@>d8W>-J$e>UIZqIT`oWMGOh5BmKRMS{|cKBY4!Xgwku5#m6^OiqmQZ8iO4dD5PE zb8BtDc=LH19vS)B96O2R^^rik$;B47ctV$NWvNW&`v*J}hm8UT$9ZyoQQDPX7W|7z z?QE8MV4`FHc12aJ=SRkW=`?z4ufw?AXWGt}9=28Q?)bf{#ck3c`WRnI>Jsw~SRssH z&=560Hi6fl)hJOqsFBqP8Mus-T5L;HG`InCfS$Pvj3;oMlR^zN$a)5%IhfFmz3V%% z%-V3S?1h@3IlWJma^=#ld=1>WT&j~YZC!UwgPFhsK9w!pbWXJ0b*==qy~6^g>BK#D zO#W;cMBALrq#!=t<}miZY~iQ}KAZ}}vWUGyqBbo*7Gt4Gd)z7MO?5!VHmC5s38vp7aklMuEW>ctZ-a_hWS zp6P>c>;P?zk6-BN56_lTqxfaS{>)h}YIv~F&lK{5?nO18WO;Nj?^)R_5W3n;q{L?F z)Q$SZvjblXs=K-wd-}P+7}}N$^r|h$XnB%R!%YpY=$OrLtd^Nqrc!8xvW-gh0(V8E>-6J?otu3e^%hh&VrSPRRiu~rFP2l zBrP4$G%1RUk&nHT3#zMmoje2F`!W+h5H+bYx%d2Q3VMwo9Y)X0E%9cokdIe_&!$qq zzz^YCc=uAjmkz@3;2WmG(t1Fw=4kMMm)@xyUW|EV_NiUrxKs3AFvs`?#sOFu1LP)Ky0k6ik6ik8cRLjos?F;uQZIxeuCt*WU zeoYtlP=TUogpmjQzf3&XB2!B-uW24WA|^uHFEJz~60OOvTk3c~Ce&4-NJPdu0j{2rmOv!I5D|X&YE7I*t=T7 z#scx(yY|uAv)7@OiwZ+%A0F0DS^l)SfLaP75jw5Qdnjo4hrfjN&Qf`8pYM3j-$WCr z*|C26<>e_;CUdu;ZF!+rbO8(5XvT#L?H2a%x!>rD6VCY#IyZIz$_8@qhQRN;1${gI zdXx8Sa_43X-|^71G5>hk8R@oU3-@=Y=(oy$&-gBqVr_=P3@yonxO?Z@fiD843`mc^A$IO9!?b@KW=C(bHo&)~bzCFBp z#qD6$Q6+$AR*kW7vG_+V|Sbkw(vcKkfG-NQv zq^C}W$$kv>Pd}Eu+mAvOw#wFN{-CG^8lub8wd`GMnIwa^no%M&S8 znr}!D)03KIahN!ynqE?5bZ|HcZ++LQ0p$my|0;6U{viOhlrSf&@1z75FpLHdA@`Fq zugEWL83%_xw(P(TC2XBotgj8*|5m>ryAxOa++!_;fz7s|#&Z5Ee5N+c*q|1bgMWRV zk_ODg|NF?SQY7{{&{)l(ey~3tE4wU9*$A}OGpzu)<;izo4y)_z1d|rOe)FFH(d_?{ z1MJ6n@UjhTz8M^Mt8__y%hb$Dt#0M!Dy5rla(z8}ZH4i-J6vAxTyzBlkW?w^sp;jw zwn>bRYtRc!-`Q~;>^2^_uv5++IQP-%9$dEE8b3h_@TLAi z-cCASsyo^InQ}$kuIwY%J^9~gXqJC`?-A`san5b)IrtPlN+iVz)cLPMGo|wBD$WC@Tz^dtSdEs%Xie!G&NyyD9%SIe|gym$hiY$TqIa zK-kr7-wie_2BZGnNnlYg|M*fYub_fripnBy$nm{_@xUh{t|?*Namy7~=x*-N;>*Ew zu*_eYtyZJ(Fr+J?!z~P5-g*D4bPt{;{x8c85SAg5Y;uU_RO=2LJPKLcNa&bzo8G0* z?F<8i@_$j+z4+=QUREw2QsvJRi1HviehMN%Uz-qv!E90D6AoT+Zre-pcM;)F!~lWjZX_ zy;^m~0|9NDMPKKE&5(jW;`pV;%0(BsX<1QK=8>4NSz1p2or-CRV_rMfGcYhjZFE9F zbeox)D(GrZ6L~lqW|1vUu*yPdAJ#hLcgT_5410Rhv2I!x&52!v{aU69m!}H6mPn}j zJf*&wcA?NgO!#wJe5Y=kx7AMQ%bSqmqMmN^0t%gbC2iFu;9xcQrfb9{P|1P}p^(ZP6Kx3FRJH_lyjlQBVxleO;2gq+Y zo|M5%MVhWEuF&vcPKa(KB%I`1;WM|E>N(sA#e)FoZ#Wa0i8L&31j0!6$nx?m(f7ND z`z70k7eR+JH}U__8_r9#Pegre9z~xl!k5ezQ^ES6xU0-M|cz1EnXZXB(6ED_I>q=Bmlz$dli4$;3 z0>+^cH_NC6|M>j|St;t82pj2-b%$T0Au8ui)=Z>{_*ueqtNgd6c?a=Thc`&!?D!w0 z*iTF^%^(kHOm{6PL#tGYGY4G+)^F)a`XJlV+OF4$$gd^a#)m{dd7*xfEPwLWT#Ko1 z^l9;OBa0~v?VZplAuan)n{4m&l40peM|>PPD}}pt>{+^f%|INbNm}6h&j1GV0*_?z|Y^C`)Be5$G=xAv=-GYuvQx6DiyAFGpe7KHL<9P4s4^1VOFk zkU_I66AcP;)#u?(^_Dhk*?bG?>g_hJCK!J|HPY&AH`4$0i~wT)pA_jO&aU2MZD$ud zerqfu7L;FN2l|@ql9rvF+%+^LN=i;eu#1j6G@#bHY2{nD>~K5Y z2efF%LQiIj!5aIGab!5u=zgrO5g{OSRH^TA14Ev`)q+`NX^8LH0y?i7fz2n8JyP{0=T$C{vx!x)6Jzdr+*X`t<>|k3(f7Nyw^|0k98DmMeBu z&Hp#=5^LfH$w9>f69Fl)n`$T9)S2oD^Txi8$HTh+vVPDPzMJ4slJ@59xCb#|dI9(1 zKHCu$G36=YP2=8ST1)vvVsf`e^l#|VeQ%x~mHb}l3eSg%J<4r)XF*l}QrDtGs z^S}4IkX|HBMlF{wiJoBDRPV3k4Yr{{#;i1Rs6sr=_L!-`+;0X`yYox;mo4hn1FE$jHdSyPxa>Ig)B> z(6MptnV{b^KyCnQq~e)RnwLi0@0_=uOM9ej+qE23feUh8}y03!zLd@^XG> z#M~uu>c<#e`5~6T$n#R+sy%;qI@%2M*tRF?C|ls8BWE=z+i0nthaI=@A!P&k@(K?$ zuCyQUEK+RPxv^hUD}>y;YB7ci5-#m~&uJ463a-e}by#x8;bVIGB-^%|1)rpiK-%;M zBW9zCrCui1h!4G!1O5KSm5t`Y@$>_zN_=OR;ph1Z@ix0!Kk<_7)EOWT+Cts;1g ztSHzK>BNr4KK#(R=6)ivv>W}QM`)X_qktJ1Z&HFfo2-lJUL8T|`prRls+Mw2j+Oj7Ju|ZE7nQeb zDO66CT#Jhu$Lm*f>Dm1(8u-y^h9yqC6lmBN{9a0?`4((a?ydD_X)dL-qz*+otwq*| z#osQxEYaDFzV16ecmmp!1OMbByX-NEy zcU8IM!glR2nSsS>zOdbA(Ba^J*l~ivS_4`XvdaUctnT~vHGJINK-UrbAIm|}3Aff( zIy>yaE??bGX5wBvJ}juM@W)urmVcYqJAs_DRU0w8n3L9c(4`e8DGun1vs}!M+E+7% zwie26@;AFGQ6oH=l%t|fSDxfQnBpV}3p+|uP*YAtdCj6rB@aUv0SKp4Yio#J6ykFR zIJqpT2p-#|Njw8gl+gESL41qrVLk>|?qm+lvUx5q!<4#IzeRi&Ij$8UFYR4F2dr0) zVSmS0gPb%DS%|saUY_$dD5^tUG8U!Ug$94JmYkwKgX$7Dr9r=C!J^lGpe`8r7d z`UM@QqK;IuU(=*0!&m(oxP#S%_*JM?SMC=A@$SyGZt6EfoLDJDFzE~Tc3JW`%}Oxj z3)BLIA=afK4QxY6(|MizNQAujI>vU%$Ao{j3u72Te4PA|@}JDii!x< zy*zM;2dpg)myZAYgjW(6pbu@HgC2{32xzNiDzX?{%^%jb$Sfn zVgGE2)wgA>q8yx8{=;a3+%k5r17cIpwDJ|Neh8(IjC|ddt2Ivgi84l9sw5^n8O_F| zhi#vAY#k?y8U5j_rb8+CEs&NR(c98Kx8f8~vTb@nUF;N}Uz7rXbaoBRK>v4fS(6<^ zf(wkF!}zEYa96!mSbi-WI<)*f7xfJ{BI2~Rk#dP>ywg!uSl#6%xS}UqY{TgM963S1 z1zf@t&*1$1bQXf;rB`a%8R3u*hPnq7*oy(a;j!j7Qn1TgZwh}7HkhblX3#|b5msUOt7N8dDuf5C$De#t9L;QSfJ1uh++cd;igL zRQ_(!065T_E8vhTc2T{mPtDM~8pPLK5q#nib~Q=GwvFdR_|x(#cM$~K=;+O6;=l^- zX{nN};*T7FZMc=*3c&-2a&}%D;21O9lP^gvkSF$MioVyl7BH~A3rhzx5FiJUhm{s~ zMYbt}r>$QrpV1&LeB6| zN3E{zlXeZ*P+Ju%L{CwJIZ2CTt-&zAp2Y$Xhr$XON2$-h)M{=n)ZjWOdS`3bbW%w0@vA$jnMh#30ackE zG+gLb|7Wz=>>0N<17$6`c9v*3|GE)2B1fnc$<#VxdF2nzg?|*~ZQdwl+zTDpPM_l$ zI91ewu)mKTB(a94!h?Da5ujbbhva7SudY0rvI=!9SXWa>? zR&@O%hIQA`>E$Xg1HOgTpW^Coq&XC(qhljhf~N6~PeLvTBgDm$s>_h(U7@t{*tyei3o>zX;vm6HTN5+rCd{mqU#r776}+oJ z1$kSy^B1Mt9_c!>CG04&^mf2vJ%Bu9txY_See3 z$G)O3z`!-4VRifV2TvR(l%CtZ=ETBZ(V0)IGwEr0s0T)poM^M1I)0K%Cu;?Gu`*4i z`Lipn(flO@PbZDR`NHpjqhe>(Xzh2T+!MMgI!|_;+R~lY{VB9cnIIP4DiWr)e;Mc9-K``S6uib}h z|7*0&q6gEoG#eDOPuE+#82jm4BYIapH((!bx4GDRe-lP`g1d1FOwCM`9rqobRSXG# zmy_vVl0usS?09J^XIPte|KZ|2h$z#hxt*ygxV5$Qt&`nP zZSx=p2M2gy`TI4mA3q@nhx%lTEpRdRbvGLpBg9tD7?0eEY%$lAxyH2qPz}?RJmLRT zlOnEZ2=~Vf^dz?-1$LD8!@ZZ@YE5Zm^~i_#r5$%Ct;Bt3dnyW8z`$lItPC@j*xpz* ziUQ_q|H!}sj#Z`309*nmN3xLJ`6X^Teap#VjP~^`0ed?;A)@n<@POFh2{^s+uN^+_ z``%weJl*t%>UehoIxfejMMPjdwLj$~MhhQ(P8q4?i5X-fRdRYP{Ec5y?j@+7>bdxE zC~D;A$bhGu#%;?E1Uz2)3L;2lz&LztnB&PHX|NMS^BVPL=;^}b@Zix)BCrz3vE2M( z17DD4!xZxa{#uNKX@Ju-6fsd>8E!33A(p1m=#(~1;KU|!Fs|BZ=51n(kqD9w(2PQ9w?>$=|vu; z#%t(!HeXrTc?fnNigO&imFHpr>q9srcPKa>?L1H%xu1B=?xvjuOE@lF{zr^hX2loM zym6`Km~ewvvYWWu4^97Z<0Ga6lJxE$vD*A>+QKBeKXfQpW?sL@4ppnnVr`v>d-_^P z`kPov9|jMSY*2tMSd*j%7>!JeBncr8xDphxZKJF zS?%y&UvHJjP1Qi*T_*s~c+HwmF>big=ysT*fHZ!)caboWh*I-c&U$S7T@Fyynu}^! zehZr9$va2yzetEN4t>r99;0tJ*X)Lh4};B>mf50K>qz1Y)%qVDhVe!)r+H~c;r{gp! z@Bdh`(oiD%AF-$ksK3(+RS?SlxSn#5EzY*;Gf#PteI>QF(f3xzwJp<1Ybr1hIbj`k7as7D9<0)2*y0!mZ zpo)>m<5$V2HI5$y2g|oUb&ShVuAOc0U6pkH)seV(ZcBkUlg1E~RMVuhk3u?x8+?l- zd3S%Y^f2b`jGP?_koSi4?F{oYJdhw4%&fewwg*(BCMO`5ehRp`E%zG_JnESgF7q+c zjO&1-g7CNS!#3iv+Z~EgE8o!V?Q8k~+&IQGXuE1%4QoT=2{V))vPlH&Avesb*=FPc{vr>lksB2d`E*x`fD&n`Zhn_I3;$k8?Jd z**lw!q-dIsk3j{I#HoQ^m-^m%tM!8-3Bp{i#%6}-0Azn`ajgrO<)|2ONZXbA`7Vyj=IxA*sG7OkjJ3U6PZFJ#A0u*#4M-rPADwT8KYmD;Gz`5mfzsPLx8 zvcvN^V=4dj_0I~snninri*o*v-0eEr3am?{BSk}rjzQLi4Yi6XnuI6Y9lv9^dM!L6w1yM*9+G zHPUWscxLTZum#=cG~2>&TM`9Zo^Q9eFvT3BCeM~<<^CDa$`uXpPYeE%MlRA%=9W2; zxJXXING&bR03PoYg;`&xj%dKX{4bTrhm&9onwj`P}@8eyx)lviTIT?X!B@+9sWtz#LHl9}hN$Y{%~7`iLh7 z=L+fY*jJZzqv5FgfnC@gm0F8tT+m)STu^THvkpy;3$8GFd#jDXrlBeG$@!j z4^Kl|*y){Cg8Xj12y91SnpZ!%WFOG$U0p`vmszFAc>7<`8e=#KdAaP0>_RajPDz@9 zj!OQ@FSA+Q!ZM%2cg2q9Rkhmnl!r&mXUjC0bnUV81M)h7E!0McGcPh4ibH2UQisvE zg_pXw4BRzyV(?L7iV6JXo^XvliciFJOHRVi0aBBd|Ftva_>5;Si+%sAa2hSk5SI(J z#1Nx!L0xeU0)=oiXHZRsv^Q_#(2dQBkz@@Po`Xzobqxd1wk~>xi274o8Sr~`J#tsk z#E(+4_Pc`*j6Hj5mY+p*_o?Flg{jC081OJL@CDLKwUNom!QJ(~wL(w&H&3z`*crp{ zw~)hg7tE)7Y5_}gdLrwW{5df11-9*9nd44?cHd2Vcl;s3g_ zN}7yJhZ%D$uLdsO>+X_g9h;-{>72(`o9y0%n>N#{R0CZ%Ch!0{ zS`UBXdGH%XauP8=dnTDG%{YDU#Kc#K_s+-bOlAqW2w_J38^qq9Uo@z z_6}&WL*cyw`L2-I=91U0z~Jj7pwQiX`kTr$R+n{#zlg=)xz*NWg;+!zcuho+mxy`> z3k#)M-Z&s@5v!+~^+~VW`Oo3l;*f?1*tr12A*+BTk=WBS(+^~-i%x&N6el`urS9ZOsQiA6LP>Bt0sC_g^v^v zS{>7OdNgTBDdh4c5M{=0Ok;chSc*7~LB*3m>cQ7Qy}WbQ#Z*^_jiSkso(NR8Pw)LL z&fe=9Wau#r)wT=yiKB!w&)}uF;M)bew%8xP7KX4^G0Ll}zfYzR%jkXW_WA8v&fU43 z86ZNp{q&bJ7=QNrnC(WTXtZ`-HyZe9LA6vgw%e$YHAdVknyz|FywT``@mG@PA=4kL zoDms+6+Fb&*R~b;<%Y--^aVCH>k(zwmxWp;(gJQAUJLf-L(7+ucxxDSG3Q$AbP0!2&+fyFr!F_gsvaK&(o|-IoZ15igUp0UB-o;t{Kt5 z)mK5C9I&~rChbz6<-+(=<5Qh^EzbV$UM~N4FM-sEc10B;Q!C@I;$=jp)(g*I+*|hK z!)b;Y`mMFK>wE?xjc|+M02UYqxTv`KH{V^8>02=Oa#DNW=?o;FT`3wG-2Nv@qr;1` z_MPyr2^7>`_D#i@odkbd*x7MPw>PkIvWC1q(Nfys4l0GB$C*L37+D}LU&I30`MxGd zc%hI6&Hwy8a*5ZHzmgNJHyVaH(sx@j<%@M%MC%q9GX>a(=RUfo^ zf``bO$VW(5#`FxGnEqGl-XJ0Jq(zAhVrh*UMvRLpI>o;foJ_r4zPk3 zHLaK0zY)juAS0h`VWX5G?htDNJPeb#2`~g7)2D)!` za&P@J?_{y$hT0lL$QD?89OuFLGbB>>Q*(CQ{4XtC_{L^pD0)B5G>@L|8>-e|=%w3$ zUU=Vay@f}Di7IJrodPI}Tz5?yWtjHlA}BVpd^l<^wBNwn5Wef_&zG}6F8nh99VO=8 zAdEJ8+sV-3T7qYX6=&Qbb|>69Fj2anpX&>Php@!SIk8QMJ!+TDcC<2atj=iy)DmXuNNgr}oSp~V1<^-*eq>D)-aS_n)}MdBh}m&J zhF-1O;iBy9ejhi?$i-r}?CWr<`qZdH+F~Y;5n~b}=_0x~g>n36@W(u3!1=a?%mm%= znghYb26`*lMu-iQ8rGeEdM>%hAr^c-h|hQghO)q!>Qr1a>IvF~HYx+Zqij*CR+%+To*J zwzb*`8LJpal^i;(R>7?`atpDR_pdcFLi81CD*F$q%#*%G1I1P2>xx@->i<%%m>rm* zw%YH3ITCb~AyWz(B?K7pOS30Z;++Jo-Dn<4l+*)q-)yN@Fp9zOE%PURZGwMsSTpNA zlIZZ<;dv6$X!Tna&#XJW=;rPvE5t`C+v-TkH=G=6`u0u(9=o$D zj(dDs6*zLRUB7x5k{XFK#4|pY4{0+EHwCKa#1wNrkN6Tg%fwB5*}U_uCZP>!(=axN-{Q!$2l8>tzD3VG+i6mWc< zN_qiyD<}3GJP;297Z~9JgB$Bg1;C(QY-kTo%&a81Lxu#Mng)AyW-7%PEr+>#9vw)~ z$#;-N$tWz#hS+vz@jwpH=4JmQQvKXP1c3F8K)H|2Y4kU$F|;2oVWo4A8!}izgb zC#MI&%Z)1nhaBj2b@p)k>?}BAMQm^1l$e}K7j!vmMxSq|4?7 zZwqHC;=&tj00KFhn5EMN2f=vcH~nN81M)+{^vvE5olDrLzY|;H7O-*nC{&uKc!bhj z6#o5JI!^@-rdC$ec-dJfC@9bsDXCZFlJH+T#$kJ~V{(1H5&89=3$DZuAK^MJ%TX^U z=BE`vHZKnJS+s;nCwq7ovY$oV$APrp48aiBpipGnaH)awJP8j*dRjV!sqsM%gO92# zzfU)jk%soaKh~zFeJ7?8h?aYINK#b!^$H=Bgi$*!t5ayldTO9~(i<>szx+Y0E#0N3 zp@WxB+y9*;#F2m+;^mZYEZn;*4*))qWB43ui}V7w!Y_vVo6!AZt70O48T32cb-f0M ztif(tQd<{W(XF<2k6fO^Yv3wN&TH}sE3ejj9=Zp&t)DG4c!;uqgDJxQbUwSF#Y(cTla=}q4@Eh&7)Tg@?pBH+nY4ZZZp)rN$T|4T9DCD3^4ZQ@UP1)na^mPI@t(>G$@ z^Ao6lm(^!pd+ir};n(&+Vx7POu%w4nYy61V$*?XV8 zvxfY@<{&XX=kj2*KI~ZiG5Uxm)bRb`=0jK4Ful2?z+|C-RgT>~Fc6uXywBCmdmhFe z+5LD-y0X_GjvC`YJ>l&m+{l+rSV5RaSa@d2<0Pc#(u03kK>ws*?l?8o4+<;){~=elGX>rY{g3e|TyY$sXQe5_^2$X7M;XCn3Y z1A89s9|z|8AcVVxUF%v*1cVd%x(P`_-a+;2B3qy}-fo>2pF@v*o7Z);rq5aF-pKzQ zr(xdU<23MCEpm4uUB2S7Lx3BKMEPvhkDF>L>V4TFWs7hO?+iQouqRC!OcO3IZMJ=xz_0fKkefNj0eGhXKp2gCRWLY}WRu0*m( zq336>;cnNsrNqy5bxMC{10E&E1w1(jtsqT$RAVl^O-GW23@N;K&< z?F3-YoM^ymDiKj;{$l91#{x!33P^>I{g)S&HXgHxKFb-fy4Jj;r-a-u2LjFiD!18lBGe1E?@&w2}8Z!P2PzZCmaB+ zA)@Ho+MfG%4=+kYA+Gj_#{oI6zZ;E#vKdKalL@V4lRGG2rV^t`@%0H%!!ZgEKk)CX zo%x>u3@(j#j$Bg6CXYKLothnIYydaFl}|WEp&h38BV9S*Bb0UQcOf#PC^;hqPxn1i3fyU zu%A7T3AD0`&cpZ4vCsoDh%Zo`M$lBL=io4lIx0B=f|9rHIxP$wCPosxf;1{vOr=HG z@;)rDd=r7Ka57RIGtdaM-{_k%>*W5zAH={pwTQJLDWgMC{ch;JH$${t`OjRUl9HFD zZ1FnHr=P8k7ie;cA14^l{E0aoy{CUjsB`|a*^4m57AU}BWM}l4Xus#R&Jg3PqOxlC zfl1G=(3TF4U{|Iu^?mv7PJ&Uvf$(+bc^jo6(7$kzF#z#_EC3q^|Ldq^n93_9Ka35(L)cd=vC9lbNkH#wVuCBnOk?a36;vPrOX_>@GyF@ zYd4SNGhppRhufb&XkYvCeIIR$G>NOud#C{LZ0Fk!FVF+)5BP!8=S5MyS2Hc6{9UZH z1Ryzx2I2dj7Gm=g&AG%K!ZB;Qm>|_P&CXnXHYzusk$R2%MNc`(I~LO3#MRC=IjO>jv1T z(-mXe<7kY>?mj@>bSQpPEdwA=lTxE}+g9U1UC^q#uY64$Q@6U!VFyA35*Skr$f66o z1CU9vntntRRxUbEA%`U-<>FeYfx+_FMR*hXE1nt>O%BwuZbtrN8$z{hwoqcmP1cJ< z-4k2?*1w30agU)rw5xJuPc6h=zEpN-m+^8LZS!&`hQOKMZwQC1nu!8D#SY-()f%f} z>ccq*f#snEX;l%nC41cB-RuE7!*Wl3I-ErHUZThlL#SG}p78G_a|5v@I6>aJsKm|_ zfKm*FmzkB=Rb1Z40-I}`Ij~iq)k@1PK_&aAC=06h^iHDM>2l02Ty7?`Xj}U~!yAL9L}7rg??lYDMDv z`#+zB^1Se&6^lgn25ZNwT#v9Nu6%k2rtv8z<^XuCAbv3_C2sho-Soi;l(Nt@x^W6= zHbr;E;*k>3?*EC!o|D;+iN>H{qFm&mUU8ud#ULQ~<5InW5%t*FcY;-x{! zpM9~*dG(_N8W&6(SXiRhJrxYj#iA4a_<^}E3I`>Dxqsex_!hbE(a;FtvTQWif7{>~ zNM}($J!(7h@=ZIxr@;x@CEo#qKKzRGyF}(EwvY@lk|#_?Htda?TL-{y5%P*OM@lS+ zlmbc+`Yi_W9-zm}6je!bA+_l)DE)fj#>)l$^e;}2!>GiVc*-&p?^*3gY%l<(u+0Ud zHqSY=cW-Rq268r7e>0RL#FC4241Or6ZO%apX?eK3qy#!HE)Eh12M0IthQ~8t@#|xA z@VQ!`J8Q;{dvt!ARbGHv*N=@ANBB}1=T#;;&Skv)T24;jax^~G@>@>KemlyS*BM44 zq8w}-p%kV3ns{^T%rA#g&*&=80sKfOiuhP((N768yEkDsqtPp;VACu5oICBHddJCD z>wLxOwB7B+XV*(z^Qi`fvmffmGrO>~KTiaT#hQwnYZ@WrV__C6)rO4x($fx+W^8PLOP^B*2KW}{+XIuY&hfwXwiHSfh65sihgmrFNjzm8o~d-%sexc&_#+JzwsI2tApk?p^n z-uhTJgrhhVa8%T1>~VrAT)`=+kz)o!yo4S3--kkxjJ@}fI71JOlu0{D$&yZm$*lrI zxO8Ej2UIqq5H7-SLUPxIm*=hjh>jeR*BpERZJpHP{pbZ&aIPPE2PEZ6mjm6W7<%R) zyms@~?R5t9TntMgjeXbEdZ@n3Z5qA7BS0)z!0=Yn4j_qFuH--B=a9E2Edc9|_XWCb z3KZ93Y*|GrkK6-cH88HxsENhxO|dakK#Fw)A}ObN145xKm6-X$+2371E2($5-B%Kn zXT}4X>gq`uy<_T3yfN@`KyaedfMePleF&9B)>Ap_~nYIBkzAxYXsE@OUo67`$ z!iT5)n?i)hFTf^vdm4Nr`WyIWRXykr=a{t^#Rtg6rexJJ50hL>%QdO zF^fn3M5bY^^Xsl1Zy#iIQ28cuITIIJP=0GqIlLuK^qZem3tpx4QY!Nm+k}q#eFfl3 zU0f1$>`(f?^NJj@_#v*^*4`QBGiUedvI-d*_SwSM7t1QGIWs$Zczm2a8Dl>jLK)C{ z;0^;D6?xb*(EqKTgA!(1IbA{hKYMo9$k^udpnAH0q_%uKj3_=$arwj3_~0(^ZZQk* zA`H|MiT<{b8<|pDmYk zW;h?L_-*Xl#%u0v_JyP-9!x;TzkaR-pwV{JoKO0AfddSP=0^E20hoA_KT_$EDbgG# z9-q@3jQzGd{XhGWG-~QcIQ}r{X;RV4V{r^Yqw{f!7k7mImwPa9=dvXnw}H#!!!yTu zsr{4eZ+_j(`fG02V@vl#H6Dzvj5W<+i&iOO>=DRX-Xx~rfL3bMq9cWxVo($L!8@d! zJ;n4)9flb0+T1GvXCu5c)|wXr^FDf~W1YgFvFLCEu914RD6x#opbpfn>#y+J;r#Gs zKZ=TPZcwmi2W7X}!&H2m*QB-&7VoknS*`K^wE(O{<8Hs4;-^IDoRS)S+7H@-vc|L7 z?^l=$qNlhV-`c0mP}uu~%Y5ms(&p%dhiI_cQp>%|Ck71EIq@R4=uQw*pmtvli-g>% zsAtO70KFm~K9Q?Yafb~Y!bVW|=_r3Ddr}LQ%!N-9E)C>wylj{Mzc2EzmR^{VI<;aiwxmCj*$BPV?i|JWl zJ|h6`T*l$Em3?>pW%%G){SQnpzoLyg$xg?7)sWZc+nzYWeNRrd^F)oM%%(H(JS0Dx zmV0tP*Q)GKy@|g~L~EM#sHWm2x%+iK2w-lsp*rXcKVn$%@E9KRI<`av~*q6G{2J0$?aIEmg+<} z6VI*tQ^WZXdqyCCUGQz&vaYQmlK%`zPqkgT#b-i%HvCyRd@Q|*7xWm)B*#S=%-cR~ zA2L!ND)*Lh>v0A}878j%Yu%?%!I*xXF-pUIr7J$V`S=>J`$qIH~G2;>c5?&jdQYh-8VU=B*LK>SV{8P53JwH(1ZRWO1Bh!+ZWdu=d0wO@4U zzqyA51^q+eThOLVu)>*0(aYH~9}{qxco0MlArk-M73?2Xo|=Vsa?H3V)}3udh)Ys3 zA09Zesu8C&b0+Mh6Hg!J&rBc;dM#!4f6r@kyWQMYL|Mdd-*w5Y%&5rn^V?JX<2V)T zHm1|VF@VJm}2ETqDLVWIng$0iBBUsz7a>>5TrTa6d zE+r0kIX|hZ>`oRq{IN3~Bf~?xAU+dNfp-@rHFvqcE1d>nsH;zWa0w0qwK6WIV*dMn zQm?7Ci#k}5S1t&$RncRytNguP$}Xl78WBk_s!Tol zb^F9&QUfdY^vV+iRG`rWX4MPEHhN6x%~OgWqf7LV23F zl>8z2Pdl%}rj|FLpXM=-E6bIUc#ERr{`il-uP}nhHmf#Ekd@2F%rEYxEI3 zIm$~Zw*K`a44WT?SP-<94tOq>0=5GSDYtTWPSxTG3-&52m^8>Rp}{SK(61eNXfZ8* z+F{?D;!#IMcK99S<2D0j5sMVrxi2|o0K7rLUG18)+Emnpp!5f4Xd>aBrJ5|njRrb@ zy%M`bw#QH3HobTkIc=NOwWqu%2Ukb=Ff|=}|57SS`TU)N=1H2qJ*P9`l#sVVbq?xa zUy2YtgPrZhe(BFKS}pyHWOF_=7p3&@QPZ4wc6Wwy27XSkZxFX+)<0W9{)H3DP!haA z;I4qXd9$@>tWu&9B6AF(Dm6Vz4x{oEAXC?gDMYM7B==Xs--P9X+kio5y2Mo&>N7W3e?N zaT8M^HPq3xUGmictouwzohit6nbc~{@bws^jDS{6hM?vmDWjxDVl`~9NQ>p6GeB7wem_NE|wcoR+$tf+4p zX!$(x&&g$Q$#{oB$fo}{?my2ZTx8+Z*dm2QLaI3JM*saUIGxqL%&*2ngchlrLqwXsPXl0IrB)4Z1~U&(D{Z zW3mq!sdeyex?jmmQd=sCV6r1ix@v4JD7{M?RWEDrxAdQsIof|6Wb_m#C8Q-KdyAgL z@Z&7jed~HV&@ow-mpU(OC`wcS^iuyr_GZ@4VkMqV-z*i+eso-!6{6@7axkCiCy+VX z3udp1?Z)^i!%B>R1sFEvyh=D=*mapv``aao)MewV-W@=tll55XwDeEnrA7)GG&Uh~ zm#%jLz-4=eXhD!)b%5q~ery_Jy)vAq5C!ZWt%n&Rc|%krK?n=qwrr@#eoKjHsM=cj z0#FWN@!}p&tD#{&`W6ZDZ@D?;^E($0Gps&e5Je9q1fp)!TB@2VQ*u~9;}JbXo%h`q zUQ;JCfd97|vF4o*Qq+@8fsTUKMqM{!Ns+ji+I$ z{O66G-@aiO4%0qy5etx#tl+Cn{_Pg^Y9l?fKDgrOE582eq21hp0t#f~=kM?o!GJ5~ zLCsGU!j=7!#fNJ=Dh@mQpC`LVN`pW>T%Qbk+wYAirHBYz9BLkV!?a_Vk5=m7Q>|#z__R4QZ zj(OHDc02P{L1YeIGV!={W+GT!CENn@Z4SN zTU0yK8$Y=ex1Cx`*L-%SclNYHhni11-~c8_j2|QIkwSpnSQDx*cg24XEv=(F^*ogP zX`~Nia!~EJDw`q0dgNnn37s^n^L^uZ6{F}-idW!ruOxq}baC*UvarrH>6AtjnU{i8z zd~OAS2Iw|UZ}u=k0|c+|>L0dNDOD0dc@`BARxYI)k>XXWhjeLC76a60E~iv!*NJ-d z&;Ufk<1W*Sa>u*jZ$p$3>P=LK;%?#qm&-+Qcl^v#XjQAe1DS*^i9NZ=5pb^5yC8<7vZMYxk8q=n*usABBv@66S{i-lLeg7-v-@_sw9 z(3~wCV5w0g*gVnv{n_5h@wL4v$L*y=qMmMo~bQg6X;|C_{N z&!xX6WZ>osgeNp`Aeb~KD|s(VZb{vB2%RJ?Ze;nVLm z-I^uv$u^(ADxP3Rr1!|DhSPz+_$(Ng#+C-W64g4oM$MIFpq?kJ{$iWxrDHojK5lYr=x^oe{u z-KF2fbQYG4{BWOH8c~^+I(v>a0|2l?EERj9HGEnASW3Z_N9{O+fz7@JSkkoomLVQj zuwn1jw*b9{C5Yl2kL|Y25+Gln4rEvSx7z7-=zv^?t3)1FZdt|6qSS+^A6JsUa=X_k zHvq>^HZ=lbL!Gq?9v-*G`^?OeEzB%hNKqO@Bmtxf6F&Ml18c`VkGyDr%c{~#p?DBd zQVg=#YO8dg$5Uv{%B|lrP~Vy+=&tcx28UE@e4p`xL%^u zWLY>OCV9`wY<9p-Pq03w$D<&z+Ohb)tW^+!n95E6PPMah9G# zJMFVn9qtx~gaL}C_x*n%t)P{LBsx2rc6ZKg&b?CZ-Yo!;G>>2Xhf31=R>cVO%`+c? z`ajahwt%^aqGo3HC7pr1GV0ypMlzM62Y-v~P3CI{PfXL&MEUnc&5HOLAJvz?Uw+=v z`cToc%dQPh9xibMwAJfpHZRr7FXyW1p8(aV$D{D`lV$EgM@7>2|&!4|&OnG~mq-yi%9c4&`yVlBv*1eC0?Yr>4GshDI z6E(}jKSR+}V>1$}&PzVqW<<5nj3p&QpAu&$@yu}jN>J?0=I6XbcOeo=(b`d!oc^<9 zU)Z;?Vc-B)8X;W~9O!)TUTLxq(YuAOw7~ZqR6Ze)23}u7LFm=`7X9jD(!=o&Vi#;| za?5&nZ0YVTjaY^<=DF+h!|@-pUwYAvU19=>%2Nw60w zNEg~oITT$<)1EXpx!vmGsm~!!9;!!~s=74>}IZ*E^;=gL-AMI_0{>@eb z9vvFNA@y<)96)D_uy9Jy>6ACCSJ%xKT=#XH2_hkz@b?Y43RB?L92kwI3nU`Qn;2B}^wHLU-TXv%oVjS#Pkbzx? zpMlPm(9A&wcrM(FZ0!i)KbxIreoDH-{_8af)?Ip&U*GdrO`x9tD(w}CiRkk;J> z*k2HQFlF-$cwD|W0KpT!vmY9OMZWWdh)8GWP~WJ)k|x|v8x2AdxXh7ebZczaXh|DB z=96$x-F_5zD62TbOy{=SXz=gs4)TZP@D`z93!Eui{7SpQferStrM;PQBYlblrRHk~ z-MX6)nj=`7Se50nXbmB`o=<$Psj7KiYG|ujZS*$ZoQT;g{rr9Lq>uYK^5h7kQ%mW3 z+RRAh37cxOF~8=Rr_8=kA=ubYjUe(Bi%lS3o2(Y=((8BYiT}d{6tKfZ?@{yFNY*@m zHJM4}f~xmnY3!_Z$K%yz9jX^09RkRM`XnD7QU_jM`4v0k;kQA}K<3-k-sHSOoW%y} zg0=fsf@#4k%*9xc<~1tAqtCUUdnKedf5{DRx#;k%Fg*pmCOMyeZrLe1km8ncw3LW0 zR)^X344Q92+PdtZc^t_-0E|40?$AeR+~zJjJ^{d>$toB$X#u~|9yH1W@VC#!&yF`5 zq1lW!F;Mb$A!`6zorh16nF^4L+p@SlnD#_KyjB~AyZC!WJdv_F2p?Bi!v#R4dx%+R zR$t;S5v7iA=8J)5J3B77Z>mG{Z)dAsk${cpFF5hj;QS&QuY?@Ig8%^h&U!+yemVVt z%DmdbAt0T<)$({+FeOxcI}Cz7CCXilLk4#8!OM_t_beANRYbLvjaqD|XJ~Y~0stW1 z5FO`S!H%d8y^H`;=R`5!o1BGAf-mzA=!o#sH@~N()D11wwEc@A?Jn=(H{+A$qqPoe&);XTri{b;xU$`gBM%>!A>>ta z%sphz_p`H8DNMD~C&8(ORe+tFuac}UZaCO)PxKEFgK`rip?G3#m7i$vqh7N;#>a_o zpAdb5zGrj2NtiQl|0n1aqeZ==UI0T<zG8w%hho!{s z4z(Rt(j8lD`|p6(lq3l^?g`NfNpxm@jznSOK9|$&Q1y8 z?&aS@i4YliW+4`E7ZS@O!&Dcz|XfwskY6vU#8@bLA+hA%?b7ofiDAZnK>q@01=m* zte|3@`r{7dC4Y;qHo&UsMR-E7m|5Eu8X7JtV06sjTI_#dg%P4oz#qjY6HjJ#ygBX zFAd7`f5jg{MyQ7!srqlm73{chInGvC7@A)g1XZ0$0_s1+pV@gyD!@V zmkmpAxngrT)`V6E=3e$jt@C$;a8}`Qz_-Mc8I~a6xl7vSrcHZ?(IubuVN^z}rzlmn zyw_Z}$Hv8n9*LKqNfrNqHxKJ~#~N=Ty_}@GSxOZbV4Dx@_9{J0t%x5!{QB1f0`XaX5bgqOZgPY>^e4xaXLjf_`nigxq>Y~9|AWWVc9m-*9H<8 zN;9#y5A$N_vbK@F{&4IV-dG}vf3bY+SCX|Tf1o`eXwXAp5Tz<4%)-WkGm;Ew_o4DI z&RXa!y5|~%c+|Q**bKg9thUvxdN9XJIUjgZH!v~l_ul3NaA>8Z6wyp|75^sgVrCpZ zd!zaNIaKWp+Rctu>!tCoRxeFD1?ak*5^LbJQwDiC{K3n~OGhJQI0zedSBiWL$L+AHyXt|%FqAhkS?xWA$-va$Pv$cRBz4N zCx+U;eY(;*DSHh-JKVbaS7*(8e=|pVO#E>^5_5%6gm*=p{fsqUl9}0oGSXdUAv>M} z$5l8Co8RB`rUZaV!z@uYJ^vYSa@KJKZZC-OXZ)TPAi-Eo`va*ZAomK?yPBF?bCMdf zB!u`ZTu-UgXft_OIEq1W7yrVB&XwrnQM@@N1O@mKHc4rJ8XG$!?^;-kL%EYhSl;l> z4d<3J9)L{6x9vce(Q@u=-<6($^f>w$&Kb47SQRRZpA3>F{&DBjkPH^Mz8$Jsq98xi?!6%=0rR3!OxPlSzDA%e>+m_vR3ZCRjqLx`|hTo z9PKyogjs|oNmtCB-W6rR`u@?A;;cBYPk+1mh=qXS8PDeRv(Xqq!Om=sAq)c>k7*ZS z(t_QPd_ix5#H%T|%AZXT_gZ(Cu?~Fcd?Lm=`XT*yjGdg^_Zc!(U!}Z*ZWw6)BHv*b z;-atsvuz$NM+FPyi32Zq?nfI_RptYXWd7|*=<)&^kjQ`9e7q@=L-QT4> znDFW=BDHjs&@k}CA}99aZitoWVd!~_t|6LgYVR*qoMldVBX=LV$O@T}M9S^JKB#@} zt4)Ok#|!)}yurFQDd;`s7B#KshR`A7xmWKr5nAqhToU+MvhGd$;^EW6DU2f!n#ujz zVAf(t*X_4iWM@!?Tnv6cy0CV#Wm>cZ0m&{8##dUOl8J?mg%!&b#ZSKxcr2semvg#DD;sFPN)VS9Qd{e;Jb&->el04*{8-tDmp4n@PqhmmUbO}A z#*9AR5~c11tfC6;ng{ah9?=8xK1JMaTs zFU7_lZ@&JAsyJ`mqOk)|eZ{r6)&#a*{*`wRr%#>)WCjF2(ZAHJukzK)qq^c))^qJZ z^o+fP2FZ&gZi}M?K5z2s1vNP6dV&RK*DcGmoY@7 z7@oF&+xveV>WxAVxx5VLEAnZk)}5^wX641bBUahagxmi~+r!16+6{)X;Aoctrq*Q- zcdaI77taF*}15iW#^-{uEvg5%&HJT9PG=S8;VRdD7-F&IfW0Ysn4ZPJg97Bk=1BYoIK`1NJABb} zvzlCa(G37Rzx97JJhNXERh}9A6-@czerL9ZQ}AbbOLyg*KE@!-ObO%5MY#tVZBjO1 zI)WBqwZ7Ke1#S&tK1*PY%2I?fMe32CJ#CUyW=G}mCU9rfMf@#bk4#eV`2ILY`sEPZ zrlxg$hAF{OiLe_J1PmYa=doBdUQNd}5+J*Si|X9ekL9wymq4!<3Rs&&ZqybFZjzmt zDJp>CfE=I)Z^<7-K6h+UQh*2GI#E;vbQgux^h`d1v*P>im}dy1$|{>!?p-QZ*E5q1 zx!c31L91gQfb9vl*fhKtVb=TC_fk0{cQdIhhw`NzCoY1J4HX9|emN$pftrh3Q&!^r zuXa>f(Xb5kI7bIZDIK$V7J{u6<|&I@g0^>kG0gH-a6gcoH<7?${(##DT5dzU0k#lT z8g;tJ&w&&mT9Xl3^F>K7LduER7O;@L3prF~j@wSX9-ydCrHAt-eh7Nca{ijT6=b|G zI1G)_W|CjC033~hYfRfxxDHhWifq{~r5YTyG*7X93A*s^a8k`*%lpZc+-%RQAnQxE zkc3al5OO2?bLyVo;3+phCne_J)a`mTV=@U5<4AJM;Le1~@m$jtSoQW(vkcezu;;>8 z5<^=L-UhrOD@2*{`)+lUgXZ(pvi?BV_PFIqg>J#oHBkTKa*Y|orT7|`aLy$6ciL^b zn4h~%b}()(M3T~u0J{|dXW@N_V22dsdyvZ8<-l^ekB zrT(WXALy~qIp!)N8p|FFX7^h_et=7bl@RB?KW;a5ben4)Q&ZvY=njOv?)SK^3G6Ad)5 zFa<9;8?a2d7LBf;?5I5Vf?er!0X40YMfLD_G*VfTzjyanM4Y5AO4t}YnzZY(4m7v` zcb>NZW_4^SMPXXY5$5x(M5D=$NFipX_J(Is{@A>e@GY17?XPdoh;c&2-0?2ma9zFYFP`!R3@TV_W=ISi71a!GJ4JI zoSc<#2-NQnDx_ODI4Ze8MWxFx(UgdU&@zPFqiFGml_gP)b5;QwSmj8^G4``qofgFw z!0VC&b+WKU-5>P*zkbqD6LL`umz*^8)^5I&qrf%`=FiM*GOWiNy(@DQmhQ~C1QHhqbnXTg3rs?+FLTH-4jNQ=Pyn!tHqDHTY)Wd8RgDM>`onbn+7|2857yBhs6%n4ABt< zz(v@dkYy+!a^Uo42|Nrt2IbZAt1cP<>XG8*7;ASk6{k(I#x-tklA|K{`2lAwjj%RL zE&b)NrhDT^YN=o~>o)*bls3-mP24M?)1yt!J%v&;dzx4r-lKqDvLM52^kFzSjjyBz zg(?iKwwa#X+(fKXu-U^4<~G;QJ23n-i?8AmPrHKq;IaXu|8TB)to;*kJ@l#a9WlAw z$Hv~fRK(w!;udVzbFsB5!u=3iVax-8ylwPd3;>LmMSyk`rgzX86Ax^4As)psahWR| zkXhNd-x~gG(b?S0`r1`6vIY&A%hpt!QhFly)70RUaz zyxFHguw+RGli4=G#Rf`H^23M-*C|&dQ)#i!su>(UTn2BBUGgYJ zjgfHJaUWD0hZ_r-fSoK5pI^&fdf>dL0c!ctc;lMDL7oD%@@o?}Zq~-~MIFg`ltS1M z->O9@*MGgD2^3|!KLWVd*f8gHDWRs=>4PIi83L;WRMTU*3UO$@s^gP~cHiFa2`U+| zyYSK(B8>qk8dd%&ru1#cb3yb%kt{tW zDQ6ugr~zX=)#Ec5R}vY2laHd{ zUH%K^FS>EG?+y1W|MY^%(}J9wjLUpud_uyE#Z)Q;1cY?3f1=&_NpfEwIRXM|^1*>* zG(1{LTN~f$>1jqyzVU-iata0&H;sN^hNwh9&UG}H9neFCzxMFE`_xL<*WXEKPClYr zRRDm(=5hD}$`$m2pG9iM3&|q1<^+GuyI2zTH63*%+(*w{gJzRq0K+Sks`k&b4k)JA z2hw|Y|Bfq*9OU8gCH#yZ|>3J)1lkyw|^LyAx{Da_B}mk`}Dytmuc20i1jPb&tA>>C_#~} zlGbRiJdoryi^98s-9eUc61nTy_{Amsk80E0-5!%toP#~}v__~{RJ=qUKhlja?UPM* z+L*HTzPhtpN`(e+iwM)AT0aX#sfbykf9R+=a~P@IjGWHQ+mKS_1#x~&#s+DoK! zn}O8CMJxTd1+8$;fpCyw92xynPcQ1*>@@idLl?`qA%&i$O53e3Ja~MNk|6ivp zZ=}0CGKls*Ub{M?_16(Biuq$(OagxwEd8Cura8ICj+am{PO-@$kl5xV zn~x!0%*gw`%YTQTSE}Y9{1yidoMB}dPs=t&IYZ~{6>EZK@!e6*@Hu%ME<2tfVQIC2 zuM@eFvNNhB+Q==5uc4eBe52qUuTu(s@oOF@bVI`fihOqJ$1EqBnd`+qRc3$IY>t58 zXLIJ6dcq+{6R^jVi>-=FPcC1G)bI%H!Jb7F6}hnXrRIv9ghivIl+^h1YIt}=#Av(| z^}GlhRa#3WH7~F1(J`*2x3lseC;IefUc`X4WyzpK{N0*KCCCj+XpA~0`Iuyve>3_J zh63$4q71R-o`W}(qk@9nd~z$gcQ;wtSqtL(0RQKaI#BF`eKiC!z)y53!Q~JAHInZr z|CPN(jdn9yMFJK+MxA{$-X+??M+@6!6s=YfBw)RBFTuS0whW?r<(mpL)It`wNDtk^ z7A2y-RtuV(zT+>!PHH_wb;=AUA@;9~VBHF%C~D(?g+Oow`>G zIFT|7lQ!xH=HeC48}nP#^7dCyRj0)J_xn}!CFm$eP4E5ork0k8pAu12G}d1JC)1Ch zVB#p3*X1GDpQg_e)MEtjwr9jz;$H$7zwv@eN~ag==NC)H#0Sx3IB@=20Yw-#>9x4m z)9v<1mcO=x8PdxV2Ycz=7dB4LUKOyiky?mb(~8e9ZO8)}m@ut4F*23r-rlUAKfTRB zJC8It^Xkk!r!SboxUvh1qOl${=p?%2@WrLmR6vLRhKkRZ&Mq~*O}O(3=4^g{#=}0R zbgW+SyTElz09Mh5e;qcnifoeuowj+FO-d9L_3yvRcQ?=sSOufLUPS&h2Ce+KV{c@m z-3YrY{q3($Apv!;RP4vSQu<$QH`gEYCcrGugTb;u=IYaf|HN4q5;tF?l*Hs`p6_#U zl78A2_*wpG@KW{id=KneQv0K2n2a(&YXvBEO3p!NcwKm>qUH|N0`Q_@h~km4ObaVF z77xM7B^HFJRogYxLDG%45rDoZZSe2>QZuiCvlu2w96kz1S&>=Mw{#7ZevKAp6N7Qc zK8%+c0a4N&eBbsolMnCo<<)`0k{qok9wO-ppi+^q8kKa7B8&?MF18y zm%Fo+q$~eX(69(|T(4JAUWro(I<6ZpM@R7C%9{ew8v0Q=GIDFIoWFW1v++!hge#4m zAD@*pSjqB~utiMfoJH|GOZPTjE$u9l2iJIIkK4hnF#;M=+FeGC zoS|crAGakfA)?^)Ppg&3DRu!KRviTwd2{hxM}}z=@)UDER4|kZ z%Cdv>b6CO+Jp3t0?+un1{bpq^>?U$xXrN7SR#5Z9bP%3S%O(L09MYilW5)7`o;E|X z=`H}AIM1CdjbHTkJI9}h1H1u{D^b~RKo4(9J>S!sdulFG*YP(bfh6Uvy& z%%UBa%P3t$#TRytjzVD)Z>lh?@BX zHSp0$Vd&^Rjm&YZzvlVipOStfxFF^(l~OQPZaQ}Wb&erP|eu?`-!td~ilXJBFb*b3-oHV7FPfS0YjS}VE;W(2dU1)euMkY%M zp1%{g7LQjwDg#(;TzLfh>UK)HT?%E(?^gOLn!G|1M9M&DmAk%HVz@+QQ;s5L!0 zy6>Q`zr63u@|fiuP?lX(yx_Mqp5hFPt(f}6 z6ya`TU$=BJEZjz}23$a>DGUa#<6`2PE05RQvd3=jiWka+ig3le5?+otL%abu9=j!T z?*~mDTGV&9k~l?`v5p6;TQ!f;&cq&#{7Hr{Kdig7JdCD&mMc+rlTrhJ-qP+ec~_hh zrMK67v0{XK_GdIel*XFLBEkJFRm`;W6MTu^p>_q=h%p$zrV>Lun~wdRk4?G!0$MuN zw=#XtuxYXNub$%^>iDCRC8PE;^wwv_(VOo*&mn31<>rCg3ZGgU_AErBT1%oN5ad{e7yTmUSYjCr-)iH7UM7dQwke^2lwDx)&uaBrXobmLdPZ!;a zYmJ&Jmfqgd1cW(MY;3CR?AkcloYNywX8)w;LoZmV*mVm)1)%4>m=vYQ;ED>@^}APg zE{?ISo5TFk!99zRW7T;1rz{?wqnZ99+aMy&m6W1y2c?v43RxLG$D}iGu9oI`uZ+*0 zIsq%|Z-$zF{DB(@&P{fSq-$7sgSj@%K#r|CYmO|qW9dM>TVAVg{Eo`UOaY|ltE zLY&;ajRQLsA2bu$Zys-OywRYWuNgBjf$fXtVzEKO)s1 z;WEB@kQV3^T#%KA3-m1BR=JwZynjTK zGuH2PoRUke6ZOC!copdmjE9&064;@>Q9NHUDtPNs*Y3yD2X=v_xbKM*g1t*2gIOD` zyCb(HUun(0*)w{7$kHb_SS+FLcAv2a1#u5&bV05iOpX;(mpOWC3h`(&oU_;Z ztc{7;M5lT#mlVo`32S2aK9Il(u;G*PMQH|N8mIYPr+n>|Rt4e&L z$JK&ubsb-9*4juA1)0cJuK9XviAJ@o*3bc{x(V|*+lS1NG07XhHO}8gvf{&kzT8gR zrE?F$Vdd6-qnxRdHtPvM%i}!FvHjuw@iOjf5j(KAm5<%HgKrwx8`xv?O%if{pR#>! z*4g0X zNXVF4B6dh7nnDAM0qh;AT)R1)T``APz%*A&_y4DWPmm9tP9RQsfPL(KKu{FCY25T> zw6?NlWV8yyhs7%=c6w^0_QEiI?I+1|V=^R|%NeLzSt}A)h^4m40{pXQTQMJ)8u@`b zUx>A9@v-GV1t2Pa3HmsWS5lrHMU6i+KqlD!lJfm+4VSy)-}d_7E^Y!7U?Dd*{0iE& zuvggUfBr+~_xkt^RdF`jRZ>bNFCN&UP-xg4s908BzQ5g* zw{z)aaDaSe?(ZstgNrlhMPH}tnNR@Qq{ya`PxFD+w?;j=gkn-n^BOA{TiZ8LFB0lz z{MxVM_Yi^}w*dkDn8;Z;1$l%0a25lFuR)I{|FAb`V=GLhW$pm;0!zi#XS}m(ma%NJ z`vC~Yt`2jp`7QfyhPP+KPM(Z`S=6Ug*PHM%5^MZA6K>gEpRZYKC955a*M;FVl(9xn zYUq?y>G6Iu8G!%W!BH-`O(4j8RA%`PFQ6N>m3GZ6Dr)p6cf~CYZp>xbGrqbiwVU*cc`rZ&$r! zWE(c5$>Yu45NdHte14c8czyiSI}!D`vuH+Y-$gyd6PLoOwnsh;%NmVl@?!;`sw>yjBq@8gnR_(^?qJ-gM;~gu0le-@3Yq;uE^B2?=tR^o{Srkn9?k-ifP%7M4tEufTR8n@hr! z!$*rzZ9z~0_T%IA(lz%MYkqWSk3T00PWF!r7y+;!C!lLj!7JtM?ZqSO1TLj%8?QR8 zk0hPn$|1l7teq{t1d6_kOm~0o{->USBH8c3z9_=H2>fmMZik}v=h37SzI1Ms5wKrr zH4T?``h4=sQdltzn>2&D;$vNE9U4uhZY^Jqlsz!*=@THw2aQGA1T(dR)<;AZaOLb$ zrO2z^Id&um?wp+K;A zK*{@7qC0*WQ*dri&86t!eIt)$ansM&t3x?XIG0sSzb}wtNA3sSHr=k27-SijG)=q8 zW}X2;FsY!Y()UA1?!nAmBmV5xlWzqR$R*xSf>a}_h~v6ExgVgf)?X~qZfNS9nZoG! zV6a9)lCW^jSZhfpzoHBM%K~+;RT0EXZ6~SeC4B#a7(%T{KKI3EqX>;&W!JBClA+S2 zZiZ`kwU97whdx7qa6f26h#D-Q>_vorNw>|8`~=K$pJ$) z0&%*Pe|ce;`fnJ0piLeQe#*}WpSTU%6CEEi4t1uO?GC^5+8rTOz=xLZs#`)cxb+AP zIDBVd>}B4^UQEu?5TZ!Vv>M^e<* z5B3MzJMvc=P=C=5{sPL&3|Z}66Vs1fXcm1Ze*NYp_Qh6ZyVd_ttffQ-mJzVEyj%|O zmVjUqPZ1q>FSk0-LVWI?!?8KT=LGs8#*B#^5M2KYLFj@E1Tfa|_5hs7&JY zaqDau_wge{Na{+UK>4&xgx4Y8e_-m8x#0nF3ZbFU&g>?F%+<(jyA0N<3fX(u&6LDK zu8DJUwM<^$?U;Q@^m6MC@nOcVWtX3;W0VQ#OfUM!3R*cnW7*A}d^#<}SeEYSoX1Ik zy*V9%autA!msekTu!IOxmi;=!U5uCKcUNZW;iQs~9J`{HCQOcI6HB^$kZrDAC;QK7 zam*-NbV4;AmhXG&z}w*#P=q3{J8X`>gDj;n=A@kS5}uA6b$9H|`To6`H;BBM{8e*F zsE`{SZ~5#m+iDhZ@4<3 zE**g%(s2S4e8DpHD*3pbD6&rf3 z$8j_7uKfo_@Yet2pVme~_pkt-Ha2pjMr9)6$qw8YYbgkj%BqFi~7<@4Y z4}L+sb(>pRX`>2h;24R21L9j3q&M5NP~QNdJWS&uD3D{7$9F>M$VLQY*mCZP9(V)O zIhfM3i$C;Ui81;HPaK<(PY>Pv8nw+CJ2*tkEDuvxm4(S6W)oSe@}_&q)o(g)kr94S zbSI;UtIu{mS&DAd$w=RqNL)wp%>JDxU3;AJ%Li-VOa9>XY zgvkTJrjw?>k)Occ*{NS^&utxN?L><4)@~iYV~_5gM-y_>N%EMBOFWiFAPW|u@p$s zr_ezA>0F^+>H&vUNQ^wbY<=)pkd?Dsh|mw+U~J5nNo^|b6-{+8J-jj?QqdnnGAgTsOy|%lbu4ORu&@T_wiVEiRIecd6< z^`A-t%qdx)I+C}SV^!#l%n;m93J8KcNlb;3Z^naO8QVxa+4%-)bI2S;-)VY_pUp14 zx~5Zz|IZ7c83&V+&dZ@D$AWLt()`@tdmpDX)~RFAgm-ARuDPdvP+U_`Q=4#C-R|{e zKetcTNFcWo$1)FLM?yT|SqlBc09&i|qrb8K{>|DiLzdKhbR#DSl2rJ# zXf#7Lxw?ycML#J8Hl+dR+LH~=Krn3YLSs0s$yQkJ)vBxi3zvk|&d)Sj7MZ2Go>k;-R0 z#!ibKGMz%q0#X`gl48P2h$O~cH%hy*iF?L(bAybk_W z&yPfv9Rq`R7jn3kW)ZpMz0nNY)IqecKX&$4h4seQKnHmt+*hg=<mi&i15*Y|HFq( zkkwe*edLmrr=k%FVA^BD(aQ@ApX)Gs-ai)DRQjA8Rkjt)Jy&&X8iQTdZw{sj?zfGZ zNk;x7gY=*vu{VbN>bqvfTyqYtM1Owd+xaizJaquJ(>-l$9aC~z87zidFw%r8e%mCD ztuJEW;gNwsef=ZX!}v)KHZ~^SF$V04{JesczF@#=w^_{JAq=SI&^DIM5lyK1<}5gV zfX49t8VSEqauqaIbv5jYmOSbqf%!LE?fdUu2SWnHGs_eS*m(@SK)tYL#s!cf0RaIP zV0vQ0@Pf~dy%28?=-&iBt&hj&;z5IS?et%Vx!q#)1pqr(TID}w<5^KC{hN_VV<3)3 zqJHWqIg@b@b$8&PQIE8Rt1Ba8QW4p6%b`3~Jbi+Mvy1Tyhx}nvhmDI11p#!@J0rP` zOcNJJt3Evb#DFj6gd>*1_0-bT1SU=pEP+N_Kkqf@&;q}?{jeX6)gw-@-2)Ky3AhOPSJ`jqe8rPdH(&^2ia%ZY>iTwdY%#`7*rVgQE3Wp3(u~ zEe%(I401&+9#q?zD5fv|BL0E^cR7uP=bwRb)kEI9R+KUQov(j>+OMWZ@6C*HW*XNu zh%!0M#>&0%Z_&dcL-oRm^$U^aWvgFh@Q?Ws{agotxgAV#pta|5?l(+Rz-aYaB%v}{-Nk?|j z?M>!?t~Cw@YqI2*<3lfA?zp?z(NX#9+uM2MFdqd(`r@X-Lb3864B#&FqY-rOZ!pCB zyIx7^Edp}2<4SO@ho^Ua)v0f48l9KUADc|FKm+B-Q(!WsWW3j#THLwZB=RS%|Ngk%5{oUuidmD{DUW zg4=^TN|qd_VztF`qlAN7D2MS5rU(yDwZ6f$2v*VNDy;nJeQQt&Il@J?Qj{^wOifQ` zf!vN|-i4Bj_beToY%7GEGKBm!v?{HNyeS(>R);v_S`xJg2K)Z(0XDI8fPDG+dGo1b z-9GS)y66YmLm?59_dY(II1(^rjbNfJxft+vKp9$Imt&eXt2;-0Q|m!M)HU8qIDxtlMWgRirM7F0s-&S2$N2jFk-F98D^NiD!2At4cJVe6~EwkBX<;;b7Q21zZ< zE&XReQj4UxvQwv{!}ss-x~zr<1~u53G5_29vnoZ5pQA#!M9KaLZ2eLGV;Us&sjqQ%A*JxTme#b?FB1IfvQ)8+xZYd zRc6FtyBs3?WAN< z_1o9y_nSpK*Oo3l0o-qYmqq0Q*zW2jA(Z}N8XzY=NN6RDo%HJuJMH__5sQ>0ZEhj)QHgX`UWYFWCWjBF!+kDgfCe+ zgc8&1l4g%E=lBXX>~(^13Nq{tsUuE%f&r+98w@2ERRNR0 ztC>2s5UKC(>CSEmuuC3E`f zO*q1$is?W~5e_*JyUxRQynyN^W6!a9j^rNsK%c%zO1Jjcqx7aC%CH zi+V%Rw?p895t8WqZ_vwAOIa=k6I-e8x?}f%CYXlFsNABnNi?TJvwpg~)RB|%&xF`+ z;rhF5*TuW$Aq;quAw*XV%B}BP#s;+B+dma^jhp0F2eo?q*M^@s)AK<}4(t`tEYDtL zWq#&8kgcQH;U#Z}4ZD7Z)ME(QVVH@~i5m?LCVe4xbv6tFA0jvPu zOk~#Vf}Nkx_0i^mXh%OhuBypc0UGMg1P3jGNRv0|z~{|pnP`Oj3{oQ2L^{FMqAr*M zkgZNZ)EVcSW!p>j1L#&C%tVbS;X@4G>@dvlBTcV zy;d25U3(oB@x>~|5Y3h9mR3OLngmV+?--G5a10H!smou&4q2}IAIRem_Ui(}E%^;K zc2a>Z2%a&&zViiVa#n-UYB0o@Cg21(EHSOQ-#J$jH5C57lf(wb2DfOe8~#E4aqgq{ zqymOO{!oGydvbf_zz+Y8E*(-9qxBWsfY)Pi`6J;3A3Tt3f*El^nB*;HBs=Rtr+%Ugt zUH`L4s|m^aH)rsNv9R`@`%6Wo**BtT7$i&1_ot6*e~;Y6=k1SL0TZRTNu}{i+uG5H zcwhc3Eec6+n39iT+W+ai#+RKPQBx1ofc{yfy*x?MTWj&u@X=rP3=CbY7<7E8vCPnH zk`Qlui;;3U&8(Y}aX<*(5@pd&UQHA%>XCw)R-2#9KXOERMaNCAhV^m+z9xXvv5c3K z{OVrcNx?%bDrfJ&X;}sspD>o5%7=9j0>eDCwQX>{lD>f8^*r2K=(*gq61HBn>>)Na za%8M>=~2#34U48)GiZRyOhKX0gd?-AQR>l*sM~vVo*-l|xTM`t1$T*xZZV6Y6+!he z#qMP!>1Ux5apgt1>X-|1yh!MA59k`g>y}jQ<+aIB>o8=5 zd#L|M2 zPuLxB0)L&}2k5UyQdCaV|2Pm&`=Go{DN0T_mrJ|LOia74(EdEC>A9!@2PdU|9lgc#Xvsa>l+UnYumK;c0Hem z<6$bWGfw3Ft*WHFbmTx8nnQ%0zQEs8rp1vyd96c6x!UjUuc-&pmhUU&=$KO4SHTu= z^ryoWSaAdO>hxg)Hjb!|0{{_6Vgquf6SKsW$xaE!cBl08g_7z;*$<}A*JjfC;WPMF z8SX+v3Mu|_`DMx-1kXLB>BB~B`LjAusWKceYG|?`^l_jVK|4M|rcevB7RhG%Zxg;M zdR;D7lCd-gy)p{YbO7I{%nA9nU}@VXFlj+HG-nlE`o_T`mY0|K*1M zyN~Az{X9ih(y1inV|CwWMQ-5}I;$aYc0eoT_cz z2ZJLRjYO>JGQ0@K%#Af#Ahugy1@{+=x?L%{XU=PYpUd; z0u|K=w|4t_9-E+xqp7-ME7Dl6zppIf2RLR2nqknamVG+OHdOg>WXT-58~GU%f*)(w zmD{@&XSyM&2Ha=kowN3S*{S+35XnOkY(urOn%Uen0g*?_x+qdX^#qW~LcA#@;{ue- zC4OS6_=?Wive|7qKpl@p5f%9Jw8wdZYxEag|rlPH7vH$?k!9 zP>Y<};R^&_IDV9La~@@OKv!fpi#iMX=53PJ$15T-L`7TxZq~$uoMuft{q0=};rUJf zJr1(@nppEQX-loLQmJ zQE&q9SuI}{7sf|rNs|FVLC;6?^9@#qJo1Xl=~=7z&usrkX0gCmh_6%zD zanq{CGocQuqSsL;k?XcFfQ!RJ%8wqe%6EN5ac+hah;;8jWBA8!vO4ExD8aPU)X^Ck zHjV#AdH~^A^!(sV4RGf3mtI^SxUjfg@bwa;Y~#V~+EFCg6Tqg3f=y$qkkNg;&reSh zjoHG>s*=BzLJrPVViE0q&UGISyvR@ZPEp8>-3A^mkY2nq6t&hsN+^}9%23f59Rh?_ zJmj@HO;rcPKt?9tPR5uN0jF-$xKWN^k_-DQQTJ_{Hm!$l8(qrl#{N?PpNIMSYCy(` zzXG&+Esozg3qmUENn;a0c}{9LXav!01SZmnJP5mR=Pgd>&1dI#v~mmsjgjko`%@h?tX)x$JlQ$scKT)G+YNJac!-mvy(xhu*{QoW#ZSp;})% ze8{ivGZL_mW!AQyQc5A#4`~auZT_+IL}D3*uHFw|KL38Uy?p+947z!Ws+{gscr}&$ z!H%c7NAkMfD+2HaBlTnIrDa)Mi#k2V>4&w3ki_vIjnArXLBd)5+q>ga)BhmSfL!p$ ze0rO~jdg`~;Gtw4+>obPq&zrma-eRHibgcb+_17?8bsLrCo)3otNt=A?2Q?f=r`>@ zl3~=;++S-JA6aaOUw_?=9>mf`?m;aVEIo79jni73|4#6$;}g%{O8eI!1ORXbAO07| zV5`#s;S>*0UGjwh8mD@VOl%ZA`S{U4Ap#Oa_ZX}XkD`I_qg+scVOr-@^y4Gn%J)qo zKtgo%tUk@9v4gtjHFJ-VF6$(a#^3d&Sv370t3dW-N{=)q+|BCIc16JNKGA0 z(#}-CX|B&7LlD4O{DI;sM{o2)~brYgwztPT0Ucs{)FGVcq?iJNUe~HhZ1h zi~e6qPKFF{G)1+SuX5YV+`KKfQ;mU^RQPu`h&1S-lxU?>GdUT<+|yE9C9j?A-@ktv zT3=~jAJ5cmumD$_hc$9mUadlpal_5JW!08|?YE25-C|N{imVTP_jz|5l}kegCi}X+NmOey49pyZ2lo#{)_;4oj1i~8{Lo7cf~!+UQi=+N>I`hf}A5^!vXT`l?B zM^3@qP&ZibQ|jF6uD~n&BPI05!K>f0{=HBMrS6Igi-{yKs(5~+iGi_`J`VZb^=ySb zIzbifY^izFbqzuFsEHo@Si8&)hwl5ENc!_# zd+jm*H0OOvSSNS-_IacGQ+Rq>fA^3%&@xLtmUPkPHfFd|c zozqiVb#-+C&x1!R$E)}?0nnQlOt@Qh-ZZajZ@|=Uhp~>XCqdx7vVb~r`h_a zJ)<0#va5G66Zl_WAB-=jO+ayySiZ|xaCSlj=ZH3vCvk}Xn>yxi-{dKQVhJUKA_Fw! z<=y_y2mr@WE!`b`gnK3Xw5k(MPd&y2BZhE>ibf}ipP(B5I??!sD$ZJ>dXs#ahNB;I zNU{B=Lt==3RdT)YB28)V(@N|{TZ*HH^_4)*PwYgggjIg8ud)$UCSGy|IL_`BrTAWs?_*d~cI5`;$@&#z= z<>6glRjSP`O2@apuDi3p?KL)Xw6f7AdXLJmMOe;RY$FE*MbX<92-e^U0;Aa{Tu8)~W>kbRp zhX2?=-b&RBh#wmdtGc(aH_pE>jZ@YjW8Lv!By*h!LD%>F*vgXGM*I_+F^ zgu6Y<5qx^X!H8qAL>p?7pG9 ztF|Za?oV)%513Pxc5Fua<&V%nabqUdDgy2Y! zLst2~4%t@y?kE6)n%VIN1onE=iOw zqsdoR#dqGhO66O~$TJzUf-b)_sWSakCRG_`;J-z zJSEw;66CG*-ZUU!{@!7Icwg=wq4o4$L+=$p9Q5+RV{Bsk3e zRB`^ny>oGC3Fv74(Axs78-$USJtkadrA*b3yw}hH93KRSO^k;?3pgGhS)ic(OPbfJ zw@oY)Ht6yTn9qyW`Th3K<^LQY8!u1b>&@c9AJk7E2GART1Xi-;9l0MF!_Yt$ z%wjgWndZ|TsPW_RQb`W0*K=$qwEuOXNwEs~sAJ+eRXKAAv{7sdq>1X)4~N@imJxqzczu>GU*z0tF)6VSHb{327f4^EWQmqe6D zvEtxR$}f;>wnSS#G4$WJ1}D$N>Upp^GuxY8577|Sq|eHdRnwHQ0vYVVfv z^@H7;TO@RS>T}%eT3+BDGead+XS?Y}70n3nYf*GD-Qq}DUNiCI>bnFnZi6u`-#Z*( z86FCz@SuC$`b|1E6ZAq>4eTs<)3JP&sJdG5E|LJFN$#xMqhA9}TN$LZoo>5Y4})3X z8|B3NkK26~frkQY5K*>Hqin}P^Hny%yG?<5vlaS&*42;~MUdoBdHnz91(>qzc5~L4 z=N!*@<&MCNEaBrGv#^ZhoHjYfyQ`-Eo}GtB1Gc!R`*nHri2q)T^q@pA82T!^4jy;k z3RhFdPo|7cM&cRKsG|4oT>D?V%*OHMoWX^{NTMh!KOMVxSy6ta!vvvusVzaa`5dcE z4KK3I7+cP-ul&~ytz;^^Lw8=nEogio>)rQtT<$qu0cueJb+W;V2SgKsX{7Pb4C5vE zeir@zFss9I1uFWn)SZt)-UOJZFcHX}{OQa8vMY1Ih9@VH-C{#<0uEV_x^1|^DS0C- zfCT@970iz=QN-H;lasWdF>yqhxV`n8t7|=`80&YAH}UoD=d>&<{Z!ANs?vMdF|GOe z89{z@sy8W=d6u!R_h5byx=@MR%{9-+i#$MWkA!1d#xhHwrSMc%7qYJ%!7Mm;^l+c} zL^Oq%kBhysk2jbP-*G8h{+p@V7N1USzs&>7goPEM6k*LzE;_2qbQP|W%h(`Z^QkY@ zGl}!J92S-;lM{B=<6ynwm}I;CUGGsDlpm|k!AvHd*#9GULdMAsI=FF}tWL@y7aSar zR=c<9zVKwp9_VCjyMQ!yh-%K5<6F!dDk&GECJJ|zrLT3yn^YJY_da1{o<}75X`7FU zBd{ub=49+cr(+>GNeESE9H3Xe+QLdQm2~!34a}Swir81BzK^cnZ2l3(*miR=0jCbu zT7D5abj12^<7A|q-JGY@sYx46g7l*j68fUQCQx#=M4ZN&nVYTs@c2-jliKh3GC{4U zYnTY;v*A$?k||*y<>aCQf(QQVSRMDO1Dth5!4nx&81!NHO9$E;czIRcCRZ{Ja3sq9 z&>eWY%D!m4WH`h z3D8wtt=!<|YGLxtNOJ(5q_7|hos_}Pb+?p{S>sRGd#ZF-I-&Q0s>AT-^p>BeY%x=)Ki!On5=NJ;huio z?|+@r6fC(!eJ&@T&&3$6PPQwWyuurlP;DetWFF2~K=Qt7N*buPV&UWMkD7XEm7XY* zTrY+>K6H=66^a10tf`mzr6RjLpPb+P@x{-Cc8pjgXR0v8qKgMZ^TQrljT?Cs{Yd96RTQDF^rMC z^{o+(Rz7C#Otr}NQjqy_K;SVW;RTL^E77zbX)A;Zr$;&W1t=cRy^wQ^{$gg#xi2#~ zUk<&9h3)O$C=Tar#Y{1M4FBKD)rI7s9fyIGmX)rz2Q(=i9^hL0tcrz%08_P|-EE;=WT5@x4Aa9x)<*+)BDLf5V|0s>FS?iQWgAi4fogR^aMnf_EK8T;DGf z{GNN|E;5OT$M$%+dgs3l91r~FVwj3LFv~0VQD&`e9NHh5KsZ&9bR&`y&V2{Z4&`s~ zBfyP{SwtS8K35NiB*gr+K6fDSUR0b<66={#kiZ&{`c>ldi!b&u9(P3tKhQ{5cVz8- zW?=XLn9FOf8ObFpFN36543H$kjx_R?OC=kc@0>~&isfGaKJ#ED({aqGN?9>97N#7TPs^*Q~&T{5{QbCJyaED zCzX_|zcHDDD_c43MLheobsF}Ug>(Gj+gXX+OaH#TGS^U^?DkR0)$KNE_eswF?z5M; ze-_oAeK#x>y`1WZQQg6n+{*_Pv1{_8xrF9l;o=Xqul}5C??$DWS1W$ zgmMcLPtNhKgF*WZq(EkPXSqzV3wTfInlMtsQOoG!T^8&nLz~MdWl5^>X14$i{iouZ2(qx4qpM+u6!&Vr=#-Uj zX11ngaW5H`bRtx_8Uw}jeN^*yMmpqun-2W+pIm5Y5F5bMe@wP6Na}FTuwu(k+Tc}X zjZ?z^vB36M>QL2jUr$&Dt{fBnSFiWXz!VWhSiP8lDsC(m>D$u<7-kH1ESKXySFfSGMDZ=@fP@FKLDA~uN(+?e zv@c=R(xD_TeFyPLAKi^1A0jJb>Y#!Ht@+1WM()aNY9I;TFCu(scI3`)E^kGC*|_&@ zxU--U7F4EP%20Z8hD^+fp$J$_up~V>LOK3}^3RdcI36ui^;C3uP+*k{{b2>g&XF3UTnl|4u}`P0 zlmku2?D!u?7D!3-`Y~hP;m(hiTrQZ;IZ*u*ftDDW<#{VL&Ae!hpIthvfpc!c?77`p!+BI6;ay>zjnvE`V+V76N3y)G6)d9v zbPEV+4~-revUf+sQ}WQJa&UD&p!yx@Ac$NGbKTjLC;4XEjJ zg9b5sdUzkv!3!s1<~x;&Xu+>YDwHMT;jehO^+^%RxN=c%ho?S7o0rVEDxz<1;;7^W zK&rGFEb41M98&zMwOoBXL()La`H@qUX>2TX+ohFin`PsJ1VeBXcrn zM4@^90r44WSP&ZqzJ&|7R8Zl7N3l=vvVknjF{+@2=o*)@r(_=t>NXfjf=`bpjuJ7C z8$xH3quZvV-4mUfhei^^_}n2+F2v(E6S&(Q<1|AZ{YoSoT!~J{_YebB1|F&;A6w{T zJhAtes)a&#BbplnK46P$A|Cw=73^5Pvwr!vNJQguALu~-C?3T5UUA7B@d7)e%4%4Y zV*{P7^~wif7yu*^B1&>3Hrl2mP23r;T(7E!>on{CK8RZ4T3BI}hN()=PJZUUj#(W4 z@%`*JO85Ec8_wxh0oO?ap5u>ob|e2FwY2h++T*Kz8tlzMqzbBAot7WE%1csYf(^#fgHEb;psvNvth#PCJykzz8&t{^Ufq)z_V{S z3pSN&Qw8^?GgMm_er{=RFM$Oq%8jU8dQ>5dAL~;P2n0Ck4{&D!z^#UNzEi_G^_ zQdh92OE^{#iJU){$2;v*hBrxq`{>;mDSpG+H)rPok5EJLk%_Htk52MjR)o8nuP^8t z?1qB_UKsgTr?Wt{!HV&AYp6o;jdXmTj;mzz+B-|gqHUz3W1m2+%@j+)gP2uKM6H|So|$f1CvIKpl*~rN;&oE$ZbY=U z!x)I$VhMg8hIlfyW-7V&@XY1=* zJ(HUkcQleIVM z9%w-i3W0nt2m6c2w)UsRnImk!=_YR4NZk$JK`2wRPGq7uBvPMuDnB=&EI$_-iUK-q zNgHXgCHWrV)ZN2(?(mHKSIoc|ECS9QAZC4!Oy@I73j~Hz_HVH3Pl~- zYVpL{uttjA62^3A&33EkE-~( zBv7*Swb;}yFb?C^@w;%&UkGJqdu&Nc2h*54zGnZS>L9_W*v10Hf2Yvk7i14jY$l8` zw$`>ydm78LTwh(^hsvA*q9Vc-eKw!4lt$RKt~6x;TJ0%0rp&~f>m8^DI+8GdeZz#8 z_YQ@8)8*`{Aq#21q(J!>YgO3$TP6)v2|p7q(tWhI%Xm*MRLyHA5N8Yr;*Cl7`mGs! ztO9Rsv!_1|Ho4ejqkN?_#==L?S{*Wd5kuIyx+QwO7Y3X^@3esyv}@%cq{;Py&C9az zUuf~ZQg^k6E$Gg)!1z8WG)E_x!=t>0FE4chVWALM9B2Wg8VNym1png5p1_XWq$r1V z9=Atgea!7&tjU}o537LJ)dHhQ(`d?ZA|*J9=iPDfc^gKh@wiLQKDLS+>cS zvZOHAg$=0(k;=t@8DQ_DXDoFD8T9>T2NTN+Yn)`R&Z!_S=h5a3S0q(km&L~nf+YQ+ zJq37of<0sS{~z7&aBEoWTzYtMS30UIX9^i2&6mLe5rtR;%lDc+>-X_*Z37)qJJM8Q zx7$Lr_7Ks;_92V%P<%XuXfCKltLWzvUQL5tN=>I33BK@Bc3*VKOj|!v6j$$5q)#ej z5%}h{V=cnI`@DQr#gq;HbQ|SHxL#)YHmnD+(ZEdB5^{e#MNfl|gOt_?NF4VT;}?bCk^{QWl*#4!G`N18;|LYp<3en7 zY*IsP++PBv$S~fZpTrMW0uJ}OBl^SuBcEQqk-Vko0F5jMK|nb5t#8>eE~;MzgJ8Ny z_l~Z6@u~LR7RH8ra2Qh6W%iC{eDv(kyLkiM>2OyOT(qBw9mn{_WgVg3C~yit5Iojl z5+C)C?(8m5Ac)krXYRib1zDi<%-U~VarTNOf8Mx|idPb#k8%54cL-OwzG&Bf#${$0 zqfWSxuv2NnBm}oZhv@9y+WAYA2`sZm(>Y~{p2^Bz2qpYi3W1g26DM%SLm{{oWpbXC zx;q@a;vLh4bHMVi)LXek3h83GSf6!Nk;d?a9SsvC2j79U-?j zNsGZbJ6xyEslfiXrR_37JssbPGH>lLL&3N@2ajBk7!)O(a`0dEFGX0TmK+bL{TxWQ#`n*tqAX@oHMFSxsbEwUSaqsKG5yx6Jd#FsgAjBqHnpMwqpGg9H zvmQVwX0;iw-!e@M#dosISwF#_z|#`j)ozhL4mcXd!nNRJzPildR7z%u@XODf{H3#&%Tr zlfgXOsgh(ZhX7Mzpf6(quh1UFTs8o<>}jbiWBK@e27>#3a%N?Nz)E;H8bXRnoRY-% zOiqE|L>m9FySf+rr#s-Jy!>}A0B;fxto;UXv6JV-Gz|qFDzlpnSStC}r+?&odwEc9 zuRl~-tQu3lHye_+jPWP*cIE&gdlBg+o;pjj*t>p)2=PU!LBmISsCY^|{oH#voJH}q zZR~_|rjmJ|9~W;CrBbOQFM3%=WHh)t%m};d^2-+aty2ETINvRSp`q%@S&Nw5ANXLK zNz$Y;!@QS%^|;?BaC8>*sew}~NZbyt9nK}nu9we};6EO9#Sr`muF-@b0*jUxk7}QL z9Pd~9C{}Vhkfbt}I>(>g%hE%6!Y}Y6*G+V_(FhOW5#33E;iSXEuk%$Nk;Q>F^`>_z z20lbSOc{P~&bP=k{$>u8h)rERgTCAC^5|HE=u-V5AKEE5QOZsK{o;9DYO)II|K5^l z_trr^uMc7f@R&o&?X%k^)%IpbcY0m>n;KNw+k=hhy$Xw)IsFKC`1(G@x_`rkSCE5BaN9C;u5qy|0Hf(n&$7BBQ|Yj9;FI{g#&G}M}xf+aozn&<8r zk+(-Dj&Ej7o_>89iw0Q5#REv~DIo0R9KIpt>FVwxOB`MQKla`tEUqr-8ifXeI{|`Q zaCdhP5+t|=2oM~CySuv+oZ#-zK!R%^I5ZBy-5R+k@Av<+JGi4e`X+gD2AtlzPVK5% zt7LEQ)KjOoj+4hVDV&P<|96J}p~nBtu){m|gT^q^4v3%% zJf^yr0sr&%iH~ALgV=}0eXQHnY(PTcW*`O(tF_pv+DqgBa>FUJHS6}(4*_t-Ji4@n z{m;)nBM=F>kG4C)Ajtrs_*~(?0)V##G}xtEHJi^H5Q*=Bwr?YIXaLQoSbM4im!8u% z`_z{kKTJD9_Y6%Yg#}iIR^Ef7Ry=py4XcN(Lww&aieSW70(BRPUbbSn{3F~Nuamc@ zG~o1w7Tqkk-)ZEUr89`1ted(U<>G~C|K0&;mzz2bZXjvW`jm+U`g0>C&_Xof1GJHP>g)rEfiX? zUQ|-@o`{sRq`zMh1?}5$dEUM(k!K?d@LR2+2~Rb0|4GFl{`q&JAfPCL=!bcc?;jTs zMewjmz+TNjyfei6_Rf9#1uBAvi!U$Mld5XH^E4b$p@D33vg5a4#W#RY+%w!dY5by?MAn4JFJ- zrm@)HvY``P<_DczV%68(FRbtNXvmxQS=KrI7iaO?_n-cA!M1GwT<`(|EC#5_#x{}k zsgA<`vDO`hfm$>s9^nPLEqeIQxX`~#L%g~DVheupfOlO!ph&?b4BbsB>(TPBvnkc{ zzKuW^GF3X(hGjb@KwhL(d%LXw#2VJd`g&(~Bv?EEJVpL(b~FrU#xT#dOPBl*jbEg! zVgLhC3-)8EY-Qyvm=%{jV=t4;-;8XmGPc_$f=Z@7}Tn}!Sv z0EpH*2L~$lFKP3c6h~ynrQ~bFB{nh&L;dl|$#;4~f1^vWJ2Vr-UmZnMn}SIXs>);n ziWDPWejxy9-|OfAV6#nLuCv27`BT}l6~aPcK%7|NX%hFtc}wR-T1C`mfv=!99xO=n z>uE=k*N{!rk6Gkz^*Xn|Rd`;?xB35k3I5yv<4fc~Bv~HAVb4uwQGQ-R`K$!A=Mewb z&k4Xaqvu~S=%N#k%;CFIVdM(SZWCp^W_V;=ACNV33D}Scl}mxJ^Vsj^|7B<6JVpMF z@3TeAmBiBK)>qfR1IVnw{=V~V#kHDiSZns7=8=CE{Cx$llF=SF=#&H0Nw7qa0drURDm?65LCq2k zu(Tp3AAx^hI^vKWrK^4Z2rK&A6P5xzf$(3kr?X{9{4(7^xVFn*H|qvz_>~!pfBTum zLT|KQE!luEzT|o@(OfiQ`GQXgo~nrqg%Rs)5gB8-;syEG*kt456Iffg#!^vJ(F+PD zfu5d`A&{-4z_he91{(g1&!3AJ=-C5aeO+C1_x1>ehZfSewm;Kz(`5KiOnUVr7|t}` zu*4mpp`c)GNe+<*@?jI&WXpCea88bFooN+MyR&^EWy-AYFa^-y!T0aFaK6qA+3$CE z08We&d@^*{wfff{M8f|$`DhAV>bk%+C&H(kpCt-+y>uuvmmov6BsZfdU8@yoXrxFI zj{jXLS32JW`DBx7o&foO243iY47^f6(O3D9hoiFR6dYVh_p#rL*o3*pCH|hR8KazL z(l0;bShpwO+ejyb(p!Op={CU%f4|gxqHCYYhrOY{vNHGQkKA_htda?FtSsa3Sm}5S zcUDf;_qZCPw9Nk0v@E4xp`J~)>>s@?*{Z9nXVzKOzI}sF#UoJH)C>Vmd$E}}ZeZX> z0N_!5zV$NF0kLe7)J0;S77IsXlZ03&X7@SJV|{=qw5lHp<4)MX^$NDe+MxJC>}~mX zK^2NbY}EQe{Q#QY$UyTEr|7Ug*mL&jyWCT;%A@#y9v*-_fQNShkt`eZdacTh9qIpL z{|-AXb#CF4=&kD;Q0-OYu|cb3DP2col;G|$qqsROBuBaFB=4J`0APz@sh_-7eoLq& zVyEQfh@X&lo3Ac?FAOsHdUQZbZcNU|!dehHVogMvUA%nAnU$BhEoSjPw5hvW3K-m% zlAbLS`XI35-T#*+5@z88X0stCaJcKlW`+6X#5y4Za<~59MAA8N`>S~yEPXOxo}Ji2 z9VH(?icuK#=wYk%@c~#Hzuz%q^P>ZFd=8iGZ)2ixtIvM1qE#woqsRQ0SFWs*x>W~8 z@Lkp~j%+yU9en?2JH#rw{|vGKtY~LfA2utC)Kv-*fvg6q&9_eG&>nY&Y)K1()fx;S zjbX^{`A1nYz&o{_82P$yvAnEezYB3lLLt9I1-1-~nMSD;8{-d@k zc`^jyL4aFGNLAIitFZW|$BT%dU=-tMl(oBi_#yFnLViB^pFdh3#l^w(T38?hI?}ng zuO7sKGh98=V*ZO#!`VomJLy?QzcLYfeffLG_J$tt5-$(A{bnWV#{mZh>s0Xf?cC7F zSWy-L-W%eg+AxPFWn$5eu(__j?Y4WF=15WJ!TjfU-re()b=1{Kk1;Xf{nCq6+c`TM z%8D2Zduv1!5*DWJ~MzYh%ynVvjlEh%GgrWX?GoSU9g z$|lbK_IxOVf`-w%+-+z5y}cdb2YqcpM1u)HisOcB_a#uiuC))$`G3W9A zq~bw}oUCAOtBL{;?MRXi1$XPW-}gUhg#*jLmmWN# z4OQ&#fq1xN(le%`{wuQhR#v0p?xX4lZVH?Th>ss$T{fUc$H#>h1B|f%sge-ZdYm#zA8W~lOOCX^ z3XDuE=tW8f*sMmA(yL6td#s#;o>z*DvJ7;JmY+NxXKuR8lArmfcU)X50sA^N2l!x- z>@2yG+w1F(j*jdW78bc{VTxmuc%XIZfB}cxyu70MI97~ldN!8Qh;#O=%-k|dHX;TQ zkx)j(XltL(Sw`LV--DiP^$ZMX&DUxwD=27YsvJC&IcC%}KdDK+yo`>>*`zZDf*OR7 z=xBV;UqzuijCp+=?lFJw#SAVxEzbiD<-)=l`1vC^IXQ19Dzu@;$EP!kPmHedEHhQ6 z!4&V>>KYV|^o5$NS1GqA$sF2j?a%7I^_OWkR`9arJ^A{Uyk`ETUukfdJzC%v5Ku^G zGb}yGuzC;$bUO9zfFHbvhet>Z#4D@U$7gt9Uz~1j{;vAZSzeadWC}Gy>;*q?l(Urr zhVg>?#5Xrhm5ikB9Q{lq?Tu=SYEMPJ|F}d=$xc?t&ep&F^GuhLm?lYTD3X$#IbSv=bp^^XDOeJ!nkCfl>A zue;;}ajO}VoDC!PMjRFG-4X0Rld7#Xe=swf&MhMH;g?MNF=R{CR*9RgkAyhCIHpN6 zD>HjPlpDlfYPnZY-I%SOgmX``v$ciuM>D-~Dq16<1Q)?ZC?zohY5S=&W_9tb`tIz&^9M;#E2Gr*vrAlkqPa8$#g7l`H3-&mquS7&|uA((=&a&;s0Ta45;e_%>T z=cQ6Rc5Y?mgZtTfNpUgF?wAvd{{(Qk>~o7>>&^3uhtY%Xi9gbzkT7_$fB*bS>oLFj z(MGekq{IR+Z6!fLLDWP|bj?#*&!o_2dcQ}nb+_k~2&FNBz5AE%cF?$aOnCmDg@OW; z(eZI^nHWLi-t86lrn9eyG76^qDF41vdKx;(l8Au7giBz2En5jKo%$z>cVoody>?}Z z^~h0?QN=$-)oK40A8crc5Ks01XY zTV~|*{T~8Y7e1+Z=`q?lILvg1PtmjThV80;W&BXlRGff(4vo)q!I?Po+ZRFM-z+az z4A}nT*VAJFXDmGde}9&|5g`v*7M)gXdg!dhq}y9v&|6(Asb<+0eJv9{YgG**WysIR zq|k8XAC>epqLe=uwh_pZ=Y9b=O7G!CD@8YWU-_FR(oqQSDOM8M$*aAV*b{UwasT;l zZ0L;s_55l&N%OoP+S(dZh3H}MAeVnv1~k$Tk&qMz1c*ne$}hKyIts-=$n3~HUtxO` zpQn2a8}IbzrmTwBa)TdDVI!qQ+N#9PREu0}nwnY^-d$|s9iQ2#_3T11w_VDgL^c`+ zu(=TLN#-!m!hKEXUe<=fL7QedA~Ua=*F{LUhC7^ zkY=j9{El+axVrabKN1@LD16T4ASM?7Vy5|s>34T` zR|4Z-@_f(S8Z#)>yUn*c&`W)BbSv>tPVOh>VZ=awCI{l>-((n3Aknot@kINe_;3iF z>77_PlY+&+;c_5Kh|#fu?m5-{V=g`L)vbXGd@N;r@Q7vFNDu65XG(=`-+Dm7l?@9W|~? z!l#J1xGyW23saY#SCAQhj7_O;$5+BFh-Bj|(BPgY87xQ8KV3huCJO>>XzSW1klpi+ zX4oC!fL8G(A0G^n(4H41Re7*M2CDPZa)u!=3*n^Kny8s#*XHOI(T)EMM%e1_q(Cw; zZw2hlO-&8MLA}W7H?No3Ln)bwqmPkcsc#=2Uo_&P{vMH=7w&g=^0lRiz3ieYeo)>k zca)waaj$^qPnM-X^Nk>&pg@|VP-YetuRF$_?xD!2i_liwH4BjC3d+eB)A<>24-e~n z{gJ-%_2P$!vF}@+p+ag9%@Vm!{U@#B%F$FkI*g>sl=}oAj$tmt4{#23ADLGvV=H>bHRm-T@B~;=$ zu=3$el*RM;8UwJrx(Np(aw>4V=$Xz#U4BO(`0Va#jc&SneroWH0)mNT6$%!r@Y!`w z*7||T(O!ddKYzjDkS}R+>Hw30Bzd*ZA)0gllDj5Fj1+$8Kt(YzCilAHkiUDTb%+UC z^a<|odM$@%Lb`3fan&=>DVS@*Q&}!C0wY>%Y=zkDoyooOu;t?g8QF>D^_@ZCdw*R$ zb&l-@gS8LCQ6ceB@#-(EE5l!(Sc(w>>v-O_srG$mVbTk9M=|D9*2X@Jx7X zGq){ud*1uaj}Gl!E-uo@r49ZXWZ2E-WoJGyYxar09cbB`awvKwcF$ZK7z~hxCp$_S z#>Aj-oCgXevi!EHf#@W(7&?Xx8h9r3-X;c;XtI^2;kigi1*>Dfjp$V8njRW9V z=YTRIvJIX^{xK)?(oLIi-H}^|*MV?G}=;syy!S+1} zAlOiZDZo=kHdETs7&IS)Xpr|FIJ>o50jzhlhYMQu?r6p$TsNznt*XGcS!wXj$m565lE_v%-V5PCow8>rWb}u`zKPA3stU zcB+417>V>Tw(;g`ZgIVU*w~CRi1FEoMcwfiA;X^5oZ5C8P=f8ucBe$qR%ZN#6nxFfQi1+9%-bBFU5D16U6umg-YOB=9!? zusNm??3F-5%OxI``UC7<3Vd|mEE#aL$WQhoYn+@6WMovy07OkTC}qB($guY0DyMCL zJlqR@#B&1g4<~J^3dP#cE3Bw(0N$T2Qp|fx3BU%djoTZ%=k@pSVSaYoBU!+16|Qd{ z>?y%F)aihG!#xvdjSQu#%$Z8{41xw2a<k&@(U;mh@${c09(i1^9ji@7WR*t6Cki* zLZVMHz+=FiDF^U4O|Skw8(0Rw<4vd(UJ-|Yr`rRCHAMgh3cf4OmyZ%dcv;q{+boZ(da<)<&MRasC-T$ROYC!o1r2<(%g6(!Ltt@eG(~Na^K(0}1|puSE&w zd7~-!3mLYC+RRGxE$|3Z5B~+cU#dtx^}jqS)&{Roada-c(lL- zno$2o622lbz3#|?-;Gy18omI?569QHM<3YJ@~`CPq=$jzgR#zLNr0@WPWVS694~Wi4CQ3qVH4x@UXrYW=`?(^|ea_>bjI8R^5WJHtd7vw-ErE*a_Fl z2r$|_;hKC1fYBw^ke4A5-w?*ykS$8o(q0%D8VZ*jkQ|0gP0>nrdV4pu^vJyU_2A** ziHq{)ClCvV24E59Ng6@U0828`h{fA3D zSc>||TSbNT?Vd$)Z|`el2|&Gp4p>D2{}&B&c<)3BcC{s;s|2idGT5`v3@|ByiN#TJ zSo}xu_lL`ZH<)O%=fi}!8|?y_0F0NAkO-u^eFJd2`({8y;%)1i#q$>Q#65Ex=MH!% zQa8Z~z0oJ9EUU53RbZhTtQ0GJ?9zASJq61@)R&i*O88h#u4kaF3@kjE1QHJcwL%xez7+wq#Z@0t;HF56;6xS*tY4Ou_YmNf?l6RMzpz-m@GCd%8lL{M z)pUt6=HqPs&vYF+hAIS6SGrK>=C)T>PF|^M?;SP*JUoehgJJ;m;X&ObKx}56EHNHa zE;f5;;rQg_Qq^ba-Y}M*FJ73>fBn)OFB&qU*>eNAOX;{cO3kWx{gfwmpNn)Ow&`9Y z25F8*&D-aUv&*mS)!&elrZAKpl4W40NWj6xjc+<)_d`5uUGpnBx!nq;CAaQ<*Q4bx z_FJs!7vkA9k5Id#`fGhv{>_V}mYBv$+|WL|pWL#;OmEfZ?DB6(DJiLMH;131;^W1l zYNPLSLonS>sqaZ4{&6i+TCYx|Z-KN%@o|+c3Ysu~nEwH^ z{=j(hnmqeHiFQEebV~J-}c$h!^i#0Q^QY0vx|)ltPf1Z#ie=o z&x=2YxWh@vdT)_l!$sr$#r|rhCEEuGyJ2ASkHPa_E(M&cC@2%IVnj) z-Gf?l>iNzQ`WA9_khSl#G(~!HH}_;JV4Nd$r;$}f2}B=4$h1i3#?QBG-zr*yP%d5Y zKu-!H%E}Ydm_2vjl|eqfX4ybZOM!%h;rWcZSR;HE;c%=_C$xD0l;_WPF_aPF=H`A& zNBy#PR#z0dUG<|j)cD>VSFKDKGf1a>VE)Pj?F>T4PUf2;OjW^jE)m)vJ@1_~zC4Yb zwKC`TUPzs_-T-JgUeqBHV(JsnYq})f<0pzoL{u8{ea~g_l=a;o*x!tzL%rm;l2G=r zhlj_HI`UW#&=r-BC&fY(@wwFSlY+2Dkn=Eg4V;Q{iuC>Iu+lHUtkY7Pbcuj`yhVwo zo_dQ*n^X+bv0C9%_j}r7m&b?viBS0>5DA%_anzCN&=Xbu3`S3i{ zMSit>7!|m{fQ^j}HLmTR@-FlhhMXK{%(ElHBGT1(3rD`LlR+b3U;K8CDrpk`aP^c! zc7E~$NkI*DMMeiV0qAp{*6T;FzPypvyFVg5b+5NAiAR5r_RG9|O#O?TqSMmT=s7u~ zK*2%BM8+y(FLV>+2LvxKutq%o3Gu(fPX?!&_C5}vsM`3b?Zv-EK{^*}et>%scTDIt zL~fr-6k=3%g$2A=E)d1iW0Fx zCQuO)2Ew;{Gf6%ne|;aNT=F?ZfqbV(7p9rP%iW*8Y1@7567yHSzVO*SG}C;QE~1{0 zlaAt}|6R+}GIUcsJ_bX>@gw^$YS3y(JJW9OHzmY!d@>W zD5+mBr(1@DNx+jBGKBh!FEK`#k<_zy`$XvUxw4XpTa;HZQ&$&{2&VVVhu^W>+JO1+s)n!@P$5RoUcGkIApB!a|&h}d~JQNa49m(;(U8apN9&4!_RLh z)3gZ*52(dnVF0>xr^oVLbz#fd0g3f1bjAS=l=7?8ASj>`DaQijV`i3|_lHkSM+fPX zHdX5cMj%!=jiTKr0X7fSjyiT;q6uCV{4`w8Ebg|3M z>V1(5p<**$-g*9VP#_vW;Nspi{`5C93l0l=Lr*1~^m~>IW3x8=QFp+>%q+L1g_nV! zCWTKHuXo$(b>_o!y{v&g54$xX4oSmV=id^)`EwgvpOKj!?HZ$^j0_#a?MhpEnC-U! zd%h>ub{)eu&rP_3)rF6PQ;Kzmzn#B+*xS;fXl6#8l9D1lGgIF&NN}sYkNG6R%q)3# z-~U3mFu$8vG=jOZO{S<)6r53*W(n&jr8Li)zr{=F@wif+3Bbo<3rMc%7o}ld-WXz@mP; z+Eb2-j-F*|g5IceU?3w?KFvT8KqN_2<$QxE4m$onUfdNGQGN{$9+G|*jSPN((=qe8 z3j2^N);}TbDnvTdU&H(+4668?5&( zPaJ9lMs)FC1At(RD4=|n3P9f#rUq4MKx_sopB)0wd4*}Q9vziq8nPp|kEdrSQP#S; zr90c0^Czv8kDok|^X-LW0n~g~#0=jC$jC z8e8r{qHAoZUzGai6ACKw_jAYHj8p>@P#QcxH}Q9l7;2H}){xWO!r2yOAghE&f};dm z8lsX$xRuv@gN}lX@g>`ixK&pS6P4c}5Eiz}s;Mb=v0ns92WR6RpO=qM2L%E0mdepY zV_=j~n*zvp;+|(3*NOB91e>N3ykcW7CTjCGo#(OHz*nJvdfZH%+}w)-!fCX#Tt8qF8vuqu;jHEf zSZi^T>zg{(AGp%N{p=fr0nD=*5~W)Xb1R5%glz3koz%ToHJ@s=dIuZ#g5*y~FfY&+ zP}En~|F@Egs-M4qO}zunO_#UI(eN#~V8T(%O9Smj!&=A@P<_`11_; zANMU{bX0URPr9+5@)!Xd04_}ucG`5+;lswc!?6u_R~+HVt8HcvVFkWKxJJDnOxq?O z)ipHS=LKu&6tz80^sT4Cw?%QR$BV|C5pTmEcDC35T7;EyvGa3%HWz)N)Q0V`_UUai zsbu$?YZ~tWXRlTK8C{&po z&VEv!jDv&=>{>c+!av8xHJqPNzN%@O-^0F!wlEWC%tq}v4c>T8CGw7TTmGwFay2ni zB3bK(n_K$xA)QT2!%a(YVscW$(w%%_a$+_&TbrJjH!D|23FnBIcy4`0%Ecu*Dow`` zD>V&IUDAg{S!MF0jT|4QnWjk&NE4f|IA8(*NID z0Crxto8M1coIs%eVMZ;{HoI?Ajka;q{4K$r`q!@w*7YB{Hu^<;;RaGt@KjTG39PI~ z#HWmT)f`PI9v+}qVe+2V*g|K{?f(S37GK{b;SE0t2U{cZ^)}rKxRs^aZW_G7eshhk z?xn|>YD91DjPBBD>KXcj@dG{2`$%LOEYOPn%G`>WwAprYQ)lDAj=qE+FVqT7s_1xy zp(ls@J?&2?9B(YP8UtYMhwK78V=t6GZaHYba)29%rG1|VQj&8e00?;J>zsNXsLIJB z@?nC76pw&d>eE|-3_=;-&HTcu@^blql~NfQ^yv{&E+AoQ>fnpxzoZ2-^$LuP<3(LL zN-um}-quUvyCuI;(z1SDRVIz=BLC>?TAp85*5GOcDh>KQKF5XHV$3sA^d;fq(u=WW zBP(dL0(s|MnB>V*zjfyF8b*uXwfWG!XCxaGm7aPPt8ic>3WcY)={H(moC8B}6nYbI+iHY3Y+@la2 zALbo+nEF)=h>c$&)XY{1FV%qF9HQ`-*slqVyrVK6xV4$Ebf*~pRD%NBd$SBZj@=YR zNipi`!QE295m=4%)A1?@8n(zUo*xk(YufAJVV=V`ZsJ}w@>@MwH<=WktEY1_5&7^h z@y4y`zz=q@@FAk=A=D2b5}TyWL=Gc4Dn~dogki@RyK`0S;y_n(CsVRoGmopm@D#VK zSbwmitxpv6ZhjvBF8%3=WOP*CMK|tG4orMp+-5WOdUsu&eCpeht~ZBgn&ffz*7Z$a}*Tvo6^0p$AVD+Gm3uG`|K!EH}R%WIp&O3kShToo|-`s+K z=Dud60 zJ3gkUMt>N)ZfQZ}_Xsq?+{B;@9=Bg?Nu4(%|8ZX~NjJ*x7LM)lCH%^#IaX z82^=d1v4`ZZXTWi3|x}gRu4Z z5|u9AumC?(gl#}D0WPUE7v+y+LpicWaq;(H2S|^UP^b6Y`qBp%m#di9i6hrz7&MI7 zh9WpiSX4|OItB&>ZXS_=7KA=@L=XlERX$LukU=B&drrGnpPpJI6bEOkyv#BH6bw38 zPK_SQ!@`2I4h|52#jxzCF3KjQUi@2xd3wHeyj%H&46fc3mJW+pi=cAsUPz`Go8%&G zo;9v!AZ#;NU)$QpIVw-oq1Yzf=3ZY0Uf#zb#;0~UW8w<~kRu3@x1at;9CR+w1IDB9 zbi>>AjxpL4-qYYmb#dT#Y+7XT2E!kfg)!Hfw9JJ?)E=Vt_J4~*LUa@rBlbPX@D5Tt zzTTE?76m5Am`Ga5v&+cHbqI%N;}TLBi2DT>7#bQD9ckNS!Wq3E#5QO>jcz6+>g_+r@4&642 zcO%zoU`=0J0ENUgj64`hWZbH*qD8bF8|#}8GRx(1-O-+lEP!Qd_2JvM9lwwk>Syq! zkqdyz#)f?{rRkoEfb8k+OEfyh9BDD}d_}0Iz%lN2XTKh@jc!%0`1E(fH4$GZ{OQ=> z7uv2F(QB84l6%%%bU}7Hu!Pk%^bK~*3p#}4#bEmgKPo1oU@k@42p3$6^bNdBkuelN z@zrZ~kVZ7U z)xor3^?kt_5Tw<2O@y!0+Qt;RP9L$}?pRz2T3Xnp+8b1C<8J+PIUYJX{CAO?^-fv& z`UM@)sVPY*!_P3;ZU<%Oy))YN_L7~2MMWMYB!ook((DWL>S?R zcDbH9mID($*|GcNbmPpD+`OTt7>(*#Eyl|+l8vcDzTr8C=&L~4)7Y*G1FcNA@yKbK z@4Ye@PIUVH6zGIT+=65~J~3(T6TrcXA02(gKaIN0#G9J(Kp9#{)xSi0z|_9PkvpR{u8pAUf9VWSj$_?Md`SVp&rT%{;qZ-=oAQx3+x9$~Y_+G}A5=^x>@vSU-uE%Tb)dh+e)@jVJM`WLyiKl0*t-yLri|Mea$T?;qK0}xPei4#QfleSm@pi>*4 z`X>OsM*+DI*M%Q{q@H8uNeHP5RR#fi$)aOrW{+48`@6m8du9Q%}HcC`=p6_Vrq zZibCGJa20gmuJku-)cMRKfOK^(gcOciMDff9g5m)f6lvty{MM)Z3U>-Y7A>iO82zl z8f4!^z`W6oK9Iput&vvLlMQGrUfiRF3UP4Ekeo!L%1zg|=j3Nk?BF$R)=z$X-mtu> zMG6r^LfsKlR8RrRT!|O&f>dMNV9i+KYRRKu_+%ctkRL2N&tB ztgK2?Qs7U^21$XW#CP=Wt~haN#-_V5Ry-$jLHSzL&<8vM0x2~$>@I7#r1I{fbk%ms zMda7Gn=mHVPrX(^@CJ}@7JFC)2)~~Po1>Wrg32xKe?e@V zGcpLtf@jE$czZUTU|@|&bb?5*y?_4X0E*|+Ax+;t8nxgEO!)S3zX0`@8aDcT=oA-O!0!p{x>P`G7Z0dQX+>Dn7Y}Cd@n-4kaNFT@xFroQ z@s7Dz{%b~b{j7nt(ff3hUtU!l5ij}~D@62U%KyRpak3Tio@9o@-I0Ab7#wIYa6gCV zdwRrcu^&5uE^2=hYGsBPM0 zCX?WS`6QE;Cf5cj?_G5sp|v*0Z+J6w5h^B@!YU8$Bx*9!>~7Ph`qJoPp6kQJRQD|# zJAp9a+W`)kbO`na-NSO$yUygGd2Vn$R-5}7!&;lsQ1mB*dtS@Ey^4y8)ZdPpJ;e#V z7B~HTkqB6E*g-Ji<}=%tu|AkN>#J30Ui+s!>&FRW&;N)jznES0<$tXew;5UKR?2WB zA>i44bYVmYP?h~tCqx>jvPGk<)JY1zO#y#G1pckSzG zO*uvua2{fSZu{nUWy_D0A53H1sp4uQ#L{GdFu7pkwy!AGiLe05Dt#r;uCCN$gOE3+0Jxy*h1GuK$q0wH*tLdMo3gm7xnXiIvj}|3 zI_!;63l?PB(V=CeGp#YX701sz${&Pw%|F92oF!niJ=}-m;ztn5nq&&%@0*uh?a>Zf zXtM$f1fWhAob>Zi>xnS0OG1jmzLBrkGQ7fE=^n3WXgux~8!?3JF9b=t%bs_gU(er0 zfxX(7JfqPIim2=SrVDQVM;gJPxU_yNP%YN>=Gitz00{*&Z@T%NnKUwh&5~~d7%NE5 z*K4W-?m#s=zhUC>xg30w{B39ZLiL%H&b^Ly=#hv(@}p3yj?|I{5p}{1R8KFCy+EjvoWE>Y}Hr!e_*HuP@iXn2dZv;1L>e{h{*~ zZaJIW+a5Id2$9HzaHo?s7MQSc7g*RF$_{!SGpIqZGc<(S7i-RiN?ag=rQ!2!Wl8x$ zlRzK<(dcll2)iNQbr$;vEXd6~gKvQ&S|d`r_g+vcAUML5Mbp@LeR}7?L`A?&go{fq zQ4PDQ9!(P0kH}n|Vt4wfC760Z;$!Dlk$@sFjpL#G7=jBn z6@)#Xl8P9pQJvh@_*PMqRJ5MkokI!6wnH)q#NGRVb^GpJg-;HdIjRpWd{96@pNLK+ zg$}%0513H8n(3*^0!OLonFd4>g7*m8aX2@|dituaEo}g2Dcz!~GF7*O3NjI&2ls{> z$SQCkod=_TldE?NgHctA*`7tsxwf|qrxq~v&(Zn$1(Qky`wyVE1z?K#6+ffbC_XaA zQMR_6qY*L?iEm@AL&OE#NbCk9P1&w=aJK&3^u27NCH*Lb4jd@*wD&2;qs?Fpdz?c2 z;@PmOqF_8mQ*Lt?dO`^nVE^ovS0cH2L@D@|u5=SqG7HHUX@`qyCb1k7UQh)iK=@~t z-q=OI5s1V?ViJ*`n)98_N9ox@7Q)Wycub^o;mez=?>#S+v=`XZa8yJ#?-K5j_MCPb z!eQjPOUw2vD%wMfqB-JBHLwYwc~C_j{k|B<;^BLk+_D^XQiqQ}|XHm8KiX<3FNA$L#u1(4RX^h}{ z)4NrN76xw9vlmbr319{g&LkF+qZQd_4v-vt){JiEU!{;Y2#9JPR`lcwKVe=rE>M9I z3?V!Tzx4}uOQ;?8#}l6c}KV>+Q+BGL;=XW8fap^|z4>KX}v8Nsdm8Y$-GI zfS%@K$9z(-COLTU^7hNYNmnMcF{m zgAlwgk$*Z_!#ZQUc8DD$;QemCejwGe(?#$6lv@HVQhi9GawnQ z4w1@k(}w!>_xU-$oDYEeNJw>oNlQA}5`y0!?1Z)>c{rb36YL`dW&Fi2m2y^p>7ge+ zAQ?%jYd$$()$7F(0NP7QDKTfZYyuv^w`DY?ezRz57)fuQFb<_NDZs?=D`=19lb{F< zEbd!m?$j}y^c_hZ1HNZ64&eu!_X+t_)!=>Czv78 zk+W+7p=rznf9O_KRRqv<33(etTF;T3^aI`sNJ0pQ_Ye^iOk^z+hEqxe3m_09`%Enp zy+fI_&``9})k=P(*kt74I!OUFZvDCfhKI=@oX_nJzSU!N%s> z+2+-=d5=yq(9RY*WHL^ff#~#zdN=kS$tn=Y^yw9pOS}V`oR0Iv{4b)!SH+1jf=S}0 zP3ef`?Tkcnl#Ul~MTz5**Wmvx4^V_rgmv#F@4qSe1Jer2h*i#j9wyJS-g1g?I&~ic z{-97RR1yMdJPs0%gzW?h$rM8JSXA^ZTA+?!`@l&V%M;zn(u@^$?=IPrLR5SltlOS}oen`pA9_hh*qL=3? zS9h7bC6hxwXL99Hay~shaV}Joc9xvS*x^NzG^r$MCEr4KlxD_6k4-R@d2pvmaM=X~ zwzRbk_u+o;dbu>6xJah?=yvDUW{kJ9?`+P<>wtxgEPy8MDrw(8HI>g(S-%H>Jt8@==U6ANOM~gW}ev@Dj zpU>B@&V}SS{6I4})F}MDu^6A-$jInROkz21&-ZqC#m}EXa>qZ^dgL((t*E9cDq(b^ zubVV!9e}GPbRlFtz8^or0A6tCKMbi4g=gF?DG_-7$iQiK%BBuavgnKDZ#$ z$6!v^3=x7vyk#W&Esa@6Q~hj#mDWdU;C}cpMlylykPRm6-9KkIgafkR^71=K znLkhoP;|Z``w~UU)idmlhTauS-mg@eMx7?S~D43o@RM*&Vsawg!1Q z<|7=hLqZt}A-BK{l6jKjQd+TM~C*eQrd zPIgH5iWIpl5S_P3V%UrtaTR&r!ee&SjQH^($~1L1tnPb|iKLHr&NY{g!ebtG zhg)gx<@k~;pr*Nt1h@~~h*S6Uw1sc$;i4qADxvXzM@#e+BchjH&o@c7%f*^13shs) z{^;|uUeu81wAP-9ZT@7uhmiO9d;7~N(<$Fr@dRAW&Ecs|*Vos_Fp!6SJ=r?G&G5lS z4zVJk$)aZ*HS1=x31j6zo z1xI4k!ouEMng1c+5K!UpyRnk-k1CfAhL(pe}~{wG70&I@l51L~y_eEv(hShQO1L<)daYjw96@9}XfT zsbCXHuMzSWJj9QC=9Cpk${|a5A#q%M?I1xg47CACsq=1gtIb0Chy|`Rapee0qQlc; z;=E72M1pK__pn8zKJahusuTRk>e||Wr(=P>!x$6w(I&n(76ALw(cCs>Hts~#(YF+Z z{4*HJ>>IAFaIle<2OcaK*@&Z=S&XApu)tXZ4s{%+3)y$z8VbuW3&Xp9G78KeKRon9 ze08sb0-1-Tui&vwvV8jY1>)Z1Qi0Q8RA1EaC*_H7bafJ@kaDXn5dUoEkf+_ z8E=zR7&W(JbDZf4{7R&1xNbk>x!@+IK0-$D_?-azBq9IVG5Th~wMQUt9%r*IBAE*WKp=qP6QjzNYV<9XVXTSqmzFeZnQUJJ23oeh%23yBF(G z{E(YINqYY-y~8MsO!SeD$$=V#NLbi9C0KPmwK0!qvU!}T>0#@y`{LHT4nXWQCRs`{ zmafl3qoY4&t59KO36UDIH@<4%E}sJ=+|&VVr(WMr&8`=}j!!0-USbUuc5Hfo&wn-i_%UbKB>txs z>}DUtFP_KF!iKQlusno2s$z*|KD$ov5ZbSYeKe%4lwvcG7xkskAqAebBtPX5J@Sn> zrjCi2!kV9R>PdfbOk~1c4-1r?FHp%9dw1u)u+CnIdN7m}7gx|?_Tjx${S=trcw_)( zY+-W^QTcoon@YSYT%J(nO2RK_i*ws|>g1k7Z{f;r`tD3lTMttsrSm@pkZoeWCS=mm z)eKNfsv4flOzhQ8KIXc(f994}H;}(hPx04mw0vKIdGZZ{#2Io#=~Q51L;WIx?zx8Z zg%I7F=k|0@7t#rQ@@r!9G(J+cFU+ypH z!rMHdtuKvFjxQ$`_a|*Htq=9~0pWUDM_HLkO%D1APXv4s2Q}|v$Aq7IR;WVQXi7`o{eVnJ4lfI&!O7{5 z<#oG__Yr?`?{N3?OW;h-ABC_)Pp;+_zaws6=4p;BOr4-fb)a=qX$H<&!a)EWB!kOh zel57)SU&?#h=RGmK0mL=@Z;mX-3In?Bx}U z*-bBXkj>|3C-mS{`hNtx(m@Rb8iz&i4fD^=WCR4fr^R!99tF+CnwuyOEKHHZ%{-o` zAi`8*xAkIbH!c!{F2~xW9~=Pu0RVottCqr9!f5pT?0zL!I44I?Ci18xXJqwJ@x*MG2;=3?~%0h%g!&6!5W0^m;_=Nm9z8Z`+*tKKum$Jm1yl3E=wZco+7Q z1G#sh=%Ez}S9g z2>GxOPZ3b#>TFHhFD`YV>`4VAFy3C-kn4frBT^lSPQfO6NJxe{v%s0+2)r5BdO<5AC)-R< zfXZ1MYh+~wCL{!=fkw?n7peM9Z5-$Xx`WQJ!f^$i_IWc*^bk)34X!!h=6ddm$T|h62~{-| zCZo*@?MC!fyGw7y^(w#nJ@bQY{Oud3ki31wUc$Cb0PI!MRGpxOQ;!f9_j^qd6M%-U z!Jd9>f09o{V$9Ng!zvi-yE#!KsJO1K?ijej=Y7AyI1**)WR(g8oKB*`bI`UyCkJES z`K{wAMR>0oxBR&|xK!Ow!GMaG`cxa;ssfQWpZ}0)&^}-o@Ai#+k22ASXXe-5*JiHr zyaR_bEiK4OJ2f7U^s((O1^3+5iekkjH_{B=PEqe&`R1g4~l5&kk2z}kR3UjvojUSN+au@m|?>giSb z+9d!|x^yc>ArQYIod+Ayk+Uwsz$^yQY6KLjZf~Myp#(E)YwJo!$;oAzq6a$}ys*T? zzQ1^pJnILJH0&k>Cd=sCalH^G>Qda}Cc;qk5HLYSZ<%luyZfTB@4=rSZzF(FPrF0?^=S>tB^qrR8w;WcB&;91L9WE|K-0t=86@>?Ud3s*T z!~|3R2jxC*;%DICs)0~q`@a=u>b2yvNqlzri-Y{t;qUkKKs&Ao6H_IrkKU$TPY3JU zlu&m-P54zwaS+gFAzevw;kvflQ=YrV065OFIIl4SASiBA2{FFTCQ*gGxSx@(HqV_O z_MZ5BvQ#_K5`s)}2z7MOnv9kDLJTn?%SqulLbrg5c#ks5A?n zK$(XO^m6x^nTL`Z#jexLBP1-kZV z%>X$>AFudppmYwX0$B{%0a9syTh!MNj#qgaCwJ`-mQH%yZ>Z%#r>3aM?~DoNJ6-D( ziOX3y#oW|VdK@HumIX3J%0Q{#TAO2fgym4IkLxM?{9Ll?He(drS=i+Mw_AH>Q&-<_ zgxY#~#fgX^M?m|Z8XaoTJkqV7-!swp3{YSQ`OU=T$?2_BppJg{RS%Hii!nDVQdV%q zx3#yOC4IhtCiNU2A2x*`vK600DsZZ+6AtFVp?0^^H-dPcKhyxunQzmPQz?p4@fR5? zm2`J^v4!&4nR$x--+Vgo0iil>An}>#_CF5@qTJ-BfFLw=vvtMajb4reBgHqjjK90% z5uAs6VWnjZ!qlM9ls6WAB!?g>MH(C^EvqO9hJgv)pU=cml!uqWh+p2`p4EUq%U;u4 z`B`Qsw6GJZ&yCS((5^k|TK{XY0QpP~okvAqTm14;Zf>ebI+F~7Sdc^73+*u+A#4u* z(FW}x+%D`v7r;L>k#Nmkz{^2fOS$07K^9_NN zTmp+b$MST~EF#5Plj#c+B@Ws_r?fCoWY=fvW-1OfuUEAbZdd3SCiwf2aKbH40zUkt z8|a5JeB799x}cDim6PAjU0dJv4(=RiPNV8=j%t(-ku5bxDI}CBcz*}EpwP%opO`66 z-H-6M$Mb5&-n|C0s{`C8M@nMbgsBkp3}a^SSZFJ%s_bg|8uHuQs#thXiLDu4ze9Nl zbW(78$|b2riHJxFUn?1MKPyB<$t7ncOPdvk%q^^oH8@`aMTsMU=w~uvp#yhUCbkOi zM)LzKy3}-r;pyfPhnZ<Y)#KEk~L>VPSC z#(U_8Za2Ofsr&VFwK;|Tu?GdbcIP;G<3u13Hk492NvL(%)>aXXc?lX0r9z;Phk(TH z6z4hiZf}>jdO1t7cb4>&PU`CypIsTC0S->qCl6mF25R%Q({sK{xQ565oVve~q79T7 z7RBe0U7TN&zk!$_pMLqIpsX>gdx)}5Wd@I;`mtES~j zZM_J2n}e&HHHU8DqJ*7b5!Ul1)M4weDj&tx6PpYSXsAgJ+SwfSLbXHc)GLc5+o5D_ z*4RTvqWtRbJvDG&&~tiT`n@bv<=(x!wz05?y_@Lh`&`hig(FL7IWy_%;?f62!$2ch zWFsFFBf%CrlA&bloDm$qY-?vnL4#pBp~{w(n*5Q-n9vgZh;MK9;O^QfewA_SC{07Bv{XxG0RfyiFFJazSA=H7_n{ZUCk^Q)D8& z8cm37xe_Rd<6Utt>GU(-!$ZN_#`}-UGt_{ioHy0$Syc^0XbhjoxVY}c;i$f8mHN8t zLxqI9l{jt&{dZo55b~Se7>1CK-ZK+FJ|w%9tSp-bsA`7;>~sP=ue6dPI0nfOX^r97niuqB0p8e#^n3VsX&$u!&6gmj`oPo zszzn1UZDrnG&D4kylW2+UIig8D7IQx6n8009!UobGrMZ5XJcO(E!4Uf2+tLdfuwfG z&=6hyTnb9XX*P3Q6U$^d4kiBH94^~Rd0euCKmLVw+OCUI0srTe5DU#vaFX13veZl! zfiu*3;+Gz=!8mgW`GCKt=12LuUS4%cNvh(<)&hFOMxSOyv^hB5U|>XKEEzt{S1RSJ zA|qY*mwYy*0xp-1N(n5ork8o*I18Z@FgCJFEx}Jgz{A4}e{!O$Lnj~!3_qg-y1Zmt zTUw$NtB{N0GGy7bq;rz?u^!W0ZcO zF48Q2o1i>hu;zKG9Tme>?m}MtT}EhD#3=Rq!q>i!nfNd~_{XMqNvWj{h@}6_01!Gu zh>g!+gqs_m-JAJiXkgTw#8aun&W%IRuh_)jEEah!t1aw^Nrke!B&txjC=A?l+pUY) z_;k?KijIm1-R9kc&13BTd#Sq_z_~!(<3rTLi4p>~4EIt^y^y)E@C~hPN!cue-61u_ zXaj2jQppd(5f~C=^HX<66J`qoxxVPRL$5jj$jV>bJrjek1Ai7f_ka3k>A4po_w4bw zlddHxo2l)0$h(~UeIeOOSW{EeW@#AqzrO)N`Qg53~D6o!#YOW9(IxpV5R_#-=@5zQY`x{3)%=_>m#+J98?FLEA%KEYrw{jl+w zlYfx7`YO{c#9k*n{~{p`wEH^jEOYMp2bbkHcPT(HcaxkX-wFO!_rIqam>UnUUuY}O zA?aV!2kZgJ91VC6JJ~t?AMfer2KeiLdcM2P{vWgPH;rwtG`bGP>P-AWV>TSX#%$qB zlRsZB%mvJpKQr*+_>XZX65!>|>uFALe+>Jf0&IOD*&gdO{jcx?58Mg8zT6+QEtmd( z3-?MnDittO)ZodukAFPQ`TDqZG-gZUznLBY-|;>G*};$YkH1U<(E?9T)WZFnwZLC; zzKVr)EMZFq{38dHimIx}3s684@p5-32*uVqI}5ac?Vc37|BGjV8)*P*yU#bB7t=wg z6d>N;uz|37D&>9OKA69>vToA;#lbI0z(dP2NvHi#evlAUefwk$nZZU54sbv%r*c_5 zGSH&38!>Rq_Kpel5uP+LEiG6oE*FqJSZKtZu+Y!}%@(#G^MO{s>zF&y*M${Ep#i~o zppfXE5MbU7KuNPRVj<9B$rhDV1eaHkr-){R_>ID)PQ3uXrJ%c`zSy0Fb!Klk#o-#Z z_{KeOF}p5EP7eMaGFL=O3YH5R@o|IZ?sVd^l-R-!58y>N_UrOjZvC2I3w((Skf-@J z`ni@YMb^kR8*!L^c&WpT?_|S2Sdn<8K=&)#%Lb&NBj<~hljc^jRE2p zzl(Ea#9^WMK^H0dqRH+@OE@1(N(}n-%hf3O`7zKF(1(E64GatzxRQ2-zb;n%EWr1i zS*f(&gHT^`!7Q7XT6v(p`-eO4GQmHkCMHr`X{3x`D>Ye}?TjZ8YHMduXkic#gqH2$ zC-Wgk*Nh>S z6@-gr`wOMs*BPhaR#m;3Di30mAD2Jhks*^_N_q1Esg0MHZ0k*eg>bRTrTQmmKi92rMa-iEl< zR2v%RF`v9IC-8#7HX4=&++NCe?<9O`YI59A1j1%!l0nLJ*c6^(wH>-RN)L7*|v5JOr6!_}KL9^YU5 zZLY@w6>ceLI5>f{?{o7lly$VU(@L#BAm`6Y<0ekfWJ_km_?6Hr%tp9Ob;`sgK2zJK ze;A!McTrd|FS_I)SJspg7st}5{Sc>FD>mI}4U5IBe-&d_;$5zyE=rr|M-!9j=0DR% zP$1v}M;yWNwu;HcA;a?hL;8wz+vgm_hc|jc<|Lf?`Pc{+(o{;tx9o)m_`G~3C?b=? z-*=;*WjQ$FD=4z7&r#wUJ;C#sWUPbQGTIEKz4Y_r5s4L!|@AKH|$&EK6dzhdv zB(JMgp7?ozw6t_z`RuO4@q+@nqJn}#zw5`3GzG||irFC%5v&9}iy}`CuH;G7J-18r z{Ql1nR#pdeHr7F2*H-W-VR1y5y{Ra&Yf4U?7Sp{RSHOivpMsQ&>Z*A@(-6HJ2 z?YdfR{8$wA^MiS7R(y6Y)=#cXj7RIv!c=}7Uz_^AG6nz?{2m7kF8;%yqpUL0^*75AzyahVGJo>oMiCB-EHG$BJJ z0inyA7HkVW!D4m*S_WR`OuPF-GC#de2^IlY86syHyschmTTtssZ^-CSCO5aJ*f$CM z-XGMF6rWSDAD?OwXBTRmB=V(X{MY@@;Qah(&v`kJ9=zH_{rQ$O(KBvF<_~)<;$mX3 zUz#gb;IT(O_k=`gicbY=_-d4^pjT^i1r>)t$7b_TUs2(AdS2{EK6y16S(=f%Fz&DM zf2}^h8&*ZHE7Sc7k!Z^Hy~`ChLp#HvMn_K9`A46nxI{l_ZVc*u4nMTIdX>gF_>EhN zg!g{l*WRCu&#fN&41oI#v_y!gt8>6&)PQn5oWp8M>Eh4ZU2pT%3>LJpMU0%379tgL zByc~00?o{b;;j^Uk0vwGpC~+JHnLaK&CkxG`&?aLDb4GN^B;MA`( z1V38(sySwfurnD}qCgOSo^M@NJ;x0krQumxgh`SlYyI5ft z7o?jbfq>56sG$<|hD~A^QWy)2g1ib|Tuv`{nT@7r)O(|8w==uM$r>`Oe3F(G2e^tuAFhvK%0scD zQfsh`+a+D4SU$ts4t)8ENvjWycOswjB1uCO8!BUalUl!u}WL~`}!Gk@I==N}&*cgcQ z*kAoTpa>5O&^ah@*}L^lchX9YT3p6!>00H@&7N;k_FQqbYWYM53)S?EF4Gjvb@jt> z+3h}Ocju~V)!H(_3PZYrK7FXfe2v(*dYx{RjZIAnLI(O!g5FFcOW5=_z)>Dd<;1D) zy;wmoSLj>NwXT_H7#9RLH|l3c%ZNr`?he*LkM|db!xx<4F%e=h2PhsFJNWuxp^;R) z`^)1xZjp&W^Of)N^w+d0t{l(mYNuwjRTPY}RyC`G0YNlA?FurcHmWxck!U|z_a(zv z?vKJncLtl80aQl#+kVqRA)%4*i$0xB^IRr&_U{|gzP9Ui z7M3Zo2#kJ-y5JSXk3O?B*N%I2xfbsue)Q+n*3xzv)>Wz~<1KpMlJwnVdxwy}Z)+9_ z;_WRf3A%b?=}Ul%5JyEr{iEj_Ek&@2P8pegSV#mjHm|!&NQ{Dr&C=dm4zJ&C)%D)B zadc8*#g56w%R%~64LGRB9^d0 z%vYu~XN4tOQ{-Kps42kXW_#dsx1klK!>^RQ*NphvJOA<;7A}t_oen@bae!k?%6+bu zWU^*-IXHVRM?MpidYr0|PzCk`;zMqmo}Z)7d&`9lXc=k^ygYZ*D=pU0{x6xW zPS*r0Uz@Qa(&RKB9k2Er8*P?>W+2GQI$1~nu*uu|2=ueSHh#W2Za>p*`H;41cf1;o zL6JNX8xw^s$8x&X9%svUlPABAAsSwDy+V~Z0r|2=iNVRJSq+4#5>tgbwC6su$w`5_ zpH^Co-;RxsPqnynCs2H7aHFi*Xr+!eVEZH!{}FE!mq}mpG)Hf9PfdN!MYqi+MLJyR zM|L6!Gy;}zLkY5ktl1<9sfD$5zCtF>QkMy;sD4*(o`~-Tl?t0a0UJoOb}fL-Og7&d zmphBkAAViOJz^(X?ox8;)LC4fjkm2SB;+eT4ztd6EV!Z^Qy9_-su-kim2RhgQCm4P zYkj>|{mh{dj7OKx*XdG#KAM8xH^*ywMQ(JQ-F`vb8JxCc81x+It8Kn5EZyy{j+iw3 ze?{qm8!@jj%xbu^KX9coW?s=1V1Gi~0C%)T`Y|zmtvLo!UO~RzsDV4#30hZAr)Tjr zm`-S>!_y=oQPA&4^i)o=?s}7VF3S)*(pi&!rUZSA#@o!^({Y}DufZB$ z9_L>jQ)_BJVmV5K3W=@Mock`#nd{6q!1D%n=$4jaiK!9T9EJ9=m5ZXExjn5bS+Z;@K0m+k?ju zF7F}mM!Q1=Z}ly31L5K+&nJVfUJ!U^$X55{E=#lB8g$D|^>oJvN()QNh?HE@fYa|y z233hv`lfWu+FxXYKT7M^pRbe47B*V05lM!IE_J`e!!0!0%_Hqj7z{)tm9pmf+b2v+ zNT-@}fy{=7@mTV>v7FvL>$MVnb^1{7zShnI9V^-&=Z(lbLyA(p@jK;Mng;L_|KpOW z9(4vyj5qWO>%GOSS1v9gihdhllPRMJPrq-__D{3hZz87Te0NvQuK6PL+Ha#+3+v=J z8*qCKYjx}SS6b}f0vBub{2h5O1L5r1k@<+bDa5-}&@SF4)epVZ=76L^fraV~id5Fb zfRf@U)853^A}Y2N!Tbmj^2|@Yn5K&QGMY zgzsD(-_D#S`-XJoi8(|D%)oL8KofSu4H^Q z7>pV+YsK6|6-=Pr{S$D8x!J=$Y~y@Z^eC}x+$Lb7)m4W|V<`N#+YK`3<&ETUV!v{U zyo`tUDc1Fi({BCqk4Ue7Y5^2i_h>lPuX1UKR^5*zbZxTI=&ivih2Bsv|KM}1^WbaJ zfdz3Js*?9@RMVx{iIQ$M%nxyl?LvPV!UPnhu zim}x={7ph`Td|~p>**p#Nagid`4u}oUeI)pVp^4&Xr0upqA{fcLXwgvvK%72@{Jh7 zG@6+bU7g5Qn91OK_(B~yRm>DdO|0AE0BC4oHYA6c3e6|`&ASNI@aV`;m3)lh%P+-p z9jqW`y^F#4o~J&m;grgSD2$*W*lSF$1SE%w*=(bL!GV60DUjgMXYM$bvqdjkEMLpn z6^Xfl2^P@pZ=z7SOB#xKgPaYD zbhv+DvKqTq_F)a)c2x!9(X*}o*#NRbe=Vc;uC$K_TBEFkQsI+}OQWH^eOOzQwF7W% zga7ay|EuE+!hOwYAqJlB%Wt~V2*cbZnpH}u1Y?Y-g$8kr3}=D85J6_8VyHy^7%}sA zIoOGuDV9UH%owxNW|HP?x11$qYoVl|5Lfvmo1_%^iR=7Bw_g;U?@X63V|`Ila9d6e zNd~udIB*WmX0;181aUPInYg#8r+BPUTGeT3cB7HgSGq7VLDfw7rb8%VU_q z=m+NS_FIVHP13DdSKykgHE}J;4j|vw77r^7{F3dy zJcYQ;24cL8xK~5Gk>(r+7-9^vV+kXa70ghivv%-Xi6Tv!Fte9RCjd`5g=oHAtpinLges_ND*{*49I&5|93;t+7q?SvVY3 zA1&Ft4=CF6d;Z5>87G*GJe?Bs@gxGgy+9kL(bQUW`ZF9R1@UxDh7BXrvKMvWMwvXr ztHW8y{z#nA$sWq3ChKl#0o5-$e5w#WgA=|$ss(1H*)Dc>GDw(U?fZA#xhWdREZMQv zChNBc@lq0!5iYzTn$4%*gOJ3Yz413Grn@aGmrBD{#2HzD!!rB#fS6UI6z>SmyV54* zU~D#)z8}v}q=-;7(843ckGP1#_r~=-ZXaA^{VNkGya424cDaFMaNs13@ctn*;^zn` z*0)=Q1mCH~y63=7mmAnIeqc(ZqsTJiHopy~4V|+%zu+_uO2-+`%yZZhUHal$Djf|(r|;dLkhgKgADz?#~J* zG?y!{$;@Fs=D^&6o;&+OGXYhip+ReO#8CJ|_ilT~BCN}|EvjfNQvERGtHMvqGNiGK z6l-*Rbn3(#ptFX@H3QbMu1;Vgqi*I|gTL9GIG`#{Xn=Wgo-%aOOapP#2!|ep$Z3j~ z3(OQASXmY5b6LKTm7Il%#fqiVV#zIoUTbTLS^`~wdMLHJ9V@50-|BGmG?-6Htnd^< zjQ~3bmR;UBA^p(#qeT3alWASz)_R90<jHZ$-FyW)dNnc5Q2-;@KZ=IB zdqCEapvcnrs6y_a97*}rp z=n4P>=chCqIj`FE>Roo9E;&!8gK#nP#JS!Ees3Ct)xg0qPT!cXTs)`PD=w3eZbGJ) zn91`KP%Bf?uyGU1+-S5trhqzXwr%fcldRa4Dt=$q2TM(6ktB-&veo$tnx0lXBJ4&h~ST1yL(HdoHOHv&gO4q7&eViAb4t$=xoz~Y^!D-SuF0|lojM6Ok`DzbP*uHx}V%S*h4$>)jV zyu!*L0dJIWc#+cB8j3(sLLA$TF2V;Gm@=)dsx*(E<4HPHXZxdY54~Fp$KDhY8+Aqk z{N6ahF`3OjhG)%aFQ{-cRv9?q$2cNS| z^vBrj;QEAox^$_B6b=557SaeI@kR=k#udv75k|apaH7NJyk#74)ec2U{a-I}MZ8ZN zT`WTpevWPqO>eh)U1v<~s+DZ_d>b@&_F56o?nQgeGg!LJM0{rYZL(P7ThP^kHz4!2zkFjlClzNT1U# zu>u$`aWyQ6TtTsF?RoLDkY9+?tn~#a+|^n|SbVkI~&z_r25QX=aXq_HzZqMm8!w!{H5S??@l9_yED#uUK zWNT+9fZcr3);ZT>>M>|!K#47TL{!7s1c3K*$zH-n2}nQn9Q>sjv|cB)W?;fK#E%H#N$Tnd8)5;p<8L zY}(&#L`s|}Ch&40Rd)Z47zc33c&p%NZ`$d4HKn{lOn>Lbdp>i#O>XNpu2Cbd$W_|aS!!s%y?dn z*&UekZ5jX=>3Qzp-axlp8 zmNqOS!>f(N_cztdOwpzEVWQuJ&y;Iu<~WrZ^M8_#1X!&Ar|kYstiJMkd0FMlwpOZ zQK5DcmD`W|pX5^QYx35>eyp`$ep3oF@9MTQ;CBJZ-F0RQ`Dezwa(e8oIJRQh0_RdU zW7Uf+pCbHC@`5AS6mR@9DSNCh^zmk&htbykH^a4{WeJ119BM|XMVu~1dwfk^!7m@F zS42{3>5&eg(oY{Ec_tz%Dok7q!dKwwjq1#tm#noCK8|N35e&>jfgk06klFalSGeVJ zFwJ`istX#NEg;F1O}U1WRfdL3pa_d6g)m=x>9jPjTY}KLB73Qo}?=;g0zemh%Y) zg!0kr4=9u+@I8=1%`!lL(ft(&bPpbn1JXkO0nPvV z)v`3ea+~1cmOsXa(qF-x^zD((KZoyMhwn|s1pWtoe5KnTVrTS!(Z^Su6%}GK&g|cR zdguC@l{$>ZZb|-gnx+6;$J34a2YvFJn6JK!X7HbnK4t);FPwuhI^%!Lp7@m#Vx!B# zf3f6MCb3>)r^g5p) z(51;AkNXk7KF({>|MrjB8$zVRKRQ4@dP+mtTxN*r>BUI>U){;y0CF-Eg$YK!EHu(p zV}p%Bq;B9{pQ%>Ho(P5V3;l0U%pXev;E z1^I6;Cba(x1`o_l5-xZHtp?HGcecHMlGaKE#-No!@R&usrSZ4x`i~?BZbXAs@5m<) z8=a%aJdYzg$j*uP(+JBk1ePZ-&CRu9jo9CiIJy6e<7cxNWc5Ti_&~OYc+ZdQDSP^^ z5zC`PIwBMAKsej=_&s0Ecb0#zTws<087FqQTymf&Ly6?W)Sd7{CY_HnWEM$*5*<2r zCLPH~<1$1&Tlz()$>meB+t`1Jpb%%^4i>cW4^wGr*}#YdlE$XuyR5WO*%$-DOgGv9gs{8#Y+E635qpW%@*!J-yUPpGMa!+W>xtRQw0$)8F;ewaz8 zGRDicBc1@~ey)nYcIO0jLqhmL{o5@3!|i|9FR*}%ycPkV|L+_BFjc@8GO1Ucl0sp0 zkNg*7{-O4dUjqv4{%@o6|9r@a>Q(D@>YPgd`0fAe3qT(1|7-l;bo~Dyud5QgMpi+h zf&u$#O6}txl_kJVfdzeEKU(;L8p!ds7RD9hD%a5m z7gCp>N+OWz1A-a@wu&lvGf2q9<*y|Cf2j_%p(Qi@l0hKNV{Iv$Us-*>{3D$yg?cok zM!iCPyyzoG*N&Q_bGnj9_{FH)n_GpB``I4K=OOEnT7pA13iYrAJ5m!D5g{xtsY3ZB16 z-G~SfEyu`DUJ5pq=A>eoTfDD_X$8!JxC{SS%yl1CAnLzm8=U5>0WFV>W=k2qfIqiB z|3oS?C96ugIK@6Z*H=xHlF86WNqf9;(#i0t`!U4L4KnD86}4lewD2`$OZe96?Ec?{c~u2JatNw$$^y)M zCgrf4SdG-TpBaV|IKXCdCR2P0J8%$Ezyi02A`~!2v1~ zt8O!6#n)VYgu7N#UbQ)6^xPX`b$EE_@i~v~2K-qjB3&`vptalhmD!}%bt&ecR z_y^yZMK)c+CuDoTjijV5|~C8WQi^JVc3;& z`B(`Ly!wUE4@|0iAE$GwcxfMUGY~jkUCYR^>5W?IF83&tZKsH+#|3p6FA;?!RI$JC zh!6IO&}fS2iD7!d46sbi_D!~rt1-;zi+I6;ONinz^U}|PMs6K(5Lx`%Q`$lBhjd)*eWnCTlz!;txlrPmiK9v7bMjz}z0}$Bzo=)2rLq?w?ycKi(0u$I+O~ zlt`2roiFR%_eH$SPZ~Ix&*Z*+Q8qqW5!=)6*%bO*p-(E@k^#B(IS+9+Fp1UQ0uj%$ z7=9I0NIC7ahhh=46ot4Z*WGy&qrVQL(tLmcKX!>LzR$opeH+(P_R;!o!Wl)8DOe~@ z1GHD(FrDA_w&*~XU#OczEbP5xNJMUikPmRCFefvEC}frPrpNk8n}{Dj+~Te6QmU&k zdyD?w{0unF@*Q;lViQYLrHcOcQJ1Pmxdudxc1ozAY3t8x*ic&;QG+-$3!MkOn&lha zF7$udiZ1p*gAp+9(`W9C&#b;dWobYg{LwN8E%R5sSu4{TXtxVm226$r>V*kyYK#zl5f&OV zaKVt^eMFvw&o+F@#n<5I2%GB(ret%pADsZCHTsedvwlwPohchMctEon1ZR^PT}rKk z!<_-%S9W+3^M!m7J9?GvActc&IH%8*k>6L?is-1P7E(*7&(&Xxy_Cv0*3W#|{V<3v ztUsRXpxwe%N+R_fZPzLlioKs>u!R13Sh>__L(7r%+wf)yoX%3w)u&9rsi=q!9NBhH zdbaR{f!dVb35;MWwW3(SAo1Mu!Gm!wzpxs-ST__ag{HBo%s+jlK!uF{1Bz<|Op(fd zyJaEw?cnOUCOw*u5x!T`Dr9N;EK8Y!*rl;#V#W_A!1PDP8(ac)PWAkl}U&^ zjf$d*fpSdEN-h`*JB+(vd^*nY zy7KBH4RtkbWI4}_b2=~p~+ zWb+F+N90#I5CjA&(#04(Y%;N^FPSwmDcj4-<9I?|BqZAEV!NqLMinGMnNpqg*P#%^ zA8QB1cOfiqrB*!X@|Zki`ijWKx<3*K{an3=tp1WbY8ntqQ#7MCl*rb^yv=Y_K+I+Vd}b+k8Y2#q?$9*MOR1#YGJ zc)t<}E4|}-Gpyst7g+=9P55lih(1lZUb7xlK+;5$Mo}z!<=<9dH6F}ifqQfH3Q322 zIUeYlzu?Dtb1Px-g@zznH!`9+N|chCsEbj`Xrc`^yl9%^ZFpDGuL5ToYz+mg*stvc z2}PFSKSFF+ESKHXxP7Bz*dxg;%oigr!gQqh%9dsRP~&_f}et$kgviaS+2 zjRI1A4t$hJ&rT&W+nVzmxOV{)^HLP`R?b)h#5V0JXgW{0d0+Hb=xdpo`&;1&9VsJI zWe-60w^$x7j8TL-0<0frV7|-AhscQNa1gVhS8oQfB0edZ&uGjceux^rB+c8Fec#Av z8y)WbdrQy^N3?Q$Ak{C$;bn(GK4&{73|-b@|3m)l-tgX$E<#)S*sf-2N#1;btF)Wj zV3%c0-NLkR1wZ=WFD@}uQbhT5KEmwd3rdhV#dm?YEld6;WzuTeH$AyAwt46~u%Ejc z$XiY!xsQXinkc~{rlb}<4_Wez*_sv8V?+F)S=Yrd8Q0u5EjzG&@_scr2N8T~I4UPC ziM<3R44wz1q7&)8fOc|_jmoNHmq3?y?gutU-NY!xZCK5mD~7#wCv@nY#3^gP$SK~S zYtzuM?7btDI)E{fu05t>HAM<-(+Fg^g5V#B9qehBkq#k1SUe0Lru>~>rwpO!V*`Qz9SgD; zkRw+=(COr?)&sBdHn5+#6(1s)VJ1lX;*N9m_{-$t(cvmx9ZpBeUJ{tX!R*ndOAK;y}=W zM;N9qHN*#h#vhK__Q}6=taqKTHZR$tKt8DkPbd!(VdTA$^lZA)0%wqCrK4^@Uj z8+<8OA&ZfRUa;M900|?;wCjklLe zZDCa2h8o{a>kkn+lUfT57)LOVqk<(RUbA?vNUJreeM_mv-_}I({#f-b#sc2vz@`6@ zHQR{FKiEI?R?_9ZhVJ|V4ks5Wu=#`0)txmGuUes}ERkZZ9O2}dsc?6^z;g}{%0z#( z#P5@j#c{-mtZTj$Tt`nJuP^`90(2qZUm5Bb3ev=pLIkY^v96=y@t6zf%2{{*7Cg`? z>}LT|yeb&VsHlb)$@@y28NnGXyM`qO{D#^@{+=Fr>hwuOXM~e_{}*UFVZ3hoEeCwy zZ#Sqw<3_u>_$9+}tPS> z{jT^N8v>{T+8W)M8~^v3^=6)wLA2frlxv%7Xy-E{(b56r%Wg^?T@(i0Ir-qZW_wq7 zjSw^<-+qC8=X5+DsvLWr>ztr%z+`lw?_%Jd?g&vWb4|ZcmlINM1CfCBj&H49GsgSQ z_QE!Au$4)zXfAa9J%LLw-RI6=dgQVAM-N=DmTWlxY>GYhI%<^(`>@3X+P%i_xWwbk z#@A{0TK?*>Zrff3`JI>?_K!jOs=iaE(-KH*f}f1O(TdDFvNzw*#}KaW8ZO-h8TZas zgRqf~SrDeN`HTW|%=o{vK{MK|8vf8l$(gbip+yKfrdQ8ikKdSq8_~@P zA?x@D(nDIez(E;$?VHokkuQi^U1wO4H@TsfOan_DM)(VFz6SN$X7+ydgymqp^40lL z5{0~QT@iF2SUlw{42y*z7+ychoUh{U?txN^_%a+b-g)OQ!{Y zx0jl3v6XmbC+b^lO#4}xjs2Y$N@!1IC*Hgnb`jI@rp7GNZ*$asqidM6EJ3Wufb9Q| zy|0R@t6A1%;qLD4?(P-{782YcI4m@{yF>8c5F}_waCZ$J+}+*%&g^~mKL3Bl8F$>b zdmhdkbB$*9?CPrOs;{c6v@T

*NNC+V*OWaP%H-2&NFJ zVv9Q3>~w!~`=XMOi3vw@j!iJev%nb)rlmZt^)Jx`mk}WYRe7D+pyTk)V81pbSB5J{BWxG08U7A@uCKBc|D8~j(F zIQ)<0)y`^!WK$6RnHq=P{MxXj{F*R3Xu-tqGgVVvNlYLNbAk}q5qs1I)ox$^?ci>t zjnZq6*rg|BJ1RM}BP~?R`Vn`mw}HE=Ir|FfBVBf4zfnyS30&B_Ad&6~-z&QY<%|f4 zk@9L&2dH02pE@!L83Is_e_F$pKDpoFyhcFG$54(KS>^X;uxg~$Yi>c zz1|!}_ugI_#oog5_klxfZUw??UWwpv>tyC))%N%u$uf7dx-24^!>mAi6lsM=V?lv)9;Z_k1L*I-kzYm7qey zJ`#k<-qbhxc8)kKBxn*+jv>6OB;FONvDdB{Vyt*$6rV_weY}Uz&%rnD{lw}1sk8?R z>E++Ck2N7o!0Kw5WyROtmGI@#KmXXCk_Xcits9+!J3CRkNv;8~^Da)xnG1jOspR3R%vA0(O>Y%%C@ZlMB7Oo4F za?GH*_3K~DYMly^Y$KaE{%*y1IHiWVZY5kRb=TA3Kor>}mh%~tN;BX=C8c`piWIu9 zo(FRfqlooGh(S*g#(w8XpcEBFj?igbJDMR|w#HFnqDk~M+j|x$SX^JZ_%@fIia{kb zXLS1nQ^I|Y9h!pDVVNr7ZqP=ecbF1TM2So1#?sR(yzF4)DJFbr9c(WO!`|O2!ixGt z)OLT_#XOG~)K}ZL65zLSV8Y*X+&o6*K7@)rkmrK6k;I7xr4dp#TJ4c)q2pYCGI*Xm!)0H4n(@g1V z-1W{~v30+F8}N9RaK#NUG7G&b$=m7o!(M08y}<*;|G zCc$&~Fx>?k#r5dGY5u~6Z6J$mUy9aN{6zkK5i!J$8N=%W5_P${C!ZPlEVu)!3*uHS zsh_`_$+4rP4usUYar`c0=P2sh(*LZ-_oJYWP>A zlS-bFbvNS8;B$6EN$C$!o-EMuc4j6<^E&eyDYrg#K^TfI!4M^8bUUw@{btU6EwWR4 zVVWp<6c$$c5$KcU#Qq_8V{))8oQoN1jD*Q(hYwc7oK$v|1&#gt^E?(IJz0SJ-MR&#S>$uXU-~=R{e1~5jf;C#25OVI#?xHmQV|@mug{pP$Hu7+_vDI#R_yug`1+v z+E*p=-Xd)>J9xtrp$LS!FiR}u8g?EH&U;Tc$ZXJDk*ZAHIdJbC}-OEw)zVoh@| zi)Qb*3?uG}o?n5V;0RP|ql||m?Rg;2K*L|tJaYr_-7RRyW(jT^r>%4AVoUzyWW2gJ z)uHu)S<=ylVtIW&rA-?eSWM&a#@4tKkr~t({m%1NHvW}I4@p5fEV(Uhf_xSz1OU$6 zz2O0XPwewfJdRg3H(P|tXuB|rytkf%qMm9iumPN$wmT>Ob}BZ|#}g-f(qr?V$CA4{>LUI9iEIF{3il zUe#!OF5Ba8g*vMX1+yHyREmy1Wnla4Q^DQ|YL(|iV=Pj!-*)+O4@zM?KYs^{z%s~$ znvOt2{i1GpGM1pOuUnfqfD!x6aIDh@aZ?;N5*N{0;fw5dFD`n6N7JXXgt=U&&iPs&;}El87}4&i zaO^EM+i0HdtZIb`n6T97&t2horT5s9WCw!Wu3?q&y_t+PdeK$yCApI$nf?$)U4N= zK-t;*xoz_-d;k8<%L`uafopq6@1maw8Gvt1LGp>Pk=tf9Njp}FVf zc=*CLf=vQ*5QBN{E<(_rFm}eKcCc?eNgQNy(L8HNgQC8`uzQ?4)s)5~P43yGO*CWO zUGlr)AhF$DTVt`V|9ZD&y zuGIWMPJ;{FA*YbE3dQs=F#TaeC;Xi#<{GQHTbv*e2djDG$49U`s$HAMT6>4pe7$INQ~rkDG%xlpR~J5fLJFe*J=#tTa#syj@zx{n%RW~*!8qy^ z>zfrt|1xw>Q=(85vbf#G!+fiKmudo>@Y?3l?(a{QM`tIX-iZWD0T;L$*`wZ&lfu>5 z7EaKvhI&MNJx|AW71(45H~k91BCq zNr@*MOCq70aYb_aEqO>G*?XZq#(J9{^IzeH!noo^fX%|RG8lk|?N$mV$TkK5*vnREY&Azy8@6m_BD z_AKu?3C+8ULOILXs>1q{oc*te6ZRj}rTy9fEZ-4ZLKxNvwfvo_lv=R9EapyKxB4=G z;6W)X`h>?nq*m9|0|xCL>GKP)(rIqN*hc5*w9{jOcZJ~QZR1Uwo zVfZvvdeRyn6ZE=Br;%vaUnR;9^BB5ZCCOt93i};A38zkb zBSX<$6ZIaWp2Ox&o>|BurWQ}5KqHim75VN>{0tHDnB#}l+@R1* zFN`lnSu9O6{HI7aIn3rIEK}>HQuEZ+?jz`$ic`fgXcV#IzLy)zy=^0l^}b0G&w&l| zZjz5~iJtfIGBuP`<94Nw1-etM;b{{jnl}~b_x^Gn!f9wXMSe;1MprR;XJpAJ;ZjcA z)OSDeY1}M&?+Cg(+!TMw0h)DBH`jApxWV%daic=PXb6*yd-5X0r>u&jqspkrl$f_s zrRP`Htm@!2j7Bwx-}QxpF=inchUH>ye6pRx{M>4*N)7HFOL_CRK379bPHY|vBh`Kz z-$T7qzYmf+Kbm&PM2NE4Lsu6n-m6s*h)7axsG5?wi*0RO#HRr{3-y-tqob%Pg7pKY ziL$@n!5D$xzw)Wp7BT+#6#X}DM5U&byuDW?L}47uv};-ltTnC`2=mF$XN}q6_E9&c z{v$zd*E=<+`(9~gm7o_71czi5!Lb z57VB%m#7ka^7z1i=#1;B+{$k1#24&wEj~uWmj~9x-X3AbAaWzs%uZ{w@kfGMBEHaHR-{5_2 zkc~N^=4vv+MNU|H6q=$pNuXN35^SBbRa;Bq{aQGO7D>tKYFG%hdKfvx9h!EPq=4Q` zTZMXmAOdsJdLThZLu|9O*y-a;?u4cl5Jh$5=vgZisD+2lrgP_t&E_#0df&IwHr z@U3v%wNrycLH9X!GC7r(7@DP!rKw!~F+N@xA6i(iqRRn1qEr zpawmxO)F=G-*dH~#c4c$-%`V7tlRgmmUazOi}@vYd}2D@QUfwr z6^mG2^l{vE#iVWuEtzZ(`684Y+y;yO$wx@T)3D=E4;6oe*a@mc+bfJ@gk`zobv~L zrVqVD|C?u39mCL$D4}YnI5BLUls#cHYz2bg&5JhIIcG+A4o25B?9$*^eVzQYZ@ixi zpd4*yafusAVV@n^1geRaF72cuE^Gbd$7K%(>7* zyTU#NloD!Id$*w(n8BLrptCG5Q8wn?Vi1o?Wjs$FmQmhLY8AuwB78F5SYqO>J+B9Xb58 zW?e$aSa*Ubx9#D6+#KMPMVDvC@Z~c-#vUKirO$@3ZY9Oil66P4b$l`73XvEWKd-Y4 zR+!1@*Lf~MjIDMOp&Ns)O?a5!F(_)Sz82gLKSF#x;puMn5o}kSAlwWXbM4c~l=PZA z8`C(@eM!`DPy8hdaA9N0keq|tNmkohF+6&R9>MbC>3vhGu^m5Gw9>ylUkp6X)qiAC zhLIL8{061l47)eeA{bpmBOmJy8<8B8iD!E z!1hgDB+GE*@!bml@ygPc^X18~*Wk$GW~&RGGI71U23yKB6HPUUS{{-aV#4dR^=<#~ zLJ$a+e8>oK^p^vP&lN?4&&|rA_pB(~F>V9V0l^C%;pa7jV8&^iz5>Lb ze5)O=_a-6=q~5S9ByV+-4<{YtpzZ(TUNhkJXvO&#Ks%g2KBcB=x~(6#KRxarG&dpS3xD$1%n z<)lrCOagi(u{A=)E&0Ju_?9`3FT0=mF^}Euds>nT&YjU1cwBRt3BT;Rm#|}hi733+ zbrt)4CcAM`;C>Mxlz_bf#XMGTqjq(bvyt&JZ?C=XO7zEL#$86go2i|oI0qRixObPV zHDZhvtrLO<^XKiFjf!yaukVFQ9M@ANj~A{jH)>EtxZCo~{K0fNEqD>WQI;YW>+NP@ z(X}5orZrbXF80XQnhQIc+wV9$F-iN-NChFpepOvqP6 zu`*QA@f8Pt6PEs+@B`aU?iD|x7IcE&Sta~5TfC81HFm_1Z4F?B|KaLRcr81CeKev@>14}8-la+hq>*S zx7xv-M!C?r@rxp|#|`|IL;uc4x0UZugKYQ^j)#{wOGK^E zv$Xwt`^#-2i@riklPWhYgf}$>E` zM~9fw^T5B3sZbr*9vB;zHk0PxauSFW`I~y7U3(9RpAZCF#1x8BMM;ZRO#TzG<+Y%T z+wJ3@PhiXxceSpZ&8ui78jLu{2MWg4$6>0U}A7cr$x@w}iOcW$%^o5PF|~2tn^*xbTvw=u0hTicid< z$hRmN5sE#+O5i#5xoUK`n)}%dt+1`|H3o_`AmcBB1%Wje+;L3pKebd>4@RH0Iph%L zq}5<0UD6CqsY5+KrGmQ^r%lb9<;1T6gzs zQJ*wFqEfiLK5W->@bR(bw=z6D<~^#A)6vkg#qp+rE^htFz9d9QvDJ5WB#m8T5*Dzdk}1WB5q^^ang7gE+4?j zA;3a=!^uV<`f$Y*916QWx9&svE)?29N2jT{9G-(iZG8U?L_55npO}lwwUL_@1yI7d z2T8s+#QN&ydUG94S+a0J3!=Crs}Y80XJ=ZA`wOcoMQW#JVQ^~d+b#6l&x3i>1U*P2 z3Ia0487a93D6-5YuDIJyCEiK#!$H!O!`(}MUZi-zize3BK_%zX0} z%Ev#JU$zxzj@s4>fhN8Io<;XKw^8zwR3>21i}WGwO#qNJs# zV{8UF9cA2)-_;zg_UnQQC$aNnpUY}J&pRVg3F}KgY%?8a41a5@Z+zLHf&QGy1HFd3h z{`%2b5-J^Oi-bAV3f?DN1^+p0%qu(6V!Q?MGcvH^8k>a~J2s-)59I2>Pm*dL^19Q(3$D+8J@hdVmvou0rEg0di1Yt)iTl^a&j_8PS%9GOsw6r zV|aZsRG&9CxsBbkdWx@E%>PCP15b+Xii+xK&mEaBCM?B`{8ul+P)Hv8srq+;PK|;>z;z&ukhOT#w%3%EMd9mvsZ)_F`;vDI z>!)QKyHy@yd}!Wn6HL!fOPS-j@7rEJi?-WlR6DZJeisF7J`#3LOU}0Mxww+ZBGi_g zDpo2c1ypJ}IuNbOY!}p@9SJKNM?`7f~BE~vGw@7fk#t!oMO^+n(jkfa<`zq?mz$HrA0RB75b zwIvhR*gUou>VZ9;i_YsyUrH~gpQK+gQ?dL!VJmjU9_Bv{?{5~|LoIt=N7!0e2m#mY zK7alUNOsu+_suV|vl*M512j|=g!7g6ZS|0%CBChjYNvFfLo zh_2%E0+dcOF>!*#FkT-no8NC7xvk$7S>3}s=@4(%DojpEVcoxcVX~7l__r^n;!`yrq9S5e6GU&HXsk?Mg_m4AqM7srnHcn~Z^d5&8n3;NG*Jt%;6w z?K`uL1-lS=2sAV#43FM>2WHTPouVQVP#hH<6SFHrPyn||U5AK(Kte_ahLe+1RaJE@ zNwh(&A5%+9OI%l%2mG#K%iPMqFlk+Xfy5 zLDv2g><-><6Q05C10u=~hW95XHEu2ijkP3RZmHo*>jkEpl%AQ8a;*A|q0u$iTU%xw zErHNmM7$Mwz8t)BKMEg+N!{cpP?OVYviMu0zp6_vV>ZgCfsDEIbHqs~*rVAm5S})gUHKB@a|90s3uNG6ItR`=Md?jcT}_cXpBZ#k?h~ zcAnZgwwN1xyEREkq>?nf9wrgra;mJ=%d{cf{MGGj17RG9I^Sr;K%ZUijzt-sF#9X+ zh1QZh0|!kpPTBwoD7?I`>@<|7o@aZKrt#pX=SBjcs1*ANX;3oD0qjAi3a z?+~<8i=CjPw$dMaB&7lt`=TpY?We+kEDP1fuOAW6X`Fz0cGl^Hy|bHk5um9j=?pYK zkCn7iYeS!8aJw__X9O+Dc_r`uoQ#lOrQ=+euGboPmhy0 zCe&VG;EVFE>hgUf%sF`I)Gqd{sN^C9#@bo!t6E;p)O`jC@S1^dyxiT84JhN(mB6Gu zsNeIva69b$X&rHJJ7_*ZxSgUy)+a*P!Kwhw67+s94UtDF@Qp&A4+_6SIGFYWtkdApk_!i!jv-B*HlC z>-9o5xE$FXr^7ht4!+Th1AdxYT;M`ltNXm^St$){rBzEOWCQn--Es1tA&rK>#LHtA zH(I|S8$_;_%2)yDVVkXP#uM0V-LWCNQ8SR9pe8^o5-(jZV3it9lhdZaPd9Zpz<*S1 zHDogZ-iRI{7=UU}+;qJ@{uy%eXX4w-bP?R25cX&yx24074PN(A6}8!b)jRXkDT50j zz~~1+0{T~Gvb7=VlQUg_)uqO^R)_%q!6Z<*s{m|EY9A3WqypbyF8x1zFos3oQ1w)P3)u4 zy#ho>v8k6qwi@CDyPS2A9uS>F!Z4yf$cF9&ry$lp+6B)sm}&%YX%o2XXK|6%7B{yM zEq+3rAR5eNqW}UJm&%km0%#`p0K4z000Z4%)>MchtuZaxe^SXU@8IfRJ;s}> zTnTW0BB)vQ5)h4eu1_7bnwn80wnN4SkTCUIm5A^wkvSo ze~Waoniaem;u!DYF%LT(Q435&sfTCt1)!C4c;bjLXlc-2zr+K#Lw|t4HWFy~0db<5 zSvi3Z@cwUv34g>=%V?Z1*3mmp!R+3jNQ@fD`oJ+U)i;kXCYWSV=7@xGC^p)b)%OSJ!ny`6mjP^DL4?jKKsG>6 zB?EfO4M#-_4ENW^?<6t;WKyhD};Y6#mK#{(8B9fe(~p}c)5{j$&Eq!-?zcM-b`wF?q>j9k@`w!MbkB#UUt5Jp}R!l`ffyzjB%EDp} z@>Y~q76P`uIL}q58#rK5Dy9el2D7rvngKRZS!x*N^q&BJos1^4e^tl$9`apD5nRsi ztF@C!=}hJbw?^SLKq8!T*LjodcX)7YLx3D71;-p%!TJ!&dB zJQlV8=?PL&O40%7{DZ9k!>U&Wb-~dPnCq`!;d+;zU~|pit8BDtkrW9xdccauWn}<3Ybf|Z}dW7 z93n`Jq;3I~523Wd2z=oY#K{W9pFb&mi?E*+fXvJX>lga~8{dy-8)1szUIS4%VVSE+U)^BYv$P~^=0pHs zb$mE+cAbi7;lLNKA6H1L8MD&T6+5(DaK;iZAx$=@a|Z!k#nQ6Vdqbk8`M*~o2T4&i%#TNUod_Z~>c!rQzCd~nM2!@j-gH(%MQne4bT%BNBrk+$YiNLPT_F#o+VlNlsD3a{fum%JfK5^GKw$Zg%)3EWCl?c97Z@2)7fV-^SwwRjVW?@ll)-fsEw#+5dd#7Yw zBcbNRLM>=eLEU>tC*2X7VQYtFk~X?@mCGgl%WfnRMn?Yb0ryA01-7=$D7mO)q`mwc zn;@$>)GV!z#U;I&hlV3%6q3f;h2dHa;)G85;mJ;8)bjwVVOjsLHp{$b9CQrB2;^^A zlCBRgXDJzzqT0@Y8bP6%6%6~cm2kSIL?8y3v$i%6H#aW@1qG>yNbB8Nw+i5>gvgP$ zkqOMF#}5i?LR)~muiZ&9)HbJ`?e++=x;NpbRKF0SHX?0`6_%DrnXcAo(NW!7cZwqnZXiWG{PR?m*driTUZE5EvfRBes6DwpV8F z53z=ov0Lr~()c6LR1bcddW@nff(u&&JB?e*Gx zA8)SWXdXvyj0az?j|*NVb?)c*M7WZ>K!KQt_i_F0g- z01a8%LYTab6q~ELug&9Xwokpm>%k4*X-@g)#g92Y$KdJLifx-`H=9@L27;73`o$=li$kKA9YW1b7^I}J@#Cstm)bUB&$`Br ze&udH05H0BksLFy_flYyOZ6mYH!xcVUib4HAAfGve!a5&8I4(Z{-%wcEJJ@)W47Jk zmD~49aaLvfs=1`K6@@Vwad2>OOO>^8NhDZcdr{P2)tPJ0NBwA?s3WKLYwhbLy+b zp>FbV!*Ah0p{NbVd}`7a#MyfYz_Fo{YqzNf*xTl@e_{qWQ!Vo=7lEUt@{p+RmnbAD zgTIQh(mMF%CMO{)Jyt60c9ZV)!I@aV8{XO3ncu4t)9*UfFScX={&Ao}Jp=k%^|@no ztkQ<89n{ScYv;fmejgBZ**)*xfXTe@0lY+JCy%gTXavwx!I&}_ewm z2ieGo9X;!il(BCedIuBhds8Dze6%I!C19aP><1{4ziH2>`*i`eirEnq6qri|@_Lg? zW!wWGz0BhW*Rmx%O&_D>&7Z=XF(RZh3o1@}G%;SuE=6kv7D@apDL!akAcyLOJz?3VCRuY!xhAFFIRU3_% zn({1|{hY!v`pM=bXQB9I1QI8PXrtb-(aM{F<=Aja6hUpri4c!lbO3GUTIF~+?|s_4 z*R+GfJU;xl*Qs}QD{YX7!w)*GTFS~~l|TtWbnLyjq^+-oH!-R#Obf?HXx)@@SIlsO?p@D;)o>Cpe z2|q^)RJPFjxLSIHhu8aTY}NkpzT#L)c=gvTAWn#dcn`b9j+Ip~F<3$PUo!eyvNcBC zJ5}~$%E#%KGT!+Ip7C>#e)BuVY_FY_Gf_2sC5MCz3dyx*OzqaSili)liD=ibxLEb{ z)<`xT^aUsS$voFSGi{TTRn~z0HHr;il*GOFUaudDb1=w$I5z58_-iyf`uxbU2Pe(?!JkRI~kc7R=vHEVtDN}BK*5h&a*xCcL#)28xT&s=|LLo>=J&dtL&eG2Wo)G?PkneyCar1&At@CozOO3!w1xDwn6`Ut z46oKThTrjtJunc`;aXOtsrfNwGL61>Sg=qyA}&hS*tb$XLK0)Wah_oB-~b2mEUOaYvd8q>W0xaKBuB?3L~fKB0!=YsciLGeL!&10 zw_#3LR<;8uYM|2an_xb^HtcmP+*O$|#bqtow5sFPD9X9irlmR`n@2jLUlS3BH((PZ z(emoJ%2iGn1qX+-(5Djp%YM*A7}Z_;fYrX(dI=7h_JhUn%j_A&BXd7yUiFsg#rn?k z>PEZWLcQxNlc`VZd3A!1si|p$%l>C~jji2XHYnX~vZ%*??=GEJJG)hD(V|DoUa=JK zU_WRxrsw)T(Nc4Pwr|NrgAy$cmyjEfl4tJb1SU^G8n@uFJME^hU$<2r-V;2(_I_Iu zl1Xlh6A|`@<#O!h#t$Z7V@K+%y~%$v@q?4aGnZjZqC!aL{}NC0(&p4(MQVr*TA7## zI187TmQ52ipPVyXY~RMR7TVsaZXFWC^`7y9wcl>HyKZ*@m;1nK8{}94H|%nFZYoH` z7WY?$dHD`jaYe7x0KnXp2GV=vZlw)KJ08KnAZ5JS16pSOLu&(A zG3M*}({TLY7CiEmoRkz-+sy#f-pRg<-z#~x=LSblpX{QS2dggNYw7B%uW|*5r?I^=u-e7KK#>n>7&^(bhPdI0!4sZL?)F@W{>&ArhP0m1z%gt8UA@8b!a z`~5aw-i+n<=5p-YB_Fz%mC|B0cjq6%~{;0%WZ z@IDPsPf6bSvc5tfQf-jjU^r0S1Uaj_7at2&qTY&wxx=yP2q@I(Bi^F>JutN7>2l}# zSYsD^eNp9`LCcy5&m6a;2;2?nryO{karux5wKOxqsxLAM0??q7c}M84m>oPiEGvGm zrY-j~Lb>E|L2$S09WNsM*S%I|79TeznbuWdH#iPN3IygddrR6GTJ=0xF(wQBm>4^vetl_#P=L^=R6!OHn9=J+20j;xt!v7!GTqUi)`i^&u0o%n?qWDpG(7PD#1)vEVAsfY9KVIBdyv>s&Z~Bi# zNyMXqrD09y-p?=zVvn)G%v-^|)yUCr9MGPRxx%zC z{aDWN`1nmj0A`uB&9Pex0A`nSPQyZS|1?FAk&*KbCUJg^j^=%>LGKKZu(Y+7@YF$k zr=IA6^(%`AmUUt(P$Q0yNzkFdhWPeKp+jHhoYfeQ0B|z^0<%id&w4MeaUTfwtEORw zM$fJ3N(27svEOsl~dD+b$MsE|=MMXtX@!ALb zsRh*yWfKzTYUa}fR%@-gWrDOS?Oz0*quESWHMAX z{W0HQ0)%6lM>Rm1`58?`{n86j!5yl1T3?G3POR zQj1$jf0KD^*O|UTd(JG9{+W&+n%*Zx3E&=W180L~zz2$Bsc&)q!?3-=&Q=DBe(%VG zJ?!83@s07h#rBNe^kA&jU(D>s+-=B`iMGy!iKHjEKN%gAq74fj=1sQ(_$Q4||FuZj z%=+(ZQE%T?G%v1#Gb0a7NhpmSliyfKYq6Whs4Remhic#y9Rti4N>#t%2`&5%f-W!p zf+qXnNm1`xV;v)&y{9Z;+w&FQ`swMe=ZZtT3@{e{E6T_mqrcl&^yYODQ`&Flwa1XK zcuZ`2sZ+gPT*yiw??Tb{`3~Y`)4XuN@7Z?67hAe#-buUc;A%{HLz9om(e$gz){rtv zY)70zECq#;t6A+bi8eQTg?2{<3s1=rxZgCr*+J7O_5;Q)^}(+L?gq}^A$SLDO#ZI07Ods9V}C}~i9(i~=k`c4MAm}_7~HXs8jZgnEgifsUoNnd36 zlP)H3&=*_u?(N}^W>$1uAG)fRO?NRbpcR!gK-{i+VFm<%NDrC+9P%tM1A3>#{fE1Y z=y)e#bZCWClQI|n0K7*~zj0R%d-~pWU2+P&3)1_nq9C1K9#MY<91i0!c6RxxG7!Mc z#+^=`0TuJ3yuYelFAQb0ME3M&(%8OUe*Z9&6+(lA60;m{;4_E$@cZ`AXQQecXL587HpQft|ghW zYzO`=etJahtL9}8p1;b*AHGo%{2@cfe)@c_i`c-vCAf@gxq(iAEY2*6xhnb$8o8WT%USV=9B>y z;O*-R0zdDNc%MyJNM51ldQ<=@2FVIX467kwWKCoe5&?CFX;HIgAn#rYE*+kt8l-Sl z7$bK{stbRcYgu7Oei9D^3fA>EfGyR9@`;FpyU|~BtUj;KhFGBynND%T@dq^sRGO?* zC;+)+|Leb3zoH@{G3~GYelp-y2;W<;RSEflp{Rx-&5(vU`~>qJb+lNB`mvu_2OfIF zmSI(r3{L2ex?c_EN(D0h{m%#wb`Yjge66}Ji_T?&*(kd3WU}ZUjL|)g|I-FbsJ& z1mDiF5a#T|T~99_&kO-J+>^GuoSWWhn5>#J*`L5#lw~t@* z&6E&t*lxS6Z2ws_ywN~7N)J}pWCAfk12N1f<^*R-m_U17u^@nYJqmj{mm5k~PQnJa>w06qvEf}?EO!Mqqiz1p zQ_~A&W!zO{$*KqkgFEjlL>Ec?fxNC!%BC7KVSlQCokuSV|tj0)6tavigs5rp`^wNuNKNf*dOT&IS z6l)aN_gD2ByRN$-6=ywoqxN6ME;Y5djAUQ{ZxU}I8M zlf_;ZD>nxaqFl>}z%IrbU%{osmUvdy^b0w>g8GkM09IV@#6;8#0(}G0qUP^Lo5@T} zOd#WgFCa|v3+&50Sb*TbNgMYZ!(@<1_J`1maPG{eiLf{u&mP*e+f(Jhs`?s`s417V zx6U%CV8y?ASRI4F_EnU2)ScYQ1r|f#bhp4?Z)ZE2b*V{7fo@?*ECf%bKK!1Zb{ziG7}XDoGpwj@@4~pTPo*8L;wS?IGj6Ufd@>)%Bg)dePF6hsD^z+%7h>SguVvVBWX=A=%%zmnulrU6yom>Uu*Im0-1Ys>ru zuK?wRpE@-Q2>_;?S1gHy*GPRWs-eqqS?Lj~m~{|lfa}NlDMMy@ARwIe6YkM;s*clU zaa;Wh%v0U(I&`%4oF0xdk*F2jsJJ!K>ck8#n$-+VYn~Jhy-=K|pV#Z8Z>O(JgT#aU=iZX+Cv9u6Q4koac*ML1QEK{$NAAbUyE1^+5%JDhU$S z!XT6Y>HCIyCV%zHb2OoYGl@r(BpJE_;GS60 z>Ul(_(?peCohOyRVpX(_y>!O}?gfKq!+$siF4PdB=6J z0?YkPB!q$Ysg%|^gNt;cp>v+9?*(M`3<&qoC9kS`n4gNaOTV9*DUi0Mf2cdwyVafN zWakUXS>_MRo=5PGx=5olpRZxg$o>fBoJd*kvUx{-qQrvEV0=Z$qNA&efrAsWx3^dE z%W=@DX^f%&em~p%?*B0Lj?s~DU9@g&+o-r>+fF*RJLs@uI~}{?q+_FF+jhscZR^(i z-Eq!1f9qF`s+|1rpm)({*?a`Q{*6Q*pC}(jzKb7T%c8_jCW9#FYLb=sUx{*mW1OO>d!L zpFIFnv`d>`pSE({$4>4^I0{^@B*WQ5Pd76TM^611Sjm8Vu4#j9p9O#tEdqP>CQ}p5 zsOl?uQBNsK#BF|0=T;db(El4w;nsunUnO8MDY-Efn`^n9*fm;LY1X@+@bA{jtG+#?nTX-!Q~+EC$sq^4D0Wk zs5IlIef#g{0JP{bix8Iom37k8%jZcuFZl2ImjYfE)Hmvits^!@D_hinc{<`T_uD6m z)oI5*_)2TbY`h`i#Z0l>W`yZOViCiZ3oF6ng87#&u3ipS7IlfaVNckWPB2AM_|LXe zik+qCZCZWe6H!HNj?cpL;PI`ehOytlZ(9xXB1OuP`VZcws$8U7QWUznx&x=>Ak-#f z_|6>LY76!C*w)j-n;snp2f&56|9`zvE;mdTf#unw2UC1=AOHP)Dm?DHLw5R7|d(CwDzk^IrnzZDM@BE=|Jtfb|!;D&+x(qkFzsc z`z*!vahLjYITjK4r5vO;>@QG=0!!8|gZsb#c^N6}zj`r~R;6KOU;wL&&l$zH(>FXK zrZ=7f77ZJHXNC}ZrV&INy!pY0%!3Nv{?ss#1w{HIrPc<*2@%6nZE1aBVev*C_t zyJ|}u@RcsV9&0=hOfZd9b~k15`_aK+lDY?0*up>W`sRSZJu@ zi5zlUyB8WRZj|7`&+w?Io8w#*))FKAf%iZhgjNu`E0>{(CCh6^w8C9U;#FQGRne1& zMJsJm@9;Xr(p7OW{P9z^rJh!it=H4R1iU)ac5pHqo;*Np{#yKC6b_lCXxt$rXg0^k zsS)y@(2I#0y7C^6G(#ciY2-9IW6PmG+2vC@q3B==gRE$K0z4yD{ z-*MTe2?br|%$D5cAZHIcjoN zoUad{UvP9Z2XLwqgtS~d=|fAVb7_i}FGUe;JA#ux2hHw<-!|bG%N9m#1FqUSD$%DOzB;A z$$_R$+c~LhtVYF*IrFf=ZNjp_f5=KLm0&^zbK&7`tF-sM4JJh4^8H_G54CvS!n6Vm zfIEX5GW5TmCUDGL`dFlvGS7Yj?caalbu56q8_nRBbz(Rfs(>h9W97y3gM9Ul)P;hw zM2mivh@Tx-w$H8#7S_I(ivuVor+0^~eg4}lJHdF{XL9XwX~^L^wNp8!m{b_LXXCAg zM$&Q@$R0B@)Fs>DQ;ht9=?oy&G&CtilQR|n&_8@6$=2;z!{rxM*)}tc%V|bC0b;it zUKy12Oj_T2e2$yn11EQ8KFVn2fj!UBQa(H_%L38u@|X@vR)FFmX@|oJe6ycF^BNk| zzd2`ZGHj^U)ON1pa z{`LwZp?DqmuK)fC^aJzvp8~i0L%7kqH)fkrP%1SRlSzaX3jZKb+-Uu7^&)EqC9TW3 zvl0uY$m`8slTsKmR`0*59YGrGx2+q;s zXSODV1CnwbGQO8sp56IYn)D9^2PmW4DxC0t7Fe<8efd)q(Fr#T&Y|nOLN04c-lj?djBgh{6hT#;SuK{499=dP}NR;`<%^lL+ zdi!VO?(^3t_)bQ5yAy&q;#_g&3H+Z}k;7{)a}I0J)rEibs_VcaM66_fRqK_E0BU4# zhvlaIuN=Py<)eOgkL{%$4)7r%FEaA7Qbu23)>Rv5cdI2J?_X3jo3M8b;`y|9Q-C)b z*Uk`Zk|Jkv3w5IG`t`-_xjYGQX&1GgfmAN&7&n8{#5M(>BUJ)r~&fuvw2e@ z?$dtA>0Dt*JAYvr@@+)w#GuUdcHyOE;(CseZsovG9f2D?&TQ{P_JKM@1F$|MmVo~LCKFBsSq(z^gnvkBUO|1UX*DrH&) zl?_a%cwFOl|I6tV6!z@DK8?`O(L;~A-WZ=fyrV4t;2QZ6YgKRde0`RGLB^x+Xu_wv zVW#AQgOo5bUyCGV+121 zfOX`Ip}bV%M+V5tq#5R3Du!~2>in}&Ih#CTEXkzV^gNbJQW=L)0LN5A3_nA65=6eN zXEgbhV78Y3ejmZI>y%tL>5FB%^#1oTPi zzS|{s`J2XQ)l|J*rLLkR0e_>9kP+Lj;r2@jRpqpWE|4*2t?rYLi1}Y$M4Hnx?f(Md zqtWGYUK=L4dDZ&j*>QI%jYmk_-<rkjCptQYqGwBKxm4nk(-$2 zvk0(7l78KFi-SzE>d&jMh&Z$}Rb6f1tSboPT<0?Sm+%Ry1TYMv3;|b9C!6N1D|yJ9 zij+sXjT8R-5InYS&udLKw9&afTW@GPgkW+yqACMefAomr!)ct|_!-!ixV~lUMO`L7 ztyS-FGitF`&xsvUVZKDut)@eDU64=~f1R3Bb^LUigN>=NjI(^Jm8n&wcM?<+`n9_3 zbirDt)AOGQ{o5}3tHaA(PAGi{R&w)+$U{u@aaI-e<2A!6kweq-C)fo~ph(g(m9)0^LO0Yc&oqzx^Ci8xI zc`=-Ps(aI#%vC%oqXfzso6rWCm)3jM*E^m)Jv`vXup(;MiTbZ3ZBu(>{CpTzs4YU-Yey9#5$lB>BRAq#Q& zEz&*W*n0K;cCNhh`Q3~8@>?t}ovEL9EoQ+SfzMr>Y^i&ycp+s5QJ*xis|*qxCOCVN z(2R<->ssk^E;{aEm<7;+T%_^-X8gy%$trkz7$w#{7o(=*; zE*U-oflkJ2WtRm+j=`Cvi3AwPB!MD5SQJ%@yW6q%oK0y0u}wt>)1Cal|DIl$ z*8`tNf&VfyEOctQA`GuA6w2tY?YHUO&o@P{`%qC3{jG>8BF8M+M|^-^OlymQXZv!i z*moz7tRVx3gzf1;Hw-uk6GF>~wKuQxj-QHjK)^Bhks8v?zV z2tleE@44G7vtsKOVqFUbkwesy6?nKY*YWhWw{x1l+Ios*d@>Fl>vIUCmFRchcpryK zc1|({!ynf+Rh=;Yolxy>Je~orIN?u{RD+>*(sxKY)csZVzdj9nMdP*nE<`h`W<7ER zwzn9Une!XhN`|h>+YsV@yn?(&faJIvur`Eu#_njoRHj#zB(ZKCDx&I2wd(Rwmq=+0 z+e%rT3+^k0OC^KUeSW9^kq=9nYP%bY*zs77a18p>N~`l(8;$B|@X7g!LXgS0U7M0W zXXvZvys)L)`-u7`C{VnQ2Btto;$4m8y6%`#AfuTyo=f7L|E}-Y? z3!73B4efi1=(Y0Z@Z%B_V@D(C<`=jNYRF*uvQT0aY-t&%aNR(kkP9$i{VakunG$5@ z4~s<98rYJLbedV?ri8k=tpgw-$NaFg!~%6h0KDF%3@F&<694Oio!UD70sgMZhP)Rf zmQ>)$?CWBGqP$mc<4dc6JZ$==mUp|U10D+{qDFuNjZ)%OQ00uIfQgV)7!pP6kckqW!_LrgUMWHBz3jvU;K1nfE53-1lY7bJ1{)dl| zXMsY>mHK2J-@}e@j=a=h$hW8M0fS*QJUm)PSDGh3e)w%l6xCpx;d@$u26#9soa8SN z77+3V;AWJ}d8PMl!qTPlzblVPz0uJM8tInLKwCs|kIJEf4cmKz4wDFe)C_Bc@R)l> zGc2vflE?M0-p51eGnIs5BmMvdyk%W-a3)`k&!sZIjiYkAlPgt|5(8d9*#qtCbL;?v zS+Inxap>{gsSI!=ua$)}Xqyf>R6Hph4!+<0?kNiX(hWr}Pt3C#_K+^@jszqXa7oRM z4gV9t%+~Y+VFbE5$|RitF*Q<-$J1dLiA#5a>ZIb}*&QV2iEzh%e7u2I`&XC`P5daU zB~l?H!XJ}7l zr=;MNs(+)Tq0!rV;hH+XAVgCsN`Wo<1&4_EyLpz~NUHgFn35}Kj~|o+o3ED_0d{h# z1j#ihZjN^|`|1+pak1=1%O!4QC6shj+jM-@RuHAy*zmQqy^=7r!xYRCgE5S9h5h8d)q}>QwIyPw$ydjw#>&R$&To_Ve^`LnC=E_fbKt=FxxhS=ry`$O9*^c_yXN z*X~GwU@qzF?SQ>fnbr(&AnRmC_Kg7c#$1v=Qmyai;iC*d9LZ0_k>l6=kgokx2Amz_ zJE0L;^PhS&|HZU8g?0Q7BtKUSZZ1%i^-F>s(@xe+7518KHl9A0Mkp zAW;ed%6--zJywqSti-pwt6zvV<}d+N^S)&-Yl^A;=-aUblIyWaP;Q{g!SW2ckziBK zKAwM#qdF^0u{=bqETB85Tjm6p2m|Sb8hyTrEh9Z$^kPzK{g)+rYu8g!YHnwN9!InP z6;u3WVN(^lf#3&^pG$X|sk_@#{-b%KOezL0Va#ZmRc3h$l(4YyKW8#>A()jvR$|)S z`o6>jl{lao3x-q7UD=i9;QG{efzt`fie)+s{;3I!Nv4^fh5d8mu2C>P%PREwYEOej zJ033Jn>gymEDk%UP zvTkYUofLCCYh@w&RXxqI=45nzMyjAaszKJGk-^Wxw z@8glohSD{`+FqYk2wk6D#j&RzngT9?!}V@ET}fi`q0=BQaYz!K&cD$Y3lv`U#lLIQ zni-bAFU<>waDQ86WoM6(s1_w!NsdWKPzAPqSz=o({3uz@3DcCB_1>>A40=;T9LyFv zJetnb1!_$egDNF7O1spAb9XbTyu@!0-spV^p;io#`%g2PNl$Y?UW z5i|5d$@YFc(c?P5Dco@cokWfkLY*{lcn(S;mDug7KaMU+z@U`#IkS-4-S}e}^aMg; zEREOl3~ao#tf8E9A@W%T5TWqw&+Pv#-@?jSLhhtSBi76Y>e}ieaQS;k{v_Sj-RORY zM$-)EOmRrHGRbu*R6Hur>fkK7vcv$$87&Nx$R}e^l*rL`R?gBQV1oah1h}UIviSbe zZvPX_X}jW#BDsdKm0|kPLIWTUof2*EJo{Iu-6Kf%;z3)fy=*bb+Qt&4mBAD>vKclT zIZ(KK>qRSwaPa6?UnCX&*^pQCbM3x&FX&O%XI>}DI|1=Jrh=_E@pA8JwQ3K9vhbwD zH74bod8<@dyy;3vxY=nVff$zK6jVBnAtT!kNHyO(khOi;y5vgbH!&Z=Z}dm>ASo!%VGF=vw!X zi`yd)nFSyfw5@v(cFWP{j+xfH0QGoalQX%)LhyrZQf29fg) z?SDf<+XhZm8P4l>(>Zz5&+K=SyfV0#l*&(UFH z?mPo!;G9o(zK5@GlKdBp%(l9X%XqnnK&L+Sli1!onBlJqjBcCmY}L@aCF*~CJTaJ( zjyy?(os2@dS>VWmm>ySh+~b;z z(``xn>+>IW%WEGss;ZdB$hT{e?|dYRbW$xqtH!^AkJAj6H*4|+$M_k;d$6jt^n$AE zS}9Mdy7oO`oSmh1#8NeOXsA~T;)aI3O;^IY&?|hLfxlPi%%CL5m5n1oU15IG3r5=W zk)7$5Ouhm_ghFgoicj2mJObb#t4%b#y4vIOK4y9c)X>nfB1o=@CZL=`dpqjAdl%tH zW64R7R{-^zQI!+BcJXqCus64|Ctr5mC*t4z+?kb-4(dT)BR&lKRq%!edP_UX%Aoz9 zfWp1*T^~@ox@#(~HwZ{l{om|C+0P#AmNyPK_#@+k(exk(_{_img>d(ya1Ih+~a6=;+SAX=o{-;e=)HvJ7g40i>%Ut9exR$|xG&^HDJWTbo)E*Y z04fK~!#E*4mhRKEn^xKRe{X?i@kye?H^Uh$NqEIZ0mAM{Q%G>d>dT4tPI<}4vR|gx zgI;!SJifK-7iO)T=GMOJ-eG5+T4O;lztFLgVQr0WF#}2}@z?Yoj1_oSL{F6d<96U? zo}_=8Jewniz6TJjWQLEG_^jC6y;Ux8#h_#O(v77H#VWrhbkrvLQ_8GoR7XM)oXu~i$Cv9^#5l?k86H(bR)a*(??)4 zf<@RLltz&v^zAig0fy3Vc1N5?hJ{=GbbYR0=QiA70_lz8hn5c3sS@702O`rw zM+hj(1E8j1=~zlTdC(*U#sH(Tu2AQrZ?*PYb}nuY+kGM5K(DpWzm6K8Cnlc{8&on{ zOK)$jUqf++b^ZOO%4I%i1Q?XFc|M+P7I45Qrt@;TOe;^}s(?B9Maf&xf6AleM*)$ZKnWdi)5n;cCHnq41!M7O>R?1CV%Yyr>{Y!C8%Z6>^>5mz1E+F@}HCEng z>=S{yz3<*j+M7m6wiU&uNcKkOJ@5PB+O9R#Jl<ep;p@_?t<$;bv#$^cU4 z$h(%K#LXWPTO(L}Z=vxS1Tm#GXyrM~dK)?VmtNi7I5APjXJ-bHVAC$kcWWtcYJYi2 zpU(b33CMx4MGqI3?;TJ`$f!}J380Aza|1H_N}1@1&+i?-$f@~nb7jE~WD1E2?_D|A z07N?YWq|ymqDsX6{sPd_(A}TpbgU?jtn`7TMK)HpX9NGPY1M@`W#r|hkdh%y%F1}F ztxUuiRMir4YexE;HaXX;Af9z`KrN}L3nda>u%JVe)xM+$_zqxar0}gTg9*cAlYp`t zQDxf4CH(8q)C^6N;Cv$^H5wW?Ul(4q5Gl~?=;#OspBK?Po3Szr&k@lkFi%IVo+KT6 zt5Drc2au$llSh_x_v=1p87oM%#i=3UoswmtB0vAn#^m6pnq~YKnn&qjmzi-|Gc)EcR~ zl%M&QVeT+2#Y*N_94=xniSQlOjd)8l)~-!)mFUFBzdW3zo1OJ2g;ioNo@>_Y)4ZtW z2n2`5<9pc{y4B6qw7?CjX1_kPsPg4Mt=fklETbxaUd@Y@NIt543s^mr($@g)+};Ps zG>Vm3RE*ADjl3E2+s6BM=c7U)YnZI7{3RUQuoXHU{Oi>ME8O)8{Wwq<4s`P)lxWQ0 zhAh%RnqTCu8_&H@h(b1(tszOzks99*e+JXWNoJ6+(OZsFh`|&$nVYhzB=FbtQ}wB+ zI{*c2IM({Z3vlNkP<}~qnlGJV7ACd8)byWa17Ixukc|>=Vq$`6l74S6G%1!(#;m$a zH)?d0F23E{&oJh*mmKTxpl5hZZ~p@Y84;)T0X9rJE-{&UwiYQS8bBw6bCI=yM?`>q zq9`>?9ZcKQ+@b#7S=)-tIurlTk`pvdO+r?sD-GBF5k1p6p!#aXYBKQT$xch~Qg%uj zV)tgJ$dFPRI+AF~7<|z-TCNWVev1;~jdmaIS|eQMw&10<#a=5x1{*Z`=Y-7?vS&-v z)x_Q$i)1q~x@-n~Vq&tuMlpo>G*l%Uoo-evF77fsNK;J%)ivUv6U*iLtNw}PpQFJ_ z@-em36z@@{YyerBq->$nRDR*5X8T2x_Ylc6!593Qw*blXt0Bo7aAV_=(zQIVLx0AuQ zwY!IoJJ)QiPITZLoxVA?=|%+Z{~#JgN<11}Z90O}=Im)c>d?JHSk?sNp-Ia4We3;A z^Mc&r+u`sdN6|Ey@P*xCDzCT-T==yBcl)Af+}vKnRQYRA%OVbo6j7Q+nxol;jGY31 zC$E>sxeAIw1L>Y7s!yuN)?b+P1out;LqgJ>dDjFW*`MkEh`o!jh_vv)OIC zNgNsu0ZE&Ymu=CX9;}KG+b(U>?pr_I&%}VO`6{ZomadrT>Ftd}r%X*Q_+tqX+36&~ zg^g%;Jthho76>Jp!(QLPnyL9V)?qLU5y|5Ir45A^dOn2!Bbv4HAXsa4Oj`c6xo-&s z?$RX@4ZWI8E0T=q(&`ujYPW-HqYD)wB$Fg%28zh`LTalAR00^OG5m|8EqG@o$0};l z(^DkVCHtnD<%4>YMQOTexG`tGc^t6~-{lUxhD13zQK-2_(mlVi;+83HwrHzI=Z-k2 zuPDOvXR4B!nIwkPsi-N&jtL@vSK5sj$TIP>`sFRH$wZ|b`L=o^(Wi*dT*XRlG^TFg zQE-y*YuhiW)<1^2E$}cM8CMeZT^b*jflX@uNlQ?W?rF4jx0sfOtj{tbFlTPmsWh0% zkAY7^G0#93A`wSGQ6zcWT2q845c&QTd05InyUDRJjTL=>GZm|K(UX#PesM9B7uP$J z-~?ics>tRtYLbOs&4qEP(2ct&xot?gkS`dC-r2_V!_`vzajgvyzrmZG34}D(lFw|2 z{(HlmTq4<>p-M5dsU^VNd+c8&!07y@?GxKUdcPh2*-Dg_-t*;qgQ=q=%oe}Q!j0o& z}u%&6~B{*LE6wn&%(t;&Ty-Z!4L7l%Fi997=rN)yC~xq8V*kMNVqci0=Km$ z*!uHv&1@KUG!&X?Cq&H_H}uiBFjk??0B?6GGUi@V#mB?Fzg4}m9a{773(H8C6G$N? z<&Z+(GDHrM%z?Z?iLi~cb&1E%JTOqk_hX1|8j3q*HD$4Ck#pSMSSSsffZOxpeu&B6un za&a<8KoWRvmOc-zcj|b(H`M9uV~vVEI=J9;r@fi7H=A`UZwk>8Z08A8v3>nE9HIiZ zz{P<^`zVzlHOAiJ8>(5{cX)#5zL`)sxjwN&yiD>Pf!Yu3QFw(gLfHGZGeK8+YK zSjNPl2>$D?H|AK@jj2R+up1k076qc7?Nwu%DnW5IT{&L*QV2|PlbWbI{X?tu>6J!rRAGXKCLbI~k z8kya_u`!?K=ykMC>-jwL4a{ayZT?XA@r85MGf0v-Hev3QD48&Ev z4YBRih^ffy%htqtY=EngE%;}uLg%pdLqk{N3_(VgN4WR{bi zA>DBA+bCirPKqGpV|5$B{#O5nuY?@c*qnR0-ORD)GBCZDLoWPt;V27VBoh=Ip<2#A0op3TlVt}HK4p^Q_ZC)rf`P>7y98ob`t)MpU^dfA`VcZ-ufgi!~~3v7LD8dq*& z_u`NZpPTJiC#DAUQ`mNiw@m2`%_ksj51p^b^YHn8xO6Fi3kZH z5rLSKD!}hLXb+7Y?{!!2_G4NVsZbnln4ml2e!eLh1rBTqq22=HmbI*D7&lqYqm^&BcOzZ~ zc)t<{+NoS0z)YVEVXac~_SqrR!n3?{0Rjn52!}gc(U)_G%rGX@N@))2=V$#cl?B)+ zeE%&hgsiOSoI5-WXGkKj&Qg-$VS0S92}bLTdeJzBELbH`oB3oOkWwexagZBbEr}m~ z!{5}%>gP!(j-)urt7&e>u$g3JK;ZAl&l>I@7@50%P7%`9b79jo@!MD+^CQoWRaE^W zD?3<{cvrQ?U0TycdWG%!L#u+6WSRJ9T|&V53*R7_q2NaFPd!*x{>kv$S{_dk3>jJf z5_M7Q!y}2%+s|brqA0nbppZ>5J&sJRti$L!{Hw+!im^E*q;dSMdaY(vS$xqQAz3Ws=t(l(b>~4d*R#J)cJsb=haLTi&Hzuf)qI?Y^uR(9fjGj}pAnUl z_k*u1gu)P-VDCe~+6M$~3#cYyFheyx;Ma@$*MHU){NGW58Sb&{_v^tU$7uuiU#(D) zQy(5WRkBB?ctW66mR`$MK5p9CkGWDr#Ca?%T=<>^v4uMbryh;Aj-?v)fOspa;J7C7Jyze#61sx?RNrR zvMT!Y0M#xEeloEJj3E7L{{ov+!v`=A5fLyV!41d!0+^EajNqd0_yqnI?($(Lf2SP< z(y%Ov)e!4r!Fa|EbXq6h%m!hqMTh_SgEYW3Sv4x~jTHIBU7XzX&V%(1La5w4geUlzS*@9)N`r$@0?H;5WiMuOR55&aAqTF(0>iT{9 zdA!$#Io!wgi@h#aO(FzjWb1s|b!_Rz-U-@z@CXsM`qj253y0UceuUq?*zpdjGPI21{$=ciUFCW$vQY0wIzz@NuCYfN!z$Y2hE?rrOdy3aN;P@kG zF{<3!j)E0<3)$(27AAH_KWY=Ow7=eb{}!X>B)e14&C3Vqi-$f}KI*ednIb9wJsl8t zToDs7W>DD9siiLm=gPQV+}i8gO`w#3JKc=O4lU3zmO3*0dYRe;@6cEdzl7H#8iyYy z{$rd^YA;(5ym6>YsMEqz z4MzU8%*eOXiH*4sH~=;S`Q+$6F!yGvg=}WO==Nph~Y?E|_IaMGY`aP3Cme({6(czNjt>^b8`N`CS4)0=X_)wnx|I5?oK>vL;m zH~xvwNt@4YsE}Lc^=xN@w$v(v2^pQ_si??@$tJm6&ghoE?}ZQWcRdwwayJJRjWPkZ z^+$382Cbd-h`c%{`IRzm3NwRF{|#sU^uDZt11oVW5CSvFE#W@cKO9{f$K==Kp!D=_ z+dD6~Bvh5^ZYg}iXglQz0%Hr(> z5+Pt>i>mGx>aEKEbTf`SgqDsF2q`HTKXrsS?k*LiIagoQ_QJ7drs<x3utm4t3e{_zQG(1PytLKdY($+jfL_*7$zdI}qWdG|;NJMy3En7k%>_ z>m2_9yN}hCkRpO%b-LW8ingmp)WP@smy{W1@t=mwwrPI~p1X)v$MQBY^aAwGmca~d zn4te0CB4WzA!9e;9fhGh`dgL{yx-=t^wVXDR$86P-Li-7x&QQWF((_ni)cwroNC$_aFItnZG$PSmVzjSfoSE3Dupd8lawoR$5GbZLJ0$YQfpZGp!FU z@UWF*pxt8;shfFfg|nR`(&YEa-R6Jliu=^GliGL`kBb*Fyz7oY*2yQNs##6i{qtTS zW^ZHB>0Sxg+uw`-dx`{NKCIOXK5Zi5DSgM#XWo!1{Q*d`PqxXfY*7XFLzh3yK1qR% zvW<@Z|F8hSq`lnW=z^G!^cQ0%wIIW;YZB!$IZgQ6^;0sk{ zG&!caevZ5JDF#XC5e;O-lUG+WGORd;*~Lw(w*Loc7%g~>zos*c&L{eF!M(48dj~`u z{v&W{dmZo5h@CskXeldoe}tlz&x+{dj`6O(fpWT~tMcpf^)8Wab!LW%%)rd7@Z~Cl z|105=TV~7S>)S%lY5HFMu+Z%jQ_r-tpMB*dAH)*>|5V-9EC|N9No!TtWYXO(8;zi6 z-A3Wz=kJ}K)^h2!Z!+t7h`o^7YKGV@mJWjov4;b2B}X8^nWhr!!e&++<2YngoO!!T z>QkBa@f5gw$Q3H4dk;HOQb09ZgjQLv|=2rsOP+Yx5AC55?mQaWtNO zVI*&H6SRvRn!?!ICQofj^ zwT;KhoAW}wsYU8A*Ek=(m|v;F-S+k{M_`XaR7IDoCUTCkNed9fe}B)AMSOhF?e&kS z{_{?%yxTa05uZ)D^Lvx#^@;ufQ|FItLT{AS+jhftDECxj#Gli=c{KfB_;G@0jr*8l z0+Snk?x!ACBOHc;bAfp`R-k(Ihnck~h7=HIpl8X~<|kjb8f3i!Kd6>&J{i!pw|TP) zxRVb1ULPN?($LT}Ud%1Xh|S1oTZgZxB)|F3>eFix>Og)9#~={d4Xz-A!M<%>Z9F3b zGsTOGqcOj=5mOp?9u^hF4w@`{bHHs8pNU7KyJhy4`Hcaia-b=e2?`dPOqg45OuAdh zS9DAYNVM6WXPBQ2uINlI*Ik3I?^IKdNtO}-mIx`(fWWf0+%wZ_hfPLN!_u4!O&kDC zwDWX<9LvmTZ1*|l7^r8{HNEG&+IZyNp!ZWB?fFlJ9*gfs(a(u#o1aWYUs_o?!?>Eg zD5gs}IYvpmS7~^CdX+!%GPAHWf2N}zK)8*(Sl}EwimAlZ`&QDgPK@@UrG8ct`FD3h zP(c!VQ1dFKjVI}DgTNYRhnm5BO?og7Wo4F30~Zl~!bIe|f03C1s_cPbrp`5M!g7m| zpDhJJ7vFk@@2001w;K;J^flf09Yb@_yAKelLeo#F3zfg>f3FmRHs>SptYijs%nyHQ;GN%?xbPZ4M!z}lUQ4QAtHj1uC@_^i7U zpv~+*bAaN07jGer>cD#K;!vZ<*n41}w%6^oZVpRyZhL^AcsB0n=kMt1h-xpR zd=|V1-;Tb2PR^Iiu=H?qE21n>TGPh-K<}WZjd3{#8Rzs#zf^(+Q=}xPjzEMEF)XNZ za_#P{*C}+A^<=;N#cO$EsK+~|jv#=RNVWZQ&p~+8iasnOC`g?Ys{JJJ=gC(e;P4Pv zx#BdAbFB7lZX&3UZ7FMO`;$kg;|n`TKd_L7|Ln$35Bd^LsaG)G>e|hfRVLTLm%&7( zoG|C5ND^s6;fI@*C?#L8N(bDzHh@KLlv<>oCv3X?RC#@goQ(oi(xP|Vumq7Vy5iAk z9(W(Y1Q?HN)J^|!+ap99jnuWtn2_0P z=-6BI-Z<<07HUrQW4!2l-A*QD`R84gDV$Sx-x#R>!`s)-Xvv>dn)q^9ILRN`pN3l? zH4O;0CBk!hg&KFXb^Ye{*rXN9%p4^EAzaVao15v^obQYcma}AC%Tg_jB1>@g#%$vh zba%%yJ?TBaRh^ZE910Vr>5u8*TP6Cr2@U-k+1t>lBfae*Mtpb$Z6n4aMHe!w%zm*lkfZq$2Q=qiSLs!3k;;Dn$k6)Tr+4ZLhHW?aVOKq{-j(Us0bUbi+ zFgpW+HCK>6ht%)Zp{*_*s`k5!w6yPj{y4hce4`1*{`|nr?%fQ0=ltGWnWi6Dd&HDv z;$)2g`*;{J4=>st0gud-qDe-zbJltqVgcv+R{!is}{h}>6H_id%&YNHpT&Q?12#6^`!YgKFmF+|)9H1o23$9eF69|-OG!qTC`@Y}~LWhq2Q7B1(y zdmr2aie(6F)mEXhZr>D4N{uJ3Y;eqP?oR8K6=TB(BC>ZXzl4HLncE41U*zf&VRzXi zU;B@r&zFCPyu4_@w3MVioj%`umd(lV;y|23_2vt{S4USzyjkQ}If=&@K}>{-rhR_G zhbl2mMCJjIsqq1$`3+hIO-?A3n^DV0Hlbg7WQc0Vf6J zOL6;SSs1%wqco_u(CIK2+ZP1!WcRn1?pl4t2Caxq?ryF1HKrwicji!h75y#y?R!Pd zFAxu=J6EK^-rs|56<>boUo;lHl(&y`6zz4PM0E&Hk?w5n_3q+a?5%iU=X&lNbaOz{ z##sPB7hjyoQYrHwqZZeeii|*K{ki`%YDSYN{p9-bF}^KJHGFzExrs-#WTf|HILDYn zzqJGu2C6|671U$;b$wnxEu9S6G&t8yb!l>hhw?8Kq(?|MD!9&TNJL(tK(%*W);hiyr*{z(6-~9yMWF z{HiMbjo#qak-+qEfed*a`3N+MKA|lwca{17n==WFomN08eBlu+w>2+9JblgWqURh0vj*J)43P&R9a(KA0UVuvZdo~8@ZZs)EdlxJ&rsQWcvka*x=HBOU>mz^k>uv}El3I4Xq%uMMC z$#A*FY8;VNv1Nm-xTL%$a*;4x9NT3fuVCWFZ~9MmpQC9j+<)wx)ZGV?zP8t{PJ9 z4*dCCmDy?Uy;hhC?dVjaR2^wtmp{(QhDv25K?^uNRte?JYoGT2QFV^pk^En@?>L!Q z6WbHpw#^AAwr$(C?POxBV|!v};!Nz@zyDfy-F06;J*evHQ|G()=j^klCFqBLP`2&Z z?bnK_z!9Bvsw8hE{v({Sk}WOvzR&GN_~U`=sytQRf&gz=v@w&E-Pjf+p4I@Kr*YiR z)$QM5ZDjvbO`sWj-hZ6o;oh42zlt)$T3svcmJ7aN^6~TEYJUCQ85;U{HCPB+EIz$L zt-UTC5l`gWLw0mh;d3)9FYa#oPG3s^uB763wAHJ+HjCW{?1brFnul*>w+iK0GXeY(AGAfDL$i_1I#fe2+C~ z&F%vC|2_NEvNsJ>G2;62oUt7=JjS0tdLx?b3ykgw4#-_v=djsyNo;)EcqJwGgo$>m zrzsZon@xe{(q8$cwYU|rC9DkI>&2U8ZqpK5eH(q|?9l8y>|FU0p$7-;N&gs|O&DYi zX;O(by`Ttf1-T9vlI$qM!L-hl!b6hb>MfQu_Opf)4mUd&C`rIxRE>Rh94UF=KDaoJ zQ_rp|a()W9ijYe?1d|0vgh)-dVho@Nj2}K3GheCa4BDX6yv)KLcv5+aNIZB|mo5_s z>}$)OG@Vvy&NzzyX&EHC!tpkMrW_|YO$fJ*goIRQ6;NJQR^%uantmQ-@?Nn#y&yRR zyz5?c($?LzkC*z6j&F=R1=RR!s*bg7!GNiENmO^XjotNWY2@4$F#XdH2Rd<2_mB19yRX;i0CV;+AmW?daa6tMN`3r!%`2*iEct{(-2_Rr3rF2_uT! zp*?!(%~@*k^Jx;eXtMKKItDfF^zfZP_fn|U2+BWna0dgs!>aqpz0_BUvYVMuBo{=> zo9Aup3u#zgd2-futwr{jHbxiXu}N*fKOsgv-D;SA<6pn#n5EW3G>nb}e2Kp|3a?%v z7ZqB%o98mQym-r~UOn^;$YI3KDHiXc;Yz+HoS_ASLCG5j9)#~F;tD%WEXM|X9X$&B zC~eZ%Y?nWcMgniAZA|tSOHyK7sUUEYL`=K2~J$~ zxwfG_mq>|0k?`AEz+k}hdb2sR(LwACw>|Te&!ZtcxY&-q>@|jZPI0zOAjJfj;CrKb<1R%}YV#MVC0ijcb_2-wj@_$(OT~;&w7t zwfp^P%M<5!*kReDqD!4$-$o04Z5&Kzxnj(d+$VcoyPEo65OnL?R%3N}L87okT;0Pa zr!!BvHRDevqyTI;v(hOa>45+l&qBrXQjvXaZJ^XrR8D^5gJkgQ zn`XKv&hk48kTsO2ZUup^wvT*%o8ohU9Ggs}HbIauE~}JCCuv_^Eo=$>i>}S(cQaOI zloT?-(1;c*bif@hV?>ObIXS zEj0Ji&^dIE_Ck`yp^+{UE9jCAY76AZf9+&=67?15<@Hk$uv4qLMh*~OXR5#=l;FTh zcsTyJtb3|>**U#q7qyV3IGdUO3aRrXm_8ET-J!&-G z+42ii=doHVld}ZzFIV?qHPi$sd0S7GbxXR52U{eJ-tAs&h<;CnEcx$G?x#P#r+tUY zImwFuchlpQ{BF-eDQBhx43A;Sswa$9z|`|lg+qkC(n}^Q`Wo}x<0)Dxs{{%(1O**6 zA#u1pOV1b$dt@*~E(-?tRdFL99a8({xT35>OJo>3FM9Osp-n7r4ZgCpeSf}4#snS` zt)F~RTxYBonkNO{O(GIcR(+A4JhG=!nJF6XLx5f}9m$#3o}ZSGcHaRC+I7sa zeI!5X7%pJyq*AF2`Glle%YFUy53Li9WzsD-YXQG8tzr7ZxhN?sNUJaCyofgY#@!V) z&}wA-Z~s>_Zo1Br6vD%B;F96IraAtrHYo7Oy1IWp0;5vG*p)i7na%tHpJ><^ju(n+ z)5aJn?=w^AzuI`{2663S-JCpD+Tbs3A5hK_RZ1+mKL#+XEHP1rW!y8@=DJ{V7VHYKWv|y+|YL~Tn zf-bhi`W44Cx}j*CoH@<3j4vuKbwGY%hzS}f^rKDk1) z4r_v!e`z@a!JIkhQD`|ukqVCGwNa3Ti?wAVqkv+#(ySvU>J?eW6b&8(!_`GL!z*-% z#xcQh=MA|na9Jb%B9zV~w62-91oEih$L!XgUpfo*X?ie$E>>V@-Sswua0&TpOK`N2 zyZn>tG&Dw4sKlS`J-9~@TM>`nvkosamE&OO&>TtQ*ns9d#~Jol zA)Di{wmLkKIjIGHBIt8kv2DNG`ZE83?liqr_E*`_62EP(VkI5A z^FJaKPdEoo(aorTIOLNnJ?DP4Tnl^fWSG4>yjP6BIN73tzWhg?J+wOJ9^O45-`L<9 zR;SOOHl}|Xyx%fI0oub?l=bmqT--yeBBS@a0i8H#Uviw_TS$UHt93Joj5BxhkRaNIV9q-^RyHA{PjsxON6lT>EtF%I8C6DX)Lc5g;eZTB}q81%?(go|X3QS`KFZe(?B zmDPd1Iqu*{obq&VCr`7%3ON)?$V#<8&n5)K$HawNtrLa1`jW!@lM=qiU3q=IW~MCk zJeP#*qWPJg#28?|3zYGxPfzPIwvwoKHT08N?&!Aw zJffGfM89|I2W}$-ri!A?Ew1`H*5o*wTWEcyxNaH$tE7nifjrd#W6#Zu2^$?MT0}P z+=DBikHxO3gszZ-E2oNYQ0TZwYb$eFJjK({?2VtkJzZ)?0eOVNr&!zGPvihrZINP0 zJMv1)PaCH^$U>VD-^-@&o0kNkAJ(vsKNqlkMRphCcrpc@?iW8qZe3LJ#&;zR{=GR$ z#!ii>N_%QjkRsI6mz9C8I&Oj(5{KVd+SFb!H_kU25gt*H{qdX*o)aVE_qUevc zD+4&_r(gTWX>Y6*#6aX@aZsu~UmQb;PfFYlt;kdYZXMlHOTaTX(^9lm>cR{DeO2<& zOS1_q!fk7^=H536Fs@>e^{*rPXSquKz?)*v?JZGgB^RW|6`bKAHz*|kejSSGGRIVl3X*C1Ylc!zR;}bf?_&3{&)S2kWB~E_=+%w0A!J_vRJKL zZ(5N#Gy@z21j$|BuTnXO-;?BSGXGkJgoW;|mlKWVz3Wy(Ki9Tu^&WkWUF-ZT1r);! z?hk(rF=;GM(e3I6e=|^jF!b@#mm`F8c=fhHm_wY$XcP;ah$ESI6Ug{Z7r-sgVZdlJ zGBrq=w}wa7-`X8pIJpF`h;hoc@%JM-%{aN4j^=dwYFhb}jnlse!XFTkLKnCxsI> zZs#Y#%|}s|V@hqtvtUUWEMPP{iv>Lt;@PmahqW{k}~XTm6o$Y78-b=I)rtD(FM|>TAX+S~JTlj}>@x)g;@trVp>qg~(Hw zN&d0>vlhhA{jxs_7X5L$nRu=05ZF41pwsRR+Tv0%q_ zSm$M&$vS(J_GHkM%G}y}3@9Zc!2CuE2>C^c9zo2njmcQED4~lSaQFWHZf`XUAN>hq z`Ic}*1l{C0j!=nvF>skE4W5-{3}1gu3&8^(lhRl~hb+4@oWV{xRB{2$3CHGK5QEL=|6Z;qSvnDLU5KnRd26a!tY+e{rA1mi ze3BeyWYW2VnM=vSQ}*YgNaMG@Eoo~AK|0Co;hoKqf!X{zHw zvCF7$U9xu>Xm_O+vffjF?wR!EO7eXuA*Fb5bI z7z}nqSRqP@4DX^nb7&V%w>B?iq@ZFp7c)7_Q|abUUXujBmANSUi6!t1RewHq8)INK zN=2u{jgArCrrw1(#72r4_bT}TtIR5M+J@YLyWn+AYI`P}w+w$mjbTOzRq^9ck^;^u zte|E}E8^hDJmD>~g2jrPP;o9QActr7wZ~v|t-!+S?tQlWm~7hJ`5#FAdMPTxE4O|V zBm2W?0(ae(Cd$nm)mENpdPK1& zWDN=*cO{_Tv6WNf_xj8Aw+C{C)%!wyZg5F&UJP>R2#vSOKLXDkyipjkA$@f}I-PxB z`zpEPGsX2%zoBDoTF)CyBzdf^%(&b8CK z$(5Gis21%wKYYH+Bo&T=Bz|q8{{?6Fs2~z>%TdwK!HLW_V*+0tSjjot1A}gOzt;Jw zBP&~H_hMcHXg@MG{Wx^DhHRw=%n(b|5{enCMrYWMh)GJfGL!NxeGB;dnu1)sNi1)0f+EPo0na^nRazQ&DCFx_4m%D33Btmg->oc`3t&_k8Reg~27y zUhFuc<+V}H!qGh*K-`v_VMs&o0pABF)E~Xc>PW%+rNr%uS)Y{&=+5EaA=#*%v#NHX zf`=dqmi(0bM*jFg;van22N|qX*=*$Fk9k2V*qIV2*85lBA)w_SmjFURWx0H-0A8Sz zzQGq~sfomi8F@s}0ObSP!!$NP!S|#sn*m;HdWugra#CH7H1pv6g3>zR;%0h=;%$?k zIR+#=Lz%cYwqXfnH_?@06X^Q0WxiV;;mqfAQdx>14!CDeLfx1Mi3dDMus5+Q{8o>= z;z))BX}B)(Qz_GrvuFTae}x(TWJD9iYySb_^g9(Rv_mH9I8b?a0+s(Vth(MCJ#+?k>or9=cQ(?CN%o<3OJjXEGE1 zPd)6wY`6etRvxB;?$nVxYHPSao0urE2(5{Rip&e6ioyw)X4Z(@b zqHml?h+%T2Aujp41%G*poq^%Nz`0H2Mpvx63R}V4G4pL8*yuJpY80l7>Q+Y-?o@tg zLK3KGViR5yFqu+KtmWCO9NHrt2u`l*{~~e#IA)5r1SNz)|2cTM_ZjxmPn;!l6xU2# zr(F)hFP|Q+6isdhCtY=o|7D+s>}8vx;yCfa8cCnxL$+%tCBY2YpRBUzSk_7enk7d2 z&eYNm7lLc;l>~r;s`)*|a>Hvh@`v_;!a_5Cz?lzHL6$+qRLHHZa)p~I62y`PLRGNs z#oRcf_a`k^#`t5eCgaTh;{Yl{?siCwRXb|CjdV{yY>JprdF^)aTROOJX1o{(uElf8 z;Lh(f$B@yWdi*k|;ZxiS#??NDFlP1GYlSSyo=;rW^z_@-j>p&`POLLZ3fyHhRqmvc zgzTnpnDpLtp03)2`PIz9-j+gK$Of;yrfYzF88@iMy|)izC~fQt=-ZiNj|jrn+)Q+a z0-QW`g|m6oS3p1UO+Z{ z5S<*%tgdQt;ccgC7SuP@;!2-;+O?prwE{de)6wjE?*th1=|p{W5w5zPuoe6~zs2+U z5V;+j448=*?P+8u)Skwtg4uat;NXAOR4M%qq%j^KPBHvf497d-Fsw$4+B_vYNcz%T zGgK{n_Bx9PzFS9lh329hpV5R8Z=3W{E65pKaOZ1Vfp>u!D+F!_n!4HfHfQnItAvt` zLSife)MB9ElL?+7+*DS&v;9y9Z=G&1!9HYm_-HT2g*?_emR_L^cE|!_sUVS32%|qq zUEn~lf?dP2M##f1Q9}OXAZmyJFuxJAl?ZwYA3_)J%L$WV5AJayx(KH!7IQWR8s?kE zop}E&{hbIDTyof{NJRarUp7D59y2uOE~o@H&Sjd#MbXeqE844(Y02tY%|OT|wk_B= z7Yo=!15P|)^BRJRtbHJtgJssW669wce~Ueu_!>ONT`tG$f2rl9odsW)V~+K(UJhC_ z)7({OIjj7UyYyqJr|*fIfptdn|M{=dW=UUegZ9G)hoJxK2R}_Dqn!x-ve+U1E%)om z#NsdVdn|6r7{Bz7vWq#8S(dnqNt{F<7Fl$zCkoPly(H&eK?^Pa(|~6X-ObCv{hv=& zQ*?hw{u04QBG`<6M1o>rT@d>-J7ecexAfD9kNz?k6VPT;lCh~SuLyfHv_tYqf-?M# zTS5ZTS8G{vF3pbva)drnmDoFlXM1ECVl5ei`X4rxOxN5JYt)-_v6#$&60J8sU|W!f zYymq()$>@0E@`NT6KebR>fsYx4yAb^p>bUz)|b-y!^W5>ji2gvIFAb~YYJ=-@|z%t zS*pw;+|0zJtTE;+Z%LvzLCd$O6fZ0yK;6#c%1g6mCQG-@RG~0=zgjaQ3!oe)Bj-ec zH9z1&6)UBoI^wISlwZfC#AjfuWa=#umdT;bn~)Z7Kf(Nq6I7X^SX{_wDn3?2xv{<= z0U>+lUkyrMB;<+ps|dj#W+sD`bx14dG#bev0pz8ohI$=k?K6$(g8D^htp-uMZlX9MxlJWn{bLI&+&=!F@ft@M zai*aMiCc{ezWVv+ajB4?iaoiBD#yO^+?}*5GM66kjt<9LN~%o6c=kg#Jw!}gu%HPH zs`r)iZ;aZGVPekxrkFVM!=(ZDBI(DkE>>EMry~jdmR9*%OfQ)CD;M}qH8L*jlQ4+P z`Dz3QKXd)Ah`U$_F73Jy&@5CLx{dO`+z!<=t>(9owemNRSnU#_d?}J9) zc?YM40ZH3su2P%fy#_JzH^{x|W0v)7RwRxSPvf;~ua<8_>>NVe{2>%wo<=h;UAH|a z6u0&j)mVJ^xh~ASX;9CE*|}*wrE2K2^6=C%{;ME!l_-7uMVp#xGz3f`^E)Ljy=BaJ z<>GAAuNl^SZSc<&v!k6h6_At&`eSLmHKmd@(1SSyC0utup+-f?B;@5Ggo;Ft5_zLs z_kN*nZf)KWeZG%6IB)R18PdXhO5{y~W?cyNz_YL0G+^(t!9s&$b59wwjqOp^KJ-4s z;j%13qzO2To$$i|9$yPFQpijP?{W)vhmaxlR>t;bpWONHg{C)(0qKD!wHlPAoI6Il z)BQ(<&vfHucb}Oy#1I^df>RejP{fmiu~MmqOeQtNau10k=sb*`oDp{`95baL3*_5k zgyjB21*gvbvpLtlI6HFrV;#*H!1X2!&5qNJ?+kL?3h$lWMnIg#R z&mZIt`!7?OYG_kskTNI3#J%~QSWqOLLf*c{4K>(AK>IU>8t~?Eyo^>mGlHyFI!x$#O}CuOnt9Lpc{U>4$Kf zpwzK?MjQ_JuT9-A=Mfs3aNi#^nlkI4WXgdz`cy8oMCur4S?zNle*{njEGI=i>|Ji) z>(%aQb!Yz@NpWsW_9(iWbkd0z(EI}m)TVZ5w-J6Z{7)e^H$SnpIsSaZeCha6o#2NWGG(r&8A+052N8CO9m}0QF-7NGNhE^`R znxL+M>90ipT( zndm`I0+WZApywg*Y4)AHDr6cL{gA}WKgDOBfdQ^vy3AVjD#muj1(^N+NZY&N%O0AUS3#lWav~yUE0_}0nF9&OXX)1sHmqUR@hHQRbt-;BDLo^ zi12YnFC(wUWMg$80`5Bg5@n`MgjUTMbw~uHCpYw3R-7FiH<87f=zlnpj}Q3QTfX0aTjwu!`e5w)KEObR2le~u&`)$!{10m17_|Z z^}o0d0^U*Z7ReSNb_KvbpMMo#hW6C{G8wHAC}nMR?poTR$ue6~eDnLGzwXd8uk|Bq z&V)YONtKh65^~j2|4#TP1<>5wB=6aN$x8MPdElzRf(Got&8caov}As=t_5r2F@VS-D9~|=`t@?7R*x3Yn|eU3Q#jO91U19{mCo%x1|4Tw1)1c{ zX8h~SMN@5}Y?UHYD5deGstfFC)I{cJ@atzC>jecwG$v-YbkMC&UxfhebuY|8QwV>X zz_X?$@OCFkQOb0PsPsDBD!CTqNc+%AE_&5vvx9TO1Bh^NMr8YZ5wGm(B4Ck4Rb^?f zc-&w>(^tb7ca>B`!VV3dp5fW-cB|fcv=HyF5($Rw61-F;U=t0>tud)TAz6^afCoZa z-DAYKXTUSJ%IhTj!ynu-C<%x@f3A--8dH;5iYg%B%lX5&Q;E7hxK zrj^Zuy|>m$Nl~ZBlD!Nk0nKX~&E;Y^y^o=d@VKJ7(2|CqA{-G9WUjnVqebDQeG!^K zH>icV@~}6A2DL!y6B2vbXXo1>Xz&A9>^R}Wo56HeT{>evQ~SNH0nAm;cyQRCRM1a! zAMT+H&Lmm8n|1|xU|#mQqDMumHDz)g6UCBESeW>&d2*}BXqp@;nIQg9(w@3)@Uwc< z{N^lEW2sV|E8`&CyooggQW$tQj=87_etYru`VHJK|87=B$xE(-n+r}kYU(QXu_#3- z(P~2(Gf#dy79zXi#svKQBbq=db_TX08}lf7^br`r7D-VnTRU)mqQhL8IhZ?sH6|0I z3lT8MPtOpzy4QSlbWAJ&u>|Sv*51hzd7yv{mUT`z11s#5(=28AkKq1eiT@X_VjA1H z6q{%dBZu)&dpg2>S}$Bq<>KGiW}f8p<L9Z@Xb_tP1TRf-3CdtRQ8m$WxsFWfK;=>FSn`FZaDBJ1I4XHXUcGUK0> z$)gV+%4FMX&d{I{*xf`o>rzl~-#EZlK^)&0GBZTw23b-}P#R?aPaPem!}b`(*R0Z# zOK%!)v9>oI1ioHbM$DdjXjwbUS4j|k7H+vB&FL!p&=_zH@n8jVrA^_iqO*R|jodpdW!Bg%!S;gO zb6II>*J|!O;8gxSr7~Mt$;^jh6H+wWl$&)MI7nYLRR>3uuN0n*eV7S=W$xym*AE8G zG{0-FkT8#~+bm{t%nPNV$wQGagEA_(=Y`&rV<4pN*YW2@?i$YmcEJLX(sXdG5S@zq z{rdiRNFVz3rgxgFn)Re@=7Y{ACMh-f9m|rtW?;L?$;loME$&P#JW&PxfcwYF1}cB7 ztgN3D1CRHr@q?>RQ6c@c0&&@wpzC%nA~HYu);o^do4nH3E5~8j{?Hq_n?=l4)R$aU#{>3H2idLc2>0=X}^5z zzAXKj`eTy?_{Mer;XX!Lfp9`NZyK8dc4j6JsgId20h5uqHThDf17j%DknTy|omIf1 zGC`(Ba=#fQa#A9U9k?QV-{*r)l zuOMyYq|zIZ*}BL<6`4%ZX-5=nFpaV{rCYe~cyhu(x=9%W+v;Kc^}zq@uV*cwy_C%KW7FOCKT2>0=21i$ zPT%WAoklkkJ3k=4o>NQY^@Qqp}4d)?u~ z8@d<-8sm~X$Zo&7ws|1v z_w|ti#|g4p%?1!>m;PiWJvInrxMKNy1t|*p-Jp&F`qaRUeYYpgDbwHV*mBsj=gE=Y zS5HSjY5IpO5qFvi7+zYz+3a}BhqPp^)ccJy!dRnS>)bevZS&9yv5KH}~h3S8MV?$N2N`Pb_{mDD}bVDw*a zaR`l_3g2f%%$*4RV`GzA$#Pqry0J~3|6mh|vH!&|f%=72s}{7?-lqY$3Yeui22k%Z zM8Lqn(0+1N%;mHp%*Cx;_wc5NZ9OEQ1Cq6Jnd7KRIjf*k_f?0Y+F+51zy@d{f6*~B z_R0D}e(=n(bJ5f&fLpx4Ss%$s1$mTLB3MmBIt7s>Vxllm&RzN@gJXB{t{-#^-D)-h zIXgvxLTp8X8;hiv4#xq4Xa0RZH%SWCwwC~MT}XT9dC;I?nMAIcoIa?7zI`)xh8Bbf zgvk8x88pe*@h41sd~?4oyc~*I($h)p%?uQk)GU7d_h%zI2!Q;| zpBRAlB4a77eiLC{>I6g`-Vb}E8pY1mSsEU_DOBw08PrS694&%`(BdH zj#)brR?OQ;lg;_m^%52K)~SpO0iK@+JSqtrN|-xt21XRx*QO4%nt1n%Vj*_0-U5Eo@0&vctW;GQpnOxyGpVe2;kMo9r~H|=#p!H*?t_fudxJ3 z9C3YbgsqK+9(uIGmyH;`G@`-A{VC+RfdV438=AKQmmKUb6kvs13c5xp`^$jgWkZnl z*%E3h)54L1v5%$X0={!Pkwv{6pn<5+t|HZWE|!3FtJ$IHZRvNAi%(*0yv8`tRdzD} zhcnP>gh}TW$jre`Rr6k=#K_l@e>{{;cKH7{6AlWH+PkHuM->${5`8j=_Kb?4G~Hic zAjqrsYuX!xSR50L1XjZRjzx}Q&~1n=7w`0Ct2G1=UjB{7S_FY9u+7ePeuVj&y2G3Y zTUxEnBgl(SvI)Pudn(QDO59Jr{a+TK%|+IyNUk(tH&5qpw>c>1q&uV4URG=IwIIqr zo0a*`lwk&Vzb6ulcV?xzHko!Kn^(7X>_1F4jgmlk2w~#^mWOg0-XYI+Mh;a3-nRdh z06Q%>wd5Z5(%f_>H9IS<1=(U5=j@Bv+=O9MNepyOq)|vHxeL=T*Q$Nn4 z3XE>4$`B}3hnrh_Ej1a+-X3>aZ!&w&EUxTmwH16fEk3n0|4`pZp(|kKmPEQipYSxO zs|Wp`=&zEAdF%#>-I#yS;_?u%_bzAwX<6g1K+h^A_uyq&6U1ahg0rho(5UNhXV|XX zI!eXz`>+53?b?FGF|Da6EE|7f2JQG!tkx#v$~MmqgV&PcRqRL#Szr~~e0Ev9Ohsmu zqUW~RcP0*gWGY@fqjp9*#(gnK_HW)-?Pl>=Akk6^jN&c0l~mXzlG(CBB-> z2%fK_pP_>SNS>Mxkx3_vYgq1 zPpw^0U-M(kn{zp32)A2hE#`4Rd3a>~U_Li;f8AsvUt(6o??9IpO{6;k{UBO(xkpQ9 zJFxt5v_^a5y#B?r1I<9q)o8_3m+d&d{7~8{?0Qe)C`0NL<=!9Uw}iaZK@nO`yvX=A zqJ$DEuF>esr6pOPg}>c6`7+xSuu3a76_6&>JaW#q6?ZyguQT_a5@d#1+2HPU(Sv0w z<4r!EUT0?==j&fd1e~)Vjdl`K{@A33*jzBr$}dLvRxQJorm8@8^G&aR(UN-%J}QNq ztY1zW;|LT$N`Yf#GCO5SG4D`l2>^M*gT8u+_y=K8m1YRDio5F=1aP5|s4PX9N;Fm~ zfnnXC1emetJ4tjPqDH=WNRDRRiYSHvE7pug?+Sk&Xn1pGcjxR z`s@1j0<6tXKu)p{#}z2=wyeB-_wW=}k&%&WZDVL)!0)F$21v7r^@PlfEF*!L4yq88 zy7A#J7GmX$-bu-oc<~UliXpC(P_k`YiqKSmf2yzu!vYyp;-`(xiFQ41d6Y-6c4o^%M`Q|r*^o+6JwS;PIfnq0A```O*8#4)n@tn%-eO1q6@Nbo+Z zEG3X9)~9k=@vdZOFLFVUQeLa0upamMASRg8B=;xSjdd2sdAeOAYI`Pt3*FAy`3{=^ zZ)j-=10QGA%LDdqW82Srv<2jL0Qq6@e^N@#K7axU6q~W@%0VC^op?;(3ahtJ!I8>2 zu>kcI3QZu4n`E6)o67zHEw~8%5v+p~y6r*lUq|Wg*R?LA-W`ZIcsmbbMwuxvdUo`3 zxnWw@kqq4oOqEdVMEisrlDVgq7Y>h3o^Mk22W*VX+9^Ul4BQ48)7i|I$GufLwZqxd zroR|u9v^24r0x+chsWwo9boTzgQa5c(G34!_t)J$w#R_XyF};`$JW}|*ci^(?aD}B zbB`Z3qdg9F8nMBZ!k`|Rd{g7l6c+Su-|7reknDFS=me}=?mi4^#3-Hv>SCw~q=T7> zjfE+ZK!>B%npQT%F9Cb|{#8>5hYa^2h>k?AoK}vN0wXecDef>u%Ht?Dylfgkx4ntX z{qTC*=(nOo9A794TO5J}kC597B6Grane<%gB=@L4%B9$0{-3_sD;*uDY3H?MG z3i%@UUQz$HUn%>i(17<89{S1$H@;?wOeDSeaXC(01-EeF@}zk9i*kynMNC6?@bW zOCaFK(lZm&)=7^`qg1e8F?Cm|%-BPI_$w&S@AHD$36U=G&p*VC)+7aj! zM&V1ahKEa=M@J5?{pYm)-b@t-Hl%sbO;IXly+uwaOQ zl)9qEmO3VO;nIC3xb`thWwbcM@*zVE?9c=)5%oign;b3hUzDCkq zC$9V4rjlt!x*~H>DToHtc%w&shz@JyXQ(1^_p+n(u|(uy0XkB681iyzkAao#jMUkaAqy3 znyfQx%a|nb{`pg^$@(LPrAf&mE6Y1Li4t@l8y+k*tL^juV?lu}5NE>7&evC0fo?{^ zPhBSF;h^OW7vr;-+$ooT{;OypKZu!azRUm;Y{~oA!icj;&(7G~Fdc46aS@3e4w$Ga zcTh=93f-mksGiaI7;<#5lb5d6-es}qTt$vy`K_2)4%O8doN!53ymIUPYZt|hEG4yk z56)Ku+Kd`m^%H_Txh&7f*v-I}@{L2|5HI}^E!vNzoS7yq-ptiP)Rzr;Q&JpfVm9Ha zk}U#!W&wUi=qOM~PsS~FkmN2Oq0AV@*5!jEqp6|=`M3#Sy^=)4xzMa;V0NC#SyQP5@RGc!^Ij+xm{o_$*BKr_j}8%FW~9I; z$d!L_F5$>!4AIoJV_6Z>IfRNj^XbvO`z@o6$Q(_?LP8M-w`r3GN?Ij?2H<1nr_8p) z$X-pc?r2~)e5ON!o`>*2jD?&z`+(pI-U2B;YW`g*;cw_dB&Bw8j5p1)D7`~gVUmkb zKz1s0O885A%Xb33y9R>W!TB0kY2tRCOz8e_Ds$8K45mE~)#f)jy*{Q~SKqjh@W9?4 zKRRl~p-&oUDpXAK;HGitl2<5rA;mkOa_p7IY5}z3MKtP=H25R_kTZYnAa>c*T=Tf6 zihM)n2NXID)t{={jv|FapQ|_p)-yPhXP*Y53*?6mqD=yt0_WSW(QWThU}~v$Uidbo z?HpwAwl}Q|>5;rw>4Nu9ZN25?MShF>Us#A2S5t<}{h#coxnO2q&|4K}GOB-5w`pp- zsiTsp=Oeehp@SJLh7x|Bz(Zq}ke-S~C7o@FkkaBf?(|%DJ@t58Z#w%M==G5gY-Xc2 z!YUqIbpFa2yPb{xC#)ZWw{Ki*zYaFj>SC<={QEa%Ixb8?;(oMd6l(!u0|TrUdML-Z zt132O_{n0cu^SLkP}AkW>5e!^U7uP8aVYMPslsRT#?`u1mrPFPMdZxQgJC>SO#gW- z1hr+0j7x6|qQ^)gX;UD9C{}1^IdVq!V91*=f7y~@uSMdxn+z-)Te0bd@uB5l&x1B9 z65eo_w{cc?i5fOO)%=c$=)5leC~BRBHiCq5>JppH5NHaGx|bKR>@l>ngXxevvNnal z<1Ke;?JTbB1ewPWhn2Eu6-^pY&!IB$bkz#GnGF6sHH9GXazTs#b_fp%4Lzt>8f44O zz|Ril|8TBZsIt|?_$><1%biX_r1Ev1njd0KKh=4v=J|ZE(@``F!_&0>{PiSGd62mz z;wkhd`vW6-GD5hL9^D4EP2cJKJXco(t^YcuR~6+5els-hJ70RIJbt&VK|_0O5-GQ* z=a-Vh4nObL6**WA5{lhPX@uPB?7yIn-T2HdWy z>f-aiYWv#Lh=gt$&+%0#S z6jEoOfh;51zF5sT8WqRr1Ux~6OssY&37|#@W8YUD4~XoYbwSf=yJ(F216&a>LGf7 zZJ^sjCB9_9oCaD|P}SZ7#E6S*8B!)3fkw z1`L`&+-@i0m$JhMpWeQ;4N7M+9%8K|OVxfi$^d7QAaDY7IjbNaavU?0hKH@UlQ^Aj zO>b0QGPJ`?nqlw8T}g9B=pt(;UK`x zL<~>=iR=4RMEr4i;-MwzbnN!-ghOAXjC41XW2$RKn%E%?@*Pnp;*2k76qK;;6Xv>f z!MvV&7?sw;G&3@7XC*@TQW(gjGoxhLO0EM-uK4$HJM=0$7*Oso?L!-f_J`5^0Tf6= z`r6fEy6}B;1;=g3EvG7uMA}d~@o9Z4G70~7G>Snw&&xo8+(%PNYO?YD#wIyprYre9 zu?l+s7l#DE9BqBJo^4;Zl#u2Rad)R6W+Ms51+o&z5))L*Pll?d+W$7c#UAav`i6pf z5&U*n6k5Hk>^bP*kS9#` z;fy~vpw-C%;&I448_?_~M8kPa_zIO+WawLUJ9csrTYPOAeB~>&a{jF2zTeAN#wq_( zWA~2#FcWR>1pm^}j(tB`4m>^xlSQW&4$5vy-#ls)%Qk?JTB-D=kD50JcBaF*+~u(2 zb)?h3oq-ilRvZ+z9$_Y<_ut(f<$W37Hn(0|&t~ZDZ;I*);k+APBs!C*`xfQ%6?#3E z_K!1Q6ek+>WU=}LSQ;i=ouLPJq5jUq$K#$&zUhK-7GCCqtSbE`Ey7E4IMZ4tF7ql<@OzMn zuXYM7?yu~8cfQEp^P!}sB(#Z3+U=z~Qak!jftM;gej_8MsOQlpyQGEcoAk52EhTx} zF@4+IzX{a9no&Z}ciOk`OHBy_?zFhWim5)|ow;EG#PE~)jVe?SeFCcpX3HGX;j(ad zIhJlwoc;W!n$qC zcD=*17o^hk%5)c@zCkg5K=WRnkNJU=_PGQ0S%qpxw2I=k4cW5!APE_Lm#mMfBrOB( zPY}DTw!il_-(AZ%KUou`51B~tQRyZW=O7)22c^9i_LZ%7(9kQ_$hJ6Bvm25`)@4N_ zKC0LrSIwcRfJ8w`x<4_DcZ%Q~Q|iEFIY-UGmP-HBdyKF(H(hI+Ph>Hzy9Xop1m{f> zPx_tobg5?ZE`wAE$7KmiEXkQ;M)D`C^RF=+`KU7%`Y8@6y4ba(w>5gt{sFHRo!#%0 z_LmR2KhK@N&bM1z4#5F`mH1#iN^m%i7L&4(uj4nCJm*w9AwPK<4GLzEN9anRn3t6D z4}F{|_;YE@A}`&IgjGn@VB23nV#t{y#9JiT;`ft)iG7^#*gajQV~E3Q_>*#)KK=!F z@nhU&Vej}lOTg6zQTJ*BrH(#`q4SFx2%VCL z$4tJYFQVO+t}*el1=61~Oax*udwM@7%DZ9zG(JTCCi}r;l2xO}UqE)Z5V!9*!xyxT zQM`(=NAdRNynE~kl+VX-J$T%i{4Xq=J&yHvF$i0kApJF6z0!ts0Y2rhW_9!*u@>3K z6cwU`8GXKSpyjP@)(COy434TU?yG70ZmsVN(0H^W?w*~-Ci#)tcTtOu_D<~3Y>Gd+ zDHQIv7h1bMXfm3@uvqt0TI?IMdgp%V(c_}OzX>)Hp}S8F-g@iH6--Tf8X^d$_hdVF z#7YXt4@P`@+)yM`;d$uw5>3dqYWV>;5n_gUsFBn770e)G`Ueg?KCVdme8Zv`@pyof zEQLc(4ClhQTJ)wI zDS8Zc!oB*@%jh`x7$pv8TgkOA77`Z2=o-5COKp_hTYnxxT8xa#ySre)>E*0rGL&O4 z{4iVPT1JU3-#W^+kL@lQCNgm3Q68QVOQYuiA|bc+)Y~MTw3KzX$yEhcUgyt(0<107 zi0*!wS$^Jn^uT0j8!D->!dJ}w(B;Jl-%}_cA>rl}u;TNLwC(_pXZ{K5^H!-|Bxh&G zjEszouQ~wv&J*Cq{5AAc3EqK-Mits~-MwRrTPIz$$C^W7Wb!uC$GN+>v#Zyc{23W!*ehUdL6ow-2{`f%XdVkFUw8o6u`YDuY+(FYsW zIy8@66PDS2!CizRB)&K;KI*Vdb2X1KP$J$#O9`I11=U;?3>e&Ei(45n=)O}w4M5oU z&7QPYx1=sq-)4X8&}NqT`QlQeJR;1rMWK#2N@EP{wf10A<@5;AIuOS!pho$6cYgg; zAvkN}%-vJN>Mk&q{SPbe0@Gt@{X$N%O0+P$^C;KFgIr>zY45Z_P4URrLkE`{=4*pN z#%kKj<}w<4EjwX;_K;52hD(ne0su^OHj6wOu6X=sgQ^|jPR>bk@`}Y?g?fEG_2=T} zN#rz<@MSVLFJN5m7I}Zugma;Pq1H*kXtIn4Fe?{f90OXk$N5jXQ^yA=UjuLT9Fk*3 zog42QV%)daJu4A+|8&zZ0XoxZ{(gfIOz+6b$k@ACzmAESqZAeWTF9}rwS|fIOV(QM zNvvQ~4y(@@@J(`Qc=p_r8h?>)IwF~c3V%&R*!{icNfdfCSmS^!&appL!H_!Sbff~J zsEG1gB-#|22<~MR9#)bxq7mMo9lYo%YQ?|TD)bDOvtLa(ji2AWldR6(RKm$61ILy} z<41*L1jH+Yi;BhUCjAuYUaJpC#5iGBzM3XjY$+9_-lI1}fnZkt_6M&=@<05s;ra(a z@X4li>ZDGW$$rg0JDd5m_giGZ7~FjxzhOt(yB4o;PpL>eF5`7qZsnn||5-o;4HNQl zr7Vr@^^@X*5dZgqQv|IcyvYHw?=t(T25%aM_;GIuQpKG`C`c+7Gw>ggZ@!-(I$$Kr z`bQJl{C-L;vi01;0RPaeTE(h*)L?AAbs27uo zGC4_WKb6N&;?rC)u5abP4~E=Wthf{Je6ctxAeH;ussy(I%k>NK#xP;*z;)K}Qu=a^ z7TxkY7Qsb6?6iG`b+uLjS_6%l&>#v<;DTy!Lx;QzD?%g9mu)UuMNtc>Z~IfLaO}ya z8D)hwd0hP8hb$h8!Gp9VCDhO{TkT+BmdrDZKF&QpsvbZQD!$V|m|9iu)+eL}_{Im! zV<7{3-}l3|a|veSAq9)@i_DkGJVJH`PcvpG|Ez~jKaR@^vHL9DC;VijL&f+vs$dRi zrXQx=d=7u&CbHNMJwv10l9d`7uX5GTe>Y56NS+>pK_w85absF-jft5Z{_F-h_m*Yt zMsJU~?T?hpSU!$4cwe}{t?D8@)fbgt|LD>~WKl~4j?W+JiSQYR$K5a0=f|r5ucZVS zm6val{MTexYW;h~5buXv24`AEkbAYI=jXG&y!O76y}aaK1D!509Rlp3Lp6k}natI6 zBINz@O8tlvbyAv9$mFG%ZD~mI4{~4rdf3Q_oQ#}41*&$VqsO)1A5vdFthPKj7dO~P z%w>u1pP!1j7>uIK5~ftfC%=2y(q0Xg92QT`4*E}{M=cMXs6Eb@#C=d}#lf+^lFWB{ zH((3E>{(l7c8@Xlt1cpL9_;qvE7dh*X`Ns*sSS?%5cH?Ca;X=G8XCI~4-bM#fmd`v zFOUf6(mDhf7<#c`G%NzyM^Q&YJ~U>7e(f)xX)9r_@qjuxe0NB?(NegKlG*>X>DC*J zJ0KR|jNLa{p%O+a_+>efvIeR2chC_0?;6qX%hOfJNzdhPUN6Nb)rdVR?7bO^P83A+ zZ5EnJ!ouSML7WnHA5%XwcwLYEbO}3Ve*LD+bpy*47!6ui>tWeVQ2KS_LvnJql$uTU=%rGHSuPasd&bet2)ClCOdH83}Kn?o}KIz9D ziqwVwY|ze~%sc<^1oUoyro*D0>|;zvY$@&tM65egADPK;F>55TVGG;*>2Gvi9=2f+ z=@m{+A1_M?H2g4&8jFdFP>*y_!Q&L|MjgqZCUCPba6ftaWE@LHuoRr$jbLUikng(x z!6uMi_4UP^hy6e)0kr6$bwr`*Mz#it(B;-@@YcqLwZeZdCH}V z4u`BsAqo~n61E;XaRsC@J#n|U=rBxrAQ3*gqZX@w0@GbFL8*k^R1(t)Mx}7}(7M3X z&Z|7S)TxcY*@WYVEU9@oA%F+1KrrYRg7iPG2N~j&(&eAJc`*k+IVGhx;@?_aX&1uU zvPZp#Vh#M;rCK2jhEqt$Cfb~bC5tu$`d{YxX;E#>ZGD1ddgrX5z8|{=h~}-(ns`>GDV)Q=+t#JDC%7}yO|mk+O|}dE{l&LKp@)5fK~WL z?|SRs)&af7?uHBa{U#pZQj3&sQS0O3kBV+B$99(Ha`RfT!=*=SPqqxZCk@ufsW-@D z6l6-A0Q^F%Mci%W?)=f=?FM(D_;JgUzqF?ZOH3@V!DynVYPo-GcCx2ZFBTfAzFDLN zr0<%(avC@RF=Chn2?vyD0o!5+vZ3s3|INz}&LgRp^dAFU>|mT%^0Nq};(ip1GrP{F z%;#WYG81b+i^mM84I=<>fNo$@6^=sH69WR$l{iZ|drZyZnF{#R} ztLA@DE4g%}#Kh??yTPu(2_Hvw6(42;-7J@Gmmkp&3KCX?FPzxb}!oEA#xh?qmdx9xPTn=zgmFlE&>^X zG=?BraT0R$zu5sR`;VMhe38Ia?)VgZ(!H-=OP_Pm*EcTAXz4pjeOvJ8b!B)d@^S`j zRCVf=^Jv4`cvc@lRyBe_&9M532*x{kVNG+xfebr)@&Axrp}S3ugyI(~r-2K$o)2%D z^Wmi`cG>o-c4PJx=6{v(xwG@4v3Ck;L!U*x zEWhV7-C(WuMci|gJIhzdV=B!Sc*lG;Gm6Vz-MC3ZO)v42N)wqu*P#~IU_&A1XAtRC zUb*4G+kUuHif%La6<0CsSdkiKA)8U5R>CT%z9=uR%`0(ACw*@YACLJ8zzk)I=n1Y+ z+`3iA8;-Sgh)39-JNWL6p^C^NCLj*iG0xTH*^OIZAuX7eLKCaS(c~$$`j4tz`_2)i zKeSA6UFdAewl5-QC@n=SDArlTplj5xZ2khw{*|ry3Oob4@Hf-6l zYhJ3hQ9_fq`a$SG8BkeOM@XMobxth#?Ky>3eY=1>G^|WxYDSNC{v6U`$2HuY)+5dN zvy^A?q5790W~Mql2nl9*bQ;GbqZx@fM$L2PdV9S%?JQmKyNSX!JFBmJWbGsHR`sE! z2}K`3+2uuv$F$LBMRsbTB}a7m8(pl)weiUHygy?&=Jg9x!*i4fK51ev6sfktX99HR zQM;%k?~;D#VMV<;{ke$2j@|$IHAq1vCi*#GAtI5O6&c0C;uCMHXPc4jOaDX9A~V-sw;!UXioGAJ^hm zc&7e6#-tc|slKkf1CGxREz=*N1N!@N9~tbsrYo_|C*gzP*x05AH)sDG#T?Hx;J}+glQp%&90trT zUCsLWQ@HM#&xxF~`m}rIit3G&;thr`W?Z?@j{aED9Hz%xjh|X{4dwS3(pQp=dN$Ed zb!C?_eb{?(x<5E_>yS3H47W$I-JPUT)~E-?SG{?ttkMztIL?)&q#n!(n&-{&)i~VE za4|2_dT>0xHqKG0*$CpG7M}fGlob+wY`1V>a*~q}r$L`*-;Q7c;I+u;dQW1+$|E0wEy{P zmdl4b7JYz2pz-&Qsab**u*Co|LG2eyHN%W53vJ+1CGaL+tK79%Y~8eLrydRxOY$g)6yPEpoSEJxWnrhHwgl=pR!8Xq!8 z9%#JmC+<2Em}keM%|-@+&AyPyekt~-2ooy=fhXLokg&()ZsT62F#vHxL73Se zw@-=ZsI0rE5}h;P{5-BN{BC4gKNZ%gBY3A0vaul%Rg6TlWn}bMga&5zQY|DaI**mm ztv_}^Xf_%}_29hMNGq=Y*j2A;7X~*n5P2ah&x6`9-T!T=R`+Gjh|US}Y{3mS+~AL% zamdvX@A4o^Or$>;j;KR68}x@Wy2+pQjg>@9Y}p0PoDvEU!RPq$QXzQEa{Nyp8SMRI z#mVHq`kTKgt*pepAC4h`1<@1KxK=h;*UNeE?tQ+EqS5$-5bbj1z%(Eg#w8#U{U!XP zzt?$)(qTACIn*#4dXBd=_;WJZraKk^4&8p6;FZ3JhL#pa$08aK2!%#b}&PQDBs zqacEH%$)F{w!MA*u$`Esmfch$EYNUoC%_C=ct|d#(1lj>tu^P7d1y7yzmMO`VRBUl zQ{|~u^}>zbFSzQ!fp1Nac<^z=fA>Gp3E9ayolS$3oD$nD^2EwH-oEyAR#FKPWE+ANjXZEmP zXgvBD;G+}=rqAXWT{GBawOP**zo1bR*@q@)ku>mhxtjkZhE2B!OB_R8jl5N2o3qjQO+_9<6s(a8mA6~K0St=VbtWIK`$P*gL!`OB$CEzlvS@Nvxuv!qfq%VR6Oa+%c@>pU8P!X`DcQ+ zB{o(a3leOO!;u|9l8K~H&^KhFzS&0lD`!O=nL?^eY8M9AieaB(EGlN|PL!=#!;(7j zgcUmjLZpSiuBe@z4d+jR{rUpewe(t7KW2{}EmLum)!83}GSR=mS3Q!-9n0-3lYt9*cI)mAc$Sa%JO zYmUkxfaR@B*SxoI;Bl2lG!}SBM(t)Z`rAq%vNDe(_jweKYe|e3X~$-aqEf3X*hA@Q zG&1rC6VF2nIKX35vTXx(^K1-k?=^ZjVCpCC%I(3Kf9r4C5n_daVBjtlHz+AYTLnIL zv`hX{XP1D#DOd9{PgLsA2SbMCbU(e;oISl9ba@n#JG#fX@mAmy&OHE0grI zL99Of?U*9e`%b?r5O+^=6qO1(ss0D7;!FS*y{}%n9%~BSU2MWjm;fRX2plu;??A_V*!XV1$rQY$O$AaBWZ?($88fqthQ^19I&BNx+zw@RtiD$E zyHm$UXw0noC*A9d{a1=(t|CjC>fqnCJ;}K~+Pwt6Nk*&-{apz@IJAcX(AKirLKo)= z{}IKdrKJz80sz^^WhG0i3K|(Q*4bvK3nvAYgwYwYNN@o_$VUX|+PMMc)Hd;sNzPGK zh{2=2U!I4Xr1l6zSa2r+we6H`DJC|TBh^8ui;Iis@Gc$d$5)O=M8lykoa;%!^}R$G zqc%WDnW0{`)n2E{WEFaFl`wFhD3RWefvMF$G#9y7ABJRxeX<;KI2J`OS7z@56OBSWceoIVQ{ZWy zDU_QX&yaRSYHn!_3Q6k_$0FS0NlXnPKZ{AimJ@;yvEr^Av7U3HDq?p#=B~*yqS;eV zSre+_n+b37{L$fYcL*abxE_dT84MNt&0%<*i(*Sk)E64UsGHl7np0R`{b8mov-hhf zN|8StO~Yr1g8s?CvyklfBr@M+#f=YGwXlJ!(Vpf89!okc7_mMb96aV&G`_Y0a@i|2 zu%AS=@zOutK48Dz#}(vd6!|OQ*B~Y|F`L zzh~g4vJrJQ4(Q57vT3o{mV`5gCeJZ#Qp~Yo_fgEFPhQX{X1CE$(U}LDpA&9&V`Q&~ zS5oFhS=>)cuh|+zc4JEf;r?`)HcTNm7D`=Oh*;Ef&eSAI5MApOgqc1nz%hj9iGI=695m4>^6ri^fg}xo})9gW@52jIglqb0|Ij9{LU}bQTqBRQTmCAoCxGl*4+|`<@&;d^3gm26=z*$0~M= zthKkl`nfDRQyqk;O5f;0#AJtomb^POj_vAq8Z9@sxS9NnaT(s4#jvp<;(F{xN8S}I z0R#KWB_u>Q;N_$yj19CHW(vCUK$2RrZJLYK?l0qE%tWUoF3cfXGG(P1##Vx4RpkLz!NF%$!=tx4n5T7_+a9}nG%@`GFVI`)Ifaz8MD8SG{cP^9xL9-61a5v1*^%S1P`@fot;>%Z{5_S*O&Z|RIVJ}9NJi_0to#iX;AIa zz%1VOKy1b0h8|PRB|)mN=$Jg*i9MU&_e%w{sgfWL@lhdORE!u#74dfxJ={nFcc4&f zQ0>`>w~nw(h=e9#r;BLZgNmP@iBpDPEE%1cl|L>}?>+j@c0;xX;b}b9YabiR?m_Uo zfoJU0vB~(pc0_)mV`xGc8&39u=S(C~+;(s^yX2tDyHuLug=leSuIP;pPn>1+Sj|No z9Y)a_9=&jRTg{c5yuKx-+kP0lw=^r7g)G%$Crg1F2My2ru@QvY&|Rg?AUs}122~r~ z3nlF6Hi3G4edr)(=ydM<-ISa__8+)(3JWc+Aq?XA{7p!{5F=HwWdP6zwYS`1sgp7J zlg9~&t)l`3@mU3I;ZCQw%+@24`nhqR>x3|ar4RESG z-skA;bpWO)J9|i-Va8nEjGVfem@^dgi>F-USHS$jM(8=bkba}965kjI8S&xwB_bqOOx3-O^QK5@!aS$B{ zQ1Y-|P!u2U`6e7+hXPt%c$;1oAVjU|HjYQEk;9H%e{!yON!ok@QE$D;z8WlvKabwk z+~dt)7*n)7G`=tN+gac zM?q_Kt#3<9yu!l5Sh&@4ra$qJthy0|l4n(4fnrk*WPtM9M}eT0jki?UzK6|yP}Q5; ztAT#ey~B=yFNVvG#0cO{=pQI+`*E{?BKh*dy8DykwatVjjP*FCmmXJ8(oC|uee-K$ zfwX}=Pgi$0770n~(M#stEO9RhXp{oK0pIy1*froGaHKWZ)O1fEewE|-==?nPFDGA@ zD1mci>l-$sY;51ge_*~~s!urq$KFXZvjYcfiXj(!?TQUQg|l;ik;97n`37~95CDoh zPRE|Q$>T+TSLYG0?xj^sJMKV*^yJ|DDJtx%e`48}3uJO+Kp(9rZf%@|Qd9g0qZRPc zlG^T?)dEogeskhNF$9ZVyQUt$zkM##*!Chb;n(@8kVk3z;}F}Gf5t*abjuKO5^5Q} zWwZIXf_k@Gvw?C%Op*ymV(g_PO;RNgca9Nof3Du9rMp;ep$Z7-Au{_Y?$aem++86l zgip4~zcjj#?R~-^W9vx4x!ZGYR+Z}{b$Nhjtjrrkdd&eIQwJmXeYz)JVI1rd>BPEu~jv@W)pRQ$NN4x$}`AVk_YSVp$E%T z)Mtr?35dkxMg2Ni!Y=j26tfpfeZ~1>k@o>DkIGg8UbNAB<0U?oQX->~uf@7*SP}-O zXx+8%nebru?dh=R7)UFcPlpMAa^jgcI%rRMs$nalTqF5r<^u{Zk(h zE@8xh_Z5-g!#+&D`-+Y`8*4)Bd_n_#0qYX2+(SIL=I&a*iE@w(Wy;3oEPw^7%L6YM zv-pjfS}sifc_=>b0N=@5)2IGQ${=HXaqf7959Su8gW>mf<8qe#+bfWSFI((Yf(B^* zwr4BFPOd(Y9x0glJs!z~@7sRmiCXp(j7EO-k4LNv%Kks4?&YTMI0Tlpo|8!k7o57| zLQuTkK8J6@`?BIc>8jv%=w&b%=|83_EIb^)z5Lp(5!~4uBn|g3k)215rZz(-7Pjjz zB|ga`QbosOlCYGwgbrhU>F zq#;=ae*%wv*Wkd##aL78NY#bp9z6!|VCaIm#%AGa>tV&kq3C+7Uy86Q$8E8c2fgpteRbzXNP z^lSxqTX=E{@;aXc?Vl7$ynkD=3B!tCXNB>RiNNn+?u~q?tq3eEQZ=>eluOrZs8oJ2 z@_ED6sKIEuYM)1qcMN!FXMor5oYkpvrjQWo2@GU6C1ewT^Fsj5!Y9Fh1blhdehT>h zemPN`I9-_UvJar z?g4FMmUx7EfS&h&KC|aLnDhO&*h70GWL{qNiB|v=9lle~zCGE`PHB zUNqWzS=9XQ#4VqHTjXvt53-KGapeQeUb@(|wl>FoASWOI{d}c^7#u$+OL)5vhp4r> z%vOZVJPraxYUpL&YH;abT8Tqzu=~DeK0K^}9{z1oSjzuQ#vsdO2j5%`UF?(jJpCHQ zg&vrpgF>tTJO^IsSg<#JdvkT3>GX{%`}!l>;e%@GT?3)*(8 zjgJkFx+=z=1AVjp{*68TtB!bF{nnQusbR;~VLXJ9=Spk;+yK+I+`kboP?u@;cakiq z!jyDkCGI)93g@aS=R@i&q#*>WME}?6WYEsspiK5O`0lT{kwdkUcovr$;BCEo^6r?s z#Z2W4W9&`y$hs(o&iA`XN!w%lr0Ie!R)UOnf<=W$^58u$wQh_#mFB1qQ z!t4)SO%g;{==ecrr_hne&pJsH1eLLiG5u%A0Uf`1+O)rP?{YSy$th`47y9hSbVWE@ zQcXVF$)frBKi7A25^Th{xF)oCdzIeoez#oT`=BlmN36e zSE~fPtMHCs`QZ}>28Vt1>|0&}RQy9jLxV*)Mo~k8Hu1=|_@)Xml7EgLv0=L<8@@-c znRvoC(@;fwu~Dq#hH;EovW&RQ(cH^o6!EWXkc`!=t6SnT;jn+JTX?pz5T5{Di#C zFOQRa4uJz8gcaCgzi-MpvwQ!|hE9mCU~gC-gownxqE*(ZArS(rml~Gj66Nt%43NG) zWtpX-^6T!-XlTjUxhZz+XJcl9iEuqrEq6{)qm(uu7P28C<>dX|`FtDyR@D9JgbZN- zzbDDpi^BbY*REq`^4QrC3&r*@M?HOZ0W>AlBe`;*Z}W>oiA4{yJwa=OOC=9=W@16j zHdCWw8g`*Wo%Gx;t?>-IoLNxlqPx-B7Y%PBW1f#-V)XE=&b&6=9G8@8J8F%imU7Il zEtnCzk?4W*O$L&_Yk#Od$!)*p!nE5=AB=xE?I+qRfaSlytG0dRL9O-qVoqT>-Z6Q0lMEAxJ$Zw4;*xsd(g0~ye<$SIKl?)57u9^g*6uMs(e|tCO7cg z8G6h={f_@8jx**4Q2_c&b6%3>r`&zlF8+L4k=vi_*t{|n?~cXT>xAk0mN@uJ4Y)04 zxm`TB;oMh;QAs7fhSuFJrUviAp2-y)QWu@Icp672e$_jk5-jf6DYzPop;!BNwx(3L zzhVyURaYvBw$Fir1p8xPJ6!vp9FEgRbPzs7b|^=*AyFZp5v%NYis4hFh(O6pIK<8m z3z@I}FV%OS~8+UI9H-Su)bSiyXfcGh%1 zKG4u*%HFgOX5+Q3Sv9SkmDzws((F+g7L*>rf^4tXEOJ^6+^-6kJF9#k+6P5m)_Ea$ zum4*yu9eu9PEYemiRB&UBJW(|QZvg%!JsH~lr#>*^W8r`PI6}V92-DfKSXG3o@6gc zK~Y6->->|q>$%4qcLPaen=TJ?LB1_tq1B80wYLkX_4D_f zC(_Bl=pat;k8Xn$s+I)_A$r@S(A(CjVly=mW!8f0PRRPk2=*lr)OQo{T4Lm|h7 zsHXNMK$1L;TgpG2@Z_21n7ad z&S9ijETfXq6d#DxjCxp$uUk-`kR_HQ=Q2Ws=I9>-LIJhU-=eI=w!4Jn-R%zUC8&uo z=2QW;6MJpg94*e<;)3>&eE=4@^GIyrDRoeKxr9@8#&A4K&Fv6fBFg0(1z3z?pG35D) zS}gz7CpUMm1&1N^^X4>{tb3x4k>i&jDo2rkt=3QOqh)EA1&;sGz^mxGbriy-mb9MxLw{Iice~^No=8X+ix-qL=_1>Zr-fKiDVD8&B*dN?k>>drnl08 zKAFA9-wU#g#pOH%!8HhI~1PJtzrhWlhFL9 z!BIh#gPZ8Q3}UUqbnDAGN|L&9pA`>%% z8NKfojsNM$+h`ReJn@TyA&F;{mJ7#pV}tj=VuZ^)P?)n9T+6?QIM@LD{Tc08 z%3@vF&_q)3_7_F!pOEdcpf(EUm5edb02=rEuxF2E7{O%qc@QX${KarR*7g32Pn7y@ zeFCcMm$x}>8YIr+0Ivf->p)~jkexprlBNDv%)-rrzb8X3d05}#a%JK$<6S)btJ^xr zkiOwEatIvDyd)#v;z+WH_L1;sotD4xcjbOTtzrIfxtwXX#hchWv(DgPDj%r`%hUpu za>s^0^#_as4D_?YE<_keBE?kUM)eKLElGnneDErTPau|>+x&9h?PF z_ac|h84(i)V<((mG?!`69q1Ej^B$I8$0y?!{*dvICy!Gc|Anr3raf@$OyuMmKN`3) z4<8=Fe{NZZ(&sRO1cY5;TeJeRgV)tJKc2X`xo8ZZP;P}?5!~6=diU=!>)l%PB7%_* zw%YqN=PR<{$*6T0h2`18^>a9h;FAZ-;?-$Ed#Mks>yeT{eCdV@^%tf517#~_8|EX$ z*}Qwz!2sRlST%{EKfGb`t|L5kb`%473~i>nEC3W20TJB3cGGLCYrc$|CPd|;Z1SDf zcIAi}m$*H}P~5FS4GG?mg&u2C)hWE5-rh?0P=NSI<25N5x=opNkfy?{2=Q;_|1KLb zp=8m#Gm8+r#N;@*j4xKWgO?mggcT;aCj|@dzr*5tX|CzDgCj_xNevtM?l_3++6t5Y zo%`26Sl=&T)SQ7))vQ!vT=rN_6|D)l8R+~k6|D!&{v<->I|aD^ferGbBjA4qm$CJG z^E4P#Qlck1U}YRF}sB@wBHSkD2bn zQS{v(spxZW>BNFAlu;UyQSG-)mv`fT+=`Ma)@m+MjwV{>T)+wB1o20!4Pq85Obv!B zuL18EK0{*IH;R}$WN*qJ{QtZh@xj}UX9?-d8eig=iHPNf1?;Q(Al>BzSjW}l65d!jk=SkQXi4tX<(FUhB@uJ+w8) zkvFAybmszF8GXy2f}@V()H*n@rNd#+<>Q9WX}F~9u}C;Dq?dBX1%!AN&t>Bg0uA0& zY>Y5u;Xvrb`whEf;jgR>-xtmkE7I9N$62>q|KRu}>t_M0T5#YG6zTzizhLQZ1F3@m zMI=n-U^iI_YpbYq4t0pI=$!nJLy5UIv!(d^*Y!xC3a36Mn~IMCx9befzFv$460H_g zk8Uni<5OH%tSI?}ny3yHbB&M1Ai2er@A(#mQLy^^ZBgWp*UR^dy5VzGul>t+Fgo+^-;nn=(0j<--0imDMN}x1 z8>k_n`%hc}r9A$x#HppW@c(=3O5Gw%|0x+U(9nSQ?{`V2>c)N$y@<%jxO!l^dQXIt z3uax<6$~{szH?n~`o7nnz%OuMgT&pZ)9ZqgrdIe%Lk_%54lc$aVot1WD3j_^TZx1* zY_)fs@dBT8sSjNbP5}DX$o{w3^V8m(u-2^f?}G~E*rxm(@g{G*TKZSbvB#z|yyope zAFE&}Q)Q_5U=+-&t6et6EFaw~8EQWb+@Asz)MDi;hScFLOYYr#^-PWdK0@re z{t77O53;HxO>q5kSOm_W*AK)Qt5wydu4N)x0|kWqtx_#FY)3>G@-$Xf5`X=aEE{>6 zP>aL8YB4gL=MxUQpXD#9-wYYJG40aGKyJQA>*=jYwls8SCzuB68cu1&!?_rDE{AVZ z_a#rM>_LVMw+QmsYi)K!jyCAuD*OX*Z>77d7Vdw#`h14FTIGq)vU(OF&e}UxRGd<# ze}i=;@?jRDkTjkVdS*$ylnXG1ZUw0YU2O^p9Q`)#crH}b0|+fMD(aFUt+~w#ZleB! z5!1(wTnt}st2j+NjX(({CO~6-4UIuY>^qItjO6Pn9Ppp}j}ocPjQ>2z^ACE%K@3a# zWDD(o=I6K+ihvuYpocxU7RO2H2zo-N!pk%!k&4xc?+VP#*T-rm@cDp92y$HV~^kv9B)#eVVOi zO*(=X@OpUpSW%`i46^x<7r zNQ(G@KE4QQCYSv&r<^J$lC%+@_UdHkP~1xb{-@z>a;)kB|4NeL++_7FWJo<(mIAhL^Y{&Y(LbL1jS~Lk-ENV zg{^!MGag@yEx>{dc-VCQ2n<9_DC}>1Bw|cb2&vrc8dH>upT?nqrDf_DzIjaq9Bab^B|Y>fF*I=Pu#{$ksg_D^7+@kk6Ej`Ky)CL zf8n@w_}4<8S5xKzSONyJa!%DH^z^N)s5b&GZIlxC6lUFyF#a>(6_gJ1f4QhhJ(79S zKKAZZt&{El!`NGgRT*vF;(L=)0@9L7cXunD64Ie`w{&bkq(NG`O9Z5(OIo_zG#fSu zNN&3My`1m)e)pVvzkAO0AD+htHZSX)YpyZJm~$+}N7^Q9ykT^-@^UZQ`HdkI6g~g) zy`rk>Pl9-AX)C$sOMk)uV=@vibu|^0;32%X9UVtU-#a{#tVOtmF-)N6K>+E3vCUXo z0^3;wQ&Z=LeRO3Yh!@5n(IqJ#HWFtAdh$$}UuE7jvj?w*tq_Y5rZGn#o8jDR8)BMz zao!48$2a|Sv=j%Zo+Zz0>5u7OIVeYhX$MuG_EzYN;^kwyc!wlzS8Fh?(}f*cd-c)2 z^tNBl+heMR=Cb;^+$u4OEg8#v7Enn?;m2D)jJ0rtxIlK+i)j8dZ#TRKLt|TrIZ5~}Y`Q{S$f}7R@VviIcIC3|diYl!+ zNl&r&dOjgh<#@o}IHV+>*1w^Qf`NFGqIHEo#MpMtI|1W~F0<5c4{Ug463&yei&XB& zOm%^IL9s|Lb-`{f$Hb2r`Za=8)aUJOVMFf?E#lfdxh(aqC9-#@f14tCJ)IyL-K{Gz zj8`9Pd~acebn_z&X5)MP^0&b9gJc3e;3@xN9Q<)01L5#jzyaFZ?QW7xmCLghZg2do zu5c0lIPR=M+E0w)a_Oz8`Rj1e97aL5!ZCNoz=5ybnqD^Nw)lbqR~_!3G#T_7Y5966}4geSgd#FVXdg7_UqbBFye_O#D}wk-VS_j8g0hwm1!R%4tXr|#$Faz zE|NXYOg2hn8BR#%y*4yNM?*jR307B9lF}~n)G~SIw3SymlM0|}!u-)2Bf!#t^GD_f z3jmRP8+2N61)}-HtW{tBv4`e_eg)5zX&A^ zBl`N4dY#MHlb_}&S_Q}73n=w|(?aT~5=eW!A4$y@h2TDYJF)ECI6TvVg7e;b#UnyO zp>(l0qvbOZT0xPY9_Gp+Jqe03C|55TWWp>QY1V(<;_q!S7c}u|NBcMtQ_rNXc^k&k z(D{qE9m)OX*o#-v|B?9`&U?9Tme~}?TuV7plDFT4S*^v>Bq;*LUT%BW@x1D6s!#(Y z8F0&hH_*n>hv z@~9YcAK`8^hS39ng@KYnvymhdvHSZ!W<3zPT7MeJ=Q#%zyi@!av5~-mkwNrARQy*9 z*P9id2zAbS4C)-VKNFC?IG9sA(dy41k&`ccEt}nH>!@-CjAaeJ%ROVf*ISNKo-K^P z#Ui9oYx6~nJ?SqgasrvAHoTt+cvAP?x9HQywVe$lI`pt;A$Bafv~L*3J7b-koS22Q zv@apy_OugR{A`MEcJ@k6GM~CEesTWOv=TYcp%m_=$olH8{peS4vg}jmmR3nIDAIwB zkApnLxs{F6tA&Yl<5_MtC@o2!=N3AAV8z~se7cZ^37@w;m`f$&XuZQ?UiJG*A9BAF zz(}IFaD3sm<;sS|9moPhu#97T#p>kv!G3C>E!^uollVV>h%GEFpZt|6oi41bq}%k)jkgcH#9zt z1n9Gt0jaAiCkEm{-HO|uA&0(JP>M;ic99?_B5~}2IN^Q3VULK8{4`|o%Jczr?8bvf zK-s(}43xfd@dpd>P_crZOn&;8R?mDie?vbF2i z_|Z9a5t;9EV-fnqKXqQeskvo+s6dFY)K2GX%l64{a3~#z>XVDt+7WiMNOZFO@#BJp z4XY5r1LdTm&^E&$zh>l4?X!3CwdTDTBwj0`(=n;{-1w>&MVzavpVk5+xk=O$Lw~wd zzDMbomfTbNyGb3$?wzX5^Vv0^aq4>~Wz8y-aHI8d*ht2A%c78u!xG6LuCCH$GAyL7 zkB2elh>)FIQZU!y@TiC_)dN>`9Z_I&+I(K%XNHn6QE+@+LwA)raPBw{x-N> zHiUq!QwL`y>0*DLd0l9EnVw`g;R{~$-iY?;IZoc5TiC5&_F4{A4%1R9ZPoEqt($A@ z)|S=J_b2dO{@8T`VkRe}{j=K}TXZTdxLb#OK>nc&dHp)B}4@a>3*{n2{ z`92+Tc$w>FpvCV;5QSe>rcU#>hd927+ex__dg?0mXgZ*w^LMozzo`_cD$AT7c3%76 zEXR9a=HDExpQsOq^5Zid23;}--d`29iHV(UOsdXv_?BV=9Gmm90+6l#1Hf%sM!KAs z;F7pHRn8I#cp8qoKVU9TE$!`HmiGo|8$)GbsXz?AzJL!Vps&H}JTLyZ)oezKKCCq? zPAx>XTw4{<4ZN1*V+&fWvqukR1g-{uZLN#@lzItAQj%yvwAHn8T?F&E7LS}DaxFn4 zOEgF^XJF_0w_Q&{LMpb%BBycr=gxf=mXD=dv2+mS8%u&NW+v}3_rV>3t)RsikKY}M zI!^4rw#dnI$)d?t@6y-&+bRu~T0N%wQBdGe{Z@d`qz-!dEQXgiA~sgvd(~k0aw1=E zRw4$znVraWELB2`?q2`Kr-d_ya|?y?w?|q3r>kfX)!wepc+3OrROntWfC}niocJ#J z>5-IruH|@ql?hMj0Au@YMi%HZ2)1rKqSVt!6^? zJRJSV6;5=j5(Bd_<9Iqyl<%m`8O^BTeVO@9JOZJ+`eQfA9|0JNywP0cbo?_=5#~ox zcHG8(fy3Q!~aizi(+In%j;?YS5 z_e0vsYRL!#g?&>bQ5x5l?DvcxdUE;Zrx}X@RevS!!|x0WG1~B@$~s z1g!*{Bq*G9oGpe+Fp;fK=w31kJkX&?jO6;?@Q{3TX$cmwBu&UGRf;8JBPf5+LCQ_z z5Kr`!FRLblG(4WV4`h;j&=!-3|?JymGebkBZjHFbecgyq`LVPL}TBXWmF;K-=K#PTw`Xj5WRW#_!% z*^MuwI66x}^9`VxU_9PWb1C_7_<)_F6!u6vJUPrfAl${&!Mz`ryz_dGe_#4=8UN(z z!Zq7kCVv2sZR=jP9zO!xP10rCRbU2K)KNy~ARa)#6osPuqWrTpy z44~Yj%Q{@{3;U9pDf?DcTtvjr#U`jGV##sexU8&7_PzAe0$N(&PMuHg^l59myXvn_?=cm}TC1`EY*fVdz4o#mAq)cAPj? z;NMY$$frHC3qoIUZu;0Uq~YDvveq%@A(oOAPs3?CHxT6DfK42Yk@0;ZEG)JmEMBx@*Kihfk`-OSq_>H@pR~RUw)OwU{ zMY*iIqqd+D@48Bh9ZA#q*3UxA2P1WdUnT_HMq0mMC@u(4_|6?q+^?Y7er6{q9SMX+-3l}pYr7VIH5P9kXOsQvkE&B{N9_R9PhovedGRhQJDfGzpR28 z6);N-AN)aD)+XjOd>87TmUTU@WLP7p8hYdQQe#m(q?+Ty6HIt>d*lSlHQRIQ->&ZN z(gQHM70E@qJF9{briSWiL@sxxYgL6J#bpjLrxXdcZc?LATqGQJI5dTrjUOL$0@rq= zO9^Q2$DOpRHc8AxYrqLh7>(W^;Gh{M8`SRX;tUwx8GjrCtskIz}g!zineK3T<;5DE}+x@ejS@x>AmYgAcDr&TaazY!n;LDeX6xM zzXN)_-y*RJx5{9%n+mwvqjBw?$^q2_^&bqje9-M-O^X$M;IW^iRMtQNGm6UnaM0c1 z_TRtV4|ll_g!=mFEu&({E}NReAS2=ZVqYr|$6MjeJyHm3X}k6~c2_aWfTx`%%@U}s zBOkxI{hXCBjc~2Cx-DXEu35b_{L?4I0=cu9nHiGgZ8s}YT(}$UyQ$^ra8{_(3wC-k zd!6c!-FT78y3S?}4oEi_4g_@*9Hy;d!ND)~R_lyMULEfJ?VfKLE;G?*mhyV&q8ZC- z|G2lO5)-dZBP^_uEcW6{z`-q%#vaEqKD5-_;fZ9YyH2ux-h5m2w*`j34;k2U-hWr8r$f_s$TTv-O;#ot=q1gy zcneDSgAYcEY{Z(IpUj4pBi&DoEC{L#Ut-ESs}5QWEq;^?6%VZ zB@vCEyX>F!tH$vHXE*G|@D^?XyMawZg711(h<4<+W?yVP(@rA9+2%AaVo1v`IAH=lGV{~rX zUlM3QBJC&`eTR!NfKqMbK!lYwMS`U6%uamgYhub}FE20O3W9ACr2t`^e;x32vmNK6 z4|5w6GW}EZVQ2h-Iwm%D?cyPgy0E@TZzMUNjO`2u2MMB^ng(CJ&y*yr(>`tC2I+Ft zVRxlWn|!rKgK4H{jm3eR+!mD2MnFbi-5g38P=DfdEiQ^4)jFx64VrVpi5yHIVc zCZDrwc3=Ru@LSOnI6+cGbTrXKmVf~)@mJv+{bWbO--XrAZ=^mT!L&_p7h*+`606JD z2m*;0o6wp>#*mOQsRfLQir-9`KRbfYw$?E42AQ~Y&wwuWVpc3YaMjmegFjw>Z(({1 zDgHTv@>s}h0S1@zsoH=slb|By%P=NP-_*jE-OxW6+({zBBHzOf%R2aiD>PINd+fFF)p+3VGLjv8hqaK+Q@Z3`MSR*YIm4 z$1yG}xE)H3QUR}%ER-?ujm|t=`;z3$X?~O!AdE;OyBA=gKDBZTg_N!?cU~4mzJ^a< z=2gkgR0am>lATwNxqGQ@dOZ2r;ogEFOvWwL#Eq32Ve9b}H_yukPgF@KPbA##;U<2- zw9VJHR0P)0*n&8iznL@2VIGqdIbW%;$8T88T`^d13>4f^uPk zoF6QsYH8b0#TffS1(ycWTa?$`?Z56*TJjZqttCt+vu*OL#-LmlFJPyqSA-m_C2)Iq zdYW6l6)qW>F5rurcObr4+_dalUj@W+m%Dyr4U(*1r5hI3W*^Ql>FC+pX(*9hK4hWl zv{HUp9`)W`LDep{f~QB}3`XYS=DbGjvYkQsXanxS-8GmH;Nr0Ao+^l~f5Q-5lC`1N z*3zjt@_i%LYJF_|GM1yw{f~q|vL(!LQE3S)V(R2Yio(@sIfKVjwe{xg;yIJ_Fs4F} zh-OkyX$FFEVHXhye|xGH_mbn+N9x~uy<=^dq-oys^zu({21W|d1V^33>jg|9+b&Kh ztr!Z6dtJYOsbn?HhJ9fQEt6G?#^d;*aYY=G>zvyXKT333TYzEWo!90kC7rC6W!eq~J;TIL&WFq-o8i~!=#wk+!RsMNMJ0gK zi|O^BSd+PBJMv!6IKc>!<#;Ei-m_G&kt0=aFxVucpQ=~$CxE3+uL)Tz0 zU(T||r*?i}lV}`tcWkY19wrknYtj|DnH1u48}V3?kKPel8S=B{v4YfIP5(O04ZNmT z%dLEEx(dZ;jBLktuG5)>O4wgv<_YxVF>3byebfkoN>54}8*xo3#e>~HkVr+F zX;M07M5-3wo*&Fdiu-xK6ldq(;C&7V2{PpbEN@?t&mI@)!}xkKJDMoSCl|HEg-h>WAiJDp zp$2HdoA@Up_nPRE8LeO11!KtOqrmvwLRyd4%tb<-8(N+@I2cR+7Y&f>kq6R*tM6|eRbq&xJO-6jjq%nOOLUD=Bdr5v{HQIRqzLz9?>)OtsM zOFJ-);=M_R!Oh5}e~|-o1MpqngyFP{`3$7b>=p9W99CmwJIBqQ}xVX5$EY#@mFxHi>e6UUV zdBApb3efI8POury1EcK-7nFpA&Cl}~orJM69n4-=n#c)BS^AYVT7 zjQw-VgfkcN(VMTM0p*I|Ww6V$G?)Uw%^%DPM$I!K5UyoqOa!@+a`L-DpFjY>|G3nB5#LW9=&2sG*iv<|HiD;GwjFuITcTDhuU}Rb}fw9-?JI#4_Ri}=>2{>(ffyA zVc;ePPC*I}5a#wX2s)RO@!?Nklb!zCP4)%}Qek_m)CYVg^Jei?3Nl2Cj+TJ;@-GlB z*4*5V_;qQf^SZ%AK5LabY^o_o`jc!v8Lmrn;!)N=(%#uyrn&^4-Gf#nrs@7ZnU2xS zK&9IIK?o}CC?`}pvFUWtN=$x1tR65Sa2@qWkns>cIO|zMN}sa(;;#I@u`|}~YNZ+Q zUR?~`@=SSu@zp_woaA94-+6}3#BJhbnTL}@#V-Soe$jTBmrM@}lYV;opIJJd3@W;^ z)jRx{li5kJXGbnbi@uKTd!gKKONA(18?Z>};1W$oHIXW*M9;F`#U@51~K7aXONZLb^P@wp}(JcSXt|ybD@zY^D_fNSFZ+I=jar^ z{0;+KV04()SFYsfF7&OQVcThpA4|t-7YhT#bz^-ejHTLR~LC8KU z1*Zln`mr%>PPpjoNaCtsWU>xTAh;05P%n=w}Y1a_XBmZ6cf? zdi3}wC{~Y(!jxH-E}Vq$k^OyntsK{97VP7T=32vT_SVk;dr-`h*g0T_pnh(Sw71_I zdYh5OWB%@)LVa-wT{Fo}y+I`@DFrdd^ps}rOPPBhj_(N*tFysP{tLez@j!EOO0_8( z?AVr77bv1OHB)bJN|Dx3U??{>#+hpg_(jDfQP&IFH=@Em2UOfy=DJfP$S(A=rX9}B zAR*aTQlDv7!}=vQiu)tOsEj{Er%{&&vUjvCyij7o0|mJ1HtR_xE7|Hfc(#47V1xPg z-V>UE4%A=B-#`UhkM5hTG@|{TRjUT2^FHj_rV7k@j4Q?xL~BgtMmu^fgv*Y)Wcb`> z2M`t9j%qHpkKy00d$%)H97oj|J>6I59mj~7j&b|?pjxbJV-7lyTs^JbX|&En%$_|> z-lB^XxxE?_xxKHX^c&H0H1oV4ERs!@!npWZxo%)zm*3t_*(<=p%8HDWePNEOT@9%M zT{i4C9!&@NQg&Xz58>BmhJ%9&J^7(GJ=a5n6BA4vCe3j>JGOhv4LCJ5lTH3-#3HSJ z@1mlfy=$#)L+O)6J!ty$NzP?+fgKN}anXT^lU2@Awj8oa!nukU?K8EdB|M+5*I9)& zSyD!i%LXLbY_ES`24HmUtkqQ=yyP%$jxrYY%4;qra^>cpYp`$CTl^!v0PGUhMK>fD z&5$_s5EbobT{aQeHw94!gZ-N~civm40Tv7c>nZI-Lhg;aAYr8S@k2I(Xz5R8K!AOT zN_&3O_w5#=4prTW`RD6hOe9{EiS?{m)gP;w5b>x`IN29@}LjopB{oZ$k33o2Hi5;k9OW@Ijq!!_xH0E6czgy8YwhlkKN+4JtZ)B^I& zosd*xWHwaj76iR}!d|&Q*XT$7NnYOd_!QM)<-42;Wp%3y5&Ffxl&eO^7yXX8N3e4e z|4)V2uX&&_`)|M;w?9)P)dao-TK5qZf~(SYc9>{rXuTn66*`qtG49e{Ev0Pi?ER^u z}v1y4Xl{zO$IMG{)z6mJwZExY{o{XEmzAz~1j{ z$#ZM-%x#dET^SJ1>}pU$k#|+o+aHsqs9%aH*cg1YwuXPZY5IWdwAvgU94sv(pZPf_ z=c$HYZ*!$dJLbb*MoF1hArCEv!zsB`N1~#By($OMY1L~-`Rx&Lk^SM+)Y2O7scLI^ zK7YZBk2&Sj$O-$wTt{X~B_3Iu_)@$28^p)=xhbV+*i_;xzGY`we}6I0!zJv(?g(`W z$xltdJz(?AL?!fA!Mq?-r$4V6C6SLNY{{x}NFm|MI}=y$K~y5_J+lPJM=s2xfg9R1 zS)eSdlgV#~jjKM?x>ZI4Fc=NC9Id97=91;{wu#Hlk5TXY=F)^@!rKr}H#-uQRqU=% z4bIyi*j+u<&DHWO4bt>%1~&r<+0UYX+`A@QGp@~N7Y`~&DSE~^m&*{*H|y!|S&kF$z|?C_j&(OCM)f?G z_^faD`SsD%f!m%@I=dCcstx5c8gc#=I;&5uQX;$f4uz;Inqp+6P1|bBhYH<%-?zoybLHY6 zsEoziz5mvP;}O(dk{bi0120J%CGruBAKMETSe;7mqkB>adiDDzKOi)L!zY&l^CJO7 z>z0=o%eTdEVs0je*ZOa7QPeDd#nJ`DgE~DuJ$NcHk)Ba*Fke>a#sWm8))0Ep2NLtf z3EdA?(rxqmBcZms15VN8k^zLRO8Pn7q)@%2hqEH2vvH6ZS8)U~9!jaT2a9Cg5?QzP z;Ti1Cot^2I3Lbwk3CsJ}TsL0chNr^S3bU|5Y3eGwhuU0x&+48vW zg1jvV6(cbQ$H$3^)l*rhpGEcb5e?H4f3A&w0kKW$<+n)qRa{0=xCfP)XIXe^`#S}+soNY>~Tl9e?jr|InluDt&k%G`e4ml}ijjiSe|A1H_{A>I1dpB8rX zYJBQ%77V`$)aZR4mMHU_8mA3<`rv*yEy`e5nkH7yK1XFqIFL@Ue{zN+))5)$$|t}_ z!%IuKxoLTD`AvuXo7!FPrT;qa*8opqonfN~I;;Sq_3NSps&nzhp`e*IPtk8<$TAev zIoDV>&F4N>`gz$_{!JY!`MaO`1_I~zby~f*3q}P4Cm-Avq_1V7xTmZHGA9>)2Pe<) z(b3UG+$)Oe-n_cwoPRoSwK)}(69C%JK_rL={85TlZSFtZ4Qk%kKntDdLWpiHOWu)Z z2UU4qJBvsvnnUHT3b|VZ#yv$?cb1Cn^IC&4mmND@THzD~aDpptnqRyUnO>rlg`=aY z1s`9#y4GwjTB_&TlHs5=2Fc&L@1NYgrZ99rPkwlEdVU^hkLxI4?WYohF`vG(?iDYn zL!h^QIA|MZsEw@k0`*U%aK!z9`R*c|H$Y7)qLeY>Aam_pKbPH zWbz?Mx+if@rmZcUSXKpde$V+iJ@V1fMoTkPBTX4CLmWvY6 z*9##BpeB2N?WdbP@e)0K%DN~PK;(6|G*loeoh4q_G5d~T;+|=&VRR7?z`6Ov9_z4o z9fqqP7rmYz0hb+`q2Z2RmXN{fkBXUs&2sv6O>>_`TWDe=f9&-JvaW1b@OX#V3#-dF z0Y_3wdDu^%0@h-^$OK?9Bv}-s#H1t?qcarPWQj0H8RBbY_0;7#Ha_0|*!=0q0&Vub zTGx(EE^n_OWWJPg|rw>kYCaeD0B8N8mtC^ z;RM+i4GiI%=99=o{>?TgVeX3TwEoNNmI{)7TH`w>y08U0Y4eOnw1PSt+Znq&H&#(0 z%o5L6DIi{LQhG~)Ivbo5p6l1i)P?9UuhT=2_vv^t^*9NrW1lZjP^yIFiNyKIA|*mq zRkfhFne4RoYuh*N%ffI+{La}cB4705zGHb}Vd@E7j<_(*K78rG_(Z}$dLazXaB z7m`U$SCVsUltxu z2sl9n*hreK5aP-sHBK^OCoj-m-+uXW6j_=$*f+`R!Q>jBM$l(#fK>u~i2)I{x@fllarT;Y*QtNMt*Q~a|dqStbQv3 zoR=wMUB|b;ahzk~wx>$)j)VUUzCV4z&1Kh5yNh)+_vaN|??)?yvhD~_DGaXMO30V8 zU0&7rE*+BhoquK1{=*QhKOb4c&?_$=xz$1r=^X=v zVtAE?pPk63Sr{nX@isMb0hB~hhZK^);_WE#P zHXDVx)D}Pz8cM6D@ir>B8=t$*^&)PRl#Eh-xsP@3dlecA8>dM}+_LD8yl?eP-(|Vv z<@=BmDnKz<*93S9%F3=ieB(&8$KfCYo*+J4=!t(8NvGsps3Y$2r9qs8Hd1j-Ifj0E`rt@b=34FC zS#Xt14)oQ)=IG6JJ;lRt1EVf}f^u$<+qLQT^9|v9mtOhK_c%B>P9TZ#px$+;7yjzA z{VK!<56@O`Q$>)kepXHnCcx-YUth%?cWX;AgPdygTsA7;-VdSi_?A2`Sb33w7PBu| zS-orFPhmCA6mmusoFP~5s8art^8@UV`>W1O;J%W}(IJK}>^fqtm4p@1)3>R;dQKbI zU1=3x>hElSVo2{KHMaD^ePZ0FknhL{ET#NalD`PKwg!;Ol3{rJI13+7BN-mX5Gxe> zu5Jn|dIK~&Pm-C;RhCwxpNoql)zfND$dIt~Cva2!t?gtKxQV!~pBudZ!U4XVn-jYK z>wFJB?K=9!%K4J{1(+a7%ll;1OX@7}p(p6lOF`qd`nuh=Ne45#h)r#si$Vd#faCnu?su;47 z##P#W7WlH3KB@2Bl0$bxs`Rx2roHmiD~X%T5J2cu{`=>H613}2hpSP$B%~vOS!GP9 zBat^+vT{9od54U=?EEHrN zbM38&Fm79*0?hHR=*B{J;kO7j|NI(kjC7PRsd3xbc}WfoLI-gK=lypt030{);iC5& z=~uEFuZJVvrFJOfVR!t25a5p8wwbSs(kBHniR5TgC?X-VRz0Vu*jD?V8ZC4zEJ`EW zCF6C*#VTclzfMo;$U}XEq_u;m_9jDN3l~3Z{vObaki4fqoZp~Vd`=~e6;$WT>#!#rKVa$u zG$bz!O*B~kP%*LZdr(yvn`?|F;RHRXRF+}&YX9bP8$SN1Voyy?aq;kkD5q7uzc_Hb zB$2$$DZ{9O0+_-r-4axlb*?GS3rhQ%<>vWM41l>PKXV?y)J5WH-*0T!7;J2A($LaU z()Q5W*xC>LsLVv%)~QFL2A=^EB2>o;s3urVyJdz!Vx(s??-#kbA^}a<%w{P@_u}nK z_7?`XUKbN|CM#MTN?T38LFS;UxU4W*Of=ZqoAdytd|)pLfnn$8Pus3`y4)i>`ry;|DMKf8UgGDU4uQmy?KrA|H65N-#_{6?>AogTB|%0$+T1Dr)J_Je zc!5Rn`a32QYF9a(iLyQUir)i)QHR?oqA#x-!f$VPG?Nq$XhlEoHs5_W*De$XLe9z( z@#T@b_+Jk%$|u2Y1!+8ug@GSE~y|l5MU^zM;1ZZT(FOAo~B~;V~3(7wemh z{p1cZKzjJ!RzaQtBQVIf9A{Rxd{8N_TYhWtdjpSFvW%i?gePtyxJlxeau9eE z=mpOX3uPYx!~i41QM73rYU}c+AVlF|x5bo~qs%JuBllDK5_qiow8!kDy_sAG?2-T8 znG}nFRstlS?K#rGn^xTSjq`|&q*c5RozzADC=38<+VBdK!2k``T~1E9Xgi@}Q zm6Y(X+ID?jsGz~@M6hlLeu9=d<$UKufz{#hsdIeNDLnsiyG+4?eqi0qTry|Q=wqn; zF&>Gd$N#v1JJM^=&MWqnz%4HYC6!lp22rAdv#h!>c}ag%1Oj0&qASJC3&K@k(DyV0 zaYTQs_51}g(($p}0g4*7+FuLI$S(Sun`1piz^3yD`fr>&Z@?1Q+q|SPaz#aS7?-N1 zLQVh!s4jUXl$i9ar|8w?G7w9hf4aQ^Vj;$Np%%!PmHzC+j>@Y-fv#;}pd&^hia)fI{HF?4l(k>kIv z(c9l|$D}%pl>)vzKE>Qz!R~rpZsmP#2BMZSlIQpoF+@BOs&GWXP!ksg2K7;{8SJ z7sPdqU(>261LUHp_{h!9?z_B10W#Ud z{46~cF;5*2x2V0muYpKn5&=G$@P&X@bfh7R)ni^u{!e*rEEnK~uyJrg1M3_-TXI!H zyKSVD+@2*SCVB+?4{1f7fpLWR_GHqpX^M{qjgZ8=7x(Gg_pfa~K|znJx(XQag1u>2 z5E2I3QfZ*9XWTqIQH29`uE#TEK#>n4kC*sJF6ab5>Op^__k~k}a`ykB{Qy8mNoWAh z6w>#5UaFS++RlLGd~YQ}g!p8$X@?x?8sRae5lZj&*=!0F|iD0O8ujR6D zgwI>&{FLmxS9VxzA(OmZ@d5_!D*OCV33&l}&LYtgs5)u~S?o)(yDU?5Q^&|4!!Iko zW%Gd2-kKbUsXU%=>^iJ*{%8CWw?|qkYHBY81A$o3lD$@@kZ)~4wuW#RurA{s3$Qvmh+L9V;z{umW)0)pZ_oEO7P+2p>L1v zd(f)WBVN2bS00DU>@yp+dlCelQ$L^p!zeA;s6cLP)=Kyf(co|4p{?>a&)zi9ghNE6 z6*1U@?s|5OgMEs-zPK7lB|NWhm&j67G3}$g;X#QNu%Bb2|BmU5^*PnRxSU`y&HHy2GkSmu2?w<$yeWi^})k>{^mcV&$p%nY1% zT-m4J0Z~fa0{{EmURnEWEbe%tnYWn%Tj145oTdfi01pT%AC)E!fS=*i7#zOGLZYe9 ztlRG}D5P;UfVx6Qr=YnQ=WWX7x^yrVX~)f9<%r10Nrk9XYKC!;X@^yQE%1CS^gU2q zfbOxSWKjo_MzO`^H9%2IRL&>)KL*Fn$~wT+45XP-hQ62r4Ub?SV;yq|aeW-k6ojQa ziw9qNAEx^rm*d^%_@H@T^5gc?0{s~?)2YCL>$quOW8-+PZ)CGK&lZa z<+1yc8UUsp?ETYm_CEqmMjRj@j@IOJ*JSo>0ix`MFtZ}t$E#DVRVi0je9n;a668&A zd>HsL)ExxC5BaJcdU)mU_qShvfQ?@#dHZX2qBqSsR#`B`V0_hVS(SdEM$Z9wML~4@Gk2qkPGE_QH0=ZY! z;6Nw_lL-*bDE@A5|7_S5oSa^aPEIELX4;4*8+NrGs5MSL4j^aGe?iXX%6oau*4WjQ z?csnbAl6!k9si9JG6{p>R{FR~=G!t1s;BCaEVTaM@IUB!VesYqzQNnagm0x4bi6}yxg**BqRUH3iRbZR_E za0)>ZbYAYs_KPiJ;*<`0$oqn5_ZkOge@hX42?R{+9E5d)nTCtNG>2b8N=mT87B(Wx z%o;@XHHM>;8rZ>563R|d2)U^^sw`q2O!UY`xC+i1Mf>fLqYes z_u^C2)30*sCMR8I1O#I*G=jg2>)z#JE zgEd-%!=wEz{1sfnw*6`H_8RS9pRrd`n#m#Z?^^MREW7-u17Dmk*4nZc6ciB0=7PNk zwa8t$=Z=>>FGb5AfdZa{8j8vA#M!W86=Rdr0(Qh>@Z6 zQQ&=K=ICXw^5%C3)Uxm$aa2dkOf-V|D|91k8BL)%JzX#ws-ROEv(zu$2S_l!-E6C< z)~{a846*WnikX`6^13L%wlKix!+>$i1ai2&Vc9bOO5fgH!|-ya&{E7CGTE6TYYwgD6Mw(N9oGU$oQO)5IMp&fSq!6 zWm*zA9LG6#AKGvsCbB`=*?E}?m9TFt%+CjNb8|CsaG>3_c~h^hbV}!J>At%vmPKj> z)SfXi=s3yUK}l(8SADNC{0(5n6m(QxJd@#*-3Ucv!(+d#nkzcd% zM!C5-z{7=6W{a1JzhzWPFDhXO{Z;Z0Y0}vsI;4#P;o^SVE8IIUkdFw&5~!-c-_*2O z8_}}nC@8GJQWrn}uE*qFGm6?3{z(qRh#e6TgI70*@o{o)=S1JmZH*tffgC3y#)G{> zINCOP76-pc;nc(u*4;E8PC)7qRROe z#Y=VOfIDy;5$Tx}-|qa-ub@|{GXsUvGBT1N5Ru4hVM%d~6z$X#fU8ArY za<2U2HAPVLqF>{*E91J?-`DVXp6BmfIDYf2KCIuVtHc!McYpzs0qD0&BJHH@%t2`R z>r`L14Q$P;Z4oUy_%1F=3l<>VM?P7N886d*-;2z35u%$_9 z944H+lkErHb`J>xSep^b2k>&ZY8_+{NulPz3AwMVAPI5t(1&Bw2P8)IoZwNbaG)K5 zAxTk+{@OVsyVd!S<2EZWpm?-xUAz*2rPG%>9_R6aE15%qW z!8`r0*`NxnuJJn4!A|tN+(XG%AQ@-KK3Q(ACpE;OZt;E1+%m)z)WuW?x~d;NIYjv= zum}|Q#ht?|;4bm?6Vy4BJnP$r@pi})Y|uD({R*^5PQyu<%Lt+eiSxqYlD}YR8^hoU zBq%1a+{y_ueS)Xu&(YQSu9YAUut+Pc$p`DF+cI%-dLc<1l7NDH8wvAraJ@0O z7T=$tv`Ih~y>2zooFRL&9eD4~K}T3OxyVZ$p!vt&Z;1EqruUE_mjs53N^=2PvO3{g zKmn=C{zL*T2?m;W?P6VSA=?2T3I_YfUv9TB^dF8KhCt?#zjG2&&$oc;Y%Y){PT+-U zxbBbza1aUVtpp^X8F7WaQD?T7gP3k*CINA>u$&{^&QSNMcS>V{kHXeZ&|r8_D;DdG z46xch;p-R>YzM%G&2XP15gedjnTHW50ZYDgaf_P=&)VU0^6Wf#;82y0lS${)vh4jPs4Fze$*@*_!vk7q5ccD7w{$@z}>10A)_qCvL za%gowY=Z0Wm}&ocCHdr{WQ5qJ0%&8KB}ScWnI5-f$ta<0}gl#REG(zH;IO9T)# zROlK1Kla`-s>-k37ha1}LO_si5fBlO?vj*7k?!v94(S#Uq*J;<7TqBr-Cfct-S6ao z_TKL^#y;nH_xt^ffrC#j<~`TE=e(|8O{!4FnfziM>qAH}d(oxa8zzdyy8xmtvCW(1 z;b2%^L{yllkyuh9Y~{`7=p4uE1NW*b7Lf*PWd5ZT&`gY}E(_oSJ* zYJSPz`*o12-s#`{5d#(UVBbgnoB=(Vt6PDtHGsN$+yCn6K$>}*#>+YW7q#(J$=3$n zX2^ve7d22^jERkl?ZQ#b;LGdp;)eU*lJF@U=M{gHH5U-n9 zMMWZ~vle9ks7F!#zTN)px3sn8Zfj~oM8;othl4Rs%d~c?hVS-v zb|hcX(72bZ0Lav=dt4Xjrb%3%iUUldBeT-Y;~hj4$`)C!@MwD(4R?;r_uRrfcBk2r44J{XiG z!7&*Iyv+k)fh7i*tp2Axl%kLDR;oa))lyeax(CH1EHmVJ_4h29>1IpRw5ttl2}#K~ z<{VK=llS7*OFox{l_gD5^XUgOH8|jAZ5WUnIGQU_^u0h-+YRj7v0Q|SL2R%89s?q_ zg5inp@n9(_w9{1Y$?w}AHw$cRbe;HC^YuZatM3&*$Ja^a)4#wRf?$}M86Jj%ULLEc z8wzhTk@NDcF983-1`2I}{u#$~ncP7B5na%;!+N+Jn>zjzQ>LJ$w0fqx6^aw@a@A#w zsDpkXmj1OKH%6nEgU{m9f6lja0K$tIzdjQLh4I$+&Cop-tMPeYf&ATiV_XJMSjB`J z^n}OqxT3KmDQAuy2+^7k+g#YTAJtDf}<}FSnKrd%uq~e zf2mZt#U~PY0dJrP;mZogF*WEk-W)(ZcAsKIfOaNxL;BD?XyvrqpK-mqjh`eD7|L$?o_8h&O*NzyDqhf%!#-YT=gM91|o#eWmLLV37Zb zUH|W!{jH<1^gB3gY;2e90AqO-6>@`2chw|EnIo41WZX6r35+&JJmTD2c54kfT>HF; zzN-;e&%16C)>^0K<>pkd5(Mp~cuJQV{bh(I$r(A+J$|XU@9^ra>4}iotIY#p(Ad(D zc73Sn39HlobmRK!0Rx1T;5jt*m&BfS_(IJQSC??Cw2|@tK@@+TCYL8S505T;vVw-j z`XJq=czRDBs*kdglHT3*naBNzFf6i6u9`vA+M2Agsw(>H*S&kwl@oRE&DsSkVR7*% z!Ip}Oif^uO2nYDk<|^TuA1Q}Vshz+c)lo3!_^1MWj>n;V@CA47*RNmSa+R{w&;fzf zXXy9;1(pHrm%jGY>iK@dbhRm8WfgN5O#s3dFlhjRpq}$Ap@A$_nvxJEs|m7nI3Lcx z)xm=vMV49thbTNUvTfGjXX1iSUO>;L_!x)IivLn4l)0V)Heu8=5I*s283txaOk7;IMm0M1 z`^x{CC1Y!Aj7Ty804AV}7i)EFrepi;o?Q!TKMaRWudj=2uJ)XAV=ezPQxwc_sj27? zEj6Xmt;3?E19&dneY$^ko!z{l@fGWb`}9t|1hMRq)B;Cy^P^a@2f<0gWl1tzfI9R) z`au32FT%Mnl?GB6TJC>a3stp=)5=_cj4$|zoD+Yx%)Vp_O z?I~{FwEx*HSGAn3cTG)<=VNE`tv^xj+&ct{-OTJNqJ*-=&d@$)v}aMlU5vFBYN&qK zn>!3)XO@#C1%V?bDy$QaX4)3oz6!E7?>FhIt&FTUR=Dgp#h0;j@e@Hth+}s)xr10jZh0|XiQxKiQ|aw}LrC~8}Gw_Qbg^dyBs zvhvBeH95bifwdnf$FZUtb8FydW(f3JAT#KLyCLAg*U6;cefeFk`!&!0Czz3_Q^S?7KJKl+JF&if5( z?@-e!0`FV#hazR<7lknrRqbbukBn2pe`5$W#PY)-5OT-|5h2BY^{4` zNT%gD5JI(hNs{5gkH~;r z;el}55FB1^zYKKN03@3z>oy$*g^^bF>Z|-i`4mFEPF3h-)A+-LZ!TW4^H1`fuXlZE+@XhV-Vb|o@u65HZe*R2O$*0+R*c&X7lbf5B|8D83M*njB%RK6Y@V6c@!~&E3ZNl@Ag&UJJCMeuk+cYS&mUtwZH$j>X05wuk?bk(s;}!7VeEalB-nk8v5)yV_c6Rda zn^2?`4}|*&G{k-KsJjMgn1sszNnOJi92p+2gvXhUlHGj{)i~(r5z6H!aXQSA4NfcOJv9u-VB2NFHI15x?I+qn1949>+7%h zA68$3t3A+)Cf*#F@3S|&Hmo&Ww-`UZ*A&3sBtpZo4s2a@2~=yjo0yi&^vZO<_lCfWs0cQk z|MXk@cY`uu2zd_7jdg0&I$tJMpPiqtWk(4JdwDT5A4hZqPaP*j0L;<>_Y&|EFz<-d z$|vwPO$N;6wqSut)9~$eK{PN_*O}ht_*g+_e@3-=S?fv)4D*kExw)CalX(mLAZVS(wLPeU{J%OwdQJ z|4Ah~&&wAz1I|SmSv} z%IQFVf14B|Z`jTb&O3ZG-LIUtR$yz>wod@q@_)I=|GP636x4utZUj3Lr-Hkf$AW~q zfx)Z3KFOnL4$|(OiHTrl!ioQ1bCqI7HEKa1j{HLT`HNN))|dPYvb?NYu3!c<0EhEm zu^)LUz(xLF<;t|I%p)Dw-l+jiWrE4E|?l3Dm}|mEZjU z4qOW=gn^1`Sy#t3{nL>}`bT~_@$(lwThpA>G&BJ%fWvx4{feA{LFra=etK>npD0;y zsg?Yn&NmGu);>lS?&=O+I5D+`5(w{^m`1D`x{v^6`L;lF7?9lmHR}H+J^_8}(eW`d z*hz^>EJ;?iMx3)lNJK>uRWv`*A7K1%Bw*FX;Ei_YiX~+FUmpKi9N;oZ|6Z}&a@VE( zxGBRfIiOo1A;^Hb4k2L1Aejw%xLdlnmXHX>kh02GTB}1^3v5~iA1&rJBfXfe zP-$X_?6Kp;=}LD=L;0MsZjD+@Y-&i-=g+IUoAXz68HjxQRZc)qp||_P5qyq1vlG&? z?gzkV{xLu=Fh*LYh-Z15%JkUIQ8>0kcysLRj8SMYtssjN6A{`?SL|kTsR0va*x5hq zLnO0?9iyogdG9ZEZ;x)u$f>AQDL$_|gJ<%J5Z?BElw~M716jsIYP!5QI19%^3u^_C zmUn(X6UR+?#2(m_Nt_QS^i529kE3;xMcs{QB1ww6?rwgo)Y%~d<)Es?LZw2SFmjJr zda;++I)Ys#vqE$_3UQ8!Z-cjZs+5nE}YB_)XO-24{`~nRfd|<*gq3 zWe9fO@Z_Seqq*{0vYbF9eKH5Eg;+6GD>D?xPx9l?$_XK6m}Oz^cd@vi`bG6Pm9T!zM&>lJfdfVFr|Dl-l z1b=Ys0Yn}ZlN9IA>o#UC!)`or*$lVORB!sF-tn>cXKSa6S;^uO5+;i_vhL1-ovlBc zMz==Ac5B&6gi)a#?64YnVGmvek4iL4phQzv7rX80c+?b`%>hl(EOYy@gaQcOnLla% zCb_NI;Drh(CIWClTZQKwF7NrYZrlsJ`a{~>@DHf$0Ah>It;7FU3if}qa!G(cYVY0` zIzE}!HFwy|Xl5pG)tT+GHSA?P6Z@1?$~uUO1H_qdYPq9h$Hs!T0-uPiXK`UpURCQ& zU*@oJv9^aJTrx+Au#gt|TOc6kx5WiUcK|52{WvSCuoJEGInNu^5K(uhX}(%tp)%*I zhhAZ5Du<_Uufs9lYR7N*ESDaPrCH($mCJfE7x(hJe#^ra?`sO1Vs55d*V6ds zDPH%tJX*3-fU}^cM(XP7dihlD&Oah*kB7TngqCSa%sV@w%hZ(i9hWwD(4V06)GZ|_ zFd4^pXEVadrSXPQYJ1WjJR$R3$2>ori|Fh`XxVMwq9AxgJAou`wom!p2r~pjjBkGi z2qm-zbHx55iN@)l*b&|9!BqFlbj1JZa@qU{w5 zs<=rJvcum!()it<3wKZgVvn@5TMYG`EY(N$QuT<{ED!k)ab@O1_blamdC;_4>k$=3x*La2JkqD!+byIP%bbo_4=quJVll5FWq0WVJ_wNEMO)uCH&r zmZ>W1_ zON3d0Y(_=F^Y7b_n7h3{m$v(84=m9;&&&7cn6A{-N%&CJL%^ywI5^Clr^2Z?C9c6I zED3ZTuM~1gO+~ogZ(mk$N0OOw5K?xr1+p{o7flqU&YF;opagemINkc;1?5$(8Zn!*Y4)*ucdg>X z$sQhldVFb2>HP=op-V{SZ;ggpe$;O9Yti2kOJAtqQ+Bp@la$B$9 z=OFYQ6nv7+r&+C3tU-73~qa$CkhAZ@G8(I9j0r z{j->r6*@EXsOdqedLLU+(Q!6eQ|Kiu7w;=t{JCOFMRt*R9Bbyx)|AzJ+ueo}@qDdt zs|H-8codIhTCrx6WGmxo#=}XGi#>%;zGQ z>)pkWA%vEBh{oG*FIEs+k;!3@TGZ%4sGXlUy8G-#Ep{tYy>SvYKDFRF@^r%967ux7 zgC*$E!o8)_05`M(;_#y7i4L{T>fb{+m#|1{iU+B)Lxl3?J9TPS4_BS$vq{DC)lY)&+rtxi#g8Nn8+7ycyC#1>zc3hyQ z0ooGPWI_Wua1){|@P@mMT#IGr_SU%Oysix+4!OM^u@-VyU%rdw+ZM)DCnn>+QiXX( z;XQ5V$5II7@;N8~E4lf)4&d`Q_K^90ugRH~6U0DkFWkK)80jqu4wBEXNanSO&I4Fx{w?VKRsBHyJ5^Nj*!*|M6crySC< z+7Nk9OX6c4W+u(@JFa9CQEZcc<)bo zqUiJldLy2t`cF|r9EYI*_BxXeEm)p$4GFkV`Ca@trPi4PWr$B&@_MiGI6$_ z00`5XQh)3!6gAf2y*3B{kkE>G^% zb8d4-`iW9)3e+X>YrPNAzwL1VKK2U<-p0@&VJH5P7p#8F$8qOErPljL2~My6c%I^k z6T#qsIA=;44?lSs`jr)8bCc_pMgKR#V`S=ih@4Vp-3p~+zwY7tR#O0Id$M) zuZd@jWVZpaC{Ie`jn2Uyr%?$0*MG(y{`dX|lxWmM;E#@I7AikR%#Edi4r%|-+r;31 z{0u)Ifet!tV#{R|Fee(IAOH3L*^mEg(#qos&*KA;Vzd3K@1BF5SB%f{v2;*s=A3QC z0ZBTyHZp?q!aP5o6l_mapE5&Yp)Mv44 z1{h5hsSpZ|kKFv9Xhg}sBPY*g$EP@S?fSy~ZZ(S46e2G#Ih`5x*RWyswNN0rgYzoO zeK;j$!{@ z2Kb@I#|b9@MAj6nwE8K6?Kc|knuUy*@G;kfl97?fwBQ%ac{$U#E@`-wmXSs_@R4I&nw41z8gV6WH6og9M125kLWbdXw)MFp; z`(sL_X+RgATkLTM4gop!y2q^GgvxnqP8^qEC}(O9(AL6iwv%9G5fLHJ-!)_vBd|?; zhBK4<{u_AX3Egg<$bZ%fU2OJB%*(6r+(ojDa=*}u^;rZVAS9^^DlJAhAdzdHr4z4@ z2Cy-tf7)&U;@=pk24E_f5;IN`CxK6pm^l3@P%xmXuHxsu1}9ypS$}z*XD!tEfPHmE z*gYDPEQqM~AS<&15rb^r|MF4==$~!ZO-d3MG@B|v4n$t6fd{FU}qv&8=XkTCnD)-=9>e7J_l+1DSY0DIEJDi**M@}k$*h3#c#FU z0}ucd?9_xrlVw2G+cQ%y6&w}T5qQR?_pw(GAks4!`_bIsr2okEd4T}l=5rp+dK&=x z>T(MAfvLspQ-?2N0XPrI5l@Z1?nghPp`ooUH$flKctOT8h5UeOJ-JDR; zl$)**zQ9>;)2mqBovm7p9qImIRIIKUk+dVJaC5W1jk>k9(>)d?5T2O0C92r~OnJTe z?&%UyNo%J*U%w^6`TOpK^O!N$Cu!FFD!_Qt_VP#Cli`C|Vnl87^$5&%LY+i+yGY&1tTwGj03uw2ySv2IgmX4?Ga+aCM z8x^Z_`kjM+lc{>^cxCKh$ZKUyeD;`)l{L6OfiW{b|LNz?bn~0xhsSks{G}bU>MeD* zSEK^>-J9nVcK~KNn8S$6Dh3_`# zJz2e*>)VCphs&oPxA&1`E&KP~G|ujj9=!PDm#^Q~_?(=aY-&Dil93HAk#8P$eC3|fP1oSM8HOgucA$#&Y_{_Z{;oUF*pt1xAu zns#T)rB??rcyk&+?!LF z_)@vy3x_wOQPeRhT<-rUs7p(2)7w3~c22HYK||Ag&u?ICNI^?$x?)U?Ly}$!xw@{p zT@t^JIM_J|oX``pwLK=TQXp?>p2BWcFhulI0DH!}9Yh@|h=+>{+RcR(UKI=gU<&RV zyrixsWFJ3$MSwi~-TGj$2*bT{omq_?E|cSga87)f2U2pnqCNzOfaAtX?uPoKSJ0!a zTmbk@zd{NU6JqN{M#4;F5fMXS5UjEQf|jn921vCDp5T1N2nOOz{Z(~24P>2M(7?EA z4i4mJZ?|>Lr9rAY{Iwr^f~`Net8tDa=Zko}ysx|GyBiZw-{-&IoSBMUakV+2Ke-BX+{-ld0> zrZRp#57P4&WOwfdyAD&+UGEwq1)^>dECtN*Fjn4sr?2T}9>;i>xo;KbucfHO#p_BJa4GTupKa3Y315%zAAMd1Jo1*}g@>*ESUK?AxeA=4! zmj^8FGkpb5aw9CaYwf-?E!GG$jE)y15sA~BF%P->o3-v_596{uJ@ahQTkn$+{!zgrW z3U}+f*WDvA6e5IZAngsOXELSvWFI+EJ+()hd@bAj1z%zvL;ZM*<0Sg0xaTtj1;LS8 zZu@A?F99;tiUpb#jxdmEvp@Y)Vg3ndnUx_&pe-h+WrF@L*@tlgWNvd2FlyXuYWPKwT}6?Nx>#7eh&!pSMmu&d`*MHkfrV{}X3}QS>}!Y!_qdG7 z-yl{D{Z_xQscl9M!ch1X%c+3=XRt{O80VzMWvf-_FaH*)#U;dNxETh#_O&~`G<|`) zp1JLX3Zi++-Fu9ntpWlcQL~w_ZZ3u`{^pWxY_E8Co7oQp+BX;256C*o=)SsS=IDrA z_TAk3ob?oeL(^w|( zq~w@{gs3l_of)U7`qjS_Tl>kH(o#$EUm|Zk ziO+_)%|2)6zOe?Q_cUbQ?HAfz;p!gz)(##P#%5-`+gI#CLEIcoMac8}aGdkA-&I{l z7e{ibeSwy=o%lqV}GsFTszS-f#!{e8(>9xk__LTG-0ugunG?NiU;#b3Ak z<$g4Od=Z-#A3?V3g^-(~whWe$SB}b0vKlYBurnb1#$Q0Zp}kb{t;cHkmmoy*U$LKz z8G{pok|%G)Qahu`y?+hT#{p6~Bm^aPV?zn2m!nkfTjU@ESNb>l-AU>#b&i~9D~*J= zzP`ZSv|4%jn7AeB>RRXG>T0URX4w_?~#_y^2URaolmp4WJ8^rhi-iwxw z4jVvG$45shaK;0lzDx%&`9ls459P>TmB0FDa`hBW^M3uJk1LNBWYd44^%h4?PWjlu zc?^a#6H$kVX9!YGUv~KYv6D$t+jkw~ct_rq(096-0a;3Bch>$& z_O0PG=a@i z@@AbuwFj~Za$G(4_Rh}Nj12O{{)9vMB}Zj3=q)=27hG%OZP-^g3MnG3>nj(t)Xv#@ zB(C%{N^tAd4~B-=ydiVf7dfrgY6-70DSUS(`Rxz<*athgZ3bRZbODpqMB`-pPz@-)zu|_kI17$M}PLK zwKYRUt+?@^gmf^sszE&v38`zgTkPkI>_{v`meyva?)mB++PX$=jY53~an`0%k6xCxM-_vmZfBr-Q}OUlcz}W8>Py z@5yEniZGqJfwWcwD6xK^yT(InMkJm_$fc&WcKTx3k+n^_2ZpFkkmZqgc){Y5+l_&V ziGZ?8)6TV*ZFRkj2(>Xt&xVD_Os72BczhR_j zXqbDF91^zT9-IiVmpw&mg_)&H3S=y4hSx^0{WL`58?#L+JEK8eh8^k^Gi{jIMcQ^< zkgNsVR0RYCEL!I!vB;#LV(2f}4gR^9D*hBsb7jj-QqZ zV|3QszR}UQ^h{;<9eT>#KFkQg@w2cjK5dTLWK3HNzB+a$+CAQ6KHRJ&B`Rg&fP2xp z*=_y7Vqsx{GC}f9PB}~@84L09O2S;d;hUNe_nRGdZXT|!90&#>0$~82R8B#`XEG5J z7{PPWx1|iSYI97CEh^VfkWOb~;C456f9b6E(dcGDtn~FM9nWMwsyHBby{4jIko2#w z3^l7${K#-{P>O|(Q;6Y;5EMwAep%O?sZfQ~$hScChFN-dD(k>V_*4Hx2&8+YXU-oZ zl*{wkZE=VWHZy9rDm1gd1~vMucmZ7-$=@ zjCp@wk)ef!BK&FjF!`O<3Xf9-OtH&Wy3o_3k#&LSW`&st4ja+N+1Xj9LEIa0K7E*# z^Ifa5lyv43ctZM@y?;-RzYa(H6h$~IEZy13G-AMcU4A_sK zT2c%;m8{&%FSXJRW(D9;i3?n;gu;Y9FXM71u16D4kq7XgD9b0JcIP*3280(L^8$o~ z>aTd;N>tGuv!vC)YH2#fOfg8Lmt$0C#ukcfEzQl7?+0hQ)%vTZXVs+6{OI|r$$|N`4yffmTUM~?f&^m;6a)e30=6pgF&K;8+n=^>tAzyj;Bj5 zfgG%CQWnx*_=CW^0279Y4(x5Lz7_KInqpl`UQo3!n!!qZ?bFlMWm+7@g}zE>!1CnM zRZ7OvKknP-t$x~Y^^BG%FWho`t+dZdQ<5J()MX4ozF1l8ZXdk)U1IrBMKQ~kpqu0* zZCUU^{TwZE|IDT#85?|J_H!do;i?xeG)J!#-g{I}msL(2nu`80v~)vT!?+gG;SX~m zK2h!TPE?Lp*1&bT^7&JmI9|TQZx=<&rPk-*tqpGGh$3|XNUL7|ups~HRGs$}2!&v}5^>2PH()wp# zVtRuyOXyNkKjq8h9%o$u(|4uiuA66p%lhW0N_Hx(T~vDt->aA4$ZeJw^b+v*_vijz zT3QhM^Cx;pDB8r0m({(fsfo#`MPEtsWT9$CY37G{P0gITI#Gsial8Er2FQkga6#qP zaCz;rQw2xx{*r*PGKM6??N4wIY#^l-40&owS!ylro3f;^aFvU@tAw-z3}w~vEaHt1 zO?TH8Oi@XD5^o5TZ{wW8Aj4V+K!{ck6(q6SJn|NQ9?GU$=G zVHp+z=c4FPJ;+5@WH$Z<0uTLSF+kfBU@dSL*>)UqsG_dk(5>8S!k3&x!OlLpy17Y} zz!1?A-EN#)UHq}W-kpk@SurU|EvGb70bFCpO1fEjgg}k5oH+LWw%eJ2@in`p#EAQL zzyR@`)@m27mWmL*jC8Og`?Q*0=AkeALy|ch#+=M?=HZ<1Ha44{Z)wFwJSs1LN5aBdCL`1T zF+tKmq#UIHSFN;L!tNwArzu-l8&_!l{Ky7}0H>g|VB-2-BC}aV z1-rUMcEV^443=+d&3nXBGt#B{+RDyJ;+ih368y5TepmbC2i#CE3hKT`G+wS7N1LfMEkU7FIasI> zeem9qPFhs=zBtl~T$&Gxa)-V5fxAq7c-@NWa|8J@QeACf>+C$~ety(jem?3u#=}LS z#Db$>&dbcJs84GVDBX{Ph8vG-4>o0P znv|*gfiJy)F+L^)#kZlVN@_6ASW4a}z25CP5rtQ1!(R*j*rd{2$gzh+c+@0pdwhnK zjacxN|K&5^@LY&7zt~A#7nnIMdHpnhRol@8a)9uRv zhwPHo%=cQCOzgzAmGHzLxPup}s!(%sOJpMGU=Mn4pV!tpJ4m`2r6sAIQW-f$5UT0C z5N3yTV=-orRsB6ni%J;jeW99+l~<2ch_h_CJ-hBwQLF8^$&ezhb^h4A+)$9V2@kBQPV-;=)o32ZoXCxlQU4!)dsZHAvdDKql?ES{?G79hD3J)f`ooI*^( z8oxir*gQ5$>e6A&+^-hdZ~F8{Ar#&BS*f0M`H{Tfk=KDo;N-Ac1GR#`OULNsB5i>w z!RpFJAqJwo{a6tkCt>dUj1B`h##ijcGUK(y(qpM}G$w`Ai4wW|p42jMa2|@C-F}B6 z`k%s(Oc%8dut*7WFhE{`iNoCV{L8u8Vri~r?e>Ca3qL^hI>i%Q{+Efsp$u_fV_01D%T5!?1~g}chH}x)zInsIHeHAS9oF)^$a1byONP{jRKGpKSlm)G`&+Vq z5%G+ZhLNmJA>lHnglq~o;}7a?x2VA7nZ?C|h>s)0I9Ul4-@5AYg&SMH=o2$iWl;)u z{+X9A~C69Jh z7&f+&HkykBvFn--U}>&BG2w>eOkAUgXeD8MyQ(Cr3b<_4}AJ&Q*WW-mpPT0qk{nr*dqZb9np;DFW94@#dk{y@9;i4xiOyGe1JsjRwo z5r}$p-4ouv?16cY&U2a$?4R?aaO(}w^~D7=HubmPSnl% zg2-r9gKVUo9v7$dL0><%Sy56pd_vJxx-nYm8I+f%R(_P(?$7r;QlqHQ84RM@6cMo1 zu3kyZOG2D&ZO7}Y12;}!7gLiQg&8O;(CaDk`}V`hR}_POki`tor&-zUmx8i%?^C6$ulInJ8rgI$OZVz>DvM`2^1th>+;w`UH_#VS*!^*tvU0%m_D}>ECkO zxw}*Q+p!ZPA(8lKaJ1b-7b=Z8mDL&r#~fM?D`~s{P-$UTU=%SAO#W_KhS#{&8ip|r z6-OdZ2%veV2_?4IjVlwPjawGfMn?H7F6TbM-o05zSIvteNtX2jg_+CG--C?~^$$9Q zPc|AB!cn82-Ur#>5xXo6iDjqfVD&WgGF09zN^G?49^c}^b~^ZnaP|^ZO@zfUVb~N4F@YKpX^Bv$*c^Eh#!aDV%s@rt8Y3# ziM#VW8&cs@|p`~ zU@><&nNPmdLRyG#L;k7#na}aRhpU4i(iO=Z1KIFq!Mlr$&zifr2qB@XxB5eaJS?(B^w7$rJT zvS7*D#dW-&VID6sj98h8II}>oi3{nd!hgvwO&(lpQQV`gLdk+^h^u=k_<;r1ql+Sh z@oiwwww7NKo>|J=X^m~F#ERZWynyEg5*BC2^G_Wj0e@3O@%k0s8- zzQAE@L_pDSi?Ns#@DkL{fa1lsoOG{MqX}e#sTAX~_wBFKdmcRs( zccsfLexsRN^iPE5m*2JsCk%El*n`lO^# zZlmzOhS|K#u25;~k{X>Gqq*3d&S`t?KctOlV{L6+QBk3A%R%Q02PGcVn?GtJs;NG* z5z_HF6+j4Z!PL23CJw}2`t?i8?u5b2vpQ~FB^A@=JD+bd%JMzG8WN%`!g#sx4ud2# zlMA&Q`9Lq{yzQ6WIj>o0DVDObF+Ir_w}X7+r$S`_Yccm)6N-8v-w0b?cRSZdf;Kib zYABVcQIV3aF*Jox$;*F3z9=~j*ZA-ubb@KbZF$3Jwq$-_UYbM{)Uv5_91_C9VLx;T zsg?2#@o)(2GfkHX4B%TBE^wgo`S zS1(yrz|HOs%;5=NU>IIahvJs(;doL(QTHzaKAVYc$nff&HYi_)@P5@DZYse6J}|gB zF_7rlkPd9@WxL-gmk&N3!|2hl;BQ=^ZRYXZfTv-j_PZakRF(9<2_xucXJx(De>D#2 zxm{7Bk|%dFGWZh~5Kzb6)Fako@WPXnFsVA_vxrOdrHiYim{VzZL}<664RKZ+W#6j| zFCNhIKQ6C6Y>Lu1v}NO8{YnRA-$Z8yDR`|=m0;}cuTbX=Oqw<&;e*!;RvdJ zgtTegLve}qFq%m?l~;EYWatU6y~1ek)RdG| ze{RDq*v4#0O(nUqsb^laNnO=l+1q>j?b|oMz~?UTp@9q(ZO}Jr`ftgjSLt7iC?L4T z;vpcZ&RoGg!S3W79}=e7XW3*q&4o8x_>uA9%Yw^3Jwp}E@W==SA|m4I_BJg)KYu;t z_>V6>I~yA>*(a5*7Ya%&heuKHu@S7*IZ8k0HB(6B=hqiA(l2YYUS<@anuWF_L!l%> zyjrhUE}-}P4&Fmvz161Z&Bi9JYg=3S?(Jb*;RN%#Pm7n|30hir`0a%(@Nk%ucy++_ zFdZ1WFhLVIyYU8Df+>S1^|L#uDEP&svTeQ-K@pnpS%Sx`tgMthK;l%(HdleR575T65pBFsZ9;%_+18`eMqXvWO8_;xAph~U6gF?>_+j4Q9B2}ezikJKc4dL==I@>)kQwKm^@C~+7Z1{LM8|-Ct}9sG-YbC^PDCGQFXY2} z44cM4FkF{ur?=!JyCua?ehbr;TjWTglFzHSwZMYg(o}Ds5fv7!@Y=`nMm$B=OpW}E5av`AyzoS-CaoxRB_;4B&k!Q zn<^I&ZZvmcmxJIuyYl-VS@FaS^)E{DW*Js8-1)qBrvQopK1*yp(K=1Ssg`d>;37{0yQv*L$Vo`I<$wO1thWRZ zx#HA#q44a~+^1s8Vm8Ohk`m2AhA9(&L{?cL$!DEdZ)b=x%==;+!Qslr%Nlbu=TN#QI5vA zBYwnwOf4U356e{(pZVSO0f6d?w~OWMAGmoM)_ae~xZ8XZBe>Uzrt(Y*(ML_?69{Um z+yQa5R&O9v)4^5!)3H}hT+WPsL)@z&s3tM*40%=ZKc>va8T3BQF5P4s!PDlvGl4-9i6mdzSRmBhr)2S*K2CdzJ5!~Hq;!>>(R@t z19$Rm6cQj9Y5~s53lRP|h8%!%VUh%bNM}9WN{_ zEvgmpHI|>2EB7W&s{5%EE=(%W;rV(2NE4<1n-VVJfUt?!Z+=!zLCy7*6$-~Ca(Qt< zbY%{WH(4K02uDmX=duEw#KrSa zu8Q>Asp#_L_mpQO?LHQto?-Mx1$ljg!CuRx`puF2#(noo=+20F0rz* z_S7F%NY%Mqebt=flIbb^@M5=kuna&f%q%u!tfVv3(Mp+U>E)Akb!nIc^-O1$M8JWd z{lrSNX;pnyX6C^tU7I9yIQ*fFc*}pb*;hAYWf&s?QwP1F>$Tj=!GCAGBVa*c7F48_IvTDB)gT>OIur}2Q&7iDsNvel7o2l%K8=s%8|-U==H`2 zOBxzB&7VCFF`hWFv!g?X=Z;JqKAHVmlY8;Hl27~R7STHn!ervh%SzO7s}O%le^LLY z8FEK@Eeusf^xq`?425IZ7)aN(Cj@a%@TmX^fquc)cj+tFWke|Id-CSL! zloA3QTjC70bcBCI&k7VjaER=->QKL zaNR1t1ke!Ms83k&=PggmBd@)G*n6pexlMRrw5Ic6?*F5bVXuc?dF*GR35lu}c20+e>mDMjD05~Sn z{F0g;UNOoE=O&|*Gd9L04e;3bBrO>a%~A`gFVrX#t%F)sHa5Z8<`GF;{=->$mUA7j{$!>0@q97>(hw!tf7|gB zf23kuFzTeFxHMs=&O=5fLhVCOr0iG5DC{+z|EOS~h+EpAy6x}>{%Htu#|c_E4fny9 zIz#1ltan`clU9W4UIp^?!*==^jC*?qj)!@x-`q{Z_{>4fW8m2iQA*_?CAK?zl;9(L4ngPBV(OYSB}0e0pO-89SaGK$n0EmS>?V_<3jB@B&kGWV!$Di3T*hX{4XJ3$zl}Mt zv0S6Tmg4XB5siAd(KkKzkd2)^_M*nBL@8v1TsVWL2;B?IIYX)cF+M&LwkU60|8dJg z+Q`@#rF~mwJd}sTS6OXmz|tt_9jB$uD2=(dx2Ls%vW-sp+bO5^Q?AvQEJ1x9tUgTQ zcMP)g}=41$o=MH`vvgN`pQ==D+%(7!avlRH#7=%jLvJ!^J?3tqHXcg zL&PAz{!yeNa8P>{GUzLWb)6=dR9bFCDQ*qeIY>%ria(t)69nVlzlY(nv!h_kWDbz7AsgIr`QHnTR)i&T5>;v1G0#2oo`;Z~^o*tDBn5pCTUq#$X zOYD@7JYPGj+dTRrSzT0Ap-8@zIRWGOT0S+6IH#&aESep#9~Gl8R+jg_e89<$J3BqK z5)|X8=O8A-g(I#m^A*{l_i(Q%*g@oMa(!)3cHL6PbC+C)Xl-phno<5SC8fX(Gq&OT zcSB(1bawQJk4nd)qNy}}FBKitEN@YX3dN$O42oAq{#9bT=dsUS$lvrsn6NgNj7oc*24@_6h(W?tJ$6gAY9 zx5P+j$pfA>_14oOVrP^quaIwhJl<2hNBi3xfQrE?V1b_CI*`C}90Jfutgf!E>ZLNM z-@vsX%8N}$$J3c-_|X4SUN+R2sQs$;QbISKhK*VG!R;0^?m64MZ4K#v8~Xtz41W5l zE3nh{+TUZwN;On>8BZfggHiG^dB@Q#_T(2W1yPkyLW#EafX=ZFvl)>mlZr%mTGW3{ zCHVBWhH_4A)mW-|*p4UNc}`ubM|Sl1{R+n2n3WuBs|?i{7!TcT!!&r8$n+WzZ~ z!JzzzfR6iUW#%7c4HYgF&^DJdPvZXR1{m#$2;kd(lPB)j_wTL#02-K;NxG)}=SiRs zGb;sPkv-FX!4H2qet$k0aiQVaUXkPH|8)cW;P?5!w+D3;8wmIB{Sglx7|!a|{m!Vr z@<1(Y;?s2?1UFy+5n``f<$tDSu;=$s=9V9LR{GWeI5v$gs%fcVy34dX-D2d=~eJv~-0 zG5WHgqNL?H)RHAYr)3F*2gTRK^t(U4d5IKv@-c9IAPYJJEnd(rGB|2kKzBRHaT2eva3oA;2<}E{`pEYL_r`Jfp>{g0Ln*-k5BCHOJL|+9Fmfkm$&dvL`)BI zNc$aCLjhgnj1j1qh#PE791YX*h5B}=3VJm`76ugq@EqS28M+N z!{bx6W_&5BU>ye%0)kjT!v?|)+trmDa4b^BeQL1(jGhxZ`k9a;FBxFKf%Kz^Gj)6f zBm{Vvn68}hUYEbC;}R0+qJ_`CQqy+KpP>P5IO@d8%|7b%G5pYTR_Tn31m?(D(ju|p zW?u@2tX`MY{Q_2}s_(6)6cH(DVo(t6*8cuuOiXSd&OZI!X-vy0SXCK945cz~)T|HS zva(E7bv2po8ZOg$c=>upecj~eaR3el~)v$Ck(*~%*@j4=uE za8N&|HF@*qEoV>A1s@Mjw!bi(9XL)@v@Vc)MKmEd)Dwp(4AG~gY+DQMCR0gzcoyA) z+bx3qSWQh0Zwq@0;~~cOVq|G?!0M8nHYo8eF0UZ(?7i!G*jLA(`J|V%w0(2N366Oe zcO&A2osBIKRJtS}A{li8xeXbM**Q32JQ>@QR~P_H;{!ZN z1~YqOWgniy4_?i8nF1%>bmlvW=pGNB+#m%bnwzFv zM>HlJ9p*t7*gND4B+&{A9Y34}(z`q^=6@c>gzW`s6KyD~t25d)o_q#gLJzyI*NezU zQx<)0y5d2ING|eUF-%k;WDYs|zE;}uSfHf2T;7^eQXQ-*PLC)K^c%EX8!#cM}l2wPenUJD-F6J zoUN>?l6zz5?|68AK7P`ANl0Ki&)@*TOTXa0pi1P@ziw&q+pjMwk`uay5cU4(OTI8!P+{ONa>7b&UyW^LcMzi_bS;ZPd?E8=V8Hw& z*Tr#2kUzVoMtpmF+kAFHLDguHTxYs=W&0QXxJFVA;Io>TP;zVz3=WQxyN`Cce50k2 z31~sv`sBEM%Dc6@tIFm*`&|JCo0Q%@2jaLLVP^5mDl@d%cA?TRH7#xJgHm(cDxG5J ze4)lSr*6$@@1eKomC>a96bT6$^gKw27yVHrdg`Y_r=x6aTx=5=XyIX<0|OduF9Oz8 zWj^UQ>4U(;?KhilP4q-eh?}@(4=Niwcfz-0Ssimzs@ZDW#Qc1F^x|@IjpL49we1#Q z;r#S=c5#u@pL;d^-8@TMS65m=A&pq*svS52{awu+di12e3Z{*P`jwz_KBjR zhEa1+Ym<5zM;9A>U>r}fi8rvZDbm){=}qR8x$@M<#D}T@Z49Wg3RYR;jA97jpz_wO>!>hHC+wXISk zr`%S9T)w@rjSDLVKHplBnq^K!g&HyOp80H|!mCGHJA0!StW*qALD)*Ov;Bz!L>=v; z22JzTMi`_5Uyk-Bn25}W(hUgF$gVH5!4ajRCE`b$Ec~vohk0%fV^^PZaO6ArH9%er zJc$U4h$$?5^^BP;F|2e+D)L@pw zP*T7^Pm4vEl&_Elg~R4}g~p{82?^5E=pZWu&g3?kIwVzqh z0#ApBu~oH|i%%XSubuH_=+G6Je$f!w_{;NP{fjgotp^N|IX@8)>GV3k5uHAthsATJ za4XaKz!>bq_XUn&u01Db{kYfC=#}3dfX>`6CAQr#P%y@9k59s>83n`*J(isVrF(`eV}>)Ux~#PUAm&eY23hPalw;%??oc95Tv4} zhNoAs{(JxSxC(t@24uY$9EXv)6KOUxGwVOw)1!XIrf7ImR-KdkU9+w2MRrM**aHVZ znMXlBObQF52ih{u^6nxV5Lo+!jl9KdSi3sJL(5}h*Vgf*&CF^VF4{&{c2-M7U2ODH zK)R=mZ@|eR~m1m;Jp|Q|RK5y}YVw z+>sC=5MP5)s*6k(#ze4Vf~D~yf?UY=qy)2aO;Xz`1_Xx-pIn1P-cjA7c9iL7$^j@Q zVjZg>cXjjH+M11i^o7Sp)Bp|{8H43e`s9hUY=joOtc7OO?o6%5M43Wt^}?;l(1Q&> zo2PZ!lu;OOuMV!RXz?0+?>6nsZ>}CiD!p{{7unymVyUe~FtMzby@ljiYDh~GPtVO! z9yDCXLM}#C=7Z}~QuI|@-Q{mjM=I#)K?$-XK39?5>4}NlcP9_d4~COq%bKndvvVv9 zH`C%Dv3R~ccx1GAq}_O-S^&woyH)~J>G+>tu>>ER_{7_to}Z7_!j!@~VKB&{xwMHn zOX=UNryc4c>sdPwNxeJ-T&W%>p8xDbVO(LiWP$!<(-F(jhqW36_(FI zKr{^>y==P2vFo;%e-T`i6?}rdyYJDs5DF%G?A|PQZ~cLHaY6Ro?WC}bw?SjW(Zn@9 zGnF746@wlq#)_s>&83qzUenQ-9z~NkE`;3~}=P>9VBDjl7hnl##HJ zejNZ#SSt>u%c=Rh@6Ct{TEcfPq^BRZ+%(5VMPXc?)ju#XdCeFtcoyUJ`}g@a#^t%M zr%d2kC>s1B_o9yxB~{znv}K06C~>QB>QS@z61U^wPZgJ>Od)DjPKte{M=eN*!E4QT z*Zn4zmUO^$@y~T`f{avvvT6)vO=o8=a6E>p4adhPaUMcI*t?1VL1Zl>Bcm<~nLig! zZ1miZ{k@}_-S9T?<{`Fp_g^RV!r>=yM@S#+}vMAG# z?^^`Z$E%;I9PhmAJ4Z%jg&>&3o@{Q&Cy2nsM_%&1zAj3} zyG+tD9IGK}z%~k4zN~bDQZ3Je7kFAw=$=8MyPxA+8iBOoro*JF#I zprqtOS<~e$AFKckjVP)6ChR)KZ5iZ}7v#MQHc13K3;RiR{eAYHm@GSWG`MTsXUoVjJf47UBN!E2g z2v90TUCKvu+t*Kq9QPA!ZS5t1`eq8Y`t@8g-|ZF|K^FFcI;Gp=@ouvAc`cvu~OSJ&8j;tzn=G^3u}{$Ge63VmV{Tr*47X+ZORM;Lnyc_*Zf;8lXUDPR2)AKyaDfgmjKkr04juuI zz5g9>)Xmu<8jx|c9pM3!^x$rpE^_u~%KGR~^Dqt_*e2N>;!=J5tiVq$_&@|bOiIb1 zLd0TNP>nu3HQO&2Ma*BS6H2nTx~`%Ohj7F(w+s%Vbrgl5zbuS`fx(J})(GHNO5^jS zN#9ROp5dFWd0B$GMCJ<#bo99#8j@48%YdwAlv(SDn$fhW+??@~z3LU|I0~s6uDmTP zYsf!3C^w~pj%H%S3u{|NafsY6E1UeiW5~uwBFG+D*(*sp*+*Y;xqi^??=yc1tnC(0 z8_O@d*~&9A5G3oE{eW;tl(smkB$#`G*0BvLEv2c#bT{4Zv9N>%WCfsJvt}PN%?@WTw ziQ}SvIxC1fm_S(u<&nrk!SIRLumKNJRS9qbBUuV2*p!AlPh>EipG8UN zD8Hja{8b^%2#(?hS*ZP5-XMf35d!h z6ueFAs%R9hD`ZbqM5j36svq#4r%&bDf6H%Gs5}{EG0c%okCAyf{2j3fB-o2 z^Zh+`oR&qm6Tw=2wY-&!?T^yackL9s7pvH{b_Z|3zs5-%_Z}uTZp#CRbgK#%8R$MhiU+J#u&@E&2?=2i-s#-oI-de4yYt~kVg|M(RXSV%bygf>uIF=mk|NQx-tz#`M zuc*Q9Q{jMPmIXu7<0;eVO*7;VNnKqQc&938#MT*4wF0`b9!}x^o{XoH0q+|C6-{%X77xOevN z?Ld{i{YKY~2>8RvMK>iIKdST~YedRM0JDJYY@DI}0CG6IIwOL+t}e@*V67$>j|EE8 zPw;K#YeWTo5NmIrd59ayfQz%THt&kB2@^~;H#H^QkJ*+Qkej>|PRh%=)G~cLx|~sk ziS>(CN#OQtL{wDoter2+YF(lcD5a@^4T<)3)5pPGbuMiU{1a?7hMs*HN++oXQNJ1l z*mxpdhn4umBYS`g8nZC)D+Sn&<(C$g4g*W~;fIe{c`H1G`{WY11)rpe#4|58sW7c@ zWyg^2u4WIa^y)uk1x)maQIW$hN<|ST-5_CDqtd{wE(#yVaD5VO6dxO%ZN8IYDmq>Y zXjXwG;!G)1PnE-aOmVB0MQCSm1Vw3I~tiEvGamFdZUQ$cQ3^mw!z;9WbYnx8V8K=4u)& zVePB%QPVsV?KH(z!@Utq-B%Jk%14FZChewrUH(cr0GS-r=ee!qYwuc=w)-Ue=!u1- zqDd!{V-%yJX6!jy7PZQ71!B&^#uRI&91M&xlLQE9(uAB0LAb}p<+Iq>&=AWbd@cNv zz^Tbu7La)~!OVQ)m3LR8=i6;~ zLiy#99`pILkwFPqpcrfl4K2OuH%CWKuCCOV^L1uA?m7EapW$VPJLR@-CFK`JN7)yo ztoVOCrq$&-I$>!_{PBa>7Owf_JfZu==j*XYCtH@QG|KiuSVMHoQ~Qz|!L-SnV$Mq~ zN;nx?@6QC#;^WSB_Y~d*e1t|Lx;=dB?eu_DvhqD5+xuYzcq3_`B9HzzB6ZV0^#jxO;R^DiRH{oRpP!}vD;W2F6(G|q*) z_%!BRB4D4@**UFZ@};fp)?MOm3E9wO!M-5hI#F3Tsn!6Y8h{JhWAKuak_dqpzuIg4 zWMIyav^v*r&@nN07XQS1pF6Z3s9<0}BD21HLWFBB=-ztSRsdqJEA+w;B2&Lbg{G!U zA@09843Cq6p%X|uxC&&GJT)t6(twtLAbm)I-6JKcTrtGO-$xuPmLSfGyJCIn!+5aK|R3fNK!1tSLhIp$^lmuFIUD!KucsM}dP)$Vj?h zs&%Ib3n{&IJ6e%3zQhsn_~m=MqW}%?Zlt@*>g%WGHfYB`5WNw0F1b6&=&GM^`pcEn z_J9V{8rfC}K*)yi4V=Bt9k8P0T(zPbAR8NFpM?_Ga%yWeQf8>aaf5J9AFTWhF|$*! zs=+ptl^LOiG0W(AcDn>SxVR)9#$?(Us;k0e^jg^)0Hd2m%oyajNWpG}4ZxvPtIc*` zv)=)7iW9%Ywz%pS<)3&Sxql86>lz_qPiF%r&^LpWl~yAE&LVVl)7m1iacuE53fk0^11iIL2MTI~$We=D9z&)sdi`*`P%J zf6vUUtT8Q|o0w_%+B*LHsTU9;K$gny?!L~W^V1rylFm%}@PweGrUbt)?f%@ww7f>C ze0$or`7tDNyziMS8xIHLeB*-^6FV0LzO~oU-Fx?!9k~7#EMlOR2N(mP34zn`{NlAA z{BM13W_x<_vkiOVn--3Im8z!ri{qv?k=dRTvIIEFA-Rb;1@p}4%pb!4+IU|3*H-y^ zX?`T}A0B42ezo)1iCwK+o7d%Mgh*{wmXtnmap#XQx3@?un)e?bT%X9oth|-5E#l#y z3M=RxbGQNre~}J$cjJmv;Rp!pnjWIQKh1vsgpHfK*(1IBQH$plqM4Pwb}DG_BlDp< ziSfVJzrVk^jT@`t;PCa+wP-EUy=4xD>(7fTLThPv7sIniEt$dS z7abKP>%MMYP*{i!d95ukA3?)GtvsinR>oVVhq`1xR_SsUQd>~YQ~WI+k3k#Ne2}W2 zJ z0xe#!#su8am1IB2&$ILU{9JCiQ`Oqmc5)z7$J4z|#@Mgy36W7fbR1Kyhle3xD5w|~ zb~euv85DGIy>heqe&1i|zam>&mcBYW|CUo)%mmpv;u07X%=x&`dBk;RJk6ZV)QNW) z!O5YB7Z(kYsIK?-E@0=-u_7LM7)#Iad6;XPI_?l93bE~4gKRavHZ}(_a}AVCfzUh@ z;_nf{b8#IOg~%$Y$dbtQ2!z))3Lv$6 zc14~MB4W_^+JB77zZnnG#<0l6+Mfm8Ul;%A>@!)fl%L?nX>s^&U?4a$JpC*R~fE&QKrMkvDrP4rXuKSTb1UTE6`d4^BS riz$6i%-$F9e_emYg8xPDcPBjg5>KY{O*4MNF&Ok literal 159440 zcmb@tbzIZ$_cuO7K^j3tT0xk!(v0pNjnaz11Ox;|r*w!&=V%y>v~(y9W3+S$8{J*^ z@cnsz?(g^a`2BhBpKa%LUFV$Z#PeMB3RMTo6X8?g0{{RbMFkm60018f0N|TH=05(8fMO*gf=H}w^s=vRVS3vUo;%a1S_3ZreLnGi2EV8(S`F(YIc9E2nbaHw@ zMf+@a0kyocadLXTwz;>vcXW7kc65A(;h>_Ta(Q`qb$zveaB_TdzISlau~Kl=P6YisLZ zO?_u~Uo0<2qj%=t%PZk<`1<gp=Q(x$7s$HVLM;o)IJL*u{zLR?BYH?Q!+C$FB~ zKF*iCJ$=KC3#opAVTs9Ursf~FclLhNHAW8TA%{j*(VOM7U$ozt?1B?V$Hw;$4oXYQ zV&jt9|Ku(#ET*NUU0hy9#UvzVRV^(o6_=C;heZwz4W|rSot|GF9-W$-nZtj3`F4pr zyLt`|4o+?N`uX`Os_Ha0wbabTLfcuqeS=zCTkRd4h9_6jGcwb&@^p1|LwZ$7ev}T6 zj9E96mRHmShlG5zbCQ--@bL>ZGBS=Ge4CP*k(QBDJQa{R1|1ul5CVy<9nBqSOCbh_ z`uY%KTWx3FpZ3nykF4|$)kLp;lwTx%ar?!4Y@}+}N_!sWbyZz@nVmE|JaTq*3|80K z+CALeKbDY`g{5a*mBX1>*ncmq&F>EOuN@%Q>lXJ$A|m4!me&IZ`uo?aCTCZcQQJMM zrOO8s0iD}O+4h+! z#hU8kp@E^_pNlKo^fMBri&xyri)NQMAr0%#0zCx21~zs|ZtWqbwZ!T2@@{r_EPl4$ z%+AENHmvL(4*vEA)D(3Nz8f4wUj6Jr%(UW1g%GML9Q)V2_*s`J>o}ksynm=b<<&~% zRVD=hJOwDqNNT%IZO#r_Q?Jo>?ddVIevIE9o|Rt7`8F!3F=e^w8nsEYSsiLU)BUz< zuUO@>C>n?tZ*|8i5br(%`mv|N(}Y-d<|iL_pPdohS(8$hNL>901jb@qlfA-vh zz{|T|fl+Ti(kj(r=%RznQjRCmf(~yZdq*U4{3RwS|KEQWXit~D8?(|eoIiDE9?V0@ zF~5j~p!~5y>9&nOTHqAaYHmyzS~3XQEH*50Kz%Z}4HH`7r*3?Rp{mk=Oz3Sgj&@`- zW)dz=T2R#(;)f|@-K@gu%x}BZhXn`h)nEX?*MbN(9Z_`!y-Cs<2T@Mo0RYIn7O}UFUHZ@`gqwDeIItQ z%YGP83jzRKccdZUU;PDUZf=LAAsL@@5cNqT3{aeN)|(uMj`O9$Z{lMgepY%}WAF4S zrU?o-Bd#J!c2h-~#!8>2*ilmpQxIomo)ipXIJHQjKJ=>SczFXm3WuZ#VP$s&Kf6$X z8fXm+Xr@da)`o%0J6e{$Y_SW>rPy~BoLzPm1w-|>--eb&OgpJ)Wz)VbU9?a zyk_1J1Igxm91?yMoE*|tdhfQaFMP#b3x#Nhm$!AQ6@t^T021i_++T1r9rPwyktWtC zh#HZKdmm;%FFrAMZOw*6vM`uU8V-sP*H1X>vPw<5b=8fz+Bpj&>hw3niD0GrdSo9%@+zLC?P~#`>r@$m9&zdM%5uhVft8p3+$z8kv+~%=zIQ z$x>FbF`8tU#63_DmxD;@jOJg1L3EJPhxs;?RO$H8hc&|F{o( z6o=4~3`8Vz_4FaRoP!W&R5?nxHKm#wsww&;iNSVl}YPxlwc=!=rY-=d4Z`qsbK zk>oG(-YU@f(_Li@OPF`%ENqB5hfT)p0p+6PyE+}n8v+p85lG4dyO;A7j2G^mT)d~O zV{1H^^bv!0_Q#%o=lGf+<{W+=GfjX+^m4$C!RKl*_(uEs&G3)}I71ih$(BEQX8tYH zamfCw-msvwEm-$8h=dQSpNYg3)>;gpIKHHOky=0xB8ZzPn#FFJw4%{R(+us@ zYH<0kpH3Du-yH16{ltr6A+ut`HseR*`;8*z@(oTO0Y z$Udrq?`1TgK7XLxzbV3w+41iNPi(Y2-hXNE_bAoPL~)MRg&W7RS~nCtKLA*A$l2z1$f(%v|cK- zVhldvY+p6C1yl0x;E;iuK0AY4Y^mjmUqR!o)7o@F%J02@wJf9l?^N9 z$-{kICuTAju~)r3y1yo2B0(B5EyZh|a`1YE++0SnY;ZGXT%}+EO`GqIr-khq)=U&W*^oz#}>zAYe;(P96Fn>6`0xX4ts33+x#mpL*!*Q@}M}8o-~B*_I{&ADyTzsSOM+%RF>{C3RrTPB0K&wI)dJ?Fd_{E!rF#6V{Y+YlrkfMwWLo}x znB$|$0oi<2RjMn7mt673F_jB!?#i@gl1`KDhL(UrkpMiMiZM0AA*R=VYUbF;4$jlX z)d9Y%crbg%H*;SufGOQ1Q}%8=n`&8D0pLZhvOB_`jigYMEjx+I54CegNPFzsG$lvN z69jg`Qk;^W{#ml{G@gOxE5T_l>sSQB=q56?LTpNVsUK-H>u4?7^$_h8uxG_Lm~$I( zZmF~XmOq@W9`MuGVuaRA2;TES8|t&l)^I-f*7(b*?lQ|v&0Sn7r_{(LMUSh{y@$hS z&Q*^uokML(H|)f% zL<(nowq$;0j?juejjX=xv>nv`V%}8n^IgC28y7zV8kYPi_{@JrLphEw8|EH-X43P`Ec7Y0Fypq$1Rg9s(7VzaovP+uEvWZuQ+XrU z>^?V;^GQi~z31dOCy=bVn$p$@YPq{F5lN9TZtkZN8q_VjKx!u6FO5? zDJXiEE#28KzQ#It%4AQaSN$_|mtyI-H#F>32DdHZO$GAFnoDJdNWZefAu1L8!Of{; zy3cNHkZY3;R918N!AS~IRa;woq?GQ{_?ft_xgOqd`X)X2@=9H3Bfq}(P%!Y&tV@Sa zK_XCBNYOe^#J`|kx&BblZ?f2+GfuVh^q;g6%FWZ3DFPO5{15_md0>pza)0-(GXczm z&Nx?V5D&i$b!2{2lb@Q;>C=0VXei=fcOF^_T|XO|J>PHW|5pFQnR#81o~rZP@_^ku zltxHl?`K_B@~B_+|Azf&`^_tQC%W<8|@)6-r*@Ip;>`o^;WFTcQWy6h`=9B=If>_VDoepD- zL6%C$)U4|BQQ9UZgN6f>W5iBw32($QJXJMwddn9^tLuXQ2wn=UESVbmO~9x5TIu0Z zS+Q&hI40Kg;|I#*N0bzS2&s1lr16|#A{{Z_|1 zx9OIK@)~p-jC?-+OLO^v<9Dj#TqCN{F5CP3GRH-PRK&e|~$uBKMP` z2n;E~gZVvc6P@>4zCiyN0F2t7$sJf!+fTN?P^{66D9)xsp81zCa6$RcAb7F9@XpI6 z&3-ffjC4*_Jomd+>k|*r0S`tQ@*Vh}7<6Q25sus+e)483p!$<4GtSWYMZm-~HfY3b zsW^7qCeaN46@Nwq$+|neX==XBsP*~5`?$c&11T(YD#2u?mZAsz!dgG*n2_!{y4+x( z9j8cR5eOJ&qBd!$$#J^RCb!g_wc?P*{y4k?q=HnelPdj^8B5nu)?oqqopc~i zi0)4lPMEbrd)Ai4Bbb&V=WkGQeHH;K@!vMd6~)T(UVUoi<~=1VHBm zMAs=GvVpEqmT4p)dN*kZl%0%{n#U&dF_iVO{JXW-s>ZPQvkkeU34Sh58nA4SEvyG; z45EYH;e^Z4pGa6~b{4U-hTr-)m=tt0ER7Pqd~}6R`qIGf-XDL2+VS8p%O~VKWz^d0 z+fk8d(gM_P#ftVSC|#riI@aDFd-r;f@yTSUk|yi0Ps)I93K$)Gk5iy2;~;cL_8Iyv zd)V8osY;kF3O7$$jhH!05J)%SHV}AUE7kp$X@4kVjAZ zsl*d=8^sO2qBrg=@dTjPYPC_U)gqxXW0Fa|@7v4BMkZenw*gXG171i-PuLc$>^*zJ z_eG)Q!&Z`q^2_0jJOscR`yH3WY#!6~*{|E!mA(txK)*3@X_%O()@+!#34`#5VAXDK z1EKLh%%TT|>mEk73{{QeE&c2cyN@_Dc|;0&o$36%kUx`$agP3RJVIzvHveA6NO2-B zdF1a*t-7;f3g~s)iRCl2OluK^;0hkhXom>KVt;L}F($}xHpnu)3}KZnm$M&IWcw9@vsil#8gam=rQbK!@te>#YLyg1PTe{5yFs6GPjB_BjApM28YU+9(p2$auw&UI#O?&@Bq7I_4?O^<_9Rl|#(i`7vQ<*Vbe&<>MFu|$Q)N%WqP zNtLX#1wHA;yHt|{qXSCULysjgM3Ho(_sX0`fVtSl@B(J$XrWk&M@g!0>MP%%38y># z_IMdoVWiC<#j*39HTTW=_O_iV4r(YB&y0^Dums*dEcC}AJ$xl_FM0Ah<}ZXw-+^Tb zUe;F%invZF>(N}Bz&^R2RQr9NWT05M2is}(IT3vd=gF%4pbYUhV_I(_hKn&OwIw3P zJA(h*7kdy~ZX6G`QVob77GsZnez_&^$?tJe_Vq>xHppXnuUo(&hZ>}IeU+p81oTt) zJ%jyPJ)ZHA^xF2w-LUs_NW8rWZC2VR4iSw5yf+W^Sjb0faK+U7+H@wHHGjt1HmVLU zW_CHRk1aXHxQa4(Fj&U6G1>$ht+JKaC@@oO;efif3>dV0Ol!*D`1437w3}>L=nt9a zE=OC}enheuuEoT$Zh>lKV(zWJbJMo=iSrRDf5ZNGI)qx&F#9LXj)wP*%8H3%FO z5p2Zl!h;y!o?tC&Eyl4n3cw=0_es8sS}N1cb+m{(kGwzB1ZKxW|4E|yu=+k->90%Z zdIfmfWr;f^XcY2g%i8EdzeZ%=4^c#PC6y(2A?r4yAR2ToOhrXiuM6d4OH)ifuqlyWHd!Y}Nr2>s<8^qx znU!yL>hWML?b*fHcWagLVW_)M?|no>s;mJBP8KSIqZP>TVKIO+-e+ygfNXMOfiV)8 zeqymy!5B3?Y)Oc2c*Uifwu?wg;CkkB|MZXR>}(44nU!SrmZmC)Jyoc&r%xg@dfyypw$oT53ZXT+9@HaN!zgbSUD?l2f74@Veg_|_Z1*5lf!%*j=`owws@ zL3^uN*bQ}FUpZdIKa3SJP~RMxRZaUF`1?U%f1EoEOJ%^OWTlck+>SEy+_-REEjw>XBC*Cb^PJEeo9P2yb2<#H(^;iOSGOER83sT@1eyu5cMX$ zW6J*RN}~{UsvysE>NtX>{lSIIeoFaZuj;xsHb1V3SW~&J`W2GbX*!Y4mc~e-tpEh> zR|a{F%yWISeL4Iy}@xFtG~%2+V6gHQyAsA90~nfK?y+B zcgL!SQYKc)y3;H)w)0L^aQDJ#jCE~(D84l4zavHiMUWbFGHT7LF_m00gaFfFshMFZ z5FVKz#cqm<-cM9z@%KUVB6^Yzo-B|i$%p5w3DDn)Z_h+nG7loo0K5*{mXJovnZ1uK z2e5tu7;HFeoMCqO)d-2Fec)#BL`U*eUdY6k%ovoaZ&pHyGWuhwbs3psRqYbo3?1LN z@}Aqe^l)(~mqo-~P^@4g^B$5uUyGFUYSYvNoyQ>dz{d1<-M;^LzB1rYd9bG~>i;9Oca|4-8S;<<7So+eR* ztY@sg^vKBiPv@!3$`50NuSo=&Cv3MYG^gXgV-PFc=|`rPvMlVCEdz6z>#7X;lIVQA z)}>MX(?+WVs;eMdh;H5&u@YP^Um_rk=#)}IVeJ_iRnj^ zB+h)v=e^>kY5@YNqml(D&k`{4_#>9{nKqjLK5iyTfR)MYeG(W$pDD{ zRk$QylN;r{ciotk z+Ea0$-l0Aa$M%KeG>TRv-ZNO2=wP^CocTq0-U{FDiNIeV!X*Up*_auZyx@t%iNUqIYzMd$tAkJv@8>po3D{hU~VH(E)ottI-nD2`RR(?`U^1Q?2H4c_kvNTIA&+ag2=;#-I z3bC7U@1y@7Jagie?$XKQtWH(&MEc+=|50b!p0F9++SM8Cgcci+Svl&{YS(hJhYCH2 zocFmPxWUG3#FK(ZuIVMvcQMBxS`R=NLifi2%)UN`jt9eh1%Rc1n6JzjBxV~QAO*aU z_@6{^-&?Xo9s~3a0Pt<{{%wz^P_kP#_hEn8NC7i%4;})**Pk(8|0VhWZppqXvVR3v z{uL~Netyg5e+wqo&kKvc|F<#H@(yH;8^UXpIiGebc2_bOfzM=Q`Uu1LG(!F! zm8}%2e+RIza55dGu$2@v6%@3-Jf?GkQA(iJ&sr6t?MOsK1c_&0eetWkb-Q3GVstcL zsW9($)Pz^gC78;py--|O|5{J4jy|*Um1%OZZGHrA-pJ8yVpy0Wa>wjx)@O&&Tr zaq^LL9B$~3Vi$_b(P2O03ftC$a*v=O{Ki3w!n}zDs=}2@vg*5l*37lqNUN^ncR7`3 zn-JCX*E+iEorPZ~(v}*A_nJ+9Qx%AovabEs`0Jx#yLsU}_bny7GYWNn)_9-Sh zb~8_=YosYaT!-GTX3m<0NkoWMoVTWJPnCla-wS_vg9$K>;D9n?D=GOHUF5sJd@?>* zT_`_$F8NVMluDCiX~eyH@Y&DkZ39G>I~o>#=qXx`jP0ZvgDHt@zSFS%?oKVy+HajAX4e&+Qr65`SlY2XT2US)^ z*BslL>$i&NwZ*x5KgE0rlxuNh_DDvuP<|5JAbcunr0_iYplS8!x4#*K6UWr*Ap6Yz z5yI?JbbqsZR>l;XuQjF1MKtJCRkQD>46Ue6yok6O2WT%Biuc1pIcyuGB}m(=pif)u?uIy4$>iXlQ#3NyM~sU~$r z!BemM<;2cr9^9YVEAVPK%7$0$jF~amJL($SmCt{7WX{$XY{{D16V=+O$-=j7O;>Li zHNQ*{%*FTzbsY@$s@w0(XwuJ@CE-CNjY&t-n6*P@0ua{j2c^%f(F6j}b2+&8h9}H9^vVQl@#ru|vAZG&ilb!wzYPFR*311ef+nCamf)g5jJ^KAj;`|g|p+CdU>26v2 zE_p5GHG!ShauDL)+Vy*q1II0IO}ouM?X8Zq*qiJ^FV|)}g?&c$1HdjhBU7)Sk88{( zBQ_Uhq%P?*9e=3=CHACemw8$c&ZaV-1k?*Z`j|qJY}Ge1*^Z=i8E;(sv@v*k(Ri^Q zzJ<_8eB3zlwQ}pW7Gzd_$<#viMXeH^R8+lYW%h;k||dhe7g z20p}+2?H=u97{X03@hORGIK(XLK`i81bhjdD1s4LHb=2vTO+nRxDIqyyLQE##pXhGNI~X-Gc}aB5srP&Z?#m()FQdMt83gGPcUvzE(PQm^Kn6A!4>-)`FK2w z81+7>+1jBmS=njpg(=l4EYiv4QjwNIeG*g8we-0wR$#PN!HA)ip%rs4wOv|i$U9}( zN(qf??sx8fmakbh7qCcyn1iE^%u4v_e*N5QX1Csq%O!B8R?Czm zW-5XKOlnXA!GVGI{%YqZu_>d`Y0T73v>BQS+;E;I1KF|PsNc8B(vRgloH) z4nL<|HglxmTYg7Hv0l;}5!84RImm8B8eYs*c{_>1bu% zf>DO{$^i&}au7sSw%|_GgYMABLh?rTdKs$|1{^A9WDo!pV^4JMix?B=@S**2d^`<9jT;foE!p+zHwQF9y(uSLnVt9eG~dQ-SQ z1C%ZiS@&UkxWF`BW$seY#7_66Fl*Ix4YLxYG(aJrNGH!g8aR?V{E`!93?Ja2(Udr8DNjP^7R1>+7VsLuubTc%Q z2A-LJ0Go^XycEUs07k(A8mo(wWa<^?w{p>34z`*t_#9!Z5^ucL@?q2QfcxnC!}$O9JbM z012q~0$N)hsanR7+>|_GEa)A@imf)Eu^(D3Ud2C82Rr|TEN*_mLgg(i3LRe99XUSQ zHj;V%j=?%f?n6Izwhr`nq87Y9I5&ykr>L}SA#ZuS zI9u7yBU!4KE=C7)cRkgI>EHvNg2X>UjgQ)u`v;gxFzT46a4eQ!q$1P<_WSi;r6i+S31ih;jtDUXXoZqs#!}l7aH8 zKntmjwtXY}8z}@kflvVA4 zVmf}vN)++f8a$%&!$+<#uoJwmcmC*u;Hyf&SBeG6T7cjm93aR7f6U20nI3EhXcF;p>e)Vws z5ua1hI4D=zD>tvVzmIx#^^McjRFIOoS1Ia3L$5k`X^_C8?8;dX-2Ss>HV-qugV8gC z8e;lT2afVM?;`1wfH3+V;Ar-5S7!<5oceCp@ie$GO}g;)*fPwE{Ae*WTe&?j1VR2Q zjPdNjN@ssB6}nw;G5TO9>DoHw7V;}^#KLv^Qw8Gy$&e?w`m%8j=U?+Xv%-LlWBjCrlo zewA8+j=cb}$pAwz>LV-BhcG95UQma7Fz)YAFewIYX&vM{Gjl{P)9&&=V2twHn74H7~?^z5xVbXv9wJjPv zp`nw(EY;EPpi{MN9~b!(pJJBb5?tApOWKiJqwGT9!2d{n3^U#MjdkpP^oLyZpOG!N z$iWkZD#|Lgw{{mm|5{}PU5q<6`Ni3JJVny+`rqDEu>JcDT3$vk@HAK(OF=L?gZ~cj z0W8aO+qYobPjAgL>K{9XAUKT;^-mx)kj@sPb&LN}c}$-FN6de$7y|ai4BHp|{I9hD zS>(54!HnRqgZ|s*)(!u*k${rHZifgM!u!WN|45Yh$9^(EiN99=Z<||2q%avELLB6n ztC-813G{jK(Dw0})2(mrG<`udTKD%AFkPKewW!@*lFkSo656m}9fn1{HT~^GKNv4> zRQrnyb2T!nlI@7rj%%Qh38Z$=I#=R0GH`c`avsXl2)Wg`!J+S<(e6#P49YUE1g*ke zANi-tu#*E5-o9$n0Qb`QY)8fr1pbZX0~lP-F+oP8lpZy!(jJTEZqdMWmxMZJUm^_N ztcY`D9Xu>&ad|)BBwyAYs(2!&DJo1YhS}SIG|pZJa6S(!Hw{H-F+CpW*ytI{d7HPlF!?DyE|#>1cCg_Dta{F(>tP}fpCnJ4`efJPk2WN}$#@3B!nk(G z@{4;t^~A6FMx^%cDDA@;C3SMP5sS6QMwU8Up&}JwKnufYreZw!# z*S89{n50+~#vNiIcewcUoXf@SntSi*2c*7+VVs&zbJgr)*vi|btB9!2US1pxUl3EP zW3YvvSPd8qdKMf=lEt&ZxnBEoaIpvWk*1q8eqhRC@-|E;Vd;IiT4|^+xb!G1hgwwq z)ESGmr`%B86P1s+Y8K}3LUeIlpn|vE*QRW{Y{%*xxz&e^+@N417clsjz@`CNx&2e= zH~iKq=HxK+1sb}(FUhFT)g!_Gq1#BPn#<)i(~jQIh{u8GB0gK*eoF)<5ymyWbNyPMItTElq^4 z1j@aG_UdVyC-)n^LOGDZyy#&<6SHr^RpH$z)3Wv~bxTPdQ!RsTQ^#W|!1Rf_Bvgn@Vx zj((Yzwg?d4JfV&m5EA4UJbpykUZFS5ehX`q?Q;;f@6W8r*(&^cD zz9T5TFMBgE*Y0==P4kVMk>N-?azzmX1|Mm_C(g+I|Dm#F7SFXNaf927GGO6A_-PY4 zPVfW;wNd=dR2ex23aEok4q&vf!E+Rf`CbS({;Ee7wcn>#6A6LXdN=LYZpcEz z&aS?5uXz35kX~Oz#(T+Unev9y_(ox%YEm$@SFB!4Q1Do*<#HwmFw|2a-h@u|n(SLw znRkgz3Vt2aB6Prn+TXPseBb=`KuKV}%LJx=qzN<;Q@`JQK?$$Dmv$6<$L@MsV5p!= z4j)um;O@}%1#RRu^+6?9;3xW0+yiwotef1q$8%x0Ie?r-cf7@`uMPx}%+La}MO@-gjWhGbV9E+OhrzuO9So}DZ zU950nuS+6*5$~-CfSsEyIubjt4orF|HLYsHT_GL-h%cCzm}0G*9CU+2_*o!}Xr~i% zZ&wrUhuB1~%Xn*Oqyp73XM-tkU@y#c0-MGp;1JH1Ue+I6rN$2v;5$wE`YtOZ8gJ)3 z&p2*`haHf5!`%_o0(42BrtWRLz+1IhCkDZ2&;KyT2}0;=!rN;og`OBQBnw#Ifn_^< zmxwLF2eDD*a_HKLU!5T-b4n0l>5Jngk8F;UI@@|wIm>?k*VsuElxl6L3nqd zS@!v0#NN@40lMk)9bd4k03%da9=79{($J7ncLI?_eG}uZbe=GCwPUFng)Ez+wjzEH ztIy!U9K*%uYRme&ABt!1){ug?27?pvoj6vp&T>*VjrjR*vQ@*dC7lKxrZ*$KRu$1A zh)T~1gYXx^{`98hwMLJj$7w-`0#R={5AF}o9))|o$oD^8B4#29KJV|nR=>jMZ&|8n zd5s%59td7ruR8e^aBG6XiDhd#qg%(>5$#aT8QpVQ-JEZpIYU|oglb;8btUr@$S2B| zR3?!@ZOLVMa@jnRU&^xJKAK}rXAnH8YF$p^}tmD(UUuNGSqXb09dE=#80KLl~nR6N0c-q zB+21ZpvcUufRbN^H!MKx(F)IJ#DgsK_s)Kk(_Va8yWYt!Jv4f$(7MvZQ8THPb6n?; zdcx(X?Fg041b@Vko`wwKMQ(;&t9;t`2N3Uv-9(BB8`Z+Oa*e?^I+e#BL!OrY6MfvkC8DdYak z6l?zo7YSn;=}%q9k6>;zwzE*dX}r=UYjk`zAdPt$Lp^Sv7_NgQo8}i8RQD5US@xip z7T%S?^MFZy9Gdu|j)otsyWSmAOBZrD;hm@{N#{*OJOh%$!eTAxlEf87(#YH*eaV7~|IrA~G{*lRXk}q&`Y!ZAn z!iBWl3W|k>y9n?UPh8;E^$C$UD&Vhi#AqMM*QZXrkb+#kEU{jKxMqxmtlH`lz@8Wf z17N-g{Wa<%{|mO4cjrR*8&d!vHn8!{z94iv4HveGLlQ-id7!JGG2)01;v)sskS@_M z0->y|{U1q7=%m#Vc&w7BAi^@2t9^-4dq3g{wPH4(oFwjXJuwe2ne2_vLEvn*JP)bm zF)1Kf=u-(`MkW9GHtvx>!9U>1?2G87P$|R#EptCLHtbg@RY?m#{Jh8!79WE&I;!W4 zgef5>i`c?heNz~y){wbm+$5t^#^Ntx6tuaOQm1BzVf6dmoeAa{F~TbJPDGA#^+$yM zSACY0@G@eMThH?(7397$v!pK=bH==ubiQ>(_D@Pgkic}+2Z35+#*7s|ip$ zzjCRySW*XFc2f~|xx#uTCG2P8dO{$vpTUf>&}ltUVAOnaO})lXC@1D+5rY&;r`3b? zY3HP-WCb4LgwKc{apz{|RS7CWd|I0CbdW+l;Xe=Bq@8vXB5i81V5Aw9PSm)H#{ZTh zX$ar+1D$AvDtLiIx>-~v%kbGM{^G;3B+DuMUA-?gw(CqW{X}aIbO1?@XJ|67wz-j% zy9$0tDkk&n3>GT-S6?V(qzm^0$_SyL34Tx&>)JBmx$GKG+#klzi0cvLS(w^BcVn}} zXo;QqjA2du%|{QQqsY%^NmRR5IUmX5Kl;0M@%pVVPxqB*;-UY-E+Ly6?SITe3>&lg ztk)K;xHgAdB+tSYZdm^!p&obqy?fA~`%%Doa^ske*`uZ1#&!?&(vOd9>uZlbU9h05 z#{X!`C}j38G~|22)afrGANO$*tM%Oz{aLBpognqowj*_jpRW5PvO3V@{zl=tz<#}9 zGjC&a96e%YJXB_Ve65F0Y*{CPIi#Y+G6 z=c{`~c-wo8@cZZ3ve?ly;?Pc$qSy68Cf-K=&eTXeERaEsJ+fz`mDH7SYS;D^n*GRW zm9;sSaWg{jnDDFXPtg?u9EQdIjxi<+NYin-PRUJib7%BSltSL2ga9KpD%OTRydOj_ zNdAN~4Qg?^D11nxYNU7}XWz;S0ILyw>z ze$NE5HOrUsW46=>z3Hb9_C=^Y#~=*OKao~~3vp|*)JQiNw|_58YeE5Y9uG1g0jWx$fI}_~_@I9Ri0C%_F%SXFIAA?e zd4=Nq2MYiC7gMtCLXC5u|C<@Uf2-JC=p9g*W_05%TxSv4-O9WrVZmOr{F~tdw*$E) z`67y9pO@VhyjxWltSzPwqEIk!n(47*|f`Bj@Il@3rK&YHsvREB%XBG14fzjN}c>q*CtP z>Q|^OnPM&Ks}!;~|Nq+(GwMQdbgIJeY5QK;<4zVKtXtbgplq1_GuVcnO!9hTBVrIw z5BF>`r7SG&(CH4Q0zKi(cW4M=`JOoxj{7doMhg z+-P6kZOp7~qs}1LHbU05LkODOFXW<$xi#fj)E?8B;Qs%!qgfdaF;;vcbP|YdX(D7# z9&rci2LOq)+VTBwhC;2XYo2Vh#rW;b(2TT@KPGLJ#mKXZyd;YS9$!p~Gb$+?;}T-o zp>1|?(06qxpbWoi41k{z0#Htf90Al}Ld6gBvR<_Ieoy15W(>Hu)fNETbrAeB9~b{W z$ES~;fjbJFnBqMl$ry>|3U0~o+3CdW?wom&0T);8i@0o}hJ+Tcl(;}5XaqX^TU?MZf zSKyG}6&o6_yQKTJMn&~xHbi>?mx_vxj`tDhNQQws!I6tmahPo@t0z?EF26~Lb8xm$ zM5Gk}gauk$*_|7Xp7^itl-b0k$W8V1>EvEOJ2&a!@2ehfGys{U;LT>5a=kPP!zr~O zNBo#>YX+!kjtb)YPfkzQ{cfb5e-SNqCpNn3PoL!fFr7%n5;=8U89Tky*2-suT)@n7 zhlrH1EM1jLV++KmBujZ!5?&*CnI=P_lDy(0uL%rDLFqe<+nb(E2ba>*dNNz3 zsWC*egZjOPGb4KjvZCz`->SEoXlwE8u9t=P*93?_)iy7AqGKloq$KZl;LjOLp+&;= z_E?0gglQg%)8g@!D~NSU!sW;JBR)7upXIuH;%bKm%{=f?dJ zFtDsJ{qJuS5usA%I+u(xr0X8@7^>UdxJna+1^?fHa7OxCT6vDN|hU$(QsQnw6 zH8jxcnSwRcB_Bxh{UUu99g_p)8^XvAJ+zIWljLSs$J)q`-S?jObq#vE_O3RsM22P+ z*hCqkz|yL@1LbuFoa4RF9Vw3=7rc-&wBGX{r&}_}H{=^B9*gB&q7)6wMt&enMd{V4?W@}sxxTyMf&Ta6`Bh?=oLrnG4_ zl}$jS_*1+tUgpS8QpcmPck%E>Gslp-!YRCHkv6I1CA}nb!l>VQc0HWl9FVumr_Moy7h#yg;SaWBd!attEcx5!Yeh{7ja#70GB)ysbdzat}hTLWEryZ13< zK7RHty2>rK?GWlWfT~*LHX@t@n#&z3;am_-vmEQ25Rq8kPgYAL8O!#I)@H}76ECAp*w{UkX8xFVdw^>W@u^Yd*Csi=l$Q` z{d&K_nSJ)!d-Ym-t$hNKUGo*XW~$Cai6hstb1J;~5+XAP`Cm;=F>;$M(n(qKPq>9p zno8n%JqSpvB6Zl77dY0(A2qaJ_j{t~``F+Z=@vJ85S^iQyQ7&3CHY+rq>KyO&rSLO z3W~*t=U0U#^^!_ZLj5Bo5HC5+I~u*} z^f9%n>YNlFsqzvremla=5=L{^(y4L5r@TIxSV%5xf<@mX0u)?5Gvn~uj0 zZ&I7CL ze!vQ%tKm!YiO))l%F4fESBxy=iX0lt|HOs`^X+|bt6wj23>?$zx3Yv`hg~V;S@NPG z7yGkpQ{;G3F3pd}sC>Nr%*Wy0-YTtkzY>-hL zbtR*%lV^tV$D9P)uvXwD%Se$>b-O2%j0z#(kvw%_xsg1*&`J&GJ4_q5pq66FRnlzO zwpngny>{@u4p0}#i2ydpUZ@^+gCCv=XXS-fD&*fp>T9fU1&egwgf-sg=k0Gt!4SL# zAcQDPX2e&-=?|}5f!%PM&Rmv!O_#ao9I;_YH6dsz1z{F!Lq`UH%UB(>23;C&*J8|vD#ZOEgn1&JZ;fQ$IcUG#TR_v)r|j@ zy1DChCM&zj4(jf!u-l^9=9R4Dh;4UxQN9o@XpwVwi16$f>$Y+E12+eIvX)efKtyvP zQr~0Tt2cmQ7YBvcAH$2q^DnIGTY1vTPzqCO(qqp)z2CL(i(G~zeP6vRJdku9mdQU+ z6`t}u%ch3_`1>$ZYs@r|+MxpnHcGTjw7td8*nXhM|(z$^nv1R#U^U%3V5D7vOZGY0vCHiq5q4{yCF zPz(Y$<%Q$M+lHj>iYl`ukC<)T=PU+|z{&c7jrojIcmCkMZU7g=wnf1%%b!1Mwq_j6u7V z-S&h=xqFcD4ESE<4qX2RY_jWaJ*v`m=6{ju)R`kfYFb=|J1Wil7gOt*Y+`V8sC9Di>>al|)qbHJ0Ollf@K;W#d* zJhttv%>Z;JPde6IM6HhU7&qz2D>1>t=p#)ozr?bCa_>rvlDMetCNqyvZtOOjWLUgr zZN`osf_DXRe`3wUza3$XHR3JeB>G3e zn$8|0RPheK)b#v`7?fJ&WNGcI$t*2<6q+dnT%D4e`ZSyskYMJaBo#K@N?LvI6EpYpJ5<~(A!sB4 zMa>J*6P%?t!u=vR>gRu|Myc1~796wkuZ5eNnXVbXd-$#&2~$*&22nlR7AO{Ey-!rp z`OZeh?8jA8+uYZjss@aqc;i%5N+&phU!?Wl-;pEtT@iQfd%Nv1K4WGFIn@QM@Y5lanALrxzlV4gk5`zRsTCGvE z=3DJj30y5kPcXpLxoQ;Qj2_TSSSvz&WOku&tz)ra+mhYnTc;sM|Uiw9n?E~_Uk1()HOQ$YV3j> zo>w<>zn47Fl9ByYmJcnq3eL?Aujb8!GyZH0fc2#((FVI4O4!bL9WIb~1S2WL@XbI` z#Qx4m1}&7dH^sqbuXwT!+4sKml*6Cr=1bH4)h`iCpU&RlfR0noznx&i&f}1WSobg- zvm$CtG6yT0e2!WYP0oJo)(aMq5Cxfk)rBeEZyY`hkmnDxPs>mlN*NB;HJ=XkMa8kU zgurb~XX?#0>nu!l^Pl#~8R@a#gry}Eoj++J7oiImMHa@4+mZ)9;ApkWUaZ4B5L|52 z{CrL3Biu3_TrSh`Q#*+y>+m$6ZmGe?wsCe(Hw5vTlT70IcFhJXy?%6UYG>gK;yDV1 zxqdWWW;C3s0$;7?Iq`68i-eAg9~9PgL{7AT1lfH(Yy2PY9??rR+uwi*zWnsoUnEz_ zIbE&%d_I4C!Hv~$i*>^D*xtMGb{kkg$Wk=>tX+2S3HKw2Kxt6qZu-rp)8r~PDw5Ax zQ`6kEW}B??I$Q!pK@LGNXdglx++Hm3?*Rx=p*! zwd@~gGf1w&Hg^nGu+5>h6Lq9x<>xXqZjOoz>4@(p%}y-k0Sulb_6;u)y~X^}Zw_|* zrbPAc@)x`(Zn3wVRL&ql%Tiy1HJUxy`m|V4kugD_rB?j)dh@O0_pU#f|GcYOvad3r zrWFlI)s3>H8-JL71uZLXn6K68m8aEPEgX{4eywcWjouA^12+1ZupvxnMiP}b(xnO; z8q(dBi6>%+!An73zXI#XM|$0DB72Hk!o+}}=( zmX%}!eoP<&olc5)#{OOl+cnTjFtAmw0PXFg^v{IqFRbSApp3v14A4u2OIOPOOf3na zTu?Q}lKBA;{5tIB#VBwF9Cv%||BMs)e;K#i1!Tnj=iUGBXO6Du6Ksy!7hnwNfCy=3 z>K}@S0hj$;EK<4r_p<|`5b%eJYXAyx$2QQR|M|{i(7RG|C56mHGT$QP)%T*i+d)NNKEE|u zi=sgLK3`<}D;76kMEy-8cvXQjnnvVpoU~Pk*FpB8+C;d2}`5&rGwDY|@e_EY3K<;9rX3K0UN)*=aZHshfSc zdJ+A7q_qTj-qcgc{*nB}&Kmpyz8H=&#ayM4he& zK46X#Eo3cM>rcZzRfZ8giu`q`3nba}y5 zicP6;IxX9+#VxMejx`p7wDILTI83S|ul66u4e6Jjw#`WmFF~K7q&yWapgw*Jygh1WV)pWd92 zrFKl0LQ(TVn>tEsP#YEyF3^X>N-8b1!c7lk?MvS5nSqL z!~9#nt&rahSa}2TkfTOi2o@}Z=QeH{K-fD{C9q`;6SkIZ8RkK&1nu_JEFi`$4Whg) z1sJt6hGMYg=r3nNmdjOqTHzwkh!F4|W>v;`?H z8H4Qj3o`jSs4gZ)@$%e*a9^tqKK+zu8o9*@!?^_Qi7uINKUMU@4@JE7-gj|e-PX5w zM4=8UjQx5hR{?V|H3yT){G+OtH6FyXN{S6o_K@x=KvHJH26_uhwb=O^mUViSd>WM` z5(_4D$Oft6--&Ry8XDzy`FKd>H|~<7q3n1tgzxi)6J%k6$^gMz{~?yx2BZjFfG5H7 zf*=m;o6`THM}6KX%TUr+p>;1jH@!hM=jyPdK#WFbxFN)-+?z%V{#GnW`FWdTfw^FCSVn+l?!m@PCS%5qE!-a!uw9-slusU_hefgYc~j!UtT8=w zrAi(3@*k)s6n~@=7c?8Mz+9{Op>TA^vNMM#|6PGzKq@u^>rjEEo%)+GGw%w-iNMZa zuog>I7r$lO#~FVsNt$&{q?a0*?!&=Vo2|a%WRX1%h0Q>))-2nAOxj}X%nf*N_1yMi zirXTQ-vcOcCl71;FUbGiuV|vmYgOfzxQR&1Cy@uGW3|9s3HO%Yf z54~4%R*>v54(Z93P4JBh-@Dd>Tf0r(cG&X$TR>wf3p+CG1tQodk>eMSPU3=! z!T9BtAvIkuxX`PJp{v%UxILD6@<;L{Rt~B?sdao`?TWD_T9N{WJ}A^PZrbUid%Ox1 z7o)Di5>8C+yo;i>KK&*(jg7bk>)cI*iJaA70*=JE)utxrFPmnM1=C6VEO3MVZkPTV zSc0EYv2bY(&lVCQNFQTz|D9_u6EPjp9FYDzlh7xS#OA1h~HHciM-zkXY@{6|GUzto*qaV5Bn0^g3nvPQut5EXu zyzu?b`j*n`3#JyDs5jsG$D5mUM4f$K2f-PZ*zzC*fNWgkN(tji)M2pGTnbUn_mjzE6qIczWn{p zI~KVM(?Y#&RO$JT?_@857Vtm)*i(tz5lCZD26c2j+Vf5;_{<7)K_%TS9{oQajK+>sei}@R8Ap5*;z@fI#y$537#=ih zDFC7AAxLo)?%;O~P!@Jz$I(^IwqJTRgG3OxGSit4aLlj5@b-C({yiz=O#KoVxiWr{ z=c%9~5$T-^{}i}T$hA=-npO$xf|#bAnG0QiXJdda;Q(GSB%CE=;4ctBOI?KtYA?_I z_P)cOV1lAT(l1f7YUI86=lKh8;0pv*k;*TcTzc5jl8|-nykF=8c4Qfd&@8~dKoeO* zH|cNh2p}dS26P1c90&{vVi@mA{^Pob5hC@~;@N*8^TNB9y@@VKO3l^#_oIS5BxQpb zRnz@+>o%G1Kg<&&Vq|K6t@c0F**;DlCb>I z+BH~!&Enp9G^y0ptO#L1TEKxTw_qEcc((JI$=u7ylp_)Jy-f^0xB>CJ#*j~BKnlSl z*6TV92<5__P=bVedfoPB-1Ma&Qv&&=?FFhaEzi5i|IKCE{Ail{y-h#gx}H^9%kRQd zQ|1vw%?@LXA_a4M&9VQ6ivw%VNE*qp!5oY*u4fL}{woqX+E8!MHGrpfel{!je|^n& zI^z6;xBV@7sP$MYf=-~e5M1QloP$$)|NxuzW?r;B}#;0TM8?mbKJ;_3_k(sJp@4?Guopk#P+U^JD6 z&uRQsNHb58{|!Up}Mi5x;jCBgjnAIFLae` z6B^v={wQ9nHR!hOE%e$EJV&*8^k#R>vDk%lE8-7pXa3fFGHBnOjTTfN{Y)b}T(q*D ztlnSPN)Uu_Y)e25kX_ZaeNYxPp*f7z!48g(Q^G>Or&S4Ir3MRI z+Ox74BNifiJ01NzyDb(xVim?61ruQHPmfxI0)Ajp#Joh1bt6d12i1UZf~PK`3vUny zpla-bx?D4_$uD`UriGrlvlq`Qt)(T99xQwdBjjfaCfZWK$7Nf5G`dh0>ie8dv-GY1 z56#e_uC(us9If!G@R<90xMoAV2CnrQ*~*NIpNhjPfxCmp*-i~AM>pPSjP)vX%3Eps zf3U>xILJAit9n(;(eM@*sx)Kh!zJ4LVHEW!-sQoDMo-VVHCN`&ekjJI3%dn^Ea`;2N8Wt!A={@TAYnM) zxh;x{yd?f4I5d)O2aoFol>)JqFl^9Fw*sDI20X>DOW;OAA?L4S$|CP7N zN0yOm+qY*siv0b7`~eXIv29Yk?~MThbNrOBgh*T{}K!*)&eqq%mQJva_za@zuePVbM zmL5g-eb=Yt7PK6rHB~z1La+D;{y5|r27vO-XkAwCi^HqbqISE0UDM(E*)HT>e|r;q&GvgULRJyx2GbL)sKhe7Ec@Lowe zh4(ho!5dHaA3#L0!BVyxIiG+0qOrph{^1QD#q0Z`C0I0qHUnAmG?s1H$#3}Y_rGy? zei2A!h!2QNtGP0vBasromw;I!tsedWjbo;sYj%S z&3DiDpnSfk)`-j|9ZLBF2N_L$u7zj^_bseW0{rH&{#a7W7swW*pJK|{*Mp&1t6skg ze+|+o9P;}6g-2Hu;SnH}j{^FJ$3KCy+U^uYC*SNa>Mm&=#6%VbdkNPiy;OR}6GJ5y zN|xR%V=<689aFRDJ7fesD11%o7FX$X7O;>xX!Qf>Um9}u#-a9D^y;OU+2E74T)3Rt z)SL1F;BxDGFn*7qcSMDvOJ$y#YME)F@BHSy?Nz7g(+79VZRCW8Mv~rtuS7YE-PHWb z#K6;K=A+an5l?6t+V`cVssuxh<1X>)(OU+&n&`P2GXJ+PdqOh;h{!$=%sgl{DONLC z^7TExawK#C+S?I7-txjb%A4>Mrh_h(yEXB+ej2m$;d=heQ9vjju^GOnvbW*?^~;*w zRYRVfy?dMXTI&^=jfmN#jp=#&ie2<$hg@#4>Q(zT`qlzB8zJ`&iBZ|R0yXE@QJ3)u z*tOun&P6~n++Ke*bMSC^@o0$E&3 zub@Ah1NM6jWSj7Nh!F~TNCa}afR`h(76SxVK=%6rdH=kr>lOU#O*ed4M{?7}b9h=x zz`w@TXYA}+D#eX1SziQLLf$^V-;iXh1dg)gN{{voP41=RnfB}&ib==-3U(1n5i&|Cld zFNczmrKF{SG|?w#N}2v+X4fx3O*Rz&nG_*2BH}#AU9nYHR)2n`1QsGUaGzHi2iJsr7n7mX6J#qL-u*YsC96{61`;xym=T0)J^Z) zLv;WVaEU|eS615oUy#JG!8?yNAc5!|Q16eTk8gv(eVnjU;N}J2T+f{?{ykyb3syjL zvC$eom$@XLzjMY;fB+92)SHHnO}2GaV49+BcqMZX!3mpw9`iv24bnJtDW|w_#(Fc~ z6k-2D4>ciZcB3IZ)fc!*pO-w~>b0xA(;!3DqmSk%$W^5M3TWM!#k@xKVyX4!9PH zy-L4nud}O&u)Fkzaezk_^)~Lb7dq|#(R=DCeY)D_w}=^xUnRIl@;&Ni*&-^*^;{IFQqd56nW@gso>~AAFWtkKgy3WMx^({ORsg9dpA=( zTK(Wb);}d}&D<4m9X}cmt$_S>(KWl`0J9G!np6lR) zHu31mpx&(E7ucRyG}8GCr&bFWCTfxC`b?(;_dp?nyEp|kDa|EUIi~Z#T+^0oH-$SQ z#Uc|ffm7}md9025p%`B6$f@27T>ZnZpjGfX^W6$?kDX(lEI1|q(sInwXnUUiqlA_y zut4FvO}9a_i9v|Hhd)ETMk$9oGfLz88PSHf*MuKw2OM6}6%o7me>a6$o4xWIlTebS}TjGO*mpEP9Yo$P&R@P5-kEe>dY zT?B0?ge)YeQ20vBeCuX(4>y|}kYHfL2eFC24rW?UivO%mzpdC?xR2Da34bJ(1{f`mnYFX?&f1e zkR*^v9trJWX1Hb)#0i)~edM@LcfMfhsAX?g`AYqN)~@U4BZd_bnUroN#jp3+?AZ;_ zB7^W=lPD$HaD>UbO#1~GatG*pRJHHH4C~R}P^68kd6YQ(?T5|x1jCTF>HD`sdwSU;$gwW#AoY#DeITC&XofFAU-ttdzqVdjg$s{S#X3Z9mhT*mge#ZTHPWd@bw(s}4y(vf zAS5)*J}bvSg=O!Z6qS;K)Ov4jS=m_m857)1r>7CW-%nI~w^gLRZsT9x5KOTz1kJqxe9Nv*y!Ut(tf9p3$uC5oV_?l8TMg~irRQ3QzF~o z_{1FRt+69d5(QAYpeuv=aTIvCS^NrsJMP{nw4prmZ)o?>P=DPAcuQ%IR9FH%GdA8o z5+dE}2^4fZ-K;YtB({2_NDB4bKYc1SY_40?B-1y zpf;_sL)^P8(-)Ro$X&IrSZtPZv}=L*dO(ojs3!)7JpcXxmX2{PoxC^vFx><2Bq%}r zD`zUx#!)}zd(KCBAQUT=BH9$cWrzw&Zn!$-+-=yjssf>Fe)0~s-f6!c7O|)|F<=&~ zZbpI`WmC21PM%sR2%9-@xSn8_(SBxYxGMihFW ze#IAvC|^hjnXUf}P(*3;Teo;34=)ZmgkLj7w3L?8qCP#QRtvP7SGdiFxLIS)-(m8k zZH&)_%k1myHPffM)#~Q*~;5w z?x*e_K0w!W@S$0JfrvsYsBA@E8s>T^JxDoUO~Mb4;&kK{qFiags0+p83Tg1NX~0?C zt6|BLNf#)#Ab`;V)xv05i<>YL+4cLWg9vp*kWDZmx||z*LLb4X79s3NgO(j8Twc2Z z(!i8LJr?jT83+2vZx6BqT~YD}^cN!<<^WGNV~`#Nw3>0?gCJS`ocnS0r~QNb?feiY zh@cSu)yuMg!V8aAyBb;O1aApa%OKIgfL6<8=aXzKy*aUKnlp+in4k(Ne|1?{qcwSv zf49qoXU{}H-3gav$*#d#^0V^|_Nu)&jiO{%LLy;;1onFd)@Sn*f?s`3k}1hX0{j*KPjCZfTAGIf~fpA_TbD z8sSy$*wOTXyW2yaJHR2I_8HQ8t-Eoq?s`hHsB19j zfbt?1QC_yc0lt);%PkgW^6QlhCcy?pGx$Y=8WC46U_IG9$G9xn`3DW1nS=LMSKxYv z>ZZQdvn<$}WEDrIxavH(Ep^=XpH=sce z@albGGYpqC1DA|_83~Z*|7(#&Ht2^}0Ox0C&nx8eT=x=#|AcU<(wC?2mmF|;P{Spk z`DZRf1J#C@aB~ykb`FzSI&RJZeq=-h%a^3c2qT34y&s)p(W#hNY+o&tw~Zb1Y@hw4 zXbegkA6LvE8Rmc**Z3<+Li~d+E2S<0?iAYVJl>WDZt#MHq%E;xQE5(&K*RqLzswL(bk!8<9dtG z0i5KguqU>NtFY-_FNE0Aopf62hCGkW$!`y)xLY&)o+aW=e!54vEWGH z$4S9^evjs@(iLd^?(m)|Bp8#LZs|_G2}%QT+02?bp?#UXcFJeFo4;}rgUUCrgZg=2 zAjmV|FTVVy{wN)^=^fHL8t$oW*HoUllNyZ$+K~k{6FCo4H|Iq1_l?!dxSEy?-rFpA zJD-92!BaI^+@xn`Ej6d#a`teA^D&aGnzK3;jHO7z*5(V3DBj7dgAfp=2)l*u1V%I> zJYHtPcX-L|_mkVPSLfxk3KET6(01dYvMSdzk$gn zm%GCA`TNlZ!FR-4pL2JB3hPuacR&AHkGt^b?4G&EWCG@^-G=&epC)%zq&oJWRNES?7#EjYLMq$~bX&#ehub6V~zZ9GEpSV-O zkw7y5eGJtOjgOVegwMX}mFOaos1%~pxeKKmix9Y?ez$>&v7Q_{(QK5#Uz05J+c=C; z0eJgyS9HWWgrd!6r=hVT4hQ6D{2qtiGWFs1`{|bmf3K-5*r!4A(UNhIjUdD_bV>{B zE(IN!k_x2fi>XIeUBrCHPbnP-wtu$|hvUQs=E(sxcvGZ{s8uCF9V`yNd8(u1O2%1) zElVP-G`7CPNar&LB}C{&-@X#`g_GP16H2aG@Js(}QUxGTB;pnktEnqS6sGI@q0S8l zZwT`pJQiPpv9q&BoU=G$x=OMfd{hd&^x(E%aA17M@ud*(qe%y>k38?kDhl=9JlIm*bdUs#cIY7ASmg^(-yfk5S!-<$MyT7xzOJ|urK^1p6|R580NMnISm-a&oc=?5j@VC zT&0GD#Ws;SJZuJj&aKsOHbbSz)ol7sy7QNxq7hbR^RvBgN|j!L$D3!~pKld+@C=20 z;X^qr49}lRLar7rxKYWaQ8~^$KqhJNo+6XXwDZ|~#Q2q`gTOvCi++Nv{K~P;K3zGx zhhkI`jYw;U-0Lv^;yee2YJQxOY%*0={!JI{f@RtD4G$6cz(hfh_pF_kaDn&a?CgN` zBXWnloRE$Xx_KKzZ znc-4%pV9v8q8H^z!+fhy3R}KTetn)Q&hs`{ldUt`sGp*k9G+DEnu+8115$VaNv6|8 z1nq=XZQ1iWNeEpK&<+ixRxhkBjwH&(yJ`Oodu)u0lewvmht=wP3&us}(#`QkhnZar zkRQ^kZ_>6LhwFoin||;)IpUVw5f6lWK0MFaX-K9qIJs02md}M(1U{(4 zb$e3qp2TPSI$_WkbO>7o%;R8m74Qp^9<}_jGPby&7LRfQdy}{cIwcuMS1>qbW+J_C zI~;2r{j`QU-_V&gu`ga>0SD@x>8k$V@R9hBVIqVNII5|sn+#HsIls)~H92XC>>jOC zo1tttk-Py(L4@{p%WJ{gx+di_N-~txm|eC<>FFblypKCK32zm!Ihwqt^e}-10wv5ae2wE;y0zc*kgy7w9#>j)+B zn&!^Zs#!L^wiXd-nEGgHe^OX*U<4fV6%#ieBM{$VV?Or-Z>==G+cWb*8C6k5@6=<0 zTsaMY`7It1QjpBf?-qT~hx#``C<`o47abnQLw-!@_7oAX@)lW(E~;dh9hE4q`qPgqH<_f8C~L_S z**1MO-fT2+>r3yxWl>~tFDj|MU~kJ$!%H?d1aS`cXp+z{w53V+tV?XA-M?Y*g)x~* zYoJ|~Q1+wYKrS`4z=n_=W^v{9XAHS@5zIn7XNG;#F(*`7^JK|xFxY^RY2uh@-6u$kXT{T5q z-HZCgP=QBho+>r3_KM@DKxm$1i6<@9tFaCt)5K(Go);c#ioJ+SgHRPT=G3RA`qEd-T`LxW zU)A>9rrsd=CR~F+?DNb3M$nYGiXRkc&XbJJW9eL9x+D`aQkM)~82A&o(z1LY!n z-RYkcr-QcZlL$jlV^%atPVC{U#)iDS%1W0>(JMJ-1{M~osnJSjVK z>I!8r$jlGMt12<0)ZO0?4vl^<)Uc{x_cK|4hTHzpbNV`i6wl>}!ty#& z`;Mt?s}iwtodJoAmi>t?mG4&1?Vz2^;QEoa&VD`OMFC1)*>YpO^*S}Y3YEHtc5A0h zvApw2@$K*1EO_`65HADuqF*bskp(wLOz3QJ@s?k?L%UeyG++#FQN>vnc=Y}cLerp1 zKn>(htlF9H;iH%+(S4HrqV21EDL)in3 zNYW6%pHW_v;~HLGwh&P@D!=Tw+|464);S`6^u&iD8mc!sGU2-Ra~!`noDDs5rdHK* zHYo=*g;1IWj100jc0cMlWG|KwIOTJH?|`6AEb$*rQbGwVZ?X+0Ddrd94vAhR{G5^c z7QuXzyj(_xka}ExjW`Y*#&bKa$osg_Nv4k9v#uUij6FnTJnUTjt?|gIaT#mV`^#}^ z`+W5V-&xji9W~$UdXMA%7kkPbDxel|zRiO^5|an~%Yh!RaNm#&B;kIZbF;c>$}|~j z6f=N5LrSTb-yFWYge5+(*ryE=+`+hm=a_VLSwQX&wq!t3X-fGu=_)@;v0G?@RB}kJ z*h+#_iMWhIg6{}bMvT1$zl97eqo$MFiL=nv5`KwnIV6&xSrxk{4QHeTa)yGY^VA{G zSJLqaLIxxFRqNyg$-@MCg@FJI`suWUYjC5$K)zToF8%fX3O5A^@e)S(XeL8wgdLMm z4#`3yl$cK~CTk^MZdsOv=&>Iy(XBAu0IMyK07gZ$eQPlE)kzG(pBNw9Lt+xE7jvRo zWWk~8uee=gutW0sN>a@o*bmjW`lq0rLEQe|JI7nbIAno|l91nz$WB@#O$4hl$+Np( z(UfwG8Lc82unzv8>En!(1{8X8UBxKCmZXbUa^&^;Jl6xE$qY|^b2|gexjHq z>@AoiLH6I6OM>oy4IU-Qq4V{Xv9Ssk1-83V%ez#;$Rz9bo>=@wEV-Ompw)c*TdL#~&|wQIcNNRwr~J~k ziX?26uXb&j>dfS87v!8doLhNpt8Z(opX9a~2z~VmAo=rU^&a7f0ZL+Trs$$u+52RZ zHx{mj!arA=(nqKczJRj+S%tq(H^S?TPT{6=^Ve>&J zmP;XjvKi+1V6xG8b9~N+Cj8He&Gh3CxfgGf40N)&B`f8R&HVtRuL2tRBn}Ko@qMex z>b{x4?uRh-p&6XpYe5oTEY{0>v|>#J)uMU%Vp7%U(@J(2H3RI^QLn8Ai27QQO|`}{ z6u*1>5J9KEU-x>=nalVWYp`)qRynU#-l2#nbp*IJOcC<#?E*b9F?lptG>4=l2)f^o zP-TU2SE_`JM|HbAau$o^CjCVd>}EelWP5Q|=_W+H4u2UVh!fUZs4F+2n5@SQGbFtO z`_`+BsvB&saavxB^+6LD_PV_PNcWZe^*_>&de!Z`hvE&KobB<1(gGOP18I3%z(0Wi zPJbJpGWvv}UzZiOAzvH2UfmtC@_NPD4yby%u$b=nKM#}pMM7HDoE}VQOnBEXRN^gj zc`dK8z5M1$v8C$M65}!cDAe)rCFwrcBl>LX=^ejA5TI*-o`H8z?}c{miLz=9t|&8{ zU;GX4)5?3pUt{foLViEi1v@W|(|X4^rk!hgj|W2&8lc1jaxnw(HeUd}w}4&>f;I&M z1$386Rv#s@n$>`gF-&ost?^A*;qNP<21b!qLW6H6(ce@!yBb8uvXGebG&af+Q+h}C zTZF8>F_KymRH^`>FMr~(!Na%wLH!poCR5)Gr=HUSFz0IRpLH@f&rU!9T!ai1sxD3q zKQcqpS!Q z=QAukZ`{DFn^B0zF zQxEfWP9Ob5vtQt^?JjH}u0?7pCMXRdFrZ(WW)c?BaO0ib8T1G8+Uc<|Y^-gx$o_`Y z;E+d@CkKX~(b?Y@MXEaUaz&fGzI&A85X_{mqUcP>Y9%z`~>*@ME6 zM_}vbNz#a&s+^-PhdQ^!Ff@bUMA-b=4y{Wd?JBk$W4#d`JfEpP_v^~Ir4H{#99fm3 zj_gd3sADg%Ym-b@$Lylimb5u<8UwGLOGCPDcVAc*=4w|+1#s6Z={Ur`kMF}{Y-(gv z7J=iz@_76eRD_5>e){b%uuEYuza_uX1=J1zTt>;_OFGqex&y-=>YaRQ2!RZIF zjNwV>v(RG}`CaeYNlzRaxnBPhhWrazAD|hI>4Tz`^Y@Gh&bVxkU=AL|#pdZ_3G3+txh&#Mp zJ!-<~0b$jzg1qJ|FNEUnyGXeU4pw+u+Iw@#6=K9uHx%()1Jyp!M4Jv+f0Gmx z<6fUD5&hKuEu<>?r)#WMG^mqOPeFDP@im^kF-yXE2VYIcRy7Ac%6^*OxPxQO***U= z_ke+ypd@8*Nk8dI5kPFg#S%uL#&NA{u|N)wo$GndEK?U&g zUDl>fFKyf!!a+Kfh4adS?rUPE`mMbRUJH|hG}qV^>XZkyD5{i{<3mjwQO#*!JbH`_yqP|;W zv**^%Ms%Q3W!5maje^>G&21ak-M*l#bQdJMy3=0PR#zV}P1|{IjnFjh=PYtLxN1b^UlU8kN>!DedIGiK;3vgkEu>!Ot zH+QkxQ(w&{!Q?7v^9eoJaj@jI7f_TkMc`QV4<6TbLwY7lNq}PmFC5S&#nt{mghX}v zL$AulMzOTGQOLPRcZI8HrdEwZfOP=)zT=^Ki9-$Wjmd==#mcS%q%PmwbUJI#GU8(( zVs0w0#EzgVgb29#^AN}R*uk0LC(?D9g9rC0bD?ECGgb^H2`O!q+d6u1Te^H}#u25_ znaU&!oR%2}Bg}&KHuoRVN3vit8Am0H-c!zSt;)xR%Cq$-cE>NhMzVk2inb)bz9&C{ zC8{P&Y0SHDwROv0m@YyM#C1Vu^b0KdQwz=dv>{I9rKMZ+qlJ6R(#|VDx;qMqLg~ zQ@8(;mkz0~<*3n+7V(NCOdsAtTMd$v>I&&i;X>L_BWqt6X*w4_Rt-7D8ZI6W_3P}=Uj4zfj;KEBLV zR!>_Q^P%ou$U#kp>)ib0(8}d=m2fX~QFg(d%%#CAYec)b%;9zPIansk!t#hCiKx{AGDj9K~WSC@^VUoa}GLOB|`(h3G;^zXBrPT>?Q8HKRw&1Onp1_0gH3H zJ+btVHvN^Lp2gPNF?&iIb~@v4%Q`!m9~+mNZ9bbum5S{i*zxLvu+>yiX zA#<|3br5b4n}cjW=GtkQhA#jBMXZ6a*{ZS}kDm07#*6u$&(^vnNY6YVS(y3W;-BBM zcH^JJ8|PnutAN`&AR#9}o&Zhh#UmA{6Y>XlS44Y50&DpJZ)P*cJV)c;h^|qoIRmv3aB-8n$d@014GwVLUI#lXzIHkHUko6ce=rbG zCG|Bb{ez+6Ukv4@ltJk#)c^E21<{oLp=sTojGW_UP%-DfBfQg{^UD9;?dg4sU(9~7D900^esPW3SZaLnst3BROjXN=Y;j@8 z_=NQta>WQ6VV>dy0{86k` zCOSx7P5I7iX?qP$?&qnDH)rhPMB?Ku7r{T`*!+f<8JT0=F6-w=r2aGX(O~F|lue7? zK&c>3s;cj_{0q>KW0@6bW&t##Yw>wp!h>4F02#P%Pel;jCo0KYySV@7`yaRrDjSDA zZ||9L3ty|qhZS4827G%95TZ9oxj9}4UFle=nKQ#0Up(4K^$uVDq;a7H-EhkBQcOlf zgTKE&+!ez%Ufls)57-s!WpazBjQQfGEx_$xBynRiJ5UNnXEQU2r3P%n@u&x|>h_gt znJH17@9$w+{ZkW-5h53zUbq;vWL%L!@z43Lx7fl$3*6d5Us+DBda7nmPa2eBBY^oW z%E)pzq`$kwX7vpD+J6p+KLK*+Zh7kb5kjxS#Z(GBmJKO7tVU;Umoo=y?pyLt_{b86 zdVsoym=rRMjzVRPbwP}^bI8Yd6Bjpp7}_eB;At8Jco^%e4Sbl64+_Q}$8+*4fu^S! zIX-W|CQ0Ym>vL;7qBuK&9-1D#VMtmr;9CvkU6|XY0-^^{AF~3)>_XsqOh8=9C75$f zOmb*Hv$mjBc{FEZ5%D!3>BvPuigNdcNOR(jH``pHHa=%Ix zD&#e-7bhzT@#TCX1zUlzktDj1h! zwSRzGi&eqAQ(;LNz{zZh!`#^9z3ws_$Fk}Hg4`*UdAb&4qvvV9pwmasOSNqPywjC(pd967|?3ZwKa=t?fzil4`4 zd4}iW14PBYe-Gv=$8fFWlABZ(XfVnEX6}fKyQGk*Z%?~i|V)Y1_Z=0SQaz>xJs)g@k>TAl@Ri;PHFNDr* zYNA7*i|^5p!ykB;L4p46=%IYU^LxI+$BX#xVGKFr(@7;AKu`_9$Qn@x%$nv@Hu2uG zNI8Fj$3d5Yu>)^+nIO)sg1@(Cr#rTLZk%E&up}$DbY5IwsH&={u%W5XaBFS4uwuAi z9aul)W`o~;fQmTS6YZnNOOy+w$_E(R+t${$0*J7`huGJDxsQh$VW^nbcZcCi#P z35c;V8=UkktFGQuHA!D_+up!*8vIC+yL=54 zi_GGqi(f5zJ8Y~y%)p9t=Z^YR4o?3MJkG82i6VlzA^l|76T{{wrp~Q%*6OU=_aSqH z_?vzRAJO|Q&*%#q=lLEZaQp?Lfd*6bDq|GK?j(p_!nsgDW*FYMyQZ`<{c@#PaGJbCH-M;fL9h4AxPv^xxm){>( zL0pooC5$LPI#Dhgq4R+`$~BfKNAn3~mw_vv?<{l2Dqc^0#MQ+`dR0UJDN`EDJ!Re@ zN9)HEBR+8-4f-2B@we!-$~wH zd2-b$N?<|IW`F4OJ zsh^;|G^?WqYOTM@I(ks)-v+!8sup_UdmwXG8D#DBeG*XULtFP61PkQr*n46?ap`|_DP2irX^?>$f?+NA7pT+~3};2Br?%J6F@^$Fs({Mi!QiezZx&~RQ)3n`I05i282tKCHXk~argmyy zQ{M#l3D?y_#s;IoDUq6f2lxP#zl@c(8A?s;rP@V(-Tp3%*AydUmoXU~!3 zVD^DjnXYode}7>Z?Mnzbrp+=vj@J{Vogmt@Pe2{fwR`f2>yFsWFP4NfYfpQ5=TEiu zdN{O=$jA2#*KMx{;Hg z$Bkzt>*tqO*VCj-w+s_6x0_j6Q3{lzYLQ!~Ynulv`j*;CUH<>@WYpf5Td(ZUhuT}D z08{OT)xSf4D-7?+2pPlQ&QFLGB@v;E$g@agZ@64?dcR@y7x(C%iD{)LV!4Um%z?2zsYLwNv*@LlI8iZIkVe*u zrlq`J`u09EoBDbcNp)lAM-O|F?z|21@8aC`bMcz%kRc_LN2sT9OY?^rC&n4E5m}Bx zG4NRG2c!uyH3PRgTsy-ASq|N{8*f*i3rxE#X#=y?wtuqIsdEA@SgBsAoVg&&;W@Ew zoaa)(Wv72a~Loc;;$*dCT)gx%obzr*{-lTfV#A%=vl@Q)*ah z?`1QrtiCe)vDsJULYOj=J#>dzZqak+@2;PiIRdgwA#ggW{j{uL;8rw-ZsYFyyWY|< z?j}H(Hz&UPH@DCZV+~&WFoj&nh7R5k0m|v@5PB~5n2ZIwbiZ!6MFiaD%SS~D7OL^Eiho6j z39@I6eBP`<9d?3JlLfCyYny+wQ14^Un)lIqQ{y7O5ejMAAwzwY*IstmIo1`Fv}Gr- z1*T}gr%-7m%!bk-Uft7b(bVGkZp(#sM?Yl>L2-+UXP68X5x;&@gQOc5o4GV~ElKa= zI!>?uvZC}c1U_JkvnyZEJy3m%of8=mJIBe8wc2-u;o(OL45#&Ff^^B3Yu5AkeFYBt z;Bc{bg9Zi0f$^riL@=Kpm!?7tZnwUAEa6VuU3LJYB^Ze6it@!m8iSnMuZ-N1aifza zZ@z2b^=oTuO;0NXl+7pUyWu+9VNz}a@$Q<+02KW!BXX_2clwFRe~1cSw)>iZY2VM6 zjN2#GfoCgp!t*o1otl__f&#qtx8s{oM?YSS>ww8I_*DNPB$17N(xAcsHKKKAwYJs6 z41@S6_wD1Wsh-a0brWfIJ^sOUuh%~2if|r?2&O0)?l$|byL;zQ0X9gPCAQzN@r!$$ zyQ#%~J?B5nPG9E}nmfT@Y1XwVe%K-JL}8*4#FtH=>F%L+;INOyo0{2)NAubgzA6d( zU1t%VW*fxo%h;c$)0v5YD#y)C(fnSt2g*(DB==(SSCy6=K;yXCh;mm$g4P>x@=#od z+zzW1ONuUSC~)tJ(rIX+8~r7T0@g-&AEZh6{YoVbkpH>a;Kz57eX}spy16>tWJ0!a z&zZ*SPvJ;>QfrV(ye~tpYv2h3?5v@@_~cgWoM4AWXBahIdAW1=u!`xG*#Lr~fsmz+ zlQw~sZvv6Z5DGeplzyqxkp?p>KpYpFLPUPrQW%?7)*;n)nZZ}GX_{#P|J zw@Yuh^pk*^4#Ss>wr1LScG;Ers9<24~^5`)H4&M17+%*!td- z$=R!A)7>17=rxj~je+IEv$g^pIgA4~8)Zsj)?E%H`%7IPy;iu>%R&SR^lRrYt?oP& zR(Zach&D+v38K)eM{TW8H1c8AEMhxu*8DG%52&oKK-E0=f1BAtgBK$9wVUhEJD8RF zy!Ek;k&NVuwZl)bt^4b14;MX)u`BU*HdkbkD>a^Cp9aE836~CYtOG6|3pZ{1UG6ho zFDN!HhlPonjt{lZpzc>JgdVyZ_TnG8^Ra-}=qoN%2r09j{e9_^=Pbg&mva~^77*t@ z@|aLt*QXbt5wLEreSirptJ}m)V4cQU|DLDnxXq>2*uTQ7h;kHb!tytNABL6HrFau~ zi7cM^U4sMXS!2{%1y0`>x*xIC2$e`qQj0xJxKfj8?ZOW&B6A^{x#j!BBB1%D85qZ@ z@UVfX6A!Ycwr*(gbVgpn?j&vvx>Mv;xq@2~0sh!iFaO{Cu^FmD9_tAXrcYA90y09J z$t`38>PafFD~!WF>r9O&-7Q{giCMEQ&ohbGHR@>K)~2KY4HacmMTd2@<(`}2)5;4P2EkK8lauz6PNi>@hP~6@#GnHDF6Xit%ZQVLVUf!*(sec8C!|Ca<=V7b% z|2Fc_yx4;9`Op#S^~scW10E-w=#w=T^K@UQz$eXnn5@Ck%`eU@(e#q~*BwgssvkH023(simua5>egMhDwTU;(2JHYe% z>*(Rk>}8;Q>pza&h1Ylk$j}csb{D?qUw0Gu05k-AQJi=9w-a7A$zSh~2?sCh@|1`D zzx{ID1Y*ERy#FA5J^!53UA)|BV!%+fnBpIN2ZW}9%)q_)S#59N`%G>&c05NQspev` zf};e04^K%}O1mTEoYUnV&e^=1wj+l+X{-BXKDJP@X2#dEo0@a^Gmy!*UBdEY{cjss zhN6ulx)5U|V6-g3Fuk|F@S1FMpiesIZnFf=2}S2)3EDp9S1`VQ06X*JB-%2nyCX+|px!m8U()UMG#))pJN8Y6jW8;r)x_9bDro+Rww;57S4R)frkf8gzL%jn}zDd zfbq~*pI`k>ygx~9@_4?WvIlB==*QS%6g@s9I1xfo_W=SI%yhpJQ@2ccR1D3WC{&;P zRJyj4X*(SvCNL9z_&ddxoO;+MmY)Y9#ntqH|-82d<&l zT0Xpia;+4#KY35aGBOa_oMaJryUeo zUqdcG&VkUe|F~pC!RqkK61pt$-Cnr*OYXJ&Vy2-KeWU;nY=HFLRY@cDgm;-}p>&9I zA5?RzcB+60)*;K_I@E9bJ7qRkC*A%kUUEESu4YzRc80+~5b{r%lHk>gh6g&Sl zP=bDKjb?*H!Z;}>vfCUJGTfMd$G|*LA|5`bqRUjwH!z0O6Gorh-9w0_m9nAzIsz1- znx`fK{)3(L1bB~y(JglKrsLHDiQ^S69Qqf*U6;PcfSWwrm|G5NKD!LAJwvZuKOZh@ zXU&gW?d23rRYcA_R0~X?%_Sx96GFpHGAz;ostdRcmTtT zV1V&$b=Ad??e6%!2yHA$O@s@^LE_p_0dEM{VM0wzO^OIj7#W(G=~<#h#Z8P2sMSGcBV<+q-j84sm5Qu_cHf86oX9si zAEw~F?oqa}?qT}FrBp~9SBhF95rmxH%)6<2|0y#p)3!kUQ7WgAEh+ls_fuuVusmo4 zgIZH{!_e*S>905dp(-{jp|V;JVPeyDzDUhn5`ihCMI_p4@AleEIs0HYSK}ya(%vsq(7p+UsljE{9w0SUD7mdufJ~guX&Ep_gmbH}?}6wOVr_@K}$X zu{1A!Fi1oMGnB`qV%OZmJNFQFLG&M-+69*FyB*)&^RLFto)jKi5cbh|Eswpf0qrAQ zOh8f*7(ix|FQZlCUZJFtp15em!dG;;bQ(_Y3>8BfdhSeA%KefV$_qD^Iz%2^xrE2U z4jXQ6$zX#Wy&AG}Q}>NpES@xBjB@m|K|@5lG2~rN)WmzODGLw$$OwjRNP3_hX+!qa zjTV5aK@14jxW#H(K^{^?;=NW< zL7E(&ndL!EB`nbqNn^7aoBI*Ib>Qt*2PAtQ$!krtF=3gDlm3-}fU?7?EZ$>dcjpM5 zO=}aODYxv#7=F8*gI9!w_b%Z*fW^S?T-xfU>-AiRN1d8au`2^1%rKK)fr!t_NfT?wp3kq=&GpB? z%gd`{MQ4Wzq?5+^zHXgZE-aDsG?>2)5YK`5w7za}l5i^1J*azMcK*3vY>Bm2JXbSLZ&3h_1hzFZx2pMJORfysQRm3BQTH`XDKxYobMw;3+CH+t z!~}c}Dp-`O#Qm~uP16E9AQ7=qj->`=rdtp<#rh<_e#HAL9EUd{%%RtM3NKnaUpc{= zW&o3>d8%v@57vnRd)Y>QwVisolgDZmxi3F4j8@uwN;>`^H&-77TboTQ**I>~5{1#A zZwD(DvdQYJi6FH9z?FxBR}yjfI^Tpc=>S>5!xIIgKbpr7X_4L<0`k1bwx0~|zLd@H$fT*s+qmI<17uvD!=}((gSgU)uGut|v zO&@%mQ!qduGDF`~U3sHiz!3vK;CMbpIiC%_m?ilnFmp|>nT-r87PF<(I^=2>7zq(j zRXgIjr+??13W~7&Zf+fCm@nj)0wGt`V}Oj((NOWp(Q0*>vd?nODT9pb$F<{2i;En{}u+HHU23Q~I zs5H7S<<14C@f4A?s}ORf!c2QQ70`f1ZePC+J6B4)MUZQk1{cOSpBSwQJ2&Nqk>kuB z9$pMwBX2l9D{jeE!2myzB!UChw}p@RJmwV-w+xtltQF!(u2^X1_F$Qo0R}|!{pmuC z?gLjp$?c$_)eW-sLq}NgB@Q6+v`(xb!upe=Z-sseKZ1fAn>5^3T8a@`A8r;v12jh8 zU2q(4D1`@hI`fXzsJ@4lmPK8(JJbRiRr!>U2+BMV@4DYMZ(q@Ng$M!GTO{?Y&{j4K5IeLidLYYU2B`ePiP6cde(Vb=_ zwQhnzN?wJ{J8ZE_Q0zHEvzJw6Tc_&$47~5};Hlz44D9~y!dOK?T}R5|TZZJJjg~vR z*=n;NG8?P~)ouKHb~MeIkSrjMsR((`UOZY#nBkn=Ee944EyjdhsCy!W+PF;m9VaDua6i%!mas~iBX_?QHMOY#FRY-40KW6AeBngPHVXnU@d#mK#3bjJF{-$09S^b= z!(kPT3|2?V8`w?HuLtQ6za=XCI*#JPWZS6&VoIvY}5C zRy7kxaN_rhQOF23%;OeYLvwLETdnEl;j)Q5zs)kM8CXuW>(BP}2=5#~4RhQ-=el>< zBVZqkueo=PCBrsoGL?6Rw}O+MqsYbzmFyF8Hl9)q7x-8f^amw<^8Hl%MQ74pKY_UJ+M8mwQoNn4p!K%}`@I)Ez{wY#1oY~^C5@P}2|5#Z)FO!?F^ z>q;*o6`BvNgGp@AKRgn z=PR`oi>0mve_Z-Q+;OEveFCj2g=L7jd zA3uN58uv%q#Q-TS|ZBk@$gox z0AM_R+5rv9?ze4T>Bjt6{^YID^>sN<5%R}`$rk2b>DX_@yzJK$rm3ERk+|jzuN3z^ zBn0He*Aa$V+eBcKdr^JsptV7_4Ahb;1Hfosx_hj|w1Tc3NN$jddAAr92QjSd=Tbf) z-sk7(?O@2B+6eFqRAGH+0!a0W$e2zRgCLvHn609YzZ7(n{M2L_LYLkS`$Gee|z9B=O2Q{joV); zLg5**h2B}ikCWL_@kP{6YLpaYk(v(}uBXcYmW#FP>cbaQtB~V-_0w_dTB6Ov(_vW~ zqMYHAD7YNrm36b-$DQT73O4H~pQ6)7z`1OZ3WpEVDj>zq{geaEqfl!BkO1G#y*St7 z_d+d*VmcFg|7gG@er`s1_tf~*_VW1sYAT#<%V`4%o13Ww+NwfwpdQ(APkGcz-Zpf10wau?Q;2XOW! zgxiA-cI)g~$Fg_FXI2E79mGn^Lz_GN3NmX?#7n=t0C+_>L}E3aA$TD91mwfmBQh6?dM%JPoCIh!jD~=O5xd= zG;J&=O!Iqp)U_Ziw>c=f#^m3_WFTXiDmbcH*+GR|Hj2t7d~N+uR838hU!V~+kID1CT0GTpxzt} zR-#6w8`aA~JlQ~kgw>F-LYW_%b(;gBMT(Fq@g!hRfTv({+U|9l_yN8lTbRtBuArSp zDQ@4Yz-pNT1t#ogryMfe8q%h3D+BR#%B!}WsMDcjqnX$k-VB8=M!*N=kgR|Q&>8^_ zuO1DBm&+A8PIx}nd^Ei|JmH?RGm*2iy*)AELQ^;3ckm0_ds1`>@PGh0>7MchjiUTc zSNhY&Wo^`R+~;eY7}sj_a%BrWAnbBNdkuvZ+4F4szavd_;2-Dp1foy(yD=t>75nFW z0-nH;wh`XzUmxJUQ#X_CA#IHwm@(>{YF32Z%pTK5i=G89!j2N=MU%6mXU20Lum>}f zsYRWP_)N1}sGYAWL(XtRyR8m^A0o9PQ7ylZu$Y}EIo10Jv?#pzI`RV?oVycV9`PpN zXs5E0V=T?O%}x$^N)7N8SkoVY{BNB(xQovXPtK!uX~|%1S8}R{Q77S5>lG%i$o#GO z;OOR(u@zY6$tL}3VBmD5F9RTP9i*^ghqFVhFf$0rtaN0^`vBxi2IE?eeCyV?u%nbS zEC+#eD-Km-yMNqCH_+*Rm|1438ppo;q*utv}~h@+z>|O*(tl3_0yvO>!?TjjQo%Zre)IOUkdHGjo=;S@+EFcYRB5 zj`tc$0~4RuYBzh40k;T+yYaFDbqbHYofehxgw8(cLntAUkP^0dx~tGmzU#V=P4kVet!3%7%8#aZe`55 z`KHKbE2W(^lfv1(X4B(iHf_3o+l4S~KW~@0BEI`;eunLd{>%3OXA@+zy=Up=tgTjF zO5efYGkWITIWlf*I^N9%i$%Yx-Af%GlaVwvajW-yXrl?s_2nZy(xx{kHf?MCDQmM} zc+#D7%8QOF>B{3f7GIg9BK28muPF{>O=)xRNiyeQ3JWprzKr+MFIQ_fQ^H0LX%^nK z(A^b%ZgN_v&jccR3K}=*eYbJQI+Hu_0d9?G)Nk$NrFWG>T4K>V8C?=3_Z>vs3%q}b z&jw=;o@Hv$Wrlw*<)R(6l3R@ykual8qN|`CVwbHmo?Y8=^hcH`tIULrRbdtegIA5G z3B@}B-v9(+E=P;*qKpr_{67<6+GYnr;Vg*5AS$ktB&wKnlkihZG1Ykd+>&49hHcl2 z9Yj4KE9BZg`%#~dU#d8fcMgoTv%ZU2OwA6*A`IwmyfdZt)6O# z>kUCSvv0`kExj+UXX#Fa=&qvtez$H|WCzrC7psYYmR+_Q^40EibITr*UcpNbMxC7Y zrwO)`z(Po2nD$p@{(-0K$D!ari1olZqac&))51&$IdRYRR+inReH~iZTj||kZT%lG zFL~^1WS;UMp;ir=AP^E2EVq}rp|lw?datL9`{B*)m=AXgd$&god`Y$LxF(Vq_@;_A z=h0a~bjN}pFBPGRsGj>jzq!Lo24jC#rdPM3K)&er;SwHL7UGr(mx+LXw>t05e5KGB zb=(Ttr-u#oIjZz!Bt>Be5+If1i;H3^ZdI+bZIiy1G8^I?UVDZW7$g0Yz4FIptQ;No z=FgN5a;xKN1?ufdHWO<%P24x!^x7=^PR1-!qP$=)X$_6j@0U6EX!PB{mco)!KC)|h z+F9wMFbcglu-zeaozODBHvlop5P9aDotHT~R;L&jL9sWeU0ECJUjHX~w6NK<@>`E~ z?or0373^p>4*Q3zc~j&)5!N;oHlc@YJA`n*${7wDox>cx=?k$p(OCb{*MJ0aRMb=C z$e37D>Afw7M+%RgB9{#hom*p2?QjEep5K)CctVs2gAkPHCsew_WA8JWB`($nAWV*X z1C9M%*ap93HX;8|v9n8_DZ5t*c2&UJ0QFtcpiE+0!RCSacXRvmK+{gQQRhG4074#jIzTL`kj{X?vkK{!(rlGVK z)6I5oBkd8wPDJ!k^&XI#T2|<~C$>=mB(vSj+gvaWSQc!Sm*!Ebav&tpAHinRCHNKo zWI31yO|!O%LMgI9PYXnU2c@$nyEr&djFvUnn<6=DQJglx?x%&=x5Bi;ULI})Pk?PK zE28lj<+tjum18Cd`r;ysypvOXR3@W~)mb9^X@U^8p6_UVG{0E6RY&B9DE0*F8@0Oq zYA%}VD@u2wgRL4p_Dy%~%SXiXy_*|uPJFtY?rmlI;X9iRek(7htWe=Mp;p9XlU=kO zxa1YTOGIHe14H_qty5XR=G}$)%0V_bLG4>|$Ypuf--+laW^HXqR7(bXmva8lbL~6) zbHq7Isip(Gm3UkG1m?v7NRH>8A2IXhHZs=pMOYj1K= zJ67%L!N zo7pc&3fUd2EBC2m$!SArmxdb)hE#Bc3~6oSjv{1{8M)Q&R`rM;MVq%MNZI{?chEUh zUy+BLO74rcrq3uJZ3WAT05swLYObrtw*l$7OW*cZ$DfbM72Yp7^_Cf1nY8~rXGeC# zlJ3)U;=556Sw3ZuJ`DEBsctsx2~xr7Dd6b1n<3E6^qPxktjh<$h*7%F6DrjdPg|RQ zN-7IC_x@5~?4EI8K#zE#u=IgOVx}rO6(K?qcNF1bV#kNovB zmcWl{genC38;;&!i57kCHz#Y6d3Vhn`8shptFQFB>efCo_18ftuEd*u3-ElF@N&7- zS-j(q91WmOhNxlcRIs1<$YecECi|mt9z@a;lQfe}FHAUJM+%?+X1LQzNkJDwcTVFP3Z9pP z#TFlpAGhJ}upzt$1AUEl}1e{}T%!32f||Bf;m-3iR6yrVmFXx<$M)Q8-8W0kEqvQLuSgvN7B2G+(}h zS#C1nc?0Mq?%YQSvLOz_ya#b%dMljUQ%eKSCW!voA|k)Y+Wek`&yN>B0NPy!s3eB@ z0^_{rvgHu-FX&b|o7@|F@>Kq2_izw#!lHm^>{v}VA|$?WcX8T3j=Js1Ef}ai?&9hB zKVOlknJ*qNj(w505&z;00EUX)+dK+zm7e3eIQ4;|M8BhMm!CDQPg9yS(lCKSfjtop z%{hYdwz&7`!K`tBr`x}c{Rj|;CuQB`b4F1|b43YBf^VfR{NUFB#q-6inKP!Q21&Z6 zt*@G*&9E~^43k3n4lkb z3@gaBGq-yF*^&JKB!7g@!o1de!g*vJU_}TuEa>ygMW8kq{XLk_6hheHz8<)~`?f_E z2=3j*-skw`@sNh_9sB$5a`KlUv)sUjege@r>mIpx7bYZ)pafICEx0=?^DTKecK!Xs zEACT|dBCd zI*SbdR`1q=;z|ek)kUF8{g*hO65o8lP}4zo@Zqv%m1ayFr!q^dP;mQetvfVsus}OZ zZluH~^xns}4@KKMewH}zW9CJ2z3Fv4bh4ZAVOzuw->4;#S~govR8znMBI)bddoqO~ z;#nlKlBlQ0E{0Gm6eN-K8l7_0?T^P}f^Xej{MzzN+>7(t8H4XOkzcaMP!5DaEQ}e2jWOg+c+RR!@u57wm{0O(Q6@XU-^)WEi?VSa$nla5q@iIx| z=+y2ky>8$w3I$@NmZybHEB-Ey9O=n}3a0pUM+FYt8s#rl3qr#!fD&L=Kw`j?E7UhB zWb%M&DJvF}x@RcaI_oWAkKW;7#bN`CF*0ow4*W@v^n_T3JG-9zc^&2>>MORfgMH_l zdAPfFr1dW2UgoAN(_=3)_3Y`lZ4@#ctv51V@;XY|WE;OeNnzoR`ujML5%PY#Up(Eu zP4q;6cqyiuzi>{KZQ<$eT^lU(53;D9r>?HIAvpq)tecP=qZ=??p^8V_s_nTc`;kS0 zLfxCa8QA1TadN%!OktTco&TcgtbZ|ZABI4E+IjN)YyvT7do6L#6Q7%E^gr5_Q~w#S zyfo|b&F)U-VN2Z09Ncpl@DH+UR5*?YqNfjYm43p*3knK{H(H&YaPMp4IcP{Ix-E~K zrIAY-9L3dMI<{g{sA?0J4f5=)V=?#@iT$TLB6J_($eWB_INHwfV9`sfruDdrAOPSf zfY-eKdfC;rBS1d-H+$AAhBsiE#qC#N3nmBY?=th zl@GoFGYUnLu!a+RNLP+YB7b)7gjRDMer~hQ;)|E?E{Bji29@#2MJZ&CNGwMB&Q9S3 ziVc`7?x>z!llO34&B9=~!Kt~U(g#*gl`Ot&2~m<4rEDn9nhi7M1Bp0l0w)gU^R-<8 z90e4RvCT{WNdY0OUjuo#F?YQ0+l-9Nav$-ls#lhQqKQ-{^S=zII221eo#|}OkRhfvE5ajM4yl%JbzaB3fg87G+^EFmfrVBDT}XF5B`7T$KC2ly z*-8Z}tGU~|y7_^x+rc`S1nf|E8x|sMIrc+O{QlPwLvESErSAbsFTYT_TS>ayf!#vO z?}cBO);L9y`4ipk=&z>#7dUBsj9wRRvK$S>9h?fmXVZM9Yg<~Opg z6t1ddD0m5;oWVZPIr}f~x3Ag`V#eC&P^zK$KKTF12U<{>$GMNzVmjeB5Jxs&ell+p zyR?{fu+~G=YlC2Mm({#zJLU%3R;<6ZJvA~1cyR(Vd zX3BC-n(?>r&h)W(=TNH~{vD?b@pW#}AN8r+#CSsX4^Pi)9mGvG0Kp)F7#1JC1AQ0X zj1|VIvL?=g0NNV(7$S~+IqvO|BHT_4!jkT%P&STKugU0gS{BTdS)SWmgAtf`^VOG^ zC;Ptx?+&g=+O-)=BiD=vUPUjdZ0Qg}xb1vySzD${YV4*N?16w3%^F0}<0;U&tkDNVHCOtynQerQQ z-!tlUedK2&|JEz$6&_>Rlk)=XEyr{-R?*VQ_`{8BuCw-2WDs)RI|ugp@AUQUR^uN4*7tvq)icj$?9!|GG`dtY^{q9^AnU$Q zEpvn{JkY-ZQ?`D+^XUcqD_tq1Ef=KZonji9msq7Be_@TTY|oL3kjGQsNKTCL4kB3vI}!w#Lc%^@doT`q!w!?Y12@Y%?G&w zBD||h^DuAhzK%4~?qO9OSLe>Et9qqXLbkh+dWF~dVcJ-0>L@0S|M&-x`aN}@yW+4> z?G|8y{!UnE_+r{k*qorMJwC|YNBZOiAEUoj6*;K=guU-);Yk`M%s$0R&I+~0N7SqM zI*ptmU|>dPa5D%rjG@PHGO-h|e;lK;CKaV5yitkbm$KhsJT?5B&jn@wFS7%C4`&fT zJHGIl4Jhk=41Mv%QCGZpY;$S%ae?;H(o%*`VfAzWyFUES;J2-m(Mj|U*~5n93sTFA zqmQg!eWR3D3+KqL_WCB=SA)q;_Y89*a9y7IK;;)}Xe`azNTl-(8nOnw& zult_2f#U9$XUmm$uhh|{jbQrM1KtIBYS46Qb8y@N^(QLr)zRHcz%v+Wprq&)^T^^O zAG#GR(D_DO$<|Ob%xKK$q5N{kty7PzovatzC*eCWQnhaaG@?^hyA)`3e>${joleDP zECy0kw5KZ5+X}xhQaVIJPZBD<&kJ|+|I6NoWLGybJ{EIK(Ox@VKSWnmhZz%TaAR+~ zSohtPW+rBhDQR#_1%caGt*ES-l zJ&KOlvccsIhfk z$k=XE{XgcxmSFkH5N7e7`_2_>>sk*%DAEepBo~_xd59AStQ( z^)2n3-(InyXq}DRNWXpbrQY16rYE(F=T8HQ$7O(2@)s5Y@K{ptL1{FY8SF`dFZ#Q7 z)=YX>o-bzpewuPcqeS^*K?*j1PdbsGZI2!a@z?5}Nx`%_;0ilc`F0++&9+`|Wn>ul z$SFL1RyeNmzhR1@{k%3$k6UNmOHaeZ*zEma9I*1k>Kp%KEfx>p(n!Lgs=ItPvHHAu za4Uj~Iyx7&6X$*HC=}(MFBp3s7e2j?Gw&BpTmj$!&EZWd`R6R3q19K3{sY{7R14)Q z702#b&C0(j-ShO1YXxX{7S7AK$jy%HV|C@ieZ-Xm`yU_V-(UaQP72@||3CBf$05W$ zzrPA{RRw16q9E0UH$jba{g{XUxT;EkN9X$ghju?T0LxRfeBtZhpt-6R0I#%30K|av zbKx)!ceXa3XADN){Y!k$)0A%)t|#ym{3hTe;yV0ECZFf{Gg%ez&HjV9|NPbXSF$Q# zRxe-FZoTlua6aaV#2!4qu#72uF@Ge7Ld$nLocwxFOGDg~Cl&Y+Tt@ijOw^xb-gtMB zuRi=hnNQXc6N(Sg1Z|EhGAZ+E@D55deyHjRo3n(bC^CAWh=NAU%DpHdSt?uyT+f}`p*w{{47cms&nRzDdHw<* zpn~yWK!-tZfu`xLZT+nmEX37Bjr-gN`CRa24XK}iR@X|B^(yLP50A^v znh)j5cx=`^I{;7ZO<3k0kq>aGF9EB`XwPG6%k5l|kp4>C>6{GKW z>cOt+`uWVxBUQX_OisstOC^x#UQFZij(*wDBrGsT`U>=!XHR+5FabBC)w=C1nW-{c zX8&+}=V`aFN~DKBQ85X`!m51OxC<(hd&j{g!nDuHZo^%B zFQH=sd}|@QVFIe>nr2m!hMe~B8C2o^c$+>kLQotpBsi6mTn(PBJ&q; z@&@M{Au3QjInetT@6ypoS}p?yG|r}0{@$!quZuAqJr}HXV#6BCb3+69q8&PPC-SNY ztMH-IOQH0I(fR`2!-2aGojNXq+zpApio7g;zquuDvTEw)-!CfOBO!~f#-i(H5~rwm zoPt^9Y}8(G!(<8_()SxVeCVEty-7%PsuOWT>H6AMi$UUxYT2&i6RGh<{l4FrQXz*su2F6v+It?L%zkhOTt&-z0r_Crb4wL zKIms<~4jB_u8ysr1SQ0g$R=iUI3#B*=s-z&6@@xIFOByFAE za8Ad(Oy{sAYo{pTLXYfy48Ki!Fxkoi`sJ!7jg;bs(2+h>MC7IG?Tb4^6SqT6p|y;} z*d`_);wl@-!Zu+|6~z#B5=g31fi33)g4@$wy(=cG!`_4F;j%O%(_C=-qsDL5gN+O< zzZ!|vI!~^L^ac!A`zC+s7MWZ4M<-@^HhI)dON3hf4_RLw5ass#eQipR5CjP&rG+Jz z?p{E;M5!f3U;$}^l#GEX;@)g*G+E^;nQwqaBpJ8yr-48NlnZD-#lH8p@; z1hR8o2GmSvRt61T^K_F0!9aP56B2VqLKSFgq(E)5C?g&k|J+dIGj}AhS$x8=T-X&a z9`w=)q=`6Zh0jkQ4k@N|oyuej0V@B9*dMqG&r59RkDwQ{emVRS6~75|?chJ+GBd(b zfHu;_l6dVqUP9E%&ZUo}M5X@cx;B7@6dGs5k}=_0HC8Bo_th?`o7;kVk{b>38D z+`BxdOr5oOm@bwgjp1fk_-pRC-jDhV{IVFntLLm}o~#ggee%c9;RLK|tq1ud3(O|v z1_EE``D#(xG?5=0`~`OxNd{{S+O?z9pKmSys&f+4$i_y%;$Rr*^%Wy|-C!vzo`kbZ(U#5>&H5pSvma%(kb> z`jP7T-zrtm%iu_*TX#{O@8L;x)@%nMmfcslj|BNU0~!|^mNKgvBPoWB6Z#3kJAR^e zF6W*IlVWt5X*hg9f8iv=Z`x6IJlT!Zsax1v2QQ4Oq|dfzJH==~0-|2Wp!8G?ocG(d z53|>#>%tR(!f-z&$C&&$hqlmJtw3vu+}+@zy#AUeGqnCua|`bzDj*BP^{04NDTCKS zOvw&a$!vX2FZUj$-*w_$56!d)=*Rrf+IelJf9p+0LI@mtf1>AU~c@#387uM61P*{HI)d@{BtkNAH(N z_cx5zC!k)div)sYY9l+}@*GrpWTB5s+z-SNpzNnK+{IVV?OtV-?-6IZ^3~saEJJdQ zVSAT;HGsoKZ1BGFGhd~I*IVy#8p8L-Bi}Kilw3;|Jk&L;`c?U-%qYomwI;08+)O=N z*Y-vvb$At!pnR6GwvvxgJu@Jt0z0j+&LOlQYA;>ya63%0a{eer*h*+;$}dZIkq$L-!)8*)cbo<`|t zi{U#SjlGk`9VfcSJ~0#7@%UVOfrZ3igF7bnYr7AHQmHYf z7OO|)?CoFL87htQFTph;rfF4vT2#pnCWypi|Bw!a+eHmpy%0FDf8^9{C$NG zbx?5H!GkY71*ZdH%g8l2`D&iYG2~%%d9hof#!_qA;kOea%UL1-klXM@Up{iIl?)hV z#!oLe?&0sC<0Y!X;V8qmpkVfK32{0exb3RXDhI$G4(ycWiEH4HAmaI>%L~a3c;%e- z@LspkjYnuvE3P$K-6zJEmQ=s~xO8DcjRNeIg>Mw@Z)#qLTNKAZJb?bQT07Dh#3n>* z@r(1zT$h3FQP;}F1x^z(n?&g?i3 zrIzYG5^7z6Ev^jaS|q)MyysT}k9^A=O@WIVq&)~Ti>GPJgHzSXA>W5ghkARdFkCwk ztS^DqB5`1ncAbk51TYDg!AR9$)a}KX{9%+;6mtddQpZh=atsZAd2#U9SMn7JmR&Gr z?G(1fnQ#U8hM>B_m-C>SuaWpXKGs^0g-S~)`DsNxwYRG`oL<`O9(OOFaUCsnPf!1t9>5>41wrt@i&8U|Cnf~^9s?sD30>nmMz1oSwU>Tc zBd51?%753Cr_)fPAx-R?m7^?xYRPIL=uS_RQQ%mFJ?I>BeohW36lWZ9bUvbnl6ZZ8 zC9ZgKW!Kckw?znK>FS0#^80Wi2Fl0`kc!?u!lsL2n3cxNy=o7mB!Yd0oa`!O4=L@(_5;>xx&S0MTdEF(LkOX>YytHgZBkrV*4eFU(R_gZ86FyAC!H^G zLhQZH!G-0z29xEb2D22H4$<8FMB!YhU$hXYTheg6!(o77hdq{g6>Kgap?(FB2_z6j zaS4nZqX!csNOgFQa*m*Ktp>2UJdx@ zjJZBBwGC#B44b+Bsw9EHF{6dmuagkB3?}U*#I|0ztOtqqikHQRQrPY*eC_;ol)8NG zN`o?qlIhy>ynYwUJkSH;`2OBK9&i5OZ! z_+T@;yQJcOzHrBKMfN;9CVA&qyC4z-aoGS9gY~M(7pea-qJ`M-hVkEiy^Mbhq3VVyuDi)cCY8r^joeD167H2x~L$OGdql4 z;Xg}Y!CK9&G}U@isKReqX}T=HMQ4lsSHQQxQqXW#Isz)Gnddf(Y?){0SM z8z081r%G%*F3IL2ApNFxM&p?U9x~|BEKe09qowqYZY%j?^=cl_iW7QlC5L22<#x_Rp}6}ycEVDC2U9;>O?KD*$;II+_b%n_gXa~GQSoV`Dd>Y_Sq#-5Iz6_F z6~^LSK~LTre@NfnC< zoHWzBl@@FnH$~&zM+~>r-h6Z2@oVqai{3^V#}RjK3G2;dadcRXd^(dFLDmqX%w zcC|1PYzjpGST;%LlZjY#*?80q_WtQ*S}Vg2gxjlkF*qnYT!$J^e#iSxDqizvY@aI{e9PyxEj^ULuc z3pM301&wM#@yJ?4QdG8Ig&pD-3^6C{Jm+~1Are5x5rc}VqsyLdx8K9hbH7ZCM{x6o zaz3*=*(s6DoSy7)#2uw?B0hr7R_NN!CTYJ2&4E4bXEzk2Y+uA~kJ^Nwz@yjdGQSy# zEjg9#nJ?#QrT{v5UoIb#amy-8xUwq+?G+`98M_b+cRWya8E}NnG%xh8UtE(f(N;AxOdA#`(bEG3lz2A}2Xlw*Zrh({XF( zS|7SriVY^jyVb)Z#D;WhK|HyO4hxe{R=GN!tP~g~Z))%WHY0su!_05N^ds+H?eqbM zle2CtIsOpS&f~Xl{rU+zqi)bPeR4_YBt6T1@>%4{t+rkjS;&FOc*7oGv7DVR!Px-; zF>H{Gzk*cnlLk--Sa#(M1M+!-ByYfXay|uuEgV}DIqQYDNXhIC9%CO4>kt|#qFuI$ z$QMadzNaqZEYCHzv|$l#3E3p?5E?S?y1(mfn@(nLQSnZfebZ}A?wHfP0Ifn=Wl+35 zGb8xq5|}q^N36NL(&mw{$s*iOL`LfP&75l@FtZj?rz6yemFlV!i$|Q51+b$5W9!9m zVJv$!ZOFqO7{s#f`m1xL4CkeN|7&HQh@8x_G1ZutTAu{h1_tG)L=!-AhgF;TG!*xD zc>yPrV6$NbpW#;wlM~YRr53% z7al}Z#vB^jjwW9AU1D~_GH2fwbWHJTj{GE*J%w%bPi*vfgj1_7@K!7;FbhR@3AdP< zh4?Mq$ zc|cH6^ig*i#sQnLBysnTzKB8=*(;qM<^~fIElC!RW~LBnf+{yYh#0bu$`wM1^u1C|BV?zo7 zT$>oavv$cNCfcdJG0D^L@ma*(7@!I(9d!xis_YxcX#bLNl66~&Di9kKn#3%)8^nSE z77S9wgBh|fVuOR_as89@*E9~PI-ZE(Lnc8L2hUHev3DTR>Vh>kwV&6Yd*$#wrCZ+6 z^li>z8q9QJx?j?q*UnFw5O~Dob#+GD%&FL#H^H{e$hhR&wQKNn(XshYcWJMU$BFTj z@h!uIV1IPL~_7Ol^ZTMIn6 zeX)gri)Rf)T-KLj2Mzt7QqsG*oerhr^OiI~&8%4cYTLoH3mpTl<7)+B6)o-tv~+MS zN!K2iB$pL%b-oT*^Z&+geF(SFg*fZp`>(g&ar8)L7Y)^-4-5$4O4`4*^?W22*w%o1 z|Jk@$eR6daS5)*TXOmsYH3FY{J*HviL1Wj;SI3n346RyTE3>{hQ1*4P1Y_i#YwO3)K3df*6* zp#_`&b$+eGR_PnAgOPxpU+n)wSuF^rs`bxr<-Tw^jQf9n11>`gkGDoeVKZ}RFG9NW zN0zETrw6DY_iT;=+#K=d{30ar_ZdrfC#fa_sgoXfKnXs79I>_gb$Gc9Zw3xS!2IRD zk#ZR5f2jWT%2Q-_z?5pPbmRO=mm4_REZ+c=wehnJvxHAmcW-NW23ydhi8Gr=kGnnzySzbOb&cy5I+c_Ag%k z(Lt(3W5s$DcC$`;BLtU`Nm37g2!J|{t%U;1gtKE48xcSoXD6;^6cR`NhZWe`rJ77U zaG0oC4vGu`vWQ_csUY077JGGag6A6g9Y&E$%psJ&n)FEn^N@6Z6frk`Hm_8WtOOv_Ep$Z0GIh()>pw z;?SU+lBsCw)3xY)FKgq`8OR=gVJ}V1V1t?X@F;3XK8X6gMaCr2?Xd3R`~(u z(TbB}(}o5JBI0a1vTFd8``7!7`xCwXSn1y%Gu~KGN1sbH5ea9_h--8YRY0f^zMQyS0V<;x_j+hK%mYk z&dUqwcP+eA%QZ5HJ`60(2WOTa(Dqi|AS)mhCbYgPCZmwJTg_b>-x+Y61L2>t2Sre(#gOqVgB_tVa6@p3f4)-Mrh{k_*{LU~jt}yWi?~ zUp)e@s;|~X{+MkA?hApgI_+ly0Dxmq-%-7OT^}T~oaucN6(YE)X;rux3>cT4s zM=fA9vA+C0nLrP4y8koV^L@S|9vG{2!>ysY78aPI8`4ce3MN!x#2Lc?zTJ!uXB_nN zZ6UbUO|H!BX;ksoC!aQ=Q|hV9@LlOFM8}-yBLC)i+!Z*86*j?n1$z~yZ-2l`3!at! zm!p(0`a7q5o(RzQaVM~RF42DWWs}yk=+{goijThfr(Ztl4Gf%Piu!C;Wx z>SzkZH%Fp@Q%6~-BO%NlxMqc3OWZ)`sYH2i-T7_dM=rr6>HXt-(hq0S>+#@>0_g-! zMzP@{gtAb^?8?dSsGw1uKm;k3J zah-~nczyk8x2a456(4-CRhL~7ZFD5XH9ezX`7Xc6hgNHPlTnKgGqG9Cj4H*S8G{zJ#>9 z+Pv(GJPn``U@|bzXpa^EO-?kbyYzgCbsQwzt_p4V3i8!yy~VxO zmLFgOiJ%dZOJKF?V*?0$?@!c|$?}mi<~0-i(!vi;g|~Q|s{KInu2@^`z?{X&@ybae ze4SEli~=m`%#q;{E_x$=t{xvAL3cA_7c+NudT{#J$@&pzAo~jlN%0#_nzJOKE9)uUOA@|Mca5LPHe) zPTw?x|KUjYYS8>V$Bv)Rc`hH3<-GWGkxItFg5J34uO-~UiqHx&yCweWPK8I@C>~3$mpI?naBr&@@O>Y zV(jut>oc=uAwu3D!&E=}adKJlWM_j2Q3oS!uvR*4e8BDQHIO&8odYm`XdrNSWDbHqNTx)dESCYm&-`zd0 zNR0rj`RtV$8A}YX6lZg+ug@oG>vphM5Za_e6JHzp39_+x$Mm7;*bntxV&bsc55XuT z-!#(T&Q}U>rir0X)d#ZQ|JgRn2$m8@QU$i6>@YqaNz5-8J$#11kC|yaXvcvT> zLt4zT9*ZblD_K67FP#6Z<%uJ|0=F3)&H(BJ84cX0x|ZhdViZbsT{7G={Zsu|4`$qUY0_1dEY1QUt%Uup%QHr|6)(*nWt&jc-eXmiLvfD`!bh&CP)t6w# z--8ti*SN4m3^7V~xr!`xA<#1|hqy;&I-*Rul8enI)hkyHn`6!8d#X!Ou-mnTm@yUf zw>C@0n=t*-n#Wi!I-oJP#eASxqu4$9FDf!kRc2K$W@q8=o>bnt8Usg{qtbvRIh1b1foLlB+8SBC%BR$;~d4 zr}tClnV@Ei)4b>Aft6AZ<2KPGm{L0xLHmDH1Y+>!H1(uSS}QvkppQfR-V-!xP2SN#ggv?q__`R@!`NK?%MQge`WNNM72d zg&FI^cC;EFNMbvJP(Pj}-gZtiNCs1}*W?WyF^U4H(?0!EbODJJzrz*PD0PnF9ZqK& zSn6&3rI1E~mLngAJcR|fbI#afS9=F7F^6bsvFHA}-LERnDLE;oa`$j-y4alt*lqaZ zn%!hLgZmD_YWsAb>{~qU%7TVTirAteK~b#ZY7feF!^N)4$d1}Y-xqaz_U)1^)I}In z4DC-PQA7Ts$kc`GGx-@P?)o<0#$lSmPT#@mo3{>t@xX(RmWLhxy)J(il6)0BKq-ew zKGI1Ffq2Gg?S~S=7n5@al*dO$(n|exhYx~(^9P!{HK|O|v=C9)wv)FNOv(p+P^KgP z&0*Zlf(1G7+^~3f5iw*;X6LqsMqpQT8Biij@Q${38Ohbox8*Pm?=v};Jk;^r@O+BA zu&($pZ*%4VtJv?OmtyF)OwAW%dpstW_08!E*jQL)qhndlH)0?pAt_pO8-GC9#rL>X z{W9D(9O?G?U{RGGJe`|Pr!gLb!rhp-?LM05VAi;_obnnK{ztbHHeysN2^O*hdq{!| zK_MQc4aJdwe(FKUT6gzl<)j;45d($p8NyuZLZd>c_VX74Fb_X@HT;`a`;8`=C&Jj;od z+0cQt5N|c@s^lOXZ)^xespR&)pTxZV07?$3T@pYIBxvVvDCfJulczbRsl$_fxMC%# z*h%1{g)^TX1G^82%WPg!fH%h=%ELS4X|Tn*q?ry6OX|vk?vO6Ip^Eo&YGwUC_0Y9G z%*|y7eHM*3do=5AG!_K|n^uFZh-Kc+kY;IqjJz!+CCZh~BuQ8wgjrFjdrTx2l1DoX zn_O7a-)H1r4?~ogd1w3iSqsmsg03WbmL#mnNss+~s`PQxMU`F4#3O+~V3l8)wHg#GRlrFC08-r79feZT?jOJ8xKM z(c!bZ-bW|R5EjxitpDgdf4w#aoCDIHang64IIL;8J)Scr&(<5f^FH2OG@um#MLMr= zXd2|-hWX1~L;+W}qiZ&1ngjNB*(#Rv76Ay~8XmR^oI5p!exaUvuw{2Mj*nf*@_RWe zsGi;^zM@%(b_GWB!q~v8?vUq0+CvpI;+DtezD^LNr-B>kYDj?x6XH_Mo~*9*P<~^R zrZYzy9sis#?^V8gLVi)_xf67_aDwOQ^V+wi^G6;Quy5reJ5|O@4f3}I3R2qwab6(@ zzAm46?9A4dmffzwg_VDMBA`DaR(|9!c%t6jXy}+*Jz>_`3(FSm8V@HqOJJkJOIPD$ zrUO-8Uk~~a{!gO&nO8vb_*qh+kXhqsIN1C`Pk_9CAYmSLkNZqR8{>Jg+ep#p{mekh zJ+lw6$BDn~1%MJfPockV=T-9>#qfV9k%qoY%v@1`&rXVU{@MiRLO3774aa?kc#os{ zcdf;E;ImLI>R(|rfO`V{`^$MQKXuN6FabD#S;mqoI_y_p!E?2eF+P3FyL>GC+qwMC z<0l&2l2CxNT{!1oEIB8{8K61+e`vNHZvy-{)Bmhby65RNc)%ys-%3!aTaQ+vI%fww zt#n%>Isanl-&g>EOPPRw3A-4(Q0N@{a9lMw(!a>6{{Jl`?Jf9B;rGzMBF^CkZ>oIx zUS256opaE|IZvbgwb5R27o%Qq`Jndk@WKDC!_H_n(Chyb$U)T+hilG7F2HM4$N#Jo zkmJ&U`~MJ#Sm-Q@4j^a6r=j@5L;nvBmD`_$_K%ri9i#STFo)cd zsdaLt6T*c%oaZZHHuF2aVDk&8EXM!J>$`=JP(T0ZFy2r(BcKA*k|VKi4lb9qqdt1O z8NM=h2-ID>3X3g`=V4!-(m0nI&=JAyAdCa(SPhp9H`<;yD1Ue>tDsHeftEBY67lFZ zvtFR5V5iP~R>qd798zumZ>$qlnl`b|hFn5PhGE0s2p=BdTB=) zIwHj)JSwJddTLtIHDdDq9FP;|n!9Z%ivb>)n&bgo3+lD8$*isOtf6^N`|CGzY8H;U zwU0A>gfj0OM29EcoMQ?Ldr@nxKxq^7-hrN^3pKFsYw=^Cu&EB(Hs!9B;hN`95Zbnw zfROEusrcR#789hsC&S6aRGHt+k97MQW1v19B0*Ry19Su3X%=H8(RbUSv_I!^jwyR% z0{S5JawIP)fc>d_H#!+--0xcP*j7W0wRjcO;qLElF(vRUxa7K<0ISQUiQ5CR<=BGx zmka64U0R>h_Z99hY=ue^UmY=m&ZIA`p2u z)t(gEC4f!=Dt6{?PkKZx7dLZ#U2UXP36YcK(iGewa8cY8#i%c>4rbM7r0_!rFr}@P|J!f4$!Y z%@WRvDX)=j&C6)yvD*wh7X6mrAp%0`1Ps~P`1XXe(s1`QGq+#o=Cn1|ue`NMge6iY zTxtGN`7zEhbHf~!n7!5*^c$3IT*Cs($d#T``wGC$d-Ff;Y8X%YE4c2~f#R7zcR#+C znWRwW9W--i+l0DutaTO~tV52{#}?bE^*tuRwvE(pYs_5-`jzRwvL^tW?BsGX-r8lh zKg;U(WD1HlkQ?_Q{P+);t15kE`Q(u0LZRTqFdMpMby*CyDw#k}O@Vc!2Y35EtFh^7 zw<&)?vDgb&qd6N0w%Gmq&WD95D)-yV1-Cf~bj`30c9eDm>rdEOe_>!TP|v1q<3||6 zi*dy#z7fIiiXz=0If6e7pGtsiy*L{1!AdI*eYd@kAY{FD$J3AAP}Nw08m<&(nX$Xr z`5o}NL6&fDVnpKjuF;q?vJOc@=|4JaL$KoUm*6;igsYH5%Ty3*UNEc=P2DRwSbG!f z!wF>G+5t(bKf+Yq83+EZ7rH+&1N2@7I>DQxsCHp&>I4E00(nW#3Xqjbp|)PioVA~A zytwL^w+)hbU=U?`r<6^T0cKe0{XQKpM5XR!2r#A$+!Vc5!GFV!OO5pREc3hAwX6yDr@_g*A2aE8MG#T7Lask@V7K}2!p9tnI z(y2IQJZFgC!m;Wj3?=qCfWh4_>}dLrA{sp`GDS14Q8Jnw`CVTqW|Vjd}Q3Dw57thZbbYlnS;6bZ9) zaELDnxEk2$RMg;=uZH=e%e3U~=SF!i4kw5Y2NFE@$bkO3&Mv*{`rQiO)KrR`*%Y>B zX;YyM%xyo8-YFuuy%BSESDzS}o!3X9hGA~=M;N#O?Aa3c6b~zGG%OcpX@`-!n5GC2 z>y^pG^zx-{MNP7;SaBGRR5n6CArCu!8 z1aJH0SD2Rh!wsG5+QQr^IrL@uEz#Tp%Pr#WOWJ$`<;92V30`;hpGrJAz(v;$_>Jt{ zt1j`pvBoG1HStF1+;p!#4>qPWQJyUB8F{}g!qk8vrY_EMfBkRuNYOiVciuyG^gWdZ zBezmQ?+>pVY8|Cd1%io9xP8;1+_c=4{oB+0KGHh=sdANxDz+#WnA2}F(k?v{P&Jt%8<{uy|f8BqKA{+XEMH)lg{}-Sp$3!S9;3Zc2x4R6JY(9to`nN1}A0Q-` zeN`_0u6i3h2O2+w{`keuBpgXBm_+Lj>w+NngV&|rO8G4Aru$L`z?wC7&fPwsgJaAv zN#t)Gl+VS7znM$rttoQyy#<7{7=KrPUL=nA4^uU;!ZmaDDMlEHK`%fQsr%M&z zy^^PJ&}BHAnIw~T)s7dSXz#NVijMm7+BUr&m0ffB|3>E1^<)p9v)ajCk*l5F$!CECedx)z&BXOFu z7X$^kVvE!DeZE`CV(yc^uPV;A_|oOxk5h5)7fT`z+3^6^JevB(8fCnEiCtrvY`!-f zjO&zBEA*`8^pZQ2@Aq@h+K4}TZ<1AG;rU&F=pct)yl?iONEpEp|7YEG!;(5Nf+M_7@^Rryg zhj^;kvo~Y#6cC2LqeHTqT-mW{R=*s&*n0q{UOkpP=qqU|w%PFt1cxtxe9Fv%>c)5uYL8)def{Gdj{%EqSl_pkpN0n> zmJYVI4s#`bOQbh3#Bri!ra5xZSIQV>g_e)mtt8htN(bicm5wfd-|U+qzmz45*>tYe zXSbLUUk3Y!E9f3@r`^C`I#weO8kDZ-F-1!g+61?1V(GliN}u=h=9prA+dDUBuIyIk zKQGn!g|C1kbs}_4g%LQbH;0~>`!~TW)Alp(g%aE<-Xd}RJ@MdxH^5_Y)g6hO*xs@B zcj#b0<#$u!_YgQjgG*ShTT2aUmwg5NgU$2PAH_{uS{1kC9;YdB)T<{6Z&}^#$2fXL z-CBQzbqLpe$j(7Ok3?xRDH|8koXXUeYq;D*Cl&Ptxx#-Xmo16E*ZT7Fa3IdY?#PzA zcL{b5t z$wvm%RLK*aS7NuJY0Ex%)GoEx7uTyJQjj_aK{o_=`^@gtW>;9>t?e>6GkKO(B zDv;-3%jZplW?xx*m($<{XL3ryul+E%vTP@&&>5DXD2BCqIH6R=6uGNNA0wSy!ePH- zf4`6VCTo3;G_;Wjo;te!v##J?m9+7=qBr`Pj1JPal!@yUsS^znLI7j9Wh zFcDm62&~}-hH@)_Vb=}iaW~mNcn;#V=^whLL~w$^hg*osF@YAHVALTW|0ov~(L3oU z)~Cey5uUnN;m@Km=5H6w{4W%EWX_{TKp@itH?YG??JZP0&6d_c9x^Co(4o!rRnwWBdBlk{}=sb_oo|e|;`J z&ENGt!0_*UYH)%Wt7E*nmkGX6B_+D(Ak_bx9&l-1<|Qr+^KGE1=yzBBmG_8mZ|Le) zj@%B8qZODOp{4(O)nmn?i+yLUOG~i6DDzvMO8<8t0g_u$^9q>drqMi5#j1@s1px8Q z=ALWLb`f&N1|Zla2v4a@LzoL*Hva%kkU z%og?8x_YhHI9J-KoB%ZJEXLSbnk^G0`eo*(fWgQ5!wh)f0U3}+2$&WDgj*U~)M0h( z**HIY!)Jt>40i@4(KqpYZew0>L#Zi9Cz~3~kgBw%&_XS{NK?>qM!FWrNCcq0k&Og! zp0QJ{_i{(!n!a;#eL<&=4tQ&`=4u)5%8kXXN`8qxaJbvjRW>5*b$lH z{NkXtUzcR4u!9}*v2S6Gl1$|l1O)RSbvlW;+Qj(fK|9mezT zh^~*7b-$!TTviWqnmSFX?%q999C*fDt-d^3tqx?v6T?!~rx~qythf<7HdSo5SUJD( zhe@f=B&sZ$=Ko6X{9-n~L?Tpxi+1|vM{*;wpK>*;?c)tN#Dq1W`rUgtTRxtsZNafJ z!`Y&aq``igWO+{>KGi5A#^si$_-0gp?S8AMON?I5S{*(W~0kePTY9 z^0UX0jrilgHv;*3xBe<~@81by3EZsSE~ip00sbdL-^%SLnFx3?$u%7p~Xzq9?-q_BH?kio5~P$=0!JE9>T7X3wTEn4~vV zHV>6+$uGzt1k**e%vW*;?C(Bt!7|UC>@>a!q>bru9*AwylWdKfeiHd^X{fcoeR~Cl zt-1;p)LE-KohE%8pvUpVGj${Lg@q`OL4=eX<4`?6BKL4t1|8o#C3X-9XA z7LoMG7U6t{C5{aQuR0W&&?8yeUP9DL-G2GA@16I#G;z&+QLt{AQ?Hw9;Zg%WxU z{GfRQ8JmnOK_W{cYp%Tw>Aj`HfD-ydv_zc#D-Gz#RF)0{OUh`EHsrjb4t zUrgR2zqiGfa?0FDrA({#3^{FYS6O@Nd%sNM8T&6!6j;x3r?{AKh9r@tV116m&G17w zWj27qM$eG`!q?Z;d-J?vGS|{Y1-RFPn}}~j{`&cM1)8ECV>KIg(@{&}v@DV)z`vf` zEC4DApxRbeqhv6gBC5XCPpG*6L5l*3c~xTy?1lyLEI`{+Qzv48f#-JQ7ibrNTq;#^ zy|Szgd3st`l)dsC{ma?>u3A%R@9%eaZl$H-O#+ptJB*H)=9k6$RTbwlOuw&eBfMvV zaeHCXIz(kh3lk8q*P{KS@*3c<&POLui0iV_MZL|pdt7LkYv`X#K!NmB=^zx>DUKCu zcU(^{-L^rs3xUGaZ6v58uYeu;%^K?()x&Vd;i}7$jr*KTsIh*(kzos9;|&a*=d2$* zMS{|l_h-9|*aN;~KIpd7Zk{zRxSWeMBa6A*A72_cpLO6F0VO-_ex`3)t1+RL8cQk- zy;)aez{?TRo;XSO9Q{jkiO%at*s!pJthpa{+IEwIDTI_O8MzUO4AT zUj=1sn#6~$KZLEzKLkqNT)1z5qk9Cf_C4TEFBdxDhgIJvl!5x{T| zTgA4qhnM24xw3SA6`8n`JlJj7O680-lbbr)%F25_+^Yh>fpZl}21z+&yrG7Uvsxa- z<|$RQ-?bFi$r^p3`_@lU_+v@@qe08BTb8vPO&v2Tqd4!YXnfBgV0!>OAq2L-C@d$= z@@e;9h`vyKu;syl<5_n^d4M&mP0Dq43ZUZN^jkyPu0chcM+~hq0#5N=s;&z%P;m$E z2v5=ia#(wWm^53!L$zZ;)H>%qv5zSq#Jwe9rD{NisE|9|@0p%bNtkJzLC_)Se8K!U zOQe?%qVH3ArY575IRb%9KdDaS!v}-(zy267!0o8q{bosJ^}|{we}Qk5NvOAg24qt6 z%(Ti*c#=OAlCPt0Z_ zs9+nXX-MIMQs>_T^0lA}&p5+d6{-q?=n+0l!Q(XPRucl$$wck##7n_;9X6rULY6gD zuZ%QrthPxfR=PcYN_oW?&kP?q_)bIO%PsDr4CIp8DAP2j+0wFkL0#e5rxQ9nvs{j) z;R9}0$xNUA+5%G_-fF2tAMlV?6kTe^Q`*BFu;uBU9S)3WjlM>&L%2-ID_>ezVTg4L zg=JJM_yMoDl!hvE)R%|xeKIa94Vu&zXI)8cBDtn1UN>n%5TG%UuoYxAfG}4vkdGLA z5NQtFRX409pj@x!9^1SMCjevoadpe(_-(pYiCCIkZ}sa&<9bH&x|+p@tqO(y3a4HN z@@y`ZdqcJb3~|Ht?(<QY-i)By-9WYmVijUPIJPnxvlNCL(xhPYTbQSV9jLYUe6ON^VscYtB2bZ z0wfXYTQ{JtbzYaMnJw?{DC^7S>$}>lKY3zB_RpN!G{D^)?^U?7CfCjvu$K>jd9>d1 zZh2xoSzV^hK2kD!=xyQnN_Sc?R{G?jqviVF>8Q^m(?72*gr#?N+a*6kf1Dn0tK%M( zYF>W7*WJp=a%p+cI-T-k8$Fg{<{qql5l=I$f1LxXzT)X=A%a$^W3-4@v^xf#Q88GP z=nNx$e0ZY!i|uk<@X78s2J(h&ccTJaUz`uD<ba?u)X+1$em>vKG zQ(Auq-LOBv#SOH64*^n@0_q+Lzbt);TDEI^`xiWilTpzwzMU6%a*nb=k*_2HPsrtv z_D2}Ojivub+gpc4^}KdcW{}ZJrU#DSQ7()>YbX1T=?G4vChszN2OG0bx_sHE!h|^;#9<>ARafbj> zYWE1e8RF{k46sv%E1$C&T2K#il6OlpeS=J|z*`(z!?q5@>&jTZ`1za^;_Ae=&L&mjL~m}7qX#DB z!B2EuAOZa*`0x|UvTF85>am}W9{O7aKvZ;?w%k5A;T0du17X|p%aN0r>N`ww(S1Xub+Yc0cV zo;UB7kMcal>MSCC+7SIcq6Y7b#jVvX!LYb5(i~u=rV_hkC|1fq037<9B|er9ZcPr%yjxmPETbxEI_ zkVE9vBf|?vEM1^npv zCa`Uw5gF_=J{N!wG`}! zGe!ocObsC*U#TvuN~Dd~lSShJ^W8Uil`{pDF9R)Xg0~YT`qx^3?v*0_--^P|JsWAm zn_z0R9M)+zGH3xIvfNLd$-#&`SQWXh!!2DwT|W?Hu{${J2nx&f%UP z-?n9d4$6z=`GI(OE=}D73(as*u?%gOC5`Ozlzh4x8`)fEKE38Pqfg9>&zBb+B9=N* zp}F-c(>zE~tv1;c`J$7@>^a<$MB6VKA4C#3alISvAFp+w`b%CvU=K)_mYFKWul_YR z?#2LvU#2%Y<^~fmO_Hz&jLF~fH(0GtKlU@X4(-kB11=N&JH?YvT~7x>tWdm>%t#7H zWnmEN+TVOtfCo(bFC%phv8~s)f@cw8XfNg=XUeR?)LB=L~2hJ5XlHgIUNvNx_hJLIe10?W0gZ9tN z(Al7%wy-UYbVrQb9V?YiEF39G0+%TYTagaP!?o`odazkKUe!@6vkuE;p;bo_7IapM z#T5j%CI3%|YuF5Mef4k&+bcp)Ue)=m6G)=-N|@D2~aHDnM1fdi(h}q#y&ObLBreT?nUp$t*Mz z!2vVA1hbIV(R{8Y*mrd_A;8!*BbUH3aT;s?^v){hh*>mj8cDP$(3f=rb4`{j?tjJa zAf3ywZSVFe(l|-{!FbVO9kBAF#LsZ)j??FE)Ka`yeaIGS!8N7W>19-Zt~K`xzP{$` zWzJ8mqb)WZ<6}+qBFGlejsGM^BRAL!32*HtPh1Z~l-_gxiL_;hm@#9}^HpNafYLYX z*u&9h<}D&0WJ|tUTe)!|Cu8MiQ6~awHhnDCK3m>?L*J$6#~e1T{f5Kn-_e*$buqo? zuV)Q^*8F54?d4YmwXUts%B2J{b}RP(TJuMQ$usk2uhV6ZRbRc!@PelfV(PQ4{H>&f zPj?kDp~P}LBRDQ@J=64quTD+iR!1{O_K| zYWX$DXblm@mKt)ICjH94Zvi>EOG_%$CXHW6f>9!q`iwE{f8G4!HnbbdE+nj{BLQhr;-IP=l_(x_!HwrY#Jqn(*V1y{fFNx zfK&i8ejvVooofanjF?!7vX&KGO3JYA`? zofy51LvKohiGa9zPL}}aN5z}AlKP8H_GW!QtLGOLOFMcGm^2+oUhJgjEce$wA?}+j zgNvTeDE+6LD|rJ(T2>NE~xCCC(H0!X|!89?zA8vK$v`4&yAUhk@2|Pr}}6?v$St+KRF;Ev;LyPa*=2* z!K*vsIEE)r-sQU#^n1QkIjXAL+A;H7bbXT~HSXOU!(-gl?d^Z}Jiz~{oCYqV6|-$I zLP#|TzF~XR+1ET#zP15_;}j=Pu~rHRgzja+vnRGRz|5iD+3_|@)yc8?e+afB;F@>@ z(&&!H5p9pS354P$w+M1Ca0#9)gC;&Yp*ff}^DdbhIhgQ^J*zEuXzn7;AdgH_!5l}Ph^O^S z9i*L{aQ_>L9VaZcQ|5jC#;V5hlo0H6^t8OtamLrSSzE7ZrabKjP2?)N%<9#i6B(Q? z;8fGN$)Wj7;@=3kzUXIur;BHKZ^DpPgNKQbJ zaUp}*lfc!7!u+4~=T|vHnOA{ba!#8L^;#tRmHuo`yy-Zhgl2=$TXsHPWH93&snEDl z{m^zEWeVQz725uT`?Bcx^?ngnU?HV)Zc5}Q;ar+|;b!(A_C@Vaz^)Zql+tgYfAv`a zSHgp=aA1lEc1+$N?PSnm-WzAD)9SB2xifce21^Dn{5IT;6Q%vZ+;FAPYNDTMB%9sF z2`_p2#}^@GwcR_+SDxQ33T$2a$oWQXP`f4U%FTz@U3D|7y!1bMUGKRq8WKhs+HctE z;ano-&)21j=o05gz4tU`>F>gcAM7OeDGqKV&u;9At7GwHP3#+@^X9dNOb&mkZX1oV z!Klgjvr)6fk^RLYaTRrp0l?OPM;Haf`Zu@*B<&57Ed%#T$5{8Qup*}1rY5tdz8w8n z!_deiZNe}Z`6h4s7%AJCX*NOC8Lb;{)~}TAB9&(`xfJ0Ik>JbM$B;zG4+IC-5q9%b ziyO%GwQ0hZ9Xn|xVjJNr{o_vJbv}ssR}R>{>8Ek$FTcNJ5Q)()8Rw`<9QGdkhKiGcOYwZ zw3LV;m(Pug|;Ta)RP@gJh88AmlBN zv+q$qiXN@tz8fjlMK-L95$9_E!=y_y#!EvM&LAf2BItetzk4mcoT@+H$f>Y6>jEFe z=Vvt}aVlfA9wkdpfC+?%$S_hu}z{UZuTt(vqF!zAVmI5zP zS`lOrA6S7$SnWr(t`9f0OaO6`)*)3{gq?R{YBG#}%b*YZ!)550g&RC;>3 z{V;bLVZMQ&YElXOs@hWb=%ZYMq6-atV#oMgw-?*lV#V0HeRkx5EQ%0D%<%F=PiON}y8vHCc)?JjzUpJjN){0hVjqu+S;%0~1bU(fO-hquWx zxZjM8A11dbZ+=N0*S8(mmR_zoT@WLRp8S`W?@GW3&>Rl84(})X>hF6b`flDidU5i? zVstJY7k=n&)Kfb~2Kh&35N0Z&+pyQd-}BkAhu@cNd0#xZTG1Eue{e>F;8Z7{j7~(4 z?s%jcaoMl<5J3#mS8VFDMn%&u|I2CdU>3qVsIRuWrcuITsSc@E;A-N+_l0L`=LOI^ zhHpa{|JEX~nd0y*k0_&Fi!_2q)>N>n_hK{~jaF4I2Zuh*Y?vjO!+(%$JkE8ERT+-y-T)iSQl~d+1XD-e}|Xo zYw*NDyVXTYS2D|GW&+5{!lUKG<68~Sj*r#m`lQ+j+jb%@1F^f3BZ8I7$`vp}p}*~!Mj|BOr?tqC$=*XC z)N0rNdO8@bO9RAD+5qCA11H<1EB^uc;JSBcO1n$&$bpuugZ2s#X|44bRh|tlzlHYG z*?7DW_V!j;AUZE*0E&$w9)VAkftC2kgr1ASf9med{bmVX^o0XKJh$p=Y1Z%}Eo`ua z0RDAIr{~gnq1(68EY>1!zyq7Tl>WmS^sisb&LjY(^MLlR*aiql8UX-yo~MU5(6vxA zS3um0G;$L&R4nl7{3ZbM7mahmH-P|so{cV=))gT2T)-&-0swCP*RO(ZUZC1}I{H^` z08k43-3_?V?eOA0*Ra~OKi?j(BaC}^-)RCKpuuw_q)BE<1@)QhQgl`vz(q9;R)AT&LZ<@Fx#)QCme+vrOz|RpMvrqX$pl*9G0FYo zZpBWfcF8l^oy0CNSOonXGCKr&lTBTy2M&n#_75l}aG8CS2+B_WYO*I|{LJT?QafAm z)ODS3HJ-JM`Oai-Jhu4=wI_bdt^Q_nMn~bdF7zUE+f~#r%(ZinfmX1ryV`B4rb?jc z_kK%l$oN21BC*-<)YI0Hr=OX{OM@d6Kl?4!{MFFb zhw7couyc^-$X>$)=6YYt7@9EcOuNddu}?XB$W39r!SH~2Ljd@o_(b9QMSjirSjX7h zSVvO;=1^>gxI4MozqIf=++B!eVq-HX9%ytquBlsxhj`R!NqEdL{fB37fM-FK1-sb% zp0SUfi!$Psg1rvmqRdLdrQmc=ErN5+0B%OWr~(ObW%>4|dwXFGOU&<*Nds>3+L~`| zvr!qQu{6_7&8PSFCTE(pAKzZ3J$DwRcS!ZVmwW+=1%0q%-k2^Q15wD9ESt-!dTi#K zKEA|LS-?a}1xJ`(RaZ-ATQ7^3_HMtX-gFX^#}_kkt?wK9dur$%lvq15ZiMO`bQvV^ zGuqL?j90y?{q9}`ShB^30WS%_$HZM0Jg`0E5rYFXi!03>CSuwU%)w1sN1(sf`I&dw z&GV+q@jxZRo{C&$H}L~<0bYI2ijd^*$xh37smP?G9hN4u<{RfNx(WnojzFle z_zY6W`;RA}8z|+^_8X+*6JN~l+ff>w;-noYcW6o)Y2;^pPxsg%JKm-(rCAgv)rSg* zDljjhyEyZGv$5@O`|1-uA_fFAL22bP>GR7wJ7Fv3RXeANc3!UMeYJk24FQ-NW8|q9 z`_+ilP^7M|w`2%{{2B{>1!r+SOPCiK;iF{}O?CI{j1h>vYiOw4K=8S?z)ki$hhB$% z$D6a_%ybNP+u_mp>nR3TwT!%%YrK3~>1zczw(!Zw+#HdvTf1G8eIt&K zgj2NhMWO61Q4*1d4<*-}^l5`6I9(EBM*U@5MjPKrbJrr%z8F23){5uKeXyyAr@z63 zIMrNo^*yO;j{m&;pmg-=D~xBeCZ~6gJthle_L~0gAVXjBiitliwg+wVWWJi*s_=L| zqjBXS{QR%wSu&CX@{tsOkvn_iwB4AwJDlvB`Nqe$h^ZA;U4hLE>sOXB7Ge(x@_6qw zZZ`OzDJ~(JJm`7^i#9hl76>)`j}Lb_PWPpxlx7c>ru|3PLqMjGO9{x}WTf$KV82gh z;<#$FaLbaJg&GN8ILp}*P6v=%`(g6}w$od*aU-F(NhvNM2sRN2GKRhfD`(b!$qewal z83hsll;bk;Nh}be3by|6IDkel2z%v179JLqr^DXin_6!s5D4@X-*m_n@*MKU)gG(E zm6&~qU@=ld+_TVp;N`7fk0uQVa1JVHBtU_>z`q=d*VqanIGXbNw?HUb<>rBQ<^D%u zM0fPlkB^yozGvQD?$$0DYzEE{1wI#*ubXlhJ!u3R2&h;#(N5C|yxgdJHNpw+ues$t zntz90YLPK@k-KuU?gHYR0?KP`M@X~C5S|yv)!FK$`~Fv`)YYLeqy)lvKwUg{KWBPl zaJAoIc=%f41xyPJ?;+eRr(B#hq`O@^&df?+Zzu{jw)A+d9kHV=;IBONyXqh0GcYf6 z?1K{JAEwOvU473#GA0V4@G?YZOFqLfc&eVQKv~~gpB-&$9R^W@ z33h54@2-5j8LA76=T`E|zygQG0-tj`y#C`l0eYdTi{gJ@{e69|@k_w3^UnpT*hJ(~ z-fUXMAY37LnuS#5*_*Z^zj|#$-3cxSoO!(z-AnH_<7SpPJ?;4`fqCWKy|zE?-Z6!I zS>zkcxX+%uHGESC`fN|J?{(C?W+ z0h27!)&cG?ZGGw~C?#nNtQCeA*#--;=0eEUmM5F!JkChswuAXpS7;kMM04k7S&%;= zX2;Lv$SakTgK7OT7usab>6XdY5DSGVt}(98>b>S4q@Fr`M2}X`OJzLbFdY_@&=6DC z)i5wZ`Babf6xt+(kGB`tB=HOq%)N^Lmd{CS4-O>|>W10p0t#bJ!-|8G*4Odn6uXc& z1~|o44LiGDr0!ov3_Rx&b#kk(Fqk1mcvXn8d2#ImGZ4PVe7sgi>o%PIH@nK)f7mXB zvnO0V)^MW1wqNNnR%pCO6&FYI^Fu{qJ!BP72L;Rip$O6A=7p3equbCe2GSL|3>V{n zarV8y>L1Sds~O}kUqq7mhj71m=no~yQ1hIt_pcjic?(Q-UDJ7wl+aHHc+#G6j;~TK zvt#G(E*R6YDq3pjxEZhi7Em#+sYmdVXejLY=Ly}t_o>{uFFsV@?W1_Z@=nMy1ElRR1vQo#cwPPbe_*a%St^ zEyJxw;=J3mTcFFDc;0QChAUQ+fK za5k9?%%O8ArNYUeeEwpu#BnGl%ZNI+jI##LPCrJ8N_^V0vWAZ7+N~U`pGj3+xWq9^ zgd!>o#HLiseGhjL{ONzETs9cY|Q4G6p#GUi!DMd+|s5X8hj|%WJ{AyVBFLyuZrnxxR3@p^`-VeC*j{<>SkFcTy znxrK&p)KpArLYS3G=Q^;<1*S$=3m$323mp=knJv~zfSHDxHMg_=V^}sw)w~t&mB?7#x&<$;11Gz^oz^)pTjz7e&&o+L(;Ek&T8{Bla zPd|$yjVhM*cvOF;>+lt<~IfKaeO z72y?K(fuqDo6=lu3VBn)49vEpfaum+}|qOK530ok9N~f`BC=M z4e`p9UlqNxTfGOb0WukLIQGL(N8n=yS;V+nuDfMZir(k^U%G&b>h((I@7aVH*Xe6B z-yfn=%?+t#Gic#Mb$zqdG!xA*@qFL~Hj=Nqaj)G~R2FkuhL;jm^%I$mf&Db#FntKO z7zxbD^ki6QQ_IEQFhqT*9(yZVVkK!2MvoS_Xqy$?zjWf@uMVh4ZB{4j_H^loy^h54TC$q)tv0RKxKaj6Su7I7{WYbeR_wdQWEn zA>kps)pcZpxyVcv{5$U%k(Gw?s|$;p1SW1Q7MP&lvj6+Mr+hvdP04A6lPEr z9nRE>ic#D!Yiq~3#a4Ta&IiCIskyKGleo3{qmBBC^<9!?lH5u4i zj0pC2*e(qJA65y)0>|8GGi*rt9d2(nPMq2^XtQ04?1WVf#(wlhP`v;f6nSJ>B*lnk zQE3~VC)kbJXPFu>xq{mtJFRoq8agrzs~rY2$6x-!@iKS@3)tk#I(>bTb@H^RC1FUp zr&V9F-bI@Zh)WXc10m!w6uH9p86wfqf+g5NqHuXBZ#f;O9w6Cm00wkbD+f>jW|Tkl zoBIw{Dq+d|GcH|0=vH57rvOk>>6Vv-CIZwt$3W*6(NT66Wv@NQWjgJqEo)T?aXSuZc~V+lC-$H;pvvQ zAQ}d%EO1+R-2waM2){^2VIr1$-ak{Hj8+J1O**xC+PSI$d(tI~pw0d=IQHmWjHHs+ z32p2ju~Z=ed9c)Jx$&)noF&!Q(2W}C5!;}!vF2Fb}i&fZFo+Y6L4h95!Py6 z6(nLCSQi{VKy4W%^YdqpR%H=ufEf|~{RoZgw?rr(>rmZ!r{o~9_)+IhaI8knf=0g2 zTV?O>?$WnupivWT#(RU^%9_m`NU`~|kEX&AU)OPrH*G)6zC7;0b$_tTG0$V>#*%f| zbE0FluErfmewYx-ZKD(8PaJ;1a#~g7Qs>U&MA%(xuD@ry;L>TAh-x$#+(;0q^j9kK zZ)Qdol69Q2^Cvayz)m;qjwk(_Ph??yJ_Cu$i$4}Sc<)lwzOaLTOcU7~U~!+4DIOEh zsePJS^Rd}!LqXDg>KA-U(PS{txwdJf*>6ch!f=r3gHe2B$J$w5*JbBg$?!=?uJ_(e z_XFYe>F?->Nxod~>a4z0ksW^}F8@N~bK>irHSeJVUFiy7kRu&}|EzhTEyb)}OzCz38rJ19aZ+ z+=4uU$rJ>t=2S2na5kSs9kd=0-dvL(I0z5C_8xj2PSU(}I(6E%!sGwhcC<=#U0lDY zkhwRQ2W-r|#uH~UWi+kQ%b+$fo28G!Wdn=bV-vPtxpH83FeAG$A3v&J z+u?$%B)VlgA6K|=%}#O(AY3xIAO-|noUR^UZl1%pn#!YNPeiCUSSN+z^-g0#r0nVJ z<%yn76#7Z>*BMP-tM$xfg>bkRFo0E*GKCZ^t!|?{>J)&f7jY6PN1IZ+{-ZfX`@U7S zjBB?5QzK%YhaiLVhjhzK#8-*QS;~&}#tc%2e!AU$qB@*eZVd149q{Ccy~ZG|BCH*_ z@e6GgiVXA-dE&!XK1K}>zZ~+6(5O)IAa;07R8J5OFt9d^Phh~4wrPwkQDoC>d!@T5 zHa0jpgB(3sCA2QLCpp>OtJBK7n;VYdoK}HG>vVyS(C8!tPJg>`pFi0p7vUmtP-NFH z;%_-x6>7{V4Z8z4R2wCHQxWW-Xwtwg;4fW%Q_(Ve@l|R_?wpPiMS0iKfER3uUXf_p zJ`(Bt*$pj*D7Wi(wllD{8h9i3r_RBUlA)%j_M#6k^*)U^XA?i?X1X+TLE82{3$Kt) z(!=cnax8>wgvp+O|Io@@DDrn=kHPayGb?j58yhnVKR?M~X1JI)s=Awn8tx9(%0ITf z3u#uWf(en*C+eF(h1}~Nv;6^_5rX_3)$_txy#M*yR;)J%gRr_hI&A-O8oNMDX5gtR zOtM~I;#EF9d`^FYz$mfF=tHVQmptDkpm9^eNwi@WLc$gnF{EL0ZSmQ$Ayf7_ZnrdD zU_ou&{5+}lJ-RBD-I$)hlcnq(aAFRou&}3^ls-c188@3^Lm2c=g;BtF0z7^Z8;wj! zRc4phd=hp2wabm*e_};%%Ta5qxh-oK02PL7oJP=Gy$-~ffv%78mR8_8-|`_ZdBn)& z5Vz&dea_K!?glV~*ls{{mLA^aw5+LLMM9s}kguB#LQo9chtS1g4C`4C4!0%c*ke_S zfy025SfgsDwtkE8%uA;DK5a%HPQMIW@DZfj`_&f|lxtMt&ojg0&vEE$AyocJbgK4d zA#`T`wB&Gj2P5 zc4{PjMNPT3o8X;4Wu}IM0Qb8C#1g#sP`O;7u>jwIPT#rLHwqX`l+%I$o`G2S2X-K= z0zwe|0dfg6K!l(G{Q-0?91-XO^veG)An4BbP>l0dk_r%(&!Z)%u=?VQ_7Kx>n-Zf5 z`#o5mS-NK&4G^y@0av=f{ST;`YVG50vES4uW^*YCS${dS% z$_8H63Q?I1r<<<>hWS%Yt!wjy!Z|sobhQKCOx2Mka z{CZ^aBofI^CBq>tjC>3|XY5s@?~Q?cDvXlTpF9wUBCWYvL?y8w@bN+MK8?OnfN!*z zyaW0Nrem2Xi&v&!q$cMYNz%*rdc#7YivFO0P0#&ixOOu24Qa)VWE$rm_jm{&?sq=- z;<=1j^2OmH$`3m|nGNx43R{zhyk{gE<1fK*O`bR6zmhl%Zl>8%{@nW97?^sniv_UO z@AaOQyG!!e+1fFtRY$9-5k8vF0bh;ACa4;4YkrrLeBfk&+6`X zydbj17-i*Y$a)Be-{H1D4Z0(IU3jBIKK_7sJ+1%58|i{Pj*uGEUGZpU;jZQf^INj< z9;9xF_PHPpE3jFFG^d_0T0GEeX-AK3%Xq@NN8KP$y6|+vE0mJ#WyO6P5a?}tl)6NQ zISACBY;RnFT`;?R;vXneZLa_fXI=#jBv;F1G#^ec6LDPzy`F*L5NcrTwkGB`+bJ{X z^-o9KLsCc`z z&$*l!#Vq?{3K>$+RfNasQ4k&YZQLc0v_stig(~{!G-LMm5a{)-Q1piE(lX1R2!YX9 zP&&<~4>^hm1e!%8OMQc#ZgIQ=c>Kp;a4 zKtlA4Y~Cf%B^vef5@0kM)N&Al4);4B-rXmd1_n!vDIFePj)H;E%SHczA>&tFoqk|}h%@i&1bdK;3rE7S4 zB{#7z!|j;ceen000S~f=5R*}*N=@fuXU!nmmq)TcOX*0@iw#eGvVwGa3BV<)=m9CM zAjGq_5IA2fM%Uv*z|`6_45A+L%;z zbNCZ2nm4{27nM-mZSu93pa^M?SiTzdTYIl6O#Xq-?@TrHyZKLAF`W?=N;f-lm;B^B z2Bbc5;{%S5uL|C?DNVtWm-l_Ho9TK?#2xNGw4=bb^bnpo=hfJAI9u97;BA%6BGPbH zoT@8Xe&TySFV@wFh0bs7A>6&j*C9}cNT65IqZh;TK&=$8i16NrXc%K~; z z+-@JgT~IFOg(eac@!`_%7gq3%9a}v1UD?q69ZT?&FBz)h{%&l4H)e?~+@5DT8>gZy14I zdDY|&5G$mAs{z}_nes7_CV$P%%Jy`_c-N&s-h3)qhl#MM)I42egXt*UH z1;t+bt0`2f)D<@IvfuMCs^&}aV7HCvFd4?vJJo_R*LT>wkL&$1M9lF%j$!B}|MMC8 z>_?s)d#ybf$-UcawYoUJW$ zcExaMY3)iL-Ti^=xCHG)!9xAif~+Q8=y3vveitA7SUK#4i$}9@8iUS@vr00rpU85~ z8tsCcp|~+S-8RHsx*tODvKyri;Vdip-zD0g&n8*_eoW0Y^~<42g;hs#0J0)*8PtNG z3>7szs1ruf`7R2NdjH8HZ z)OUMUKK5q%-eb&zKt%@~EuZHQm#m)(N}+Dy?+hc~o6(>To*XF)Jor4b)?Zqlrs#1v z+-fNKfc{3Eplj(E<>7k%cWb)|NK`T<%iFJ#ukSGV=-Cwna>r`aZpG4k0H3*!glvIc z6Z6Bpw=;|FQpaJ@_wGHZ#`>VJJ}<9jEVqRY{=A($PC`?Mf7^RmW-L8X!f^MnW7ktt zVe?$bnJxdl!6N${{<~=6`??O(5v}{zfUzk|4k|?hx!}HUCp)_zj986%)#vPx6LP8V zGQHxILHt$^?nBc3Io5E_L}Y7v^mMl4cAPjSstp$X#uwWlFy2qd2d}vGPKrm}OBvC7 zcTaq3*5`)k$2Ui0MB>%u$vo|^(FlpC#}#0GQNE9MgU#!qt3jO$0sGe{OkztDUOgB= zkb~=VTD#>RHn%8(t-~QpF?f#os<~3_&J&LMW7`;7N@@Rk@bq%1{ydf$}_FXA+bdf{1DA&wH*_ zyo&smEIRT|HMK8VxlcoUW#Twkyu`^v`U4kx%y361*8o(faQ9`mp~=fM`!=JfS(t8n z@W<+BDKa`uQtGTa+)3|+u|Ir$GA~_iz*ewxNTQS^>^n?_nkwf<;w-~ET8TLd^4gTA zZZ1YK*=tSuEN3k7!*Owqf={&Uz(sn#=Zyx2I#a~tjvbXF3Oz;#w8 z0rT!Y(fu{9%!xINF|8{jwy8QOLxB=1?VbY=(Ky-rhWmOr4YabY2y^;^5S)nL6ZVPw zXYuzEMwtT*V@I^08?2 zT%sejq2z$pu%$8TAUZl(D^zr++`9Ncbkz5brmc7sElU;OXIm4c`YLS7ian$aRy(Ma z;{x4W^HR&TyrcQ;bN;$>nv#QAjBRQ+-X7@nh7epr{a&1Uy4p_NE{n*W1>ST;HMgTX^s+7dxAV^S!Ev#3#wwn{D zpg6B&XC3_ldR!ZCrm~qGU9%kBeQTs=cyIfC{T;nClg1otIHH~R5(Z|L=d9NN8}JoJ}RHSsZHkC`Ggzn982)Jzpfy0I>Fn?g;V%J5`T zwbKf5lH#0#75B`-B`A*(<03o#&CV)TsmVasHBeYX;TcFQ0l#I9mz@n?@=;h3S3wUc zSpr4KkX`E9cvEf->yNu)L)q#oMdfLY(9FEcd%Y^CU7H~ojyaKaWbae2#cyf zZ=kXP)7Jx{Iunug*xD%3)7huO zC{I<^(AM~plDKy5SfCeowFXUBhcJvTR8jJ#$4yJXR} zb}@6>3;hsh+AhKW1c?*9a%RRyfLr`JPv>r-vh{Kyd}2?Ng)iTJ zMoa>NK$t1AbmJxiD}UdPVLSoeQ_NlWzU=Ws(|@wN#&&<>aK_~lh~yD0h-^TTdHM)f zjjXL|R`ZhG*gAQztp%>Dmkhv3oL}-flP<3GZ;6|UEn^0&^oP>YY_eOAI&xeS-;!>9l zg^jOsvK#!jtM6fDS*m-|w}Vvr@Ij8#nK=1Z>y2NEiq7P$d7Eh=W(aM2g=mV09&b*L zLXeV)7DGWZ)psk((U_Q@t+PYK4{{w~&D}Y6y7?6FQv`=_tD>zn{@K?$_u|7?dujh0 zcM=xl3oIXL9UNoCeQ$q7Q3&4=+r3<~jPY@DgH0F>SP`0~gCW&zz1YJI%!;C=C8u}; zHj>h}eg7Fu&NUKV(iei1_udU^etzaYT_HgOYH^K3{v_o%J5cCd`RujqvXM&XUh7m@ zvKv#CII=aYMuhuu;QAzMW7eE&WeIVha@_Be`m9H9Wy|AMZ2#HFsX}vib~7Qe$q%uU z&+x3l%j=0^u8(WJkCyfttyG3XeM6?C%L;t`rSGlA5zQ|=(a+kKU3@j}P9C3za6T@c zX}+Ug=B45%#d2J>HOqmk2+Y$N@!og%@H>Iv7X>^JIkRGiBg0q}GrCHktdQNjzrTn< z{K-!f{G8bLg!}U0zRYpjOH~D7U!VT&Or-}aLSM@5d|=vHvgjVxLGLRb{LV=u-C?Ga z`YbG}(k*2hLp)7WBTfb~+{3I^3XXCH_SI(&uj&gIStMIBNf$qLRrkhv=T8(a$)a(? zioGt8k1YLo7SIZ4zOR8*dx>zDZ?^ZDj0D~1dhm^gu*6X&h+2HI6vFlg5W?OxlY=G0 z-8*I(mU6D)Ow|*8)LYwNG9FM*uMIFZB@H}X4Jg6zZb1${gMdLP5HKNdK9}%k@xM!M z!hta=kf}ZJeR2EGx&QzoMxWqsz%9G~FVK8>moCWv-w>eyB_#igyL0jbM6WR~fd|RI z_$IObgN^^2YFGXi>;Hl8|5wWY78no@;Ep!6hYuJ|yYw0u|3Jh%BK_n0{09X{vKqrV zqOct@<%i%iLcS}pDMso-%QA?mtt+D;yjmk}`^J~w%fkrDd${!;#QHXU0_I>6@19X{~p6Z58aaKat zE{4I7k<#md(Y4%bf#&A^h}-Qc{ z0kq5;iljPt_nLkPhxqBmQieb0!0R3evEm7-s(txre?Z@sa?2Uf`Q53ZgZ!Tz5nLT zk(3-jxCkQ^19vL@kx6H2?`Pq{zbeV=VQ#5f8vspN5K%V@P?WvFP+~^xsNzU`)(G*mpx}NZoI+I*3Ed<^}zV@ zh51&&5ToHJgNzmD<%i0LW9~;XHE}F(JI%b>^*7hUyO2e|BMlJ&*#KPxl1gG=HBke$ zrHyya(o=cM)0eg*vl7#JOyC9;>zRC2*~T%HT<&5X4Q&1Dz#Yif-*PDkRKuro9e~mj z+W_4t=2Ml0+}*kWjp93Q)eA1k+E!HXsCXX*H?hMp!cA9?-{ldTMv6h;0lIJ`N~nZ< zNs~`CQgFQ+?P~%!za=LEWxd-#_F(q9tBub4O}MkCpTfN*8ptT?d+10M2B7Amvl{Wa zoC^_i)av^jXsVkZkW9FoZ=ka-&T?uY))cS-RBSle+v_MIR%y{4Y>A>9qH+KKBNA#tl3t}B|icS9~{ z`XEq{>wySnLtKF0r|ZH~GzbbgGzfuGz8W>AOcNP6wc{e+MCmX0eiL7;+2pE27GDWg z{Q9qZW_?uKFfc@45kcV;0^M+!>&Tn_K*Ieu=YV@2SB-njus^E}q8}yl_x5__@8;sT zKc%(tL=L?281`#9Q@iQgx0W0Vr#9c)z$iS~Lx^Ip=Gv;6rv`GGeCyR+J6>~d7B`(| z(BR0aaUt)LNtT5t!Rxn}+pjRKeE;2^tC%a*T_`HrT{ZnxO8Gs*Ix#RPkBdR@-{Vi@ z&9%kxruB_kPK|XffC+K8*f384yGTkvWKsDEJjNZF?`r0nuETGUKbd9!Yb^kTkP5E1 z{byAII(YmJ`)&Ig9y#!PC?bYM15wVhHj3jtM2MUf+Zqibx;cu}4P~mvePA=NPBB7=cf4XT_aOS6&p#j!MxByUQC$l`F85W6!7=__+fqj} zIa=nf*3RF=5|z1F-j%F3_1k?f&u_fp;xP%L`b74r10%T>lJJL#a zV|`IBSD0->e0eX1k4KvgqVj+xdkr}}O|yPvsXg0Ojx6@y%~pf)@zn6hQo;k^$;MR& z)X4!Kphkf#H{e~(CXSmn4-z|19ZOfpPj#2gxGYX;Mdg8DS~&k(9{uDAx_n`J1`KkT zJ~Lm4K5g!_S@HGjkoo2LLoOF5BaxYp1Rt-|^Dqvpd;jn^?w)0w+!~T~ZIZqq2+Y`B z1_;8|V})%xZH&K7I}uXA=PP?Bx>BoKO8pQx=#hsuq${=ABRhMhIxu6%FjyOC8ey)y+O?zaCw>%Z^tLH_c-nEEVDz1C=nUrR&PVEaIll*5Z}uR z$rn`pj^SK|A=sc4YLK|0sCR*<_{DV|VfL1yXUL;dk$CTQd@4?2S){&d?Ov+)dZXP| zV&B2$NvfCCSAB{fxz8+41gInI71Gaql*k#Be7aw9pG^B;i@D%x`!39<0*~a#i$M`B|=KfAhk#!P%J0S{cOrNV`!Xx8CT`&Fv)l6Y`EX(%v}%`t!ghfBB{ zDQD{RW8FWbJsV7v>~yaf^D2++@~MBrQrkcd^1pj95#E;Y`^$Lr+EGCJ&qU{&wzk(2!y!o5HxCohZWI zAS>)pS=Q`kluB;toG6C-$5IKnXiE=x|5k=_FWQxiiqJ2VN69dklFuW`D}9U6L)e_& zB}2R)%edf3ygt?tbjEzZ=_6`QPatr8OvUfDkmA9!P1spw%$Q6{N^zu^P12DgEVakX zOfm&YSQv>XpIcnIxPEHMn_7(+tvw#H^37SvI)EDO6MY#$tt8PL8W3ngjylxjA>m2v z0rN%~Vr*Y1n1t^sQ9K@e#|l@v{iECw|Ecbsj$*p2qPNQi$VI@AvJD0vf#3GSa`MaUSvh zx%JfCy|UTCCE404xqh8*qM`F}`q*iC|C2aLv6j4swp5S6QW-fJ3=g4JR@hh{_sd#g z30CEsPsdCYgP`n#`9malPyR2){yHqG?)w|Z1xaa;E@_np0U1IXsX<9;X$e7KkOt}Q zj-fjxq(i!4XlW&9=#q}_LGSx{KJU-_`CZrV4=+4t_St*YUVHD?S!XS~-ioKFMjhYA zUsF~dTI{7@xtn;Z=kf;PGpaa|P87*+ZjDypikOq4M_jO+^>5(4qH;b;_hMx2tk9nl zPH$wn{pv-`4!!4}=Gft~OGzCR8&uL)i}CZ5fo_x!*bd*-l|1q_XfxAXWH9AIKz}yh zMwF^7DL;#?u~dZ+l*w94D@xE|OXem_p;hPMB+G@sr-ZX zWIAE@OGz>szVy5Wr@MiPdU0hdP=>2;hSCftJ5(F=TL?EDVgq@*?WIhW=ixD)|8%_B zbr6uUVK6C`w^5)b~i!8|d=#Zo!CM2BA`ZEZfxPL2*r z0p9S3#2&n{*F#e+9#768PA?C(Ka(3ejXtB&E(}}K8I<@2vDAm#k_#htumsc*j2(-g zyr5>Y=GHOH%$#pQkuuZHHq;fL^t1BcAI2W9zxQV?X}@@aE3E%ZjHTe!DSM|wvnh9f z^$vCJ#B);$8g|u|pKEeM!C)a%l}x@@rsw1iDB4kGuB-1Ff6M8S?4w6^D@Tp^1|@*m zp_kO?Z$V9I%&z-><~oUs*Yv+$GjW87Z=W3vF_z}x1|05%k^nr`e@rz#~rtBJ; zgckgT(efz$FLeSQy-%M3-oT)g#WOq>+QCJzu>rW#ikP`9!tcnsC`GD5x{^3NP4kBF zUTxoC7KoaG>`m*+RM$4aUl*xYt|mI+FhLU8m_Aiunf^w&lia3Mc;dGbz*xhq=dXp2 zzWG74`<2*|H%l$r25Z=%FOP8#cFdL|`4Ln~y)3tf^)KO~4YA-mp$fJy26|x=9MX7$ zqQ!rm@Tv#6t$vmRdPV5%zMe$VOo_Yd#zAhCNQ`BV%i1NDTdZQWSXxVBLg-tz7!@Mw z`Wc`4v-M6JBoQQ?lTDP;w&7|lgY~^ZCRwM$$+^=|%Br(Pz93y6@O8^}2YJ=oPljGW z53Z|yAu_uRlzfT8GJ><>AiI7ho0$Xz*Z3?m6n0ft?q9L==Fll&Wc}C3xP>k+8Si2l zw>>)H+YhEXV9-qeL6!r_trMPfwH0Er8Me&xdVE&Erg+?9yqugJLB$>mL7U5s^?x%f zfngk`hCpFmnBB~MGEiSoNL~xsBT~Ha;+4;6*!j9Oz*>=6t$K1vRkBT*0PY;clt*sR z&r?Mw1pMayOZfP#$4cbY&u7Pk{YQ=d6oTWkav(dm0Tb5+E`ud{sMunPKu5Qg0q?>P zFBM+Qv664!6)2A1%Umq4 zI?%-73{12eVmdNMW6(!;NJ!E`A=3m=F%YFgmLgj|Vjs8QjPNp}aFQ=5*(hg(YH8#; z1TkM@t%Kb@Ezv=hMbdc*<*B|2%VgGObTy(&lJJ|q7V+xpob>Niz0&`e5pI!!j0Lrr z&I}ltnZ#okg>dPxWsB$+Q`VxAY$ROIm}MTWJ3mz=EK&k-(=FD_34;&9%+|Rq9I^qs*f4<;K~51`FQ$xb-ujBjZPGIb_R=P~?#-azxB)`DU(g5?%sJ;R z7n+{jhQvNL&X2_J2+!#kkZzJsVG>P?6`pJQ=t^DiF{mE4knd6e0a-0!M3V=i^Tox< zrA{6e5T8f}oP}sm<;A>s``e=YQxnAK&E;k$K~G#-dNIME8;8nXY>n?&Xp$4Z-{B6y zBkQ&#vfsBpR>A_Ur0KwfEJWD4NR1*`1&|Ckt>YcR;4~5{Tii#1?Qy1dev3N13=si9 zF+u-&@j_PFB#+2^Aqr&~Te3rbyuhK1I zN0gmmxrpBxei%n(eM=#VceAK=>-bkOpJ%t;B5#&e4 z(c2I5z{r?G9AO0b=v|8Mm)<>bGHbOi7d5eyw5Mo0L|CPP~_pmNe(6_b2g)ZGZa0+M)FhYV~ATS zWFRf=y&ru8QG<5=1nPNCYuzljU~}O@4as1^VY!w;5dRm4Orn%!TlNUXt_;oyq)G({oEiE)_8*GSk2f1 zY#q`PHYgU=X3&IOHoNQM+v+JZmlGQVWIA`P_xylpGeU}Lu~jP7EH3crHJs@1YiF1n zYt)DQ^+;N*fH?4s91Y&Ogd6(kMpA ze`=G)mo;$7Oa#54F|Wqn>$L)d&SjNZT(qNm#vpXU^yA@>TGhn$W*Rvbv1s3X3%5)J;k$yU?r1^^A8cH z+bvYanf>unNF#S+y7}cc=P_)R$=!L1BXM#X!;k6e>Pa=U5l^8JDQ}o5u2fm0{o=sb zW@qBc)DPN(dghvtgzsc@nl=3?9_Goj+>M&;faHrnVW?M&0xN2B z{FkR_QuzbABN#&&GpKgS^Dl;6POl{IYJnXCVB9ac#x2ffmzOmdszCf^Io1|ze4aYP z9k|j?kwbSGE!A!o#>1=UrK8eX&U;E6Buq~m$bx!4Sb8V~b-jNS?9!g}!jf2!vfH0M zfAMpk{I3kkk38-(3@+H*==_7k&;aY|0GMb;p;MP+IkRlOw>imO`)3`B zN5aQL`vQt>H$%dlM4{?}mYR(MMkUWgjg{*5a(fJSsG~=cdUC1lyP~emXp5$6j7PHY zxT_-PaBut8k47)TFVLti8e%i7#aOP98)~}jimx`19Hm^1(I&2HV=s-P-G6Uvj3e|t zbgVvSUb@T6vL(Fg0^!Ab@Feh~rJbPtI3| zZ|~0Rf=KvCx0ImZ$K^WyIrHO8B2RB!?bVkgM@n})A>U_eCeD!?NC-2DzWR~rV1QC( z6#Uryj4u*rEcN1uV3_sd9A8EfW_ai(y7j&K`j-cBf$X{+82AiB)f`9h`NR!K&@bRM zAKjm+x~I3}ZnIMfiuf?hcM@S=Mq~<~ppQn*rtl&C;q7PIl#b===CPw+sU*XA|Fr2T zWLPHtfOCujK?X%(jcBz@5+^y-S=)aBeY5BCja}9 zBnl%xm;0uDs0}~U#Q*;$#4!E;Hz5UFTVo$07d|b1#EL{03O7Y;XMGwoJf|ZGM|%Jb zs_f3J#wl(Zp#-hYbgudfXA(6$AwA#lKOWBa0nd{u6}flrXGt8YM9;H&Ay{u#Qn(Tx zf(RHgiK>txJd{L_kU{^j$BqTv!|v?k#)Tqn{P>uRoJVu>HXq7u4%DQ=&Wm;ZEnBKW z0ShM6!3JgZY@NW!vrn|l2H@)d=#R8ZAQc0&c`<>61XZ0}HK)bJYblGrDEd*8_d(-| zNd^fT1mtSd!U5^=Lc+Zk*j(b{Gmkr8Ep>24Vckplx%@no)0Yr517|oKeA$v6-)%8a zjzL9C{J4AMz<~-F7zrBnEptLy#3oi#3mx?8`ldTCD@!xsC-@7+eFyv`pkykU42?K* zCio=r6suHG0WVO3DC`TkPa8&l;4G6TJ*j6b6;ZvWvE8x$`mFS2SV-(mx#1P)a&74bHB0;HutfwM^#7_fnibhk#B z65hsaJ1^x;Ry_Et5Fq#Qvj&rKwZ)1U)o(}JQAi-#@BfG=A!|Z!2TNU1Ig(`V2j|<` zDM1F;azOj{GQ|d69N8SV^F>-@fw9Cki5@!WQ(Qjyhdm35iR6q--p{HHtcv?<#7u)i zGlCEqMbg9mlSL=5+GhNmcw@g`4?s96F*n?&Z(Ndp#Wtx@S1hB;z?&hoz+|UL#cD=_ zSqQ?_#wRB%%73P3+2tjw?C-w+Wa(3@)cp?)=%CJ%#%9TM?q=>`~Ie%7(0Kx;9dFJB6FXQ>X)J1aNtd^kHcO!wY#%pwOZCm=!SWyDxasNs`n zcL%uS3gVkWt5VsT|Eg&&c7$Jk{^)cJd3}&|bb>r_T(U^O%whRAna~1jF9bOOAD9W2 zT#%*w6RnEDMdPFAtZc~;p!Am4zxtZYobXWH7S14FXUM5{szcl$0x-AVQPFTCgRSyMQS$)|(JJm&zONSv|Y|LKXQ!0T9p6rEgav2*Xj`!vwxX}6Tl~z=_QGnpGV-0~GO!>d;2XzEZr*;)zp)iF zm$yc-_Zup9^afvW0H4B^(qe%&EnjqJKD*3e=aKTwJUz#hWS3QQdEWQQQ|+4DP_X2CPuSI8ZO_#FO4%Fhs1*R-|xnZa1zXf=vZNv#*18t1T7w zU8dyWFOJ!ktz;Pn%3-}G_61izq4l`XLw1@RQL>u)G(}G~dvrZ_d6Lf_OB6UxQOO(B z`c6I{9|M(_S5$-dIys{T{lAPnZ|&bTa^k<>-X3Rr-khAK7suHO<*MCFI~t0Z&}MYTSNb~Ic7wLyVpKa~P>7Kk(V>Jca&gKqHJ zL6MU8nVY=NT%8(FM20A)FHxbE(eM#FW#K^;*|)W%1g3{ZNk%=-S{a>KuiTzzsxGtk zo((XD(NO`}Q3J^0%Wuca^&1>>ddivhlCwuyd-&nO>EIe3h-hV(k=z5mH6x_u$7gU| zOm14iVnG;(Q@DE76OpICG$&0g9yIpn%MdLzgz<%c?2%%%pXX|JQ{(Lr*hpzy7i?LO zN+!Ni%(uW0x8)t2|4AW$mqk0dVGnw4B&ht4#qdgQUKz$N(V{{JKw5^lXDQXjK|0_! zF;6c9yJX!1AaHD=D#G_nVYCj0`Z4Ox=(uzft%2kZiOU_ns#OqFwSW?$#DrYqJ(`4j z`m680$ATr#8pC(_Zj$!Dl|SV`%Y0~i4pv15<;27K+2Tsg1!{t3TP{C;NaOojEY*_g zw=h@ytqrc>c6GMW?tdxic7?}6(fnfoc42@9&G<#yw~j1kuD-06&dWcKVLMo~(!u0U z>Pjs5Y`kFr$4X4Sr)4NaMW^ynYRrgfanaLKq)nM~I;#n$L6US^j^yE#sDe@R#f_Bb z4uYE+=M=U>?PWjA`G@T>v{PrtD388izair2M7q{#D(%0pHf7sHr2g5ySewBY1X4F| zqhaJ5>D||T{kA&3QcvJt()?(Y4*&-}J8Vb)g!>qavw_Y!(LH{DjEd506({9c3**`Zz18v~X)$M2zH|&aEqJ zVZw+#=9L~%t!pVaw5H|em1Q?cW_2#9I}O489BmJzo<=PVKZT5-cvRwI8Kbjtt~Q*i2W+QCF4De%1!!TTaIV?H7dAKV;iIisSP z5juFPbTVKieo>f}s7ODhHn_dGDnBLt963dB<)k!qoQ~aHd1ylK@R}YKe)40RRw9cw zle907I(`cOC5d^luzli?U1Bd-nBjDPOW%0wfxIt>#uuI=7pqJRQA9G*WySx7Pv_L zL(0KhA&;AK%+7NwR{foY^;6bR_r)DC^f_}II>G!ZMr!V*Pth=r;&g&{WOIGM;csFD z@E{}`kI$=u5$9Vn(}j)|;sswLbX`K~6TVL`^auWqdjMtmwO-#?T)Xqw=LZ14DdQT~Er#FS7Q%vkrO;=ckU?Gn`cD!+1BbQ7XPJug z*jnnziAUt?UuYq&CIeTw)wrNd(4tkp-m{p+TbSSs0uS2w;Zkff#v+~RNO2-m)Fm+F z7ZwyJ)pF$tP_qcwQBeyGh-V9P1~qkuoewCoL-uslRSgbBmg9|Ldqaw0vnphbGJDAcQvpy2lNwD>r(LWBYi$>*h5~F7K5y zFOod-#SbhbXhqgvV~@5eZj>4*Z+xDU4!IOB(9CzwR2@394b0QX?*IX@n3XuAeHiR9 z`+eJ#Ac$o);vuw#;E8=dRjHC9qT~#BUtQqOfzUZ6>llM6c1QLa+o5AtM^sX0?AX4u z!4QCmaL0R))l+jO#9S_(#^R42c!Q0h`Qs^WDWA^R3VRE+j>X`LY=verdhsF70v%SG z{`8oQc#w^$F&4U3cg`hy%Zh5r-jB|SiSyN}*Kwy7J#|-O*u;YQv^F8MxAvvWPTLX% zsZX9C{~HTn?St7O#!(-&=639{;#{ojQjGq;=BFv;Gh|)tN+HYxe{) z9k!rCZ%)bwpOl`!6hBMmHcn0|cwHdd+Tz63!&~#J#_EE-g(5x0I@<;~&ME{QzL4BB z4C#CotJc8o6f>G~)Z74*nOo3*L7R)1YQD%+wPaBDpEvx%mY?hT@$6E}9MpsES39J> z_nq77Rs$EexL6=`qK#Rhd+ZlOz{oFGxXEtmLE{wh#7;ad6VlR~ z^;ZIlDU%cZd4~F%N4t-DcNb)=jV0W#dMi&m>$o5)L_=QU!1+K&%v^GDAzq2QuxbI{ zB1?F?#cVn!*F&lGWFU?fV)nS{k(1S_Hw;1DV4HG`X_rG?W)dU&0*VjG@E2T;cQ7}P zJ;ODfC<+zmxT9-k4^`IqN1?@86E+KI)jym(9BlQV^qaDAGp@1gE)9|@LCU2ueKvM> zPDSBrzdU>@gn#UZiN+1?I>L%9?H?8K704GY3VNo-*<6jJ*xETe7%wk2zfj1a2*tIN zj3_}SW9gh_8EWjfSqy1H?bp)xdPB|%jTbuUmL)YKJP9f0P)gm{9kwYaGYC5X=M^Ys z-kOT-VNG5COyz`c#~t2MG*btbKU`~ChtX6G1RsG=}2wLj5R}f(8fa4OzvniMiVaQfH zPrjNi%<`8mxqCZ@Z%~6Nswu_OX5ZFeuP0~HOXHcjlkd^I{CQh~g|EHYRPwKu85VQ5 z5H`Nv>|S3iFI}&>y_MLkZD`qe^hQNvo=gSr zAxnMmzJ|Ajswj4g(Gg9SX)Dj@JmYT=RGy4hUYw>)Hiv{qB_d{Ud&Uz=_*Cc)3|}*a zA{2H~H3xExS~)rvLMUl~N<_s6j}-QnNGhED1&lT_R(sn#G9@?Bn~$&HDfQ=ERT-Qd`JGhCua+EpH?yF>?uNb7d)VIrImQz8)`wHu;7YVWL7q`LYoKnOC`d<)1vX``HVSsyxy2lBf-p zq*MRpeHZ2e+3xFcNTFF@nf1H-4&l(T+$sNB^VrE#!v>x5w1F$TLAQwFjX8(Q_aA*G zHgb6NaWoDFka$Abevhg;0b0>h+j7S&-q%W8NS0ql9x$eAhxG1B7UsVBuJS`R|GL!b zS-MEtHJpKHWJu58>@+0*k@&=3lKX3&irc)(oF4m_Moc&g8(q&SkThBA(mwjP-Lrgw zlMi%OKmu?zB1HhtnfM}@;NHO(9DeXcSOoIYEnoW+n$q9t2^{{obp(d}Z=7A}Wjtn) zpamG9BFv4tKg%X|njYWqRFN(M!PFKjew(026WuNU50qE!&(8Dn)U-~Ar#-OC@R&2`qR-ZpDpOocH@_o)d?9cpXD})67 z`Z;inO|5x+;#4mj9D1}I%EWZ1`rEs_!?wMwD>2l#IZk^j*fOX+SFFW(}o7yM#pNX@KSwXGInYGnD!@?3YH zI#C1d58%Z19;jc_Ru$8ajsfx#CVk{_zw&+oziW~-cka?&3+YC9hJKuGi6e{IKOuLV z`RFL;LGlN~{Q6zY99%r{<~fjW7*N$;#g?{Y@kY13*J414FqX&}U1Lp{dX--;jq(oc z!S6m+#k^e}$oVd^B1#?nGm=a!kc=+wU6>w2F|eLtvdUYmQ9~; zj~~Oab^lD=d-HX_gIT~-CWC4@C!BXA3XCVxk&Z57z8O&x{K4Tne9)k#Dr`dIVQn$1 zu9*7&=ecXWOx|6?0mH$8Y2AHImf(|Z-h^)pwjQobsDBLqU1p|3PYO-y*V5aY^zUN8 z8gWhbk2#nVgJM%@BQTOCGu$FH{hXH-ZzEfdFD#6#R?l@uvt454mY8;ZUSs5j%6*}K zlKh4Z-?}SzUAB``+<##K8Avnd22A?A=5w}6G|}U3NpWw;deij)wZ7+ ziEGUJry{TNp}YmW@lQ+xj)bx1I(avT9LxeZGk7;O1H7bDn>~ddz%aRyAwJ}#Wi28m z43JZcEyfIop&iF6Of%#Y)Q$nQuVgSw~x2_V^qc}FO4sYI5JaRic?w8K_02`Qsr(h&7Ie=ZIf5d32z`pw zrWxvbOlF8&#%bdhn~gG?bT)XLD-Vg}k)uP?W6WD#04HV;V+kr)lDWat7^aZ6Y^TNZ zI2AKbDlHQ)RbGOiK|r5~6dwTI2sSJ{HB5vIRW+=Qus5c7KHpiIqlcgu*^=>kJ_VF< zSgN-d>At0)l#aVd8-g8fS=A^=73@AY^fZ(4 z{2AdzwVFcNua#TNX~NwKTB!gIu9@mK*G@c=z>XdVwVd+Cl-s^HZz}OeIZ&HuQARgz zC8mtVnw2{0gW9a;9zuub9(BqqxfWohW;u+m+bj9%i|K(WAwD*9*{LiKL5rm8yf0?u zGgXp55oMZCBanE)R1cgg)%@9(AHw~}j%h$=lrQE5923>(jFvo^(+60(#!DT}$Q81@ z5VF~Hb(MZgxTjYfF;DkQf-PNPR=G{rbB6nj>l|0p1lcQsFTkn{;TtQ0RE9{uH?HLg zhI6NEIt@&^N#JY=>l#Ncqc8I(dd$PEeaKM(%Shvaqb%0Q3Mlubj__8wn{})jM9a-g z^6@+^)=jXQTWEFLgf}Vq8o06zrb_QAY(|*8C42x18k_xn+eG)#EA^tJlB30@L1Ha9 zXp=|c;h7E%-AP>T^g%@+@F}LBv?*a$_j@8y`^h(A1a>Z zbor^L$>Z!$dBNvQuP0;F;N&Wo^n@z(ok%GBVr<35ekilSdF8uIhMpn%<}@?bBbxC# zi~(9yR4-?1Z!k~nQ{6SIgms%b-pp7$jnx>Lf*t1sJvG2NZx|hkQna* zRF3CE-PIv4);Tj5Dv;<&A75({v{DN}Nc1KX2slKy3f7|XqLjGyzua2{kdxVFE-w`v zIP&P@WQ&_W+kndzR{O4KLwYlPQuc@0u8s0z&$LSk-8)>WZb@u0bZ$_?(lRA>f}p4c zxy!8na$=D)Znn2V&G03f;|uxJT-87tVi)F%UJF*;M>UiRN#nR%?D;sSbeE)B3*yo> zHCk@0-@9VNKlW~BiuB%YsvE9QW>uV6b|GCnJDfx=9*-D=Hqie1?5ZtHd%5ckF4_U9 zm-jGu$>VB<5DB!Sya6^Mi$kiwcmI$hPK>P(l^L~ zQ_JSuKC%vHur7>Ygnmr5M8LYLwIj^W2Y(4w4FHYb- z>q?hHm!#XLubyCy=QY36YdzEU^k@t*nbYHYR4KZu<3d)W5-!wx#%aqM3{tuX7PlMR z06{#OMd8K0w=?y7J4>}eh9I+vhp~`@C{cI`l$FwC_zovyc9U10#oHg#vD&`Lxk_&_ zenkFE&gwb$!ijCR0oqc~ic7nS@I$MbAK$)kqz^vh8*Oj~8PP{iWb#I2Io!Kf`(hx& z`UL+XP=5KH57{v}Xi!E)UPfnU4-!-RV;d1+**rZR5%JZmaV$iW!@2*3JX?d3`ORdx zQ3I7M+|z;~xvf9A;D|ZY**<|#xor7)lG`Dpf)~vD4L?Wn+DkZ9C#>NSzylJXPGMYN zlp&k+-+AZeSj(HUYmNRTcD9IVH>~AYsg)dmD?U(5lPN*pXZz``SDj${x#v-5{?p#2 zy~aWb-i%J{8`Vp*N-|~07i6J2>@7#4{2I^P=9Nk?eAC+oq4sz+_BOXK>KX8=;fkPxJOQtgheMG`h^ zcJ)!5;oELu&Hm96hIbYdzDs$8!6TzPIaG->sO1fJ~n0q2} z*7aYldi;bmbBq~hd@!AiR<6a|kC_)5h*IC$g*hBL@~-51C)sVf8u`|n8JT$xl@y1f z*t5jGEFk@=02OF&iR8AI)}>@#2o{gjm38d*6Pj6dV2h$AT1jIm#{+H$J9z8%aaW5G zo=jUa4k42pYjy!`W{1VZb9Q2wmDKL<}?6nK48UO5?XtbRS#wAc^~J z^>5lO9+;fHttx{zs@2vz8 zU-`_@_nLICw2Sp?qi4$tguTgaF8>@|x;GZ_#=OLKMVN5<=Q(lKmckwkt5Je_T49ps zm-&UqDjXrt&~J!83UZHF|8fUS)eY>_LJ#*_Q7Ij;+!gLg(#ZY4=6n+ABjKjLJm{fXd2m`C8?F-0+Yg@KW=|F$~^8CgJmL%V!X(Lyco7ei10{g zqIaA24muGn>!lmN;!jkvma&GHhf|6ExSFNhfy5j0r$K`?T`Yx#;$L`~TLwoO6vk}1 zHQDVhOmZvtcQ~>a`Su;rR1j!tYYYE&i0Y2Udy+n686l3APW<7s>V?JO5FR`%8U7gf z){bd3>mTn@Q~NaVX*s)sl-**LL>zYJDuMLPhv295u6%mlRa4KjqJaGhf_ zMUd;-iO!?@vVwZAV$ewO63WSaS^DqK8`shWv=wBpd=EELE-cvn5%*KY#by6j-9eua zoYBiiho;{GEfWpqqPq|95edM{AolQmy_p^)9tX^Pirvgs-=^EqrH1P+yEVJ!M9>oj zNAt_~vl22?+ABEi(cb;=7h3_zKj z$Yezq?;c0w9>MISim^_MZVT$s1Dkpf4SYrACU$n8duI4{BbPnzRzjD(t|Wa;7mjd1 z4MQK1CSeI3zF>I10D$+X&3)p=PGG*e1~%YGkV|}!fL^}iL!bo^oJE#7VSsn2lS#;? zSBo(P{7MK4)YD)=o`jLygC5Dh1K*{ezqApsSo!Ht^g-GuT)jv!rM;e!SdIw2E;swI zTNz@a|2#x4qHFwDU&4z)_2=54G=|YUt#Xy<7YdNKpV!8+sG`k+Nh)$XqerI%bnF?? z{tjc@uRw=n`2mPPLW2+8N?PN6Rb>lgsN$q>;`mU@9m3n1Tk~O|GIJK35Fvnf8viol zJZ60RUGH5)p(}ZdNU3Ti1Jzi9>rE&%E%ottebSOn0`{WBF=gPNLTFF#x@E~$V$j)+ zIiyrSLz6RyR%3a`xzd#!$dmB9vC^WV7V|F^IsJ#M5B@I|*BaqZ31NZ~0yOFjA+34( z+JveM1GS*>NEC=2A53r+Qp|AkTFhzm4Kmc>^$0G66Nd>V`2A%$nlUDv>M-xKO0!f= zOZCF|)FOtg`!hEIddsIx1S5B&ZqGCdIgKFHzz0fj>+L9IhVvswY&roJC#Es zX!&NXJxzt4`OTOqzU)w~r3C+|Ua{j~FBK{YURV!_+nt||Q%;QA)gb(BR2R3KS}8pd z4b5FR+{Q{^=#-aDZxXCB5{yZ!60t!=gBrXB&)P7(byAqUown~{G8IzJPG2z#)!|Lt z>AQ?`tnQ8NeOi_}Oy#}t0Ca;1wbc!<`&UIL8+5qT;pL6yv17m8SRHI1zl|q%;;2`S z8-FNNQc_IrSwXBnVl{jLYfIv--0>M+)lnDT26g8_V|ZLmMotrlS&*@SQIBh(uo z(Y0~f`k9@3+E}4;F9IGWq#gmEXXWU!An7j1UaeTvDYGr-S%I|i*^*|LN5E5Pw1a@l z$e}^o+5rO3YGQ)u&l(xnlAj(xTm47u5-V}PP|N|*i%6gr*Pwy|btWp@@S3ZlO#~_A z@^wmu`Xy(JM#6yX&8G-4Aofu-U_>x6ndbpt%^xhx^*8=zM<*Wb%{G7z!4SsqH05-2 z0Eg502W}Jn1Gm+ro8Cmfiv0`RQTze!&}iw>@kfPyz-`R`ff|b5qlPXhP){WvOaSkc zu)2pHgDBknoF#;hF+j!~h89_*e#l}*IasHk9m~g+yd;h=-HRskp z>LLW4AbUVn z(P*&%h>>kHGnS=Y*IPf6{Q?ilwfqNSM4<&BMjt z=sV&FNBt{XBSTfXhqx9nU`eYy%&QPRTwBhMt|Ox1nMk`oG$3*peyf4kZv`H=5n#P#%@ zg8y&EkYdUqWy=?5_F^peB5;2Q)temW!OL=JZ$5c35AMMcK#Y@xP)KXp%VdZw#GAo2?kv z27Qc2E&73dG8S6C4#eyNVYryvdkDk<1&H<%>7Gac-M<&lV7AQ$K7?er+3JP=CCQDx z`?$Qawy8*s@(ha2(ZiU*KZ-#Zq%scgY_eJOU1wM}zvNlAyoGGfaa^bVR@yhepE1eeK5&AjW!XqkB0U2aO{Qvd` z6cXN=?l+U?oNFTdXk{pGo1qf_@ZLg>@imk=@^&f%`)`P7w=0RpH?R&%&xKTn(Il?E8Xu6xP}iicw89;M>zNH4^vssLu_qGe zjv`o?-2uJ=d&pD2F#e=95q-*e)A*B*m!Vs$6>`dXb&$#D|ttA80M zH@*p1d|_T+V*aBCD>75HO-YB376@HMg9-tf&U>Fl)QAYS*?11oXe-3zEf%(A-O*(= z%77IAAy_%f;jG5Asl0n8$fE8XocitfUG@I&%3TWwhp&>XBIY*J=r0(IY;d`gcSK&E zey141v)xK*p@{7PIhZqM@@caqpvN-Go_0G-UOTKmByUvF<&|!$N&N_uWcqTw4bzge zN_Bq#rN=a*0<87%bBKgM%h<4P`h=ie!0BK$^Yb~xkYDz7AKh+AMa22i&zua8p%bU= z(Fx3}iM;y2qA_L4R|MmfMvF)G`R2QlI}9{BrM@?}PD%Uz-6-@D%(97mtH^Y(BKdgB zsHSSB(Q0ST>UB!qkH5PsO`h7X0zNq~Oqg;VYDB2;g*%RW;nr0}_SF1bH9hUE(2ZNB ze;u(C$}%xrNvoB&w3^(Y7R$us#CjfZC@J^-K?KLYu>k#ejVv%NdBm4fbEAG%p>1}Izy)L$&m@|Ug`3^I&-?10VIV3Zq9qb4(nd-l=&SnMG0U$Bf30^ zz}iyEQns#u?*ES2M&d|sF*3=7VmuT2EjIZcJv`{}Nx84Y$=v$!{-{z+v3dpr!%oR% z9aioVz9Y1R3mWlmMXQ$-QX8e%{UD2p>5hj=XEtC&Ltdz9uCcY?+ef{|K%nX{0Xtyx z3CRAyUQx3#ITj|kXwgG~!IW85FhTWN;PO1k)m|`Q=9h6gZbci2UF+yNmz$@rfYQQr zrwN~p#jG!suazTaH$3H1^Gq$Mfb6xA$UXrbYhFu2?iBgP({Wz9>=CBK>F0_K+7n90 zlj39Oiu(S~gktbV#ktk{3s;TOk+9r*FAK= zco&DH;n-L#wH8T`KF#frr zxY%-qjSgyUd$7}PXS#N4dV6)G#53I$QS?ZU^f-#`aOa81r_$BTHulm(G2wMf?`=Oe zJQTtLk`=9+JgpLewNH$6=>(nSy%(5JsHVR^VrZ%a3Gl)3;+u~Ful-CB?gs>C+~L6| zL!Ppyz*485witcT{NUxUA!i}!lz9m*`>t4Y?|}eBX?bwvLR5>pYx0CM@H}cXa_#%& zkEI)xCg+q8zK=oy=r>=xV)2%^ZqiDB2{C9~yuyncdAl1RNPW9v*W|pUs2H9|Z5MD0 zABb|kG;&_#*-RTLePso#e*FIu;+mf-hzXslEBjS+%UqW2mBFhdwEq+x($U)-FoIX* z?D+{%z#o^&`V5B|f=*)gNMnya-L%%YRS;fjHCMg8Qr(AnD!owO{*l4?N&1MTX)S8} zRi~8czSK9$UaAPjE{9o29*^n@BG6x|D!~N}2#Z#8b#vK6=PkBST>S*rKK-;TAl%Jh8?W;UcV?{zj1cEhj`F{5D!2q#=A zvdFVyU#G_oT4XzfXiU`P|H)(UQP<@`oilpLT=Z#>N8#7fC$wzhLwJeWVr)_3FINI9 z;~(I>$Sh_G(g>Eox0p1+yU-ek#m`yRQT|5Pd7Sswt3zN|()9;+9qzwS|S zwUk;Z!q05;fjRxqy*0$A_ju#b&xu2C@s#@}E%=E;emK<=qD*H{= zXc(V;f3AE2pFGI6p%H^QI{?x#%)Fjompefcef!!@!pK93kv>cNDjIBWZGKHJ~5|i>oXjABWddt@=3)U(& zt{R|>`Bbtj23di~rX|$FEcUSyx;&eRotJbPFUkVC7e~b0rLFUcR~{Mhs`!|{*JG4yc~iBX5#BBDpsS%XHkQ9c|4dcIwvu&dT*T8oG~W*BV`7LodKt4T?1wC63L~u za|7|boMP#=W3a+OT(w2C9%X%oK(v!q(BS68Ru_2x-G`NjZ=1gqlEo4_ZqAqBrjo35 zsTu7uWsx2RZFDbQ#S)vFJ|}v{Y2W-<#8o~CYf+FufQe7%Rdey}C{1~wSu|K3<(S2} z{hj-B=%;GK1u0N8ll@5*WLj^{xzYKT3!O>!B(^$?zSZXA+Klyq+8}YNU5`%=7t58I z^~Uq7$YM8E%@y^)_|`}e<>NakJqp?~GgrZA9^v8Fpwo%QMaypg^IxD3gosILuKjkb zo)uMuUntJycta= zN-VCXCD9HK?oN7Y4QIXy8BZSQ+zCF>W}Ro^-3l1{ zVTF5J-*^JK=}Zk2X_d=8-c;jqM%U*eS(XP>|5zXzY!XZ*!Vaw!yoyABL6#D}Hb689 zu`w!Z=5&J4SKbBr&uURJl1`tnyM82!*7Yj8jVxudq)O0Hz>DXfn+`ao)<_QeUGUzB zfAb*HshEya)TVUN^gS242_7Up@%~4fXU< zh~7$qewoGE6CtD$`o^}$$uYVfqKscWZYiWsvi%P9VGi{1nq@o~Mh8V1N4RqqV{EVk z%DQF;E`uR44C8W7ptxt*q3=D>Imxi@uU@kV(%-jz&snFk$KexPNC*9jhL8ezQwSm} z|C|MWIi*huq8P`tiUQ{n6-F~0prk83fdUGf2uSo#u=EjPFfQc*x!pxoM*Kfr`^Q8sU?gJqN*pQ2O z&EgFK&4xbrxj=1x&vt)B4_ylaek_P>sc-#%ckBM(zes4r*w8%iseJN3rEr=Z^4{~| z|7vP-FER7~+4Lg!18}lCR{|{>{HOQ{5Gd)MG2k=OcB#oIaD6a9nOHcL#|?Vmherr( zgT(QRhXBc-uwDHR8}&XkGxPUP&W2NHSnr*A_XKuO4a_9*G! zC$`5C-v1?d{X{U{<3HoQ^Zh%XH_O3EBg8fHzeLfSH^JsZ9zYs~das+@SgL41RgiL0 z&i{VC9?}Z`@3CkS@27gk|C9w_F5r8ywPO4)vAyS{1KQI4FBSQ=EGVG*dU;X)hnme9 z1VluB86!@l2o$Ao5PoV(14_9>TJ*BH#}+G0cFdlz*3Sf?#Uz7vb!N+F@+D!)PVTHw zTj#9*^nu0>3Y%8`WmzDl4V#mbsqK6(m)ly@(ezIu&ZqT`yN6>MtY|mS@9os>4-22F z=@uYO5M0I2DR`hIi+)^l`cseU0@>=Ow^qi5RxjOLr`^+1hmr^+K>cH9;}?sp*9WS?>OI#|;VrsqJ4>64Z_?=7}tIN;O7`Zzho z3-DGV-Qq`h634DQvw`yC&%-#YMkokI*=2>z!XLsawmlqD`T7FXz1{uG zc*;&AKZI_d7bS1%f9BQ2qFeWp$x6;U$57MCExe$ulUkQa zf(F*sOL4`8m$i#Uu$Q!=j(J>OE?GauPOq;otqg^PH&?5=?Rj>qNb8j)jG%sGA=&6HQHxC&U#wNTr%C|CP`@b#BA?8Rbq9~<>qBRr$?{>&)J#- zzw^>dW6_JeCjIx_icknxlndAK`8J-y=G$0ZNnROEhTI8CX|8CnZNz%}H=$?5?UA@g zV2iZ>kFB==i)!os$A?fj)u?Lw`SW_zVpv6QHFe^FF)>`v%|VIp7vuIS;WG097tSE3(POo+^`UJ0wlv_I*X z8~@UB-*T)X?%l%AOXQrA$uZ;Nh9-FbKW2C~aOSxl%@C*!P(rKTWkh z83_|HaEH>5cW<_wkKb=)=i;eRDCh1|ML_jhKW~a2q@dvB3RA>yGBlkCLp!H<`u0jBTzCO|v}hSx+D zo`)^@E-zm7Khcx<8*#Ph)tAL9=|!9ThO=x9cjg1q+Exl?^7)ME;6Cp)>O`%ZW_;sV zUn$IKTh7Z{;?bwcKzgds`3J*qpNUQ{d~L$jg8opAdvNj_~I`92^phRuDXug_NPl zt-H}jmFMgmq&c0>)5-g$sx@wFNsQU-y>I=F)rgjN@RWyK47Qh+e{L{zv#=cF<~&TU zkD+|u)a^RaA&%j;p*!ZkLA;Y%8FjSweY8if7$pxG>;hND_ zQswbj)GPe{&bA6r zj2hTh1sx|s9ql;+Cw~^uBG5Ew726o28b95vWDQo+%li~O76}2z6rBTMR&qOiIxS&@ zWEJhd12==H=hAa)+Vx}D7SB#4-#Uak_jh4g`vhOijl*tc7G0kqSQZYvS zs-1qox;Ulp)!9avaRzJ+*qB6JNyvh!92iFSqOHfiAO!Ov;stNc3g8Sw!^B1>+1bifq#|{fJpTga`{PqmLHw2d(Me z&)kMR$NgRxh3|OR=SZC>qc5)H+H!Z+H?{Xzs4ZqQAY{~i8V4)H>b#QVUSyzkV?Msj zJ%W=rBouT^-|mYBg!Wp=g}na!vIQP5v=+$|O;4QLLAHd|MrlDz0tT;jcX?9MtrSQ{|q=(3fuy@Tlpp+8Vn}@eC@8 zS#Z~dc^JsY%SfBouQuV1+9`_WIG(aoyZ+e;x$J*&7qNLlJ2XYZy?JjJ1D3JZ#q?3K zkjo{-oqjcnk9j0oe>Qq`NtQ-YKMF($>;C{G# z5zaa&48{P!a?Bo`_e94)={VtHcDmdSY4&eNO42nw=YA+`4V_2cao?n3-4#REj&p0w z*r|vYU1@AL4#T#}4Mv|sa(r~&EpM9drmZhr1UJrUNVscqMW&mqG;(PSk8sKwzr1?y z_n}<>eDq|)YX)iXLk!k=8!Kp)c2%p|mCc6kdzwEb!aLn)c6l?VrKHr}5k|8x+unwb zXM^Kl24K}>zfbh1#Zf~h+BVZT;PVSR-Qr>swU6g|I+X~4pLi`; ze>6F`dKN9lX{Pf@cr(7Rq`?d+Eef&_@T)YQi{IYXSq#$2v2hmhE9N=TmsA$Hri1^+oZTgyJsE zgXH-ZzyR`Z44`CCSlN+4;CW(DDjy+(-ZFLdn3kfCWqyRs{vO?JRA^P!!S6IL5y3%9 z8XsvRt#_l&Iur(eMi-se(C(0&>)LY73WpxMs?tQ0?LsXZr~CZw&mx1rsnH`Lom!nX zd`Z962R3JfyEsc$d*8c`LwJUr)WqBcwcoTaQ_dM*qeI{s?Y1a8MUO;V-}AyiB$`84 zzJsgVToCcjq(yfYQJ?N}9S}iv5GUfuS-O<=Y$Gk00Iq`^ko@wnj(J`1T8EED4l~MT z>D#P7?@nWryVzS!^A%4s%jCczmv0_t_px9d&wqH#_!V4i>NjPFSiptf<;uwDpe4$8 zo}XvgO{k>pprDOwR7pCt&ioXq@FNG`PsQ}7QhrWW%+EixugWs;wj6Z3;lo{6Dkw{@ zSB8Y!zi(3k2D`;dh9>1Q;j;gt@+az3p_VLSo@`@itLAo2dw~Po!GUMA@l1iAvUJJK{&Z#5|w3ON{rZ{18H( z*33Ve99PUyWElq&QlnrWh(L>d1Gqkr<2+>=x(hSI?s&d(z4$m&rqH0$f~b*>EQQxc2`34r<&pkyW2p>?$_q+$o>-w-xU@4~;1#V{}UDuE44%>C9k8bfME2mT;0Gc(30SxyF(c8JE(sB2=u_M+>I=Ozr=-bz8(WPg!7Pj zEe{u@;V6`GQhNh$&jV;M$lY|-UwveHl2M63RSdgk@hwchJv18Fh7Tg)CBOlGQ8*Qu zH=1HY!iWIH3mYEUd)S^=x64fiATKwTTzvRa=4&^q+!O0QO;ssvFb;+JL$l(^0{}fe zZRlO;4lI(M37O6-Y825Xp|K$cC3@wnxNZBTRV&3j`2Pr@wE^mFz9fVv9d#X=Y45Kv zMbL@0Imr{Pmwcdg`*PFEgG_UNuXM5PL0jW>7D+N2`2sd1fYA&a!lTwMQ@DhzsJB^- ziSjhP4<1UfG`^f_RoUFfCqxw9a^!6z_=`>FlR#)~1M3SE_EvwjiiB zcN;L^%74a$r2R)bqJO>d!{(EJDS~OU5?4a7b_b3t@PA5kGt8glPo_gpN(bY{#RhNP zNCj1iBIi--CqZ>^T_*PhMOGbrpsAKlxwbpeEfzcxC-VlZ5W>T6)*;HHmPOM3%aoI> zzD2paH4%6z{lDPd@N5R$ZM(mUFQ4~d#r-?`f*NJN2#UMH}#y} znk?X)X`23N6Zh9b^(F4v&4qJU8nEEoWN5k?+?4Pmo*moOtr81W|9d^{|y zRIpSWuDyPl0YebEGL#oyRv3@z7Y8IT^^G4KGdhhu^*BxPJT^&ok#5RbZ(~JC!0k4g zP~(LLAr2*hRef||Y5B!RB$5@7j|z>_r3rNPb{DEbZaLZ;$qxavZzjmX<;q_p-q@af z09)V~{SJ@g6nG=P@-jnSS|4ezVvvkpHgO}MrNoM)Ae9@xMSe*s8Q$#NFeI0&u=PuZ162b)p z+R99db?I()ydDU*@itEUt>v~_p$AjOb!|Ff>fBCSZ`vQo^wn5c{xkaD@!+Rx88_aR zohWxO`(WEi-mz7rXla_ROH|E3zn@Pz=BobArbfP#@u2uif;6vZj``*bqsHq@dPkw+ zrQ?IPF$oreW+|Ec6t})1!$Ruh-SR~)#;w0Jx^mb7Lw{I+JimW2YaVH9}v(Lml=Twjd8Z|UrzR>G3iQMalwymjS>Vw6C zy-|}jkC8`+5kZZa%Xx%b=BoxGdxL$iGVw^ZiF4uv`H#QrTDC1l}|JNlb=Gny$PMLpAld&fLOuU#NmZ9xRF zieAj~c%*gI*)Mw-Ub&o-xb1MTrF60Yk3Rl23hm<=EQ$;iwr}_3ZFW&I?iC%d%da>x z$M#r~Jii6`x@5;&Vw>Be&eS{IV4Km)N53J};C;U`01DhR!XH5P23q%3{iG~qEIUL$ zT^>ssw&c$m3&4u&>|4JIhmLp5K=E&uh`ZSb1ABNr+!94K$Km(ack7?;O_NCD%|^XV zDdZj3)mM{kFtV`T%2@oEWVF^}vHeg3^*kQ)AJHDu zdj0C!g+s=!XP6CnRSkkVMUY%Ri?N<+U)8oTMxvb$G-vjy>t`b)yKJtd5=lwF$*0*+ zc8{!WMIK^7dV-C94dfiCno3z#@^EMQF%D$js`b=-2JB%BJg2*>-}KapUHm9{TtXBP zXBUa(#E_OyX@^@Fj4vCtU4SpuszCpM<*Tfm#-oTNN|xBKW(Jfzv2xa7w+?Wh4>;F< zBAYsjNx3NQ;=r@OTy{=ucf>eqT!oyZo}VJc3XuaG-Sp1)ah=zNZVlh1dc_H8-&hfT zEY_2pb}0I$mvN9{C&l!m-Wcem%5nIWCwMfN;Z^}>tmXIQPkHf{o^wWnXz<2be}B(B z*k#RHgI+AB?h!k*-pAAoowcHn6D{Njlvt^+k zo&rOF83xwjKV!{Q<(AjhLmVyB-38obxpEjG@jBBl4r|A9 zIB;`Fe56c2r^SCyBO-=}eTxWu0Kb4SL?@tQAq{d=X46eQRL^l4=705SA86f&R}$rD zfd|)3<`yNYr&i>bWMZ2c)zBep-AxWb}ubuOLm=Va=MAT;vx8f1wR zWft0Q1yWW%1}Vx)Y15gw{J2^<`vKcW@nh;`oRfih^Gj!4NC%j`vKc)bd-7Ww2z^g4 z8{K=s6mb%%w4QRj--WLG8#UZ6gjy6}fx^OWSFwA2Wg`TXIQQlV+(gGFC30y&(`vP z-gTRceihJ^U%g+)=k>v>Xk4xQLVSKHSjxA$g>g}KdnHYsj_Zo9>AqP{Ug|RIq_;Sb zSN$*34iwB~g+yG$kcJ6d%~hmNgc7u{BlU9*L{917X9Yzq&+fj=mvBhBZ+gEutw5Nj z@sv<7nqD&*nrEbm-Vomx<-ZDEY%#prGN(lYh+L^eiLSfudt2=&nfQH=NzV8b*M)X9 zX@`Q<`V=zk_dD5K7Z0vmXIq~>P&HZk=tx}|b+YhuzJV0(ps7yrkKuHtX*`72GeefH zb$N3l<;9I(EL@KudrY&|DmVfx##}VOwK|!wU$JW zhvLZ6V9JJ-SZEQ4(; zT%uqm*h8zbctGL>qVxwzw>eO#bpMVejBq@W3y(@~k`N>Zv{TyGc0NdZS)&;*+ ziOmIpY4^vFv|iGGNi1AgqnDo~E}875!J%Q5jzxhBGrBtLDJFfy$;n8c?aFfEy_ zYfPigBU$LB#0;S9nsDL5qyMoXyDhYNo}`UQ)SM4OQt+9c*so|)j^D#LPOQd=IZ=(oMz+|1NVH}S9uXLNV(=L+DX z*>hNyIXDad^vjJH=49%%0;ZW&HQCrs+1xV7%*&m3Dh?77iq(d#93Ys>3^>ucHuLxhXi4%)4G!;+L*LUupB!OPbr5Kl-+=>?tnhx^ zcC7b>5C-TY`+Vezie(`4uyP_ajEkY+J3>UcwlcN9wI>2G$fRLg)WvPsk&F-eOdbYZ zqZ>71YQXOz2LV}%6he`+7>cz@as`Yq3u&4~68P4Kpp(;T3=lbZI7Q>o)$Zj}3?Sh- z^{ZjwzCrf)SjXo-#p?v&})jrDM!hgfkB{GjF6~)ru70BD! zJ{O*qvuALPkbkd9&n6g`=-K*vEtM0U@LM`(OFFxgKirMm%^u+J zgCsK+!;n^QbiBzqbo+6lu>rup6_$+1b#f;e1kzI`tiKGxq$z;kPGMzaUo5HT_2z*p zDVU|;4)l%%q|Y(mFT>lBW7Z|8)1XzHTZ(2~J_I8Xmg-Q;iTnD&tL z)pn7D44;0%5l{VIIM_*Oy;I%hGLzQ-ut2As5!GoUZf_ z*g~d1#pF5cb$<|QVOEfy%Te|HY>;KY-aKJHLKTTc{25L!ox?|I^pI9Ag6u%`j(nhC zSE?W#gaWw=?Bj;T34^G^;H2)ey7^>Ll`ONZZBdd5MsmNLyb~Lu5G%UIq zRmuV^jeLj+hwC4Q+#5#BIM@V)knlPieEB6HT{%KJK_U9NbJo{TR=W1agvJ09!oreJ z`tg-~Qo4$+ee;X)8$tiO^4p(!azQ0a z->j-$iN9e04GR;z%T_35c~oGoPw<3mK9+q=n?6<_em{L()Nqw30@|KvxP&$}c)XWa zsPyF@X@jt6F|&)G`U)E?HBZ>xdkXR&dS?0HZy2!TG4I2dCCOD0P8}3kGO)KAMYq^o zUJoubghq25+tExfDcHR1$QgAsXBq4_y3c)v7vGT`b;H!XR}W(h<%1Rpo&K zDSXfe%a1vH_x_CH4G0*a$X^<`@8n3&WX70M@^-tZhtr0>it>v+8GV@U*0MG}`ze?< zlJZ99FKcx7H&(mV@w4e)c>i~d{u1tIes4OJZNS=TE`7xFr{3rVf_jEC{zOZ`r4(pp zB6VwBUHR}{>DWJFwaj{Vyn~b|`Td%v)e36j1~QNDiB3G4(&zi@MA2@tEZI)C(HJf5@u+XL#DK ztK9`f?9*|{{mVY>Fa<%K2#B#spC%TM8t@7w-B)mWCrSS0Nr2tGJBzbYq;$mW(eJ)8 zMX)!9&0-NxRfdmoB6U{8k=}g2sp8)^j#urauj@bkfyb9=(J|xxagdLfIN#-PBInTg zi^WIy{--P1sc(k@=0_{ZTZcj|I@YyJnym_^r7?C1qh9FIv8AeaUK2Xe7i8oE%#Jj# z+|(@OMK2|zu5muhR(bFPr`*L+Z*G08#{C?sy#DsJjxRBXdk>gi1G4LX#O!HQ)TWYA zAut;1=TV%v{B4D7^VxpdgX_3)f((^i!8ovws$kA&8T!|7hb29gIo;*KYfo^vfDG{# zEw8%@9^Oy#20%K1GIYK?%}1zUz2NZBn6b(~mwM}X;`7##rS)T? zufQJcWnOM+i;Ba!08LwYo3$80g?qqowGd-_f`#;I+7fsIOva9%6 z|C^>>w7ceY6*98O5`)|WO`TlYtCq9+^z1c*64-y_ZWfFc?*B_0f{_3P<&#LFfp33* z{9S;p4oQScqOpNL^?$coEP`P&!$CJhfNy_&jO0RI(fW_DU|{6OUl-NMX&cs2Num?{ z{YQFCD@j~SyLpdl5_1X)z<|Z%{ORiK(-&=^m$z-uVD|a(zrg4TkYK*MX4=y`&bm_z^2)V@2f)& zDtzmm-MFt7eGV#pI(-g3n-M+;%C_{gHy-sGekZUChO3FgG-jLQvKQz3&Z{1aFKQ47 zb>>pzPPTgz2JJ?|hE_g~*OgN(>1ujp?U5YmWi3YOeywEkJI~IcgL2EO1WTD#CY%rm zGh9LPLz2`?>9)Aq3{E5KcikL%nTMs1TN+?o`Wve? zFmybujt#xP8+QVA9~~Ft=#r?RDQC5>ouHXV&sn`}nDBIc?&hryiS>Uhn20n&ojtYS z+;&-n)uS&S`3fg==+Bv%TmW z>L0o4O-9XL5t1$9JaRm=KYVr?yZSxZS|w;C3>zC!1Y2WtCcGDXby%$4Nc^CH{7S@# zO{wNrrRFD6NbF3{?7)1tj}h~`(d+44>D7kUVnB?q34x$ebWT)T_ckF* z!j^#!_=h5sGuKzL5IP3S`Ht(W%Jw?fO0p5Bx?Q6SX5W*;*S=L0 zZ1Ht1%F*#DqiJyNCc{UKL z-#J&m>f_7i#nZq)3r#a`6h-i{_)Ax`A%*_-iC^#_oRu-UZ#G=N@XY5&uX4b{5h45#QBP*V^cmVQMcc=wK)+xk8#MMm3{GJ56-0z92{D=}>st zfgz2S#SEO)hPaR->T*wyat)3>sHdzC<>3@NY1<8KfV4`cE9DmSf>#L^=_M&qObwjY z>s3HhZwozIva_*01T(MRgDKFR6($pc`RB9+v0Up5krO_xj^sTWCMu zhOT?{=oEGBwMQsx&^HM+k%65Wd*(Dg_C4T5xaS6c{i=Cx7xO9v=bvFvTj{j?d2qBt z^P%r(V_I)VS=1DMO*QFV%$I`GtW%uGWnb$F(>`G*NPymWnKce)jC?IjOr^pR7H6p& z#Q;YZZuGam$~1IfABS$;R);VGZ2=!Sau=ACfBDG29AQ2Q;1B=n694$gKQ8oN)hh)z z9`=9y9UIy)kK;p~E)e{j)L6rwljbOPtc zq9w;&ozkp&>vQzRX8*zgonQ_M`iF?u?^i5P8~;5gI{rA%LUZhxn}i^7rd*)iF{yUqVJ7#;NXz05z{2vNHRkz-~0zSTKjl{)78SdI6h z@O}IgoB`1Pa?To{MZseJmpbLSm#IY6&K?#ma zj}|}g)E}S+vXhZdiwcpn$bl=iW6;l?a4j2$oy9Zlh4|Um6rX=0gbznjj1rq9ctk|_ z`HwawFm|d<3kxhP!8;3$aty$bAa6)~7+Yv>r42di=wSG4EI@=~DP-850tbZrJWK71 zj?9I;=KtJyD!mGzg0;5BtW;QfyR*%ym)HM`vx{tgP2vQ|{fGNPXEf&N`&nvpG&bnx zb%)=SNOQ8lh*-3QwsWpq)@s7Xqt8jwEa{RPxcDq%885=jxXcEEtD?D{Q4Zw`<{LD< zYa42PQ}mU!TCj_BDq_u%xmvpA*o^B6_gL-61z)?RNxb4Xxhe6LH}gyiIDRjM|Egbb zaOOS)1K2+Q%n5;}W@BX4T}(JpfIbhmc$j3z51)XBD3=#!2o=*VxiCROae{;9Jq*4y zprP{vZlIZ@*t}@S5L$aZcL)PCR2rH`Fa+kr0)6UATi+vBiLEW4(gFFeeb=#4^;zNt z`JcCVOk`_G2<;5E&fNh?Dpxk2SVrMAE&iuU5PxfL2IQ}6#`Rjw=r%|_QxFI~P@0kK zT8QmFvUR!z8p7YC&@Z?GJtWbWYmimh7)4n3Y2LBqIs_0>h}l)wQ{&+1V1d5JrI_Hwb2bD1oUK_byguMZ9 z^tr+DtSa|{?5_&brnzy6zbY7jc>utJq`{!i=$-=`oNN-%PxAR2k~gD%2Mz+M zf(PAzYRT4l(ZZoKM}R%qW7yw)KtOZ`lBj>Wahjow1n`!FT2pET1P}du z?x8oX5}MDVyW@Br{Tq*eHdFdqV7N$Se|K{XS((s;}o`t@pTfF}`yf00B6oSxe^3yG?8Cj5E_ukP3G@ zqCCE5#gc^;|I~5LAPqhqd;*2Q2z1+5vll~<-{a<<40AD>+CF?cY5kjv3r}qM+nqOi zGV4`FOl~YE;NVNH5=W-`=?~e9Vf=24s)iF#1RrtEN3=t#IYz zm8aQ8t2Gon8ZacRJNpA=RClk9RMo|Ug)PKfL@+!)LS~|E)L@#g*3S3*!>4=jSGVTW zUxq;IiVgK#d}r|=Hckp}Y%`ww?exdAJ~H)NbkzTzi(7!0zt)XLT`jLi1p|>!zj53i z4qOpBiFbg?NFXt*yhrog)3-4T?NzuRK1oS`E-)}z@dy5(94KNtl(lx(o+*caJ{4wS zT!yOcO}G>T!;T%49n!TUmXXT4rOSC2whr>UP-W*Ui}o>n{#b<#(e~vD=Hqyk7je|n z7PKU+pPHaW9}HWq{ggRUk!u#oqwW@h{&}X5G&V8sa0~-B*u*Ap3b8i1dQih`^g$;! z$$iBZRQPMWFQCt>_;94&CD~CJapIh<43~TeC1%T&rQrTB8s|lOrjk0VtVgA)HW&fA*w%UKQjy{o*kWPWG^e~G@8v! zE}nUVk)yT2A{W5nI2Fct`o)5HY0=i|c-3o6^3Uu&fCSkjY2Om}v# zEuKH&_ez|uJ}ttP8$P8nrKbt)77e!E`v)gpp=xE}Qmd9(lz%dJ@5 zEz5@Y4i%-{$zXK5q&(K6YL+N{a}62rZQddFRle(|tY>~ctb9?OmpY-k811CzzIIXw zo6GpcbK7cZXsWTV)bGrJK5xc!KJKZ~0H(l8!XxYZ0!|YO>bbr|5Mq?QY_+7P9zhDVcB% zpu{VV-YI#P-+@1azczP{HIxy~Kk95Sah19CaMF5?^-$HqS8{H@fq2G^#L~>@q;6BI zH1gB4IW1k!tT7pvgDWlZPLL`!gvvd|yXdI7jfymqi`Z$l-u3G(A2Vz$&^si3_;l_k z>FiPFnZ9rCtLM5Bn+;`6Y!NDU4#>eDZEi_!nPbK~dKuTLClllG*=NFVUdFtn1!gb* z1Tx6Q*2T90NmOl!e4^HkNOe1RkMY0H#BtU*Bd1UM+QF#z(Y1%Q4@uvni@}gmxpg^f~7gE9={Pec#_nQONL$H z;vuniQlfKQiQeHw;QYX^wm)`}Z&7C9+-JFMwf1M+cKfE9%b$hg<93pS)qi9kc}e*A z88_$+U~+RoyKts~yMv?iaf*nzN7Ooa;)+PGDqdKsu}*f)s7MqIM5}xP2iF&sphW4i z`+lvo8a0&ul<6(sv$>F{;bF^gUm}Ea^RSOicOcF=yMBxJ7j=z1~E9Szp1m z8Up31|KVkOIDU2EQ`CO!7d(S&5TxcVjR6{#cy&Jd|#tBb`*0w!PZ5Kw1hl*C&flw@h zdvMQ*vl^anQT2;~L6lEgIDFKeyZEM39PHjju*F#LP58Wohp=K9)eccOr<8Wr)6=kD zcy^lQ2JXq`knMdS+SH5eEr0OGB)?78mk_|&dc1$Pwm!A&&2SS(nUEM;JtunX{PS6j%v zmQ8Por;`$vS1H90AxFGwtLtJO%|sLJ;BJlrm>xc-iyElWDw}VGcTTk?W4MXf?!xWUHI=DMM1XPsIIX$Z^A#(8(y6rB7U;&>%KHcX`e);Mtr-7 zdcae7l_hH33bq*(x%cpN58{3~y zJyRhem{Qbx{07TwT9L8$z>T`J2@KOQo}%Bi%xAUempGgk>MA4$TzO& z29&veKX;XyZiimqO=GbfD!OOKax_uiYwHnVsJa;DBg1pO1iX`4n|<)ws6g9Ww?WZY z-!qGnOhug`;#|tE)A=^wKpFAj;3$#Gwi9%B*^4tXfveV4Nl$rCIfwU3a4#u{h}K|C z42{8?$E{N-g<+JdSoHK$QsQ54+@0Eo?^TCoqxV(x+zQ@r{<&ddfH=*8=TVPg#1LSG z6xIj&v!DXjX~23b=l0E_3*E{&S_b1(C7}*ny$iPeh+QvSxlzr9hN+?~^1-nryo^Rm!Gf zOo`9vDc|ENt7}YM_9j&Q^@tduNL4_6_OgHWLW9-T4{>oYPrGkdmm3J!T-<~>0+$|O zX_yB*JNr{|*9IuT0Nq4Y{#|nO0uB9t{ZH$^x&6`de^~+|-_ZOI zw|`UxXg?MOF8^))H@E-5aY_e-`zWM_eJRhrTuS%TaQ;!*Lv|0Ok&N7$PPwB@rV{w@ z_Sthl%SeCVMf#4&T&DAPYpTkwvGKf)2sRK%Ru4ip`0U50v=?S^F%Ll>khaN4vyFzS)o&fQ_{gJGgQ3k|1!fbMV-QcpUsGagr3w4{xnv&l7(!~ItkCTPTCdjye% z#I!URo6kUg+>)Maj0~fYFKuh4?=Ocrv(lEV) zV%LeNO5RLX&|`Qk(3yzGur;QeHDX6v;6mwi;X+VyYjxVU%saDj3J&K z!?1QT5DU=QR;$C=|wU(*1T>D+~MVBJ@?r#9@#}UfFjn z=|h^rdY!T*G!)nGSM^jUweN1|GQm})@ozJqD% z<&orY!0m4}^j#LG>JiR0Kt4bXq?Nl>^Y{!#5KOYkCmA)5;;;KZD({P2e$!C^yFP=^ z1&$zC>LBC? zW$+VUl&&qjmJwEurN3dloHv^KL(3zPa@^SZAiV*RaPArrNOHUv_;ZLjkK_Y#Hx7v# zhNytrTKXyAusX{c$3m^LUUUbzgp`z5MZGIyDe#M`+;O2Y`w|dv{j|enKqlgTY!e^?xC?TUcndY%5d=IRiFdDoMY9?na*Ot@L}H8{cK_|Vul^W_>4 zWlya!`AO086PhL8#p`X^n-&HR&J28ch*ogj*PeRz%1z!83NG3T7U*=FaZ5p-?ZQ!+ z*~~^oM_BKGyI+xC$cH~NGof2JH)rd-43Mo;8N#XpR(>VQeXcr-%4gHAXtDRHKrlXl zJ3ScwvY>FRoj&BM-9LW(rZR24)yECvuzW$5o+I;7UvGcoYWxT6CIk?2r0EkWD%KT2jj}h72ERi zDcbOW8L*6ta+$~zF!V1lfC1zY)G?wSAd^TWagbegk2p|XBgp8ePKsHuzN?irqv>D@dl!tv0JkTv*cYTSakLEFHwWzq<1 zcyds-eo3I-+FU;4fpXNQe86Z6#yk-|Ze)Me3cG1yvoX@L|sa@i1Erk^ZHfaLNo<|2R%1&Zhq7adJ z7dc348LLgnNJ9HPGKKZFifCOgHP_LE6i?0dp}1ZZu{C}=aECh_4&2EJ4T$Gj-zB9r z#gu;>Ik6*~#fE4WRoO`JQanwpOE){hJd{+)FVuEEn>R}prm*XGOJqE<#l8ZsmvMxa&7&^Qt_XvACIi{RepdR%Ff9Mz zb3LIhPC?{Q!EPVI3#(Vu3kgRb)`6KCQs=b{?G1IM?^*5Q)D1T#A;0RQ6Nqdalig=2 z`+!()2L;kfn}?ds^;fX=`MsRNfq}uJFx>UYwKY@2wsl*nKM*XozDrD-FhpC3oME|? zG(r{O!7P2V4=7A^0>(F=%dk*9~_FI4;DZgsftbD5{yt=Sr$nOlAFeCBww z;Q;=HpC-k5@9Gju=XqNAk_z`zTb(z3?1h;hX_TbkN~dlg<|N{taV88-tg^ZQ=UzmA zvSr90owk~9)b_i=^>J&5t?5|wh=!LqY*v;%teu>FCoY`7RtxJz?u}&)_Yd0ikkB+c zJ9KIY>$aktwIm+MQWmqeU)R|$)RoeV4*0!&6AL34v}RJVlSo<|UwGBkHD)eXl9V*t z!YMBJQWw^O+Nq;0GG;m|hZG*wDEvN>?ApjLM?V-CxOPFR(7{)5I1pkZ6uJ(*)CT&3 z4#y^QpK`tC?MGQFv^|TQ;31a5T|PJEj`+U`p1|iLd80K%=Wcn zs!#N%8Y!F`oW(+vAbz%7X;rRu9ip_$KLnQ6qm%odW~3-bGwH_X=WLDieBPHT6_#Y#KD0w&fwp|2c9P;7neT@ z#S(N0p7*+^DEMvdwCaj^Uv1T#m~3i9jAfI}eIWsx zVD0R)-71eJ#*B7Z4EPYCtft=(a4;IOsHV33k6%IyKgu7Zhqcr zn_z(HHmcNaJs4bV&90eI;Ydf6XPC1>L>SmKezw17^BGQxMlV?sA#DQ6K;{9TLHM%zyoToY4iVg3l)I7spHz26r z(4FQA!A4>Kd`v7^7}8YK&dnWfCkeObGi}SFN}D>HlLo_jZ&VnI^Jy%JwKZQ(f*`#p zCRfp?m_AmY$>nT{7WjNT9ApY*o-(2y_&6uFl%~mA+pwBa@@Ca^11WN{NZKB`qo{?? zUgyQRu|fBYrl=r}X-{N!ON&ZWqpi95oPt~i-YX;1j4cEO9_|MzcodD_5_7cgW_b9t zgl^Ag({4)uS(!Z~fzsL+?-#dWP-3duahGlWU?yeh$;RfnByRMuE3|;Jl^ zJ~D-RO%$yT(CT2)atn52+~-!4n%MAam6Rctx=53Ty11epYupFh2IQU8GgBkStF`!W zg5iX$(Uk=g-xyczQh39UQ6CaWgtxHD95xIy`ll_vwB`2@Zo%{=ga!e`Rf*0{%F;F| zi|;um9P>^-v9x!-+oS%hdfIIg{thVOk!?|6urK8?($_^!?2}i<8k! zr+{*igg+Yrqtf3h^zw=}w)zyuF1Q$7}LJHWZcNIqj@I>(MPq!hX zwT~Sb`EuOl!n0jAb9j!-B}NA{c%4cC$q0riB#yh+M)qzGv&vjZMy(!^apHt+1@JPC zbEMt#kxJcamISxI^eoBG%rq4A4n1an{k@}=6}3_%Va11`$s{FlU-3$+(7nleg^_nF zC!eFq2 zMQa>oIw?6!c0mSVO_GJ_Ggf`5ytK@$Op>Cd(?$9~WQHb+VVixZX*{yHJ}kx=!-RXp z@4Ue}#*$ac5G&)mF(HY%aD$04#cPS*S2`Dqe|eeSPZGPIO6 zG~3xTAm+XJkmcLW)jMm4)kA2zGbx>}nJGy_&0dBOt5i&pf6-ks3AS976 zCVCX?*8=8&`QPLRqy92U8HC(WLg;+pWtnkub+VindIoJ^=4yDhzibx5K$7_)TMQxF zGZ!qdkGC6ih};P2Ea0!2HNk|-L7_}_Hc!ar9_1z@M(pQPT~rAwIK3+cxT5yejs#t` zq@p7t--lfGbagb9Ud-IG#f?L>v>BiV;iMvmQ}STB=`+3zSL^3Gj-2)CEYX~?>*XP$ z?p)8jGmF-G!0o@QeHSeh}gkqaV6GD2wOZ}VUzOVx7UAdC($r9*2O7S{5W@B*84WcJs<%YF!Qz}m&zRWx6rz*^oB6z?Se2j z54z-U?|Fq^_uhreDVGe|*?OR0{~uRh9Tru$z6}T>1}F$hOP7Q+LwAF8gHj_>3PX2G zNH+}KARW?zbPPi`C^bWO*SFF4{LXv6%Rjg-XYaM2Tx;!T-TS#~bBu}I_oQJV67e5& z0k;yU7fq^|st--|sM|(7&7VB#r-r%Im<~lJ{MWCH*1PP91Ki_-eDdCul(SNGZDxMz z9Zn45)eJU)u!3so4>Z9mvFeJ zUF5|b&~h7rZCC=HV?q|H)t!^6oxs7GO;?XZ9k>g^5rvB@-}?@e*v6seAs3kVe6WPE z-{mEKd7H{RUfXp~kp7;pqFrB_m9ZzvRfa;W^#np=2wEOuF>^SUVoKI#wkK-qMw#^` zvG-af0SXDdo*kO)dOsRk-a% zUu!9TxqOD1^Vf@lGjNNc=>(=58FBX5Xj2+|x!Ojau-xeS=Ei;nrNDu1sX7C}R->;aIf#A}QPQKOCo4Fk~;?BUk@R8Xtj%{|} z01-Z1$1k8(`;odRnKxJB!X8_q;JFgNy*6Obg0cQw@h66Cqu&y(b>Ri#LSBmPc~u*0 zArf^R;8y#DZWO@_VN8$L;^x+j7asqS@Uk(I#v}D{ABNyY4?xZaY&yuZ$0BXw>v~N3 zWPv8Lo$Hx>TlFfwRTFn?ZoIx_(xf2Eo;3}JC2@N0mn#kcC!e>Hgs)6S%4KzE5hz7w zH4W;-Pq<>!TWAXN}M%T-hxkJ#l%KE9j%@ z9XTG=*+b+J>`0UmVB*VHS_Ya(3qJ)e6|eQ>Et%Ha&+B73j0BW`V@2MBOw@Cof@e0l zc}3`s?nV8&1VJo&xK6dkg;b0G2AN8=})SR3}f!X~crg z_nRpLPxBT&?JC9J7Ro*N0ioO6cz3xg)z)FaPo~DtbW|`lj`UsnPjqkpG*L$bQ5fyv zFJbM^rN>JSK|>DGDYn(KohJLi;W2aVza35qoCXP6_SgZF{HLci2Bdw11f(eM@(}9e zQQPd`Vs!hmmbgS5FzsFIX`tUTV5u!<5wJ-e_cu4k<{p`Kx9y1~FIB%iJzz2WmnFu9 zA$hIBnHKrR3kIy|W;t`t9(6}UZiNB1gg|KC^$iE>gkskPW8U~kQ0{Zw?ar8x0;q>` zErbxI!&q6mkkW+fDSSc(kM}$=#3f!@%O^i^7RQ4rqCY-q(8+IbS;-h(EQaQe7a$4c z?0B|;cA|Hp(Tjm+gZL4g+gkG+Nc~d{uovp5zp~Gb&x}6ia;ulRwEZvx9cECJ2O2M& zxw->J<>;4Ku)^PfSEma$8s4ap+6#?ml7GperSh?v_+~@)2AQ);?+YVST<+frO^&}a zLjTcXKS{W={rVH&c0G8n#I{>m>5FThu-IMU#wq#wPVxU(qj5Hvy!Ge-GIb(P#;mc1 z5a^oC6?}MX`+M)=K+kDuMYbYc$Q|JN8b^U}KS6Z*T`q{`XZ0ZbOY6Bly<1NQa_mpj z_I^t)QSebLx12KOiYu8n%w&7BW^uqCcQZk5p^0+A#7ocv6Y1|^j~uWRUOO9_;4l=+ zZ)&+&Y%V`y_{YDn0|F|5_=7Oc#O|Y+2%_S|p;M^VE%&Us?tQw(m(^Wwr74~un5QCt zT=*H?5U=Bd?Ne8m^7q%cCEx3`<25H8{-Y9LwhR0d*}nUDo>iA#H7yB$?o?`FHkc|; znC$Of+_l@8t2qK~bNp__&cgP^Ri=GmEBxj%V*$@g4%F|rZGn<%7G4{Rwi>RRY zizJ}9F(PT$4n-EHD2n^^+f5ML$X6`OlvEynaoti#mTffgn9olX7r5Wv4dm!|>Dg2fYe8R_q+_eKn0WbqHwMbe^|`^nb)jwUd$J`*cbZF4mFq^K zHG7tQbKvi!m&}BMnNwABTZPf)lLXxB4dGS?1vRvg8VAWnD)qz#B8HCT5%(gM9z-fV zB}v4Rp+lDedyGumD_gZ1MH^9K)=l#BY2|Jmk2cC(iATY1tJ$=?>12R^1L)>xbLcj; zHIS^`#!`%Fl}RhAo42AXGs2UXm0CB(d<=SsQO&i7d+6)v>;6eU6ueV@44%ZpGD}Na zA0N*(&@LKau5Tgrm8r|Fj3QQ7ln-LIUqPR~g8snyM~vnXogzD@VhXQGVi?TUmlIvTpBFie1%p&gf%ii^<}3)3y--OcHP$; z4H(o_CyL1hmKavohFFo44`k@}?wODDj_8o{2urSy>Ar?OS*4Ys`;zKsmustiyO|$n z`N$IuY(fcR39FBF?Db+h&X4SH-Vk>qKjY6_D-SeY5yk;p4+2h*MaY4nbLi_o@wq6*4+QlW!&4TtA`Rs@q;SKtb`)BRY=%4Pad}qutKNp_1 zp7F-@ZutCWv#eGugD^5nrWYR1vMk7ZR{ok4Zyt%9wTOUTdX4R3>Lcu1gQ{Sd*6bC5V0Mg*!nBQdx zqr3Y(Jz2syq3J!ZIMeXIwoq96V!0CQ*)W{)b-Vsvls7Bt3DPDhW>yj2?ci4sEfoZZ z9_M^;Q&Va~+6SMAQu*$45c*wRRnA7sA7>1hx?!yK@EDLgXuQb5)5hfZ{DYpW-lCkb zGgr-R=*{wK%GX*NiI8|+ONKFU^jCj3A98f7Zu6@Ar$m|vF ztFM1OZExq{aeX+HuH+aGX(3i?H}@K0`CKJtl`hOkMi=W!)*o5+^Rbb?&N&vVXl5Yg z&roz}uy@@iPQ` zGoj2Qu(>7dVHBUwzY2Iy`O{H?j||1njk-+U)1gDbSgd}b6L@N zDLskt8*2os#4o9OoxY}?@U3=0$m8q?KA_p+IU&>d#GE?A?jj4RUuA%mMxx8(kE42$a<+uv3AwEwDckLEH9M;QSD~V-28wPuME%2| z!^-=FO#?f{m`+z5^jl_+to_XipGqgXQbK?}*R0_y4ShG`T+H(MbL@V2TfUWR`8X-F zTh(;r4}*tS$lX^{&V_!rvp4&YNMrU#fOCDkP zGB;Rj-2*@P{ahAMxAB&f{Bm2Zi9Jy!R=)@O#a z@A6_FWx!o$Pb;fA?FrxH#w?IiLJV7r3P&u?cF~)=KtsDwVu_)8xe<%rT-P7l4u4i& z1ml>+gleg*TV$Hgfm zTYJjVeQ(Ad!K$C>!ukx`EaO)IS^ZYtuO9h4W(*#@0ugQUvAhZ{9 zh^~kh^WPN-Fp2bLNR|oAsCiKnWcyw~Y>;EXDly{I7pvT=wQyJG$Oq_{=4d15qH_a} zR)T+?+pSBGt@GJoso+ivL_=&UbxFpg)Ae#W)Kx$~NlK;PtARoTF?b9>zeOp5oy9o! z!pLN)*T;IplR#&c1euO)+>DMmCI0oCviz{Y%SdhmQ4pq`a}`}rwlqP9>PwP1y#}P> zK^D55eZ`K@W0!OBLqaaEhu7r6 z|D;)>e%Y8aRvuMumHB#vL+YMvl z!w6`6{HAY&u2Qtpi^kvSuwb5tn*{3;&$hlg$5BEnA-Yl`YR?)%i@er(TsesvGu_SO z3Hb6B=cpFlPgR6%BbDBf4&+=*7xoT%Pt_J~vuRorHS$h7rWaK3EO3a|nUq!pGHG7M z^k}+jKN!B`lQk6gFKwq;S64C61Eue6cw-KhC5>s@_(FVp_-H4!UbtZ8nS}l%f8W$C zA|-G6`1KcXGsky*nwrm@hRa z{cVn#q=WT(2jS^cW{zEp3)}2WV84VOWv@_r+uS41HhVh1scSLlY2G+%{xl^w>?QMg z-YGBpxQ(B^b)c}4Z2X#3tZe=Voed72w+5i`c>3lc%te(&nT~Y9bPlz*7XsC*jQHBw zs?B`9DXnevL#oQG@8(t8Z5s7D1hOb~Rjb?JgT9ZY{(uwWDVBKA?p#=?I zQn0%&?~?Shle|Sgig4BzKlYu~@jz_6l8o*%RQvBg0qhmGuyv{nN&29Dd6CCXEsn-h zv~xDxDQ{9+Q@=Ot@xj2`kn@{Fp3JdVwI83qGSB`|8XHfYE3cWQ5uc&BNgEPfl%Rog zH1e~ExG+fLCZL&HTHT`TvMFqE>SZb$H=$e0qPPI-(7=_a`PCpeEy=~xL^rCoG=_P3 zbLqH$(A$O;KeH-_Mor7JpPwx3BfQth+;*O7g@|I)M)HNPXSx+QE>IY|q@U3)SNc=m zvVJ@R(3rl=)L~T#; zdi-+LS)TnZS$l<8X=PSd=eFk0U7|;7B~=_AH@IZpO3tM06+Nfp8`v&#R-Ee-jq&_C zM^P&u>GgXv<)GGfmEW5=;!`2&H5-g}U34)oPRzyzfU*=yy?O94mAE8Z3K3{9>qpwl zKBdn`NG4bH(H2eL(dTH8_RUDF7S;zqsjJ$(MEMDR8#=_$n*b|`T&`3ox#-CJtyyQj zo7uGdUG*sm1w?UoaCKr9uH9Nm$l!~GYIsvqteV6mjtVRe_Zue!-lt@4z-W_@pnnE5T*Na) zTLey)K<|y7Jl|~n`bU^Zma^J_#X^rCC2QwOhHE<6VpO1qxknxBB6RGcw0nQp(oW1S zw7uSFq5}^f#{;=BK*JqW8Y*=4ITaca-wEcul}vpVegU;jpdeH1V|?AA{Y*iGPF)%a zQR|c5f20gAU8+nu!a3$MLgDQJs#~Z4=b1Omb%XUWNEj&j<@v*2LVwjH$9=)(%>LI{ zo=0C_7PnC*dMg!#!wCm^dG_!?@YLLxkWnn81Z@xcT^K;xTZot@cApRcb`^8*S5hSP z>#mz5^@CW)s~Q2OOnQZP_NOX%`7uX(m-sbcQvVGcXu=1la<+N)Okn1E@;_tIPv|`c zr2~~T4so#Wh|K3M#r2<4A6+9y-v8Si|4Uu6gGn)eSyt0jYM~KkR2CX-uF%OcodGMTpf)WrLoVFz!i+`0k4uDbT zT9V?&*P(%;u-H)ncima*e#kK&tM7U>3dGR&W9cIwfH{dy-~xjqIQ0yYAWFvqiNs>} zvE}||3tVoe_-u1XD)b%T=(J;h*d98RzS0b{EFdY5IP1Z6HMfnx{}{$!yY(IX{2S1m z(6tpr2dRCm>Ppwt$C*vvhDBs{tJ=W5{(xm9x?SQQ*C=iQp7z#P>$n*E@QIVH3CuIUFnLImliTnfib}jmtHHHT9_C{Hwq2<{^f+p8~+m z{>Kg_DeZxGa%Y0Xz)2)C`E+pAp#SfJ8?&nE7Iw1|Hf0fnWI8Jfi78MpyQ32n0nZ<0 z{=N$rAlrZ(x%=C@LK6N#j(Rm($yx{#DN)i__h)z@%bKwNW}8~K#J=d2a41HRatf&y zD)h^-MY@B#;BcUp4r+dN-YU0fFK+sh0m&qN;-Ba3!UV? z(rVJl!G+WVc(Ar5K%W7(z^9RxS^{c$m_SU4dBdu5H<9Xj7EYAU8|dT+Hws}nF=+>bN=X0MME~GDV&ft)?Ac9-$YtP<-tEPoGtV=Y5lvvmK znKQ@`gvFa#1qN!Y|BRIX@l6eJ=?Hc6{Bl`siU@aAc2#3lW>vSvTC02iy~gnjwZ&nb zF>&iTB|kbw8yz0IlGd?|2j+*1hCEb|q8E>$L8&~g?(MgvD3EsHNUV%eZ=+hg5e;je zHsa(q*~VftDDBR=f?Q=`-=!<|)0u%MHwE|(ev5)BuPHjV~@?`jXX_56dW~iXw z4m~*x;dXhp7dd|OpW^u!d{fT_a?V!A1nkEnxQG?@X_<6`%)$w6;51qSOO8&F!+f^G zR52jroFSuj!FlzGGdH&xGxD_~WFaTk;K5w>QF-UH&AfS0k^D}R>zks%lObUp0+81x z>qed2X7j+>Nl@PR+0V!Uj+8mzL$TUkgkgE7yvl?>8=dKk9n4|W3A@~*{B8xH!kRFR zU^|qny?B?Ku)m6{$2G{^B-kw5VNE;4byDA$uut!{^b&JGMXzJOw+(;6Jd+(#`9sq& z&vd!LsALhpxoqQJ<8|BrDM=V^S8Ge_uIFE}E8RzG>s_z0D{ro=!&N=h1c5l}&Y9B{ zB4GthXDoBl2q*4Hk6U{|FsF?)1|d z23^D1WrDpsjDt3C>umn{emn#%k0zkYz*I&h@Qd?(j&gY!e!4Cf8!@OcMG)-8h;{El z(b4z|U&ea;Zrex|Wi#Z~@766LplwJ@!TgOjbIPAhPw;U@RkAHX`ub~!CI@yRf{8BH zs3eYy+?XhxlVNV!3*KWmL)!Y*_?FVk3X_C^`~b59J{vc25E8PF8E1$W6Am?fgM?fl z1^HI<=dUs!bX$g};)vJq-A$|{o8N#L&q^KXK5CQ|Geox<9J=`9_geQ?YoCGcvyuy( zowT3;e!lZDY_Fkcqkg8$s1d=HYN>V2&(o~e1i;3FaQ4Rw>^ zMaR*iw`ywhLER7brK?K5;labQd^-OM*P82#h)j;$4Mj3I)(=ry zZ`kQpili{3eUkviv`ib{kvJ`14AdU8eOM^~mWI~k_&MU}CcXLa++tZ_`Fq_i>Nm%o zwxEXuKJG8Eh>1MaL)y6PB7;rYw9y|#`ewzyB4RH3nMWLFm0P>cxNfc`SIjNe8)%?T zqrp-vn3F&@V>3pk={DsSXIXUf?D8gYpVdlXq#~&;eYfrRv2)kZy_hl~j>DFr(ZcYV z`r@mh02px>YIYEPCpv^14@CSq3(XES{8)`O`Q3edPw%v5Q8 zN4{C!&oXAmc#-^MFU}%FzwPntMJZTR-ma;<(dPbr&}DyXIhm^>n* zk>Ku46kx4~2JH=^K{R;{#mXMfOv}WIA`UXD?jMREISq@g*;{l3il_%eqGfRbyif+- z<$-NU5!PC^W&muGQ5^$BS}^-5W0X*7HwgAtxfgVBBd^`ee0RyY+*m<>gpi1zC;DNogZ`fns$t+n5tbnz8>`cM#7+ zz@`Vy#tiY-f>i{rMmK0lw|~Sx$HC^5di>}D7g@bah5|J!waFNDSrA@uMyk`q9HFbq z(f%ekMT3x`f%-|63#kMh<&ioGERa%JGR4)|Rj%(oO7=8fzfq8}weB_ZBwP!I`Z6oe z_q2cQgW$m)=e!fU0v5h5`s8Ku1stQ?+j@XE8mf4u$C^$)R~U!bA1N?$3z8GT$5wdrD&Rg!0ID+BW7bEhiqdZRPBw)8j?+|TG{9yRcbR2K zj{~$LpGpumxt@xlO%x4)<*%-tLl!Z+0vM)0_r@v^*#{4G##$Zz0NJtGv+~ki-e6IE;JXz|raXzQ>*#AXWsA8cp2&22F*s}q5=2ivK?X7uX92!M$JlB#{XyHG1eqbhBDv9ox)E7 z7U@i(y*u404Nnaw!=_x=EQ-4~@y>JH)%cS))Hy-!-EZ_S8@_}I?iBdL7G)xupnMKy zvRZFg2!e)k8&$#nFArAJ$?p2{YpkcIakdGNb^b2aFK0T0Y*f_2o(E|Z9hej)rXDUK!9!|C~SKVP{0=2ura7Z=GNeut;jlR`&g;Mum(FG6Q1 zP22rTZ{xx|L3gvtMvHeLk>29Ua*@llUTcr-dSI@in$*O3hU$_jvkDotxk?(Wfbq;| zA`la3es8RCyW4t@hqbnE?MFz|QtH0tK9}R20k+UA5aLepZ1Cuy)0r zxamD`Ic~-u&5jkC+e$p?JanzO{K-pP_&&6>3Opg3ad$!!Z zNC_6s)v&F}IzHiZq~s~)UG(x{FRD)RaPYZ6oAuY7Z~5uGo>z5!Q?gFN{^7=vEY1TV ztdI22ocXZweys4e<^9u|5>wT-Agx-BihYdhVTy|QX_ei1tjj~?vJCr&fKBxTCv2N6 zdCoyVcK)ln`WY&0dD3WI4` zQa?|R=*0G@CxZ=uQyi7@vWEj+*m|HtmK;p&Ubp17*g7IEPxuY#;}r=oNnMr`lB^m! zjQKAb1>+tbZf7n7@3WEoLKQ7rig*Jk;$UQc{*a;D_Vj4FSV7Vn z*4>D>ziiup*76xK+UZ7Kr+HZBk(qcH_@Gf%#jsq!7wi;xf5-+Z%3gJBr~v#McwEGw zOBOxdQ4zW%pfG}Um%&;n#^Z`?){9*sE@;piPGf-4!n5C%4hIsAmGmnGV7dTiAR*1N z<{W4w*Q2Nk;h>-5R zt~A*H7D{kJxPUehzz)$D!1*k67$SyVpad!WCD;(jKfQ?1Qe^W{f;@+xmzpuVdbFVM z0#ooG4iHfDB#t2$z$-EQOawerDb>D;=x3cIw!OMY{Gy=CgVzLLZvgY%c3$xR)%zTt zR8!L5Opy_z04yhWzh#WxRH z&L77CT`A&=wf^l?R&2K_VX{*_m@ zWc)b5A69oo$^---+F$qIg^-l>84L$$z!uRwZ|v1fC4&3QQ+=+!4U!@U65} z7I}qx_n+S4|NLi0Rn&!+-Yg=bz2%Ro{)t9;OwDwcyJH@{ifr%7ImgB-YKor=GbLsMikW2(4P!>*Tk zVpaL?kjCFuKIX@znP(+c6#2G}1TH5PMBxqDxP47jLD$m1Q+xtoC!-Uqhw)r5F+h6U zn#w6aRC4+3t@sG02a-(kiwGXiS!d|L&$Z9j=uXErU&4bYqp;vQlT-IQT-|ar`QSRs zcJ88Czx+(sTKqzARzB^H?d8EwdDOsE?IMVySzR~WH@4K`qdeoJ8Xi3@9AaTt+_agT z(GTKmka5HSSPh4Yh&-Wtr=f{x26xGZQ>bS77cx?NcTo+~tEAQt*Lc-jOEW9qUT>_! z*%^5>#&hox6lxD!I+nZ(oojm_u#HflPbR#zL3>Jw@85?F5KkW+r!8|n0=eBX8rZ|J z6??oEcHJ_?QJ~JGN!9JU#qX>}P{p}2s=8Lste*`lFKZnmw(QLl6Q6N3Q@BYl+P$u6 zC?Lb$IOWollNr;umo<6c8;Ak!CL4@b>rBb{(0#3wzy*`St)8bYscwyn4Oh;*;3n^~e14yV%9_*y)3 zxFCeN&T#@dn=PF^^NORf_~2U(OXHYRvOozS?b))rG- z*U`6w%y9g^WV5k!X3TObAvh~*(_g&jGd%8mo|fzL9quxrsdm!MPjnng6rXn<{_wc^ z>i3&FzsWulM~JrQu+^qyV_?oTOg=O@)-vz_ofJ8UnQEO!-s5y*2 z=axsE%{Lh6gYJSD6^+v-N|@2zoT)P5Vrc18XvV7~K15Guh00;+8Ad`_jg2h_I z$qS+WSml{f-xB2mgToiNk*P7b0vgC8GZpTf1#J;eud0TiD|xktkdLU5`SsH%Vg4#q2SYdlUgmM1F5}?68i__#TG*z=rA}w)Mt4)%7d_ z!7E4O!;*Q!jt*+1Z!%*7GQ&R2I;wyN4j&JVD(<@zp(4@0`9&SkLDC9S4t5+aSsd^{ z%f_M{GntPBMDuB4N={5jgw2qgCpib?a$0F@V$7FMt~hghedqgmvsNW^&Y&xDTuY{t zm*Ej0ne6SKZtkv~2JwB{-g%^bQPW)^`b=TAE)+miB(=xUHvLe8k;O??z_OH95zCa@qA+b{ zKur`$zx&2Was2CZG>Uj=4WF?XozXL7)@_(!D-)2Reh+X^HB;ON=%44RubzHO;mrdglaQ=EKF;j{!;zSz<*MD zVc2}rk6T&+xnd@S*6gb^C4=sLj|vsJCC9UUC#^T^Va!u0+xUjydLg6yk`Sv*CF0=N z03|}uKDF>x#iBMIQ)&=p)=+avh-%LpChDOJ^T)c24_V0v#v*z_eh8MCLQ67M^VRr? zxCiZ0ls5IB!%`#E0;#+TQ0z(%k29-+-WeJoJK`&LlPD03?m^n z9eQpBLh`5W&xQo`s9EPGOzf=omsY5`D!V}@={_|f?AA)4pagtR~XktWwSr`SH zjs{IOV4{@v|6@A2J9gNJ^#q8(i4BI>kpBOr8 zghX5IgHgHo2k8PrWSp6!xDpjkF&IHjua~Qg6BtTePs|}=HnHo2j!1PNEA7GY%FAx* z91MyfBr&$!dpwJ&oA@Zu3 zB2mkMDhiDARpmQXN}qJX`4L|rHd?ZZD8I^AvWyB2Q!%=ULdrO}WbBvWD%Jv)xSnS= zkh0t-pyFx*=(lMP!v-7um8a7gY7QNYNfI<%Upu1nN2Ma{Q@E>nZw~70SAX7v_)fIR zl!~x|ZK-kF9f=?;Q7F!tUDYa;%)xxJ#x!wVsYU|e_UvbxexNL-fh>HQsh_r1RKiSq z71oc+l=u8NWHE*a%rqO)%9Z*ZqvbLVn>27QF9S)>Thb(RpL>SpORDY0JmM6&P0-Hl zZoqt^|FrRZjT3OuR%a52C& zC(f+k%d!2YN^H;6R1;l&#LD6Lms~bVA)*Q{J&6x|q(vqS)IfUl9Wel#MVs7%UW}DVd{`@@Jvry zULmisC|%Wl+I6iX=6CCt2)8zbD43cCYOtg@q$0lxd@n=I7Tuql5?^jzM? zV=yTl%XmJpPSI7qX`SI49F?61-sU6i^UH2K;pfucN?|Nu62HQ)R#eqtA$kgOn#gAx z@>a#!1o>J|aNqXo)o`z+MWwTJC$^A)*Hn*pOTBf;cNeT)S z#ct>5c=sjf7871LFs&?f@WaZ6-lSKNGbUDbjHAu8pjnb4A?8=*+x*Pbww1T$MWdHN zo0-^y?8gNfZ*0niW+xOJ{BO%%CG{VjO>&VxSQ+yAH4GL3)8FQnD$CzeKs;83YAsQL zZ@aL~YqP8H8Dd4jpw7S3}&`#4P66UI|qV7+7FM`&u1tS}3_ zxlSko@7a7#7joEbR~Q*FGp))CUT1qZD_T!V5GRCimxz*&azNh{BjAi#<{foLibuvj z8pVO;)!IfFB9hXc#zkai8p`& z4;};v-l(omlYe6%{iA-!i0}a0MNng9-H?&~?Zxln;6=)2}1SixiH z=WBC?$yNmy;5!;>He5I$FL0W_#n;P3eRBM>`1I}ukmm!SwlRevju32dxrWjIOAMEW z>*WSBThSJl39W9NHX!^OwUI|wNaB>1xpW6Xn;tLLbXy!U_s^1#rAAt*P`?5DB4qWn zGA;x_P&8>9-MU;~kQ>&wX+2f;hQZ*47OzV^6(jn~sP7)s01Ka$=M3*5uTTo&DRAsG6-564ICkp2Z%ka< z-i5};BGEMSFxZdc)!57auOVXEl*O-datfYcHIA^%RMJ1Op^Q~Odb)~|KvI;WN|QzZ z;wJbCwRz`|-DD{71+j4ic;M6xW%h7s(N^H*;;`xG-4}!~v30#kMQbBWh+LoJ^dIoX zxQ|k|!GDoGht7f=B8Y6=%Mm^Pi8?c*JHS)YBk0Z^iqWs1pLNLo1)+))+(vLq6Uakgv!*<^rnRi_{{C#kqD1tYIR(8Mt zbcSEIy^;h#`2b)apF8vpw7aLi7!1=YXH_$~-oHBUp7mDhiHEPZ&>9sb8&JpwfaY54Kh&5>SxVSK1NI(Cs?UXS1QkDzeg*|Cjb(G2UJOj zAdGI~76yPBM)+NO(@{YbjiULqK^Kejs=M^J*JyVKhX8g)$DRvnV1!7t@5Q=g=a}${ z^}0j*n36#>Pdrh70q6)ibYw|e&7{WC+^ohsqr9%Zykgf!cUYYNU~<6sKt>g?RJTSY z$-*|)=3JBOaKm$E035PYmFCw6kP5$jk~GE*X7Ll6+TMHDeJ{z^UU01`~#II0y|CebY>0>-+? zMY{tL0VtpU+{~4EC`z*yf)0tNtbMSCaVI*^dg6}?0*~O+$C5O8+o+KEEV(}bF%+l> z*I!goyuT8+#!9huu6gT`X85rK#vhy+Q0XK31ENuq7egfXh8m%P4zm(G2U#lG|9mw1 z2Mq@x=MV^z-mc2jTgAe8*5&{ck4s6(yeBAkP@(_azbT5S3K^KWhkRZ1P0!MuumA|g z|B6=Pft)k`br_`j)5z7btDz>|Xcsuw1ty4pP;{1Lpy|p@%f_0k+&c4;IvC>ke}5(g zk*gtH&@b5qC%8x@>5j}QIk4@L<*~vf1sDi*h$f!|c_<1sEGlPI8^-lT8a7NoSXu4 zIRDsJ9Uvrzq^!{*9piL0wo7 z6M}XZriU^$15Znt?7wvmDx4Wsc#PrMxGI^~CDSI$@d;|Me!Y1}SX~4pi?U}r_C?q|N36^bpJ!cdkcb;dEQMFn+z*Um{ zR)@uXkQ#XvjyuFtUdGt5p90zFd`{~Y6FCr^VP6t^o&1>0@Ht5SOrs#yb_N6FS1B+v z$_UI^_N-6(5^UHNxqw=|`}DC>dD+K~2Ce!D2V!wV_qDQzNBW5{*;?3suLgV6_R*m= zD|-zeir)02@Y@&5qnrqt^Iy(cdiH~Sg zvqLL7eAfcDrzMPS`U-S;!Gkd9-?;f9DI_WF&mk z_DYTdLgW%pT2qK?X0mdsZB->30GsfG^EJVY$3T8N3f;!7yU%YJ6Sq^iePHG~X<)N( zOS_wfg{WJ@7UE-SX%-FJ>EkMFXx|Q%HOl4aqm%EYwC=i>9z`cO)5sU|?&bykT>AJC z9@w?-RRvsLM$e3UZj8;^6gT@CTP0L)d_5dHK`Yg-%i^w#`W0b7HW;0h1wdT%(+F5w zswcL41Y$4+CCGd7H_%X!{*x3j$<7HT9%`6SRbh(JEw8r@(!=c}n(1FxGVKFqepz|; zH@s3PwIIb0sin*&?G9+`stouhfdMZhjWd<*%)WSv?E`Z#2vg1GaVpr+YI9$##)6#m zOrEV`ZHjQH(jZsxVp{_|G-xzC8JhFw&X3w_4N5Ing})hH+FcxHkUu_qft93}ziP31 zpMrS(ojUIao`9}j^5iwIXsXk4&H04-Ql@2JSK{Kczf+Wobe1-&DW%* zQBbcw-`mhd8svdLAu?l*%_HDEv}E%0;r0#=r}I}r7n!9yL23@Dz_w{KQkJ=?f4`+L zNQpsQHFn>S%`vQ;-BCM|-Uau)2~`v*VHw0Yz*f#V z^ZD09j|l?Pm36_lqlK1+PVnr~((-Kf=#@N_4Yyuwq7^vb+Xv9>BS_LP2Gr2Q;Oc)xXFJm@Mkvdo%Vwn1Ny=Y%`JThhima@Nkl!2pI&^56VJHyd0{1?LT!-W?_v`w#c%j@^{V3Q&kPQCsHIHeE@#aeHtXkOj#(vn z61)22=$^$l;^CMf3{2O2MhX|on;NRewKTPknm2QF;r4?TxrPf{>eyY^n9v{ z?)oWmEOu!;o1rDWyOGHFsPB@slbHHCR<=lwL)sQManq#m?T58zL4gjf56AZu-9!<5 z=c+8fFDy5H9jn-99^&++M%2AC`Z7+W^=|P)+NHD@V(PIhW^!SJYROw@Zs&ISiS@`S zrX9A6jm;+nKQ5>_S+BN|MZU$=apL0jJ&h+I@`vJwsUPf~-U09d)VSr@8Y=SWFhu@$ z4pnuJ;Bd@h(gm4W?^ucMOPmN5>D2AtPZoq6o;G<>4q9cBs9_mzYx@YX#G_l`iwoCaRb#r|SK`l)EEx%XEZC=h~S@7D-^3eNrmVK?*T1T&Yn zPT6UiMjjd)X;v*cxviRNx!t-R6cchO2)b++PY^B$ahTR^j)JuxzDc|ui3;kz`UpNW z$>hi@D4pvI8RAnJd7a2^Vb!Gyw-{VI{^6ZJAYA)rBX*^*D1ZVDE!qucX3}lbm3Gha zwU-1}Q+;I4j(XULGqvwtDxMc1j!^KlqVurDF_~IhV?9^7@Jxid(^Z(_3SP@s7*)mk z!JN5iU>(L!vn67(|6f~Q9T#QOHN28aiior*AT1!x(%nmgNJ&VC!qO=S(n#mhOGvjg z2uLqoQqnAobc(=tq4)hf@Atjm@3(*K?p$+f&Y79(%$##h7=sYp^Uc?#**bBD{Fke( ztkD809}r>}crhTsE*qk)9oCVUks?;BBkL84jYIT7ULbpPD0%j{v%AXXovnze%`EQq zc>1Cbvn$GpB-jrG0}eybZtp*L4Z1OJr-8S$9_cZIv0=LpKSHMOY&{e&)Rzo7;Tn@- zgnyltk=&)KSQUn{JGt5adYgtay+e&4<)LnQs7!7v?0xK6FFp+%^}_R$3-3i{J_HZ1 ziPPpk)+2ZvyZgzz==#WUA~xE)-2$b4t1avsMY98(&rOW+-WKIP`Y6s=%xP$~ZJH}PNrv_l8K3O3COx8Ov{XX~CFna`03w0vUZ}6RQ7tvScv?GW zu++!E`w2g|%Nj#ix{)m)Jf3awdA+!rK$oPlctGSgl6~b`2JK-cUTfi;;NvfW_(au? zcR7BPp3gjqv_{N_uReYH>|oa>>;-b}n#RKIrh2eqps`x@=!yZS`o`n@%F?pc+v1wA zO@tzIE)ECAMz|`xgIk$DKpxWIA!3)~JzhWJ>8?uH(Cyxa3eNfq3KVYmQs=!m zri;rPQGNd3Oz$remf$n|L4C`Pm2Sx{c69`}s2V|q*%-pa6aX%u?8fH!XkY8~t^d zCME5d7`cXM|J@WQy|;mm^_V{Kz4V!Yc9gtbY_{whG=YG(U2AJbsk(t|yh{A>4l;+& zPG#c-OdOy2WzjH?`6IR^`NZYl^d!#3YRR}Rs(-!%TbY+#Vi97_9X>IfH$wiP!-B0- zW*-q4?pJS|h%r?&B)y0xxYq7%8UE$&xve+tFT_jz?b0G&yZ}{rViofIOwH7>I>S=4 zwubfS8zVNj;4Ywx6&!KhzkVpz?|#614@=7Qi>cy%BA3ZkBoWJ=zR+#yTYjd!=$O+g zlU`Z9pv~zl%W_=xev9sm()@d~(VlY*Vam~{vW)inS^UALL*Aka3kHq{V82;fg?bT0 zhgr$Ax4YB1MSaUDr&qozqmP1tbC0fH_RVxp{l_js`YLpAE&EPG*r%x)T|M0L%Darp z!HI-H$AcAtB~*CU&w^SNc1qp$XoevfTCy?Ky73}1hz^TIsaT8Y{UrBavunHaXIprC zE+uQSOP7NPvkF?dY4VQO5bk`H(D$4z$GR*jYcNOCoE65raM^QNZ* z_tdkdwzW;vMduKT|2O-Rujr=`yYGj3_Y8CJUv{+N_?Xk!xrCMQdg^TuZ>N!?!7keB zU)`)75)s`m7q)q}WCx%0EaR;|{Ggr8vG{f?&w84g19;C3JLyPh8-tK^zM3Z|BYUPR zjWG1tRX(Kep-40-F!S+z!zbj;`Aokex*_&y*2{45x*HAi_5 z27N{UMwZY;mR3|t15(X#u|XiSxe~#4FrtUQ6%i0mlDaoprz_p9Az)%!`!E>staEo~ z+GNWcCb@(M(U+#l3ZG@fd~O>1xk4hrbf0bd z=^MQ^T4AKHL6?gOCy^Qz#qDNGr6xxY4lje7?E&|CY$$_Vm47@5E(NPy8u9cwe)@>} z)#;}!!9aq;RS5~Pd<4HBG)kV%FxvqM5tUI-S+Q{$WV;lSZ0$*{C=#rzj&7%$+@Y0WrKq%l118(0x8nW?`eG{=+rfsgdAn~YOA_dH z=chd%HGCLf+)P+0PkfRg!WD3KIG8Ab^UT>!k}z)jyY}G0z;uH^d>W!uqM%_HEb_ci zf0*}!D6DUaJ4SGc4Em{_*1458vb@)YEqA@PZ|6)!+;T_1D!ZT1AQfDHeeITkE=jN)y2)mtKi(w{KeR zwkT|s)_DQaNV%L;n3yTiKhj<@o?Clv_gx6-R*C%QmaF?xIg4b zl5r?V0Ps;6mV7lxM~`_kom*Fi4mhb4+RT9YzTR=JzXq^Z3K?wdM5!DnYyq6AhY54z~V&(nJh6q`E0)1p5n}w);;aA(!VomKsA{ zw}Z==b>vfXwbWF#-q`n;=G-M_`D4W_Tbnyh`5kB~P*npi_1#6>QqdG2FCq#VmFw;P zDiesoyX|NbkeYn%E#Z$iuQRuvrb*t)mn#9XcM722&*E-5epqNRmin**@b)r%gn-T0 z9s>KN+wjZVcsrYbBg{MC$PbXAck~q;T{uU#A-Kylh4&Do7+cCe5`~cRvHmFzo7rfrg&Z5SN!q^7Cmsz zz@Eehct|5mlmzX^%Fx&T1Y7zCrUEZ+fDdpm2+`iYKQZG1`}(n<95R~D%>{r?y@fiAHQcUcT?aHc^vierpo(YeZarFNG zB5}1v?PI4w3h~9~qe?YCyh}+SiZdBdvg`M$KW;@Uz%g;}JuAO*w;=taR)644HJR}? zGV(@TfJzVe|fpyTto| zkXzP;#$Ai31*GBpUymzZ6)@?z%Px2PMPpRA_zW2B_pdMX8*Q$S@8x>|9?A2tgOTX3S zhcna_!GG{Q-)gqfq}9@z=|#87!4+|M+9g8Y^*vct@?ujcr1cd2kKD7kb0;~dpWGP7 z_D6_mq4^Mx6xm%60qT?rv-}}_^!(bUB6?&g#y1TMnz${ZMSYi+#_wB8A)D_&$EY@o zg0^?hQ@$F_nw{8qLp}_#w$2o8Elx5vfd@Hy01Z_#%vKg0LY=}wQl!NJN@#Bu>B7Ct zM95u)9{!071%y$czP)`R8`YP1GU-}c<2_Eo{^D|>=bB$9^!QH>>`DtTwDtGyM^({_ z<))#W$XONdELLgqV1tlb-v+`l}-` z<7~w@W1eMyzxM@8@5P7EhoNzD2eNr_D#*Ei>J~Ahd+M2n-zV(l1yx~IgE5~Yo4Yr;{_E=YBGhd;eywC zL8cJ8V%V|OH=hHIXp!3F9UXG?`;_?(6Q(FOp)5-d-kTc2{yzFs$wM#Ek$=hO>myH= zEviBXmMyKfdEdZmBOXVovyqpyB-E;0q2H$*-Xrwa4jz)AWFAs^}T zCHrXFcEGpcu5Lr9V$x`Z$AeN@x>vq?Sg^T`DRo~)D(7R~BRtKkEZ=iRmB(Rp@f~Zr zBCx(tPs@xzDd)EDy*$jU!J`Mbk+kMYHv8ERMoJo_9MlH)nxi$gA|}+)9CUI?gGb<3 z{^HaLg4RxtRGw(*qe#G;l~%sA)W*w!w*QFk5gA%_8kJ73ONJ7GrTV9e z<2N20mDF}6KUNVEzL%;$x@g`g*)tL^9bMoqJ+CTJSg0`6J-pbHPJ2X1c{eC$J!D>! z3b=9S5@$!GqAWb6%ljW*3$u?lYF{tdx^5dupBxB_Ff~bRCgIpOJ3);a58rL2GfpQI zPI=&eOVwm10$0~9#R)Ru>XJuFSgP2}VA}<$h?fkcW5Rd_s?m0J=ieEg8@G$ooR>s} zdou|U7Xj5(t@1OeN`9c_T*-Q9U~E+C zah1WQjef5}9}1#3)#X6O9C&QrlRH#RIUwO~{e%k4di+jyIi|I^V|#;B%F>QC#k;;R zOEc0XKKp3Xwy*Ipj%%6j14Zex=Z_b=`lk<@Bp73QFj@&N7HFJ8BWQs;k$HmI8-ixj z{&!(rqsWBpIQpaMMYDo3y>LL_un3YG3u3iap7|vi0V}?0H%? zw^2w{gjJ&&#f_-yr)rGi^3g(r*d02kj(&TD-sqR_WmcMG%u>3zU;L)D6W1N+;a6-# zJv5UwFHsM~e*aA5VetT%e&IL;;p-hfK#W^IKJ2&t->z0-owaHdBoyNTb?a&e;?YPUe;j!H9XR1fG$$B$cg>$vXchy@4h#kn95* z_3ae$`^J0{TR70WIfB?+o9bH7)%Tx3g$%0K>qXPYv3&F$q5oC^ThVHMuy^vb$ z-+MB5qEbTx5ZK!m_z6E$CqFK;TReHiQm7)ycU~e1XK}v+oQ=9W$335I5eyCxj=5_p zh*{pmHn2eJ;)$AJNw6%a=tHl}ipv*C=_os-53Ia{+8B{!e6(}ItfKFo+r~=*{ahKv z25ohnxf&riMRa;lf}@d`zB%T3gG7~7(HNwf5#)Qph=?z7h94kD^1bxy`1IoOw3kcH zUWZHy4BE(uOTM0QppL6-8vPe2pPSWw%kG=xZcg!nG$WbCL9EB?OW|l#yu_F=!igaQ z4;M`00yasdZX^=f@}`OmaX9Z<_qG7J-VOdNv(Gyou06t%54A2audRXmCLTL=#5H+* zzH9hMc&b!l216zh8@R9(E`FjGq#&`0ZYOoagO7XH$5maTfT9>k-=6KhH*7NYJoPbIV~*a>12z~GKB_P zsM3?>;hc%&ck&#h!gBS7jgeNUpu4a-+5z-;iOT(=51^m-!L_zNcQ!;%6qj^IioSuX zMlO~e$iVj%g62On9)W-$-!3SoGfkMC^Ill3t2t06`dmKq{2DF zvU;m<YFawz7eE5G`fUX^mbkZEUwzZTCu zp`x1107_6f5NTt2-#7gBJtXt((0iu$$0}c$#F!NTqAmF|D~Mnpr|tg=n3Z+Yk8Mkf zGPM1{uO({iKWcv;ytgDjAq8QaJ9)WPRs}I#C5c-K2}&?+Hjl-JRpn~BKQv0yr9)uN zmk-LdKkk$DXm2TV_uxnrhTzomD@efYHJu*JAN?Y<$UDYXUhY$3Xh3S~OxIhSsP54M z7?dZJGtwL$q-<%mb6h;m{%Ve4H;PnS8)*nr^A0f5gcg?8Q}a@FZ+DGEO{k319`QyL zbrFuh#+eDb0ubo=&!aJ6fs;eoK?s5A-7f(U-YKGBgqM=vaZOB!L+pIcCA&;h&C1fJ z!&%dnU@n3!yMdss61kT8YQRkz@#-u-i<@3*lj^g^V~0<}bj)@6XB)kVYUE&*q4D>H zTHt%FV}9M?hQ>094+R;pX%0HXe*J2_`~cx^v8f(HWt#p&e~JS{@@s80TLo?i>D{Q2 zTEPYP6o-07wyhf8$Z4GHKKWIi)#`17N8BCGuIQCKtRpk{utRaSE#Z7-A<}4VZtIFh z!LE^pjs?trW|}B42<@0mqSmbJ_5`Q`p|@DXmCobHiU*UHxozIMJ{K! z4!oP+RzMPK;jPEo-SXi|V26Q|LH$~1yDXhW5y2L|Iv%iaMI!lr6+_9XC?{W4y)My^T4YUBsV?ab;{qUDslSt69B z`8dRo>zlV}a#=_yjg!J}`YO+fnSLg^|$1fkk-ym8`P`y`#uz zus5w!Ab}*@4T(y3fnmZ3G6F`6hUgzw+`#ZzbTqyk+hv{f2?C3E4nw7T@8^Pv-5c3`tH2S%@fxJ z`!m)X^vR*+VPt$Ksy|+Y-|JYcEUk$+uG##^Y?6LghB5e_BYjR2!y6`Ex1D`nHKTCY z+pCC*E+uXz`>mS93*IKNh2kzs`I(H#JG0e~u66q8ZIlMPt>Hts3z93+=esU!tBwbB zt+@tx%^2!Q9INILvvNlrE3>+gfUJ z1KYBr$nAORNPNv@HIq+xlHs`f?KL{87K9tUxGWBUyy?H4Jf6Oif=jW4=>ut!pVb9_ zsFocaQ>%b;tc}+SXcxE=aCtWu+=cJgj@S29O$=#rtM!Rr+*G)UirBMykr8YeJ?bGI zttp6I&{9Mz%u#&vASb-gJeMg1qYCsj|DNRg?gf{QoMjwZ?a#3)q?Yf`3C@I`P@l?I zY+cE_UC)FvlHKJox7+lA;3^=xuHLY<31_@8tLzFop*dS?imw0UC&(I5X15OyzqtzV z;r%*~R|?IDMZ3u!i+51KXqPtadThXLm7U;chubY{mfWOAHdp#BWY@FulkK|qjojy% z&&Wkr=S87JQrpPij#o|kN=lc*H+P5QA#Kgz1?C0*^LrpQSQ=cmG4TXrxNcLI*0#Yu zlgx&XB174>&K;3gH_nUdc$v7UV@q=Bkz|vwD_g4-k~R>Tbea{jZeazlmX_Agm0#$p zLHpt9A<1PjOQ$IM(l8MEPQZl%*Yl&lXXr4{T`{bdrgcQg=Y_6M^Rl8a%J* z*SJa@N#r|Z+t7gGk-*LQaD3 zTA z8ofX8%HN=$;ti;(25hsPfVl$sUfYRplaF)296T^AhpI7*`eaS?ctDYr7t(d!&GHmD zJC!l{7srg?S|FjGI>hFIUI%Up%0@!&&l{?qh6<)}%0cX$YG9X88CMOTkm0Ol)X^ zw=2OD*U-p5MCwn^_rs8N`KQ$3S4k5Wg&iDwTkiuD$6cy=j7vYUT%`^zT`=LWQs?M2 z=&twoAdY9twTbdSuKBloGJGnxd!1w(M~M++&FLh`3|m&HW`Y|+V>wp@L+A1A92R2` zJM#Aup+;f3A+Wa@RYg&mzZGDxtjVs~RH?`yG?5VZsGhKlQFM}oM+#4ejYZy+Zw%}R z8{1@6jXkwV@N{|2Sok_h_cduc4GyKE{4 zqs+b^-_V}INEl1I0yV!9Cel3yQGPHu{SMcisd>+gg>QO=9mewf5Xa08Co@Wb(_+S-ran#1cs`yBHngZF*Z8Y$6UFF4Pnk?u zPTRC7zdpp!19!$*s4F(fKYQx*fGGiy^c%Yfx`?nudjf;V|2zz|P-44O`_YDOy$+N8 zjk9f?VZHmJrc4~%lJNMDuBAruT-|;q5MN6NEM2NmPOys+WU_70%HbKk=T}ts9t(t_ z4DO8mFZ_7K9XTrGNqU4T%?9_v2Pfn_388OQu6O3AYGcZTjs*ThcE5>xg2Q8GTP3~5 zFLWNt7u0Jsi7Oc{7w_x&{s#?@E_ptJL>?~5!3zKWn*#K~@@*bBoAo1jO}N$rTE_RD z$ib-e45+X7xQf*)&N3u4Uu>3Io=@?<~aXHdV#uQPG17rFy+wT$IV<7JgRa}GE zs->jav?^B{y5`o^KFpOlV->v48`osct*xJq_<6>fa64&)0Fy?`oPm1sM*17EnMNAx zw&;~6?VLC zl%Wni4c8f}?o|7jQ!fJp;8hxCW_kwqp^Jo!Meq9+KNf25YBxB!n0(F*!M(EHgjrsR zhW+0*t_aw;8WXIw)tWOSCq>lpEuV)EtFPBpbW}bw?)C$saWoQFlKynB%^CDcs+1wZ z{OU(ueQZKW3O_>`QHrdSsFgD7n#XnQuvrSbzXsx^U1ngIJoaOgm6!A$jllAyahZw( zNIWZ#Tll{t@(Q^_S@0t49YpF7q6@w`_?Z7J9`gkJbim>|WJzp@X*`hLv5w&UPEAiV znI|X7>GKx#4Y%X5fi*iN%QoLHr8Q$@mlnvT4_Y(o#+yrdSS+kQ&9`&G22LlBoV-W@ zKaRJC{ElA(U(p>qXuBjulTK}cGLACxUrR*hFQJnl|9GfHQ64tK; zcfz`sN4B09G;g=o5g*mO)G@GbWy?rU&S6T#{KsByr|0djHM)D)k?u zVY)S%!bFJK>nLwU&Jt_z5H_EwKzL^x0!mC_%*C9sbBoEJnks4K3C96r5I$q|*{p4C z+l(!%>1V~?*UPi9hl)dVtzXg*k2h7*DHlB`|ESCQ?HVH{cve+kiguZz7U6N)W{_5J z2XrUyAI>CiIa7p>zcq*%uu!ExDPqj_!mFtltV5#aF0Nx0`gRklvLJJ=H`~s1FgIOw z1cie`-ciQD_|Im0jBJhZx&=kE#{aSYZ1;{qDCci9>@)sy7k_KAcNqZgA`HR!x{Ua)TT-I<6imTP9 z2N=zJtCUqUZwrbjHLH7Qxb_|#bScZBzKq>N{jHt;`fHvhp2I6<)}OB|xKbV(XG-ry z&P$BzC=OQFTRLvu_$E!PNP;g`_W#|WFsOhn*;rHL8DnvAarv&y=61^M9UUB8GeP!< zrEmQ0d^PR-HhSFE^)#)msth#{x$%`U=+}R0vL~}4l{ZNn;ky>j&d%?g-yJN_!fVf! z&nb}%Tlrg9NDIPit*dqOrn8}zmKdF9-@&@arqxt^O8?Mss ze4nH3&ZRxlSS>KI0hr_Vu|ERKfbyl-BAh9XdX6GjR|z9mTUHsz?i(ZZkxSF~l_D0I zLushha@_@K15{TL^cpG8Sn{`?yMJgbA}Ls5b7f9CK(K%nMz)Q|?t$)es}c9^g6?KQ zEgUVP#f+XU0oN&xkSDnEmT#F86tY7c0R0NZzyN)KfXzq&>e-rAG}b3#`*ywF?YYQr zzMOp~A}TiXHn2`W+z+VqE{%o;l4OGMXBu(1dX0Ik1NfcO4Md+g6-V2bp6a@k2177E zL5^`A+y~ufLkjzx{K9V{v=Gj?KaSFq-~3W^On253i0@p}y=bOy)-W$#fF{4jw8jSl z;S?xHOK35AV%}04553;o7#B`Jn5Qdj>dO~AnCiQkZOVkz)nY`g5_QMqhhnOz#KD>dBS^_L;^$CCcFBJIFZRNuK69^obVX6W|J3VS;Fl*?$~)1eK?`)8_d5R zJ0mKOhDZ3sS3Wf?4PR*+AT?Tg(Krmh&-l3!I}CAI{&P2JAc@)0c_o|EuMzs?6Zkt( zjMuKnc%|k+tH=T6`T%AtwHjCg4Q*{hO%^;fU1!!!CFRx}1DOP0a6OiR?5CF(BXeTG zTw=$J(K_9^2^-2|pU*aS8YAYFcMW^6)|`W0oRoDEE;gw)53zgfiD?e|%%1Yqv$a*I z2o~3DIO>azH;nhXF8b9BC*dkG%8UEY%^Pp8?BB`# z@*I&@FZ`JgtZwA7w$$rf(%T*r_LELpBsCh%_0`e2@!oGR6dEc!`=UjY1r5N!V1fk# ziZX3s7!O%^fw#AFf_H?v3Y)LgBuUt7p}QRW=C^878RJcl#@V)74tWrr*7HMXuaUOC zd50!-v*p8X#QblY=9UK6wOyn10b}>3M>9yq3)XPlk4DPq@ep8C8pyBZEe%VNP$rm9 z)O?G)`E(jdEVqPH=&0DbK}=H6<*YpWSlGPIMk1K*%$}Z>@aBkvZgy$X6-?{KOUDsU z6Q!KS{jG=ZEa^)DHWTd0ojXp>cWuFzs5%rliV5bVQXq@m(Ok*2F{y zncc)Qxz`0Ozj0~YoV^AA2!}I11|ry!;TmayG|#Ixjwyab@H~tLQ3V@_>t}HqFr?W( zu54E8g?3OBb|jWy=g=j&&Y8ZSvQ-xz&^E=;+XP^oj_i7_*78J0%r#yXjcT?PBiOBu@14r;Djk?K}2{&;0x;7i`JO9dvNsFzPy(rCfms?BZ*Fh6Xusv21-1AnYCH+S- z>AbL^7)aXKY)`NKa}(Wq58Gc*lz>?M<2IMs6)$Ory!py%!@Yd!l_WGF*xr})L!s6u ze{Ig<9PV6~kq0GUcRIpeIT-LhyAo(j8l|bx`I3~XYUy{sVOD&t3@TUVmYCl=SqA&8 zl*DsH`j0TOlMr{|)nYN12XPV2+O^`Mv4^|8I*TFhM0(qvmrb|{Q9&(J+?oT62j^il z$&5B{;^%jCP`tdXCpy0y)I!R8h6%q(KNtv~r|zv)=86+?qX-=&ZT9k_Iy&+HJ7&zV z8?hMHsCLcnQ<6{I-Sd|;21x=5N+PBRM*amCvwAyruW5)gHnz-e_nlkQ21&8P>THXF z-BT9yl;7!&8dyOb6c15kjKTfGZ#-h8Y+Nq}J{}7{!e<1s)`8%}^iRZ*RPxAXhXe!< zyxREDH0}klD3<@20vcKt)HMk*T}9QI0|maLf#A;KfVh0&yYkXV3~^vZSKI{L4C`uO z0MQ-)F~Re(KI%}=pYIB{t&AYNBB-zL)H*ku7zB?4b~y165CEusD*++o!}hly2%R04 znR)eb>>j{0h|CT-?>%LP%KHc7QAZlf@eG(524aGN#F5_Tb)I%G0LmXgqNZj!F4q!& zX*q^NvDi~4kb8ey+q0B5#ehD*$G@*Ef%QQTZBVS@!T-G2Ca1A)#pWUr(?6!<;JXMwp&ai1H2et4xL z=JAfCb6kNO*VD?1jQ*phHcQ`^nN^M5<{eY}Hqk&L>lVpyZe(NBa){qTp58bc@Q}Kx zRVtEVNRL(>TpVm`gXeWw8+ga^L0(F0zhnv?m{RMMh908ajrox(70$`)6(fezo!V zY2>kD!O_>Uw8+$a>q9XR8798-HcE=6}Mq{OWAooUT#bwt#c5kQM8#MhD>W`~epU+Ik1e0vj0Zfb;?V04OVI9?v9CGXbJ|MXiO5 z(3!j|@em~2Nu8iMiP-e!0gX621aplEuEONCB4yTJ7pJfI8Lgv0oc)n;i+}VM*wPr! z0h#a;p)5{Bt%|lF_pjf)IuXT z@|Q#5{HR$MU=9I+;ML`DXHzG36Cv5bOv5up%XmP~0c+aHOl#9tz6^q6f%U6VfSrLr zik8Mo1&yY$CWUiEyx8C#WIFI?JVLawY{Jr@^8g!s93puvI$cMI1Hw^BbUt{!sRbK`K>)go1l+~KE_n*wCg(&XW0>q%6pnc% zT*Hn`3>q9R3CXXiW%>0qgEWxIUJ#5}Z(Lo=%3)_D#cgNBW8BSTyd_a{WeHU<90>_b zfDalPl;9J1pznYB;s+_xIXn#8;%w=*r%e$C@-lI>E%d*R{_8!if#5WK=q*sPr8PNr6wK>`-5M6!kmSX0v33-%_UXfIdtTZY)oA3!YEy_8Rk$$9SV{&;1VS8aaJ3TGDJBG{P z_QYsg*BF>u^4VXo$8Kc+KO{O`Kv9tixb%aMF-&COzc(T((YLUWRK3o&Yc#DfE;)H# zHH6?9{kP73TL)jjr|il~s2JrFHix-J{wq-qg1;X0^F>jdVa~27M^xB#rmu4Hi;hE6 zWUBw7sTkTCiJCtk`ibO-L!Qt&?-MJWaL{$-sWNKk)&~@1Tkb0PG(|KtBS+Ku)cUQ3*7$EBcPb@6WE;s^Xg~Sx8L|OV7`C1=(e*r!T}Yy%58Hj5+wFOx8)rM%>}7-&=kB~Xe^uRzkrX>O{;|FR?-)WZw2)(@3@L`4GgWITY^(X^F6Vl8ejc2x>VLP zs7ax>qOhv*XDd77`Ira(R_l6@s8g|e{c^jPhHITU%=#sU-J`Q^`B>s_2j^G# z<_HSeNk!-mD2_ z=2t54yfT4<8P1pGl}F8$a{~@G!5JMGF|n{dans<2i4TcM<%e#jLBqibdV4=Vs!(rrW1%1=o8=MxDz=Vcc;a&VjB#=ic4c_I$7IqwBv;8aj_3# zLWcpG9mAtXtkKx!bU~5Euz}4FIj^6HuF@Poc?qG$^BD!ylXA`NkhzuZktChNshM_^ z!jTqcJ)+~`J$JK9fN0uSVujp$JSGrs567O0)koX0+g5>N36i%Ri2xP+U#{e?H;X300)kq&8_02c>y?O8jGwE#9%-3utYZQ~qW#z6Mx~^) z3oC+SW2@Xx5ol0j*BcFDsz1RcJdhX1@k4Xf!MdsKJDFE>K?7u>N2{-X_6=%#A_XrF zPXtp6%rfe|p59D!up$h@s`jCxz0*S&e>2<4;wNvGF>UPyGR%quVVPxdm-Omet2(j*gKeOA6fM(5Nct(J@z|5 zVljXscVeG!i_Zh&tt&a0goJNI1f#Z(6R4(^*4gUqYgZ6la&}=MtP?yuDjFIA6(gL) zummQrGm}V^JNhB3Wp{8?T5LwfrQE#dLVQ_yxvrUBbjxiw`_gi$1qK(d0p-hc)+@h; zDE7-s^5jYv-e?+Ul~`6<+HF;G$px3R*9W%SOz3wS7(v_}76;&N{vnxb(R&s}<|XRK z=a2-xjh2gGm2J&PFN^L~UnslzL?!bz;rNw}NfRt%vI`#YVG%#~9+CG;lY(+7Y&e)J zd;vdOn)urMJ2sJt@_hkK2R~h8%nB(^fpI=vi%>;x^-Hp@*qd%4yLqa|Z{K~EQ&n}t z3r`hUsMO)TI+=|p0vk?FPuIlZazu)bjy9cdpkc9Ed*2ZscN0#PoEJ52lwj`?jRx>87HQ z&&6kXK;uI^$MtO(96&iK$@OrWuIlq5SUbB2xw3q)x-}Ngg#kl-0bc8+N~f@qS`;z> zqA#^6lL1y8FH84%7>%vfhZhCq1DZDhNltH@5!}_@27DuW1w8|Uh%Nxva-|NUtBb&h zij~?|Hp|~-%^R0)Bpoqp+9bQYJScf*lph%LUl=~t73lW#k2ZO4kzQP$F4uf7E$!-F z!Py#!@+&Q6d=C$wQ&tuj8Y$xg}wW0lXo=C>ow zL6H*zDLNf2Rv@j3y`P@aiAzcGBV3XJuhKo<*oYSY(7!RiuJVbP_$nv(VT7?~veJh4 z?%~1yu^`C%!(PimXD7(X35^{9z#on0`t7sT0jjIJyMEtrVw2t0P7l*${`mRLN$_Nz zh+a=Wuib{gGjZik$j1Gp?ct5p)Ajrsl=l`snN+h&W){Ocl}hct)cQlb-GX20e~#@$ zC(J}`Y+M|{azJ5WVRkkkE8_kNucV-0DB{QB;^J(y82A|^&&Cut(ElAIf*ix1%+_)~ z-0X)%yr`TF`@7MzumrCMMJzOUkr5K+x!&3)k7dwrF6xyn#*wyCUwUT8IfI!wIcJnN1$6O)$gd4NyjS0{dsx_Cd=2-Osx%7N1y z6=+0tTCz((gvoP=PPClOdUX7L_@H>vHRnfwc>Se|!|ACQY|G7r!&5KB*{(@@=**2l z6^k;4oU)hhCrWm+g zZaNY3GDGo!{;+Qs8TUiL-gi?zaTtV~QB`QN4TIT(YcW|_6aIWDkSu0=9v+kIf`TB7 ztgK+?<0Y;MQFT8%Cp!^ybq=0aeTL{Pw!USeJy3(*+8#Hw;-)4{hU#i+2@DJjU>=Su zA|i5Uu?|YD(~bqSzV6;v44txaYX0NZW?WU$0}~S?gUy7Go}(pSb!F1&(cyG5p-|jT zs$#PsNXYqBWHDS$z_*?edA;`1L}gHaJ8MI*aA?5Tm<%SfJ{ybm(lA`?RfcB!gv-ky z^7xqq&og?0&Y+^>5wY*>$t>JY@B4zOJxgqC>~E>x0Lr?b6qOVwR=WJ~<-{-!q@)%}j*l$$jLiBz78lc&pR}~Js8IM$pC-h|e{ghil#A5QFDxWvVtW7M#}D#0 z;1r8XOSX!9%E~PM0RceE9(q09-0bf7QWq5itX;v0Nl0EZwhIjH=J|B+5k}K4ZE$D^ zdxb=|v|XD7zM0~n!q`|E_8JTij%*($w}t-_|lv+<@>u|P|tl9A-vesn$;+>hU?k5LkR>pv+a+=3&WH=5op7!30{;n?2 zg!?q~G|5Nd`6icBJR3L5twqQHNO&PfN2aG|x(yjydY}_C$EmEYMowk6fTWS8(VmEo zh!MS8Pd_?N)0^5^h3;)@eqIgOf_c zN(P0Mn#v{0GzN&(-7`JxoSQ=*rlh0}2Zw|_XM`Ou@B_s;I?gF556bN(?CtM6ZwiYD zt7bSlK4u^69GOXI4)yf~;YofFepXhN7f^TSI9Y4^c^ixRmT>?B>1S|KX`Bd`HTR5l z0^XNxIB?|}Nz0*_SAjH^@_V+nN@Y)U%5?|i&a4rxVWqdo`x#s;i%6Q5mKHQ52B&9U z$9wn`d;RrLG%z?Q(M#v+nuuR%W&3A*NuT?7A&9tr$vV{CbR92#X^qyr7h}`cueUw7 zIGXkPztrDjEg;5|MGp+m9^QR?jgML1&0g8e)fW;G-WZ(RdZI^0Jj?!ziq{VGDFz;!;k1TSzHaoDJ#X3@05=^j`8rpq5|xSyT!?l_ z2qLzB46kR1muJ%R4ODJ!?&51A_}T56+lQT^{|-(d?da78TgxqZHZ{-ljJ-C(?UTVS^S}53TnCOQy7?zL}A}}S5DWn zPj%L-SY~EsPmdzqC&dapY_5Aq!3enF*4kRgxVSwXMpv5_x~8GN7V}j$>)xp7XnJEu zYOMU6(6L#gr=Y&}0-3-a^xz|B8AKsI@EgFGVQ1g4~XG?vPWzUu}5 zURqqOYhi92?s3~)ZFH!-u(+6`GLA>RBqAhKb=F~VYyIupH{UV?v8vHQF_TGF4pMYZ zmlGjHMO0GR)IjC(mAJS}zt$&D?a1u)(PtMK6)Ebn1p_HedVgT z++Z^h1c#9Vx2i)sMhgUH{F0Jb!oy+hw)Ysc`ApZ_xk)4O2U1S9Pd6bbKhct*?3 z*{!2lPR97pq?gXqj;jjyT^X@@E+G(`n#PFtQb4#y0vZ!@&){e;ZlUG%6V$x5Y9ko$ ziw%X$eR?sIZMeUt(yZe7I=;6)D-;F>*;93^yL1gtCnt+bXH5a`Ca?-b#>4A6#Tpuz?`ySOXRLDuh?Uc9!RkB}gg`VqRnzjBb%LLCe$tSeo+)o$S_f-#4?&z~+n6c3s-uY#ijHu451! z*yKYMeSsE@XPdH(OUMZpDmA)0ibQT$n-!9Yvsc5GF(10K`bM$CrGrACrIdqFSJ|Q2 zyLnN!&xnljkc}ACsG>ssYCz%rYz2|@)Ee0srBugPT;Zjl@Zss@P!^Rs1jBgLgvcF5 zb1=DzuIuMD07U$z|e4o2Gh@p?;(k6PB^XuLwUCj(@^edY2QN=%=+d57x0qEdcp(*oXewyH@8_4pntk{goy=&DZX} zh*pCzA^C?>hh5K7LrH3238(*XwGRyg-#1sTp~iJQnFsZ7y&nbiNQCU{K(Vu;C#vKu zms*3C4_1nag5j~l+a7Nmz;7aVGX*8gv49VS^ag^vI$d_hb_G;B%v-1Pcwrg(U5uQW zR9P*v-03t2rl;eKq_HMrAdB5ag@*^m#W57hW(8+we?spXh`|m4=10}4GDl)ZB&8q2 zqjl=tnH}ru&o?9JY@Y){5NZcCv=zS}@myS4M)9E zg+Zj1_=8FuMu2D!h{sI>1BR(0_{iueF!TI)H;%|#oiX!J|C7P~N{E=ONRcC&HiJWd zI044>_F1;+g$%zfWYGbG>w+QvQt(upoBp&wMeV8ZR@dGKlX>&w)$uYmm2w4t=QVaV zj$$45?BGPKOG^L1e5*%2OUC>Jqew_GKEL>WJIiCtB`{8(29pSCwbf-3EseS3(>9F*NC^U+jl{DiivV-|({4oY#Es5$3#r3#kSdZpjv)MrG)`6mWP`>*l(CU+W; zQ?IJfyjM!~Y{ga({#;Yai)B*I59)4>)eZgm#p9RoBHpWS0FFw9X3z4e_u%CEY#Wop z6~Sy}Imk;-N5@9;Lf`sRMB7Ng??azS`j$5fLLwS^z^Rj$4X*_f8ofTRs<>W9xu`ys zSrPc9fg7v0QfG->?v!h&wtM#Rg4?2aPzcL?r#9QU*L+qvU)AKLI8r zArKD%P>A}&GZb=PZ&w^|I%o&Sd-BEO0b34OWU?9hekn)dCF+Xg zFx2hqgYNsi=^~8whX+nzVUE7q;?hG^*`}2= z9oSyUe97x$mYg(w$jPdAOWz6cuz-lSp_aET|GXMV7QG#qJ?!c#(jFOb>B^;18#9Km|s4O zj&9sqpAiUhaYzc9{#D+)c~8*sXad1xJabnlLC@v1I*W8QyAHms^^;7Bu_R$+Iq5O&ji}3uLa`8AY;gTyf28=)zwB;?KQTb5lO^# zvgu67DIY(oUQCZ0Awtc}0V^VZg(4X{Lv~@!#v9YoAJqB=1`7evx!;B;^P1(opSGE` zsui8mg>>NH95keo-8xH++4)x|DC1u>!Zso9B2dyjVYd?hc0wf*7gLvMfoMm_5qzpId8 z6b342tB8<1u>a>rD&z}RuruZs_fDecR9LsCIq}YJNPZ5K3i3gYe)LF<&R!1w_0)6Vm?il@PH{1XsCRsW*q5V(pJuDUy!>-2hHmV7 zPnbd?A{&=<9mS0=v;APd^td_?m%&H~KVvlp2vClC<>Z$Ivf$AyCNIm79t4Yb8Ldnstz%|Li&eG6DO=ScEiU z5%q_NMu1r<%c^bx7+d{fgBEtAt1+gDc7dU4!hSeckiPyFuyMfEV7)vfz?K+-*4b#K z7Gvz(;Ch&WXm@lsTB+o@c9J=2CpyA-a_Q^FTKgcV*JwT*5rIlsnME1r?$A5zT&VM2y;#8JKaMsycSxRgvV|Ze69NIu(IR)gn^Pqy{;2(oHxeT*TMsLSwuX~Kc z)l=&ctGCYJ=;&5PZGvc+^HS@5f2nHokqZu|Ggy|_12O^**T^eZi9i>VAS65=>uE*$ zHw6{ZG-hFS@PboU*ruHP^eeoJhf+8sRMbck-q-F`0#MI~nIX)Zqi^nq+E!n6DeKcC zlxd_+bu^~m2SYB+-W0UQ>po~VjbPa*^>weHmTUY-#I2|Wk@+A3){|d6P475E-s*5d z?`&2|Smb`{K#qp7MPu4SI`F(b=hh32f!| z3F2t2wo%^4ii4My2Q-;Z$H?!g9m-W4oGoQpfkidk&Hebg(TY`~hR#t?9v6d5)YZd7@2;w=^;gR0#+SM)jGH|-RZ!2Z2PIoO=LG08_eVBK zL0}kW`kh-b;W;oewmwbaG(f7=I=|~C>i$_KGr09|t)kQ4B`9jUnI9vNgopNVwg|-g z=nh6IivyzA%*=9{ze9XxfW6kZt8*e-9<)_aSLdRGBwZ+;uuh!b$=;s&L+4Pg(W~F{ zLahm%OV*L%;Cd>dr|jdM?%a_YJquHJ33KUBOZh>M=Covtxyp4AX&UJ|^Zn>|AqdqV z5|dMv9WRtq^3zq`JtFyq%I(sz6~cJC2~X!|8$An+uOK?>qva4llzI#u`^rP@oQ+1i zgUN=6R_8}#XZ9zVE7f=q85Z1a3K{LinU2PF_XwgER-45UM4sLP4OTjB@SN?a5B)Kf zUqF2B3+|y2V7j7lIZHjg$=mSvywjP?2zi;}abaj;6%4OuiWTnIvkRfm`XV~Id_kWl zS6eujYhpYPY z0s^hWQIR{*a)_PY8kUscVk>xT+4w*_b#Mva&3&5jMEF&*3}1dz7Z=yc@$w)X^xZ@E zP&NC_F=r^;OY*|QT@>s3W5}qzS53}s1O(maFC4@xyz9~VEQ2B0j;eK5h$+vzu4SBw zI-_L-;Pd|c?;dJt#lh~OPTSy_mC#ymc08`@9$wJ=jxI%TBElU zP-VVe!@K$3o{1bbXi-Mxmr}#*)MWX9SgjV(V5G6wl*R=q{w7>8k${E60*DE}-m$yS z)b7pJLcv~Kp7+hKUw~2KI#k&}K16G^Srd^7j*QcNM=N|l?PRrl`tba4Z6tdRgu(zj zqiLqIC1}*t)WFdAr5Hq;QU($d((bdsJbDGS?bJIhH$>Zq=N9*Ctf?va$pCiL8h|)D z={CO%&#a-9{jUo&%#YZ4lDlI-M~u~AvkodND;tT!4(1qT0Xh$C)pz@FI_}XU;POP; z84T2Xml-0WP|x)wI8Xj6%fZQBeU|?9Yvc)cGZ5E~IgHnp5XahQ6Rw`N3r{7DiMl?V zudTelWHeT!@>MW=cye=Cj6UiX_QBzHM+GKweG@qWNLbFv0~@+Fh%s~Jb~{%ek9cjf zML^The~`(hf{PaIK*PS@v_nTnx7%i0+?SL8c@f0b@pyYU@PnOJvk9ce!)$ARNc-SQ zLnj{Or4K`=hK@rko_a1Cmlr`xi@VO=WtR_(m$!oh4)8PS84TFXkSR%xj~~@%3A@7O zbQa>{10ic8PD=|1V_TIpgc3wdOt?#MuAB4{y|Kk+u>>3^p0-|-Lcx})w*^DkQT!O zb6^lbL9K8}{$8{?FrE1@2D(N@L*woEbPp)r7_>a{u>Jl0t>1ol_hdaqGn(8;Ij5+0 zcz>|Jv|l_4L@|Vf3K0;LeCKn#INp-Ex}wR>zf;0|h+nl=7BiO0R_`ad4lD|%zsKwh zFAe?_^IJcVJ(w{T27NkX$TDBfyFEP7&KN$J$pf(t=VdMP(~9+H6|-Y_F<*n7uYmWD z7RG_KSNxJ-6wbp!b$+rOaUY}{C-70u=g|lT4%A_X#t`x3VE7%_UD-XG!vpoYTm;WO z2(S?hd&rtVOhZLu1m@}hC6&q*&)QlNT;9MB|{N>!6lM z6tdO8wvfvBjO=lX-3OukaI;vZy2mDL5U(l~hTh_I80@jJ(d2pm zS%sv!)+USRsLgZdNX^v3!jG#(D?LN4sp$L3;Gh^&twpc`4^L=G>|lOfds-=#;_M7k zR&1v-(VX&}W)_z~aof8`#40wKNicEop)+nDJbr$DPcM{Cim=^l-@|k!1vRy>M=^Z{ zHE-m+leIO|jXAJ7rPvFz75J8jX<(npr{ikMQ|3twoib54Kw&LXo7XT{;TvomNMUOWE)@IizE$zopE zd=oTv`dl{xXTjk2{xx4=Wiq*jZs_EHqhkVqA*Ae8He%0Mh?SF$8~yumW>^;?aND3S z;=;frI28#LNG$%k3`F?oP;$-c)492fyNC<2?On013{eg(YN8?ipZuxhcb*E^-(*u1GLy`OA`KDXPIPy&HR{47RH z4#Q7yGpNEcDfK@wTwGW^U-m^?(flLNC}70xB`8IOC*hp?tUBA=uRC4VJwbse#@USr z{<$+mi6kVB=uGF%dk$sjy&@6*C}?wF{TE8`xX+3ua%T}+1WQ+UZ`8~EWfjKSt`&6@1h{D zaGX{bIvnw#A=o@5P)$8W`7eKJ%uE9cUn9O(o~r7a?&Ho+zz$^XpwuaH!g7_-PjpKi z&z%)FAUvJ)&J@pSa(dQ?N_Gief|H&iJK32*R9KXVfgvS8hSHhxtb_YEJuwY=> zChS)v0!eT-LAh;IFkgHKF9K5Z#q;iEna#>7Qb);rP1`#8s~>)OI8qK%<$FH!dXZ~v}PCkqJ0nF!^Q|_jl-R4B9mC1&Mj4m&f<@0h;LkPEmzN$_Nh|IBP!=7NQ zFx-8gc87QTa|k&{OzyDFT5C`Y&%FS$l)UI0KWkzSdZq|uZ4Xi>0wEcrb0{fKpMuVp zPVGX0MxC};V)AslP^zn9)q}01wHWaz zG(7w^#rzc_w!16%^|5+Fr;&Fd_c z!o07Hp_7VvQgMmh@-(#l#Aq~9(^3Me8yMuuqeA>iJgqdZ5hSl`BVohl8iO-0J&0?d zRy}0WvmV+C4rp5MK0|UX!v|h=8 zG_aq!u4V)l36&k{;7i>y%Zo!M34|S)xa@eS)uPH|K$=JYSCS6h-II>tvApIZ6(&QZ znVH!;4#mCpoY1rRHP^<5@A>V&c|u>1fF@sUb}&;-q>**B*cO5zNrfJcgU{tkZ(mbe z?Xu3(hee|jF-F#cP@`ow+!DKY-`Uyei%}i_HC|4WI1JCit9B6PFIG?X8+kUnNR;C@ zr`c2vT=PN7zt{qby!1P_V#mejX(VT7sLgk1b;A`Kly9nTm-)tq;M@bXnYL{jSVErD z@Vi}d~-kVdPr=yiZUYq8uPFC4!2{hLHz_%PNdA40)* z?}k722Yt@?ib3NRBk?C?5C$XkW$jZ-WcWi4ervDDh64$1vf-_oD!)zn4qA>-D(&W3 zZ(|PPfa3wy!#{r4#aMut@ClKCA>aAFu_SK>0EFygMWgY;lzX5y9QhHPh1UdYL<{KDC+Y{mZ97aFxTJ`%+;XlFuZ8(q_t)zrT zqp1btcSgldR28xbeT@HWnR;)_+!#vC`Muwn#z5kzL{$}iNI?+$=H`c9jzhEdkA_Eo z3>zqOryz=)e{(Yy^~fmyeKS~qzZ!Tl;a@wH%>ZOuw=#?-T`B!pgt;)En%c)Yt>i#k zLBRm^461*>HRAj96i zN(XK?{g2=NSv2V18U~JLl6YI>uvxs!zxML)m;Cz!e9}OYb!AvA&cBGY|32XF`Ta!1 zfm-tqQ8QCYOONj3kJ)FXMY z^FJ^6AALrB{k@cQ>eD2pBu#d zUP&>hOp*69GtAmOM4#9gg^;=oLCr;koScwPqPz+ilb~^PN!6^1=)R+op&^jr0MXai z-BjWE>#3jr%>$U5n@`NmZTcuGDq@Ka6eR!Oy8W}4oeHwRBZXxRiqbJ&R0No=;=_@V z;p4{@mQ^Alxnlj?M}|p7-wXS{0*?IdS#F$~o%9)Dky4V#;?|vVRWFB#J<{UQ!u{OUeqCL?kACyN znJi$${%NULf|8PlX4uVNHp)7+F+JfDs+4v}yf-06hJvU~}?>~i;9j33S z90n$bJNu#-7~kOJnqEsBYK4s@1tvQYs+qMWp}(#B<0e|Rr75hEM~M39`)mn5M`cmQd3p9m3A*qJGa0)f`w z!v5CXcL+Z#PzqOXhi~9tXZ=%hl^)p+Hufx4gi9scL_~b;w|}9b+F3I>DWQ=k4id^r z57ANUKS!0>%_=5jrP{G3`mwNqdaeY1bkc9RA5V1R=-3>R7`UCW@Ib?+I^k}WIo63B zDVe^vw?BrSz-TRQptQW2&CV?YM>l5t9QXC>@N2mk0rG8kfdzE)2UsO$CCAexWakFu z@O1TEj+s6n|A(B4in)Y1*v;*p&GCo{1tnhB(h&Nz0vGrpXMz{i26~Y_K0M|Z-M})w zzeU~L%mL(!yQe27Sp2((_2c-U>ckL7)LAgY>$f9v0PR-f)W(vYqTyR_(gVQ$dKcqj zZG*u$a%MfoFRzq1b(xr$Kwn$*p+Y2IceenVYkd{jxqs<;X})j?6J~wa|3meTC8qr6 zOFr19pmtK@YexYp?02ZB=z72Q<%o^9^*4OcC*)f?EZQmP#Ye{mnjQ4mT*yG(f`qAG zT1Qf5cm#z{;HD~TF5&p) zLxNLb=~`zBnAkv{?qIT-Bca+noGPd9(PS&WfZQ&>fAa7dGBdvM4S=K1X9XDd>A*54 z4$$}x6dG^+%t%JY%Ifk@N%TW^Z&K4&)oAuRebktrISn76TbJ$~53$+I`*N&nQg+#? z_ki-W(dl$$Z5Gsi5+k}tbKFU~E|+h#tLN^5@x63z92U3yh8?pwSuN-7ehmY|M<9bA zR`2IHU1v@n&!-=)Eh)G0~djl%{vMmS0`&Y#9Q=P z?Evt})+aF2@1^`|_gPz`LqmOQ0Rwvamf)uq$2leHym7n4-6v}vfycU;xJ&rK!4IL) zQ3Gr51|}PmF;bV8?K^B%5&DCEg6_??V3$#k058S_N~%;4k<#KlKe{>ywN|bhX?A=J z^zRm^m@YC=L2qMZtVKfm5aZyT%366V$Wc|9Pr+Cht%nOXH)O127Ov-2+jPT^O4&R-GP z0D5mE3uA*I@3yw=yi34y<%INkY@#(pFn#5VSDT)J(Rpk+*NPdTFE0)&`@gQc0Z$@e z2u0QHFS`VFmqjQy0p+4#M1-5u3bYXeb8k-NoiIZo(AnDnXHG2XOP;zc9xh4Is=ifc z;#qZr?-7U-BTn1K#Rup5|f?yLy2akA@f zpMe@Bk-OdBvw0pdJ<;h5#QL>OQpq5fjNn5}=J1$m)*7bzSzg1*YfrOw%=D{jYv zG*C~j1J87|1j5u43L(qCBAUhB@i35xZ0ysKHTY7!T?mlf z9it&E{ILh})-NsxG&gU{_O4g${gLFBha3p6&juv|?&XHFxYYdI6nJ$ZOYzm=EW9JO zRpsAY0F}!1?x-|=S7%ip%!JFz!XQ7VG-rNM4Y=c_y0?o0bP{rPFTK@0x`t=j(3xLT zqmNqvHc{s)Mn=y1`-U|nnjcE|Hl{ZzxjC;O zk*5~m(HMSTJh~f3IAZ2qKdYp+l@}D;$g1V{qaAV$YXzmDe`(^opsoebpY-$)9Xh@) zEiTTy6LT0rT&H}aUtLl<5tX7kp;!Ef zk>Wk&-%($_GEL43aYB9gwr748LP5>~&q|~ao2CQ(Fm<|V2&up=t=X0wIJix1T3mWj zeNurwI7X+-kf|JQDP4z*lsQ7k3j??+-@-`u{holbj48^`Z@B<=uz2^l)FG;%Vj4J@gWM#g-R$m0IC%(9&*skj3YS( zRZsT{_?$9&Ho37*hh)=7O#h?`8R~8MoMy_BlEINd|M)!IuV1HCaT;nqn{=f{laUtq z5-w5{=i~*@h@}@|N+Ww&OB?Z=1F7Qp5T&YISe1Goq9I$H(g zihoNQqiFd&u`fQiTX0?^@ePtAgwSiT1*RuyhW6LdJwbMMPcC4*q6;+zD z`Zn9vVT>=fALjK4pQ?HSHIt!{k-_6hz{)t@S_TppI;fVG6&n-Py-avml&GdAp?VXG zsIv^7!}##9UurX@WjT$WvH1ubIqDagte+!gmU{<#d^)m-6vf3OA+4MH9Cc#4Rz_oz z;$J51Os#Et+V||v!$Kp&jcnZErQuIlN3T~szK|<}rQ;j{k){B^gon@VXi}xatv2{= z4vRR=p#n&e$7xw5zH<4R@A;NUj?F1v;)(9}{aTWNe}^uBI1G>`A=-qUTbqH<072Zt zOBoRmM2U`a_P~CaBkG`K*_;~b`whwk9N4Fpp_5#Z9_o?gJkeV}R*V&qAv}*6XX%k+ z^#bqRPJjU<*bK|dMpdF^rNjWs#)eg5f=o+{J@+N^VX+}vA^DqU97T?UVftwbWJ!am z%Q!8WviWH_zv5`h&zG=YRKevwsd$R;r)1kyl)`GE0PH1}sBy`Dwbo3~m`(Qy1w1ax zLD-@g^DekUoWffKtyz;GZ<1LL=&hOadR~=5LAt3@Q2WM1w;alYCp`v!A`IK9#nhH5 zbhV1bUZK8Lqgu410PDzr?r-a*-kBa>1%rF|kz0@ms;#X;2!?H5ytPoSN{zRSKHgB@ z<@^f$WJif9p7LWtPN|Czk*alOK8QwjFLh?!Xu#i=iZtUGZ)q7@kG}(bZ)W9N(C%%c zHb1Y6WI96lz!PA*A6vY zNafyC8M^_{et{T5}TI+o-C$oqpIqNtKJKTrfG|n@AnNhOu|mc zO+x}TJiq%!b!xv_+WK3r>D6qRzIW4YiSm8hU`5xV#2xYz#0_t0U~+M-{h)3Ksk9y` zZ7oQN+oKFWXxunOg7VcYC@WAr3o&wVrC&&^$1hF1tu?3?4uxAm9rQJXm7P5T_Scd8 z7bp*a_~qc}tK*KF^0|_YveVEV#mF87EiJm9K%-dZJhS7)X9)4Wv)hgZBeGCn>4g6w>k8Xt@$(nVZrXKod^_7wY`n;AM=utD0{ zOYo~@as^9jN(PKWTayf<25ta-+xoyri8@qENC@KN-R0hhixr~~1tDb^x_1v;NQLHz z^w7u%#EX}g=ybP&hCS$U;seUj0+xl(3%}$30Y*@MQCZ*q&*IeRr{@qx*{Sj1LCn8sFZky#>yh~)Hw8UhyQD|bsGYRKj0{SE}DRcy{7nlFB%R8xNRA92{lC~w{ziNQ3Tu4sA7wqvROs9aJS|d z`ZGUDAe3^EwX^aOZhpC8#2@&bw4n3YuLT^=()5)p&|-AsWW$vHM;_syfjJfHzY4`g zMXbYs_mFpK@jA9oRO(8$7J*rT6u7-(c$hsKN0t$DSx^y99+=Z zwyt1r8LXBxs~UU{ZUJP`+?e5sdtwjn*yf86GO9-hnUz8hn>Fv*s7=Rto zVR$O#&0mBHAoAsf#DWQ%0@FXaJAluGAkk7f<@B+6v*{pXxn+OOt zN(p3A&%tqqGv05DldV15oC}fjJ1_vc1S-J~L~7P__lQO_)#a5__3Ut1}K^WjIOp8qc-4aIYCRr5=~J zy6wO|H%oNN#2utDygd4S&g&ED{3LIOU*ApLSy1XMjP_|_d^)fvo#;yTCH8U@YD zlko1frmziiTw}6%g7xirX&CB&q^ z)$sXRm-kg=)(Xora32TTcr-uLhK!@w9@)G8iNU`0y;yqFhv`&YDc7ek>aE$+RPf*; z+Sl1}dj{CuHni+v>(HEwtmV9Yt5pbVR|D zpM@hUX=yE1SjOtq{$ZgZ1wMl4s~tE4Pz;En*cfXa>C6;AjHiFC;jk#7-CMu0dwgrj zH$%3Fy%zR-6pEUq$`~G|6*k1c#K(@@7U=@KWWkIj?V#^+udX0IWRRXf(`L9CkSo4E zTY|MJD+|9D{FZhiCL3Nja>A0mT$hZXrywKq1c{NTZW|RdZa1!gA2nRc(#I=W*3 zc>x?{x4QqJ+d93U>oBPYw!$UuIPHuPy-Is382`W&OB*+D$a4V}h= ze7*P$x165;DCcFE&27gpc5=PN6J5adI=D6;a&r3q$<1O$l$#s%2|d@pJ(DquB-3bY z(#OH&Yv?4&vcrJ8wl>_WfI~FUBDJE<6q>j%gm{RZZ@}QMx^tfmVv8o=4`w!_TlPLa zd+}z)!Nc2}PMF0PHK*&NG=Ar>%>!@-u{(}C#PZSVWaS4veo#=oAj6V^1uri0F};|< z4n_OIRSK_?-IrkO&suobx~n<|XlbsPx7s%nEq2QJdym6L zY`NDpHl6zri>;~h(X>BH*hxK3>#+`e=_T7iBI;n&DHv)Ly#w3H8E|*5vd0f7zKE`$ zcuA~+xYwY!N><2cZApfqS8t?xF98!VKaF{5*|@y5^KXP!#Eo9;Oo%`X4@E;kIHz2} zJ@H+3Mn46$RQ7Q3{?-CP_Vl=B7P)Z*^ zzb@pA%p3N6LqV|{I8ntfy$i!ldGsbz9k`HLsoLsJTyeg> zE@0v!)t2>iFA;Puf|&Uwe+UJE2+G`dA6AwLT%`0lx9;4usTy-WBFgel09@Nm2lv~` z-0q^_g{lx?Pg)4rA|-9N3|ohkXEHAfNd3V^w@n;(Jn`ud{-ConmDNUB`kQqxFY9JE zouljdSHePR%lxFRv$J3ba!rJH@5u+&V!Dq7v)+k^zn6ME-9MDr98X`mIumv_pV#*~ zyIZT6tkI#BXgB*IngSUVD|`m*L*sfUtj1+uSb8L z8XWt80?*9H_WAP@n?T9Wt7Tqes#Y0zY^CbbU?F) z>c2R==i%6D;pCGi{*7ICct*O~L6~!L7G{EnB?Yq&yV??o4A)eG)EzlV;ZMZb<0Eu} zk)9Ob_gV+PEqMRqJx}W6TgMCbtG)P2pe6r?J)*R{ zc@qNY(`dSfYgf0Bi^I3iZ{}a7`-ZoRoa;S~%TH_|mD|ga|4Ix}P*XP!@UY53kWDue z&D*cjE7>DWdfk#G$)X{R-yF@0Q&%J1`^?Cv>7+&Iq@gAxXH&8hMaxFSDR(GA@FM+m zF|{x^Gy0<)1hL*CrZ=A6jZ&$@)uuGE8)LMv4!uQO^!`M(lOu!M4#M3%)fz_LT>pG= zI}RL`a4=oeiZJ*D9osWBgw)yQnxvWh<+%CBk7B{e;Lv>SFZNv4x@6WoHWJy|-0z5; z)Flmv@>K?Saar^|MNTN(&d}mD-h4JewjsL&t*h*Y&8{f^7%+2qT|t zB#$TPXWJU*woYS+tDXYfsh z(-YNzlK+562T7d=ljM)tVg>~aKHYPz;yW{%jA?j#=8xTmm{iG{qLSw+w489oQ7LW< z#Va0$KC&Dc9xKL=^K=!+a(#7(+|*C)Vz5M}d-}NW_XMwN zW75PMsGT-!FZuGazea{@_$_KIt(YS|5xjYoocK+CC0o==GhWQ9rwG?@uN9ZJ6Uor1 z8`KCYGagIFwh>8;Zua_Sva*C7orA|<{FL?S&rEA5^tvWl!0n&YnZ{6PQXOx!;U66A zc~w~JhhGqp12IiQor93(4_+k@etdRj``LxuMXDx6eCEyxon>wD37<*#;GMbT$SF{w zEz;F>kFa-wn7n$vj>>54QeK8BCEk1mVr^C+W|Y!KYLglZKEHc^&VeLiL33Y1(EbiT z#XoYA2R4C(o`9d?mia-3cKpeieUv~)+%$&AM2Hdg&&YtHH+xkpU$=rlw;YML-9rZ5 zFU`Gr2{lwqg2b_F zS^eze7Vwop4iuy@}swd+b-&8HcULI4fj>>hx9pCh5O_Ai&WD1V4Dzsbmq)|=<& ztzHDh9L&~GtP?LnxQO8Ga=*5(g)5ErwM!6==E0ko@}(JO$xS3d?*%75R7wUU!NMJ{ z+;*aJj0J?w3DJ=LG&j=CJo2#rYBIXZQt6{P{Jp9e(!gf8R}?;p&X?$^i=FH>u6Vg1 zqkJuh**~?A{PmaZFJ^y(N%%l_2+nq6~+bz}Ziui(WK@?aETyjbbso0eM`ISp*>LR?pd0 zCm|?Ko}8Yr0-XpTlxP_sBd~zU%TwR;X1~TRwBE@=fi=tSXHO^Ha4Gik3wzn5_Ciy# z7K)Ej_qCY;Ave|*mP{F*!11T1y_pdM6yM;$&NXpXoI-M1a&lNd*k!|)3%9AnfOVLhdnZl5g3qsE@DmKst}tJ3DQj?9e@Z{HP$YI4BE~E5LX| zAn5dt_@sJoc~+{!W*1KD87TO#xu@qWO23-$wxN~r!my{W`;97M`a#*_3wWR@`-$2_ zh@2e}c;Cll&qDr`BTNQo&#KHXg3MWY*mO4C1bZ}hDQ0S_7!hUo8&U~!b#UnuM;k%4 zvAKEd(I19n1&ICH(aq+EF_3C!B;R7|duZg9xT?pJ5_}YrIUU?%E}Pt-KgUh-PpVuN z-eZ%UkQB?aqaWRc>Zb{i>!;poP7?e0!kp4`rParkSsDDDH*`&1PD4+>F0|3d<{*eI z#8y(@t%3N^Kb(_hJAhT*QJ8E^cdF`WYHEX=e7mB{>J4gGT(&qBR_B-DK4#9rTM$bQ z4iMHYWbnKT^OQr*#_dcHrC6$gNEK1+-+l|X0 zRrpU_Q-Shx{tMas2=z&blxgu=+H#LU5jz#$#H~pIq>aQiqD-inO2x7+qdLMJj!X>D z-K!rU-quCYD$5rsfc(vhxGL4r&WaB^W_F*2qd*HmZ-*F0tF5J5KANw5m_a5 z;KNSH{?A==)M_*fB2Gnp2ef{|7DGu1yhW{a3c))LD=$rx-3Th;uB2Fvb`PVyF8q#$ zp_<8Mi2)EG>5ia0z0kr(X%5wXfB| zE%Bl^(}f%7#eWnYxK!rc7$B(ZcupZT3imVy!PlygPIn6J_p1Q~>eX z3m)<~vG7~e%rIss(5U)~u^L+cetF&{D6GHHv9>u=Yz84|XIz(H+-UAMFP3)RUhdFB zU4ydR!tCO?TU6Ib8Xg)S0Wx<-l`qbY$n^)oo~i6^2ZdAhPVLdydL`iu4~&#^lN;D0h)dXu-1-^C8nixLMIY zH;;i3C|3G7+bd5g%{n7NXvN_d%D8QfCMMgvQ@`cqpzhNWpfNBo=vg)@Dwv`P*j0jO zcguMqAtndkFW9b5Yx}`#vqUX^5zH<@Wt}x?FJ0>pF!ZVav3GC@(bAG2t=W)&bq)1`X>ZRQ zK>(L2O78cXexcJKhhPuAziQ7$?UVmbiRuZjKo2@Bsl>1wGwK%S`yZTBKCeH%IJh;) z9IJnn8bCvjOLDf`Xlj-0#l{UwXP?x>G&kpr3?kIQgeSXhrB+R7u%ALhT`Mw!AksG z<2a_|ayCu)r~Hfb*8|vy2Frz_^p?IQG{$+G1X%T_+mqmd0aGU3CUvL5^wY^f!7&JcTCh9z;ZHoXpu4Q8{~MaggHjNaq#)jWHMue3(1VM|F6cN! zSI56dTCx~FT-?&Z=qjel2GeS{k5PPgM$;qv%WY)@+`#XNg{H2IkDAhxl{|W4@hfLLM$Xq%|FWH}&cM-AM7d{&HZ~hY~XD$x!{_47v2)%^qdd zcH&~mpJCCB=MMSZ0}ho4vh+?C7Ogc-Dae zRa<3@FXu%Nq@=mA3n|12LU!h!Iy(5~cFv#1yK?O$7TR#YXYrv6Oi)^C5V`!dIO{r| zC}ESdvXb&<8anY4d8|zeKgVKVz`5=rNX|_KGZ%^}xBr|=(HIwso5}TM< zR~IEk`13y^2Xgt z&x4+?6dumk303pBB6j!-T{Kn(S}5Po4yt*GQxovl(>k(GL1$lM=(DZ2H9eq2biA-H zN|%0n!f};HMv(YW6Bcs8d+6C)5VywrBRiJXsq96)5cUoCL(-@7Yu50p)%AE%mYx_# z(R$5E6_izl-`D4yv!W;6W38_W{3#7rO_1|w^(#1rafmG=MTi-+u#WvDKR99C(mVNm zX_ICPqWJ#htggRK*=}Wd0qgBV&p=&;MR^mQl?-jw29?qiTY7E=nQaCmMf8^uHbg)h~wU?npwRSD6}TkM7y&qX1gLASj~ zXEEuvX|4Oak2>y@BJ79-p|=u>HbN=Y>vU%~U7aWxQZ9*aT@Hl^BSDWh*tMDaUgXad zJT~hQJJ`?)NMqP8#}9wL+x{X95Qof?TC7~B`qB9b!l2oxUD7{IH@!>JD4Ty9z!}`( z*1|$^?a*P9J)Zg&euPgg;MD>X<665}rP1ZRxTc^^lE>>4s;C%3f=?~_wQlv-F&N`} zP0fj#_$;P!(k{QQ41F7|emD=$Z!NP-LQa}IkqHG(tlW>e-OS&mKDN7CGAi8~>@ka(okt!lbwXEotnbqCQu<%5 z-aWw^o^`-_*c?#-5C?C+ruH|8yM0F&1@Zc=Inr>euRW7;Fy!8s%pNAV*km>x8zWqK z*xY!16UNb4`S>s*L%^%9Vj7^@e4av`xBIpgIgvMTL|_B6Qt+1tyDCuId8Z1^qO7_ zT3LtDo)2~g<9ab4S`#2hbK+x%EzXD6IUVsAe|~SNr6>L@n+f#lwZb^;>BPO+#SL`E zT7AJW0)jstr-&$)>aeqLyx6o2Gq6fCR{+25s94VQBz!e$N!+mCx?c>$)XU|b(V@zI)pumu%UH5$Skze zw@UtiDIOSwGcI^|&F16)U@FJHSL~7AFkl1Nwm9R>4OPhPyXFiqD~SZ)JEJUi2>q^7UOUxHm#ael+N9Y?@)N*8NEeIxrNTb6lonIOWkyjcKie(kL!~Z zU*SWjw|X8txXMnV`QsWx!aBc*!64!Fno@zm)$a0-y`o-o7^zSDM1i0FOyG74uPd#d zVE5Zo`6t5130{|za7_2TO2tI^Bm~jS%5c&11n%FilB0UjD?wP09O#OYBu73dH>IA+ zTjd_?M1QWPHDBV~f32PD`kt<=G*R9Pnw^<2^}pB+3D6|LCtui}U9*ai_N?E{!Rl$h z!S|@&r`TBOaC~6)={`tR!0EBS`0CdPp+A4*M3qSCu&h(4dZPIQ?JmE>e~3hmyV5yOAoG6hWqDq33tQ z#(Q0wOH~e=;wk97uE{6hUE1%apX6D}9&#J;9LdRv3{ben_5Ezuq+IS?dlCT=2SeM? z>3gQp+gPQs!C3`X!$~@_EQOJwDC<76r?;C*6d7w(p~h<{{iBnR+K;+Mwsw(uBPd{; zo3Cnc>uWBEx9UardCF$@o|;h*Q?PlK=FM-YZ+MDt~Fyq&e)(fRvvv}x5o?E%Xt z@B0rUK?C;)@dq2dn(*Jk$DTOeZ`+?HsFruGVtVf#Jh0|ooPBEhLbmux)@L=yh6^RD zsLdj~P#L!xeQ(TWWCYY&@pp6-;wY#hp^=LyV&94l^dclZU+;n_{FRC3YI^b&UV^s{ zGZlg)RrU=f4iE^RQuqD9qyz%~^C)98q>b*kru(pgx7|yox z8o3peFdlGx)_!}$U;p8)-8aF7#yRS@>Zm?ov1hMZX;j1?qB$QC)zj5Rry}`$PSX_F zpFAi}Z|*ds(w37>1-|U-|4ugPoVA)C%49X-?c%Gn!0OzPUagdn9r8F)8&0LDgA4Pf z(vK1)ot({P>p+PS8g(Sh>uhKCpyVWt_G;fxKfdmx&c#@S6>X7xJYDk;&!Rwe&}Ena66jrQYbW=; zRl?m{h|6vzlF0Znl%y2;?0oxnBSX3S?OTx!bF}@js__#WZ%4y%#KKvoLfn?AY29k~ z^3yj^cMxHoI;=$2buC!3qwWA9un&vfL|mbj)V^ue8R~xCR&dORrNbk-(AlD&Zs3%` zPXqGV?ZRvN*2K&XiVTl&QHwCx&)i^ma4_P7PLB8;^Pt)KAQRI>HIXUZRM#uoN~COV zA|;Efz;AvB6_5Cx^B$1CpbR{`S4#`uhV`G{kN*mj{&UR)VE*NU^PcsL^+Ls}n^U|m zHobV6P!T$v*fcg_Nubfizj8}rP)Y&2)%7g3Fb(`nw#~(kE)&q{{WFguL&+Kc@#ZGd zvOKJsl0iV*@J|HQ1FyNibN;vtZcbtdKkB{_c>;@3#8SB81V-eQl10As4@- zMlY`_hzTvn)-56h7rc}px>Zq~>Yo5j8@R&<4Zj0BH_<_#srfk+%k0PX-z@x?6QAUn z{ZIoKCULQevi803w^`~uL+v-oZ?G^_Dh zn%6$s{wOk$J^ge0x14!R4=%{+>ZlgmA3ig)U71k#!t*fNBtUrkj2()>KlS%}TWB{U zd-*;R%O)N)mc`lUdE#U8S}j=?E=(U8hB84MsB!D^Gh^ym4o!TYK3Ej~@8wd6&ua*L zf`Yv>Gi=OqQU3)p4G`E^y)FZtx3s(xF_8HH3;wL>=X@db>iJ0LWM4mGX=fbxc4g~d%eIi&xC+!AazIRR zBD-g=XE1Ft>(Heye|Njq)ab+-csBgVy&mbC&0hik54A9A5UhnJ1N(c1KnQp-{vD&1 zVsimodvS4;;NHA7oW|89bC$;S{ZebHBRRd!

wzu3N+8&6D9RE*{iH4Y#ST<3-=V z02RRYcG%OOEmq~#8HT9x+|<+*T3&udqGx(VDxLR5_1|xp_S*#asv&{#Wn2Yw<*~m7vDPv z$KlLB)&IW?`vw_+=lDH7-oK;6 zTH~S1I(ZJ7F`zr#U+lT*`vDdsV}IoCKd<(mX^@^5X@83Q-f$OP#b2KwpK*!e>_?+@ zEVpcf2&*1r9isSdj)8Mm$^SAZNG2)pK!@%#DNcX^Wxpd8bL%RyiBs>Gv|FslVmXJj z1~{}n{ed}ZW2j6OW?wu_mz$gOoWtn~g~g1yS*d4k4#uu&uZD*=Ih*}lkeL~ppI<=l zZ2s_w^b8LQyX)h}k4Bc3kjTi$uD%{MlsPg$gNumFK{2w?-Dho`2X#7MOZQ)<3qyNWQ|2V?n zZ%y_;9slbt1K_{=BZ1IO>yPB<|05gq|NIFOXc_*0xuiTOfGQ8_9(t+b+vk6qg#Y_r zLbcrfZi4FA?vdWLU&I9dHe%z_F+WY*S< zE?-yb42crM6+We2U0%jdy>?+ zDgyRqWex{0S!?R7tad<<=EhS2`478ozrlzNhR}`n7YS&$5p^Z1EdL)3MjrG^uA+v(8@V9_?HG`mLBTo| zuiN+e3?ZrEdVDOTKpCmM=bTJYTlIf4`j%WoY*&Axx17vOcWWrVZoQ0SoovvZ^TJFU z^Q2R`R62$d24%NWF{9SZ2Mt>%`N z_;~?wJM&##76zAc@JpT>r7-LNeCIu#3VAi}Cf|zHvy+p3tf5*iRv5fD+EJ^y|AwXi z-JGBG5b#65D-8a4q3*UceDSHdacM1TKa0$I2j*aK_sn5EncT6yi5tV|X4#&ZPfs~teG6nbB>$(`fFNlNjiGdl zj$D@{eS>Umm_R#*(9WEy;QG3h=dlm+ZX#Q=&ha_c(|Zl8PcVQ%8d{^ZENl1l{>Cnn zTJC7k1?%AU)Ymy9f0J=U1CON!%w01L&=x5aH#D#X0n%BDW3!a!@1I)kU0Pa~*Lx|G zd=@&U`BVT2BE}$S(ki!_+9o`K3Y?nS8L5Ybf>Cm&cD(;B|PtDSviXA~Qw z9QGs(l!6ebAONkfQtIj=-eoOG;h}gwN=hOe9L|Qewk%tBokRC_jg_Ptf5(GWIjAj~ zUpyV&vn|F(V(d>tEZ8FZ!vn?SjI?-7^Lx8F7oN0JyXJSNM=thh5q3?lkHY^n+m>!b zaC36dm|ST(z}+5{Sa zh(8PWM--L3bjmUHK&6LE;gKIP!U&7cMG$~WH28d+8{&T$*_~*>c!ll&by5F#QUua1 z_3I>!#s0RpF;7XUW$PQFLq$PGJvA}2J@J^^7?cOkK8gb_2=&{?kyd;@!Q~`Dyz}Zl zziK3qkYB7}VbN}$^p^#qEs(5+ycO<=4fCMmkN>tBx>F!5Op6LF`g_;Q2Jp@lW=2QG zx}QG~0R3Wb)=wFvAOAV+k+dK5ILP_2EG@Obmo7;{V4`GXxh2{0ag8MOcaRp=s%oxv z9cR%r>;2Ms_xkZr0L7-0U zGc$O;^chI~!XLA!7mgPs0zKKJd6r3cRt7WQ{=S0;Y$4#ofE6A6$BeIe=`2_WfO&%2 z+XK7;<$rB^4(*5zJ{=0|^d%>|RLCDUO0uFS#GA;c#mAt zKDa~L@X~`&Ru~gA!|6FsKKpU=UvO{%Lj_V-FyueXC!k#!@VMJI;M~jM0GCZ%ANcTx z`=;gZs~yz)9`F}}W@5kL{_}u?AC?N_^Q&FAPH86+h{1nD{%z)*;lFGeDoB8f+8Fh( zUAE;3aHzYVY#o}d0G|vAi@_l5R!7S5EIH zX(?5~+f^zZtLaV{E{wx%<#?8m zrdC?7+WA8BY78*b5>Os)`XaYsL)*oA`!#2pR8Ci{2JTcAI>4Q1Jg>QCM+=~1f=k5q_?z0jjQ4Wh6q`e zPg5&T8Jg9l>J;*-TNCC@5CQb?@BolL2bGpagc}Uv_~zv1!aF-7FI9cbpH9fkWQ1yL zZC$d(D5m$w6>ue#iOc;UFJFcLqG1b&iQz8Os1BuxA?lf&JS$@5zdc@EB~Hu8kjp+_ za7q^b=@U7d{_FS9PG)KVKxSP7dNu2< z*6p7aYNc5=k9&uA6qJ++>B$pgcz}+xgS)%TEKLmPRIhgNRc+pl$v&4O{Gye5Ju3Q% zi7~7W%xW(jb2`|xW2oy`$aI%_Nt!y`x&Y%~6%t{oB|EwU0Wb$!BU%ul<)yvnr-Y9} z&yuJPO$MD-1dW4yMNek4G(V#9!(rBaAV#$_U%bbRITwDW?|B7!B(YF z{!k3i_Uhf$`3CSdrY(B#Ev^8`*=O5N^V77x<8~??oFzipr`!3>_h6}j5pZUz1bx4K6G&mwgQb;$ zzdri&F{@}Wd3>CSNvDgjSVE~F*1%S+S|0}u4Q*s>LTaE;mVbV?V+;_(;mgv?iduuu z&7R5;rX8Z2FI63ObBcYwyV~!sG2SIiXSXr44Vkah&Ql$}t!ZHD@^gd$fqMHFn@sQk z0nc#rk3d845l8MWHr^FRqyY}twB(&}3*-q=LUb7?7_{8{hzFv8t$QP?(CL?IVwUJn# z4!K0>X5H@JM^3NLuuQrQCLhjPj(<6YQTyhY|XlHLX->EPX5XOx| z7&EgaBfPskyGix!ecR_=Yu4Aw->jvVhBYeK#-B?XCm#YKU?n9 zs0v%nBIXki_@SIjT4FGD9{Lm+8{4}@%_up%>AKwEiFJLnRA~qfen}z*IQ|ixTwR=! zyfAKZh|;4*tyh}#oY2Q6N5yvK*YWwlu03=au;& z(n?2;$D3B?w@zIR^P-~P=ZZ2`w!7TaH=lm^q~DXYK#$m%dc|;INjW;((E0W05^Qq0+CU$5`KR_G^lvu@ z;d)+Z0CfTKn!pw0IEr@*CnqnK*p(RTa{xcK2Z~G_yvcpMF9lPodR<-pZg0$FK=-!{ zN_dvNah<@TnB#ntC-vqDL?a=Krk7uTGJ(>J&|6y_>=V&vW2#rp4$PaQ`yVpRXqOQ0 zi16ZI73SXqgl`_e=9lj}Hgquma1`{-VT9mhmBioIr>(C%P{#7>`N6);@pZJKrjAyb zil2ttdp!kw#EOu+Ds_U!DDB?pZDI&>jLwEJy1~6uTHb&Q8u3ukg7&8=??XqHjzB?lyihumX{EWZw6+ z;R@Iug=r8togFF*)o!I#D?3SQin*_d4C)o(EZKtZ$=NZk_F1L7eLJN*wwRXk3Wj&q z%DfhoN)C0fGI{MKJnp5QugH}9#>xW`K8a4fqDDkS9IP~_BJ7Q&RElRWH?kQI#2>@# zPUyISg3v|97FbBY)qWzVE5_^a_c=|z+vWh@14NuC4`NOZ>4H$$l@=e+vx1DvBBre^ zK$>WZ}kiIda0lq!s`@p01g+Tn1vfS}+F;?}gy1mF8xMr{eqAX_zMkT=5WiTvtDkPL zG{H#Wk9u?fVF*2)VD%lS{~8RJ9e=Q8Uv98tpt!G`>?kUE+|wb;bFa4Z*gG6XzF(6k zQFuH9QW-U0XPmAN99=&|_%s;-2IR)#3n~P^rc`SNk*v5IfkCehj*deajYJ9A$sx2k zX%v2}l|C)i!d`a@Zzn6wv_ir{lH;8Y|uDZg<|_zOHb$xzC~%Eex0HTFs|AbNVyd#${=yBnb|+(s@U0@*$J zK=J~AJqQ@TBs`$3Alh~B1Q&`t_{sZ7jkM+ImzI;(mkEo|yz^iX2{zIg0|P;;ss z9GMp>0hzu_>))EK84<+>TK7JfX|y{bf)1Bj(`qkZnsUOK_{^kpxhwZVX}#`yXKP(v z!VRK7jt(>ohP}hid4J<&_Q8a!#K{!|c3Wc=(Q#JGF(N(RgZDZXtlnR1hTyHu)QB{6bWF7`SNlVHyBF6@D`6Uxnp#`cXoPqR^QP5=KKs=FkQWU zR2r8X(GijvzV*!XVib!{M!rAX+3^PoO~{3X0T}?7#8MUPVe9#lP@c++^%?jbC+=~Q zWld>YfGoYYUo4HwcYwR#=OD><^yv`KwUGqJurfw;Fi@x$2IyG><$QKeMjRX*?0%c_ zY83|oXL`$H{Z1~5Oes~X??p+mhEWq!Lpk&Dz)yj@4z7;kfSdx*utNcj2sD6*1AP~4 zdG_w64dt9EBYIkC-LYz22)uvuRh=MjDiGqAIj{?|ML}O)#R_Y z50T4u;c)p$2InlqjdVJ1R*#NTVP^l?D0?9dNeUR47b(2EKXo7 zDcYyF@S>m%I-aOk0)BY+qr}x2tzT0 zPk&v8Zm&|W86ylj2;A5GM*icq=~VF3SaZ>U<=JW@UKl!AFL*QPV$EGN->Cm_0Z?z+ z>VCGO8D}0Jq!;zRe_x8VQL3DSAbmd=b+DLEQc+O>&|ISdyu`$DO6i(K1brvGoZXor zWnan>EKCp)_@YA;QZ_|dMKo%f{?wY#f>+LwFLtn02Tt2;SI_{J^p9{%t7~gJFXn@h z+>Tm&DJe8iIZ@?N4KtM)@#0Eh#+%>2{8dSn!E5U> zOTh=9Ch~M*4LD*HjGV}EA_5p+7&I6_Vt5>|J~}Jq^;P^Tea91g(>*>vsfuOC;X-U) z1=rS|l^nN(ETUzkq!e_L%>dD0>-gbUhez6jh3dHQQYLJf?l;G#@pzE`FrY1>U_(Z@ z=bJ4^wvN*|UF?otYV!GW-E||2ou40k^yixEJD(@C5!b%g<9!YIFASaqX61Vvg260Sx9xrGJf^p!76uVu-P#|2slo)) z=B5E%1Lqi`&(~4mompDFeJ0*~FRF7@ddMcj(edu%PfuB=^_( z4n%M3`S_=UO#9BbSLnw)om8dYaRon2*i44d4`w=%mm95Pmg@Z^yuCY6WWl6kUYBjI znGTmb^g_3bJIB|NYhJe|4|QKS_|!^2OO--fC^PA{s6A3ng`l}!dLNC_J2*Lg_o>ot z#03ON`!nrdWz1`nhKhfBJplb`7CSpzg`Tfp^=6^Bm-Sphi8Au$EKZk~yVzT*_2BI$ z)wJb89xHV^pO?;t3SI9Sig(xxI)A|N8{JWemWzHgaLIH@i3FTYD%!4d8AC`jyBgW@Ze^tsk`ww`wnKSP1bt{Nu~PQl&8AT=!N7or|IXXCI3`z)us!mlG3cR}Hi& z9L;H+EOwINFtqenyM3Iytt1!id%oE6HQB;6)kYn>LdrRFD%eN2RC8g{)y;Z`>nnGp z+h1J9_fyMb7I2Xy#6NR*TdOf%`)9{-=I?Kw96+F>^FGXolHtbw{E3aBU#@-;nptjy zojJMYyx$K}t(5QWhZU)xq2?Y7(Ln9#D%e|p|&pc9E1QV8rayUQwW)_zA7s)&A|)_hfG})zDczB8!ihFl5My~ zsnD%Q)*mTri!w?2X!r6&rCbx)fnHZ`p5WobmcL z4-CZ|Uw*ywBNgAuMe;d<~qmc%F$J41P z7dLND=@%I8L5YL`Z7RR3mkq(LkM^Fj>0GE8D37B|SMtp@jiIMb@rqqOM$>MeY}c@S z>DB1V!qcZkxX`x#k#URGQ%<<(a*E5JnJT~MA9HtZqC`9nH)$HL7mmT&JV;gnn+h+{7=p zsZ+f>&6yPU-{4>G4a3^l*a{s78U=E_pExc_V5o=_YJURF>H;}+JWCdY!fUh|gBrQ* zS)oT&D#S{YWdL^1RbZVGQ*Rr9&Oz_EXS zck%}bpd#;K0e9(Zb!0HvvpFBl#WlSXJ-{`TK%74cAu$~t(;T=tCrX6kA?%}-%H@s; z5Q?O=cVz1HeJomuO}_=zvugmPDn^PX#5jnebjB-=VC|N=|mD@ z<=xH*NB(|`*)U=l|6-Ls+dvG7av5mCGUcUJw^OJ1NLB2SjA%!@#p%nJFOb;u8kA?r zZLeII-viX!=8(kBaN*7fi89~4vx6^HsbqN96;++-mCcDt3-GAz`)20?UmcgVNx&`U zes`IK*<_p9>2O7;LIM?arc$@Et8a)J2fb_E6AI{x<+c^&S~+%Esp2O927jd2ZjppN z=HlG~xQF|N(QcBvoAbqDw*E|Z41|!hQILK{>VIC}W$-HqqJTv?44LGALuAn8NWo(o za9!J?@~_tGHsIqijt^Z4iqID%hgBlUl>Z$9Ku<0XOm#;d9mdl+x|upBFx&NJhH_!< zHm`7cn5~!K+)ie36!Jx#52PqAXi9untpUtMEz)g}0nls1i@9Zo-9($G$#>Zq*3>|; z;#w*vyp)L2={iUlk8oNPVr6v=U(V$&p`VS0xsn$n`hYGb^!G}o#QQ~8X$MN#ujKyg zC14{I0b5fw&D4*4{3u5OjGHM$MJ&}y3}FHrrg0K@o5+>>RspqBH0LhWNovWF$66WT z(%4g(>y_G55)CYjOKGvmQD7;FP^s}m$Ks-YO#Tr8UiwM z4`z&9a|y}aG_)OJZbVA?`w-66767G123~eO9gNGTGV06vVz_r(Zq(=KEBN6V4SFO7 z*>?;tZMt5GV5WSF&PES0g0R{oQ1r$ki6Se2H1}fgY~eylt=WZ*IE^_^Pve`DG@;2$ z3&`8U<*!S9H2`(V;CGbG0AbD21iKtf%Ld+8MZ~4D*|JbZ6VMuvBauv-Oln777zX#u z4Im0U^N|38-$ml0ieq|xGTYqcu4hDqNf44`$w8Kh=E683E+;39%~s}kbv_grS5;Tj z7p?uu<-(_?MU|+Ypr|<2EKE03si{dg@q`AA2$g-P{JYHlGxzST_LKdyQ7AIvw$UEx zXEx0C7T2%k>GP;vxS~dK-EVpyL{X2>p6Kw7Tkl{#FrRY~r*TQ%wmT2%1ZE+nz#;L_ z-wSe_=Mu9*0{4L=ppKmdf2K03{WYZ8^9;hRsabLr6Ei_1<7~B-4FFK0yG{T|OS|iP z8uun+mB!|@=C%*aBY}J0ny|3DmK!XB-vg^5W5ay$ARv{#CmZ`7tZd0?*d_e=XE_qi zt6haoV?Q%YsjX`UBDWGF1mFFPy46|(Ttma$B@`hMQAqTOW}ba-i(0)4Ql5bUi~iVe zf1y~Y5dU{}%&;}V!qshS5sS4 z?eU_5cj4-2ANL*m)$aPVJII4-cS_aRqKBotIQNAvB3~U(yD4nIc+U;umjzzx*7oDHxw9aOc z5Fk*FGsJ_5Z7gc1G~h%M$$sm2$m)ZXr+zgVhyjwzeW4q|eeU8or2WzZNb=xZ%N9EX z1nwx`=PTn+R^N1?nOO>Ee$mJp8xB~f$$k5J=;ZY>en*PSy1R9qR=c@iats^9wbcrn z83~6F;OD876GzzMmz1%4gOYP#bFGg2>>W>YUUKTx<8t%Tt9JdwiIOgveNzk(5og zvPMkxvN5fL(%y-z1wTQFJP?0w0n%}|^C&vM&3T_v*84NqtoFMM;5hdycCK!Ms_e=% zTNPF=u(s|QSzhudf43-0T^}#jgVoa^-y&^&6Ng~Kx3_yC0w06Mw6weu4X#?x+H@-D zJ@KQcM{raDYVjDr1I>3VYS>@Nb#68hAlTAgpn7{*VOwZ$rb2}#?2}^Rr=q0CHw9uV znrTE`8BT^9Ado5H`SYCZLSX$7$Hs6)nRL-W^n| z)712Qgr_#A;*;Vb0qyPZMKV7=G2Zo*w22;|7Sd%`fA&HHqE%d6%1!4wUi)@AT(u-= z&vrte5T1^Tfa}tCs7J{@c*8IoazDop`rRZ_%sM8;YWizuNEE#-vY8sw0;-kjOr%dk z=)x4?feON7ce{Q0KTZ~&?m$yV5vy>jQ}3Cak(Q&Lno@&WY>b7KQNk9`3PGoa7a zp%)xQN9?_=@1E^*bJKV+gQ@g8FG#-uDMrTh=JDpo#dO45ybCH)D>Xi16iwP_)0N7PHQ#daOAX!yI!QmBS% zqZVfBTT2Vd;j>Owrn|VO5Lj`m$K_xH)dq;lO=!E*5XkG=+B-crIuhv<6*wXN3sO7X zP$^7>^yq7o+0}Ei6rKf#XAF}wcyyuV-YG;B+Sbi9otr8SW#t>=Wna+o+CpWMV4I*YeKh=!TgIB=y_zjwKk$cUB<&P?LQ_*0`$l!r-tpr{$> zjR=nPx^SrJ9u6fZH#Qo5%|2AXk@?m9K6HQQfr!z3`AG%DsZ}Mowlf+kGYp9nzyfP? z6*AJjM3@yl$IQmkOi}6s*tqjRT0%(?Bnc(1brUz=#*5VDV1Cq5F@8tXR)S6*tmJ9U5oI!1^25! zOC(JTED>+eAPFAX#MU~_zq)Enb;vln!{=ExpU-@1sW5&0BqzGi>cqUF*Lb=T^70zO z;yi7Zfy^B+zI+GXhzsbqA1Aq+C1}{(>=#EbJV1PNpZFr3#`UG}qRMV$Go}_tZ~A_t zs8G?D7J$9n)BMz$sfx)O2 zo+aC71wITXj3-pWo`tvoMB?ABr?-RMy@TiXiPi9(ZU~lhw!)nq+8ZazLZT^X#Qd~K zLtH!y8;t_Vxy})VW;4IhT5qBC{>)|K^5vu;liGp&t^0){UcFmBJ{v$Mm#H!Rd3v^( zg)Uk+0b1)?^WN%@g+k1azheeOLd*rm28_h{@aS7?0mmddG_-A8z(OE%b=^ zauUv# zs>FwUUv$Ljo?TRL$i5qN&oWEXGMv$KdKHO%6b6gEJ?=RQV0rr~g zY473WMj#MdhF};BQ?zRD_cPuV#vPtg4i($oQxyaUz5Cqpm2fkI;lg!ji0Q0dtnr@~ zDCer^O$m^0z2-*>gQE~iOHbf@=WYi{rkjcY64xM7E>;*J+gsXNkk3bcB23eVe06ry zwpV%WrUiTxam8mJ&mDW{U@HCF?c~cWr8z|v2(Q73)y-$`BbjgpmtYve$&B}|oSBUU z2w*R!`~8Hs-lNJk>WJxTW~sYTrcM!26VYl&HzT9ErUGuM_)QA~MU0NOSJSYdRK)=| z6f!u(Y9~fT>DRl?Y;>V4|C{4Q$BPZPKVQq(_;r=eHy>oZoi?3q766jc(Y#3DW=)Q2 z$^U2i;B`yR@pq@MExM_>U`reT9E&fIQXQ$K$j7)nU5?orl-r0K&M3E}8NhGpIGQh| zgS?NiU4Krfa7!Z0jf5 z@9n-&!tlJYH;&|{dpEC}S!s2_SpSQ$GoPMbw3rS`(cR}Dq*RU*VJzY*nv?X6vgH{5 zANJ!s2J=39tkcu1zl*<<5EJv3X+5lB8Mrf&iJ^+@O%T~_^uP>5`o7fTP@Lug{Xo!h zZ9AXhwrAL0{cBa#i(!~`e?VF&0E@U5uoGn69$uT7K_=j|fyn3P680Ztkki-nx$c}a z28X);IUX&jm#a0Aso;i&VCKP} zoOFBRcA}Oi+{i!?D$E#unN?j!>}_24IpG2PBI#`3R}>&CMrBE12MedJgbR>G`$}vh zX}@G-_6Wh`gC-hG2$4+boz8r2G}`d^T{S^5;?jdur7@fRJ}4sh3?-o#oE##31_V;Q z$cgci_KQ4qoMKzQD&py6;qH$D(tElGAO{&K!M*Rr&h4Jk_t)!a zT{6Ra;6|Y?24X4WNlx_)!_GLe`)pe$^|U;7k*!peVOOEP7@qe(Zl%stb1co@VsSo{ zoqVi;9WI3;FkDYld#<`6f1PUOKU8IH8rnPM3FwHT%df8tfd>!vV4gcodYH*CifC>A zQH9QZ&3=2cs`RL;ZsR7qio#u;hvbqwH2A_}a>5@Yyb%VoXNHJ5b6(Y3>iq(Cir{7i z(k%y|v$t8s^NngV8U{#X#n!`A{_9hoE^gK#g(biz*10>E*P_~lg1@R{t*tR4Zz}r( zgLD=FdB5^7N`C1tAUL2nJc^V6bbGPT@Bq%LJs$WOBA1JR7@Z=HHY2?k0~3eIfLuhL z$7H^2Jse&5skijYMJbP?0D#2(s-{K`xEqQYv$Z||xik}+{j#FdUh%$PNDIzPO8yO- z@3TyxDNn&Dsox*xm7i1f`O^bLigm9hyOn11g?LN#=8SLBYmr{u4xeyi_^gINoU(D7 z!ma@Si+^-hS2gCxRA!grNO7DL2%m9RYSuG^ca7%>N`tz!Ak;=W8PJ|z&vep}h+p}E z63X0M@-*6g)kMgECG>ea9EGXpSm^ioJ)3tqXyHqF$NUn7mm(!I1_9G6-V7u}3VB{-;q)q5^!$CQN;rREPlsjE8s}&Ro z;Qo^zs5UL4>RDc!Q;<-EPk$QOeB*_JS@N4X>=uMY^u}v@e*&)?AnNELW}DiC&`B z`lO`gX1Hr*)wos)n2bFm$O+s~XAly_{YVH{1R_8B=~EnSVoBQ|QVVg{i7u+c*%nHO$w1($N_bX&85a^G6sL3)cMi@YWH+Wc?x2w zOpi8hN#bU%Gdhr*QlS+_n=Acq|6R^gLss#d)aCCh0(@d>|D>G|*C}*@>5%ySL3tI0OD1 zIFDkg$;HD3&h2QoyFKQX&fvOD-@1Bg6S!Er+bYvV$0VXVI|B&M;~@fUR(W!jM|U0G zj5|Le*Wvd093n<0;D6fxsBYI}M}tP5m`{fg;5k|&n(jf;Aqo)Q~{q&%x?1x@kv#GXRdJhF`2(SH|j$+mQ z45azoCXsjU#37I|hHu|{aRof8p7jU?&`G~g)z+(rj78F?$%;~W*h6wH-+w*F3$x8- z3!JdsHDW`0J{U~vcfRSaqKCXU*1|S@?(Q-K>h#2BY2Wv|Pd4Gbf^e|AT+cpJvyhPm z-vqR0WTe?jnc(bM;zWbd&L=*Xs{!0s&c6T zEZOcryDu@qtB`=`t*Nkla?)V$hyW0ut)Y5@fpGT&4v;qpd9(YCFl;L)BZK4P^j_Y` zv=1q*+8c*Smu_$?2a+VV{-45Vc}Ulku1u^hl59-B5ypmnrFA4<=)mEyXe%8U%NP+- zzK_~pk1pZC !!)~@W5^mfY5TUrprW zaUakU;IrWv>h44YP)N%OM0P}049dRi$Nk1SUTG$9I#tBYSGw8khfmwkD3Y~yU)#BJ zqu;t1iXq)v{O#!W+H8tAMlmLl_3%Q^_qI|SPoPz2CqOSc_v}lYoyUzMQn3Ft9(lGQ zk!!b*1D%KtUvqm+VC<`UgTcYFfVpC_FZxC{}`66IQRU>63+92`tZP03}6B zT=N@x5O%_L>x!!GBz?6vu4&Jg{PoJtS4Ps4{21AI_I5R{eHO!AG}iO!3Wlc~Jg(FM zJbc1?v)P)o?K^^_$us7{!~jPq*lQsMU0rlv?tqMlFRU$Qy}=CAXaiA1H0rCL9$BJ? z+-&Jqbovp%ur}_BDLu6_jn?ZFQ=}wqce<(RX&d6dSw0o(s^%%GZ!g`Uz2jtuL)DyaQBA4fVjjx=k(@sFK!Dl{)ca={fARlZKV?(fYFD)?`q6!3Vi$VTP5QNt2FyZtK23K*;&Lfa`{tlV`D-J$$>Il>k_CZ z2S4xI8rhPRG1ZY=6uJ@VOw$5SdB<(|N20ILe9CXD9CcG~)l>&w{b824M+YMS@%n5V&8)-*_K>7uv7GPU{z zaa$qaUP=+7sVIU-1-01n@+(L6k<1ZDt0U5YxOF))SNO4XNk@X=(rkQ(Zl2i;>{&u= zoUVmpN3$3wkC50W>Ngsymgc4)D$~hB+AjFoX3-B_WeU28bXqw1T82<@aZXgH{ZB6 z*n;${`u65tXyAC!M6O&VqlKabp0{?c6^)xGjv^Ie8uQh48q)r3dv7PCU2~Iw=LW0G z33uSHB)Z}p6$=PSaj)0S_t$63blo7W5t|`+bN6!k3#lA&Jw_Z7RtHT{3UP*`+C8RR ziQX1!^)~TvNV}3EhL|i#y<NxDu^3;!YZqs9^+ zDHMn1RwhnX@^{G!7@Ooceu|pQ!&3^YcIxdmrRiFKD%GK!O+QmWG_BkuMr1spk(5Ma z)$TENFAcyFEj^S>QyY9ds?;p~^~;)(eeB1lU-_~NB?w)2BwXQJMU%NIHzO7`(#@Dm z`OC)Jor$q=B+#yB0)0y;%ilc1u`a$8xiBd5ZMBrF$9NIJPzypJ%KJeUBK$N3bv({! zZ@W|}calx4p(vpIQlsWH+LS6OTC8@+#exH0(urC`OfI`ZVOMpvqJ)=dY?k0@Bx-?( zpTu9n5{jnoPS%*B){^5QrBW)s<#*li5Q#>m1p>v}IU`pJnTn5JEI^Z~7tOQ@q!job zPG^y#C`YAWYWh#e2}QC>Q13AiyC~WcJnC7y^^c3~)9z(PK8mLW<%t+bmXJ3L*%ob4 z$?A`%M*-!YL5MPjP*mH>`F3^3%TB!?{|l&XR>!+zAI9A%@{dilnoacQX@j1?(2s#8Td4M}#V(-}s_jKrL8 zuz?a`!5%kCtaVs1)FNA3SPO!<3{V*9<6UlCc_IB62e?TVeQz*TMH25lkq`K z=d3-$VD6)I@bJZ3D{acb9@P$CJTV00li|f?=Zrnw3D7i@a2d{h>0`+YS+?atf>)ui zu(0y-);e@7M!W;2*kR%zL5y;^;y=jcQ5 zTFHV`WASX0zQA#NIHlT9K*iWD;VSO3I*cKW$WN+Og`_hoKoydu+EST|oK-hh#k33O zNH$;VBd4uz6(PW;Iv+cKQ4|l=hM0J|@ zLA*g5epwDsN}J=1t{6IA`QVQmskToVnj?5P<6Fp{nsmz8B9!Ba>6@y=fqHvEo^GW= z5_RR9QNyLOzx1>y_nhpj6mof>>@aVy^G&BxTlaX5t?4gBQJB~fNg0w8VZk*r2%7?G zE{I|_uU`iQ7CR{ zR?$?0@m{53vFyuEVbtMIK--|N0KpbzV^1x@-*6pVNisZc=#8> zf`1jRUi>+~q=m2CcWeT{e%Q-YU^#k!)l^w8rDtY2bJ9M8pNXo6Z$Fuzjn({$&2sm8s-3Z+wb z(jgkdy7<403s#O`IP^3dNNyA#TlLCM}#yEy!9qTFft{O`wk17jQcV>3Xp!$RJZ;UJthzv3^C6CErde zBBX$p0=7$GCR^qi@;zO$Qtni~m>l!n-nx9P$7~bAsY;nzfEMG#8)9LW%1w(OG>! zx^z~M;vtG^e(v(eml5o*qN2rml5^SLavuLun_`r6&kuV7@~tj1>@`|FsOm=FEW$SX zzj+$XR2=`g&%e+`>DqC|=;^%wNJ8{`Mm zpvPDZ+J#vj;f$W!;gv^eJZ^f6@rCFu-KBFjwpPx{R71@D6m1l`) z>$7MQ0Tb(_{M+4{V(!`YurAGfJcU#-6-fvH9`%aIWmL=aB z-4GP-H(iLPXPe}yH3vs2NyMGWy|4n`a=*^E_NFae%Df~5nH`g;=d7sCA?ls8jwgkr z_{6C>*4$q!feGvEtfcBT;^Kl?Gp}(ReKR%uxg#^%7jD%k564(Eo8|mWmqbLZLzr+^ zIL{@b)}x`@f&3(wb=`?Hx}}2cHmgg&59$tG>!I5(>ngo$wp(RhwQT~)Z#C(2L0UG1 zL*yBX`K@QX?aFxQc#G|N-PvwO<2q)mOL8x$iRm}f{0~{pb{njeaxWUQRh7zD{W2I2 z&qJWRr+USwpn~!zOQ+-=43Z56jkf3XF2$vnHU{vMRrXS5DaxK zmlZ!#e9Z6Y{J~CjdgXMrOH`)TtkK>n5@B+DVAz^yP|g;?}KG9dBV#ZNo#acu569Rm^Ly84*%ApV|FJf*o(CDtTwt^;hKU z>(hdDQa%T*X4g-URzv&sIf@n6PGyg?dUm?e?JcI3FK+l;QoG%~Mb47WGOf-plcpJ> zl;3R*aeQu-66RhVyI4@?Gg?~aH?YvqB0VD`UuK)xZa@+?n!x4PIMY&gz1Q?;VoS&F zTl|k$F{tMekIk#-_uqz-6B!TC{iF!CjmTWfU5^*aW&IpnwTaIhoSnVRzxuC4rHI+X zqMgRXPg0pnn3KFpfo$~6zgzR(0r@G~B)S|EXIx{309A<$#CCel>H7iPQzhuEIynoymL9_4o#n>%N6+pd$_4c zxzy%$(~@2#FH6~Y+Lu_qzg+Y~0;0)kZ)BE0t-}NJ*L||^K|KF2r{U&^6rg0enDP&@ zH+BW3Qki@OmSi$D;+x--g;PUqE!ktoqW0=X0ry?VhLeSm@ExgqivmOo((xNjmtPXX zNH`;vl1|T#$8|g`of?oLOCLDVwkZQ5IVzRga~ZxjCvL?K^B612lt3{0 z@_HO2^R(@T^uSyd0qPV93cg$ySksA$?XAXI?SeYqrJOqGw`3y`*1| z@~TV?C>j(PBJa~_GAh9LX4vuE?(x04Z68V*6kfH84U^e{wtL>ja~2kSHnjMynTq8% z+JAk9lv0W$Spub7?WLZW36@A+(PF#Sezs=*jj zIo$ZI+wkzSHgAIpg?4Dp)(^xBr~;U~ zHL+ZO7-c;&=f-*41;|X5B8yL>)MuKFXL{#3uW#vSq77t1$%$=EE;lWREj+F^m1|Tx zh~!29%Ilz5xwJ6di@{~HbK$mJqa76qhv5aMsIf5xaiw58G|=+$hooqZBu$_}fA}v} z3=C#TRiJIU-@zZ#5`^DdOqa`+eWAI<@~=A&{xgI;aBtn?nvLfk^U(;&%JQ9id3jZO z8;TiR_L4GQ)W(DcR3a(gr7z9eTsOW9M|UNyvnZyEVB=Za=1Pa$pSBpg<@cTpq_4iD4|)CJ z;LJvke6I&qTCWs8tBp-#>ezK9nQwTl;$g#hY$olWNZ+0xknRn;vzvTQf_Z$%`w}od zR8x>_cS?LV#Jlm>Ib^@VGHA(4@Fd);!HG$Ew+}$p}P1(Q@VPRlG|jP#7Jw>F^9#ZQGS5cc`p~ z%l;E41S(^H4H}7$WHCFt;e78I2R*IK^X{!9iC{XMmt~!$M=qY%JiTYeiPViSWDsP; zytuXt)^#r%pYBNXo&!r_CB(LvZe4CIzKAcvVQ^8^`~KYCb6p?rzQCk<6QMdwQ5dLX ztXbU|Rn1qTN?TyvpxWGN;_}`l?07M0!2i77WG~#bJy8JZftQGlL6}FW=7~W*q=Sal9{-T3BhlBd{>KD_s|k|7^9|Ae`jpe#1s{b0&bt zO$gMot8^xC+N}5sq`Z`888E6gBre%jJ7Sa1h(0j1c#OlAskiF9Fs4YDz+L;o1!bXu z5(tnTY7b%ruuFfqKYaeI%>BMupC(%*ZB!_W-fUGeE4HMt<0}4%PlDHIB80^EStO}4 z{=CC-@7C;3p@09agF!y6+vPNVLU;iqUorNBMR`yH!IDZDURk|Vhn6pI8QibYzp0uHhb+jCc~0OmyI3@cF8Ya&J!6O zKDu2mm?zR{vQ}t`KRXZQtG*EmF5Zmxs;eDfZXUMy8}svi{;GCr1Wu$)qtM zyxaDSX<7=5#l`?{OGL41E0318_Kdg|&4WU|1_e7lSBZ!XbeUQ`0_v@cJ$tgDE>nHy zEfL=@(PaRuI@4aEKF)dC^R*+<_2hHe5`|E6;&QCQ=FQQZUuJm}t*~PGFD69n(2}C0 z-=tKDNGTO1@uUvj)H`b7?{5^nW2eS1i;E&}`8{825G7Yv9rDf4nVjtzd{cOI6oKm} z?P#bqLJ5U(WuT-&4dwOLH zbqep!G!pusaY_!_-+r^~J2Uy}eCAvE-K1~5gXbHkeuzfMUl=WD}0PNo`(vF?(Lo;X8+ZZn!2-Ha`pSr$)c~3aQW_3;G0l8 zp|4_(i0Bc3zLQ)viY1v=wB&Cr)iP7hQS4{^^(h+qvPKqfl`Na+AVyBXHj!E2CuvE&hQ4>bwYDgZ+1*3XAJKHU|Sp;Dp5gWuDm3Vi3{JRnmjB>(imbiUnXz zlv+MF`y^V@G{5?=)2Dz(*1CnXmq$py$4Hw{2{lCilrDy?Y?Ga%>9hnefx7s|Wc7Yj zJuQz1|I`A=zG9rAxrqfeycx%R(0Yxt1V?(X%4I~82$V>Ahkm!x#6BoZG>%(Zzu0?w zV0syiyc@Ai+uu+1py z!c?I$qV9~^rddl&{`|o7Bpgkku5%KQSRd;^is3Z)SRx_MY1><+4>b$Q?89!3BR%rI zxlcjA1Jc;6+l|&1I7+v27W0`iPusj=7B+CuE1o`tBYpK6>=zb|^SqQEY(p~*p=ro% z@mtd~hJ4M=qkcl|I&rR&72l|cRtFlc;t=v28x)^{+wg?y3BLl>9LdE_@j!EZp(FmX6i}s-bhok zpD)w#&YbI&&q;Xp@Kmil^eY#a-NVOQEsq?3mqpop)(3^kx*~jZMhYpFXGhFc%ctUa z>Y8IdU$m6dkQ~)^j9(3|W6esGi^#nLe;}HkK7CmQQzr>8C$&BO!!fzMdvnMo;1!ZHc!|wXe`LZz39}Z{A{((i zurB;hMBowWr!k0;tnXIKJy2$k7@W4dbBT^{^Hr35NliUZ;h@b-wnqb3PWaz0FrR)vl8e%Cuh(*9t!g#$!M!lDWuWWT(eQ4z&2G1YuV$Sj}z*;A6XLk4t@F>@AuU$(4P@i?7r10lX4~P$M{0-l4^l&F8Om=wW!sQU~^)8ll>OQ<<4k6rE#LdfY!9Cpy(-+PJ@Pa>ZlCd z!#eA)#pTj>JPlV$#v0Qe5@uN98dhY~)M~SPsE7!FA3v+Sh@k^r5JW#O^!KM3@_;nQ z^OHK;2{BSjM4j>okig|g#EMMW27o$`-*w8HdS03aq4`EE|LphY))uHxu z`S1{kkFL3@{BOtM0&0 z|NQ<6X|yieb#KHJEfnJ z{hcT>A@2gMM7qHK`0}rnaI1V^WyMD$77)&TZq_%nPAcv#7{vd26vaJ9!|THL2kP9i zF}rJgmN*$`fOlXy0nxOk_th*FmS5*|7#7Ufe5`M5oHbz5ytPRE&-VXoW8(aDnC4Fu zhIXvr=;%hj&U^e3fR~NtsH&ED7IVjEr|DJM%35aWZRkf)`1=E3U^3%>KZi#l7KjoQ zl0)di6d=*{!9a~VyyrA?@p+4nsqZEcs(&$8ZQ2;Pq5tPjc#&zh91E0fS#-!S1mgqJO<+4?`{ zYh(&hKIeBHYWCib>gL<-OPBo62ONa%+EL(Kw;oH}1^`X@T*wuR z#aJ^J&>uupV8jYJ4F)?gck6FK6FI7wiF$TUg=0s^8Q9|rkf6QFL@Z2DJUml_* zyu7H4sle)=1-fCo)0^8}yZwR-=@1 zKOVnemqQ$&Q)V5BM*2I0`hg6FeC!iGD02iLIP&+;h}l7)GZoWJpp_RF*$dg=ffnn} z7;QHC3^6RIeNqlSFhcoZv@0Tg2hzGH&q+e+8-9{dim6s!9^=J@9Y|gf9a;b59gw4*U|`Ng9|_= zTP=CvC3d+?{rrID@~~ku*0VMF6N?Pz-->1cN!)_rA+NyW7j2{C*mD5QFh0dSYQ!8F z^_LJkq7P6?&8eM!V~v|eC{4T?WGUrI_{bS6@gE`F9HPMMG=C5FALIVVqd5bh^U6h< z`Tz5H{D*k{^~j6_0Sh*%CRl*~zx+tt68Moh!^q9Q5BR?m)&DURR*s)KJTr(hVzo>3 ze~s{0oadie3Thw$TGdjaBIZB!*#CGBp!2`@K{Tl!!*cllUw$;L@u3&eE>jkbj!sHV zP3@;MNmBLOih%EP2JwVSEM(vH%bO_p+aryfT zEBuuA;o{{sdO@v*`)`x*TZI4V3Gz9>`T##P9=8mEwh=#yKy1Uf z`-iz9@W1WA(B)s#AmR5RP8z`p$q(>O9yEZP*6Gp89wR@gF zf~@wQi%G@VjL4>P5j}l#qZTcFeG7z2`J$_lur9Wqr}};C-eAOMhKT2#b-N8X0xhNc zZmYztybP%hJ?^&#ch`k-$lF5J+ocOE_)R3{>|eK~|8X(;_i>KLU~UERk?zxXJm_(u zZu_9D%kGCLx)XkTf^zYRg3!fhF+8H8#%6UyH3eZQi6sJs7?nab=0Gt#yQ z!hgBFi)|{xyUD=#u&+BZyr4I zU}?vsjq|7Nm`iH|%81doUip-=E|)Gu`?RIWax$mV5Sx)1SW{ zf$i$IM!J;~|C%j^OWMq>=8B5b2OEMd@y&7A4)?i|$5p0r%zXZ|}3e?`+Sn`|CdU53J{X zW{f%J7-No{lUBxYb)BSX`GI0)mQHLv9WXt7sv8V`$D@yEE^vbAl(8KaFT?Fki?`)Z z(H(Qp(Sl`cUgX4fj20#!@u;vFudt(Kmn`7H85AKR$<>=CDV&YkTro|QX_0x>p%P!) zk*(K`uWjDHO>X}6?2|NkH(%XzZIN8T>a8i0-J`~p*OORX`&p|4u~p@^V@R~AL|t8P z{ERm3iBwypoL&{oB7d%t;dr|{{E}qJ%aru1Okt0M8AjdE zJrkV5ua5{d%d6_1&wR*8#`c1vK02ufHGS!N%aX>8rzbjR`YMz(|5X9`ljwn;ou6Uy zb?Z1!ckPTH4)++w?Vm1{WVekKjF&@eDS%LX)aiExdQyKfbZPyT_XK*iHZnk|w_2eY z%Koeuh~IumvK#XthJH94=Lp4Tf!O~{;p1x@J?gdvOyzlzVs+J8%gzIj-QTyXGfgeZYOQiQ= zeS*@aiwo?ILsd9T`WexNB{wD~^q zs$_&H^5O6Gmn!071401qGP%dP&!wKn2CM-^$sPFH1!E2u-MiC4%+05SvXa_*+rUQuJh8{bYOgS_`3ecEDs-1^L8XdQ-S2;En_y)Z%g zy1^)G5AC!_{0RkW6oYp{+43k@Gu>Wq6hSSZu4U3-ySG`t-OJ!eVerBt|Mm?6N!I zUGU7^gxMHmhs*wd4En#Rq2DCI18@%ZFOUquN8^4S8+ic&UKJv~3-8*WCZAaQOJP0a zFmt}$!9XYD#@|>lR3s%4hJ}vLwtkt}nI&!+CxI(kZm-oNI2k>jsuyqqnahF129VJ5 zlsmd`?Ty?u*t={dUP@tkx!>RiFZuv>wyji=$=$HVNwg`M_o=z5z&uFJIQoRT(_a$d zv`szlr>&+4e3;IiDB-qs1aLlc}12o z1M9p^6(i;th;84fQI}y_xAKUBrmboUH!n-yc&XLd*`^D*AllAXOYDrPFa+}@) zwk|=IZcFg*c#}g8ybtG~kb?=+J!R4dl!FRoQ{D?;lleb{cxNC&YT_EQ+$K;P&Y&tL!A)zC~<&OJud(Wr%VNZGc|hz6PbC0bpg zkE$GfVca(nB;#*SrADRY%Kr1xZ~4U@%+VJ$8rq98g9y_^UXE{Gw)!`>7U^!Kp%;_fJY5i8ZUWR?`=+V#!7k`SV|nt+qoiPgZu@uT1XYUpb?oy5H!a1&%?Y}^Yz=?g zueItY+SoD9omEJ{_T{2xkN>!z9qo8FNX^07S@wLy43zmvg?0H4_tZb=_Q_9;TmfHP z$xtVe+)g}lB#tYl>&N~j)A^i9SiWKFptLb*+o$b0ATN3(?dG03m=Bn#vKTD;#hU%zl_w~a255;88NPuyc-VTFeGhvTwV%zK?)p@^Ki zKb-~klX3Bbx9IPzJEKCt#?knG^}`u3ATrsC^%;NHl6vxGgfx&r)}>>!Tq7<=s&^t0XI|95&XUj4+ zG{0GKC4ida;vZX;a*ZVZ7V#9lc7GGFfBy+a2c}G0QSOyfiUUDi!BW6&^c~z~ddj;( zxAOlC1>k+HlK6oH=~gzBELb(@$>?XyXl$RfcnQ-i_6+3Ky8(~IpHw`9P@D2wd8QHI z47gDj8jw%~-#V8?)_hLkD%VM&!zL$<%7&=oGbT_CDPyKgqT40?Zit?cN0VB{+6B3u z>SK1^myw9`{6p((mLG;NX#Ud$e_x2QdD=NB_$m z2)IMd0kRrKcd?8A9dZD>eC!S2Ape2q1o!7M{$aov5`ZkZr84Hf{eJxc&O}$kFjwEn zup)PsDxfkHf2z)>&#Lg`c{)QnRWrSHWKuPF1n<2jw7>|@h`zQjw@zuTj9rFPj zN%9P!q>lUsn*Sd~zavPJ4_a+6{>%mVe-B+|mLNM0QezHcm>is+=zCB2{|HN&Gap0E zjEvvGC|q~9KY6XRaZUHy#v2cyg@AqL80oE~eYDQZzi2feoi>IB2nIft&*`Xgz~IrP zK=*_Ld}U4%6?u6IzGe6dc>&iFf;93b((DJe@kT!$ zCwo6ia`lv)kB<r~-mBl9CSpa^?;^muR;UqzM)qhv)Kf$hMnlPGRl-B0U=&J+-j(qGxIU8Hva8nwGO5Mls4 zz>I>e-*!S8xc<#70g6Pjm!O4*C5_j^lZiR4+&&iF_JA%?HAi8Cj=+GeLd_)~3eL7* zNMGiaBg!uCG7@T<~a* zE_jflVCzWOzYhj#FBCIb(BVp^GsX1&%T!)ZU?JA~^tExYg0H~|{;NL^x*^we*5oum z8W`^do}OGlI<-;XH66V`dGud0k(&Ndl*)Mt8yJ%KZ;en4+i6gTBPZjk0$-m9<2|Yx zRb?~ksAg_38bj=}i~e{2-b_IyK*B1|uMOY!gG53P-CfgQbzT572g0}$&ZYnXyrC$7 z)MDV^0l?Qmh_11J!M@G_2zfy(x7KYIxMT7kYqPefW;ie!u&4m)%q+M-!$QKJSiehP zVsmUj{BU!oM zzt@@fxXyQ8P!B&r*#86;K#_|pKG2o?UnoN2C=dU4SDDAIYK^xqE&c&T@i6XFvuZYs z2=D#<8Ml(i!C+DuFkKgkiHWwcM5i@pgQ4;<;X6s4z9dn*z zHN%uw)&{;rtm&S>f&BQ$5hT6yu*hVsx9;ld|M~40D`tx;sIhGJi{@P+1H>l9=IGJ? zYE1Lc4VaugZGTP&69-hNlHr7uThfxJzi(>`p${sq%9~Y31wvYkTSR9^2zq}L12MQT zRhVFxFZcBh_acX4W1tIVhF68SeFTGO)}Xn(>5AK)m+qPuAMAY_6V3&Dr>$rY*Ukg1 z9m>=Rx=sa}k-ycbIG9h1*AozwEZJ{uBiD&69W%bc^&pSKa>ZNBry=E6Irw=fjA^-C zh$*uF-EF58NEkQN7Q{P?df7HRi!yccZ&C$bG{p*oBK0>@u7Q zF|H>#U3UzA^FHh%Bjd_!h%>?d3=z0TzyuPjDV(9j4^-Zt_mM_W@neeJ@teAj z2ktywi+)>j3%NwhGP>SQ>>+3*@PUtFyGF%pS%%+(EiJF82#PGhu%YN%@uTg|eo2z_ zbiT?dgne^y-(N1CKIfaB5U*&4W?CF*;rNQ&H@T6bXAj=z@N|2!f$j8d1z0?TxIq`t zlrSDe#t zFLs>Epo{0U{na2SrthsYP3CK>5Cc)Gjx|G-FG!}-P=fk3HJFmr$&kErIuUF=EgOj! zCy17Y!bGmnN}O1_y=<2%E(b(x*Gu#%TYJpyC%U5 z0u5U)Px@SrrN=*&bBlDXP|Q1CNm92Phno=WeR)%b>Y(BYY1qN`rUMR9tAL&!hT_?B z3Oes5wVL+`yk7+?=mZ4d6}0Rmn&&1}E4+8i>fXsq#2UcV8{nPYSs8D@cf0f7gJ_+F zFnCBsjn8dw;rN$Dcg_qW&m?x#X8Q;LfZ^#-rPsQ56R4ZM1Dc`Wr*JO zq*Wzyc)84P14_Ha4rgRy@`mkSKT)I0Ijm@aZetx95gGFLyqXUc)R=5~H_%(Dy!{QZ^w77LY?f~i6We<-tSyE=)FX}pD1Jk*B1bh9t% z$iGHXE4jn2uAajo@{hKI`0L#g8SSr&<5<2!%lXb*SmTF9^~(c;GLc4`FGrj&8?WUd zA8Dbay~1^gKG~sJgimoF32V`o1!{$!Na>D@HXmqt<}0-T{e^8s&jsskxW?&7dlP}h zm+jYG2DwVbrjs6YhiPdE!O><&;3gt|rzWtm!I8-8*|&#w=s7MIf1d1*_Uw_{ zZ0nG@vTZXQ*~55zUqK$9J#~MIix$McE9vMx=$3px?gLyDIo!CLPJ(I@SjLA@!tUm8Ku1c~m_B>> zL1O!aQx8x>9~!;EmdU4-WN5d=K4v!b#KkBrWRS#f+^1zVCUP{rU{+VX$e$ss~$(vVihyGFM~EQv{z zYCFST8m@Nx)Vd4Dg1ogR>p0F9h03EbKRjfLb8ZapZQpD}Zy)%AsG7vF5SB9hpO^GK zxw?{6Os+;N@zwuWiW$mjyrB4E!X1mM#Q-CgsCG4viV$KMFDGy>53*~#HT4z|M}H$m z8i`4;U$IxGmh6{HEtW2V<3e$1D%)RyY&8idwPXnw>SfL8IN+JEEslY=ToRe^s*0Bm z6fM?>NK2UcvgHY#8rMTODSMO$>f>b;JzHi0`7wLid~O(DnRq4OLWQrKF7bGLbI4K? z-Ur{0c}D2EqtyIp`Y>HYT5+GY>?omudW2z*MI|iZcgZqk7~yaKtB_%nG{9CI8u-Sz z>tyL;6oWb33v$D#(W1j_$7#2bFO_60*q=1!?*pb9alI9`fEfMw;To71P*WHQVqzE5 z>W;d4$G1jHT{I?&HA!4uIqUM!rD^S!QNX({dSAwOMjCvWfr}SR#-0J3g4J?LBps#i z|MiWyWNXxC2m9&EE6;m^>RSiYAFoG^2eA~eUsbRQO|S;0F^hp^!as1jE?G@XvUFuX zuQHx?L=S1zL|n1Zf`pc7ts2i4pddjM?7qI_7soG0g0dfVOn&@I%yA0$%9VF@Vk%ew zJAtaK<{jcZlHSR6k2qx9j|;K3ECP<(R3Y0tXk^f-g0UR_$E6KoUQz$aRNk4Y-2|!k zyfzV@zafuF&vvxhAPvY5xEI4E)m6JSAM3E>0WsdMH84s_T-w^uYyaAs4^yNlPz|n; z)_qSVxqRZ|A(h`pbFsvk>v@6VADWc3^jM)AwHMoGZ=TLwP((%jD*7rLCfRehdh*Te zvH*xy;275p8=dTGeLu~%ZncC#A>RllzQ!g?D(U7eBP5=RIB}~K{=}Z`Pl95$dEFI3 zJcIu?ZsEb^=m$X$E4~wp+aaX-7|VlNC`D_EIDMhM&U#lA2FxpnrZc=y9y{_xVVAbu z3Z-(kQ5;CKgP9dt@mN!^Ts-1eOE$D1{WoDMA*IhdUcesn>LOkBQ z+g(Z{FWr+M`Z~f#F73nGBZ1UlW@;_T&OdCfgp0^<_%6UW>zz0Ge9<}?zjC}9+!KYK zse{CbwOXvs-g}jnwA1?}e)+l1xV`2@K?OXq+HK6uSzzHZvnFEx$`h+@F1q_$Z%IsC zTscrZf3LS`vblu)s(2Auth7QV4S{^|^owGFi4`ti4jV4L8#Izvh6+ZFkYT=*+n{I% zfnEV}KeWu@qk?SU<%LX26bT+`I4i#|rRcj!^mkhcWY8+)X%fkdW{&<5cFld?UegrG zS!u{BOSh1JX3go^rsIB<@I1vNShctws}H{)>GpwR%aYXlUkWCKAYf#~Vy5C2gh?eD zW)3{FXxyAyURT#qA`GKlVMPnPo%K3fud^to*EI#l-%yVi{lh~oI9X0(Bs-a#henIj z%gi2rIyF$`h9^|1hk#tr6ZgK(eq|v{bjC#|)VM0~OJB)5;;Sw??|K`AIZr)UH6qTu zwOj3Rpe7f_{kaTT5YjR@%&87C?#U2RTL9{)lBxGSa;l> z?Ii+CWfHm=ovoyZU8=f2%OC)6Q4A-nIk7*S3ZQ5OIRc7SH#40oY_#cQz~1qNZJ7Fs zbykvuPN?0Neoo&7kEXgEW**jU*cVG-C?IFn^24*KnN&;Ay^w3PCx$S2h|$=$C5ClS z(BgcMqtC;OL4f!dc@bB;pVvTIeG#ACIa0v+y#WH@0o?sRS3cMW9uIBVQ=9AZ!kv$L z&fv3!L;0snO`sRS%bn1ZHI6*UyZ}@kbWf=qy$4nIn)sGZv6;QT-s_%sLxFD3PoUh< z+SYkEX%roPm8)*JAe#i3V@Q5kA9(K%w*}XgUJcwm0VP$IIo25dB2AxfBn;=zlyNVW zCl<`bYkGwMj}gV5`JvU$J$t%*>DYx+5|8ks(=C?Kd>FGkxp7cNhUll;U+uy!r!bc) zMyJDR#&1f9#B8;m=B9_U;oc{ynB10{)_XsYL`>B>uwD!kB5qEc_A%nVs?}=K~mmk)qA3pu`FiTqK z44m?*cv>OHu_m7_(4O5G8o5RfN%Q&6VKLt*aDO0C+_Zw(n#-!nq5|)Fe~$Ft%^S!9 z`SmQyTMX4t%u!~KZ%}QN6+1qUJ#f)~*$^HQt5m)cTDKBKy-&f9X*#{xk>2saQRx19 zgvPfam70ZQ0hNsB&B$7$mFh5*_}7STL$=LJ!yx;E!24E^#{Eo0NCB~|tvskS8ogua z?OFMWJWo1>%_KR6bTc6i&M3pABlgX-qaUUJk-tXO;kGtcEquQyOWF^CXP~m9kaDy} zPTOGdAKvGP=|lEiH~ppC<29HIW6fifRc9dvzjZ2h{PeKb;M zNAm)SymOs#{J8$!9lBJ+qvRw@e`q&Q$i#wBSUJIiy=}Iio(4_#j<>!*sn&awcT!vxId#rJ+q|T2OrmBLi z1hB3H;PU0ewZ&e%QJQ5r^xk~Xf&*25t8S16A;Ix|UWuAOTgURp7_Y5zn|r<>0d3l2 zV*#uCBU)!xdo(mtYRy4ye^W$5^!phs4>R=!OE71WXtB|YiJYpdjc$y3`?YYGocZ=& z3(AUmuAnZVDDeCwxrt=-W4Jlp^cmN9@LK1xpV5jAMr!jY)bO+7LIJgZ|RxBjF14${x&&!>OGcFGo5l;k;I~wLUuPwitg}NA(o2i_b`1wge0hZ$*jd6a9hdGy0G@(Iy&27}C5jd=qX5mj`nfhY9u*6N7z@mS@!NE3B9$ z0RLT-#nEwEl10=c{GO^g*b8mm`0)A}vET(s*ZwUXnA#S8fEyGF)28LR8ts8rab^NK zC1gVkx>}2^;DFwscMF#=gR#pHueMXwW*QtYH}_lMmJ1288@vcFox4UK;-gg?vw7KU zt_iaI8u4|HD)S-nNGmXP4g)Q0gn$K{1YW%IgksfyZiMe68b&yX2c-jr!PD!o4wjBi zi+RM*Nge0(8|Isd5!3no9c^bi@(qR0A1>P7>HF?R!Qh#HRa=tS*XP1&wHN;c`dAoLGVL|i_B^dGmQJFMK|Yd(QLi37X0^9-PMI1ZiYE`>YGbDjNy;A#OZ1+;b<3QNI#T4Ej^fx#CU+uIoumm`$>X~(G*eBfAOU7m0r_w5pMf~PWY^~a<*zb z|7eA}!TQt!IIiZ_==fdabYWu$7Z?1NYf0CXaKrIUO4Wd;^B5V2&cE^lguPr-6s&%2+Bz#TY64N^=^^_xxg6aQk`~2a$RtjgAsC3A z#YfDSjpdzb`*TFaFVM7$FJE^8@e2`_>B*N+CeV=@6em$7CE|K3^Q&Y=szaS;gr4=q znsj3?prW^u2WoxBb*MsYr(Ev(AS*NB<-~)?=i0rSLS@{YgPX6ni1Z`ddZzh|p|2UR zmG0G4_LBt>^}Z_PxGbu3AZGjw*tk70>uG-~M#^N%U|PJ3nAl#pP`MLqCs zS2f{rjjoa)K&5oUz5RePE8b#t+cVJx!@x({iIR&-{u zTCNYWvHbj<=#?QicNXPP@ry%lk-}Buj;o9%FY2Jgn2{p?G2yS&vN+#vke*|see%y{ zp!hCd74TL4JIYt;F?bw&7=oBoRVfUVn4ojBs>Y)l6e9=*HiramRx|X8ps>XzzmvIZ zR)*-_s#JmeYX-duA~I`^r}|IL9+uOQRlvgePXdN2f_@69Z^d#6=#Yg8+!J|Wg~so$ zOMPbw&|h*xJt~}JSlN5;f|R-ulr(#J#`XmDb*|dRlO6GuXii5yVh?896fiVuB<=eD~KcvYks9LVMx;~hnjc44g5f*74}+!n%2uKSD3v8zzE z#tMha*OkpHT6hsoWMif*BCRzz*^Ilkc8C9Iue-Leddr1|bN*V7O26irj5@YxrnR)7 zp)eb?DLE|dtK~uknMysC@mTs`J->G>f2zCV^$caAZ&ld%l-O0H#QtY^{XnKO=PJa6 z(;B*+eaaT?^2D_;HWBq4ni4WXlcUs0s5=9txVTDj{MyI%(4T{(8g=r<&PWOSzpA3* zBn$}Z4Po4^_TOFX&q{TE9^j&URcx3>%`S|~p0x>Hf=h2n|Ja;{MNl}I9h5~j_0-Yz z=xATml|%&fM3#~LA~-!yfAD9*aV0J5E^_0&h@x2>MHh48&x0$@cGTB57R}}9L+Oc} z%TyvttCQpNGlHtwmU2vq%mGyxo$0~@hF(%(@|E=2-gM-6QT{5gncxYiPe(4vBiV;& zUl$n>RHQ9GAk$9$jK%#9S0UsQlF#Mh-c-*@f4RR|KAM%wtFS78isN-rej7pSqAMO4 zIxBHLt9o(olb|5?&K)0PHTDw$BV^P6Gvh(XukIREPNvs|k~r)#CMtGjw>bHlWhB0r zF?7o(gbeRiSTeb&I&vtsCwQ)YQVA-Dn+z70&1gXw4gA`}jt;Bg7EH(*qj&H$jSFXz z?I?Cv-T2YW44N%p*`vr(>j42%!^+n&m~sB_PpM&0WF=s6d$?g6gg~vimIY6>zb|8* zD`Qpl+B7_ON$l4B)bN(1?rtq($a8JkzSO>bHbXIuD`R^sgJh-wM=n&8>)q*Az1v+J z77IW2@UAgmyaC;w4bRPCVUq882CPFBO$swgZ?Ymkf!*8S<{a*!i)X8=ah#%Dp5=e$ z0?Z4n9&W}^o~CKwg(-76Rp*FS$Qra+av$@Dm=SVWwW8Rqc1z2pWvUy zAi-DSsiq6KpitRw-Hwp4Qo0f8#o@+PR2ECQP9N^r zK3$O)d4|NlQ2HQ$>XE3Z9po~8=

bVK?*^bz0T60TE3a&iFDWB$PZI(vW!j{la= z=~HF9HvydUvOlT2I$_uC};e!XZ>?(VVJHvH1H&e zAge<+5K~pQ zD_$%Qrd6v=C>c-Jj3!iUwN0gbTt_L2nT1bm;$QR>BXN(b3d(G~;hry117+GWQ82)u zh`|3b9+hPG!WtvhE0CS+C)!gJd_-ZDPxz zle|}!fN>wv*(`{|_uncwRDVl%oQ2n;Eb#>-a)cg^MBu+gfiw9E7S~<-k-{l87o83M zMcn_wbHFWaHVArOzj>n$G`wL`M*w;g{@EJ`0pgKY_DTa~-7R3hnEiTD0=R_W&(%Ee z!XQ8%YA9Rh41oWmQCd}WF*1+T!~hzm%|HSE3j2Idm8Wh+dj$Fj(JJfDp14z|*01&NfMC+so?K-nGg ze$hRk`^yw8|lZJ6$+F=GTa;-z%xToODr#k-^Ho<;skQOB11*(dfIbCCWi!;OX!5Ujl zP^NXGG(kMr&w!eaH?p5o?&|u-;*{i`!V(D+D)>yD z_EHoS9j>w>?~Thgz^wognu)rw{hbJzk0oFo z6z~+Eam)20n&8FBDam!<_U--;W0re!_bjy$x)I5wlOL4Vwlq>HP2GIu`~!L&6zKe~ zmxX^(1i;u*kN^b8^#_HLf06iKYy4}MA4xc%=}Gqg(A7UT_}5oAI)FP$ffq&p!vB8` zxlRD^fyei}S1SKr(SHnC&kQtj>-zoyD2@DGGwL#AfN7XTzkAC6TMRxPLw}zW{088x zR%SK|mfwye0qgM+5D5l5j6l8S|LXh~?>>G#lm|rJ8^;}^-@yaS+`|kD(6_uwLFVtr zdFr4AG&=gEfTZw$VEx;45(YSc;M4My|CR8!um9&~KqDX>eYNz3wEqj(r=R>`kDJCc z3iJNUo-BL@8a1wtwfz^cW3=D_M*ExzT&DQ@J%N-0jg|?LFcbd|tbfD)|HnxQ5&$H! zRgqNnMr?fBY*iD7negVfD&bLu1ZRUL#M`WA1pAdqne}%YA<6! zeS-jG-6*sqGLkNSObQ?^un$pr&@^L#^eS!~=eLyO3+J|HWQ}cjxbbqb@?9O1IP@~Y zHnz4bXGQ;#S^v2xEH&yuOZnw$;lVrX;(3aDF#q8$p?x=-cZv9;_{ly;-k`QNi9?HWZfjJAG%YTh5 zD0*}PKK47#%*{b|(|?uNIB9|Gl<9;-;@snT*(jIXbzCh|BRgNpyzhcYw80t(%xD|) zMD199blMEJ-U0%pclyx^lH)p2zM)NR^j{R0oYyxQ6+&acbkf6{c`lwp|`|J!x z-l*`{lNm4fwVh4>*F!fJ3Fh)jW%jT`_$My3P8e|}L+=^y=j2Kp9jZHeyWogqyo&9$ zNHkDKagyZPQ4Gb|_nl^s&QsLa!s?xadE!Zmiz}+CI!0#+_$}z~2klW)m84B_I>Ndr z{Mh+z>?QlQhhLC4H#xXfw2I$(gmcD``UQknn2UJdISkrTychrJLdnXV2kW4r&a?G3 z&f(&?ZT=Ug6JT-KtTSHhi@k``Q!9L3BL6(;mTP{YLW?E7WfpyEXF4k7$_Z)aW($Fd z-%3_3TJOQAlLBoD=AZTnLW8_s09wF5p&jPm@6Ls{Nc~0D5y3yVYSlE5&iRI|A;Utn3DfgEiRsyT8zSLyd4ZjPB9Jqc@$XrK3kKna{ zmiXm59M1i2R>=MB%|T;-qxf0_-&wwh2^X!`WY_Gb*!kFo4?3|x@>`LP77w43Ugu9W zrh(g{w{zkGxcV)~pGjSFRE95Jowzl+_>)zI*JZh<@bbJp43T?v*@X4$p6KPz!|S-* zVU-o{S6l)Dt6KRC-;1WdzC5d~wo}I_D{hT-=;qG-nfdl68*u>g+Evjb(&UgI(Us)x znl&;{c{9?2`HXt4>CTCC#O_C|+g53g#p^oZ+LuTor&Qs z;LA3S-SU~=@Njt7$ya3d2i={4cPy&!r8^FkjIS!-I7a;XAo{75m`1e8kU8ev6@sbQ z-1B)X^O1(Q%T~rW!=L}+w!duxmOeEW0z^8B-7kRfgI`D2ID%&DS9>ut zJG+3bokvF>k2upswKDj;4h8JTqL9Rvk*_xMxo5FIrDm0!;-})~fra&|CCYlFGqs4^%tJLe&L{nn1mOkQ#14P#_=taH@bIiqobJW@p3;2y@VUd+)VOFWcj`YdG6YE2hS0I*t^CZ>7nP=y zS^&8vC&?(UPik&B)>e1e{7jBhEF`g^ps1+o+fS2LkAo>Lotj3p!vv$vl5oz>u}Es9bDtf-x7 zDW-RPQ3A6%-wnm{e0`%W5Lr5ZbUf8OFHxZ}G-OFi5%hs-Kg0GSXFZd-$=$bJ8yC9M z<@xpvc;_aPhIP%eQPcNEySkTQ`Mr;+G@e@I&bnc{8hYNNk zoJ+q$qW8C;1@I8Np+)CD+zZp6eas(|y1l_?(K?6kGQs!uOIwSKdJRS-e5Lo*6db8; zx`{}*g0;SUKqY(c2EHC;iB|MBUTf9lHK8!Lj^AW%qSu+_Na|J369c;ooPZtSvAwqM zi{4x}Z#0j9i)fGY7a|-@mo_-N7y0)=WpNioRnpDff#U2Yh)sRsL&=v&8spuaSWeQM z=ArEILf<%D_C48*WNI+WxGD^VMaUI{4)ptG!VD|L7l33+?#L{!4=@j2p8}P!iE0zo z>{U$klIix}XX`AFq93YZ4WFf1j=SNagwVg!-g4u6D%w`LGQ4(_dSYEP4eOAZIgop) zyK2rA!sC~L7wuv?_YEh(NpN_2&0wVnL#-1=Gnkq4eP5`^>-MN*T5&Fqb7wwE z6?hv4wIVp$?(;8Clek>{(}cK1uLP)yg+gb)V^bLVh5D8h#vZ%<#5^u6<9X&gZ|?en zPNQiqK7v@xzwdsC825>`*tL?Fo*S-0Z|UV0hp3lV>?v zLEkTtmIBTxc!P|yub3&hPH;!SLmRVo$&g}=t+OXbGeCldx}<59*$`|Fmrir?Df*~Qm`k^ z5K25#^{h%fIr57+m5|UqSZkS*wyTwJZRrSHiz0P>@)4%2@8J5l117;yk;Z1;TRK{2 zpsoIu!*RB9o)+gGPRZzjH3#erYpv4MT{-L_($S`g^6B5%UzW)%dp{Rta*xwzNbRPxt9 z$ZhH))b$jQ$Tb9)ROFI!iZ}GE%eq#PTp*!*j;hk*l~esOk-d%`P260R?b(mxvnwL) zINjJpq$$qsh0peze5QvnZ39>(gFh*97<@L64WmfgB3}Egs^`*VcvgRRoa}?gKk1&Q zE7CJJb3wzW-SQ=tIGg5It8`KE_j$>P2F}1)X1N%=W+w3fFszSq~G5T%@8TR^5Tep6w7nS3MPWyE3 zhQB5e_l3uh_c)o)8|HA%Afsp$m+4x6jqdA)_PsIEWG>r8(c1BVkfB5N&4pOU*3s9g zqN6eJ4VL*pa(@9L-j$Ogo~F-C7K|bExoXNywLM;E%jfV}=W6)1mb<`Ov2K#tDq->Y ziLZu7d2&k?F(hdNO+t1eK6`l_KVBo%*7I&mwj7k-IT7ZxipeCM7@lc)3Mq zBFmo0cGTWdhs3>q8{Wj>#4{P^#^KlICLn%`Lsfgxiwt)2IJT_1sAeSX?km%(Xq5Gu z^7(}s+(CG(pT?-qaE(mS$k%>9!AHm{)`t%;}$-RHcgIKTk6F3 z8)B?14i-#!Ug(f|W||MCDv?KCC}Dxq-dx8_l?`@n_0phQ1JAahwQPoJY+O74a$vH+ z-Z_bZKU4rMal}avH+3K|6Or;-N_$-5vFJ46nHp({-Iv1|_lKO_2l~v2jb=C=ke$j=x5F$9+ftY$9@1so%R!Fyd>pX3pz9%xdNo*(3gEc*c9u zRpu(IWGz5B1!fm_Hjhe;mBfVo-qlJOcXdk5hu+u2xk%f4YfM~~M|eSHcM&R^8Q-SI z2+mLM!ry6#o9?8->$Xg$&PCUL1>ftS6IW%4Ee~&9b0KajTrf*+Q?Ina8bc9kt zBbLu-uPu#yG@GpujUM-?Ukz@GAH5ya`8ii;eBJraKq%H9z8Bst&{M+B^8n z4O$^(CCFlh=q$8XR+4PcXfGyrrw*A@U!=3|rNY$)SZ63xRNm5ziGbA2bYa9d;iUH` zro%W1q39)xsT4H%bnty9YVBJ4+;qYHjeRxgDdV`8=Cd8Bqhtpgc9wg9q4+~;*#q+1 znK{+njI=KQfbnChAD@P^ie$%9mdB1@TIL#LreLlr1A&OuXAqX~Ds8mMMTtzF!Qwm3 z8sgk5*>+`enkPbu;q-3DJ3Slj)uf&0IG?Yo2Wvpyu%8cd1bv<+RB@ub$bf#BbxJyQ zgD~%>Ev6_Xg1n_+$N7AuyVZyG?>xESLWc5sll0u%T*XQZ?o%+==(+RX5DcKm%+%X( zN4?I<)*TRGy1Y)bvh^CPF$eLz>(&u66LYl<Y6_r8n?5gvO;oK zt(V1q{``4;Zmv?1koyhbiGZRMEKt2(v5rtbq zZ&|Hrfwjt%ig$W&iSV(8gjTK+#q%y$KIn;u*PO3$S5HB_#}{dsCn^*xFRtiTOViCJ z%T;Dg_Sz!s`5|`-(jWtmE3APBLk}A^sNz;0()*qtU6U8xm5$D62KR~Qpr*IGTh0e( zf)joLVuO7vTKOCSZQmJn!K`b9e4Zja0kbROxh~`^KJN!9uB5r&TS)sON_kPl#rGgQIC95-`u!CibpP+tw4*k{eQNS+C zV=5wS{+an4<62-d?0m1zv7D@R$URQEUnGUYg==_{rBn|pQms~k_n%I_`$kxgCm?=l z3L_|(W?;!V?ldwLXFn6jBK4Ya;)^Xcgmzxh`v_E8@lY(^hy2J8a`4=f6H-Z63=M1@ zt+~F{<}Z9ck*KQcQ=1I)3(ZuvUh>5{osBo_NzJE~fmvD`9li`XG`F+u^+6UJJ?PEH z`VCf9MVaerJAQN0qLYm|or!Yj`;B`QhA~gR!5d|h7kg&r%7z2I@WS$mXr0dQ>6z=u zHx`ei@;$C-5z(PRKN7(O9%}XD(MI=EF<8%{^P~h-*r;avygnGL8GWwP=BpH?K?^GCbpBBx^C-JY^MtPo(P^4`CIz-!PIGR)i7QfpHA~s!V>r znRVmB@BJc!vzwUD1vpiZ7O{si4bPaOe?0_OM%R6n^Phgrt@kOZM5;(W>D}lKh5G(& z<>{psO4AN$KM-jIZ@t;&=$`rXPU9!!dOEbJZX3%66+yKrpMK@6#Uf7uZPShzxa|ki zSGyv_@bYjC(x4#l18MZzv??Os$>!RCc;HTQXXUxSc#aPV%$2x!;5!1UwgER?Zq8EH z`MfC$&5flXkzY*Xxh>M!XzACE3^hv&!)Y4yBTENF(tb@T_*zu*@B}pX(FDcf8y-@i zrPFxvl#zj3PwJG0yW3VviNW8P)E#i7`>?l4YI)#CTe(h<8dv({ON zP`9n`p>wAIA3ShVDs$Gk$~^ln#IZJCk{}c(2*O&AW=9&gZuh)l6O?S-t;KEzY;o_D z8cmf7%j+s{&H-G1Ez`x6lUJ3NZ!o}RpO1Wg$(WZdnlM{IP`#TIcM9eMcmE7t=_g|E~ zqs9You7wYyo4P)IZ$1{kXJyTz=#8!Cfu*z^LeijDTRh_8Zk&1xrK(k}r0XY&_#*w> z;>m?i|Hs()2K_D3O$@sbw6J|0j%3QClJCdDMcUIjs~K<(Y!#=IQ|R}TQO1U)kZT#> zUg_!ZXLy)r1GnRrXVb7Z?C2Jqse&Q|2?H0s9V8qUXi~n&-~S)>-YP22FL>9)f=h6> z;O|NchsXw`JjPeHA7-n`3 zv^Z4JWj!LXEa8cq%R)YyIpr9vc!{cCZe?~!{2h3nB?$q%p;qX$ZLvZ4jo9!Jw=v}{ z){aDZ1B5J&7TNP3%pM=SLxre(^S;Lp%zHY)CVI_xr{l$ZxL_2-3KyN<&mFI{!*^q{ z)Vl1@KKot~sYXa9(Sd~`59BEsk`GQ}Z4~CVLor@IKm@bNP+W+5h8{~tY0j${`tJ?UubvRT*J{s#cl=#S z;Tjc33R5pwPP!NUFYVUuZkLv;PvYpVJM417W7}4Qlk%i7Ci@9rkzaOLr;=anI-E{hzbpHXm zdmonEmMg_6Wde+c0n*6vj0)SO}>3nDSv;D#aX9=Q@$7Pq^ z7<;4pMTG8c^Pd2|P0*sQ)YGMV@Ws)7DZgE>mX2)9dF~-h+Byby<2$ch>ISedds8VS zu4ZDr!fqJEKQ$Z6A(;8?9Mm~kTfIO7j)&>bjM zSV6@P~6?D1t+hUeCW?Wz5lJP25$Rc@T+Wkgasi=*I_pd`=BZ2%^dy zu&=}Sf^M|YH~m4vW%n^@vIFo6CEMQh!=?R~kX~&H!{R6KCPi}l0spJJ!J&|Lp!7|c z{CC4W-=ita%?^PFiHw1%f}uDT)+BS8Ay~1MyA8Kjo6^xr6H=u$kPXyVl8o*?v~Gsp zOKqkqtmBmoCz^1m1z z&@!7!rVXcGkbw&E1D&KQ5bx9C)pGw)r2M7|)hYzRQ!?1#Gm*;p(HEQ}+NQWN_hc!6 zOr#|cp58@JHg`g`s&c<`TO27KmJ&JDg5Z=%MOK%A=%zXHp0YALiZtKG>|kPal; zhvHw4cMp;qw|+e0(Pku^x(jn6p`HVe%9emF*X%z7R*7Y5{XcHwnZ`4lb1)^F1Xa73 zN6Qk=hCr)OIX)}ehrnZtw9x`oe(Kfn!i@NN&7ji5cNvY^|DJ6(1IPRYah*n#|1_<+x zYO9s+n~q*dh3nj}sip3`Ll=_;TO3V!DsXBJryA61T|s%1bHo-J?Z}hdao$g46*!Eh zN8vEYi>OJq(=oPHR=d~@sdc0^WD`y3H7HgQK-mJ8lX+EYpVpW(chP4(qOTpaALc$8 zT-EY<6*@#t`x1xDkKucglgj4Wk%j^v`)*p&Ui^xbd`Sz^DRo@??9>c!P!&9RUPHz1 z8GFmM#zce`qgRu$dp4<~)iM`I5o-fS9PeLRJg_lDnrh#I0umZCXNpveUbU@ROQ@XO z&)5MP&8d+i+*ov4+4tFNN~>!ze~|>99Pb@bb%Xo~?n+HNQ==u$PZoi)+9Ii-fzz%s zP?v(BRu5G{V;Sx;E6`|>=;vU~Ddu0=`b4U=N{hQ*vQu0RjQS_SlF?eAFKOM88NLT-{WlbQs&sg zStNZn-YftS0q%qDW8<{x^|?<`)kYYB*>}ELErP@Ef~++9!1ICf0HmPGq&sG5lv6I9i)vyb*gi@aUt|%lqbfqw5pc^d zj3q8_ zJDruFXK)eR(sPuR09k!y)kLRhC5Rm5{QUiCX2Pp1U?eF7!OFS{_$y|_zsKAu_J{+l z7E?D;&Sc6Vj^y8n!u=589vPB3As$6N`$AK3$yS2TsQRgMOOf+5d$gxGRtUmq!-oYh0ozRS@p@09%2gJXzXzWk4*jO zs?nq#`CV&5)}Icg((Wd*GUbS{>b!QYrs?pfTE*x801_@^!6Z3EmvAM$3Ybc$fNBMs zs|YJ^{vYA^2Q5&6c?2g(iBbYEVRQKz%pC|ke{cNHS|uMj7y_ZeQV9XqB<=p;0GZXw z;9~UuQQZH(9zq~?bHV?6!x)SxRPX%9C;VYRv0&)nbuQI19Bd8x-!(uei2YZ|Izam$ zdy?uLR1OAQ_EEuPNNWM9GSYvzO&N#z&yI+K3E0k)IGE}HoJeu~_@DUpf_-@^W?1;IA*B4{Mxx_P>OzX8RWevIc)B`)IiT91%a5ztDmow?&#?zz+L^!$kB= z8U26kApRLi{TCT3;yg>RFRh~B!Mi+$TM+qAw}ZfTvVJM!gU1E%kCd@%Q$&gXuOeR? zT+86U*8|4E6N8K7KS$&peH!)upNRkOiRk!?jEOp`YjRDo(Oco%sa6}C>i=Hlm(Ael zzc5vTsK^2Ysp7!J7bhtqblkmb#{JNODwmvkRTE&WKi$rk5@wO>Zm8w;T%}TF@c1Tv z+YK)Gv5G}r>))V#sX)eb{RN%v*PmaI=Z#4l1-m}J8FVRKfSd{H2b_+X;tr@Q0f)?J zJVj(YS^cBqu!*X{Mz-L6tlGN9zDw7@tt@fneh%oowY}NDX)Wd!z`sG zaIW6Oi+5uSdcqXB3^qy}Q`I$wcR!Dc4qS>XR-O!b9R-#UnJ>1$=EN*{Qe9Qai*n%tlta(szA%Hx`J}c6{2@DOOdPZl_nX=4iMHl@J7KlXLx^l0_9zl`Aw- z2VKr~fjMi2#Xnr9yizT^0`a+5V2x@#kiI$-K=@sqpl?mZgob8^O z!KtwBG?3f}Qjy+l?n-wExnbNnnf_eY&tMaJ|8o!)>(L~0I50K*)V0KJv|!=cwV0@w z)2xNZ!O}=aS**Ep4)TA%B-jPo`)qI~$wCO!^qtA9NKi+VL{#+8%9%qE=PM8+B@VSJs z(FGe5dTF26=*A5uGM;}8;aX%$dp41Hbvpg=)Jl{X5ER5oq?1)0`Wr44F!(48?e3&6 zOmaQ-s`=XUef`bbE3(aG1^~AdQ8|@FkQxLQGz#@&v!Tjf8wpxjb1w%<&);@A7|66d z!jX3J!9B>a%v5-o5CKoW_Vq1}Y(6RVJ+ST-Of9?e-hX`Ex$Ys|xO%1{w`R!oe#Gt~ zmLG)SZF!!(Ja`vWYQ~aVT6A=xH|SzA=`A_qON|R@EPzAdf7m@JvD&tN`M~v_JLr>1 ze@4%IYp-k4+c;NwmXp9InSJ&u@%(z+m8k^3QX5A{nq73H7FeouMGm-XN3-Ff7Q5aU zZ(cE;OK|Yf`ntWu@{sqvnNG20>!YZ7r8~fcLf!PdTT7>WFQMvz#EsVsXGu-<%;xze zvg%Vh+bzCeJv}>(o?W`p3YQzs+!E!q-=(?bVU4tq=#+De-E-H_p*VEf3gA{Ye}qVz zEAl$8$6Kg{?}&%RY*3Dl9%7!phjasM$KMI<^g#9USY^BF;D5E zPVlI41@|2zac|*`W82aY+K?`UKB3SPm) z8*aFb?!O@2cUwh?+LJPL8y*YJ@VL$}SmZrowr~CFdYX+j5Z9=#`_xG5*Y+GX&()ER z7&luoz+qy!{qp@_Z09m9JML@}&&)65XYRFWv7KioyPMGKy#!^h>CAF?5D)R>AFT<$ zx_11Vb-d#bK8g&S*JiWv_#+8Bf}REreNZo(^29S{9}(Zw1(M{!bVe)V>RC@WB=Oax zC4{kp|Ft807g1f2??r;K+aMrw&^Rg<1Vs+w?rp@U~Tt9nX5R5cJu6!3GY2&k}#5K{P!RZT6}d?ekO}O(%{b5g?4k`D%{t zyw`ZC`4{TDPzp9rblQf~F^?lfa0XZw$%d4sn=VF=huL`KR7r5PfYc{Lt!HL+d;t0k z?_mZl>GGLigOpBWKVEh`tu@7wB{mOeq|sr|Q{rg)VVjSnTI`s2URC2(?`eJp%%;Ep z{GLPLlhHLrtym{xkp)^?`ZaE$&Fhi|?l;E&=d*@40Q9*ZI7N5&{I=CTn6uVx#__&; z9bl)}_-nEwvE}+%Y7F!y>v~v_<=JV{<{f9TXI5)FgL+i~mi zdF}|U(7Cwt(_xE|w~#A+$r5IB?nZWQj_MCEjt3b6g$_HvyAgt}s&S!6Yx z7wpCCu3I4!@++fW+PtB9=L?*qK%4bD9O7ikxgKQZx)jutJs#o_z@(dYcbdFQ zQV4;t$R&Ei!k~fqkjk_=P!C!$(3m4^NAO?WlN#!Nk+I^%Dn)u2v46m9n^HK$5Ak9- zrj!~p2qM8LmRUnoyMBzjSzP1tdebI3&6M$aVi!9eu)AwPJ;^}21833Ck-{l^7PA$x z8PLzY?oiejAl6@3X>OU&dwTX#+1lI{n?$f9yi5>x#;Gw1rqBsIe_tId3nF3{S+~wU z8fUo4hWwZe4R)kF|1!cY2a`lAJF@G0(!MEUF%m>99F;8ri7}b8?TieT1o7`>jw2u* z1OyJXrs)Uj*=r!?z9t;()DfmF} z?M5u;X)kS`=x1$SD9G89-r~V`Pk3QImW&cHIfG^9pHXq|8$O(gRI33=70QqwG6LRq zD}EZUN>8Y(e?1QBgdRIacW76Qe=nPoMBTW7o%9i@MpEO9^L#fVFQhRRh-dOIfGqey2 zn^tG}>zkO>>;WrkNY=jLZv?R5mU8vyptVL^h&qE;5(0UBe*rVmSd0^uoRlIRTg2{( z!a?!Rp686rRP-48E_2ND*09^@YgPxlvg!2)w5NNZDY*TWmK@eWOxH)Up-H`-)dJR7 zWj6MPgXJ~2Z63J&LuC=338O(dFY!B|r;Efx^i5!iAKPdOeL!>MfoK#Xl)Vvqd`Yas z{=SD{^!+0otP*uC{G{umKKo~fQ#`eE?`y6cvyZx;iq;$O%xXCppVm1Vd6JJg@`(6- z1Kbm#g9D`$s@=)KjoJnTx#**O@@QI#tOnnTpAJ^tnf2z!cRGjaKr9jqiek0OJF2k^ zC2r^mztX-ntBZ(C?yBSoCBJ32IQZHZ|0r`zV%$wsNZ~UQ6fgF~B-)l3BrZ}67bK7h zGJ?QH5^%hHtf_o7M`%al-VQdUqQg>7pZ#>viU-1_$sQ}x%UwFvDhr|*x+kF)oI%{$ zEh^J)V_o8o){>Ho6rSpNli(#a>u*=*qfe~$5OT_RBFv^qQb7A}R zAQDWgQ;z&;<2{`sdZaE(2)*}ujtwt+omQjiOMtH}{+8#sxSx)mJQU(*-)%AjHj9?0 zPl~PH+bB0*Ev~Z=`G)JRc4^_XiYYs__*vntJWFfd)r-y&sMFPY2Xjj9u>;w0L?so;*4*Q+gy9p~@5iFt)D7t?wyx2dTbRnSWdCQAq`RpBP|?IuR9%y*&_h2np3*ICz&+!wSf= z!X^8f%~=n|U_et>t?f^UYAnB{Q;XbtDsGYwGFmpgT|=9R@R#Q3)_r_h9ZzX#nDObf z%ZW^&eIx~);(Uf!5>B_po)8ac&kv%oO%w8`FbUG7R`kd23|i?qs#33i)w+|J1cHyv zb~JSg<$CU7_=N~~AVHnQlB z%OJW?&r^-I^iGm#85wKxMtk7r^EPbh!?0%`BYHFkPp<-tHl{A62dK8+KSrp08&jH{ z<2UMTdT96cQD3#U@r{yeY<2LFXW8by=z0RKcy>8Bm8AcS5E_b~-ph)V8Yuc^Fq%Rq z`Q2@Z@TG4nATBWPN5AF{@n@L>MKSwfXW_h$=QFqQ5pCYK+_*Wm!j<-4U}+qw7riy% z?3C;0ezvf0a~k)g(KNNwE=p#POo4G$6u3OMMI`*OGU*Y-Z5oJvn`-yR>c;hJcFln z^bBX#WF6SVujl#$#$&7o3k^2lTkfG?FjGZ+4SS{^6Qikfyvr%!cx-o$4-#(iH$fkM zJ}X(nJtm}V`X)r8CCCL1@#A@6>GQ`0-d{}+&n{N4o`w(cy!LZ5 zCy_S6a-5lsph0Qo`3ajK`R;3Uvf)4nPzTPx%p=ruJGH@Z(Yj&`Bm4;OPNc~DCE!V^P*h?EYs`K zUp%E~dBN@r{wWvqy|F}K4q)*~yK<+Og%mVdFRfg;9o<N)HnIGgFpa$l%X)cfP3 zGmCGm>1v6OhG2n3qQ_Ex22lP${IYkRVu8G_95*%S+Q+~jBuUEHOFvEMl!Z?d%Grw= z9Isf34@9+%>^cYxSi951kzQ@IgO7U7XC@TV6xk_xx#01 ziNLz1W};5`DK*_-XEy4!=6HYQ>Z@KKH;^aiY^xHO(8E=x1NySJl_tGV$8qx68u~D@ zl7Ky|X7cIgJ`}U;z-nc)BiDjOu6WyO?if^xc6igp?(^*S!{b?DdSN_RX=fSRt{cf` z6yEAZWR zwsxZj_RK|Cf51Dnc@|R-Hpip0@V{f$TD+NJ0xZ7@Wgu*ejq|;U!gD_eFPqmO-#?(P zuu!YBCn`HhqK>zMp_o7W9^(RXx?;w10FMIgpM9=57pXGmx|BrMiAR=u{A}P_BI8B1 zQrO%sAO+tdc23h|_E%`7z_jpW^yr>>l+jzS{Id6CRBR>%vz+UXEZ$MEwTN4<8$Nn> zz5u>tB>^=ys~J;T3>orv%1JRwh5M7#V-*&oGrQfB3-9L@_AlDd@b+xz_`c{$=_$x3 zx}?adn-;Y?{i zL%$N8){gO^$$jMupUdre<7ngmxnTe$W8>a&J3b>tn1Q+bI}Ruv`q97Y!)pVwm#T`As(G33^J*J_0XM=@8XR)SOL zcc2tOohTFaSdqf(OBaROH+Dv*r(7{tn}HFow;MM{7&$YpJM4?N*L%ltj^rbGh}r7Ox3FqyZm=kLGqk? zV>gY6p12efW+z9zP<{Qos856`H%y#yYZJHE8Ov?pq9^v~v5GuCYdIu{4=O=e@Ichp z2)t*OF|`)-c(Um5evVl6F*9OqBwa`%qv3l^1u{^avag9$$1^^q{9bq71W1+S2GBXd zHi?jbn|P9n`u|JnsMMKD?*==~H6)LfVs zg9y*3tbT5-7xQ5BLT>-S`+W4nVR|mJMR$?$Oi798L#0;Fslaxx>l(r#1I6M`n*98c zyK$S0;Y2@o|Ih2LPEXG7Y}`>OfT8e&3K<<66p-N-dc}N<*w|5ccjt6&jP6|&WZ&7h zY9g_8J$LjRv8A$*alBbYEU)*n&Mzz}$1=o&<5?mPA)3ScCicL6>X?r4Lb(M?tV6LI zx(br#o8oDO=3Obm8DG#HO^qUlrK&3R+nSf|fLgIy%_?Qlem?#1p2|LwBSCDxLyvuV z*)Zr}#$mmtq`p@lb~X7x(%Ub0L*N0EN-vTB6p?aZNTKM$9Vh1UH$i$97_@mp;~O5q z&R1x}VS3LPZsA6xx>rzx`!0n=I#Oy z5un-DzjKiSj(!H*is(lsS{7DE6Mt0`ehi8@2)dtIFk5D1l+qvFyvxEM%6iRKu%^q8 zBJTHllL^wtl1JL4ugf7tu!nbeClL>k^fvz}9} z1n<7ZZ!Pk3udsDP;E|@ONA}A{{C82gh#{cfWK)2rF3?yJ%QaAoAB_E42ZmT=lb5Mlw z#Fz!OasPMmX{#y_1pL(f$?hu4SQI2fW9>z0^mQwe-ZY@{L`_>fWnyL_v9-(~q|-xq z1}dz5C-`7TBt_oVzu?CA78;dZjMh`@G3SDVk#EJ13l3$Cf+ozcIgie3A!HB89{cR4 z=y9(FMo1oLv{{jS16+>)w|2_G53y7BH&(L9HrZVQ6H&)nEt(!6fD{re%1Majx=u{) zlT7ocVmxF!mf3a8LI6d-7xYW6$()zA9|4y44hRXK-)d|7c;mV&Z#IV*zOr#pj{dr(-KM9khpHF&$8wOt6DCwSUZ)F(h-^GLyYqafQ-?iNu z*;izEx3~mJD=et*x5Thb1b_d|YxSaqxmm_E@hkuP)F99!M*=szP}bP z;49>N(57?&FzEaI*hl|LWUQnOdvH|@W+^qNE56;zNqr7y(t2N~W$ICTpXNkB+F@(F46-aeKTgA%T3BTho8U(JypDTEs}Ydwx_3WtTVPIPaf znzb9!m$DDUbBP5SK9FFH7palCp$w9XyS+Pf34qgJrvu%b4j2955;C^Hn|jgd&s23w*N*`8klJD!|E1xA19*0Lvduw zsz4c6D6{6a>%vj<$|K~$1Z&tSd7$CP4Lu_dL8vK}36^Ayz0hdV=ZM!>IQhm9Ok++M z6e^AS&8!~h1KkjJB2&*B#6$Ur8V1ot;k;rx{ z5pqS=*XqoG;w(W>{YX}mRxcoBGDyw} z@tQ}2`-99Q+Q>q9C3axLGU3CJV^7t`M79)~cwVU9tBgraleybQ4mT*-tM!Bhf&Kc2 z>K1;3foxpt`uA9qk~Dq8p$=aZF#-Cnz(Mrfa~)Ua*{{Q5^{c zPg~48hxP&YH#i)HI!ybB4elNmEQEGrwU!6o1j_VSlIz+s7ydIHgRCr8R5T~}DqBzR-K=}xsrHQyOo3NY=1H*{SS7!U2x@T**r z{PnGZo2I|tHdI?Gv&HsCL0J2g_M>k2FI`P$!Bt#3r?2kr@WT4NA!eS8Tp8j@2KTCt zSnbfvXb=!+GapjvCp$y9(ZpK#;z0Ue`Q72AgNLs#m0)D*r50F+l zSgC`F1*u*>VZ!bRn+W&p+8^?&-{u>m)2!vYdrkOkg0Wei%GS3G0zZysU|M4eJZIo$ zd^=V=(XC9I3L^3uTP2$vv_7O*(-4O*crI8&sx{poEzmTbHc8wej){Tt?XEBG2ldfZkIfi%CMo+k@ z)UxLW#0=}D{-hr@8>pQdOCMK#K1Q>UHt~Q|h?U=IctB}5pExc}p&{{GP+-iNR!Wl1 ze7(dWflNIyG3Z-pnpFSh@CEjqGI9b_zt0v%*)^!(Qpt7Rqwz zd2T@^$&9urPWTcbzbL`kW03vn!iqM(v{GcSVxz0+LyS*QxGCPJ#>&V-P*+Mt6Oz;x zIP@ltdM|CJphT5=mKSg?=$3g-&V8P}hVp$^T06^C$qc~PpsB`$sb^Vn_;ze}U_y00 z=R>{x#9maz>N~nOfgn&R&)MrY0;zlGt{=mLnmGXHAY2uG;(?7ph>8SdvUZ$=nJLg&jkEUQoVq^ zXoAYWTzTms{#HUtyjfhNUUMPm*`2?a<~ptj)ku4mknkAShxM3W($_RAeUd&dKT~si zg_l*1ZO0ejFDsy-L`x}GDtTB&_~Gt9+SH;vWk3%QeiJ!J+mbH8U-+%W`xXDET97b}k;)U<^}7RLA0nfZNym(QqhDzb%BGeA+IV>eP9tdYuTeam=wCg}H5eJ%qMs2+a`m%2Nw_C}VOPw}%N_nqbrx+CI z#&LLJjDm+I^T91<_wFYN%MG7-d_Om-R}!3h!B#`wF}rj}*Tb}R9T$ft){<0r$)0pt zSL3QYgu5V(Y)XB}4Z;27=grf|-2C5yj-ZHNiVC}9bQCxw=e>)>9A#7vXuS`eV`eBG zI;pI7e@GD2)@%7Ies@-(M~jJ$Qtj?@-wQ4!nfpfC?H5`2e^?6n!fgAR%ei)!w(pC` zUFBS0GKOp7P|j+99K1@dY?*NGHV8#RH4!e*>{%>lKT1#$YplHU(H38F z*wSvDc?NsLV9q(PEjFd+UL#wL19vv5VQjNPdjrXEHY$fAs11nTxuaB&yg(jf+UJUg z^=sv%h<33Yn~$)j?O#vSA|zjZ)=_Ihnbb`Lk~RH+`hONUv|ZijT3Z}-DB1SMpbuh@ zRaypDkxrLewWf>2JqlGi5PYj3nQzsGey@j5;|H!3GH+!r9s-0$ofEav&TqC^!iAro zUQO)n5*e%-;Ou(~?MBw7+J+*oFKM-2MW8#{*>E{I6<97mk%2J@oQ-q=qc0m73qR!M z#TvtUp>{ThDTIYX&(l)fpNL8h9JNfFXK6DbnPK?Fpb$Y$BO_xJEHtUhskm4C#K9|w zMw-g>+w)D1_hq!-E8{opsY#xh9_@`ttJR$BSu=xO>y$(P#8r-KW6dj%JUJ5&O)TND zyP;kHtOjvGhN*0uP!ycaUopPN=8n`8l5H*c7_*GV@RMo$)b#HzBVKTuBET^90ZFO8D`Z{wiL_-`%b(0`WO?kHa=Ao z4dRZwj81g7C5`G=X?FZQpiQ@<6^3*n)D>;hI1iQN7U7vM#*Foj0XnvyCk??r%2Qd(H|nd}Cc0OuZ6(rMu^#CwSajuoC~u7vIqQw2pzYJWuvcI5 zyF@ieu?C#AtX3_gDbp^c=<%Ws{}dz)6>VH*MJ@H2uYR*sRuNUvXpOp+TWP#0fPI{L z6AaLP9VlTAv?(mZ`hvzZT-j=+Q^Lv5d%&_}q;RUCa zcyl>9D7OsAyoYC>ExDNDyu@rPk~{|8<*}@TPZ@D!6>+{rA=8XM)258RKlhfB#grD^ z=^(7&t)mN8&Yyr>^b|Dh&KGmGDGZJ%ryngco)`sIbo^Cs`ox>Z)}1k;bLtz~{=2Y! zdGh|pkSm-tf7!QJCK;UPxlO*H)+$OuCXmF7m&@DFm?J_XJAt3`FW+GpeO%`ZGPo%2 z`T>t>z=|JqMgCF4K8$)knQW71T{OrWZ@A~7AmFzw$jgxp7WM;UXU{z^Zv+%cs_`N0 z_E$*lI-)Cy83$bujq6j@o@l4Vau_>(k#kNWY`0&dUL(leWgPB?fxc3YEtx-ASpj>{ ztZ1@Qcy1kAifI4vFplCc+tW$b9XEM>^p7tbj&N^Gz3RyYf?U%-z{>OtVF*!v8|~oKGhI&DNEfJz|s=ah9)fA`q@T zur`A^9)=!kZHRCJcbmIW`JO@)Ffs&Str~R`Swpcv|DaN*I7|vYkbYqNh2n>SuHNw7_ zmr)kY{CmO8;1qY@pI>;fKPPcUfbe&y`TFOcmCtIpLli?s>K3hG;sm=9r%5yd=?01Z zOCC-HA45aH@_cuP#6P6fiBc--Sb`M#a;#Nfn>q4Ks`2oa{_d9=&`2f=DO-OGyt5wX z(7P@wl`$8Uh?>sZWcf^TEca*Wsx&NPx1qPvtMECBA^^LCOC_@Uo_@hZMx{YIu|IZSU`9SG(g?6*70s*2=+NGx9Qz?Jl>mgRIeqbH?Br4 za_#?g{~UA^K!j7pnHQY0?grt@4Tz>aky1CIu7Wz2c+sGYNRM1{zRzsHTNds%jwKD0 zDl^4KaP)AY!|ED4VQkR-i6o1y@H?+y2wS|S3EVYyT@&OjRF@P?!;jfvg4);xAMlYI z+l+h#RE(`G9c%H@Ht~n|jhX)6EI=K$&yP1oN{Cl?!NExCUplhr-+c*cfJBs!)`Cbr zJRJF`KSG~ax7cuVBNsosV{3&$aUZL~?+=jM!ID{84Ok!J;nr@M-&{0?J#qROGX;)c zY>g`mQJL<5n7pl9CTXo)Z-o7OcIL8|oOzT|C?ubldv+#%HF?Q>d1xaIA#Au>ZA`!^ zn(S@e>gDr#CWzhgrhcBInVokz*>K~ffORbbq-5Mi6(T~qlf+91vTjmDZs`(cB%gA{ z-JcMlPNw3STTayCEOhw+KL0f~DNIby?(f6&Lh#Oy={gfRr8jlxUJ8-WRI1CI(<{8D zc3r(D;?No`j_vb9=}w){pK6BXTvWh?YZeQ}f`^&6o6A)&f}6<~*Vv|eB~DK-D=ebA zu|JZ6BDpv0gT&0BdzXRk2zW@n$1ln+1ZsKJh%N2zNdj%@0v4PUZ!Oc5{=t}ddS z<4?Ux?BUf_=w5O_<-+FRJMa1pr$TKg;HE$F2&2*O{UrX~gxL9@;0OL}t^jklw|~nI zsaGsVDt+>1Wn3dWA*}QYSD9PM9*-B;wvR9I8rD}$v-CHw)*-m8jeEQedZ%_n*6Yavt{gdG3`dqil1s+I7&56FDd!Fg>Bn0)9tLp zn)&I$N$9LTJ|ysU-@IW+@Fr9)NwBi=^+QbQA2$9fqCJ3gy;+L?Uu=D4a2!FCN(x~Z|S%#Ny! z5d}2uO4l-#IcuCkDduv}jI%p65)b;_|_3pb*h)CqvNs$V49#R$@Yd_N=H9*H^D>o7L zqu#Q}0h|KNBq!Ftq51;7WMH3ZiPmGI%&lCRH0h4@q2vJ|hxG#wdcPrbhoQR<%xJW1 zfy+Q~PH@ay6r5*!oaYy=*@Cv%M~Z6*?WlgnnLCdkz8I5`I^UUsK` z7W=zIq>R2jvQ(Yfm7!N@SFDe;tMJJOhb!Db#e!om>G81sANwCusAQLl(J7AmxJ>&Y zXDKpvTSg0FdX(&~qzuI`5FkIiAs+8!{JEaH+vmi=>b?AvJ}ln$pK@_Dcdyu4JE}X$ zeA zktlpUCnwg>LFv&FzMc%Uys!em*vaRIGhYB;)k?zK+c%CMojhc0ii(^oU_D%%*z{z# zrShwvY?IpFi?lBb|JZAG@#K@_{36)PqP@o&-`PVqOQF|O-^r@=2)ewMe4?ae2unJLFy4D32?2P92U%DP6RX+oO`V zoNJ)II8)y#o8E#I$d!)MGNp^WW4p8D^F|Dltltl)e~u-?AZOlgKBILGPnywrB>LFQ zsZX(-_}pPN9RJ$E8$)_f4OR-jD}I zH2!3eGJ=&zOwQM~{(QwV|3lIcT}YMam5 zlCrrOzY5i7{IFu?-V?-S>M%WaqNj4JU@ra4p#Mda6u>;Zzc&`N?s=R3953Khhas&f zdoZ{`W)lUI2(^8)LyfrZi`gM9i?>uj-1|D21@h_*z^mV7CvIDs<|z%R^b*w^KrAgV@GX(H{AsJ=e@HN!I zus{};y3X~T?H=v7jCc`AGpc_`wUUU+KQHUw%VmR zshty94Yra7w?Q)(ZkDV%hfJtJ-Vo02>4TX=(%`YGT2bj6wKtB}^z?;0V)vK*=+6%^ zQToQuFQ-sJRfDV(D-njAU7>!`;{fgPSKKirY4~mExeA_p`W7<9cXy;Fm#D9l?Vpvq zrbbH$PA&<0i>U^S3e|enamZA$r?SRg+q<)-uNxNWCT6F3 zHj+~;@BWd3>fQ(g(OTqw84#jM?rSXc@zoDm>bee8_LPTX;{jlr_lWFlNJ#joIu>Y0 zjLOV6Hnf&=PS8QK)f|$Y*pxfnXbv}HP|dNMTSeGoI>EEBO#iI~Q7@cR@+6X8YYDtx zkfSmgaxGn0GJLw!RKIY@@1Qg3Sf4TpgQ%t3DF!La3NVf19>vL!c_aoZ3Bzv(8Ku?! z7UxuexfC_sX2VhZ2rHdU-PC~Tu8ZTX?}<1zQ~4!O7!QtU859V}2uE9;{Lv8lsDhEC ztFxkFE1-?qnpj@Ziy%^ax^43Fk>lP5ni6G*%X{dK;*$-F_qm(G_6)8 zs@CGp^-Ne;<9~n-(8>Gu=X+2E0v}4D{Scgmg#{`2f;4kTueSgG3GjRt*0$`e2t_b= zqRbwwyrtLcxaZ+1pCTz6Q5!9yCm;0Ez!?m}g}PpPt+)<5|Me)!`+&NsAW|%^7h)*I zdE-yr@<|doUpo6u1n#*C(ENt1Q?!y(Z^cceE2HpPnpw+@j}3L*eulm3)q?It2iO)3))dz>BV)}HzGLMJ)Ihht6YWHG4I5Gs zD{fLb1VQ#f3)vmn``yIFyhrlvg&rq=Y1C@_X``S)G={Cy96lVeT|eo|-ph1zDxBIv zLW?s^a*~!95UE?@)!6y#90TLAPTn(}+IRP3Zw9odF9Ua}WUo)juzJqZ^mARxI1O~1 zGmDGg^^gF#Der%5Fmi=&Ph=VNKYRxsiuCcgfV=@(!8;ZwMc?TC1&Prp8aNFcZ$M=H zp&gmTe`f-HCuAst^9A>YZ^ThP2_Bb~U86%?hi)c)_B(>;?oR-b9p$Nvxf%#g3)UC9 zjD+LeF1zxeGH)s3f1ME<;~dLxIa!nQGyT~s>a*mwqnHSzr>PTi{2jn;?z~nvZa`LH z{Z5f0^KAS91z^G#^M#vHx&qxF5RhbTY)`Xe+X!k*E9j<$-U%^qXByV*|;RB{H*M>B78LElY=%8e; z;lL+l(VU1T(%d(>G~)_nr*l$5Qoy|{{-KuWWhis%PpZTotUz-#`tl*A!b45T$kEh> znMLKj3RM8wpK|azXA6LajIf@NNYnoG$Zfbv%0n z-*-QIG5Es!{ReI!>D>J`=HJldm7!76z8xMO%`2IUwz4|;52}9DPxouSE5TVjjGKPZ zb5eQH{(DQISMI%nanz~5?30Hx#u#`@x%?TJK#3y5DSc}0r}3J}C$U=bAm^lkL!CVMZVb>#{`Sr8 z1#ieGZ0GN~xqCAlYN^>A0pi9%Q?ZW1__?sLYuLrM*Eag-PCX?V#&du)7%>&gh zwSNV7Cu5de1<3E|F6Vx3QoXr-Jar)grgjcU6~`ObbIdmI<0-x%4!_{YD!m&nS8<6d zswC#Ft18(38tahhOUbW?PaE4WSEg%mH_Cnc=CrMlX2BLG9=;(06hR};GL7=S_1E1;)X;cw+6h1KvB3YFOi`_@tYbYM zo&Y=^`YT8Kqm?q`JZ6I8WSB~eP~yZ--8{vgt1uhuF(~b@Fz}50PFgNuZ1MYDG`KUH zSbCjXiP`eMrCv>;-f$8AKzP{XE+Aa1Ci5!xc`N9fY{Kb6iJlrNo*^PwlDfAn$~^VZF&v%Se6Nsq zKkKRcIfPjIu%xbMhofVn{Oh{hSrUFZI3w^}AEXOTf@;oeCCtha{8pkYrp1kI78T4% zNwlPI99~E1)0y-$Y)ex~0cnV9#aYS}rqLNr=~wYm95_NnudYVvT6YaSOi`RK&n zdi1;WUQT(^>vYp{56zYH_`(>u&@S3jT`F5{Tr)){4K-mGZDW3#otauwIRvGkr%jlY zl{Np7dTw90kDSUYEU)IwS1N!JWk7Xbn()WQTn(WJ`wMm7VxVzZf;K4Hh3-)$dW{l^ z1F>Qrg9~N&aK;cwcvVt2qQD1WmI0?tC}h5EIO5roZ+;~DWp@h`*){w`CYrPUqcJ7d9doJ>MBZ&Ss36DGctC#`FK#iOd^$O z=f>p~%6W1{jIjMXofs$VALZZO5P46ptfQ6Hdm9xE6Ge$EYKdL4(_T*oH*d)bYxBkN zG!e#}K+|A!DZ77hvxcPbNnsbdN~`3A54uWq2)(s#H(%>`uWI~c)e;Ttr{iR*eBru% zJXB3TC#vwp;dnqNp>m(pE&pM?u=ZibeiwShw)Dd_bA0NCLj&54jvg3Oq=vwHw>SGs zz^g9TInXt0H$%jH3MLVe_6$ex`upm=FnMLn}fjTq0_BV zfW7=}88VM;>*S9+?E58bvA?}jOTXGKD9PoMW-D2svs}_j1WY;MGQyU$aIUI0zja!o zw=O1H_$9%QVt@6q#M?$>7S+W4{I9cumq?s)t2eymj>pc!ud{(x*NP@MRT_4)>`z~) zrD|2a-!~Aph-mgq50>yd2EaG_5vy_h4Dy>Y#ZO<@Zu%mp2~)&QT4Mwq{$K0MKcXjK zpH7~^8;J{$I4-0iVD2DeO4^7F|5I(5fQvb!t;qFGsf>9KY^BiK@W7L$)c1SAC{-O> z_K)}mZ}?q_MfqRK{ZbFG0AOkS@J2`@eansP_rh@OGvyn?sH_T9=1Wm{8ZN zWUogOE^XfuUFmp#cXm1d8Rzq{ETJE-Mji4ACdao9U^%8}jIqqRyxEPzxBal9oE4Z* zj4}*b^Mnz^VYk<;q0lPvKQMQ2N#f^*?O@Fi{I2Ss^6|l^aHcp1{D&HFmZ0-Z<@uih zyRi{`h4F!fpb~oEEnXkCsh`Gurz#BI--{cAry|L6u9Q%_gj!sD{i?US*POR{b(HRZ zc5k27lC&KQPqDblzdR9Q3`l?={asDZ+9aDbr@l))L*HREw>p3FjcIUjOqQCX3+;+5 z17rDVOziB1S$nIWNM99-zC!9^&gH{#-RB1GXzEg>@4B*J;y;aLsS_%k&yL%$7#AvwnfOd3ApC%=YdX2)0^W5?p8OQGLQnT`nZ`^oU#f_!?sC z&05n0Wi0`e@}a;>1PI`%q{N)!LZ?2q?QQ>vC03QTU#T4^ z4KgRQ4p?dAe{sCwaw77alanon`Vjk<^PJ}H+>1G8&KI5_*jJ?PT8=-b>}|&g-!1Lo zA9Y5BFW+cpRK%C-PR;(p>xCwmdpAy7AFXKCmV_+xE-!;&avSIVL59)5M`T${dna`i zam!9QjH5o@61VJ01()|X^&lGe-LFBxjz<30_`n`;T?oFp@#4&7dad5iMuPGWll5dW z5qG!|p(AQ@ky6Qp`p{+9X8VG@3htG&yLdP>@-!bm#HEILYu-W=T6TQ*1cMFr~59SIo-k`JQf4G&D zKnrbdMvbMwsB1D78k+Wyd~(ps7-GGLx|5T)%%hx_#Qf|m81133lYD^=VeQ_k2@Tg<>VQXMdMotF>R#9UIkAtS};mt`qXd^#k7j zav24w$B*4%YC8xdN6x_+->cs7bUJe4ng;IHJHVu3KP^9Bb9~&H+`50K&e3vfF>X|Tm?^VK zl;RiDj>S2FxS@EUb1UJhZ8n_E;M`dY9Zj)1iw3b`Fz>#0xqJv%*9A|{;(67WYuZ%D zDclv_zOCCzuC1_TH#%I$f;MBK*3hh1<5RDC&#`82v5R%2Q4MeV6xq8a94Fb=sd>oR zec*1mndYowKC!RGn@lCbZMWVuvFII#2JT4O1kH=;-7174-3|Yk5*4Ya)qJgS2d+=kjWdXA^f4i7$d zjm`NK;dFSwk!(JTnQyK}hY!tAR32}eT&9{9z1uVd=s}#6jX8hDnarg7I@{rC1bcUL z1b9oj(`cPaGU<|r-R>RDuJ2l@T@Bxm-dJw!NybSn%?GvyH2vJoU2!i&wL!d@;%$88 zfc?bakV*r`*J7{8y5-3{F(_{;K7>|pr=-2VHEV3Qo!x~~sI~Vk{yrA>)m|#;?%oC6 z%&}yCY|322kTAXbtC(2pQVjX-teGf@g~6^BGum`MAo&(vRIS#-(}~=d`+%h>RWU5} zpx=iQAaE^7OdjM?sBD=6xKKy2Ez)M&R98vfXhSR^vH#-vE&T9~NOMsImu_9Lmuiyv zrorJLPz!h53|*4(f%a7~C@uqEWC5{j7;t6WS2UyYbxRo~_HItt`Qp~4bAcpc>h{KB z)Xd3q41cnq(d03CQx&7%;b~qEEfAY+VB-KDpw~bXDu1>ZvucEb*;=2?!kWJ4h5ki- z9@_qBYXo3V-ujatx7xouDU{(CTc)SP7EgmYiJJ>`&D8JcV&3z%yR=_KZ|R$ND98Hx z5%yDxdv4p!4b$LX$ypRLPcCQ@aLkSQk5c zUspO25t$#WPn@8f#}nDBe{tT2ovj6sRetSfz;h5kt2WSoQ3axgRluhd z6;*pOY+l&>!cuZG^^*O@(|OF^xSSDZp87$NYH@gTy6);4R4`}MzM}}$TzvAjAy|IP z7aQ9Df{OLI_bZljtZ73_B9yBe>6g#5$!C(D=JfO3u1ftFi33}!^r+$Z4 zuIV?lNY1mSLLUe(%Julp- zj$ko)+(?*L5zk#C9P)S)tIYCWjp(tvyB;1mq3oq_*5iZ{zY^)EoQs(Ha2gOEgni?j zYbM#9S`D*gXk^Kc5ye-WyrSgDB^DBqwV<&{ehC0qjP6AgmV2%GnT8Gh)aObdfRA+8 z8zZnn|JXor!1i6!TOjPd&(T#H`RG3hc$KziMJ+pdkCyiFTMCt@c}(doo{Sg)KL%&C z+0D8hIu(K!zOJO3OrBpKXwOL>KiPxCBu<5qyItt8zxeu6U%qa!SUghjE&aqEm>a^l zzpkArYE-U_M;^d`vL}w5oEV@vyq0B)vlcmZLW55;r z(@e?_XP*>uJZyTy;|^=hG{){SBe$v%gwE|+!z%|j_h1c@)i}Wg5C$U~x8x8om;BS6 zmVCiEx=EPQWFFnWB(?uzhr?pHYLZ%76negAoB&m>%N1BE1N&EhIppZ02_>B~W^(n^ z+ubR)V~H*K!a!sTzZN@_J9bl#(qYS3l1W#mbSTJ#7uV!-<5bWFGiNfZ3(LYmth>Vl z!qKF}?5Yv+Vi#0*+B<~t;{5i?*mHQsQ?*K*ml9AcLa5{80tI>Z5hvZGK^y3-sDs`odOVv*;~yZoJ6*PuV;N)mdBp#TcN+dx@8M>7Rcp zZ(vpxxIZYcv)gh<*i{kyu9O2KL!~GtShIc``em@rLhlq!?_8KJslN{ym;HxSWN>wd zO&1!DFVj6nYZ4IJPbGdZL*A|&ts~+P%Um?VGu~?Vy$zrvKFe!kKi9}0v#{p=5&?#T+#%F46?`Uq(@&9N(v zP&f|LEb-ox-4OoU$Yfj@z2~VEeLR8SvMUTxvr+eS$iOwVNU6 zln$WiL;S~of%B!j*3jxzi{_~C_Hw|qvGts)Ztm)nLk1n2cc*hOr}pKXM#i;awF z3(7~QM>2S5Q+E(jcLd4H9m+r;E^lsYlXYy`Wh&rlFF?hzb}Zt-a$_b&P+$MU4Z!tkQ8{ZXu#q}1!;m(3@Cn*jN};bx92c&EM$r|QzW1$z zr^}eqoWbhk%+$1YMi7SmL+sBk5KqI|@R$DJMbtO>&QLl0xwQ7kD?61iTtCdgh67^| zDEX65kXycJ=D4Orki*p}scTzTwqaL~>i9u0q89WOvFY3Szx5VFg{cPCp`cq@`qv1v zI|9@J0(4`Ytk9QO(UO}7dzfvdsmbft#m}qg_MeY(xLeC5dKy%u+|9I;;Y^*4hu3;r zAYj02BJ{dT@*e`wBVgmGy;!M=xY9MTxL5CHsmCY1{U+3+0ue36Nx4hdA?`?tE zrI%xobbqy}UF+`V*~u0VtpaJ^d7I3IMgFDEW*eMOwIJACfCBndjla*4Y0|bYcl_p# zl<(?$yETi{Ll-wTlbEqzo6Wa*bQ89jpK;f9F@Ksldk!qAaT@tPG00dFOS_EbHhK{13?IN1dW8E_{n0JfJ5QC*to5(b zbe>@i^ZS|*<8X}lV9vGB)M5s;`*B%+|9I%11^l^sNhllRNYsQ~)S^ebqy38S@yRhc z26$RrCGv~OI-JLoBChKSVs(WHEbIS@dWY^fjxtx2yL|D^e-jZC^*3O`^EzCzE++7^ zG^@MzZq1QEH9ggx29m$8sSR?i2SNNZy3*G!5S!n+dv6UqmS#|6ub-v*oef>6ZtjsFnsK3D&i;G_O zdd(<`(Hd{n+br42kFZO^Y_^DoRi%_AiG6Em`ZfOwk`I1$+ch%D2;cI-hL0(wk=khg zegDMv8T;aUo#;)M)K}L7STE|zJ(=`(HqJUSuNmd}GQG_4ms=^VUcC*ot;@dk+sN+u z!4#Q=u`lNjSW8x|H-=&0J=yb4q8wqp^z!Y843%>MhfG`%tMa*nY^?-ucR?>P#tm=d z0tF}E)|5`N3%WswJ{mA`XtN`|9kUo{VEiILX|Yg?^Xq=E&jIqC^QLIl$m~om!K~um z^y}{`_dVW1pBatAxocdK!b(uYa;ckR+x~%m*vh{C083ZacL#a$3IQ}p)d6R(ma(vvkB<@s-YY}%D)ymjzf>k^@<~rRF8`(?|_-5#kNc~wmIk}HwcwUoWaDapN|l8!YV5BARmA=t2VOVmj# zm~ZE(M{ZbCyzb8oEA$+>;)l<;TV$EKJI57R@gd_vz|jyC$E4-N!d{!ZiPE1zHKdqpPtoVHyK}y6v6e#A5ds(1nKv)DEt|^X zvzc;BL!XNCCHDIiDD^$W$P@;?=6u`3jEiOWSMy%@rngt9z|aiXm0~D`bZ_ zS=H)B`7D%>yT>`2gba~F+Sc;(6)vAM&(jNokTUppUIWV@jhpa3?M8rzy;L)fs_0M75GC!k4nvgbQa$zzQ4R+;9C@vf#L&KfSaF1A4dlUM>Lbkt!IM4gq?wTg2Le~=rW;#84+)TB}G9AT_Ud6eAsfJmc zB#f(#6u@&06L}c!C_9rS{i+bv0EyIa@3ox1H6eCi-!RKAu3+S{CFfM-`*W?Cp8@($ zY_(md!At4<-k+nanS*De-F;R6If2hbTr<7DTjb*)AIYg&PY0L6vY!k&+;(xR3h;Ks zqy&+FLVj7l2OX`>Xo(YvlSD3{-4QqHt1s}f6O~9ywMUv8OnIj)1?RY6%sj*-OwA$l z^xhLQ+ip(^CFSo+$r<7F(ox1^Kv1P)Zv=_30W^LT&y?)2IwBg zbEuwsXw|FM##3IEcnajh{{6zrvG;alP)$SI;w-Y6{4GgbddCD1eh`;{3wr)Ex>>*> zMvb1E?ZZ)J=U(kPA!#R>PaaS~+w-xRd}!P6S2?k@_}9zPgZ)mO@LRV4J)TX&U+t8* z3DJR(w#PS|x?KhA%dwXCGtJH;s>Ks_Lt~7H4r^MOR2$QklERTH0LgNUaQkfR4DTeJ zo2+c@A-&k#Vns>p8f<)zJMqeJ`2%jX%S32g3KC`!;eNP4_aXg2_!2;)eRnzVAA`_s ztQ@aSjk=U^LI=!ARz>gJsTj0_?EIHb9f8(_gtbaPV^6|yGKBEjLYw!;-&R`6K>8xC z-XM0brrMorQ`N^`C{WL``nOAG;!8LUBReJv+d(kfty$_l=)ASo==^9|l=E!lOpA2h z?*YR)?Lrk=KC=J3@oIitNB7_YCknw)Mh;wtWPWWl0=nW2A8lZ9Gf&=b`ISo#98+4WlGW!^-% z-O}+^ha0fr<`YeqfYDJ;QZT$Z$Y-O(7myc44CriAFWo%;=JmWwapK! z27HcWeBr3VYF7LP{02$x$O&aGNKD*7_g#B^Ir0Hl31_1i5A`$nqIRNhCjA9wdo?#G ze=@^Kre?ayw76S+BDAO7AgPcE(OT+~e(1Vs+ezM`@moN8LN?diBrR zC7Q{dB|4@mOg^(~V0)ak`e`Zu;ATV#QZAcLEp+geua2SFqEGjZkA#T9balvHv<#t8 zUHSLe_1#mx#(JM*a3oW)f=>n`I(-TcX-~J}YbkxRa3W;fGFj*N@%an4+ytyRwcgF- zW0TKNj}rEeUY{<3;X#*i%HBe9JX@zEA#t}iphumAY9H1kVX)hIp2GWKSYkJC}$=Cjgz{65fJzd*=ck$N5hadL7efj-Ia&Urd_CnIL5zPp(k zrI3Egx6L&?lIKA52R2UzVC7!VaS*{ISPPTk9v%DjNv{>8!Cgf8@J=-Y(g1!a`IlVs zZwb3^`^X&8%drC8ye{~Qle-k%JCW`Lhh|gYOE?@juxlw@s0XEP)yt+c*i;07$JCWi zpaO@Fc^~Gc=lU)4`@3eYl*bcalHOBj(^bWv`q)x%pm_ysl*zGIh zDUFegD3$4m{{(W~?dQ(Bni)L0kS*CM#R;>MfpiqY>2SHL)04t%>W@L~@N|3dpn7Mz zu*cL*Y%I~c_8u=K!N>5G^vi2Xtke*9^fo zttG`zp7Rf~6P>cg9RD)&XB#5N`X+_ze|oa2 z?kxWPhT`JlXNowBXpcO6d`9-x3BL_;l`ycd!pUS3iml})${iJsu~%;;BE)3 znAQcsMxNIEftkhK3ttOPI?+$whzQErs%ddl9pq^0g@2_i9ApUQgmi;T!oLj*e+F;U zj59Dejz*(-i6VwqliI?)x+^C7HmO+kzWE?VM7E_-y)e(ZKB6saYj>hz)ziWHe?UFM zpETP0i>=o4BnM)aR|i{0g;sMzi7)fTksdbwkpE5N+vyJzRKn8KI7qAOS*`~4*ZSPS zsdi{xT>84~d%XgaW2L~reHOG%`uP@|Q7e5?j|eHuYtR>4v&f1(@)O-z13c>FxeH?l z0~S)!FXAQR)$+zcDq6UGr84jATYs)mNh86pQG^l7A`U-UdPrkv)bPuR2pxVq^=}T& zT7a$NcVM3Bt7kigUUY@=g=is2(pFXrccZz^g8(1_*F`0o21i}QgG;e{UMNW>ZJwzeZw`=4(xB zsXYFBbU0Z>g?qanu)XytnB!QEtDw@ zJXhr)zcXX&B4d8l4PzBJ*l#v1Zw)QFPzG1VJkH}oc-C5f(awsjx!y&PTP}32(}mZj zvzi$h3$IQ|kbnlM^ax+nw4ENxZ6Cx<4BMuLquM5=BG zxf6&4>yeYUe;7@?Y^>s(XO;O^)M| zV#VjS7aJ+ha$h(rvIw(Lff0)Jvy?4TJ#Z#OK)0&n7M9+N&L>#)u%GLp7kl>qj3DIG_s9@xb`RF=+&Tp{I{jw zpvnHfcAbFycJ%4GsvVpUf*d3H^&R>;3WY8W6Y9(7|JnS3N|58gFZx1SkOw=484Y+F zJHuQd|KIvTeR*z!#_$8{@`CukeD+tR{RZV;daiC6j}YwlKU%j2-8ZObjn$i38_2o# zAmhe{|Cj4SEb^Zxhn(p2MAk9{A-G%WGsFb)Z=+P=-(mijwvGG+avb>tVFeX3l35I5 zJaZn23G@Hb6*7L?7~u!tgB8n^0CFcvBq5zu=MrW=fBB*Jy^Koci%9$^3_U-8`M8|; zxjyc6t}@+Bs+PeG?0t|Vc7*7c5PalwLK~LXB_E+jG>aLldJ8B_6_tI2=jBckdoTQg zKL`>Wn#%^}wjm*i6ogq+bd*+dH7trg5K0~(OXg>0jsl8_GH!{?>Y1qb=vYfl$r?zNBheq=Q& zt%nQA6cmyp9ux?d#m;O~qDR%_O9(90P~9dMxcVDg=Kf`Ng;I!k^9fA5QgytItK&uZ zy;Bs{vG(PDC|&&qE~+ocBfb&8qs&Bcgvqz|sW>m7+1r8tGKnPnhjv7cFh@USPtl2w zfX}dABTR}7!^cc#ah{rip@Pk2RVdQ_;>A$&KAkAn5SCm&KIIgNPT!rO-wdQWtey;b zBD3$r8ZHA#-CC;J*lw|>phMN<<%zA*M09H7%ek_wK`1PY)OI~7T@7M92*U-Eae;5LBnZ+_BMTBGn1gQmLwi+&IhYS6ruF;yU{?v`Jy4?gnpJK5m+b z1}>h>XTtR^IA(>b!%pch_!_i-B0%PX((idS%s__!H&L_xOf2EPnycOs_F=}j{!U7Gde=S95oye(hqnWKm^qBP>wO}{o|HH#p!+cj4 zWvaN;OKWE$I`#CvLv5+Q&(0;6KKk#EPs&`0CPv%#Kq*e&%8K_Jd;{~!<1>kwc#?2& zm-{D|Iy|o<>qT_pZhhXhxkhiO&_uc)t5I0jo^6T+PdVc@$(s_wk-`h~+lTm6<6d%7 zO*8Rhi98`*Ti_y-F6b*lqqjl&dpx#eQKm*(P#o}{SQl{F>4od2d&XM4$_=*A2H!`C zWsw*U{=G19u+*Lxc@a{A5vy_P6b}aFfTu?xu)|y<~pGTIE#0? zn2rBZEJ1_FSg{!1+wJGg$E@=LKR=BLy?|ApH}>BmeuSzri1Aso)HN2pHQCZ;EZ{$+ z)iI=WMQDF%#G=!QM@dAwTo)L#mM7M7J^S(Sr!v`^thpK@nfu`_5yA#S@h_F>Im4Yo z7*h?K2}p|pWto1E>|+z%h9>NNz`ID!W1kIeP|vwN4mJHwCPfvaacTg3L(YI+>sZ?PjL0$3fnLm4kkZ- z>A2a5l#TLYMx>!z@oamoM_jVY9}AQdOE?{n0~=9j^!iD%u#ua$Pip?PQ4LtA)#bx% zlY}x{;r>@>|M36`wM8#XiEyEQ2;RYdFx%G$FxwF;c)WgDzU2|V8+GdcrXGC8H9h|= z?hXB99}`AQ7cx=(x=C<*OLI4rk!y$HzZYcBS^&K9fWB6o?PTTxbWMy0c18Qn8nwpD zh%_h9RzgG27@%C-ejztBRMgh)p(-gKvAH4g*I4_>Hdkt|WkglsyF0|I%@(u1AC|}- zYxX)M4Z*{2Tg()z(k$S=Z^3VBO|>snSw8KtARSlsCnp=2*@d(`!tw(@Vj2#&*o-ZV zYx$Oq>`F=5?oolZx}%NUAdt%sf>|y42dL-PpcOp!V%SM8v+RY>?}rRsXj<28cXD?ayhn{?VT8fA(>iSol)Bg870jHA;U z>B99HjPR2;!|0(4cHfU&8EKMd&@hd_K!UWVtRu%}-hwjjY@a(xtl{%)=Di#>i5=&$ z4B;( z_Cw#yycTk-V*rh|0^=Pl^rKvtl3R;v!}0wUcOe>nL;7DTw;Z~O1{Ko-RMJ9FD&t9g zyR5L>iFF1oyS!DWZbBEz&~8~~6Khe|rW-67Yk5wLf@$oobo9tWa^r^I z3Trg@ACtyhDZ*XnWTT5UkM{wkRnYkS<#b%58uE@wMcKhiCqO5R?HsnKiP3b!zwLR= zv`G3W(?ozB!%hA?)RVJkvuUNv7WGxZ>x*Gl;%vj}Ooyo{+nV<0Sn=2Sn4a~n=Bx>A zbVrah%n4Fru3FpUJY&kIviNy_X)HhMpU=X(*M|!>H_c-8vXB5%DcxOPKxoBzbAjYg z!4|$o-B@Ebq;v`Uy>hqVWV(ctvTij`JGk@}SVbT7tId#ELyyK`RLSp<$Wy7yME%}m zq#S_W)s!^?v^lz^wJ&!DiY2xme7)&&+piBOT0*OJ8PikPKqs73@?MvB3&STl1}!ygyyV$eej?@lwE-G&Jb!8k$x%o5=bh0YPNf!|S@9q$}dWOF|YJfu81DrB?>`d&^nqbRkb zZjZ4|Xn$o?W@szX1tFU$ZJz7ZB7kSbj+J;BnX5>)pH%FR)hAOT2wa^&C8_pw+(rgZ zX8Y3CnzR*Ln=KU#dT!D1AC2*Eji~RTpq<9aB*QMWqUesA6McEVB?;F`-Laf9-{Luw ze5It1`pV=aj>SWPbuhb1)7DN+6Wo$cibL@{`JsDM7o!-!H<~Xm?au1S^Wz?c%r>+3 z_vz+8I*@Us{RUyoxOa+$K%#AT|7Ao?NNZpCN*S$YgAnPGYu#19?D=g{f%X)!Dsys7 zlNw(vPus~QAh}_;-~-KH)UopBukO~5*DSEn@ht4TLbQI6kYL}sL{YJz%{T11l+#bw zs8P8r>P5D8>iTNPMscC2w@R1RM2``RZoN{&2qG0M(LmBGq>jd?@do`zg(>##{bxlEQGC7mRm~O$o}@NxUQ_yywPzlaRWfR2@hp75 zeYlq2u0d+~9O73dc}iEz@lgvS=^2PX^Oo=F3+>=Eb+h|x*;I3dYAruia-9*=qEy_V8CaAXxej4=yQgiMx`>&NbC7rB{ucv({zKaoE8-u zo*(t9mj)F`yZ5_6&j&kV)4_EEMnt^_CuvQG8Ugy?X}(Ai7T%I{-tUf6&d*KL;>?SO zc0$W)E!51z6jDcn9W9Hza5oSfEK77AsY{24cD&n4A<_d^M;j7AP+3W40Gy&UDVg~3 zh|@v-yg@BT;$S}R&bZ>j#I6NJy)+&tjeCJj!M`pstEWlVeCd~Sa?pGW=txYvxPqD^!I&be5d6RW*J=-xOSPnIUK zK$R4}J2S&%De%UEfv3>9@A>=@w}soTyYl`W&0R%c-h(I9`LCpBK4%nbsPKtAZ||Dr zN5>ryL6rU@@)HFcWaA<1GVSvS^_~Z3r7|X7Igf9}O6M@es>6{U&hj~4=yFn5BA)tf zmD4cJH#NYQoo7pT=M#kCl>mGYcOX)QL|os!_s{nb>Oq2LFRc&hQA3jb+_QuEKBL9R z{k&}tP@iSiT0j2qh#z#6|2eq zN)!>wX+W=a%cDi5{gCbK(_#W`FB>Sr;>A+?dmeKN-8oMxcBIivN*;7mKBDK4xq_Oi zoM*uA1;{YC+JKL@74W-Nz05}S>>DcfZp@~WyRoXH)9sA?y(k@973kXvp@S2=w^kq{ zLM#(^%S4wTHJo=9qItDPwDig!wd+2W9qHA*t6%6a)1b?SG+?c!tkBeFv zL81l4!m<&fFGPQ*OJs#NA+c#Y?R;B#j2ZuwC-Ry|;uC2- ztM$7~$#1{NT(jYkx9L&Nz`o8V`%VLRP5EiYRwb*(-NwzuOoUO+694unTE*#dGHJwJ zb2)OOZtCi|n;Tdu_@&|l*pgkwPLS8S(Bi`}@91Ls07_l3z+PGI2+V3|%Qs9jiyt?R zj^4Ah({Jm`)V54%w}YaNT%pT#^NFC}QZrU8XOd;u4OGvxS@c2(M`|Nj%3+@)A8+)w z6ex9hoX!WJUp5v_lbs>z2Sa!v8oDDZ*R3=J-=+)o4tcjbrL$-5Hl4Vyd!;C*83-m0 zNY_VLhN881ML2X|rWdl;5vh}B)&2zg53Ao)(SUC=;VWmw$aaDd>fb!)Rf2WsJ1Y>& zrRsmlj(DZgL8!MGOrLih)9(TgGy9}8V0YTK__mR-_+>$sp{XjRDv4oyWsO_au{R;A zULE#?v$Y!EH!&D}o?}Z1h^DF)VW)nPIau{uMtQd9o2|>^`$6aM%uO1OPyzu&l9r{( zI3Pr5@aPoqIUad{GRB`T_wtgIg<)x12UT0W+nc&I{Me&pGMtGRj-XF@C5c!@W@~z# z%NTDvkt_{6jpgx%AMV>B5f_APaf1reda-i}Bp(nC26?r>rGnF32y`ewOClYDC@)Zt7J^hIGG_DCe+VYl+V+#FCx&6_( zjsv#9oDB`GgTKp{_8%woQ-2|Q&5&fRkaQ*8@d9a=)cIlw+O@E8kbU+MGh8IrSME*mxPVEj3vmDo*Dt57oX~+Q-#r{QQilk{rv{h84zRuEB0g zM*SF-Z{}kzGl_ZgNa$EtLFw7R=0s=FH|gwXkIpi>zjotLGgZ#7Zg1WHA(+{1Y```= z5)9W_S>_ALDVnbJ`i8D!ocJc*Asn`RS4wwS?-xIy0Uan zd1aSmoUToz6Zw2AN9@OA6p~A3EJ0-Ty_9m@-e(e}Z~_hHKvj-_{gS;L(r#n1z|wQrDng_E9IoW_Y!xla5&WAu8S zH3qi~H4VfPN8c6^2Pva(J_uvVoyE2d?AbI<>TY;pzo1k)s^*&6G5Ip3jt#|xjo>dL>?MmQ=G@J(f7|9;VonwggNWi(=eeIlMv_$Y2_D=lzOtk-{k%w zXc-ajHfi+(!K>@&3uBF$baYTL;!>x;NCq!iIClqYmC<*cd!SjM8~A<~J>Ave{LzMk z*BexwIA&VK8%5iEO>k7H-#1cc+oo$?GHubHvt{+$Wc^D=BLKV!MRGD8ik>7G_^GL)xcU<|^yXHg(E`(wzKH)uh zAM~@{8iyOHJd}-xmpzSLW|_j|Q)E8A*g40tlolT<*mAv^tq^jzc+%1Mih`uVd$twEw_c|)Byk4+oX%@Z)UytV#j~>LSjrc&?9{2z< z_;XV8tqQo0hez;s#4U~bKvw=u^8orBXP#q=dsm?5P_42Q>Rf{}0oF`*Q8=4D)+3t9 zEGk%!6k#x()wNf=STSbv_L;wYn)_se-q`b9 zKM6~>L!{?u*WJ@ABU30wUv6850s?*Ox$Kh+n)PVO8y7`=`rFYFQF8ksn{6<9o|l^T zPpwZRuE|7D=Ly^RtQk4g=qC}kd!XwxP1D7!9m?UYxbF{`Kk5A0U4$#jB`51V^ghV^ z4ipw1yr-9ZaCt_s>L}W6ym&$1InFJ9Cf19~qui{tkaM~Rjuah{nr!((YlDo8gZcRb zL(Ci4Z8K>j_eOI>*LpFUZ@srPEfG3JTSiR2m97MD@mzA(K1GWz85doaf#|xQPD!)4A@&vxQ*YPDv$-69rE$|h@RSdA?|*YxiaIy=0cYCJ}$3IJnt+8-QS8_GqWk4^lFD4nen-P0)uZ zQ2bwuda>3Y{c^Q!iWjV3qT}4BL*Bxr?_H1_#e3I^09NcDH8u>L|$A^Gr$ z066Ta&g=ceeK)qg8QXx4UN&6ibZdabr+vA7Y*sk3E*E30*lw#8o{BT{b97Nnf9<0> zrPIuh42w%s>PTVJiI+yT^W%1&o#09X71*!!V=4anv1j|M`RB_aVdCq{Ql;di&sBDr zu@HiOc^z`b@^iN%CrT7(l|My%t$Q9?w;Zf>(`lQ@j-v%?9iAI_ds~loCR3ihK0t4+ z@W%;VcwbSWby{z^3_$jC&OI7@ELAm5;}X&JxXb%=@gbQO<-IXf+Dm&M!BPV`0Pl-c zW>wiN!WxQRw>;M|*!^D0Kun;uXKU}^t4kZa`o^pmscNgj>X|qOvfC|0vD3uW9U!ZO zYvlhPuD$0l(ZL(w>H9TxK|%j$yq)Z+Hs@MQO%27YyEkBlSRjz!!79)nH!B8~0JA$c}x%!oO#V-msr%C9tu`P<#8Y{i=A;MNmM zF`Emju~k9#E1(sk6~Yz0%n;e_X?MY^>>qDB#SvSyW8-oa;f3hvIhNS^BEV)R zYtIC*J2u~}*G3^`|Dj{nRi?v=(a)b}q0J0m4NHzW#^wNRALkiD(6Ngt6pWfxB0+a*0iZ_;P{fWpM!iTPkD!`NL2OlZ6&MIp{ETCjlIG_8Il$!;YmUpC8 z99@s7@>V&72xf2Kr`17BM?Zp0#q;2lkl?GxJ9nVGpjbIff6`|6hg2CPX$lD6u~cr+ zrgcx@xWm4{^JZe5~#o<;< zvdZ8#HP->-pFb~E$sTv4)>!^Ny6QKAEwlP=@PnsdEy_#Jf1JQizVr_H77Ld>`}481 z7MI>$1N%k{*;ep1aP~t?B!{ojuq`sf9G!S(YtW$WZqHC2IsvZ}Ymkl&DrDlg?CUp? z-uBvg_f2z&gxi<<98LG!)5^UhMA`wx226r2n$V9?Nae-p^kGc3=I<2BINAvDJc#`I z(IGG&;X%Ug3{N$#CN6uM4zJ3QPZ4TvCQm^QC(`&(=P-A8Qe$ zig@0L+E~hECpN5K8Jt29JJI3d4ZgH~e57a8LhCo5z+AEFg8@~d`s*BjeT%6M$=HOw z6$_~{UnI86x9+Us-cg{z@FPQ_>p}-Wi>%^8^MdB0abRhx+C8d-vrC2S5bAUzXN-P$ zjR8ZIFDf3eD34l^w?NdT!6@BDi#9$b2QfAfr`}G4ZFi;yt7UckkD$zSdHJa=xvdf6(A%e9WLF^4TSAhnPBDc-Pz!#Xx<$Gd13u(+jkBaw z`+NwZ9AkA@Ag)L*C{il8#AZ>5F`C0W;C@IT@8lxH|6DbnHInHS8axOCn#T1!dTP)B z;#-%CgwV*Ds^6l0I8-`sdm-Y1U`dwfS!AkBu00{Gz+q4#SC>QD{%v@5*n_>#acK+T zL)C~K;4$Ni=Xb=++eZxWmvUbldLZQIB$dbp56KA@E5pmmho3{N)2symIZf`RF zZahf}4&*qeT+(Afh{uV2!3_gC8hGn*YsPhVZ5m$CoN|Mx*cgmmyk0i}ey0{4Fs2)R zy)96bz{D==oLj`Orntf5oLd_o`sFiv&DhDt)jtG8y2`J3-Df^+m0ENg<95bdMF#pf zJwrUNrADFnV!uI^Fmy-XOc!O-O;1}uRG@hFlt_u>lnGL;!Ro%yT2ydUufdG?q>d)1 zE?!grjDQDOwMLB@c49j20tjR(76?HqChMT);0!LV{<$$sEUYbbiAdYnNeID>=bXsx zjU4d^Eibg973yL=YBJc%z1`Vesj>mn#`nKGUsfT!=4$Yq?1>V#MRg)0i5__V_Nsp= z|Kp~a%S>;V?9q(azH@y_yk)3{l1A*_L+5+bJt=Q9F{C6dUU1f)P@1@wNm8Z^EkWjm;)Gv zCEEvZqE>M_5Q70geXe$p4r$|#7fF)Y_^Asm;Zhvc_8RInDJaOA~c)kl~e!l$b+8&BH zlB=JwS)?~i$8JlYi)@L)*og%LYA3b3*4h||Z=lwG&)*x4!?A0uTS}H;y-mKkqqrL( zB&FLhsWMX0a{q2LqsO;u6D;=N-gvKx@^>ih-MwQR_Jl3T{!OhZ91b}3ws7ElP$Scr zb&B^Ztzps1p-wtD7@Qm zidDQ#9A`nVUt^;Hurp@*=#3zdvM|_JuA`G#!j)94$*#jSVne7I?5$xi6#;ownee~|_NWLo> zll#!`D&p*sabD}K1l=os9BsPt?UNRB*5|yDGpik#4v+6c!pO|GESk$Myh++`L&xkoVTyC@-1)TtM*Rg;92Gs+!y6xQ&jhS7*3#cjBP(|6Em0e2j1r!)k3t4@FQ2?*KCWt@Ar;_CQ)fK-R1H!QY)0xjJHlCeU!rY>mP}3kVZ57cGMay%aB!TxUaySK=Kw1WuGw4W;SkLv~<^eh932J zph%`UD|7Pu4RTy&0g1WbwtdYG{E|+_5t0U!d6xhSResvk&X8lBx_G8> z-4r%cR@h?|;#JKbEVQP1w;*_NEAQRFVoMLnKUG{mj*0 zOLVqvZfL~ z;Ig52$-MK!@`y|6@g;BcBJ<#?6oZ?7FL$cf-41`SFWiVu&A#w%!!?6%3wLv>N?<*a zMLNooS?Q{$_ zNVo1=Q&$BCg98=0UyQ83v`KViJ~y6LhZdBs4)R#=y_F_}TD-v@uT*E9e;?gf+)3;0 zxBMPrAn~AQei5-FIHVMgk#V$D=F@cm-Llwzh5%^Kute}u@h8sUN>}yS!JjFj7S}09 z@No;SvyM`1e3Iv6C^K9C^=k9&U}W2eYrq0?ECD)Avu-%xdi2!}0!=<@+~g3*ntFRC zchgFMaB*ocJCw&ed;B>Xu8$R!2h)HcC1n#FXSbAjU@rIuWYGTPrv?Z278~Z_~c-<5`4;Z7(2?HUJ5@~eQCq#Es0ua(|mUaSb-4iP=z7d zYq=PxLxoON?^QeL4-#V3Y@7|JQ7$Z^gP@I)%`1>@ZlhE0fTLzl2Howmji2glgL(izy%5ayGiFg<4v2T)u8W)>ypn_5YP>H9 zPYVD8Rl=x)7PdbxA-uZSXU1kN)+y_ST9U7xq=uda1KJCwFjBx46TK_RthE(po*2Ez zp`VO-9Fw1Tgry*&xW5;jGCDlH(DZ3@<=7Q;o3Ms%4~}lx@Y{#jIP+h4PqQy1)4i%e zkY2Z6q<;rHUhVw{dkS;PtdgUrQ}6A)UdU`N5putcf09u5%TwL(wnU$PJAePR3CLNj zjH#|oJq}1W9A08-rCW(Bej$pHyZZ(A*7H2!gXr#r-o=#N!a+-%CBVb$d`Zk=gTw}U zvcr}sDxJOoha!y6dM7(KU_-a?6uL31%TTO=Z2+q6#OZtqqr0;yD|yUvG+itFO#!N< zx1d!oAQ;b7o~vJLe4#Q{JUp@2Li4!wHspU})3!Gfld~S%qcynbZQW?56jp&cYzRo1 zDOb%pIZE=1`5OS}r3A*iiO^Tt=zsxu9W>{B(B~;PK3ygH=redO8xD^qkj(4uqv$=(T%G0TZF^mp;zYbp zoKUEQ$2Hq|*6Xh`jH$4WSg074XH||j-|Ex7L+z@Q3Y5)KozG;C7+|Zpcs^l~bVpK_ z-rGJ9baT=ym@|n*OYo(%fY?Rn4oRWR^5N^GKa;-nopJ0rTn14WYH=NebAj)ni^8_A zo~-2Lav8qe(}MIlzu{4FY3yEE9iOyN;l(NM`f=8xAQ*mXXetE*vOw@~NfE()9h+Rn zFvtZ8>$|s;&179Jp0Lf&cBlqB7|x%Ktl1}K54|i3wA0!$piOr~N_Y9LY5=!uyAc zKfF$d+w0P&tRxUjbYk8?cR7J|8LT>ho9$=Pbc4n3b?FyMenB_|*6OsQZCAh2qRhq0 zWyIXGjHh~2#AZ?kMz~?ui2RN|mw@`sH3U5oNylfBmwA=)oE>XCD@=6PTpONCDO&le z?U;w}gs8EVXEYRBmfv~sF!<*cAjXc%vwKe2$hH3N?(WW1D)&_0Uc|02dwYUxq+$5M z2tQY4ab>9|nQUZb_UY#KWq;|n;6d4FWF^Q;9|D|$Zh`T2i9I}Jxotv-Z>pD#QuYaD zr$w6Y=A|<7a%cOoSZ4VV1?wxv)Nb*Yj%KSBA9ODw(Bb3mWv2Uxren(c5w=maD2%o% z2d@oNLMkl3ah=N;B(BtP2yNxEvOH&haMlzfN5V~u2sb6@#4pf5rp_1gR`oB0Or zX}hAaT}H6hP3h(KrK~gxeggPDsf4D@WQj z0vdeWitN22%LAV?lVr%cx1qb z^p=#bKGGj#>MTZ%i`S~ry@`@~7HM|T2;O?G0fLdsXlM(`M}UrQVQaZVPCN0ul7fLv zle|jzS9z#&)~u_MG~Vznc}KQy578>FKUlxPhX$Y1`c@m(he_2+}4gX-Tl9O7sVZ`1iAbYh#2%_an$cnjPYb+a;viQGyD~JlCV3!UmXd}S| z`s4wh+i>IZtxY895u)K7wTa3iW&yKwi0JCnFK@s{-BR&_A0JK4f)Wy%CXw*7oEv*# zxU0E-kRZ@1nf}sD+Z1T6Bh1BC{3TOX9bPW^vkGH~F1|2PV;`JD)LlFzC@-ow*82GB zcZmfBwv{NVuJ=CXTY)F5nTlJWu*Iu(X7lThh>xbJGwarh;^J5ZR1bvph|72a!lNIm zxVS%ZH8(estxZoFVpupEOZwt;-ha(gIe6+BnZy0Ms``Vs()T!FCWImH#}5@l!=&De z+YQ;-x1jbn$~vhzg*k~3EQ}1VNYggSc)}y>nfFl*Y0|J8vG`eJYx5nUv{V!nDh8Gz z<#t>r>t1c+l%{F3xlv&s{kd)dwA@VXAwId&KYx!b^QJ!!p5!gDw#$@ZMOVgqzqYs@ z3`vOvNg8GLUdT%Ceyu~QgOgzrp7tUXShpOhs`XX3+ZSE7yS|S3e(}6EKG}O6JsWZt zZ6~Z|B^#FxSbth1+d}2n=h8?`In2CBJ!a&mBCdOY&#Y8xj2=ROowTCt@5q4)ySP-P zU#V}E{Tl=R$_SS1o4SYetulCDsYQ5ZguFMmTvR_NM}#_0#sukq>M01NI8Q*bNVrd5 z?EHCD555LCxQsb55IhT?9>sNBNjd=mrJMH&Q(tQT)}{ZYRIed^fnd)2^yg)pe-Ptj zq-d#MPBYiK3aVOvm#O0}C%3G=^)UU^1;Z@AsC^W@A8u(pTkcEgCtq05{H_!rT3^Fy zz4}8iiXCwP0`o5@=D*?Y5Qv?o*#80s!hniRP%IS1C39y|jcrXY&XP=|s7t0$Fz%;d zot!%ZdMFeuJ4Z$^i99`RKKx`Zzba^uyp{i(1Ah?Zpe-aYeGWpV)?hEin**dKl;zv|NQum;y-KryZlAyk2NB*Jw6dks29wi{TnLR=JS8P`mf_h z`@27Q_L!)cRq(_2>@Z*~DEs55+yA4sa4^`=NhYdT4+cBOSb;0cbLrBfV*DqM{-THq zBI(n=!WkUE6_YmppU8&4J{C)Y-7+)NNmH1AU_XD3LXscjW&e%6{D1#<;!%Kq$D6{a z`4a-5|A!cT36TN4|F_=1-P@i0f1(eJ>4vz$yjF??S1vAOEFk}1htPi(xH?Ty{Gqy{N>+-oB8{J5ID8$ zt7^H2-j%Ch;9`iwnG1}J$aI)7ShoDFD*lsYUKda--lA1CHN9iNsr`1VI;~s^N^tUq zmi_~iWfNOl@q{qb_4a-$cCB*RQx?4^*toet=0TGCO;}TS@N@=COCqn2hZTkKE3!>l zqp1pCw*wQf3YKi&(7<2wJG}*`vS&uL=Yt*Q?yFkZuc~ZX+##{x7(l2{P z(J5t6^0vk@OO#M=^!`5vES#tn(x<69ngw`OAT0(!o99_pS;uAnM~`Hongw1cDH8JK zX?h;EAsg-bObx#9s^OY7@-7(}Q4}b&7k;9%#qnnm|Hwn|2p1R&?1EdSQuFOUEj7e( zOZG`Q$Ie;3BD>y$|Ep9S(p4dr)J{>ox$|W_4Cf+yt9^BUVhj_!{qGoBF>GEsAp%#N_1tti@de z^Pr4K=P+DN-#Lh9eWTcDod3Rd{Lf6fM}h?}NJs*@ssD($_~)SgcUeE+&q^T5@|EcS z*$Vz+>VO!r!RrCzv6E%Ze;4t;+43KN@Bcor{!F||1@PpqteP$u{QuMQ_c!NUe|8|Q z>zdz+|0!|M+i?bLa)LNszb}!izyWnqK}$=1{-n|WOoK9IY4zoCd8-*)t1np)UO_(wWMn=Z6^77vz(~iYWHb40?NS%}<|L2)M4X`Bm z?e0h>UsGV42_Ln zWYE>E6Ows_*lJwdY4pCu{i7$ZmQV}>pB~&@z?B7-M7XMM3XnkzQv&P^iOCDRIvFPp zzvm6DjYavP?cOXiFI&}<{ZgMj0zwD&c`0&@99*5d*T!yBJf7|41V9D=M#smLUxTv$ z%O<~f_j?HVku;mv5}zq^*-|=tMh{ZN&Ik52Y+p7{H~sPg%5-0wFyd$t|HajRvtbbd zU)F4M6D2j%oHccDd*it`j71khJ<8nR3yh{1wKUjj`k3yY2NBP=?p`od54T&xc+rCQIg^-_mv=wY z4G>I7ANda&J|YP6Kqe&Ke^O|yzZ;(xvc-4?vxVF+R?Er8483UYG*IOo)EgCK2Yk-H zQ+;C-Z{dT+jXxq{boVFo@DS~#yO%hZ;o84M@-G>KgJM6>f2k)&igwV zo?Z9bV`U^inUnr87y>(e1N?jyp6x``%|rSLpQm8YiCm%R<5^0#pI-qZN%Kq6H-?Q) zlzv`K>_tp|M6!XwlCgc$1Q{n+B&iQtJqcsT|B$0T&G~z}&&w%?$0lzYU#~qVA-gu* z_J*!mv>BrD{-)3Gof|1s&c3odYLoY z!^ruQTl^gw-90vUZ9)Vq$%UoZ4HU&F?Lxj4s>+*M3Q?^fT$;00%=`)1XEC;e;)LM*O7k z<^*YwMOw8BQKUqLUdv$cs6dnV9%+i;YMlcjA|j=01u-W;NncxGaY;I?D2a7uD*rFe zqfo~vLN(U=oJV(eQ5t&ZlyUZ9U}MWr$!!m9O7kZ%%O6xCdON|8=WO)icS@Ltgr~vV zMKz=B#OFj>TC>#YR7I_0l%X4~m(2F!+I~LSTpX}S;$W5=e+XA!sIr9b$}u##y#7dr zC+Q}J-4}+P?a;$-GMK7)MY;3$@Yf@OdV_=%jB@mS>CEmDQQDf{n$2K{3a*|-_P!~ytjR`llyH_lW-znUn8U4QHY=W# zD|E8W3KSnzhU;&h#Ab2+u3qgeR3ML#cG1yF%~ngEgWc;E&Lh!LcD{_AD3{OI1UV%4 zamSi9g|6gWuF&(+dO zg~k7fF&onCHw5X9Zv>l=0Q*@W#u@4K!n5hu%pG2hwl@MbJCRV;L7Lx8r;v~#563+l z>8_`J@*MoJjFcKgpLuI8<$ZL2N078Pg#K{Owm4~aI+;qVM;+R*1GpnYE9<}%-9C@X z7D;oKY2Yt6eoT}(=vf({c@}P^<_zi$ECMKNy zQCYiF3Dzpb8i`8O;YLNZpuW9Y@9Z7szgDtJPX7qZ&bk}X7R~Kv1AHtID+x1CA_T$W za`?oF;5gq~%9B8k196-8=ZAWUV=4XLRRx-k0o_dMdR9D#ot`hv%FKJUZpjDUE{{jB zS-M@#(+U-Kj$!7rT^V&wzUB;zX%Qy(e*A9v#wQ7hT#Aa5#JtV;I)VR)a- zi$we40|NuU-7iR;u3qg$E~(P#Owhh${7n6OZ|cKv+kvsK73LS->>863SmX#2!^0E( zJsD9~&cvS~7vB1X+^>OQq*|nT+9ik*tAkWNWU2{4fbA*=Vyz8IjizdrFMI5mv$r>! zN94JMP}kdu6V6&&_P9n0;lzy;a>Zs23u_&c*om9oF)s~8tpAW)^C=j#{LG)jqYpP{ zx;KBemC;ACY(h@0cz1i@+#$d4E;fmqL~CQqa1?bN^~2&f|DR;u{gpxtalaC1Zu-?i z&0+8Gf zU$0_81WbNUCz)dXcjg#o(B$IyX`{Pw#}d z$wmy-$7}Y>wi?|JS<%y_m2d|;<0>2a8cwECl*WX56T=o2-l>k7LP4Mxa z?=N)^+(c6Db6o>asM98!45`_VD0qK=qam`xG2G90a4JiDXKBZoJKt}}y1beEq5I1y z?F~#u1_@0bX+YPbVH5er1Ha^PS%lVhWL*Gsv&tm*(jKDq@v+kal}|S2xu9LUgm7c` zOb+T|nma;=_gdsJ=`D<&P(T(N5jE0ouiViu#5TP}<8JA_AKbcizG_)4(DhcY+9{h4 zR4np0H{LHmCT^QG@lh)rdZk7P{tTug9y{<&GBd@Ru#%GSW4etalg35AG}|!O9=^Tp z?RE6Md=LHf*Jxpn`524@DsSJ=sqaQfzD5o>bT6X!6B+jS{2+SqS}(W!ko0(l^r`I4 zvM~BBo~%J^qE!-Lwd?r)e#p+}$&qpK5C!xESkL?TxiwPr!QTPS#^!`GOJAFX`q7aa zEftXe?EQ02*({!g!2IKtWN0{faQqQTc_@r87Nc&r$NNQ)AW&cBj_fIqG{cvj^*U+C zsWKfkgD)MqKgu|v7AnZG#j3tI8`}2e6T2_(U{)<~vI{p)IG8t%1nstXP9BkF{|0U> zy=9=Qr=8PUCt8Qk@f|5?*Q2b!K>A|bBVgt|H?thF9j_zUK%2@%r9BtnD;w)StqRV^ z{uc)_13DS0{D>OcYzfIwp3*##KGFalBcH?8W-tB7q1NlxuSQ*ong~r{_C`2Qo(M#j z)F>^Es`3%eX?Clfh&&13=okfsgxp;(*_)for(n*zh0=^29q>FWB!3oIFa<|G$8Wm& z6{JUYe6?@)I#S;-t_k~`A}u5LUj1v<4HuMj)xj>fWF+cZza#P zF!0N)2nc3vP?|Y1aH>g#VOy`HNs01*+nwjXexvqN$b;q+)Ft3|WjP5KOouGOyUUqP zng^%4`}#WH%)ng#&e2gM;FTwxt7y&Os%a8CvVDBF3G2aXjhte0gx4J>Z{57dLY-O! z!+e(`dt50D6(87%mhk?VcpC0*M`se!>(0TO8x1h1<;``t(_p%`?)jrPh{qGvRDsde z?D{@lvt4~cpm|fVjncXZt#f#qJx@OKh9j;Tsxi~qxRljI-@#+1#&oUKTZO12mcaJ1 zKMl(*CMJwvx+1bF9f_=bg0B z#RuaRw=p&Rejudt`%5@Spsc|znmLVas!VYe7Xy<^DBX)K7kClcx zuf;;X69Ea7>*Q&+*lFgddr#v1h(BQAT>+224@@VFJDrc+#0+=ZGLiKs=YkE1H~puE zX9qpBaUDfLVKws3Od2&m1)ExbsZ^t&-Ch)1M-dAYzi5_-DITAkD1?^_J)v7KdswTL zzAskDya}MW`%Ck`$3rmr4dH{yNPN{XNH*+KSnphdaL(&nKb|&_REz$O6kgMd;qs!2 zoby9UobL1?`>U9#L^PpX`HDKe{t+cwV(IvPY|k%)jwHy@_U?N#Ux`SsaGTVp!oAI4 z0u(|))PA21j;9x`#sy8oh_5v?gaKdgG4FuFz!<8{!p<*H;T+D`i+760tS!^p1tN{ZXv@{UcbNTll+?K6lRn z1h_;Y$&Ada;>lxWiO90(qBn9Hl(+N_`4X-e96l>2^QHUtd;4(eEgDwuQXWd$#f#-+ zQ=RY$#oZIO=W9b-rLz{~=pQpmb2v;oeoEAvcwZSPo`0Ru>*(sxX%{x$0%Btok5?QK z%xU2dXG$JfMn1d$r6fXx9mTdhW`wDYn_L7W|X zCpJ0y?DqHY^Vb8$w97q|DQqAC4XGnSXGWZW`F9~l!^v$^S>c6G5{g-oy3# z9wU#&D6r4FMPDFA2c&@4ZsBnS5^Mky4z*VOpi1->rFI|VRBY~=^Sy-ohZ)n$K*$9h z&Azf|bB9_LTmI{P>B>Ydhx%>e!0~g$;V+OY#MN=Hed{}FaXvC09js*6q;mGL=o)Md zWNR=rE^b7Rl|KqC$4O^yueU-7N?BE(BbtmE9PJjxgwxuQkKlBZCz_d6+qx|mZSkvJ zUNoxPnUOj#4RS%i)*R&Ow`PuF3y1da%VuioK!L>V4}9*K#T z1KY1&=oQOxBN_HKJ2w-EBkXhE(1$Hbv!v7fhpUG4{FYFOHXTgyt{O5ZeX~-^@U=3+ zuSAOad6tW3t*Oex#A`11^fiuV{M#Hw-W!NMd)0a836RZ?jy1baFPbl>2Z{K6xldet zW<8>1ZkZ`Ej|*0@*2%cZv$`UA;bVOe-E=|QJMnL!n|dH=p06?8xIg2KZ6b}M@fAP$ zB{H~b!(iu*JXIz|!u|xNn!m)Ngj~=oh1ZvR@irNeYqRW_cVDhsWbDvvtsMW|! zJR!;u=m!S9G_#)sQl6pQCx4GkOL^W>6I@Fj$lch{csY0ntmOOZpX&Tee=+XGdft9J zS76;{@l#SadP8ps!ez_dbKU+~@Qu~x=BA936Usbbg@%DY)kd?{qFsB_dG}e|ZlzJQ zjepj`-VJ!={u+tMIF9|dVwBS9D-F?+RSBUdrC3r8li4AzvfGf{cH!7li09^EQ%1Z{?g6TlS_q8U>HH;v zH&q^CKJ}hT+)rdcil9vp;elu1U~gfM~mNJ6$kKn?Al8R}c=bFd>}WGo1L1oq-5YZyWR!v|ju+W?}=! zyzz1Tr@b+%>M|7q=*bh4*AqsF_BemOm5CEIb39vqPtozxNce+K=(v`5?`RFlfkFqi zOE9ZTMeQ=yh&OBx$c&J-ohvwaqeZ$kz=h4 zedAQ{c0otsYuocwDueRqPE9sD00euGi-nJ2m?XyxKHiEukv5{VtT`@nG{U9pi;a%y z=Z;@u_`a!zJOqTWZmHnH`7Wgsi#eJ;VVc<@7_1y}iLuBD>pQOq)&RQ*)j|^H}5cj9%&msazaq_f+jOEtkq&@%1#F4{T&M9AE1>7H~t! zdUm&1t-)X(8(X?=`*s7@PCKqt>Ooy&K5S&EtaXg>zvCSf!K4i0m9{`KD!*V>I#`BJ zt`=Pc^w|DTR%_dHp}$nC_OLFHasS&Kxi!74(b*mvIZ^ELU^j)cW>M~~p%C;ksQ$a* zHM4$QB1WVVr>@yoF2E14|DcVMx5r#$T^#5fME+B#Bid{t$^4+<8=Ci!2ymShzScNb zizNfJW!iF}KIRXi?3k#!bDc1t2>0w~lgQ9id1kDTIrwq9X2|4cv{;>L!}lN}M-Tbj z@}Yl?`vK~`$tXK9WI8rqOy2PNfb_xw||jn zv>V?+dda8fI1T3hwqE5taI`;tHkHe0%MRViBt5-+_}kr}2MKnlLAKuSuOFy0YD2k* zsJV~~=^Q_T5#85rReD2D)7_2=D}2 zpl#M7g3!S@Q3A--$OX!{eg17a-TwB`Q9yq+|5w+<@yFz6G<0*xpAdRpbjy#kUl)^+RfhM+1@VI1iF*2g{Po;$FO4qT@91p5C!fk1tcJdqQ=YfhhwL!UIfC+8)S->+ z2XzALp@9=cxm#E;_6s6yo`vULy*f#bSSbZtEP1o|1CAws!X&vh*O_0`)Z^P5tDp;K6HCUAg;OvxRGIDD;FI@q*6mc~Lk zOF1(+4rckUw{zB|qi05gQy<}AU~-hQIRQFkWLd3Jd9BB1H(EXpb&X1s;)nc>w-n|q zI)y$NhbBYuW78h`{$xZ4-~Vy|e5H-qfV%%B6>*v#UC{G*K7DFogwWS<{Y3m!j5?g~ z=DiSL2TO(}K|9ZQo1s@UIN1g0m-tR?GBy7lwd~!`+GtK4t6Qk=!w2 zXKgv(rTNMOj2nCoE%FzfvF-fduvo;>#KeJgpD2z)%^w*}?rP61>zQL6l0isqM=#;z z4FsGwv&e68A4xuWEsMB3AuAI#hG@)5ey+^lUt&R}_{C9S4iuMrZ>ox%zEoBqRk4Q=J9nV0q*bQ4>=OLa<0J@(Q;X&9u35T#~rYCi7vam6F8COxswYwt`rqI$+gneL$*P zlCs-aQ!o$J8M<^{S%66SIXmg#QB0$qDo3sb`~g`zHrq!p@0@jN`OI@pCOi z6niP^XQW`ad54?JH=t1Rl_dZ9bKNA+i<_i?y2gYRKaqWb{n$J> zndAHn9d*O!?!Dw&p}?MtRM1ylN>sJD{?528RS+hDX84#rQA7aa)_IijTvrCAoj-N# zd+WBMh|f*mqHEe}lham86<_S2H|C-}_-rUI?YBRXzHs0%^b}EFY=qXjanbJc)x{E< zQJ#L((%d1MaVb@3iGkMn=%Xzza%%f6Us%5}(ZKq=pXcV>WB4Q6KIUgmn3FJ7R8)(jv~OO1 zW3yVxQB<8M*QKLlsMr1{aQDN<2+frW(zOhC@5I_*tLdcTPb|cNXYWrOg1OSilV#oE z2LosfW^Ob>*ObFqp;Ky=fK+FN;=~2;S3K)Ahea?oi}P=CMMW7Py)Mh1QJ55#(IP=;wp5fN#alF-IJd;5x zD}-gUj7j@(XVL_%ecBQc0qN^@@<=SLZlWZ{ASwLXkec;x#VIm`HB{87;^lIg#ev!E zaXfV`3cYEKoo0-p|K|Pj&|O8KPk+Y3uZWMe8k~lWNX9gZz;W6|La{I7w3tGWF}!p{ zX0&~oE+$%*)TponmdnC#{*JC=1;xQRp$=^9#6Xh zkDVi1gISxUUKQZ<6PVVN4tVDf;tmmZX z6Eu3n4fd)?Z)hX548*gC{sPqyEU#IsH7(qiuf}Umksw zKHCWluO04?=eZk!{kt=%HVs|rSNHCp*0yz$!fTz7l^i%Ia#_RA7m9luopYx{yKf&Z z-Wwgvwg+-sE`Ezb@a$vCm4niDR7GxhIQgo6(m~6O=Np&8OW!dLJ;$lks4Lcr{{)}o zpkC!^&wW4U{`u#@_5iM}&%0f1(@(aL2H)b0UxIq~(c5p@khNNKXHW0Czs>H15znM9 zIsMSm(5iCnc(FZC8#^7Nuw$-;b1LF=&|gHwKkytr$#ReJ|Llb~A8O+~CtvM~MgB4u zUL%C2^vmPNP)*z3swc4*A6bD~e|Mn~#hLkBQdzHusKiT>gqAg!+=oW|;CJ>>6VmTo z6@%uBoe50wq8aP$?t-dV1}$H%Pc%SYxp(1eF<+qsl1%D-lt`?IS78t3KY6t?Xx(_w zu`p}vP#*Jb$h>y(Ej-1`ADO9)ySGGKKQHFZCmVkt_Fda-6q{(pOTQ42@f35mIO0O_ zr*&|qa1C?c!sZ;)8?3F3&3la|BkvFyx*jPv4Zi*OC+X%BSWa(fWX%+xnNyztGjRSR z-cjG<=w2N{S4qiZ*%+2(YZfro9bt*nBgkTXB~r++&6D7dICetI2JjDc6V>`c& z@p9IBA!@-FzfKbLCi1KyYQ1$LzK0l4X;!>VvLP@EY@;{{y-)vW6Sp?1cVx!AL3+LN z35WTSg$sxiyC{AZlo^#i=m>Nuiz$^zn(D&w5elXbB%TF<=0bv|xSi97#-&@w#8>0Q2C z7A6M}?iSoh6)|0?{e*#N+$Fl7){9;GV68u1$-5NJ8p-Kmr|D!aG~b+5&emf$=>moL zvNFP3Ir+=UGt-$)e9s#vd<17Ge2&?1e=5p1$!Tfn2~o)f7Z}z_@(I!K=In3KmMX1xbBg|UM%wnpXPW9M+n>XA^|6t}Nma5U& z-(W(un8|JP4Sy#AMy%Y5Co-zWUZCBsS4PgbjVk(L@mc?DA?6mZgI7*L)5R+#xFM|_ zyQk-gMx*u~+a)v1a8xH+HBC#2ErMdk7^+Ur+IYRvYAKxZ^XgZEhK6sDDFtKwvhPl- zS?o9W%rVRO+DlN-OJO7@Gj!Ysx19sHwQyM7V0&n4avXLm>um#7{POGyTt&EC4#Xi_ zvn!aBhAmeb5np^h48~J^k8mNR17~}GLE+NU+Ss_n=e83??<-QFipVk;bfhcmw+V6- z`lp(WM(9Hp^l1HFx`pgm8NGL>-gxWoTDcNf2^TL}{-y1^1+c z+c9(pDeWvxna_XU*+zHyEjV1#^2qsMBg-GeVDr0x`(23fdeoID{miZh_a09x>1$Gf;$}>50y;O_7{@?jlw-11dO}{tg2dcQm)8DJUc)%RCOja4gy1 zr~QMkkYL5+KC6IsPN|Xrq6$qy*C4gVmwp?s7|0T>2$RH<|E|;cT zF?Nz%_puvK9d<0d!AntIJR2sLHnvEwmm13!D@&FQ`9A++CGrhPmITDOA}7y@kt!oZ z(fiG_<`VVZCmdoQeiJomazD1(+JZjq8UyC9m6hbYrZV4nMJ<1m2Q(zA$Wp~f_- zxf?{^2Q%~yzDc>nK8GeWu8O*i@EghU^qBBa(Jn5T1ZD(f?7!{DH=cT4j z-lQ0_-I#Ja(yKJQ?lxsLTeMU`8aOwSQYdCuvc?or{Im z&yr}{DgFTgcDH*HqdLvLel0D|d?5&$a0m$Fz8KVMlrj~WFcmc_2hIOAf7^=$*QU|i zUk0L>(szaytdj7KCH! zfSbIKfj#S_5o2q%H|$#;5t>jPd(8_V;xlp`S4z9%25(74DP#V#j9fSUfrQB;^f)QY}L_#lw=co#|UKS@hKxqVoM76!?&a}`iR|21AALdZWr z){7uVV4Ii$ck8NAQQiN0^J63vaB&Pfd?NTC_aCq^Xv2Kq*5cWS^&|d*i2gV3_v3RT z@YCtmj*1HZ0t{0I04#)%kZE)R4gk!Ig!uZui3`CG2EfI1Cj1g~s;3xK;lP z;=ka|P64p9FG_*o|35Xrz@uNrUjf@&N8SAIrv3{s<^bRkoGt~;|HgHH`259f#a|Hr z1-CdmfSt)OS!x7`zrWr7ml`$xZtCBgpWzJO0*|l+WK|RY7mW~qacl4w#D5_)(i*@{ z9$uRAe-kV}eEw47|IaZ0!_)uYW0+Ge_%%DbZ^yUGyBj%0bBl`##ijz4#sfd@Z-7E8 zz^%!A7ePIgLV=aU;)a5YIXZul0FNB;%QoY2Yak9iZIsOn`|2AMyUp_YMvg^&LxX&? z`p2c^<#x;7RsNvKU3z`yBud@v51jUfJ%If`k?Zp>-fYf<*2Mw}?%2=?2?wSR*?)!x z_ae|}>!h8Hrf5AV=^Uh&pTdpm)%&)2f8gW0>pw|@g>`qo{Km^}^I*3<=%lTkN~K%P zczj%%I70pi<;&sn%q$x7Gt=MmbTCThu|e(ff_V9_%+~|j4{p89s=H^r)7lS-eP~ec zfm#Q8?Pf{9*$@^MMZ?9F9Wjps6o>v;E6Lo#!p8b~fL}{m?U%~w`AUOX2z>lMc6QD? zy(QeQPG2T4eH4+XCX&l@hj^DkcLq~P@-utV@KnC)_x^rUBtkyfongW`buDy!G*N&1 zoc;v%**3l%{r|H1={FQt9cbI_U7Z%MkS;OVNX{yXaHQ+{#>TbHG&Mwd#*~k&tf5eW z5$IT0V%L@$^+zsh7dOFJblo+FbsV18nLA?zzXB8I)Xi1PgdH7OACL%1wBm==wH8sZ z-%H0y8uiDqz|PFfl=YED>;9MdF(qClKRzbYpdx&;EaYv;qDw_h%}1?TT4PXB-*M{)riN~VK8}oO!e5072sVb4 z*R3ep`{S_7V7GWeh%pq`+0z5Vokpjss=DBv{MqY>9E)BjNB?dDC>s9#{6f&y6icc4 zgJqX~WBph(X`<&RT*Q7~CuIcuu`o(BA>&gl&pI+H2Ns@Jd7oGl6ZExYohJu5W z5tb1X<1lzX6TB+)Kxp=2w_Wk=?HhFU3_F>Xw!9g3in+1_KQ`-wyIOb;>3ym?pk)Sc zOl>5JvWFt<8l0njHcc_bj(e%Dm15`MG+yh#ued5XZ&P%XF7DxVey{nWI2YKf=lLf3 z-UjUKiIJ4IFq<>p8uv-_0eMKN<|W9JYN(|6_idiaOO!p@!QtkSoE7-KE+1&YAc-FqQZ zJ=U>;>E09=l^8)2!Pc{W=$+zAs4<|w8=dK0aM;(28zl4mD7GMHq*r*JHyshi^6Ob@ z$m?o3k56sJ+#SBi?e88)`vZ-8R4a{V$-?cnnDEaAGX?+ol zq}JBf+Do`yIK4LBuB^BAP_x?8+|WX)nD4VQmd4|m z-gI+3`OEqpJ^{fbK7mmL+C-MYMtQ~02w}Chtb-=%hPK?+vgii~q(Yt!J^57_JG+3u z=g68*2M^S44TWWoXiil8U8AFH1FQ00+R~{X{rM9bpXTagpY_k}x5au*x8a{NYvPQ( zGx>i#>rAtgUa%`ou_wu|21-1q)_l5lW*a!jv(}5FQ8gweCYE2G*#A?*Kb@n9(96%i zLZo<9crp=qonx-Yt9K@~!@xPmdzm*?`h9C#^I=d=VrR_!NvhZeWA&wbRjb6S^10x| z3U(WrY+CN=(e(lC3H8(Q0htsrk&2!Le+QAG0~_0DVkcO!&3^z~wj-9wpSM$(R`Tha zXEEmK=HAwidCMpKtLcllw)X%L()3V_gOwcA=fSt`X^oEs*IEU41qXc(LJ>1{y}Bkb zQ~cB3S6bjbxq|EIDxw)V73;Wm_6pA`jfY3ld&GrXQoOdQqav_&)qoEly{uMI0hUSO z3-HbdZKI+Op=Q?>M}3QVd?%VOF$pwY-~4uL@}XDo;tFf7C)tg4bp&71k;!GfLtH^7#n$#fDI7nFq9oVKbWDfdtpMFuBC_g3b{iZZgTTZ$412=1P;ty(gYit)T zPmQUCL~EVsNe%H$mrQNTSrAqIT&%M(v%0^{uMnSq$(vRSiR;FC8&ShA(xB-` zWpeWICH9I)Dcx6&Yfx!E4^zsFPmd1a9rBS9b!#$_#FLb2>5k-=&px%-W9htFzM%98 zzE4209&JVIeG@LYdzXem*W}{I`EGGpFF)sM9-p3t-qp!h`kD9FyhnHYlxms1Js}AL zF%;~wva%8DS-ljxjPeO+h-feou3l6_L^b?Qo)$;k)Mt`9dLt*X+XH?4y6+|4OB3R> zL62|!+>V$77d|O(A3TV`Llr!fVQwYR>kzvmF=%TqSHt}3r2zKSivj@`N2PUtM z`cVeNZ`-dnbXS7Zr+lMIttW|I2qbv3?p)2qz>@yaGdW%)S^D~bjoGR3kXAnJl{e)g zlX;ubNf_~Cc^JERoO)J1*v)%xk^9p&Z@AIn2P-Tpy1pHUuBG#cIN5jC6>%@5D)Ic; z;{o~3oZ+M5okQWv&o;G!q0PILnBLur?SWgK1uvc#iiZ%nO1Wvdhr2@Wf}=X(XAuWe zQ%X+zt@iP8PLY?XNAXKBLN$J)hGe}n2gay2gaC<4c0w)wuSkUtM1A~5PklAurPkZK zv|C@wbeq95nPu|osbCaLkVJtNN(CM(@PQ_!0ehdKs0U=i z$yBPEp6eAqP&hts#&-N$#E7-gGy$n zEU~n-lwJ|PlnZ@|h(#YsAxF5h%=)8f8>FL`o!Xu+e{Bxe?CO7(~wIbSo+u;8Oex5#4E7wdq<`GTMM0u=oZ$#`{q4a zFeVVma`uo*A4h7URcqwfrPm%GwJ%VvV1(TBhU!57>bDdAERl3#N$FfiySYjWQqVOSxwUt7kWaR8tH zg(Y>HstoScf>lF|vY550^qlnqe6i|rCBa(F-|Am`R-VLO9kXv)0_Z&|g=lhe$X1Ad z#tkTHtZMFBF68T+KS4tJ)lg=qs%SQ0K-`Kk3>G#-Io311_yV+YX47xrQ29D01W%W|q)-{ue+bL~2Q0-PD`k~go595~ zXOL$#u1LlERx>uDQ8^gxYDd#^yeNqHYP*QosOI6wQIq>%)k!m)f#wJ}L{wNF)|88r z)6}ZSTWv$YQM!00H~3M(3GDn6^vo(4!2p;Mo=ZS9mZ(lm1~fZCo)kJa&oi8r#>XsI zdS!#KhK^*lR{uh0-{kr`&rl}VXz)x^7|+5j>Ybf1-le9jb6U+idMWEs zr|Sp&Ya))}d{nSvzC6UyOn$zpXgHzVm`meE8Uu3M6JG+Clev7U<^Fpae}CWz_-n{Q zwKBnVK^VBV2>Juj81Lz|<+b`LqZFRv>9r~(L-I>hYwQ&Z-x$^16R5ltynr8128g27 z<9T2d^&4TG^fa%c^J2xDDJqsJcu$Nx=miA@aro@<^}>iol56lNb(<-ThGGZH#aieg zT{FR0Sb4LVjnn!|9V-wq^W6oLyYO${=E{~7E;K7q$tvsWZl6%C(w;pcZWB@SE96kg zEA&Y;)W${R-#HkUj0nG+NcfRLy58rN1O3>&vc&C^eR9yJmv&N*#~1*4J?dr~H-qyi zL@zFe7eW?Ht}dqT4BMXB0;_iE8P_&%svQ`oPBPGHXKm)B$1_DJRjV0O*lZ>hEk4<- z2tPc9+?1`Yv^+f4{IMB~r<2)_CaZs0gTQ069%qdqTy8Y=&UGqSzAc)y{_+$+$7*p; zZlzWC8?sX0z+k@C0PE)DZZg{rO2%cr>gEHx^-{J~3MK~^SB2#rwPXUdz(90QJwV)e zY*rr~cBHEAh zr(}@iHnBq{J%-E4?f~YzYBX%OgaVK<(K2peAeOsH4j`qz#T@c>8^t?(sZC%+8|KsZ zTO*y9c#t(?61Mvnx?SJn==qK$7fIzjd!!S!=SYbw{Z0K-PgPyc(WLgKJsEO)uBLHD zJ-dT#s`DuIobEpsTGKgSf4^X$n_{7 zcm~EM6^;Aagn$10x&7EfqiL8J;gU{~o8gW+T5uQ)O7}`8_G!cB2Bg*hr6r}B4W(b= z(60CJxn;R4hFgmLP%}E*Bl|ww$>4vizNGzm(;e$y-VYkMWId?It_FP8dW} zUx(3DT|j&BRe?%UCaK$4!d*NTy|(^K zM;B}H%NsxiND>Vvs7s0Xl<8J|&)+kpTdNeg5RIkQAnr=1gmewahz-z%g)GYgSr2Sd z0~8`E_R1{iuM$W16NJaQe^+tKx8MM`kjWC)xCEeuOAFG~RGU?gXrX^Q5|(4`U{AN0 z`sy6BqxWFFBXd6mK3?b0+K^Hy!fN}QsSoB;3H{YM&+j{Ene21$DYy`IF~xe*o6j=sJg z^=G9j;xtH{tJ+(N8+31%u<+!v(M?6K+n5PIPu;0?^uAcJ!ME0ruLe}=QSmONHkvyD zi|_7&pV&vQ(NScvM7>SdD&&2;ioCyM4;~u6Z;KxkOdRrkY<2w@3%fALn^4pK#6k{; z!VM+ACQod5Ueyo#D+3&z478~2x)PlSE6;06;-pk9)w?$giH5uL}c%TtO@!Z z?oTr@k;mFdfiIrgn)FqpCSIFka6(Efru#(rFc$9E(qycd-JNHAO&BniW@wcQmDBh6 zN2ly*3or4rS`$yDspNaZQ~LKOcgv^e&GoCzchin_s+ZQO1=W5oAwNFVz$65>>ORgQ zXx5p_rt>s#cx+)Wy8OvlZ8|aCxUM~Fs&?0`vF!Er_x@^RB{DmDR1>6&QNrqW;JD&m zhZTrKG(Eb$H<$5lW=7R=sXk7t?!@%ERHqKr!U7MM-TGHf1Bd%H4~<$`p37LB0_Tug zv9{1n9d{I+mMWd3$=zyE4V*3628CQzbQDQRcdJxFnRy7GJ2$ue_Gr>hCKK9bI0X?#`(%1-y8M2@&~jb{j%5BkmE%Q*?>v^O zcvL_)=Ys<4oiNpoq&4QsBqpQyW3)amw-+|at41a!c`$6TR64=dI^3qat$&tXBK5o< zV*2w<>C`hU5}cFU@|=yW7Aj>fj+8HNpP>R-`DJtZl=yV?5#BpJhu%L_7*GH)di)Yi z)@kQMvfR&9I*q`@jErKfI*rBc*;1XNY#m>QPPVMW!hGkNE(RVRL3bQ5x7z4inQ3B3 zSJ8;X>Kn<|d~;=h8t_(Ofq%8jQv!@_)abess0j7CeuA@g=jF)Tp~6qbFSxR>_c>-$5m#I> zBUDG?n_G~se)mq*;%RMar8y&7BX>qSwBN2g9tt?yWAZ*LL`?&GHF^H&dVg9*i`Hts z5egaEh3=`(5B6CT+Bs#0u0NFuy|quS(qUKk{_;2=Bm~j@`gr!B)^z2^KL5znL~bmV zlHws4ErLSkSwKs@AjsM&(GZx@QC&%=_O`|$l zV1P%r@vt|(35>yjaChgX(+OTkFR~YBw^^XvU&{+6G{Ts_9B&`1h7v5(YZDm4lp%$6 z6%~5MS^!Al={MjIFgXJx67g3-H?)Y4{GKy4PG1;VcW19&S}iD}4X5{z&qd0q%uYii zWrE~Uqh~m1RY=L|3$Jo{5lCjU?vEnrOQ(W$J%3M0T~>#nD&MNS%Ev1YoR{_}BMo2V zL6bHbu2pAKWj@W-+;U+~C8O+hGNe`tST_dthGV_SPASzoUI&Vq-_G6a1CoB`J70cT zqFT6^ka9pqyWU6!6%ZBdgs-o*=q&(JYw%EkF4Gf+D|JRPbaw2RTv6cO+FosZE`qGr zcYAh*%d>uSVLY$x%C+e5iPZ-z`)4XMi}xrETd9Richs5z=BSO#2aHhPH5}9AhC)!f z9Z(v(oT5usl!XafcK+#V4)gj>$I}w4qB$3>A3bGz8hs|}{-W5(C)>!3HN9%}S=rq{NEIuzD9fd?(Eh;u?_ee14Cw~q$3}&h+bG@6=VnFThPIMrA?gcA7p>sykXS~bvj)X@1PwI z_(U1CwS<_&4%s;)E#@f0XP{K;srl)!7I$QOAIXWm^i=WZA6t_B>m7>3>t7~W`G4)6 zlui#t#bWnGyKH`H?@Jh;nd!KwRd{#0KX)p+ZDnrWke=nMyH--+n4P$P# zCF+2Tp<`SGd9a?6K2aqM&36SiclNU!%1Q$O7tg|gtP_{5VL-A9BW=aQy%hoW9OA`m z)<%6kGh;LG->>OUYwdjY-gKR6VffHYX?l1S;+hODoDC1cWd}57{;Gnv*(MSz6YRx% z%P+0_ozkRi=nVp!WvtHdCoRyUhZfxm0~cbP>`H1WxuGbOm+Y)+Z@+hK&6~C{ zPK1e{_+as1(wTY0vN0X*Z7Xsp+h|Y*NgRFaVCvu0=GZouuL4RKRh3hzFy>B;cH)LLU6bRfyV|rRy<)f znil8har)#^1&xi_bUoH_bPcsfp&tED_``~e@l!dHzBkR5>LJ^ zAm{CccYVFpz#0l{@<+z@mv12r8z&}GkRmUhX2QB&AN36~%GL*eb-R~WE zq0Z!m4`L~v0EBIzY~`O0P%LtY4#vpwbb=n+JFt*&deO!^c0OFmSG+vCq=>`lCQx44`X&O_Kw z!JL-M(2jcIgXAU@!ZqXSH}EjYI-ymG5s}UXzvEFQf*bb35KUcyBM2dq z5MJt#__i^~H$MNjn_b6_aGmELjt?qY3(<#|f`!1(uFd!}&( z{ALensHLS;f;Y9+%R#qu*oi4}Jo_R}**m#_JK8G70`tIXd9R_GsOX~*%4gH7CaVW00S@lIQ z{IV?;k~+d&>G>%PSXP$Wre%HW0g9JJTeL5ggZyYn`b8RLv;u}MF6{A-jI0Ho&rYBJ zsRd9rzow-y^`Kknt_Ee?!Ahjc`$%)`NcGtgHG3m2EnS`_hi_27N6_6HQC=H5J0ifx z?;cyZ#b5wQ96m+`))KR_&dJAUN88kbTwUal`Cjz7VT&cDgSry*j)VmT-wsQUM5e_= z5H(-o^YAQ{6|9CDhvKP60#b#&7Sx_+!VTerXUzY)umg)VyTMj=OjtENm%5&>Kn;T3 zsIEEz3U5w#8q+aNtlbgj2iS$0m+P%G#Bmd9y%=2hnBL|0{b(kL;0I@JwNV^Sv{>L4yr6AsiU$XG1@ukhV!Fpn|~E zW?c_rgPh9Y4M|j9XQs@pr30O3z4qPpu36blaqD~N;}?0C*bTA{VNV{lJne0z{T-tR z+O+3Lo6ZC_)P0jo`|4W+--P6lu+8fhnTR|O2M1}^HjiMm7HMENSdAC=)8F@B^pB&T zUY!|Rog^o70mT_-z1#wq^WxbM&snox!D@PL@Dy^!AIQk|Yk!0CoTK{G<>ZKfGNvf7 zn$J7DV^IeOnnDZnGe7TpLT#N?n?<*D0Q26-&>%kEMR-8IJ-jYWz+&43&w26|G4c(^ z2(ON|j=Yvq;N681%)3+WtV4g*l~Bw?I?&4GV&LlYG2Pt!e8>2BdPJk;ax;X{cATlH zr9LvH9)!;-%1Kp~_nL=op-DdFI`|t>&Uj4^5BYJno$wNgMR4qXv0D$m1~6aAEtPr@9$CQ6f1S zWhpH9ISEwURuaQr@IakD-IAdsC4MZc#rtkuYg_pV2|M*2NcQ`8K05A*6LW+LDpm+$ zB?rs0;hu$dQ%eMi=C3K_v*$brZAos3k$tWj8ZZY3c(>h2IXM_;8wMPVY{>fFD?H=RsUJY0s1;3-)d%|{XIALBZ7ZEp!QleJVxmJ+k1;%b%|3D zdpw!H{W07t*;1gK_tX;H8qd0TOu3GxlG5s=h6Cij(Jqd>)RuI`eo{^9>Vr44S%(KY zQGL5n6l}@*_EKNSmIszO>8Il))am-ysY{pjqs~d%)l)shnJx`|7Gs1YQGc5v#PYmc z6rhLtR$vzx#8n|r+_fG+lK#- zp1r+^wU(}JaX81`-0IKjn$lBeEZx0T5bbfA@4)XlCgcP13@|@il6SiI-~_o`b+9lY zTKBs$b*l=dC)I#DBoH_xDye3P)0kswGHz^5)Yu(0>4t|#*1y>F2?&S98B0O>@327M zAch2w&vN_p=QGYcmX=t3S(bBgnboLksj&2Duz%G6fFS)}X!dtwl&^QRflpErCq8~C z_p7m)#uWZT6?Xs<&^l&crErvhHi!#rKVvzt_ zB<;}zaVijp=6;A!QAACI=qYHYr_P*8nh^2FGO_2f!P*%lyV8_>^<=H^CKmUTSBohk ztU10+7q)0tHS!6D(XYlbC<`b9TfJNSM4+kS^Y9_W+NCtQImszc%FoL-y%$!*4#MkG zm#U6}4Ys)jhkV|}eZ%1TIp-b~*~H(n0S-;fLxG(0stZ@(WqPnLRp z^<-}yD(+0)0(HM>SVl<^S3&TQx5vy&DLOSjmkg2_aploS)>^BXYT{tbjf6&A8hzze zS+<-TuwaJavQzTpJLJRLCLtd^;wU)KqcfrFq-n~l{3V>11+4|l%e^i#z_KXQPo>_D zjfn!PXDX(Qwd+&=QVZhnrVR|#xX@xF^%E!c{rQth*&L&|gcg_)Jk%Eh&?A7lZ;#GU zYd@rE+_}{sG>azJEAm-M8}D!luvZX3&A*D^PcYKfYhRqtW~6+6N*0NTN@4KP5Bw-m z4>i%BK;7KTO&&t&e!y&*La#C#|LU()XN~S2N&BQQFa6&{E zs7%rqX~N6)qwkB9DX}i+GlmTz4^CXTPT#`#94~ZK5MZFiw z*;68=%G)pLUbTEH!w6johrSZ09&pw z{lD2QKT>^RLcc-)x~(f%5XU7H#u(j42_>6EOg1y827{|4+{)VAJa{iryjZ&x8VTuI z^a!?P){TgZtLdwa36u*vR$@xZ1#durp{cpGUqb^2Dbs3GGbXPsdg2fVkbZY8zl+&C2=>lJ43Y1QCb}T?L zl!S>!HW65?j~JR09GFC$be0-7H@MP3J>P_keJHC!9c%R0uP4IC?F=OH46t!N+RiFxo4FT3A&8QZ zk?HkAwhSl=2^kOXGq2&=+QG^wZpHvtvTtBZ}OxG)5vCCySI^^R$+P z1m=C)?)-tNu662+N6SFg5aOaJgWr8^U5;1?q zM!xrW!QjC7L1{e+V?7AjvG?V;Ura=cNci~4m7JHbfDocM%(J}o{YN-KwJf-BHvPn; zWI<}B&Ayb4^?k!cZMgZ3GT6aLoyma?c6i?s$;+OdY9E}N;4-4U4sQQEH;>2F4LX#R zkW+;Lja19RZp5BN~EWSj+uK>H4exHY2gBIeu-E*j}so7kIt?QhhPtp=` z;H~I}lnoEBbNXcipnxyvKl`{W3rd|45yB;tbYJlKik=Ru6=K|*1ngZv#H(>>&HXX& z%lCav;KF3hugI71%63bL)6!$Y$NQIOP@JNFACWg4Fg?YfT#Fc!#e*&PjjMOtdy28t zz_L0DU%y8M1r5L69o6g{(sS_ga*McRFwFP!;y)fgpzphem)^U%k%>!(ey@swVjeZ> z8XrX(kfiBO1Fjiz6#6LQaYP3 zSMMWWewFu~IK!+7nUmG3?QEzUa2~Sq0~PL{C)D?iVb>PE63DWutX)*nc5}FIf@9)! zD)w>Hkn*&s&%Dkw=7LG<`8|+!zCpKlN_!7>CGKm2>P5Ljk4((V`ODyUjB{OG72x8# zv0b1xH5Zka+1fv(_l{bmpsyJ-bYSHb*?p*kFHP@qHP;{|PF<=ftHmaI5B4{z-;v-q+l1TpkxFDj^Inv~X@`kovbyhM4s zr6!ZQs1z6*){o>&Tgs9iyHe~41@B)?CDW9>^h0%fzzGXSi+)c7A6YfS-?Mfwoe zax|w9H+B&L+oc4QH+SOg_sYJ0Ci8W17L@IPoUHKyd<+YLk1qs9uQX-f;2Y5!&9@al zg13IO%~Xp*OlRvm*sF~_9;i{EtRzm}zh(bELHUa~xtOBh+hEB-z)A_coulOIjC1=K zL7^&n4mW#%9lf}qNkUN;L?$yaxzj#BAJx)?OvvfqUyky_A4VW+X03fa#@5NMGgA7E zg_KlwE@^q+=G`BUYeq0XI}X}FTt*O}ecd0e)j+bROl?&-;8ei-o-*BuN{l$Ir zTMjLNYtifZ#H8>}2ck4xn?lZ}f^DI>xH5kg;k5C1VrR;-C(@Lh-N!>8M<7S2lzR+W zXrX;T)dAO4tFnjkV&RrE+PxhCD8bH!=2_J?`s-!H zPH{lX99mNm;;EAnQuLC?nWZIHu}Ck(^krzY$zAxMwk4cIyFOUHqv`S6o5IsYoC<(N zZKJ;r@qoiTACNl+22e{&>6iE*S66h?6T$I=-x+OYUo8)J)z>)H@)2~qisn0eZd^A) zN+y;*C{(H-=WFI~()gA20H%pt{ug?HURyol^#KBHKkDkRfEr*|W&?BM;L~!HVY!qc zMY3MmG#%dhNTr~K#y8!4qQq?EkVzU1r)Sr~>ZT|GPF%oyQ$e>A{ILYWpiojjp?h-T zD5*-?J7Ee=ZCylcZ1`nUM}aaLQpo>9*IPHm-8EgfgS!NGcXxLPn&1R?cXxLPE`i`~ zf#B}0f#B|L!DaCCyPrC5oxjcppo*EAy?6Io*Xn-t%U`f|-kwI#(w5hP9GaYjL2y<% z*9agl1Nr;EWv6$p)xcjzL<08%e3LYkub}SFpP9W_`}Cg)A)oc2#}NLcJg`&Wz>)MA zJB_*DG;$E?tc38A`ZZej-%CsV>O-D;l&D84h8fN)n1ejL@T_x#TLtNG zNEUtGRwfR6bY7&#mqY`_Z2yuqld|@9{saxebu$&9OS!bPhwOQlxhJ=!0**Rn>@j zm$t!?DcHF>B=P8;zKI48325hVtNPm(_Mso^$?z3=aS4j*g}>ZEHB||pQxhmzF~*vU zqBmLhpv>ZH3@v*g^Kz>sycI+-Oo#BMoBG6$qLXd7CGRh{uo0Bt1g>4L&7c-8T@E}) zOO$P!oPI3FcJkkG=ldpz;Yt?Nc#{Bc-m1 z2px1W39!k#82`8Tm>%D(N3&^Ips^QogT$w2_?>!lXPGD&-WDl2DMP)7ai6q_Hg0dm znbX2-hcyHSx$(baQlb8xSn!bzq*<}R#$90P_p`}31p^b<<(L-~7Z<0JLyXKd6KnRL zs%rt%1$TCy%s@$Nv~fe8`q(_MC=u%XhEYaeEZH50cift32>;pDMR2T!FwI`kVM7f;YS03bf<@6H#5JmiX{Eir& zxuy`EU-8~f!fNo)t_97>`R1;JrTWHtn5Xq_UgH`dOxCgP?#hYD#mim)J2WJOHqDVk z^&R{w&n+qD|Mqpc8*{uT_l$-nQC13>eB_i@@~4)8RttoDVZmVLyE7EaGZ>3hCZ^zFP_U@blxIg}$EMzo8Y8Ar@+ezU7=4dQor z*E;_MTUWt9pqF8XZYF9;+eLD=|AN^`{qi&GY)!`d?tX4-3)<(!pi}XFDOSI13%R0^ zPkR*=4Nie6$}Lj9MwbO`xa|#n57&?W)T$07T(`URP5G50@qHJ<}laGnZDZ zT0LO`ZHkp+$(IK6=OuA6c}>x$wO_1a1q)=0Lr9O|)B{^nPrsfjkZnlC&u6&0{Z7-n zR#29+HloBlb%nZ^kRNz<>t57ID!zn=dVgI`*?{+iQy^*JD8cFR5yJjva!WtabN)6& z5jE^>V5r(dU#)OJ;OEg!K>gL<%UzPm#E-Z@+2%^a95vnoxmVmQlr}w*T%;FY7!g09 z{gDq=wk9OXOO{hrD~g=>l$V1B^gIKz?@0npv=(%X^Sv6~f^tQZ-C5@| ziJyBjss#nJ8A%-8{CMIa!S_-`q&o#}t@QIq?CZ^1EW^}a_>-dDerlYUuZ9ogQInH( zo1!FBI6S6=1SUwI261qO=PLXenj#vG+<3OTZjg(8pm)cPpQ?y6w`Rgxkd!1#=C-$X zH3ydZKAFTgKWbX%s{+5;!kZKGFMna}>F5_$<(4M-Kk{{=MGuH211vF3ayqYNkM;PX zej6DZqmH%S{9r&i?zuils1c20_hF6OawB-DyTa{*T(bVJSh!!2s&a;zsD&(cJW~wGj@!{P--6kDw z8ix(87b1*L`?icnlmKJU2P~mqCT>9lS;`a}Gh-2;D70=MJAZ)&1vCirOZZ<Si>|?P2dsAF3rs13MtBc~{5*pJvA= z1^RnJ3!F*eKtUp-6Icrt^3|V=I5n8&%DO_1j1}pIgSMv3n;t<;dbrg0;X!T%YJFwK zfRxNeiq+N6a_(}Nh>c%_)_63=`qe$;c<;c>3tv8iRe zqZy8QINE5GZ!l668=PTXK_~kIRs_V9sY<+6bG{4)J5Tw~{$5oW)F1FpCsxeEdkT`D zaJRX3@KYGMy>8bexIEE}odK>_5Kd)-W~lPa^wWjCW39i;nXmQ77oXvgF4E)8OJaH% z-8`Z|FB+6IoWoAJtIDcSItCSSA+x`xX2z+s&)A5syK7(E+(DwPg0Rj3^DOy|ZD@|9 zOnYCe16T0iJbjay@f>?55*)+jW0aIMcJw~OsVfpIuRJ(g!tu9KjB^o{-L|7&?Dg`v zHFwd4JGEVFiY~|H<-MV%9a0DpcY&^}MLM527H%c?lBnc18AS&Cd$_qWaATN5{lWHA zpWFZ)$7UB%O2GHa6)4XyFhhQTkdxToMW~r8me*ytZ00Co_?<9gtH8Pz4OqAUHlCGl z)n2Jbq3sME>FHs8@w-;Dx{l6xG`|UEKuA z5yisl>fnOM;R6lq@x{L0Dh6NHRBCC7WOe6P$qTjtdNCCPruk5eJepuCEwyWnYsDaR6}7l z`#77)orIf#a^PO;?C^>Cp0Ezjr9HoG_IN!udvM={pA+d>sUXp{1egjp1#|LoqA$!w z7A{eMm*qO+I2!EqDwLo&`S|eAzqXcgWap_vVIk#F*hW8@Mf`vAD^FqAgW|-0@@vKH zzPLP6(anwg-TmWjAs-V{YN$GaE^acUdaiK#q=BD9_0;j{Y4DeV-p+X`Svc60j{}lp(5`R76q3F6caf~6G)wq8RQUXAbQfJq>+EV|-L(Al%qU?#l2R?{0z2fUG{DcN z5F?%k$IHT;ipai{m;OX;ytYz+RNLNN_8NXL)R=y>>UgmF*8Mn*0Y4uDw8_PaE`9+G z`}HU1BTB{9eFi~x&3V|5Wn?Tdj?oR&zcmO$M+dlI@Y!u068jS8RXZ&FSa<3}PpigFLE% zo{?qZUBx@mG`&SXv#DzONVd7I0l(U_+BuDOG%ldBNH(-IELtk09-JOk0V>SPR!N?i&

C?jk?&76q>44>zL-9{2iw_M{sGmU#A|;Sf_Zo@a&UvF*$ry(PA;$gwKvxycpDP(W!ML^m>mBY{v{M| zv7zvK>XXSU>InpG`CiB^uO{Ci=MW_A(TcvojiR6u0?^9EQld7oi}rvY~R%|APOK&GoRY?8L;e7HpK*|24TN|9A5F zCcWt_#tWV?(r~<~Tv(DfUXgpQk@t(go{NMdZ!Kb(D1C((an&Y94{r*t-HESXr%WuN@6U(BIN~lpaqVQTKQO+$!i2Gn#c-}faPWKQa!yLN(LAxl>KGN;Rr@ob$sk5CGof!^qM)Jiq8ey# zEr%^Gq8b>zJbTsA@Oj5`w=@=Y*JYeZZws;YChT}%wh@YxkS}a zN|;GLy=i2^x+rQ3bpm3Z5}4j$?SWZjCDtUm<DsdwLj|(P zF5Px;=+NgxiJaxY>I;5w*}RQYRUOe9qbr#P{inm@c-qkP+ILsoJmj&yYP`e><;C^L zVlv$I7P2Vr{EB#hXR3R%W45EB0BQ}gj&>xSe{2SNr1APqZKMC}dKu*y(f4-UH=x4E z=vJzW%dn4h&y*L}5Ti3-3bTcGEUaT34$#}pRNd%dXUY;A28Z<_*tKx+kYeOWq>CfJ z=Jw*7+bip$_3Bx~u%W>THB(`2Hk^5F{~rr5wW!A%LQ*Ebb~SWjv%HqsC#V-aPC#vz zgYgH&eWZc$-r$^dk9}~|wR=A&WB<%L zXV}&`Ly!c;P)wyM+tP$1vTAbGRC6o=6|BJC40Su8rVTNyqQg>WrDGiY&_G5zV=rgOGUwF%nW*8;g#UMdokhKjTN zS(_&>Ui)!nkT#;cwMF4l+lT#wF;EMes98}g!VdQCBCeJ-R@@C$*kEzr1)24wgz8^S z_is-);1D~|4V9G~X(NVr&VAVS`GoPcZq%#N6oFm`qvyPi`+jS6SWqWK0!AKb0GL0G zNm0hj3w|FF29;D~DyATgaOvxlaIxc#rJ-M3XQxCin%#PByl{jJ1Yg${kGP9qhtNa$xRCoZoH}Gy%>H3tBb!UGJ zxwx2W0|%6?2s>@@+1QyrjaeI-l$6zgDUZ)Rf|$erys1{(((^=x8@uoyr?j5@e?5Tb zI9y!=11?|;8d*E^k!&M%Nzi0RaCG7fkI9uSteQiCOBwQ%AXl}uOfn4lcp_Prx>S-QPgScv0y8AsANnsZn*0bsx}>_=Q68szq%$qiCW-P5LT zt;-OGheRg{=>0xkU-rOTfhdnaDBT-ELt{aRma+_Pb-BzNFQ+$8G?2tifH@Cb)<%}Y zMkNF5b5yBr6LGf3J8a!Kr}f(KvcEDLZdycUQhc z->EyhhWYvCF zBP~~~N&50}lF*fP48>yOPU*8@VcHvYAsNh0pA_(Ltl;^J=RcXAqz4nk7c44pBWqB* zqeucaSnp@Y$C^cEu{j=!9APBm;5KL7i-&+w#A+fFUPZBBQ9ZY%3kzMwIHbWsUw}q~ znH-rx+Mu&P4G$m1y6s=T+ONNw@BjrnLbeO5!Yr1-k_{_elCx!wN_Mq&U5ptl2vw*_ewxQBUb?VG~#N|;Cj`IVRSTu&XNPsa}p z?jcz}h~?XL$T)aMCZZ?M&$k7>as5zPVi|IL#40r8gb!C>9PFwFn0?>`lUFqa(>qE!1wjwdMKo_A;%qpatGr$6VhrEy)_ilE4NU)qRm*{^|7luL16D54&!ztR zf#tissSt(#{pKiiz(=Alvit#?-!lbU6;wbceK3^y#aMOZdI6@cs$?xYRlvFaGOOCo zy%KBhlxi4lS~&TiGm6&a3JtQ1-0NUQa~G8NcYSOhY!~RTpW8{PT41f!9j5@Chld4m z1mXa^4p>s+YV)p_^rfLIn*M`g_ECk8o~eJI0iR+i?@n|KX??LDYQM(&TfKD%K&2OJyOVr14q06wHM)FBL`)%Y_Ch1=|{A zmSzm0PQEZDjxUSH0X<;kc%IbI5MxyzYHt|T^*2k6yp+zz1nlOk6U12-G^d8XcC0`z zegpryFER0~J@2qC8AP9{&AqODl_;5*_S->V8B+h?g9+RQxKI9D9Dgl~e*J>g<*CWL zDaOq~e7Q92j`m&L2=6a6v0Ld(I)W|&Kr~_97CR%sxt_NJ$IEMB3=EU&iw;s?{Rs*% z=5G7!>m)OHkMtvA>Eq4Nf~xglA$PA*pH}&`fj4027V}0YaKGR;JPLPi%d?$#5N6oR z@f<68U2Shsf>199*S=WoQODcp1Z)3u1IIcF3E+mE@rn84*m9b|tu^Gm#$v zpp+!hKLsgC{?{r$ZOZ%@TlfuA4bO_WVt2kFzK?(Y3AE$SG6@xL286pQ~DnC)@Fe z*VpN0UVC|El}v;svqZPtJ|IA(yrN>@g*4!Mb2DlbHHKZQB}(Xr?GBe_!_klG6qN4G zZbIxI8lCiF*^EL=^V7R5W3&K)FqtYL?im7OffO_sa~~M^<_ms0HEu~sp}gGoe_qif z%1_2oaBK9T!I9>5?EzS&+RZlLHq$P3$R`A>f767+%OPfo;uJX6RXNd@ls%2|%jEjQ zyG$z4`DTUdr8nxU>qMjJ0u=pK5vE5JnI6?(BzyO$Iz$QWqyV+3S|G16YG2e#Ctcp;GUK zAzmz-l5csFfY~<>BTWloN2cG3cj7&I;d|k~k=64IiN~&9Q!szfm7j^b6btJx5loZ) z>kDLEhR0Rtf*x>7)~STs$*^xK|983jS@LHQA<^I>GFX&x^mAJ$1OmyX7q#^ho>!^d zLA+}dU*ZycQVQ0^1Bbd?r18SP=tefQh{7}+3#-eNz0e};a+^yTr$*EjC~P)09f{cs z6i-4zRH+k(!27+x`5G$i+p_hPD9_vBE^-8?R6P=%Fc2eo%ABmeUhN!89 zm4;KaR4%q1D(llRfWc?%osBC+8SGf`#pZ?ZNcLMvOdd+|f;XQFi|vDwNah!#stQZ^ z4JgDgUqL6M`3%`cy65LF%<?MV?&3Z5gqbIzyEvY^+>8qdCkg$(2S;82aB%8(x`L-9wU29HdZy@5mAjm-QIIPA}Z46xL7!* zM^nOH|3+#Q@xy#*p0{--sFaFTHauq`cr8HlfcRRx^?snaRa-RB^;jL+lSfLBm0A0; z_O^~D>UH8REZYq$47P2ee2ahXtZ2gq#-Bx|m%*hmWebXT)6&+!qkLs{s%;qAo<=t@ zr9dY*|4aKmWjJd3<~}Rp?$mgM$A%b=Q8tx*RtL8b zL4H2X9R#4Vr_cYyc!AVHX#FNn#Ab127YkjQxwJ!?6fKzHWtAUfq2d|y4qar4o{NWI zWqlN?R$HsxVRn#nrWUW<49v~&+*m-YFGA~*@*rJWXXRtnw8c;O$ zcL)}(7|uC6r{WNk3yxCje0LX8SJ!raiPvNxqRCI-T?Yb;Yv>>&79>hBFfhHfmGGy^ z?){_5^S4pCo{CC1=TUv_$)@}9$;puKrGH3?051Cnqj~vU})HK&j*`A zag}}tMn(p%vVlst?`0Rds zMxphMxNf%gl@56T8@Zp(f$SZ_^pG)U0kDf&*c-_m`s4HpfRjk-@`T#3uX7JTf7Q3w zo(h4)^%#XEceM#GDxwb+xhZ{W7eZSlA!(z zXwQz<`a84|0*AED4)JS~EU&LGwfE6Hn~@$NdQ4aN0v)qvzlvSlJ^eeAGdn|;1P2}5 zZI*U*IOrEYjKQZYpztz|x@xv$)kvNMvy?$pvsg@fyM;6kZE4kRmdgmqon`g1%NZ)O zQMXBiqQz@a^weQ;RFeD@L@}{7qxkkBQ)efwP=ox@!HLW98{>BO+=zER+`pa#xuv!D zvt4BRWwiOSk}5taaZQ*+WypF5#M>$PPpe6zh26i2Zzl&kQTLwhr($Js;lw53%NhCz zNQ}h0uQ^VRT99y>MByxVS&D6`5Uj*#Y1VhSBSm9U))4xkaFD`wSD{VLwJA}pXrc_l zBjP3Bz*7Bkhv5K0;I#Ehc0O7aTA>A1VoNBL!*qSy=u2Z|ip%@3`}^|y&XLVP@5-3; zpP1R6{X8Rmd!49H`Dyfx$CWJ>S3L}4NRL!7ViX)lrm^M+2cv3_+seKuaAsW-%=l}Z zr`jY(FSdo~C;yzHalp}~^3|N)6)RCx$o)%gWxEn}sZeUO^hC1n&l$l{Bg!=Dn} zzl-7b@l@t*m)N2zu7Y4vM2UYsr=pLkhAH#}mdt*934Vc}R+9&C>PfXIobr*QDyZOzJA9w<7xf?nZ|u+xXd zg`uf!(A-NL*AZvK4PHpf*9Z=3D&Kj70@}N{nQV5(^3ZLkk*NRF}TA zCvm5Y{bjEA$Rg1C#6*g4>)6bH{P0Hr_^Qr!78H2Yl>nB)c0?QqJM!NDtjIyyXi$(6 z=#~dWxFi7b9_sPsvIiGPsuR)fgRj-Rc3%G0-`RcphN`frx(=l7;`@e%qQ$xUOk5I+ z1B>{rfOzu2^ZjF$d3jErVOU5Z1(R%64AM&5>p#P0JNCby7#S;T&(^xMdK^%&k%e{#}0?(0hQqYW6aCOn7h!o z{4Y&WgXF}k;J>F>u27ve&SntL3&{wB#ro6}zI48~Yet(+ad#BRy|9X7sF4eU~ZHe&%Pu z^M7R+gcE4Uy)TzxfLJ_jhVb*KCjfF%$aVhNzpqD=mBAgWMzX*AlOk08G#%d9 zGU1{ZVe@i-iP^u96++ryukUItYwHWCPGrXWyPOMYMj~nC)TTw%GR(kL?sk#moIn{J zF1a_fun*d3f$#d&iwBertHZm%r@3Oa z;Nr=6D-ljG4Ym0U%$rH!=7u=)RLmIILI|Q^8|dT)Dbs4A-pHwPTk8C}HhIN}ia1}n z1uhx_ZhO_%wk(Om`G|l?^iA!jQD~5&>8T@}yfR?h4a7(QTr;)|!NisG2|v>nVxK<5 z%(=BoX(JTvjexNu{V>`^d_+qF%78iKuY-dFhxuA!bJJ^*vbrq4J9^ zX!p&em9*A>KFA;G)_!%$g%ovkL<;*9753M?toe5awdw$|RSdd)@vN-$ zzqx#k(@svcmMD%lex*_zSa*iz8r%jik9h-YBfwY#t3ELfnjYWV^s9#(Gc7%xZ+*|v z^Oow0c3-f3F+Csewi5zh1z+F%cTP|HgOWQ#WmUt9;~a*ikctA|t^@03+=es0{K*nL z0wOoGx^uh9ojr(%-|-oAb#=)ZD3ICNRbD+!X-ibYcV`h%xju{Y%DGVc2QWZ6`IM#o z(5x$a>`a9gu~*)j4ojYu4-11X>?|bc6NiX`M+(ua?rp2mTclmEX$1a%NfSRV+xWx7 zbSGULX4wPKiROPtxzqE1*sDHDP>PV2v;uc`#rWQwJO!sKcuiopV6+XsnYa42c!wE6 zklw6?m#w_)l5digB1cHO`On{r(|G75-%DM{AY1O%>6swU7>?FUtJ@IBK~c;uP+H+i zN(~TSxsPu?`N-YHNZP017o67f_ABIX=?KMEz)4OS`Y}rfDr>a>-X-${tDDzSv4b4q zoT%8?*8gI|!1wPa#;!Tq;Jfh4+{x2*2&m}M@ju14wpw|}E;k&3E;<}3iHM1+;d|3r zbz=u)lxkH$eO{SofQDaRv|ku*eSAh}1mAsFjg1~djof>S6ay~ae!5+OM?o<`a~1ig zs+-{0BiL)O=@L$~vf}LpL~Z%2k#nxb`CL(f5Rcd4$w=vIsZ!a9EY$1tj%k&b*miD6 z7@{~^nW+kSjZv`m{~`?<83qC+CFY}JjN3*@jlHspU$(=U{*e&8Xq|KYaT}-yT4Oe~ zEqYLPDKBw7gh;c_!d#r}ExKD%hKX|Z@U9iwdI|xk?nyQXZG#Oi{q;(U|IfcvE$$KG zto}Xz={?-G@X>L?kd{zx99XU1KVQNeZ(g>oDElZCB+ySQ@|Zr=3hFF}2y3I9|Ffaz zk+jW2PGClr)XS$t?9jPV+_6rC1)HkevW*CX%D%7Fz3HJud?|^FZtktTO{<5y2TS#4 z1PPpcPho=d&P^B(nI?+w{2kcENy?D}SxO@8IUpHAIDa#!~-qW`;MHgPKMNr7j z?)o%>?_9(%Vb1(_kS5%GTBz1BG34xORrRbGg?rx(pOR1_Nk2POsXTO~A@~Z9OOkRE zzEt4YE@Jz%vM;&U=%JGqv3f1q89h*c~N29)3aPLPH)l#m#x5ujYP{d40c zsv7e0mc$aN5sKve%?+fQ7^qsG3w3|>kBl&`U1ZzPPYngS#8kx?cm2t5PDUPrpD|$X*{2MEsMK)$FCl}U$#;lykJG#R zTH;9YSk1M+E7pHpZ@%g!Y2JP*HVjk?N*>;1#ChvUDCxIHx(svl2!sPhm#nwk8~8QYqQQv} z03Ns@EX36q!8WI{u4$Sa=rzya{gbcI!oq^-o3O2eHAs<=m;eQ)0izC1B#!dNj#f;< zK(CQrd`b4(k^BtY6F=CvIm7c>X!|8XTT!0E&8=)5M{cOq1Z@EJ z$j8TV7l@+(Q7_#5Fb*JtOcA&1u3$~>3qVOTf+b4|sVeG{mo1#{-aP_*|FngOA z#gxBjvu$i13D>WNeqrV}c?Oso2@VFGhN%#QNCZUIoVD~$zl8xm)wU`1 zIzWb&R#fO)^m=BsGh`Uy3@@}i2rWD2r}&Q;fFHa6_3GX*>00`cSn(xcAPx@ zVP$92%>*(`&5bzE7RvRt+o(@ET7rT3yxeBXN)q6NG*5tnO2qfQEY}Ab7{X4JpVGNW zuZRT$L5xyw-DxnJE_J_Ax2Ib^&map|OayNL+8%DMSI#vGwr%WWnX;#VIh41lQYChWsNaAja>I{?YB-Fr5XO{`WV%waL{^}p=NA+sYq!gBg_EeA| zs!T5W_4RvP#k&@XQtluP8Or`&C5?tVDDhs1jLb`gZFb>d?5)N9J!MJ!MQAD4Ua21# z=Wl-Pg)s6XieWHXy9dSCM1Hpz(G`BL&;PP|pAE%-e{B26xc~?MCaOy08 zESu0JzqpfcRt1CN)RGkj+@ z9U09u-M^tNB&C91El?jAfxM`>j*=R>qUU;C;79J;9V_ZS-i&)87F?Ti<`5K>+5R zX)NTRi{10VTqEdS-8F%vw9HYGZIrLS=@=L!mGeo*8GZpc*Y~SwG1%>+h8yqPUo$q_ z7rTFg8?BP`l(izNFMtgWWoj{+@^|)0^yG2*dQHH#mGo{&Si<;4O z=r{kajG7^r)S{P#?(EdxxU>kMLrQS;AHhl6pPxsuDnvXYQ@U_(Es;t*YLgE$nqgwyUed8+)gBAA#Cf(r?uqY0IH4q9+OR1w1c;5Q9OI%me7WX5S< zVt=sW=>Msi33-nC2Zu?bYtk;_@e#9h|0Ht}*mgEAGA{ZpFm~P0P~@n`=85vL>;WZV zIZ*HIc;!cICFwm{T++;qwcVVcUDf-%$k3>JJ?Q~y+fc0nA& zVXb?$FLTSST>)4e!OH_-n0b_h>+NjKPtxkh*<)CP9pt#|#EXa&qx~r8|E`xdBk0Q# z^PyMghj4@Rodv1)Qm2W?|IL5-;XrY4So*dl?=Uu0l0)d@9P{;K-%R}PX<_)Sis4q! z?U5^3o#Kc8-7>v}`b0XbNn}E1rcaf21IC8FFrVwUK#7FTy&BI=4mP$?S~6XoRj&(n zUT%B`hw8cGw`gq`1gxSARk~xv+W)o%IRA1f>k?s+gjo9`F{n>mw$4;VBdfJ8OO+^W9gpu;!m+_IlJp zU{YUfWfg`8T>cquvJqO^U&_lpKr>DA>4WGGV4P0i*=~E(C;TVm|}ebLWv0_bOZ|meoXScYwk0j?sRA? znT${?8QxcYm&H?u<1`88WO38A1TQp4rW=%q$|mjsottMG;oe`10S54M#py5yiW*_2-mR?j?LaKYDbhlsnPKws+j`2w$F)^Jhjx>-_ z^VK_${#3A}vrmG9y-}GwXSU}sC*&JVNaQTqKVd{VDkwI0{N9?h-;oU^+!KC@U(j-t zz0CcYB&~I_n~)!NXe~V`=Vyrf27*T`&m$Xhpq<~RI@$PEzeQm(V=ohBMt#oxbd0ZD zSn3b5oDkrXrM8D_b2rT9V2^dy>o{>j-RK;*`xu zu~Lun6TYlDdte+V@Pmy#be00B)i+_74gos)hspwEiquIjUG4hOwc%(xF z1w+)>$LFWwcCo-4A1^iMIHvHbXMqZ&1X_`AX7loRB1gQwc|iE4(z<47E+Q>JIZ+Ql z6WTJqGYbboLrC-bo%sKnJ7r^-Q*t#}%_by03MM;0KJgfrLHF@l`Z}^H%ym?JGqPo9 zDC%FMckv8<*7xx@c>%Y_huEJ%e3-9^UI=WY3thYP`?SXbEF*PH!}Zd4=!k%}QIMMQ^^|FN*CVZGLJg>~Q%LOOCVma!&|m4{n~W zYyyzm-xe45&TDE66HL$n+M%GihtO3R(o3?lu?71PdeFGe5zmh4ZdN3{F@cwlcFRyk zt+4K$Izgd+$133TWrhzcz2y@83Q#FaXuTpO*+)tM!}Dq9I3Ac?0c4<<_197CI+#jJ*knaqTT+O!@NHnEd;)O zOe{F=zOnj?91HTVzK=bv&@kXXEaC1+xl%t8%XMkod+f4&;8h_+5g=51I=hHxA#)AO z%!NHCh}rqT#p>r7k-jysXXeT0EO*B|6t&C4!A`F&g@OVD1GY{^{FP&ft#R0RZHgMegl8+snj}E}NpKj|yWqL=A0HcwEGiOKNQo0^;liDm z8j~?Ig*?l7nH;;n!}q8*|Z#ys!Sa_p#4w>bm^r zi`rr9o5MU-Z^odYPDOwCWj~t}mLCCai znOYAIbc`oYHOkAYFeY7^b1csE%2Z0o`1qV=z*uOA!2Fw;r8PKRK|!g{5ixdKs@O0f z!(Xxt_v=`nw5&m$rOl{EQwLEIRx-Y{43)NFC?3~CCec63WvdL8CWlL2j9U$0)gXGm z5>^lrgN_O#>JeziSE0|(@QH$d-{Se$uhr6$<9L3iMo8rAQWm^c_NO-BS3`ySO}jV( z-W#)50Z2H^lcd97gV^Urvf(iZG?|)^oG#pemL4Klylukj$jBJPV;7kKdtL`6w7!c* zvGR_{tKAuSUus8?Nr?g2Y=C)Pu(4XCD7i=^)?EM7h`$c0dc zi~EEm!~;s3f24IU;hW2R_v+lQ>)~lRbG{sfJhQ~c6B=3Cqu~1L@|9PGYse0ZWSFVE zSC7I!O8C_h>Jiz2Vi2;`HTQ;Q8;qWr4n#emhjta{v&@}kn{P+FCzmrYg5Y?hw->%M zb!w_bZ5T&;F&J-{KhMWbUZSQJ6qewcR=;_9`Ez+hj_laMtZZ?cBtH%1)TQHJeu3)+ zhCp4v^zQ+AP+Gfc-2n{c)#XTBR82YQUd|4aPsb-wrYPKACw}Zq&pF2S%H%Yo`1%jb zPWHk(XUD-)# zML4^yi{C;vKZN;_;|l%bD-=8)TK{%$7-;iVgcCF>k(Ya2TOMip$?&kDpWn5x@vGat z_cG?e5yt{*7829YXY~p{cYKQc8LKPSk7rY3oTla`)4%^Zl78Z~n0e~RfwJQcT@_L6 z34g>DKPP{ZF69j-o*EPXMEOjZt)=Q{W(rHzsfL+{On7n+tbTS zVPmJxm*!CnBH{%~78;Bhm7PM)JVSL@Mg_(bsHJ>c4z&V8{Gqn@9q?uz zo}LAjl?osy5?KR<@SeQip>O@~Eax_9b%lDHv?%7uJ0ne4)b@W=z%RfuM#jk8q@*N; z=e6$Cw@;*n1rVuj72!nU%)o433MTVg*2)-diqupg{h9cXc9PiRk+9c#`b{*s0$|3x zb#>vB`f2FkNO?It#LQRbY+b*+WGa5col8T1f66Fc`}JB>h97aDC+N#DS>9&T8z<*4 z91Up-5l%k3x;i@7n=hm>tcXi8o*Ukb$tf5|XHy}fnxHF~NcpEi3<#qV2q#Dxp_#qX z$SQ(&@RxcM8bi_bSf@R4HO6mrOBJ5dsy5sK?-8h==($n4NTM?7_4B~4!N1nwOncZkG zcP&B7r?%AOVUqJHWU*^27={;tE30*zbJRG)`Q96Tt5cG}1jC8GunoFqGq2r(eXM2w zUlm_KH&)IuKdtKRjk~A%4IbP*d!fz-60z!?OsOFMMIz~5T|B`K!nN&A0P^WGTx2P zLYojXXFmCT?2Ftj@b|53e=qYKHqqEWuks4HNdN^}!6jH-QwI}C0 z6j5%`SJK{4%)LrpiFSovuQnE13`%#Vmd!L;_7Ywgjm<65_vYutL|>2AV2)>F;psZL z#{wDBhWqkRgF4#U3V=Bjq7x!?t2;`x4na93h>qFSn7tmhg*}6>C2Hn$_S3yC{fI48 za7O;wXd*UaBQuAHLijz3hiOeEKdd}l9UK*Ia6LHlQf}?5O+q%2&{l0O>{eQ+8WADA5^{h45Tyt&?=6&(FAD&L= zJ6f*wDz7OI2???PyMt?>%6B&$kdM$tkmmhDNFHJBCQOkAt@5YQT(#M7Wgdm`0L9$q zIJU90yu3cuX?i^VSPpU<*t9oH9Yu!qo^%Df$}w=aw-s4Q=iS|1rK-^=PlGsK^Hf0> zO1AnK}TPHKN%RD=&p4!4j(Ccjxsf3GBJ!6p{M25O7gVYov(oUdvi*c|Kd& z+TU-d#V>d?G@P9J1X^u4*eC^Y_O1i)^2wB)pv?-XBhzNUje%tp{}r}!nD#gH&~Fs2o}c~r(O9T0G%O#JDqksW4|=1Wh*>q*w*%V{&zkP^Avfe> zP^{ZJ3~C5_TW%>&;P`5&*402Fbq*tuubkBg#Cz<$(?T&=Lz>e$#SlhX=YY|iZCs7k z`36q7rwt1KPnyBCxH30JZX;?Fr#!M%K1TnXQ<`u0zZqRBF9-P~YUMRFkSJvkQfBsa z)D4Kxh1?LG9g#As{BwMv zDZ)P4^k+MV#Wjoo5$Sn^J2GV z8X}`rMDz`+3*ZL0T3-D!c4)Mt%$8WEO@q+*ljU{^E+Pn(Hw<1r48a?_R5V~8w@Gs>?gyk;fQE#KM&Zl_R;}XY~hF zEG!2w`sqoGfR7^8^21ytvHd|mz6w|VZRa{ULQ<4woZ@s;3@OzNOiWc+NHr2}4N}(Y z=)G+*d@T9xgxxz5u$dN^_Yzet5EA$h@wBgoACYA0dwpM9+Jfx!uzd|kWyA{!ai}#* zz&<>11_uX|BVF)pyx{@fD9K(~VofRr3b@wF)P-LL5F#SGf4qoYyefjSeatitHumv| zVL%*Sd(@zZKLclypoh@!G4+*=Zq3E$y_0985TdZ08Uqlrwu0u2*rD8=3!bP;RUG9G z(}kxA{kF{Wa%JVURG$&i2CFo$`gfKl1fpUV8|<0jR-g01>DgJblSivGh;<(3&}J({aBkj5 z`!nzOU2&)%MXTx<=sut<*?9uqOR`*J-gOtZ3xfiHu~ zmn3)FaQF&V&?Iqw$BSUc;~u|6L~UbzP;&})MI|L6BT2ACS((H`AE0^C-JP?9g}aC6 z3A_ZlD-Jx+=SX+Z_>WyHR7#dk2PI5#B*2(_<0f^Dj?Ei>RS{+{}O&(dXon>vdYI~7NIQ}o0$hI{5|C0!gu(?Ovw zZ4YKNU_y2E@L268(e@Sd$C1vOC_C*tF0q^jt|#hJ!kAxXh6O&XvdK+hsB6pScB}RD z&>~(@4?Z2VMHg>ye-ym=P-F%sAJz7F5MR6c6DmI+5$2p+X* zFlC`yB)1&6(xw{b|33bmWiIhB%mLk#OZb1P{BJtO{PoIZrm z6EpMNo)ms)mrJ*bmywe|Cu#s#&Rf=IY?iRg7@H^IHs6^HSJPLf1OL*qi4G#y)Yti$ zI^kqM6$F_$chm?O8&ReiZL>!@qD;s~aSE~7Qbamwh1fS}vXPOE!|93Z2o#mIecUdc z%M;dT!eE30>1t~S3%osw07$?z4+dc57H>NK-rCk`cwa@h=sdDrjO6)S0AVK7F?xxA;f>oVfNg(BmQktk>ryRV zlP<{IQl%(t$*JM5n|`UtU)&y$)R(LA2k})}Ip?**cmxx+%I*hN%<#VDVATaG_48dW z?up+VHa?V+>ZN|M63pMSJNFA{rQ=jwr7qcf<8N~FwEBYi8Yyj%TdNh360MxqR*t`p zLFQ(u0th97a(4>VkU5}?z4HNm92jsk?r!aFr~IrZjZ zCM5XXz-xub@VEzadb*#OEYv0BgY?-_nir$ z-1NOT*(o0A7KI(TL1!m_{hNBdUv^GH4hZlPqlPTs(LJe5#*{V5(eCG#`Cn#x?+q3( z1Al#!<8{?~saW>>!-~nLjNtqZ!kneJh>pr5X#f+1lz&!nraw^?9FbcNo5!Dz_7f zY(I}=M~8pAXCcnj;R!VtqQ%P)gOQKEa2|AQ{yJ`P;YJ0TY(h6K_Jp5x>rU%}!mwR8 zKgCV9wUKaypgH!iI{%i+lJ<=CFt&xrHJ3}oix#0v zKh{^>)m+4+Teuwu|iY zh0_e|Vhq>c1>!`+P+JQWWaOB>iC!#wh%-`b)}J$fCxWlx9dCc7C^h%=Puh1;ReM$m z>uZqK%z!u-m^4pw55NHHE%Xq3LawrsV)qPi+#cX{CSPz9eLYJuwxtHO9L{P$^i032I(5o-xG}m%F0dz%etZhtR{@u z77Qoyfp^_V@yw|9SNLPTI~7Q_o;zKdsFY!#YZ=n`DH!2+dBLD~XVdeR{?Gmmc;wXl z;~>YY98vhlM~2jUs|c{94jFEW@uJl;Afo|CtYUjGbcOe0t;1lByE+k zFzQTRe?t0ZV6Ee$fc6JlyObj2uKvK^J7T7xafFQJATa;XqZeR^R44W@6K-=iO0uKu zI3c_Y$xrwlbtpo-x-z5G!_7QGMe;qF9%AD%%wBn6A^cEHSe){7WMKGWf~E0*kjT%& zmnfzxrWdcfrpzzzjFp_);blpYUag-k5!yl^P*X!F zPan)-O-M&&{viFfK7Bu}vkh;jrRMqG>l7D}ru*=cLu)m(5v^h%%;x*t3^N*RT7-lq z+~x6N!^%HjHq6EidTYPi$}f2r}z#Y26{< zU)Lr#E$hhXY@~B<;P#Z)^9`67h+q3wMwo$woJI0V`SyAOXHIxDR6mkYJI|oK$TKec zFh=poF!0l}9&Pic|6%S(0- z$t#DLBp`B#3}8UrZHp5yzK&7TOuW7vil0_Jb6yksht?SNJmjC8FN7|k zPtbSr@`-Sak1iu-6J?K?`i?vw-NG7tncfM_Ma2#j4KctVZLUEFg}5i>M_J|mSPU#Y znl%0UZ2{~Zk`pmxu8cRs+4Z3)T)Z5Hz>{;TgOTy5gV7Ne^aijVN6Ma@I!YOAeV-hoXw5a9uTISQL`WB2A~8L*!qz#P!Lo+cE$lO53?31!?k*_9LvqxAWG3R)iBn}e-Oqv)}T^hRFE`;~~*daxe z4fbQp4OI7EdeD-B^~A#T^^=+_2n1zQgBQnO&4(tsngtd)RO6= zf-*74Lp2mN{hBwt(MU+Xx16u@*q=O5WeVhwy=TS6eZ}SFuv7qnXT?D>w`sTQ?UjorrQjgGU$2KN zS2L5Y?MtDq2?!7>t+W#~Q)_0_?H3F{$Jq=~=p~tlqf*$X5(Zg3r!+ zWt5;6ivlk)$W5duXg?K6#n@KIu1bg`KAXM^Ch5rSK- zgnS+T{_93C_NAf?_1&Wd{SJ!A&A|h?>B~4PO+MAWPp2AmV=*ySFX6*&<$XkL92cU- z(p-v}9)CuSt>p=2wb1pSiY8c3J}(}2SYbi2{U7?ezCY+end!IBmWY=w&e?^x-uxC& z+A4Pslb0O3jQeSc6QR!c7_a(9BxDikMRPkZf>)vvdW68lhlb*3oXQ`n>uvKgyltGJ z{tU7jCT@9Y+UjC?pBs)xvFVD_fqJTpxE&1NlO|DKJ$FmRqc0}qj9nTJT5onG_hF`o z371xJhuD^PiC5)^?GC56_z*zAYgS^}bzei&@q6j5I^Lfy)_Bt)B1T+1;h*;{4B=0C z9a?bmOl2k6zlwU+?IMC~pWy$432cGKIA4yh!s^gXim1J0;!SFSuqX2VT%U?;=HJ1) zSX|r6Wz1T9pPtJrvwXjhLOMe8ZTXk;*~VDCzF9$EKU2AJXHDX+B4~9`HR$QhwnHHj)WqyE7bpaSq%zfH&vO=*%k%_ft9c@&(cb3!^_s=Uc$}HK4 zyq$4q8dJZ&1^KdQv9xzW_)zha6Y)*k@{@Y)?;nI$m)PWJc2^2_BzjO{sE@)^f*uq_ zmCBBTV|-gd;Nk)P_r9^ximCy#vv#C3TnkE?>R;<>8<;f@wPM7vAD4>azi&lwHRnQ4 z9H|BdLw_&8{RX&8&sR!d3pLbhJSJSxoK-;@KR-Y9Fq-xp*0+Kko&6FL0(|!`nc_mD z!alNdLPY!bF_*D??om6!2h`w?RH%MihR7=`LI`Y(@H;uVkWrC{e!Hi+l>kN%9y_+C zpj8|u$Sq?T4zwG@f@BBO;}{$P~+m`!brl4d=qDVw#KvZgd2sLjDOiX5ABm#dE^@~YAI>DE9s1}V|$F>cX;KJS$%|l z$MN0A4%_3QWx0QBK-O5URI3x`j^i9?HYd$eEPg>hj!>te&f~2t6&?=Ap=SE#t$ot^ z02LT!N87<)U4`HM+VYXx14XdF*Jq={Y=DDl@Q&csN$J~2jJ%oLDq$L_=GlpwiXEJ{ zmK(BH8_A3H7*vF0V-^x0d;_E7>WkGEt?ts$OEMRH2DX029?CXWUmqg2V6}m0O5=F*zeiyls$7XXY5+n^)F3s4ww69}EWqQj^t};pxhrrfJ!{qnViXWD~IFQ=x)!c2>T;dFuhu;l)^Fnj+uax%bPDcea5t2 zq(>X%rsm4weRr)#LP?1p!+!+=_M4%V-FMIJa`S2ta=iXx1O~%0kbw9hj-r*0dRN9i z0Ad}SUSHu3Ef8uN>O>_h$N|Cnt>bMra_9IAy~z0{*$Sf_!$85-3SBh^<^v--zWt|G#7L z@gwNPaJBT9kDDFV-`N-qUt?i4GUi}N-^KCaA|8}P1k6xsqo#{03VU--hTMtLa7MY2^7Vb-gPOx?9#pfH3QYR*Wh`0$@o}EJ%t+{4A>%YcE`5W%>t)G4 zzn~eu{>CvBHk{Utg|j;TX+Q{vNZ)|LTiXLK3i9#v9ABuyYpOZRHMbd0(l5WI`v`*~ z{1twDP*<$?Z6xy60>xBbl>_8fw(Uc2Kdw^BB`9DorG$Dp_x|KpRiZwSB5g_j(2uz; z&c6#hgN~ls13x9~9LDgF#*4%U7ALK`d9%D?F_mbVw_<`O9~Ebc27UGk{Srp8{7|cg z&us_4zEgVATfCZNOppW+ZE)6M(^Gp)FGk#-_Gi;sF`@?RiF2@(CBbs85_R!wR?z@6KfcdtD~b%-M^p@|Nn!2 zaB?V}TBI+s&govHC_ImBAp%CnvO^;cNzOwIBIVG_V6u;G__;A?_|W{`V}A2rf3(M7Z=P@C+OCyLua@hs+qCn?Uun(tsBx4nj&?c4K7)t_~zrRLKdgil2R5#!+WoWEW00_2v9;edNGW@duZQ^JR1DUYq= z{eUUHTbvh9uVibZUqMjswet1tEe()I$?O$6S@in1aYkmj#4PYQq96|ycV@)!(Lmfb zZWa_^F@uu6?As3$6m~mJC_Oudn_CO;!2uQE<`BV(c>MaXslaqM7j>|Ccu0Q>R*22g zqC~!w!B_2{wl5~xxY<$x>e8?6|GZpb)jvOo=xPjYq@~ys8Jy_S{CD9|Z0r0W+|KmGw|><2$no`o6OU~z_a_Xl zcuJiSLdW|`nb&VCm724w!2|eBV>_~Vnw5l?l#}M(#NjkVU$kSf+U6Q~vHJEcC) zfpn^FrY}dad2a=3j(O8)y_>Vq)pm=YD<~Y3MP<-XIg%m{G0Amb2z2yq41$9FY6ix!<=wNe6(7DtV69F zD0D1iwPs;Dv#_>md+HDIF*bMFzC1-oLg8+RWzc|KjnmC9l$37q4_D$&2sxpQ&5qcY zELQ@I0tsd7sR3|O{qWxhErFACaUs%uIi@){I>SI{nO5K zpZN15-q}UV4bug72oaDzcIN--&U2}69qgMbr2$lsmCEdY*{(|dD%HW}3w-p_IFJ(T zPD!Huk_(P}({zXZBF&4{3_F62bCGzL>xojdWw`2f(He*X?hp>PYh7{Y18t787QV>2 zc<`OU%OyYREiOfFU;}a?SuEL-+7X;Ak7u;^50tkXix~2t3w#gHq;)!b=y9Oox6epQ zisZwy$KA?c2lkp@XG%6MyAqkpN-MrA3*+RI_A~w@7Lk+7Iq*4l zDxjpUME}YOVGFqdU3+?ZDzB*W@$7dj|v$t!?C~`8MO_W?ehVs zbgM)((69#03=IinqN3_TV^X=m}!@g^JtKzKAF_{vtmyHa)0l9!X zI6rS3PcsVw;w<{%h%oHJH79eWBl*;d;9xLEQWl}+@wL%4)E;B3)ByQ5-S(yECQ)3A zan0q))PJGb;`y?3_Ph^Q9ys{e-JZh7qvQ^loNizDBjXq`HEqEA z!a+m#Ed{k5CwSF0)wM9*f0bX73cj_NyLUzCKeD1)iTnG3Gr+>O;(hnZku$#vovd`F zA9H{+;hs--CR{EYU%^f%qUAG3ocN`KQ#xc1gAH*#R!c2gGL6^d1`ZJ<26TxiwbBs6 zXHPB@B+|8xB1Am8s2CZ*HVMIpk}J&V{PR);-fi#hy-DVD7OiSB7IR3X$yJTZ73dq4 zBy<%!83gS+v;OTma5_PZ;^3-}@MYfE*iKDlZtwaC%BgAUJ50ul8v!@h!-e7Bsj~OQ zngOsX*3*-GcNQ|ZF7a?e@CqIY;_|O;qi?%4asA)n6TK0Kf9H+BE$;^Th)u`sGc}Y} zfZ=cE#Taakkw_HqpMtOp;uzJhk^>=1Rrqzr9bdb_|*2Eunp{-gHSjS(yMh6qQfo` zGN-6|N^L*lFI2~SPpZIs-dMrraYRalGjfDLn_8>PD}hqQH4bi+K%e~*XuJRcY6zaB ziSc8xTgcxv=<4z^at%6yWak3~zo_@`bO%6$wWx!1;z z!wA_pI1oTY7~hq;B2M>jo0`}mnQIxnQ`R@;=iL!O+xc!k-;gkI9lgCtyd%3YdJOSJ ziyNo>U)%fk6HeRR-eGj69&qV@r7Y+v3Ot*&Ts$V7F@Q=$p{%Ts+I$uvxla23$X*A8kTq(Azn=L>V~xR}bez z;ttZ^O+hkui4xjPT4u=#-0x!_<%FYEs{sNph!K}>gHvJYSC35I^xZmS1?HBjQsWQ2 za@_*JKVEZ)j5ZwOp1-)Ty*U(v(shx3aXuqmdk72A4`yj*p}ODeKETOrYL)S985(hH zyKkQlYTx1u?7!^Vh1M=EY4$HaU17;UnD~huC*j61AR2!8y|F2cC986UW-u zf&y4BVXh5@nEf%ih#Pn`1^Ds$8`Q{6aUGO(+eyKWkn=*WqW*#L4290`U+g1a)ygW& z<^`tqE1~dS?6wq?Z=FLSRMK4;vt?I7dP5^96vumfEwxWSdcOy@xrIjavyc?~*miVB zjUqO&W2ek zU&+K-5unNga#b^1T+$i$Rs4FC^zZBxPoWRms)9TL5)c$$U#{sqCd+fGiRlf^AU>6^)M30H%r?_XFgQS4H?*Xz-l?a@!XjYdBUI?;fLL2ZXi9I2I~Eb(fnO!da7Ll7)_H_f+4&2$S;5vHQNUFht$VrJ zQ7`l29q!PjB~Hj_t4f{Ky2M#h!j`qOYN3N?OlMt=lI7aRz$nU+ZkgZUdN%XL5#iWG zRss8^v`rEf%N!)7<4GJ6ajXQ`SdV%o!P9>I2VSR|Q*Cq}lIhEWGJA>f@I+OdQG#JZ zFmMhSB0pner{L;OD55B8iBU{uk7dl9xYXoGKU-N_eit%g0enQEo%rpqcmWeun4QTn z2GPBrAKlv8w=OPOE^ffsJsHUIfMwq_Ov&EWQRK&IBnt5^Q)g;cJUYCLIrVOrq}6S0 zRU$zl$hhQqU`5x|ZUcmDWOM;`!~my%9(MX12wM9h^m~|?)qCHtumvYQKNKn9f;8iz z?wF3&^x(6e&FkR6qEq;jQgc6z+|EmgAguAMKi-e=Mg5(ct0HL74;U zKF_hR49Qua7@sn5R}8Fd0tB#_J~=^eNUj9^93=5n%pKH8%TvcbX4#JQd!0QJyL4AU zm2I5c3~Omz#K5FEQI{-0|8{~$6j(k=q$jaL9n3n|cdmTryeVe3F7(rkafZ-ndW|Kx zGRzzP&Y=zb;23A%xqGQK{GdzKm7-U@a2%JB5z^Aa$;rc_v@LmUws*@)^{Ue=G3Ruz zFK3Q8|0Jyci!nM*0qUnacTF`p(y@^LWl*6ExFt8OEA^=)CWk3IqSL$SQHYxvr9rdd zb%ws~F$#J&Xx>P47IK9GjLI_3j4lsA93EoQbM6j+X( zEwhAd_dFtlw9inzp_N8=eYCVQ!E&>2#xIay@rA{^U}xX)%GaXl?()$GpwxoRc(26{UlCf<_TS~IpM;5L zb3f=x|AKcGZUYuIAQ0| z{2L;-aQJd|-~LXU9*`Z;H!H#1+e?nJ+C19}&+H(LC7evj$*Ja;H!kk&U;CuN6$ETa z1j!0ew{76hn|>=G6n2*B9L_+`<#%Ss*3nt>zc2ne6!w)95QpsO%9B|9L_*?c7%IUs zLGwuj$}^9Q``RNMw#CA}Jsy_RieTm#i2WvU{#D|nXnkz7m!?e|!A!o3#)i`xoaT>E z(sI~5oXfgZyQ2dvOC2xGES#vo+#pD`y5H*4641J6M}y#P<45Ya7~K&AcY^bB>v7-H zoWHT-#SB#VRR&2G3KmoOrOqFcw~Q*IfY;NJ_ZO%gFYI-gJPEXgrDjUE#gj4EIElk` zf;>nSP3oP=k{(%mO74?pXjWG*f1A*g$9k_ZzHPsVK?(v`TPo_fyW7Q;w@jS%4sncL z{Z6p_1VCson;**6pqXg76E4(-#i~K;9_NF$O!H>5DbJ_-K_;_zT*?5%YlxWW#pRnE zc(VtCiFg6kvi3Uplrtv_NevsD_jz2Yj;LKB0%(2t0b!N@sTbSAmprOfOe22W^xLO} zg41{tO>pOq!40j5aQKqs<%cZO7FT?ZAKjThIW>l&MYUIURuDoF=zOJKXW+H&{s=n9pEc04A-Uqg3%Zmc&WJe*4?=hqep$xt zVy_Nc#X<;4?ZxmcuMsUba z(g$WA*zp?VmKN~eo=|aXB-NTXN`xbMUQ4y%cx_+c2HD~ee-N5Y8Jp}M5e@RuZbYKT zzBw<8dUtV#ko{Q>_Hc_&4gIOQDC|^w{r#~E)9(-nVz3E6(Ao+_DCxI5kk+w+kQ zcTS+qD8yFljA-tNIgtefhBdtaySru_Ht9XpBE#?w&G$CdKjw#4E ze0uuqv}D}Fqo8x+Gf{ijh|~vjF)@tOv#6IzQzrPG{N-U&60mnuBUbl_KyYO*Q@#NI zivLQ3uHLJP8kDc2&>Z_BL&Qbqr0AEH=P*yP)N(lQBv)mpf*h&!NEAN>sk>*_TRz=% zJS-?*hMj2Wt{es~I=rk^WXzMMt{(Mg$4e@JPw+Py@QA=pYTC)bowO+)SG{rB%pO)Y zNY`sy`Z5-MI(%#%4^@Divl-+h^%#xmM;`SL?FFO&I-ZtSNZ&<&v;!6^n^in^LN+#h zz^3s9n%+Am00d2*cuE8`K_^iGRFv<^po=l1p?gB|Zx7MeHIA9rS?np$h%7CWP4io8 z>5!M@EdtzL!Lm08i#U^we-P2dm*|O3@J!mJi6v&Mz9?*ZT4ni80YuAu*HhEu&(M$s zUtQB(V-I|v({i0B`Va4q!=cBExo)%J{j zbd%PKRLRh&BGF34(zIJEE2dxOlc4%mde-)QsSu4)_H zji%eW`_@{W;=IA_?privTGeHIL-`aD4!tti5CHYyFj)KW;*W681lb+W|8fBUa2YU; z@P6Fr{!}m=dcin1H@_9V;zGjE4X>iY_D_)s9S^S~pGsU*|7E73r1g!T@66a|%0zwe z7&~3E2q+pSO#g8+ZLa|w>;vtYVuZzb?DrUR4&ujmxi1w1O}RJ{GM$QBw~tveZnZm+ z*7Gf!FQr}TIJ6m%`RHdyR3MVZuNKtCW^8GmAR}7xd4q?D7fDz9yc5iyug31g=9D5GAvrab2+A?hF(l=cL>^=H!iteI zIgPwa(t5?1I|(s>7^XVHTyg*m1lsbzES|RS#D-)Jee$(=NDe>KSx= zy8I^Fp`8umzsuW`JJ?bX&*&$yL^6eeb%vg=5B@&|rF?Z{_mBZ{x zHbMhR#!7y;uO}Why{NxDt|6y%*8qWS3n|b9qSy^tgrrn4P})md-Cd2T?*b`$WtVW$ zY~I!?IM@M{bN}@rZ1&-KorCG;g3xR=1|hgh?X1Iy<80M&MR{;Fij(~xnqLZxcn22k z3I6~Dq6Hd9;hc=8KiUzGT&>~7tSr|pwv7Huz~mTOUZ9jlRMrE^CHU7?^u-SDF?E%M z`N{bGpPmCoqA)EwMan(OM5D)+u8$O2KVbkxA*VKD0%jh@?gEKA#I;j`FCO%x6CMgO z#)L_ogpk%Bq)j_ndp&7w=`t%+lt6CkZk%`k+p77>v8Jg3D;|=Zg)*b>mht;$)-_Jh z)h20k0fG-bKh+UQh)bB&(wJDWF4uML^eb7#6>oYoeO zp3EKo0>c+`^b50K$6`D9$;SCH5{RX9(L;Wti)v?(=dWCBSiTW9(QPNAmB&cu81qX9 z4XmF}%OY@@!Kp}ea~KRqmc4JmiqmKt7zFJ*8X-tF5m%iVEdN5yF}i)m>chXmNhWB9 zB8Omrrn-wnk%W7Va&=Yv+eYowsw;)Y)k%rInziF)^sm)*8iP+W{ zaR(aMdJ?YZnHzBY&T&eF`|BJrrl6r*W!%TzS!nSSCIfA%y9~!0#W{S(Y1TzdIencg z6=5&y02B&&3kS1|ddGsI2B7Kux+Th9(s|ieTpVK?36OgI7>cxckz10Vyc%sZP(hg$ z_;tN4my4UkekBROH-Fo9JQu1w?RTWoG9fcc6m10r+xOhxvU6-JlP1nJ-z8>gv6Hft zduc)b`>M&w9GPEATzvNHIrH@veiCAl_iuZw4JbXb{SNyg{ZcuWKvr9+}U`kw3O)CMm z=m!XZ^@Mm)uwpS;ePy%z-$XfOs1~Zne%+mB06x|*mQEZ0ck9vqzX(Kv=xNmeo;)mN zY|0NWE(4P6(rs1KV1u?0{hOKQ*5#h$G(!F{_r#CCysy7=4|~rMqXUA41=O42&Rn7u zi!SkwdoX^6lqtknm2JMazT@<_;IOk)Xy{uxqDNrCY0e~PG1T$GV z*sOLM-}?A&LX3VrVrR1IFD&N+F)*QEzBdY$``OHuH>Cq6`!1TXE@=2j>JB+EAg`RQ zoLOum(Le>b1=PImZXa0Cdg18+ zjmf@=mk2m!{PHje8gA5`>6yN~lgL%1aPuFBDaWXZsJ;Rgg>Rx8B9;~q^b|`FB z^tCoM_NKF0@!xBiUf7otp%~a6Uhb1*#`u9oBu*s~)*~tW4WdVlbaa$&9Lq0^iO{l6 zU=S{6r=YEM7ZPMk4r-}xW?**Rh~Qxt?lQggaCelmPclV_!h~wD-|pqcAEe zN`k?<9%USJO&$1XNQM86JcB@+b3qkHHbVf5(f=eK=-mc*E%MSwq1`NuZ)|0{d}G^% z{+e75IO!ZwytnQ&SYN!^oDxD})`7QPSNgW=wj}Gas5-^cJ~TF|jT2Gb_tMfs_I{C#9a(4n z9Wb=L5Gp(>*y}dG#y%J0T8{K9Go5yA(x9^DXPQOo;Rj|I-)9)OEo-#`#;!74nQsaA zdC+50yZgWN<7pp5xl&i5dotjjgxiX}bMf1S;N75}kEI3z6W7_ZvBimzL%cn;yIe(e z$U;zg1Px8bDFpC^Y{kgdE5-v-I>`X)4tJ6aJ73}nF&Y#6vRU&�?$`JvLc$-%|^= ziMDR}xTuUC_F2qGkLWu*mlNlr`d2Ugc?dKVx6mF3I;hPPw0%r3*JU`ki$4uE%&@aa zM%urZ0@X(AH;s)bG|I-SQmbQs%TKRF>+N`w9&_T;(EOlph85k;E@hpLQUlm8yV1Uo zz6`*I)6)c=-%Rs6S{Gn(dSfoe$ljWgs!FSWeilNA=7YQ8?(jhyyM~#?L(E*}3Vnq-Ho*xflgb;-|`8%(h z%46#GC8Z4?ONwqTCM(jI-R*o6SOGM6J1=!c2w5+To`uS!x13pfD=EdvAgNU|8TJOmy zKpW+&KL2lM-m%to&;M(EVI9_o1sDVeE`IYDa@R!6_PDzSJ2-S0jG+E24;>3Yo7kR$ zPdt~Z&P0~a?e=1B@#aW8GAvcbfe4wHH{-U|{SwY7?qaZ8# zviaGhi_Y}K(Vj^mZKSd0c(zj$PoH%e`fE(j2G?b~AmchgW+$M$fKPr>^;^t}{kWrv z`phxGIl@aZEU9DSKLzck1^av{>r4cAT|y6Uprg0yGiEz0y=OSzAHml0aiSji=>l$; zn_Z>IC-C8EkUgFLkl>0+EDFt^wUZ3eUlfObR-GK9FSQx;msZH_&q(ZdQj%Xc*Imz? z!R50E+r9i5wT>ItUqM)}$AK`jY{*eoi&#MImg|?mGBvz9X9XAHzV2f#=$Q&yM1Ea} zFVVCT#E1H<6Z^O=xM72Ic5p$Bx%dbT5JB^2VnZK5=K-2j;BylI6nVe}s zivh@J`$Nr*Oi%OMZMz#-hH>wCgbhe|d-pUR8$AGfjpD?vU^T3}{OKT6uZvFo-AZI_H2l-fw- zUWqFOG5!Gh0I5bVGNFgV$CyCei6H)2+UlY@0?wVAcn%4~Dd>^E&EGj(w1>Az?|KoL2u=Gc>t8D5E zr48%E=1J4-E!~OmLK6}E$?IsAnO8CnD5s^}vfKv&@;#S!xCDfsekc2qe>W+x*t=24 zA76WH;+|fd#}m!1YX~+l6#Vi{Fl$X=W{n!t2-=P+sE!~=THCZg&Py7_E90bwDrxA{E8<-*nby*s37VN=>#heuCiUiw!eTpTYoJdw0u|J)81D6x(hUYCbYwQ z0&9vqDiqEGTrNXeKQDA`;?RYLN!JCJ;trhRV0Sdrj$!MrM}mD~^`8j5zKT!$xM;3( z%}!Zjof6pR6NwsK=WqVPS!vJw~02?>6V{Zq%5ANQ#>b55f-VqdVcL zo=EVyvE_t(KgP>Jdv{OV(|1tQ;$zYIU%i}F*peT2SOCc3;qHEUt@nnic1}{P6r2ep2fu3E-cOu!u)MGlQc>{e^}V?Pk+S ziEWfe3xrRjuC9RymYOv&OR5Al8Ouz4Z69F6b#6xRU9fEXLS_T(fX(atb}wck-<2pu zn{-bu09Q(+#c}*}-1=EJWcFd6ba6?@R-{Lv03QoI&3(dnKNz17n7=Ybv#Nx1QJ5Ig zo9x!p-8gYAYx_Z=nEVwI>~u&5raW=qu3f>OKzxe>Iz1Z9uS*<~5Q^ME&WezX13coW z^y}qxiA_qF|A(%(jH)YYwnVW6cXxM9g1fr}Lh#_hU4py29NdGuySoMp?ykZ0;Jx|o zz3+9u(eKas!-2uxt5(&ls#&w_lwAK}#qIv}#>_8#ga2u`*yNF`5){;qm&yTk#_wt% z#4}+Ww-Oe1kk8`f<z~Z=*bn3G?oRa!5SbZk3^~BF`|-W(2s#(jcjoF1Y0mI@LFcL zU{1xLbH7cV%yYbgU~wYIQJ9Tc7&nwD*aU!#zVc59Av=^8H+YA2%Y)QO_HAC^K?!{H zrK#`d@qHWalg|aU=bLb{XXmTq#(+{*r}OebUC4kA1o+|tZr#(8G%YRd5?JF&&dq&M zXyh@;Ndbh;<()F%><6qr0fQ1Q%~#)bq)9E9aE(X{n_tBqQI_<-5cP?Qllu<>^TSYQ+3o}iVtvnnRun}G1ycHQ6tE$S-+4|1{ z==8NMX;FSnU_Lr^U{KfLKg6(1m)%2nB5qe0gWo+D7b)y8lo!NUSfS3A>V5Nf4rtqw z_)71{l*;xO!1|PBKKo2$TZu6e@s#_wkY8m#qI6wfSk9D>*WF|D>=a&`&jXKUP#iX+ zb1ZI5(dF%ltX8z&@9U`OnfZ=&1=Z3>jvk>NqTyb@k>Bn zLE={c?}{-VAtJS)U?uB-l(WPl4hG}k7UHxfXPT$?SM@+g>)U1ycJwBgA%woCbL=JQ ztD7OOIP+@!dBjl5^M7Gn{}4p#EM&dPTlCY0@6bcN%XrnF`GCo~E_uZOYie$Jf2m(m z(2XAl0SurTiOEI`un3|aUs(W(xxc=ti>HPjMfrWhtHJOM{J>HpFXX5U(r*Kr5!!?T z1Cx~w<%GG=PKq3b?q@rr4}ztv?>+QeQO&E!Z}%5u>m^z3qz5GD0Hnq_`$n&D4NRU6 z6Rs1c(zITvRcoL_WW+N8OJ!VJnB?|hjfRne7||V@7dA7z3n&l?UnuwV4LCmvQ2P!~ z_>`QK<7vkG_KBsmAguKEr2z!LWU(}$PMmN_bySqwq+o3JC?ypbG})4iMGZBE4a9rB z%3+4vG#;p(;>9PVEN~UCxzu8o>1CUbCt4N?E*|?M!t>dsPfs@C6NKyLtE~_2hO0iu z3G3u&+B9k%i)rkC?C9BZcF11nx_!X$ORS0gbL7KC3>;MDB${in;`m_q*cOU7V*b+Bh_7x+k?dTQ4 z&kXCXmZXwWx8JB>0phm;;ld6eTM>?T!(1>+yg>>Lt;NpS&^@?J(9;76wB!YBG7w?l z0L|onUxDroR1#qRV$|_vZlOp-&XNyMYXP|BE+V-DP?VIEW)?P(BG#{&%X`<@A0V<> zMIC*->!5&@&p$uv$fz@-uqTCMeTb^z`Y6e)bKq`;w6?bPt}EQtC6tlTlAM;3uf!_+ zxtFacvV+_$!~wamwic&4NiMUZbn&>8`KX3L~XyY3_k}Xh9RJ>5*V)`5izrEskIUMM?W#(9r5*B~?Y_>|U zsHMfs2QdM@Jr2Gwu#T$+|FAkS&b&`OtmomFUeas47xsc*ub@vThZOvlv5<^If-yaH zb+81Bwzm`V*{``|%ifd96&JYdK)X_8GowN!|DNCpnnPr6`}5 z3H3PqT{hddclv9<)wZ0+<;ZVJJOYB={tseGjFya68?Er!9><>~pjXGdWC^|2{n|&m z-V2fnzLt;>tYTv=__XK`=K97lh)4 z9Fn@6l2{&L&l-A3d~4g+eUN!a+FPkVBB7O!6fQp&h~9jU{YC`<0EwaR(?zd}rE?X) zqJoefwqGLM5Ve)|E-t{H^u_qXk!!E{#o2KGZIxmxE8(1#>2(r(a~Z?Z390Dvo9%c6 zcJ>m3bA8wVZzLJ`PjK+?;!;vv4%ZRl4E|l;*LAao|40V|48H572jEHl5)(h1oSam< ze`i=-)2W18X9RkZbx$Uc-47E4pCe`G3BRO(t0Y!p&d`}9Z`{kT(qUX5CNvHS18UMy ze6M58=@C|BDHWh<5@g9EIF}gh=u5MdhjQ4)<*K_nRh??x^ySIcHQ-FLY%0)$9TLhW zGlH{{IU~Ehm5a0>>^uk)A;#it)@#>Swd1HIf5!}%^xBFB-A$lGHuG-26k>yKHaN*vF6(kYOn5Fh#~ z4UA1pp zTY3s*i7G%5nI^h%Pf6dm%6qSlc{xIFN=iNN5}E^>k&yv zQX}W2fkNLRukBQAY6NICSm@~FPM@9^8 zPO+t>X~)H-1;R(><<}$l`FTr+#^8KwYYBg+eDv9VgwR1E4r!n$0{D@-i}}y#6^T)1 z&ak{K5mb`xA#b_)l1YdVT>b%n%yLaQ6v)lNMOvcFK6!(8PtFn)nj#k-re@Db_+R|P zTZp4_?G-jtJ|62ZPN=(10m==~vN>pAZzh|la%Msff!+igf{*PC$}0beCgeTXgX$nAnA*A;9Qh~mVjm_Wy!I{%t&k-)`M`ms%OPNCG< zk^+X{4Z^1};X8Qc8={?rXwuwdn%Co-ntck$uJ#n~f4Be%g0XejsUql(3K4X;a7+kL z{t$Xt8WIJJP=5Bv7AWn$Yqpu)mvzW$@D~}|{5q~jbIk_Yg3kvA70o&@+*>ln(vFUV zfIyu_i5PB2PGC?l1qU^JRu%~()Lp?zV6|{ua3fiF!B*o540rd4`>W^Um--l#Ej~Bg zOK2+@b}>&%o9T}m@&>KY`O z7qqVLD_LRix3wYiu|g>_4_`p*?b2RdApS+nPU)`DTn5v;bKQo2 zT=quJ@XMlF-(Qu0c3{0i*-t2U1v{)?CO8UphiuEm^^Wm>>{#{g9vkaHzZ;Zk&kY&` z9_%p<^jOc0Jg_Lv4#dEgL$`GQ%=dWBt~1N!4Lu_nere-+NyV3@a`K=!&(?Kup?A*@ zA9@3eX)NTFzbr}@Yj1{F z4;IYuJaFT`*5ycW7v3ifBHr*q(`$1l=2t6*P*frhJ{2n_Nt{;rmnFM@~#u93F-!q}u^~Q%p?E_3Rww)qPnpRuTrBBHI`44+pFrm0h+v_#AyW3ob55dT%#?B0aHqCvF-SW4;ONuq3YJtM;XF^A`bn;6e1y)ss@*bv+^X;#sA zy1V#b9#UGReU9N3%9 z?3;_=-3)4)nK?G-`q?UeQ1<)?K-FT1!^R5BJd&_#Fwq4x)6>G1C;5(Bh|{#ch}g7; zKo%&DL7^$(a>00j@y_8RUQtUDU5i?vU{{VKTd%|5cS8m~@yMrB?T=yTT?2?X~&ep@@mf+X(fLhPjm-La%-@DCO|5z#+RD3axZPX`e^=aoZp zFJM+vJF~nFM!ae1>Fxink6yiQzw#)pz3p?#Tqp+k?hw@V7c&p<(E5)`_f1>(KVhp`*il^aaj#^cuLm~tCKPixgc)8@(-~_%eMZ+CS!RDAwzhmp zKR2*%U5V>@%w-W3M%y$bE|-NFd_n=%M0{g9ss>lBhlIJX;czlF?2pSUGpU8^w?i75EW#gukl9S^j9g2#H@ayVg?Yf~$G%~ZX z9!il7N;#wp{0OVSS8J(Sf|S!y7XhLf7?S8)8H*qVhlEH?t^SP$G@JSdBrg#cb%fl3 z&^R2a=%t3X`PWVx9)_D(ZtaH~Qb-%YqEJlq++Vp5C9HHFFZYNnAkJoqNDP=}cDv+o zh~#-bbZRt>%=d`JqK>qa*imJa;{*7fH zskF&(7g_6&SXGk&O-;C3D{XfB^4Qw>09B8Yk&(D$1Rey#O?{rv+t()=S4RW=@oK1| zSkmW>tkIe|xG3Zl6b|SkHheAN$cP1Hy#bTnEhSn}DoyEu`P5+1)w+`6#b9Na;@1|eP${LV!R9^f|Sg^PY49lY40;nCp0S^OT`4+Stejl_J^PW_S71 zIu)7E3(^C zoCkMxV{*mS!{=J+J-89{RE57_uQCh#L+D3)F;)52fpy+QMn-uc_(0S7$(^Ey8Z*6; z>D<~XL=OVF>E8+0{C|%ot16fNsL|cL6c%uB+jN)s{c2zG3_msNO!OePB|<9u&b_=8 z%9W;6Bm1_$>r59dYwTlZp;s~UzO7s7JIS{D`5!t_PvMJQaDzLv5A2jgN^^5dju=NE z?Wj;tOgi7M0&C&=BKzy4QFHH-x80dHmGAHXSIExN0g^M2I&FW$6*c{`prwGrtaJ6p z4>Axwm)HO`njIE^XkD=4bF;96gg2&zcCxbDgF6kN(Gr5s1+OSiR#V{Q?nU}aioQN~ zGZuOmZA!KIglT^>5jv~afoT@~6e%Qdt4@=0zV6INLD@%(4V&*x_I*mn_)?T6)Ej1m zu(q_21oG8;wersz@rMV?hpwZb;ON?DLZoNmdKT7nJ*#M9R_G3hX;W-U%3Cq#95tTIEKG2oWzNE~E>DnmbQ1ll4%B;B6L)%15ohz9{ zfYKqbVf2Hb#U9W`E_yhmBrfT&9XENd+roN#i;9y0OHQbn2Wa=dqi1OKcmIT`3_i$Myy8#_HhwJZ3S)EX3Ux^Kxx%X6QB~MTLf%3HQ(zwfhmEFnn@ZFZF z(B_zp>TsrQZsGgFNk+-G$_~^vNe;h7Ro}vtwAjjziWz9M%Ww!03zcTibH(KhwWeR# zT;n&QwlJ2Z2(-wQi-$3lL|UnDw?o_8+wsr#<+EE7KCbHMXo$$evxVi*+8$;e{fi?(GfbtolUM0 z4urcX!QXy#xl5? zPDyQ|sP#kqx1n#@xpWlheA3gW90iA2>q0v&##QcEtg0kif$8}t6Ufo2&l4P#wx()X zAY7iUi?#NM2f@O&_)#Y8%_Q*OXAo3YXWsjTr+UBeRB5@D*a6+_P^**}ZQd7@o;$}x z!!$}kQF;H?-uiEa_$-dEM`^l`g0?|Qf_)`3*w2Rjzi107eFQrNL*Y=<`33hvWpYT# zWbMS)WAg`T23(d(>Q0cCgxEqqC8mv7KkAq-;RE|tu50>&3)RZU#wGQAg`yLa>UfR3 zAWLRC7WFR1bGra46&ae2G++TPtb|%~Q{#8lf1DOke z71gkQdlcPLQc{@HR{ zb6xjCO%fsdjxZkeTBbdGlz^tbqg~)Zllc?N$D^YWGwW01xIlor7=ag>pK~BkE5@Vz zD>w+{CQ@?4h{`E6Iyz%6OU~6-POqVC2|B|}v9`&zqmsxJme?&XN=!{A zeB9mw?cS#U;jAVmfBe9pM`2)W(AH%$Gc##crQ{Q}1qg#az92lLj0xIwc=7qDD|;F;2HT{AcY?@^fq1d}%f6eD3Jm%pZ{^h+k^) z$+OLC!DNJZ$B3GxfJk|E1Sb{&_RHcAXQVy?4jY*tA=}bL7BIvIPV%%fGENK0c8EAVy!Fh&B zWunKx&>z#IbIC5vp6m~6#8^r&KKhkZTl$6Po^n2H(9S-&cvX>{RnZ0nwn3G^)+xLB#j_x z7NrsCp(6ckJ_$Wawm-(9wn3>EEU=6_iRN`k||tX51rdk4e#w0H&WM_IW{H(qqGgekQ4W&y0^ z=KQQ@zXo~Ch|o(z>*s{~#;w0#c^#7E4=%X4u{r*#Tc%HZTW2Scu5W1KPhhc%h3kW| zkG%HC4?aT$N*HZ7NV48L;>9s$v(5bM@D`(#Imt%GIzyafJmjAaB4eZ%KDv=UB{oGN z)$%^oHZ#RaJ(!-}E^2FsBge^{bSPLj(&IKvf94NWw~*7Mx2E#O+|MM9kUlktLU__H zyHGUxpdEmwY+WIAvs9_fQ#EEX0AV9LGB99|&)KGsO{yAmMIX${n{H=r^^pZdrd!xY zXkW~CX7M=KU6X!;qp+I;-qKCCH4%Yd-3_K=RC&EP2bn@;GWou7hm?c*!tuVJ%dwGS zR&+oilPdQ~Uz>T|ia*GXRmjup6h|>sX2+*%j|r$+1^fd!E{P6msVI&49V59DofMls zrH;pqoCMjd=K#wLmtk_Lib>hkx6<+(npw#2%W_O<%q0LuWf&AS|0Lv=Q&L8_Du z&vq=a444^L9=^7oK1(8_JQ`?D+9Fm740(#~`*R`Ry2S6Gb&tVIZptr|$hdm-*nWO9 zUwHTo9S%dvnrwaN_<=UPw1SMdj5&{?Q7*WP{&FI$76BgS}| z{I>tNgw;<`hO0@GWHM808eoz<5(fMl@T__Dl=mnjFd=24lr=aN>u+=12=Ye!mT^{cw z2aDuUX3%mh?eg=EK{%JYph_3h&Ozyh7EgzGeM7@%nw!mnnV9RrfZNB4dL=au94XF8 z{Ehmnmd7r*+sV1kpFH$hPV7QBJ5A_HuDAE7-E(vBTLuR0^M}&K_RpN#BQC0@DK}Vq z4|T=aY(;nDS$U3$GcKBAhY;Rg+hQ;t?mL|)W&mX)^6YHV=Nzp3A9~7YrkQ3+1rOGss=^?Oo3fo#bXqlg7=rC(!#MwJA(dY#dYn|`nrmM`mEMU$#G6#M~ zyVD3(DQE>iEVZ1==TCVx)%ed%r{{t+cuw|D{G*k5Rx*hGS#19b;BQAiIqKW}`R@W^ zHRFf9hdcQ}a*e0y@BDD_R<4mJI}v>*n!#ClU%s~1O-4<^iqa`_cJY1?fw$fZy&4n9 zkhi-J5x6tkpm~Nyr51kjF&1YwP5=666#wUT8GF)`t&SY(TtZT*@vmHr4M$6cQd;Em zK?7RkH?&{5W{sYSXzY~KKG}-?`8CZ?WKp#<{-N~x_(IhTixQ|uG%Qr9<<@o~l9Q~5 z-XZEU;;PKVm~nW9`(BJ8MECzlC3NkS)>NVu)+^&1F@C$d5p``Fxlp#`08MD;s^A@@ z($W+&YsIjt67PwZa#8JVm-chSTB_>cJ|uo4(j5MC+a~6mc;B#fo+$O;)Ys(L)U%MF z0h$-0R`t3&K?fr2=K9IF1}VvTEOO2Vg>rDUa5ogBh;PJRbvXJ|&g;&><%y6|ZhI@d z7s4qO`UF*g9$M}EuED=V^_@ZMhYPN(v$R_+7F0X;o}69I{M@ti^P$C*@I+y9@*cR0 z`;e-t$#OMv$EY#2hwe?ZQAPDyhmaGc;gxi0E0u@x@rljk!ku!6g*x6)-Kp@1`5LHa zcKYsg?Haco_t$pOPyR2kC^Zfl@icKAqambTgWe!^5@7X+@4@G3c^GcS?g+#bvLn!BNgJ6J*=Ti8vliigh8UN-9691l=#p1BYBR? z$zRV-`2Fr0IkUR*cXu6+X+8hI&_{WgJe{41+Y!WYsSsz>k4V0iCu+~zGBr{88pykI z$i37J_F>slaGN$Np*qw$KH5&dGF`T>V>!?W9jOMyL1a(+lwCT`32F1-`KYW-Nf2f0 z2nA;+w~rwpxbysmJwEOsIgw}XEgUwUdQO4Y+D4*3is3229>DazW-j7n1{qGjHOVt@ zW;-NmMa<9t3JeYw-rxFU`TXZ~yvTd(b)0eCnt?uL?h#i*aYJZ7|9fPN#NX8Tl6pv*yUki=7h=jAQ9R}XK#PFI*Owx4gX@9HsX9uU9exLv__v<#z4Rp0^mLdu~5WAo-&1_#CXa*C5blu+f0dm*eS;6w@T z5(w`l$hDPZP-*QY3sU_%g$d3VcJ_VMYC&l|B&tYGz!qKH^t^9qW`M? zjZ3wv_GWy7&@4$J|E?pGM zWHQ)(@kcu#{F4q#+N9PuH9dcMEqXq{!FIMKzm9H_P)TO z+;Ek~(wR>q(UXA|Oz!%%TEg1*25J`f3iD}_A~uS<(;mmIxTNGqPcJWZ zowp?S*ZqjDREU_cu%8s8%`XQ09}G91)8c(naj-UCarA^UJV$f=94}MLJk6h)z^E9& z5^wnT{Ih|VIGTvLXT9SItT`ssO**PfO`F($cg$$Nhn?KLw)P7{Mrs1RL22?^w0C7j zMT|d0vS2`2BE$mTjr`{`OYWaH%@Z1vGEYP;EXn>53(^1V+uMRpS%+=>+Y4?ncYysU zlA20{?y7yE_sG4(_!9EGlOgrgSDrp{9H7Oe9%ZXJks_#yANk=liQJmn`5yx7BqTt& zF<$9=X`iejWT4%=7;m+1qM~w5t?3ha=oAzS@xvWp`C*5PyR3&`g^yqQj|{KINLcWyJu5jxG6~A z7&jeehI+P}BNaWZ)X+1eav|*3HvDcb-16qvzWi`#+&8yHAL@8#2$eB=jeO;OCu)n2 zzxfTN-v0NjC5;l|RBMrrkTL1bo{8$|^z~A;T9iu~!(u>sduLq$rDiJ0@lixuU3i>X zfL$SnhR|$8SEj(9mlhrl(y-Sa*T30j}9G;I553nB7}| z*1kXvF}EGuq~IF{KR-VjKFR1YS&NR}Y13LLV`Xy!NRIb7_bzl%&ywgOIu865a0FRd%$7Vdx4+NXC`i8jY`lcu zNcq)rHZ(f2`>|K&E}rUddbw^WJk1Iy_tq^G2{qkWn!PCC3jNTT7f^fF5(xfBC$IKR zpch(a*{Tu-)$W*w*v<3t&jI($hM)DP5;GDK@gkMz^8>x`o1CQ>eOba5FJ<7%1m5o- zHWadC`lwK2624>DeT#Jm&h-s0+k=EvBJxgH?yVjd6CO_wfoomf2ZZHN$yX;9s3daO zj6jQDx=Ipi)$H<9xC`OrrkM*ROZ0d*HoWGE`N^;)(A@oUDMK>CUO4M(N0T*znLcqB zXOhmuKqs<4Se(xzkX#}tI}f&4gGVYIS}bytQ>`68{}`nkvm-EGeiLbM?UU-9w0NtI%DCf#d|p8iD#w}bGWPHNFG5W`0oBQ2C@Qa`^SU-W>z2jToaje(oz z5ShLuw(PrE!hH>IryS28cq;l4;|$x)dIb!X`RpUxA-Or~@>M19+s@eIvc0lAfsNu1 zSfA8ekKnT!^a_M?E_GnPj008>Z4MiS--shc$;f;V*5h?c=;8Xp*XV##=VpFEOs>M+ z-$tr_@n7N$f05u4B9q$M-rS<*v=zm;wB_aY zq7z{a%UWNZo*fYj-D2W+x9ikX^nJ;Lq*;^7iH@>ts0Xh#ax z%IWp2=p;Dd)l;$Nf*tcX5df=YO%!ls!7H-l-AAFvWev0=0I<%R&IvFVYnrgd*pQ^vAO+l?2R-aawny9`rQ z$q4j!11zqTg!1$>%m7JYDD##seCA2RBobhL3w7!*qyXGy(R?V_yQ30Gs+Call*!Rq zB;1E?KDa-}%NUOKX<1{+&NE30VL$?3u zB$BG@D^0%)xu>HA3FB~urtxBFjPyLH1K2EiN98p73EYQmUCFCh?dIG|kRDjpB1kbs z??#LMC%}SwxHzz!lP;`?8M}>g-<{mq4A~tR_`0HjwpNU7K#W_}>c~?1p^~dWab2Y_ z+B1Kc;709C)$68OHaKL>;hJ|w75ZOO5%Q{_X!d(sJeVsN%4mabVxgs>Pol3s}3Jg$+i?_v^yee3^Y z5(@u^N$8Xi^$BgbqlR>GhxhvP_xFqEwY4P+^k8D_T+BV4nW%U+=)Q-|y0SQkqNvvZ z>xRV*t$~pbVOUg&wRu$q6x}l99?f-rAWW6$%;#!u95$G-cID+6e;>{)$#z?^UjPPE zGS|k9tF)#RE2pp_P24FBv}$A{cdi}Bqu|*SaBX?y9>Vx7M>3;MQ{FS5f(33~nrJYt zP^_IGyS-za8=7V&_2trGJ3fp27w-s^eg^XeLMmQk{WCG_{swo~oYAPIesh=tYBmR| zU3~7ZrvE78rt2ZaikOc83Xfu}0Mdgu7yV-m2QRidl`(5*J#8-7*p?7;qUKDnnT`y{ z?Fblnw^Tix3I4d01mnSU(w4Q3812OAQ2QODe~Lb!t(KF_iv+<&)>8)l3;hxk^%~K% z`69+aCrA3G&?F{qzNpaL#>DaEdJX!Wd=W>|CT{P1q-GDg=V#&Ku4Ic35x-2t-bn~v za4LdClK=5MitjDDuQX*qz4S}~)`532XY;&e{vgrMVv3#;g4mckZo%ci1rU$~I zS<-F8_QKFT zDN%s@e)LVf>Z<3A^RQ-m1Kr5PY0qd}4RD~*`xaE)GM^Lz$+% z@}C}s(#TyPe?!<|{sE^-D+tQP_EbjkS0`l!#1gqO=SzN=^jmJ(^x^MQOkeF8gxFnD z{xaKUp43CcL@9fd9L#l_vqikPP)m>_x52h2{}8i1Z91099mbO8(gGwGcTe98W>dkw zk(@lk>cJvP83;qNi4kbgq1JAHSYby&AjOW7|6}m*(=GN9+HX&4( zlXm2#)FV4bzBg|j;5wc*q61WnRW$@i#eZ3!>)#Hqxi+_V`yb@;+FvdYgPLRr7b&FP z&#(L4ou`Llz%2&68_29_ree%QrH!hZnvuRfnzwi7@Tk0$j?PIub$2~1pNAoE@WdT+ z(!Q7?TCC@N)sjKGzF%o9aChEM?@^J8`h`*su5J%bVDh#^vZm+`h5$&7KCk1X+a$WO zGZckXS9KC$L;q;zwP$7tlQV5N)lpAY@jGCQ*;4f({0r5a!aa!)?pue+6U+Kck;v+n z20Bg|R-y=X`DxYt7#iq?-kTxqV1<`mKc_EUvD+WbI8M^X_Q`KPPNZGsTlna!qWB{? z0K@m=XnVClM=VHzCGeTE3UV3lH!owWw!NPZQZGgCrTdO~{)b@u-f_H*?jR+&?jn(~ zr)A~!m1zG9jq(`jjD=vRE;-8t*NRG{?8dn(j}MtB&0p%wL|(|S-N!B<4(P*g5k+JF zq%*tVWZ7GbjEAEl!r(;ul6B)ErNVJ%qiZNa=~Qv$l(i8?0V^AkVlKwM0t3v3MtPHR zSLyS=-=k>M|3uM}`!yp3ekU_h((m~pbF{4e?K-3D+Ay7SpCi;rOAbXx+AM5 zg5iE?ytzlst*eW0Y=?n`wU56BiVWhC5*P47qxZFGtbi}hUIWf1eVQy6D@JB;NH<^0FkvT$zH7i*sYGarTXK_N<<^+oCwS>i|$P60z(D z8|jIkq|QrBzc}lV!{V*tg`Psyph>yzKa^A+QPESEd$trN9PAYCI=ACf0wCT(9Pnjj z_G$wuILLl`WbYZ+@(SP7%F3ja!OM%+^x90sT_cLPgaiczMdaM(!45S*Myz82KAJ12 zpge^+!u1lpLnS4IgaQu&`!|KcD-$@YC8FOsOTO=I$p7vw7SMFdtWHhM2CCn8!e{En zWHxPt&(2Z-+Lqe`J|{uR$+R{td+z-MOx9Vr9&8C109>Ij#y3*?0^E$m2Z>4;z>SSz zb}*Nppj=<|0hwFqRaVw){P4KV9^1Ngxv;q{B1@=Zs(P>d7ld7bwa=f2N3ce`sfYVK zydjprSS6k#*)MB_2$9F^!*ECk-jhR)%ay^&+$l_QT37*#-(37pMHv(yE_vu?` z*>SU7I5+o7F{bzgbu!{G@Pae(|M65!I_TtYpMQ_u%#JEr?0W*5Y{LlAI?7bO|;Qiuge`dp(T<`<(RV z)?*vzW8ZD}$A8%_MfZ`$#Wz!w-}!C$HWQTqMK|<(_Xm}=egx6`i-$n`f1`t(f-mT= z$K<*f_;5$b{$USy=h3oC)XWU-5%%$Nu+znER~nwBWmnXy>sGS4t!?E?JvQ+>3Y?*Y zvwNy0#KZH|VFCF6RGwbM*=CNF>*x>CGT0+HVg)nXN%fw)L4%5jltDHUKCrq~tOqky zP5JwE%kF~5wxyv7L%X-~*2)yUEgU;__gV!DTXs?cv|)hSoCYpI1km6Ny+_QlY}RYN z`qY7v2%UMdl|_irxBgG@`s>;X0o{0CsvnA4BIsvm*B_9~ttDuFv0$_bS3}FlIPpul zG9?F_d@aV>x_79nU$-G;^$DO1ut27=EsEojk?ZZ}D~48Vc_gNja7yYTYnYFxM!`M| zTUmKWYpKjIba9XS>bEnbwEb7EY3rDgRZQ4d=<)IKy`NqEmZxNY%AvklNLb~Uz2Vg0 zEB3Lyml5#j_3-c3x~hf&sTdZkTf+SF7MVD?otp(32qW?TS7WB?KEe-H1Pi?O&)6lm z?5u1&697Uf;axoDpPLb+7>f8lv{=W-Oho=$xiZ9gENaTqGxjQ};K=zEWXM9JTedxk=WIDiCrT1?0WwV2l)<-m_CG-<>N zzV|mbTbH!2f4pN|)>;C-i|m&H?7^7VvzXYHv5UE?^{AA?;_pv}#@FQj7%sz7ISWT< z1Q^Z70-uQ+I^Xa8NTRs!x7t*I+j=Rwr+gRQPGisfD<4<({}v)uFgJ~zubybLM4gPO zNWhQk+?Uip#6-Pw)h%!P!vgm3?gEmig`7>zl4}^%V_=)oThRlnUE%{3~i!6>s>2@&}e^ zxuK|$7Pwe9o}9Zmy&xTdK|&H*cdcq>7HF=5T}2wnA1`^hlvr>~tncrO@jJnUyJEOz z%}RZHgh;&&A!HvIhSz=f;{Mh@ zpKbbLRf|=hjUS;g+H0?|^CnVsz?EFsi5M#IlU}d3+>OH{ z3p^+U@SyCg;t9gtBrr*75a*|-ecvYehp6raTsHjvM6$cOx(ZjQ?Z`_|-*w*6AQE*x zbbEnzn+0~XOWt9j;1_?0Ce*ffGRTX#rY$3A)$cPa4m&Vcav_OV(zRh(x@p?^e8IgM zn_-#^+u&4RNOANM;V{*%<4A-Y?yZv;8}%>V0VlzA8vO-aJ1-)*Y1+0tHMJ2IC8G)S zW}a(NByP0HE(*l-m*DN(H{(!adS?2tUj?(O`&5qPU^@>llA$3fx?p!@zfxR5bS=3w z0>%a6+9iE^RtFAvdtSRzYGT>S)peMSvrts?!Ca7_jfM}i?boTW+3@l8k95l*0I9JA zmM8zm^)ZG)6rpDvop-aw_&}(e;;w?eM@AUV6d+s0<-I3N`u|%~pB`Y=7s(d%nubJg zKCH3!4Xq$9Ev3RC!F9*#M3?&$ zz^_A+P2C@PtrLDDIL*cFyWT07PhBM37=F$72NUD+lV5i{IpEZ|qY^&nj7h1UxZt86 z!!~_?_H8o$!bso%2W9N>myZo9wT&ra>gecGpTm zS=_(gkJ%vsh&qr=?{Peg&d*l>j)?KnLn;57KHYQ^yJzl-I~7#U`GBfR5xL732!yM&gWg&{|^70fXb-ZY4! zR+$g4M?I656CR|w1qI0BG%c;I??Xfjx?a?rwk+G_du4OD4vpAkz(e1Myo12Tzi<}- z%6&eXH3bNEn;s9z6nxw&|35d6>;8Mid`?3}=9@V?fot;^8ZK!>^J2=i=qB(7kIDe2 zbZ5|n0cS@58Ml`0JiDEZY#K|55oH-apW|W$1Mqx(RoHBl82f=C6~Wsk43@rT$c`7U z!&6dWEkg`I*;`$-sT0c!=t(3Sris(4(?cplP0Z$Vsha>`K9iE@=J3V*Debz*6+zVKV8u_7@J`}2{O)zeFc6tpZ>q0 zUVxA);H8WFAO8^XU;aVV7li8SrpI?TpS8KWpATWHaOs(2$gr~tkX)r;pA~C<{|CO*fFHrHs94S|^ z6y9ew?h`dR+!d*uwh&p;%=nS9wRbdvKr@rVKvJ=>Yip%EAr)}*wQb*B z>VG9(0316NQF1Q_9@_{QuzIR~Prj+SXhr%gooRV`jMeO@cqRAjf-!Amv_smb_U>OB z#kGJJwUGIr-=O#abqCb9?L5%2E}pIa()1S4m#=VDP&>&BHW z9Qak@F@MuioLe!sy1S>cp`s#6{4!x^?=V&3WdID6QS`qLlsl@IO>jcW=t%nH1Ro(k zY6<;4i3!gA-;Of@NMZ_shLOIR8QSmP24r%OwA?*ILxd9(Wn5bY4G#dux%m!2zyEp% z@V;1SpW5f_K9bg}iSD2DPX0=#0NH)BAbDO@PZ|gX{%#c?@Ggh`7hi8371iIhjSmgd z-7PI8NJxw{ND4?xE8R+WHzG=>Ac#myDBU1Z(%l_1gT%lL%T9T2vEDOYjyWFueG9C1rxN0|Eky^m$3?>4&)<^gRM&;&{kK0b4;p$tTdm9B?H} z(1J@pk}(G%d1k10ic1@rtcqB<1^$18FIw7dRAAdIX;yM2}wk1_F-wP@qOSuLT!<} zBePD;O1+n45RoE##Q<>DG>p%?`=+tz6K2B9!=FAK9@@p~JN&bD;<`8^2iTMAlfU8d z&a(cVqq}GM?*t9Nv@Nw~wvxdpcmXLRWfUNQ}HPbmgVo$ugag_M^v#Rrg(YG%$ z-T=M}n!fipN&=W!cI{DwjPIvLish$R0*Pt^Z-$)KJG!SLWFNNB0Ii^m z{5%m)D_^1Kz6YAv#ys^DpR_bf*l2n`J~+r(2Zr}|hcjGYR)7BbaswGYayb9n)?PJC zo0w5)G@IZ)XK$V6PaFg|0uZ6b?&0C#b^lm$=Im70&W{EZ`TRNYYsW5#!2;lmj@*6Q zbEHqbUZvd`v(Z5HV=Duh$C=PMPT(q7{rDQ;(F8d^T)j|UNO*_fA(vUkm zTT7k_=@QgA7$0RC1b~!j^8W9)g@jhR=2NS-N6jgr>NPY#F z4FGXj=kQ|MfVN=DiK{>w&4l^~gR%h$ndj(89|50-*7gs?Ed#sZVUojnor)cPM5A#{ zCax3h)3?UoI>xWLG;YKR-=_C}yEW$V@yvb_U`p?1d7p!eexM^1K7YVvglF+*SgJwp zoL=Kxs&t7`pfteJ34W66xTq=B-!m1;tW;3G%b32 z^+CJAO(r;OyGp?QO`iY!x89gTa9Lo{d0JlBvt>zgu+2@sCm<4IBE@31u$Vl`U2NB~ z3muK@Xt*7D;N$gX2T8c&H0s%g_PEU>m>(fd3ob_HUhh7unoUbz=HJ6j>QFcT^E4mE24&YjoSC1qiY#d~g7=0`r9Y!EuxHa0P1sgGmH2_?loS4hHa{VagRfw<*M|yblR%8#Xo$eo}FZ z?%3FdJw$U}s&UoAr|7GBhbN(}O`OkVNX^zh3*G+|;1XWG-q zrET@#6M>}dJFsUr>Bpx0K0XaBzSMN!wh%M$x)YmwWrOyOIC-m?Z2e6ZZ1N|X4N{_d zB-IM5TKESf@qVZN_pAJps~ol(E)76cHIFCVk<3?692B}6@~$v{LiRjsXY5^P>6Hli z_)NbF+?Z^tzEAIl_X8C$))W{4V&$ege7);f@DndY1Wmod^A%EZdkTz?9#C~_+^-iP z3QmXN^K%8p_CB)k>T}ZE6ailjF1^Ss%xCLlU*DEd3e6cFIbVzixWjNWyUf64j{FsYmS#X6qdnE=9^iQbQd^DHlp!{zNdggsfN)(|?_cqPb0v zZ{t`glxZo>nU#a7E!Kz(yYawV6wTE&<^g7Qj;Uno{VVx{H~yT_agl#sDZw`wlXBET ziHBmInXV4TyZF<7%qZUbjEjkdy{0%%+pDPJUcg&%NXkqfH8|+5^KdNlGp_!$C{+EK zd>}zIHs#*Ie&2OC183)uJclrAv|9GgjCaYW`)us|exvs@6#zZK+2cq|EG=G;9U1Ex zqm7?rd#+=Fqs{ucpo?^6+02Xq=W9J(UAWZjvzxLnzYhFGcDyzr%@^gRecc6k5sluQ z)d0J}1(8zOXv(}19~<}%e;{ysu-Ymy!3mNn*0Y8sxC==fr$fA6sX+W}UeNbf1;s8i{*-jmT2{NL`#D zxDXG8jw`WuIcO+)I=wcrE#Xusn*~5um__1V6o&*iC~KeRNKUKQSKSnc{46XC4KU)q zxy*Zvc`~Y+T5E`F=jV)Dr&iIzk~~amaULw;iG#4J6LU^$cJ}VKS*hr5g4M<_DyB7E z12Gy%dV0DVx|s?8uEl#OC_`-buO8$-L?Hkv3v6-8t^C^mN3b;!=#(G5VoUq3P&`v3 zqh@U_?Y$Dr_j^*0(f?oECax!K&*^^ltpf}2e;ch zJ1V)nU{70l-ar_e5GQY-%$v5NlALE-8*5NzGo04_Mlx5r?JM#@#ez8H?jJlB(+uDV zSDXCzV+YX8V^=m^mNi_=^gIxkr^^%B__rW8U;nQfDSRp*{sZ_a+mnN4(ob{|J-mw1 z*Mj(HTA059RM0sr*wNoB?#KIc``+s}=Xbnm-?ZTiYzvEGjv;Ha_cia{OK%}Gsb!p< zzL`)Frg3rbbg4bFN46vfG4Ia_v>8pP6SiT}iZ|vy5e(QWSLe0z9}<~Wvnet9GPOLC zcldw8l(FDnp5iYQ{U3DtuckvFTIO4+E_!b`r((|0i1!ouxhiLic zbU&4rqZZfoAn*1Z%=5E8-FR4U=Af#rZAs0~RA=4TxsJ1sBfx^KV=S$)cpF~A_fI(x ziIY4k{!CkwnWgLs_p>+1U+yUIa2~Q3Tjjv4=|}w1bF|rv^J9f~6@+K)oLBXm-e1_| zKDCjOO;C6wa-3804eTmZ*wmC!TTHH?e3U2_H>r)t95r0DUkx-FI~_0ChF5M#*#u5P z3xq>U~bpU9-CO z;ICg{4u=6%7j`LSV${V!n?5L#&5ZY=Z@TRo&)HpqT~bmGL`>UE5VyG%OK=Vm#B~9F zM^w7h^`-WdPcYjZgT+z9Zv8;Q()-iym86XI6dzvLs5w?zU9fB;^BT4K-yU^hZD}l^ z9fonyP2S9zAbQKQ^(@8k%4#pa#fRgfG4BN&v1-vh_?c`q1iFZeN94KZ#nd1t#<^WqVMN$& z6~qK+$~42V+0nGVo5kPrx>7WE3ZNd<*M|+soDy-3LEe}60_i|<20a!a0RsB<`m(=@ zjuLwQ_;~N;CSuN8PMB}R<;A}`;HQvZk2j9)Q5)L%HtXqn6^}4)e<{qx$^FxVmzxky zwvp|nJHA>@ypzi!P^INwmP=IX>#sbkqw5r30Gb_>l+#da*sTi5<(J|*EXx(4k`(6t zE_I&bm8^3kF#2|=^qr#~B3Dl-apnJD!&oQPrw-prZ4SX7uun#dWKKp1j24xAg3xn?F#1b-3EUP{e z#!C9(u%wT>$?X|&kPRBE|$v<3g%@;3M6;&3LX?VhoJLL)4c!rthZmW*3x@o~9O-_Mw&>IflYBGb9#y&1Ry{S*1L>f0{`UFm2aJj-gRrpQmR=Yu z+AUG%O12MO^ZQ61UxiWEqN9O;N`TJ=0W0qkbDiI3nZ86o7ET@}+(6WZ!5&M1Uo)Qs zgee@H80a1Zg$ZV6UJ6Ex;NlZnJw$HHR2O%+fqa%5BGh1i`0+9U8(${ z>go&ngi~WQbN^F1JFvY^Y@W-LNLF zb3B*lEb_?N=Z16X7q45+O}%}{0{j=Ov}Av`caghHFXI)KudTkQ*)pJ)CP02R?oPSQ z!ZUg5>S)lMy&Lqf{7M74ySFNNE(IXtZ(WuRK?zq43%B2HC-C(3P?|rN_HPPgWwQ;l zSIc2}rdl~T5fKjf!+bf`w3sCR7fUGC!^JiQVp5WHA`|&f> zYcr;KhOM)Po&r&u#!$NB6Rfmz0q<8VVKS%x7nl&&qwq9lgE| zFto00ACZAUZ-a9da%_`mbNxKpXl%Ay40g?%P_d`6M44}*Y2LbwesepfzcONmv0GJQ({*N@< zRAcdsJ<)SxSJG$1j)KlL-@kuv?XF5BsI9%VyK6PzBF@IoAC;n==XQs5{@;|%l=f2+ zzpo_}+TcG7+^bJtDboR6((}ye6tibvRknPrtZqxl7V=?PHsvp#`p-`-jk4X>U3eyt z^}Ym?%IKTV>-F#vdI?glpk&;W@imr`GLAbA?x!%Nqa*$NYK}9(Z@n}UM#`b@mUP)B zz^!VQK*uP#B^_Q79`|#)#N=d_@zso*$U9aM6HOMJ`!y)O=8k$p{u}QM zXaY1VLs(}J}ndl$iV6tC>`R~su_Jq!` z3$Cp)A!%FN8;M&W!ycHfAZ2J*h*vi^ zg-pU;3~9nic|j#uz8sdOZ8b|6qB5!-oK&#VL~GuQs>p^NMSy!zt$E?%3%Arx9Mc+d zp6_K*OxNU|HGXwW)pI!IK0zt?0tf3cJ<{W>meSS?ij==2K_U`pTi0lHCi>Hm7*|H98ifP75-GQiM> z_{R_b!fAVnB8K^859@a0*7{@GiUy-fgBT#wX;dhR%vJwjsth<5JKei7)?K~^|2G^< z&H>n43G}e%@}VK*6OS3s{Ox@Go4X736r@gwh_mo>b4$tB1ebE~8vJvaIqklXojE>w zO&(g2gHyV_#ZZ>mW1^#LC!WP+CTSSSfp#n4UAf;?Pkq$QOppURGeyOG)DhR0?QnSq zLX9+X@16NK`}=plv1WLDP;JHFdWO2n83#2O;B-^?%3q z|ASxeBQ+ za+o6g-g3))3qKy&0|ul(ka%Lb!Ayd=Gu`4=_`%nUF}05tsK+nXJ5MauI|`)YN%=|M z>BmB3&lJoWIqyYJU?1H=VqnO!V;YRLH2p*ryc*T}(m_D)9uzEt0r6q#LACjUg5I)9 z`0xcICu83F9cY=|2>A z?wnb$^J<~MX3VFt^C(bU5Zw%%xLFO3k3qrlwhlaeF$b)7eVDu3GOD5~w8C!2WD^H0 z1XMb(-}X5C|S@?9v5@xFKndh$bxvEyb<1flrKr5^uY*SSKvE{jod zd8>YCYT&sTYKT@ZtOH46aWh>8zfRzQYfb2<`>>1AD$i*!((P-m@zXeHrLvXYP z*Wsd^ZzKbW!7-4VwP$D5E%d}L+5_ty;5ce0b{PCm#{kuF3;de0BWke<2Rf3Y`|P$m zWD^4zTC}wa>4Ih%!j60jlnxgv=Yq%b<~(kwBC{x$M%;?v=`nUqnG-%6W0&TMtKxQ> zw{FLZx&r~e@O?6hB?JmO7m=~HHC9zu6ASC>yail$lWhMv>WWL++e)x;8A?4!-?ssM3GC?0>;GU$(t+dns9?yO*fUT0#o9~QZzhi0Ak<{@BUg0(q&Iss zG~w2T_XLrL%!SQxD(Q?%MB_dD`_{{j(&Jefd{?mE<#(5))MDpQ`Y*B{r) znj_E!nvt`r&AYq4N2&BAI}1r=kflhwDMMk|pLVYKX&}Sz$DPAC%*vd+u(_zqHQGGE zU{pWXoDkH|?DWHG_x9?=+FqLzL+uQs?!aH!Kb_lA0KG~|`r12n0Y&-1)`{+cA-vn$ zV1P%Ef|#e<%L81ti}C*}7|2RXhx@E95`UM!Ylw?1?EH|1>SvPPrRM`igtEOk0p^+f z=d1T_CtZ6_FfZh)k=}~FT$q1@1LewH*ea$ywo<|qSoHR z@$zyp9l3Gehg_=4L-5^Kfr@7(-0#Sg;s}o@L3p8x934RxBouQ)XsS=Qez~9^^>3_XmM{%H7h}He#yRB8sWqVLOC- zDhkg$$Iy`b%t64QUlUl{caSfNCvbn=t?;)UF>vMzYW%u`d!0WI3$@Zs=$cA7U>7|MwhQwpS|n|06xEL^-TNjV;B9=*Te>Be!OAdn@(Y4 z7r>lgb$ynA^u^3&~t?cLP z^Csx@YSN}#Fx&@@6vGI9drBYxKGj5Ssf5H%;UU~kI_HFvZy^J)PZV2*WycTZ z+FMS2o!^-fauzgav6x~P z{HhCb)1wZrh_QA*a4YDsvtY=y4y$7Up%&C7P>7dI{GM(G<|DXJaxU%7gXu$eiM^Q- zV{W-;x6uqsZFXGp3JPtKQ&J!K@jClT)zICAm+yn9CpG`Mn0a^4_hY9c8Whm}Aa_0) z!gfp{R=bKLfNPDYUT!NIz;j2@vJ)GnV4(g>e}e;a_hMDiAi!5)7F-jAY)@=rwe}9 z%8Br%(WZ~>FJfe(@S3Y7NafHDhgZ}CKMZCMf9hleb%xaz(fh)xI}$=}*T|xe9ZT*f z7q?6jp<Nxobl-TjAD1jz!rAfLpxf>!@eQ%`%uV>0`}808(()O5K|Nt za?^%*1M)3{5Eit`*zmnmTP6QcVmrx-(JF-VuUqi!>$8K zbnnM%KXV6^c>Ke1#MqH~SKO?HqRn7%APNx@)lzp2O>4t}iR7WrYX{?lQPqMh0&~ae zW(aqH0Q$m%`3)E#!(NtKSKAFJ@7#25Zbd^@VJ0cbX;_Vj< z?~oaX4~+s_DzG}sV=x2wsqoLPS)A7c~K3@ zExdrnQqD@9?=e4Q2lFuOd$2-t=A=Chr>wo!Hb!JyO((F^=A$bmYkg}TU`-V9+T-99 z%^s${eH;4rEeR~n$nH@FM(Cth-n1-s#c~)3%z=D=0_j^_L7()WqUE>WV~{U=8rHgn z`}ui2xL^#slW}vChC$5h2JZgIZ5+PTmCtG$AaCObOT*q%`5H@1+-sAgSIZ;iKjU!h(>)^`_v@zWjT^pufwwIo zkso#FO~65v;1I~Yr?M!+Icj&Tj+RGAIJ}g<> zU3g))j&(lkR@nNL=KJ^g;l=U3YFN_GEE_-);KMoRLRBcR2?Kr&X9Hp?q#|4)ypV|HP)b|bJ7D$$ z5JQ7!*g;KF{o}>VeV_V+&6?-ObON;H(3!Z^k(~MYo0?@38OT6X1#GJEOp5755E1^4%g6xhga&k?YZdql%`=omV&|N`3nn~w zM8y3*c+@tH{AHjsfz9UYQKcjKWGT7)!|6UryRq@a%N5y3?Gz*xr18^60Qg!;+BjdL z4;8R40>;j9d4>AU7=zI$+&SjPsn1Z>g$DItK6{^*A~MbpfgT(`f6|^euwEQ$oi3&d zhQs4Ws2w1iQZHrGs}e39zZzgRPdoOgFf(_pvk%DW+!qt0BVOttjv-=xX)%bQE&Y@D z>59O&bi_5z#LC17>F$2{kb9zJp~In~n>N_q`W^XZYA(fCO$#7IJ!X8dGyv!nZA;2n zxS`FM;1;nzMp?eH@%Q6%P$-R*hCHJ|yS3?e>f1SYq$RoD- zkEi_S;vbhed847NEhsDLPgbT?pcEL$aIsvE^I}DSleetpJkRC$h~%HIH!lrU=dzNE0fY5rJzO7rm~{>7D}Mi zh7r-k!~m#lgX~NU)HFZfULSx9F`p_l1;@AC+wcfcBa_G24WTl#Zfd*r_{hypCB;jJ z@M!*lA@hTjJ1A)W&-Lv)+xI0Zqp`LHM1V7GZ(e#BO3b_XJ=nmEJAXbe?g%b5x$^$w z`Va!qATnZ4FJz@+{=i9p`C%+_%U$~WBSIMI$x4fP0o8n=zNHq{i3F(KU`N;DMqTS0Bb?s9iUQYS) zh0osAp$~ryoHR9MTOFW4MBwOA{smi;-v!um)bm2Bsj#Jqx#7($DKm9X>RQBOMzIV^ zuc?dudP-c~3Q`IROifc9F{*7=uy}%%_|4qxi@>re}*nGVg;d4(@peoBxB6{<-)!SaSCdIN7UB16HT8=OW2A zJ0lR6MRj#_&nBM1Pcvlk8y2!aLHtyAFzHPj$Q?bYm`chtKlk%-^sCNTC<~=^5Bm5g z#&z7u8;+s5d}=8U$IQ^H?H#m0qxs~_8qm?N1cjtmB!-LU+^R%9Gy0E^{rqI1f*yGO zS%k9pj)SA5yX zby+_=`^O=&u`~VDTB5(-;{wT{7#S1R+WzB5K&=zv)h(o+nio*z4m5fKqgU!5{VdYf z0_r5mT@s8^{u_F>rDfKGmXXV^21bu_<_?j8eJ?-X+|<7G8u}{6TUDzH5_nhvoW}B< zR;y`yQ6#pmr{`&QazFXBeWU-~?|JT=_&=xg@U?&I=>p`58`6bW(2C}Ej~y{FH5bqK z<_)}m7DXaFF+mm@@bJ6Sw-bM~HO>S^LlbP6nkLtEjPktldQ~@ONgw8>Mv(aE3y6Y; zKLyirZaj(jA#TrSLgp8)cDU`5QqjepQrL+ME)|SSat?KLQFv&o>T2?;LbUHk&3_r- z5EL805j-Rx4VF_af9GU`ila5pzfyTqPsOa?SWAhkq!WX4wYir3nxa&>(}z~GxN zs}pg3O-h;*X>)$#yqiYCg!`!*M{~KydE$?y-#v7@S{-AJRaY6lh=K_2zkE2?%3CCo!|`ZAA^1`8OuAZDc*ttg?Wd@ zRIxbkQc5jiMM#J{ZcGY8&m5daSw;CypKVo48sL4r7E@9q1nJ=1K1H?bcx1_Rh<|YD z{WRRbaPuOwpr_`?$J2YiUhyIPD=?6?FZJ+%3Y_Fqq_PeE#nD3iTqbuiT-G0{M?t;K z&L=|X9fJ{*oU5p+D)j3W{ztZ+XXYlN6R!vfu-UyKOW{w%@jvY2r;b)n(p%OqewV$e z(Q}?U!{xcoo!pD5{55;yf&R|L#pUZ8Z*MUa!h0fScW^*5rO9>0^<4W%0&DWSvVfxU zdoLHfTsrqMFUDsmsFmFTckCVqe5p1Hq6TSesmU4HXZ{&>nmM$A9R@tR)2&_k8ujo@1{HE)f2E8Uo69~ z3y`v=%R{*CZlf0q_D(V&_eNn_q4k@1vBn{8t(4vqLYQjGn}s|xr&*E6`$q8I8BtqJ zBNZJ{mkd`-w|u9t8T)nnr4eJ{nz}Cxe2hPMd=n8W2xbTP=adE7-xI{Umc#jq0&zifO$~My`9>jABY~q_{0FJ&x~) zj9Gs8*GQeW2q$%jP_o(n6NOol#Ug2)?C@W6B=8CfY1vAHgq;fkg2(b6M~=+aJ;>UQ z2UzT{q=ExVNhR^DB%0YV@R*FE-VXC$ty)0FS;fqf66bWVkA{uy+aCofxB8coDzJ+M zy1I$odzU9xsa&5V^LvPwlP$JCCo#$48CkgCZscI29XAVFvl)eM7zcNa2`D#M;~H@d z>r#pFxbh@SEG7MnMCt%Dgo$N*nHLKla5`*}ML)iJRwpSLQu`CHQytjF%Oc5x<|k=P z!_2I(z5SRbkrR7uy@-`yX!-zT))GuUd*Eh0Hp(BHkPv22F%Tz0J+~0q+Ofa0Ii9MA ztB=#^SkETLN%xW?Dp27~`4=kx8xjon@O>}JAFMOPIdceE?!hZZp=Gmj{ZZRI{k@$G z*VaAkgnM$H9}27=W?K#olm~r*JY7+v9WKAY6AW6gD)0=vzRK_qEV{r-MqDQrw=Ls! z*4NcFqh7NQT*E=U;O#BA1UusWrrto))TSu^R6CzV=h^iNSWA56VhA?k9MZV?eynr9 z;a~;4;y$r2K`pPLA&TL?o7BcgG@vMeH4djplVqo2TK)EC>@#E?hK1M-6e>ELz*8wZ z583GIlN%C$C8-rsd`&STJPUhPPgz+>*V{M1&cYIU?xF3tWnQq534x#8YJySn=XfQ* zugPUl-N$3As83TqXi#{hA|_Uh#^(-TqYol=XP^OVt4v?RZ#<`{<2Uuw?aDw_kwZlI zf;;8UJnN>GCdl!ojdRnR3Y6Yr8N_@=)O5w}acY6K@h*}69ZbhU&z11QhO}Rj?wU*- zp5;Pw+i|=h3&~|f(xXFtvyQ1$+#4b-OdyGQjkh6CoQ#Dz-Sr9nasu3a^LN4YgW^|h z!0|HlEfmFTIo-UiK;b;Saa5a^&@@EHY>d$K7w&2@5|4GFrB}|yymmZmUCm! z**c51U4T>Mn4T`TyGP8p;M|*JgASJJw-cq;k2gHsy^lycf(r$noE)h!`((SJpQ<=L z_QT+n)`@CUisK$h+~_T;Q^hinN5kthlz-`${HPeeK3Uk?WaP_D zM!rEyB4}rQ-v^{+zDj|nMa9L@M?Y75+WpBfddAk{;SPbeXA*P6GKHA4T92=vcd1kumXV=TEvu-t1O-?*-I^-XTF7aF6_z;=>jeIM+0z{fS8D4$W@tpTs%K$j^c9#Wo}u#jM;MY0sXkPsu95!7jWkXz+zx zL&+~MbuAyEHBZ=gfBHGx?0x(=not?@%k<#bSl5o`%h*_4i$)xFA5eRcIxQWYsgT5H z1wS=b(-eLEX%=7;1n&oCN5|^ol4cO8RgpwMJ6Vwx>)hK6tav6ue8R4%cz{M(HOd?y zUB?{aIS81uw65tW|K$*-`(~RrAS#23`WOD?C!FRv`3yCozSn6?ca;QUfLAWT`A;yd zSMVZ?==eBqZ~s`q*O%t^q^{&=Oa2}=yiOV8+D?Da8U?AwO4sra(&+F-FPkzrE%_Wr z$F`4vqXcMYZS=M6KvdmGpA@y}gs?<+Xn?x+8AYdzv}4b}bC)A#ts#-2aBDFqa`d?B zJeM7>JC+5^Lx9t0$CC8GNIFM0SmBKrqP0&<-QBxLc3k;MlJc;7ohUn*TB=-vOa9GQ z2e0+8v(&^|QmP21RZA;{jTzXx z{Pv}Ld_I0gTSzMeQ%3Ldi0a030njx7wW&ivOw z=aZa?CXBHJuwDCWP2-8-jdHCZ9}_IX%|7D*~42{C3(bo)e2nSLM`kmZbvGNRv zEuzqgVi@J*qmsM3 z(9fs$BpwI01C+>IqWb?{tvdPT@G$ZxZ~*j;35zENFMa6~#4Hhw{J?4ulSvXY<%j7}=Cec0lNT4^CpSWi44)ksZRrW(yH}coNiWmy z%Sl>oOIQ@_Z!6Sguo^AR$@IoCBvDDJfXfuItrc4DJ-a0;DJ|``#p-c64VfXJX||x4 zP^V&gKltuQ6FX+4d1@-fB#CHBFk8FsNl}R2>F;-E+>Q3^mXNw3Zp{>HLFen1vZ(&a z3g)gBO1fmnvPS+3;bhF!23A+>K~7ao^DSoc-%lpptVtM|zRFuGvIKYys9>@QKO~u8 z6*;yjy_^=79R&(XN$$4ZdQC*^ulP;`v=r3*x3+%Vj}0vL!gb4cTfaj7ZeQX+gibCT zFw*rcQk&?MO~9@Ty@y=4)-`$5P3+Vsa#wmKjAxU41RW*5Pe z&-S5mb_!*OJR{Sm% zB4c7Uhb{ck;^OdzPu&&8jg&WWP17PVrF_a_q6x?Mqv3(6sq09ex(F6N^7tdpHA*U~ zaA=K=(F23%ZOpy>hTuxqSaLJo_xE}gmFg_uQ(|Gz8llK&Y(e|uJCl3)-*u0_Y~DZA zE*5RBbP$nS`xTJ}JG(PVIpoiC_{KU8WFSpj8Xe{LU|pK_&#{gnx;xC+=nyD_EKFnz zBrou5CG_^>=#f57;1UfwIcs3LNG|=n(58g<8DMN|Ur?*;%NnIW#P~Xq^L5q)0o78H z3Zw`oXc#J+XS}a>|2WIPOyx~rGaYLf@07#0qn9^2e!L&$d!;`NX}7co;i@=ENq)J` zPr}Ouc?x?|3s{`+RhsBOA{H_$<#s@?uVPU8_7Qib>5NvQYwLNu`Q^Es-z(98Ocj3g z1u{_SAk0VLn`h)7_8dKl$Cs~zhz}Oeb*_?GW%c7a3oXxxj3vHgTr02TJP?o9Wq(V@ z_$xFgpBAs1DCdBoW@n|bF1R*3cvF{+vx;o?y06jUsti0DpIpgLYaHqKm5)j zd0ig$uEzU<=wpZ_3H_gXlD+iRu;ZF&e&54Dd=o_Ck!c4%m$zD3;o!ya2!^w%LJqH= zniarXDf*k?wl|B%6xX-Cu=ffRD+=~Hea51?cbL>TX-Q zzDXSBy9s=CAa}u^yXU1qMKw+TACmB&i+|WcV1Qpn2;y;ewuuLHZBtcKQ!YS-YbEGX zp)ncp2aKR&W9O#L2D!i#-%@_zLu+mxccKNFV1rlR(z@lkST%cxIFKnc%(Do~fy3({ z25%dpFr@xiPb@iEf{=T!xD?MWbLf;b794&cV55EBXLJMZWBvD&-+HHrF)`J8_6l)? zEv1u3yw9}6{>d99n7@=BmRmB;VJfC`#>eptS<;Bl<=Dd6`I_P)gOgn{o^5=$V-)Wv zIa1baIjk|bjsn(`+$zz?5rLld_LX zyvGsBOcB$vqZc9$6J2RSS=U;rTL34~1^xViJx=^(U#!J_aw@%V>3jTW3!?5y-IG4V zF4<r!0Qwo8&Rf6DNmNf%8!&Vyz6`0#^+^}<9s zs!P7#d~46(SI=Kfd$j$2$}XF}&Mpp5Pdn_FKtSrHfWur!keAj2H-F@b8NR|z^-@98 zef-?MFPlKlA&%qf0C_l z`3X%z?qtS*@Y`dVgQ}V0@^Y;0mmI)uTnw29FPeSh$nPJAteIcLnz<>VyVufYfXp<+ z0jBtM+CLW!CFuFwHFN;oU>Y4AeK(QDW9rgtjOlJ`UUUp0e66Qv4_JHv2{})2mTV%S z`D1%jVGOt&kMr4wATBq{cr#A$9d$eo6~$hhDn{zU`lX1=Jw4sfNDujx<-I_m5GY(~T;W;y`b;vtd)w7<-P(l-6{y&c}FH z{*{$aBCUw1R0Nnq&jPlH=gvGH>&nbThCXcf$BA?5t>=2K{Rc=cD7iLPHm(qw6AQVC zr`CMf(IX6unxy03uGZ?vBz-FJlU|sV^eeH5^Pum;SYvU|EcEq7!%XNoy1Wy|pv|Q= zwi)t`{2xXl=9+}V)>{z$m}vgl%)IzYw3BwYb>>c!wHYlPPs1V>MI=beYyt@g^Lm_X z6+$yxmwD7)D%pS$`3Rn%yUZ1P;$(=SuiEJ8wG`~$+%+#F8iFl_S#G4oQt$ljtDaiYT!~@Z6)ldVExJkPe(h+uEE3~tYS0$qBa-c z?n|+jU@U`$(<1aoM<+VHBeGvrP$Ka%w}y8;IoGI=t!cO1Aj|MNo(l?s2OG5>RNonK z&0x!eT7tXxuhjl-K`*AHt;h(8fM!B%8!|_R7eGO=;_u6;&%==pA)4JQsVxO#fwwm| zA*ZrrYkEx9)j+9Sq!MsDL_<8pzjiV#2Du-oJbzRq^b%*y zQ@uEfXs`qN#M0(A2={UtnjBxeqWW8fUOiPxwPXIEW<8>MFECb2WTxb{*=yWp)Lx#Z zj1r?$4&;%~yVJ3dq%`HLHCjRZNa*~bV04yh3Oe>^s?6OcXPk=sx=F6Kv19Ch#fBf< zivzr7;8~%aon2X9H-Qex{LjFIrMNi}MYU1WBnjW~WR%43Z6+NVHL0)x3>>YtZCz>y z+NTsv;vC!Ol%V4F!Im`(B48$3=7C+`bO`9Etbd@FW${2#SppwPorKJgd2q zA#hpOi~^+my3uDecxHslc-E$KLXcA}5x0Lm|5nIgq5H8?fY^rpT!h-FkHR7PIacLk=6&s$sZkERZzpY$o zk<+|TY`!>GdW9cG>||8clSgSn+%$nGeZf)76l|yaVlQ#g-yEMhqyZ&)2af*T5bxTF z33Z?eGFL&<-egN>vgXQDybNj_3jMYd4kz4czg_;@bOpGxG<5%YRlR&LeN*I5hxD5o zWI+U5j9c1rC8(+OuG75Q(IIF+C8SM^d(fPdj%cOY8ouRjbHq`7u$piOsEz`7k6)n0 zFa8OX@w%U5Jj#R!1kXO^XfbSKN3~J3*YOT>=aetBWsSoQ9kaas#;x$JiU^;$t9pwi zW9EYq!F#9V>uKVGrB~vRr1y;kZg|vToLn>`$I~KM%Pq4V{uirf*fztl+85RRSP?z{ zoDq;P<@4%Qqo$vqHizWu2-8}}KR|Ko8-qkjwwuNX8;nfk1}(^{ zMqt)AFuTFGD{?Vd^;M4PJM|3Gh(|Mqa0K;L^J}(cft7)20(iF{l?8V;xHK0_QezjU zo#IAMC4nA`hKXF=f@wz){T)G1{ey#2V*c(}cF!*BavCef|*g2cm2p2Jxb{$RjKM< z31Z+ClQ0-|&P8S<^b!2Al4l5*Z?Y?fKFz3SbnQpqNu{#_t(=q3u?SbPDZ^c)C)X*| zx#awT;#YqP2nm$QX1@kh4ANg2lxEBhX2T}=IruGa=%P)^>gZO@iMOm@OiQ`FG;zNK z{0=VDwsk6OZpl$w+#!^(O~eX=Sa=rxik1HcjQH>7 z8m7O7X#dv6V8Qm-&oTf0;i~Vd^zn&_fnHZfsc#97`ftpC{YmiVA+q5inuLNn*xqM^ zMJS5Hju-DA3JUBqoP~FJ<`%FD^_>OziQ+6&)+HW~xwj~b4qg{uTz69+Cj)>AtrnlA)ncBU932o&`+J(Vki`^HfpYTpV@e=yKXH#HB`J9u*DkdtNSHwU3D< zaoI~!KEDtbH$nStpr0*_6!QK$ta zZa~nE&ap1(XrxQ{T>@s5-*T<*NN0!~DUs^bh@a;0Vq4BFXf9M_34xBIX}ZXSbuVln zkw6s_Akq{SP~e&lhF1>Dd+_V2UNP)4l)gP_$za) z5$p{|+djHO`rmv4s-;=bk|{*~8k$aVcEN9K?Oafuy98|gRVU9k&Cf*bw;jjl$zQ)s zI0yPEud&&jgMtr?mGutIml*Ccr!l4d8YBPkrt=7jlvr&So^(ti2-Wa^$z5)4KCOEV zD)6nRgfJLesOeB=EvALWieuRu0W}4i=A@+816uS`Z(uU0UA99#mNhBB=M~ZP#Isqk zvuxZj4riLrhpDux(8G8~16xw%nmdi&9+RQhELIL%pIJ-k?pWxA$>`xs;RaisNi2=1(y5k6+W$HO(|&*wr%oRy9`xXrNibKspdRq$6@&$2C+uvmdY{i_ z2VbDEfffL};D5ozTOE_VqEgq%?n5|{HsA)j;_8K;$o~J(>2DX`(!IiH|Hm5tl1E1w zHtZcp=d`<3^=IuPM;jhNfrihc4!MZp0anSlcyC+O?mgSKkJ;{gktDtQM| z?#DqqO5ldmHhLZXBiIia=a((Yf91MECuccl$^29v`k1!%C9rTZu4Xaz3?V|6%Lq` zjgIZ#Q`gUJwcQf=+&~gTd*v}YHYh}zUwZ?gF?_F8V*&wL$Joq7vBg)w&cFyySji$T z^_i~bnmggl_b~~8{J;P zIBst@LXZB9%; z4b_Q>dBIQv={GKjmr&{EHtIP5i*AHmSQrNbWA(vET-527$jR|o*qutq+uSLIo92l* zC;M}18ksR!T&iea$F_ip-B%QKLio`91e9{tLg|_?d^>% z@FF1noOQoOLo3X-90N#@nwrxNv8l7OmRz-#uM4$u9VA)oxOj4F{Xq3|sl*f|pN_lo z$76_be2Z6U&z$<)r{RZ+5BrAt#gw%KYDM4wg~y(u1krt4C?;!{{c>2hTx1ch#DfPF zbz+?Fs+6#h=8Gl!3X3fZd9WUIldT2cEE%(Ysk8j~vz3=X#hRqr5+HYt5j4dp)W``# zaGFC5r}Vgw&*jANwgQJD3aLWrRD&A6>-k6vtU%Fix_l=}^RzVLbjLtoZTpVgoWn;zG z+Y>n=l&T|yv;rx3uc>RVB2WgzXC*$>R-V4d`a?Vt?gDv?jHz;N$FWW72QC zofy~(euDCOzJ~kM%v3qobDIKsk9qu@YT0zkk;CD&{RkfEK9z^upFAb*exEqd-qo(l zY`;EYQ0Rg&>$kCx*bih5VBxts?@=)=6D4Iif zojgn=T~TF4k2JFcNJMo<8V6wr3;T>#xf^d^DTPOqgO}JBEp5c3@<|qIlPS2U@c|7* zORH&eQC8%ck`<|sABiK8&e%9OA^}_u1}1iw7Nf7P?`%U+@QT*&2E9MaWr8(dhpa!Gz$1`CQmc3;NZqO*bi6cs3g?MsNJ4@h2P_80rtH zKs#crUvnP*t;cg>DAk|iH_Bc5AsTPw^q!`cq|3!1^*DQRXt$C+(i=Qi!5zZL)T9EFk7Lrb-dHPJe>+f@Q<=vm*UjJ^ zsrFwUCNK4__~B?MxcpAOh8E`o=}S44RNw5EwdPAX^&)bwU&BIGUq5PXO(HlfMCsw= z78o{EOhbSk^vNk_3(qmpCgS|)-)UZQ@r=YtR zM5@*i@5|fk36huN3?KkQtV_Xe9YJ(71}sjV-O&Jr#dPL>c%n zcQ44x;LUM2&t3WhL)_8|4B~oR*XcdqTnmw==@VaolTqr{>(0KKP6GHST%y;Gi8sSoX;D_Nb3Yn&+< znW&Tf?N)P>-Deh9oIIJ3?W6bY^LT06JPF$ehdV2DW&QmvIWNCF){daZx%{B-_0E_Q ze8z=dnD4As^ufD#!}%-8mx9eL_m|v%Zf@@gs8DquVQh7MCa ztYGoxsNbB`)sCgVQdl9l8@K3xPWK)|w3*;r>Xq$XxQo8&9(%<{%k!mAB9!vrdHqJ| z>W`n@d)h?GAT}fX&7p!jG-0=`?)Cn|-5oMQGa`bs$K^DfAzUWxFCyu_!ztuFx8Lq7 zZwGJljtg~1j#zy3*1;m8&QJb*!0ZGBwHApmEw?*vk!&!y|B% zzy7=j;s)x+DThj}x1gK0Y*JlbJkBOskg}K{Clwqok#2c88#=+RGRXH76Uu=}GA=my zLybJetjrZ73{22$qeX9%ybytZdNHw*vOP~?HyO>kW)b#7E8S}5)T^*g#B3Y|!@`Hf zSiv5na`iP2IuSMcJ`oB2-PQfK)5WzTravu_wWg=z&kFejkhI zmGU2=$GUmp4tdsGNodtX+=zxNik-LSLe;`B zdAkW^b0kUIbak>{DTjPyuFUdp^IA@6k$d>nC}@y>>}(XOa*uxuWV5XL?%WnmQvX*2 zG$9A-z?f?@4~W146l^twnJ&=VFZIy5CaYlb^T@vzwAj5T;fu-AzX zLAK>nO;n3CKtt6Wnrl%s{G3nilYgO71hEd6RqQSD| z_1LMKh|AcUxTEs3yIY~6qQYkLb%~RjC@teQho#)UdDYPQ=FCF1i82=7A-uBvm zP%ykHN=~W~nsjfFp}m(~N%*PjyOS(;nHkA5Y2^Z-oS-%d*!gs3Vvu=1m)o0Q9xZ)q z;}LPY=ljX6fLQhbg`uqsSe;Pq*n=j+{`44X#H1h?ew z*iYQcl7r*U@8}-$ufUfY3|l@?ok=TR+U`Ct_=dX-cYZ7J7ot&8>sss6eH5Vb(bE$X z@<84-25Na3e$-o2oKBa7i->j@`y1%h%~t)B$oS6>|70`{uO#6yodRtec48OWmnw^=}+u*GvrX($pArt8cN2Rn_#(?rTl1fUXCs2Ku!73^yCEc2kG zv0!JspZN2-^a0y^vu9oGTVeo~@94Z{DDS+bh>rkDgrlRM@13u&cbwwuS+jL9|M=A{ zSO~2ba-IbHh$EepJ6zlF@79ykkl|yS6#|N8)q9r_g~x)CF=~zHrG3`BI_rmIWI1s* zn`o%I1j;t7MA}?=ys4JbV`>Qa@L~A0k+O~MPW14h1YxxQ&hA_?-gDqIVrQoRbc9d& zieh~f5R~DlmSL*d>LF)kkA|Yy-|jx2_?Sn(m6Jo!)zy=;z!nPhU$e=|DS0VShJ0RK z35WpwY;i_g=+VoLNAT$L^bLK-yk|!KH;~7IKSs5!0ML-j=KjEU_O+>%Y#}2sa04Oq z`RKBUrJB7_q;?*Ru<9-o)+oKxcpb-rLbu_b-ir9>D#IjFv@2!Xh_>MTk$;s+S|{mI z@tuaK-35LfxWtjO?FWL>^vYao`6>I3i_T7!&MU|h6qH7+;K;FFE(_>w{F1)tUgJKW zPv|_D_&K;mN|a&M45)J?>Gp)a;w#<#bg1F8O^YjjP%i)MdVM}I?`ZGGz756{Kb~%# z8$Mq4+vAnyZRBaw8#{LKy+b47L6Iz-p%8v!dzO|rL~*z5Qp_5gt#zYp(-1AWy3RTG z95SLZFEHcp+!)CG&gQ|qTX&m#HjyL-&Qabl?kbM=YK}EZ)4kbJ3$7lQnpq%yt z_#S-vTk}sk)L|!$arSo)Z+`l5ZUL{aNF>IOKQaEZQylsJ@-31a$ai}rhqxVy5kQSD z8nLZ)8$N~R3TAm-F;I8)Dlf+~Vk`I-eu%pw19HeWzW=It4|E}SMUJOtRyqK3OFV#^ z29$s4K=0|})6-*MR74`%+Unm(2@zBZf>z3liJurn@lj}BRbihhWo;y^8XsVgVvqs? z*Lqhl$2$iyRtl6};n$bw9~C{>WrJo6nq#9UO=IZ~_m0HdL-kC}ehhno8HEALf8w0eE2nEy@JI!+IWKTcfcVTAL0}mAYjwpmIceRpSP*sV5 zY`k#HlAoiVjhomj3KIjj?&3os-Sk!^7>d|hpiS7UW0KKjY#4rj4!+PWdBwUOc7O}N;k<*T{;u*8q!=5fD9 z33Isb2X<-W{rKi?fzq(?@n?6U)Xkj&8x6*?4B*wbWb6&p%w+u4!wvTKzQJc?WK`2p z7do~2?QD^Z`O)0`2NgMFI&L}*%QqJ4g}O8GFYA`b{`+B}C-c_!N*?~AVWVZLq_1cy za=ZSx#MKgyt+=2yr0gB+NvqhCad4`SO-)5j*PtED)#C&S2$xLib?y`rI698e&wcO* z1Y%#8wW@oOWM(d@7CoryCC6P(@nuM2^-0I(H=w(hA9 zI!XXvBR(Ev_=T|7y5YppRghT=UIO}^N1;&aAq9P!cGYVSVh(NoiVQIUPk&aPoPr(x z?O(F?6kOMYC)2lDRTpUI=hV_Sq42i=2{T&ULdS+}(pULDaxN0U^l?@Kh~}+2MZv)L z!(3}J*RM5^;1-fc30q64JqPqAjytm31A)r5>fCHx#h|5f8v$915K;M>)j*nhKpq3& zsmCu8!3NteVN(HojN$VZ4zYkY%0>Lf=f^mMnC9!O#?z@%Z&F9c+V34H&S`z%C}!=9 z{@9+|c4lg7SSxPN);Tt|?2sudNmEmNi9pGGnqK_QvUXU7D=D@8u`vwQTQ%4&zP{%Q zd$B*X#%c)(2uM0N?+k&%Vy^SI#>HQR=6^QZBQu^Z4&d~PiX^o^v3E#F-h6R2Br~k3 zqpEu=QvOGOXSt;2NI*B$W=U_rA>H?WrzOe1MljgDWn8o;VQFHuY2sCfXI$MkN~oKU znrV-m0Occp2{?CN{#c;v_wYGdxi2`E(L5q)Cr!4j*|f;B!Rjv-5iPoXiJKp6@s#xs z*TR=Gy4XnRpd1uF*Z&t?a7(1+Gsv6x1!TS~T4J+paS=WH`eE6}Q!bi(p}45~2wzsW z7319y41m>_a+8?-k(Ye4W2RKpw)b))?(MOT_=YjOxRQ_MXOe2xze0To^g~Dm)HO5! z_<6jcntsH0GD4Ymt|T%tg9r$!6y)R}?bJ^Q=*Z$rQ$+aq)Zt3~5!e~z3@kjK&#GsR zvP32g?Ss3mf|l$|m{L$Z`OD^i7dFp>a@)JI>~bi?GsOD8z*?0!zMPGJM{7%eOU38* zfGu)!!X~Ts>mlF>3Hj`_19^m;p3PzIdz*e5#*Ll*@keA_g_5Hqzx{|3&-X-j?0S+fAgIT93_J7%4{2o`6hy z!zehq{KhAIbLpy*Jt#j1YYwC%!Jps;K5Jd4UXtC#<$zW0P@57PA^*f&Q%q05~Q#%6SC|GDgJB(C0!$U4) zm^|J5ROdo}=8Gqr$*h(SeL_IgNFHnLeb<{6C!*CUi#8cBn*HVrlVefFe#~D*DoSpoG7XcmI0uqm(i*URYC5E^Oj)b(m*cs-trrHkn*4 zj}LlE4%30*5bcOxVu=M~Q0uk(hK4rae|O5NP%tuLQsraB8m&~+2XmSj{%(T))g76+ zz&o^W3z*4l^1pdo$}34hK{}(lZtLqNNs@rJt#r0dOjp;9^g@IO$J5kbfSR+vPO%Hf zu3FHc*%<*fQ?gGUL0ZiUHW?}M%a?9_0KL&Y(`g0m@Y#)&v^uBalRwl=R-i}fq`Ehw z*^rvI7eTCkZ?-Y5XwLT9NLO&nAdLc61)Zt$}ia2gTEAZNh zeb(V1HZkFI*`SsUTlmfMGJdzID*ln0_1%~YJ2#M&fD1ATOcGPCvy>yxLfSXvPf!h622*Z zMxFwDW=t=1N8!*jG6JNj9q5_u@dfbwvsvLtN^dc*z4=b<+ukK8j}ITd5xq`NO&E9_ z%Feqw*1FC#xo~?7nRh1z>#poxeu9c9pww-?hxgnPlzhp4WhM|}NreNPw^^P1{r4NP z#o#N%JhxKm-giNpRht9y6ONlSpzF7dyPyo6Tzc)WAfW>vTw6rSJ1_{zqTAUybwrL@{q>o1Kw?Au`!B=<7QXDr$PkBU!62 ztT9pkka!4rblRKnNCa8WTbUZUqQc)$(#^-qTjX^+*#yXLCMFBvK;vNR6;p~w$Q z#LC6smuuF#$+}Pr|2{JD^(Bd{te2oi4zF4o4dDz}v@$Tif`Y1PoF2z2kZ0`jK*lI-1!lDXd-kBB`{;p!_>&Af#AQk7S<#jio20zvz`}cO! zQPR@~ALbN}UMB%WpM^t{BwcULI2BvN%>sY$nbt=E15vjy-N!tVTBYcbkg|6Qa1Rf5 z)vX)r6L+%nYDCV}Dl1AC%>pEgrG4n%h5FMp{-WauWC*$9;-vh<_m7K-6EB!Dw(Rp? zYOGxcijBVAPR+l2egM)GB>;IL>r=DrzSci<0eFc(c=nEulP^u+5*iTRjPi6clE+Vg znVQ8&zhBA(2RJ&S7}^iaU*($-Uq1sHCpl;5op>V8LYSCqDI_31s**5v8#X5=#gJ0g zPOHE?@3oDr}FAm?jD=4$G(eSHV`XYhTrL`_ZWq{uTt;iarJG3sxv#Qmr2h|*yfVY3iP z>x~fUuFD!pu1|q^lEv!>Ve-98pql$rxCOAUFQ7j3=uHRpXmg0A=L~hG9j8)yEFxm% z7jOrX=BO>71|(D_dcqKoRp@MWt)A)YzFmNSJ#)qdZI9#~kM9d^k5r43k3T(J+E=US zprE0#5y!;Dq=Fzu9(*&m@{)n>=a;~K!?qQW(b;RwhdX}RJ)C%$sNT(J{d5Us;8(KF zc}M4z(Q{mf)2=v^g50KYZytpTd<8K#Ss|ca=?j!*7>`;P_Is*C?5ahF_pOiCtDd%g zwIcN{ZGkVoEsJIu_TErKTuA`RR&X#iY}n#FL~rkA%W9?CH=m5|afufsBr5VMY#led zpk|5pwdHx|>Z=or48MT&izV@yW?0Dno}10wt41K=!Px=24M=x9*(-o}u?VrCTjY6@ z(EXssL(ifPz>1C<`Tb%KbU*Yn0K=Y;ki~I)*I*X# z(FE-1URYa#yM+nQB;1xlKik!dxR&6GqMc1mM^|bY$W~6eLRy`HOOL0fsTn+q^I2o_ z3cuc>`I}up#p23w)}_|;SES#lFP5wk52Jt0BAeaP0@ZXo?UlWAV(+sahk=37a&YbW zi~B{mg^BegvU;h7fd9KtS(5&n0p}zXxYxZTrRRDY{!*!s_G`WBS>W?q#XR6y__3UP za~9D{+Oaicc5;1fnBbW$cbKm9rfzw(FQJiNdv`V-JS3l{!%b3H^lQ7%{>jUL$K{Sf zIW#pXHMA{TY;tm1a$>sw@eS)63H6V}vd=t=Hs&i1ksAx~=`k4@Z+)lyS}2o@B9-c2 zmef!E?Qj45Lw`!y^Bs$(=J)*k;ZO2i_QboR4(qQ56nNJ54ew!=#q@p=8NXylIsk`c zLK#Q_9{-B`flFn{RH?|H7ig_55-|?&Ovk*y-gcqF?QGs?F#)qFfYbd}z6Y0-H1_7^ zLm>>b)Cd{t{Ci4w1+**ZFVEEZwQVDpRulO_^6F7XzR* z2UGd z$!3l@v@a6UW6Mc8jQHJ>@%fc}RW^YHK>L@;lw z{{oiZO#m%&{>SxrPulc^AmdotAH&WC@%0en?~rwE?&-L=xl#!VV!?wyqj(+9$3P(2 zz@h+C=b3t0(u-^OUn)ib9;xCF;7=azM|@vK{uPuo2oo><0XA_>;?9F!RuzMGurH)v_`r+wn+xO)-;7P;vTlwQ zOClJukID)Z zsU2OS(fv?NPmdWpvPhnOX2?|a=g_I6<>jkcTb?c{*}-%VXW`w7(GNhwSuSTT?(ebp ze>FM)vn^>Ee?)0N2@OpL;#GXY^t6PO^q@!d14&h?daWuF!R!8PRoLBz7ET1~kf_J>a(J2w2&O7JrhnXd~h zZWJ8OPsbcd$>}u0gC*WAYc9jUg>0my_%F6o42C(n|Gx58%Gne*Kl;y%>!sV0|w}qsRM_ z%A&rcvZ0X`F|N673NQ}2W5Mn#&j>Rm+->HSBcrJYDm=J2koL!GN=i!arNJQJl2ob& z{Mp@KZ|0wl?Z0;u7Lt6RUNEuB%i0=RyX*_LT>|FJB*ecKMQp@TpgD7@Jl$B2BWF`R z>>st;ZvfttO5ERW-GAxY2!9)t0#Zs8o%`A@ZaUe)At4IL*t<|IJNv58C(?@Cn?Zl~ z8vn(!;Rf9-9Q*puH&|CLZ{0F{$v`--w?HRnV~eNinECj!VOsyE<7mj+frO?>+m4O( za$EdAh3^!g9q?J#WMjBeq*0rJ7CH($exk&=9~&C@WSZ5)?R@-KBzz1DsQJ%d3A` zTmt^El(2<<3z##;|7dK-V06TO^`0MCwrk4&<&`aJDDgtlYLvOEEyWNsfgmjboD>3q zwDor>y~@Qv@7gqW@Bt`A^2;tm3L-FFKr2 z40vOd4v9d=;v9^6Z3246!F4%@2DJvwcbzAKRKjoqnEEkwvb>RzP6?@50>_UT zzz;Mi{vYhe`>Kfcwa=y>%oGuKx|;So z_}*Fk8hZvarsRP?)fXShYV6*Gv?_30yx7qGU$w-48}R~&`MHAmBL~RFF7gS`DX4G4 z4+yZ*D{c+AyOTMXs}9NSaBZL<7Ia0U0S26L3d5oG;-mREC5l>?f55;Zi8vdl9F=@6 z9l3ugIa_H>bRPhaT>SS#qstZ!Q09Dmyg}Q~N(>i-EUi(3YC9%JW&@`odn0a(#fN76 zttkucd$*D+im9R?(xGFa%if;e(WNC+ApKlhU#Bbf5z;jj z!Ma;X+wi<^jb7KCyeywQzrSfSuFb8f!PTCdLqJ2y^7F;D@+<1~@n%yVKYMn@jl0m7 zdem-(!M%T6pKcj4msC_lUc*|$ASM>LZQfen=QI;aO6jF6HCE|ug}5(5uTUU^!7bTK ztrxUU)+ML6Hz(IrVj8}h+yAXj@5U)V^IusK>G~kvq zXApGWjxu-x6(HKo8IQQDoIzSJTfSbm01O?U@;bg;wqJI2HQUvhsu=h(?b#>!-D_aE zwQ{7{x^;WW+O?|l&k~6;%*Wf&x3%LA+QI z*!rgPJSe=m*h@T!a^Kp%z-5!6a(jI z*RG8T>gM|4M|DDSe4DYiJw0+9er@mJ!NHtQEadxR+g(n`ii6-~>L}3il#-TiCwDFV zy$!Q23N{gKec#*ozB@`Qy7VrVWZ!xJl=r0U&kgae;OF3bL4zin+l&=Sj_%qgiTW!r zlduyMmMWAt)Qb1v-3DSIpzF(t1UV)XhNH89(JIxWt#9P4IE(+18CIM=L%~Nc27A)k zt8C;sfXN&g`x@$@xON2(s;QtBJ|N&pPCtud2cH8OvcGXY##0Fc5WzEr9b8>uLMV_Z zu<7CHsA#e7?v;X|sIJ-h-X3qGp)xfhDS+J zvZ6<<$Bgyj++5UGK|u)hUklxDPUBCxlUFVuAFQ6RY+KDbxZLjZKR;pg$Qp|7?OCmE zZc<_WC_f@w=sWG)o~=-dT!D>EIY%d0=^P$eN2T%>q0T0&^qE<|33xh}erJ0K;zc5a zNq4>HyV|X*ddpX01sq63Vo)pY-fHLzV2G>W>7O5y7PQ2aBYKX8VJvX?psv(cn(f<^=#* zN(?&_LuqZ>&Zo0U)1yad9D*P=gV!F)8(>}(k@OaGW*N= zF%KF8*!2kZ5>_y}aMnt<K5RSAbQS6rJkbo@ z##VmQdp;jDv;A0|v4S~*TK|0J)#)+P(HnVe)FgPrzfo)D@jNTCF2*Nyx)MA*jOOC% z-X3*8oLTZyBcDfYsQ=no&aGBS?s>K4(BKkVjnB@KSl zk3`!~Xi<2@J#neWVnVzpPd#_H#KX@6H|y8T>rFZ5_twvO<5YM8P&jRPcL<|TDv`i` zQ?0L|&qqvbOK&XK`QkJ+3ps8r(o9ZInRGU20;6u^jR$L&`6KIQ1F-3rggx$?O%PBK zC9HMB!Xp!*;b=2Nl4!+yLNANfnNzt1ofhT=Ut^FW0^_S-Bd6_NE3%2aK1IW7-GHCl zv%OSxv=Q+gzJF(+h160P9u-4`vRCpYj)tE2@a9y6EbiH(cVu$g=h26ri76!g7ZE^c zDCKK|4_vc8e4bnoUBoaI_U#pY#_yeo@BH8wzTS67Ky?1#CT4F>HVhVx3ciu@@bogg zj7Agmh0u&T%w&0vvr`)GUnxOuj1R$mr?|aey2ng6c}Qy?XFP;7vVrkR6da65M|Pw^ zhAr5NzeyY=NqFD;iL}{QUB%6`IEsRg&e5Y=)#h0#qrVi27LmCvX(OUgWJBLnqld)~ zD`)U~sZ~)-yBq&@ypm}64gJvuaMeP4{q^>)uG~7h3mBM$j4bAr>v3y?IDhi^^(qm{ zxKL-&D{atyMId^_ceeeN-~1Fyn%H>#d^h2HD2H`mO)<#AK3Iiif-!$wMoK8&OF`=I zoTEJcXhma}q8*YgI9wjz0z>aa3euC&92&k!N_0XFOt*wETTj=D`@Kb$A5$&w!_XpE zy^D`UH}_Uq@oE38+&vM*JX%^>is|Yy1qMn&wzkY;-Cw~DN1TwAKVpga-rSH9ljRbN zEp6%bqMb)89@}JRkDNCo>>IG_Jqs|~+t>Qe8d!vcdl*=i2(huTPPqHq z&wC#Cd)vTzYzrfkb(t52xI5wf?wL`|(!`hJjfx54c{ zk*%Az6MV<>ekqrIzkr*eBv%6QZ6IL0xt)xqg&kpZBNT3G*iAyh4lHkA5>|7=@ zQw42TjC}j{Er7-}sV)cE<^7f^3j+hxv#5xOK}xcc12G#7T)iWKyQO8JQ#v_sY^6ql zG6g?Bfry9*mXLz`{?U<)vN9U(8y#2`6&1Meu*q#GuT`NQ<|)n_MOw@72~zn#q-D@E z-JKyt#$%H)Ig(j7N7rb>I`lXLwa_32)skjzE>jA%x_4* zIWLea98vIYRcB@`M{BI zoXAaX(?kGnZJf{Xf!onA41vy`Ug{FWTE%)i=E8W2LbC96NRXuMQs|qFRPET8w=!1* z65)1Z^fwd~6;?-l8v<;oMovL53m-J2f1KYRg11hdN%h&iQ|bI+S!#=wlIML+DoAEq z87`g9%Q1k`Ev&;9{K4K{Vz)N-V*Nu&WhHWPv8|JxJu54ppdgy_u>xsh7O5&^15;l% zNc<^XLPT_(LyOLWu3y%!nb^sj(%C)^_>Kx{Iu1-b{~yIUCg9s`z=&24ylK$cy`*_M zYKrv*cGnLXO5Q9l0AuDDPC72|va*iOI69}JQa&I<4xH@`!46K2Ziy|NyhdJL@Hz|g zkhKHmMPd?JU)-DD4$-G(@ljEgb(`OYWwT%as4vK!w^l6<>_uh0fvb%SA?7_`3c(by zH|;&085;}vI;|z|wQ+dpIprSC5AQ{nrmGY3=DM5@$MPOr-@ASmKi4lO$o%1hfK&ZQ|sW8o<22`^m{r#I{cJb#Rg%zg4I*v zk%@^3rqhh5Ur`S-Y?+f~9>e`=i$5iu_YJ@XBg5JGGk}@Z>(&|yNA2n+YIh(ZA(LD z1`g@-6D6`tP@KS-a;2sZkOz*nH)ff+(R*vCjAwmKz0k#nKPTsx;(L*Kmd86{Zpr}& zQ7A4jfCwnHV|iTybI9AhJ)-!`B-Z=iI;nvWh}g!KzKrja8HNuD%B%i&q-1!)tY0^E zkRjORtavGutgQ&fIqe^^66phV%(X~$78YpmzPEx|zvfX#8ubTeq6`9Gm+&Q%6-%+= z`ue&(@rMT=zra9+MSh*JSWm?GIL#?g0ZI>0WA{nHXY>bz#lufV%HOGJ$Kd=)!ob2o z%ZFaOG07e|#UUYx4Ze})KwRqzXMNASCZ_F41GorE5f&MwP;Ty8$i-Y#VtVGi+HX@r zaznD?-Tg_F49`N)(cxjt)>j_SWrYF8GMi7|`Ct|QFeZpV@VTz8sVFJmimY#B-YPMC z8sF&)}dHR}&YLWyB$v+=pP zT{(^xmzEOn$)fy0hVl!R3>&fm>8utU6;3pl>yc*tCl_b&9(6x{yxl_gZYLwfjsCWS zkd8-P4Ches>-TSQgD10kj6dp$QU_a{dfM-(dI$+^aC>{mxwtIZ@c6*`v85dyA1g8X zy9pelzSFqUZWHj=hg5I`OY=~5NR)Yy4t9qkLCVX^&k{?UniR$Z&Q^F!6u;a=uLS6E z4H{%i+X0&+}n-~3{W)L&~>p; zG;9ojTUSAvsXDfKjoYM*-aV-D@B{6P!l84oA*K)#-(r6tJWAvY_dDmqS^iOIUEff@spxxOUUgLiY8 zIcds$5^5kzMLD6)sOkGCx}rdYFcUx zYa4gmOw@9=R(8^7i5`w!4v7~}Wf&X+ZT`aI;;`H#EW6nj#4qor zfZ3}lI-J;^NKp#ZwRPZ9-T|h;Q#~^?ZeaJ+W=6yRD`5xWjdP4njx*Nx5k!sZ^Bb=5 zTSEykGXswC#0$&{gCED<0~wIZr$RwSPQa(8D}7DT9)N&!k@A6;kN)*#j1oQ5FDWUh z!X~yi^z^vv5^}1baTYUqy$+L`v$WRzXfI2i@|PDtij5syQ=`1Gf%iQpN4{quZE~|> zFS6V~)yV%Lh85A<$LBQ;2CYnZ8wkLad{)fpO+m33)=$P8(&a5q!TaMau42I&qKijo z;o(u&kBnfAS5@pt%;+yGEuB-@2+z+Chq>bDx{)?%hS_RvhDT1{XJ}A}jr%1M*>`Fn zudvuU9w_#Ptw*sVq&j)4otVGX*D)~5ilSlpdfM+?s`oWIK3+_>llynGB%H&v=cnU? z#My7G+I56yTSV^ua6_yH17Gp{jg8ys8Cj$i71QyB_(b|+SxY!7oy@X&zB%mYS6kXx zwTBf9N8Qr4t-OCLFS2YvxIT9gKGtKX0=)-n&EmS$JI?}QDd&A$U1W$235@C%WofB> zSIwLKt|9SWjuaaXX=u2f?sBy<=Q3Ft^Q^i|e(~=f!z1)J>Z+fgcjO(h$5IvHD@#jL zm_0Ml)2m@J?984dPit~3VTfjm6WbOoH#mfNC#QKJ8>#0UyFaLEf%groD}Ot-!YT*Q zh0PM>Eufh?Qfe8>PEw9A;Ai%WR6 z+>EsRr;zAwoIi}xkRM2^EZf_MJ z*83%T*6@5_wb=BR6g68+)Mma+<}1AO?=n&l$saOe(U|+=X4H@r#SNN{eAHhj4^j5v z+2Y#-bniz*o+FzajLTHQ9%F5Zx~IG!Hnb;acvr6;y=+_yG$r11XYCQ3 zvz5+K(db8#1-vPP1_Og%);a)F>GYC~jS@^mlWQ1{j2zgg1Dd$345kL2ha@)3bux?E z-twFK>t^Rkj_ECP^EdpGVsIw_#u|9~lM@F|?cu3UTyKE!iT!&x@IlSL<#JVfQnIm! z@JmlyCpeupyXm^+fQUIEhV>f2siGL!ht&m89zOYsoDm5d^6X>Ndt(f)L^X9#VhnUe z9IUcPuxOu3Gmw0b7QI<{H^r@9#WlKeU}=srGdUamdlA}E{M6GpUNu^Y}ySuwT z{`Y>kpYJyw-D|G7#vDCorfRmqphR|sk>h=!0pDO^Mw*3v9LKiB{< zOFF&IGFr8?x`B;Ex0p^zo)+S$bl%v2iwGwRjb_)6KXc8~I}5hzW~y8S8XEWmFyN5# zl6kIc;?h}s_KNmN6?D|8-_0$NR`oSGkVkJWEzVoGqAp2_vu}5C+wCC$GvAHFY*sr0 zBjU$5Swq@2o8YPphEL^v164^_uFm6>=RWIEZPr-Jh6S z_jknMv9iV+_fa26S5J1HF}p***KbaNrf4)d6>(&mBzf%ivQZ!o8>P)MIkCxUkrmR( zCj-agVYFOz>oM-Aj%QblI4wMHmj&FlI!>3GJd@oImTJXy5OxsEVz{Kh8Q>=}r)lyk zV%nhbCB7;%j$Z=EU}Q|m<+*8UvXS}ymw3}9<7dsL`l~cG1?5mI`PAs)D*=~{J#qZ_ zxUA-8`HQTdQnsH3gQC_rfJM4o)Oirg>Y@!^q-7?kaW|K!Dbkg23+O)oI8bR})SncN zY1cJwuF8_QygPP+#%S_kDlD-#4s&s4h9N~~mJ3+nB9YO4W;ni|C!naru&$-8KSxqV z?W_1`v>#MRiNVBlQ+iIk%i^_g6qb2>2?KN5u!BFRoJm1aOe*)v-BtOiScKPPw4Jv- zYik^t`mBqjlobB^gkw?tM5c?WLLDF4;Nv#GjCBI7_X<+PQ$-ptn9zQkf3X#0A&)?! zPxiA_HWG9GnM6LuYSOnO+0;_KZkbI6F=_>|0oG6)W)qz-LjIfSXZ9Z@gUT_fY|jSa zhd`RCe#eNgh&B&Gs!1nmU48BsV2fqv$%g5KYqRtDTTE`B_t+5JIQ7-+SFgDgwQ8gg3AHOeX;lsFp#%_!-vH?#|7)`@H6#vdQY@&joy zO>JpHs@KFG$jluu1f7@3t9U1nzJ^$>t*v?Y8wv;rtXl&%)XPiPg>d_;(SuBr+6t~( z5k!xd*p2VD732i`=Ry0SSkXZy%EMH>1TFo+H|2f{PZ6teE-g|a`lnn4U$s6JTun+! zeGQG790RK{f8y7lK}W61?D+mynmnIiHv7#Ukd6->R>pk#NZ7O(+m(UKs+nD0!ErYq z5+j!{p{wq4csxr!zMP=?$#G%qD%|DBGFYgH*WEk%ytzM2eXFE67sgYNTq?LUC_MQQ zj(a>QD2OjgHEo+eDaMaU#+V?xmnNSgc{k;{ktg@$G&GxT=tq*|by^jr+Dg}C6u$Fx zkq#rXrAtZ>%#iJSr!b`u>3;Fl9C$%Tm$Cw?_3~a0snJvpvQ^_ENl3`24LGiIQd(t- zw6(Bb$+*B3?8Kb&CvVeXiObD3ad+M!BVs$@)J*?>QlX#SVcpZ#BG!zyPu6jnWkV!nWWFLio1Ank<9D#N zs0cE3;MOFA;Ja?)=LvVDIu6t)B&7RKGAVUzoA1txA=reJFdKVKsn$3UFzczG6*pZq9$iLU+1&B@Y_DUr@};{#5jhg-F@zn$hH9l&0QV#g`1 zg76NxT-&>cc>0N~m>XmK?t3(QddMJC`cEp;l3&Pk4>L>pQD4%p3oHt7dqNA23~sPA zbqx3uV1|AO>`rHgXofrv!6gi`usB1lk!@BFEK9&PQDh}rA8yC`t$WchLMZTUG6ask zWk;A`*NAAgy@T!GtFR7k;g86c>cDkyZJA*N_e*3 zoC(IRh+R}+E{re7dW7{;*i;xly?VP*do|y>{4pfly_F0f64_5{EU6#TGNLD?^xhu9 zoe(PtE)FbQ!G&Pn#P`S2`aka`(=D;#FD+s4 zKZqH#lWN8zB%^WEbB>71kt!=oJVlM*A*8Qdx731l-!!SIsguMY6QZmBQQZgObn&B87{Up5c(!*GB`FG^tYI*w=jR=3N zh%xZx!Bje)$Iz!i+3kO`Y2XJ#T7*-%9d+muwOCW)(;|Fj94`$Tr<#2>fATGFc%R&)0vjhEKC5O;I+M!Mr znbakHNS0g#b1AtxKp^>nC6>FcE~Pd*XNXc>Vw>?S*6zeHX=&jzGc!2kkh>*jducmeG~(1xvt?2G{g)c^g5bZ@ z=A{8Yto!_iW6Y4>ug)Y)A72*n7a_u09trU&k#TD@2uROBE!zz7KfYdE1cjl*6IcSn zpR6^gk5gH?Y4AWTi9ytHj#gJ?aU6)~OiBeg-+ic9Wic_r2NhF!U%u3Wnr+-)93P9x ze8OinWM-3JsI6#glS83UBP-t5h?M7p^va|*+t z&abQMz3pI`D<8ZJl95BrQ6UdJyo!;joJ|wrCLsFw2C<1rY0(Mcm@iZy5y260?rjc1 z<)6vuwY1>+D&VRPrb^C~?fNFCLa<2*3F+{J?Xo1h@X1qA2=EgmIo`2`uXjn|iEGqZ zvrrMA9&@B2cWS%M7;cX_7f5NdUSDtF=k;_|5IRJ~Qo?I%E)j*rkkT&#<8#`=4u2Ef-a4Hph3-0)QKLw` zQOj9#)4u9W0GX+ai%U>g7}>x|Uod9q8M_eOsnHn6W7qe~(TNEfJZZxEwNpNaRZbZ& zSB7=d>zeDXG!zUB+-h`PGO}ApT$n834wReh8};Z^QfXr4FaX+-6q%RWfbNPf#uwwT3$Y$kkFtX*vO2!H6NdCau%iF zs%`z{zv8qwM=U>v5d(KAihHkHAFTT*o8G1A?L?G=#&RTIaCsuXVqLLDyxcU2K-Y|l zkEJgS^YRAnC)lyQ>mYV{M?^;E9d52fTa?1ac1P6whKo!3SiGzppJ6l90O-R||ERg_ z4b1M6qA<3X*`)C$@?uk8i&;qe;v|%VX>5`)Czr%d?SG=4Ws<63)Si*b{St z=Caa86vd`Jl-f+Q&2V)Rz;?VnRCzwAb(pK%rK6{pSz`E@4D~mR%r|Rn;E#?~dLDq; z)!<-VtQi{;1!1~RoNQ2jqZk+zfZWx;JDn5a6R;XjWuvdp0pw9=lt~9Msvh<3BKiF_GT?m`{}VcR{kpwQ=Mx&TI*(adBXS)YEBH7Q8gEj*9)!;9V}<3YzRQz7Gei^SV0?47bLEG^fXqH2J#j z()3due3tzC`lk+xtH35tfRyrv?)tg&5d9)me$$7gIB+0zja(?5^TY37-<#FL!Uvj9 z+aFnve{|SyG!MV$@4nR!-Yziw%-Q~{duny@^!n=hoXD$cz?ka3de4x&UHxH*XFwz@ zbZ{Acqc-jw+@@yeyR5w7vPn?7kkB1frH!h^286G=Y%#9si0=TWq1G!U2SwjLpLzZD zCO*Z%P*MbiO`C{9g!D`R5=knD!t?|8n_O0`B& z(he+}j4b)SS*@@*IQmED$GEbMrQcDF3F4t-ndSytwc&I?t(IhTYU%|KrRAcJ0Qsfd z@Gk_Ql=u_cZrSB+L=CgnzHgv4ZM#NWZ@*cs1>(S7X@356&Jg&TswSNG zhRyiICj8y0t5e5hs~>YI^!U4#zd9Ik3a-8+@153OW-ucs;vB>2Pn};VHr5deYW=w~* zV`vQr;Q6ERaZLhoI>I@ld*dsqgRk*w@4~L9YQ%=iY~ebzW)ed`K(@DEU=D8mMCo9Q zh{ng9(sZ)&`6Re$r$h*61lv1EIxQIifY^q6UMXkwq5zS<=G($(R6=yxF_%FnPOc>& zdt_Y8^qA7GzRYt1`^B8prazpI7OUFogYbX%*wXW)IQXdjw)c}BAX*woZ>`msw!aZc zgjcFVYlC@d1H0_+z-Uu4u-%{Fn5{ksqb73!(UJp@Ih0(o4VfEN&{rcPwO77j*jO|E zT@<>lu2%}3nsTbCtueT-BZw*5nV1c=adaXy{2E%0K2@L-@X#bE1=}hD4U^!j5hVTg&34ak+~8oQ(jzN75lG+umxQ=UWPm-P@0PyQfjsT>7Tz0^WMhYkg-Jrj z;p@C*weq5TX*|c$f!#t#?=t94#{QZb{jTy-Eb~2L~*_0TAi4E z-O(i$a+^XIp!`dEbaXWM6vT-`f{((*r5b#TOW6IvHGbTbEyR$YmIsF}DJo6-xr@j4 z+dK~62gOPkmqBFrI%X|aPbx6$1km8grN z_){QpiM|-MTz35zu>j!3w&wEeLLcz@s350W%v8=d1LBM`?NEN1ERjnbdSw~Z_8)ve zwr&47zfcM8Nick7X)`g8X4kE2d6oQ2V6=d8Cj#PiR(1vMFQ$YKFKRe(;m-~FfrPfX zWjlaCDz#I8MM9E7^FE8OzPec6pt5F$fdl92_Qqg6BnOvCyRRp@ZCt!FN0B|Ylnetc zZ1_X}%P7EsJ0=SyySe_R4PmD1B>?a5lb4M}cA+trZEtd#@Jl3u6%>f=PSJCET#c3A z0C45#I3jxg;%ysKeFG8(X8$0wGRgWlT5){!qexrE&VGJVVdz%M)3rLX!FG3B9+%3mYiH$QZ54YJt@8`k*0ICqt{*)6_TnI7q1GG z+K8lMacPFvqO<662noY(Zt@XrcwHDi*q^jZNi~;JF6rnf9;ahg1Hfh-uA+RiNEyFtM<<@nx%$8@v+pDL69ZS?q_U)V+@uTx{))U#l)K7fKAv zx%;-!xKz~+TW{X{D*JjdFdNFwO@d895*Aj#Umz!|0BB4sUCXp5H7<-g@CuL|(`%$> zTIr=jwdmVhdpjap7O%_fPiO_m{LMq!r{J937pOP{MwnY192_(_5!0HRBZH==;J7Cj0PhBO)to zjWd#PSdFDEh;VU(7VfBkn^K=!DZEaCt`A&G+mw_`0O1joHSe?6ieiG6UoP?n$>s+^ zQ&ZDgIWsf=0*0`NDSQTd!|X3i|FuI2fTUPSgQe$rcc1jwxhA^_Jh!dO{a`zEC)Yd> z?|EHewUrK&)n_@HEf`Zwak)$e%)|uM=bpz@9o?Oh-|%=lfmUG}>#9!JArCt{^r$*2 z@l-MVSr<&SF#r-1w_Zz)3UP4cR1T@Ns}=~6?gLmXGQK~Niuv`{?9E| z8lLoB&^T;$f2VN|8v`zvlcWtq`P`5}k29SwBjLrlrb>~T@40FkjC@SlYt(gu_?TPU)f?rq)Huux zT2xzx`~qK~Tq#!CMIp3UsJ^Ri8EZ=Tmt!Rp)L#4<&bVqoYpL}q+Dt0wlqU#1`k*v zb$YPSQZdDU13ve8Z*M)b*~%5yl;`)|8$Uc#9H0bQO01MQGApY;A5&CRSO`y`Jb83+ z^0m5}o>iCios@bG3Iz6{DTZ(u(02wr7{tt9tdRK%)JhR_DAEC>VTXUkGb#J(RK|T? z-VSmKLP9EArt$1gs?))ze6MM+fssA9!yHBX2Rlf+eMe+6Idy|3e&vzbJi3&VvcSxROzh5AkcRu^!VbiwX*&4V4nX0Ma*OFCfRpPz9%}^sl_@xYfzagE<;s1vsWT~?-1w7b5}n4zjVO~uKCWjtY-C1QRMf?| z5~b6@XNN%2l0n;!lTF6({DKH4=n93sjA2Xg%ehP#*7?S(cS6?56d$OsM9DS#6( zlKO4TlkZr}!?W^sZj)L8%CV3UTjSeikW9vrgEn3u<4~WlD|fa~m+@bE`1k{h+02u{ z;#ViX$^mlrDzk6iaAj2$DWG|eiwlq+la23ih*J!r^h)Cb{_R_RXWZdgj&~t{xRf$a z`^uHvb=*LF@|8O+$)-@%r@p28H#GFe^rx_OQMI@%{yS2LJmS$g=eF8k_;>+!G z_kV+$H@E;!lcaUfr#b6lyjA&+^=%G+cTd(>m56|@wEV{e|Fs~2QBG; zqD5g;nY1S~r|C~qHDSOm=n8Xb*8l!*C@GA}%mC;bwx9EbY07^&icjoJhz;x#G%`3< zB=`5DfB7r_iCQ#q*lh#;{OWz{|avPIG+rAvStp(zlRkE%tZtO7DlbQ@gD{Gkd=NuRLV`+WT`q}qY%FADg=0V4LDA&>0ua0n3|Jr_B2&G5Wze^9O(jZS zr_}Y69^gYgU*K&S&lwhFQ3qgPyHpm4kk2kIo-Uu29UKH2zr7=?FDpVJ3A>te?C{#@ z_KDB^fQTtBE}?yN)H~^?B+;_~bE~|r{^>9|tWSW~$NK~e=M|n%8W4x0tI)oBL*aa; z{;A9*g7xV1SVGNLNQ;k8K|w2`F94HB)*IZ0bl1<-972A)L?jQd3hU0gWNtYwLigOq zMS}jrhd#*8hHuajdqq{%N^i43Xy|tG)t#wO@Or;eu47Ec+lorZ%K3w;4oEk)PJ?gg>!#=A1mu7??)nM6 za&6C6Nna(K+1N-vIr#>-@bWn~4GIfOq4RY-S5$Pe|Ls97UcO=?@WHloyuC>Q(*;Gp zeDa_AIN(;+UVBWZR7J=fcf5`_GTnsMf-u{Lr;)K1yx8vUJ&Lyr_*F$ksdq?8u!*o? zbagWrJAmE2b|o5zb;=P;?ITLJY)XdY^Km0ig3!=Yh}D7BRxQy1>Lk`=e9cJHluMoU4I6 zAt1^NU$)hXM^Bp9ovgSPfza}GBQ3cip7(fmWC|8>zRcku(-H& z$knE26NO5MXek$P#YJKG`l5f?nW8RkoYe$EFLY1))>0!fa>*?Z;e26BZD)HMvAo0v z7=d5o1qMelQ&(1lqdc5hb@GafK^`9W(6SXTV9JjJ7~Fr%pRftF<)8i-oksU-X^8@0 zuinx<`uV>5t7QlI()+vA+tS0-9(67L2BgRr)K!rg>O;fLU?;~`V9p<2eEO0OHwoE# zgN3}8*RtNShNh!O5+b-e`O4vlVsm{NyC< z?a}FFBt^Hi=cTDT)DTN=GlB(Zl_NLmHn$Tp-CQBFu){Xb0u(~hlOo9AtQH|H^G0PC z?CI(0;v8;9V8g<4KWpN{!QNtH>m()lR^n{S3|JCcLPM>#tAOK}*3su2$g3}{60X7@ zhltwA%Gsy%2aF@c2THY@$=a`m-$C&ut`9j)hgOp}bwn%{s21F&_far0<93q`8T;Qb zAAh^P3#+cdx@~#ftR#v&CTXCU?=ZL1wF=w5K~n7I!RSay(6o-2AFzE9S($yg%0twQ z5xGB5N_X37u2Ix#n4Phv&;G2doRDH8j?T$%AIRRQ#bt2PtvPCFXng!=L(IxLq}ISK z2mPF$VM}$}>!hYup0StW*9yCbb%<^#a4<}CxCoAfjPM28p31tFm`^(a$Uv-)yuG~S zWa`y*#LqP9Es+gQ+Nc9WPoed*N}bQ|QO}fDdhm)@4b16bz|6~~=qXB6`Xwj}xi1@z zI=xyh<&~aab`|QnKhv$Xre5gcu>1`pm<3i~%SGs-Y0;~z%OxBZyrt6dxM!)Uuhl>Q?qw!!0$rs2tbruJ^72>20BF#5g4YinhdM-1RF0@`|;*Kx9_8pqS)m zcB?rzc&mCx$}K(5)xl~74UM7mdNq7J+WnPmXeUV5zd90>N|x5~h8!Cbd2T)}$=Bca z61$v%1njY<0!$x=_-S3Tk7j0xkS@=IC7+220>2^Rs{M}M@i8R1XXt2XK$grO zCQYipOmacOxt8C_$)(F+uR;m+mu2061YL-#t{Zx7?KLo~A|@Dfei)z5!rV-q z=V7zg6o-_QIySbTfDG8V;pxUX_eCq}CuL>o7lN4JB^SOg=DRjW>(f!#&1y6Jmv`@K z>Ui6GdxGtNUC3Kvk%b~E|>!qKxZjiA-( zCbe#4`f-pjNLpe%js&EDf@<~0a~(fhS-o>|qHw==|ER7`YqfuM#qFY=9vw~la7IlWwJ*EM?L$mAr3E~RyWZZi_lX@qOt z0KW2Yc5^Yj#F!T=G3M_Aoh62bh+l;V2LmlDDcR%QLj1HDe7rm%IDRHUou#2P9+K)V zJU_CiO6|K?(^+ajr}&mNthi(7gK@XqlW z#giBJDhI9;D081YAomQj#nmuyaKO%2Swvm1zc+ja+{MReaNdPs4k#HFgzGzBkziBp z)HK>DW&mTR9H$Vy($m)~YA8w#-1|{tcxwWrlUMF9BirZa(fbt>pnJ8axPcs)L;XzH zqaLeWj*{BZzGGvr$oM=Jp~79J;j*&a?rZSs#`}kdfn3Ca8ynO>qSqt~Zh1J!~H9Dz=Xh=@3r)S{3fdPNh%}nA) zbp`+B`;}(>Lx?xV?o<#Fa6KvL;b9!wc74s}g^UFTCzEN{*hnqRRxdPwHiz<7M!sKS zljDVZa4kKDy=N+Jq>YV{C7t?_RgQkxcqwSr=tv19Yy!F|9}zX?G@=`5P=O|j9=00h z*odU0&-kFk%+gX+-K#d!5^gJ;hh1bLaRpmcl|l_vE>%!+wm$+gRP*sh8L;g=g^=w1 zYmiP`vDYnqvIEfMo0VCD0>HQdizpZXD2ml<_+m)q^m4}(3u!0f*+u=K;qU?Zj8}j7 z)jj272-mVZDaWV+)y1;Mw53`F!+Qjqlk3gyCRC6rh=xrn4uqaM)7ix;0t^)cP|HSC zH-%mvG7Im7Jns@;tu!1i@f|HbUVRTbW@PNOv9)derDVFk-fpOS{R8DO@^MYod8^gU zcK0FWqk=;C7IYQP`{U0UR``HAPI~g#)hjauuR< zES|X9;NVcZz~#b=4Wy7YigXI90zv|Uto(A)($Y~}YkYj2_XceS{C5x!swu(Sg-|MH z&LU{2yQwN@!FHZS?>B+x#`b#fRcC3>a6R*nvji5>4kDYYBLx7Xtbcj1FR5OKkT;y# z9Y~ojVj$AM4P0}`NxLB>C)WWSaj>s1700uR%BoV+UhgdEb^Isxz(Va8pDAFh|W4g&w}U8sQ~Ff3PGO^pF?0Y@iigKrO;Nu?9% zP_xGKhN)?dgKKJLO+r?~-e5JI@J5jF1dNP)#L2qcTM7mSirJQA0CNkyu6LJ5#^zqO zxdW-b-@naqC@6d(na^?dw6(R4A@|_+_I^Bh!Rvx-pV>-#(sZGtvX1V(yp;U>GnZqi zc+F!|{YTwpZ_{))g`@@BZk7`}Uyqzv_xqbk?uS;XY*UlapkXyub_Q&=hNH5*Y76zU z3ct&X^m^;=D$5jFx#_>EQ#Or2DB;;Cx#P0&7S<5!+s?OnGZ!f-Q%r7wHsA0Bn3U>>iB@6)okt_H0inTMW- z!aM-;^H-zg`Mm)lS_!7lz^NWid^kRRg?c?{{ovi!-+9$F{eTJ@V}%0tr&9pD$SU_k zI`P%f+-{&4O@ubSpYFrWB`{kTN8(i)ql4k;<95S$?tZ;{pW8!12@HAy2b%Nqi{SB% z#O4QTpdJ@Y>SWnI?D?Px#1FyPT8df$hn|Oz2D=*=&S&KraZ;$KpO>$rHB0r|N$#%b zo4t>{5}Q3Q`5vhd1v1=scp6T2Qm#%wlmuKc;xJw-E$@}dji~`FJjbzr^J7?pp57PIs>oQLCYh^FHm|_j1LK2X0;+?@11v9K zuTFi-xtyS_Fw8HFNkAH-{5{~ftBV$cRN(v&h};0w=IXX7mgMhPUhJ+};G7J&^2GL0;xJ|sjEvR9D)L4a78$bv z&J;xNei9uBq*sDLI{ZNcVHOLHo0c=Y5QaRwbhxYI)jZo}56af5K~mcnEab!dw{TDc zkbZ9rLWAR$03iL)T+++T`g-Yy6f>yP;hc|B-tdo~HTW4oqol^KC1~SmqFAikL)JlVb8ji4S3UlPpStV>) z^8pgW`||~bn$8GxFTL%3PiEzXd?)i&g36PqPF0)k5POyHcbD%_ul*B`C%qmd+?}DX zF)7?J^jE&WVuWt&K&hlvR0||=R4KB{stA4!UVmTY|ED9Z9LTSygy-mM6seOU6?U_71ZgM$R^4Tl-mJX$?n|$* zhbA2{35gGKR;;bz5g~0DTo#~extkoByLn(aR;GRvoR;RBb8BD(LgiH+o0ksR*79R9 zvb8txC2b_LN_almh zDz6M?^M~rghrF6;pwU(RZU+bv-gcGE9B~~FW(w6mctBipeIgXhQ|YKTzo=5T3KqU78#GL)>ul3 z+_P1jT)Ei_+s2^!LvlenUv{Nw4wJbC7r$)k?|8{S_z;iW4zGg>(pUQ`up%<>{X|Vo z=>f!2iJf>z#mZLcszI3ZRjZqL=HvYMu(SsWZ`L+%9*o@dTSS|X1Hq=HtC@C6g1k42 ztMu||tt_`z_@=Mz^_5`qk_OILumo(dri!%v3-+`)>`KzKjxXm(t+N^nF;-Ueagj$Y zT7c`aIF`tYr>0g8DO}Ww%xA@5ggjJKFi*(9i;neLe);stIswsw%V&5kmxr+rBMV2< zk1iT2sz^vklFepR-=8 zwg?=TFO;l44s3L6Zk6J_`c)dunQGHBjh*7!D53rhA_&E59BYV4A~H z8bNcS0r=~8g^5M#KFW)OD?|mdxyl|S(iw>(grW_CMhlK!FZu|N2EnHk2}~NE7GOot?*(>U`#_2 zrUAG0)_OJ+18@iSW=|E_0!k@W-;B+)2##D+;^5@I(J8v;7^4Q{kjMv!?0A_8k$fI7 zKjBYiHdcek9eJD&*WsNX{HPqx;fK=oYj)8eze-q3`R5b1Y7wozbK|i_v5D!>nije_ z9{#AJ60CU%z?>wx^@+d18B@VsHGAxuE5e+pHeXZU+=fYN*FNjaG2Z%Y-AylajQuPE z>Fxo`E54UV$p#q1@WD>k>w+_~Wqc9-@u89OLv+u)b-g;Bngf%4n^XJHe$UWQ=lmf> z!d+;rqxa)hw@@NfY=F&-@c!5AD-Ex2b$+eFdOnECA zAzkM-RUqddn8!DiF5Nyi`70*txcTvBA`A_({J2ytUh*&m_IlnKnIzxP*oZMXS=qLU zp7Ho>jI-=$(d*F%-xG?f&uaGY;3XI_HKk&)P=fhX(0%XkE2OQ(pYd1y!ROZ#O6%p> znHsH)2a4JNhL;P}jDv)o7A2Hw%q1-?-dxV-6%K4efrw(rk^5_`qsLVPLmE$ZA~M_4 zCLqJM+uo|Wgl!0;o6C7le(45zaO+SQBmfUAH-ax&J6J=ycC9Hy%*|6Ke7`e72a-=? zmaNL)xK)=32;zIb2qU}kF~;@sGDW)Iy}O=|Cxfs_VIE~>3L_xi^uM{Dg~wX(qm>G# zvZK6(h%$QiD*J|krVFGxzbP{vU+_tM1W+-Cn1HIR6_p|Ix;vzgijEE+iP9sIjj9P} zVn3|i#a!D2L7Fq1(R^TGaoLpCa)ouY6a&_>5dgHrkGd+%TOeLsCRF2n>`->$GdmEwUVaX+@$aSTlYHni zTvgz_c)PZ(xVVW*j89#8gci3luCCw}g?q|MQRwWw?L|7*%M-^qM<*7-8tcJ9@PW1M z$%iRaSGN*EV!B=#C_9v1Tb{P@Lf6%%(EwJd`EemHTR6^ml_m<2m-4Zft<+upmEgtE zy`t6`xcSj~Z?2Z0df5p*!pm9FdDNprBprV|kxes%)Vkr_MV8+VXU0PfKF!8CqlMRY zXhv*KQD7t)0T>UsO|<#?eeyz?_oN@zLTLJdRj=7Y>#9~=^fEehwq7X{G^wp5!)+x=m`+mSFq^XqtvV-Qnc9B9mxd_bA_X`L>`UT&fI+qY$ zX~%Fz>3Yj<@PoP(Jj}`{^KjrMk%P^fwjrYm-WlM*xe@jCJ(?p8>@XX8G!b&Gb6Z>Y zjf@0gHhPFDHasQEo)O95odV8E>(Y>1%?QsSkRj3v@A7PLK5{hLTr;?xl7(jHN#C_d z7x#P+&b^zjvW(5v*Kf%Gs}KxveX2LQj!oDP62p1O(sHLL`5x#{L)L<4uEf6H)?xIY zYI|&v&O8p{ZM-E_SwSB5K<5+f8sY>d(4^LO&SBHq5Wt31rm}yuN#E(RKfk!>t1YmX z1_oqgRaaxl$wjEvMli0rM&SV&|eF-x(SjDygon{~bvP zdw18qqc?Ij?(a26BJLV~uVB$tC&&TJsJuRuZ{74AnXj4LI!BoqR zfk6+}`ttXe0M*w!*XW5;2A^F~@6u=0yQO`h$4INMyYQz|lgqNnRT~~!L z&eBya<5~~-jL1P{ILq@5`Kl5NdWXhLAGmH?nvW@D5_ZptEnNwL^6JJDJ8#~S>tx>V z4haNFG+mocymo|_gRMCq*X=U3R!0Ses*I^diVEGBx~~dHCr1sxzdK{o?aqB}KUzQf z7O2f`d5>8!`KUi{K^0k9r;^HP`|)AMLra@`3O<=03kbTlVdhq zy&M~3mGVf&*q!bR;rVZ!9WwWnBd}aJ`&lcO$pjziwWoV*BvsB_4?Yj=SVBH%l>is| zsG2fjHs3Kn+@0`DRHZB@1Rgwad)}TSV?za2unXQbR_OClMgaf+SIJo>0bm_%=L@>BoL6udJ+4NiU zQo2q}ZGG!(aQ=;n*ZR_$TYxaLwI8W$2*e4W@PfDijpT+OjPxh1~bBA#g)2D1) zes%cK9zV|>?c?MGOZ?Bl6!O#t_|n&ov{nu0atjR{utgWE)tZP$$Hdzd|CI8*aZAL3 zrRSmA<8Oh_dO}tIbu8|{KSmBqUX~cc(NXh~^hKp91(od(o}FRfuh}^GN(iIGB(l8w zTHXKE?I+yTSB33}KbL$O=`laCKi2i~k0sll%0%oh7e}X1pA|v}@64uSL}d|eG$|41 zJpXyIFlrdk2WLZ0{Ks-h8Bb4UTq?W0k$w7$uEbU2j|cunE^e*=QJrT0`HTP$7lb+LHy^?{@KUm>nD)Mx0W5VKS|R6M7(v<%tY0H&=qkluW^zb zVH+ySU_-Oua(}r2l(q3dT_c#LdO6@V5qoh-I=V3D1EUKDs)$90o#z&R5)p3veP(VG z0WiVM#@>V)*nZshOK7isp)Eee98yNH`Lda4nOLPDFxH5sMFhxUVX36 zH$N(`UgmqdQ3-&aN{v_NT0QpaTyJCz$rY5AeIYRN+`rVE2e}lmQi?dHPWK4`qwJ3dgMQVh&g`}aKA72v{FUYe(@tgd6W6P?D4g&>Iq-u@od z|Doq7^v4MTQbq7)(8kf0VseXpAI{m$l*`ra7JF+G){U>8$6G8V6QPK1#QOF3hC0-x zbSoQMCo((*b2pI8`>dLleFvFc8^u2;nMyx0w&Y(GL2>0;+rH#^#)FzTd~tU1;&qGp z!2O1MV5QF=v{QSIz+304pgkQDCER6wL4DymhiFsB@=b#mvSZ*~9mw>FP3w8qa6p~Z zaedP-aymT7>YEeA;O~p2+3##^-?o6^Zs)PlEPwyOa2w=45knLcT;P`WMdJkm_xG`= zl^BIKj;~sVyD>1cWPWUr)9gq6@qk5?u&FBB4$1t={yLgz-Y7=lIIDN8wyv(wHw`}h z*CgWMUlf3e89zsrmR zIZ;(Lm2h^giAcFHs-PQFn3x+vF2Zt8`U4UNutpLof?CPK;3V-( zrDa;CzQ}4rt*!juc-6l|_Bm{q%YoI;DAj~dJ-_k zF<0_Gcz*h#|KlVRdp=xx9bpg(uwvnwauX2i$GZsX)+_cbMS{HvcS#oXi~ zldWa*D1)V8!GGMYKj}3t--77`d1UbB<4ZAg={h&G1i0Rw_vsFtq5}%&IzFIv0tX2h zd5GtKIS8-DP=%J~BE8lJ()1h?^-^gMb!f2a4j?>T~=@`_F$l zWdPf!$ulcSQDd%t<+F`aASQv7eNyoyY69@m;Ed2?&i8qz4w12d;`G2@q(j`4?nuF^9vpCnU%=ZhGAnZmT-5- z+_+1BG?aDw`3Lu<(2mTE`8;^G*yDq_(CfesPShjT2DNRLgkRrk{jZqJ5cvQ&SM}cQ zgSTbL#&d{AKTddQx)5fG-dYy@`F$-SRKS|3xgx}c-g01hHeOyg0G%l5Cvy8QIuQ^c zJv@ZpyP7%Nje+w$ztBu|VYrA#r#^*tT`b}FxLyUePCEvKJWCE^{|3Xyce@hds6;sj zG|nx|Vq`fo?eDE@>|?P7VotoRXdmJu`c5(B`x*mOR zKOnsXBy0R;%l6ziqnQ5Lm?d7FX3EIO0#*jLP|deTZh;i#N4H&8XpU%NRKq3(4RTnz zq>hFeAboIqvoDk=cQ`Ru!^z|q>~3AJ!qPw3E8cIJ<%>8fEgu=~kwFeXC_>Y_4$)GT zl3Di#Z8w%&^o3{R67?c$5 z#EVk5B`iEBnC%Aby`$uWkr+G^GtCq{uaD(q7`{7?CqsLxU%FOoV^ar;o;BrjHX)-_uJq-oMXYeZqBP=0Z&ffCXQ1W z9cg4m@WG?kUK+C6r|#)4T{XglrFY-XSPjI*JAEJa8>@c?k0x1#v3xNIrt3=oF*<`= zKl+nlO3k2E=cAYcQ+#$O_YO5A#jj_&6-Rhjyhon05)3NAhaC<) zm@+|WNVV)z%$UOS;0mShQ|V0Ui#rz7k0$5wsWG$S9*@w$_QSiSUt+b%jocD79j&C* z?Q-A?*wy)tR9M#_l8x5}Rq7)p-?zYd-AiZLd$;d?bENxOR7}`CBvXW-JvF{>GtNm@ z%AJ$b)0htZRnqgXK>@VMU74X!WsCvmLlKc%wtMuW}Cbm9_1$pZ2 zj&v17Ln~4vAKa>f8m)`1*>h=3GJAT3Eg$mA`lQfDbz^6+ocjSpMAvf z>ERx4`IIkAgMK*HFzM6!YRcyplH{n7Gn+k=Oa8*j8`A)1lWm(A)Ac1xD}q?w8crm` z+^_{CDT^N!T)YQ27|*j~I@P5Yfz${6?fOj6ZMeM z02{LtZz^v6l1)vNR<@!-V3e-CzZ=;enib+rZR68lcxlimVVesjMi{L?PO*m)xkA_U@=9B zw&N=&D#ao+FOCjh()pWkK!?ox-gO~ZdIAhx+c z0V5_kRk1TVApC<~&;l_HebCrOSF`S;uuQSjr5MF<<+?h0>-$1!5_60Nmhy`q4`|(0 z$_3XyU}N7EuKP681@@_^?Rb$_S3E*AjBv{Mitk?9dI>SNLNhbp-PBdQk-!-``JLms z?1MS|ogBp-8Hf4VqD=M(cCK3LFqQ`oe2np0@a2&R_+aJ5>0a6J>Fq?}%&C-EIM_#@ zXoPNNwfMn#0u(skA{~D^e7aIRCn|k^8vpuHqy}^7iv)7`eTUuLZqYbQYomf$^c6bh z-GleTsWKBY`2W;oM<|4n2TGQeTM|M(=YjdeUu`hPk}kiCb)hponhH(Ze6^g(Cz~}) z`eS4+U2x>sb+h!X6f&QkBPylG3DRipvmy?0-h$_Z+GCmFj%j%^1BEP~aD)aDAIlxx z?`8PFBB|U8aV1TI@=LGGA~ThY^rnSn$<@mf zt68majnFKSHFtCkq|OzYR-|~#O&xP=>!gCXpDVzfHF<4+)2Ph0p(WpqFpyc(b4w!G zwxYT;@^cgF#^^>LFI0y>h z_s6K}2c6%-y3vbBbSW1xS4MNAb4O9pac*(l)AHos_;G`1un}H@tlrK2OH0K=D>$*d zL7kANFr#qiJ8YMmLzMK^Gi;y5m;{t-wai#&u?09hVlKUD5B*i$l41GTgqU6-8XV8>;Jg0B*Y2v%j zMtEUT52$$;4&avr_l6*o_nKDy-Xj?(-ejl!mDpVoFQ%-yy2 zjBf>}siS`_Ks~AT%?Gpfw)f1THAclVlUw^-I~T&}@wxx2cG5Hq`Rquy16QIpe13SD zahcI9nrOW*G;vPOd>pQi-ACqZqvA`_y3a50cuOiiNLEHKBF((8g~sS2 zP1HUjYshp?ADRtx;H}a}4OU%Y0eFg!7*`~Cx?j>iF+x8~a<8=uu%PDpo#^`Ty?kmf zWka3hV3_kUSmKI!&_5XJ-xXLJFsE)~SAgoOPt9oIZfb6e#Psx~S$Q%TNrIaL&5yhC zcaE&?^wbU68 zB$KJe>(IYO4WsYV0DtZE3WQgEdc25elPf)Ru&qp2szf;TK=oN_8|@aLvs7`|w%iSzi+pDD!sN5P`0Z?-eT&^}!vxzsy474kw>MN0hJxr+ zyp%WAi6I&KtO?H9(RtpB{ioE@ADtuByG%l5zVFHi?(ra0W}~N(QG1V^=y6Tdp%Deh ztUPxVof6oXS7ey*`66Y-fY?bFmv!oq1@w*wGu8{IM7dqY`?FHK_?jEIW?ar44(dYx z`cMXc&7t<_xAR)KoXDG{zK$y_7v55&!9X80@q7LuovZs`nk)24-snG`|BqIOh^gdH zW5FrL!fKAfen*{b#~ue#u6>=auGw+5xNX>DYcZsH>$Eb^Gd@qU)GjFV&Df+H@k=RA z{~UbZ>0cOT@yN?jDvm0#0zo>-LG4vM`($)7w2jTVdD&DQP^x+AS1%nx2WN$C$0=!QRcW5{Pp7&Y z8pS6RPH`_jki$m9Uv4*Ys=M6xY+|CS>&J7>NT&ao!Ik+OG+;vZx^{0wQXp<6dSj)! zuV=vuVe>q=!Tq#nZ50S*=gX;Bq}=pMLMo0#yRL5mTz`He`Q@xPkhP>JY;@zBK+eY*#Zd=}~X_4edUHaJUS+M>gMBwR1ZNx6DUEfL~Y@E3VRWd`Z3JrAcCQ17}(_@R=vzSaVmA{Z-4hikU4=tjw zLeN~#yCg|zL_<@*1e0A3QC>Y&(IF~Rmg+qI6ewGtZ?@*+Q zjeU{^sbBt%)1D}K2ftvL9?5~eOK}S4(8y$QmTvBX$y8tJ222fMq)qemG->ePHn{U= zvQ;RIB?d>Tzyz1+ekYX14%HsQT()O!F#X4{dn=1Ic|F%v5s7)xquQ&8(`GIon@a-R zD%vmvvXtq;VMvSR62Z5dX6fWqF4qhH!Pu*!;9gM&{>{-FEd4;qK6W08Ca#>Yb<`pk zL>h)qkOOkiTni?i=Ph58fpx>qPHf-GwHb?K&p>gW?Cpw5-0carVPt%dzvIuEz@8Tn zD)0WaVySMPQ+3@-UEI!Vwe5*Ynz+22-iY9}ai48$&OBkTHl?p}z6NN_DM5kmn(P^r zs=ZmkKwN9@`U*=$p8^tSZH-O4NXOM-m{eoQ0wfc-M(xkG1#LinUNth~YhMs7xKoq1v-%BHryABCmjrC=|_4rZZpIb%pIib34%r^I%exQ*0&|IS(g=NQD21@=MRb zK2;KE(R>6^QO~9Q?4EGb-BQ2|`Fj>EV<&Ex{kOZ=i2}O}A~*UdWsonA-$Gs(E9Qp0*m4gctUh7G27eZ@{)0(Q?po1R>6^p3u37;AgPsFsZWU> zLp#38Nxx57A`F&>Vm8Knaa|5?K99SvF$mBKL2@Lx=vDopou8Y#uR8~HXC-m>+jzp{ z4motYJg@3c%&Oz!{p&aZ@oNi*o&rlN9LAqJL?Gcgc5J8{kF9e5)03 zJ3#wRES-Uao7(IphSHcycWa|T?fDCGE1HCE@}W@b-)gf|cgP)>?w{(>5>#v2yD*bk zo#m71E>~}iFNOm=BDSO@N`*+%?zf{IlkaMtSa9AO2%;nusyG-(AZb4Q==(JJZG3LW za@2h}uN8y0+!>i_siOqLQO;dOzkwjNz!%&yKQ85B=d~<{0)uT|zgrn7yy!fx-gn_N zx!|Hq$8@pW2b~#}gdWcN`SMaejj3e2MrHVK{Dp}$fDUhMscoY1tK#$@(ntCRoI#^E?q&SeP|dL8Jm%x6{BFCXbv@^9DNW%Axfo_TM^Vb z?sT@h&k(%2pMA_)bpjTlS4-$F$T4tTvlB6=Q-m9PU`qI__Q&x&%dfRGo+s7Dgd8m% zoYwvjMs+8ng??j;9cKu@4{H1F25e$EDAUC)XGaIEm*j^xihWE{?}xR>*&VUU{VA#Bia(M? zeAVX0tP_IE9JY^1e5%-7m@Ff<#zaTI^Be1pMB-qVBaDguGtHRq0Yg9tN%Eb`S7ztP zk}84Rho|Zwy72l*19M+l;roDzK{c!-w37UpU#4+}4dltxV?6~ob`AT&Sl`lc!ov{~ ztnFQq;`d=S0dt8iV^UvBH9)Y(VUam}m}*of*QTPR=M`x@P`0(mZdIS^0@tMbA+w8# z2i|!(oQ&q?{JT;*`omkM1fBzwzHFBY3Nh-(v>9e!GDQ)WGtM=;A4QuW58=39MPNT`u5|Su@CU+GB&Y!%1!kg%ANMBLhCW@s4^e|(&1J(skf0x+wK`vc{^2d zj1Kbx#|9ZEQq`G>1o{!~kZ~6>-kF?m{bK9td#hJMU-LuG@a@x}t{OsGVbWgjYl?>b zStK0Jb1XWMYy(e4=P-Vky%ai`h6*+*m8~Ocw7B+R$dT>%oCv8&4!-Ge)#UaDGl&q( zS9kSV=~`vz#IopJ%efX9fg51&Nrk23p!g;NU+uu_ouYB?@+2Owd$2DU@k}>cKjOIw z-9Y|Q`w_vya;8tLRQ{gdEU6-HV$W(XTHKf^)7P)TAkcJ*$XT*f&E1C(?#ZD32JO`B z%yMaTetWVG5d$$4)iN}RE3J_lnrQzesh$(dydE|2;J|=DDia=qIIm-(@m&%QZ9BwP zcAMh=)HeXX*TM2fZKTh-YHdW%N&VDJ;x`U&pof;pR_n_tVImZq(pv;e^kPz%mY5$H z3E;|7Nkv=vdP+?W(FK(>FI~>BCc%Ml6cmE*3*!TvR5SOPp?oW7g+tCd#}-+S z2)p_7)@1@HJ+R{ns&m7v6Z>3`kNi0GsX~HQcm_X&sM3F3;nSms7R{Jb=PctZ24y6) zhWvIRT^{7OV1=s75yqKl|6eb_2~XIutu(6GIUVjoXqfqw!0JR7j{HLKz%Q7(#Urd5 zQ|qsaH1gk&R_GN2!A%aAzra5E3&K7PHFQ(&qV2OjnU3`Kk>3yDsMO*4HiCjIiLz<; z2CMD8m|l(%j;69kwb8s~qKJP?554SLJ*J^>_3na9nA$GN2lo&e2bKlJDM;-&)h~v zdhdFcb%5A=_h_?PH#C+C)>oCR>hc!lW5>o;NIB7eoRNIK5WydZG(3$rZZF4b^*t-L zC*I-6bj#=Ln(2lFjL@v0_(AyjhnVRxaAxP6>RYI&mw>8Zs79lC78-!@8q>^gB^F<><+`J ztA;VeLzgYP<0)B{B?kN(X`d<&LA%vOpU%Qul0uLnzSD&b6KWS-)aWVM+UYV5!@G}6 zI|qTosyXmav~SJ0N*F6AMJjZKC=Pad(wA&OLfibnMTUET@y!28LEh}~*viYZx1MOF z*Si_i;CjN%W=GZ}H-iJ~XFO?1YfKoE< znSS>3)wcR#=y$qn_`niVx_~cgLc5yc@S+f+=m{9{7_w96R+E!bOjE-5Rcv88bJb6ygxu=qf?*`Z%R<8M|r;2?Dy~tce%WInX zdkdUD%Yg7!!tcX^!h^P=)5WdHrHa@#k2tZZg9-25NiC++r^A8cRY|(l16F7XXD1O> zXF9XAso-5w6_5$25!yxGC4{A^eK?qI#VT#bTqUUzUfW3WKJgxkM@A$2c@9bUJoj;7 z!stMEwU@MlGvWR64CXE@Gn8wU3*X0&fpSxFaQe32U#amhQTJ18dM~GH za{@Rl`vzr9C;&Q#*Xd%qT2eEaWVZGGINg1rz6InYfNao3g=J(bn}mMk+R`zOwz6mw zKJbmSD6NFU>GnzzwL+SUmb?l88OkW76Me}*(HxC!o)-V2Pon%e|!{bom$ zr7gDF-EvmcG5v&Akj>TME-rpM-aCOaCoY#2j8WK*<+*MkR)dX$n(7K zD9JokCYmxxs%Sc6JlwrUOzzm)TBGn^n&0NGuAeX!3a@suQSq9s8c!XHV+2wgn?8)* zwGgL9T}3kT4vOOXTaESa<&c^Fp25xwkfixSwYj-vxEL|o>#utXBiBurn^gKrHkp5!Y{@NbBIg>_dK<1%pB$2u>5Q6Rs$^6IYVqs(Ag z-Ck96IebchwW%UKn5#oqr&i$+e~4tGb-mR?8< ztxemB9B2xaJe+`xCBPWb5Oq~iH|~&U+*opfc^5V|AEG8BfFy2 zX;G62XV>boyKoZR;)^}>V+EDb<%JC9hp~L3D`83BL$-cV0ck~RQSilLsKS;R!t6jm zz^92+JB6T|=Xm{>NovBR%Wh(UNRK;|Yz|598AL>!`D|ou0^#9K>|oFkqP1g`-I^Tt zDeo>p3N?l|Y`^9s`q9^5L>cOTwPzP&iW^BnklcQA?`?nk;|QG7uv#(tF9C7uSr5I@ z;?KuD9731loUJ0r-aNF@<4X{mg@!Pl18$ET z4f`y!iileZVUJJt4X7HH&nxO@h&=JMi`UCIm_;J}RB)N(9M)xu~ z-htl}v#QrE{-Gdwr*La}FgYUKA z`Ra5Ve}tDK1{2P-i%hgax6b3E?jni^92&6l#R%iKXWP+6vqAE4GW8Kf1xe^Uv?hw( z3CJz9$zYr9LcOh^?WHP=GeOXEeQa)Oto|J9@|x3q)V=e*k~HxXw1nlV2&H(5_E4ldKt-DYZ&CfAzx3EIoEAdd@h0h~_@2c&-Hk8I zAltovL%mRoKeU=SCnw&c#6GyOzEE=~!ke0SxxtXmXC2)Aqx1OylKsx{z2_kCrpn#4 z^rh*TmA*rsT1mI!xfXvbvU^E4qOm%Z8aMkGBssM10VUndyT*GeD5~^-Vzk#$f3~3v zZEwf(g?EHLzIT7X>PD(Z#LD&2|>@By)Ets6}KfEc<-%!=`>SwBNR`O$b~8h zJbry?X|X24%?^(HU`UeQCNLD0B)9tUirTvQkaNxCIlgBQ+cXV&#AT@{`L8m)MLK_H z#%teSS3?TQdiP0&*$M7Q_O-(7U9+7+UB35Kew$3xOU+nYa=G+R(Z-t^WM_=~R(EZY z;zJ>DP#tYfkNR#RXjzWe6Dlmw+UQ`oEJmjI{wZI;Hogc2R+7&ld()ms$dNq9Yn-$3 zs!PS~r4Cw1tJ_D#`^ZkVP=@Kc(8L__!{9FTC*PinxR`QQd@Ms3Z6y-NT~c^a1roxU zH=V6Px?F?^vABI~NLGesAfbO{>mQQ@7>WSdqQWM>b1;5$SFj-aG7ZIA0 z$mi?V`CUyQzUBmro8086=idF1E7(2j$UJwNa-I~lM&i&MG;T&QJzS%q2yzJ*d`bg* z|k0b^D$D>{%myCD#rj@e-YYd;<1d)^9LP6x31IA(Ru5O%c>&y#E~i_ zI4z9_(FDl)ef0d43*LLZ8yW^G#zOehB>LwbME_A=X~;4TxKSAtOmb={`sRt~YZN;T zjMol0?)F>=+e~mQNppoyOl;TkrmtwdyE{Yj7hSL|`fFvXk(6&p zT0eVl=VJ^o-ISQ0l-7BnTzw&2nf1x#LVt@-n)yN+UP$Mv=79I$bk9q)(leM*?=tB| zp30LI|7`PWXn*+Bw>;(hspopyb7qZ~M1|N60nBb3`TDOXdH5u?>B?o%A5WS4I$=$k|k(yhsm=>O0#piZTk)=4R5>}{#CA_`ME<~ zKUYe-mi9we?2WpcH2Z5PlTL)x_1ZE6=bR5@2lsw^X_|J7$7xU}78x$#%HI@x5Z1vo z9%3kZx(*7F)|fXLOOeC2d;0k^7`(EGe14li1_G(p&!mj_8h~)EkFkVN4jL(;XO7!1Z zN)4`V)bj?ftG=!3I!#WfE`?>I+Wx;D&A%X^N9x!d$&g^9$sm+g zEk(k?F(cXgS|MstocphNKo<8jq>Td#dn#P_U#kI3(1=6_zEFx}&5C&OA7cUxAE^QB z-sWVgQDPJPPpSJKaHX~If!94MeXshTaNwUUV2yJK@D-ll;1u|;*<5VWU>~kL=^e?x zhI3ee;hY>lN|C>Y6)*ruUcU06`}Zh_pj7YA+Ipulo&T-m02`X6A%BKLl4Xq;|5M=k zXH%Ml9#|cPeuC@&O1A%udS-zz;GX{Xwr770H>Lr@jot^PTYn9|V3Y>8yqDJG|7%oU zx(9ft4zI?O|0c)y0Id%G&}u15lak=ykV`N90c0uNnv&(;!`%h|32(XJFSY(362||* z=NV#3;NP>Q_x~)ipU$@P*CHSS_UBNDi$2lc@a0p3nW2+}f6<8^+?f0aNB8B@nZIVg zU$=OCxU-z`#)t7V3?3zi|udu`za5sVh2|L{@3g&+CKp1wif38HH;rp2#~wvT>9U{ zmWF&~kOqrz5&SB+ORMt07C}ilB6yGHL$NU3KfjeSMu>fHx7tUpG@9~))qr5F1FZ1F&@QoArD4?bq3=xn=L_g%xv7WKy9 z=1v&?GAd*K1IxqV5R1ry3FRV6FqeXnPNDDX59)YI zzcm>j=HA|3Gi&>>kH3gZ%S*eP6^JB!uc@154|=Bh$t!}MJtNg`c8KviS1AAvJ43&H z6ZUUX0K&rehwS7=$1&!$5XFZ(Ji=&VTif5;^Q|;0s`0gl-F&+G({hu~aOl&v)($(- zCc67bYF#mSg#@H0S&chJk2Sa8rY3Z>PNVo5#4Vv#;UoXj3TZybP7G)?RAAJo1#GS8 zFCspFycF}C=Y4A;+Q-(U7o%9_Kt^U4CIh}8o^1={nQwFi z`opQZa0HHqpVML_181B)Gd^%}YX~#s9*Wl7V)#LP%uXrjr=c-k@s8qOGR+?Ghv<45 zLszjn$9sB=*f==&bPvQ;qZc(byhAzTH%Bhs5srb6KYskQ`XePvLrV)d9td}5LAPge z3FX94bTqpYQqYF~Jxk#2r%y_JMAF*-nEL-HZ#UH+qlME$QhC8Bio&LjR*=+;Hg*~a zoVcDlDsQ5WCw@sSUvg1tW@|edekiA?F2|ZI`zW~}+8g;E)N{g`D?-!n&RVx$SWVRJ z?jBO%z*kr2PLE$2vj0en2tA*J@B|HC`{NVQI(O!GUw+*l+JUvAlJAw&kv2rO!`EaN^aJW$s@Up z{cm%(N({+glVS~*rII4vxpQipu&xIvn~Z(tN%@L7WKtKT7WAN7b)_@U^8;453oF0- zu})NmbtPsVUir95a<+}T{h@Vu*JN%+@6Mr?SWizhAl}vny@2BfwC3Yo=>6yN6aN_F zF;ZoE%YZq=x7N|=P9-@USwR`Ihtr*{bDl##f}2){Ti@G^z>C&z?ZyrF_Eo3X3j1lL zCSQY&?`wthZr(HQ*B^i0YR>aEdLNu~4r{rq+aWuXdi)qGBO^m&W?Y{8HP+D3D2E2w zW_uaua5Z)YzV*Q>clV(~fW9y)e6e)9Oy3==5R zb6dd>o65uY(gem1jXx~36^=7y@b$*g>-S7*zbvlU7Fm! zPmE}zoDI%a&zK1x*WgLd`>}3)s^gL~XPU=TtE)c@E4_PCZQrpMT()a^dQ%s?Cq^Z8 zQ*9cgyuc$V>FFsLbuy%*efMgHRvBnfeG zsx2PlzB{y}#i0>`*olq|;l$gZBi{F0msVvj(?LPUUvWxh!*Alenx$YG^z%8p0 z8l@3dKn3k&(eRB`bW#piL}n)RffYR*Xd4*&@wuiq=y3K>KV;>_Ov)JBQ>LsN&pnFp zV78g#E3+{gl(Im(uh(zJ)EzES{Bx(Kf8>uP#$aA%j1EdjOCz`hgzM!N{M2~Irz)Dx zzul5XGoy*=GuqhM{kSy1xeH2*nd2{w+Z9vcE?CLixw+#SPsa4f74}#ur6gbnLI#8Z zH|j+}hsQap?7`cf?*ka-(diGZzM9TH{;d|5%W}742Tp2>FXw}gM9$7Vk0tmp4!G4M zVj|`cms6tT6gx$>>k+p|aINq=mnUoj;%t$0bsQQbE+Mhe!6*sj{?evv=3PNX*M3gi zWQQ&H-%+{<&#|huet)|aBNE1su5x?i1Qiv2#45X-`eIjK+wLu;zn31E;0*maog--F1wqm)+~M1T8C< zhfXQ^-aVcV`n|iyprvmkb;zO>vfgbK9~cyS0m~0o&y!Seb9=(cSxNtTW|+pKRCU%Wj2amdR+d51@MA7`U=mPKL$?jgLa3XRPs}_fYgh z?q2Pa!Hmm;qAvhJU4GE{X>BjcB1)mBM^RJT#2s+;C5VVw;abP|LD{%kCGgj2pr$0C zN4tI#_gVwzg{KB5m-}47CuM##Y#KU{qZ>RXf&g*i@07xCQ;Jb&pUI!}am|^fbN-Bu zU+|20({!IPCVyAt*2<%E)HN##~eEYn5d|z&j~Y91gamepx}l{ z?Ae|6Y1ay!f`Tk?=aja#_MS{yQ1D6E*YfqtwBKrmV+Hl{J1uBcEvw0(`&3T756V;P zy8VNL{2chUzbSxAY9%uTk0aFGoejGP;~L_yJ&x?Z;C;bHmq>WVbEF1)fVjo$c3DWSgm37F55&NYW5mxsy)I>3I(r65SL&yI`(twQO048C zRk&9vB?|fj9WW@jW>3Q(iXZF zp+?09hBlme2-xq$H#7(sc6cD;P_~@F-_0mExgtqC#UhL*_w$=K^vHj8iY^g&5eKWW z48{L;u2#HBprooQ=itCuQCaEp>k$dPLU#Dlr868+q#?lHJfL(*T3S-6<7o4P{|P<~ z4Gxo>TzXcPj)7F^>I{+35gh4(tFEbOGsO8d;EsK~fpEPF+REuu^j+ntf9~7hQ_cLE z%0dT!8~AE+R6_Ln%Pg9O#y#K1^Om|fu*aL!k~Jv|{nkXs*^B1+hu0uh5zTm`Cm-8EjFT7DtQopaf2Z7g=p7b+pZ4Fb;%`K{Npo` ziRzkXy9-3Aq?^ETpZ#?tu+^Q$tlJx>w&0(L4R={QTMw zR@XW}fWw8S9$q~|f|Om%)EaP(TD62Oqpc>?ARsvLNsB)y>Sl5)TEtTfz4ln$=dCc- zvd!Lp53;mcPAfWVZvC)s(@m{{yR%IiQ|fz=@#=<7rLd&`Mcg4i6HjmaIBjQ9lsfeT`0u1<1A*>By6|m1$ z+|C+JnXRn|xexJ1DkeJF6x;vx4}`&Oo~{VSC|pIZ^sV5jAT z$2!hO^xDdgv2Lq1(LDCxLw98}B&5K>*UZEZciy!73(X-q$an|#wMH`!xgzm7?H7!E zzfshC7AtI-mZkjt4VX(lnl81$T<*cj%51;xJ7K~84VU&f$jEn;qVWt21-dX-tX`(V z@s=dA!A>bmA)#r^-NzVkOt}o}C@wWtk9w|bi9CC5e;3PE9CvyRi`F(lOgcL~c|QN` zH%aUInT0c-BssQOfhTfnFf#!Xh2|6cPyzqG)sxX=hU(yd2z6pYGL)fDc@yE-JMtka ziHju6@`$j!Tvm}iR6pqY<4IfXb_q!fl^5OQrvTu;(m}b&OoQsm+W8idUW>miak<)Oq)qUc6tR6BV=y+;92RP+ZZ6P(8^}Vo zC)@pl9`SJCQcHlXZh~{fkBroStKwwd$P=^1(S5_?U2L$W3J5gl9+)G*P|sb<>qJ^? zJzS~Qi4WkTpdpIwQ%oodUNN5S@FWv!a1ML6Y`meW`aeR2WVRbpi4*-A(=#XmDrO?= zuoWZEi1dwU)ObExp7M5OZY%7ny&|C;Q=BT|?&g~SL3Jp={_r%D#$_e2Pvcs(#yT@J zZSYKl3nNR8XLYmQW_C9VZgJ>UGs$0tKUUrn4LK^$FZam;QqWvm)mrv%Defk@#fs(% za`~uS1!9m#zGWIFI`1`K)w)iSLeN%v6p04i3No%_I2Fi=291nzT45bL^!Vqy21Sm$ z+5=vV3i9%+v&Wi8PTLsX-a7sLgABY!?0b7VMLJ_u)k{VLquXMBXUz9=!T3+xAMiT; zHc`5HP4;Jxla~U+ra9YwNS~cUJyDuOmdnP< zcr?zJ`zW^2)1@D8k#W{NJw%whb58_sqEBIu2(ESDPzS&vyOS-of{YN23 zXD&Lr!aIQR09Don*;$$;gN*gef4WNnwxF-`NhR<@=JXwzdhMzjes6MK@3R^F_0IX; zpTpFT_CW9L*a31Np9$N%ha3q*wXw?IJRfMe;zU&}I-qCV5Iw973*l&+_v>AlqRh0b zR&V_ZIa=}uJ^&WLc5>pD@XNaT%45u|qYIL9J&{5PID?&?d1yNW4{li`5)x!)9z1^` z@mi9Qn&MMYMe}ZKKKbG5nzS|eq!%FI;3b&_p-P`AzaC#wK}$@zgT)Pk^EGNOp|~il^Yh&W_6mQ1 zf7r!t*h!!&>QNR01|-9)#oa>C=<*B2VrE98_sBYO?onT_7_`qS0B2@XSlz4$ZgKO4 zsoJ|zaOk?;ncQEEh$paBZ`<3Lm)g5GG<$If6W-3O+(T1RP>h+`P6gOT3M_)Fd?1Jy z+~&e(C%@JN-JRyR>tv8`q)$nHPtH zz^?TGh^5X0^@kZ`!fs`vwsTHWd*{4?=ufz)G%0<#~9#xwG>m0!hW@=NDl!6BFF-!y_iJfx^P8jK{_;9vhU@ zG<&V@M*DZ)gGEj^^gaSXH3l`!zA^?JkM0@$b}viAg`*x5ipzxoaKPwyyya=(@hyTA zPLjMrObmDoV;QqJz%LAsXe*#(C3)G#4lRkUuiam^Yj3A3@dHGhJj#gKM+la#E+v5q%K-Gg)BX)6acU?ND=RKVMutRX zwqqbwIPI(=7_kr#^R-GD+_ILT9j-vw{W-MU+!4^dY&L(rKo$l}*oqkPrb(9FZ}W6O zyy{%oFT)$ntv8DWfvGVS=KJqKRl2!?J@d&U0uG)27{EsrGOX6o*e0YQ<&X5I>if`} zNqHyz&XIaiz%5-}lImu?0nXmSIwGQT>*EC$BrifvZsz0ByGVKiZE$cr5d!w1406|f zg~m^Ts1YUDaXG|#jOeOW;_l``{_-H_D&r|9V`dJ??EFlmVtoAv_Wgy%)z-e)Ptsw;_+`@gkx(cQr$QVZga1V3$8X3)fh$AOYXw zkzX82y)K}JD*!QQ$1-Qz`pL%Ubi@Rj>8MC-5I6hCb1UDhxu&mD4~r2O`wJ(PDV#fD z#WEC^_x_8v%k`HaDTt<)LiiSr1N?VFtwls%&oZv<@89WC!F;l^hi-~FIa)tDZyv_0 z)yF6)?!FI>x3){smG~wLHgla=CMNbquCv`28%?uplnT$jG^mjt0LQpm+IFaTy2=?JpE84)O4y`AiVAb82D4 zQU~8l5Fn$TMU+Kj^si9|O=DucFbnEvYZEhHU%L{O6q?pvyk8%xZFx9iX!AH2#%sft z@E{iVy6?lQw*HN+Cl!HvfTyl5%-pFoI0m~N#an(8Djq9zc{rPJC~G-}BFJ@z5f;pk z5DFeNYd4|@L%Q>OiF=fJB2%6a1O)FiQ$Q&+Wvr7M6ONahw>mbCWm+uYky7zb?1wYLu0NMj?Ak4-k4G z)`Tsj;NX#AH@qIs4CHJD*BZ^0IffJz(Y9Exca6s@8T8a*0dcWQBVQ~Z2Gu@Wvz6Cx zr@ZITh?%x7SxOs0GX9ypGA&8e{V?Yb-4X9C8FCCdVBMoOeoZrYw|L2oYC}5ualx z?EzdKLF*$5i!5AE&L{+I_i)tlgiFgwrQ(vW_P54N`X|;)d|+>71rNUQyQX8zRq9{E z&w{OEH$XgM(2}v-Q}m-k(QfV z#*X>LpYG>{Vld%*&%EqzGaIv9*v@D-zi0HI92vD=9y=yF7+8c5jTB1h-ox@zJ4TR3 z1CW|JkI#O)lM6Y}Ct`Bw>B=Kk+AsS?mq{xPu3Y>b7ObVa89sjeXpX1}L6-=K(|Ifc zsV|M6XNT4!OX=yS?d?&&v9u~Mf#m}CGz5Nb<pVRmlwM`%-3gR-r-Q_((i2*;HeG671uwDhqV${)X zVbmE7v!J;Q1EYP3E37A^QzzxG1i;xCa0l-33g4T-QA=FQtPhYJBI#5a0=HlsMMbgSdT&aQJM(K=~QX;T=La}qSr@&ry~&teBQvFcIES5PwwX=F4!A*z3CU8*gBhr;!!n(6opXC zu9)b&0JwE2AtC|^cAN`Qm%4w41>Y5R*tC6~9`-G!E0-HcIAS-yXTsZCv9R2s_4ZEO zYUF(8=#+lGN198@sp;vu4lA{2a*=0SYy)H;qJ|X_8_kXBeCNv9Fqi0u({@H^eJMF> zP(2yy9z$pjtqEzCun{(3={Q<-W`LmiSmkpsBL-YcMyponIf!SJpFty zEh$&#>O|4d;Rn!YfX{^+^eS>sf({2K{#DYkbNzcIP%xF>PmMHS;}44aBIFg#6c9cJ zJrctWdkoRf=P`B5M0JF$04VniFVa}5AgR7!M&^YPhU3RiRUo8h0zaD z1jJ+s`3Usoch%v@0bDc%ECF}iqviV~dOR=S#K;?sC}dx5QGUgUK|ja zigwS*$o#3Qbcgh9FIVz!fT~v~)xbVDdHJ^oNg(6Xt>3`;SEL*?$+_5Aj)6g`D6zZ& zWG@{2o=it(51m$c_+;rb3GmT=(r-)O-bV}c{BB192-AOU?duS9_BhZtq#%9~NLyQ* zlFEy>!Dv!nk*avx8pi>cfAZS`w9oT5BI@2~ZJoV?i+QcU2GvWP?3`lNI~I=R{6A;` zfd{EA;GmQ<^*=v`q=UNb&i&9K=o-Tu1Ck*K6&veXz*43F=z`)L^L=RDLd_fVo-N zlG*hf$Pw9d z;~MOcvo~4%G>yLs(;=cg?)$ud7B?~Ug(`RjhMIb?@ibA}#>QL=rxOe;OuCoi^Z|18 zf~g2oK7aa8@5{7`ma*b!Ky)KJF2n2-MlUWf%B6YwY3R!bL%dmfcOn%>Mp zhjXe9=M|8-u<_AeTn~~T{v=I6wJP1$>n?VqP#cnf+oDiq%pDD1sCsk5U+NP^v-c^^fy*BlsCb1<;>hQaXnotOacPA3f^P z_k0H6Al6h}uL5p4X`K;7x;1_Uo(|7eY!jiP1Pi|TR!qM01DnRdFa;IXgatQmB?fq! zaJSmSt1;8Blt_A1@1{)&`zi!zon`dIoqWC@&`?q3bN@H}tt^2?%3mh}44=cspc`Oe zV%q|krUf@HmKI9Pe)juH%Wuq!bP{AY_&}5}@qL-7y|-%BJb<}v-ao%NtognFhZ*Ys z$0kit{^|Y5Ec?34{>KKH0q^_A202T_4$?J`$|@T5tCuA{SC$PfVcq@>FBU*F8iCY_ ztSuHgA0sZ0jcm%xiqhodu-$A61%gr>qaa6L35#x`rO*F#u^it%|6Aa{V!}CJWENx0 zxm_~O%IxU_<=fixZqOF11b&eanNY5(cc@Rlx5?Hs8|#fYWP)awy$K_a8rL3;na!V1 zB!I9G#lM(}1*zl5a4DFeRPaw%lHi{d#8Zs~u=*t?Gms;!V*b}lZX&SvUMhUjh7*LjaZU)+h|%TnHk^T1OA}W!7dV=J>rkttm;nv z$>y!~Nl5>Z%$PbxC!Am)NcQYgcAPbI7_eec$ z7tPFASX&vothwyLX=tb!B3ECrJH`Q)q4^vGIhz0f2>YtAx}qk_ixV`sySuwP!QC~u zLvVM85FkMC1P$))?(XjH?l32RfBp6Jyvz&ti3?|+l2uh}*J4qel_kBT1pae>H0wF7 zaMI2a7$9a39~h)SI=bn+9UZ=C5q%>RygT(kfApVvm>QZ#>{;{qS&vZ%JOB_eD_Pi? zw!<;*i66e?B28jgQ~QHy{szi&I#8rN2{=c@zyCiQ;eSKUnrd(l6*tOz{y|x^ZF}25 zi&QJ->Dhjd3Qp#^S#{fkpSEXT%yH+}1*6rRI3-&e0@CB5#s>s?zgL!AvQ~9l#%WAq z(i-jpn0p9*3o)JSA8|pMgH#FrA3qPCvd9t(c)tIRItidGhNMj(<}SK^@V?ru{w`tc z4va8*)ZzV_*MjU4LYglpY=_l((c#gJ>>MQ{zuUSRb8PI>Q(rm7q6P=Jfaw3%1*lSs z7V*7MwrD0Mr}`1yQFr3W5*?j>Jt@{Tg-{9ggz<^+55GWEa01`hc~=0g(mYGH#a{17L)r`+o)D448{~G^^(a|6!>JX*B z{U4#2PAMX5$D{WF7* zA5S8Vi_6TyBFfh>53J$a4Wv75dFt+?Guk)+igaN^p$pGHj7fN04#p2cVA2W-flaBO zBxA9`y}kKDNq{FarcN>eYScYP#w8#^{wHc(KE|LEUimT|eOhe&C|5}9Wfl{`~o=9>82wJ1s0yW`A;n)F>fg)}b zYoIrHhPMx2?HWW8o2&{ZihKPV1A3oHNIG2ZBU(qq3;48+#iTE>_y&W0v+l?kR^!j- z@`!C)S~i&%$rYDjgo1YZL0_z=uMe9l*PojkD(Xs@sZv`Rf!@TAg^PO}y3H5;7y8@N zmgOi?w5>4;BUEUav3cBEwuBXWtv2yGR_y@ky!MN_J^-#A{E2~)RdfJE_*9#&1rQo= zpLLh10DdeOZ4oedkpX|h98;47Sy)Uk6Iq?KjW}{L55PX`!$w658|~T=z6lJMK|x9w zbhk@16z3nuOZ|cMz>bkLpU2)?M@_R9?agcJBqBNZK{?)q{SVg_zpe!W@MYxNUzc3q z6IVO)uM%;9VY3Uy+soa47wzarIdBpeku#Rli+BbGSwJl50XBg*I;@xJQW0(@WM;;a zNhx*$oCNuF_U-oOs3=-fR+@*gROE5ep;Z6za*Ws*^LFl=o>ap=pYx#1->8x7{(j#) z1@=c$)Z?C>M=9a|8c!h7{|ZTJz0X@Un6d~cPP^4@5Ow@t6$@|0eUZtaYbWph(#j z4E^*+2u5me5fE@ziR$ml=qLi1460EDyj(aG!3l+ZZELU+f=4B3QnLeQ>kW z?U}A7%rV)nw7w$($~#FNYut4rKJa&fXsLQSFUf2{-!LJr3t^vEwDwG3b2W>jo64$& zA5f;=#smue%`dbNAw>~WRMh=LV}ri2(rgnCw8MlRfXi1D-*CPQHAnkyby=EiUHYH4 z!MNyYx=}PoW;l=YKtOham=lL1;qty|$XXYz4cWJ>-M^-C*n9Vne0VQs)wkHyRsR*H zRVJl~|N2=1b(CCq_uubbd1s4)g_4S5C`EX=GjR6#0Rov9O%284OYYgekf06~&F^ne znkdJcVF$TfUpTjA?6NTmx5PaO-JV0fDq50`#>y*g%tZQnrYKEK1zF@K#_ysu9?s~V zfjllQiPK)ZLI!)Z%=0;+K!!zhTrZ8fEijI>HPA~*XWyJ-Iw0&L@4^yepGuL@Kte8u zHnsI`oujMhLtjopO}kFz^l>&fGI@hz@ldPW>`Fl!2jhm4X6hX0%{!PwAUkX8{v);n z6dV*v&~06<3p*z#{8lK)bGqMkaD+}AkeCFAc)Pk)jU(;cKz_C7ak^$#@Nvf#3l_V4 zc<3VYCi>~EGOjPK>_kILTcV_?%Y;*CsvaH!`KO{n5thtCl@Sh%l9v|T?Y>?M4=eh| zrm*S3{#NGzjG3NWeZ2>uWKroVdmUt+x{rmv1&BCE+UY}x20@U^&X0^ZYDIK|vRzA< zD)7)jK34N$V4YYS=R)M5j6S?Mt5nF=GPyBwhC1iphCx5XxjH1Y1CkH|+!5|~YP!|* z{xWnWqTuy~eYm}$*Ly(k3=PKSJTX)%M_P$ zAwO^3!8A5gQ&ZczO?CG0xOfAnecyNZCK+_sBR({Omsqf(O?FcRZVVU=!u!f2p&I^BIwi%tXolQn-sl z&!H5xsY}1zIGQ~ta-q}>#4lUBz(h8@1m6<8Bkt`>@y~7}OE_(5DIe(* zzBdbIqeFof26SY-FOE)id>jj~$#T&)xunGX>1k#WC(hwQ^Or`UbYKId#6w7EtOyMJ zcLX4zpdx}>95(zi**pDTkUz-#-2dVYwuw7HxXS;+tGs3-*64 z+}KL#c#O0}pEmY8SVO)-?s)Uh`;DZ^Y-4?VHAsfMx#lh;`t925%aAFV_w&c=3DIS` z;Rm?3c9W%z!vI9f1xo$EoQ>7s7(=H?oM1?t5D%=sztHJwl{)^+@v)9iAJhxRQz;tl=>%x3~n+!8}v!K&fN! zqU!UDjIDrJum{%z_@S;Uv_rZ(wOmZhBL#CLw({SMfZ?nM@N``WU99+=(4Z&e!I1##sPL3v*oMcqzY-VZ?&$a#(|!0!7Tj;fU-0ft8+ZX5ADbqCejT92E8=7Ee2vFR zNy;Lq0JoYg&x0(JY`amft+jrHqfMHAc)T6+^9D;tsq&HmYRXT70~E#GsR$7vjX*SxL_EOa>~ z-+ti$DU5YKKTEdWjlXRB6zEU%lJTN<&HfbLS_d*sS9~tjKe?Ljg#{Rgwzu{?lm0%5 zX#C-irxgEz3IF>j?y(uLP49=*@CTt+@hI~!NSLA5!TI+M$O-><+Tmf^kbJ*`GumVx zu*=g^e*X7GgVqKIq4|pFfiT3#YdtZs+`KR6o|as^ynLa?fJW8xQez$z*mK6JPwQj% z3_PW?2;yb1p$~;^s>An;&hwXZHTKSwrvW)I;3s%2q9XA5!FvP|(13iqrI>0lHMv4z zdnnFj$bRQ)><|G?2?GYBAD%TkFc&79V^`;7)k+%45yR zQYltfz$Q*%GnMC+&_EXV6u#pZ?R*f($nJoaGF+l}J?XDBRBFhInQ2x)^PbGs)`E&E zgU6fj{M;Uu2#|s%1r#|1I>r{|u6Hbl z8N+;AMS6k|84fhH>AT~6z z*PR)>En7Y|G*RH_q;OJ~z)6vj5Vke_uT-aYUv6u}a=@g2=*?Id2g=$ZIzmsk3ei{z z@UO02I()q2`rXeE$sXsHgC2L{1VY>&&ZP8gYq|SvO*3AP?%b~${BP*;3M~}i1JE`p zz0EGN*19=q=;`~ziF~7g9EHih__E{QN`v57Ex9Q8b}DP!!2j4O0KXr{g6(D7HWE;wywxTAp;B zfyZ%&@m$<`((T^d;cv5zqXhXq=r=?%$wG6O$pHEimF^R7IcslwTMnBC2f=o_obseT zpY`S;J9$2XPeEqv?0hx0H)agrW|Me(^9g0ofd?rRi6zL%jmd@V$y2%;JAGo*Z;l#E zPf$`(;iUj6bY#(70-Xom-Q-=vY!M`G3EJXG_D&44Z+c|9?&931b9rIa~ zy?Q+^`_X_Lkp{lz;m;Zzs66^ls?O!yf|S!qIY9#W<$E~M$j}gz-+feGPx)+s2w119 zwr|e{kZHmij%)?ql|YUKf3k|{I|I9Ix^MkReS$Me{Zx}F=#yZ?w)-M$*;&%ZOmEuT zCqdl7331mIzx_>NJ0d!u7?WwOAjQ~^|9(`+ZV*o|$zluLntSQZ{A?)xGg>WoW56@GYlA-XV z1~s;~_*k85f-du`S_B>DU_cYL#a->I(T>%%m~+OzdP9^CXO-{~qp zn=8m>N^i$|zRIj3K`!z{;%GmzWbHQ}a**}Z1*a2q5 z_O>2uh@ae@q$uzd@mWTY&qM3=sLqK69Ce1t-N{wNS+&O0UIl`mo*vuR_pR|8hkAtZ z!Ne<;5vsuYc7ASuIt<>swzi4ysS{_CPH0?rwb?}@H%K;^t z6}d%CI1TH~XmfKMgQKG;o)Y8ghO0?XXQ>1$^Ye@*IgoH13y5*79-#{CR!8hOVh85f!3|%ntT-#3gLg)R54y&CL|U zKfixlzT%1;^VwU>d02prf8woSM#Rgs#vCFS3;s?AX4xKoO)eLlr#QPlAIPAa(22mq zDo9@DtHrk_5GQvLx7^ zkPHnSrpSa|?-~FZ!Z1MEgK*Kep&0gXvXXli3CT_6Hyat5tkwZCza!J}37+HAw_;0_ zafyqHjt-(e3bVuG)1b&A8q#ht@s&v>yCRSyVe+Io509r-hoFeCpLLb9ooA;oW_#V; zFg+*mI>MGS;aB1S&{gV-IMpHudQ3eg_0jlA>#AZ9vjk_O%0>g{Ue}IaVUbTfJ0(8| zAy^+aqtDTc?|QT&iQEqKpM>hc3?h!C}Fr3gA zw=A2cs_|~>e%`CSjtB>0;|P_V*%})=f7I%eun62Qv-G2~2^R zBP)x3Ze=0-WPvS|h5!qXB7wyAR$o<>?K3VWy#%GI3L`Ot09r5k5-jS5*9lTQuJP4l zch1+RkE1v=*o|hh#6e#r^B?c*zMcuVhYky~^Q5e-dZ4@R98|E<1uDwH7Fiit7Jh!x zcdn0uIO#Y0d9bL+@1M2No~N5Up;V+Ou0+#N|p81$yBI)xN10~ zqh;eWTEUc+QCJ($sM@7GC6aoXA!mbwA*QC5LThVXXkcY@nah7~C~Eiihf$`IAw#sb z^4~#sKIv*07(n?MF7qvt5qB!?JN&Ju1#`qbbN_gjG9Fs>T0wf z9B6KcOfJ?5Inv6*yVM`x0VgJ9`5g_VRqzMSC-EBdLG4|}kd4bq!*#c>IN?7fu%+ni3Hz?G(v+PJ&gy4UCQLzXQ_Q8Qe~A6G9(9 z55Lzq#nmM65xDx|5I4t&ykspmd!254q*iKRQ}f^L_C$P-%8=Dm6|7MMaceU>w6`e= zpI81c!WZ(CL81tg3Y(gm3Z)|2pi7IVs{#V-uoedZP~K1SkU@Tb$ssn94`8hVi|UfhbF zGY9X)p{u*S>s+42zu%9h8)MygVzd9#yQRByU~HVTENl1HwuqM&px?d)oy4DUq2=o7 z2iUnDUH`76P0XgLaouUPiK}*Y)B21McTi3^?LvK7hys=~VnF}Tw8VDSK?i>$pZrGAcnfj+;qg}RN zWJ7;%L{-6SEXNeD+8)Ksm>R{(%8CSc*UvAEZn#wj?2_?yt( zv!rjmk=N!#!YGtgCgWZ8k#dt|SRa)MjLv89OLdG6*dFSgmtDDV_v5I9zn5J9HqMkdYbBSePAbZ?!$-HaBZ5zR9WI-Rc4R@m!y@ zfYi^Zq4VqwwE2z}jOtMi;R4V=-a;1%v)M}o=;3@2ImVnC2-Vd!>g7qU^_x^S?nasE z8@3ht8VgU}9(nY5FYx6uC==nLXp}>Zz~O9-jXE=Pv0%7){OZ{z#8-d`U`u3aY0^NV zAkE+>cXpz{h%?nWTt3f@e@!iJ%N8kjkfg`$sy6wQ!>rc9k?vNhO7uzKw2jXFL$Me;06 z;lL)w=b_^Snx$9;hLjAWl9Q6imUnt>=t_z!U7Zthzyw!Bnb$UV6x(|(vi)gJv4b`N z91DoIJ`r-->xF9?_=&^|r;bGo-+jSU0$nya!179%vH=Y^hP$cEShfzAwpO5Zuf4 z?v|hrfg=NBUiv~HD~(uj{Hz-712>HUq(r|gldFoR=!B;wuy%YrEc{57Ihmsw5bOkUIH;nE(Dztb0{EQXZ^Rv%eUyz3nozxBaat zlz6+Dg8+3+P^*ojuuJ8Q&Pj+-)exHpzOCKSMLcOd)``reoN2WwNm^|F6H^w{{yXLT zFCMjwzzP|*(9ceaMhLcYRHlm2E9s`^KZ)|t4P&AgRt-7BsR|)FixmAz`C$x`O^H{h z2qvWL(t7o>drC0x;=AIF@fjw%xbn3Zj|oVL1ZSsxSxfm;FJ# z*w=>)EzFLT6U}MaK#qd4AM~x(dCox=VrGt*nnEe!5f>d%sXsl{1DX~v)HDoIqCUU? zZi?;l?v7>ghXw^i#(Ys(*+5~oe`J5Z`KtQ`feH|px5yfSdPPFYyhzb=zc~mF!lyhr zeZv{RM(!_nNXT%xTSil^i>bQXR8A`>JKF*!2vO}Ij{#vKYp><4uf}A378{Nf6QT*35r^H+Xj zEK+=defIlMFKM6%9Ilq>h=RiG2bYBkxM|5LZpH-k$;EAS(=Gc|_bJH8bZbd~etGii zrExhXfb5%e?47dzwau!yQaf?v=LW5dyC^GwwR(-m2nt7V0Soso5vF>o4k?c*Q{x6Z zf^25oS^;lLUwGYM1|rom%b){Vxix;h=wibIAP9Q+H$P4lSc?yt(I1i3zsJ@XhP9=+ zP!;8CjG?$#HS#b4XpIM5JwwAjjk+svpmA4inlgV6SQxnSz~>Ww7p;SHDi(wxHu4AN zbXSVHIfMXzL-hc6XQpmg8`ClmC3ekkGcr1=W~EV3vzS^*AP+-BB86-L#j7v2GV9dp zYM(r6sL^p`PVL-e)_jkKk8=`{N4DF%NDVTK@xo8X>}LxNi; zjlnBS?x0rJ{2P|4_9e9a@4scA98B{gZmv{L=beNb^V+_E|7_nP`67nsq~)GAf3X~mphk2n5q;7oO84F6|5LaXSyXeo6sNMvo5Ins4V3)7+UajfQ z%I#v*5?Gc(@kyQ#o$g6bkIWx%oQ*HC@)!v+8Zsstdx5VdD%hEV946p99B57-k9P&M zt*9-CLs=rxGQU!hK!qL8=JTGwye58B8hn%QK$=@Ss_qyE_cN)Cl@vT7qG7nWrlHR- ze;iFbTJiDFyI2hs-7*k&jchy3NWugc*kvps7%9}QWqT{DsphnSa)0wReI+f}CD6@! zy{cXqa+wpImyS{wPK#XV*3%SD0MWp@~!# zC_x4(DBa}-(HZGr&78wlCmOe|;?>o&rdx{>_AgE2R`lA1pJ@G7UYq;w>xrejFcYb{ zUH=Kq^iNV)A$aE}#t)jCQs(I*#rND_V=DMxHZ&&Z12zmlkdph&D_L12Tow7wks{(Z zt=r40YoI<}h8rrmYC7Y-)(;XInaI$<3lPvv^p*K-dGP!6_!yc^9$bDQf{vL|! z3f0N904&2imv~&}-D>)4>Y=lun6_FM26sBrhM*~Hb5(>X7BrzWUv_BS_tFFmAeU$n z9PALCG0n-vGM;B?BU6;()3i%D2|(j={R=fJ;_r@#^AVhEI}{^TK?%_u?M>~4RTZ+* zjHAH*D~i!6L@K)L5D>=2ezZky0@atP(K~_YyH#tb&X%y}E6*v{_+sN+_9N%1^v`>{ zO$zG+Lk$03SyvZH2LF?Q;OYm>dFzb^Fs+DzkaDYci-uw8Fk$QaMAxn zN0badz88KikFaWT-B!^{kH=?i9ExV}P5!ZVJp$;Okp4Ad@L;!RI;jLWEh3oV-C>U+MrVodLe&6Srl19Y`(S|GfQf~eXJi7#9-w# z9FCP!|=G&>sDv@v)3+T!O68R|+^k(`aF zbp-bqymBiSZs+)nU)b4eWe=cv9lA@&gY7`;p-2rjIsp_505#7 z_U`2776#ObqhoSdM*Z*``GC2$#v)!pLxH$LFf7i4^CC*__B_a5_<5ndw(QNKsYp3x zNJQi@Z(P~{%tTZ%+7sTCBJnk}Zy}SRl*(0mdMd`fn#st>R5}9Zr?Ivrc-Ws(+3LO( z9xQQYKhKUzlW;G1o2Z659$em-ww4GFl#+Fk5^cJzKvH=4#KY)=Dz`Sgvz zBag`daA5V!V0JxXflXCueTnoaSy_S5gT)*?FQeQ-AI!0u2i8&LB94_5fq3xIgOXO; z;kVm)O~y*1DYd_05xAv^eyhZ>c$vNeCe$9^G%j6e(`XJWygrHn9*77f%&U$$w76wO zV&>xM@7U$!3<*|b+Og=DrnNmh#&3)--%$$iV-I-Ek= zdYf18&2D*Nag^lvAw z_=;XxE_!AD>TCvW(rb7$vZEPd7VfnF=3d3ahR|gg>P&7YoPssiPqN5K5Z6$^0{Lw* zu)pB3rrVI)#3vw4NIA5B5&Y37(Lp{)(icK?gEepCZMf9Q^@| zge6@y(|g@wQn7A`EpcqM&0vL$;7esd8EFx~$cnn+Z+Gm})R&Qy{r#}9bWUtN%+NX2 zbX}dP*;P0$EDLTPo=%TaYtA}6n`2xfD=RQ2)24v?UTPQzJ73`};N7!gRp2 z)JF&KczZW0?96qoNcV3{aCq*I{nWPd4B|QD!%NPRk~NGVZXx7u-oZ9lXr!SmutEEB zsJgn;<;GR`LFUg-1@yYK9f^@WwIZ%$l`mGtwCxp)oj@7h*dt`Ev3A>3Hr=bb4B}ph zk)S)8t&T9uOQbT0SPBv5!)h~_<5`UBp}9Ej|(k(tA;UHN$vI_rJ zc{yHG430w7JXzDJY=*1oqr=7dv+Cpy=Lk_2FL-NCRpVNwMqV1&|dK+nL9}=quUP zmX`@eH^G|n#tO~pDV9k?x2$Y|Y4Ow{ct8y`Nta;)YF5-Dbsi+3{wzjDwwU7n1rApw zY{%_m5b8k)(OCcaUGtdkQl}qBoV#hKXwdX=k$ZKP!`I%L_{K3%uqY7|V*Rs8YI)od z(82P#H0oXw&F|A&Sqn`0+8|w!mxf*QV<*jFLu%yPrMea6eAAPRFVXR@8e$qV*f`DI zZNcM!aHVN8w^EaK6PDha5)2R(-N)GJ4JwuL$BU0$(VzQ=h`bmFYYdE^LTTjXBl9!~3fN@> znigEM#YYQ3>+QsX>23{Dsi@|`sf)vD-#a{9X>BcRpnHB|*m52UL?!)d=ULCK&oaLL zuPbesVz#B@%X5Ak*PS)lYj(z+fHNk%t0&K5e-qugKH2Lerpmc%q?`uYb%&AMdH)?+ zFPcv)3{tgf!11E z3mz*k@96eT92iEQp4lRvFI>0KbW}omLQ!-t;$dTptC>=h_5?#cwkM>~gzkF|9$uWp zJ~m3bxIb(T*CDt(+#6du!e$YcYh`0og&tb`>l6Rhoj1y)1OA*GkD1i%lMJ60`WybB z3Z;>Bnf>$VDEMr?Q6nSB!%i`L@MN!kHmdbYf>eO1g*BHo7g5PzpGJkzRT+(4)heE^ z1}1Vox>SPHXF~Yw=758xW74TlaZY#r0E=hS+N#A;H600b&;|2}X^1dTrDI=DK63HR ztz*#1s#gMU7vDhq{`sgF9H6C8gz6TRjQfs0hLKYb6J2-q*+fA^^0eA_5orUkk4FYuxSzALA3LY&gL(BU!4_>k!lTFIcYn4!`d>=NMOw!ZIs14~{o15!(q z1|yhXmr9trW@dbciC&t@U2JsuRK^V@OvPbW*YtiQ>cT?Ptkjc}oOw|$FE{_l_!+Ri zE||fc6vXGS_Pscbmz}fD$hjI0q2n6|0UlScEHR5J;HypL)2~_oK9>~79L@Wzf-=ZV zV!mqBQVqzm+wG@Da}Bn#et38e^ev4LV@HU88Z!N{{Sk@r-PCW`d z8k_TA_9&}t<-p^BD^hRl;_Sb!Md{H8@88V>jBP+%&E*YpXG|Md=6($1al z{g)H2X;9*x!obPMHbTbVL6ozmH4z(%Id{g`&Q~cYO{b=MxoPc(FnN5^%8v0szbWET z`=TzgKPTcBPEG$nCnMdT7_q7VdrU1EP-}AmX132WRJq=lp3Y5>oSa-dHc_+`p`ViV z+T;X>nvI>^Kp))#aQiL@0jf3Tx{8lti0nk)Qv$) zdRp8kpxxZEW%U3uCdHY20tcWnBlLZZ^4eRqu7;!Uv33(Th+ysV+o*y8%kf=-5(!=PAcZKxok?C(E3Igv6~5Imfua)=nf zG9(c5(L>K66&2~~XF~Fa=hDQAm;HovEhVRh9R`4z>lXCJ=4N6RK`%+lf0KnVi!T5* z%-o&VmHyJBsU6_~rmt&u5YjL?FPi;R;AASkHDHI)uKC zF`h{2OdQNJ z#U(aXo->lCYu-Y(rHGm#*jl9$F}mR%nK1dNmVhva8Qz#A4Zj3hS? zB&<{#(@npJ_so;z7U2@@8idt6Hm3IuWELHP2dI*zyL#e}F-VZ5LopUw|CAvX>FFN@ z2P~AfZzRQ=Y$yolkJNB=6&1TN{dr@mUYBj}!#AeLa$aPx+0Yp*6F*h3O@J>VI{Vw4 z6YOaUFSq(U#*P~2$cFExnW?|g!b{3m5oUd?Eu=Zit@U#q4lwE2ankfvq!OfUB=vq; z8YJf#CE@dFYM6r!U^7YXrJedfj_Et!-p^ldfXmcalH43!g*Mh8pWhWk_xGI4oSgA~ zu`!f|6)caNZMMq`Pao^Qws^Cr_B@9hE-_}>3~zXAPG)J`b}j}G*Q*bAQl6YPxn_3; z5QijSbDH zC55z&SiD05T=W8jt~-F}*iBx*wj%J4szb}r42+`}@e+tHW=1bFTHm=Q3;i>5*anPb_?7r0v~lqW*Esvl zjE|5ukv2o!quBF||p5?28%3~e ztIKeB=FB4QK81ADtjNEJu~*~KhWH47iJ~Iol1V1_zo{EgT;hJ#AQ$DwOO0_1kNg@l za(A=vk46(+5xk2%9;*^@{7c-~FF$jvyRpFk@p${_9CUd-9Sxqp>t{q?EIWI zJ)u(s;LQ*ieqVxiHZjq5AD1G)Tb-n~Du{bqf)P=0m*s<8YU$R3U}K(rfU#j|OL11# zS|7!Pt#-$WOSd!`Mki!cz(O5{5U~kGsKMSa6zB<7!HP01frW8@%ACG?$Zc%YI__g3 z%t031n0WZ+krncXNoM*V3HTqSD)W6x<@e9*(B>>8o>rqSUDtxhKlcM_8%)pT9s6%W zS}{vNy?)}TbA5d2cyY+dv^?xL3Xx#` z6!36=N8)Kh+RlB;V87Ia6A0FRZQ^+QXywG-?Cllb$O+vg;)hDDM3o^dkgsA6(b?kt zGPNNDiKdG7#LC5K06_;|;}mY`VT$hiCbnZZ-`_7;S<4)Hg)J?(=jxnzwVlCbXb2(e ztXg&wth9i&_rfqXW{PjCDkS8T*@ZN~#fmxlH!J(lFy*A}ZTVv1!n1ANp%yw8u@0OY z6-2c-%f%cLkD|^jDHXEA#iIOHxz6rqQ1}*G*v>ei`%4-+kY9+G_JogL|Kppl)+ztq zi3mgo$ zfC*z^XLnlbUWGI-pzPi@H_oh(tu~6`Xk1~Ej7li3Km$40IE0s^Q_0DV0yR*SqKvBY z$_ki2AJuN%{7%>Jy2ddoRLR`pH#wul?p1Vi>ldrG>=Wm@CVZHv@~^<;+8}BjJa>wN z+RmY?1qv&VnU-Lm8f)T8IA78G)tr)m*9{Hzk74D_h#Rma+7H8kb29|Gd-r%7=~*}?;u@PUm9_iBgot=bDNjM*47tycpI0}SceMpD>UpN1?{J7zj+wbmQz*+xM^Z{fd zYGZ?UPxOf3`v&20zC=adGWj`HJ9hSZe2A{M{49O*Y!8gJdxW+)q*mE*BWCfC`SID~ z6KLG~iBEV5ZTL|_A}q2)+)9{@O|?`uBDG4G%KyOI3ua1)8CI1o$xzlms>8FGg0$j)6N8WE178fEXWT%yu*XWo0 zblb#s>6E?w-Xs&tonw>2&o;+-3UKm5Z`!W{%li zdJIB0>a1+;Y?qM6Noz;h5t3jNrV-a4J-0TPPLF6YWNGC7hsaaxrQ(X?Kq5S1}t#8)e8`9EBYUE&CwRw^|@mz9+ z!14VntdP{vPPkp5`lkS7$5-vMS1pQ0CiGQn2Vp$JkF{ZjljX zoCd}6kHCws$#pZchV(ZkXCf8hRYQ}Sxwu7Y$4UnTZ;lfWubwtcJ0h>*>?Viql`W+I zDh3qzWC7K6`JXmHw3C#T`2ge_rk?Iz$PVd7sBz5s>mmXI<)w#O&CPa7B zKA(10%))5-YJyqt*dx1ibO5Vw!Pvn*lt{u(5?dR^^l*P4*3<-by?ng)_K*GV za+fsQ)B>&s#bd`#+cZNnWh!=c<7qM~I10|K6Ca$5v9!2{Mj4LLD*omcv~6mkv`(?a zCcR&j)=}`LhG02H4}16OiTz_nhe{5|I^tujzh%?Xo?-*}_@SmFsvPsRW8r&O-!wE+ z-(Mu$*##@bxmPNXil4tigI~>(VY%~%;#WHBSbtj|y`JQGjobSl`bS)Tk3~FwXA@X2 z2M2N4D6Z+_g2g9^582i}X!lcP{tPdc{EBPSWEe}`&8!@(m^f)GzGMR({_6Lc{Qlqd z6A^3rrSAyx>=OsvZ=P5AKZbVFUGz_0)|5J4WQ2s|;OPOrfY8;73Dwn8SI;%UkO z`8nedW$VK^-#^}c=d?=SaHd19jr1j7$8X5=1k_!}?;rACe*V}5&Cbrt297Kq!jkyr z8B7GF6!PKXr5oGW#D>(dke<17?jcB?U zDa9ZC96o~J19rm9FHLYnRKRd;jZr&^AlR4n1Cq-Sr{?~38RkW8^m*KzpCC2HwcIb! zCpi?CXh5`Rc3B4lA|sokUNs5IL+An(RsSvI?ZVoOtn|nvscCT+CqhbWp~oerjou*h z`$k-8e2-QnPE~S$fd{QmF8UHX8wt&bVxn4mb$Ip&^&L%p0hj?AA*+udFR;I-W5_fLm|2gm@}Ik( zboITfGc?o0TOZ~L51c|7YR!Ka>M)^h>Aj0~x$Q(V#@n>oF`9hq`t{e{QOO9WzolQY z-|Ma-a$t0!Lpe*6Uid#<2Q-uB!>x+%+t+()#`HhbGd~jrw|SpqJtY>=8cev#DnVRz z=c{q^E_QWwA#v0pf?HoKriDZmTa5R+4b&ImHUot3Y+M?iacnU`BqS94Q>U7hJB zZtnBmEIv|9&dr3sw+nLfEKdw#W}o={Jg~110LU;6`T$v!1{GJX%7@1szEo~(FYn34 zmE`;~8Z}n%t}E;w&wLtGacrIB7rl&o<d`Sc&r_V^?PmtZ@5W6W z(40hjhJhvdh<;g>Ck0;xa1Czy_O?C`O>~?%p)leh(B(HL*6yM;A16^{9W3H}=s_h;$gPfmE_! z!SsbUW?j3M@#PU5Z6U=?{UAHay6WajGs%VCx|milGV;Klkfe}}+W2PqDp*lb0aKG4 z6cnVf`@no{O#Vq9n2-daQ7LQ<&#@1YvU73u zJokF6I=wJ@c$b*oBg|>7zFjA|{7Oshp6VjRNSfQ;=pT^GEp1hSYkGP12zrP`h%@SW zt^-m`GI%Pv`|bUGPFouq-uyt%!2coY9N6n>!)?7{8;xySjcwa%Y@3bkq_J(=Y|z+l zY&$ut-`V@xzaZDjoX?9f?lI=N$w)ml&i{yLvj79GH)V<-0M(DHOPFYayD(KPy?d~e ztAbh2M>>U&6e6 zB*dM(>fc>OsnCFu8F9)epA9FwV*Du&`n%}5W2q`==d5_!Sv<}U1?gDDwAWdtiK(B{ z+J*~?cS}ov((GP_spOzLcc_u@I2&`bKpEE`T#61DTO5cU+-|sdlMezrMJ-%s&wmsS zXTTyTvTBL-?3n7~URx@-$a|$uaP*aq?1mb2aA+BkE~JZ`o8ymgJvTY$El$ znK9MvP-k2x4;lq3K{=V$vxexc@{U{a{>)_H z$eprVTR!Pjb#2{UZ@?q&aENpM!k*Tdbr+rZh=fq52FSbJhrp#BG%?Vzf%A2DC;E-= z@p5o*Kq8>FMT~LPR#l+Xd0RM0ZegGT%YofBjEga&Z#VCn1g{fS#{w{sW z33O+X;$nA<^)k3z!DDk{)_y8Vv}XFr((>pO&-v>3$8}N8ZrZPMUzt}%kzwsVYvFHB zxHy?fs~CLSn(he*-IAX*i*kL)Sr-;84)HBuL4t~^DfD&#U{aJg0d5Sh*KYWmK^zEF zeUjZFtT%l^r0#$o&``(ojwK%=dYS#FxEU-EJi2i)o%6_7;4wL}iiA*AaJfqw5O~FW zNe+&!00ojcp-hyV?=&}$)E6QMqHD~x&4>!3OvjnJRL;}l*+;>ZAb=~Z^EBW7L5AUjx% z^hEshXWNrQpNGD{fAsdEb{3GW@Yy|=J-qGYKAK%wr}tWix$N2hwA#K#Mocr^IcuQX zxco*f3ObQmhWkSfXdNO0=KNx)b;acrS=PXyXsxNOMmzAVn4)-k7p%t@<&F+6T2xEjX3lcXQR=H4nE5 zcvLSmYti|O-~vi#NQV_F;fhD5>HT)=m^e~`<2W0qBNW8e!?;g1_5=Cd9Ceabf}N5l z@%Hdw0u)@sS(e$Y36GP~FJ6E zhp`KQOub#8MB5jyJ^#?WrBZSxIvmy*Xk{XZ{L#C>=bfD6i2vOgFoq=G8J-<@&bfsU z3?Xg$C!sW!_91!E2JiC=yz9kY&8qZtBkJiE2lr}Owm;X-2be89PMNP304A5F7)n8D}1EB7cLR`D^h#js6TR3|CGF5Qz(4SKfD7b`l>&=Y0T>@06;EruYbpb+M!@` ztb&MXVnG-atzcf_k2^PeNf(R7>hTF9L~PTj#NpHW>QTtar|Dlvn_KvtyX*1j{7vlV zHm%iyl1lv6SBXf{3O5%v5QkGA0_qt|o$W(h;xMdQ^W5Of;%X*vXvOKJW1!j}6p}oK z>d9^wcI;58!%-P`q>GGyYf#(kyEYhqvNg#5SprN~O*9PWQ|_BrjIb#-r1zvWZG$^r zr-CI}7K81;TcyX`lun|*WCp&Zkz-#syAJ%jfm6zCHh?c!kGQ@TQK<#BT=3_&eJAp2 zp)b+ZpsOqU2m5ptHln?42@o|HD)6>^v$Ly#1DbYk5k0gYIcf9Rv{%8zv^EWGw(c_eMJs$Nntv))b&R( zcU{u?-g34%Q~`*i)VD6MAxnjJUJYsI*3TRi45OL)$EnN;(TA(xKj)=nYO7(keva7w=ewUN+CP0juL1D2r}rY9sDtU zFT)+Ez@!PqqeFAk@XH#iD7SYwd_+>LR#szoV@s#rUshnmwKKH90bxTPbu80jTLhpr@C!o);P7!V zO}OCRFtaZ$!hH!BJ(vwb6DlTV4!1SY6Ht@yXT&}#H)sWPnJ5QIdz0f zs7N&LuSe_Gkx!Yv5KxMHLq=fiS>RZhf9-Ai^RxGsPcpw8Q zz;&}}nZ@sn$ULhA4Tlh#P@iA{(l{NHTU(2srTc#f@jw+?U^!{=>T?y9n%@=G{5J!p z@(|>gp4=iAu#kS`Mk}6hsmSNq=4og)gSRYsKEna{7uF)QlZ^0crZH0Kfo8)F zn}4lT1rbaT&%Qnfs|;8oQ~%reo)52a_ku!xw6K{90!^p3;3MNloj0fngf3gM&44bQ z+;kW7 zZ*LFeDi5m|K9kqnd~)~&a<>n@F?ff1m$moe#)Vdos$Us)zh>IWMXupo%U_CtoKr8N zp6#(8RNvp|&+vr3<{&00Z5(5J%=`YdY74v1I8tS_KD`?0$%-Pn3A=$~-?fA*$HwRp zdi(;OeL!|LkR}2ADk|aYKBPAentNnuOzP`t-q`9TB|yIFtm$vl>Ul}eG#Is?f{(5T z!lYTO(`|BkT>ZC3)*#n#VprcZr(9zY-+#QGgB4QG(dBy58+>p_r9j@CeCEAphtTFG<4o;1Nv8c$@vnLo1^aWi*{ehuj{_g2qoNAf~ZG2rt!#|CzuE;_IS$%&S{LpMoyOlJ;P0 zdWzn{9*Id{`)qN{!=|Tv1}FmOlmxb)j3^D? zD#o^ESU~R$(~*Hc5us0TI{sJtYqXBMa=(>Ip*Szu5@SvLqE4oIY1{ebLwUVw2nV&WyfiQ}470s}K~$Zu+&913@5sc; zqQo2oR|A7J9NoSe4#2~ef_&F|!mRT_;DPiu`pI6$+M3L-Wy(9fssk|BvmT`TNe(mA zxU=7Sz>TVbe4I5tO3EZF$TYXAva%O7EV&5T$C_DjQ(A>yk8e_7=&hDY=3D68Jd8>y zX|!-G=k-I%4e{~!E`*TbWf}s(Czp0ADTHESc9$qvjxzI|Eg25;_vFN6Q^d+f@TNEN z{IIuoAGwIJc+v0PTlZEYW|MY1g!`TgO@_cfnbvWlyPmTP(v{{51O7t`DtwsG{Cky_ zEr82)#SNurKZokV4kJE!GO1)so-19)#9lK9 z9F&!t89d|U@9p2*Cy2F9SmZO4eWIP(%#>_^YX=*P(U>WNrF~-Z+#9F~xMZ&N84eEe z$l1e)G%xYuxc!o7p~#H%H67Df`<&5Y>+BYtqH`8JvAX~a>=^V{T=e{&;k=RF*(vF! z73fYiDcFE?`Pt=A+P*z38q5+u;jzurismG^l8q z195;nkYzpy#AN05fbIu!HJ@iOKwO1WHz?+$2^>565BA|vQm$bf<#R&8crf=fra^LBC#Dy9v|8+QX}wNbN*PhL};qjG2*Yjc@?k z)$r%oCXure0bt%TVx3`LT!KDs($omt!p;;OJBBjXeT2yiO=@^{7MjgBGL%)K4WTr6 zQGZcwM} zfxE9zrox1&i9s4y0r^GD-b&(Z4ZqsLby=ns2Idi zFC>3xhb(Ux&uRqJrm~FXUjUB_Lr(qQlKnUv$bgN(34ON3a^f+PFz_mK=PVe9q??3W zgDPJF7Yit|4LG`J;Zy+js%iMl$iyGE0Cb+I_JE~8eIr~ny6hUqPwGW6&?=`-Q+{S5 zvS$T}KdW-O}P$Ds-$YsUXt$GMLUei0(P|2lQA=+`elI=E;7v}Ty~ZV|H! z=X^V&!4zgFUwurEBanC57$>IW@jA}dflBLEMjT+3H=xzs4OLx0>%H|g#6-bjk8CIH zb&U+2$<3341qPTW;mK5h;HdOD`$wR574iRhZr~Czh89#CKpxq^6#m+YZhhvXyv79}b5`E{z5mGK#%? z)*7H^nw5qllawz<=Qzc`9nwemd5?&+V`$VdR%LS!kKAn^^vIiSt~7>*(T*y)iH}7; zV+p!L&S(4FdVjSmBSGbrgok-8n(JTI>RXEl@6o^u-E`EnBt45ypliXABJM%I^}CzM z2HxuDSyG~uWoB!`G@OO}3j!p|JbN>%!Te%q^r4k*6|fUGCX8ky({$kc9w9d|rQqvw z`641^8c_OqoT+tWituGO@4J6aW`@<3>IhkGLg!${z~pgw6rRfs$z$p_FJ!hx4wlT9 zf0L9hqRVJC=nteS=};ADzrU0Dg%v@aIZGC-OH;X1WB!@??~vu@y8D5|4+%pM$M=fd z)lGqzf)3DaZC1Jbl?wq}$^0HOPc5gS$2vg^ZWN)TIuyp-toRF;T=<8TZuJlA2SjAC9k*w6ewT&)HGZ!gmW# zOgE@%3`M;((BRNkGH}(mnP^r}%%sg}VSiS3mLh5tVTZJ6uU^k3=s8#UUx2odV0@rz zwWlc-TQv@BX-P81tzle!0=L)F2oaNWjqp9z@zYL@yrO|4`ySB8=4gs&9k6&A9AC z89!u<;mEmMHgkV{IQUKS`;eYx)kUcZ)=DdfYIT`bu*xL#^}6vE@Z|vKq>`D;nS=(!*iRegk2SzKW^sx7*U?To>0pn=_r73z=HNz0F_HKCh5XP~fQ{de; z8|VX;C*5&wTAU0eHA@51OLwg}>a?$Hct#V6@Uan1t&qv$-0y}JmM@cUCYvJ|+#fw> z?R?1H){`NK4n%wMg;(HB`#;(I(z41bagUPLG^s6r;C1q_r$l@4a35sT7wk`6A+Y>3 z9w8IPlDxs52>Vn2arRLTGi!7hY6CBbmz5b`hv<*4$z%N%$-yEn*J@92er!^(rX1u=1b&k$sTbdBC zeaM_jt)yq{@BVRhXs8qZVU8=!lc~74N&}^=N>zA|bfCgpb#7-|*FXqKKgrvsZNQL= zf(Z@hejgv8ZwX9-uKydDr-z4qpz-~DxquB0`8qf=^G#gb+R(-Z-hj{^Sj^WyAe;fa}-%g8M48MgF&yJ)90C@caZ8Fh|(6r5N#a$5>e2ic29rvU0r3*jL`! z-2GeveABC|tC9Km>7~(#vRI5=H}Q!qgJhk3eX38)rh7aDdfbNL9sXGY@8KhbZ zZ)-P3)as`&2J8V5b!vTXl}*xz#%M=q3bb>xeyO01)8|kq2%zLAMnTp;rQqYqE);R2 zAtjNtplytgxpYE&va?zy2kqR|e$DrxC(S*V=0`yT0|Z_VZG@*&cBuM4b>2x#bsMGb zEqY~#9cC~TbAG0F6T|E~;(Yjxq?l4R>LbJDPLl;UtO2eY7sYP%kd3csoRU>u{(zSu zVH#*GmcZ)M5f z)O2H=e*r9@VX@MB1&Ag14x^%imi{X}cAcGr1Ge}5rBWJYa(K&<_8lmX*KC8%DG2~m z)r>N8#U7-^jBF1ZV_n7b64$A*N0_z9Mq6{1recm0X6UUPd+IZa8yKi?=GHonj|hv< zU5POh%mlTQDTG!*UGpFvF3{W4Jw&hDrdU6D+V&UQYzy$YmPhsy!R=w_=CyKZF4Rm( zw5`ai=eIV55#iV#9*+OAxF(jKfTK;t#DrM>2K@B02EQD4THVE`5mQ(|oT0J{CxeGG zngc0$|~(rG|id#hdA=Km2% z9eCx-okljCO1I+;YV5*6-Aphpc!=j$H0Z(ho#J^C5E8~@+RlVUWHCjQtc?4ro_~aA zc@|e57QqhP;w}{5P5XY4{bNg|K2?JUFb$U4+j}3wRp+1JaaIH>CmZ}11nWVBT25p% z%`3ktxU#rfH66*xVVH+g0A#w<#PzQ8XB9f6I6UfRwN3pNpCBktiO;|7-&otQ9B^%i z+5i6Rj3?j+TUf|B)Ov7IjvZxaw-r80xDE#Oc0!(qIWPX&BadVN!6U}8O7V8*QKTf< z;_<*DsH3sl#Pbnrl-EVkL>IvO!m6jpa9fIdbztYLWrQ8#nB++cGyKq_Oiw|vFq_#U zU10a|P-WUEta4MCWgT_U9uM@;sZmkUB}Iv-1EI+8E2+Ij1Y(|0!AngMT^pOFguAX{ z&Yh33j=yn>T@JT%xXvn!u|^_F1>sSc6IwquuK^s)u5NdLnwuhGMMF_vI0vLqm1bd2M4L>s|8I= zl9&kDGrNQFNk|7qgThi;SAc1K%Ozm#-$Uc~Kn6@6ZZ)+4U@%Au!)uC-GUr|;DrRvk zgT>Qbkj`dma`rnLm5l-mKvzQUT5?Bw2@Ru?x*m z@T~CXlumH)kPlhrE#cO2L)4}O!w?yxFcP#-PmY-*jAXE}c)nbi%ELx0&VW$y>>$GS zB8JqkUCs`xT+B4;#qd)C{cYp3UL#8lwW|mumuq%8gxs4YCkscquy+wJ?s}In#MqM9 zp0SGydT9k585Wu3m&J1jck$Nk_Y@-DX13l+8o@*f00EK)KJ@WC^fN)_B!-;zqf}UI zUrlKYpYZu6^4VU9Arxmij$Bb#jVT~2jMWtS-hNd?cplKRs1_p z#*yZse?k(lRxdGQDlwg*3q9<_T5LAlqGIM5#kW!3sO zNBQ~0$r`Hp_4zRGmnxhSxosUh|H^#&uK&|xepCUeeO$L}X!#ss+D0a|cR^HQGun3v z{}T(XSUkGzOTrLu&_YUlUTd%&JV#)%3U4y0uTQ*$BPw);GFWLIHTjP8SaWMOI?bfT zxEm2-4#8SV%^q7$%|qY`HmkboCaDd-fSgZ-^e(fHkKBj=Mh0E|+6Q+Z!puFbfaUdoMY1}V(F@hzS%`9^QtC#+!YyEm^gm}64Wj*>Wn3U9H zj=UYzg~A(>q&Z(YeIpAj@EM4lmz`Z8!(hH%&xlbdkbL|Z-Ph&zvqp1HkX|U2EPdo% zB@FZiJ*B&r7StnD=l>9$z-6JROT)5-18tH-os>S%F9s)E4yiA1sfzQ`t%L!T+VYQe z201s2wNVnO_i&c{b|H6+V23$<>!|xp3I7B>+&64Y66{?u13j)Dy$_wkdg)1KlWpp+ zkfJ6>@wq!E+n)O&fc}dp#5bix(~z0It^(i?1Vc|>4eZAc>F%Z%2hJhm?AjU*kl8IO zD;wzRBN7(Yw3&3UnH$#qS79h?tskFkbQ5!uJ^Ssdu7U=SpH zscFWgMG5(p=GC?20OHE*SU5O<7>{Qx*v?XoJeO()sVwr^f&3R0Nb$IMDXBd2Q|+>f zv-cq&*trNz9-rGPK%tmeQXLgr+WsI*qA4j2eItwBVfTG}3uqL|2zp7kDdIZTVEjJ8 zV+k)LLr_U{hZ>bS45}&juOMnvAv3W6COR85t<0S1fiZ6}v;?p8!TK_SHhhzpMGxWlj~W|vWKLY`?H<;@?#X5z&#Wln0_rqN8zMm=aKadxX=f@{tm;}siV&V4cO|3k4QMFoLjJ8=jR-RrZ^N2?KMqnUmq$fz@=HSnk zH&E_=21i=bthFDtv+$ctr;5@d?wv_}<~Nia>gfFnBHy>a#7@WVH!ntN;}87VLO2pO z`S)*+g}FEAsNrkpb|UEfM{|fN}V2Q}K0fD~8n=t{v9H z#!d5>o+Sz9U!$uUKo`WUHpRgYmWG5VVJpe-T~H+1+TtWT*js7}!DPO>k}^(_zKPux z;!W>Xn_FI4BU`)zuXy7z-B8`NLc+#MkCl~`oS>C5w|9>tf1W>!;b6P(Gs9VHIW~21 zbtwQAEZ7l)c=Wu|okDezLmz}jRJZiX%+X+r`kC*u)2c%+qZZM%NM)6gEEjVb#!DzC z>Cd5THA1MAUoI|7GWDuDLP~t8E?CxrPgsh-K}=r-@AIvyGdjy%*}Y=dz(vh-!h2?O zMd8cL8YyW^t(~-u3&EsN3~yHF-I{th>2g%ly`~eQP*y~?v~U1ZDib`E;|EkRk?z{h zc=nY^K|HF)XRwB)W>}Zgl90jVIGlH?=eZX)=nuMY4g#7)kGN;6i2x_=w8E@B` z%X#3)H9RYO2!V*d9Rn_BR!ErBiDQ`2zUstdTXxzXdGx@!4CY7bo3=U`m}P8WVz_q< zEOnzf1^qjocf$2|A5cLc*6dqE*hgee>F-nc7KhgU3ZM zZ#!E>B8OBkhbSknJ8~o^XA`IZs#)%*3i~UpzQG+HSXEQPH#}^AigZB zG0=8wC< zA%#-zu?jcxx5S$b7l#-}Fr&%4GaQdzGx)0o^qs~L*mAs?U=Ul!yp+R?FcR5f@&td4 z5enV3c=DMF`k$hU7#L6RU7qnQ+^pn}+^UCAL8T?p|H}ecFBv+yOzuKE&`A3^oa@0` zj*tf%ZiY;PtMDV0=!&GM{8ki@Z(1bj8`M!XFTrGFFZOqxDvk(XhjAG328PExK8Kf) zQ3ygiuR1U&6|#q+2>qhJU$sG4v(Del(b^k&Sb!t(J8%jM%hpO6{a#gtbs8CA{kgmGMLyT zPsLucVB@~PB8U%q4Et3{=GRNlXJ8d|Oq(}`mF|r=vR9QPGIKl}L&iAHljyA4cRCRL z79QE-)}^LL)I!q=XPD-;0vt1SyUPatw=e7y z$bFTWEJ5>tHj2SZfyhoz%H$VOGXG%Byc9bldoT68Kjs30NkXseh z?^~&OF>4pob?l&8Qt}hrxI&PN<3Q?ucHx<*S^V!YFC0 zA!_(4Mz(AC7*|JiHC|aFr}T7Ay+ZnYz|lc24bOy7c3Lu+!~$@`-o{&alm;6-Af-ex zyL2|pKAsQ@+d8%U0N8Y~vhtFSh?s5G);0sr&(FZISsMuHrR60{#lf@odmbiXP|alF zG6l*18G!tfP%=ZrcY{Tz+}?v%-id0=XF^(VXt?uixU__!&?^O-lxOaUQ!>^-!>J-) zUS;-2;Q%(cO)xIyLeeEBtRD{J`n$2RSTpaR&ETF-{^)0~oiy@q8ae8O!?`1@W8svP* zzR!4moyQ-Hdx&T-2D6|p&Ln3evt(9y5%4hO>C`wT31NIN&iFHwC*Lpq?a1A3n=Uag z385>IAU?_-@-0h4V(AvCV`hTQoNJs^4!El`(;Os83YdZ2XGf1p*&01M!N(mj@Oeeu zdk-FJq2Lzmwc1AYW$b$h(hjBJ@;#YOz0}#fniCa7*-6cH7YooKm|tuwB*6^}`9H*PTE*5t^$qDyVcGR)mnPYP3=O8aDNOfb8#5>7a9jli)7wCgF=~OV|vi6E=090UP0CnE9jLdol zUimAK8K22^|Gyv@7vHq3`~D1aEZyx1fjnhy^qxn|3?YnjYqElM&CKXIlY@45IqICA z=O-~QNo?RYSX?~ko<8!?u{Rq>Yf+qb!-6y-J4l0O@kh9Cd*b5YWM0pF-KxAVx_`o3 zv(DX|J2U3D)*4XvO=+{F9S#FmFP|-JMP{sGo-_h$GGy16wFFVp`pEzYR@U_N3`{ll zdCKy=vdT&wSI{hl;l7}r{rlxkR^P%RTB{UNc=+uq{;)XQiG%yMtw}kqMfJF&3Hb?_ z*ZuZR58oFeptzKQzJmMYxh>^MW7P&*w9yfzW?iA{PY zM~Q#k?+giZXt+b8cN~<$t3=l_qtK3;no8BscW@c;z^7)in4Ug?OHn{Ki6I>5d;5_= zU~4Ot^39(u?-bAt{ckZz(K5hE%8*o#6EUmB3|hz^SCnVJGT+@UZxyq4#bI+ zdg53K6t{^)Vpw$Tj2lO|FG)2(ipd(rLBqhlYgQ?CX%|F^$38+<7n3GZA%}*anKC068=X1~Um;5%Aa+)Wx6Q4R zYLI^RSJ>-tW;XL-T7&zvU!M%)M2GCOKN6PUU3SY03XhkgCu4ja zM*`TP9WK+f{wDwBt41C4eIH6B|4s%w>nEiAeQbSE@7zVdoHu3$mlnc2aYsl$^jmC^ z+<0U0=#QAqq;^lClExnHLf8*UYxb=g{or^)s zFRS^exlirH)VQt1woG1ECaPhlQ?P-a&|LT+pC5$p;N~+JBwSR`I5Fb9y`-e1I|m2U z5G>Bl4cEa}U)>FYN`zpA$co@?yAHs0n_5LxjR_%MsC=6xQuUMSPNLh~MHE`O0;5cu z2*d)o2oy1>AZtZi$e1RAr)jg)8nDs`DXaO1A@?-hP@Pz&7)MlTf2_b-y3rCZajnqy z(@AYJ9-JqVB>ZNFgi-ZUF%k}erdN^7nG?tYXIDERtCO=-bz)tN_xL&(sbuD3ihj&t zSZI&lPg%SBrpo+{6G9gI2lJnqUo@i4(}OVwIF7F;CkpX+$Rx0Ez9y#iX(|^84ZGKl z&fnPimj|3;G86r|Z}^uWC8PxH#*=ku&bMnB2i}^8C6S_$w?$CTqdqv=nGK1F*FLV9 z_A<|&uvD9KmK_TRf~4Ngq{Wo3PA-XY%d+dsCE?)Hl7&U+_0qfhf|40ia>cC_(@iPT z3&%=?Ljzx&ppdg@{oGDkB~y3>pzh@~xY~E;}t4MsIcNc zou#FeBjTfVCU5FK543Sqpc|{-a$|B8P<9R#0OR%qTk{05E!cFo?kY|U16}5}5Ru_q@K-3)6L97D>c4bif7+;!~DIok@!3;tsg24+i{G}j(;_aLirhkBR; zz2hX4Q19cqad1rv_|y_V^7B)ZLSwbM6^QFlLFL5)6y)WB4bM;c4Gr4-SsgeStOjj2 zJRY7k??0?+e~WA7t(cjigV=Fhk|AMtDb~w+BfVDAKao~Hz?K@Yf$=0(XwOY)gL4U} zgy>BfuMYH_;Frp&kqM2{oZJtTtYz}At5OLlc_^Y2-_7G7NI*O7eTnu9-2^RRl4)If zq2A|ms!0YaR^XIH`;~SemwrDbXDZqoQoS;Pyz}XKOc1I^fyvPfKCD4RS3oc{kO_&; zj5D>*RiR*xC!v;IL{Nh^81Ixls%u`{^>;H9a2uH{A;l>`E}004d=r^kY*eSxT6cLJ zV0I`-dsLY5`FWv4-7pQ`-ka|{)NX4+oPV2CaJ~yNoNbAVa@t*2mt^LJ3cQR)Wh1DV zloxQ8#KSG_{E&O#n%9mxEjMC=e;5-_pP3HQq$~PcQ0h_S#`>IV&X2N=`6}y#U>_%~ zFT7HF|Gr`9cqi)01LtP-De9#1Lf~j5!u6$XChoB5v!xrMqr6;wtY=Aec`*`ft)pky`(I!0@$fVX+x4Q*SYR?_iG zo&iQO?&aiRcdoi#$jBwkX+g7mlP10D&y!amSZHU^b@+XuqmG`&i1@1*F>5Vgl`O^u z*U`3roF3D;D{NIZwCWiVMb!McoWtM z@2bPvNYA2u3x4s&A4wpi&!yoe5#_#`;Zl+b;FOOsG;pU6>h>Z3T>3UhU{yZy`=Av0 z?*T3BPV+Z9wWb-$)L7qaVQGaa+1-TmY?6vPQ4^mrx={_<8KNZt%}0nyQ{R$%Ea9$? z>xVAd)S=OmN14yiB{s4R=Rsppe8SyEpG}U-gt7tu%2!^uQFCbSN!R>ZX0TLdez>Ma zi_?+tXNa3eE7TpIk%}Jqn{dVpJ2V}9GnhL4)E3Rty&IL|fr3K&Wpt7)M#)Es2$1|& z0u?$|gK8eyFv=#Z1OD~oL23e7pn@~}8S1o(W{{gs{w65G+v|#uc$Q+!r2T^f3D^&C z9xfFa1%YUDA5^gAFiyIo3eIKjY-|h)UqVi)D&g$t8WPs&Xo>UKBn_OB%+-IpMw@#> zpX91k)};k9qhL-A<8oQib5p&r{uV}3Xq_i`VKcPDqukt8`y5(g(4*p#n=U~bg(wAB zPa3U)jNxzd-EwXz6EFORSN5pGs-mr>mqP!1SZ=;TQeQC9{_e!v;38Ix?fW4eLQF~s zYV7lR<~)v3&KMd~%q8k`s|0{UwKo8VXU)N<3a!-p*G)*W?nbts(!mr_4ld_ws7moQ zXJ+jpce5&-&zvSjx|4~6gm#ZmDjs};mgw=x+&-%Ac0x|v8EV6~A^|Jkjtmw_e>Y5l zBGhbLEE$f(=X<@PO@!daN;DR+#lO2wN+*+3bo0X4eRELW#pp{1OTyMVxL&VsJ1Cex zRrF#S%5k%>Bnte)i`w-G(s~NCgZFvYSHlf*-gG(ac;WMD_G|7DypY6?Ggp{deopkb z-4NLjoJ$;y0lY>fezb8?9F6S`?~S~C9PMAhFd+S~A62`_Nd2k5DMM`73ayz5FrVb) z=580(?S!nkzjt+JKkfUS15gKVfePz#Aiv*?T5{q80#2!BLGs;Mz^SBLDH35TyT>uGo6JOL$-t}R{^zr} zz_0E><07_Ev3&R^{(Fwz?gGZgG^N1YjynwvIIQ1%rQ z4}Nr48=Dl)e2T7bSM40~B66rnAO8KYZk+%LZ>h!vVR+>E&`VtW-3`{5E46mlON(Jg zUb)D&LYo0Vk5ihO`dDa_`|dU2RskN8Al(r)_5Kg zB(GMgma#VO#x@}+qieE<^jVSaxBy)NFtf9Nt^fyX9<;-tqdiVR_o$LfG`u7Y4$S(& zuO-+Zff4x6!_rf&BtU7ye)ccWE+toa`BCg>rn0%RS2aR#aImDjRR8m2GCKO}Uj^xyh8%Tnw!GZk z%eMO;LY}mCi9N2 z#;N+KahwGYYk`L}<83Bg61VG`>q*04B%abTgEjR=<)tD~sMAWG_E0r)x>1=bn%A?> zpm%G2SdD&5s4c|(|Xrly|Q$9EHh z#r<)vtpu*~*R_yd1RmsNq#Wy7&ai%tSj=GkzsrEhR9aRWB4V7ejSD()f1rc2N>Ald zx-d|Yifvf&Mkn~$85O0}Kek6uB^8jgKsqZWa2_szv17U`LBoGcJqkGKZ(gsX=aCA6 zrx7T_c`nOW4R=!SDiOuy(k?HDUG7_xaVgDQzFf*>?%$S z!A0R$u+yZwjGhn`vqsyxC?7ulWvMizXjxzjuin(cPPX-BJea~m&r+spBq%L|i2Clm z#|p16NS0b&QwnvNcN(OmGp`*D)yZfo39l>Bx^<9?R*ZB0(r& zN9RE`@KUfB{`Z*{qclX&3?PFfZE~)#vgiZKOHMAl5f&`G(3lU#QIa4 zQzmwUDs8U>xUbVF@v;BRRJnD~Q=V>E`UZ5g0ta_fX}Z)s5ie_M5>F)Fz9r6x{9=CZ zd8V3pTXQsDgVeR$o$Oj&snvTF8$>hFY#f2$oy=qU+c9KQxWAopm}!jb<)V`1i~u27 ze&&jLKFQ_ReB1P_5~WD($_E6SdQu9E*3v^6iasY;PqXLGl54>GCSS2W(!P(kmG1n8 zh6?!6(PjSf<801I&B$KczY8%xJ9|jz2t`|a2Qdc+j>-N$mv;*wJ6lguMh>%9v?Pkh z3V8IiHIql#3EgF&Nt>pCdDKk)lU0DZMArA>q8bzru*bg~+-hFmJvpR!BznI}b9S35 z-eHE`2D+kw{K5Pspg3qhSwk+y3rLl@v&955YD#Noqu#$A@r%4&2Y~P2M-;xUZw$mW zQYSqWh?g$k`PQ$NS=skPb-P|)Unje?zdX`4Mn>4Z+wT%9?O(g<^{eg!_hUD=-e-bD zQ3Gl?!R5wzTs>u?s5qlNh12&br3frw33vOnxKdL*x>>w*$gPu~=PMKYy=&qyU*Vuf zX^SEvoTl#Wbac$M>)p`Iv>%D{SMf&n7<4SlTD$x=kZH%8?aZ*Z8v}Fx{*|J`0U^=7 z#273A`%!J{>rrLQubUAA+YU&=<+MngtYPJL>_3Z=4f9CxVsv){dk*#^6fk+^f(0Gf zwT*oXtmLD`c^Cqt+Uze2_iTtQs^iT!e*Mo|kD2${)mV|uUb(`3TPSr9Ak#sYF>>?{ z?#^N^E^MKpVM@x%q5qGvw+_lHc-97i0KtO0y9IZ54FtE~PJ$DHzj(0VA;BfMy9W)L zpurtpJU9gR9rD||d%vx{U+w;LiYcnjJ7=b+yXWbryFo{UJX!`CR#qZouufUzd`cX zGNE=0x_U%@pu!fn3X|EZceW)mAM2Gi4P9L>E1$)5QBOBx6pLJ$5#?hc@{>2P#XKOP z?ENL(de>u2E6g%asa?_D-U133n)fQEzb)@>OG&HZr6qTZe&JbLPAbZl;7NHJ)HT;D zyHeh>_?0>p!!}YzQgs#X*WpkcBbL}*#c@@SQ=R;V*pKmYCwq9O>GUK$J#JpQxzbYv zsl@%*xklQ?Yf>$D_6EW9VFicIQ!9p#kV3s++qV|ty6LW;4F3#|vZ(lp@ypSFD<~l* zCnpb&jI2d+lA+`C9Z>pnO-2}+ra2RF|H8u2f_VL599Y~YqEy0!lW|+Eq_|H<`S&AE zDCnOC(i<|i4oRYkO1&$kI*qZMh2UE2%1HgM)=y`fEl4Ul9&8~uJFp_xleK?#cjYw9 z;o47={6iPhS=z+wE`-cJ!88sJ0jz>!QPEQ)qch?5iAWK$xYAvBCJ6`>T5!MJgD*(H zFCOPIn<{Bh9}X{4@3`5cvF%JK=Oaw~O&(V;z?M#J*lpE%d3pA^EA`}o%A4J4b@-80 zh?W`eX5T0+nQj-?6=++ge(CoavaWib8`DL~brS{@>mN2vZ%%^=B0%nZxnNe+<6``m(z*< z_l#5M_Y~?GmlKrxq;swJ?}WgZaahzhq!Y;EiXPjpyQ8UcaZo!c?1)*Es_I(zym_mk zmt2s6{tp(hx2uSMr%JeMh^W}=Hdf~?O^3PzkDNLbw{g^`9wsIzvKu-KCik@3hE%gR z=t~`%D8vOW&|8f}^CS`)px86wnsF;7Y+uU4owiNhF_-NMg#>g{nL7MqF*Lg(c&?XU zR(WZPv9;I>qf>~55}0_C87+xokBVJ&F3mQXwaN1BG$don1}wn2t>0?FH=QI$E8EiA zMSps2f}x-4fIU@PJ!c+zVGnG=iL#>VOFsioy)v0UlCKxU9CDKbIG=~mxjkDlr`g`w zWt)o{;+hCUj>P|@*S%l@PbpHz-}sJO$P20pmzCn)Sm@Y^=kg9;cy`-2g>&G(r|%ek zku)jfW*WbBNSPn3v6-=(((NxewUes1#lRAm3wrsnYYclbD z3KiEjcdQv35L6Gh;b35AvI@rxnvXlHZqWy$d`u0>{w_xaRd@2 zcpBoatlTfha&mG;)Z1}aJx)Apx)~TeDR=V2TV5`Rf8UU42v*w~5!`DD59cYYbQ-L0 z$Rh84>&||$2Jn=H<(Lv;v83@b(&=9u)EHrIKIr$J^ybb_lD8=ri0YP_Zjy8;6SObh z(P9*n`7^U-%1%Ki^4~6aS95WSdDpGL%a7YXRwe)U)#OLev9_*QicgoNNje1inXNU9n%BsS{`btTnjAVa zjPUzpPaG>UvJB4)(6B{cCot@CIjr-Wgvk9FDj_K`Xar8m%v@UKuxGvR3njn09VH(Z z(g%9pVkj991=1KkhxCe;dsg4&;bOMZS&3FC8rqGS2S&sZ{dSLFQlCOP-O9B=) zBm&$b9AAy}{@xG}a{_hjzf`9r?d|I2y?1=0b@JA3IK+N(uvcz$yxfHQ(+V!R%(^N2 z;oxj5r9q-V=FVG8xO8~IwklU?iy>k-467@{sBACF1knQ;DN0v7sG$XmpVGNUlWM@# zdL?RXNLqwX@7yHbe{lgU4y51vpMBVI(K;Wi6f?Mxj|4Q})ap6v1YQL5cuxc3a!X}l zS`Ji0w`!@*ktd=Q^a^EZ1IYP+Mt@w|16F)-X2B#mDe)qIOE#HrG zDIf%9W>om%<#m0F%y5gujO+)}Pi~KjxB&LgFoP0V?N_mOnrW;^&WI9q?%&qtyQf|w zS$kh_hG+R}fXhzhh<}U(h7(opo1Z;#eG=gx*&^KVCCw$w6>z0$hw3sSrO?T+H z;Zxkbn@FM{k9FEU8Y}*=hFDruO7!S^s5!TIcO6K zsWx3IC=!xh0?hWMwA*X4Oy3K-o*tRim<6Z4lv)JO+l)(>bM2P+4lx4ujvIV>9%7K{ zZY(29bRlf%BmiK8WowyBPoQV6MB?u%cK2}CB09bfC4Lum2=0xT>ZPgSg;nv1nJF28 z))u^Cg8Ev#A2D<%DnEJ9^ClH(V!%JU^{rm3v()tyyyW^tXjs8nVYX%IqKbO>Y9V~- zKoc(F3hP!$<1DVdLna*}%ObFa(EM1H^8@3|nm98FF^AplnL{zQ-MUEX&H z|BK9F*@U{>eLtO@$Xu-2O)W?p@{YpOKj`v&g z{Ba?b|d(!$~dyT2xMD4C|{cRbFm@L=At8yzD#wHJFqb8ZEw&^GO8d7U=tcf>F=+2| z&5IEp4iCsvJW})tj=X|GF&{3D9*N!Q~?>3Y`R-YO6Zt+)&T=|$ z=PlPyi%r)OU**>XJZ>*`zsI=#_;#!1)5fTw_j_Q{WrwD-cv@^_E=pWYkcT_CV-8a8 zX)IrkAfT^tL%aj*8LC}W5^)IUhDU(r@d zT(vZUuTtzArR3d@GexQHzdG{dir zOj)6rLHp(8UB{jF1(cmDmv%u6VI2KJp463Gmfxe#SJ1b5db{xunn-mtjo)SQ93?MP4WnusG>g^m6R9f<(to_O~F57Lgb2;7F9q-lK+U%ic!B# zmX`X3@)WT8!rjh8_fmQPbbTxmy1I)bi44$Kx_`g^9yy~S>%CH~_<^9cQk=b77O zkBNPg#wR-=&GiC{4;sOTV`eGO5upWqzVHG^O0sxgrCBaq9lG?H%)5O}_S7i+Jnuw3 zTfCs9UT1MpiDu5_&b3!gg%?ym2cP>_ua*dor&q>vJX)M^!h3tI-!61C<=BQk$Do)d zQ2L=uK7F?tTI$kXtBAYBB6nlrbJ(Cq>BJoRZbC_0X zm{DqAoSGS|A5CMXmCHvUKVZv&uwEMVb8_d#z?aY|Om1dMDy?0{qIZu@JsVyRmh#hV zh1$XWD2cvIj{b?Je#ovz_ytrL?~u5UoQm=|hML-XyK%0!szD@`#OK|sGBGh!6>hjt zPbFNxGIqaXwH$yAs_3_Ys45Zp`C;(sQq76O&(Lj~x?1M+%=gtTpJ1Kbi;e5km@_k1 zS=_;~5_7wfry}0w`AyA@^a=8c`2L;Seg6GKW>r#IS#^DE|KKO*1btufwl2U>XStsu zpg4bW)->++w>#t<97Lt0f=>AT&slr=`k>n#S1)Y$c28zjt`l*w-*a-(txP8rv#8l~ zKLgwvG>?Z_fUv~HS;Sf&$qcl@34|`KuC>@p2H5$Y`OsU2r1qb|IqA}kE6h1hZjH%t>IjX^>c-&=vx5Xaufa5$PU^5e5o5aRcSpI<@HiR z3C@K!{QUlB-Wwe!$D8r#WT+?$zYDfZRQXf~f?PTd&X|ss_oBPa@vMUMA8%J2+jUlGN@nojR6+vkk)5OEf)ffypcwuTN%Pq+ z8?^hr$K*YIa_hz7B4HyVjv}6qOSA31+>49K;!(Amw18%w_=jYR>i zNZ?kFv?DwCOn;-=FO)a69NAfnhFjttox;NB%8C{=yWrfa%51Hl5`8bU_WN$0qryJ8 z_@?M>so%e@N$-m2jUL$IFCA5~SIoJKWb!h<+hMldf6D)91poU z4$DdY{7}kgP#a(PMCoK=AEDfLc=bW%7JheW@7<*$1^<^<_(;F5Z@C%=%w}y#tB!rb zR`}V!WWXz4k|emg7@0SCcGe>PI6}do>RHhJG|n~n#MPIA0Z0P`gbeH5UVtv-Ql_Sq zh4?}z3P-5~1ds&h>{fT)WvYH*C5Qp`B)FZr^F{YP#D?ZU?LAt&7_3wjaf$P^ zn+LGZr1IN;;@~&Roc#=J+w&^fUi{?6o^91Mpj>w4r>$1l8rX#?m=-k=+k1RH)vt}5 z;$6B-68io6$lQC`KjRu6pkME6-*!+!xcwVFso5Nrl|*Ld!XE`MiMWDjWWHi;3YYR_ za|M%c_ZqQ&{?u=y<=_R6M%5`B&&9>q%hrqx^4p_KHjWs=TxODfiyNHk!sI+4rFBC*b3maKtN0_=4yVR4c;JOt+sd0Ec@Q|t z|M(D$UK zu~HY98cL2S+p5iC7Zo}CHS9M{22({ea?|&+bj|9!RyR>tCyxuoo#4o#{Kyo$n*aW? zM}NeSn*c>qp-NLrnzuQhh0i|ZYr~3PwV?=mQ#DkmR%NA<6_FcGujuc^8RS<{{fBk2 zZ7na(k@JRc*6$UzUNUjuCiUh~@w3P&9BguIiDbQV>Ky!P!yzUZ$ey?HOHWtxxaV5@ zw;_{z;+_3cd?x#Jdf8NuuZ{QbedB0+t`a7ATsRel09Oq~W@S~?!5vD`uB%52i}j+S zGLTx$$mcK+*3x33^Fte8vtkYZv=JiR-B{sTu$b>w5vILt05_=i$rXt}|2*^+M|BgY zz)exR%)WAk;?FLJcW7NY=qw7xH7Fv%T8PwM*_`+%96a{cI(|u4QUqj)Ibmo$6Tvhm z8PU3XBAvfWf*$YBxYBvZ6x@5E6g5V4WQGJR(zNnu$zh6) zvXgvC`x}^_GsBwb%*n>09axWmCw;fkbNdrHI`Ch^p$3I!(&~^dEEc^7XG~g%@c23aqxj<{F=a2mz_0Qc1&QkBvfl zb!EHOzLFk6sMwT#S5h^DT{?%)7uj}?-U3$2;Oiy&2D^~3p0Jc#6#RSl9=g+0JaS`-6sLjxK?crpKXWMluotR2Uj`wA_T%8J>FBKBKpt< zY-LdZg1(EN2A;a=tfQvkszO=X6YJIvT9&jIIUk}LBDTD zRI}raAOQAJzq9MEP#%JQ|EbSOIM52)$qM@8%&$wmtqziXxcSXg@4ANM=kr>%r9+&U z0N|nWDP%-<;Ir~$S+&&K0BgKr6T2&FmoKU7ql%%B9HMNzPgy-;b9S{SqmK?%<@{eH zT=#ltW5{#P5TdIVA4L|(8++zMl@-gxpRXvkzJC1*q7@Qa$~-speLbZQ5*8tr$o;p^ zO&F8EbF@hB^1e9F&TAwSq#A4DcdhMNE|nc0^+!Bpc&q-?_v(7Y+CD0ZAj=*5WQM^? zX{*{61vaFU1uh8}7L)|PG2!9kTfcq0@<2jLX2pcQ1)trJ!YLcT9xEK#U)9CaR$e@5 zno9V~DRVOIG}lQ9ZZS@~k9nhmU5NUE;>^@I0*y2+wez_fooD`96s|+FDC>Reb&Rl z7shbf{X5yT8_Q)(n5Y8G9o%`){BwKNt=Iu$q~kgJPMV^fqtB}jpOkSCN~YOVg{_$( zMBEw(Dyu#BZw%;a)fT+_d`^DmK`M?T`uQPFnUpg8;wuNTb$x1{><);^OS)hOiy8cQeuVKK;lR zF0zMx#{53W#iLJ7z1+aH?eD49@3|dp*%EQ56yHY>PvhI!?d=}mR{QiKA%HWP!7K^62p*9c0z zK8W@zo6v<6K0u7MAAm|!eG zsd{J9PW#}P(ULzfMP4gI$Zw>Q+#A=ZK3BOAtsPyZbv+|Y{jHG7{8i16zl1e5fD>Ne z>+EakHqW&?SgkWR${*~6D@zv$@LoF?;v3tEB#0&L#lH(LDV}+ZOa;GLK&ufSi%DO% zC*AGEh-r_^j^I>;y}t;38T~y>|2Yb*jYQ`>eAD!}s;;3h56?$k6Cc!Wn%vn^Bxf5v zWA}Tsr!5t|E2l$N`5O^Z;y|=8hYCAVCZ+GIwnMsm5ZN-$w>AL3^v0$x(X-|cM*(Lv z;L1v|S@ff-X&Q|NrLz1PwwK0_^VsM+I-So%CoN)@Qqh9r>nYSZ1#fgepFseX@K=BHAHgbgjHE&6r-v(TwVx0MCDDuUswE`*-PL2oXdm4e!vjK z5}dykV*`Rn!gm#|(uqia3z;CMMooa-renhvQg_|X+UEvEH&4ln1RH>%MmBn{_!G1Sn?FI(npAU7eA?v<+yqiERO-BKCU*XkRJm%lTjr6SFs}S{x!8=FQ!q1(vDYbE+ey8 zP+332n>ff*dxWUZbrd(>Gl+m_zFm#4{Fl&%Y=v-=($F|!I$^` zq3)!HG)wiwEP4JsOkK;6T9)I@sI?!-%v&`*wV36 z6Ov4zgxn6|rnm{`Q2$&CGH+>KkLzl~2OLQzCC-AT=s+dU~=-P$_pM++ih zw(Uq`t!-bSwDAq`PK;bK=!h~f{w zI#xR+OSlNIp_Xp+^bFMwd-Qk5Sq~taXcxy67Y^*0$`pb&>1%0U;NQfVhm|>I;bI0& zXZs176=0_}FtETYF5oB?o9t)69FbA{sHN*yA77yVaSt+6GcpIX(9-R*&L6F@C=stN z6wtY~&-p{1+c>G=TD#wM<)C$w- z5Oum%V48)?M(0F9s2?&72%)9FiBuIkXA!&Kr=(|KAfO!Om>C{^F=O2J+~jfI;uB2A z$C-Ryaw9D0w8UJi*nSAiwkEDS@A?P%VBEukn-9%xf!4OzfGG)$E;(%yGCMF-_jaf z`>QVnK0b)F*4Mmq?kNxf-i#gC8L=XweufwM0@FH?)2n`CapRS2;|ws*QaO3hFBAe} z4JQ85Ee&dH@Y~ESBOgcXD2nL1Ym`ar8Ga0Gsn{l{X{tbS(#C_%_pmG`H25!gZY)q=f}~c4EV1iTK<|DWeYt0q8#wVd6jaDo9sOlCL)2lI-|gWF+2D6@ zGG-R1W2#te%|j$MHXTbGwcl&kO@rCKSMt{Hm3Fl>hx4yKVg4nh_L}M&CdZ4XFd1mC z#mLAQl$FIky}2o1WeAMN#B@%5CBU!hvH07?eLzTz$oD{^F>dL8J$LQAO-uy+JXmz? zg$i}XW1qkTQ7UyOnFT&s28;*VmnlX(xCY72VkGBiYq-aoBXQ{uTC^8po){vc8SG0S zywh;~&9DT%3Eu&GbzM`F5PQml9b~3+dS(-nPmr*__Nz4kids-^Ub0F+$xo&=&&Hdb z`R>=~OW$##p3$;5!TmKJrViov-VgQljk%Q_7!fDP#}~$ey;a{p*u?9`f)?>3<WovoP#IwD_q&k~1tN37-7so%%82g|O z8MmIsq><@twv97CG0-4#AV%_dx={p7_L^!Ec|zAxV_sRmo8p|nn0_R|OBI?Q;)Et6 zOLTLEBfmk`Bw=k4l5>AD1MjPl0H%NG${5EK_op4y)FNmY;vYIx;L@4$$jJ}U(@;QC zvSwoQ^^D;z{1pVg(At`VSCp<7d&$u7!;NuTY?B2h6tG`TAlHgaFgMX|x-3+F#U%iC zizXOUp%UakGcoXJ&dZszvvYEi2PGud*4NKL&a&TQZ?h_AG?Ah_a6mC%CIgh@Kx5T0 zHrXH;W_uNHhU)e`;-j)px;$@z(sNilZ0Oz4__Mof0u$-C3LJ;6>xpy#Gk!2MG+aF# zX`1HT25LKo(+LnU9=+ac!KL3u05Vj*vx%Qf(Bza?VFM<(y;KXcJ@d$S(!%a#&06!l@z<0#|!m~N^NVGnU7io<}FMTTpj?0f@X z+uDjfHl_|7%r^n>5l46Dd(PeGx<5uoM^)6g90|eI9-ZBw%>aCf)bg<(*;klt9Q+Tw ztFeGsq_^V0w3qLPjOw?N)J!C7p&{$Mj`q)Wj{F4U5#^*PnSK&u<4jlP(})N~Kw6IU$j!qT{gt zae5gY`*ZJ1wS&O|hb{7TEumPc3ylTRF~~j>(S8pP3R*yS*Mf%QBd**Zz6$yN*0m@b zaaIL5Pd7`6P16@}FMxe$VaR$4A0i>4>0!@!dwQGpUz9iP#iU_jVw#>5C#S#yV@J0) z*uC_OjjfjJ)Fm2`raRZ!!vjYWd0mgMuce!Y=C6kdMPL1m;!D6Jgv{$~hJJ!E!P8^) z)|9931dOI*z=(ZIMkL|*7Hz<10ou@~y{|eRM3YWmtA+)|H~L%Z&Mg~INnE$vhXR}S zkLZlyfA4G`_mt~H;#1Q**H zPvZCd@|2xE;Qq3Z6HG~T=REChA0BRU{1z0YShM@n(1&0$+(L>BOBE{eefZy%Osc5P z|GKOi4wl@wNzhHyQOU@uwp!S{9|%Iv8%>M$FHa=12aq8e+578!#)$4QV`aLjOfsND z9P~b5C7!XpB_t!0_OgoZsqva4q9!*p8~HS#4?22>=bK7Nv8=6|e!EdpJ79;?o+@dkOEI z_Ye@yCWm-b8u_6+pDk)mKo$dzyG-G1TUa)@aiYF#*VPT*9#keSM$Yfsd70>~B|X%9|2>LHE?Pp*g9#2Dk91@5H0yFOanv$I}l+~4!AFqsvX*o;%ZuiU+&{4o)< zZ6G4%XD4Y`@9o|FuD%Zjot*IM?;56eeC;3Itlqza zd;f>)^3ITE;`FHF14PNhWYxR*QR?p6D`mPuoUGE-myeg%LW(=^>Po=V({m^~c2pU% zmFa(SF4XUIb#=Dn|FD-@%mh(0`G~QnRP~Y`55vYO$%XgD#oFe;ga8QHFIDd}(YcXz z`LY!_SMc~*+$3F_oZW31R?>9>I2-Dwgs`c zc<#LQK4`_9#B{&cV!U#7*4Dmwe=T@;xZ8Dn90zH9`>VWnwDRa-t5u~nylr|x_jvs> z^5R*^-nnd6$Jd*r+e(fO#5TwMtF37NlgsTzYR$)7Ob*y59}{57zu)rct*=pEc$em1 z7^5K|?{}?nseAf(H=&OC&W#LHzIh!le=+}owx|DFhd*Y&YUbA?Hf!#_epwnHhtQs$ zED8~HRaFcuZ#B{yLmW7WCob_Y{M~))>egZVhOnY}rkBgX+7Zk7&F=cd)D){*BsC4q z>iX-I%gBy7l*g(5mAG?p9uc%Y7xnmfB%~%nSD~&u<=3O%d_7@Czh-sr#2_*iJt$nD z=OKg)`u&XCo;eggxV|;}V2L}-I*f#jE+x}rKjvxUEoQ`-Pa|gH=Js`8bbW2jGIpP3 zZ)ZF9H&54r#pwhox~r3f?K}a@162qFa=aMn1l<)Cj>n{UNs@GV z=}W)C5ozUUm=(N{=Xrh0kVS?yn3%D^Ur}_71qZQ2%grVB^s1(ee`#nm(>c-Y5FcJJ+}e88nm74>D(-qKdkD&0N%cjN87 z(+d8L2c^Eou5+~UwlhGV?bb%Qe)p^PdbEFUK|hU?Ta=C#kCP%Rxo2{+cl+|#IZgPZ zo`|2ZDuiIsfBF3Hcj0Xp72l_6)CIuCd88%npQm zJNmJSh3AeBAR`ADY?qVs6rwj-uJ`QiekXfuk(sKa=XX)js>){X-(NiIlt|r^78dim zmwHs56Pecu=HDAJGxAKw?IKM}?~w<OE;YN)H$mzR5Vr(=kpXFMmo~c z_6#Y@Qj)uRLLRPzM@N$?9&GwOR<9SWXE2V$AHBVNPtH#>RS!q6JzV3XL9KWS>RfZ^ z)}bJQGs~fg&*Lfp(6nD%p2{c3RzmuRFT^7veu3g_IUb<`YBRqqDb_o}!d{P7il1?Tx2 zkf0ncb^rc8nTS_+J;koydV;E*G|WkBxF%>T^5N2_nd&4@E~cdeVxuC%nzlolrVpeH zOX=4tyngt@xC)^qdKGxtN}UB7CoM!O}B?9qtBXOzqoa}TbhYxk$8=lOHED`OfU-qqc` zZ+ow|c6}u=a(ut2X7V!8g0|D9O78w)_W066Y{fD%S>b#K^6z>CmpZi_91OQTX?OGK zmA>t(Vne|XXJ3lU-0c?v!jIL|^~5j7(|(Q)N~v6w@gLhc`Gtpvt9@{HqY6$8xCz3q8o=HHx@VV*xo59;_LWuMJU-aqA5TebaeON)s|*_mq?LS@o*j;8%BuA zg|x*aa(z@=Ihs$%LcEeQvl-WCbqFKxV;mlsi z*d*v^?IfNyZAP3!SbY8@I4dg>W%GKJ9}o#^$zFI?+|jPx2Oonv92%IXAf44z_7+KAG`=&92oTz9USnrQl&E2Yge)x=41hM|V_DZ?M4j?S#;xmPOlv5Fv z?I)~$_gzkti+6iIzRNcW4+KUXo{+oO+5=chvcgFhzQE%+y$y6Z=-GgW_(Hb)PU~D& zY=`032S+h7B-8f*Xe%rAyi=|y&eo>ID-;X&4NYpd=VH|ub3+Cun9@Y zdqJpLD(G4H?(=sjd?W9p|H3prC<_HW7Z8udYdg4F$&uE8{spO|0#nNYG_2Y`W5fG{ zQw%WI4s3jnmG{R8F`RK))RKm!1NI8b|C3v(sHncOZR-XY)uc~&fe0fj3$vu887FX1 z<)x()7>lnTPw}SgrkjSW;@-fC4fnvOrs|JPFEjPvh<0Avoc4+2(KF<<=72;e;$PGYD)LZa$6@az^CF`Si#=66@5y#gx5`nE2h zKgpq|7@b5U<+O<01Plhol>o1dXkYbxiQ(K`t#PDK36#G^c@v_zoDPx=TTZp z?UeAZt8)(*7dYVf^EgV(UniRV$Z`MU_U1VUH*a+EEMxVnlhbn}7d`NcXJzFh_W)H9 zYSRB(F(MIQfQ{kPnnc}s;G&Zlqxj!1gFrq@OP`D1URSECtA`wBk}DdS#YbGTva>&5 zx$9d$J~a@eVuA3p-u&RJzHeplfRTRQT! zb?Rx!nWTd9A<-#BgKfH?9#8l9Z(%_c*kv)U0C8LjSu^ONwfRWSdu!$1nn=l!Pj%${#I_1jC^)FfYA_VR%7Uh=yUKR~zna0N2SCLOLjVIUk8R1tgo;{pgBv-Im{ZA@ z;PTh;$W06u+}LnI`5ehKyZ{yPXaFdVQLDBS3asltYGHLvyRx(e%}5q|S78>#$D~4n z>B_;7nUI{%6>JsZv9XfIjty5_!sh?76Tq(=_-8($lCF73&bL`KG5;>0|8=tmHA+!o zM4Ka(24t9|@h*P>Oue&xKqQ#+27%VE2k$M+8<*qC}M!+b0@G` zWXeIrK~kn)p9+BiRvGqDTL(sE`$Zz|bMw`~hd{r{>FM>Gy^6m3%cW-K-XNWKG5Cu* zPoW>LcNAbwVuvwO0i&jf!RrUGM3$hG47U#UI@{Ejod&G?EZ_awf` zY5ye;`j%I7d7F*7*M6f}Z=U2e1LO;Q_bgq;h1;SweF@jv*oe{L^Y3|2L}pnZ z_81fA2oED~C5VrIT0_67^FbOQ-nS-XU@DJ-{{S^C`TqsKrvt=`WT*CXa%2Bfqr3uI zDiIO1rKL7doV(|6DQPu6>@YYfDT&E*?v5CUjWxWi^e5yoI8l`u&+p(VI?k6 z{Db~)$kz;pe1S%8K(HVA|3m2fbf0n+K<^$ob#-J=gM9UHH8g#nrPx8b`uWsq3=mWh z)&L@Mn+0kaFFcY0RsFCXP6L?Y7DEZd`BI&@@admn7%&%EqN1X{WmgjcxA6G#R2J|r z;o$Db67QzPW}wH6eRA?x*rZ7O{QR0*Mn)F2a9|U#IZ#^xriBkP_R|2IKZVXANDFo6 zFua;k1!ff&9IzqR$rBS3gv7*BN=m}s-agRnqp+q~J$S^c$e-QnKxD}*w!or4p8iJ{ z{@46Cw-ll^s7#sRRFneJP{P|x3UL8{hYAQY#Z!?*3RmzT`1klfb(+0mK$@_-PaBY+ z3n6aQeqf3Im(NvrGMMuJ&{Hg+zlwj({Sg8`hUob}zYy7{xf1$Hu>>|ybVac$1riTn)=(9rBFrif-k|Q}C4K??ubypTdU_O) zx69}CF!cunWl94}Hjh9^ZqUMZ2h3%0JY4_556HbpL8%MC|0)qnb~906ZzVdJkdFfc zB}J}pZJ@hbpDID0Er9QnX8}dJuoVoT-2YjSj+d9kTJHu(p7QP+R~}@+kxjm3ba!n7 z7R#Dhhcx_uZ@GYO1vz<6ttV{gq(VWJVh=?{RsnDDn!>_bqzSr!v@s1X-r0er5DV>F z1^{gzwe`a-SWPfod>VesUoOS05`9_&kac#le0!?~61qz(mV*Ixv8l`@KIbqqGxPZT z+-27O3GwtZBH@AqCMoE%!wUGWg*7LIBe1gYbPFBwAoP>K?-d(fjJo5S_F4WQc>;N5eD0o8OY z4g|=6kdeL56$WcC7B{y6hTy+bz&&9`5}<<>D<5S>pG@q7M zn2^JQpM2Z}f`2~>#O=U8MnLKbCl@JJXMSQzG9f#EMp-9*LC=E&#TW)GkoNX=XIGDq z!Z3!`RuNf2z%FBYVi*8<6FYo*Y=H;czsGV3e@H;{6X|f<0|E4_S#$EVgvY^20LAM9 z(^^PCz^4bXSAAVS|NoEG`+^2mRW#@*Lcrfg3VBUvHX#$-PN_vb+Bt|F`jlynm1V z9Gx5w<9K>nr>D1fEw%I#dbZ=LprrI;*re6i-00~o9{;MBf%wqB%>q+-bnW>U2HH}5 z(u@CW2gVDG^`wqF)`EhUdA#z+BqlaTG3M)#1Lq;- zNecfb?FsmVXlQG(qpbni*=90wA9LHnZ$|CqZ-h2G&_@CU@CpjYhCr7eR zy652m_U=~IKc?uXf}zhaxya*M>Fh03RN(y?Z49Yk48=W^0)YLt%+`Eupgu-JpvnLC zxB*LawUnURJu!%*7=c_=R)P=0%1yYetPY;g_7+S$JhT4~$1VTAIVzwMY)Fu?-{xz` z*-4?o>(_EtR=hQ}-0H^0A$NBokn@u#ikcN(0P9i&xJ*PBnO%Z2WG3+DuMyZ<+SJe| zKP7b4ve-jV7*?zxrE4dZt!m>evCg@vMX*4=I)BSxss9A43OEbqhm{@IZ0KY{aJss> zXt7b$Oq}GjeKX~QKa4yU|B>|J^`4B919~VD2N3P$^@?8)`>*caf01T}6 zGjE!RFEWAyrCO|R+PbRsN2zlehdZLDuG{INHlSIg`}YR@P3@A;tVFNAFn-Rt%={L3 zx%@1}8JTuy+5-ofz7swUIZrYO%MEm1XeVG_j`loSy6yGo*h7PXz+sB-tJ}AF@Yx-i zz(Ql!Y}GICiu6q1z(L{hh>25=!!X3+&(zwCF`U@hEv>DfzaOL#Dco@p;(7OVNPP+=&D$ohZ(WQ6l=gRVN3?;XzGa)6$g$lt2%U>@B!#6*^s zjxnD9#lqR$z6&hIVnk)>f*XPBysjuJF7MA~@8}y&^Y}(Gt;m`dbZ01XJCyMA*9f-h zB3>F?r;)`pE=>E`wjwN4$v=h^IRNL5Y%)5hR+XXMQtuo8;*#NLmf_Db;-j`w)#nuK z7&0MO`ff)kFec$sQ-T9<6=s1}$N>{)>+9=posQxHvU6*3sHmuZDyYgr49f1bI5d=h2k(*V+&{KXsCboud(66I93-=1`fcn*#ugl0>Jo>%aJkX zC#3<2FiJ`e%$M(Ls;u2$A&^!h$DF8VIxtPH1uEe48e8Bx$(&rlM5ecDVWFu%umTPOS7lBR`z5 z>IM7Bv-P$@T>u5f2H#j(S6r-3EBN+Y^k)=mABiwmJT_j_S#;e`tlcwc%&Krv5W1EFafIsG9xcBax!fkiAFf=e~`uVHB$i_KovcRASy%o>dAU#Rx}^!wkQ z@%8n;K#4-bec0)pQiw!PoiIe3_iQg++>_ci&e%@HcgBZNxwxGAKY04efGE4D+aaa9 zyF;3xrMpp3T0(|y=^8>Q>28n)=?3ZU?(UNAhWotVz2E&izh>r~vt#YG*0$z9555zV z(D6V3EM0-YMo@UTbIa|J#PLcM!rEGSor0M@4Dhxh%q3tp#|zG3JUH>JBatEa;ljU`7a{lC^JlB^2TXt{Tk1ZbmS}Wu)`y#ZJm8PJf$o^W zdA^g|I6FZe-QaZH>;2(&%?koiffS@AK5sTfFe4!+zkN`cc)qVwbVd*F7$1M5_VRFV zqz3a5Sx?hqZ;AQ(UX>x=G*|mo`nCS{Ye_4myBGo6QO1*uj-dr=L=U$xCENo!z*ajm1z zG_(kkotO~xt7bs|`{c3^Oa3DOuUd}46(-=&S@Gcw!YB5=*WIjUP8rw$-HogA_2vF$ z@qO(L#^z$g;J2sPK8oY9sHFDs#P5S=tM>~(N6@oi%=xPAUi-D&Cd(%`jg0?&lPn%H=gagcix zaB)peSUjE|ng??N!j*Xgks^>ooxzC}41(YCY|EAFTK44T5$R3i*Xhs;M|(o9*u&q&Yuc&PVznJM@7fmyYId(G>YABp(w(dkDqs>zFH7GOKo-#fE{v zwmIC_XLfyax7`=9%*0j#cpypeyk*0NYcEy|SQ$>VF4tm~R+=^@ajkk~@fMFaO zJwh~I7I$@ff*v=|G7XqXmf)jqwzu8A+!EozVA2%h6J2se5>G7By{O}RtU|$U?}D@0 zn+?K#CHjH;=EAE$kE@E{Q}IH|e!XUJ6*c(Zrq_nYjfngHG7j3|peH8Qs6%gQ)hV&2 z-10nZBw`1$otv{WN~KH5LHT{-(OjvdwfbDTD2>wfV^MH#Z$Yr(*z5Jw)pa0+Fv{-nA&L{V8F0eTP zFP#3!`s~((-(|erK?duY{yhVrn!w!@e~*6#H4tOjr-<#1z0W)O8gSl1$;0SD6^)%A zSDB5@I=gr-7Aa@@c-`__$k$hF{Gtkj7jmiSk3aDS|FtKq?5KwA(7C_VYJVj^#ZL+l z+K50OJ-@k<_zcMd0U1*Ypl*G=pTu036!)`6L;+swm_|P6{GIDQhM-Q1Gl=Gg57tI= z<*zOHp+CB{0vanQYHs|;BVjUD$`g1b+ zwJw?v+~_dxjhU7vq4;&a)~XjqIT8)4V9@(J7Z~PT;ssu``SXvXFB$H}8YmQo8Gg_V z3OPHzt({c{NH4;6+3I2l+HD32EUyHMUaf#j1F?+Ds&*VnB)=7ts6wcQ$v?Pv|60yEX{&G1 z=TCd4_w{J9(k~b0y#5x$`{kyg@vAc?u&?sq_+JbOAFvB?!iwk8=EUn8rh&&H0{px2 zvWoW4=JG(r;bK-0r3AAPmc=+YLz0D6?3d|p%xtFc_A9No#noQy z9tgw#@NTS+H7oudH8|svYSVw15iaqJP7&w`>C* zkS0J51jvuiVHF?0d_{#t-2Ja zzi=XWt#wk-mJahAlUj@F^@PUNFmOfc;)|$YI!a+WiXHD3cS(R#BV-UH$1Z4l@L*}R zQpzH#Zi&*b=!_V`P;T^6RJ2v~4yg=<^J#UcZ^Ta;UaD-MqEIVSi}kH3aGc(`VyP4G zYL|f(wbHFnji@XLqxUIYS>M&wXR?)%bO*ie6}NcsHUnj)OU94;(NOLf&W9t$D=fl2 z4iI5h!g^LQd<_{=saXAc32g!&DO#pKCtXcjd_2y#VXD;RM-8`-!4|>XnBBM2;_ooK z>uYflY=V;;d*V7Kn6FQpUO8GrzWc4jq~sO_|6U)ZnZHTC#8BXdv+UY-%{`R7G);qi z%~#_77F7F9{uiX@-VbB!0V_(Gq2*rA3G|yEd{`Nx^KCUw8vaXY-0jh!4gJ zHBO-GOwhl+;1mX?Yx-M2r6{eUb}_gv<-vBR;d)|Lm&Y01NXsC7X6pA(nX`@%3-Y+t zAtCB{z_1}iXSdx%#1#hKWl8F$#c8YPc7>0xv3~BH#dPThFxZ>WZF(0uN zL=lQgl&g+7HA}jU+ec5A#q}dD1>vRJ6Ae8oG<bcy~-xR1rm5r)~ zv0Eu{x3?#(o}@8)YY`CP<^MAMK-9ANFSwNgHLH=E9m}NS+qr&%!0zBD{~SiSb5B0o ztrT!yD{}xu&YoX>2oIG7r;*lAJDQCBF#Wh8yG@nI{_ybd{4$l)rp#s*rP;stYC%00 z_F^j0d54Y_4L(mprZBMM^?P}u-M@j=^2095G0m>=Ve~-3ssXi7ap#bV1wSX(hH}!g zjB;`J=%~sL@V5XqvppP8etdsL8%sifaOdmV7FkS2H5rM{I2tR|?XNyc5aNSJ*pF6Q znUVAca}+;DhQcj<%jU|$hVqcUVZG@>GRs@vnm@Q_StaqKaNI>wFRhOGIpj&h%h{A^ z;;#Cf?qsHZ1E9j~LyI8Hvwgd-m}?(2V1}aK=C$Tj26rn3Cf{CWMVzgis~;qSLShzG z=EgqsD}J1wWAumVe=Rv1npgq*C8111z+t60v+)S&wlH#V8zW}NXOtZSNY;$u+3ofq z_>V;hV|%Bk?7X&sXVKn^s?f4)4X^ zt@C_@qDHRUNk+HxXBwn2Q7-=1$`)H=k%DOv;7RA|rNp?oIY491Q%7IOyP_k|E(6m( z}qjdX693o+6vQtm5 ziqS;!`a5vn3`$lzPn#IIe@2=1_NY_6UTYN*u4Lnv_0!d|hy4be^<5#$$JM#u332<0 z!>=(|zuK4DB|(1{Q<*^&BpD%wP_4)@(Tu#Ja;2zr3Lf;Rt%(HPbPh|IQ^@0cVnXUy z19jF|qYs^D>lx+I?d{dPwyJvwKaMtIxHvaZZm;SO7BlS2kvigxrEH}U4eZYbQ-uOy zsNpKrI5bVp{=m1?(&MjXQp93F+w#yUzZS(t#I&zvu_!l&(c9jS7IT*>qj<^RnzlI> ztpg`u`rpm(don^te5@-R*B7__Dk3WuRYK zz%%sB6`@z!nA_JcW-tdu+bV|q3_XMjF);FB$OM8vb5iYAO3s1`n?KAI$jQ%rw&LNh z?RU6^miQ@9!-%?jD82uVBU$M0MQ1gE`P*JL%f(BRX(~WACL`t#-N({2_B3*ptRPa{ za3$fDl|1%Ol8ux!KVBehK*rK%gjXNTqaV&fm;kaLP_I+zIDG09-C`M?PtJJStrOB` zvrjr!B%tDFb5;1>#Yp%E!qy5j?4PKehIg^)$j>MHOsT{7i%$9h_2I+TAPSze8S%`cbw5XX+>Ze!6W@o4w1m z{SQ~eJal%yTg5ydEDVlLkN4{kC-CAtt}YuG?8<6?5lK?P|MFjJQ;7oNU&yfW!yMNN zwNbE>Wa5!>UP7#*O?os(hBX?U)uxLcLm_5k4e9?Z4C@AAng}g)>WVTqcIDxgx<r!e+Aa_{?%bq_M;2jR*?8j^u%+a|0dyqJrj@SwuWnO6Iw$mY; zfq+~Z+T=j`QK6rN>)yi#vS?5)(b19q92=wLm<@?jaEP+^Y@UI!1(%^nO)AWDNN-w46IvGY;4>uK zTuj9Voy}TIo>BZVOlL~E9^rR0Q;kF7${hdw&#mzN$LaC}DgkDikJ{JH1=6e&1Lf~k?B83RiT-*SU(qSrJ3heHYq8Y1*;X_0q$^YbLFJ2`o5z=lK{EgNN@|Cdjo#>f_eGp+vS29d65# zvuSK5l_82`imb!Z({GCxX!*L(%I9=RZoHU0SU~TfwAaL2YBKEU>m0e|4HWWQ6SG1q zMgROrSESh|DmSrz#vh3Pd;~3(yTZf2GZ|s|SPh%3qqn@qfv|r_SWP*n6?@famjkyu zPRHU9X?7WOXc(&coS+M{Xt);3z6f6s0p)*@d$eRVQ)9TdiLl<(#@_zpIq3*>u_pPB z+f8s%an;s1*H}+jGuD_Q&5dLt^4JXDeihffPexhc)!z1wGNU3Osqme_dJHvpl+DbA zna%PNIAou%K%T%%#bveyBrv|~{iXgk^i+tS!*#!(nuQ&naCiv<7tULLsnH#HEj2Y* zm<0IiUe%o(26-wf9b9m>DHRo}`lVeUfw>Qd-z7un94Jx{#v=IbK%7DD-gW*XX7N0E zBFVd5G^P61@57vsRcc9466ryzi*deBhvSn|OOcdqFAT8oAbuVI>*?w5O`di79(eN` zz~4uJ(?WM;?7qP?f8Xm*{UeSFzpnj0n~o)UBa3U*ZcjNPQcWI($fbQyU{5ZA^&73c zdC}HtU~U5`J(4^!asON?65dW;XTO)LQAYEuGgDES>>?63WpZpERGkLyd@8ZlvX|Ff zPvY4kiT7q}*!pHGoVz#Or?n+vwlztusxReE?E!fVx$^{n(qJKh{MSe=U5yU6Ge$A( z!h|5zu_r-n%D6{v`C3A?t0OzJtyD_dRel+b&(+;K&82wa4i|;!WF3_3SJ5qpF$7qS zTU(kyeZ9K-d&vmDrxgdC1QP!!j?c)XX}y1vM>+KpbFo48hXIyFaF+>+x)gG@mu$&Gp^fmYNZ{iwMaT{tU^6BMq(ZXM!yoIm(`tK zTfqr9?k`66^(ym2-vA`{|2`^#-52P~@_KG-F0R^%FIiO;{J_eNSgddk4XyrM#TQVc zwXhNZ=6Gi!QQ=H5&?b?#0*D1Quh7S53fN>Y=^*{J*n>}n#iSxR8LTYrBbSX1HZ8PM zzb$;mp-DogQ>N zi;;J%`VFa~G$&GGF|Hd|oQB!%PTRR617?NnqF|yd?F=fNsKo1D_lvL+m&Pxv%p;J@ zVS6T@e-#z{NE^dj5mlS7MWscRNT7Wp1-icmi_9{XO~$?Z!A|T`vMG~Y;gLwU2_zso z&kMnIJuF6EpVG2INJVgj^+)j&C0>hpj6r>H$xmq-f`zYH6wF6aRme4^n1&^B=z#$W zbIr`5LDmLaL%&?{@}vh4d%sTzHzb{WX^(8^sD|&j@f3-q_z=1*<90DJ{j_Nc?EQnk zr)K8rG=)O|<{z)roA^Nau&^uY+58`v{;QAJC8XHN^^qc@m0%Ju)FYSRFZiCyhX@BL zgu0YzYGWL6=lpyj#~03!P!@mDR4E+Dt#!G}=463Yvsadbgm{3KiWF3DxnYh02;>)> zQ~`4e7XB#7F?&cqZV9pQ2zy``$PXcus5GA6lI}}HYA@M%$uc+4G=A4PHE=TcMe2Dm zm~WM`-YO^&g6S-!9_s;02eH-+Ev4W&!k#6n>q&IF{cYDXuQYt5ohHvcn()C+lP=wJ$x>gJN30N%Js$YLf?HUQlf0r_p;x{=DR0 zmgSQ=g|7D%YVm_LiUfi+D1nCLmib_Y>7jMM9IE$na+Y84i4SNZ_kPtsF9A<#MU!>lZZMzZbG=2uuj+AG46a+nP>Gm~qSN?qI~l&0 z87Q&c5Gi57*jVQpsi|w@qYqCAcyt}|-v>30V%dfa=RZDHd@&m$0Bnrnib8Y4;z9Qr#-zO=r`6zeT^B}u{;d7DFKD`1UvCs z;;a;$4b_QbRedoLh|0q)XT~8I;SER{F*1FYQc%3*cWR9;l6H7K7?mwmh>8~C-4iz{ zr|&ZcGEL$Uw#~jTM0Q-}d#XJFGFn`^r0?SRGPxHD4jl#OQ1pnKsIU2m`t%wjaT1+p zwEWFay!h)ni|!!DcM^+Y2Bk5QDYY=$18VG=xlPs|pEVV+CfV^dK^tVG+c5u(!L;#L z5_8vy$3&ry;c3{{{`Q(~p*xiPeFo+t`3uo9;3KxGRquX>XZ>bEB|X#Q51KtWe_Jv6 z-+!1~tcV*~2L_!nOgoPPP7N}A!5>wroxqj{nx-zWxQ z6!YyNmcV!hr^AGcSg~ZHbL$al@K>Z=`JA83M3Ju&Z)FSO+|AN_#r@Gn$?zI*R9VyDFr zb?LXqUUFkrN0XmMHzO|8mT_eyEnd}RsS+ZY>+#`g9P>1yBb2^(*F%<`2`vOa#6{z> z^h>epC&Vb2K>4=+y|u*u-dYXOUYVZTd8b@fPE|2+CI#yR+J!wTD*slUmZ5aWKu)89 z29Uo-QeZpS(iqG4hj+>EufIod{?XwPW}d1h5e$NLM&uJP#Ya)^iY6wd2|s@z>EwMJ zqw@t?-T}lK`YE%ZE#EIps+ctbrgBROWoaZ$(;kJ9E`h*HKCll% zX1@nLbzxgBFup+B~bjQg1iwCEd> z3M|!IQh_=nBkI;xd2v)SlquqmU{ZBRO+XK}o#y%Lz<0A60ucWYag`CEbGk``-9%jE<6CaP17*UI0_nZ>8pT$WJ|!w9%bel*iPZ)oHrxrhZdHTW*PiR zTnOl8Vb1PG$1;OvaoEW?nnXe1dVb!AeMWoQ4T3R|bGqukf9qK_3$+hH2B_E6*8Qpb z+TwB*cU;rs)RYlAA^UF*KIt%N3HW-CVj5NA|L?ZMU_^`ULh$-}i_3>(@00QX` z{>8pz6JhjWx~J&V^TI!P;U>O8RslH`M6 z86oPak5i2V@H-|36`8E(LUIpwH~I4M`AOk|BN6Eh+?Dpy7kbNO|6Zc~De4{-AJ8mK z|1&4*?c9d*gVtmVP0lk)Ja=*g#qUb=pu^WE*I+>sg7T@~t{zV`1BwU4j(9YfrRy>g zog7*UuIO(Wo<$Nv_F`rQZo zC7M(W2v@)`D4v-y+VV%c;3o#q1DF(@n`tjyvplVO$;{h58*x>LpLs}X?opC7LtE%( zW(JsJJZxAgbn@DI8(1$tUc5nl)cA@9l#L&c-!7lu)5(o}m5y4ctPYp2Gj?RmHDG#z zJYK(DEZRc)xWH6;3%q+I^O*hp5iA8iG-!gq3qeX#OoF4a?@pQRS}e~gGY5JR73)}M z#QzDK`pf*+>$&^BfuK*PPXa!B!Z3G*`>6c%)ncm_tZSF!FY@v<{&qhwg)p)O&8$c zgz3j)2z>>pE5xa3PweL1%59$lkxG#UJfr8lk6c#yXUAY@;@G zO&?!>E{$EEHF2FIfUWduw<@OPOiLk_xS<*4FdhtlmTD!rzdg%|^RmxSKF!lBcyk&C z{fyMTqqmLSCEnQfPpU6KJ?v2zUl1^`i%(~=!WoP^_-J@xN&JptCH{SNsI1tGE@(yF z%Ry?}#*sy|U7v+`dZZu{6@12VrM;8^VeQiyiA_IQNSWW)2dAZS_+>OzssHFmf5sW# z?(3rD_=0L2>i6t_qo8rdT7H%(njtUb_#?uloro~(^e(kWhd)B#jP-cPqmXWg!YqFT zXIRhbgG+j~Um5FvO70bY`bRyvfE}i5S4UAsMKT2{GA;L`<(XEfsfWX6;o9sXv ze8LXqTgX{`t#SKD7s$gbqztk!o)}5ygWdHN&|@xzM20FGPWSmH(U7N70|T~L8fJ*- zMCZ-TWqd?Y&R;v@4;Jrk78-8j#Y*pZXDU1R7nqR1tmE?zdQT!7vi?>Jf_Fjp^{vMN$O7)B zN`E=Cm}a|j3Y>|uR+CwEr{;u)_iW^YAI!c0xC}rm3q|MNrpV*EbkhWgktry~6VZou zk1a$`bmvaljo4WRW?Re$-rK%ME_J{(#H;5|FA_$JtcK&Iy!1zZ{ALVk%6VVj>BaO3`V>*A(!MLMCG{s;TRvZ#F(s!`=m@Uen@llW%WByZcTp}SFRB142rwl%Upo_%)^fuHfE`OZx*nD4 z^Oc{Uv9UJnHQHSPH?q55!@XJg?WOZkG>k0hgM-Kxc9v3>IteWe55jVCfhMMQ1UySn zz<tvtJ=Df4;)41(e_sg}_+#YCNuL;>kS83Lx^a;CMcd30Y0ow-#bj zW-)iJnvrMfCxtW4(~lvyIZ36ipPDp~R5_WZd$-e@)Z}~(VWVrA5L-#cr?=UB5FdJA zg9rqyyTnr8zjDss+ht>ltltoM)zl;DG+di9^W%_jeK_+dn9t*RhpHtDA5)eUnf?>2 z#9Q4=YKkN0O-c~g&Xe=Vp09E;1td`O74vIJ_v|GG^;5LF(LdaUuFE?5vBB(S7qDb2V;WsNj;S*j_r0h(%6mtZF(+H=$H7eyl~`Qs97AuSf80U z&yMG}uRO;^a{k}-y*a|g$5JI}4`Mzkw0O}7&Tkx`^m*E}ta-+BWiM`AS2LTg`*@-A z7IV8(PP<(qoeJ}|h1l`giyYZvRPorsp}dciKISlMDblz&#sfuS-nkTx*)Rf)^j{*= zh?6b^i!CNMG*yypj5yi%_6GDLjzZ6H%E?8C<8||%vvc|2*?cIAw<$#aU#V^A>x8CN zvDyP3KhDw==is4(FD_>8`c`F{3+G#MAc`0q^igBk5B&%wIxQ}+hOpeo;$!fQHQ?gH z6Rxq(Zajah()B!N@mL9cd5?A!BJy$j=XQenLZ22DdfRre}&H`!En3}!h!9r>I zLr#SpImmp7gvA`}a(qLc0{d_D88jUu`e`Pdbe6n2Xt0I8NTwJU)|B;Ja(_@AbZH=y zQHdqH@`8>bsd+6`>PR5WL$Le2Hil-LpT-CE)`3I`?JASzNs$vDv*>!k|2g!`YF_^p zR1Rgnlzi98XDdg!CZ@+cMhBzB9VjHUw2#nXY3P_! zF&Ap9BOmO#UEpt-3n!aldHOoNW`8!C7y)BKEl2Pxk8Et&tC~`1KGi(+ZmOIZFC~1d z&%kjgQ`edaG&2SMNy|^_&|ILz!(+&#EQLt^!TOTk94*LZzo1;A#kU*>og8kVfe+@1 zp(KkGbN6q~wqhdh{^3(|wRD=JS)5AZFz>hiuLu{gD|%_VLN#jTF|_<7^eWCSxyRsuy%PKjo2b-G=cfFEg%EWtpnDdP7 zKkSc3;>|7V&1RP0vJBVbR2cuI#m;i4NvY|@e!82sKOF|MB7CUHErn*5>S+AaHuYa* z-CzZ!`(0OUGk#Lnjhrn(!NR6s=)nk>#@^h74T;+@E}5Gy>0N!w|DI7a;DEQv7IS9? zHNa3*)IsthL+}u^I6IcL{rcni!x8cI4LS`6KPuT-##8>l=$N!-;-&~#4`?6C%tqT@ zm_Xjpr%OGVtQZ%zOoJpQUJHWll2PB@L%D0KM~9v7$YZky(ZrMtX=ijQdjZ_(vE;Yy#kW(V9-u*q6^hv;@g81&p6CR5JyF*=2;IW1kIuPL7(f~&q z2S1W-J(hv&7kA$!#A>Ktp3r1=fgp*t#%O8qw__Zu)L`2a*`#tJn z1u4GDAEG1P5c)eQIbSRGXb1q6m)E94UTG{}a4noFeCS~>BAP|Mm>czr#?ln+0wLpYyF zF^$(E@y|b@Ys`qDpcL46_^3f{QLUBt%sI|m zOI|KpwHIxJh=WQfaq;qzljD|42 zRrWrZP-qK$j6_?`$tXG#pHTD6!*ll{3iIzfLj!%bMeKOGP2JauiZU7Ljq9#j;V7zF zS0nhh$6a!mvP1bAjsg;m;j}x&cNwGxZw^NJHqg;o_p|suYVg6~jl$Kx_{&V~yrb_vT82rlwo?G@r=pZSN@9Dk(wHReMI zwtc3|Eetuy3K6+pmKUX-SSg$is{lyiv>l^I z*zkpU$o@A)Mq)6XHQ#<@8&}Q*z1jt(xH{cKbO=F(HOPunva>-}3aSH#?D@ zbnv6GiCL|U*{93zGLj)S6r6KL?R1;b%&M(!+~*2>X;HJbCtgbbz`&U2iiNl6j3{~` z`Ci;ixe_v_&K{FeJHq!#MW^Evfp#KDK;q1akbU#Dm0LMHO0C9JQI|V&>8Fo z{m@}&!4jqeJf(jA+8=zraB3^B7@m|g$}gv8Vq=3xOY4b@qOO4>!++6p7}oW9z25XC zos|L(RNh^w8ocpa+_?IR*7knfK~6Y`(%EF&zF-W~Q1;n@)NOS%lcSx~Gx^NTAem$9 z-8_GIr}odC%`1NE;J1fSA7f~Hl?a?5cuGd4-`*WxW#B&i&ZsuaUqv`1ibE51Ld6xX z)3uEw{Fa_2MD-<`#U)2-;Qg&W3);Qek}vzyMMJ$o2B>NUi^gfQ<1gLec>2qrf$`G8 z(>|KA8$l3{W&q>U58YMD%o3biPh(FcgS95uwzVLDhd0TvULJfR_ChY^14XBLX@`0c zwqX1qLW~g(@-3`UDyA`WbWmO?q5_RQY=P@(Ic~FW1}|31&N|zDoD3JfpvC(Li$LOn zKthY(Am%kf!u&#Jdg~gu8Oa?72aR}cTi_4tkGn14g_m}WRcvA^#G;^$;fdU)8$r`{ z;&nzZ@4GKqQIY>)rvTZZ@%ygO=_*TS(ORYduq^s{`mwUjay{|ut5YE@2PE-2H@B#` zSWZC)|56juHNK8{7d9M|l@{^yr}iXlyZ1@rK};MdHZ|67C0*IWH$%kt%d^hVYgON< zjSA@8pPJJv&aWwn5Y=0>#nJBZ>&NyFYog@jUni`1Ln0y)gcQLNvvNLA`D7zLe2L~4 zYn)v@3oBZ=g~IlB%7i+V#!2A-(mLI4fjK()+uf0)>0r|n(#OX5LKAY_p`|L~EDkB- zcIx6nNr!ef2kGY(TVRZzg!m{jV3&UKdVq=cPxjMVPG?{&-$j&Q=B(wWXV%)7B89yC-iCG4vS^F9n?lAdF zwF`eOBGQQ|cysG~jo&UQFAqpcBE-SP4NSH;dLW*PQs5d%oBb*o?cw<~*1~%FrchHz zK}7$}ON-vfTD5i{MZe^jr>B`T&g^Se*H*hGV+wMuV9m#Y)4e`@AFuX-D^AsK1U&pO z1Fsa5QCs<4JjS`CFNeKL^Vi;r3-P>GI}cXJ6w%thQmC%qn9HQkv!wa$$Wq&U!!d)o zbY0`)XC%GpT_UY@{*&W5w|IH+=G2JP;M7J%VdmuA`{`v;n2yG$!fvD-7Q_0Tt<)o1 z77t#k3wrP53EZ(-e2&fvD-Fjp_RA9Rf$@iVU8r?LZ`qSK*?qajJor5w(a}FoN^y#K z-qFA8^v^^b7!14H{97A+6BR<}U_W@qF4!hAP!L{UUUvG0Zq)dy{}RVmL1=D%du1M( zb!V9jhW$lLo2x<9uD?F4K~x>IzTf5x?FmvDcS|E{KYS>-+usXHOq9i{WdNO?o^tI! z==;tLaW4f^szZ%LgweM7eSP*{MCb1t*ZwhP5W#N38(hUna^+B_Rlj-P$@Tv_n!bL0 zs3Io?mu4+O&khe|+_Es%6K;Q3c_F=r(w@BD8?6mGBQrh>vc3wxy@L6 z>%OI&IqZEnn)OwdF|8Ws@8+k^eAeeTWr&Ue zI`>Xzf833Wt{zigjd@&ea@(B5lfk1Ra5$`$$&BRC>al)pWrxex)>dIas)b=?2A(kT zm;YB7XIk@KP#N@D$huU2ZG|_45LF{O%K~(4DVAv;@4^kq4IlLCt@YhLo7pgP{3LYh z{LOG7o+c8@ml3qKyd0LC?C$PC%7^^$*~7yNNh4V0aXyY*;Qiwv01*YkjCA~r z!n~Aq3Df))XEzoZ+d)OM@G(4Qzh+>nxo`;3FwlINK&DB%9lw$Biys%Vom%7%|2Y7X ze)psx#BdhT4lX;Bv}``$!0|3jN1?X}-&bpGUR}*AVoqUddGjgRuHxGEkEA%+=VfM= zdP_PAej!c!!2ga%NI{NnL#<#yl^FvckpmNx`FGFV-_2Jlajee0pmG=mDKcVGLI%E) zVN{mZTs0KeYNU_QZ&9#Kd1j5xs+sUE|3qM?&;NrwjWaqyqkMFl%ks8~iQ?^2FE-P@qd9`(qzF|CM zkWxV`KWSx@#>_VqDEwnze^(pTbY-aoRGfc&*RW4DV4`uBswz8eKI24s}=6)S1!- z;w4%vraX5SVf7;&g}<6vt{>edmO&|<6z3lLyd-oD!@uSfjtGm2!^19EXlev;^ zuiQ!^X)xR3C!}*eETbOAs@n%5azb*59TI0+oDtQomRXuuz$xJy-Pe9k1_--YjVN;Q zC(LT9{lB98kAMFP{p=wiC*MuJOM_e!d9&MnI~PT6X&X51Y0(Z{|KR!Vf*9tgUKB=^ z`JIX9TlkRz&%>ixF6SCEes@5!y8PHa$)R zAi@2Kt@1m4#Hfz}zUOfMou^pzaHS`d@cgByqy&+R7Ip)dv%QV*%G=BR?=V@V>X(qL zB*<1@@MCVi8&dzT)Q?j$EaQax0bK8pdEx7ctv|I*d~~yTdyajAg{6 z*K?=g=)`5-qwI_0zbyD`4-?ugOMpwG(0IR*P^C+lnbVl!{v z+lI$y;8Wke8&Xmd3eFA@VFU>ODl>Ed>a^6~af+9CNjLrN@c|Lbx9#;%Az92>%>6qx6<#)?;nWelt$M z%)@iV_MrFCS%@hV&X!Kv%t8WwxV#t@FR#b@r~Z}uLhxW8x=s8b zI!fDmVHF$0;-~i4a(yxjp-#wTJg?=&Sk<@1pAVC`f;f;$%Iaocr)vGE0XRUT@6N2G0rm}_eFuX`o06m0(i1ckNhZtEF+5orxvLRMX%yX&rhUs$Sq z*9~A8Y-jJE0kgXes6x{{@b?gJ@!wsO(5caMNmZGB$-J*_IKx9FT3cE}rnKjPX<rmwJ_XAF)%AR%}=T^%dW7{OR-e@88M! z`QU>h3*&3Cf4BR6jWIC;HbRdy31zwuV`m1$jJ(|8qu5v7`#&y8;{Ooep7(Dq+s3BI z6tKUTLnl z4mCRurRZs$D<8LGQ{d&LnQUO;Q1$k~fta=V%8ODt+}}hXUi{Fph(G?K=H?bwKCY6t zm&gEk?$8J=edOr-0i@#Y-n z;tcG1L_*)v-dp2~oL^9<^+h!Z7FA)ZVwf z#`gYR;U6DkdD_r89NBHW4~=5g*H7}a`2jos53m(9bQLD;_}{&rsD z(zdp2&VP-=AA`1|l8$8TDgpUgIi6;+Z6rn2?M zKhH{OS@ouPJ8A93=LO~8sqFEQ8y0YJJ7mKn{y;XV`3$#m?HN1CDa1gj$-L1IJI6{o6^w!Ss}|?pc;g!a^0LWrKtm|A)DLh zc+N%mlnMuI4Y*=2)s0q8#{Uct=XuvCJM9D3$jn{5vPyXg7U-_Ja9)(EliBeahIj=l z!~oqzZ(z}p+}^$Q#X*qb|8fDAr?7TE1o*!~0a@;HX-EdO16hyn(@rAi+4@=ry=4$k zt8~PW-o#oB?x&D4xNZ@>v)GK^Y%2A&q6eLwA(amRU2zteHJR>ev|M6 z2?Gk!W_9HoxD|2yC;ZooC$?BVE9J&ICztlqm#>U(y}hzwXNokkn|*b_76WNV%X~7q zj?DG5E*0zD#-?Y)e3-U{#qT2zz)fh$h)8V)rnA_F!G7TOyD|BB^F(Awe|5xMd$DxhE6)2NTnZTDEV~^@@uMf3r3dDV;Y2{ zW(_0kQb+ek;QaKVTyI6*o09MUVec=)s(hlxUwm&;q$DJyK~lOqR6wKzM7m>xfOIzq zNDD|eDBay5-5}j1Y)ZQG4BzMfyZ-0Jd3CPy@_FU8-RyhjUNf_1&6>47E6j`e*LhyO zyz*11hwM%At_+pTnkMb;(@Cn)9=y_nUJ!#)Wn1Dp!tBsbz14`m_Vt;8yo40&vk%EZ zKn2TV#?#yHkz1XWEqK!%iE9LwgCV~`{18P!y|HkuN+BL6mIZrMzQr(M&VgL;8-%jK zLu02sk8peWe-@&AIX_#jhAXEJ&Zi*oy81W`#cvj@B7#r)l%UFd-&*$3wf>Y*i74MX z@ODQd^#~{~q^#t`n%_#@OjcP)YDR$s++dZ5`O{f_iXYp;9@)B|jgT+ho_2Vsd8PEe z5X>evk*zn_40F!m+Skw-zk2iqULvCXfR>m2T;Qu&31w@QTHVBS*=+Ngovf5LVpsm8 z6ae^-AcVvx;OqV(+Z&xXGz%aN$##*65x0|Li7j7TRh|ssp}wcb1A6*b^RTD(>%b8# zVrq3SN}&qk3CCK6RH;^2LmkR4Q?p+{ZFa7L-gd1YhSM$N?c?Skj34*jQr@i16r)5v z=lD!IXJLt?ke}{UUxYb(l!-uetnqihiCs)?W?-{h{QJ!p&)U;=`GB6Sy3(+ilP53m zZt47!6fje95SpY|q{i<w=LOfzW7y!oyVU2q1eD4$1XG6#q5 z>z0&)I6`K8?N9k_?GY1fMugc>8f8wz2Bk4TEUl>@LicNztE5#Q;%@f)YXjY7JTf%L z>jwUV1w{00a*$U65>8$s$BGMTkQNsg|1PMcg$y4l#cjqf$M!WCW-9reKdc{$)E|f~ zCyS^qeCw(3nP{XRpw)@pjkI*kmajX%!lK;$JEWtLCAKx#z2|$Op!VJqQbOW)^?s={ zk?Yt@XI=wRH&#kU%Kh%9uklw26kIEd?}w1?EjHqL(K(V32)#mT3Ed~iZftZeD7?HR zI#NY5i~aE_qdfn)uP>C^6_s$;}5 zTOQ?dQNw6m59d2DgJUj|x|aE-&9J*U=Iz&u=19xBNaqT$0ak+a6)j8@1htId?8@LA zF2zu=*%ohiL#HXy)%ux~dB1YXhJ}W;2(HV$KlX4hglgDQ;VvhLo=7!5(}v|d5H8Q*C<5 zUJ`ZLLkYuwTtA<#9>6_BR5owCKSB@joRcL>eC2dGQ?3444)Y{SL4>IopR2vX6f`&X zZmr_cQ84OqA{ckIm(F1)U^e*6>Tve`OyZ8GVpU@(g_GHMa@2MOtASQNS-hR8iG{DKXQAJLOWu}2sx|Q#VYksSQZxPxsnDy6Yy14;rta=nqZcErZE~5fW-L9 zaE<`oM@x_ZVS1wWW}ELKK=p3!+#za%-O6}9h2={-Jl;YweLvQUILkFh0)*OH5)d&A`b5;0?+^CtPmGp)|$m(W0t;Og=oFthvCV8Y8Poy+>zC2BmVDd zDAY&0!Q=V!*h!TnW9B`l{of`iTVxSpEp8r~zj0^jfzn@{DDxBlL0fqGW4E%AvnRXC@??oNgbX)%vo zwYQ1dMIPe7ij$;4zsTSZAw_IA;PlK>WCU?2&Dtl8SyHFik%kruVeA{(Z*G|@ z&IWfmGO{8>p<16`D$i|R4duW40Wtdh1;Xz?Ua_fryZ4R*B#S=VJD~Ly^e6kwnN-p2 zviz_4&E>LKeej{UUQ;t4$u@^XbXuRG49G)yPwR#T6oax#O!5e znFBZqIhe5@=PUiC=h>V*nFUY?AQ zTZ8#yA=y+b(@Sv0V`yTSpwcRt1F6f6Og9sZagm@1w8NK5KiMiqfsU#31uQFCycFK6 z{T(MYa>`;}+vvEM1s`q@LHcGr?X-GW?G_c1P0>Z|haTmx^%TPIDH@%;HD6wW#fO(C zWX0f>NO?>f>1O{ZZpy?^i_pCTa8p5>!xKN-d->~UrrONS?HA>opzHfEL>WT?hiZaV zi53@6_dsLayd35XX8k3E0bB?yWDAwTD+Js)_M!WQhv9!Zxm((0Gq@=E$2+d+c={XA z+Ok=`)GcK{^@%LAtMk(SQvt$3NRy~dklGkAIr7rmGG8%6W&?ZFdT4q_w79qO=zIHT zk?8*|hFPk=mnf1C6?fa)Ygo1q4``3}mHdP8`E5*>{If{$eGkh0A1DiFD8`*g!5AU5 zZ4`W15sP#d84^S-sC+71cfRMfwoL%lMr`~&b>fc@Lp13iC%aX+4&r6k5iaA8*Tu)r zgU7w&4b$;rFy6{KLFEKt=|4s@exT5P%%f`M6u?->&<|lTd7o!7oDr4(4Il{65n4Cq zxj3li4u0UQN_CzjM@Plu)7cMQ)Hf5YH1S&9CgYjpecp{}%pDAyNkT3+<$iy1dutZ_ zQ_9O*jer*>Eu%E9N6PkmJ273j5|>fIxF!)R-d?fIml(;o@AfLq(v@6Qg`lkV@d^u+ zgIXCMY3ZD;B$Px<2|tMJ?R_Hbt}o_fxopU1F6KV}5xR0-Q)YFo2D#jG`e|*-TxUsQ z!B#}50$E_A{LqU#n3avfhfeZG?aR)K1j7(zx=eO=x2WR)9oMTA+G?r(dD;PP;WpG# zOU0o0AQHfJdu8V$biDTSaN{-cmMjzkw=5?ZrY9_vRE}a^0muw0{0;gbwwYxe(L#s~ zK13mTyNB+>@)*4>6umPkrj2_pj^kzMcTVz6)2{pKU{1Z4W=iv(iV`XB{55e&SaYwG zFS3~R!;$02APN~;VuB%ab8eu<2-oX`3RK7X@o^O$f?Hk`VNb+2qnMaf!pxn&4!V*8 zcJ_>bp}COg#E0A_A|isEaJ&BN^IN1VYU)wxpTv26a?%r3>OY%%en(cI9)VOsllbWwr#2l*gG(*l(Uyc zSeX;+i}wImRLZs*+#vyWfcAz$iNx=HZpC4@_6F>IVL?yLS)J0*oG9x1K5w%qyQW$M z8?7$)ap%6p3}v4E9sE~Vt@d0d$>z)JE&R%kB?!ODD~+OH#+V;21`Yem!qtC@EU|mu z36P__9hAzz;z!rHyEV&C=@}xZ_#6K|n`K!*lSyI$xG0YX1Aicwm&f(r<=NH+BBwxo z#!G3pbo7=fz5XFN|AExiH_|XMA;_Q|9ad-F*Ji_B14>}cBFBHnh$+(duF5y(Y*5HBT*L4`8oqpkUE}=;W}Rp zvLbk=OM<0!bP9v{`f9tI4zYTa+4p}S7(ra4tqD2qIb@hJv!dd~i(;p#E3BtaUz
    qCRVfm45 zO7k+)i@$j5-|@`|*0`tn2|fiqY)2V(2HdO%x!c=Zx`~viI`s->%g044Q1)nzWpxQj z%YtG|zTW)bBkS02V16_9B6%(GEy$#pKD!PbW|p5{TbD`^Epw5a)pq>uKth5$|M|c3 zGW+l$uqF%RP+bNqyc~vKf5FLLCR2EdIx~#i*Jd(D%coScqK%PJLO?WH7byK>$H5Gv zPkXQDm7#6hFqNc8W6~)XS6f*@C;9i7tfxzH^p{y;7&f8<|*tV^%+;ZmiK4$cLawBa1Qf`K@9-#*^Y)ESU@-L6wm zwk=;9nobc->Gpu&bKSVqMm>;>xwH@1Wc}sru_xNLg+G(J1FmF`I;F##UvF|3j;6DG zc`iUCC{$@)8FMF(>HMiWcduta>rXi^jo~L#A23EJM1=3Pj*bF8TMmZ(ex)_ODul-G ze7=2nGaj4wd2%h__s6}&?1TZsPju7xsowqDW#3hlKW3DrPv=O_k=<_A{loOBe5f$R z6cyEDnMGkH5>TTW!3xJ}6;+~(W)brcmcAcE_+))BtQn0<^QHqOP$+R{c|M9!Gp>LU zeP;X-8Zq{3S_<6C*)dn1g6yJD6t5$0nBr_(P zTg{aNyXdn*qXRD>V6^kaM4}vE5uj^vZKcmBMdXIG)%a0kAeqn=j3+I(J6aQy(~6Agp#H|H)0hr7H!nb> zVwJXdJVVvvU#ZXx2HiE*n7=0iG`^*rlQRJCgCEJ=P$$gK3BBBVp5s+-7khMNslV^+ zSEJTHchr9M8UN?k;0`X5?Bp(lzN{AQrNFaoB||ovUds||pctFHl;q>fX4g9q4zuY$ zJsC)D<1b8jIPLYkba!71CnL^Ew2G7xHBo#h!$C^oS>K{9*B{9wz>@F{cY@I6v7e@+=#a zG6cbGkfz*RLPAzu3024NiKVnnP6rvriJ|S^>q~>C8e=TwZxcMb0BKR=OrkBP2cxz$FMYq_TEJyBqh35`kkiuY zBmt_9{+s5~&-Q%xq26zp?fbXt8*dVsOMhYb*e47kY})IL72yb^-Tr0o3!xK`<1vAn z_|~&LlDo#WXo;3U`ad4M!usEQ`zM&_?V)VKp;q&}9Rv2;TM3$t;viwUxXaSM2}~X% zX$v<+=QQ?x~u6@{VvK97)Nb zK3Ycnb8D|`enr??qW3X%XI6apl>FtIsk_cC#PBHy0hdlmQfn>R;$ zT#5!KIgU@BJh7SGRsxBIa)3S-e=iJ>syzNQ{0`Mv@K7y4OL+_tVQd+;Zlu|TGkfle z2>&*?BXUEL>Lh%6T8-&c_7P&U#Byh48jCwqE7?q`$a}jkjBtrm2Pjo7IoV^|M0M^G^emR z{yR8VTN#`@rl=k{@uB)~nH*@#6mI#(3?)6kU_acwj1s&L`H`35q-W(WraNysD#2%R z{vvTmPq(-$e1}zL-owj2guMX%87zLS4bg(JDWPwz3$+N_9PPi=O*JXTZ)!HWd+%7L z9a?^&_}J5AWl8!2PfSL>JESkl_cA&6_!-$+(x7sWSmI8|z#_shq)lU4D*InYs?de) z^`JmiRh7Ze4#J~P284OA7T#HDzxpp3LkiHIywe7uE6hy8)W?7lhJbDqgnGTAZ@^Ro z?`FLt(F~-~eh<0imPaI$&0N!?=tT;5?)fW z*5P6>7ytPp zS+_h&^I|1nb}R#n=hZl$1J+8{?~h|e+9g)`(3L9tgEsahA)R3Nv&EShib%EE+>ypF zal5y9H_8MF=KsURvNSXMoj(q@*%@@DvfZ0)CQIhC5?4=HO;sQ}Y-K7v* zo%Mfaoxn~~jc8PIHtBl>k0(nDiHtmoAMKlv0RzP)neA_gEExnYvMts9VR@F#3({^~ zD$Px&+k0DJPi}?I{0idX;D90K4p+O}J1NZ=-~Jxoh!7l%hSG<}*YP&@=gajC!gNQC z;ypF&N2<&=xZh`)?V2tdIwLYctrMALJuP%SUnEMaxaeytuw|kX=rFL`(%QZ zdjcEMK{bWmfuZg{C+t)!6x0NGv_P=Q?jNza{y*ev!k+`HtXfP_e;1Sh2%c7j+e^{%y!J>7A=f5uK3vl|U zXJ=F*B06o%0Gaj!Ij#hmbO>T?anME>)Y3haEJ;L0;@-=?w4^)JWGkX8e2L-b?;l^X zx=94)g^tnO|EPFgND2*G!N1q$*(k4KIzX`6Q*3AC1OX!{FoQ4(wY=rkpl!viT#kW2 z-94H(`7!Ftqu+de+cjWQ%Olu*eZj1S$N(S?7p?*;^bwCPT07Ku?Qr?`H71i5kBg%g z$`tIaUspuLoeaUod)LOF9nEEo&+|DX2o%!*;j;V)O}lib4S-~x;jOWSSra(cf1HaD zK|XRZun*}na_&L|9SNz->Aq#qY8!)G9v-qk@w>Rd?hTwBl$uhrv3X`_l%?Z@2zc8i zM{fb2aC>ANP}(fEwtBjM&1539rt-yuj-~x8t_Qs@E{_xZq|sLWA1rd3^X|9Q|KP66 zVc?hL1XcGQ$UY-hm1ASJ9`=P2OgTs`I$`U5HO_o3`8J*w1fjp z8@=ljZbATemwqq{`|$XGBah1Mu@*al`ZusDTb>mP9FcOX0GVk{9+*?Z>97Joy$SWZZf!|{g{;Mz+5&z47eRijq5&A}-@JrO3+Lq_h zy}k8mUn4XXzi2Ha1ADDnG6&C+^dbTrADcZvlCp zmlgcG`S|#Cfg9)<6Tt__rE($~dJixW&@oNcI{@$6$X|05Y;JHqWz}Q?inL-sr*~}8 z^cTDCW%edT_-q(QwdBH1+>l|RJu;&10|nKLnr4b}gZsRLtqzd%(Ns=@=(RMUg$JPU zC#ANIUn|;_D}2C`5hDS8YnJ~v_K0^jP@O*qPM!I=aq?zBRV4pZ?Fnel;A_>$egxSr z@EUqdTn4NBpgWnFmL3V<_m&^f8^DsgmCD+@2!a>b09aw#{yy-h`2w^xB?qEtR%MCr{a6KQ0We5s?pVlTjl?8641RlTSoWdZ1+`A1!0Wv$|V3Y3An z`ecnKu-a)P3;72gA@cY%axBU$K|qpj)Cl>7Yt7`LKj?f3Y3s;1ALHdytmQV=Bc0yvLCRl>7WY+8M+_o zp$q8mu&g<85%>xJF*93tmWqi)OhtStN{xyLirb{3qwZX-JZaqluceosCrNEXg8-Uq z6$K5COc3(Chg=}5!ghZ^_L&v+CcrZZKc<$dAk>}6sb)X9L5}nFB%8F?8dk5oZf4OYc&pb}f4SCKIc>7!+S(EYD;9z`P-!aA zMk1vLBDDSa9kMU1qBp_tUmL}sjY?rprDP-GuiimeR)7bkzhB;@Uf4=WkPQ4moE>U2w>7wOfl)$@@KS7EGB50}IfS6w9~-<%w}zo57@Kfj9$ zNk(?C&yxjwuoLigPfjj|Pfa-?p`cJQaU%Ho`u9}hwps7sl9q?l`a}}Bm0~kP7c4%~ z)MO$Z;=J)zL5+iWsnk`KKM7+3JEe49~?;gzev6SVqr2sPBh zSWpfqJ^Ofw=p@U+DgZOmNcGkChm8Lm#1H`l@$ZCaAb7o2B36S)bY~0BLM%& zmv1@kl0H5@yEX3-E}u9MK|tdp;K_$vpg&Fj^~ah_9x3p> zIKpKclDoUR?dc_Biild+LJFFhm4&pVv}Y+_C-Ig3 z@u>88OhH)7ttkmLCkg+GA+QQF!4mWrQ&$dm|s<-vQG6z=3HTq}xk z>295Vw{z48Uuv6d)!HDh*1K!GBe1!n&epnvpe?PW38D3Pxyqj(@XDxqwPN_z*958osVQ~%1xGO!4EYuybKio^- zt$8@UN4!(uw)E#{Sg4)0Sk`aVi*JS9Sg&3)vam?1sl{`^S7s~GOU)lJOCmFM^;j>( zR~)aW7y0-aytLzOT5rZru3KZ5MGls!wDr>dm6nvCpnf1uOayej#{09?m9up(Cs$DO z;v%S;?eKbpZ~EXa4cu=`KU@=?UJQ)TU)*two^9BAAL)sdMi!=FBWjE7FJJvA$uE(T zwE$J6DoZ_X_gckf`91H{Pnzo=*u>mRZaj##oE2OA??gvW;5ntGh3Q9XCFuh_rppVx zzJdq_K3D?pA4j2X{RK&Kxyj9!zov?9VcRh*C5u%i@xR10s`Rm_sehNwuhaR|R{3v! zPuO~=hOxj_Lb{c>L+rfc9GP%^EYxEz%2Qo!_Sy2arsj*^G`~wjZhGh+tk-e91-wHF zV^w3{DayY2=x`caH>)@2yg|htad1#m!}}vPo{CD8ysxjXB(n~lFe80&5X(`!bFp)0 zxBA=lD^d_84Nb>X#WS%;waX_9t=ejDZEqPcQ|`)U!P3r9Ves*;wjWVk=CIK;vsYX6`}W-09glrKl(rDj`vFS32%BHE?1d%07H}WcEM_?-4b) zS?IZlXocOyUuipfskOSyi0$9Q?wY)Wk=raH4rW{9=bb&hO4e(uxU+L}QKOW`;z%AE z&eo5Q5L=%oxZa%|y>Qg?zSB*at~uB_*?qWKf%AO@rOH8J(7QSBp(E6r#gf*gfn`3F z)sFQTMSX~7QZgtSACZutj%UQSn@w)wRfox6l2-zkikRg2KD$ zG%@dWUftAX{psn9Ry}vGw4MVqYiVa^`ZdG#XEv_wb%mG57zjF^+?3v;{?-#>h__y6 zSJ=Zr{~C^tGf37sezC3T zNuG@A;_)@j=@aH>66YHuj>2l%yKXsJ3;D}Iso3^SCp408-~LR*?RI`Z(iZieM&4nY zhN(Fd&S}nrii81WqaPNutT#Q+(dqrY6#}GtA!pVF??XZ)iPqtaZ!UTU@BMHx|F{_G^M0b*t~Za$U?LZwI)) zI6d5-HIlB;vFSKvsAOE$l-&;;SKeF{&S9VWA?(&-ok2%N9GOZ^T34?yCt3#1-1(8L z9qt``oSht~g@j0`s4^`VpQBdqUW$sg`d&}3-|8q(D5746k3?GjQ*}zzd$^l*{zBNu z2Zv!Th++qExgQqXqeFzf4w{*Vb+=og!=*)4_zv%lO<**_!V9@@=btpxr5n@{hbW_@%-VGy>6y^nNs+rZ* z$o2KEPoCPb_<2lTE$e&N`dMSaMu^49FAntY)^THm&*8=WyURv_y_mbsZV$;K56~+Q z_q(Ho*RTCbu6=kBNnrVomal<^R!DLGi8O$*kCW zC@o^wqZ1QfLqa%rvu6?#yw)4q&!-RgHg_@7fnW1Syv|!twmdpUMYwx$c;bM-#?gD} z`mT@R)OTx1dJu>C;nEPZ4@9g@)3HJHFey#fKY43>D)EYnulDnbG*G^E^eOqjd6 z3M3k>tJizrRL~h?2zL1+@cXAUH8n|~KIfa~wGw0ZU0XABaB!gH<5L?9+NNe?WP~D0 za>AZvt+^xY!(`RiMoF6dp+pgM$#KiPC;?kD_2BErYYB2L{Y8slm zs@U~Ljeh9IXr809b9QlYhh3z7W>&%8;5tuHk;UA4$NwW ze-EyA<3m$*bj-}mDt<6?jE(Vb?Y7#G-u%k1pH)`xd@HRpo733XbH6k;7QD6f?yb~Y zjGcrRad;H%{-=a(t}I-h&t`4g)hlS(uo}W$<*Hu6S0Mp6$K(dKY~7P{Q(w%jm?hup zXWZSn-9%Cb8i+V}Ll+WiooBe1j*qELODyV;MMM^PyW&P7@6lr%938XE^JfVn!h^#r zZc7&eM+)Mmcn6e-afp4l^70Dp#ISe!uG`yDaNBeSg~sOR{qyqPt#^0n_oYl*I5^-_ z)0BFN)}2Hizkm(vh`Os|>m-OYi#X*-_)652!rgGZe8lCS`6@{Q4H(`yP%R}_`pdW> z5hf4%bh5bawaoS4V5AaC>t1o;DQ1w`vw0IdBHI$5pbW75bMx~ozwqYq3CNvjy@*r^ z(cebpt!+n#H_gbS72u0L`{ zy*I%|(jo?o6v7uT!e$c8 zrsqUFNz;!-Eo&Y&J$t>BkJ7}wp()dRJ=-4XU%v*QcsZjo4n4wiBbd z8eA9Md$ZpGBSo)9+~GwG&u+3VuEB@m)MRWxWVnv+?trtKI&raTE?Pe=4z zpTSIj8t(k{80g_&3eANKi#Pu@L{>-bjXu$ZN>FS>2H-41nBwY03MnF2(*8_|xA&i7w2 zGjnobAvfl$&{4hOTF(*vxzO(#{>xJs*@l%t>yxf8C_O%hFfU6mT#YRbAJ$=?Y8Gjp zg2`$8NQ-l;kJLsVt@!X=#OaosiA`0D{9)q9OWDP~38|)Z{t^RHWp>7q9i^iPpIk^< zN=lgQWHkXH9}n;RH5&1DJ_Ac>)l9Ny+iwoRn_xqJ9q~OH(F27PVIxyKR(w$ozJYEI zkNf)c*uCtqQ*OCrP8rX?Iu|pa(hyusP3e-fv>BV33O_U7=PW7fP3zxD-Sh4%zVAHE zNB$NPQKg=$3GI2mkW*4ZezG}OWh>HC+|~8#eD#~3i_<4Mx=qtv0cX6sYSsW^U*{^%#R^=g-=D~@O3yx*HY>iCa-|4^h^P86#e|3ObBdwr6Kiu5g*WXD-@+mnqK&2WFckO$8j0u8)wszQAmkaAY44u%u z*xHQq%dO2D)TLCCsf?;3+yMCSql-eKU4kEwBak;^j_s|)W7FaczX*xi*I_1-i)nnj ztRs@^AE}Idwugt65HcK}kyC?3GFAN6((<&f6D%6*&!5{{5T(Ne#BxOL{?ZWe9|+kH zsXRR%I_nk995-&i)u^+{oJgB=fa)-`d;`@mNq&}SG*8$ad7W;nsn@#YZ&+;bD2(N` zhMH;nP0NI~u{=6MLRU~`hgf_RQxdGR+Jj>P>OQK3eqYfq(ygC)tJ+aKDbo9=1C&4`AmyNx+lZn$U4F%6>mob#TV=D)cs^Ga?fg@ zfkc`;YvPnlHfU|Sr>!jFvU5wPk;eCmFhI7Frh?14gsD`+8KV*M{Xt@-Btx%rv4O)@ zudN&yC8u+wy*baeCEHtZ+fBJBfvb2n9iO_onK4w0ubO*|KI0x89J=Nj0gH&WrFy|_ zKH{W;ZU~@qIl(LTFPokcG;ds8pGQaI{X5`hJEXxUtgte-=t$jFo97QalCknc%ps8D z#zVvuN--I{eBC940M^0Bk5$A|OiYDJT3SK0p>Qfbdh{D?a-Ld_o+Hw6`@I&+K98H3 z&Q@4XuED`Q4R1>(`>-vY{A)RZF845s+|A)ctnMFhwjcV#gXXVOrYB z&V%Sbb`z64`cs4X=h$MRhs~YkSm9#Q5ow)++bYipDg3Xmr9l4Qnuiivi0r@zEtR0I z&`qlNk@{v-dD3*@VDx2FO<@WWlI+>@hW)qtM32^()QkdIKTvsUdRQnm2MaK0Z^1_B zUi;$gWH=}Y56lO{lNu4aB4vhI?-imidaeE1RSWw=&Z4}iT#`r5Vwa>c!M5iI7`k|P zxN^+f=}T?-Cq(jRE`n`3Dwz$oYxra*lIpEr0_wl@#k5nZjO@+XkERrRYRg=|&JUg~ z=TK71S)H1gN~RRDpEI71G!(q?Ws_()93jwYiQb%SSFJ}5u12L7}R#4cqaUtxffaKLjmBw6D*?RB#Qq>10cICXq+ zq%BOgvcJ8aJB&Zu6L@B!R+lq!?l4~^5>kBoEhga^jKbRKK)|e>BKKSsL>!%k(4OCB z&>VQ!CZatHicGEQ@}f8Xncb9yJMXkteTIEGNF4dA6*6r8S$P2V1|$`DmO>;VV301VIiY0umLB@YSNzyl|F2fk9c zUuvu20JFgH(JV+^3_m}0@Hrt

    NMB2yqSz--_G)x7~Q$vfO;}jL!JjlR}>wX_@A> z?tLv&z>}vEjD3B;x0d@)cGb61&uk~-u)yvF32YQCD*WdREE|@+ubDOYN0vAoilX_J zr9H%Ki`x0axKs&;(m^1d@u|bbOr2joB10Y>JuMYA_26}KIp;gbf*K6 zZ}~CwiH+VpC7!&6y!0@?Gjy>vx61ouXO`(t)RYKIk5^%sv|{s{bEGTHbPhI@;?M=M zg_BUR#iSmEl=hHc=$1R-@PSA@=7;NUcl8Q0^5YY`BCH&i75~=8T+{)AkxIfmu{b%q51y`qhq+#E$)GdGv1veZz8hrfzl%rr#~5in;cK8c z-xss|O_6$q!6_i?hgixof02<{J{wENz)Mi5#$4lLEF6C?&_=ux#R6mf0D*I><*2V= z;GQF+DmX9KW6j2^^w?xnJ&Y=mAhGFik09Bj97so|zW(%yj#ZnX99t>{S3W8Q9m+M6 zn`|f?=WFK^bG6MSNx-fG!A8d{7f<$sEG|D+ovgDOdYU}BekDwA@AYxLYICwME+a1w zNzbElGL1_obur<4VxarJwlgj2z02QXdxHPG=%OF}5D&ygsS~6lQmYbv3`^G%`&_9+ zl8TwU{_t=ilAi0KW{dJ?FHwb=Wp3)9yJZf>_yZL?M3!)Q`)v|xS z3c4KrUuoyqb~KD1h$$$~h7&R%3eJ4!2hU$vW04C)1Pf>+aJv49)xg;kJ7+wg&4I0m zfFp#tGQ%HbIXEiQk_s^GI&bSsPWhOYaEQ!sL>#y@_#Yzp{>TYxZYC!F*1-3ZjT}u`X9k z$od}0dVb@=ryoA_N(Q!33J%UU79$H8I!jMhJjyt`+LrvK*`24j-EkUpc<`$j1#xVn1 z4(|c2lfS^V^yM6Xu;E2S6(#Lt)#UHVVYDZBCIDX9Vw#zYo?qq8#_4Hpr`Kg4p?ZT$ z%OW}xPyn@3;5=JwOJd1pjbtOb&QG)b+7``JF4=Nlditj2qThX91v1h%T#=|3X2E!S zh)C@Xw`c#AE?`i0zU|yb0!*Uxe46L&k1D@ zTOooRyT3hHn}3Rn3V3t>o|?y4-BQB~oYgY;5cm(`3ko#%#2h+P@*HOE$CM%zdlOO8 zns2bEgoMUTfBk7|!)J8x zmeRQwS8K{#cV*UF5Jg4#n)0VAwueSYwI)oM-EQ3FuK{fvA7A(2O0Lg00i=ZQJ7)dl%u$-04FLvDTMbf)O)jvN3jD zP*D!l=g%hrce0i=Si5MyFnr!-n#@AyYNgxNm@5G?+%)dc!1=KHqYsbeGNZ0Po*Gpf z(T8KoT&LxbP<^;d}L3_JmbH3n;KDh0- zB2C_)x^-&$881h`pdWve!8i&399qv=N-lZ)_a{aYlp&Hn7{H1p39rp;l#EQ` z#_#MK-(AA69?*gN<{ok+Sh&rLS30y91y>kio;6QMrb;^Vf7{26#C@T_`o4f=Bj}mn z|DEC$=bt~8ah*Nsp5ZA)Xij&9-@pau3*fA(?Y1gwM!{>l8cQ< z0cW^8{RKXtcaF>Jo5&5E(%<^LvxiRWW+pqP1XcSx_VKi0)A{7)&?SEJJiR2AZG3l> zY-^(-8C!pdPPd_nF_;*A`(*fn0v5(I!I#t#tFYl(sS{y4Jy;&Yix>U6D8w1*vE9|6 zO~jnE%&nm=!$jxiU<;B|=Bk;JhMHm1jIOsm>e}s*2Y4qHWp-DFTEcPLDs|XmhNS!s z6Q+k8=OhQ~Zx7s_5XnK(6XK0VScacC71L~RhO+Z~u(V_r6cieik%Oi%@|cbomK>Pc zf47%=lglZlJ^HchGKKL&Lcw?QtO@C*vp@R4&EKY6XBzT4V!YmKjxV`pUZe}A2M7hG zax7(DhYmjWDg9@${B)S;=o}aP<3H`Q^EMnAeC?`lEg63GgVeu;6gt z_8> zMcy3D>iaW1$9d+fMMDX_ovOpEA(Te}tb^W>kyc!zdXC%m}G{wB%~#zkAp^8vhm^Ttk$|NXGEp{*E*U_wPM0Z(dLE>!sY9x|st_ zbJxz3U5AA=^nou`E8X$M_2%N?*_ZbJK3%!L}^O`PL-5Dqrc%RAtvbmTyv=rsM&?VzKx9y zla5pd?smk0(^Cg`h7*Y)RJO%ZhZ@e>r5qL^;H@+bO+gAm(pq}6X`XGi!8*9w&8UL$ zw%&!ZtDUWN*3=(uv&6Ke{NA;LOe9L_BQc^k$~SOFpk|kqE~IB?GHKQDov4Xx`31TT zoA%zw+ZoE~AC+-&yjtRc5hhR7@rwZ&4$3$_$<9V(?>o*i41J;ZeSJ3b?Pf|#N?e>% zfPjEb!$<$V7<$c!^?!{Q*@cw@mv)lZu>%B#!_1tmZXB{pG$|#0YzOwH3e{G`E;dvw z3PZo#!wO67S7(m27e?a1g@KX67h?r!5o8omuFKWU%f9h*CEsnuPt1A_u?gZ-aS9?0 zN?W>VyuaE??7iNtSDD_Ya*_Y}6U|b3>7u(8i@=|Fvi_pf{^BHswLv9!#9%RLgV!+@ zk!)anW*iY^)IyEr&HMhzUGy^Rh*W;7k_Lgw9FiL=p^Mq~XCB?`Z8;W_SOEVOw7U@W z7)S8|4XeppRW-KxfQyr}{U(Zlj;WSkpIYhOYwny4B^N8?5-=Te!K; z+Gj%-BFl-pGKqe)GH5;2 zdCP?wj#9#3H)-dsa%sB9V{XVA$C?`1dC6~&&n3lL+VpjA&_Ncx&4Gbw32$Yltf679 zn+XsGrGa143NtE^D<|p7=%hx+6o1v4G#y{Azp~mEg;U6NNwLY=Y{%g93ooPSbf*KeRKKYQPPVvkbX0<$jbD)XnU3DwFTBT9&o;`XyWinCn>PDAlGO-4-4ILh zOu2n}{kK_XZNxD1Onxkr6tBOR=8XqL-u5Y_q~l9x*tKgjxkW{TqTR=?J-dy?#facY zRFOExtvL3z%Nc!{4`1t&HESTPGF%uvb*(2dz58pC!_6~b_H#JxEd>E@5*PN^XlzPK z#>~Ra{#YC}yD>QS28E4^G3irwcr$##kX+H%L`3=J(YN$j1mBr)t`2>-Udg7D5VMQ> zOOO7br*>N8t7X!?u76j~HBntB2m9+f2JQBTk^A)p&(o|fZrklNI4Q{x+{J`-TEF0y z3QaryT)8t9+;N*e@JcG>MQ(e8r7KN!B+A33i>H<}~q>fML)zy?T|^ zNyD3qfL996;f1OmZ+vbSM>dnM+E#QM4Jk1@_*hhn!3LHF)Iem^uJ5b7apHk|i@}l2 z-QR?-y37SrMNpv_VOv!O1=s|vqunY07jthJ71y%7596BP?h+sbo#5`0;2{YfEWzE~ zT|-E4CxIlmJA(}nWPlJXxVsFlGwCUGwj*Z-PK)PRnJq^Z?lS| zH1m2ypOkQ?X9gvFnA^inF-VBro|v3my$vT)LH&@-*Xd%RrCZD#tlg}8S(kOyFvsK7 z{?f~jJLO|WhS@g7OL=Lu|6czM!RB4uxYC9eZCGTo@Y7gV3;RZcIHjKY^wwqFDJij9 zzHcHIQc+W{Ju|>~;x_ZMN$-_WXk!|MtJ_b~{>Jn(UL%>8FT)@eZdOmZbYH!yesKe5(^g}4Q+#%AS}S<`OgJJrckGl6pV{pOhl7!4)q+z z=P+-Gwp}JQ^ERYH4Q%JsX&R!2t-lzi`*gPI={!`W`0Dt(nfS~4r>NLyMNOy5FQ-dV zL;F);r+jMlVimP#g2=fmcM-F%^`XB3uS;k-3($u^IyH!`2bQP13Bl=^8BIy)+EcDnV%k1-zpDpd_&I?@dcUc%0|&ggKYY;J5t*3P z@q^DYDJjJ)BEGhkgf~${+hBh-u&3uRqSqqUAU&t@b1e!cK7GwTMR%{FlKFa!Lj4A+ zh!YH&h&Zn+BXsSHm>4jY6i>}d0QQUjw2l|!KB$M9Js|$l*uUnXTd-1}{7TO3RQls# z!v(iECsJ#SF#&-yW#zaU2-TDC-?!n=+*#DR$XQ9kG{~>205Gn^quk zlHz{^BiC(r3!WH8f0)XdV;i_w?T=psD5=heBd!Oflp8(X7u_Qu&vSm&9R9KI3vGva z>sqS?q794n11{7yn3g#xNna+N;;O!i+MfI-3*p8n}XRh=*7H$lO=C76U24C`rkT|Msvsk zK=w?_4Nu=uS{EQ*=Gt#JUq$X&Y8*Z^kY~H6)xYeaF zlpz8+UzQG4r;1sp_rDhCl9eMQCVm(C5r_{k3JUs27mFykdoH*%4>TR06`M&&l| z|0|)m=YX2@U$l2~$raX%8n=vnpOF>T+sn$CCPfW%29d40Xe~l;H}o@Fnfo*t0r+NM z;E8ip>71E5H}~Z4$q0p$&Aif9l;q@u=4{ZswzBybhoF7BUEw9h zppi_8?u70x1-b^i+4#mr-Pm{OlZmpI($;#0BBkjKLZfkPZ0e-?KEyGXKn&@rITm@G z-QiXb;3Y7#h+qQ@fjYMk&TvbfB|n$~z&997=z}yjN$tLEZTDFx0_gT&G9CMtf^jrdGYMm`DBSTbnuV*9jTJW{*c4?h}FKbjf~bp@G#^636t z|0Zl#%aM+D)G3^$SaK-jJli)ZC&h*%d|amc)lAcOujM9O-5MKgvx35M&CfR*s>|MP zZXUlE@6lYK61_oZhP5ij6B^!1T7!nes;nrQs7kJ6TvmN*_GZW5)#Ef0Dr6&k4I)O; zG*}RMC4+gAA0i5$ZeB1HQ>gd7M?2CA2rjw$TRpJ>>glGPSr|15W@PM`i``3-RP%Hk zWN(99zrV*5l*`Z9T(Cm4G2WCd@fYfh=qyZ=aQz*GB8+YqvrOz-!zH=SD4qvCfwOJLMtG8%cXM79Yy9JcB7m&nSpHbP07zGVwNmBAz zs&}zZo~eZ<+#esWc{Q^ZGD~j?~i`sUW>HKs&Vw|ZKWHre{VQ({P)7z zM=pYh`K>)l$Q3m=1I^F7DW>YYG#$I0sqYXSCIyzajI|z%dd?I1=g&V-GBl>Bs=to- zGAib_7B+16R(&4;B?lLWr;}<}xYm`GqadG49TCCI=MCitbbOwiX=23K*v=jWacVrT zrhZG6M&b^Q8$st*NanWZEF_&SWHStPYnq$M01?XB89qqi%(9KOcq+KqYLCBSRyZu8 zE+j-=VVODp^Fx*Eh>QwzBjCEK(Dy4m6>?ZGRV1ztMiB}3%8;k%b8VvoT=f6ww0pId zdGD)lcwNm;8Z_+JLjqrO8^3LOu$`7a_y_=fP~M6*q|;}9d%>OZda3i~u+lFi3;M$_ z!VRoh`KHE&{rh)YX_@RR!X^{elSsbA^Um%*wZ@{%EN#(Lo@~c$RYAx3cx>XIpuhuF z;zbc8D_h&{lzm@&MkYM&Cr^0v+PmknI7w1J{{E%0VdaKT)`-Q5?u5s=vbwUDM)Q?- z+ETK2EA6rCfYWFv1XRL3v9cRK%lS~{`SXJ4HSeaGer1g+dtpss-*O5|DA`O$Xt~!P zeWQ2+NKKB#YxRy@lkb(Xt}+%GPlm0tk(^v|I?ZD`S7en942|c?yxJJ%YE;6H4aX;j z)5F}|&z6`n;$kVMUcY`*?dC;Nv}$JlK07=8>ZzOckZg{WryKRuuzz2A50GbwVPM#N*`*UW@-k_465+HkcCD0#iA<0y}h2k~K; z8}-(FN^R7ATk(aBoui`bC&ZNyAmARyJU=}@)i}P1&(uVI*7ZuB*~oze|f~lBq1^JqG*)=Y2X28tc>1tfJ5I$PCFjlaUu(~eqLBs zx%(uf`AP_`2+P59y*THu;obO>HnI}4ORc(Bd=={40#JVbUiDEO!@%wna5AKLM(5VJ zH(fVk_$2Gi^ZX3ilk2)cu2)gB>GOz3^TAhV0bmPXonHZ8+V3rt{3^ne%^`lB_=fPl zv-7lt$#47rv-*}S0LvAuXV$*ho?nG6=CLo7pN4BdX4Dv!ljEQ=rZjfrvtG2SKVAcl zf0l0X1;7mXib&J==4T5UCkLpTLX1ziRRlAY~ln&MQt`=Cnl)`DZ65M~9zm8aiv< z6hHvjq7@SpGc(q}xs2y=iTeMhp;HQwg=*>jUGRS&0XC5`U=va7z0Cgb=dd+00HjJo zw;J_-eiQH>O&;I7N8vf=q<_q9g5V@T{rIg-@Am)KO!>=ODZHnjYW>u*Df;8FL0G52 zy@sh_|N88~eTF4B;UA3x_N46lJqa41U83-h+bWF~kpw){G^|VxND%s;jDtdfd&RJ{ zU;X)MoEos?`YgaZrT>$hG+M7Dpij)fiS7}9wpH#C(19qVx|Tm5iWNry+{=viCi2hT zQb^plE2sU1%Af6$???tl)(HR4hcfYE0pD+y|MTbNP2BF2f<$lB%E*GXWb!I1@Y~wj zupT^+mzM7MYIUM({irE9P*ZbMSA-=y^1d~3_sP!8F~*qW!Om(y&a}AZHlLQ6mo}iz zalKEw`;3%`?nPmI4{GCn|E>)bZ9v8;=R82F%FicM*yLg0;zHlHw(cepK6mW)+KV|j za4-aDKiAhjs=0#bNl8g^T?|EXUB%fzZ+h?BYyO$por;MU2aEUIrEfetJ6qWIKpd#d z00Qy!!99gzEU6<_z2F`XViv!=TmSm~yJA29Hvs=f{_252U6qe&YwjB@EDZ=0mEcu4 z@FrGTO^xe&iEUEWhp?V7FT0s$+QZfx!q;Vn5jTe|)Ic3iNd<^>-S-_Ls?3b{IXMy2 zX%xA1BgPzHw{KKD?WZ~)KN|Kd-ko}@=1QKWNJ#>Fe12&u3Q+x|KZ6&@ws4`lvIUnI z0VCgjznU8SUfoMER@&a4miyHd1BekBC<4)_X&55adh`_FQy+D2<|w{+@j*k&D7u(B zGbtx0W_lV%sUajFuzDu62uYxAffdpR(5sN~w5})OmzCK+=HOA%wR-%NkB?t&yjZ95 z3Hkk=8w@CcsZWeR%m6F6yqw$bc$@t4a(u)Y(dKE|9Z_fHVAHwH7v2xe3BpdN%;OW` z9sTs7u%(!~Q>GIO53d^R>3NaXPenvzX2xYiWMnkIwR2F7z$R z_iAHt0|rJjbl-r^sGcWr&=vD~&$B*xUqC&daT2OsjH{(%oOtC5BxNw67#U^P(>J`! zoU>=MtS85k*46!*je*GA?DNQ#^d}4SgONUBV_7~7I2Q*-yUbr)(Xx0qZBJ;j_*;I$ z-1G19X!0Ezz}Q`kCur5kn>-*i@jHW%FD|v=OLo#WECLjQcG@gs@0A|**zqFu^f*bl zaRtY4Hb*^Pt!|t%_iCp}Vq>y1ow*`B8$!#+XJKC2ch}O~(kUNaz8J!l6L10yRVwV1 zIMHmIDD`Nt@sqRn$hub!s92134MZ_st={{6DzbXKBoct+67kce zwy4C|?qJkNkmG_K?rHn24KrW}j4n(%Xp6YIR=>~9jRcBQ6&4f_ja#ZhvVoCYTYK~| zC1ts01l)VILWFCx2~7{Lvwh7ZDvHCVk=?0d>?nKog$m#|n{32w>$X^+3?tKD&>3Jzs1?@HzX?0t>7zehQ ziiknQ#Ag;_n>DMWN%qEQBlf6nPSwWuU-lJ zHxqng|Iv5@eVE2?&9t*a#c3htyi*%JmyC-u^!dYwtgsVuZlI#O(2ALLIwTZ5`Pg~3 zc>i_jNHz9;c<&$o{>6R?Wxg z&CNM&^~cE4SiJL@8jCdK)unu9vcQTrbtt&xLqM54r7GW%0N|w1!krfaHa0fA=GXjl z&Nrf;KR+@i{FW}8WM62Wu|9W&E7#}VD(0zMCZ5jRh7wj zianWBLw#*Qo(a=rnZZ5XFt!4GZIc}R8#@|X*!{TH-$a);kbCP=(&HA*%*+g+1?+O= zSV&l^=hk_F%iEDL@n~e>J>r?~^Z-WmvnyifLkZ7}JOm_lF|Vu*^ zz93nDt!>GS!Ymu)fQhjb=zXS!Ye&hs=y{mU+8S^(|jgt6!{HY%(zO&G+o)9MIjaY)XNaFD9lIdf|7GoTHZS122z2;>Sn+y0uo43tlHi zG*SULwo~Qu=H@lgT^Dn%m@l+H99{1oF4>KFQ)A7!Z(__|v|UJ6n>-a08$@}B(=T-e zt0DX73LFMQ3^-j+)uJr(#JyeGv8VeIvU_@N#l*M%=A~nI$FhfD|LORvr$H zzQRPwFu*)r8R2P*=>Lj!I~8~>;^XVHFYetwB6U-{?i7gV)*zrHG!@?*$qcm@^GMHY zH=7}HZKe@*`6a0?e%4b+HvQjacW{)wu)p)TW zmXwhZwuo3}Q8~PrKNOFW0-t_|RPt+#stsQXu!E4%lTWm?jcluClNWtSJQtj)C2v-2 z{oq$qx~*RA!>w~owiT2-2hFyql6SM@)2-euU!J@b_rB~0mFm|G9mj#s&TlMUrwduu z*D*3N(F9)Y8f@+C)lNGjg1fD39lKqnyl}p}d*^laX^N1VIu-~6(?~fFtlY6{<8Vq! z2HbvzK&8Aku=#qOS^;av0VWu}_VXu>_{CnbpohuOAU-nxx7!_|z{=ZMlErPPq{}H9 z*-&n1?%kRQ@irw`u}|Lgd}w>R1wqgy*L}1~e}@ENVY%EtgokZxyr$NEkGg8zdlMh8 zc6mn+j|0FEP;e%S7{of}Y`lmp4@h*fs95ly+V?sNZh^rub4{ko{V%sQaumE3Sl;+t zRVY7GS5#L|Nmme_^oBPTgDlTgZ_2(kp(D08r3AG5cO6^JdsF)85ee9L^ntfc*^9Id z6?OQSz8ADTO7wviii|ERjg~;_uGhxRB6Wi`&E2NMOBKKX?q#|+Evt0g)tPu@(SU(X zy|QdYS8aXb(R!RZ1zWpl zx8>fIYQH3(P3d%Ub;W(-duLDlg}xO*ce{U5p&Ar$3sd4$#>dA6f5-?$7RzRNP`%A> ziUeKyct8w4EU5s;7xgOMuFwaB@P%(49r)5OAGA0MHS`)B`b9am&xFzYA+T|!jp2j4 z!XCGeasqZhhMer(wvMgwef0i4VV4CbESD1%ftI03fHd@6U$&qhE#BVHtA2z-q;4tf z_xC+=AP|)iqSwK%U|Th)g??Hz2jY z8^jYw+>UQJU9AHB-R`Qn>@&W7@Z(wZrDuSNm1CbLUGpNvtJklM2|EJs4g+}`evE5K z0;xJUFdoD)2MNjA>VmIBU#4TbR2~vs1F=p|Kt~p_2tN8CVteVl;x~qV+jnSO+xl_Q z_m+^qp?0MkU#bfKA>u>|VQH}UQsLg6{6jQLfoQ^muxw8$e!}yE7QwtNKM;Ih2jQ%M zR6MG$t!?Q{X#|Z^+IE1?XynSN+0zExWlE(9x0_uN5sw!Z7Q(hX>7S;;W)B0fxL+Vn zlM^$nfe0qE*Qpr3*~XAH7Vg6uuMCHch6VVNi};-cr@k;fEp0ZCNym#RpzY7QE%q9MQpprH6#)+4_a`GN3tLl zfhWGILxYgSfXle-LIWhk85nFL((j!E6rb>djZ|bbLP?nT!J5(=aoW8#zUO;Fmg458 zOG^Z|>k~pl{3oH7IsC<~Esf|-P{X_J#9RTw+f?v1El}d%@=Aj%`v>@L$1^H69<+Q7 zSW;aF^EVY(OBG;Pc|5MLrJpd+y3VkI8Fq*n#{K$gQZtxWZGsk?2Sl#@g=FHI+caidK0 zj4n}36t}X`;Ne?uw*aRkHPL5{TSW#)xl)exz?ZI{rD7Bdzu{!B-V1725KYo=2q=Y@hdcYk7w%8z`;@X;nPdEl7 zrfogew0b8hl|lCyhmXwvtinhVJAi=`8f@wC2JfKV9Cc@BXE=DsD-E`|_9I!f zCx_2ALL}D+c6w1tCt7Z8XKFY+6F4y;kP>n@157LA+rmVthUv3<_mZRE)Q7+0RJf;~ zS)S&;@q;ADET;jaU)&Lin_9?1+(_V634%8n7u_1#Upo^XnXu#;cv3Z#+Su3!XVv~9;TIIp%aLr>di;1C*7=fM!|$+V zLwTmow?agv5n&8Jj#wWoy7BG`d(e6TSNdAo8U{wp;5+Ig731D5M;_i!oy3)u*p#2) z>Uc%k%O5owP_t0+H!$B`6K-r5oqVaSr5TaB_(h5-oPFTdsC`=0k~z-4tw`yBoE7>> zXwhf!Mg8q~ARP1b^gOK+TFZ{u2g6rlP_w*=0^t`@vH-X9i?u0Es%5VKPnV!^`<_J7 zA*23p+4nRBk zE2eS3N8v}eDl|r;*mzrvrx4X_$cz67|sC$Y_=D_DENN)Oh^lrH?u%;sw z0X2-o#G|WXFCcN1x;k|wb`w#~(;XIH82aWpYhOYTBn?31mVjR?P<3HJyTsFWoFO85 z>{27Mi4pFGQHC$!m52=n1UUXOohpo@mk(VRg_idZw1Yr+Ei#rryn)Mk%b$l-Ro z-+AW^9XwLLG__D7XNfdeGhOZM4&MiU09)w+fOsuWSFHl4b^^-c29NJOFIa%Q=I!?m z`&m!3t78_gogaNi6RFg&-r2)+_VwsKaP0T*Phz(>q1o?P@ws1)ynLd1=m|*Q*f_8c z%?$d8lZ&fPH)j{>BthSs?SOnM1orPVdr{^mLGjM)HjTNXzT?e1-SjwUFVws zfKn=7r1x1Yy9?ojy`+-LT}#4eh;}joZnwXh-d3zA|5in_s%kB3if91)5{8FcI&Wt0 z+Ji>+#V*o7mc6Inl%o=by74T%UMy*-shy_|YVF^H7{Q=>rfu5x^Xw?BIB{h47QfXp zPy6uG*~u~)7ncIHV8bRq_Mbmrz$V4$bxo8aFVp$Ly>9mLE8S+y>>BOkn}pL6!bHv{ z%k{!{GW0W__k&$0uD_@N1XU&a>Y(&(kxObL1`<1O&LYq=<*1sVG?B~4(~_qhZOS9c zd^*=n1t)@E`1m=8Li|KE(o!?c4(uDs>J^?eDUX&*_^K&e@($cR)^v6E#3&sihwcM3 zTl;~Pj0q0A*^g_FLJ!G0wzrmkDQsxH4e0uojC=G;J5fJCE`WrAcoK3ONc@x!*3W!l zI`ctcx@Hpzel9XEFj%!*UzZX&YSc*Yib^NxLbK?|PA|JbwGay$)tpIjoS#ZP*wE7^yMnt8QqoUKv$~i=^vhd(#0SD(CGNb?drA z0|Px9!?Q=%)Q6^BVQ$1bh2{lihiL;Wyu2M4FEk`zX(D@nQA|uq??c6}eP3^~puiRK z>g(wo+fLdkWnP!*CIBIp<#|ABxwuqATnw|aoEfLw^S1^SSPBc7xaxtt(vFe}psbR5 z`^gb%z1LdHp}(D(r=u3!9=td6aJuUwzquwB0?Lf9uTNM+{dTY4 z>v|cJl3b$`liojOzU6|EO^AAim^H1#cN6f?x#*^jO*3R;I&%ZAS%AE_ASJqXdhKG> z`n1$OGjadZEoZ;mADg;WepS)4@776m1F2UpTarGeSD97S4D~ z{z#7nkWl3LwNIZu)qiC@39is0-`oK3>-)+Ccu2L75k|OCk21r%xIxkb<$5b289P7;i%A`R5JNqo*fB`e} zr|WTJee}K*Ksd1zIQRDm+Cpz4Yk`sDeeDcnqpucfNcK$`J65;nJ4euq7pZa|Rp7oT zyT`tQK>#puNwKY*9dTbwQ@!Nv(!kst@=z?ON46@%`)(@)R$AWBFcM}*7x_&~JaBgr z183aOB3yoP95z`?kk zkH*W>u4Z-9`b@=f&smCX!;hP%}hHSfP`v0~0 zy}sZ4N+e270I0z!4hj7TU-Fh3KzYfJ<|<9I)vWi7DSo+h=8?lspOQgyEjuMnQvb{I ziVFZR7^Oh^9RS}zQ%pbt?7qBol`KA-sWO9i+}m&n+EKUCy{jkF`8hg;FOyy2Z<6Al zND~D)+SZ!Ms5)a79?3>qd(LW8VPQ8JtC{qOLgZQ;9eHZhJxFCjb6*YyPgJk?F%XmI zLn-%ao|x>525Pt@_n)n-L80og#oM};;`57F`!$N+&Hh50fntx<}6*@9_)h{f*821y>;f;(GTV*52QLLxJ{{ zs{rBeKkzI?Hoz|~tXceJ^XD^7?_(Skrn{Q|f|HgQfP3+}UcUPCQ*!`!I;xtf5asyu z0aY46qoxndv-AJy5-^7d?&ZiNz0dtOpYX4iG0Ow@Vg*l`{)uNP;@`KcxZ>A~KOT!r zcmy=ea4PhVhX!H&{}#LpCM55O9kk_T=b!{mMr00?{uho%5KK+{)!s_Mk)D8}bfZ9;>hjw0P|oqW1qDaUK+shLO|>CKeD-s0y`jTavuP;J4`L#7z8Jj}_Vv^aEp^ zD1GKXBpNh%uFi}8Ty`&he*U4FJ(5pS1_iUtpK}Iy9UvXVCt@($^4=wsVtx}vm{!0& zo(l^XTh`3*5emvj90-2-LxF!7T)>1ysx-NJVb5n~&P3o%d(lAsaS(mMjvE#>jfM84 zd_v&S9}QptVybx+_*ORdm}*a=oyV}+6K*o&PnwXRp>CcRdF53Tcqs(b(fvmR>uB^z zDsq^A!mA9y2~Y=q{<^|1WyILdT3Gn_!9s%ZK#}-gzZ&uyipis4Nl|fFp9soTp8rck z5z$Dl&JCV!`Q`bf^JK|N#zJS&Ezi1{f?Du<-5#qA?*oY*iu5{^FaF^){AJb(QxMOuAZ)y+756yh#`q8X6h{ zFA@N8w|*hx&Dnot=&Q0TcXX`-BZ2lh4!saI3npzPMrPcdxF_UvaJf4PD0t8VUgt zTnhcDl2?awq!F$N0j7K;Dpwip{VBz&FDaP1WC>_UdO(qXGDiUH9Sb>TiZ)xq%Enqr z$CHO>wUA&foVxW(9W9rAc2q2$lDrod0F6@w{y}U0YZG}u9DI=ThVKi1y&J7Z2o(EhRyOQqcG9XZ(U_QJD||&IJ%gr%>eE)m*x|jXF=Kd!`}Z*Q-xolq z*kbrr>L6>UiY6-;QsGN9aW)(kjiq4ccDW_4Rj2>2)znK7Tz}5}QAdc0Phh#3Qpt}y zDD~AOBOe!@sSt%~9Oyul_J5BCDn!W#Av>%2bD)Hx5RwuKnhdry`;LzOimClf(F9h~ zTKxX)&zWVOEA8w}yJE&nNGIxaPMC|kME=~CS42ob1l$L&E8+ucDE+tD!CESSx*(O1 zkREcMn>QS7t1Clgk6u{Ep|4~3<@EPmf89>;4(-YJOgmP~munpsWWX~wRZ2htJnkP& zwO#+5k-fyh&Ao!WqyuMUquX11vbI2F?jx9+)|TO)cPXL=4`i?!WJ!v;EWHeevjknZ z7nHZ+47UN*Y*plC-5Nciuy)BK`D+vuLJFkQ`d8)`De+cAda+_fUl>fHj3%b$gMT;c z*Ls{98fm)`Rhxxs8XJW}-+O)TQJRI(^7uVfn!iSv8)Zwgu& z-1v;eA^~g0(7kj4YVq>5P+m)_ilUKGNH^0xQM+;p>C~gHAio^BEL&phA&#P|Y8Fco zK2vdypy87WnVa?bP&ruwGP?M*H07{Mw6#3Tl867S1b`b-jDFO9;PGp6Qttr?O=`$# z8ZXaky`+<=dTbjCXC>qt&l@G@Tc1+Btk6ovinf{X>)20L&EIoT3CIW|d#0rgn_nij z2T^>s=vlg+8I5#FIxQ${LOxR~+uB18>Fy$=P7V4x%9uNy7hesNr6-t{g6{1qxZbh+ zat~+X5~0gK_oWxj+|`^Pjfv_}?TK{rj>AMDAR!7lI#LE|r!n@R7%c5v3L|xPc48&Q z$k@4k<~V=#r^Y_Q4%Pys@j4)6a}thXTqnPhV0?RcIfXdpU1^Ov7PA>Ko2{qa;%+4O zRM(JKfsx%BBl-~0{xxvQL&WMeBj({gWcEk{ah40~ERQJ>+hzlIrsrC&1p1zv(&XHM zS3V)uDIY0dh|DInWjA^q;kMoulf$6Jm|BzQpH`z@#4M{s1`SC|7geXooc@&h95v4TQ|M^7}E)GNJ(_a(Dswr=t1XrWFN*^zQ37cGMT3;~pX;PM^;qVDgJ3;y^lFR{t0| zz1I}Nwe)spXi@FXSO$sn!Mkhgm%FqgMqo~4G@cN{p{oIaMDuAbnX zRL6lp38A?ZjmpM|H1z}@#VUvvbTAJx3zK?)_DuL>rm> zd9Hti!Vrk!LfY}Asj=Q3R5W~te-&Sy#189?$=)3utB%XnO9x+C@vvSFhubX)>DE@# zbH0Q`;k3uO8L(^@l@)%((q$#pKI0)IpF^ZnTpQjtbx zC^0M^WV7egNP$g2e@hRa^Pta`x}`G?m?Kv7o3dg2`~rmI71c=fO94Xm2sk?A$6e}4 z1-b&fK_1Cn;GHtW`|HOfZ zCFa@Nus9;`T1SDVP8Tk)Iga#DZhGdtJJqIdt<2tHlN3> z-c`gxzqF|&dFi=~Fv%eg?r^j)*Kp!SVrhJs5q`*a5p13Q5%dM6aYGEtND3R{9bIwO z+NcXkqq-?kJx@-s6utrzW>AVffVdB*ZkbVqqZe*2eSD!)I(>}&pj*fMbd#Eak3R8} zZ6Asy`O2O5&62RUM9O&$*FK}&Alm5-H<9^9KqMuqzMKkWe{55bHQ$EG;xL{t6-*%O z5oP1CF~i2K2a2`#)321eW@{gLc-w2JU6=${lCfvU_L6yc-M^B*Ck%c!4y2Q96LaQ1 z#bV^RBcwP8&FA`6Wx7lGndEDSYe!_-jkD*R9tZ?_$U9f3b%meI zPrW(i7i+z^(9<&?XfDek_a>LLov^L%Ht1K8d6o0}OX1zGvd>ZyN8`1}b~7pbs2Z{8 zZxok}64U!l36+8mJD;nC7$DSTrg#c@C7eL4_)aqOy$#^HMO?Sle`ML=ina!n$CGiN zztu`3A43`R=`k5N#-xC+E?!pU5~rbYL)E`d8~x;ws=MqQjj<>9qMQ-a&Pt#b$*)I43%HF)2-bu=&(j=QSC!yzjV+`Si=P z7tL}?WqWuKCS>uis|@Yt6?%Gof$Ig;cKk0tB(9X? zOEK7Yu;~iEBRDeQD^i~hPvHZ1M55}G6x%=R-bT+|EtE>kJ6U1Y9j(A7uZM`3V$uAj zZxOgLwO&d*s?t=rgjawZx3T3dKo!Qgp&Rf74PQZ-+w?;iyaAKZC-9*MzB>{ftrGZI zEW>Nc@K2d2P62RyUFSIrW3Jbo-@U~M(pf@ow!AO*?^1+YH#mmy#KTSv-%*JEHeH%q z{$q+j_*l+v$SQ6<)3bxkU1E_jS~Ax8w&l%eip8p-iBOy_ zPv=%{gSkv!?`aeBKbr)wtiGb6IL0C6c-r#aDg|N&kLc(M=uzSp2PS+Klv?c(nr9@E zg51Td0Cue%mlaaAO9qgUI( zj4l~s0XL;$@FBWrxxwNthKnbX^dP!#*&F7NTBKW{I*EW-SkLFg#o(D_qf1!oiBnEB z%^+)Ss0Bnfg(^%KXO;eY%T`P&F>KPv?`(Zdxapw z5A#PTsBB9=3OdsQWFH34dUme;vZQD@BFNj1G``@DG?}$i)ej)eJp?CcC9r77GUEB! zMn=oP{eqwVf^0#QK5K@2&2vu^WF~mV)wdFxpMa&0;1FC8=pG5=iFE80j5}zc8{XvZ zojSZmwq8fS8I+n?T@9QV>#5+2@TFq38V3ubdis$I({u50o8Rs5R3Vaxf#dBHa^x@z zKRI7T`MqQU;>hXI!Q&p%?mKvfS<}@kN;m8(!B2^2BqTcv6jn{XeTd})zMFb1 znW^GbZpO+#`Dd{J60$`(Ch4fj$?CD}W@Rkf^(&<)3x1YuDL40yDg{G5sIHkrCxAY} znIosevd8K{rCM(UeFM{?CnwqPL1@&tZKc`4n|^U0vuVt3-T@Z6WIrhm9E!_cRNF|k zj&mBRQqjf-2hj#&jy-;#Z~Ve(7X`X|w`(f72hjL7)PoM@{dM7+&uViT2yt&_Q)gc3 zJPJDWJnKyxV>az%>i9HavVIWz`lt2?+7X`|f&N~gr%xbWv#xl@wXx7r`!J^P(T%R5 zE)3fu2Lwp~gF|4S4oBU8zJ7a^&{?%;DYw0)>UJeUc!El99@jwHsFF<_Eii7m9C_DK zp;MoqX|2GgA5}^{I97qkC8(#4!&eku+1VkT_Aw@{(K(PV9tx-6cgK8bxz`DSl}qb& z!sU6gvLuNY4{;-nX3w|Q$`WyJE|zzUj5x*Ju*$~kO}9NuDi4c5l9$#DzZ>?#C-HoM z0-CW4)XGl#4M-2JjpFbFXM*wF@tuKk7@PRQmumP{Wa7PnHHsz<@3F=M79)NHkS@3x zN&SAC`yVswFAMWwPDdtV&|tOGRfV3{VR7~V(T|>$^xWkNgV)n;w?bYPZ&pMu zJg^m)eiz}JK6wU-PgZie3dXzkA4M%VqHTR6=teHsI!p5d5@?CyHAfSeg|L(?DvRpc z8wPi>oqImW@WbmSvEl~MjT5i zYnWo0DsNg=E*t7ES!*8`H&nbrXZ!a0anRt=(h}!`9N1zF`f~+(0q!6T2(6fg+uk$^ z)l7raUdKBtcZx)GW7UY38CNskP(=?q3o(Q;^O=++5=R&*j!{!E&Ld=;JEX@F znyQo+c~R~HyyG-<96|$!h~jd5iS7bs6Y<>=On;v`zTX$2HJ?qBNg)hX%dB7eKKORd zND_y$#9fP>sAI}@w`<_%15RRke(L;_j|yoH-fb_D7OUrp2M4bfqlJ&=RsEVJNwht( z!VW`?LH1De)|xvW{spNAH5WL@`Pdd^SJ>ZeZ_LI*kvJdT;w_Lt;O6IYr5TdMxOiVz zrfd-fna&D)+3__}Zrzt$PyOm`q*%SSnR&cKZm%m8Yn)GD&vsqC5aZv`jvjD|`%;A3 zJtaKdRaMpZLAyh=#vJZ)FZf7N2VtI2lJOSToszowSb%g9GDm5YH zn9h)O-(^VCkcY@c%9$<%ppbFp;B8h%_wDY=6bD5A6SWQ-zVw-TZ>^0PdUQqK(s zCn$9_$&pWQudR-qQ8&UKV>0W|cBdvZG9E)kl&-sG1~7oQmjcv?gev zkelzk-w+__2=2iR-U4lFhl8hGx;)g~rc3GT>hk52;-HqO9?(ktW2cHn^AShGrcri9uuJ#_mrX?&{ zEgaipty?tAU&Mash_N$VxF+vXINzce#W7vP?>b$T}v0bNVWx-u#@6epYzDlF}SWH??HE|eH+mb4DX*2$5>bw^V7LrCvUAD#|{tA|j z^JY8s;DTOdQ-!;W@kkd#?Ch?Z(BZ)LK}~mQg7`*1YDg8Yws;pMr9NY}9)xZylaYqxJgYKJ5b@wmZGuHsL!uJ_*uonsbZxLAIiN0nK>-T zM>G@eWeSF?!(>h;Mv&=(;+aLw3SBgEx<{w zx4k}bI=?AzyxmMqtAB(-?>HZYO(z;9+=`+tWq@4FgJ=4t#Ke!{i1ei-oKQ-G8fhl` zERFZtVC^&`_Mve+GGLYD10{PuW2Rtmhg6)^Oy~cUdHn%JA;sh2Nu+w$Vsvv_{aY4R zjA7IBS*ipP$Fcz<_6bpzwhUgdv;Ng$`NX1!t z{r$(K?+5(X3w6ORretmy@UU#{yZ0o`q~k>+!EPN?w-TM0kNc(HzU2S#1>?wO?DJ65 zlZip(c6%M_QtsVA@?Miw%bKHMs5~c7r3jT@?r7pPeL90%{v?g_f#D7QsfS-I&&XWJ zbEc)Uc`8oYwb!hbauNOAxFDx%{jbe&kV7z3T7_BQ^BV*%u@d}&UdN4Y>yiH>#5}58 zz({Wx3pJ?NSNjoNF7DzpU&5mwE<@Jt=yH;V*r&JHePpMylRw^ViCt-s*l2V@f08_| z;0|Jzdf1Yp)_M8~bh$O+o;EgvafNNF3-VU)TCd6GcF#390ZFv)uEHzsFX2?A~J9IDx-{X>IJ+ZQ4CKSE z7wxF~bjND~R|8HgL5n2w#~Rxgpa6Lhc2T=`gE7eq+P`7;bcdX!9tqbF zkfkt*dvgYtm*H=e>Ba;PpT76G5N?MbbL_n~l2099IXx)&EvXHz%MP-7kYXeP=ytkSH!90x6U|(JgWa_pmpJ(@~rfM8< z3!A|7K>k(KJckQ;G=YKfo?G^iZjMtDp)cHs(m@B7k0&HdCv<(U%Xqs`7NH?!wb6kF z-)BNI;)^!@>>F*mys|??+&EscZaMLu+~1IiKX%h>agFOX!N+R7Zl)NG4X=7!!<=Q| z4^UeVy5HRm>S3(h_l~f_rUclD*Pb>mUfO~!hqE`kc5Bb}3)wNWVta%icSZU4kWtdB zQI{B!?{0FQ2~Hk#&m=@i8YXfAJo$U#^%3^0p$PZ=d`&F8FSaHKW(Gh3eb}kfK5)!d zgt=Kouoa{o5lji@sjrV;uO^#A-sKDR{|+sws%i{sW_CE1VseQprSyB;H5$}#KATHM zX1%@b8?1fpg3?Ha%EBew6n8T|$s~6;QYUhGZ~OflW^|u`?IP+UQR~iiC@XC-a3>jO zLWdp^MoDcUC?<)n zzF8eReN@!+^(&oQc3WV%cURXcrXW13pM{DE4y;^cJdPvMtBpVi{66gDhc6M?f$+T( zQ!qU}puSa}AcfX(Dl*zVf$!K(<4-z#ze7XKO^(~m3D}J3+s5kSoSgZ0Dx;-RFvX|l zMzA)63~h8<5xKFW*jyfH?zEDbaAfC^@0-AG+%Id-2&6)ui6XL4JKejZ^;3@1tDU^^vAvrfX z(b;`h&H6($nlb*3T79X-8bfJb@Vni8wWnG`WIG*Cqvasqs%eJh2KrCUf$bTMo1@33 zL#nezyKAUh4-J78+8^_T-PA~Kcg`U!caZ}H};2N3L2L5XL7wGGgu1{c3bu9a^*3Py6|ItK*9Sd1XEr0Za@)??>5n| za3(rD?O^+AeuUN%I!hw5FiN%-iXy#IC<*`B3Cw$e!(}VvrxW`YgFq*DVbXDLbLgNT zth0s?Y}XQFBWQhv;?VcYWEV;qUOsy}CQL!6ibW!fZQUD6gOn{VpuuqNH%3$JJ)F4i zY&&H{8x!F^sNGFi=)*dtsGuJx6fd)W{|sfB9}H0Iws4Efh#il97OMut>Iblx$JQ~pf=1S@F; z;k#+en)!+N;peKEz#$=1n(R|1S$VJoe;CIXGefYp$|vgmA@@%t_rHJ-B^A&GW|zUw z+m!pr;L-cd_<>6E1nXujHd9$KgkVlfT~T+I>rMk7k2cBNsQb`SL7eYmw{Z(26iVt9 z-}T|ra-snW_(_buz5DlA{6jthbqXQ8l`b0p^_QqQ0Hr1>IA$O1U*VVt zjMd+#wLw32{_A0h@7V}(Q2L6H5}p5gH+LxT68mx8DVhIzNtlS%-|1Y6{P%Q9DgMr! z>c8I%83RUrm%(e#VfF7|Efs|{@a7Rr+O+?gyJaej43vH9rL4Q; zzyEUb3^5Ms_t|dh$-n(biSNn4)0J;UtUmqwVZikX2WE2(lil+6-|On(3{3rHXB0O& z@n0ehOd|2^-|3+L_jLaMjr{*N5(D}_GW-AaiDafb`|^db>6VpfGXP|#%#hUG*N5Sz zP#zbb7Cc$CVz|)M${83O{7zzcxIi$nA4{TNpy%fqKP!hNjE05u-htKSL*Eaapx;p< zMn;tBt$f`>Ll_|cZ<$gG=Ks>9A~2=m5P&m1&7SC%hwPS20wgQz;8+tHUQJ1Z_3l;+ z8#{p#1L1pK9!O4(J(YkknTm;?9tftG$fO3ky1rv(lGx_{EPyRhji5VM#Pod>N(>fj z;#uh(nuHR|t>U}eC;HEN{jam6WCEP=1p>YMkdiO^P0pv3NJxEgvOk)9c7=|PY#?)` zyq_|K(BHpT*gM>Jplpkdh0i28rocg0kQ(@|5gWtG^#Kxz_HT%s0t8s81_TJx9+ki*S&#jCU~?KGQXf#Yoeo2O znmjo>*_Gy;Lh(Madv+0_l!2kDp~kNy95V-I2i^c3u{SW3t*W6;L{^qTRaNrL`ZzqO zj|L_*=+f=pm~DE7edBl=4VfLA{++TzsByOOLGZs+i9H>l&bN6^ZMwT&R7uJK}XnWFcx3)DfZiiYLlEs6(OhUwR4`!y^Oc>@G;+B#?-ZQ|!|x z=1)1TFgn(9dwZ4}U(eq2@Gtc)F9)1j;vfVu$z(Ac zs|A>nk}nttuxFP01Nq%7`W@YY;(!#1Yo+CN?TbtQTe~W`13EW_T_^eB&u~2kK(3i@ zOUy#Hl$Dwq5Ch#IAWM5Qg$<+E6kw;fEN-BPzqAB&yF20#&~7?MAZpmYnoUEVoSz?f zhF5lQbrW&srt1*AlAkoAp`poBtQ=QTQA@fU`bF|@Q!8Qy^BWJk?a#~Q#f2vkPJ;>? z9XI~*vv*w5t+f;Oe`)~|0^fuxQt>kq4^x?OI9o=bz1TLfj?21?QtP5O2dke{tX7)s zzm8{jqP$m7zzKWH%FP~9tD?eOVbDy5l+4_}F!+Xnf$Hnof1Q>vkt|HWc#T^EZIm6a z`grRsPf%89)tkOjrD9i^9W;BebN1tq+UV z&mgF<5RNL}WMgR>^~Q}$7Ye<_0X24$EZ^X?LP@1e7s^6;kC*p;XpGUXMy4;{Nz*jC zrL>p>+$2FIZr71oWN0L*Meo;=K3w~?1f|*2>@ZkK1y_`w3F$mu#%yRLIw{axf?+Vh94 zN(Dg^`Xt%!1-WRPoJn~vk@qqY_o}8j=U!TZ8RX`nxbyl7k}zi57F*yBpQP(jDxrz; zs$jY;orc$%<0U~hA*KZj$>&Zb77P(JHNw12gbMs44W)^JiR|0qBm6o1Ti^!;H9}a} zd!VO!XhAe!!BeK_4b$$d_%sgd@K zJYpmXykdnDq@|@P;gyILGv!T4pSN7OdI~MI&;s1OrB(-i-{N+5In&7-Oh?DZ1Ayya zs;aYlw*_Qi1M8zYWpOGc=)cPHNwX@rYvzY3Ox zvfA7*K2k7Ljq^o(ax$Eck01i9Sciz=rs*#{HChN;eA;skG7nM-e&UWtdDH8M>tOj+ zZ(r|;gEXj~gM#e=gXaf^$4WnR>{vNGZL<{%Gc!tdYSO|&T7jRajJQiIE7{QoPpi*r z=AEX#`t{lGnRCwHef_BX;RXL5w;kr4Cv^8=L2v;`!20&-&RXwv^{L&kQ{HFFSfh(H zzNv{PHA6>4PcMJ<2{-`3Ta~5Y0mX--%k$0Wg~IIiKk*%XzP5*vLhEn0G_atCL8AM} z6toU_bNKCsCB@l3+;0VZhTZe`_V&*1Sv>vwmTMbErQ)G{@{I{`Ow5O z?mZ*zsOWHSg`lfPvN2hQ2oMZox||cCpkBpiB?L-6e06Yl-hn1aserpYb+t!#f61$_ z>47;bKN4WgP1>fgfPQ;afcH55?icC!6Z1{hz`!`t9AgZ+j(s1UKrqk_4Cv+&{%U>o z6y9$vAtiM&QI^*H)<;Oc_B6DwPlD#{+wOrv#GqjY4&lnFr$0O9TjyJYRaI3$Z(zLV zj@hl#L!BL~>En5}zv79&L(Pu7^16cl+8`wGkP$9;eh!dj?tq@2+dRqo149)>b>y&5 z?8f4<(_o!dsCApX17iauC#v2A1dJPq>KNG56#by$U;?#!xkwr1qP!mSMsexC-&h^Z zmhMtjPd&^@N{CJTA>r#WHG+rh)b`vsuPQ5xl={ZR%nTOj?%0?dNM$ELO&y2~i6-XW z>0wH0q3)vk3=~ZoT3R9i4Bx$D#j~i;;SvFWweQFu=t8+1na;!-00yrU2?sCGH&ijoAkN3@+2VO*tD2pjc-jeQRyH)pH3nc@CnbbW@k>X zU8B;d2)-a?d$^%KL&p?(82XDt*;B$!V8m1xWZl*}F+2kY0W6jY#`4?e{ zPKVjg1gHw0c^W^)7+0U0I=3|`0z$$(>D%!Fmg<@5>1wk>@ZMBD@~FH*)hh&(fWrz# z*dWIVxS)9R{M~%U#+EWgIu*w>%8uwxsa{H z-uv;n`2nosm3zoXF{+cbNHOBmWL;Ka-vfc{zFIvAZOh$VSZ@5HJa33-isS8X@nn9a z_Zh9<>)qu#s4vV4GNCFeM

%k zWf)Sk&1|d)mKI>`voRNB9&Wey+A>Y2-`S?0k}P^CA7cUD1f$xJW4^?b!Clx*a;hTobb21Z;<#}uY(ZRmG#dyinpwJAv)%)H4V_6D*c?N zme)vf1h~zt)Wpdefid91ZaG`{0*Co`dVLR>anq06U}La ztb2iYeZAy6?2s=9fZaupubw8mGH9rt_1rs70QPC#*Kkr}2jasJt1y87gnPb1_Q&!{ zEY0_9INC$$L*ArD!tjt_!{-BKNu9>4b@=Vb^&0K29Oq};X;avD`--HQ0o4DYl+|tO zo8;-5#tE55vUzKx_`7HREMV*g6)U%EU%E_5UqeWU$GjQ`{`4U7Ku1?4QHtwe6(|SP z-*lgTwezN%S!k-H^XtJiI;LYqQXig&-lL68@@_+Qy;oTS)f>)Um^Dn>U&d&5=(?{; z*m-5H#;#vP4bm195?j#(0f!=<<3oAGlZecY;~c~6x4V7u@t!TSK3u@E`4R+ig4d!z zju?W8#G|NEs@sP2-xsMrPM`4n6S{i%bH2nWKKa#Wb&}!I8*|#(iY|@sK5AUnDL@zB zt+PMq7C`+`n9ODart;4_i-Ply58^ABF2e~&4!>q9*4~!ZgeE~^_Sz#0(?+Rz^qB2q zORPj|Jh!z=pyQyxbM}L&foG-g45nk|X60u5Y_;o5xoOu}FbQuG3SaH4JU=5ciNqGp zc`@wP{}?tsXbezIKYELyf*B^OYc=K$ua(vqs^F>ZEyhBO4ulRqUb9ZO-x_%m*QG7} zE9zCBbjcYxt(dTDbvNiN;w#9w3%>V$8NaKI*tpcE^H-3I{FI|CgM zM2L8mcUC)|m`2p(kGqENbQ!pQ83D$Nd@B<=OZ&Emn%UY)CD}r7T;8TR6F=%YG(^f^ zhjz9cR#C4|VLwvZ@$ERtJ`qKJ#?emXC5<`vkM;FljYh8%h4%&(Yd2Q+rD@`dv#1UW z_UI1_(4y;7#eS4yv;%BsyGV}MexgXqKFYI@piiGUbD7ViR_N^6v$O~Z%#1SV;qB@` zwG_{yp4MkY>dL<{Indk+O&s8A+sbu2T@pmBS7q~&%JCIZMMr+3%iv5lIx90j>rT8m>_MiHXq(-d zFC|?&zH+jmF{91Kt7*HkcDN7|xijvz+HOAe1bv5z=@RYzrx{>t&fNcQNE5??4ba~+K1kFIP$6>Ha-oQP;$S?B**DZXp0at0Iam9{!Cr9n6A|R>7ZOHXy zu9d^p7Jttw3hcb%O*@s$Acf1zFg=pB024iQpWPCvI5 zNSRI{W>ztEj_!xMMN_~@={?Of+G~3$YN{(amQLHzFY$77*fC%kp3R79DOuxhQ3qbEfVwt@q}%oRO1n#Z!)%J(lD zv=S8X1nT+DnWc>xb^#wy#Gti?VO7=x66E6px*AZ%@t5ZYMd0XAfRJFQNC|LMIS< z{Z`QZoO9msoV}kP?>oLR91KF@o%>#EuDRx%>zdcq@>9a=9|3scHFEez$Gn{+!$r2= zIyK!JUK%-h<0EyMTHdaia%d5T=((}2n0DQ>lkyD|ApOWORhqp{MIMq(Mw5>>WbnGB zk#kejZT{`E`j)~x1B#0ouJS^oiJJQD-@8B3i*aFsXm_)lqHzZeibdTnQ+F7bSgVOS z#*xK=w5~0&Eo;oB8G}51CHFlS{iSv0G)DuKQCW6UvH_+C98IO)EG+i(+AYu>F5H7q z%s`K~-oB<7r{qxWXQD^VZ9d?!+aW+|x?|ib4-^Y{ZAU9OT3339dhEd|La5@qvBPb8 z&SlK>y13#fveuyzZTw0Fp%0D$OE4yQ;mXx0(Ydls$HA-yqIiYLLNqLPSTHI+|TcpYfQ|p!&U;R@2d{Cmu{`yR~gnV zNhWsX;zl7kzTdK=xN*N69BC}(NB`2*X+b%Rgx&afKgT{`wSw*0GxN9ipsEpM703PG z^W{n{@12Xx5c;g~*m)AKwR6b{J^5_tDh2=YNK*i92^~Z>Ecjq_pRl`ORKpkpQ=4f8 z8FFhUA?rki8wWfuRwm*ZE*-tA2*1|$fC?&aGP?D-`@z=|!l0BdQT2W?+As$}yzHiK zcfcG8Co1yzh&BjpkIJ978kq6dW2%|UI7D`Bw4*j9ugxdm1d$dk%hbdaJx9@5n7urx z*?kb??Eh;^<40o@DTpMkf8Zk@3;-IILLW8GPOYE6%k3_48-u$;B{GKcYkeZsFPi1a z%L^}9?OsEvn}XbvwshhuUM^oGGN1(ZESzA83WiQO7KbPH)3U7BMwr;2zK zH{trxMN9Y=M4RwqucVOCl_cViy`J%&t zQVu#0!`4JyUkXL@Do5jT-cpbB{~F`0F%yM2v&kBat8ZLwfHLi7l6?V^a*Fe@JRsrq z`Vye?p`8(%HkG9zWO*RP+e+WFgWd~oD$O<_s3PqG#HulOmAAQD;QMY-6S_lLlyT5% z^jo-Aov#1@G#npzSylagcnkGKeSmu} zAYLqUpYesv=cQ|BO8}aoL=aZXjQ~tyYNFp|eyicIii%60!yd>MSOMys0-I&6ji`A} z0HArSm-Cd-X1w6t=vaQ#tSJS2b6&9Y#7B%;*u*FFyqlr)y-&YiAqWsScoI1$7^a#g-h< z(?|XA^^H=~7U?M7ayd*TVt3)w#GTL`huZNteIhW6Q&0u(8MhY-Gu<*OLl|IljTgCC07V?ZmT)olC_gOUWSCT}_tuRO4px_17 zv}qp@r<0J~vLLH9e^147KG|83Y-;;}hp^)H@%iS4a+1>WQdvvQ&-vJ5(dS$O_6|fL ze(n|gDbmt1SzB67+8DUl>%kkt;7mS{MmR=3obzQNn+W8v2h`8a``ens1eLj)OYKe> znY^F!dK_$7ECR6e<^!x;N159p_p!S@i`%xQLDWejuGm3l;j3}EkXxlIG>qmc1`qPd zQwpuSyoU<}ItG$kPo%+tL;?WY==I9r8Oq`1u)dnMOLNLxx+d(z`Ou*^^5}>=0Oesp z{lJx>w8Z}>+gqKxvY{z$!LPC=Kt*T^R6bU}{DCMh)YdC7c}wK2@mn29V~gdn04}2x zFUo?Pb9fYZgK6gIk-xV&$PL4o6)o9=#o~WBgHrxuSoHUZ#G6$OJdReX=^AXNmEQge z^M-lm0(a!Y9&}{%*MvJq+@niNJ$At>DFE~PEzeZ`-9DE}n-~p~)Y^sm zpB179&k?%5T7ukmy$krW`L8%$d4#d+#_S!m`9-yV76<`=*V{Za*RDO;rV)sI{+x~ypc4SjH`K75I{Puc)PI$2p6WBhe-0dkJo#IN;6z&BiA0y{|PQdgJHhDhZ2X?C%@zZ>Qo!B=1`UtSaF360Q&YG zXkt%E*NxmRwQPJ6c2;WHc}~&1_NU4Q-%c0POr&>jdMrsIC&|igvoX_{;&oWuT!OY& z=(9XxpUF2<3ULg*y!Sl(9MXoE4nl&=8@zV^<&)4r)cvAYDzEq((?pO^i|(Xcy`uXx z0DGbo7+pY79h&Yx0TogFQj475p)GGkxNo=kU_o|%an(B=pp4cq6CJN=5XqO7R&M|^ z5FG)#fo%TECy4+`^SKv!ggs}4_hMX7J49hjawe;MkJbc5EoM{knSM2d@dwa^v#Nfe z6NBG!KfM{|*e^DbDPraubd$xM-Yyb3c<-B^>W3Q*`|24VxJ}kE(aMYc-*{-RLoriQ z!fdt%Gl(}?tQlPZ0j3t^AlA(1t~^-rs!+!5W}25J4P_HjZt7W7mO&+VBhfBu;~Qe` zIC(x8Tv82yq<{1)+G)(xx?ZISC`gq`p_?8WmxqkdSf&8d`1ngOqHjOF4%EV18YY?n z#O%m*VKh0?RghKxJJZ~?^(Q8|6gDG83K7-jKcBQjaAkbJ+%J9hd}h6Gb55bvYUA)r z;nNJFn8@r0mRr&`Pr|wM-x~$&`htmSevp!4MwxyHRn+B#THhI8we{amDR>%r2g+P_ zYu<8d%D`bqx7wgXE@r6fup@>iGGUEs`(vGe{`!lUmvlGXSn_r&KV&}-sNSMMP{y?p-UpR=UN#)27r;Dg`rRq7Y3*?(BO>e5KUQ>= zS`=x+==Kiy!?}zl2s$uxtqREs;osMN_Jq6!%bZr_iRncO0IH1KVPdyh831Dw0D}(U zy@?x|{A@Resy)PLg`EtJQfBB}wiZIJHK=y0 zYgTE5K&;6BJq3pZ=@)RS&m@)Y%P6Qms**$A{jjT$LXHr|^d_c%)(hKNZ4Qxoze> zKCvh(0VcSCHqM6=Wi}k3|6iV9U|%SJSL6hU?aQw2?r2xFdUm%i7f>Q3)><7)Qby|W3f1~}+^_?5V3SEVFf z|Nc6KS4> zYaTyq`%tZgk3P&Mn_2XM-PAULimKL!Pa3R#OGn4}{2-z(Ow!}eP@51H;T%kpxm5wP zSi5N#wFUrkad7E(P>(cy{qYM>6j%4sPaL(l+psQGouB<8{IDk0QdpeXWwZ+S4>!nGaf9OKv;DxZHb!u0wC~G)&hJ;_7sARM@woiq~`9BnRoF zs?@L0h(@ejkIR4q?^$#QqP?yx<+qh0Pj`AUUf|3P-$Rq)Bj;bQ?8&Xt`cT?!uaESY zJR=Us(VcCpmXp$dZJI$u7PeOx1Ajsbd96eK7$a;1I{JT^93HSok7D-btu_y7jUz8i zM0#D`4xLeqEbdW=YZ$ilwTXFy3YlUU1Pe^&ZVsmhG1`guoCbPOr zTs)7$29`W8RC?zuOq>d#$~dwWfBrn859u-gGB{jp$8zz?7%f@c`hFq} z?+#?WH!YOpv7WWLCcI>ikzK4F6chq^ZaOj80U5J4nyYJlvM1LxH6Cb7> z??8<6V7Vm9)VO{z@s&k~6V=M|t1}K(z3DQ}>!S&P1WrD|iz^8Au|Fz1faC$T>1@_= z3&srzDKEi-MB>a%_gNvU4fmowsLlo8>hh&lyvqxW_k^Hw{T$qcZb2HIc2`&`+4CQ_ zgw!BW0Ir6gy_1$1_cFts^PFCp^>r>Ip#b-5bg`OGl|P@Q3dk(MP|7@ z%LAU>>X~1F#qJCqPyUpWkM8fY?aF@`+4>@=Fiq`y7-3J?G3W=S!$gwcBauWM@{LMN2C$Vw-NE zPq=r5Gspd4g(_KbCcScC=%MHGR{Mal--GYgvGiYJmjOG4@P%U0G10?cpWU9S-@3THKB4UTzNEC@oef2kU=-a`VoK2COf=&--!{qFX@#VN~rf#}2Rs zaf1N|dmFMmu`$lzSdQ=M8_Gh99$8q$=Ih6>6VNrqZjki(M^D^Xx%a?8m_btWw&1~@ z%Ey~S$+64mP!ic?pCR6#E%9jk8~}yAQ{kRXVpJ{sdVv8FNnJU=IoGKCSsZ9Ted5Q@ zMnhEa65iuK6FM~$;JG-7d;VsNcIx9|y9tVT>xstz!H^ty+V=UL6pX=G&gjA=Jc$ZF zv{AX7|K8=0$jHdOSw~tfLvMqr#YE0u^d}X!c^40C7nL8ptWxGoQ&mI1YELSB{H^6BNw7m`&o8{LfqLEpj z$tlpu`Fxadew6nDYF)NB$&5^uJ3$*xvhyf9!UrQ>V+4@@BMM8W@kj&M$!WI4R@rn^ zJ}S-d&{m`1G2<7A#p^9gh#nzM7q&a8>uYG2^gne;dYV6~Ve>(mA>+Q4o#MF@&LWj@ z39l#au1|!n;~SUFI?K5pK-jp9tDca1jc`D;$GhRzdeaR3^8AtVKy2vxCTXJS)s?6o z16Wptqrf#2*c5Ack=+QR42ny?;H&%bK?_Dlr#7xP=%xs}Ovk?W?v|JjiEEu$Tz9z2 z0jQ&Bbk%ub1qLp5UYIRiLVnJjF~`<56#c*EzvOqZ=p&p4jT92b^?@9sBUN5Nj-1J7 zj1#TpS=m0{8m~-{pFwcm1w@i*@c~`!DwXscI-Z6CLoXgb$=2=g+EF=-gx1 z$vJln-)3JOtdiOp0yP~ra0JM0j9*LmZX-u>OUy50AghbV$M}e zYKmbu$H{j^8t>g)yBA~f;cT}t{N|l+s>tbxlnIb4hdZm0$7_hAlC4`!rkkHrfgWlB z0H*s`_NUAF5K!>Njie^r^fK_n!6oQSR&cMyoJb5+W$Fu95MGodj~mf9%OaGVCB<4@ zX4gz3;-3SNNJkN(DMvB1wL$NT{?@#EYWC$q3Uaf`xlzP;aWq5d2To6C0*piKL-b&4W zf{YXtRE!r;CHH%Du@!~9km}aBX42JVxVZl?Mdyv<@(yj8>;8Mrs^5`^N3|>&>A;6{ zQ`be#+mf(xxes#zCQmRht?|HbmL7?Q#uT8}y86dS=fI^}s7PQ_K>S0;2ymVy%VTuJ z#gq4{jv(5Y_g#hF*B97cY|xVne?cz0|If#S=u;NZf&*>%HI3J^eX1l9mVfMfb9}+QfnnqaD7ofbw5rz?!LpAx;!ZN{+nil zXeFX6!e(S)EmoMK7IQE0>Y6}v^%*~1sI%n? zRb$X$H_#iJ#W`>K!t*Fq^)}bV9|l37w9s1B%fkyG^Y;R&MSOSGC$hJpxLqkL_r&s} zyEsH6X{iO3iib5_02HVBI%oiolGbhwq$&Otd8??q>v@%$eH^G2m9nOr1~h~% z`mHPGPf8VLO``t&7V?FREaP^N(VI}ZN%@BCGW-a1-@b=$^FaQ0I;)CG9h@(ULZh|UAJG?s~(&wB^Vkt(BxCw;cQZupf}S8{h;#Q)7I+x_V#yi zadAU3tY-UFGcMlx=)3a!wUQhdoRk#-4eEa$UP(}ZfTzNO@c>JKAr>4r zgpmzGNs_Eh;{dh-*wgcWXb#G;?+LQM_|1G^Zvuu#_!TN)>7PC6Q!M?1KuygR@C}t` z-*CFJ5px_|?oWgzf2hIvgDl$tMloun*7Vy(CfmS_IM0tujr}tuw&o#t{7k6l^^4*R zU&z5#9M0Vki6bmmi7PKJ)qCkLPDr?k?N6j2BTM{LAT-iT0k{q%BqU~+s7oDt**)?8 zOq>wbs4jal{+`G;>ew4%D<=xS^bb@IVCk!X2cu)BV*;iot&KIE9SB$)yq>s!W}sFI zxCXRJ-Gkrb)gcSM$!z&v?|(p_QH$NQ20sK}08dAay`{XK-|QKblz>#^*MBj(D1vL2 zt1{j`dzv@o*nxN_OsskNAMgG=4R%?dzw{D3$O85%ttWo}cNZ3^16ZTdQfF(b47;Yv zNx<+-|7&=7p z4_taG!58|+v=inO^?#ot|ir*Fhk?_E&$e z%zUhuA9A^}jr)%)(=!L_R|Ia)0=5}{-?M>vjpbBwX8eD*^v%vXyP=w0kB9OZl(AU= zBO@cbTtL2}&Cj1duU)$)os|`$|0t8p|Ifbr#tUoBBscPYo0`xaV6d@yBPteuM)q%* za`3{za3xGj+yayH8f(C&NbKZDlmrm|KlKlQ59{)Tw$Wc)0RIa&*6&WYH}|otE($^H z_#b%EW$YYv;A#O+Y7T-(XzTf>AXr+Fgs-j5TShVBaQ*+Wp#wW_zWA4&;}L`Dsgoi? z{hmD`8tiOkHmVr^2eTFZMx6lZY&{`?r6;j4{6kL?#^TJ)uKt}9969tbjg4Qhv$F%C zIv(g^3L;~cmp(Z;>CHqqr|T86^IMD#j+@-#r$=nt4Cas~E5ye&1k#dcS@GKpKXJK0 z$8Y(fq@z)efus+Zz3osPh(v11OaE`$f)X3VxZ(vq5$(edWXw+(ilp-_JUz47?xF)f zR*cn7rU3*)k}V@_7d%mo_u<+w@8k! zD~j{m8<3OPlRADRzkTTrNi}^{Ag$kYQlMWNy8|uI8wY34JLbnxL)4@K{~^D)2X+_Rm`+q!(lKV4}}z zVd=Wxd>cF~LwDDD{65m}CXZLTsDV;eAs^y4w%P-tTn5XtZN~$7{^uF%%cA!z`SX><0&RM(JP5A+EwuIteaDw%Ij&g{zb^t1RUp;t|s zuBvQ#Z}ahx#?|`_(x}hNx2$e{HNbvkj|boNy5QA2@+5+486e_GnwFXR=jQ+|2mWfc zP-fU>FI&2C_4#m4)wiH&@+r>t_OkZtrCEzI=sNctGCC-)w45+|;X7U23h5a|&$R#P zSAd(3k=q9Z-^m=>*($jvGHmd?S>8ZQg91rBfM3X^AY&2&fQ-yiSX%1iklHPq>0ivK z5d=v@BbGYiQ+9SX$vfAtw|oLre6LLCUdx04dBft5O874$c?_8c_$;I=3A%uS?ema$ z+*nE;gCxL2^<5|TxjImnV0A0oqS${5az;t4mx%Lj#CSxFx*hr&5qbhHTkP5t@4XZJ z80LMFA=i{zBe@f#-&OUma6-%ui6=aiL4Ro1%1x@fU&Z+C`k&+j2J}y5 zj>{64iD|p7Z?b{zul87BKa*en&rBN6<4NP5Mb@_kg#0U4H!j)LMLx!`qwWf*^BP8~|vF$tm-2G9mRM$i=k%7kSr@!K^0 z>e)tatP1^{y;+L-2cpkqv91j({6^3#XtR|7PM%vULKq>$S6pwm(%mx=0%yWOK=w|$ z=euIcNU>cHP|ZqJyF={P5W)}Iue4ou*AzyzY!Szow%Ke)OA6pUFZD_-!?$v(?0@3C z=c)*YKAkEhc;5K&J7|XsiAOhxy4OmBQ*YAtXyHh}0mYS%Ek)xkv8Vz?lT^)si0&f$ zu3MW!B_Wrvt!!@vaqy)1&qj$A5=UNn-PogKo4J$hD(CNKSB|{dsFKplaS7 zxGZSi8T|A0RILm^YvJ)*cfQf-4G~tRGuhZpkh;uj^QAzKm{Yeb%=ZeFyv=Yyf{}iBRwnSx8te4xr@n_Y81E&W=Z-9(vY{s?(4Go%{8(nxZ&BaGSx2$4(jPdnxc z?It{(R>u`VEj84rW$3#%>OJ|0kU_=5BYvwsGSI3KS(gA#9A3{Zs6Nc`pifqgHyRdo zKVtPk$-KV?$df(@M7Y8pX#zxX0 zP7`J@;1|KA-}O_<&pTy<@RwtuV5&>`@0}<(#b&hNoy!(Fi7k{xwJ%*$@%=-OHAr8Y zeq@>Bsw99?gjvYLs_fQ{T7sv9Lyv$VrGU2ko<0t3)(A9=-{ZuU`hg|iy#dg?@Hl%l z*QB2J!R5v-!n~HDovhR4KNIzb~{pYGojfYZAnh%Pzq9bfbQL@5$oz8HxTpCE# zCO^nGvwFI_G9(35dr~C4E~$k!1oD@^*C4&MngN=j3Ny4>L9-QhxPZo-+7(8+)t-R$ajoxX0(wV0Iio{5>CS8o;6souc4eAkVO z2CVQ;-lRqfc*xr~*$DobX43OC25UepPi`plTlEH$#ET;2eF!PTH!d9Rsvc}DnjQ`2 z&Hz$S@}NpPZ~LHcUO3wl{-pc=ON(_PohR#U2r5gpc73TYqbunhxv5>{(V<;S zboIGhzcqjhjo$hS4&%#2|7}nx9%uXmhL3gC$FJ5n?>yN8U2lcfL+`KBJ$#`Ft9ts= zm0dG0$;pjE?F2mTR*`Kx%|o*np8H^xv4)h$0_B|oXtq(Myrz3Pd;Kb>11iVk^!!1l zqg6)SSY|TY)P74i$CHW(0Q{7L$!3e6=ZTAkNudtPN^+_nJ)d-PKmgpYgeZ*w>-`-D z64SG_8h%#EJCrvzj^MrQ$vIPLAA;ral0OOJadD-RYvpJV$H&LaQnn|#+ zwIU~4>s7o7b4PU;va@XRlN(i6R$OYb1~!)n21q`8#`@_`cHuSN@V{ zu08tEe0#XC;2q_-w+GvcQe!T!Bd48}Sk;p50w|hcE6aWT{kj1YViaZ`InbdP&VD`c z=7YB&m#}!%FzmPtwCAp?X&~QG-G7<%u+U1q+{s1}3~(;?p-8C4cs{8IuJ4+F(J zc-XoL9|<-9P80#3`gTlm?%Y3T_BjFA;as(h3VgCYUipnhIgWs5X0fSWreyW_0|^ux;V=C8ns3%AASq>&XcgF`3FU0;B;IX^eaRp+Udi?j%8{9 z`{c=EHnk)T=4eFLz^ZUDn`3$}^DS2^mYl|Ip;t31n=hI(@6=twQT4^v%nU8IV74T5 zNW;mEQ8MDc;?>XKE!7fe7vJw^z#eQ|0Y`2BSU5Y6z>^l9Diu+=#T#SK$X%8LTZ?6Q2y$J>!(Gwg|Df)-gUyTGwWeC|r{EP_JUE&k|2Rz67e6*XuzB`&}`1X(6o%1fghp?0aOQ2#7W# zjW>z_cjvcD`ky!r|9PqD!YmW$jPHWAQa#xr(Fb%t-=NMHSYRm1T(+slO5D8+dP>y# zIiu2C_Z`A?SL(=ZC#t0Ge@7+(?xwC9i3_#r7dy^-vdVycfweEz{L0zB@NbVQ{`#Xd zHTbgIL|giyrGdj^RGBE(8rd0$*!`iE>zYv8Ti~Mjp6a%5-)sE_F}sPxXV8~j1Nh|K zKTa;#m>$w2cF!BhbQQfi!cXusy7=}r4&Hk{nTyiNx}D1PCwk|u=iG9-M#CULavfLL zDfj7Rjk2!{3^FPY@!mg8aQ-wYi2S9yTQJMSJj=Ad?s!L7Sa`%8@zm9L4bmLpPSh5( zKYKe(EjMwidgZwx~zQI0B<@#5deI5Q{%F$-i*c2M-AbDl9|4B(tjp&m*Kl;GkCT}+fG z+c)Byy>;&=!*Wd=_M^Tm{jDvboJ_hgp(vRNpNUnc-ETow2I zZEYYqhkVfyv%V5ry?Y}3DL6PdEk!8iCuS%g^%;Gnl4ev{R)L;gcrwP~MJi+f^gDqh05Djk8=}cDj64Xk=td}Cnx0#pFhi<6*!aS{?no4pVuuZtyNBC{jQ%h)76Xc6a#_{lnLf-A`5p zbx$yQY=*oNA8k5SD6$QJpvL82581)PsNTDW=V?v3w_2>|(B9{^0)O=31~U=$$)S{b zdAq^DOiRX#i7GeV$u;3*!}6l@1E&}yXe#`4Cl8#e(`aQIrWD00kAB^Hi+ZS?XcGRg2;IY!#bMrO0gcL0+cBm#mYLpBX zxx?}HfV}Gz?7?Ev&Ph+FEW-d0Q$ZbYOkVnTGxFEpJRv}39im*pY)f|j;#DA2f>C+J z9;dzm*;1EKb|U-`4Uub5jA9xSc8XYweQ0*DMeTkVk3X?U#toxe^j=p!P!s*~@Xpg> zttZvl&c-y71GFJ;Q69Df(V?u^Z5Knpq^~JI%x`6zQ7f3L zsZR%1=tw=ar$4Z}+ub=AJa1mt$#)4HeXZ_+2%MaRClLY)N0m#_OVfl^#w2%>B)piY zAhQx|rt{|wZ{Z?6CXUKSUp1cF2g-mrAH`O;vIO|n;s*rm#yOqGUpY4o7TG9=ofMB+ zzn!n2^If+4A?eCGV=UWy2!OF zSNdH9B`$GI;+@7c-I?UGvhmH)elqUl7kgULqg4kJk9Xu6))SV9fmCoO+zh|_5p{o_ zEdBO0P`n85h4zAh-Ali;&ExJzGqVWtNvD8IC57pGa_#!^$6xpji<3Un50{uso-22I z6lB!>O@Or-^Z_(Wd96NL6bpa2ifxf z6`hWXSBhtTUL9jDHTmt*l>)1=YzYj@I7~5`cm5}%z>Bqmbj@_mI=jj-zz-KyIzd11 zqX_x6k*I1-Hck7RuYk-2wA+(JGx&LgI>NW>W;!S8-m zZwlU{zLUWXZeB-9!51VLq{ZuI$AlfPE)uUbb##`VjxGzFu*ZLST9Vrl z#Uusedz~JQ$d)2z)den|OcoB5GddlwPRndI7o-W~xMNPaiS;*JOYlEf)l?!HI~l(L4 z&xl3N2Y&oClD$G@U)gBnCPR^_qlAWt`vh(QjjfcFI?;;`M&hXO2h5$vQ-1WV%3@rE zC6j@IMm#C8<9$1BJBz5zQ7F&j3@xtY0ZkE{hRVI#);s{ZEZr#+?amyDGWu+g5nR2! zL*ukEDM8#E^I)Pm`LtYmxKOxD_@pzTdTwWAtsuND9=>Cdrk+w%l51Gz6ybhsyVYR% ze5A<6srdQBW6UoekrgbN{B(TqHzJb}yo;hqCq+v^18D2;_tkC550Yq}elhf%z{!aUyY zi&SRv#XGbw4vtDUYfFfa>ZFGCxQ9^5M%KGq zleX_Ey4{wH2Kx{&_OA87@F+scCS8_T&d3;d*%}$qQy1R~kyntPm~+-fp*}gFcqre>&=y_i~#Wu`#6#;SQwc4|`S@7i^)Pl7f(medru^a(w7R6c;~n ze2a!#dHtfxkGQ%(+PjlV>TZ>Qo*HPVY5T?IVwHup#xL&vtpNQm>|QeHE;dSwgEtEl zv@t4sSW}%~LPj&)@x9vAK$mH`Na3M>sHUzy#+{w%w#HHKZ5CJo>Y-?VUlsKiF!Jj^{3y#}|S`VTFj*uFx1MG9(;%K>M z8kNIbwwL7&ou=w0`!cj6$w!KS3$ISswi~K|=M#Mz$kygrAs4XgdIFTad2FpGtPY!W z&0?vXek>%5)|wFGnV0v_!WF`S8h}q5K2ZE-9hPB z7B|nwQJ^!BYVfLl5zzK=pL+1>dS@Y~lz2QeyE>kSrTC$ei*t32uolhb zt8`%|G661b$jZ|!*UCwR#qd|p(LRi2wsE6dzIno!?L=bowR;k~zgPbis4+77FvDH? zI=mNRmEaL4#q;{me=2VyXaYYDVdp6;3m*MG84w$Oa2wsPzuq)5p8+;9-p!~KX^$H% z)mNxCbJ|Xvie8JILV${|-;+2#8QBjod3McortGSnyx7LkJ)mU!SoJ>7;^_DPGg*0d zxTPcVD3UuiX`)?lNOafc^yFBr0`{tyO&PM0^dt(RsaIgl=yh3aa(lUCvFGLBs=9ET zNwyq%bS8nc4m&A(bM{t$J1N+S2ug_jnF%HZJ3+*5lxH!&19^YKG(4491W%d_?`k|) z_6FJ2P$b==@T>%agBo4cqH&OAQ1$la-D=#YL&N-=1!=Zb6BpMzL<&OqK zEj%46MHJ%)(ep&cIF*GdJr3@b@_VtjoZXUmz15}=)7k;yu&&1}Vo=S5Gvmbr<<&?> z<|f0|O9v6r!3SSGB$tSHD#tHP8j=`X7JGW|`iIeJEDv)N$`~0;VA|U9nEYI?_*cTt z;wdyY}sx4h}T}b!|WR`O`f&IzT z-=|-67z1HEs)N=BjR5Y~p>A8S85~Q`y(DL~8>q4woZQzoR*XoAa~-BT{k)$^7f3@N zF2KWeth!e5{0&i>nCQwqOtfQqGmt=H}o^{J-4pf zdIzM)?l7imW8O+FK@vVPPlJ=o1YB0c_@&*qf8*Nmeq~`@mYd)x6>wQtc|sM}f29ir zINYvl4bJO>x@FEwD+2kB$3p`>bFuHpE1;G>4nz^XMjAzHq9+i!C zCmFfz&+WGFd}&CdlV*uz`Gfp-^sfwS~Y@eWiw*MQ^u^0t=U;8UctmS3pi=i@6Q z{lWXGyA3YSmzlI8xrCizyZy_j9pOqW1-Z|6X$N_j(ZYw0{raL1C(kQ_GpsKRGKVpD;c+SPH^_jU{24zHFQd##(r!OLvc$I7+2 zg-%UI`t4lkgHACtk1CX?@n-YD*c!N>H=z65G~+fl&1edk7654m8e6m2R>GzkGeGn) z0kXvqobZM)9`ynQppstp6Wm5Gqy{{!$Ckz-eKUj7;+eEx3y)~=?>c?<)nYwu)1V!& zoGde+1f2BWlB}YOig-(Rxb8o{bgEu|REjtu@<~bh-hwc8W1KkM3bj61R;FdAX1D7q z$&G<-rjgOp+Z}G{JIKGUIGm&8JxxiTUQ_f!Q#w9S94N+O2qcps-8) z38dvC_qs;2uWArh7Gw8kEp=M$$fEWy`j%i&;VV^T_iT$wi09Pl0pVY;KHi zIb074bvxXFYj>&aHK)7|R^X`=dYaXB-uTH;w-%GL=PRO&Vv8O_s?PG(!^kAV8v@JNMW*1A?-f)Aj@bimce?v}@iog%0Ti`* z;aIiuak%y<8xG!0S#0@ZP;XP)vZ=Gi5Rf&Rk7?i>{dhdd_c zm!~4!{C!cnBuxr9h~4#2E@pefvKMk}+GS6Ci?cjFo&b)70ta}4qz~^+ddSnmtXMK* zR#B!wItb`oS>=1K$XfYCQnF;sC|=8oM=!~rs16Z(%Et?>riLir4Yv!p&PDA?T}0Xh zv{~W4(pSV88gaL(@tr?cw-(!saBHUDWW3Wp8qt*)-r&4CY}07QCop;fsCI_F!lQVp zkO}(5*5NR9xym2=p6Oc@nf^vUbX2=6S2*#0VIvtG7n;#OYS90Fmmn#}?jpNm_GUnD zHURuCwb8>K7cCC^D@@0hlA0Q^_Px%kmP=xY6C11e zLwPy5klEQ6a!=Y$5C&yXKW7{2v!}wv8p==j00bBcgNh2c9%Zi}68g8s6-C|z{fSu= zJL0xeG^XiOk5FJ`4>IoKP0uYAG2eS6)?99Ux-up^mY!_761!T7{U&=D_D)^YHw?Td z;R~p@bl}0iGJt{O!Ly4plLiApfQ?Mw9-qKn{$@Thvit&qmyb75bc>>|Wox($2CIrjos4GQhzgJZH-!z*3bAgAJ*2T-bpsOShyDI@ zp01o=1EQ}spaVxoB;qx|o1wh^n$>?l=OlsRafERmm0Qm6=S$Vsk;SW`tTa#T^&`Ef zeUjY^yT_rCY`W6E#$zobANv}hGifsPJ?_+0oySSt|iU8p2xg;zjTV$AFxi)1hkLr$Vol#On0w;W3|x03~ie(9GMHE zJxr3$tyTNx@b;$J%61ti-Yg~73EJ^yPM0nUdi4IucH*krCxZU2C^kA}7<~zwcZ&Z6 zd$*DOIKMK`$;P{;0j`F--HsXk_fzuQh{WeFZn~k5Ru`9No0TJU!xfaXZpXLn%j~Qu zhy1bI7GvSvR(@qwl21Dl+?SI zJ~x1mG_fgWxEMC>#!nVzuV^S6MOQS~E<;yFLsuRcAY?C49d5e}6&=12G& zZr?d5*zm}-Y7(KOpV<~Ut!Ibtw`z_TS!rbJsKu?g8HnqQuRaeHH@XHwnuGp==~8`a za)|S_AEa2XM(_qKW*qbFO;n@y3BCq_Ut<=y`eR;#%%Q4iQ!k)v733Y zF@g19g@?T%%N^FNDPw{|m!>LdzbEW=t)G7U)T77L5{PUk5>nc=upj4A-W3_wdOTp` zfgW8QaI{B{RwE~_iWZOTs#Obg_iE^#It|4;UG6GT9wTW50Dv&O(a_IJlNU!2*81#tfROlR->uRo-3t4zK{ zQ5I!$nH8jS`^?Pn39|(S9jX?sJv8TV6zk7O{uRwTOI%T@!`wDver)@&JjB3Bek^!$ z{|#Y~z_U$)&9wos=p_^lWO=Agxfr#uQ=`FClNDa03`x(k9xqb1y&qbmccZ}%>1sQ&;7l>-}k3J_x*VM{_$RB=Cxecxz2f>bDrlMdbXKI z_7QW2#zHHxom20V=Dxi4SnL&($5y=rG^Ke~AXuHNiRZ^0xIr6XnpyglS@q7}N_tra ze8j1;KyBeFX-R{iL6xKpT=o4&;~9K!!)B8if<*h)uf2Jsci9|xg!8gfZpBQ!v|MOF zAl}@)fnl&Ngmi*z7TJbNx@DBtFN(7pw4L@45?42sjyVRC$-pkl=e+W5{=w(o!l#(x zmgC<3$#<_s8$qq+G>B42Fb8!RgYgSq6J3^3DJ6Wb$UFR-GXxQ@jq6`*Fi}Sq+ViWV zI+&_iRWoFY5zf~Q#Ff^%Sz0Z*7x@enZeyN5()HQ`>*CDR^{==*5SQ0d%zQ((vP0+M z`*L4A?kpFHzw6nkpM0>f$G%wY*JCYBuHUe9fQwcFqtw$^eOay~G0cF0UestrB~Cnfbb}#Fll^opc-;w zOYg0axw6o*s-nV7Yk5g;O_zK2dPlE*q2gTGgFX>0<8183a-=}9Q;nr?&MowXvImJ>rvGRfp zEAZ-7$a-~2uGt*q0+(MAYu5bj<+V)K@ko191)*6jpNlL~vENk0qpwT3I;53=D`*rSrUGu4{nmd@LNb_Wa%Qgz14&dInwP_EOyL0kWv62Wp-Im z-t3Q6j*>mG!-Y9recrH=Dbrg3sfUq$=KX=Ly;ZV+pVuwB`2EhKO3KtG6#2W?w9)Il zQ{9c(NrACRN)I=lJhJuY(Ovq&G_?Nu;0kH(A!trDRaZu?t*_tJ^PB{EJBZnSYXw3c z)mk?$9B?s8!LDH88Apk8mV`9A zM(?zEvATi9+5>OOzW$_ZR0hxgG$s}&iB)S`#V2$p#SHqyy*h6&;a@VP_D1?x22%fp z?=IU2z5=A(=PAMJl1@MTh{PFF>DUwEdBY5vb@r>+YN%a952ZYh{YsNGCK1KQ9eom7?6=v>`RVzZzpD98u&(M@G^yc$c zk*YGa@SM|ubC%XVa`bN6K7FQ??zay`_|f2!-FP-IX?E?AhDs;JGlm(2802?>WRfol z)0}W5?~b0&SXNiQ2g?hO9KISe_I;qC*UQjMeOkl4IACLCPcJaZV_%&c1|GCeGkj3E z__QV8_16Ltd4elsxzZz$2Be3T_6r)7Qb?@XrYh~{dpeTDjp!B*XIVh;);vmw51%jG z;e6-LB5}l(N&nvcfVY3_<_h57xh8n?`4^Y&%6bX>jaIV;3KD4PAD>7WFzpGs1*e0%^wU`*w+wl))s~Ctgyqi_pXeVF!<=5nm@!Mj zN|VGkjUHavb$uCBd8*r50o1hOdwP+dm)gee6-~gS^$wE-8MHQc0-ka`4#-qQcqRKv~fM_X&*CqAkzl06k}voGA7 zB^#1)*)Si>JC_p}QdptZ(s_#0i|faceoLx8b5V9)mm^xFP6u8vzXw$-8&Er6OwqhW zH}IY@X&YqhhtJXNbCkQjlqYPrVX=j1Vhl44~* zU#s7;W35y!Xsc^ne@-TmuBoAy8N(@Ax^q2*BoSDCR@?`fQ8{2>ul%afFvAJ&dfD>e zL5Rg|{8IK(Q`x;={__uap<)*&SsrTai<1H7uXf59Uo5||?HdgM6dmi^=JjxzusswS z3>;W#6AeL@^U47lH49Go=!L!xBm&1w{)v(P#I-#@jeS+W8RVW+(^0y06g9f|=^>hJhH+JC^wGBqn~nVhQ=SGoe9|b1 z)nHy5%}wM@fog9*7Jub*iR%;c!AJ`CIrWN$F$@`l;U=@QIo?#0?&ux~Svb4@gU`YF?D62j81KRp!2fo3rP1iV4Cyx5AY|b4^Eo8iIoA#qawI(WZW+@+|L$OP)$DWVhq+ObUCLLBeY`Pdv zEQ@v?FY7d6)qX-E&m4biZ?|OyUu19kqUZ0Quu~px=|&UbJm1;Ui!n@kJLr>L;YVHn zS4E%+j%ly`_c-v<5-a(VIBsaZ=eTV6YTR(eW7<}vWwja1l)tiNRsBj{1U7!#rue_^ zjpjCxP!qH|5CJaHD+hF7XEeB^)G82{jNAooeDmtao)zJ!;N}T)E9I%ee|^{+;I>~c zgaT<=2NLq?^Qq}vrRt^)Qinwff;WM09js{u zmYBx^{Ca|kdrpEmBt%cVRmtzxLRl=kQ1lH9Jj*MJ7csff(L41F4PSrxl2EBTEp>0z zZ-~?bZxgq{=FG}=pn&g%I$|xN%(d-*bSzT1_}Nn2>p+m!*2vSITt-p+CJ2-n7s-bVb{K<0jW= zbNG>gzpm2^_*Pwc>kF_>Q0_YMO0IbA-)a9MvaI*{gU=3M6t9ebx0(Ufk^-2}en;rg z%F_54gDau@T?nWDvQ(0h++2f)PtP-OYg6v6Klr8rWC3H3joGdx`FJJ3m9P??v|aP|(3tZ_i`Bg|dVqkr zxd?xSlffX4&9(6KFZ)&`uNy2-L!Zb{;L5wYYlAg1{OE4@*H=e?yO7WjGr)$~vm)Sk z{-0>Xwr_XXuE~uE}#_E~YPAd{w$7ECQtLza<@;t%t^Os0PP+n$DB0z0W7iXDiH$9N!C` zIscv2Bo#EVDc0ynI zMxM5hL*P`~+J+tKf`hk!-oCRc>ut|TOHn%e);{fePLlOTIS1a!gs9{d{i_#%V^`+? z^#Zjtkg?L=PKzq5t%WBx78=D~1pg#uPO6jm$Lnis-1t|YYQv^d3;>I3__=HJ?;ddF z|7oFie>>`3<=BkP53G~B>HF1O(dnXbW#2!ZQV*P%C4)J2WuR>&jn?~>l@@QLK_{U2 zec!T7GG6VJh4zGxh^($i-l2E2PB1up3f)j0t_{nKNtShR!|gs(rSmWv}T-zZ!; zWp^$~9zI+jPll$#%@&{}CA!XacCp_YWDFdMr`Z2hze+~>t=r3krBC%AfsY4H+bw^n zyv9;a?QT$v1!X%MM73wsgB}2D|J0PLBweMhOQW1N8R;O(KoqMlcW5I;&3oouw5+B1 z4p2=X@o*(Fy>^59&0AQMMn0Tmc+9-;qrhvj;3bDoh8*2!WSge)^yG3HEdfSWH%q&` zcU%Rs+hyg@zS+@=f#J}WUg(ZU3=-YJXy(Csiiyh7U72|Kg&@L;5&zQ$T+!kILN3#Y zB_m&UIU!r3uRK`tOuZZSbAJPHzxTiAipf>3%Cg{YfOJ@Vq!#SDI%2JQr4C3TWo^uQ zub#6ZYe*xSES#$BH{tz%zI%N0 z1T-D~y2W#!Djn;|{)DNfpz0))=q3Gut3dvbqJufI&0q%lg4}HV>4q1zPpm8KwQP)J zLy`0NF1b00b2Eh8vm)Tpxn^i0>sdWlve5`~W@7pCPi2;%!9H`>(&>L;1+{fxXz*@U z`(SAnJM+Do3wikSc&&>vc9M|p!fGc{-^0azXPEL14UVfO;-M1+2#!%V4rFB`vWGzQ zVy-$;f0Xl4l-B85cx8EKr%wJNNg#hH*1B??e=Q=1vpdDKh1`v{bKm(W1c7%6A>FSrCDKC`mA$iKp&e zzWqNF_qL7LelcoK-Zdo`wvN|yuZ&-Ftn6W-OP932?|5}1=Q)_;`BgxmT*_Pg^`n+$ z$#=mx>p)ih^8EQ`s9yqC>w&XZiEL^v68X+648FCr13-Faj(t2s=zBEhkqFQ;_*sGJZOU2y6*QqGDZIgp(svjXlgA!7|GZ}#Y9j@@$H-L| zFAGhl#mTBld80a1TASg0cToiKm;@Oa82uz;UtF zmMo~HT~1J)YIPPsrKhC)`0`9>?17+Wq+Meyo?o1}jBUvOu zP(+G0-pud4MIc5=tvId_)^BcJ?7aPxT)L7kebOed{X>E}yC->ZhmJ(xIjca19R@=* za32X%9`Cd}h(dsN4DMl=^bs)2BhQBT>`b^=8y9PPazRGOeW^pOhn_qjfj-w|{5Y@u z6@x_^XFc4yT0AZA`MB~um-QfxOIea|_WN$~K~ z&aJKd*7kHpU1F{)(aElT^t&-=abY2E+)zqKQ$Qfk2wl4D?lL~%?p$y;t?bu!1)p}a zMb+dBVXuaaLL-9_#1k5R3r%@W5zPAu70W;N>{a!CIzb|w;Fi@jHo*~7-kB9M%QSSn z=WZ?n`V7L_In|l+K?!JYv>C3N)V~9rGo*&gbt=hm5*VHQ;3P2SkYrKrRz}&aF_74} zz>|BbPeL8Fs@0bdM_&Ea{D?%jRvwi2_{V~NNx!*{w`%T$In$%92&Kb(keeEyikuuC zR}rgIx7S z54M7F3aftbAj<#JJ|)Ma4;v1+zxdimC#2>k8ze}@v&bs; zbhYd20zm4U@1>TqlvL;h_~_GvnLXRa3LQE|yYaAs;Q3f9|Eq>7W43;kb-UDa%^=^e z??Gbe>(_7?!Kcmy^P@o9L{mr6n|0ycCtHTkzeq(8tGXQs%xT_-`KQjg^$(#y8R$<)OntdzwhG8a2K$?l~;U7Q7!#yZfgymEx%QvLs>xnCp&wdaTk6cclp<{}XIh4@x zvcX$r;zG-*I1iFRE~Q#|^~!%SXOTx9kRZp|XIm%({nsnl^HCA!WfFPiH2fA{<=VIG z6gXGn+^g+1-FG-D-7w~mP_$w8b%VPBw6JWef(vL&W^A;yWuG|uc6dx${x5w>#EpuNPoVpzX)PK26OxTAkGT@XgKIz3oA`sDCjM}AVu{g(&aKlA0B zmx;0W!YsXYvh6FJY@bdO8B2?YZC3FIO#$44Gae71T`YVkMP?NC;2}t6PYXvnr)VOPKpTWFU_E^UDKsQT z6XC*Puv|)#{*w!_dGz}r1N2$_rXwg2V~+|nH-wDLe+q%TsiBk84tRj7=P?d@+F3}_ zN(RumW8heohK=n-zNNAScLPs!UEXG?^SvKiU4v#FsrdEbh3&VUkd&+X6(X$7*R%JoPA(2~R0pK-@XJd- z^`|vMo@g%qI>{KJ6YW~x@uq?bryZi|2rO~rhs@Z3AMZxdz}~Ugc&$azo3}$o_gx4d z-)mXV2oj15Q_M2+v2;AW{Om}Di_3%{U+8HNo_;Z2OzbyHq3^gq0}%lQU5e@fv-Ppx zd`O8$A|Q(&HMFy|tPrdP1-l=eK^+cS{-fX0Q{2Z6I#-v+ax8r_jxXKL1MQ|8f@WQ- z7t#c>%3FZ+l}}e5K@bBXLKTMSXv^}_+v5caKhA{C6c=3uCZ}!lf9Qz_#+L>WUX)wI-oOD60A-f6Kc439*I_Q4=4-&sMV|L#vPVb`~)TDWjz zqLRy{&Rt(DKi*eK-NCWcU*9s#Fs>PP=lc-_E?r*q<=XeQVxpp;+IKJL zC42&3>>3qiq-pwAwEr9`;BJaQlju#>ML$*qgz@FNju~0x@&uUCqB_@HLj3kXaBKd1 za>g|&{Bt6;YX03I-8lP(ydQed706POuWyRFO9(|!{eCqxu-9&})vw8KpOZAvsg(8M zh1@I9(V(&XE^|S7AQEj^_U6{F0k~zx zxOsv;v0zQnfSUWKM!ponLKjz#Oh~Tgh>eMHH=@Fv)-UC2I>A({FzPPsP>(O*gt%D1}(*7g6CFvOwkC=y5sF zdPM>W*}&Ht`3#3qmX_D53%A0ZgljtTWZ#fn%i%n^o}sd6hzprG{c?#Tc9wr7$^qF_ z8U&pw*g!9L;h5w1Wp~sANkvvu;SHEPm<36MlQ2?jDM3pZ8(Z=4YmnRS!wqMSg)sYp zwRPbnjQ7FN9jsbwU$Oq_mSjAd(%qM?KjURCNBmpF5xCpeB#ky=@x@NAA)m@^+de&IF21qEs zfyZ7FepA~g1FaCsCSL(nTroU*zd?kHBNJVb|D&S0nYEZHB!`BMy;}F^X~7Qlh{e4N;y=5L@`p(D%aQo%dq>No`Mix1W-wgK zgdbbit+P?^mA)+IOICZ%`Vis^#FZ-tp)>vsixdS8b9(Hxg=^9NNj^~R0}7*_^HZH_ zmiG#UBRHEf)72@39TY*4%L!+$?mN^aSQ;Clx!js{0c}I{;{@zIIS9l2%*-04u0=S+ za=l0SvZgmm20votT=7dTU!sh@rziPK3qqD76YhWJ%fC~BuPcI(;m5y z4XwbsVn!D6Qz``eG&3U_X%L0vh=Rd6&=g_f45s(5R-Uq3w4%g?M zVpQM}E6duFx~W?qtRF*LBmEx8s#-Nn3=2+RT*~X{%}7maWrNlDq4tK;+en;gedQV= z(1bZo!XMxPzM<8W#d7$hdYX0L^!TZMQeP9?@cD{0)H2+(9E*|F)Ep>3tc-i4mK4t< z^oi}Ppe+4oCm*#1<@BcHM&7Ujy)ImcjkCdtgZZK z&-;wFHH=b9h_AXEB;@`D{5CeYRu)w!_|F|Hb}!=WaVft)qesExf3|^ECDCApBkvY{ zJ-wo{R(0{x!qxkK!llBG7+I;>_YaC!EAfou{x67GF`hL`#P5x?~s`KQU zcHq1HgHoTJrvTktiM<%_e52Y*JaF{t%@SB*C}$b&V4L}xJgjK}f@l2;MP(dNEVdE) zUBd|USRA923=}d6_TzPenkU~c*;LN*H>s5me&#>L5*^^1yY~PDb6#}(SN5d1Thel7 z_%nhXh@5GuhMakt-cZUa^U_bz{4Zeha>H`)8JBW7Y=>sn-IrXb%;tE?&=Q|S?RV4Tj3j?uRRm3Hqk9u9PvoWt2o zv_2UdGqZBjaju`{H#k|s^db2)fC&nw)O{yw2GT`7nwI#@Pwj7zKqOEu85-`+84!o< z~AVZND3B=DK{cIc_O}?U(c}l zS~2{nvaT}rB5(O1=6X27^b09a*{s;PcgGBB-rMZ9MmwgEvjV-x#mccytJ1F~qXbk& zLt*{4^>e%O9mh6X#3&>WGC<`=%5)L#Sr%2?UE8_=RI81pf~ZD>!4<0qIV_kVyaD_S9_vI_B@8b&uy!UQD|jFI{lA`ISWAjXMn*Dt8_xcwSeYhE6JO1yC_8Ui1XOjRz$He%=1^Ug*f> z=;~rvo@pBxz_-74|L{DDGyFpCr4Nl1PqK!gI7I6QqRpos1KKjJxx~Fb#_ajVQhbRZ zCs5i9eH;|n&V3#j8qiO9;t4q29qE_C4m$PRUfPPT8sEo7+WzuxALydo007Eod@qPW z-FW}?Wmg?)4yc)zHsLCL<*^_X@Xc?!N<`s0@}d^T?n?P|ZSC8S?2q)1{<0lgTDKFr%-j z{yah4#1z)@KqTHHvW(cSO zHWV(wQV>r4q_3sL$SOb(B%J_pUrl8QkfdT{1qw&Od6m|S3Bx1;Rva-N{Thfa4+Ik* zyUc=#!`U8me?GCor}ZawBmR4c&<_db8N z=SIP7XFu~8XL>mJg%7%Q*f&LHq03b3w)xZuya|IF9QG8*fjF(}Oi%1q^e)K;0ZKzk z&(&8yak0;Yj`aBPZ{6l^INIfGP#&OqtqYgoWFeEFhTP-p_UNINI{({s-WEh6Y28W_Z6 zm@B@_z+4Pj;h}V!K|+b-SiZVCLr|Ge>p+mKy{Lr!)tuRM6O|A73|*Wz96hdd8p5Vw zxwBseT1A)(1(3mQ=wZ-7p;F2PkD3Vcq)%&(s1>`$?#>A>fUMaDt<@k@arKFOEgWc@ zf=Hl4oa07)V5aIgzqab6`NryBOoFCx6MUqde~1x*7&%qog==b(4?WM#Sw7WR%R!FV zFH)ClRgn0^28qHBR#^`1NqL&uSICh^WH>w=nPBz6r$w(|CHZ;LsHRzMGVEC)wpqW7 zNc0-1Yxaa?Tku*#2tEWxNJH6wPFirIJmyzRtvT!urd5ia%!z{$mokj`u3ud*oLjl{ zcFSH>6Y1;OM~Q*7u$(|K(H{#@MsH8+Em`>`3fNV%y75*;Qy{kTM$1RpkIG2P_W?XW z+tzor3IMpz1@jd-wOR=0Tncn-Fyz)1-8_jz?Ub=1Twfk={QM&+VCk7~C}Qn^l&Xih!1#us}=rfm*?o!Q<(xrvkHO3S)+?#5k;`w?A~4ggM! z)8$9=zzO>yRQE(5G$E;wFl=4Ro+*Q=Vb!KfEkVoJ9Lv2Mv7Sv1>4~yg*K=Q&5Ciqi z;|I%ReJT1JL`F_Nr>)e@7zee`nevT@k_s3LV9%e?uo6bjEQcu*qj|->uRPuwa8b5w zM!Vd)`cZ)g4mlPRn_8!L#K)$ewxxmzo9xX>ryv4|0m>HArrD!mo=JGCy9AB9{%3Di zy*Yh?aiVP`w(mq;lJ{p|pYCY)SQym!gz)`vIukHhb@k&AH(E^o!~**>Ry@DHmj&(DPdNK#~mHa{T@yDA=}@g+8Fp1 zdxo`zi_)Aw_V-t3d5il81a$WmIeu3jS2aJ&8Qm&2${;13I!pho+R2X-QZM1=kDF^b z8X!)XaT=CcC=LiyzAnOrG~yGo-~g$Z^bE_ zN_Xzt$(ipkaybK~JG=pdrE+%&d|(RaoMBaEc%yH_OQ61!sqXZk@`|71=C}O;Aa*%w zQ8!*TQQ7Z3BH+%ji^bF_6rq${%G5RH97Ohc@hZ9ahVp&37QMnSr}ul|DRVC~GO2>w zK|2;5s&Y&|1f+ocN;hV>VldSe^X>X`3r%tP?)C0&rWqf6E@(W{#2c`ddVltpu~-!t zW3<1I%a0Hqe!I?zs~_k&FE*ALX)<;SU9Y|l;?1|13chk)S6Y>YWs?{STl6kp-qJ(< zjO)wjB3ark3SPEzW7Vz`h$nx5oM{DBzd{$Q>j`GZ@TBm{x#uz|P)z<@XU9R8>Oi%T zrc9V3fbvLW_u`yrjXmiQHX23EJ41m-<7AUBl&+=W! z59VBay(C_kUs+{iIS>B`IV69pW)0KOIi0badMcUOjkY|JSnl!C%0#`yM5)uxLTcyT zz`79GCzp%bw^9sG4xvpfESZC~4|Z6eKI zOhn4zGnYvcA`VFb$g`v^R9aF4l5&y7mS5#p%;jpOtVyW0#g2ac-Ce;yjLBbxC4c+29_x8myt8dX2v=fo@PJ+Bc4OHEl9L%fz zmx%v~i1bY?SY1pVVY@^gD{*EtK1}1sU&$e3e=gy|sxM&_>{3l8+b2O~2hg;4%<<-8a|GHY}1{Hi%&kJp^^c zaX%T=7yDH`Q!c(duz%zf{yhl~>}}cBpTF>~@hN3|o%ZvL4lJuX$0Eg_vDvC?Zl0=_ z%W056z9r)}F?5IL!(~1)KZ3l$3WpEWf?z2?8z5?j$_6D9kw{-AA!=g;i0!QgyPjT< zJR_NoA6lA+!jh2G*$7V;PM}7M3pvoG9Jo62WxwdD3(J1l_`9nyV6D46gyqrj4$A$2 zGDu~>%f)h98H?@mA2L>X`y=H*mz=ZTEk`|r2M2wukm6KMH8=0P!1d5opdjVuTYFm- zAqXC#nj3BLObKAq&hHaZf4q|6T)V+U68f>_`$PU=jAlu9o+^Y?&TGp zGkaX0~qu3+sIBN3+|1H{FM z_bV%OUAxsZ7sPznn;5Bmthh3o${%JY2B$c?^{nc+!7O-2tf`5Nf6-meh!Rc35kIH&i z!=8}&12YHZYngQ}_G54ElisgXHAuQ{vOT;;7{FD{ey;!+%ne_wP|NhhFJORJ^huzx zVG)HbKjdGwoQH5dJ*|OlPfv4F5cHvNJ}UQJ<1}1-M|z+9b@5gTqb00d(SUB@bB;?= zdI8uP>=O3Ce4P~#MyX05WC3VwPQMV3t9|G6;;ILtC8-fScq>svgfLy)-xt=wI94iG z835CSJ8^E{7IPmoFz9WoFhFu&@I{)*{c60I69-ebfMHEi;Qzv-f1i=&dL6#YBL~CYuatDY8{B+OD4Z7YtdlJl!p2A& ztF<#&|L4w-;Vc!d1 z_$|soTA#E|-^N_DS!TT)&%F2boN6~Rw=HxwBK>!YO=t#t9;9-`z|R6Xv;XarKRrdH z8uw&1BxV8bcIZkK+*!by=P2#Mj<^FnIAD7EJ!bxEN{QTjMu%^{`{fk)>QRkE@Z|4! zu0IVFO$aIB-q&B}A4JfnUv&Oo!n%8t^0e*zxk<680Zqify|1Nt|0%4=EjFYs!2uEZ z=~XV5QSO2aD!vEvB`z17B`Q_=Z4mT=jY8ivx_!a^qKI;bxu*IGnNtYs;F#5$kShw1};0AW0;jt<+@_ zaxPn(1kv@SWVe{z)R3+8yS);2)Ee0R?Po$v?}&n$rfZfveZ`Rc;g1%ZTh{;?IA{du z?7iI5j-97-h8aZjDp?#Tb}DbYbVF9Ap_KfajxAZR?j~Os#wK6E-frwolcvzf>MPCg zm-;jkW3Q^oG}w9={(k#Ep8E>$o(an1n?Vfe6os*|htY z-0iYK8%`s1!8%+ZP^$P}H`{m#7IZ?xJIY16p3uw{p}uVv$zCI zO|4}+wPOCS#ao+1xpgQ{uy1Ad16#%Ic)OIpLKf#z4=?BNb=G&12k)-nh7UWRDm`sb z7e0KnZsou47)thGWXE9%BHDj6Gu#h0fo&77spU2eh~!qA%twJ>)Uqq+Zz?M#gJMp< zxrMTRu%i03vNzi*J_NVOa*bxLTok;^PpGiJ`0wTX6W#xg4mbhM6};4SfY^GOdm8uw zb^A9GkU{Yh6>BSQZC|~}owJhV+TKm@ycs17?+Q!!{<>a8kj+wFjbr|Ci!evP!_%iQ z3hOp~;g%q@#zy`35-0fqoilP@t+$nM&D$tEIAQCcJa&vGxGiGkf2<8oK#}LxtSx!^ zC*8)C!BIc38w~a?S`b()ZlTV5N1wc5pNVTvw>9ynYp-m!UAaFIU_fMF|bss=$Okr?V!jslu$(E^%E99zKf}Tb4X9x zUBhiJI*DvN(Vkj6ui zZgc|6C0yGYzI)f?8F%gWUkhBgHVQm$_2Lp);a=;lW2Vxz{xQYaLO;4}FG%3KINkUC z^{K(&SH=Aq+E>D2FDc=mfXM0S1_{5@_-Pk9wcmZHUbyl3n9LML281Vhw@%R$WaXLE zO2oUJGS{1^T#A{;WS^-o)F+jKT@+a&Jsi;#Jt9}FaN+S*@dJRt*_hFI-)aLp3T()g zDsE*6#Bk1(`*x|T6y}w^`yc%Y;hFQ8@dwNW_ZAK-iGJBUkJ(aAeFb_(e@jFVfYJpM zTR(_W>hH{{e~LdSvi0Ak zj-x9g2GlX5uk^=K7Aba3Z_L(N4N)!2N6RsAI}kWE1``k*@WnZRk$d1)(-&^TWoA@iu1*kzTQRUf~vf(kvbl1SMt5Q592Co8%1-67RF>=i_{6Fx~Kja zsNy=zAI`t9P4%gAeD=&;n>>;VWz2bTh)B+fB&4QQ)mwEvsn8_JfTj7D8wFm0yrGoT zPHUo?F7Tg^n^)Y}9ZxgKFg7(W(KHM{^Wk}kwFsCNApy8Py5~Q`=2}U z$1@EeU)An!h+4S731!vHJQL7oYW(fVe2WXeL!B;tMH{PhHCcs)_u2?#Nb${685SjI zlPq(Cs^yhSKo8 z7?m9V5LD=j$H++Rk2=C~df!m)C!)3}rh+z=@%yn$#_SSN6Zhk>wbC-gk1mEfA5-PF zyz%V0HdBY^`*t7Nw61L3`v(`ND{UlCJ19LrU~u->y7w|qvx9bKw4XE4j@j{J^TqAR z&Fws9JTDIzH%%u9*)JLlocq4cFK#B0d_aYkaLWF!=13AkywakSDCaSa-YVAD=ye-; z)M(%gd~tLvmI>z5??$8E^uIg1zN_@=K~A5nWx3<*uwZAJfk<+)zSn+KJ0>NH^s=9Dhy31_m^0d-g`+t4$~PnLQtK{5=pH~0_3i0PL}MuDi9a! zm{ogV;q;)}z9qplTvX-sV3C<;+rw1QK`{%fiT^q7;;r(*^r5U}Maq7i#}njAzg;TM zAAfe|kjGt)%=}Dq@_D?aB+k$4RALLi16{aW(RY527$gu1r~ua;IvfaIq7X)hUd#!L zmPb`Yf17NF0|}StLvx=0w ztL`w|g|1+!j(|dZt&RvtVotQX{hoA7G?k~%1xK;cuy!vZp{73^)_*;bGdp4eNS0;= z5RhO@Rh3GBslAX>T6=HW`=r@Ners%;23`h3)bklXBm6e%pl-y(Y(vtOE=SXa$CDF* zsSRBlu$8d!S+!;fP4^r4k^mSgz0lQFEn0Bjav7K)lDXsXb7lnT(f9T1$GsG!rNK-f zFXN)0U8lV~oMXLRUD6H3x|%&8g6ihQp{->L~Q_gIW6ZC zGyA@7`T~H8xb?XYBR-$_cKsF8{KGE7b_UyusT)llj5%i6=cxvW^OfXJmgBSenbx^g zWnKZAEr;=!-z`ttCwYn$0Fv&=_>P}D1KGIlI$nU__8XwA$%TPqzqU-Iov&s=q1j)G*YYN|4LEr`m&; zoo`HjjZu;F7B6y+b02ToZeLka&6<9v^JHN5zz6S_*wO@9_mKt z8)&!0rT++8|Lq4U_qb~$*c_veaeq=K=rPd>_yYqub7PH@6h5Klh+=|=tSj+-G7{BV zvoRV>_!&)eo>7O79}leQ-Ca3|p}f`z=sS&k0cKBTm`o}J&MbrapUpDHCNTyVeF>$? zEYE?#h5b5;Zo}vPbtcCihLH3E?z$qU>8bj$3s+F;ZXtaG1PNAEAGqF6_Gf-MuIA`> zQLrsFD01xTzGhU^wVn1+5o)<2I4><^53dVRa}j@{$9J(4rJ+#~8a;Vtg0&GQdg`2$W~`ChQddC8l+ z*e8M!CW(DT{UuB6C)1|cH~5sTirgP*Yikp{SxW+rZTYGE4`RWvh}!A5D)76eAFtFl zTN=zP6EJY;nQzJ5F>V6^h)b=NpfqV$v-h+HkJqH(QEybI{noOV$J8Cl!gY0BJ4yJG z#*H;Xs>N@^r^~B*aulT0lQjIEzS^NKq2`r+Axu2^X2D(Q?EANo%*I$bCs6d&_i4X* zoY|=(-r4!)tqjzOp zcLZ3fFV7}jCSsq8F<@TKyq*yWJ_meT-i|L`>dFfy;MAQI{9m3r<3g?Hd?e zKv%vzc%f8~-tj$3dgt|X2Jxrcg4X7;CL1c=4r2N%%)|Dn`i?$j7umf4=ZQ>|lajhn zMDFgYUC&$SLcT7HDvsjg!A31Lu?^O3tZQaQh$vfam+~N%xF!X~^}MG%x5~S7SWMOb zVw*_!G5y!sd>gU)ucaxUN0MCenOjPT)M=m_xyMxMs5gvw%2Yb)lH!xfh8|@=oEW#} zYM~q_Gc$S!=^8P>?6CexYo zh8Ii_Yp%vkslYq4%v@vStPNd_-VEYgX4GxIhW72L+;7;UdJH?|y8GlAaBhBfxekVm zX;}Y!|McmmRK2LLIiCz!OAEMlBUeid#m-;Y3SW4rit8bO#?^YkDBnH0yeK5aX5LZVYvp zdUsqm-7sJxy>f@c=MHEfjyUEU{oe zTbqa9F@i4{%c(3cr6^EY`)g1d)|nTY-{xaYavT-GpjO@UFLugfJ-+s6OioFgWsYi3 z5&a9S^);cxD8x_*kMtGEYQJu<=w9t!z9nKr3QIZ;qI$+{?%``$);CYsbVquLdE7Ql z-gQWBZ05!{paSyXy`1#5V%P@(AO9rA|JJNXM!w>CWj90MkNvG$p3(wjp{4JR{D?v9 zAIV7b^8y2R2+Q3$_|q*9vt8B@#Fgfu#Zy93zxuBVj`V`8dv5 znBvdi|L8q?=dGs8TWb!zy87Dej?~T+HyiF$C&PdlvQDA<*d^gN#X`GeOs<%9tkpo= zlSL+qi2`(q)ubnYxguFv$YQ$!Y6V$VxvJgX>xB^Gwhld6H_U6u%T*76S(EP@%9H#S z_X4BTB15hTejx3NI`zR$e}RH;=t43n%3%@^tAiK9-APIxi687rWtW$-9&dfo3GMh^ zdFx!2GHT75T~GARoi(X#AP`z=lqI2llOH;gl|XjNR`vt6i0P<=`{G&IzM+*b&r z@KUP*wbM7?+m#d6RRm(P$@f>A1(C+PnhJb$=~TJWa7w(=d6_7_I$m*LRTSu=QvykG&VspoxpcUR% z!GQ9s7cV|-Pr*z&7B6);fxg+RN z&MaSGe5wGs4QL{Fk*dKW$)}C@WZL3p{jn&yh1nyG^NjGszG4?pIk%uhLpuF>vU%sX z+@*z|U}R-zt=#3qSA)}&duP=iZ1`J4noQn5D+;wqBgf1^!W|r zn$`zWxNuUzU94#dRU^cDg8rkDK9HPoZJ@1AkYwN?Amqjaz|DJrr^@e;48=OLNH5%k z4-Fl6|88n{%ynZ`p`dKY^y*n#62y!X;9587^~!Z%E{kImSMc=1?(?9}=6 z_N;4z%K!Ynl0h}rT0w&h>%oIFpjq?`j*D5B4V)X`)81!J$15-EbGEv+nah~vEGD`2 zwAM;rt#}it8DLH$$#s4~8qSd}Y>~+P8n*8jDfq#gH+y=KfOxz0xOK@aIH%E425&de zt3h!NtZXuE18Ij0TN$^3x{I@vvH?3{EmE2*c0|!T5RejVq6+B|NTZg&=Q92u6!?mp zTAREJ1xW^FZqwGm2+`kAJLb453g9wB3~iKd4Qh~nERnv1bnxakG zAQBqm0?jB5Y$EB~ETZ|1W_=jGnEX+$s%PYDj(O3^|Btr!4r?;sx`yqF4M$W|1aweA z5D{ro0xBwsbSctBM0!AaC_yY>11uoYf{64ky#z!=6og0(EeVJaS`r{YfKa}D&zU*z zbK1OzdEW0oy~ZnZm*2h1T5GS(OO&u*Fy<<7rJmTfe>Tmi(5tzD_q4MXzu&?mX@`!X zyHk;;tdQnTuT=LkoY_ylJ6i%3dvh!poDtY}+nS>DdlcBPa#JtK?HHJjCnc%xKW5*a zu{xcLA3NKpVpRT9SyX)c49<#QEWyBxo}j9iR)(U5$I82FW#h!=qpv-ITE%{*2h){D zy<$LsCC;0F60)gr{zje3=S&=H9_x*;UHo|!+`d${Zy)o``o2-hy-ptMH`?y#-M#Sq zjN8=3#qsJ;SR*dI+jmS{FWtxxyiyk97SG;UKC|_oUcsOJHGl`a(&x6#HesyR?U;2% zj`T%1(T`&5FUGu7u4O_qDO7t8^P~LBd_npYtI|63>Xo5SfyvR*PKS8BG={!JN(Aj` zj7xvIkKxe*t&Q%I%H}zM2=}FWyW6v=V$&n(unE4H*%KdcR4~aUlckj!#ow59Ew}vb z+Z$`?9`F4tE9|YS4dhr!FC35#T{Lz&a17$YF~negTqT(1g&u*S zZ!t;Z@w=7R6VE2x%DUpwn-K2vHe>jr+1Z*W+%5Mw2e-z!^grPiOT&2GZ_f^$p*rlC zZ#Qm%rz5{$6tHGa%BfL}=*Ko%M_3H@=kMsn6r}0t7I=#i2fCw+2$O9@bDw0oXDD~s zXs5MY$;89w2~xhFZ2ZX{8ws)Uo-sS{+v3DRjiPL>byrwV?{{B7jrEd!7)>CxU;I!a zvv02ggXn+fXjJ1*@-KVzFL_ejixds_41_Oe&DH6pOWhia?s`8U;orD@OloHCV(9)X zMg?1A{T6N(l~$%;Q9+@T%!i_#W zo>(Hwb9dQm_(tdV1&XWU&upjNP3NEk2%`m}t4B1$*qWz($T2LFS+e2=my_dY2*~4ob@Nu7=kWa78UBuJe}5K!zjQ|O34+pSyLz1XRg~EX%{IZmQ>#htj|bgr|2>=Wh@_NNz3abOr25ip0ab0NLEW zam(7!;V*px`(>6KJGWEG;+`{G!-an7{<;u)mrC|#upn1W(TZwKwD9aLVi>F4qC1o3 z7=#(Zz7-V_CI}TsB!}^WZPWL*LY!mG`p*O&b+JGHgC`IYwzv_ZC|ee zv(>y^MOWD&nrvP?Sboy{9mzYaO|NUo9nW}%#5;Ig+2+|HpP%yeQAR;Qb(QQJI&U#2 zGCYEE@7g*&)<&fChi(8wxb>aq(Zj``0!JOckogL$OKJIZURYbD6|#}(m3&(cSNrLc z4ZWN-O)qO%JTbWR@y=PDyHr?;oc^URLCx7OoYJRoT}0+E;CJ_3R}ijxyFkuSIg>O7 z{OB<#9UxjgMWR(wpGU=ahpH`0H^P}zLcPbA!XVmC+>tALmN^{H%(oPbwq{_iRO-LK zdAlJ}O1V$eh)pVi_4e@v_BZ51e75jN+9d&0OqX;bD;QNc3@3;Qq;`Bv_S_ep8`@^qXSn;HKIvpcAL*gw~*|Kmv^0(&zzoo8jeZpWq12%x2eqj}MJIR)?a&Q0x; zXzNcTlLdfUdZPE{40gF^J2dd{5B1qnfwO({*5Qpa81nRiz>B31U!Mn~dQOv&WD zYv!*;HXrO4L3yln%sk*O7Js#NW`vX;BwrL;|74fQz{YI2dbHT~ttHl+98H1K=_K4t zE$l%mn7zlj$nwG+_#?4@99?*+uU7bpRh2;v}KU}(yo=1dOjL#z-U79ais?E{^XI)$krAJ zoEzP+)z`G2;@utFor77%ij6*cZxtqGuV3Iu)aLg)z|$+}MSm&2lJK4t4fWjU#rn@c zuE!u{xj!Ch5DNXg-Vb@9l{?z(+o#PxZHNup%J*g?|F=}gfp%>pQg&_g$Nb5o=!(IX zg4=TOoCm&}{~}sVDus#POPcOOW9AYb-!8SK8yicTES;G#!IAH zit}42fzmW+YjEr9-2Mf7Zqe7tA0Jq*r3a8|@LKc364qgY41uM2J~5A$Ji;eM#z1{U zTe6c9uRPYolZ;9JxS9I}?LF?hxbycN!8}S;aZ%FlFX~X*`h`5+48`mrQfkX0pvD!) z?Jx%jqS5Ul#)Uql(zEx1MjCEA%@Gf`PxN2~cvM*-pX5F+LlNdZm3z`DaubfdYej|E zC;$WtrA_a}p_Q;k>MnD_-@pRC&ad(Pa}Ty~>sH**^J6wFofflH?vpM)usnXQ3n7h; zw8XN(baiQGH(s99ATzo+w`DPkBxu*EWA!zrvu&i+K1I}6kxAv^Ief&c!k&oM%QBK^ z)Q5LXgk=5+BPO=s$X$qTF^fC?WHLL~lq?b^mfT=mIBWWi_H#(Py6w%9|J}Kz^|x|7 zXx>t`dw2?2Bhp?=i=0X})J9XYuZuHuy!)thTZSnmF5NUe381FlnJ8KN5c8sYA9^tm zH0{5>NL(u4_S_&vOQX=<*Xv2UQHfnabRI8(Jws1rCXFr}=NhEsQR`0=zxn$Y`ZxZm z;^m*u-Ni|a&DZJ&UOZnfJLO`$hvs^cc_ zrjM*}YJAU3D{m8zOzPR{B(iM`#eKB3`R;=!rlQBHTzvwznRT!7xDmANm1dlrq4XxF zP$2Cu^oe#0$$4Aeh$yBHyd+1y0q3EkrMG^jh(A7{C~QNnC_^b+74t%95IxC&#o4p| zWzyIVrITKYjK%fd^f|Ogq<@F!JX9tPk@A|Rr4>WOwHpI`nkN*r0^vCPW3>8{zdHLt zJ8I5v;BjG9z)hsjnq7OeD1=Ie$Vg(8OBlXPR-3MFCYvaPSZ@`C`g2mkG>5;|v zil$|a6bZ<eNd7(}o4a$+giNT)6)%gh)RE%m%P#_ptU|{3 zBzKV_^q23KSY;RXtthI(rL=eF{sZv((y9eqzm)h^Y^YtlBu$@dfDSJbYjnUX-J8 zxu^!(ZtmHNekV^M*CaKA{9r$-Kv1X-u1fwwlVn6mwB)Twj^oh#=YWJUKNmz?4`)CmdE+jRzsTKyrMJ@V39HudXBD#wf=Nr{J%VhgGZo5 z)BI{4;R$!TjMzP&GzCQGs?1lWZ+z!n?iK#rs(@XH-mwO2WCn{&vXJFoIedURtEc?e z@#Hte%Q<1wLiRoCGUuvQ%gY+)JLCVbXB{JL^xf4q|9L`?1OHIx_%B)kml(}wbDE-i zFUW2BReji0YuDZPQN;cuj0#^78dyyq?i(W1mN%%bs@_S_uL#P_0 z%ea<_9-8vXsMFQ{&^glydG&dR?tD;(GvnD38A8Q92%++E{Hf3NzY?^U_QG{>eO6$G zfyz+@xvm_zu0D-g<|;W{8D^z-Nks0_+Z%Hl?$QwXHCed5N3kLw=HmNHx`S3I-dF++ za!;Ifgf)B)(a0?)JsI+%x5oa&(4Sprty&>|eXzF(xjGL!%t-*YWZ=&vZ#M^j8wR1k{zR zXV(eBj6bP8{tY^Q@YyPOK!SHJ5B>s8HXV87w|?OzRL6!;SHtx&SNP~ZWWxhuPftxc zLnO~be$6GRzl2NP;0{x{*0pG*ocaRnx+_s4oFKp;j0|$q>fB8eJ*o0vnLUT9=&N4|I(dftb^eHX>BQ)TpFwV$T4EmAJ(!cFPJVnSM~^gAPa`FZaf92 z^mR}R^q?9l+9woT#uuJM#tqZU80|2$oTZoEZu9Ze*O}Gw`TiG7%iP>h4qjef8Kmz{ zhXG$5(ObV^LusQ=`WDX-xuW?B+22Ik{~EdfeNwx_fX{)2m+cRM?XlaD$04Bd+ov&E z5<;b*DQQ!~Eg1fh{?O!9AHqX4l|3`24}JAm1puD*jXfBR(|!ewI8?HW6~945Bd>1G z_0_zm#}n+9v$I-b`@2%?He}2&(_!g<0X^ejd z)7IYEJeV4{Q%XQygND|k7BeGd)1g~d$<_e*hEBJ1rtZ6I$I3?QBU{3y?9UfXTh;3i zZdywQnooIy627IVeVdeQLIgf>6+%fY`K4#5R0{9;5n-)8tt+}Fzw#R#W5Si|{ zyixV&g6}gl`PN)zc^{PV&y{7DfW7d|*4{bC0oejh($dz~kXw!zT*|SQB3G!;z4%aG z*a6koE>zL$)dP7I3nmwyC?r8=pN746bOys$7h@=>8Jo{mw`ln+wHd!ln5%VZ7_ig5 zTsJF6v&!;swVhf7c2k)BNy4L?<6ZR0Vve|ItA%2gZt9KoWqfm1Lpjg)OZ&dtmLg{S z{sa9K_1M%kjxt5-cC~?qXk)|o1Nq&zo^s@gnU?mDgN{YnN8Twne18*j-W)4V3MABr z`PGrBZ;III7Wcfnax4;-SiWoJvjB&h@5PHtKgH3SdJ1o4O?Oy67?TrQSv32EERR0A z+YZ1DWcgQ_(waYFnIdJPN5M3+i(t=ul{vyTaw@QCQaie-0#m<7FWczCHlB6^8=I8L zK{1DWr0T%!GaelNC$F9-P7svX=Mz;g-2X&vWUES4zD@)X)_m>8sjJtozcI7xyvXD} z-t1Zs*Y@QXWz#q883vI{^WwT@8T7TxZ;_{LqgurA_C+}F-T-!iRg0Wyg|DpYxWeJX z=Q&Y3ZxE*KvgzKb7hD&?q0u{j?n+mwd$gH9P0yI;q;n3LmtA3}o1K))2+1ehI!C`H zZZXa9WPBfNFm~8Wa_}#*588QT^LsXCg$3+U$ob-_T97%`LC4gy_{&LNLTpFLnizg_ zh8G%_r9s+YREbUSc4MR&n4uk2H*<0ltL_Emdr}l>l;wmC6{wE(GItv2)6EJ;#n%&P z+o=PykGPPwXH52DFqY_n64QQLd<(1CAaS^k-7+9D8pJ=7vTW>>V*B!3ub z5Z(HvS{Sk7o`D1aWGE0(`7g_VYRliuA3)HIgb3KZ&9+TJs7< zJFb@wzeZ;jdG#rXniiTU2Zm@B*y&9zbu?+ypKM!M)O!m_J@mv!Wag$92|4~-p+t~( z7sTM?4|kvr;`C<5NYrh%{$+mY&B>ZnyfW8GF|CvojhNG^gd}yn$Ww{=HwJ{=N6Gcj z+pb+U942Sxb>W-a(KWjimO)SBknGZO7BzpP^ldbKNL;l4v!*UZhWtLZMewPQxva}T zQMLYY^Ng|3z~Z}9u=>;*m8RX03(rJ_$>vFCnC~7a#<*5!73?pVPH7RvcWw!8OEBQa zHx-5M5j9H-=8>_T&8bRbR#I=E1m#zfdDiVX2}ybG01}DCk^4@Vy;{qxx$-K_kojun zP$dO#3edfN)yEo#9eACZ&3514WVsA}q2K@N(|Klo`Yu(hviU5K_~FAs=+b0reY635 z0PlHQvUe*WvQc30Z5jQv)r$^7Ju#M@FV+|C!S|PRX6euj%bb?V4OL$qk2GbKA65;! z)cM}3AR38+&58BXKe-0RB=Q|wRHsMUwTElt!iGPh&rxr67P{X9wFtJX@lSU+|7%&3 z3mGL;Jx~r{IvY6e^x;sDKhhz`jzdc6uI$XnXT56!sY<@xfE~}cwC1cs!^nOK@B7>N z6yCi^tnUmW7h4nnQhZZ+Xl~1%+=4H#4oa3eGS=z3U&`gR9Wl+86@5F&XCA)#X%m{Y zm0X%ZnvOE0mO|1u%TX`%_N=Q#0qxlo8-k_Td_}u4D68_io9xx0Pv_E8jgkj&613{(~tUz%o^5Jj3P4?C{cxS==BdxS$hQlaVm47NF59-62&TY;SsNh%tUl^kw>yAon*qDC)>yHWAOff$qj;7b!Ff8kh5=X90~+_jI4M z+cU2AD?d;n;VEmLL>zDHku~qU5uO&VTcT5wvNk3&K_xWJyfUB=cS6}4-&quD|1I-) zIk_lKKg+~XQ}))BGq3_OjmeDWf}j&Im2b{J+G+dqOZ;s`+}fQXNbzn0b>kmpv@45i zg}n>XOO4O<&MnMsk+N}aT{QvDVrj`Z?~hiKUY*JK0`P)9R^wjU>AjKCs|v+JSH5Gi zh=qmfu3hgY`pK150{xU6@P*Ok_dQ)jzQ(+z-umvc08yP!VJdyUly_CTx+kT?^;YTU zp1O~3&MHg#SN-Z!=SksBEysYf+|+ZWwf6dAW%LQy7n5k1NA0*hjmu8hyc<_S7vDP0 zi9|7s|r{ zaXrYp8+=GS9MV1;YxBZq_bMp))63hljI-JFO3n3?)Uso_U*ZCIBI9oN3)+pe+Rhj` zb{957MO&6SO8#<|?Z067WRK`ejLelw?J7|D?$JvdZw)@s_}Ul&3byV4hwg1INH)oWj=q6RC0QyLkX9wtN0S%KUC$~lIcqz`_1I<6su$I#%i0cl&oZEfYYck$P$gugQ_rgRo zxvMEbrNEx$DTf^^ejy9GBdc#IuvJCq%kVQSzQ&}xr}|O9pqplw&y?0+P?&&<$NCLX zOVz*Br-i5Q_8xfu;;?Fli)L6Gqmn18al-I$CVog~#^JmJgIgUx%iApYXn z8gYu5P8FT;68<>t#sjk9A_m(*9d$82LYekD8Rz?PzY6pNy>qZiB)`8qR?dIvuB*v* zpBU;pdtyclWU>6|QOClY3Rfb8`<{MHeafk5V=v=E!7)uo{ie$L$LNoD#}x*+=2@&6 z+PHn;=IDKbXf?0jA;3+bk?+30!idaq;Y0F0s(E8n!Y=|ByGxL~#>J=TR9&0&JG8;*3;WHy;vXGVpZ}6& zka3N?;Z@K!9;+gO${s%!DN5ctNmTvy>~qC=8@rz*57g<|)!X9vtm9DJC&`xxrl92vE8CNktyA`#FnZgTPVA!fRg-fq z7+0Ioad=BGeNEUUN8{H?*PFDx{ z7bzjhfDr5I{YtDdCTpq@^Q%&SigvZ`L4QU0PmqT08A2^9+0?8TQ$afHI@;1zKE(~mQL@-R31Fpn<=AP zs&>rh8;m8imR#{YOJ5c-~D)416>-XvRyIy zO&LeIidh!)q#k3hy9yX%+b*jpo-oLY8R<%V`F^QoSZ-1=Z;2S^KYWi<(1vXA3vWvT zL#7+W7kY zb7NjjiXyPz#izeFwQv3sh0y!53IV#`eO8YmegEXUG$&ZPT)`ge7^-4|DP6j0nT7|2 zok=v35Bw`8TGJ5wVJ>pW#H~pyI_dVXcEvIP<*-v}}L4agza*sOrNyeK( zj(%uS<0hSbZNm1!`T6FmC4T=xfdt|nQKKY-uEK|X$HUM;5bKN5hP~*Y8h7_DeE&=2 z-#C~!{|rsC`|&BXoO$D1|MLh5>qajbh#HC1Q3dOwgpGvVe017lN4a~1Sc$8bUmVW0 z4COW3k!$oF&@x60t;a7I;-D^Ye{LXPM4oXBsib(G%*#(V+g+g8uSLeuZygFCR#<7yQXmLsLQM$pNw zgk`%|`0R9pYCUG>^4ESZ`Fp>KAyQu^yD$A%Z{>UP+Hi9sk)X8v)}s2N4Ux_m!?$H< zo5so&JZY)~+=6_&AxcWSugb$Z^#_MO8sWT-Y z!4NfmC1f$xQTnFVSyi#uI(=+{C&p z{CevFL_@o{K^>nMnyjHS_$_kR)$yKn9mWON8lF=uzA1t#ex8u-Ucbj9-6zzb;CBD5 zGDWv92QL85>~Vhk>uB0>L;j|pkNWd%nS0zv+v~$_n7I7>mc>c&Cl(Og__HZ*a%F57 z`^Pn_`ggQQL>>AgVhmZwI{Vdz(8lJUMw;7A4dr^ECZBMW#3}icU!kqX7ebXnQZKh~ zCIY1&TUMS{*8Hx0)X%$^ zUkHb&+us>D*J^W*FKJ;i2mk=^zW&!f0G=08EX`|72-}03#j81+8VEb9}MV> z1uSC{AW)A+m~Zd$%QP;?;r(p6#fo2UDjlqYGHBhE!8^}nn^$ImiN@Q*8XM7hJ(u8B zbPB3Ry#-B|Pjzeks}ou~leZLc#D#jwxv6YFPl4VkO}FH3RAsM8?LMxS$$GJ%n{rM* zjkY0RB_9tKu*uM6T5v|9MqLwOJ?Cd<{JtFLrW@N1%!cst$a*c(ZA2qk^T2m@aLl<_+_BzpR=`oQWo(_$Z3jjywv-vFg9tS4cwL()=*2**AZ*~*s5&!7zD)8iPXgj6H8{GkqjxTd z|EW&E0;WG+vIt!E{(CYGPB92M`~nvj=G3@7TP~B1LvS?7j4D0galzbI+!)M%?qwQ4 zpAW+z`J?3roe@V#k`6!&)?Wwut6Z56o--=hXDRZen!H<>PjgIx&=-Q5gP3w5#^4h; zyOk>Pm88t6ea)$EsXyk~jJ$adDw-X=@6@}{+03nj2bqa)88OVI`EHAWFH1n{H6+5+ z_(fUDwDk6c*_TkwA$Ati+Z$qJ6O4)+vIKEL?Ci?({itIi|NT88w8JMjW|#vxd-pG| z!^-sD`)Tn?sJ^A4o2juon{hf>?P59QsRM=ejiL8yjnVOz@ znL6UCr28Mt9VQ-sb21n|J}7faH)T95Nn=sX@*<};Sd!DSc8d^GR0u>=bvc6(%$xP` z!Dg?b?4ldkvYPVjJtMTU)#b`yJdicmuwTUG3#sho3jGV{$YhHAoo`3b*&iOg6f6K8 zv14bs-l&X&E&%oji#^a7dnI^(yB>U-PK<5N9+lwhO2_H{p&y!P3qiicck|n#yOjjH z^0C@;OllJu#h&h){VL}%R(vtkSEc4L>J~rD2DShbn3!2)*Qu5mqw$+%!O)!KtaVA8$_3V}5jK!kxuAH`r2rg!?%QD+$aQ)4r zn)e6C8HkQ(@i&r?%Afn2{A40WhyGPq74SGe=&;&|?b3(hV!T--qe&-isfL^MM5BK7yi4vSEfWt!=bp)og}XQVCyD~4hEAmG$U9PkQ{c% zuT-e^b#V5e7|64)m`uA^)u%Kr!$vY&<0z(m4uf&A7VjlhE1+1 z;ajt5_HS4HcL~kST4sxNW6HT2YrQO!ecJ%vAg&GJV+JH)7a|p-rYgWzCW|^E*&MH2 zX`P~VMC4?E`>di2~QdA{ZfGc zN~ z$D7lVM%siiwSkbwnyu=(X-0M$*-z3+<-9ci(jj%;v5=jb5?(S`T|trg_a6c z%m+_i)w!uLdWNm^(&v{CO#|i7xqYZQXgg4&HF%=s%A`E2%@MZFUgGm2Xu)_vBS^m$ z@<(~u3HAnCFzM~Q`4AU(pU_2|y;4&y z%a8OAYhQj6g_j+RhybNoHNfO07f;k_DlNW6qvli2%_X;%8*%}oWX5O)5~nTS(B8Ck zSK7c8s<4pI&}YrMODj{l`0Bz(OPEb3SaL6a(8hW$3q{iTC=Qy z+?^QmdO5Z3!dGP4JJOcEdF$4vX19Ld5%6C=y5E$L3TM?MIAI9kHlm-{^Z$#&mg9YY ziSdd#H5I5iKStW)c7goGoTP z0Ba<8caHI$Sz$O^x1bL%fubSG36kAq7-%Rl4h^BASL$SPco!r`4yz=L2Kb7DEv&1I z!T*lux=Y2P@CpakZ0gB?Un@HB*Qgv2;@7D$V?c;6h~V5=f0LK|KhsHDe?^kk0Po6z z%DSC*?!anE?i1HiF7vC0oI-tldBlLOfYHr4gGEhzdZ`*FBviM=L-I76=d@Atw#0R(hbZ*BaS72A!XO2ZZH%(6+iWOx3CcCUCCb;MzfU)KqWZv1*a_Q zaU$avOJF8c|;=vh`wX4 zN#C9aG%Q|8`eFSh-gl{k}Mi6(}@}DNPRij7@G_ZB*K2B zQ{<9G?`~<-vahK-y;U39*xc#Ycd7mhw{>A?6rglYOsJH|^eEAQLNvdsrS&W``k)WA zCk1xXBSQUk;i5pGE9zdqemzVM%FG@92+l}7`g@wW1K4Gt`>-}B)yZ=# zXBr%Q>`3#|MkO~&PFXiP*aI{v?Pd1%{B5hoUD|o_UT0SYcp(!HC=?Qoz3=?B$(32R zafQN2Ou5>=ZkhsS@~6j_N~o^BmvF?1yQmsbX4ZKq`@LbtR&M*0s!zquG%e4KgtqR(Du2&kfW%7Qxbm`AUs@ zYCy!m2CpKP;Dm%u7k{DVyNE zvZ@e~TE;D^%bD$Y)?$8iwk>ljtjhKUt+LJ%O(u&tAEv0PU zEiCMb>xq*0Da@Pzo!o>ulp;RRTKy&NBfYmIG9NmDj0!)BR_=`&N!rU$n!?g#{aMuX zREq}+P)uRnoHx?wu9U6&=xxB7!BZ~b2m^0?l{ob{baj7t%#Jy8|K-dJTev&Ny(tyh z>DtwSGd;LFKvhThCzWf&DkiSqvZu@0he6IBd61+|J8ky=>}YSr`FtD@2;?*XxqO0} z7HAi7UX#aoW^j{DD#Chc??^C7hMiZ4MDJ z$|wd4yAz_urJsDrA_gBNzm>E@`{pSX&=bu$FDn_fk&m-%gIY-MmDB0Jm(YtWsnUu=Y- z31gU+>S?eAuh3T}*gXnL*dO;j7)u(7v6L6jPv5>lu$;thSr6NHf1->Z?X1C%X8aRV z@aKP>4TN|=c`Zoa39U6O*l?Bc`aP=M(R5SrPhajfD#G4lpZ!%2aqKJFIMwpUe1!o4 z4VGMb?|#WxG7ea7OHJO!BU7f)l4>a*?zU#={&!Q!T`Rcn0Iy>(NMok4MFwfB3XmX$ z%ostCTHP2b23L}5#nWJ(^JVeibKykQ@bA<(zqb`m<%ya~(Ez7igz+`pL&>{s(YsIb zg73~%3P%JtY>lSTY}LN>w8|{BEc$kgYd2PSKrF3pFbnKo!KJ~2LChcJ*ELw}IP;+h z2~AXyzlSE^l7AQu0K8o4HSrdo&LyasrZX_&;WzkHb6RWgn+FP*b^vT+O*uI^J)=sZ zuie&iey#&-FTetY_z%O$#if-E!@<=OqXzRRL|Jo8x@j*r@2% z13t`8i!wUKw!J*D(2p5BKSfWZ+9`<;JeILeHeZ{qjLL7O-sRtk6>CM6@|yBIe&Cm9(sbbLhsCi3ZH7Gk*Rn^&(}vP7zWj)#8$YmY*x&*OT%tC&#*OUZ~L z;`iyKNrz1&J-KMGxj)T$YC+LoBEm;P2f z;o_&giYybc$;%WTc~ziIwSf(H=ybDH!i>CQVWk~S62O|f>kR9=g@7Z~gHWJA74Mr2 zujiI0s@;qumhwyTgnd;>d6j4SU~ zb8Ja!(AbN|BXIMS_TvMRp~HI_RsYxMa^Ql@z#m=!{{XOm+5(Sc;>P}B@Y8$fgq%Z( z9|Ra8u3~`xXCq&+ISlKW2CNS79*KM`J>~fEr+GtkA^^$5!`8x`cRW~V(^h)8bl32@ zW)ZzC^n^my2*3Zr<Dx3vD3*f=eE{5z+0LPjX?>1q( zj+}~f%F5v~{uVy`Fm6{E+paEn8_Jmajf~)?tD30z&?Mgstkbsqf`KdC!YUzSX@482 z5#oyBm%jOITN(@Gg0v*`2JgGnBzEcWxLJXn6<)&Tj$h+yC(gpy=7y4nMN|7nWLnQt zsjA7wSUE4wC$>*hG2hD98m?$!?jbUU-ru0>EC7{I91?D<1%5}EhP}{oZl3g3@{N4k zZgOD0alTDbMfP-I0YJib%|DL;DV20F_&`$XRVD3EGryZ_Mzg1f2QD0t^3K4{T7+(x z^1rISUuLQuC4%dn+oH}hnu+y8S+V)}_|Rp~7^EUiHfuR0Kx0$SaZ;&=4%ga7TSldX*P9Wd51HPLXUprQ=r&|U_hM3Y zj)VyqD9UF!M(fwT6pSEwj`wDJ`+S!_MI!jm(v1ao@!O1w<4wfQ@ELnDA$eHKzl{*m zR!C~m`SXpG{{;EXhC<)BT+8)g07l8N;I-jNcml|&I@-3T z1d#c@6AI+#r%`M5GfWcEB%k3g&l7MjSa_eJMvaK+LUJz#K;-GZjh1+J9`&33+MoQI zvG00HT)g9yT!_;M5g)I@S5W)97gOk9s9SvLGDG%;(VTbv2A+&iTMC4(DU;ZFxrI?p zaav(4A!r-_ZcA%dE(MULUkhs-635;Dbp;gooe%!Mf*hn{gm{ZsPzeN`xSUsaq)UYblkQ- zIN70`MYo9`7f{A|fuL=(V5wjq9rJ>f zM2EtUn>KFm{>O>C;&p^LAp`yC5t;U=g3&3POAj}2?tkOMXm|rrq4nd1C$u@W@p6cq zg_b28&xq;9Do&hZ+2p6-nZiBCr%|!clTA#!~8Y)LCa;DRGhbM zA@`SLuuw^(4*~;6o@dC8?S)ZNO}a@GtIZb@b7T9D{R+z-V5yg-Q|;3*ghY=)QDeRI z8Ky^32^BGwgQV_J_IpVqga4PEvWp4C0FxG4MW(fRsCID#C2x1oHU+??1J6-{B zL1C)f0VmS?2T-^&0^Nl{YuoVQ_wl<^7S4IPAg~KKdo~I@V&U#&YGF=Exg~adfoSfO zN2>2G@;7wHWjj@m;d)Evlhxwz+gEtX~XF;a#bX-DsM&hlzDH*C|G8Zfpy0#XVlf-(HO_2>nf@Bn~ERA10P; zEnCqn9{mkcAU|wKgaX;~w*t8?LLQi&qkVebtl{*_FO$KrwtkP8aAM1&#h03jZ6Qvc zU0plc__;F%X@@@lQMTARzzB%&xKF|O#;FV7BZg8zwKVL zG7EqSpdT>hvHQ{Br?hkhUM1S^|G-sr%QgNB6G76B|;MRfQdyVf-UO*F?0Oa{TCBH%%Vt)bnbEXQIyR39g(ay(k zOz)p+Q2?*{PnY4GL_;6<8!`D85o67bglrRzmX8m%NVyKGE#_E<#-_Zjd7S1Pf6h*; zvf{Xv?nSZ=m}f zg(Uzix-~+a6(cK5(Wxt>i4KxCpVk&(ZfP|9BP<8_AL#|zuejxBo7soY>u>^P^Z1FR zNh%>3W?+Xwoif56j5a#yAK*g$npu)(y)1HY`^8lO_o0jLK{5U=hnS9JNhan}4dylcXLlMEMl0zP~=b424n%C4_3MzUHjhYMe5_IH(I zOeCRG)JvZ~c3_=Px8gnp${bAtWn5N>&=fE$Tkj?pT2VfJP9oE=Og~PZw+RN8evxix{!2I9v0j zn3`!ruFrxWDsjz%_o!Tg>N?9yYb9^B!c4cxvCsQDhwpz*R*MAp#X6u*Mm)aNg{Qa1 zTW*Bf;Y6Kyc)D);czkutnH!&E5|`#jHQmQLKnrHOU=Hsp-NVzvB?_Yu;=5bi_*0<>93cWcm4}j`Jlz7`|_zwm{4%9vHggd zb2&e>@FP)VzI!gXFKHAr?q}=3Ra9)Z;P&HgquJIcqZUt9dIQ(%9ND7tYKlIXE#rH) z`{XmiqT?C$Gs)#mgnT96M)Z^+*Y_!QTf#gH4_GE^M9F*NV78pko_lgAZ>qbGqMN9y z$0H|W;lyvluw--5)IDC^NIWJ_5K=T@Q!qi^2J~`;WR0_W%m6*9?HA)KF~I zJeuVhg|dGII#sU4SDo5;!~#ocsX4N;QJ&JOfxYUl?IALYeb8IN zARN;C$NJ^poyDGv4~gIFOTC8Q(|ob>ge|4)tX&$j3t6XQ8zbZ=J`bPWw-C4GQ*z^1 zU-~jL^qzUohiS!@B@hmi^X6;rAN?K#94{ud*(zq$97W^0Z`qn}jC&;k15jxiRro$Y zCKrIS@d~|GhK`Mr_B$(Tl&=*^Cpq9Rzf1zW60e`-e3up}(QO34^EMoGmOVTk1oJm{ zxQ=UPKG;&xZ0eaffy-OIvpVYZ?HA+`7O2J2|3CKLGpxyN>l)r7h@xWIq8pJWNEJ|2 zP`U*HX;K2xMVfRWv``fU6s1US2Bi}qNGF6MAkvA{2%)zCp@&ccfp^8d&pFS2uIGI@ z=libr*Z2LiaFN{WUTe)c#~5?WEKsfSd4(m5y$4-}Jj)d(emi}zAV)}@W|7yTCi z>F*~{0n+LMS1EC$&Qq*1`Mo)FE^IKdV{nE3rw4QBiXJqd;|hMRY@>*u)s7G%MWsE$ z7kz!X&Qhx+Gg%Q&`)o&LXA*z4%qp}c zFmd@PXhs>Lt%>4M&1~jes)$H3;e;;yWS3am(GY^xPcK(*)__SDKqHw%RQZ!#%WwLK zoCUHy?eY4+k7}s5sfP6~SN*E&?(`uc27v8)Q{=cKjw3mv-GIaXThRAyzgay?i_=9K zW_(w}gT}r2`L2iv7RC;RJ9hx%`a*%4<|T0b<#Oi@_RXA|@5Ye)Fw}jQT&nCaAZftq z;cHcmx_Dp(dzzh21y3YixaUf4r^|Shun>fX?`VmSY~2M)Y zSq-wwS`|tYItWhY-lwTb0A(SA!KLXWG5g0s>&y;6S6O&Z%lPhkfMVyHtIE{aHgK2e zO|w$>I*IwpFx{3rcU%=xqIkwYAG}xnGMmK#)=Bg+q2#BN?)0PcEn>1=5k=#I>vse z2h6$HR+b=Q>5Pt{5q77BpB%BpbP*YUiOAco|?WB`)}1 z9(>TraQD}P190P(%g+~}X+sH!3BxqjKw5xZV-k#(_Htu6zwg#mjvx&|-R!0XVo32l zjZ%QxuN1$31X7@P<53e7bIjdt^z(n=35EXR3H!(-mfoMBKb&UHqV=2iDduFTEbuFb z_fU;B1(Us~23oOKjS#>(qm}lDReSuLiyUT#wF%^|f5FQjhz;e?Hv^{IuXgzqa4LHM zNyU6LuF`=w7ZuZ6)~{b%47qkD&e<~&l+!=a|{!s#*Z`F%Z|eB*qe z9W22nlcwV&pyU!@J%sRdC4hEfGAzi5D7|)vnhVZeH@o?L8#E=BO1RIvbeIhQQplaE zP{M)U(ao!$OCHlLbBAg|!t8PTOW0aR@ zloV0u-3i&wWBFyH6-=QtrT}KD9FBhS!^|^m2$(% z%;&shSg6mT@)K}dF+q+RFgPgfNv4W*OZ@e;g+Y`-=dRax+O90M1e^Mi$_AtnIzy=^ zGqXC!Q#DE=)NZImL(FmHSy%xC9s8c;#`ioz>ulw{N@TXNQD9raXoYZ_b~6Q}nF4$x z>iXq27G%~tp4#iE-QA@}ZRdr!ZTqhld12VLDVt1@i-C4U9;-A;38FExFVV;!dvOeP zgiqe9&l;y97}7)@$Mld=1+xjZg&Z$m5~xz}lHd@97{6rLA%Ud6&islI1Zj?eZKi|Opwq|F&zX)n}?oaZ zNx_Diy@&n#+gXd`JJ1TOj)r9PWrN0A=LLC9Ki2tG_^sr%l_kdbA` z&cQC(ses;xt+PM_tuDM-97ALs@lWxwynWxCE?K$%#R#(rNrI&;{UI{Ao>7v_=VYJyzVn!UaM0bhgS$J$Z=M5X|gAO>#e89qRhVY5)TAWS$e| zz|u-?oeHS2>2_W${c9V)=OnZr@3SN@y#zOFS z5fi8jOc++!P$tL*aVkvWA%CNJ{-LBVTX%*^vUxX+!-1f?p zCf$LG^(z)R#lNHO!w+xA!~lp?3bG5yPI~Y;szZg~b0q(iQy=hX55mFc%sNfyX@G$F z=jSY5bt-#v^q-&e=1CWpM9o}Al3yqQXq5)QZLGYU6%#0%&9h+RuT`jmjbEN1-~gnq z2VDqm)Qzv!PM0e8*TxU?&lx}W;oQGAzWL;}3si;u<=^Yw;GG@WoT zHo9|Uq4ulko5Q%+IGQ^>k|hcj0mX$6r?>Cuwo_dQVNfJUW*n#rKc`54K{$O*2;SHU zF|oZgshg3sd_+$+_0{1J2W;DH*fi?~%I0t#RQDtE((!|r1oo=ptknKaFH-=^@S(Q& zl)4J1#-EJHhwdD=9ojFam0SR8qp%6h1cnQO_zNk?bM5&j5{vF0h2t;`gmJ3(x-mZ) zILIYaLH^srl@q9tkMH8hYwIC+2|F2|X-*dZ5#dC^EfJ%#hoz}F(z8XuHBAZrHBC=k z*}&YhQSfGezJ4Kjz&-&i!c_(j(7(bEYx~G*eC@7QKg;whd%e+ zg-6dUb05q2)XK)K^o_U5;92Lr%Kn;okI*H#7b@>LQ?V6u?j~U=)tq~q>`GxOIowI) zXKy7ASz%mUWUaudXTN!>n$K8+pr(C0h6D+VHPy z2A$ryT(ml7`tp5ZwW=E{>bazy3g%+ubyZQEn@XPDPv}D(d)X_EYvz&Ug6Yt=%0W99 zK`abym0Mxm4_@nd-(k5RJtA-=2U2!ry=ecN1<@``DM7okcKgxna92%!N~5W)eUVYt zv%-b$&!$c|HxC`(CuQnt$!JcJ;8e^r*p0Wo&_EJ2yD7cte3wN_P+HOC3SG{Vn`mv} z4_v9iXl*~R!rC%cokv(Cp0j!42Ci##fgq#dWZZei3mj)N3|x@w<;&y0Zmi^r$E)6h zA@@b?8%?RZ`lK9v3wqn(XqV+;@1kedU8t>7zvUt{5c}o`W`A$z3z*EQ1gIkZmPi=7 z{xsa0Kdt;}AM`))n0X3bEp`a&DfhySLAR)hIyjT646guSeN_WdH{zG%9e zcR-zq*FF=)lAbbin8Ncq-Z&304XvEglrpj8hl>|)>%D9Cp`N*F{;7}>U5w@xk_z1s znb?`b7ZSAIFBq#9r7NHL(34Q}`}u`vS+|d|-(%L4qXg<41>QC*F{ae;X!#CvB}Cg6 z%w%vmKabvY1qXT>I8SP+9)$rRh?$?|9vhyZGMpqkwW)J0|cX@wGJa52;b#*(z^Ivv;#{loycbD1*^Hxgv?mn?>j~4<>f@LHw4~Mj;2g6)PwZ5`~N3dCr zx`*$qkCC9=NjIyfCGRul(v%dx*ygRVo$lRE(ky)9HuvL;#~Uppw5vKJ;tQTae<*S% z@MfftmcUzfk&3Ipw*5-l&^jwqdGgt5cdh%nTyOl-0u1?O5Xe?CeXkcm_tr= z#OfHgCl0!akPSELh+?kqnp>daQ$Gg?k=>Go=e+r=bG{*W8o!^#)%9hcpp^y0wl(p2 zhx!BfNkY8Y{I-PiOyX{dcdfOJ5#B;66JA@7y735M{&xD4r&_^i4KJ#>CuVrH3L9;zi>!cBC*ZNzu27@1M1UYX z*Nx=PpE6YEr{uCQEg?i7ZXBUK&u;d%&*Xdq8ibMP5S2zENFAF&&l@NL+9R)--fN25 ztDOe&f(g94ZjpIQ`kpBJX#X-W87u-$fOCV3T-HCoz+D!*jVV`T;1Y2})GlQcBDzH^ z;MPT6m?qX8PG9u;*p7m0uS#9J_SomW)+ZE_Qc8Li&Q7l+_mwMaM>zM<0%$?_aE>3o z`#~MlkWo9E%ejRXA3XN=Wl!cEIzmgEZ7UTE$by7S;ss%ZUwc#3d*&NYj66UocEE9c z_TcNVKVGMlIAC(~M2`Y}&wUX(=gcS&pkF&MZf->Rk1Omafh9b zwpAQav^HWEch7M03e(0C7Lm-YocP$~Wd%0Ak8^_%>MbxUF#ix2Ww{BtR6sBg@|%oUEH&4$;J95>M_lPlgQu*>uzbcluP56V zS&t6<=vcE(TAN54`Qwa)ii7J=#t6stg)CKSWM%Ft4zgw()(x&qI%R0S5&G*IJ}&9* zG_`(f+oe0Df373fck-c4%;D}7(H|9&TmWu8_0TH1olt^ zE-UTqA>S_9!#(s>rim_N-k&OGq)9wycI5Zl8J}yZ1@<*`*8bc)wOm9O>a8L??CI1KD)D(hO#sea5%1uhaFVbQKdO zEB`ikkItpo{#$D~1!J}6f?YLyjH{*EDDqZ~#9{Pi>lah5srK4^3RgP7Qbb=oWrqnv z1aM!<>~Wm;Yj<^A-r)2{yo*1S?0?GlOp|-YbZMC{n31*6EdeWj03iP>z# zD^Z)00w)hrU-#Og_-PW7fKSk*X56giZHw ztMMqD1#z!9Qp`d#M`vChvb#{YTQ(PetaKiMzmL<63`V39H}2!7F~e5c&ATBCu2vC6 zfhG~rh$5H5ssy__sI7{`Z@Ia*YbT-_wb|KMDD2MTh?J=gc)zy2Oguj2VRF_e zUtdJxi;Q!>PVq>|qeH)gtJ%oMPl9h(H4YJZ+tk|t;6K`$MqRt?Okek$24sqrW$!DUy%G@zX@s(p8Ck*j zu<+Kg?F@o@#^%Nyb~-n=LScXq{B$#Z>}abjl3 zPIs-ppCuu>LrBPmsYsapN&%>Evb{T#htrG2r%%`!jJzMv+t0QE`!`!c9RHRT?BBx4 zP6*h)jlcHq;}?xklGt6+>UFr`s$ux9p8qgNHV6d0nEsS=GUeo1FTq5?k1|&^m0jpC z7`QaA>ZqOdQjSv^Ig-czB5-9)TEMx>xhQ(Inwu0a&vs3ABS`cUi;F_bwb(~zc^>fr zSC3mvok_QBFB?ge$MxCnMMw*Lt9d$pmLKRXwE0YQ04K&5BUn4*(jLx6_c}X>4Txtb zJEzi}V+JE7NYEnl)k_9^h9*Fp0WVTE@!L~@4ukZjZRL!aHfgP0GvDS4$_r}}D`a9_ zKRv2?i7Sv{JAOwWIViLLEZ)31!WcB6@!XyFv+aG-nNrKKTxKWCp8d4iIByJPjD-v; z$MR(wn?!IIdwbUYUq%s+-7E1`9eZA<*pzZHezyqs2X&(jFp{OnyG)b}O)W#o$V+?X-?#lVhiA&6i%g?IQ z|7c?)%^fn?`_h$%qsO>%>_;FvO{7eC4CMFd=T%vS=!L|5c1o@a%CFJt&X>b2Sf8`^ zQEJ}@F`@}XL){d%Pk#MpzlB?cm0l$!$ppD&n-8YWC;hrxZ&+jCJ4tm+#IQ0Vdg+M#Gr1U|!0WYkPNYJ?hvdSl*>g@<*&TF$b!Ep4X7keqbB zNV#korZ|#Y@6S|WE=pjrZ;@l$-$M<|8%&bYCv2xPfGCZuIsXxJw>#bX`0rK58#r&+ z5(;lVUy@?JHZ>>evGQAven#q?`|_So!kDB|q$h6-ifYCse)ndi-UC~ zftv;%{&=#X&TroS%Y3ly=`r_AW3-#mg>P7@+@jfo{>Qx@ zCBHq33M8_|dQ^{D+A3+FU?)!V&^rD`dbG!?3(ZumJbf2FZyUG3GE$1L5B7QE z{$r;=Nd{snoq55Eb2z>#804QgdUVqUf|FTO^2ql7;7-AN2!!a`Y!XZ%ogIO_Z!R8h z|FO6CjLSm?g!@c=*t^8}j`P!dUd8fqV`ea~vCGi5jXLPg^`SK{4qb5Qi{l*IUeif- zAWvO97uDJbjVFEa$8X?0(q%r5wRWI08OR{peBdV`*Zu97Ir*jd0$Q5*XE48EC7vCC z-?&Tsf$I!=8zN?978*iy4*Lm^2R5$_LuP;&0$m|$a*9@0N_TO7l+`I?V!OwG=JO`l zYez7o!p{x(e$;wR_R)_7;sf0k!xY?r=mOybz>+n!RtDBc0mw=1rc$gT9or~mt8(_Mk)ktYsA75qtJ$m<h*4Q<4|ip_n&YbF)*R+)$gd+lqV5!_1|GIxzdCTA8SPI`5M zWv!X}g|HjL&r4ykyEPaBr&`}U@d}S2Tk7@RAjm5t`ledQT~}6*^7E|eLK!p!)!g&f zVlrIOOi~4pxszOM4D07@jPnUT8^&}kDO_tQ-E0%-XMO@e&PMx)|6;(fDaaFvX(?Pg zV=xbVS7I*jsy-&DSY~7M0!tmy&18?Kyf^FEy2C2sTw4fS0ie^GE>b z%#aE*-JWzRoIs`3_ZZ}T*&>68H!`4fiq$fuY~ssoE1nDy(O{Cm;zK&ewl@~h=8KiG z^16qCK~Cz{&JIC2(EWUF3{YYDt*B!*8@wYcpku->NQ8q-j9&w(dh%m&53|AF}m3#cFz4OIKC?xzGC=yeUG|bN-wXNQUq4`Wa{+ z!BCcEBl}HuZ91jWedJq6-WP)fMJR;$-Sr*c8|5ahd6%B;_sm=u#RO64>VKEo|5Ssx zYM96f(-;rdYVTJs2 zl*}*(Rg(|8$7R`5+Y~1In-kuZ-=oFkiw$e+t4z1V>J(+Fn<6$-B>c3%rvPHq- ze{lgtT=UlPX(vQ#(9P1H+|$&_dty&Ruy|B^S+7sVevGhFeaC+cRn0~?AXn!YW1v|A zXFaBkB>KfZ@CC8M$V+i1r(nS3^=>rbMT(qjNqrRn9MGF=N?DF^Ndj%9tySFl#;5ka z*&4xM_5L3-Be%A~Z3YEC69{vNzPD$;VY`mws2fS9wkC{meg0_yWes4b+-lKZYm{6J zXk3T4R{cft4x>`GkhgsD=CRsRr|zDA#w8GdCx4@+yT9Wd6e$d_3_aJB(^v)uhR9b@ z*rZmRV>E`#5xZ6J#>8XhdMf7On|HaPymXlSkjc*}k_6R1HkbyvSftns1gZ;knMQ46 zeUXspWYkX^Q8KgJG(_gKAgL*{goT<3m% z^PZYwQO{1X@MGY1q2?&OcOPutTal^^G~3$+Na{$k;N_PuS$^?@=@m~_4TGEW<%4Te z%JO#}%C8JnTDnv{)Lp4^P1?u|*#-$fq#??Y8hv0 z5+2=^R`Vh9O2EEpjW6Zlb~+}jJ59mLy8HHmz(!@HS7;*Xit9YyylyuEa40L11FlT# zm5w)Kfrmds9Wkrp$j(7j3P&d0kdOy5AWGuL#Sa4282v><%v+{srKbSxXacdAPk~t2 zRKK6sFcQsD6~-fnKETs-6UxdQ&wY5*SfqT9iChC{02wy)L$)Kdh%X*a2DjEh+J;@+ zRp1dGvOr#+rC_-W5Nml23&GkDB1ZeUo~|f+o_|F`FXag*K8T6f0&vK9v!yNBXyFDw z@z2{1j)>OoKzP;!>Vwms5F!8%#b%4&&yzG4&TQy|JetzRC`xq^MWKy{^m1o(MJW0) zOhzbUk@1gBZ=_gezJ0Ed=J#-r&Lv0e<+r_M6j}xVmkWoHh{hQy6BH>uM-++Kq~Z|7 zXPz-a8Y$Pl%)h*9?58b`18!=_(Oa@fmG&N3#F}?dv?oL?r*$vQ%JBvPoCylAaNC8R zJ<-MAy|7|2d!(Q}y>17KUd&y067kaoqXgs4KF8CFiML;=u&)GJha((2>wjuclI8oV zWeBk3P?8>|Wwnqxd)AGD0%MXYvZ;XZ+hbG;q)%4c+nL^PD9TI(YkkLK-9KHEoi64H zWm=@_9r8Icu8XxT37bXNaeo<0-`F<>qa1N;nQqfHAFtQTB$t=n_94G7@hOM`!3#Wu zS(9osZ~{?oVq8|*Sg2!{&1}GTB$h_r*oQN*p5NTqhy?*lIk%r(u`pGnt-^_GeXhRx z0k;QIeekoHJ0OWoT4ERJh?Sr&d&@3cgBrSKAax+EBx++~cuD?Xq^BhM* z(8)MktYdTBefkz)YLQ`@HUoHfyv0nr^;r>PsUAntyzAQBSCMv!I%vaJ@dNUg(=Rv= zxgUqyN*IxLLGWo{0>!C}aw*iO10;Wy{;)VlzY9j8D3`jt?#X=3N_5_!+an&40sDT} z=cJ6hoawJEV>S)2;;fig0*_f_eOLT+%j&BNY7>?9LH!oiHM;%>i9$HNz3F3IUP@px zqP5@MWnIIL_yH7YH&dGuM)4Z9!{$aPByp)Z%KT6W2l zTubUlXXb+*W6jhD*YCK_vuiC5OEA|#mHl-O+*wSA+<_nkjk1L_J}326IQv?s*4z`3 zC_(JJ7XQRX-ui*lskr6R2pwJyH_EaAQEn!pKtks{>r#K){9;zSjNl14K(F}qINnu# zzBleUte?4GrW@-h!+8b-4l`Fd_l@~li=EFz9*DSojQ^iOpY9KDxw1XexcbI%Md}Jc3^^!OytxNzdRg48nIZDmT+rhb%(b% za9yeQhx(}?=2?(h0Xg0~5V1z}Kq`JVL1Iw><;1lmLaD5WH5_rBrfeE0*S|iN-(W#X zlr^9D*5bUkOUJK8W@47vRmRou=2sbKeHftNy0_KmEpd1}p104o_Xh5UFZ?pN{H_r; zMrS$=_}Y4ZhF!X2nMjhZ9j?kL(Z1`tGe3J+mgVx!2HpPs2b*&^{QZRM(6UPsE)M{E z|E}o3u?t9!F=QRo-YO77@&x$a`a3evm{5Aw!S>bCr%ylp{RbmVB6O)YEC^biPXF)qJq0TGQUN z>oo+u7q&EO>Js6MIfMwG#GBUjyG>EGwY5Xl1QBbBzs7BrYpMHTAIBMMcKxoZvew1g%r4 z0m@WveQs`i1|WuI)bgQ~o{A?3z?O2DFc=fGpyNqB{(Rf1sLLYqOYEP9y~X1v4X`hE z`9u`@;vL^EjltT(`POuM53L@*(5t|=?JJU0ZWm>0axxZ}Mm^kneFUz<7az)n} zj$|QuXhsxBMuLmo+ugZ5_ENUrClp)kZY`_c2bPXgJ%@a>1J`DEj%M#8+YgpKk6i?x zVg&mB-tiv)=Jw)N<>5MYHfb+ujjsbYScfqQjETX<3xc15M=n69ggOL2BUQ*XR#ry@ z-mi0`elOb-rExrQ{8~IH5ETZ5HA~)Xg|P@S->@uN-0Y3vQV3HFH?B^H6;q{04tbHd1H zAp}cu=q*G+-S#t`ul51>$?u_2AJQHwk9fnTiFX60r{j(*`_mqq0*(l417meX3*{CQ zT0azGuj-#GPAz;<>f^Pk6!0(zb%1&p=Kavo!Sea*UWTb2H1($8;YmdcF}a? z&4lu3K?5~lLB)-BTL!&hk&1Jg8CSeE?8^3h0ew4PYJ0^UIkYzM?vBOglC<;6*dbT- zgy~Xjt8!~}j-AhG5Ved3ElxNSwacP2-Sfs}cEbWY8%r_seYT1+OiS3d7{NFT zpv`qAuUoIK^7F|(=D*mES z^4&0w(}NAYXLxW2#EUE7l0@EQ8B%`o59Q&LkrIX4e+dtLO_8TR(l{_nrAXK(f|)kj z-$R+XN^P*t^Tm#%zT03(bOva6(JUBY$;5y>KK*`ESdqgpJ7-u|OqbQ}dRn^ThwlD8 z=MR?!6!%iA)+dyUu4(tJccndi1bQ4)Mu89hBhtlN)Tx_1ioWx`{J1+V*Y_I(0Di`u}Rs3ow1Nl|@1VoHDVXa$N|^c?GD z!sKUwKfSA8G(HAL4@WyS9B|zM#aanf8z82yb}8^5OLtD~OjgLJf2|$Ig<&I=uR>s$ zs^>=Z6=h$@p|x9}BH2fT%eIIC4K)y2a}h7J$AP&e%EdDs+Dt>=5YNbGw=Mdw@@r+5 zs3b{1&hn@{S4#`P`}(@8-Xggzj>N?sXNnz-6^R0E6iUGB%6!s}(LSPDC{i_T_TJ zLe7=#SkfI*|0Vu@2gKh2+Ko_=|4T~G7j0v(0q1E5-)`8#K()a%dv(1$Y+=iZsULZz zvU1y-X{L;3hCBxJ$t@u3K$h2G%ccsv63gUm%xMTd?3Jz&#nYYU zB|bNVDjvux_#BsSP^Jj3*Y?W24KPls1v~03II5b=0m;=VrNg*BHKNBZ#(}|O&E%6T z=1pbxkrJvldU=T4&4oVYpcC8m=UaT>hYd>(sNGy&k9d6@$##8 z!+HxNjCI7HBs{RZJD{cRr64u7WekiN*Ps1M?%S}IDNX*D+I;;uG;sDDbqAtP$wb_; z?GNz@T+QM<$tbu-$WEDDB#r3{MB8 zZ&{5F-TLFboOFDeHu^@z$q zxqu-3e?_wnuD_a^8d2|WiU~44iP0juojLPhDuhMHU}>bdqcJSQT!|VOffniEOlJaD zV+hkpr}hlx3)6i?(;2=LPtjeRV@J*GQF!>JTl!!w6EA!A*zR$R)k&vQ{SWK>1JfUW z_7}BT|ASf5E$^z~7ddJt%c2|kqRxsG;=7$uFJ>8em13V`H(Fz)Q($a=Zx%+Jj@gFd z9|7yje21#bV`r$jW!Ck-axnQur~+HLHJElPrqvjF`G9Tk8%>wM=|8rfAPv!6C1P1W%F6Ta)I85&=AY@Q-^m=vYhP=XxH<-HBy%ew^ zYBQynlZyzHwJs$4ZVbp-uXajuR?dIgU6k~Vlr|7kist+9q>c#25h((%CVQWcp>2b6 zb|z2E`kQF!=yLLM;#@0^eIyX_N571}b^PrM>sJOE2VmSVOX$(5-a2RGDxRU4~oP;jPX*0yp=KdvLHxOvqZ54(4&)4i=9!LZS$8p_G{ zGgzszO=pERAA>D%rOJ}{ud{31kx7-LGTds;I?S+3mm-*TRAwct0(%$qB>nPzB-;7ptI+eFp^ zt3X}Qnkl}MgD1p^9@QYOkT!B_$2cvh#BXB^a_f6a5_L!7iw7Jt<+kjuU1qYp?Y4#m;(f7QKQ2&G@!H}jk6U;w!Il|xPny{ z86eMJze;f}T=XT~K|l&j!*E5g;$y??GTsl23$zqQJkpTwFI}&%^o|aNbxkx1e35+| z>iF`eLvOR&9%!s-1_`0XTDp=Z7_e?2DR|VwpL%8K{kpRHOpbaxTRAO^Jrm+pGl|(+ zt>#W}zkC5*{Ii-BC~OFrz5}oLL%OGb$n!0eWh0Wxmz7>3yy1dgkckn_^|k3R%D7vBag?^h%Ak-ZN8r_0DnIJhdm!owQ;kxuT4kn< z5#VS#E)232b1;t7ZE?u{-ju`}8CNip$ha!rUIHxFWiU!!bet$YlAVPZp1^=3>@0$bX)cQw4TlZsvG3ye91sy$jYBT>tNlriiG>du;~hsTI13;M z^Ul#K7!+bnp&KakK~q!7C;EpxSlGbwf@wEE0sSlYd&xoz>f}lxU-xC@d3>aPc}FfF za68QoJpM;HKIMMg8TH~5cNhWNGg2}3J%2->^TzkXDBn$uf2?WL)z2V*cG6B3=*9yl z{+q1y5@(JQ5;nf!ujUm>n0{^vr5zIUK!!RFSMg7N-)Zf&?y;Myyyr1cRM5&>Evs|a zr78Snf}|t7J^7B-#v;x!tOeZTH*J1CmT-CQC>acHQEh9;2dRu-p~Gu71i!xv)kkRO zUqpuB``^xVq=?kECtB3cR00NAMbikPz6|=S8JvT6pPcro9++>dG-1tN&ZAkQh6SNd zNK7G6zs~jNqmO0aJK}U>a~@6guYo{&GdPLD7i~J<)Uwa&8QWJcI<~mP=;C;7fjR)ZCOTMYU+4L6t=(>NzD!zG2Hw9nVsNYqO4J8C za3SHmp9BNv_kEFq9|{m zvo{tyF?tW0<_B&pC!}$CEF}YRy=SXmeo#DKHXLik4A$A@;Fa>S@_e)euN^^85Q{LnslXDxhjapU0q|3B|xMYPK~6FCAcNwuQGg}zg+y? z{x#L}^7iLhFnYmBnVQ#mqiq|ZO&@+7tegG&VxFP)era4MbAjHkU$t5XsMR27&$vYO zrK@4A&kx=ve+R0QNB*_-+7b&df86*z%wStTOI+Z zB=u`9@trqZl~ROAZKh73xK0WE>nH!6KY5gZFc1zmJ`(&J&4*vV?VsnD+IagPF5F9A zP=;+z4OoC#8mFl~OJOd**6k5|XR34J=c|JypMMuttvmt0gH5vZ1TeFL%Tq5`Hfj&% zf4KY{NGc{Mc%$Psuw}eQJzc1ObQyv}KlS1>as z=lA}t1NpC4;shQCW|(08o%$N7?S;)uKoMN(bqqWp>_2?KuW8_PdabXE-Uh@Xb-ahd zoqslUt{vPD`}eKy1e$nZm*UNXKu_iws$KQ-|9^k|eOLZ%HvqQt{~P-YUAJyr@!~F+ zBr0<3Ecc55^z`{ND<`ODoR}>LH&A{xq?ZRVJ~$8m8$HayNQJSz0Uj;77(BbBFB5j1WUSP>&@Xuu=i!C-UW>a=c?olisXR#$^0@*NDbLNF4_0zTf-)+yA zpcM7nT2)|{+JY*N}~!R3Con&Shy&QshiWVvD3> zt-aSQFh{t&T=JX~_!`B6S)HBzouG^VK>_vnnf$_`8kK!O2G|w+AKrRWdSCMc@D0I! zVBSbyaR&zES?Qa+DQ_5UH}|%UdhSY!U|*vf7G)zn+^_oM!=+vtDuro(wky|hXTT=uc5TJJwS7uU>ECmBV;3#haf;fcUloQ)6 zy~`%;!IzIKi3OhCEu9}F&DY}#GmBu0gQZurzQ5P3bg}N*tnyscZ%L32t}>jmfOalQ zy1ii>z{0A-lBKGH5q6Ev^6C|`&Xk;9bS5>_SmXrK{~P0-!(Nz}|=Ss1yOQnD}<=pH;mk z_770h&-DPuA-$q0-MP{70`KcC&)-bymp$hM$jZf3`|(uyH84aw@VQ{tz0H=$D^W~> zx`^M%GQq$3zUj2%I8FbnEx_|HLFPL^BTM~<+i0wdhV6pXXo+=k$@2kC8|?z&nwrUu zDWSj6Qvg|Uf0T5kZll)ksw@^iKGpGjs&VVE0ml(Fm-`F-?;uBTnka&#aeAySK-6K# zLyO;Mx57!Y*z#oY{>nJln&(G}`Jd+VyVcqm(7w&(08!8NKd3~cN{WnXYn-4JS-%ci ztpUnu>n8;@=Gt}c>?t(Pq(R6)jVthN9fY{Nr~f zn8kgoP@5=$DTly0SJ(CO5gW_z1G&2D{Q4#F$+z89Wae;9Vru?){Ybi35#Y?-_nZ|1 zxl>|=W?Qw_ruqJ>0A~u>wIx@^hYOHv^I9@x%9bQ6)v!wgMsqr-3xB&0|IdNuw?pFR zR)CfR(Cn9F-3*T~l2t%CECN7*$nqp{ajnz_01;(HOt-~8qEd7{Hy=QbWBZzFx4ggH z1f7`uy7ZWxoTqNUoXXCJdY_e=6mU`TKrp~1af1rMXqL)2`4?#C>U8wG14lj0+PjBW z`DeM5wM(6<0ho4K{$2C#T!s{P!l1l(!n6_-23O)hg_cSyTgw}Q+g>00 z{r-^G&IYS_-+bR1QC$|ezhv0^{DX_9x%n|gQsI}X=n$N&U$rU{)Js7W?7XaZa^-d*tDlw^(WSBmnF+U zzhCMpYQ$-xH07=PW_*f$c4zM@#b5i}3rqVv0H2kNz2;frItTKa|IKyxKm5lhIx17& ze@=(bWJFsM_;TeWOS-EGROx7dGsz9Ctxh>LFBzd#V^(#RYXlD;Sr^~Q3&Gds$iZZo zM9WPE%Y4-LwutJ5{(}~6F>w!${Z2ix3+M#b+~vB%J6EXc)3I$`6CZwHgzh%Wo-nrU z4Ty_d)}gy z;FNTe{a2c0cFYMkY#-X4NU}W`CH^nVUGes%0X+taZ@q$An-c4_(vHCf&@%#$gP7@^ z<(lHv0-e4Z*~gIDl#n?=gyY<-YC7BGD3Ub=WNi@?$)YV@aVo6Ejngp{W#E1fBo7N zDQATBb#luq9zzxTZr}_1T`h=^+XK^^_V>t0hA{v}Gvb zGF**;$yW~yI}?=My(axYwt96g>#)W5_Jksv=|`~D#^gfKgu&TBBSUuucYNRyqKKZB z_R;Fu#zsIw}y395(CE8g&DYLW59>HAO9^03TZ3YCT zYTpXuA}&Y0FWV7W?6ac=D=_jRTKzx^jcPdFBY*c6{hk@>7k|2fvAV#pR3A*KvD>rD z)wc8$Zjk*L#vA+_dfUjjsKl_^v%}EDuZP0> zo}KGhAFuPQ7xhlF+k&dTAri(=NVl5jt7nP$m#&84OGX`~>l-~%Jig*eJSw}!iDK4Q z!=tA~S~Knjkk|TtU`XR2M>`O}`PYxI@r+%sgG!5-HHF1!q%}3OIQGVT;CdLJQwf_4 zIw!In!f>JHii!8?`n6;xfVR4ZFtF-;Q7uPa-0>W)be>u{Q;7JCMQSN@ev}rJEOXR7 zRQsBf+;96sP7OF-E{v46X@mdyGr@rCtX3(<33pc;=;Ban$+!7|BJc6tufOQG%<8|` zfwhtld?hp>=%mGH4W;b2D%Xi>uZ>3y-$Ofim@q<2#%H$Ffn~hk`F?!>hn8kU;$=|9 zPdbEmJi+)nen@5&sy3tm5)m%5zzN=)vwnx6?r|)nffOkP6E*n5pw{Vm-R=O7w=eL^ zhvjSDDpud@8h2rp!M05){hqGVagpco$a;RcY7$8Z?a37lMwe06Y?+rOyKKs;&%;n( z01xqbR&MtlYAwl)m96|#6ydw6i7)4JRnL%HvN32TvgxyJ>oRLnLDv)jSw}OrA*j_1 zVm(|L2i=FefTqlk<#N?`=i^SBQN}1`GZ)8K|G4g4a)SN3#5YQb-D;V)(u&mUWB6ckYK`K3j!Kk;!3R>NBIey{lwL|x%H6Xc=IIS$TmPq+`-?Bc1+b?aTTtG0j9E-R4Kqf)W0E!68SJ3;>{y62n@FU2NUZrh*`>gtU&(i!xVW4=%WM zJR7Ae|D%$1TB$kB4Q@~Be17)%Y_m-GeXjhI7~aLt92^oslo4Q2VukGgP4~MsBjCXE z!im{9*pzirD$q2}oxiUA==)J_#OMgw93!^rppqP7_Wh7ar8J!!0&PaE1uYKq7{^%^ zBR+G)HcDe9ZX|1gGj)J>Bl|`z4n^b9N*s(FG6n}lQC_}s&5vmbFzV>tZ7pv$j?cZ! zT|rdDU}e4jYh{7e68AkJtYI3Ug`BrE&KwtP!vO7iwqlzuB{Fdxh)ki;#E$C-Kez3e()gjk$?~mHxZ< zkhu!oGRy=F1j+8AG)KDh+|5*`n4Q_0k>kuveutBugehC3lj<8F{lWd5n_S5D!mjr@ z$>{_1NT-p_InZVGRBE?E;cT>J18D4DcLh;AGEIb3TCUF9 z0kKv34t)|(F7g{wi%~FcPNZf1uHBT1kgTY}PYOC9`Kvf8P^`#3lqdXtur#Q*!Do8y zxHfY^a3^n}X1n?yR8q}J{n>tRX@=x-l8aQ{jSmVyOEww6> zNGpS%6NTpcOHXnX8)^Z)t9pL4Wn|Rkf@ow$T-i>Xj*0VHpHn?iZkCv=G^TYIL`*~R zAXTy@|H`8mf(T*8+(n9%g3io9HWT_=ozyk`k!eb4Q{Lf0JT$AN{ zxCi3N!2;W~YE{O#C0eH8ENbE_{jvBoQ0MKruuA6_R)uZwis3AyRhgQytTRky*O#7UbOa;!*fnt7#{#~fByZ5V={urR? zc~^O$Rc$7F34H&Lt(<0vEtk13bU2`mpJB6Rc3}P9(f%hB=m8_)V~I4AUa5u(PGJA{RdwB|Jqy& zK-qL4Be!MHa=>4A(p^`e=9@I9@kAxnW2rk-q|#)D?(;RjuDF2p`h5UOdCFjZ0rd)C zzCSm<2;cfGLrc0sS$YA|S1XOiDgi6ys6tyPSH1IUH8BkdXMyd4n$CNFvmgr`_^X`e`c92{j%QLD3LM~bnP+p<;?Bt zmeoyE-BV8zQo2X=9O?tQ=+xxI7fvzeNvA##aE$)=DoH>zV=o%`t#-6GtM5Fs>y@{Z z-f5Z>7q}>IGKtIrVZ#0PKi?QU93w3#BMP>QKsM7QK46CLQ;o!D%YG|}AH$q}i%MEq z&TZ!+n3Vb{GL@)z=&va2%@@5My$M(TmcvcWs|Lb$8T6^&pSFbYPEizAg47t`tOk#? zTRncQQ_UnGkJ_<9t*GZYa(v^E0ovM~z=JeRe9iVq^kcFH-GfgLmGf*0f~|p;FUO#aB@~G z!2js}L;Md<2{4{r5iy^TbK|Lzr;z$@Rxk=QiVgjb(Q#Gqf+VEb+`;ITZscYS|A~|@ z3vDxxG8X-9Wc*Kr2M+`JV6Lw}`G5yAM?To6f4(oIB={RJQjZQ#jhaxG*SH!=stfiX&zbI%VIpOi2B~_>k$eA_O&wd7g zPRuk&%UCGWf0qvahZ}5HAG{_?{)W3a;M0&Zbz}!;7!xs21#HMsS@4N?EcU^0qSN^F zSCNleySxON6<`@VKNWTc6n2;nr%MC>=W6~do{(iVLU)ICK6U(@`>WuCanEs2jqw?l zc> z6QP@!GGA}qPyR}0w%kkj=xy{3{4X^6?^>MSg)?Xu2QRzcPriZ1@WJ^eI&8qS7ypTn ztJ%Zm`I=wv4hx{Hlg4;-jENjj6DY3xPo12W&z6Idwb7OkqX$epJC7+v{_)x11OE9n z|J#qF)MoHO3LYMwhdS*(O-?PLG}q41t19}Io4@~?5Iy+5AU7uDgE(V8gb`ZnnB%Z47`x2^^HN_JinXDlIGB6?a;YA2 z=il$nzjl)AJf^b9u47vdadh#SvyURzSQAyoJwf5~YAxAP{hP?vU@l6@8{DR|tu1Nv z_?$Mkp66`c*B1n{+RzyA!ohYBUNfTtfmCtpZX(&N{hS{>RpSw?EVJseXm;;h`@tnw zJ>x-Dw~!sonf8OJDTa4=&sBV~;?Wx)%9)d#9|}fQ^QXQX-C<01r%~ASu=p-de`ira7#2+3cVp1eK5`H};@9Wm*>bC>`~Hus6ajFp!zr;BsMc5hcdo{_qkzb~LYZ z;dAHD5_&W@mhV=FCh@hDyWF%^*@-9=9ZkjMPob2N+eGj;H!(e;ki%hC(~!N zM<~`N{!SQ7GiOjpH51a1pK4B7+?zSz6UW|2yQURVe6@43^FXvRFhCn|eEYCEWLA5y zxHKc^@jDi4lgJlrS0^cV6ZwX-y_X2{wAFmo85;Gm7e039&xsYp-G>k(QkVoDpzESe z;wiga*<2lcMaR@>x|^7EQAN+V&F>qB^||G$lXHoTgELuHJ}&?L_4O6T$ANFu-vv6i zm5cQ=&OdqdETYF^1h>Wa^TBtzL(T#MiAPRfZ|Qzm9O6@+&Z=)Y z`$$!TSlfUZYBj#~Z56$p&|>MXM)C|BblejGK0iDp(9EmN1M$DOI4So1;67fWa>YSD zJ1f)l2pxuP>T23yIro%-DUs}4pT%}tpm{h3YbalqVySm6o0F{mc$MSr<&Kc!;r6U% zm1)064D{fbqBCf<$OvnTP!d}p&QkNoc>JPDoAUWi-^GR!b)v3KyHu2{XDNjtr%*W5 zrk3?t^!C;nHr39ItZ~WvtdT9IXP-%Ex-QSCe0K`fn=4ep_Ex41+Fz}Gy-%1+qp_%1 z?E660HsInYk4G?{jlAxtZG(e;_ah9)(eC^K4(A57TCi(%1?Xm8OX*b*-F6^y5mH`G zkV^j!ofmdmb3mXmAxn~Bsplc4jZP}Qu6f?VDw?2rNWuxpdBF*vJw5R;OrPVXr-9aSI7 zzrEZ387CfILQw2PQ=YS1w4*cF*zc_e-}@#dm#0xMMzR@4@@|edP!$O{N`y^HwUB~x z&0V?1P$Rjk(+3|Vj6M*@s;N>J;o5e()5N*@Bg36xH}X!AR+DfBW5vj}lLJ?q`Y%hB z`=!Pgg|8x+@1SFErX^@LfL3xSag|@XI{c&dWe{FDb)Tq1e%^o5! zJK1*XkKrf87v=gUIZhCgVyW^A;zBof(p=;Qr)qQ**<6(!_UzSNHoxgP%<`J%EjkRe zy9-3aBKE=k{2t7Ue)0;|7gh9O_37L$Y(dN)4~&y~c!6OH52KgV~}c>v+AhyUZm;H{EWuK&XFBg4A6$~4i3neu6GEGKPmIP*f5>R!1DYqb+x zz~08#e`x`CvP(KqdpdohdpnwhC2j;)e^thyEE2DRQ$35fXegX}F#$o;0{7U~j49jR9k#v}Z)a$9f%FMg8FdlSG$-EdNyu%z8nuQ@G+>to>y9dsatwCo)Z z;61Uw3w1iXTen&BfsCGV(_%@nWw(z&!q2imsMoM!Z>@#DzQK&h{Mjd0r|ruS%bp)4 z-s|)j_0O!Cw+q$X!W9f3R%ZXW{&D1U9+jf!@bNyvt*m?AZs(eIPvf#n$GdVMgj!>L z{%#uIr=@WN=+QX~T_8oe(IV!bTyi%hiEanC97Js=X7e6H8l6vY2+xrT!TVe#{h3Qs z&=qhlCLs9q)2ZR`eGN1So-9pVW%0>FOB8RI(_<*x^Z`0`t@+9mddQg60 zs!aV79+uVLerT{5DyT)-Z3rL99g_%Ws2neLMoUEq9`HK1%E$A$-1Kkfj+mO9Jf~WT zn%YMsX=T4sNta5%%oBAMQmZtb3v3aQ$a!bS@!s?Z$|w+OZpZ?b2o+U_OzHCJ^gc|$@?f6IJfs1l*S13 zhpX9p!=D7!SgxQ>oJemDU(&sO5WMbkbwn?<*VPq1GUy-0{N%dpF(c0A9HMJ`gQ^KH zu~`RXlic;3jf60AAbQdEv3^`J=^{>wd_`2!oD8x?dtq;6Zx$B)S zD0S%v-MYq#d>&t)UZ1XUEOZ3AZ)?PlR2J$o6h(97f638(t@AtAWa2TE9Ft<%Tb>{Y zSE=J@ZaWz(x!S_sP?7xP)`Kv* zfcFZ6w0@>~h|@iS%(ro#194Spp9Tz9f9BZgrR1|aBTX+mi z-@Y{m>hcOlXa}E~2U!!hd03#VWB~DIEsayKx+o_^hjIEAU*w_d!EL6#%UTlQ#lJWI_jn(CelqOSMwp09ayaeY;1zb=7r zQGXfzEeosbcV?-svZt!`a{m)v*BXlBWRbQWlHPN&5r8WuaT@epWwJLod=9vBq zsyj`KAO5QK&i`5K+=fm5v=Px_^;{?z@Rb|nk*Kgv+?h)`PrCv)Xb+0vMN@T;r4#;VUT%V9g4(RF4qjHz*45e9b2^Qf=}QQ=x9r6PZt z)+lW@%ojw2BTahBYE26@^^r~&I5ef%hG2xec0B>_cVJN09a>nfw%xgTezK9mm`MCY z9j`REwnS2>#ggP>l_B@y_y8Q<47ScN9WjJIyDpKhenaX z_z5xX{(c^-(+4yXK^_3I&n}snW?h&#AZF0Wtxjsb1}LGqyt>P|l|d-02C3jdNDBgt zVO-dcFnSfzObLXTqPHC8++0;9?1EFpg1sO*a}$;(sR-+EMwPp=sp2i*Tty*QLchW# zhvYLZ5i_YOlQF6{fcpD-%HVjuCVruYBMYD2MBRPD@TQTmH)8$_4%0GQ+SLX%Ync)iu6FLa%ZJ(tYn;-Mz7<1OaXH`B*jUeE}v4dE|_HYil)ySlD60bYGbYk+GWk%@bDf?hNzdI~RkXE8{Q+(j{ zV1|&Za!2U--l6mmjhOk?B5 zYHBDRiISCTq<=Ryb87053TGfr;PyvBOd%DOq)zRo%7k$4ItT7AYoS zH_DlWRnpD0VJa;Yds{^<>_>=VQUQC+rHyF(tM(oCwmB8yghlDCf2AwzJUdk&EKS+s z2_t&q&|iGnPFW1e{~}hQg_Q^=5xDtUl8=O37tH1PdBtBSMV7^w-shUyUM2$4kdQ)i zCQ(1iwhx;jU!pl}?-b6}yH}g*EG7l9XcNPBO=m*labaSARN5%J?h--f%=Xd5^XrT@ zm&s5y zBA{Bnp8Rrb(igN#NN!y=8Z<4ypUN)>~Xv)iyaIDdx3%YqD}9l_J$aqxNHA_cKzh zY4+s#n!5%ko18)lU!o$WTq@L?oC)5=@}`+2kgg6jSbm*p5c}0*II`jYW#KdVbkn;r z33S-ujgVY4@=6MQ!7DM2F$Y7~TvLSDYnx06>y zQvn3@I8uo((k8ue$$Y|}$O&mmw78u;wcc0OaH%OZMNl7Zar3+q6vXgo3DiP^EnhcB zl8~|GYEa~UmbiW^c+lf|gj-;9f}13AIQ$7ak(ikJSDQr8{G1C$szDf?GpndGv@iS# zJ!7|kXk)z{b=x4gxj`R5?m`6>j!?bsaAr)1RzplS14?o)`cGxjELk_b+m%(Q1wO}`CrL|2VETmKv9 zVuDv!R!id5#2AS+qVYAe~wH3vu(D~C(c3o-@=-opvwPjqEk4sfeX z7i7X>yT7MWyjLjFed@TRY>u~w&KuC($(_=?GbD~&}L?&*b?4&OJn z&2A8I*~3ihd?(>`Xz;ydV%Ky?Chmds+dqk|hqsZjwNrITXQKrrXeW$ol*CF%YB;z# zXzBb38-+9{sEz-5zN-5D{&$q$x93b84p-SLH~E8(7u4F{sl2_D*q6H;7+2l`sw~zh&=0US*(QoaI z9Uc|)XQKl&@KeOqGloK{b1p7uqhp8R+n5(vK=*iWV#15&Mxwern{7ux%)zky$83Hc z(4Fqr4c=G5+X?b$M;N$N{zjC+wmY-BJ*m8@&8FzqI3y4d=!?ED?SZX8-1X8fL|HvA zK?5>eIQ0Ox!tTQ`tbbq8gQQL7w{l;>zKqoh|LAp;Vk`^5hVE-Xzs` zTsb%RRY&wbDNv>dftN$A*srYoxH5`a12b!XncZ^bt~I9ITabc6WW08mQ%hs1%-U!mi~n6Faz*GuA~Bh0QKO1Yx_@n$!;MN+&e(Bm}j6#oT|?naQ4{z(1JQoRAxGX)5WR{+6W`7fVOfi7NO zh*>n;4;Jz~yl~fjl}mICMZDJYGSHI-c-iiJ8Qja)&Y!P;BJIC^T?9)M?ck>$=B8f_ z{slm%sW&Ua@c}9_U#?w>&s;iOO!sa~chyzl(TjZ2u(d>k@oPf5)&vql*NY};Hm?r^ z6ZM2N2g}y?`f4p>YxlPs>Q3Wbh+NWQk2ycyO!)j?HTM1QCY7>CBIWPU(qbND)E03L zV&iJsMGs7bf3JZU{2W#qDm6e6MY!N}d?7eP2t9*rmVSKvqTE>f$9L6Ti1oTWjk>XN zLXA#`1&yw^6s5G{Q)E{A3Z$W^ z_LCWsN;;DPybt*78GsNV^Lz~hrZ?YUa+Qg$ZKCT2pPdz8P_8bw7tB{_K)tiMxUs?x z>iB%kGGPTdT&Z34yr4p=r%~=yFRbqKJK%~=JbTP;;bH15jFl)I_Y4OOb7^EixKO|4 zRG^_Y71U9Nb09aB%~a=<#pmZ8%~!oeMy7K8{E`KPW?axQODQwTa+B&aZnazJFsF!q z)jh|U+k&QqEv6&^ksF?vgu^rbQix0Ut*J`gw)3NCK9|I#`I<|yCrnTYBI!E$?D=%Q zmF}T5{n310)hd%ffd+@1W0zVh1-NqKmmG#GgyrSc!l`zfgwL*p1`i+K1!xmRDahD( zujS+kAzKkucNljtCPxy#6Q=oM$Im0|>;*gjm4Trq1gz-G13~RupM2-7T=0ENhFVXE z>xib0sh-Z2eGWc-<9i&UFqQT0PW_v#l9q!h+wJC_95>8ppdJ{IE^d11>BrdLpxcEb z>&cN|Z_%MFXM7F14iSv>)U91E`w>Bs9^cwp7Aw|JGxT}04^&<6PvjKYq9i}G92~Cw z&<2#*WC}?3i;InXK?hTvYsehEJ&;X#105P^y{XOiv?mS)U#>0*WDH+*855abCV*@2 z-7Q02^L6rTwT3%A-{{197Cd)5+5k|vDSlr~E#Scq$&(|V(uJCQN6kVj_C0TX!#$ZH zjZHo?d5W<-wYsmMEeDs;9a*(D>(~QQ_k&OMHD*L6K1JqlE^I9yF)QEK(rOUBR6oOG z3EgpVoYkm7Rmuz!12j!YtqnMT*IfY~oP!6gd3S-Y07<7K1_9^PUbRTBuZ*2UH7gO+ zD1t8n>0WhSBrSYP;tsIelwGT+d3Cxam+a$JKJxu3+sX1%GL^DZfi<%HmUdxFV%DyR zJZ^Tq%aD1Tmc>7VVzY&ySc$}2F88#W954(R+LkOr3H#ku-(n~9mBeP$e#O~JKq$+M zb#+O|_a?drQB0z9TDv=`Myqe%X1G6>Y0dHc%e-2Md3W*9c%^X^!(rX1w2Ug{RI#k& zbfXh-3LzxQGNfF{qj@SPd>?BsVRz$6+y2pUwpmHcyb{~Fk*1B zJ(u-zwsf+FOEEOHLo{M1+S#rDyvt}qmGI!(<2N5buB%#R5B7Ny)bC^9?N(E<&H%x@ zGz>6gs>!C{wmkehh0FG|-7r4km|8iW>!EX_s}(Q(RCgr+zn5#BEtdO;al;9;jjz_% zonKtKw2jZ70a@x$frD+p19tNL+QTSMR{wTu*5GmdOv z{J5gZv%cPKp{TLA5O4x_Sf)-w5t7HV1w5WW?t6CR9kyDvIq7hl&z4HQMQ*~x)RaCE zQV^W}+L7wbH{)$80i6k#4TX7ilfK8g=g$|I91N)|J>~hLET4T=o_OC?8oBX2tLZt1 z_1X1WTJF%`o zx&P$H&fN~(e+dWv-F@fbgA6tJ*7CVz74M)5waD_IWg#l50It-kdgAyGcen`piAV?L zvfJ}qjVg9cf71(rYL__SCWD{w4{N0nDU^^gIxxMRSSpFvzvh7G*ZRl?gJStpx&W#a zo1#-wY&z)}-=Q?GWUHKoNow?>Hi>|a6&Ai?`(+v)o^+56fjcWrF{NJkYI1cl!(A3x z2n8qGCb505iX1EdsmG5tnTn<1Q}>U zS0`K38N|RU5crNv$y<4WQXg^v+>8RuxnzFG#+oME%j;5M-jF!@2T#p3%)H3tbhQ+gWO42}8D_%jS%gATgVu=`IJV7J69i^}Zj3i$t%08v4^Ufhc_vdVZ zXKi(?$mOdxbb|Z!!lU(@Zc3@GhAl6}!ykj z?&o)M#RNPKq%MVtXzj}%HqCZPddSWB7r}hV=qts%-uzV=Ejg7B*Ql)5yV>s`43pp& zwx@erOsV4&v~H)zF<*%$Bp|uiQ#|G#75OJWG|u? zx!ySuvcz)Xk%X^W{M-bsX|;+!^th}JS7yA{H6nxs-bt)7`FV$!RkO2%)x! z0%|eQ`<4S3n0V$8M4oGJ3qH!8*8;NYuJNDM-I zxH3(b>to-_ZQXav!YLFG#PJqc=|^k%lgnmTC+EVxz7351r2%)43~@lWB|6W!ep7b8 z`Hs_1_rYE}yi>&Tmj-01fddX5eX0m`YEoOUb|P{K#vy$n>}0I;Q`|aalG^jJRG4Mz z-)#wGVxCNJ+qC6Cb#Z!kKEiwZ+)eckgX1+Hpxp~!;GBFfHZ%u(5hPmBDln+ zOV-L*ZZ4f2St>LBDpfuG@z^qyUBrIIuD-!ZruGYAcYY>F?AkDFX$*%MYS}M~x|>fE z8!+%V#P8l`QGHc)ahy=6e`+ha)E`4(`B_?a3yX-g1+WT3jT%OT)uYzeh&LBOGiEFO zc3&pSF@5hn_UJc_WRxQr>JYghNesKQo47e%gW--IEIM0X^VITObSC5`fP@B_QgiJO zh_>+9G}ZBYg9E@;Mk9f^oLuwAGY$*&eCv2>19}9WTIgMQu{_}aL~{uI_7XvDD+5#P zx|66&eNk#-T8c4IBP&zB7&sqy)mgF0Dm=VzCl{%eseATWC!i>wf!TvB-HA_h?d6L! z6$Xq}L#`P;D4WfGW%i5%WGxb-drgMoxZOfCKXorShb{*#$ zo%9!{iNfgLy&TC^xJCMA?315?J_c+#y@K(~LA2unbTZv26cH4Hftlt+dFt8#2C4)w z(B!wrPVbFJbU?8VRok3y{n4KPSkxGM%wW*yuH??I-KS$n1gLE#fze8{C&vm}{YVq# z4=7Z;AT&TS)X(k5jXV7c9I|~Y=*WuuZR+!mJg@FO}C6=u6L5quNHJLmgJJ_!LnyN;+e>li`Su5{F_;gwR$fq)Z+ zHc$d6HyE;$zt6a9QK*nRqHuHD+9+zxZ=2Oh#c#rr2w6}eiK!Qw=rDM{wJ@^yf|?1A zuRB>@fb;A7T2kVxm}k7Bg_^m1bL*UBPeJ7d3PMq|zOYBH^N-I?PlYt4qY9mdD-j`1 zA6hIY?5^D&NAtnNDCk{QmEMeTt``hvkH{$KBys7H0|Qguu_I#J6DOfIFL(32#WG5) zkKO3l5j2A&MM6Lzq=ridx2|Qy0T6kIAWM5>{b+Th49jrrT++6)3_kt6LBeIYND0e0 zK`r|jAf9^kEQhQjM?13(T`ee6_!{@aaA5u=;4#>W#k^o75Jb*_1OOjSK?iGH&^kMp zG(BIj!C{Ow{au`R!i3AN<9>KfG?y{yUo7jHGtZLu^_;MKiB1QmV9NmzKj@_RW7S%3 zxd9QuYT?IAk2}$vMqGfGa|f-Yz4Uh-$BTa{mqXb>bI|~C7sO?*2T&&XC0BFAav5i? zxMHmAD1={Aslz8Fe2j>Esg>C{9wf^4_ z8S%A$qbH<{=*_hP=u1w1BQ?Fd| z63U9%s8J17Il3}Edl|}d#G=TQ=gn>MLmaJGuen}7^yNadel=ZgG8LcA%OfgI9lTzj z54G1cOrCvyzbsxyu?CXv4Cj0aqCp*g8N*253*Vixn zUwVaRNhjoXexp9FJ=*xyc|>M*Z}D@_Hxh7g<7;&kD^WCQ$)kZ$*3LeFgVef~0Cd~>3d7v27(eBN$Qowp-QFz4?1a&LqrvHo1O0RaHp zQVL6i-O(3(6JL$H>^=klWX|{F@+Wel=p*Qv(W)=O62tlY-<;Noc39Q`aRuqg_Ke)g zbC3X5TVEjWU#O9?0tyl-P*a2umspPbxPa}rN}#F6%z64{(5}bf^KWQv_uLt7{YPL| za`O(BN7a1I1uN{=u^c5Q)?afcAMK@|17cH5hm1$3@kl|PCn03NLCkwZp)XT z>vZ_7W&Nnm%F4=qE`UwOZLF{uNX31t!=F%bzFuG1C(E>4 zI@bz1T)$Kxn*(Khk`2l1_HYYHjfLLHPgd@wQzoT?j)lieR@#;mtik3cGwMp7>XinP zGTB&c>MOL-!+Z9IBragg|;#VWcGCyC7zDb*omQ zHUXivcYG|~(OWTW_jw@R15#sozH@K8G7vkl&u`@>OX=hp0ILDpkK4uEa*)v%>08A4 zAhmV**~dbb(jOQSWYI@ldK$(5V5ZHovT@`sI;DS1hL zaEm!W@^r9O?ky0{YHGNU90SWod@efc#dH(mhF))^SXt&fcA0>*rT`K?9I(eb0A?Nf zM6UD3#qsJ80U4J`drw$laj`t{NCzIA2yK}t}j9*yE0CCRTXp<6uJKdH*cq_Wrxic2srobZk z5)IR@cfF*<7G^S2ZK1cEtFSufa^n*$*4JWT+G1}`X|T+8M*#gq>v$lPgZ^W(Bf!Nh zr)$lzPS_SJ;$4gw07mV z+2QMis@w=QLO<-{FyBA{0fA_EDLGZDo=`BlbK5u_j^2A)5^?9l)jRhdzsbhRhFsvzgx3Pv!>fpBB>+nz-65@7STf_~L++Z?#oK!J? z(%~o9-2y5VS5r#Tp&M_rJELyeUirb#=_8yLeH=dl65}uqMLlXK7*Jm{t_@Db+hOGL zv5`eGB7~^3_2wgNZHG6d9tCicB1;Lqo)5KmllvalX0QPK!h1Em{~m;UEWpXdm7l1| z@nNGgHE1X0o!oi7x9APcU7`m5L1t%RQLJ1epRF*eZD7X|7AV-yf*-CeO4M7rur(6V ziY1SI&NWCz@odI9lN=Zw9i4w0kt;7txNWN5#CqLDo7&>crR$!(Gtv9-F|%?ts^v;;vYZ5f$m9jnrKuR<99+;@ ztMa*p{>hIAdT%^}Ml6dLYS3vkSs0;(+-!xaG0lYQGI0??d0c zVvqT=OEk&iPh05q;6jUemf7WY#vwLhx5(J77MZzLHsl5`Rjonjb$0sazTVc|ook!@SKb_PaRlHlThAWi!-RjTWps%>zeu~&bR(=^ATwi@lK&$d08qWrLyl9gh^XH0w9to4M7#-X-7 zTc$8Po6114o*`SJ2}e-J0P<#TB`GxhH^>L!a2C z=+nET;bM2s3h34Ch9a)gr+#y>K^a~VNSf;7;2zJYX~Qz~=^qppz{=ub?z&43iK?P2 zZ-ZOl{9on+t}BZgy8|K|N`Bv|oiu8d&id0Vi(D1c;Qvl2alR1MA`?A?(!~hzW*a? zi_UeI5)yS{@s~|PpwSt(q1C4+%}FRl)D({`mz$g;OTurd=L7K^&QO||oM{ysB_;G? zg@uye*{yHP^P~a`!{56&yql_D9{S3fMLc-2_A2=zTkxyA4g;e(H zU;}tS5m-c)oSws>&+q` zlf|24J3H(30{AqG{?gBo#Wmu3D1t?vDW%U&ERg)B?}E5+ zXZlbmn+AFKAQ6>$s>F}XekJ6w*h2JS7cy=I3AuIuHtcucX&@o$uYuTLg010rORH+V zv&XCwiOPcx(|29(+j>{xqfnoL*SAqMYXOP=v*V_<8tI#AJKb71M8d$)kHGr8R^J4o z1!aHa?zfHo$JtH#a(G`rwaxmU;jXW8i`#UrZ6MBeIDMfj*!v~gzVaw4FWKK8=pN<( zLv1_7Ui$rwNOzGP9?vw8ASoC9zAa{v@m6&c;PCsXbsYy6wos^}*rqbO7`vUTk+%O| zA@|w@gq-5;TsxaaaP#6BM|!R-F)mku@Gz=xNVeJDJZ?8Fi{||7B%x2tkDJGKSPSRz zIj>|(NOfMMpQRnlR_hVtkiWnIRYbZ}#H~Qm;mb7m;`|>lzFgqh3$}s|?7`bIx(Bk3 z*ln(&h+Frcs)B1kgz>jxGhI5jKy@>340lH+PHjw6WPZySdM$ia*UGA?&RKM_4LHSR zL5Th41}X3RN0%B+=oZUXcPs2LtaOZS%l2(ldTo>s8x6b6X~gl~F=eYs>CW%qnJwX6 z(CZ26->O@;{bkQXz%yOXdXJdN)9Rh7uG(Ha!&7addqj-K5=HN^5`)P&Z&ZfTB8Du@ z&HjEll+(alABB$D4S?gN;x_PovDn6rz5d5uppG)_u%rV1OE0hw?5tP-kFq*p>XDni z5%LUhQ-#C1ns-1OK{;dE&bJ+XN~SU;j!(uXIy%k+`R4bInCxv$0dI2ejF0N z+F>y#!Gm!v2ZFtQEq_l|+(3t&(IFv1JZGehujwRG3Dnz{UdYV_1$?MaLYw#{a4m~a z6)YdcRXyM`#LQK)ewlO6v*MFr5iS*fhsP63nZNv43R`uSCpR+()qUK~EYpN%nl2A< z2e831NooO$qGW^k)yYXk48gCxeKZSPN_QZjrZHICf5mdE$CXu}5w{JsR?DTU==|ES z=~}r-mD`3{_nhP>TPZ%cy1!#ks{qXwM()N~-g zsVl&u4zYfNtNf(r-29-;qA6G}q9?BUwO%FdMR&wc_GaFAh!Z7~qOoWl*SnA>BB~lm z0x04+eyfP%jnu!qK}`Sf2ASv2HyLRq@?h?m&V^Kql0c?wZAn8uQMJj7Z7kxA)5-B?=Pb zoq_PIxgsuBY4SU4!E8VhA8!`zc{0XIE7i$tw)q3YhSy>PCyMAqk)^|(Wg}c{*uys@ zSJjvkaXXZ@?cj=!eCPYync%1{+`PpfoW}0naiiHz7A84{!y|#813Wh!U9K40E&GGU z*Pi8`@eUg%7bG)P5ihG8>$ZTn=VV2iO)ca2SJuWU4LaD=h6Y~%xSBJj-|L|6 zHBcl)RfO|eqb>!C*NJ{I%B(cCTuCl8e0s;Kjbdk99j#eUBz=|rLsHR0h}d^NL^X*I zIaB4jZKjqIgs&Q-M@$HkDMAXFY<%rmi1ju;&;!jsSAdc&@z?y^$cTNcec;FjFg5xl zKIeVItdi9k8HhA>A)Prw3IENR^G@N5?dGHs1%~X^h0IUYQ?m=YAKb>+Q{(35TBuce zs}0|W&x&DcGDi;19|fgOw)1c8K6`q-c1=O}y|OP6OY9Td5k+5jQkH#r7Z(2gDD)?c zR~ec+1sW+qtaavWG+hB1qeY-@pXwues24%%6USMHIUzXHgtbOmA-Zy`L5*_YkQ<>m zmQel{ZCdk%7Dd$Y&I;6eKe{%v*LzUJYdEm9m0Sn<0nlsrtalMh_vp(XxfPyIqrs9`r zP;JGP#Qq)H6Y-1Y`GO~dBX012*mH+{Kk}S!e%($bg<^cvACj`Q05W!zSrRo{w|5@5 zYn?2Xw>l1ZMk`BhD^}sPteY6lodi>vB|8%;DAX_QzsueFar%qqu;IN&|5%<(%@;@K zrLVWWY+ufXhRHuRpQzL#htuYIMX6WfzD8cEaPeAz$@g3NAPNT4bu3GTrG^J8xG>i83!!CZNt&;n9^x%+O%LRPK!oQYw$k+w^SdQK(&f4gN1DST&0pp=t*>@|`*jT5A<4T|#0m}57Z+Dk_FkXzgQ=}n2vKVFkFZ+pku95^4;*xvo ztTeS2B3**UgwHAbQi0@3iKsTrs})G4Qoat#{cXjg908(B(YnsA1mr*w$h%XIJ3dPC zCguZV!-AABQbH+04$3d zRI#tV@uX~D+V1eThm&CKDn;xwXq5VZY_r>Mwe;4xt*nN!qA;6c`VGUe?4>MeeG_F7 zAJy}}ij&y=YaC{1W1WS0drvqaIJ$mdp8$4Yz_U!AbN{ymPQ!7=9Eh6o?KMpn1w`LP z-@Y(Z`ah(-byU{d);7Eq6p=1L>6Vlb>5v9Nqy^~?0qF+mZjkQoM!LJZyKd?3de^P{ zJn_C`oU_02{kg~3;l6)s%{AvWuiy(@r~35mm`j!Lfrd%KB}YsWR5;|^yoUn2qO$;6 z>a0F$$aMgyFW0+NT+`LUUc>lxX9C-^NN07;bA2D=@m#kYV1K?Ccn>tuK$DM6A{?-p zt^NtO^XX7#YJr`a)#CGZ3(<7`L({gKH9+a1kOvg!8Oh3LM)$5-gdPxA{wVGLcuGGl zXMAHmV3q^I6T#qT7n@( zaTmLsfrXsssq!aJyMM4mOv+zuZ*BR#wEVGr?;-MQsSX33qGW3Cx9S&ej_O2V%@2Ab zm7LOQsyHp^`@I~dZf&bk_1mlqY?b+1?h!9{HQbb|GPDg8Ri1?}>%FK7w@0Paet{YP zK=`%2jnX2lTMw23-*pE+- zuG-yX**PB7i-9CT!!cal70Bbj`OE9G`0KmvQ0f|o=C1BG#9Br>Q@+-x|M{rL$b z+`@tZ`nSFy2USC80r{ghps!$pOMrCX`M>NljQ=ffvrp>t@!?2Bwe15My=tTP0ZEE- zrHoP}ovH+GFNs!Ep6GL(mp)fK!{YX!D5u< z_~m^gf2e{G+h?>fQ+pv2h?#r%t&anXX=u?ARpxHvOAYkyqX`##RLA0nH7enn4?e4Y zXN=CJ#wC)A6)!JuWj|U+6TRF!UMl)ICnitjek~tvzgV3-FD_XSO8W$r*2(4g+0Ble zAR^-sEq*Pj)_9Jci$U>rbgm>NV`F*TL*`MN+?Q*L!U;R|B<_~VnTQE%g?Y=zVOs6u zs@W=lEseQfs1zJ2Z+s1(-{;&3JJc~nuVEX7p0`?qcpwsth7e-&)xDsCKAKvDetE8r zby~Ktf*Hmk*`i?kBoaivrU%H$?S9 z9U3*$b91S>W7nc_WMM9>hy*-nW$wjai~W?L5qC)k7$H<}m_K_qU2Jvs&NtHF8I8*> z?Wf>Vwyj}zA+-S~6!{3mRQ(9~K4#sCTE3?>?xF^{Gq32&F=wUWzYR?1!;n4bS zF@cxVeU+3L=3q8FOHEtHbO{NKL_|T7x6ws@VnFx%moGYA7hf0Pn(0MM3&k!ROg72p z)vEroNGNzXoviG`dWjmna%F+*Tr6E>sCk`m=R+#Av0VlaowsVp!m|o7upH3bNFC^Scw4hR!*5Q*8PGu?s-}54UJPaOk0U zUwP^Ky!BwQj#T*6z!xlHKB>|MO!tBGE`jO*&X2F}j6y z;a|-P%sxB2--id~!k4-e(dg>_$YU0tU12w+*3Z5{*0L-JgLT*iyrgYAW0Zn^W+?H% z*I}0uW`1e0Ubx+01dTmw2|N`*T$M&*A8B`_i9zfR`uwS;2Iut7k|5lnb!`}qW}JZU z!3a5$JpCs?@YN2oGE)|We}Yo;7K`&gzXC*`K`RLt5CjMPt)5{(hkL)db}{I1PY3N* zs-cJtR@QIf;o+=St|myE_^`J{=@*lY)j>Hd+d5FhZhf?vj`|w z6Z$tY3~g;MMqU+-$pG7iAv6z2mO-hR#$($9-gcn$n%K8Xb8tvfnR&d^YxAG$^d}-5 z=&uJ8g_3?0tWz~`Qe+Z8gz-#?~ifwi=fD_lEh_g9Z_d!P)OwX z#(Chq))h=7o!0IWjAW$U9h%B!e~tOB;ET^|=``30mS*R_HEoQt{X;#uPT!rU!Aj)w z59t5OMcW@t6Y8BrSzqV6|0mz5~&$d^>f_;(s zZQbi~`=?|eVelOUQyc>Rz6>XRmNbrEu1|0NBQ zH1I%pd+R=To%z}|l1hVx(vuEdpVGBXZQvXCxuW|?hyRNXkjb&KyIb&hGfjMO}Ph&&T05F@`N7o73DD8oBhQ{gRbn6A}Vq1*^pf$Up{CCYpEKbH(!~V}tIhe4G zvA}Dte85!=lY3tpe|3R@8lcuzs*2Q4<|x68qzQJEZP1jM-f_IWzA*!S>^NoN zS0~s*Bbmmm)rq!kMXH=ap$jj7zS+I7kj`|z-mlhrC-2Ay@ufShQrYV640Fs|L*OCM zXtJZA(;JDV%%@^gAd~srXsXC-h{TD(z(O|gA2=6N0_2Ch)55h9?WuMAd zM=90nY^5%3(Akptvx3&oX}n%jD3C*AdB_VE^uyTUKdOCH!w;Z)S}4jJ`~RZ6bYF!v zEjj+)wIwowWf9HS#wm8=e^59~pd(B(xG%Tz0u++J7aliUK*FRM`jLRORO1+x9| zh6vE+m)ISVfRt;fCew7jI(Ty+zO7Su^56-N(>IZ#dHXPF&yJq~!_`&Yp>>FL>NQUA z(&@qzaYumJI8A*`r(T5#-jngl1MH|?A0$Gz>$9D_ylwE)DzGlmJ4ac&g;-R3rj=FTax?v$S= zOx|R^ng@7^xQA!bkgC?c{apIhZD#0<6DEnr8JSscpe;sPAQU*`(W+L-=ol_A*pL2N zdikU4Uh~mI^1wNM9WXgKnXYl>-rZfjTPcS#y9D+NB<9nSgtV;H}+3`kDB0pc5| zXo%%FX1d1Gr^t+tM)|N_>Ojqaj(_($0B>z9JEZo+WVYhvLal9=FIt;)nIQaK(Q5P> z3DA=N#jM|tx^jA43ncp^=|nU?ErBmc|8FcN6WZPUYai8W^7lH>{-hsZD@=E5;M{NN zak>BJ4G92xGM_`gMyh~_`SJKme86Ce52aN?$E1!?pHj%*R8N~$HiAlyXUf@Em)shx zZ)i1j4@0G^oi?Ze-_{6zjBy7KIKvP>e-eV#;XT#5$kV9Q^}~Z*zQD~w_d}}4#bDmA zqtMj!Fc1{6&<0K@eM>?OJ)8CF_n9G+-tQo9NKpM~xee+8!ryOp>zO-Ue({&h-n2$9 zgTlxZsGnW|KQKB9=h8JjI8q%3?s?;B?!UnNM2Kc^`t_Hz($WjapgP~2jcSR(3aw60 zIF%eEFOjSN>5%?Vl85lF(8@3T5_^_hzuy$tzBHG~4NMas19&;4m*Tc*fR~lL}vDlgRU(QY+s{m5--u!hj zm^6bpvwuFX67k0rbG`g)3g*=iI>^QyplL>6C>@z!Gio^j?k@7=H{Y``<}F`YCb%T4 zJHG>3_tq=sgmh2ja%HI70g+Gh zaG5xb|I!Ifl+X=$o2`N<;?-z%*pUZP@o2j2#}NB=MWRSrX>>!GY;TXtsmu@9T#ok= zif$^%Szgn?x!)7$2J?dT@9`W!461qepRou)G2l~ki+RnuWIN}p%ULCf4V|+`l(@X2X z$)+z;!EENoZ;|oX(q?HCUi*N&4HD(IO9h!PT$3B&m5 zQ_1@!dvC|!I@;w{ubt<>lJ{Yu+!8qHUk%PU);wHrHZ{QhOsoU{Vs^KS5slQ@K`eb zGpTf%pwWX!`=!nPadRv)L^tp5Td8T}w<5A6**2a#Zz9*mdK|8tH%}4EB2035OlIG< z3b3@T3YBk>8U!g8+O+sZq#COfD(k*Aoc{}pwy)>pl;1fvfI-)2r&OPpTCobzRsg25 z!F=t-55JnR>72;2*KTg^nl0|GJww;NkP76TjuU~~9JwNuNBFaq?y+`iV&0}>MF_o- zRiRt^R!Q5lb5;VPqR-x$d@eNQ`If*A2Z~esok`!9;9$JaWa)=uYHv;B4ld1&*s$rrRb$|h>@~<)KGR=tVfd9T9=gO!mRE#Hy8r~ zZ18J)4-%r}St`}o*&NRwcS^=QcYXLvNoePtY5z01g3oF$S@wI=Tg1t2Ab2Z9hWx{{ zP1SpU%uaFamByWu+xzW0F?{1e!;W6-<2s2YUTtmdtA^=%LzdAjF^qkj`}|&B1uhh1 ze8BYR|K#rK37AcA0ZS@S zj!KpU9G0->tC|=?++JKu>H2Sg8zU|fu5$jx^MmglCxy5y@$K#Ha-$<5lV1N{tW!t~;^Bf>%5x!cf0-Su8BA4?%RC?YHg}FMSa11}t?~rnvV0GdMklT| z`_yr?_eE8Q6TM%oda>Fi)1g>(-;u#O4&${FdopT%ZZhDPA`F$~M*3Y49!4IY_-`P5 zDlpKjKX>$aI!Tv-YOMDIW5VmR^YOS66`^f~VE{<;>2AD(d8{#48G_SBNzDFJc-V)C z*!Cdo@%6rHyw~R>@pI$3!eY!rW4U5?V2T1y^$?jbH$TIyV|4q|tObYR8yme^ZCY?o zn>MfMQVq>P`II)NgydNM$q3hUeTRJS7K@j!#4R$xY2?(|-WYx&M^%KRR3cBndyl;h zoE&_=z4qwmj5zPCzH^z5^a}SkJ?jj@C!Px3)-*4 zIEreYWMQfJ$1Z2L+cyj231gB+^>`dsf;>KnoR!f_ZE*?{ZCKY6@b_?VK&|lc>r>=c zh$tv1ez~$;!8oj@1ux3{qo~(FFh`l`kMeT69NeBY(7L2*XMbF6nS24fNiDiUQw2JB zyJZc?lP>nAP=HppxdjF;l=WapRRm;LVQ|VQXm>Ba|26ls*ujj_ycjsDYK)6IS^;k` z@ztw*#W$KtspuA)-F~Wd^BP*{wHSVaH~R~9Ye5fRhE;%jDXwADw#Fs6WNrp%8b>PF zUkp~SP{QnzzGDnoAGOcC5{Qb@won0zqZz^rtg~X60Eo1Hr{aIQlK=DOB1Z8!VGoIs zoqt=RCf8I>7Ya}mMN>qx6=VBZPUtf;h@7W$3xxCIxlLvCd~^zTJ`~K}s0y z4hjs^!KH*;P1g<}Q3ex6%G_9W&B#PrFEkRcm+42C0DD*}j6teW6|^B%lf_`5FVmX) zVci`?j#V^u#`!`G4e{&KzGK}Dd!b)@3;8s)R{JUbkhnV;ew((= z!c3g}`G9?ai@91|x_*m|Nauy>D_$x+Stbs#Q!*hCp==*S zkdQ#2XF|uS4x!2@QKc}1d{ITqu`V4%7)l~1=}vthAuwOFZ* zQKr*_M|YHP{Tvxt*h{=}xXDavdb&coHhSkhp~@t^BF0S=#B|kDn#oJuq`*97=p;Yz zPH{<6@+iU7eCt^Lbemh$^cgYn5^66YT~b|bP3z#GnuSW^*Ox})IYk{-^VLUMQ*FXZ zw%6nEM<~Y<$Csc(d@WNE!)3Zy!2aAf@x{ZG+IbS1xu)p&a1#3MX=L~nd>2}Lk&4a3S z3|7Aw>`msXOgeZ)G1h#4vKFZ{x&vn-&HMQp3pfu})0H`77o{1w*(b6asbyOO&t~l$2=v5AyYiJM=Ak-{eB)`=Y|I2o%=1DBGzF-}) zYUVt*$+q2DEdT}6g$KMzkhl`5lW5TGi<7EK_Ov{vitmO~G(VhfEg(e}6kv+~%o>M4 zcpAZW&P^i4bhiB!>7EZ*SB?5u1d*`Okl5%GQ$>{5=#IV0^qb_&w3*5=q|4lV#jm5# zYaGVLV{s~oNcaww?#tV-i^bA00Uwk~;w=u6BNZ{GWG=(N$f&4$ARZ&1a(f5+iNqNw z^EAv@aR%bNp5n=J##z>#tEST?MHDnHSYy|7acAu0&RhQM;*m&N^>ubs@gj`-=s#$G zyzaerDkdHwx@73lI+o32A^9!XBOPs${?r%(NASmlyg zjj|(wtw|clMI;o8O0R8_{rV-1`)C5iRhSWy` z8>e5x#G2O^@9&+i1huYs24t(L8efA1->!&ksd0xJG@I!LeG~#-hm0t@kLr_R5fs`d zKj_N#K#G}$t}b~9m9%qK1O_s~OacKBb*8vdbB|#b=ET;CjiO>8j%J7u0(RQR#96t_ zABXLh9AZ;nXX}-EH&59?ccvBnk&ZY6MH=!_smTfn+GnLneebYTwMq4Zq^ZR~yiW8d zOf)oDT8NjBz6!3O_}quWqjSC-^W_~yEXBzyz>8QT+5htzP_n;kw;VDyJKWvFw#xf~ zMK6*}`e8OBM~U_}dEEbNJEbYy@~?rPMi{eB%z5?%XXUAQ^*1^yar;>V=+)7{# zZ6)X}Oqy_JwC9tF$y%^yIu`@OsB@{k+y_PerzkW@V=9HXQQ=CzAZ?V>W!xw-eA6@&%0ks#o6mG4)^h2hpCi*ovxM_-vW=q4(r#J`l}Cb z-;8i1ZM;P?6r5!XdOw4g^7fMbK1=HsMyHa;4^q*&5_AUom|ruFDRHX=Rc|&LHJ5mw zn=kbk5^$aGDoRQ7*EYF+S6i)N3i*gX=eBM-kmkECZshXtsO{+LM87|t6GJ|K3WnTy z?1az#TDsWz*PLq(qFxefm-L?AL8AxLOmY$m^=U!~4kL~dlaIGhJ`xME?+EkCU$RV% z*SCA~w8hes{e6}wG8qgC#WJ2p1PgWD>klR2?^pssq!^b^?}c1LE?bH^%ri7xw$>Y# z#~U02=W$)9x959f0tW|r)9j^o1Z}G|o2!BsmlOHXc5iH`*SnMO!4VFsz(pTkf@}0K zbdW7neQkxdw`+fU={JuS!3EOjZ~S_Dh)O-$A5_2NsQ(&L65LQW?SqZsJB2R+)ioIO zBe8;V0Z>%Ki%?D`mhpKA7Lqzp0c-Tf8ZJ5}u0?`R5@%U_}pc$t0|k6|F*o-Fd7 zRgky3$Hy3Pz7M#*B$CGHx@3?NNF+T9K{|5E+ksJW#`G-|2uMFGFn;}mhFn-g0B6bR z_{lqhi%iW`$z|3fLUi75ov8`8cyn(W@6|OD-j2NSI^L0TA9g;HoR;fxZ#?67{XtvR zrI&NJ)7OvMMJPK|Ks*@K)&9?B7u2R_C3XZgb|1B<{Hh4{zi8^{WSo49iHRZ77ixmm@*}KFG;AWmms4k#vpdr=5dTr~2!!wo ztiSp_n>K^ENmzgwk2mTDvVvk(I zU&ZcAbq{~-&Dsh9JLpREArQGoA~eU8`C%2<*ve2BsTWt(L%{6KpubPDYc=Ovpj6&n z`)9_xc}<=)=GBXHv1g7|=EO0Bomo5-TZaQ&i}|8@u`-5}C?t)5O^I+)b~I!N7^YuR zeV)kiM|>&a)!l#+kQ3)n>F&4gLJ4J1^pmAtzE?C)xb9w=WR*I?8DVb zv|vgGp^@)BRxXcXQNrgkgDTVqj9!}}(>jJW^I)~rE5?JnGQ!$WK|AzSmM-y!`12HE z(reB_$a zMOQRcRaB-vj8P1eaU>wnfih+UCx> z=t>m}fIk#fN193A93rcPxT{x@dnkuY%LtpcG@c5BiqdtSRJBUF>2qFR+FjGf8skI* zKn3A(9tk2bzR3PC{=B<;GpFJT3&DA=<0-RqS2261Z?NlxqFnNf?|$3aKRw~gwip^m zToy;SAg=J&gd=Ja*I5|4Z7kD^YO5{k$(pa>xl0X>)(E!nHz+v4| zgQ7LjuV_}U5}OWMv$RoS;;|#eHpGO|uHA+D4%d5_@sARU(kqNvS#3Eyqag$ts9Q^N zMQU|!``p)Uy?L+Vd|?l550~Oa05A4A`V70`% z78{Ham~?x6@8FR8toFbrUyOpxC4%o3bPJ(63DVDo-Q3)MjaG)(q457KN(^Q8LETcd z6*r9S#0#_g2#K_x%+>Z%W-<14QSXs6t6fTaGB|oL0~&U+CeC!5!dEiiDVp^6>pNtO z%qGgHypizvRD0GBwS-)Yj--jNQ3x3odbfUT^z{b85b`?n7puV>9Zwir?T-@xpW`Rw zPK0dBevIjR!#SD_-)_RAR_b53T3?tZ>dfBV!G-9|va%#{86tvi-9236pw^k<89# zh>&B~3+BeAn*a>Av{xJbVMr!|{@jdN>vy=UrkWmoz&|Qkv4Oeg*Lc$YRKpj2B`J4S zzs0NLjh4}W zl@yJ!%FXQ~{+yHh0>sWl4#5w^W*mdykZyIP6yvrR&PnRdP4Pe-4ItYZ#`KD5B7R%} z(Lu$G%aXOrVxDrld-br*8*oJqMWDcnZ4E!hkWd3EGXi8NZ?3u7$X%fE;RhP~kSaw) zU-rj}2;LKnMIw52G>hwN6NAMJo;*2f%J|{Ial_z~Bk|iuZ>J2k?4s{}aQp#eVBb;P ztTm?H=X848xvY17ak{?7N1~M|-ST|%T4;lxVSb_jK!UKkyx%UYryk?rSrIe%O7XY7g9faEIp({^mq)JBbtlZ-8aDq|-!*KSe;F27zMYg;1*nBs|b%0UL+1qCy_d~uxu0%Y2 z7pCo*akW2_GPk^oQc$GfaxU2$N9bwga(s@-%G`2KP>pf3S(fJ&dBcLa#nd{!bvFQB4xxSt0b_M(b{to2_n znIX+{H`TWitF-W$cQA=v5a7)&gKD7PVioNcGZr@s?cX8)aBDtp10-G90FA zLZ;gYL@8`wwfiXk=hx`m#nTy=cGT*EB~NiIIz}r|gHW=}NaLcTsbY0T=gzOOTvB%q z_70*{vr>n##O*HP5!w8frgK@DnB%%$cJOo2GKA-eqb-zDv2JZii`!JQDSYvdvLpy- zbnS)yT3V@{73zmj>aRPQ@`UNQy0 zyJ-1L;OQw}QNm37$H6zBOZ70oZGAn*CQ*j%x=f)s_b})I9eS4jd+15HzLSq#JNoQD z*FGFbCigi!RvL) z@QmEoWo%;mlD&G7t4G1*Z!#113{J4~VzN8>Y}HFupUt&yb$YKg%19K;)1E?xMl+dY zIxM#P1~<$`ASh0k$N15NjnU{o|fb0=U(x z(9&Eyyf5NdTW2dv_AN;EbnurG{uu(|#D$J3PINc3oU{DmE7wdB*jq;y`~?dP#1CVa zJ4!mud;0I$-Uyy5cZ_LU#5ztdkRXeWj8MDeelO$*J8!~#|taeu4nDmM_d%q0V){b!&rtY$&Ia;G+S~%THW}NA(gzZewN-JFxqQ47)gXLeT4Fi517T0 zHmH9ZhU+0Jb0OJ&h!Q2vz7mXlCHcTvKT2V~n(S^Vct>@%{xCcrIc}GEzw^_~?qa{; z$8u3Zz&0njRnysp$PbW@F77B-tT;Qy@hspynVqpuKNTeX=6qY1>C| zm$*&XZ~RJ$-D|HM!Tgd zkK76WZGA{v|L}sYSUX{oo*w(*uMt@%4A_gP<;F@+d5GFQ+s2XgXXk_fuCmR0x5tp!+i#m%wMy%bU>xK!{dnrR)YKjP)#qp!E&|ZOMmePt{ zZ?X;0i;lE1MM%JBi#J`Uk9^&f4=Xc$UgxT#o0t9YEsx?_5FgOTOu z?rUv9YWARpSkxlJ`H4<-R11g4R0^`S?4`e|E-6g?E3AaLrlOljlHMGs;s{xK2dksi z>pxR!$_qVR4IGovLNz&MNk77W3eAT_;yg?{@umq7* zjIZJc`>K?1d6?oJU$-K>`d(9`TkEW{i;Yux-tOrs@;9Ia4SeYSMaCbmi?}eu44R3fyYfWFNAhJuk78wrsVXxPilL)C(xg`rQ*v~n$ z+r+{A^J+B(g{Yh-UXaL4%vwxh;{cUWsyZaea0c$f+Zd6$kaR!$QgzUo%Z$xn?VcDpGJ))}_TDKp2j0vnCOdU7?D7Hm z$Z0>RYuak{$pX(jf7-iDMdKgc?I-27OPbwroJ>^luSbcUXe6N%UNk;qO3Tx@ezvhX?(uPI;T5?A8CP|`^xg^?AF_1mV#w1VxH`CQ__3Et4 z?N{Uai`GR_>V7MVYpIUdCKv{TvqayIZHi#?cbw|jr}&t7Otf&OiLxE`zjUL> z5mdlNVg8~HsZ`?|8R6VW7!|e{{C4`B;CVJz@HkM_IHgn1vR#@vk&eA zGEZA%)zv35eeuNi`fnN0AI#J5xC14)ikZ&qBl{IE=mKw*WJLWEVD->rSvo8?gd+=_ zZ(ScT3B{A0?vpUq=ZhjLip!C0gKH^1KNv|t^$w9X&kBFfHukdNhVj+s7_CnN%o*sb z?C?`$YGCqCS4@4EvoZPV`}Cq5F%w65+9lBlF!gV%@NMxsOPNNBnsR-j zf$qouS=--^2DmL?N70adQn3eixbgAG#*X_HRIRuo3UeTuB+t z))?ZlK~%L>4?)R)`eWTVDv|ph@Hb>p`F)JPT)u`VEr63-DAOUCr6*NF__; z$}Ewh4=p`)7P!le{**4tAz_@XUWL7~Y_Q>kHMHoY&|xW#rC$9&MNu^v5MCpx!&$3X zX%5j$;(nrVMwhl2kfGZrtuGC_!XKw^6?fV=eI>XK8g^Y%FfBr)Uoc=%?aJ+6y9lC$ z0fnX}{aflp;(GeF!uZ$Wvlpu8ZG&j!p-SDma={D7K8bxxd0+;;ag()G}Ti1A-PLd?z^|J7#IZYf57LpWQuY-<+i6=hES<>iE?k9&U z(7q|}Z7CVPJE0Clr))-yZyL6}dT7sr(Jt6i6kMp#U_Pi_$A9-ec{0N@)~{Ct|1ZLS z_!$}8*!aLZ#a80W^#ls=^1(v!&%Y2A!SsjP^t)HThwgmI>f`Qw>Prv4W8e2C!(j=f zT}|vfv}MvvNf-K)$GywTS6k(>eF?>qav@I;*4t)IqQ9L?E*XrKq0#n5$;{pD!~B`& z+u8oi^W*o(M+w4)b%#$)xo^I6kV|OFzr}Z2bm=S;;1Q)jFT8jz9q(ede7(k}VvqTn zvU2Cvm@53DFkZlg;;L5R=#*)uHZQbGz|-U-)e@OPU6Q?5Q?hI5-bV?lfObE0J~0?6 zxG|7&B04aZ{QdARF$$oqK=*&_aEve|>6AMiwkxjIABa_07 z$tQ+)iHAZfcvRAb-<0jy2mICzU%A>6#{yh|tn-I}sc&pKgmKXov9n6EBa^6T{y^~{ zUaGMfFQf}RmaFlReV!t3c(vC2uq_r%XmmT9pQf(a&R?OL>Z_-!+>e*gM?F&Pz^O`h zp{i4Cx4ce4dC2jFj6;fJq;aXODb(9JTQmSNP*Kv4seCoGGb%7t0)~M5-nhq!g4av@7O?Jz27=Y5v7r4T55c^^IwT$pUPq`27u;V}n^gQtW?? z_5YrW_B{!Thhku|YC{{RTQ_KBhQSW<=?7&0NDvY$w)$PF6X0|&FjBh+?Lk$9dcz!xI5ntd64;GsIm9O2dlJHslN>Yw4da^q1r~5`SKY-*A;7Ymh=S z-hU%AnLEs3Q}6?e+ej}&VfCsMLw}{#^380O5$(er3FpQ??vOP2z&B=1=~zzvU0bwb zKp)JA7+D7n0Ffyw6#2uaI#Qw9yeg;md3r;Dhfa-fU-Zb^)01d}V|GJs{I3OW>)I`KGa}XQwimEtg%e4(hLA{luX5^} zTpr|22^g``taZpgJ==Cmb`KNF2#@f^lTIydK)fWm$$&i(jT0XCQYJifYlpy!Mv#;$ zV<&nHEj6wM#ZU%O7SKxFh1n61bV_=KPvojj39*{bL113raqseOYlZVJ$P((2MUG8N zNCy52e}-U!O0>BpBixvTW|Ly>K6w)%DwVBIy3+Ky8^7+n?dH-D@t1Z$y}gCuyc^0t zzAl>J7n*07bQ5WT)rx?&F8jQ8&&E!-02hDB#XJjI3&6@~KAV z35+@x!J@0=^6k}!&((J9dTbJcAcpf{XRd4ePG!MH(|ZliJ_M-Qw5!TJ7BA}Tj+i#z zsJx)8`GvHCV%EKSMcDYA%L!B$Egx`#YE`I?5*~l0ijD@Y+Ex3+zj$~yf0!3$zj=6i z-HIv>hXgkCuB4(FwKU|eFSPqB>2OGUR>YH!j_yFaz_#j)?)7|Aq^clxjr4I6^FJfh zHWTs@(fdRGo0b+``xrDODQ?yXfw-KHCy}=E&YYTIeZOaCvkC_%J)7Fw2_to^VuSH| zJhnY)<}LA(S>v`k49FMhMzbU__HP|7UIyy)L>T&QnMZx7{%h5M9L$PVn)b@j8p#P| z10Vm-dEx*1rbDaj(!O8F*KbhfonCqVe7_Xh_LluvPn_T9#AES_`!cj#P=!L z9)&1hX^1q~d;|vDiRbOV7rJgGD{T|A%9Rv6yLu?*|bJ z4A)r16RD)9jrQG7S0h3`HB6sL3ek=RU%0d{+EM?p#4-vwba~ur4*J1}%TL-lWfl^_ z0h5e>+JOPEliKdTeE#nro&WVVeNRRAHD0~?{@#YoamH};+U1e#72I5mxKs3}?_K*`af^=llvmjrk<}pWw@e}59m19f3X3h%JxtDF;$b5xy z6B9cx=+uZet&n#n=_9P2uaVsBQ{69buMhyMMP#G*M+}#FAQz-cn-$s7VWripuRHn; z3fM;q_q~v;fOQyn$8M=75ht~eiyWs0MSsxd?)s>uo%D}b|4S{vI*^+sFJHPSx#2K&3F%jb1L~+_hs7NA zrmEY5df2B=(}ePamG|OUOgxjgYjea7E%l_jCJQ;qjIY&3xWCp}q2i*tm_GI0$BQ&S zble36mdmEvq8NJBR-ny^YV&aW2_eZ5*CWt^tooI+K*{$V0slY9_fzebfLlLZV;q91 z(-nmO2nZ3zbJTBz%ANDG?lA6nE?$?`w>>#v ziAyx&vX*6X%>D_zMXdH=!YTQROQd{rPr8K9<*n)bUmzEv6YvDcL}oSk$ZLmym;V<= z+eNLOEV*3tYKyblb@5g8VQyH*_K<__7c1 z3^!hAcT^kD=F0Z;!G8*=|XK`Rc5<+gj{aPw-s6(axs!(%9WV#bSn15^|?dw zL{} zRnhaQYkvq?n(XykEcCgZNiz!Bny6FDJW8sYT-0{O!q1-HzyCFpl`i?^bZ5@vV;>Wg z2|fjw;Dklh&WFQjz_0$LEJer@v1vITz|jtGPNzur`c zb=QryGIC3KWHMvptZdmYuXcjsf0meqvs)@O7QuP>vd0(*AhdVhu_my&eB!}{N}^u6 zy(2GBZGZ)tm7#aT!rs8Jtp$+6uh=<;@W^{GTn8jE#%BQkp6QA6RIuc64Z?p@zH6xX z7a8267oDGy`bnd|*5YQ74PTCDH4a3x@mPBj&VR{j;J=iC4C~>Hbt`Mu>Q*rhvzGia+N`v zTE0D>`-K}!63FBZ!1N#Jx5%^LtlXK-g)7q=cq}w7UzEr&^4@=Z?q_XIYbDRBJqW~D zVRH^24U#Y=d^=6RtS=!vkrxGhDrB>V+-HI7y0CapZw*ufwpSZ8UF|}CywR5qh<1^A z4cgg0IvEQ7Fk1Xt7INrA*!0Tu2bEe^j|YlMv^JDg>TF~e1!l-l3CzS@2&vG=qUn#(TT_gz#GMM6MQL_iQkT0rR# zP`Y6NNfD3+=?3ZUu0guHyFo!18l-!qW9U5Zto8k!-#*tqd#`oE|GeM=X6F4o@AKTx z9rE{p#7Sg9V6M7Er+WInR9s0E-89JU5xciV^pIDyH__%@$J@YBW%a6x$5D2Vf6H!| zfkdhVPLDuo6!4^{Di$A?R1Fu5oxScieo7Ci7|TQFr~b&lILAvzVhWutvtkgJ3=eXY zb&Grhc5-~HVKAK*zkbh>^Q-eHznKT0`U zC}q8lyB-OqN*b*cGv4Wgdm!JSAGu@BNjQOUP;GgP1Ogz)YD=%Zn}V#ivB+x6K%C@w zBXTvD^dCu25?Bh4E_eGoJ>7g3C>RWX?}_>E#)7}v%)e&Zt6ayMjZxY$;$;V*HXW{! zkxISKA!&lTvicKLEC!^w5lCh`#s|m@VOnjo-0Yt|wiLy5VQ&FZie!{UvDIHbe_X0pM!^ke`h)N5t+U5X-{Qnn?Q>V=b~eci z4JaK>sXhE9DiQT(jF%hc-3z_P69`|SmF{f0_OI%)F@djbq~|pMht2u9qb?HJIZ2~0 zG?@FRltxBI4mL|mOYg7m%slM2Y510~v*7WhWJXiIRLJINcN|jm5iPYP2ID`PBQb0j zqwG)y_y&KGBl0RC=XdssJQ4Y%P{B2lE60L*crW3NlOKQ&O4kc#y;1jpwm^Kt9S~5t zvDJYfk#pF2y{Rc&&nKd_*8HPCP>jB+y=(r>XsWK-b#QaM_!w|E|A)`*7G)0*BbN4V zi4xfiZazo}n2V#jy17MCiael}O__@D>()E>{%d8X23BTOHsv~ai+|6+J%4jXi?yUr zdfh%;&j8eUEb)NwUrw`seH);w#CId~<}V`|KPm>^RO7mKO5smR^X0Do0s00inWV9) z3ggfQeOTJ%GH6c93KSrY7C9!(*0@ieyh7dXe5F~3i;?V)F&Cq)4U&y0%WB&eh1^&T zrlp?=Y%?j=PPUJ|X>NM+-$Y2=!!A~2Q$@%yDSUot@Y*sg(+qLr_WbEvWA7|s=WuC0 zk9EYefuvfo!nlFgW=0+cMr!5OWFQSGfG)bXee(2v5{IR~y}8Ecp|-T2yKtCJ$JV5K z9_4!Oz9KI!8X%|Y9ukN#ChYlC7)bt9qNJoOD;O7l`Hdm)zb4yqlWt)Gy3forbb-6z zN#0n%f64P{J>+MedUcdDDTukLGDfzHkT#s;tCBY@&N~l4u5CDA<{52iY^}EvG19$(^|7sgf#763Sq1OeD zB`{YOt(KrqKms|`dfZ;sj0whosDyg`l&!>ai z;&=~2%6%FOV%xY!DQLT0A6M|HELA+T+H^UNDnrAW=w+aFu^ zYRc-BW>%RBtdD0TEbDFIryNerFUAuu6z$uaw9^p7`sT3g3dq;_IH! zv>-r~OgF|ir3N4>wOp&~`BQ4dmtP4&hD#Dp_QtYlU$Hhjlv<=4Pmo_)O^uSW=g0{k zo5UV~KGt?)8jagVUxbu0Q>iuP%59~G$?WS#&#QAppS#N`3FGL1LhbXhjR_~cs4)6c1n1&k7R&_-1%Dnrip`1)9CW z064fj-j~jM@2}>EuWICk+-KHm2(n{N)*sOy9j|cKltH-O*SHju}j^cB-zwig>Ee(q}JYW`)!G>9J+c6kelVze0D{mT-Lh1 zS+8G-?80g1^w%Q~eCT5t77tc(6KX%@Pq{|OnhAf6R0;y;l$hT1_ut$~Y3iK?ypmm> zH%9VkD?K3*8N7k3NJQkegiue389eSEfe#6Bk*iL6bJ7k(#uuRup;X7=^sh{SBBfslxZ zCeu3KY-@9!zQwVS)%=hk=G8~4zRBKPOrunzWs ziPvk~V&)o5xo270{Q8FWl>?j^2TZP7eamAJtLspHbA=2?h2w@YG|*iT56+^{g^qGJ zu+S*f8qaCUG~{IM-WTS{aiCwPB5T%3BY&lJk-K$vl!((4mh7cbYtb+8=i>YK=g)Yy zvjMAKttX@=`uY_MH3?wUt5xx%AUz1?iax%;dK|b#KqciH)dwHYLBaFQe-t`8Qc?6U za>pO*mb$#(PgmPWb2NuLACdVU5k%Pc)5qomU#^t+a~&XUZAzLxBEWM6aggbtwOI~T z3nuBBy{t16Q*>)?5DwdFKqx)EijG^Do(VTs-TxYCJDRfOx5Ues?g-vl}I4P~SG z>x+|j!Rw)Gh97VN-S06_i`=F8F%vj|35?1j;Q1vcv66}cr(YKeEZz+ng6FBUjro*+ zGifNt4}E33T5&oPfGg@zj4c{w*3Z+^)|G25WU$C)DI}t(<5qGw;s{MQX`slhyb?& zH^u`kvr5423 zHd~;=L2@$3XMaCxICkq5_p>uk!0n=g@a%zkAxk{vweDCdk0h!G(9DaE%d&j1NFBV* ze?H9Rc3~S?gYLoXOXD%i_!2^~zt@SOFFVgx!{V8ke`{TBnD zmD-^?^J0kU(uEevcMnfV*b+9^7)H*FTHf>oT#35DF99DdOCtK|&nTMlXHgSYwoq<$ zOF==w^7$Mp3BgTR@Wh=iH1(A%iO{hD3|-jmrj70Texbm*>k<0Z0nij(kN6_QQ(uN+ z-yhJoH)elI?F9!V=_ zaWMKo^($ii(E&T!=TnLCzSpc0OuYvyy*Q4J+wJY0{$&m@?Q-6H+M5doK@4JM#{0$w zWn;U0t+zyi>0f1UFtgtuEWeWf{>@swg+Z^(;!`MaGg|8C#ys0!x)(&ul*6vQ)&cI% zrHjz5LkgqBN`2AL&GE5v1=6VM<3#@vie}TWw~)RVa2dY>J7&4cKxgUe(G+q4*N5!v z?7$>MfyJrS*^c1=fiL$}DJ0cVDcz3#WgTD*YF|k$g`PPD^rYmkFO+z0U(+jaIv3TV4DM$aW6oO zF$31KAzlv4UN?46L1-J$mq&kd-9EDlA>|}W<*^@A$C9M4ttggW3Lm zQtt;ic!DGcLR$?Nk2dvc5R9Pp7N5W&XG7iHZL~VsHcrUl>;}kzyoUIno$2b%jnUj} zwPM?MpR0oVc?iz7Sn6M7ziSunqdV5JDMALZCUXFTjqwM|-!7o9-BTL2#7KaPS>|hl z={Ey8e~k3J4>F1sU!}S&wh1lgGGQ}7HXFBU%nR~L_V{9gff zk8MJeic`Kyb%Ew2KCRp`@O~)}zm?fm+nmb{Cm4yXInu5Z*EPe1i4-WmJUiOJ4+;oH z=~`M1TrsHx28=G~26&LV9KQvEusc?Cy%sqIZg8%Gru1)mF5StdcfzO# zjwdIWJdl2j_)J(Njk)3&V;t0iINN&J{!ZAuYoWHtrK8weSf)EijJE@YcjPqJkzp~G zfwUi27}$Vz{=R-Z4H-n4j%mJ0VDWqNM#MVP$B#>s9RJ@A!)Gr*UvMMFoGgTO0jM|s z0h?cQvINisufI6Sw0^o<5`b#6S*v~RY;8=S%MF}F zXr*E+-o?wNMvhPuPLyadbgxKK{dNJSABXCak~)op_rc@mQ&|~pmd0WCG>bscQ0UZR zJf}J)&mWtFab%>>Gs{X$OpNYlw6v@uH=zNR?QEf{+*m~c-E>MXFuybqoT;&Z`0nNl zOY2mdR5z)fTFgcCGjcXHhkf!}k^cF!zdyP`Va<%^W}NR$FOSjUov{)v(r|MAo~Udo zAc(V*PIyhuLB=DmT2Q71Y7~G#RkPgTJwKIbS%D2qqMG~rEcaXjuPKr6S~Nv$bM~!33RN;pV(AanB2R&m?FDrFK|!4? zEtpzx5LD}R%u}NYQ7>iuUQm5ZgEBC)iXo-*asMZ6f2n0ukaSS14rNa-x0{8qN$5jA zo6&S#iLAynwH?9(Y~BJZU(4!-43epDR-Mlg`q4A=uGR%u{XMqlhyIf;IX2oE|LhUv zGCXUL>xz@K#r3+ijmtPg2V-qA4K*F`CCc)n?z?TRgg?f(%bf4wgI7nwx{6f4G_kzl#5fas1%hwoh6;AtVf(` zfedYw-<2fpxQ1qxi#Lhi1W<2`4qTgqG5PrT%AER%hFB$9BsT=VK0n$09ZY6np;q&` zKF$&3a*9zFP(-qQoold*k@7hsPAZzy3V@xw*w$~Ra`UH!rg7U~ApJY+fsKWTMDWOA z0=2;hFWL=P&|lR7lVS`)#&MV71hH^(Z&p3gOey%FN%I1!V5GJ=-Rd?$o%32yk!sJU zne5=YFEP^-KYxFeoXQjn^(ihcE^4)bV`B$bA;QSa^+#$(>gsX#B??+yH&CRd6-@)- ztx0I;V|qOy<5BJTI^f@w?Y57r69R+PwY&*(fJf6crG!3Dekjm)O-Sk9w<rNG_S|&be zl{I?_)U#eZqSH<9NXhbEEuYW1oXXc)@F!Zx1|BB;+zT>lv0lTFSLgY;VQ+s@kSF)q zr2a6@D>_hmaF2fCYmAx{eX)8ikxg?}Njz02r|AS1(#nhD$oi(^zU$fkT|x%sp@!P& zZ#Wq;$dhUdOdbT^FFTeA8 zmUN!;`WFA-su6dVAww?7o_XfL6s}J}sGk0p{K_dc{SlcqWF?E@CG2S4v9*n8XU* zwsLZEM}K}x{kqL{1*)AAoX(21J}Hu`{dDiAnJ5H5Q|Sp0T>rkupR5liJ~A~mEk3F8 zqrSo+e}fBbM($;Af_(40y|{0l_x%v~Nl@m; z#|Lg@icV+hikRyEN|4xczoPu|*FYSN2lKVZRz!eNBtBeGq=P#U?qmZOPJ@y~a#?*| zi>TypR5bwAFZV=(Q7%s9H=Oo7-Zd)C2L#=P4mzy1JE^z& zFFe;Z&lCRbzM;zwiJBi1uAd`S32A?wp`Z0KA25!pO((5@^$^_(vwGE&!OAb~!&VJ3 z-|4b>z#Tkt5=6-Gb@6+RrZkQ>*#9`9R8s|{2|5sMjATc{AmG?!>qk32`=}+T<;t{hnyL@cp%Oz>3#lRmOwUp?fTO-RD^;Vp%=pt=-E5HVmt~%&12lz5~_M z40LBIDsRioHWZy?C7`rcZpl;Pufa`Sf4nvh~J`j5O#fFFtZRo^9gi)C;sR4RaC( z&*pzxc*9u{c$1-S!T-oB`trrB)6HW_s#t!@FM3#}`Y)$)Mm9}+b8%`?ohd&i7|MAr ze|b6O(T!8m8Pv&TOjW&8dKNx!i$l@s^BuZaX>^N^``-#ziUud3aJ5zXEYQ2c>O9s* z*;^x3H2LjAXB3e8u?KowU*8WB+4-(ujp*x0#E>Zw-Sd@*ia&OZYQyycON?&3^kegb zNz2)`-|V?oAG0!R&BigCeJb;D>kZ)$GzswP8UQ$z|iik=JdtNzxGD*UA*cEsO77X&~u5>Ys+SFz?$Lzsy zdW>cq zK0}FEK46^MQ<`Dsl9Gm9O0qVqlph^l*ye{Qm#17**qmz|o!_HqaqV66-_up1!MvCl zy_so;4;WS@*~w@x)Jf;b@7bRaD!!ERA$uW773(-zdxpXB-@47N=6}>}%H2!5I!Ho6D|p|}TUUCK zbp19|ti*RIxG;c!`y9r_i6^}w$&rRq<5x6-B#*JY$S60pgOrgWI>Nc1#xIjFfJ>Ce zLbJc~@n(0BV~fR(I)GS&>IrjXY})!Dgr$%V3mFmOgxWAZwl>l(0|1^MXi79w}nHpZ+BJu^cbgQ5M z9-YhDudJ=*+vf(XRT+OmC%nl09z_tLZCPW-@B~w zn!}$R2s@Pj*1bBj0x&{mO}6*`Ae~#4=_EEFSfMtLuHQ2lj4f1dudjsrMW<8u%b!vj zYKfF5|0T!7#1@@V2~}t*`cOvYLuCt_wcYiKWLIv@KIV8pm4zqi% zO43`C4rKzyCa~ipsTEKhLq@J!L|;Nrb(}OLhm@w*qiv{JoAOr-C}aKGOg|fcJnfPb zU;MupTfVF};B`J{{)NEEgrzq`6q8NEkwTQ`^-c8&Qb2l@_sBtLW3TXnz^@*6JO3H( z&y|(hStPfgO4j4e_z{a+zAjv%S;AKk>KbiTFQTqd^|cYzOl$*b?s z>7|?>pOf^SXY0l@LpOmU-!yu6@TC-aCrL5w%Vw9;NNNc@NWiI`%1|V{zrG&&O$ild zFe4gDo=N`+CYR+Jl^#SO?vLItC_&&RB;opHO2izFQxVC-M1!V?;GvYGHz=ZHtmQRmBm$g z7wW9;g|Na>1xq`}tf7y|!+-H`m`#1}yaIzwTa~fWc&pFKCY{+#ir>izD z${+K^U(-VxirnYSXUnuz^Ww3A)1iWk299c}RyP|Y68IZU#)dIK3NmK0)3B!@g)bc* zTMyv9+B>mRonsb^W6~+<*zsoly7=ym`AFBSMaqkt3LL&|WGX;54Fgmo$;Z6j@tod0 zg%5LgH*gq8UF-63^7x!r{dF^6ZhAO`J)NN4rn_JTNsk|?%&H9QG??{aAVl0p!|?d$ zpNG)WDG$=jI8DXa#?kLzL3p#?R@rg@1?>@M^Lqlm_`4|3WcqL^gRl7y zZgLB9cCQz?PePdUd*eSf`cz~)JM=y!kr!~l%aS5raNUV;pu*1xd*!IDcP2!w4C#nJ zV%8_uUa$G!J8Y996Yz^pW+8#?%LWY@6{mx<9ef36WO1}_L-?)E5qev_hTK<}Ag%xo zbfe&4r!YtCl78dUuWYBpu|L`@(dSLWea`i4oL=yn3#t99pgkoUN1X>To4aI&DZ)5! z-P!HPRsup2t*|ZsIa~JK-AiP0md9v-sAiKscMB=6f&-mK4FT{BCR1?8b!RT>{;_mV z0k8@5VNgQMb(r;8HSnOp(y_mKTCCv~z^vnTE(^ara(X>2Gv%u+v7*;O+`X_-%~fZE z&Ly+2NpGnN5>@tOL8JfLW1bHo>-z{w!DIVmK>4Aj@aDj{c}3RGGMh=+Z9q3l(}OLZ z15{R_R-50gc)Hr8P~J%dIOL0PD?9&U8dnS;lZu*-u! zOa2-y|LfUa!RNYXjSf4n(OT9HWb^LCmRL9n$A{tnLd@%WjvXX%}={ z@VlIhoW?V%XBA8mze#&(Qy`xobrMIvk;wL?O#l+fYc+eJAoMrDe(=I(_%YwD)iELCtnLMFa`i_Ed0z98$p!KkZd4f1J^oYNIe3at zS%ETh`ys%v7fW=$yPJXH7!qBuc^c8m{H`Fae`$$`G)-ALI9&OTKo@cHRPnM?zPpRU zn?l|kSEz;#OB03S{p+skULv{p!6i>N?&v@EA2n)!=a%1gytw94xKeX2#z{kMe+VT_ z-?y-1U+SzV6<`OLdp~6gUU9jb+5bLA0vR;%uIeF|-oER^_QF0Q zM5o*m7H7ozXfGp51bASxDrQT20&0K0SG`2!oBR#_`Taqw342o_a`N3LJZ4ycyyOp? zskO?>)^L%Ln73K|V`VgwCqS?4n9A==jDPC!)Q4?ulBzkEbONjJkeRuiHC1`B8Kf^j zx@a_+DQ#9>3r{NLN-M;+$xzxl4T6^hDaankd(L#%n44Oj58%OCc0Bs~nqF;q59b>l zYA>E*$Z58?-iH*Z_!bkw49pVuKqS+l}{=JZ}+>Bm1O1Drgr7DuL2Wq0vtqlBW_7jJUFF>vQb7ERF?_qlY*d+N+YoPZ47##zI@H`ri$C=j# zSG<%+zN5u6r>1AOZ;1)6IudqocP3^oIYh&gy$;tTGbB2v*SDCpYaYxvY{?0jT1s4#_Wi~Hr(+h3|*l+85qnw((0dc=0Su)qs`eSyjm|AM+ zGZvlBJumHkTulx-Eycb}$BuNkJjOanar;!_XrW!!uu@F#d+V}!_hx>rSmaMyVbD@q ze$Z0S<3!wQ1%oEL^EZDq88TUYT8ep&?kLg(`Y*H&QWWshzPQbGTyu(0D5 zf~*w5Tcc%GoBgZ9oja~vOHZa%B>l0+N0V9bIUFqt1-;>4gy%sz&Oam&wYj`lENDjn z5mo>`Z;f-S8pICEO8hyGnMOeF@m$_Xq^3@y_4v?IzrE3^@m5*qG~Y=uF^jTi6>&iE z`fW*AUdiyZYf-2{@Q11L)#merg1Qv`uzjq~Mn8~=lDw{KJ~uH~o~@(o1>ejrLf}r6 z7+3us5xbDAVX!Y6T6oX0Qv+pj6Cs}%tehY^d{%EMMX_OM-ckc)fb)(XXg`4MRNp;B zyPmGzy1)@`u-#zvYB^~L3&DT(EX3t>w?Gb`rt*Ttkb=UpD-d7RZTVHA7V{ST^dYC^ zyf6=;xNHnpxmM4c2lehNJa{j~1F|+p6&{m$ZVF~CCj+p%dVPp;Ghomr3yy+B0m@8jcM*Dyh_60hbDh4}vvwwetw)V>2Yu^igdUa31WtCESFdi#Y;ABKEe?ey0 z^-4jr^>XYPUwpx`(u7v$5YcaWuHX$)xm9&Sv>h?%5jtz5jR1mgH9mS|VfRD&uRzx8 ze!g{kQwLC*9a5|?6n$OCYd_W(P+wt3Gmt>pk`VQ#>BHzY>LyJNW zeJ^+ZmcASA)r{1EVo}Eyr?Q?*^li=@rok-DsyP9z*h*Io%{NfF16i8=A{EIX*`4 znWYx~l3?Rz%LSEkqxxw3H{r%;cIc4s#7ZnbY0JjMM;#^W%vL(YKyvK{e>Atnh!8?Ed}6NJ2y!#uzugC4nJ}6oMMJ~CGACR+1@X* z)&3aNw?R4Gw2+EK_PcD`IWOkbYA)%qQyPPN3zD3(QSyf~t;qGI6XkX6ro8l~T*pZ7 zX%MxAR2y1tPK#(6UoW0FCX^i!TyXRU^XKk;+OneH!^9FT{=9K?j=rLC``U+fK0yu> zq_o4!Znw2!eryD~4nTqlXv%GZL# z)a9}bPh_nZ`m5GYcgUw^yl`a3H{x7FmDTnLdFsojK;ywSTX#yp&N2V)s*bf>^nUf4 z$e-TQv!x#fg8U0>mu_|uO*R8q7v(;sg@n>2g4gOozP;X%Y0UyxsWRsS=nR+3=+OWV zuV{>X+DPc#%%^q!&Ml1?ZoT28m|MybF8zTnXJuw4wuQ+O;igv+ix=a(a>Ld3qGUet z2n~oh=1S)TqGkb5TAJY$KEAvbl$L()^AaYHq#}ywvc)v{Z()!he0EWFCKe<|XrEt} zv}Cyd#OPSy$K3o@XVuI(2U4<0@l~~i+#!@Lx<8fcwh^e9_KsV2wT$skbtYK{Jhm&O z)GAInB%PhUTMQF$6<`tXoD6r8w%a&;3PwKaZ0pItvcijd%M|d((UkNuJkm;PpdIf2 z5ZZ-ow!YzkNB?}H`1bSf!*QMvKBG?*b@lb>*4c+sRmKb##}oypP0IPpuN0bIJsm3z zZ7gs!Mi7}RAB+%OSZz;Pl{x;jKD!j`NrHH6Awq2oiU2E>$}ns@V!sx(fHs7pxD%#G z*XZ6!6oFDkQEirkxpi{@|6JEd+moV`E7CE5hC|+yH@tG}+84`E?7a%;;qMmQz01un zWye$zKVvBGahU)11IZzJeOU+VLk^?s#a73gb`WV!^v#LlKq_C1%`M4GGRP-ZoAr=9 z?P9hXiy6-sVqqKmRT^HX^tf6impJ4jy61pv{N1UtM@8opZ-4i42RA@xYl4C*(BB_B zKnmCWqAKu}V%>MDX=enmB7$<|)>DIaw03B!y#b=yQ#+($Hjyc+^ zg%mXpU^HX=68B4$Xad7Ken)SW)u8qZ=0_3oC$ElYnk(rZFpr)H2`>{K=6daQ=JFgd z!HY;#KDgn(lRipu!X?F?8@tX<^J((0W%gm}ZDKtPU%AjEsTDub=d!&4=A#AHDn}M3 z4Lya%$(A7p`bA?B_-%sEk)tfKN8Y^@6l++u;AwMTJJHjZihd%6rZNVXOe4yyU4bsJ z^P_QloYLuB&n_&eyc;~q5%$V%EFHh=>?Ay)@JfTt_4cCznYBl>Kl!gfkJpa7UCI5~ zAP8B37(|kd3@RUJRu?{h3DAIxCrpaRuD|<^ryAU9hkX=jg1$RNH!QhV`k{h#W54f- zxkeJqDu%ZNH-pGjRV_EOMByrv!SUwomJ0syJ&8M4%w;opo^oej4!hy9ZyY;)GOf3Pt z?w%LrS9uDrxF5XvS>Q3u##z8iTXK=vUo`sA(c&q4oMZ~io`#w#GiQN||2D{knh@IsPv!GG$9)Cn|qXCRyvd7x*pldonos>a4P7H?T3%vbaK+?EePK~5g~t^ z=(}y$e+_l>e*scApS=Bb6pvGr(kbw79&p5cn1P((z|A8;*csvFi5aV9`D5~UdAs;Q zourvktyWK<-QC1k5v?{u=a6c1?m42MB&-Rwp{Zh8GUukYWp4k1&LGvj1$Z~mIG|%{*pS?AOc>A<@dwI#{XufrGOZ0!Hp*++mw;=RnsFibbvM_rFD(De5 zVcyaP#9?J7-8u~e4`oVq8kPNFc9|EHJMQi`Y7P3HEqs^&_q!A=GK?amJ`*)1fG^lezeEyTHhvigH4u% z%NZ0OECYX6?Om}iC3JlJtmd1j2wc%um$mimwre(~L?he)fdDbSoBVe?m{YvLPfF}n zudt=*aXl4@p@(X)$9U54QoDF4xqV-}@(n&a$Tch=(Cw?y+*s8fJot=2?rpP?<2uVTGo!c2D386kxS*$uS*CZ#2HHXpSQ zE@glXh27*}1vw=O@I9w}+KxDR+cZ=y#LOS(^P~SnGnXNZB2iJ*zh!{f$*%Vy^md|> z5yLB)TG2c(Dj4P+^`nB8S&L}bmfV^mbka8Rs1javli99@SkV3z) zQp5!AiMVDPUpt=7r`>`L-f%WF@)P{ClT(|zMf`7`GL;3Tl|lZ$fbc`{}!_1DZfa@QqpLw8PTIU9?1#yU1^U?K9;h`|YXV!D!aT znPDeJU1RG_+&=zos&FHW=L4Oi_Hz#babN2d$NZL#t6C?_gRPW>gVmq-b17^F7_%)q zq@b7QcMCZusjWeUd8nrg&uk5noI}Z^drbs_+s@zwF%!PI`gp#_O z#bf@&`=E(F|A%6(wzkP~<|E}|_}GDc zH{8c+thT>bs9S*aD{PNMpfHkb93%Hb+*sg#C58)Z{wsMH*tZ11do(*$6fNJl7Ge+X zCCX!39DLpif>$g?wA*O#Gk#Ag@@%)Eosnnu2Tv|CpFA!MJh=t@4*>if)oZMwN%@{B z8IG}KJN7mRfMpqrnqp-azL%}0H+67|04yka1QP@WuKrwAHrfe7U7Xh(?d(zq|k(}poM?DS(YW-qldPpLMaT&F}&jv_H2Elm)QRyGT+5B5&Kj>U{POp;6P zv^c)I-=(Z=eRaG?IIAjzaHbjUoMXc7J5ux44_wjRau`2GM3ER>Ut_1#9kwlb!RI`< zzj|%Yf!g$Y`4jm6tJ6?cAal|6hy!rfJw}vH+z?*a6bF=MS?b33~xV)wXcUx(>U&mkUejOo9Y2ZY0i{>|aT|yTfC9 z_EezOZMbHjS3FICDQo)t;yC&BcMr?4QdKEfw|bi*Xilo9nhYAb7q2;NLM8V#Cr)RYd=vN#9$J(T`pdJ}BA)}7AJ&(pQN zagg=4%4q(HM3m#F`76QW70&yxaB^NxSnD4zdI)`n?lq6&*`LQbGHJ%sFh4u6sw!^I z=>U-IM&*9^hlJNw7@}Ad0h{CWg_f*1!il@4zNq8DYG2x0%p-9m@VdLd)r*yxEZAj9 z;!%Y5>30>o+*NCVCt+u@Y$NV2_lDljRCh$+uu;0GJD72=htB1?9#4g-99$h$`x^;3 zH$pY^s-cc1HwX$?H{Pt&2M6+h80YMfP@-#Tdd~i#-aKKfY+z zUq2ChIr-sNLXPBCkBzmdc~hjvvtBUztkgmc6keIK&ADA9RVFlSV!3b2Ka0i4nlMKj zoa@da%%zMST>FvQelKnO2RZ#WOD0EVH}iuC_y75>2Zg0@ihEUXwIDSX2T;Zxn&yuChj{^;Huv_>*K zLv^dvwz6{{dF4u$l*x)|WuCD+GGp-lySK~#8@QoT_53v*2o*zbGF5gW==4O7HV}`H z+gacV^Lc8Y6~qf++|1QrA1pUxXEl}(sLFcogFgmm!4C!qK+KGQ3$nIe31HwrhAJ)- zwck)glv@>YBXj7%_T>N3bpUG4=HORtsxpJE)<2^T5%+ukD2T{sTi*}1=K#Md9r;^# z+QpEad=;|mU_n*tMu3%#6BZbOSFNUrR39qzuh)0*klBSU!xrmb?f<)r=ot$5&AkFV z2zsc1o1b2<++t6t2Ji-aWWB!c3zr$~UoyMIm})Ixk! zBdf8p3Vt}vr4f?ZvU;ok+L7Fe9V+xMdK>vR1@M|2#!^8T(Yw1CP0ip{Sz7*h4E{q) z0NP+{B^g2(#09Htxt=C`w5CotK%E0dII)puO5pJT_Q4bFpH`56Jr!_V@T0g-A`6l4 z#wQu@r<>B7W!|~3iCo?G$A44i;|$}|HV$pXb|D4ZTV42xfXuJ|G~WJyHQpY+?EnA1 zCY^#HIP3qSTWs?NX!hTa^Z$lm_RZ!YXi%PA{(vCAsq7^MOK!2H0>f;^B?@BS(( zpYuGBl#Jew8qeMqnZcZX&i}UI3nM%ie1ruRn-4Mk-~59A{tLb;gXJWdogo(s@{Y3v zKmUA&)EX5-z6~AuP|hkVb=!=WM8Tb!N7U`Vmc@NvB*x}=u{C;tK#0xOS>dv1^KFr3 z)Q=Mij|p%8-4)+9K7?BG*b`6g@rxt}8M9i>$Ye=8#erZ_$M-j@inSp=bp;aQm+SrP zb*J*Usvjj4z)8zA-3f^l{Ot?-8aEk^X-OF``%fnfHxwLfu@^1(G%q@s1hZt5?x3&q z+JF1aHAvt}&Nm({5lh{&A|1q@{*C~g?QoQ*a$u>Qg5>P=^M3(nJ9=MTyTvuo4K3`` z*2&!dadU7*c5tSGcT##ozfIx9m3Q0s=X21mPBL>1P7u~XB77XYi}rW*?wb0$Av9S4 zgUsr3FqiXh9FOBy0Yrk&L_DPfhgu~je#kLL8O}D`Vu9(Ry>n;B!xP*60B;R#S8PHV z{dKA7jrd^KSo2&AKGz=Ex1G*lv5l)*?w?R1OZM=*6jH6yw7g%j@PGaQ+lEm!K^;{l zBsAsJC9cSl^@%jc;GK@UT3D~#iecfAp7!qe9i?j#UQy?K$$D|){4m=(_ub@0y;+if zahw9lOb&XJw`@2RHA53-=e$a`V$w0kG{{@mcWd|qB~`_*LB5xVd$?RSOy1meaTZxg zPH(L3K;J}wJRCm%W8VaoXR=wp4($|^%cEbnQh4n_4&3Q*xdHP@8z6Un3+_50zY^KL zo2*&adE8RQm8kivvFd%ET7-U;ig-TeIDFm)j?nVfe;pwVXjEue{x+OuT{eSdH93A)Q(@=nxdF-(;p0ID`xPkyYCOE!T8y# zBdCxi&iAv(Y#K%1ez#3J9jD9*Ox$LOg5S ztmqqUeQiO?-c`4M(Iemada_twefqT6H@o;4^YWrBTkij$?LDKKY`d*dMG)x7w>^p!Owk;1uidLj}Em{MeH&$RPtbQ7P{ zj`?YHlDB`g6s6Y1w;*VZ8{>FMc6@%&GpFuRi-r5{E1-F=4gh#!vMp6&~GB zn*_NbO_%JKBK*L`c;nX^^UzKH_uMyq@%`6aHFm14wyJgxPq{+eC3-_OZh)mVEF7D) zNWK?aB@n`qAMGKVRYPPi-8#CsX5F8a9dX|)#na017Xr1H7#L6g_yK=sVa9vd1uJ`G zWGuOl$Cb#S0mh$SfZTK8V%<3zhrEGGACz!1dEM=!@Hf{L^3lDr1$(Scn6JUg zyMB9?CL1&_LqGZFHzqGWlujGILrAP$h;rl?n*IKRH(Jv|O>8?EFUmjKym|AId8%g7 zbX&p!+FSk((A&M!%;!(y8-$%PDzYt6WV#^K&g) z`k+=X4!an1`J!3vaxE37Z95cL4vSZB97#G+?RSmc2@p`#mV@z??#kUT#V&~`U{_>;*_oBt@{V@Az!Us$aQY(tD7**oaln&?uP6yN~}gJ zSHH|}t8-jDkmU}Cu;JA#zYfwkH3*v73JiHshz=y{Oyhqoh;?|Xxtq2`b!yHwQO5VA zy3y8lOn<4A2ddT#{^XtG>!|*>7zfrSy-pzA;j+V7-VbEG*EMrjM_y;ZAdMS3J7l})~9Wwm9ePr`O330 zUXYC07^^$Gs;j-*3~~flUL4$YkbjR*ZeG90wswB8jQ$*1hhj)q7)B*h0`K26zq{pq z6~G1Ws^^I}$gZxh5wC=sae!ZY7uw()bg9qo#f$669hQ(pGsEencxtOI)4PCh(8|=+ zJ}>l9Sa-6B?t-9cgunZmVxfc7MPKC2$0?B&ZGWy<(!oDhtOxb6rZwZEf zjFwV0(dCaeNr@3~G$|8+kH{pATX9Y$NLsmkG!7hHf?hXO zm}n`fPBV|7Mow7-6DhNspnSA{aM zel6;d@3mR}BPZ(P>oxW1q+b&vr4eoK#Z+G(7MjY9*g6&lT90pBvV5F(`HS(M*4KoC z`2%d6Y2(kjO4l>>&zE$iP8{bLc`KoJ4Z8DR66R$?j>0}f`O9QRSeSOiHqg69=9z1w z1HFVVeWFVF`mbvCQHD)@7^A0)9cSbJHm5U?#$a&u~ z{9yLh>D-Nk?2U-DGGvH}eqaOreY4b~cNdGoO|{5|qX%$~!TEJeE#%8zO(qf-XTODR+ToSi>!K{nEG%{}savd!oF)X^KPF zJ%-x0%c!L*9uR2CmnPcr|M31A3nvRsj$|%a@&l*1iP6^vN!dTJ)h6&9yT*mtYgJFfij~rlz9^| zxcC&GdOC$%QzXsi+J|qk3Oki}<-2z_i&C9gbokQI%X%XN)5B;A09xGx)#vB|bos5O ze{KzA*biexp8T$t>^HVIS{AXqEBlU5+LRW)v%CN%&!nfxQY~?(uR_1P?ibBaAnY(? zUN%3Cf8Jb(DjMNMvYLWAy5g@oT3LTxM(rEv$0JM5gDL`|;B9>g>@mj|``z(#W%|&P zQGL}=2dJx4j-PC$n%vw28^qhg9eYT)J`@#N(H_DY`~dafo0M5L%JyonKP-EB{wL?= z85Wu2T0XJK7TL8Ol6OV?D-ng(Kj#wkFR;g9yw zY=vq1LEj0;pQ?NnbOs)rb!<-qbfFTo#scB>=f+2tA`dd?o8|GE>&uW7VFdHe+m5V z;C6=XG~NDCa@^y#`sG|(APs=fe#{B%e%N99wp$ERt{(c!Jv^7fz4F#$&m!9$G3rn5 zclFs)e&(e69Up#T&5dMLig}*lp}^=$07M*52*P;7Z<* z%5yS>LsmgYUjtqds4T^xIgrCa3IW}IOa{`2*Og}0^&*7XK(6Y2a;R>H!||;BA?pai z)HUhc)g!#M?`n{I{~dPdM-2rGDo-}71QCd=Rl4l_ib+Po3bWdW%_ervakjN3 z`?0TphR+-(N_$dWA(}F42Rq8B8slNG^``6e9}&Tf&2M%CR@}oVgZ}hQJ-EWzJcLpQ zEM+=nv(KcBy4`yF$2oGaPglw%JDHRIAkJK?bTHKdmDLb!J^SNZx>A%^CQ2Y$uHsdG z1Q1wDIN*T3Adzk2oEaEaN$O;;w@Et1xXCS+;+u_tUHW@BTR zw+<(a4qi~_f6HpnFTc^a-yo_oRR7|_j#mG0#!NM7Ut49zo097HAJOol?LTuoT8AYB zYX4tb;^g=UjS2&1-^<8|@MEIl&_<1<{O$?y8tGsS9T?t4^Rv&;t=GRC~9Ae7hn zo1gyCbX#rk%Th8l&D$)#W}ji@I^JA99kpHe0Ln9%uBia|{a89inaLwx8jh=Q9QT%K zdZ)E%fcI>+_4UASFp2gEwDre&Un4@kv>7w z0a-f*z)-8;k!B@ZfUO~#nbBu$;uhVA-j9$L>B1+ASY_9CqsD>ObMOA7^osCvC0;&v zK{$)s66GhcRPk@$b>NT2+*phwJwuHTy_*}&cULC)k%*deC*U}x?6)}ooNqX1?+^C? z5d6-FW}?eJi$M64J4h^lt~^Jm0G-;C2g`@Ycb3MktvkaXI!XGD=>=>ctYvbtqz8AsTEqpt?}kqwKJWmbh%{g_yLxNd8yZ z!9#!XWy&uHC^;seNOaKUI~3ww3F!j(jJv8qETG6I(n4~=)!W2 z>Axf(xP<~-B78*rxI%7ZrT zwB)Yw&R{I z{TF#P`UhDDa)@~xS(a~I%?iZCKWuKJvr~t~Fgm$X%(MoE8rwSe9*cU^yI}2nDu2;m z@r|QuDGfbVrx*ytOwc9gQer}TOrW;d0=^2h*ey4mW5t+ZoQ`@OS^wKSkf;tC^Nxh`0C7z0p=^{{VFJWnmu<1(D_7y{Rlz^E@x&;rLD zY^G-qVsqteneNj&w}HI7=^c&f5%-0}|lf)5P68I}6+SpmXYj@^FgTd%`1_&x}7 z*-EC*>^>LMJ9_X2Kbz`r`gNqqy>BQuTIx;56HwMI%3|~Gt&d%xlFcS?4Z`tr_u*RP zV-arE<^8aulFT1-3|@s-D$x-~RG|I4M$wPcH@tQhgpKk9UzbW)H`+K--(-DlEf^`Wb-;o22TaGe4BV7Rf1jaoGzNSRre$?}iR{4iM(@Q})Fo&We_DA# z`FwfXix8?5I=jh)^EKgJ0>cU1MKRwrHGtx5Tz^ z!)KQhP_0Lt4xCw_*H9}>oYAr~1pSm|qfTUmak1Osg}L=_Z%Z=XPA_ig+;W+_#TO?W zp@g?t2GfZnkx&~6uIKc0eR*ageZZ-wS*fRyOriW9=G1>dl#%Q*@;+eF&?@onCFuBm zt`Uo?hxcrc^bi4TuzmK4(KRgdO!?HpY}CwhQr4o8^yQzq*KzZsC!ayN@~aywz~usz z<3vCxy9SsDe7SL~1oRSItL7Z(vCoMAEx&$u`TD2ub!{9XQgKLbtD*!ul6ZG zyr29%ZDOW8HY8GfC%9*}?M+T0uGD(p6-P6tl5o~ew;u;Io^>zU1WkKP8W*4IE*?cC zO?<3crrfl8@G68yXSxK|dl~VieXpBlzhPALWqG4e7rh1^cQ>mMG{^zw}z7KE4OAQ7(G&OH zBqo0xsZRHk->INv&_8rblhbc(GD8%SwnsF9r2Vn#s9O+e7}&dNS!*Tu7iuC*X8fhmW1Q1#MzaE8AhA6RtT1Czrv+}Z(8C2bwgu-yd3SDc8#Y4kjD+AxH} z*p~de?3Yu7Cs!c!Rj$G(=#SvmfCTsXJSb!yBEy;EYc1->D>SwV-kkPi@nYJeFf>zn z?K-s11X%-~DESXq@P0q|Ou#3&hYDz!58LLgQ_1u_d21OMOz!P9-SmD*{IF23hW( z7sCes#MVa`FnRvMl@T$SC&(tsiOuLnq6E&=mpK~rB7DOyEXQ!a6guf4nJh!qIwdbW zHL0`n!;~%d!5dEejmvHVy}Xt32?R*N?&-y7{1H`@3o8B1%oI7}dRLNM>YfbV`|5&S zO%BK0%JAI!i?9g4h|`mRwAWh>d;$U13o@8xWp5;T4PuKZ9hRE{EiaeC?MLQ zjGJ=^)@sY$ef6VIAvuLCn8s4~!C2vD{LWp4edmg?Gv#o7pA?0_H7jVW^KAA9VU~L6 z%1ypTw$+L;!tU;qzMUBDsz-8Q`RVsKouPklPiP1eVY6qUOXJU&UAx|Ub?%@G+6uVn z6~1AhZ@pK-tGHxx?Yd<@%eX#YsM=7?K(1EF&C`e-i#9>YH+XV~<+md@l655^>yQ1o z??3W#FeIp|cz<;WbuBV%T`J&v6h)Z5mEKqm0?-f8+D&t@S@S|l<$`$%-!pfRu1&cR z8z>J>4)MO)QRM}pmeL3!mL|Cl6KjHbI*{(@8lgmts{ld_Iakt zby^C?{p`2%BD#FCU@*_Q9CY7Mb~Oi2{6HheSCFD5)V*E!eN;;P0>ljR95u_7jY)h! z)|bx#rWLX^6%z`Wl%X0?i$yI8gk8kO!zyK4%Uu7vI1#Ym>d>^jYi{|}$%lush_;Si z%sTG-Ubb1e%yM5Ieg9(*&c83z67PQ<1`5&znOy#5e3nXC`jwjf`=t+6 zr86k6hq`Bvge=$1pTL_r_;7Gm3}_N|$w(W=e-QR7TO~K^i%o=88><#Rmu)0E?knIo z>LDjIUF#}6Q*Pd%Z7pw_PBz9F&cvzY^UwY{{E1&__ zp0GjPcJ`Lv%*|wSIc0!9*v%CZ$^QNeu-^tE2=XCPjfOQqri~_jI8~noKA^JL+MesY zB*E%|e^!J2rTh4Qm{v$>aMqssX9^%mVhtPVJIAL$#a`nAlQ`f0{^k~g&)t(u#NXQ@ zp4gc|>^OkWKi~W}qIi$ffB&mMm8{GN{*bnN2o9*2uC8wre^VWoGJx8NT1450y4e4a z%oDum&c80}6OZ8QClEaYxJuATTy>*@c12)e>j&I4KgT zv|+Vwa^B+>VV!NCjUA|3DXP5F zAk6M&kL_*#OK0Ra^jl}7f9rqtHyvakJUD|u7e#;Qb~DY@g2Yy4iB8oR$A(Ufan)?2-BX z6?dqxsl7~dcgMpC(K3KTaTVitKc#PImEU%%9`kl3m7!BgG!Qu_9Y=sWoR5@u_iDmS zJGl47(V+XTQHZ-UHTNK8o~a2Y~nE3lk6WTWu}q<<9F2cO!7MM zVLSs5LuRD%B?B=zXcKdp={sVdy^TNLaqzK2P$2B?=-B^@nr)%fx6Lfip!{UOojXX` zH=)uaW!52ihV1<8%YTrF_*Wtl(Gqq|;H(8dxV?qR5vWX#mbK3c`rQg4iKkEXkI57N zfw7Ys{|`Nz;PxnW8k*)mE84C`4BCIANZg_Qx;@>J=5jQeXc2brP$X2F%i#t``0=B! za^be|9KdLo?o4e20~#d$zafQRmQviZSvQ#oGOL=su$|=pT3PdfC!N)(bU|A&=@@kT z^IbPO(7r!SCd%uU*WoBG#19g4r@br_sORr;6VX`YzlQ89>v&PD1G}6T$;M2}y@mr% zt-NP<=C-^zJY<2R!&CI(spq}v3ahNKj;jQ9+X^-Lq-t)7MPil7RT{I^|}z@U&3Zx4qP1e)!q*`Oj^3mDINlY<2X5`Fw!otXIW6~ ziVI);Tt+rIdEZw&`<>H1d02Ft2)sa{VI$ZvS(a zS?&vgT5@RHbDcV71fzu8P}Z)C<{im>QChC(s~X^wsRZG|hOV;pIR6|RC~~!EqZyqX znO$GFAnw6whKe>H`N?bHZ?j`p9zEq5R+7_G>%!;r8BufmlZ$TCY9^~JKfVMcHW2Fn zZG2$Ehy+>2&pj(0&067u#4HA?@5>*eV$n$+{*&+wpo*;jbsnP%)a5YZjW#F#yZw?F z|5y73`9(!-8E@lLzzVZ73&+Lh^Nq!Ua_WcX zT^t9{U{e+U2N1mEQNPzLODf|ZAazd$ub(u3AAUBtw5oG{i!0!lhvSp!k)#u28&r4G z-d}TEXf;o)Jz|c9wroxdmR{C-pu>7NaA?I`zI%z*bhFp4rL@NUQE#5g`|FXMD<7n? z_QymCN503m$Cc~X?nhF0%o6*NY@r9icPA&&ss6J9Lym-#N0M$#N18#3P*tobRv^+8 zFQIX#;lZ2hnNV7s`D`R<^S`VA68TUs`(pZBJH-Wn4I%rwp1DP9@D}cw zkG<`@<&2{Uga*6kv`&=zJ+-u<3{!4ZXiX@czw-8}v+@Km6Y`s9^f9`Y-%^_n`6qKT zQ-{B8eJ1y;@ZL38H0_JbERHzFnr~>7v507|>y(xnc};z7&_(ZMOtm(5ZVhdQ zgch`V{+S6MBS|uudH)?4$EI0N<@G0s7sx0|U*VB?n%JgR?D2%cGPk3)`e6yLa!Ipe zPs!LyA#%ib;beWhvr=d^PgRl`Suf9=>4V@x>4EmoXuz;bbxnHZVbyMpgK5tN*B^zD z&;yYJER})pBJE~&w;P2p9nn;Y$(N*CH3Fx4ub2E4w};SULRGQ(mpgAhRQc^(v!GRF zXlYn>2%Cadn1xPxBi3tQ4caiO2J{Xd7Q@JTfT2v}H00?ZJobcNucI>FpyUcg@o{;l za)RI*R4ZTFEL}jMAb97WcspW#Kd*VN{SB2m)b}8g9>I(E*2U?ragO&+;Z04z?L_W* z66{HT+&Pec#)tDY7zw)!jLKdY6gRq-;mqJkcBC2C`ud0v_B#lE zi9^NjB%MzKt2!Eb0f*t*llNn<(l38cs@XB$nNVEcuFv1UX{XBu`5?%G&~%Z10p_%r zYyM0`KujBO0@oNG5#XNdv&*?iKEgM@VAt2kX?NxBdTXz;!uPb3h~>G5vcC3kpZ0k1 z)CWxd*zE=nDBk;7m~FOpyG~_C6ce9{S>|!QR)6OY&3Yum4UZ%J9TFALAUnqa4duKI zE`NbQjD+sX+BcK|Y6gBIOr9>m&J-mQtlp$(64;}|uV1_j0I6PObq80TUa|{Z>ExHq zg-ypzrSAW4F^e^W~@QD42;WPr6ckN8n31vwpiYff*L z<9>xOSbH1DYrw2O#pE zfh2oQX{HGm_-?aa)j)H0=MT zwXj_X-jk&X(PeYcyCUY**J)v2$zy8=?9h;&3Hs2EAEyke8UCx(!t*bw#U|d!NoD<@ z*8M~Uo&O@3~b2MbbhqYbKBBrMNe@0$=tgbM4rzzWUu-4x@5{$|S7*31gg) zaRIi{wufEJTGzRG$yww43n?P%uk8D6PxHXVtgtMOgFTPu>Tb)iuhM_j6cGNCrr?p` zxPjaQeA^^{k<}!Z&!(f!dBMaTgBzoj#_N z{yuk<-FrrSSjP1fwuvMlT@{rW|N7m(U{(V9Mz$^Y{x6{1zVMqAzaK>R*{ETT`RK9R zFUkEA<9@Q{t1jaMmD(3>3cP!$e-|shf0H{}Ncqcd@mc<-)H1rTYgW3i2Q{-HL`93| zKXGBc1t(T~M0zA!C{2IhQppF?C>jwY^l6!WC*3@5UEt%_1P;y zaUiVoJe~B`NXf~~(ZE%Ln)+^hNya$|4fgRBczmgd!vu*haYxOwp4yz)($!vN2}gM_2zSf z(SxxWOPeBq!NZxysNOK}Hul>{oYM&w>&;R#UvpMVl2%GG&QV~wnWx`0#yRf(r^J3! z{713hF9imCJFS_4{JDm1<7nE4B(IXs-oF?u zjm@j!PNd~3BM9XJiCjhS0~|l=41q~#yCxzc>f% zMoIkhO+#DM;-28*@{x7#kXiMV8EQN`&Q|E@u{|8J4(xNhYLfj~4lWG*#eS}Qz!8)3 z{rUS&UW4YFeZqJ=Sj4sXwYv7*2|}u(vWs*R=2HO7Lz`Vehjk zn#UUC13Xpsalc#ftCTA@S6Evn^BQpWQB1enG#ee)x5NazvTi7>&&X!}hZjJJcc%-! z_;9i_+l2eJpIRBma^;CWmNM<~eRHG1l8Wtg-bi5Q8&UOEKXa`$24PKj1eG24qE7TZ z>wUT4k>fERQZ*3ctvktx)ek~N&F>@_+Gv_Dm&_LFnMOsZ-A&t(xa|I!$xnCX1K)yE zGtXF~oS0s4;}PMo$TPIqcHdLX&2o;W#2|0nnF9M=>d~3xtX2iOZ^Hi|j$ZZ>(}Rog zH?nx*2{PD)glX`ANMgHb`((60V#0&N?ig!0>P=yqB5y@u5gJE%uWRa&?`jdHHfp>E z^5x4HTi^L~m-vStuiH}}90&xkK3B_eP*IT!-+y+KGP?-Len?KOWH6-UE9W;BnysDo zNe;db^DGaOgBKCL7Ye4XrQ_DRQ#qcZlhgL8*@x)h!flV1`<@eg+agzcGH|)iCT6Y~ zzcz#IVmqfA4vCH{KKrZg$oV(CMxT$ReQizOcjYSY6nGr%9haJxx|jT_gd&Gog(^>X z+YXbr|qIwMDDY&Gi@c zWSE_FV^8)SjxtX~^;*S3;q`+m3rVmNGrWy;a1b?kyxZ$g#mN@7LylM2{`?`A$v6d9 zWcGtq&uy-@`R6-88I<|Ef0Fd5Kb&N)J!;|H%~_ssD7%{8G|KOm-1f;|XnGv;HWgZK z(s5zT?LdQF9uk%;NR@i~g&w=CH;1q|wKhbi%tcLo-KV9C>UB6W)#2l|_bb2cFdBi_ zcAh?ann3rxUyxT2RG=Fk_r+`D_A8Fpje$j?9gT}XxAHwhEr#Tlr^p3Z-s_k87u*jD z8W#;^$MMc``gWpvDR(=fZ5PuK$*`LE*ODt5D{mL*mC#uVJI;g3PiD|yX)v>-ztBx~_^r*9f^ulPhsOdc08k5+`v%Hq8(9(`R!RZh-|n*nD2zb#0K zL3jgD>p1G$n9HV0Ajsgu*1bYEL6A*)<U;566*D<_3 zb^FF4-PNuqa)gdLcp*)LZR9)4D=RBu_ox;cB@!F}NE)!}w7K7avr4fEb;fk@tWtXV zq3RvdRNh^xc;OA!U|cx91=F{Wil_@{OOSnBV|7%EC9X~#-Ivx}qfRnbT;REXUhRT7 z{OzJ@ZtA2Y?WE4vVQ_6ptYrgnskQ!ehf^w7EA17VH<~Knqghn@aV={8O`pmiS6~JU z3>ocG?8xZo=!{1TJN3<5mQm3kpT%3fB;az*_pP)`?rIxDL=%a_yNRZclb(VJZ7UaW zWyPNRSij62hcbp9rw2a0Trm@?j7zi8=?tYA#D+Dt2P?l=x}W$!U!T-JNBfMK&YiV% zU}!#K&q(U;Opr4{#b0!Ao#Z)%xR`~?@g&W8Rr{6sDL zpgs4acDm4w!3njB0z2z@r4-(Hb zgYBYq6Mc^Q-G@rC7enes+3s8+ywKpw>=OF>%=1DLKs8hQ&g!X9;^TI7`9>I))(@grd(zmF^>LM)9A-X-P`RjXhre#lB2S#& z*3u}fvg07@!O_sj_}WTRfK!eeCjwE{*;Bf6(dWkF4|4GB`A+?k870+ z-`5y>^n%zwU|%nqgVzJi>@L?Y20pk)_=@BBL@n1%ZUZC2NT5V(_%-ajs&@nXbC1#G z*U+6&RCmE;jU=gjG&$Weoxi`lZ~gICuJ0c=BIMv_clm`;uhK!5=dh$I!cMxM;MYG+ z-Pc2CapEC4@B%=%o>T1ke8*Qd*=O(ZMBq(wG;n zkc=up{-uMNXLJ7eJ5cRbZ+h&KfI^}9bx({|xf7X-*T#0}b;!|!-Mjzfe8d1LGij>o zCxyqDb}ngzUMigK&#A%s1qBs)<&c>3hw2Wdxg8!rennI*Pw}S9m?+{IDwS)s6d2Xj zZil@y)>&)kzXsU&dqck1u>4kN}l=-thbDZCIHrQ%Q$SG|)!n=wMSau4XZwepDUdKfFY1^W595)_3j;x8dvXJoG znN-QjckezroQ#`%vANI@6hZ?j?r3gnOY7}Sa-6yQ%HDf6VsK+iC%=1ZV-$+YAgSUT zu(_q6usJ0$ynUHtg>JDS+~DE}w~ zS&o#w>;?N@*|159Fu{?ce)kDd&cC`h%wsyZg87CE>Cx`2=J-G+UdLm9HJRY^lUJws#dH*5 z>>U8vrqVz}ExhQM54#{_l*gB(+2g>km-o`NrV+mvy+b}*+{S8Lld;Rkg_Axt|8S%B z?wcnaftYL1JDQG<%s$_~LbRu?3V66N=JkO_eNRzxK#t{*H6{9EkIsv?m_PZoLrKy} zCNg&0!S^(}*S=NyZ_x|!KYRqeXWR$(%v6MnoEfmBoPE%zK1Z?HIB&Dz;j*}3AyHjZ zlj^_n1-V)}8JT9GB3_pLp2|>WY`u4(bjatbl;JVKvSjug9wmEDzsPBjtV}<)rSrm8 zQ>4Fnkw-7f-CQe!DCrVGn?dA{i{xg_MwGvawFXz zZ@e-}XLt8j3`+Mexv@tSkH0UQ@k|O}>;7y@dozcb8viU$&)0Izozp4*>9goHc<&@b zDB7f{(nf>FIL7r*y1#T_t@?Ew)H&6y<042_6O&nvbKmjOq5W}D`rmTeWFgKB&VxxI zS%lkPMaws*9&FM0)Gb?-cw5*B=FZ<8e>e+Pt?JmIe$$DbB!wRfk7W**|uv=>c+og*aPZ(F)w*;IDwGD@8?w$d= z*&CQ(ei7LEeX~k9C=Z2YCNEUu=2|60tseg_5!EpI-CzfxkL)blciq*2G{sQ2_EZJ1 zmjYcTi|f^tzq99LDRQ{tu>M1$a$o$J7KCDh0&&UvBi=1t!b8q`o89LKHdP16j%R}f zg3E*XRL3X$55ocbGZk-@Tq%q8D)AZCJe$zR{t#~xxFGmRHnV1u(F65tbV_M$aPK^acM|PvVG}utc?z{A zwHd9;`>TEjd+2-PgUBOuOaZ7!C46e_^*_Mtn=p{ZpMn_M*$bVsL0E6-&uM3yv@I%m z&NPh6>QfTd+L{h8)%?z*5#T+3g$isbg43Px8O~=fxmKC3?9(V%mQ-}A4c&6ZuD;Ou zG#VQgAt9+nOhuNf2@($XQtA(}-?~+TdqNS2$+fk$*8tF;JVkCkTEXFl1^bhzGd1GR z03<#Z9@g~v4)$?xrl8yYKmn8i>`LyNO_p)JPu2jtvBjUyhroi2T$v@|QSaNPQH$40 zu|PBbN#*7?D|oj_3mY3yh}0ghT^z;tB^or%tMVrq=caZZI&3e#|MVCL4>c|W;@6QM z)CYup#=g)q4S#Tih>gMUJKXy^=Q&`3w2ES7meH(X!Tw#V?l(w&L`?Oo*l=C`V{ctM z({bN%qX5jQ-uDaDy|``hNDKO;#8 z=8H}j;@R+)`zSc{>fr^%dHi6i9R(Bxicecf_9RC9d$esh(T)m zzN^m?n&<|zcO}*A^be1{{m-X2?g|IxHcs+}CBt=}!oT`8ISu1Kal63WyOn&=Nh@$l zj3IPahP$S+KDo@{B`elStRP%iX#Yc+u1sMXUwS8J$Ge*z69^+AYTt>HieA1Uh@Zge za^1<>jO*~(eUyfI4M=3{OKzsZjb^<&$UQIwOJ8s%FnL&dU4 z7r%ZtyN>r6yOzUF#vc#Mg$id{m_|nnju8bBETUc8M@>DKwX^K)M)&)YRdx@6w_xpsJ@>IR_ z=akEg?HGKHt>=P2wAuNzN9rI$uU#z&fnUd7Kd4ep zblFSq@^1eVxsxJ=b2=;0!7_rs)CeKhXMXT7Xa)*_XF=HQdhBgGAl~pHHQPJ50@6WQFd3RZv);OUq=3}SG`j3U& z+|1FMwbvEdi&tZJTofNYdQ>v)2P>urn-6;I>g(%wm$HI)O!P}m?uL+@zYZL)>@S|= zPi7-J z=1`mIp=_wYT;Ui6QBptfvRwBbc6*PLL+jYaLa-|5Qf!Kld}N`1N*QhZFDT-b+LTdb zFk9E7tuL1=RvtoSV6+ZU!-F{5kx{BiW9eg&ypRI>`i)07y?mt7@!4AKbixu{g}Ir751}(Wol>w>NA2>qhZ_ewNlZnzptRscItx>FFA0C5{-u74b&XVL8*iO zUk|VuBl_@p1M6ENQ~Ym=Kqc19Uus_9_!W0{r<{#qh~aV0grICLQ|0+Du`f4|b?-Sz zz7J_?6FOqT9Yyx74hYkq+1YR!>_=u;SBiP~?jaEZa?SMCmD{l|w%7zImtML=96j!6 z)nJvuPG(*`D%3CoWU&GVWBS_AbyA0%x3herkzPR(BYXwMZRPa?*H~V4By}!UuJW!m zo`eodXEcFl`DIe9-{d{#!+2Skn}e;?`G_@`0noL4#O~{!Q<-=34kg{>`RHJJoD(Lo z-uKb2qChohw(jY#CS)Dlh0MbCH$}nj6c+AW*}we~?_~sIk~ zjG3laa@>@sCsf-q%qn;sMH$}tX|5^-u)5F%c2_Y@^$;GqCG@H( z1yA3n!tn>UgWM&E#NEgK-ja%OJ{e91wiFl13S1PNv!8K1<4)t+cmk6`%-e=`wmBNG zvI3$HWh8_kSbe?dK;gsRzTXSF*q&ZwqKkfeJw&k7)S;6VEzeC#yxM-S_D?7LkO+F( z-1hKm^>0=*>o+Uv&+??jIW4O6w=v;%7vsSH0RpxkQ>JiHD>6nT9oOR&N@(jRI6Z0~ z7TL#~t$x)J6VgO?&#Z}x!Ja8wFs_XpN6;NO)YXKqSS@(FVG`2pAl=nDe?CebGSG8! z1+{Z8H4E{}PS*OvnPz}`rUBr2aInYxlU~Mur+Vg@sc2lZ`@|+j|Z>Wrtj@8>LKQnE=q$kKB>GPYiZdCw3q)&LJMNeU`3F zC8wpLVqR9JZ-l1G&DF6Rz0Kc$_ZKYW*@1rb{=Pd<7(bVo<@kG+6+qDMU;x8&GwB+0 zBBT6v;TJZmLr=;WKgqb-Ag@X{3-w(u&#A@X6%YHdNQ>zgIj@dd_2a%ey`+>vujr_T z4rNe!)HSeiLA&I=^98u)1VeR6{XOsBnv@@5(#X(ONI+apW|6;E{HZ zYaCYJoU^>*svEoI%`xy5xdrk8JGq8w@OM0>0g6XPri8VKLhLkk)_uA~Thb6tC&xy;aD6?DJ>64L)@B29Md*ZqVV% zm&wZg;_2HT)qZGKuWyPrnal~kG6c@@ZL zMxwUO8b?L94JXFtb9Gf=LxpcwJ>9$TzKm-}uA|jAiF}SY;E%UU;SQJJ2v!HvmU#SB!_ZO{y1`rtQ6tTi!D4J_)vj01uUb+mixbLmyW* zkX}gLGWcu>BK#fZl3!zTkp zC6_Tg-k5e^l{(@t2Ix&U(TRUHD3J%A3h!jRd`SOG6ynHtd4@(t?5Xi)*l`^{%X^y1 z9Ypq|Z${&s=cABP`~9OzUX5U>lRNQ-2y6FvlHoaBec@wesFvmrZB-~eq(|udUSO?V z10GQ5;U+JbJ1bKL6>GKRAp|+--Ow4EZ8|mayz-JN-ScqIj-KMjXC`b74fLhpJM_1i z61vnW+l>|151NAw%J%*jb#EP2RrKwTT7;w^DJ38+Euf^LfC@^;0cj)zLAvW4krEI= zlu+Oxq5_BR=FlM}-7Ort8xFj+(fj>=?=P<2d*2=7z5f`>7@NJi!LgZz99v&!+v0BaD0F`Gb*;st)}%)&yllOlPBE-`G+(@3&iVzt90{Bb-l{0Iz!V=+XhKi$9JQ4>bgUJ zSR@@)dCD~O*ByU$JbLbml3zY39x+|H*NiN^N)9oR|DeY34ghL;xBa(EFt#XL_vgB2 zK-3VCtfZ1W<{w^OnD$niM@s-e{qyp@Ynx~t9}!o$7Hkpjcz2M;5vcjpo*=MeKbBxF z=%L(4B^niB@fnj9Vv`p4^*V?7j`fZkX%%V4+&4U717+scOuDZEZ|9Qfq_q}ko{!Vy zyY!;wZQn923;*Z(w_(TLkKV-OD*0A93^}h}@c|LK{j#fcBuLB)!6&ZA0x4ADz59T2 zq(CWVHQ+5`S!26AjMJU^=&Tje8mZ<&zqfOp{XyKDar%L^qfh!=+s&^CpAz#(*y~Tu zpPUEuBc?m6hiA8%mg5wR1u~V{BxRmZb5m{CjGF}y#Kmsvl}ywBeAhtSJY7k-6^iK< zakwoV61O?KJ|KfH1IJl^w)sV-LTR4}>3~1cVC3ksmsjNJ?xxXBaL-10%WcV~*vXlCuvw8NyuxO! z4cl?06H7~e_bI=BcF(`hNogUo`Y}5C)e|Pq*U7WZjf@np5>~b!ifYKC|BbE%b;%Jb zRU1C@4FRp5iDe|nJ}z2dDR=ewdZZb<)I9O%7oN}jvpQVQawk0D{j`f3RT~Lb!9(z? z(FyM?%!Qr@Gx7r_^+lN6PRaMrpm{tJ%kKa+7kNbN z*$;Z5Z=?^>g9-u_I{*XLCb!(>+r<=Z=}cwQyCBW)MsNpMHMB)6XUs_Z;>e3T{; zy$J3p_Mr>Zu_QhizM?r@U?*s619cJJd&DUn`Wf6!uP6HPXEGF%LA`z z?ZX_;2srS<4w*)BydhF;u7T2q63jNOxa2DUtl=owvd`nPrz&$5GN3PpYPJQog-(k} zO0bKbegIP``%ogixHsv)u+tSb2qrsC;1?i@*u5Th24T3i?hP8WJ?dJ~_hJN_R=>T> zfx*QCk(sSligEG4&HVHCcyVS9(rjS;^|gkxEzF6rWA955*?6T#2j_>mLL?9U$X)Yf z1&&nfx=Y|k%J)aqp4(`NQ146Woy)che2nHN=z`05Z$#OA>zBzjxG=VJoOvB&ad)!N zN&0PDF@e|V-H6N0mTT&G?7r!-_+Y+`T#EWY13q4Ek1i(;XBZXq@w9;#BM@!ZX6l;1 z%Jyl}p1epdY$89!;pP46UD8@rmdp5p@t%pv{fosElpzVM9G`Rt!mqmtsbP()famO^ z>XO8fw-eU1gHRDJA<9E(0}im~)^czdf|4@# zh%51o+ApWQ&?BLsYi%@{`c+kSppiNL3)5HB2b%*i`7wjUJEulHGH71rXdSI(N~G}b z3_4iKRQwtGdvS&oXe~GJ7MeR4c*Zl<&xA8HUIh)952i`6E=WLoUm3MG1;Iib%9kha z)j2GvMuOQyayfmzzUMZVW$3@k1~Z$r(f1=(@$F4WWk&{kRKBY1nRrdNzJDfcx7#R4 z4}Am5V(klotqd1-sx>Zhgn{(+LX z84$%C@Z2Yk=Vy8_JT7`as;t~{r_6~mk_qPMmng&49G}7FCZ9H zyj=dQ&d`fD08KsEQ}}q+U)@tHNg6wZo`ov-yUzi_srC-VEe0A~USHVO zTW-8QG7qYl{lG>TM8WkcQ9=1KpETprpmfNfh>hmGQQ8V>1B5Vjdx3Qz?v~|~##d`V zscV)$G~Z}jC|LFH?W=cMhMAFm^it6jI-Y4==cF`BA&@cfQZYPK zRuBY1+gxLSJPRG~w$Avc{0bys<5i%ycx0%1gB#}#SRgo)2{d4Vw*0IoP-`3BheG8L z3!onbe7|d@1+nGsHor}55PbIC@!YvxV?#9K>egD-bh99hv;|99S($)^E5d84HAZah zXmt%0A3wk2PZBHaYCU%CtA>Jq=``&dFp%(To+Vdd>HXE=OP?cAW24Ar(J*Ei`re5J zH*QRK4fx-hZ?vOy_1N#6*74`%fEl9r#*mM4r_&d3JTbXhD^iO z)k}^0W5PcexnHYT)S#jy7^~}JPY%FA(GRilq$-WFcbiM+edBh7G&-u3eH{ddI#IiD5FlzG6A8{XkOIDw&|zV1H`**p zF;_uTA+1I_o!urT4YHj_@{)1Z-m;PEr74+ri(fR$C_D6fdv}u3?NxueerVYAMV1 z=VV+9oEaUTN4E=P-ZW6&bsfpru7Dd*?0XuYM|q?a^Db&O&Dbi!EHX1+V*DITdlo7j z1eo|q&+R`g&i%0R7eXU%BJg1(eZ*dbx>$fS8t3jITsH|mB*jqeJ#e>@>VR*VSOhlu z{nI7IU{d#6g~DMqt|mZ)o)4O4Rc{=Apw%R3v1k%2fgocFW%xX1GnP$P*nP|NL>(~`2$_rq%W~$@2A&)8ZVVrz4#eT)Z+wz6 z=dvo)Z3`KPj?2?#XfGqKto;o}tHcgTi4+2?>jB$?{n3o0uIlBRlx8|odHy_nah9TQ zLD*y;BzouvszPWoUVXVCINO2ck<&cAh66T;PbTJq-KlyE5;Z$ULvL)aS*YMyAuX&| zs76FhYF!!Bnf9$$C=N_&aencq?3_+e_bivUKn+% zX90Q#a4Vq~=h~-}4aD!_HTR{U#+wV`#m-e5#Ffx_uw=|%I54KPAOBhR*fV?bN)9S$ z5>0|a-5vnleGphxUB78qzvuaxnHmp}xm%$!YY}S6dO~;Ob8)huH{ zz+Ia1va&k!&ck=S3F~0wdU?3e$GrwFSRMA9xMVn~4GPl?81^Te>ZLvTVA<83rk9iw z?Z&M#QLD=ibw2=xJi^aw07i~`yAeiy9@$7&O~3D#H~hWgFWRIxxz7RXEa~ymvsp(j zz3Nxv^*C26&t1_Gn5hdVeeOx3_of$>|*h~+* zU*n5E>x1M%-R|iGWoZsh&V;8DeVhDP_sCDIZLHAe@}8Z$ik7c^wjr##WGmPV4NE zTDE7?3+~3bm6S0ZH0Z&VG9Hv4^St3ejb@DU^|7f-FSI`b)aEZF1ByDI_Pe)k=GV(l z+c)Ywu9;(qco2I0{LAG2v2?!goXnCMF350aD;8j@@SoMJMPE>9&CCw&5Z~ESZM=dT znWS)@lq+H&?qgee5AFN7+~a!+fjSX(KpVPEsIC`Vy4}09ERidt++oTpf=8E zNWJO#nWU<8%#w`jHFK*BpVk`@gkOT$j;3na;(AA1+_4DNb<{9zbS^l8JrTo7@Vn9 zlmKYZoMd=&AuRsBpljpfE$_=>uW34!0~Qzr`5OKvcv=&J0TsF$91-mpaMB+He0EC6 z7~+|s#bJDX^Tqz$q=@3V&w5zTG{+;uS2yOpz$t?>nU{f3Y72)lP>-u%7}g@a8fVo1 zr6C_0z#Ik|K|PkeiAr-SKS?Jzs+jz5#Q(9qJnnv`?Gmsej{6B&5fjirji--U;JKfG zv`P$q@$tW8X}JZ_C&@(9=r87=0hlC}H1gWz&j}&O7zI+nmGJbpYt7Al@Em3IKizkx zzCj>zEu}UDA|K5Dmq6qbCn1QW*bgaOkOV{E=P0PW+T}I;_pG(wuQBucHAwy&uOVc* z>N$|vEHD-GVYVX??~x4>c`3)!yuFF~jOoPNeJ zZeO(l^vO>Eh5mXLLT261_mgw_NBr-|5hO7SD=Qflm4CCKASW#6ibW3!M@$Shzk{9% zvM?xi7m-!;Ww~M?ou-3k3?N~Wk2)?VkU=0u7KV#+=iMai7W)O?^Jp@{Q0nr%XCPSjr4u^k9Y^Bxy&U{8$~U)s@M?x6cr-F~pQHw5NURZp z_v41%Z|Dg`9fz%#{WCdvAez{6gW>m1r~S3l%iDm$q}BEBMhfOaHbK3=#}UKcZ^8umvM7-W#sy3{2L|Fwm8+%=b3YK=!1y*YFKT@)~ zxtW*0;R`k)q-w6mo}|}2d62qlyW_uojD!Gb&=bR_x7xsDxf+i0Jd!P?R(F-8u(n1y z+JqZ7g~$H@8rkD@wD*J?=8tre+?K;k@Q$9otQ%Tx%m59`b9B^ul_4hyS zM(NRMX6V*^@;x9ac3H|Zq|Dz{}lyocvj@_R_P0M01QN+qpTi5hG z(uE1AIFm(WXhaAM5K>baIoPqeq-D2ODoI4~BaX72(Ncd8Dt@h(%(wk#SBrJ8YUgnx z)lP4=#Yxok_4WOTCk7~@8`Qd3#`(=dgVLkW-|5kR)vHU&TZvXO9&LCUmx$(7l@A^e zb?Ijp@;NP?9F3NEF;ZBnM)uadyLT&r)?#gE?8&ZI9l;%W`T0}(hkJzTIGg0Vu9H`k zJ_zCHl{&+oY#tUIgd^Yc8=R)(evbx@Z_B_7O6GW7Skz|pbp(&*{La_=QPtIZ8xvDg z?;IZ^fu$ciIk+T?Xix9}?59`%U{v0{Ht<>qD9j)N;=rnZsrjm`7S&7SZ?lc{%p92ebRJ6K&O~SIs$a`I*#6Y+G-*gJqx#i z^X3^Q{+)nzPib%r{+M?OK=;th7;9S?_~lA0q^sMTs8LvT&3$S!PD~$dumwmxzgqx|eYPK(sm=`Gx;kCsPb?R(z4XqvX=-hvKYMq7f!2Jrku_Ry%CfxfV0)=yA=5=6 z-vTBGI8y~y@xm^Aqh32wdJ~6na4);+N>FZ37|+LH;v#1|Zo6 zEJ2Jllos9V6>{kHd_Go8H#(}Hte$WcrJ3rhme6!IbK-chMpJkuSw=bNGN(YLGa8L% z(v}%$*_KXJ{&i+*`%f6Eh(77$@x7|9K7oypb#YhyB$LbT`P|Q4?6+`jIw?D-H`7ga zO7iXg3BE4;$j`^N^|99!%&rOPtV*iF95Yj|{%)7A=tjbAz(9{}Z7raL{p5pLkng=i zMcRxfu{2sM{}=U91j6haOeGy`d4Z#h49xxiOj?Z%YC5O5fJxBh{ z3*ZUIR3mf3nzYwG3vgmu8qD{JGNVe<&&8D}Sh*P-$t&R2d4<6dty8y=tQhqp%g$H| zz0FNyP^5C}`CyqAOx=K32K~JM)6Cq|RAPJs(D1+5JBhu4fL4?3a5oQlO@~PLQk{=g zTrG3$sGc3&Vgv34Xp7bTtk&qlRkO{NE(Yek^~W}1BdOr{;Eeq9_=M`(o-_MwZD@}X zGM9jJFlNSHjALr%4^?!ot!4j|LJ%bOs4qauKyo1e!0R1^{Vt@8obosUev2KfQ|4SU zrBlu$74$+BHs0zuiMXUJj$&f4{Q@Puaa|LC)AFtK1Lcp)L@TBftUwYq#HAki;1fXd z!gV<%KwP0_h>IE9eu7_A!PrQh-G({b5|xI z6`!yA?Wn9`dLX5%n|cs~y6J91Nx#!&r4Y(kWBlOb`1Hd#b<+(OC!J3ICr{`EtOlh5r2^5K`E8mMqET$J9JTuda1&G zKCHb6b1-Tv>Eeu&p+ixWW4mzRLw1Z85jRNA>nKv%kh+MS+trrlRJ&S8`puaukz)^Q zkR)ii^lZrYYt~M?4{C69NTL|f9%nY!IujrNEgUSOP8DA&O+E&I5{&U=m{=oWTnxp{ zREy&0#!XG@OBlhWor}O)Af*9Cdnvgg{Ky_+sE%^qdG`c}=WUJ2LJes#}-v)_PtfU)(pL&mjvU0n}wizBM z5~iRceffk8zx@2IjDhA( zo_Mk(G76d(gZZcgH5|o$5iJanC*(Ie;pFG^5sVE#29U4N@(5UyOcL~q1;8}8;Ed~M z|5UC9FvfU6>t+?FFm5;IkQf`43X5zE2hUX64 zj5_Lb#aqh%uW0X@?0K&T6?ad8v9%D#-6H!`nwo=@(;V*T0eVv0mf!1()oSc*cQ57S zoBKejzqU}YA^xSJ2thgbQW#~w_Y%#TAha8u{&JiAu8p?fV}s_26+h=KUaAsrgOh6b zPaxGWa7^9sIJE}IBsaa4u8vaxd}^^h1xklbT0(+QODJOYgnYv|Lhd$0FORq;7w_@3 z=_QLC!Q^bm#aF?h3Z(_giO#J*VpttHowkSR^ulXLsP$AS@a}7B z;@cd*nyv{am$i|xqt;e$3j7VuN+zK>;GRi2`%=|(FN(wh$$lz`-oCZo^-3of2iA475=4L{W?i7yLAJ%fwOTcAew=+qA zob9eTwq`B9x@LrdDFm)LeK7LeOL)B&WZuv)=o3>K*h>sxk=M?TP&31t%cVw4=k{sV zYo7chSgi#K(xwM+)a0V{4K?7~G9WdqK;4yw&j~6m>*9(8;Zrf`pkr13i+$$p2=&WJBuDRq>b~+P1dDq5 zT$cie81fJhEBOV22Jlf|GFmjuiQM(A4Uh)H&QPOuGvU>r7aw$dvGW?*K*!|b#}qEt zMw6YLn0nXK3&%9Yx+!Ko=@KQPJro7pj*<;~|1z;(0r>H+nl^o&8*r_j^HH`fF#ud7 z%l@vDSCjs#=MqxU)vWh)*$$#^?M_c@^k%bQix%}W8_tn}yD&x4rsa^_4zZ4B->r2^ z$diV?YVY^-pBn}MC=eyQ4W<5n;gtac^B+W&#>QM4DQoUa-I;!7I)!<9Iz_vhX`t`T z8nEdDvMF+Ma`pU;ca3jZ@o#ybE`Xzt3NE43cQ3AN!Ws5%uMZCX?>k{cdd!DG!T555 z?T!RI**n0Zk#d}kK8srN_*wIf*V?YbcJq_+A9A<1Nr=Bs=PVO)oom3#~_F(cY|YMN-A&lf#N*a>9+f`GX z_nfI+>!oKz9u?O=!rGqs3?k;a!JX!pSr}mb?jHc9PP`a;Ft{~<-`MW>JCI1Ew|`BS z102Q9f}-@Xy=E~ox~NxYEF^DehYWrj(@9NH98yqxV>IC}><|cG+NdMZ?Uq~W+5a<^=;OIxey*5@ zV!HuAp5`L%5`cy_i3pum_;5I|*-tKSqbB%RlRt_M;xb`7Z;3yyur{EGw34yG_eG04 ziEZD}?P1<-;Qm?J6r8ge3)d_Ah3nzBVuH1#cxDwDWX?B$0%_5y>-46W zHbrOOo4DXQ4+qkT7btscDX8+f)lT7uR;C)c^6&6Ht95vF^H;L>t(^*&GDq)LMl&7z z`HrRsv^?wIU~{Z~O3{oLu!34r;gpV2RaiHH*18o&a zHrfJkA@cD;2mb)fk21F}j0E(&J8}l{+n;V0m6j&;!}j%pf_kyxxLuFRCYTK%+tRR- zU-lO5jpN0VGOQ#i?(kbU%|5VCLp+M#(F!0m2V9*mL8Cq)JKrY5>FWk&>BNhWtwV5` zlmfn6Tavd%chdCvrs7n4hDOwzHiy0ScNT4I^w-wbW)ojxa0q=r*<@yHmp~5j|KSTk zZ)~duUMkMfxcDmc0U(_YoDTZ;EJy=RRtJ-u}X+{#TJhkrB{l-v6-hCM!fo z(B(*Zc2$-R48^+P@Bo?nXN&JsIGvy@aVyz%6^7D}N07ho{L;ivkg>gndRCn6AVyr& zG>5p(i;4eK{8kme>3VCHE$m79QOxS6F5#5L-`raskkg7Xi!<~^!k&R_rae!mArPz{ zsT#y3$$)fUE@wgO4;n!5Ym1AvpTyf^d$7{~DG93BLYu8V^zA$O!3*yH(@39A40h5c zN?`7N)KyW>apj}4^@nFhfPNB*wf&W*14c9F>K~U4`h{_N5M3o2r0pr8M=e4`L}foK zP)avLU-FPD>wgTz01Vjc(1`|f6`gsxyBwaUM_x)GY5bTk*a8}T#d?rL>r7rR=+JVT7O$&(1RN3KV^y0`fn3AHX#KC{Pr7=LS0V)?^pjI0u-pu zBw|}K|F2?q079-<>@$sCYi%)ESZkX1v7c^E1h%8*!@H^`O_OgI-7UtHkdm~Bbe(`q z^gaRn=qRN;1PcNz$BD6I!U>GP*52&rPa_eX#wN|&VIurJw(IwYh_m~}>RKQL{`kO2 z?~ZPn_rnlb0l=GSj2fW>?5rd&dy+EasVeg{^^N&$*IVZfJj88(z7N=c;&r9%&e)yy zNI$jZS{~ff!ti4n_9omvU(3fWijuExG=DoXJ0D`&zP>F4SxE}i$mq(m6W z5M2Ky0?YrG>x4tA`FCdS>fw=~=9iPKpH6dTCD@xgZMf zfB=OOOjKRX;}<+5KK8#tOOeg#Bm!h`^|#iTjto7IYpy@ZfRUe*P;_*3bAQ=0!Z(aE z{`0WZgy+TfC~o(4nc-zB$DdlU3mQj^&<_;hSx(VFwPxM|Fsy5ydz8P2QCWaavRt+n)QxOiIH;nhD?VL%s zd zX1osA4}Z)$!Vc+uFo)77$w%6mht!gx!NIrZgiOik>0dvf6YJl$n(t1DUR}F0=Qw-d*ZRHD3RDuQ8%oO;3oK`SeAO2h~aO z@W{0I7Sn-D^z03`(n>K9;GslK%sK>0&NQo9eq)z=i0x&Giu#4nv%4HZS4=KvpTD(8 z*^SJ%jQog3k;pA1?27j)))duDE^P(bmD5mCvZOeMM zg-rzVG$;BZF-#g8IWPkdWCKI!~x=4FGFN3>S zE6;PO?u~1jdo#;E4Ho4{BW%v}wsT#dUNFj1u|l_$E>Q6EnLY1~ogPmciq+aMmv!db z?q(vbAHo!7xlk3<)CZS#tZ!{}2m7_#PjnYQ#E}Ma<9D;L( z^OWyNyRCg*iFftc112$l+?}sLFUC!hqymsvIm1xr)bv&lSI{mAH6AMoaNv@9O8OB) z?{^qaN1+XZf?F3q-f=F-6As_CY#>pJzOL$5)t7ceJCJLpX?&3oNqXrTO>-oF!%%BX z;)5a4Rok6P`?aGXHpNLPvy}=j^Pz$`_qGdmp|K9weHj6G^_}kYM|ci1wWME?P%Brg z{m-N*ffJ7P{vL$U<^g`M@?%mavO@S50evoT=}El&NaCjQoAKh< z9k->*VgXO_72iuNXXo66N+);D7OK-|`R6RW-_(e=A}I^GB@^qN8On1h@Ma-VM6;cc zV?~L>#%{a(%(77N|#@jdWg*Rb_q27<)PC`I`gKe?*G3Hb-ai^a@Cv&X-5fQ$SL$>u_%TEx+4`BP zAWt=`ahCJ(1Jez~<5O#y1Rq3Kd*(NG-P(yMUm_F^g}jL>5tq05+LsQHY!g3cKXG>) zn`vKe(<9Z49IZBtC{plWL(JIBMVgOM;{s74k*-9(*7%D8Xhn>~!L z%9=1>5m?2Se@*k|IM0Uv47;+5_~lcijFPnlRyub+@ki}lHL>*sm%?o4S3*FXO5X>k zxcwDkI}wh>J@ap7U3q4pW z91D}sw0?gT);Zij2=4NJPz5fuH-KpnSI#rgKVH*qPjr{f7_03+FWjA<`|jfUOlt@s zHQ!YBZj|s~zO{eQbaQfh0XCm5wKwfiAF!=oZF*0J;nP(^G;A(xapjn{rb!D|Q-hI{ z>BW3=&s+DdM@^3v7Z4%ExT0u%v}Ya#Mf!cZ z6yQC;RdRw zrLDj2KF&V+?sIgDSMd1pT5OcnS+qntDiqOGew|=i0B1pSvENZbGqKhy`2`0P*1w)jveqqx6CU*!QL+V5*DEj#1y!b;eTWnf z9xyDOIZPR?gNm2Elj-?)ku_1wQC)-j9$ALyy zV}+#5)c{6~pdkwxNm{;zTY+)nCD774eEOK;<7=tpmwiGn((}W9+@+^-fL)C~4eqp- zstvJq4-~=7y3?S7TnnsW+G`y-W5A$B*)pYp2dLAUukKI26Q`1msHV+RNOmgYbcM5D zp&wGHcv7LDVPzwHcdype+EudG?C%c$q;i-*D zLMw6ew3}@^iXP{9(>H^OpiqGL53j5;Xk;kAO@joq2Wa#z%i*%Od;dr%)j*Rl0ZS@3zkN?BimPq9I%YpR{`xj3Tgluz$$9Ubq0m^~|K z40y>bR<55jvHRP%0O;If1`LntUiuNXPJNH$^#Ktjm|&JyJ?qEeX@0N=ZlCM{MlkHP zgFhTocjz#SN0Y`O&c2q{AVgq|x|1deqmU5`eH}V&ZF-!)WoK}|8Vvlg%uu|f;~?E;y62Mq_9Z3}E*_A7 zU}J<0%i+EXpVFrgZ@V5;%3{K+Bky7+Nl}GKo_*}FdiV78WzljPXoz_Zm7j~HpU&Kj9$bEuFk8%d*CW+q>9~ODV-!MrK$43RN{(t0jZ`fA zrMr2jiD|1J&I_ATZX-X37ZFu8&+u`VN_?}cELZ4g0#?|tmQ>;+1+!01-B%;Yrbc;_ z%VC*a@KRqUXI-B>Y=zk&!s@PuXjH;p?Z@HfZ%?Ml4_ zE$n6x2~zpvHL}(ikw?Q~HY0cHf+BjhB4xw?^-xpq7`wyg=(-}cIX6NFNPZm*57M>s z*H$}jALg1B?q7WZu%7N`(SpXfC6041hl`OKcCRH=*CyFiKHsr(h)T;jIK6o#6PZc+8{0ik0pYjsiV8#La+(X;<)k?xBg*l;5>}ylj%lb3sa^p7EpEieN=1q zD{E>PbdCr8;`a-U=-yqilC)KjZeZZmIhSR-ASj z1A1S*TM4@!j&5Jb5-gUmm63Ztvhu`Y<2sWG#vb+Q11s~);Wsy%0|PoLw4FV-Bj=89 zO;?aZaeEvS82h0U^}^$w{RhFjE$R7FQB31CS`F%y+hDnmjDog{HO0+}iY3!~u|icF zVLv!kVc5&s!9f!SuYxA-d3{3_9WBUR6h0Eu zv>4R1Lfwhql4;HNWR1zJcGNQ#z2|iwXM!#}YJ1R+bo)#}43C5GDTl}){l1Q}=9;w~#_~{}K z*DKC+2jGDEfc92~%mr{j-=3jB)B`&DsKRz5`s_Xt4UT4C9u1f5%-|TFalLXwtB#9+ z>7jtrR75H>jf|V*<0)7TGHd3H#&U%<39=#R{&!t7qRgUOYZ#J1dvJ)%JPNz0bY4PI|MaS0>htqQQsBXzEAKs;z^X1MdKw zSh!E`B~h0cW!26XX@}iVv+U(@-n3=SO9Mh*U=CI?aB8op*iPW5YhKn_Da9Grch;eV z0%jb)B`1CC``CCQc5cdVe%ke!BZ&JG+Lvw!eME8{kRnMhI(U3XhpWFcyUf$ooGmO) zS@mf}nN^aTDs}(;%XYN)I;~N=V%=x}7!kMs)k{e%C=*meEQN(UonM`z>f?Lzi#@ZlFE0+L?)So|^ou%Gw4Y;-F#d94Sl=C$IA5yDYHeBCF#MndB(43ULVZ*UVLwRNGywMnQJp8 zrS5VEC+Q%pm0d=*UG7%D7dHhjx5+I*15y~V*Q0T(t$}V*f&`;mUB^SbhZ_VHqcpDx zj`YnzmY*>i=u0HtEU@3s@|y2#r=1UGFZXLrYZhl-tRd@x3hXTk$o@ zF?dK@S^TwPA&WYt>)s)uSoNB92>pyyfnd-hR>G z7=msewR%`zQ<$~YuUAXFc)YTsxO=;7 zDw+Fpv!L9aAJ`v$2i&jqlfH<_=jR@_k4m`6G9!v-L+rnH%*3$|M(#p9lt1JhrI6x0 zBQ!oH3EWJ@&{k~D)y{F`syMX2&aIyOVg;>(db83!Cv4s`&p>(CW>@3(&(?Q%5-!Vk z3_szY=}q=7cED6NHQft&KqDCym)e(hD^tH5*cOF2FAY}J4V*_LHXk&{$`_1IUZ1fxA6^N}1udWLw7E-wnkH*#Y~uO20}r`SE~{Bo;#hFCS< z-fhE6zDU60@xaH0@V4IAPzSA}ILqeo;SP`{fJ2l?K z^G4RK;+SAo?%)@jPsyZ1bxd_Nc9Dhm)Wyc!dn7eq#3!LLcvGXA3k)|XMP^EoY;R>! zW9ElEM2SW)@h>#RIaKdS-h>@SDr)5{p)N5|GNjfwwd3Wj-flJe(0x#3V6x?;<)>!} zO7kas)NDONp-&lVKs$%qgg2fI%6gQjPOq>Occ$*FE2<&6Lj3t;Qnxck`pZ12(vC3l zpCejBgH~O3a5&_q*Jwm^HEayJWKMzZ(csd&)8==FU8k`Js(!;du5&eG63YHY?`a%% zs*E=zS9)5!+gR@MpT**}`Au}Waj2^t#~f3M#gD`iSItMAmv$8fqg`9SE|02KAV#UDq)E%zj$i(!9RFqs zf&Dt#e4&`ghm=O()bg_OZLxBXovQX!&D*K284r%SzDMjn84#irjq(!G)z7rnBfEPn zJG_!X{HSV&^7CXdQH*7}*TFW;^-nUx!%C-F)8oO2xfgce&*_T~0rgG(=c5~WiZvDT z4bjyf3$zWDl!#tA>Xku!0VDzXy;gD)rNHI zdXUA8mK|3A3;vzbGz8jbBBYm7|@G zv)%RC$*2(e9#_xI_sQMW$DJy_c&;@6z~t276O%N)-E^;va^L|2u2(x9b;~GkcQe%+ zShokbgP8&HD1*-TQ*zt7eLrcmuu{2Zlkt{fjq}SBpZ80NGLr5+XR$IQ*EjuiT#yx^ zk+Xl$TrkC_!eaonwp;qflJ zu6lI2-4wg0mqY5Q*M5alRoH_f4}OYbhiUk7dVv7NeRoghT^No&$66W%S`LiBKbeMsNBTAdgy$E z1dp*H?6lPQRC=bo@|8dT!TpIK0o!(+9|nX0L;f?))RKi!KGV{GT%-y80V^Cl$l(4P zCfV8=l6?nXdKo?NRhx5je=Q{NEKaG6B*%F}FBO>Fpvp<7BE-fQZ~5oJUN>_flHb*| z*!SS3f58k9`)UPk$-vJY;OD;hS1FUlv(!xvzn}T5Z{p_sEBtgBf~o2?jWn_NaD4Pt z>(y=B0?&@WGqXO0Lk_5_lB!hBP}Xpl5>ymPLB>DX!5OrK3O8y~5F-PnHv4bC(nco! zTfL2sY{uk(qxa{eQq$ZB=|cCH8wm@DFth$QNRAiD7$@K}V??KWr!%0f>H09{h| ziypJt;M_?nc=RW!?r>shfuZH|zjzC9iv@sPkupVJ47y=2&IE#-85vCgrO%~69;|!J zYY4XGK0_sV22y><7)&!4>0={pKk3^e0AgD>{I?os6nKuj6m3Q@__~#;U=5Du{bRks z+CbIb0x1ma0BzM{`oXVH3=)lvh)WCJ=LtYta3kwqw&33s8Y-8apgkwv_O=wtEyEzj zVPHyDD4^wdKp$-E%(ozn@|`*dJn+bkFN2J~H=XORO*aK{y6L~QOjiY~AvWJ+s|S5+ zeLX;%))f0m1dPYHfw_+^A{i*RU&YnjI&1*nFTQ)w802?u&f8haiOZ_{KtoE||K~da zT4)mRcRy;lVNVS`h8&z$NkPhOuuq*KT>VI=60|QjgMYdS9@Foi#$5<}6DZOjq&8#! z`jSS$Ov%rt$0tpM9dRE_!a)#5b0cNQDBBsJe(XC7 zkKgYxp>^^ep=ba9^d7-*JOET8IeNBfMADwOIyKeg&UnT)uQLVw#7Eiyh+$mf?d)S= zyvXOJL5s9qpC8_{X{I)-lh}@}2zX$mr?)WeUl@=}X$Id`Z+7t?-!JC`?SPeByn)qs zI5C-*5u#%1{2$LxX~fk?MC2wIf*zVK8PkJ5B^qE;l|ctGle_WYq#g$ry$(}IVoh+s z`k@t;s`z)8e(m6MD`li)mCOOjlZ9=)BDW1ul)C#_8!<~m{r2~B8+H?urW*&o)MpQz z6?(5qpD(pq9|cVh^4?!t;~2basJKovSS+BE{U2}wh(I@rZ&kSVdjZ`>2=}}v!)TdCF?7oeDu{6 zPcoB6%@z41t6qIaP_IdMNGe~*^I}l+2*=xuFOum`$vhPB?mY297u5Oa9giy<)X-OtZ0ta*RQ(5`6dfkp z(@vv|^~Os~PLO-3ABW&4Kc$dkYPBG zNd)-p0xsH?w00=KyvD)AOv&B6W)E9?cjvDLON@K&2W@(V*te$OCS8^w zP%9e#zIy@RY0gD zb{Ej4f_|9?Tm;rQcOC-T#usTQ_M2Hi*O{C^ZZv`fd&+0)PVo1M0`qskMtz*8Pr%*P z;ERKU;yQWc@g~pFXgMjX|K`i6D6{Yt#bxi`>-gi>I`aJAAZukr!NYShwbWzh5+d*= zkL^~e_(psDMaGDgp}9 z3jvvcN-2m4GC@g^Qo6fAI;EtQknZjdsVUtZldcI&n(uklefHYFefDyB&iVe(3op6m zeBbdrBky~R(R6n1xbjBq7gi*b%B#A~6c(-Pkx<)^&&EUT3;i_3k>crAEa(EQbxC27=6JVkKG8y^Gt`K^WydbgIk#q3 z!I}nD7Mg`6+6K?Gc~B(~TK{7GKJ(7qtkTw8OKOI{nY1Q3xF0>gAL0|jVL z>S8~BB(>`@#K74{x&}zmW5ft}JSF4&WYU<2eH#v&GD01CdOp5HdjHCM+E*)dhy8~BZ7yBs;NtoT)>0@<>bWT13lA8{YwW^m+b77 zx*lVcX{IRo2Y*KO9iM9tcFxI@Z+O8Kcf{Mvb4Ijd_EHCnX4BN9?XJ1 zJ01p~hsa;CeR>~f&0?);NZ=j*aL-+nV+NGxR)`*MmnBuO=jos2TASQwJ7RA7S_9Ui zS@xNFBcEjp1QXS#lXRqHX>J^qU=Ovuw#namg>T1quH5BOP}dk)_2s+ggA(MK?;t8H zxUa51g=Ng^$a6*I9c->IGdfk}N!?NVKs>N6GQ~jPO%h>dhaTXXlSQkxJ*8p^MCbmU zI5rhnIaIHG)hHzhTqnR8jG*^T(I7zMgrf6$;D>!~eRc)J-eqf9sg|86Qa&~JG7Afn zN8=Tx##42gFn@p1^8SwJxpoo4>!T&seEnG?zKAk=&m#xxtCZ^L&wj*K?{t3vp_%^< zgx)~?H$dn@C~{-DD(dA>`85-7#__y9>QYsV+_=f`vu8KFEYOS$p z!Y&U}9ZtY-7$tL2ZJ;O=xosPQ9qc2h&>`7Lm+p1SINu$6$8~{&g5{8-IaRhwOjcq& zcOwxetL=@IGm`b`KX!NkQk9@@T8Tq*vIK`)US4-=Ps)_k_*l=am!`j zRfMfNJLL>@v5Z~DOUJo~r=P+;I%Zg1`8y%cYe7i1h*ze`AoDqfc$bdaos@t-{R9x^ zlmfuWb(>%}et;v_6_DXhE-pHQ@r^fPqR8v&*3=t5rWzR=*M1~8zB=v#njSAv91wLU znbv=E<~NTUDXaf8xS$BAEuLi{Pc$J*Gmo*Q@L(Bj&SEEOS2KE5$+t0W4_7`?6aK>@ zt_+K8FLt2twubp;l$!Kgj@?f z5xYEPIQpw?q@(#`I9q@srIH*hTy66SCGKbOsY}DOz4ukF!2}7f`mfSXuuagW7ZpcP zcv_}wH-nO$!cn{FK)vyQfDAzd{bJ*96oM@vNM?+Zm-{J*QJ{f(7G{H^j3B@_gDkro z23`x`0b(7XsvX^u&k9a^vLq=9n>L>VC zR`##p8;F--x2r%6@)zlY6D7#A44ORXufBKCd`0 zRNp;rWFelwXeXs?+eHDZHsL$R%s?f2s57)Vq*!Gl;q^;wEKhfAUOwBb)5!FRy2I(8 zpfUMQch<<+hca=gj9I5P1b(f1pR|K3Ht@mBm*Wb+O}K#QV5s|^9seq!2JIhsPz3h4 z^4uK(E2^tkT^Ql%se~UsqxMnrbT$h6xO?d*dP8|MtaBazm<5nJ&>TQLv%5O7G(5)7 zAI7TaU-uq2Vm)+bZZL-Lgab`yA)RLSPNOp#GwPnf;}vx%?Yje!c8_a8wfDcWqy(E- zn6-<*dC}TFE@n~hz*5(o5BlwUi+~Mv<%=)%mvLRy&e&?t(+(w11un(}>)->0;?F96 z-xI`JC0xiEr7%a_5e}>ILKT(@RiOdwdWO<#J5W=B67k zIoWgB_cT~JZ11bXC(d|Ql<9D!@ax*MRV}JeR0(8#b3sn*+;*;bHTrGJQB2mzc7t#K zTZx{Qd4Qc<$7kE1#x_hrG;=1ScN-p6GpzROB-ZVqW+A_xDhzL(w*e|4K zI`W`y`(p_$6S1l-dF{VA5_HO-bp@ginLZEQejy5;Be*)L~mT_D}2&+xxV@mL;QS`>}v=D?2FW z9P&L$zXal$AX>Nf7f|Lbw!E)CBL`+{VPYPmK8rV+@Yu~_T%ow{64}Qzwfg09f!dOJ z|EM9p*#U(+-s1a9DzQLOTE8ob?oUP02PGcFX@P^m?6yVYG_$-Bu&�L$FrUA{}1k z0_(COK;%tKl=talwnv(K)tztKZ9XpqZ@YP8a<<&b*+4Mu*{HKI?%948Y0N0GVYtdE zT%zdSSX{ zRy}mj~a!*W?qTVX6$@Fc(ANyfU6TptY-}#bCc_#afxDINER1t)^5)^f|4j z4GD4WEOlquuuwDp_FX&ZHu;&FT3S+$9EJ+mjK{jF8LQy0ts0_C%oKzvowzM z3*fVU0}R9_7+884ApH*_oX&s_zcfXS)6^HqIbd!|;5~hX5EeMjdmR4EJO@BHpn#d- zzsDu=m$z3Qr=X(p-yy$O(=&G7u-~Dl!YyALG1byVTVjg5!dM|qCE`u|F!GNtXM(Kp zA*zWFR22#S3GUpT&(2OuudXkGT-?1^PDl9;JK4**=7%gO6jKwJ*MY@9m;{%vD_ znkM?P^{t7zjz)q|Ts2@jZd^W?8;CtvErl< zX%Lvp*JxW<^Zg1UjK^8qOO;1}p(dX2xebw4smpzjH4ZcVv^40gCMqGE>eHc1aA4@H zrs=h$$$@P=kZ$E$*nUt&cB*a;_iPD> zTLb}afY+Yzu7`flWZ`+p9rOhpA{MuafvmoLe%8kVy8U;bM#3;>ngfK|h?)B;5#-dC zTVNv$84m^RxeZ(r=12Mj_;Kv^_mz~CjE-%vhl`H!Sd^=-p)H{CZK_wu)9O5j9l-b; zcM%`rCUSIhnc%lfTT8%JI`8ha$wPjcW!KfuyT17 z0-(1lsP>U&3zcjd*Uo+oIl_Io3;M2*Z~uuU+egk3^|j|uA5=aj@U)O7s-KIzT9hN! zWkpKnnnBiGmGj2(@!Jp_?>7AX^ddzxbvjb>s@f*9u=(aE2W7WeO}6nvvRVVOGmfNW zhjo)^pIEX@9^zt=!d*a0Fd`1^i5t-PbZqlB5qpa-W%H)(iOhHR<1j-^@2GijIv*bC z#{G9Pl5Egwff}f5_kbK}ju%A!X>&pY78bkXIIK4fP8jDfED6UvmBc{c`kb*D-L0Up z9>|J&J@Z9!@8od(`DZ(8^AS{2a|}12{yKD4 zz7^E?_F4lGt1SEK^!yCNQ{l1u=4{%}jvka*-&6sQ3)Pa85E`JuaMkT5tmS9P_eaSb z(fOlfeqE0eX84Ldea>f|GFx)8f0d7v*W!9>2#d4-dKGFowhim=2#FPh!uxHdn=H_E zzVnc#5p)qJBuE!2@oH8WuB-6y@%c>dT(BF?B!^f}RrWT`C`Y+K*zMcchFm%sO;iGA z*lTNxeLMM0%~7%yUgWUw&+7n~j@Rru%i z=7+=p<4%md6UQ8NDYI?kpoO3w&Sf@4LTrI|R8pw77t^*GXY^MtWYOAl|Lvj(eHlyUJ&>Hb3r_oZeyd1R`0|V3rzkxD=*)3 zsw${^_j{2Nx)D%C|3B5aMxbE#kaH3T`i)!R54~ks0oEiSy}OT zhu^+vXlQs;Y03~CP0?Y%@t8#sOwsDo-JWSKp|B$>w^)^1XON8aobQNC)!lFGp0oxx zg-yNb5@48K28R0TXHt2T5{DT}J+k_=h*(8MW!}NM3ur6FeJgC+-4&OBVmvSo>Uok5 zR|vD>1wn6HjYI1lo$a+Tte?z6xa#E8gNm^{Iy=+Dc=>FEbiNj|>06b{lO(|UghH7& z>btT350zsqMGOSBXw#(dhR~j-u`4JKL$~QKMe|=~FE9moKCir-V5t6=hW|LX76k@p zdeWfRQxuc0h=<)(6YwQslAG?HlXzKSMUV#1)L9#FLC#+>zHxpDn)aDcJpPE1U20V8 z$p)lP^NNJ&MdP0y3PlT;Ho@p~eL|V!K7k}+rwfbP&J&>0?^j2PZfbW%e;Yq7v?n*2 zZBeVTZ~vJ4GRNrie&wZfFyY}kpk_aZcXd!hNnj4t+ruC6qxdX!dbj()clSCap>6?P zQp*km)=~NX@4-6fYh*Ay+;R^mj=5OfK`^T8X(Ue&fi_GYUhV1O)`DGNsh(YgzA;;R6nY0C$?^fKgt>Oeda z8K?fO=Iq_j` zUsMk18O?!bFD-b zeJKPQn7bvm0k(MA0Afyr$at1u-Ji$`#g%E$miga9%>N^N?}7KF*kWR}mE%J^Pw@#| z>6GU;#;Tg^xu{U{9rb&gfCVQav12XcIytGX?J|x`R7h0}NNX ze5PzIdS{t?vd3WTTZyqc{QcP1uhM>%)~E}S)nivd(_2$J87CCgt!^^DWIex|CtiN3 z3yVs?7jPIO1gY8I+>-O&cRW~RFsTM-8n=_?Q=izq2S!__z={J&HQ&4c>00`o~6=K?#p11%I%G%b9Y#* zppcUwD=V|EKQGPd&FVsz`rG~r-hXhE+;4F`&guy7-2`olTMn=Ml--+_`%_(CFt}q8!Oa~FJPBDQaffGo)2eHtqWJZBIJP)I)Yvqa@{>;hnpHQr=obdXzc#ZD}l+>hopWmlUP zzC`hjn%aK5i<4}*H`4=!M5rVEt7UokQXiV=*CqP1s(!u+Z*SYjO!Pvx>;!Op>ePM)W#izxzZB$(9 zV$hQaV`;>Z-c)k$DC}2($q$#5mcCPll1!CHkTHw=JF3kF^rLefEGQ`GHf!Dd+8WiK?%}<}C&BX(>O$+| zaH3w*xz?RgV??wQ1drVZ=V5*eP!#@+3UMh`0<$O_^jREf_FCcnXP^6z2mS!<_?+FD zTY=n=9^~Sgcj8bhWSm;B0sneoBAZpaS z6#q57q#@qRpo9q7%pIBkDrF@e$V1cvq5tQ00*J!*`a0Ah_n$(LAL4kh1p$c_RnalP z%Q`WG?5#M-;U3+fTJQG3ydVgOXE@6~o0 z{eKXEU_S^z#sH5u;T%^3F=q6{#a}ynHfRJy6CYugC-e-3AgCw~yM+YLE)xp=<6tJ_ zSEd+fyh*O$wH@nI3mRFoHu6jP;+T*$ax&(`{Z}UVs~g2bH`3c-MVPpvArN zN9Fayz>mtS8UWd4Ce(H0du98_bnrI#LfsW|og9~bjKA64RYaOf{Oq)licX_`Tq)Z;;@!TSsd<4=_#%1f~J z4$OKB<8+13Epx6cr_j2Kk>YHN76;S{SQ_dI;^^Ggx^ zBv9(r^fRbs5ZkZ=TtgnaDFKHSIF3F&R=ft4Kv4vzTFOmvAjh$p!~ zRGfvy4Tm}2WQ^te&P7l`Ow%zLZEQ#F!+;5`Ee*lhRDemsj1g#Yc1R9`Sh(2TW}e zZC{FEzAjt6u6GbFsPj);Q0&<3%773pyRz&xL;gj!rO@4n$-}&JGgtMesTl*S<<&#O zLP|eehe@?68Iw>l?FP-09p;#^NHjMqdsyiE@y2q?k4}~*X=in`{jJSkWzf3}1m{B; z9@__SM56aEXF(f*d?AfYV1w-8&2KN;1w9;`YHi}x-{|MXKk2Cw-3Zks<*#7vE-mFZ zyXfZp=Ik2x4}{z2EoseUm0Fxl&ka?SmkY~- zNb|R%6~dL;$T4B;voUrpf#X9kQI+izdhDQp#@LB=uy0GbE;Svm4>^Ip>t**U?il&1 z;>n49{tqDB$%ngsimt!^NAEV5V#~2(myo05pKzl}KS!k8%FyyM*PQem85!Q-yHn5Y@ zxt~ZZqD#^rO-igL`OB zDcbX!aIDjWx={`{mhfo?Q?evH7 zqfKD!(ms_?Fr8l#F->Y7^XU3``h=Z8M(Rk_Fi@Sa2x^-4R2E23i)iN|J33=4f?sKH z$Iw?#@xkSAT|+@G{BYstr{z?1fvRrp)g-n1r^gN#4Sno)4=v+Z6&(9?%zNz|*GHp` z$n2#4Q?&G_lEL6(;ETv>QDBEKFqf`C<+9I41VGjj@{|XhoIw5N-u_h&u(8=6KU;u5 zu2+~cT$^D)h*}9_z(#v!PFy`&KGxz^+E_@hcbwO^Q~Oc%@yg_-M&=zw^%K{kK>xOt z_OzPx@d$2@AY%sc@k?1ALl^*F4YDcswvpxqDa0oL^NugGK1(D#aWgG7Ku7+JxwuUf zHaV6R3;b+l25oV~5iAufHrPLhQr^`+NGX0p=(5AD*5eTq!+p?5*S)QD4 znd{af_+!|sgdSFKAKy0dtbBJE=BiR~GBq}wQc4PwzXUZX{OKV6+aDnnGVoNNya{RH zEgx_qU+Y?*fW$F`1t{GK285p2yZt04Rci{@=uj|wcZ!XS$$bH7vZHF0)F=61*jqSnlyz2z*xKuF z=;X~LD}(c!c0&b|)=qH@T9zzts6gSpbHjdV^|^GTvM!qT4Vy{hE3Rrg|9*{)qsWxK zs{J+-#*M5U#jWdCuX};!-K$?>>vk6pG#gPwjvlW+q+C}OkqsCarp7XyYNJM^73Z}c z;N2`?WvbL&6$r}nE%_f2=teL<+W(fcjMKg&#;N3tHP5$&!C`Wn+>)pT?ab;X~vIjvQn3hTV= zdT8%n@J<<@fWS+7=1b~8wkV!kLPDx|j`dY?<)1-@!jB+Bt59UaZrG4yv)(^Yo5dnD zuhCqVGm2|THp&TR%yu)4Lr zkG)U;pkp`mi6utN((EJP==;N}|BzZCVgMZbHl zaseSkEzopuL$gEuZY9)k#ZQ9Ck19GbJbWl88!$2~b-AH*d1@*AjLjcgT#g|jJBD$` zUf018x(L7TRNcRJDLJJ;#`grzv3!?t9wcMEg6NMx#$O>BOF<+&`ir)Y9tpoTn|>;r zt#Fn(s#^2JYHn#F*S?v`_j*4T71dga&FcNC$UktwD!GR}O*`!~{TX9Ug2ijX)hcl} z#db619TZid!r8%ay?|et*rK7&WT~8=T?n=w3EDio&2u2ns*J`jrG{BiZ-vn8qr)|A zA*xh#rU=~@>$EIRc#Ib&0{(tomG#Yhv&i#%ami)!hg(3nfFiYUEQ#;#i8JTd`jIiJ z&9-3Dc64&r#|0_XAoxNWPz_KT7Vw7_t3$)-phc*noA;fen&0I9W*gqdREGN7SL{sp zds_@*70Wlok#`>*ei7fwGfW;dWX)9_0zt)V%{ZBsyDOR!tq0`&nb}Q%VL-a~H>NGS zLlda*n`=ZMGxHeQ<{kV#G#E4i+yU%t)8mVgAQ!oo@RQPnAPoAj!uk4|l5)?RMC=GY zY^I?m-#C9TPxy7~p4!qe$WGX-_AoF)82!wDA|hB3t6dj2{39 zw^%{-u_q~IzbZiZ%;87uH`$agFMu{BP*&aql9t>&qF2YeS%V-1v@`YzPQ87y3_&yU z2?x1znEA;sjzP%P_K;FIbh{^B!KMyp4GZDnwPVvN*xk|bVRAnPE5LZp0z-UulWl^P zHBtE=sJlXm3%U1XUd9w*Hm*7=+jfQCq0*?b{zf^8!j^Zf+J>5plpNS8_D@5x^q@{1kHy zj)|{rgPpxZZBrXTggizI*gA6AZpBge*d}f=#kRE~%_lP4&tV=JEp7Aajpv=`HPsNB zU=?5w$lrMn1|=lr{<#+H@Pi@%2K@-6DBmOm?T9r4ZF+1V3iw?@s|itg>UEI5xY zN)y?SGc+0r!mb+z2)d;#Ffg`fVzz2-C>3cLYCN2)Bild*jWFI;shz;>5xAQnP;SgB zzC9*0fYmwCob~BByboqb%)KMQPnj0Q=!U20Am`W9PbajMXH%9D$&#L|%Y3I6E4)56x?@Bniil-r7ACMZi#EV%L=dSR%iJuewrYd74;hi2riM{+%(9O7 z^b5}C7wLd8Q{I1P()(*{pdFWuFDYSwfYw<98mjT?CGQXay&67J6&feUsatoZs3;1SJ9{XeHF=*V}4Z!ju-$2A0=U%X4DgANWd?J#BrM z>Re)f%HEH6C%uV(U82Vr>xS#Lkiwk&)P9Nj+=p<$&j*BiPp7Iy#G7ohXQbci@VI<5 zWrPZi$}Wvq5;|KAHBiUxy$xFoKda^CWKTv=5WZ@?3|2UcG=L2qf2A;xMzMteU*LZK z3JWx=$q5dXj2IahAT}%%3mpW5a!sKeaNd5?5!nC^#;zoB_a&_8CQKAs zez?HUumh6ud*J3PAy|I2zjY}8Cv4*X?}AvXlK;=1Ke8WzkBZdgTGTPJZgO?a7ci*q zVog%Af?>(~541c*<|X6tuJeW8KjJO_c#Fb_{A5~H1wL4 z2vqxY`frNzf?Pmj1O`>A!3SkeL`y+L?Z3{EYkWYR(J=`BI|(Py1XD(1!)|PSIcFiN zakFe^P6@lKKu zdYT{gCuZD#>>mmSuXXh7SGNXe<0kk_?(qmC5lD?Q=%B9L3A;mPFstgKC3<^W@C6S* zLJzGrCO@0J8!cg{myD*VLp~$svp;Dh*#irKag%nFLmV*peZeRU6_-y_SH6C&m5o?q(#nuGVh3 z30OC>vmOBEs3fRP2rPhIkNf$FD!0IQWT~~qMNKU)M=hApOUC*FpeP;TOAHJ5u>mu= zx|5~C7lwzPIQP;+8Z0acG`RZwUp8<3kAu|3 z(P2Mx2$SNKr1RqHJzpe^Of1|pu(Jz6Qv}6Dn9B@#FuF5}F^s23u2tX>}H!*vV&JMYxK^MTa9S3h5LBhC-}jcEsvp=1Rt-=juR3aBtnlZ2C4Hn|U2 zPSP(iGAk=9HxaR8^QIBJru6hu5jqa6tfON+>O**K!ffR^rGmMW)@EjZ2(0#Bj^aLj zN5#OZfo*%R{jMdNSEAy?%}`^b0st{3R#Pqq3vv9m09qZks_)NI_Mzezly}~TxC5Y^ zPbR+JmB4V%+sUG?$OMRIJnUE-5i3-Au(KJryJ~!UgUz3kpV)8@J;4lDv(9`mvJ7C# zdhlnUtWS4!*ziq%`>XlaCtK8x4K>cL!V?gFFXeX!URHozf)qNj+uuYj^=+=j-809z z&TT-EZMZRc19ZygS=j^Yp3N>}M|rp5Sdb zVrg_=9dy=RtJVj`1BvhTz9-6B9gRquju9;+;#Sw>nwqqK)RYzfkY)=v7lgOUnMHB<<*U z_A8+@0qhJ1O{M+_@oZ~En_U(Mj{u-em@Rf=+8=Jq9V?J3;>O1D+RDl98GJf7&#Cn^ zKwiK6Uq=_Vqv$IDeL9$4Qn(}1Fzw8Kz|E4Z!cU)Q0JVZ0tn2j>sI*OAE&=#8GD^4* zg&to%gNG-zdavLoS+(~3AwbqNv#eOKjw*DBAZicQVL}SM!0Va^L~PVNpQ@Jzb{XUN z0Id!+=z&M=r86gKw75mLGI5Bj`EmX~6{<}LG> z5Py&BK!K_jrR^;DZ_@xriklx3hz5)RXkVCUyAEvGJy&&Vkb3YKS6#Oj#ii>|OHyf* zx-|9Qi~~IR!-~={&?*6pM;ffi$1XJ-KVon=)n~>bVoY@Rr{Kl$soocD=b|1G*)bw} z6hICO;ETI72(~B_g|nzM3>vFW9qps`^j8(G5%-N2dL#3O_neOpL4)YqD)`7U`CKco zH`KD#MFXtW6z*5nt8{@MnfIbOD9LV`DNmAkp8KXz`vPKakiXorzON6il6KE>O$q)L z3^d7pk$eR#VGSs|`H`yFrR*LUS(v%7z1h6!g6uW}?8iXlV4*GvK`$#V0|Ub;ERoSHvjCVx>iqNMA4;{_5{ych50VA%k z$aqH7?0ELYCGvaM*3B0_nMbKk=!}v+WN})uKE-vD@PW zsnbQURW5W87J*@52RCQ=C1h_%4Hi_!3J@hS7VFv`Yj#|}#w7R0_=cbe&xtz0hf_gY z%d?b?eeT9b0D_yw2tU(U2^NkNzBRVA^e&e$_BfaH$e2k#SEk~*w~#aO9jaS_hHD+% z5_$O-rSqPgm|htg;V{X8dowgv*Kg0+^(Ho zg#cUntP4_3CEFVrE81vE0@hww*XjF!&CIT*N;;b^C>tfF(G&C6Z?I{c&Yb(}zfSOJ ztk&>ul|jF$CQI`a3&9{2d#g~VzjxbmeT<9Il%(s>7QGVIoBCq;7%cz2Eg8iX3~bBt z($Ma*Y?;|B>)oRW3SPU%)ExDLS{rst1&bVj?)*;ME$2njQ#Hpj2jIM~d<~*4uUAj& zvfVfW!`fuxHSPdDsekl+Ynh^>5)rV!_qLYRF+%XP00Ys%xS0AP>7GBFn46pXNz{Em zyL{_>FmJ0>W)r4bRS}<-K4K{1Lli!ct*SU*_GaJYj!a@sz*>|an+=$iq*>=?EK~e! zj0O`CK*7%lM#&q$G(QNc0=%t<0SQS>SB+LBk2Vgm==48!74((mN)R(y~Yl)17hso2WydG{B30tRx zu>9V9Wht^v6<drZ+C z9eu;KUlm~E73O&ayi}b`GtM-YXp$}IQ67Pla%2hG!_d4x$Hd5ABJ~1tr$lbjQEGk6 zkp`DI^Fwn$oOk)AA1mmy{;;8nTo7ku04+>-X_OvUOuFCp%%=I zq`sq+_%THX3{xt9B5-g!b`3eTDLP#6juw4tOY?$WD$JLRV=zm%TAdnJZFw4NckoWl zi;$s+N;gx1OLHsn$-y7G8%GfYFhu5hHE7)Mx=NR~mOP&@pH##wctrCmPa{ksoJHcj zH<9_sLYJy|g8Sv2sspvowv3FmO3C-b+>ZHQNu?;pPLK8l0arLXZQ3!KKcRl@;l5%d#eq2ojN*zX`4q6Xg_9nHH6tmFA)Ce`N7!mn<}DeY}!Y1eYXm zn2TwD;c%l%{Z)yE-)PC=+;uMTYx^0}`d@?j$^#reAJgA-O9?d={+OKK+10ha*U67H z>p^Wv0JC%xBL9Wu0lF~@>4u#%DHWs}7|upSF!?J?a#~aohnI^ z!?Df%S>;l3%_mXxen(qvtR_pn@9x0!5`l3?V4I0`*>^Yit$ zdFEMd^@>Js;!wcBY7sm=VglUWZz$>JRad0er^<)N2Ok*W;zN~|*;Kk~uu{#!DRntX zZe-d)dg~l8nt>z5>n)(@`)wfBP*#*xTlTTM;&WFdu%w|EcE}e4ORcNHu8hZ3cGh!) zxfA-}NwRrO=UX)r-c;HceR{NyvsHtQKHZy1&JnjjxQ2zqdIDl$lXF&;HbkZL(Yq&sG*w_L zFkIehZ6H0NgkEYX!SHRB@ehUD|E_S~9MvzzVvPkd{n}Z4rhBjfE0`^1h0bg1oEnFf zfqPrBWDH|px-ESEUaCr^4P8=ONZ*Y)U?Uel72V%GTyNH#Z;#mOaXw#`juRBl{iyH! zg-hQ;n>$dp=r!62Qli32EMTTClXJI57V4TiDOO5_-HjmdW--L*wjE}CpKc)*l`vU~ zqsYz1_@P|0{kCH9$y?m4s9F@LjXXvhDDTXjaHct0u6GG}AUc-Q85fP;GzW#I%e`_z zf|0PnfZ+Ren~bw#O(sc)i0r;b&aG!5gZ)|;5c1h7bYLnZF%gD*)b$>c%<8~{ou#3J zw0-pQfa-jEtiCK&_NNhC2ZffDGp9i-9E`cP6a86=$=Te7YZP}3Nh6}tsH)9JEO=jM zIH&2w3Ob&B*HczF+aB5`wlP{?FVy5q#x!EN@@+Y#Q+~M*80dEg`^fn@;ADg`fs?U@ zgFQYLEG$jbzhc0X>m=+MKv7t!3eyhC2Bv9-M~O1FK~{mH=GexZ9# zmqWet%^g{`>^}^i_t>JJj|E`g(7~i2m|x5=HQUC0wlNxnqyN_qAN=owLE!YM?)7^~ z-vnOYnE*Su7FF}K7uGyBrhIaY&Pse1(@MO1FJK?Jvlz^$~tBIM4R8wMd=7!DDWxX*ltrY8Z1ylJJwjC-O~__KIXKb=KG&>b6i45+@o zI&0E&@47X@s%pDFQQ>$JGe-tU@H-qm-kR-T)ocq3!bBktdA^Jv9iu0%cBGK5@Us~% z3ZFlBgXY1;sP_`EQg69GAcsbkGAW}o8fQ92o|ARWF5=G4PZVozdsba#(t7Hl&SSS- zlA%)k>VAPf{VNX5oSj8MtBeM3q8IL0Rt$7;S1GkGGhrc1LX3@60(3Eti^C?Zzg;dp z_e(p4uK=`9NFw$S64wn@{3#dY4XNukmN|H_)rPlrYf&zJwwJwnbCn;g7Qebaq*ao|m9*uX!|C(I`zc}zF#8e2m- zKrYIhoEFvWPpJqdqtZ&n2?T3={qWU2dq84q_G^r6n3{+%a31||G}zYk4ooroJY5